| ofs | hex dump | ascii |
|---|---|---|
| 0000 | de 12 04 95 00 00 00 00 09 17 00 00 1c 00 00 00 64 b8 00 00 bb 1e 00 00 ac 70 01 00 00 00 00 00 | ................d........p...... |
| 0020 | 98 eb 01 00 43 00 00 00 99 eb 01 00 52 00 00 00 dd eb 01 00 42 00 00 00 30 ec 01 00 3b 00 00 00 | ....C.......R.......B...0...;... |
| 0040 | 73 ec 01 00 42 00 00 00 af ec 01 00 3a 00 00 00 f2 ec 01 00 24 00 00 00 2d ed 01 00 1a 00 00 00 | s...B.......:.......$...-....... |
| 0060 | 52 ed 01 00 66 00 00 00 6d ed 01 00 6f 00 00 00 d4 ed 01 00 89 00 00 00 44 ee 01 00 5d 01 00 00 | R...f...m...o...........D...]... |
| 0080 | ce ee 01 00 48 00 00 00 2c f0 01 00 46 00 00 00 75 f0 01 00 31 00 00 00 bc f0 01 00 31 00 00 00 | ....H...,...F...u...1.......1... |
| 00a0 | ee f0 01 00 3e 00 00 00 20 f1 01 00 23 00 00 00 5f f1 01 00 18 00 00 00 83 f1 01 00 7d 00 00 00 | ....>.......#..._...........}... |
| 00c0 | 9c f1 01 00 92 00 00 00 1a f2 01 00 23 00 00 00 ad f2 01 00 90 00 00 00 d1 f2 01 00 20 00 00 00 | ............#................... |
| 00e0 | 62 f3 01 00 21 00 00 00 83 f3 01 00 21 00 00 00 a5 f3 01 00 3f 00 00 00 c7 f3 01 00 78 00 00 00 | b...!.......!.......?.......x... |
| 0100 | 07 f4 01 00 7f 00 00 00 80 f4 01 00 36 00 00 00 00 f5 01 00 15 00 00 00 37 f5 01 00 2d 00 00 00 | ............6...........7...-... |
| 0120 | 4d f5 01 00 27 00 00 00 7b f5 01 00 1d 00 00 00 a3 f5 01 00 5c 00 00 00 c1 f5 01 00 46 01 00 00 | M...'...{...........\.......F... |
| 0140 | 1e f6 01 00 60 00 00 00 65 f7 01 00 1c 00 00 00 c6 f7 01 00 0c 00 00 00 e3 f7 01 00 21 00 00 00 | ....`...e...................!... |
| 0160 | f0 f7 01 00 4e 00 00 00 12 f8 01 00 e8 00 00 00 61 f8 01 00 e0 00 00 00 4a f9 01 00 e0 00 00 00 | ....N...........a.......J....... |
| 0180 | 2b fa 01 00 23 00 00 00 0c fb 01 00 29 00 00 00 30 fb 01 00 3e 00 00 00 5a fb 01 00 0c 00 00 00 | +...#.......)...0...>...Z....... |
| 01a0 | 99 fb 01 00 12 00 00 00 a6 fb 01 00 56 00 00 00 b9 fb 01 00 56 00 00 00 10 fc 01 00 11 00 00 00 | ............V.......V........... |
| 01c0 | 67 fc 01 00 b4 00 00 00 79 fc 01 00 4d 00 00 00 2e fd 01 00 b4 00 00 00 7c fd 01 00 6c 00 00 00 | g.......y...M...........|...l... |
| 01e0 | 31 fe 01 00 6b 00 00 00 9e fe 01 00 6c 00 00 00 0a ff 01 00 81 00 00 00 77 ff 01 00 3b 00 00 00 | 1...k.......l...........w...;... |
| 0200 | f9 ff 01 00 12 00 00 00 35 00 02 00 8b 00 00 00 48 00 02 00 98 00 00 00 d4 00 02 00 8c 00 00 00 | ........5.......H............... |
| 0220 | 6d 01 02 00 30 01 00 00 fa 01 02 00 fc 00 00 00 2b 03 02 00 01 01 00 00 28 04 02 00 fb 00 00 00 | m...0...........+.......(....... |
| 0240 | 2a 05 02 00 fc 00 00 00 26 06 02 00 d5 00 00 00 23 07 02 00 94 00 00 00 f9 07 02 00 00 01 00 00 | *.......&.......#............... |
| 0260 | 8e 08 02 00 04 01 00 00 8f 09 02 00 2c 01 00 00 94 0a 02 00 f6 01 00 00 c1 0b 02 00 67 00 00 00 | ............,...............g... |
| 0280 | b8 0d 02 00 67 00 00 00 20 0e 02 00 66 00 00 00 88 0e 02 00 da 00 00 00 ef 0e 02 00 d9 00 00 00 | ....g.......f................... |
| 02a0 | ca 0f 02 00 12 00 00 00 a4 10 02 00 08 00 00 00 b7 10 02 00 b8 00 00 00 c0 10 02 00 14 01 00 00 | ................................ |
| 02c0 | 79 11 02 00 18 00 00 00 8e 12 02 00 18 00 00 00 a7 12 02 00 1b 00 00 00 c0 12 02 00 1a 00 00 00 | y............................... |
| 02e0 | dc 12 02 00 15 00 00 00 f7 12 02 00 0d 00 00 00 0d 13 02 00 14 00 00 00 1b 13 02 00 0a 00 00 00 | ................................ |
| 0300 | 30 13 02 00 0b 00 00 00 3b 13 02 00 0a 00 00 00 47 13 02 00 0b 00 00 00 52 13 02 00 0a 00 00 00 | 0.......;.......G.......R....... |
| 0320 | 5e 13 02 00 0a 00 00 00 69 13 02 00 4d 00 00 00 74 13 02 00 7e 03 00 00 c2 13 02 00 10 00 00 00 | ^.......i...M...t...~........... |
| 0340 | 41 17 02 00 10 00 00 00 52 17 02 00 6f 00 00 00 63 17 02 00 44 00 00 00 d3 17 02 00 8c 00 00 00 | A.......R...o...c...D........... |
| 0360 | 18 18 02 00 8c 00 00 00 a5 18 02 00 ba 00 00 00 32 19 02 00 ae 00 00 00 ed 19 02 00 ae 00 00 00 | ................2............... |
| 0380 | 9c 1a 02 00 a0 01 00 00 4b 1b 02 00 99 01 00 00 ec 1c 02 00 ab 01 00 00 86 1e 02 00 98 01 00 00 | ........K....................... |
| 03a0 | 32 20 02 00 99 01 00 00 cb 21 02 00 ae 01 00 00 65 23 02 00 10 00 00 00 14 25 02 00 8b 00 00 00 | 2........!......e#.......%...... |
| 03c0 | 25 25 02 00 4a 00 00 00 b1 25 02 00 16 00 00 00 fc 25 02 00 9d 00 00 00 13 26 02 00 32 00 00 00 | %%..J....%.......%.......&..2... |
| 03e0 | b1 26 02 00 93 00 00 00 e4 26 02 00 6b 01 00 00 78 27 02 00 1f 01 00 00 e4 28 02 00 c2 01 00 00 | .&.......&..k...x'.......(...... |
| 0400 | 04 2a 02 00 ce 01 00 00 c7 2b 02 00 2f 01 00 00 96 2d 02 00 2e 01 00 00 c6 2e 02 00 0b 00 00 00 | .*.......+../....-.............. |
| 0420 | f5 2f 02 00 2e 00 00 00 01 30 02 00 2d 00 00 00 30 30 02 00 26 00 00 00 5e 30 02 00 37 00 00 00 | ./.......0..-...00..&...^0..7... |
| 0440 | 85 30 02 00 33 00 00 00 bd 30 02 00 29 00 00 00 f1 30 02 00 3b 00 00 00 1b 31 02 00 1e 00 00 00 | .0..3....0..)....0..;....1...... |
| 0460 | 57 31 02 00 3b 00 00 00 76 31 02 00 2e 00 00 00 b2 31 02 00 2d 00 00 00 e1 31 02 00 4e 00 00 00 | W1..;...v1.......1..-....1..N... |
| 0480 | 0f 32 02 00 0f 00 00 00 5e 32 02 00 11 00 00 00 6e 32 02 00 06 00 00 00 80 32 02 00 0f 00 00 00 | .2......^2......n2.......2...... |
| 04a0 | 87 32 02 00 11 00 00 00 97 32 02 00 06 00 00 00 a9 32 02 00 2d 00 00 00 b0 32 02 00 25 00 00 00 | .2.......2.......2..-....2..%... |
| 04c0 | de 32 02 00 09 00 00 00 04 33 02 00 b9 00 00 00 0e 33 02 00 0c 00 00 00 c8 33 02 00 0c 00 00 00 | .2.......3.......3.......3...... |
| 04e0 | d5 33 02 00 0c 00 00 00 e2 33 02 00 13 00 00 00 ef 33 02 00 30 00 00 00 03 34 02 00 31 00 00 00 | .3.......3.......3..0....4..1... |
| 0500 | 34 34 02 00 07 00 00 00 66 34 02 00 07 00 00 00 6e 34 02 00 70 00 00 00 76 34 02 00 0d 00 00 00 | 44......f4......n4..p...v4...... |
| 0520 | e7 34 02 00 14 00 00 00 f5 34 02 00 1d 00 00 00 0a 35 02 00 49 00 00 00 28 35 02 00 19 00 00 00 | .4.......4.......5..I...(5...... |
| 0540 | 72 35 02 00 0a 00 00 00 8c 35 02 00 24 00 00 00 97 35 02 00 1a 00 00 00 bc 35 02 00 9d 00 00 00 | r5.......5..$....5.......5...... |
| 0560 | d7 35 02 00 27 00 00 00 75 36 02 00 0b 00 00 00 9d 36 02 00 10 00 00 00 a9 36 02 00 10 00 00 00 | .5..'...u6.......6.......6...... |
| 0580 | ba 36 02 00 70 00 00 00 cb 36 02 00 57 00 00 00 3c 37 02 00 42 00 00 00 94 37 02 00 32 00 00 00 | .6..p....6..W...<7..B....7..2... |
| 05a0 | d7 37 02 00 37 00 00 00 0a 38 02 00 5a 00 00 00 42 38 02 00 a3 00 00 00 9d 38 02 00 74 00 00 00 | .7..7....8..Z...B8.......8..t... |
| 05c0 | 41 39 02 00 35 01 00 00 b6 39 02 00 73 00 00 00 ec 3a 02 00 16 01 00 00 60 3b 02 00 7e 00 00 00 | A9..5....9..s....:......`;..~... |
| 05e0 | 77 3c 02 00 49 00 00 00 f6 3c 02 00 2f 02 00 00 40 3d 02 00 6f 00 00 00 70 3f 02 00 39 01 00 00 | w<..I....<../...@=..o...p?..9... |
| 0600 | e0 3f 02 00 dd 00 00 00 1a 41 02 00 20 00 00 00 f8 41 02 00 30 00 00 00 19 42 02 00 14 00 00 00 | .?.......A.......A..0....B...... |
| 0620 | 4a 42 02 00 2c 00 00 00 5f 42 02 00 90 00 00 00 8c 42 02 00 52 00 00 00 1d 43 02 00 58 00 00 00 | JB..,..._B.......B..R....C..X... |
| 0640 | 70 43 02 00 26 00 00 00 c9 43 02 00 58 00 00 00 f0 43 02 00 e4 00 00 00 49 44 02 00 68 00 00 00 | pC..&....C..X....C......ID..h... |
| 0660 | 2e 45 02 00 5d 00 00 00 97 45 02 00 6c 00 00 00 f5 45 02 00 5a 00 00 00 62 46 02 00 a4 00 00 00 | .E..]....E..l....E..Z...bF...... |
| 0680 | bd 46 02 00 eb 00 00 00 62 47 02 00 41 00 00 00 4e 48 02 00 52 00 00 00 90 48 02 00 34 00 00 00 | .F......bG..A...NH..R....H..4... |
| 06a0 | e3 48 02 00 6d 00 00 00 18 49 02 00 c7 00 00 00 86 49 02 00 f1 00 00 00 4e 4a 02 00 08 00 00 00 | .H..m....I.......I......NJ...... |
| 06c0 | 40 4b 02 00 35 00 00 00 49 4b 02 00 32 00 00 00 7f 4b 02 00 4c 00 00 00 b2 4b 02 00 30 00 00 00 | @K..5...IK..2....K..L....K..0... |
| 06e0 | ff 4b 02 00 38 00 00 00 30 4c 02 00 36 00 00 00 69 4c 02 00 19 00 00 00 a0 4c 02 00 3a 00 00 00 | .K..8...0L..6...iL.......L..:... |
| 0700 | ba 4c 02 00 37 00 00 00 f5 4c 02 00 7b 01 00 00 2d 4d 02 00 14 00 00 00 a9 4e 02 00 16 00 00 00 | .L..7....L..{...-M.......N...... |
| 0720 | be 4e 02 00 36 00 00 00 d5 4e 02 00 47 00 00 00 0c 4f 02 00 55 00 00 00 54 4f 02 00 35 00 00 00 | .N..6....N..G....O..U...TO..5... |
| 0740 | aa 4f 02 00 29 00 00 00 e0 4f 02 00 23 00 00 00 0a 50 02 00 24 00 00 00 2e 50 02 00 af 00 00 00 | .O..)....O..#....P..$....P...... |
| 0760 | 53 50 02 00 6c 00 00 00 03 51 02 00 29 00 00 00 70 51 02 00 a7 00 00 00 9a 51 02 00 ee 00 00 00 | SP..l....Q..)...pQ.......Q...... |
| 0780 | 42 52 02 00 47 00 00 00 31 53 02 00 47 00 00 00 79 53 02 00 3a 00 00 00 c1 53 02 00 4b 00 00 00 | BR..G...1S..G...yS..:....S..K... |
| 07a0 | fc 53 02 00 4d 00 00 00 48 54 02 00 5a 01 00 00 96 54 02 00 9f 01 00 00 f1 55 02 00 b5 00 00 00 | .S..M...HT..Z....T.......U...... |
| 07c0 | 91 57 02 00 1d 00 00 00 47 58 02 00 51 00 00 00 65 58 02 00 31 00 00 00 b7 58 02 00 32 00 00 00 | .W......GX..Q...eX..1....X..2... |
| 07e0 | e9 58 02 00 1a 00 00 00 1c 59 02 00 4c 00 00 00 37 59 02 00 80 00 00 00 84 59 02 00 25 00 00 00 | .X.......Y..L...7Y.......Y..%... |
| 0800 | 05 5a 02 00 26 00 00 00 2b 5a 02 00 26 00 00 00 52 5a 02 00 40 00 00 00 79 5a 02 00 17 00 00 00 | .Z..&...+Z..&...RZ..@...yZ...... |
| 0820 | ba 5a 02 00 09 00 00 00 d2 5a 02 00 2d 00 00 00 dc 5a 02 00 3c 00 00 00 0a 5b 02 00 42 00 00 00 | .Z.......Z..-....Z..<....[..B... |
| 0840 | 47 5b 02 00 b1 00 00 00 8a 5b 02 00 54 00 00 00 3c 5c 02 00 55 00 00 00 91 5c 02 00 2c 00 00 00 | G[.......[..T...<\..U....\..,... |
| 0860 | e7 5c 02 00 47 00 00 00 14 5d 02 00 bc 00 00 00 5c 5d 02 00 bf 00 00 00 19 5e 02 00 1e 00 00 00 | .\..G....]......\].......^...... |
| 0880 | d9 5e 02 00 37 00 00 00 f8 5e 02 00 33 00 00 00 30 5f 02 00 9a 00 00 00 64 5f 02 00 01 00 00 00 | .^..7....^..3...0_......d_...... |
| 08a0 | ff 5f 02 00 2c 00 00 00 01 60 02 00 11 00 00 00 2e 60 02 00 06 00 00 00 40 60 02 00 06 00 00 00 | ._..,....`.......`......@`...... |
| 08c0 | 47 60 02 00 06 00 00 00 4e 60 02 00 06 00 00 00 55 60 02 00 06 00 00 00 5c 60 02 00 06 00 00 00 | G`......N`......U`......\`...... |
| 08e0 | 63 60 02 00 06 00 00 00 6a 60 02 00 06 00 00 00 71 60 02 00 06 00 00 00 78 60 02 00 06 00 00 00 | c`......j`......q`......x`...... |
| 0900 | 7f 60 02 00 0e 00 00 00 86 60 02 00 01 00 00 00 95 60 02 00 11 00 00 00 97 60 02 00 0a 00 00 00 | .`.......`.......`.......`...... |
| 0920 | a9 60 02 00 1a 00 00 00 b4 60 02 00 b7 00 00 00 cf 60 02 00 b7 00 00 00 87 61 02 00 bc 00 00 00 | .`.......`.......`.......a...... |
| 0940 | 3f 62 02 00 85 00 00 00 fc 62 02 00 02 00 00 00 82 63 02 00 0e 00 00 00 85 63 02 00 2d 00 00 00 | ?b.......b.......c.......c..-... |
| 0960 | 94 63 02 00 10 00 00 00 c2 63 02 00 0f 00 00 00 d3 63 02 00 11 00 00 00 e3 63 02 00 13 00 00 00 | .c.......c.......c.......c...... |
| 0980 | f5 63 02 00 06 00 00 00 09 64 02 00 06 00 00 00 10 64 02 00 06 00 00 00 17 64 02 00 06 00 00 00 | .c.......d.......d.......d...... |
| 09a0 | 1e 64 02 00 02 00 00 00 25 64 02 00 03 00 00 00 28 64 02 00 02 00 00 00 2c 64 02 00 08 00 00 00 | .d......%d......(d......,d...... |
| 09c0 | 2f 64 02 00 02 00 00 00 38 64 02 00 02 00 00 00 3b 64 02 00 02 00 00 00 3e 64 02 00 02 00 00 00 | /d......8d......;d......>d...... |
| 09e0 | 41 64 02 00 02 00 00 00 44 64 02 00 32 00 00 00 47 64 02 00 02 00 00 00 7a 64 02 00 02 00 00 00 | Ad......Dd..2...Gd......zd...... |
| 0a00 | 7d 64 02 00 35 00 00 00 80 64 02 00 17 00 00 00 b6 64 02 00 01 00 00 00 ce 64 02 00 1a 00 00 00 | }d..5....d.......d.......d...... |
| 0a20 | d0 64 02 00 85 00 00 00 eb 64 02 00 80 00 00 00 71 65 02 00 02 00 00 00 f2 65 02 00 02 00 00 00 | .d.......d......qe.......e...... |
| 0a40 | f5 65 02 00 02 00 00 00 f8 65 02 00 02 00 00 00 fb 65 02 00 11 00 00 00 fe 65 02 00 11 00 00 00 | .e.......e.......e.......e...... |
| 0a60 | 10 66 02 00 03 00 00 00 22 66 02 00 02 00 00 00 26 66 02 00 02 00 00 00 29 66 02 00 63 00 00 00 | .f......"f......&f......)f..c... |
| 0a80 | 2c 66 02 00 0f 00 00 00 90 66 02 00 01 00 00 00 a0 66 02 00 20 00 00 00 a2 66 02 00 87 00 00 00 | ,f.......f.......f.......f...... |
| 0aa0 | c3 66 02 00 02 00 00 00 4b 67 02 00 02 00 00 00 4e 67 02 00 02 00 00 00 51 67 02 00 02 00 00 00 | .f......Kg......Ng......Qg...... |
| 0ac0 | 54 67 02 00 01 00 00 00 57 67 02 00 1a 00 00 00 59 67 02 00 a5 00 00 00 74 67 02 00 a2 00 00 00 | Tg......Wg......Yg......tg...... |
| 0ae0 | 1a 68 02 00 a2 00 00 00 bd 68 02 00 e6 00 00 00 60 69 02 00 11 00 00 00 47 6a 02 00 02 00 00 00 | .h.......h......`i......Gj...... |
| 0b00 | 59 6a 02 00 02 00 00 00 5c 6a 02 00 02 00 00 00 5f 6a 02 00 01 00 00 00 62 6a 02 00 11 00 00 00 | Yj......\j......_j......bj...... |
| 0b20 | 64 6a 02 00 c3 00 00 00 76 6a 02 00 c7 00 00 00 3a 6b 02 00 0f 00 00 00 02 6c 02 00 11 00 00 00 | dj......vj......:k.......l...... |
| 0b40 | 12 6c 02 00 02 00 00 00 24 6c 02 00 01 00 00 00 27 6c 02 00 6b 00 00 00 29 6c 02 00 69 00 00 00 | .l......$l......'l..k...)l..i... |
| 0b60 | 95 6c 02 00 6e 00 00 00 ff 6c 02 00 2d 00 00 00 6e 6d 02 00 02 00 00 00 9c 6d 02 00 3b 00 00 00 | .l..n....l..-...nm.......m..;... |
| 0b80 | 9f 6d 02 00 02 00 00 00 db 6d 02 00 02 00 00 00 de 6d 02 00 0a 00 00 00 e1 6d 02 00 6b 02 00 00 | .m.......m.......m.......m..k... |
| 0ba0 | ec 6d 02 00 01 00 00 00 58 70 02 00 02 00 00 00 5a 70 02 00 01 00 00 00 5d 70 02 00 6c 00 00 00 | .m......Xp......Zp......]p..l... |
| 0bc0 | 5f 70 02 00 01 00 00 00 cc 70 02 00 76 00 00 00 ce 70 02 00 7b 00 00 00 45 71 02 00 61 01 00 00 | _p.......p..v....p..{...Eq..a... |
| 0be0 | c1 71 02 00 8b 00 00 00 23 73 02 00 10 01 00 00 af 73 02 00 8a 01 00 00 c0 74 02 00 36 00 00 00 | .q......#s.......s.......t..6... |
| 0c00 | 4b 76 02 00 22 01 00 00 82 76 02 00 26 02 00 00 a5 77 02 00 ec 00 00 00 cc 79 02 00 8b 00 00 00 | Kv.."....v..&....w.......y...... |
| 0c20 | b9 7a 02 00 8c 01 00 00 45 7b 02 00 bd 00 00 00 d2 7c 02 00 08 02 00 00 90 7d 02 00 53 01 00 00 | .z......E{.......|.......}..S... |
| 0c40 | 99 7f 02 00 dc 00 00 00 ed 80 02 00 4f 00 00 00 ca 81 02 00 aa 03 00 00 1a 82 02 00 aa 03 00 00 | ............O................... |
| 0c60 | c5 85 02 00 8b 01 00 00 70 89 02 00 80 01 00 00 fc 8a 02 00 b5 01 00 00 7d 8c 02 00 4c 02 00 00 | ........p...............}...L... |
| 0c80 | 33 8e 02 00 3f 00 00 00 80 90 02 00 61 00 00 00 c0 90 02 00 8f 05 00 00 22 91 02 00 32 02 00 00 | 3...?.......a..........."...2... |
| 0ca0 | b2 96 02 00 0b 01 00 00 e5 98 02 00 3d 02 00 00 f1 99 02 00 7e 00 00 00 2f 9c 02 00 37 00 00 00 | ............=.......~.../...7... |
| 0cc0 | ae 9c 02 00 8f 01 00 00 e6 9c 02 00 01 01 00 00 76 9e 02 00 da 01 00 00 78 9f 02 00 3e 01 00 00 | ................v.......x...>... |
| 0ce0 | 53 a1 02 00 8e 02 00 00 92 a2 02 00 a6 00 00 00 21 a5 02 00 e3 01 00 00 c8 a5 02 00 af 01 00 00 | S...............!............... |
| 0d00 | ac a7 02 00 87 01 00 00 5c a9 02 00 f6 01 00 00 e4 aa 02 00 17 02 00 00 db ac 02 00 d9 01 00 00 | ........\....................... |
| 0d20 | f3 ae 02 00 8e 00 00 00 cd b0 02 00 57 01 00 00 5c b1 02 00 82 00 00 00 b4 b2 02 00 fb 00 00 00 | ............W...\............... |
| 0d40 | 37 b3 02 00 b4 01 00 00 33 b4 02 00 d6 01 00 00 e8 b5 02 00 59 01 00 00 bf b7 02 00 50 01 00 00 | 7.......3...........Y.......P... |
| 0d60 | 19 b9 02 00 be 01 00 00 6a ba 02 00 68 01 00 00 29 bc 02 00 04 02 00 00 92 bd 02 00 89 00 00 00 | ........j...h...)............... |
| 0d80 | 97 bf 02 00 84 00 00 00 21 c0 02 00 f9 00 00 00 a6 c0 02 00 a4 00 00 00 a0 c1 02 00 b5 00 00 00 | ........!....................... |
| 0da0 | 45 c2 02 00 43 00 00 00 fb c2 02 00 5c 00 00 00 3f c3 02 00 52 00 00 00 9c c3 02 00 46 00 00 00 | E...C.......\...?...R.......F... |
| 0dc0 | ef c3 02 00 50 00 00 00 36 c4 02 00 48 00 00 00 87 c4 02 00 4c 00 00 00 d0 c4 02 00 47 00 00 00 | ....P...6...H.......L.......G... |
| 0de0 | 1d c5 02 00 48 00 00 00 65 c5 02 00 41 00 00 00 ae c5 02 00 44 00 00 00 f0 c5 02 00 61 00 00 00 | ....H...e...A.......D.......a... |
| 0e00 | 35 c6 02 00 61 00 00 00 97 c6 02 00 62 00 00 00 f9 c6 02 00 64 00 00 00 5c c7 02 00 5f 00 00 00 | 5...a.......b.......d...\..._... |
| 0e20 | c1 c7 02 00 60 00 00 00 21 c8 02 00 19 00 00 00 82 c8 02 00 29 00 00 00 9c c8 02 00 12 00 00 00 | ....`...!...........)........... |
| 0e40 | c6 c8 02 00 3d 00 00 00 d9 c8 02 00 13 00 00 00 17 c9 02 00 3f 00 00 00 2b c9 02 00 13 00 00 00 | ....=...............?...+....... |
| 0e60 | 6b c9 02 00 3f 00 00 00 7f c9 02 00 15 00 00 00 bf c9 02 00 43 00 00 00 d5 c9 02 00 15 00 00 00 | k...?...............C........... |
| 0e80 | 19 ca 02 00 43 00 00 00 2f ca 02 00 31 01 00 00 73 ca 02 00 11 00 00 00 a5 cb 02 00 80 01 00 00 | ....C.../...1...s............... |
| 0ea0 | b7 cb 02 00 40 00 00 00 38 cd 02 00 24 00 00 00 79 cd 02 00 41 01 00 00 9e cd 02 00 19 00 00 00 | ....@...8...$...y...A........... |
| 0ec0 | e0 ce 02 00 37 00 00 00 fa ce 02 00 2a 00 00 00 32 cf 02 00 39 00 00 00 5d cf 02 00 29 00 00 00 | ....7.......*...2...9...]...)... |
| 0ee0 | 97 cf 02 00 07 00 00 00 c1 cf 02 00 4d 00 00 00 c9 cf 02 00 18 00 00 00 17 d0 02 00 81 00 00 00 | ............M................... |
| 0f00 | 30 d0 02 00 b6 00 00 00 b2 d0 02 00 40 00 00 00 69 d1 02 00 2f 00 00 00 aa d1 02 00 32 00 00 00 | 0...........@...i.../.......2... |
| 0f20 | da d1 02 00 35 00 00 00 0d d2 02 00 1d 00 00 00 43 d2 02 00 27 00 00 00 61 d2 02 00 1f 00 00 00 | ....5...........C...'...a....... |
| 0f40 | 89 d2 02 00 36 00 00 00 a9 d2 02 00 39 00 00 00 e0 d2 02 00 18 01 00 00 1a d3 02 00 1e 00 00 00 | ....6.......9................... |
| 0f60 | 33 d4 02 00 2d 00 00 00 52 d4 02 00 5c 00 00 00 80 d4 02 00 37 01 00 00 dd d4 02 00 cb 01 00 00 | 3...-...R...\.......7........... |
| 0f80 | 15 d6 02 00 ab 01 00 00 e1 d7 02 00 59 01 00 00 8d d9 02 00 3a 01 00 00 e7 da 02 00 2d 00 00 00 | ............Y.......:.......-... |
| 0fa0 | 22 dc 02 00 3a 00 00 00 50 dc 02 00 6d 00 00 00 8b dc 02 00 77 00 00 00 f9 dc 02 00 8b 00 00 00 | "...:...P...m.......w........... |
| 0fc0 | 71 dd 02 00 cc 01 00 00 fd dd 02 00 ba 00 00 00 ca df 02 00 16 00 00 00 85 e0 02 00 33 00 00 00 | q...........................3... |
| 0fe0 | 9c e0 02 00 28 00 00 00 d0 e0 02 00 77 01 00 00 f9 e0 02 00 51 00 00 00 71 e2 02 00 74 00 00 00 | ....(.......w.......Q...q...t... |
| 1000 | c3 e2 02 00 26 00 00 00 38 e3 02 00 85 00 00 00 5f e3 02 00 8b 00 00 00 e5 e3 02 00 8b 00 00 00 | ....&...8......._............... |
| 1020 | 71 e4 02 00 cf 00 00 00 fd e4 02 00 34 01 00 00 cd e5 02 00 2f 00 00 00 02 e7 02 00 72 00 00 00 | q...........4......./.......r... |
| 1040 | 32 e7 02 00 65 00 00 00 a5 e7 02 00 31 00 00 00 0b e8 02 00 01 01 00 00 3d e8 02 00 33 00 00 00 | 2...e.......1...........=...3... |
| 1060 | 3f e9 02 00 3c 00 00 00 73 e9 02 00 42 00 00 00 b0 e9 02 00 93 01 00 00 f3 e9 02 00 93 01 00 00 | ?...<...s...B................... |
| 1080 | 87 eb 02 00 e4 01 00 00 1b ed 02 00 63 00 00 00 00 ef 02 00 50 00 00 00 64 ef 02 00 d4 00 00 00 | ............c.......P...d....... |
| 10a0 | b5 ef 02 00 ed 00 00 00 8a f0 02 00 78 00 00 00 78 f1 02 00 90 00 00 00 f1 f1 02 00 c0 01 00 00 | ............x...x............... |
| 10c0 | 82 f2 02 00 a2 00 00 00 43 f4 02 00 88 00 00 00 e6 f4 02 00 4e 00 00 00 6f f5 02 00 44 00 00 00 | ........C...........N...o...D... |
| 10e0 | be f5 02 00 58 00 00 00 03 f6 02 00 08 01 00 00 5c f6 02 00 65 00 00 00 65 f7 02 00 7e 00 00 00 | ....X...........\...e...e...~... |
| 1100 | cb f7 02 00 48 01 00 00 4a f8 02 00 35 01 00 00 93 f9 02 00 90 00 00 00 c9 fa 02 00 a3 00 00 00 | ....H...J...5................... |
| 1120 | 5a fb 02 00 02 01 00 00 fe fb 02 00 3f 00 00 00 01 fd 02 00 42 00 00 00 41 fd 02 00 24 00 00 00 | Z...........?.......B...A...$... |
| 1140 | 84 fd 02 00 22 01 00 00 a9 fd 02 00 1c 00 00 00 cc fe 02 00 2c 00 00 00 e9 fe 02 00 43 00 00 00 | ...."...............,.......C... |
| 1160 | 16 ff 02 00 c8 00 00 00 5a ff 02 00 b8 00 00 00 23 00 03 00 b1 01 00 00 dc 00 03 00 4f 00 00 00 | ........Z.......#...........O... |
| 1180 | 8e 02 03 00 37 00 00 00 de 02 03 00 26 00 00 00 16 03 03 00 0a 02 00 00 3d 03 03 00 62 00 00 00 | ....7.......&...........=...b... |
| 11a0 | 48 05 03 00 41 00 00 00 ab 05 03 00 3d 00 00 00 ed 05 03 00 5e 00 00 00 2b 06 03 00 35 00 00 00 | H...A.......=.......^...+...5... |
| 11c0 | 8a 06 03 00 77 00 00 00 c0 06 03 00 04 00 00 00 38 07 03 00 1c 00 00 00 3d 07 03 00 03 00 00 00 | ....w...........8.......=....... |
| 11e0 | 5a 07 03 00 03 00 00 00 5e 07 03 00 5c 00 00 00 62 07 03 00 a7 01 00 00 bf 07 03 00 0c 00 00 00 | Z.......^...\...b............... |
| 1200 | 67 09 03 00 a8 00 00 00 74 09 03 00 70 00 00 00 1d 0a 03 00 3c 00 00 00 8e 0a 03 00 41 00 00 00 | g.......t...p.......<.......A... |
| 1220 | cb 0a 03 00 33 00 00 00 0d 0b 03 00 12 00 00 00 41 0b 03 00 0c 00 00 00 54 0b 03 00 79 00 00 00 | ....3...........A.......T...y... |
| 1240 | 61 0b 03 00 45 00 00 00 db 0b 03 00 07 00 00 00 21 0c 03 00 10 00 00 00 29 0c 03 00 22 00 00 00 | a...E...........!.......)..."... |
| 1260 | 3a 0c 03 00 68 00 00 00 5d 0c 03 00 41 00 00 00 c6 0c 03 00 40 00 00 00 08 0d 03 00 23 00 00 00 | :...h...]...A.......@.......#... |
| 1280 | 49 0d 03 00 c5 00 00 00 6d 0d 03 00 9f 00 00 00 33 0e 03 00 3c 00 00 00 d3 0e 03 00 23 00 00 00 | I.......m.......3...<.......#... |
| 12a0 | 10 0f 03 00 48 00 00 00 34 0f 03 00 26 00 00 00 7d 0f 03 00 35 00 00 00 a4 0f 03 00 4e 00 00 00 | ....H...4...&...}...5.......N... |
| 12c0 | da 0f 03 00 86 00 00 00 29 10 03 00 68 00 00 00 b0 10 03 00 63 00 00 00 19 11 03 00 2f 00 00 00 | ........)...h.......c......./... |
| 12e0 | 7d 11 03 00 48 00 00 00 ad 11 03 00 43 00 00 00 f6 11 03 00 a3 00 00 00 3a 12 03 00 b8 00 00 00 | }...H.......C...........:....... |
| 1300 | de 12 03 00 81 00 00 00 97 13 03 00 46 00 00 00 19 14 03 00 1c 00 00 00 60 14 03 00 2a 00 00 00 | ............F...........`...*... |
| 1320 | 7d 14 03 00 7d 00 00 00 a8 14 03 00 60 00 00 00 26 15 03 00 ee 00 00 00 87 15 03 00 09 01 00 00 | }...}.......`...&............... |
| 1340 | 76 16 03 00 02 01 00 00 80 17 03 00 68 00 00 00 83 18 03 00 07 00 00 00 ec 18 03 00 12 00 00 00 | v...........h................... |
| 1360 | f4 18 03 00 10 00 00 00 07 19 03 00 0e 00 00 00 18 19 03 00 4c 01 00 00 27 19 03 00 42 00 00 00 | ....................L...'...B... |
| 1380 | 74 1a 03 00 0d 00 00 00 b7 1a 03 00 24 00 00 00 c5 1a 03 00 c6 00 00 00 ea 1a 03 00 ba 00 00 00 | t...........$................... |
| 13a0 | b1 1b 03 00 52 00 00 00 6c 1c 03 00 17 00 00 00 bf 1c 03 00 1a 00 00 00 d7 1c 03 00 10 00 00 00 | ....R...l....................... |
| 13c0 | f2 1c 03 00 c7 00 00 00 03 1d 03 00 13 00 00 00 cb 1d 03 00 1a 00 00 00 df 1d 03 00 3c 00 00 00 | ............................<... |
| 13e0 | fa 1d 03 00 7f 00 00 00 37 1e 03 00 1a 00 00 00 b7 1e 03 00 14 00 00 00 d2 1e 03 00 7e 00 00 00 | ........7...................~... |
| 1400 | e7 1e 03 00 74 00 00 00 66 1f 03 00 7c 01 00 00 db 1f 03 00 26 01 00 00 58 21 03 00 40 01 00 00 | ....t...f...|.......&...X!..@... |
| 1420 | 7f 22 03 00 74 00 00 00 c0 23 03 00 61 01 00 00 35 24 03 00 63 01 00 00 97 25 03 00 2e 00 00 00 | ."..t....#..a...5$..c....%...... |
| 1440 | fb 26 03 00 05 00 00 00 2a 27 03 00 09 00 00 00 30 27 03 00 07 00 00 00 3a 27 03 00 66 00 00 00 | .&......*'......0'......:'..f... |
| 1460 | 42 27 03 00 4f 00 00 00 a9 27 03 00 9a 00 00 00 f9 27 03 00 8e 00 00 00 94 28 03 00 b1 00 00 00 | B'..O....'.......'.......(...... |
| 1480 | 23 29 03 00 0e 00 00 00 d5 29 03 00 67 00 00 00 e4 29 03 00 ae 00 00 00 4c 2a 03 00 89 00 00 00 | #).......)..g....)......L*...... |
| 14a0 | fb 2a 03 00 28 00 00 00 85 2b 03 00 3a 00 00 00 ae 2b 03 00 ac 00 00 00 e9 2b 03 00 ab 00 00 00 | .*..(....+..:....+.......+...... |
| 14c0 | 96 2c 03 00 74 00 00 00 42 2d 03 00 97 00 00 00 b7 2d 03 00 3a 00 00 00 4f 2e 03 00 40 00 00 00 | .,..t...B-.......-..:...O...@... |
| 14e0 | 8a 2e 03 00 27 00 00 00 cb 2e 03 00 e3 00 00 00 f3 2e 03 00 29 00 00 00 d7 2f 03 00 21 00 00 00 | ....'...............)..../..!... |
| 1500 | 01 30 03 00 08 01 00 00 23 30 03 00 61 01 00 00 2c 31 03 00 2c 00 00 00 8e 32 03 00 2e 00 00 00 | .0......#0..a...,1..,....2...... |
| 1520 | bb 32 03 00 80 00 00 00 ea 32 03 00 7b 00 00 00 6b 33 03 00 30 00 00 00 e7 33 03 00 c8 00 00 00 | .2.......2..{...k3..0....3...... |
| 1540 | 18 34 03 00 c8 00 00 00 e1 34 03 00 9c 00 00 00 aa 35 03 00 40 00 00 00 47 36 03 00 b7 00 00 00 | .4.......4.......5..@...G6...... |
| 1560 | 88 36 03 00 b7 00 00 00 40 37 03 00 5a 00 00 00 f8 37 03 00 c4 00 00 00 53 38 03 00 c4 00 00 00 | .6......@7..Z....7......S8...... |
| 1580 | 18 39 03 00 6e 00 00 00 dd 39 03 00 a5 00 00 00 4c 3a 03 00 83 00 00 00 f2 3a 03 00 c3 00 00 00 | .9..n....9......L:.......:...... |
| 15a0 | 76 3b 03 00 61 01 00 00 3a 3c 03 00 68 01 00 00 9c 3d 03 00 18 00 00 00 05 3f 03 00 54 00 00 00 | v;..a...:<..h....=.......?..T... |
| 15c0 | 1e 3f 03 00 89 00 00 00 73 3f 03 00 8b 00 00 00 fd 3f 03 00 6b 00 00 00 89 40 03 00 3d 00 00 00 | .?......s?.......?..k....@..=... |
| 15e0 | f5 40 03 00 91 00 00 00 33 41 03 00 96 00 00 00 c5 41 03 00 81 00 00 00 5c 42 03 00 39 00 00 00 | .@......3A.......A......\B..9... |
| 1600 | de 42 03 00 3e 01 00 00 18 43 03 00 58 00 00 00 57 44 03 00 c2 00 00 00 b0 44 03 00 ba 00 00 00 | .B..>....C..X...WD.......D...... |
| 1620 | 73 45 03 00 6a 00 00 00 2e 46 03 00 8c 02 00 00 99 46 03 00 85 02 00 00 26 49 03 00 cb 00 00 00 | sE..j....F.......F......&I...... |
| 1640 | ac 4b 03 00 40 00 00 00 78 4c 03 00 5f 00 00 00 b9 4c 03 00 9e 01 00 00 19 4d 03 00 9f 01 00 00 | .K..@...xL.._....L.......M...... |
| 1660 | b8 4e 03 00 85 01 00 00 58 50 03 00 84 01 00 00 de 51 03 00 bb 00 00 00 63 53 03 00 56 00 00 00 | .N......XP.......Q......cS..V... |
| 1680 | 1f 54 03 00 39 00 00 00 76 54 03 00 1d 00 00 00 b0 54 03 00 4b 00 00 00 ce 54 03 00 0b 00 00 00 | .T..9...vT.......T..K....T...... |
| 16a0 | 1a 55 03 00 02 01 00 00 26 55 03 00 30 00 00 00 29 56 03 00 93 00 00 00 5a 56 03 00 5d 00 00 00 | .U......&U..0...)V......ZV..]... |
| 16c0 | ee 56 03 00 5d 00 00 00 4c 57 03 00 9a 00 00 00 aa 57 03 00 1a 00 00 00 45 58 03 00 0d 00 00 00 | .V..]...LW.......W......EX...... |
| 16e0 | 60 58 03 00 a1 00 00 00 6e 58 03 00 3b 00 00 00 10 59 03 00 15 00 00 00 4c 59 03 00 97 00 00 00 | `X......nX..;....Y......LY...... |
| 1700 | 62 59 03 00 97 00 00 00 fa 59 03 00 34 00 00 00 92 5a 03 00 2c 00 00 00 c7 5a 03 00 2f 00 00 00 | bY.......Y..4....Z..,....Z../... |
| 1720 | f4 5a 03 00 c8 00 00 00 24 5b 03 00 43 01 00 00 ed 5b 03 00 18 00 00 00 31 5d 03 00 9c 00 00 00 | .Z......$[..C....[......1]...... |
| 1740 | 4a 5d 03 00 3e 00 00 00 e7 5d 03 00 ad 00 00 00 26 5e 03 00 aa 00 00 00 d4 5e 03 00 44 00 00 00 | J]..>....]......&^.......^..D... |
| 1760 | 7f 5f 03 00 1d 00 00 00 c4 5f 03 00 23 00 00 00 e2 5f 03 00 19 00 00 00 06 60 03 00 12 00 00 00 | ._......._..#...._.......`...... |
| 1780 | 20 60 03 00 43 00 00 00 33 60 03 00 42 00 00 00 77 60 03 00 47 00 00 00 ba 60 03 00 31 00 00 00 | .`..C...3`..B...w`..G....`..1... |
| 17a0 | 02 61 03 00 0a 00 00 00 34 61 03 00 08 00 00 00 3f 61 03 00 28 01 00 00 48 61 03 00 81 00 00 00 | .a......4a......?a..(...Ha...... |
| 17c0 | 71 62 03 00 75 00 00 00 f3 62 03 00 aa 00 00 00 69 63 03 00 d5 00 00 00 14 64 03 00 a5 01 00 00 | qb..u....b......ic.......d...... |
| 17e0 | ea 64 03 00 71 00 00 00 90 66 03 00 6c 00 00 00 02 67 03 00 78 00 00 00 6f 67 03 00 99 00 00 00 | .d..q....f..l....g..x...og...... |
| 1800 | e8 67 03 00 1d 01 00 00 82 68 03 00 74 00 00 00 a0 69 03 00 49 01 00 00 15 6a 03 00 18 01 00 00 | .g.......h..t....i..I....j...... |
| 1820 | 5f 6b 03 00 17 01 00 00 78 6c 03 00 1e 01 00 00 90 6d 03 00 1a 01 00 00 af 6e 03 00 39 01 00 00 | _k......xl.......m.......n..9... |
| 1840 | ca 6f 03 00 5f 00 00 00 04 71 03 00 32 01 00 00 64 71 03 00 82 00 00 00 97 72 03 00 a2 00 00 00 | .o.._....q..2...dq.......r...... |
| 1860 | 1a 73 03 00 93 00 00 00 bd 73 03 00 af 00 00 00 51 74 03 00 7e 00 00 00 01 75 03 00 47 00 00 00 | .s.......s......Qt..~....u..G... |
| 1880 | 80 75 03 00 83 00 00 00 c8 75 03 00 6e 00 00 00 4c 76 03 00 91 00 00 00 bb 76 03 00 59 00 00 00 | .u.......u..n...Lv.......v..Y... |
| 18a0 | 4d 77 03 00 96 00 00 00 a7 77 03 00 8e 00 00 00 3e 78 03 00 c1 00 00 00 cd 78 03 00 ca 00 00 00 | Mw.......w......>x.......x...... |
| 18c0 | 8f 79 03 00 59 01 00 00 5a 7a 03 00 23 00 00 00 b4 7b 03 00 2f 00 00 00 d8 7b 03 00 43 00 00 00 | .y..Y...Zz..#....{../....{..C... |
| 18e0 | 08 7c 03 00 27 00 00 00 4c 7c 03 00 2d 00 00 00 74 7c 03 00 3b 00 00 00 a2 7c 03 00 6e 00 00 00 | .|..'...L|..-...t|..;....|..n... |
| 1900 | de 7c 03 00 82 00 00 00 4d 7d 03 00 68 00 00 00 d0 7d 03 00 19 00 00 00 39 7e 03 00 19 00 00 00 | .|......M}..h....}......9~...... |
| 1920 | 53 7e 03 00 19 00 00 00 6d 7e 03 00 19 00 00 00 87 7e 03 00 19 00 00 00 a1 7e 03 00 19 00 00 00 | S~......m~.......~.......~...... |
| 1940 | bb 7e 03 00 19 00 00 00 d5 7e 03 00 19 00 00 00 ef 7e 03 00 19 00 00 00 09 7f 03 00 19 00 00 00 | .~.......~.......~.............. |
| 1960 | 23 7f 03 00 19 00 00 00 3d 7f 03 00 19 00 00 00 57 7f 03 00 7b 00 00 00 71 7f 03 00 c2 00 00 00 | #.......=.......W...{...q....... |
| 1980 | ed 7f 03 00 41 00 00 00 b0 80 03 00 c0 00 00 00 f2 80 03 00 68 00 00 00 b3 81 03 00 0e 00 00 00 | ....A...............h........... |
| 19a0 | 1c 82 03 00 16 00 00 00 2b 82 03 00 1f 00 00 00 42 82 03 00 25 00 00 00 62 82 03 00 29 00 00 00 | ........+.......B...%...b...)... |
| 19c0 | 88 82 03 00 24 00 00 00 b2 82 03 00 e6 00 00 00 d7 82 03 00 20 00 00 00 be 83 03 00 14 00 00 00 | ....$........................... |
| 19e0 | df 83 03 00 45 00 00 00 f4 83 03 00 13 00 00 00 3a 84 03 00 13 00 00 00 4e 84 03 00 17 00 00 00 | ....E...........:.......N....... |
| 1a00 | 62 84 03 00 17 00 00 00 7a 84 03 00 e7 00 00 00 92 84 03 00 3d 00 00 00 7a 85 03 00 12 00 00 00 | b.......z...........=...z....... |
| 1a20 | b8 85 03 00 21 00 00 00 cb 85 03 00 14 00 00 00 ed 85 03 00 13 00 00 00 02 86 03 00 03 00 00 00 | ....!........................... |
| 1a40 | 16 86 03 00 1b 00 00 00 1a 86 03 00 59 00 00 00 36 86 03 00 03 00 00 00 90 86 03 00 14 00 00 00 | ............Y...6............... |
| 1a60 | 94 86 03 00 14 00 00 00 a9 86 03 00 1d 00 00 00 be 86 03 00 1a 00 00 00 dc 86 03 00 0b 00 00 00 | ................................ |
| 1a80 | f7 86 03 00 18 00 00 00 03 87 03 00 19 00 00 00 1c 87 03 00 44 00 00 00 36 87 03 00 1a 00 00 00 | ....................D...6....... |
| 1aa0 | 7b 87 03 00 1f 00 00 00 96 87 03 00 1c 00 00 00 b6 87 03 00 20 00 00 00 d3 87 03 00 65 01 00 00 | {...........................e... |
| 1ac0 | f4 87 03 00 54 01 00 00 5a 89 03 00 c3 02 00 00 af 8a 03 00 56 00 00 00 73 8d 03 00 e4 00 00 00 | ....T...Z...........V...s....... |
| 1ae0 | ca 8d 03 00 05 00 00 00 af 8e 03 00 67 00 00 00 b5 8e 03 00 81 01 00 00 1d 8f 03 00 07 00 00 00 | ............g................... |
| 1b00 | 9f 90 03 00 89 00 00 00 a7 90 03 00 13 00 00 00 31 91 03 00 0f 00 00 00 45 91 03 00 1e 00 00 00 | ................1.......E....... |
| 1b20 | 55 91 03 00 21 00 00 00 74 91 03 00 11 00 00 00 96 91 03 00 21 00 00 00 a8 91 03 00 4c 00 00 00 | U...!...t...........!.......L... |
| 1b40 | ca 91 03 00 50 00 00 00 17 92 03 00 69 00 00 00 68 92 03 00 53 00 00 00 d2 92 03 00 53 00 00 00 | ....P.......i...h...S.......S... |
| 1b60 | 26 93 03 00 55 00 00 00 7a 93 03 00 55 00 00 00 d0 93 03 00 17 00 00 00 26 94 03 00 0e 00 00 00 | &...U...z...U...........&....... |
| 1b80 | 3e 94 03 00 0e 00 00 00 4d 94 03 00 3f 00 00 00 5c 94 03 00 36 00 00 00 9c 94 03 00 0b 00 00 00 | >.......M...?...\...6........... |
| 1ba0 | d3 94 03 00 d1 00 00 00 df 94 03 00 41 00 00 00 b1 95 03 00 19 00 00 00 f3 95 03 00 87 00 00 00 | ............A................... |
| 1bc0 | 0d 96 03 00 89 00 00 00 95 96 03 00 db 00 00 00 1f 97 03 00 38 00 00 00 fb 97 03 00 3c 00 00 00 | ....................8.......<... |
| 1be0 | 34 98 03 00 55 00 00 00 71 98 03 00 78 00 00 00 c7 98 03 00 75 00 00 00 40 99 03 00 27 00 00 00 | 4...U...q...x.......u...@...'... |
| 1c00 | b6 99 03 00 1c 00 00 00 de 99 03 00 7d 01 00 00 fb 99 03 00 11 00 00 00 79 9b 03 00 0c 00 00 00 | ............}...........y....... |
| 1c20 | 8b 9b 03 00 2f 00 00 00 98 9b 03 00 3f 00 00 00 c8 9b 03 00 63 00 00 00 08 9c 03 00 09 00 00 00 | ..../.......?.......c........... |
| 1c40 | 6c 9c 03 00 5d 00 00 00 76 9c 03 00 58 00 00 00 d4 9c 03 00 59 00 00 00 2d 9d 03 00 34 00 00 00 | l...]...v...X.......Y...-...4... |
| 1c60 | 87 9d 03 00 17 00 00 00 bc 9d 03 00 0c 00 00 00 d4 9d 03 00 25 00 00 00 e1 9d 03 00 13 00 00 00 | ....................%........... |
| 1c80 | 07 9e 03 00 29 00 00 00 1b 9e 03 00 83 00 00 00 45 9e 03 00 6e 00 00 00 c9 9e 03 00 31 00 00 00 | ....)...........E...n.......1... |
| 1ca0 | 38 9f 03 00 06 00 00 00 6a 9f 03 00 1d 00 00 00 71 9f 03 00 0e 00 00 00 8f 9f 03 00 0c 00 00 00 | 8.......j.......q............... |
| 1cc0 | 9e 9f 03 00 3f 00 00 00 ab 9f 03 00 37 00 00 00 eb 9f 03 00 07 00 00 00 23 a0 03 00 0b 00 00 00 | ....?.......7...........#....... |
| 1ce0 | 2b a0 03 00 0e 00 00 00 37 a0 03 00 d0 00 00 00 46 a0 03 00 9c 00 00 00 17 a1 03 00 51 00 00 00 | +.......7.......F...........Q... |
| 1d00 | b4 a1 03 00 9c 00 00 00 06 a2 03 00 ef 00 00 00 a3 a2 03 00 8d 01 00 00 93 a3 03 00 37 01 00 00 | ............................7... |
| 1d20 | 21 a5 03 00 38 01 00 00 59 a6 03 00 ce 00 00 00 92 a7 03 00 d9 00 00 00 61 a8 03 00 eb 00 00 00 | !...8...Y...............a....... |
| 1d40 | 3b a9 03 00 3b 00 00 00 27 aa 03 00 63 00 00 00 63 aa 03 00 78 00 00 00 c7 aa 03 00 9d 00 00 00 | ;...;...'...c...c...x........... |
| 1d60 | 40 ab 03 00 97 00 00 00 de ab 03 00 25 00 00 00 76 ac 03 00 a1 00 00 00 9c ac 03 00 a3 00 00 00 | @...........%...v............... |
| 1d80 | 3e ad 03 00 3a 01 00 00 e2 ad 03 00 16 00 00 00 1d af 03 00 1a 00 00 00 34 af 03 00 04 00 00 00 | >...:...................4....... |
| 1da0 | 4f af 03 00 05 00 00 00 54 af 03 00 0b 01 00 00 5a af 03 00 0a 00 00 00 66 b0 03 00 27 00 00 00 | O.......T.......Z.......f...'... |
| 1dc0 | 71 b0 03 00 16 00 00 00 99 b0 03 00 c8 00 00 00 b0 b0 03 00 1a 00 00 00 79 b1 03 00 2a 00 00 00 | q.......................y...*... |
| 1de0 | 94 b1 03 00 0c 00 00 00 bf b1 03 00 30 00 00 00 cc b1 03 00 2c 00 00 00 fd b1 03 00 0b 01 00 00 | ............0.......,........... |
| 1e00 | 2a b2 03 00 76 00 00 00 36 b3 03 00 bc 00 00 00 ad b3 03 00 91 00 00 00 6a b4 03 00 c4 00 00 00 | *...v...6...............j....... |
| 1e20 | fc b4 03 00 c7 00 00 00 c1 b5 03 00 3e 00 00 00 89 b6 03 00 0c 00 00 00 c8 b6 03 00 46 00 00 00 | ............>...............F... |
| 1e40 | d5 b6 03 00 06 00 00 00 1c b7 03 00 14 00 00 00 23 b7 03 00 06 00 00 00 38 b7 03 00 c4 00 00 00 | ................#.......8....... |
| 1e60 | 3f b7 03 00 9f 00 00 00 04 b8 03 00 0e 00 00 00 a4 b8 03 00 2d 00 00 00 b3 b8 03 00 1b 00 00 00 | ?...................-........... |
| 1e80 | e1 b8 03 00 0f 00 00 00 fd b8 03 00 07 00 00 00 0d b9 03 00 16 00 00 00 15 b9 03 00 1d 00 00 00 | ................................ |
| 1ea0 | 2c b9 03 00 06 00 00 00 4a b9 03 00 14 00 00 00 51 b9 03 00 15 00 00 00 66 b9 03 00 14 00 00 00 | ,.......J.......Q.......f....... |
| 1ec0 | 7c b9 03 00 1f 00 00 00 91 b9 03 00 3d 00 00 00 b1 b9 03 00 0b 00 00 00 ef b9 03 00 0d 00 00 00 | |...........=................... |
| 1ee0 | fb b9 03 00 14 00 00 00 09 ba 03 00 12 00 00 00 1e ba 03 00 14 00 00 00 31 ba 03 00 6c 00 00 00 | ........................1...l... |
| 1f00 | 46 ba 03 00 07 00 00 00 b3 ba 03 00 6a 00 00 00 bb ba 03 00 98 00 00 00 26 bb 03 00 0c 00 00 00 | F...........j...........&....... |
| 1f20 | bf bb 03 00 96 00 00 00 cc bb 03 00 3e 00 00 00 63 bc 03 00 77 00 00 00 a2 bc 03 00 38 00 00 00 | ............>...c...w.......8... |
| 1f40 | 1a bd 03 00 08 00 00 00 53 bd 03 00 20 00 00 00 5c bd 03 00 40 00 00 00 7d bd 03 00 1e 00 00 00 | ........S.......\...@...}....... |
| 1f60 | be bd 03 00 11 00 00 00 dd bd 03 00 97 00 00 00 ef bd 03 00 0a 00 00 00 87 be 03 00 1b 00 00 00 | ................................ |
| 1f80 | 92 be 03 00 58 00 00 00 ae be 03 00 0b 00 00 00 07 bf 03 00 0d 00 00 00 13 bf 03 00 15 00 00 00 | ....X........................... |
| 1fa0 | 21 bf 03 00 16 00 00 00 37 bf 03 00 13 00 00 00 4e bf 03 00 15 00 00 00 62 bf 03 00 2f 00 00 00 | !.......7.......N.......b.../... |
| 1fc0 | 78 bf 03 00 0b 01 00 00 a8 bf 03 00 af 00 00 00 b4 c0 03 00 16 00 00 00 64 c1 03 00 59 00 00 00 | x.......................d...Y... |
| 1fe0 | 7b c1 03 00 26 00 00 00 d5 c1 03 00 20 00 00 00 fc c1 03 00 25 00 00 00 1d c2 03 00 a5 00 00 00 | {...&...............%........... |
| 2000 | 43 c2 03 00 22 00 00 00 e9 c2 03 00 7d 00 00 00 0c c3 03 00 9e 00 00 00 8a c3 03 00 09 00 00 00 | C...".......}................... |
| 2020 | 29 c4 03 00 94 00 00 00 33 c4 03 00 0d 00 00 00 c8 c4 03 00 51 00 00 00 d6 c4 03 00 25 00 00 00 | ).......3...........Q.......%... |
| 2040 | 28 c5 03 00 37 00 00 00 4e c5 03 00 c0 00 00 00 86 c5 03 00 71 00 00 00 47 c6 03 00 24 00 00 00 | (...7...N...........q...G...$... |
| 2060 | b9 c6 03 00 52 00 00 00 de c6 03 00 4e 00 00 00 31 c7 03 00 68 00 00 00 80 c7 03 00 55 00 00 00 | ....R.......N...1...h.......U... |
| 2080 | e9 c7 03 00 22 00 00 00 3f c8 03 00 22 00 00 00 62 c8 03 00 4c 00 00 00 85 c8 03 00 57 00 00 00 | ...."...?..."...b...L.......W... |
| 20a0 | d2 c8 03 00 75 00 00 00 2a c9 03 00 70 00 00 00 a0 c9 03 00 75 00 00 00 11 ca 03 00 a4 00 00 00 | ....u...*...p.......u........... |
| 20c0 | 87 ca 03 00 37 00 00 00 2c cb 03 00 fc 00 00 00 64 cb 03 00 bb 00 00 00 61 cc 03 00 7a 00 00 00 | ....7...,.......d.......a...z... |
| 20e0 | 1d cd 03 00 77 00 00 00 98 cd 03 00 71 00 00 00 10 ce 03 00 aa 00 00 00 82 ce 03 00 3a 00 00 00 | ....w.......q...............:... |
| 2100 | 2d cf 03 00 2b 00 00 00 68 cf 03 00 48 00 00 00 94 cf 03 00 3a 00 00 00 dd cf 03 00 60 00 00 00 | -...+...h...H.......:.......`... |
| 2120 | 18 d0 03 00 62 00 00 00 79 d0 03 00 26 00 00 00 dc d0 03 00 2b 00 00 00 03 d1 03 00 43 00 00 00 | ....b...y...&.......+.......C... |
| 2140 | 2f d1 03 00 2b 00 00 00 73 d1 03 00 5b 00 00 00 9f d1 03 00 61 00 00 00 fb d1 03 00 27 00 00 00 | /...+...s...[.......a.......'... |
| 2160 | 5d d2 03 00 5b 00 00 00 85 d2 03 00 2e 00 00 00 e1 d2 03 00 47 00 00 00 10 d3 03 00 9a 00 00 00 | ]...[...............G........... |
| 2180 | 58 d3 03 00 31 00 00 00 f3 d3 03 00 31 00 00 00 25 d4 03 00 3e 00 00 00 57 d4 03 00 41 00 00 00 | X...1.......1...%...>...W...A... |
| 21a0 | 96 d4 03 00 84 00 00 00 d8 d4 03 00 5f 00 00 00 5d d5 03 00 5f 00 00 00 bd d5 03 00 3c 00 00 00 | ............_...]..._.......<... |
| 21c0 | 1d d6 03 00 3c 00 00 00 5a d6 03 00 39 00 00 00 97 d6 03 00 89 00 00 00 d1 d6 03 00 58 00 00 00 | ....<...Z...9...............X... |
| 21e0 | 5b d7 03 00 2c 00 00 00 b4 d7 03 00 2b 00 00 00 e1 d7 03 00 64 00 00 00 0d d8 03 00 65 00 00 00 | [...,.......+.......d.......e... |
| 2200 | 72 d8 03 00 2f 00 00 00 d8 d8 03 00 4b 00 00 00 08 d9 03 00 4c 00 00 00 54 d9 03 00 5f 00 00 00 | r.../.......K.......L...T..._... |
| 2220 | a1 d9 03 00 42 00 00 00 01 da 03 00 70 00 00 00 44 da 03 00 64 00 00 00 b5 da 03 00 2a 00 00 00 | ....B.......p...D...d.......*... |
| 2240 | 1a db 03 00 3b 00 00 00 45 db 03 00 2b 00 00 00 81 db 03 00 34 00 00 00 ad db 03 00 42 00 00 00 | ....;...E...+.......4.......B... |
| 2260 | e2 db 03 00 36 00 00 00 25 dc 03 00 99 00 00 00 5c dc 03 00 3f 00 00 00 f6 dc 03 00 3f 00 00 00 | ....6...%.......\...?.......?... |
| 2280 | 36 dd 03 00 50 00 00 00 76 dd 03 00 2a 00 00 00 c7 dd 03 00 b2 00 00 00 f2 dd 03 00 2d 00 00 00 | 6...P...v...*...............-... |
| 22a0 | a5 de 03 00 5d 00 00 00 d3 de 03 00 49 00 00 00 31 df 03 00 49 00 00 00 7b df 03 00 36 00 00 00 | ....].......I...1...I...{...6... |
| 22c0 | c5 df 03 00 3c 00 00 00 fc df 03 00 3e 00 00 00 39 e0 03 00 2c 00 00 00 78 e0 03 00 1f 00 00 00 | ....<.......>...9...,...x....... |
| 22e0 | a5 e0 03 00 59 00 00 00 c5 e0 03 00 95 00 00 00 1f e1 03 00 38 00 00 00 b5 e1 03 00 10 00 00 00 | ....Y...............8........... |
| 2300 | ee e1 03 00 a6 00 00 00 ff e1 03 00 92 00 00 00 a6 e2 03 00 43 00 00 00 39 e3 03 00 31 00 00 00 | ....................C...9...1... |
| 2320 | 7d e3 03 00 51 00 00 00 af e3 03 00 17 00 00 00 01 e4 03 00 11 00 00 00 19 e4 03 00 17 00 00 00 | }...Q........................... |
| 2340 | 2b e4 03 00 25 00 00 00 43 e4 03 00 18 00 00 00 69 e4 03 00 17 00 00 00 82 e4 03 00 1d 00 00 00 | +...%...C.......i............... |
| 2360 | 9a e4 03 00 21 00 00 00 b8 e4 03 00 17 00 00 00 da e4 03 00 17 00 00 00 f2 e4 03 00 b2 00 00 00 | ....!........................... |
| 2380 | 0a e5 03 00 42 00 00 00 bd e5 03 00 12 00 00 00 00 e6 03 00 b7 00 00 00 13 e6 03 00 b8 00 00 00 | ....B........................... |
| 23a0 | cb e6 03 00 44 01 00 00 84 e7 03 00 3c 01 00 00 c9 e8 03 00 c4 01 00 00 06 ea 03 00 09 00 00 00 | ....D.......<................... |
| 23c0 | cb eb 03 00 0e 00 00 00 d5 eb 03 00 16 00 00 00 e4 eb 03 00 16 00 00 00 fb eb 03 00 0d 00 00 00 | ................................ |
| 23e0 | 12 ec 03 00 0e 00 00 00 20 ec 03 00 07 00 00 00 2f ec 03 00 0e 00 00 00 37 ec 03 00 30 00 00 00 | ................/.......7...0... |
| 2400 | 46 ec 03 00 09 00 00 00 77 ec 03 00 12 00 00 00 81 ec 03 00 12 00 00 00 94 ec 03 00 11 00 00 00 | F.......w....................... |
| 2420 | a7 ec 03 00 49 00 00 00 b9 ec 03 00 49 00 00 00 03 ed 03 00 c9 00 00 00 4d ed 03 00 b3 00 00 00 | ....I.......I...........M....... |
| 2440 | 17 ee 03 00 b4 00 00 00 cb ee 03 00 36 00 00 00 80 ef 03 00 39 00 00 00 b7 ef 03 00 81 00 00 00 | ............6.......9........... |
| 2460 | f1 ef 03 00 82 00 00 00 73 f0 03 00 92 00 00 00 f6 f0 03 00 64 00 00 00 89 f1 03 00 8a 00 00 00 | ........s...........d........... |
| 2480 | ee f1 03 00 27 00 00 00 79 f2 03 00 15 00 00 00 a1 f2 03 00 5f 00 00 00 b7 f2 03 00 44 00 00 00 | ....'...y..........._.......D... |
| 24a0 | 17 f3 03 00 69 00 00 00 5c f3 03 00 92 00 00 00 c6 f3 03 00 75 00 00 00 59 f4 03 00 66 00 00 00 | ....i...\...........u...Y...f... |
| 24c0 | cf f4 03 00 75 00 00 00 36 f5 03 00 4e 00 00 00 ac f5 03 00 8c 00 00 00 fb f5 03 00 56 00 00 00 | ....u...6...N...............V... |
| 24e0 | 88 f6 03 00 76 00 00 00 df f6 03 00 73 00 00 00 56 f7 03 00 c3 00 00 00 ca f7 03 00 c0 00 00 00 | ....v.......s...V............... |
| 2500 | 8e f8 03 00 6b 00 00 00 4f f9 03 00 30 00 00 00 bb f9 03 00 7b 00 00 00 ec f9 03 00 45 00 00 00 | ....k...O...0.......{.......E... |
| 2520 | 68 fa 03 00 7f 00 00 00 ae fa 03 00 6d 00 00 00 2e fb 03 00 3d 00 00 00 9c fb 03 00 d9 00 00 00 | h...........m.......=........... |
| 2540 | da fb 03 00 a0 00 00 00 b4 fc 03 00 68 00 00 00 55 fd 03 00 9c 00 00 00 be fd 03 00 54 00 00 00 | ............h...U...........T... |
| 2560 | 5b fe 03 00 2b 00 00 00 b0 fe 03 00 21 00 00 00 dc fe 03 00 5a 00 00 00 fe fe 03 00 70 00 00 00 | [...+.......!.......Z.......p... |
| 2580 | 59 ff 03 00 4a 00 00 00 ca ff 03 00 16 00 00 00 15 00 04 00 19 00 00 00 2c 00 04 00 25 00 00 00 | Y...J...................,...%... |
| 25a0 | 46 00 04 00 62 00 00 00 6c 00 04 00 08 00 00 00 cf 00 04 00 2d 00 00 00 d8 00 04 00 14 00 00 00 | F...b...l...........-........... |
| 25c0 | 06 01 04 00 14 00 00 00 1b 01 04 00 14 00 00 00 30 01 04 00 14 00 00 00 45 01 04 00 0d 00 00 00 | ................0.......E....... |
| 25e0 | 5a 01 04 00 39 00 00 00 68 01 04 00 43 00 00 00 a2 01 04 00 0b 00 00 00 e6 01 04 00 da 00 00 00 | Z...9...h...C................... |
| 2600 | f2 01 04 00 db 00 00 00 cd 02 04 00 e0 00 00 00 a9 03 04 00 f3 00 00 00 8a 04 04 00 dc 00 00 00 | ................................ |
| 2620 | 7e 05 04 00 dd 00 00 00 5b 06 04 00 dc 00 00 00 39 07 04 00 dd 00 00 00 16 08 04 00 43 00 00 00 | ~.......[.......9...........C... |
| 2640 | f4 08 04 00 3d 00 00 00 38 09 04 00 00 01 00 00 76 09 04 00 00 01 00 00 77 0a 04 00 b3 00 00 00 | ....=...8.......v.......w....... |
| 2660 | 78 0b 04 00 0f 00 00 00 2c 0c 04 00 0b 00 00 00 3c 0c 04 00 61 00 00 00 48 0c 04 00 0a 00 00 00 | x.......,.......<...a...H....... |
| 2680 | aa 0c 04 00 0b 00 00 00 b5 0c 04 00 18 00 00 00 c1 0c 04 00 10 00 00 00 da 0c 04 00 3a 00 00 00 | ............................:... |
| 26a0 | eb 0c 04 00 12 00 00 00 26 0d 04 00 3c 00 00 00 39 0d 04 00 84 00 00 00 76 0d 04 00 14 00 00 00 | ........&...<...9.......v....... |
| 26c0 | fb 0d 04 00 4c 00 00 00 10 0e 04 00 05 00 00 00 5d 0e 04 00 15 00 00 00 63 0e 04 00 0d 00 00 00 | ....L...........].......c....... |
| 26e0 | 79 0e 04 00 b6 00 00 00 87 0e 04 00 04 00 00 00 3e 0f 04 00 bf 00 00 00 43 0f 04 00 52 00 00 00 | y...............>.......C...R... |
| 2700 | 03 10 04 00 06 00 00 00 56 10 04 00 0e 00 00 00 5d 10 04 00 10 00 00 00 6c 10 04 00 1c 00 00 00 | ........V.......].......l....... |
| 2720 | 7d 10 04 00 17 00 00 00 9a 10 04 00 2b 00 00 00 b2 10 04 00 05 00 00 00 de 10 04 00 2f 00 00 00 | }...........+.............../... |
| 2740 | e4 10 04 00 34 00 00 00 14 11 04 00 01 01 00 00 49 11 04 00 05 00 00 00 4b 12 04 00 67 00 00 00 | ....4...........I.......K...g... |
| 2760 | 51 12 04 00 07 00 00 00 b9 12 04 00 0a 00 00 00 c1 12 04 00 15 00 00 00 cc 12 04 00 19 00 00 00 | Q............................... |
| 2780 | e2 12 04 00 a4 00 00 00 fc 12 04 00 ac 00 00 00 a1 13 04 00 b2 00 00 00 4e 14 04 00 32 00 00 00 | ........................N...2... |
| 27a0 | 01 15 04 00 ab 00 00 00 34 15 04 00 0f 00 00 00 e0 15 04 00 31 00 00 00 f0 15 04 00 1d 00 00 00 | ........4...........1........... |
| 27c0 | 22 16 04 00 14 00 00 00 40 16 04 00 32 00 00 00 55 16 04 00 15 00 00 00 88 16 04 00 0a 00 00 00 | ".......@...2...U............... |
| 27e0 | 9e 16 04 00 0c 00 00 00 a9 16 04 00 11 00 00 00 b6 16 04 00 17 00 00 00 c8 16 04 00 13 00 00 00 | ................................ |
| 2800 | e0 16 04 00 19 00 00 00 f4 16 04 00 64 00 00 00 0e 17 04 00 74 00 00 00 73 17 04 00 98 00 00 00 | ............d.......t...s....... |
| 2820 | e8 17 04 00 24 00 00 00 81 18 04 00 25 00 00 00 a6 18 04 00 0d 00 00 00 cc 18 04 00 42 00 00 00 | ....$.......%...............B... |
| 2840 | da 18 04 00 16 00 00 00 1d 19 04 00 13 00 00 00 34 19 04 00 55 00 00 00 48 19 04 00 95 00 00 00 | ................4...U...H....... |
| 2860 | 9e 19 04 00 35 00 00 00 34 1a 04 00 8e 00 00 00 6a 1a 04 00 8e 00 00 00 f9 1a 04 00 68 00 00 00 | ....5...4.......j...........h... |
| 2880 | 88 1b 04 00 77 00 00 00 f1 1b 04 00 81 00 00 00 69 1c 04 00 21 00 00 00 eb 1c 04 00 22 00 00 00 | ....w...........i...!......."... |
| 28a0 | 0d 1d 04 00 2e 00 00 00 30 1d 04 00 31 00 00 00 5f 1d 04 00 7e 00 00 00 91 1d 04 00 83 00 00 00 | ........0...1..._...~........... |
| 28c0 | 10 1e 04 00 4b 00 00 00 94 1e 04 00 38 00 00 00 e0 1e 04 00 39 00 00 00 19 1f 04 00 95 00 00 00 | ....K.......8.......9........... |
| 28e0 | 53 1f 04 00 70 00 00 00 e9 1f 04 00 85 00 00 00 5a 20 04 00 51 00 00 00 e0 20 04 00 9a 00 00 00 | S...p...........Z...Q........... |
| 2900 | 32 21 04 00 9e 00 00 00 cd 21 04 00 32 00 00 00 6c 22 04 00 69 00 00 00 9f 22 04 00 7b 00 00 00 | 2!.......!..2...l"..i...."..{... |
| 2920 | 09 23 04 00 2a 00 00 00 85 23 04 00 62 00 00 00 b0 23 04 00 4b 01 00 00 13 24 04 00 a6 00 00 00 | .#..*....#..b....#..K....$...... |
| 2940 | 5f 25 04 00 89 00 00 00 06 26 04 00 af 00 00 00 90 26 04 00 88 00 00 00 40 27 04 00 31 00 00 00 | _%.......&.......&......@'..1... |
| 2960 | c9 27 04 00 2d 00 00 00 fb 27 04 00 7a 00 00 00 29 28 04 00 92 00 00 00 a4 28 04 00 b3 00 00 00 | .'..-....'..z...)(.......(...... |
| 2980 | 37 29 04 00 6d 00 00 00 eb 29 04 00 6b 00 00 00 59 2a 04 00 1f 00 00 00 c5 2a 04 00 0e 00 00 00 | 7)..m....)..k...Y*.......*...... |
| 29a0 | e5 2a 04 00 77 00 00 00 f4 2a 04 00 4b 00 00 00 6c 2b 04 00 33 00 00 00 b8 2b 04 00 39 00 00 00 | .*..w....*..K...l+..3....+..9... |
| 29c0 | ec 2b 04 00 0b 00 00 00 26 2c 04 00 6d 00 00 00 32 2c 04 00 1a 00 00 00 a0 2c 04 00 20 00 00 00 | .+......&,..m...2,.......,...... |
| 29e0 | bb 2c 04 00 25 00 00 00 dc 2c 04 00 4d 00 00 00 02 2d 04 00 4e 00 00 00 50 2d 04 00 0b 00 00 00 | .,..%....,..M....-..N...P-...... |
| 2a00 | 9f 2d 04 00 f6 00 00 00 ab 2d 04 00 2e 00 00 00 a2 2e 04 00 13 00 00 00 d1 2e 04 00 0f 00 00 00 | .-.......-...................... |
| 2a20 | e5 2e 04 00 12 00 00 00 f5 2e 04 00 71 01 00 00 08 2f 04 00 fe 00 00 00 7a 30 04 00 4e 00 00 00 | ............q..../......z0..N... |
| 2a40 | 79 31 04 00 c9 00 00 00 c8 31 04 00 13 00 00 00 92 32 04 00 19 00 00 00 a6 32 04 00 7c 00 00 00 | y1.......1.......2.......2..|... |
| 2a60 | c0 32 04 00 38 00 00 00 3d 33 04 00 3b 00 00 00 76 33 04 00 46 00 00 00 b2 33 04 00 2f 00 00 00 | .2..8...=3..;...v3..F....3../... |
| 2a80 | f9 33 04 00 19 00 00 00 29 34 04 00 12 00 00 00 43 34 04 00 14 00 00 00 56 34 04 00 22 00 00 00 | .3......)4......C4......V4.."... |
| 2aa0 | 6b 34 04 00 84 00 00 00 8e 34 04 00 26 00 00 00 13 35 04 00 24 00 00 00 3a 35 04 00 1b 00 00 00 | k4.......4..&....5..$...:5...... |
| 2ac0 | 5f 35 04 00 1d 00 00 00 7b 35 04 00 58 00 00 00 99 35 04 00 5b 00 00 00 f2 35 04 00 43 00 00 00 | _5......{5..X....5..[....5..C... |
| 2ae0 | 4e 36 04 00 56 00 00 00 92 36 04 00 43 00 00 00 e9 36 04 00 3f 00 00 00 2d 37 04 00 75 00 00 00 | N6..V....6..C....6..?...-7..u... |
| 2b00 | 6d 37 04 00 1e 00 00 00 e3 37 04 00 25 00 00 00 02 38 04 00 25 00 00 00 28 38 04 00 15 00 00 00 | m7.......7..%....8..%...(8...... |
| 2b20 | 4e 38 04 00 86 00 00 00 64 38 04 00 2e 00 00 00 eb 38 04 00 95 00 00 00 1a 39 04 00 43 00 00 00 | N8......d8.......8.......9..C... |
| 2b40 | b0 39 04 00 2b 00 00 00 f4 39 04 00 2b 00 00 00 20 3a 04 00 37 01 00 00 4c 3a 04 00 38 00 00 00 | .9..+....9..+....:..7...L:..8... |
| 2b60 | 84 3b 04 00 3b 00 00 00 bd 3b 04 00 18 00 00 00 f9 3b 04 00 16 00 00 00 12 3c 04 00 7a 00 00 00 | .;..;....;.......;.......<..z... |
| 2b80 | 29 3c 04 00 12 00 00 00 a4 3c 04 00 67 00 00 00 b7 3c 04 00 3a 00 00 00 1f 3d 04 00 3a 00 00 00 | )<.......<..g....<..:....=..:... |
| 2ba0 | 5a 3d 04 00 0c 00 00 00 95 3d 04 00 18 00 00 00 a2 3d 04 00 39 00 00 00 bb 3d 04 00 47 00 00 00 | Z=.......=.......=..9....=..G... |
| 2bc0 | f5 3d 04 00 42 00 00 00 3d 3e 04 00 4c 00 00 00 80 3e 04 00 3f 00 00 00 cd 3e 04 00 3b 00 00 00 | .=..B...=>..L....>..?....>..;... |
| 2be0 | 0d 3f 04 00 41 00 00 00 49 3f 04 00 11 01 00 00 8b 3f 04 00 12 01 00 00 9d 40 04 00 3d 00 00 00 | .?..A...I?.......?.......@..=... |
| 2c00 | b0 41 04 00 31 00 00 00 ee 41 04 00 26 01 00 00 20 42 04 00 e2 00 00 00 47 43 04 00 9f 00 00 00 | .A..1....A..&....B......GC...... |
| 2c20 | 2a 44 04 00 9f 00 00 00 ca 44 04 00 3a 00 00 00 6a 45 04 00 f8 00 00 00 a5 45 04 00 48 00 00 00 | *D.......D..:...jE.......E..H... |
| 2c40 | 9e 46 04 00 e2 00 00 00 e7 46 04 00 88 00 00 00 ca 47 04 00 31 00 00 00 53 48 04 00 06 00 00 00 | .F.......F.......G..1...SH...... |
| 2c60 | 85 48 04 00 0d 00 00 00 8c 48 04 00 0b 00 00 00 9a 48 04 00 2e 00 00 00 a6 48 04 00 67 00 00 00 | .H.......H.......H.......H..g... |
| 2c80 | d5 48 04 00 3e 00 00 00 3d 49 04 00 13 00 00 00 7c 49 04 00 ab 00 00 00 90 49 04 00 b5 00 00 00 | .H..>...=I......|I.......I...... |
| 2ca0 | 3c 4a 04 00 b5 00 00 00 f2 4a 04 00 90 00 00 00 a8 4b 04 00 30 00 00 00 39 4c 04 00 47 00 00 00 | <J.......J.......K..0...9L..G... |
| 2cc0 | 6a 4c 04 00 22 00 00 00 b2 4c 04 00 22 00 00 00 d5 4c 04 00 24 00 00 00 f8 4c 04 00 09 00 00 00 | jL.."....L.."....L..$....L...... |
| 2ce0 | 1d 4d 04 00 09 00 00 00 27 4d 04 00 92 00 00 00 31 4d 04 00 38 00 00 00 c4 4d 04 00 f2 00 00 00 | .M......'M......1M..8....M...... |
| 2d00 | fd 4d 04 00 05 00 00 00 f0 4e 04 00 0f 00 00 00 f6 4e 04 00 88 00 00 00 06 4f 04 00 bd 00 00 00 | .M.......N.......N.......O...... |
| 2d20 | 8f 4f 04 00 c2 00 00 00 4d 50 04 00 7e 00 00 00 10 51 04 00 0b 00 00 00 8f 51 04 00 0e 00 00 00 | .O......MP..~....Q.......Q...... |
| 2d40 | 9b 51 04 00 80 00 00 00 aa 51 04 00 12 00 00 00 2b 52 04 00 6a 00 00 00 3e 52 04 00 2f 00 00 00 | .Q.......Q......+R..j...>R../... |
| 2d60 | a9 52 04 00 0a 00 00 00 d9 52 04 00 f4 00 00 00 e4 52 04 00 10 00 00 00 d9 53 04 00 f7 00 00 00 | .R.......R.......R.......S...... |
| 2d80 | ea 53 04 00 d2 01 00 00 e2 54 04 00 ad 01 00 00 b5 56 04 00 dd 00 00 00 63 58 04 00 91 01 00 00 | .S.......T.......V......cX...... |
| 2da0 | 41 59 04 00 7f 00 00 00 d3 5a 04 00 af 00 00 00 53 5b 04 00 2a 03 00 00 03 5c 04 00 6b 00 00 00 | AY.......Z......S[..*....\..k... |
| 2dc0 | 2e 5f 04 00 a3 00 00 00 9a 5f 04 00 9a 00 00 00 3e 60 04 00 50 00 00 00 d9 60 04 00 81 00 00 00 | ._......._......>`..P....`...... |
| 2de0 | 2a 61 04 00 2c 00 00 00 ac 61 04 00 51 00 00 00 d9 61 04 00 7a 00 00 00 2b 62 04 00 2b 00 00 00 | *a..,....a..Q....a..z...+b..+... |
| 2e00 | a6 62 04 00 31 00 00 00 d2 62 04 00 25 00 00 00 04 63 04 00 09 00 00 00 2a 63 04 00 34 00 00 00 | .b..1....b..%....c......*c..4... |
| 2e20 | 34 63 04 00 23 00 00 00 69 63 04 00 23 00 00 00 8d 63 04 00 25 00 00 00 b1 63 04 00 11 00 00 00 | 4c..#...ic..#....c..%....c...... |
| 2e40 | d7 63 04 00 12 00 00 00 e9 63 04 00 12 00 00 00 fc 63 04 00 1e 00 00 00 0f 64 04 00 23 00 00 00 | .c.......c.......c.......d..#... |
| 2e60 | 2e 64 04 00 39 00 00 00 52 64 04 00 24 00 00 00 8c 64 04 00 2c 00 00 00 b1 64 04 00 2d 00 00 00 | .d..9...Rd..$....d..,....d..-... |
| 2e80 | de 64 04 00 1c 00 00 00 0c 65 04 00 1d 00 00 00 29 65 04 00 1e 00 00 00 47 65 04 00 0c 00 00 00 | .d.......e......)e......Ge...... |
| 2ea0 | 66 65 04 00 28 00 00 00 73 65 04 00 3a 00 00 00 9c 65 04 00 30 00 00 00 d7 65 04 00 27 00 00 00 | fe..(...se..:....e..0....e..'... |
| 2ec0 | 08 66 04 00 38 00 00 00 30 66 04 00 1d 00 00 00 69 66 04 00 13 00 00 00 87 66 04 00 0b 00 00 00 | .f..8...0f......if.......f...... |
| 2ee0 | 9b 66 04 00 28 00 00 00 a7 66 04 00 30 00 00 00 d0 66 04 00 4c 00 00 00 01 67 04 00 74 00 00 00 | .f..(....f..0....f..L....g..t... |
| 2f00 | 4e 67 04 00 11 00 00 00 c3 67 04 00 55 00 00 00 d5 67 04 00 30 00 00 00 2b 68 04 00 0f 00 00 00 | Ng.......g..U....g..0...+h...... |
| 2f20 | 5c 68 04 00 0b 00 00 00 6c 68 04 00 28 00 00 00 78 68 04 00 35 00 00 00 a1 68 04 00 0a 00 00 00 | \h......lh..(...xh..5....h...... |
| 2f40 | d7 68 04 00 56 00 00 00 e2 68 04 00 1f 00 00 00 39 69 04 00 18 00 00 00 59 69 04 00 2d 00 00 00 | .h..V....h......9i......Yi..-... |
| 2f60 | 72 69 04 00 23 00 00 00 a0 69 04 00 3f 00 00 00 c4 69 04 00 4d 00 00 00 04 6a 04 00 20 00 00 00 | ri..#....i..?....i..M....j...... |
| 2f80 | 52 6a 04 00 6d 00 00 00 73 6a 04 00 71 00 00 00 e1 6a 04 00 33 00 00 00 53 6b 04 00 61 00 00 00 | Rj..m...sj..q....j..3...Sk..a... |
| 2fa0 | 87 6b 04 00 64 00 00 00 e9 6b 04 00 63 00 00 00 4e 6c 04 00 7d 00 00 00 b2 6c 04 00 6d 00 00 00 | .k..d....k..c...Nl..}....l..m... |
| 2fc0 | 30 6d 04 00 64 00 00 00 9e 6d 04 00 31 00 00 00 03 6e 04 00 66 00 00 00 35 6e 04 00 34 00 00 00 | 0m..d....m..1....n..f...5n..4... |
| 2fe0 | 9c 6e 04 00 1b 01 00 00 d1 6e 04 00 3a 00 00 00 ed 6f 04 00 4a 00 00 00 28 70 04 00 38 00 00 00 | .n.......n..:....o..J...(p..8... |
| 3000 | 73 70 04 00 40 01 00 00 ac 70 04 00 3a 00 00 00 ed 71 04 00 4f 00 00 00 28 72 04 00 2e 00 00 00 | sp..@....p..:....q..O...(r...... |
| 3020 | 78 72 04 00 86 00 00 00 a7 72 04 00 bb 01 00 00 2e 73 04 00 06 01 00 00 ea 74 04 00 80 00 00 00 | xr.......r.......s.......t...... |
| 3040 | f1 75 04 00 bf 00 00 00 72 76 04 00 49 00 00 00 32 77 04 00 25 00 00 00 7c 77 04 00 4b 00 00 00 | .u......rv..I...2w..%...|w..K... |
| 3060 | a2 77 04 00 79 00 00 00 ee 77 04 00 d6 00 00 00 68 78 04 00 22 00 00 00 3f 79 04 00 64 00 00 00 | .w..y....w......hx.."...?y..d... |
| 3080 | 62 79 04 00 16 00 00 00 c7 79 04 00 14 00 00 00 de 79 04 00 79 00 00 00 f3 79 04 00 42 00 00 00 | by.......y.......y..y....y..B... |
| 30a0 | 6d 7a 04 00 1c 00 00 00 b0 7a 04 00 1d 00 00 00 cd 7a 04 00 33 00 00 00 eb 7a 04 00 a7 00 00 00 | mz.......z.......z..3....z...... |
| 30c0 | 1f 7b 04 00 c1 00 00 00 c7 7b 04 00 32 00 00 00 89 7c 04 00 05 00 00 00 bc 7c 04 00 10 00 00 00 | .{.......{..2....|.......|...... |
| 30e0 | c2 7c 04 00 5e 00 00 00 d3 7c 04 00 08 00 00 00 32 7d 04 00 dc 00 00 00 3b 7d 04 00 10 00 00 00 | .|..^....|......2}......;}...... |
| 3100 | 18 7e 04 00 5d 00 00 00 29 7e 04 00 0d 00 00 00 87 7e 04 00 21 00 00 00 95 7e 04 00 21 00 00 00 | .~..]...)~.......~..!....~..!... |
| 3120 | b7 7e 04 00 d4 00 00 00 d9 7e 04 00 14 00 00 00 ae 7f 04 00 38 00 00 00 c3 7f 04 00 a3 00 00 00 | .~.......~..........8........... |
| 3140 | fc 7f 04 00 a7 00 00 00 a0 80 04 00 23 00 00 00 48 81 04 00 91 00 00 00 6c 81 04 00 59 00 00 00 | ............#...H.......l...Y... |
| 3160 | fe 81 04 00 a6 01 00 00 58 82 04 00 ca 00 00 00 ff 83 04 00 75 01 00 00 ca 84 04 00 70 01 00 00 | ........X...........u.......p... |
| 3180 | 40 86 04 00 63 01 00 00 b1 87 04 00 07 00 00 00 15 89 04 00 15 00 00 00 1d 89 04 00 27 00 00 00 | @...c.......................'... |
| 31a0 | 33 89 04 00 26 00 00 00 5b 89 04 00 12 00 00 00 82 89 04 00 0f 00 00 00 95 89 04 00 16 00 00 00 | 3...&...[....................... |
| 31c0 | a5 89 04 00 2f 00 00 00 bc 89 04 00 2f 00 00 00 ec 89 04 00 77 00 00 00 1c 8a 04 00 17 00 00 00 | ..../......./.......w........... |
| 31e0 | 94 8a 04 00 92 00 00 00 ac 8a 04 00 10 00 00 00 3f 8b 04 00 51 00 00 00 50 8b 04 00 08 00 00 00 | ................?...Q...P....... |
| 3200 | a2 8b 04 00 6c 00 00 00 ab 8b 04 00 bf 00 00 00 18 8c 04 00 58 00 00 00 d8 8c 04 00 e0 00 00 00 | ....l...............X........... |
| 3220 | 31 8d 04 00 3d 00 00 00 12 8e 04 00 3b 00 00 00 50 8e 04 00 3c 00 00 00 8c 8e 04 00 3e 00 00 00 | 1...=.......;...P...<.......>... |
| 3240 | c9 8e 04 00 3c 00 00 00 08 8f 04 00 3d 00 00 00 45 8f 04 00 15 00 00 00 83 8f 04 00 34 00 00 00 | ....<.......=...E...........4... |
| 3260 | 99 8f 04 00 36 00 00 00 ce 8f 04 00 33 00 00 00 05 90 04 00 a3 00 00 00 39 90 04 00 08 00 00 00 | ....6.......3...........9....... |
| 3280 | dd 90 04 00 1b 00 00 00 e6 90 04 00 09 00 00 00 02 91 04 00 c5 00 00 00 0c 91 04 00 2e 00 00 00 | ................................ |
| 32a0 | d2 91 04 00 0f 00 00 00 01 92 04 00 0f 00 00 00 11 92 04 00 31 00 00 00 21 92 04 00 2a 00 00 00 | ....................1...!...*... |
| 32c0 | 53 92 04 00 19 00 00 00 7e 92 04 00 0b 00 00 00 98 92 04 00 40 00 00 00 a4 92 04 00 28 00 00 00 | S.......~...........@.......(... |
| 32e0 | e5 92 04 00 1c 00 00 00 0e 93 04 00 1a 00 00 00 2b 93 04 00 8e 00 00 00 46 93 04 00 08 00 00 00 | ................+.......F....... |
| 3300 | d5 93 04 00 c1 00 00 00 de 93 04 00 9a 00 00 00 a0 94 04 00 dc 00 00 00 3b 95 04 00 a5 01 00 00 | ........................;....... |
| 3320 | 18 96 04 00 03 00 00 00 be 97 04 00 98 00 00 00 c2 97 04 00 46 01 00 00 5b 98 04 00 0a 00 00 00 | ....................F...[....... |
| 3340 | a2 99 04 00 0a 00 00 00 ad 99 04 00 39 00 00 00 b8 99 04 00 0d 00 00 00 f2 99 04 00 08 00 00 00 | ............9................... |
| 3360 | 00 9a 04 00 0f 00 00 00 09 9a 04 00 2d 00 00 00 19 9a 04 00 e5 00 00 00 47 9a 04 00 ea 00 00 00 | ............-...........G....... |
| 3380 | 2d 9b 04 00 0a 00 00 00 18 9c 04 00 57 01 00 00 23 9c 04 00 31 01 00 00 7b 9d 04 00 0a 00 00 00 | -...........W...#...1...{....... |
| 33a0 | ad 9e 04 00 69 01 00 00 b8 9e 04 00 26 00 00 00 22 a0 04 00 05 00 00 00 49 a0 04 00 71 00 00 00 | ....i.......&...".......I...q... |
| 33c0 | 4f a0 04 00 5c 00 00 00 c1 a0 04 00 90 00 00 00 1e a1 04 00 33 00 00 00 af a1 04 00 33 00 00 00 | O...\...............3.......3... |
| 33e0 | e3 a1 04 00 51 00 00 00 17 a2 04 00 95 00 00 00 69 a2 04 00 09 00 00 00 ff a2 04 00 c1 00 00 00 | ....Q...........i............... |
| 3400 | 09 a3 04 00 53 00 00 00 cb a3 04 00 08 00 00 00 1f a4 04 00 15 00 00 00 28 a4 04 00 15 00 00 00 | ....S...................(....... |
| 3420 | 3e a4 04 00 16 00 00 00 54 a4 04 00 23 00 00 00 6b a4 04 00 14 00 00 00 8f a4 04 00 13 00 00 00 | >.......T...#...k............... |
| 3440 | a4 a4 04 00 0d 00 00 00 b8 a4 04 00 0e 00 00 00 c6 a4 04 00 b0 00 00 00 d5 a4 04 00 b0 00 00 00 | ................................ |
| 3460 | 86 a5 04 00 e9 00 00 00 37 a6 04 00 0f 00 00 00 21 a7 04 00 4f 01 00 00 31 a7 04 00 20 01 00 00 | ........7.......!...O...1....... |
| 3480 | 81 a8 04 00 23 01 00 00 a2 a9 04 00 4d 00 00 00 c6 aa 04 00 95 00 00 00 14 ab 04 00 89 00 00 00 | ....#.......M................... |
| 34a0 | aa ab 04 00 22 00 00 00 34 ac 04 00 0f 00 00 00 57 ac 04 00 0f 00 00 00 67 ac 04 00 28 00 00 00 | ...."...4.......W.......g...(... |
| 34c0 | 77 ac 04 00 78 01 00 00 a0 ac 04 00 60 00 00 00 19 ae 04 00 1d 01 00 00 7a ae 04 00 0b 00 00 00 | w...x.......`...........z....... |
| 34e0 | 98 af 04 00 53 00 00 00 a4 af 04 00 cd 00 00 00 f8 af 04 00 ca 00 00 00 c6 b0 04 00 dd 00 00 00 | ....S........................... |
| 3500 | 91 b1 04 00 f4 00 00 00 6f b2 04 00 60 00 00 00 64 b3 04 00 98 00 00 00 c5 b3 04 00 98 00 00 00 | ........o...`...d............... |
| 3520 | 5e b4 04 00 00 01 00 00 f7 b4 04 00 30 00 00 00 f8 b5 04 00 aa 00 00 00 29 b6 04 00 05 00 00 00 | ^...........0...........)....... |
| 3540 | d4 b6 04 00 0e 00 00 00 da b6 04 00 2a 02 00 00 e9 b6 04 00 0f 00 00 00 14 b9 04 00 0b 00 00 00 | ............*................... |
| 3560 | 24 b9 04 00 1f 00 00 00 30 b9 04 00 33 00 00 00 50 b9 04 00 73 00 00 00 84 b9 04 00 6e 00 00 00 | $.......0...3...P...s.......n... |
| 3580 | f8 b9 04 00 87 00 00 00 67 ba 04 00 2e 00 00 00 ef ba 04 00 29 00 00 00 1e bb 04 00 b1 00 00 00 | ........g...........)........... |
| 35a0 | 48 bb 04 00 17 00 00 00 fa bb 04 00 a7 00 00 00 12 bc 04 00 21 00 00 00 ba bc 04 00 a5 00 00 00 | H...................!........... |
| 35c0 | dc bc 04 00 90 00 00 00 82 bd 04 00 26 00 00 00 13 be 04 00 1a 00 00 00 3a be 04 00 44 00 00 00 | ............&...........:...D... |
| 35e0 | 55 be 04 00 48 00 00 00 9a be 04 00 2a 00 00 00 e3 be 04 00 6e 00 00 00 0e bf 04 00 90 00 00 00 | U...H.......*.......n........... |
| 3600 | 7d bf 04 00 cf 00 00 00 0e c0 04 00 0f 00 00 00 de c0 04 00 0c 00 00 00 ee c0 04 00 69 01 00 00 | }...........................i... |
| 3620 | fb c0 04 00 93 00 00 00 65 c2 04 00 0f 00 00 00 f9 c2 04 00 f1 00 00 00 09 c3 04 00 10 00 00 00 | ........e....................... |
| 3640 | fb c3 04 00 3e 00 00 00 0c c4 04 00 81 00 00 00 4b c4 04 00 8b 00 00 00 cd c4 04 00 bd 00 00 00 | ....>...........K............... |
| 3660 | 59 c5 04 00 30 01 00 00 17 c6 04 00 96 00 00 00 48 c7 04 00 8a 00 00 00 df c7 04 00 69 01 00 00 | Y...0...........H...........i... |
| 3680 | 6a c8 04 00 0c 00 00 00 d4 c9 04 00 5a 00 00 00 e1 c9 04 00 3b 01 00 00 3c ca 04 00 3c 01 00 00 | j...........Z.......;...<...<... |
| 36a0 | 78 cb 04 00 db 00 00 00 b5 cc 04 00 52 00 00 00 91 cd 04 00 2f 00 00 00 e4 cd 04 00 ac 00 00 00 | x...........R......./........... |
| 36c0 | 14 ce 04 00 09 00 00 00 c1 ce 04 00 eb 00 00 00 cb ce 04 00 d8 00 00 00 b7 cf 04 00 5c 00 00 00 | ............................\... |
| 36e0 | 90 d0 04 00 63 00 00 00 ed d0 04 00 22 01 00 00 51 d1 04 00 4a 01 00 00 74 d2 04 00 af 00 00 00 | ....c......."...Q...J...t....... |
| 3700 | bf d3 04 00 30 00 00 00 6f d4 04 00 4b 00 00 00 a0 d4 04 00 66 00 00 00 ec d4 04 00 52 00 00 00 | ....0...o...K.......f.......R... |
| 3720 | 53 d5 04 00 49 00 00 00 a6 d5 04 00 1b 01 00 00 f0 d5 04 00 bb 00 00 00 0c d7 04 00 60 00 00 00 | S...I.......................`... |
| 3740 | c8 d7 04 00 62 00 00 00 29 d8 04 00 52 01 00 00 8c d8 04 00 43 00 00 00 df d9 04 00 f3 00 00 00 | ....b...)...R.......C........... |
| 3760 | 23 da 04 00 bd 00 00 00 17 db 04 00 bc 00 00 00 d5 db 04 00 da 00 00 00 92 dc 04 00 77 00 00 00 | #...........................w... |
| 3780 | 6d dd 04 00 e7 00 00 00 e5 dd 04 00 af 00 00 00 cd de 04 00 e8 00 00 00 7d df 04 00 e3 00 00 00 | m.......................}....... |
| 37a0 | 66 e0 04 00 76 00 00 00 4a e1 04 00 3c 01 00 00 c1 e1 04 00 3a 01 00 00 fe e2 04 00 42 01 00 00 | f...v...J...<.......:.......B... |
| 37c0 | 39 e4 04 00 97 00 00 00 7c e5 04 00 a2 00 00 00 14 e6 04 00 a6 00 00 00 b7 e6 04 00 7b 00 00 00 | 9.......|...................{... |
| 37e0 | 5e e7 04 00 d3 00 00 00 da e7 04 00 62 00 00 00 ae e8 04 00 0e 00 00 00 11 e9 04 00 cc 00 00 00 | ^...........b................... |
| 3800 | 20 e9 04 00 32 00 00 00 ed e9 04 00 11 00 00 00 20 ea 04 00 14 01 00 00 32 ea 04 00 b9 00 00 00 | ....2...................2....... |
| 3820 | 47 eb 04 00 bd 00 00 00 01 ec 04 00 0f 00 00 00 bf ec 04 00 06 00 00 00 cf ec 04 00 06 00 00 00 | G............................... |
| 3840 | d6 ec 04 00 5d 02 00 00 dd ec 04 00 5c 02 00 00 3b ef 04 00 0e 00 00 00 98 f1 04 00 80 01 00 00 | ....].......\...;............... |
| 3860 | a7 f1 04 00 23 01 00 00 28 f3 04 00 0c 01 00 00 4c f4 04 00 8b 00 00 00 59 f5 04 00 06 00 00 00 | ....#...(.......L.......Y....... |
| 3880 | e5 f5 04 00 59 00 00 00 ec f5 04 00 59 00 00 00 46 f6 04 00 07 00 00 00 a0 f6 04 00 15 00 00 00 | ....Y.......Y...F............... |
| 38a0 | a8 f6 04 00 44 00 00 00 be f6 04 00 44 00 00 00 03 f7 04 00 0f 00 00 00 48 f7 04 00 4d 00 00 00 | ....D.......D...........H...M... |
| 38c0 | 58 f7 04 00 3d 00 00 00 a6 f7 04 00 10 00 00 00 e4 f7 04 00 45 00 00 00 f5 f7 04 00 58 00 00 00 | X...=...............E.......X... |
| 38e0 | 3b f8 04 00 59 00 00 00 94 f8 04 00 7c 00 00 00 ee f8 04 00 ac 00 00 00 6b f9 04 00 89 00 00 00 | ;...Y.......|...........k....... |
| 3900 | 18 fa 04 00 8a 00 00 00 a2 fa 04 00 86 00 00 00 2d fb 04 00 23 00 00 00 b4 fb 04 00 0e 00 00 00 | ................-...#........... |
| 3920 | d8 fb 04 00 26 00 00 00 e7 fb 04 00 2d 00 00 00 0e fc 04 00 2e 00 00 00 3c fc 04 00 2d 00 00 00 | ....&.......-...........<...-... |
| 3940 | 6b fc 04 00 0f 00 00 00 99 fc 04 00 1d 01 00 00 a9 fc 04 00 19 01 00 00 c7 fd 04 00 1f 01 00 00 | k............................... |
| 3960 | e1 fe 04 00 07 00 00 00 01 00 05 00 06 00 00 00 09 00 05 00 17 00 00 00 10 00 05 00 0e 00 00 00 | ................................ |
| 3980 | 28 00 05 00 25 00 00 00 37 00 05 00 0e 00 00 00 5d 00 05 00 11 00 00 00 6c 00 05 00 0f 00 00 00 | (...%...7.......].......l....... |
| 39a0 | 7e 00 05 00 10 00 00 00 8e 00 05 00 07 00 00 00 9f 00 05 00 0e 00 00 00 a7 00 05 00 06 00 00 00 | ~............................... |
| 39c0 | b6 00 05 00 d0 00 00 00 bd 00 05 00 2c 00 00 00 8e 01 05 00 5c 00 00 00 bb 01 05 00 53 00 00 00 | ............,.......\.......S... |
| 39e0 | 18 02 05 00 1b 00 00 00 6c 02 05 00 57 00 00 00 88 02 05 00 2b 00 00 00 e0 02 05 00 08 00 00 00 | ........l...W.......+........... |
| 3a00 | 0c 03 05 00 13 00 00 00 15 03 05 00 22 00 00 00 29 03 05 00 1a 00 00 00 4c 03 05 00 0b 00 00 00 | ............"...).......L....... |
| 3a20 | 67 03 05 00 0b 00 00 00 73 03 05 00 11 00 00 00 7f 03 05 00 08 00 00 00 91 03 05 00 1a 00 00 00 | g.......s....................... |
| 3a40 | 9a 03 05 00 87 00 00 00 b5 03 05 00 6d 00 00 00 3d 04 05 00 17 00 00 00 ab 04 05 00 07 00 00 00 | ............m...=............... |
| 3a60 | c3 04 05 00 9c 00 00 00 cb 04 05 00 24 00 00 00 68 05 05 00 c5 00 00 00 8d 05 05 00 47 01 00 00 | ............$...h...........G... |
| 3a80 | 53 06 05 00 14 00 00 00 9b 07 05 00 0d 00 00 00 b0 07 05 00 85 00 00 00 be 07 05 00 0c 00 00 00 | S............................... |
| 3aa0 | 44 08 05 00 3e 00 00 00 51 08 05 00 78 00 00 00 90 08 05 00 3c 00 00 00 09 09 05 00 23 00 00 00 | D...>...Q...x.......<.......#... |
| 3ac0 | 46 09 05 00 df 00 00 00 6a 09 05 00 34 00 00 00 4a 0a 05 00 4d 00 00 00 7f 0a 05 00 3e 00 00 00 | F.......j...4...J...M.......>... |
| 3ae0 | cd 0a 05 00 64 00 00 00 0c 0b 05 00 db 00 00 00 71 0b 05 00 3b 00 00 00 4d 0c 05 00 28 00 00 00 | ....d...........q...;...M...(... |
| 3b00 | 89 0c 05 00 18 00 00 00 b2 0c 05 00 12 00 00 00 cb 0c 05 00 3f 00 00 00 de 0c 05 00 04 00 00 00 | ....................?........... |
| 3b20 | 1e 0d 05 00 11 00 00 00 23 0d 05 00 11 00 00 00 35 0d 05 00 0a 00 00 00 47 0d 05 00 2a 00 00 00 | ........#.......5.......G...*... |
| 3b40 | 52 0d 05 00 10 00 00 00 7d 0d 05 00 09 00 00 00 8e 0d 05 00 30 00 00 00 98 0d 05 00 08 00 00 00 | R.......}...........0........... |
| 3b60 | c9 0d 05 00 05 01 00 00 d2 0d 05 00 1e 00 00 00 d8 0e 05 00 13 00 00 00 f7 0e 05 00 c5 00 00 00 | ................................ |
| 3b80 | 0b 0f 05 00 6a 00 00 00 d1 0f 05 00 c0 00 00 00 3c 10 05 00 25 00 00 00 fd 10 05 00 25 00 00 00 | ....j...........<...%.......%... |
| 3ba0 | 23 11 05 00 03 00 00 00 49 11 05 00 d3 00 00 00 4d 11 05 00 a8 00 00 00 21 12 05 00 90 01 00 00 | #.......I.......M.......!....... |
| 3bc0 | ca 12 05 00 d4 01 00 00 5b 14 05 00 23 01 00 00 30 16 05 00 2a 00 00 00 54 17 05 00 0a 00 00 00 | ........[...#...0...*...T....... |
| 3be0 | 7f 17 05 00 26 00 00 00 8a 17 05 00 0a 00 00 00 b1 17 05 00 96 01 00 00 bc 17 05 00 05 00 00 00 | ....&........................... |
| 3c00 | 53 19 05 00 05 00 00 00 59 19 05 00 2b 00 00 00 5f 19 05 00 02 00 00 00 8b 19 05 00 0a 00 00 00 | S.......Y...+..._............... |
| 3c20 | 8e 19 05 00 53 00 00 00 99 19 05 00 1d 00 00 00 ed 19 05 00 25 00 00 00 0b 1a 05 00 18 00 00 00 | ....S...............%........... |
| 3c40 | 31 1a 05 00 19 00 00 00 4a 1a 05 00 19 00 00 00 64 1a 05 00 33 00 00 00 7e 1a 05 00 33 00 00 00 | 1.......J.......d...3...~...3... |
| 3c60 | b2 1a 05 00 ea 00 00 00 e6 1a 05 00 2b 00 00 00 d1 1b 05 00 4d 00 00 00 fd 1b 05 00 15 00 00 00 | ............+.......M........... |
| 3c80 | 4b 1c 05 00 14 02 00 00 61 1c 05 00 34 00 00 00 76 1e 05 00 33 00 00 00 ab 1e 05 00 36 00 00 00 | K.......a...4...v...3.......6... |
| 3ca0 | df 1e 05 00 34 00 00 00 16 1f 05 00 2d 00 00 00 4b 1f 05 00 27 00 00 00 79 1f 05 00 1b 00 00 00 | ....4.......-...K...'...y....... |
| 3cc0 | a1 1f 05 00 38 00 00 00 bd 1f 05 00 38 00 00 00 f6 1f 05 00 06 00 00 00 2f 20 05 00 04 00 00 00 | ....8.......8.........../....... |
| 3ce0 | 36 20 05 00 05 00 00 00 3b 20 05 00 11 00 00 00 41 20 05 00 19 00 00 00 53 20 05 00 1d 00 00 00 | 6.......;.......A.......S....... |
| 3d00 | 6d 20 05 00 19 00 00 00 8b 20 05 00 41 00 00 00 a5 20 05 00 11 00 00 00 e7 20 05 00 12 00 00 00 | m...........A................... |
| 3d20 | f9 20 05 00 06 00 00 00 0c 21 05 00 0b 00 00 00 13 21 05 00 f7 00 00 00 1f 21 05 00 f9 00 00 00 | .........!.......!.......!...... |
| 3d40 | 17 22 05 00 24 01 00 00 11 23 05 00 39 00 00 00 36 24 05 00 05 00 00 00 70 24 05 00 19 00 00 00 | ."..$....#..9...6$......p$...... |
| 3d60 | 76 24 05 00 04 00 00 00 90 24 05 00 1b 00 00 00 95 24 05 00 25 00 00 00 b1 24 05 00 2d 00 00 00 | v$.......$.......$..%....$..-... |
| 3d80 | d7 24 05 00 2e 00 00 00 05 25 05 00 0c 00 00 00 34 25 05 00 0a 00 00 00 41 25 05 00 7a 00 00 00 | .$.......%......4%......A%..z... |
| 3da0 | 4c 25 05 00 50 00 00 00 c7 25 05 00 0b 00 00 00 18 26 05 00 76 00 00 00 24 26 05 00 7c 00 00 00 | L%..P....%.......&..v...$&..|... |
| 3dc0 | 9b 26 05 00 04 00 00 00 18 27 05 00 10 00 00 00 1d 27 05 00 15 00 00 00 2e 27 05 00 16 00 00 00 | .&.......'.......'.......'...... |
| 3de0 | 44 27 05 00 20 00 00 00 5b 27 05 00 1b 00 00 00 7c 27 05 00 0e 00 00 00 98 27 05 00 16 00 00 00 | D'......['......|'.......'...... |
| 3e00 | a7 27 05 00 11 00 00 00 be 27 05 00 14 00 00 00 d0 27 05 00 87 00 00 00 e5 27 05 00 39 00 00 00 | .'.......'.......'.......'..9... |
| 3e20 | 6d 28 05 00 3a 00 00 00 a7 28 05 00 3a 00 00 00 e2 28 05 00 ec 00 00 00 1d 29 05 00 14 00 00 00 | m(..:....(..:....(.......)...... |
| 3e40 | 0a 2a 05 00 1f 00 00 00 1f 2a 05 00 25 00 00 00 3f 2a 05 00 0c 00 00 00 65 2a 05 00 3e 00 00 00 | .*.......*..%...?*......e*..>... |
| 3e60 | 72 2a 05 00 0c 00 00 00 b1 2a 05 00 0a 00 00 00 be 2a 05 00 54 00 00 00 c9 2a 05 00 0b 00 00 00 | r*.......*.......*..T....*...... |
| 3e80 | 1e 2b 05 00 0c 00 00 00 2a 2b 05 00 05 00 00 00 37 2b 05 00 1a 00 00 00 3d 2b 05 00 16 00 00 00 | .+......*+......7+......=+...... |
| 3ea0 | 58 2b 05 00 14 00 00 00 6f 2b 05 00 1c 00 00 00 84 2b 05 00 75 00 00 00 a1 2b 05 00 07 01 00 00 | X+......o+.......+..u....+...... |
| 3ec0 | 17 2c 05 00 78 01 00 00 1f 2d 05 00 45 00 00 00 98 2e 05 00 39 00 00 00 de 2e 05 00 ec 00 00 00 | .,..x....-..E.......9........... |
| 3ee0 | 18 2f 05 00 e6 00 00 00 05 30 05 00 4a 00 00 00 ec 30 05 00 57 00 00 00 37 31 05 00 69 00 00 00 | ./.......0..J....0..W...71..i... |
| 3f00 | 8f 31 05 00 d2 00 00 00 f9 31 05 00 c2 00 00 00 cc 32 05 00 b8 00 00 00 8f 33 05 00 98 00 00 00 | .1.......1.......2.......3...... |
| 3f20 | 48 34 05 00 8d 00 00 00 e1 34 05 00 93 00 00 00 6f 35 05 00 b5 00 00 00 03 36 05 00 65 00 00 00 | H4.......4......o5.......6..e... |
| 3f40 | b9 36 05 00 ff 00 00 00 1f 37 05 00 7f 00 00 00 1f 38 05 00 c3 00 00 00 9f 38 05 00 c3 00 00 00 | .6.......7.......8.......8...... |
| 3f60 | 63 39 05 00 bf 00 00 00 27 3a 05 00 bf 00 00 00 e7 3a 05 00 cc 00 00 00 a7 3b 05 00 cc 00 00 00 | c9......':.......:.......;...... |
| 3f80 | 74 3c 05 00 d0 00 00 00 41 3d 05 00 d0 00 00 00 12 3e 05 00 83 00 00 00 e3 3e 05 00 5a 00 00 00 | t<......A=.......>.......>..Z... |
| 3fa0 | 67 3f 05 00 69 00 00 00 c2 3f 05 00 0d 02 00 00 2c 40 05 00 b8 00 00 00 3a 42 05 00 22 00 00 00 | g?..i....?......,@......:B.."... |
| 3fc0 | f3 42 05 00 a4 00 00 00 16 43 05 00 b1 01 00 00 bb 43 05 00 ad 00 00 00 6d 45 05 00 6f 00 00 00 | .B.......C.......C......mE..o... |
| 3fe0 | 1b 46 05 00 e9 00 00 00 8b 46 05 00 89 00 00 00 75 47 05 00 ae 00 00 00 ff 47 05 00 38 01 00 00 | .F.......F......uG.......G..8... |
| 4000 | ae 48 05 00 46 01 00 00 e7 49 05 00 5f 01 00 00 2e 4b 05 00 f0 00 00 00 8e 4c 05 00 57 00 00 00 | .H..F....I.._....K.......L..W... |
| 4020 | 7f 4d 05 00 83 00 00 00 d7 4d 05 00 32 00 00 00 5b 4e 05 00 25 01 00 00 8e 4e 05 00 6c 00 00 00 | .M.......M..2...[N..%....N..l... |
| 4040 | b4 4f 05 00 6a 01 00 00 21 50 05 00 95 00 00 00 8c 51 05 00 5d 00 00 00 22 52 05 00 9b 00 00 00 | .O..j...!P.......Q..]..."R...... |
| 4060 | 80 52 05 00 6c 00 00 00 1c 53 05 00 73 00 00 00 89 53 05 00 2a 00 00 00 fd 53 05 00 78 00 00 00 | .R..l....S..s....S..*....S..x... |
| 4080 | 28 54 05 00 a3 00 00 00 a1 54 05 00 94 00 00 00 45 55 05 00 93 00 00 00 da 55 05 00 51 00 00 00 | (T.......T......EU.......U..Q... |
| 40a0 | 6e 56 05 00 92 00 00 00 c0 56 05 00 c0 00 00 00 53 57 05 00 c4 00 00 00 14 58 05 00 bb 00 00 00 | nV.......V......SW.......X...... |
| 40c0 | d9 58 05 00 ba 00 00 00 95 59 05 00 bd 00 00 00 50 5a 05 00 b2 00 00 00 0e 5b 05 00 97 00 00 00 | .X.......Y......PZ.......[...... |
| 40e0 | c1 5b 05 00 a0 00 00 00 59 5c 05 00 b5 00 00 00 fa 5c 05 00 b9 00 00 00 b0 5d 05 00 55 00 00 00 | .[......Y\.......\.......]..U... |
| 4100 | 6a 5e 05 00 6e 00 00 00 c0 5e 05 00 a6 00 00 00 2f 5f 05 00 a7 00 00 00 d6 5f 05 00 ac 00 00 00 | j^..n....^....../_......._...... |
| 4120 | 7e 60 05 00 79 00 00 00 2b 61 05 00 74 00 00 00 a5 61 05 00 73 00 00 00 1a 62 05 00 68 00 00 00 | ~`..y...+a..t....a..s....b..h... |
| 4140 | 8e 62 05 00 42 01 00 00 f7 62 05 00 d4 00 00 00 3a 64 05 00 d1 00 00 00 0f 65 05 00 b3 00 00 00 | .b..B....b......:d.......e...... |
| 4160 | e1 65 05 00 38 00 00 00 95 66 05 00 87 00 00 00 ce 66 05 00 8f 00 00 00 56 67 05 00 79 00 00 00 | .e..8....f.......f......Vg..y... |
| 4180 | e6 67 05 00 6f 00 00 00 60 68 05 00 97 00 00 00 d0 68 05 00 8a 00 00 00 68 69 05 00 a3 00 00 00 | .g..o...`h.......h......hi...... |
| 41a0 | f3 69 05 00 60 00 00 00 97 6a 05 00 66 00 00 00 f8 6a 05 00 ab 00 00 00 5f 6b 05 00 45 00 00 00 | .i..`....j..f....j......_k..E... |
| 41c0 | 0b 6c 05 00 d3 00 00 00 51 6c 05 00 d3 00 00 00 25 6d 05 00 8e 00 00 00 f9 6d 05 00 61 00 00 00 | .l......Ql......%m.......m..a... |
| 41e0 | 88 6e 05 00 7f 00 00 00 ea 6e 05 00 69 01 00 00 6a 6f 05 00 9d 01 00 00 d4 70 05 00 9e 01 00 00 | .n.......n..i...jo.......p...... |
| 4200 | 72 72 05 00 b6 00 00 00 11 74 05 00 cd 00 00 00 c8 74 05 00 bf 00 00 00 96 75 05 00 b9 00 00 00 | rr.......t.......t.......u...... |
| 4220 | 56 76 05 00 a8 00 00 00 10 77 05 00 5f 00 00 00 b9 77 05 00 e5 00 00 00 19 78 05 00 55 00 00 00 | Vv.......w.._....w.......x..U... |
| 4240 | ff 78 05 00 69 00 00 00 55 79 05 00 74 00 00 00 bf 79 05 00 57 01 00 00 34 7a 05 00 8a 00 00 00 | .x..i...Uy..t....y..W...4z...... |
| 4260 | 8c 7b 05 00 9b 00 00 00 17 7c 05 00 8d 00 00 00 b3 7c 05 00 74 00 00 00 41 7d 05 00 97 00 00 00 | .{.......|.......|..t...A}...... |
| 4280 | b6 7d 05 00 5c 00 00 00 4e 7e 05 00 8e 00 00 00 ab 7e 05 00 92 00 00 00 3a 7f 05 00 69 00 00 00 | .}..\...N~.......~......:...i... |
| 42a0 | cd 7f 05 00 6d 00 00 00 37 80 05 00 db 00 00 00 a5 80 05 00 74 01 00 00 81 81 05 00 55 00 00 00 | ....m...7...........t.......U... |
| 42c0 | f6 82 05 00 87 00 00 00 4c 83 05 00 3e 00 00 00 d4 83 05 00 d5 00 00 00 13 84 05 00 91 00 00 00 | ........L...>................... |
| 42e0 | e9 84 05 00 bf 00 00 00 7b 85 05 00 37 01 00 00 3b 86 05 00 55 01 00 00 73 87 05 00 55 00 00 00 | ........{...7...;...U...s...U... |
| 4300 | c9 88 05 00 2c 00 00 00 1f 89 05 00 21 00 00 00 4c 89 05 00 9d 00 00 00 6e 89 05 00 1e 00 00 00 | ....,.......!...L.......n....... |
| 4320 | 0c 8a 05 00 09 00 00 00 2b 8a 05 00 34 00 00 00 35 8a 05 00 1a 00 00 00 6a 8a 05 00 b7 00 00 00 | ........+...4...5.......j....... |
| 4340 | 85 8a 05 00 40 00 00 00 3d 8b 05 00 31 00 00 00 7e 8b 05 00 80 00 00 00 b0 8b 05 00 43 00 00 00 | ....@...=...1...~...........C... |
| 4360 | 31 8c 05 00 38 00 00 00 75 8c 05 00 2c 00 00 00 ae 8c 05 00 9f 00 00 00 db 8c 05 00 58 01 00 00 | 1...8...u...,...............X... |
| 4380 | 7b 8d 05 00 7e 00 00 00 d4 8e 05 00 a3 00 00 00 53 8f 05 00 a4 00 00 00 f7 8f 05 00 55 00 00 00 | {...~...........S...........U... |
| 43a0 | 9c 90 05 00 3a 00 00 00 f2 90 05 00 39 00 00 00 2d 91 05 00 70 00 00 00 67 91 05 00 70 00 00 00 | ....:.......9...-...p...g...p... |
| 43c0 | d8 91 05 00 4e 00 00 00 49 92 05 00 3b 00 00 00 98 92 05 00 6b 01 00 00 d4 92 05 00 4a 00 00 00 | ....N...I...;.......k.......J... |
| 43e0 | 40 94 05 00 b5 00 00 00 8b 94 05 00 71 00 00 00 41 95 05 00 c2 00 00 00 b3 95 05 00 67 00 00 00 | @...........q...A...........g... |
| 4400 | 76 96 05 00 70 00 00 00 de 96 05 00 dd 00 00 00 4f 97 05 00 dc 00 00 00 2d 98 05 00 4a 00 00 00 | v...p...........O.......-...J... |
| 4420 | 0a 99 05 00 4b 00 00 00 55 99 05 00 4d 00 00 00 a1 99 05 00 32 00 00 00 ef 99 05 00 6f 00 00 00 | ....K...U...M.......2.......o... |
| 4440 | 22 9a 05 00 68 00 00 00 92 9a 05 00 e3 00 00 00 fb 9a 05 00 01 03 00 00 df 9b 05 00 2c 00 00 00 | "...h.......................,... |
| 4460 | e1 9e 05 00 bc 01 00 00 0e 9f 05 00 da 00 00 00 cb a0 05 00 8e 00 00 00 a6 a1 05 00 d0 00 00 00 | ................................ |
| 4480 | 35 a2 05 00 81 00 00 00 06 a3 05 00 b0 01 00 00 88 a3 05 00 94 00 00 00 39 a5 05 00 f7 00 00 00 | 5.......................9....... |
| 44a0 | ce a5 05 00 49 00 00 00 c6 a6 05 00 56 02 00 00 10 a7 05 00 85 00 00 00 67 a9 05 00 08 01 00 00 | ....I.......V...........g....... |
| 44c0 | ed a9 05 00 1d 02 00 00 f6 aa 05 00 c5 00 00 00 14 ad 05 00 5d 00 00 00 da ad 05 00 5b 00 00 00 | ....................].......[... |
| 44e0 | 38 ae 05 00 46 00 00 00 94 ae 05 00 5b 00 00 00 db ae 05 00 b4 00 00 00 37 af 05 00 33 00 00 00 | 8...F.......[...........7...3... |
| 4500 | ec af 05 00 60 00 00 00 20 b0 05 00 fe 00 00 00 81 b0 05 00 61 00 00 00 80 b1 05 00 9d 00 00 00 | ....`...............a........... |
| 4520 | e2 b1 05 00 23 01 00 00 80 b2 05 00 9c 00 00 00 a4 b3 05 00 13 01 00 00 41 b4 05 00 bb 00 00 00 | ....#...................A....... |
| 4540 | 55 b5 05 00 3d 00 00 00 11 b6 05 00 c2 00 00 00 4f b6 05 00 db 00 00 00 12 b7 05 00 d2 00 00 00 | U...=...........O............... |
| 4560 | ee b7 05 00 77 00 00 00 c1 b8 05 00 08 01 00 00 39 b9 05 00 96 00 00 00 42 ba 05 00 2e 01 00 00 | ....w...........9.......B....... |
| 4580 | d9 ba 05 00 68 00 00 00 08 bc 05 00 3c 00 00 00 71 bc 05 00 45 01 00 00 ae bc 05 00 c1 01 00 00 | ....h.......<...q...E........... |
| 45a0 | f4 bd 05 00 4e 00 00 00 b6 bf 05 00 62 00 00 00 05 c0 05 00 ae 00 00 00 68 c0 05 00 dd 00 00 00 | ....N.......b...........h....... |
| 45c0 | 17 c1 05 00 77 00 00 00 f5 c1 05 00 b7 00 00 00 6d c2 05 00 a2 00 00 00 25 c3 05 00 bb 00 00 00 | ....w...........m.......%....... |
| 45e0 | c8 c3 05 00 5c 00 00 00 84 c4 05 00 85 00 00 00 e1 c4 05 00 6a 01 00 00 67 c5 05 00 62 00 00 00 | ....\...............j...g...b... |
| 4600 | d2 c6 05 00 c3 00 00 00 35 c7 05 00 11 00 00 00 f9 c7 05 00 ba 00 00 00 0b c8 05 00 bb 00 00 00 | ........5....................... |
| 4620 | c6 c8 05 00 ba 00 00 00 82 c9 05 00 bb 00 00 00 3d ca 05 00 bc 00 00 00 f9 ca 05 00 bd 00 00 00 | ................=............... |
| 4640 | b6 cb 05 00 6e 00 00 00 74 cc 05 00 6f 00 00 00 e3 cc 05 00 a0 00 00 00 53 cd 05 00 bb 00 00 00 | ....n...t...o...........S....... |
| 4660 | f4 cd 05 00 bb 00 00 00 b0 ce 05 00 be 00 00 00 6c cf 05 00 6f 00 00 00 2b d0 05 00 a4 00 00 00 | ................l...o...+....... |
| 4680 | 9b d0 05 00 42 00 00 00 40 d1 05 00 d2 00 00 00 83 d1 05 00 1d 01 00 00 56 d2 05 00 9b 01 00 00 | ....B...@...............V....... |
| 46a0 | 74 d3 05 00 9b 01 00 00 10 d5 05 00 6b 00 00 00 ac d6 05 00 98 00 00 00 18 d7 05 00 4a 00 00 00 | t...........k...............J... |
| 46c0 | b1 d7 05 00 0a 00 00 00 fc d7 05 00 18 00 00 00 07 d8 05 00 3e 00 00 00 20 d8 05 00 67 01 00 00 | ....................>.......g... |
| 46e0 | 5f d8 05 00 0d 00 00 00 c7 d9 05 00 16 00 00 00 d5 d9 05 00 23 00 00 00 ec d9 05 00 0d 00 00 00 | _...................#........... |
| 4700 | 10 da 05 00 58 00 00 00 1e da 05 00 67 00 00 00 77 da 05 00 ef 00 00 00 df da 05 00 6e 00 00 00 | ....X.......g...w...........n... |
| 4720 | cf db 05 00 4c 00 00 00 3e dc 05 00 98 00 00 00 8b dc 05 00 0b 00 00 00 24 dd 05 00 0b 00 00 00 | ....L...>...............$....... |
| 4740 | 30 dd 05 00 4c 00 00 00 3c dd 05 00 2f 00 00 00 89 dd 05 00 17 00 00 00 b9 dd 05 00 10 00 00 00 | 0...L...<.../................... |
| 4760 | d1 dd 05 00 10 00 00 00 e2 dd 05 00 90 00 00 00 f3 dd 05 00 17 00 00 00 84 de 05 00 37 00 00 00 | ............................7... |
| 4780 | 9c de 05 00 36 00 00 00 d4 de 05 00 1b 00 00 00 0b df 05 00 2f 00 00 00 27 df 05 00 97 00 00 00 | ....6.............../...'....... |
| 47a0 | 57 df 05 00 10 00 00 00 ef df 05 00 0a 00 00 00 00 e0 05 00 18 00 00 00 0b e0 05 00 72 01 00 00 | W...........................r... |
| 47c0 | 24 e0 05 00 40 00 00 00 97 e1 05 00 7f 01 00 00 d8 e1 05 00 c0 00 00 00 58 e3 05 00 48 01 00 00 | $...@...................X...H... |
| 47e0 | 19 e4 05 00 54 01 00 00 62 e5 05 00 9e 01 00 00 b7 e6 05 00 14 00 00 00 56 e8 05 00 08 00 00 00 | ....T...b...............V....... |
| 4800 | 6b e8 05 00 77 00 00 00 74 e8 05 00 18 00 00 00 ec e8 05 00 31 00 00 00 05 e9 05 00 8f 01 00 00 | k...w...t...........1........... |
| 4820 | 37 e9 05 00 19 02 00 00 c7 ea 05 00 f7 00 00 00 e1 ec 05 00 e9 00 00 00 d9 ed 05 00 89 00 00 00 | 7............................... |
| 4840 | c3 ee 05 00 4c 00 00 00 4d ef 05 00 38 00 00 00 9a ef 05 00 8f 00 00 00 d3 ef 05 00 37 00 00 00 | ....L...M...8...............7... |
| 4860 | 63 f0 05 00 1b 00 00 00 9b f0 05 00 1c 00 00 00 b7 f0 05 00 25 01 00 00 d4 f0 05 00 cb 00 00 00 | c...................%........... |
| 4880 | fa f1 05 00 db 00 00 00 c6 f2 05 00 d7 00 00 00 a2 f3 05 00 a5 00 00 00 7a f4 05 00 93 00 00 00 | ........................z....... |
| 48a0 | 20 f5 05 00 e3 00 00 00 b4 f5 05 00 02 02 00 00 98 f6 05 00 c4 00 00 00 9b f8 05 00 a6 00 00 00 | ................................ |
| 48c0 | 60 f9 05 00 e6 00 00 00 07 fa 05 00 e5 00 00 00 ee fa 05 00 4f 00 00 00 d4 fb 05 00 a4 00 00 00 | `...................O........... |
| 48e0 | 24 fc 05 00 28 01 00 00 c9 fc 05 00 9d 00 00 00 f2 fd 05 00 3b 00 00 00 90 fe 05 00 4a 00 00 00 | $...(...............;.......J... |
| 4900 | cc fe 05 00 81 00 00 00 17 ff 05 00 68 00 00 00 99 ff 05 00 71 00 00 00 02 00 06 00 49 00 00 00 | ............h.......q.......I... |
| 4920 | 74 00 06 00 36 00 00 00 be 00 06 00 11 00 00 00 f5 00 06 00 06 00 00 00 07 01 06 00 8f 00 00 00 | t...6........................... |
| 4940 | 0e 01 06 00 0f 00 00 00 9e 01 06 00 18 00 00 00 ae 01 06 00 0e 00 00 00 c7 01 06 00 0e 00 00 00 | ................................ |
| 4960 | d6 01 06 00 0f 00 00 00 e5 01 06 00 0b 00 00 00 f5 01 06 00 6c 01 00 00 01 02 06 00 3a 01 00 00 | ....................l.......:... |
| 4980 | 6e 03 06 00 0f 00 00 00 a9 04 06 00 0f 00 00 00 b9 04 06 00 08 00 00 00 c9 04 06 00 07 00 00 00 | n............................... |
| 49a0 | d2 04 06 00 0c 00 00 00 da 04 06 00 04 00 00 00 e7 04 06 00 0f 00 00 00 ec 04 06 00 06 00 00 00 | ................................ |
| 49c0 | fc 04 06 00 ff 00 00 00 03 05 06 00 23 00 00 00 03 06 06 00 23 00 00 00 27 06 06 00 0e 00 00 00 | ............#.......#...'....... |
| 49e0 | 4b 06 06 00 07 00 00 00 5a 06 06 00 0a 00 00 00 62 06 06 00 04 00 00 00 6d 06 06 00 36 00 00 00 | K.......Z.......b.......m...6... |
| 4a00 | 72 06 06 00 b5 00 00 00 a9 06 06 00 04 00 00 00 5f 07 06 00 f5 00 00 00 64 07 06 00 19 00 00 00 | r..............._.......d....... |
| 4a20 | 5a 08 06 00 42 00 00 00 74 08 06 00 1b 00 00 00 b7 08 06 00 36 00 00 00 d3 08 06 00 50 00 00 00 | Z...B...t...........6.......P... |
| 4a40 | 0a 09 06 00 34 01 00 00 5b 09 06 00 3e 00 00 00 90 0a 06 00 29 00 00 00 cf 0a 06 00 0f 00 00 00 | ....4...[...>.......)........... |
| 4a60 | f9 0a 06 00 33 00 00 00 09 0b 06 00 14 02 00 00 3d 0b 06 00 15 02 00 00 52 0d 06 00 40 00 00 00 | ....3...........=.......R...@... |
| 4a80 | 68 0f 06 00 3d 00 00 00 a9 0f 06 00 07 01 00 00 e7 0f 06 00 23 00 00 00 ef 10 06 00 11 00 00 00 | h...=...............#........... |
| 4aa0 | 13 11 06 00 3f 00 00 00 25 11 06 00 20 00 00 00 65 11 06 00 6f 00 00 00 86 11 06 00 78 00 00 00 | ....?...%.......e...o.......x... |
| 4ac0 | f6 11 06 00 3d 00 00 00 6f 12 06 00 68 00 00 00 ad 12 06 00 6b 00 00 00 16 13 06 00 23 00 00 00 | ....=...o...h.......k.......#... |
| 4ae0 | 82 13 06 00 07 00 00 00 a6 13 06 00 7d 00 00 00 ae 13 06 00 06 00 00 00 2c 14 06 00 16 00 00 00 | ............}...........,....... |
| 4b00 | 33 14 06 00 36 00 00 00 4a 14 06 00 35 00 00 00 81 14 06 00 10 00 00 00 b7 14 06 00 69 02 00 00 | 3...6...J...5...............i... |
| 4b20 | c8 14 06 00 1b 00 00 00 32 17 06 00 52 01 00 00 4e 17 06 00 4a 00 00 00 a1 18 06 00 e8 01 00 00 | ........2...R...N...J........... |
| 4b40 | ec 18 06 00 9d 01 00 00 d5 1a 06 00 cb 02 00 00 73 1c 06 00 d7 00 00 00 3f 1f 06 00 1e 00 00 00 | ................s.......?....... |
| 4b60 | 17 20 06 00 2f 00 00 00 36 20 06 00 21 00 00 00 66 20 06 00 0c 00 00 00 88 20 06 00 0e 00 00 00 | ..../...6...!...f............... |
| 4b80 | 95 20 06 00 24 00 00 00 a4 20 06 00 0e 00 00 00 c9 20 06 00 59 00 00 00 d8 20 06 00 59 00 00 00 | ....$...............Y.......Y... |
| 4ba0 | 32 21 06 00 22 00 00 00 8c 21 06 00 05 00 00 00 af 21 06 00 20 00 00 00 b5 21 06 00 14 00 00 00 | 2!.."....!.......!.......!...... |
| 4bc0 | d6 21 06 00 3c 00 00 00 eb 21 06 00 42 00 00 00 28 22 06 00 1f 00 00 00 6b 22 06 00 2e 00 00 00 | .!..<....!..B...("......k"...... |
| 4be0 | 8b 22 06 00 10 00 00 00 ba 22 06 00 10 00 00 00 cb 22 06 00 12 00 00 00 dc 22 06 00 12 00 00 00 | ."......."......."......."...... |
| 4c00 | ef 22 06 00 2e 00 00 00 02 23 06 00 3c 00 00 00 31 23 06 00 3b 00 00 00 6e 23 06 00 0b 00 00 00 | .".......#..<...1#..;...n#...... |
| 4c20 | aa 23 06 00 38 00 00 00 b6 23 06 00 2c 00 00 00 ef 23 06 00 09 00 00 00 1c 24 06 00 09 00 00 00 | .#..8....#..,....#.......$...... |
| 4c40 | 26 24 06 00 1f 00 00 00 30 24 06 00 0e 00 00 00 50 24 06 00 63 00 00 00 5f 24 06 00 9c 00 00 00 | &$......0$......P$..c..._$...... |
| 4c60 | c3 24 06 00 ab 00 00 00 60 25 06 00 eb 00 00 00 0c 26 06 00 30 00 00 00 f8 26 06 00 2c 00 00 00 | .$......`%.......&..0....&..,... |
| 4c80 | 29 27 06 00 07 00 00 00 56 27 06 00 63 00 00 00 5e 27 06 00 0c 01 00 00 c2 27 06 00 0c 00 00 00 | )'......V'..c...^'.......'...... |
| 4ca0 | cf 28 06 00 0c 00 00 00 dc 28 06 00 15 00 00 00 e9 28 06 00 04 00 00 00 ff 28 06 00 19 00 00 00 | .(.......(.......(.......(...... |
| 4cc0 | 04 29 06 00 08 00 00 00 1e 29 06 00 8c 00 00 00 27 29 06 00 03 00 00 00 b4 29 06 00 0a 00 00 00 | .).......)......').......)...... |
| 4ce0 | b8 29 06 00 35 00 00 00 c3 29 06 00 13 00 00 00 f9 29 06 00 19 00 00 00 0d 2a 06 00 06 00 00 00 | .)..5....).......).......*...... |
| 4d00 | 27 2a 06 00 3b 02 00 00 2e 2a 06 00 5f 01 00 00 6a 2c 06 00 85 00 00 00 ca 2d 06 00 0e 00 00 00 | '*..;....*.._...j,.......-...... |
| 4d20 | 50 2e 06 00 0f 00 00 00 5f 2e 06 00 09 00 00 00 6f 2e 06 00 10 00 00 00 79 2e 06 00 35 00 00 00 | P......._.......o.......y...5... |
| 4d40 | 8a 2e 06 00 04 00 00 00 c0 2e 06 00 e8 01 00 00 c5 2e 06 00 5f 00 00 00 ae 30 06 00 61 00 00 00 | ...................._....0..a... |
| 4d60 | 0e 31 06 00 03 00 00 00 70 31 06 00 0b 00 00 00 74 31 06 00 4c 00 00 00 80 31 06 00 2f 00 00 00 | .1......p1......t1..L....1../... |
| 4d80 | cd 31 06 00 1d 00 00 00 fd 31 06 00 10 00 00 00 1b 32 06 00 3d 00 00 00 2c 32 06 00 4d 00 00 00 | .1.......1.......2..=...,2..M... |
| 4da0 | 6a 32 06 00 38 00 00 00 b8 32 06 00 10 00 00 00 f1 32 06 00 0f 00 00 00 02 33 06 00 3b 00 00 00 | j2..8....2.......2.......3..;... |
| 4dc0 | 12 33 06 00 12 00 00 00 4e 33 06 00 1d 00 00 00 61 33 06 00 44 00 00 00 7f 33 06 00 51 00 00 00 | .3......N3......a3..D....3..Q... |
| 4de0 | c4 33 06 00 41 00 00 00 16 34 06 00 6a 00 00 00 58 34 06 00 66 00 00 00 c3 34 06 00 1c 00 00 00 | .3..A....4..j...X4..f....4...... |
| 4e00 | 2a 35 06 00 8d 00 00 00 47 35 06 00 d1 00 00 00 d5 35 06 00 1d 00 00 00 a7 36 06 00 e3 00 00 00 | *5......G5.......5.......6...... |
| 4e20 | c5 36 06 00 e4 00 00 00 a9 37 06 00 24 00 00 00 8e 38 06 00 38 00 00 00 b3 38 06 00 52 00 00 00 | .6.......7..$....8..8....8..R... |
| 4e40 | ec 38 06 00 1f 00 00 00 3f 39 06 00 8d 00 00 00 5f 39 06 00 5a 00 00 00 ed 39 06 00 1a 00 00 00 | .8......?9......_9..Z....9...... |
| 4e60 | 48 3a 06 00 21 00 00 00 63 3a 06 00 1d 00 00 00 85 3a 06 00 22 00 00 00 a3 3a 06 00 70 00 00 00 | H:..!...c:.......:.."....:..p... |
| 4e80 | c6 3a 06 00 67 00 00 00 37 3b 06 00 72 00 00 00 9f 3b 06 00 69 00 00 00 12 3c 06 00 29 00 00 00 | .:..g...7;..r....;..i....<..)... |
| 4ea0 | 7c 3c 06 00 77 00 00 00 a6 3c 06 00 73 00 00 00 1e 3d 06 00 90 00 00 00 92 3d 06 00 91 00 00 00 | |<..w....<..s....=.......=...... |
| 4ec0 | 23 3e 06 00 53 00 00 00 b5 3e 06 00 b6 00 00 00 09 3f 06 00 b8 00 00 00 c0 3f 06 00 bd 00 00 00 | #>..S....>.......?.......?...... |
| 4ee0 | 79 40 06 00 5c 00 00 00 37 41 06 00 1e 00 00 00 94 41 06 00 15 00 00 00 b3 41 06 00 25 00 00 00 | y@..\...7A.......A.......A..%... |
| 4f00 | c9 41 06 00 91 00 00 00 ef 41 06 00 92 00 00 00 81 42 06 00 97 00 00 00 14 43 06 00 54 00 00 00 | .A.......A.......B.......C..T... |
| 4f20 | ac 43 06 00 b7 00 00 00 01 44 06 00 b9 00 00 00 b9 44 06 00 be 00 00 00 73 45 06 00 60 00 00 00 | .C.......D.......D......sE..`... |
| 4f40 | 32 46 06 00 24 00 00 00 93 46 06 00 cc 00 00 00 b8 46 06 00 25 00 00 00 85 47 06 00 95 00 00 00 | 2F..$....F.......F..%....G...... |
| 4f60 | ab 47 06 00 46 00 00 00 41 48 06 00 2f 00 00 00 88 48 06 00 9a 00 00 00 b8 48 06 00 61 00 00 00 | .G..F...AH../....H.......H..a... |
| 4f80 | 53 49 06 00 48 00 00 00 b5 49 06 00 5b 00 00 00 fe 49 06 00 1f 00 00 00 5a 4a 06 00 30 00 00 00 | SI..H....I..[....I......ZJ..0... |
| 4fa0 | 7a 4a 06 00 3b 00 00 00 ab 4a 06 00 25 00 00 00 e7 4a 06 00 28 00 00 00 0d 4b 06 00 2e 00 00 00 | zJ..;....J..%....J..(....K...... |
| 4fc0 | 36 4b 06 00 9e 00 00 00 65 4b 06 00 3e 00 00 00 04 4c 06 00 11 00 00 00 43 4c 06 00 19 00 00 00 | 6K......eK..>....L......CL...... |
| 4fe0 | 55 4c 06 00 7a 00 00 00 6f 4c 06 00 17 00 00 00 ea 4c 06 00 13 00 00 00 02 4d 06 00 7e 00 00 00 | UL..z...oL.......L.......M..~... |
| 5000 | 16 4d 06 00 81 00 00 00 95 4d 06 00 7d 00 00 00 17 4e 06 00 83 00 00 00 95 4e 06 00 11 00 00 00 | .M.......M..}....N.......N...... |
| 5020 | 19 4f 06 00 10 00 00 00 2b 4f 06 00 33 00 00 00 3c 4f 06 00 33 00 00 00 70 4f 06 00 33 00 00 00 | .O......+O..3...<O..3...pO..3... |
| 5040 | a4 4f 06 00 33 00 00 00 d8 4f 06 00 35 00 00 00 0c 50 06 00 6a 00 00 00 42 50 06 00 22 00 00 00 | .O..3....O..5....P..j...BP.."... |
| 5060 | ad 50 06 00 1e 01 00 00 d0 50 06 00 33 00 00 00 ef 51 06 00 dd 00 00 00 23 52 06 00 17 01 00 00 | .P.......P..3....Q......#R...... |
| 5080 | 01 53 06 00 49 00 00 00 19 54 06 00 06 00 00 00 63 54 06 00 11 00 00 00 6a 54 06 00 38 00 00 00 | .S..I....T......cT......jT..8... |
| 50a0 | 7c 54 06 00 28 00 00 00 b5 54 06 00 24 00 00 00 de 54 06 00 17 00 00 00 03 55 06 00 9d 00 00 00 | |T..(....T..$....T.......U...... |
| 50c0 | 1b 55 06 00 37 00 00 00 b9 55 06 00 8a 00 00 00 f1 55 06 00 89 00 00 00 7c 56 06 00 5c 00 00 00 | .U..7....U.......U......|V..\... |
| 50e0 | 06 57 06 00 cd 01 00 00 63 57 06 00 c2 00 00 00 31 59 06 00 65 00 00 00 f4 59 06 00 3f 00 00 00 | .W......cW......1Y..e....Y..?... |
| 5100 | 5a 5a 06 00 43 00 00 00 9a 5a 06 00 0a 00 00 00 de 5a 06 00 b3 00 00 00 e9 5a 06 00 8c 00 00 00 | ZZ..C....Z.......Z.......Z...... |
| 5120 | 9d 5b 06 00 e8 00 00 00 2a 5c 06 00 21 00 00 00 13 5d 06 00 05 00 00 00 35 5d 06 00 89 01 00 00 | .[......*\..!....]......5]...... |
| 5140 | 3b 5d 06 00 8d 01 00 00 c5 5e 06 00 1b 00 00 00 53 60 06 00 ae 01 00 00 6f 60 06 00 27 00 00 00 | ;].......^......S`......o`..'... |
| 5160 | 1e 62 06 00 09 00 00 00 46 62 06 00 fc 00 00 00 50 62 06 00 79 01 00 00 4d 63 06 00 0f 00 00 00 | .b......Fb......Pb..y...Mc...... |
| 5180 | c7 64 06 00 6c 00 00 00 d7 64 06 00 70 00 00 00 44 65 06 00 35 00 00 00 b5 65 06 00 d4 00 00 00 | .d..l....d..p...De..5....e...... |
| 51a0 | eb 65 06 00 d4 00 00 00 c0 66 06 00 f4 00 00 00 95 67 06 00 24 00 00 00 8a 68 06 00 6f 00 00 00 | .e.......f.......g..$....h..o... |
| 51c0 | af 68 06 00 10 00 00 00 1f 69 06 00 c6 00 00 00 30 69 06 00 30 00 00 00 f7 69 06 00 30 00 00 00 | .h.......i......0i..0....i..0... |
| 51e0 | 28 6a 06 00 a3 00 00 00 59 6a 06 00 a4 00 00 00 fd 6a 06 00 1b 00 00 00 a2 6b 06 00 25 00 00 00 | (j......Yj.......j.......k..%... |
| 5200 | be 6b 06 00 38 00 00 00 e4 6b 06 00 22 00 00 00 1d 6c 06 00 65 00 00 00 40 6c 06 00 80 00 00 00 | .k..8....k.."....l..e...@l...... |
| 5220 | a6 6c 06 00 74 00 00 00 27 6d 06 00 6a 00 00 00 9c 6d 06 00 a9 00 00 00 07 6e 06 00 01 00 00 00 | .l..t...'m..j....m.......n...... |
| 5240 | b1 6e 06 00 03 00 00 00 b3 6e 06 00 1f 00 00 00 b7 6e 06 00 11 00 00 00 d7 6e 06 00 10 00 00 00 | .n.......n.......n.......n...... |
| 5260 | e9 6e 06 00 37 01 00 00 fa 6e 06 00 0b 00 00 00 32 70 06 00 0e 00 00 00 3e 70 06 00 17 00 00 00 | .n..7....n......2p......>p...... |
| 5280 | 4d 70 06 00 22 00 00 00 65 70 06 00 05 00 00 00 88 70 06 00 05 00 00 00 8e 70 06 00 1b 00 00 00 | Mp.."...ep.......p.......p...... |
| 52a0 | 94 70 06 00 40 00 00 00 b0 70 06 00 1b 00 00 00 f1 70 06 00 0c 00 00 00 0d 71 06 00 eb 00 00 00 | .p..@....p.......p.......q...... |
| 52c0 | 1a 71 06 00 03 00 00 00 06 72 06 00 41 02 00 00 0a 72 06 00 ad 00 00 00 4c 74 06 00 1d 01 00 00 | .q.......r..A....r......Lt...... |
| 52e0 | fa 74 06 00 0d 00 00 00 18 76 06 00 91 00 00 00 26 76 06 00 0b 00 00 00 b8 76 06 00 34 00 00 00 | .t.......v......&v.......v..4... |
| 5300 | c4 76 06 00 25 00 00 00 f9 76 06 00 16 00 00 00 1f 77 06 00 40 00 00 00 36 77 06 00 23 00 00 00 | .v..%....v.......w..@...6w..#... |
| 5320 | 77 77 06 00 1f 00 00 00 9b 77 06 00 07 00 00 00 bb 77 06 00 0f 00 00 00 c3 77 06 00 4b 00 00 00 | ww.......w.......w.......w..K... |
| 5340 | d3 77 06 00 ab 01 00 00 1f 78 06 00 a3 00 00 00 cb 79 06 00 13 00 00 00 6f 7a 06 00 0f 00 00 00 | .w.......x.......y......oz...... |
| 5360 | 83 7a 06 00 1c 00 00 00 93 7a 06 00 18 00 00 00 b0 7a 06 00 23 00 00 00 c9 7a 06 00 0f 00 00 00 | .z.......z.......z..#....z...... |
| 5380 | ed 7a 06 00 10 00 00 00 fd 7a 06 00 0e 00 00 00 0e 7b 06 00 25 00 00 00 1d 7b 06 00 1a 00 00 00 | .z.......z.......{..%....{...... |
| 53a0 | 43 7b 06 00 1d 00 00 00 5e 7b 06 00 18 00 00 00 7c 7b 06 00 45 00 00 00 95 7b 06 00 16 00 00 00 | C{......^{......|{..E....{...... |
| 53c0 | db 7b 06 00 43 00 00 00 f2 7b 06 00 25 00 00 00 36 7c 06 00 38 00 00 00 5c 7c 06 00 36 00 00 00 | .{..C....{..%...6|..8...\|..6... |
| 53e0 | 95 7c 06 00 20 00 00 00 cc 7c 06 00 13 00 00 00 ed 7c 06 00 1e 00 00 00 01 7d 06 00 15 00 00 00 | .|.......|.......|.......}...... |
| 5400 | 20 7d 06 00 10 00 00 00 36 7d 06 00 ec 00 00 00 47 7d 06 00 eb 00 00 00 34 7e 06 00 ba 00 00 00 | .}......6}......G}......4~...... |
| 5420 | 20 7f 06 00 ba 00 00 00 db 7f 06 00 25 00 00 00 96 80 06 00 89 00 00 00 bc 80 06 00 13 00 00 00 | ............%................... |
| 5440 | 46 81 06 00 1a 00 00 00 5a 81 06 00 3a 00 00 00 75 81 06 00 81 01 00 00 b0 81 06 00 47 00 00 00 | F.......Z...:...u...........G... |
| 5460 | 32 83 06 00 74 00 00 00 7a 83 06 00 3a 00 00 00 ef 83 06 00 9d 00 00 00 2a 84 06 00 7b 01 00 00 | 2...t...z...:...........*...{... |
| 5480 | c8 84 06 00 61 00 00 00 44 86 06 00 6c 00 00 00 a6 86 06 00 06 00 00 00 13 87 06 00 47 00 00 00 | ....a...D...l...............G... |
| 54a0 | 1a 87 06 00 44 00 00 00 62 87 06 00 50 00 00 00 a7 87 06 00 4c 00 00 00 f8 87 06 00 37 00 00 00 | ....D...b...P.......L.......7... |
| 54c0 | 45 88 06 00 07 01 00 00 7d 88 06 00 57 00 00 00 85 89 06 00 31 00 00 00 dd 89 06 00 5b 00 00 00 | E.......}...W.......1.......[... |
| 54e0 | 0f 8a 06 00 1f 00 00 00 6b 8a 06 00 62 00 00 00 8b 8a 06 00 2b 00 00 00 ee 8a 06 00 04 00 00 00 | ........k...b.......+........... |
| 5500 | 1a 8b 06 00 16 00 00 00 1f 8b 06 00 37 00 00 00 36 8b 06 00 38 01 00 00 6e 8b 06 00 0d 00 00 00 | ............7...6...8...n....... |
| 5520 | a7 8c 06 00 0d 00 00 00 b5 8c 06 00 12 00 00 00 c3 8c 06 00 0a 00 00 00 d6 8c 06 00 4e 00 00 00 | ............................N... |
| 5540 | e1 8c 06 00 08 01 00 00 30 8d 06 00 24 01 00 00 39 8e 06 00 15 00 00 00 5e 8f 06 00 9c 01 00 00 | ........0...$...9.......^....... |
| 5560 | 74 8f 06 00 5c 00 00 00 11 91 06 00 a4 00 00 00 6e 91 06 00 16 00 00 00 13 92 06 00 8a 02 00 00 | t...\...........n............... |
| 5580 | 2a 92 06 00 1d 00 00 00 b5 94 06 00 0c 00 00 00 d3 94 06 00 1f 00 00 00 e0 94 06 00 43 00 00 00 | *...........................C... |
| 55a0 | 00 95 06 00 0d 00 00 00 44 95 06 00 c1 00 00 00 52 95 06 00 77 00 00 00 14 96 06 00 69 00 00 00 | ........D.......R...w.......i... |
| 55c0 | 8c 96 06 00 62 00 00 00 f6 96 06 00 76 00 00 00 59 97 06 00 0e 01 00 00 d0 97 06 00 cb 00 00 00 | ....b.......v...Y............... |
| 55e0 | df 98 06 00 19 01 00 00 ab 99 06 00 43 00 00 00 c5 9a 06 00 03 01 00 00 09 9b 06 00 ab 00 00 00 | ............C................... |
| 5600 | 0d 9c 06 00 7b 00 00 00 b9 9c 06 00 9a 00 00 00 35 9d 06 00 a6 00 00 00 d0 9d 06 00 6e 01 00 00 | ....{...........5...........n... |
| 5620 | 77 9e 06 00 17 01 00 00 e6 9f 06 00 6f 00 00 00 fe a0 06 00 7b 00 00 00 6e a1 06 00 7d 00 00 00 | w...........o.......{...n...}... |
| 5640 | ea a1 06 00 12 01 00 00 68 a2 06 00 e6 00 00 00 7b a3 06 00 b6 00 00 00 62 a4 06 00 3c 01 00 00 | ........h.......{.......b...<... |
| 5660 | 19 a5 06 00 b1 00 00 00 56 a6 06 00 fb 00 00 00 08 a7 06 00 20 00 00 00 04 a8 06 00 a0 01 00 00 | ........V....................... |
| 5680 | 25 a8 06 00 53 00 00 00 c6 a9 06 00 39 00 00 00 1a aa 06 00 28 00 00 00 54 aa 06 00 4a 00 00 00 | %...S.......9.......(...T...J... |
| 56a0 | 7d aa 06 00 3b 00 00 00 c8 aa 06 00 34 00 00 00 04 ab 06 00 52 00 00 00 39 ab 06 00 53 00 00 00 | }...;.......4.......R...9...S... |
| 56c0 | 8c ab 06 00 52 00 00 00 e0 ab 06 00 80 01 00 00 33 ac 06 00 36 00 00 00 b4 ad 06 00 23 00 00 00 | ....R...........3...6.......#... |
| 56e0 | eb ad 06 00 0b 00 00 00 0f ae 06 00 ad 00 00 00 1b ae 06 00 91 00 00 00 c9 ae 06 00 1b 02 00 00 | ................................ |
| 5700 | 5b af 06 00 f1 01 00 00 77 b1 06 00 e8 01 00 00 69 b3 06 00 0a 00 00 00 52 b5 06 00 1f 00 00 00 | [.......w.......i.......R....... |
| 5720 | 5d b5 06 00 71 00 00 00 7d b5 06 00 04 01 00 00 ef b5 06 00 07 00 00 00 f4 b6 06 00 df 00 00 00 | ]...q...}....................... |
| 5740 | fc b6 06 00 4a 01 00 00 dc b7 06 00 45 01 00 00 27 b9 06 00 22 00 00 00 6d ba 06 00 79 01 00 00 | ....J.......E...'..."...m...y... |
| 5760 | 90 ba 06 00 0c 00 00 00 0a bc 06 00 a6 00 00 00 17 bc 06 00 e9 00 00 00 be bc 06 00 83 00 00 00 | ................................ |
| 5780 | a8 bd 06 00 19 00 00 00 2c be 06 00 0f 00 00 00 46 be 06 00 09 00 00 00 56 be 06 00 12 00 00 00 | ........,.......F.......V....... |
| 57a0 | 60 be 06 00 0e 00 00 00 73 be 06 00 12 00 00 00 82 be 06 00 21 00 00 00 95 be 06 00 0e 00 00 00 | `.......s...........!........... |
| 57c0 | b7 be 06 00 17 00 00 00 c6 be 06 00 14 00 00 00 de be 06 00 19 00 00 00 f3 be 06 00 14 00 00 00 | ................................ |
| 57e0 | 0d bf 06 00 06 00 00 00 22 bf 06 00 13 00 00 00 29 bf 06 00 12 00 00 00 3d bf 06 00 0d 00 00 00 | ........".......).......=....... |
| 5800 | 50 bf 06 00 6a 00 00 00 5e bf 06 00 17 00 00 00 c9 bf 06 00 2e 00 00 00 e1 bf 06 00 2d 00 00 00 | P...j...^...................-... |
| 5820 | 10 c0 06 00 08 00 00 00 3e c0 06 00 16 00 00 00 47 c0 06 00 ea 00 00 00 5e c0 06 00 59 00 00 00 | ........>.......G.......^...Y... |
| 5840 | 49 c1 06 00 19 00 00 00 a3 c1 06 00 7e 00 00 00 bd c1 06 00 07 00 00 00 3c c2 06 00 2a 00 00 00 | I...........~...........<...*... |
| 5860 | 44 c2 06 00 4f 00 00 00 6f c2 06 00 17 00 00 00 bf c2 06 00 3b 00 00 00 d7 c2 06 00 60 00 00 00 | D...O...o...........;.......`... |
| 5880 | 13 c3 06 00 87 01 00 00 74 c3 06 00 6e 00 00 00 fc c4 06 00 24 00 00 00 6b c5 06 00 54 00 00 00 | ........t...n.......$...k...T... |
| 58a0 | 90 c5 06 00 a4 01 00 00 e5 c5 06 00 8f 01 00 00 8a c7 06 00 24 00 00 00 1a c9 06 00 1f 00 00 00 | ....................$........... |
| 58c0 | 3f c9 06 00 07 00 00 00 5f c9 06 00 1b 00 00 00 67 c9 06 00 08 00 00 00 83 c9 06 00 5c 00 00 00 | ?......._.......g...........\... |
| 58e0 | 8c c9 06 00 3c 00 00 00 e9 c9 06 00 3f 00 00 00 26 ca 06 00 08 00 00 00 66 ca 06 00 1b 00 00 00 | ....<.......?...&.......f....... |
| 5900 | 6f ca 06 00 bc 00 00 00 8b ca 06 00 57 00 00 00 48 cb 06 00 36 00 00 00 a0 cb 06 00 14 00 00 00 | o...........W...H...6........... |
| 5920 | d7 cb 06 00 3f 00 00 00 ec cb 06 00 3a 00 00 00 2c cc 06 00 75 00 00 00 67 cc 06 00 69 00 00 00 | ....?.......:...,...u...g...i... |
| 5940 | dd cc 06 00 32 01 00 00 47 cd 06 00 36 01 00 00 7a ce 06 00 0c 00 00 00 b1 cf 06 00 26 00 00 00 | ....2...G...6...z...........&... |
| 5960 | be cf 06 00 18 00 00 00 e5 cf 06 00 2e 00 00 00 fe cf 06 00 41 01 00 00 2d d0 06 00 03 00 00 00 | ....................A...-....... |
| 5980 | 6f d1 06 00 04 00 00 00 73 d1 06 00 14 00 00 00 78 d1 06 00 0c 00 00 00 8d d1 06 00 05 00 00 00 | o.......s.......x............... |
| 59a0 | 9a d1 06 00 0c 00 00 00 a0 d1 06 00 0d 00 00 00 ad d1 06 00 0b 00 00 00 bb d1 06 00 1c 00 00 00 | ................................ |
| 59c0 | c7 d1 06 00 14 00 00 00 e4 d1 06 00 ae 00 00 00 f9 d1 06 00 25 00 00 00 a8 d2 06 00 46 00 00 00 | ....................%.......F... |
| 59e0 | ce d2 06 00 31 01 00 00 15 d3 06 00 4f 00 00 00 47 d4 06 00 ca 00 00 00 97 d4 06 00 43 00 00 00 | ....1.......O...G...........C... |
| 5a00 | 62 d5 06 00 46 00 00 00 a6 d5 06 00 0b 00 00 00 ed d5 06 00 0b 00 00 00 f9 d5 06 00 19 00 00 00 | b...F........................... |
| 5a20 | 05 d6 06 00 0f 00 00 00 1f d6 06 00 ba 01 00 00 2f d6 06 00 6a 00 00 00 ea d7 06 00 13 00 00 00 | ................/...j........... |
| 5a40 | 55 d8 06 00 e4 00 00 00 69 d8 06 00 46 00 00 00 4e d9 06 00 88 01 00 00 95 d9 06 00 89 01 00 00 | U.......i...F...N............... |
| 5a60 | 1e db 06 00 38 00 00 00 a8 dc 06 00 0b 00 00 00 e1 dc 06 00 ce 00 00 00 ed dc 06 00 6c 00 00 00 | ....8.......................l... |
| 5a80 | bc dd 06 00 10 01 00 00 29 de 06 00 6e 00 00 00 3a df 06 00 26 00 00 00 a9 df 06 00 40 00 00 00 | ........)...n...:...&.......@... |
| 5aa0 | d0 df 06 00 a0 00 00 00 11 e0 06 00 b9 00 00 00 b2 e0 06 00 58 00 00 00 6c e1 06 00 64 00 00 00 | ....................X...l...d... |
| 5ac0 | c5 e1 06 00 39 00 00 00 2a e2 06 00 45 00 00 00 64 e2 06 00 4a 00 00 00 aa e2 06 00 4b 00 00 00 | ....9...*...E...d...J.......K... |
| 5ae0 | f5 e2 06 00 56 00 00 00 41 e3 06 00 57 00 00 00 98 e3 06 00 96 00 00 00 f0 e3 06 00 37 00 00 00 | ....V...A...W...............7... |
| 5b00 | 87 e4 06 00 8f 00 00 00 bf e4 06 00 06 00 00 00 4f e5 06 00 0f 00 00 00 56 e5 06 00 1b 00 00 00 | ................O.......V....... |
| 5b20 | 66 e5 06 00 33 00 00 00 82 e5 06 00 56 00 00 00 b6 e5 06 00 0b 00 00 00 0d e6 06 00 12 00 00 00 | f...3.......V................... |
| 5b40 | 19 e6 06 00 10 00 00 00 2c e6 06 00 38 00 00 00 3d e6 06 00 48 01 00 00 76 e6 06 00 15 00 00 00 | ........,...8...=...H...v....... |
| 5b60 | bf e7 06 00 19 00 00 00 d5 e7 06 00 33 00 00 00 ef e7 06 00 1f 00 00 00 23 e8 06 00 2e 00 00 00 | ............3...........#....... |
| 5b80 | 43 e8 06 00 93 01 00 00 72 e8 06 00 0f 00 00 00 06 ea 06 00 0a 00 00 00 16 ea 06 00 0a 00 00 00 | C.......r....................... |
| 5ba0 | 21 ea 06 00 63 00 00 00 2c ea 06 00 2f 00 00 00 90 ea 06 00 32 00 00 00 c0 ea 06 00 4c 00 00 00 | !...c...,.../.......2.......L... |
| 5bc0 | f3 ea 06 00 23 00 00 00 40 eb 06 00 64 00 00 00 64 eb 06 00 65 00 00 00 c9 eb 06 00 6e 00 00 00 | ....#...@...d...d...e.......n... |
| 5be0 | 2f ec 06 00 29 00 00 00 9e ec 06 00 dd 00 00 00 c8 ec 06 00 2d 00 00 00 a6 ed 06 00 11 00 00 00 | /...)...............-........... |
| 5c00 | d4 ed 06 00 11 00 00 00 e6 ed 06 00 12 00 00 00 f8 ed 06 00 0c 00 00 00 0b ee 06 00 30 00 00 00 | ............................0... |
| 5c20 | 18 ee 06 00 3f 00 00 00 49 ee 06 00 40 00 00 00 89 ee 06 00 04 01 00 00 ca ee 06 00 a9 00 00 00 | ....?...I...@................... |
| 5c40 | cf ef 06 00 18 00 00 00 79 f0 06 00 08 00 00 00 92 f0 06 00 46 00 00 00 9b f0 06 00 4d 00 00 00 | ........y...........F.......M... |
| 5c60 | e2 f0 06 00 1f 00 00 00 30 f1 06 00 4f 00 00 00 50 f1 06 00 3d 00 00 00 a0 f1 06 00 2e 00 00 00 | ........0...O...P...=........... |
| 5c80 | de f1 06 00 35 00 00 00 0d f2 06 00 08 00 00 00 43 f2 06 00 0e 00 00 00 4c f2 06 00 84 01 00 00 | ....5...........C.......L....... |
| 5ca0 | 5b f2 06 00 8c 00 00 00 e0 f3 06 00 fb 00 00 00 6d f4 06 00 11 00 00 00 69 f5 06 00 0e 01 00 00 | [...............m.......i....... |
| 5cc0 | 7b f5 06 00 3a 00 00 00 8a f6 06 00 09 00 00 00 c5 f6 06 00 38 00 00 00 cf f6 06 00 bd 00 00 00 | {...:...............8........... |
| 5ce0 | 08 f7 06 00 30 00 00 00 c6 f7 06 00 31 00 00 00 f7 f7 06 00 24 00 00 00 29 f8 06 00 28 00 00 00 | ....0.......1.......$...)...(... |
| 5d00 | 4e f8 06 00 23 00 00 00 77 f8 06 00 20 00 00 00 9b f8 06 00 21 00 00 00 bc f8 06 00 3a 00 00 00 | N...#...w...........!.......:... |
| 5d20 | de f8 06 00 1f 00 00 00 19 f9 06 00 32 00 00 00 39 f9 06 00 26 00 00 00 6c f9 06 00 13 00 00 00 | ............2...9...&...l....... |
| 5d40 | 93 f9 06 00 41 00 00 00 a7 f9 06 00 a0 00 00 00 e9 f9 06 00 3e 00 00 00 8a fa 06 00 1f 00 00 00 | ....A...............>........... |
| 5d60 | c9 fa 06 00 ce 00 00 00 e9 fa 06 00 4c 01 00 00 b8 fb 06 00 36 01 00 00 05 fd 06 00 21 00 00 00 | ............L.......6.......!... |
| 5d80 | 3c fe 06 00 1e 00 00 00 5e fe 06 00 0e 00 00 00 7d fe 06 00 03 00 00 00 8c fe 06 00 39 00 00 00 | <.......^.......}...........9... |
| 5da0 | 90 fe 06 00 2f 00 00 00 ca fe 06 00 b8 00 00 00 fa fe 06 00 24 00 00 00 b3 ff 06 00 49 00 00 00 | ..../...............$.......I... |
| 5dc0 | d8 ff 06 00 03 00 00 00 22 00 07 00 24 00 00 00 26 00 07 00 03 00 00 00 4b 00 07 00 06 00 00 00 | ........"...$...&.......K....... |
| 5de0 | 4f 00 07 00 0c 00 00 00 56 00 07 00 18 00 00 00 63 00 07 00 17 00 00 00 7c 00 07 00 15 00 00 00 | O.......V.......c.......|....... |
| 5e00 | 94 00 07 00 22 00 00 00 aa 00 07 00 4c 00 00 00 cd 00 07 00 45 00 00 00 1a 01 07 00 98 00 00 00 | ....".......L.......E........... |
| 5e20 | 60 01 07 00 15 00 00 00 f9 01 07 00 05 01 00 00 0f 02 07 00 73 00 00 00 15 03 07 00 8b 00 00 00 | `...................s........... |
| 5e40 | 89 03 07 00 04 00 00 00 15 04 07 00 b5 00 00 00 1a 04 07 00 53 01 00 00 d0 04 07 00 20 00 00 00 | ....................S........... |
| 5e60 | 24 06 07 00 03 00 00 00 45 06 07 00 21 00 00 00 49 06 07 00 21 00 00 00 6b 06 07 00 04 00 00 00 | $.......E...!...I...!...k....... |
| 5e80 | 8d 06 07 00 15 00 00 00 92 06 07 00 e1 00 00 00 a8 06 07 00 08 00 00 00 8a 07 07 00 0d 00 00 00 | ................................ |
| 5ea0 | 93 07 07 00 c3 00 00 00 a1 07 07 00 20 00 00 00 65 08 07 00 21 00 00 00 86 08 07 00 0c 00 00 00 | ................e...!........... |
| 5ec0 | a8 08 07 00 0a 00 00 00 b5 08 07 00 47 00 00 00 c0 08 07 00 44 00 00 00 08 09 07 00 45 00 00 00 | ............G.......D.......E... |
| 5ee0 | 4d 09 07 00 72 00 00 00 93 09 07 00 dc 00 00 00 06 0a 07 00 0e 00 00 00 e3 0a 07 00 4f 00 00 00 | M...r.......................O... |
| 5f00 | f2 0a 07 00 6a 00 00 00 42 0b 07 00 50 00 00 00 ad 0b 07 00 0e 00 00 00 fe 0b 07 00 0b 00 00 00 | ....j...B...P................... |
| 5f20 | 0d 0c 07 00 1f 00 00 00 19 0c 07 00 41 00 00 00 39 0c 07 00 13 04 00 00 7b 0c 07 00 87 00 00 00 | ............A...9.......{....... |
| 5f40 | 8f 10 07 00 25 00 00 00 17 11 07 00 0c 00 00 00 3d 11 07 00 16 00 00 00 4a 11 07 00 2f 01 00 00 | ....%...........=.......J.../... |
| 5f60 | 61 11 07 00 96 00 00 00 91 12 07 00 1e 00 00 00 28 13 07 00 1c 00 00 00 47 13 07 00 ad 01 00 00 | a...............(.......G....... |
| 5f80 | 64 13 07 00 45 00 00 00 12 15 07 00 16 00 00 00 58 15 07 00 35 00 00 00 6f 15 07 00 3b 00 00 00 | d...E...........X...5...o...;... |
| 5fa0 | a5 15 07 00 4a 00 00 00 e1 15 07 00 54 00 00 00 2c 16 07 00 73 00 00 00 81 16 07 00 4c 00 00 00 | ....J.......T...,...s.......L... |
| 5fc0 | f5 16 07 00 0d 00 00 00 42 17 07 00 23 00 00 00 50 17 07 00 23 00 00 00 74 17 07 00 21 00 00 00 | ........B...#...P...#...t...!... |
| 5fe0 | 98 17 07 00 15 00 00 00 ba 17 07 00 0b 00 00 00 d0 17 07 00 10 00 00 00 dc 17 07 00 0f 00 00 00 | ................................ |
| 6000 | ed 17 07 00 0a 00 00 00 fd 17 07 00 1e 00 00 00 08 18 07 00 0b 00 00 00 27 18 07 00 1f 00 00 00 | ........................'....... |
| 6020 | 33 18 07 00 15 00 00 00 53 18 07 00 48 00 00 00 69 18 07 00 4e 00 00 00 b2 18 07 00 0b 00 00 00 | 3.......S...H...i...N........... |
| 6040 | 01 19 07 00 3d 00 00 00 0d 19 07 00 25 00 00 00 4b 19 07 00 29 00 00 00 71 19 07 00 11 00 00 00 | ....=.......%...K...)...q....... |
| 6060 | 9b 19 07 00 76 00 00 00 ad 19 07 00 43 00 00 00 24 1a 07 00 6b 00 00 00 68 1a 07 00 0c 00 00 00 | ....v.......C...$...k...h....... |
| 6080 | d4 1a 07 00 20 00 00 00 e1 1a 07 00 0d 00 00 00 02 1b 07 00 63 00 00 00 10 1b 07 00 05 00 00 00 | ....................c........... |
| 60a0 | 74 1b 07 00 0d 00 00 00 7a 1b 07 00 6c 00 00 00 88 1b 07 00 8a 00 00 00 f5 1b 07 00 0e 00 00 00 | t.......z...l................... |
| 60c0 | 80 1c 07 00 81 00 00 00 8f 1c 07 00 07 00 00 00 11 1d 07 00 1a 00 00 00 19 1d 07 00 27 00 00 00 | ............................'... |
| 60e0 | 34 1d 07 00 19 00 00 00 5c 1d 07 00 1e 00 00 00 76 1d 07 00 17 00 00 00 95 1d 07 00 1f 00 00 00 | 4.......\.......v............... |
| 6100 | ad 1d 07 00 40 00 00 00 cd 1d 07 00 6d 00 00 00 0e 1e 07 00 58 00 00 00 7c 1e 07 00 e4 00 00 00 | ....@.......m.......X...|....... |
| 6120 | d5 1e 07 00 0c 00 00 00 ba 1f 07 00 0b 00 00 00 c7 1f 07 00 10 00 00 00 d3 1f 07 00 3d 00 00 00 | ............................=... |
| 6140 | e4 1f 07 00 39 00 00 00 22 20 07 00 40 00 00 00 5c 20 07 00 0d 00 00 00 9d 20 07 00 0b 00 00 00 | ....9..."...@...\............... |
| 6160 | ab 20 07 00 1f 00 00 00 b7 20 07 00 0f 00 00 00 d7 20 07 00 0f 00 00 00 e7 20 07 00 1d 00 00 00 | ................................ |
| 6180 | f7 20 07 00 09 00 00 00 15 21 07 00 10 00 00 00 1f 21 07 00 14 00 00 00 30 21 07 00 1d 00 00 00 | .........!.......!......0!...... |
| 61a0 | 45 21 07 00 0f 00 00 00 63 21 07 00 1d 00 00 00 73 21 07 00 17 00 00 00 91 21 07 00 d0 01 00 00 | E!......c!......s!.......!...... |
| 61c0 | a9 21 07 00 2e 00 00 00 7a 23 07 00 7d 00 00 00 a9 23 07 00 c1 00 00 00 27 24 07 00 0c 00 00 00 | .!......z#..}....#......'$...... |
| 61e0 | e9 24 07 00 13 00 00 00 f6 24 07 00 15 00 00 00 0a 25 07 00 0f 00 00 00 20 25 07 00 67 00 00 00 | .$.......$.......%.......%..g... |
| 6200 | 30 25 07 00 56 00 00 00 98 25 07 00 11 00 00 00 ef 25 07 00 c1 00 00 00 01 26 07 00 59 00 00 00 | 0%..V....%.......%.......&..Y... |
| 6220 | c3 26 07 00 c6 00 00 00 1d 27 07 00 07 00 00 00 e4 27 07 00 07 00 00 00 ec 27 07 00 35 00 00 00 | .&.......'.......'.......'..5... |
| 6240 | f4 27 07 00 69 00 00 00 2a 28 07 00 6c 00 00 00 94 28 07 00 2b 00 00 00 01 29 07 00 7c 00 00 00 | .'..i...*(..l....(..+....)..|... |
| 6260 | 2d 29 07 00 69 00 00 00 aa 29 07 00 0b 00 00 00 14 2a 07 00 09 00 00 00 20 2a 07 00 11 00 00 00 | -)..i....).......*.......*...... |
| 6280 | 2a 2a 07 00 05 00 00 00 3c 2a 07 00 ad 00 00 00 42 2a 07 00 4c 00 00 00 f0 2a 07 00 12 00 00 00 | **......<*......B*..L....*...... |
| 62a0 | 3d 2b 07 00 04 00 00 00 50 2b 07 00 06 00 00 00 55 2b 07 00 06 00 00 00 5c 2b 07 00 04 00 00 00 | =+......P+......U+......\+...... |
| 62c0 | 63 2b 07 00 0f 00 00 00 68 2b 07 00 16 00 00 00 78 2b 07 00 d7 00 00 00 8f 2b 07 00 fd 00 00 00 | c+......h+......x+.......+...... |
| 62e0 | 67 2c 07 00 65 01 00 00 65 2d 07 00 06 00 00 00 cb 2e 07 00 f4 00 00 00 d2 2e 07 00 00 01 00 00 | g,..e...e-...................... |
| 6300 | c7 2f 07 00 06 00 00 00 c8 30 07 00 0b 02 00 00 cf 30 07 00 e3 01 00 00 db 32 07 00 e2 01 00 00 | ./.......0.......0.......2...... |
| 6320 | bf 34 07 00 03 00 00 00 a2 36 07 00 27 00 00 00 a6 36 07 00 18 00 00 00 ce 36 07 00 0a 00 00 00 | .4.......6..'....6.......6...... |
| 6340 | e7 36 07 00 7b 01 00 00 f2 36 07 00 40 00 00 00 6e 38 07 00 a9 01 00 00 af 38 07 00 30 00 00 00 | .6..{....6..@...n8.......8..0... |
| 6360 | 59 3a 07 00 0c 00 00 00 8a 3a 07 00 10 00 00 00 97 3a 07 00 1b 00 00 00 a8 3a 07 00 2e 00 00 00 | Y:.......:.......:.......:...... |
| 6380 | c4 3a 07 00 0b 00 00 00 f3 3a 07 00 13 00 00 00 ff 3a 07 00 0b 00 00 00 13 3b 07 00 2e 00 00 00 | .:.......:.......:.......;...... |
| 63a0 | 1f 3b 07 00 46 00 00 00 4e 3b 07 00 0d 00 00 00 95 3b 07 00 0b 00 00 00 a3 3b 07 00 58 01 00 00 | .;..F...N;.......;.......;..X... |
| 63c0 | af 3b 07 00 88 00 00 00 08 3d 07 00 62 00 00 00 91 3d 07 00 45 00 00 00 f4 3d 07 00 29 00 00 00 | .;.......=..b....=..E....=..)... |
| 63e0 | 3a 3e 07 00 96 00 00 00 64 3e 07 00 10 00 00 00 fb 3e 07 00 2f 00 00 00 0c 3f 07 00 33 00 00 00 | :>......d>.......>../....?..3... |
| 6400 | 3c 3f 07 00 43 00 00 00 70 3f 07 00 37 00 00 00 b4 3f 07 00 49 00 00 00 ec 3f 07 00 3b 00 00 00 | <?..C...p?..7....?..I....?..;... |
| 6420 | 36 40 07 00 3e 00 00 00 72 40 07 00 4a 00 00 00 b1 40 07 00 4d 00 00 00 fc 40 07 00 09 00 00 00 | 6@..>...r@..J....@..M....@...... |
| 6440 | 4a 41 07 00 a8 00 00 00 54 41 07 00 6b 00 00 00 fd 41 07 00 3a 00 00 00 69 42 07 00 08 00 00 00 | JA......TA..k....A..:...iB...... |
| 6460 | a4 42 07 00 20 00 00 00 ad 42 07 00 28 00 00 00 ce 42 07 00 4b 00 00 00 f7 42 07 00 0f 00 00 00 | .B.......B..(....B..K....B...... |
| 6480 | 43 43 07 00 26 01 00 00 53 43 07 00 5b 01 00 00 7a 44 07 00 87 00 00 00 d6 45 07 00 86 00 00 00 | CC..&...SC..[...zD.......E...... |
| 64a0 | 5e 46 07 00 ce 01 00 00 e5 46 07 00 18 00 00 00 b4 48 07 00 51 00 00 00 cd 48 07 00 f2 00 00 00 | ^F.......F.......H..Q....H...... |
| 64c0 | 1f 49 07 00 0e 00 00 00 12 4a 07 00 34 00 00 00 21 4a 07 00 36 00 00 00 56 4a 07 00 bd 00 00 00 | .I.......J..4...!J..6...VJ...... |
| 64e0 | 8d 4a 07 00 7e 00 00 00 4b 4b 07 00 82 00 00 00 ca 4b 07 00 33 00 00 00 4d 4c 07 00 0e 00 00 00 | .J..~...KK.......K..3...ML...... |
| 6500 | 81 4c 07 00 dd 00 00 00 90 4c 07 00 06 00 00 00 6e 4d 07 00 12 00 00 00 75 4d 07 00 14 00 00 00 | .L.......L......nM......uM...... |
| 6520 | 88 4d 07 00 0b 00 00 00 9d 4d 07 00 0c 00 00 00 a9 4d 07 00 0d 00 00 00 b6 4d 07 00 14 00 00 00 | .M.......M.......M.......M...... |
| 6540 | c4 4d 07 00 42 00 00 00 d9 4d 07 00 07 00 00 00 1c 4e 07 00 07 00 00 00 24 4e 07 00 c7 00 00 00 | .M..B....M.......N......$N...... |
| 6560 | 2c 4e 07 00 29 00 00 00 f4 4e 07 00 28 00 00 00 1e 4f 07 00 23 00 00 00 47 4f 07 00 14 00 00 00 | ,N..)....N..(....O..#...GO...... |
| 6580 | 6b 4f 07 00 20 00 00 00 80 4f 07 00 18 00 00 00 a1 4f 07 00 28 00 00 00 ba 4f 07 00 1d 00 00 00 | kO.......O.......O..(....O...... |
| 65a0 | e3 4f 07 00 29 00 00 00 01 50 07 00 1e 00 00 00 2b 50 07 00 30 00 00 00 4a 50 07 00 4b 00 00 00 | .O..)....P......+P..0...JP..K... |
| 65c0 | 7b 50 07 00 6e 00 00 00 c7 50 07 00 2d 00 00 00 36 51 07 00 2d 00 00 00 64 51 07 00 35 00 00 00 | {P..n....P..-...6Q..-...dQ..5... |
| 65e0 | 92 51 07 00 16 00 00 00 c8 51 07 00 1c 00 00 00 df 51 07 00 1b 00 00 00 fc 51 07 00 21 00 00 00 | .Q.......Q.......Q.......Q..!... |
| 6600 | 18 52 07 00 41 00 00 00 3a 52 07 00 35 00 00 00 7c 52 07 00 97 00 00 00 b2 52 07 00 4e 00 00 00 | .R..A...:R..5...|R.......R..N... |
| 6620 | 4a 53 07 00 1d 00 00 00 99 53 07 00 4c 00 00 00 b7 53 07 00 17 00 00 00 04 54 07 00 1f 00 00 00 | JS.......S..L....S.......T...... |
| 6640 | 1c 54 07 00 21 00 00 00 3c 54 07 00 1b 00 00 00 5e 54 07 00 41 00 00 00 7a 54 07 00 24 00 00 00 | .T..!...<T......^T..A...zT..$... |
| 6660 | bc 54 07 00 31 00 00 00 e1 54 07 00 47 00 00 00 13 55 07 00 4f 00 00 00 5b 55 07 00 45 00 00 00 | .T..1....T..G....U..O...[U..E... |
| 6680 | ab 55 07 00 7c 00 00 00 f1 55 07 00 26 00 00 00 6e 56 07 00 43 00 00 00 95 56 07 00 4c 00 00 00 | .U..|....U..&...nV..C....V..L... |
| 66a0 | d9 56 07 00 3c 00 00 00 26 57 07 00 39 00 00 00 63 57 07 00 4a 00 00 00 9d 57 07 00 82 00 00 00 | .V..<...&W..9...cW..J....W...... |
| 66c0 | e8 57 07 00 5a 00 00 00 6b 58 07 00 1a 00 00 00 c6 58 07 00 2a 00 00 00 e1 58 07 00 1c 00 00 00 | .W..Z...kX.......X..*....X...... |
| 66e0 | 0c 59 07 00 37 00 00 00 29 59 07 00 49 00 00 00 61 59 07 00 3f 00 00 00 ab 59 07 00 47 00 00 00 | .Y..7...)Y..I...aY..?....Y..G... |
| 6700 | eb 59 07 00 42 00 00 00 33 5a 07 00 28 00 00 00 76 5a 07 00 2a 00 00 00 9f 5a 07 00 2d 00 00 00 | .Y..B...3Z..(...vZ..*....Z..-... |
| 6720 | ca 5a 07 00 30 00 00 00 f8 5a 07 00 2d 00 00 00 29 5b 07 00 2c 00 00 00 57 5b 07 00 19 00 00 00 | .Z..0....Z..-...)[..,...W[...... |
| 6740 | 84 5b 07 00 29 00 00 00 9e 5b 07 00 30 00 00 00 c8 5b 07 00 24 00 00 00 f9 5b 07 00 2b 00 00 00 | .[..)....[..0....[..$....[..+... |
| 6760 | 1e 5c 07 00 29 00 00 00 4a 5c 07 00 35 00 00 00 74 5c 07 00 2a 00 00 00 aa 5c 07 00 10 00 00 00 | .\..)...J\..5...t\..*....\...... |
| 6780 | d5 5c 07 00 2b 00 00 00 e6 5c 07 00 55 00 00 00 12 5d 07 00 3c 00 00 00 68 5d 07 00 90 00 00 00 | .\..+....\..U....]..<...h]...... |
| 67a0 | a5 5d 07 00 1a 00 00 00 36 5e 07 00 72 00 00 00 51 5e 07 00 14 00 00 00 c4 5e 07 00 4c 00 00 00 | .]......6^..r...Q^.......^..L... |
| 67c0 | d9 5e 07 00 1f 00 00 00 26 5f 07 00 71 00 00 00 46 5f 07 00 6b 00 00 00 b8 5f 07 00 5b 00 00 00 | .^......&_..q...F_..k...._..[... |
| 67e0 | 24 60 07 00 2c 00 00 00 80 60 07 00 4e 00 00 00 ad 60 07 00 2a 00 00 00 fc 60 07 00 a0 00 00 00 | $`..,....`..N....`..*....`...... |
| 6800 | 27 61 07 00 65 00 00 00 c8 61 07 00 27 01 00 00 2e 62 07 00 d0 00 00 00 56 63 07 00 d8 00 00 00 | 'a..e....a..'....b......Vc...... |
| 6820 | 27 64 07 00 3f 00 00 00 00 65 07 00 38 00 00 00 40 65 07 00 46 00 00 00 79 65 07 00 40 00 00 00 | 'd..?....e..8...@e..F...ye..@... |
| 6840 | c0 65 07 00 53 00 00 00 01 66 07 00 45 00 00 00 55 66 07 00 26 01 00 00 9b 66 07 00 f1 00 00 00 | .e..S....f..E...Uf..&....f...... |
| 6860 | c2 67 07 00 48 00 00 00 b4 68 07 00 49 00 00 00 fd 68 07 00 d0 00 00 00 47 69 07 00 24 00 00 00 | .g..H....h..I....h......Gi..$... |
| 6880 | 18 6a 07 00 16 00 00 00 3d 6a 07 00 60 00 00 00 54 6a 07 00 50 00 00 00 b5 6a 07 00 27 00 00 00 | .j......=j..`...Tj..P....j..'... |
| 68a0 | 06 6b 07 00 18 00 00 00 2e 6b 07 00 49 00 00 00 47 6b 07 00 52 00 00 00 91 6b 07 00 58 00 00 00 | .k.......k..I...Gk..R....k..X... |
| 68c0 | e4 6b 07 00 3d 00 00 00 3d 6c 07 00 25 00 00 00 7b 6c 07 00 26 00 00 00 a1 6c 07 00 2a 00 00 00 | .k..=...=l..%...{l..&....l..*... |
| 68e0 | c8 6c 07 00 23 00 00 00 f3 6c 07 00 47 00 00 00 17 6d 07 00 a4 00 00 00 5f 6d 07 00 aa 00 00 00 | .l..#....l..G....m......_m...... |
| 6900 | 04 6e 07 00 55 00 00 00 af 6e 07 00 f4 00 00 00 05 6f 07 00 44 00 00 00 fa 6f 07 00 61 00 00 00 | .n..U....n.......o..D....o..a... |
| 6920 | 3f 70 07 00 54 00 00 00 a1 70 07 00 3c 00 00 00 f6 70 07 00 6d 00 00 00 33 71 07 00 6a 00 00 00 | ?p..T....p..<....p..m...3q..j... |
| 6940 | a1 71 07 00 43 00 00 00 0c 72 07 00 5c 00 00 00 50 72 07 00 34 00 00 00 ad 72 07 00 a4 00 00 00 | .q..C....r..\...Pr..4....r...... |
| 6960 | e2 72 07 00 a8 00 00 00 87 73 07 00 e8 00 00 00 30 74 07 00 ec 00 00 00 19 75 07 00 3e 00 00 00 | .r.......s......0t.......u..>... |
| 6980 | 06 76 07 00 39 00 00 00 45 76 07 00 21 00 00 00 7f 76 07 00 2c 00 00 00 a1 76 07 00 34 00 00 00 | .v..9...Ev..!....v..,....v..4... |
| 69a0 | ce 76 07 00 23 00 00 00 03 77 07 00 55 00 00 00 27 77 07 00 56 00 00 00 7d 77 07 00 35 00 00 00 | .v..#....w..U...'w..V...}w..5... |
| 69c0 | d4 77 07 00 2a 00 00 00 0a 78 07 00 66 00 00 00 35 78 07 00 7b 00 00 00 9c 78 07 00 41 00 00 00 | .w..*....x..f...5x..{....x..A... |
| 69e0 | 18 79 07 00 42 00 00 00 5a 79 07 00 41 00 00 00 9d 79 07 00 56 00 00 00 df 79 07 00 35 00 00 00 | .y..B...Zy..A....y..V....y..5... |
| 6a00 | 36 7a 07 00 2b 00 00 00 6c 7a 07 00 2f 00 00 00 98 7a 07 00 22 00 00 00 c8 7a 07 00 44 00 00 00 | 6z..+...lz../....z.."....z..D... |
| 6a20 | eb 7a 07 00 63 00 00 00 30 7b 07 00 56 00 00 00 94 7b 07 00 4d 00 00 00 eb 7b 07 00 34 00 00 00 | .z..c...0{..V....{..M....{..4... |
| 6a40 | 39 7c 07 00 3f 00 00 00 6e 7c 07 00 79 01 00 00 ae 7c 07 00 df 00 00 00 28 7e 07 00 f0 00 00 00 | 9|..?...n|..y....|......(~...... |
| 6a60 | 08 7f 07 00 df 00 00 00 f9 7f 07 00 54 00 00 00 d9 80 07 00 32 00 00 00 2e 81 07 00 0c 01 00 00 | ............T.......2........... |
| 6a80 | 61 81 07 00 59 00 00 00 6e 82 07 00 4e 00 00 00 c8 82 07 00 26 01 00 00 17 83 07 00 4a 00 00 00 | a...Y...n...N.......&.......J... |
| 6aa0 | 3e 84 07 00 1a 00 00 00 89 84 07 00 2f 00 00 00 a4 84 07 00 a4 00 00 00 d4 84 07 00 3a 00 00 00 | >.........../...............:... |
| 6ac0 | 79 85 07 00 81 00 00 00 b4 85 07 00 3a 00 00 00 36 86 07 00 2a 00 00 00 71 86 07 00 1d 01 00 00 | y...........:...6...*...q....... |
| 6ae0 | 9c 86 07 00 2d 00 00 00 ba 87 07 00 21 00 00 00 e8 87 07 00 26 00 00 00 0a 88 07 00 af 00 00 00 | ....-.......!.......&........... |
| 6b00 | 31 88 07 00 63 00 00 00 e1 88 07 00 ce 00 00 00 45 89 07 00 53 00 00 00 14 8a 07 00 44 00 00 00 | 1...c...........E...S.......D... |
| 6b20 | 68 8a 07 00 33 00 00 00 ad 8a 07 00 45 00 00 00 e1 8a 07 00 34 00 00 00 27 8b 07 00 7a 00 00 00 | h...3.......E.......4...'...z... |
| 6b40 | 5c 8b 07 00 32 00 00 00 d7 8b 07 00 27 00 00 00 0a 8c 07 00 46 00 00 00 32 8c 07 00 2e 00 00 00 | \...2.......'.......F...2....... |
| 6b60 | 79 8c 07 00 44 00 00 00 a8 8c 07 00 60 00 00 00 ed 8c 07 00 27 00 00 00 4e 8d 07 00 5b 00 00 00 | y...D.......`.......'...N...[... |
| 6b80 | 76 8d 07 00 78 00 00 00 d2 8d 07 00 5f 00 00 00 4b 8e 07 00 5b 00 00 00 ab 8e 07 00 1b 00 00 00 | v...x......._...K...[........... |
| 6ba0 | 07 8f 07 00 0c 00 00 00 23 8f 07 00 b4 01 00 00 30 8f 07 00 11 00 00 00 e5 90 07 00 12 00 00 00 | ........#.......0............... |
| 6bc0 | f7 90 07 00 ed 00 00 00 0a 91 07 00 17 00 00 00 f8 91 07 00 18 00 00 00 10 92 07 00 12 00 00 00 | ................................ |
| 6be0 | 29 92 07 00 35 00 00 00 3c 92 07 00 26 00 00 00 72 92 07 00 2c 00 00 00 99 92 07 00 75 00 00 00 | )...5...<...&...r...,.......u... |
| 6c00 | c6 92 07 00 41 00 00 00 3c 93 07 00 41 00 00 00 7e 93 07 00 6f 00 00 00 c0 93 07 00 9f 00 00 00 | ....A...<...A...~...o........... |
| 6c20 | 30 94 07 00 a1 00 00 00 d0 94 07 00 7f 00 00 00 72 95 07 00 77 00 00 00 f2 95 07 00 08 00 00 00 | 0...............r...w........... |
| 6c40 | 6a 96 07 00 0e 00 00 00 73 96 07 00 06 00 00 00 82 96 07 00 15 00 00 00 89 96 07 00 27 00 00 00 | j.......s...................'... |
| 6c60 | 9f 96 07 00 ee 00 00 00 c7 96 07 00 eb 00 00 00 b6 97 07 00 04 00 00 00 a2 98 07 00 16 00 00 00 | ................................ |
| 6c80 | a7 98 07 00 20 00 00 00 be 98 07 00 22 00 00 00 df 98 07 00 11 00 00 00 02 99 07 00 3a 00 00 00 | ............"...............:... |
| 6ca0 | 14 99 07 00 20 00 00 00 4f 99 07 00 14 00 00 00 70 99 07 00 55 00 00 00 85 99 07 00 28 00 00 00 | ........O.......p...U.......(... |
| 6cc0 | db 99 07 00 88 00 00 00 04 9a 07 00 16 00 00 00 8d 9a 07 00 16 00 00 00 a4 9a 07 00 18 00 00 00 | ................................ |
| 6ce0 | bb 9a 07 00 26 00 00 00 d4 9a 07 00 1a 00 00 00 fb 9a 07 00 27 00 00 00 16 9b 07 00 23 00 00 00 | ....&...............'.......#... |
| 6d00 | 3e 9b 07 00 17 00 00 00 62 9b 07 00 21 00 00 00 7a 9b 07 00 5d 00 00 00 9c 9b 07 00 28 00 00 00 | >.......b...!...z...].......(... |
| 6d20 | fa 9b 07 00 49 00 00 00 23 9c 07 00 44 00 00 00 6d 9c 07 00 25 00 00 00 b2 9c 07 00 21 00 00 00 | ....I...#...D...m...%.......!... |
| 6d40 | d8 9c 07 00 12 00 00 00 fa 9c 07 00 30 00 00 00 0d 9d 07 00 2f 00 00 00 3e 9d 07 00 2f 00 00 00 | ............0......./...>.../... |
| 6d60 | 6e 9d 07 00 4d 00 00 00 9e 9d 07 00 56 00 00 00 ec 9d 07 00 34 00 00 00 43 9e 07 00 2f 00 00 00 | n...M.......V.......4...C.../... |
| 6d80 | 78 9e 07 00 3a 00 00 00 a8 9e 07 00 32 00 00 00 e3 9e 07 00 3f 00 00 00 16 9f 07 00 a2 00 00 00 | x...:.......2.......?........... |
| 6da0 | 56 9f 07 00 21 00 00 00 f9 9f 07 00 0d 00 00 00 1b a0 07 00 4a 00 00 00 29 a0 07 00 2e 00 00 00 | V...!...............J...)....... |
| 6dc0 | 74 a0 07 00 2e 00 00 00 a3 a0 07 00 2e 00 00 00 d2 a0 07 00 1f 00 00 00 01 a1 07 00 41 00 00 00 | t...........................A... |
| 6de0 | 21 a1 07 00 3c 00 00 00 63 a1 07 00 5b 00 00 00 a0 a1 07 00 30 00 00 00 fc a1 07 00 3f 00 00 00 | !...<...c...[.......0.......?... |
| 6e00 | 2d a2 07 00 38 00 00 00 6d a2 07 00 2d 00 00 00 a6 a2 07 00 52 00 00 00 d4 a2 07 00 39 00 00 00 | -...8...m...-.......R.......9... |
| 6e20 | 27 a3 07 00 3b 00 00 00 61 a3 07 00 4a 00 00 00 9d a3 07 00 2d 00 00 00 e8 a3 07 00 3d 00 00 00 | '...;...a...J.......-.......=... |
| 6e40 | 16 a4 07 00 13 00 00 00 54 a4 07 00 24 00 00 00 68 a4 07 00 20 00 00 00 8d a4 07 00 29 00 00 00 | ........T...$...h...........)... |
| 6e60 | ae a4 07 00 2b 00 00 00 d8 a4 07 00 38 00 00 00 04 a5 07 00 3a 00 00 00 3d a5 07 00 3a 00 00 00 | ....+.......8.......:...=...:... |
| 6e80 | 78 a5 07 00 30 00 00 00 b3 a5 07 00 27 00 00 00 e4 a5 07 00 8d 00 00 00 0c a6 07 00 8d 00 00 00 | x...0.......'................... |
| 6ea0 | 9a a6 07 00 2f 00 00 00 28 a7 07 00 2a 00 00 00 58 a7 07 00 19 00 00 00 83 a7 07 00 5e 00 00 00 | ..../...(...*...X...........^... |
| 6ec0 | 9d a7 07 00 23 00 00 00 fc a7 07 00 37 00 00 00 20 a8 07 00 20 00 00 00 58 a8 07 00 1c 00 00 00 | ....#.......7...........X....... |
| 6ee0 | 79 a8 07 00 3b 00 00 00 96 a8 07 00 30 00 00 00 d2 a8 07 00 27 00 00 00 03 a9 07 00 20 00 00 00 | y...;.......0.......'........... |
| 6f00 | 2b a9 07 00 25 00 00 00 4c a9 07 00 dd 00 00 00 72 a9 07 00 da 00 00 00 50 aa 07 00 da 00 00 00 | +...%...L.......r.......P....... |
| 6f20 | 2b ab 07 00 0e 00 00 00 06 ac 07 00 38 00 00 00 15 ac 07 00 40 00 00 00 4e ac 07 00 23 00 00 00 | +...........8.......@...N...#... |
| 6f40 | 8f ac 07 00 24 00 00 00 b3 ac 07 00 07 00 00 00 d8 ac 07 00 07 00 00 00 e0 ac 07 00 33 00 00 00 | ....$.......................3... |
| 6f60 | e8 ac 07 00 33 00 00 00 1c ad 07 00 33 00 00 00 50 ad 07 00 33 00 00 00 84 ad 07 00 40 00 00 00 | ....3.......3...P...3.......@... |
| 6f80 | b8 ad 07 00 8c 00 00 00 f9 ad 07 00 51 00 00 00 86 ae 07 00 4f 00 00 00 d8 ae 07 00 3d 00 00 00 | ............Q.......O.......=... |
| 6fa0 | 28 af 07 00 64 00 00 00 66 af 07 00 6f 00 00 00 cb af 07 00 94 00 00 00 3b b0 07 00 92 00 00 00 | (...d...f...o...........;....... |
| 6fc0 | d0 b0 07 00 cd 00 00 00 63 b1 07 00 ce 00 00 00 31 b2 07 00 82 00 00 00 00 b3 07 00 8f 00 00 00 | ........c.......1............... |
| 6fe0 | 83 b3 07 00 e1 00 00 00 13 b4 07 00 c3 00 00 00 f5 b4 07 00 8a 00 00 00 b9 b5 07 00 8b 00 00 00 | ................................ |
| 7000 | 44 b6 07 00 19 00 00 00 d0 b6 07 00 17 00 00 00 ea b6 07 00 10 00 00 00 02 b7 07 00 0c 00 00 00 | D............................... |
| 7020 | 13 b7 07 00 ac 00 00 00 20 b7 07 00 e2 00 00 00 cd b7 07 00 14 00 00 00 b0 b8 07 00 c3 00 00 00 | ................................ |
| 7040 | c5 b8 07 00 95 00 00 00 89 b9 07 00 13 01 00 00 1f ba 07 00 31 00 00 00 33 bb 07 00 0a 00 00 00 | ....................1...3....... |
| 7060 | 65 bb 07 00 21 01 00 00 70 bb 07 00 d8 00 00 00 92 bc 07 00 8b 00 00 00 6b bd 07 00 8c 00 00 00 | e...!...p...............k....... |
| 7080 | f7 bd 07 00 f8 00 00 00 84 be 07 00 39 00 00 00 7d bf 07 00 49 00 00 00 b7 bf 07 00 b6 00 00 00 | ............9...}...I........... |
| 70a0 | 01 c0 07 00 93 00 00 00 b8 c0 07 00 80 00 00 00 4c c1 07 00 1b 00 00 00 cd c1 07 00 79 00 00 00 | ................L...........y... |
| 70c0 | e9 c1 07 00 79 00 00 00 63 c2 07 00 53 01 00 00 dd c2 07 00 7f 00 00 00 31 c4 07 00 a9 00 00 00 | ....y...c...S...........1....... |
| 70e0 | b1 c4 07 00 b6 00 00 00 5b c5 07 00 83 00 00 00 12 c6 07 00 86 00 00 00 96 c6 07 00 0e 00 00 00 | ........[....................... |
| 7100 | 1d c7 07 00 5d 00 00 00 2c c7 07 00 36 00 00 00 8a c7 07 00 10 00 00 00 c1 c7 07 00 0d 00 00 00 | ....]...,...6................... |
| 7120 | d2 c7 07 00 45 00 00 00 e0 c7 07 00 45 00 00 00 26 c8 07 00 19 00 00 00 6c c8 07 00 22 00 00 00 | ....E.......E...&.......l..."... |
| 7140 | 86 c8 07 00 1c 00 00 00 a9 c8 07 00 45 00 00 00 c6 c8 07 00 50 00 00 00 0c c9 07 00 65 00 00 00 | ............E.......P.......e... |
| 7160 | 5d c9 07 00 2f 00 00 00 c3 c9 07 00 60 00 00 00 f3 c9 07 00 54 00 00 00 54 ca 07 00 55 00 00 00 | ].../.......`.......T...T...U... |
| 7180 | a9 ca 07 00 48 00 00 00 ff ca 07 00 26 00 00 00 48 cb 07 00 26 00 00 00 6f cb 07 00 b2 00 00 00 | ....H.......&...H...&...o....... |
| 71a0 | 96 cb 07 00 eb 00 00 00 49 cc 07 00 75 00 00 00 35 cd 07 00 77 00 00 00 ab cd 07 00 4d 00 00 00 | ........I...u...5...w.......M... |
| 71c0 | 23 ce 07 00 e2 00 00 00 71 ce 07 00 5b 00 00 00 54 cf 07 00 78 00 00 00 b0 cf 07 00 1d 01 00 00 | #.......q...[...T...x........... |
| 71e0 | 29 d0 07 00 29 01 00 00 47 d1 07 00 53 00 00 00 71 d2 07 00 42 00 00 00 c5 d2 07 00 8b 00 00 00 | )...)...G...S...q...B........... |
| 7200 | 08 d3 07 00 1e 00 00 00 94 d3 07 00 56 00 00 00 b3 d3 07 00 d2 00 00 00 0a d4 07 00 36 00 00 00 | ............V...............6... |
| 7220 | dd d4 07 00 ce 00 00 00 14 d5 07 00 00 01 00 00 e3 d5 07 00 c1 00 00 00 e4 d6 07 00 38 00 00 00 | ............................8... |
| 7240 | a6 d7 07 00 27 00 00 00 df d7 07 00 57 00 00 00 07 d8 07 00 bd 00 00 00 5f d8 07 00 85 00 00 00 | ....'.......W..........._....... |
| 7260 | 1d d9 07 00 4f 00 00 00 a3 d9 07 00 ba 01 00 00 f3 d9 07 00 b6 00 00 00 ae db 07 00 47 00 00 00 | ....O.......................G... |
| 7280 | 65 dc 07 00 63 00 00 00 ad dc 07 00 4c 00 00 00 11 dd 07 00 d5 00 00 00 5e dd 07 00 66 00 00 00 | e...c.......L...........^...f... |
| 72a0 | 34 de 07 00 45 01 00 00 9b de 07 00 56 00 00 00 e1 df 07 00 64 00 00 00 38 e0 07 00 57 00 00 00 | 4...E.......V.......d...8...W... |
| 72c0 | 9d e0 07 00 64 00 00 00 f5 e0 07 00 bf 00 00 00 5a e1 07 00 a4 00 00 00 1a e2 07 00 bc 00 00 00 | ....d...........Z............... |
| 72e0 | bf e2 07 00 65 00 00 00 7c e3 07 00 3f 00 00 00 e2 e3 07 00 c0 01 00 00 22 e4 07 00 72 00 00 00 | ....e...|...?..........."...r... |
| 7300 | e3 e5 07 00 74 00 00 00 56 e6 07 00 58 00 00 00 cb e6 07 00 45 00 00 00 24 e7 07 00 41 00 00 00 | ....t...V...X.......E...$...A... |
| 7320 | 6a e7 07 00 52 00 00 00 ac e7 07 00 81 00 00 00 ff e7 07 00 75 00 00 00 81 e8 07 00 7f 00 00 00 | j...R...............u........... |
| 7340 | f7 e8 07 00 30 00 00 00 77 e9 07 00 31 00 00 00 a8 e9 07 00 7e 00 00 00 da e9 07 00 50 00 00 00 | ....0...w...1.......~.......P... |
| 7360 | 59 ea 07 00 36 00 00 00 aa ea 07 00 50 01 00 00 e1 ea 07 00 69 00 00 00 32 ec 07 00 a3 00 00 00 | Y...6.......P.......i...2....... |
| 7380 | 9c ec 07 00 5d 00 00 00 40 ed 07 00 8e 00 00 00 9e ed 07 00 4a 00 00 00 2d ee 07 00 57 00 00 00 | ....]...@...........J...-...W... |
| 73a0 | 78 ee 07 00 6d 00 00 00 d0 ee 07 00 64 00 00 00 3e ef 07 00 64 00 00 00 a3 ef 07 00 99 00 00 00 | x...m.......d...>...d........... |
| 73c0 | 08 f0 07 00 26 00 00 00 a2 f0 07 00 b1 00 00 00 c9 f0 07 00 ad 00 00 00 7b f1 07 00 81 00 00 00 | ....&...................{....... |
| 73e0 | 29 f2 07 00 33 00 00 00 ab f2 07 00 c0 00 00 00 df f2 07 00 90 00 00 00 a0 f3 07 00 a3 00 00 00 | )...3........................... |
| 7400 | 31 f4 07 00 a2 00 00 00 d5 f4 07 00 83 00 00 00 78 f5 07 00 41 00 00 00 fc f5 07 00 3a 00 00 00 | 1...............x...A.......:... |
| 7420 | 3e f6 07 00 4b 00 00 00 79 f6 07 00 65 00 00 00 c5 f6 07 00 65 00 00 00 2b f7 07 00 06 00 00 00 | >...K...y...e.......e...+....... |
| 7440 | 91 f7 07 00 05 00 00 00 98 f7 07 00 e3 01 00 00 9e f7 07 00 1e 00 00 00 82 f9 07 00 1d 00 00 00 | ................................ |
| 7460 | a1 f9 07 00 3d 00 00 00 bf f9 07 00 a4 00 00 00 fd f9 07 00 9d 01 00 00 a2 fa 07 00 60 02 00 00 | ....=.......................`... |
| 7480 | 40 fc 07 00 5b 02 00 00 a1 fe 07 00 4b 02 00 00 fd 00 08 00 5a 02 00 00 49 03 08 00 6d 00 00 00 | @...[.......K.......Z...I...m... |
| 74a0 | a4 05 08 00 a8 00 00 00 12 06 08 00 bf 00 00 00 bb 06 08 00 b2 00 00 00 7b 07 08 00 06 00 00 00 | ........................{....... |
| 74c0 | 2e 08 08 00 4b 01 00 00 35 08 08 00 4c 01 00 00 81 09 08 00 17 00 00 00 ce 0a 08 00 0b 00 00 00 | ....K...5...L................... |
| 74e0 | e6 0a 08 00 0d 00 00 00 f2 0a 08 00 55 00 00 00 00 0b 08 00 0f 00 00 00 56 0b 08 00 0f 00 00 00 | ............U...........V....... |
| 7500 | 66 0b 08 00 5c 00 00 00 76 0b 08 00 ff 02 00 00 d3 0b 08 00 b1 00 00 00 d3 0e 08 00 52 00 00 00 | f...\...v...................R... |
| 7520 | 85 0f 08 00 37 00 00 00 d8 0f 08 00 06 00 00 00 10 10 08 00 12 00 00 00 17 10 08 00 9a 00 00 00 | ....7........................... |
| 7540 | 2a 10 08 00 08 00 00 00 c5 10 08 00 38 00 00 00 ce 10 08 00 11 00 00 00 07 11 08 00 1c 00 00 00 | *...........8................... |
| 7560 | 19 11 08 00 12 00 00 00 36 11 08 00 1a 00 00 00 49 11 08 00 49 00 00 00 64 11 08 00 1e 00 00 00 | ........6.......I...I...d....... |
| 7580 | ae 11 08 00 2f 00 00 00 cd 11 08 00 73 00 00 00 fd 11 08 00 ae 00 00 00 71 12 08 00 af 00 00 00 | ..../.......s...........q....... |
| 75a0 | 20 13 08 00 11 00 00 00 d0 13 08 00 d5 00 00 00 e2 13 08 00 d0 00 00 00 b8 14 08 00 0b 00 00 00 | ................................ |
| 75c0 | 89 15 08 00 4a 00 00 00 95 15 08 00 08 00 00 00 e0 15 08 00 14 00 00 00 e9 15 08 00 4a 00 00 00 | ....J.......................J... |
| 75e0 | fe 15 08 00 60 00 00 00 49 16 08 00 06 00 00 00 aa 16 08 00 06 00 00 00 b1 16 08 00 da 00 00 00 | ....`...I....................... |
| 7600 | b8 16 08 00 99 00 00 00 93 17 08 00 98 00 00 00 2d 18 08 00 bc 00 00 00 c6 18 08 00 06 00 00 00 | ................-............... |
| 7620 | 83 19 08 00 0a 00 00 00 8a 19 08 00 14 00 00 00 95 19 08 00 1b 00 00 00 aa 19 08 00 0c 00 00 00 | ................................ |
| 7640 | c6 19 08 00 19 00 00 00 d3 19 08 00 2e 00 00 00 ed 19 08 00 1d 00 00 00 1c 1a 08 00 0e 00 00 00 | ................................ |
| 7660 | 3a 1a 08 00 00 02 00 00 49 1a 08 00 ff 01 00 00 4a 1c 08 00 26 00 00 00 4a 1e 08 00 0e 00 00 00 | :.......I.......J...&...J....... |
| 7680 | 71 1e 08 00 21 00 00 00 80 1e 08 00 98 00 00 00 a2 1e 08 00 07 00 00 00 3b 1f 08 00 03 00 00 00 | q...!...................;....... |
| 76a0 | 43 1f 08 00 91 00 00 00 47 1f 08 00 0a 00 00 00 d9 1f 08 00 0b 00 00 00 e4 1f 08 00 6a 00 00 00 | C.......G...................j... |
| 76c0 | f0 1f 08 00 0e 00 00 00 5b 20 08 00 08 00 00 00 6a 20 08 00 3f 00 00 00 73 20 08 00 2b 00 00 00 | ........[.......j...?...s...+... |
| 76e0 | b3 20 08 00 29 00 00 00 df 20 08 00 35 00 00 00 09 21 08 00 54 00 00 00 3f 21 08 00 5c 00 00 00 | ....).......5....!..T...?!..\... |
| 7700 | 94 21 08 00 7b 00 00 00 f1 21 08 00 56 00 00 00 6d 22 08 00 67 00 00 00 c4 22 08 00 25 00 00 00 | .!..{....!..V...m"..g...."..%... |
| 7720 | 2c 23 08 00 3a 00 00 00 52 23 08 00 3a 00 00 00 8d 23 08 00 0d 00 00 00 c8 23 08 00 64 00 00 00 | ,#..:...R#..:....#.......#..d... |
| 7740 | d6 23 08 00 64 00 00 00 3b 24 08 00 67 00 00 00 a0 24 08 00 67 00 00 00 08 25 08 00 1f 00 00 00 | .#..d...;$..g....$..g....%...... |
| 7760 | 70 25 08 00 0c 00 00 00 90 25 08 00 16 00 00 00 9d 25 08 00 44 01 00 00 b4 25 08 00 41 00 00 00 | p%.......%.......%..D....%..A... |
| 7780 | f9 26 08 00 47 00 00 00 3b 27 08 00 d3 00 00 00 83 27 08 00 3a 02 00 00 57 28 08 00 d7 00 00 00 | .&..G...;'.......'..:...W(...... |
| 77a0 | 92 2a 08 00 fe 00 00 00 6a 2b 08 00 93 00 00 00 69 2c 08 00 4e 01 00 00 fd 2c 08 00 30 00 00 00 | .*......j+......i,..N....,..0... |
| 77c0 | 4c 2e 08 00 c8 00 00 00 7d 2e 08 00 ab 00 00 00 46 2f 08 00 31 00 00 00 f2 2f 08 00 29 00 00 00 | L.......}.......F/..1..../..)... |
| 77e0 | 24 30 08 00 68 01 00 00 4e 30 08 00 39 00 00 00 b7 31 08 00 3b 01 00 00 f1 31 08 00 b2 00 00 00 | $0..h...N0..9....1..;....1...... |
| 7800 | 2d 33 08 00 27 00 00 00 e0 33 08 00 44 00 00 00 08 34 08 00 d2 00 00 00 4d 34 08 00 73 00 00 00 | -3..'....3..D....4......M4..s... |
| 7820 | 20 35 08 00 d7 00 00 00 94 35 08 00 9f 00 00 00 6c 36 08 00 2d 01 00 00 0c 37 08 00 af 00 00 00 | .5.......5......l6..-....7...... |
| 7840 | 3a 38 08 00 cc 00 00 00 ea 38 08 00 4f 00 00 00 b7 39 08 00 3f 01 00 00 07 3a 08 00 c1 00 00 00 | :8.......8..O....9..?....:...... |
| 7860 | 47 3b 08 00 59 00 00 00 09 3c 08 00 59 00 00 00 63 3c 08 00 21 01 00 00 bd 3c 08 00 59 00 00 00 | G;..Y....<..Y...c<..!....<..Y... |
| 7880 | df 3d 08 00 29 01 00 00 39 3e 08 00 6f 00 00 00 63 3f 08 00 8f 00 00 00 d3 3f 08 00 8d 00 00 00 | .=..)...9>..o...c?.......?...... |
| 78a0 | 63 40 08 00 9e 00 00 00 f1 40 08 00 6e 00 00 00 90 41 08 00 6c 00 00 00 ff 41 08 00 3a 00 00 00 | c@.......@..n....A..l....A..:... |
| 78c0 | 6c 42 08 00 95 00 00 00 a7 42 08 00 68 00 00 00 3d 43 08 00 58 00 00 00 a6 43 08 00 15 01 00 00 | lB.......B..h...=C..X....C...... |
| 78e0 | ff 43 08 00 96 00 00 00 15 45 08 00 52 00 00 00 ac 45 08 00 52 00 00 00 ff 45 08 00 99 00 00 00 | .C.......E..R....E..R....E...... |
| 7900 | 52 46 08 00 96 00 00 00 ec 46 08 00 ec 00 00 00 83 47 08 00 94 00 00 00 70 48 08 00 9e 00 00 00 | RF.......F.......G......pH...... |
| 7920 | 05 49 08 00 79 00 00 00 a4 49 08 00 78 00 00 00 1e 4a 08 00 50 00 00 00 97 4a 08 00 9e 00 00 00 | .I..y....I..x....J..P....J...... |
| 7940 | e8 4a 08 00 13 00 00 00 87 4b 08 00 40 00 00 00 9b 4b 08 00 3a 00 00 00 dc 4b 08 00 98 01 00 00 | .J.......K..@....K..:....K...... |
| 7960 | 17 4c 08 00 2d 00 00 00 b0 4d 08 00 39 00 00 00 de 4d 08 00 e0 00 00 00 18 4e 08 00 18 00 00 00 | .L..-....M..9....M.......N...... |
| 7980 | f9 4e 08 00 26 00 00 00 12 4f 08 00 57 00 00 00 39 4f 08 00 57 00 00 00 91 4f 08 00 ad 00 00 00 | .N..&....O..W...9O..W....O...... |
| 79a0 | e9 4f 08 00 ad 00 00 00 97 50 08 00 b5 00 00 00 45 51 08 00 70 01 00 00 fb 51 08 00 1b 00 00 00 | .O.......P......EQ..p....Q...... |
| 79c0 | 6c 53 08 00 ab 01 00 00 88 53 08 00 eb 00 00 00 34 55 08 00 bb 00 00 00 20 56 08 00 bb 00 00 00 | lS.......S......4U.......V...... |
| 79e0 | dc 56 08 00 fd 00 00 00 98 57 08 00 85 00 00 00 96 58 08 00 b5 00 00 00 1c 59 08 00 b5 00 00 00 | .V.......W.......X.......Y...... |
| 7a00 | d2 59 08 00 5b 00 00 00 88 5a 08 00 83 00 00 00 e4 5a 08 00 4b 00 00 00 68 5b 08 00 47 00 00 00 | .Y..[....Z.......Z..K...h[..G... |
| 7a20 | b4 5b 08 00 45 00 00 00 fc 5b 08 00 45 00 00 00 42 5c 08 00 59 01 00 00 88 5c 08 00 27 00 00 00 | .[..E....[..E...B\..Y....\..'... |
| 7a40 | e2 5d 08 00 f8 00 00 00 0a 5e 08 00 0c 01 00 00 03 5f 08 00 28 02 00 00 10 60 08 00 ff 00 00 00 | .].......^......._..(....`...... |
| 7a60 | 39 62 08 00 61 00 00 00 39 63 08 00 c8 00 00 00 9b 63 08 00 5a 00 00 00 64 64 08 00 5c 00 00 00 | 9b..a...9c.......c..Z...dd..\... |
| 7a80 | bf 64 08 00 a9 00 00 00 1c 65 08 00 b6 00 00 00 c6 65 08 00 5e 00 00 00 7d 66 08 00 d3 00 00 00 | .d.......e.......e..^...}f...... |
| 7aa0 | dc 66 08 00 24 00 00 00 b0 67 08 00 14 00 00 00 d5 67 08 00 1a 00 00 00 ea 67 08 00 bc 00 00 00 | .f..$....g.......g.......g...... |
| 7ac0 | 05 68 08 00 68 00 00 00 c2 68 08 00 1f 00 00 00 2b 69 08 00 24 00 00 00 4b 69 08 00 bd 00 00 00 | .h..h....h......+i..$...Ki...... |
| 7ae0 | 70 69 08 00 1f 00 00 00 2e 6a 08 00 17 00 00 00 4e 6a 08 00 21 00 00 00 66 6a 08 00 21 00 00 00 | pi.......j......Nj..!...fj..!... |
| 7b00 | 88 6a 08 00 22 00 00 00 aa 6a 08 00 40 00 00 00 cd 6a 08 00 1a 00 00 00 0e 6b 08 00 45 00 00 00 | .j.."....j..@....j.......k..E... |
| 7b20 | 29 6b 08 00 17 01 00 00 6f 6b 08 00 54 00 00 00 87 6c 08 00 c0 01 00 00 dc 6c 08 00 d2 01 00 00 | )k......ok..T....l.......l...... |
| 7b40 | 9d 6e 08 00 a2 00 00 00 70 70 08 00 d1 00 00 00 13 71 08 00 e4 00 00 00 e5 71 08 00 bf 00 00 00 | .n......pp.......q.......q...... |
| 7b60 | ca 72 08 00 dc 00 00 00 8a 73 08 00 4e 01 00 00 67 74 08 00 45 00 00 00 b6 75 08 00 34 00 00 00 | .r.......s..N...gt..E....u..4... |
| 7b80 | fc 75 08 00 b4 00 00 00 31 76 08 00 f9 00 00 00 e6 76 08 00 f9 00 00 00 e0 77 08 00 c5 00 00 00 | .u......1v.......v.......w...... |
| 7ba0 | da 78 08 00 27 00 00 00 a0 79 08 00 b7 00 00 00 c8 79 08 00 ae 00 00 00 80 7a 08 00 52 00 00 00 | .x..'....y.......y.......z..R... |
| 7bc0 | 2f 7b 08 00 ab 00 00 00 82 7b 08 00 c8 00 00 00 2e 7c 08 00 5b 00 00 00 f7 7c 08 00 6d 00 00 00 | /{.......{.......|..[....|..m... |
| 7be0 | 53 7d 08 00 ab 00 00 00 c1 7d 08 00 30 00 00 00 6d 7e 08 00 35 00 00 00 9e 7e 08 00 68 00 00 00 | S}.......}..0...m~..5....~..h... |
| 7c00 | d4 7e 08 00 53 00 00 00 3d 7f 08 00 33 00 00 00 91 7f 08 00 2d 00 00 00 c5 7f 08 00 4e 00 00 00 | .~..S...=...3.......-.......N... |
| 7c20 | f3 7f 08 00 70 00 00 00 42 80 08 00 6c 00 00 00 b3 80 08 00 c5 00 00 00 20 81 08 00 b7 00 00 00 | ....p...B...l................... |
| 7c40 | e6 81 08 00 38 00 00 00 9e 82 08 00 39 00 00 00 d7 82 08 00 21 01 00 00 11 83 08 00 dd 00 00 00 | ....8.......9.......!........... |
| 7c60 | 33 84 08 00 1e 01 00 00 11 85 08 00 5f 01 00 00 30 86 08 00 dc 00 00 00 90 87 08 00 c8 00 00 00 | 3..........._...0............... |
| 7c80 | 6d 88 08 00 36 00 00 00 36 89 08 00 6e 00 00 00 6d 89 08 00 91 00 00 00 dc 89 08 00 8e 00 00 00 | m...6...6...n...m............... |
| 7ca0 | 6e 8a 08 00 60 00 00 00 fd 8a 08 00 b0 00 00 00 5e 8b 08 00 6e 00 00 00 0f 8c 08 00 6b 00 00 00 | n...`...........^...n.......k... |
| 7cc0 | 7e 8c 08 00 35 00 00 00 ea 8c 08 00 33 00 00 00 20 8d 08 00 f1 00 00 00 54 8d 08 00 2b 00 00 00 | ~...5.......3...........T...+... |
| 7ce0 | 46 8e 08 00 38 00 00 00 72 8e 08 00 3a 01 00 00 ab 8e 08 00 4b 00 00 00 e6 8f 08 00 53 01 00 00 | F...8...r...:.......K.......S... |
| 7d00 | 32 90 08 00 92 01 00 00 86 91 08 00 a1 00 00 00 19 93 08 00 28 00 00 00 bb 93 08 00 35 01 00 00 | 2...................(.......5... |
| 7d20 | e4 93 08 00 9a 00 00 00 1a 95 08 00 10 01 00 00 b5 95 08 00 3d 00 00 00 c6 96 08 00 2b 00 00 00 | ....................=.......+... |
| 7d40 | 04 97 08 00 a6 00 00 00 30 97 08 00 2e 00 00 00 d7 97 08 00 3f 00 00 00 06 98 08 00 ec 00 00 00 | ........0...........?........... |
| 7d60 | 46 98 08 00 ee 00 00 00 33 99 08 00 7c 00 00 00 22 9a 08 00 9a 01 00 00 9f 9a 08 00 42 00 00 00 | F.......3...|..."...........B... |
| 7d80 | 3a 9c 08 00 82 00 00 00 7d 9c 08 00 9b 00 00 00 00 9d 08 00 31 00 00 00 9c 9d 08 00 b4 00 00 00 | :.......}...........1........... |
| 7da0 | ce 9d 08 00 b8 00 00 00 83 9e 08 00 63 00 00 00 3c 9f 08 00 33 00 00 00 a0 9f 08 00 3a 00 00 00 | ............c...<...3.......:... |
| 7dc0 | d4 9f 08 00 5e 00 00 00 0f a0 08 00 25 01 00 00 6e a0 08 00 42 00 00 00 94 a1 08 00 5c 00 00 00 | ....^.......%...n...B.......\... |
| 7de0 | d7 a1 08 00 56 00 00 00 34 a2 08 00 fe 00 00 00 8b a2 08 00 79 00 00 00 8a a3 08 00 55 00 00 00 | ....V...4...........y.......U... |
| 7e00 | 04 a4 08 00 58 00 00 00 5a a4 08 00 cd 01 00 00 b3 a4 08 00 3d 00 00 00 81 a6 08 00 e8 01 00 00 | ....X...Z...........=........... |
| 7e20 | bf a6 08 00 40 00 00 00 a8 a8 08 00 7f 00 00 00 e9 a8 08 00 6c 00 00 00 69 a9 08 00 6e 00 00 00 | ....@...............l...i...n... |
| 7e40 | d6 a9 08 00 e8 00 00 00 45 aa 08 00 a5 00 00 00 2e ab 08 00 6b 00 00 00 d4 ab 08 00 69 01 00 00 | ........E...........k.......i... |
| 7e60 | 40 ac 08 00 34 00 00 00 aa ad 08 00 79 00 00 00 df ad 08 00 3d 00 00 00 59 ae 08 00 54 00 00 00 | @...4.......y.......=...Y...T... |
| 7e80 | 97 ae 08 00 4c 00 00 00 ec ae 08 00 bc 00 00 00 39 af 08 00 ea 00 00 00 f6 af 08 00 6d 00 00 00 | ....L...........9...........m... |
| 7ea0 | e1 b0 08 00 e6 00 00 00 4f b1 08 00 36 00 00 00 36 b2 08 00 5b 00 00 00 6d b2 08 00 6a 00 00 00 | ........O...6...6...[...m...j... |
| 7ec0 | c9 b2 08 00 82 00 00 00 34 b3 08 00 73 00 00 00 b7 b3 08 00 49 00 00 00 2b b4 08 00 29 00 00 00 | ........4...s.......I...+...)... |
| 7ee0 | 75 b4 08 00 2a 01 00 00 9f b4 08 00 47 00 00 00 ca b5 08 00 46 00 00 00 12 b6 08 00 49 00 00 00 | u...*.......G.......F.......I... |
| 7f00 | 59 b6 08 00 49 00 00 00 a3 b6 08 00 22 00 00 00 ed b6 08 00 54 00 00 00 10 b7 08 00 65 00 00 00 | Y...I.......".......T.......e... |
| 7f20 | 65 b7 08 00 32 00 00 00 cb b7 08 00 9d 00 00 00 fe b7 08 00 77 00 00 00 9c b8 08 00 2c 00 00 00 | e...2...............w.......,... |
| 7f40 | 14 b9 08 00 42 00 00 00 41 b9 08 00 2b 00 00 00 84 b9 08 00 86 01 00 00 b0 b9 08 00 c4 00 00 00 | ....B...A...+................... |
| 7f60 | 37 bb 08 00 c6 00 00 00 fc bb 08 00 80 00 00 00 c3 bc 08 00 49 01 00 00 44 bd 08 00 90 00 00 00 | 7...................I...D....... |
| 7f80 | 8e be 08 00 38 00 00 00 1f bf 08 00 9f 00 00 00 58 bf 08 00 1c 01 00 00 f8 bf 08 00 d5 00 00 00 | ....8...........X............... |
| 7fa0 | 15 c1 08 00 38 00 00 00 eb c1 08 00 28 00 00 00 24 c2 08 00 5c 00 00 00 4d c2 08 00 29 00 00 00 | ....8.......(...$...\...M...)... |
| 7fc0 | aa c2 08 00 71 00 00 00 d4 c2 08 00 41 00 00 00 46 c3 08 00 0f 01 00 00 88 c3 08 00 26 00 00 00 | ....q.......A...F...........&... |
| 7fe0 | 98 c4 08 00 5c 00 00 00 bf c4 08 00 b6 00 00 00 1c c5 08 00 fc 00 00 00 d3 c5 08 00 89 00 00 00 | ....\........................... |
| 8000 | d0 c6 08 00 25 00 00 00 5a c7 08 00 5f 00 00 00 80 c7 08 00 ec 00 00 00 e0 c7 08 00 4e 00 00 00 | ....%...Z..._...............N... |
| 8020 | cd c8 08 00 84 00 00 00 1c c9 08 00 55 00 00 00 a1 c9 08 00 12 01 00 00 f7 c9 08 00 75 00 00 00 | ............U...............u... |
| 8040 | 0a cb 08 00 65 00 00 00 80 cb 08 00 e2 00 00 00 e6 cb 08 00 2f 00 00 00 c9 cc 08 00 29 00 00 00 | ....e.............../.......)... |
| 8060 | f9 cc 08 00 a0 01 00 00 23 cd 08 00 9f 01 00 00 c4 ce 08 00 e1 00 00 00 64 d0 08 00 ff 00 00 00 | ........#...............d....... |
| 8080 | 46 d1 08 00 db 00 00 00 46 d2 08 00 dc 00 00 00 22 d3 08 00 36 00 00 00 ff d3 08 00 40 00 00 00 | F.......F......."...6.......@... |
| 80a0 | 36 d4 08 00 1f 00 00 00 77 d4 08 00 40 00 00 00 97 d4 08 00 4d 00 00 00 d8 d4 08 00 4c 00 00 00 | 6.......w...@.......M.......L... |
| 80c0 | 26 d5 08 00 d8 00 00 00 73 d5 08 00 92 00 00 00 4c d6 08 00 43 00 00 00 df d6 08 00 af 00 00 00 | &.......s.......L...C........... |
| 80e0 | 23 d7 08 00 65 00 00 00 d3 d7 08 00 a8 00 00 00 39 d8 08 00 38 00 00 00 e2 d8 08 00 3e 01 00 00 | #...e...........9...8.......>... |
| 8100 | 1b d9 08 00 3c 00 00 00 5a da 08 00 90 00 00 00 97 da 08 00 58 00 00 00 28 db 08 00 95 00 00 00 | ....<...Z...........X...(....... |
| 8120 | 81 db 08 00 50 00 00 00 17 dc 08 00 64 00 00 00 68 dc 08 00 50 00 00 00 cd dc 08 00 6d 00 00 00 | ....P.......d...h...P.......m... |
| 8140 | 1e dd 08 00 3a 00 00 00 8c dd 08 00 29 00 00 00 c7 dd 08 00 6d 00 00 00 f1 dd 08 00 94 00 00 00 | ....:.......).......m........... |
| 8160 | 5f de 08 00 c0 00 00 00 f4 de 08 00 b8 01 00 00 b5 df 08 00 51 00 00 00 6e e1 08 00 21 00 00 00 | _...................Q...n...!... |
| 8180 | c0 e1 08 00 26 00 00 00 e2 e1 08 00 25 00 00 00 09 e2 08 00 71 00 00 00 2f e2 08 00 24 00 00 00 | ....&.......%.......q.../...$... |
| 81a0 | a1 e2 08 00 bc 01 00 00 c6 e2 08 00 55 00 00 00 83 e4 08 00 a9 00 00 00 d9 e4 08 00 4c 00 00 00 | ............U...............L... |
| 81c0 | 83 e5 08 00 ee 00 00 00 d0 e5 08 00 43 00 00 00 bf e6 08 00 39 00 00 00 03 e7 08 00 a9 00 00 00 | ............C.......9........... |
| 81e0 | 3d e7 08 00 a9 00 00 00 e7 e7 08 00 50 00 00 00 91 e8 08 00 53 01 00 00 e2 e8 08 00 46 00 00 00 | =...........P.......S.......F... |
| 8200 | 36 ea 08 00 44 00 00 00 7d ea 08 00 43 00 00 00 c2 ea 08 00 de 00 00 00 06 eb 08 00 83 00 00 00 | 6...D...}...C................... |
| 8220 | e5 eb 08 00 83 00 00 00 69 ec 08 00 39 01 00 00 ed ec 08 00 a0 00 00 00 27 ee 08 00 d1 00 00 00 | ........i...9...........'....... |
| 8240 | c8 ee 08 00 61 00 00 00 9a ef 08 00 b4 00 00 00 fc ef 08 00 b7 00 00 00 b1 f0 08 00 b6 00 00 00 | ....a........................... |
| 8260 | 69 f1 08 00 bb 00 00 00 20 f2 08 00 a1 00 00 00 dc f2 08 00 5c 00 00 00 7e f3 08 00 58 00 00 00 | i...................\...~...X... |
| 8280 | db f3 08 00 5c 00 00 00 34 f4 08 00 58 00 00 00 91 f4 08 00 71 00 00 00 ea f4 08 00 5e 00 00 00 | ....\...4...X.......q.......^... |
| 82a0 | 5c f5 08 00 21 01 00 00 bb f5 08 00 13 01 00 00 dd f6 08 00 12 01 00 00 f1 f7 08 00 09 01 00 00 | \...!........................... |
| 82c0 | 04 f9 08 00 40 00 00 00 0e fa 08 00 a3 00 00 00 4f fa 08 00 a3 00 00 00 f3 fa 08 00 9f 00 00 00 | ....@...........O............... |
| 82e0 | 97 fb 08 00 9f 00 00 00 37 fc 08 00 bb 00 00 00 d7 fc 08 00 b4 00 00 00 93 fd 08 00 54 00 00 00 | ........7...................T... |
| 8300 | 48 fe 08 00 bc 00 00 00 9d fe 08 00 56 00 00 00 5a ff 08 00 be 00 00 00 b1 ff 08 00 4e 00 00 00 | H...........V...Z...........N... |
| 8320 | 70 00 09 00 cf 01 00 00 bf 00 09 00 29 01 00 00 8f 02 09 00 63 00 00 00 b9 03 09 00 46 00 00 00 | p...........).......c.......F... |
| 8340 | 1d 04 09 00 7e 00 00 00 64 04 09 00 3c 00 00 00 e3 04 09 00 db 00 00 00 20 05 09 00 42 00 00 00 | ....~...d...<...............B... |
| 8360 | fc 05 09 00 4e 00 00 00 3f 06 09 00 4e 00 00 00 8e 06 09 00 49 00 00 00 dd 06 09 00 49 00 00 00 | ....N...?...N.......I.......I... |
| 8380 | 27 07 09 00 43 00 00 00 71 07 09 00 4b 00 00 00 b5 07 09 00 64 00 00 00 01 08 09 00 46 00 00 00 | '...C...q...K.......d.......F... |
| 83a0 | 66 08 09 00 84 00 00 00 ad 08 09 00 7c 00 00 00 32 09 09 00 86 00 00 00 af 09 09 00 2f 00 00 00 | f...........|...2.........../... |
| 83c0 | 36 0a 09 00 79 00 00 00 66 0a 09 00 76 00 00 00 e0 0a 09 00 81 00 00 00 57 0b 09 00 46 01 00 00 | 6...y...f...v...........W...F... |
| 83e0 | d9 0b 09 00 71 00 00 00 20 0d 09 00 66 00 00 00 92 0d 09 00 3f 00 00 00 f9 0d 09 00 88 00 00 00 | ....q.......f.......?........... |
| 8400 | 39 0e 09 00 da 00 00 00 c2 0e 09 00 19 00 00 00 9d 0f 09 00 90 01 00 00 b7 0f 09 00 a5 00 00 00 | 9............................... |
| 8420 | 48 11 09 00 43 00 00 00 ee 11 09 00 2a 00 00 00 32 12 09 00 4c 00 00 00 5d 12 09 00 3a 00 00 00 | H...C.......*...2...L...]...:... |
| 8440 | aa 12 09 00 4e 00 00 00 e5 12 09 00 b0 00 00 00 34 13 09 00 2a 00 00 00 e5 13 09 00 21 00 00 00 | ....N...........4...*.......!... |
| 8460 | 10 14 09 00 51 00 00 00 32 14 09 00 45 00 00 00 84 14 09 00 5f 00 00 00 ca 14 09 00 37 00 00 00 | ....Q...2...E......._.......7... |
| 8480 | 2a 15 09 00 41 00 00 00 62 15 09 00 44 00 00 00 a4 15 09 00 6a 00 00 00 e9 15 09 00 3c 00 00 00 | *...A...b...D.......j.......<... |
| 84a0 | 54 16 09 00 56 00 00 00 91 16 09 00 4a 00 00 00 e8 16 09 00 ee 00 00 00 33 17 09 00 47 00 00 00 | T...V.......J...........3...G... |
| 84c0 | 22 18 09 00 7a 00 00 00 6a 18 09 00 d2 00 00 00 e5 18 09 00 5f 00 00 00 b8 19 09 00 d5 00 00 00 | "...z...j..........._........... |
| 84e0 | 18 1a 09 00 39 00 00 00 ee 1a 09 00 70 00 00 00 28 1b 09 00 5d 00 00 00 99 1b 09 00 55 00 00 00 | ....9.......p...(...].......U... |
| 8500 | f7 1b 09 00 2b 00 00 00 4d 1c 09 00 38 00 00 00 79 1c 09 00 46 00 00 00 b2 1c 09 00 4c 00 00 00 | ....+...M...8...y...F.......L... |
| 8520 | f9 1c 09 00 62 00 00 00 46 1d 09 00 41 00 00 00 a9 1d 09 00 55 01 00 00 eb 1d 09 00 c0 00 00 00 | ....b...F...A.......U........... |
| 8540 | 41 1f 09 00 b6 00 00 00 02 20 09 00 94 00 00 00 b9 20 09 00 8d 00 00 00 4e 21 09 00 d5 00 00 00 | A.......................N!...... |
| 8560 | dc 21 09 00 7e 00 00 00 b2 22 09 00 a4 00 00 00 31 23 09 00 a6 00 00 00 d6 23 09 00 a2 00 00 00 | .!..~...."......1#.......#...... |
| 8580 | 7d 24 09 00 a2 00 00 00 20 25 09 00 c7 01 00 00 c3 25 09 00 39 00 00 00 8b 27 09 00 32 01 00 00 | }$.......%.......%..9....'..2... |
| 85a0 | c5 27 09 00 a8 00 00 00 f8 28 09 00 79 00 00 00 a1 29 09 00 33 00 00 00 1b 2a 09 00 90 00 00 00 | .'.......(..y....)..3....*...... |
| 85c0 | 4f 2a 09 00 b0 00 00 00 e0 2a 09 00 63 00 00 00 91 2b 09 00 b3 00 00 00 f5 2b 09 00 d6 00 00 00 | O*.......*..c....+.......+...... |
| 85e0 | a9 2c 09 00 2c 00 00 00 80 2d 09 00 52 00 00 00 ad 2d 09 00 6e 00 00 00 00 2e 09 00 4d 01 00 00 | .,..,....-..R....-..n.......M... |
| 8600 | 6f 2e 09 00 3b 00 00 00 bd 2f 09 00 ad 00 00 00 f9 2f 09 00 7b 02 00 00 a7 30 09 00 54 01 00 00 | o...;..../......./..{....0..T... |
| 8620 | 23 33 09 00 53 00 00 00 78 34 09 00 4b 00 00 00 cc 34 09 00 04 01 00 00 18 35 09 00 eb 00 00 00 | #3..S...x4..K....4.......5...... |
| 8640 | 1d 36 09 00 c8 00 00 00 09 37 09 00 c8 00 00 00 d2 37 09 00 b6 00 00 00 9b 38 09 00 bb 00 00 00 | .6.......7.......7.......8...... |
| 8660 | 52 39 09 00 60 00 00 00 0e 3a 09 00 b5 00 00 00 6f 3a 09 00 b9 00 00 00 25 3b 09 00 9b 00 00 00 | R9..`....:......o:......%;...... |
| 8680 | df 3b 09 00 0a 01 00 00 7b 3c 09 00 01 01 00 00 86 3d 09 00 38 00 00 00 88 3e 09 00 3b 00 00 00 | .;......{<.......=..8....>..;... |
| 86a0 | c1 3e 09 00 45 00 00 00 fd 3e 09 00 2c 00 00 00 43 3f 09 00 70 00 00 00 70 3f 09 00 4e 00 00 00 | .>..E....>..,...C?..p...p?..N... |
| 86c0 | e1 3f 09 00 6e 00 00 00 30 40 09 00 7c 01 00 00 9f 40 09 00 7c 01 00 00 1c 42 09 00 71 01 00 00 | .?..n...0@..|....@..|....B..q... |
| 86e0 | 99 43 09 00 54 00 00 00 0b 45 09 00 90 00 00 00 60 45 09 00 4b 00 00 00 f1 45 09 00 6d 00 00 00 | .C..T....E......`E..K....E..m... |
| 8700 | 3d 46 09 00 11 01 00 00 ab 46 09 00 4e 00 00 00 bd 47 09 00 7b 00 00 00 0c 48 09 00 50 00 00 00 | =F.......F..N....G..{....H..P... |
| 8720 | 88 48 09 00 58 00 00 00 d9 48 09 00 b1 00 00 00 32 49 09 00 a9 00 00 00 e4 49 09 00 74 00 00 00 | .H..X....H......2I.......I..t... |
| 8740 | 8e 4a 09 00 72 00 00 00 03 4b 09 00 88 00 00 00 76 4b 09 00 6c 00 00 00 ff 4b 09 00 60 00 00 00 | .J..r....K......vK..l....K..`... |
| 8760 | 6c 4c 09 00 44 00 00 00 cd 4c 09 00 17 01 00 00 12 4d 09 00 ff 00 00 00 2a 4e 09 00 44 00 00 00 | lL..D....L.......M......*N..D... |
| 8780 | 2a 4f 09 00 87 00 00 00 6f 4f 09 00 50 00 00 00 f7 4f 09 00 70 00 00 00 48 50 09 00 87 00 00 00 | *O......oO..P....O..p...HP...... |
| 87a0 | b9 50 09 00 65 00 00 00 41 51 09 00 40 00 00 00 a7 51 09 00 6e 00 00 00 e8 51 09 00 64 00 00 00 | .P..e...AQ..@....Q..n....Q..d... |
| 87c0 | 57 52 09 00 59 02 00 00 bc 52 09 00 88 00 00 00 16 55 09 00 25 00 00 00 9f 55 09 00 88 00 00 00 | WR..Y....R.......U..%....U...... |
| 87e0 | c5 55 09 00 a5 00 00 00 4e 56 09 00 57 01 00 00 f4 56 09 00 32 01 00 00 4c 58 09 00 49 01 00 00 | .U......NV..W....V..2...LX..I... |
| 8800 | 7f 59 09 00 51 01 00 00 c9 5a 09 00 fb 00 00 00 1b 5c 09 00 28 00 00 00 17 5d 09 00 95 00 00 00 | .Y..Q....Z.......\..(....]...... |
| 8820 | 40 5d 09 00 af 00 00 00 d6 5d 09 00 af 00 00 00 86 5e 09 00 76 00 00 00 36 5f 09 00 a6 00 00 00 | @].......].......^..v...6_...... |
| 8840 | ad 5f 09 00 84 01 00 00 54 60 09 00 6a 00 00 00 d9 61 09 00 b9 00 00 00 44 62 09 00 0f 01 00 00 | ._......T`..j....a......Db...... |
| 8860 | fe 62 09 00 36 00 00 00 0e 64 09 00 a5 00 00 00 45 64 09 00 a7 00 00 00 eb 64 09 00 7b 00 00 00 | .b..6....d......Ed.......d..{... |
| 8880 | 93 65 09 00 67 00 00 00 0f 66 09 00 32 00 00 00 77 66 09 00 fe 00 00 00 aa 66 09 00 9d 00 00 00 | .e..g....f..2...wf.......f...... |
| 88a0 | a9 67 09 00 bb 00 00 00 47 68 09 00 77 00 00 00 03 69 09 00 bf 00 00 00 7b 69 09 00 c7 00 00 00 | .g......Gh..w....i......{i...... |
| 88c0 | 3b 6a 09 00 cc 00 00 00 03 6b 09 00 d1 00 00 00 d0 6b 09 00 2d 04 00 00 a2 6c 09 00 5d 00 00 00 | ;j.......k.......k..-....l..]... |
| 88e0 | d0 70 09 00 e3 00 00 00 2e 71 09 00 cf 00 00 00 12 72 09 00 07 01 00 00 e2 72 09 00 10 01 00 00 | .p.......q.......r.......r...... |
| 8900 | ea 73 09 00 9c 00 00 00 fb 74 09 00 8a 00 00 00 98 75 09 00 97 00 00 00 23 76 09 00 40 00 00 00 | .s.......t.......u......#v..@... |
| 8920 | bb 76 09 00 f0 00 00 00 fc 76 09 00 0b 01 00 00 ed 77 09 00 37 01 00 00 f9 78 09 00 75 01 00 00 | .v.......v.......w..7....x..u... |
| 8940 | 31 7a 09 00 97 01 00 00 a7 7b 09 00 f0 00 00 00 3f 7d 09 00 01 01 00 00 30 7e 09 00 aa 00 00 00 | 1z.......{......?}......0~...... |
| 8960 | 32 7f 09 00 69 00 00 00 dd 7f 09 00 6b 00 00 00 47 80 09 00 df 00 00 00 b3 80 09 00 44 00 00 00 | 2...i.......k...G...........D... |
| 8980 | 93 81 09 00 ec 00 00 00 d8 81 09 00 86 00 00 00 c5 82 09 00 d5 00 00 00 4c 83 09 00 b9 00 00 00 | ........................L....... |
| 89a0 | 22 84 09 00 a6 00 00 00 dc 84 09 00 c8 00 00 00 83 85 09 00 71 00 00 00 4c 86 09 00 2c 01 00 00 | "...................q...L...,... |
| 89c0 | be 86 09 00 84 00 00 00 eb 87 09 00 00 01 00 00 70 88 09 00 e5 00 00 00 71 89 09 00 2d 01 00 00 | ................p.......q...-... |
| 89e0 | 57 8a 09 00 12 01 00 00 85 8b 09 00 f2 00 00 00 98 8c 09 00 a4 00 00 00 8b 8d 09 00 90 01 00 00 | W............................... |
| 8a00 | 30 8e 09 00 a2 00 00 00 c1 8f 09 00 b3 01 00 00 64 90 09 00 53 00 00 00 18 92 09 00 5f 00 00 00 | 0...............d...S......._... |
| 8a20 | 6c 92 09 00 80 00 00 00 cc 92 09 00 81 00 00 00 4d 93 09 00 8f 00 00 00 cf 93 09 00 7b 00 00 00 | l...............M...........{... |
| 8a40 | 5f 94 09 00 7a 00 00 00 db 94 09 00 f3 00 00 00 56 95 09 00 f2 00 00 00 4a 96 09 00 3a 00 00 00 | _...z...........V.......J...:... |
| 8a60 | 3d 97 09 00 3a 00 00 00 78 97 09 00 41 00 00 00 b3 97 09 00 67 00 00 00 f5 97 09 00 42 00 00 00 | =...:...x...A.......g.......B... |
| 8a80 | 5d 98 09 00 38 00 00 00 a0 98 09 00 53 00 00 00 d9 98 09 00 5c 00 00 00 2d 99 09 00 e1 01 00 00 | ]...8.......S.......\...-....... |
| 8aa0 | 8a 99 09 00 bb 00 00 00 6c 9b 09 00 41 00 00 00 28 9c 09 00 e7 00 00 00 6a 9c 09 00 21 01 00 00 | ........l...A...(.......j...!... |
| 8ac0 | 52 9d 09 00 4d 00 00 00 74 9e 09 00 96 00 00 00 c2 9e 09 00 80 00 00 00 59 9f 09 00 e5 00 00 00 | R...M...t...............Y....... |
| 8ae0 | da 9f 09 00 da 00 00 00 c0 a0 09 00 a4 00 00 00 9b a1 09 00 66 00 00 00 40 a2 09 00 ad 00 00 00 | ....................f...@....... |
| 8b00 | a7 a2 09 00 17 00 00 00 55 a3 09 00 16 00 00 00 6d a3 09 00 16 00 00 00 84 a3 09 00 1c 00 00 00 | ........U.......m............... |
| 8b20 | 9b a3 09 00 1d 00 00 00 b8 a3 09 00 14 00 00 00 d6 a3 09 00 13 00 00 00 eb a3 09 00 14 00 00 00 | ................................ |
| 8b40 | ff a3 09 00 22 00 00 00 14 a4 09 00 3f 00 00 00 37 a4 09 00 16 00 00 00 77 a4 09 00 52 00 00 00 | ....".......?...7.......w...R... |
| 8b60 | 8e a4 09 00 89 00 00 00 e1 a4 09 00 4b 00 00 00 6b a5 09 00 0d 01 00 00 b7 a5 09 00 41 00 00 00 | ............K...k...........A... |
| 8b80 | c5 a6 09 00 6d 00 00 00 07 a7 09 00 8d 00 00 00 75 a7 09 00 6a 00 00 00 03 a8 09 00 32 00 00 00 | ....m...........u...j.......2... |
| 8ba0 | 6e a8 09 00 61 00 00 00 a1 a8 09 00 8d 00 00 00 03 a9 09 00 8e 00 00 00 91 a9 09 00 47 00 00 00 | n...a.......................G... |
| 8bc0 | 20 aa 09 00 40 00 00 00 68 aa 09 00 6c 00 00 00 a9 aa 09 00 4c 00 00 00 16 ab 09 00 3f 00 00 00 | ....@...h...l.......L.......?... |
| 8be0 | 63 ab 09 00 2a 00 00 00 a3 ab 09 00 00 01 00 00 ce ab 09 00 1c 01 00 00 cf ac 09 00 a2 00 00 00 | c...*........................... |
| 8c00 | ec ad 09 00 97 00 00 00 8f ae 09 00 59 00 00 00 27 af 09 00 62 00 00 00 81 af 09 00 1a 00 00 00 | ............Y...'...b........... |
| 8c20 | e4 af 09 00 1c 00 00 00 ff af 09 00 bb 00 00 00 1c b0 09 00 32 00 00 00 d8 b0 09 00 73 00 00 00 | ....................2.......s... |
| 8c40 | 0b b1 09 00 61 00 00 00 7f b1 09 00 76 00 00 00 e1 b1 09 00 47 00 00 00 58 b2 09 00 43 01 00 00 | ....a.......v.......G...X...C... |
| 8c60 | a0 b2 09 00 7d 00 00 00 e4 b3 09 00 e5 00 00 00 62 b4 09 00 11 00 00 00 48 b5 09 00 63 00 00 00 | ....}...........b.......H...c... |
| 8c80 | 5a b5 09 00 c6 00 00 00 be b5 09 00 8e 00 00 00 85 b6 09 00 2a 00 00 00 14 b7 09 00 98 00 00 00 | Z...................*........... |
| 8ca0 | 3f b7 09 00 bd 00 00 00 d8 b7 09 00 44 00 00 00 96 b8 09 00 a0 00 00 00 db b8 09 00 ca 00 00 00 | ?...........D................... |
| 8cc0 | 7c b9 09 00 c9 00 00 00 47 ba 09 00 41 00 00 00 11 bb 09 00 76 00 00 00 53 bb 09 00 c7 00 00 00 | |.......G...A.......v...S....... |
| 8ce0 | ca bb 09 00 58 00 00 00 92 bc 09 00 23 00 00 00 eb bc 09 00 76 00 00 00 0f bd 09 00 36 00 00 00 | ....X.......#.......v.......6... |
| 8d00 | 86 bd 09 00 97 00 00 00 bd bd 09 00 c0 00 00 00 55 be 09 00 8b 00 00 00 16 bf 09 00 2c 00 00 00 | ................U...........,... |
| 8d20 | a2 bf 09 00 2b 00 00 00 cf bf 09 00 2e 00 00 00 fb bf 09 00 33 00 00 00 2a c0 09 00 fc 00 00 00 | ....+...............3...*....... |
| 8d40 | 5e c0 09 00 e9 00 00 00 5b c1 09 00 31 00 00 00 45 c2 09 00 26 00 00 00 77 c2 09 00 4d 00 00 00 | ^.......[...1...E...&...w...M... |
| 8d60 | 9e c2 09 00 60 00 00 00 ec c2 09 00 20 01 00 00 4d c3 09 00 1d 00 00 00 6e c4 09 00 89 00 00 00 | ....`...........M.......n....... |
| 8d80 | 8c c4 09 00 be 00 00 00 16 c5 09 00 60 01 00 00 d5 c5 09 00 80 00 00 00 36 c7 09 00 78 00 00 00 | ............`...........6...x... |
| 8da0 | b7 c7 09 00 7e 00 00 00 30 c8 09 00 7b 00 00 00 af c8 09 00 29 00 00 00 2b c9 09 00 e9 00 00 00 | ....~...0...{.......)...+....... |
| 8dc0 | 55 c9 09 00 3d 00 00 00 3f ca 09 00 6f 00 00 00 7d ca 09 00 3b 00 00 00 ed ca 09 00 a5 00 00 00 | U...=...?...o...}...;........... |
| 8de0 | 29 cb 09 00 2d 01 00 00 cf cb 09 00 2c 01 00 00 fd cc 09 00 dd 00 00 00 2a ce 09 00 64 00 00 00 | )...-.......,...........*...d... |
| 8e00 | 08 cf 09 00 d6 00 00 00 6d cf 09 00 42 01 00 00 44 d0 09 00 41 01 00 00 87 d1 09 00 be 00 00 00 | ........m...B...D...A........... |
| 8e20 | c9 d2 09 00 40 00 00 00 88 d3 09 00 77 00 00 00 c9 d3 09 00 79 00 00 00 41 d4 09 00 76 00 00 00 | ....@.......w.......y...A...v... |
| 8e40 | bb d4 09 00 79 00 00 00 32 d5 09 00 6f 00 00 00 ac d5 09 00 d3 00 00 00 1c d6 09 00 41 00 00 00 | ....y...2...o...............A... |
| 8e60 | f0 d6 09 00 14 00 00 00 32 d7 09 00 23 01 00 00 47 d7 09 00 9d 01 00 00 6b d8 09 00 48 00 00 00 | ........2...#...G.......k...H... |
| 8e80 | 09 da 09 00 2c 00 00 00 52 da 09 00 bb 00 00 00 7f da 09 00 23 00 00 00 3b db 09 00 3d 00 00 00 | ....,...R...........#...;...=... |
| 8ea0 | 5f db 09 00 42 00 00 00 9d db 09 00 5b 00 00 00 e0 db 09 00 6b 00 00 00 3c dc 09 00 30 00 00 00 | _...B.......[.......k...<...0... |
| 8ec0 | a8 dc 09 00 3d 00 00 00 d9 dc 09 00 2c 00 00 00 17 dd 09 00 56 00 00 00 44 dd 09 00 56 00 00 00 | ....=.......,.......V...D...V... |
| 8ee0 | 9b dd 09 00 54 00 00 00 f2 dd 09 00 38 00 00 00 47 de 09 00 3d 00 00 00 80 de 09 00 3a 00 00 00 | ....T.......8...G...=.......:... |
| 8f00 | be de 09 00 3c 00 00 00 f9 de 09 00 44 00 00 00 36 df 09 00 34 00 00 00 7b df 09 00 32 01 00 00 | ....<.......D...6...4...{...2... |
| 8f20 | b0 df 09 00 30 00 00 00 e3 e0 09 00 dd 00 00 00 14 e1 09 00 09 00 00 00 f2 e1 09 00 d6 00 00 00 | ....0........................... |
| 8f40 | fc e1 09 00 49 00 00 00 d3 e2 09 00 47 00 00 00 1d e3 09 00 44 00 00 00 65 e3 09 00 4a 00 00 00 | ....I.......G.......D...e...J... |
| 8f60 | aa e3 09 00 26 00 00 00 f5 e3 09 00 1f 00 00 00 1c e4 09 00 74 00 00 00 3c e4 09 00 3d 00 00 00 | ....&...............t...<...=... |
| 8f80 | b1 e4 09 00 12 00 00 00 ef e4 09 00 30 00 00 00 02 e5 09 00 45 00 00 00 33 e5 09 00 2e 00 00 00 | ............0.......E...3....... |
| 8fa0 | 79 e5 09 00 06 00 00 00 a8 e5 09 00 65 00 00 00 af e5 09 00 4e 00 00 00 15 e6 09 00 b1 00 00 00 | y...........e.......N........... |
| 8fc0 | 64 e6 09 00 9b 00 00 00 16 e7 09 00 91 00 00 00 b2 e7 09 00 ae 00 00 00 44 e8 09 00 22 00 00 00 | d.......................D..."... |
| 8fe0 | f3 e8 09 00 aa 00 00 00 16 e9 09 00 39 01 00 00 c1 e9 09 00 5c 00 00 00 fb ea 09 00 75 00 00 00 | ............9.......\.......u... |
| 9000 | 58 eb 09 00 7d 00 00 00 ce eb 09 00 74 00 00 00 4c ec 09 00 58 00 00 00 c1 ec 09 00 5c 00 00 00 | X...}.......t...L...X.......\... |
| 9020 | 1a ed 09 00 6f 00 00 00 77 ed 09 00 99 00 00 00 e7 ed 09 00 9d 00 00 00 81 ee 09 00 80 00 00 00 | ....o...w....................... |
| 9040 | 1f ef 09 00 84 00 00 00 a0 ef 09 00 54 00 00 00 25 f0 09 00 4c 00 00 00 7a f0 09 00 51 00 00 00 | ............T...%...L...z...Q... |
| 9060 | c7 f0 09 00 d7 00 00 00 19 f1 09 00 68 00 00 00 f1 f1 09 00 62 00 00 00 5a f2 09 00 5e 00 00 00 | ............h.......b...Z...^... |
| 9080 | bd f2 09 00 3c 00 00 00 1c f3 09 00 77 00 00 00 59 f3 09 00 40 00 00 00 d1 f3 09 00 d7 00 00 00 | ....<.......w...Y...@........... |
| 90a0 | 12 f4 09 00 b3 00 00 00 ea f4 09 00 66 00 00 00 9e f5 09 00 37 00 00 00 05 f6 09 00 6a 00 00 00 | ............f.......7.......j... |
| 90c0 | 3d f6 09 00 42 00 00 00 a8 f6 09 00 3d 00 00 00 eb f6 09 00 38 00 00 00 29 f7 09 00 3d 00 00 00 | =...B.......=.......8...)...=... |
| 90e0 | 62 f7 09 00 40 00 00 00 a0 f7 09 00 48 01 00 00 e1 f7 09 00 4a 01 00 00 2a f9 09 00 52 00 00 00 | b...@.......H.......J...*...R... |
| 9100 | 75 fa 09 00 51 00 00 00 c8 fa 09 00 d9 00 00 00 1a fb 09 00 c9 00 00 00 f4 fb 09 00 4f 00 00 00 | u...Q.......................O... |
| 9120 | be fc 09 00 67 00 00 00 0e fd 09 00 8d 00 00 00 76 fd 09 00 49 00 00 00 04 fe 09 00 a0 01 00 00 | ....g...........v...I........... |
| 9140 | 4e fe 09 00 87 00 00 00 ef ff 09 00 5f 00 00 00 77 00 0a 00 fa 00 00 00 d7 00 0a 00 54 00 00 00 | N..........._...w...........T... |
| 9160 | d2 01 0a 00 25 00 00 00 27 02 0a 00 49 00 00 00 4d 02 0a 00 92 00 00 00 97 02 0a 00 54 00 00 00 | ....%...'...I...M...........T... |
| 9180 | 2a 03 0a 00 96 00 00 00 7f 03 0a 00 d0 00 00 00 16 04 0a 00 2a 00 00 00 e7 04 0a 00 1c 00 00 00 | *...................*........... |
| 91a0 | 12 05 0a 00 1f 00 00 00 2f 05 0a 00 32 00 00 00 4f 05 0a 00 12 01 00 00 82 05 0a 00 71 00 00 00 | ......../...2...O...........q... |
| 91c0 | 95 06 0a 00 5f 00 00 00 07 07 0a 00 69 00 00 00 67 07 0a 00 a5 00 00 00 d1 07 0a 00 a7 00 00 00 | ...._.......i...g............... |
| 91e0 | 77 08 0a 00 45 00 00 00 1f 09 0a 00 09 00 00 00 65 09 0a 00 2c 00 00 00 6f 09 0a 00 1f 00 00 00 | w...E...........e...,...o....... |
| 9200 | 9c 09 0a 00 0e 00 00 00 bc 09 0a 00 05 00 00 00 cb 09 0a 00 83 00 00 00 d1 09 0a 00 44 02 00 00 | ............................D... |
| 9220 | 55 0a 0a 00 dc 00 00 00 9a 0c 0a 00 8a 01 00 00 77 0d 0a 00 8e 01 00 00 02 0f 0a 00 0f 00 00 00 | U...............w............... |
| 9240 | 91 10 0a 00 93 00 00 00 a1 10 0a 00 13 00 00 00 35 11 0a 00 0e 00 00 00 49 11 0a 00 60 00 00 00 | ................5.......I...`... |
| 9260 | 58 11 0a 00 5e 00 00 00 b9 11 0a 00 a6 00 00 00 18 12 0a 00 9e 00 00 00 bf 12 0a 00 97 00 00 00 | X...^........................... |
| 9280 | 5e 13 0a 00 19 00 00 00 f6 13 0a 00 b8 00 00 00 10 14 0a 00 71 01 00 00 c9 14 0a 00 12 00 00 00 | ^...................q........... |
| 92a0 | 3b 16 0a 00 60 01 00 00 4e 16 0a 00 11 00 00 00 af 17 0a 00 0f 00 00 00 c1 17 0a 00 0f 00 00 00 | ;...`...N....................... |
| 92c0 | d1 17 0a 00 06 00 00 00 e1 17 0a 00 0b 00 00 00 e8 17 0a 00 35 00 00 00 f4 17 0a 00 27 00 00 00 | ....................5.......'... |
| 92e0 | 2a 18 0a 00 28 00 00 00 52 18 0a 00 44 00 00 00 7b 18 0a 00 60 00 00 00 c0 18 0a 00 63 00 00 00 | *...(...R...D...{...`.......c... |
| 9300 | 21 19 0a 00 3f 00 00 00 85 19 0a 00 5f 00 00 00 c5 19 0a 00 25 01 00 00 25 1a 0a 00 e1 00 00 00 | !...?......._.......%...%....... |
| 9320 | 4b 1b 0a 00 7c 00 00 00 2d 1c 0a 00 13 00 00 00 aa 1c 0a 00 1f 00 00 00 be 1c 0a 00 17 00 00 00 | K...|...-....................... |
| 9340 | de 1c 0a 00 15 00 00 00 f6 1c 0a 00 12 00 00 00 0c 1d 0a 00 29 00 00 00 1f 1d 0a 00 0d 00 00 00 | ....................)........... |
| 9360 | 49 1d 0a 00 38 00 00 00 57 1d 0a 00 af 00 00 00 90 1d 0a 00 0e 00 00 00 40 1e 0a 00 a3 01 00 00 | I...8...W...............@....... |
| 9380 | 4f 1e 0a 00 07 00 00 00 f3 1f 0a 00 0c 00 00 00 fb 1f 0a 00 0d 00 00 00 08 20 0a 00 1b 00 00 00 | O............................... |
| 93a0 | 16 20 0a 00 05 00 00 00 32 20 0a 00 46 01 00 00 38 20 0a 00 9b 01 00 00 7f 21 0a 00 06 00 00 00 | ........2...F...8........!...... |
| 93c0 | 1b 23 0a 00 16 00 00 00 22 23 0a 00 15 00 00 00 39 23 0a 00 07 00 00 00 4f 23 0a 00 9c 00 00 00 | .#......"#......9#......O#...... |
| 93e0 | 57 23 0a 00 15 00 00 00 f4 23 0a 00 2e 00 00 00 0a 24 0a 00 49 00 00 00 39 24 0a 00 e2 00 00 00 | W#.......#.......$..I...9$...... |
| 9400 | 83 24 0a 00 58 00 00 00 66 25 0a 00 23 00 00 00 bf 25 0a 00 22 00 00 00 e3 25 0a 00 15 00 00 00 | .$..X...f%..#....%.."....%...... |
| 9420 | 06 26 0a 00 14 00 00 00 1c 26 0a 00 66 00 00 00 31 26 0a 00 25 00 00 00 98 26 0a 00 26 00 00 00 | .&.......&..f...1&..%....&..&... |
| 9440 | be 26 0a 00 0f 00 00 00 e5 26 0a 00 20 00 00 00 f5 26 0a 00 13 00 00 00 16 27 0a 00 39 00 00 00 | .&.......&.......&.......'..9... |
| 9460 | 2a 27 0a 00 59 00 00 00 64 27 0a 00 3e 00 00 00 be 27 0a 00 00 01 00 00 fd 27 0a 00 55 00 00 00 | *'..Y...d'..>....'.......'..U... |
| 9480 | fe 28 0a 00 6f 00 00 00 54 29 0a 00 54 00 00 00 c4 29 0a 00 6e 00 00 00 19 2a 0a 00 5d 00 00 00 | .(..o...T)..T....)..n....*..]... |
| 94a0 | 88 2a 0a 00 77 00 00 00 e6 2a 0a 00 51 00 00 00 5e 2b 0a 00 6b 00 00 00 b0 2b 0a 00 55 00 00 00 | .*..w....*..Q...^+..k....+..U... |
| 94c0 | 1c 2c 0a 00 6f 00 00 00 72 2c 0a 00 52 00 00 00 e2 2c 0a 00 6c 00 00 00 35 2d 0a 00 1a 00 00 00 | .,..o...r,..R....,..l...5-...... |
| 94e0 | a2 2d 0a 00 44 00 00 00 bd 2d 0a 00 36 00 00 00 02 2e 0a 00 46 00 00 00 39 2e 0a 00 2c 00 00 00 | .-..D....-..6.......F...9...,... |
| 9500 | 80 2e 0a 00 22 00 00 00 ad 2e 0a 00 88 00 00 00 d0 2e 0a 00 30 00 00 00 59 2f 0a 00 43 00 00 00 | ...."...............0...Y/..C... |
| 9520 | 8a 2f 0a 00 18 00 00 00 ce 2f 0a 00 28 00 00 00 e7 2f 0a 00 2f 00 00 00 10 30 0a 00 7f 00 00 00 | ./......./..(..../../....0...... |
| 9540 | 40 30 0a 00 68 00 00 00 c0 30 0a 00 8c 00 00 00 29 31 0a 00 9a 00 00 00 b6 31 0a 00 8a 00 00 00 | @0..h....0......)1.......1...... |
| 9560 | 51 32 0a 00 78 00 00 00 dc 32 0a 00 59 00 00 00 55 33 0a 00 4f 00 00 00 af 33 0a 00 19 01 00 00 | Q2..x....2..Y...U3..O....3...... |
| 9580 | ff 33 0a 00 24 01 00 00 19 35 0a 00 22 01 00 00 3e 36 0a 00 08 01 00 00 61 37 0a 00 f8 00 00 00 | .3..$....5.."...>6......a7...... |
| 95a0 | 6a 38 0a 00 f7 00 00 00 63 39 0a 00 f9 00 00 00 5b 3a 0a 00 f7 00 00 00 55 3b 0a 00 fc 00 00 00 | j8......c9......[:......U;...... |
| 95c0 | 4d 3c 0a 00 f7 00 00 00 4a 3d 0a 00 fc 00 00 00 42 3e 0a 00 f7 00 00 00 3f 3f 0a 00 c4 00 00 00 | M<......J=......B>......??...... |
| 95e0 | 37 40 0a 00 a1 00 00 00 fc 40 0a 00 73 00 00 00 9e 41 0a 00 f8 00 00 00 12 42 0a 00 4e 00 00 00 | 7@.......@..s....A.......B..N... |
| 9600 | 0b 43 0a 00 99 00 00 00 5a 43 0a 00 4b 00 00 00 f4 43 0a 00 5b 00 00 00 40 44 0a 00 40 00 00 00 | .C......ZC..K....C..[...@D..@... |
| 9620 | 9c 44 0a 00 99 00 00 00 dd 44 0a 00 4a 00 00 00 77 45 0a 00 4a 00 00 00 c2 45 0a 00 50 00 00 00 | .D.......D..J...wE..J....E..P... |
| 9640 | 0d 46 0a 00 47 00 00 00 5e 46 0a 00 44 01 00 00 a6 46 0a 00 45 01 00 00 eb 47 0a 00 44 01 00 00 | .F..G...^F..D....F..E....G..D... |
| 9660 | 31 49 0a 00 49 01 00 00 76 4a 0a 00 44 01 00 00 c0 4b 0a 00 45 01 00 00 05 4d 0a 00 44 01 00 00 | 1I..I...vJ..D....K..E....M..D... |
| 9680 | 4b 4e 0a 00 3c 01 00 00 90 4f 0a 00 a0 00 00 00 cd 50 0a 00 30 01 00 00 6e 51 0a 00 50 01 00 00 | KN..<....O.......P..0...nQ..P... |
| 96a0 | 9f 52 0a 00 d1 00 00 00 f0 53 0a 00 23 01 00 00 c2 54 0a 00 08 01 00 00 e6 55 0a 00 29 01 00 00 | .R.......S..#....T.......U..)... |
| 96c0 | ef 56 0a 00 2f 01 00 00 19 58 0a 00 da 00 00 00 49 59 0a 00 34 01 00 00 24 5a 0a 00 89 00 00 00 | .V../....X......IY..4...$Z...... |
| 96e0 | 59 5b 0a 00 66 00 00 00 e3 5b 0a 00 88 00 00 00 4a 5c 0a 00 a5 00 00 00 d3 5c 0a 00 70 00 00 00 | Y[..f....[......J\.......\..p... |
| 9700 | 79 5d 0a 00 6f 00 00 00 ea 5d 0a 00 8e 00 00 00 5a 5e 0a 00 b0 00 00 00 e9 5e 0a 00 0f 01 00 00 | y]..o....]......Z^.......^...... |
| 9720 | 9a 5f 0a 00 c3 00 00 00 aa 60 0a 00 84 00 00 00 6e 61 0a 00 be 00 00 00 f3 61 0a 00 db 00 00 00 | ._.......`......na.......a...... |
| 9740 | b2 62 0a 00 85 00 00 00 8e 63 0a 00 7d 00 00 00 14 64 0a 00 9a 00 00 00 92 64 0a 00 92 00 00 00 | .b.......c..}....d.......d...... |
| 9760 | 2d 65 0a 00 91 00 00 00 c0 65 0a 00 d5 00 00 00 52 66 0a 00 93 00 00 00 28 67 0a 00 8e 00 00 00 | -e.......e......Rf......(g...... |
| 9780 | bc 67 0a 00 fa 00 00 00 4b 68 0a 00 bd 00 00 00 46 69 0a 00 f5 00 00 00 04 6a 0a 00 a6 00 00 00 | .g......Kh......Fi.......j...... |
| 97a0 | fa 6a 0a 00 a1 00 00 00 a1 6b 0a 00 7b 00 00 00 43 6c 0a 00 fc 00 00 00 bf 6c 0a 00 fd 00 00 00 | .j.......k..{...Cl.......l...... |
| 97c0 | bc 6d 0a 00 19 01 00 00 ba 6e 0a 00 9d 00 00 00 d4 6f 0a 00 be 01 00 00 72 70 0a 00 b1 00 00 00 | .m.......n.......o......rp...... |
| 97e0 | 31 72 0a 00 5b 00 00 00 e3 72 0a 00 63 00 00 00 3f 73 0a 00 33 01 00 00 a3 73 0a 00 3b 00 00 00 | 1r..[....r..c...?s..3....s..;... |
| 9800 | d7 74 0a 00 98 00 00 00 13 75 0a 00 54 00 00 00 ac 75 0a 00 59 00 00 00 01 76 0a 00 de 00 00 00 | .t.......u..T....u..Y....v...... |
| 9820 | 5b 76 0a 00 9a 00 00 00 3a 77 0a 00 2b 00 00 00 d5 77 0a 00 c0 00 00 00 01 78 0a 00 c5 00 00 00 | [v......:w..+....w.......x...... |
| 9840 | c2 78 0a 00 3a 00 00 00 88 79 0a 00 35 00 00 00 c3 79 0a 00 87 00 00 00 f9 79 0a 00 5c 00 00 00 | .x..:....y..5....y.......y..\... |
| 9860 | 81 7a 0a 00 74 00 00 00 de 7a 0a 00 da 00 00 00 53 7b 0a 00 f0 00 00 00 2e 7c 0a 00 84 00 00 00 | .z..t....z......S{.......|...... |
| 9880 | 1f 7d 0a 00 f0 00 00 00 a4 7d 0a 00 f0 00 00 00 95 7e 0a 00 f0 00 00 00 86 7f 0a 00 f1 00 00 00 | .}.......}.......~.............. |
| 98a0 | 77 80 0a 00 5f 00 00 00 69 81 0a 00 83 00 00 00 c9 81 0a 00 bd 00 00 00 4d 82 0a 00 79 00 00 00 | w..._...i...............M...y... |
| 98c0 | 0b 83 0a 00 7e 00 00 00 85 83 0a 00 36 00 00 00 04 84 0a 00 78 00 00 00 3b 84 0a 00 85 00 00 00 | ....~.......6.......x...;....... |
| 98e0 | b4 84 0a 00 51 00 00 00 3a 85 0a 00 3e 00 00 00 8c 85 0a 00 3e 00 00 00 cb 85 0a 00 75 00 00 00 | ....Q...:...>.......>.......u... |
| 9900 | 0a 86 0a 00 53 00 00 00 80 86 0a 00 df 00 00 00 d4 86 0a 00 a1 00 00 00 b4 87 0a 00 ac 00 00 00 | ....S........................... |
| 9920 | 56 88 0a 00 3b 00 00 00 03 89 0a 00 47 00 00 00 3f 89 0a 00 67 00 00 00 87 89 0a 00 d8 00 00 00 | V...;.......G...?...g........... |
| 9940 | ef 89 0a 00 5a 00 00 00 c8 8a 0a 00 38 00 00 00 23 8b 0a 00 88 01 00 00 5c 8b 0a 00 c5 00 00 00 | ....Z.......8...#.......\....... |
| 9960 | e5 8c 0a 00 a1 00 00 00 ab 8d 0a 00 6d 00 00 00 4d 8e 0a 00 4e 00 00 00 bb 8e 0a 00 54 00 00 00 | ............m...M...N.......T... |
| 9980 | 0a 8f 0a 00 3d 00 00 00 5f 8f 0a 00 8a 00 00 00 9d 8f 0a 00 6f 00 00 00 28 90 0a 00 2e 00 00 00 | ....=..._...........o...(....... |
| 99a0 | 98 90 0a 00 31 00 00 00 c7 90 0a 00 3c 00 00 00 f9 90 0a 00 17 01 00 00 36 91 0a 00 db 00 00 00 | ....1.......<...........6....... |
| 99c0 | 4e 92 0a 00 49 00 00 00 2a 93 0a 00 4a 00 00 00 74 93 0a 00 49 00 00 00 bf 93 0a 00 49 00 00 00 | N...I...*...J...t...I.......I... |
| 99e0 | 09 94 0a 00 0b 01 00 00 53 94 0a 00 51 00 00 00 5f 95 0a 00 96 00 00 00 b1 95 0a 00 5d 00 00 00 | ........S...Q..._...........]... |
| 9a00 | 48 96 0a 00 49 00 00 00 a6 96 0a 00 46 00 00 00 f0 96 0a 00 37 00 00 00 37 97 0a 00 38 01 00 00 | H...I.......F.......7...7...8... |
| 9a20 | 6f 97 0a 00 31 00 00 00 a8 98 0a 00 30 00 00 00 da 98 0a 00 39 00 00 00 0b 99 0a 00 33 00 00 00 | o...1.......0.......9.......3... |
| 9a40 | 45 99 0a 00 33 00 00 00 79 99 0a 00 49 00 00 00 ad 99 0a 00 d9 00 00 00 f7 99 0a 00 78 00 00 00 | E...3...y...I...............x... |
| 9a60 | d1 9a 0a 00 79 00 00 00 4a 9b 0a 00 8c 00 00 00 c4 9b 0a 00 47 00 00 00 51 9c 0a 00 fb 00 00 00 | ....y...J...........G...Q....... |
| 9a80 | 99 9c 0a 00 b7 00 00 00 95 9d 0a 00 5b 00 00 00 4d 9e 0a 00 b7 00 00 00 a9 9e 0a 00 42 00 00 00 | ............[...M...........B... |
| 9aa0 | 61 9f 0a 00 46 00 00 00 a4 9f 0a 00 30 00 00 00 eb 9f 0a 00 39 00 00 00 1c a0 0a 00 25 00 00 00 | a...F.......0.......9.......%... |
| 9ac0 | 56 a0 0a 00 2e 00 00 00 7c a0 0a 00 2e 00 00 00 ab a0 0a 00 39 00 00 00 da a0 0a 00 c1 00 00 00 | V.......|...........9........... |
| 9ae0 | 14 a1 0a 00 8c 00 00 00 d6 a1 0a 00 b5 00 00 00 63 a2 0a 00 42 00 00 00 19 a3 0a 00 a5 00 00 00 | ................c...B........... |
| 9b00 | 5c a3 0a 00 b9 00 00 00 02 a4 0a 00 3e 00 00 00 bc a4 0a 00 74 00 00 00 fb a4 0a 00 6c 00 00 00 | \...........>.......t.......l... |
| 9b20 | 70 a5 0a 00 81 00 00 00 dd a5 0a 00 19 00 00 00 5f a6 0a 00 23 00 00 00 79 a6 0a 00 b7 00 00 00 | p..............._...#...y....... |
| 9b40 | 9d a6 0a 00 dc 00 00 00 55 a7 0a 00 13 00 00 00 32 a8 0a 00 54 00 00 00 46 a8 0a 00 5f 01 00 00 | ........U.......2...T...F..._... |
| 9b60 | 9b a8 0a 00 63 01 00 00 fb a9 0a 00 17 00 00 00 5f ab 0a 00 1a 00 00 00 77 ab 0a 00 1d 00 00 00 | ....c..........._.......w....... |
| 9b80 | 92 ab 0a 00 a2 00 00 00 b0 ab 0a 00 17 00 00 00 53 ac 0a 00 86 01 00 00 6b ac 0a 00 8a 00 00 00 | ................S.......k....... |
| 9ba0 | f2 ad 0a 00 5b 00 00 00 7d ae 0a 00 3b 00 00 00 d9 ae 0a 00 dd 00 00 00 15 af 0a 00 1d 01 00 00 | ....[...}...;................... |
| 9bc0 | f3 af 0a 00 32 00 00 00 11 b1 0a 00 20 00 00 00 44 b1 0a 00 5d 00 00 00 65 b1 0a 00 54 00 00 00 | ....2...........D...]...e...T... |
| 9be0 | c3 b1 0a 00 04 00 00 00 18 b2 0a 00 30 00 00 00 1d b2 0a 00 0c 00 00 00 4e b2 0a 00 0c 00 00 00 | ............0...........N....... |
| 9c00 | 5b b2 0a 00 60 00 00 00 68 b2 0a 00 09 00 00 00 c9 b2 0a 00 35 01 00 00 d3 b2 0a 00 33 01 00 00 | [...`...h...........5.......3... |
| 9c20 | 09 b4 0a 00 70 00 00 00 3d b5 0a 00 03 00 00 00 ae b5 0a 00 62 00 00 00 b2 b5 0a 00 03 00 00 00 | ....p...=...........b........... |
| 9c40 | 15 b6 0a 00 11 00 00 00 19 b6 0a 00 0b 00 00 00 2b b6 0a 00 16 00 00 00 37 b6 0a 00 19 00 00 00 | ................+.......7....... |
| 9c60 | 4e b6 0a 00 15 00 00 00 68 b6 0a 00 11 00 00 00 7e b6 0a 00 14 00 00 00 90 b6 0a 00 6a 02 00 00 | N.......h.......~...........j... |
| 9c80 | a5 b6 0a 00 3d 01 00 00 10 b9 0a 00 85 01 00 00 4e ba 0a 00 95 00 00 00 d4 bb 0a 00 d5 01 00 00 | ....=...........N............... |
| 9ca0 | 6a bc 0a 00 32 00 00 00 40 be 0a 00 1e 00 00 00 73 be 0a 00 05 00 00 00 92 be 0a 00 45 01 00 00 | j...2...@.......s...........E... |
| 9cc0 | 98 be 0a 00 16 00 00 00 de bf 0a 00 3b 00 00 00 f5 bf 0a 00 18 00 00 00 31 c0 0a 00 16 00 00 00 | ............;...........1....... |
| 9ce0 | 4a c0 0a 00 05 00 00 00 61 c0 0a 00 8e 00 00 00 67 c0 0a 00 60 00 00 00 f6 c0 0a 00 0c 00 00 00 | J.......a.......g...`........... |
| 9d00 | 57 c1 0a 00 0d 00 00 00 64 c1 0a 00 3d 00 00 00 72 c1 0a 00 3b 00 00 00 b0 c1 0a 00 07 00 00 00 | W.......d...=...r...;........... |
| 9d20 | ec c1 0a 00 10 00 00 00 f4 c1 0a 00 6c 00 00 00 05 c2 0a 00 0e 00 00 00 72 c2 0a 00 4b 00 00 00 | ............l...........r...K... |
| 9d40 | 81 c2 0a 00 47 00 00 00 cd c2 0a 00 65 00 00 00 15 c3 0a 00 a1 00 00 00 7b c3 0a 00 3f 00 00 00 | ....G.......e...........{...?... |
| 9d60 | 1d c4 0a 00 4b 01 00 00 5d c4 0a 00 4a 01 00 00 a9 c5 0a 00 44 01 00 00 f4 c6 0a 00 15 00 00 00 | ....K...]...J.......D........... |
| 9d80 | 39 c8 0a 00 24 00 00 00 4f c8 0a 00 0a 00 00 00 74 c8 0a 00 24 00 00 00 7f c8 0a 00 09 00 00 00 | 9...$...O.......t...$........... |
| 9da0 | a4 c8 0a 00 29 00 00 00 ae c8 0a 00 1b 00 00 00 d8 c8 0a 00 c9 00 00 00 f4 c8 0a 00 0b 00 00 00 | ....)........................... |
| 9dc0 | be c9 0a 00 85 00 00 00 ca c9 0a 00 26 00 00 00 50 ca 0a 00 3d 00 00 00 77 ca 0a 00 52 00 00 00 | ............&...P...=...w...R... |
| 9de0 | b5 ca 0a 00 b4 00 00 00 08 cb 0a 00 a9 00 00 00 bd cb 0a 00 26 00 00 00 67 cc 0a 00 b0 00 00 00 | ....................&...g....... |
| 9e00 | 8e cc 0a 00 de 00 00 00 3f cd 0a 00 df 00 00 00 1e ce 0a 00 1c 00 00 00 fe ce 0a 00 8f 00 00 00 | ........?....................... |
| 9e20 | 1b cf 0a 00 8c 00 00 00 ab cf 0a 00 90 00 00 00 38 d0 0a 00 5d 00 00 00 c9 d0 0a 00 44 00 00 00 | ................8...].......D... |
| 9e40 | 27 d1 0a 00 2f 00 00 00 6c d1 0a 00 b0 00 00 00 9c d1 0a 00 50 00 00 00 4d d2 0a 00 a6 00 00 00 | '.../...l...........P...M....... |
| 9e60 | 9e d2 0a 00 ec 00 00 00 45 d3 0a 00 64 00 00 00 32 d4 0a 00 53 00 00 00 97 d4 0a 00 df 00 00 00 | ........E...d...2...S........... |
| 9e80 | eb d4 0a 00 86 00 00 00 cb d5 0a 00 63 00 00 00 52 d6 0a 00 68 00 00 00 b6 d6 0a 00 d1 00 00 00 | ............c...R...h........... |
| 9ea0 | 1f d7 0a 00 6f 00 00 00 f1 d7 0a 00 8d 00 00 00 61 d8 0a 00 78 00 00 00 ef d8 0a 00 7a 00 00 00 | ....o...........a...x.......z... |
| 9ec0 | 68 d9 0a 00 7d 00 00 00 e3 d9 0a 00 80 00 00 00 61 da 0a 00 33 00 00 00 e2 da 0a 00 71 00 00 00 | h...}...........a...3.......q... |
| 9ee0 | 16 db 0a 00 db 00 00 00 88 db 0a 00 a5 00 00 00 64 dc 0a 00 75 00 00 00 0a dd 0a 00 59 00 00 00 | ................d...u.......Y... |
| 9f00 | 80 dd 0a 00 58 00 00 00 da dd 0a 00 9b 00 00 00 33 de 0a 00 c3 00 00 00 cf de 0a 00 b6 00 00 00 | ....X...........3............... |
| 9f20 | 93 df 0a 00 ba 00 00 00 4a e0 0a 00 29 00 00 00 05 e1 0a 00 9c 00 00 00 2f e1 0a 00 e3 00 00 00 | ........J...).........../....... |
| 9f40 | cc e1 0a 00 9e 00 00 00 b0 e2 0a 00 44 00 00 00 4f e3 0a 00 44 00 00 00 94 e3 0a 00 ed 00 00 00 | ............D...O...D........... |
| 9f60 | d9 e3 0a 00 3c 00 00 00 c7 e4 0a 00 bd 00 00 00 04 e5 0a 00 bf 00 00 00 c2 e5 0a 00 88 00 00 00 | ....<........................... |
| 9f80 | 82 e6 0a 00 85 00 00 00 0b e7 0a 00 6f 00 00 00 91 e7 0a 00 cf 00 00 00 01 e8 0a 00 17 00 00 00 | ............o................... |
| 9fa0 | d1 e8 0a 00 12 00 00 00 e9 e8 0a 00 18 00 00 00 fc e8 0a 00 39 00 00 00 15 e9 0a 00 1b 00 00 00 | ....................9........... |
| 9fc0 | 4f e9 0a 00 31 00 00 00 6b e9 0a 00 21 00 00 00 9d e9 0a 00 07 00 00 00 bf e9 0a 00 12 00 00 00 | O...1...k...!................... |
| 9fe0 | c7 e9 0a 00 79 00 00 00 da e9 0a 00 e5 00 00 00 54 ea 0a 00 e5 00 00 00 3a eb 0a 00 ac 00 00 00 | ....y...........T.......:....... |
| a000 | 20 ec 0a 00 84 00 00 00 cd ec 0a 00 36 01 00 00 52 ed 0a 00 5a 00 00 00 89 ee 0a 00 c4 00 00 00 | ............6...R...Z........... |
| a020 | e4 ee 0a 00 4b 00 00 00 a9 ef 0a 00 a7 00 00 00 f5 ef 0a 00 17 00 00 00 9d f0 0a 00 e8 00 00 00 | ....K........................... |
| a040 | b5 f0 0a 00 48 00 00 00 9e f1 0a 00 41 00 00 00 e7 f1 0a 00 2e 00 00 00 29 f2 0a 00 47 00 00 00 | ....H.......A...........)...G... |
| a060 | 58 f2 0a 00 3f 00 00 00 a0 f2 0a 00 9b 00 00 00 e0 f2 0a 00 9c 00 00 00 7c f3 0a 00 68 00 00 00 | X...?...................|...h... |
| a080 | 19 f4 0a 00 1b 01 00 00 82 f4 0a 00 22 00 00 00 9e f5 0a 00 08 00 00 00 c1 f5 0a 00 2a 00 00 00 | ............"...............*... |
| a0a0 | ca f5 0a 00 34 00 00 00 f5 f5 0a 00 ae 00 00 00 2a f6 0a 00 17 01 00 00 d9 f6 0a 00 79 00 00 00 | ....4...........*...........y... |
| a0c0 | f1 f7 0a 00 73 00 00 00 6b f8 0a 00 bf 00 00 00 df f8 0a 00 dc 00 00 00 9f f9 0a 00 7b 01 00 00 | ....s...k...................{... |
| a0e0 | 7c fa 0a 00 90 01 00 00 f8 fb 0a 00 13 01 00 00 89 fd 0a 00 a0 00 00 00 9d fe 0a 00 36 01 00 00 | |...........................6... |
| a100 | 3e ff 0a 00 04 02 00 00 75 00 0b 00 a7 00 00 00 7a 02 0b 00 b6 00 00 00 22 03 0b 00 ad 00 00 00 | >.......u.......z......."....... |
| a120 | d9 03 0b 00 67 00 00 00 87 04 0b 00 71 00 00 00 ef 04 0b 00 fe 00 00 00 61 05 0b 00 7d 00 00 00 | ....g.......q...........a...}... |
| a140 | 60 06 0b 00 7e 00 00 00 de 06 0b 00 6d 01 00 00 5d 07 0b 00 7a 00 00 00 cb 08 0b 00 e2 00 00 00 | `...~.......m...]...z........... |
| a160 | 46 09 0b 00 1e 01 00 00 29 0a 0b 00 56 00 00 00 48 0b 0b 00 89 00 00 00 9f 0b 0b 00 16 01 00 00 | F.......)...V...H............... |
| a180 | 29 0c 0b 00 06 01 00 00 40 0d 0b 00 b1 00 00 00 47 0e 0b 00 58 00 00 00 f9 0e 0b 00 92 00 00 00 | ).......@.......G...X........... |
| a1a0 | 52 0f 0b 00 80 00 00 00 e5 0f 0b 00 7d 00 00 00 66 10 0b 00 98 00 00 00 e4 10 0b 00 b5 00 00 00 | R...........}...f............... |
| a1c0 | 7d 11 0b 00 a2 00 00 00 33 12 0b 00 00 01 00 00 d6 12 0b 00 37 00 00 00 d7 13 0b 00 42 00 00 00 | }.......3...........7.......B... |
| a1e0 | 0f 14 0b 00 d0 00 00 00 52 14 0b 00 cf 00 00 00 23 15 0b 00 fd 00 00 00 f3 15 0b 00 3c 01 00 00 | ........R.......#...........<... |
| a200 | f1 16 0b 00 fb 00 00 00 2e 18 0b 00 bf 00 00 00 2a 19 0b 00 9e 00 00 00 ea 19 0b 00 9b 01 00 00 | ................*............... |
| a220 | 89 1a 0b 00 a4 00 00 00 25 1c 0b 00 fb 00 00 00 ca 1c 0b 00 18 01 00 00 c6 1d 0b 00 20 01 00 00 | ........%....................... |
| a240 | df 1e 0b 00 5d 00 00 00 00 20 0b 00 4b 00 00 00 5e 20 0b 00 97 00 00 00 aa 20 0b 00 57 00 00 00 | ....].......K...^...........W... |
| a260 | 42 21 0b 00 3e 00 00 00 9a 21 0b 00 b0 00 00 00 d9 21 0b 00 f1 00 00 00 8a 22 0b 00 b6 00 00 00 | B!..>....!.......!......."...... |
| a280 | 7c 23 0b 00 b8 00 00 00 33 24 0b 00 b6 00 00 00 ec 24 0b 00 b8 00 00 00 a3 25 0b 00 5d 00 00 00 | |#......3$.......$.......%..]... |
| a2a0 | 5c 26 0b 00 4a 00 00 00 ba 26 0b 00 34 00 00 00 05 27 0b 00 2c 00 00 00 3a 27 0b 00 24 00 00 00 | \&..J....&..4....'..,...:'..$... |
| a2c0 | 67 27 0b 00 41 00 00 00 8c 27 0b 00 d6 00 00 00 ce 27 0b 00 d9 00 00 00 a5 28 0b 00 ae 00 00 00 | g'..A....'.......'.......(...... |
| a2e0 | 7f 29 0b 00 cf 00 00 00 2e 2a 0b 00 59 00 00 00 fe 2a 0b 00 14 00 00 00 58 2b 0b 00 b5 00 00 00 | .).......*..Y....*......X+...... |
| a300 | 6d 2b 0b 00 c3 00 00 00 23 2c 0b 00 48 00 00 00 e7 2c 0b 00 95 00 00 00 30 2d 0b 00 62 00 00 00 | m+......#,..H....,......0-..b... |
| a320 | c6 2d 0b 00 86 00 00 00 29 2e 0b 00 fe 00 00 00 b0 2e 0b 00 41 00 00 00 af 2f 0b 00 93 00 00 00 | .-......)...........A..../...... |
| a340 | f1 2f 0b 00 09 00 00 00 85 30 0b 00 18 00 00 00 8f 30 0b 00 33 00 00 00 a8 30 0b 00 99 00 00 00 | ./.......0.......0..3....0...... |
| a360 | dc 30 0b 00 9a 00 00 00 76 31 0b 00 22 00 00 00 11 32 0b 00 16 00 00 00 34 32 0b 00 1f 00 00 00 | .0......v1.."....2......42...... |
| a380 | 4b 32 0b 00 27 00 00 00 6b 32 0b 00 30 00 00 00 93 32 0b 00 10 00 00 00 c4 32 0b 00 21 00 00 00 | K2..'...k2..0....2.......2..!... |
| a3a0 | d5 32 0b 00 1c 00 00 00 f7 32 0b 00 aa 01 00 00 14 33 0b 00 82 00 00 00 bf 34 0b 00 ac 00 00 00 | .2.......2.......3.......4...... |
| a3c0 | 42 35 0b 00 fe 00 00 00 ef 35 0b 00 60 00 00 00 ee 36 0b 00 55 00 00 00 4f 37 0b 00 51 00 00 00 | B5.......5..`....6..U...O7..Q... |
| a3e0 | a5 37 0b 00 90 01 00 00 f7 37 0b 00 86 01 00 00 88 39 0b 00 85 01 00 00 0f 3b 0b 00 01 00 00 00 | .7.......7.......9.......;...... |
| a400 | 95 3c 0b 00 76 00 00 00 97 3c 0b 00 6b 00 00 00 0e 3d 0b 00 60 00 00 00 7a 3d 0b 00 a9 00 00 00 | .<..v....<..k....=..`...z=...... |
| a420 | db 3d 0b 00 c9 00 00 00 85 3e 0b 00 9b 00 00 00 4f 3f 0b 00 c3 00 00 00 eb 3f 0b 00 3c 00 00 00 | .=.......>......O?.......?..<... |
| a440 | af 40 0b 00 38 00 00 00 ec 40 0b 00 95 00 00 00 25 41 0b 00 2e 00 00 00 bb 41 0b 00 57 00 00 00 | .@..8....@......%A.......A..W... |
| a460 | ea 41 0b 00 61 00 00 00 42 42 0b 00 69 00 00 00 a4 42 0b 00 4b 00 00 00 0e 43 0b 00 a4 00 00 00 | .A..a...BB..i....B..K....C...... |
| a480 | 5a 43 0b 00 52 00 00 00 ff 43 0b 00 53 00 00 00 52 44 0b 00 51 00 00 00 a6 44 0b 00 52 00 00 00 | ZC..R....C..S...RD..Q....D..R... |
| a4a0 | f8 44 0b 00 65 00 00 00 4b 45 0b 00 c4 00 00 00 b1 45 0b 00 35 00 00 00 76 46 0b 00 51 00 00 00 | .D..e...KE.......E..5...vF..Q... |
| a4c0 | ac 46 0b 00 a7 00 00 00 fe 46 0b 00 8a 00 00 00 a6 47 0b 00 96 00 00 00 31 48 0b 00 81 00 00 00 | .F.......F.......G......1H...... |
| a4e0 | c8 48 0b 00 7f 00 00 00 4a 49 0b 00 33 00 00 00 ca 49 0b 00 88 00 00 00 fe 49 0b 00 e3 00 00 00 | .H......JI..3....I.......I...... |
| a500 | 87 4a 0b 00 c3 00 00 00 6b 4b 0b 00 3a 00 00 00 2f 4c 0b 00 5a 00 00 00 6a 4c 0b 00 65 00 00 00 | .J......kK..:.../L..Z...jL..e... |
| a520 | c5 4c 0b 00 c3 00 00 00 2b 4d 0b 00 db 00 00 00 ef 4d 0b 00 50 00 00 00 cb 4e 0b 00 4d 00 00 00 | .L......+M.......M..P....N..M... |
| a540 | 1c 4f 0b 00 06 01 00 00 6a 4f 0b 00 1d 01 00 00 71 50 0b 00 f2 00 00 00 8f 51 0b 00 48 00 00 00 | .O......jO......qP.......Q..H... |
| a560 | 82 52 0b 00 b0 00 00 00 cb 52 0b 00 9f 00 00 00 7c 53 0b 00 1f 00 00 00 1c 54 0b 00 71 00 00 00 | .R.......R......|S.......T..q... |
| a580 | 3c 54 0b 00 75 00 00 00 ae 54 0b 00 75 00 00 00 24 55 0b 00 dc 00 00 00 9a 55 0b 00 3f 00 00 00 | <T..u....T..u...$U.......U..?... |
| a5a0 | 77 56 0b 00 6d 00 00 00 b7 56 0b 00 d9 00 00 00 25 57 0b 00 da 00 00 00 ff 57 0b 00 1c 00 00 00 | wV..m....V......%W.......W...... |
| a5c0 | da 58 0b 00 13 00 00 00 f7 58 0b 00 20 00 00 00 0b 59 0b 00 14 00 00 00 2c 59 0b 00 13 00 00 00 | .X.......X.......Y......,Y...... |
| a5e0 | 41 59 0b 00 03 01 00 00 55 59 0b 00 1d 00 00 00 59 5a 0b 00 1d 00 00 00 77 5a 0b 00 23 00 00 00 | AY......UY......YZ......wZ..#... |
| a600 | 95 5a 0b 00 1d 00 00 00 b9 5a 0b 00 29 00 00 00 d7 5a 0b 00 3f 01 00 00 01 5b 0b 00 31 00 00 00 | .Z.......Z..)....Z..?....[..1... |
| a620 | 41 5c 0b 00 31 00 00 00 73 5c 0b 00 33 00 00 00 a5 5c 0b 00 33 00 00 00 d9 5c 0b 00 10 00 00 00 | A\..1...s\..3....\..3....\...... |
| a640 | 0d 5d 0b 00 0c 00 00 00 1e 5d 0b 00 2d 00 00 00 2b 5d 0b 00 2c 00 00 00 59 5d 0b 00 12 00 00 00 | .].......]..-...+]..,...Y]...... |
| a660 | 86 5d 0b 00 2c 00 00 00 99 5d 0b 00 12 00 00 00 c6 5d 0b 00 25 00 00 00 d9 5d 0b 00 3c 00 00 00 | .]..,....].......]..%....]..<... |
| a680 | ff 5d 0b 00 12 00 00 00 3c 5e 0b 00 35 00 00 00 4f 5e 0b 00 13 00 00 00 85 5e 0b 00 1e 00 00 00 | .]......<^..5...O^.......^...... |
| a6a0 | 99 5e 0b 00 25 00 00 00 b8 5e 0b 00 1e 00 00 00 de 5e 0b 00 25 00 00 00 fd 5e 0b 00 1e 00 00 00 | .^..%....^.......^..%....^...... |
| a6c0 | 23 5f 0b 00 25 00 00 00 42 5f 0b 00 1f 00 00 00 68 5f 0b 00 26 00 00 00 88 5f 0b 00 21 00 00 00 | #_..%...B_......h_..&...._..!... |
| a6e0 | af 5f 0b 00 28 00 00 00 d1 5f 0b 00 34 00 00 00 fa 5f 0b 00 16 00 00 00 2f 60 0b 00 1c 00 00 00 | ._..(...._..4...._....../`...... |
| a700 | 46 60 0b 00 12 00 00 00 63 60 0b 00 12 00 00 00 76 60 0b 00 34 00 00 00 89 60 0b 00 13 00 00 00 | F`......c`......v`..4....`...... |
| a720 | be 60 0b 00 1d 00 00 00 d2 60 0b 00 13 00 00 00 f0 60 0b 00 30 00 00 00 04 61 0b 00 1f 00 00 00 | .`.......`.......`..0....a...... |
| a740 | 35 61 0b 00 1f 00 00 00 55 61 0b 00 13 00 00 00 75 61 0b 00 16 00 00 00 89 61 0b 00 25 01 00 00 | 5a......Ua......ua.......a..%... |
| a760 | a0 61 0b 00 d3 00 00 00 c6 62 0b 00 26 00 00 00 9a 63 0b 00 55 00 00 00 c1 63 0b 00 55 00 00 00 | .a.......b..&....c..U....c..U... |
| a780 | 17 64 0b 00 13 00 00 00 6d 64 0b 00 38 00 00 00 81 64 0b 00 41 00 00 00 ba 64 0b 00 16 00 00 00 | .d......md..8....d..A....d...... |
| a7a0 | fc 64 0b 00 9d 00 00 00 13 65 0b 00 41 00 00 00 b1 65 0b 00 38 00 00 00 f3 65 0b 00 1e 00 00 00 | .d.......e..A....e..8....e...... |
| a7c0 | 2c 66 0b 00 22 00 00 00 4b 66 0b 00 5d 00 00 00 6e 66 0b 00 55 00 00 00 cc 66 0b 00 1e 00 00 00 | ,f.."...Kf..]...nf..U....f...... |
| a7e0 | 22 67 0b 00 44 00 00 00 41 67 0b 00 25 00 00 00 86 67 0b 00 08 01 00 00 ac 67 0b 00 76 00 00 00 | "g..D...Ag..%....g.......g..v... |
| a800 | b5 68 0b 00 fd 01 00 00 2c 69 0b 00 21 00 00 00 2a 6b 0b 00 87 00 00 00 4c 6b 0b 00 54 00 00 00 | .h......,i..!...*k......Lk..T... |
| a820 | d4 6b 0b 00 2b 00 00 00 29 6c 0b 00 5b 00 00 00 55 6c 0b 00 45 00 00 00 b1 6c 0b 00 87 02 00 00 | .k..+...)l..[...Ul..E....l...... |
| a840 | f7 6c 0b 00 c3 00 00 00 7f 6f 0b 00 59 00 00 00 43 70 0b 00 25 00 00 00 9d 70 0b 00 1e 00 00 00 | .l.......o..Y...Cp..%....p...... |
| a860 | c3 70 0b 00 2a 00 00 00 e2 70 0b 00 2f 00 00 00 0d 71 0b 00 27 00 00 00 3d 71 0b 00 37 00 00 00 | .p..*....p../....q..'...=q..7... |
| a880 | 65 71 0b 00 54 00 00 00 9d 71 0b 00 4f 00 00 00 f2 71 0b 00 59 00 00 00 42 72 0b 00 4d 00 00 00 | eq..T....q..O....q..Y...Br..M... |
| a8a0 | 9c 72 0b 00 5f 00 00 00 ea 72 0b 00 33 00 00 00 4a 73 0b 00 64 00 00 00 7e 73 0b 00 7b 00 00 00 | .r.._....r..3...Js..d...~s..{... |
| a8c0 | e3 73 0b 00 49 00 00 00 5f 74 0b 00 1e 00 00 00 a9 74 0b 00 f3 00 00 00 c8 74 0b 00 f1 00 00 00 | .s..I..._t.......t.......t...... |
| a8e0 | bc 75 0b 00 5e 00 00 00 ae 76 0b 00 79 00 00 00 0d 77 0b 00 54 00 00 00 87 77 0b 00 43 00 00 00 | .u..^....v..y....w..T....w..C... |
| a900 | dc 77 0b 00 4f 00 00 00 20 78 0b 00 29 00 00 00 70 78 0b 00 82 00 00 00 9a 78 0b 00 22 00 00 00 | .w..O....x..)...px.......x.."... |
| a920 | 1d 79 0b 00 47 02 00 00 40 79 0b 00 47 02 00 00 88 7b 0b 00 fc 00 00 00 d0 7d 0b 00 9c 00 00 00 | .y..G...@y..G....{.......}...... |
| a940 | cd 7e 0b 00 2c 00 00 00 6a 7f 0b 00 16 00 00 00 97 7f 0b 00 53 00 00 00 ae 7f 0b 00 7d 00 00 00 | .~..,...j...........S.......}... |
| a960 | 02 80 0b 00 66 00 00 00 80 80 0b 00 68 00 00 00 e7 80 0b 00 b4 00 00 00 50 81 0b 00 4b 00 00 00 | ....f.......h...........P...K... |
| a980 | 05 82 0b 00 55 00 00 00 51 82 0b 00 22 00 00 00 a7 82 0b 00 18 00 00 00 ca 82 0b 00 31 00 00 00 | ....U...Q..."...............1... |
| a9a0 | e3 82 0b 00 1b 00 00 00 15 83 0b 00 1a 00 00 00 31 83 0b 00 17 00 00 00 4c 83 0b 00 17 00 00 00 | ................1.......L....... |
| a9c0 | 64 83 0b 00 17 00 00 00 7c 83 0b 00 35 00 00 00 94 83 0b 00 41 00 00 00 ca 83 0b 00 25 00 00 00 | d.......|...5.......A.......%... |
| a9e0 | 0c 84 0b 00 2d 00 00 00 32 84 0b 00 3e 00 00 00 60 84 0b 00 24 00 00 00 9f 84 0b 00 28 00 00 00 | ....-...2...>...`...$.......(... |
| aa00 | c4 84 0b 00 4d 00 00 00 ed 84 0b 00 50 00 00 00 3b 85 0b 00 33 00 00 00 8c 85 0b 00 35 00 00 00 | ....M.......P...;...3.......5... |
| aa20 | c0 85 0b 00 20 00 00 00 f6 85 0b 00 2b 00 00 00 17 86 0b 00 39 00 00 00 43 86 0b 00 73 02 00 00 | ............+.......9...C...s... |
| aa40 | 7d 86 0b 00 49 00 00 00 f1 88 0b 00 74 02 00 00 3b 89 0b 00 c9 00 00 00 b0 8b 0b 00 28 00 00 00 | }...I.......t...;...........(... |
| aa60 | 7a 8c 0b 00 5c 00 00 00 a3 8c 0b 00 19 00 00 00 00 8d 0b 00 16 00 00 00 1a 8d 0b 00 9e 00 00 00 | z...\........................... |
| aa80 | 31 8d 0b 00 23 00 00 00 d0 8d 0b 00 27 00 00 00 f4 8d 0b 00 18 00 00 00 1c 8e 0b 00 25 00 00 00 | 1...#.......'...............%... |
| aaa0 | 35 8e 0b 00 1c 00 00 00 5b 8e 0b 00 1f 00 00 00 78 8e 0b 00 53 00 00 00 98 8e 0b 00 53 00 00 00 | 5.......[.......x...S.......S... |
| aac0 | ec 8e 0b 00 16 00 00 00 40 8f 0b 00 7e 00 00 00 57 8f 0b 00 33 00 00 00 d6 8f 0b 00 25 00 00 00 | ........@...~...W...3.......%... |
| aae0 | 0a 90 0b 00 af 00 00 00 30 90 0b 00 d0 00 00 00 e0 90 0b 00 7e 00 00 00 b1 91 0b 00 25 00 00 00 | ........0...........~.......%... |
| ab00 | 30 92 0b 00 3d 00 00 00 56 92 0b 00 51 00 00 00 94 92 0b 00 04 01 00 00 e6 92 0b 00 49 00 00 00 | 0...=...V...Q...............I... |
| ab20 | eb 93 0b 00 47 00 00 00 35 94 0b 00 bd 00 00 00 7d 94 0b 00 78 00 00 00 3b 95 0b 00 aa 00 00 00 | ....G...5.......}...x...;....... |
| ab40 | b4 95 0b 00 41 00 00 00 5f 96 0b 00 43 00 00 00 a1 96 0b 00 3d 00 00 00 e5 96 0b 00 27 00 00 00 | ....A..._...C.......=.......'... |
| ab60 | 23 97 0b 00 1a 00 00 00 4b 97 0b 00 d2 00 00 00 66 97 0b 00 5b 00 00 00 39 98 0b 00 3d 00 00 00 | #.......K.......f...[...9...=... |
| ab80 | 95 98 0b 00 ab 00 00 00 d3 98 0b 00 1d 00 00 00 7f 99 0b 00 5a 00 00 00 9d 99 0b 00 5a 00 00 00 | ....................Z.......Z... |
| aba0 | f8 99 0b 00 77 00 00 00 53 9a 0b 00 7d 00 00 00 cb 9a 0b 00 dd 00 00 00 49 9b 0b 00 3f 00 00 00 | ....w...S...}...........I...?... |
| abc0 | 27 9c 0b 00 40 00 00 00 67 9c 0b 00 55 00 00 00 a8 9c 0b 00 af 00 00 00 fe 9c 0b 00 5e 00 00 00 | '...@...g...U...............^... |
| abe0 | ae 9d 0b 00 72 00 00 00 0d 9e 0b 00 3b 00 00 00 80 9e 0b 00 65 00 00 00 bc 9e 0b 00 37 00 00 00 | ....r.......;.......e.......7... |
| ac00 | 22 9f 0b 00 25 00 00 00 5a 9f 0b 00 51 00 00 00 80 9f 0b 00 55 00 00 00 d2 9f 0b 00 38 00 00 00 | "...%...Z...Q.......U.......8... |
| ac20 | 28 a0 0b 00 13 00 00 00 61 a0 0b 00 45 00 00 00 75 a0 0b 00 40 00 00 00 bb a0 0b 00 26 00 00 00 | (.......a...E...u...@.......&... |
| ac40 | fc a0 0b 00 24 00 00 00 23 a1 0b 00 44 00 00 00 48 a1 0b 00 4a 00 00 00 8d a1 0b 00 4b 00 00 00 | ....$...#...D...H...J.......K... |
| ac60 | d8 a1 0b 00 4a 00 00 00 24 a2 0b 00 4b 00 00 00 6f a2 0b 00 1f 00 00 00 bb a2 0b 00 1f 00 00 00 | ....J...$...K...o............... |
| ac80 | db a2 0b 00 96 00 00 00 fb a2 0b 00 26 00 00 00 92 a3 0b 00 29 00 00 00 b9 a3 0b 00 22 00 00 00 | ............&.......)......."... |
| aca0 | e3 a3 0b 00 1f 00 00 00 06 a4 0b 00 24 00 00 00 26 a4 0b 00 28 00 00 00 4b a4 0b 00 18 00 00 00 | ............$...&...(...K....... |
| acc0 | 74 a4 0b 00 1b 00 00 00 8d a4 0b 00 26 00 00 00 a9 a4 0b 00 29 00 00 00 d0 a4 0b 00 57 00 00 00 | t...........&.......).......W... |
| ace0 | fa a4 0b 00 54 00 00 00 52 a5 0b 00 52 00 00 00 a7 a5 0b 00 51 00 00 00 fa a5 0b 00 40 00 00 00 | ....T...R...R.......Q.......@... |
| ad00 | 4c a6 0b 00 28 00 00 00 8d a6 0b 00 70 00 00 00 b6 a6 0b 00 26 00 00 00 27 a7 0b 00 79 00 00 00 | L...(.......p.......&...'...y... |
| ad20 | 4e a7 0b 00 62 00 00 00 c8 a7 0b 00 56 00 00 00 2b a8 0b 00 0b 00 00 00 82 a8 0b 00 2c 00 00 00 | N...b.......V...+...........,... |
| ad40 | 8e a8 0b 00 35 00 00 00 bb a8 0b 00 3f 00 00 00 f1 a8 0b 00 77 00 00 00 31 a9 0b 00 2d 00 00 00 | ....5.......?.......w...1...-... |
| ad60 | a9 a9 0b 00 33 00 00 00 d7 a9 0b 00 31 00 00 00 0b aa 0b 00 69 00 00 00 3d aa 0b 00 69 00 00 00 | ....3.......1.......i...=...i... |
| ad80 | a7 aa 0b 00 9c 00 00 00 11 ab 0b 00 89 00 00 00 ae ab 0b 00 24 00 00 00 38 ac 0b 00 56 00 00 00 | ....................$...8...V... |
| ada0 | 5d ac 0b 00 16 00 00 00 b4 ac 0b 00 4c 00 00 00 cb ac 0b 00 3c 00 00 00 18 ad 0b 00 9e 00 00 00 | ]...........L.......<........... |
| adc0 | 55 ad 0b 00 26 00 00 00 f4 ad 0b 00 27 00 00 00 1b ae 0b 00 1f 00 00 00 43 ae 0b 00 5c 00 00 00 | U...&.......'...........C...\... |
| ade0 | 63 ae 0b 00 3f 00 00 00 c0 ae 0b 00 36 00 00 00 00 af 0b 00 38 00 00 00 37 af 0b 00 66 00 00 00 | c...?.......6.......8...7...f... |
| ae00 | 70 af 0b 00 24 00 00 00 d7 af 0b 00 4d 00 00 00 fc af 0b 00 27 00 00 00 4a b0 0b 00 27 00 00 00 | p...$.......M.......'...J...'... |
| ae20 | 72 b0 0b 00 ee 00 00 00 9a b0 0b 00 1f 00 00 00 89 b1 0b 00 1e 00 00 00 a9 b1 0b 00 24 01 00 00 | r...........................$... |
| ae40 | c8 b1 0b 00 a1 00 00 00 ed b2 0b 00 3c 00 00 00 8f b3 0b 00 6e 00 00 00 cc b3 0b 00 83 00 00 00 | ............<.......n........... |
| ae60 | 3b b4 0b 00 3e 00 00 00 bf b4 0b 00 55 00 00 00 fe b4 0b 00 27 01 00 00 54 b5 0b 00 50 00 00 00 | ;...>.......U.......'...T...P... |
| ae80 | 7c b6 0b 00 22 00 00 00 cd b6 0b 00 5a 00 00 00 f0 b6 0b 00 2c 00 00 00 4b b7 0b 00 47 00 00 00 | |...".......Z.......,...K...G... |
| aea0 | 78 b7 0b 00 7b 00 00 00 c0 b7 0b 00 77 00 00 00 3c b8 0b 00 65 00 00 00 b4 b8 0b 00 65 00 00 00 | x...{.......w...<...e.......e... |
| aec0 | 1a b9 0b 00 5a 00 00 00 80 b9 0b 00 5a 00 00 00 db b9 0b 00 72 00 00 00 36 ba 0b 00 2e 00 00 00 | ....Z.......Z.......r...6....... |
| aee0 | a9 ba 0b 00 24 00 00 00 d8 ba 0b 00 61 00 00 00 fd ba 0b 00 55 00 00 00 5f bb 0b 00 2b 00 00 00 | ....$.......a.......U..._...+... |
| af00 | b5 bb 0b 00 29 00 00 00 e1 bb 0b 00 2a 00 00 00 0b bc 0b 00 2e 00 00 00 36 bc 0b 00 29 00 00 00 | ....).......*...........6...)... |
| af20 | 65 bc 0b 00 27 00 00 00 8f bc 0b 00 28 00 00 00 b7 bc 0b 00 29 00 00 00 e0 bc 0b 00 27 00 00 00 | e...'.......(.......).......'... |
| af40 | 0a bd 0b 00 28 00 00 00 32 bd 0b 00 4c 00 00 00 5b bd 0b 00 4c 00 00 00 a8 bd 0b 00 1d 00 00 00 | ....(...2...L...[...L........... |
| af60 | f5 bd 0b 00 38 00 00 00 13 be 0b 00 54 00 00 00 4c be 0b 00 0b 00 00 00 a1 be 0b 00 0f 00 00 00 | ....8.......T...L............... |
| af80 | ad be 0b 00 49 00 00 00 bd be 0b 00 0b 00 00 00 07 bf 0b 00 43 00 00 00 13 bf 0b 00 43 00 00 00 | ....I...............C.......C... |
| afa0 | 57 bf 0b 00 36 00 00 00 9b bf 0b 00 29 00 00 00 d2 bf 0b 00 2e 00 00 00 fc bf 0b 00 38 00 00 00 | W...6.......)...............8... |
| afc0 | 2b c0 0b 00 2c 00 00 00 64 c0 0b 00 46 00 00 00 91 c0 0b 00 22 00 00 00 d8 c0 0b 00 77 00 00 00 | +...,...d...F.......".......w... |
| afe0 | fb c0 0b 00 28 00 00 00 73 c1 0b 00 3e 00 00 00 9c c1 0b 00 28 00 00 00 db c1 0b 00 3e 00 00 00 | ....(...s...>.......(.......>... |
| b000 | 04 c2 0b 00 29 00 00 00 43 c2 0b 00 5d 00 00 00 6d c2 0b 00 c9 00 00 00 cb c2 0b 00 3f 00 00 00 | ....)...C...]...m...........?... |
| b020 | 95 c3 0b 00 dd 00 00 00 d5 c3 0b 00 12 00 00 00 b3 c4 0b 00 12 00 00 00 c6 c4 0b 00 12 00 00 00 | ................................ |
| b040 | d9 c4 0b 00 4c 00 00 00 ec c4 0b 00 19 00 00 00 39 c5 0b 00 7f 00 00 00 53 c5 0b 00 1d 00 00 00 | ....L...........9.......S....... |
| b060 | d3 c5 0b 00 73 00 00 00 f1 c5 0b 00 31 00 00 00 65 c6 0b 00 d7 00 00 00 97 c6 0b 00 1e 00 00 00 | ....s.......1...e............... |
| b080 | 6f c7 0b 00 24 00 00 00 8e c7 0b 00 5c 00 00 00 b3 c7 0b 00 21 00 00 00 10 c8 0b 00 14 00 00 00 | o...$.......\.......!........... |
| b0a0 | 32 c8 0b 00 52 00 00 00 47 c8 0b 00 5c 00 00 00 9a c8 0b 00 b7 00 00 00 f7 c8 0b 00 44 01 00 00 | 2...R...G...\...............D... |
| b0c0 | af c9 0b 00 47 00 00 00 f4 ca 0b 00 a5 01 00 00 3c cb 0b 00 27 00 00 00 e2 cc 0b 00 88 01 00 00 | ....G...........<...'........... |
| b0e0 | 0a cd 0b 00 72 00 00 00 93 ce 0b 00 74 00 00 00 06 cf 0b 00 6d 00 00 00 7b cf 0b 00 33 00 00 00 | ....r.......t.......m...{...3... |
| b100 | e9 cf 0b 00 30 00 00 00 1d d0 0b 00 3e 00 00 00 4e d0 0b 00 33 01 00 00 8d d0 0b 00 41 00 00 00 | ....0.......>...N...3.......A... |
| b120 | c1 d1 0b 00 30 00 00 00 03 d2 0b 00 d1 00 00 00 34 d2 0b 00 8f 00 00 00 06 d3 0b 00 3f 00 00 00 | ....0...........4...........?... |
| b140 | 96 d3 0b 00 df 00 00 00 d6 d3 0b 00 c2 01 00 00 b6 d4 0b 00 49 00 00 00 79 d6 0b 00 e7 00 00 00 | ....................I...y....... |
| b160 | c3 d6 0b 00 65 01 00 00 ab d7 0b 00 1f 00 00 00 11 d9 0b 00 30 00 00 00 31 d9 0b 00 33 00 00 00 | ....e...............0...1...3... |
| b180 | 62 d9 0b 00 11 00 00 00 96 d9 0b 00 05 00 00 00 a8 d9 0b 00 03 00 00 00 ae d9 0b 00 0e 00 00 00 | b............................... |
| b1a0 | b2 d9 0b 00 1b 00 00 00 c1 d9 0b 00 1d 00 00 00 dd d9 0b 00 1f 00 00 00 fb d9 0b 00 04 00 00 00 | ................................ |
| b1c0 | 1b da 0b 00 0d 00 00 00 20 da 0b 00 32 00 00 00 2e da 0b 00 29 00 00 00 61 da 0b 00 04 00 00 00 | ............2.......)...a....... |
| b1e0 | 8b da 0b 00 07 00 00 00 90 da 0b 00 09 00 00 00 98 da 0b 00 0d 00 00 00 a2 da 0b 00 17 00 00 00 | ................................ |
| b200 | b0 da 0b 00 0f 00 00 00 c8 da 0b 00 0d 00 00 00 d8 da 0b 00 06 00 00 00 e6 da 0b 00 19 00 00 00 | ................................ |
| b220 | ed da 0b 00 14 00 00 00 07 db 0b 00 05 00 00 00 1c db 0b 00 15 00 00 00 22 db 0b 00 04 00 00 00 | ........................"....... |
| b240 | 38 db 0b 00 04 00 00 00 3d db 0b 00 06 00 00 00 42 db 0b 00 51 00 00 00 49 db 0b 00 4a 01 00 00 | 8.......=.......B...Q...I...J... |
| b260 | 9b db 0b 00 50 01 00 00 e6 dc 0b 00 4d 00 00 00 37 de 0b 00 05 00 00 00 85 de 0b 00 12 00 00 00 | ....P.......M...7............... |
| b280 | 8b de 0b 00 15 00 00 00 9e de 0b 00 22 00 00 00 b4 de 0b 00 10 00 00 00 d7 de 0b 00 12 00 00 00 | ............"................... |
| b2a0 | e8 de 0b 00 0e 00 00 00 fb de 0b 00 10 00 00 00 0a df 0b 00 13 00 00 00 1b df 0b 00 16 00 00 00 | ................................ |
| b2c0 | 2f df 0b 00 06 00 00 00 46 df 0b 00 09 00 00 00 4d df 0b 00 1d 00 00 00 57 df 0b 00 05 00 00 00 | /.......F.......M.......W....... |
| b2e0 | 75 df 0b 00 0b 00 00 00 7b df 0b 00 13 00 00 00 87 df 0b 00 0d 00 00 00 9b df 0b 00 05 00 00 00 | u.......{....................... |
| b300 | a9 df 0b 00 68 00 00 00 af df 0b 00 67 00 00 00 18 e0 0b 00 79 00 00 00 80 e0 0b 00 66 00 00 00 | ....h.......g.......y.......f... |
| b320 | fa e0 0b 00 03 00 00 00 61 e1 0b 00 08 00 00 00 65 e1 0b 00 31 00 00 00 6e e1 0b 00 07 00 00 00 | ........a.......e...1...n....... |
| b340 | a0 e1 0b 00 08 00 00 00 a8 e1 0b 00 38 00 00 00 b1 e1 0b 00 10 00 00 00 ea e1 0b 00 0b 00 00 00 | ............8................... |
| b360 | fb e1 0b 00 03 00 00 00 07 e2 0b 00 1d 00 00 00 0b e2 0b 00 06 00 00 00 29 e2 0b 00 1d 00 00 00 | ........................)....... |
| b380 | 30 e2 0b 00 09 00 00 00 4e e2 0b 00 26 00 00 00 58 e2 0b 00 6d 00 00 00 7f e2 0b 00 46 00 00 00 | 0.......N...&...X...m.......F... |
| b3a0 | ed e2 0b 00 36 00 00 00 34 e3 0b 00 32 00 00 00 6b e3 0b 00 46 00 00 00 9e e3 0b 00 04 00 00 00 | ....6...4...2...k...F........... |
| b3c0 | e5 e3 0b 00 22 00 00 00 ea e3 0b 00 08 00 00 00 0d e4 0b 00 07 00 00 00 16 e4 0b 00 46 00 00 00 | ....".......................F... |
| b3e0 | 1e e4 0b 00 0d 00 00 00 65 e4 0b 00 05 00 00 00 73 e4 0b 00 1b 00 00 00 79 e4 0b 00 1c 00 00 00 | ........e.......s.......y....... |
| b400 | 95 e4 0b 00 73 00 00 00 b2 e4 0b 00 71 00 00 00 26 e5 0b 00 04 00 00 00 98 e5 0b 00 06 00 00 00 | ....s.......q...&............... |
| b420 | 9d e5 0b 00 04 00 00 00 a4 e5 0b 00 05 00 00 00 a9 e5 0b 00 10 00 00 00 af e5 0b 00 3c 00 00 00 | ............................<... |
| b440 | c0 e5 0b 00 32 00 00 00 fd e5 0b 00 1c 00 00 00 30 e6 0b 00 6d 00 00 00 4d e6 0b 00 08 00 00 00 | ....2...........0...m...M....... |
| b460 | bb e6 0b 00 14 00 00 00 c4 e6 0b 00 14 00 00 00 d9 e6 0b 00 14 00 00 00 ee e6 0b 00 14 00 00 00 | ................................ |
| b480 | 03 e7 0b 00 14 00 00 00 18 e7 0b 00 14 00 00 00 2d e7 0b 00 14 00 00 00 42 e7 0b 00 06 00 00 00 | ................-.......B....... |
| b4a0 | 57 e7 0b 00 06 00 00 00 5e e7 0b 00 06 00 00 00 65 e7 0b 00 06 00 00 00 6c e7 0b 00 06 00 00 00 | W.......^.......e.......l....... |
| b4c0 | 73 e7 0b 00 06 00 00 00 7a e7 0b 00 06 00 00 00 81 e7 0b 00 06 00 00 00 88 e7 0b 00 1f 00 00 00 | s.......z....................... |
| b4e0 | 8f e7 0b 00 08 00 00 00 af e7 0b 00 08 00 00 00 b8 e7 0b 00 a4 00 00 00 c1 e7 0b 00 03 00 00 00 | ................................ |
| b500 | 66 e8 0b 00 0d 00 00 00 6a e8 0b 00 74 00 00 00 78 e8 0b 00 9a 00 00 00 ed e8 0b 00 4c 00 00 00 | f.......j...t...x...........L... |
| b520 | 88 e9 0b 00 04 00 00 00 d5 e9 0b 00 0c 00 00 00 da e9 0b 00 3f 00 00 00 e7 e9 0b 00 29 00 00 00 | ....................?.......)... |
| b540 | 27 ea 0b 00 37 00 00 00 51 ea 0b 00 2c 00 00 00 89 ea 0b 00 0e 00 00 00 b6 ea 0b 00 33 00 00 00 | '...7...Q...,...............3... |
| b560 | c5 ea 0b 00 33 00 00 00 f9 ea 0b 00 0b 00 00 00 2d eb 0b 00 14 00 00 00 39 eb 0b 00 71 00 00 00 | ....3...........-.......9...q... |
| b580 | 4e eb 0b 00 46 00 00 00 c0 eb 0b 00 09 00 00 00 07 ec 0b 00 04 00 00 00 11 ec 0b 00 0b 00 00 00 | N...F........................... |
| b5a0 | 16 ec 0b 00 12 00 00 00 22 ec 0b 00 0f 00 00 00 35 ec 0b 00 08 00 00 00 45 ec 0b 00 06 00 00 00 | ........".......5.......E....... |
| b5c0 | 4e ec 0b 00 03 00 00 00 55 ec 0b 00 0a 00 00 00 59 ec 0b 00 0b 00 00 00 64 ec 0b 00 40 00 00 00 | N.......U.......Y.......d...@... |
| b5e0 | 70 ec 0b 00 07 00 00 00 b1 ec 0b 00 06 00 00 00 b9 ec 0b 00 05 00 00 00 c0 ec 0b 00 9b 00 00 00 | p............................... |
| b600 | c6 ec 0b 00 11 00 00 00 62 ed 0b 00 0d 00 00 00 74 ed 0b 00 13 00 00 00 82 ed 0b 00 15 00 00 00 | ........b.......t............... |
| b620 | 96 ed 0b 00 18 00 00 00 ac ed 0b 00 1b 00 00 00 c5 ed 0b 00 0a 00 00 00 e1 ed 0b 00 12 00 00 00 | ................................ |
| b640 | ec ed 0b 00 1c 00 00 00 ff ed 0b 00 0f 00 00 00 1c ee 0b 00 05 00 00 00 2c ee 0b 00 0e 00 00 00 | ........................,....... |
| b660 | 32 ee 0b 00 0e 00 00 00 41 ee 0b 00 0d 00 00 00 50 ee 0b 00 2a 00 00 00 5e ee 0b 00 15 00 00 00 | 2.......A.......P...*...^....... |
| b680 | 89 ee 0b 00 31 00 00 00 9f ee 0b 00 39 00 00 00 d1 ee 0b 00 34 00 00 00 0b ef 0b 00 04 00 00 00 | ....1.......9.......4........... |
| b6a0 | 40 ef 0b 00 0b 00 00 00 45 ef 0b 00 09 00 00 00 51 ef 0b 00 07 00 00 00 5b ef 0b 00 05 00 00 00 | @.......E.......Q.......[....... |
| b6c0 | 63 ef 0b 00 72 00 00 00 69 ef 0b 00 08 00 00 00 dc ef 0b 00 62 01 00 00 e5 ef 0b 00 0e 00 00 00 | c...r...i...........b........... |
| b6e0 | 48 f1 0b 00 11 00 00 00 57 f1 0b 00 38 00 00 00 69 f1 0b 00 0d 00 00 00 a2 f1 0b 00 0d 00 00 00 | H.......W...8...i............... |
| b700 | b0 f1 0b 00 06 00 00 00 be f1 0b 00 3a 00 00 00 c5 f1 0b 00 0b 00 00 00 00 f2 0b 00 3f 00 00 00 | ............:...............?... |
| b720 | 0c f2 0b 00 40 00 00 00 4c f2 0b 00 0e 00 00 00 8d f2 0b 00 0f 00 00 00 9c f2 0b 00 07 00 00 00 | ....@...L....................... |
| b740 | ac f2 0b 00 0e 00 00 00 b4 f2 0b 00 0c 00 00 00 c3 f2 0b 00 ad 00 00 00 d0 f2 0b 00 0b 00 00 00 | ................................ |
| b760 | 7e f3 0b 00 08 00 00 00 8a f3 0b 00 06 00 00 00 93 f3 0b 00 04 00 00 00 9a f3 0b 00 d7 00 00 00 | ~............................... |
| b780 | 9f f3 0b 00 10 00 00 00 77 f4 0b 00 ed 01 00 00 88 f4 0b 00 0b 00 00 00 76 f6 0b 00 0b 00 00 00 | ........w...............v....... |
| b7a0 | 82 f6 0b 00 0c 00 00 00 8e f6 0b 00 06 00 00 00 9b f6 0b 00 0e 00 00 00 a2 f6 0b 00 58 00 00 00 | ............................X... |
| b7c0 | b1 f6 0b 00 04 00 00 00 0a f7 0b 00 04 00 00 00 0f f7 0b 00 05 00 00 00 14 f7 0b 00 0e 00 00 00 | ................................ |
| b7e0 | 1a f7 0b 00 47 00 00 00 29 f7 0b 00 75 00 00 00 71 f7 0b 00 05 00 00 00 e7 f7 0b 00 07 00 00 00 | ....G...)...u...q............... |
| b800 | ed f7 0b 00 68 00 00 00 f5 f7 0b 00 19 00 00 00 5e f8 0b 00 14 00 00 00 78 f8 0b 00 2c 00 00 00 | ....h...........^.......x...,... |
| b820 | 8d f8 0b 00 0b 00 00 00 ba f8 0b 00 09 00 00 00 c6 f8 0b 00 08 00 00 00 d0 f8 0b 00 53 00 00 00 | ............................S... |
| b840 | d9 f8 0b 00 08 00 00 00 2d f9 0b 00 22 00 00 00 36 f9 0b 00 04 00 00 00 59 f9 0b 00 05 00 00 00 | ........-..."...6.......Y....... |
| b860 | 5e f9 0b 00 da 00 00 00 64 f9 0b 00 43 00 00 00 3f fa 0b 00 52 00 00 00 83 fa 0b 00 42 00 00 00 | ^.......d...C...?...R.......B... |
| b880 | d6 fa 0b 00 3b 00 00 00 19 fb 0b 00 42 00 00 00 55 fb 0b 00 3a 00 00 00 98 fb 0b 00 24 00 00 00 | ....;.......B...U...:.......$... |
| b8a0 | d3 fb 0b 00 1a 00 00 00 f8 fb 0b 00 66 00 00 00 13 fc 0b 00 6f 00 00 00 7a fc 0b 00 89 00 00 00 | ............f.......o...z....... |
| b8c0 | ea fc 0b 00 5d 01 00 00 74 fd 0b 00 48 00 00 00 d2 fe 0b 00 46 00 00 00 1b ff 0b 00 31 00 00 00 | ....]...t...H.......F.......1... |
| b8e0 | 62 ff 0b 00 31 00 00 00 94 ff 0b 00 3e 00 00 00 c6 ff 0b 00 23 00 00 00 05 00 0c 00 18 00 00 00 | b...1.......>.......#........... |
| b900 | 29 00 0c 00 7d 00 00 00 42 00 0c 00 92 00 00 00 c0 00 0c 00 23 00 00 00 53 01 0c 00 90 00 00 00 | )...}...B...........#...S....... |
| b920 | 77 01 0c 00 20 00 00 00 08 02 0c 00 21 00 00 00 29 02 0c 00 21 00 00 00 4b 02 0c 00 3f 00 00 00 | w...........!...)...!...K...?... |
| b940 | 6d 02 0c 00 78 00 00 00 ad 02 0c 00 7f 00 00 00 26 03 0c 00 36 00 00 00 a6 03 0c 00 15 00 00 00 | m...x...........&...6........... |
| b960 | dd 03 0c 00 2d 00 00 00 f3 03 0c 00 27 00 00 00 21 04 0c 00 1d 00 00 00 49 04 0c 00 5c 00 00 00 | ....-.......'...!.......I...\... |
| b980 | 67 04 0c 00 46 01 00 00 c4 04 0c 00 60 00 00 00 0b 06 0c 00 1c 00 00 00 6c 06 0c 00 0c 00 00 00 | g...F.......`...........l....... |
| b9a0 | 89 06 0c 00 21 00 00 00 96 06 0c 00 4e 00 00 00 b8 06 0c 00 e8 00 00 00 07 07 0c 00 e0 00 00 00 | ....!.......N................... |
| b9c0 | f0 07 0c 00 e0 00 00 00 d1 08 0c 00 23 00 00 00 b2 09 0c 00 29 00 00 00 d6 09 0c 00 3e 00 00 00 | ............#.......).......>... |
| b9e0 | 00 0a 0c 00 0c 00 00 00 3f 0a 0c 00 12 00 00 00 4c 0a 0c 00 56 00 00 00 5f 0a 0c 00 56 00 00 00 | ........?.......L...V..._...V... |
| ba00 | b6 0a 0c 00 11 00 00 00 0d 0b 0c 00 b4 00 00 00 1f 0b 0c 00 4d 00 00 00 d4 0b 0c 00 b4 00 00 00 | ....................M........... |
| ba20 | 22 0c 0c 00 6c 00 00 00 d7 0c 0c 00 6b 00 00 00 44 0d 0c 00 6c 00 00 00 b0 0d 0c 00 81 00 00 00 | "...l.......k...D...l........... |
| ba40 | 1d 0e 0c 00 3b 00 00 00 9f 0e 0c 00 12 00 00 00 db 0e 0c 00 8b 00 00 00 ee 0e 0c 00 98 00 00 00 | ....;........................... |
| ba60 | 7a 0f 0c 00 8c 00 00 00 13 10 0c 00 30 01 00 00 a0 10 0c 00 fc 00 00 00 d1 11 0c 00 01 01 00 00 | z...........0................... |
| ba80 | ce 12 0c 00 fb 00 00 00 d0 13 0c 00 fc 00 00 00 cc 14 0c 00 f9 00 00 00 c9 15 0c 00 94 00 00 00 | ................................ |
| baa0 | c3 16 0c 00 00 01 00 00 58 17 0c 00 04 01 00 00 59 18 0c 00 2c 01 00 00 5e 19 0c 00 f6 01 00 00 | ........X.......Y...,...^....... |
| bac0 | 8b 1a 0c 00 67 00 00 00 82 1c 0c 00 6a 00 00 00 ea 1c 0c 00 66 00 00 00 55 1d 0c 00 da 00 00 00 | ....g.......j.......f...U....... |
| bae0 | bc 1d 0c 00 d9 00 00 00 97 1e 0c 00 12 00 00 00 71 1f 0c 00 08 00 00 00 84 1f 0c 00 b8 00 00 00 | ................q............... |
| bb00 | 8d 1f 0c 00 14 01 00 00 46 20 0c 00 18 00 00 00 5b 21 0c 00 18 00 00 00 74 21 0c 00 1b 00 00 00 | ........F.......[!......t!...... |
| bb20 | 8d 21 0c 00 1a 00 00 00 a9 21 0c 00 15 00 00 00 c4 21 0c 00 0d 00 00 00 da 21 0c 00 14 00 00 00 | .!.......!.......!.......!...... |
| bb40 | e8 21 0c 00 0a 00 00 00 fd 21 0c 00 0b 00 00 00 08 22 0c 00 0a 00 00 00 14 22 0c 00 0b 00 00 00 | .!.......!......."......."...... |
| bb60 | 1f 22 0c 00 0a 00 00 00 2b 22 0c 00 0a 00 00 00 36 22 0c 00 4d 00 00 00 41 22 0c 00 7e 03 00 00 | ."......+"......6"..M...A"..~... |
| bb80 | 8f 22 0c 00 10 00 00 00 0e 26 0c 00 10 00 00 00 1f 26 0c 00 6f 00 00 00 30 26 0c 00 44 00 00 00 | .".......&.......&..o...0&..D... |
| bba0 | a0 26 0c 00 8c 00 00 00 e5 26 0c 00 8c 00 00 00 72 27 0c 00 ba 00 00 00 ff 27 0c 00 ae 00 00 00 | .&.......&......r'.......'...... |
| bbc0 | ba 28 0c 00 ae 00 00 00 69 29 0c 00 a0 01 00 00 18 2a 0c 00 99 01 00 00 b9 2b 0c 00 ab 01 00 00 | .(......i).......*.......+...... |
| bbe0 | 53 2d 0c 00 98 01 00 00 ff 2e 0c 00 99 01 00 00 98 30 0c 00 ae 01 00 00 32 32 0c 00 10 00 00 00 | S-...............0......22...... |
| bc00 | e1 33 0c 00 8b 00 00 00 f2 33 0c 00 4a 00 00 00 7e 34 0c 00 16 00 00 00 c9 34 0c 00 9d 00 00 00 | .3.......3..J...~4.......4...... |
| bc20 | e0 34 0c 00 32 00 00 00 7e 35 0c 00 93 00 00 00 b1 35 0c 00 6b 01 00 00 45 36 0c 00 1f 01 00 00 | .4..2...~5.......5..k...E6...... |
| bc40 | b1 37 0c 00 c2 01 00 00 d1 38 0c 00 ce 01 00 00 94 3a 0c 00 2f 01 00 00 63 3c 0c 00 2e 01 00 00 | .7.......8.......:../...c<...... |
| bc60 | 93 3d 0c 00 0b 00 00 00 c2 3e 0c 00 2e 00 00 00 ce 3e 0c 00 2d 00 00 00 fd 3e 0c 00 26 00 00 00 | .=.......>.......>..-....>..&... |
| bc80 | 2b 3f 0c 00 37 00 00 00 52 3f 0c 00 33 00 00 00 8a 3f 0c 00 29 00 00 00 be 3f 0c 00 3b 00 00 00 | +?..7...R?..3....?..)....?..;... |
| bca0 | e8 3f 0c 00 1e 00 00 00 24 40 0c 00 3b 00 00 00 43 40 0c 00 2e 00 00 00 7f 40 0c 00 2d 00 00 00 | .?......$@..;...C@.......@..-... |
| bcc0 | ae 40 0c 00 4e 00 00 00 dc 40 0c 00 0f 00 00 00 2b 41 0c 00 11 00 00 00 3b 41 0c 00 06 00 00 00 | .@..N....@......+A......;A...... |
| bce0 | 4d 41 0c 00 0f 00 00 00 54 41 0c 00 11 00 00 00 64 41 0c 00 06 00 00 00 76 41 0c 00 2d 00 00 00 | MA......TA......dA......vA..-... |
| bd00 | 7d 41 0c 00 25 00 00 00 ab 41 0c 00 09 00 00 00 d1 41 0c 00 b9 00 00 00 db 41 0c 00 0c 00 00 00 | }A..%....A.......A.......A...... |
| bd20 | 95 42 0c 00 0c 00 00 00 a2 42 0c 00 0c 00 00 00 af 42 0c 00 13 00 00 00 bc 42 0c 00 30 00 00 00 | .B.......B.......B.......B..0... |
| bd40 | d0 42 0c 00 31 00 00 00 01 43 0c 00 07 00 00 00 33 43 0c 00 07 00 00 00 3b 43 0c 00 70 00 00 00 | .B..1....C......3C......;C..p... |
| bd60 | 43 43 0c 00 0d 00 00 00 b4 43 0c 00 14 00 00 00 c2 43 0c 00 1d 00 00 00 d7 43 0c 00 49 00 00 00 | CC.......C.......C.......C..I... |
| bd80 | f5 43 0c 00 19 00 00 00 3f 44 0c 00 0a 00 00 00 59 44 0c 00 24 00 00 00 64 44 0c 00 1a 00 00 00 | .C......?D......YD..$...dD...... |
| bda0 | 89 44 0c 00 9d 00 00 00 a4 44 0c 00 27 00 00 00 42 45 0c 00 0b 00 00 00 6a 45 0c 00 10 00 00 00 | .D.......D..'...BE......jE...... |
| bdc0 | 76 45 0c 00 10 00 00 00 87 45 0c 00 70 00 00 00 98 45 0c 00 57 00 00 00 09 46 0c 00 42 00 00 00 | vE.......E..p....E..W....F..B... |
| bde0 | 61 46 0c 00 32 00 00 00 a4 46 0c 00 37 00 00 00 d7 46 0c 00 5a 00 00 00 0f 47 0c 00 a3 00 00 00 | aF..2....F..7....F..Z....G...... |
| be00 | 6a 47 0c 00 74 00 00 00 0e 48 0c 00 35 01 00 00 83 48 0c 00 73 00 00 00 b9 49 0c 00 16 01 00 00 | jG..t....H..5....H..s....I...... |
| be20 | 2d 4a 0c 00 7e 00 00 00 44 4b 0c 00 49 00 00 00 c3 4b 0c 00 2f 02 00 00 0d 4c 0c 00 6f 00 00 00 | -J..~...DK..I....K../....L..o... |
| be40 | 3d 4e 0c 00 39 01 00 00 ad 4e 0c 00 dd 00 00 00 e7 4f 0c 00 20 00 00 00 c5 50 0c 00 30 00 00 00 | =N..9....N.......O.......P..0... |
| be60 | e6 50 0c 00 14 00 00 00 17 51 0c 00 2c 00 00 00 2c 51 0c 00 90 00 00 00 59 51 0c 00 52 00 00 00 | .P.......Q..,...,Q......YQ..R... |
| be80 | ea 51 0c 00 58 00 00 00 3d 52 0c 00 26 00 00 00 96 52 0c 00 58 00 00 00 bd 52 0c 00 e4 00 00 00 | .Q..X...=R..&....R..X....R...... |
| bea0 | 16 53 0c 00 68 00 00 00 fb 53 0c 00 5d 00 00 00 64 54 0c 00 6c 00 00 00 c2 54 0c 00 5a 00 00 00 | .S..h....S..]...dT..l....T..Z... |
| bec0 | 2f 55 0c 00 a4 00 00 00 8a 55 0c 00 eb 00 00 00 2f 56 0c 00 41 00 00 00 1b 57 0c 00 52 00 00 00 | /U.......U....../V..A....W..R... |
| bee0 | 5d 57 0c 00 34 00 00 00 b0 57 0c 00 6d 00 00 00 e5 57 0c 00 c7 00 00 00 53 58 0c 00 f1 00 00 00 | ]W..4....W..m....W......SX...... |
| bf00 | 1b 59 0c 00 08 00 00 00 0d 5a 0c 00 35 00 00 00 16 5a 0c 00 32 00 00 00 4c 5a 0c 00 4c 00 00 00 | .Y.......Z..5....Z..2...LZ..L... |
| bf20 | 7f 5a 0c 00 30 00 00 00 cc 5a 0c 00 38 00 00 00 fd 5a 0c 00 36 00 00 00 36 5b 0c 00 19 00 00 00 | .Z..0....Z..8....Z..6...6[...... |
| bf40 | 6d 5b 0c 00 3a 00 00 00 87 5b 0c 00 37 00 00 00 c2 5b 0c 00 7b 01 00 00 fa 5b 0c 00 14 00 00 00 | m[..:....[..7....[..{....[...... |
| bf60 | 76 5d 0c 00 16 00 00 00 8b 5d 0c 00 36 00 00 00 a2 5d 0c 00 47 00 00 00 d9 5d 0c 00 55 00 00 00 | v].......]..6....]..G....]..U... |
| bf80 | 21 5e 0c 00 35 00 00 00 77 5e 0c 00 29 00 00 00 ad 5e 0c 00 23 00 00 00 d7 5e 0c 00 24 00 00 00 | !^..5...w^..)....^..#....^..$... |
| bfa0 | fb 5e 0c 00 af 00 00 00 20 5f 0c 00 6c 00 00 00 d0 5f 0c 00 29 00 00 00 3d 60 0c 00 a7 00 00 00 | .^......._..l...._..)...=`...... |
| bfc0 | 67 60 0c 00 ee 00 00 00 0f 61 0c 00 47 00 00 00 fe 61 0c 00 47 00 00 00 46 62 0c 00 3a 00 00 00 | g`.......a..G....a..G...Fb..:... |
| bfe0 | 8e 62 0c 00 4b 00 00 00 c9 62 0c 00 4d 00 00 00 15 63 0c 00 5a 01 00 00 63 63 0c 00 9f 01 00 00 | .b..K....b..M....c..Z...cc...... |
| c000 | be 64 0c 00 b5 00 00 00 5e 66 0c 00 1d 00 00 00 14 67 0c 00 51 00 00 00 32 67 0c 00 31 00 00 00 | .d......^f.......g..Q...2g..1... |
| c020 | 84 67 0c 00 32 00 00 00 b6 67 0c 00 1a 00 00 00 e9 67 0c 00 4c 00 00 00 04 68 0c 00 80 00 00 00 | .g..2....g.......g..L....h...... |
| c040 | 51 68 0c 00 25 00 00 00 d2 68 0c 00 26 00 00 00 f8 68 0c 00 26 00 00 00 1f 69 0c 00 40 00 00 00 | Qh..%....h..&....h..&....i..@... |
| c060 | 46 69 0c 00 17 00 00 00 87 69 0c 00 09 00 00 00 9f 69 0c 00 2d 00 00 00 a9 69 0c 00 3c 00 00 00 | Fi.......i.......i..-....i..<... |
| c080 | d7 69 0c 00 42 00 00 00 14 6a 0c 00 b1 00 00 00 57 6a 0c 00 54 00 00 00 09 6b 0c 00 55 00 00 00 | .i..B....j......Wj..T....k..U... |
| c0a0 | 5e 6b 0c 00 2c 00 00 00 b4 6b 0c 00 47 00 00 00 e1 6b 0c 00 bc 00 00 00 29 6c 0c 00 bf 00 00 00 | ^k..,....k..G....k......)l...... |
| c0c0 | e6 6c 0c 00 1e 00 00 00 a6 6d 0c 00 37 00 00 00 c5 6d 0c 00 33 00 00 00 fd 6d 0c 00 9a 00 00 00 | .l.......m..7....m..3....m...... |
| c0e0 | 31 6e 0c 00 01 00 00 00 cc 6e 0c 00 2c 00 00 00 ce 6e 0c 00 11 00 00 00 fb 6e 0c 00 06 00 00 00 | 1n.......n..,....n.......n...... |
| c100 | 0d 6f 0c 00 06 00 00 00 14 6f 0c 00 06 00 00 00 1b 6f 0c 00 06 00 00 00 22 6f 0c 00 06 00 00 00 | .o.......o.......o......"o...... |
| c120 | 29 6f 0c 00 06 00 00 00 30 6f 0c 00 06 00 00 00 37 6f 0c 00 06 00 00 00 3e 6f 0c 00 06 00 00 00 | )o......0o......7o......>o...... |
| c140 | 45 6f 0c 00 06 00 00 00 4c 6f 0c 00 0e 00 00 00 53 6f 0c 00 01 00 00 00 62 6f 0c 00 11 00 00 00 | Eo......Lo......So......bo...... |
| c160 | 64 6f 0c 00 0a 00 00 00 76 6f 0c 00 1a 00 00 00 81 6f 0c 00 b7 00 00 00 9c 6f 0c 00 b7 00 00 00 | do......vo.......o.......o...... |
| c180 | 54 70 0c 00 bc 00 00 00 0c 71 0c 00 85 00 00 00 c9 71 0c 00 02 00 00 00 4f 72 0c 00 0e 00 00 00 | Tp.......q.......q......Or...... |
| c1a0 | 52 72 0c 00 2d 00 00 00 61 72 0c 00 10 00 00 00 8f 72 0c 00 0f 00 00 00 a0 72 0c 00 11 00 00 00 | Rr..-...ar.......r.......r...... |
| c1c0 | b0 72 0c 00 13 00 00 00 c2 72 0c 00 06 00 00 00 d6 72 0c 00 06 00 00 00 dd 72 0c 00 06 00 00 00 | .r.......r.......r.......r...... |
| c1e0 | e4 72 0c 00 06 00 00 00 eb 72 0c 00 02 00 00 00 f2 72 0c 00 03 00 00 00 f5 72 0c 00 02 00 00 00 | .r.......r.......r.......r...... |
| c200 | f9 72 0c 00 08 00 00 00 fc 72 0c 00 02 00 00 00 05 73 0c 00 02 00 00 00 08 73 0c 00 02 00 00 00 | .r.......r.......s.......s...... |
| c220 | 0b 73 0c 00 02 00 00 00 0e 73 0c 00 02 00 00 00 11 73 0c 00 32 00 00 00 14 73 0c 00 02 00 00 00 | .s.......s.......s..2....s...... |
| c240 | 47 73 0c 00 02 00 00 00 4a 73 0c 00 35 00 00 00 4d 73 0c 00 17 00 00 00 83 73 0c 00 01 00 00 00 | Gs......Js..5...Ms.......s...... |
| c260 | 9b 73 0c 00 1a 00 00 00 9d 73 0c 00 85 00 00 00 b8 73 0c 00 80 00 00 00 3e 74 0c 00 02 00 00 00 | .s.......s.......s......>t...... |
| c280 | bf 74 0c 00 02 00 00 00 c2 74 0c 00 02 00 00 00 c5 74 0c 00 02 00 00 00 c8 74 0c 00 11 00 00 00 | .t.......t.......t.......t...... |
| c2a0 | cb 74 0c 00 11 00 00 00 dd 74 0c 00 03 00 00 00 ef 74 0c 00 02 00 00 00 f3 74 0c 00 02 00 00 00 | .t.......t.......t.......t...... |
| c2c0 | f6 74 0c 00 63 00 00 00 f9 74 0c 00 0f 00 00 00 5d 75 0c 00 01 00 00 00 6d 75 0c 00 20 00 00 00 | .t..c....t......]u......mu...... |
| c2e0 | 6f 75 0c 00 87 00 00 00 90 75 0c 00 02 00 00 00 18 76 0c 00 02 00 00 00 1b 76 0c 00 02 00 00 00 | ou.......u.......v.......v...... |
| c300 | 1e 76 0c 00 02 00 00 00 21 76 0c 00 01 00 00 00 24 76 0c 00 1a 00 00 00 26 76 0c 00 a5 00 00 00 | .v......!v......$v......&v...... |
| c320 | 41 76 0c 00 a2 00 00 00 e7 76 0c 00 a2 00 00 00 8a 77 0c 00 e6 00 00 00 2d 78 0c 00 11 00 00 00 | Av.......v.......w......-x...... |
| c340 | 14 79 0c 00 02 00 00 00 26 79 0c 00 02 00 00 00 29 79 0c 00 02 00 00 00 2c 79 0c 00 01 00 00 00 | .y......&y......)y......,y...... |
| c360 | 2f 79 0c 00 11 00 00 00 31 79 0c 00 c3 00 00 00 43 79 0c 00 c7 00 00 00 07 7a 0c 00 0f 00 00 00 | /y......1y......Cy.......z...... |
| c380 | cf 7a 0c 00 11 00 00 00 df 7a 0c 00 02 00 00 00 f1 7a 0c 00 01 00 00 00 f4 7a 0c 00 6b 00 00 00 | .z.......z.......z.......z..k... |
| c3a0 | f6 7a 0c 00 69 00 00 00 62 7b 0c 00 6e 00 00 00 cc 7b 0c 00 2d 00 00 00 3b 7c 0c 00 02 00 00 00 | .z..i...b{..n....{..-...;|...... |
| c3c0 | 69 7c 0c 00 3b 00 00 00 6c 7c 0c 00 02 00 00 00 a8 7c 0c 00 02 00 00 00 ab 7c 0c 00 0a 00 00 00 | i|..;...l|.......|.......|...... |
| c3e0 | ae 7c 0c 00 6b 02 00 00 b9 7c 0c 00 01 00 00 00 25 7f 0c 00 02 00 00 00 27 7f 0c 00 01 00 00 00 | .|..k....|......%.......'....... |
| c400 | 2a 7f 0c 00 6c 00 00 00 2c 7f 0c 00 01 00 00 00 99 7f 0c 00 76 00 00 00 9b 7f 0c 00 7b 00 00 00 | *...l...,...........v.......{... |
| c420 | 12 80 0c 00 61 01 00 00 8e 80 0c 00 8b 00 00 00 f0 81 0c 00 10 01 00 00 7c 82 0c 00 8a 01 00 00 | ....a...................|....... |
| c440 | 8d 83 0c 00 36 00 00 00 18 85 0c 00 22 01 00 00 4f 85 0c 00 26 02 00 00 72 86 0c 00 ec 00 00 00 | ....6......."...O...&...r....... |
| c460 | 99 88 0c 00 8b 00 00 00 86 89 0c 00 8c 01 00 00 12 8a 0c 00 bd 00 00 00 9f 8b 0c 00 08 02 00 00 | ................................ |
| c480 | 5d 8c 0c 00 53 01 00 00 66 8e 0c 00 dc 00 00 00 ba 8f 0c 00 4f 00 00 00 97 90 0c 00 aa 03 00 00 | ]...S...f...........O........... |
| c4a0 | e7 90 0c 00 aa 03 00 00 92 94 0c 00 8b 01 00 00 3d 98 0c 00 80 01 00 00 c9 99 0c 00 b5 01 00 00 | ................=............... |
| c4c0 | 4a 9b 0c 00 4c 02 00 00 00 9d 0c 00 3f 00 00 00 4d 9f 0c 00 61 00 00 00 8d 9f 0c 00 8f 05 00 00 | J...L.......?...M...a........... |
| c4e0 | ef 9f 0c 00 32 02 00 00 7f a5 0c 00 0b 01 00 00 b2 a7 0c 00 3d 02 00 00 be a8 0c 00 7e 00 00 00 | ....2...............=.......~... |
| c500 | fc aa 0c 00 37 00 00 00 7b ab 0c 00 8f 01 00 00 b3 ab 0c 00 01 01 00 00 43 ad 0c 00 da 01 00 00 | ....7...{...............C....... |
| c520 | 45 ae 0c 00 3e 01 00 00 20 b0 0c 00 8e 02 00 00 5f b1 0c 00 a6 00 00 00 ee b3 0c 00 e3 01 00 00 | E...>..........._............... |
| c540 | 95 b4 0c 00 af 01 00 00 79 b6 0c 00 87 01 00 00 29 b8 0c 00 f6 01 00 00 b1 b9 0c 00 17 02 00 00 | ........y.......)............... |
| c560 | a8 bb 0c 00 d9 01 00 00 c0 bd 0c 00 8e 00 00 00 9a bf 0c 00 57 01 00 00 29 c0 0c 00 82 00 00 00 | ....................W...)....... |
| c580 | 81 c1 0c 00 fb 00 00 00 04 c2 0c 00 b4 01 00 00 00 c3 0c 00 d6 01 00 00 b5 c4 0c 00 59 01 00 00 | ............................Y... |
| c5a0 | 8c c6 0c 00 50 01 00 00 e6 c7 0c 00 be 01 00 00 37 c9 0c 00 68 01 00 00 f6 ca 0c 00 04 02 00 00 | ....P...........7...h........... |
| c5c0 | 5f cc 0c 00 89 00 00 00 64 ce 0c 00 84 00 00 00 ee ce 0c 00 f9 00 00 00 73 cf 0c 00 a4 00 00 00 | _.......d...............s....... |
| c5e0 | 6d d0 0c 00 b5 00 00 00 12 d1 0c 00 43 00 00 00 c8 d1 0c 00 5c 00 00 00 0c d2 0c 00 52 00 00 00 | m...........C.......\.......R... |
| c600 | 69 d2 0c 00 46 00 00 00 bc d2 0c 00 50 00 00 00 03 d3 0c 00 48 00 00 00 54 d3 0c 00 4c 00 00 00 | i...F.......P.......H...T...L... |
| c620 | 9d d3 0c 00 47 00 00 00 ea d3 0c 00 48 00 00 00 32 d4 0c 00 41 00 00 00 7b d4 0c 00 44 00 00 00 | ....G.......H...2...A...{...D... |
| c640 | bd d4 0c 00 61 00 00 00 02 d5 0c 00 61 00 00 00 64 d5 0c 00 62 00 00 00 c6 d5 0c 00 64 00 00 00 | ....a.......a...d...b.......d... |
| c660 | 29 d6 0c 00 5f 00 00 00 8e d6 0c 00 60 00 00 00 ee d6 0c 00 19 00 00 00 4f d7 0c 00 29 00 00 00 | )..._.......`...........O...)... |
| c680 | 69 d7 0c 00 12 00 00 00 93 d7 0c 00 3d 00 00 00 a6 d7 0c 00 13 00 00 00 e4 d7 0c 00 3f 00 00 00 | i...........=...............?... |
| c6a0 | f8 d7 0c 00 13 00 00 00 38 d8 0c 00 3f 00 00 00 4c d8 0c 00 15 00 00 00 8c d8 0c 00 43 00 00 00 | ........8...?...L...........C... |
| c6c0 | a2 d8 0c 00 15 00 00 00 e6 d8 0c 00 43 00 00 00 fc d8 0c 00 31 01 00 00 40 d9 0c 00 11 00 00 00 | ............C.......1...@....... |
| c6e0 | 72 da 0c 00 80 01 00 00 84 da 0c 00 40 00 00 00 05 dc 0c 00 24 00 00 00 46 dc 0c 00 41 01 00 00 | r...........@.......$...F...A... |
| c700 | 6b dc 0c 00 19 00 00 00 ad dd 0c 00 37 00 00 00 c7 dd 0c 00 2a 00 00 00 ff dd 0c 00 39 00 00 00 | k...........7.......*.......9... |
| c720 | 2a de 0c 00 29 00 00 00 64 de 0c 00 07 00 00 00 8e de 0c 00 4d 00 00 00 96 de 0c 00 18 00 00 00 | *...)...d...........M........... |
| c740 | e4 de 0c 00 81 00 00 00 fd de 0c 00 b6 00 00 00 7f df 0c 00 40 00 00 00 36 e0 0c 00 2f 00 00 00 | ....................@...6.../... |
| c760 | 77 e0 0c 00 32 00 00 00 a7 e0 0c 00 35 00 00 00 da e0 0c 00 1d 00 00 00 10 e1 0c 00 27 00 00 00 | w...2.......5...............'... |
| c780 | 2e e1 0c 00 1f 00 00 00 56 e1 0c 00 36 00 00 00 76 e1 0c 00 39 00 00 00 ad e1 0c 00 18 01 00 00 | ........V...6...v...9........... |
| c7a0 | e7 e1 0c 00 1e 00 00 00 00 e3 0c 00 2d 00 00 00 1f e3 0c 00 5c 00 00 00 4d e3 0c 00 37 01 00 00 | ............-.......\...M...7... |
| c7c0 | aa e3 0c 00 cb 01 00 00 e2 e4 0c 00 ab 01 00 00 ae e6 0c 00 59 01 00 00 5a e8 0c 00 3a 01 00 00 | ....................Y...Z...:... |
| c7e0 | b4 e9 0c 00 2d 00 00 00 ef ea 0c 00 3a 00 00 00 1d eb 0c 00 6d 00 00 00 58 eb 0c 00 77 00 00 00 | ....-.......:.......m...X...w... |
| c800 | c6 eb 0c 00 8b 00 00 00 3e ec 0c 00 cc 01 00 00 ca ec 0c 00 ba 00 00 00 97 ee 0c 00 16 00 00 00 | ........>....................... |
| c820 | 52 ef 0c 00 33 00 00 00 69 ef 0c 00 28 00 00 00 9d ef 0c 00 77 01 00 00 c6 ef 0c 00 51 00 00 00 | R...3...i...(.......w.......Q... |
| c840 | 3e f1 0c 00 74 00 00 00 90 f1 0c 00 26 00 00 00 05 f2 0c 00 85 00 00 00 2c f2 0c 00 8b 00 00 00 | >...t.......&...........,....... |
| c860 | b2 f2 0c 00 8b 00 00 00 3e f3 0c 00 cf 00 00 00 ca f3 0c 00 34 01 00 00 9a f4 0c 00 2f 00 00 00 | ........>...........4......./... |
| c880 | cf f5 0c 00 72 00 00 00 ff f5 0c 00 65 00 00 00 72 f6 0c 00 31 00 00 00 d8 f6 0c 00 01 01 00 00 | ....r.......e...r...1........... |
| c8a0 | 0a f7 0c 00 33 00 00 00 0c f8 0c 00 3c 00 00 00 40 f8 0c 00 42 00 00 00 7d f8 0c 00 93 01 00 00 | ....3.......<...@...B...}....... |
| c8c0 | c0 f8 0c 00 93 01 00 00 54 fa 0c 00 e4 01 00 00 e8 fb 0c 00 63 00 00 00 cd fd 0c 00 50 00 00 00 | ........T...........c.......P... |
| c8e0 | 31 fe 0c 00 d4 00 00 00 82 fe 0c 00 ed 00 00 00 57 ff 0c 00 78 00 00 00 45 00 0d 00 90 00 00 00 | 1...............W...x...E....... |
| c900 | be 00 0d 00 c0 01 00 00 4f 01 0d 00 a2 00 00 00 10 03 0d 00 88 00 00 00 b3 03 0d 00 4e 00 00 00 | ........O...................N... |
| c920 | 3c 04 0d 00 44 00 00 00 8b 04 0d 00 58 00 00 00 d0 04 0d 00 08 01 00 00 29 05 0d 00 65 00 00 00 | <...D.......X...........)...e... |
| c940 | 32 06 0d 00 7e 00 00 00 98 06 0d 00 48 01 00 00 17 07 0d 00 35 01 00 00 60 08 0d 00 90 00 00 00 | 2...~.......H.......5...`....... |
| c960 | 96 09 0d 00 a3 00 00 00 27 0a 0d 00 02 01 00 00 cb 0a 0d 00 3f 00 00 00 ce 0b 0d 00 42 00 00 00 | ........'...........?.......B... |
| c980 | 0e 0c 0d 00 24 00 00 00 51 0c 0d 00 22 01 00 00 76 0c 0d 00 1c 00 00 00 99 0d 0d 00 2c 00 00 00 | ....$...Q..."...v...........,... |
| c9a0 | b6 0d 0d 00 43 00 00 00 e3 0d 0d 00 c8 00 00 00 27 0e 0d 00 b8 00 00 00 f0 0e 0d 00 b1 01 00 00 | ....C...........'............... |
| c9c0 | a9 0f 0d 00 4f 00 00 00 5b 11 0d 00 37 00 00 00 ab 11 0d 00 26 00 00 00 e3 11 0d 00 0a 02 00 00 | ....O...[...7.......&........... |
| c9e0 | 0a 12 0d 00 62 00 00 00 15 14 0d 00 41 00 00 00 78 14 0d 00 3d 00 00 00 ba 14 0d 00 5e 00 00 00 | ....b.......A...x...=.......^... |
| ca00 | f8 14 0d 00 35 00 00 00 57 15 0d 00 77 00 00 00 8d 15 0d 00 04 00 00 00 05 16 0d 00 1c 00 00 00 | ....5...W...w................... |
| ca20 | 0a 16 0d 00 03 00 00 00 27 16 0d 00 03 00 00 00 2b 16 0d 00 5c 00 00 00 2f 16 0d 00 a7 01 00 00 | ........'.......+...\.../....... |
| ca40 | 8c 16 0d 00 0c 00 00 00 34 18 0d 00 a8 00 00 00 41 18 0d 00 70 00 00 00 ea 18 0d 00 3c 00 00 00 | ........4.......A...p.......<... |
| ca60 | 5b 19 0d 00 41 00 00 00 98 19 0d 00 33 00 00 00 da 19 0d 00 12 00 00 00 0e 1a 0d 00 0c 00 00 00 | [...A.......3................... |
| ca80 | 21 1a 0d 00 79 00 00 00 2e 1a 0d 00 45 00 00 00 a8 1a 0d 00 07 00 00 00 ee 1a 0d 00 10 00 00 00 | !...y.......E................... |
| caa0 | f6 1a 0d 00 22 00 00 00 07 1b 0d 00 68 00 00 00 2a 1b 0d 00 41 00 00 00 93 1b 0d 00 40 00 00 00 | ....".......h...*...A.......@... |
| cac0 | d5 1b 0d 00 23 00 00 00 16 1c 0d 00 c5 00 00 00 3a 1c 0d 00 9f 00 00 00 00 1d 0d 00 3c 00 00 00 | ....#...........:...........<... |
| cae0 | a0 1d 0d 00 23 00 00 00 dd 1d 0d 00 48 00 00 00 01 1e 0d 00 26 00 00 00 4a 1e 0d 00 35 00 00 00 | ....#.......H.......&...J...5... |
| cb00 | 71 1e 0d 00 4e 00 00 00 a7 1e 0d 00 86 00 00 00 f6 1e 0d 00 68 00 00 00 7d 1f 0d 00 63 00 00 00 | q...N...............h...}...c... |
| cb20 | e6 1f 0d 00 2f 00 00 00 4a 20 0d 00 48 00 00 00 7a 20 0d 00 43 00 00 00 c3 20 0d 00 a3 00 00 00 | ..../...J...H...z...C........... |
| cb40 | 07 21 0d 00 b8 00 00 00 ab 21 0d 00 81 00 00 00 64 22 0d 00 46 00 00 00 e6 22 0d 00 1c 00 00 00 | .!.......!......d"..F...."...... |
| cb60 | 2d 23 0d 00 2a 00 00 00 4a 23 0d 00 7d 00 00 00 75 23 0d 00 60 00 00 00 f3 23 0d 00 ee 00 00 00 | -#..*...J#..}...u#..`....#...... |
| cb80 | 54 24 0d 00 09 01 00 00 43 25 0d 00 02 01 00 00 4d 26 0d 00 68 00 00 00 50 27 0d 00 07 00 00 00 | T$......C%......M&..h...P'...... |
| cba0 | b9 27 0d 00 12 00 00 00 c1 27 0d 00 10 00 00 00 d4 27 0d 00 0e 00 00 00 e5 27 0d 00 4c 01 00 00 | .'.......'.......'.......'..L... |
| cbc0 | f4 27 0d 00 42 00 00 00 41 29 0d 00 0d 00 00 00 84 29 0d 00 24 00 00 00 92 29 0d 00 c6 00 00 00 | .'..B...A).......)..$....)...... |
| cbe0 | b7 29 0d 00 ba 00 00 00 7e 2a 0d 00 52 00 00 00 39 2b 0d 00 17 00 00 00 8c 2b 0d 00 1a 00 00 00 | .)......~*..R...9+.......+...... |
| cc00 | a4 2b 0d 00 10 00 00 00 bf 2b 0d 00 c7 00 00 00 d0 2b 0d 00 13 00 00 00 98 2c 0d 00 1a 00 00 00 | .+.......+.......+.......,...... |
| cc20 | ac 2c 0d 00 3c 00 00 00 c7 2c 0d 00 7f 00 00 00 04 2d 0d 00 1a 00 00 00 84 2d 0d 00 14 00 00 00 | .,..<....,.......-.......-...... |
| cc40 | 9f 2d 0d 00 7e 00 00 00 b4 2d 0d 00 74 00 00 00 33 2e 0d 00 7c 01 00 00 a8 2e 0d 00 26 01 00 00 | .-..~....-..t...3...|.......&... |
| cc60 | 25 30 0d 00 40 01 00 00 4c 31 0d 00 74 00 00 00 8d 32 0d 00 61 01 00 00 02 33 0d 00 63 01 00 00 | %0..@...L1..t....2..a....3..c... |
| cc80 | 64 34 0d 00 2e 00 00 00 c8 35 0d 00 05 00 00 00 f7 35 0d 00 09 00 00 00 fd 35 0d 00 07 00 00 00 | d4.......5.......5.......5...... |
| cca0 | 07 36 0d 00 66 00 00 00 0f 36 0d 00 4f 00 00 00 76 36 0d 00 9a 00 00 00 c6 36 0d 00 8e 00 00 00 | .6..f....6..O...v6.......6...... |
| ccc0 | 61 37 0d 00 b1 00 00 00 f0 37 0d 00 0e 00 00 00 a2 38 0d 00 67 00 00 00 b1 38 0d 00 ae 00 00 00 | a7.......7.......8..g....8...... |
| cce0 | 19 39 0d 00 89 00 00 00 c8 39 0d 00 28 00 00 00 52 3a 0d 00 3a 00 00 00 7b 3a 0d 00 ac 00 00 00 | .9.......9..(...R:..:...{:...... |
| cd00 | b6 3a 0d 00 ab 00 00 00 63 3b 0d 00 74 00 00 00 0f 3c 0d 00 97 00 00 00 84 3c 0d 00 3a 00 00 00 | .:......c;..t....<.......<..:... |
| cd20 | 1c 3d 0d 00 40 00 00 00 57 3d 0d 00 27 00 00 00 98 3d 0d 00 e3 00 00 00 c0 3d 0d 00 29 00 00 00 | .=..@...W=..'....=.......=..)... |
| cd40 | a4 3e 0d 00 21 00 00 00 ce 3e 0d 00 08 01 00 00 f0 3e 0d 00 61 01 00 00 f9 3f 0d 00 2c 00 00 00 | .>..!....>.......>..a....?..,... |
| cd60 | 5b 41 0d 00 2e 00 00 00 88 41 0d 00 80 00 00 00 b7 41 0d 00 7b 00 00 00 38 42 0d 00 30 00 00 00 | [A.......A.......A..{...8B..0... |
| cd80 | b4 42 0d 00 c8 00 00 00 e5 42 0d 00 c8 00 00 00 ae 43 0d 00 9c 00 00 00 77 44 0d 00 40 00 00 00 | .B.......B.......C......wD..@... |
| cda0 | 14 45 0d 00 b7 00 00 00 55 45 0d 00 b7 00 00 00 0d 46 0d 00 5a 00 00 00 c5 46 0d 00 c4 00 00 00 | .E......UE.......F..Z....F...... |
| cdc0 | 20 47 0d 00 c4 00 00 00 e5 47 0d 00 6e 00 00 00 aa 48 0d 00 a5 00 00 00 19 49 0d 00 83 00 00 00 | .G.......G..n....H.......I...... |
| cde0 | bf 49 0d 00 c3 00 00 00 43 4a 0d 00 61 01 00 00 07 4b 0d 00 68 01 00 00 69 4c 0d 00 18 00 00 00 | .I......CJ..a....K..h...iL...... |
| ce00 | d2 4d 0d 00 54 00 00 00 eb 4d 0d 00 89 00 00 00 40 4e 0d 00 8b 00 00 00 ca 4e 0d 00 6b 00 00 00 | .M..T....M......@N.......N..k... |
| ce20 | 56 4f 0d 00 3d 00 00 00 c2 4f 0d 00 91 00 00 00 00 50 0d 00 96 00 00 00 92 50 0d 00 81 00 00 00 | VO..=....O.......P.......P...... |
| ce40 | 29 51 0d 00 39 00 00 00 ab 51 0d 00 3e 01 00 00 e5 51 0d 00 58 00 00 00 24 53 0d 00 c2 00 00 00 | )Q..9....Q..>....Q..X...$S...... |
| ce60 | 7d 53 0d 00 ba 00 00 00 40 54 0d 00 6a 00 00 00 fb 54 0d 00 8c 02 00 00 66 55 0d 00 85 02 00 00 | }S......@T..j....T......fU...... |
| ce80 | f3 57 0d 00 cb 00 00 00 79 5a 0d 00 40 00 00 00 45 5b 0d 00 5f 00 00 00 86 5b 0d 00 9e 01 00 00 | .W......yZ..@...E[.._....[...... |
| cea0 | e6 5b 0d 00 9f 01 00 00 85 5d 0d 00 85 01 00 00 25 5f 0d 00 84 01 00 00 ab 60 0d 00 bb 00 00 00 | .[.......]......%_.......`...... |
| cec0 | 30 62 0d 00 56 00 00 00 ec 62 0d 00 39 00 00 00 43 63 0d 00 1d 00 00 00 7d 63 0d 00 4b 00 00 00 | 0b..V....b..9...Cc......}c..K... |
| cee0 | 9b 63 0d 00 0b 00 00 00 e7 63 0d 00 02 01 00 00 f3 63 0d 00 30 00 00 00 f6 64 0d 00 93 00 00 00 | .c.......c.......c..0....d...... |
| cf00 | 27 65 0d 00 5d 00 00 00 bb 65 0d 00 5d 00 00 00 19 66 0d 00 9a 00 00 00 77 66 0d 00 1a 00 00 00 | 'e..]....e..]....f......wf...... |
| cf20 | 12 67 0d 00 0d 00 00 00 2d 67 0d 00 a1 00 00 00 3b 67 0d 00 3b 00 00 00 dd 67 0d 00 15 00 00 00 | .g......-g......;g..;....g...... |
| cf40 | 19 68 0d 00 97 00 00 00 2f 68 0d 00 97 00 00 00 c7 68 0d 00 34 00 00 00 5f 69 0d 00 2c 00 00 00 | .h....../h.......h..4..._i..,... |
| cf60 | 94 69 0d 00 2f 00 00 00 c1 69 0d 00 c8 00 00 00 f1 69 0d 00 43 01 00 00 ba 6a 0d 00 18 00 00 00 | .i../....i.......i..C....j...... |
| cf80 | fe 6b 0d 00 9c 00 00 00 17 6c 0d 00 3e 00 00 00 b4 6c 0d 00 ad 00 00 00 f3 6c 0d 00 aa 00 00 00 | .k.......l..>....l.......l...... |
| cfa0 | a1 6d 0d 00 44 00 00 00 4c 6e 0d 00 1d 00 00 00 91 6e 0d 00 23 00 00 00 af 6e 0d 00 19 00 00 00 | .m..D...Ln.......n..#....n...... |
| cfc0 | d3 6e 0d 00 12 00 00 00 ed 6e 0d 00 43 00 00 00 00 6f 0d 00 42 00 00 00 44 6f 0d 00 47 00 00 00 | .n.......n..C....o..B...Do..G... |
| cfe0 | 87 6f 0d 00 31 00 00 00 cf 6f 0d 00 0a 00 00 00 01 70 0d 00 08 00 00 00 0c 70 0d 00 28 01 00 00 | .o..1....o.......p.......p..(... |
| d000 | 15 70 0d 00 81 00 00 00 3e 71 0d 00 75 00 00 00 c0 71 0d 00 aa 00 00 00 36 72 0d 00 d5 00 00 00 | .p......>q..u....q......6r...... |
| d020 | e1 72 0d 00 a5 01 00 00 b7 73 0d 00 71 00 00 00 5d 75 0d 00 6c 00 00 00 cf 75 0d 00 78 00 00 00 | .r.......s..q...]u..l....u..x... |
| d040 | 3c 76 0d 00 99 00 00 00 b5 76 0d 00 1d 01 00 00 4f 77 0d 00 74 00 00 00 6d 78 0d 00 49 01 00 00 | <v.......v......Ow..t...mx..I... |
| d060 | e2 78 0d 00 18 01 00 00 2c 7a 0d 00 17 01 00 00 45 7b 0d 00 1e 01 00 00 5d 7c 0d 00 1a 01 00 00 | .x......,z......E{......]|...... |
| d080 | 7c 7d 0d 00 39 01 00 00 97 7e 0d 00 5f 00 00 00 d1 7f 0d 00 32 01 00 00 31 80 0d 00 82 00 00 00 | |}..9....~.._.......2...1....... |
| d0a0 | 64 81 0d 00 a2 00 00 00 e7 81 0d 00 93 00 00 00 8a 82 0d 00 af 00 00 00 1e 83 0d 00 7e 00 00 00 | d...........................~... |
| d0c0 | ce 83 0d 00 47 00 00 00 4d 84 0d 00 83 00 00 00 95 84 0d 00 6e 00 00 00 19 85 0d 00 91 00 00 00 | ....G...M...........n........... |
| d0e0 | 88 85 0d 00 59 00 00 00 1a 86 0d 00 96 00 00 00 74 86 0d 00 8e 00 00 00 0b 87 0d 00 c1 00 00 00 | ....Y...........t............... |
| d100 | 9a 87 0d 00 ca 00 00 00 5c 88 0d 00 59 01 00 00 27 89 0d 00 23 00 00 00 81 8a 0d 00 2f 00 00 00 | ........\...Y...'...#......./... |
| d120 | a5 8a 0d 00 43 00 00 00 d5 8a 0d 00 27 00 00 00 19 8b 0d 00 2d 00 00 00 41 8b 0d 00 3b 00 00 00 | ....C.......'.......-...A...;... |
| d140 | 6f 8b 0d 00 6e 00 00 00 ab 8b 0d 00 82 00 00 00 1a 8c 0d 00 68 00 00 00 9d 8c 0d 00 19 00 00 00 | o...n...............h........... |
| d160 | 06 8d 0d 00 19 00 00 00 20 8d 0d 00 19 00 00 00 3a 8d 0d 00 19 00 00 00 54 8d 0d 00 19 00 00 00 | ................:.......T....... |
| d180 | 6e 8d 0d 00 19 00 00 00 88 8d 0d 00 19 00 00 00 a2 8d 0d 00 19 00 00 00 bc 8d 0d 00 19 00 00 00 | n............................... |
| d1a0 | d6 8d 0d 00 19 00 00 00 f0 8d 0d 00 19 00 00 00 0a 8e 0d 00 19 00 00 00 24 8e 0d 00 7b 00 00 00 | ........................$...{... |
| d1c0 | 3e 8e 0d 00 c2 00 00 00 ba 8e 0d 00 41 00 00 00 7d 8f 0d 00 c0 00 00 00 bf 8f 0d 00 68 00 00 00 | >...........A...}...........h... |
| d1e0 | 80 90 0d 00 0e 00 00 00 e9 90 0d 00 16 00 00 00 f8 90 0d 00 1f 00 00 00 0f 91 0d 00 25 00 00 00 | ............................%... |
| d200 | 2f 91 0d 00 29 00 00 00 55 91 0d 00 24 00 00 00 7f 91 0d 00 e6 00 00 00 a4 91 0d 00 20 00 00 00 | /...)...U...$................... |
| d220 | 8b 92 0d 00 14 00 00 00 ac 92 0d 00 45 00 00 00 c1 92 0d 00 13 00 00 00 07 93 0d 00 13 00 00 00 | ............E................... |
| d240 | 1b 93 0d 00 17 00 00 00 2f 93 0d 00 17 00 00 00 47 93 0d 00 e7 00 00 00 5f 93 0d 00 3d 00 00 00 | ......../.......G......._...=... |
| d260 | 47 94 0d 00 12 00 00 00 85 94 0d 00 21 00 00 00 98 94 0d 00 14 00 00 00 ba 94 0d 00 13 00 00 00 | G...........!................... |
| d280 | cf 94 0d 00 03 00 00 00 e3 94 0d 00 1b 00 00 00 e7 94 0d 00 59 00 00 00 03 95 0d 00 03 00 00 00 | ....................Y........... |
| d2a0 | 5d 95 0d 00 14 00 00 00 61 95 0d 00 14 00 00 00 76 95 0d 00 1d 00 00 00 8b 95 0d 00 1a 00 00 00 | ].......a.......v............... |
| d2c0 | a9 95 0d 00 0b 00 00 00 c4 95 0d 00 18 00 00 00 d0 95 0d 00 19 00 00 00 e9 95 0d 00 44 00 00 00 | ............................D... |
| d2e0 | 03 96 0d 00 1a 00 00 00 48 96 0d 00 1f 00 00 00 63 96 0d 00 1c 00 00 00 83 96 0d 00 20 00 00 00 | ........H.......c............... |
| d300 | a0 96 0d 00 65 01 00 00 c1 96 0d 00 54 01 00 00 27 98 0d 00 c3 02 00 00 7c 99 0d 00 56 00 00 00 | ....e.......T...'.......|...V... |
| d320 | 40 9c 0d 00 e4 00 00 00 97 9c 0d 00 05 00 00 00 7c 9d 0d 00 67 00 00 00 82 9d 0d 00 81 01 00 00 | @...............|...g........... |
| d340 | ea 9d 0d 00 07 00 00 00 6c 9f 0d 00 89 00 00 00 74 9f 0d 00 13 00 00 00 fe 9f 0d 00 0f 00 00 00 | ........l.......t............... |
| d360 | 12 a0 0d 00 1e 00 00 00 22 a0 0d 00 21 00 00 00 41 a0 0d 00 11 00 00 00 63 a0 0d 00 21 00 00 00 | ........"...!...A.......c...!... |
| d380 | 75 a0 0d 00 4c 00 00 00 97 a0 0d 00 50 00 00 00 e4 a0 0d 00 69 00 00 00 35 a1 0d 00 53 00 00 00 | u...L.......P.......i...5...S... |
| d3a0 | 9f a1 0d 00 53 00 00 00 f3 a1 0d 00 55 00 00 00 47 a2 0d 00 55 00 00 00 9d a2 0d 00 17 00 00 00 | ....S.......U...G...U........... |
| d3c0 | f3 a2 0d 00 0e 00 00 00 0b a3 0d 00 0e 00 00 00 1a a3 0d 00 3f 00 00 00 29 a3 0d 00 36 00 00 00 | ....................?...)...6... |
| d3e0 | 69 a3 0d 00 0b 00 00 00 a0 a3 0d 00 d1 00 00 00 ac a3 0d 00 41 00 00 00 7e a4 0d 00 19 00 00 00 | i...................A...~....... |
| d400 | c0 a4 0d 00 87 00 00 00 da a4 0d 00 89 00 00 00 62 a5 0d 00 db 00 00 00 ec a5 0d 00 38 00 00 00 | ................b...........8... |
| d420 | c8 a6 0d 00 3c 00 00 00 01 a7 0d 00 55 00 00 00 3e a7 0d 00 78 00 00 00 94 a7 0d 00 75 00 00 00 | ....<.......U...>...x.......u... |
| d440 | 0d a8 0d 00 27 00 00 00 83 a8 0d 00 1c 00 00 00 ab a8 0d 00 7d 01 00 00 c8 a8 0d 00 11 00 00 00 | ....'...............}........... |
| d460 | 46 aa 0d 00 0c 00 00 00 58 aa 0d 00 2f 00 00 00 65 aa 0d 00 3f 00 00 00 95 aa 0d 00 63 00 00 00 | F.......X.../...e...?.......c... |
| d480 | d5 aa 0d 00 09 00 00 00 39 ab 0d 00 5d 00 00 00 43 ab 0d 00 58 00 00 00 a1 ab 0d 00 59 00 00 00 | ........9...]...C...X.......Y... |
| d4a0 | fa ab 0d 00 34 00 00 00 54 ac 0d 00 17 00 00 00 89 ac 0d 00 0c 00 00 00 a1 ac 0d 00 25 00 00 00 | ....4...T...................%... |
| d4c0 | ae ac 0d 00 13 00 00 00 d4 ac 0d 00 29 00 00 00 e8 ac 0d 00 83 00 00 00 12 ad 0d 00 6e 00 00 00 | ............)...............n... |
| d4e0 | 96 ad 0d 00 31 00 00 00 05 ae 0d 00 06 00 00 00 37 ae 0d 00 1d 00 00 00 3e ae 0d 00 0e 00 00 00 | ....1...........7.......>....... |
| d500 | 5c ae 0d 00 0c 00 00 00 6b ae 0d 00 3f 00 00 00 78 ae 0d 00 37 00 00 00 b8 ae 0d 00 07 00 00 00 | \.......k...?...x...7........... |
| d520 | f0 ae 0d 00 0b 00 00 00 f8 ae 0d 00 0e 00 00 00 04 af 0d 00 d0 00 00 00 13 af 0d 00 9c 00 00 00 | ................................ |
| d540 | e4 af 0d 00 51 00 00 00 81 b0 0d 00 9c 00 00 00 d3 b0 0d 00 ef 00 00 00 70 b1 0d 00 8d 01 00 00 | ....Q...................p....... |
| d560 | 60 b2 0d 00 37 01 00 00 ee b3 0d 00 38 01 00 00 26 b5 0d 00 ce 00 00 00 5f b6 0d 00 d9 00 00 00 | `...7.......8...&......._....... |
| d580 | 2e b7 0d 00 eb 00 00 00 08 b8 0d 00 3b 00 00 00 f4 b8 0d 00 63 00 00 00 30 b9 0d 00 78 00 00 00 | ............;.......c...0...x... |
| d5a0 | 94 b9 0d 00 9d 00 00 00 0d ba 0d 00 97 00 00 00 ab ba 0d 00 25 00 00 00 43 bb 0d 00 a1 00 00 00 | ....................%...C....... |
| d5c0 | 69 bb 0d 00 a3 00 00 00 0b bc 0d 00 3a 01 00 00 af bc 0d 00 16 00 00 00 ea bd 0d 00 1a 00 00 00 | i...........:................... |
| d5e0 | 01 be 0d 00 04 00 00 00 1c be 0d 00 05 00 00 00 21 be 0d 00 0b 01 00 00 27 be 0d 00 0a 00 00 00 | ................!.......'....... |
| d600 | 33 bf 0d 00 27 00 00 00 3e bf 0d 00 16 00 00 00 66 bf 0d 00 c8 00 00 00 7d bf 0d 00 1a 00 00 00 | 3...'...>.......f.......}....... |
| d620 | 46 c0 0d 00 2a 00 00 00 61 c0 0d 00 0c 00 00 00 8c c0 0d 00 30 00 00 00 99 c0 0d 00 2c 00 00 00 | F...*...a...........0.......,... |
| d640 | ca c0 0d 00 0b 01 00 00 f7 c0 0d 00 76 00 00 00 03 c2 0d 00 bc 00 00 00 7a c2 0d 00 91 00 00 00 | ............v...........z....... |
| d660 | 37 c3 0d 00 c4 00 00 00 c9 c3 0d 00 c7 00 00 00 8e c4 0d 00 3e 00 00 00 56 c5 0d 00 0c 00 00 00 | 7...................>...V....... |
| d680 | 95 c5 0d 00 46 00 00 00 a2 c5 0d 00 06 00 00 00 e9 c5 0d 00 14 00 00 00 f0 c5 0d 00 06 00 00 00 | ....F........................... |
| d6a0 | 05 c6 0d 00 c4 00 00 00 0c c6 0d 00 9f 00 00 00 d1 c6 0d 00 0e 00 00 00 71 c7 0d 00 2d 00 00 00 | ........................q...-... |
| d6c0 | 80 c7 0d 00 1b 00 00 00 ae c7 0d 00 0f 00 00 00 ca c7 0d 00 07 00 00 00 da c7 0d 00 16 00 00 00 | ................................ |
| d6e0 | e2 c7 0d 00 1d 00 00 00 f9 c7 0d 00 06 00 00 00 17 c8 0d 00 14 00 00 00 1e c8 0d 00 15 00 00 00 | ................................ |
| d700 | 33 c8 0d 00 14 00 00 00 49 c8 0d 00 1f 00 00 00 5e c8 0d 00 3d 00 00 00 7e c8 0d 00 0b 00 00 00 | 3.......I.......^...=...~....... |
| d720 | bc c8 0d 00 0d 00 00 00 c8 c8 0d 00 14 00 00 00 d6 c8 0d 00 12 00 00 00 eb c8 0d 00 14 00 00 00 | ................................ |
| d740 | fe c8 0d 00 6c 00 00 00 13 c9 0d 00 07 00 00 00 80 c9 0d 00 6a 00 00 00 88 c9 0d 00 98 00 00 00 | ....l...............j........... |
| d760 | f3 c9 0d 00 0c 00 00 00 8c ca 0d 00 96 00 00 00 99 ca 0d 00 3e 00 00 00 30 cb 0d 00 77 00 00 00 | ....................>...0...w... |
| d780 | 6f cb 0d 00 38 00 00 00 e7 cb 0d 00 08 00 00 00 20 cc 0d 00 20 00 00 00 29 cc 0d 00 40 00 00 00 | o...8...................)...@... |
| d7a0 | 4a cc 0d 00 1e 00 00 00 8b cc 0d 00 11 00 00 00 aa cc 0d 00 97 00 00 00 bc cc 0d 00 0a 00 00 00 | J............................... |
| d7c0 | 54 cd 0d 00 1b 00 00 00 5f cd 0d 00 58 00 00 00 7b cd 0d 00 0b 00 00 00 d4 cd 0d 00 0d 00 00 00 | T......._...X...{............... |
| d7e0 | e0 cd 0d 00 15 00 00 00 ee cd 0d 00 16 00 00 00 04 ce 0d 00 13 00 00 00 1b ce 0d 00 15 00 00 00 | ................................ |
| d800 | 2f ce 0d 00 2f 00 00 00 45 ce 0d 00 0b 01 00 00 75 ce 0d 00 af 00 00 00 81 cf 0d 00 16 00 00 00 | /.../...E.......u............... |
| d820 | 31 d0 0d 00 59 00 00 00 48 d0 0d 00 26 00 00 00 a2 d0 0d 00 20 00 00 00 c9 d0 0d 00 25 00 00 00 | 1...Y...H...&...............%... |
| d840 | ea d0 0d 00 a5 00 00 00 10 d1 0d 00 22 00 00 00 b6 d1 0d 00 7d 00 00 00 d9 d1 0d 00 9e 00 00 00 | ............".......}........... |
| d860 | 57 d2 0d 00 09 00 00 00 f6 d2 0d 00 94 00 00 00 00 d3 0d 00 0d 00 00 00 95 d3 0d 00 51 00 00 00 | W...........................Q... |
| d880 | a3 d3 0d 00 25 00 00 00 f5 d3 0d 00 37 00 00 00 1b d4 0d 00 c0 00 00 00 53 d4 0d 00 71 00 00 00 | ....%.......7...........S...q... |
| d8a0 | 14 d5 0d 00 24 00 00 00 86 d5 0d 00 52 00 00 00 ab d5 0d 00 4e 00 00 00 fe d5 0d 00 68 00 00 00 | ....$.......R.......N.......h... |
| d8c0 | 4d d6 0d 00 55 00 00 00 b6 d6 0d 00 22 00 00 00 0c d7 0d 00 22 00 00 00 2f d7 0d 00 4c 00 00 00 | M...U.......".......".../...L... |
| d8e0 | 52 d7 0d 00 57 00 00 00 9f d7 0d 00 75 00 00 00 f7 d7 0d 00 70 00 00 00 6d d8 0d 00 75 00 00 00 | R...W.......u.......p...m...u... |
| d900 | de d8 0d 00 a4 00 00 00 54 d9 0d 00 37 00 00 00 f9 d9 0d 00 fc 00 00 00 31 da 0d 00 bb 00 00 00 | ........T...7...........1....... |
| d920 | 2e db 0d 00 7a 00 00 00 ea db 0d 00 77 00 00 00 65 dc 0d 00 71 00 00 00 dd dc 0d 00 aa 00 00 00 | ....z.......w...e...q........... |
| d940 | 4f dd 0d 00 3a 00 00 00 fa dd 0d 00 2b 00 00 00 35 de 0d 00 48 00 00 00 61 de 0d 00 3a 00 00 00 | O...:.......+...5...H...a...:... |
| d960 | aa de 0d 00 60 00 00 00 e5 de 0d 00 62 00 00 00 46 df 0d 00 26 00 00 00 a9 df 0d 00 2b 00 00 00 | ....`.......b...F...&.......+... |
| d980 | d0 df 0d 00 43 00 00 00 fc df 0d 00 2b 00 00 00 40 e0 0d 00 5b 00 00 00 6c e0 0d 00 61 00 00 00 | ....C.......+...@...[...l...a... |
| d9a0 | c8 e0 0d 00 27 00 00 00 2a e1 0d 00 5b 00 00 00 52 e1 0d 00 2e 00 00 00 ae e1 0d 00 47 00 00 00 | ....'...*...[...R...........G... |
| d9c0 | dd e1 0d 00 9a 00 00 00 25 e2 0d 00 31 00 00 00 c0 e2 0d 00 31 00 00 00 f2 e2 0d 00 3e 00 00 00 | ........%...1.......1.......>... |
| d9e0 | 24 e3 0d 00 41 00 00 00 63 e3 0d 00 84 00 00 00 a5 e3 0d 00 5f 00 00 00 2a e4 0d 00 5f 00 00 00 | $...A...c..........._...*..._... |
| da00 | 8a e4 0d 00 3c 00 00 00 ea e4 0d 00 3c 00 00 00 27 e5 0d 00 39 00 00 00 64 e5 0d 00 89 00 00 00 | ....<.......<...'...9...d....... |
| da20 | 9e e5 0d 00 58 00 00 00 28 e6 0d 00 2c 00 00 00 81 e6 0d 00 2b 00 00 00 ae e6 0d 00 64 00 00 00 | ....X...(...,.......+.......d... |
| da40 | da e6 0d 00 65 00 00 00 3f e7 0d 00 2f 00 00 00 a5 e7 0d 00 4b 00 00 00 d5 e7 0d 00 4c 00 00 00 | ....e...?.../.......K.......L... |
| da60 | 21 e8 0d 00 5f 00 00 00 6e e8 0d 00 42 00 00 00 ce e8 0d 00 70 00 00 00 11 e9 0d 00 64 00 00 00 | !..._...n...B.......p.......d... |
| da80 | 82 e9 0d 00 2a 00 00 00 e7 e9 0d 00 3b 00 00 00 12 ea 0d 00 2b 00 00 00 4e ea 0d 00 34 00 00 00 | ....*.......;.......+...N...4... |
| daa0 | 7a ea 0d 00 42 00 00 00 af ea 0d 00 36 00 00 00 f2 ea 0d 00 99 00 00 00 29 eb 0d 00 3f 00 00 00 | z...B.......6...........)...?... |
| dac0 | c3 eb 0d 00 3f 00 00 00 03 ec 0d 00 50 00 00 00 43 ec 0d 00 2a 00 00 00 94 ec 0d 00 b2 00 00 00 | ....?.......P...C...*........... |
| dae0 | bf ec 0d 00 2d 00 00 00 72 ed 0d 00 5d 00 00 00 a0 ed 0d 00 49 00 00 00 fe ed 0d 00 49 00 00 00 | ....-...r...].......I.......I... |
| db00 | 48 ee 0d 00 36 00 00 00 92 ee 0d 00 3c 00 00 00 c9 ee 0d 00 3e 00 00 00 06 ef 0d 00 2c 00 00 00 | H...6.......<.......>.......,... |
| db20 | 45 ef 0d 00 1f 00 00 00 72 ef 0d 00 59 00 00 00 92 ef 0d 00 95 00 00 00 ec ef 0d 00 38 00 00 00 | E.......r...Y...............8... |
| db40 | 82 f0 0d 00 10 00 00 00 bb f0 0d 00 a6 00 00 00 cc f0 0d 00 92 00 00 00 73 f1 0d 00 43 00 00 00 | ........................s...C... |
| db60 | 06 f2 0d 00 31 00 00 00 4a f2 0d 00 51 00 00 00 7c f2 0d 00 17 00 00 00 ce f2 0d 00 11 00 00 00 | ....1...J...Q...|............... |
| db80 | e6 f2 0d 00 17 00 00 00 f8 f2 0d 00 25 00 00 00 10 f3 0d 00 18 00 00 00 36 f3 0d 00 17 00 00 00 | ............%...........6....... |
| dba0 | 4f f3 0d 00 1d 00 00 00 67 f3 0d 00 21 00 00 00 85 f3 0d 00 17 00 00 00 a7 f3 0d 00 17 00 00 00 | O.......g...!................... |
| dbc0 | bf f3 0d 00 b2 00 00 00 d7 f3 0d 00 42 00 00 00 8a f4 0d 00 12 00 00 00 cd f4 0d 00 b7 00 00 00 | ............B................... |
| dbe0 | e0 f4 0d 00 b8 00 00 00 98 f5 0d 00 44 01 00 00 51 f6 0d 00 3c 01 00 00 96 f7 0d 00 c4 01 00 00 | ............D...Q...<........... |
| dc00 | d3 f8 0d 00 09 00 00 00 98 fa 0d 00 0e 00 00 00 a2 fa 0d 00 16 00 00 00 b1 fa 0d 00 16 00 00 00 | ................................ |
| dc20 | c8 fa 0d 00 0d 00 00 00 df fa 0d 00 0e 00 00 00 ed fa 0d 00 07 00 00 00 fc fa 0d 00 0e 00 00 00 | ................................ |
| dc40 | 04 fb 0d 00 30 00 00 00 13 fb 0d 00 09 00 00 00 44 fb 0d 00 12 00 00 00 4e fb 0d 00 12 00 00 00 | ....0...........D.......N....... |
| dc60 | 61 fb 0d 00 11 00 00 00 74 fb 0d 00 49 00 00 00 86 fb 0d 00 49 00 00 00 d0 fb 0d 00 c9 00 00 00 | a.......t...I.......I........... |
| dc80 | 1a fc 0d 00 b3 00 00 00 e4 fc 0d 00 b4 00 00 00 98 fd 0d 00 36 00 00 00 4d fe 0d 00 39 00 00 00 | ....................6...M...9... |
| dca0 | 84 fe 0d 00 81 00 00 00 be fe 0d 00 82 00 00 00 40 ff 0d 00 92 00 00 00 c3 ff 0d 00 64 00 00 00 | ................@...........d... |
| dcc0 | 56 00 0e 00 8a 00 00 00 bb 00 0e 00 27 00 00 00 46 01 0e 00 15 00 00 00 6e 01 0e 00 5f 00 00 00 | V...........'...F.......n..._... |
| dce0 | 84 01 0e 00 44 00 00 00 e4 01 0e 00 69 00 00 00 29 02 0e 00 92 00 00 00 93 02 0e 00 75 00 00 00 | ....D.......i...)...........u... |
| dd00 | 26 03 0e 00 66 00 00 00 9c 03 0e 00 75 00 00 00 03 04 0e 00 4e 00 00 00 79 04 0e 00 8c 00 00 00 | &...f.......u.......N...y....... |
| dd20 | c8 04 0e 00 56 00 00 00 55 05 0e 00 76 00 00 00 ac 05 0e 00 73 00 00 00 23 06 0e 00 c3 00 00 00 | ....V...U...v.......s...#....... |
| dd40 | 97 06 0e 00 c0 00 00 00 5b 07 0e 00 6b 00 00 00 1c 08 0e 00 30 00 00 00 88 08 0e 00 7b 00 00 00 | ........[...k.......0.......{... |
| dd60 | b9 08 0e 00 45 00 00 00 35 09 0e 00 7f 00 00 00 7b 09 0e 00 6d 00 00 00 fb 09 0e 00 3d 00 00 00 | ....E...5.......{...m.......=... |
| dd80 | 69 0a 0e 00 d9 00 00 00 a7 0a 0e 00 a0 00 00 00 81 0b 0e 00 68 00 00 00 22 0c 0e 00 9c 00 00 00 | i...................h..."....... |
| dda0 | 8b 0c 0e 00 54 00 00 00 28 0d 0e 00 2b 00 00 00 7d 0d 0e 00 21 00 00 00 a9 0d 0e 00 5a 00 00 00 | ....T...(...+...}...!.......Z... |
| ddc0 | cb 0d 0e 00 70 00 00 00 26 0e 0e 00 4a 00 00 00 97 0e 0e 00 16 00 00 00 e2 0e 0e 00 19 00 00 00 | ....p...&...J................... |
| dde0 | f9 0e 0e 00 25 00 00 00 13 0f 0e 00 62 00 00 00 39 0f 0e 00 08 00 00 00 9c 0f 0e 00 2d 00 00 00 | ....%.......b...9...........-... |
| de00 | a5 0f 0e 00 14 00 00 00 d3 0f 0e 00 14 00 00 00 e8 0f 0e 00 14 00 00 00 fd 0f 0e 00 14 00 00 00 | ................................ |
| de20 | 12 10 0e 00 0d 00 00 00 27 10 0e 00 39 00 00 00 35 10 0e 00 43 00 00 00 6f 10 0e 00 0b 00 00 00 | ........'...9...5...C...o....... |
| de40 | b3 10 0e 00 da 00 00 00 bf 10 0e 00 db 00 00 00 9a 11 0e 00 e0 00 00 00 76 12 0e 00 f3 00 00 00 | ........................v....... |
| de60 | 57 13 0e 00 dc 00 00 00 4b 14 0e 00 dd 00 00 00 28 15 0e 00 dc 00 00 00 06 16 0e 00 dd 00 00 00 | W.......K.......(............... |
| de80 | e3 16 0e 00 43 00 00 00 c1 17 0e 00 3d 00 00 00 05 18 0e 00 00 01 00 00 43 18 0e 00 00 01 00 00 | ....C.......=...........C....... |
| dea0 | 44 19 0e 00 b3 00 00 00 45 1a 0e 00 0f 00 00 00 f9 1a 0e 00 0b 00 00 00 09 1b 0e 00 61 00 00 00 | D.......E...................a... |
| dec0 | 15 1b 0e 00 0a 00 00 00 77 1b 0e 00 0b 00 00 00 82 1b 0e 00 18 00 00 00 8e 1b 0e 00 10 00 00 00 | ........w....................... |
| dee0 | a7 1b 0e 00 3a 00 00 00 b8 1b 0e 00 12 00 00 00 f3 1b 0e 00 3c 00 00 00 06 1c 0e 00 84 00 00 00 | ....:...............<........... |
| df00 | 43 1c 0e 00 14 00 00 00 c8 1c 0e 00 4c 00 00 00 dd 1c 0e 00 05 00 00 00 2a 1d 0e 00 15 00 00 00 | C...........L...........*....... |
| df20 | 30 1d 0e 00 0d 00 00 00 46 1d 0e 00 b6 00 00 00 54 1d 0e 00 04 00 00 00 0b 1e 0e 00 bf 00 00 00 | 0.......F.......T............... |
| df40 | 10 1e 0e 00 52 00 00 00 d0 1e 0e 00 06 00 00 00 23 1f 0e 00 0e 00 00 00 2a 1f 0e 00 10 00 00 00 | ....R...........#.......*....... |
| df60 | 39 1f 0e 00 1c 00 00 00 4a 1f 0e 00 17 00 00 00 67 1f 0e 00 2b 00 00 00 7f 1f 0e 00 05 00 00 00 | 9.......J.......g...+........... |
| df80 | ab 1f 0e 00 2f 00 00 00 b1 1f 0e 00 34 00 00 00 e1 1f 0e 00 01 01 00 00 16 20 0e 00 05 00 00 00 | ..../.......4................... |
| dfa0 | 18 21 0e 00 67 00 00 00 1e 21 0e 00 07 00 00 00 86 21 0e 00 0a 00 00 00 8e 21 0e 00 15 00 00 00 | .!..g....!.......!.......!...... |
| dfc0 | 99 21 0e 00 19 00 00 00 af 21 0e 00 a4 00 00 00 c9 21 0e 00 ac 00 00 00 6e 22 0e 00 b2 00 00 00 | .!.......!.......!......n"...... |
| dfe0 | 1b 23 0e 00 32 00 00 00 ce 23 0e 00 ab 00 00 00 01 24 0e 00 0f 00 00 00 ad 24 0e 00 31 00 00 00 | .#..2....#.......$.......$..1... |
| e000 | bd 24 0e 00 1d 00 00 00 ef 24 0e 00 14 00 00 00 0d 25 0e 00 32 00 00 00 22 25 0e 00 15 00 00 00 | .$.......$.......%..2..."%...... |
| e020 | 55 25 0e 00 0a 00 00 00 6b 25 0e 00 0c 00 00 00 76 25 0e 00 11 00 00 00 83 25 0e 00 17 00 00 00 | U%......k%......v%.......%...... |
| e040 | 95 25 0e 00 13 00 00 00 ad 25 0e 00 19 00 00 00 c1 25 0e 00 64 00 00 00 db 25 0e 00 74 00 00 00 | .%.......%.......%..d....%..t... |
| e060 | 40 26 0e 00 98 00 00 00 b5 26 0e 00 24 00 00 00 4e 27 0e 00 25 00 00 00 73 27 0e 00 0d 00 00 00 | @&.......&..$...N'..%...s'...... |
| e080 | 99 27 0e 00 42 00 00 00 a7 27 0e 00 16 00 00 00 ea 27 0e 00 13 00 00 00 01 28 0e 00 55 00 00 00 | .'..B....'.......'.......(..U... |
| e0a0 | 15 28 0e 00 95 00 00 00 6b 28 0e 00 35 00 00 00 01 29 0e 00 8e 00 00 00 37 29 0e 00 8e 00 00 00 | .(......k(..5....)......7)...... |
| e0c0 | c6 29 0e 00 68 00 00 00 55 2a 0e 00 77 00 00 00 be 2a 0e 00 81 00 00 00 36 2b 0e 00 21 00 00 00 | .)..h...U*..w....*......6+..!... |
| e0e0 | b8 2b 0e 00 22 00 00 00 da 2b 0e 00 2e 00 00 00 fd 2b 0e 00 31 00 00 00 2c 2c 0e 00 7e 00 00 00 | .+.."....+.......+..1...,,..~... |
| e100 | 5e 2c 0e 00 83 00 00 00 dd 2c 0e 00 4b 00 00 00 61 2d 0e 00 38 00 00 00 ad 2d 0e 00 39 00 00 00 | ^,.......,..K...a-..8....-..9... |
| e120 | e6 2d 0e 00 95 00 00 00 20 2e 0e 00 70 00 00 00 b6 2e 0e 00 85 00 00 00 27 2f 0e 00 51 00 00 00 | .-..........p...........'/..Q... |
| e140 | ad 2f 0e 00 9a 00 00 00 ff 2f 0e 00 9e 00 00 00 9a 30 0e 00 32 00 00 00 39 31 0e 00 69 00 00 00 | ./......./.......0..2...91..i... |
| e160 | 6c 31 0e 00 7b 00 00 00 d6 31 0e 00 2a 00 00 00 52 32 0e 00 62 00 00 00 7d 32 0e 00 4b 01 00 00 | l1..{....1..*...R2..b...}2..K... |
| e180 | e0 32 0e 00 a6 00 00 00 2c 34 0e 00 89 00 00 00 d3 34 0e 00 af 00 00 00 5d 35 0e 00 88 00 00 00 | .2......,4.......4......]5...... |
| e1a0 | 0d 36 0e 00 31 00 00 00 96 36 0e 00 2d 00 00 00 c8 36 0e 00 7a 00 00 00 f6 36 0e 00 92 00 00 00 | .6..1....6..-....6..z....6...... |
| e1c0 | 71 37 0e 00 b3 00 00 00 04 38 0e 00 6d 00 00 00 b8 38 0e 00 6b 00 00 00 26 39 0e 00 1f 00 00 00 | q7.......8..m....8..k...&9...... |
| e1e0 | 92 39 0e 00 0e 00 00 00 b2 39 0e 00 77 00 00 00 c1 39 0e 00 4b 00 00 00 39 3a 0e 00 33 00 00 00 | .9.......9..w....9..K...9:..3... |
| e200 | 85 3a 0e 00 39 00 00 00 b9 3a 0e 00 0b 00 00 00 f3 3a 0e 00 6d 00 00 00 ff 3a 0e 00 1a 00 00 00 | .:..9....:.......:..m....:...... |
| e220 | 6d 3b 0e 00 20 00 00 00 88 3b 0e 00 25 00 00 00 a9 3b 0e 00 4d 00 00 00 cf 3b 0e 00 4e 00 00 00 | m;.......;..%....;..M....;..N... |
| e240 | 1d 3c 0e 00 0b 00 00 00 6c 3c 0e 00 f6 00 00 00 78 3c 0e 00 2e 00 00 00 6f 3d 0e 00 13 00 00 00 | .<......l<......x<......o=...... |
| e260 | 9e 3d 0e 00 0f 00 00 00 b2 3d 0e 00 12 00 00 00 c2 3d 0e 00 71 01 00 00 d5 3d 0e 00 fe 00 00 00 | .=.......=.......=..q....=...... |
| e280 | 47 3f 0e 00 4e 00 00 00 46 40 0e 00 c9 00 00 00 95 40 0e 00 13 00 00 00 5f 41 0e 00 19 00 00 00 | G?..N...F@.......@......_A...... |
| e2a0 | 73 41 0e 00 7c 00 00 00 8d 41 0e 00 38 00 00 00 0a 42 0e 00 3b 00 00 00 43 42 0e 00 46 00 00 00 | sA..|....A..8....B..;...CB..F... |
| e2c0 | 7f 42 0e 00 2f 00 00 00 c6 42 0e 00 19 00 00 00 f6 42 0e 00 12 00 00 00 10 43 0e 00 14 00 00 00 | .B../....B.......B.......C...... |
| e2e0 | 23 43 0e 00 22 00 00 00 38 43 0e 00 84 00 00 00 5b 43 0e 00 26 00 00 00 e0 43 0e 00 24 00 00 00 | #C.."...8C......[C..&....C..$... |
| e300 | 07 44 0e 00 1b 00 00 00 2c 44 0e 00 1d 00 00 00 48 44 0e 00 58 00 00 00 66 44 0e 00 5b 00 00 00 | .D......,D......HD..X...fD..[... |
| e320 | bf 44 0e 00 43 00 00 00 1b 45 0e 00 56 00 00 00 5f 45 0e 00 43 00 00 00 b6 45 0e 00 3f 00 00 00 | .D..C....E..V..._E..C....E..?... |
| e340 | fa 45 0e 00 75 00 00 00 3a 46 0e 00 1e 00 00 00 b0 46 0e 00 25 00 00 00 cf 46 0e 00 25 00 00 00 | .E..u...:F.......F..%....F..%... |
| e360 | f5 46 0e 00 15 00 00 00 1b 47 0e 00 86 00 00 00 31 47 0e 00 2e 00 00 00 b8 47 0e 00 95 00 00 00 | .F.......G......1G.......G...... |
| e380 | e7 47 0e 00 43 00 00 00 7d 48 0e 00 2b 00 00 00 c1 48 0e 00 2b 00 00 00 ed 48 0e 00 37 01 00 00 | .G..C...}H..+....H..+....H..7... |
| e3a0 | 19 49 0e 00 38 00 00 00 51 4a 0e 00 3b 00 00 00 8a 4a 0e 00 18 00 00 00 c6 4a 0e 00 16 00 00 00 | .I..8...QJ..;....J.......J...... |
| e3c0 | df 4a 0e 00 7a 00 00 00 f6 4a 0e 00 12 00 00 00 71 4b 0e 00 67 00 00 00 84 4b 0e 00 3a 00 00 00 | .J..z....J......qK..g....K..:... |
| e3e0 | ec 4b 0e 00 3a 00 00 00 27 4c 0e 00 0c 00 00 00 62 4c 0e 00 18 00 00 00 6f 4c 0e 00 39 00 00 00 | .K..:...'L......bL......oL..9... |
| e400 | 88 4c 0e 00 47 00 00 00 c2 4c 0e 00 42 00 00 00 0a 4d 0e 00 4c 00 00 00 4d 4d 0e 00 3f 00 00 00 | .L..G....L..B....M..L...MM..?... |
| e420 | 9a 4d 0e 00 3b 00 00 00 da 4d 0e 00 41 00 00 00 16 4e 0e 00 11 01 00 00 58 4e 0e 00 12 01 00 00 | .M..;....M..A....N......XN...... |
| e440 | 6a 4f 0e 00 3d 00 00 00 7d 50 0e 00 31 00 00 00 bb 50 0e 00 26 01 00 00 ed 50 0e 00 e2 00 00 00 | jO..=...}P..1....P..&....P...... |
| e460 | 14 52 0e 00 9f 00 00 00 f7 52 0e 00 9f 00 00 00 97 53 0e 00 3a 00 00 00 37 54 0e 00 f8 00 00 00 | .R.......R.......S..:...7T...... |
| e480 | 72 54 0e 00 48 00 00 00 6b 55 0e 00 e2 00 00 00 b4 55 0e 00 88 00 00 00 97 56 0e 00 31 00 00 00 | rT..H...kU.......U.......V..1... |
| e4a0 | 20 57 0e 00 06 00 00 00 52 57 0e 00 0d 00 00 00 59 57 0e 00 0b 00 00 00 67 57 0e 00 2e 00 00 00 | .W......RW......YW......gW...... |
| e4c0 | 73 57 0e 00 67 00 00 00 a2 57 0e 00 3e 00 00 00 0a 58 0e 00 13 00 00 00 49 58 0e 00 ab 00 00 00 | sW..g....W..>....X......IX...... |
| e4e0 | 5d 58 0e 00 b5 00 00 00 09 59 0e 00 b5 00 00 00 bf 59 0e 00 90 00 00 00 75 5a 0e 00 30 00 00 00 | ]X.......Y.......Y......uZ..0... |
| e500 | 06 5b 0e 00 47 00 00 00 37 5b 0e 00 22 00 00 00 7f 5b 0e 00 22 00 00 00 a2 5b 0e 00 24 00 00 00 | .[..G...7[.."....[.."....[..$... |
| e520 | c5 5b 0e 00 09 00 00 00 ea 5b 0e 00 09 00 00 00 f4 5b 0e 00 92 00 00 00 fe 5b 0e 00 38 00 00 00 | .[.......[.......[.......[..8... |
| e540 | 91 5c 0e 00 f2 00 00 00 ca 5c 0e 00 05 00 00 00 bd 5d 0e 00 0f 00 00 00 c3 5d 0e 00 88 00 00 00 | .\.......\.......].......]...... |
| e560 | d3 5d 0e 00 bd 00 00 00 5c 5e 0e 00 c2 00 00 00 1a 5f 0e 00 7e 00 00 00 dd 5f 0e 00 0b 00 00 00 | .]......\^......._..~...._...... |
| e580 | 5c 60 0e 00 0e 00 00 00 68 60 0e 00 80 00 00 00 77 60 0e 00 12 00 00 00 f8 60 0e 00 6a 00 00 00 | \`......h`......w`.......`..j... |
| e5a0 | 0b 61 0e 00 2f 00 00 00 76 61 0e 00 0a 00 00 00 a6 61 0e 00 f4 00 00 00 b1 61 0e 00 10 00 00 00 | .a../...va.......a.......a...... |
| e5c0 | a6 62 0e 00 f7 00 00 00 b7 62 0e 00 d2 01 00 00 af 63 0e 00 ad 01 00 00 82 65 0e 00 dd 00 00 00 | .b.......b.......c.......e...... |
| e5e0 | 30 67 0e 00 91 01 00 00 0e 68 0e 00 7f 00 00 00 a0 69 0e 00 af 00 00 00 20 6a 0e 00 2a 03 00 00 | 0g.......h.......i.......j..*... |
| e600 | d0 6a 0e 00 6b 00 00 00 fb 6d 0e 00 a3 00 00 00 67 6e 0e 00 9a 00 00 00 0b 6f 0e 00 50 00 00 00 | .j..k....m......gn.......o..P... |
| e620 | a6 6f 0e 00 81 00 00 00 f7 6f 0e 00 2c 00 00 00 79 70 0e 00 51 00 00 00 a6 70 0e 00 7a 00 00 00 | .o.......o..,...yp..Q....p..z... |
| e640 | f8 70 0e 00 2b 00 00 00 73 71 0e 00 31 00 00 00 9f 71 0e 00 25 00 00 00 d1 71 0e 00 09 00 00 00 | .p..+...sq..1....q..%....q...... |
| e660 | f7 71 0e 00 34 00 00 00 01 72 0e 00 23 00 00 00 36 72 0e 00 23 00 00 00 5a 72 0e 00 25 00 00 00 | .q..4....r..#...6r..#...Zr..%... |
| e680 | 7e 72 0e 00 11 00 00 00 a4 72 0e 00 12 00 00 00 b6 72 0e 00 12 00 00 00 c9 72 0e 00 1e 00 00 00 | ~r.......r.......r.......r...... |
| e6a0 | dc 72 0e 00 23 00 00 00 fb 72 0e 00 39 00 00 00 1f 73 0e 00 24 00 00 00 59 73 0e 00 2c 00 00 00 | .r..#....r..9....s..$...Ys..,... |
| e6c0 | 7e 73 0e 00 2d 00 00 00 ab 73 0e 00 1c 00 00 00 d9 73 0e 00 1d 00 00 00 f6 73 0e 00 1e 00 00 00 | ~s..-....s.......s.......s...... |
| e6e0 | 14 74 0e 00 0c 00 00 00 33 74 0e 00 28 00 00 00 40 74 0e 00 3a 00 00 00 69 74 0e 00 30 00 00 00 | .t......3t..(...@t..:...it..0... |
| e700 | a4 74 0e 00 27 00 00 00 d5 74 0e 00 38 00 00 00 fd 74 0e 00 1d 00 00 00 36 75 0e 00 13 00 00 00 | .t..'....t..8....t......6u...... |
| e720 | 54 75 0e 00 0b 00 00 00 68 75 0e 00 28 00 00 00 74 75 0e 00 30 00 00 00 9d 75 0e 00 4c 00 00 00 | Tu......hu..(...tu..0....u..L... |
| e740 | ce 75 0e 00 74 00 00 00 1b 76 0e 00 11 00 00 00 90 76 0e 00 55 00 00 00 a2 76 0e 00 30 00 00 00 | .u..t....v.......v..U....v..0... |
| e760 | f8 76 0e 00 0f 00 00 00 29 77 0e 00 0b 00 00 00 39 77 0e 00 28 00 00 00 45 77 0e 00 35 00 00 00 | .v......)w......9w..(...Ew..5... |
| e780 | 6e 77 0e 00 0a 00 00 00 a4 77 0e 00 56 00 00 00 af 77 0e 00 1f 00 00 00 06 78 0e 00 18 00 00 00 | nw.......w..V....w.......x...... |
| e7a0 | 26 78 0e 00 2d 00 00 00 3f 78 0e 00 23 00 00 00 6d 78 0e 00 3f 00 00 00 91 78 0e 00 4d 00 00 00 | &x..-...?x..#...mx..?....x..M... |
| e7c0 | d1 78 0e 00 20 00 00 00 1f 79 0e 00 6d 00 00 00 40 79 0e 00 71 00 00 00 ae 79 0e 00 33 00 00 00 | .x.......y..m...@y..q....y..3... |
| e7e0 | 20 7a 0e 00 61 00 00 00 54 7a 0e 00 64 00 00 00 b6 7a 0e 00 63 00 00 00 1b 7b 0e 00 7d 00 00 00 | .z..a...Tz..d....z..c....{..}... |
| e800 | 7f 7b 0e 00 6d 00 00 00 fd 7b 0e 00 64 00 00 00 6b 7c 0e 00 31 00 00 00 d0 7c 0e 00 66 00 00 00 | .{..m....{..d...k|..1....|..f... |
| e820 | 02 7d 0e 00 34 00 00 00 69 7d 0e 00 1b 01 00 00 9e 7d 0e 00 3a 00 00 00 ba 7e 0e 00 4a 00 00 00 | .}..4...i}.......}..:....~..J... |
| e840 | f5 7e 0e 00 38 00 00 00 40 7f 0e 00 40 01 00 00 79 7f 0e 00 3a 00 00 00 ba 80 0e 00 4f 00 00 00 | .~..8...@...@...y...:.......O... |
| e860 | f5 80 0e 00 2e 00 00 00 45 81 0e 00 86 00 00 00 74 81 0e 00 bb 01 00 00 fb 81 0e 00 06 01 00 00 | ........E.......t............... |
| e880 | b7 83 0e 00 80 00 00 00 be 84 0e 00 bf 00 00 00 3f 85 0e 00 49 00 00 00 ff 85 0e 00 25 00 00 00 | ................?...I.......%... |
| e8a0 | 49 86 0e 00 4b 00 00 00 6f 86 0e 00 79 00 00 00 bb 86 0e 00 d6 00 00 00 35 87 0e 00 22 00 00 00 | I...K...o...y...........5..."... |
| e8c0 | 0c 88 0e 00 64 00 00 00 2f 88 0e 00 16 00 00 00 94 88 0e 00 14 00 00 00 ab 88 0e 00 79 00 00 00 | ....d.../...................y... |
| e8e0 | c0 88 0e 00 42 00 00 00 3a 89 0e 00 1c 00 00 00 7d 89 0e 00 1d 00 00 00 9a 89 0e 00 33 00 00 00 | ....B...:.......}...........3... |
| e900 | b8 89 0e 00 a7 00 00 00 ec 89 0e 00 c1 00 00 00 94 8a 0e 00 32 00 00 00 56 8b 0e 00 05 00 00 00 | ....................2...V....... |
| e920 | 89 8b 0e 00 10 00 00 00 8f 8b 0e 00 5e 00 00 00 a0 8b 0e 00 08 00 00 00 ff 8b 0e 00 dc 00 00 00 | ............^................... |
| e940 | 08 8c 0e 00 10 00 00 00 e5 8c 0e 00 5d 00 00 00 f6 8c 0e 00 0d 00 00 00 54 8d 0e 00 21 00 00 00 | ............]...........T...!... |
| e960 | 62 8d 0e 00 21 00 00 00 84 8d 0e 00 d4 00 00 00 a6 8d 0e 00 14 00 00 00 7b 8e 0e 00 38 00 00 00 | b...!...................{...8... |
| e980 | 90 8e 0e 00 a3 00 00 00 c9 8e 0e 00 a7 00 00 00 6d 8f 0e 00 23 00 00 00 15 90 0e 00 91 00 00 00 | ................m...#........... |
| e9a0 | 39 90 0e 00 59 00 00 00 cb 90 0e 00 a6 01 00 00 25 91 0e 00 ca 00 00 00 cc 92 0e 00 75 01 00 00 | 9...Y...........%...........u... |
| e9c0 | 97 93 0e 00 70 01 00 00 0d 95 0e 00 63 01 00 00 7e 96 0e 00 07 00 00 00 e2 97 0e 00 15 00 00 00 | ....p.......c...~............... |
| e9e0 | ea 97 0e 00 27 00 00 00 00 98 0e 00 26 00 00 00 28 98 0e 00 12 00 00 00 4f 98 0e 00 0f 00 00 00 | ....'.......&...(.......O....... |
| ea00 | 62 98 0e 00 16 00 00 00 72 98 0e 00 2f 00 00 00 89 98 0e 00 2f 00 00 00 b9 98 0e 00 77 00 00 00 | b.......r.../......./.......w... |
| ea20 | e9 98 0e 00 17 00 00 00 61 99 0e 00 92 00 00 00 79 99 0e 00 10 00 00 00 0c 9a 0e 00 51 00 00 00 | ........a.......y...........Q... |
| ea40 | 1d 9a 0e 00 08 00 00 00 6f 9a 0e 00 6c 00 00 00 78 9a 0e 00 bf 00 00 00 e5 9a 0e 00 58 00 00 00 | ........o...l...x...........X... |
| ea60 | a5 9b 0e 00 e0 00 00 00 fe 9b 0e 00 3d 00 00 00 df 9c 0e 00 3b 00 00 00 1d 9d 0e 00 3c 00 00 00 | ............=.......;.......<... |
| ea80 | 59 9d 0e 00 3e 00 00 00 96 9d 0e 00 3c 00 00 00 d5 9d 0e 00 3d 00 00 00 12 9e 0e 00 15 00 00 00 | Y...>.......<.......=........... |
| eaa0 | 50 9e 0e 00 34 00 00 00 66 9e 0e 00 36 00 00 00 9b 9e 0e 00 33 00 00 00 d2 9e 0e 00 a3 00 00 00 | P...4...f...6.......3........... |
| eac0 | 06 9f 0e 00 08 00 00 00 aa 9f 0e 00 1b 00 00 00 b3 9f 0e 00 09 00 00 00 cf 9f 0e 00 c5 00 00 00 | ................................ |
| eae0 | d9 9f 0e 00 2e 00 00 00 9f a0 0e 00 0f 00 00 00 ce a0 0e 00 0f 00 00 00 de a0 0e 00 31 00 00 00 | ............................1... |
| eb00 | ee a0 0e 00 2a 00 00 00 20 a1 0e 00 19 00 00 00 4b a1 0e 00 0b 00 00 00 65 a1 0e 00 40 00 00 00 | ....*...........K.......e...@... |
| eb20 | 71 a1 0e 00 28 00 00 00 b2 a1 0e 00 1c 00 00 00 db a1 0e 00 1a 00 00 00 f8 a1 0e 00 8e 00 00 00 | q...(........................... |
| eb40 | 13 a2 0e 00 08 00 00 00 a2 a2 0e 00 c1 00 00 00 ab a2 0e 00 9a 00 00 00 6d a3 0e 00 dc 00 00 00 | ........................m....... |
| eb60 | 08 a4 0e 00 a5 01 00 00 e5 a4 0e 00 03 00 00 00 8b a6 0e 00 98 00 00 00 8f a6 0e 00 46 01 00 00 | ............................F... |
| eb80 | 28 a7 0e 00 0a 00 00 00 6f a8 0e 00 0a 00 00 00 7a a8 0e 00 39 00 00 00 85 a8 0e 00 0d 00 00 00 | (.......o.......z...9........... |
| eba0 | bf a8 0e 00 08 00 00 00 cd a8 0e 00 0f 00 00 00 d6 a8 0e 00 2d 00 00 00 e6 a8 0e 00 e5 00 00 00 | ....................-........... |
| ebc0 | 14 a9 0e 00 ea 00 00 00 fa a9 0e 00 0a 00 00 00 e5 aa 0e 00 57 01 00 00 f0 aa 0e 00 31 01 00 00 | ....................W.......1... |
| ebe0 | 48 ac 0e 00 0a 00 00 00 7a ad 0e 00 69 01 00 00 85 ad 0e 00 26 00 00 00 ef ae 0e 00 05 00 00 00 | H.......z...i.......&........... |
| ec00 | 16 af 0e 00 71 00 00 00 1c af 0e 00 5c 00 00 00 8e af 0e 00 90 00 00 00 eb af 0e 00 33 00 00 00 | ....q.......\...............3... |
| ec20 | 7c b0 0e 00 33 00 00 00 b0 b0 0e 00 51 00 00 00 e4 b0 0e 00 95 00 00 00 36 b1 0e 00 09 00 00 00 | |...3.......Q...........6....... |
| ec40 | cc b1 0e 00 c1 00 00 00 d6 b1 0e 00 53 00 00 00 98 b2 0e 00 08 00 00 00 ec b2 0e 00 15 00 00 00 | ............S................... |
| ec60 | f5 b2 0e 00 15 00 00 00 0b b3 0e 00 16 00 00 00 21 b3 0e 00 23 00 00 00 38 b3 0e 00 14 00 00 00 | ................!...#...8....... |
| ec80 | 5c b3 0e 00 13 00 00 00 71 b3 0e 00 0d 00 00 00 85 b3 0e 00 0e 00 00 00 93 b3 0e 00 b0 00 00 00 | \.......q....................... |
| eca0 | a2 b3 0e 00 b0 00 00 00 53 b4 0e 00 e9 00 00 00 04 b5 0e 00 0f 00 00 00 ee b5 0e 00 4f 01 00 00 | ........S...................O... |
| ecc0 | fe b5 0e 00 20 01 00 00 4e b7 0e 00 23 01 00 00 6f b8 0e 00 4d 00 00 00 93 b9 0e 00 95 00 00 00 | ........N...#...o...M........... |
| ece0 | e1 b9 0e 00 89 00 00 00 77 ba 0e 00 22 00 00 00 01 bb 0e 00 0f 00 00 00 24 bb 0e 00 0f 00 00 00 | ........w..."...........$....... |
| ed00 | 34 bb 0e 00 28 00 00 00 44 bb 0e 00 78 01 00 00 6d bb 0e 00 60 00 00 00 e6 bc 0e 00 1d 01 00 00 | 4...(...D...x...m...`........... |
| ed20 | 47 bd 0e 00 0b 00 00 00 65 be 0e 00 53 00 00 00 71 be 0e 00 cd 00 00 00 c5 be 0e 00 ca 00 00 00 | G.......e...S...q............... |
| ed40 | 93 bf 0e 00 dd 00 00 00 5e c0 0e 00 f4 00 00 00 3c c1 0e 00 60 00 00 00 31 c2 0e 00 98 00 00 00 | ........^.......<...`...1....... |
| ed60 | 92 c2 0e 00 98 00 00 00 2b c3 0e 00 00 01 00 00 c4 c3 0e 00 30 00 00 00 c5 c4 0e 00 aa 00 00 00 | ........+...........0........... |
| ed80 | f6 c4 0e 00 05 00 00 00 a1 c5 0e 00 0e 00 00 00 a7 c5 0e 00 2a 02 00 00 b6 c5 0e 00 0f 00 00 00 | ....................*........... |
| eda0 | e1 c7 0e 00 0b 00 00 00 f1 c7 0e 00 1f 00 00 00 fd c7 0e 00 33 00 00 00 1d c8 0e 00 73 00 00 00 | ....................3.......s... |
| edc0 | 51 c8 0e 00 6e 00 00 00 c5 c8 0e 00 87 00 00 00 34 c9 0e 00 2e 00 00 00 bc c9 0e 00 29 00 00 00 | Q...n...........4...........)... |
| ede0 | eb c9 0e 00 b1 00 00 00 15 ca 0e 00 17 00 00 00 c7 ca 0e 00 a7 00 00 00 df ca 0e 00 21 00 00 00 | ............................!... |
| ee00 | 87 cb 0e 00 a5 00 00 00 a9 cb 0e 00 90 00 00 00 4f cc 0e 00 26 00 00 00 e0 cc 0e 00 1a 00 00 00 | ................O...&........... |
| ee20 | 07 cd 0e 00 44 00 00 00 22 cd 0e 00 48 00 00 00 67 cd 0e 00 2a 00 00 00 b0 cd 0e 00 6e 00 00 00 | ....D..."...H...g...*.......n... |
| ee40 | db cd 0e 00 90 00 00 00 4a ce 0e 00 cf 00 00 00 db ce 0e 00 0f 00 00 00 ab cf 0e 00 0c 00 00 00 | ........J....................... |
| ee60 | bb cf 0e 00 69 01 00 00 c8 cf 0e 00 93 00 00 00 32 d1 0e 00 0f 00 00 00 c6 d1 0e 00 f1 00 00 00 | ....i...........2............... |
| ee80 | d6 d1 0e 00 10 00 00 00 c8 d2 0e 00 3e 00 00 00 d9 d2 0e 00 81 00 00 00 18 d3 0e 00 8b 00 00 00 | ............>................... |
| eea0 | 9a d3 0e 00 bd 00 00 00 26 d4 0e 00 30 01 00 00 e4 d4 0e 00 96 00 00 00 15 d6 0e 00 8a 00 00 00 | ........&...0................... |
| eec0 | ac d6 0e 00 69 01 00 00 37 d7 0e 00 0c 00 00 00 a1 d8 0e 00 5a 00 00 00 ae d8 0e 00 3b 01 00 00 | ....i...7...........Z.......;... |
| eee0 | 09 d9 0e 00 3c 01 00 00 45 da 0e 00 db 00 00 00 82 db 0e 00 52 00 00 00 5e dc 0e 00 2f 00 00 00 | ....<...E...........R...^.../... |
| ef00 | b1 dc 0e 00 ac 00 00 00 e1 dc 0e 00 09 00 00 00 8e dd 0e 00 eb 00 00 00 98 dd 0e 00 d8 00 00 00 | ................................ |
| ef20 | 84 de 0e 00 5c 00 00 00 5d df 0e 00 63 00 00 00 ba df 0e 00 22 01 00 00 1e e0 0e 00 4a 01 00 00 | ....\...]...c.......".......J... |
| ef40 | 41 e1 0e 00 af 00 00 00 8c e2 0e 00 30 00 00 00 3c e3 0e 00 4b 00 00 00 6d e3 0e 00 66 00 00 00 | A...........0...<...K...m...f... |
| ef60 | b9 e3 0e 00 52 00 00 00 20 e4 0e 00 49 00 00 00 73 e4 0e 00 1b 01 00 00 bd e4 0e 00 bb 00 00 00 | ....R.......I...s............... |
| ef80 | d9 e5 0e 00 60 00 00 00 95 e6 0e 00 62 00 00 00 f6 e6 0e 00 52 01 00 00 59 e7 0e 00 43 00 00 00 | ....`.......b.......R...Y...C... |
| efa0 | ac e8 0e 00 f3 00 00 00 f0 e8 0e 00 bd 00 00 00 e4 e9 0e 00 bc 00 00 00 a2 ea 0e 00 da 00 00 00 | ................................ |
| efc0 | 5f eb 0e 00 77 00 00 00 3a ec 0e 00 e7 00 00 00 b2 ec 0e 00 af 00 00 00 9a ed 0e 00 e8 00 00 00 | _...w...:....................... |
| efe0 | 4a ee 0e 00 e3 00 00 00 33 ef 0e 00 76 00 00 00 17 f0 0e 00 3c 01 00 00 8e f0 0e 00 3a 01 00 00 | J.......3...v.......<.......:... |
| f000 | cb f1 0e 00 42 01 00 00 06 f3 0e 00 97 00 00 00 49 f4 0e 00 a2 00 00 00 e1 f4 0e 00 a6 00 00 00 | ....B...........I............... |
| f020 | 84 f5 0e 00 7b 00 00 00 2b f6 0e 00 d3 00 00 00 a7 f6 0e 00 62 00 00 00 7b f7 0e 00 0e 00 00 00 | ....{...+...........b...{....... |
| f040 | de f7 0e 00 cc 00 00 00 ed f7 0e 00 32 00 00 00 ba f8 0e 00 11 00 00 00 ed f8 0e 00 14 01 00 00 | ............2................... |
| f060 | ff f8 0e 00 b9 00 00 00 14 fa 0e 00 bd 00 00 00 ce fa 0e 00 0f 00 00 00 8c fb 0e 00 06 00 00 00 | ................................ |
| f080 | 9c fb 0e 00 06 00 00 00 a3 fb 0e 00 5d 02 00 00 aa fb 0e 00 5c 02 00 00 08 fe 0e 00 0e 00 00 00 | ............].......\........... |
| f0a0 | 65 00 0f 00 80 01 00 00 74 00 0f 00 23 01 00 00 f5 01 0f 00 0c 01 00 00 19 03 0f 00 8b 00 00 00 | e.......t...#................... |
| f0c0 | 26 04 0f 00 06 00 00 00 b2 04 0f 00 59 00 00 00 b9 04 0f 00 59 00 00 00 13 05 0f 00 07 00 00 00 | &...........Y.......Y........... |
| f0e0 | 6d 05 0f 00 15 00 00 00 75 05 0f 00 44 00 00 00 8b 05 0f 00 44 00 00 00 d0 05 0f 00 0f 00 00 00 | m.......u...D.......D........... |
| f100 | 15 06 0f 00 4d 00 00 00 25 06 0f 00 3d 00 00 00 73 06 0f 00 10 00 00 00 b1 06 0f 00 45 00 00 00 | ....M...%...=...s...........E... |
| f120 | c2 06 0f 00 58 00 00 00 08 07 0f 00 59 00 00 00 61 07 0f 00 7c 00 00 00 bb 07 0f 00 ac 00 00 00 | ....X.......Y...a...|........... |
| f140 | 38 08 0f 00 89 00 00 00 e5 08 0f 00 8a 00 00 00 6f 09 0f 00 86 00 00 00 fa 09 0f 00 23 00 00 00 | 8...............o...........#... |
| f160 | 81 0a 0f 00 0e 00 00 00 a5 0a 0f 00 26 00 00 00 b4 0a 0f 00 2d 00 00 00 db 0a 0f 00 2e 00 00 00 | ............&.......-........... |
| f180 | 09 0b 0f 00 2d 00 00 00 38 0b 0f 00 0f 00 00 00 66 0b 0f 00 1d 01 00 00 76 0b 0f 00 19 01 00 00 | ....-...8.......f.......v....... |
| f1a0 | 94 0c 0f 00 1f 01 00 00 ae 0d 0f 00 07 00 00 00 ce 0e 0f 00 06 00 00 00 d6 0e 0f 00 17 00 00 00 | ................................ |
| f1c0 | dd 0e 0f 00 0e 00 00 00 f5 0e 0f 00 25 00 00 00 04 0f 0f 00 0e 00 00 00 2a 0f 0f 00 11 00 00 00 | ............%...........*....... |
| f1e0 | 39 0f 0f 00 0f 00 00 00 4b 0f 0f 00 10 00 00 00 5b 0f 0f 00 07 00 00 00 6c 0f 0f 00 0e 00 00 00 | 9.......K.......[.......l....... |
| f200 | 74 0f 0f 00 06 00 00 00 83 0f 0f 00 d0 00 00 00 8a 0f 0f 00 2c 00 00 00 5b 10 0f 00 5c 00 00 00 | t...................,...[...\... |
| f220 | 88 10 0f 00 53 00 00 00 e5 10 0f 00 1b 00 00 00 39 11 0f 00 57 00 00 00 55 11 0f 00 2b 00 00 00 | ....S...........9...W...U...+... |
| f240 | ad 11 0f 00 08 00 00 00 d9 11 0f 00 13 00 00 00 e2 11 0f 00 22 00 00 00 f6 11 0f 00 1a 00 00 00 | ...................."........... |
| f260 | 19 12 0f 00 0b 00 00 00 34 12 0f 00 0b 00 00 00 40 12 0f 00 11 00 00 00 4c 12 0f 00 08 00 00 00 | ........4.......@.......L....... |
| f280 | 5e 12 0f 00 1a 00 00 00 67 12 0f 00 87 00 00 00 82 12 0f 00 6d 00 00 00 0a 13 0f 00 17 00 00 00 | ^.......g...........m........... |
| f2a0 | 78 13 0f 00 07 00 00 00 90 13 0f 00 9c 00 00 00 98 13 0f 00 24 00 00 00 35 14 0f 00 c5 00 00 00 | x...................$...5....... |
| f2c0 | 5a 14 0f 00 47 01 00 00 20 15 0f 00 14 00 00 00 68 16 0f 00 0d 00 00 00 7d 16 0f 00 85 00 00 00 | Z...G...........h.......}....... |
| f2e0 | 8b 16 0f 00 0c 00 00 00 11 17 0f 00 3e 00 00 00 1e 17 0f 00 78 00 00 00 5d 17 0f 00 3c 00 00 00 | ............>.......x...]...<... |
| f300 | d6 17 0f 00 23 00 00 00 13 18 0f 00 df 00 00 00 37 18 0f 00 34 00 00 00 17 19 0f 00 4d 00 00 00 | ....#...........7...4.......M... |
| f320 | 4c 19 0f 00 3e 00 00 00 9a 19 0f 00 64 00 00 00 d9 19 0f 00 db 00 00 00 3e 1a 0f 00 3b 00 00 00 | L...>.......d...........>...;... |
| f340 | 1a 1b 0f 00 28 00 00 00 56 1b 0f 00 18 00 00 00 7f 1b 0f 00 12 00 00 00 98 1b 0f 00 3f 00 00 00 | ....(...V...................?... |
| f360 | ab 1b 0f 00 04 00 00 00 eb 1b 0f 00 11 00 00 00 f0 1b 0f 00 11 00 00 00 02 1c 0f 00 0a 00 00 00 | ................................ |
| f380 | 14 1c 0f 00 2a 00 00 00 1f 1c 0f 00 10 00 00 00 4a 1c 0f 00 09 00 00 00 5b 1c 0f 00 30 00 00 00 | ....*...........J.......[...0... |
| f3a0 | 65 1c 0f 00 08 00 00 00 96 1c 0f 00 05 01 00 00 9f 1c 0f 00 1e 00 00 00 a5 1d 0f 00 13 00 00 00 | e............................... |
| f3c0 | c4 1d 0f 00 c5 00 00 00 d8 1d 0f 00 6a 00 00 00 9e 1e 0f 00 c0 00 00 00 09 1f 0f 00 25 00 00 00 | ............j...............%... |
| f3e0 | ca 1f 0f 00 25 00 00 00 f0 1f 0f 00 03 00 00 00 16 20 0f 00 d3 00 00 00 1a 20 0f 00 a8 00 00 00 | ....%........................... |
| f400 | ee 20 0f 00 90 01 00 00 97 21 0f 00 d4 01 00 00 28 23 0f 00 23 01 00 00 fd 24 0f 00 2a 00 00 00 | .........!......(#..#....$..*... |
| f420 | 21 26 0f 00 0a 00 00 00 4c 26 0f 00 26 00 00 00 57 26 0f 00 0a 00 00 00 7e 26 0f 00 96 01 00 00 | !&......L&..&...W&......~&...... |
| f440 | 89 26 0f 00 05 00 00 00 20 28 0f 00 05 00 00 00 26 28 0f 00 2b 00 00 00 2c 28 0f 00 02 00 00 00 | .&.......(......&(..+...,(...... |
| f460 | 58 28 0f 00 0a 00 00 00 5b 28 0f 00 53 00 00 00 66 28 0f 00 1d 00 00 00 ba 28 0f 00 25 00 00 00 | X(......[(..S...f(.......(..%... |
| f480 | d8 28 0f 00 18 00 00 00 fe 28 0f 00 19 00 00 00 17 29 0f 00 19 00 00 00 31 29 0f 00 33 00 00 00 | .(.......(.......)......1)..3... |
| f4a0 | 4b 29 0f 00 33 00 00 00 7f 29 0f 00 ea 00 00 00 b3 29 0f 00 2b 00 00 00 9e 2a 0f 00 4d 00 00 00 | K)..3....).......)..+....*..M... |
| f4c0 | ca 2a 0f 00 15 00 00 00 18 2b 0f 00 14 02 00 00 2e 2b 0f 00 34 00 00 00 43 2d 0f 00 33 00 00 00 | .*.......+.......+..4...C-..3... |
| f4e0 | 78 2d 0f 00 36 00 00 00 ac 2d 0f 00 34 00 00 00 e3 2d 0f 00 2d 00 00 00 18 2e 0f 00 27 00 00 00 | x-..6....-..4....-..-.......'... |
| f500 | 46 2e 0f 00 1b 00 00 00 6e 2e 0f 00 38 00 00 00 8a 2e 0f 00 38 00 00 00 c3 2e 0f 00 06 00 00 00 | F.......n...8.......8........... |
| f520 | fc 2e 0f 00 04 00 00 00 03 2f 0f 00 05 00 00 00 08 2f 0f 00 11 00 00 00 0e 2f 0f 00 19 00 00 00 | ........./......./......./...... |
| f540 | 20 2f 0f 00 1d 00 00 00 3a 2f 0f 00 19 00 00 00 58 2f 0f 00 41 00 00 00 72 2f 0f 00 11 00 00 00 | ./......:/......X/..A...r/...... |
| f560 | b4 2f 0f 00 12 00 00 00 c6 2f 0f 00 06 00 00 00 d9 2f 0f 00 0b 00 00 00 e0 2f 0f 00 f7 00 00 00 | ./......./......./......./...... |
| f580 | ec 2f 0f 00 f9 00 00 00 e4 30 0f 00 24 01 00 00 de 31 0f 00 39 00 00 00 03 33 0f 00 05 00 00 00 | ./.......0..$....1..9....3...... |
| f5a0 | 3d 33 0f 00 19 00 00 00 43 33 0f 00 04 00 00 00 5d 33 0f 00 1b 00 00 00 62 33 0f 00 25 00 00 00 | =3......C3......]3......b3..%... |
| f5c0 | 7e 33 0f 00 2d 00 00 00 a4 33 0f 00 2e 00 00 00 d2 33 0f 00 0c 00 00 00 01 34 0f 00 0a 00 00 00 | ~3..-....3.......3.......4...... |
| f5e0 | 0e 34 0f 00 7a 00 00 00 19 34 0f 00 50 00 00 00 94 34 0f 00 0b 00 00 00 e5 34 0f 00 76 00 00 00 | .4..z....4..P....4.......4..v... |
| f600 | f1 34 0f 00 7c 00 00 00 68 35 0f 00 04 00 00 00 e5 35 0f 00 10 00 00 00 ea 35 0f 00 15 00 00 00 | .4..|...h5.......5.......5...... |
| f620 | fb 35 0f 00 16 00 00 00 11 36 0f 00 20 00 00 00 28 36 0f 00 1b 00 00 00 49 36 0f 00 0e 00 00 00 | .5.......6......(6......I6...... |
| f640 | 65 36 0f 00 16 00 00 00 74 36 0f 00 11 00 00 00 8b 36 0f 00 14 00 00 00 9d 36 0f 00 87 00 00 00 | e6......t6.......6.......6...... |
| f660 | b2 36 0f 00 39 00 00 00 3a 37 0f 00 3a 00 00 00 74 37 0f 00 3a 00 00 00 af 37 0f 00 ec 00 00 00 | .6..9...:7..:...t7..:....7...... |
| f680 | ea 37 0f 00 14 00 00 00 d7 38 0f 00 1f 00 00 00 ec 38 0f 00 25 00 00 00 0c 39 0f 00 0c 00 00 00 | .7.......8.......8..%....9...... |
| f6a0 | 32 39 0f 00 3e 00 00 00 3f 39 0f 00 0c 00 00 00 7e 39 0f 00 0a 00 00 00 8b 39 0f 00 54 00 00 00 | 29..>...?9......~9.......9..T... |
| f6c0 | 96 39 0f 00 0b 00 00 00 eb 39 0f 00 0c 00 00 00 f7 39 0f 00 05 00 00 00 04 3a 0f 00 1a 00 00 00 | .9.......9.......9.......:...... |
| f6e0 | 0a 3a 0f 00 16 00 00 00 25 3a 0f 00 14 00 00 00 3c 3a 0f 00 1c 00 00 00 51 3a 0f 00 75 00 00 00 | .:......%:......<:......Q:..u... |
| f700 | 6e 3a 0f 00 07 01 00 00 e4 3a 0f 00 78 01 00 00 ec 3b 0f 00 45 00 00 00 65 3d 0f 00 39 00 00 00 | n:.......:..x....;..E...e=..9... |
| f720 | ab 3d 0f 00 ec 00 00 00 e5 3d 0f 00 e6 00 00 00 d2 3e 0f 00 4a 00 00 00 b9 3f 0f 00 57 00 00 00 | .=.......=.......>..J....?..W... |
| f740 | 04 40 0f 00 69 00 00 00 5c 40 0f 00 d2 00 00 00 c6 40 0f 00 c2 00 00 00 99 41 0f 00 b8 00 00 00 | .@..i...\@.......@.......A...... |
| f760 | 5c 42 0f 00 98 00 00 00 15 43 0f 00 8d 00 00 00 ae 43 0f 00 93 00 00 00 3c 44 0f 00 b5 00 00 00 | \B.......C.......C......<D...... |
| f780 | d0 44 0f 00 65 00 00 00 86 45 0f 00 ff 00 00 00 ec 45 0f 00 7f 00 00 00 ec 46 0f 00 c3 00 00 00 | .D..e....E.......E.......F...... |
| f7a0 | 6c 47 0f 00 c3 00 00 00 30 48 0f 00 bf 00 00 00 f4 48 0f 00 bf 00 00 00 b4 49 0f 00 cc 00 00 00 | lG......0H.......H.......I...... |
| f7c0 | 74 4a 0f 00 cc 00 00 00 41 4b 0f 00 d0 00 00 00 0e 4c 0f 00 d0 00 00 00 df 4c 0f 00 83 00 00 00 | tJ......AK.......L.......L...... |
| f7e0 | b0 4d 0f 00 5a 00 00 00 34 4e 0f 00 69 00 00 00 8f 4e 0f 00 0d 02 00 00 f9 4e 0f 00 b8 00 00 00 | .M..Z...4N..i....N.......N...... |
| f800 | 07 51 0f 00 22 00 00 00 c0 51 0f 00 a4 00 00 00 e3 51 0f 00 b1 01 00 00 88 52 0f 00 ad 00 00 00 | .Q.."....Q.......Q.......R...... |
| f820 | 3a 54 0f 00 6f 00 00 00 e8 54 0f 00 e9 00 00 00 58 55 0f 00 89 00 00 00 42 56 0f 00 ae 00 00 00 | :T..o....T......XU......BV...... |
| f840 | cc 56 0f 00 38 01 00 00 7b 57 0f 00 46 01 00 00 b4 58 0f 00 5f 01 00 00 fb 59 0f 00 f0 00 00 00 | .V..8...{W..F....X.._....Y...... |
| f860 | 5b 5b 0f 00 57 00 00 00 4c 5c 0f 00 83 00 00 00 a4 5c 0f 00 32 00 00 00 28 5d 0f 00 25 01 00 00 | [[..W...L\.......\..2...(]..%... |
| f880 | 5b 5d 0f 00 6c 00 00 00 81 5e 0f 00 6a 01 00 00 ee 5e 0f 00 95 00 00 00 59 60 0f 00 5d 00 00 00 | []..l....^..j....^......Y`..]... |
| f8a0 | ef 60 0f 00 9b 00 00 00 4d 61 0f 00 6c 00 00 00 e9 61 0f 00 73 00 00 00 56 62 0f 00 2a 00 00 00 | .`......Ma..l....a..s...Vb..*... |
| f8c0 | ca 62 0f 00 78 00 00 00 f5 62 0f 00 a3 00 00 00 6e 63 0f 00 94 00 00 00 12 64 0f 00 93 00 00 00 | .b..x....b......nc.......d...... |
| f8e0 | a7 64 0f 00 51 00 00 00 3b 65 0f 00 92 00 00 00 8d 65 0f 00 c0 00 00 00 20 66 0f 00 c4 00 00 00 | .d..Q...;e.......e.......f...... |
| f900 | e1 66 0f 00 bb 00 00 00 a6 67 0f 00 ba 00 00 00 62 68 0f 00 bd 00 00 00 1d 69 0f 00 b2 00 00 00 | .f.......g......bh.......i...... |
| f920 | db 69 0f 00 97 00 00 00 8e 6a 0f 00 a0 00 00 00 26 6b 0f 00 b5 00 00 00 c7 6b 0f 00 b9 00 00 00 | .i.......j......&k.......k...... |
| f940 | 7d 6c 0f 00 55 00 00 00 37 6d 0f 00 6e 00 00 00 8d 6d 0f 00 a6 00 00 00 fc 6d 0f 00 a7 00 00 00 | }l..U...7m..n....m.......m...... |
| f960 | a3 6e 0f 00 ac 00 00 00 4b 6f 0f 00 79 00 00 00 f8 6f 0f 00 74 00 00 00 72 70 0f 00 73 00 00 00 | .n......Ko..y....o..t...rp..s... |
| f980 | e7 70 0f 00 68 00 00 00 5b 71 0f 00 42 01 00 00 c4 71 0f 00 d4 00 00 00 07 73 0f 00 d1 00 00 00 | .p..h...[q..B....q.......s...... |
| f9a0 | dc 73 0f 00 b3 00 00 00 ae 74 0f 00 38 00 00 00 62 75 0f 00 87 00 00 00 9b 75 0f 00 8f 00 00 00 | .s.......t..8...bu.......u...... |
| f9c0 | 23 76 0f 00 79 00 00 00 b3 76 0f 00 6f 00 00 00 2d 77 0f 00 97 00 00 00 9d 77 0f 00 8a 00 00 00 | #v..y....v..o...-w.......w...... |
| f9e0 | 35 78 0f 00 a3 00 00 00 c0 78 0f 00 60 00 00 00 64 79 0f 00 66 00 00 00 c5 79 0f 00 ab 00 00 00 | 5x.......x..`...dy..f....y...... |
| fa00 | 2c 7a 0f 00 45 00 00 00 d8 7a 0f 00 d3 00 00 00 1e 7b 0f 00 d3 00 00 00 f2 7b 0f 00 8e 00 00 00 | ,z..E....z.......{.......{...... |
| fa20 | c6 7c 0f 00 61 00 00 00 55 7d 0f 00 7f 00 00 00 b7 7d 0f 00 69 01 00 00 37 7e 0f 00 9d 01 00 00 | .|..a...U}.......}..i...7~...... |
| fa40 | a1 7f 0f 00 9e 01 00 00 3f 81 0f 00 b6 00 00 00 de 82 0f 00 cd 00 00 00 95 83 0f 00 bf 00 00 00 | ........?....................... |
| fa60 | 63 84 0f 00 b9 00 00 00 23 85 0f 00 a8 00 00 00 dd 85 0f 00 5f 00 00 00 86 86 0f 00 e5 00 00 00 | c.......#..........._........... |
| fa80 | e6 86 0f 00 55 00 00 00 cc 87 0f 00 69 00 00 00 22 88 0f 00 74 00 00 00 8c 88 0f 00 57 01 00 00 | ....U.......i..."...t.......W... |
| faa0 | 01 89 0f 00 8a 00 00 00 59 8a 0f 00 9b 00 00 00 e4 8a 0f 00 8d 00 00 00 80 8b 0f 00 74 00 00 00 | ........Y...................t... |
| fac0 | 0e 8c 0f 00 97 00 00 00 83 8c 0f 00 5c 00 00 00 1b 8d 0f 00 8e 00 00 00 78 8d 0f 00 92 00 00 00 | ............\...........x....... |
| fae0 | 07 8e 0f 00 69 00 00 00 9a 8e 0f 00 6d 00 00 00 04 8f 0f 00 db 00 00 00 72 8f 0f 00 74 01 00 00 | ....i.......m...........r...t... |
| fb00 | 4e 90 0f 00 55 00 00 00 c3 91 0f 00 87 00 00 00 19 92 0f 00 3e 00 00 00 a1 92 0f 00 d5 00 00 00 | N...U...............>........... |
| fb20 | e0 92 0f 00 91 00 00 00 b6 93 0f 00 bf 00 00 00 48 94 0f 00 37 01 00 00 08 95 0f 00 55 01 00 00 | ................H...7.......U... |
| fb40 | 40 96 0f 00 55 00 00 00 96 97 0f 00 2c 00 00 00 ec 97 0f 00 21 00 00 00 19 98 0f 00 9d 00 00 00 | @...U.......,.......!........... |
| fb60 | 3b 98 0f 00 1e 00 00 00 d9 98 0f 00 09 00 00 00 f8 98 0f 00 34 00 00 00 02 99 0f 00 1a 00 00 00 | ;...................4........... |
| fb80 | 37 99 0f 00 b7 00 00 00 52 99 0f 00 40 00 00 00 0a 9a 0f 00 31 00 00 00 4b 9a 0f 00 80 00 00 00 | 7.......R...@.......1...K....... |
| fba0 | 7d 9a 0f 00 43 00 00 00 fe 9a 0f 00 38 00 00 00 42 9b 0f 00 2c 00 00 00 7b 9b 0f 00 9f 00 00 00 | }...C.......8...B...,...{....... |
| fbc0 | a8 9b 0f 00 58 01 00 00 48 9c 0f 00 7e 00 00 00 a1 9d 0f 00 a3 00 00 00 20 9e 0f 00 a4 00 00 00 | ....X...H...~................... |
| fbe0 | c4 9e 0f 00 55 00 00 00 69 9f 0f 00 3a 00 00 00 bf 9f 0f 00 39 00 00 00 fa 9f 0f 00 70 00 00 00 | ....U...i...:.......9.......p... |
| fc00 | 34 a0 0f 00 70 00 00 00 a5 a0 0f 00 4e 00 00 00 16 a1 0f 00 3b 00 00 00 65 a1 0f 00 6b 01 00 00 | 4...p.......N.......;...e...k... |
| fc20 | a1 a1 0f 00 4a 00 00 00 0d a3 0f 00 b5 00 00 00 58 a3 0f 00 71 00 00 00 0e a4 0f 00 c2 00 00 00 | ....J...........X...q........... |
| fc40 | 80 a4 0f 00 67 00 00 00 43 a5 0f 00 70 00 00 00 ab a5 0f 00 dd 00 00 00 1c a6 0f 00 dc 00 00 00 | ....g...C...p................... |
| fc60 | fa a6 0f 00 4a 00 00 00 d7 a7 0f 00 4b 00 00 00 22 a8 0f 00 4d 00 00 00 6e a8 0f 00 32 00 00 00 | ....J.......K..."...M...n...2... |
| fc80 | bc a8 0f 00 6f 00 00 00 ef a8 0f 00 68 00 00 00 5f a9 0f 00 e3 00 00 00 c8 a9 0f 00 01 03 00 00 | ....o.......h..._............... |
| fca0 | ac aa 0f 00 2c 00 00 00 ae ad 0f 00 bc 01 00 00 db ad 0f 00 da 00 00 00 98 af 0f 00 8e 00 00 00 | ....,........................... |
| fcc0 | 73 b0 0f 00 d0 00 00 00 02 b1 0f 00 81 00 00 00 d3 b1 0f 00 b0 01 00 00 55 b2 0f 00 94 00 00 00 | s.......................U....... |
| fce0 | 06 b4 0f 00 f7 00 00 00 9b b4 0f 00 49 00 00 00 93 b5 0f 00 56 02 00 00 dd b5 0f 00 85 00 00 00 | ............I.......V........... |
| fd00 | 34 b8 0f 00 08 01 00 00 ba b8 0f 00 1d 02 00 00 c3 b9 0f 00 c5 00 00 00 e1 bb 0f 00 5d 00 00 00 | 4...........................]... |
| fd20 | a7 bc 0f 00 5b 00 00 00 05 bd 0f 00 46 00 00 00 61 bd 0f 00 5b 00 00 00 a8 bd 0f 00 b4 00 00 00 | ....[.......F...a...[........... |
| fd40 | 04 be 0f 00 33 00 00 00 b9 be 0f 00 60 00 00 00 ed be 0f 00 fe 00 00 00 4e bf 0f 00 61 00 00 00 | ....3.......`...........N...a... |
| fd60 | 4d c0 0f 00 9d 00 00 00 af c0 0f 00 23 01 00 00 4d c1 0f 00 9c 00 00 00 71 c2 0f 00 13 01 00 00 | M...........#...M.......q....... |
| fd80 | 0e c3 0f 00 bb 00 00 00 22 c4 0f 00 3d 00 00 00 de c4 0f 00 c2 00 00 00 1c c5 0f 00 db 00 00 00 | ........"...=................... |
| fda0 | df c5 0f 00 d2 00 00 00 bb c6 0f 00 77 00 00 00 8e c7 0f 00 08 01 00 00 06 c8 0f 00 96 00 00 00 | ............w................... |
| fdc0 | 0f c9 0f 00 2e 01 00 00 a6 c9 0f 00 68 00 00 00 d5 ca 0f 00 3c 00 00 00 3e cb 0f 00 45 01 00 00 | ............h.......<...>...E... |
| fde0 | 7b cb 0f 00 c1 01 00 00 c1 cc 0f 00 4e 00 00 00 83 ce 0f 00 62 00 00 00 d2 ce 0f 00 ae 00 00 00 | {...........N.......b........... |
| fe00 | 35 cf 0f 00 dd 00 00 00 e4 cf 0f 00 77 00 00 00 c2 d0 0f 00 b7 00 00 00 3a d1 0f 00 a2 00 00 00 | 5...........w...........:....... |
| fe20 | f2 d1 0f 00 bb 00 00 00 95 d2 0f 00 5c 00 00 00 51 d3 0f 00 85 00 00 00 ae d3 0f 00 6a 01 00 00 | ............\...Q...........j... |
| fe40 | 34 d4 0f 00 62 00 00 00 9f d5 0f 00 c3 00 00 00 02 d6 0f 00 11 00 00 00 c6 d6 0f 00 ba 00 00 00 | 4...b........................... |
| fe60 | d8 d6 0f 00 bb 00 00 00 93 d7 0f 00 ba 00 00 00 4f d8 0f 00 bb 00 00 00 0a d9 0f 00 bc 00 00 00 | ................O............... |
| fe80 | c6 d9 0f 00 bd 00 00 00 83 da 0f 00 6e 00 00 00 41 db 0f 00 6f 00 00 00 b0 db 0f 00 a0 00 00 00 | ............n...A...o........... |
| fea0 | 20 dc 0f 00 bb 00 00 00 c1 dc 0f 00 bb 00 00 00 7d dd 0f 00 be 00 00 00 39 de 0f 00 6f 00 00 00 | ................}.......9...o... |
| fec0 | f8 de 0f 00 a4 00 00 00 68 df 0f 00 42 00 00 00 0d e0 0f 00 d2 00 00 00 50 e0 0f 00 1d 01 00 00 | ........h...B...........P....... |
| fee0 | 23 e1 0f 00 9b 01 00 00 41 e2 0f 00 9b 01 00 00 dd e3 0f 00 6b 00 00 00 79 e5 0f 00 98 00 00 00 | #.......A...........k...y....... |
| ff00 | e5 e5 0f 00 4a 00 00 00 7e e6 0f 00 0a 00 00 00 c9 e6 0f 00 18 00 00 00 d4 e6 0f 00 3e 00 00 00 | ....J...~...................>... |
| ff20 | ed e6 0f 00 67 01 00 00 2c e7 0f 00 0d 00 00 00 94 e8 0f 00 16 00 00 00 a2 e8 0f 00 23 00 00 00 | ....g...,...................#... |
| ff40 | b9 e8 0f 00 0d 00 00 00 dd e8 0f 00 58 00 00 00 eb e8 0f 00 67 00 00 00 44 e9 0f 00 ef 00 00 00 | ............X.......g...D....... |
| ff60 | ac e9 0f 00 6e 00 00 00 9c ea 0f 00 4c 00 00 00 0b eb 0f 00 98 00 00 00 58 eb 0f 00 0b 00 00 00 | ....n.......L...........X....... |
| ff80 | f1 eb 0f 00 0b 00 00 00 fd eb 0f 00 4c 00 00 00 09 ec 0f 00 2f 00 00 00 56 ec 0f 00 17 00 00 00 | ............L......./...V....... |
| ffa0 | 86 ec 0f 00 10 00 00 00 9e ec 0f 00 10 00 00 00 af ec 0f 00 90 00 00 00 c0 ec 0f 00 17 00 00 00 | ................................ |
| ffc0 | 51 ed 0f 00 37 00 00 00 69 ed 0f 00 36 00 00 00 a1 ed 0f 00 1b 00 00 00 d8 ed 0f 00 2f 00 00 00 | Q...7...i...6.............../... |
| ffe0 | f4 ed 0f 00 97 00 00 00 24 ee 0f 00 10 00 00 00 bc ee 0f 00 0a 00 00 00 cd ee 0f 00 18 00 00 00 | ........$....................... |
| 10000 | d8 ee 0f 00 72 01 00 00 f1 ee 0f 00 40 00 00 00 64 f0 0f 00 7f 01 00 00 a5 f0 0f 00 c0 00 00 00 | ....r.......@...d............... |
| 10020 | 25 f2 0f 00 48 01 00 00 e6 f2 0f 00 54 01 00 00 2f f4 0f 00 9e 01 00 00 84 f5 0f 00 14 00 00 00 | %...H.......T.../............... |
| 10040 | 23 f7 0f 00 08 00 00 00 38 f7 0f 00 77 00 00 00 41 f7 0f 00 18 00 00 00 b9 f7 0f 00 31 00 00 00 | #.......8...w...A...........1... |
| 10060 | d2 f7 0f 00 8f 01 00 00 04 f8 0f 00 19 02 00 00 94 f9 0f 00 f7 00 00 00 ae fb 0f 00 e9 00 00 00 | ................................ |
| 10080 | a6 fc 0f 00 89 00 00 00 90 fd 0f 00 4c 00 00 00 1a fe 0f 00 38 00 00 00 67 fe 0f 00 8f 00 00 00 | ............L.......8...g....... |
| 100a0 | a0 fe 0f 00 37 00 00 00 30 ff 0f 00 1b 00 00 00 68 ff 0f 00 1c 00 00 00 84 ff 0f 00 25 01 00 00 | ....7...0.......h...........%... |
| 100c0 | a1 ff 0f 00 cb 00 00 00 c7 00 10 00 db 00 00 00 93 01 10 00 d7 00 00 00 6f 02 10 00 a5 00 00 00 | ........................o....... |
| 100e0 | 47 03 10 00 93 00 00 00 ed 03 10 00 e3 00 00 00 81 04 10 00 02 02 00 00 65 05 10 00 c4 00 00 00 | G.......................e....... |
| 10100 | 68 07 10 00 a6 00 00 00 2d 08 10 00 e6 00 00 00 d4 08 10 00 e5 00 00 00 bb 09 10 00 4f 00 00 00 | h.......-...................O... |
| 10120 | a1 0a 10 00 a4 00 00 00 f1 0a 10 00 28 01 00 00 96 0b 10 00 9d 00 00 00 bf 0c 10 00 3b 00 00 00 | ............(...............;... |
| 10140 | 5d 0d 10 00 4a 00 00 00 99 0d 10 00 81 00 00 00 e4 0d 10 00 68 00 00 00 66 0e 10 00 71 00 00 00 | ]...J...............h...f...q... |
| 10160 | cf 0e 10 00 49 00 00 00 41 0f 10 00 36 00 00 00 8b 0f 10 00 11 00 00 00 c2 0f 10 00 06 00 00 00 | ....I...A...6................... |
| 10180 | d4 0f 10 00 8f 00 00 00 db 0f 10 00 0f 00 00 00 6b 10 10 00 18 00 00 00 7b 10 10 00 0e 00 00 00 | ................k.......{....... |
| 101a0 | 94 10 10 00 0e 00 00 00 a3 10 10 00 0f 00 00 00 b2 10 10 00 0b 00 00 00 c2 10 10 00 6c 01 00 00 | ............................l... |
| 101c0 | ce 10 10 00 3a 01 00 00 3b 12 10 00 0f 00 00 00 76 13 10 00 0f 00 00 00 86 13 10 00 08 00 00 00 | ....:...;.......v............... |
| 101e0 | 96 13 10 00 07 00 00 00 9f 13 10 00 0c 00 00 00 a7 13 10 00 04 00 00 00 b4 13 10 00 0f 00 00 00 | ................................ |
| 10200 | b9 13 10 00 06 00 00 00 c9 13 10 00 ff 00 00 00 d0 13 10 00 23 00 00 00 d0 14 10 00 23 00 00 00 | ....................#.......#... |
| 10220 | f4 14 10 00 0e 00 00 00 18 15 10 00 07 00 00 00 27 15 10 00 0a 00 00 00 2f 15 10 00 04 00 00 00 | ................'......./....... |
| 10240 | 3a 15 10 00 36 00 00 00 3f 15 10 00 b5 00 00 00 76 15 10 00 04 00 00 00 2c 16 10 00 f5 00 00 00 | :...6...?.......v.......,....... |
| 10260 | 31 16 10 00 19 00 00 00 27 17 10 00 42 00 00 00 41 17 10 00 1b 00 00 00 84 17 10 00 36 00 00 00 | 1.......'...B...A...........6... |
| 10280 | a0 17 10 00 50 00 00 00 d7 17 10 00 34 01 00 00 28 18 10 00 3e 00 00 00 5d 19 10 00 29 00 00 00 | ....P.......4...(...>...]...)... |
| 102a0 | 9c 19 10 00 0f 00 00 00 c6 19 10 00 33 00 00 00 d6 19 10 00 14 02 00 00 0a 1a 10 00 15 02 00 00 | ............3................... |
| 102c0 | 1f 1c 10 00 40 00 00 00 35 1e 10 00 3d 00 00 00 76 1e 10 00 07 01 00 00 b4 1e 10 00 23 00 00 00 | ....@...5...=...v...........#... |
| 102e0 | bc 1f 10 00 11 00 00 00 e0 1f 10 00 3f 00 00 00 f2 1f 10 00 20 00 00 00 32 20 10 00 6f 00 00 00 | ............?...........2...o... |
| 10300 | 53 20 10 00 78 00 00 00 c3 20 10 00 3d 00 00 00 3c 21 10 00 68 00 00 00 7a 21 10 00 6b 00 00 00 | S...x.......=...<!..h...z!..k... |
| 10320 | e3 21 10 00 23 00 00 00 4f 22 10 00 07 00 00 00 73 22 10 00 7d 00 00 00 7b 22 10 00 06 00 00 00 | .!..#...O"......s"..}...{"...... |
| 10340 | f9 22 10 00 16 00 00 00 00 23 10 00 36 00 00 00 17 23 10 00 35 00 00 00 4e 23 10 00 10 00 00 00 | .".......#..6....#..5...N#...... |
| 10360 | 84 23 10 00 69 02 00 00 95 23 10 00 1b 00 00 00 ff 25 10 00 52 01 00 00 1b 26 10 00 4a 00 00 00 | .#..i....#.......%..R....&..J... |
| 10380 | 6e 27 10 00 e8 01 00 00 b9 27 10 00 9d 01 00 00 a2 29 10 00 cb 02 00 00 40 2b 10 00 d7 00 00 00 | n'.......'.......)......@+...... |
| 103a0 | 0c 2e 10 00 1e 00 00 00 e4 2e 10 00 2f 00 00 00 03 2f 10 00 21 00 00 00 33 2f 10 00 0c 00 00 00 | ............/..../..!...3/...... |
| 103c0 | 55 2f 10 00 0e 00 00 00 62 2f 10 00 24 00 00 00 71 2f 10 00 0e 00 00 00 96 2f 10 00 59 00 00 00 | U/......b/..$...q/......./..Y... |
| 103e0 | a5 2f 10 00 59 00 00 00 ff 2f 10 00 22 00 00 00 59 30 10 00 05 00 00 00 7c 30 10 00 20 00 00 00 | ./..Y..../.."...Y0......|0...... |
| 10400 | 82 30 10 00 14 00 00 00 a3 30 10 00 3c 00 00 00 b8 30 10 00 42 00 00 00 f5 30 10 00 1f 00 00 00 | .0.......0..<....0..B....0...... |
| 10420 | 38 31 10 00 2e 00 00 00 58 31 10 00 10 00 00 00 87 31 10 00 10 00 00 00 98 31 10 00 12 00 00 00 | 81......X1.......1.......1...... |
| 10440 | a9 31 10 00 12 00 00 00 bc 31 10 00 2e 00 00 00 cf 31 10 00 3c 00 00 00 fe 31 10 00 3b 00 00 00 | .1.......1.......1..<....1..;... |
| 10460 | 3b 32 10 00 0b 00 00 00 77 32 10 00 38 00 00 00 83 32 10 00 2c 00 00 00 bc 32 10 00 09 00 00 00 | ;2......w2..8....2..,....2...... |
| 10480 | e9 32 10 00 09 00 00 00 f3 32 10 00 1f 00 00 00 fd 32 10 00 0e 00 00 00 1d 33 10 00 63 00 00 00 | .2.......2.......2.......3..c... |
| 104a0 | 2c 33 10 00 9c 00 00 00 90 33 10 00 ab 00 00 00 2d 34 10 00 eb 00 00 00 d9 34 10 00 30 00 00 00 | ,3.......3......-4.......4..0... |
| 104c0 | c5 35 10 00 2c 00 00 00 f6 35 10 00 07 00 00 00 23 36 10 00 63 00 00 00 2b 36 10 00 0c 01 00 00 | .5..,....5......#6..c...+6...... |
| 104e0 | 8f 36 10 00 0c 00 00 00 9c 37 10 00 0c 00 00 00 a9 37 10 00 15 00 00 00 b6 37 10 00 04 00 00 00 | .6.......7.......7.......7...... |
| 10500 | cc 37 10 00 19 00 00 00 d1 37 10 00 08 00 00 00 eb 37 10 00 8c 00 00 00 f4 37 10 00 03 00 00 00 | .7.......7.......7.......7...... |
| 10520 | 81 38 10 00 0a 00 00 00 85 38 10 00 35 00 00 00 90 38 10 00 13 00 00 00 c6 38 10 00 19 00 00 00 | .8.......8..5....8.......8...... |
| 10540 | da 38 10 00 06 00 00 00 f4 38 10 00 3b 02 00 00 fb 38 10 00 5f 01 00 00 37 3b 10 00 85 00 00 00 | .8.......8..;....8.._...7;...... |
| 10560 | 97 3c 10 00 0e 00 00 00 1d 3d 10 00 0f 00 00 00 2c 3d 10 00 09 00 00 00 3c 3d 10 00 10 00 00 00 | .<.......=......,=......<=...... |
| 10580 | 46 3d 10 00 35 00 00 00 57 3d 10 00 04 00 00 00 8d 3d 10 00 e8 01 00 00 92 3d 10 00 5f 00 00 00 | F=..5...W=.......=.......=.._... |
| 105a0 | 7b 3f 10 00 61 00 00 00 db 3f 10 00 03 00 00 00 3d 40 10 00 0b 00 00 00 41 40 10 00 4c 00 00 00 | {?..a....?......=@......A@..L... |
| 105c0 | 4d 40 10 00 2f 00 00 00 9a 40 10 00 1d 00 00 00 ca 40 10 00 10 00 00 00 e8 40 10 00 3d 00 00 00 | M@../....@.......@.......@..=... |
| 105e0 | f9 40 10 00 4d 00 00 00 37 41 10 00 38 00 00 00 85 41 10 00 10 00 00 00 be 41 10 00 0f 00 00 00 | .@..M...7A..8....A.......A...... |
| 10600 | cf 41 10 00 3b 00 00 00 df 41 10 00 12 00 00 00 1b 42 10 00 1d 00 00 00 2e 42 10 00 44 00 00 00 | .A..;....A.......B.......B..D... |
| 10620 | 4c 42 10 00 51 00 00 00 91 42 10 00 41 00 00 00 e3 42 10 00 6a 00 00 00 25 43 10 00 66 00 00 00 | LB..Q....B..A....B..j...%C..f... |
| 10640 | 90 43 10 00 1c 00 00 00 f7 43 10 00 8d 00 00 00 14 44 10 00 d1 00 00 00 a2 44 10 00 1d 00 00 00 | .C.......C.......D.......D...... |
| 10660 | 74 45 10 00 e3 00 00 00 92 45 10 00 e4 00 00 00 76 46 10 00 24 00 00 00 5b 47 10 00 38 00 00 00 | tE.......E......vF..$...[G..8... |
| 10680 | 80 47 10 00 52 00 00 00 b9 47 10 00 1f 00 00 00 0c 48 10 00 8d 00 00 00 2c 48 10 00 5a 00 00 00 | .G..R....G.......H......,H..Z... |
| 106a0 | ba 48 10 00 1a 00 00 00 15 49 10 00 21 00 00 00 30 49 10 00 1d 00 00 00 52 49 10 00 22 00 00 00 | .H.......I..!...0I......RI.."... |
| 106c0 | 70 49 10 00 70 00 00 00 93 49 10 00 67 00 00 00 04 4a 10 00 72 00 00 00 6c 4a 10 00 69 00 00 00 | pI..p....I..g....J..r...lJ..i... |
| 106e0 | df 4a 10 00 29 00 00 00 49 4b 10 00 77 00 00 00 73 4b 10 00 73 00 00 00 eb 4b 10 00 90 00 00 00 | .J..)...IK..w...sK..s....K...... |
| 10700 | 5f 4c 10 00 91 00 00 00 f0 4c 10 00 53 00 00 00 82 4d 10 00 b6 00 00 00 d6 4d 10 00 b8 00 00 00 | _L.......L..S....M.......M...... |
| 10720 | 8d 4e 10 00 bd 00 00 00 46 4f 10 00 5c 00 00 00 04 50 10 00 1e 00 00 00 61 50 10 00 15 00 00 00 | .N......FO..\....P......aP...... |
| 10740 | 80 50 10 00 25 00 00 00 96 50 10 00 91 00 00 00 bc 50 10 00 92 00 00 00 4e 51 10 00 97 00 00 00 | .P..%....P.......P......NQ...... |
| 10760 | e1 51 10 00 54 00 00 00 79 52 10 00 b7 00 00 00 ce 52 10 00 b9 00 00 00 86 53 10 00 be 00 00 00 | .Q..T...yR.......R.......S...... |
| 10780 | 40 54 10 00 60 00 00 00 ff 54 10 00 24 00 00 00 60 55 10 00 cc 00 00 00 85 55 10 00 25 00 00 00 | @T..`....T..$...`U.......U..%... |
| 107a0 | 52 56 10 00 95 00 00 00 78 56 10 00 46 00 00 00 0e 57 10 00 2f 00 00 00 55 57 10 00 9a 00 00 00 | RV......xV..F....W../...UW...... |
| 107c0 | 85 57 10 00 61 00 00 00 20 58 10 00 48 00 00 00 82 58 10 00 5b 00 00 00 cb 58 10 00 1f 00 00 00 | .W..a....X..H....X..[....X...... |
| 107e0 | 27 59 10 00 30 00 00 00 47 59 10 00 3b 00 00 00 78 59 10 00 25 00 00 00 b4 59 10 00 28 00 00 00 | 'Y..0...GY..;...xY..%....Y..(... |
| 10800 | da 59 10 00 2e 00 00 00 03 5a 10 00 9e 00 00 00 32 5a 10 00 3e 00 00 00 d1 5a 10 00 11 00 00 00 | .Y.......Z......2Z..>....Z...... |
| 10820 | 10 5b 10 00 19 00 00 00 22 5b 10 00 7a 00 00 00 3c 5b 10 00 17 00 00 00 b7 5b 10 00 13 00 00 00 | .[......"[..z...<[.......[...... |
| 10840 | cf 5b 10 00 7e 00 00 00 e3 5b 10 00 81 00 00 00 62 5c 10 00 7d 00 00 00 e4 5c 10 00 83 00 00 00 | .[..~....[......b\..}....\...... |
| 10860 | 62 5d 10 00 11 00 00 00 e6 5d 10 00 10 00 00 00 f8 5d 10 00 33 00 00 00 09 5e 10 00 33 00 00 00 | b].......].......]..3....^..3... |
| 10880 | 3d 5e 10 00 33 00 00 00 71 5e 10 00 33 00 00 00 a5 5e 10 00 35 00 00 00 d9 5e 10 00 6a 00 00 00 | =^..3...q^..3....^..5....^..j... |
| 108a0 | 0f 5f 10 00 22 00 00 00 7a 5f 10 00 1e 01 00 00 9d 5f 10 00 33 00 00 00 bc 60 10 00 dd 00 00 00 | ._.."...z_......._..3....`...... |
| 108c0 | f0 60 10 00 17 01 00 00 ce 61 10 00 49 00 00 00 e6 62 10 00 06 00 00 00 30 63 10 00 11 00 00 00 | .`.......a..I....b......0c...... |
| 108e0 | 37 63 10 00 38 00 00 00 49 63 10 00 28 00 00 00 82 63 10 00 24 00 00 00 ab 63 10 00 17 00 00 00 | 7c..8...Ic..(....c..$....c...... |
| 10900 | d0 63 10 00 9d 00 00 00 e8 63 10 00 37 00 00 00 86 64 10 00 8a 00 00 00 be 64 10 00 89 00 00 00 | .c.......c..7....d.......d...... |
| 10920 | 49 65 10 00 5c 00 00 00 d3 65 10 00 cd 01 00 00 30 66 10 00 c2 00 00 00 fe 67 10 00 65 00 00 00 | Ie..\....e......0f.......g..e... |
| 10940 | c1 68 10 00 3f 00 00 00 27 69 10 00 43 00 00 00 67 69 10 00 0a 00 00 00 ab 69 10 00 b3 00 00 00 | .h..?...'i..C...gi.......i...... |
| 10960 | b6 69 10 00 8c 00 00 00 6a 6a 10 00 e8 00 00 00 f7 6a 10 00 21 00 00 00 e0 6b 10 00 05 00 00 00 | .i......jj.......j..!....k...... |
| 10980 | 02 6c 10 00 89 01 00 00 08 6c 10 00 8d 01 00 00 92 6d 10 00 1b 00 00 00 20 6f 10 00 ae 01 00 00 | .l.......l.......m.......o...... |
| 109a0 | 3c 6f 10 00 27 00 00 00 eb 70 10 00 09 00 00 00 13 71 10 00 fc 00 00 00 1d 71 10 00 79 01 00 00 | <o..'....p.......q.......q..y... |
| 109c0 | 1a 72 10 00 0f 00 00 00 94 73 10 00 6c 00 00 00 a4 73 10 00 70 00 00 00 11 74 10 00 35 00 00 00 | .r.......s..l....s..p....t..5... |
| 109e0 | 82 74 10 00 d4 00 00 00 b8 74 10 00 d4 00 00 00 8d 75 10 00 f4 00 00 00 62 76 10 00 24 00 00 00 | .t.......t.......u......bv..$... |
| 10a00 | 57 77 10 00 6f 00 00 00 7c 77 10 00 10 00 00 00 ec 77 10 00 c6 00 00 00 fd 77 10 00 30 00 00 00 | Ww..o...|w.......w.......w..0... |
| 10a20 | c4 78 10 00 30 00 00 00 f5 78 10 00 a3 00 00 00 26 79 10 00 a4 00 00 00 ca 79 10 00 1b 00 00 00 | .x..0....x......&y.......y...... |
| 10a40 | 6f 7a 10 00 25 00 00 00 8b 7a 10 00 38 00 00 00 b1 7a 10 00 22 00 00 00 ea 7a 10 00 65 00 00 00 | oz..%....z..8....z.."....z..e... |
| 10a60 | 0d 7b 10 00 80 00 00 00 73 7b 10 00 74 00 00 00 f4 7b 10 00 6a 00 00 00 69 7c 10 00 a9 00 00 00 | .{......s{..t....{..j...i|...... |
| 10a80 | d4 7c 10 00 01 00 00 00 7e 7d 10 00 03 00 00 00 80 7d 10 00 1f 00 00 00 84 7d 10 00 11 00 00 00 | .|......~}.......}.......}...... |
| 10aa0 | a4 7d 10 00 10 00 00 00 b6 7d 10 00 37 01 00 00 c7 7d 10 00 0b 00 00 00 ff 7e 10 00 0e 00 00 00 | .}.......}..7....}.......~...... |
| 10ac0 | 0b 7f 10 00 17 00 00 00 1a 7f 10 00 22 00 00 00 32 7f 10 00 05 00 00 00 55 7f 10 00 05 00 00 00 | ............"...2.......U....... |
| 10ae0 | 5b 7f 10 00 1b 00 00 00 61 7f 10 00 40 00 00 00 7d 7f 10 00 1b 00 00 00 be 7f 10 00 0c 00 00 00 | [.......a...@...}............... |
| 10b00 | da 7f 10 00 eb 00 00 00 e7 7f 10 00 03 00 00 00 d3 80 10 00 41 02 00 00 d7 80 10 00 ad 00 00 00 | ....................A........... |
| 10b20 | 19 83 10 00 1d 01 00 00 c7 83 10 00 0d 00 00 00 e5 84 10 00 91 00 00 00 f3 84 10 00 0b 00 00 00 | ................................ |
| 10b40 | 85 85 10 00 34 00 00 00 91 85 10 00 25 00 00 00 c6 85 10 00 16 00 00 00 ec 85 10 00 40 00 00 00 | ....4.......%...............@... |
| 10b60 | 03 86 10 00 23 00 00 00 44 86 10 00 1f 00 00 00 68 86 10 00 07 00 00 00 88 86 10 00 0f 00 00 00 | ....#...D.......h............... |
| 10b80 | 90 86 10 00 4b 00 00 00 a0 86 10 00 ab 01 00 00 ec 86 10 00 a3 00 00 00 98 88 10 00 13 00 00 00 | ....K........................... |
| 10ba0 | 3c 89 10 00 0f 00 00 00 50 89 10 00 1c 00 00 00 60 89 10 00 18 00 00 00 7d 89 10 00 23 00 00 00 | <.......P.......`.......}...#... |
| 10bc0 | 96 89 10 00 0f 00 00 00 ba 89 10 00 10 00 00 00 ca 89 10 00 0e 00 00 00 db 89 10 00 25 00 00 00 | ............................%... |
| 10be0 | ea 89 10 00 1a 00 00 00 10 8a 10 00 1d 00 00 00 2b 8a 10 00 18 00 00 00 49 8a 10 00 45 00 00 00 | ................+.......I...E... |
| 10c00 | 62 8a 10 00 16 00 00 00 a8 8a 10 00 43 00 00 00 bf 8a 10 00 25 00 00 00 03 8b 10 00 38 00 00 00 | b...........C.......%.......8... |
| 10c20 | 29 8b 10 00 36 00 00 00 62 8b 10 00 20 00 00 00 99 8b 10 00 13 00 00 00 ba 8b 10 00 1e 00 00 00 | )...6...b....................... |
| 10c40 | ce 8b 10 00 15 00 00 00 ed 8b 10 00 10 00 00 00 03 8c 10 00 ec 00 00 00 14 8c 10 00 eb 00 00 00 | ................................ |
| 10c60 | 01 8d 10 00 ba 00 00 00 ed 8d 10 00 ba 00 00 00 a8 8e 10 00 25 00 00 00 63 8f 10 00 89 00 00 00 | ....................%...c....... |
| 10c80 | 89 8f 10 00 13 00 00 00 13 90 10 00 1a 00 00 00 27 90 10 00 3a 00 00 00 42 90 10 00 81 01 00 00 | ................'...:...B....... |
| 10ca0 | 7d 90 10 00 47 00 00 00 ff 91 10 00 74 00 00 00 47 92 10 00 3a 00 00 00 bc 92 10 00 9d 00 00 00 | }...G.......t...G...:........... |
| 10cc0 | f7 92 10 00 7b 01 00 00 95 93 10 00 61 00 00 00 11 95 10 00 6c 00 00 00 73 95 10 00 06 00 00 00 | ....{.......a.......l...s....... |
| 10ce0 | e0 95 10 00 47 00 00 00 e7 95 10 00 44 00 00 00 2f 96 10 00 50 00 00 00 74 96 10 00 4c 00 00 00 | ....G.......D.../...P...t...L... |
| 10d00 | c5 96 10 00 37 00 00 00 12 97 10 00 07 01 00 00 4a 97 10 00 57 00 00 00 52 98 10 00 31 00 00 00 | ....7...........J...W...R...1... |
| 10d20 | aa 98 10 00 5b 00 00 00 dc 98 10 00 1f 00 00 00 38 99 10 00 62 00 00 00 58 99 10 00 2b 00 00 00 | ....[...........8...b...X...+... |
| 10d40 | bb 99 10 00 04 00 00 00 e7 99 10 00 16 00 00 00 ec 99 10 00 37 00 00 00 03 9a 10 00 38 01 00 00 | ....................7.......8... |
| 10d60 | 3b 9a 10 00 0d 00 00 00 74 9b 10 00 0d 00 00 00 82 9b 10 00 12 00 00 00 90 9b 10 00 0a 00 00 00 | ;.......t....................... |
| 10d80 | a3 9b 10 00 4e 00 00 00 ae 9b 10 00 08 01 00 00 fd 9b 10 00 24 01 00 00 06 9d 10 00 15 00 00 00 | ....N...............$........... |
| 10da0 | 2b 9e 10 00 9c 01 00 00 41 9e 10 00 5c 00 00 00 de 9f 10 00 a4 00 00 00 3b a0 10 00 16 00 00 00 | +.......A...\...........;....... |
| 10dc0 | e0 a0 10 00 8a 02 00 00 f7 a0 10 00 1d 00 00 00 82 a3 10 00 0c 00 00 00 a0 a3 10 00 1f 00 00 00 | ................................ |
| 10de0 | ad a3 10 00 43 00 00 00 cd a3 10 00 0d 00 00 00 11 a4 10 00 c1 00 00 00 1f a4 10 00 77 00 00 00 | ....C.......................w... |
| 10e00 | e1 a4 10 00 69 00 00 00 59 a5 10 00 62 00 00 00 c3 a5 10 00 76 00 00 00 26 a6 10 00 0e 01 00 00 | ....i...Y...b.......v...&....... |
| 10e20 | 9d a6 10 00 cb 00 00 00 ac a7 10 00 19 01 00 00 78 a8 10 00 43 00 00 00 92 a9 10 00 03 01 00 00 | ................x...C........... |
| 10e40 | d6 a9 10 00 ab 00 00 00 da aa 10 00 7b 00 00 00 86 ab 10 00 9a 00 00 00 02 ac 10 00 a6 00 00 00 | ............{................... |
| 10e60 | 9d ac 10 00 6e 01 00 00 44 ad 10 00 17 01 00 00 b3 ae 10 00 6f 00 00 00 cb af 10 00 7b 00 00 00 | ....n...D...........o.......{... |
| 10e80 | 3b b0 10 00 7d 00 00 00 b7 b0 10 00 12 01 00 00 35 b1 10 00 e6 00 00 00 48 b2 10 00 b6 00 00 00 | ;...}...........5.......H....... |
| 10ea0 | 2f b3 10 00 3c 01 00 00 e6 b3 10 00 b1 00 00 00 23 b5 10 00 fb 00 00 00 d5 b5 10 00 20 00 00 00 | /...<...........#............... |
| 10ec0 | d1 b6 10 00 a0 01 00 00 f2 b6 10 00 53 00 00 00 93 b8 10 00 39 00 00 00 e7 b8 10 00 28 00 00 00 | ............S.......9.......(... |
| 10ee0 | 21 b9 10 00 4a 00 00 00 4a b9 10 00 3b 00 00 00 95 b9 10 00 34 00 00 00 d1 b9 10 00 52 00 00 00 | !...J...J...;.......4.......R... |
| 10f00 | 06 ba 10 00 53 00 00 00 59 ba 10 00 52 00 00 00 ad ba 10 00 80 01 00 00 00 bb 10 00 36 00 00 00 | ....S...Y...R...............6... |
| 10f20 | 81 bc 10 00 23 00 00 00 b8 bc 10 00 0b 00 00 00 dc bc 10 00 ad 00 00 00 e8 bc 10 00 91 00 00 00 | ....#........................... |
| 10f40 | 96 bd 10 00 1b 02 00 00 28 be 10 00 f1 01 00 00 44 c0 10 00 e8 01 00 00 36 c2 10 00 0a 00 00 00 | ........(.......D.......6....... |
| 10f60 | 1f c4 10 00 1f 00 00 00 2a c4 10 00 71 00 00 00 4a c4 10 00 04 01 00 00 bc c4 10 00 07 00 00 00 | ........*...q...J............... |
| 10f80 | c1 c5 10 00 df 00 00 00 c9 c5 10 00 4a 01 00 00 a9 c6 10 00 45 01 00 00 f4 c7 10 00 22 00 00 00 | ............J.......E......."... |
| 10fa0 | 3a c9 10 00 79 01 00 00 5d c9 10 00 0c 00 00 00 d7 ca 10 00 a6 00 00 00 e4 ca 10 00 e9 00 00 00 | :...y...]....................... |
| 10fc0 | 8b cb 10 00 83 00 00 00 75 cc 10 00 19 00 00 00 f9 cc 10 00 0f 00 00 00 13 cd 10 00 09 00 00 00 | ........u....................... |
| 10fe0 | 23 cd 10 00 12 00 00 00 2d cd 10 00 0e 00 00 00 40 cd 10 00 12 00 00 00 4f cd 10 00 21 00 00 00 | #.......-.......@.......O...!... |
| 11000 | 62 cd 10 00 0e 00 00 00 84 cd 10 00 17 00 00 00 93 cd 10 00 14 00 00 00 ab cd 10 00 19 00 00 00 | b............................... |
| 11020 | c0 cd 10 00 14 00 00 00 da cd 10 00 06 00 00 00 ef cd 10 00 13 00 00 00 f6 cd 10 00 12 00 00 00 | ................................ |
| 11040 | 0a ce 10 00 0d 00 00 00 1d ce 10 00 6a 00 00 00 2b ce 10 00 17 00 00 00 96 ce 10 00 2e 00 00 00 | ............j...+............... |
| 11060 | ae ce 10 00 2d 00 00 00 dd ce 10 00 08 00 00 00 0b cf 10 00 16 00 00 00 14 cf 10 00 ea 00 00 00 | ....-........................... |
| 11080 | 2b cf 10 00 59 00 00 00 16 d0 10 00 19 00 00 00 70 d0 10 00 7e 00 00 00 8a d0 10 00 07 00 00 00 | +...Y...........p...~........... |
| 110a0 | 09 d1 10 00 2a 00 00 00 11 d1 10 00 4f 00 00 00 3c d1 10 00 17 00 00 00 8c d1 10 00 3b 00 00 00 | ....*.......O...<...........;... |
| 110c0 | a4 d1 10 00 60 00 00 00 e0 d1 10 00 87 01 00 00 41 d2 10 00 6e 00 00 00 c9 d3 10 00 24 00 00 00 | ....`...........A...n.......$... |
| 110e0 | 38 d4 10 00 54 00 00 00 5d d4 10 00 a4 01 00 00 b2 d4 10 00 8f 01 00 00 57 d6 10 00 24 00 00 00 | 8...T...]...............W...$... |
| 11100 | e7 d7 10 00 1f 00 00 00 0c d8 10 00 07 00 00 00 2c d8 10 00 1b 00 00 00 34 d8 10 00 08 00 00 00 | ................,.......4....... |
| 11120 | 50 d8 10 00 5c 00 00 00 59 d8 10 00 3c 00 00 00 b6 d8 10 00 3f 00 00 00 f3 d8 10 00 08 00 00 00 | P...\...Y...<.......?........... |
| 11140 | 33 d9 10 00 1b 00 00 00 3c d9 10 00 bc 00 00 00 58 d9 10 00 57 00 00 00 15 da 10 00 36 00 00 00 | 3.......<.......X...W.......6... |
| 11160 | 6d da 10 00 14 00 00 00 a4 da 10 00 3f 00 00 00 b9 da 10 00 3a 00 00 00 f9 da 10 00 75 00 00 00 | m...........?.......:.......u... |
| 11180 | 34 db 10 00 69 00 00 00 aa db 10 00 32 01 00 00 14 dc 10 00 36 01 00 00 47 dd 10 00 0c 00 00 00 | 4...i.......2.......6...G....... |
| 111a0 | 7e de 10 00 26 00 00 00 8b de 10 00 18 00 00 00 b2 de 10 00 2e 00 00 00 cb de 10 00 41 01 00 00 | ~...&.......................A... |
| 111c0 | fa de 10 00 03 00 00 00 3c e0 10 00 04 00 00 00 40 e0 10 00 14 00 00 00 45 e0 10 00 0c 00 00 00 | ........<.......@.......E....... |
| 111e0 | 5a e0 10 00 05 00 00 00 67 e0 10 00 0c 00 00 00 6d e0 10 00 0d 00 00 00 7a e0 10 00 0b 00 00 00 | Z.......g.......m.......z....... |
| 11200 | 88 e0 10 00 1c 00 00 00 94 e0 10 00 14 00 00 00 b1 e0 10 00 ae 00 00 00 c6 e0 10 00 25 00 00 00 | ............................%... |
| 11220 | 75 e1 10 00 46 00 00 00 9b e1 10 00 31 01 00 00 e2 e1 10 00 4f 00 00 00 14 e3 10 00 ca 00 00 00 | u...F.......1.......O........... |
| 11240 | 64 e3 10 00 43 00 00 00 2f e4 10 00 46 00 00 00 73 e4 10 00 0b 00 00 00 ba e4 10 00 0b 00 00 00 | d...C.../...F...s............... |
| 11260 | c6 e4 10 00 19 00 00 00 d2 e4 10 00 0f 00 00 00 ec e4 10 00 ba 01 00 00 fc e4 10 00 6a 00 00 00 | ............................j... |
| 11280 | b7 e6 10 00 13 00 00 00 22 e7 10 00 e4 00 00 00 36 e7 10 00 46 00 00 00 1b e8 10 00 88 01 00 00 | ........".......6...F........... |
| 112a0 | 62 e8 10 00 89 01 00 00 eb e9 10 00 38 00 00 00 75 eb 10 00 0b 00 00 00 ae eb 10 00 ce 00 00 00 | b...........8...u............... |
| 112c0 | ba eb 10 00 6c 00 00 00 89 ec 10 00 10 01 00 00 f6 ec 10 00 6e 00 00 00 07 ee 10 00 26 00 00 00 | ....l...............n.......&... |
| 112e0 | 76 ee 10 00 40 00 00 00 9d ee 10 00 a0 00 00 00 de ee 10 00 b9 00 00 00 7f ef 10 00 58 00 00 00 | v...@.......................X... |
| 11300 | 39 f0 10 00 64 00 00 00 92 f0 10 00 39 00 00 00 f7 f0 10 00 45 00 00 00 31 f1 10 00 4a 00 00 00 | 9...d.......9.......E...1...J... |
| 11320 | 77 f1 10 00 4b 00 00 00 c2 f1 10 00 56 00 00 00 0e f2 10 00 57 00 00 00 65 f2 10 00 96 00 00 00 | w...K.......V.......W...e....... |
| 11340 | bd f2 10 00 37 00 00 00 54 f3 10 00 8f 00 00 00 8c f3 10 00 06 00 00 00 1c f4 10 00 0f 00 00 00 | ....7...T....................... |
| 11360 | 23 f4 10 00 1b 00 00 00 33 f4 10 00 33 00 00 00 4f f4 10 00 56 00 00 00 83 f4 10 00 0b 00 00 00 | #.......3...3...O...V........... |
| 11380 | da f4 10 00 12 00 00 00 e6 f4 10 00 10 00 00 00 f9 f4 10 00 38 00 00 00 0a f5 10 00 48 01 00 00 | ....................8.......H... |
| 113a0 | 43 f5 10 00 15 00 00 00 8c f6 10 00 19 00 00 00 a2 f6 10 00 33 00 00 00 bc f6 10 00 1f 00 00 00 | C...................3........... |
| 113c0 | f0 f6 10 00 2e 00 00 00 10 f7 10 00 93 01 00 00 3f f7 10 00 0f 00 00 00 d3 f8 10 00 0a 00 00 00 | ................?............... |
| 113e0 | e3 f8 10 00 0a 00 00 00 ee f8 10 00 63 00 00 00 f9 f8 10 00 2f 00 00 00 5d f9 10 00 32 00 00 00 | ............c......./...]...2... |
| 11400 | 8d f9 10 00 4c 00 00 00 c0 f9 10 00 23 00 00 00 0d fa 10 00 64 00 00 00 31 fa 10 00 65 00 00 00 | ....L.......#.......d...1...e... |
| 11420 | 96 fa 10 00 6e 00 00 00 fc fa 10 00 29 00 00 00 6b fb 10 00 dd 00 00 00 95 fb 10 00 2d 00 00 00 | ....n.......)...k...........-... |
| 11440 | 73 fc 10 00 11 00 00 00 a1 fc 10 00 11 00 00 00 b3 fc 10 00 12 00 00 00 c5 fc 10 00 0c 00 00 00 | s............................... |
| 11460 | d8 fc 10 00 30 00 00 00 e5 fc 10 00 3f 00 00 00 16 fd 10 00 40 00 00 00 56 fd 10 00 04 01 00 00 | ....0.......?.......@...V....... |
| 11480 | 97 fd 10 00 a9 00 00 00 9c fe 10 00 18 00 00 00 46 ff 10 00 08 00 00 00 5f ff 10 00 46 00 00 00 | ................F......._...F... |
| 114a0 | 68 ff 10 00 4d 00 00 00 af ff 10 00 1f 00 00 00 fd ff 10 00 4f 00 00 00 1d 00 11 00 3d 00 00 00 | h...M...............O.......=... |
| 114c0 | 6d 00 11 00 2e 00 00 00 ab 00 11 00 35 00 00 00 da 00 11 00 08 00 00 00 10 01 11 00 0e 00 00 00 | m...........5................... |
| 114e0 | 19 01 11 00 84 01 00 00 28 01 11 00 8c 00 00 00 ad 02 11 00 fb 00 00 00 3a 03 11 00 11 00 00 00 | ........(...............:....... |
| 11500 | 36 04 11 00 0e 01 00 00 48 04 11 00 3a 00 00 00 57 05 11 00 09 00 00 00 92 05 11 00 38 00 00 00 | 6.......H...:...W...........8... |
| 11520 | 9c 05 11 00 bd 00 00 00 d5 05 11 00 30 00 00 00 93 06 11 00 31 00 00 00 c4 06 11 00 24 00 00 00 | ............0.......1.......$... |
| 11540 | f6 06 11 00 28 00 00 00 1b 07 11 00 23 00 00 00 44 07 11 00 20 00 00 00 68 07 11 00 21 00 00 00 | ....(.......#...D.......h...!... |
| 11560 | 89 07 11 00 3a 00 00 00 ab 07 11 00 1f 00 00 00 e6 07 11 00 32 00 00 00 06 08 11 00 26 00 00 00 | ....:...............2.......&... |
| 11580 | 39 08 11 00 13 00 00 00 60 08 11 00 41 00 00 00 74 08 11 00 a0 00 00 00 b6 08 11 00 3e 00 00 00 | 9.......`...A...t...........>... |
| 115a0 | 57 09 11 00 1f 00 00 00 96 09 11 00 ce 00 00 00 b6 09 11 00 4c 01 00 00 85 0a 11 00 36 01 00 00 | W...................L.......6... |
| 115c0 | d2 0b 11 00 21 00 00 00 09 0d 11 00 1e 00 00 00 2b 0d 11 00 0e 00 00 00 4a 0d 11 00 03 00 00 00 | ....!...........+.......J....... |
| 115e0 | 59 0d 11 00 39 00 00 00 5d 0d 11 00 2f 00 00 00 97 0d 11 00 b8 00 00 00 c7 0d 11 00 24 00 00 00 | Y...9...].../...............$... |
| 11600 | 80 0e 11 00 49 00 00 00 a5 0e 11 00 03 00 00 00 ef 0e 11 00 24 00 00 00 f3 0e 11 00 03 00 00 00 | ....I...............$........... |
| 11620 | 18 0f 11 00 06 00 00 00 1c 0f 11 00 0c 00 00 00 23 0f 11 00 18 00 00 00 30 0f 11 00 17 00 00 00 | ................#.......0....... |
| 11640 | 49 0f 11 00 15 00 00 00 61 0f 11 00 22 00 00 00 77 0f 11 00 4c 00 00 00 9a 0f 11 00 45 00 00 00 | I.......a..."...w...L.......E... |
| 11660 | e7 0f 11 00 98 00 00 00 2d 10 11 00 15 00 00 00 c6 10 11 00 05 01 00 00 dc 10 11 00 73 00 00 00 | ........-...................s... |
| 11680 | e2 11 11 00 8b 00 00 00 56 12 11 00 04 00 00 00 e2 12 11 00 b5 00 00 00 e7 12 11 00 53 01 00 00 | ........V...................S... |
| 116a0 | 9d 13 11 00 20 00 00 00 f1 14 11 00 03 00 00 00 12 15 11 00 21 00 00 00 16 15 11 00 21 00 00 00 | ....................!.......!... |
| 116c0 | 38 15 11 00 04 00 00 00 5a 15 11 00 15 00 00 00 5f 15 11 00 e1 00 00 00 75 15 11 00 08 00 00 00 | 8.......Z......._.......u....... |
| 116e0 | 57 16 11 00 0d 00 00 00 60 16 11 00 c3 00 00 00 6e 16 11 00 20 00 00 00 32 17 11 00 21 00 00 00 | W.......`.......n.......2...!... |
| 11700 | 53 17 11 00 0c 00 00 00 75 17 11 00 0a 00 00 00 82 17 11 00 47 00 00 00 8d 17 11 00 44 00 00 00 | S.......u...........G.......D... |
| 11720 | d5 17 11 00 45 00 00 00 1a 18 11 00 72 00 00 00 60 18 11 00 dc 00 00 00 d3 18 11 00 0e 00 00 00 | ....E.......r...`............... |
| 11740 | b0 19 11 00 4f 00 00 00 bf 19 11 00 6a 00 00 00 0f 1a 11 00 50 00 00 00 7a 1a 11 00 0e 00 00 00 | ....O.......j.......P...z....... |
| 11760 | cb 1a 11 00 0b 00 00 00 da 1a 11 00 1f 00 00 00 e6 1a 11 00 41 00 00 00 06 1b 11 00 13 04 00 00 | ....................A........... |
| 11780 | 48 1b 11 00 87 00 00 00 5c 1f 11 00 25 00 00 00 e4 1f 11 00 0c 00 00 00 0a 20 11 00 16 00 00 00 | H.......\...%................... |
| 117a0 | 17 20 11 00 2f 01 00 00 2e 20 11 00 96 00 00 00 5e 21 11 00 1e 00 00 00 f5 21 11 00 1c 00 00 00 | ..../...........^!.......!...... |
| 117c0 | 14 22 11 00 ad 01 00 00 31 22 11 00 45 00 00 00 df 23 11 00 16 00 00 00 25 24 11 00 35 00 00 00 | ."......1"..E....#......%$..5... |
| 117e0 | 3c 24 11 00 3b 00 00 00 72 24 11 00 4a 00 00 00 ae 24 11 00 54 00 00 00 f9 24 11 00 73 00 00 00 | <$..;...r$..J....$..T....$..s... |
| 11800 | 4e 25 11 00 4c 00 00 00 c2 25 11 00 0d 00 00 00 0f 26 11 00 23 00 00 00 1d 26 11 00 23 00 00 00 | N%..L....%.......&..#....&..#... |
| 11820 | 41 26 11 00 21 00 00 00 65 26 11 00 15 00 00 00 87 26 11 00 0b 00 00 00 9d 26 11 00 10 00 00 00 | A&..!...e&.......&.......&...... |
| 11840 | a9 26 11 00 0f 00 00 00 ba 26 11 00 0a 00 00 00 ca 26 11 00 1e 00 00 00 d5 26 11 00 0b 00 00 00 | .&.......&.......&.......&...... |
| 11860 | f4 26 11 00 1f 00 00 00 00 27 11 00 15 00 00 00 20 27 11 00 48 00 00 00 36 27 11 00 4e 00 00 00 | .&.......'.......'..H...6'..N... |
| 11880 | 7f 27 11 00 0b 00 00 00 ce 27 11 00 3d 00 00 00 da 27 11 00 25 00 00 00 18 28 11 00 29 00 00 00 | .'.......'..=....'..%....(..)... |
| 118a0 | 3e 28 11 00 11 00 00 00 68 28 11 00 76 00 00 00 7a 28 11 00 43 00 00 00 f1 28 11 00 6b 00 00 00 | >(......h(..v...z(..C....(..k... |
| 118c0 | 35 29 11 00 0c 00 00 00 a1 29 11 00 20 00 00 00 ae 29 11 00 0d 00 00 00 cf 29 11 00 63 00 00 00 | 5).......).......).......)..c... |
| 118e0 | dd 29 11 00 05 00 00 00 41 2a 11 00 0d 00 00 00 47 2a 11 00 6c 00 00 00 55 2a 11 00 8a 00 00 00 | .)......A*......G*..l...U*...... |
| 11900 | c2 2a 11 00 0e 00 00 00 4d 2b 11 00 81 00 00 00 5c 2b 11 00 07 00 00 00 de 2b 11 00 1a 00 00 00 | .*......M+......\+.......+...... |
| 11920 | e6 2b 11 00 27 00 00 00 01 2c 11 00 19 00 00 00 29 2c 11 00 1e 00 00 00 43 2c 11 00 17 00 00 00 | .+..'....,......),......C,...... |
| 11940 | 62 2c 11 00 1f 00 00 00 7a 2c 11 00 40 00 00 00 9a 2c 11 00 6d 00 00 00 db 2c 11 00 58 00 00 00 | b,......z,..@....,..m....,..X... |
| 11960 | 49 2d 11 00 e4 00 00 00 a2 2d 11 00 0c 00 00 00 87 2e 11 00 0b 00 00 00 94 2e 11 00 10 00 00 00 | I-.......-...................... |
| 11980 | a0 2e 11 00 3d 00 00 00 b1 2e 11 00 39 00 00 00 ef 2e 11 00 40 00 00 00 29 2f 11 00 0d 00 00 00 | ....=.......9.......@...)/...... |
| 119a0 | 6a 2f 11 00 0b 00 00 00 78 2f 11 00 1f 00 00 00 84 2f 11 00 0f 00 00 00 a4 2f 11 00 0f 00 00 00 | j/......x/......./......./...... |
| 119c0 | b4 2f 11 00 1d 00 00 00 c4 2f 11 00 09 00 00 00 e2 2f 11 00 10 00 00 00 ec 2f 11 00 14 00 00 00 | ./......./......./......./...... |
| 119e0 | fd 2f 11 00 1d 00 00 00 12 30 11 00 0f 00 00 00 30 30 11 00 1d 00 00 00 40 30 11 00 17 00 00 00 | ./.......0......00......@0...... |
| 11a00 | 5e 30 11 00 d0 01 00 00 76 30 11 00 2e 00 00 00 47 32 11 00 7d 00 00 00 76 32 11 00 c1 00 00 00 | ^0......v0......G2..}...v2...... |
| 11a20 | f4 32 11 00 0c 00 00 00 b6 33 11 00 13 00 00 00 c3 33 11 00 15 00 00 00 d7 33 11 00 0f 00 00 00 | .2.......3.......3.......3...... |
| 11a40 | ed 33 11 00 67 00 00 00 fd 33 11 00 56 00 00 00 65 34 11 00 11 00 00 00 bc 34 11 00 c1 00 00 00 | .3..g....3..V...e4.......4...... |
| 11a60 | ce 34 11 00 59 00 00 00 90 35 11 00 c6 00 00 00 ea 35 11 00 07 00 00 00 b1 36 11 00 07 00 00 00 | .4..Y....5.......5.......6...... |
| 11a80 | b9 36 11 00 35 00 00 00 c1 36 11 00 69 00 00 00 f7 36 11 00 6c 00 00 00 61 37 11 00 2b 00 00 00 | .6..5....6..i....6..l...a7..+... |
| 11aa0 | ce 37 11 00 7c 00 00 00 fa 37 11 00 69 00 00 00 77 38 11 00 0b 00 00 00 e1 38 11 00 09 00 00 00 | .7..|....7..i...w8.......8...... |
| 11ac0 | ed 38 11 00 11 00 00 00 f7 38 11 00 05 00 00 00 09 39 11 00 ad 00 00 00 0f 39 11 00 4c 00 00 00 | .8.......8.......9.......9..L... |
| 11ae0 | bd 39 11 00 12 00 00 00 0a 3a 11 00 04 00 00 00 1d 3a 11 00 06 00 00 00 22 3a 11 00 06 00 00 00 | .9.......:.......:......":...... |
| 11b00 | 29 3a 11 00 04 00 00 00 30 3a 11 00 0f 00 00 00 35 3a 11 00 16 00 00 00 45 3a 11 00 d7 00 00 00 | ):......0:......5:......E:...... |
| 11b20 | 5c 3a 11 00 fd 00 00 00 34 3b 11 00 65 01 00 00 32 3c 11 00 06 00 00 00 98 3d 11 00 f4 00 00 00 | \:......4;..e...2<.......=...... |
| 11b40 | 9f 3d 11 00 00 01 00 00 94 3e 11 00 06 00 00 00 95 3f 11 00 0b 02 00 00 9c 3f 11 00 e3 01 00 00 | .=.......>.......?.......?...... |
| 11b60 | a8 41 11 00 e2 01 00 00 8c 43 11 00 03 00 00 00 6f 45 11 00 27 00 00 00 73 45 11 00 18 00 00 00 | .A.......C......oE..'...sE...... |
| 11b80 | 9b 45 11 00 0a 00 00 00 b4 45 11 00 7b 01 00 00 bf 45 11 00 40 00 00 00 3b 47 11 00 a9 01 00 00 | .E.......E..{....E..@...;G...... |
| 11ba0 | 7c 47 11 00 30 00 00 00 26 49 11 00 0c 00 00 00 57 49 11 00 10 00 00 00 64 49 11 00 1b 00 00 00 | |G..0...&I......WI......dI...... |
| 11bc0 | 75 49 11 00 2e 00 00 00 91 49 11 00 0b 00 00 00 c0 49 11 00 13 00 00 00 cc 49 11 00 0b 00 00 00 | uI.......I.......I.......I...... |
| 11be0 | e0 49 11 00 2e 00 00 00 ec 49 11 00 46 00 00 00 1b 4a 11 00 0d 00 00 00 62 4a 11 00 0b 00 00 00 | .I.......I..F....J......bJ...... |
| 11c00 | 70 4a 11 00 58 01 00 00 7c 4a 11 00 88 00 00 00 d5 4b 11 00 62 00 00 00 5e 4c 11 00 45 00 00 00 | pJ..X...|J.......K..b...^L..E... |
| 11c20 | c1 4c 11 00 29 00 00 00 07 4d 11 00 96 00 00 00 31 4d 11 00 10 00 00 00 c8 4d 11 00 2f 00 00 00 | .L..)....M......1M.......M../... |
| 11c40 | d9 4d 11 00 33 00 00 00 09 4e 11 00 43 00 00 00 3d 4e 11 00 37 00 00 00 81 4e 11 00 49 00 00 00 | .M..3....N..C...=N..7....N..I... |
| 11c60 | b9 4e 11 00 3b 00 00 00 03 4f 11 00 3e 00 00 00 3f 4f 11 00 4a 00 00 00 7e 4f 11 00 4d 00 00 00 | .N..;....O..>...?O..J...~O..M... |
| 11c80 | c9 4f 11 00 09 00 00 00 17 50 11 00 a8 00 00 00 21 50 11 00 6b 00 00 00 ca 50 11 00 3a 00 00 00 | .O.......P......!P..k....P..:... |
| 11ca0 | 36 51 11 00 08 00 00 00 71 51 11 00 20 00 00 00 7a 51 11 00 28 00 00 00 9b 51 11 00 4b 00 00 00 | 6Q......qQ......zQ..(....Q..K... |
| 11cc0 | c4 51 11 00 0f 00 00 00 10 52 11 00 26 01 00 00 20 52 11 00 5b 01 00 00 47 53 11 00 87 00 00 00 | .Q.......R..&....R..[...GS...... |
| 11ce0 | a3 54 11 00 86 00 00 00 2b 55 11 00 ce 01 00 00 b2 55 11 00 18 00 00 00 81 57 11 00 51 00 00 00 | .T......+U.......U.......W..Q... |
| 11d00 | 9a 57 11 00 f2 00 00 00 ec 57 11 00 0e 00 00 00 df 58 11 00 34 00 00 00 ee 58 11 00 36 00 00 00 | .W.......W.......X..4....X..6... |
| 11d20 | 23 59 11 00 bd 00 00 00 5a 59 11 00 7e 00 00 00 18 5a 11 00 82 00 00 00 97 5a 11 00 33 00 00 00 | #Y......ZY..~....Z.......Z..3... |
| 11d40 | 1a 5b 11 00 0e 00 00 00 4e 5b 11 00 dd 00 00 00 5d 5b 11 00 06 00 00 00 3b 5c 11 00 12 00 00 00 | .[......N[......][......;\...... |
| 11d60 | 42 5c 11 00 14 00 00 00 55 5c 11 00 0b 00 00 00 6a 5c 11 00 0c 00 00 00 76 5c 11 00 0d 00 00 00 | B\......U\......j\......v\...... |
| 11d80 | 83 5c 11 00 14 00 00 00 91 5c 11 00 42 00 00 00 a6 5c 11 00 07 00 00 00 e9 5c 11 00 07 00 00 00 | .\.......\..B....\.......\...... |
| 11da0 | f1 5c 11 00 c7 00 00 00 f9 5c 11 00 29 00 00 00 c1 5d 11 00 28 00 00 00 eb 5d 11 00 23 00 00 00 | .\.......\..)....]..(....]..#... |
| 11dc0 | 14 5e 11 00 14 00 00 00 38 5e 11 00 20 00 00 00 4d 5e 11 00 18 00 00 00 6e 5e 11 00 28 00 00 00 | .^......8^......M^......n^..(... |
| 11de0 | 87 5e 11 00 1d 00 00 00 b0 5e 11 00 29 00 00 00 ce 5e 11 00 1e 00 00 00 f8 5e 11 00 30 00 00 00 | .^.......^..)....^.......^..0... |
| 11e00 | 17 5f 11 00 4b 00 00 00 48 5f 11 00 6e 00 00 00 94 5f 11 00 2d 00 00 00 03 60 11 00 2d 00 00 00 | ._..K...H_..n...._..-....`..-... |
| 11e20 | 31 60 11 00 35 00 00 00 5f 60 11 00 16 00 00 00 95 60 11 00 1c 00 00 00 ac 60 11 00 1b 00 00 00 | 1`..5..._`.......`.......`...... |
| 11e40 | c9 60 11 00 21 00 00 00 e5 60 11 00 41 00 00 00 07 61 11 00 35 00 00 00 49 61 11 00 97 00 00 00 | .`..!....`..A....a..5...Ia...... |
| 11e60 | 7f 61 11 00 4e 00 00 00 17 62 11 00 1d 00 00 00 66 62 11 00 4c 00 00 00 84 62 11 00 17 00 00 00 | .a..N....b......fb..L....b...... |
| 11e80 | d1 62 11 00 1f 00 00 00 e9 62 11 00 21 00 00 00 09 63 11 00 1b 00 00 00 2b 63 11 00 41 00 00 00 | .b.......b..!....c......+c..A... |
| 11ea0 | 47 63 11 00 24 00 00 00 89 63 11 00 31 00 00 00 ae 63 11 00 47 00 00 00 e0 63 11 00 4f 00 00 00 | Gc..$....c..1....c..G....c..O... |
| 11ec0 | 28 64 11 00 45 00 00 00 78 64 11 00 7c 00 00 00 be 64 11 00 26 00 00 00 3b 65 11 00 43 00 00 00 | (d..E...xd..|....d..&...;e..C... |
| 11ee0 | 62 65 11 00 4c 00 00 00 a6 65 11 00 3c 00 00 00 f3 65 11 00 39 00 00 00 30 66 11 00 4a 00 00 00 | be..L....e..<....e..9...0f..J... |
| 11f00 | 6a 66 11 00 82 00 00 00 b5 66 11 00 5a 00 00 00 38 67 11 00 1a 00 00 00 93 67 11 00 2a 00 00 00 | jf.......f..Z...8g.......g..*... |
| 11f20 | ae 67 11 00 1c 00 00 00 d9 67 11 00 37 00 00 00 f6 67 11 00 49 00 00 00 2e 68 11 00 3f 00 00 00 | .g.......g..7....g..I....h..?... |
| 11f40 | 78 68 11 00 47 00 00 00 b8 68 11 00 42 00 00 00 00 69 11 00 28 00 00 00 43 69 11 00 2a 00 00 00 | xh..G....h..B....i..(...Ci..*... |
| 11f60 | 6c 69 11 00 2d 00 00 00 97 69 11 00 30 00 00 00 c5 69 11 00 2d 00 00 00 f6 69 11 00 2c 00 00 00 | li..-....i..0....i..-....i..,... |
| 11f80 | 24 6a 11 00 19 00 00 00 51 6a 11 00 29 00 00 00 6b 6a 11 00 30 00 00 00 95 6a 11 00 24 00 00 00 | $j......Qj..)...kj..0....j..$... |
| 11fa0 | c6 6a 11 00 2b 00 00 00 eb 6a 11 00 29 00 00 00 17 6b 11 00 35 00 00 00 41 6b 11 00 2a 00 00 00 | .j..+....j..)....k..5...Ak..*... |
| 11fc0 | 77 6b 11 00 10 00 00 00 a2 6b 11 00 2b 00 00 00 b3 6b 11 00 55 00 00 00 df 6b 11 00 3c 00 00 00 | wk.......k..+....k..U....k..<... |
| 11fe0 | 35 6c 11 00 90 00 00 00 72 6c 11 00 1a 00 00 00 03 6d 11 00 72 00 00 00 1e 6d 11 00 14 00 00 00 | 5l......rl.......m..r....m...... |
| 12000 | 91 6d 11 00 4c 00 00 00 a6 6d 11 00 1f 00 00 00 f3 6d 11 00 71 00 00 00 13 6e 11 00 6b 00 00 00 | .m..L....m.......m..q....n..k... |
| 12020 | 85 6e 11 00 5b 00 00 00 f1 6e 11 00 2c 00 00 00 4d 6f 11 00 4e 00 00 00 7a 6f 11 00 2a 00 00 00 | .n..[....n..,...Mo..N...zo..*... |
| 12040 | c9 6f 11 00 a0 00 00 00 f4 6f 11 00 65 00 00 00 95 70 11 00 27 01 00 00 fb 70 11 00 d0 00 00 00 | .o.......o..e....p..'....p...... |
| 12060 | 23 72 11 00 d8 00 00 00 f4 72 11 00 3f 00 00 00 cd 73 11 00 38 00 00 00 0d 74 11 00 46 00 00 00 | #r.......r..?....s..8....t..F... |
| 12080 | 46 74 11 00 40 00 00 00 8d 74 11 00 53 00 00 00 ce 74 11 00 45 00 00 00 22 75 11 00 26 01 00 00 | Ft..@....t..S....t..E..."u..&... |
| 120a0 | 68 75 11 00 f1 00 00 00 8f 76 11 00 48 00 00 00 81 77 11 00 49 00 00 00 ca 77 11 00 d0 00 00 00 | hu.......v..H....w..I....w...... |
| 120c0 | 14 78 11 00 24 00 00 00 e5 78 11 00 16 00 00 00 0a 79 11 00 60 00 00 00 21 79 11 00 50 00 00 00 | .x..$....x.......y..`...!y..P... |
| 120e0 | 82 79 11 00 27 00 00 00 d3 79 11 00 18 00 00 00 fb 79 11 00 49 00 00 00 14 7a 11 00 52 00 00 00 | .y..'....y.......y..I....z..R... |
| 12100 | 5e 7a 11 00 58 00 00 00 b1 7a 11 00 3d 00 00 00 0a 7b 11 00 25 00 00 00 48 7b 11 00 26 00 00 00 | ^z..X....z..=....{..%...H{..&... |
| 12120 | 6e 7b 11 00 2a 00 00 00 95 7b 11 00 23 00 00 00 c0 7b 11 00 47 00 00 00 e4 7b 11 00 a4 00 00 00 | n{..*....{..#....{..G....{...... |
| 12140 | 2c 7c 11 00 aa 00 00 00 d1 7c 11 00 55 00 00 00 7c 7d 11 00 f4 00 00 00 d2 7d 11 00 44 00 00 00 | ,|.......|..U...|}.......}..D... |
| 12160 | c7 7e 11 00 61 00 00 00 0c 7f 11 00 54 00 00 00 6e 7f 11 00 3c 00 00 00 c3 7f 11 00 6d 00 00 00 | .~..a.......T...n...<.......m... |
| 12180 | 00 80 11 00 6a 00 00 00 6e 80 11 00 43 00 00 00 d9 80 11 00 5c 00 00 00 1d 81 11 00 34 00 00 00 | ....j...n...C.......\.......4... |
| 121a0 | 7a 81 11 00 a4 00 00 00 af 81 11 00 a8 00 00 00 54 82 11 00 e8 00 00 00 fd 82 11 00 ec 00 00 00 | z...............T............... |
| 121c0 | e6 83 11 00 3e 00 00 00 d3 84 11 00 39 00 00 00 12 85 11 00 21 00 00 00 4c 85 11 00 2c 00 00 00 | ....>.......9.......!...L...,... |
| 121e0 | 6e 85 11 00 34 00 00 00 9b 85 11 00 23 00 00 00 d0 85 11 00 55 00 00 00 f4 85 11 00 56 00 00 00 | n...4.......#.......U.......V... |
| 12200 | 4a 86 11 00 35 00 00 00 a1 86 11 00 2a 00 00 00 d7 86 11 00 66 00 00 00 02 87 11 00 7b 00 00 00 | J...5.......*.......f.......{... |
| 12220 | 69 87 11 00 41 00 00 00 e5 87 11 00 42 00 00 00 27 88 11 00 41 00 00 00 6a 88 11 00 56 00 00 00 | i...A.......B...'...A...j...V... |
| 12240 | ac 88 11 00 35 00 00 00 03 89 11 00 2b 00 00 00 39 89 11 00 2f 00 00 00 65 89 11 00 22 00 00 00 | ....5.......+...9.../...e..."... |
| 12260 | 95 89 11 00 44 00 00 00 b8 89 11 00 63 00 00 00 fd 89 11 00 56 00 00 00 61 8a 11 00 4d 00 00 00 | ....D.......c.......V...a...M... |
| 12280 | b8 8a 11 00 34 00 00 00 06 8b 11 00 3f 00 00 00 3b 8b 11 00 79 01 00 00 7b 8b 11 00 df 00 00 00 | ....4.......?...;...y...{....... |
| 122a0 | f5 8c 11 00 f0 00 00 00 d5 8d 11 00 df 00 00 00 c6 8e 11 00 54 00 00 00 a6 8f 11 00 32 00 00 00 | ....................T.......2... |
| 122c0 | fb 8f 11 00 0c 01 00 00 2e 90 11 00 59 00 00 00 3b 91 11 00 4e 00 00 00 95 91 11 00 26 01 00 00 | ............Y...;...N.......&... |
| 122e0 | e4 91 11 00 4a 00 00 00 0b 93 11 00 1a 00 00 00 56 93 11 00 2f 00 00 00 71 93 11 00 a4 00 00 00 | ....J...........V.../...q....... |
| 12300 | a1 93 11 00 3a 00 00 00 46 94 11 00 81 00 00 00 81 94 11 00 3a 00 00 00 03 95 11 00 2a 00 00 00 | ....:...F...........:.......*... |
| 12320 | 3e 95 11 00 1d 01 00 00 69 95 11 00 2d 00 00 00 87 96 11 00 21 00 00 00 b5 96 11 00 26 00 00 00 | >.......i...-.......!.......&... |
| 12340 | d7 96 11 00 af 00 00 00 fe 96 11 00 63 00 00 00 ae 97 11 00 ce 00 00 00 12 98 11 00 53 00 00 00 | ............c...............S... |
| 12360 | e1 98 11 00 44 00 00 00 35 99 11 00 33 00 00 00 7a 99 11 00 45 00 00 00 ae 99 11 00 34 00 00 00 | ....D...5...3...z...E.......4... |
| 12380 | f4 99 11 00 7a 00 00 00 29 9a 11 00 32 00 00 00 a4 9a 11 00 27 00 00 00 d7 9a 11 00 46 00 00 00 | ....z...)...2.......'.......F... |
| 123a0 | ff 9a 11 00 2e 00 00 00 46 9b 11 00 44 00 00 00 75 9b 11 00 60 00 00 00 ba 9b 11 00 27 00 00 00 | ........F...D...u...`.......'... |
| 123c0 | 1b 9c 11 00 5b 00 00 00 43 9c 11 00 78 00 00 00 9f 9c 11 00 5f 00 00 00 18 9d 11 00 5b 00 00 00 | ....[...C...x......._.......[... |
| 123e0 | 78 9d 11 00 1b 00 00 00 d4 9d 11 00 0c 00 00 00 f0 9d 11 00 b4 01 00 00 fd 9d 11 00 11 00 00 00 | x............................... |
| 12400 | b2 9f 11 00 12 00 00 00 c4 9f 11 00 ed 00 00 00 d7 9f 11 00 17 00 00 00 c5 a0 11 00 18 00 00 00 | ................................ |
| 12420 | dd a0 11 00 12 00 00 00 f6 a0 11 00 35 00 00 00 09 a1 11 00 26 00 00 00 3f a1 11 00 2c 00 00 00 | ............5.......&...?...,... |
| 12440 | 66 a1 11 00 75 00 00 00 93 a1 11 00 41 00 00 00 09 a2 11 00 41 00 00 00 4b a2 11 00 6f 00 00 00 | f...u.......A.......A...K...o... |
| 12460 | 8d a2 11 00 9f 00 00 00 fd a2 11 00 a1 00 00 00 9d a3 11 00 7f 00 00 00 3f a4 11 00 77 00 00 00 | ........................?...w... |
| 12480 | bf a4 11 00 08 00 00 00 37 a5 11 00 0e 00 00 00 40 a5 11 00 06 00 00 00 4f a5 11 00 15 00 00 00 | ........7.......@.......O....... |
| 124a0 | 56 a5 11 00 27 00 00 00 6c a5 11 00 ee 00 00 00 94 a5 11 00 eb 00 00 00 83 a6 11 00 04 00 00 00 | V...'...l....................... |
| 124c0 | 6f a7 11 00 16 00 00 00 74 a7 11 00 20 00 00 00 8b a7 11 00 22 00 00 00 ac a7 11 00 11 00 00 00 | o.......t..........."........... |
| 124e0 | cf a7 11 00 3a 00 00 00 e1 a7 11 00 20 00 00 00 1c a8 11 00 14 00 00 00 3d a8 11 00 55 00 00 00 | ....:...................=...U... |
| 12500 | 52 a8 11 00 28 00 00 00 a8 a8 11 00 88 00 00 00 d1 a8 11 00 16 00 00 00 5a a9 11 00 16 00 00 00 | R...(...................Z....... |
| 12520 | 71 a9 11 00 18 00 00 00 88 a9 11 00 26 00 00 00 a1 a9 11 00 1a 00 00 00 c8 a9 11 00 27 00 00 00 | q...........&...............'... |
| 12540 | e3 a9 11 00 23 00 00 00 0b aa 11 00 17 00 00 00 2f aa 11 00 21 00 00 00 47 aa 11 00 5d 00 00 00 | ....#.........../...!...G...]... |
| 12560 | 69 aa 11 00 28 00 00 00 c7 aa 11 00 49 00 00 00 f0 aa 11 00 44 00 00 00 3a ab 11 00 25 00 00 00 | i...(.......I.......D...:...%... |
| 12580 | 7f ab 11 00 21 00 00 00 a5 ab 11 00 12 00 00 00 c7 ab 11 00 30 00 00 00 da ab 11 00 2f 00 00 00 | ....!...............0......./... |
| 125a0 | 0b ac 11 00 2f 00 00 00 3b ac 11 00 4d 00 00 00 6b ac 11 00 56 00 00 00 b9 ac 11 00 34 00 00 00 | ..../...;...M...k...V.......4... |
| 125c0 | 10 ad 11 00 2f 00 00 00 45 ad 11 00 3a 00 00 00 75 ad 11 00 32 00 00 00 b0 ad 11 00 3f 00 00 00 | ..../...E...:...u...2.......?... |
| 125e0 | e3 ad 11 00 a2 00 00 00 23 ae 11 00 21 00 00 00 c6 ae 11 00 0d 00 00 00 e8 ae 11 00 4a 00 00 00 | ........#...!...............J... |
| 12600 | f6 ae 11 00 2e 00 00 00 41 af 11 00 2e 00 00 00 70 af 11 00 2e 00 00 00 9f af 11 00 1f 00 00 00 | ........A.......p............... |
| 12620 | ce af 11 00 41 00 00 00 ee af 11 00 3c 00 00 00 30 b0 11 00 5b 00 00 00 6d b0 11 00 30 00 00 00 | ....A.......<...0...[...m...0... |
| 12640 | c9 b0 11 00 3f 00 00 00 fa b0 11 00 38 00 00 00 3a b1 11 00 2d 00 00 00 73 b1 11 00 52 00 00 00 | ....?.......8...:...-...s...R... |
| 12660 | a1 b1 11 00 39 00 00 00 f4 b1 11 00 3b 00 00 00 2e b2 11 00 4a 00 00 00 6a b2 11 00 2d 00 00 00 | ....9.......;.......J...j...-... |
| 12680 | b5 b2 11 00 3d 00 00 00 e3 b2 11 00 13 00 00 00 21 b3 11 00 24 00 00 00 35 b3 11 00 20 00 00 00 | ....=...........!...$...5....... |
| 126a0 | 5a b3 11 00 29 00 00 00 7b b3 11 00 2b 00 00 00 a5 b3 11 00 38 00 00 00 d1 b3 11 00 3a 00 00 00 | Z...)...{...+.......8.......:... |
| 126c0 | 0a b4 11 00 3a 00 00 00 45 b4 11 00 30 00 00 00 80 b4 11 00 27 00 00 00 b1 b4 11 00 8d 00 00 00 | ....:...E...0.......'........... |
| 126e0 | d9 b4 11 00 8d 00 00 00 67 b5 11 00 2f 00 00 00 f5 b5 11 00 2a 00 00 00 25 b6 11 00 19 00 00 00 | ........g.../.......*...%....... |
| 12700 | 50 b6 11 00 5e 00 00 00 6a b6 11 00 23 00 00 00 c9 b6 11 00 37 00 00 00 ed b6 11 00 20 00 00 00 | P...^...j...#.......7........... |
| 12720 | 25 b7 11 00 1c 00 00 00 46 b7 11 00 3b 00 00 00 63 b7 11 00 30 00 00 00 9f b7 11 00 27 00 00 00 | %.......F...;...c...0.......'... |
| 12740 | d0 b7 11 00 20 00 00 00 f8 b7 11 00 25 00 00 00 19 b8 11 00 dd 00 00 00 3f b8 11 00 da 00 00 00 | ............%...........?....... |
| 12760 | 1d b9 11 00 da 00 00 00 f8 b9 11 00 0e 00 00 00 d3 ba 11 00 38 00 00 00 e2 ba 11 00 40 00 00 00 | ....................8.......@... |
| 12780 | 1b bb 11 00 23 00 00 00 5c bb 11 00 24 00 00 00 80 bb 11 00 07 00 00 00 a5 bb 11 00 07 00 00 00 | ....#...\...$................... |
| 127a0 | ad bb 11 00 33 00 00 00 b5 bb 11 00 33 00 00 00 e9 bb 11 00 33 00 00 00 1d bc 11 00 33 00 00 00 | ....3.......3.......3.......3... |
| 127c0 | 51 bc 11 00 40 00 00 00 85 bc 11 00 8c 00 00 00 c6 bc 11 00 51 00 00 00 53 bd 11 00 4f 00 00 00 | Q...@...............Q...S...O... |
| 127e0 | a5 bd 11 00 3d 00 00 00 f5 bd 11 00 64 00 00 00 33 be 11 00 6f 00 00 00 98 be 11 00 94 00 00 00 | ....=.......d...3...o........... |
| 12800 | 08 bf 11 00 92 00 00 00 9d bf 11 00 cd 00 00 00 30 c0 11 00 ce 00 00 00 fe c0 11 00 82 00 00 00 | ................0............... |
| 12820 | cd c1 11 00 8f 00 00 00 50 c2 11 00 e1 00 00 00 e0 c2 11 00 c3 00 00 00 c2 c3 11 00 8a 00 00 00 | ........P....................... |
| 12840 | 86 c4 11 00 8b 00 00 00 11 c5 11 00 19 00 00 00 9d c5 11 00 17 00 00 00 b7 c5 11 00 10 00 00 00 | ................................ |
| 12860 | cf c5 11 00 0c 00 00 00 e0 c5 11 00 ac 00 00 00 ed c5 11 00 e2 00 00 00 9a c6 11 00 14 00 00 00 | ................................ |
| 12880 | 7d c7 11 00 c3 00 00 00 92 c7 11 00 95 00 00 00 56 c8 11 00 13 01 00 00 ec c8 11 00 31 00 00 00 | }...............V...........1... |
| 128a0 | 00 ca 11 00 0a 00 00 00 32 ca 11 00 21 01 00 00 3d ca 11 00 d8 00 00 00 5f cb 11 00 8b 00 00 00 | ........2...!...=......._....... |
| 128c0 | 38 cc 11 00 8c 00 00 00 c4 cc 11 00 f8 00 00 00 51 cd 11 00 39 00 00 00 4a ce 11 00 49 00 00 00 | 8...............Q...9...J...I... |
| 128e0 | 84 ce 11 00 b6 00 00 00 ce ce 11 00 93 00 00 00 85 cf 11 00 80 00 00 00 19 d0 11 00 1b 00 00 00 | ................................ |
| 12900 | 9a d0 11 00 79 00 00 00 b6 d0 11 00 79 00 00 00 30 d1 11 00 53 01 00 00 aa d1 11 00 7f 00 00 00 | ....y.......y...0...S........... |
| 12920 | fe d2 11 00 a9 00 00 00 7e d3 11 00 b6 00 00 00 28 d4 11 00 83 00 00 00 df d4 11 00 86 00 00 00 | ........~.......(............... |
| 12940 | 63 d5 11 00 0e 00 00 00 ea d5 11 00 5d 00 00 00 f9 d5 11 00 36 00 00 00 57 d6 11 00 10 00 00 00 | c...........].......6...W....... |
| 12960 | 8e d6 11 00 0d 00 00 00 9f d6 11 00 45 00 00 00 ad d6 11 00 45 00 00 00 f3 d6 11 00 19 00 00 00 | ............E.......E........... |
| 12980 | 39 d7 11 00 22 00 00 00 53 d7 11 00 1c 00 00 00 76 d7 11 00 45 00 00 00 93 d7 11 00 50 00 00 00 | 9..."...S.......v...E.......P... |
| 129a0 | d9 d7 11 00 65 00 00 00 2a d8 11 00 2f 00 00 00 90 d8 11 00 60 00 00 00 c0 d8 11 00 54 00 00 00 | ....e...*.../.......`.......T... |
| 129c0 | 21 d9 11 00 55 00 00 00 76 d9 11 00 48 00 00 00 cc d9 11 00 26 00 00 00 15 da 11 00 26 00 00 00 | !...U...v...H.......&.......&... |
| 129e0 | 3c da 11 00 b2 00 00 00 63 da 11 00 eb 00 00 00 16 db 11 00 75 00 00 00 02 dc 11 00 77 00 00 00 | <.......c...........u.......w... |
| 12a00 | 78 dc 11 00 4d 00 00 00 f0 dc 11 00 e2 00 00 00 3e dd 11 00 5b 00 00 00 21 de 11 00 78 00 00 00 | x...M...........>...[...!...x... |
| 12a20 | 7d de 11 00 1d 01 00 00 f6 de 11 00 29 01 00 00 14 e0 11 00 53 00 00 00 3e e1 11 00 42 00 00 00 | }...........).......S...>...B... |
| 12a40 | 92 e1 11 00 8b 00 00 00 d5 e1 11 00 1e 00 00 00 61 e2 11 00 56 00 00 00 80 e2 11 00 d2 00 00 00 | ................a...V........... |
| 12a60 | d7 e2 11 00 36 00 00 00 aa e3 11 00 ce 00 00 00 e1 e3 11 00 00 01 00 00 b0 e4 11 00 c1 00 00 00 | ....6........................... |
| 12a80 | b1 e5 11 00 38 00 00 00 73 e6 11 00 27 00 00 00 ac e6 11 00 57 00 00 00 d4 e6 11 00 bd 00 00 00 | ....8...s...'.......W........... |
| 12aa0 | 2c e7 11 00 85 00 00 00 ea e7 11 00 4f 00 00 00 70 e8 11 00 ba 01 00 00 c0 e8 11 00 b6 00 00 00 | ,...........O...p............... |
| 12ac0 | 7b ea 11 00 47 00 00 00 32 eb 11 00 63 00 00 00 7a eb 11 00 4c 00 00 00 de eb 11 00 d5 00 00 00 | {...G...2...c...z...L........... |
| 12ae0 | 2b ec 11 00 66 00 00 00 01 ed 11 00 45 01 00 00 68 ed 11 00 56 00 00 00 ae ee 11 00 64 00 00 00 | +...f.......E...h...V.......d... |
| 12b00 | 05 ef 11 00 57 00 00 00 6a ef 11 00 64 00 00 00 c2 ef 11 00 bf 00 00 00 27 f0 11 00 a4 00 00 00 | ....W...j...d...........'....... |
| 12b20 | e7 f0 11 00 bc 00 00 00 8c f1 11 00 65 00 00 00 49 f2 11 00 3f 00 00 00 af f2 11 00 c0 01 00 00 | ............e...I...?........... |
| 12b40 | ef f2 11 00 72 00 00 00 b0 f4 11 00 74 00 00 00 23 f5 11 00 58 00 00 00 98 f5 11 00 45 00 00 00 | ....r.......t...#...X.......E... |
| 12b60 | f1 f5 11 00 41 00 00 00 37 f6 11 00 52 00 00 00 79 f6 11 00 81 00 00 00 cc f6 11 00 75 00 00 00 | ....A...7...R...y...........u... |
| 12b80 | 4e f7 11 00 7f 00 00 00 c4 f7 11 00 30 00 00 00 44 f8 11 00 31 00 00 00 75 f8 11 00 7e 00 00 00 | N...........0...D...1...u...~... |
| 12ba0 | a7 f8 11 00 50 00 00 00 26 f9 11 00 36 00 00 00 77 f9 11 00 50 01 00 00 ae f9 11 00 69 00 00 00 | ....P...&...6...w...P.......i... |
| 12bc0 | ff fa 11 00 a3 00 00 00 69 fb 11 00 5d 00 00 00 0d fc 11 00 8e 00 00 00 6b fc 11 00 4a 00 00 00 | ........i...]...........k...J... |
| 12be0 | fa fc 11 00 57 00 00 00 45 fd 11 00 6d 00 00 00 9d fd 11 00 64 00 00 00 0b fe 11 00 64 00 00 00 | ....W...E...m.......d.......d... |
| 12c00 | 70 fe 11 00 99 00 00 00 d5 fe 11 00 26 00 00 00 6f ff 11 00 b1 00 00 00 96 ff 11 00 ad 00 00 00 | p...........&...o............... |
| 12c20 | 48 00 12 00 81 00 00 00 f6 00 12 00 33 00 00 00 78 01 12 00 c0 00 00 00 ac 01 12 00 90 00 00 00 | H...........3...x............... |
| 12c40 | 6d 02 12 00 a3 00 00 00 fe 02 12 00 a2 00 00 00 a2 03 12 00 83 00 00 00 45 04 12 00 41 00 00 00 | m.......................E...A... |
| 12c60 | c9 04 12 00 3a 00 00 00 0b 05 12 00 4b 00 00 00 46 05 12 00 65 00 00 00 92 05 12 00 65 00 00 00 | ....:.......K...F...e.......e... |
| 12c80 | f8 05 12 00 06 00 00 00 5e 06 12 00 05 00 00 00 65 06 12 00 e3 01 00 00 6b 06 12 00 1e 00 00 00 | ........^.......e.......k....... |
| 12ca0 | 4f 08 12 00 1d 00 00 00 6e 08 12 00 3d 00 00 00 8c 08 12 00 a4 00 00 00 ca 08 12 00 9d 01 00 00 | O.......n...=................... |
| 12cc0 | 6f 09 12 00 60 02 00 00 0d 0b 12 00 5b 02 00 00 6e 0d 12 00 4b 02 00 00 ca 0f 12 00 5a 02 00 00 | o...`.......[...n...K.......Z... |
| 12ce0 | 16 12 12 00 6d 00 00 00 71 14 12 00 a8 00 00 00 df 14 12 00 bf 00 00 00 88 15 12 00 b2 00 00 00 | ....m...q....................... |
| 12d00 | 48 16 12 00 06 00 00 00 fb 16 12 00 4b 01 00 00 02 17 12 00 4c 01 00 00 4e 18 12 00 17 00 00 00 | H...........K.......L...N....... |
| 12d20 | 9b 19 12 00 0b 00 00 00 b3 19 12 00 0d 00 00 00 bf 19 12 00 55 00 00 00 cd 19 12 00 0f 00 00 00 | ....................U........... |
| 12d40 | 23 1a 12 00 0f 00 00 00 33 1a 12 00 5c 00 00 00 43 1a 12 00 ff 02 00 00 a0 1a 12 00 b1 00 00 00 | #.......3...\...C............... |
| 12d60 | a0 1d 12 00 52 00 00 00 52 1e 12 00 37 00 00 00 a5 1e 12 00 06 00 00 00 dd 1e 12 00 12 00 00 00 | ....R...R...7................... |
| 12d80 | e4 1e 12 00 9a 00 00 00 f7 1e 12 00 08 00 00 00 92 1f 12 00 38 00 00 00 9b 1f 12 00 11 00 00 00 | ....................8........... |
| 12da0 | d4 1f 12 00 1c 00 00 00 e6 1f 12 00 12 00 00 00 03 20 12 00 1a 00 00 00 16 20 12 00 49 00 00 00 | ............................I... |
| 12dc0 | 31 20 12 00 1e 00 00 00 7b 20 12 00 2f 00 00 00 9a 20 12 00 73 00 00 00 ca 20 12 00 ae 00 00 00 | 1.......{.../.......s........... |
| 12de0 | 3e 21 12 00 af 00 00 00 ed 21 12 00 11 00 00 00 9d 22 12 00 d5 00 00 00 af 22 12 00 d0 00 00 00 | >!.......!......."......."...... |
| 12e00 | 85 23 12 00 0b 00 00 00 56 24 12 00 4a 00 00 00 62 24 12 00 08 00 00 00 ad 24 12 00 14 00 00 00 | .#......V$..J...b$.......$...... |
| 12e20 | b6 24 12 00 4a 00 00 00 cb 24 12 00 60 00 00 00 16 25 12 00 06 00 00 00 77 25 12 00 06 00 00 00 | .$..J....$..`....%......w%...... |
| 12e40 | 7e 25 12 00 da 00 00 00 85 25 12 00 99 00 00 00 60 26 12 00 98 00 00 00 fa 26 12 00 bc 00 00 00 | ~%.......%......`&.......&...... |
| 12e60 | 93 27 12 00 06 00 00 00 50 28 12 00 0a 00 00 00 57 28 12 00 14 00 00 00 62 28 12 00 1b 00 00 00 | .'......P(......W(......b(...... |
| 12e80 | 77 28 12 00 0c 00 00 00 93 28 12 00 19 00 00 00 a0 28 12 00 2e 00 00 00 ba 28 12 00 1d 00 00 00 | w(.......(.......(.......(...... |
| 12ea0 | e9 28 12 00 0e 00 00 00 07 29 12 00 00 02 00 00 16 29 12 00 ff 01 00 00 17 2b 12 00 26 00 00 00 | .(.......).......).......+..&... |
| 12ec0 | 17 2d 12 00 0e 00 00 00 3e 2d 12 00 21 00 00 00 4d 2d 12 00 98 00 00 00 6f 2d 12 00 07 00 00 00 | .-......>-..!...M-......o-...... |
| 12ee0 | 08 2e 12 00 03 00 00 00 10 2e 12 00 91 00 00 00 14 2e 12 00 0a 00 00 00 a6 2e 12 00 0b 00 00 00 | ................................ |
| 12f00 | b1 2e 12 00 6a 00 00 00 bd 2e 12 00 0e 00 00 00 28 2f 12 00 08 00 00 00 37 2f 12 00 3f 00 00 00 | ....j...........(/......7/..?... |
| 12f20 | 40 2f 12 00 2b 00 00 00 80 2f 12 00 29 00 00 00 ac 2f 12 00 35 00 00 00 d6 2f 12 00 54 00 00 00 | @/..+..../..)..../..5..../..T... |
| 12f40 | 0c 30 12 00 5c 00 00 00 61 30 12 00 7b 00 00 00 be 30 12 00 56 00 00 00 3a 31 12 00 67 00 00 00 | .0..\...a0..{....0..V...:1..g... |
| 12f60 | 91 31 12 00 25 00 00 00 f9 31 12 00 3a 00 00 00 1f 32 12 00 3a 00 00 00 5a 32 12 00 0d 00 00 00 | .1..%....1..:....2..:...Z2...... |
| 12f80 | 95 32 12 00 64 00 00 00 a3 32 12 00 64 00 00 00 08 33 12 00 67 00 00 00 6d 33 12 00 67 00 00 00 | .2..d....2..d....3..g...m3..g... |
| 12fa0 | d5 33 12 00 1f 00 00 00 3d 34 12 00 0c 00 00 00 5d 34 12 00 16 00 00 00 6a 34 12 00 44 01 00 00 | .3......=4......]4......j4..D... |
| 12fc0 | 81 34 12 00 41 00 00 00 c6 35 12 00 47 00 00 00 08 36 12 00 d3 00 00 00 50 36 12 00 3a 02 00 00 | .4..A....5..G....6......P6..:... |
| 12fe0 | 24 37 12 00 d7 00 00 00 5f 39 12 00 fe 00 00 00 37 3a 12 00 93 00 00 00 36 3b 12 00 4e 01 00 00 | $7......_9......7:......6;..N... |
| 13000 | ca 3b 12 00 30 00 00 00 19 3d 12 00 c8 00 00 00 4a 3d 12 00 ab 00 00 00 13 3e 12 00 31 00 00 00 | .;..0....=......J=.......>..1... |
| 13020 | bf 3e 12 00 29 00 00 00 f1 3e 12 00 68 01 00 00 1b 3f 12 00 39 00 00 00 84 40 12 00 3b 01 00 00 | .>..)....>..h....?..9....@..;... |
| 13040 | be 40 12 00 b2 00 00 00 fa 41 12 00 27 00 00 00 ad 42 12 00 44 00 00 00 d5 42 12 00 d2 00 00 00 | .@.......A..'....B..D....B...... |
| 13060 | 1a 43 12 00 73 00 00 00 ed 43 12 00 d7 00 00 00 61 44 12 00 9f 00 00 00 39 45 12 00 2d 01 00 00 | .C..s....C......aD......9E..-... |
| 13080 | d9 45 12 00 af 00 00 00 07 47 12 00 cc 00 00 00 b7 47 12 00 4f 00 00 00 84 48 12 00 3f 01 00 00 | .E.......G.......G..O....H..?... |
| 130a0 | d4 48 12 00 c1 00 00 00 14 4a 12 00 59 00 00 00 d6 4a 12 00 59 00 00 00 30 4b 12 00 21 01 00 00 | .H.......J..Y....J..Y...0K..!... |
| 130c0 | 8a 4b 12 00 59 00 00 00 ac 4c 12 00 29 01 00 00 06 4d 12 00 6f 00 00 00 30 4e 12 00 8f 00 00 00 | .K..Y....L..)....M..o...0N...... |
| 130e0 | a0 4e 12 00 8d 00 00 00 30 4f 12 00 9e 00 00 00 be 4f 12 00 6e 00 00 00 5d 50 12 00 6c 00 00 00 | .N......0O.......O..n...]P..l... |
| 13100 | cc 50 12 00 3a 00 00 00 39 51 12 00 95 00 00 00 74 51 12 00 68 00 00 00 0a 52 12 00 58 00 00 00 | .P..:...9Q......tQ..h....R..X... |
| 13120 | 73 52 12 00 15 01 00 00 cc 52 12 00 96 00 00 00 e2 53 12 00 52 00 00 00 79 54 12 00 52 00 00 00 | sR.......R.......S..R...yT..R... |
| 13140 | cc 54 12 00 99 00 00 00 1f 55 12 00 96 00 00 00 b9 55 12 00 ec 00 00 00 50 56 12 00 94 00 00 00 | .T.......U.......U......PV...... |
| 13160 | 3d 57 12 00 9e 00 00 00 d2 57 12 00 79 00 00 00 71 58 12 00 78 00 00 00 eb 58 12 00 50 00 00 00 | =W.......W..y...qX..x....X..P... |
| 13180 | 64 59 12 00 9e 00 00 00 b5 59 12 00 13 00 00 00 54 5a 12 00 40 00 00 00 68 5a 12 00 3a 00 00 00 | dY.......Y......TZ..@...hZ..:... |
| 131a0 | a9 5a 12 00 98 01 00 00 e4 5a 12 00 2d 00 00 00 7d 5c 12 00 39 00 00 00 ab 5c 12 00 e0 00 00 00 | .Z.......Z..-...}\..9....\...... |
| 131c0 | e5 5c 12 00 18 00 00 00 c6 5d 12 00 26 00 00 00 df 5d 12 00 57 00 00 00 06 5e 12 00 57 00 00 00 | .\.......]..&....]..W....^..W... |
| 131e0 | 5e 5e 12 00 ad 00 00 00 b6 5e 12 00 ad 00 00 00 64 5f 12 00 b5 00 00 00 12 60 12 00 70 01 00 00 | ^^.......^......d_.......`..p... |
| 13200 | c8 60 12 00 1b 00 00 00 39 62 12 00 ab 01 00 00 55 62 12 00 eb 00 00 00 01 64 12 00 bb 00 00 00 | .`......9b......Ub.......d...... |
| 13220 | ed 64 12 00 bb 00 00 00 a9 65 12 00 fd 00 00 00 65 66 12 00 85 00 00 00 63 67 12 00 b5 00 00 00 | .d.......e......ef......cg...... |
| 13240 | e9 67 12 00 b5 00 00 00 9f 68 12 00 5b 00 00 00 55 69 12 00 83 00 00 00 b1 69 12 00 4b 00 00 00 | .g.......h..[...Ui.......i..K... |
| 13260 | 35 6a 12 00 47 00 00 00 81 6a 12 00 45 00 00 00 c9 6a 12 00 45 00 00 00 0f 6b 12 00 59 01 00 00 | 5j..G....j..E....j..E....k..Y... |
| 13280 | 55 6b 12 00 27 00 00 00 af 6c 12 00 f8 00 00 00 d7 6c 12 00 0c 01 00 00 d0 6d 12 00 28 02 00 00 | Uk..'....l.......l.......m..(... |
| 132a0 | dd 6e 12 00 ff 00 00 00 06 71 12 00 61 00 00 00 06 72 12 00 c8 00 00 00 68 72 12 00 5a 00 00 00 | .n.......q..a....r......hr..Z... |
| 132c0 | 31 73 12 00 5c 00 00 00 8c 73 12 00 a9 00 00 00 e9 73 12 00 b6 00 00 00 93 74 12 00 5e 00 00 00 | 1s..\....s.......s.......t..^... |
| 132e0 | 4a 75 12 00 d3 00 00 00 a9 75 12 00 24 00 00 00 7d 76 12 00 14 00 00 00 a2 76 12 00 1a 00 00 00 | Ju.......u..$...}v.......v...... |
| 13300 | b7 76 12 00 bc 00 00 00 d2 76 12 00 68 00 00 00 8f 77 12 00 1f 00 00 00 f8 77 12 00 24 00 00 00 | .v.......v..h....w.......w..$... |
| 13320 | 18 78 12 00 bd 00 00 00 3d 78 12 00 1f 00 00 00 fb 78 12 00 17 00 00 00 1b 79 12 00 21 00 00 00 | .x......=x.......x.......y..!... |
| 13340 | 33 79 12 00 21 00 00 00 55 79 12 00 22 00 00 00 77 79 12 00 40 00 00 00 9a 79 12 00 1a 00 00 00 | 3y..!...Uy.."...wy..@....y...... |
| 13360 | db 79 12 00 45 00 00 00 f6 79 12 00 17 01 00 00 3c 7a 12 00 54 00 00 00 54 7b 12 00 c0 01 00 00 | .y..E....y......<z..T...T{...... |
| 13380 | a9 7b 12 00 d2 01 00 00 6a 7d 12 00 a2 00 00 00 3d 7f 12 00 d1 00 00 00 e0 7f 12 00 e4 00 00 00 | .{......j}......=............... |
| 133a0 | b2 80 12 00 bf 00 00 00 97 81 12 00 dc 00 00 00 57 82 12 00 4e 01 00 00 34 83 12 00 45 00 00 00 | ................W...N...4...E... |
| 133c0 | 83 84 12 00 34 00 00 00 c9 84 12 00 b4 00 00 00 fe 84 12 00 f9 00 00 00 b3 85 12 00 f9 00 00 00 | ....4........................... |
| 133e0 | ad 86 12 00 c5 00 00 00 a7 87 12 00 27 00 00 00 6d 88 12 00 b7 00 00 00 95 88 12 00 ae 00 00 00 | ............'...m............... |
| 13400 | 4d 89 12 00 52 00 00 00 fc 89 12 00 ab 00 00 00 4f 8a 12 00 c8 00 00 00 fb 8a 12 00 5b 00 00 00 | M...R...........O...........[... |
| 13420 | c4 8b 12 00 6d 00 00 00 20 8c 12 00 ab 00 00 00 8e 8c 12 00 30 00 00 00 3a 8d 12 00 35 00 00 00 | ....m...............0...:...5... |
| 13440 | 6b 8d 12 00 68 00 00 00 a1 8d 12 00 53 00 00 00 0a 8e 12 00 33 00 00 00 5e 8e 12 00 2d 00 00 00 | k...h.......S.......3...^...-... |
| 13460 | 92 8e 12 00 4e 00 00 00 c0 8e 12 00 70 00 00 00 0f 8f 12 00 6c 00 00 00 80 8f 12 00 c5 00 00 00 | ....N.......p.......l........... |
| 13480 | ed 8f 12 00 b7 00 00 00 b3 90 12 00 38 00 00 00 6b 91 12 00 39 00 00 00 a4 91 12 00 21 01 00 00 | ............8...k...9.......!... |
| 134a0 | de 91 12 00 dd 00 00 00 00 93 12 00 1e 01 00 00 de 93 12 00 5f 01 00 00 fd 94 12 00 dc 00 00 00 | ...................._........... |
| 134c0 | 5d 96 12 00 c8 00 00 00 3a 97 12 00 36 00 00 00 03 98 12 00 6e 00 00 00 3a 98 12 00 91 00 00 00 | ].......:...6.......n...:....... |
| 134e0 | a9 98 12 00 8e 00 00 00 3b 99 12 00 60 00 00 00 ca 99 12 00 b0 00 00 00 2b 9a 12 00 6e 00 00 00 | ........;...`...........+...n... |
| 13500 | dc 9a 12 00 6b 00 00 00 4b 9b 12 00 35 00 00 00 b7 9b 12 00 33 00 00 00 ed 9b 12 00 f1 00 00 00 | ....k...K...5.......3........... |
| 13520 | 21 9c 12 00 2b 00 00 00 13 9d 12 00 38 00 00 00 3f 9d 12 00 3a 01 00 00 78 9d 12 00 4b 00 00 00 | !...+.......8...?...:...x...K... |
| 13540 | b3 9e 12 00 53 01 00 00 ff 9e 12 00 92 01 00 00 53 a0 12 00 a1 00 00 00 e6 a1 12 00 28 00 00 00 | ....S...........S...........(... |
| 13560 | 88 a2 12 00 35 01 00 00 b1 a2 12 00 9a 00 00 00 e7 a3 12 00 10 01 00 00 82 a4 12 00 3d 00 00 00 | ....5.......................=... |
| 13580 | 93 a5 12 00 2b 00 00 00 d1 a5 12 00 a6 00 00 00 fd a5 12 00 2e 00 00 00 a4 a6 12 00 3f 00 00 00 | ....+.......................?... |
| 135a0 | d3 a6 12 00 ec 00 00 00 13 a7 12 00 ee 00 00 00 00 a8 12 00 7c 00 00 00 ef a8 12 00 9a 01 00 00 | ....................|........... |
| 135c0 | 6c a9 12 00 42 00 00 00 07 ab 12 00 82 00 00 00 4a ab 12 00 9b 00 00 00 cd ab 12 00 31 00 00 00 | l...B...........J...........1... |
| 135e0 | 69 ac 12 00 b4 00 00 00 9b ac 12 00 b8 00 00 00 50 ad 12 00 63 00 00 00 09 ae 12 00 33 00 00 00 | i...............P...c.......3... |
| 13600 | 6d ae 12 00 3a 00 00 00 a1 ae 12 00 5e 00 00 00 dc ae 12 00 25 01 00 00 3b af 12 00 42 00 00 00 | m...:.......^.......%...;...B... |
| 13620 | 61 b0 12 00 5c 00 00 00 a4 b0 12 00 56 00 00 00 01 b1 12 00 fe 00 00 00 58 b1 12 00 79 00 00 00 | a...\.......V...........X...y... |
| 13640 | 57 b2 12 00 55 00 00 00 d1 b2 12 00 58 00 00 00 27 b3 12 00 cd 01 00 00 80 b3 12 00 3d 00 00 00 | W...U.......X...'...........=... |
| 13660 | 4e b5 12 00 e8 01 00 00 8c b5 12 00 40 00 00 00 75 b7 12 00 7f 00 00 00 b6 b7 12 00 6c 00 00 00 | N...........@...u...........l... |
| 13680 | 36 b8 12 00 6e 00 00 00 a3 b8 12 00 e8 00 00 00 12 b9 12 00 a5 00 00 00 fb b9 12 00 6b 00 00 00 | 6...n.......................k... |
| 136a0 | a1 ba 12 00 69 01 00 00 0d bb 12 00 34 00 00 00 77 bc 12 00 79 00 00 00 ac bc 12 00 3d 00 00 00 | ....i.......4...w...y.......=... |
| 136c0 | 26 bd 12 00 54 00 00 00 64 bd 12 00 4c 00 00 00 b9 bd 12 00 bc 00 00 00 06 be 12 00 ea 00 00 00 | &...T...d...L................... |
| 136e0 | c3 be 12 00 6d 00 00 00 ae bf 12 00 e6 00 00 00 1c c0 12 00 36 00 00 00 03 c1 12 00 5b 00 00 00 | ....m...............6.......[... |
| 13700 | 3a c1 12 00 6a 00 00 00 96 c1 12 00 82 00 00 00 01 c2 12 00 73 00 00 00 84 c2 12 00 49 00 00 00 | :...j...............s.......I... |
| 13720 | f8 c2 12 00 29 00 00 00 42 c3 12 00 2a 01 00 00 6c c3 12 00 47 00 00 00 97 c4 12 00 46 00 00 00 | ....)...B...*...l...G.......F... |
| 13740 | df c4 12 00 49 00 00 00 26 c5 12 00 49 00 00 00 70 c5 12 00 22 00 00 00 ba c5 12 00 54 00 00 00 | ....I...&...I...p...".......T... |
| 13760 | dd c5 12 00 65 00 00 00 32 c6 12 00 32 00 00 00 98 c6 12 00 9d 00 00 00 cb c6 12 00 77 00 00 00 | ....e...2...2...............w... |
| 13780 | 69 c7 12 00 2c 00 00 00 e1 c7 12 00 42 00 00 00 0e c8 12 00 2b 00 00 00 51 c8 12 00 86 01 00 00 | i...,.......B.......+...Q....... |
| 137a0 | 7d c8 12 00 c4 00 00 00 04 ca 12 00 c6 00 00 00 c9 ca 12 00 80 00 00 00 90 cb 12 00 49 01 00 00 | }...........................I... |
| 137c0 | 11 cc 12 00 90 00 00 00 5b cd 12 00 38 00 00 00 ec cd 12 00 9f 00 00 00 25 ce 12 00 1c 01 00 00 | ........[...8...........%....... |
| 137e0 | c5 ce 12 00 d5 00 00 00 e2 cf 12 00 38 00 00 00 b8 d0 12 00 28 00 00 00 f1 d0 12 00 5c 00 00 00 | ............8.......(.......\... |
| 13800 | 1a d1 12 00 29 00 00 00 77 d1 12 00 71 00 00 00 a1 d1 12 00 41 00 00 00 13 d2 12 00 0f 01 00 00 | ....)...w...q.......A........... |
| 13820 | 55 d2 12 00 26 00 00 00 65 d3 12 00 5c 00 00 00 8c d3 12 00 b6 00 00 00 e9 d3 12 00 fc 00 00 00 | U...&...e...\................... |
| 13840 | a0 d4 12 00 89 00 00 00 9d d5 12 00 25 00 00 00 27 d6 12 00 5f 00 00 00 4d d6 12 00 ec 00 00 00 | ............%...'..._...M....... |
| 13860 | ad d6 12 00 4e 00 00 00 9a d7 12 00 84 00 00 00 e9 d7 12 00 55 00 00 00 6e d8 12 00 12 01 00 00 | ....N...............U...n....... |
| 13880 | c4 d8 12 00 75 00 00 00 d7 d9 12 00 65 00 00 00 4d da 12 00 e2 00 00 00 b3 da 12 00 2f 00 00 00 | ....u.......e...M.........../... |
| 138a0 | 96 db 12 00 29 00 00 00 c6 db 12 00 a0 01 00 00 f0 db 12 00 9f 01 00 00 91 dd 12 00 e1 00 00 00 | ....)........................... |
| 138c0 | 31 df 12 00 ff 00 00 00 13 e0 12 00 db 00 00 00 13 e1 12 00 dc 00 00 00 ef e1 12 00 36 00 00 00 | 1...........................6... |
| 138e0 | cc e2 12 00 40 00 00 00 03 e3 12 00 1f 00 00 00 44 e3 12 00 40 00 00 00 64 e3 12 00 4d 00 00 00 | ....@...........D...@...d...M... |
| 13900 | a5 e3 12 00 4c 00 00 00 f3 e3 12 00 d8 00 00 00 40 e4 12 00 92 00 00 00 19 e5 12 00 43 00 00 00 | ....L...........@...........C... |
| 13920 | ac e5 12 00 af 00 00 00 f0 e5 12 00 65 00 00 00 a0 e6 12 00 a8 00 00 00 06 e7 12 00 38 00 00 00 | ............e...............8... |
| 13940 | af e7 12 00 3e 01 00 00 e8 e7 12 00 3c 00 00 00 27 e9 12 00 90 00 00 00 64 e9 12 00 58 00 00 00 | ....>.......<...'.......d...X... |
| 13960 | f5 e9 12 00 95 00 00 00 4e ea 12 00 50 00 00 00 e4 ea 12 00 64 00 00 00 35 eb 12 00 50 00 00 00 | ........N...P.......d...5...P... |
| 13980 | 9a eb 12 00 6d 00 00 00 eb eb 12 00 3a 00 00 00 59 ec 12 00 29 00 00 00 94 ec 12 00 6d 00 00 00 | ....m.......:...Y...).......m... |
| 139a0 | be ec 12 00 94 00 00 00 2c ed 12 00 c0 00 00 00 c1 ed 12 00 b8 01 00 00 82 ee 12 00 51 00 00 00 | ........,...................Q... |
| 139c0 | 3b f0 12 00 21 00 00 00 8d f0 12 00 26 00 00 00 af f0 12 00 25 00 00 00 d6 f0 12 00 71 00 00 00 | ;...!.......&.......%.......q... |
| 139e0 | fc f0 12 00 24 00 00 00 6e f1 12 00 bc 01 00 00 93 f1 12 00 55 00 00 00 50 f3 12 00 a9 00 00 00 | ....$...n...........U...P....... |
| 13a00 | a6 f3 12 00 4c 00 00 00 50 f4 12 00 ee 00 00 00 9d f4 12 00 43 00 00 00 8c f5 12 00 39 00 00 00 | ....L...P...........C.......9... |
| 13a20 | d0 f5 12 00 a9 00 00 00 0a f6 12 00 a9 00 00 00 b4 f6 12 00 50 00 00 00 5e f7 12 00 53 01 00 00 | ....................P...^...S... |
| 13a40 | af f7 12 00 46 00 00 00 03 f9 12 00 44 00 00 00 4a f9 12 00 43 00 00 00 8f f9 12 00 de 00 00 00 | ....F.......D...J...C........... |
| 13a60 | d3 f9 12 00 83 00 00 00 b2 fa 12 00 83 00 00 00 36 fb 12 00 39 01 00 00 ba fb 12 00 a0 00 00 00 | ................6...9........... |
| 13a80 | f4 fc 12 00 d1 00 00 00 95 fd 12 00 61 00 00 00 67 fe 12 00 b4 00 00 00 c9 fe 12 00 b7 00 00 00 | ............a...g............... |
| 13aa0 | 7e ff 12 00 b6 00 00 00 36 00 13 00 bb 00 00 00 ed 00 13 00 a1 00 00 00 a9 01 13 00 5c 00 00 00 | ~.......6...................\... |
| 13ac0 | 4b 02 13 00 58 00 00 00 a8 02 13 00 5c 00 00 00 01 03 13 00 58 00 00 00 5e 03 13 00 71 00 00 00 | K...X.......\.......X...^...q... |
| 13ae0 | b7 03 13 00 5e 00 00 00 29 04 13 00 21 01 00 00 88 04 13 00 13 01 00 00 aa 05 13 00 12 01 00 00 | ....^...)...!................... |
| 13b00 | be 06 13 00 09 01 00 00 d1 07 13 00 40 00 00 00 db 08 13 00 a3 00 00 00 1c 09 13 00 a3 00 00 00 | ............@................... |
| 13b20 | c0 09 13 00 9f 00 00 00 64 0a 13 00 9f 00 00 00 04 0b 13 00 bb 00 00 00 a4 0b 13 00 b4 00 00 00 | ........d....................... |
| 13b40 | 60 0c 13 00 54 00 00 00 15 0d 13 00 bc 00 00 00 6a 0d 13 00 56 00 00 00 27 0e 13 00 be 00 00 00 | `...T...........j...V...'....... |
| 13b60 | 7e 0e 13 00 4e 00 00 00 3d 0f 13 00 cf 01 00 00 8c 0f 13 00 29 01 00 00 5c 11 13 00 63 00 00 00 | ~...N...=...........)...\...c... |
| 13b80 | 86 12 13 00 46 00 00 00 ea 12 13 00 7e 00 00 00 31 13 13 00 3c 00 00 00 b0 13 13 00 db 00 00 00 | ....F.......~...1...<........... |
| 13ba0 | ed 13 13 00 42 00 00 00 c9 14 13 00 4e 00 00 00 0c 15 13 00 4e 00 00 00 5b 15 13 00 49 00 00 00 | ....B.......N.......N...[...I... |
| 13bc0 | aa 15 13 00 49 00 00 00 f4 15 13 00 43 00 00 00 3e 16 13 00 4b 00 00 00 82 16 13 00 64 00 00 00 | ....I.......C...>...K.......d... |
| 13be0 | ce 16 13 00 46 00 00 00 33 17 13 00 84 00 00 00 7a 17 13 00 7c 00 00 00 ff 17 13 00 86 00 00 00 | ....F...3.......z...|........... |
| 13c00 | 7c 18 13 00 2f 00 00 00 03 19 13 00 79 00 00 00 33 19 13 00 76 00 00 00 ad 19 13 00 81 00 00 00 | |.../.......y...3...v........... |
| 13c20 | 24 1a 13 00 46 01 00 00 a6 1a 13 00 71 00 00 00 ed 1b 13 00 66 00 00 00 5f 1c 13 00 3f 00 00 00 | $...F.......q.......f..._...?... |
| 13c40 | c6 1c 13 00 88 00 00 00 06 1d 13 00 da 00 00 00 8f 1d 13 00 19 00 00 00 6a 1e 13 00 90 01 00 00 | ........................j....... |
| 13c60 | 84 1e 13 00 a5 00 00 00 15 20 13 00 43 00 00 00 bb 20 13 00 2a 00 00 00 ff 20 13 00 4c 00 00 00 | ............C.......*.......L... |
| 13c80 | 2a 21 13 00 3a 00 00 00 77 21 13 00 4e 00 00 00 b2 21 13 00 b0 00 00 00 01 22 13 00 2a 00 00 00 | *!..:...w!..N....!......."..*... |
| 13ca0 | b2 22 13 00 21 00 00 00 dd 22 13 00 51 00 00 00 ff 22 13 00 45 00 00 00 51 23 13 00 5f 00 00 00 | ."..!...."..Q...."..E...Q#.._... |
| 13cc0 | 97 23 13 00 37 00 00 00 f7 23 13 00 41 00 00 00 2f 24 13 00 44 00 00 00 71 24 13 00 6a 00 00 00 | .#..7....#..A.../$..D...q$..j... |
| 13ce0 | b6 24 13 00 3c 00 00 00 21 25 13 00 56 00 00 00 5e 25 13 00 4a 00 00 00 b5 25 13 00 ee 00 00 00 | .$..<...!%..V...^%..J....%...... |
| 13d00 | 00 26 13 00 47 00 00 00 ef 26 13 00 7a 00 00 00 37 27 13 00 d2 00 00 00 b2 27 13 00 5f 00 00 00 | .&..G....&..z...7'.......'.._... |
| 13d20 | 85 28 13 00 d5 00 00 00 e5 28 13 00 39 00 00 00 bb 29 13 00 70 00 00 00 f5 29 13 00 5d 00 00 00 | .(.......(..9....)..p....)..]... |
| 13d40 | 66 2a 13 00 55 00 00 00 c4 2a 13 00 2b 00 00 00 1a 2b 13 00 38 00 00 00 46 2b 13 00 46 00 00 00 | f*..U....*..+....+..8...F+..F... |
| 13d60 | 7f 2b 13 00 4c 00 00 00 c6 2b 13 00 62 00 00 00 13 2c 13 00 41 00 00 00 76 2c 13 00 55 01 00 00 | .+..L....+..b....,..A...v,..U... |
| 13d80 | b8 2c 13 00 c0 00 00 00 0e 2e 13 00 b6 00 00 00 cf 2e 13 00 94 00 00 00 86 2f 13 00 8d 00 00 00 | .,......................./...... |
| 13da0 | 1b 30 13 00 d5 00 00 00 a9 30 13 00 7e 00 00 00 7f 31 13 00 a4 00 00 00 fe 31 13 00 a6 00 00 00 | .0.......0..~....1.......1...... |
| 13dc0 | a3 32 13 00 a2 00 00 00 4a 33 13 00 a2 00 00 00 ed 33 13 00 c7 01 00 00 90 34 13 00 39 00 00 00 | .2......J3.......3.......4..9... |
| 13de0 | 58 36 13 00 32 01 00 00 92 36 13 00 a8 00 00 00 c5 37 13 00 79 00 00 00 6e 38 13 00 33 00 00 00 | X6..2....6.......7..y...n8..3... |
| 13e00 | e8 38 13 00 90 00 00 00 1c 39 13 00 b0 00 00 00 ad 39 13 00 63 00 00 00 5e 3a 13 00 b3 00 00 00 | .8.......9.......9..c...^:...... |
| 13e20 | c2 3a 13 00 d6 00 00 00 76 3b 13 00 2c 00 00 00 4d 3c 13 00 52 00 00 00 7a 3c 13 00 6e 00 00 00 | .:......v;..,...M<..R...z<..n... |
| 13e40 | cd 3c 13 00 4d 01 00 00 3c 3d 13 00 3b 00 00 00 8a 3e 13 00 ad 00 00 00 c6 3e 13 00 7b 02 00 00 | .<..M...<=..;....>.......>..{... |
| 13e60 | 74 3f 13 00 54 01 00 00 f0 41 13 00 53 00 00 00 45 43 13 00 4b 00 00 00 99 43 13 00 04 01 00 00 | t?..T....A..S...EC..K....C...... |
| 13e80 | e5 43 13 00 eb 00 00 00 ea 44 13 00 c8 00 00 00 d6 45 13 00 c8 00 00 00 9f 46 13 00 b6 00 00 00 | .C.......D.......E.......F...... |
| 13ea0 | 68 47 13 00 bb 00 00 00 1f 48 13 00 60 00 00 00 db 48 13 00 b5 00 00 00 3c 49 13 00 b9 00 00 00 | hG.......H..`....H......<I...... |
| 13ec0 | f2 49 13 00 9b 00 00 00 ac 4a 13 00 0a 01 00 00 48 4b 13 00 01 01 00 00 53 4c 13 00 38 00 00 00 | .I.......J......HK......SL..8... |
| 13ee0 | 55 4d 13 00 3b 00 00 00 8e 4d 13 00 45 00 00 00 ca 4d 13 00 2c 00 00 00 10 4e 13 00 70 00 00 00 | UM..;....M..E....M..,....N..p... |
| 13f00 | 3d 4e 13 00 4e 00 00 00 ae 4e 13 00 6e 00 00 00 fd 4e 13 00 7c 01 00 00 6c 4f 13 00 7c 01 00 00 | =N..N....N..n....N..|...lO..|... |
| 13f20 | e9 50 13 00 71 01 00 00 66 52 13 00 54 00 00 00 d8 53 13 00 90 00 00 00 2d 54 13 00 4b 00 00 00 | .P..q...fR..T....S......-T..K... |
| 13f40 | be 54 13 00 6d 00 00 00 0a 55 13 00 11 01 00 00 78 55 13 00 4e 00 00 00 8a 56 13 00 7b 00 00 00 | .T..m....U......xU..N....V..{... |
| 13f60 | d9 56 13 00 50 00 00 00 55 57 13 00 58 00 00 00 a6 57 13 00 b1 00 00 00 ff 57 13 00 a9 00 00 00 | .V..P...UW..X....W.......W...... |
| 13f80 | b1 58 13 00 74 00 00 00 5b 59 13 00 72 00 00 00 d0 59 13 00 88 00 00 00 43 5a 13 00 6c 00 00 00 | .X..t...[Y..r....Y......CZ..l... |
| 13fa0 | cc 5a 13 00 60 00 00 00 39 5b 13 00 44 00 00 00 9a 5b 13 00 17 01 00 00 df 5b 13 00 ff 00 00 00 | .Z..`...9[..D....[.......[...... |
| 13fc0 | f7 5c 13 00 44 00 00 00 f7 5d 13 00 87 00 00 00 3c 5e 13 00 50 00 00 00 c4 5e 13 00 70 00 00 00 | .\..D....]......<^..P....^..p... |
| 13fe0 | 15 5f 13 00 87 00 00 00 86 5f 13 00 65 00 00 00 0e 60 13 00 40 00 00 00 74 60 13 00 6e 00 00 00 | ._......._..e....`..@...t`..n... |
| 14000 | b5 60 13 00 64 00 00 00 24 61 13 00 59 02 00 00 89 61 13 00 88 00 00 00 e3 63 13 00 25 00 00 00 | .`..d...$a..Y....a.......c..%... |
| 14020 | 6c 64 13 00 88 00 00 00 92 64 13 00 a5 00 00 00 1b 65 13 00 57 01 00 00 c1 65 13 00 32 01 00 00 | ld.......d.......e..W....e..2... |
| 14040 | 19 67 13 00 49 01 00 00 4c 68 13 00 51 01 00 00 96 69 13 00 fb 00 00 00 e8 6a 13 00 28 00 00 00 | .g..I...Lh..Q....i.......j..(... |
| 14060 | e4 6b 13 00 95 00 00 00 0d 6c 13 00 af 00 00 00 a3 6c 13 00 af 00 00 00 53 6d 13 00 76 00 00 00 | .k.......l.......l......Sm..v... |
| 14080 | 03 6e 13 00 a6 00 00 00 7a 6e 13 00 84 01 00 00 21 6f 13 00 6a 00 00 00 a6 70 13 00 b9 00 00 00 | .n......zn......!o..j....p...... |
| 140a0 | 11 71 13 00 0f 01 00 00 cb 71 13 00 36 00 00 00 db 72 13 00 a5 00 00 00 12 73 13 00 a7 00 00 00 | .q.......q..6....r.......s...... |
| 140c0 | b8 73 13 00 7b 00 00 00 60 74 13 00 67 00 00 00 dc 74 13 00 32 00 00 00 44 75 13 00 fe 00 00 00 | .s..{...`t..g....t..2...Du...... |
| 140e0 | 77 75 13 00 9d 00 00 00 76 76 13 00 bb 00 00 00 14 77 13 00 77 00 00 00 d0 77 13 00 bf 00 00 00 | wu......vv.......w..w....w...... |
| 14100 | 48 78 13 00 c7 00 00 00 08 79 13 00 cc 00 00 00 d0 79 13 00 d1 00 00 00 9d 7a 13 00 2d 04 00 00 | Hx.......y.......y.......z..-... |
| 14120 | 6f 7b 13 00 5d 00 00 00 9d 7f 13 00 e3 00 00 00 fb 7f 13 00 cf 00 00 00 df 80 13 00 07 01 00 00 | o{..]........................... |
| 14140 | af 81 13 00 10 01 00 00 b7 82 13 00 9c 00 00 00 c8 83 13 00 8a 00 00 00 65 84 13 00 97 00 00 00 | ........................e....... |
| 14160 | f0 84 13 00 40 00 00 00 88 85 13 00 f0 00 00 00 c9 85 13 00 0b 01 00 00 ba 86 13 00 37 01 00 00 | ....@.......................7... |
| 14180 | c6 87 13 00 75 01 00 00 fe 88 13 00 97 01 00 00 74 8a 13 00 f0 00 00 00 0c 8c 13 00 01 01 00 00 | ....u...........t............... |
| 141a0 | fd 8c 13 00 aa 00 00 00 ff 8d 13 00 69 00 00 00 aa 8e 13 00 6b 00 00 00 14 8f 13 00 df 00 00 00 | ............i.......k........... |
| 141c0 | 80 8f 13 00 44 00 00 00 60 90 13 00 ec 00 00 00 a5 90 13 00 86 00 00 00 92 91 13 00 d5 00 00 00 | ....D...`....................... |
| 141e0 | 19 92 13 00 b9 00 00 00 ef 92 13 00 a6 00 00 00 a9 93 13 00 c8 00 00 00 50 94 13 00 71 00 00 00 | ........................P...q... |
| 14200 | 19 95 13 00 2c 01 00 00 8b 95 13 00 84 00 00 00 b8 96 13 00 00 01 00 00 3d 97 13 00 e5 00 00 00 | ....,...................=....... |
| 14220 | 3e 98 13 00 2d 01 00 00 24 99 13 00 12 01 00 00 52 9a 13 00 f2 00 00 00 65 9b 13 00 a4 00 00 00 | >...-...$.......R.......e....... |
| 14240 | 58 9c 13 00 90 01 00 00 fd 9c 13 00 a2 00 00 00 8e 9e 13 00 b3 01 00 00 31 9f 13 00 53 00 00 00 | X.......................1...S... |
| 14260 | e5 a0 13 00 5f 00 00 00 39 a1 13 00 80 00 00 00 99 a1 13 00 81 00 00 00 1a a2 13 00 8f 00 00 00 | ...._...9....................... |
| 14280 | 9c a2 13 00 7b 00 00 00 2c a3 13 00 7a 00 00 00 a8 a3 13 00 f3 00 00 00 23 a4 13 00 f2 00 00 00 | ....{...,...z...........#....... |
| 142a0 | 17 a5 13 00 3a 00 00 00 0a a6 13 00 3a 00 00 00 45 a6 13 00 41 00 00 00 80 a6 13 00 67 00 00 00 | ....:.......:...E...A.......g... |
| 142c0 | c2 a6 13 00 42 00 00 00 2a a7 13 00 38 00 00 00 6d a7 13 00 53 00 00 00 a6 a7 13 00 5c 00 00 00 | ....B...*...8...m...S.......\... |
| 142e0 | fa a7 13 00 e1 01 00 00 57 a8 13 00 bb 00 00 00 39 aa 13 00 41 00 00 00 f5 aa 13 00 e7 00 00 00 | ........W.......9...A........... |
| 14300 | 37 ab 13 00 21 01 00 00 1f ac 13 00 4d 00 00 00 41 ad 13 00 96 00 00 00 8f ad 13 00 80 00 00 00 | 7...!.......M...A............... |
| 14320 | 26 ae 13 00 e5 00 00 00 a7 ae 13 00 da 00 00 00 8d af 13 00 a4 00 00 00 68 b0 13 00 66 00 00 00 | &.......................h...f... |
| 14340 | 0d b1 13 00 ad 00 00 00 74 b1 13 00 17 00 00 00 22 b2 13 00 16 00 00 00 3a b2 13 00 16 00 00 00 | ........t.......".......:....... |
| 14360 | 51 b2 13 00 1c 00 00 00 68 b2 13 00 1d 00 00 00 85 b2 13 00 14 00 00 00 a3 b2 13 00 13 00 00 00 | Q.......h....................... |
| 14380 | b8 b2 13 00 14 00 00 00 cc b2 13 00 22 00 00 00 e1 b2 13 00 3f 00 00 00 04 b3 13 00 16 00 00 00 | ............".......?........... |
| 143a0 | 44 b3 13 00 52 00 00 00 5b b3 13 00 89 00 00 00 ae b3 13 00 4b 00 00 00 38 b4 13 00 0d 01 00 00 | D...R...[...........K...8....... |
| 143c0 | 84 b4 13 00 41 00 00 00 92 b5 13 00 6d 00 00 00 d4 b5 13 00 8d 00 00 00 42 b6 13 00 6a 00 00 00 | ....A.......m...........B...j... |
| 143e0 | d0 b6 13 00 32 00 00 00 3b b7 13 00 61 00 00 00 6e b7 13 00 8d 00 00 00 d0 b7 13 00 8e 00 00 00 | ....2...;...a...n............... |
| 14400 | 5e b8 13 00 47 00 00 00 ed b8 13 00 40 00 00 00 35 b9 13 00 6c 00 00 00 76 b9 13 00 4c 00 00 00 | ^...G.......@...5...l...v...L... |
| 14420 | e3 b9 13 00 3f 00 00 00 30 ba 13 00 2a 00 00 00 70 ba 13 00 00 01 00 00 9b ba 13 00 1c 01 00 00 | ....?...0...*...p............... |
| 14440 | 9c bb 13 00 a2 00 00 00 b9 bc 13 00 97 00 00 00 5c bd 13 00 59 00 00 00 f4 bd 13 00 62 00 00 00 | ................\...Y.......b... |
| 14460 | 4e be 13 00 1a 00 00 00 b1 be 13 00 1c 00 00 00 cc be 13 00 bb 00 00 00 e9 be 13 00 32 00 00 00 | N...........................2... |
| 14480 | a5 bf 13 00 73 00 00 00 d8 bf 13 00 61 00 00 00 4c c0 13 00 76 00 00 00 ae c0 13 00 47 00 00 00 | ....s.......a...L...v.......G... |
| 144a0 | 25 c1 13 00 43 01 00 00 6d c1 13 00 7d 00 00 00 b1 c2 13 00 e5 00 00 00 2f c3 13 00 11 00 00 00 | %...C...m...}.........../....... |
| 144c0 | 15 c4 13 00 63 00 00 00 27 c4 13 00 c6 00 00 00 8b c4 13 00 8e 00 00 00 52 c5 13 00 2a 00 00 00 | ....c...'...............R...*... |
| 144e0 | e1 c5 13 00 98 00 00 00 0c c6 13 00 bd 00 00 00 a5 c6 13 00 44 00 00 00 63 c7 13 00 a0 00 00 00 | ....................D...c....... |
| 14500 | a8 c7 13 00 ca 00 00 00 49 c8 13 00 c9 00 00 00 14 c9 13 00 41 00 00 00 de c9 13 00 76 00 00 00 | ........I...........A.......v... |
| 14520 | 20 ca 13 00 c7 00 00 00 97 ca 13 00 58 00 00 00 5f cb 13 00 23 00 00 00 b8 cb 13 00 76 00 00 00 | ............X..._...#.......v... |
| 14540 | dc cb 13 00 36 00 00 00 53 cc 13 00 97 00 00 00 8a cc 13 00 c0 00 00 00 22 cd 13 00 8b 00 00 00 | ....6...S..............."....... |
| 14560 | e3 cd 13 00 2c 00 00 00 6f ce 13 00 2b 00 00 00 9c ce 13 00 2e 00 00 00 c8 ce 13 00 33 00 00 00 | ....,...o...+...............3... |
| 14580 | f7 ce 13 00 fc 00 00 00 2b cf 13 00 e9 00 00 00 28 d0 13 00 31 00 00 00 12 d1 13 00 26 00 00 00 | ........+.......(...1.......&... |
| 145a0 | 44 d1 13 00 4d 00 00 00 6b d1 13 00 60 00 00 00 b9 d1 13 00 20 01 00 00 1a d2 13 00 1d 00 00 00 | D...M...k...`................... |
| 145c0 | 3b d3 13 00 89 00 00 00 59 d3 13 00 be 00 00 00 e3 d3 13 00 60 01 00 00 a2 d4 13 00 80 00 00 00 | ;.......Y...........`........... |
| 145e0 | 03 d6 13 00 78 00 00 00 84 d6 13 00 7e 00 00 00 fd d6 13 00 7b 00 00 00 7c d7 13 00 29 00 00 00 | ....x.......~.......{...|...)... |
| 14600 | f8 d7 13 00 e9 00 00 00 22 d8 13 00 3d 00 00 00 0c d9 13 00 6f 00 00 00 4a d9 13 00 3b 00 00 00 | ........"...=.......o...J...;... |
| 14620 | ba d9 13 00 a5 00 00 00 f6 d9 13 00 2d 01 00 00 9c da 13 00 2c 01 00 00 ca db 13 00 dd 00 00 00 | ............-.......,........... |
| 14640 | f7 dc 13 00 64 00 00 00 d5 dd 13 00 d6 00 00 00 3a de 13 00 42 01 00 00 11 df 13 00 41 01 00 00 | ....d...........:...B.......A... |
| 14660 | 54 e0 13 00 be 00 00 00 96 e1 13 00 40 00 00 00 55 e2 13 00 77 00 00 00 96 e2 13 00 79 00 00 00 | T...........@...U...w.......y... |
| 14680 | 0e e3 13 00 76 00 00 00 88 e3 13 00 79 00 00 00 ff e3 13 00 6f 00 00 00 79 e4 13 00 d3 00 00 00 | ....v.......y.......o...y....... |
| 146a0 | e9 e4 13 00 41 00 00 00 bd e5 13 00 14 00 00 00 ff e5 13 00 23 01 00 00 14 e6 13 00 9d 01 00 00 | ....A...............#........... |
| 146c0 | 38 e7 13 00 48 00 00 00 d6 e8 13 00 2c 00 00 00 1f e9 13 00 bb 00 00 00 4c e9 13 00 23 00 00 00 | 8...H.......,...........L...#... |
| 146e0 | 08 ea 13 00 3d 00 00 00 2c ea 13 00 42 00 00 00 6a ea 13 00 5b 00 00 00 ad ea 13 00 6b 00 00 00 | ....=...,...B...j...[.......k... |
| 14700 | 09 eb 13 00 30 00 00 00 75 eb 13 00 3d 00 00 00 a6 eb 13 00 2c 00 00 00 e4 eb 13 00 56 00 00 00 | ....0...u...=.......,.......V... |
| 14720 | 11 ec 13 00 56 00 00 00 68 ec 13 00 54 00 00 00 bf ec 13 00 38 00 00 00 14 ed 13 00 3d 00 00 00 | ....V...h...T.......8.......=... |
| 14740 | 4d ed 13 00 3a 00 00 00 8b ed 13 00 3c 00 00 00 c6 ed 13 00 44 00 00 00 03 ee 13 00 34 00 00 00 | M...:.......<.......D.......4... |
| 14760 | 48 ee 13 00 32 01 00 00 7d ee 13 00 30 00 00 00 b0 ef 13 00 dd 00 00 00 e1 ef 13 00 09 00 00 00 | H...2...}...0................... |
| 14780 | bf f0 13 00 d6 00 00 00 c9 f0 13 00 49 00 00 00 a0 f1 13 00 47 00 00 00 ea f1 13 00 44 00 00 00 | ............I.......G.......D... |
| 147a0 | 32 f2 13 00 4a 00 00 00 77 f2 13 00 26 00 00 00 c2 f2 13 00 1f 00 00 00 e9 f2 13 00 74 00 00 00 | 2...J...w...&...............t... |
| 147c0 | 09 f3 13 00 3d 00 00 00 7e f3 13 00 12 00 00 00 bc f3 13 00 30 00 00 00 cf f3 13 00 45 00 00 00 | ....=...~...........0.......E... |
| 147e0 | 00 f4 13 00 2e 00 00 00 46 f4 13 00 06 00 00 00 75 f4 13 00 65 00 00 00 7c f4 13 00 4e 00 00 00 | ........F.......u...e...|...N... |
| 14800 | e2 f4 13 00 b1 00 00 00 31 f5 13 00 9b 00 00 00 e3 f5 13 00 91 00 00 00 7f f6 13 00 ae 00 00 00 | ........1....................... |
| 14820 | 11 f7 13 00 22 00 00 00 c0 f7 13 00 aa 00 00 00 e3 f7 13 00 39 01 00 00 8e f8 13 00 5c 00 00 00 | ...."...............9.......\... |
| 14840 | c8 f9 13 00 75 00 00 00 25 fa 13 00 7d 00 00 00 9b fa 13 00 74 00 00 00 19 fb 13 00 58 00 00 00 | ....u...%...}.......t.......X... |
| 14860 | 8e fb 13 00 5c 00 00 00 e7 fb 13 00 6f 00 00 00 44 fc 13 00 99 00 00 00 b4 fc 13 00 9d 00 00 00 | ....\.......o...D............... |
| 14880 | 4e fd 13 00 80 00 00 00 ec fd 13 00 84 00 00 00 6d fe 13 00 54 00 00 00 f2 fe 13 00 4c 00 00 00 | N...............m...T.......L... |
| 148a0 | 47 ff 13 00 51 00 00 00 94 ff 13 00 d7 00 00 00 e6 ff 13 00 68 00 00 00 be 00 14 00 62 00 00 00 | G...Q...............h.......b... |
| 148c0 | 27 01 14 00 5e 00 00 00 8a 01 14 00 3c 00 00 00 e9 01 14 00 77 00 00 00 26 02 14 00 40 00 00 00 | '...^.......<.......w...&...@... |
| 148e0 | 9e 02 14 00 d7 00 00 00 df 02 14 00 b3 00 00 00 b7 03 14 00 66 00 00 00 6b 04 14 00 37 00 00 00 | ....................f...k...7... |
| 14900 | d2 04 14 00 6a 00 00 00 0a 05 14 00 42 00 00 00 75 05 14 00 3d 00 00 00 b8 05 14 00 38 00 00 00 | ....j.......B...u...=.......8... |
| 14920 | f6 05 14 00 3d 00 00 00 2f 06 14 00 40 00 00 00 6d 06 14 00 48 01 00 00 ae 06 14 00 4a 01 00 00 | ....=.../...@...m...H.......J... |
| 14940 | f7 07 14 00 52 00 00 00 42 09 14 00 51 00 00 00 95 09 14 00 d9 00 00 00 e7 09 14 00 c9 00 00 00 | ....R...B...Q................... |
| 14960 | c1 0a 14 00 4f 00 00 00 8b 0b 14 00 67 00 00 00 db 0b 14 00 8d 00 00 00 43 0c 14 00 49 00 00 00 | ....O.......g...........C...I... |
| 14980 | d1 0c 14 00 a0 01 00 00 1b 0d 14 00 87 00 00 00 bc 0e 14 00 5f 00 00 00 44 0f 14 00 fa 00 00 00 | ...................._...D....... |
| 149a0 | a4 0f 14 00 54 00 00 00 9f 10 14 00 25 00 00 00 f4 10 14 00 49 00 00 00 1a 11 14 00 92 00 00 00 | ....T.......%.......I........... |
| 149c0 | 64 11 14 00 54 00 00 00 f7 11 14 00 96 00 00 00 4c 12 14 00 d0 00 00 00 e3 12 14 00 2a 00 00 00 | d...T...........L...........*... |
| 149e0 | b4 13 14 00 1c 00 00 00 df 13 14 00 1f 00 00 00 fc 13 14 00 32 00 00 00 1c 14 14 00 12 01 00 00 | ....................2........... |
| 14a00 | 4f 14 14 00 71 00 00 00 62 15 14 00 5f 00 00 00 d4 15 14 00 69 00 00 00 34 16 14 00 a5 00 00 00 | O...q...b..._.......i...4....... |
| 14a20 | 9e 16 14 00 a7 00 00 00 44 17 14 00 45 00 00 00 ec 17 14 00 09 00 00 00 32 18 14 00 2c 00 00 00 | ........D...E...........2...,... |
| 14a40 | 3c 18 14 00 1f 00 00 00 69 18 14 00 0e 00 00 00 89 18 14 00 05 00 00 00 98 18 14 00 83 00 00 00 | <.......i....................... |
| 14a60 | 9e 18 14 00 44 02 00 00 22 19 14 00 dc 00 00 00 67 1b 14 00 8a 01 00 00 44 1c 14 00 8e 01 00 00 | ....D...".......g.......D....... |
| 14a80 | cf 1d 14 00 0f 00 00 00 5e 1f 14 00 93 00 00 00 6e 1f 14 00 13 00 00 00 02 20 14 00 0e 00 00 00 | ........^.......n............... |
| 14aa0 | 16 20 14 00 60 00 00 00 25 20 14 00 5e 00 00 00 86 20 14 00 a6 00 00 00 e5 20 14 00 9e 00 00 00 | ....`...%...^................... |
| 14ac0 | 8c 21 14 00 97 00 00 00 2b 22 14 00 19 00 00 00 c3 22 14 00 b8 00 00 00 dd 22 14 00 71 01 00 00 | .!......+"......."......."..q... |
| 14ae0 | 96 23 14 00 12 00 00 00 08 25 14 00 60 01 00 00 1b 25 14 00 11 00 00 00 7c 26 14 00 0f 00 00 00 | .#.......%..`....%......|&...... |
| 14b00 | 8e 26 14 00 0f 00 00 00 9e 26 14 00 06 00 00 00 ae 26 14 00 0b 00 00 00 b5 26 14 00 35 00 00 00 | .&.......&.......&.......&..5... |
| 14b20 | c1 26 14 00 27 00 00 00 f7 26 14 00 28 00 00 00 1f 27 14 00 44 00 00 00 48 27 14 00 60 00 00 00 | .&..'....&..(....'..D...H'..`... |
| 14b40 | 8d 27 14 00 63 00 00 00 ee 27 14 00 3f 00 00 00 52 28 14 00 5f 00 00 00 92 28 14 00 25 01 00 00 | .'..c....'..?...R(.._....(..%... |
| 14b60 | f2 28 14 00 e1 00 00 00 18 2a 14 00 7c 00 00 00 fa 2a 14 00 13 00 00 00 77 2b 14 00 1f 00 00 00 | .(.......*..|....*......w+...... |
| 14b80 | 8b 2b 14 00 17 00 00 00 ab 2b 14 00 15 00 00 00 c3 2b 14 00 12 00 00 00 d9 2b 14 00 29 00 00 00 | .+.......+.......+.......+..)... |
| 14ba0 | ec 2b 14 00 0d 00 00 00 16 2c 14 00 38 00 00 00 24 2c 14 00 af 00 00 00 5d 2c 14 00 0e 00 00 00 | .+.......,..8...$,......],...... |
| 14bc0 | 0d 2d 14 00 a3 01 00 00 1c 2d 14 00 07 00 00 00 c0 2e 14 00 0c 00 00 00 c8 2e 14 00 0d 00 00 00 | .-.......-...................... |
| 14be0 | d5 2e 14 00 1b 00 00 00 e3 2e 14 00 05 00 00 00 ff 2e 14 00 46 01 00 00 05 2f 14 00 9b 01 00 00 | ....................F..../...... |
| 14c00 | 4c 30 14 00 06 00 00 00 e8 31 14 00 16 00 00 00 ef 31 14 00 15 00 00 00 06 32 14 00 07 00 00 00 | L0.......1.......1.......2...... |
| 14c20 | 1c 32 14 00 9c 00 00 00 24 32 14 00 15 00 00 00 c1 32 14 00 2e 00 00 00 d7 32 14 00 49 00 00 00 | .2......$2.......2.......2..I... |
| 14c40 | 06 33 14 00 e2 00 00 00 50 33 14 00 58 00 00 00 33 34 14 00 23 00 00 00 8c 34 14 00 22 00 00 00 | .3......P3..X...34..#....4.."... |
| 14c60 | b0 34 14 00 15 00 00 00 d3 34 14 00 14 00 00 00 e9 34 14 00 66 00 00 00 fe 34 14 00 25 00 00 00 | .4.......4.......4..f....4..%... |
| 14c80 | 65 35 14 00 26 00 00 00 8b 35 14 00 0f 00 00 00 b2 35 14 00 20 00 00 00 c2 35 14 00 13 00 00 00 | e5..&....5.......5.......5...... |
| 14ca0 | e3 35 14 00 39 00 00 00 f7 35 14 00 59 00 00 00 31 36 14 00 3e 00 00 00 8b 36 14 00 00 01 00 00 | .5..9....5..Y...16..>....6...... |
| 14cc0 | ca 36 14 00 55 00 00 00 cb 37 14 00 6f 00 00 00 21 38 14 00 54 00 00 00 91 38 14 00 6e 00 00 00 | .6..U....7..o...!8..T....8..n... |
| 14ce0 | e6 38 14 00 5d 00 00 00 55 39 14 00 77 00 00 00 b3 39 14 00 51 00 00 00 2b 3a 14 00 6b 00 00 00 | .8..]...U9..w....9..Q...+:..k... |
| 14d00 | 7d 3a 14 00 55 00 00 00 e9 3a 14 00 6f 00 00 00 3f 3b 14 00 52 00 00 00 af 3b 14 00 6c 00 00 00 | }:..U....:..o...?;..R....;..l... |
| 14d20 | 02 3c 14 00 1a 00 00 00 6f 3c 14 00 44 00 00 00 8a 3c 14 00 36 00 00 00 cf 3c 14 00 46 00 00 00 | .<......o<..D....<..6....<..F... |
| 14d40 | 06 3d 14 00 2c 00 00 00 4d 3d 14 00 22 00 00 00 7a 3d 14 00 88 00 00 00 9d 3d 14 00 30 00 00 00 | .=..,...M=.."...z=.......=..0... |
| 14d60 | 26 3e 14 00 43 00 00 00 57 3e 14 00 18 00 00 00 9b 3e 14 00 28 00 00 00 b4 3e 14 00 2f 00 00 00 | &>..C...W>.......>..(....>../... |
| 14d80 | dd 3e 14 00 7f 00 00 00 0d 3f 14 00 68 00 00 00 8d 3f 14 00 8c 00 00 00 f6 3f 14 00 9a 00 00 00 | .>.......?..h....?.......?...... |
| 14da0 | 83 40 14 00 8a 00 00 00 1e 41 14 00 78 00 00 00 a9 41 14 00 59 00 00 00 22 42 14 00 4f 00 00 00 | .@.......A..x....A..Y..."B..O... |
| 14dc0 | 7c 42 14 00 19 01 00 00 cc 42 14 00 24 01 00 00 e6 43 14 00 22 01 00 00 0b 45 14 00 08 01 00 00 | |B.......B..$....C.."....E...... |
| 14de0 | 2e 46 14 00 f8 00 00 00 37 47 14 00 f7 00 00 00 30 48 14 00 f9 00 00 00 28 49 14 00 f7 00 00 00 | .F......7G......0H......(I...... |
| 14e00 | 22 4a 14 00 fc 00 00 00 1a 4b 14 00 f7 00 00 00 17 4c 14 00 fc 00 00 00 0f 4d 14 00 f7 00 00 00 | "J.......K.......L.......M...... |
| 14e20 | 0c 4e 14 00 c4 00 00 00 04 4f 14 00 a1 00 00 00 c9 4f 14 00 73 00 00 00 6b 50 14 00 f8 00 00 00 | .N.......O.......O..s...kP...... |
| 14e40 | df 50 14 00 4e 00 00 00 d8 51 14 00 99 00 00 00 27 52 14 00 4b 00 00 00 c1 52 14 00 5b 00 00 00 | .P..N....Q......'R..K....R..[... |
| 14e60 | 0d 53 14 00 40 00 00 00 69 53 14 00 99 00 00 00 aa 53 14 00 4a 00 00 00 44 54 14 00 4a 00 00 00 | .S..@...iS.......S..J...DT..J... |
| 14e80 | 8f 54 14 00 50 00 00 00 da 54 14 00 47 00 00 00 2b 55 14 00 44 01 00 00 73 55 14 00 45 01 00 00 | .T..P....T..G...+U..D...sU..E... |
| 14ea0 | b8 56 14 00 44 01 00 00 fe 57 14 00 49 01 00 00 43 59 14 00 44 01 00 00 8d 5a 14 00 45 01 00 00 | .V..D....W..I...CY..D....Z..E... |
| 14ec0 | d2 5b 14 00 44 01 00 00 18 5d 14 00 3c 01 00 00 5d 5e 14 00 a0 00 00 00 9a 5f 14 00 30 01 00 00 | .[..D....]..<...]^......._..0... |
| 14ee0 | 3b 60 14 00 50 01 00 00 6c 61 14 00 d1 00 00 00 bd 62 14 00 23 01 00 00 8f 63 14 00 08 01 00 00 | ;`..P...la.......b..#....c...... |
| 14f00 | b3 64 14 00 29 01 00 00 bc 65 14 00 2f 01 00 00 e6 66 14 00 da 00 00 00 16 68 14 00 34 01 00 00 | .d..)....e../....f.......h..4... |
| 14f20 | f1 68 14 00 89 00 00 00 26 6a 14 00 66 00 00 00 b0 6a 14 00 88 00 00 00 17 6b 14 00 a5 00 00 00 | .h......&j..f....j.......k...... |
| 14f40 | a0 6b 14 00 70 00 00 00 46 6c 14 00 6f 00 00 00 b7 6c 14 00 8e 00 00 00 27 6d 14 00 b0 00 00 00 | .k..p...Fl..o....l......'m...... |
| 14f60 | b6 6d 14 00 0f 01 00 00 67 6e 14 00 c3 00 00 00 77 6f 14 00 84 00 00 00 3b 70 14 00 be 00 00 00 | .m......gn......wo......;p...... |
| 14f80 | c0 70 14 00 db 00 00 00 7f 71 14 00 85 00 00 00 5b 72 14 00 7d 00 00 00 e1 72 14 00 9a 00 00 00 | .p.......q......[r..}....r...... |
| 14fa0 | 5f 73 14 00 92 00 00 00 fa 73 14 00 91 00 00 00 8d 74 14 00 d5 00 00 00 1f 75 14 00 93 00 00 00 | _s.......s.......t.......u...... |
| 14fc0 | f5 75 14 00 8e 00 00 00 89 76 14 00 fa 00 00 00 18 77 14 00 bd 00 00 00 13 78 14 00 f5 00 00 00 | .u.......v.......w.......x...... |
| 14fe0 | d1 78 14 00 a6 00 00 00 c7 79 14 00 a1 00 00 00 6e 7a 14 00 7b 00 00 00 10 7b 14 00 fc 00 00 00 | .x.......y......nz..{....{...... |
| 15000 | 8c 7b 14 00 fd 00 00 00 89 7c 14 00 19 01 00 00 87 7d 14 00 9d 00 00 00 a1 7e 14 00 be 01 00 00 | .{.......|.......}.......~...... |
| 15020 | 3f 7f 14 00 b1 00 00 00 fe 80 14 00 5b 00 00 00 b0 81 14 00 63 00 00 00 0c 82 14 00 33 01 00 00 | ?...........[.......c.......3... |
| 15040 | 70 82 14 00 3b 00 00 00 a4 83 14 00 98 00 00 00 e0 83 14 00 54 00 00 00 79 84 14 00 59 00 00 00 | p...;...............T...y...Y... |
| 15060 | ce 84 14 00 de 00 00 00 28 85 14 00 9a 00 00 00 07 86 14 00 2b 00 00 00 a2 86 14 00 c0 00 00 00 | ........(...........+........... |
| 15080 | ce 86 14 00 c5 00 00 00 8f 87 14 00 3a 00 00 00 55 88 14 00 35 00 00 00 90 88 14 00 87 00 00 00 | ............:...U...5........... |
| 150a0 | c6 88 14 00 5c 00 00 00 4e 89 14 00 74 00 00 00 ab 89 14 00 da 00 00 00 20 8a 14 00 f0 00 00 00 | ....\...N...t................... |
| 150c0 | fb 8a 14 00 84 00 00 00 ec 8b 14 00 f0 00 00 00 71 8c 14 00 f0 00 00 00 62 8d 14 00 f0 00 00 00 | ................q.......b....... |
| 150e0 | 53 8e 14 00 f1 00 00 00 44 8f 14 00 5f 00 00 00 36 90 14 00 83 00 00 00 96 90 14 00 bd 00 00 00 | S.......D..._...6............... |
| 15100 | 1a 91 14 00 79 00 00 00 d8 91 14 00 7e 00 00 00 52 92 14 00 36 00 00 00 d1 92 14 00 78 00 00 00 | ....y.......~...R...6.......x... |
| 15120 | 08 93 14 00 85 00 00 00 81 93 14 00 51 00 00 00 07 94 14 00 3e 00 00 00 59 94 14 00 3e 00 00 00 | ............Q.......>...Y...>... |
| 15140 | 98 94 14 00 75 00 00 00 d7 94 14 00 53 00 00 00 4d 95 14 00 df 00 00 00 a1 95 14 00 a1 00 00 00 | ....u.......S...M............... |
| 15160 | 81 96 14 00 ac 00 00 00 23 97 14 00 3b 00 00 00 d0 97 14 00 47 00 00 00 0c 98 14 00 67 00 00 00 | ........#...;.......G.......g... |
| 15180 | 54 98 14 00 d8 00 00 00 bc 98 14 00 5a 00 00 00 95 99 14 00 38 00 00 00 f0 99 14 00 88 01 00 00 | T...........Z.......8........... |
| 151a0 | 29 9a 14 00 c5 00 00 00 b2 9b 14 00 a1 00 00 00 78 9c 14 00 6d 00 00 00 1a 9d 14 00 4e 00 00 00 | )...............x...m.......N... |
| 151c0 | 88 9d 14 00 54 00 00 00 d7 9d 14 00 3d 00 00 00 2c 9e 14 00 8a 00 00 00 6a 9e 14 00 6f 00 00 00 | ....T.......=...,.......j...o... |
| 151e0 | f5 9e 14 00 2e 00 00 00 65 9f 14 00 31 00 00 00 94 9f 14 00 3c 00 00 00 c6 9f 14 00 17 01 00 00 | ........e...1.......<........... |
| 15200 | 03 a0 14 00 db 00 00 00 1b a1 14 00 49 00 00 00 f7 a1 14 00 4a 00 00 00 41 a2 14 00 49 00 00 00 | ............I.......J...A...I... |
| 15220 | 8c a2 14 00 49 00 00 00 d6 a2 14 00 0b 01 00 00 20 a3 14 00 51 00 00 00 2c a4 14 00 96 00 00 00 | ....I...............Q...,....... |
| 15240 | 7e a4 14 00 5d 00 00 00 15 a5 14 00 49 00 00 00 73 a5 14 00 46 00 00 00 bd a5 14 00 37 00 00 00 | ~...].......I...s...F.......7... |
| 15260 | 04 a6 14 00 38 01 00 00 3c a6 14 00 31 00 00 00 75 a7 14 00 30 00 00 00 a7 a7 14 00 39 00 00 00 | ....8...<...1...u...0.......9... |
| 15280 | d8 a7 14 00 33 00 00 00 12 a8 14 00 33 00 00 00 46 a8 14 00 49 00 00 00 7a a8 14 00 d9 00 00 00 | ....3.......3...F...I...z....... |
| 152a0 | c4 a8 14 00 78 00 00 00 9e a9 14 00 79 00 00 00 17 aa 14 00 8c 00 00 00 91 aa 14 00 47 00 00 00 | ....x.......y...............G... |
| 152c0 | 1e ab 14 00 fb 00 00 00 66 ab 14 00 b7 00 00 00 62 ac 14 00 5b 00 00 00 1a ad 14 00 b7 00 00 00 | ........f.......b...[........... |
| 152e0 | 76 ad 14 00 42 00 00 00 2e ae 14 00 46 00 00 00 71 ae 14 00 30 00 00 00 b8 ae 14 00 39 00 00 00 | v...B.......F...q...0.......9... |
| 15300 | e9 ae 14 00 25 00 00 00 23 af 14 00 2e 00 00 00 49 af 14 00 2e 00 00 00 78 af 14 00 39 00 00 00 | ....%...#.......I.......x...9... |
| 15320 | a7 af 14 00 c1 00 00 00 e1 af 14 00 8c 00 00 00 a3 b0 14 00 b5 00 00 00 30 b1 14 00 42 00 00 00 | ........................0...B... |
| 15340 | e6 b1 14 00 a5 00 00 00 29 b2 14 00 b9 00 00 00 cf b2 14 00 3e 00 00 00 89 b3 14 00 74 00 00 00 | ........)...........>.......t... |
| 15360 | c8 b3 14 00 6c 00 00 00 3d b4 14 00 81 00 00 00 aa b4 14 00 19 00 00 00 2c b5 14 00 23 00 00 00 | ....l...=...............,...#... |
| 15380 | 46 b5 14 00 b7 00 00 00 6a b5 14 00 dc 00 00 00 22 b6 14 00 13 00 00 00 ff b6 14 00 54 00 00 00 | F.......j......."...........T... |
| 153a0 | 13 b7 14 00 5f 01 00 00 68 b7 14 00 63 01 00 00 c8 b8 14 00 17 00 00 00 2c ba 14 00 1a 00 00 00 | ...._...h...c...........,....... |
| 153c0 | 44 ba 14 00 1d 00 00 00 5f ba 14 00 a2 00 00 00 7d ba 14 00 17 00 00 00 20 bb 14 00 86 01 00 00 | D......._.......}............... |
| 153e0 | 38 bb 14 00 8a 00 00 00 bf bc 14 00 5b 00 00 00 4a bd 14 00 3b 00 00 00 a6 bd 14 00 dd 00 00 00 | 8...........[...J...;........... |
| 15400 | e2 bd 14 00 1d 01 00 00 c0 be 14 00 32 00 00 00 de bf 14 00 20 00 00 00 11 c0 14 00 5d 00 00 00 | ............2...............]... |
| 15420 | 32 c0 14 00 54 00 00 00 90 c0 14 00 04 00 00 00 e5 c0 14 00 30 00 00 00 ea c0 14 00 0c 00 00 00 | 2...T...............0........... |
| 15440 | 1b c1 14 00 0c 00 00 00 28 c1 14 00 60 00 00 00 35 c1 14 00 09 00 00 00 96 c1 14 00 35 01 00 00 | ........(...`...5...........5... |
| 15460 | a0 c1 14 00 33 01 00 00 d6 c2 14 00 70 00 00 00 0a c4 14 00 03 00 00 00 7b c4 14 00 62 00 00 00 | ....3.......p...........{...b... |
| 15480 | 7f c4 14 00 03 00 00 00 e2 c4 14 00 11 00 00 00 e6 c4 14 00 0b 00 00 00 f8 c4 14 00 16 00 00 00 | ................................ |
| 154a0 | 04 c5 14 00 19 00 00 00 1b c5 14 00 15 00 00 00 35 c5 14 00 11 00 00 00 4b c5 14 00 14 00 00 00 | ................5.......K....... |
| 154c0 | 5d c5 14 00 6a 02 00 00 72 c5 14 00 3d 01 00 00 dd c7 14 00 85 01 00 00 1b c9 14 00 95 00 00 00 | ]...j...r...=................... |
| 154e0 | a1 ca 14 00 d5 01 00 00 37 cb 14 00 32 00 00 00 0d cd 14 00 1e 00 00 00 40 cd 14 00 05 00 00 00 | ........7...2...........@....... |
| 15500 | 5f cd 14 00 45 01 00 00 65 cd 14 00 16 00 00 00 ab ce 14 00 3b 00 00 00 c2 ce 14 00 18 00 00 00 | _...E...e...........;........... |
| 15520 | fe ce 14 00 16 00 00 00 17 cf 14 00 05 00 00 00 2e cf 14 00 8e 00 00 00 34 cf 14 00 60 00 00 00 | ........................4...`... |
| 15540 | c3 cf 14 00 0c 00 00 00 24 d0 14 00 0d 00 00 00 31 d0 14 00 3d 00 00 00 3f d0 14 00 3b 00 00 00 | ........$.......1...=...?...;... |
| 15560 | 7d d0 14 00 07 00 00 00 b9 d0 14 00 10 00 00 00 c1 d0 14 00 6c 00 00 00 d2 d0 14 00 0e 00 00 00 | }...................l........... |
| 15580 | 3f d1 14 00 4b 00 00 00 4e d1 14 00 47 00 00 00 9a d1 14 00 65 00 00 00 e2 d1 14 00 a1 00 00 00 | ?...K...N...G.......e........... |
| 155a0 | 48 d2 14 00 3f 00 00 00 ea d2 14 00 4b 01 00 00 2a d3 14 00 4a 01 00 00 76 d4 14 00 44 01 00 00 | H...?.......K...*...J...v...D... |
| 155c0 | c1 d5 14 00 15 00 00 00 06 d7 14 00 24 00 00 00 1c d7 14 00 0a 00 00 00 41 d7 14 00 24 00 00 00 | ............$...........A...$... |
| 155e0 | 4c d7 14 00 09 00 00 00 71 d7 14 00 29 00 00 00 7b d7 14 00 1b 00 00 00 a5 d7 14 00 c9 00 00 00 | L.......q...)...{............... |
| 15600 | c1 d7 14 00 0b 00 00 00 8b d8 14 00 85 00 00 00 97 d8 14 00 26 00 00 00 1d d9 14 00 3d 00 00 00 | ....................&.......=... |
| 15620 | 44 d9 14 00 52 00 00 00 82 d9 14 00 b4 00 00 00 d5 d9 14 00 a9 00 00 00 8a da 14 00 26 00 00 00 | D...R.......................&... |
| 15640 | 34 db 14 00 b0 00 00 00 5b db 14 00 de 00 00 00 0c dc 14 00 df 00 00 00 eb dc 14 00 1c 00 00 00 | 4.......[....................... |
| 15660 | cb dd 14 00 8f 00 00 00 e8 dd 14 00 8c 00 00 00 78 de 14 00 90 00 00 00 05 df 14 00 5d 00 00 00 | ................x...........]... |
| 15680 | 96 df 14 00 44 00 00 00 f4 df 14 00 2f 00 00 00 39 e0 14 00 b0 00 00 00 69 e0 14 00 50 00 00 00 | ....D......./...9.......i...P... |
| 156a0 | 1a e1 14 00 a6 00 00 00 6b e1 14 00 ec 00 00 00 12 e2 14 00 64 00 00 00 ff e2 14 00 53 00 00 00 | ........k...........d.......S... |
| 156c0 | 64 e3 14 00 df 00 00 00 b8 e3 14 00 86 00 00 00 98 e4 14 00 63 00 00 00 1f e5 14 00 68 00 00 00 | d...................c.......h... |
| 156e0 | 83 e5 14 00 d1 00 00 00 ec e5 14 00 6f 00 00 00 be e6 14 00 8d 00 00 00 2e e7 14 00 78 00 00 00 | ............o...............x... |
| 15700 | bc e7 14 00 7a 00 00 00 35 e8 14 00 7d 00 00 00 b0 e8 14 00 80 00 00 00 2e e9 14 00 33 00 00 00 | ....z...5...}...............3... |
| 15720 | af e9 14 00 71 00 00 00 e3 e9 14 00 db 00 00 00 55 ea 14 00 a5 00 00 00 31 eb 14 00 75 00 00 00 | ....q...........U.......1...u... |
| 15740 | d7 eb 14 00 59 00 00 00 4d ec 14 00 58 00 00 00 a7 ec 14 00 9b 00 00 00 00 ed 14 00 c3 00 00 00 | ....Y...M...X................... |
| 15760 | 9c ed 14 00 b6 00 00 00 60 ee 14 00 ba 00 00 00 17 ef 14 00 29 00 00 00 d2 ef 14 00 9c 00 00 00 | ........`...........)........... |
| 15780 | fc ef 14 00 e3 00 00 00 99 f0 14 00 9e 00 00 00 7d f1 14 00 44 00 00 00 1c f2 14 00 44 00 00 00 | ................}...D.......D... |
| 157a0 | 61 f2 14 00 ed 00 00 00 a6 f2 14 00 3c 00 00 00 94 f3 14 00 bd 00 00 00 d1 f3 14 00 bf 00 00 00 | a...........<................... |
| 157c0 | 8f f4 14 00 88 00 00 00 4f f5 14 00 85 00 00 00 d8 f5 14 00 6f 00 00 00 5e f6 14 00 cf 00 00 00 | ........O...........o...^....... |
| 157e0 | ce f6 14 00 17 00 00 00 9e f7 14 00 12 00 00 00 b6 f7 14 00 18 00 00 00 c9 f7 14 00 39 00 00 00 | ............................9... |
| 15800 | e2 f7 14 00 1b 00 00 00 1c f8 14 00 31 00 00 00 38 f8 14 00 21 00 00 00 6a f8 14 00 07 00 00 00 | ............1...8...!...j....... |
| 15820 | 8c f8 14 00 12 00 00 00 94 f8 14 00 79 00 00 00 a7 f8 14 00 e5 00 00 00 21 f9 14 00 e5 00 00 00 | ............y...........!....... |
| 15840 | 07 fa 14 00 ac 00 00 00 ed fa 14 00 84 00 00 00 9a fb 14 00 36 01 00 00 1f fc 14 00 5a 00 00 00 | ....................6.......Z... |
| 15860 | 56 fd 14 00 c4 00 00 00 b1 fd 14 00 4b 00 00 00 76 fe 14 00 a7 00 00 00 c2 fe 14 00 17 00 00 00 | V...........K...v............... |
| 15880 | 6a ff 14 00 e8 00 00 00 82 ff 14 00 48 00 00 00 6b 00 15 00 41 00 00 00 b4 00 15 00 2e 00 00 00 | j...........H...k...A........... |
| 158a0 | f6 00 15 00 47 00 00 00 25 01 15 00 3f 00 00 00 6d 01 15 00 9b 00 00 00 ad 01 15 00 9c 00 00 00 | ....G...%...?...m............... |
| 158c0 | 49 02 15 00 68 00 00 00 e6 02 15 00 1b 01 00 00 4f 03 15 00 22 00 00 00 6b 04 15 00 08 00 00 00 | I...h...........O..."...k....... |
| 158e0 | 8e 04 15 00 2a 00 00 00 97 04 15 00 34 00 00 00 c2 04 15 00 ae 00 00 00 f7 04 15 00 17 01 00 00 | ....*.......4................... |
| 15900 | a6 05 15 00 79 00 00 00 be 06 15 00 73 00 00 00 38 07 15 00 bf 00 00 00 ac 07 15 00 dc 00 00 00 | ....y.......s...8............... |
| 15920 | 6c 08 15 00 7b 01 00 00 49 09 15 00 90 01 00 00 c5 0a 15 00 13 01 00 00 56 0c 15 00 a0 00 00 00 | l...{...I...............V....... |
| 15940 | 6a 0d 15 00 36 01 00 00 0b 0e 15 00 04 02 00 00 42 0f 15 00 a7 00 00 00 47 11 15 00 b6 00 00 00 | j...6...........B.......G....... |
| 15960 | ef 11 15 00 ad 00 00 00 a6 12 15 00 67 00 00 00 54 13 15 00 71 00 00 00 bc 13 15 00 fe 00 00 00 | ............g...T...q........... |
| 15980 | 2e 14 15 00 7d 00 00 00 2d 15 15 00 7e 00 00 00 ab 15 15 00 6d 01 00 00 2a 16 15 00 7a 00 00 00 | ....}...-...~.......m...*...z... |
| 159a0 | 98 17 15 00 e2 00 00 00 13 18 15 00 1e 01 00 00 f6 18 15 00 56 00 00 00 15 1a 15 00 89 00 00 00 | ....................V........... |
| 159c0 | 6c 1a 15 00 16 01 00 00 f6 1a 15 00 06 01 00 00 0d 1c 15 00 b1 00 00 00 14 1d 15 00 58 00 00 00 | l...........................X... |
| 159e0 | c6 1d 15 00 92 00 00 00 1f 1e 15 00 80 00 00 00 b2 1e 15 00 7d 00 00 00 33 1f 15 00 98 00 00 00 | ....................}...3....... |
| 15a00 | b1 1f 15 00 b5 00 00 00 4a 20 15 00 a2 00 00 00 00 21 15 00 00 01 00 00 a3 21 15 00 37 00 00 00 | ........J........!.......!..7... |
| 15a20 | a4 22 15 00 42 00 00 00 dc 22 15 00 d0 00 00 00 1f 23 15 00 cf 00 00 00 f0 23 15 00 fd 00 00 00 | ."..B....".......#.......#...... |
| 15a40 | c0 24 15 00 3c 01 00 00 be 25 15 00 fb 00 00 00 fb 26 15 00 bf 00 00 00 f7 27 15 00 9e 00 00 00 | .$..<....%.......&.......'...... |
| 15a60 | b7 28 15 00 9b 01 00 00 56 29 15 00 a4 00 00 00 f2 2a 15 00 fb 00 00 00 97 2b 15 00 18 01 00 00 | .(......V).......*.......+...... |
| 15a80 | 93 2c 15 00 20 01 00 00 ac 2d 15 00 5d 00 00 00 cd 2e 15 00 4b 00 00 00 2b 2f 15 00 97 00 00 00 | .,.......-..].......K...+/...... |
| 15aa0 | 77 2f 15 00 57 00 00 00 0f 30 15 00 3e 00 00 00 67 30 15 00 b0 00 00 00 a6 30 15 00 f1 00 00 00 | w/..W....0..>...g0.......0...... |
| 15ac0 | 57 31 15 00 b6 00 00 00 49 32 15 00 b8 00 00 00 00 33 15 00 b6 00 00 00 b9 33 15 00 b8 00 00 00 | W1......I2.......3.......3...... |
| 15ae0 | 70 34 15 00 5d 00 00 00 29 35 15 00 4a 00 00 00 87 35 15 00 34 00 00 00 d2 35 15 00 2c 00 00 00 | p4..]...)5..J....5..4....5..,... |
| 15b00 | 07 36 15 00 24 00 00 00 34 36 15 00 41 00 00 00 59 36 15 00 d6 00 00 00 9b 36 15 00 d9 00 00 00 | .6..$...46..A...Y6.......6...... |
| 15b20 | 72 37 15 00 ae 00 00 00 4c 38 15 00 cf 00 00 00 fb 38 15 00 59 00 00 00 cb 39 15 00 14 00 00 00 | r7......L8.......8..Y....9...... |
| 15b40 | 25 3a 15 00 b5 00 00 00 3a 3a 15 00 c3 00 00 00 f0 3a 15 00 48 00 00 00 b4 3b 15 00 95 00 00 00 | %:......::.......:..H....;...... |
| 15b60 | fd 3b 15 00 62 00 00 00 93 3c 15 00 86 00 00 00 f6 3c 15 00 fe 00 00 00 7d 3d 15 00 41 00 00 00 | .;..b....<.......<......}=..A... |
| 15b80 | 7c 3e 15 00 93 00 00 00 be 3e 15 00 09 00 00 00 52 3f 15 00 18 00 00 00 5c 3f 15 00 33 00 00 00 | |>.......>......R?......\?..3... |
| 15ba0 | 75 3f 15 00 99 00 00 00 a9 3f 15 00 9a 00 00 00 43 40 15 00 22 00 00 00 de 40 15 00 16 00 00 00 | u?.......?......C@.."....@...... |
| 15bc0 | 01 41 15 00 1f 00 00 00 18 41 15 00 27 00 00 00 38 41 15 00 30 00 00 00 60 41 15 00 10 00 00 00 | .A.......A..'...8A..0...`A...... |
| 15be0 | 91 41 15 00 21 00 00 00 a2 41 15 00 1c 00 00 00 c4 41 15 00 aa 01 00 00 e1 41 15 00 82 00 00 00 | .A..!....A.......A.......A...... |
| 15c00 | 8c 43 15 00 ac 00 00 00 0f 44 15 00 fe 00 00 00 bc 44 15 00 60 00 00 00 bb 45 15 00 55 00 00 00 | .C.......D.......D..`....E..U... |
| 15c20 | 1c 46 15 00 51 00 00 00 72 46 15 00 90 01 00 00 c4 46 15 00 86 01 00 00 55 48 15 00 85 01 00 00 | .F..Q...rF.......F......UH...... |
| 15c40 | dc 49 15 00 01 00 00 00 62 4b 15 00 76 00 00 00 64 4b 15 00 6b 00 00 00 db 4b 15 00 60 00 00 00 | .I......bK..v...dK..k....K..`... |
| 15c60 | 47 4c 15 00 a9 00 00 00 a8 4c 15 00 c9 00 00 00 52 4d 15 00 9b 00 00 00 1c 4e 15 00 c3 00 00 00 | GL.......L......RM.......N...... |
| 15c80 | b8 4e 15 00 3c 00 00 00 7c 4f 15 00 38 00 00 00 b9 4f 15 00 95 00 00 00 f2 4f 15 00 2e 00 00 00 | .N..<...|O..8....O.......O...... |
| 15ca0 | 88 50 15 00 57 00 00 00 b7 50 15 00 61 00 00 00 0f 51 15 00 69 00 00 00 71 51 15 00 4b 00 00 00 | .P..W....P..a....Q..i...qQ..K... |
| 15cc0 | db 51 15 00 a4 00 00 00 27 52 15 00 52 00 00 00 cc 52 15 00 53 00 00 00 1f 53 15 00 51 00 00 00 | .Q......'R..R....R..S....S..Q... |
| 15ce0 | 73 53 15 00 52 00 00 00 c5 53 15 00 65 00 00 00 18 54 15 00 c4 00 00 00 7e 54 15 00 35 00 00 00 | sS..R....S..e....T......~T..5... |
| 15d00 | 43 55 15 00 51 00 00 00 79 55 15 00 a7 00 00 00 cb 55 15 00 8a 00 00 00 73 56 15 00 96 00 00 00 | CU..Q...yU.......U......sV...... |
| 15d20 | fe 56 15 00 81 00 00 00 95 57 15 00 7f 00 00 00 17 58 15 00 33 00 00 00 97 58 15 00 88 00 00 00 | .V.......W.......X..3....X...... |
| 15d40 | cb 58 15 00 e3 00 00 00 54 59 15 00 c3 00 00 00 38 5a 15 00 3a 00 00 00 fc 5a 15 00 5a 00 00 00 | .X......TY......8Z..:....Z..Z... |
| 15d60 | 37 5b 15 00 65 00 00 00 92 5b 15 00 c3 00 00 00 f8 5b 15 00 db 00 00 00 bc 5c 15 00 50 00 00 00 | 7[..e....[.......[.......\..P... |
| 15d80 | 98 5d 15 00 4d 00 00 00 e9 5d 15 00 06 01 00 00 37 5e 15 00 1d 01 00 00 3e 5f 15 00 f2 00 00 00 | .]..M....]......7^......>_...... |
| 15da0 | 5c 60 15 00 48 00 00 00 4f 61 15 00 b0 00 00 00 98 61 15 00 9f 00 00 00 49 62 15 00 1f 00 00 00 | \`..H...Oa.......a......Ib...... |
| 15dc0 | e9 62 15 00 71 00 00 00 09 63 15 00 75 00 00 00 7b 63 15 00 75 00 00 00 f1 63 15 00 dc 00 00 00 | .b..q....c..u...{c..u....c...... |
| 15de0 | 67 64 15 00 3f 00 00 00 44 65 15 00 6d 00 00 00 84 65 15 00 d9 00 00 00 f2 65 15 00 da 00 00 00 | gd..?...De..m....e.......e...... |
| 15e00 | cc 66 15 00 1c 00 00 00 a7 67 15 00 13 00 00 00 c4 67 15 00 20 00 00 00 d8 67 15 00 14 00 00 00 | .f.......g.......g.......g...... |
| 15e20 | f9 67 15 00 13 00 00 00 0e 68 15 00 03 01 00 00 22 68 15 00 1d 00 00 00 26 69 15 00 1d 00 00 00 | .g.......h......"h......&i...... |
| 15e40 | 44 69 15 00 23 00 00 00 62 69 15 00 1d 00 00 00 86 69 15 00 29 00 00 00 a4 69 15 00 3f 01 00 00 | Di..#...bi.......i..)....i..?... |
| 15e60 | ce 69 15 00 31 00 00 00 0e 6b 15 00 31 00 00 00 40 6b 15 00 33 00 00 00 72 6b 15 00 33 00 00 00 | .i..1....k..1...@k..3...rk..3... |
| 15e80 | a6 6b 15 00 10 00 00 00 da 6b 15 00 0c 00 00 00 eb 6b 15 00 2d 00 00 00 f8 6b 15 00 2c 00 00 00 | .k.......k.......k..-....k..,... |
| 15ea0 | 26 6c 15 00 12 00 00 00 53 6c 15 00 2c 00 00 00 66 6c 15 00 12 00 00 00 93 6c 15 00 25 00 00 00 | &l......Sl..,...fl.......l..%... |
| 15ec0 | a6 6c 15 00 3c 00 00 00 cc 6c 15 00 12 00 00 00 09 6d 15 00 35 00 00 00 1c 6d 15 00 13 00 00 00 | .l..<....l.......m..5....m...... |
| 15ee0 | 52 6d 15 00 1e 00 00 00 66 6d 15 00 25 00 00 00 85 6d 15 00 1e 00 00 00 ab 6d 15 00 25 00 00 00 | Rm......fm..%....m.......m..%... |
| 15f00 | ca 6d 15 00 1e 00 00 00 f0 6d 15 00 25 00 00 00 0f 6e 15 00 1f 00 00 00 35 6e 15 00 26 00 00 00 | .m.......m..%....n......5n..&... |
| 15f20 | 55 6e 15 00 21 00 00 00 7c 6e 15 00 28 00 00 00 9e 6e 15 00 34 00 00 00 c7 6e 15 00 16 00 00 00 | Un..!...|n..(....n..4....n...... |
| 15f40 | fc 6e 15 00 1c 00 00 00 13 6f 15 00 12 00 00 00 30 6f 15 00 12 00 00 00 43 6f 15 00 34 00 00 00 | .n.......o......0o......Co..4... |
| 15f60 | 56 6f 15 00 13 00 00 00 8b 6f 15 00 1d 00 00 00 9f 6f 15 00 13 00 00 00 bd 6f 15 00 30 00 00 00 | Vo.......o.......o.......o..0... |
| 15f80 | d1 6f 15 00 1f 00 00 00 02 70 15 00 1f 00 00 00 22 70 15 00 13 00 00 00 42 70 15 00 16 00 00 00 | .o.......p......"p......Bp...... |
| 15fa0 | 56 70 15 00 25 01 00 00 6d 70 15 00 d3 00 00 00 93 71 15 00 26 00 00 00 67 72 15 00 55 00 00 00 | Vp..%...mp.......q..&...gr..U... |
| 15fc0 | 8e 72 15 00 55 00 00 00 e4 72 15 00 13 00 00 00 3a 73 15 00 38 00 00 00 4e 73 15 00 41 00 00 00 | .r..U....r......:s..8...Ns..A... |
| 15fe0 | 87 73 15 00 16 00 00 00 c9 73 15 00 9d 00 00 00 e0 73 15 00 41 00 00 00 7e 74 15 00 38 00 00 00 | .s.......s.......s..A...~t..8... |
| 16000 | c0 74 15 00 1e 00 00 00 f9 74 15 00 22 00 00 00 18 75 15 00 5d 00 00 00 3b 75 15 00 55 00 00 00 | .t.......t.."....u..]...;u..U... |
| 16020 | 99 75 15 00 1e 00 00 00 ef 75 15 00 44 00 00 00 0e 76 15 00 25 00 00 00 53 76 15 00 08 01 00 00 | .u.......u..D....v..%...Sv...... |
| 16040 | 79 76 15 00 76 00 00 00 82 77 15 00 fd 01 00 00 f9 77 15 00 21 00 00 00 f7 79 15 00 87 00 00 00 | yv..v....w.......w..!....y...... |
| 16060 | 19 7a 15 00 54 00 00 00 a1 7a 15 00 2b 00 00 00 f6 7a 15 00 5b 00 00 00 22 7b 15 00 45 00 00 00 | .z..T....z..+....z..[..."{..E... |
| 16080 | 7e 7b 15 00 87 02 00 00 c4 7b 15 00 c3 00 00 00 4c 7e 15 00 59 00 00 00 10 7f 15 00 25 00 00 00 | ~{.......{......L~..Y.......%... |
| 160a0 | 6a 7f 15 00 1e 00 00 00 90 7f 15 00 2a 00 00 00 af 7f 15 00 2f 00 00 00 da 7f 15 00 27 00 00 00 | j...........*......./.......'... |
| 160c0 | 0a 80 15 00 37 00 00 00 32 80 15 00 54 00 00 00 6a 80 15 00 4f 00 00 00 bf 80 15 00 59 00 00 00 | ....7...2...T...j...O.......Y... |
| 160e0 | 0f 81 15 00 4d 00 00 00 69 81 15 00 5f 00 00 00 b7 81 15 00 33 00 00 00 17 82 15 00 64 00 00 00 | ....M...i..._.......3.......d... |
| 16100 | 4b 82 15 00 7b 00 00 00 b0 82 15 00 49 00 00 00 2c 83 15 00 1e 00 00 00 76 83 15 00 f3 00 00 00 | K...{.......I...,.......v....... |
| 16120 | 95 83 15 00 f1 00 00 00 89 84 15 00 5e 00 00 00 7b 85 15 00 79 00 00 00 da 85 15 00 54 00 00 00 | ............^...{...y.......T... |
| 16140 | 54 86 15 00 43 00 00 00 a9 86 15 00 4f 00 00 00 ed 86 15 00 29 00 00 00 3d 87 15 00 82 00 00 00 | T...C.......O.......)...=....... |
| 16160 | 67 87 15 00 22 00 00 00 ea 87 15 00 47 02 00 00 0d 88 15 00 47 02 00 00 55 8a 15 00 fc 00 00 00 | g...".......G.......G...U....... |
| 16180 | 9d 8c 15 00 9c 00 00 00 9a 8d 15 00 2c 00 00 00 37 8e 15 00 16 00 00 00 64 8e 15 00 53 00 00 00 | ............,...7.......d...S... |
| 161a0 | 7b 8e 15 00 7d 00 00 00 cf 8e 15 00 66 00 00 00 4d 8f 15 00 68 00 00 00 b4 8f 15 00 b4 00 00 00 | {...}.......f...M...h........... |
| 161c0 | 1d 90 15 00 4b 00 00 00 d2 90 15 00 55 00 00 00 1e 91 15 00 22 00 00 00 74 91 15 00 18 00 00 00 | ....K.......U......."...t....... |
| 161e0 | 97 91 15 00 31 00 00 00 b0 91 15 00 1b 00 00 00 e2 91 15 00 1a 00 00 00 fe 91 15 00 17 00 00 00 | ....1........................... |
| 16200 | 19 92 15 00 17 00 00 00 31 92 15 00 17 00 00 00 49 92 15 00 35 00 00 00 61 92 15 00 41 00 00 00 | ........1.......I...5...a...A... |
| 16220 | 97 92 15 00 25 00 00 00 d9 92 15 00 2d 00 00 00 ff 92 15 00 3e 00 00 00 2d 93 15 00 24 00 00 00 | ....%.......-.......>...-...$... |
| 16240 | 6c 93 15 00 28 00 00 00 91 93 15 00 4d 00 00 00 ba 93 15 00 50 00 00 00 08 94 15 00 33 00 00 00 | l...(.......M.......P.......3... |
| 16260 | 59 94 15 00 35 00 00 00 8d 94 15 00 20 00 00 00 c3 94 15 00 2b 00 00 00 e4 94 15 00 39 00 00 00 | Y...5...............+.......9... |
| 16280 | 10 95 15 00 73 02 00 00 4a 95 15 00 49 00 00 00 be 97 15 00 74 02 00 00 08 98 15 00 c9 00 00 00 | ....s...J...I.......t........... |
| 162a0 | 7d 9a 15 00 28 00 00 00 47 9b 15 00 5c 00 00 00 70 9b 15 00 19 00 00 00 cd 9b 15 00 16 00 00 00 | }...(...G...\...p............... |
| 162c0 | e7 9b 15 00 9e 00 00 00 fe 9b 15 00 23 00 00 00 9d 9c 15 00 27 00 00 00 c1 9c 15 00 18 00 00 00 | ............#.......'........... |
| 162e0 | e9 9c 15 00 25 00 00 00 02 9d 15 00 1c 00 00 00 28 9d 15 00 1f 00 00 00 45 9d 15 00 53 00 00 00 | ....%...........(.......E...S... |
| 16300 | 65 9d 15 00 53 00 00 00 b9 9d 15 00 16 00 00 00 0d 9e 15 00 7e 00 00 00 24 9e 15 00 33 00 00 00 | e...S...............~...$...3... |
| 16320 | a3 9e 15 00 25 00 00 00 d7 9e 15 00 af 00 00 00 fd 9e 15 00 d0 00 00 00 ad 9f 15 00 7e 00 00 00 | ....%.......................~... |
| 16340 | 7e a0 15 00 25 00 00 00 fd a0 15 00 3d 00 00 00 23 a1 15 00 51 00 00 00 61 a1 15 00 04 01 00 00 | ~...%.......=...#...Q...a....... |
| 16360 | b3 a1 15 00 49 00 00 00 b8 a2 15 00 47 00 00 00 02 a3 15 00 bd 00 00 00 4a a3 15 00 78 00 00 00 | ....I.......G...........J...x... |
| 16380 | 08 a4 15 00 aa 00 00 00 81 a4 15 00 41 00 00 00 2c a5 15 00 43 00 00 00 6e a5 15 00 3d 00 00 00 | ............A...,...C...n...=... |
| 163a0 | b2 a5 15 00 27 00 00 00 f0 a5 15 00 1a 00 00 00 18 a6 15 00 d2 00 00 00 33 a6 15 00 5b 00 00 00 | ....'...................3...[... |
| 163c0 | 06 a7 15 00 3d 00 00 00 62 a7 15 00 ab 00 00 00 a0 a7 15 00 1d 00 00 00 4c a8 15 00 5a 00 00 00 | ....=...b...............L...Z... |
| 163e0 | 6a a8 15 00 5a 00 00 00 c5 a8 15 00 77 00 00 00 20 a9 15 00 7d 00 00 00 98 a9 15 00 dd 00 00 00 | j...Z.......w.......}........... |
| 16400 | 16 aa 15 00 3f 00 00 00 f4 aa 15 00 40 00 00 00 34 ab 15 00 55 00 00 00 75 ab 15 00 af 00 00 00 | ....?.......@...4...U...u....... |
| 16420 | cb ab 15 00 5e 00 00 00 7b ac 15 00 72 00 00 00 da ac 15 00 3b 00 00 00 4d ad 15 00 65 00 00 00 | ....^...{...r.......;...M...e... |
| 16440 | 89 ad 15 00 37 00 00 00 ef ad 15 00 25 00 00 00 27 ae 15 00 51 00 00 00 4d ae 15 00 55 00 00 00 | ....7.......%...'...Q...M...U... |
| 16460 | 9f ae 15 00 38 00 00 00 f5 ae 15 00 13 00 00 00 2e af 15 00 45 00 00 00 42 af 15 00 40 00 00 00 | ....8...............E...B...@... |
| 16480 | 88 af 15 00 26 00 00 00 c9 af 15 00 24 00 00 00 f0 af 15 00 44 00 00 00 15 b0 15 00 4a 00 00 00 | ....&.......$.......D.......J... |
| 164a0 | 5a b0 15 00 4b 00 00 00 a5 b0 15 00 4a 00 00 00 f1 b0 15 00 4b 00 00 00 3c b1 15 00 1f 00 00 00 | Z...K.......J.......K...<....... |
| 164c0 | 88 b1 15 00 1f 00 00 00 a8 b1 15 00 96 00 00 00 c8 b1 15 00 26 00 00 00 5f b2 15 00 29 00 00 00 | ....................&..._...)... |
| 164e0 | 86 b2 15 00 22 00 00 00 b0 b2 15 00 1f 00 00 00 d3 b2 15 00 24 00 00 00 f3 b2 15 00 28 00 00 00 | ...."...............$.......(... |
| 16500 | 18 b3 15 00 18 00 00 00 41 b3 15 00 1b 00 00 00 5a b3 15 00 26 00 00 00 76 b3 15 00 29 00 00 00 | ........A.......Z...&...v...)... |
| 16520 | 9d b3 15 00 57 00 00 00 c7 b3 15 00 54 00 00 00 1f b4 15 00 52 00 00 00 74 b4 15 00 51 00 00 00 | ....W.......T.......R...t...Q... |
| 16540 | c7 b4 15 00 40 00 00 00 19 b5 15 00 28 00 00 00 5a b5 15 00 70 00 00 00 83 b5 15 00 26 00 00 00 | ....@.......(...Z...p.......&... |
| 16560 | f4 b5 15 00 79 00 00 00 1b b6 15 00 62 00 00 00 95 b6 15 00 56 00 00 00 f8 b6 15 00 0b 00 00 00 | ....y.......b.......V........... |
| 16580 | 4f b7 15 00 2c 00 00 00 5b b7 15 00 35 00 00 00 88 b7 15 00 3f 00 00 00 be b7 15 00 77 00 00 00 | O...,...[...5.......?.......w... |
| 165a0 | fe b7 15 00 2d 00 00 00 76 b8 15 00 33 00 00 00 a4 b8 15 00 31 00 00 00 d8 b8 15 00 69 00 00 00 | ....-...v...3.......1.......i... |
| 165c0 | 0a b9 15 00 69 00 00 00 74 b9 15 00 9c 00 00 00 de b9 15 00 89 00 00 00 7b ba 15 00 24 00 00 00 | ....i...t...............{...$... |
| 165e0 | 05 bb 15 00 56 00 00 00 2a bb 15 00 16 00 00 00 81 bb 15 00 4c 00 00 00 98 bb 15 00 3c 00 00 00 | ....V...*...........L.......<... |
| 16600 | e5 bb 15 00 9e 00 00 00 22 bc 15 00 26 00 00 00 c1 bc 15 00 27 00 00 00 e8 bc 15 00 1f 00 00 00 | ........"...&.......'........... |
| 16620 | 10 bd 15 00 5c 00 00 00 30 bd 15 00 3f 00 00 00 8d bd 15 00 36 00 00 00 cd bd 15 00 38 00 00 00 | ....\...0...?.......6.......8... |
| 16640 | 04 be 15 00 66 00 00 00 3d be 15 00 24 00 00 00 a4 be 15 00 4d 00 00 00 c9 be 15 00 27 00 00 00 | ....f...=...$.......M.......'... |
| 16660 | 17 bf 15 00 27 00 00 00 3f bf 15 00 ee 00 00 00 67 bf 15 00 1f 00 00 00 56 c0 15 00 1e 00 00 00 | ....'...?.......g.......V....... |
| 16680 | 76 c0 15 00 24 01 00 00 95 c0 15 00 a1 00 00 00 ba c1 15 00 3c 00 00 00 5c c2 15 00 6e 00 00 00 | v...$...............<...\...n... |
| 166a0 | 99 c2 15 00 83 00 00 00 08 c3 15 00 3e 00 00 00 8c c3 15 00 55 00 00 00 cb c3 15 00 27 01 00 00 | ............>.......U.......'... |
| 166c0 | 21 c4 15 00 50 00 00 00 49 c5 15 00 22 00 00 00 9a c5 15 00 5a 00 00 00 bd c5 15 00 2c 00 00 00 | !...P...I...".......Z.......,... |
| 166e0 | 18 c6 15 00 47 00 00 00 45 c6 15 00 7b 00 00 00 8d c6 15 00 77 00 00 00 09 c7 15 00 65 00 00 00 | ....G...E...{.......w.......e... |
| 16700 | 81 c7 15 00 65 00 00 00 e7 c7 15 00 5a 00 00 00 4d c8 15 00 5a 00 00 00 a8 c8 15 00 72 00 00 00 | ....e.......Z...M...Z.......r... |
| 16720 | 03 c9 15 00 2e 00 00 00 76 c9 15 00 24 00 00 00 a5 c9 15 00 61 00 00 00 ca c9 15 00 55 00 00 00 | ........v...$.......a.......U... |
| 16740 | 2c ca 15 00 2b 00 00 00 82 ca 15 00 29 00 00 00 ae ca 15 00 2a 00 00 00 d8 ca 15 00 2e 00 00 00 | ,...+.......).......*........... |
| 16760 | 03 cb 15 00 29 00 00 00 32 cb 15 00 27 00 00 00 5c cb 15 00 28 00 00 00 84 cb 15 00 29 00 00 00 | ....)...2...'...\...(.......)... |
| 16780 | ad cb 15 00 27 00 00 00 d7 cb 15 00 28 00 00 00 ff cb 15 00 4c 00 00 00 28 cc 15 00 4c 00 00 00 | ....'.......(.......L...(...L... |
| 167a0 | 75 cc 15 00 1d 00 00 00 c2 cc 15 00 38 00 00 00 e0 cc 15 00 54 00 00 00 19 cd 15 00 0b 00 00 00 | u...........8.......T........... |
| 167c0 | 6e cd 15 00 0f 00 00 00 7a cd 15 00 49 00 00 00 8a cd 15 00 0b 00 00 00 d4 cd 15 00 43 00 00 00 | n.......z...I...............C... |
| 167e0 | e0 cd 15 00 43 00 00 00 24 ce 15 00 36 00 00 00 68 ce 15 00 29 00 00 00 9f ce 15 00 2e 00 00 00 | ....C...$...6...h...)........... |
| 16800 | c9 ce 15 00 38 00 00 00 f8 ce 15 00 2c 00 00 00 31 cf 15 00 46 00 00 00 5e cf 15 00 22 00 00 00 | ....8.......,...1...F...^..."... |
| 16820 | a5 cf 15 00 77 00 00 00 c8 cf 15 00 28 00 00 00 40 d0 15 00 3e 00 00 00 69 d0 15 00 28 00 00 00 | ....w.......(...@...>...i...(... |
| 16840 | a8 d0 15 00 3e 00 00 00 d1 d0 15 00 29 00 00 00 10 d1 15 00 5d 00 00 00 3a d1 15 00 c9 00 00 00 | ....>.......).......]...:....... |
| 16860 | 98 d1 15 00 3f 00 00 00 62 d2 15 00 dd 00 00 00 a2 d2 15 00 12 00 00 00 80 d3 15 00 12 00 00 00 | ....?...b....................... |
| 16880 | 93 d3 15 00 12 00 00 00 a6 d3 15 00 4c 00 00 00 b9 d3 15 00 19 00 00 00 06 d4 15 00 7f 00 00 00 | ............L................... |
| 168a0 | 20 d4 15 00 1d 00 00 00 a0 d4 15 00 73 00 00 00 be d4 15 00 31 00 00 00 32 d5 15 00 d7 00 00 00 | ............s.......1...2....... |
| 168c0 | 64 d5 15 00 1e 00 00 00 3c d6 15 00 24 00 00 00 5b d6 15 00 5c 00 00 00 80 d6 15 00 21 00 00 00 | d.......<...$...[...\.......!... |
| 168e0 | dd d6 15 00 14 00 00 00 ff d6 15 00 52 00 00 00 14 d7 15 00 5c 00 00 00 67 d7 15 00 b7 00 00 00 | ............R.......\...g....... |
| 16900 | c4 d7 15 00 44 01 00 00 7c d8 15 00 47 00 00 00 c1 d9 15 00 a5 01 00 00 09 da 15 00 27 00 00 00 | ....D...|...G...............'... |
| 16920 | af db 15 00 88 01 00 00 d7 db 15 00 72 00 00 00 60 dd 15 00 74 00 00 00 d3 dd 15 00 6d 00 00 00 | ............r...`...t.......m... |
| 16940 | 48 de 15 00 33 00 00 00 b6 de 15 00 30 00 00 00 ea de 15 00 3e 00 00 00 1b df 15 00 33 01 00 00 | H...3.......0.......>.......3... |
| 16960 | 5a df 15 00 41 00 00 00 8e e0 15 00 30 00 00 00 d0 e0 15 00 d1 00 00 00 01 e1 15 00 8f 00 00 00 | Z...A.......0................... |
| 16980 | d3 e1 15 00 3f 00 00 00 63 e2 15 00 df 00 00 00 a3 e2 15 00 c2 01 00 00 83 e3 15 00 49 00 00 00 | ....?...c...................I... |
| 169a0 | 46 e5 15 00 e7 00 00 00 90 e5 15 00 65 01 00 00 78 e6 15 00 1f 00 00 00 de e7 15 00 30 00 00 00 | F...........e...x...........0... |
| 169c0 | fe e7 15 00 33 00 00 00 2f e8 15 00 11 00 00 00 63 e8 15 00 05 00 00 00 75 e8 15 00 03 00 00 00 | ....3.../.......c.......u....... |
| 169e0 | 7b e8 15 00 0e 00 00 00 7f e8 15 00 1b 00 00 00 8e e8 15 00 1d 00 00 00 aa e8 15 00 1f 00 00 00 | {............................... |
| 16a00 | c8 e8 15 00 04 00 00 00 e8 e8 15 00 0d 00 00 00 ed e8 15 00 32 00 00 00 fb e8 15 00 29 00 00 00 | ....................2.......)... |
| 16a20 | 2e e9 15 00 04 00 00 00 58 e9 15 00 07 00 00 00 5d e9 15 00 09 00 00 00 65 e9 15 00 0d 00 00 00 | ........X.......].......e....... |
| 16a40 | 6f e9 15 00 17 00 00 00 7d e9 15 00 0f 00 00 00 95 e9 15 00 0d 00 00 00 a5 e9 15 00 06 00 00 00 | o.......}....................... |
| 16a60 | b3 e9 15 00 19 00 00 00 ba e9 15 00 14 00 00 00 d4 e9 15 00 05 00 00 00 e9 e9 15 00 15 00 00 00 | ................................ |
| 16a80 | ef e9 15 00 04 00 00 00 05 ea 15 00 04 00 00 00 0a ea 15 00 06 00 00 00 0f ea 15 00 51 00 00 00 | ............................Q... |
| 16aa0 | 16 ea 15 00 4a 01 00 00 68 ea 15 00 50 01 00 00 b3 eb 15 00 4d 00 00 00 04 ed 15 00 05 00 00 00 | ....J...h...P.......M........... |
| 16ac0 | 52 ed 15 00 12 00 00 00 58 ed 15 00 15 00 00 00 6b ed 15 00 22 00 00 00 81 ed 15 00 10 00 00 00 | R.......X.......k..."........... |
| 16ae0 | a4 ed 15 00 12 00 00 00 b5 ed 15 00 0e 00 00 00 c8 ed 15 00 10 00 00 00 d7 ed 15 00 13 00 00 00 | ................................ |
| 16b00 | e8 ed 15 00 16 00 00 00 fc ed 15 00 06 00 00 00 13 ee 15 00 09 00 00 00 1a ee 15 00 1d 00 00 00 | ................................ |
| 16b20 | 24 ee 15 00 05 00 00 00 42 ee 15 00 0b 00 00 00 48 ee 15 00 13 00 00 00 54 ee 15 00 0d 00 00 00 | $.......B.......H.......T....... |
| 16b40 | 68 ee 15 00 05 00 00 00 76 ee 15 00 68 00 00 00 7c ee 15 00 67 00 00 00 e5 ee 15 00 79 00 00 00 | h.......v...h...|...g.......y... |
| 16b60 | 4d ef 15 00 66 00 00 00 c7 ef 15 00 03 00 00 00 2e f0 15 00 08 00 00 00 32 f0 15 00 31 00 00 00 | M...f...................2...1... |
| 16b80 | 3b f0 15 00 07 00 00 00 6d f0 15 00 08 00 00 00 75 f0 15 00 38 00 00 00 7e f0 15 00 10 00 00 00 | ;.......m.......u...8...~....... |
| 16ba0 | b7 f0 15 00 0b 00 00 00 c8 f0 15 00 03 00 00 00 d4 f0 15 00 1d 00 00 00 d8 f0 15 00 06 00 00 00 | ................................ |
| 16bc0 | f6 f0 15 00 1d 00 00 00 fd f0 15 00 09 00 00 00 1b f1 15 00 26 00 00 00 25 f1 15 00 6d 00 00 00 | ....................&...%...m... |
| 16be0 | 4c f1 15 00 46 00 00 00 ba f1 15 00 36 00 00 00 01 f2 15 00 32 00 00 00 38 f2 15 00 46 00 00 00 | L...F.......6.......2...8...F... |
| 16c00 | 6b f2 15 00 04 00 00 00 b2 f2 15 00 22 00 00 00 b7 f2 15 00 08 00 00 00 da f2 15 00 07 00 00 00 | k..........."................... |
| 16c20 | e3 f2 15 00 46 00 00 00 eb f2 15 00 0d 00 00 00 32 f3 15 00 05 00 00 00 40 f3 15 00 1b 00 00 00 | ....F...........2.......@....... |
| 16c40 | 46 f3 15 00 1c 00 00 00 62 f3 15 00 73 00 00 00 7f f3 15 00 71 00 00 00 f3 f3 15 00 04 00 00 00 | F.......b...s.......q........... |
| 16c60 | 65 f4 15 00 06 00 00 00 6a f4 15 00 04 00 00 00 71 f4 15 00 05 00 00 00 76 f4 15 00 10 00 00 00 | e.......j.......q.......v....... |
| 16c80 | 7c f4 15 00 3c 00 00 00 8d f4 15 00 32 00 00 00 ca f4 15 00 1c 00 00 00 fd f4 15 00 6d 00 00 00 | |...<.......2...............m... |
| 16ca0 | 1a f5 15 00 08 00 00 00 88 f5 15 00 14 00 00 00 91 f5 15 00 14 00 00 00 a6 f5 15 00 14 00 00 00 | ................................ |
| 16cc0 | bb f5 15 00 14 00 00 00 d0 f5 15 00 14 00 00 00 e5 f5 15 00 14 00 00 00 fa f5 15 00 14 00 00 00 | ................................ |
| 16ce0 | 0f f6 15 00 06 00 00 00 24 f6 15 00 06 00 00 00 2b f6 15 00 06 00 00 00 32 f6 15 00 06 00 00 00 | ........$.......+.......2....... |
| 16d00 | 39 f6 15 00 06 00 00 00 40 f6 15 00 06 00 00 00 47 f6 15 00 06 00 00 00 4e f6 15 00 06 00 00 00 | 9.......@.......G.......N....... |
| 16d20 | 55 f6 15 00 1f 00 00 00 5c f6 15 00 08 00 00 00 7c f6 15 00 08 00 00 00 85 f6 15 00 a4 00 00 00 | U.......\.......|............... |
| 16d40 | 8e f6 15 00 03 00 00 00 33 f7 15 00 0d 00 00 00 37 f7 15 00 74 00 00 00 45 f7 15 00 9a 00 00 00 | ........3.......7...t...E....... |
| 16d60 | ba f7 15 00 4c 00 00 00 55 f8 15 00 04 00 00 00 a2 f8 15 00 0c 00 00 00 a7 f8 15 00 3f 00 00 00 | ....L...U...................?... |
| 16d80 | b4 f8 15 00 29 00 00 00 f4 f8 15 00 37 00 00 00 1e f9 15 00 2c 00 00 00 56 f9 15 00 0e 00 00 00 | ....).......7.......,...V....... |
| 16da0 | 83 f9 15 00 33 00 00 00 92 f9 15 00 33 00 00 00 c6 f9 15 00 0b 00 00 00 fa f9 15 00 14 00 00 00 | ....3.......3................... |
| 16dc0 | 06 fa 15 00 71 00 00 00 1b fa 15 00 46 00 00 00 8d fa 15 00 09 00 00 00 d4 fa 15 00 04 00 00 00 | ....q.......F................... |
| 16de0 | de fa 15 00 0b 00 00 00 e3 fa 15 00 12 00 00 00 ef fa 15 00 0f 00 00 00 02 fb 15 00 08 00 00 00 | ................................ |
| 16e00 | 12 fb 15 00 06 00 00 00 1b fb 15 00 03 00 00 00 22 fb 15 00 0a 00 00 00 26 fb 15 00 0b 00 00 00 | ................".......&....... |
| 16e20 | 31 fb 15 00 40 00 00 00 3d fb 15 00 07 00 00 00 7e fb 15 00 06 00 00 00 86 fb 15 00 05 00 00 00 | 1...@...=.......~............... |
| 16e40 | 8d fb 15 00 9b 00 00 00 93 fb 15 00 11 00 00 00 2f fc 15 00 0d 00 00 00 41 fc 15 00 13 00 00 00 | ................/.......A....... |
| 16e60 | 4f fc 15 00 15 00 00 00 63 fc 15 00 18 00 00 00 79 fc 15 00 1b 00 00 00 92 fc 15 00 0a 00 00 00 | O.......c.......y............... |
| 16e80 | ae fc 15 00 12 00 00 00 b9 fc 15 00 1c 00 00 00 cc fc 15 00 0f 00 00 00 e9 fc 15 00 05 00 00 00 | ................................ |
| 16ea0 | f9 fc 15 00 0e 00 00 00 ff fc 15 00 0e 00 00 00 0e fd 15 00 0d 00 00 00 1d fd 15 00 2a 00 00 00 | ............................*... |
| 16ec0 | 2b fd 15 00 15 00 00 00 56 fd 15 00 31 00 00 00 6c fd 15 00 39 00 00 00 9e fd 15 00 34 00 00 00 | +.......V...1...l...9.......4... |
| 16ee0 | d8 fd 15 00 04 00 00 00 0d fe 15 00 0b 00 00 00 12 fe 15 00 09 00 00 00 1e fe 15 00 07 00 00 00 | ................................ |
| 16f00 | 28 fe 15 00 05 00 00 00 30 fe 15 00 72 00 00 00 36 fe 15 00 08 00 00 00 a9 fe 15 00 62 01 00 00 | (.......0...r...6...........b... |
| 16f20 | b2 fe 15 00 0e 00 00 00 15 00 16 00 11 00 00 00 24 00 16 00 38 00 00 00 36 00 16 00 0d 00 00 00 | ................$...8...6....... |
| 16f40 | 6f 00 16 00 0d 00 00 00 7d 00 16 00 06 00 00 00 8b 00 16 00 3a 00 00 00 92 00 16 00 0b 00 00 00 | o.......}...........:........... |
| 16f60 | cd 00 16 00 3f 00 00 00 d9 00 16 00 40 00 00 00 19 01 16 00 0e 00 00 00 5a 01 16 00 0f 00 00 00 | ....?.......@...........Z....... |
| 16f80 | 69 01 16 00 07 00 00 00 79 01 16 00 0e 00 00 00 81 01 16 00 0c 00 00 00 90 01 16 00 ad 00 00 00 | i.......y....................... |
| 16fa0 | 9d 01 16 00 0b 00 00 00 4b 02 16 00 08 00 00 00 57 02 16 00 06 00 00 00 60 02 16 00 04 00 00 00 | ........K.......W.......`....... |
| 16fc0 | 67 02 16 00 d7 00 00 00 6c 02 16 00 10 00 00 00 44 03 16 00 ed 01 00 00 55 03 16 00 0b 00 00 00 | g.......l.......D.......U....... |
| 16fe0 | 43 05 16 00 0b 00 00 00 4f 05 16 00 0c 00 00 00 5b 05 16 00 06 00 00 00 68 05 16 00 0e 00 00 00 | C.......O.......[.......h....... |
| 17000 | 6f 05 16 00 58 00 00 00 7e 05 16 00 04 00 00 00 d7 05 16 00 04 00 00 00 dc 05 16 00 05 00 00 00 | o...X...~....................... |
| 17020 | e1 05 16 00 0e 00 00 00 e7 05 16 00 47 00 00 00 f6 05 16 00 75 00 00 00 3e 06 16 00 05 00 00 00 | ............G.......u...>....... |
| 17040 | b4 06 16 00 07 00 00 00 ba 06 16 00 68 00 00 00 c2 06 16 00 19 00 00 00 2b 07 16 00 14 00 00 00 | ............h...........+....... |
| 17060 | 45 07 16 00 2c 00 00 00 5a 07 16 00 0b 00 00 00 87 07 16 00 09 00 00 00 93 07 16 00 08 00 00 00 | E...,...Z....................... |
| 17080 | 9d 07 16 00 53 00 00 00 a6 07 16 00 08 00 00 00 fa 07 16 00 22 00 00 00 03 08 16 00 04 00 00 00 | ....S..............."........... |
| 170a0 | 26 08 16 00 05 00 00 00 2b 08 16 00 01 00 00 00 ec 04 00 00 00 00 00 00 dc 05 00 00 86 09 00 00 | &.......+....................... |
| 170c0 | 84 0c 00 00 43 11 00 00 24 0f 00 00 00 00 00 00 9b 01 00 00 5b 00 00 00 00 00 00 00 9c 10 00 00 | ....C...$...........[........... |
| 170e0 | 00 00 00 00 00 00 00 00 2a 10 00 00 5c 09 00 00 bd 04 00 00 6d 0c 00 00 01 17 00 00 be 0a 00 00 | ........*...\.......m........... |
| 17100 | 82 12 00 00 46 16 00 00 a9 0f 00 00 4b 12 00 00 4f 05 00 00 2f 10 00 00 86 12 00 00 16 04 00 00 | ....F.......K...O.../........... |
| 17120 | 00 00 00 00 55 03 00 00 00 00 00 00 8d 00 00 00 28 14 00 00 c5 01 00 00 00 00 00 00 35 08 00 00 | ....U...........(...........5... |
| 17140 | 98 10 00 00 9c 16 00 00 33 00 00 00 bf 14 00 00 74 0b 00 00 00 00 00 00 6e 02 00 00 b2 11 00 00 | ........3.......t.......n....... |
| 17160 | 94 13 00 00 ff 0c 00 00 9a 06 00 00 11 01 00 00 1f 01 00 00 40 01 00 00 4f 01 00 00 56 01 00 00 | ....................@...O...V... |
| 17180 | 60 01 00 00 01 01 00 00 72 01 00 00 74 01 00 00 76 01 00 00 00 00 00 00 a5 13 00 00 dd 12 00 00 | `.......r...t...v............... |
| 171a0 | eb 04 00 00 00 00 00 00 9e 0b 00 00 da 0d 00 00 00 00 00 00 fb 15 00 00 25 08 00 00 47 0a 00 00 | ........................%...G... |
| 171c0 | 3d 0a 00 00 00 00 00 00 49 02 00 00 43 0f 00 00 29 16 00 00 79 0a 00 00 1a 0d 00 00 00 00 00 00 | =.......I...C...)...y........... |
| 171e0 | 95 11 00 00 45 0a 00 00 e8 13 00 00 84 08 00 00 00 00 00 00 da 05 00 00 08 0f 00 00 00 00 00 00 | ....E........................... |
| 17200 | e8 10 00 00 e6 00 00 00 73 08 00 00 b2 0e 00 00 7d 14 00 00 47 11 00 00 00 00 00 00 a5 10 00 00 | ........s.......}...G........... |
| 17220 | 78 0e 00 00 00 00 00 00 17 02 00 00 ca 0a 00 00 0a 07 00 00 43 03 00 00 00 00 00 00 00 00 00 00 | x...................C........... |
| 17240 | e2 0a 00 00 00 00 00 00 00 00 00 00 b9 15 00 00 fb 0d 00 00 00 00 00 00 49 07 00 00 6e 15 00 00 | ........................I...n... |
| 17260 | 67 01 00 00 1a 07 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ae 0f 00 00 43 0a 00 00 8d 0a 00 00 | g.......................C....... |
| 17280 | c6 05 00 00 98 0e 00 00 58 0c 00 00 52 08 00 00 4a 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ........X...R...J............... |
| 172a0 | 00 00 00 00 5e 03 00 00 00 00 00 00 41 08 00 00 46 03 00 00 ea 0f 00 00 08 05 00 00 29 0c 00 00 | ....^.......A...F...........)... |
| 172c0 | c7 16 00 00 de 03 00 00 3d 07 00 00 00 00 00 00 11 03 00 00 84 00 00 00 34 05 00 00 f4 14 00 00 | ........=...............4....... |
| 172e0 | 10 11 00 00 10 14 00 00 b1 0a 00 00 24 10 00 00 00 00 00 00 da 10 00 00 61 0a 00 00 00 00 00 00 | ............$...........a....... |
| 17300 | 7d 0a 00 00 46 0f 00 00 00 00 00 00 7c 06 00 00 00 00 00 00 00 00 00 00 cb 11 00 00 0c 0b 00 00 | }...F.......|................... |
| 17320 | 9d 0a 00 00 62 00 00 00 00 00 00 00 e8 15 00 00 71 15 00 00 6f 0b 00 00 6a 02 00 00 52 05 00 00 | ....b...........q...o...j...R... |
| 17340 | db 00 00 00 25 0c 00 00 53 06 00 00 b4 0d 00 00 5e 0d 00 00 47 0b 00 00 83 01 00 00 00 00 00 00 | ....%...S.......^...G........... |
| 17360 | e6 02 00 00 1d 0a 00 00 ef 06 00 00 94 16 00 00 00 00 00 00 e5 01 00 00 00 00 00 00 6f 04 00 00 | ............................o... |
| 17380 | 60 13 00 00 00 04 00 00 93 05 00 00 00 00 00 00 44 08 00 00 d4 13 00 00 00 00 00 00 19 0b 00 00 | `...............D............... |
| 173a0 | 6a 12 00 00 3b 14 00 00 34 15 00 00 6c 0e 00 00 af 0a 00 00 00 00 00 00 00 00 00 00 72 0c 00 00 | j...;...4...l...............r... |
| 173c0 | e1 00 00 00 7e 0a 00 00 c2 07 00 00 24 09 00 00 00 00 00 00 cb 0b 00 00 8c 03 00 00 99 09 00 00 | ....~.......$................... |
| 173e0 | 00 00 00 00 df 12 00 00 bb 02 00 00 00 00 00 00 00 00 00 00 a7 0a 00 00 43 0e 00 00 2b 0b 00 00 | ........................C...+... |
| 17400 | fb 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 cd 0e 00 00 bb 10 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 17420 | 0b 01 00 00 05 04 00 00 51 10 00 00 a6 16 00 00 a9 0d 00 00 a3 14 00 00 00 00 00 00 52 14 00 00 | ........Q...................R... |
| 17440 | 00 00 00 00 00 00 00 00 00 00 00 00 ef 02 00 00 69 05 00 00 00 00 00 00 20 0e 00 00 b9 13 00 00 | ................i............... |
| 17460 | f9 0e 00 00 75 0b 00 00 9f 10 00 00 00 00 00 00 37 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ....u...........7............... |
| 17480 | 00 00 00 00 a6 03 00 00 40 02 00 00 66 0e 00 00 20 00 00 00 91 00 00 00 00 00 00 00 00 00 00 00 | ........@...f................... |
| 174a0 | 72 0e 00 00 a8 0a 00 00 00 00 00 00 a7 06 00 00 45 0e 00 00 14 04 00 00 00 00 00 00 00 00 00 00 | r...............E............... |
| 174c0 | 00 00 00 00 f0 07 00 00 00 00 00 00 65 11 00 00 00 00 00 00 70 07 00 00 3a 15 00 00 00 00 00 00 | ............e.......p...:....... |
| 174e0 | 4b 11 00 00 de 02 00 00 00 00 00 00 56 06 00 00 00 00 00 00 cc 0f 00 00 ca 05 00 00 c0 13 00 00 | K...........V................... |
| 17500 | 00 00 00 00 28 0c 00 00 23 0d 00 00 00 00 00 00 00 00 00 00 b2 12 00 00 88 0f 00 00 00 00 00 00 | ....(...#....................... |
| 17520 | d5 13 00 00 69 0f 00 00 ee 06 00 00 00 00 00 00 00 00 00 00 d6 01 00 00 40 16 00 00 93 06 00 00 | ....i...................@....... |
| 17540 | 61 04 00 00 bf 00 00 00 b0 09 00 00 31 15 00 00 ad 10 00 00 a1 08 00 00 63 01 00 00 e3 0b 00 00 | a...........1...........c....... |
| 17560 | 5d 06 00 00 12 02 00 00 c8 13 00 00 99 16 00 00 12 0e 00 00 00 00 00 00 00 00 00 00 b8 01 00 00 | ]............................... |
| 17580 | ac 06 00 00 00 00 00 00 00 00 00 00 ea 01 00 00 00 00 00 00 36 14 00 00 00 00 00 00 00 00 00 00 | ....................6........... |
| 175a0 | df 11 00 00 00 00 00 00 13 05 00 00 93 10 00 00 3b 0c 00 00 00 00 00 00 70 04 00 00 6b 0b 00 00 | ................;.......p...k... |
| 175c0 | d6 11 00 00 7c 02 00 00 9f 0f 00 00 8a 09 00 00 74 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ....|...........t............... |
| 175e0 | e4 0e 00 00 e7 0c 00 00 a3 0c 00 00 c2 16 00 00 d1 06 00 00 a0 08 00 00 e8 0c 00 00 33 10 00 00 | ............................3... |
| 17600 | 00 00 00 00 cd 13 00 00 28 0e 00 00 00 00 00 00 5b 0e 00 00 16 13 00 00 2f 0e 00 00 5b 0b 00 00 | ........(.......[......./...[... |
| 17620 | ab 01 00 00 01 0d 00 00 5b 14 00 00 af 12 00 00 00 00 00 00 0d 13 00 00 00 00 00 00 00 00 00 00 | ........[....................... |
| 17640 | 00 00 00 00 5f 11 00 00 13 04 00 00 f5 0d 00 00 00 00 00 00 4f 0b 00 00 a9 04 00 00 18 08 00 00 | ...._...............O........... |
| 17660 | 64 0b 00 00 c6 12 00 00 c4 11 00 00 ae 0c 00 00 e4 00 00 00 e5 07 00 00 0f 15 00 00 e4 0b 00 00 | d............................... |
| 17680 | 60 14 00 00 58 11 00 00 df 02 00 00 84 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 b0 13 00 00 | `...X........................... |
| 176a0 | 00 00 00 00 00 00 00 00 1a 05 00 00 f3 07 00 00 00 00 00 00 00 00 00 00 ca 11 00 00 de 04 00 00 | ................................ |
| 176c0 | 63 14 00 00 00 00 00 00 39 00 00 00 75 12 00 00 00 00 00 00 18 10 00 00 83 0e 00 00 02 13 00 00 | c.......9...u................... |
| 176e0 | 80 02 00 00 8d 06 00 00 00 00 00 00 ac 0b 00 00 46 07 00 00 1e 16 00 00 af 0d 00 00 a6 11 00 00 | ................F............... |
| 17700 | 00 00 00 00 f9 11 00 00 7a 14 00 00 73 12 00 00 01 13 00 00 53 0e 00 00 93 0a 00 00 f1 0b 00 00 | ........z...s.......S........... |
| 17720 | 06 0d 00 00 6b 16 00 00 bc 09 00 00 7b 0c 00 00 00 00 00 00 89 11 00 00 47 16 00 00 9b 07 00 00 | ....k.......{...........G....... |
| 17740 | 00 00 00 00 b3 0c 00 00 00 00 00 00 65 07 00 00 e8 11 00 00 8a 05 00 00 87 0a 00 00 b9 0b 00 00 | ............e................... |
| 17760 | 4b 00 00 00 a6 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 57 0b 00 00 0e 10 00 00 00 00 00 00 | K...................W........... |
| 17780 | 00 00 00 00 19 00 00 00 6e 0e 00 00 4e 0f 00 00 50 16 00 00 00 00 00 00 83 06 00 00 c7 0e 00 00 | ........n...N...P............... |
| 177a0 | 1d 0d 00 00 00 00 00 00 8c 14 00 00 21 11 00 00 1d 13 00 00 c0 08 00 00 00 00 00 00 f8 14 00 00 | ............!................... |
| 177c0 | fe 12 00 00 e9 03 00 00 e2 0e 00 00 00 00 00 00 fb 02 00 00 00 00 00 00 40 11 00 00 95 09 00 00 | ........................@....... |
| 177e0 | 8a 0d 00 00 6f 00 00 00 a5 00 00 00 47 0e 00 00 51 01 00 00 7c 0b 00 00 00 00 00 00 00 00 00 00 | ....o.......G...Q...|........... |
| 17800 | dc 11 00 00 5b 09 00 00 18 13 00 00 d7 0e 00 00 ab 15 00 00 00 00 00 00 18 00 00 00 12 0a 00 00 | ....[........................... |
| 17820 | ff 11 00 00 46 00 00 00 e1 14 00 00 74 0e 00 00 48 06 00 00 02 0a 00 00 00 00 00 00 f1 05 00 00 | ....F.......t...H............... |
| 17840 | 00 00 00 00 d4 02 00 00 60 0a 00 00 00 00 00 00 00 00 00 00 37 0f 00 00 bf 06 00 00 00 00 00 00 | ........`...........7........... |
| 17860 | 6e 13 00 00 00 00 00 00 48 0d 00 00 00 00 00 00 d9 0c 00 00 8b 12 00 00 ce 16 00 00 b3 05 00 00 | n.......H....................... |
| 17880 | 00 00 00 00 13 16 00 00 00 00 00 00 6d 09 00 00 00 00 00 00 11 12 00 00 fd 12 00 00 00 00 00 00 | ............m................... |
| 178a0 | 64 05 00 00 00 00 00 00 cd 12 00 00 00 00 00 00 00 00 00 00 9e 09 00 00 6c 0b 00 00 87 0e 00 00 | d.......................l....... |
| 178c0 | 21 0d 00 00 90 12 00 00 b7 13 00 00 1b 09 00 00 66 14 00 00 00 00 00 00 d5 0c 00 00 00 00 00 00 | !...............f............... |
| 178e0 | 00 00 00 00 5d 0b 00 00 06 0c 00 00 3d 15 00 00 34 14 00 00 f2 07 00 00 d5 0b 00 00 c5 09 00 00 | ....].......=...4............... |
| 17900 | 31 13 00 00 cf 05 00 00 b8 08 00 00 43 09 00 00 00 00 00 00 0f 02 00 00 c8 10 00 00 00 00 00 00 | 1...........C................... |
| 17920 | ab 07 00 00 08 12 00 00 00 00 00 00 e8 0e 00 00 30 11 00 00 50 0b 00 00 63 07 00 00 75 02 00 00 | ................0...P...c...u... |
| 17940 | 00 00 00 00 c4 0b 00 00 00 00 00 00 00 00 00 00 a7 03 00 00 00 00 00 00 00 00 00 00 d3 07 00 00 | ................................ |
| 17960 | 00 00 00 00 34 12 00 00 04 02 00 00 00 00 00 00 17 14 00 00 13 09 00 00 76 04 00 00 00 00 00 00 | ....4...................v....... |
| 17980 | be 05 00 00 78 0f 00 00 40 0d 00 00 bd 0d 00 00 3c 0e 00 00 ce 03 00 00 1d 0c 00 00 d2 07 00 00 | ....x...@.......<............... |
| 179a0 | 05 0b 00 00 f9 01 00 00 00 00 00 00 ac 07 00 00 12 08 00 00 89 0c 00 00 79 16 00 00 c4 16 00 00 | ........................y....... |
| 179c0 | fa 01 00 00 78 02 00 00 f6 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 16 08 00 00 00 00 00 00 | ....x........................... |
| 179e0 | c9 0a 00 00 00 00 00 00 5e 12 00 00 7b 0b 00 00 ad 01 00 00 20 12 00 00 57 16 00 00 66 00 00 00 | ........^...{...........W...f... |
| 17a00 | 75 10 00 00 00 00 00 00 c8 07 00 00 46 05 00 00 00 00 00 00 d9 00 00 00 00 00 00 00 22 06 00 00 | u...........F..............."... |
| 17a20 | 68 0c 00 00 ae 10 00 00 00 00 00 00 37 13 00 00 44 16 00 00 10 09 00 00 00 00 00 00 00 00 00 00 | h...........7...D............... |
| 17a40 | 09 16 00 00 20 06 00 00 00 00 00 00 87 01 00 00 00 00 00 00 ca 00 00 00 42 09 00 00 84 09 00 00 | ........................B....... |
| 17a60 | 27 16 00 00 09 02 00 00 00 00 00 00 70 03 00 00 06 01 00 00 bb 13 00 00 00 00 00 00 a9 15 00 00 | '...........p................... |
| 17a80 | 6b 12 00 00 00 00 00 00 18 0b 00 00 08 03 00 00 dc 00 00 00 f1 04 00 00 ce 08 00 00 00 00 00 00 | k............................... |
| 17aa0 | 10 02 00 00 00 00 00 00 b7 15 00 00 2d 0e 00 00 0a 05 00 00 9c 12 00 00 fb 03 00 00 a8 0e 00 00 | ............-................... |
| 17ac0 | b6 0e 00 00 cb 0a 00 00 1d 06 00 00 22 0b 00 00 09 03 00 00 4e 02 00 00 4d 08 00 00 f6 08 00 00 | ............".......N...M....... |
| 17ae0 | 19 07 00 00 00 00 00 00 00 00 00 00 7e 12 00 00 bd 0f 00 00 00 00 00 00 39 0e 00 00 34 0b 00 00 | ............~...........9...4... |
| 17b00 | 00 00 00 00 00 00 00 00 58 12 00 00 83 05 00 00 00 00 00 00 5d 03 00 00 00 00 00 00 32 04 00 00 | ........X...........].......2... |
| 17b20 | 64 04 00 00 66 0d 00 00 ab 0a 00 00 f5 13 00 00 00 00 00 00 db 04 00 00 d7 0b 00 00 2d 01 00 00 | d...f.......................-... |
| 17b40 | 00 00 00 00 cf 15 00 00 00 00 00 00 43 06 00 00 00 00 00 00 00 00 00 00 57 06 00 00 00 00 00 00 | ............C...........W....... |
| 17b60 | 5b 0f 00 00 41 0a 00 00 3f 13 00 00 c3 11 00 00 00 00 00 00 43 08 00 00 1a 0f 00 00 a8 0d 00 00 | [...A...?...........C........... |
| 17b80 | 00 00 00 00 00 00 00 00 a8 11 00 00 dd 0b 00 00 00 00 00 00 a9 09 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 17ba0 | 00 02 00 00 13 12 00 00 27 08 00 00 49 0c 00 00 d0 15 00 00 c1 0d 00 00 ab 0f 00 00 f0 16 00 00 | ........'...I................... |
| 17bc0 | 00 00 00 00 00 00 00 00 00 00 00 00 fe 00 00 00 00 00 00 00 e9 02 00 00 f2 08 00 00 fe 09 00 00 | ................................ |
| 17be0 | e3 01 00 00 00 00 00 00 00 00 00 00 7b 0a 00 00 00 00 00 00 a7 16 00 00 33 0e 00 00 00 00 00 00 | ............{...........3....... |
| 17c00 | 5e 05 00 00 c6 11 00 00 f9 03 00 00 19 16 00 00 0c 10 00 00 00 00 00 00 da 09 00 00 08 07 00 00 | ^............................... |
| 17c20 | 81 0f 00 00 00 00 00 00 10 00 00 00 7b 0d 00 00 23 07 00 00 00 00 00 00 cf 07 00 00 5f 0c 00 00 | ............{...#..........._... |
| 17c40 | d7 06 00 00 d8 12 00 00 09 15 00 00 35 15 00 00 ab 14 00 00 a8 14 00 00 a7 09 00 00 3d 08 00 00 | ............5...............=... |
| 17c60 | f0 02 00 00 00 00 00 00 0a 01 00 00 c2 05 00 00 00 00 00 00 34 09 00 00 01 16 00 00 ed 14 00 00 | ....................4........... |
| 17c80 | 7d 13 00 00 c7 03 00 00 be 10 00 00 3f 0b 00 00 2a 13 00 00 e3 05 00 00 00 00 00 00 2e 08 00 00 | }...........?...*............... |
| 17ca0 | 3d 12 00 00 00 00 00 00 66 0b 00 00 00 00 00 00 91 15 00 00 00 00 00 00 24 07 00 00 f1 10 00 00 | =.......f...............$....... |
| 17cc0 | 92 15 00 00 00 00 00 00 00 00 00 00 9b 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 58 10 00 00 | ............................X... |
| 17ce0 | 00 00 00 00 00 00 00 00 00 00 00 00 87 15 00 00 79 14 00 00 00 00 00 00 53 10 00 00 9a 05 00 00 | ................y.......S....... |
| 17d00 | 34 0c 00 00 a2 10 00 00 00 00 00 00 e4 05 00 00 00 00 00 00 57 15 00 00 3b 0f 00 00 98 02 00 00 | 4...................W...;....... |
| 17d20 | 4d 14 00 00 bc 16 00 00 b1 12 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60 15 00 00 00 00 00 00 | M.......................`....... |
| 17d40 | b9 04 00 00 00 00 00 00 e6 15 00 00 8e 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 4e 11 00 00 | ............................N... |
| 17d60 | 68 16 00 00 6f 13 00 00 00 00 00 00 4f 0e 00 00 c0 0b 00 00 51 03 00 00 86 0f 00 00 0a 0e 00 00 | h...o.......O.......Q........... |
| 17d80 | 17 0c 00 00 ef 00 00 00 00 00 00 00 4d 0e 00 00 00 00 00 00 48 13 00 00 ae 07 00 00 97 0e 00 00 | ............M.......H........... |
| 17da0 | 8e 0d 00 00 8d 0e 00 00 00 00 00 00 27 01 00 00 32 01 00 00 34 01 00 00 36 01 00 00 37 01 00 00 | ............'...2...4...6...7... |
| 17dc0 | 38 01 00 00 39 01 00 00 3a 01 00 00 3c 01 00 00 3d 01 00 00 00 00 00 00 35 0e 00 00 00 00 00 00 | 8...9...:...<...=.......5....... |
| 17de0 | 00 00 00 00 00 00 00 00 00 00 00 00 c1 00 00 00 45 01 00 00 46 01 00 00 47 01 00 00 48 0f 00 00 | ................E...F...G...H... |
| 17e00 | f2 0a 00 00 4b 01 00 00 50 01 00 00 4c 01 00 00 af 0c 00 00 f0 0c 00 00 7f 15 00 00 9b 0d 00 00 | ....K...P...L................... |
| 17e20 | ab 0c 00 00 f8 0c 00 00 4f 14 00 00 52 01 00 00 b3 0f 00 00 da 0b 00 00 01 05 00 00 53 01 00 00 | ........O...R...............S... |
| 17e40 | 07 06 00 00 54 01 00 00 eb 01 00 00 55 01 00 00 00 00 00 00 9b 0c 00 00 9e 16 00 00 00 00 00 00 | ....T.......U................... |
| 17e60 | 71 0a 00 00 2e 0e 00 00 70 06 00 00 00 00 00 00 93 03 00 00 5d 01 00 00 00 00 00 00 5e 01 00 00 | q.......p...........].......^... |
| 17e80 | 0a 15 00 00 5f 01 00 00 75 00 00 00 69 14 00 00 f8 15 00 00 00 00 00 00 a4 09 00 00 59 0d 00 00 | ...._...u...i...............Y... |
| 17ea0 | 32 05 00 00 c7 0f 00 00 3d 00 00 00 00 00 00 00 22 00 00 00 e7 15 00 00 5d 05 00 00 66 01 00 00 | 2.......=.......".......]...f... |
| 17ec0 | fa 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 04 11 00 00 09 0f 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 17ee0 | 7d 0e 00 00 c7 07 00 00 ce 13 00 00 41 10 00 00 bc 0e 00 00 2c 11 00 00 00 00 00 00 00 00 00 00 | }...........A.......,........... |
| 17f00 | 15 0f 00 00 6c 01 00 00 6e 01 00 00 b7 10 00 00 6f 01 00 00 00 00 00 00 89 16 00 00 f5 0f 00 00 | ....l...n.......o............... |
| 17f20 | 98 07 00 00 48 0a 00 00 ba 12 00 00 73 01 00 00 00 00 00 00 ab 16 00 00 29 14 00 00 f3 0e 00 00 | ....H.......s...........)....... |
| 17f40 | c6 0b 00 00 00 00 00 00 dd 05 00 00 5c 00 00 00 d7 08 00 00 53 16 00 00 00 00 00 00 d1 04 00 00 | ............\.......S........... |
| 17f60 | 25 00 00 00 eb 16 00 00 02 0d 00 00 50 0e 00 00 22 12 00 00 d5 01 00 00 03 04 00 00 26 11 00 00 | %...........P..."...........&... |
| 17f80 | ef 0f 00 00 00 00 00 00 51 00 00 00 c5 02 00 00 79 07 00 00 ae 0b 00 00 50 0f 00 00 4a 11 00 00 | ........Q.......y.......P...J... |
| 17fa0 | 01 11 00 00 49 15 00 00 d5 08 00 00 dc 0d 00 00 52 12 00 00 00 00 00 00 b3 07 00 00 82 0f 00 00 | ....I...........R............... |
| 17fc0 | 4d 12 00 00 61 09 00 00 00 00 00 00 00 00 00 00 5b 06 00 00 00 00 00 00 7f 11 00 00 ec 07 00 00 | M...a...........[............... |
| 17fe0 | a4 08 00 00 cb 07 00 00 a5 02 00 00 00 00 00 00 2a 04 00 00 a2 11 00 00 00 00 00 00 4a 08 00 00 | ................*...........J... |
| 18000 | ef 0e 00 00 5c 04 00 00 0f 09 00 00 01 06 00 00 00 00 00 00 00 00 00 00 63 0e 00 00 8f 0e 00 00 | ....\...................c....... |
| 18020 | 00 00 00 00 00 00 00 00 64 02 00 00 fc 04 00 00 22 08 00 00 5b 13 00 00 93 12 00 00 6e 00 00 00 | ........d......."...[.......n... |
| 18040 | 61 07 00 00 72 15 00 00 f5 0b 00 00 30 0d 00 00 08 10 00 00 be 02 00 00 b3 06 00 00 00 00 00 00 | a...r.......0................... |
| 18060 | 60 12 00 00 f4 06 00 00 00 00 00 00 5a 04 00 00 04 03 00 00 de 14 00 00 24 0a 00 00 3e 02 00 00 | `...........Z...........$...>... |
| 18080 | 00 00 00 00 6d 16 00 00 16 10 00 00 50 0c 00 00 84 0a 00 00 1a 15 00 00 00 00 00 00 69 0d 00 00 | ....m.......P...............i... |
| 180a0 | ea 0d 00 00 bf 09 00 00 00 00 00 00 00 00 00 00 66 0f 00 00 00 00 00 00 a2 0e 00 00 d8 13 00 00 | ................f............... |
| 180c0 | 00 00 00 00 bc 06 00 00 1e 02 00 00 c2 14 00 00 67 02 00 00 e5 05 00 00 00 00 00 00 d6 0f 00 00 | ................g............... |
| 180e0 | 00 00 00 00 4f 03 00 00 43 0d 00 00 37 03 00 00 ea 06 00 00 e2 03 00 00 87 0b 00 00 87 08 00 00 | ....O...C...7................... |
| 18100 | 33 08 00 00 00 00 00 00 c6 02 00 00 ef 0a 00 00 af 00 00 00 2e 0a 00 00 00 00 00 00 86 15 00 00 | 3............................... |
| 18120 | 7a 02 00 00 59 04 00 00 ac 03 00 00 00 00 00 00 93 0e 00 00 0f 0c 00 00 90 08 00 00 00 00 00 00 | z...Y........................... |
| 18140 | 00 00 00 00 00 00 00 00 f4 0e 00 00 52 15 00 00 00 00 00 00 71 04 00 00 00 00 00 00 81 00 00 00 | ............R.......q........... |
| 18160 | 3d 03 00 00 4a 04 00 00 00 00 00 00 94 00 00 00 ec 0e 00 00 cf 06 00 00 bc 07 00 00 06 14 00 00 | =...J........................... |
| 18180 | 00 00 00 00 0e 06 00 00 d6 06 00 00 36 02 00 00 70 09 00 00 00 00 00 00 90 0f 00 00 1b 05 00 00 | ............6...p............... |
| 181a0 | 49 06 00 00 00 00 00 00 00 00 00 00 5b 11 00 00 61 13 00 00 80 0d 00 00 bd 06 00 00 6b 06 00 00 | I...........[...a...........k... |
| 181c0 | 04 13 00 00 52 09 00 00 07 03 00 00 76 08 00 00 00 00 00 00 66 07 00 00 48 05 00 00 34 0a 00 00 | ....R.......v.......f...H...4... |
| 181e0 | c8 14 00 00 08 15 00 00 4f 09 00 00 77 04 00 00 04 15 00 00 00 00 00 00 08 01 00 00 00 00 00 00 | ........O...w................... |
| 18200 | fa 05 00 00 89 09 00 00 af 07 00 00 0d 05 00 00 93 0f 00 00 fc 01 00 00 2c 08 00 00 9f 05 00 00 | ........................,....... |
| 18220 | f6 07 00 00 3e 16 00 00 76 03 00 00 a4 03 00 00 00 00 00 00 99 0f 00 00 00 00 00 00 00 00 00 00 | ....>...v....................... |
| 18240 | 00 00 00 00 00 05 00 00 9c 08 00 00 a6 06 00 00 00 00 00 00 26 0a 00 00 00 00 00 00 78 07 00 00 | ....................&.......x... |
| 18260 | d0 13 00 00 7a 04 00 00 ae 11 00 00 74 16 00 00 28 12 00 00 56 0c 00 00 00 00 00 00 e8 0a 00 00 | ....z.......t...(...V........... |
| 18280 | 95 10 00 00 00 0c 00 00 77 08 00 00 00 00 00 00 1d 14 00 00 b9 14 00 00 ee 00 00 00 61 0d 00 00 | ........w...................a... |
| 182a0 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 dd 01 00 00 3a 14 00 00 dd 10 00 00 e1 0f 00 00 | ....................:........... |
| 182c0 | 00 00 00 00 13 0e 00 00 d2 0c 00 00 31 10 00 00 35 04 00 00 21 0f 00 00 3c 07 00 00 d8 0d 00 00 | ............1...5...!...<....... |
| 182e0 | 00 00 00 00 00 00 00 00 11 05 00 00 27 09 00 00 00 00 00 00 00 00 00 00 e3 14 00 00 fe 0b 00 00 | ............'................... |
| 18300 | 07 12 00 00 fd 0e 00 00 82 00 00 00 0c 00 00 00 00 00 00 00 00 00 00 00 b0 02 00 00 00 00 00 00 | ................................ |
| 18320 | 00 00 00 00 0b 16 00 00 6d 03 00 00 c3 13 00 00 dc 0b 00 00 71 0b 00 00 4a 13 00 00 a9 10 00 00 | ........m...........q...J....... |
| 18340 | 00 00 00 00 31 0b 00 00 00 00 00 00 f1 09 00 00 3f 0e 00 00 4d 0a 00 00 b0 0a 00 00 21 0c 00 00 | ....1...........?...M.......!... |
| 18360 | 20 10 00 00 68 03 00 00 a4 00 00 00 60 16 00 00 fa 13 00 00 00 00 00 00 bb 0b 00 00 00 00 00 00 | ....h.......`................... |
| 18380 | 1a 02 00 00 c3 14 00 00 80 15 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 183a0 | 00 00 00 00 a1 14 00 00 00 00 00 00 bc 03 00 00 fa 02 00 00 aa 13 00 00 30 15 00 00 2e 05 00 00 | ........................0....... |
| 183c0 | bb 07 00 00 b0 01 00 00 08 02 00 00 63 10 00 00 8b 0c 00 00 02 02 00 00 00 00 00 00 00 00 00 00 | ............c................... |
| 183e0 | 00 00 00 00 01 14 00 00 00 00 00 00 30 00 00 00 00 00 00 00 00 00 00 00 e1 15 00 00 00 00 00 00 | ............0................... |
| 18400 | 7d 11 00 00 04 05 00 00 16 16 00 00 d1 01 00 00 00 00 00 00 c3 0d 00 00 86 01 00 00 8d 03 00 00 | }............................... |
| 18420 | d0 03 00 00 33 02 00 00 4e 07 00 00 80 07 00 00 00 00 00 00 08 17 00 00 00 00 00 00 00 00 00 00 | ....3...N....................... |
| 18440 | 75 08 00 00 63 00 00 00 8a 13 00 00 00 00 00 00 04 0f 00 00 4d 03 00 00 49 00 00 00 00 00 00 00 | u...c...............M...I....... |
| 18460 | 00 00 00 00 96 00 00 00 99 08 00 00 27 0f 00 00 aa 05 00 00 00 00 00 00 a5 09 00 00 ff 06 00 00 | ............'................... |
| 18480 | bd 11 00 00 3a 05 00 00 2e 04 00 00 00 00 00 00 00 00 00 00 cc 0e 00 00 d2 0a 00 00 00 00 00 00 | ....:........................... |
| 184a0 | 29 0f 00 00 da 01 00 00 5e 14 00 00 1d 08 00 00 9c 05 00 00 6f 15 00 00 00 00 00 00 5c 0a 00 00 | ).......^...........o.......\... |
| 184c0 | 00 00 00 00 d7 01 00 00 00 00 00 00 00 00 00 00 23 11 00 00 08 13 00 00 75 0f 00 00 ca 12 00 00 | ................#.......u....... |
| 184e0 | 17 16 00 00 d4 04 00 00 23 13 00 00 e0 06 00 00 d9 08 00 00 00 00 00 00 5a 05 00 00 88 16 00 00 | ........#...............Z....... |
| 18500 | 03 07 00 00 33 0c 00 00 00 00 00 00 ef 10 00 00 94 05 00 00 6f 0e 00 00 1b 0b 00 00 27 0b 00 00 | ....3...............o.......'... |
| 18520 | 00 00 00 00 1f 00 00 00 67 08 00 00 dd 16 00 00 a2 07 00 00 32 08 00 00 fd 01 00 00 57 0c 00 00 | ........g...........2.......W... |
| 18540 | 00 00 00 00 66 0c 00 00 00 00 00 00 7f 0a 00 00 74 15 00 00 9c 02 00 00 00 00 00 00 6d 0b 00 00 | ....f...........t...........m... |
| 18560 | 59 0b 00 00 c9 09 00 00 5f 02 00 00 c5 13 00 00 56 0f 00 00 90 0a 00 00 7f 04 00 00 a3 03 00 00 | Y......._.......V............... |
| 18580 | 00 00 00 00 e3 11 00 00 00 00 00 00 c0 04 00 00 89 0b 00 00 00 00 00 00 bd 0b 00 00 6f 06 00 00 | ............................o... |
| 185a0 | ad 08 00 00 00 00 00 00 c7 05 00 00 03 00 00 00 f3 0d 00 00 f2 11 00 00 d9 0d 00 00 51 12 00 00 | ............................Q... |
| 185c0 | 26 0d 00 00 c1 11 00 00 e1 0a 00 00 00 00 00 00 aa 01 00 00 00 00 00 00 74 09 00 00 9d 0e 00 00 | &.......................t....... |
| 185e0 | 1e 05 00 00 29 04 00 00 69 00 00 00 d5 06 00 00 00 00 00 00 1e 07 00 00 3f 05 00 00 bb 08 00 00 | ....)...i...............?....... |
| 18600 | 52 10 00 00 e1 06 00 00 2a 07 00 00 ba 0d 00 00 00 00 00 00 84 07 00 00 00 00 00 00 9e 05 00 00 | R.......*....................... |
| 18620 | 00 00 00 00 3f 16 00 00 c4 09 00 00 31 07 00 00 6b 07 00 00 00 00 00 00 ad 00 00 00 70 0e 00 00 | ....?.......1...k...........p... |
| 18640 | d8 09 00 00 01 12 00 00 00 00 00 00 83 03 00 00 00 00 00 00 c1 0b 00 00 c2 12 00 00 95 0b 00 00 | ................................ |
| 18660 | 00 00 00 00 32 00 00 00 00 00 00 00 05 0e 00 00 00 00 00 00 6a 0c 00 00 46 0c 00 00 d2 03 00 00 | ....2...............j...F....... |
| 18680 | 02 16 00 00 58 0a 00 00 00 00 00 00 00 00 00 00 ab 10 00 00 37 15 00 00 10 07 00 00 0d 10 00 00 | ....X...............7........... |
| 186a0 | f1 16 00 00 38 04 00 00 42 03 00 00 61 12 00 00 b3 0a 00 00 00 00 00 00 55 0f 00 00 ac 11 00 00 | ....8...B...a...........U....... |
| 186c0 | 71 01 00 00 e1 10 00 00 39 0f 00 00 88 0e 00 00 4d 04 00 00 00 00 00 00 70 0f 00 00 22 07 00 00 | q.......9.......M.......p..."... |
| 186e0 | 64 01 00 00 ba 09 00 00 00 00 00 00 84 0e 00 00 0a 08 00 00 e0 12 00 00 62 13 00 00 71 0f 00 00 | d.......................b...q... |
| 18700 | 0f 0e 00 00 de 0d 00 00 e8 09 00 00 e0 0c 00 00 da 0e 00 00 e5 0b 00 00 7c 07 00 00 e0 01 00 00 | ........................|....... |
| 18720 | 1d 05 00 00 5a 08 00 00 00 00 00 00 00 00 00 00 2e 09 00 00 71 0c 00 00 83 12 00 00 65 0f 00 00 | ....Z...............q.......e... |
| 18740 | 00 00 00 00 31 01 00 00 02 17 00 00 00 00 00 00 b0 14 00 00 00 00 00 00 03 16 00 00 00 00 00 00 | ....1........................... |
| 18760 | 00 00 00 00 75 15 00 00 a4 06 00 00 bb 0d 00 00 fb 10 00 00 4b 04 00 00 5e 0b 00 00 b0 12 00 00 | ....u...............K...^....... |
| 18780 | f3 11 00 00 56 10 00 00 00 00 00 00 00 00 00 00 af 05 00 00 6c 04 00 00 7d 04 00 00 e2 01 00 00 | ....V...............l...}....... |
| 187a0 | 1d 04 00 00 00 00 00 00 78 03 00 00 00 00 00 00 18 07 00 00 72 07 00 00 85 0e 00 00 72 00 00 00 | ........x...........r.......r... |
| 187c0 | 82 06 00 00 00 00 00 00 5c 0c 00 00 ad 13 00 00 37 02 00 00 bd 00 00 00 c3 02 00 00 00 00 00 00 | ........\.......7............... |
| 187e0 | 77 0d 00 00 db 0d 00 00 00 00 00 00 6f 14 00 00 00 00 00 00 7a 11 00 00 a1 06 00 00 61 16 00 00 | w...........o.......z.......a... |
| 18800 | b2 06 00 00 ca 06 00 00 51 0f 00 00 73 0e 00 00 00 00 00 00 91 0f 00 00 00 00 00 00 5a 10 00 00 | ........Q...s...............Z... |
| 18820 | 0d 11 00 00 b1 07 00 00 00 00 00 00 17 13 00 00 98 06 00 00 d4 06 00 00 b1 08 00 00 00 00 00 00 | ................................ |
| 18840 | 64 12 00 00 dc 16 00 00 00 00 00 00 86 00 00 00 00 00 00 00 71 12 00 00 05 17 00 00 86 05 00 00 | d...................q........... |
| 18860 | 00 00 00 00 c3 15 00 00 37 00 00 00 b9 09 00 00 00 00 00 00 f6 01 00 00 ed 02 00 00 db 0e 00 00 | ........7....................... |
| 18880 | 1b 01 00 00 00 00 00 00 5c 0f 00 00 c4 02 00 00 f7 0a 00 00 f2 0d 00 00 fb 0f 00 00 5b 10 00 00 | ........\...................[... |
| 188a0 | 4a 14 00 00 8a 12 00 00 00 00 00 00 2f 0b 00 00 7a 0a 00 00 b9 08 00 00 a8 10 00 00 00 00 00 00 | J.........../...z............... |
| 188c0 | 00 00 00 00 00 00 00 00 00 00 00 00 bc 04 00 00 00 00 00 00 3e 0a 00 00 eb 15 00 00 f1 13 00 00 | ....................>........... |
| 188e0 | 63 05 00 00 00 00 00 00 d9 10 00 00 19 06 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | c............................... |
| 18900 | 8f 0d 00 00 7a 01 00 00 a3 0f 00 00 09 12 00 00 3d 0e 00 00 06 06 00 00 61 14 00 00 00 00 00 00 | ....z...........=.......a....... |
| 18920 | 72 02 00 00 00 00 00 00 6a 13 00 00 38 07 00 00 a0 0a 00 00 2a 06 00 00 00 00 00 00 13 11 00 00 | r.......j...8.......*........... |
| 18940 | 7f 06 00 00 af 06 00 00 00 00 00 00 00 00 00 00 32 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................2............... |
| 18960 | 3e 03 00 00 00 00 00 00 3c 14 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2d 06 00 00 27 04 00 00 | >.......<...............-...'... |
| 18980 | b6 0a 00 00 f5 0c 00 00 1c 07 00 00 91 07 00 00 00 00 00 00 86 13 00 00 50 08 00 00 00 00 00 00 | ........................P....... |
| 189a0 | 8a 02 00 00 1d 15 00 00 73 03 00 00 d7 0f 00 00 99 0d 00 00 d7 16 00 00 a2 06 00 00 00 00 00 00 | ........s....................... |
| 189c0 | 23 06 00 00 70 0a 00 00 00 00 00 00 9f 07 00 00 74 14 00 00 21 02 00 00 6b 09 00 00 d7 0c 00 00 | #...p...........t...!...k....... |
| 189e0 | 4b 13 00 00 6f 10 00 00 c7 0b 00 00 bc 0f 00 00 00 00 00 00 fc 15 00 00 00 00 00 00 c9 13 00 00 | K...o........................... |
| 18a00 | 41 12 00 00 00 00 00 00 00 00 00 00 f9 02 00 00 00 00 00 00 9c 15 00 00 58 0d 00 00 eb 12 00 00 | A.......................X....... |
| 18a20 | 00 00 00 00 00 00 00 00 db 01 00 00 09 13 00 00 c8 06 00 00 31 02 00 00 e4 14 00 00 2a 02 00 00 | ....................1.......*... |
| 18a40 | d5 16 00 00 00 00 00 00 e7 0e 00 00 59 0c 00 00 8b 06 00 00 4f 16 00 00 95 0d 00 00 91 05 00 00 | ............Y.......O........... |
| 18a60 | 6e 04 00 00 dc 14 00 00 20 11 00 00 95 07 00 00 d0 09 00 00 00 00 00 00 0e 01 00 00 3d 02 00 00 | n...........................=... |
| 18a80 | 00 00 00 00 cf 08 00 00 00 00 00 00 00 00 00 00 fd 0b 00 00 dc 06 00 00 1a 0b 00 00 79 05 00 00 | ............................y... |
| 18aa0 | 74 10 00 00 1b 13 00 00 d9 13 00 00 b2 15 00 00 00 00 00 00 be 15 00 00 00 00 00 00 8a 04 00 00 | t............................... |
| 18ac0 | 00 00 00 00 d4 0e 00 00 ad 16 00 00 10 15 00 00 12 12 00 00 99 06 00 00 00 00 00 00 ce 05 00 00 | ................................ |
| 18ae0 | fd 06 00 00 29 0d 00 00 e8 02 00 00 17 0a 00 00 e2 16 00 00 d6 02 00 00 2e 12 00 00 df 08 00 00 | ....)........................... |
| 18b00 | 4f 11 00 00 5f 0b 00 00 7f 03 00 00 12 06 00 00 ee 15 00 00 d3 11 00 00 00 00 00 00 00 00 00 00 | O..._........................... |
| 18b20 | 1a 0e 00 00 04 0d 00 00 00 00 00 00 00 00 00 00 44 01 00 00 90 0d 00 00 00 00 00 00 da 0f 00 00 | ................D............... |
| 18b40 | df 00 00 00 00 00 00 00 69 08 00 00 24 0e 00 00 1c 05 00 00 5a 16 00 00 c7 06 00 00 00 00 00 00 | ........i...$.......Z........... |
| 18b60 | 23 01 00 00 00 00 00 00 84 03 00 00 5c 06 00 00 00 00 00 00 00 00 00 00 38 12 00 00 fd 05 00 00 | #...........\...........8....... |
| 18b80 | 00 00 00 00 5e 0a 00 00 00 00 00 00 07 07 00 00 00 00 00 00 6a 0b 00 00 3b 07 00 00 61 0f 00 00 | ....^...............j...;...a... |
| 18ba0 | 67 09 00 00 00 00 00 00 00 00 00 00 12 0b 00 00 93 11 00 00 dd 00 00 00 0e 05 00 00 2d 08 00 00 | g...........................-... |
| 18bc0 | 5e 0c 00 00 ed 10 00 00 50 12 00 00 00 00 00 00 00 00 00 00 7b 03 00 00 08 00 00 00 60 0b 00 00 | ^.......P...........{.......`... |
| 18be0 | 39 11 00 00 84 13 00 00 00 00 00 00 86 04 00 00 00 00 00 00 00 00 00 00 b6 0d 00 00 a3 16 00 00 | 9............................... |
| 18c00 | 64 0a 00 00 ac 04 00 00 00 00 00 00 6b 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 11 0f 00 00 | d...........k................... |
| 18c20 | fb 16 00 00 00 00 00 00 d0 01 00 00 20 01 00 00 45 09 00 00 00 00 00 00 2c 0e 00 00 00 00 00 00 | ................E.......,....... |
| 18c40 | 1c 01 00 00 69 11 00 00 00 00 00 00 28 08 00 00 8e 15 00 00 3a 0d 00 00 a1 15 00 00 ab 04 00 00 | ....i.......(.......:........... |
| 18c60 | 00 00 00 00 d7 04 00 00 f0 01 00 00 4b 14 00 00 a7 01 00 00 ea 09 00 00 7e 06 00 00 00 00 00 00 | ............K...........~....... |
| 18c80 | 1d 01 00 00 eb 10 00 00 34 06 00 00 1c 00 00 00 65 09 00 00 40 0b 00 00 2c 05 00 00 ae 04 00 00 | ........4.......e...@...,....... |
| 18ca0 | 66 15 00 00 91 04 00 00 a2 05 00 00 00 00 00 00 ad 0e 00 00 00 00 00 00 15 15 00 00 03 0e 00 00 | f............................... |
| 18cc0 | 4c 00 00 00 de 06 00 00 69 06 00 00 a4 0b 00 00 87 0f 00 00 53 13 00 00 1b 16 00 00 01 03 00 00 | L.......i...........S........... |
| 18ce0 | a7 10 00 00 00 00 00 00 10 03 00 00 c5 05 00 00 f8 08 00 00 f3 15 00 00 ac 01 00 00 7c 09 00 00 | ............................|... |
| 18d00 | 38 10 00 00 54 07 00 00 d7 0d 00 00 e1 0c 00 00 d9 15 00 00 6e 0c 00 00 00 00 00 00 b2 07 00 00 | 8...T...............n........... |
| 18d20 | c7 09 00 00 7f 16 00 00 3e 15 00 00 74 13 00 00 20 0c 00 00 0c 04 00 00 00 00 00 00 0f 05 00 00 | ........>...t................... |
| 18d40 | 18 09 00 00 00 00 00 00 92 02 00 00 6e 08 00 00 2f 02 00 00 ec 08 00 00 f0 06 00 00 20 0f 00 00 | ............n.../............... |
| 18d60 | 00 00 00 00 56 0b 00 00 06 05 00 00 ea 13 00 00 e1 0d 00 00 11 08 00 00 00 00 00 00 c7 0a 00 00 | ....V........................... |
| 18d80 | 43 0b 00 00 00 00 00 00 8f 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 13 13 00 00 7a 0b 00 00 | C...........................z... |
| 18da0 | 78 15 00 00 7d 0b 00 00 00 00 00 00 ac 05 00 00 00 00 00 00 04 09 00 00 94 12 00 00 dd 11 00 00 | x...}........................... |
| 18dc0 | f9 06 00 00 a3 07 00 00 00 00 00 00 99 12 00 00 17 07 00 00 e8 08 00 00 17 09 00 00 00 00 00 00 | ................................ |
| 18de0 | 4c 06 00 00 3e 11 00 00 b0 15 00 00 97 11 00 00 9b 03 00 00 e2 08 00 00 00 00 00 00 00 00 00 00 | L...>........................... |
| 18e00 | 1a 14 00 00 08 0d 00 00 16 11 00 00 c6 15 00 00 5a 14 00 00 bb 0a 00 00 3f 0a 00 00 c7 11 00 00 | ................Z.......?....... |
| 18e20 | 95 0c 00 00 3d 0b 00 00 2d 05 00 00 39 15 00 00 00 00 00 00 38 15 00 00 28 10 00 00 00 00 00 00 | ....=...-...9.......8...(....... |
| 18e40 | 00 00 00 00 e5 08 00 00 57 0d 00 00 f5 02 00 00 07 0b 00 00 00 00 00 00 00 00 00 00 0a 13 00 00 | ........W....................... |
| 18e60 | 2e 15 00 00 84 12 00 00 57 04 00 00 00 00 00 00 b1 15 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ........W....................... |
| 18e80 | 80 16 00 00 0f 10 00 00 2c 06 00 00 00 00 00 00 b0 00 00 00 f8 05 00 00 cf 09 00 00 9c 07 00 00 | ........,....................... |
| 18ea0 | 9d 05 00 00 e2 07 00 00 00 00 00 00 1f 0b 00 00 ae 15 00 00 7b 06 00 00 e6 10 00 00 7c 05 00 00 | ....................{.......|... |
| 18ec0 | 0f 11 00 00 45 06 00 00 00 00 00 00 00 00 00 00 a3 04 00 00 00 00 00 00 00 00 00 00 f0 00 00 00 | ....E........................... |
| 18ee0 | b9 07 00 00 00 00 00 00 7f 0e 00 00 53 14 00 00 86 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............S................... |
| 18f00 | 30 0a 00 00 39 16 00 00 22 0f 00 00 9e 0f 00 00 fd 10 00 00 00 00 00 00 98 08 00 00 2b 0f 00 00 | 0...9..."...................+... |
| 18f20 | 00 00 00 00 4b 10 00 00 43 07 00 00 00 13 00 00 29 0a 00 00 00 00 00 00 49 14 00 00 00 00 00 00 | ....K...C.......).......I....... |
| 18f40 | 85 0a 00 00 00 07 00 00 00 00 00 00 00 00 00 00 2c 16 00 00 a2 01 00 00 00 00 00 00 ad 11 00 00 | ................,............... |
| 18f60 | bb 11 00 00 fd 15 00 00 a9 02 00 00 44 10 00 00 b5 0a 00 00 38 13 00 00 85 05 00 00 38 14 00 00 | ............D.......8.......8... |
| 18f80 | 00 00 00 00 00 00 00 00 be 00 00 00 00 00 00 00 79 08 00 00 6c 09 00 00 53 0a 00 00 14 03 00 00 | ................y...l...S....... |
| 18fa0 | e4 06 00 00 63 13 00 00 e0 00 00 00 8e 0e 00 00 00 00 00 00 d8 0b 00 00 00 00 00 00 42 10 00 00 | ....c.......................B... |
| 18fc0 | 00 00 00 00 c2 09 00 00 19 12 00 00 a4 13 00 00 06 09 00 00 00 00 00 00 31 11 00 00 6f 16 00 00 | ........................1...o... |
| 18fe0 | e7 11 00 00 40 0f 00 00 00 00 00 00 7e 0c 00 00 00 00 00 00 00 00 00 00 c1 10 00 00 c3 16 00 00 | ....@.......~................... |
| 19000 | 00 00 00 00 14 0b 00 00 00 00 00 00 44 11 00 00 be 0c 00 00 43 15 00 00 82 05 00 00 68 07 00 00 | ............D.......C.......h... |
| 19020 | 00 00 00 00 00 00 00 00 00 00 00 00 ec 10 00 00 f7 03 00 00 00 00 00 00 28 02 00 00 ac 0c 00 00 | ........................(....... |
| 19040 | 33 05 00 00 bd 05 00 00 a0 10 00 00 97 09 00 00 cf 13 00 00 00 00 00 00 a8 09 00 00 4c 11 00 00 | 3...........................L... |
| 19060 | 0b 07 00 00 00 00 00 00 5c 11 00 00 06 08 00 00 86 0e 00 00 00 00 00 00 53 0f 00 00 b4 08 00 00 | ........\...............S....... |
| 19080 | fe 14 00 00 4b 15 00 00 0c 11 00 00 e7 10 00 00 87 05 00 00 fb 0b 00 00 76 0d 00 00 98 12 00 00 | ....K...................v....... |
| 190a0 | 7e 16 00 00 00 00 00 00 00 00 00 00 91 0e 00 00 00 00 00 00 00 00 00 00 a3 08 00 00 21 14 00 00 | ~...........................!... |
| 190c0 | 00 00 00 00 63 04 00 00 ef 11 00 00 66 02 00 00 e6 0d 00 00 fe 0c 00 00 00 00 00 00 8a 07 00 00 | ....c.......f................... |
| 190e0 | 84 0d 00 00 d3 06 00 00 4d 0b 00 00 00 00 00 00 05 10 00 00 57 0a 00 00 88 0a 00 00 9f 16 00 00 | ........M...........W........... |
| 19100 | 00 00 00 00 36 0e 00 00 00 00 00 00 00 00 00 00 79 0b 00 00 16 06 00 00 49 16 00 00 e0 14 00 00 | ....6...........y.......I....... |
| 19120 | b4 0f 00 00 00 00 00 00 0c 0f 00 00 00 00 00 00 ce 12 00 00 1b 02 00 00 67 0c 00 00 40 07 00 00 | ........................g...@... |
| 19140 | 73 15 00 00 00 00 00 00 00 00 00 00 54 14 00 00 00 00 00 00 00 00 00 00 59 02 00 00 2f 04 00 00 | s...........T...........Y.../... |
| 19160 | 88 00 00 00 63 0c 00 00 b4 01 00 00 46 0d 00 00 1b 12 00 00 0d 03 00 00 d9 16 00 00 a0 03 00 00 | ....c.......F................... |
| 19180 | 6b 05 00 00 93 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d6 15 00 00 1a 12 00 00 | k............................... |
| 191a0 | bb 06 00 00 00 00 00 00 ce 0a 00 00 00 00 00 00 ba 04 00 00 5d 09 00 00 00 00 00 00 5e 07 00 00 | ....................].......^... |
| 191c0 | cd 11 00 00 12 13 00 00 00 00 00 00 00 00 00 00 01 04 00 00 a8 02 00 00 4c 15 00 00 9d 04 00 00 | ........................L....... |
| 191e0 | 64 16 00 00 50 06 00 00 4e 0d 00 00 e2 0d 00 00 db 16 00 00 9d 03 00 00 ba 10 00 00 00 00 00 00 | d...P...N....................... |
| 19200 | 2f 05 00 00 00 00 00 00 7b 12 00 00 7e 02 00 00 7c 08 00 00 b8 0e 00 00 aa 04 00 00 0c 14 00 00 | /.......{...~...|............... |
| 19220 | 00 00 00 00 00 00 00 00 c8 0f 00 00 24 0d 00 00 76 0c 00 00 48 0c 00 00 ac 00 00 00 ec 06 00 00 | ............$...v...H........... |
| 19240 | 54 11 00 00 00 00 00 00 57 13 00 00 e9 15 00 00 00 00 00 00 01 02 00 00 00 00 00 00 18 0d 00 00 | T.......W....................... |
| 19260 | 00 00 00 00 49 01 00 00 9d 15 00 00 4f 10 00 00 11 0b 00 00 12 03 00 00 ac 0f 00 00 d1 05 00 00 | ....I.......O................... |
| 19280 | 00 00 00 00 7b 10 00 00 79 04 00 00 79 0c 00 00 00 00 00 00 20 0a 00 00 0a 0c 00 00 00 00 00 00 | ....{...y...y................... |
| 192a0 | 62 03 00 00 00 00 00 00 7c 0c 00 00 00 00 00 00 65 01 00 00 00 00 00 00 2f 06 00 00 0c 03 00 00 | b.......|.......e......./....... |
| 192c0 | 00 00 00 00 24 13 00 00 00 00 00 00 b0 16 00 00 00 00 00 00 44 09 00 00 00 00 00 00 00 00 00 00 | ....$...............D........... |
| 192e0 | 00 00 00 00 e1 02 00 00 df 0c 00 00 ff 12 00 00 00 00 00 00 38 00 00 00 c0 10 00 00 44 06 00 00 | ....................8.......D... |
| 19300 | 60 09 00 00 88 03 00 00 60 0e 00 00 a5 01 00 00 9d 0f 00 00 10 0c 00 00 00 00 00 00 81 15 00 00 | `.......`....................... |
| 19320 | 00 00 00 00 be 16 00 00 7d 10 00 00 3f 00 00 00 b3 15 00 00 71 06 00 00 00 00 00 00 44 0e 00 00 | ........}...?.......q.......D... |
| 19340 | d1 0b 00 00 9f 04 00 00 4c 0d 00 00 00 00 00 00 0b 13 00 00 00 00 00 00 48 02 00 00 00 00 00 00 | ........L...............H....... |
| 19360 | 1b 04 00 00 b1 16 00 00 00 00 00 00 00 00 00 00 07 02 00 00 49 03 00 00 00 00 00 00 9d 06 00 00 | ....................I........... |
| 19380 | 0f 0a 00 00 51 0c 00 00 00 00 00 00 00 00 00 00 02 0c 00 00 ad 12 00 00 3e 09 00 00 00 00 00 00 | ....Q...................>....... |
| 193a0 | 78 0c 00 00 5c 05 00 00 34 03 00 00 aa 0f 00 00 d7 00 00 00 cd 0f 00 00 fb 0a 00 00 00 00 00 00 | x...\...4....................... |
| 193c0 | 56 16 00 00 7e 01 00 00 53 08 00 00 8f 16 00 00 a2 16 00 00 05 07 00 00 6c 03 00 00 00 00 00 00 | V...~...S...............l....... |
| 193e0 | 00 00 00 00 00 00 00 00 96 12 00 00 a1 0f 00 00 96 08 00 00 94 0a 00 00 39 02 00 00 00 00 00 00 | ........................9....... |
| 19400 | 00 00 00 00 8c 04 00 00 1d 10 00 00 00 00 00 00 72 09 00 00 35 01 00 00 d0 04 00 00 9e 01 00 00 | ................r...5........... |
| 19420 | 00 00 00 00 b6 01 00 00 f1 01 00 00 00 00 00 00 36 0b 00 00 2b 13 00 00 00 00 00 00 0a 04 00 00 | ................6...+........... |
| 19440 | 1c 16 00 00 68 0e 00 00 ed 06 00 00 b6 14 00 00 00 00 00 00 4f 0d 00 00 00 00 00 00 50 14 00 00 | ....h...............O.......P... |
| 19460 | 3f 0d 00 00 48 08 00 00 ec 0f 00 00 00 00 00 00 4f 15 00 00 ea 16 00 00 00 00 00 00 3d 05 00 00 | ?...H...........O...........=... |
| 19480 | 03 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 c7 04 00 00 3a 02 00 00 00 00 00 00 97 0c 00 00 | ....................:........... |
| 194a0 | 00 00 00 00 00 00 00 00 b5 04 00 00 00 00 00 00 37 0c 00 00 de 09 00 00 00 00 00 00 39 0d 00 00 | ................7...........9... |
| 194c0 | 90 13 00 00 00 00 00 00 c1 14 00 00 bb 00 00 00 fa 12 00 00 54 03 00 00 d1 16 00 00 66 08 00 00 | ....................T.......f... |
| 194e0 | 31 03 00 00 00 00 00 00 0c 0a 00 00 56 05 00 00 00 16 00 00 81 10 00 00 00 00 00 00 00 00 00 00 | 1...........V................... |
| 19500 | 16 0b 00 00 6f 11 00 00 69 0e 00 00 c8 00 00 00 67 0a 00 00 46 06 00 00 00 00 00 00 4c 02 00 00 | ....o...i.......g...F.......L... |
| 19520 | 29 05 00 00 cc 15 00 00 00 00 00 00 68 00 00 00 52 13 00 00 f0 10 00 00 00 00 00 00 00 00 00 00 | )...........h...R............... |
| 19540 | 10 01 00 00 00 00 00 00 ab 02 00 00 bd 0e 00 00 00 00 00 00 f4 01 00 00 22 0a 00 00 00 00 00 00 | ........................"....... |
| 19560 | ea 10 00 00 47 00 00 00 00 00 00 00 00 00 00 00 0d 15 00 00 00 00 00 00 f8 04 00 00 35 14 00 00 | ....G.......................5... |
| 19580 | 7b 15 00 00 00 00 00 00 6f 05 00 00 00 00 00 00 00 00 00 00 ff 05 00 00 fb 06 00 00 86 14 00 00 | {.......o....................... |
| 195a0 | 84 05 00 00 9c 0d 00 00 fa 0d 00 00 9b 00 00 00 b4 04 00 00 f7 04 00 00 fe 10 00 00 41 0b 00 00 | ............................A... |
| 195c0 | 4d 0d 00 00 af 04 00 00 00 00 00 00 a8 06 00 00 f1 08 00 00 cd 00 00 00 00 00 00 00 76 02 00 00 | M...........................v... |
| 195e0 | a6 08 00 00 26 05 00 00 1c 0b 00 00 c7 14 00 00 00 00 00 00 2f 0f 00 00 63 09 00 00 ff 0b 00 00 | ....&.............../...c....... |
| 19600 | 42 12 00 00 fb 01 00 00 00 00 00 00 9a 0b 00 00 00 00 00 00 20 07 00 00 5d 13 00 00 72 03 00 00 | B.......................]...r... |
| 19620 | 3b 12 00 00 00 00 00 00 8c 13 00 00 fc 0c 00 00 f0 0b 00 00 00 00 00 00 a1 07 00 00 10 0a 00 00 | ;............................... |
| 19640 | 5a 06 00 00 82 0d 00 00 12 11 00 00 00 00 00 00 d8 03 00 00 83 0d 00 00 74 0a 00 00 91 0b 00 00 | Z.......................t....... |
| 19660 | 0e 04 00 00 00 00 00 00 bf 08 00 00 88 0d 00 00 15 05 00 00 2a 0a 00 00 f2 06 00 00 00 00 00 00 | ....................*........... |
| 19680 | 00 00 00 00 72 08 00 00 37 0e 00 00 d5 10 00 00 00 00 00 00 be 06 00 00 2c 10 00 00 00 00 00 00 | ....r...7...............,....... |
| 196a0 | 20 0d 00 00 8e 05 00 00 e5 14 00 00 e4 09 00 00 d7 0a 00 00 00 00 00 00 a8 0b 00 00 00 00 00 00 | ................................ |
| 196c0 | 51 05 00 00 03 14 00 00 00 00 00 00 df 04 00 00 1d 0e 00 00 c0 0e 00 00 5b 03 00 00 00 00 00 00 | Q.......................[....... |
| 196e0 | 00 00 00 00 32 0c 00 00 00 00 00 00 00 00 00 00 6a 15 00 00 11 16 00 00 82 14 00 00 14 05 00 00 | ....2...........j............... |
| 19700 | 06 00 00 00 b4 00 00 00 00 00 00 00 16 03 00 00 00 00 00 00 c1 08 00 00 00 00 00 00 2d 10 00 00 | ............................-... |
| 19720 | 5e 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0f 12 00 00 e4 13 00 00 00 00 00 00 00 00 00 00 | ^............................... |
| 19740 | 00 00 00 00 67 0e 00 00 d9 0e 00 00 9b 11 00 00 93 01 00 00 2e 11 00 00 d6 05 00 00 5c 15 00 00 | ....g.......................\... |
| 19760 | c0 07 00 00 26 0e 00 00 05 0c 00 00 1d 07 00 00 ff 10 00 00 00 00 00 00 00 00 00 00 75 0c 00 00 | ....&.......................u... |
| 19780 | 11 13 00 00 02 0b 00 00 00 00 00 00 85 11 00 00 8f 0b 00 00 12 15 00 00 4c 0a 00 00 00 00 00 00 | ........................L....... |
| 197a0 | 00 00 00 00 00 00 00 00 00 00 00 00 e9 16 00 00 00 00 00 00 4d 15 00 00 c4 0f 00 00 a3 13 00 00 | ....................M........... |
| 197c0 | 2e 14 00 00 a1 0a 00 00 eb 08 00 00 21 00 00 00 cb 03 00 00 f4 16 00 00 00 00 00 00 71 07 00 00 | ............!...............q... |
| 197e0 | a6 12 00 00 26 01 00 00 00 00 00 00 00 00 00 00 f8 11 00 00 45 0b 00 00 8f 0c 00 00 00 00 00 00 | ....&...............E........... |
| 19800 | b2 0f 00 00 a2 0a 00 00 aa 12 00 00 b8 0c 00 00 5f 0f 00 00 00 00 00 00 2c 0f 00 00 00 00 00 00 | ................_.......,....... |
| 19820 | 0b 14 00 00 46 09 00 00 3c 04 00 00 ae 14 00 00 49 12 00 00 03 0d 00 00 a9 0e 00 00 22 16 00 00 | ....F...<.......I..........."... |
| 19840 | 9b 0f 00 00 05 13 00 00 57 12 00 00 fc 08 00 00 74 06 00 00 8e 10 00 00 a9 01 00 00 92 16 00 00 | ........W.......t............... |
| 19860 | 0e 09 00 00 77 10 00 00 79 01 00 00 6b 04 00 00 8c 10 00 00 9a 07 00 00 00 00 00 00 31 05 00 00 | ....w...y...k...............1... |
| 19880 | c0 11 00 00 54 02 00 00 a6 0b 00 00 00 00 00 00 00 00 00 00 38 03 00 00 aa 10 00 00 87 13 00 00 | ....T...............8........... |
| 198a0 | b6 04 00 00 00 00 00 00 b7 04 00 00 a9 14 00 00 b8 04 00 00 0a 11 00 00 60 04 00 00 a3 15 00 00 | ........................`....... |
| 198c0 | 13 0d 00 00 08 08 00 00 00 00 00 00 d3 15 00 00 e8 0b 00 00 30 0c 00 00 0e 0a 00 00 45 0f 00 00 | ....................0.......E... |
| 198e0 | 69 01 00 00 00 00 00 00 f4 04 00 00 0a 09 00 00 0c 0c 00 00 40 08 00 00 95 05 00 00 2b 07 00 00 | i...................@.......+... |
| 19900 | 6b 15 00 00 00 00 00 00 2c 0b 00 00 bc 00 00 00 9f 08 00 00 0f 14 00 00 18 0e 00 00 fc 00 00 00 | k.......,....................... |
| 19920 | 75 03 00 00 c5 0c 00 00 7d 12 00 00 04 0e 00 00 bf 0a 00 00 00 00 00 00 00 00 00 00 17 10 00 00 | u.......}....................... |
| 19940 | 81 06 00 00 3b 11 00 00 5c 02 00 00 00 00 00 00 00 00 00 00 c8 09 00 00 d3 08 00 00 ee 12 00 00 | ....;...\....................... |
| 19960 | cb 09 00 00 f2 04 00 00 8d 14 00 00 8b 00 00 00 5c 10 00 00 3e 04 00 00 c0 06 00 00 00 00 00 00 | ................\...>........... |
| 19980 | 13 10 00 00 ba 02 00 00 00 00 00 00 4d 16 00 00 ba 01 00 00 e9 13 00 00 5e 08 00 00 00 00 00 00 | ............M...........^....... |
| 199a0 | a3 00 00 00 00 00 00 00 fe 11 00 00 9e 02 00 00 56 04 00 00 f6 14 00 00 00 00 00 00 00 00 00 00 | ................V............... |
| 199c0 | 3b 00 00 00 0e 16 00 00 33 14 00 00 88 15 00 00 4d 0f 00 00 17 06 00 00 b2 14 00 00 0d 01 00 00 | ;.......3.......M............... |
| 199e0 | 15 14 00 00 2b 16 00 00 46 11 00 00 cd 16 00 00 00 00 00 00 9e 03 00 00 00 00 00 00 00 00 00 00 | ....+...F....................... |
| 19a00 | 45 08 00 00 00 00 00 00 41 16 00 00 f4 0f 00 00 39 0c 00 00 55 06 00 00 fe 0e 00 00 91 0d 00 00 | E.......A.......9...U........... |
| 19a20 | ac 12 00 00 f5 15 00 00 15 0b 00 00 b3 16 00 00 77 01 00 00 eb 13 00 00 00 00 00 00 d2 12 00 00 | ................w............... |
| 19a40 | e6 09 00 00 95 12 00 00 fa 00 00 00 91 13 00 00 00 00 00 00 00 00 00 00 f3 06 00 00 e6 11 00 00 | ................................ |
| 19a60 | 8a 00 00 00 00 00 00 00 b6 03 00 00 3e 05 00 00 09 17 00 00 f5 08 00 00 5f 16 00 00 00 00 00 00 | ............>..........._....... |
| 19a80 | 00 00 00 00 db 03 00 00 aa 15 00 00 14 01 00 00 00 00 00 00 27 00 00 00 3d 14 00 00 1e 0c 00 00 | ....................'...=....... |
| 19aa0 | 5e 15 00 00 c4 13 00 00 42 0e 00 00 00 00 00 00 51 13 00 00 00 00 00 00 c2 0b 00 00 7b 14 00 00 | ^.......B.......Q...........{... |
| 19ac0 | 00 00 00 00 fc 0b 00 00 3f 02 00 00 12 09 00 00 00 00 00 00 73 09 00 00 a0 13 00 00 14 15 00 00 | ........?...........s........... |
| 19ae0 | 0d 07 00 00 24 01 00 00 aa 02 00 00 1b 0e 00 00 f0 0f 00 00 59 03 00 00 7c 0e 00 00 a2 0c 00 00 | ....$...............Y...|....... |
| 19b00 | 53 09 00 00 fd 14 00 00 00 00 00 00 00 11 00 00 c5 16 00 00 50 00 00 00 6a 03 00 00 68 02 00 00 | S...................P...j...h... |
| 19b20 | b4 0b 00 00 69 12 00 00 00 00 00 00 2c 14 00 00 97 0b 00 00 62 09 00 00 39 14 00 00 4e 09 00 00 | ....i.......,.......b...9...N... |
| 19b40 | 0e 08 00 00 00 00 00 00 00 00 00 00 cb 13 00 00 ed 07 00 00 9c 11 00 00 c7 10 00 00 9e 11 00 00 | ................................ |
| 19b60 | 21 09 00 00 00 00 00 00 00 00 00 00 ac 0a 00 00 47 08 00 00 34 13 00 00 00 00 00 00 00 00 00 00 | !...............G...4........... |
| 19b80 | 9f 0a 00 00 c0 0a 00 00 c4 0c 00 00 25 16 00 00 58 13 00 00 00 00 00 00 00 00 00 00 ab 00 00 00 | ............%...X............... |
| 19ba0 | 9d 12 00 00 78 04 00 00 00 00 00 00 c3 03 00 00 e0 0e 00 00 c2 10 00 00 00 00 00 00 00 00 00 00 | ....x........................... |
| 19bc0 | 00 00 00 00 98 0d 00 00 0b 12 00 00 4f 02 00 00 a5 0b 00 00 7f 0f 00 00 20 14 00 00 d6 13 00 00 | ............O................... |
| 19be0 | d7 12 00 00 e2 05 00 00 fd 11 00 00 c2 13 00 00 e5 10 00 00 90 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 19c00 | d6 0b 00 00 00 00 00 00 68 13 00 00 f4 10 00 00 3d 0c 00 00 39 05 00 00 ae 16 00 00 c8 0c 00 00 | ........h.......=...9........... |
| 19c20 | 54 09 00 00 00 00 00 00 96 07 00 00 00 00 00 00 ba 0c 00 00 cc 11 00 00 00 00 00 00 cf 04 00 00 | T............................... |
| 19c40 | f0 05 00 00 7b 09 00 00 87 03 00 00 00 00 00 00 eb 14 00 00 d4 15 00 00 e7 00 00 00 00 00 00 00 | ....{........................... |
| 19c60 | 00 00 00 00 00 00 00 00 f7 0b 00 00 00 00 00 00 f7 12 00 00 72 0f 00 00 b1 01 00 00 ee 0d 00 00 | ....................r........... |
| 19c80 | b5 07 00 00 0a 10 00 00 29 07 00 00 a1 10 00 00 00 00 00 00 f6 0f 00 00 6b 03 00 00 00 00 00 00 | ........)...............k....... |
| 19ca0 | 9e 0e 00 00 c9 14 00 00 4f 0c 00 00 1f 15 00 00 00 00 00 00 5f 08 00 00 f0 13 00 00 80 0e 00 00 | ........O..........._........... |
| 19cc0 | 00 00 00 00 d9 01 00 00 10 05 00 00 c4 15 00 00 fd 00 00 00 14 11 00 00 51 0e 00 00 36 0d 00 00 | ........................Q...6... |
| 19ce0 | 5f 07 00 00 80 01 00 00 85 08 00 00 44 0b 00 00 d0 08 00 00 13 07 00 00 81 01 00 00 00 00 00 00 | _...........D................... |
| 19d00 | 6e 16 00 00 00 00 00 00 41 14 00 00 00 00 00 00 25 12 00 00 00 00 00 00 57 05 00 00 32 13 00 00 | n.......A.......%.......W...2... |
| 19d20 | 23 0e 00 00 00 00 00 00 14 13 00 00 00 00 00 00 00 00 00 00 27 0e 00 00 56 00 00 00 f7 06 00 00 | #...................'...V....... |
| 19d40 | 3f 07 00 00 42 16 00 00 bf 16 00 00 4c 0e 00 00 e3 07 00 00 15 0d 00 00 00 00 00 00 af 16 00 00 | ?...B.......L................... |
| 19d60 | 01 09 00 00 ab 0b 00 00 cb 0e 00 00 00 00 00 00 48 07 00 00 e5 12 00 00 32 14 00 00 b4 16 00 00 | ................H.......2....... |
| 19d80 | 00 00 00 00 66 03 00 00 8c 0b 00 00 00 00 00 00 6d 07 00 00 6e 12 00 00 3e 0c 00 00 c5 0b 00 00 | ....f...........m...n...>....... |
| 19da0 | a7 02 00 00 6c 0a 00 00 68 05 00 00 00 00 00 00 21 0a 00 00 25 14 00 00 d0 02 00 00 f5 11 00 00 | ....l...h.......!...%........... |
| 19dc0 | 00 00 00 00 8a 10 00 00 0b 11 00 00 00 00 00 00 92 0f 00 00 e2 15 00 00 f2 00 00 00 bf 11 00 00 | ................................ |
| 19de0 | 53 0c 00 00 87 02 00 00 54 0c 00 00 65 10 00 00 f5 03 00 00 45 02 00 00 8c 0c 00 00 00 00 00 00 | S.......T...e.......E........... |
| 19e00 | 16 02 00 00 ab 12 00 00 00 00 00 00 00 00 00 00 53 11 00 00 f0 0a 00 00 a9 07 00 00 00 00 00 00 | ................S............... |
| 19e20 | 2e 0f 00 00 0a 02 00 00 00 00 00 00 de 08 00 00 b7 09 00 00 20 16 00 00 00 00 00 00 f2 12 00 00 | ................................ |
| 19e40 | 03 0b 00 00 00 00 00 00 32 06 00 00 2d 03 00 00 8f 07 00 00 10 06 00 00 00 00 00 00 0c 0d 00 00 | ........2...-................... |
| 19e60 | 98 0b 00 00 41 0d 00 00 07 00 00 00 10 12 00 00 d1 00 00 00 00 00 00 00 3e 0e 00 00 05 05 00 00 | ....A...................>....... |
| 19e80 | 1f 0e 00 00 00 00 00 00 81 04 00 00 00 00 00 00 4b 0a 00 00 16 0f 00 00 00 00 00 00 c3 00 00 00 | ................K............... |
| 19ea0 | 5c 16 00 00 fd 07 00 00 42 00 00 00 9a 04 00 00 46 0e 00 00 2b 0a 00 00 3f 08 00 00 e7 09 00 00 | \.......B.......F...+...?....... |
| 19ec0 | 93 0c 00 00 d5 0e 00 00 00 00 00 00 22 02 00 00 00 00 00 00 d9 07 00 00 ef 01 00 00 00 00 00 00 | ............"................... |
| 19ee0 | be 04 00 00 61 06 00 00 00 00 00 00 58 02 00 00 9b 0b 00 00 0a 0d 00 00 00 00 00 00 00 00 00 00 | ....a.......X................... |
| 19f00 | e9 01 00 00 e9 0d 00 00 00 00 00 00 ac 0e 00 00 25 06 00 00 00 00 00 00 4c 16 00 00 00 00 00 00 | ................%.......L....... |
| 19f20 | 33 09 00 00 00 00 00 00 8f 05 00 00 35 11 00 00 da 14 00 00 36 07 00 00 94 08 00 00 57 14 00 00 | 3...........5.......6.......W... |
| 19f40 | 07 08 00 00 4a 0c 00 00 c9 0e 00 00 8f 03 00 00 29 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ....J...........)............... |
| 19f60 | 18 06 00 00 00 00 00 00 86 0d 00 00 8e 08 00 00 00 00 00 00 c4 14 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 19f80 | 4d 01 00 00 e5 16 00 00 28 01 00 00 92 14 00 00 38 0f 00 00 0e 0e 00 00 a0 0e 00 00 61 15 00 00 | M.......(.......8...........a... |
| 19fa0 | a8 0f 00 00 5a 0b 00 00 1e 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d3 16 00 00 3e 10 00 00 | ....Z.......................>... |
| 19fc0 | 24 14 00 00 66 10 00 00 19 11 00 00 9a 09 00 00 5d 0f 00 00 57 10 00 00 00 00 00 00 92 06 00 00 | $...f...........]...W........... |
| 19fe0 | 13 0b 00 00 da 08 00 00 80 12 00 00 99 13 00 00 f2 05 00 00 93 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1a000 | 00 00 00 00 ff 0e 00 00 e3 15 00 00 d1 07 00 00 d0 07 00 00 00 00 00 00 2a 15 00 00 b0 11 00 00 | ........................*....... |
| 1a020 | 87 12 00 00 d4 10 00 00 00 00 00 00 00 00 00 00 94 06 00 00 00 00 00 00 4b 16 00 00 00 00 00 00 | ........................K....... |
| 1a040 | ef 05 00 00 be 0e 00 00 00 00 00 00 00 00 00 00 32 0f 00 00 51 0a 00 00 c2 0d 00 00 e9 07 00 00 | ................2...Q........... |
| 1a060 | 25 07 00 00 00 00 00 00 71 10 00 00 d5 12 00 00 de 13 00 00 8d 16 00 00 9b 16 00 00 00 00 00 00 | %.......q....................... |
| 1a080 | 59 16 00 00 0d 09 00 00 00 00 00 00 93 13 00 00 57 09 00 00 da 07 00 00 16 07 00 00 0b 08 00 00 | Y...............W............... |
| 1a0a0 | 14 02 00 00 00 00 00 00 00 00 00 00 65 13 00 00 fc 10 00 00 55 10 00 00 00 00 00 00 23 12 00 00 | ............e.......U.......#... |
| 1a0c0 | 00 00 00 00 63 0a 00 00 11 06 00 00 00 00 00 00 7a 13 00 00 f9 0f 00 00 69 07 00 00 54 06 00 00 | ....c...........z.......i...T... |
| 1a0e0 | f3 03 00 00 1b 0c 00 00 23 08 00 00 26 08 00 00 83 0b 00 00 ca 10 00 00 0d 0c 00 00 00 00 00 00 | ........#...&................... |
| 1a100 | 08 11 00 00 00 00 00 00 e7 12 00 00 11 0d 00 00 3f 09 00 00 e8 01 00 00 d1 02 00 00 f4 08 00 00 | ................?............... |
| 1a120 | e2 10 00 00 00 00 00 00 00 00 00 00 8b 08 00 00 cf 00 00 00 d0 11 00 00 32 09 00 00 6e 0d 00 00 | ........................2...n... |
| 1a140 | 7c 04 00 00 bc 0a 00 00 f9 14 00 00 00 00 00 00 00 00 00 00 df 09 00 00 80 06 00 00 12 0f 00 00 | |............................... |
| 1a160 | 00 00 00 00 3f 15 00 00 00 00 00 00 c8 02 00 00 b2 0b 00 00 00 00 00 00 c9 05 00 00 00 00 00 00 | ....?........................... |
| 1a180 | 00 00 00 00 14 09 00 00 2f 08 00 00 65 14 00 00 ff 16 00 00 84 14 00 00 00 00 00 00 73 0f 00 00 | ......../...e...............s... |
| 1a1a0 | b6 06 00 00 89 05 00 00 ff 14 00 00 ea 14 00 00 f5 10 00 00 82 10 00 00 00 00 00 00 aa 11 00 00 | ................................ |
| 1a1c0 | 1e 08 00 00 e8 0d 00 00 8d 04 00 00 07 0e 00 00 0f 0d 00 00 8a 11 00 00 cd 10 00 00 eb 11 00 00 | ................................ |
| 1a1e0 | f1 0f 00 00 cb 01 00 00 df 06 00 00 2b 15 00 00 6c 05 00 00 2a 0c 00 00 6e 03 00 00 5e 06 00 00 | ............+...l...*...n...^... |
| 1a200 | 00 00 00 00 54 10 00 00 00 00 00 00 41 01 00 00 9f 03 00 00 4e 08 00 00 00 00 00 00 00 00 00 00 | ....T.......A.......N........... |
| 1a220 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 47 04 00 00 ba 07 00 00 00 00 00 00 | ....................G........... |
| 1a240 | 96 01 00 00 1a 09 00 00 f5 06 00 00 57 08 00 00 a5 03 00 00 00 00 00 00 42 06 00 00 3a 0c 00 00 | ............W...........B...:... |
| 1a260 | 5c 13 00 00 00 00 00 00 30 0e 00 00 65 06 00 00 2e 0b 00 00 c8 0a 00 00 00 00 00 00 a5 0f 00 00 | \.......0...e................... |
| 1a280 | 8e 11 00 00 ad 03 00 00 60 02 00 00 cb 00 00 00 77 06 00 00 6c 12 00 00 1c 15 00 00 46 15 00 00 | ........`.......w...l.......F... |
| 1a2a0 | 4c 10 00 00 1f 13 00 00 ef 16 00 00 0b 06 00 00 93 07 00 00 00 00 00 00 6a 10 00 00 ed 0e 00 00 | L.......................j....... |
| 1a2c0 | 00 00 00 00 00 00 00 00 d4 12 00 00 00 00 00 00 aa 00 00 00 4f 06 00 00 da 00 00 00 15 12 00 00 | ....................O........... |
| 1a2e0 | a2 12 00 00 00 00 00 00 b1 06 00 00 22 13 00 00 75 13 00 00 d5 02 00 00 00 00 00 00 00 00 00 00 | ............"...u............... |
| 1a300 | bb 01 00 00 00 00 00 00 d7 11 00 00 76 0e 00 00 00 00 00 00 00 00 00 00 cb 05 00 00 09 0d 00 00 | ............v................... |
| 1a320 | 67 07 00 00 b7 03 00 00 51 16 00 00 e9 11 00 00 8d 0f 00 00 f3 08 00 00 91 0c 00 00 00 00 00 00 | g.......Q....................... |
| 1a340 | a8 16 00 00 85 02 00 00 30 0f 00 00 00 00 00 00 00 00 00 00 70 08 00 00 00 00 00 00 e0 0f 00 00 | ........0...........p........... |
| 1a360 | 57 03 00 00 c9 12 00 00 cf 16 00 00 47 05 00 00 bf 12 00 00 00 12 00 00 fa 0e 00 00 00 00 00 00 | W...........G................... |
| 1a380 | d2 0b 00 00 1e 0e 00 00 2d 0a 00 00 00 00 00 00 90 09 00 00 9b 05 00 00 9d 07 00 00 28 00 00 00 | ........-...................(... |
| 1a3a0 | e3 06 00 00 82 02 00 00 39 07 00 00 11 15 00 00 47 10 00 00 38 0a 00 00 00 00 00 00 ab 11 00 00 | ........9.......G...8........... |
| 1a3c0 | 00 00 00 00 00 00 00 00 32 11 00 00 49 10 00 00 37 08 00 00 00 00 00 00 00 00 00 00 b6 08 00 00 | ........2...I...7............... |
| 1a3e0 | 9c 09 00 00 c0 0c 00 00 f5 01 00 00 55 07 00 00 b5 00 00 00 a6 0a 00 00 82 0b 00 00 00 00 00 00 | ............U................... |
| 1a400 | 1d 0f 00 00 00 00 00 00 e9 05 00 00 3f 14 00 00 97 05 00 00 fc 02 00 00 f1 03 00 00 00 14 00 00 | ............?................... |
| 1a420 | f7 05 00 00 41 0e 00 00 00 00 00 00 3a 13 00 00 02 06 00 00 6d 15 00 00 00 00 00 00 ce 15 00 00 | ....A.......:.......m........... |
| 1a440 | 6f 02 00 00 5d 15 00 00 61 08 00 00 00 00 00 00 a2 0d 00 00 00 00 00 00 e1 12 00 00 25 10 00 00 | o...]...a...................%... |
| 1a460 | 24 0c 00 00 00 00 00 00 00 00 00 00 ac 08 00 00 66 05 00 00 f5 14 00 00 00 00 00 00 e4 07 00 00 | $...............f............... |
| 1a480 | 00 17 00 00 aa 08 00 00 d6 00 00 00 31 04 00 00 d4 14 00 00 10 0d 00 00 62 01 00 00 00 00 00 00 | ............1...........b....... |
| 1a4a0 | 06 17 00 00 25 04 00 00 07 0c 00 00 50 02 00 00 00 00 00 00 00 00 00 00 8c 11 00 00 a0 06 00 00 | ....%.......P................... |
| 1a4c0 | 00 00 00 00 00 00 00 00 15 10 00 00 d6 03 00 00 00 00 00 00 9e 14 00 00 1c 13 00 00 76 14 00 00 | ............................v... |
| 1a4e0 | 99 15 00 00 00 00 00 00 00 0a 00 00 95 0f 00 00 45 10 00 00 54 0d 00 00 27 0d 00 00 00 00 00 00 | ................E...T...'....... |
| 1a500 | ce 0f 00 00 e0 09 00 00 00 00 00 00 00 00 00 00 4c 04 00 00 00 00 00 00 55 13 00 00 e1 0b 00 00 | ................L.......U....... |
| 1a520 | 00 00 00 00 28 15 00 00 ad 15 00 00 a0 00 00 00 c5 07 00 00 eb 09 00 00 c2 11 00 00 d3 0c 00 00 | ....(........................... |
| 1a540 | 00 00 00 00 00 00 00 00 b7 16 00 00 00 00 00 00 00 00 00 00 0c 09 00 00 dd 08 00 00 64 0e 00 00 | ............................d... |
| 1a560 | c2 08 00 00 c9 10 00 00 67 12 00 00 e9 0f 00 00 00 00 00 00 5b 0c 00 00 ed 15 00 00 ac 13 00 00 | ........g...........[........... |
| 1a580 | 00 00 00 00 00 00 00 00 00 00 00 00 0c 13 00 00 00 00 00 00 62 07 00 00 00 00 00 00 b5 03 00 00 | ....................b........... |
| 1a5a0 | 00 00 00 00 00 00 00 00 84 0b 00 00 00 00 00 00 ce 0c 00 00 93 04 00 00 de 0f 00 00 00 09 00 00 | ................................ |
| 1a5c0 | 00 00 00 00 36 04 00 00 68 14 00 00 1c 11 00 00 00 00 00 00 41 0c 00 00 25 02 00 00 6d 08 00 00 | ....6...h...........A...%...m... |
| 1a5e0 | 79 15 00 00 73 0b 00 00 00 00 00 00 e3 0c 00 00 3f 11 00 00 2b 06 00 00 00 00 00 00 b8 0f 00 00 | y...s...........?...+........... |
| 1a600 | 00 00 00 00 00 00 00 00 b7 0d 00 00 00 00 00 00 2b 11 00 00 00 00 00 00 f7 0c 00 00 6c 00 00 00 | ................+...........l... |
| 1a620 | d8 0e 00 00 b1 10 00 00 00 00 00 00 db 0c 00 00 0e 0f 00 00 00 00 00 00 cc 06 00 00 00 00 00 00 | ................................ |
| 1a640 | a4 0e 00 00 c6 09 00 00 f9 00 00 00 00 00 00 00 8a 06 00 00 ed 0c 00 00 3b 08 00 00 00 00 00 00 | ........................;....... |
| 1a660 | b4 05 00 00 37 0a 00 00 bc 05 00 00 00 00 00 00 00 00 00 00 87 10 00 00 06 04 00 00 c1 16 00 00 | ....7........................... |
| 1a680 | 4d 05 00 00 e5 15 00 00 0f 0f 00 00 35 03 00 00 97 0f 00 00 ad 0d 00 00 00 00 00 00 91 10 00 00 | M...........5................... |
| 1a6a0 | e4 11 00 00 f0 11 00 00 e2 13 00 00 62 0f 00 00 17 00 00 00 54 0f 00 00 00 00 00 00 47 0f 00 00 | ............b.......T.......G... |
| 1a6c0 | a8 00 00 00 eb 03 00 00 00 00 00 00 78 13 00 00 00 00 00 00 00 00 00 00 0b 03 00 00 b3 00 00 00 | ............x................... |
| 1a6e0 | 00 00 00 00 00 00 00 00 00 00 00 00 aa 0d 00 00 00 00 00 00 1c 10 00 00 01 0c 00 00 28 05 00 00 | ............................(... |
| 1a700 | 00 00 00 00 54 05 00 00 00 00 00 00 3a 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 69 0b 00 00 | ....T.......:...............i... |
| 1a720 | 00 00 00 00 00 00 00 00 d5 14 00 00 00 00 00 00 00 00 00 00 2a 05 00 00 b7 11 00 00 e4 15 00 00 | ....................*........... |
| 1a740 | b4 11 00 00 4c 14 00 00 68 0f 00 00 00 00 00 00 72 06 00 00 ca 04 00 00 00 00 00 00 65 0d 00 00 | ....L...h.......r...........e... |
| 1a760 | 40 04 00 00 ed 0a 00 00 00 00 00 00 00 00 00 00 81 0b 00 00 a5 04 00 00 3c 11 00 00 65 08 00 00 | @.......................<...e... |
| 1a780 | f8 0a 00 00 bc 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ff 03 00 00 54 15 00 00 2b 08 00 00 | ........................T...+... |
| 1a7a0 | 2d 12 00 00 52 0e 00 00 94 14 00 00 5d 16 00 00 00 00 00 00 9e 15 00 00 85 07 00 00 5d 0a 00 00 | -...R.......]...............]... |
| 1a7c0 | 41 07 00 00 00 00 00 00 b0 0c 00 00 00 00 00 00 a0 16 00 00 fa 06 00 00 f2 16 00 00 a9 00 00 00 | A............................... |
| 1a7e0 | 51 04 00 00 3e 13 00 00 28 16 00 00 00 00 00 00 eb 06 00 00 d0 05 00 00 00 00 00 00 a0 14 00 00 | Q...>...(....................... |
| 1a800 | 35 00 00 00 00 00 00 00 c4 0a 00 00 b7 0c 00 00 00 00 00 00 00 00 00 00 11 02 00 00 ce 11 00 00 | 5............................... |
| 1a820 | 00 00 00 00 00 00 00 00 18 02 00 00 aa 14 00 00 cb 15 00 00 00 00 00 00 b8 10 00 00 d1 10 00 00 | ................................ |
| 1a840 | cc 0b 00 00 19 10 00 00 00 00 00 00 60 08 00 00 00 00 00 00 75 14 00 00 a8 05 00 00 7b 02 00 00 | ............`.......u.......{... |
| 1a860 | 65 12 00 00 79 0d 00 00 d8 01 00 00 b8 00 00 00 00 00 00 00 da 13 00 00 41 02 00 00 ef 03 00 00 | e...y...................A....... |
| 1a880 | 1c 0d 00 00 0d 14 00 00 c3 12 00 00 23 14 00 00 b1 00 00 00 00 00 00 00 75 05 00 00 62 06 00 00 | ............#...........u...b... |
| 1a8a0 | 00 00 00 00 ec 13 00 00 00 00 00 00 75 0d 00 00 cd 15 00 00 8d 11 00 00 c9 00 00 00 00 00 00 00 | ............u................... |
| 1a8c0 | c8 16 00 00 00 00 00 00 30 05 00 00 88 12 00 00 96 0a 00 00 00 00 00 00 f3 0a 00 00 68 08 00 00 | ........0...................h... |
| 1a8e0 | 00 00 00 00 5d 0d 00 00 6c 0d 00 00 28 0a 00 00 02 04 00 00 af 11 00 00 00 00 00 00 d9 03 00 00 | ....]...l...(................... |
| 1a900 | f8 01 00 00 19 14 00 00 1d 03 00 00 8c 09 00 00 00 00 00 00 cd 0b 00 00 b5 0f 00 00 4e 03 00 00 | ............................N... |
| 1a920 | 31 06 00 00 f8 0e 00 00 19 13 00 00 00 00 00 00 f3 10 00 00 ea 0e 00 00 00 00 00 00 a4 11 00 00 | 1............................... |
| 1a940 | 00 00 00 00 7a 0d 00 00 fd 0f 00 00 a4 12 00 00 09 07 00 00 00 00 00 00 1a 0a 00 00 74 12 00 00 | ....z.......................t... |
| 1a960 | 85 0b 00 00 00 00 00 00 6b 0e 00 00 00 00 00 00 7c 00 00 00 b8 14 00 00 19 15 00 00 0c 08 00 00 | ........k.......|............... |
| 1a980 | 8d 09 00 00 f3 16 00 00 98 11 00 00 87 11 00 00 3f 0f 00 00 ac 02 00 00 00 00 00 00 00 00 00 00 | ................?............... |
| 1a9a0 | cd 07 00 00 06 10 00 00 78 14 00 00 00 00 00 00 b5 08 00 00 00 00 00 00 03 08 00 00 e1 01 00 00 | ........x....................... |
| 1a9c0 | ec 12 00 00 19 0f 00 00 53 0d 00 00 ec 03 00 00 ae 05 00 00 00 00 00 00 00 00 00 00 02 00 00 00 | ........S....................... |
| 1a9e0 | c3 05 00 00 c3 06 00 00 00 00 00 00 b1 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 cd 02 00 00 | ................................ |
| 1aa00 | f0 04 00 00 ed 0d 00 00 00 00 00 00 a1 11 00 00 06 11 00 00 4f 0a 00 00 e0 16 00 00 00 00 00 00 | ....................O........... |
| 1aa20 | c1 15 00 00 e5 11 00 00 29 00 00 00 08 0a 00 00 92 13 00 00 de 0e 00 00 ca 02 00 00 18 12 00 00 | ........)....................... |
| 1aa40 | 00 00 00 00 00 00 00 00 00 00 00 00 ad 0c 00 00 e6 12 00 00 07 0d 00 00 f3 0c 00 00 f7 07 00 00 | ................................ |
| 1aa60 | c1 12 00 00 42 0f 00 00 be 13 00 00 f7 09 00 00 40 12 00 00 65 0c 00 00 2c 0d 00 00 34 0e 00 00 | ....B...........@...e...,...4... |
| 1aa80 | 1b 03 00 00 00 00 00 00 d0 0e 00 00 e4 0d 00 00 21 0e 00 00 50 0a 00 00 95 03 00 00 f7 15 00 00 | ................!...P........... |
| 1aaa0 | 8f 04 00 00 db 0f 00 00 00 00 00 00 00 00 00 00 78 06 00 00 00 00 00 00 00 00 00 00 fe 13 00 00 | ................x............... |
| 1aac0 | 5c 0b 00 00 09 0b 00 00 25 13 00 00 2a 08 00 00 c5 0d 00 00 1e 15 00 00 b4 06 00 00 00 00 00 00 | \.......%...*................... |
| 1aae0 | 6c 0f 00 00 2b 12 00 00 00 00 00 00 32 16 00 00 b3 11 00 00 00 00 00 00 1b 15 00 00 29 0b 00 00 | l...+.......2...............)... |
| 1ab00 | bf 07 00 00 be 12 00 00 bd 14 00 00 00 00 00 00 b2 05 00 00 a9 0c 00 00 d7 03 00 00 26 09 00 00 | ............................&... |
| 1ab20 | c9 0d 00 00 17 0f 00 00 00 00 00 00 a7 14 00 00 f6 0d 00 00 00 00 00 00 21 16 00 00 da 12 00 00 | ........................!....... |
| 1ab40 | 24 08 00 00 02 05 00 00 05 0d 00 00 45 16 00 00 12 00 00 00 6d 10 00 00 00 00 00 00 00 00 00 00 | $...........E.......m........... |
| 1ab60 | 00 00 00 00 1f 05 00 00 a1 16 00 00 e9 0a 00 00 ae 0a 00 00 b3 13 00 00 4a 12 00 00 00 00 00 00 | ........................J....... |
| 1ab80 | 5b 0a 00 00 47 15 00 00 cb 12 00 00 35 0a 00 00 e2 11 00 00 61 0b 00 00 00 00 00 00 16 0a 00 00 | [...G.......5.......a........... |
| 1aba0 | ec 00 00 00 24 12 00 00 c8 0d 00 00 f4 12 00 00 97 14 00 00 97 07 00 00 9e 07 00 00 52 0a 00 00 | ....$.......................R... |
| 1abc0 | 71 11 00 00 1d 09 00 00 17 11 00 00 e2 0b 00 00 42 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | q...............B............... |
| 1abe0 | 72 0d 00 00 00 00 00 00 b2 0a 00 00 bf 0f 00 00 00 00 00 00 ae 09 00 00 00 00 00 00 5b 0d 00 00 | r...........................[... |
| 1ac00 | 00 00 00 00 00 00 00 00 b7 05 00 00 ae 0d 00 00 0b 00 00 00 0c 15 00 00 00 00 00 00 99 0c 00 00 | ................................ |
| 1ac20 | f9 12 00 00 b8 05 00 00 ad 0f 00 00 b4 03 00 00 20 15 00 00 39 10 00 00 f8 07 00 00 00 00 00 00 | ....................9........... |
| 1ac40 | a8 13 00 00 00 00 00 00 c7 01 00 00 00 00 00 00 da 02 00 00 77 00 00 00 77 0c 00 00 4e 06 00 00 | ....................w...w...N... |
| 1ac60 | 5a 09 00 00 72 12 00 00 08 0b 00 00 02 11 00 00 4b 0d 00 00 ff 13 00 00 7f 01 00 00 75 01 00 00 | Z...r...........K...........u... |
| 1ac80 | 15 07 00 00 59 14 00 00 fb 14 00 00 d2 16 00 00 f4 03 00 00 00 00 00 00 a3 0a 00 00 83 10 00 00 | ....Y........................... |
| 1aca0 | 52 02 00 00 25 15 00 00 00 00 00 00 b5 05 00 00 00 00 00 00 a4 02 00 00 ca 0c 00 00 79 11 00 00 | R...%.......................y... |
| 1acc0 | 8c 15 00 00 30 03 00 00 c0 05 00 00 b2 02 00 00 8c 05 00 00 cc 02 00 00 04 10 00 00 15 02 00 00 | ....0........................... |
| 1ace0 | 34 0f 00 00 dd 15 00 00 01 0e 00 00 30 09 00 00 ed 01 00 00 d3 14 00 00 4d 10 00 00 2b 14 00 00 | 4...........0...........M...+... |
| 1ad00 | b6 16 00 00 00 00 00 00 96 05 00 00 b2 04 00 00 cd 06 00 00 39 04 00 00 00 00 00 00 2a 01 00 00 | ....................9.......*... |
| 1ad20 | e9 10 00 00 00 00 00 00 a7 15 00 00 29 06 00 00 e3 00 00 00 80 11 00 00 00 00 00 00 f2 10 00 00 | ............)................... |
| 1ad40 | bd 03 00 00 15 03 00 00 00 00 00 00 42 04 00 00 00 00 00 00 28 0f 00 00 d3 0e 00 00 00 00 00 00 | ............B.......(........... |
| 1ad60 | 2e 10 00 00 4d 09 00 00 00 00 00 00 60 0f 00 00 e8 06 00 00 d6 0e 00 00 06 02 00 00 00 00 00 00 | ....M.......`................... |
| 1ad80 | e3 16 00 00 77 09 00 00 00 00 00 00 50 03 00 00 8b 07 00 00 5f 05 00 00 9d 01 00 00 00 00 00 00 | ....w.......P......._........... |
| 1ada0 | a5 05 00 00 00 00 00 00 82 0e 00 00 00 00 00 00 04 0b 00 00 89 04 00 00 00 00 00 00 a7 11 00 00 | ................................ |
| 1adc0 | bf 04 00 00 b9 03 00 00 09 00 00 00 00 00 00 00 00 00 00 00 cc 0c 00 00 00 00 00 00 9f 11 00 00 | ................................ |
| 1ade0 | 86 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02 09 00 00 b1 0f 00 00 00 00 00 00 0d 0b 00 00 | ................................ |
| 1ae00 | e0 04 00 00 2c 00 00 00 37 04 00 00 a1 05 00 00 61 00 00 00 06 07 00 00 44 13 00 00 f2 14 00 00 | ....,...7.......a.......D....... |
| 1ae20 | e8 04 00 00 ee 0a 00 00 00 00 00 00 b1 03 00 00 00 00 00 00 5f 14 00 00 82 03 00 00 ed 13 00 00 | ...................._........... |
| 1ae40 | 12 04 00 00 2f 07 00 00 d0 0d 00 00 1b 0f 00 00 ae 06 00 00 48 15 00 00 00 00 00 00 2c 09 00 00 | ..../...............H.......,... |
| 1ae60 | 89 14 00 00 4f 12 00 00 00 00 00 00 00 00 00 00 5e 00 00 00 b1 0b 00 00 00 00 00 00 00 00 00 00 | ....O...........^............... |
| 1ae80 | ec 0a 00 00 00 00 00 00 d3 0f 00 00 4e 15 00 00 d3 10 00 00 4e 13 00 00 ac 09 00 00 d9 09 00 00 | ............N.......N........... |
| 1aea0 | 11 00 00 00 b5 06 00 00 09 05 00 00 3c 13 00 00 00 00 00 00 15 0a 00 00 00 00 00 00 d9 0f 00 00 | ............<................... |
| 1aec0 | b2 00 00 00 2d 07 00 00 00 00 00 00 b9 11 00 00 66 04 00 00 dc 07 00 00 61 11 00 00 f4 07 00 00 | ....-...........f.......a....... |
| 1aee0 | 35 02 00 00 ce 0b 00 00 e4 02 00 00 69 0c 00 00 41 09 00 00 e7 0b 00 00 57 0e 00 00 00 00 00 00 | 5...........i...A.......W....... |
| 1af00 | 83 09 00 00 d1 0e 00 00 40 0a 00 00 1f 0d 00 00 aa 03 00 00 00 00 00 00 8b 10 00 00 36 00 00 00 | ........@...................6... |
| 1af20 | 93 15 00 00 7f 10 00 00 00 00 00 00 da 16 00 00 28 09 00 00 dd 13 00 00 6e 11 00 00 3c 0d 00 00 | ................(.......n...<... |
| 1af40 | 00 00 00 00 5c 0e 00 00 00 00 00 00 a8 08 00 00 17 08 00 00 0f 01 00 00 89 07 00 00 7c 0f 00 00 | ....\.......................|... |
| 1af60 | 13 0c 00 00 00 00 00 00 00 00 00 00 b4 07 00 00 f6 0c 00 00 53 05 00 00 03 0c 00 00 db 05 00 00 | ....................S........... |
| 1af80 | 49 13 00 00 00 00 00 00 00 00 00 00 b3 0d 00 00 4a 0d 00 00 6e 14 00 00 00 00 00 00 00 00 00 00 | I...............J...n........... |
| 1afa0 | 8d 12 00 00 3e 08 00 00 71 09 00 00 00 00 00 00 00 00 00 00 f6 12 00 00 00 00 00 00 92 01 00 00 | ....>...q....................... |
| 1afc0 | 46 04 00 00 00 00 00 00 ca 0e 00 00 01 15 00 00 47 14 00 00 d5 04 00 00 5e 16 00 00 17 03 00 00 | F...............G.......^....... |
| 1afe0 | 00 00 00 00 9d 16 00 00 00 00 00 00 72 16 00 00 cc 09 00 00 94 11 00 00 83 11 00 00 a9 06 00 00 | ............r................... |
| 1b000 | b8 02 00 00 00 00 00 00 e7 04 00 00 00 00 00 00 db 06 00 00 37 0d 00 00 00 00 00 00 24 16 00 00 | ....................7.......$... |
| 1b020 | c4 01 00 00 00 00 00 00 00 00 00 00 d8 06 00 00 9c 04 00 00 86 06 00 00 6a 05 00 00 ba 0b 00 00 | ........................j....... |
| 1b040 | b5 0e 00 00 00 00 00 00 8d 0d 00 00 00 00 00 00 4a 15 00 00 00 00 00 00 89 15 00 00 a7 00 00 00 | ................J............... |
| 1b060 | d2 15 00 00 00 00 00 00 20 02 00 00 73 06 00 00 73 05 00 00 00 00 00 00 7c 12 00 00 a0 15 00 00 | ............s...s.......|....... |
| 1b080 | 00 00 00 00 00 00 00 00 cd 09 00 00 d9 12 00 00 70 01 00 00 e5 0e 00 00 d0 0f 00 00 33 13 00 00 | ................p...........3... |
| 1b0a0 | ac 0d 00 00 1b 11 00 00 00 00 00 00 17 05 00 00 f7 0e 00 00 00 00 00 00 d1 0d 00 00 b4 14 00 00 | ................................ |
| 1b0c0 | f9 0c 00 00 f8 09 00 00 7a 12 00 00 eb 00 00 00 00 00 00 00 70 0c 00 00 11 0a 00 00 97 08 00 00 | ........z...........p........... |
| 1b0e0 | 00 00 00 00 13 00 00 00 00 00 00 00 80 13 00 00 00 00 00 00 8d 08 00 00 d5 05 00 00 00 00 00 00 | ................................ |
| 1b100 | 00 00 00 00 a7 13 00 00 00 00 00 00 23 0c 00 00 f9 16 00 00 00 00 00 00 a6 13 00 00 00 00 00 00 | ............#................... |
| 1b120 | c9 03 00 00 69 03 00 00 b7 02 00 00 00 00 00 00 51 15 00 00 58 06 00 00 04 00 00 00 bf 0b 00 00 | ....i...........Q...X........... |
| 1b140 | ba 14 00 00 71 0e 00 00 2f 0c 00 00 c5 0f 00 00 00 00 00 00 c5 15 00 00 3a 08 00 00 00 00 00 00 | ....q.../...............:....... |
| 1b160 | 00 00 00 00 00 00 00 00 06 16 00 00 c3 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9f 13 00 00 | ................................ |
| 1b180 | f0 14 00 00 8a 0a 00 00 4f 00 00 00 88 05 00 00 00 00 00 00 ec 14 00 00 00 00 00 00 a7 0c 00 00 | ........O....................... |
| 1b1a0 | 00 00 00 00 9d 0c 00 00 00 00 00 00 8b 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 09 00 00 | ............................U... |
| 1b1c0 | f7 00 00 00 5d 0e 00 00 00 00 00 00 00 00 00 00 44 12 00 00 00 00 00 00 84 01 00 00 00 00 00 00 | ....]...........D............... |
| 1b1e0 | a3 05 00 00 00 00 00 00 b9 0c 00 00 2d 0b 00 00 00 00 00 00 6d 0a 00 00 ea 02 00 00 aa 0c 00 00 | ............-.......m........... |
| 1b200 | d3 0a 00 00 f1 0d 00 00 d2 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1b220 | 00 00 00 00 e1 04 00 00 76 16 00 00 e5 0c 00 00 e9 12 00 00 c8 15 00 00 f7 01 00 00 00 00 00 00 | ........v....................... |
| 1b240 | 00 00 00 00 91 11 00 00 68 0a 00 00 54 13 00 00 25 0b 00 00 84 15 00 00 00 00 00 00 2e 03 00 00 | ........h...T...%............... |
| 1b260 | 00 00 00 00 5b 01 00 00 b9 0f 00 00 aa 0e 00 00 d8 10 00 00 7a 05 00 00 d5 03 00 00 32 10 00 00 | ....[...............z.......2... |
| 1b280 | 00 00 00 00 94 0e 00 00 c1 0a 00 00 cc 0a 00 00 e3 10 00 00 00 00 00 00 b3 03 00 00 00 00 00 00 | ................................ |
| 1b2a0 | 8d 15 00 00 00 00 00 00 28 0d 00 00 eb 0c 00 00 e3 04 00 00 00 00 00 00 2d 02 00 00 96 06 00 00 | ........(...............-....... |
| 1b2c0 | 00 00 00 00 31 0a 00 00 00 00 00 00 a9 13 00 00 ea 11 00 00 00 00 00 00 41 11 00 00 00 00 00 00 | ....1...................A....... |
| 1b2e0 | 52 04 00 00 00 00 00 00 68 15 00 00 d0 0c 00 00 b9 05 00 00 00 00 00 00 da 03 00 00 00 00 00 00 | R.......h....................... |
| 1b300 | 6d 12 00 00 00 00 00 00 0a 0f 00 00 77 0b 00 00 77 15 00 00 3c 0f 00 00 16 0c 00 00 00 00 00 00 | m...........w...w...<........... |
| 1b320 | 3c 0c 00 00 81 03 00 00 00 00 00 00 16 14 00 00 45 11 00 00 b7 00 00 00 c0 03 00 00 81 07 00 00 | <...............E............... |
| 1b340 | e8 03 00 00 7b 13 00 00 00 00 00 00 98 14 00 00 42 0d 00 00 64 08 00 00 00 00 00 00 00 00 00 00 | ....{...........B...d........... |
| 1b360 | 88 13 00 00 00 00 00 00 5c 03 00 00 b1 11 00 00 f5 00 00 00 09 10 00 00 32 0b 00 00 00 00 00 00 | ........\...............2....... |
| 1b380 | 00 00 00 00 00 00 00 00 a5 11 00 00 00 00 00 00 fb 05 00 00 00 00 00 00 6b 02 00 00 e7 06 00 00 | ........................k....... |
| 1b3a0 | b7 0a 00 00 99 11 00 00 5f 10 00 00 00 00 00 00 00 00 00 00 94 0c 00 00 c1 0f 00 00 92 07 00 00 | ........_....................... |
| 1b3c0 | 61 01 00 00 b7 0e 00 00 e6 14 00 00 00 00 00 00 df 0f 00 00 8f 10 00 00 cf 0b 00 00 00 00 00 00 | a............................... |
| 1b3e0 | 77 0e 00 00 56 07 00 00 6d 06 00 00 e0 03 00 00 00 00 00 00 f2 02 00 00 ce 01 00 00 ff 01 00 00 | w...V...m....................... |
| 1b400 | 95 13 00 00 65 0b 00 00 00 00 00 00 4d 0c 00 00 56 03 00 00 09 0a 00 00 69 13 00 00 9c 06 00 00 | ....e.......M...V.......i....... |
| 1b420 | 00 00 00 00 22 11 00 00 fd 0a 00 00 8c 12 00 00 7a 00 00 00 3d 0d 00 00 00 00 00 00 00 00 00 00 | ...."...........z...=........... |
| 1b440 | c6 01 00 00 76 0f 00 00 48 01 00 00 71 13 00 00 00 00 00 00 f6 03 00 00 82 07 00 00 04 0c 00 00 | ....v...H...q................... |
| 1b460 | 7e 08 00 00 de 16 00 00 92 04 00 00 25 11 00 00 00 00 00 00 02 03 00 00 87 04 00 00 51 0b 00 00 | ~...........%...............Q... |
| 1b480 | 00 00 00 00 bb 0e 00 00 00 00 00 00 05 15 00 00 7f 12 00 00 00 00 00 00 90 16 00 00 f5 05 00 00 | ................................ |
| 1b4a0 | ea 05 00 00 c2 03 00 00 00 00 00 00 16 15 00 00 0a 03 00 00 81 16 00 00 06 0b 00 00 85 0d 00 00 | ................................ |
| 1b4c0 | 00 00 00 00 49 0d 00 00 b0 08 00 00 13 01 00 00 65 15 00 00 00 00 00 00 ba 05 00 00 a9 05 00 00 | ....I...........e............... |
| 1b4e0 | 91 16 00 00 a0 12 00 00 5d 14 00 00 36 11 00 00 6e 0b 00 00 00 00 00 00 52 00 00 00 0d 0f 00 00 | ........]...6...n.......R....... |
| 1b500 | 09 06 00 00 81 0c 00 00 1f 04 00 00 70 02 00 00 14 08 00 00 00 00 00 00 f1 06 00 00 00 00 00 00 | ............p................... |
| 1b520 | 92 11 00 00 ee 08 00 00 6a 14 00 00 6f 03 00 00 d4 16 00 00 83 00 00 00 5e 02 00 00 23 0f 00 00 | ........j...o...........^...#... |
| 1b540 | 00 00 00 00 9a 14 00 00 00 00 00 00 b5 01 00 00 df 0d 00 00 62 0a 00 00 00 00 00 00 76 00 00 00 | ....................b.......v... |
| 1b560 | ff 02 00 00 17 12 00 00 7e 0b 00 00 00 00 00 00 fa 07 00 00 00 00 00 00 65 16 00 00 00 00 00 00 | ........~...............e....... |
| 1b580 | ed 00 00 00 35 16 00 00 e2 0f 00 00 51 02 00 00 9c 03 00 00 33 0b 00 00 71 0d 00 00 a1 0c 00 00 | ....5.......Q.......3...q....... |
| 1b5a0 | 5a 12 00 00 ea 0c 00 00 99 05 00 00 f3 12 00 00 1c 0f 00 00 73 07 00 00 81 13 00 00 00 00 00 00 | Z...................s........... |
| 1b5c0 | 41 05 00 00 0a 0b 00 00 a2 04 00 00 23 05 00 00 f5 04 00 00 56 15 00 00 a7 0d 00 00 1e 0b 00 00 | A...........#.......V........... |
| 1b5e0 | 00 00 00 00 a0 0b 00 00 00 00 00 00 a0 01 00 00 00 00 00 00 00 00 00 00 a2 02 00 00 8c 0f 00 00 | ................................ |
| 1b600 | 24 04 00 00 43 04 00 00 e6 0e 00 00 fc 07 00 00 19 0a 00 00 7c 03 00 00 21 08 00 00 68 04 00 00 | $...C...............|...!...h... |
| 1b620 | 00 00 00 00 2d 13 00 00 00 00 00 00 54 0b 00 00 ee 13 00 00 00 00 00 00 85 15 00 00 00 00 00 00 | ....-.......T................... |
| 1b640 | 00 00 00 00 20 13 00 00 05 0f 00 00 92 0b 00 00 00 00 00 00 d9 05 00 00 3d 13 00 00 00 00 00 00 | ........................=....... |
| 1b660 | 7d 06 00 00 00 00 00 00 2a 14 00 00 cf 0e 00 00 00 00 00 00 7a 08 00 00 00 00 00 00 00 00 00 00 | }.......*...........z........... |
| 1b680 | 00 00 00 00 fa 16 00 00 1e 0a 00 00 00 00 00 00 a0 07 00 00 00 00 00 00 86 07 00 00 cf 0d 00 00 | ................................ |
| 1b6a0 | b2 0d 00 00 6a 09 00 00 6a 16 00 00 c0 02 00 00 96 04 00 00 e1 08 00 00 cb 10 00 00 70 15 00 00 | ....j...j...................p... |
| 1b6c0 | 86 03 00 00 c9 0f 00 00 29 03 00 00 2a 03 00 00 2b 03 00 00 d1 0a 00 00 ac 16 00 00 00 00 00 00 | ........)...*...+............... |
| 1b6e0 | 38 11 00 00 62 05 00 00 00 00 00 00 00 00 00 00 88 0b 00 00 28 11 00 00 e7 16 00 00 27 10 00 00 | 8...b...............(.......'... |
| 1b700 | c8 05 00 00 33 04 00 00 26 03 00 00 0f 03 00 00 28 03 00 00 fd 13 00 00 00 00 00 00 00 00 00 00 | ....3...&.......(............... |
| 1b720 | 14 07 00 00 00 00 00 00 80 04 00 00 67 06 00 00 00 00 00 00 85 09 00 00 7f 08 00 00 71 00 00 00 | ............g...............q... |
| 1b740 | 9d 11 00 00 00 00 00 00 9c 01 00 00 24 03 00 00 25 03 00 00 9f 0b 00 00 d6 10 00 00 48 10 00 00 | ............$...%...........H... |
| 1b760 | 4e 16 00 00 41 0f 00 00 d0 00 00 00 9e 00 00 00 a5 0a 00 00 ed 0b 00 00 59 08 00 00 bc 10 00 00 | N...A...................Y....... |
| 1b780 | b3 02 00 00 00 00 00 00 20 03 00 00 21 03 00 00 22 03 00 00 26 0f 00 00 00 00 00 00 4e 0c 00 00 | ............!..."...&.......N... |
| 1b7a0 | bf 05 00 00 14 16 00 00 45 13 00 00 00 00 00 00 14 0c 00 00 71 03 00 00 00 0b 00 00 d1 13 00 00 | ........E...........q........... |
| 1b7c0 | b7 14 00 00 9d 08 00 00 ed 08 00 00 ba 0f 00 00 c2 0a 00 00 53 07 00 00 5f 0a 00 00 f8 10 00 00 | ....................S..._....... |
| 1b7e0 | f3 13 00 00 e3 12 00 00 00 00 00 00 fc 11 00 00 e6 06 00 00 97 12 00 00 00 00 00 00 9c 0e 00 00 | ................................ |
| 1b800 | 48 04 00 00 00 00 00 00 ab 0e 00 00 3a 16 00 00 c1 06 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | H...........:................... |
| 1b820 | 8c 00 00 00 00 00 00 00 0a 06 00 00 34 0d 00 00 00 00 00 00 ce 00 00 00 33 03 00 00 34 02 00 00 | ............4...........3...4... |
| 1b840 | db 15 00 00 00 00 00 00 66 06 00 00 64 07 00 00 00 00 00 00 00 00 00 00 36 0c 00 00 00 00 00 00 | ........f...d...........6....... |
| 1b860 | 00 00 00 00 00 00 00 00 e1 13 00 00 76 07 00 00 25 0e 00 00 cd 0d 00 00 da 0c 00 00 00 00 00 00 | ............v...%............... |
| 1b880 | b6 12 00 00 3a 00 00 00 00 00 00 00 bf 03 00 00 00 00 00 00 00 00 00 00 28 0b 00 00 75 06 00 00 | ....:...................(...u... |
| 1b8a0 | 42 14 00 00 3e 01 00 00 00 00 00 00 a2 14 00 00 89 03 00 00 77 03 00 00 da 15 00 00 00 00 00 00 | B...>...............w........... |
| 1b8c0 | c6 14 00 00 97 10 00 00 00 00 00 00 7a 0e 00 00 14 0f 00 00 0d 0d 00 00 1e 00 00 00 7b 0f 00 00 | ............z...............{... |
| 1b8e0 | 00 00 00 00 db 11 00 00 00 00 00 00 72 13 00 00 b3 01 00 00 cc 04 00 00 8f 0a 00 00 54 16 00 00 | ............r...............T... |
| 1b900 | e0 0d 00 00 02 12 00 00 50 0d 00 00 0c 07 00 00 d9 0b 00 00 50 10 00 00 00 00 00 00 8d 10 00 00 | ........P...........P........... |
| 1b920 | 5c 14 00 00 e9 0b 00 00 00 00 00 00 00 00 00 00 00 00 00 00 06 15 00 00 c8 01 00 00 a6 05 00 00 | \............................... |
| 1b940 | 64 13 00 00 00 00 00 00 b0 04 00 00 f3 02 00 00 d8 15 00 00 78 09 00 00 ad 07 00 00 fe 06 00 00 | d...................x........... |
| 1b960 | 9a 01 00 00 3c 0b 00 00 00 00 00 00 1f 0c 00 00 f8 0d 00 00 c4 07 00 00 00 00 00 00 8b 03 00 00 | ....<........................... |
| 1b980 | b8 0d 00 00 3d 09 00 00 00 00 00 00 00 00 00 00 b1 0d 00 00 00 00 00 00 00 00 00 00 f7 02 00 00 | ....=........................... |
| 1b9a0 | dc 12 00 00 16 05 00 00 00 00 00 00 9a 0c 00 00 c0 00 00 00 00 00 00 00 54 0a 00 00 6b 08 00 00 | ........................T...k... |
| 1b9c0 | 2b 00 00 00 ba 16 00 00 00 00 00 00 d8 04 00 00 70 14 00 00 dd 0e 00 00 2e 0c 00 00 ce 06 00 00 | +...............p............... |
| 1b9e0 | 00 00 00 00 6e 09 00 00 fc 03 00 00 48 12 00 00 bc 13 00 00 cd 04 00 00 ce 0e 00 00 89 0f 00 00 | ....n.......H................... |
| 1ba00 | 6d 05 00 00 00 00 00 00 3d 10 00 00 bc 15 00 00 80 0f 00 00 4f 13 00 00 07 10 00 00 13 08 00 00 | m.......=...........O........... |
| 1ba20 | c1 0e 00 00 2f 0a 00 00 c5 00 00 00 67 11 00 00 45 03 00 00 0a 0a 00 00 36 15 00 00 04 17 00 00 | ..../.......g...E.......6....... |
| 1ba40 | 00 00 00 00 9f 09 00 00 00 00 00 00 24 02 00 00 ef 07 00 00 00 00 00 00 7c 01 00 00 00 00 00 00 | ............$...........|....... |
| 1ba60 | 80 0c 00 00 00 00 00 00 e9 04 00 00 27 02 00 00 86 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............'................... |
| 1ba80 | 68 0d 00 00 62 02 00 00 00 00 00 00 e0 0a 00 00 00 00 00 00 00 00 00 00 0e 0b 00 00 e5 03 00 00 | h...b........................... |
| 1baa0 | 18 05 00 00 00 00 00 00 76 12 00 00 96 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 43 12 00 00 | ........v...................C... |
| 1bac0 | 4c 0c 00 00 40 0c 00 00 ac 15 00 00 00 00 00 00 83 14 00 00 5b 12 00 00 7e 03 00 00 00 00 00 00 | L...@...............[...~....... |
| 1bae0 | 3c 08 00 00 19 0d 00 00 9b 06 00 00 00 00 00 00 b1 09 00 00 00 00 00 00 73 02 00 00 00 00 00 00 | <.......................s....... |
| 1bb00 | 38 0e 00 00 00 00 00 00 d8 0a 00 00 6a 04 00 00 48 03 00 00 ff 0f 00 00 00 00 00 00 d0 16 00 00 | 8...........j...H............... |
| 1bb20 | b9 00 00 00 4a 0b 00 00 00 00 00 00 8e 12 00 00 00 00 00 00 c3 10 00 00 00 00 00 00 85 03 00 00 | ....J........................... |
| 1bb40 | 40 15 00 00 41 00 00 00 d4 0d 00 00 00 00 00 00 59 13 00 00 04 0a 00 00 80 05 00 00 00 00 00 00 | @...A...........Y............... |
| 1bb60 | 44 02 00 00 a4 0a 00 00 94 03 00 00 9f 00 00 00 b9 02 00 00 0a 00 00 00 2d 16 00 00 05 16 00 00 | D.......................-....... |
| 1bb80 | 77 02 00 00 82 13 00 00 5b 05 00 00 0d 0e 00 00 3e 14 00 00 00 00 00 00 21 0b 00 00 12 0c 00 00 | w.......[.......>.......!....... |
| 1bba0 | 5e 10 00 00 04 14 00 00 00 00 00 00 ff 0d 00 00 63 02 00 00 a4 10 00 00 3f 01 00 00 90 15 00 00 | ^...............c.......?....... |
| 1bbc0 | 00 00 00 00 00 00 00 00 00 00 00 00 08 06 00 00 3b 13 00 00 fc 16 00 00 00 00 00 00 83 0c 00 00 | ................;............... |
| 1bbe0 | d6 0d 00 00 c0 0d 00 00 89 06 00 00 20 05 00 00 58 0b 00 00 00 00 00 00 00 00 00 00 84 11 00 00 | ................X............... |
| 1bc00 | c7 15 00 00 75 11 00 00 00 00 00 00 00 00 00 00 bf 01 00 00 0e 14 00 00 ad 0a 00 00 8c 07 00 00 | ....u........................... |
| 1bc20 | 44 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 b2 16 00 00 9b 0e 00 00 2c 13 00 00 00 00 00 00 | D.......................,....... |
| 1bc40 | 48 0e 00 00 84 04 00 00 70 05 00 00 a6 0f 00 00 a8 04 00 00 35 06 00 00 b1 13 00 00 d6 08 00 00 | H.......p...........5........... |
| 1bc60 | 7d 08 00 00 03 03 00 00 2a 0b 00 00 fb 12 00 00 e6 01 00 00 0b 0e 00 00 d2 00 00 00 00 00 00 00 | }.......*....................... |
| 1bc80 | 00 00 00 00 24 15 00 00 44 14 00 00 00 00 00 00 cd 0a 00 00 54 00 00 00 07 17 00 00 89 0a 00 00 | ....$...D...........T........... |
| 1bca0 | 72 14 00 00 00 00 00 00 bd 12 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | r............................... |
| 1bcc0 | 6c 06 00 00 e7 07 00 00 00 00 00 00 33 0f 00 00 20 04 00 00 00 00 00 00 23 0b 00 00 b4 02 00 00 | l...........3...........#....... |
| 1bce0 | 9b 15 00 00 d2 02 00 00 00 00 00 00 05 02 00 00 62 0b 00 00 81 0a 00 00 34 10 00 00 10 13 00 00 | ................b.......4....... |
| 1bd00 | d4 08 00 00 c7 0d 00 00 c9 11 00 00 00 00 00 00 42 08 00 00 38 09 00 00 00 00 00 00 00 00 00 00 | ................B...8........... |
| 1bd20 | 02 01 00 00 00 00 00 00 00 00 00 00 df 0e 00 00 62 10 00 00 2b 09 00 00 5a 15 00 00 0c 12 00 00 | ................b...+...Z....... |
| 1bd40 | 04 01 00 00 fa 04 00 00 8c 02 00 00 00 00 00 00 ed 12 00 00 00 00 00 00 5e 11 00 00 d3 0b 00 00 | ........................^....... |
| 1bd60 | 04 16 00 00 8e 0a 00 00 14 12 00 00 bd 0a 00 00 8f 13 00 00 05 06 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1bd80 | 5f 0e 00 00 d2 09 00 00 00 00 00 00 7d 0c 00 00 d6 12 00 00 fc 05 00 00 ea 15 00 00 1f 11 00 00 | _...........}................... |
| 1bda0 | 00 00 00 00 15 00 00 00 00 00 00 00 00 00 00 00 49 0a 00 00 04 04 00 00 00 00 00 00 36 08 00 00 | ................I...........6... |
| 1bdc0 | 00 00 00 00 ff 07 00 00 a2 15 00 00 cc 10 00 00 16 12 00 00 58 05 00 00 76 06 00 00 48 14 00 00 | ....................X...v...H... |
| 1bde0 | 0e 0d 00 00 be 0d 00 00 3d 0f 00 00 43 02 00 00 f1 15 00 00 90 0b 00 00 3c 10 00 00 00 00 00 00 | ........=...C...........<....... |
| 1be00 | 00 00 00 00 00 00 00 00 c7 02 00 00 ea 08 00 00 6e 06 00 00 dd 04 00 00 32 02 00 00 46 08 00 00 | ................n.......2...F... |
| 1be20 | 00 00 00 00 a1 0e 00 00 f9 08 00 00 5d 12 00 00 2e 01 00 00 b8 07 00 00 90 0c 00 00 9e 0d 00 00 | ............]................... |
| 1be40 | da 0a 00 00 e3 02 00 00 00 00 00 00 eb 0f 00 00 58 15 00 00 ee 04 00 00 00 00 00 00 f6 02 00 00 | ................X............... |
| 1be60 | c4 08 00 00 f3 0f 00 00 a8 12 00 00 74 0f 00 00 e4 01 00 00 01 0a 00 00 60 0d 00 00 2c 0a 00 00 | ............t...........`...,... |
| 1be80 | 2d 04 00 00 00 00 00 00 06 0a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ba 13 00 00 ed 04 00 00 | -............................... |
| 1bea0 | c5 03 00 00 52 16 00 00 26 13 00 00 00 00 00 00 e7 01 00 00 8a 15 00 00 c4 03 00 00 98 15 00 00 | ....R...&....................... |
| 1bec0 | 8b 14 00 00 06 03 00 00 00 00 00 00 58 04 00 00 89 12 00 00 3e 06 00 00 00 00 00 00 04 07 00 00 | ............X.......>........... |
| 1bee0 | 87 0d 00 00 cd 0c 00 00 00 00 00 00 ba 08 00 00 9f 12 00 00 79 06 00 00 48 16 00 00 f9 10 00 00 | ....................y...H....... |
| 1bf00 | 00 00 00 00 00 00 00 00 3b 0e 00 00 00 00 00 00 93 16 00 00 62 0c 00 00 b9 01 00 00 96 0b 00 00 | ........;...........b........... |
| 1bf20 | 00 00 00 00 00 00 00 00 59 09 00 00 00 00 00 00 d0 10 00 00 00 00 00 00 f1 14 00 00 46 0b 00 00 | ........Y...................F... |
| 1bf40 | 55 12 00 00 00 00 00 00 b1 05 00 00 00 00 00 00 a1 0d 00 00 55 05 00 00 28 13 00 00 27 15 00 00 | U...................U...(...'... |
| 1bf60 | c6 00 00 00 19 0e 00 00 d7 10 00 00 f2 01 00 00 b2 01 00 00 00 00 00 00 f1 07 00 00 13 02 00 00 | ................................ |
| 1bf80 | 28 06 00 00 fe 03 00 00 e1 05 00 00 f9 0b 00 00 d6 16 00 00 00 00 00 00 08 14 00 00 ca 01 00 00 | (............................... |
| 1bfa0 | 8c 01 00 00 21 12 00 00 ff 0a 00 00 e2 12 00 00 c4 00 00 00 45 14 00 00 63 11 00 00 00 00 00 00 | ....!...............E...c....... |
| 1bfc0 | f6 06 00 00 2b 0c 00 00 b8 03 00 00 57 01 00 00 80 14 00 00 00 00 00 00 00 00 00 00 6c 08 00 00 | ....+.......W...............l... |
| 1bfe0 | 13 0a 00 00 00 00 00 00 97 04 00 00 1a 04 00 00 4d 07 00 00 29 0e 00 00 ef 0d 00 00 9c 14 00 00 | ................M...)........... |
| 1c000 | 99 04 00 00 76 13 00 00 8b 13 00 00 a3 12 00 00 b9 12 00 00 40 09 00 00 72 11 00 00 37 12 00 00 | ....v...............@...r...7... |
| 1c020 | 00 00 00 00 92 0a 00 00 00 00 00 00 aa 0b 00 00 5a 01 00 00 03 05 00 00 44 07 00 00 02 10 00 00 | ................Z.......D....... |
| 1c040 | db 0b 00 00 9b 12 00 00 00 00 00 00 00 00 00 00 8b 01 00 00 f9 04 00 00 36 12 00 00 6b 0c 00 00 | ........................6...k... |
| 1c060 | e0 07 00 00 00 00 00 00 f6 0a 00 00 00 00 00 00 00 00 00 00 e8 00 00 00 11 0c 00 00 00 00 00 00 | ................................ |
| 1c080 | e2 02 00 00 21 07 00 00 a8 0c 00 00 59 15 00 00 ff 15 00 00 b3 14 00 00 1e 12 00 00 57 00 00 00 | ....!.......Y...............W... |
| 1c0a0 | 1a 06 00 00 00 00 00 00 29 09 00 00 c6 08 00 00 00 00 00 00 a4 0c 00 00 b6 00 00 00 6c 02 00 00 | ........)...................l... |
| 1c0c0 | 31 0d 00 00 4e 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60 07 00 00 | 1...N.......................`... |
| 1c0e0 | 98 13 00 00 da 04 00 00 f9 15 00 00 75 0a 00 00 ea 0b 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............u................... |
| 1c100 | 58 03 00 00 49 04 00 00 00 00 00 00 de 0a 00 00 ca 16 00 00 29 11 00 00 4f 04 00 00 de 01 00 00 | X...I...............)...O....... |
| 1c120 | 94 02 00 00 01 07 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d6 04 00 00 db 09 00 00 | ................................ |
| 1c140 | 8c 08 00 00 38 0d 00 00 00 00 00 00 25 0d 00 00 25 0a 00 00 11 14 00 00 00 00 00 00 70 11 00 00 | ....8.......%...%...........p... |
| 1c160 | c5 0e 00 00 2c 04 00 00 8d 02 00 00 e4 10 00 00 fe 0d 00 00 c0 0f 00 00 98 01 00 00 ee 01 00 00 | ....,........................... |
| 1c180 | 00 00 00 00 53 15 00 00 1d 0b 00 00 00 00 00 00 28 04 00 00 00 00 00 00 05 12 00 00 97 03 00 00 | ....S...........(............... |
| 1c1a0 | 0a 12 00 00 2b 0d 00 00 5a 0a 00 00 00 00 00 00 1c 04 00 00 c2 0e 00 00 00 00 00 00 00 00 00 00 | ....+...Z....................... |
| 1c1c0 | 97 13 00 00 00 00 00 00 00 00 00 00 12 10 00 00 7d 03 00 00 bb 05 00 00 26 0c 00 00 79 10 00 00 | ................}.......&...y... |
| 1c1e0 | 00 00 00 00 ea 12 00 00 00 00 00 00 08 09 00 00 2f 01 00 00 35 0d 00 00 1c 08 00 00 9d 0d 00 00 | ................/...5........... |
| 1c200 | 92 09 00 00 e1 0e 00 00 00 00 00 00 00 00 00 00 94 0d 00 00 95 04 00 00 00 00 00 00 59 07 00 00 | ............................Y... |
| 1c220 | b8 06 00 00 00 00 00 00 85 00 00 00 7d 02 00 00 30 01 00 00 9a 03 00 00 62 14 00 00 6d 13 00 00 | ............}...0.......b...m... |
| 1c240 | a0 0d 00 00 50 04 00 00 00 00 00 00 00 00 00 00 46 12 00 00 a5 15 00 00 b5 09 00 00 a9 16 00 00 | ....P...........F............... |
| 1c260 | 3a 06 00 00 64 00 00 00 a7 07 00 00 00 00 00 00 c6 06 00 00 00 00 00 00 00 00 00 00 3d 16 00 00 | :...d.......................=... |
| 1c280 | d8 14 00 00 c0 12 00 00 b0 06 00 00 b5 10 00 00 fc 0d 00 00 db 02 00 00 fd 09 00 00 8b 05 00 00 | ................................ |
| 1c2a0 | a6 15 00 00 7d 07 00 00 7e 07 00 00 6f 0a 00 00 5a 0d 00 00 7e 14 00 00 64 03 00 00 12 05 00 00 | ....}...~...o...Z...~...d....... |
| 1c2c0 | 08 0c 00 00 00 00 00 00 38 08 00 00 6a 08 00 00 00 00 00 00 00 00 00 00 b7 0b 00 00 00 00 00 00 | ........8...j................... |
| 1c2e0 | 00 00 00 00 69 15 00 00 00 00 00 00 1a 13 00 00 83 07 00 00 f6 16 00 00 00 00 00 00 ab 06 00 00 | ....i........................... |
| 1c300 | 00 00 00 00 00 00 00 00 e4 12 00 00 b6 0f 00 00 63 03 00 00 00 00 00 00 00 00 00 00 a2 13 00 00 | ................c............... |
| 1c320 | 3a 0b 00 00 d0 06 00 00 67 15 00 00 00 00 00 00 00 00 00 00 00 00 00 00 5b 16 00 00 14 0e 00 00 | :.......g...............[....... |
| 1c340 | 9e 06 00 00 00 00 00 00 07 04 00 00 1a 03 00 00 df 0b 00 00 e0 02 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1c360 | 6b 01 00 00 05 0a 00 00 00 00 00 00 18 01 00 00 df 07 00 00 16 00 00 00 00 00 00 00 00 00 00 00 | k............................... |
| 1c380 | 83 08 00 00 00 00 00 00 ba 0a 00 00 bb 14 00 00 6d 00 00 00 e1 16 00 00 f1 02 00 00 4c 0f 00 00 | ................m...........L... |
| 1c3a0 | b6 05 00 00 00 00 00 00 e0 15 00 00 a8 15 00 00 c3 01 00 00 4a 07 00 00 00 00 00 00 0b 09 00 00 | ....................J........... |
| 1c3c0 | d4 07 00 00 00 00 00 00 00 00 00 00 73 0a 00 00 44 00 00 00 ef 08 00 00 d3 04 00 00 1f 02 00 00 | ............s...D............... |
| 1c3e0 | 5e 04 00 00 ef 12 00 00 00 00 00 00 48 00 00 00 63 0d 00 00 00 00 00 00 ec 0d 00 00 83 02 00 00 | ^...........H...c............... |
| 1c400 | cb 16 00 00 7f 09 00 00 0f 08 00 00 b0 10 00 00 c7 08 00 00 73 13 00 00 86 0b 00 00 c6 0a 00 00 | ....................s........... |
| 1c420 | 1f 03 00 00 51 0d 00 00 00 00 00 00 59 0e 00 00 59 01 00 00 49 0f 00 00 88 04 00 00 00 00 00 00 | ....Q.......Y...Y...I........... |
| 1c440 | 1c 0a 00 00 45 0d 00 00 6e 10 00 00 20 08 00 00 26 07 00 00 00 00 00 00 ee 0b 00 00 ca 15 00 00 | ....E...n.......&............... |
| 1c460 | 00 00 00 00 46 0a 00 00 39 06 00 00 0b 0f 00 00 68 10 00 00 0b 0d 00 00 3d 11 00 00 00 00 00 00 | ....F...9.......h.......=....... |
| 1c480 | 42 0a 00 00 60 03 00 00 27 03 00 00 f3 14 00 00 a6 00 00 00 aa 06 00 00 ed 05 00 00 83 16 00 00 | B...`...'....................... |
| 1c4a0 | 00 00 00 00 8a 01 00 00 92 0d 00 00 07 01 00 00 5a 0e 00 00 3e 07 00 00 2b 02 00 00 79 13 00 00 | ................Z...>...+...y... |
| 1c4c0 | 5a 07 00 00 51 06 00 00 cf 02 00 00 8d 0c 00 00 e7 02 00 00 a1 01 00 00 ed 16 00 00 3f 04 00 00 | Z...Q.......................?... |
| 1c4e0 | 7d 0f 00 00 00 00 00 00 3f 06 00 00 fe 05 00 00 46 14 00 00 9f 0d 00 00 72 0b 00 00 7e 0d 00 00 | }.......?.......F.......r...~... |
| 1c500 | 23 03 00 00 00 00 00 00 00 00 00 00 e3 0f 00 00 68 01 00 00 36 10 00 00 6e 0a 00 00 2d 00 00 00 | #...............h...6...n...-... |
| 1c520 | 9c 0c 00 00 59 05 00 00 aa 09 00 00 78 0b 00 00 8f 06 00 00 e3 09 00 00 c2 04 00 00 6f 0f 00 00 | ....Y.......x...............o... |
| 1c540 | 60 11 00 00 82 08 00 00 75 0e 00 00 e8 07 00 00 7e 13 00 00 70 00 00 00 50 07 00 00 00 00 00 00 | `.......u.......~...p...P....... |
| 1c560 | 12 16 00 00 00 00 00 00 00 00 00 00 f7 14 00 00 44 04 00 00 ce 02 00 00 42 01 00 00 00 00 00 00 | ................D.......B....... |
| 1c580 | 00 00 00 00 0e 12 00 00 b9 06 00 00 0e 0c 00 00 cc 01 00 00 00 00 00 00 55 02 00 00 8c 0d 00 00 | ........................U....... |
| 1c5a0 | 9f 0c 00 00 00 00 00 00 9a 13 00 00 af 0b 00 00 19 05 00 00 d2 06 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1c5c0 | 7d 0d 00 00 ca 09 00 00 00 00 00 00 95 15 00 00 3b 01 00 00 59 00 00 00 55 08 00 00 6e 07 00 00 | }...............;...Y...U...n... |
| 1c5e0 | 34 04 00 00 e3 0a 00 00 58 07 00 00 8d 01 00 00 00 00 00 00 90 04 00 00 00 00 00 00 22 09 00 00 | 4.......X..................."... |
| 1c600 | 04 06 00 00 c6 03 00 00 00 00 00 00 00 00 00 00 7d 15 00 00 1e 10 00 00 0c 01 00 00 00 00 00 00 | ................}............... |
| 1c620 | 00 00 00 00 11 09 00 00 57 0f 00 00 ab 0d 00 00 9b 04 00 00 00 00 00 00 c4 12 00 00 00 00 00 00 | ........W....................... |
| 1c640 | 00 00 00 00 2e 16 00 00 85 12 00 00 77 0f 00 00 19 08 00 00 74 02 00 00 4a 10 00 00 c3 0f 00 00 | ............w.......t...J....... |
| 1c660 | a7 05 00 00 f8 0f 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0b 05 00 00 00 00 00 00 19 0c 00 00 | ................................ |
| 1c680 | 5b 07 00 00 58 09 00 00 21 06 00 00 85 14 00 00 9f 14 00 00 00 00 00 00 07 13 00 00 00 00 00 00 | [...X...!....................... |
| 1c6a0 | 39 0a 00 00 be 07 00 00 8e 03 00 00 00 00 00 00 d7 05 00 00 e2 06 00 00 df 15 00 00 00 00 00 00 | 9............................... |
| 1c6c0 | 01 08 00 00 c1 0c 00 00 00 00 00 00 fd 02 00 00 80 00 00 00 df 14 00 00 6f 0d 00 00 00 00 00 00 | ........................o....... |
| 1c6e0 | eb 02 00 00 33 01 00 00 c8 03 00 00 50 11 00 00 34 08 00 00 00 10 00 00 36 06 00 00 00 00 00 00 | ....3.......P...4.......6....... |
| 1c700 | fa 0f 00 00 19 03 00 00 f4 00 00 00 e2 09 00 00 91 14 00 00 00 00 00 00 46 10 00 00 f7 08 00 00 | ........................F....... |
| 1c720 | 8d 05 00 00 1f 16 00 00 55 00 00 00 19 01 00 00 35 0b 00 00 1e 0f 00 00 00 00 00 00 b4 13 00 00 | ........U.......5............... |
| 1c740 | fb 11 00 00 00 00 00 00 d2 11 00 00 a7 08 00 00 8a 0f 00 00 3e 12 00 00 00 00 00 00 92 05 00 00 | ....................>........... |
| 1c760 | cd 03 00 00 b0 0f 00 00 c4 06 00 00 1a 01 00 00 e0 13 00 00 a1 00 00 00 7c 14 00 00 1c 02 00 00 | ........................|....... |
| 1c780 | 31 09 00 00 2e 07 00 00 56 09 00 00 4c 12 00 00 5f 06 00 00 95 16 00 00 49 0e 00 00 72 05 00 00 | 1.......V...L..._.......I...r... |
| 1c7a0 | 98 16 00 00 bd 16 00 00 88 06 00 00 ca 07 00 00 f2 03 00 00 da 11 00 00 52 0d 00 00 00 00 00 00 | ........................R....... |
| 1c7c0 | 00 00 00 00 a1 12 00 00 b0 0e 00 00 3e 0b 00 00 dd 02 00 00 f5 0a 00 00 54 0e 00 00 cb 14 00 00 | ............>...........T....... |
| 1c7e0 | c6 0f 00 00 d5 11 00 00 a3 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d4 01 00 00 c5 14 00 00 | ................................ |
| 1c800 | 82 0a 00 00 69 09 00 00 00 00 00 00 1e 13 00 00 b6 09 00 00 00 00 00 00 3c 15 00 00 30 07 00 00 | ....i...................<...0... |
| 1c820 | 07 16 00 00 00 00 00 00 76 15 00 00 24 05 00 00 f0 12 00 00 2a 12 00 00 00 00 00 00 4b 06 00 00 | ........v...$.......*.......K... |
| 1c840 | fb 08 00 00 e0 05 00 00 6b 10 00 00 8b 0f 00 00 88 14 00 00 e6 05 00 00 00 00 00 00 ae 01 00 00 | ........k....................... |
| 1c860 | b5 12 00 00 8a 16 00 00 11 11 00 00 51 11 00 00 98 09 00 00 ee 02 00 00 ba 00 00 00 f7 10 00 00 | ............Q................... |
| 1c880 | 27 11 00 00 d2 0e 00 00 92 08 00 00 3e 00 00 00 fb 07 00 00 9b 08 00 00 9e 13 00 00 00 00 00 00 | '...........>................... |
| 1c8a0 | 81 05 00 00 ad 09 00 00 34 00 00 00 9c 00 00 00 ad 0b 00 00 a2 0b 00 00 8a 14 00 00 02 0e 00 00 | ........4....................... |
| 1c8c0 | 40 00 00 00 ee 07 00 00 7c 13 00 00 00 00 00 00 d3 0d 00 00 00 00 00 00 1b 08 00 00 00 00 00 00 | @.......|....................... |
| 1c8e0 | 1f 12 00 00 cc 12 00 00 76 0b 00 00 00 00 00 00 00 00 00 00 f0 15 00 00 0c 06 00 00 f2 15 00 00 | ........v....................... |
| 1c900 | 00 00 00 00 00 00 00 00 cd 08 00 00 00 00 00 00 23 02 00 00 56 0a 00 00 bd 13 00 00 37 0b 00 00 | ................#...V.......7... |
| 1c920 | e6 07 00 00 09 0e 00 00 d5 00 00 00 f7 0f 00 00 7b 16 00 00 bb 16 00 00 68 11 00 00 00 00 00 00 | ................{.......h....... |
| 1c940 | 2f 13 00 00 00 00 00 00 00 00 00 00 e1 03 00 00 00 00 00 00 00 00 00 00 89 0d 00 00 3b 0d 00 00 | /...........................;... |
| 1c960 | a2 03 00 00 63 15 00 00 6a 11 00 00 82 0c 00 00 7f 05 00 00 5a 11 00 00 cc 05 00 00 c7 0c 00 00 | ....c...j...........Z........... |
| 1c980 | 00 00 00 00 fb 13 00 00 00 00 00 00 00 00 00 00 fd 04 00 00 00 00 00 00 00 00 00 00 e6 0c 00 00 | ................................ |
| 1c9a0 | eb 0d 00 00 00 00 00 00 74 04 00 00 00 00 00 00 47 0d 00 00 00 00 00 00 5a 03 00 00 7e 05 00 00 | ........t.......G.......Z...~... |
| 1c9c0 | 00 00 00 00 6c 15 00 00 e4 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 82 16 00 00 00 00 00 00 | ....l........................... |
| 1c9e0 | 10 16 00 00 00 00 00 00 3b 05 00 00 00 00 00 00 2b 0e 00 00 98 0a 00 00 c6 0e 00 00 b1 0e 00 00 | ........;.......+............... |
| 1ca00 | 9b 13 00 00 00 00 00 00 7a 07 00 00 3b 0a 00 00 70 12 00 00 f4 0b 00 00 41 15 00 00 f4 02 00 00 | ........z...;...p.......A....... |
| 1ca20 | 2e 00 00 00 dd 0a 00 00 7b 07 00 00 e2 00 00 00 00 00 00 00 0c 0e 00 00 91 01 00 00 cd 05 00 00 | ........{....................... |
| 1ca40 | 5a 0c 00 00 35 09 00 00 02 07 00 00 01 10 00 00 00 00 00 00 45 15 00 00 c0 15 00 00 1d 00 00 00 | Z...5...............E........... |
| 1ca60 | 00 00 00 00 06 13 00 00 9d 0b 00 00 1c 12 00 00 24 11 00 00 9f 15 00 00 11 10 00 00 06 12 00 00 | ................$............... |
| 1ca80 | 90 11 00 00 cf 14 00 00 00 00 00 00 db 0a 00 00 16 09 00 00 7c 0a 00 00 00 00 00 00 4f 07 00 00 | ....................|.......O... |
| 1caa0 | 54 08 00 00 00 00 00 00 07 05 00 00 55 14 00 00 2a 0e 00 00 c9 01 00 00 00 00 00 00 c6 07 00 00 | T...........U...*............... |
| 1cac0 | 81 11 00 00 00 00 00 00 00 00 00 00 09 09 00 00 fe 01 00 00 00 00 00 00 00 00 00 00 51 14 00 00 | ............................Q... |
| 1cae0 | 87 06 00 00 ba 11 00 00 00 00 00 00 b2 10 00 00 f8 02 00 00 18 14 00 00 00 00 00 00 1f 0a 00 00 | ................................ |
| 1cb00 | d8 0c 00 00 3c 12 00 00 87 09 00 00 00 00 00 00 dc 0e 00 00 00 00 00 00 d2 01 00 00 eb 0e 00 00 | ....<........................... |
| 1cb20 | d6 07 00 00 a4 16 00 00 00 15 00 00 62 16 00 00 af 03 00 00 6c 10 00 00 00 00 00 00 b9 0d 00 00 | ............b.......l........... |
| 1cb40 | de 0c 00 00 41 13 00 00 a2 08 00 00 00 00 00 00 3e 0f 00 00 8e 14 00 00 e7 03 00 00 4e 14 00 00 | ....A...........>...........N... |
| 1cb60 | 8d 13 00 00 46 02 00 00 00 00 00 00 00 00 00 00 6e 05 00 00 95 0e 00 00 42 07 00 00 a8 07 00 00 | ....F...........n.......B....... |
| 1cb80 | 00 00 00 00 2f 15 00 00 00 00 00 00 fe 0f 00 00 00 00 00 00 d8 00 00 00 e7 0f 00 00 00 00 00 00 | ..../........................... |
| 1cba0 | 00 00 00 00 00 00 00 00 47 12 00 00 00 00 00 00 1b 0a 00 00 db 07 00 00 00 00 00 00 f8 00 00 00 | ........G....................... |
| 1cbc0 | 6a 0e 00 00 bd 07 00 00 4a 01 00 00 4b 0c 00 00 19 02 00 00 95 08 00 00 62 0d 00 00 c3 0e 00 00 | j.......J...K...........b....... |
| 1cbe0 | 4c 08 00 00 c8 0e 00 00 3c 06 00 00 b6 02 00 00 00 00 00 00 f4 15 00 00 d4 11 00 00 1a 11 00 00 | L.......<....................... |
| 1cc00 | 7d 01 00 00 00 00 00 00 d3 05 00 00 b0 03 00 00 ed 09 00 00 00 00 00 00 2e 02 00 00 37 09 00 00 | }...........................7... |
| 1cc20 | 00 00 00 00 88 09 00 00 b5 16 00 00 00 00 00 00 90 10 00 00 5c 0d 00 00 d3 01 00 00 b0 0b 00 00 | ....................\........... |
| 1cc40 | ed 11 00 00 5f 13 00 00 00 00 00 00 d0 14 00 00 4b 05 00 00 00 00 00 00 a0 05 00 00 00 00 00 00 | ...._...........K............... |
| 1cc60 | 7c 16 00 00 64 0c 00 00 97 0d 00 00 00 00 00 00 bf 10 00 00 95 0a 00 00 65 0e 00 00 00 00 00 00 | |...d...................e....... |
| 1cc80 | 50 13 00 00 a4 04 00 00 19 04 00 00 9b 02 00 00 6f 0c 00 00 8a 0b 00 00 1c 09 00 00 1c 06 00 00 | P...............o............... |
| 1cca0 | 00 00 00 00 bb 04 00 00 e0 08 00 00 9d 09 00 00 84 16 00 00 9c 0f 00 00 00 00 00 00 1b 06 00 00 | ................................ |
| 1ccc0 | f8 16 00 00 00 00 00 00 a9 12 00 00 bd 09 00 00 6f 07 00 00 0d 16 00 00 00 00 00 00 4e 12 00 00 | ................o...........N... |
| 1cce0 | fe 04 00 00 ee 09 00 00 6a 0f 00 00 00 00 00 00 00 00 00 00 cf 10 00 00 00 00 00 00 3a 10 00 00 | ........j...................:... |
| 1cd00 | 6d 01 00 00 00 00 00 00 b4 10 00 00 00 00 00 00 72 04 00 00 4f 08 00 00 5f 00 00 00 d3 03 00 00 | m...............r...O..._....... |
| 1cd20 | 97 01 00 00 0b 0b 00 00 6b 00 00 00 00 00 00 00 3f 10 00 00 00 00 00 00 dc 10 00 00 73 10 00 00 | ........k.......?...........s... |
| 1cd40 | 27 06 00 00 bc 0d 00 00 4c 03 00 00 b6 13 00 00 14 00 00 00 94 0f 00 00 14 14 00 00 c2 0c 00 00 | '.......L....................... |
| 1cd60 | e4 08 00 00 96 03 00 00 00 00 00 00 00 00 00 00 7a 10 00 00 e8 05 00 00 6e 0f 00 00 00 00 00 00 | ................z.......n....... |
| 1cd80 | cc 03 00 00 00 00 00 00 b7 12 00 00 b7 07 00 00 00 00 00 00 e9 09 00 00 ad 05 00 00 35 12 00 00 | ............................5... |
| 1cda0 | 09 14 00 00 1d 16 00 00 c8 04 00 00 96 0c 00 00 30 06 00 00 fa 0b 00 00 00 00 00 00 e8 12 00 00 | ................0............... |
| 1cdc0 | d8 08 00 00 00 00 00 00 43 01 00 00 7a 15 00 00 25 05 00 00 00 00 00 00 8f 11 00 00 96 15 00 00 | ........C...z...%............... |
| 1cde0 | 16 0e 00 00 76 0a 00 00 fc 14 00 00 00 00 00 00 00 00 00 00 68 06 00 00 00 00 00 00 3c 03 00 00 | ....v...............h.......<... |
| 1ce00 | 8e 02 00 00 54 04 00 00 16 0d 00 00 9f 02 00 00 ba 03 00 00 ef 13 00 00 00 00 00 00 00 00 00 00 | ....T........................... |
| 1ce20 | 0f 13 00 00 67 10 00 00 b9 16 00 00 94 01 00 00 26 00 00 00 b7 08 00 00 99 00 00 00 b3 12 00 00 | ....g...........&............... |
| 1ce40 | 14 06 00 00 00 00 00 00 3b 02 00 00 e7 05 00 00 00 00 00 00 0e 00 00 00 00 00 00 00 00 00 00 00 | ........;....................... |
| 1ce60 | 00 00 00 00 d9 14 00 00 c0 16 00 00 00 00 00 00 00 00 00 00 1d 02 00 00 5b 08 00 00 00 00 00 00 | ........................[....... |
| 1ce80 | 00 00 00 00 00 00 00 00 67 0b 00 00 00 00 00 00 d4 03 00 00 2d 0f 00 00 e9 14 00 00 f6 0b 00 00 | ........g...........-........... |
| 1cea0 | 1f 10 00 00 1d 12 00 00 11 04 00 00 0b 10 00 00 f8 06 00 00 a3 0e 00 00 fc 09 00 00 d6 0c 00 00 | ................................ |
| 1cec0 | 5a 02 00 00 00 00 00 00 82 11 00 00 f8 03 00 00 00 00 00 00 90 06 00 00 b3 10 00 00 00 00 00 00 | Z............................... |
| 1cee0 | 9d 02 00 00 af 09 00 00 56 13 00 00 21 13 00 00 1d 11 00 00 cf 0f 00 00 8c 16 00 00 90 03 00 00 | ........V...!................... |
| 1cf00 | 00 00 00 00 e5 0d 00 00 8c 0a 00 00 00 00 00 00 8a 0e 00 00 39 12 00 00 a1 13 00 00 88 0c 00 00 | ....................9........... |
| 1cf20 | ab 05 00 00 b5 13 00 00 6c 14 00 00 d2 0f 00 00 34 07 00 00 a5 06 00 00 00 00 00 00 ea 04 00 00 | ........l.......4............... |
| 1cf40 | 90 0e 00 00 7d 00 00 00 f4 0a 00 00 99 07 00 00 00 00 00 00 78 00 00 00 ee 14 00 00 67 05 00 00 | ....}...............x.......g... |
| 1cf60 | d6 09 00 00 00 00 00 00 00 00 00 00 ae 0e 00 00 cb 04 00 00 e3 08 00 00 95 14 00 00 7b 01 00 00 | ............................{... |
| 1cf80 | 73 11 00 00 fd 08 00 00 6c 0c 00 00 00 00 00 00 39 09 00 00 79 12 00 00 00 00 00 00 00 00 00 00 | s.......l.......9...y........... |
| 1cfa0 | f1 0c 00 00 99 10 00 00 59 10 00 00 95 06 00 00 00 00 00 00 5f 0d 00 00 60 06 00 00 f6 0e 00 00 | ........Y..........._...`....... |
| 1cfc0 | 98 05 00 00 a7 12 00 00 d0 12 00 00 e6 04 00 00 a4 01 00 00 2d 14 00 00 ec 15 00 00 be 11 00 00 | ....................-........... |
| 1cfe0 | 53 12 00 00 b4 0e 00 00 18 0a 00 00 00 00 00 00 8d 07 00 00 dc 0c 00 00 10 0f 00 00 b6 0b 00 00 | S............................... |
| 1d000 | db 12 00 00 f9 0a 00 00 e8 0f 00 00 00 00 00 00 79 00 00 00 ea 03 00 00 00 00 00 00 00 00 00 00 | ................y............... |
| 1d020 | f0 08 00 00 f3 00 00 00 43 16 00 00 37 16 00 00 5f 15 00 00 80 09 00 00 ee 0c 00 00 b8 0b 00 00 | ........C...7..._............... |
| 1d040 | 00 00 00 00 b3 0b 00 00 00 00 00 00 40 13 00 00 00 00 00 00 10 0e 00 00 00 00 00 00 ca 0d 00 00 | ............@................... |
| 1d060 | ec 01 00 00 00 00 00 00 93 0b 00 00 00 00 00 00 db 13 00 00 cc 07 00 00 63 08 00 00 00 00 00 00 | ........................c....... |
| 1d080 | 0d 04 00 00 32 0a 00 00 a6 14 00 00 70 16 00 00 00 00 00 00 b7 01 00 00 00 00 00 00 78 11 00 00 | ....2.......p...............x... |
| 1d0a0 | 25 0f 00 00 4e 04 00 00 f4 0c 00 00 a0 0c 00 00 00 00 00 00 e3 0e 00 00 00 00 00 00 d8 0f 00 00 | %...N........................... |
| 1d0c0 | 59 06 00 00 00 00 00 00 00 00 00 00 7a 06 00 00 70 0b 00 00 00 00 00 00 9e 10 00 00 e9 08 00 00 | Y...........z...p............... |
| 1d0e0 | 42 02 00 00 00 00 00 00 00 00 00 00 fc 0e 00 00 00 00 00 00 44 0f 00 00 83 04 00 00 00 00 00 00 | B...................D........... |
| 1d100 | 3b 06 00 00 30 0b 00 00 00 00 00 00 4a 0e 00 00 15 0c 00 00 00 00 00 00 5d 00 00 00 c8 0b 00 00 | ;...0.......J...........]....... |
| 1d120 | de 0b 00 00 9a 0a 00 00 00 00 00 00 dd 06 00 00 e7 14 00 00 6c 11 00 00 00 00 00 00 7a 0c 00 00 | ....................l.......z... |
| 1d140 | 81 09 00 00 a5 08 00 00 a5 12 00 00 b6 15 00 00 56 0d 00 00 00 00 00 00 6b 14 00 00 00 00 00 00 | ................V.......k....... |
| 1d160 | f3 04 00 00 09 04 00 00 a5 0c 00 00 78 0a 00 00 ab 09 00 00 91 09 00 00 81 0d 00 00 9c 13 00 00 | ............x................... |
| 1d180 | 62 08 00 00 87 0c 00 00 df 03 00 00 e7 13 00 00 12 14 00 00 00 00 00 00 c9 15 00 00 de 10 00 00 | b............................... |
| 1d1a0 | 23 10 00 00 00 00 00 00 7c 15 00 00 b1 14 00 00 1b 14 00 00 91 12 00 00 03 13 00 00 a1 0b 00 00 | #.......|....................... |
| 1d1c0 | 00 0f 00 00 64 14 00 00 6d 0d 00 00 40 06 00 00 7b 11 00 00 dc 13 00 00 ec 09 00 00 21 15 00 00 | ....d...m...@...{...........!... |
| 1d1e0 | b2 03 00 00 d9 06 00 00 4b 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 de 12 00 00 c7 12 00 00 | ........K....................... |
| 1d200 | cf 01 00 00 fc 0f 00 00 06 0f 00 00 29 10 00 00 5a 00 00 00 89 00 00 00 a6 0c 00 00 00 00 00 00 | ............)...Z............... |
| 1d220 | df 10 00 00 65 04 00 00 3b 16 00 00 77 05 00 00 d5 0a 00 00 67 0f 00 00 9a 00 00 00 91 0a 00 00 | ....e...;...w.......g........... |
| 1d240 | 2f 00 00 00 00 00 00 00 d2 04 00 00 a2 0f 00 00 a6 0e 00 00 00 00 00 00 63 0b 00 00 fe 16 00 00 | /.......................c....... |
| 1d260 | d0 0a 00 00 1b 10 00 00 55 11 00 00 ef 04 00 00 00 00 00 00 74 07 00 00 00 00 00 00 d7 14 00 00 | ........U...........t........... |
| 1d280 | 6d 04 00 00 b8 09 00 00 a5 07 00 00 76 11 00 00 fa 09 00 00 7a 03 00 00 e2 0c 00 00 22 04 00 00 | m...........v.......z......."... |
| 1d2a0 | 2c 12 00 00 06 0e 00 00 cc 13 00 00 39 08 00 00 1f 06 00 00 38 16 00 00 4a 09 00 00 cc 16 00 00 | ,...........9.......8...J....... |
| 1d2c0 | d4 00 00 00 63 12 00 00 cc 00 00 00 2b 01 00 00 a4 15 00 00 00 00 00 00 00 00 00 00 47 09 00 00 | ....c.......+...............G... |
| 1d2e0 | 4c 13 00 00 3e 0d 00 00 eb 05 00 00 00 00 00 00 36 16 00 00 f0 0e 00 00 49 05 00 00 00 00 00 00 | L...>...........6.......I....... |
| 1d300 | 9a 11 00 00 9b 14 00 00 d9 02 00 00 53 04 00 00 00 00 00 00 2c 07 00 00 0e 02 00 00 00 00 00 00 | ............S.......,........... |
| 1d320 | 00 00 00 00 2b 05 00 00 17 15 00 00 0b 0a 00 00 00 00 00 00 15 0e 00 00 cf 03 00 00 00 00 00 00 | ....+........................... |
| 1d340 | 00 00 00 00 c2 02 00 00 f6 04 00 00 be 03 00 00 d3 13 00 00 d6 14 00 00 1e 03 00 00 00 00 00 00 | ................................ |
| 1d360 | dc 03 00 00 30 02 00 00 00 00 00 00 00 00 00 00 8f 14 00 00 94 04 00 00 c3 07 00 00 00 00 00 00 | ....0........................... |
| 1d380 | 00 00 00 00 dd 14 00 00 1f 0f 00 00 8e 16 00 00 5e 0f 00 00 00 00 00 00 71 02 00 00 cb 0d 00 00 | ................^.......q....... |
| 1d3a0 | 03 01 00 00 00 00 00 00 2f 09 00 00 5d 10 00 00 e2 14 00 00 f8 0b 00 00 54 12 00 00 8e 13 00 00 | ......../...]...........T....... |
| 1d3c0 | f6 15 00 00 08 04 00 00 30 12 00 00 bd 15 00 00 00 00 00 00 40 14 00 00 86 0c 00 00 d9 0a 00 00 | ........0...........@........... |
| 1d3e0 | b3 09 00 00 3f 03 00 00 00 00 00 00 2c 0c 00 00 27 13 00 00 5b 04 00 00 f9 09 00 00 b4 12 00 00 | ....?.......,...'...[........... |
| 1d400 | 43 10 00 00 d2 08 00 00 00 00 00 00 00 00 00 00 72 0a 00 00 4a 16 00 00 32 12 00 00 c0 01 00 00 | C...............r...J...2....... |
| 1d420 | 00 00 00 00 1f 14 00 00 00 00 00 00 00 00 00 00 35 13 00 00 00 00 00 00 d1 09 00 00 00 00 00 00 | ................5............... |
| 1d440 | 26 0b 00 00 18 15 00 00 79 09 00 00 88 07 00 00 00 00 00 00 75 04 00 00 ed 0f 00 00 cf 11 00 00 | &.......y...........u........... |
| 1d460 | fd 0d 00 00 00 00 00 00 38 02 00 00 cc 08 00 00 d7 13 00 00 07 0a 00 00 01 0f 00 00 00 00 00 00 | ........8....................... |
| 1d480 | fa 15 00 00 6a 00 00 00 00 00 00 00 00 00 00 00 d5 09 00 00 00 00 00 00 00 00 00 00 fa 0a 00 00 | ....j........................... |
| 1d4a0 | 40 0e 00 00 ae 03 00 00 64 06 00 00 fc 0a 00 00 77 11 00 00 bf 13 00 00 39 03 00 00 63 16 00 00 | @.......d.......w.......9...c... |
| 1d4c0 | d1 12 00 00 57 02 00 00 00 00 00 00 00 00 00 00 61 02 00 00 00 00 00 00 5c 08 00 00 14 0a 00 00 | ....W...........a.......\....... |
| 1d4e0 | 00 00 00 00 2a 09 00 00 f5 12 00 00 b8 16 00 00 00 00 00 00 2a 16 00 00 72 10 00 00 0a 14 00 00 | ....*...............*...r....... |
| 1d500 | ba 15 00 00 27 0c 00 00 31 0f 00 00 cb 0f 00 00 37 14 00 00 03 06 00 00 c2 01 00 00 f1 0a 00 00 | ....'...1.......7............... |
| 1d520 | 36 13 00 00 ab 03 00 00 d4 0a 00 00 bc 0c 00 00 35 0f 00 00 80 03 00 00 03 02 00 00 00 00 00 00 | 6...............5............... |
| 1d540 | f5 07 00 00 26 15 00 00 00 00 00 00 8a 0c 00 00 ec 0c 00 00 dd 07 00 00 00 00 00 00 4e 10 00 00 | ....&.......................N... |
| 1d560 | 8b 0a 00 00 0d 0a 00 00 b5 11 00 00 75 07 00 00 00 00 00 00 82 15 00 00 37 06 00 00 22 10 00 00 | ............u...........7..."... |
| 1d580 | 42 11 00 00 cb 08 00 00 00 00 00 00 00 00 00 00 fb 00 00 00 60 05 00 00 00 00 00 00 00 00 00 00 | B...................`........... |
| 1d5a0 | d9 04 00 00 27 07 00 00 9d 00 00 00 ee 0e 00 00 7d 05 00 00 00 00 00 00 c1 01 00 00 ee 05 00 00 | ....'...........}............... |
| 1d5c0 | c5 0a 00 00 6d 11 00 00 00 00 00 00 5a 0f 00 00 45 00 00 00 cc 14 00 00 04 12 00 00 f7 11 00 00 | ....m.......Z...E............... |
| 1d5e0 | 29 13 00 00 52 07 00 00 b2 08 00 00 73 00 00 00 92 03 00 00 47 03 00 00 0b 0c 00 00 0d 02 00 00 | )...R.......s.......G........... |
| 1d600 | 9e 08 00 00 e8 14 00 00 6c 13 00 00 e5 06 00 00 27 12 00 00 f0 03 00 00 00 00 00 00 5d 04 00 00 | ........l.......'...........]... |
| 1d620 | 88 10 00 00 65 00 00 00 18 0f 00 00 de 11 00 00 74 03 00 00 66 13 00 00 00 00 00 00 77 12 00 00 | ....e...........t...f.......w... |
| 1d640 | 12 01 00 00 51 09 00 00 56 0e 00 00 00 00 00 00 cf 0a 00 00 ca 0b 00 00 00 00 00 00 03 15 00 00 | ....Q...V....................... |
| 1d660 | 00 00 00 00 a9 08 00 00 00 00 00 00 fb 09 00 00 4c 09 00 00 c1 02 00 00 00 00 00 00 00 00 00 00 | ................L............... |
| 1d680 | a1 03 00 00 db 10 00 00 a7 0f 00 00 85 0f 00 00 bc 12 00 00 2d 15 00 00 cd 01 00 00 02 14 00 00 | ....................-........... |
| 1d6a0 | 85 16 00 00 f1 0e 00 00 8e 06 00 00 c0 14 00 00 00 00 00 00 a6 01 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1d6c0 | dc 0a 00 00 00 00 00 00 c9 02 00 00 00 00 00 00 00 00 00 00 05 08 00 00 69 04 00 00 00 00 00 00 | ........................i....... |
| 1d6e0 | 00 00 00 00 00 00 00 00 00 00 00 00 5d 08 00 00 99 14 00 00 00 00 00 00 85 10 00 00 00 00 00 00 | ............]................... |
| 1d700 | 00 00 00 00 6f 09 00 00 8f 08 00 00 00 00 00 00 52 06 00 00 0d 00 00 00 8e 0f 00 00 71 14 00 00 | ....o...........R...........q... |
| 1d720 | a1 09 00 00 de 00 00 00 6b 13 00 00 63 06 00 00 a5 0e 00 00 c2 06 00 00 3a 11 00 00 d7 09 00 00 | ........k...c...........:....... |
| 1d740 | 00 00 00 00 66 09 00 00 f9 05 00 00 03 0a 00 00 00 00 00 00 2c 02 00 00 c5 12 00 00 00 08 00 00 | ....f...............,........... |
| 1d760 | 25 09 00 00 00 00 00 00 7e 00 00 00 00 00 00 00 00 00 00 00 49 09 00 00 00 00 00 00 00 00 00 00 | %.......~...........I........... |
| 1d780 | 6a 0d 00 00 ca 13 00 00 94 09 00 00 df 01 00 00 48 09 00 00 dc 08 00 00 00 00 00 00 a4 07 00 00 | j...............H............... |
| 1d7a0 | 00 00 00 00 ba 0e 00 00 94 10 00 00 58 0e 00 00 45 0c 00 00 fe 0a 00 00 00 00 00 00 00 00 00 00 | ............X...E............... |
| 1d7c0 | fd 0c 00 00 00 00 00 00 93 09 00 00 09 11 00 00 7e 11 00 00 00 00 00 00 00 00 00 00 89 13 00 00 | ................~............... |
| 1d7e0 | c6 04 00 00 85 0c 00 00 c8 12 00 00 b3 08 00 00 53 03 00 00 9e 0c 00 00 c9 16 00 00 7e 0e 00 00 | ................S...........~... |
| 1d800 | 4d 02 00 00 e9 06 00 00 00 00 00 00 1b 0d 00 00 00 00 00 00 0b 15 00 00 43 14 00 00 3c 0a 00 00 | M.......................C...<... |
| 1d820 | c4 0e 00 00 00 00 00 00 96 0e 00 00 00 00 00 00 30 08 00 00 22 0d 00 00 7d 09 00 00 c2 0f 00 00 | ................0..."...}....... |
| 1d840 | 9b 10 00 00 00 00 00 00 e0 0b 00 00 69 0a 00 00 c2 15 00 00 00 0d 00 00 00 00 00 00 35 10 00 00 | ............i...............5... |
| 1d860 | d1 0c 00 00 00 00 00 00 6d 0f 00 00 e5 0f 00 00 18 03 00 00 9f 0e 00 00 00 00 00 00 00 00 00 00 | ........m....................... |
| 1d880 | da 06 00 00 00 00 00 00 dd 0c 00 00 99 02 00 00 07 0f 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1d8a0 | 00 00 00 00 af 15 00 00 00 00 00 00 b9 0e 00 00 42 0b 00 00 c6 0c 00 00 6c 16 00 00 58 00 00 00 | ................B.......l...X... |
| 1d8c0 | ca 03 00 00 45 12 00 00 00 00 00 00 f2 13 00 00 00 00 00 00 34 11 00 00 00 00 00 00 9e 04 00 00 | ....E...............4........... |
| 1d8e0 | 00 00 00 00 8e 09 00 00 00 00 00 00 7c 10 00 00 40 05 00 00 c9 0c 00 00 6a 07 00 00 46 13 00 00 | ............|...@.......j...F... |
| 1d900 | d3 09 00 00 b5 02 00 00 00 00 00 00 04 08 00 00 65 05 00 00 00 00 00 00 00 00 00 00 12 07 00 00 | ................e............... |
| 1d920 | ce 0d 00 00 f4 11 00 00 3a 0f 00 00 60 10 00 00 05 11 00 00 55 0c 00 00 43 05 00 00 00 00 00 00 | ........:...`.......U...C....... |
| 1d940 | 00 00 00 00 3f 12 00 00 00 00 00 00 f3 01 00 00 0f 04 00 00 00 00 00 00 89 10 00 00 b8 15 00 00 | ....?........................... |
| 1d960 | fc 06 00 00 bd 10 00 00 f6 13 00 00 00 00 00 00 11 07 00 00 30 10 00 00 5b 15 00 00 be 08 00 00 | ....................0...[....... |
| 1d980 | 4e 0b 00 00 00 00 00 00 53 0b 00 00 5c 12 00 00 6d 02 00 00 0c 02 00 00 81 12 00 00 a2 09 00 00 | N.......S...\...m............... |
| 1d9a0 | 2f 11 00 00 8c 0e 00 00 4b 09 00 00 7e 10 00 00 b5 0b 00 00 c0 09 00 00 9a 0d 00 00 00 00 00 00 | /.......K...~................... |
| 1d9c0 | 22 15 00 00 00 00 00 00 00 00 00 00 69 02 00 00 bf 15 00 00 d2 0d 00 00 a5 16 00 00 55 04 00 00 | "...........i...............U... |
| 1d9e0 | 49 11 00 00 00 00 00 00 9c 0a 00 00 00 00 00 00 92 0e 00 00 00 00 00 00 00 00 00 00 44 03 00 00 | I...........................D... |
| 1da00 | 59 0a 00 00 00 00 00 00 8a 03 00 00 00 00 00 00 33 06 00 00 df 13 00 00 00 00 00 00 aa 07 00 00 | Y...............3............... |
| 1da20 | 00 00 00 00 b6 07 00 00 84 06 00 00 ae 08 00 00 13 14 00 00 89 08 00 00 98 00 00 00 7f 0b 00 00 | ................................ |
| 1da40 | a6 09 00 00 e8 16 00 00 80 10 00 00 00 00 00 00 00 00 00 00 93 08 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1da60 | ce 04 00 00 dc 15 00 00 77 07 00 00 e6 08 00 00 7b 04 00 00 1e 06 00 00 88 02 00 00 8a 08 00 00 | ........w.......{............... |
| 1da80 | e7 0d 00 00 74 0d 00 00 8c 06 00 00 fa 14 00 00 c9 07 00 00 27 0a 00 00 62 12 00 00 0d 08 00 00 | ....t...............'...b....... |
| 1daa0 | 0f 07 00 00 e5 04 00 00 8f 02 00 00 ad 06 00 00 03 0f 00 00 00 00 00 00 3b 04 00 00 b6 10 00 00 | ........................;....... |
| 1dac0 | 00 00 00 00 95 02 00 00 00 00 00 00 15 01 00 00 26 02 00 00 80 0b 00 00 87 14 00 00 84 0f 00 00 | ................&............... |
| 1dae0 | 26 06 00 00 00 00 00 00 29 15 00 00 70 0d 00 00 00 00 00 00 82 01 00 00 0e 11 00 00 2f 16 00 00 | &.......)...p.............../... |
| 1db00 | 53 02 00 00 00 00 00 00 2d 09 00 00 a7 0e 00 00 f5 0e 00 00 f2 0f 00 00 00 00 00 00 05 14 00 00 | S.......-....................... |
| 1db20 | 49 08 00 00 6b 0f 00 00 67 03 00 00 00 00 00 00 bd 08 00 00 7f 00 00 00 ea 07 00 00 2b 04 00 00 | I...k...g...................+... |
| 1db40 | 00 00 00 00 ca 08 00 00 62 11 00 00 dd 09 00 00 55 0d 00 00 9f 01 00 00 00 00 00 00 c9 06 00 00 | ........b.......U............... |
| 1db60 | 27 05 00 00 bd 01 00 00 30 13 00 00 87 07 00 00 00 00 00 00 47 0c 00 00 c3 09 00 00 96 02 00 00 | '.......0...........G........... |
| 1db80 | 23 15 00 00 9e 12 00 00 2f 03 00 00 00 00 00 00 c8 08 00 00 15 11 00 00 00 00 00 00 a3 0b 00 00 | #......./....................... |
| 1dba0 | 38 05 00 00 92 12 00 00 94 0b 00 00 1c 0e 00 00 ee 0f 00 00 d4 09 00 00 f4 0d 00 00 66 11 00 00 | 8...........................f... |
| 1dbc0 | 50 05 00 00 79 03 00 00 c2 00 00 00 c8 11 00 00 f9 13 00 00 4b 0f 00 00 10 04 00 00 00 00 00 00 | P...y...............K........... |
| 1dbe0 | 79 02 00 00 13 0f 00 00 eb 0b 00 00 1e 04 00 00 6d 0e 00 00 f2 0e 00 00 af 01 00 00 fe 07 00 00 | y...............m............... |
| 1dc00 | 9a 10 00 00 b9 0a 00 00 aa 16 00 00 bf 0c 00 00 cf 0c 00 00 00 00 00 00 a3 0d 00 00 dd 0d 00 00 | ................................ |
| 1dc20 | 2d 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 7f 02 00 00 17 0d 00 00 88 08 00 00 | -............................... |
| 1dc40 | 31 12 00 00 22 0e 00 00 4a 06 00 00 75 09 00 00 ba 06 00 00 02 15 00 00 43 0c 00 00 00 00 00 00 | 1..."...J...u...........C....... |
| 1dc60 | 05 01 00 00 1b 07 00 00 ee 03 00 00 1e 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 6f 12 00 00 | ............................o... |
| 1dc80 | 00 00 00 00 ff 00 00 00 9a 16 00 00 58 0f 00 00 cc 0d 00 00 a9 0b 00 00 3a 09 00 00 e4 16 00 00 | ............X...........:....... |
| 1dca0 | 00 00 00 00 92 10 00 00 00 00 00 00 43 00 00 00 44 0d 00 00 af 08 00 00 0e 15 00 00 14 10 00 00 | ............C...D............... |
| 1dcc0 | 00 00 00 00 00 00 00 00 a8 03 00 00 61 0e 00 00 94 15 00 00 3a 12 00 00 f8 13 00 00 00 00 00 00 | ............a.......:........... |
| 1dce0 | 0e 07 00 00 2a 11 00 00 38 06 00 00 cb 06 00 00 57 07 00 00 74 00 00 00 99 03 00 00 00 00 00 00 | ....*...8.......W...t........... |
| 1dd00 | a5 14 00 00 bf 02 00 00 00 00 00 00 00 00 00 00 90 01 00 00 00 0e 00 00 58 08 00 00 31 0e 00 00 | ........................X...1... |
| 1dd20 | 71 08 00 00 66 12 00 00 3a 0a 00 00 90 07 00 00 44 0c 00 00 00 00 00 00 ce 07 00 00 26 12 00 00 | q...f...:.......D...........&... |
| 1dd40 | e6 0b 00 00 8f 12 00 00 bc 0b 00 00 00 00 00 00 80 08 00 00 32 0e 00 00 03 10 00 00 4e 01 00 00 | ....................2.......N... |
| 1dd60 | c6 16 00 00 00 00 00 00 00 03 00 00 2d 0d 00 00 3c 16 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ............-...<............... |
| 1dd80 | d1 15 00 00 1c 0c 00 00 67 04 00 00 7c 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 7a 0f 00 00 | ........g...|...............z... |
| 1dda0 | 23 04 00 00 59 0f 00 00 00 00 00 00 82 04 00 00 87 00 00 00 00 00 00 00 fc 13 00 00 22 05 00 00 | #...Y......................."... |
| 1ddc0 | 41 04 00 00 28 07 00 00 24 0b 00 00 37 07 00 00 81 0e 00 00 52 11 00 00 fd 16 00 00 c3 08 00 00 | A...(...$...7.......R........... |
| 1dde0 | 31 08 00 00 6c 07 00 00 9a 12 00 00 00 00 00 00 33 15 00 00 bb 09 00 00 1a 08 00 00 76 05 00 00 | 1...l...........3...........v... |
| 1de00 | 5c 07 00 00 00 00 00 00 52 0f 00 00 bf 0e 00 00 fd 03 00 00 48 11 00 00 01 0b 00 00 64 0f 00 00 | \.......R...........H.......d... |
| 1de20 | bb 03 00 00 65 02 00 00 a3 02 00 00 00 00 00 00 fe 08 00 00 24 06 00 00 00 00 00 00 4a 0a 00 00 | ....e...............$.......J... |
| 1de40 | 56 14 00 00 c6 10 00 00 00 00 00 00 36 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | V...........6................... |
| 1de60 | 0f 0b 00 00 42 0c 00 00 ff 04 00 00 00 00 00 00 00 00 00 00 80 0a 00 00 d3 02 00 00 7b 05 00 00 | ....B.......................{... |
| 1de80 | bb 0c 00 00 00 00 00 00 78 05 00 00 16 01 00 00 e6 16 00 00 eb 0a 00 00 61 10 00 00 51 07 00 00 | ........x...............a...Q... |
| 1dea0 | 00 00 00 00 e6 0f 00 00 ab 13 00 00 29 12 00 00 78 16 00 00 a2 00 00 00 00 00 00 00 2c 15 00 00 | ............)...x...........,... |
| 1dec0 | 52 0c 00 00 0b 02 00 00 4a 02 00 00 17 01 00 00 e7 08 00 00 2e 0d 00 00 6a 06 00 00 89 01 00 00 | R.......J...............j....... |
| 1dee0 | 5f 04 00 00 00 00 00 00 a1 02 00 00 40 10 00 00 55 16 00 00 78 01 00 00 00 00 00 00 00 00 00 00 | _...........@...U...x........... |
| 1df00 | 00 00 00 00 00 00 00 00 d5 0f 00 00 00 00 00 00 1c 03 00 00 13 15 00 00 00 00 00 00 03 17 00 00 | ................................ |
| 1df20 | 96 0d 00 00 33 0d 00 00 68 0b 00 00 be 01 00 00 0f 00 00 00 e5 0a 00 00 00 00 00 00 6b 0a 00 00 | ....3...h...................k... |
| 1df40 | 00 00 00 00 00 00 00 00 c9 08 00 00 91 06 00 00 e1 07 00 00 00 00 00 00 2a 00 00 00 a4 0f 00 00 | ........................*....... |
| 1df60 | 8b 0e 00 00 e9 0c 00 00 9a 0e 00 00 00 00 00 00 32 0d 00 00 f2 0b 00 00 17 0e 00 00 a9 03 00 00 | ................2............... |
| 1df80 | ff 08 00 00 32 07 00 00 00 00 00 00 3a 04 00 00 00 00 00 00 7c 11 00 00 91 03 00 00 be 09 00 00 | ....2.......:.......|........... |
| 1dfa0 | 9a 08 00 00 00 00 00 00 4b 07 00 00 fe 02 00 00 00 00 00 00 fb 0e 00 00 7f 13 00 00 8b 09 00 00 | ........K....................... |
| 1dfc0 | 64 10 00 00 36 03 00 00 dc 04 00 00 9f 06 00 00 07 14 00 00 00 00 00 00 e2 04 00 00 00 00 00 00 | d...6........................... |
| 1dfe0 | 68 09 00 00 ae 02 00 00 00 00 00 00 00 00 00 00 59 11 00 00 b4 09 00 00 00 00 00 00 e9 00 00 00 | h...............Y............... |
| 1e000 | cb 0c 00 00 d8 16 00 00 bc 11 00 00 18 0c 00 00 fb 0c 00 00 ad 14 00 00 00 00 00 00 30 16 00 00 | ............................0... |
| 1e020 | 0c 05 00 00 f2 0c 00 00 f6 10 00 00 ca 0f 00 00 50 15 00 00 8b 15 00 00 00 00 00 00 00 06 00 00 | ................P............... |
| 1e040 | 52 03 00 00 b3 0e 00 00 00 00 00 00 31 14 00 00 d4 0b 00 00 00 00 00 00 6d 14 00 00 f2 09 00 00 | R...........1...........m....... |
| 1e060 | 47 06 00 00 96 14 00 00 e0 11 00 00 00 00 00 00 18 16 00 00 00 00 00 00 f4 13 00 00 ff 09 00 00 | G............................... |
| 1e080 | a4 14 00 00 e5 02 00 00 00 00 00 00 f8 12 00 00 00 00 00 00 24 00 00 00 1f 09 00 00 b0 07 00 00 | ....................$........... |
| 1e0a0 | 48 0b 00 00 08 0e 00 00 bc 14 00 00 0f 06 00 00 00 00 00 00 00 00 00 00 ee 10 00 00 29 02 00 00 | H...........................)... |
| 1e0c0 | b0 0d 00 00 bd 0c 00 00 c7 13 00 00 10 10 00 00 af 10 00 00 30 14 00 00 00 00 00 00 00 00 00 00 | ....................0........... |
| 1e0e0 | 4c 07 00 00 00 00 00 00 31 16 00 00 8e 0b 00 00 3b 15 00 00 00 00 00 00 5d 02 00 00 ca 14 00 00 | L.......1.......;.......]....... |
| 1e100 | 15 16 00 00 00 00 00 00 00 00 00 00 3b 09 00 00 14 0d 00 00 ec 0b 00 00 ac 10 00 00 00 00 00 00 | ............;................... |
| 1e120 | 00 00 00 00 8f 00 00 00 1e 14 00 00 00 00 00 00 88 01 00 00 61 03 00 00 bf 0d 00 00 b1 02 00 00 | ....................a........... |
| 1e140 | af 0f 00 00 77 0a 00 00 2d 11 00 00 7f 0d 00 00 2f 0d 00 00 b7 0f 00 00 c1 05 00 00 4a 00 00 00 | ....w...-......./...........J... |
| 1e160 | c5 08 00 00 db 14 00 00 a3 10 00 00 76 09 00 00 07 11 00 00 a1 04 00 00 f5 09 00 00 32 15 00 00 | ............v...............2... |
| 1e180 | 37 10 00 00 9c 0b 00 00 91 02 00 00 13 06 00 00 73 0d 00 00 1c 14 00 00 d5 15 00 00 8e 00 00 00 | 7...............s............... |
| 1e1a0 | 5f 09 00 00 20 0b 00 00 44 05 00 00 7b 08 00 00 d0 0b 00 00 b8 12 00 00 00 00 00 00 21 04 00 00 | _.......D...{...............!... |
| 1e1c0 | 9e 0a 00 00 71 05 00 00 00 00 00 00 2c 01 00 00 c1 13 00 00 23 00 00 00 67 13 00 00 8e 04 00 00 | ....q.......,.......#...g....... |
| 1e1e0 | af 02 00 00 44 15 00 00 e7 0a 00 00 9d 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 33 12 00 00 | ....D.......................3... |
| 1e200 | f1 00 00 00 fa 11 00 00 1a 0c 00 00 2e 13 00 00 dc 01 00 00 00 00 00 00 66 0a 00 00 57 11 00 00 | ........................f...W... |
| 1e220 | 39 13 00 00 97 02 00 00 56 12 00 00 71 16 00 00 d7 07 00 00 00 00 00 00 f9 0d 00 00 4a 0f 00 00 | 9.......V...q...............J... |
| 1e240 | 88 11 00 00 a0 02 00 00 26 04 00 00 36 0f 00 00 af 14 00 00 00 00 00 00 13 03 00 00 91 08 00 00 | ........&...6................... |
| 1e260 | 3c 09 00 00 2b 10 00 00 00 00 00 00 00 00 00 00 8e 01 00 00 e3 03 00 00 c5 04 00 00 00 00 00 00 | <...+........................... |
| 1e280 | 29 01 00 00 e3 0d 00 00 8b 16 00 00 4d 11 00 00 99 0a 00 00 8b 11 00 00 eb 07 00 00 ad 02 00 00 | )...........M................... |
| 1e2a0 | 97 00 00 00 c6 0d 00 00 3a 0e 00 00 95 01 00 00 35 0c 00 00 3d 04 00 00 1b 00 00 00 1a 16 00 00 | ........:.......5...=........... |
| 1e2c0 | 50 09 00 00 5d 0c 00 00 00 00 00 00 fa 08 00 00 4e 0e 00 00 ce 10 00 00 90 14 00 00 78 12 00 00 | P...]...........N...........x... |
| 1e2e0 | 36 05 00 00 92 00 00 00 7e 09 00 00 0c 16 00 00 31 00 00 00 00 00 00 00 93 02 00 00 c7 00 00 00 | 6.......~.......1............... |
| 1e300 | 05 03 00 00 c1 09 00 00 9a 0f 00 00 00 00 00 00 00 00 00 00 21 05 00 00 74 0c 00 00 d8 02 00 00 | ....................!...t....... |
| 1e320 | 00 00 00 00 7f 0c 00 00 a3 01 00 00 a3 06 00 00 00 00 00 00 4b 02 00 00 53 00 00 00 97 15 00 00 | ....................K...S....... |
| 1e340 | 34 16 00 00 7a 16 00 00 17 04 00 00 5e 0e 00 00 47 07 00 00 00 00 00 00 10 08 00 00 00 00 00 00 | 4...z.......^...G............... |
| 1e360 | 66 16 00 00 00 00 00 00 ed 03 00 00 d1 03 00 00 81 08 00 00 0d 12 00 00 96 11 00 00 9a 15 00 00 | f............................... |
| 1e380 | f6 09 00 00 00 00 00 00 00 00 00 00 97 06 00 00 00 00 00 00 42 15 00 00 15 06 00 00 59 12 00 00 | ....................B.......Y... |
| 1e3a0 | 70 13 00 00 a7 0b 00 00 56 11 00 00 98 03 00 00 de 15 00 00 56 08 00 00 5f 03 00 00 64 11 00 00 | p.......V...........V..._...d... |
| 1e3c0 | 00 00 00 00 00 00 00 00 b7 06 00 00 e5 13 00 00 76 10 00 00 8e 07 00 00 a6 02 00 00 4c 0b 00 00 | ................v...........L... |
| 1e3e0 | f3 0b 00 00 60 0c 00 00 6b 0d 00 00 77 16 00 00 26 10 00 00 6a 0a 00 00 00 00 00 00 00 00 00 00 | ....`...k...w...&...j........... |
| 1e400 | c9 0b 00 00 00 00 00 00 00 00 00 00 96 13 00 00 ef 14 00 00 e9 0e 00 00 86 10 00 00 a4 0d 00 00 | ................................ |
| 1e420 | 9b 09 00 00 38 0c 00 00 e1 09 00 00 f7 16 00 00 03 11 00 00 65 0a 00 00 bd 02 00 00 00 00 00 00 | ....8...............e........... |
| 1e440 | 00 00 00 00 09 01 00 00 3b 03 00 00 96 16 00 00 00 00 00 00 a0 09 00 00 97 16 00 00 dc 0f 00 00 | ........;....................... |
| 1e460 | 00 00 00 00 00 00 00 00 00 00 00 00 95 00 00 00 55 15 00 00 58 01 00 00 55 0e 00 00 51 08 00 00 | ................U...X...U...Q... |
| 1e480 | d5 0d 00 00 33 16 00 00 00 00 00 00 d7 15 00 00 fa 0c 00 00 d3 00 00 00 00 00 00 00 00 00 00 00 | ....3........................... |
| 1e4a0 | 07 15 00 00 00 00 00 00 a0 0f 00 00 ec 16 00 00 4d 00 00 00 00 00 00 00 7e 0f 00 00 00 00 00 00 | ................M.......~....... |
| 1e4c0 | 00 00 00 00 00 00 00 00 e0 10 00 00 b2 0c 00 00 bb 12 00 00 a6 07 00 00 62 15 00 00 d6 0a 00 00 | ........................b....... |
| 1e4e0 | 9a 02 00 00 25 01 00 00 e6 13 00 00 00 00 00 00 4d 13 00 00 49 0b 00 00 ce 09 00 00 00 00 00 00 | ....%...........M...I........... |
| 1e500 | 00 00 00 00 00 00 00 00 d1 11 00 00 00 00 00 00 0e 13 00 00 00 00 00 00 00 00 00 00 10 0b 00 00 | ................................ |
| 1e520 | d2 14 00 00 c4 10 00 00 00 00 00 00 ea 0a 00 00 d7 02 00 00 61 05 00 00 1f 08 00 00 d5 07 00 00 | ....................a........... |
| 1e540 | ef 15 00 00 0a 16 00 00 5b 02 00 00 00 00 00 00 7b 0e 00 00 23 16 00 00 4b 0e 00 00 ae 00 00 00 | ........[.......{...#...K....... |
| 1e560 | 00 00 00 00 7e 04 00 00 4f 0f 00 00 be 0b 00 00 41 06 00 00 5a 13 00 00 70 10 00 00 e6 03 00 00 | ....~...O.......A...Z...p....... |
| 1e580 | 43 13 00 00 45 07 00 00 47 13 00 00 ac 14 00 00 e6 0a 00 00 ec 05 00 00 00 00 00 00 c4 05 00 00 | C...E...G....................... |
| 1e5a0 | 00 00 00 00 8b 04 00 00 00 00 00 00 84 10 00 00 f4 09 00 00 1f 07 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1e5c0 | dc 09 00 00 00 00 00 00 00 00 00 00 b6 0c 00 00 b8 0a 00 00 00 00 00 00 00 00 00 00 ef 0b 00 00 | ................................ |
| 1e5e0 | c5 11 00 00 09 0c 00 00 0f 16 00 00 23 0a 00 00 b3 04 00 00 09 08 00 00 79 0e 00 00 b0 05 00 00 | ............#...........y....... |
| 1e600 | 00 00 00 00 6a 01 00 00 75 16 00 00 08 16 00 00 00 00 00 00 3c 02 00 00 ce 14 00 00 00 00 00 00 | ....j...u...........<........... |
| 1e620 | 31 0c 00 00 dd 03 00 00 fc 12 00 00 cb 02 00 00 21 01 00 00 00 00 00 00 63 0f 00 00 b2 13 00 00 | 1...............!.......c....... |
| 1e640 | 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1e660 | f1 12 00 00 4d 06 00 00 73 04 00 00 af 13 00 00 00 00 00 00 11 0e 00 00 47 02 00 00 45 05 00 00 | ....M...s...............G...E... |
| 1e680 | ae 13 00 00 5d 11 00 00 65 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f9 07 00 00 f7 13 00 00 | ....]...e....................... |
| 1e6a0 | 22 0c 00 00 b4 15 00 00 26 16 00 00 ae 12 00 00 de 07 00 00 78 0d 00 00 c4 04 00 00 15 09 00 00 | ".......&...........x........... |
| 1e6c0 | 35 07 00 00 df 16 00 00 62 0e 00 00 00 00 00 00 d2 10 00 00 52 0b 00 00 5c 01 00 00 2a 0f 00 00 | 5.......b...........R...\...*... |
| 1e6e0 | 58 16 00 00 89 02 00 00 ec 11 00 00 8f 15 00 00 a3 09 00 00 00 00 00 00 00 00 00 00 b1 04 00 00 | X............................... |
| 1e700 | a5 0d 00 00 b4 0a 00 00 00 00 00 00 00 00 00 00 b5 14 00 00 99 01 00 00 98 0c 00 00 a9 0a 00 00 | ................................ |
| 1e720 | be 0f 00 00 d1 14 00 00 94 07 00 00 6f 08 00 00 e4 04 00 00 27 14 00 00 2a 0d 00 00 c5 10 00 00 | ............o.......'...*....... |
| 1e740 | 45 04 00 00 00 00 00 00 35 05 00 00 5d 07 00 00 22 01 00 00 00 00 00 00 67 0d 00 00 d1 0f 00 00 | E.......5...]...".......g....... |
| 1e760 | 69 16 00 00 00 00 00 00 f7 0d 00 00 00 00 00 00 93 14 00 00 73 16 00 00 00 00 00 00 17 0b 00 00 | i...................s........... |
| 1e780 | 3d 06 00 00 99 0e 00 00 30 04 00 00 00 00 00 00 15 13 00 00 00 00 00 00 64 15 00 00 73 0c 00 00 | =.......0...............d...s... |
| 1e7a0 | ec 02 00 00 00 00 00 00 db 08 00 00 c1 03 00 00 87 16 00 00 00 00 00 00 7e 15 00 00 83 15 00 00 | ........................~....... |
| 1e7c0 | bc 08 00 00 85 06 00 00 00 00 00 00 3c 05 00 00 00 00 00 00 00 00 00 00 15 04 00 00 fe 15 00 00 | ............<................... |
| 1e7e0 | 00 00 00 00 4b 0b 00 00 b9 10 00 00 96 10 00 00 b6 11 00 00 a7 04 00 00 b5 0d 00 00 df 0a 00 00 | ....K........................... |
| 1e800 | 07 09 00 00 4e 0a 00 00 00 00 00 00 83 13 00 00 00 00 00 00 00 00 00 00 cd 14 00 00 b5 0c 00 00 | ....N........................... |
| 1e820 | 74 08 00 00 d8 07 00 00 33 0a 00 00 00 00 00 00 1e 0d 00 00 39 0b 00 00 00 00 00 00 00 00 00 00 | t.......3...........9........... |
| 1e840 | 00 00 00 00 00 00 00 00 f1 11 00 00 ea 00 00 00 8b 0b 00 00 00 00 00 00 96 0f 00 00 a8 01 00 00 | ................................ |
| 1e860 | 97 0a 00 00 00 00 00 00 00 00 00 00 85 13 00 00 d4 0c 00 00 f0 0d 00 00 d1 08 00 00 67 00 00 00 | ............................g... |
| 1e880 | 37 11 00 00 26 14 00 00 8d 0b 00 00 78 10 00 00 3a 07 00 00 c9 04 00 00 8b 0d 00 00 9d 10 00 00 | 7...&.......x...:............... |
| 1e8a0 | 98 0f 00 00 bb 0f 00 00 be 14 00 00 00 00 00 00 00 00 00 00 c3 04 00 00 00 00 00 00 cf 12 00 00 | ................................ |
| 1e8c0 | 00 00 00 00 c5 06 00 00 f3 09 00 00 fa 10 00 00 00 00 00 00 00 00 00 00 12 0d 00 00 c1 07 00 00 | ................................ |
| 1e8e0 | a6 10 00 00 00 00 00 00 df 05 00 00 00 00 00 00 ee 16 00 00 81 14 00 00 b8 13 00 00 d4 05 00 00 | ................................ |
| 1e900 | 61 0c 00 00 2f 14 00 00 4e 05 00 00 85 04 00 00 00 00 00 00 92 0c 00 00 00 00 00 00 b4 0c 00 00 | a.../...N....................... |
| 1e920 | 9d 14 00 00 f6 11 00 00 36 0a 00 00 22 14 00 00 00 00 00 00 00 00 00 00 f0 09 00 00 21 10 00 00 | ........6..."...............!... |
| 1e940 | 05 00 00 00 d8 11 00 00 d8 05 00 00 d9 11 00 00 ad 04 00 00 5e 09 00 00 05 09 00 00 60 00 00 00 | ....................^.......`... |
| 1e960 | 00 00 00 00 00 01 00 00 00 00 00 00 ee 11 00 00 0e 03 00 00 00 00 00 00 00 00 00 00 77 13 00 00 | ............................w... |
| 1e980 | 00 00 00 00 00 00 00 00 00 00 00 00 98 04 00 00 00 00 00 00 8f 09 00 00 00 00 00 00 15 08 00 00 | ................................ |
| 1e9a0 | ab 08 00 00 41 03 00 00 67 14 00 00 c4 0d 00 00 00 00 00 00 f3 05 00 00 00 00 00 00 2c 03 00 00 | ....A...g...................,... |
| 1e9c0 | 33 11 00 00 a6 04 00 00 00 00 00 00 1a 10 00 00 2f 12 00 00 d3 12 00 00 c3 0b 00 00 c3 0a 00 00 | 3.............../............... |
| 1e9e0 | d2 13 00 00 90 02 00 00 4b 03 00 00 00 00 00 00 00 00 00 00 68 12 00 00 55 0a 00 00 83 0a 00 00 | ........K...........h...U....... |
| 1ea00 | 00 00 00 00 00 00 00 00 e4 0f 00 00 00 00 00 00 3f 0c 00 00 7b 00 00 00 69 10 00 00 af 0e 00 00 | ................?...{...i....... |
| 1ea20 | 64 09 00 00 a0 04 00 00 f4 05 00 00 86 08 00 00 7f 07 00 00 00 00 00 00 d4 0f 00 00 02 08 00 00 | d............................... |
| 1ea40 | 0d 06 00 00 2e 06 00 00 a9 11 00 00 b5 15 00 00 73 14 00 00 62 04 00 00 f5 16 00 00 33 07 00 00 | ................s...b.......3... |
| 1ea60 | ef 0c 00 00 89 0e 00 00 3b 0b 00 00 de 05 00 00 18 04 00 00 00 00 00 00 81 02 00 00 82 09 00 00 | ........;....................... |
| 1ea80 | 40 03 00 00 7f 14 00 00 00 00 00 00 bc 01 00 00 00 00 00 00 00 00 00 00 02 0f 00 00 00 00 00 00 | @............................... |
| 1eaa0 | 55 0b 00 00 00 00 00 00 86 16 00 00 20 09 00 00 78 08 00 00 4c 05 00 00 1a 00 00 00 23 09 00 00 | U...............x...L.......#... |
| 1eac0 | 74 05 00 00 3c 00 00 00 77 14 00 00 c1 04 00 00 1e 09 00 00 79 0f 00 00 5f 12 00 00 03 12 00 00 | t...<...w...........y..._....... |
| 1eae0 | 00 00 00 00 58 14 00 00 b2 09 00 00 83 0f 00 00 dc 02 00 00 85 01 00 00 0b 04 00 00 56 02 00 00 | ....X.......................V... |
| 1eb00 | 7a 09 00 00 ef 09 00 00 19 09 00 00 38 0b 00 00 a0 11 00 00 e3 13 00 00 64 0d 00 00 4a 03 00 00 | z...........8...........d...J... |
| 1eb20 | 00 00 00 00 e4 0a 00 00 c6 13 00 00 bb 15 00 00 e5 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 | ................................ |
| 1eb40 | f6 05 00 00 00 00 00 00 00 00 00 00 b8 11 00 00 e1 11 00 00 3b 10 00 00 e4 03 00 00 00 00 00 00 | ....................;........... |
| 1eb60 | aa 0a 00 00 dd 0f 00 00 7d 16 00 00 00 00 00 00 a4 05 00 00 18 11 00 00 99 0b 00 00 42 05 00 00 | ........}...................B... |
| 1eb80 | 67 16 00 00 e5 09 00 00 8f 0f 00 00 00 00 00 00 90 05 00 00 00 00 00 00 00 21 3c 68 3a 68 3a 68 | g........................!<h:h:h |
| 1eba0 | 3a 68 3a 68 3a 68 3a 68 3a 68 2f 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 | :h:h:h:h:h/x>:.Match.everything. |
| 1ebc0 | 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2e 00 21 3c 68 | except.the.specified.prefix..!<h |
| 1ebe0 | 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 2d 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 | :h:h:h:h:h:h:h>-<h:h:h:h:h:h:h:h |
| 1ec00 | 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 | >:.Match.everything.except.the.s |
| 1ec20 | 70 65 63 69 66 69 65 64 20 72 61 6e 67 65 2e 00 21 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a | pecified.range..!<h:h:h:h:h:h:h: |
| 1ec40 | 68 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 | h>:.Match.everything.except.the. |
| 1ec60 | 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 2e 00 21 3c 78 2e 78 2e 78 2e 78 2f 78 3e 3a | specified.address..!<x.x.x.x/x>: |
| 1ec80 | 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 | .Match.everything.except.the.spe |
| 1eca0 | 63 69 66 69 65 64 20 73 75 62 6e 65 74 2e 00 21 3c 78 2e 78 2e 78 2e 78 3e 2d 3c 78 2e 78 2e 78 | cified.subnet..!<x.x.x.x>-<x.x.x |
| 1ecc0 | 2e 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 | .x>:.Match.everything.except.the |
| 1ece0 | 20 73 70 65 63 69 66 69 65 64 20 72 61 6e 67 65 2e 00 21 3c 78 2e 78 2e 78 2e 78 3e 3a 20 4d 61 | .specified.range..!<x.x.x.x>:.Ma |
| 1ed00 | 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 | tch.everything.except.the.specif |
| 1ed20 | 69 65 64 20 61 64 64 72 65 73 73 2e 00 22 4d 61 6e 61 67 65 64 20 61 64 64 72 65 73 73 20 63 6f | ied.address.."Managed.address.co |
| 1ed40 | 6e 66 69 67 75 72 61 74 69 6f 6e 22 20 66 6c 61 67 00 22 4f 74 68 65 72 20 63 6f 6e 66 69 67 75 | nfiguration".flag."Other.configu |
| 1ed60 | 72 61 74 69 6f 6e 22 20 66 6c 61 67 00 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 | ration".flag.################### |
| 1ed80 | c3 a4 23 23 23 23 23 23 23 23 23 23 23 23 23 20 46 6c 6f 77 74 61 62 6c 65 73 20 46 69 72 65 77 | ..#############.Flowtables.Firew |
| 1eda0 | 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 23 23 23 23 23 23 23 23 23 23 23 23 23 23 | all.Configuration.############## |
| 1edc0 | 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 00 28 54 68 69 73 20 63 61 6e 20 62 65 | ###################.(This.can.be |
| 1ede0 | 20 75 73 65 66 75 6c 20 77 68 65 6e 20 61 20 63 61 6c 6c 65 64 20 73 65 72 76 69 63 65 20 68 61 | .useful.when.a.called.service.ha |
| 1ee00 | 73 20 6d 61 6e 79 20 61 6e 64 2f 6f 72 20 6f 66 74 65 6e 20 63 68 61 6e 67 69 6e 67 20 64 65 73 | s.many.and/or.often.changing.des |
| 1ee20 | 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 2d 20 65 2e 67 2e 20 4e 65 74 66 6c 69 | tination.addresses.-.e.g..Netfli |
| 1ee40 | 78 2e 29 00 2a 2a 28 44 65 66 61 75 6c 74 29 2a 2a 20 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 | x.).**(Default)**.Flows.are.defi |
| 1ee60 | 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 75 70 6c 65 2c 20 66 61 69 72 6e 65 73 73 20 69 73 20 | ned.by.the.5-tuple,.fairness.is. |
| 1ee80 | 61 70 70 6c 69 65 64 20 6f 76 65 72 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 | applied.over.source.and.destinat |
| 1eea0 | 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 61 6c 73 6f 20 6f 76 65 72 20 69 6e 64 69 | ion.addresses.and.also.over.indi |
| 1eec0 | 76 69 64 75 61 6c 20 66 6c 6f 77 73 2e 00 2a 2a 31 2d 32 35 34 2a 2a 20 e2 80 93 20 69 6e 74 65 | vidual.flows..**1-254**.....inte |
| 1eee0 | 72 66 61 63 65 73 20 77 69 74 68 20 61 20 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 69 6e 74 | rfaces.with.a.channel.number.int |
| 1ef00 | 65 72 66 65 72 65 20 77 69 74 68 20 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 | erfere.with.interfering.interfac |
| 1ef20 | 65 73 20 61 6e 64 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 | es.and.interfaces.with.the.same. |
| 1ef40 | 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 2e 20 2a 2a 69 6e 74 65 72 66 65 72 69 6e 67 2a 2a 20 | channel.number..**interfering**. |
| 1ef60 | e2 80 93 20 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 | ....interfering.interfaces.are.a |
| 1ef80 | 73 73 75 6d 65 64 20 74 6f 20 69 6e 74 65 72 66 65 72 65 20 77 69 74 68 20 61 6c 6c 20 6f 74 68 | ssumed.to.interfere.with.all.oth |
| 1efa0 | 65 72 20 63 68 61 6e 6e 65 6c 73 20 65 78 63 65 70 74 20 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e | er.channels.except.noninterferin |
| 1efc0 | 67 20 63 68 61 6e 6e 65 6c 73 2e 20 2a 2a 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e 67 2a 2a 20 e2 | g.channels..**noninterfering**.. |
| 1efe0 | 80 93 20 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 | ...noninterfering.interfaces.are |
| 1f000 | 20 61 73 73 75 6d 65 64 20 74 6f 20 6f 6e 6c 79 20 69 6e 74 65 72 66 65 72 65 20 77 69 74 68 20 | .assumed.to.only.interfere.with. |
| 1f020 | 74 68 65 6d 73 65 6c 76 65 73 2e 00 2a 2a 31 2e 20 43 6f 6e 66 69 72 6d 20 49 50 20 63 6f 6e 6e | themselves..**1..Confirm.IP.conn |
| 1f040 | 65 63 74 69 76 69 74 79 20 62 65 74 77 65 65 6e 20 74 75 6e 6e 65 6c 20 73 6f 75 72 63 65 2d 61 | ectivity.between.tunnel.source-a |
| 1f060 | 64 64 72 65 73 73 20 61 6e 64 20 72 65 6d 6f 74 65 3a 2a 2a 00 2a 2a 31 30 2a 2a 20 2d 20 3a 61 | ddress.and.remote:**.**10**.-.:a |
| 1f080 | 62 62 72 3a 60 49 50 46 49 58 20 28 49 50 20 46 6c 6f 77 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 | bbr:`IPFIX.(IP.Flow.Information. |
| 1f0a0 | 45 78 70 6f 72 74 29 60 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 33 39 31 37 60 00 2a 2a 32 2e | Export)`.as.per.:rfc:`3917`.**2. |
| 1f0c0 | 20 43 6f 6e 66 69 72 6d 20 74 68 65 20 6c 69 6e 6b 20 74 79 70 65 20 68 61 73 20 62 65 65 6e 20 | .Confirm.the.link.type.has.been. |
| 1f0e0 | 73 65 74 20 74 6f 20 47 52 45 3a 2a 2a 00 2a 2a 33 2e 20 43 6f 6e 66 69 72 6d 20 49 50 20 63 6f | set.to.GRE:**.**3..Confirm.IP.co |
| 1f100 | 6e 6e 65 63 74 69 76 69 74 79 20 61 63 72 6f 73 73 20 74 68 65 20 74 75 6e 6e 65 6c 3a 2a 2a 00 | nnectivity.across.the.tunnel:**. |
| 1f120 | 2a 2a 35 2a 2a 20 2d 20 4d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 | **5**.-.Most.common.version,.but |
| 1f140 | 20 72 65 73 74 72 69 63 74 65 64 20 74 6f 20 49 50 76 34 20 66 6c 6f 77 73 20 6f 6e 6c 79 00 2a | .restricted.to.IPv4.flows.only.* |
| 1f160 | 2a 39 2a 2a 20 2d 20 4e 65 74 46 6c 6f 77 20 76 65 72 73 69 6f 6e 20 39 20 28 64 65 66 61 75 6c | *9**.-.NetFlow.version.9.(defaul |
| 1f180 | 74 29 00 2a 2a 41 53 20 70 61 74 68 20 6c 65 6e 67 74 68 20 63 68 65 63 6b 2a 2a 00 2a 2a 41 63 | t).**AS.path.length.check**.**Ac |
| 1f1a0 | 74 69 76 65 2d 61 63 74 69 76 65 2a 2a 3a 20 62 6f 74 68 20 44 48 43 50 20 73 65 72 76 65 72 73 | tive-active**:.both.DHCP.servers |
| 1f1c0 | 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 44 48 43 50 20 72 65 71 75 65 73 74 73 2e 20 | .will.respond.to.DHCP.requests.. |
| 1f1e0 | 49 66 20 60 60 6d 6f 64 65 60 60 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 69 73 | If.``mode``.is.not.defined,.this |
| 1f200 | 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 2e 00 2a 2a 41 63 74 69 | .is.the.default.behavior..**Acti |
| 1f220 | 76 65 2d 70 61 73 73 69 76 65 2a 2a 3a 20 6f 6e 6c 79 20 60 60 70 72 69 6d 61 72 79 60 60 20 73 | ve-passive**:.only.``primary``.s |
| 1f240 | 65 72 76 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 44 48 43 50 20 72 65 71 75 65 | erver.will.respond.to.DHCP.reque |
| 1f260 | 73 74 73 2e 20 49 66 20 74 68 69 73 20 73 65 72 76 65 72 20 67 6f 65 73 20 6f 66 66 6c 69 6e 65 | sts..If.this.server.goes.offline |
| 1f280 | 2c 20 74 68 65 6e 20 60 60 73 65 63 6f 6e 64 61 72 79 60 60 20 73 65 72 76 65 72 20 77 69 6c 6c | ,.then.``secondary``.server.will |
| 1f2a0 | 20 74 61 6b 65 20 70 6c 61 63 65 2e 00 2a 2a 41 6c 72 65 61 64 79 2d 73 65 6c 65 63 74 65 64 20 | .take.place..**Already-selected. |
| 1f2c0 | 65 78 74 65 72 6e 61 6c 20 63 68 65 63 6b 2a 2a 00 2a 2a 41 70 70 6c 69 63 61 74 69 6f 6e 20 43 | external.check**.**Application.C |
| 1f2e0 | 6f 6d 70 61 74 69 62 69 6c 69 74 79 2a 2a 3a 20 53 6f 6d 65 20 61 70 70 6c 69 63 61 74 69 6f 6e | ompatibility**:.Some.application |
| 1f300 | 73 20 61 6e 64 20 70 72 6f 74 6f 63 6f 6c 73 20 6d 61 79 20 6e 6f 74 20 77 6f 72 6b 20 77 65 6c | s.and.protocols.may.not.work.wel |
| 1f320 | 6c 20 77 69 74 68 20 43 47 4e 41 54 20 64 75 65 20 74 6f 20 74 68 65 69 72 20 72 65 6c 69 61 6e | l.with.CGNAT.due.to.their.relian |
| 1f340 | 63 65 20 6f 6e 20 75 6e 69 71 75 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 | ce.on.unique.public.IP.addresses |
| 1f360 | 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 49 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 | ..**Applies.to:**.Inbound.traffi |
| 1f380 | 63 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 4f 75 74 62 6f 75 6e 64 20 54 72 61 66 | c..**Applies.to:**.Outbound.Traf |
| 1f3a0 | 66 69 63 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 4f 75 74 62 6f 75 6e 64 20 74 72 | fic..**Applies.to:**.Outbound.tr |
| 1f3c0 | 61 66 66 69 63 2e 00 2a 2a 41 70 70 6c 79 20 74 68 65 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 | affic..**Apply.the.traffic.polic |
| 1f3e0 | 79 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 6e 67 72 65 73 73 20 6f 72 20 65 67 72 | y.to.an.interface.ingress.or.egr |
| 1f400 | 65 73 73 2a 2a 2e 00 2a 2a 42 72 69 64 67 65 20 50 6f 72 74 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 | ess**..**Bridge.Port?**:.choose. |
| 1f420 | 61 70 70 72 6f 70 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 69 66 20 69 6e 74 65 | appropiate.path.based.on.if.inte |
| 1f440 | 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 | rface.were.the.packet.was.receiv |
| 1f460 | 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 6f 72 20 6e 6f 74 2e 00 | ed.is.part.of.a.bridge,.or.not.. |
| 1f480 | 2a 2a 42 72 69 64 67 65 20 50 6f 72 74 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 72 | **Bridge.Port?**:.choose.appropr |
| 1f4a0 | 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 77 68 65 74 68 65 72 20 69 6e 74 65 72 | iate.path.based.on.whether.inter |
| 1f4c0 | 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 | face.where.the.packet.was.receiv |
| 1f4e0 | 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 6f 72 20 6e 6f 74 2e 00 | ed.is.part.of.a.bridge,.or.not.. |
| 1f500 | 2a 2a 43 61 6c 63 75 6c 61 74 65 20 74 68 65 20 4e 75 6d 62 65 72 20 6f 66 20 53 75 62 73 63 72 | **Calculate.the.Number.of.Subscr |
| 1f520 | 69 62 65 72 73 20 70 65 72 20 50 75 62 6c 69 63 20 49 50 2a 2a 3a 00 2a 2a 43 69 73 63 6f 20 49 | ibers.per.Public.IP**:.**Cisco.I |
| 1f540 | 4f 53 20 52 6f 75 74 65 72 3a 2a 2a 00 2a 2a 43 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 | OS.Router:**.**Client.IP.address |
| 1f560 | 20 76 69 61 20 49 50 20 72 61 6e 67 65 20 64 65 66 69 6e 69 74 69 6f 6e 2a 2a 00 2a 2a 43 6c 69 | .via.IP.range.definition**.**Cli |
| 1f580 | 65 6e 74 20 49 50 20 73 75 62 6e 65 74 73 20 76 69 61 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e | ent.IP.subnets.via.CIDR.notation |
| 1f5a0 | 2a 2a 00 2a 2a 43 6c 75 73 74 65 72 2d 4c 69 73 74 20 6c 65 6e 67 74 68 20 63 68 65 63 6b 2a 2a | **.**Cluster-List.length.check** |
| 1f5c0 | 00 2a 2a 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 | .**Conntrack.Ignore**:.rules.def |
| 1f5e0 | 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 | ined.under.``set.system.conntrac |
| 1f600 | 6b 20 69 67 6e 6f 72 65 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 2e 00 2a 2a | k.ignore.[ipv4.|.ipv6]....``..** |
| 1f620 | 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 | Conntrack.Ignore**:.rules.define |
| 1f640 | 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 69 | d.under.``set.system.conntrack.i |
| 1f660 | 67 6e 6f 72 65 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 2e 20 53 74 61 72 74 | gnore.[ipv4.|.ipv6]....``..Start |
| 1f680 | 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 | ing.from.vyos-1.5-rolling-202406 |
| 1f6a0 | 31 32 30 30 32 30 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 6f 6e 65 20 69 6e 20 74 68 | 120020,.configuration.done.in.th |
| 1f6c0 | 69 73 20 73 65 63 74 69 6f 6e 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 60 60 66 69 72 65 | is.section.can.be.done.in.``fire |
| 1f6e0 | 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 2e 2e | wall.[ipv4.|.ipv6].prerouting... |
| 1f700 | 2e 60 60 2e 20 46 6f 72 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 72 65 61 73 6f 6e 73 2c 20 | .``..For.compatibility.reasons,. |
| 1f720 | 74 68 69 73 20 66 65 61 74 75 72 65 20 69 73 20 73 74 69 6c 6c 20 70 72 65 73 65 6e 74 2c 20 62 | this.feature.is.still.present,.b |
| 1f740 | 75 74 20 69 74 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 65 20 66 75 74 | ut.it.will.be.removed.in.the.fut |
| 1f760 | 75 72 65 2e 00 2a 2a 43 6f 73 74 2d 45 66 66 65 63 74 69 76 65 2a 2a 3a 20 52 65 64 75 63 65 73 | ure..**Cost-Effective**:.Reduces |
| 1f780 | 20 74 68 65 20 63 6f 73 74 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 63 71 75 69 72 | .the.cost.associated.with.acquir |
| 1f7a0 | 69 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 70 75 62 6c 69 63 20 49 50 76 34 20 61 64 64 72 65 | ing.additional.public.IPv4.addre |
| 1f7c0 | 73 73 65 73 2e 00 2a 2a 43 72 65 61 74 65 20 61 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 2a | sses..**Create.a.traffic.policy* |
| 1f7e0 | 2a 2e 00 2a 2a 44 48 43 50 28 76 36 29 2a 2a 00 2a 2a 44 48 43 50 76 36 20 50 72 65 66 69 78 20 | *..**DHCP(v6)**.**DHCPv6.Prefix. |
| 1f800 | 44 65 6c 65 67 61 74 69 6f 6e 20 28 50 44 29 2a 2a 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 | Delegation.(PD)**.**Destination. |
| 1f820 | 4e 41 54 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 | NAT**:.rules.defined.under.``set |
| 1f840 | 20 5b 6e 61 74 20 7c 20 6e 61 74 36 36 5d 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 2e 2e 60 60 2e | .[nat.|.nat66].destination...``. |
| 1f860 | 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 72 6f 75 74 65 72 3f 2a 2a 3a | .**Destination.is.the.router?**: |
| 1f880 | 20 63 68 6f 6f 73 65 20 61 6e 20 61 70 70 72 6f 70 72 69 61 74 65 20 70 61 74 68 20 62 61 73 65 | .choose.an.appropriate.path.base |
| 1f8a0 | 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 72 61 | d.on.destination.IP.address..Tra |
| 1f8c0 | 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a 2a 66 6f 72 77 | nsit.forward.continues.to.**forw |
| 1f8e0 | 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 77 68 65 72 65 20 74 68 65 20 64 | ard**,.while.traffic.where.the.d |
| 1f900 | 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 67 75 | estination.IP.address.is.configu |
| 1f920 | 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 2a | red.on.the.router.continues.to.* |
| 1f940 | 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 72 | *input**..**Destination.is.the.r |
| 1f960 | 6f 75 74 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 69 61 74 65 20 70 61 74 68 | outer?**:.choose.appropiate.path |
| 1f980 | 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 | .based.on.destination.IP.address |
| 1f9a0 | 2e 20 54 72 61 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 6e 65 73 20 74 6f 20 | ..Transit.forward.continunes.to. |
| 1f9c0 | 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 | **forward**,.while.traffic.that. |
| 1f9e0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 67 | destination.IP.address.is.config |
| 1fa00 | 75 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 | ured.on.the.router.continues.to. |
| 1fa20 | 2a 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 | **input**..**Destination.is.the. |
| 1fa40 | 72 6f 75 74 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 70 61 | router?**:.choose.appropriate.pa |
| 1fa60 | 74 68 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 | th.based.on.destination.IP.addre |
| 1fa80 | 73 73 2e 20 54 72 61 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f | ss..Transit.forward.continues.to |
| 1faa0 | 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 74 68 61 74 | .**forward**,.while.traffic.that |
| 1fac0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 6f 6e 66 69 | .destination.IP.address.is.confi |
| 1fae0 | 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f | gured.on.the.router.continues.to |
| 1fb00 | 20 2a 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 75 6e 64 65 | .**input**..**Documentation.unde |
| 1fb20 | 72 20 64 65 76 65 6c 6f 70 6d 65 6e 74 2a 2a 00 2a 2a 45 73 74 69 6d 61 74 65 20 50 6f 72 74 73 | r.development**.**Estimate.Ports |
| 1fb40 | 20 4e 65 65 64 65 64 20 70 65 72 20 53 75 62 73 63 72 69 62 65 72 2a 2a 3a 00 2a 2a 45 74 68 65 | .Needed.per.Subscriber**:.**Ethe |
| 1fb60 | 72 6e 65 74 20 28 70 72 6f 74 6f 63 6f 6c 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 | rnet.(protocol,.destination.addr |
| 1fb80 | 65 73 73 20 6f 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 29 2a 2a 00 2a 2a 45 78 61 6d 70 | ess.or.source.address)**.**Examp |
| 1fba0 | 6c 65 3a 2a 2a 00 2a 2a 45 78 74 65 72 6e 61 6c 20 63 68 65 63 6b 2a 2a 00 2a 2a 46 69 72 65 77 | le:**.**External.check**.**Firew |
| 1fbc0 | 61 6c 6c 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 | all.Prerouting**:.commands.found |
| 1fbe0 | 20 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 70 72 65 72 6f | .under.``set.firewall.ipv4.prero |
| 1fc00 | 75 74 69 6e 67 20 72 61 77 20 2e 2e 2e 60 60 00 2a 2a 46 69 72 65 77 61 6c 6c 20 50 72 65 72 6f | uting.raw....``.**Firewall.Prero |
| 1fc20 | 75 74 69 6e 67 2a 2a 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 | uting**:.commands.found.under.`` |
| 1fc40 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 | set.firewall.ipv6.prerouting.raw |
| 1fc60 | 20 2e 2e 2e 60 60 00 2a 2a 46 69 72 65 77 61 6c 6c 20 6d 61 72 6b 2a 2a 00 2a 2a 46 69 72 65 77 | ....``.**Firewall.mark**.**Firew |
| 1fc80 | 61 6c 6c 20 70 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 | all.prerouting**:.rules.defined. |
| 1fca0 | 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 | under.``set.firewall.[ipv4.|.ipv |
| 1fcc0 | 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 2e 2e 2e 60 60 2e 20 41 6c 6c 20 72 75 6c 65 | 6].prerouting.raw...``..All.rule |
| 1fce0 | 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 | s.defined.in.this.section.are.pr |
| 1fd00 | 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 | ocessed.before.connection.tracki |
| 1fd20 | 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 46 6c 6f 77 74 61 62 6c 65 20 52 65 66 65 72 65 | ng.subsystem..**Flowtable.Refere |
| 1fd40 | 6e 63 65 3a 2a 2a 20 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 6b 65 72 6e 65 6c 2e 6f 72 67 2f 6e | nce:**.https://docs.kernel.org/n |
| 1fd60 | 65 74 77 6f 72 6b 69 6e 67 2f 6e 66 5f 66 6c 6f 77 74 61 62 6c 65 2e 68 74 6d 6c 00 2a 2a 46 6f | etworking/nf_flowtable.html.**Fo |
| 1fd80 | 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2a 2a 20 6f 66 20 4e 65 74 66 69 6c 74 65 | r.more.information**.of.Netfilte |
| 1fda0 | 72 20 68 6f 6f 6b 73 20 61 6e 64 20 4c 69 6e 75 78 20 6e 65 74 77 6f 72 6b 69 6e 67 20 70 61 63 | r.hooks.and.Linux.networking.pac |
| 1fdc0 | 6b 65 74 20 66 6c 6f 77 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 60 4e 65 74 66 69 | ket.flows.can.be.found.in.`Netfi |
| 1fde0 | 6c 74 65 72 2d 48 6f 6f 6b 73 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 | lter-Hooks.<https://wiki.nftable |
| 1fe00 | 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 4e 65 | s.org/wiki-nftables/index.php/Ne |
| 1fe20 | 74 66 69 6c 74 65 72 5f 68 6f 6f 6b 73 3e 60 5f 00 2a 2a 46 6f 72 77 61 72 64 20 28 42 72 69 64 | tfilter_hooks>`_.**Forward.(Brid |
| 1fe40 | 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 | ge)**:.stage.where.traffic.that. |
| 1fe60 | 69 73 20 74 72 61 73 73 70 61 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 | is.trasspasing.through.the.bridg |
| 1fe80 | 65 20 69 73 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a | e.is.filtered.and.controlled:.** |
| 1fea0 | 46 6f 72 77 61 72 64 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 | Forward.(Bridge)**:.stage.where. |
| 1fec0 | 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 74 72 65 73 70 61 73 69 6e 67 20 74 68 72 6f 75 | traffic.that.is.trespasing.throu |
| 1fee0 | 67 68 20 74 68 65 20 62 72 69 64 67 65 20 69 73 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f | gh.the.bridge.is.filtered.and.co |
| 1ff00 | 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 46 6f 72 77 61 72 64 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 | ntrolled:.**Forward.(Bridge)**:. |
| 1ff20 | 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 74 72 65 73 | stage.where.traffic.that.is.tres |
| 1ff40 | 70 61 73 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 20 69 73 20 66 69 | passing.through.the.bridge.is.fi |
| 1ff60 | 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 46 6f 72 77 61 72 64 | ltered.and.controlled:.**Forward |
| 1ff80 | 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 | **:.stage.where.transit.traffic. |
| 1ffa0 | 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 | can.be.filtered.and.controlled.. |
| 1ffc0 | 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 | This.includes.ipv4.and.ipv6.filt |
| 1ffe0 | 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 48 61 72 64 77 | ering.rules,.defined.in:.**Hardw |
| 20000 | 61 72 65 20 6f 66 66 6c 6f 61 64 3a 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 73 75 70 70 6f 72 74 | are.offload:**.should.be.support |
| 20020 | 65 64 20 62 79 20 74 68 65 20 4e 49 43 73 20 75 73 65 64 2e 00 2a 2a 49 47 50 20 63 6f 73 74 20 | ed.by.the.NICs.used..**IGP.cost. |
| 20040 | 63 68 65 63 6b 2a 2a 00 2a 2a 49 50 76 34 20 28 44 53 43 50 20 76 61 6c 75 65 2c 20 6d 61 78 69 | check**.**IPv4.(DSCP.value,.maxi |
| 20060 | 6d 75 6d 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 2c 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f 75 | mum.packet.length,.protocol,.sou |
| 20080 | 72 63 65 20 61 64 64 72 65 73 73 2c 2a 2a 20 2a 2a 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | rce.address,**.**destination.add |
| 200a0 | 72 65 73 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 | ress,.source.port,.destination.p |
| 200c0 | 6f 72 74 20 6f 72 20 54 43 50 20 66 6c 61 67 73 29 2a 2a 00 2a 2a 49 50 76 34 20 41 64 64 72 65 | ort.or.TCP.flags)**.**IPv4.Addre |
| 200e0 | 73 73 20 43 6f 6e 73 65 72 76 61 74 69 6f 6e 2a 2a 3a 20 43 47 4e 41 54 20 68 65 6c 70 73 20 6d | ss.Conservation**:.CGNAT.helps.m |
| 20100 | 69 74 69 67 61 74 65 20 74 68 65 20 65 78 68 61 75 73 74 69 6f 6e 20 6f 66 20 49 50 76 34 20 61 | itigate.the.exhaustion.of.IPv4.a |
| 20120 | 64 64 72 65 73 73 65 73 20 62 79 20 61 6c 6c 6f 77 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 63 75 | ddresses.by.allowing.multiple.cu |
| 20140 | 73 74 6f 6d 65 72 73 20 74 6f 20 73 68 61 72 65 20 61 20 73 69 6e 67 6c 65 20 70 75 62 6c 69 63 | stomers.to.share.a.single.public |
| 20160 | 20 49 50 20 61 64 64 72 65 73 73 2e 00 2a 2a 49 50 76 36 20 28 44 53 43 50 20 76 61 6c 75 65 2c | .IP.address..**IPv6.(DSCP.value, |
| 20180 | 20 6d 61 78 69 6d 75 6d 20 70 61 79 6c 6f 61 64 20 6c 65 6e 67 74 68 2c 20 70 72 6f 74 6f 63 6f | .maximum.payload.length,.protoco |
| 201a0 | 6c 2c 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 2a 2a 20 2a 2a 64 65 73 74 69 6e 61 74 69 | l,.source.address,**.**destinati |
| 201c0 | 6f 6e 20 61 64 64 72 65 73 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 | on.address,.source.port,.destina |
| 201e0 | 74 69 6f 6e 20 70 6f 72 74 20 6f 72 20 54 43 50 20 66 6c 61 67 73 29 2a 2a 00 2a 2a 49 66 20 79 | tion.port.or.TCP.flags)**.**If.y |
| 20200 | 6f 75 20 61 72 65 20 6c 6f 6f 6b 69 6e 67 20 66 6f 72 20 61 20 70 6f 6c 69 63 79 20 66 6f 72 20 | ou.are.looking.for.a.policy.for. |
| 20220 | 79 6f 75 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2a 2a 20 62 75 74 20 79 6f 75 20 | your.outbound.traffic**.but.you. |
| 20240 | 64 6f 6e 27 74 20 6b 6e 6f 77 20 77 68 69 63 68 20 6f 6e 65 20 79 6f 75 20 6e 65 65 64 20 61 6e | don't.know.which.one.you.need.an |
| 20260 | 64 20 79 6f 75 20 64 6f 6e 27 74 20 77 61 6e 74 20 74 6f 20 67 6f 20 74 68 72 6f 75 67 68 20 65 | d.you.don't.want.to.go.through.e |
| 20280 | 76 65 72 79 20 70 6f 73 73 69 62 6c 65 20 70 6f 6c 69 63 79 20 73 68 6f 77 6e 20 68 65 72 65 2c | very.possible.policy.shown.here, |
| 202a0 | 20 2a 2a 6f 75 72 20 62 65 74 20 69 73 20 74 68 61 74 20 68 69 67 68 6c 79 20 6c 69 6b 65 6c 79 | .**our.bet.is.that.highly.likely |
| 202c0 | 20 79 6f 75 20 61 72 65 20 6c 6f 6f 6b 69 6e 67 20 66 6f 72 20 61 2a 2a 20 53 68 61 70 65 72 5f | .you.are.looking.for.a**.Shaper_ |
| 202e0 | 20 2a 2a 70 6f 6c 69 63 79 20 61 6e 64 20 79 6f 75 20 77 61 6e 74 20 74 6f 2a 2a 20 3a 72 65 66 | .**policy.and.you.want.to**.:ref |
| 20300 | 3a 60 73 65 74 20 69 74 73 20 71 75 65 75 65 73 20 3c 65 6d 62 65 64 3e 60 20 2a 2a 61 73 20 46 | :`set.its.queues.<embed>`.**as.F |
| 20320 | 51 2d 43 6f 44 65 6c 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 | Q-CoDel**..**Important.note.abou |
| 20340 | 74 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 3a 2a 2a 20 53 74 61 72 | t.conntrack.ignore.rules:**.Star |
| 20360 | 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 | ting.from.vyos-1.5-rolling-20240 |
| 20380 | 36 31 32 30 30 32 30 2c 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 20 63 61 6e 20 62 65 20 64 65 66 | 6120020,.ignore.rules.can.be.def |
| 203a0 | 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 | ined.in.``set.firewall.[ipv4.|.i |
| 203c0 | 70 76 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 20 2e 2e 2e 60 60 2e 20 49 74 27 73 20 | pv6].prerouting.raw....``..It's. |
| 203e0 | 65 78 70 65 63 74 65 64 20 74 68 61 74 20 69 6e 20 74 68 65 20 66 75 74 75 72 65 20 74 68 65 20 | expected.that.in.the.future.the. |
| 20400 | 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 20 77 69 6c 6c 20 62 65 20 72 | conntrack.ignore.rules.will.be.r |
| 20420 | 65 6d 6f 76 65 64 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 | emoved..**Important.note.about.d |
| 20440 | 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 61 20 64 65 66 61 75 6c 74 20 61 | efault-actions:**.If.a.default.a |
| 20460 | 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 | ction.for.any.base.chain.is.not. |
| 20480 | 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e | defined,.then.the.default.action |
| 204a0 | 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 | .is.set.to.**accept**.for.that.c |
| 204c0 | 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 74 68 65 20 | hain..For.custom.chains,.if.the. |
| 204e0 | 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 | default.action.is.not.defined,.t |
| 20500 | 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f | hen.the.default-action.is.set.to |
| 20520 | 20 2a 2a 64 72 6f 70 2a 2a 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 | .**drop**.**Important.note.about |
| 20540 | 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 | .default-actions:**.If.default.a |
| 20560 | 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 | ction.for.any.base.chain.is.not. |
| 20580 | 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e | defined,.then.the.default.action |
| 205a0 | 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 | .is.set.to.**accept**.for.that.c |
| 205c0 | 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 64 65 66 61 | hain..For.custom.chains,.if.defa |
| 205e0 | 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 | ult.action.is.not.defined,.then. |
| 20600 | 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 | the.default-action.is.set.to.**d |
| 20620 | 72 6f 70 2a 2a 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 | rop**.**Important.note.about.def |
| 20640 | 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f | ault-actions:**.If.default.actio |
| 20660 | 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 | n.for.any.base.chain.is.not.defi |
| 20680 | 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 | ned,.then.the.default.action.is. |
| 206a0 | 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e | set.to.**accept**.for.that.chain |
| 206c0 | 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 64 65 66 61 75 6c 74 20 | ..For.custom.chains,.if.default. |
| 206e0 | 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 | action.is.not.defined,.then.the. |
| 20700 | 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a | default-action.is.set.to.**drop* |
| 20720 | 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c | *..**Important.note.about.defaul |
| 20740 | 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 | t-actions:**.If.default.action.f |
| 20760 | 6f 72 20 61 6e 79 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 | or.any.chain.is.not.defined,.the |
| 20780 | 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a | n.the.default.action.is.set.to.* |
| 207a0 | 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 4f 6e 6c 79 20 66 | *accept**.for.that.chain..Only.f |
| 207c0 | 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 | or.custom.chains,.the.default.ac |
| 207e0 | 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 | tion.is.set.to.**drop**..**Impor |
| 20800 | 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a | tant.note.about.default-actions: |
| 20820 | 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 63 68 61 | **.If.default.action.for.any.cha |
| 20840 | 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 | in.is.not.defined,.then.the.defa |
| 20860 | 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 20 66 6f | ult.action.is.set.to.**drop**.fo |
| 20880 | 72 20 74 68 61 74 20 63 68 61 69 6e 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 | r.that.chain..**Important.note.a |
| 208a0 | 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 74 68 65 20 64 | bout.default-actions:**.If.the.d |
| 208c0 | 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e | efault.action.for.any.base.chain |
| 208e0 | 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c | .is.not.defined,.then.the.defaul |
| 20900 | 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f | t.action.is.set.to.**accept**.fo |
| 20920 | 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 20 | r.that.chain..For.custom.chains. |
| 20940 | 69 66 20 61 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e | if.a.default.action.is.not.defin |
| 20960 | 65 64 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 | ed.then.the.default-action.is.se |
| 20980 | 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 | t.to.**drop**..**Important.note. |
| 209a0 | 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 74 68 65 20 | about.default-actions:**.If.the. |
| 209c0 | 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 | default.action.for.any.base.chai |
| 209e0 | 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 | n.is.not.defined,.then.the.defau |
| 20a00 | 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 | lt.action.is.set.to.**accept**.f |
| 20a20 | 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 | or.that.chain..For.custom.chains |
| 20a40 | 2c 20 69 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 | ,.if.the.default.action.is.not.d |
| 20a60 | 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 | efined,.then.the.default-action. |
| 20a80 | 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 | is.set.to.**drop**..**Important. |
| 20aa0 | 6e 6f 74 65 20 6f 6e 20 75 73 61 67 65 20 6f 66 20 74 65 72 6d 73 3a 2a 2a 20 54 68 65 20 66 69 | note.on.usage.of.terms:**.The.fi |
| 20ac0 | 72 65 77 61 6c 6c 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 74 65 72 6d 73 20 60 66 | rewall.makes.use.of.the.terms.`f |
| 20ae0 | 6f 72 77 61 72 64 60 2c 20 60 69 6e 70 75 74 60 2c 20 61 6e 64 20 60 6f 75 74 70 75 74 60 20 66 | orward`,.`input`,.and.`output`.f |
| 20b00 | 6f 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 20 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 | or.firewall.policy..More.informa |
| 20b20 | 74 69 6f 6e 20 6f 66 20 4e 65 74 66 69 6c 74 65 72 20 68 6f 6f 6b 73 20 61 6e 64 20 4c 69 6e 75 | tion.of.Netfilter.hooks.and.Linu |
| 20b40 | 78 20 6e 65 74 77 6f 72 6b 69 6e 67 20 70 61 63 6b 65 74 20 66 6c 6f 77 73 20 63 61 6e 20 62 65 | x.networking.packet.flows.can.be |
| 20b60 | 20 66 6f 75 6e 64 20 69 6e 20 60 4e 65 74 66 69 6c 74 65 72 2d 48 6f 6f 6b 73 20 3c 68 74 74 70 | .found.in.`Netfilter-Hooks.<http |
| 20b80 | 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 | s://wiki.nftables.org/wiki-nftab |
| 20ba0 | 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 4e 65 74 66 69 6c 74 65 72 5f 68 6f 6f 6b 73 3e 60 5f | les/index.php/Netfilter_hooks>`_ |
| 20bc0 | 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 6f 6e 20 75 73 61 67 65 20 6f 66 20 74 65 | .**Important.note.on.usage.of.te |
| 20be0 | 72 6d 73 3a 2a 2a 20 54 68 65 20 66 69 72 65 77 61 6c 6c 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 | rms:**.The.firewall.makes.use.of |
| 20c00 | 20 74 68 65 20 74 65 72 6d 73 20 60 69 6e 60 2c 20 60 6f 75 74 60 2c 20 61 6e 64 20 60 6c 6f 63 | .the.terms.`in`,.`out`,.and.`loc |
| 20c20 | 61 6c 60 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 20 55 73 65 72 73 20 65 | al`.for.firewall.policy..Users.e |
| 20c40 | 78 70 65 72 69 65 6e 63 65 64 20 77 69 74 68 20 6e 65 74 66 69 6c 74 65 72 20 6f 66 74 65 6e 20 | xperienced.with.netfilter.often. |
| 20c60 | 63 6f 6e 66 75 73 65 20 60 69 6e 60 20 74 6f 20 62 65 20 61 20 72 65 66 65 72 65 6e 63 65 20 74 | confuse.`in`.to.be.a.reference.t |
| 20c80 | 6f 20 74 68 65 20 60 49 4e 50 55 54 60 20 63 68 61 69 6e 2c 20 61 6e 64 20 60 6f 75 74 60 20 74 | o.the.`INPUT`.chain,.and.`out`.t |
| 20ca0 | 68 65 20 60 4f 55 54 50 55 54 60 20 63 68 61 69 6e 20 66 72 6f 6d 20 6e 65 74 66 69 6c 74 65 72 | he.`OUTPUT`.chain.from.netfilter |
| 20cc0 | 2e 20 54 68 69 73 20 69 73 20 6e 6f 74 20 74 68 65 20 63 61 73 65 2e 20 54 68 65 73 65 20 69 6e | ..This.is.not.the.case..These.in |
| 20ce0 | 73 74 65 61 64 20 69 6e 64 69 63 61 74 65 20 74 68 65 20 75 73 65 20 6f 66 20 74 68 65 20 60 46 | stead.indicate.the.use.of.the.`F |
| 20d00 | 4f 52 57 41 52 44 60 20 63 68 61 69 6e 20 61 6e 64 20 65 69 74 68 65 72 20 74 68 65 20 69 6e 70 | ORWARD`.chain.and.either.the.inp |
| 20d20 | 75 74 20 6f 72 20 6f 75 74 70 75 74 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 60 49 4e 50 | ut.or.output.interface..The.`INP |
| 20d40 | 55 54 60 20 63 68 61 69 6e 2c 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 6c 6f 63 | UT`.chain,.which.is.used.for.loc |
| 20d60 | 61 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 4f 53 2c 20 69 73 20 61 20 72 65 66 65 72 | al.traffic.to.the.OS,.is.a.refer |
| 20d80 | 65 6e 63 65 20 74 6f 20 61 73 20 60 6c 6f 63 61 6c 60 20 77 69 74 68 20 72 65 73 70 65 63 74 20 | ence.to.as.`local`.with.respect. |
| 20da0 | 74 6f 20 69 74 73 20 69 6e 70 75 74 20 69 6e 74 65 72 66 61 63 65 2e 00 2a 2a 49 6d 70 6f 72 74 | to.its.input.interface..**Import |
| 20dc0 | 61 6e 74 20 6e 6f 74 65 3a 2a 2a 20 54 68 69 73 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 69 | ant.note:**.This.documentation.i |
| 20de0 | 73 20 76 61 6c 69 64 20 6f 6e 6c 79 20 66 6f 72 20 56 79 4f 53 20 53 61 67 69 74 74 61 20 70 72 | s.valid.only.for.VyOS.Sagitta.pr |
| 20e00 | 69 6f 72 20 74 6f 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 00 | ior.to.1.4-rolling-202308040557. |
| 20e20 | 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 3a 2a 2a 20 54 68 69 73 20 64 6f 63 75 6d 65 6e | **Important.note:**.This.documen |
| 20e40 | 74 61 74 69 6f 6e 20 69 73 20 76 61 6c 69 64 20 6f 6e 6c 79 20 66 6f 72 20 56 79 4f 53 20 53 61 | tation.is.valid.only.for.VyOS.Sa |
| 20e60 | 67 69 74 74 61 20 70 72 69 6f 72 20 74 6f 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 59 59 59 59 4d | gitta.prior.to.1.4-rolling-YYYYM |
| 20e80 | 4d 44 44 48 48 6d 6d 00 2a 2a 49 6e 70 75 74 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 | MDDHHmm.**Input.(Bridge)**:.stag |
| 20ea0 | 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 | e.where.traffic.destined.for.the |
| 20ec0 | 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 | .bridge.itself.can.be.filtered.a |
| 20ee0 | 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 49 6e 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 | nd.controlled:.**Input**:.stage. |
| 20f00 | 77 68 65 72 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 65 64 20 74 6f 20 74 68 65 20 | where.traffic.destinated.to.the. |
| 20f20 | 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e | router.itself.can.be.filtered.an |
| 20f40 | 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 54 68 69 73 20 69 73 20 77 68 65 72 65 20 61 6c 6c 20 | d.controlled..This.is.where.all. |
| 20f60 | 72 75 6c 65 73 20 66 6f 72 20 73 65 63 75 72 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 | rules.for.securing.the.router.sh |
| 20f80 | 6f 75 6c 64 20 74 61 6b 65 20 70 6c 61 63 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 | ould.take.place..This.includes.i |
| 20fa0 | 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 | pv4.and.ipv6.filtering.rules,.de |
| 20fc0 | 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 49 6e 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 | fined.in:.**Input**:.stage.where |
| 20fe0 | 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 72 | .traffic.destined.for.the.router |
| 21000 | 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 | .itself.can.be.filtered.and.cont |
| 21020 | 72 6f 6c 6c 65 64 2e 20 54 68 69 73 20 69 73 20 77 68 65 72 65 20 61 6c 6c 20 72 75 6c 65 73 20 | rolled..This.is.where.all.rules. |
| 21040 | 66 6f 72 20 73 65 63 75 72 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 74 | for.securing.the.router.should.t |
| 21060 | 61 6b 65 20 70 6c 61 63 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e | ake.place..This.includes.ipv4.an |
| 21080 | 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 | d.ipv6.filtering.rules,.defined. |
| 210a0 | 69 6e 3a 00 2a 2a 49 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2a 2a 00 2a 2a 4c 45 46 54 2a 2a 00 | in:.**Interface.name**.**LEFT**. |
| 210c0 | 2a 2a 4c 45 46 54 3a 2a 2a 20 2a 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 | **LEFT:**.*.WAN.interface.on.`et |
| 210e0 | 68 30 2e 32 30 31 60 20 2a 20 60 65 74 68 30 2e 32 30 31 60 20 69 6e 74 65 72 66 61 63 65 20 49 | h0.201`.*.`eth0.201`.interface.I |
| 21100 | 50 3a 20 60 31 37 32 2e 31 38 2e 32 30 31 2e 31 30 2f 32 34 60 20 2a 20 60 76 74 69 31 30 60 20 | P:.`172.18.201.10/24`.*.`vti10`. |
| 21120 | 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 30 2e 32 2f 33 31 60 20 2a 20 60 64 | interface.IP:.`10.0.0.2/31`.*.`d |
| 21140 | 75 6d 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 31 31 2e 31 2f 32 34 | um0`.interface.IP:.`10.0.11.1/24 |
| 21160 | 60 20 28 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 29 00 2a 2a 4c 61 79 65 72 | `.(for.testing.purposes).**Layer |
| 21180 | 20 33 20 62 72 69 64 67 65 2a 2a 3a 20 57 68 65 6e 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 | .3.bridge**:.When.an.IP.address. |
| 211a0 | 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 62 72 69 64 67 65 20 69 6e 74 65 72 66 | is.assigned.to.the.bridge.interf |
| 211c0 | 61 63 65 2c 20 61 6e 64 20 69 66 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 74 6f 20 74 | ace,.and.if.traffic.is.sent.to.t |
| 211e0 | 68 65 20 72 6f 75 74 65 72 20 74 6f 20 74 68 69 73 20 49 50 20 28 66 6f 72 20 65 78 61 6d 70 6c | he.router.to.this.IP.(for.exampl |
| 21200 | 65 20 75 73 69 6e 67 20 73 75 63 68 20 49 50 20 61 73 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 | e.using.such.IP.as.default.gatew |
| 21220 | 61 79 29 2c 20 74 68 65 6e 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 2a 2a 62 72 | ay),.then.rules.defined.for.**br |
| 21240 | 69 64 67 65 20 66 69 72 65 77 61 6c 6c 2a 2a 20 77 6f 6e 27 74 20 6d 61 74 63 68 2c 20 61 6e 64 | idge.firewall**.won't.match,.and |
| 21260 | 20 66 69 72 65 77 61 6c 6c 20 61 6e 61 6c 79 73 69 73 20 63 6f 6e 74 69 6e 75 65 73 20 61 74 20 | .firewall.analysis.continues.at. |
| 21280 | 2a 2a 49 50 20 6c 61 79 65 72 2a 2a 2e 00 2a 2a 4c 65 61 66 32 20 63 6f 6e 66 69 67 75 72 61 74 | **IP.layer**..**Leaf2.configurat |
| 212a0 | 69 6f 6e 3a 2a 2a 00 2a 2a 4c 65 61 66 33 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 | ion:**.**Leaf3.configuration:**. |
| 212c0 | 2a 2a 4c 69 6e 75 78 20 73 79 73 74 65 6d 64 2d 6e 65 74 77 6f 72 6b 64 3a 2a 2a 00 2a 2a 4c 6f | **Linux.systemd-networkd:**.**Lo |
| 212e0 | 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 63 68 65 63 6b 2a 2a 00 2a 2a 4c 6f 63 61 6c 20 72 | cal.preference.check**.**Local.r |
| 21300 | 6f 75 74 65 20 63 68 65 63 6b 2a 2a 00 2a 2a 4d 45 44 20 63 68 65 63 6b 2a 2a 00 2a 2a 4d 75 6c | oute.check**.**MED.check**.**Mul |
| 21320 | 74 69 2d 70 61 74 68 20 63 68 65 63 6b 2a 2a 00 2a 2a 4e 6f 64 65 20 31 2a 2a 00 2a 2a 4e 6f 64 | ti-path.check**.**Node.1**.**Nod |
| 21340 | 65 20 31 3a 2a 2a 00 2a 2a 4e 6f 64 65 20 32 2a 2a 00 2a 2a 4e 6f 64 65 20 32 3a 2a 2a 00 2a 2a | e.1:**.**Node.2**.**Node.2:**.** |
| 21360 | 4e 6f 64 65 31 3a 2a 2a 00 2a 2a 4e 6f 64 65 32 3a 2a 2a 00 2a 2a 4f 50 54 49 4f 4e 41 4c 3a 2a | Node1:**.**Node2:**.**OPTIONAL:* |
| 21380 | 2a 20 45 78 63 6c 75 64 65 20 49 6e 74 65 72 2d 56 4c 41 4e 20 74 72 61 66 66 69 63 20 28 62 65 | *.Exclude.Inter-VLAN.traffic.(be |
| 213a0 | 74 77 65 65 6e 20 56 4c 41 4e 31 30 20 61 6e 64 20 56 4c 41 4e 31 31 29 20 66 72 6f 6d 20 50 42 | tween.VLAN10.and.VLAN11).from.PB |
| 213c0 | 52 00 2a 2a 4f 53 50 46 20 6e 65 74 77 6f 72 6b 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a | R.**OSPF.network.routing.table** |
| 213e0 | 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 72 65 64 | .....includes.a.list.of.acquired |
| 21400 | 20 72 6f 75 74 65 73 20 66 6f 72 20 61 6c 6c 20 61 63 63 65 73 73 69 62 6c 65 20 6e 65 74 77 6f | .routes.for.all.accessible.netwo |
| 21420 | 72 6b 73 20 28 6f 72 20 61 67 67 72 65 67 61 74 65 64 20 61 72 65 61 20 72 61 6e 67 65 73 29 20 | rks.(or.aggregated.area.ranges). |
| 21440 | 6f 66 20 4f 53 50 46 20 73 79 73 74 65 6d 2e 20 22 49 41 22 20 66 6c 61 67 20 6d 65 61 6e 73 20 | of.OSPF.system.."IA".flag.means. |
| 21460 | 74 68 61 74 20 72 6f 75 74 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 69 6e 20 74 68 65 | that.route.destination.is.in.the |
| 21480 | 20 61 72 65 61 20 74 6f 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 6e 6f 74 | .area.to.which.the.router.is.not |
| 214a0 | 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 2e 65 2e 20 69 74 e2 80 99 73 20 61 6e 20 69 6e 74 65 72 | .connected,.i.e..it...s.an.inter |
| 214c0 | 2d 61 72 65 61 20 70 61 74 68 2e 20 49 6e 20 73 71 75 61 72 65 20 62 72 61 63 6b 65 74 73 20 61 | -area.path..In.square.brackets.a |
| 214e0 | 20 73 75 6d 6d 61 72 79 20 6d 65 74 72 69 63 20 66 6f 72 20 61 6c 6c 20 6c 69 6e 6b 73 20 74 68 | .summary.metric.for.all.links.th |
| 21500 | 72 6f 75 67 68 20 77 68 69 63 68 20 61 20 70 61 74 68 20 6c 69 65 73 20 74 6f 20 74 68 69 73 20 | rough.which.a.path.lies.to.this. |
| 21520 | 6e 65 74 77 6f 72 6b 20 69 73 20 73 70 65 63 69 66 69 65 64 2e 20 22 76 69 61 22 20 70 72 65 66 | network.is.specified.."via".pref |
| 21540 | 69 78 20 64 65 66 69 6e 65 73 20 61 20 72 6f 75 74 65 72 2d 67 61 74 65 77 61 79 2c 20 69 2e 65 | ix.defines.a.router-gateway,.i.e |
| 21560 | 2e 20 74 68 65 20 66 69 72 73 74 20 72 6f 75 74 65 72 20 6f 6e 20 74 68 65 20 77 61 79 20 74 6f | ..the.first.router.on.the.way.to |
| 21580 | 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 6e 65 78 74 20 68 6f 70 29 2e 20 2a 2a 4f | .the.destination.(next.hop)..**O |
| 215a0 | 53 50 46 20 72 6f 75 74 65 72 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a 20 e2 80 93 20 69 | SPF.router.routing.table**.....i |
| 215c0 | 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 72 65 64 20 72 6f 75 74 65 | ncludes.a.list.of.acquired.route |
| 215e0 | 73 20 74 6f 20 61 6c 6c 20 61 63 63 65 73 73 69 62 6c 65 20 41 42 52 73 20 61 6e 64 20 41 53 42 | s.to.all.accessible.ABRs.and.ASB |
| 21600 | 52 73 2e 20 2a 2a 4f 53 50 46 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | Rs..**OSPF.external.routing.tabl |
| 21620 | 65 2a 2a 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 61 63 71 75 69 | e**.....includes.a.list.of.acqui |
| 21640 | 72 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 65 78 74 65 72 6e 61 6c 20 74 6f 20 | red.routes.that.are.external.to. |
| 21660 | 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 22 45 22 20 66 6c 61 67 20 70 6f 69 6e 74 | the.OSPF.process.."E".flag.point |
| 21680 | 73 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 6d 65 74 72 69 63 20 74 79 | s.to.the.external.link.metric.ty |
| 216a0 | 70 65 20 28 45 31 20 e2 80 93 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 2c 20 45 32 20 e2 80 93 | pe.(E1.....metric.type.1,.E2.... |
| 216c0 | 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 29 2e 20 45 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 6d | .metric.type.2)..External.link.m |
| 216e0 | 65 74 72 69 63 20 69 73 20 70 72 69 6e 74 65 64 20 69 6e 20 74 68 65 20 22 3c 6d 65 74 72 69 63 | etric.is.printed.in.the."<metric |
| 21700 | 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 69 63 68 20 61 64 76 65 72 74 69 73 65 64 20 | .of.the.router.which.advertised. |
| 21720 | 74 68 65 20 6c 69 6e 6b 3e 2f 3c 6c 69 6e 6b 20 6d 65 74 72 69 63 3e 22 20 66 6f 72 6d 61 74 2e | the.link>/<link.metric>".format. |
| 21740 | 00 2a 2a 4f 6e 65 20 67 61 74 65 77 61 79 3a 2a 2a 00 2a 2a 4f 72 69 67 69 6e 20 63 68 65 63 6b | .**One.gateway:**.**Origin.check |
| 21760 | 2a 2a 00 2a 2a 4f 75 74 70 75 74 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 | **.**Output.(Bridge)**:.stage.wh |
| 21780 | 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d | ere.traffic.that.originates.from |
| 217a0 | 20 74 68 65 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 | .the.bridge.itself.can.be.filter |
| 217c0 | 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 | ed.and.controlled:.**Output.Filt |
| 217e0 | 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 | er**:.``set.firewall.[ipv4.|.ipv |
| 21800 | 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 2a 2a 4f 75 74 70 75 74 | 6].output.filter....``..**Output |
| 21820 | 20 46 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f | .Filter**:.``set.firewall.ipv4.o |
| 21840 | 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 20 52 75 6c 65 73 20 64 65 66 69 6e 65 | utput.filter....``..Rules.define |
| 21860 | 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 | d.in.this.section.are.processed. |
| 21880 | 61 66 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 | after.connection.tracking.subsys |
| 218a0 | 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 | tem..**Output.Filter**:.``set.fi |
| 218c0 | 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e | rewall.ipv6.output.filter....``. |
| 218e0 | 20 52 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 | .Rules.defined.in.this.section.a |
| 21900 | 72 65 20 70 72 6f 63 65 73 73 65 64 20 61 66 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 | re.processed.after.connection.tr |
| 21920 | 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 50 72 65 72 6f | acking.subsystem..**Output.Prero |
| 21940 | 75 74 69 6e 67 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 | uting**:.``set.firewall.[ipv4.|. |
| 21960 | 69 70 76 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 | ipv6].output.filter....``..As.de |
| 21980 | 73 63 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 | scribed.in.**Prerouting**,.rules |
| 219a0 | 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f | .defined.in.this.section.are.pro |
| 219c0 | 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e | cessed.before.connection.trackin |
| 219e0 | 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 | g.subsystem..**Output.Prerouting |
| 21a00 | 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 72 | **:.``set.firewall.ipv4.output.r |
| 21a20 | 61 77 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 | aw....``..As.described.in.**Prer |
| 21a40 | 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 | outing**,.rules.defined.in.this. |
| 21a60 | 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e | section.are.processed.before.con |
| 21a80 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 | nection.tracking.subsystem..**Ou |
| 21aa0 | 74 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | tput.Prerouting**:.``set.firewal |
| 21ac0 | 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 72 61 77 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 | l.ipv6.output.raw....``..As.desc |
| 21ae0 | 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 | ribed.in.**Prerouting**,.rules.d |
| 21b00 | 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 | efined.in.this.section.are.proce |
| 21b20 | 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 | ssed.before.connection.tracking. |
| 21b40 | 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 | subsystem..**Output**:.stage.whe |
| 21b60 | 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 | re.traffic.that.is.originated.by |
| 21b80 | 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 | .the.router.itself.can.be.filter |
| 21ba0 | 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 61 72 65 20 69 6e 20 6d 69 6e 64 20 | ed.and.controlled..Bare.in.mind. |
| 21bc0 | 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 | that.this.traffic.can.be.a.new.c |
| 21be0 | 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 | onnection.originted.by.a.interna |
| 21c00 | 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 | l.process.running.on.VyOS.router |
| 21c20 | 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 63 61 6e 20 62 65 20 61 20 72 65 73 70 6f | ,.such.as.NTP,.or.can.be.a.respo |
| 21c40 | 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c | nse.to.traffic.received.external |
| 21c60 | 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c | y.through.**inputt**.(for.exampl |
| 21c80 | 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d | e.response.to.an.ssh.login.attem |
| 21ca0 | 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 | pt.to.the.router)..This.includes |
| 21cc0 | 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 | .ipv4.and.ipv6.filtering.rules,. |
| 21ce0 | 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 | defined.in:.**Output**:.stage.wh |
| 21d00 | 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d | ere.traffic.that.originates.from |
| 21d20 | 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 | .the.router.itself.can.be.filter |
| 21d40 | 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 | ed.and.controlled..Bear.in.mind. |
| 21d60 | 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 | that.this.traffic.can.be.a.new.c |
| 21d80 | 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e | onnection.originated.by.a.intern |
| 21da0 | 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 | al.process.running.on.VyOS.route |
| 21dc0 | 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f | r,.such.as.NTP,.or.a.response.to |
| 21de0 | 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 | .traffic.received.externally.thr |
| 21e00 | 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 | ough.**input**.(for.example.resp |
| 21e20 | 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 | onse.to.an.ssh.login.attempt.to. |
| 21e40 | 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 | the.router)..This.includes.ipv4. |
| 21e60 | 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 | and.ipv6.filtering.rules,.define |
| 21e80 | 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 | d.in:.**Output**:.stage.where.tr |
| 21ea0 | 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 | affic.that.originates.from.the.r |
| 21ec0 | 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 | outer.itself.can.be.filtered.and |
| 21ee0 | 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 | .controlled..Bear.in.mind.that.t |
| 21f00 | 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 | his.traffic.can.be.a.new.connect |
| 21f20 | 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f | ion.originated.by.a.internal.pro |
| 21f40 | 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 | cess.running.on.VyOS.router,.suc |
| 21f60 | 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 | h.as.NTP,.or.a.response.to.traff |
| 21f80 | 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 20 2a | ic.received.externally.through.* |
| 21fa0 | 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 | *input**.(for.example.response.t |
| 21fc0 | 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f | o.an.ssh.login.attempt.to.the.ro |
| 21fe0 | 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 | uter)..This.includes.ipv4.and.ip |
| 22000 | 76 36 20 72 75 6c 65 73 2c 20 61 6e 64 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 73 65 63 74 | v6.rules,.and.two.different.sect |
| 22020 | 69 6f 6e 73 20 61 72 65 20 70 72 65 73 65 6e 74 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 | ions.are.present:.**Output**:.st |
| 22040 | 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 | age.where.traffic.that.originate |
| 22060 | 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 | s.from.the.router.itself.can.be. |
| 22080 | 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e | filtered.and.controlled..Bear.in |
| 220a0 | 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 | .mind.that.this.traffic.can.be.a |
| 220c0 | 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 | .new.connection.originated.by.a. |
| 220e0 | 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 | internal.process.running.on.VyOS |
| 22100 | 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f | .router,.such.as.NTP,.or.a.respo |
| 22120 | 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c | nse.to.traffic.received.external |
| 22140 | 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 | y.through.**input**.(for.example |
| 22160 | 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 | .response.to.an.ssh.login.attemp |
| 22180 | 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 | t.to.the.router)..This.includes. |
| 221a0 | 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 | ipv4.and.ipv6.filtering.rules,.d |
| 221c0 | 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 | efined.in:.**Output**:.stage.whe |
| 221e0 | 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 | re.traffic.that.originates.from. |
| 22200 | 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 | the.router.itself.can.be.filtere |
| 22220 | 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 | d.and.controlled..Bear.in.mind.t |
| 22240 | 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f | hat.this.traffic.can.be.a.new.co |
| 22260 | 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 | nnection.originated.by.a.interna |
| 22280 | 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 | l.process.running.on.VyOS.router |
| 222a0 | 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 | ,.such.as.NTP,.or.a.response.to. |
| 222c0 | 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 79 20 74 68 72 6f 75 | traffic.received.externaly.throu |
| 222e0 | 67 68 20 2a 2a 69 6e 70 75 74 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f | gh.**inputt**.(for.example.respo |
| 22300 | 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 | nse.to.an.ssh.login.attempt.to.t |
| 22320 | 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 | he.router)..This.includes.ipv4.a |
| 22340 | 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 | nd.ipv6.filtering.rules,.defined |
| 22360 | 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 | .in:.**Output**:.stage.where.tra |
| 22380 | 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f | ffic.that.originates.from.the.ro |
| 223a0 | 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 | uter.itself.can.be.filtered.and. |
| 223c0 | 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 | controlled..Bear.in.mind.that.th |
| 223e0 | 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 | is.traffic.can.be.a.new.connecti |
| 22400 | 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 | on.originated.by.a.internal.proc |
| 22420 | 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 73 | ess.running.on.the.VyOS.router.s |
| 22440 | 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 | uch.as.NTP,.or.a.response.to.tra |
| 22460 | 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 | ffic.received.externally.through |
| 22480 | 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 | .**input**.(for.example.response |
| 224a0 | 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 | .to.an.ssh.login.attempt.to.the. |
| 224c0 | 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 | router)..This.includes.ipv4.and. |
| 224e0 | 69 70 76 36 20 72 75 6c 65 73 2c 20 61 6e 64 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 73 65 | ipv6.rules,.and.two.different.se |
| 22500 | 63 74 69 6f 6e 73 20 61 72 65 20 70 72 65 73 65 6e 74 3a 00 2a 2a 50 65 65 72 20 61 64 64 72 65 | ctions.are.present:.**Peer.addre |
| 22520 | 73 73 2a 2a 00 2a 2a 50 65 72 66 6f 72 6d 61 6e 63 65 20 4f 76 65 72 68 65 61 64 73 2a 2a 3a 20 | ss**.**Performance.Overheads**:. |
| 22540 | 54 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 20 63 61 6e 20 69 6e 74 72 | The.translation.process.can.intr |
| 22560 | 6f 64 75 63 65 20 6c 61 74 65 6e 63 79 20 61 6e 64 20 70 6f 74 65 6e 74 69 61 6c 20 70 65 72 66 | oduce.latency.and.potential.perf |
| 22580 | 6f 72 6d 61 6e 63 65 20 62 6f 74 74 6c 65 6e 65 63 6b 73 2c 20 65 73 70 65 63 69 61 6c 6c 79 20 | ormance.bottlenecks,.especially. |
| 225a0 | 75 6e 64 65 72 20 68 69 67 68 20 6c 6f 61 64 2e 00 2a 2a 50 6f 6c 69 63 79 20 52 6f 75 74 65 2a | under.high.load..**Policy.Route* |
| 225c0 | 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c | *:.rules.defined.under.``set.pol |
| 225e0 | 69 63 79 20 5b 72 6f 75 74 65 20 7c 20 72 6f 75 74 65 36 5d 20 2e 2e 2e 60 60 2e 00 2a 2a 50 6f | icy.[route.|.route6]....``..**Po |
| 22600 | 6c 69 63 79 20 64 65 66 69 6e 69 74 69 6f 6e 3a 2a 2a 00 2a 2a 50 6f 72 74 20 41 6c 6c 6f 63 61 | licy.definition:**.**Port.Alloca |
| 22620 | 74 69 6f 6e 20 4c 69 6d 69 74 73 2a 2a 3a 20 45 61 63 68 20 70 75 62 6c 69 63 20 49 50 20 61 64 | tion.Limits**:.Each.public.IP.ad |
| 22640 | 64 72 65 73 73 20 68 61 73 20 61 20 6c 69 6d 69 74 65 64 20 6e 75 6d 62 65 72 20 6f 66 20 70 6f | dress.has.a.limited.number.of.po |
| 22660 | 72 74 73 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 65 78 68 61 75 73 74 65 64 2c 20 61 66 66 | rts,.which.can.be.exhausted,.aff |
| 22680 | 65 63 74 69 6e 67 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 | ecting.the.ability.to.establish. |
| 226a0 | 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 2a 2a 50 6f 72 74 20 43 6f 6e 74 72 6f 6c 20 | new.connections..**Port.Control. |
| 226c0 | 50 72 6f 74 6f 63 6f 6c 2a 2a 3a 20 50 43 50 20 69 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 | Protocol**:.PCP.is.not.implement |
| 226e0 | 65 64 2e 00 2a 2a 50 6f 73 74 72 6f 75 74 69 6e 67 2a 2a 3a 20 61 73 20 69 6e 20 2a 2a 50 72 65 | ed..**Postrouting**:.as.in.**Pre |
| 22700 | 72 6f 75 74 69 6e 67 2a 2a 2c 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 64 65 66 69 6e | routing**,.several.actions.defin |
| 22720 | 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 6f 66 20 56 79 4f 53 20 63 6f | ed.in.different.parts.of.VyOS.co |
| 22740 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 70 65 72 66 6f 72 6d 65 64 20 69 6e 20 74 68 69 | nfiguration.are.performed.in.thi |
| 22760 | 73 20 73 74 61 67 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 3a 00 2a 2a 50 72 65 72 6f 75 | s.stage..This.includes:.**Prerou |
| 22780 | 74 69 6e 67 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 | ting.(Bridge)**:.all.packets.tha |
| 227a0 | 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 62 72 69 64 67 65 20 61 72 65 | t.are.received.by.the.bridge.are |
| 227c0 | 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 | .processed.in.this.stage,.regard |
| 227e0 | 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 | less.of.the.destination.of.the.p |
| 22800 | 61 63 6b 65 74 2e 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c | acket..First.filters.can.be.appl |
| 22820 | 69 65 64 20 68 65 72 65 2c 20 61 6e 64 2f 6f 72 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ied.here,.and/or.also.configure. |
| 22840 | 72 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 | rules.for.ignoring.connection.tr |
| 22860 | 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2c 20 61 6e 64 20 61 6c 73 6f 20 61 70 70 6c 79 20 70 6f | acking.system,.and.also.apply.po |
| 22880 | 6c 69 63 79 20 72 6f 75 74 69 6e 67 20 75 73 69 6e 67 20 60 60 73 65 74 60 60 20 6f 70 74 69 6f | licy.routing.using.``set``.optio |
| 228a0 | 6e 20 77 68 69 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 72 75 6c 65 2e 20 54 68 65 20 72 | n.while.defining.the.rule..The.r |
| 228c0 | 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 | elevant.configuration.that.acts. |
| 228e0 | 69 6e 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 61 6c 6c | in:.**Prerouting.(Bridge)**:.all |
| 22900 | 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 | .packets.that.are.received.by.th |
| 22920 | 65 20 62 72 69 64 67 65 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 | e.bridge.are.processed.in.this.s |
| 22940 | 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 | tage,.regardless.of.the.destinat |
| 22960 | 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 | ion.of.the.packet..First.filters |
| 22980 | 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 72 65 2c 20 61 6e 64 2f 6f 72 20 61 6c 73 | .can.be.applied.here,.and/or.als |
| 229a0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 72 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 | o.configure.rules.for.ignoring.c |
| 229c0 | 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 65 20 72 | onnection.tracking.system..The.r |
| 229e0 | 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 | elevant.configuration.that.acts. |
| 22a00 | 69 6e 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 | in:.**Prerouting**:.All.packets. |
| 22a20 | 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 | that.are.received.by.the.router. |
| 22a40 | 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 | are.processed.in.this.stage,.reg |
| 22a60 | 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 | ardless.of.the.destination.of.th |
| 22a80 | 65 20 70 61 63 6b 65 74 2e 20 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 | e.packet..Starting.from.vyos-1.5 |
| 22aa0 | 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 30 32 30 2c 20 61 20 6e 65 77 20 73 65 63 | -rolling-202406120020,.a.new.sec |
| 22ac0 | 74 69 6f 6e 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 | tion.was.added.to.firewall.confi |
| 22ae0 | 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 61 63 74 69 | guration..There.are.several.acti |
| 22b00 | 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 | ons.that.can.be.done.in.this.sta |
| 22b20 | 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 | ge,.and.currently.these.actions. |
| 22b40 | 61 72 65 20 61 6c 73 6f 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 | are.also.defined.in.different.pa |
| 22b60 | 72 74 73 20 69 6e 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 | rts.in.VyOS.configuration..Order |
| 22b80 | 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 | .is.important,.and.relevant.conf |
| 22ba0 | 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 | iguration.that.acts.in.this.stag |
| 22bc0 | 65 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 41 6c 6c 20 70 61 63 6b 65 | e.are:.**Prerouting**:.All.packe |
| 22be0 | 74 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 | ts.that.are.received.by.the.rout |
| 22c00 | 65 72 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 | er.are.processed.in.this.stage,. |
| 22c20 | 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 | regardless.of.the.destination.of |
| 22c40 | 20 74 68 65 20 70 61 63 6b 65 74 2e 20 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d | .the.packet..Starting.from.vyos- |
| 22c60 | 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 30 32 30 2c 20 61 20 6e 65 77 20 | 1.5-rolling-202406120020,.a.new. |
| 22c80 | 73 65 63 74 69 6f 6e 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 66 69 72 65 77 61 6c | section.was.added.to.the.firewal |
| 22ca0 | 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 | l.configuration..There.are.sever |
| 22cc0 | 61 6c 20 61 63 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 | al.actions.that.can.be.done.in.t |
| 22ce0 | 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 | his.stage,.and.currently.these.a |
| 22d00 | 63 74 69 6f 6e 73 20 61 72 65 20 61 6c 73 6f 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 | ctions.are.also.defined.in.diffe |
| 22d20 | 72 65 6e 74 20 70 61 72 74 73 20 6f 66 20 74 68 65 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 | rent.parts.of.the.VyOS.configura |
| 22d40 | 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 74 68 | tion..Order.is.important,.and.th |
| 22d60 | 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 | e.relevant.configuration.that.ac |
| 22d80 | 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 | ts.in.this.stage.are:.**Prerouti |
| 22da0 | 6e 67 2a 2a 3a 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 6f 6e | ng**:.several.actions.can.be.don |
| 22dc0 | 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 | e.in.this.stage,.and.currently.t |
| 22de0 | 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 | hese.actions.are.defined.in.diff |
| 22e00 | 65 72 65 6e 74 20 70 61 72 74 73 20 69 6e 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | erent.parts.in.VyOS.configuratio |
| 22e20 | 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 61 6c 6c 20 74 | n..Order.is.important,.and.all.t |
| 22e40 | 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 70 65 72 66 6f 72 6d 65 64 20 62 65 66 6f 72 | hese.actions.are.performed.befor |
| 22e60 | 65 20 61 6e 79 20 61 63 74 69 6f 6e 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 66 69 | e.any.actions.defined.under.``fi |
| 22e80 | 72 65 77 61 6c 6c 60 60 20 73 65 63 74 69 6f 6e 2e 20 52 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 | rewall``.section..Relevant.confi |
| 22ea0 | 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 | guration.that.acts.in.this.stage |
| 22ec0 | 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 73 65 76 65 72 61 6c 20 61 63 | .are:.**Prerouting**:.several.ac |
| 22ee0 | 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c | tions.can.be.done.in.this.stage, |
| 22f00 | 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 | .and.currently.these.actions.are |
| 22f20 | 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 69 6e 20 76 | .defined.in.different.parts.in.v |
| 22f40 | 79 6f 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f | yos.configuration..Order.is.impo |
| 22f60 | 72 74 61 6e 74 2c 20 61 6e 64 20 61 6c 6c 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 | rtant,.and.all.these.actions.are |
| 22f80 | 20 70 65 72 66 6f 72 6d 65 64 20 62 65 66 6f 72 65 20 61 6e 79 20 61 63 74 69 6f 6e 73 20 64 65 | .performed.before.any.actions.de |
| 22fa0 | 66 69 6e 65 20 75 6e 64 65 72 20 60 60 66 69 72 65 77 61 6c 6c 60 60 20 73 65 63 74 69 6f 6e 2e | fine.under.``firewall``.section. |
| 22fc0 | 20 52 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 | .Relevant.configuration.that.act |
| 22fe0 | 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a 2a 50 72 69 6d 61 72 79 2a 2a | s.in.this.stage.are:.**Primary** |
| 23000 | 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 2a 2a 20 46 61 69 72 2f 46 6c | .**Queueing.discipline**.Fair/Fl |
| 23020 | 6f 77 20 51 75 65 75 65 20 43 6f 44 65 6c 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 | ow.Queue.CoDel..**Queueing.disci |
| 23040 | 70 6c 69 6e 65 3a 2a 2a 20 44 65 66 69 63 69 74 20 52 6f 75 6e 64 20 52 6f 62 69 6e 2e 00 2a 2a | pline:**.Deficit.Round.Robin..** |
| 23060 | 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 44 65 66 69 63 69 74 20 6d | Queueing.discipline:**.Deficit.m |
| 23080 | 6f 64 65 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 47 65 | ode..**Queueing.discipline:**.Ge |
| 230a0 | 6e 65 72 61 6c 69 7a 65 64 20 52 61 6e 64 6f 6d 20 45 61 72 6c 79 20 44 72 6f 70 2e 00 2a 2a 51 | neralized.Random.Early.Drop..**Q |
| 230c0 | 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 48 69 65 72 61 72 63 68 69 63 | ueueing.discipline:**.Hierarchic |
| 230e0 | 61 6c 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 | al.Token.Bucket..**Queueing.disc |
| 23100 | 69 70 6c 69 6e 65 3a 2a 2a 20 49 6e 67 72 65 73 73 20 70 6f 6c 69 63 65 72 2e 00 2a 2a 51 75 65 | ipline:**.Ingress.policer..**Que |
| 23120 | 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 50 46 49 46 4f 20 28 50 61 63 6b 65 | ueing.discipline:**.PFIFO.(Packe |
| 23140 | 74 20 46 69 72 73 74 20 49 6e 20 46 69 72 73 74 20 4f 75 74 29 2e 00 2a 2a 51 75 65 75 65 69 6e | t.First.In.First.Out)..**Queuein |
| 23160 | 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 50 52 49 4f 2e 00 2a 2a 51 75 65 75 65 69 6e 67 | g.discipline:**.PRIO..**Queueing |
| 23180 | 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 53 46 51 20 28 53 74 6f 63 68 61 73 74 69 63 20 46 | .discipline:**.SFQ.(Stochastic.F |
| 231a0 | 61 69 72 6e 65 73 73 20 51 75 65 75 69 6e 67 29 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 | airness.Queuing)..**Queueing.dis |
| 231c0 | 63 69 70 6c 69 6e 65 3a 2a 2a 20 54 6f 63 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 2e | cipline:**.Tocken.Bucket.Filter. |
| 231e0 | 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 54 6f 6b 65 6e 20 | .**Queueing.discipline:**.Token. |
| 23200 | 42 75 63 6b 65 74 20 46 69 6c 74 65 72 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 | Bucket.Filter..**Queueing.discip |
| 23220 | 6c 69 6e 65 3a 2a 2a 20 6e 65 74 65 6d 20 28 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 29 | line:**.netem.(Network.Emulator) |
| 23240 | 20 2b 20 54 42 46 20 28 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 29 2e 00 2a 2a | .+.TBF.(Token.Bucket.Filter)..** |
| 23260 | 52 31 20 4d 41 43 73 65 63 30 31 2a 2a 00 2a 2a 52 31 20 53 74 61 74 69 63 20 4b 65 79 2a 2a 00 | R1.MACsec01**.**R1.Static.Key**. |
| 23280 | 2a 2a 52 31 2a 2a 00 2a 2a 52 32 20 4d 41 43 73 65 63 30 32 2a 2a 00 2a 2a 52 32 20 53 74 61 74 | **R1**.**R2.MACsec02**.**R2.Stat |
| 232a0 | 69 63 20 4b 65 79 2a 2a 00 2a 2a 52 32 2a 2a 00 2a 2a 52 41 44 49 55 53 20 62 61 73 65 64 20 49 | ic.Key**.**R2**.**RADIUS.based.I |
| 232c0 | 50 20 70 6f 6f 6c 73 20 28 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 29 2a 2a 00 2a 2a | P.pools.(Framed-IP-Address)**.** |
| 232e0 | 52 41 44 49 55 53 20 73 65 73 73 69 6f 6e 73 20 6d 61 6e 61 67 65 6d 65 6e 74 20 44 4d 2f 43 6f | RADIUS.sessions.management.DM/Co |
| 23300 | 41 2a 2a 00 2a 2a 52 49 47 48 54 2a 2a 00 2a 2a 52 49 47 48 54 3a 2a 2a 20 2a 20 57 41 4e 20 69 | A**.**RIGHT**.**RIGHT:**.*.WAN.i |
| 23320 | 6e 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 68 30 2e 32 30 32 60 20 2a 20 60 65 74 68 30 2e 32 | nterface.on.`eth0.202`.*.`eth0.2 |
| 23340 | 30 31 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 37 32 2e 31 38 2e 32 30 32 2e 31 30 | 01`.interface.IP:.`172.18.202.10 |
| 23360 | 2f 32 34 60 20 2a 20 60 76 74 69 31 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 | /24`.*.`vti10`.interface.IP:.`10 |
| 23380 | 2e 30 2e 30 2e 33 2f 33 31 60 20 2a 20 60 64 75 6d 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 | .0.0.3/31`.*.`dum0`.interface.IP |
| 233a0 | 3a 20 60 31 30 2e 30 2e 31 32 2e 31 2f 32 34 60 20 28 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 | :.`10.0.12.1/24`.(for.testing.pu |
| 233c0 | 72 70 6f 73 65 73 29 00 2a 2a 52 6f 75 74 65 72 20 31 2a 2a 00 2a 2a 52 6f 75 74 65 72 20 32 2a | rposes).**Router.1**.**Router.2* |
| 233e0 | 2a 00 2a 2a 52 6f 75 74 65 72 20 33 2a 2a 00 2a 2a 52 6f 75 74 65 72 2d 49 44 20 63 68 65 63 6b | *.**Router.3**.**Router-ID.check |
| 23400 | 2a 2a 00 2a 2a 52 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 61 66 74 65 72 20 72 6f 75 74 69 6e | **.**Routes.learned.after.routin |
| 23420 | 67 20 70 6f 6c 69 63 79 20 61 70 70 6c 69 65 64 3a 2a 2a 00 2a 2a 52 6f 75 74 65 73 20 6c 65 61 | g.policy.applied:**.**Routes.lea |
| 23440 | 72 6e 65 64 20 62 65 66 6f 72 65 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 20 61 70 70 6c 69 | rned.before.routing.policy.appli |
| 23460 | 65 64 3a 2a 2a 00 2a 2a 53 57 31 2a 2a 00 2a 2a 53 57 32 2a 2a 00 2a 2a 53 63 61 6c 61 62 69 6c | ed:**.**SW1**.**SW2**.**Scalabil |
| 23480 | 69 74 79 2a 2a 3a 20 49 53 50 73 20 63 61 6e 20 73 75 70 70 6f 72 74 20 6d 6f 72 65 20 63 75 73 | ity**:.ISPs.can.support.more.cus |
| 234a0 | 74 6f 6d 65 72 73 20 77 69 74 68 6f 75 74 20 6e 65 65 64 69 6e 67 20 61 20 70 72 6f 70 6f 72 74 | tomers.without.needing.a.proport |
| 234c0 | 69 6f 6e 61 6c 20 69 6e 63 72 65 61 73 65 20 69 6e 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 | ional.increase.in.public.IP.addr |
| 234e0 | 65 73 73 65 73 2e 00 2a 2a 53 65 63 6f 6e 64 61 72 79 2a 2a 00 2a 2a 53 65 74 74 69 6e 67 20 75 | esses..**Secondary**.**Setting.u |
| 23500 | 70 20 49 50 53 65 63 2a 2a 00 2a 2a 53 65 74 74 69 6e 67 20 75 70 20 74 68 65 20 47 52 45 20 74 | p.IPSec**.**Setting.up.the.GRE.t |
| 23520 | 75 6e 6e 65 6c 2a 2a 00 2a 2a 53 6f 75 72 63 65 20 4e 41 54 2a 2a 3a 20 72 75 6c 65 73 20 64 65 | unnel**.**Source.NAT**:.rules.de |
| 23540 | 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 5b 6e 61 74 20 7c 20 6e 61 74 36 36 5d 20 | fined.under.``set.[nat.|.nat66]. |
| 23560 | 64 65 73 74 69 6e 61 74 69 6f 6e 2e 2e 2e 60 60 2e 00 2a 2a 53 70 69 6e 65 31 20 43 6f 6e 66 69 | destination...``..**Spine1.Confi |
| 23580 | 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 2a 2a 53 74 61 74 75 73 2a 2a 00 2a 2a 54 6f 20 73 65 65 20 | guration:**.**Status**.**To.see. |
| 235a0 | 74 68 65 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 3a 2a 2a 00 2a 2a 54 6f | the.redistributed.routes:**.**To |
| 235c0 | 74 61 6c 20 50 6f 72 74 73 20 41 76 61 69 6c 61 62 6c 65 2a 2a 3a 00 2a 2a 54 72 61 63 65 61 62 | tal.Ports.Available**:.**Traceab |
| 235e0 | 69 6c 69 74 79 20 49 73 73 75 65 73 2a 2a 3a 20 53 69 6e 63 65 20 6d 75 6c 74 69 70 6c 65 20 75 | ility.Issues**:.Since.multiple.u |
| 23600 | 73 65 72 73 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 | sers.share.the.same.public.IP.ad |
| 23620 | 64 72 65 73 73 2c 20 74 72 61 63 6b 69 6e 67 20 69 6e 64 69 76 69 64 75 61 6c 20 75 73 65 72 73 | dress,.tracking.individual.users |
| 23640 | 20 66 6f 72 20 73 65 63 75 72 69 74 79 20 61 6e 64 20 6c 65 67 61 6c 20 70 75 72 70 6f 73 65 73 | .for.security.and.legal.purposes |
| 23660 | 20 63 61 6e 20 62 65 20 63 68 61 6c 6c 65 6e 67 69 6e 67 2e 00 2a 2a 54 77 6f 20 67 61 74 65 77 | .can.be.challenging..**Two.gatew |
| 23680 | 61 79 73 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 20 6d 65 74 72 69 63 73 3a 2a 2a 00 2a 2a 56 | ays.and.different.metrics:**.**V |
| 236a0 | 4c 41 4e 20 49 44 2a 2a 00 2a 2a 56 79 4f 53 20 52 6f 75 74 65 72 3a 2a 2a 00 2a 2a 57 65 69 67 | LAN.ID**.**VyOS.Router:**.**Weig |
| 236c0 | 68 74 20 63 68 65 63 6b 2a 2a 00 2a 2a 61 64 64 72 65 73 73 2a 2a 20 63 61 6e 20 62 65 20 73 70 | ht.check**.**address**.can.be.sp |
| 236e0 | 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 20 61 73 20 49 50 76 34 20 61 | ecified.multiple.times.as.IPv4.a |
| 23700 | 6e 64 2f 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 65 2e 67 2e 20 31 39 32 2e 30 2e 32 | nd/or.IPv6.address,.e.g..192.0.2 |
| 23720 | 2e 31 2f 32 34 20 61 6e 64 2f 6f 72 20 32 30 30 31 3a 64 62 38 3a 3a 31 2f 36 34 00 2a 2a 61 64 | .1/24.and/or.2001:db8::1/64.**ad |
| 23740 | 64 72 65 73 73 2a 2a 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c | dress**.can.be.specified.multipl |
| 23760 | 65 20 74 69 6d 65 73 2c 20 65 2e 67 2e 20 31 39 32 2e 31 36 38 2e 31 30 30 2e 31 20 61 6e 64 2f | e.times,.e.g..192.168.100.1.and/ |
| 23780 | 6f 72 20 31 39 32 2e 31 36 38 2e 31 30 30 2e 30 2f 32 34 00 2a 2a 61 6c 6c 6f 77 2a 2a 20 2d 20 | or.192.168.100.0/24.**allow**.-. |
| 237a0 | 4e 65 67 6f 74 69 61 74 65 20 49 50 76 34 20 6f 6e 6c 79 20 69 66 20 63 6c 69 65 6e 74 20 72 65 | Negotiate.IPv4.only.if.client.re |
| 237c0 | 71 75 65 73 74 73 20 28 44 65 66 61 75 6c 74 20 76 61 6c 75 65 29 00 2a 2a 61 6c 6c 6f 77 2a 2a | quests.(Default.value).**allow** |
| 237e0 | 20 2d 20 4e 65 67 6f 74 69 61 74 65 20 49 50 76 36 20 6f 6e 6c 79 20 69 66 20 63 6c 69 65 6e 74 | .-.Negotiate.IPv6.only.if.client |
| 23800 | 20 72 65 71 75 65 73 74 73 00 2a 2a 61 6c 6c 6f 77 2d 68 6f 73 74 2d 6e 65 74 77 6f 72 6b 73 2a | .requests.**allow-host-networks* |
| 23820 | 2a 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 2a 2a 6e 65 74 77 6f 72 6b 2a | *.cannot.be.used.with.**network* |
| 23840 | 2a 00 2a 2a 61 6c 77 61 79 73 2a 2a 3a 20 52 65 73 74 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 73 | *.**always**:.Restart.containers |
| 23860 | 20 77 68 65 6e 20 74 68 65 79 20 65 78 69 74 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 73 | .when.they.exit,.regardless.of.s |
| 23880 | 74 61 74 75 73 2c 20 72 65 74 72 79 69 6e 67 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 00 2a 2a 61 | tatus,.retrying.indefinitely.**a |
| 238a0 | 70 70 65 6e 64 3a 2a 2a 20 54 68 65 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 73 20 61 6c 6c 6f | ppend:**.The.relay.agent.is.allo |
| 238c0 | 77 65 64 20 74 6f 20 61 70 70 65 6e 64 20 69 74 73 20 6f 77 6e 20 72 65 6c 61 79 20 69 6e 66 6f | wed.to.append.its.own.relay.info |
| 238e0 | 72 6d 61 74 69 6f 6e 20 74 6f 20 61 20 72 65 63 65 69 76 65 64 20 44 48 43 50 20 70 61 63 6b 65 | rmation.to.a.received.DHCP.packe |
| 23900 | 74 2c 20 64 69 73 72 65 67 61 72 64 69 6e 67 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f | t,.disregarding.relay.informatio |
| 23920 | 6e 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 2e | n.already.present.in.the.packet. |
| 23940 | 00 2a 2a 61 70 70 6c 69 63 61 74 69 6f 6e 2a 2a 3a 20 61 6e 61 6c 79 7a 65 73 20 72 65 63 65 69 | .**application**:.analyzes.recei |
| 23960 | 76 65 64 20 66 6c 6f 77 20 64 61 74 61 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 | ved.flow.data.in.the.context.of. |
| 23980 | 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 6f 72 20 74 72 61 66 66 69 63 20 70 | intrusion.detection.or.traffic.p |
| 239a0 | 72 6f 66 69 6c 69 6e 67 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 00 2a 2a 61 75 74 6f 2a 2a 20 e2 | rofiling,.for.example.**auto**.. |
| 239c0 | 80 93 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 | ...automatically.determines.the. |
| 239e0 | 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 2e 20 2a 2a 77 69 72 65 64 2a 2a 20 e2 80 93 20 65 6e | interface.type..**wired**.....en |
| 23a00 | 61 62 6c 65 73 20 6f 70 74 69 6d 69 73 61 74 69 6f 6e 73 20 66 6f 72 20 77 69 72 65 64 20 69 6e | ables.optimisations.for.wired.in |
| 23a20 | 74 65 72 66 61 63 65 73 2e 20 2a 2a 77 69 72 65 6c 65 73 73 2a 2a 20 e2 80 93 20 64 69 73 61 62 | terfaces..**wireless**.....disab |
| 23a40 | 6c 65 73 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 6f 70 74 69 6d 69 73 61 74 69 6f 6e 73 20 74 68 | les.a.number.of.optimisations.th |
| 23a60 | 61 74 20 61 72 65 20 6f 6e 6c 79 20 63 6f 72 72 65 63 74 20 6f 6e 20 77 69 72 65 64 20 69 6e 74 | at.are.only.correct.on.wired.int |
| 23a80 | 65 72 66 61 63 65 73 2e 20 53 70 65 63 69 66 79 69 6e 67 20 77 69 72 65 6c 65 73 73 20 69 73 20 | erfaces..Specifying.wireless.is. |
| 23aa0 | 61 6c 77 61 79 73 20 63 6f 72 72 65 63 74 2c 20 62 75 74 20 6d 61 79 20 63 61 75 73 65 20 73 6c | always.correct,.but.may.cause.sl |
| 23ac0 | 6f 77 65 72 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 61 6e 64 20 65 78 74 72 61 20 72 6f 75 74 69 | ower.convergence.and.extra.routi |
| 23ae0 | 6e 67 20 74 72 61 66 66 69 63 2e 00 2a 2a 62 61 6e 2d 74 69 6d 65 2a 2a 20 61 6e 64 20 2a 2a 74 | ng.traffic..**ban-time**.and.**t |
| 23b00 | 68 72 65 73 68 6f 6c 64 2a 2a 3a 20 74 68 65 73 65 20 76 61 6c 75 65 73 20 61 72 65 20 6b 65 70 | hreshold**:.these.values.are.kep |
| 23b20 | 74 20 76 65 72 79 20 6c 6f 77 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 65 61 73 69 6c 79 20 69 64 | t.very.low.in.order.to.easily.id |
| 23b40 | 65 6e 74 69 66 79 20 61 6e 64 20 67 65 6e 65 72 61 74 65 20 61 6e 64 20 61 74 74 61 63 6b 2e 00 | entify.and.generate.and.attack.. |
| 23b60 | 2a 2a 62 72 6f 61 64 63 61 73 74 2a 2a 20 e2 80 93 20 62 72 6f 61 64 63 61 73 74 20 49 50 20 61 | **broadcast**.....broadcast.IP.a |
| 23b80 | 64 64 72 65 73 73 65 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 2a 2a 6e 6f 6e 2d 62 72 6f | ddresses.distribution..**non-bro |
| 23ba0 | 61 64 63 61 73 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f | adcast**.....address.distributio |
| 23bc0 | 6e 20 69 6e 20 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 73 20 74 6f 70 6f 6c 6f 67 79 2e 20 2a 2a 70 | n.in.NBMA.networks.topology..**p |
| 23be0 | 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 73 | oint-to-multipoint**.....address |
| 23c00 | 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 | .distribution.in.point-to-multip |
| 23c20 | 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 20 2a 2a 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 2a | oint.networks..**point-to-point* |
| 23c40 | 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f | *.....address.distribution.in.po |
| 23c60 | 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 00 2a 2a 62 72 6f 61 64 63 61 | int-to-point.networks..**broadca |
| 23c80 | 73 74 2a 2a 20 e2 80 93 20 62 72 6f 61 64 63 61 73 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 | st**.....broadcast.IP.addresses. |
| 23ca0 | 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 2a 2a 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 2a 2a | distribution..**point-to-point** |
| 23cc0 | 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 | .....address.distribution.in.poi |
| 23ce0 | 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 00 2a 2a 63 61 6c 6c 69 6e 67 2d | nt-to-point.networks..**calling- |
| 23d00 | 73 69 64 2a 2a 20 2d 20 43 61 6c 63 75 6c 61 74 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e | sid**.-.Calculate.interface.iden |
| 23d20 | 74 69 66 69 65 72 20 66 72 6f 6d 20 63 61 6c 6c 69 6e 67 2d 73 74 61 74 69 6f 6e 2d 69 64 2e 00 | tifier.from.calling-station-id.. |
| 23d40 | 2a 2a 63 69 73 63 6f 2a 2a 20 e2 80 93 20 61 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 62 65 20 63 | **cisco**.....a.router.will.be.c |
| 23d60 | 6f 6e 73 69 64 65 72 65 64 20 61 73 20 41 42 52 20 69 66 20 69 74 20 68 61 73 20 73 65 76 65 72 | onsidered.as.ABR.if.it.has.sever |
| 23d80 | 61 6c 20 63 6f 6e 66 69 67 75 72 65 64 20 6c 69 6e 6b 73 20 74 6f 20 74 68 65 20 6e 65 74 77 6f | al.configured.links.to.the.netwo |
| 23da0 | 72 6b 73 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 61 72 65 61 73 20 6f 6e 65 20 6f 66 20 77 68 | rks.in.different.areas.one.of.wh |
| 23dc0 | 69 63 68 20 69 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 4d 6f 72 65 6f 76 65 72 | ich.is.a.backbone.area..Moreover |
| 23de0 | 2c 20 74 68 65 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 | ,.the.link.to.the.backbone.area. |
| 23e00 | 73 68 6f 75 6c 64 20 62 65 20 61 63 74 69 76 65 20 28 77 6f 72 6b 69 6e 67 29 2e 20 2a 2a 69 62 | should.be.active.(working)..**ib |
| 23e20 | 6d 2a 2a 20 e2 80 93 20 69 64 65 6e 74 69 63 61 6c 20 74 6f 20 22 63 69 73 63 6f 22 20 6d 6f 64 | m**.....identical.to."cisco".mod |
| 23e40 | 65 6c 20 62 75 74 20 69 6e 20 74 68 69 73 20 63 61 73 65 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 | el.but.in.this.case.a.backbone.a |
| 23e60 | 72 65 61 20 6c 69 6e 6b 20 6d 61 79 20 6e 6f 74 20 62 65 20 61 63 74 69 76 65 2e 20 2a 2a 73 74 | rea.link.may.not.be.active..**st |
| 23e80 | 61 6e 64 61 72 64 2a 2a 20 e2 80 93 20 72 6f 75 74 65 72 20 68 61 73 20 73 65 76 65 72 61 6c 20 | andard**.....router.has.several. |
| 23ea0 | 61 63 74 69 76 65 20 6c 69 6e 6b 73 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 61 72 65 61 73 2e | active.links.to.different.areas. |
| 23ec0 | 20 2a 2a 73 68 6f 72 74 63 75 74 2a 2a 20 e2 80 93 20 69 64 65 6e 74 69 63 61 6c 20 74 6f 20 22 | .**shortcut**.....identical.to." |
| 23ee0 | 73 74 61 6e 64 61 72 64 22 20 62 75 74 20 69 6e 20 74 68 69 73 20 6d 6f 64 65 6c 20 61 20 72 6f | standard".but.in.this.model.a.ro |
| 23f00 | 75 74 65 72 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 75 73 65 20 61 20 63 6f 6e 6e 65 63 74 | uter.is.allowed.to.use.a.connect |
| 23f20 | 65 64 20 61 72 65 61 73 20 74 6f 70 6f 6c 6f 67 79 20 77 69 74 68 6f 75 74 20 69 6e 76 6f 6c 76 | ed.areas.topology.without.involv |
| 23f40 | 69 6e 67 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 66 6f 72 20 69 6e 74 65 72 2d 61 72 | ing.a.backbone.area.for.inter-ar |
| 23f60 | 65 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 2a 2a 63 6f 6c 6c 65 63 74 6f 72 2a 2a 3a 20 72 | ea.connections..**collector**:.r |
| 23f80 | 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 72 65 63 65 70 74 69 6f 6e 2c 20 73 74 6f 72 61 67 | esponsible.for.reception,.storag |
| 23fa0 | 65 20 61 6e 64 20 70 72 65 2d 70 72 6f 63 65 73 73 69 6e 67 20 6f 66 20 66 6c 6f 77 20 64 61 74 | e.and.pre-processing.of.flow.dat |
| 23fc0 | 61 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 00 | a.received.from.a.flow.exporter. |
| 23fe0 | 2a 2a 64 65 66 61 75 6c 74 2a 2a 20 e2 80 93 20 20 74 68 69 73 20 61 72 65 61 20 77 69 6c 6c 20 | **default**......this.area.will. |
| 24000 | 62 65 20 75 73 65 64 20 66 6f 72 20 73 68 6f 72 74 63 75 74 74 69 6e 67 20 6f 6e 6c 79 20 69 66 | be.used.for.shortcutting.only.if |
| 24020 | 20 41 42 52 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 6c 69 6e 6b 20 74 6f 20 74 68 65 | .ABR.does.not.have.a.link.to.the |
| 24040 | 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 6f 72 20 74 68 69 73 20 6c 69 6e 6b 20 77 61 73 20 | .backbone.area.or.this.link.was. |
| 24060 | 6c 6f 73 74 2e 20 2a 2a 65 6e 61 62 6c 65 2a 2a 20 e2 80 93 20 74 68 65 20 61 72 65 61 20 77 69 | lost..**enable**.....the.area.wi |
| 24080 | 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 68 6f 72 74 63 75 74 74 69 6e 67 20 65 76 65 72 | ll.be.used.for.shortcutting.ever |
| 240a0 | 79 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 74 68 61 74 20 67 6f 65 73 20 74 68 72 6f 75 | y.time.the.route.that.goes.throu |
| 240c0 | 67 68 20 69 74 20 69 73 20 63 68 65 61 70 65 72 2e 20 2a 2a 64 69 73 61 62 6c 65 2a 2a 20 e2 80 | gh.it.is.cheaper..**disable**... |
| 240e0 | 93 20 74 68 69 73 20 61 72 65 61 20 69 73 20 6e 65 76 65 72 20 75 73 65 64 20 62 79 20 41 42 52 | ..this.area.is.never.used.by.ABR |
| 24100 | 20 66 6f 72 20 72 6f 75 74 65 73 20 73 68 6f 72 74 63 75 74 74 69 6e 67 2e 00 2a 2a 64 65 66 61 | .for.routes.shortcutting..**defa |
| 24120 | 75 6c 74 2a 2a 20 e2 80 93 20 65 6e 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f | ult**.....enable.split-horizon.o |
| 24140 | 6e 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 61 6e 64 20 64 69 73 61 62 6c 65 20 | n.wired.interfaces,.and.disable. |
| 24160 | 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 | split-horizon.on.wireless.interf |
| 24180 | 61 63 65 73 2e 20 2a 2a 65 6e 61 62 6c 65 2a 2a 20 e2 80 93 20 65 6e 61 62 6c 65 20 73 70 6c 69 | aces..**enable**.....enable.spli |
| 241a0 | 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 73 2e 20 2a 2a | t-horizon.on.this.interfaces..** |
| 241c0 | 64 69 73 61 62 6c 65 2a 2a 20 e2 80 93 20 64 69 73 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 | disable**.....disable.split-hori |
| 241e0 | 7a 6f 6e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 2a 2a 64 65 6e 79 2a 2a | zon.on.this.interfaces..**deny** |
| 24200 | 20 2d 20 44 6f 20 6e 6f 74 20 6e 65 67 6f 74 69 61 74 65 20 49 50 76 34 00 2a 2a 64 65 6e 79 2a | .-.Do.not.negotiate.IPv4.**deny* |
| 24220 | 2a 20 2d 20 44 6f 20 6e 6f 74 20 6e 65 67 6f 74 69 61 74 65 20 49 50 76 36 20 28 64 65 66 61 75 | *.-.Do.not.negotiate.IPv6.(defau |
| 24240 | 6c 74 20 76 61 6c 75 65 29 00 2a 2a 64 65 6e 79 2a 2a 20 2d 20 64 65 6e 79 20 6d 70 70 65 00 2a | lt.value).**deny**.-.deny.mppe.* |
| 24260 | 2a 64 65 6e 79 2a 2a 3a 20 44 65 6e 79 20 73 65 63 6f 6e 64 20 73 65 73 73 69 6f 6e 20 61 75 74 | *deny**:.Deny.second.session.aut |
| 24280 | 68 6f 72 69 7a 61 74 69 6f 6e 2e 00 2a 2a 64 65 73 74 69 6e 61 74 69 6f 6e 2a 2a 20 2d 20 73 70 | horization..**destination**.-.sp |
| 242a0 | 65 63 69 66 79 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 | ecify.which.packets.the.translat |
| 242c0 | 69 6f 6e 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 2c 20 6f 6e 6c 79 20 62 61 73 | ion.will.be.applied.to,.only.bas |
| 242e0 | 65 64 20 6f 6e 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e | ed.on.the.destination.address.an |
| 24300 | 64 2f 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 2a 2a 64 | d/or.port.number.configured..**d |
| 24320 | 68 63 70 2a 2a 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 69 73 20 72 65 63 65 69 | hcp**.interface.address.is.recei |
| 24340 | 76 65 64 20 62 79 20 44 48 43 50 20 66 72 6f 6d 20 61 20 44 48 43 50 20 73 65 72 76 65 72 20 6f | ved.by.DHCP.from.a.DHCP.server.o |
| 24360 | 6e 20 74 68 69 73 20 73 65 67 6d 65 6e 74 2e 00 2a 2a 64 68 63 70 76 36 2a 2a 20 69 6e 74 65 72 | n.this.segment..**dhcpv6**.inter |
| 24380 | 66 61 63 65 20 61 64 64 72 65 73 73 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 44 48 43 50 | face.address.is.received.by.DHCP |
| 243a0 | 76 36 20 66 72 6f 6d 20 61 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 6f 6e 20 74 68 69 73 20 | v6.from.a.DHCPv6.server.on.this. |
| 243c0 | 73 65 67 6d 65 6e 74 2e 00 2a 2a 64 69 73 61 62 6c 65 2a 2a 3a 20 44 69 73 61 62 6c 65 73 20 73 | segment..**disable**:.Disables.s |
| 243e0 | 65 73 73 69 6f 6e 20 63 6f 6e 74 72 6f 6c 2e 00 2a 2a 64 69 73 63 61 72 64 3a 2a 2a 20 52 65 63 | ession.control..**discard:**.Rec |
| 24400 | 65 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 68 69 63 68 20 61 6c 72 65 61 64 79 20 63 6f 6e 74 | eived.packets.which.already.cont |
| 24420 | 61 69 6e 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 69 | ain.relay.information.will.be.di |
| 24440 | 73 63 61 72 64 65 64 2e 00 2a 2a 64 6f 77 6e 73 74 72 65 61 6d 3a 2a 2a 20 44 6f 77 6e 73 74 72 | scarded..**downstream:**.Downstr |
| 24460 | 65 61 6d 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 74 68 65 20 64 | eam.network.interfaces.are.the.d |
| 24480 | 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 74 68 65 20 64 65 | istribution.interfaces.to.the.de |
| 244a0 | 73 74 69 6e 61 74 69 6f 6e 20 6e 65 74 77 6f 72 6b 73 2c 20 77 68 65 72 65 20 6d 75 6c 74 69 63 | stination.networks,.where.multic |
| 244c0 | 61 73 74 20 63 6c 69 65 6e 74 73 20 63 61 6e 20 6a 6f 69 6e 20 67 72 6f 75 70 73 20 61 6e 64 20 | ast.clients.can.join.groups.and. |
| 244e0 | 72 65 63 65 69 76 65 20 6d 75 6c 74 69 63 61 73 74 20 64 61 74 61 2e 20 4f 6e 65 20 6f 72 20 6d | receive.multicast.data..One.or.m |
| 24500 | 6f 72 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 73 20 6d 75 73 74 20 62 | ore.downstream.interfaces.must.b |
| 24520 | 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 2a 2a 65 78 70 6f 72 74 65 72 2a 2a 3a 20 61 67 67 72 | e.configured..**exporter**:.aggr |
| 24540 | 65 67 61 74 65 73 20 70 61 63 6b 65 74 73 20 69 6e 74 6f 20 66 6c 6f 77 73 20 61 6e 64 20 65 78 | egates.packets.into.flows.and.ex |
| 24560 | 70 6f 72 74 73 20 66 6c 6f 77 20 72 65 63 6f 72 64 73 20 74 6f 77 61 72 64 73 20 6f 6e 65 20 6f | ports.flow.records.towards.one.o |
| 24580 | 72 20 6d 6f 72 65 20 66 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 73 00 2a 2a 66 69 72 65 77 61 6c | r.more.flow.collectors.**firewal |
| 245a0 | 6c 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 61 66 66 65 63 74 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 | l.all-ping**.affects.only.to.LOC |
| 245c0 | 41 4c 20 61 6e 64 20 69 74 20 61 6c 77 61 79 73 20 62 65 68 61 76 65 73 20 69 6e 20 74 68 65 20 | AL.and.it.always.behaves.in.the. |
| 245e0 | 6d 6f 73 74 20 72 65 73 74 72 69 63 74 69 76 65 20 77 61 79 00 2a 2a 66 69 72 65 77 61 6c 6c 20 | most.restrictive.way.**firewall. |
| 24600 | 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 61 66 66 65 63 74 | global-options.all-ping**.affect |
| 24620 | 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 41 4c 20 61 6e 64 20 69 74 20 61 6c 77 61 79 73 20 62 65 | s.only.to.LOCAL.and.it.always.be |
| 24640 | 68 61 76 65 73 20 69 6e 20 74 68 65 20 6d 6f 73 74 20 72 65 73 74 72 69 63 74 69 76 65 20 77 61 | haves.in.the.most.restrictive.wa |
| 24660 | 79 00 2a 2a 66 6f 72 77 61 72 64 3a 2a 2a 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 61 72 65 20 66 | y.**forward:**.All.packets.are.f |
| 24680 | 6f 72 77 61 72 64 65 64 2c 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6c 72 65 | orwarded,.relay.information.alre |
| 246a0 | 61 64 79 20 70 72 65 73 65 6e 74 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2e 00 2a 2a 69 | ady.present.will.be.ignored..**i |
| 246c0 | 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 | nbound-interface**.-.applicable. |
| 246e0 | 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 20 | only.to.:ref:`destination-nat`.. |
| 24700 | 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 | It.configures.the.interface.whic |
| 24720 | 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 69 6e 73 69 64 65 20 74 72 61 66 66 69 63 | h.is.used.for.the.inside.traffic |
| 24740 | 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f | .the.translation.rule.applies.to |
| 24760 | 2e 00 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 | ..**inbound-interface**.-.applic |
| 24780 | 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e | able.only.to.:ref:`destination-n |
| 247a0 | 61 74 60 2e 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | at`..It.configures.the.interface |
| 247c0 | 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 69 6e 73 69 64 65 20 74 72 | .which.is.used.for.the.inside.tr |
| 247e0 | 61 66 66 69 63 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 | affic.the.translation.rule.appli |
| 24800 | 65 73 20 74 6f 2e 20 49 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 73 2c 20 69 6e 76 65 72 74 65 | es.to..Interface.groups,.inverte |
| 24820 | 64 20 73 65 6c 65 63 74 69 6f 6e 20 61 6e 64 20 77 69 6c 64 63 61 72 64 2c 20 61 72 65 20 61 6c | d.selection.and.wildcard,.are.al |
| 24840 | 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 2a 2a 69 70 76 34 2d 61 64 64 72 2a 2a 20 2d 20 43 61 | so.supported..**ipv4-addr**.-.Ca |
| 24860 | 6c 63 75 6c 61 74 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 72 6f | lculate.interface.identifier.fro |
| 24880 | 6d 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 00 2a 2a 6c 32 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 | m.IPv4.address..**l2**:.It.means |
| 248a0 | 20 74 68 61 74 20 63 6c 69 65 6e 74 73 20 61 72 65 20 6f 6e 20 73 61 6d 65 20 6e 65 74 77 6f 72 | .that.clients.are.on.same.networ |
| 248c0 | 6b 20 77 68 65 72 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 2e 2a 2a 28 64 65 66 61 75 6c 74 29 | k.where.interface.is.**(default) |
| 248e0 | 2a 2a 00 2a 2a 6c 33 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 63 6c 69 65 6e 74 20 | **.**l3**:.It.means.that.client. |
| 24900 | 61 72 65 20 62 65 68 69 6e 64 20 73 6f 6d 65 20 72 6f 75 74 65 72 2e 00 2a 2a 6c 61 79 65 72 32 | are.behind.some.router..**layer2 |
| 24920 | 2a 2a 20 2d 20 55 73 65 73 20 58 4f 52 20 6f 66 20 68 61 72 64 77 61 72 65 20 4d 41 43 20 61 64 | **.-.Uses.XOR.of.hardware.MAC.ad |
| 24940 | 64 72 65 73 73 65 73 20 61 6e 64 20 70 61 63 6b 65 74 20 74 79 70 65 20 49 44 20 66 69 65 6c 64 | dresses.and.packet.type.ID.field |
| 24960 | 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 65 20 66 6f 72 6d 75 | .to.generate.the.hash..The.formu |
| 24980 | 6c 61 20 69 73 00 2a 2a 6c 61 79 65 72 32 2b 33 2a 2a 20 2d 20 54 68 69 73 20 70 6f 6c 69 63 79 | la.is.**layer2+3**.-.This.policy |
| 249a0 | 20 75 73 65 73 20 61 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 6f 66 20 6c 61 79 65 72 32 20 61 6e | .uses.a.combination.of.layer2.an |
| 249c0 | 64 20 6c 61 79 65 72 33 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f | d.layer3.protocol.information.to |
| 249e0 | 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 55 73 65 73 20 58 4f 52 20 6f 66 20 | .generate.the.hash..Uses.XOR.of. |
| 24a00 | 68 61 72 64 77 61 72 65 20 4d 41 43 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 49 50 20 61 64 | hardware.MAC.addresses.and.IP.ad |
| 24a20 | 64 72 65 73 73 65 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 | dresses.to.generate.the.hash..Th |
| 24a40 | 65 20 66 6f 72 6d 75 6c 61 20 69 73 3a 00 2a 2a 6c 61 79 65 72 33 2b 34 2a 2a 20 2d 20 54 68 69 | e.formula.is:.**layer3+4**.-.Thi |
| 24a60 | 73 20 70 6f 6c 69 63 79 20 75 73 65 73 20 75 70 70 65 72 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 | s.policy.uses.upper.layer.protoc |
| 24a80 | 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 77 68 65 6e 20 61 76 61 69 6c 61 62 6c 65 2c 20 | ol.information,.when.available,. |
| 24aa0 | 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e 20 54 68 69 73 20 61 6c 6c 6f 77 | to.generate.the.hash..This.allow |
| 24ac0 | 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 | s.for.traffic.to.a.particular.ne |
| 24ae0 | 74 77 6f 72 6b 20 70 65 65 72 20 74 6f 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 73 6c 61 76 | twork.peer.to.span.multiple.slav |
| 24b00 | 65 73 2c 20 61 6c 74 68 6f 75 67 68 20 61 20 73 69 6e 67 6c 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | es,.although.a.single.connection |
| 24b20 | 20 77 69 6c 6c 20 6e 6f 74 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 73 6c 61 76 65 73 2e 00 | .will.not.span.multiple.slaves.. |
| 24b40 | 2a 2a 6c 65 66 74 2a 2a 00 2a 2a 6c 65 76 65 6c 2d 31 2a 2a 20 2d 20 41 63 74 20 61 73 20 61 20 | **left**.**level-1**.-.Act.as.a. |
| 24b60 | 73 74 61 74 69 6f 6e 20 28 4c 65 76 65 6c 20 31 29 20 72 6f 75 74 65 72 20 6f 6e 6c 79 2e 00 2a | station.(Level.1).router.only..* |
| 24b80 | 2a 6c 65 76 65 6c 2d 31 2a 2a 20 2d 20 4c 65 76 65 6c 2d 31 20 6f 6e 6c 79 20 61 64 6a 61 63 65 | *level-1**.-.Level-1.only.adjace |
| 24ba0 | 6e 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 2e 00 2a 2a 6c 65 76 65 6c 2d 31 2d 32 2a 2a 20 | ncies.are.formed..**level-1-2**. |
| 24bc0 | 2d 20 41 63 74 20 61 73 20 61 20 73 74 61 74 69 6f 6e 20 28 4c 65 76 65 6c 20 31 29 20 72 6f 75 | -.Act.as.a.station.(Level.1).rou |
| 24be0 | 74 65 72 20 61 6e 64 20 61 72 65 61 20 28 4c 65 76 65 6c 20 32 29 20 72 6f 75 74 65 72 2e 00 2a | ter.and.area.(Level.2).router..* |
| 24c00 | 2a 6c 65 76 65 6c 2d 31 2d 32 2a 2a 20 2d 20 4c 65 76 65 6c 2d 31 2d 32 20 61 64 6a 61 63 65 6e | *level-1-2**.-.Level-1-2.adjacen |
| 24c20 | 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 00 2a 2a 6c 65 76 65 6c 2d 32 2d 6f 6e 6c 79 2a 2a | cies.are.formed.**level-2-only** |
| 24c40 | 20 2d 20 41 63 74 20 61 73 20 61 6e 20 61 72 65 61 20 28 4c 65 76 65 6c 20 32 29 20 72 6f 75 74 | .-.Act.as.an.area.(Level.2).rout |
| 24c60 | 65 72 20 6f 6e 6c 79 2e 00 2a 2a 6c 65 76 65 6c 2d 32 2d 6f 6e 6c 79 2a 2a 20 2d 20 4c 65 76 65 | er.only..**level-2-only**.-.Leve |
| 24c80 | 6c 2d 32 20 6f 6e 6c 79 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 00 | l-2.only.adjacencies.are.formed. |
| 24ca0 | 2a 2a 6c 6f 63 61 6c 20 73 69 64 65 20 2d 20 63 6f 6d 6d 61 6e 64 73 2a 2a 00 2a 2a 6c 6f 63 61 | **local.side.-.commands**.**loca |
| 24cc0 | 6c 2a 2a 3a 20 41 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 71 75 65 72 69 65 73 20 | l**:.All.authentication.queries. |
| 24ce0 | 61 72 65 20 68 61 6e 64 6c 65 64 20 6c 6f 63 61 6c 6c 79 2e 00 2a 2a 6c 6f 63 61 6c 2a 2a 3a 20 | are.handled.locally..**local**:. |
| 24d00 | 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 63 6c 69 65 6e 74 20 61 72 65 20 62 65 68 69 6e 64 20 | It.means.that.client.are.behind. |
| 24d20 | 73 6f 6d 65 20 72 6f 75 74 65 72 2e 00 2a 2a 6c 6f 67 2d 66 61 69 6c 2a 2a 20 49 6e 20 74 68 69 | some.router..**log-fail**.In.thi |
| 24d40 | 73 20 6d 6f 64 65 2c 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 | s.mode,.the.recursor.will.attemp |
| 24d60 | 74 20 74 6f 20 76 61 6c 69 64 61 74 65 20 61 6c 6c 20 64 61 74 61 20 69 74 20 72 65 74 72 69 65 | t.to.validate.all.data.it.retrie |
| 24d80 | 76 65 73 20 66 72 6f 6d 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 73 65 72 76 65 72 73 2c 20 | ves.from.authoritative.servers,. |
| 24da0 | 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 44 4e 53 53 45 | regardless.of.the.client's.DNSSE |
| 24dc0 | 43 20 64 65 73 69 72 65 73 2c 20 61 6e 64 20 77 69 6c 6c 20 6c 6f 67 20 74 68 65 20 76 61 6c 69 | C.desires,.and.will.log.the.vali |
| 24de0 | 64 61 74 69 6f 6e 20 72 65 73 75 6c 74 2e 20 54 68 69 73 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 | dation.result..This.mode.can.be. |
| 24e00 | 75 73 65 64 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 65 78 74 72 61 20 6c 6f 61 64 | used.to.determine.the.extra.load |
| 24e20 | 20 61 6e 64 20 61 6d 6f 75 6e 74 20 6f 66 20 70 6f 73 73 69 62 6c 79 20 62 6f 67 75 73 20 61 6e | .and.amount.of.possibly.bogus.an |
| 24e40 | 73 77 65 72 73 20 62 65 66 6f 72 65 20 74 75 72 6e 69 6e 67 20 6f 6e 20 66 75 6c 6c 2d 62 6c 6f | swers.before.turning.on.full-blo |
| 24e60 | 77 6e 20 76 61 6c 69 64 61 74 69 6f 6e 2e 20 52 65 73 70 6f 6e 73 65 73 20 74 6f 20 63 6c 69 65 | wn.validation..Responses.to.clie |
| 24e80 | 6e 74 20 71 75 65 72 69 65 73 20 61 72 65 20 74 68 65 20 73 61 6d 65 20 61 73 20 77 69 74 68 20 | nt.queries.are.the.same.as.with. |
| 24ea0 | 70 72 6f 63 65 73 73 2e 00 2a 2a 6c 6f 6f 6b 75 70 2d 61 2a 2a 20 41 20 46 6c 61 67 2e 00 2a 2a | process..**lookup-a**.A.Flag..** |
| 24ec0 | 6c 6f 6f 6b 75 70 2d 73 72 76 2a 2a 20 53 20 66 6c 61 67 2e 00 2a 2a 6e 61 72 72 6f 77 2a 2a 20 | lookup-srv**.S.flag..**narrow**. |
| 24ee0 | 2d 20 55 73 65 20 6f 6c 64 20 73 74 79 6c 65 20 6f 66 20 54 4c 56 73 20 77 69 74 68 20 6e 61 72 | -.Use.old.style.of.TLVs.with.nar |
| 24f00 | 72 6f 77 20 6d 65 74 72 69 63 2e 00 2a 2a 6e 65 74 2d 61 64 6d 69 6e 2a 2a 3a 20 4e 65 74 77 6f | row.metric..**net-admin**:.Netwo |
| 24f20 | 72 6b 20 6f 70 65 72 61 74 69 6f 6e 73 20 28 69 6e 74 65 72 66 61 63 65 2c 20 66 69 72 65 77 61 | rk.operations.(interface,.firewa |
| 24f40 | 6c 6c 2c 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 29 00 2a 2a 6e 65 74 2d 62 69 6e 64 2d 73 | ll,.routing.tables).**net-bind-s |
| 24f60 | 65 72 76 69 63 65 2a 2a 3a 20 42 69 6e 64 20 61 20 73 6f 63 6b 65 74 20 74 6f 20 70 72 69 76 69 | ervice**:.Bind.a.socket.to.privi |
| 24f80 | 6c 65 67 65 64 20 70 6f 72 74 73 20 28 70 6f 72 74 20 6e 75 6d 62 65 72 73 20 6c 65 73 73 20 74 | leged.ports.(port.numbers.less.t |
| 24fa0 | 68 61 6e 20 31 30 32 34 29 00 2a 2a 6e 65 74 2d 72 61 77 2a 2a 3a 20 50 65 72 6d 69 73 73 69 6f | han.1024).**net-raw**:.Permissio |
| 24fc0 | 6e 20 74 6f 20 63 72 65 61 74 65 20 72 61 77 20 6e 65 74 77 6f 72 6b 20 73 6f 63 6b 65 74 73 00 | n.to.create.raw.network.sockets. |
| 24fe0 | 2a 2a 6e 6f 2a 2a 3a 20 44 6f 20 6e 6f 74 20 72 65 73 74 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 | **no**:.Do.not.restart.container |
| 25000 | 73 20 6f 6e 20 65 78 69 74 00 2a 2a 6e 6f 61 75 74 68 2a 2a 3a 20 41 75 74 68 65 6e 74 69 63 61 | s.on.exit.**noauth**:.Authentica |
| 25020 | 74 69 6f 6e 20 64 69 73 61 62 6c 65 64 00 2a 2a 6e 6f 61 75 74 68 2a 2a 3a 20 41 75 74 68 65 6e | tion.disabled.**noauth**:.Authen |
| 25040 | 74 69 63 61 74 69 6f 6e 20 64 69 73 61 62 6c 65 64 2e 00 2a 2a 6f 66 66 2a 2a 20 49 6e 20 74 68 | tication.disabled..**off**.In.th |
| 25060 | 69 73 20 6d 6f 64 65 2c 20 6e 6f 20 44 4e 53 53 45 43 20 70 72 6f 63 65 73 73 69 6e 67 20 74 61 | is.mode,.no.DNSSEC.processing.ta |
| 25080 | 6b 65 73 20 70 6c 61 63 65 2e 20 54 68 65 20 72 65 63 75 72 73 6f 72 20 77 69 6c 6c 20 6e 6f 74 | kes.place..The.recursor.will.not |
| 250a0 | 20 73 65 74 20 74 68 65 20 44 4e 53 53 45 43 20 4f 4b 20 28 44 4f 29 20 62 69 74 20 69 6e 20 74 | .set.the.DNSSEC.OK.(DO).bit.in.t |
| 250c0 | 68 65 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 20 61 6e 64 20 77 69 6c 6c 20 69 67 6e | he.outgoing.queries.and.will.ign |
| 250e0 | 6f 72 65 20 74 68 65 20 44 4f 20 61 6e 64 20 41 44 20 62 69 74 73 20 69 6e 20 71 75 65 72 69 65 | ore.the.DO.and.AD.bits.in.querie |
| 25100 | 73 2e 00 2a 2a 6f 6e 2d 66 61 69 6c 75 72 65 2a 2a 3a 20 52 65 73 74 61 72 74 20 63 6f 6e 74 61 | s..**on-failure**:.Restart.conta |
| 25120 | 69 6e 65 72 73 20 77 68 65 6e 20 74 68 65 79 20 65 78 69 74 20 77 69 74 68 20 61 20 6e 6f 6e 2d | iners.when.they.exit.with.a.non- |
| 25140 | 7a 65 72 6f 20 65 78 69 74 20 63 6f 64 65 2c 20 72 65 74 72 79 69 6e 67 20 69 6e 64 65 66 69 6e | zero.exit.code,.retrying.indefin |
| 25160 | 69 74 65 6c 79 20 28 64 65 66 61 75 6c 74 29 00 2a 2a 6f 72 64 65 72 2a 2a 20 52 75 6c 65 20 6f | itely.(default).**order**.Rule.o |
| 25180 | 72 64 65 72 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 6f 75 74 62 | rder..Requires.`<value>`..**outb |
| 251a0 | 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e | ound-interface**.-.applicable.on |
| 251c0 | 6c 79 20 74 6f 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 | ly.to.:ref:`source-nat`..It.conf |
| 251e0 | 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 75 73 | igures.the.interface.which.is.us |
| 25200 | 65 64 20 66 6f 72 20 74 68 65 20 6f 75 74 73 69 64 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 | ed.for.the.outside.traffic.that. |
| 25220 | 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f | this.translation.rule.applies.to |
| 25240 | 2e 00 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 | ..**outbound-interface**.-.appli |
| 25260 | 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 2e | cable.only.to.:ref:`source-nat`. |
| 25280 | 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 | .It.configures.the.interface.whi |
| 252a0 | 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 6f 75 74 73 69 64 65 20 74 72 61 66 66 | ch.is.used.for.the.outside.traff |
| 252c0 | 69 63 20 74 68 61 74 20 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 | ic.that.this.translation.rule.ap |
| 252e0 | 70 6c 69 65 73 20 74 6f 2e 20 49 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 73 2c 20 69 6e 76 65 | plies.to..Interface.groups,.inve |
| 25300 | 72 74 65 64 20 73 65 6c 65 63 74 69 6f 6e 20 61 6e 64 20 77 69 6c 64 63 61 72 64 2c 20 61 72 65 | rted.selection.and.wildcard,.are |
| 25320 | 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 41 73 | .also.supported..**prefer**.-.As |
| 25340 | 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 64 | k.client.for.IPv4.negotiation,.d |
| 25360 | 6f 20 6e 6f 74 20 66 61 69 6c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 00 2a 2a 70 72 65 66 65 | o.not.fail.if.it.rejects.**prefe |
| 25380 | 72 2a 2a 20 2d 20 41 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 49 50 76 36 20 6e 65 67 6f 74 69 | r**.-.Ask.client.for.IPv6.negoti |
| 253a0 | 61 74 69 6f 6e 2c 20 64 6f 20 6e 6f 74 20 66 61 69 6c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 | ation,.do.not.fail.if.it.rejects |
| 253c0 | 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 | .**prefer**.-.ask.client.for.mpp |
| 253e0 | 65 2c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 20 64 6f 6e 27 74 20 66 61 69 6c 00 2a 2a 70 72 | e,.if.it.rejects.don't.fail.**pr |
| 25400 | 65 66 65 72 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 | efer**.-.ask.client.for.mppe,.if |
| 25420 | 20 69 74 20 72 65 6a 65 63 74 73 20 64 6f 6e 27 74 20 66 61 69 6c 2e 20 28 44 65 66 61 75 6c 74 | .it.rejects.don't.fail..(Default |
| 25440 | 20 76 61 6c 75 65 29 00 2a 2a 70 72 65 66 65 72 65 6e 63 65 2a 2a 20 52 75 6c 65 20 70 72 65 66 | .value).**preference**.Rule.pref |
| 25460 | 65 72 65 6e 63 65 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 20 44 65 66 61 | erence..Requires.`<value>`..Defa |
| 25480 | 75 6c 74 73 20 74 6f 20 30 20 69 66 20 6e 6f 74 20 73 65 74 2e 00 2a 2a 70 72 6f 63 65 73 73 2a | ults.to.0.if.not.set..**process* |
| 254a0 | 2a 20 57 68 65 6e 20 64 6e 73 73 65 63 20 69 73 20 73 65 74 20 74 6f 20 70 72 6f 63 65 73 73 20 | *.When.dnssec.is.set.to.process. |
| 254c0 | 74 68 65 20 62 65 68 61 76 69 6f 72 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 70 72 6f 63 65 | the.behavior.is.similar.to.proce |
| 254e0 | 73 73 2d 6e 6f 2d 76 61 6c 69 64 61 74 65 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 20 72 65 63 | ss-no-validate..However,.the.rec |
| 25500 | 75 72 73 6f 72 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 76 61 6c 69 64 61 74 65 20 74 68 65 20 64 | ursor.will.try.to.validate.the.d |
| 25520 | 61 74 61 20 69 66 20 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 6f 66 20 74 68 65 20 44 4f 20 6f 72 | ata.if.at.least.one.of.the.DO.or |
| 25540 | 20 41 44 20 62 69 74 73 20 69 73 20 73 65 74 20 69 6e 20 74 68 65 20 71 75 65 72 79 3b 20 69 6e | .AD.bits.is.set.in.the.query;.in |
| 25560 | 20 74 68 61 74 20 63 61 73 65 2c 20 69 74 20 77 69 6c 6c 20 73 65 74 20 74 68 65 20 41 44 2d 62 | .that.case,.it.will.set.the.AD-b |
| 25580 | 69 74 20 69 6e 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 77 68 65 6e 20 74 68 65 20 64 61 74 61 | it.in.the.response.when.the.data |
| 255a0 | 20 69 73 20 76 61 6c 69 64 61 74 65 64 20 73 75 63 63 65 73 73 66 75 6c 6c 79 2c 20 6f 72 20 73 | .is.validated.successfully,.or.s |
| 255c0 | 65 6e 64 20 53 45 52 56 46 41 49 4c 20 77 68 65 6e 20 74 68 65 20 76 61 6c 69 64 61 74 69 6f 6e | end.SERVFAIL.when.the.validation |
| 255e0 | 20 63 6f 6d 65 73 20 75 70 20 62 6f 67 75 73 2e 00 2a 2a 70 72 6f 63 65 73 73 2d 6e 6f 2d 76 61 | .comes.up.bogus..**process-no-va |
| 25600 | 6c 69 64 61 74 65 2a 2a 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 20 74 68 65 20 72 65 63 75 72 73 | lidate**.In.this.mode.the.recurs |
| 25620 | 6f 72 20 61 63 74 73 20 61 73 20 61 20 22 73 65 63 75 72 69 74 79 20 61 77 61 72 65 2c 20 6e 6f | or.acts.as.a."security.aware,.no |
| 25640 | 6e 2d 76 61 6c 69 64 61 74 69 6e 67 22 20 6e 61 6d 65 73 65 72 76 65 72 2c 20 6d 65 61 6e 69 6e | n-validating".nameserver,.meanin |
| 25660 | 67 20 69 74 20 77 69 6c 6c 20 73 65 74 20 74 68 65 20 44 4f 2d 62 69 74 20 6f 6e 20 6f 75 74 67 | g.it.will.set.the.DO-bit.on.outg |
| 25680 | 6f 69 6e 67 20 71 75 65 72 69 65 73 20 61 6e 64 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 44 4e | oing.queries.and.will.provide.DN |
| 256a0 | 53 53 45 43 20 72 65 6c 61 74 65 64 20 52 52 73 65 74 73 20 28 4e 53 45 43 2c 20 52 52 53 49 47 | SSEC.related.RRsets.(NSEC,.RRSIG |
| 256c0 | 29 20 74 6f 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 61 73 6b 20 66 6f 72 20 74 68 65 6d 20 28 | ).to.clients.that.ask.for.them.( |
| 256e0 | 62 79 20 6d 65 61 6e 73 20 6f 66 20 61 20 44 4f 2d 62 69 74 20 69 6e 20 74 68 65 20 71 75 65 72 | by.means.of.a.DO-bit.in.the.quer |
| 25700 | 79 29 2c 20 65 78 63 65 70 74 20 66 6f 72 20 7a 6f 6e 65 73 20 70 72 6f 76 69 64 65 64 20 74 68 | y),.except.for.zones.provided.th |
| 25720 | 72 6f 75 67 68 20 74 68 65 20 61 75 74 68 2d 7a 6f 6e 65 73 20 73 65 74 74 69 6e 67 2e 20 49 74 | rough.the.auth-zones.setting..It |
| 25740 | 20 77 69 6c 6c 20 6e 6f 74 20 64 6f 20 61 6e 79 20 76 61 6c 69 64 61 74 69 6f 6e 20 69 6e 20 74 | .will.not.do.any.validation.in.t |
| 25760 | 68 69 73 20 6d 6f 64 65 2c 20 6e 6f 74 20 65 76 65 6e 20 77 68 65 6e 20 72 65 71 75 65 73 74 65 | his.mode,.not.even.when.requeste |
| 25780 | 64 20 62 79 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 2a 2a 70 72 6f 74 6f 63 6f 6c 2a 2a 20 2d 20 | d.by.the.client..**protocol**.-. |
| 257a0 | 73 70 65 63 69 66 79 20 77 68 69 63 68 20 74 79 70 65 73 20 6f 66 20 70 72 6f 74 6f 63 6f 6c 73 | specify.which.types.of.protocols |
| 257c0 | 20 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 | .this.translation.rule.applies.t |
| 257e0 | 6f 2e 20 4f 6e 6c 79 20 70 61 63 6b 65 74 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 73 70 65 | o..Only.packets.matching.the.spe |
| 25800 | 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 20 61 72 65 20 4e 41 54 65 64 2e 20 42 79 20 64 65 | cified.protocol.are.NATed..By.de |
| 25820 | 66 61 75 6c 74 20 74 68 69 73 20 61 70 70 6c 69 65 73 20 74 6f 20 60 61 6c 6c 60 20 70 72 6f 74 | fault.this.applies.to.`all`.prot |
| 25840 | 6f 63 6f 6c 73 2e 00 2a 2a 70 72 6f 74 6f 63 6f 6c 2d 73 70 65 63 69 66 69 63 2a 2a 20 50 20 66 | ocols..**protocol-specific**.P.f |
| 25860 | 6c 61 67 2e 00 2a 2a 72 61 64 69 75 73 2a 2a 3a 20 41 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 | lag..**radius**:.All.authenticat |
| 25880 | 69 6f 6e 20 71 75 65 72 69 65 73 20 61 72 65 20 68 61 6e 64 6c 65 64 20 62 79 20 61 20 63 6f 6e | ion.queries.are.handled.by.a.con |
| 258a0 | 66 69 67 75 72 65 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 2a 2a 72 61 6e 64 6f 6d 2a | figured.RADIUS.server..**random* |
| 258c0 | 2a 20 2d 20 52 61 6e 64 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 | *.-.Random.interface.identifier. |
| 258e0 | 66 6f 72 20 49 50 76 36 00 2a 2a 72 65 67 65 78 70 2a 2a 20 52 65 67 75 6c 61 72 20 65 78 70 72 | for.IPv6.**regexp**.Regular.expr |
| 25900 | 65 73 73 69 6f 6e 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 72 65 | ession..Requires.`<value>`..**re |
| 25920 | 6d 6f 74 65 20 73 69 64 65 20 2d 20 63 6f 6d 6d 61 6e 64 73 2a 2a 00 2a 2a 72 65 70 6c 61 63 65 | mote.side.-.commands**.**replace |
| 25940 | 2a 2a 3a 20 54 65 72 6d 69 6e 61 74 65 20 66 69 72 73 74 20 73 65 73 73 69 6f 6e 20 77 68 65 6e | **:.Terminate.first.session.when |
| 25960 | 20 73 65 63 6f 6e 64 20 69 73 20 61 75 74 68 6f 72 69 7a 65 64 20 2a 2a 28 64 65 66 61 75 6c 74 | .second.is.authorized.**(default |
| 25980 | 29 2a 2a 00 2a 2a 72 65 70 6c 61 63 65 3a 2a 2a 20 52 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 | )**.**replace:**.Relay.informati |
| 259a0 | 6f 6e 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 61 20 70 61 63 6b 65 74 20 69 | on.already.present.in.a.packet.i |
| 259c0 | 73 20 73 74 72 69 70 70 65 64 20 61 6e 64 20 72 65 70 6c 61 63 65 64 20 77 69 74 68 20 74 68 65 | s.stripped.and.replaced.with.the |
| 259e0 | 20 72 6f 75 74 65 72 27 73 20 6f 77 6e 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | .router's.own.relay.information. |
| 25a00 | 73 65 74 2e 00 2a 2a 72 65 70 6c 61 63 65 6d 65 6e 74 2a 2a 20 52 65 70 6c 61 63 65 6d 65 6e 74 | set..**replacement**.Replacement |
| 25a20 | 20 44 4e 53 20 6e 61 6d 65 2e 00 2a 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 52 65 71 75 69 72 65 | .DNS.name..**require**.-.Require |
| 25a40 | 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 6f 6e 00 2a 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 | .IPv4.negotiation.**require**.-. |
| 25a60 | 52 65 71 75 69 72 65 20 49 50 76 36 20 6e 65 67 6f 74 69 61 74 69 6f 6e 00 2a 2a 72 65 71 75 69 | Require.IPv6.negotiation.**requi |
| 25a80 | 72 65 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 20 69 | re**.-.ask.client.for.mppe,.if.i |
| 25aa0 | 74 20 72 65 6a 65 63 74 73 20 64 72 6f 70 20 63 6f 6e 6e 65 63 74 69 6f 6e 00 2a 2a 72 65 73 6f | t.rejects.drop.connection.**reso |
| 25ac0 | 6c 76 65 2d 75 72 69 2a 2a 20 55 20 66 6c 61 67 2e 00 2a 2a 72 69 67 68 74 2a 2a 00 2a 2a 73 65 | lve-uri**.U.flag..**right**.**se |
| 25ae0 | 72 76 69 63 65 2a 2a 20 53 65 72 76 69 63 65 20 74 79 70 65 2e 20 52 65 71 75 69 72 65 73 20 60 | rvice**.Service.type..Requires.` |
| 25b00 | 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 73 65 74 70 63 61 70 2a 2a 3a 20 43 61 70 61 62 69 6c 69 74 | <value>`..**setpcap**:.Capabilit |
| 25b20 | 79 20 73 65 74 73 20 28 66 72 6f 6d 20 62 6f 75 6e 64 65 64 20 6f 72 20 69 6e 68 65 72 69 74 65 | y.sets.(from.bounded.or.inherite |
| 25b40 | 64 20 73 65 74 29 00 2a 2a 73 68 61 72 65 64 2a 2a 3a 20 4d 75 6c 74 69 70 6c 65 20 63 6c 69 65 | d.set).**shared**:.Multiple.clie |
| 25b60 | 6e 74 73 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 2e 20 2a 2a 28 64 | nts.share.the.same.network..**(d |
| 25b80 | 65 66 61 75 6c 74 29 2a 2a 00 2a 2a 73 6f 75 72 63 65 2a 2a 20 2d 20 73 70 65 63 69 66 69 65 73 | efault)**.**source**.-.specifies |
| 25ba0 | 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 74 68 65 20 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 | .which.packets.the.NAT.translati |
| 25bc0 | 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 | on.rule.applies.to.based.on.the. |
| 25be0 | 70 61 63 6b 65 74 73 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 2f 6f 72 | packets.source.IP.address.and/or |
| 25c00 | 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 4f 6e 6c 79 20 6d 61 74 63 68 69 6e 67 20 70 61 63 6b | .source.port..Only.matching.pack |
| 25c20 | 65 74 73 20 61 72 65 20 63 6f 6e 73 69 64 65 72 65 64 20 66 6f 72 20 4e 41 54 2e 00 2a 2a 73 79 | ets.are.considered.for.NAT..**sy |
| 25c40 | 73 2d 61 64 6d 69 6e 2a 2a 3a 20 41 64 6d 69 6e 69 73 74 61 74 69 6f 6e 20 6f 70 65 72 61 74 69 | s-admin**:.Administation.operati |
| 25c60 | 6f 6e 73 20 28 71 75 6f 74 61 63 74 6c 2c 20 6d 6f 75 6e 74 2c 20 73 65 74 68 6f 73 74 6e 61 6d | ons.(quotactl,.mount,.sethostnam |
| 25c80 | 65 2c 20 73 65 74 64 6f 6d 61 69 6e 61 6d 65 29 00 2a 2a 73 79 73 2d 61 64 6d 69 6e 2a 2a 3a 20 | e,.setdomainame).**sys-admin**:. |
| 25ca0 | 41 64 6d 69 6e 69 73 74 72 61 74 69 6f 6e 20 6f 70 65 72 61 74 69 6f 6e 73 20 28 71 75 6f 74 61 | Administration.operations.(quota |
| 25cc0 | 63 74 6c 2c 20 6d 6f 75 6e 74 2c 20 73 65 74 68 6f 73 74 6e 61 6d 65 2c 20 73 65 74 64 6f 6d 61 | ctl,.mount,.sethostname,.setdoma |
| 25ce0 | 69 6e 61 6d 65 29 00 2a 2a 73 79 73 2d 74 69 6d 65 2a 2a 3a 20 50 65 72 6d 69 73 73 69 6f 6e 20 | iname).**sys-time**:.Permission. |
| 25d00 | 74 6f 20 73 65 74 20 73 79 73 74 65 6d 20 63 6c 6f 63 6b 00 2a 2a 74 72 61 6e 73 69 74 69 6f 6e | to.set.system.clock.**transition |
| 25d20 | 2a 2a 20 2d 20 53 65 6e 64 20 61 6e 64 20 61 63 63 65 70 74 20 62 6f 74 68 20 73 74 79 6c 65 73 | **.-.Send.and.accept.both.styles |
| 25d40 | 20 6f 66 20 54 4c 56 73 20 64 75 72 69 6e 67 20 74 72 61 6e 73 69 74 69 6f 6e 2e 00 2a 2a 75 70 | .of.TLVs.during.transition..**up |
| 25d60 | 73 74 72 65 61 6d 3a 2a 2a 20 54 68 65 20 75 70 73 74 72 65 61 6d 20 6e 65 74 77 6f 72 6b 20 69 | stream:**.The.upstream.network.i |
| 25d80 | 6e 74 65 72 66 61 63 65 20 69 73 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 | nterface.is.the.outgoing.interfa |
| 25da0 | 63 65 20 77 68 69 63 68 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 63 6f 6d 6d | ce.which.is.responsible.for.comm |
| 25dc0 | 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 61 76 61 69 6c 61 62 6c 65 20 6d 75 6c 74 69 63 61 73 74 | unicating.to.available.multicast |
| 25de0 | 20 64 61 74 61 20 73 6f 75 72 63 65 73 2e 20 54 68 65 72 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 | .data.sources..There.can.only.be |
| 25e00 | 20 6f 6e 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2e 00 2a 2a 76 61 6c 69 64 | .one.upstream.interface..**valid |
| 25e20 | 61 74 65 2a 2a 20 54 68 65 20 68 69 67 68 65 73 74 20 6d 6f 64 65 20 6f 66 20 44 4e 53 53 45 43 | ate**.The.highest.mode.of.DNSSEC |
| 25e40 | 20 70 72 6f 63 65 73 73 69 6e 67 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 2c 20 61 6c 6c 20 71 | .processing..In.this.mode,.all.q |
| 25e60 | 75 65 72 69 65 73 20 77 69 6c 6c 20 62 65 20 76 61 6c 69 64 61 74 65 64 20 61 6e 64 20 77 69 6c | ueries.will.be.validated.and.wil |
| 25e80 | 6c 20 62 65 20 61 6e 73 77 65 72 65 64 20 77 69 74 68 20 61 20 53 45 52 56 46 41 49 4c 20 69 6e | l.be.answered.with.a.SERVFAIL.in |
| 25ea0 | 20 63 61 73 65 20 6f 66 20 62 6f 67 75 73 20 64 61 74 61 2c 20 72 65 67 61 72 64 6c 65 73 73 20 | .case.of.bogus.data,.regardless. |
| 25ec0 | 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 72 65 71 75 65 73 74 2e 00 2a 2a 76 6c 61 6e 2a | of.the.client's.request..**vlan* |
| 25ee0 | 2a 3a 20 4f 6e 65 20 56 4c 41 4e 20 70 65 72 20 63 6c 69 65 6e 74 2e 00 2a 2a 77 69 64 65 2a 2a | *:.One.VLAN.per.client..**wide** |
| 25f00 | 20 2d 20 55 73 65 20 6e 65 77 20 73 74 79 6c 65 20 6f 66 20 54 4c 56 73 20 74 6f 20 63 61 72 72 | .-.Use.new.style.of.TLVs.to.carr |
| 25f20 | 79 20 77 69 64 65 72 20 6d 65 74 72 69 63 2e 00 2a 2a 78 3a 78 3a 78 3a 78 2a 2a 20 2d 20 53 70 | y.wider.metric..**x:x:x:x**.-.Sp |
| 25f40 | 65 63 69 66 79 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 | ecify.interface.identifier.for.I |
| 25f60 | 50 76 36 00 2a 62 67 70 64 2a 20 73 75 70 70 6f 72 74 73 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f | Pv6.*bgpd*.supports.Multiprotoco |
| 25f80 | 6c 20 45 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 42 47 50 2e 20 53 6f 20 69 66 20 61 20 72 65 6d | l.Extension.for.BGP..So.if.a.rem |
| 25fa0 | 6f 74 65 20 70 65 65 72 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 2c 20 | ote.peer.supports.the.protocol,. |
| 25fc0 | 2a 62 67 70 64 2a 20 63 61 6e 20 65 78 63 68 61 6e 67 65 20 49 50 76 36 20 61 6e 64 2f 6f 72 20 | *bgpd*.can.exchange.IPv6.and/or. |
| 25fe0 | 6d 75 6c 74 69 63 61 73 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 30 | multicast.routing.information..0 |
| 26000 | 00 30 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 6e | .0.if.not.defined,.which.means.n |
| 26020 | 6f 20 72 65 66 72 65 73 68 69 6e 67 2e 00 30 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 | o.refreshing..0.if.not.defined.. |
| 26040 | 30 30 30 30 30 30 00 30 30 31 30 31 30 00 30 30 31 31 30 30 00 30 30 31 31 31 30 00 30 31 30 30 | 000000.001010.001100.001110.0100 |
| 26060 | 31 30 00 30 31 30 31 30 30 00 30 31 30 31 31 30 00 30 31 31 30 31 30 00 30 31 31 31 30 30 00 30 | 10.010100.010110.011010.011100.0 |
| 26080 | 31 31 31 31 30 00 30 3a 20 44 69 73 61 62 6c 65 20 44 41 44 00 31 00 31 20 69 66 20 6e 6f 74 20 | 11110.0:.Disable.DAD.1.1.if.not. |
| 260a0 | 64 65 66 69 6e 65 64 2e 00 31 2d 74 6f 2d 31 20 4e 41 54 00 31 2e 20 43 72 65 61 74 65 20 61 6e | defined..1-to-1.NAT.1..Create.an |
| 260c0 | 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 00 31 2e 20 46 69 72 73 74 20 70 61 63 6b 65 74 20 69 | .event.handler.1..First.packet.i |
| 260e0 | 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 65 68 74 30 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 | s.received.on.eht0,.with.destina |
| 26100 | 74 69 6f 6e 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 | tion.address.192.0.2.100,.protoc |
| 26120 | 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 | ol.tcp.and.destination.port.1122 |
| 26140 | 2e 20 41 73 73 75 6d 65 20 73 75 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 | ..Assume.such.destination.addres |
| 26160 | 73 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 | s.is.reachable.through.interface |
| 26180 | 20 65 74 68 31 2e 00 31 2e 20 46 69 72 73 74 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 | .eth1..1..First.packet.is.receiv |
| 261a0 | 65 64 20 6f 6e 20 65 74 68 30 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | ed.on.eth0,.with.destination.add |
| 261c0 | 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 | ress.192.0.2.100,.protocol.tcp.a |
| 261e0 | 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 73 73 75 6d 65 | nd.destination.port.1122..Assume |
| 26200 | 20 73 75 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 61 | .such.destination.address.is.rea |
| 26220 | 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 2e 00 31 | chable.through.interface.eth1..1 |
| 26240 | 2e 20 46 69 72 73 74 6c 79 2c 20 61 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 | ..Firstly,.a.packet.is.received. |
| 26260 | 6f 6e 20 65 74 68 30 2c 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 | on.eth0,.with.destination.addres |
| 26280 | 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 | s.192.0.2.100,.protocol.tcp.and. |
| 262a0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 73 73 75 6d 65 20 73 75 | destination.port.1122..Assume.su |
| 262c0 | 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 61 63 68 61 | ch.destination.address.is.reacha |
| 262e0 | 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 2e 00 31 2e 20 47 | ble.through.interface.eth1..1..G |
| 26300 | 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 | enerate.a.new.TCP.connection.wit |
| 26320 | 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 39 39 39 30 2e 20 41 73 20 73 68 6f 77 | h.destination.port.9990..As.show |
| 26340 | 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 72 79 20 77 61 73 20 61 64 64 65 64 20 74 6f | n.next,.a.new.entry.was.added.to |
| 26360 | 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 2a 2a 50 4e 5f 30 31 2a | .dynamic.firewall.group.**PN_01* |
| 26380 | 2a 00 31 30 00 31 30 20 2d 20 31 30 20 4d 42 69 74 2f 73 00 31 30 2e 30 2e 30 2e 30 20 74 6f 20 | *.10.10.-.10.MBit/s.10.0.0.0.to. |
| 263a0 | 31 30 2e 32 35 35 2e 32 35 35 2e 32 35 35 20 28 43 49 44 52 3a 20 31 30 2e 30 2e 30 2e 30 2f 38 | 10.255.255.255.(CIDR:.10.0.0.0/8 |
| 263c0 | 29 00 31 30 30 20 2d 20 31 30 30 20 4d 42 69 74 2f 73 00 31 30 30 30 20 2d 20 31 20 47 42 69 74 | ).100.-.100.MBit/s.1000.-.1.GBit |
| 263e0 | 2f 73 00 31 30 30 30 30 20 2d 20 31 30 20 47 42 69 74 2f 73 00 31 30 30 30 30 30 20 2d 20 31 30 | /s.10000.-.10.GBit/s.100000.-.10 |
| 26400 | 30 20 47 42 69 74 2f 73 00 31 30 30 30 31 30 00 31 30 30 31 30 30 00 31 30 30 31 31 30 00 31 30 | 0.GBit/s.100010.100100.100110.10 |
| 26420 | 31 31 31 30 00 31 31 00 31 31 39 00 31 32 00 31 32 31 2c 20 32 34 39 00 31 33 00 31 34 00 31 35 | 1110.11.119.12.121,.249.13.14.15 |
| 26440 | 00 31 36 00 31 37 00 31 37 32 2e 31 36 2e 30 2e 30 20 74 6f 20 31 37 32 2e 33 31 2e 32 35 35 2e | .16.17.172.16.0.0.to.172.31.255. |
| 26460 | 32 35 35 20 28 43 49 44 52 3a 20 31 37 32 2e 31 36 2e 30 2e 30 2f 31 32 29 00 31 38 00 31 39 00 | 255.(CIDR:.172.16.0.0/12).18.19. |
| 26480 | 31 39 32 2e 31 36 38 2e 30 2e 30 20 74 6f 20 31 39 32 2e 31 36 38 2e 32 35 35 2e 32 35 35 20 28 | 192.168.0.0.to.192.168.255.255.( |
| 264a0 | 43 49 44 52 3a 20 31 39 32 2e 31 36 38 2e 30 2e 30 2f 31 36 29 00 31 3a 20 45 6e 61 62 6c 65 20 | CIDR:.192.168.0.0/16).1:.Enable. |
| 264c0 | 44 41 44 20 28 64 65 66 61 75 6c 74 29 00 32 00 32 2e 20 41 64 64 20 72 65 67 65 78 20 74 6f 20 | DAD.(default).2.2..Add.regex.to. |
| 264e0 | 74 68 65 20 73 63 72 69 70 74 00 32 2e 20 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 | the.script.2..Generate.a.new.TCP |
| 26500 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 | .connection.with.destination.por |
| 26520 | 74 20 39 39 39 31 2e 20 41 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 | t.9991..As.shown.next,.a.new.ent |
| 26540 | 72 79 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c | ry.was.added.to.dynamic.firewall |
| 26560 | 20 67 72 6f 75 70 20 2a 2a 50 4e 5f 30 32 2a 2a 00 32 2e 20 53 69 6e 63 65 20 74 68 69 73 20 69 | .group.**PN_02**.2..Since.this.i |
| 26580 | 73 20 74 68 65 20 66 69 72 73 74 20 70 61 63 6b 65 74 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 | s.the.first.packet,.connection.s |
| 265a0 | 74 61 74 75 73 20 6f 66 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 73 6f 20 66 61 72 | tatus.of.this.connection,.so.far |
| 265c0 | 20 69 73 20 2a 2a 6e 65 77 2a 2a 2e 20 53 6f 20 6e 65 69 74 68 65 72 20 72 75 6c 65 20 31 30 20 | .is.**new**..So.neither.rule.10. |
| 265e0 | 6e 6f 72 20 32 30 20 61 72 65 20 76 61 6c 69 64 2e 00 32 30 00 32 31 00 32 32 00 32 33 00 32 35 | nor.20.are.valid..20.21.22.23.25 |
| 26600 | 30 30 20 2d 20 32 2e 35 20 47 42 69 74 2f 73 00 32 35 30 30 30 20 2d 20 32 35 20 47 42 69 74 2f | 00.-.2.5.GBit/s.25000.-.25.GBit/ |
| 26620 | 73 00 32 35 32 00 32 36 00 32 38 00 32 3a 20 45 6e 61 62 6c 65 20 44 41 44 2c 20 61 6e 64 20 64 | s.252.26.28.2:.Enable.DAD,.and.d |
| 26640 | 69 73 61 62 6c 65 20 49 50 76 36 20 6f 70 65 72 61 74 69 6f 6e 20 69 66 20 4d 41 43 2d 62 61 73 | isable.IPv6.operation.if.MAC-bas |
| 26660 | 65 64 20 64 75 70 6c 69 63 61 74 65 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 | ed.duplicate.link-local.address. |
| 26680 | 68 61 73 20 62 65 65 6e 20 66 6f 75 6e 64 2e 00 32 46 41 20 4f 54 50 20 73 75 70 70 6f 72 74 00 | has.been.found..2FA.OTP.support. |
| 266a0 | 33 00 33 2e 20 41 64 64 20 61 20 66 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 72 69 | 3.3..Add.a.full.path.to.the.scri |
| 266c0 | 70 74 00 33 2e 20 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 20 63 6f 6e 6e 65 63 74 | pt.3..Generate.a.new.TCP.connect |
| 266e0 | 69 6f 6e 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 39 39 39 32 2e 20 | ion.with.destination.port.9992.. |
| 26700 | 41 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 72 79 20 77 61 73 20 61 | As.shown.next,.a.new.entry.was.a |
| 26720 | 64 64 65 64 20 74 6f 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 2a | dded.to.dynamic.firewall.group.* |
| 26740 | 2a 41 4c 4c 4f 57 45 44 2a 2a 00 33 30 00 33 34 00 33 36 00 33 38 00 34 00 34 2e 20 41 64 64 20 | *ALLOWED**.30.34.36.38.4.4..Add. |
| 26760 | 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 73 00 34 2e 20 4f 6e 63 65 20 61 6e 20 61 | optional.parameters.4..Once.an.a |
| 26780 | 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 20 69 73 | nswer.from.server.192.0.2.100.is |
| 267a0 | 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 63 6f 6e | .seen.in.opposite.direction,.con |
| 267c0 | 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 67 65 72 65 64 20 | nection.state.will.be.triggered. |
| 267e0 | 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 65 70 6c | to.**established**,.so.this.repl |
| 26800 | 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 75 6c 65 20 32 30 2e 00 34 2e 20 4f 6e 63 | y.is.accepted.in.rule.20..4..Onc |
| 26820 | 65 20 61 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 | e.answer.from.server.192.0.2.100 |
| 26840 | 20 69 73 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 | .is.seen.in.opposite.direction,. |
| 26860 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 67 65 72 | connection.state.will.be.trigger |
| 26880 | 65 64 20 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 | ed.to.**established**,.so.this.r |
| 268a0 | 65 70 6c 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 75 6c 65 20 31 30 2e 00 34 2e 20 | eply.is.accepted.in.rule.10..4.. |
| 268c0 | 4f 6e 63 65 20 61 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 31 39 32 2e 30 2e 32 2e | Once.answer.from.server.192.0.2. |
| 268e0 | 31 30 30 20 69 73 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 64 69 72 65 63 74 69 6f | 100.is.seen.in.opposite.directio |
| 26900 | 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c 20 62 65 20 74 72 69 67 | n,.connection.state.will.be.trig |
| 26920 | 67 65 72 65 64 20 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 | gered.to.**established**,.so.thi |
| 26940 | 73 20 72 65 70 6c 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 75 6c 65 20 32 30 2e 00 | s.reply.is.accepted.in.rule.20.. |
| 26960 | 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 20 6d 61 79 20 73 77 69 74 63 68 20 74 68 65 69 72 | 40.MHz.channels.may.switch.their |
| 26980 | 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f 6e 64 61 72 79 20 63 68 61 6e 6e 65 6c 73 20 | .primary.and.secondary.channels. |
| 269a0 | 69 66 20 6e 65 65 64 65 64 20 6f 72 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 34 30 20 4d 48 7a 20 | if.needed.or.creation.of.40.MHz. |
| 269c0 | 63 68 61 6e 6e 65 6c 20 6d 61 79 62 65 20 72 65 6a 65 63 74 65 64 20 62 61 73 65 64 20 6f 6e 20 | channel.maybe.rejected.based.on. |
| 269e0 | 6f 76 65 72 6c 61 70 70 69 6e 67 20 42 53 53 65 73 2e 20 54 68 65 73 65 20 63 68 61 6e 67 65 73 | overlapping.BSSes..These.changes |
| 26a00 | 20 61 72 65 20 64 6f 6e 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 77 68 65 6e 20 68 6f 73 | .are.done.automatically.when.hos |
| 26a20 | 74 61 70 64 20 69 73 20 73 65 74 74 69 6e 67 20 75 70 20 74 68 65 20 34 30 20 4d 48 7a 20 63 68 | tapd.is.setting.up.the.40.MHz.ch |
| 26a40 | 61 6e 6e 65 6c 2e 00 34 30 30 30 30 20 2d 20 34 30 20 47 42 69 74 2f 73 00 34 32 00 34 34 00 34 | annel..40000.-.40.GBit/s.42.44.4 |
| 26a60 | 36 00 35 00 35 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 35 2e 20 53 65 63 6f 6e 64 20 | 6.5.5.if.not.defined..5..Second. |
| 26a80 | 70 61 63 6b 65 74 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 72 65 | packet.for.this.connection.is.re |
| 26aa0 | 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2e 20 53 69 6e 63 65 20 63 6f 6e 6e | ceived.by.the.router..Since.conn |
| 26ac0 | 65 63 74 69 6f 6e 20 73 74 61 74 65 20 69 73 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c | ection.state.is.**established**, |
| 26ae0 | 20 74 68 65 6e 20 72 75 6c 65 20 31 30 20 69 73 20 68 69 74 2c 20 61 6e 64 20 61 20 6e 65 77 20 | .then.rule.10.is.hit,.and.a.new. |
| 26b00 | 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 46 54 30 31 20 69 73 20 61 | entry.in.the.flowtable.FT01.is.a |
| 26b20 | 64 64 65 64 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 35 2e 20 54 68 65 | dded.for.this.connection..5..The |
| 26b40 | 20 73 65 63 6f 6e 64 20 70 61 63 6b 65 74 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 | .second.packet.for.this.connecti |
| 26b60 | 6f 6e 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2e 20 53 69 | on.is.received.by.the.router..Si |
| 26b80 | 6e 63 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 69 73 20 2a 2a 65 73 74 61 62 6c | nce.connection.state.is.**establ |
| 26ba0 | 69 73 68 65 64 2a 2a 2c 20 74 68 65 6e 20 72 75 6c 65 20 31 30 20 69 73 20 68 69 74 2c 20 61 6e | ished**,.then.rule.10.is.hit,.an |
| 26bc0 | 64 20 61 20 6e 65 77 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 46 | d.a.new.entry.in.the.flowtable.F |
| 26be0 | 54 30 31 20 69 73 20 61 64 64 65 64 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e | T01.is.added.for.this.connection |
| 26c00 | 2e 00 35 30 30 30 20 2d 20 35 20 47 42 69 74 2f 73 00 35 30 30 30 30 20 2d 20 35 30 20 47 42 69 | ..5000.-.5.GBit/s.50000.-.50.GBi |
| 26c20 | 74 2f 73 00 35 34 00 36 00 36 2e 20 41 6c 6c 20 73 75 62 73 65 63 75 65 6e 74 20 70 61 63 6b 65 | t/s.54.6.6..All.subsecuent.packe |
| 26c40 | 74 73 20 77 69 6c 6c 20 73 6b 69 70 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 61 | ts.will.skip.traditional.path,.a |
| 26c60 | 6e 64 20 77 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 64 65 64 20 61 6e 64 20 77 69 6c 6c 20 75 73 | nd.will.be.offloaded.and.will.us |
| 26c80 | 65 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 2e 20 41 6c 6c 20 74 68 65 20 | e.the.**Fast.Path**..6..All.the. |
| 26ca0 | 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 6b 69 70 20 74 68 65 20 | following.packets.will.skip.the. |
| 26cc0 | 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 77 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 | traditional.path,.will.be.offloa |
| 26ce0 | 64 65 64 20 61 6e 64 20 75 73 65 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 | ded.and.use.the.**Fast.Path**..6 |
| 26d00 | 2e 20 41 6c 6c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 63 6b 65 74 73 20 77 69 6c 6c | ..All.the.following.packets.will |
| 26d20 | 20 73 6b 69 70 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 61 6e 64 20 77 69 6c 6c | .skip.traditional.path,.and.will |
| 26d40 | 20 62 65 20 6f 66 66 6c 6f 61 64 65 64 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 2a | .be.offloaded.and.will.use.the.* |
| 26d60 | 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 34 35 31 32 20 2f 20 31 30 30 30 20 e2 89 88 20 36 | *Fast.Path**..64512./.1000.....6 |
| 26d80 | 34 20 73 75 62 73 63 72 69 62 65 72 73 20 70 65 72 20 70 75 62 6c 69 63 20 49 50 00 36 36 00 36 | 4.subscribers.per.public.IP.66.6 |
| 26da0 | 36 25 20 6f 66 20 74 72 61 66 66 69 63 20 69 73 20 72 6f 75 74 65 64 20 74 6f 20 65 74 68 30 2c | 6%.of.traffic.is.routed.to.eth0, |
| 26dc0 | 20 65 74 68 31 20 67 65 74 73 20 33 33 25 20 6f 66 20 74 72 61 66 66 69 63 2e 00 36 37 00 36 39 | .eth1.gets.33%.of.traffic..67.69 |
| 26de0 | 00 36 69 6e 34 20 28 53 49 54 29 00 36 69 6e 34 20 75 73 65 73 20 74 75 6e 6e 65 6c 69 6e 67 20 | .6in4.(SIT).6in4.uses.tunneling. |
| 26e00 | 74 6f 20 65 6e 63 61 70 73 75 6c 61 74 65 20 49 50 76 36 20 74 72 61 66 66 69 63 20 6f 76 65 72 | to.encapsulate.IPv6.traffic.over |
| 26e20 | 20 49 50 76 34 20 6c 69 6e 6b 73 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 | .IPv4.links.as.defined.in.:rfc:` |
| 26e40 | 34 32 31 33 60 2e 20 54 68 65 20 36 69 6e 34 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 | 4213`..The.6in4.traffic.is.sent. |
| 26e60 | 6f 76 65 72 20 49 50 76 34 20 69 6e 73 69 64 65 20 49 50 76 34 20 70 61 63 6b 65 74 73 20 77 68 | over.IPv4.inside.IPv4.packets.wh |
| 26e80 | 6f 73 65 20 49 50 20 68 65 61 64 65 72 73 20 68 61 76 65 20 74 68 65 20 49 50 20 70 72 6f 74 6f | ose.IP.headers.have.the.IP.proto |
| 26ea0 | 63 6f 6c 20 6e 75 6d 62 65 72 20 73 65 74 20 74 6f 20 34 31 2e 20 54 68 69 73 20 70 72 6f 74 6f | col.number.set.to.41..This.proto |
| 26ec0 | 63 6f 6c 20 6e 75 6d 62 65 72 20 69 73 20 73 70 65 63 69 66 69 63 61 6c 6c 79 20 64 65 73 69 67 | col.number.is.specifically.desig |
| 26ee0 | 6e 61 74 65 64 20 66 6f 72 20 49 50 76 36 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 2c 20 74 68 | nated.for.IPv6.encapsulation,.th |
| 26f00 | 65 20 49 50 76 34 20 70 61 63 6b 65 74 20 68 65 61 64 65 72 20 69 73 20 69 6d 6d 65 64 69 61 74 | e.IPv4.packet.header.is.immediat |
| 26f20 | 65 6c 79 20 66 6f 6c 6c 6f 77 65 64 20 62 79 20 74 68 65 20 49 50 76 36 20 70 61 63 6b 65 74 20 | ely.followed.by.the.IPv6.packet. |
| 26f40 | 62 65 69 6e 67 20 63 61 72 72 69 65 64 2e 20 54 68 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e | being.carried..The.encapsulation |
| 26f60 | 20 6f 76 65 72 68 65 61 64 20 69 73 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 49 50 76 | .overhead.is.the.size.of.the.IPv |
| 26f80 | 34 20 68 65 61 64 65 72 20 6f 66 20 32 30 20 62 79 74 65 73 2c 20 74 68 65 72 65 66 6f 72 65 20 | 4.header.of.20.bytes,.therefore. |
| 26fa0 | 77 69 74 68 20 61 6e 20 4d 54 55 20 6f 66 20 31 35 30 30 20 62 79 74 65 73 2c 20 49 50 76 36 20 | with.an.MTU.of.1500.bytes,.IPv6. |
| 26fc0 | 70 61 63 6b 65 74 73 20 6f 66 20 31 34 38 30 20 62 79 74 65 73 20 63 61 6e 20 62 65 20 73 65 6e | packets.of.1480.bytes.can.be.sen |
| 26fe0 | 74 20 77 69 74 68 6f 75 74 20 66 72 61 67 6d 65 6e 74 61 74 69 6f 6e 2e 20 54 68 69 73 20 74 75 | t.without.fragmentation..This.tu |
| 27000 | 6e 6e 65 6c 69 6e 67 20 74 65 63 68 6e 69 71 75 65 20 69 73 20 66 72 65 71 75 65 6e 74 6c 79 20 | nneling.technique.is.frequently. |
| 27020 | 75 73 65 64 20 62 79 20 49 50 76 36 20 74 75 6e 6e 65 6c 20 62 72 6f 6b 65 72 73 20 6c 69 6b 65 | used.by.IPv6.tunnel.brokers.like |
| 27040 | 20 60 48 75 72 72 69 63 61 6e 65 20 45 6c 65 63 74 72 69 63 60 5f 2e 00 37 00 37 30 00 38 00 38 | .`Hurricane.Electric`_..7.70.8.8 |
| 27060 | 30 32 2e 31 71 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 72 65 70 72 65 73 | 02.1q.VLAN.interfaces.are.repres |
| 27080 | 65 6e 74 65 64 20 61 73 20 76 69 72 74 75 61 6c 20 73 75 62 2d 69 6e 74 65 72 66 61 63 65 73 20 | ented.as.virtual.sub-interfaces. |
| 270a0 | 69 6e 20 56 79 4f 53 2e 20 54 68 65 20 74 65 72 6d 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 | in.VyOS..The.term.used.for.this. |
| 270c0 | 69 73 20 60 60 76 69 66 60 60 2e 00 39 00 3a 61 62 62 72 3a 60 41 46 49 20 28 41 64 64 72 65 73 | is.``vif``..9.:abbr:`AFI.(Addres |
| 270e0 | 73 20 66 61 6d 69 6c 79 20 61 75 74 68 6f 72 69 74 79 20 69 64 65 6e 74 69 66 69 65 72 29 60 20 | s.family.authority.identifier)`. |
| 27100 | 2d 20 60 60 34 39 60 60 20 54 68 65 20 41 46 49 20 76 61 6c 75 65 20 34 39 20 69 73 20 77 68 61 | -.``49``.The.AFI.value.49.is.wha |
| 27120 | 74 20 49 53 2d 49 53 20 75 73 65 73 20 66 6f 72 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 73 | t.IS-IS.uses.for.private.address |
| 27140 | 69 6e 67 2e 00 3a 61 62 62 72 3a 60 41 46 49 20 28 41 64 64 72 65 73 73 20 66 61 6d 69 6c 79 20 | ing..:abbr:`AFI.(Address.family. |
| 27160 | 61 75 74 68 6f 72 69 74 79 20 69 64 65 6e 74 69 66 69 65 72 29 60 20 2d 20 60 60 34 39 60 60 20 | authority.identifier)`.-.``49``. |
| 27180 | 54 68 65 20 41 46 49 20 76 61 6c 75 65 20 34 39 20 69 73 20 77 68 61 74 20 4f 70 65 6e 46 61 62 | The.AFI.value.49.is.what.OpenFab |
| 271a0 | 72 69 63 20 75 73 65 73 20 66 6f 72 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 73 69 6e 67 2e | ric.uses.for.private.addressing. |
| 271c0 | 00 3a 61 62 62 72 3a 60 41 52 50 20 28 41 64 64 72 65 73 73 20 52 65 73 6f 6c 75 74 69 6f 6e 20 | .:abbr:`ARP.(Address.Resolution. |
| 271e0 | 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 70 72 | Protocol)`.is.a.communication.pr |
| 27200 | 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 64 69 73 63 6f 76 65 72 69 6e 67 20 74 68 65 20 | otocol.used.for.discovering.the. |
| 27220 | 6c 69 6e 6b 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 2c 20 73 75 63 68 20 61 73 20 61 20 4d 41 | link.layer.address,.such.as.a.MA |
| 27240 | 43 20 61 64 64 72 65 73 73 2c 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 67 69 76 | C.address,.associated.with.a.giv |
| 27260 | 65 6e 20 69 6e 74 65 72 6e 65 74 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 2c 20 74 79 70 69 63 | en.internet.layer.address,.typic |
| 27280 | 61 6c 6c 79 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 6d 61 70 70 69 | ally.an.IPv4.address..This.mappi |
| 272a0 | 6e 67 20 69 73 20 61 20 63 72 69 74 69 63 61 6c 20 66 75 6e 63 74 69 6f 6e 20 69 6e 20 74 68 65 | ng.is.a.critical.function.in.the |
| 272c0 | 20 49 6e 74 65 72 6e 65 74 20 70 72 6f 74 6f 63 6f 6c 20 73 75 69 74 65 2e 20 41 52 50 20 77 61 | .Internet.protocol.suite..ARP.wa |
| 272e0 | 73 20 64 65 66 69 6e 65 64 20 69 6e 20 31 39 38 32 20 62 79 20 3a 72 66 63 3a 60 38 32 36 60 20 | s.defined.in.1982.by.:rfc:`826`. |
| 27300 | 77 68 69 63 68 20 69 73 20 49 6e 74 65 72 6e 65 74 20 53 74 61 6e 64 61 72 64 20 53 54 44 20 33 | which.is.Internet.Standard.STD.3 |
| 27320 | 37 2e 00 3a 61 62 62 72 3a 60 42 46 44 20 28 42 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 46 6f 72 | 7..:abbr:`BFD.(Bidirectional.For |
| 27340 | 77 61 72 64 69 6e 67 20 44 65 74 65 63 74 69 6f 6e 29 60 20 69 73 20 64 65 73 63 72 69 62 65 64 | warding.Detection)`.is.described |
| 27360 | 20 61 6e 64 20 65 78 74 65 6e 64 65 64 20 62 79 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 52 | .and.extended.by.the.following.R |
| 27380 | 46 43 73 3a 20 3a 72 66 63 3a 60 35 38 38 30 60 2c 20 3a 72 66 63 3a 60 35 38 38 31 60 20 61 6e | FCs:.:rfc:`5880`,.:rfc:`5881`.an |
| 273a0 | 64 20 3a 72 66 63 3a 60 35 38 38 33 60 2e 00 3a 61 62 62 72 3a 60 42 47 50 20 28 42 6f 72 64 65 | d.:rfc:`5883`..:abbr:`BGP.(Borde |
| 273c0 | 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 6f 6e 65 20 6f 66 20 74 | r.Gateway.Protocol)`.is.one.of.t |
| 273e0 | 68 65 20 45 78 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 73 20 61 6e | he.Exterior.Gateway.Protocols.an |
| 27400 | 64 20 74 68 65 20 64 65 20 66 61 63 74 6f 20 73 74 61 6e 64 61 72 64 20 69 6e 74 65 72 64 6f 6d | d.the.de.facto.standard.interdom |
| 27420 | 61 69 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 20 6c 61 74 65 73 74 | ain.routing.protocol..The.latest |
| 27440 | 20 42 47 50 20 76 65 72 73 69 6f 6e 20 69 73 20 34 2e 20 42 47 50 2d 34 20 69 73 20 64 65 73 63 | .BGP.version.is.4..BGP-4.is.desc |
| 27460 | 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 37 37 31 60 20 61 6e 64 20 75 70 64 61 74 65 64 | ribed.in.:rfc:`1771`.and.updated |
| 27480 | 20 62 79 20 3a 72 66 63 3a 60 34 32 37 31 60 2e 20 3a 72 66 63 3a 60 32 38 35 38 60 20 61 64 64 | .by.:rfc:`4271`..:rfc:`2858`.add |
| 274a0 | 73 20 6d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 73 75 70 70 6f 72 74 20 74 6f 20 42 47 50 2e 00 | s.multiprotocol.support.to.BGP.. |
| 274c0 | 3a 61 62 62 72 3a 60 43 47 4e 41 54 20 28 43 61 72 72 69 65 72 2d 47 72 61 64 65 20 4e 65 74 77 | :abbr:`CGNAT.(Carrier-Grade.Netw |
| 274e0 | 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 2c 20 61 6c 73 6f | ork.Address.Translation)`.,.also |
| 27500 | 20 6b 6e 6f 77 6e 20 61 73 20 4c 61 72 67 65 2d 53 63 61 6c 65 20 4e 41 54 20 28 4c 53 4e 29 2c | .known.as.Large-Scale.NAT.(LSN), |
| 27520 | 20 69 73 20 61 20 74 79 70 65 20 6f 66 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 74 72 | .is.a.type.of.network.address.tr |
| 27540 | 61 6e 73 6c 61 74 69 6f 6e 20 75 73 65 64 20 62 79 20 49 6e 74 65 72 6e 65 74 20 53 65 72 76 69 | anslation.used.by.Internet.Servi |
| 27560 | 63 65 20 50 72 6f 76 69 64 65 72 73 20 28 49 53 50 73 29 20 74 6f 20 65 6e 61 62 6c 65 20 6d 75 | ce.Providers.(ISPs).to.enable.mu |
| 27580 | 6c 74 69 70 6c 65 20 70 72 69 76 61 74 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 73 | ltiple.private.IP.addresses.to.s |
| 275a0 | 68 61 72 65 20 61 20 73 69 6e 67 6c 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 2e | hare.a.single.public.IP.address. |
| 275c0 | 20 54 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 68 65 6c 70 73 20 74 6f 20 63 6f 6e 73 65 72 76 | .This.technique.helps.to.conserv |
| 275e0 | 65 20 74 68 65 20 6c 69 6d 69 74 65 64 20 49 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 | e.the.limited.IPv4.address.space |
| 27600 | 2e 20 54 68 65 20 31 30 30 2e 36 34 2e 30 2e 30 2f 31 30 20 61 64 64 72 65 73 73 20 62 6c 6f 63 | ..The.100.64.0.0/10.address.bloc |
| 27620 | 6b 20 69 73 20 72 65 73 65 72 76 65 64 20 66 6f 72 20 75 73 65 20 69 6e 20 63 61 72 72 69 65 72 | k.is.reserved.for.use.in.carrier |
| 27640 | 2d 67 72 61 64 65 20 4e 41 54 00 3a 61 62 62 72 3a 60 43 4b 4e 20 28 4d 41 43 73 65 63 20 63 6f | -grade.NAT.:abbr:`CKN.(MACsec.co |
| 27660 | 6e 6e 65 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 6e 61 6d 65 29 60 20 6b 65 | nnectivity.association.name)`.ke |
| 27680 | 79 00 3a 61 62 62 72 3a 60 44 4d 56 50 4e 20 28 44 79 6e 61 6d 69 63 20 4d 75 6c 74 69 70 6f 69 | y.:abbr:`DMVPN.(Dynamic.Multipoi |
| 276a0 | 6e 74 20 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 69 73 20 | nt.Virtual.Private.Network)`.is. |
| 276c0 | 61 20 64 79 6e 61 6d 69 63 20 3a 61 62 62 72 3a 60 56 50 4e 20 28 56 69 72 74 75 61 6c 20 50 72 | a.dynamic.:abbr:`VPN.(Virtual.Pr |
| 276e0 | 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 74 65 63 68 6e 6f 6c 6f 67 79 20 6f 72 69 67 69 | ivate.Network)`.technology.origi |
| 27700 | 6e 61 6c 6c 79 20 64 65 76 65 6c 6f 70 65 64 20 62 79 20 43 69 73 63 6f 2e 20 57 68 69 6c 65 20 | nally.developed.by.Cisco..While. |
| 27720 | 74 68 65 69 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 77 61 73 20 73 6f 6d 65 77 68 61 | their.implementation.was.somewha |
| 27740 | 74 20 70 72 6f 70 72 69 65 74 61 72 79 2c 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 74 65 | t.proprietary,.the.underlying.te |
| 27760 | 63 68 6e 6f 6c 6f 67 69 65 73 20 61 72 65 20 61 63 74 75 61 6c 6c 79 20 73 74 61 6e 64 61 72 64 | chnologies.are.actually.standard |
| 27780 | 73 20 62 61 73 65 64 2e 20 54 68 65 20 74 68 72 65 65 20 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 | s.based..The.three.technologies. |
| 277a0 | 61 72 65 3a 00 3a 61 62 62 72 3a 60 44 4e 41 54 20 28 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 65 | are:.:abbr:`DNAT.(Destination.Ne |
| 277c0 | 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 63 68 61 6e | twork.Address.Translation)`.chan |
| 277e0 | 67 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 70 | ges.the.destination.address.of.p |
| 27800 | 61 63 6b 65 74 73 20 70 61 73 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 | ackets.passing.through.the.route |
| 27820 | 72 2c 20 77 68 69 6c 65 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 63 68 61 6e 67 | r,.while.:ref:`source-nat`.chang |
| 27840 | 65 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 70 61 63 6b 65 74 73 | es.the.source.address.of.packets |
| 27860 | 2e 20 44 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 75 73 65 64 20 77 68 65 6e 20 61 6e | ..DNAT.is.typically.used.when.an |
| 27880 | 20 65 78 74 65 72 6e 61 6c 20 28 70 75 62 6c 69 63 29 20 68 6f 73 74 20 6e 65 65 64 73 20 74 6f | .external.(public).host.needs.to |
| 278a0 | 20 69 6e 69 74 69 61 74 65 20 61 20 73 65 73 73 69 6f 6e 20 77 69 74 68 20 61 6e 20 69 6e 74 65 | .initiate.a.session.with.an.inte |
| 278c0 | 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 6f 73 74 2e 20 41 20 63 75 73 74 6f 6d 65 72 20 | rnal.(private).host..A.customer. |
| 278e0 | 6e 65 65 64 73 20 74 6f 20 61 63 63 65 73 73 20 61 20 70 72 69 76 61 74 65 20 73 65 72 76 69 63 | needs.to.access.a.private.servic |
| 27900 | 65 20 62 65 68 69 6e 64 20 74 68 65 20 72 6f 75 74 65 72 73 20 70 75 62 6c 69 63 20 49 50 2e 20 | e.behind.the.routers.public.IP.. |
| 27920 | 41 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 20 77 69 74 68 | A.connection.is.established.with |
| 27940 | 20 74 68 65 20 72 6f 75 74 65 72 73 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f | .the.routers.public.IP.address.o |
| 27960 | 6e 20 61 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 70 6f 72 74 20 61 6e 64 20 74 68 75 73 20 61 6c 6c | n.a.well.known.port.and.thus.all |
| 27980 | 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 69 73 20 70 6f 72 74 20 69 73 20 72 65 77 72 69 74 | .traffic.for.this.port.is.rewrit |
| 279a0 | 74 65 6e 20 74 6f 20 61 64 64 72 65 73 73 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 | ten.to.address.the.internal.(pri |
| 279c0 | 76 61 74 65 29 20 68 6f 73 74 2e 00 3a 61 62 62 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 69 62 | vate).host..:abbr:`EAP.(Extensib |
| 279e0 | 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6f 76 65 | le.Authentication.Protocol)`.ove |
| 27a00 | 72 20 4c 41 4e 20 28 45 41 50 6f 4c 29 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 6f 72 74 20 | r.LAN.(EAPoL).is.a.network.port. |
| 27a20 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 69 6e 20 | authentication.protocol.used.in. |
| 27a40 | 49 45 45 45 20 38 30 32 2e 31 58 20 28 50 6f 72 74 20 42 61 73 65 64 20 4e 65 74 77 6f 72 6b 20 | IEEE.802.1X.(Port.Based.Network. |
| 27a60 | 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 20 64 65 76 65 6c 6f 70 65 64 20 74 6f 20 67 69 76 | Access.Control).developed.to.giv |
| 27a80 | 65 20 61 20 67 65 6e 65 72 69 63 20 6e 65 74 77 6f 72 6b 20 73 69 67 6e 2d 6f 6e 20 74 6f 20 61 | e.a.generic.network.sign-on.to.a |
| 27aa0 | 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 65 73 2e 00 3a 61 62 62 72 3a 60 | ccess.network.resources..:abbr:` |
| 27ac0 | 45 55 49 2d 36 34 20 28 36 34 2d 42 69 74 20 45 78 74 65 6e 64 65 64 20 55 6e 69 71 75 65 20 49 | EUI-64.(64-Bit.Extended.Unique.I |
| 27ae0 | 64 65 6e 74 69 66 69 65 72 29 60 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 | dentifier)`.as.specified.in.:rfc |
| 27b00 | 3a 60 34 32 39 31 60 20 61 6c 6c 6f 77 73 20 61 20 68 6f 73 74 20 74 6f 20 61 73 73 69 67 6e 20 | :`4291`.allows.a.host.to.assign. |
| 27b20 | 69 74 65 73 6c 66 20 61 20 75 6e 69 71 75 65 20 36 34 2d 42 69 74 20 49 50 76 36 20 61 64 64 72 | iteslf.a.unique.64-Bit.IPv6.addr |
| 27b40 | 65 73 73 2e 00 3a 61 62 62 72 3a 60 47 45 4e 45 56 45 20 28 47 65 6e 65 72 69 63 20 4e 65 74 77 | ess..:abbr:`GENEVE.(Generic.Netw |
| 27b60 | 6f 72 6b 20 56 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e | ork.Virtualization.Encapsulation |
| 27b80 | 29 60 20 73 75 70 70 6f 72 74 73 20 61 6c 6c 20 6f 66 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 | )`.supports.all.of.the.capabilit |
| 27ba0 | 69 65 73 20 6f 66 20 3a 61 62 62 72 3a 60 56 58 4c 41 4e 20 28 56 69 72 74 75 61 6c 20 45 78 74 | ies.of.:abbr:`VXLAN.(Virtual.Ext |
| 27bc0 | 65 6e 73 69 62 6c 65 20 4c 41 4e 29 60 2c 20 3a 61 62 62 72 3a 60 4e 56 47 52 45 20 28 4e 65 74 | ensible.LAN)`,.:abbr:`NVGRE.(Net |
| 27be0 | 77 6f 72 6b 20 56 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 69 6e 67 20 47 65 6e 65 72 69 | work.Virtualization.using.Generi |
| 27c00 | 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 2c 20 61 6e 64 20 3a | c.Routing.Encapsulation)`,.and.: |
| 27c20 | 61 62 62 72 3a 60 53 54 54 20 28 53 74 61 74 65 6c 65 73 73 20 54 72 61 6e 73 70 6f 72 74 20 54 | abbr:`STT.(Stateless.Transport.T |
| 27c40 | 75 6e 6e 65 6c 69 6e 67 29 60 20 61 6e 64 20 77 61 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 6f | unneling)`.and.was.designed.to.o |
| 27c60 | 76 65 72 63 6f 6d 65 20 74 68 65 69 72 20 70 65 72 63 65 69 76 65 64 20 6c 69 6d 69 74 61 74 69 | vercome.their.perceived.limitati |
| 27c80 | 6f 6e 73 2e 20 4d 61 6e 79 20 62 65 6c 69 65 76 65 20 47 45 4e 45 56 45 20 63 6f 75 6c 64 20 65 | ons..Many.believe.GENEVE.could.e |
| 27ca0 | 76 65 6e 74 75 61 6c 6c 79 20 72 65 70 6c 61 63 65 20 74 68 65 73 65 20 65 61 72 6c 69 65 72 20 | ventually.replace.these.earlier. |
| 27cc0 | 66 6f 72 6d 61 74 73 20 65 6e 74 69 72 65 6c 79 2e 00 3a 61 62 62 72 3a 60 47 52 45 20 28 47 65 | formats.entirely..:abbr:`GRE.(Ge |
| 27ce0 | 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 2c 20 47 | neric.Routing.Encapsulation)`,.G |
| 27d00 | 52 45 2f 49 50 73 65 63 20 28 6f 72 20 49 50 49 50 2f 49 50 73 65 63 2c 20 53 49 54 2f 49 50 73 | RE/IPsec.(or.IPIP/IPsec,.SIT/IPs |
| 27d20 | 65 63 2c 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 73 74 61 74 65 6c 65 73 73 20 74 75 6e 6e 65 | ec,.or.any.other.stateless.tunne |
| 27d40 | 6c 20 70 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 49 50 73 65 63 29 20 69 73 20 74 68 65 20 75 73 | l.protocol.over.IPsec).is.the.us |
| 27d60 | 75 61 6c 20 77 61 79 20 74 6f 20 70 72 6f 74 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 69 | ual.way.to.protect.the.traffic.i |
| 27d80 | 6e 73 69 64 65 20 61 20 74 75 6e 6e 65 6c 2e 00 3a 61 62 62 72 3a 60 47 52 4f 20 28 47 65 6e 65 | nside.a.tunnel..:abbr:`GRO.(Gene |
| 27da0 | 72 69 63 20 72 65 63 65 69 76 65 20 6f 66 66 6c 6f 61 64 29 60 20 69 73 20 74 68 65 20 63 6f 6d | ric.receive.offload)`.is.the.com |
| 27dc0 | 70 6c 65 6d 65 6e 74 20 74 6f 20 47 53 4f 2e 20 49 64 65 61 6c 6c 79 20 61 6e 79 20 66 72 61 6d | plement.to.GSO..Ideally.any.fram |
| 27de0 | 65 20 61 73 73 65 6d 62 6c 65 64 20 62 79 20 47 52 4f 20 73 68 6f 75 6c 64 20 62 65 20 73 65 67 | e.assembled.by.GRO.should.be.seg |
| 27e00 | 6d 65 6e 74 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 6e 20 69 64 65 6e 74 69 63 61 6c 20 73 65 | mented.to.create.an.identical.se |
| 27e20 | 71 75 65 6e 63 65 20 6f 66 20 66 72 61 6d 65 73 20 75 73 69 6e 67 20 47 53 4f 2c 20 61 6e 64 20 | quence.of.frames.using.GSO,.and. |
| 27e40 | 61 6e 79 20 73 65 71 75 65 6e 63 65 20 6f 66 20 66 72 61 6d 65 73 20 73 65 67 6d 65 6e 74 65 64 | any.sequence.of.frames.segmented |
| 27e60 | 20 62 79 20 47 53 4f 20 73 68 6f 75 6c 64 20 62 65 20 61 62 6c 65 20 74 6f 20 62 65 20 72 65 61 | .by.GSO.should.be.able.to.be.rea |
| 27e80 | 73 73 65 6d 62 6c 65 64 20 62 61 63 6b 20 74 6f 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 62 79 | ssembled.back.to.the.original.by |
| 27ea0 | 20 47 52 4f 2e 20 54 68 65 20 6f 6e 6c 79 20 65 78 63 65 70 74 69 6f 6e 20 74 6f 20 74 68 69 73 | .GRO..The.only.exception.to.this |
| 27ec0 | 20 69 73 20 49 50 76 34 20 49 44 20 69 6e 20 74 68 65 20 63 61 73 65 20 74 68 61 74 20 74 68 65 | .is.IPv4.ID.in.the.case.that.the |
| 27ee0 | 20 44 46 20 62 69 74 20 69 73 20 73 65 74 20 66 6f 72 20 61 20 67 69 76 65 6e 20 49 50 20 68 65 | .DF.bit.is.set.for.a.given.IP.he |
| 27f00 | 61 64 65 72 2e 20 49 66 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 49 50 76 34 20 49 | ader..If.the.value.of.the.IPv4.I |
| 27f20 | 44 20 69 73 20 6e 6f 74 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 20 69 6e 63 72 65 6d 65 6e 74 69 | D.is.not.sequentially.incrementi |
| 27f40 | 6e 67 20 69 74 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 20 73 6f 20 74 68 61 74 20 69 74 | ng.it.will.be.altered.so.that.it |
| 27f60 | 20 69 73 20 77 68 65 6e 20 61 20 66 72 61 6d 65 20 61 73 73 65 6d 62 6c 65 64 20 76 69 61 20 47 | .is.when.a.frame.assembled.via.G |
| 27f80 | 52 4f 20 69 73 20 73 65 67 6d 65 6e 74 65 64 20 76 69 61 20 47 53 4f 2e 00 3a 61 62 62 72 3a 60 | RO.is.segmented.via.GSO..:abbr:` |
| 27fa0 | 47 53 4f 20 28 47 65 6e 65 72 69 63 20 53 65 67 6d 65 6e 74 61 74 69 6f 6e 20 4f 66 66 6c 6f 61 | GSO.(Generic.Segmentation.Offloa |
| 27fc0 | 64 29 60 20 69 73 20 61 20 70 75 72 65 20 73 6f 66 74 77 61 72 65 20 6f 66 66 6c 6f 61 64 20 74 | d)`.is.a.pure.software.offload.t |
| 27fe0 | 68 61 74 20 69 73 20 6d 65 61 6e 74 20 74 6f 20 64 65 61 6c 20 77 69 74 68 20 63 61 73 65 73 20 | hat.is.meant.to.deal.with.cases. |
| 28000 | 77 68 65 72 65 20 64 65 76 69 63 65 20 64 72 69 76 65 72 73 20 63 61 6e 6e 6f 74 20 70 65 72 66 | where.device.drivers.cannot.perf |
| 28020 | 6f 72 6d 20 74 68 65 20 6f 66 66 6c 6f 61 64 73 20 64 65 73 63 72 69 62 65 64 20 61 62 6f 76 65 | orm.the.offloads.described.above |
| 28040 | 2e 20 57 68 61 74 20 6f 63 63 75 72 73 20 69 6e 20 47 53 4f 20 69 73 20 74 68 61 74 20 61 20 67 | ..What.occurs.in.GSO.is.that.a.g |
| 28060 | 69 76 65 6e 20 73 6b 62 75 66 66 20 77 69 6c 6c 20 68 61 76 65 20 69 74 73 20 64 61 74 61 20 62 | iven.skbuff.will.have.its.data.b |
| 28080 | 72 6f 6b 65 6e 20 6f 75 74 20 6f 76 65 72 20 6d 75 6c 74 69 70 6c 65 20 73 6b 62 75 66 66 73 20 | roken.out.over.multiple.skbuffs. |
| 280a0 | 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 72 65 73 69 7a 65 64 20 74 6f 20 6d 61 74 63 68 20 | that.have.been.resized.to.match. |
| 280c0 | 74 68 65 20 4d 53 53 20 70 72 6f 76 69 64 65 64 20 76 69 61 20 73 6b 62 5f 73 68 69 6e 66 6f 28 | the.MSS.provided.via.skb_shinfo( |
| 280e0 | 29 2d 3e 67 73 6f 5f 73 69 7a 65 2e 00 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e | )->gso_size..:abbr:`IGMP.(Intern |
| 28100 | 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 70 | et.Group.Management.Protocol)`.p |
| 28120 | 72 6f 78 79 20 73 65 6e 64 73 20 49 47 4d 50 20 68 6f 73 74 20 6d 65 73 73 61 67 65 73 20 6f 6e | roxy.sends.IGMP.host.messages.on |
| 28140 | 20 62 65 68 61 6c 66 20 6f 66 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 63 6c 69 65 6e 74 2e 20 54 | .behalf.of.a.connected.client..T |
| 28160 | 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 64 65 66 69 6e 65 20 6f 6e 65 | he.configuration.must.define.one |
| 28180 | 2c 20 61 6e 64 20 6f 6e 6c 79 20 6f 6e 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 | ,.and.only.one.upstream.interfac |
| 281a0 | 65 2c 20 61 6e 64 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e | e,.and.one.or.more.downstream.in |
| 281c0 | 74 65 72 66 61 63 65 73 2e 00 3a 61 62 62 72 3a 60 49 50 53 65 63 20 28 49 50 20 53 65 63 75 72 | terfaces..:abbr:`IPSec.(IP.Secur |
| 281e0 | 69 74 79 29 60 20 2d 20 74 6f 6f 20 6d 61 6e 79 20 52 46 43 73 20 74 6f 20 6c 69 73 74 2c 20 62 | ity)`.-.too.many.RFCs.to.list,.b |
| 28200 | 75 74 20 73 74 61 72 74 20 77 69 74 68 20 3a 72 66 63 3a 60 34 33 30 31 60 00 3a 61 62 62 72 3a | ut.start.with.:rfc:`4301`.:abbr: |
| 28220 | 60 49 53 2d 49 53 20 28 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 74 6f 20 49 | `IS-IS.(Intermediate.System.to.I |
| 28240 | 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 69 73 20 61 20 6c 69 6e 6b 2d 73 | ntermediate.System)`.is.a.link-s |
| 28260 | 74 61 74 65 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 20 28 | tate.interior.gateway.protocol.( |
| 28280 | 49 47 50 29 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 49 53 4f 31 30 | IGP).which.is.described.in.ISO10 |
| 282a0 | 35 38 39 2c 20 3a 72 66 63 3a 60 31 31 39 35 60 2c 20 3a 72 66 63 3a 60 35 33 30 38 60 2e 20 49 | 589,.:rfc:`1195`,.:rfc:`5308`..I |
| 282c0 | 53 2d 49 53 20 72 75 6e 73 20 74 68 65 20 44 69 6a 6b 73 74 72 61 20 73 68 6f 72 74 65 73 74 2d | S-IS.runs.the.Dijkstra.shortest- |
| 282e0 | 70 61 74 68 20 66 69 72 73 74 20 28 53 50 46 29 20 61 6c 67 6f 72 69 74 68 6d 20 74 6f 20 63 72 | path.first.(SPF).algorithm.to.cr |
| 28300 | 65 61 74 65 20 61 20 64 61 74 61 62 61 73 65 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b e2 80 | eate.a.database.of.the.network.. |
| 28320 | 99 73 20 74 6f 70 6f 6c 6f 67 79 2c 20 61 6e 64 20 66 72 6f 6d 20 74 68 61 74 20 64 61 74 61 62 | .s.topology,.and.from.that.datab |
| 28340 | 61 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 62 65 73 74 20 28 74 68 61 74 20 | ase.to.determine.the.best.(that. |
| 28360 | 69 73 2c 20 6c 6f 77 65 73 74 20 63 6f 73 74 29 20 70 61 74 68 20 74 6f 20 61 20 64 65 73 74 69 | is,.lowest.cost).path.to.a.desti |
| 28380 | 6e 61 74 69 6f 6e 2e 20 54 68 65 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 73 79 73 74 65 6d 73 | nation..The.intermediate.systems |
| 283a0 | 20 28 74 68 65 20 6e 61 6d 65 20 66 6f 72 20 72 6f 75 74 65 72 73 29 20 65 78 63 68 61 6e 67 65 | .(the.name.for.routers).exchange |
| 283c0 | 20 74 6f 70 6f 6c 6f 67 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 74 68 65 69 72 | .topology.information.with.their |
| 283e0 | 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 65 6e 63 74 65 64 20 6e 65 69 67 68 62 6f 72 73 2e 20 49 | .directly.conencted.neighbors..I |
| 28400 | 53 2d 49 53 20 72 75 6e 73 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 20 64 61 74 61 20 6c | S-IS.runs.directly.on.the.data.l |
| 28420 | 69 6e 6b 20 6c 61 79 65 72 20 28 4c 61 79 65 72 20 32 29 2e 20 49 53 2d 49 53 20 61 64 64 72 65 | ink.layer.(Layer.2)..IS-IS.addre |
| 28440 | 73 73 65 73 20 61 72 65 20 63 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 4e 45 54 73 20 28 4e 65 74 | sses.are.called.:abbr:`NETs.(Net |
| 28460 | 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 73 29 60 20 61 6e 64 20 63 61 6e 20 62 65 20 | work.Entity.Titles)`.and.can.be. |
| 28480 | 38 20 74 6f 20 32 30 20 62 79 74 65 73 20 6c 6f 6e 67 2c 20 62 75 74 20 61 72 65 20 67 65 6e 65 | 8.to.20.bytes.long,.but.are.gene |
| 284a0 | 72 61 6c 6c 79 20 31 30 20 62 79 74 65 73 20 6c 6f 6e 67 2e 20 54 68 65 20 74 72 65 65 20 64 61 | rally.10.bytes.long..The.tree.da |
| 284c0 | 74 61 62 61 73 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 49 53 2d 49 | tabase.that.is.created.with.IS-I |
| 284e0 | 53 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6f 6e 65 20 74 68 61 74 20 69 73 20 | S.is.similar.to.the.one.that.is. |
| 28500 | 63 72 65 61 74 65 64 20 77 69 74 68 20 4f 53 50 46 20 69 6e 20 74 68 61 74 20 74 68 65 20 70 61 | created.with.OSPF.in.that.the.pa |
| 28520 | 74 68 73 20 63 68 6f 73 65 6e 20 73 68 6f 75 6c 64 20 62 65 20 73 69 6d 69 6c 61 72 2e 20 43 6f | ths.chosen.should.be.similar..Co |
| 28540 | 6d 70 61 72 69 73 6f 6e 73 20 74 6f 20 4f 53 50 46 20 61 72 65 20 69 6e 65 76 69 74 61 62 6c 65 | mparisons.to.OSPF.are.inevitable |
| 28560 | 20 61 6e 64 20 6f 66 74 65 6e 20 61 72 65 20 72 65 61 73 6f 6e 61 62 6c 65 20 6f 6e 65 73 20 74 | .and.often.are.reasonable.ones.t |
| 28580 | 6f 20 6d 61 6b 65 20 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 74 68 65 20 77 61 79 20 61 20 6e | o.make.in.regards.to.the.way.a.n |
| 285a0 | 65 74 77 6f 72 6b 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 77 69 74 68 20 65 69 74 68 65 72 20 | etwork.will.respond.with.either. |
| 285c0 | 49 47 50 2e 00 3a 61 62 62 72 3a 60 49 53 2d 49 53 20 28 49 6e 74 65 72 6d 65 64 69 61 74 65 20 | IGP..:abbr:`IS-IS.(Intermediate. |
| 285e0 | 53 79 73 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 | System.to.Intermediate.System)`. |
| 28600 | 69 73 20 61 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 | is.a.link-state.interior.gateway |
| 28620 | 20 70 72 6f 74 6f 63 6f 6c 20 28 49 47 50 29 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 69 62 | .protocol.(IGP).which.is.describ |
| 28640 | 65 64 20 69 6e 20 49 53 4f 31 30 35 38 39 2c 20 3a 72 66 63 3a 60 31 31 39 35 60 2c 20 3a 72 66 | ed.in.ISO10589,.:rfc:`1195`,.:rf |
| 28660 | 63 3a 60 35 33 30 38 60 2e 20 49 53 2d 49 53 20 72 75 6e 73 20 74 68 65 20 44 69 6a 6b 73 74 72 | c:`5308`..IS-IS.runs.the.Dijkstr |
| 28680 | 61 20 73 68 6f 72 74 65 73 74 2d 70 61 74 68 20 66 69 72 73 74 20 28 53 50 46 29 20 61 6c 67 6f | a.shortest-path.first.(SPF).algo |
| 286a0 | 72 69 74 68 6d 20 74 6f 20 63 72 65 61 74 65 20 61 20 64 61 74 61 62 61 73 65 20 6f 66 20 74 68 | rithm.to.create.a.database.of.th |
| 286c0 | 65 20 6e 65 74 77 6f 72 6b e2 80 99 73 20 74 6f 70 6f 6c 6f 67 79 2c 20 61 6e 64 20 66 72 6f 6d | e.network...s.topology,.and.from |
| 286e0 | 20 74 68 61 74 20 64 61 74 61 62 61 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 | .that.database.to.determine.the. |
| 28700 | 62 65 73 74 20 28 74 68 61 74 20 69 73 2c 20 6c 6f 77 65 73 74 20 63 6f 73 74 29 20 70 61 74 68 | best.(that.is,.lowest.cost).path |
| 28720 | 20 74 6f 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 68 65 20 69 6e 74 65 72 6d 65 64 69 | .to.a.destination..The.intermedi |
| 28740 | 61 74 65 20 73 79 73 74 65 6d 73 20 28 74 68 65 20 6e 61 6d 65 20 66 6f 72 20 72 6f 75 74 65 72 | ate.systems.(the.name.for.router |
| 28760 | 73 29 20 65 78 63 68 61 6e 67 65 20 74 6f 70 6f 6c 6f 67 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | s).exchange.topology.information |
| 28780 | 20 77 69 74 68 20 74 68 65 69 72 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 6e | .with.their.directly.connected.n |
| 287a0 | 65 69 67 68 62 6f 72 73 2e 20 49 53 2d 49 53 20 72 75 6e 73 20 64 69 72 65 63 74 6c 79 20 6f 6e | eighbors..IS-IS.runs.directly.on |
| 287c0 | 20 74 68 65 20 64 61 74 61 20 6c 69 6e 6b 20 6c 61 79 65 72 20 28 4c 61 79 65 72 20 32 29 2e 20 | .the.data.link.layer.(Layer.2).. |
| 287e0 | 49 53 2d 49 53 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 63 61 6c 6c 65 64 20 3a 61 62 62 72 | IS-IS.addresses.are.called.:abbr |
| 28800 | 3a 60 4e 45 54 73 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 73 29 60 20 | :`NETs.(Network.Entity.Titles)`. |
| 28820 | 61 6e 64 20 63 61 6e 20 62 65 20 38 20 74 6f 20 32 30 20 62 79 74 65 73 20 6c 6f 6e 67 2c 20 62 | and.can.be.8.to.20.bytes.long,.b |
| 28840 | 75 74 20 61 72 65 20 67 65 6e 65 72 61 6c 6c 79 20 31 30 20 62 79 74 65 73 20 6c 6f 6e 67 2e 20 | ut.are.generally.10.bytes.long.. |
| 28860 | 54 68 65 20 74 72 65 65 20 64 61 74 61 62 61 73 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 | The.tree.database.that.is.create |
| 28880 | 64 20 77 69 74 68 20 49 53 2d 49 53 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6f | d.with.IS-IS.is.similar.to.the.o |
| 288a0 | 6e 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 4f 53 50 46 20 69 6e 20 | ne.that.is.created.with.OSPF.in. |
| 288c0 | 74 68 61 74 20 74 68 65 20 70 61 74 68 73 20 63 68 6f 73 65 6e 20 73 68 6f 75 6c 64 20 62 65 20 | that.the.paths.chosen.should.be. |
| 288e0 | 73 69 6d 69 6c 61 72 2e 20 43 6f 6d 70 61 72 69 73 6f 6e 73 20 74 6f 20 4f 53 50 46 20 61 72 65 | similar..Comparisons.to.OSPF.are |
| 28900 | 20 69 6e 65 76 69 74 61 62 6c 65 20 61 6e 64 20 6f 66 74 65 6e 20 61 72 65 20 72 65 61 73 6f 6e | .inevitable.and.often.are.reason |
| 28920 | 61 62 6c 65 20 6f 6e 65 73 20 74 6f 20 6d 61 6b 65 20 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 | able.ones.to.make.in.regards.to. |
| 28940 | 74 68 65 20 77 61 79 20 61 20 6e 65 74 77 6f 72 6b 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 77 | the.way.a.network.will.respond.w |
| 28960 | 69 74 68 20 65 69 74 68 65 72 20 49 47 50 2e 00 3a 61 62 62 72 3a 60 4c 33 56 50 4e 20 56 52 46 | ith.either.IGP..:abbr:`L3VPN.VRF |
| 28980 | 73 20 28 20 4c 61 79 65 72 20 33 20 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 | s.(.Layer.3.Virtual.Private.Netw |
| 289a0 | 6f 72 6b 73 20 29 60 20 62 67 70 64 20 73 75 70 70 6f 72 74 73 20 66 6f 72 20 49 50 76 34 20 52 | orks.)`.bgpd.supports.for.IPv4.R |
| 289c0 | 46 43 20 34 33 36 34 20 61 6e 64 20 49 50 76 36 20 52 46 43 20 34 36 35 39 2e 20 4c 33 56 50 4e | FC.4364.and.IPv6.RFC.4659..L3VPN |
| 289e0 | 20 72 6f 75 74 65 73 2c 20 61 6e 64 20 74 68 65 69 72 20 61 73 73 6f 63 69 61 74 65 64 20 56 52 | .routes,.and.their.associated.VR |
| 28a00 | 46 20 4d 50 4c 53 20 6c 61 62 65 6c 73 2c 20 63 61 6e 20 62 65 20 64 69 73 74 72 69 62 75 74 65 | F.MPLS.labels,.can.be.distribute |
| 28a20 | 64 20 74 6f 20 56 50 4e 20 53 41 46 49 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 20 74 68 65 20 64 | d.to.VPN.SAFI.neighbors.in.the.d |
| 28a40 | 65 66 61 75 6c 74 2c 20 69 2e 65 2e 2c 20 6e 6f 6e 20 56 52 46 2c 20 42 47 50 20 69 6e 73 74 61 | efault,.i.e.,.non.VRF,.BGP.insta |
| 28a60 | 6e 63 65 2e 20 56 52 46 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 72 65 20 72 65 61 63 68 65 64 | nce..VRF.MPLS.labels.are.reached |
| 28a80 | 20 75 73 69 6e 67 20 63 6f 72 65 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 77 68 69 63 68 20 61 72 | .using.core.MPLS.labels.which.ar |
| 28aa0 | 65 20 64 69 73 74 72 69 62 75 74 65 64 20 75 73 69 6e 67 20 4c 44 50 20 6f 72 20 42 47 50 20 6c | e.distributed.using.LDP.or.BGP.l |
| 28ac0 | 61 62 65 6c 65 64 20 75 6e 69 63 61 73 74 2e 20 62 67 70 64 20 61 6c 73 6f 20 73 75 70 70 6f 72 | abeled.unicast..bgpd.also.suppor |
| 28ae0 | 74 73 20 69 6e 74 65 72 2d 56 52 46 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e 67 2e 00 3a 61 62 62 | ts.inter-VRF.route.leaking..:abb |
| 28b00 | 72 3a 60 4c 44 50 20 28 4c 61 62 65 6c 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f | r:`LDP.(Label.Distribution.Proto |
| 28b20 | 63 6f 6c 29 60 20 69 73 20 61 20 54 43 50 20 62 61 73 65 64 20 4d 50 4c 53 20 73 69 67 6e 61 6c | col)`.is.a.TCP.based.MPLS.signal |
| 28b40 | 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 64 69 73 74 72 69 62 75 74 65 73 20 6c 61 | ing.protocol.that.distributes.la |
| 28b60 | 62 65 6c 73 20 63 72 65 61 74 69 6e 67 20 4d 50 4c 53 20 6c 61 62 65 6c 20 73 77 69 74 63 68 65 | bels.creating.MPLS.label.switche |
| 28b80 | 64 20 70 61 74 68 73 20 69 6e 20 61 20 64 79 6e 61 6d 69 63 20 6d 61 6e 6e 65 72 2e 20 4c 44 50 | d.paths.in.a.dynamic.manner..LDP |
| 28ba0 | 20 69 73 20 6e 6f 74 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 73 20 69 | .is.not.a.routing.protocol,.as.i |
| 28bc0 | 74 20 72 65 6c 69 65 73 20 6f 6e 20 6f 74 68 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 | t.relies.on.other.routing.protoc |
| 28be0 | 6f 6c 73 20 66 6f 72 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 63 69 73 69 6f 6e 73 2e 20 4c 44 | ols.for.forwarding.decisions..LD |
| 28c00 | 50 20 63 61 6e 6e 6f 74 20 62 6f 6f 74 73 74 72 61 70 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 | P.cannot.bootstrap.itself,.and.t |
| 28c20 | 68 65 72 65 66 6f 72 65 20 72 65 6c 69 65 73 20 6f 6e 20 73 61 69 64 20 72 6f 75 74 69 6e 67 20 | herefore.relies.on.said.routing. |
| 28c40 | 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 77 69 74 68 | protocols.for.communication.with |
| 28c60 | 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 74 68 61 74 20 75 73 65 20 4c 44 50 2e 00 3a 61 62 | .other.routers.that.use.LDP..:ab |
| 28c80 | 62 72 3a 60 4c 4c 44 50 20 28 4c 69 6e 6b 20 4c 61 79 65 72 20 44 69 73 63 6f 76 65 72 79 20 50 | br:`LLDP.(Link.Layer.Discovery.P |
| 28ca0 | 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 76 65 6e 64 6f 72 2d 6e 65 75 74 72 61 6c 20 6c 69 | rotocol)`.is.a.vendor-neutral.li |
| 28cc0 | 6e 6b 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 | nk.layer.protocol.in.the.Interne |
| 28ce0 | 74 20 50 72 6f 74 6f 63 6f 6c 20 53 75 69 74 65 20 75 73 65 64 20 62 79 20 6e 65 74 77 6f 72 6b | t.Protocol.Suite.used.by.network |
| 28d00 | 20 64 65 76 69 63 65 73 20 66 6f 72 20 61 64 76 65 72 74 69 73 69 6e 67 20 74 68 65 69 72 20 69 | .devices.for.advertising.their.i |
| 28d20 | 64 65 6e 74 69 74 79 2c 20 63 61 70 61 62 69 6c 69 74 69 65 73 2c 20 61 6e 64 20 6e 65 69 67 68 | dentity,.capabilities,.and.neigh |
| 28d40 | 62 6f 72 73 20 6f 6e 20 61 6e 20 49 45 45 45 20 38 30 32 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e | bors.on.an.IEEE.802.local.area.n |
| 28d60 | 65 74 77 6f 72 6b 2c 20 70 72 69 6e 63 69 70 61 6c 6c 79 20 77 69 72 65 64 20 45 74 68 65 72 6e | etwork,.principally.wired.Ethern |
| 28d80 | 65 74 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 66 6f 72 6d 61 6c 6c 79 20 72 65 66 | et..The.protocol.is.formally.ref |
| 28da0 | 65 72 72 65 64 20 74 6f 20 62 79 20 74 68 65 20 49 45 45 45 20 61 73 20 53 74 61 74 69 6f 6e 20 | erred.to.by.the.IEEE.as.Station. |
| 28dc0 | 61 6e 64 20 4d 65 64 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 20 43 6f 6e 6e 65 63 74 | and.Media.Access.Control.Connect |
| 28de0 | 69 76 69 74 79 20 44 69 73 63 6f 76 65 72 79 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 49 45 45 | ivity.Discovery.specified.in.IEE |
| 28e00 | 45 20 38 30 32 2e 31 41 42 20 61 6e 64 20 49 45 45 45 20 38 30 32 2e 33 2d 32 30 31 32 20 73 65 | E.802.1AB.and.IEEE.802.3-2012.se |
| 28e20 | 63 74 69 6f 6e 20 36 20 63 6c 61 75 73 65 20 37 39 2e 00 3a 61 62 62 72 3a 60 4c 52 4f 20 28 4c | ction.6.clause.79..:abbr:`LRO.(L |
| 28e40 | 61 72 67 65 20 52 65 63 65 69 76 65 20 4f 66 66 6c 6f 61 64 29 60 20 69 73 20 61 20 74 65 63 68 | arge.Receive.Offload)`.is.a.tech |
| 28e60 | 6e 69 71 75 65 20 64 65 73 69 67 6e 65 64 20 74 6f 20 62 6f 6f 73 74 20 74 68 65 20 65 66 66 69 | nique.designed.to.boost.the.effi |
| 28e80 | 63 69 65 6e 63 79 20 6f 66 20 68 6f 77 20 79 6f 75 72 20 63 6f 6d 70 75 74 65 72 27 73 20 6e 65 | ciency.of.how.your.computer's.ne |
| 28ea0 | 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 63 61 72 64 20 28 4e 49 43 29 20 70 72 6f 63 65 | twork.interface.card.(NIC).proce |
| 28ec0 | 73 73 65 73 20 69 6e 63 6f 6d 69 6e 67 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 2e 20 54 | sses.incoming.network.traffic..T |
| 28ee0 | 79 70 69 63 61 6c 6c 79 2c 20 6e 65 74 77 6f 72 6b 20 64 61 74 61 20 61 72 72 69 76 65 73 20 69 | ypically,.network.data.arrives.i |
| 28f00 | 6e 20 73 6d 61 6c 6c 65 72 20 63 68 75 6e 6b 73 20 63 61 6c 6c 65 64 20 70 61 63 6b 65 74 73 2e | n.smaller.chunks.called.packets. |
| 28f20 | 20 50 72 6f 63 65 73 73 69 6e 67 20 65 61 63 68 20 70 61 63 6b 65 74 20 69 6e 64 69 76 69 64 75 | .Processing.each.packet.individu |
| 28f40 | 61 6c 6c 79 20 63 6f 6e 73 75 6d 65 73 20 43 50 55 20 28 63 65 6e 74 72 61 6c 20 70 72 6f 63 65 | ally.consumes.CPU.(central.proce |
| 28f60 | 73 73 69 6e 67 20 75 6e 69 74 29 20 72 65 73 6f 75 72 63 65 73 2e 20 4c 6f 74 73 20 6f 66 20 73 | ssing.unit).resources..Lots.of.s |
| 28f80 | 6d 61 6c 6c 20 70 61 63 6b 65 74 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 20 70 65 72 66 6f | mall.packets.can.lead.to.a.perfo |
| 28fa0 | 72 6d 61 6e 63 65 20 62 6f 74 74 6c 65 6e 65 63 6b 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 68 61 | rmance.bottleneck..Instead.of.ha |
| 28fc0 | 6e 64 69 6e 67 20 74 68 65 20 43 50 55 20 65 61 63 68 20 70 61 63 6b 65 74 20 61 73 20 69 74 20 | nding.the.CPU.each.packet.as.it. |
| 28fe0 | 63 6f 6d 65 73 20 69 6e 2c 20 4c 52 4f 20 69 6e 73 74 72 75 63 74 73 20 74 68 65 20 4e 49 43 20 | comes.in,.LRO.instructs.the.NIC. |
| 29000 | 74 6f 20 63 6f 6d 62 69 6e 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 | to.combine.multiple.incoming.pac |
| 29020 | 6b 65 74 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 2c 20 6c 61 72 67 65 72 20 70 61 63 6b 65 | kets.into.a.single,.larger.packe |
| 29040 | 74 2e 20 54 68 69 73 20 6c 61 72 67 65 72 20 70 61 63 6b 65 74 20 69 73 20 74 68 65 6e 20 70 61 | t..This.larger.packet.is.then.pa |
| 29060 | 73 73 65 64 20 74 6f 20 74 68 65 20 43 50 55 20 66 6f 72 20 70 72 6f 63 65 73 73 69 6e 67 2e 00 | ssed.to.the.CPU.for.processing.. |
| 29080 | 3a 61 62 62 72 3a 60 4d 46 50 20 28 4d 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 6f | :abbr:`MFP.(Management.Frame.Pro |
| 290a0 | 74 65 63 74 69 6f 6e 29 60 20 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 57 50 41 33 2e 00 | tection)`.is.required.for.WPA3.. |
| 290c0 | 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 | :abbr:`MKA.(MACsec.Key.Agreement |
| 290e0 | 20 70 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 75 73 65 64 20 74 6f 20 73 79 6e 63 68 72 6f 6e 69 | .protocol)`.is.used.to.synchroni |
| 29100 | 7a 65 20 6b 65 79 73 20 62 65 74 77 65 65 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 70 65 65 72 73 | ze.keys.between.individual.peers |
| 29120 | 2e 00 3a 61 62 62 72 3a 60 4d 50 4c 53 20 28 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 4c 61 | ..:abbr:`MPLS.(Multi-Protocol.La |
| 29140 | 62 65 6c 20 53 77 69 74 63 68 69 6e 67 29 60 20 69 73 20 61 20 70 61 63 6b 65 74 20 66 6f 72 77 | bel.Switching)`.is.a.packet.forw |
| 29160 | 61 72 64 69 6e 67 20 70 61 72 61 64 69 67 6d 20 77 68 69 63 68 20 64 69 66 66 65 72 73 20 66 72 | arding.paradigm.which.differs.fr |
| 29180 | 6f 6d 20 72 65 67 75 6c 61 72 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 2e 20 49 6e 73 74 65 61 | om.regular.IP.forwarding..Instea |
| 291a0 | 64 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 20 62 65 69 6e 67 20 75 73 65 64 20 74 6f 20 | d.of.IP.addresses.being.used.to. |
| 291c0 | 6d 61 6b 65 20 74 68 65 20 64 65 63 69 73 69 6f 6e 20 6f 6e 20 66 69 6e 64 69 6e 67 20 74 68 65 | make.the.decision.on.finding.the |
| 291e0 | 20 65 78 69 74 20 69 6e 74 65 72 66 61 63 65 2c 20 61 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 69 | .exit.interface,.a.router.will.i |
| 29200 | 6e 73 74 65 61 64 20 75 73 65 20 61 6e 20 65 78 61 63 74 20 6d 61 74 63 68 20 6f 6e 20 61 20 33 | nstead.use.an.exact.match.on.a.3 |
| 29220 | 32 20 62 69 74 2f 34 20 62 79 74 65 20 68 65 61 64 65 72 20 63 61 6c 6c 65 64 20 74 68 65 20 4d | 2.bit/4.byte.header.called.the.M |
| 29240 | 50 4c 53 20 6c 61 62 65 6c 2e 20 54 68 69 73 20 6c 61 62 65 6c 20 69 73 20 69 6e 73 65 72 74 65 | PLS.label..This.label.is.inserte |
| 29260 | 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 65 74 68 65 72 6e 65 74 20 28 6c 61 79 65 72 20 32 29 | d.between.the.ethernet.(layer.2) |
| 29280 | 20 68 65 61 64 65 72 20 61 6e 64 20 74 68 65 20 49 50 20 28 6c 61 79 65 72 20 33 29 20 68 65 61 | .header.and.the.IP.(layer.3).hea |
| 292a0 | 64 65 72 2e 20 4f 6e 65 20 63 61 6e 20 73 74 61 74 69 63 61 6c 6c 79 20 6f 72 20 64 79 6e 61 6d | der..One.can.statically.or.dynam |
| 292c0 | 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 6c 61 62 65 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 2c | ically.assign.label.allocations, |
| 292e0 | 20 62 75 74 20 77 65 20 77 69 6c 6c 20 66 6f 63 75 73 20 6f 6e 20 64 79 6e 61 6d 69 63 20 61 6c | .but.we.will.focus.on.dynamic.al |
| 29300 | 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 6c 61 62 65 6c 73 20 75 73 69 6e 67 20 73 6f 6d 65 20 73 6f | location.of.labels.using.some.so |
| 29320 | 72 74 20 6f 66 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 70 72 6f 74 6f 63 6f | rt.of.label.distribution.protoco |
| 29340 | 6c 20 28 73 75 63 68 20 61 73 20 74 68 65 20 61 70 74 6c 79 20 6e 61 6d 65 64 20 4c 61 62 65 6c | l.(such.as.the.aptly.named.Label |
| 29360 | 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 2f 20 4c 44 50 2c 20 52 65 | .Distribution.Protocol./.LDP,.Re |
| 29380 | 73 6f 75 72 63 65 20 52 65 73 65 72 76 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 2f 20 52 53 | source.Reservation.Protocol./.RS |
| 293a0 | 56 50 2c 20 6f 72 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 74 68 72 6f 75 67 68 20 4f | VP,.or.Segment.Routing.through.O |
| 293c0 | 53 50 46 2f 49 53 49 53 29 2e 20 54 68 65 73 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6c 6c 6f 77 | SPF/ISIS)..These.protocols.allow |
| 293e0 | 20 66 6f 72 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 61 20 75 6e 69 64 69 72 65 63 74 | .for.the.creation.of.a.unidirect |
| 29400 | 69 6f 6e 61 6c 2f 75 6e 69 63 61 73 74 20 70 61 74 68 20 63 61 6c 6c 65 64 20 61 20 6c 61 62 65 | ional/unicast.path.called.a.labe |
| 29420 | 6c 65 64 20 73 77 69 74 63 68 65 64 20 70 61 74 68 20 28 69 6e 69 74 69 61 6c 69 7a 65 64 20 61 | led.switched.path.(initialized.a |
| 29440 | 73 20 4c 53 50 29 20 74 68 72 6f 75 67 68 6f 75 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 | s.LSP).throughout.the.network.th |
| 29460 | 61 74 20 6f 70 65 72 61 74 65 73 20 76 65 72 79 20 6d 75 63 68 20 6c 69 6b 65 20 61 20 74 75 6e | at.operates.very.much.like.a.tun |
| 29480 | 6e 65 6c 20 74 68 72 6f 75 67 68 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 41 6e 20 65 61 73 79 | nel.through.the.network..An.easy |
| 294a0 | 20 77 61 79 20 6f 66 20 74 68 69 6e 6b 69 6e 67 20 61 62 6f 75 74 20 68 6f 77 20 61 6e 20 4d 50 | .way.of.thinking.about.how.an.MP |
| 294c0 | 4c 53 20 4c 53 50 20 61 63 74 75 61 6c 6c 79 20 66 6f 72 77 61 72 64 73 20 74 72 61 66 66 69 63 | LS.LSP.actually.forwards.traffic |
| 294e0 | 20 74 68 72 6f 75 67 68 6f 75 74 20 61 20 6e 65 74 77 6f 72 6b 20 69 73 20 74 6f 20 74 68 69 6e | .throughout.a.network.is.to.thin |
| 29500 | 6b 20 6f 66 20 61 20 47 52 45 20 74 75 6e 6e 65 6c 2e 20 54 68 65 79 20 61 72 65 20 6e 6f 74 20 | k.of.a.GRE.tunnel..They.are.not. |
| 29520 | 74 68 65 20 73 61 6d 65 20 69 6e 20 68 6f 77 20 74 68 65 79 20 6f 70 65 72 61 74 65 2c 20 62 75 | the.same.in.how.they.operate,.bu |
| 29540 | 74 20 74 68 65 79 20 61 72 65 20 74 68 65 20 73 61 6d 65 20 69 6e 20 68 6f 77 20 74 68 65 79 20 | t.they.are.the.same.in.how.they. |
| 29560 | 68 61 6e 64 6c 65 20 74 68 65 20 74 75 6e 6e 65 6c 65 64 20 70 61 63 6b 65 74 2e 20 49 74 20 77 | handle.the.tunneled.packet..It.w |
| 29580 | 6f 75 6c 64 20 62 65 20 67 6f 6f 64 20 74 6f 20 74 68 69 6e 6b 20 6f 66 20 4d 50 4c 53 20 61 73 | ould.be.good.to.think.of.MPLS.as |
| 295a0 | 20 61 20 74 75 6e 6e 65 6c 69 6e 67 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 68 61 74 20 63 61 6e | .a.tunneling.technology.that.can |
| 295c0 | 20 62 65 20 75 73 65 64 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 6d 61 6e 79 20 64 69 66 66 65 | .be.used.to.transport.many.diffe |
| 295e0 | 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 70 61 63 6b 65 74 73 2c 20 74 6f 20 61 69 64 20 69 6e | rent.types.of.packets,.to.aid.in |
| 29600 | 20 74 72 61 66 66 69 63 20 65 6e 67 69 6e 65 65 72 69 6e 67 20 62 79 20 61 6c 6c 6f 77 69 6e 67 | .traffic.engineering.by.allowing |
| 29620 | 20 6f 6e 65 20 74 6f 20 73 70 65 63 69 66 79 20 70 61 74 68 73 20 74 68 72 6f 75 67 68 6f 75 74 | .one.to.specify.paths.throughout |
| 29640 | 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 28 75 73 69 6e 67 20 52 53 56 50 20 6f 72 20 53 52 29 2c | .the.network.(using.RSVP.or.SR), |
| 29660 | 20 61 6e 64 20 74 6f 20 67 65 6e 65 72 61 6c 6c 79 20 61 6c 6c 6f 77 20 66 6f 72 20 65 61 73 69 | .and.to.generally.allow.for.easi |
| 29680 | 65 72 20 69 6e 74 72 61 2f 69 6e 74 65 72 20 6e 65 74 77 6f 72 6b 20 74 72 61 6e 73 70 6f 72 74 | er.intra/inter.network.transport |
| 296a0 | 20 6f 66 20 64 61 74 61 20 70 61 63 6b 65 74 73 2e 00 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 | .of.data.packets..:abbr:`NAT.(Ne |
| 296c0 | 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 | twork.Address.Translation)`.is.a |
| 296e0 | 20 63 6f 6d 6d 6f 6e 20 6d 65 74 68 6f 64 20 6f 66 20 72 65 6d 61 70 70 69 6e 67 20 6f 6e 65 20 | .common.method.of.remapping.one. |
| 29700 | 49 50 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 62 79 | IP.address.space.into.another.by |
| 29720 | 20 6d 6f 64 69 66 79 69 6e 67 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 | .modifying.network.address.infor |
| 29740 | 6d 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 49 50 20 68 65 61 64 65 72 20 6f 66 20 70 61 63 6b 65 | mation.in.the.IP.header.of.packe |
| 29760 | 74 73 20 77 68 69 6c 65 20 74 68 65 79 20 61 72 65 20 69 6e 20 74 72 61 6e 73 69 74 20 61 63 72 | ts.while.they.are.in.transit.acr |
| 29780 | 6f 73 73 20 61 20 74 72 61 66 66 69 63 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 2e 20 54 68 | oss.a.traffic.routing.device..Th |
| 297a0 | 65 20 74 65 63 68 6e 69 71 75 65 20 77 61 73 20 6f 72 69 67 69 6e 61 6c 6c 79 20 75 73 65 64 20 | e.technique.was.originally.used. |
| 297c0 | 61 73 20 61 20 73 68 6f 72 74 63 75 74 20 74 6f 20 61 76 6f 69 64 20 74 68 65 20 6e 65 65 64 20 | as.a.shortcut.to.avoid.the.need. |
| 297e0 | 74 6f 20 72 65 61 64 64 72 65 73 73 20 65 76 65 72 79 20 68 6f 73 74 20 77 68 65 6e 20 61 20 6e | to.readdress.every.host.when.a.n |
| 29800 | 65 74 77 6f 72 6b 20 77 61 73 20 6d 6f 76 65 64 2e 20 49 74 20 68 61 73 20 62 65 63 6f 6d 65 20 | etwork.was.moved..It.has.become. |
| 29820 | 61 20 70 6f 70 75 6c 61 72 20 61 6e 64 20 65 73 73 65 6e 74 69 61 6c 20 74 6f 6f 6c 20 69 6e 20 | a.popular.and.essential.tool.in. |
| 29840 | 63 6f 6e 73 65 72 76 69 6e 67 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 | conserving.global.address.space. |
| 29860 | 69 6e 20 74 68 65 20 66 61 63 65 20 6f 66 20 49 50 76 34 20 61 64 64 72 65 73 73 20 65 78 68 61 | in.the.face.of.IPv4.address.exha |
| 29880 | 75 73 74 69 6f 6e 2e 20 4f 6e 65 20 49 6e 74 65 72 6e 65 74 2d 72 6f 75 74 61 62 6c 65 20 49 50 | ustion..One.Internet-routable.IP |
| 298a0 | 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 4e 41 54 20 67 61 74 65 77 61 79 20 63 61 6e 20 62 65 | .address.of.a.NAT.gateway.can.be |
| 298c0 | 20 75 73 65 64 20 66 6f 72 20 61 6e 20 65 6e 74 69 72 65 20 70 72 69 76 61 74 65 20 6e 65 74 77 | .used.for.an.entire.private.netw |
| 298e0 | 6f 72 6b 2e 00 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 | ork..:abbr:`NAT.(Network.Address |
| 29900 | 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 65 6e 74 | .Translation)`.is.configured.ent |
| 29920 | 69 72 65 6c 79 20 6f 6e 20 61 20 73 65 72 69 65 73 20 6f 66 20 73 6f 20 63 61 6c 6c 65 64 20 60 | irely.on.a.series.of.so.called.` |
| 29940 | 72 75 6c 65 73 60 2e 20 52 75 6c 65 73 20 61 72 65 20 6e 75 6d 62 65 72 65 64 20 61 6e 64 20 65 | rules`..Rules.are.numbered.and.e |
| 29960 | 76 61 6c 75 61 74 65 64 20 62 79 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 4f 53 20 69 6e | valuated.by.the.underlying.OS.in |
| 29980 | 20 6e 75 6d 65 72 69 63 61 6c 20 6f 72 64 65 72 21 20 54 68 65 20 72 75 6c 65 20 6e 75 6d 62 65 | .numerical.order!.The.rule.numbe |
| 299a0 | 72 73 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 73 20 62 79 20 75 74 69 6c 69 7a 69 6e 67 20 74 | rs.can.be.changes.by.utilizing.t |
| 299c0 | 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 6e 61 6d 65 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a | he.:cfgcmd:`rename`.and.:cfgcmd: |
| 299e0 | 60 63 6f 70 79 60 20 63 6f 6d 6d 61 6e 64 73 2e 00 3a 61 62 62 72 3a 60 4e 41 54 36 34 20 28 49 | `copy`.commands..:abbr:`NAT64.(I |
| 29a00 | 50 76 36 2d 74 6f 2d 49 50 76 34 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 | Pv6-to-IPv4.Prefix.Translation)` |
| 29a20 | 20 69 73 20 61 20 63 72 69 74 69 63 61 6c 20 63 6f 6d 70 6f 6e 65 6e 74 20 69 6e 20 6d 6f 64 65 | .is.a.critical.component.in.mode |
| 29a40 | 72 6e 20 6e 65 74 77 6f 72 6b 69 6e 67 2c 20 66 61 63 69 6c 69 74 61 74 69 6e 67 20 63 6f 6d 6d | rn.networking,.facilitating.comm |
| 29a60 | 75 6e 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 49 50 76 36 20 61 6e 64 20 49 50 76 34 20 | unication.between.IPv6.and.IPv4. |
| 29a80 | 6e 65 74 77 6f 72 6b 73 2e 20 54 68 69 73 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 6f 75 74 | networks..This.documentation.out |
| 29aa0 | 6c 69 6e 65 73 20 74 68 65 20 73 65 74 75 70 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 | lines.the.setup,.configuration,. |
| 29ac0 | 61 6e 64 20 75 73 61 67 65 20 6f 66 20 74 68 65 20 4e 41 54 36 34 20 66 65 61 74 75 72 65 20 69 | and.usage.of.the.NAT64.feature.i |
| 29ae0 | 6e 20 79 6f 75 72 20 70 72 6f 6a 65 63 74 2e 20 57 68 65 74 68 65 72 20 79 6f 75 20 61 72 65 20 | n.your.project..Whether.you.are. |
| 29b00 | 74 72 61 6e 73 69 74 69 6f 6e 69 6e 67 20 74 6f 20 49 50 76 36 20 6f 72 20 6e 65 65 64 20 74 6f | transitioning.to.IPv6.or.need.to |
| 29b20 | 20 73 65 61 6d 6c 65 73 73 6c 79 20 63 6f 6e 6e 65 63 74 20 49 50 76 34 20 61 6e 64 20 49 50 76 | .seamlessly.connect.IPv4.and.IPv |
| 29b40 | 36 20 64 65 76 69 63 65 73 2e 20 4e 41 54 36 34 20 69 73 20 61 20 73 74 61 74 65 66 75 6c 20 74 | 6.devices..NAT64.is.a.stateful.t |
| 29b60 | 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 20 74 68 61 74 20 74 72 61 6e 73 6c | ranslation.mechanism.that.transl |
| 29b80 | 61 74 65 73 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 34 20 61 64 64 72 | ates.IPv6.addresses.to.IPv4.addr |
| 29ba0 | 65 73 73 65 73 20 61 6e 64 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 36 | esses.and.IPv4.addresses.to.IPv6 |
| 29bc0 | 20 61 64 64 72 65 73 73 65 73 2e 20 4e 41 54 36 34 20 69 73 20 75 73 65 64 20 74 6f 20 65 6e 61 | .addresses..NAT64.is.used.to.ena |
| 29be0 | 62 6c 65 20 49 50 76 36 2d 6f 6e 6c 79 20 63 6c 69 65 6e 74 73 20 74 6f 20 63 6f 6e 74 61 63 74 | ble.IPv6-only.clients.to.contact |
| 29c00 | 20 49 50 76 34 20 73 65 72 76 65 72 73 20 75 73 69 6e 67 20 75 6e 69 63 61 73 74 20 55 44 50 2c | .IPv4.servers.using.unicast.UDP, |
| 29c20 | 20 54 43 50 2c 20 6f 72 20 49 43 4d 50 2e 00 3a 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f | .TCP,.or.ICMP..:abbr:`NET.(Netwo |
| 29c40 | 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 20 73 65 6c 65 63 74 6f 72 3a 20 60 60 30 30 | rk.Entity.Title)`.selector:.``00 |
| 29c60 | 60 60 20 4d 75 73 74 20 61 6c 77 61 79 73 20 62 65 20 30 30 2e 20 54 68 69 73 20 73 65 74 74 69 | ``.Must.always.be.00..This.setti |
| 29c80 | 6e 67 20 69 6e 64 69 63 61 74 65 73 20 22 74 68 69 73 20 73 79 73 74 65 6d 22 20 6f 72 20 22 6c | ng.indicates."this.system".or."l |
| 29ca0 | 6f 63 61 6c 20 73 79 73 74 65 6d 2e 22 00 3a 61 62 62 72 3a 60 4e 48 52 50 20 28 4e 65 78 74 20 | ocal.system.".:abbr:`NHRP.(Next. |
| 29cc0 | 48 6f 70 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 3a 72 66 63 3a 60 | Hop.Resolution.Protocol)`.:rfc:` |
| 29ce0 | 32 33 33 32 60 00 3a 61 62 62 72 3a 60 4e 50 54 76 36 20 28 49 50 76 36 2d 74 6f 2d 49 50 76 36 | 2332`.:abbr:`NPTv6.(IPv6-to-IPv6 |
| 29d00 | 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 | .Network.Prefix.Translation)`.is |
| 29d20 | 20 61 6e 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 74 65 63 68 6e 6f 6c 6f | .an.address.translation.technolo |
| 29d40 | 67 79 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 2c 20 75 73 65 64 20 | gy.based.on.IPv6.networks,.used. |
| 29d60 | 74 6f 20 63 6f 6e 76 65 72 74 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 | to.convert.an.IPv6.address.prefi |
| 29d80 | 78 20 69 6e 20 61 6e 20 49 50 76 36 20 6d 65 73 73 61 67 65 20 69 6e 74 6f 20 61 6e 6f 74 68 65 | x.in.an.IPv6.message.into.anothe |
| 29da0 | 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 2e 20 57 65 20 63 61 6c 6c 20 74 | r.IPv6.address.prefix..We.call.t |
| 29dc0 | 68 69 73 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 65 74 68 6f 64 20 4e | his.address.translation.method.N |
| 29de0 | 41 54 36 36 2e 20 44 65 76 69 63 65 73 20 74 68 61 74 20 73 75 70 70 6f 72 74 20 74 68 65 20 4e | AT66..Devices.that.support.the.N |
| 29e00 | 41 54 36 36 20 66 75 6e 63 74 69 6f 6e 20 61 72 65 20 63 61 6c 6c 65 64 20 4e 41 54 36 36 20 64 | AT66.function.are.called.NAT66.d |
| 29e20 | 65 76 69 63 65 73 2c 20 77 68 69 63 68 20 63 61 6e 20 70 72 6f 76 69 64 65 20 4e 41 54 36 36 20 | evices,.which.can.provide.NAT66. |
| 29e40 | 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 | source.and.destination.address.t |
| 29e60 | 72 61 6e 73 6c 61 74 69 6f 6e 20 66 75 6e 63 74 69 6f 6e 73 2e 00 3a 61 62 62 72 3a 60 4e 54 50 | ranslation.functions..:abbr:`NTP |
| 29e80 | 20 28 4e 65 74 77 6f 72 6b 20 54 69 6d 65 20 50 72 6f 74 6f 63 6f 6c 60 29 20 69 73 20 61 20 6e | .(Network.Time.Protocol`).is.a.n |
| 29ea0 | 65 74 77 6f 72 6b 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 63 6c 6f 63 6b 20 73 79 6e | etworking.protocol.for.clock.syn |
| 29ec0 | 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 63 6f 6d 70 75 74 65 72 20 73 79 | chronization.between.computer.sy |
| 29ee0 | 73 74 65 6d 73 20 6f 76 65 72 20 70 61 63 6b 65 74 2d 73 77 69 74 63 68 65 64 2c 20 76 61 72 69 | stems.over.packet-switched,.vari |
| 29f00 | 61 62 6c 65 2d 6c 61 74 65 6e 63 79 20 64 61 74 61 20 6e 65 74 77 6f 72 6b 73 2e 20 49 6e 20 6f | able-latency.data.networks..In.o |
| 29f20 | 70 65 72 61 74 69 6f 6e 20 73 69 6e 63 65 20 62 65 66 6f 72 65 20 31 39 38 35 2c 20 4e 54 50 20 | peration.since.before.1985,.NTP. |
| 29f40 | 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 6f 6c 64 65 73 74 20 49 6e 74 65 72 6e 65 74 20 70 72 | is.one.of.the.oldest.Internet.pr |
| 29f60 | 6f 74 6f 63 6f 6c 73 20 69 6e 20 63 75 72 72 65 6e 74 20 75 73 65 2e 00 3a 61 62 62 72 3a 60 4f | otocols.in.current.use..:abbr:`O |
| 29f80 | 53 50 46 20 28 4f 70 65 6e 20 53 68 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 29 60 20 | SPF.(Open.Shortest.Path.First)`. |
| 29fa0 | 69 73 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 49 6e 74 65 72 6e | is.a.routing.protocol.for.Intern |
| 29fc0 | 65 74 20 50 72 6f 74 6f 63 6f 6c 20 28 49 50 29 20 6e 65 74 77 6f 72 6b 73 2e 20 49 74 20 75 73 | et.Protocol.(IP).networks..It.us |
| 29fe0 | 65 73 20 61 20 6c 69 6e 6b 20 73 74 61 74 65 20 72 6f 75 74 69 6e 67 20 28 4c 53 52 29 20 61 6c | es.a.link.state.routing.(LSR).al |
| 2a000 | 67 6f 72 69 74 68 6d 20 61 6e 64 20 66 61 6c 6c 73 20 69 6e 74 6f 20 74 68 65 20 67 72 6f 75 70 | gorithm.and.falls.into.the.group |
| 2a020 | 20 6f 66 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 73 20 28 | .of.interior.gateway.protocols.( |
| 2a040 | 49 47 50 73 29 2c 20 6f 70 65 72 61 74 69 6e 67 20 77 69 74 68 69 6e 20 61 20 73 69 6e 67 6c 65 | IGPs),.operating.within.a.single |
| 2a060 | 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 28 41 53 29 2e 20 49 74 20 69 73 20 64 | .autonomous.system.(AS)..It.is.d |
| 2a080 | 65 66 69 6e 65 64 20 61 73 20 4f 53 50 46 20 56 65 72 73 69 6f 6e 20 32 20 69 6e 20 3a 72 66 63 | efined.as.OSPF.Version.2.in.:rfc |
| 2a0a0 | 3a 60 32 33 32 38 60 20 28 31 39 39 38 29 20 66 6f 72 20 49 50 76 34 2e 20 55 70 64 61 74 65 73 | :`2328`.(1998).for.IPv4..Updates |
| 2a0c0 | 20 66 6f 72 20 49 50 76 36 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 4f 53 50 46 20 | .for.IPv6.are.specified.as.OSPF. |
| 2a0e0 | 56 65 72 73 69 6f 6e 20 33 20 69 6e 20 3a 72 66 63 3a 60 35 33 34 30 60 20 28 32 30 30 38 29 2e | Version.3.in.:rfc:`5340`.(2008). |
| 2a100 | 20 4f 53 50 46 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 3a 61 62 62 72 3a 60 43 49 44 52 20 28 | .OSPF.supports.the.:abbr:`CIDR.( |
| 2a120 | 43 6c 61 73 73 6c 65 73 73 20 49 6e 74 65 72 2d 44 6f 6d 61 69 6e 20 52 6f 75 74 69 6e 67 29 60 | Classless.Inter-Domain.Routing)` |
| 2a140 | 20 61 64 64 72 65 73 73 69 6e 67 20 6d 6f 64 65 6c 2e 00 3a 61 62 62 72 3a 60 50 49 4d 20 28 50 | .addressing.model..:abbr:`PIM.(P |
| 2a160 | 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 29 60 20 | rotocol.Independent.Multicast)`. |
| 2a180 | 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 | must.be.configured.in.every.inte |
| 2a1a0 | 72 66 61 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 | rface.of.every.participating.rou |
| 2a1c0 | 74 65 72 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 | ter..Every.router.must.also.have |
| 2a1e0 | 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 | .the.location.of.the.Rendevouz.P |
| 2a200 | 6f 69 6e 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 | oint.manually.configured..Then,. |
| 2a220 | 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 | unidirectional.shared.trees.root |
| 2a240 | 65 64 20 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 | ed.at.the.Rendevouz.Point.will.a |
| 2a260 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 | utomatically.be.built.for.multic |
| 2a280 | 61 73 74 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 3a 61 62 62 72 3a 60 50 50 50 6f 45 20 28 | ast.distribution..:abbr:`PPPoE.( |
| 2a2a0 | 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 50 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 45 74 68 | Point-to-Point.Protocol.over.Eth |
| 2a2c0 | 65 72 6e 65 74 29 60 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 66 6f | ernet)`.is.a.network.protocol.fo |
| 2a2e0 | 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6e 67 20 50 50 50 20 66 72 61 6d 65 73 20 69 6e 73 69 64 | r.encapsulating.PPP.frames.insid |
| 2a300 | 65 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 2e 20 49 74 20 61 70 70 65 61 72 65 64 20 69 | e.Ethernet.frames..It.appeared.i |
| 2a320 | 6e 20 31 39 39 39 2c 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 74 68 65 20 62 6f | n.1999,.in.the.context.of.the.bo |
| 2a340 | 6f 6d 20 6f 66 20 44 53 4c 20 61 73 20 74 68 65 20 73 6f 6c 75 74 69 6f 6e 20 66 6f 72 20 74 75 | om.of.DSL.as.the.solution.for.tu |
| 2a360 | 6e 6e 65 6c 69 6e 67 20 70 61 63 6b 65 74 73 20 6f 76 65 72 20 74 68 65 20 44 53 4c 20 63 6f 6e | nneling.packets.over.the.DSL.con |
| 2a380 | 6e 65 63 74 69 6f 6e 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a 60 49 53 50 73 20 28 49 6e 74 65 | nection.to.the.:abbr:`ISPs.(Inte |
| 2a3a0 | 72 6e 65 74 20 53 65 72 76 69 63 65 20 50 72 6f 76 69 64 65 72 73 29 60 20 49 50 20 6e 65 74 77 | rnet.Service.Providers)`.IP.netw |
| 2a3c0 | 6f 72 6b 2c 20 61 6e 64 20 66 72 6f 6d 20 74 68 65 72 65 20 74 6f 20 74 68 65 20 72 65 73 74 20 | ork,.and.from.there.to.the.rest. |
| 2a3e0 | 6f 66 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 20 41 20 32 30 30 35 20 6e 65 74 77 6f 72 6b 69 | of.the.Internet..A.2005.networki |
| 2a400 | 6e 67 20 62 6f 6f 6b 20 6e 6f 74 65 64 20 74 68 61 74 20 22 4d 6f 73 74 20 44 53 4c 20 70 72 6f | ng.book.noted.that."Most.DSL.pro |
| 2a420 | 76 69 64 65 72 73 20 75 73 65 20 50 50 50 6f 45 2c 20 77 68 69 63 68 20 70 72 6f 76 69 64 65 73 | viders.use.PPPoE,.which.provides |
| 2a440 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 65 6e 63 72 79 70 74 69 6f 6e 2c 20 61 6e 64 | .authentication,.encryption,.and |
| 2a460 | 20 63 6f 6d 70 72 65 73 73 69 6f 6e 2e 22 20 54 79 70 69 63 61 6c 20 75 73 65 20 6f 66 20 50 50 | .compression.".Typical.use.of.PP |
| 2a480 | 50 6f 45 20 69 6e 76 6f 6c 76 65 73 20 6c 65 76 65 72 61 67 69 6e 67 20 74 68 65 20 50 50 50 20 | PoE.involves.leveraging.the.PPP. |
| 2a4a0 | 66 61 63 69 6c 69 74 69 65 73 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 | facilities.for.authenticating.th |
| 2a4c0 | 65 20 75 73 65 72 20 77 69 74 68 20 61 20 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 70 61 73 73 77 | e.user.with.a.username.and.passw |
| 2a4e0 | 6f 72 64 2c 20 70 72 65 64 6f 6d 69 6e 61 74 65 6c 79 20 76 69 61 20 74 68 65 20 50 41 50 20 70 | ord,.predominately.via.the.PAP.p |
| 2a500 | 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 6c 65 73 73 20 6f 66 74 65 6e 20 76 69 61 20 43 48 41 50 2e | rotocol.and.less.often.via.CHAP. |
| 2a520 | 00 3a 61 62 62 72 3a 60 52 41 73 20 28 52 6f 75 74 65 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e | .:abbr:`RAs.(Router.advertisemen |
| 2a540 | 74 73 29 60 20 61 72 65 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 38 36 31 | ts)`.are.described.in.:rfc:`4861 |
| 2a560 | 23 73 65 63 74 69 6f 6e 2d 34 2e 36 2e 32 60 2e 20 54 68 65 79 20 61 72 65 20 70 61 72 74 20 6f | #section-4.6.2`..They.are.part.o |
| 2a580 | 66 20 77 68 61 74 20 69 73 20 6b 6e 6f 77 6e 20 61 73 20 3a 61 62 62 72 3a 60 53 4c 41 41 43 20 | f.what.is.known.as.:abbr:`SLAAC. |
| 2a5a0 | 28 53 74 61 74 65 6c 65 73 73 20 41 64 64 72 65 73 73 20 41 75 74 6f 63 6f 6e 66 69 67 75 72 61 | (Stateless.Address.Autoconfigura |
| 2a5c0 | 74 69 6f 6e 29 60 2e 00 3a 61 62 62 72 3a 60 52 49 50 20 28 52 6f 75 74 69 6e 67 20 49 6e 66 6f | tion)`..:abbr:`RIP.(Routing.Info |
| 2a5e0 | 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 77 69 64 65 6c 79 20 64 | rmation.Protocol)`.is.a.widely.d |
| 2a600 | 65 70 6c 6f 79 65 64 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f | eployed.interior.gateway.protoco |
| 2a620 | 6c 2e 20 52 49 50 20 77 61 73 20 64 65 76 65 6c 6f 70 65 64 20 69 6e 20 74 68 65 20 31 39 37 30 | l..RIP.was.developed.in.the.1970 |
| 2a640 | 73 20 61 74 20 58 65 72 6f 78 20 4c 61 62 73 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 58 | s.at.Xerox.Labs.as.part.of.the.X |
| 2a660 | 4e 53 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 20 52 49 50 20 69 73 20 61 20 64 69 | NS.routing.protocol..RIP.is.a.di |
| 2a680 | 73 74 61 6e 63 65 2d 76 65 63 74 6f 72 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 69 73 20 62 61 | stance-vector.protocol.and.is.ba |
| 2a6a0 | 73 65 64 20 6f 6e 20 74 68 65 20 42 65 6c 6c 6d 61 6e 2d 46 6f 72 64 20 61 6c 67 6f 72 69 74 68 | sed.on.the.Bellman-Ford.algorith |
| 2a6c0 | 6d 73 2e 20 41 73 20 61 20 64 69 73 74 61 6e 63 65 2d 76 65 63 74 6f 72 20 70 72 6f 74 6f 63 6f | ms..As.a.distance-vector.protoco |
| 2a6e0 | 6c 2c 20 52 49 50 20 72 6f 75 74 65 72 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 74 6f 20 69 74 | l,.RIP.router.send.updates.to.it |
| 2a700 | 73 20 6e 65 69 67 68 62 6f 72 73 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 2c 20 74 68 75 73 20 61 | s.neighbors.periodically,.thus.a |
| 2a720 | 6c 6c 6f 77 69 6e 67 20 74 68 65 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 6f 20 61 20 6b 6e 6f | llowing.the.convergence.to.a.kno |
| 2a740 | 77 6e 20 74 6f 70 6f 6c 6f 67 79 2e 20 49 6e 20 65 61 63 68 20 75 70 64 61 74 65 2c 20 74 68 65 | wn.topology..In.each.update,.the |
| 2a760 | 20 64 69 73 74 61 6e 63 65 20 74 6f 20 61 6e 79 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 77 | .distance.to.any.given.network.w |
| 2a780 | 69 6c 6c 20 62 65 20 62 72 6f 61 64 63 61 73 74 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 | ill.be.broadcast.to.its.neighbor |
| 2a7a0 | 69 6e 67 20 72 6f 75 74 65 72 2e 00 3a 61 62 62 72 3a 60 52 50 4b 49 20 28 52 65 73 6f 75 72 63 | ing.router..:abbr:`RPKI.(Resourc |
| 2a7c0 | 65 20 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 72 61 73 74 72 75 63 74 75 72 65 29 60 20 69 73 | e.Public.Key.Infrastructure)`.is |
| 2a7e0 | 20 61 20 66 72 61 6d 65 77 6f 72 6b 20 3a 61 62 62 72 3a 60 50 4b 49 20 28 50 75 62 6c 69 63 20 | .a.framework.:abbr:`PKI.(Public. |
| 2a800 | 4b 65 79 20 49 6e 66 72 61 73 74 72 75 63 74 75 72 65 29 60 20 64 65 73 69 67 6e 65 64 20 74 6f | Key.Infrastructure)`.designed.to |
| 2a820 | 20 73 65 63 75 72 65 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 | .secure.the.Internet.routing.inf |
| 2a840 | 72 61 73 74 72 75 63 74 75 72 65 2e 20 49 74 20 61 73 73 6f 63 69 61 74 65 73 20 42 47 50 20 72 | rastructure..It.associates.BGP.r |
| 2a860 | 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 20 77 69 74 68 20 74 68 65 20 63 6f 72 72 | oute.announcements.with.the.corr |
| 2a880 | 65 63 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f | ect.originating.:abbr:`ASN.(Auto |
| 2a8a0 | 6e 6f 6d 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 77 68 69 63 68 20 42 47 50 20 | nomus.System.Number)`.which.BGP. |
| 2a8c0 | 72 6f 75 74 65 72 73 20 63 61 6e 20 74 68 65 6e 20 75 73 65 20 74 6f 20 63 68 65 63 6b 20 65 61 | routers.can.then.use.to.check.ea |
| 2a8e0 | 63 68 20 72 6f 75 74 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 | ch.route.against.the.correspondi |
| 2a900 | 6e 67 20 3a 61 62 62 72 3a 60 52 4f 41 20 28 52 6f 75 74 65 20 4f 72 69 67 69 6e 20 41 75 74 68 | ng.:abbr:`ROA.(Route.Origin.Auth |
| 2a920 | 6f 72 69 73 61 74 69 6f 6e 29 60 20 66 6f 72 20 76 61 6c 69 64 69 74 79 2e 20 52 50 4b 49 20 69 | orisation)`.for.validity..RPKI.i |
| 2a940 | 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 36 34 38 30 60 2e 00 3a 61 62 62 | s.described.in.:rfc:`6480`..:abb |
| 2a960 | 72 3a 60 52 50 4b 49 20 28 52 65 73 6f 75 72 63 65 20 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 | r:`RPKI.(Resource.Public.Key.Inf |
| 2a980 | 72 61 73 74 72 75 63 74 75 72 65 29 60 20 69 73 20 61 20 66 72 61 6d 65 77 6f 72 6b 20 64 65 73 | rastructure)`.is.a.framework.des |
| 2a9a0 | 69 67 6e 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 72 6f 75 | igned.to.secure.the.Internet.rou |
| 2a9c0 | 74 69 6e 67 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 2e 20 49 74 20 61 73 73 6f 63 69 61 74 | ting.infrastructure..It.associat |
| 2a9e0 | 65 73 20 42 47 50 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 20 77 69 74 68 20 | es.BGP.route.announcements.with. |
| 2aa00 | 74 68 65 20 63 6f 72 72 65 63 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 3a 61 62 62 72 3a 60 41 | the.correct.originating.:abbr:`A |
| 2aa20 | 53 4e 20 28 41 75 74 6f 6e 6f 6d 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 77 68 | SN.(Autonomus.System.Number)`.wh |
| 2aa40 | 69 63 68 20 42 47 50 20 72 6f 75 74 65 72 73 20 63 61 6e 20 74 68 65 6e 20 75 73 65 20 74 6f 20 | ich.BGP.routers.can.then.use.to. |
| 2aa60 | 63 68 65 63 6b 20 65 61 63 68 20 72 6f 75 74 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 63 6f 72 | check.each.route.against.the.cor |
| 2aa80 | 72 65 73 70 6f 6e 64 69 6e 67 20 3a 61 62 62 72 3a 60 52 4f 41 20 28 52 6f 75 74 65 20 4f 72 69 | responding.:abbr:`ROA.(Route.Ori |
| 2aaa0 | 67 69 6e 20 41 75 74 68 6f 72 69 73 61 74 69 6f 6e 29 60 20 66 6f 72 20 76 61 6c 69 64 69 74 79 | gin.Authorisation)`.for.validity |
| 2aac0 | 2e 20 52 50 4b 49 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 36 34 38 | ..RPKI.is.described.in.:rfc:`648 |
| 2aae0 | 30 60 2e 00 3a 61 62 62 72 3a 60 52 50 53 20 28 52 65 63 65 69 76 65 20 50 61 63 6b 65 74 20 53 | 0`..:abbr:`RPS.(Receive.Packet.S |
| 2ab00 | 74 65 65 72 69 6e 67 29 60 20 69 73 20 6c 6f 67 69 63 61 6c 6c 79 20 61 20 73 6f 66 74 77 61 72 | teering)`.is.logically.a.softwar |
| 2ab20 | 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 20 3a 61 62 62 72 3a 60 52 53 53 20 28 | e.implementation.of.:abbr:`RSS.( |
| 2ab40 | 52 65 63 65 69 76 65 20 53 69 64 65 20 53 63 61 6c 69 6e 67 29 60 2e 20 42 65 69 6e 67 20 69 6e | Receive.Side.Scaling)`..Being.in |
| 2ab60 | 20 73 6f 66 74 77 61 72 65 2c 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 69 6c 79 20 63 61 6c | .software,.it.is.necessarily.cal |
| 2ab80 | 6c 65 64 20 6c 61 74 65 72 20 69 6e 20 74 68 65 20 64 61 74 61 70 61 74 68 2e 20 57 68 65 72 65 | led.later.in.the.datapath..Where |
| 2aba0 | 61 73 20 52 53 53 20 73 65 6c 65 63 74 73 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 68 65 6e | as.RSS.selects.the.queue.and.hen |
| 2abc0 | 63 65 20 43 50 55 20 74 68 61 74 20 77 69 6c 6c 20 72 75 6e 20 74 68 65 20 68 61 72 64 77 61 72 | ce.CPU.that.will.run.the.hardwar |
| 2abe0 | 65 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 6c 65 72 2c 20 52 50 53 20 73 65 6c 65 63 74 73 | e.interrupt.handler,.RPS.selects |
| 2ac00 | 20 74 68 65 20 43 50 55 20 74 6f 20 70 65 72 66 6f 72 6d 20 70 72 6f 74 6f 63 6f 6c 20 70 72 6f | .the.CPU.to.perform.protocol.pro |
| 2ac20 | 63 65 73 73 69 6e 67 20 61 62 6f 76 65 20 74 68 65 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 | cessing.above.the.interrupt.hand |
| 2ac40 | 6c 65 72 2e 20 54 68 69 73 20 69 73 20 61 63 63 6f 6d 70 6c 69 73 68 65 64 20 62 79 20 70 6c 61 | ler..This.is.accomplished.by.pla |
| 2ac60 | 63 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 6f 6e 20 74 68 65 20 64 65 73 69 72 65 64 20 43 | cing.the.packet.on.the.desired.C |
| 2ac80 | 50 55 27 73 20 62 61 63 6b 6c 6f 67 20 71 75 65 75 65 20 61 6e 64 20 77 61 6b 69 6e 67 20 75 70 | PU's.backlog.queue.and.waking.up |
| 2aca0 | 20 74 68 65 20 43 50 55 20 66 6f 72 20 70 72 6f 63 65 73 73 69 6e 67 2e 20 52 50 53 20 68 61 73 | .the.CPU.for.processing..RPS.has |
| 2acc0 | 20 73 6f 6d 65 20 61 64 76 61 6e 74 61 67 65 73 20 6f 76 65 72 20 52 53 53 3a 00 3a 61 62 62 72 | .some.advantages.over.RSS:.:abbr |
| 2ace0 | 3a 60 53 4c 41 41 43 20 28 53 74 61 74 65 6c 65 73 73 20 41 64 64 72 65 73 73 20 41 75 74 6f 63 | :`SLAAC.(Stateless.Address.Autoc |
| 2ad00 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 29 60 20 3a 72 66 63 3a 60 34 38 36 32 60 2e 20 49 50 76 36 | onfiguration)`.:rfc:`4862`..IPv6 |
| 2ad20 | 20 68 6f 73 74 73 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 73 65 6c 76 65 73 20 | .hosts.can.configure.themselves. |
| 2ad40 | 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 | automatically.when.connected.to. |
| 2ad60 | 61 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 74 68 65 20 4e 65 69 67 68 62 | an.IPv6.network.using.the.Neighb |
| 2ad80 | 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 76 69 61 20 3a 61 62 62 72 3a | or.Discovery.Protocol.via.:abbr: |
| 2ada0 | 60 49 43 4d 50 76 36 20 28 49 6e 74 65 72 6e 65 74 20 43 6f 6e 74 72 6f 6c 20 4d 65 73 73 61 67 | `ICMPv6.(Internet.Control.Messag |
| 2adc0 | 65 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 36 29 60 20 72 6f 75 74 65 72 20 64 69 | e.Protocol.version.6)`.router.di |
| 2ade0 | 73 63 6f 76 65 72 79 20 6d 65 73 73 61 67 65 73 2e 20 57 68 65 6e 20 66 69 72 73 74 20 63 6f 6e | scovery.messages..When.first.con |
| 2ae00 | 6e 65 63 74 65 64 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 2c 20 61 20 68 6f 73 74 20 73 65 6e 64 | nected.to.a.network,.a.host.send |
| 2ae20 | 73 20 61 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 73 6f 6c 69 63 69 74 61 74 69 | s.a.link-local.router.solicitati |
| 2ae40 | 6f 6e 20 6d 75 6c 74 69 63 61 73 74 20 72 65 71 75 65 73 74 20 66 6f 72 20 69 74 73 20 63 6f 6e | on.multicast.request.for.its.con |
| 2ae60 | 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 3b 20 72 6f 75 74 65 72 73 20 72 | figuration.parameters;.routers.r |
| 2ae80 | 65 73 70 6f 6e 64 20 74 6f 20 73 75 63 68 20 61 20 72 65 71 75 65 73 74 20 77 69 74 68 20 61 20 | espond.to.such.a.request.with.a. |
| 2aea0 | 72 6f 75 74 65 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 70 61 63 6b 65 74 20 74 68 61 74 | router.advertisement.packet.that |
| 2aec0 | 20 63 6f 6e 74 61 69 6e 73 20 49 6e 74 65 72 6e 65 74 20 4c 61 79 65 72 20 63 6f 6e 66 69 67 75 | .contains.Internet.Layer.configu |
| 2aee0 | 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 2e 00 3a 61 62 62 72 3a 60 53 4e 41 54 20 28 | ration.parameters..:abbr:`SNAT.( |
| 2af00 | 53 6f 75 72 63 65 20 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 | Source.Network.Address.Translati |
| 2af20 | 6f 6e 29 60 20 69 73 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 66 6f 72 6d 20 6f 66 20 | on)`.is.the.most.common.form.of. |
| 2af40 | 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e | :abbr:`NAT.(Network.Address.Tran |
| 2af60 | 73 6c 61 74 69 6f 6e 29 60 20 61 6e 64 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 72 65 66 65 72 | slation)`.and.is.typically.refer |
| 2af80 | 72 65 64 20 74 6f 20 73 69 6d 70 6c 79 20 61 73 20 4e 41 54 2e 20 54 6f 20 62 65 20 6d 6f 72 65 | red.to.simply.as.NAT..To.be.more |
| 2afa0 | 20 63 6f 72 72 65 63 74 2c 20 77 68 61 74 20 6d 6f 73 74 20 70 65 6f 70 6c 65 20 72 65 66 65 72 | .correct,.what.most.people.refer |
| 2afc0 | 20 74 6f 20 61 73 20 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 | .to.as.:abbr:`NAT.(Network.Addre |
| 2afe0 | 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 63 74 75 61 6c 6c 79 20 74 68 65 | ss.Translation)`.is.actually.the |
| 2b000 | 20 70 72 6f 63 65 73 73 20 6f 66 20 3a 61 62 62 72 3a 60 50 41 54 20 28 50 6f 72 74 20 41 64 64 | .process.of.:abbr:`PAT.(Port.Add |
| 2b020 | 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 2c 20 6f 72 20 4e 41 54 20 6f 76 65 72 6c | ress.Translation)`,.or.NAT.overl |
| 2b040 | 6f 61 64 2e 20 53 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 75 73 65 64 20 62 79 20 69 | oad..SNAT.is.typically.used.by.i |
| 2b060 | 6e 74 65 72 6e 61 6c 20 75 73 65 72 73 2f 70 72 69 76 61 74 65 20 68 6f 73 74 73 20 74 6f 20 61 | nternal.users/private.hosts.to.a |
| 2b080 | 63 63 65 73 73 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 2d 20 74 68 65 20 73 6f 75 72 63 65 20 | ccess.the.Internet.-.the.source. |
| 2b0a0 | 61 64 64 72 65 73 73 20 69 73 20 74 72 61 6e 73 6c 61 74 65 64 20 61 6e 64 20 74 68 75 73 20 6b | address.is.translated.and.thus.k |
| 2b0c0 | 65 70 74 20 70 72 69 76 61 74 65 2e 00 3a 61 62 62 72 3a 60 53 4e 41 54 36 34 20 28 49 50 76 36 | ept.private..:abbr:`SNAT64.(IPv6 |
| 2b0e0 | 2d 74 6f 2d 49 50 76 34 20 53 6f 75 72 63 65 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 | -to-IPv4.Source.Address.Translat |
| 2b100 | 69 6f 6e 29 60 20 69 73 20 61 20 73 74 61 74 65 66 75 6c 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 | ion)`.is.a.stateful.translation. |
| 2b120 | 6d 65 63 68 61 6e 69 73 6d 20 74 68 61 74 20 74 72 61 6e 73 6c 61 74 65 73 20 49 50 76 36 20 61 | mechanism.that.translates.IPv6.a |
| 2b140 | 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 2e 00 3a 61 62 62 | ddresses.to.IPv4.addresses..:abb |
| 2b160 | 72 3a 60 53 4e 4d 50 20 28 53 69 6d 70 6c 65 20 4e 65 74 77 6f 72 6b 20 4d 61 6e 61 67 65 6d 65 | r:`SNMP.(Simple.Network.Manageme |
| 2b180 | 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 6e 20 49 6e 74 65 72 6e 65 74 20 53 74 61 | nt.Protocol)`.is.an.Internet.Sta |
| 2b1a0 | 6e 64 61 72 64 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 63 6f 6c 6c 65 63 74 69 6e 67 20 61 6e | ndard.protocol.for.collecting.an |
| 2b1c0 | 64 20 6f 72 67 61 6e 69 7a 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 6d | d.organizing.information.about.m |
| 2b1e0 | 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 20 6f 6e 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 61 6e | anaged.devices.on.IP.networks.an |
| 2b200 | 64 20 66 6f 72 20 6d 6f 64 69 66 79 69 6e 67 20 74 68 61 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | d.for.modifying.that.information |
| 2b220 | 20 74 6f 20 63 68 61 6e 67 65 20 64 65 76 69 63 65 20 62 65 68 61 76 69 6f 72 2e 20 44 65 76 69 | .to.change.device.behavior..Devi |
| 2b240 | 63 65 73 20 74 68 61 74 20 74 79 70 69 63 61 6c 6c 79 20 73 75 70 70 6f 72 74 20 53 4e 4d 50 20 | ces.that.typically.support.SNMP. |
| 2b260 | 69 6e 63 6c 75 64 65 20 63 61 62 6c 65 20 6d 6f 64 65 6d 73 2c 20 72 6f 75 74 65 72 73 2c 20 73 | include.cable.modems,.routers,.s |
| 2b280 | 77 69 74 63 68 65 73 2c 20 73 65 72 76 65 72 73 2c 20 77 6f 72 6b 73 74 61 74 69 6f 6e 73 2c 20 | witches,.servers,.workstations,. |
| 2b2a0 | 70 72 69 6e 74 65 72 73 2c 20 61 6e 64 20 6d 6f 72 65 2e 00 3a 61 62 62 72 3a 60 53 4e 50 54 76 | printers,.and.more..:abbr:`SNPTv |
| 2b2c0 | 36 20 28 53 6f 75 72 63 65 20 49 50 76 36 2d 74 6f 2d 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 50 | 6.(Source.IPv6-to-IPv6.Network.P |
| 2b2e0 | 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 54 68 65 20 63 6f 6e 76 65 72 73 69 | refix.Translation)`.The.conversi |
| 2b300 | 6f 6e 20 66 75 6e 63 74 69 6f 6e 20 69 73 20 6d 61 69 6e 6c 79 20 75 73 65 64 20 69 6e 20 74 68 | on.function.is.mainly.used.in.th |
| 2b320 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 63 65 6e 61 72 69 6f 73 3a 00 3a 61 62 62 72 3a 60 53 53 | e.following.scenarios:.:abbr:`SS |
| 2b340 | 48 20 28 53 65 63 75 72 65 20 53 68 65 6c 6c 29 60 20 69 73 20 61 20 63 72 79 70 74 6f 67 72 61 | H.(Secure.Shell)`.is.a.cryptogra |
| 2b360 | 70 68 69 63 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 6f 70 65 72 61 74 | phic.network.protocol.for.operat |
| 2b380 | 69 6e 67 20 6e 65 74 77 6f 72 6b 20 73 65 72 76 69 63 65 73 20 73 65 63 75 72 65 6c 79 20 6f 76 | ing.network.services.securely.ov |
| 2b3a0 | 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 64 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 73 74 61 | er.an.unsecured.network..The.sta |
| 2b3c0 | 6e 64 61 72 64 20 54 43 50 20 70 6f 72 74 20 66 6f 72 20 53 53 48 20 69 73 20 32 32 2e 20 54 68 | ndard.TCP.port.for.SSH.is.22..Th |
| 2b3e0 | 65 20 62 65 73 74 20 6b 6e 6f 77 6e 20 65 78 61 6d 70 6c 65 20 61 70 70 6c 69 63 61 74 69 6f 6e | e.best.known.example.application |
| 2b400 | 20 69 73 20 66 6f 72 20 72 65 6d 6f 74 65 20 6c 6f 67 69 6e 20 74 6f 20 63 6f 6d 70 75 74 65 72 | .is.for.remote.login.to.computer |
| 2b420 | 20 73 79 73 74 65 6d 73 20 62 79 20 75 73 65 72 73 2e 00 3a 61 62 62 72 3a 60 53 53 54 50 20 28 | .systems.by.users..:abbr:`SSTP.( |
| 2b440 | 53 65 63 75 72 65 20 53 6f 63 6b 65 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c | Secure.Socket.Tunneling.Protocol |
| 2b460 | 29 60 20 69 73 20 61 20 66 6f 72 6d 20 6f 66 20 3a 61 62 62 72 3a 60 56 50 4e 20 28 56 69 72 74 | )`.is.a.form.of.:abbr:`VPN.(Virt |
| 2b480 | 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 74 75 6e 6e 65 6c 20 74 68 61 | ual.Private.Network)`.tunnel.tha |
| 2b4a0 | 74 20 70 72 6f 76 69 64 65 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 74 72 61 6e 73 70 | t.provides.a.mechanism.to.transp |
| 2b4c0 | 6f 72 74 20 50 50 50 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 61 6e 20 53 53 4c 2f 54 | ort.PPP.traffic.through.an.SSL/T |
| 2b4e0 | 4c 53 20 63 68 61 6e 6e 65 6c 2e 20 53 53 4c 2f 54 4c 53 20 70 72 6f 76 69 64 65 73 20 74 72 61 | LS.channel..SSL/TLS.provides.tra |
| 2b500 | 6e 73 70 6f 72 74 2d 6c 65 76 65 6c 20 73 65 63 75 72 69 74 79 20 77 69 74 68 20 6b 65 79 20 6e | nsport-level.security.with.key.n |
| 2b520 | 65 67 6f 74 69 61 74 69 6f 6e 2c 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 74 72 61 66 66 | egotiation,.encryption.and.traff |
| 2b540 | 69 63 20 69 6e 74 65 67 72 69 74 79 20 63 68 65 63 6b 69 6e 67 2e 20 54 68 65 20 75 73 65 20 6f | ic.integrity.checking..The.use.o |
| 2b560 | 66 20 53 53 4c 2f 54 4c 53 20 6f 76 65 72 20 54 43 50 20 70 6f 72 74 20 34 34 33 20 61 6c 6c 6f | f.SSL/TLS.over.TCP.port.443.allo |
| 2b580 | 77 73 20 53 53 54 50 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 76 69 72 74 75 61 6c 6c | ws.SSTP.to.pass.through.virtuall |
| 2b5a0 | 79 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 73 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 | y.all.firewalls.and.proxy.server |
| 2b5c0 | 73 20 65 78 63 65 70 74 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 77 65 62 20 70 | s.except.for.authenticated.web.p |
| 2b5e0 | 72 6f 78 69 65 73 2e 00 3a 61 62 62 72 3a 60 53 53 54 50 20 28 53 65 63 75 72 65 20 53 6f 63 6b | roxies..:abbr:`SSTP.(Secure.Sock |
| 2b600 | 65 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 66 6f 72 | et.Tunneling.Protocol)`.is.a.for |
| 2b620 | 6d 20 6f 66 20 3a 61 62 62 72 3a 60 56 54 50 20 28 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 | m.of.:abbr:`VTP.(Virtual.Private |
| 2b640 | 20 4e 65 74 77 6f 72 6b 29 60 20 74 75 6e 6e 65 6c 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 | .Network)`.tunnel.that.provides. |
| 2b660 | 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 50 50 50 20 74 72 61 | a.mechanism.to.transport.PPP.tra |
| 2b680 | 66 66 69 63 20 74 68 72 6f 75 67 68 20 61 6e 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 2e | ffic.through.an.SSL/TLS.channel. |
| 2b6a0 | 20 53 53 4c 2f 54 4c 53 20 70 72 6f 76 69 64 65 73 20 74 72 61 6e 73 70 6f 72 74 2d 6c 65 76 65 | .SSL/TLS.provides.transport-leve |
| 2b6c0 | 6c 20 73 65 63 75 72 69 74 79 20 77 69 74 68 20 6b 65 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c | l.security.with.key.negotiation, |
| 2b6e0 | 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 74 72 61 66 66 69 63 20 69 6e 74 65 67 72 69 74 | .encryption.and.traffic.integrit |
| 2b700 | 79 20 63 68 65 63 6b 69 6e 67 2e 20 54 68 65 20 75 73 65 20 6f 66 20 53 53 4c 2f 54 4c 53 20 6f | y.checking..The.use.of.SSL/TLS.o |
| 2b720 | 76 65 72 20 54 43 50 20 70 6f 72 74 20 34 34 33 20 28 62 79 20 64 65 66 61 75 6c 74 2c 20 70 6f | ver.TCP.port.443.(by.default,.po |
| 2b740 | 72 74 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 29 20 61 6c 6c 6f 77 73 20 53 53 54 50 20 74 | rt.can.be.changed).allows.SSTP.t |
| 2b760 | 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 76 69 72 74 75 61 6c 6c 79 20 61 6c 6c 20 66 69 72 | o.pass.through.virtually.all.fir |
| 2b780 | 65 77 61 6c 6c 73 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 73 20 65 78 63 65 70 74 20 | ewalls.and.proxy.servers.except. |
| 2b7a0 | 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 77 65 62 20 70 72 6f 78 69 65 73 2e 00 3a | for.authenticated.web.proxies..: |
| 2b7c0 | 61 62 62 72 3a 60 53 54 50 20 28 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f | abbr:`STP.(Spanning.Tree.Protoco |
| 2b7e0 | 6c 29 60 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 62 | l)`.is.a.network.protocol.that.b |
| 2b800 | 75 69 6c 64 73 20 61 20 6c 6f 6f 70 2d 66 72 65 65 20 6c 6f 67 69 63 61 6c 20 74 6f 70 6f 6c 6f | uilds.a.loop-free.logical.topolo |
| 2b820 | 67 79 20 66 6f 72 20 45 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 65 20 62 61 | gy.for.Ethernet.networks..The.ba |
| 2b840 | 73 69 63 20 66 75 6e 63 74 69 6f 6e 20 6f 66 20 53 54 50 20 69 73 20 74 6f 20 70 72 65 76 65 6e | sic.function.of.STP.is.to.preven |
| 2b860 | 74 20 62 72 69 64 67 65 20 6c 6f 6f 70 73 20 61 6e 64 20 74 68 65 20 62 72 6f 61 64 63 61 73 74 | t.bridge.loops.and.the.broadcast |
| 2b880 | 20 72 61 64 69 61 74 69 6f 6e 20 74 68 61 74 20 72 65 73 75 6c 74 73 20 66 72 6f 6d 20 74 68 65 | .radiation.that.results.from.the |
| 2b8a0 | 6d 2e 20 53 70 61 6e 6e 69 6e 67 20 74 72 65 65 20 61 6c 73 6f 20 61 6c 6c 6f 77 73 20 61 20 6e | m..Spanning.tree.also.allows.a.n |
| 2b8c0 | 65 74 77 6f 72 6b 20 64 65 73 69 67 6e 20 74 6f 20 69 6e 63 6c 75 64 65 20 62 61 63 6b 75 70 20 | etwork.design.to.include.backup. |
| 2b8e0 | 6c 69 6e 6b 73 20 70 72 6f 76 69 64 69 6e 67 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 20 | links.providing.fault.tolerance. |
| 2b900 | 69 66 20 61 6e 20 61 63 74 69 76 65 20 6c 69 6e 6b 20 66 61 69 6c 73 2e 00 3a 61 62 62 72 3a 60 | if.an.active.link.fails..:abbr:` |
| 2b920 | 54 46 54 50 20 28 54 72 69 76 69 61 6c 20 46 69 6c 65 20 54 72 61 6e 73 66 65 72 20 50 72 6f 74 | TFTP.(Trivial.File.Transfer.Prot |
| 2b940 | 6f 63 6f 6c 29 60 20 69 73 20 61 20 73 69 6d 70 6c 65 2c 20 6c 6f 63 6b 73 74 65 70 20 66 69 6c | ocol)`.is.a.simple,.lockstep.fil |
| 2b960 | 65 20 74 72 61 6e 73 66 65 72 20 70 72 6f 74 6f 63 6f 6c 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 | e.transfer.protocol.which.allows |
| 2b980 | 20 61 20 63 6c 69 65 6e 74 20 74 6f 20 67 65 74 20 61 20 66 69 6c 65 20 66 72 6f 6d 20 6f 72 20 | .a.client.to.get.a.file.from.or. |
| 2b9a0 | 70 75 74 20 61 20 66 69 6c 65 20 6f 6e 74 6f 20 61 20 72 65 6d 6f 74 65 20 68 6f 73 74 2e 20 4f | put.a.file.onto.a.remote.host..O |
| 2b9c0 | 6e 65 20 6f 66 20 69 74 73 20 70 72 69 6d 61 72 79 20 75 73 65 73 20 69 73 20 69 6e 20 74 68 65 | ne.of.its.primary.uses.is.in.the |
| 2b9e0 | 20 65 61 72 6c 79 20 73 74 61 67 65 73 20 6f 66 20 6e 6f 64 65 73 20 62 6f 6f 74 69 6e 67 20 66 | .early.stages.of.nodes.booting.f |
| 2ba00 | 72 6f 6d 20 61 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 74 77 6f 72 6b 2e 20 54 46 54 50 20 68 | rom.a.local.area.network..TFTP.h |
| 2ba20 | 61 73 20 62 65 65 6e 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 61 70 70 6c 69 63 61 74 69 6f | as.been.used.for.this.applicatio |
| 2ba40 | 6e 20 62 65 63 61 75 73 65 20 69 74 20 69 73 20 76 65 72 79 20 73 69 6d 70 6c 65 20 74 6f 20 69 | n.because.it.is.very.simple.to.i |
| 2ba60 | 6d 70 6c 65 6d 65 6e 74 2e 00 3a 61 62 62 72 3a 60 56 4e 49 20 28 56 69 72 74 75 61 6c 20 4e 65 | mplement..:abbr:`VNI.(Virtual.Ne |
| 2ba80 | 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 29 60 20 69 73 20 61 6e 20 69 64 65 6e 74 69 66 | twork.Identifier)`.is.an.identif |
| 2baa0 | 69 65 72 20 66 6f 72 20 61 20 75 6e 69 71 75 65 20 65 6c 65 6d 65 6e 74 20 6f 66 20 61 20 76 69 | ier.for.a.unique.element.of.a.vi |
| 2bac0 | 72 74 75 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 20 49 6e 20 6d 61 6e 79 20 73 69 74 75 61 74 69 6f | rtual.network...In.many.situatio |
| 2bae0 | 6e 73 20 74 68 69 73 20 6d 61 79 20 72 65 70 72 65 73 65 6e 74 20 61 6e 20 4c 32 20 73 65 67 6d | ns.this.may.represent.an.L2.segm |
| 2bb00 | 65 6e 74 2c 20 68 6f 77 65 76 65 72 2c 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 | ent,.however,.the.control.plane. |
| 2bb20 | 64 65 66 69 6e 65 73 20 74 68 65 20 66 6f 72 77 61 72 64 69 6e 67 20 73 65 6d 61 6e 74 69 63 73 | defines.the.forwarding.semantics |
| 2bb40 | 20 6f 66 20 64 65 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 56 4e | .of.decapsulated.packets..The.VN |
| 2bb60 | 49 20 4d 41 59 20 62 65 20 75 73 65 64 20 61 73 20 70 61 72 74 20 6f 66 20 45 43 4d 50 20 66 6f | I.MAY.be.used.as.part.of.ECMP.fo |
| 2bb80 | 72 77 61 72 64 69 6e 67 20 64 65 63 69 73 69 6f 6e 73 20 6f 72 20 4d 41 59 20 62 65 20 75 73 65 | rwarding.decisions.or.MAY.be.use |
| 2bba0 | 64 20 61 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 | d.as.a.mechanism.to.distinguish. |
| 2bbc0 | 62 65 74 77 65 65 6e 20 6f 76 65 72 6c 61 70 70 69 6e 67 20 61 64 64 72 65 73 73 20 73 70 61 63 | between.overlapping.address.spac |
| 2bbe0 | 65 73 20 63 6f 6e 74 61 69 6e 65 64 20 69 6e 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 64 | es.contained.in.the.encapsulated |
| 2bc00 | 20 70 61 63 6b 65 74 20 77 68 65 6e 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 61 63 72 6f | .packet.when.load.balancing.acro |
| 2bc20 | 73 73 20 43 50 55 73 2e 00 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 72 74 75 61 6c 20 52 6f 75 | ss.CPUs..:abbr:`VRF.(Virtual.Rou |
| 2bc40 | 74 69 6e 67 20 61 6e 64 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 64 65 76 69 63 65 73 20 63 6f | ting.and.Forwarding)`.devices.co |
| 2bc60 | 6d 62 69 6e 65 64 20 77 69 74 68 20 69 70 20 72 75 6c 65 73 20 70 72 6f 76 69 64 65 73 20 74 68 | mbined.with.ip.rules.provides.th |
| 2bc80 | 65 20 61 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 20 76 69 72 74 75 61 6c 20 72 6f 75 74 | e.ability.to.create.virtual.rout |
| 2bca0 | 69 6e 67 20 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 20 64 6f 6d 61 69 6e 73 20 28 61 6b 61 20 | ing.and.forwarding.domains.(aka. |
| 2bcc0 | 56 52 46 73 2c 20 56 52 46 2d 6c 69 74 65 20 74 6f 20 62 65 20 73 70 65 63 69 66 69 63 29 20 69 | VRFs,.VRF-lite.to.be.specific).i |
| 2bce0 | 6e 20 74 68 65 20 4c 69 6e 75 78 20 6e 65 74 77 6f 72 6b 20 73 74 61 63 6b 2e 20 4f 6e 65 20 75 | n.the.Linux.network.stack..One.u |
| 2bd00 | 73 65 20 63 61 73 65 20 69 73 20 74 68 65 20 6d 75 6c 74 69 2d 74 65 6e 61 6e 63 79 20 70 72 6f | se.case.is.the.multi-tenancy.pro |
| 2bd20 | 62 6c 65 6d 20 77 68 65 72 65 20 65 61 63 68 20 74 65 6e 61 6e 74 20 68 61 73 20 74 68 65 69 72 | blem.where.each.tenant.has.their |
| 2bd40 | 20 6f 77 6e 20 75 6e 69 71 75 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 61 6e 64 20 69 | .own.unique.routing.tables.and.i |
| 2bd60 | 6e 20 74 68 65 20 76 65 72 79 20 6c 65 61 73 74 20 6e 65 65 64 20 64 69 66 66 65 72 65 6e 74 20 | n.the.very.least.need.different. |
| 2bd80 | 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 73 2e 00 3a 61 62 62 72 3a 60 56 58 4c 41 4e 20 28 | default.gateways..:abbr:`VXLAN.( |
| 2bda0 | 56 69 72 74 75 61 6c 20 45 78 74 65 6e 73 69 62 6c 65 20 4c 41 4e 29 60 20 69 73 20 61 20 6e 65 | Virtual.Extensible.LAN)`.is.a.ne |
| 2bdc0 | 74 77 6f 72 6b 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 | twork.virtualization.technology. |
| 2bde0 | 74 68 61 74 20 61 74 74 65 6d 70 74 73 20 74 6f 20 61 64 64 72 65 73 73 20 74 68 65 20 73 63 61 | that.attempts.to.address.the.sca |
| 2be00 | 6c 61 62 69 6c 69 74 79 20 70 72 6f 62 6c 65 6d 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 | lability.problems.associated.wit |
| 2be20 | 68 20 6c 61 72 67 65 20 63 6c 6f 75 64 20 63 6f 6d 70 75 74 69 6e 67 20 64 65 70 6c 6f 79 6d 65 | h.large.cloud.computing.deployme |
| 2be40 | 6e 74 73 2e 20 49 74 20 75 73 65 73 20 61 20 56 4c 41 4e 2d 6c 69 6b 65 20 65 6e 63 61 70 73 75 | nts..It.uses.a.VLAN-like.encapsu |
| 2be60 | 6c 61 74 69 6f 6e 20 74 65 63 68 6e 69 71 75 65 20 74 6f 20 65 6e 63 61 70 73 75 6c 61 74 65 20 | lation.technique.to.encapsulate. |
| 2be80 | 4f 53 49 20 6c 61 79 65 72 20 32 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 20 77 69 74 68 | OSI.layer.2.Ethernet.frames.with |
| 2bea0 | 69 6e 20 6c 61 79 65 72 20 34 20 55 44 50 20 64 61 74 61 67 72 61 6d 73 2c 20 75 73 69 6e 67 20 | in.layer.4.UDP.datagrams,.using. |
| 2bec0 | 34 37 38 39 20 61 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 49 41 4e 41 2d 61 73 73 69 67 6e 65 | 4789.as.the.default.IANA-assigne |
| 2bee0 | 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 56 | d.destination.UDP.port.number..V |
| 2bf00 | 58 4c 41 4e 20 65 6e 64 70 6f 69 6e 74 73 2c 20 77 68 69 63 68 20 74 65 72 6d 69 6e 61 74 65 20 | XLAN.endpoints,.which.terminate. |
| 2bf20 | 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 61 6e 64 20 6d 61 79 20 62 65 20 65 69 74 68 65 72 20 | VXLAN.tunnels.and.may.be.either. |
| 2bf40 | 76 69 72 74 75 61 6c 20 6f 72 20 70 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 20 70 6f 72 74 73 | virtual.or.physical.switch.ports |
| 2bf60 | 2c 20 61 72 65 20 6b 6e 6f 77 6e 20 61 73 20 3a 61 62 62 72 3a 60 56 54 45 50 73 20 28 56 58 4c | ,.are.known.as.:abbr:`VTEPs.(VXL |
| 2bf80 | 41 4e 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 73 29 60 2e 00 3a 61 62 62 72 3a 60 57 41 | AN.tunnel.endpoints)`..:abbr:`WA |
| 2bfa0 | 50 20 28 57 69 72 65 6c 65 73 73 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 29 60 20 6d 6f 64 65 20 | P.(Wireless.Access-Point)`.mode. |
| 2bfc0 | 70 72 6f 76 69 64 65 73 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 20 74 6f 20 63 6f 6e 6e 65 | provides.network.access.to.conne |
| 2bfe0 | 63 74 69 6e 67 20 73 74 61 74 69 6f 6e 73 20 69 66 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 68 | cting.stations.if.the.physical.h |
| 2c000 | 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 61 63 74 69 6e 67 20 61 73 20 61 20 57 41 50 | ardware.supports.acting.as.a.WAP |
| 2c020 | 00 3a 61 62 62 72 3a 60 57 41 50 20 28 57 69 72 65 6c 65 73 73 20 41 63 63 65 73 73 2d 50 6f 69 | .:abbr:`WAP.(Wireless.Access-Poi |
| 2c040 | 6e 74 29 60 20 70 72 6f 76 69 64 65 73 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 20 74 6f 20 | nt)`.provides.network.access.to. |
| 2c060 | 63 6f 6e 6e 65 63 74 69 6e 67 20 73 74 61 74 69 6f 6e 73 20 69 66 20 74 68 65 20 70 68 79 73 69 | connecting.stations.if.the.physi |
| 2c080 | 63 61 6c 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 61 63 74 69 6e 67 20 61 73 20 | cal.hardware.supports.acting.as. |
| 2c0a0 | 61 20 57 41 50 00 3a 61 62 62 72 3a 60 57 4c 41 4e 20 28 57 69 72 65 6c 65 73 73 20 4c 41 4e 29 | a.WAP.:abbr:`WLAN.(Wireless.LAN) |
| 2c0c0 | 60 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 20 38 30 32 2e 31 31 20 28 61 2f 62 2f | `.interface.provide.802.11.(a/b/ |
| 2c0e0 | 67 2f 6e 2f 61 63 29 20 77 69 72 65 6c 65 73 73 20 73 75 70 70 6f 72 74 20 28 63 6f 6d 6d 6f 6e | g/n/ac).wireless.support.(common |
| 2c100 | 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 29 20 62 79 20 6d 65 61 6e | ly.referred.to.as.Wi-Fi).by.mean |
| 2c120 | 73 20 6f 66 20 63 6f 6d 70 61 74 69 62 6c 65 20 68 61 72 64 77 61 72 65 2e 20 49 66 20 79 6f 75 | s.of.compatible.hardware..If.you |
| 2c140 | 72 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 69 74 2c 20 56 79 4f 53 20 73 75 70 | r.hardware.supports.it,.VyOS.sup |
| 2c160 | 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 67 69 63 61 6c 20 77 69 72 65 6c 65 73 73 20 | ports.multiple.logical.wireless. |
| 2c180 | 69 6e 74 65 72 66 61 63 65 73 20 70 65 72 20 70 68 79 73 69 63 61 6c 20 64 65 76 69 63 65 2e 00 | interfaces.per.physical.device.. |
| 2c1a0 | 3a 61 62 62 72 3a 60 57 50 41 20 28 57 69 2d 46 69 20 50 72 6f 74 65 63 74 65 64 20 41 63 63 65 | :abbr:`WPA.(Wi-Fi.Protected.Acce |
| 2c1c0 | 73 73 29 60 20 61 6e 64 20 57 50 41 32 20 45 6e 74 65 72 70 72 69 73 65 20 69 6e 20 63 6f 6d 62 | ss)`.and.WPA2.Enterprise.in.comb |
| 2c1e0 | 69 6e 61 74 69 6f 6e 20 77 69 74 68 20 38 30 32 2e 31 78 20 62 61 73 65 64 20 61 75 74 68 65 6e | ination.with.802.1x.based.authen |
| 2c200 | 74 69 63 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 | tication.can.be.used.to.authenti |
| 2c220 | 63 61 74 65 20 75 73 65 72 73 20 6f 72 20 63 6f 6d 70 75 74 65 72 73 20 69 6e 20 61 20 64 6f 6d | cate.users.or.computers.in.a.dom |
| 2c240 | 61 69 6e 2e 00 3a 61 62 62 72 3a 60 57 50 41 20 28 57 69 2d 46 69 20 50 72 6f 74 65 63 74 65 64 | ain..:abbr:`WPA.(Wi-Fi.Protected |
| 2c260 | 20 41 63 63 65 73 73 29 60 2c 20 57 50 41 32 20 45 6e 74 65 72 70 72 69 73 65 20 61 6e 64 20 57 | .Access)`,.WPA2.Enterprise.and.W |
| 2c280 | 50 41 33 20 45 6e 74 65 72 70 72 69 73 65 20 69 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 | PA3.Enterprise.in.combination.wi |
| 2c2a0 | 74 68 20 38 30 32 2e 31 78 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 63 | th.802.1x.based.authentication.c |
| 2c2c0 | 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 75 73 65 72 73 | an.be.used.to.authenticate.users |
| 2c2e0 | 20 6f 72 20 63 6f 6d 70 75 74 65 72 73 20 69 6e 20 61 20 64 6f 6d 61 69 6e 2e 00 3a 61 62 62 72 | .or.computers.in.a.domain..:abbr |
| 2c300 | 3a 60 6d 47 52 45 20 28 4d 75 6c 74 69 70 6f 69 6e 74 20 47 65 6e 65 72 69 63 20 52 6f 75 74 69 | :`mGRE.(Multipoint.Generic.Routi |
| 2c320 | 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 20 3a 72 66 63 3a 60 31 37 30 32 60 00 3a | ng.Encapsulation)`.:rfc:`1702`.: |
| 2c340 | 63 66 67 63 6d 64 3a 60 61 64 76 2d 72 6f 75 74 65 72 20 3c 41 2e 42 2e 43 2e 44 3e 60 20 e2 80 | cfgcmd:`adv-router.<A.B.C.D>`... |
| 2c360 | 93 20 72 6f 75 74 65 72 20 69 64 2c 20 77 68 69 63 68 20 6c 69 6e 6b 20 61 64 76 65 72 74 69 73 | ..router.id,.which.link.advertis |
| 2c380 | 65 6d 65 6e 74 73 20 6e 65 65 64 20 74 6f 20 62 65 20 72 65 76 69 65 77 65 64 2e 00 3a 63 66 67 | ements.need.to.be.reviewed..:cfg |
| 2c3a0 | 63 6d 64 3a 60 73 65 6c 66 2d 6f 72 69 67 69 6e 61 74 65 60 20 64 69 73 70 6c 61 79 73 20 6f 6e | cmd:`self-originate`.displays.on |
| 2c3c0 | 6c 79 20 73 65 6c 66 2d 6f 72 69 67 69 6e 61 74 65 64 20 4c 53 41 73 20 66 72 6f 6d 20 74 68 65 | ly.self-originated.LSAs.from.the |
| 2c3e0 | 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2e 00 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 65 72 76 | .local.router..:cfgcmd:`set.serv |
| 2c400 | 69 63 65 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 | ice.conntrack-sync.interface.eth |
| 2c420 | 30 20 70 65 65 72 20 31 39 32 2e 31 36 38 2e 30 2e 32 35 30 60 00 3a 63 6f 64 65 3a 60 73 65 74 | 0.peer.192.168.0.250`.:code:`set |
| 2c440 | 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 | .service.webproxy.url-filtering. |
| 2c460 | 73 71 75 69 64 67 75 61 72 64 20 61 75 74 6f 2d 75 70 64 61 74 65 20 75 70 64 61 74 65 2d 68 6f | squidguard.auto-update.update-ho |
| 2c480 | 75 72 20 32 33 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f | ur.23`.:code:`set.service.webpro |
| 2c4a0 | 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 73 71 75 69 64 67 75 61 72 64 20 62 6c 6f 63 | xy.url-filtering.squidguard.bloc |
| 2c4c0 | 6b 2d 63 61 74 65 67 6f 72 79 20 61 64 73 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 | k-category.ads`.:code:`set.servi |
| 2c4e0 | 63 65 20 77 65 62 70 72 6f 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 73 71 75 69 64 67 | ce.webproxy.url-filtering.squidg |
| 2c500 | 75 61 72 64 20 62 6c 6f 63 6b 2d 63 61 74 65 67 6f 72 79 20 6d 61 6c 77 61 72 65 60 00 3a 63 6f | uard.block-category.malware`.:co |
| 2c520 | 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 | de:`set.service.webproxy.whiteli |
| 2c540 | 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 30 | st.destination-address.192.0.2.0 |
| 2c560 | 2f 32 34 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 | /24`.:code:`set.service.webproxy |
| 2c580 | 20 77 68 69 74 65 6c 69 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 72 65 73 73 20 31 | .whitelist.destination-address.1 |
| 2c5a0 | 39 38 2e 35 31 2e 31 30 30 2e 33 33 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 | 98.51.100.33`.:code:`set.service |
| 2c5c0 | 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 20 73 6f 75 72 63 65 2d 61 64 64 72 65 | .webproxy.whitelist.source-addre |
| 2c5e0 | 73 73 20 31 39 32 2e 31 36 38 2e 31 2e 32 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 | ss.192.168.1.2`.:code:`set.servi |
| 2c600 | 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 20 73 6f 75 72 63 65 2d 61 64 64 | ce.webproxy.whitelist.source-add |
| 2c620 | 72 65 73 73 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 60 00 3a 64 6f 63 3a 60 43 6f 6e 6e 74 | ress.192.168.2.0/24`.:doc:`Connt |
| 2c640 | 72 61 63 6b 20 49 67 6e 6f 72 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 73 79 73 74 65 | rack.Ignore</configuration/syste |
| 2c660 | 6d 2f 63 6f 6e 6e 74 72 61 63 6b 3e 60 3a 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e | m/conntrack>`:.``set.system.conn |
| 2c680 | 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 69 70 76 34 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 43 6f 6e | track.ignore.ipv4...``.:doc:`Con |
| 2c6a0 | 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 73 79 73 | ntrack.Ignore</configuration/sys |
| 2c6c0 | 74 65 6d 2f 63 6f 6e 6e 74 72 61 63 6b 3e 60 3a 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f | tem/conntrack>`:.``set.system.co |
| 2c6e0 | 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 69 70 76 36 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 44 | nntrack.ignore.ipv6...``.:doc:`D |
| 2c700 | 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 6e 61 | estination.NAT</configuration/na |
| 2c720 | 74 2f 6e 61 74 34 34 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 | t/nat44>`:.commands.found.under. |
| 2c740 | 60 60 73 65 74 20 6e 61 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 2e 2e 2e 60 60 00 3a 64 6f 63 | ``set.nat.destination....``.:doc |
| 2c760 | 3a 60 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | :`Destination.NAT</configuration |
| 2c780 | 2f 6e 61 74 2f 6e 61 74 34 34 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 | /nat/nat44>`:.commands.found.und |
| 2c7a0 | 65 72 20 60 60 73 65 74 20 6e 61 74 36 36 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 2e 2e 2e 60 60 | er.``set.nat66.destination....`` |
| 2c7c0 | 00 3a 64 6f 63 3a 60 50 6f 6c 69 63 79 20 52 6f 75 74 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 | .:doc:`Policy.Route</configurati |
| 2c7e0 | 6f 6e 2f 70 6f 6c 69 63 79 2f 72 6f 75 74 65 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e | on/policy/route>`:.commands.foun |
| 2c800 | 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 2e 2e 2e 60 60 | d.under.``set.policy.route....`` |
| 2c820 | 00 3a 64 6f 63 3a 60 50 6f 6c 69 63 79 20 52 6f 75 74 65 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 | .:doc:`Policy.Route</configurati |
| 2c840 | 6f 6e 2f 70 6f 6c 69 63 79 2f 72 6f 75 74 65 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e | on/policy/route>`:.commands.foun |
| 2c860 | 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 36 20 2e 2e 2e 60 | d.under.``set.policy.route6....` |
| 2c880 | 60 00 3a 6c 61 73 74 70 72 6f 6f 66 72 65 61 64 3a 32 30 32 31 2d 30 37 2d 31 32 00 3a 6f 70 63 | `.:lastproofread:2021-07-12.:opc |
| 2c8a0 | 6d 64 3a 60 67 65 6e 65 72 61 74 65 20 70 6b 69 20 77 69 72 65 67 75 61 72 64 20 6b 65 79 2d 70 | md:`generate.pki.wireguard.key-p |
| 2c8c0 | 61 69 72 60 2e 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 00 3a 72 65 66 3a 60 72 | air`..:ref:`routing-bgp`.:ref:`r |
| 2c8e0 | 6f 75 74 69 6e 67 2d 62 67 70 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d | outing-bgp`:.``set.vrf.name.<nam |
| 2c900 | 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 | e>.protocols.bgp....``.:ref:`rou |
| 2c920 | 74 69 6e 67 2d 69 73 69 73 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 69 73 69 73 60 3a 20 | ting-isis`.:ref:`routing-isis`:. |
| 2c940 | 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 | ``set.vrf.name.<name>.protocols. |
| 2c960 | 69 73 69 73 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 60 00 3a | isis....``.:ref:`routing-ospf`.: |
| 2c980 | 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 | ref:`routing-ospf`:.``set.vrf.na |
| 2c9a0 | 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 20 2e 2e 2e 60 60 00 3a | me.<name>.protocols.ospf....``.: |
| 2c9c0 | 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 76 33 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 | ref:`routing-ospfv3`.:ref:`routi |
| 2c9e0 | 6e 67 2d 6f 73 70 66 76 33 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 | ng-ospfv3`:.``set.vrf.name.<name |
| 2ca00 | 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 76 33 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 | >.protocols.ospfv3....``.:ref:`r |
| 2ca20 | 6f 75 74 69 6e 67 2d 73 74 61 74 69 63 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 73 74 61 | outing-static`.:ref:`routing-sta |
| 2ca40 | 74 69 63 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 | tic`:.``set.vrf.name.<name>.prot |
| 2ca60 | 6f 63 6f 6c 73 20 73 74 61 74 69 63 20 2e 2e 2e 60 60 00 3a 72 66 63 3a 60 32 31 33 31 60 20 73 | ocols.static....``.:rfc:`2131`.s |
| 2ca80 | 74 61 74 65 73 3a 20 54 68 65 20 63 6c 69 65 6e 74 20 4d 41 59 20 63 68 6f 6f 73 65 20 74 6f 20 | tates:.The.client.MAY.choose.to. |
| 2caa0 | 65 78 70 6c 69 63 69 74 6c 79 20 70 72 6f 76 69 64 65 20 74 68 65 20 69 64 65 6e 74 69 66 69 65 | explicitly.provide.the.identifie |
| 2cac0 | 72 20 74 68 72 6f 75 67 68 20 74 68 65 20 27 63 6c 69 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 | r.through.the.'client.identifier |
| 2cae0 | 27 20 6f 70 74 69 6f 6e 2e 20 49 66 20 74 68 65 20 63 6c 69 65 6e 74 20 73 75 70 70 6c 69 65 73 | '.option..If.the.client.supplies |
| 2cb00 | 20 61 20 27 63 6c 69 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 27 2c 20 74 68 65 20 63 6c 69 65 | .a.'client.identifier',.the.clie |
| 2cb20 | 6e 74 20 4d 55 53 54 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 27 63 6c 69 65 6e 74 20 69 64 65 | nt.MUST.use.the.same.'client.ide |
| 2cb40 | 6e 74 69 66 69 65 72 27 20 69 6e 20 61 6c 6c 20 73 75 62 73 65 71 75 65 6e 74 20 6d 65 73 73 61 | ntifier'.in.all.subsequent.messa |
| 2cb60 | 67 65 73 2c 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 20 4d 55 53 54 20 75 73 65 20 74 68 61 | ges,.and.the.server.MUST.use.tha |
| 2cb80 | 74 20 69 64 65 6e 74 69 66 69 65 72 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 63 6c 69 | t.identifier.to.identify.the.cli |
| 2cba0 | 65 6e 74 2e 00 3a 72 66 63 3a 60 32 31 33 36 60 20 42 61 73 65 64 00 3a 72 66 63 3a 60 32 33 32 | ent..:rfc:`2136`.Based.:rfc:`232 |
| 2cbc0 | 38 60 2c 20 74 68 65 20 73 75 63 63 65 73 73 6f 72 20 74 6f 20 3a 72 66 63 3a 60 31 35 38 33 60 | 8`,.the.successor.to.:rfc:`1583` |
| 2cbe0 | 2c 20 73 75 67 67 65 73 74 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 73 65 63 74 69 6f 6e 20 | ,.suggests.according.to.section. |
| 2cc00 | 47 2e 32 20 28 63 68 61 6e 67 65 73 29 20 69 6e 20 73 65 63 74 69 6f 6e 20 31 36 2e 34 2e 31 20 | G.2.(changes).in.section.16.4.1. |
| 2cc20 | 61 20 63 68 61 6e 67 65 20 74 6f 20 74 68 65 20 70 61 74 68 20 70 72 65 66 65 72 65 6e 63 65 20 | a.change.to.the.path.preference. |
| 2cc40 | 61 6c 67 6f 72 69 74 68 6d 20 74 68 61 74 20 70 72 65 76 65 6e 74 73 20 70 6f 73 73 69 62 6c 65 | algorithm.that.prevents.possible |
| 2cc60 | 20 72 6f 75 74 69 6e 67 20 6c 6f 6f 70 73 20 74 68 61 74 20 77 65 72 65 20 70 6f 73 73 69 62 6c | .routing.loops.that.were.possibl |
| 2cc80 | 65 20 69 6e 20 74 68 65 20 6f 6c 64 20 76 65 72 73 69 6f 6e 20 6f 66 20 4f 53 50 46 76 32 2e 20 | e.in.the.old.version.of.OSPFv2.. |
| 2cca0 | 4d 6f 72 65 20 73 70 65 63 69 66 69 63 61 6c 6c 79 20 69 74 20 64 65 6d 61 6e 64 73 20 74 68 61 | More.specifically.it.demands.tha |
| 2ccc0 | 74 20 69 6e 74 65 72 2d 61 72 65 61 20 70 61 74 68 73 20 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 | t.inter-area.paths.and.intra-are |
| 2cce0 | 61 20 62 61 63 6b 62 6f 6e 65 20 70 61 74 68 20 61 72 65 20 6e 6f 77 20 6f 66 20 65 71 75 61 6c | a.backbone.path.are.now.of.equal |
| 2cd00 | 20 70 72 65 66 65 72 65 6e 63 65 20 62 75 74 20 73 74 69 6c 6c 20 62 6f 74 68 20 70 72 65 66 65 | .preference.but.still.both.prefe |
| 2cd20 | 72 72 65 64 20 74 6f 20 65 78 74 65 72 6e 61 6c 20 70 61 74 68 73 2e 00 3a 72 66 63 3a 60 36 35 | rred.to.external.paths..:rfc:`65 |
| 2cd40 | 39 38 60 20 2d 20 49 41 4e 41 2d 52 65 73 65 72 76 65 64 20 49 50 76 34 20 50 72 65 66 69 78 20 | 98`.-.IANA-Reserved.IPv4.Prefix. |
| 2cd60 | 66 6f 72 20 53 68 61 72 65 64 20 41 64 64 72 65 73 73 20 53 70 61 63 65 00 3a 72 66 63 3a 60 36 | for.Shared.Address.Space.:rfc:`6 |
| 2cd80 | 38 38 38 60 20 2d 20 52 65 71 75 69 72 65 6d 65 6e 74 73 20 66 6f 72 20 43 47 4e 41 54 00 3a 76 | 888`.-.Requirements.for.CGNAT.:v |
| 2cda0 | 79 74 61 73 6b 3a 60 54 33 36 34 32 60 20 64 65 73 63 72 69 62 65 73 20 61 20 6e 65 77 20 43 4c | ytask:`T3642`.describes.a.new.CL |
| 2cdc0 | 49 20 73 75 62 73 79 73 74 65 6d 20 74 68 61 74 20 73 65 72 76 65 73 20 61 73 20 61 20 22 63 65 | I.subsystem.that.serves.as.a."ce |
| 2cde0 | 72 74 73 74 6f 72 65 22 20 74 6f 20 61 6c 6c 20 73 65 72 76 69 63 65 73 20 72 65 71 75 69 72 69 | rtstore".to.all.services.requiri |
| 2ce00 | 6e 67 20 61 6e 79 20 6b 69 6e 64 20 6f 66 20 65 6e 63 72 79 70 74 69 6f 6e 20 6b 65 79 28 73 29 | ng.any.kind.of.encryption.key(s) |
| 2ce20 | 2e 20 49 6e 20 73 68 6f 72 74 2c 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 63 | ..In.short,.public.and.private.c |
| 2ce40 | 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 6e 6f 77 20 73 74 6f 72 65 64 20 69 6e 20 50 4b | ertificates.are.now.stored.in.PK |
| 2ce60 | 43 53 23 38 20 66 6f 72 6d 61 74 20 69 6e 20 74 68 65 20 72 65 67 75 6c 61 72 20 56 79 4f 53 20 | CS#8.format.in.the.regular.VyOS. |
| 2ce80 | 43 4c 49 2e 20 4b 65 79 73 20 63 61 6e 20 6e 6f 77 20 62 65 20 61 64 64 65 64 2c 20 65 64 69 74 | CLI..Keys.can.now.be.added,.edit |
| 2cea0 | 65 64 2c 20 61 6e 64 20 64 65 6c 65 74 65 64 20 75 73 69 6e 67 20 74 68 65 20 72 65 67 75 6c 61 | ed,.and.deleted.using.the.regula |
| 2cec0 | 72 20 73 65 74 2f 65 64 69 74 2f 64 65 6c 65 74 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 73 2e 00 | r.set/edit/delete.CLI.commands.. |
| 2cee0 | 3c 31 2d 36 35 35 33 35 3e 3a 20 4e 75 6d 62 65 72 65 64 20 70 6f 72 74 2e 00 3c 61 61 3a 6e 6e | <1-65535>:.Numbered.port..<aa:nn |
| 2cf00 | 3a 6e 6e 3e 3a 20 45 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 20 72 65 | :nn>:.Extended.community.list.re |
| 2cf20 | 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 | gular.expression..<h:h:h:h:h:h:h |
| 2cf40 | 3a 68 2f 78 3e 3a 20 49 50 76 36 20 70 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 2e 00 3c 68 3a | :h/x>:.IPv6.prefix.to.match..<h: |
| 2cf60 | 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 2d 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e | h:h:h:h:h:h:h>-<h:h:h:h:h:h:h:h> |
| 2cf80 | 3a 20 49 50 76 36 20 72 61 6e 67 65 20 74 6f 20 6d 61 74 63 68 2e 00 3c 68 3a 68 3a 68 3a 68 3a | :.IPv6.range.to.match..<h:h:h:h: |
| 2cfa0 | 68 3a 68 3a 68 3a 68 3e 3a 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e | h:h:h:h>:.IPv6.address.to.match. |
| 2cfc0 | 00 3c 6c 69 6e 65 73 3e 00 3c 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 20 66 72 6f 6d 20 33 | .<lines>.<number>.must.be.from.3 |
| 2cfe0 | 34 20 2d 20 31 37 33 2e 20 46 6f 72 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 20 69 74 20 | 4.-.173..For.80.MHz.channels.it. |
| 2d000 | 73 68 6f 75 6c 64 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 36 2e 00 3c 6e 75 6d 62 65 72 3e 20 | should.be.channel.+.6..<number>. |
| 2d020 | 6d 75 73 74 20 62 65 20 6f 6e 65 20 6f 66 3a 00 3c 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 | must.be.one.of:.<number>.must.be |
| 2d040 | 20 77 69 74 68 69 6e 20 31 2e 2e 32 33 33 2e 20 46 6f 72 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e | .within.1..233..For.80.MHz.chann |
| 2d060 | 65 6c 73 20 69 74 20 73 68 6f 75 6c 64 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 36 20 61 6e 64 | els.it.should.be.channel.+.6.and |
| 2d080 | 20 66 6f 72 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 2c 20 69 74 20 73 68 6f 75 6c 64 | .for.160.MHz.channels,.it.should |
| 2d0a0 | 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 31 34 2e 00 3c 6e 75 6d 62 65 72 3e 20 e2 80 93 20 61 | .be.channel.+.14..<number>.....a |
| 2d0c0 | 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 20 74 68 72 6f 75 67 68 20 77 68 69 63 68 20 61 20 76 | rea.identifier.through.which.a.v |
| 2d0e0 | 69 72 74 75 61 6c 20 6c 69 6e 6b 20 67 6f 65 73 2e 20 3c 41 2e 42 2e 43 2e 44 3e 20 e2 80 93 20 | irtual.link.goes..<A.B.C.D>..... |
| 2d100 | 41 42 52 20 72 6f 75 74 65 72 2d 69 64 20 77 69 74 68 20 77 68 69 63 68 20 61 20 76 69 72 74 75 | ABR.router-id.with.which.a.virtu |
| 2d120 | 61 6c 20 6c 69 6e 6b 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 2e 20 56 69 72 74 75 61 6c 20 | al.link.is.established..Virtual. |
| 2d140 | 6c 69 6e 6b 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 62 6f 74 68 20 | link.must.be.configured.on.both. |
| 2d160 | 72 6f 75 74 65 72 73 2e 00 3c 70 6f 72 74 20 6e 61 6d 65 3e 3a 20 4e 61 6d 65 64 20 70 6f 72 74 | routers..<port.name>:.Named.port |
| 2d180 | 20 28 61 6e 79 20 6e 61 6d 65 20 69 6e 20 2f 65 74 63 2f 73 65 72 76 69 63 65 73 2c 20 65 2e 67 | .(any.name.in./etc/services,.e.g |
| 2d1a0 | 2e 2c 20 68 74 74 70 29 2e 00 3c 72 74 20 61 61 3a 6e 6e 3a 6e 6e 3e 3a 20 52 6f 75 74 65 20 54 | .,.http)..<rt.aa:nn:nn>:.Route.T |
| 2d1c0 | 61 72 67 65 74 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c 73 6f 6f 20 61 | arget.regular.expression..<soo.a |
| 2d1e0 | 61 3a 6e 6e 3a 6e 6e 3e 3a 20 53 69 74 65 20 6f 66 20 4f 72 69 67 69 6e 20 72 65 67 75 6c 61 72 | a:nn:nn>:.Site.of.Origin.regular |
| 2d200 | 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c 73 74 61 72 74 3e 2d 3c 65 6e 64 3e 3a 20 4e 75 6d 62 | .expression..<start>-<end>:.Numb |
| 2d220 | 65 72 65 64 20 70 6f 72 74 20 72 61 6e 67 65 20 28 65 2e 67 2e 2c 20 31 30 30 31 2d 31 30 30 35 | ered.port.range.(e.g.,.1001-1005 |
| 2d240 | 29 2e 00 3c 78 2e 78 2e 78 2e 78 2f 78 3e 3a 20 53 75 62 6e 65 74 20 74 6f 20 6d 61 74 63 68 2e | )..<x.x.x.x/x>:.Subnet.to.match. |
| 2d260 | 00 3c 78 2e 78 2e 78 2e 78 3e 2d 3c 78 2e 78 2e 78 2e 78 3e 3a 20 49 50 20 72 61 6e 67 65 20 74 | .<x.x.x.x>-<x.x.x.x>:.IP.range.t |
| 2d280 | 6f 20 6d 61 74 63 68 2e 00 3c 78 2e 78 2e 78 2e 78 3e 3a 20 49 50 20 61 64 64 72 65 73 73 20 74 | o.match..<x.x.x.x>:.IP.address.t |
| 2d2a0 | 6f 20 6d 61 74 63 68 2e 00 41 20 2a 2a 64 6f 6d 61 69 6e 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 | o.match..A.**domain.group**.repr |
| 2d2c0 | 65 73 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 64 6f 6d 61 69 6e 73 2e 00 | esents.a.collection.of.domains.. |
| 2d2e0 | 41 20 2a 2a 6d 61 63 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 61 20 63 6f 6c | A.**mac.group**.represents.a.col |
| 2d300 | 6c 65 63 74 69 6f 6e 20 6f 66 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 2e 00 41 20 2a 2a 70 6f | lection.of.mac.addresses..A.**po |
| 2d320 | 72 74 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 6f 6e 6c 79 20 70 6f 72 74 20 | rt.group**.represents.only.port. |
| 2d340 | 6e 75 6d 62 65 72 73 2c 20 6e 6f 74 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 2e 20 50 6f 72 74 20 | numbers,.not.the.protocol..Port. |
| 2d360 | 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 66 6f 72 20 65 69 74 | groups.can.be.referenced.for.eit |
| 2d380 | 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 49 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 | her.TCP.or.UDP..It.is.recommende |
| 2d3a0 | 64 20 74 68 61 74 20 54 43 50 20 61 6e 64 20 55 44 50 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 | d.that.TCP.and.UDP.groups.are.cr |
| 2d3c0 | 65 61 74 65 64 20 73 65 70 61 72 61 74 65 6c 79 20 74 6f 20 61 76 6f 69 64 20 61 63 63 69 64 65 | eated.separately.to.avoid.accide |
| 2d3e0 | 6e 74 61 6c 6c 79 20 66 69 6c 74 65 72 69 6e 67 20 75 6e 6e 65 63 65 73 73 61 72 79 20 70 6f 72 | ntally.filtering.unnecessary.por |
| 2d400 | 74 73 2e 20 52 61 6e 67 65 73 20 6f 66 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 | ts..Ranges.of.ports.can.be.speci |
| 2d420 | 66 69 65 64 20 62 79 20 75 73 69 6e 67 20 60 2d 60 2e 00 41 20 2a 62 69 74 2a 20 69 73 20 77 72 | fied.by.using.`-`..A.*bit*.is.wr |
| 2d440 | 69 74 74 65 6e 20 61 73 20 2a 2a 62 69 74 2a 2a 2c 00 41 20 34 20 73 74 65 70 20 70 6f 72 74 20 | itten.as.**bit**,.A.4.step.port. |
| 2d460 | 6b 6e 6f 63 6b 69 6e 67 20 65 78 61 6d 70 6c 65 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 | knocking.example.is.shown.next:. |
| 2d480 | 41 20 3a 61 62 62 72 3a 60 4e 49 53 20 28 4e 65 74 77 6f 72 6b 20 49 6e 66 6f 72 6d 61 74 69 6f | A.:abbr:`NIS.(Network.Informatio |
| 2d4a0 | 6e 20 53 65 72 76 69 63 65 29 60 20 64 6f 6d 61 69 6e 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f | n.Service)`.domain.can.be.set.to |
| 2d4c0 | 20 62 65 20 75 73 65 64 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 41 20 42 | .be.used.for.DHCPv6.clients..A.B |
| 2d4e0 | 47 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 64 69 76 69 64 65 73 20 6f 75 72 20 41 53 20 | GP.confederation.divides.our.AS. |
| 2d500 | 69 6e 74 6f 20 73 75 62 2d 41 53 65 73 20 74 6f 20 72 65 64 75 63 65 20 74 68 65 20 6e 75 6d 62 | into.sub-ASes.to.reduce.the.numb |
| 2d520 | 65 72 20 6f 66 20 72 65 71 75 69 72 65 64 20 49 42 47 50 20 70 65 65 72 69 6e 67 73 2e 20 57 69 | er.of.required.IBGP.peerings..Wi |
| 2d540 | 74 68 69 6e 20 61 20 73 75 62 2d 41 53 20 77 65 20 73 74 69 6c 6c 20 72 65 71 75 69 72 65 20 66 | thin.a.sub-AS.we.still.require.f |
| 2d560 | 75 6c 6c 2d 6d 65 73 68 20 49 42 47 50 20 62 75 74 20 62 65 74 77 65 65 6e 20 74 68 65 73 65 20 | ull-mesh.IBGP.but.between.these. |
| 2d580 | 73 75 62 2d 41 53 65 73 20 77 65 20 75 73 65 20 73 6f 6d 65 74 68 69 6e 67 20 74 68 61 74 20 6c | sub-ASes.we.use.something.that.l |
| 2d5a0 | 6f 6f 6b 73 20 6c 69 6b 65 20 45 42 47 50 20 62 75 74 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 | ooks.like.EBGP.but.behaves.like. |
| 2d5c0 | 49 42 47 50 20 28 63 61 6c 6c 65 64 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 42 47 50 29 2e | IBGP.(called.confederation.BGP). |
| 2d5e0 | 20 43 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 64 65 73 63 | .Confederation.mechanism.is.desc |
| 2d600 | 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 30 36 35 60 00 41 20 42 47 50 2d 73 70 65 61 6b | ribed.in.:rfc:`5065`.A.BGP-speak |
| 2d620 | 69 6e 67 20 72 6f 75 74 65 72 20 6c 69 6b 65 20 56 79 4f 53 20 63 61 6e 20 72 65 74 72 69 65 76 | ing.router.like.VyOS.can.retriev |
| 2d640 | 65 20 52 4f 41 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 52 50 4b 49 20 22 52 65 6c | e.ROA.information.from.RPKI."Rel |
| 2d660 | 79 69 6e 67 20 50 61 72 74 79 20 73 6f 66 74 77 61 72 65 22 20 28 6f 66 74 65 6e 20 6a 75 73 74 | ying.Party.software".(often.just |
| 2d680 | 20 63 61 6c 6c 65 64 20 61 6e 20 22 52 50 4b 49 20 73 65 72 76 65 72 22 20 6f 72 20 22 52 50 4b | .called.an."RPKI.server".or."RPK |
| 2d6a0 | 49 20 76 61 6c 69 64 61 74 6f 72 22 29 20 62 79 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 52 54 | I.validator").by.using.:abbr:`RT |
| 2d6c0 | 52 20 28 52 50 4b 49 20 74 6f 20 52 6f 75 74 65 72 29 60 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 | R.(RPKI.to.Router)`.protocol..Th |
| 2d6e0 | 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 6f 70 65 6e 20 73 6f 75 72 63 65 20 69 6d 70 6c | ere.are.several.open.source.impl |
| 2d700 | 65 6d 65 6e 74 61 74 69 6f 6e 73 20 74 6f 20 63 68 6f 6f 73 65 20 66 72 6f 6d 2c 20 73 75 63 68 | ementations.to.choose.from,.such |
| 2d720 | 20 61 73 20 4e 4c 4e 65 74 4c 61 62 73 27 20 52 6f 75 74 69 6e 61 74 6f 72 5f 20 28 77 72 69 74 | .as.NLNetLabs'.Routinator_.(writ |
| 2d740 | 74 65 6e 20 69 6e 20 52 75 73 74 29 2c 20 43 6c 6f 75 64 66 6c 61 72 65 27 73 20 47 6f 52 54 52 | ten.in.Rust),.Cloudflare's.GoRTR |
| 2d760 | 5f 20 61 6e 64 20 4f 63 74 6f 52 50 4b 49 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 47 6f 29 2c | _.and.OctoRPKI_.(written.in.Go), |
| 2d780 | 20 61 6e 64 20 52 49 50 45 20 4e 43 43 27 73 20 52 50 4b 49 20 56 61 6c 69 64 61 74 6f 72 5f 20 | .and.RIPE.NCC's.RPKI.Validator_. |
| 2d7a0 | 28 77 72 69 74 74 65 6e 20 69 6e 20 4a 61 76 61 29 2e 20 54 68 65 20 52 54 52 20 70 72 6f 74 6f | (written.in.Java)..The.RTR.proto |
| 2d7c0 | 63 6f 6c 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 32 31 30 60 2e | col.is.described.in.:rfc:`8210`. |
| 2d7e0 | 00 41 20 42 47 50 2d 73 70 65 61 6b 69 6e 67 20 72 6f 75 74 65 72 20 6c 69 6b 65 20 56 79 4f 53 | .A.BGP-speaking.router.like.VyOS |
| 2d800 | 20 63 61 6e 20 72 65 74 72 69 65 76 65 20 52 4f 41 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 | .can.retrieve.ROA.information.fr |
| 2d820 | 6f 6d 20 52 50 4b 49 20 22 52 65 6c 79 69 6e 67 20 50 61 72 74 79 20 73 6f 66 74 77 61 72 65 22 | om.RPKI."Relying.Party.software" |
| 2d840 | 20 28 6f 66 74 65 6e 20 6a 75 73 74 20 63 61 6c 6c 65 64 20 61 6e 20 22 52 50 4b 49 20 73 65 72 | .(often.just.called.an."RPKI.ser |
| 2d860 | 76 65 72 22 20 6f 72 20 22 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 22 29 20 62 79 20 75 73 69 | ver".or."RPKI.validator").by.usi |
| 2d880 | 6e 67 20 3a 61 62 62 72 3a 60 52 54 52 20 28 52 50 4b 49 20 74 6f 20 52 6f 75 74 65 72 29 60 20 | ng.:abbr:`RTR.(RPKI.to.Router)`. |
| 2d8a0 | 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 6f 70 65 6e | protocol..There.are.several.open |
| 2d8c0 | 20 73 6f 75 72 63 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 74 6f 20 63 68 6f 6f 73 | .source.implementations.to.choos |
| 2d8e0 | 65 20 66 72 6f 6d 2c 20 73 75 63 68 20 61 73 20 4e 4c 4e 65 74 4c 61 62 73 27 20 52 6f 75 74 69 | e.from,.such.as.NLNetLabs'.Routi |
| 2d900 | 6e 61 74 6f 72 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 52 75 73 74 29 2c 20 4f 70 65 6e 42 53 | nator_.(written.in.Rust),.OpenBS |
| 2d920 | 44 27 73 20 72 70 6b 69 2d 63 6c 69 65 6e 74 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 43 29 2c | D's.rpki-client_.(written.in.C), |
| 2d940 | 20 61 6e 64 20 53 74 61 79 52 54 52 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 47 6f 29 2e 20 54 | .and.StayRTR_.(written.in.Go)..T |
| 2d960 | 68 65 20 52 54 52 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 | he.RTR.protocol.is.described.in. |
| 2d980 | 3a 72 66 63 3a 60 38 32 31 30 60 2e 00 41 20 42 72 69 64 67 65 20 69 73 20 61 20 77 61 79 20 74 | :rfc:`8210`..A.Bridge.is.a.way.t |
| 2d9a0 | 6f 20 63 6f 6e 6e 65 63 74 20 74 77 6f 20 45 74 68 65 72 6e 65 74 20 73 65 67 6d 65 6e 74 73 20 | o.connect.two.Ethernet.segments. |
| 2d9c0 | 74 6f 67 65 74 68 65 72 20 69 6e 20 61 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 | together.in.a.protocol.independe |
| 2d9e0 | 6e 74 20 77 61 79 2e 20 50 61 63 6b 65 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 20 62 61 | nt.way..Packets.are.forwarded.ba |
| 2da00 | 73 65 64 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 61 64 64 72 65 73 73 2c 20 72 61 74 68 65 72 20 | sed.on.Ethernet.address,.rather. |
| 2da20 | 74 68 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 28 6c 69 6b 65 20 61 20 72 6f 75 74 65 72 29 2e | than.IP.address.(like.a.router). |
| 2da40 | 20 53 69 6e 63 65 20 66 6f 72 77 61 72 64 69 6e 67 20 69 73 20 64 6f 6e 65 20 61 74 20 4c 61 79 | .Since.forwarding.is.done.at.Lay |
| 2da60 | 65 72 20 32 2c 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 67 6f 20 74 72 61 6e 73 | er.2,.all.protocols.can.go.trans |
| 2da80 | 70 61 72 65 6e 74 6c 79 20 74 68 72 6f 75 67 68 20 61 20 62 72 69 64 67 65 2e 20 54 68 65 20 4c | parently.through.a.bridge..The.L |
| 2daa0 | 69 6e 75 78 20 62 72 69 64 67 65 20 63 6f 64 65 20 69 6d 70 6c 65 6d 65 6e 74 73 20 61 20 73 75 | inux.bridge.code.implements.a.su |
| 2dac0 | 62 73 65 74 20 6f 66 20 74 68 65 20 41 4e 53 49 2f 49 45 45 45 20 38 30 32 2e 31 64 20 73 74 61 | bset.of.the.ANSI/IEEE.802.1d.sta |
| 2dae0 | 6e 64 61 72 64 2e 00 41 20 47 52 45 20 74 75 6e 6e 65 6c 20 6f 70 65 72 61 74 65 73 20 61 74 20 | ndard..A.GRE.tunnel.operates.at. |
| 2db00 | 6c 61 79 65 72 20 33 20 6f 66 20 74 68 65 20 4f 53 49 20 6d 6f 64 65 6c 20 61 6e 64 20 69 73 20 | layer.3.of.the.OSI.model.and.is. |
| 2db20 | 72 65 70 72 65 73 65 6e 74 65 64 20 62 79 20 49 50 20 70 72 6f 74 6f 63 6f 6c 20 34 37 2e 20 54 | represented.by.IP.protocol.47..T |
| 2db40 | 68 65 20 6d 61 69 6e 20 62 65 6e 65 66 69 74 20 6f 66 20 61 20 47 52 45 20 74 75 6e 6e 65 6c 20 | he.main.benefit.of.a.GRE.tunnel. |
| 2db60 | 69 73 20 74 68 61 74 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 63 61 72 72 79 20 6d 75 | is.that.you.are.able.to.carry.mu |
| 2db80 | 6c 74 69 70 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 20 69 6e 73 69 64 65 20 74 68 65 20 73 61 6d 65 | ltiple.protocols.inside.the.same |
| 2dba0 | 20 74 75 6e 6e 65 6c 2e 20 47 52 45 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 | .tunnel..GRE.also.supports.multi |
| 2dbc0 | 63 61 73 74 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 75 70 70 6f 72 74 73 20 72 6f 75 74 69 6e | cast.traffic.and.supports.routin |
| 2dbe0 | 67 20 70 72 6f 74 6f 63 6f 6c 73 20 74 68 61 74 20 6c 65 76 65 72 61 67 65 20 6d 75 6c 74 69 63 | g.protocols.that.leverage.multic |
| 2dc00 | 61 73 74 20 74 6f 20 66 6f 72 6d 20 6e 65 69 67 68 62 6f 72 20 61 64 6a 61 63 65 6e 63 69 65 73 | ast.to.form.neighbor.adjacencies |
| 2dc20 | 2e 00 41 20 52 75 6c 65 2d 53 65 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 | ..A.Rule-Set.can.be.applied.to.e |
| 2dc40 | 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 3a 00 41 20 53 4e 54 50 20 73 65 72 76 65 72 20 61 64 | very.interface:.A.SNTP.server.ad |
| 2dc60 | 64 72 65 73 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 66 6f 72 20 44 48 43 50 76 | dress.can.be.specified.for.DHCPv |
| 2dc80 | 36 20 63 6c 69 65 6e 74 73 2e 00 41 20 56 52 46 20 64 65 76 69 63 65 20 69 73 20 63 72 65 61 74 | 6.clients..A.VRF.device.is.creat |
| 2dca0 | 65 64 20 77 69 74 68 20 61 6e 20 61 73 73 6f 63 69 61 74 65 64 20 72 6f 75 74 65 20 74 61 62 6c | ed.with.an.associated.route.tabl |
| 2dcc0 | 65 2e 20 4e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 74 68 65 6e 20 65 | e..Network.interfaces.are.then.e |
| 2dce0 | 6e 73 6c 61 76 65 64 20 74 6f 20 61 20 56 52 46 20 64 65 76 69 63 65 2e 00 41 20 56 79 4f 53 20 | nslaved.to.a.VRF.device..A.VyOS. |
| 2dd00 | 47 52 45 20 74 75 6e 6e 65 6c 20 63 61 6e 20 63 61 72 72 79 20 62 6f 74 68 20 49 50 76 34 20 61 | GRE.tunnel.can.carry.both.IPv4.a |
| 2dd20 | 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 20 61 6e 64 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 | nd.IPv6.traffic.and.can.also.be. |
| 2dd40 | 63 72 65 61 74 65 64 20 6f 76 65 72 20 65 69 74 68 65 72 20 49 50 76 34 20 28 67 72 65 29 20 6f | created.over.either.IPv4.(gre).o |
| 2dd60 | 72 20 49 50 76 36 20 28 69 70 36 67 72 65 29 2e 00 41 20 56 79 4f 53 20 72 6f 75 74 65 72 20 77 | r.IPv6.(ip6gre)..A.VyOS.router.w |
| 2dd80 | 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 2d 20 65 74 68 30 20 28 57 41 4e 29 20 | ith.two.interfaces.-.eth0.(WAN). |
| 2dda0 | 61 6e 64 20 65 74 68 31 20 28 4c 41 4e 29 20 2d 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 | and.eth1.(LAN).-.is.required.to. |
| 2ddc0 | 69 6d 70 6c 65 6d 65 6e 74 20 61 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 44 4e 53 20 63 6f | implement.a.split-horizon.DNS.co |
| 2dde0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e 63 6f 6d 2e 00 41 20 62 | nfiguration.for.example.com..A.b |
| 2de00 | 61 73 69 63 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 71 75 69 72 65 73 20 61 20 74 75 | asic.configuration.requires.a.tu |
| 2de20 | 6e 6e 65 6c 20 73 6f 75 72 63 65 20 28 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 29 2c 20 61 20 | nnel.source.(source-address),.a. |
| 2de40 | 74 75 6e 6e 65 6c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 72 65 6d 6f 74 65 29 2c 20 61 6e 20 | tunnel.destination.(remote),.an. |
| 2de60 | 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 20 28 67 72 65 29 2c 20 61 6e 64 20 61 6e | encapsulation.type.(gre),.and.an |
| 2de80 | 20 61 64 64 72 65 73 73 20 28 69 70 76 34 2f 69 70 76 36 29 2e 20 42 65 6c 6f 77 20 69 73 20 61 | .address.(ipv4/ipv6)..Below.is.a |
| 2dea0 | 20 62 61 73 69 63 20 49 50 76 34 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 | .basic.IPv4.only.configuration.e |
| 2dec0 | 78 61 6d 70 6c 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 | xample.taken.from.a.VyOS.router. |
| 2dee0 | 61 6e 64 20 61 20 43 69 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 72 2e 20 54 68 65 20 6d 61 69 6e | and.a.Cisco.IOS.router..The.main |
| 2df00 | 20 64 69 66 66 65 72 65 6e 63 65 20 62 65 74 77 65 65 6e 20 74 68 65 73 65 20 74 77 6f 20 63 6f | .difference.between.these.two.co |
| 2df20 | 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 69 73 20 74 68 61 74 20 56 79 4f 53 20 72 65 71 75 69 72 | nfigurations.is.that.VyOS.requir |
| 2df40 | 65 73 20 79 6f 75 20 65 78 70 6c 69 63 69 74 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | es.you.explicitly.configure.the. |
| 2df60 | 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 2e 20 54 68 65 20 43 69 73 63 6f 20 72 6f | encapsulation.type..The.Cisco.ro |
| 2df80 | 75 74 65 72 20 64 65 66 61 75 6c 74 73 20 74 6f 20 47 52 45 20 49 50 20 6f 74 68 65 72 77 69 73 | uter.defaults.to.GRE.IP.otherwis |
| 2dfa0 | 65 20 69 74 20 77 6f 75 6c 64 20 68 61 76 65 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 | e.it.would.have.to.be.configured |
| 2dfc0 | 20 61 73 20 77 65 6c 6c 2e 00 41 20 62 61 73 69 63 20 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 74 | .as.well..A.basic.introduction.t |
| 2dfe0 | 6f 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 63 61 6e 20 62 65 20 66 6f | o.zone-based.firewalls.can.be.fo |
| 2e000 | 75 6e 64 20 60 68 65 72 65 20 3c 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f 72 74 2e 76 79 6f 73 2e | und.`here.<https://support.vyos. |
| 2e020 | 69 6f 2f 65 6e 2f 6b 62 2f 61 72 74 69 63 6c 65 73 2f 61 2d 70 72 69 6d 65 72 2d 74 6f 2d 7a 6f | io/en/kb/articles/a-primer-to-zo |
| 2e040 | 6e 65 2d 62 61 73 65 64 2d 66 69 72 65 77 61 6c 6c 3e 60 5f 2c 20 61 6e 64 20 61 6e 20 65 78 61 | ne-based-firewall>`_,.and.an.exa |
| 2e060 | 6d 70 6c 65 20 61 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 6c 65 73 2d 7a 6f 6e 65 2d 70 6f 6c 69 | mple.at.:ref:`examples-zone-poli |
| 2e080 | 63 79 60 2e 00 41 20 62 72 69 64 67 65 20 6e 61 6d 65 64 20 60 62 72 31 30 30 60 00 41 20 62 72 | cy`..A.bridge.named.`br100`.A.br |
| 2e0a0 | 69 65 66 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 61 74 20 74 68 69 73 20 6e 65 74 77 6f 72 | ief.description.what.this.networ |
| 2e0c0 | 6b 20 69 73 20 61 6c 6c 20 61 62 6f 75 74 2e 00 41 20 63 6c 61 73 73 20 63 61 6e 20 68 61 76 65 | k.is.all.about..A.class.can.have |
| 2e0e0 | 20 6d 75 6c 74 69 70 6c 65 20 6d 61 74 63 68 20 66 69 6c 74 65 72 73 3a 00 41 20 63 6f 6d 6d 6f | .multiple.match.filters:.A.commo |
| 2e100 | 6e 20 65 78 61 6d 70 6c 65 20 69 73 20 74 68 65 20 63 61 73 65 20 6f 66 20 73 6f 6d 65 20 70 6f | n.example.is.the.case.of.some.po |
| 2e120 | 6c 69 63 69 65 73 20 77 68 69 63 68 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 20 65 66 66 | licies.which,.in.order.to.be.eff |
| 2e140 | 65 63 74 69 76 65 2c 20 74 68 65 79 20 6e 65 65 64 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 | ective,.they.need.to.be.applied. |
| 2e160 | 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 69 73 20 64 69 72 65 63 74 6c 79 | to.an.interface.that.is.directly |
| 2e180 | 20 63 6f 6e 6e 65 63 74 65 64 20 77 68 65 72 65 20 74 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 20 | .connected.where.the.bottleneck. |
| 2e1a0 | 69 73 2e 20 49 66 20 79 6f 75 72 20 72 6f 75 74 65 72 20 69 73 20 6e 6f 74 20 64 69 72 65 63 74 | is..If.your.router.is.not.direct |
| 2e1c0 | 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 2c 20 | ly.connected.to.the.bottleneck,. |
| 2e1e0 | 62 75 74 20 73 6f 6d 65 20 68 6f 70 20 62 65 66 6f 72 65 20 69 74 2c 20 79 6f 75 20 63 61 6e 20 | but.some.hop.before.it,.you.can. |
| 2e200 | 65 6d 75 6c 61 74 65 20 74 68 65 20 62 6f 74 74 6c 65 6e 65 63 6b 20 62 79 20 65 6d 62 65 64 64 | emulate.the.bottleneck.by.embedd |
| 2e220 | 69 6e 67 20 79 6f 75 72 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 69 6e 74 6f | ing.your.non-shaping.policy.into |
| 2e240 | 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 20 6f 6e 65 20 73 6f 20 74 68 61 74 20 | .a.classful.shaping.one.so.that. |
| 2e260 | 69 74 20 74 61 6b 65 73 20 65 66 66 65 63 74 2e 00 41 20 63 6f 6d 70 6c 65 74 65 20 4c 44 41 50 | it.takes.effect..A.complete.LDAP |
| 2e280 | 20 61 75 74 68 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 75 6c | .auth.OpenVPN.configuration.coul |
| 2e2a0 | 64 20 6c 6f 6f 6b 20 6c 69 6b 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c | d.look.like.the.following.exampl |
| 2e2c0 | 65 3a 00 41 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 20 63 61 6e 20 62 | e:.A.configuration.example.can.b |
| 2e2e0 | 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 20 49 6e 20 74 68 69 73 | e.found.in.this.section..In.this |
| 2e300 | 20 73 69 6d 70 6c 69 66 69 65 64 20 73 63 65 6e 61 72 69 6f 2c 20 6d 61 69 6e 20 74 68 69 6e 67 | .simplified.scenario,.main.thing |
| 2e320 | 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 72 65 3a 00 41 20 63 6f 6e 6e 65 63 | s.to.be.considered.are:.A.connec |
| 2e340 | 74 69 6f 6e 20 61 74 74 65 6d 70 74 20 77 69 6c 6c 20 62 65 20 73 68 6f 77 6e 20 61 73 3a 00 41 | tion.attempt.will.be.shown.as:.A |
| 2e360 | 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 | .default.route.is.automatically. |
| 2e380 | 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 63 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 | installed.once.the.interface.is. |
| 2e3a0 | 75 70 2e 20 54 6f 20 63 68 61 6e 67 65 20 74 68 69 73 20 62 65 68 61 76 69 6f 72 20 75 73 65 20 | up..To.change.this.behavior.use. |
| 2e3c0 | 74 68 65 20 60 60 6e 6f 2d 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 60 60 20 43 4c 49 20 6f 70 74 | the.``no-default-route``.CLI.opt |
| 2e3e0 | 69 6f 6e 2e 00 41 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 | ion..A.description.can.be.added. |
| 2e400 | 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 75 6e 69 71 75 65 20 72 65 6c 61 79 20 | for.each.and.every.unique.relay. |
| 2e420 | 49 44 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 | ID..This.is.useful.to.distinguis |
| 2e440 | 68 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 | h.between.multiple.different.por |
| 2e460 | 74 73 2f 61 70 70 6c 69 61 63 74 69 6f 6e 73 2e 00 41 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 | ts/appliactions..A.description.c |
| 2e480 | 61 6e 20 62 65 20 61 64 64 65 64 20 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 75 | an.be.added.for.each.and.every.u |
| 2e4a0 | 6e 69 71 75 65 20 72 65 6c 61 79 20 49 44 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 74 | nique.relay.ID..This.is.useful.t |
| 2e4c0 | 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 64 | o.distinguish.between.multiple.d |
| 2e4e0 | 69 66 66 65 72 65 6e 74 20 70 6f 72 74 73 2f 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 41 20 64 | ifferent.ports/applications..A.d |
| 2e500 | 69 73 61 62 6c 65 64 20 67 72 6f 75 70 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 66 72 | isabled.group.will.be.removed.fr |
| 2e520 | 6f 6d 20 74 68 65 20 56 52 52 50 20 70 72 6f 63 65 73 73 20 61 6e 64 20 79 6f 75 72 20 72 6f 75 | om.the.VRRP.process.and.your.rou |
| 2e540 | 74 65 72 20 77 69 6c 6c 20 6e 6f 74 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 56 52 52 50 | ter.will.not.participate.in.VRRP |
| 2e560 | 20 66 6f 72 20 74 68 61 74 20 56 52 49 44 2e 20 49 74 20 77 69 6c 6c 20 64 69 73 61 70 70 65 61 | .for.that.VRID..It.will.disappea |
| 2e580 | 72 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 | r.from.operational.mode.commands |
| 2e5a0 | 20 6f 75 74 70 75 74 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 65 6e 74 65 72 20 74 68 65 20 62 | .output,.rather.than.enter.the.b |
| 2e5c0 | 61 63 6b 75 70 20 73 74 61 74 65 2e 00 41 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 69 73 20 74 68 | ackup.state..A.domain.name.is.th |
| 2e5e0 | 65 20 6c 61 62 65 6c 20 28 6e 61 6d 65 29 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 20 63 6f 6d | e.label.(name).assigned.to.a.com |
| 2e600 | 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 69 73 20 74 68 75 73 20 75 6e 69 71 75 65 | puter.network.and.is.thus.unique |
| 2e620 | 2e 20 56 79 4f 53 20 61 70 70 65 6e 64 73 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 61 | ..VyOS.appends.the.domain.name.a |
| 2e640 | 73 20 61 20 73 75 66 66 69 78 20 74 6f 20 61 6e 79 20 75 6e 71 75 61 6c 69 66 69 65 64 20 6e 61 | s.a.suffix.to.any.unqualified.na |
| 2e660 | 6d 65 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 79 6f 75 20 73 65 74 20 74 68 65 20 | me..For.example,.if.you.set.the. |
| 2e680 | 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 2c 20 61 6e 64 20 79 | domain.name.`example.com`,.and.y |
| 2e6a0 | 6f 75 20 77 6f 75 6c 64 20 70 69 6e 67 20 74 68 65 20 75 6e 71 75 61 6c 69 66 69 65 64 20 6e 61 | ou.would.ping.the.unqualified.na |
| 2e6c0 | 6d 65 20 6f 66 20 60 63 72 75 78 60 2c 20 74 68 65 6e 20 56 79 4f 53 20 71 75 61 6c 69 66 69 65 | me.of.`crux`,.then.VyOS.qualifie |
| 2e6e0 | 73 20 74 68 65 20 6e 61 6d 65 20 74 6f 20 60 63 72 75 78 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 | s.the.name.to.`crux.example.com` |
| 2e700 | 2e 00 41 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 65 20 70 72 6f 76 | ..A.dummy.interface.for.the.prov |
| 2e720 | 69 64 65 72 2d 61 73 73 69 67 6e 65 64 20 49 50 3b 00 41 20 66 69 72 65 77 61 6c 6c 20 6d 61 72 | ider-assigned.IP;.A.firewall.mar |
| 2e740 | 6b 20 60 60 66 77 6d 61 72 6b 60 60 20 61 6c 6c 6f 77 73 20 75 73 69 6e 67 20 6d 75 6c 74 69 70 | k.``fwmark``.allows.using.multip |
| 2e760 | 6c 65 20 70 6f 72 74 73 20 66 6f 72 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 20 76 | le.ports.for.high-availability.v |
| 2e780 | 69 72 74 75 61 6c 2d 73 65 72 76 65 72 2e 20 49 74 20 75 73 65 73 20 66 77 6d 61 72 6b 20 76 61 | irtual-server..It.uses.fwmark.va |
| 2e7a0 | 6c 75 65 2e 00 41 20 66 75 6c 6c 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 54 75 6e 6e 65 6c 62 | lue..A.full.example.of.a.Tunnelb |
| 2e7c0 | 72 6f 6b 65 72 2e 6e 65 74 20 63 6f 6e 66 69 67 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 | roker.net.config.can.be.found.at |
| 2e7e0 | 20 3a 72 65 66 3a 60 68 65 72 65 20 3c 65 78 61 6d 70 6c 65 73 2d 74 75 6e 6e 65 6c 62 72 6f 6b | .:ref:`here.<examples-tunnelbrok |
| 2e800 | 65 72 2d 69 70 76 36 3e 60 2e 00 41 20 67 65 6e 65 72 69 63 20 60 3c 6e 61 6d 65 3e 60 20 72 65 | er-ipv6>`..A.generic.`<name>`.re |
| 2e820 | 66 65 72 65 6e 63 69 6e 67 20 74 68 69 73 20 73 79 6e 63 20 73 65 72 76 69 63 65 2e 00 41 20 68 | ferencing.this.sync.service..A.h |
| 2e840 | 6f 73 74 6e 61 6d 65 20 69 73 20 74 68 65 20 6c 61 62 65 6c 20 28 6e 61 6d 65 29 20 61 73 73 69 | ostname.is.the.label.(name).assi |
| 2e860 | 67 6e 65 64 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 20 28 61 20 68 6f 73 74 | gned.to.a.network.device.(a.host |
| 2e880 | 29 20 6f 6e 20 61 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 64 69 | ).on.a.network.and.is.used.to.di |
| 2e8a0 | 73 74 69 6e 67 75 69 73 68 20 6f 6e 65 20 64 65 76 69 63 65 20 66 72 6f 6d 20 61 6e 6f 74 68 65 | stinguish.one.device.from.anothe |
| 2e8c0 | 72 20 6f 6e 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b 73 20 6f 72 20 6f 76 65 72 20 74 | r.on.specific.networks.or.over.t |
| 2e8e0 | 68 65 20 69 6e 74 65 72 6e 65 74 2e 20 4f 6e 20 74 68 65 20 6f 74 68 65 72 20 68 61 6e 64 20 74 | he.internet..On.the.other.hand.t |
| 2e900 | 68 69 73 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 61 6d 65 20 77 68 69 63 68 20 61 70 70 65 61 | his.will.be.the.name.which.appea |
| 2e920 | 72 73 20 6f 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 6c 69 6e 65 20 70 72 6f 6d 70 74 2e 00 41 | rs.on.the.command.line.prompt..A |
| 2e940 | 20 68 75 6d 61 6e 20 72 65 61 64 61 62 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 61 74 | .human.readable.description.what |
| 2e960 | 20 74 68 69 73 20 43 41 20 69 73 20 61 62 6f 75 74 2e 00 41 20 68 75 6d 61 6e 20 72 65 61 64 61 | .this.CA.is.about..A.human.reada |
| 2e980 | 62 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 61 74 20 74 68 69 73 20 63 65 72 74 69 66 | ble.description.what.this.certif |
| 2e9a0 | 69 63 61 74 65 20 69 73 20 61 62 6f 75 74 2e 00 41 20 6c 69 6e 6b 20 63 61 6e 20 62 65 20 73 65 | icate.is.about..A.link.can.be.se |
| 2e9c0 | 74 75 70 20 66 6f 72 20 75 70 6c 69 6e 6b 20 74 72 61 63 6b 69 6e 67 20 76 69 61 20 74 68 65 20 | tup.for.uplink.tracking.via.the. |
| 2e9e0 | 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 41 20 6c 6f 6f 6b 62 61 63 6b 20 69 6e | following.example:.A.lookback.in |
| 2ea00 | 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 61 79 73 20 75 70 2c 20 74 68 75 73 20 69 74 20 63 6f | terface.is.always.up,.thus.it.co |
| 2ea20 | 75 6c 64 20 62 65 20 75 73 65 64 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 74 72 61 66 66 | uld.be.used.for.management.traff |
| 2ea40 | 69 63 20 6f 72 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 | ic.or.as.source/destination.for. |
| 2ea60 | 61 6e 64 20 3a 61 62 62 72 3a 60 49 47 50 20 28 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 | and.:abbr:`IGP.(Interior.Gateway |
| 2ea80 | 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6c 69 6b 65 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 | .Protocol)`.like.:ref:`routing-b |
| 2eaa0 | 67 70 60 20 73 6f 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 42 47 50 20 6c 69 6e 6b 20 69 73 | gp`.so.your.internal.BGP.link.is |
| 2eac0 | 20 6e 6f 74 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 | .not.dependent.on.physical.link. |
| 2eae0 | 73 74 61 74 65 73 20 61 6e 64 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 73 20 63 61 6e 20 62 | states.and.multiple.routes.can.b |
| 2eb00 | 65 20 63 68 6f 73 65 6e 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 41 20 3a | e.chosen.to.the.destination..A.: |
| 2eb20 | 72 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 72 66 61 63 65 60 20 49 6e 74 65 72 66 61 63 65 20 | ref:`dummy-interface`.Interface. |
| 2eb40 | 73 68 6f 75 6c 64 20 61 6c 77 61 79 73 20 62 65 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 72 20 | should.always.be.preferred.over. |
| 2eb60 | 61 20 3a 72 65 66 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 | a.:ref:`loopback-interface`.inte |
| 2eb80 | 72 66 61 63 65 2e 00 41 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 | rface..A.loopback.interface.is.a |
| 2eba0 | 6c 77 61 79 73 20 75 70 2c 20 74 68 75 73 20 69 74 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 | lways.up,.thus.it.could.be.used. |
| 2ebc0 | 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 74 72 61 66 66 69 63 20 6f 72 20 61 73 20 73 6f 75 | for.management.traffic.or.as.sou |
| 2ebe0 | 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 61 6e 64 20 3a 61 62 62 72 3a 60 49 | rce/destination.for.and.:abbr:`I |
| 2ec00 | 47 50 20 28 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 | GP.(Interior.Gateway.Protocol)`. |
| 2ec20 | 6c 69 6b 65 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 20 73 6f 20 79 6f 75 72 20 | like.:ref:`routing-bgp`.so.your. |
| 2ec40 | 69 6e 74 65 72 6e 61 6c 20 42 47 50 20 6c 69 6e 6b 20 69 73 20 6e 6f 74 20 64 65 70 65 6e 64 65 | internal.BGP.link.is.not.depende |
| 2ec60 | 6e 74 20 6f 6e 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 73 74 61 74 65 73 20 61 6e 64 20 6d | nt.on.physical.link.states.and.m |
| 2ec80 | 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 68 6f 73 65 6e 20 74 6f 20 | ultiple.routes.can.be.chosen.to. |
| 2eca0 | 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 41 20 3a 72 65 66 3a 60 64 75 6d 6d 79 2d 69 | the.destination..A.:ref:`dummy-i |
| 2ecc0 | 6e 74 65 72 66 61 63 65 60 20 49 6e 74 65 72 66 61 63 65 20 73 68 6f 75 6c 64 20 61 6c 77 61 79 | nterface`.Interface.should.alway |
| 2ece0 | 73 20 62 65 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 72 20 61 20 3a 72 65 66 3a 60 6c 6f 6f 70 | s.be.preferred.over.a.:ref:`loop |
| 2ed00 | 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 2e 00 41 20 6d 61 6e | back-interface`.interface..A.man |
| 2ed20 | 61 67 65 64 20 64 65 76 69 63 65 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 6e 6f 64 65 20 74 68 | aged.device.is.a.network.node.th |
| 2ed40 | 61 74 20 69 6d 70 6c 65 6d 65 6e 74 73 20 61 6e 20 53 4e 4d 50 20 69 6e 74 65 72 66 61 63 65 20 | at.implements.an.SNMP.interface. |
| 2ed60 | 74 68 61 74 20 61 6c 6c 6f 77 73 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 28 72 65 61 64 | that.allows.unidirectional.(read |
| 2ed80 | 2d 6f 6e 6c 79 29 20 6f 72 20 62 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 28 72 65 61 64 20 61 6e | -only).or.bidirectional.(read.an |
| 2eda0 | 64 20 77 72 69 74 65 29 20 61 63 63 65 73 73 20 74 6f 20 6e 6f 64 65 2d 73 70 65 63 69 66 69 63 | d.write).access.to.node-specific |
| 2edc0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 4d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 20 65 78 | .information..Managed.devices.ex |
| 2ede0 | 63 68 61 6e 67 65 20 6e 6f 64 65 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | change.node-specific.information |
| 2ee00 | 20 77 69 74 68 20 74 68 65 20 4e 4d 53 73 2e 20 53 6f 6d 65 74 69 6d 65 73 20 63 61 6c 6c 65 64 | .with.the.NMSs..Sometimes.called |
| 2ee20 | 20 6e 65 74 77 6f 72 6b 20 65 6c 65 6d 65 6e 74 73 2c 20 74 68 65 20 6d 61 6e 61 67 65 64 20 64 | .network.elements,.the.managed.d |
| 2ee40 | 65 76 69 63 65 73 20 63 61 6e 20 62 65 20 61 6e 79 20 74 79 70 65 20 6f 66 20 64 65 76 69 63 65 | evices.can.be.any.type.of.device |
| 2ee60 | 2c 20 69 6e 63 6c 75 64 69 6e 67 2c 20 62 75 74 20 6e 6f 74 20 6c 69 6d 69 74 65 64 20 74 6f 2c | ,.including,.but.not.limited.to, |
| 2ee80 | 20 72 6f 75 74 65 72 73 2c 20 61 63 63 65 73 73 20 73 65 72 76 65 72 73 2c 20 73 77 69 74 63 68 | .routers,.access.servers,.switch |
| 2eea0 | 65 73 2c 20 63 61 62 6c 65 20 6d 6f 64 65 6d 73 2c 20 62 72 69 64 67 65 73 2c 20 68 75 62 73 2c | es,.cable.modems,.bridges,.hubs, |
| 2eec0 | 20 49 50 20 74 65 6c 65 70 68 6f 6e 65 73 2c 20 49 50 20 76 69 64 65 6f 20 63 61 6d 65 72 61 73 | .IP.telephones,.IP.video.cameras |
| 2eee0 | 2c 20 63 6f 6d 70 75 74 65 72 20 68 6f 73 74 73 2c 20 61 6e 64 20 70 72 69 6e 74 65 72 73 2e 00 | ,.computer.hosts,.and.printers.. |
| 2ef00 | 41 20 6d 61 74 63 68 20 66 69 6c 74 65 72 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 6d 75 6c 74 69 | A.match.filter.can.contain.multi |
| 2ef20 | 70 6c 65 20 63 72 69 74 65 72 69 61 20 61 6e 64 20 77 69 6c 6c 20 6d 61 74 63 68 20 74 72 61 66 | ple.criteria.and.will.match.traf |
| 2ef40 | 66 69 63 20 69 66 20 61 6c 6c 20 74 68 6f 73 65 20 63 72 69 74 65 72 69 61 20 61 72 65 20 74 72 | fic.if.all.those.criteria.are.tr |
| 2ef60 | 75 65 2e 00 41 20 6d 61 74 63 68 20 67 72 6f 75 70 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 6d 75 | ue..A.match.group.can.contain.mu |
| 2ef80 | 6c 74 69 70 6c 65 20 63 72 69 74 65 72 69 61 20 61 6e 64 20 69 6e 68 65 72 69 74 20 74 68 65 6d | ltiple.criteria.and.inherit.them |
| 2efa0 | 20 69 6e 20 74 68 65 20 73 61 6d 65 20 70 6f 6c 69 63 79 2e 00 41 20 6d 6f 6e 69 74 6f 72 65 64 | .in.the.same.policy..A.monitored |
| 2efc0 | 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 63 6f 6e 64 69 74 69 6f 6e 73 20 74 68 65 20 69 6e 73 | .static.route.conditions.the.ins |
| 2efe0 | 74 61 6c 6c 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 52 49 42 20 6f 6e 20 74 68 65 20 42 46 44 20 | tallation.to.the.RIB.on.the.BFD. |
| 2f000 | 73 65 73 73 69 6f 6e 20 72 75 6e 6e 69 6e 67 20 73 74 61 74 65 3a 20 77 68 65 6e 20 42 46 44 20 | session.running.state:.when.BFD. |
| 2f020 | 73 65 73 73 69 6f 6e 20 69 73 20 75 70 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 69 6e 73 74 61 | session.is.up.the.route.is.insta |
| 2f040 | 6c 6c 65 64 20 74 6f 20 52 49 42 2c 20 62 75 74 20 77 68 65 6e 20 74 68 65 20 42 46 44 20 73 65 | lled.to.RIB,.but.when.the.BFD.se |
| 2f060 | 73 73 69 6f 6e 20 69 73 20 64 6f 77 6e 20 69 74 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d | ssion.is.down.it.is.removed.from |
| 2f080 | 20 74 68 65 20 52 49 42 2e 00 41 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 | .the.RIB..A.network.management.s |
| 2f0a0 | 74 61 74 69 6f 6e 20 65 78 65 63 75 74 65 73 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 20 74 68 61 | tation.executes.applications.tha |
| 2f0c0 | 74 20 6d 6f 6e 69 74 6f 72 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 20 6d 61 6e 61 67 65 64 20 64 65 | t.monitor.and.control.managed.de |
| 2f0e0 | 76 69 63 65 73 2e 20 4e 4d 53 73 20 70 72 6f 76 69 64 65 20 74 68 65 20 62 75 6c 6b 20 6f 66 20 | vices..NMSs.provide.the.bulk.of. |
| 2f100 | 74 68 65 20 70 72 6f 63 65 73 73 69 6e 67 20 61 6e 64 20 6d 65 6d 6f 72 79 20 72 65 73 6f 75 72 | the.processing.and.memory.resour |
| 2f120 | 63 65 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d | ces.required.for.network.managem |
| 2f140 | 65 6e 74 2e 20 4f 6e 65 20 6f 72 20 6d 6f 72 65 20 4e 4d 53 73 20 6d 61 79 20 65 78 69 73 74 20 | ent..One.or.more.NMSs.may.exist. |
| 2f160 | 6f 6e 20 61 6e 79 20 6d 61 6e 61 67 65 64 20 6e 65 74 77 6f 72 6b 2e 00 41 20 6e 65 77 20 69 6e | on.any.managed.network..A.new.in |
| 2f180 | 74 65 72 66 61 63 65 20 62 65 63 6f 6d 65 73 20 70 72 65 73 65 6e 74 20 60 60 50 6f 72 74 2d 63 | terface.becomes.present.``Port-c |
| 2f1a0 | 68 61 6e 6e 65 6c 31 60 60 2c 20 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6c 69 6b | hannel1``,.all.configuration.lik |
| 2f1c0 | 65 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 2c 20 53 54 50 20 77 | e.allowed.VLAN.interfaces,.STP.w |
| 2f1e0 | 69 6c 6c 20 68 61 70 70 65 6e 20 68 65 72 65 2e 00 41 20 70 61 63 6b 65 74 20 72 61 74 65 20 6c | ill.happen.here..A.packet.rate.l |
| 2f200 | 69 6d 69 74 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 61 20 72 75 6c 65 20 74 6f 20 61 70 | imit.can.be.set.for.a.rule.to.ap |
| 2f220 | 70 6c 79 20 74 68 65 20 72 75 6c 65 20 74 6f 20 74 72 61 66 66 69 63 20 61 62 6f 76 65 20 6f 72 | ply.the.rule.to.traffic.above.or |
| 2f240 | 20 62 65 6c 6f 77 20 61 20 73 70 65 63 69 66 69 65 64 20 74 68 72 65 73 68 6f 6c 64 2e 20 54 6f | .below.a.specified.threshold..To |
| 2f260 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 69 6e 67 20 75 73 65 | .configure.the.rate.limiting.use |
| 2f280 | 3a 00 41 20 70 61 63 6b 65 74 20 74 68 61 74 20 66 69 6e 64 73 20 61 20 6d 61 74 63 68 69 6e 67 | :.A.packet.that.finds.a.matching |
| 2f2a0 | 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 66 6c 6f 77 74 61 62 | .entry.in.the.flowtable.(flowtab |
| 2f2c0 | 6c 65 20 68 69 74 29 20 69 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 74 6f 20 74 68 65 20 6f 75 | le.hit).is.transmitted.to.the.ou |
| 2f2e0 | 74 70 75 74 20 6e 65 74 64 65 76 69 63 65 2c 20 68 65 6e 63 65 2c 20 70 61 63 6b 65 74 73 20 62 | tput.netdevice,.hence,.packets.b |
| 2f300 | 79 70 61 73 73 20 74 68 65 20 63 6c 61 73 73 69 63 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 | ypass.the.classic.IP.forwarding. |
| 2f320 | 70 61 74 68 20 61 6e 64 20 75 73 65 73 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 20 | path.and.uses.the.**Fast.Path**. |
| 2f340 | 28 6f 72 61 6e 67 65 20 63 69 72 63 6c 65 73 20 70 61 74 68 29 2e 20 54 68 65 20 76 69 73 69 62 | (orange.circles.path)..The.visib |
| 2f360 | 6c 65 20 65 66 66 65 63 74 20 69 73 20 74 68 61 74 20 79 6f 75 20 64 6f 20 6e 6f 74 20 73 65 65 | le.effect.is.that.you.do.not.see |
| 2f380 | 20 74 68 65 73 65 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 61 6e 79 20 6f 66 20 74 68 65 20 4e | .these.packets.from.any.of.the.N |
| 2f3a0 | 65 74 66 69 6c 74 65 72 20 68 6f 6f 6b 73 20 63 6f 6d 69 6e 67 20 61 66 74 65 72 20 69 6e 67 72 | etfilter.hooks.coming.after.ingr |
| 2f3c0 | 65 73 73 2e 20 49 6e 20 63 61 73 65 20 74 68 61 74 20 74 68 65 72 65 20 69 73 20 6e 6f 20 6d 61 | ess..In.case.that.there.is.no.ma |
| 2f3e0 | 74 63 68 69 6e 67 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 66 | tching.entry.in.the.flowtable.(f |
| 2f400 | 6c 6f 77 74 61 62 6c 65 20 6d 69 73 73 29 2c 20 74 68 65 20 70 61 63 6b 65 74 20 66 6f 6c 6c 6f | lowtable.miss),.the.packet.follo |
| 2f420 | 77 73 20 74 68 65 20 63 6c 61 73 73 69 63 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 74 | ws.the.classic.IP.forwarding.pat |
| 2f440 | 68 2e 00 41 20 70 65 6e 61 6c 74 79 20 6f 66 20 31 30 30 30 20 69 73 20 61 73 73 65 73 73 65 64 | h..A.penalty.of.1000.is.assessed |
| 2f460 | 20 65 61 63 68 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 66 61 69 6c 73 2e 20 57 68 65 6e | .each.time.the.route.fails..When |
| 2f480 | 20 74 68 65 20 70 65 6e 61 6c 74 69 65 73 20 72 65 61 63 68 20 61 20 70 72 65 64 65 66 69 6e 65 | .the.penalties.reach.a.predefine |
| 2f4a0 | 64 20 74 68 72 65 73 68 6f 6c 64 20 28 73 75 70 70 72 65 73 73 2d 76 61 6c 75 65 29 2c 20 74 68 | d.threshold.(suppress-value),.th |
| 2f4c0 | 65 20 72 6f 75 74 65 72 20 73 74 6f 70 73 20 61 64 76 65 72 74 69 73 69 6e 67 20 74 68 65 20 72 | e.router.stops.advertising.the.r |
| 2f4e0 | 6f 75 74 65 2e 00 41 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 | oute..A.physical.interface.is.re |
| 2f500 | 71 75 69 72 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 69 73 20 4d 41 43 73 65 63 20 69 6e | quired.to.connect.this.MACsec.in |
| 2f520 | 73 74 61 6e 63 65 20 74 6f 2e 20 54 72 61 66 66 69 63 20 6c 65 61 76 69 6e 67 20 74 68 69 73 20 | stance.to..Traffic.leaving.this. |
| 2f540 | 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 6e 6f 77 20 62 65 20 61 75 74 68 65 6e 74 69 63 61 | interface.will.now.be.authentica |
| 2f560 | 74 65 64 2f 65 6e 63 72 79 70 74 65 64 2e 00 41 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 | ted/encrypted..A.pool.of.address |
| 2f580 | 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 62 79 20 75 73 69 6e 67 20 61 20 68 79 70 | es.can.be.defined.by.using.a.hyp |
| 2f5a0 | 68 65 6e 20 62 65 74 77 65 65 6e 20 74 77 6f 20 49 50 20 61 64 64 72 65 73 73 65 73 3a 00 41 20 | hen.between.two.IP.addresses:.A. |
| 2f5c0 | 70 6f 72 74 20 63 61 6e 20 62 65 20 73 65 74 20 62 79 20 6e 75 6d 62 65 72 20 6f 72 20 6e 61 6d | port.can.be.set.by.number.or.nam |
| 2f5e0 | 65 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 2f 65 74 63 2f 73 65 72 76 69 63 65 73 60 | e.as.defined.in.``/etc/services` |
| 2f600 | 60 2e 00 41 20 70 6f 72 74 20 63 61 6e 20 62 65 20 73 65 74 20 77 69 74 68 20 61 20 70 6f 72 74 | `..A.port.can.be.set.with.a.port |
| 2f620 | 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 77 68 69 63 68 20 69 73 20 68 65 72 65 20 | .number.or.a.name.which.is.here. |
| 2f640 | 64 65 66 69 6e 65 64 3a 20 60 60 2f 65 74 63 2f 73 65 72 76 69 63 65 73 60 60 2e 00 41 20 71 75 | defined:.``/etc/services``..A.qu |
| 2f660 | 65 72 79 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 72 65 20 69 73 20 61 75 74 68 6f 72 69 74 61 | ery.for.which.there.is.authorita |
| 2f680 | 74 69 76 65 6c 79 20 6e 6f 20 61 6e 73 77 65 72 20 69 73 20 63 61 63 68 65 64 20 74 6f 20 71 75 | tively.no.answer.is.cached.to.qu |
| 2f6a0 | 69 63 6b 6c 79 20 64 65 6e 79 20 61 20 72 65 63 6f 72 64 27 73 20 65 78 69 73 74 65 6e 63 65 20 | ickly.deny.a.record's.existence. |
| 2f6c0 | 6c 61 74 65 72 20 6f 6e 2c 20 77 69 74 68 6f 75 74 20 70 75 74 74 69 6e 67 20 61 20 68 65 61 76 | later.on,.without.putting.a.heav |
| 2f6e0 | 79 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 2e 20 49 6e 20 | y.load.on.the.remote.server..In. |
| 2f700 | 70 72 61 63 74 69 63 65 2c 20 63 61 63 68 65 73 20 63 61 6e 20 62 65 63 6f 6d 65 20 73 61 74 75 | practice,.caches.can.become.satu |
| 2f720 | 72 61 74 65 64 20 77 69 74 68 20 68 75 6e 64 72 65 64 73 20 6f 66 20 74 68 6f 75 73 61 6e 64 73 | rated.with.hundreds.of.thousands |
| 2f740 | 20 6f 66 20 68 6f 73 74 73 20 77 68 69 63 68 20 61 72 65 20 74 72 69 65 64 20 6f 6e 6c 79 20 6f | .of.hosts.which.are.tried.only.o |
| 2f760 | 6e 63 65 2e 00 41 20 72 65 63 65 69 76 65 64 20 4e 48 52 50 20 54 72 61 66 66 69 63 20 49 6e 64 | nce..A.received.NHRP.Traffic.Ind |
| 2f780 | 69 63 61 74 69 6f 6e 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 72 65 73 6f 6c 75 74 | ication.will.trigger.the.resolut |
| 2f7a0 | 69 6f 6e 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 6d 65 6e 74 20 6f 66 20 61 20 73 68 6f 72 74 | ion.and.establishment.of.a.short |
| 2f7c0 | 63 75 74 20 72 6f 75 74 65 2e 00 41 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 49 44 20 63 61 | cut.route..A.routing.table.ID.ca |
| 2f7e0 | 6e 20 6e 6f 74 20 62 65 20 6d 6f 64 69 66 69 65 64 20 6f 6e 63 65 20 69 74 20 69 73 20 61 73 73 | n.not.be.modified.once.it.is.ass |
| 2f800 | 69 67 6e 65 64 2e 20 49 74 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 63 68 61 6e 67 65 64 20 62 79 | igned..It.can.only.be.changed.by |
| 2f820 | 20 64 65 6c 65 74 69 6e 67 20 61 6e 64 20 72 65 2d 61 64 64 69 6e 67 20 74 68 65 20 56 52 46 20 | .deleting.and.re-adding.the.VRF. |
| 2f840 | 69 6e 73 74 61 6e 63 65 2e 00 41 20 72 75 6c 65 2d 73 65 74 20 69 73 20 61 20 6e 61 6d 65 64 20 | instance..A.rule-set.is.a.named. |
| 2f860 | 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 74 68 61 | collection.of.firewall.rules.tha |
| 2f880 | 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | t.can.be.applied.to.an.interface |
| 2f8a0 | 20 6f 72 20 61 20 7a 6f 6e 65 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 | .or.a.zone..Each.rule.is.numbere |
| 2f8c0 | 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 | d,.has.an.action.to.apply.if.the |
| 2f8e0 | 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 | .rule.is.matched,.and.the.abilit |
| 2f900 | 79 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 | y.to.specify.the.criteria.to.mat |
| 2f920 | 63 68 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 | ch..Data.packets.go.through.the. |
| 2f940 | 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 39 39 2c 20 61 74 20 74 68 65 20 66 69 | rules.from.1.-.999999,.at.the.fi |
| 2f960 | 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 | rst.match.the.action.of.the.rule |
| 2f980 | 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 41 20 72 75 6c 65 2d 73 65 74 20 69 73 | .will.be.executed..A.rule-set.is |
| 2f9a0 | 20 61 20 6e 61 6d 65 64 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 72 75 6c 65 73 20 74 68 61 | .a.named.collection.of.rules.tha |
| 2f9c0 | 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | t.can.be.applied.to.an.interface |
| 2f9e0 | 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 | ..Each.rule.is.numbered,.has.an. |
| 2fa00 | 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d | action.to.apply.if.the.rule.is.m |
| 2fa20 | 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 | atched,.and.the.ability.to.speci |
| 2fa40 | 66 79 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 2e 20 44 61 74 61 20 70 | fy.the.criteria.to.match..Data.p |
| 2fa60 | 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d | ackets.go.through.the.rules.from |
| 2fa80 | 20 31 20 2d 20 39 39 39 39 39 39 2c 20 61 74 20 74 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 | .1.-.999999,.at.the.first.match. |
| 2faa0 | 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 | the.action.of.the.rule.will.be.e |
| 2fac0 | 78 65 63 75 74 65 64 2e 00 41 20 73 63 72 69 70 74 20 63 61 6e 20 62 65 20 72 75 6e 20 77 68 65 | xecuted..A.script.can.be.run.whe |
| 2fae0 | 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 73 74 61 74 65 20 63 68 61 6e 67 65 20 6f 63 63 75 | n.an.interface.state.change.occu |
| 2fb00 | 72 73 2e 20 53 63 72 69 70 74 73 20 61 72 65 20 72 75 6e 20 66 72 6f 6d 20 2f 63 6f 6e 66 69 67 | rs..Scripts.are.run.from./config |
| 2fb20 | 2f 73 63 72 69 70 74 73 2c 20 66 6f 72 20 61 20 64 69 66 66 65 72 65 6e 74 20 6c 6f 63 61 74 69 | /scripts,.for.a.different.locati |
| 2fb40 | 6f 6e 20 73 70 65 63 69 66 79 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 3a 00 41 20 73 65 67 6d | on.specify.the.full.path:.A.segm |
| 2fb60 | 65 6e 74 20 49 44 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 73 20 61 6e 20 49 50 20 61 64 64 72 65 | ent.ID.that.contains.an.IP.addre |
| 2fb80 | 73 73 20 70 72 65 66 69 78 20 63 61 6c 63 75 6c 61 74 65 64 20 62 79 20 61 6e 20 49 47 50 20 69 | ss.prefix.calculated.by.an.IGP.i |
| 2fba0 | 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 20 63 6f 72 65 20 6e 65 74 77 | n.the.service.provider.core.netw |
| 2fbc0 | 6f 72 6b 2e 20 50 72 65 66 69 78 20 53 49 44 73 20 61 72 65 20 67 6c 6f 62 61 6c 6c 79 20 75 6e | ork..Prefix.SIDs.are.globally.un |
| 2fbe0 | 69 71 75 65 2c 20 74 68 69 73 20 76 61 6c 75 65 20 69 6e 64 65 6e 74 69 66 79 20 69 74 00 41 20 | ique,.this.value.indentify.it.A. |
| 2fc00 | 73 65 6e 64 69 6e 67 20 73 74 61 74 69 6f 6e 20 28 63 6f 6d 70 75 74 65 72 20 6f 72 20 6e 65 74 | sending.station.(computer.or.net |
| 2fc20 | 77 6f 72 6b 20 73 77 69 74 63 68 29 20 6d 61 79 20 62 65 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 | work.switch).may.be.transmitting |
| 2fc40 | 20 64 61 74 61 20 66 61 73 74 65 72 20 74 68 61 6e 20 74 68 65 20 6f 74 68 65 72 20 65 6e 64 20 | .data.faster.than.the.other.end. |
| 2fc60 | 6f 66 20 74 68 65 20 6c 69 6e 6b 20 63 61 6e 20 61 63 63 65 70 74 20 69 74 2e 20 55 73 69 6e 67 | of.the.link.can.accept.it..Using |
| 2fc80 | 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 2c 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 73 74 61 | .flow.control,.the.receiving.sta |
| 2fca0 | 74 69 6f 6e 20 63 61 6e 20 73 69 67 6e 61 6c 20 74 68 65 20 73 65 6e 64 65 72 20 72 65 71 75 65 | tion.can.signal.the.sender.reque |
| 2fcc0 | 73 74 69 6e 67 20 73 75 73 70 65 6e 73 69 6f 6e 20 6f 66 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e | sting.suspension.of.transmission |
| 2fce0 | 73 20 75 6e 74 69 6c 20 74 68 65 20 72 65 63 65 69 76 65 72 20 63 61 74 63 68 65 73 20 75 70 2e | s.until.the.receiver.catches.up. |
| 2fd00 | 00 41 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 64 20 60 60 4e 45 54 31 60 60 | .A.shared.network.named.``NET1`` |
| 2fd20 | 20 73 65 72 76 65 73 20 73 75 62 6e 65 74 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 60 60 | .serves.subnet.``2001:db8::/64`` |
| 2fd40 | 00 41 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 64 20 60 60 50 44 2d 4e 45 54 | .A.shared.network.named.``PD-NET |
| 2fd60 | 60 60 20 73 65 72 76 65 73 20 73 75 62 6e 65 74 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 | ``.serves.subnet.``2001:db8::/64 |
| 2fd80 | 60 60 2e 00 41 20 73 69 6d 70 6c 65 20 42 47 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 76 | ``..A.simple.BGP.configuration.v |
| 2fda0 | 69 61 20 49 50 76 36 2e 00 41 20 73 69 6d 70 6c 65 20 52 61 6e 64 6f 6d 20 45 61 72 6c 79 20 44 | ia.IPv6..A.simple.Random.Early.D |
| 2fdc0 | 65 74 65 63 74 69 6f 6e 20 28 52 45 44 29 20 70 6f 6c 69 63 79 20 77 6f 75 6c 64 20 73 74 61 72 | etection.(RED).policy.would.star |
| 2fde0 | 74 20 72 61 6e 64 6f 6d 6c 79 20 64 72 6f 70 70 69 6e 67 20 70 61 63 6b 65 74 73 20 66 72 6f 6d | t.randomly.dropping.packets.from |
| 2fe00 | 20 61 20 71 75 65 75 65 20 62 65 66 6f 72 65 20 69 74 20 72 65 61 63 68 65 73 20 69 74 73 20 71 | .a.queue.before.it.reaches.its.q |
| 2fe20 | 75 65 75 65 20 6c 69 6d 69 74 20 74 68 75 73 20 61 76 6f 69 64 69 6e 67 20 63 6f 6e 67 65 73 74 | ueue.limit.thus.avoiding.congest |
| 2fe40 | 69 6f 6e 2e 20 54 68 61 74 20 69 73 20 67 6f 6f 64 20 66 6f 72 20 54 43 50 20 63 6f 6e 6e 65 63 | ion..That.is.good.for.TCP.connec |
| 2fe60 | 74 69 6f 6e 73 20 61 73 20 74 68 65 20 67 72 61 64 75 61 6c 20 64 72 6f 70 70 69 6e 67 20 6f 66 | tions.as.the.gradual.dropping.of |
| 2fe80 | 20 70 61 63 6b 65 74 73 20 61 63 74 73 20 61 73 20 61 20 73 69 67 6e 61 6c 20 66 6f 72 20 74 68 | .packets.acts.as.a.signal.for.th |
| 2fea0 | 65 20 73 65 6e 64 65 72 20 74 6f 20 64 65 63 72 65 61 73 65 20 69 74 73 20 74 72 61 6e 73 6d 69 | e.sender.to.decrease.its.transmi |
| 2fec0 | 73 73 69 6f 6e 20 72 61 74 65 2e 00 41 20 73 69 6d 70 6c 65 20 65 42 47 50 20 63 6f 6e 66 69 67 | ssion.rate..A.simple.eBGP.config |
| 2fee0 | 75 72 61 74 69 6f 6e 3a 00 41 20 73 69 6d 70 6c 65 20 65 78 61 6d 70 6c 65 20 6f 66 20 53 68 61 | uration:.A.simple.example.of.Sha |
| 2ff00 | 70 65 72 20 75 73 69 6e 67 20 70 72 69 6f 72 69 74 69 65 73 2e 00 41 20 73 69 6d 70 6c 65 20 65 | per.using.priorities..A.simple.e |
| 2ff20 | 78 61 6d 70 6c 65 20 6f 66 20 61 6e 20 46 51 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 20 77 6f 72 | xample.of.an.FQ-CoDel.policy.wor |
| 2ff40 | 6b 69 6e 67 20 69 6e 73 69 64 65 20 61 20 53 68 61 70 65 72 20 6f 6e 65 2e 00 41 20 73 69 6d 70 | king.inside.a.Shaper.one..A.simp |
| 2ff60 | 6c 69 66 69 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 2c 20 62 61 73 | lified.traffic.flow.diagram,.bas |
| 2ff80 | 65 64 20 6f 6e 20 4e 65 74 66 69 6c 74 65 72 20 70 61 63 6b 65 74 20 66 6c 6f 77 2c 20 69 73 20 | ed.on.Netfilter.packet.flow,.is. |
| 2ffa0 | 73 68 6f 77 6e 20 6e 65 78 74 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 61 20 66 | shown.next,.in.order.to.have.a.f |
| 2ffc0 | 75 6c 6c 20 76 69 65 77 20 61 6e 64 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 68 6f | ull.view.and.understanding.of.ho |
| 2ffe0 | 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 2c 20 61 6e 64 20 77 68 61 | w.packets.are.processed,.and.wha |
| 30000 | 74 20 70 6f 73 73 69 62 6c 65 20 70 61 74 68 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 74 61 6b | t.possible.paths.traffic.can.tak |
| 30020 | 65 2e 00 41 20 73 69 6d 70 6c 69 66 69 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 2c 20 62 61 | e..A.simplified.traffic.flow,.ba |
| 30040 | 73 65 64 20 6f 6e 20 4e 65 74 66 69 6c 74 65 72 20 70 61 63 6b 65 74 20 66 6c 6f 77 2c 20 69 73 | sed.on.Netfilter.packet.flow,.is |
| 30060 | 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 61 20 | .shown.next,.in.order.to.have.a. |
| 30080 | 66 75 6c 6c 20 76 69 65 77 20 61 6e 64 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 68 | full.view.and.understanding.of.h |
| 300a0 | 6f 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 2c 20 61 6e 64 20 77 68 | ow.packets.are.processed,.and.wh |
| 300c0 | 61 74 20 70 6f 73 73 69 62 6c 65 20 70 61 74 68 73 20 63 61 6e 20 74 61 6b 65 2e 00 41 20 73 69 | at.possible.paths.can.take..A.si |
| 300e0 | 6e 67 6c 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 65 78 74 65 72 6e | ngle.internal.network.and.extern |
| 30100 | 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 55 73 65 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 | al.network..Use.the.NAT66.device |
| 30120 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 61 20 73 69 6e 67 6c 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 | .to.connect.a.single.internal.ne |
| 30140 | 74 77 6f 72 6b 20 61 6e 64 20 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 2c 20 61 6e 64 20 74 68 | twork.and.public.network,.and.th |
| 30160 | 65 20 68 6f 73 74 73 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 | e.hosts.in.the.internal.network. |
| 30180 | 75 73 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 65 73 20 74 68 61 74 20 6f | use.IPv6.address.prefixes.that.o |
| 301a0 | 6e 6c 79 20 73 75 70 70 6f 72 74 20 72 6f 75 74 69 6e 67 20 77 69 74 68 69 6e 20 74 68 65 20 6c | nly.support.routing.within.the.l |
| 301c0 | 6f 63 61 6c 20 72 61 6e 67 65 2e 20 57 68 65 6e 20 61 20 68 6f 73 74 20 69 6e 20 74 68 65 20 69 | ocal.range..When.a.host.in.the.i |
| 301e0 | 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 65 73 20 74 68 65 20 65 78 74 | nternal.network.accesses.the.ext |
| 30200 | 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 76 36 20 61 | ernal.network,.the.source.IPv6.a |
| 30220 | 64 64 72 65 73 73 20 70 72 65 66 69 78 20 69 6e 20 74 68 65 20 6d 65 73 73 61 67 65 20 77 69 6c | ddress.prefix.in.the.message.wil |
| 30240 | 6c 20 62 65 20 63 6f 6e 76 65 72 74 65 64 20 69 6e 74 6f 20 61 20 67 6c 6f 62 61 6c 20 75 6e 69 | l.be.converted.into.a.global.uni |
| 30260 | 63 61 73 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 62 79 20 74 68 65 20 | cast.IPv6.address.prefix.by.the. |
| 30280 | 4e 41 54 36 36 20 64 65 76 69 63 65 2e 00 41 20 73 74 61 74 69 6f 6e 20 61 63 74 73 20 61 73 20 | NAT66.device..A.station.acts.as. |
| 302a0 | 61 20 57 69 2d 46 69 20 63 6c 69 65 6e 74 20 61 63 63 65 73 73 69 6e 67 20 74 68 65 20 6e 65 74 | a.Wi-Fi.client.accessing.the.net |
| 302c0 | 77 6f 72 6b 20 74 68 72 6f 75 67 68 20 61 6e 20 61 76 61 69 6c 61 62 6c 65 20 57 41 50 00 41 20 | work.through.an.available.WAP.A. |
| 302e0 | 73 79 6e 63 20 67 72 6f 75 70 20 61 6c 6c 6f 77 73 20 56 52 52 50 20 67 72 6f 75 70 73 20 74 6f | sync.group.allows.VRRP.groups.to |
| 30300 | 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 6f 67 65 74 68 65 72 2e 00 41 20 74 79 70 69 63 61 6c 20 | .transition.together..A.typical. |
| 30320 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 2e 00 41 20 74 | configuration.using.2.nodes..A.t |
| 30340 | 79 70 69 63 61 6c 20 70 72 6f 62 6c 65 6d 20 77 69 74 68 20 75 73 69 6e 67 20 4e 41 54 20 61 6e | ypical.problem.with.using.NAT.an |
| 30360 | 64 20 68 6f 73 74 69 6e 67 20 70 75 62 6c 69 63 20 73 65 72 76 65 72 73 20 69 73 20 74 68 65 20 | d.hosting.public.servers.is.the. |
| 30380 | 61 62 69 6c 69 74 79 20 66 6f 72 20 69 6e 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 73 20 74 6f 20 | ability.for.internal.systems.to. |
| 303a0 | 72 65 61 63 68 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 73 65 72 76 65 72 20 75 73 69 6e 67 20 69 | reach.an.internal.server.using.i |
| 303c0 | 74 27 73 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 73 6f 6c | t's.external.IP.address..The.sol |
| 303e0 | 75 74 69 6f 6e 20 74 6f 20 74 68 69 73 20 69 73 20 75 73 75 61 6c 6c 79 20 74 68 65 20 75 73 65 | ution.to.this.is.usually.the.use |
| 30400 | 20 6f 66 20 73 70 6c 69 74 2d 44 4e 53 20 74 6f 20 63 6f 72 72 65 63 74 6c 79 20 70 6f 69 6e 74 | .of.split-DNS.to.correctly.point |
| 30420 | 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 74 6f 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 61 64 | .host.systems.to.the.internal.ad |
| 30440 | 64 72 65 73 73 20 77 68 65 6e 20 72 65 71 75 65 73 74 73 20 61 72 65 20 6d 61 64 65 20 69 6e 74 | dress.when.requests.are.made.int |
| 30460 | 65 72 6e 61 6c 6c 79 2e 20 42 65 63 61 75 73 65 20 6d 61 6e 79 20 73 6d 61 6c 6c 65 72 20 6e 65 | ernally..Because.many.smaller.ne |
| 30480 | 74 77 6f 72 6b 73 20 6c 61 63 6b 20 44 4e 53 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 2c 20 | tworks.lack.DNS.infrastructure,. |
| 304a0 | 61 20 77 6f 72 6b 2d 61 72 6f 75 6e 64 20 69 73 20 63 6f 6d 6d 6f 6e 6c 79 20 64 65 70 6c 6f 79 | a.work-around.is.commonly.deploy |
| 304c0 | 65 64 20 74 6f 20 66 61 63 69 6c 69 74 61 74 65 20 74 68 65 20 74 72 61 66 66 69 63 20 62 79 20 | ed.to.facilitate.the.traffic.by. |
| 304e0 | 4e 41 54 69 6e 67 20 74 68 65 20 72 65 71 75 65 73 74 20 66 72 6f 6d 20 69 6e 74 65 72 6e 61 6c | NATing.the.request.from.internal |
| 30500 | 20 68 6f 73 74 73 20 74 6f 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 | .hosts.to.the.source.address.of. |
| 30520 | 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 66 69 | the.internal.interface.on.the.fi |
| 30540 | 72 65 77 61 6c 6c 2e 00 41 20 75 73 65 72 20 66 72 69 65 6e 64 6c 79 20 61 6c 69 61 73 20 66 6f | rewall..A.user.friendly.alias.fo |
| 30560 | 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 43 61 6e 20 62 65 20 75 73 65 64 20 69 | r.this.connection..Can.be.used.i |
| 30580 | 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 76 69 63 65 20 6e 61 6d 65 20 77 68 65 6e 20 63 | nstead.of.the.device.name.when.c |
| 305a0 | 6f 6e 6e 65 63 74 69 6e 67 2e 00 41 20 75 73 65 72 20 66 72 69 65 6e 64 6c 79 20 64 65 73 63 72 | onnecting..A.user.friendly.descr |
| 305c0 | 69 70 74 69 6f 6e 20 69 64 65 6e 74 69 66 79 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 | iption.identifying.the.connected |
| 305e0 | 20 70 65 72 69 70 68 65 72 61 6c 2e 00 41 20 76 61 6c 75 65 20 6f 66 20 30 20 64 69 73 61 62 6c | .peripheral..A.value.of.0.disabl |
| 30600 | 65 73 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 | es.ARP.monitoring..The.default.v |
| 30620 | 61 6c 75 65 20 69 73 20 30 2e 00 41 20 76 61 6c 75 65 20 6f 66 20 32 39 36 20 77 6f 72 6b 73 20 | alue.is.0..A.value.of.296.works. |
| 30640 | 77 65 6c 6c 20 6f 6e 20 76 65 72 79 20 73 6c 6f 77 20 6c 69 6e 6b 73 20 28 34 30 20 62 79 74 65 | well.on.very.slow.links.(40.byte |
| 30660 | 73 20 66 6f 72 20 54 43 50 2f 49 50 20 68 65 61 64 65 72 20 2b 20 32 35 36 20 62 79 74 65 73 20 | s.for.TCP/IP.header.+.256.bytes. |
| 30680 | 6f 66 20 64 61 74 61 29 2e 00 41 20 76 65 72 79 20 73 6d 61 6c 6c 20 62 75 66 66 65 72 20 77 69 | of.data)..A.very.small.buffer.wi |
| 306a0 | 6c 6c 20 73 6f 6f 6e 20 73 74 61 72 74 20 64 72 6f 70 70 69 6e 67 20 70 61 63 6b 65 74 73 2e 00 | ll.soon.start.dropping.packets.. |
| 306c0 | 41 20 7a 6f 6e 65 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 62 65 66 6f 72 65 | A.zone.must.be.configured.before |
| 306e0 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 69 74 20 | .an.interface.is.assigned.to.it. |
| 30700 | 61 6e 64 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 61 73 73 69 67 6e 65 64 | and.an.interface.can.be.assigned |
| 30720 | 20 74 6f 20 6f 6e 6c 79 20 61 20 73 69 6e 67 6c 65 20 7a 6f 6e 65 2e 00 41 43 4d 45 00 41 43 4d | .to.only.a.single.zone..ACME.ACM |
| 30740 | 45 20 44 69 72 65 63 74 6f 72 79 20 52 65 73 6f 75 72 63 65 20 55 52 49 2e 00 41 50 49 00 41 52 | E.Directory.Resource.URI..API.AR |
| 30760 | 50 00 41 62 6f 76 65 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 60 31 30 2e 30 2e 30 | P.Above.command.will.use.`10.0.0 |
| 30780 | 2e 33 60 20 61 73 20 73 6f 75 72 63 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 6f 72 20 61 | .3`.as.source.IPv4.address.for.a |
| 307a0 | 6c 6c 20 52 41 44 49 55 53 20 71 75 65 72 69 65 73 20 6f 6e 20 74 68 69 73 20 4e 41 53 2e 00 41 | ll.RADIUS.queries.on.this.NAS..A |
| 307c0 | 62 6f 76 65 2c 20 63 6f 6d 6d 61 6e 64 20 73 79 6e 74 61 78 20 69 73 6e 20 6e 6f 74 65 64 20 74 | bove,.command.syntax.isn.noted.t |
| 307e0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 64 79 6e 61 6d 69 63 20 64 6e 73 20 6f 6e 20 61 20 73 70 65 | o.configure.dynamic.dns.on.a.spe |
| 30800 | 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 | cific.interface..It.is.possible. |
| 30820 | 74 6f 20 6f 76 65 72 6c 6f 6f 6b 20 74 68 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 61 64 64 72 65 | to.overlook.the.additional.addre |
| 30840 | 73 73 20 6f 70 74 69 6f 6e 2c 20 77 65 62 2c 20 77 68 65 6e 20 63 6f 6d 70 6c 65 74 65 69 6e 67 | ss.option,.web,.when.completeing |
| 30860 | 20 74 68 6f 73 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 64 64 63 6c 69 65 6e 74 5f 20 68 61 73 20 61 | .those.commands..ddclient_.has.a |
| 30880 | 6e 6f 74 68 65 72 20 77 61 79 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 57 41 4e 20 | nother.way.to.determine.the.WAN. |
| 308a0 | 49 50 20 61 64 64 72 65 73 73 2c 20 75 73 69 6e 67 20 61 20 77 65 62 2d 62 61 73 65 64 20 75 72 | IP.address,.using.a.web-based.ur |
| 308c0 | 6c 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 49 50 2e 20 | l.to.determine.the.external.IP.. |
| 308e0 | 45 61 63 68 20 6f 66 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 20 77 69 6c 6c 20 | Each.of.the.commands.above.will. |
| 30900 | 6e 65 65 64 20 74 6f 20 62 65 20 6d 6f 64 69 66 69 65 64 20 74 6f 20 75 73 65 20 27 77 65 62 27 | need.to.be.modified.to.use.'web' |
| 30920 | 20 61 73 20 74 68 65 20 27 69 6e 74 65 72 66 61 63 65 27 20 73 70 65 63 69 66 69 65 64 20 69 66 | .as.the.'interface'.specified.if |
| 30940 | 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 74 6f 20 62 65 20 75 74 69 | .this.functionality.is.to.be.uti |
| 30960 | 6c 69 7a 65 64 2e 00 41 63 63 65 6c 65 72 61 74 69 6f 6e 00 41 63 63 65 70 74 20 53 53 48 20 63 | lized..Acceleration.Accept.SSH.c |
| 30980 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 64 65 76 69 63 | onnections.for.the.given.`<devic |
| 309a0 | 65 3e 60 20 6f 6e 20 54 43 50 20 70 6f 72 74 20 60 3c 70 6f 72 74 3e 60 2e 20 41 66 74 65 72 20 | e>`.on.TCP.port.`<port>`..After. |
| 309c0 | 73 75 63 63 65 73 73 66 75 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 68 65 20 75 | successfull.authentication.the.u |
| 309e0 | 73 65 72 20 77 69 6c 6c 20 62 65 20 64 69 72 65 63 74 6c 79 20 64 72 6f 70 70 65 64 20 74 6f 20 | ser.will.be.directly.dropped.to. |
| 30a00 | 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 20 73 65 72 69 61 6c 20 64 65 76 69 63 65 2e 00 41 63 63 | the.connected.serial.device..Acc |
| 30a20 | 65 70 74 20 6f 6e 6c 79 20 63 65 72 74 61 69 6e 20 70 72 6f 74 6f 63 6f 6c 73 3a 20 59 6f 75 20 | ept.only.certain.protocols:.You. |
| 30a40 | 6d 61 79 20 77 61 6e 74 20 74 6f 20 72 65 70 6c 69 63 61 74 65 20 74 68 65 20 73 74 61 74 65 20 | may.want.to.replicate.the.state. |
| 30a60 | 6f 66 20 66 6c 6f 77 73 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 69 72 20 6c 61 79 65 | of.flows.depending.on.their.laye |
| 30a80 | 72 20 34 20 70 72 6f 74 6f 63 6f 6c 2e 00 41 63 63 65 70 74 20 70 65 65 72 20 69 6e 74 65 72 66 | r.4.protocol..Accept.peer.interf |
| 30aa0 | 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 2e 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 6e 6f | ace.identifier..By.default.is.no |
| 30ac0 | 74 20 64 65 66 69 6e 65 64 2e 00 41 63 63 65 70 74 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 | t.defined..Accept.peer.interface |
| 30ae0 | 20 69 64 65 6e 74 69 66 69 65 72 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 69 73 20 69 73 20 | .identifier..By.default.this.is. |
| 30b00 | 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 41 63 63 65 70 74 61 62 6c 65 20 72 61 74 65 20 6f 66 20 | not.defined..Acceptable.rate.of. |
| 30b20 | 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 28 65 2e 67 2e 20 31 2f 6d 69 6e 2c 20 36 30 2f 73 65 63 29 | connections.(e.g..1/min,.60/sec) |
| 30b40 | 00 41 63 63 65 73 73 20 4c 69 73 74 20 50 6f 6c 69 63 79 00 41 63 63 65 73 73 20 4c 69 73 74 73 | .Access.List.Policy.Access.Lists |
| 30b60 | 00 41 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 74 61 6b 65 6e 20 69 6d 6d 65 64 69 61 74 65 6c | .Action.must.be.taken.immediatel |
| 30b80 | 79 20 2d 20 41 20 63 6f 6e 64 69 74 69 6f 6e 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 63 | y.-.A.condition.that.should.be.c |
| 30ba0 | 6f 72 72 65 63 74 65 64 20 69 6d 6d 65 64 69 61 74 65 6c 79 2c 20 73 75 63 68 20 61 73 20 61 20 | orrected.immediately,.such.as.a. |
| 30bc0 | 63 6f 72 72 75 70 74 65 64 20 73 79 73 74 65 6d 20 64 61 74 61 62 61 73 65 2e 00 41 63 74 69 6f | corrupted.system.database..Actio |
| 30be0 | 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 72 75 6e 20 6f 6e 63 65 20 74 68 65 20 63 74 72 | n.which.will.be.run.once.the.ctr |
| 30c00 | 6c 2d 61 6c 74 2d 64 65 6c 20 6b 65 79 73 74 72 6f 6b 65 20 69 73 20 72 65 63 65 69 76 65 64 2e | l-alt-del.keystroke.is.received. |
| 30c20 | 00 41 63 74 69 6f 6e 73 00 41 63 74 69 76 65 20 44 69 72 65 63 74 6f 72 79 00 41 63 74 69 76 65 | .Actions.Active.Directory.Active |
| 30c40 | 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 00 41 64 64 | .health.check.backend.server.Add |
| 30c60 | 20 4e 54 41 20 28 6e 65 67 61 74 69 76 65 20 74 72 75 73 74 20 61 6e 63 68 6f 72 29 20 66 6f 72 | .NTA.(negative.trust.anchor).for |
| 30c80 | 20 74 68 69 73 20 64 6f 6d 61 69 6e 2e 20 54 68 69 73 20 6d 75 73 74 20 62 65 20 73 65 74 20 69 | .this.domain..This.must.be.set.i |
| 30ca0 | 66 20 74 68 65 20 64 6f 6d 61 69 6e 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 44 4e | f.the.domain.does.not.support.DN |
| 30cc0 | 53 53 45 43 2e 00 41 64 64 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 | SSEC..Add.Power.Constraint.eleme |
| 30ce0 | 6e 74 20 74 6f 20 42 65 61 63 6f 6e 20 61 6e 64 20 50 72 6f 62 65 20 52 65 73 70 6f 6e 73 65 20 | nt.to.Beacon.and.Probe.Response. |
| 30d00 | 66 72 61 6d 65 73 2e 00 41 64 64 20 61 20 66 6f 72 77 61 72 64 69 6e 67 20 72 75 6c 65 20 6d 61 | frames..Add.a.forwarding.rule.ma |
| 30d20 | 74 63 68 69 6e 67 20 55 44 50 20 70 6f 72 74 20 6f 6e 20 79 6f 75 72 20 69 6e 74 65 72 6e 65 74 | tching.UDP.port.on.your.internet |
| 30d40 | 20 72 6f 75 74 65 72 2e 00 41 64 64 20 61 20 68 6f 73 74 20 64 65 76 69 63 65 20 74 6f 20 74 68 | .router..Add.a.host.device.to.th |
| 30d60 | 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 41 64 64 20 61 63 63 65 73 73 2d 63 6f 6e 74 72 6f 6c 20 | e.container..Add.access-control. |
| 30d80 | 64 69 72 65 63 74 69 76 65 20 74 6f 20 61 6c 6c 6f 77 20 6f 72 20 64 65 6e 79 20 75 73 65 72 73 | directive.to.allow.or.deny.users |
| 30da0 | 20 61 6e 64 20 67 72 6f 75 70 73 2e 20 44 69 72 65 63 74 69 76 65 73 20 61 72 65 20 70 72 6f 63 | .and.groups..Directives.are.proc |
| 30dc0 | 65 73 73 65 64 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 72 64 65 72 20 6f 66 20 | essed.in.the.following.order.of. |
| 30de0 | 70 72 65 63 65 64 65 6e 63 65 3a 20 60 60 64 65 6e 79 2d 75 73 65 72 73 60 60 2c 20 60 60 61 6c | precedence:.``deny-users``,.``al |
| 30e00 | 6c 6f 77 2d 75 73 65 72 73 60 60 2c 20 60 60 64 65 6e 79 2d 67 72 6f 75 70 73 60 60 20 61 6e 64 | low-users``,.``deny-groups``.and |
| 30e20 | 20 60 60 61 6c 6c 6f 77 2d 67 72 6f 75 70 73 60 60 2e 00 41 64 64 20 63 75 73 74 6f 6d 20 65 6e | .``allow-groups``..Add.custom.en |
| 30e40 | 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 62 6c 65 73 2e 20 4d 75 6c 74 69 70 6c 65 20 65 6e | vironment.variables..Multiple.en |
| 30e60 | 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 62 6c 65 73 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e | vironment.variables.are.allowed. |
| 30e80 | 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 74 72 61 6e 73 6c 61 74 | .The.following.commands.translat |
| 30ea0 | 65 20 74 6f 20 22 2d 65 20 6b 65 79 3d 76 61 6c 75 65 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e | e.to."-e.key=value".when.the.con |
| 30ec0 | 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 41 64 64 20 64 65 66 61 75 6c 74 20 72 | tainer.is.created..Add.default.r |
| 30ee0 | 6f 75 74 65 73 20 66 6f 72 20 72 6f 75 74 69 6e 67 20 60 60 74 61 62 6c 65 20 31 30 60 60 20 61 | outes.for.routing.``table.10``.a |
| 30f00 | 6e 64 20 60 60 74 61 62 6c 65 20 31 31 60 60 00 41 64 64 20 64 65 73 63 72 69 70 74 69 6f 6e 20 | nd.``table.11``.Add.description. |
| 30f20 | 74 6f 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 41 64 64 20 64 65 73 74 69 6e 61 74 | to.firewall.groups:.Add.destinat |
| 30f40 | 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | ion.IP.address.of.the.connection |
| 30f60 | 20 74 6f 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 3a 00 41 64 64 | .to.a.dynamic.address.group:.Add |
| 30f80 | 20 6d 65 74 61 64 61 74 61 20 6c 61 62 65 6c 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 74 61 69 6e | .metadata.label.for.this.contain |
| 30fa0 | 65 72 2e 00 41 64 64 20 6d 75 6c 74 69 70 6c 65 20 73 6f 75 72 63 65 20 49 50 20 69 6e 20 6f 6e | er..Add.multiple.source.IP.in.on |
| 30fc0 | 65 20 72 75 6c 65 20 77 69 74 68 20 73 61 6d 65 20 70 72 69 6f 72 69 74 79 00 41 64 64 20 6e 65 | e.rule.with.same.priority.Add.ne |
| 30fe0 | 77 20 70 6f 72 74 20 74 6f 20 53 53 4c 2d 70 6f 72 74 73 20 61 63 6c 2e 20 50 6f 72 74 73 20 69 | w.port.to.SSL-ports.acl..Ports.i |
| 31000 | 6e 63 6c 75 64 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 69 6e 20 53 53 4c 2d 70 6f 72 74 73 20 | ncluded.by.default.in.SSL-ports. |
| 31020 | 61 63 6c 3a 20 34 34 33 00 41 64 64 20 6e 65 77 20 70 6f 72 74 20 74 6f 20 53 61 66 65 2d 70 6f | acl:.443.Add.new.port.to.Safe-po |
| 31040 | 72 74 73 20 61 63 6c 2e 20 50 6f 72 74 73 20 69 6e 63 6c 75 64 65 64 20 62 79 20 64 65 66 61 75 | rts.acl..Ports.included.by.defau |
| 31060 | 6c 74 20 69 6e 20 53 61 66 65 2d 70 6f 72 74 73 20 61 63 6c 3a 20 32 31 2c 20 37 30 2c 20 38 30 | lt.in.Safe-ports.acl:.21,.70,.80 |
| 31080 | 2c 20 32 31 30 2c 20 32 38 30 2c 20 34 34 33 2c 20 34 38 38 2c 20 35 39 31 2c 20 37 37 37 2c 20 | ,.210,.280,.443,.488,.591,.777,. |
| 310a0 | 38 37 33 2c 20 31 30 32 35 2d 36 35 35 33 35 00 41 64 64 20 6f 72 20 72 65 70 6c 61 63 65 20 42 | 873,.1025-65535.Add.or.replace.B |
| 310c0 | 47 50 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 69 6e 20 66 6f 72 6d 61 74 | GP.community.attribute.in.format |
| 310e0 | 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 2d 36 35 35 33 35 3e 60 60 20 6f 72 20 66 72 6f 6d 20 77 | .``<0-65535:0-65535>``.or.from.w |
| 31100 | 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 00 41 64 64 20 6f 72 20 | ell-known.community.list.Add.or. |
| 31120 | 72 65 70 6c 61 63 65 20 42 47 50 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 | replace.BGP.large-community.attr |
| 31140 | 69 62 75 74 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 34 32 39 34 39 36 37 32 39 35 3a | ibute.in.format.``<0-4294967295: |
| 31160 | 30 2d 34 32 39 34 39 36 37 32 39 35 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 00 41 64 64 | 0-4294967295:0-4294967295>``.Add |
| 31180 | 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 6d 61 74 63 68 69 6e 67 20 56 4c 41 4e 20 73 6f 75 72 | .policy.route.matching.VLAN.sour |
| 311a0 | 63 65 20 61 64 64 72 65 73 73 65 73 00 41 64 64 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 | ce.addresses.Add.public.key.port |
| 311c0 | 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 6e | ion.for.the.certificate.named.`n |
| 311e0 | 61 6d 65 60 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 41 64 64 20 73 6f 75 72 63 65 | ame`.to.the.VyOS.CLI..Add.source |
| 31200 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f | .IP.address.of.the.connection.to |
| 31220 | 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 3a 00 41 64 64 20 74 68 | .a.dynamic.address.group:.Add.th |
| 31240 | 65 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c | e.CAs.private.key.to.the.VyOS.CL |
| 31260 | 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 | I..This.should.never.leave.the.s |
| 31280 | 79 73 74 65 6d 2c 20 61 6e 64 20 69 73 20 6f 6e 6c 79 20 72 65 71 75 69 72 65 64 20 69 66 20 79 | ystem,.and.is.only.required.if.y |
| 312a0 | 6f 75 20 75 73 65 20 56 79 4f 53 20 61 73 20 79 6f 75 72 20 63 65 72 74 69 66 69 63 61 74 65 20 | ou.use.VyOS.as.your.certificate. |
| 312c0 | 67 65 6e 65 72 61 74 6f 72 20 61 73 20 6d 65 6e 74 69 6f 6e 65 64 20 61 62 6f 76 65 2e 00 41 64 | generator.as.mentioned.above..Ad |
| 312e0 | 64 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 66 72 6f 6d 20 53 6e 69 70 70 65 74 20 69 6e 20 74 | d.the.commands.from.Snippet.in.t |
| 31300 | 68 65 20 57 69 6e 64 6f 77 73 20 73 69 64 65 20 76 69 61 20 50 6f 77 65 72 53 68 65 6c 6c 2e 20 | he.Windows.side.via.PowerShell.. |
| 31320 | 41 6c 73 6f 20 69 6d 70 6f 72 74 20 74 68 65 20 72 6f 6f 74 20 43 41 20 63 65 72 74 20 74 6f 20 | Also.import.the.root.CA.cert.to. |
| 31340 | 74 68 65 20 57 69 6e 64 6f 77 73 20 e2 80 9c 54 72 75 73 74 65 64 20 52 6f 6f 74 20 43 65 72 74 | the.Windows....Trusted.Root.Cert |
| 31360 | 69 66 69 63 61 74 69 6f 6e 20 41 75 74 68 6f 72 69 74 69 65 73 e2 80 9d 20 61 6e 64 20 65 73 74 | ification.Authorities....and.est |
| 31380 | 61 62 6c 69 73 68 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 41 64 64 20 74 68 65 20 70 | ablish.the.connection..Add.the.p |
| 313a0 | 72 69 76 61 74 65 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 69 73 20 63 65 72 74 69 | rivate.key.portion.of.this.certi |
| 313c0 | 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e | ficate.to.the.CLI..This.should.n |
| 313e0 | 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 75 | ever.leave.the.system.as.it.is.u |
| 31400 | 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 00 41 64 64 20 74 68 65 | sed.to.decrypt.the.data..Add.the |
| 31420 | 20 70 75 62 6c 69 63 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 74 68 65 20 43 | .public.CA.certificate.for.the.C |
| 31440 | 41 20 6e 61 6d 65 64 20 60 6e 61 6d 65 60 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 | A.named.`name`.to.the.VyOS.CLI.. |
| 31460 | 41 64 64 69 6e 67 20 61 20 32 46 41 20 77 69 74 68 20 61 6e 20 4f 54 50 2d 6b 65 79 00 41 64 64 | Adding.a.2FA.with.an.OTP-key.Add |
| 31480 | 69 6e 67 20 65 6c 65 6d 65 6e 74 73 20 74 6f 20 44 79 6e 61 6d 69 63 20 46 69 72 65 77 61 6c 6c | ing.elements.to.Dynamic.Firewall |
| 314a0 | 20 47 72 6f 75 70 73 00 41 64 64 69 74 69 6f 6e 61 6c 20 67 6c 6f 62 61 6c 20 70 61 72 61 6d 65 | .Groups.Additional.global.parame |
| 314c0 | 74 65 72 73 20 61 72 65 20 73 65 74 2c 20 69 6e 63 6c 75 64 69 6e 67 20 74 68 65 20 6d 61 78 69 | ters.are.set,.including.the.maxi |
| 314e0 | 6d 75 6d 20 6e 75 6d 62 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6c 69 6d 69 74 20 6f 66 20 34 | mum.number.connection.limit.of.4 |
| 31500 | 30 30 30 20 61 6e 64 20 61 20 6d 69 6e 69 6d 75 6d 20 54 4c 53 20 76 65 72 73 69 6f 6e 20 6f 66 | 000.and.a.minimum.TLS.version.of |
| 31520 | 20 31 2e 33 2e 00 41 64 64 69 74 69 6f 6e 61 6c 20 6f 70 74 69 6f 6e 20 74 6f 20 72 75 6e 20 54 | .1.3..Additional.option.to.run.T |
| 31540 | 46 54 50 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 | FTP.server.in.the.:abbr:`VRF.(Vi |
| 31560 | 72 74 75 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 63 | rtual.Routing.and.Forwarding)`.c |
| 31580 | 6f 6e 74 65 78 74 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 20 79 6f 75 20 73 68 6f 75 6c 64 20 6b | ontext.Additionally.you.should.k |
| 315a0 | 65 65 70 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 66 65 61 74 75 72 65 20 66 75 | eep.in.mind.that.this.feature.fu |
| 315c0 | 6e 64 61 6d 65 6e 74 61 6c 6c 79 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 | ndamentally.disables.the.ability |
| 315e0 | 20 74 6f 20 75 73 65 20 77 69 64 65 6c 79 20 64 65 70 6c 6f 79 65 64 20 42 47 50 20 66 65 61 74 | .to.use.widely.deployed.BGP.feat |
| 31600 | 75 72 65 73 2e 20 42 47 50 20 75 6e 6e 75 6d 62 65 72 65 64 2c 20 68 6f 73 74 6e 61 6d 65 20 73 | ures..BGP.unnumbered,.hostname.s |
| 31620 | 75 70 70 6f 72 74 2c 20 41 53 34 2c 20 41 64 64 70 61 74 68 2c 20 52 6f 75 74 65 20 52 65 66 72 | upport,.AS4,.Addpath,.Route.Refr |
| 31640 | 65 73 68 2c 20 4f 52 46 2c 20 44 79 6e 61 6d 69 63 20 43 61 70 61 62 69 6c 69 74 69 65 73 2c 20 | esh,.ORF,.Dynamic.Capabilities,. |
| 31660 | 61 6e 64 20 67 72 61 63 65 66 75 6c 20 72 65 73 74 61 72 74 2e 00 41 64 64 69 74 69 6f 6e 61 6c | and.graceful.restart..Additional |
| 31680 | 6c 79 2c 20 65 61 63 68 20 63 6c 69 65 6e 74 20 6e 65 65 64 73 20 61 20 63 6f 70 79 20 6f 66 20 | ly,.each.client.needs.a.copy.of. |
| 316a0 | 63 61 20 63 65 72 74 20 61 6e 64 20 69 74 73 20 6f 77 6e 20 63 6c 69 65 6e 74 20 6b 65 79 20 61 | ca.cert.and.its.own.client.key.a |
| 316c0 | 6e 64 20 63 65 72 74 20 66 69 6c 65 73 2e 20 54 68 65 20 66 69 6c 65 73 20 61 72 65 20 70 6c 61 | nd.cert.files..The.files.are.pla |
| 316e0 | 69 6e 74 65 78 74 20 73 6f 20 74 68 65 79 20 6d 61 79 20 62 65 20 63 6f 70 69 65 64 20 65 69 74 | intext.so.they.may.be.copied.eit |
| 31700 | 68 65 72 20 6d 61 6e 75 61 6c 6c 79 20 66 72 6f 6d 20 74 68 65 20 43 4c 49 2e 20 43 6c 69 65 6e | her.manually.from.the.CLI..Clien |
| 31720 | 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 20 73 68 6f 75 6c 64 20 62 65 20 73 | t.key.and.cert.files.should.be.s |
| 31740 | 69 67 6e 65 64 20 77 69 74 68 20 74 68 65 20 70 72 6f 70 65 72 20 63 61 20 63 65 72 74 20 61 6e | igned.with.the.proper.ca.cert.an |
| 31760 | 64 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 73 69 64 65 2e 00 | d.generated.on.the.server.side.. |
| 31780 | 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 65 61 63 68 20 63 6c 69 65 6e 74 20 6e 65 65 64 73 20 | Additionally,.each.client.needs. |
| 317a0 | 61 20 63 6f 70 79 20 6f 66 20 63 61 20 63 65 72 74 20 61 6e 64 20 69 74 73 20 6f 77 6e 20 63 6c | a.copy.of.ca.cert.and.its.own.cl |
| 317c0 | 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 2e 20 54 68 65 20 66 69 6c | ient.key.and.cert.files..The.fil |
| 317e0 | 65 73 20 61 72 65 20 70 6c 61 69 6e 74 65 78 74 20 73 6f 20 74 68 65 79 20 6d 61 79 20 62 65 20 | es.are.plaintext.so.they.may.be. |
| 31800 | 63 6f 70 69 65 64 20 6d 61 6e 75 61 6c 6c 79 20 66 72 6f 6d 20 74 68 65 20 43 4c 49 2e 20 43 6c | copied.manually.from.the.CLI..Cl |
| 31820 | 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 20 73 68 6f 75 6c 64 20 62 | ient.key.and.cert.files.should.b |
| 31840 | 65 20 73 69 67 6e 65 64 20 77 69 74 68 20 74 68 65 20 70 72 6f 70 65 72 20 63 61 20 63 65 72 74 | e.signed.with.the.proper.ca.cert |
| 31860 | 20 61 6e 64 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 73 69 64 | .and.generated.on.the.server.sid |
| 31880 | 65 2e 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 77 65 20 77 61 6e 74 20 74 6f 20 75 73 65 20 | e..Additionally,.we.want.to.use. |
| 318a0 | 56 50 4e 73 20 6f 6e 6c 79 20 6f 6e 20 6f 75 72 20 65 74 68 31 20 69 6e 74 65 72 66 61 63 65 20 | VPNs.only.on.our.eth1.interface. |
| 318c0 | 28 74 68 65 20 65 78 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 74 68 65 20 69 | (the.external.interface.in.the.i |
| 318e0 | 6d 61 67 65 20 61 62 6f 76 65 29 00 41 64 64 72 65 73 73 00 41 64 64 72 65 73 73 20 43 6f 6e 76 | mage.above).Address.Address.Conv |
| 31900 | 65 72 73 69 6f 6e 00 41 64 64 72 65 73 73 20 46 61 6d 69 6c 69 65 73 00 41 64 64 72 65 73 73 20 | ersion.Address.Families.Address. |
| 31920 | 47 72 6f 75 70 73 00 41 64 64 72 65 73 73 20 67 72 6f 75 70 73 20 61 72 65 20 75 73 65 66 75 6c | Groups.Address.groups.are.useful |
| 31940 | 20 77 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 72 75 6c 65 73 20 74 | .when.you.need.to.create.rules.t |
| 31960 | 68 61 74 20 61 70 70 6c 79 20 74 6f 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 | hat.apply.to.specific.IP.address |
| 31980 | 65 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 | es..For.example,.if.you.want.to. |
| 319a0 | 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 72 61 66 | create.a.rule.that.monitors.traf |
| 319c0 | 66 69 63 20 67 6f 69 6e 67 20 74 6f 20 6f 72 20 66 72 6f 6d 20 61 20 73 70 65 63 69 66 69 63 20 | fic.going.to.or.from.a.specific. |
| 319e0 | 49 50 20 61 64 64 72 65 73 73 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 67 72 6f 75 | IP.address,.you.can.use.the.grou |
| 31a00 | 70 20 6e 61 6d 65 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 61 63 74 75 61 6c 20 49 50 20 | p.name.instead.of.the.actual.IP. |
| 31a20 | 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 73 69 6d 70 6c 69 66 69 65 73 20 72 75 6c 65 20 6d 61 | address..This.simplifies.rule.ma |
| 31a40 | 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 6d 61 6b 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | nagement.and.makes.the.configura |
| 31a60 | 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 2e 00 41 64 64 72 65 73 73 20 70 6f 6f 6c | tion.more.flexible..Address.pool |
| 31a80 | 20 73 68 61 6c 6c 20 62 65 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 30 30 60 60 20 74 68 72 6f | .shall.be.``2001:db8::100``.thro |
| 31aa0 | 75 67 68 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 39 39 60 60 2e 00 41 64 64 72 65 73 73 20 70 | ugh.``2001:db8::199``..Address.p |
| 31ac0 | 6f 6f 6c 73 00 41 64 64 72 65 73 73 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 48 54 54 50 53 | ools.Address.to.listen.for.HTTPS |
| 31ae0 | 20 72 65 71 75 65 73 74 73 00 41 64 64 73 20 72 65 67 69 73 74 72 79 20 74 6f 20 6c 69 73 74 20 | .requests.Adds.registry.to.list. |
| 31b00 | 6f 66 20 75 6e 71 75 61 6c 69 66 69 65 64 2d 73 65 61 72 63 68 2d 72 65 67 69 73 74 72 69 65 73 | of.unqualified-search-registries |
| 31b20 | 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 66 6f 72 20 61 6e 79 20 69 6d 61 67 65 20 74 68 61 74 | ..By.default,.for.any.image.that |
| 31b40 | 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 74 68 65 20 72 65 67 69 73 74 72 79 20 69 | .does.not.include.the.registry.i |
| 31b60 | 6e 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 2c 20 56 79 4f 53 20 77 69 6c 6c 20 75 73 65 20 | n.the.image.name,.VyOS.will.use. |
| 31b80 | 64 6f 63 6b 65 72 2e 69 6f 20 61 6e 64 20 71 75 61 79 2e 69 6f 20 61 73 20 74 68 65 20 63 6f 6e | docker.io.and.quay.io.as.the.con |
| 31ba0 | 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 2e 00 41 64 64 73 20 72 65 67 69 73 74 72 79 20 74 | tainer.registry..Adds.registry.t |
| 31bc0 | 6f 20 6c 69 73 74 20 6f 66 20 75 6e 71 75 61 6c 69 66 69 65 64 2d 73 65 61 72 63 68 2d 72 65 67 | o.list.of.unqualified-search-reg |
| 31be0 | 69 73 74 72 69 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 66 6f 72 20 61 6e 79 20 69 6d 61 | istries..By.default,.for.any.ima |
| 31c00 | 67 65 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 74 68 65 20 72 65 67 | ge.that.does.not.include.the.reg |
| 31c20 | 69 73 74 72 79 20 69 6e 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 2c 20 56 79 6f 73 20 77 69 | istry.in.the.image.name,.Vyos.wi |
| 31c40 | 6c 6c 20 75 73 65 20 64 6f 63 6b 65 72 2e 69 6f 20 61 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 | ll.use.docker.io.as.the.containe |
| 31c60 | 72 20 72 65 67 69 73 74 72 79 2e 00 41 64 64 73 20 74 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 | r.registry..Adds.the.Power.Const |
| 31c80 | 72 61 69 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 20 74 6f 20 42 65 61 | raint.information.element.to.Bea |
| 31ca0 | 63 6f 6e 20 61 6e 64 20 50 72 6f 62 65 20 52 65 73 70 6f 6e 73 65 20 66 72 61 6d 65 73 2e 00 41 | con.and.Probe.Response.frames..A |
| 31cc0 | 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 44 69 73 74 61 6e 63 65 00 41 64 76 61 6e 63 65 64 20 | dministrative.Distance.Advanced. |
| 31ce0 | 49 6e 74 65 72 66 61 63 65 20 4f 70 74 69 6f 6e 73 00 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f | Interface.Options.Advanced.Optio |
| 31d00 | 6e 73 00 41 64 76 61 6e 63 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 | ns.Advanced.configuration.can.be |
| 31d20 | 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 70 70 6c 79 20 73 6f 75 72 63 65 20 6f | .used.in.order.to.apply.source.o |
| 31d40 | 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 2c 20 61 6e 64 20 77 69 74 68 69 6e 20 61 20 | r.destination.NAT,.and.within.a. |
| 31d60 | 73 69 6e 67 6c 65 20 72 75 6c 65 2c 20 62 65 20 61 62 6c 65 20 74 6f 20 64 65 66 69 6e 65 20 6d | single.rule,.be.able.to.define.m |
| 31d80 | 75 6c 74 69 70 6c 65 20 74 72 61 6e 73 6c 61 74 65 64 20 61 64 64 72 65 73 73 65 73 2c 20 73 6f | ultiple.translated.addresses,.so |
| 31da0 | 20 4e 41 54 20 62 61 6c 61 6e 63 65 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 | .NAT.balances.the.translations.a |
| 31dc0 | 6d 6f 6e 67 20 74 68 65 6d 2e 00 41 64 76 61 6e 74 61 67 65 73 20 6f 66 20 43 47 4e 41 54 00 41 | mong.them..Advantages.of.CGNAT.A |
| 31de0 | 64 76 61 6e 74 61 67 65 73 20 6f 66 20 4f 70 65 6e 56 50 4e 20 61 72 65 3a 00 41 64 76 65 72 74 | dvantages.of.OpenVPN.are:.Advert |
| 31e00 | 69 73 65 20 44 4e 53 20 73 65 72 76 65 72 20 70 65 72 20 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 | ise.DNS.server.per.https://tools |
| 31e20 | 2e 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 36 31 30 36 00 41 64 76 65 72 74 69 73 65 | .ietf.org/html/rfc6106.Advertise |
| 31e40 | 6d 65 6e 74 20 49 6e 74 65 72 76 61 6c 20 4f 70 74 69 6f 6e 20 28 73 70 65 63 69 66 69 65 64 20 | ment.Interval.Option.(specified. |
| 31e60 | 62 79 20 4d 6f 62 69 6c 65 20 49 50 76 36 29 20 69 73 20 61 6c 77 61 79 73 20 69 6e 63 6c 75 64 | by.Mobile.IPv6).is.always.includ |
| 31e80 | 65 64 20 69 6e 20 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 75 6e 6c 65 | ed.in.Router.Advertisements.unle |
| 31ea0 | 73 73 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 2e 00 41 64 76 65 72 74 69 73 69 | ss.this.option.is.set..Advertisi |
| 31ec0 | 6e 67 20 61 20 4e 41 54 36 34 20 50 72 65 66 69 78 00 41 64 76 65 72 74 69 73 69 6e 67 20 61 20 | ng.a.NAT64.Prefix.Advertising.a. |
| 31ee0 | 50 72 65 66 69 78 00 41 66 74 65 72 20 63 6f 6d 6d 69 74 20 74 68 65 20 70 6c 61 69 6e 74 65 78 | Prefix.After.commit.the.plaintex |
| 31f00 | 74 20 70 61 73 73 77 6f 72 64 73 20 77 69 6c 6c 20 62 65 20 68 61 73 68 65 64 20 61 6e 64 20 73 | t.passwords.will.be.hashed.and.s |
| 31f20 | 74 6f 72 65 64 20 69 6e 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 | tored.in.your.configuration..The |
| 31f40 | 20 72 65 73 75 6c 74 69 6e 67 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 69 6c 6c 20 6c 6f 6f 6b 20 | .resulting.CLI.config.will.look. |
| 31f60 | 6c 69 6b 65 3a 00 41 66 74 65 72 20 63 6f 6d 6d 69 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 | like:.After.committing.the.confi |
| 31f80 | 67 75 72 61 74 69 6f 6e 20 77 65 20 63 61 6e 20 76 65 72 69 66 79 20 61 6c 6c 20 6c 65 61 6b 65 | guration.we.can.verify.all.leake |
| 31fa0 | 64 20 72 6f 75 74 65 73 20 61 72 65 20 69 6e 73 74 61 6c 6c 65 64 2c 20 61 6e 64 20 74 72 79 20 | d.routes.are.installed,.and.try. |
| 31fc0 | 74 6f 20 49 43 4d 50 20 70 69 6e 67 20 50 43 31 20 66 72 6f 6d 20 50 43 33 2e 00 41 66 74 65 72 | to.ICMP.ping.PC1.from.PC3..After |
| 31fe0 | 20 63 6f 6d 70 6c 65 74 69 6e 67 20 74 68 65 20 73 65 72 76 69 63 65 20 63 6f 6e 66 69 67 75 72 | .completing.the.service.configur |
| 32000 | 61 74 69 6f 6e 20 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2c 20 74 68 65 | ation.in.configuration.mode,.the |
| 32020 | 20 6d 61 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 20 73 75 72 69 63 61 74 | .main.configuration.file.suricat |
| 32040 | 61 2e 79 61 6d 6c 20 69 73 20 63 72 65 61 74 65 64 2c 20 69 6e 74 6f 20 77 68 69 63 68 20 61 6c | a.yaml.is.created,.into.which.al |
| 32060 | 6c 20 73 70 65 63 69 66 69 65 64 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 61 64 64 65 64 | l.specified.parameters.are.added |
| 32080 | 2e 20 54 68 65 6e 2c 20 74 6f 20 65 6e 73 75 72 65 20 70 72 6f 70 65 72 20 6f 70 65 72 61 74 69 | ..Then,.to.ensure.proper.operati |
| 320a0 | 6f 6e 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 3a 6f 70 63 6d 64 3a 60 75 70 64 61 74 65 20 73 | on,.the.command.:opcmd:`update.s |
| 320c0 | 75 72 69 63 61 74 61 60 20 6d 75 73 74 20 62 65 20 72 75 6e 20 66 72 6f 6d 20 6f 70 65 72 61 74 | uricata`.must.be.run.from.operat |
| 320e0 | 69 6f 6e 61 6c 20 6d 6f 64 65 2c 20 77 61 69 74 69 6e 67 20 66 6f 72 20 53 75 72 69 63 61 74 61 | ional.mode,.waiting.for.Suricata |
| 32100 | 20 74 6f 20 75 70 64 61 74 65 20 61 6c 6c 20 69 74 73 20 72 75 6c 65 73 2c 20 77 68 69 63 68 20 | .to.update.all.its.rules,.which. |
| 32120 | 61 72 65 20 75 73 65 64 20 66 6f 72 20 61 6e 61 6c 79 7a 69 6e 67 20 74 72 61 66 66 69 63 20 66 | are.used.for.analyzing.traffic.f |
| 32140 | 6f 72 20 74 68 72 65 61 74 73 20 61 6e 64 20 61 74 74 61 63 6b 73 2e 00 41 66 74 65 72 20 74 68 | or.threats.and.attacks..After.th |
| 32160 | 65 20 50 4b 49 20 63 65 72 74 73 20 61 72 65 20 61 6c 6c 20 73 65 74 20 75 70 20 77 65 20 63 61 | e.PKI.certs.are.all.set.up.we.ca |
| 32180 | 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6f 75 72 20 49 50 53 65 63 2f 49 4b | n.start.configuring.our.IPSec/IK |
| 321a0 | 45 20 70 72 6f 70 6f 73 61 6c 73 20 75 73 65 64 20 66 6f 72 20 6b 65 79 2d 65 78 63 68 61 6e 67 | E.proposals.used.for.key-exchang |
| 321c0 | 65 20 65 6e 64 20 64 61 74 61 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 65 20 75 73 65 64 20 | e.end.data.encryption..The.used. |
| 321e0 | 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 | encryption.ciphers.and.integrity |
| 32200 | 20 61 6c 67 6f 72 69 74 68 6d 73 20 76 61 72 79 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6e 67 20 | .algorithms.vary.from.operating. |
| 32220 | 73 79 73 74 65 6d 20 74 6f 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 65 20 | system.to.operating.system..The. |
| 32240 | 6f 6e 65 73 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 61 72 65 20 76 61 | ones.used.in.this.example.are.va |
| 32260 | 6c 69 64 61 74 65 64 20 74 6f 20 77 6f 72 6b 20 6f 6e 20 57 69 6e 64 6f 77 73 20 31 30 2e 00 41 | lidated.to.work.on.Windows.10..A |
| 32280 | 66 74 65 72 20 74 68 65 20 50 4b 49 20 63 65 72 74 73 20 61 72 65 20 61 6c 6c 20 73 65 74 20 75 | fter.the.PKI.certs.are.all.set.u |
| 322a0 | 70 20 77 65 20 63 61 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6f 75 72 20 49 | p.we.can.start.configuring.our.I |
| 322c0 | 50 53 65 63 2f 49 4b 45 20 70 72 6f 70 6f 73 61 6c 73 20 75 73 65 64 20 66 6f 72 20 6b 65 79 2d | PSec/IKE.proposals.used.for.key- |
| 322e0 | 65 78 63 68 61 6e 67 65 20 65 6e 64 20 64 61 74 61 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 | exchange.end.data.encryption..Th |
| 32300 | 65 20 75 73 65 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e | e.used.encryption.ciphers.and.in |
| 32320 | 74 65 67 72 69 74 79 20 61 6c 67 6f 72 69 74 68 6d 73 20 76 61 72 79 20 66 72 6f 6d 20 6f 70 65 | tegrity.algorithms.vary.from.ope |
| 32340 | 72 61 74 69 6e 67 20 73 79 73 74 65 6d 20 74 6f 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 | rating.system.to.operating.syste |
| 32360 | 6d 2e 20 54 68 65 20 6f 6e 65 73 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 70 6f 73 74 20 61 72 | m..The.ones.used.in.this.post.ar |
| 32380 | 65 20 76 61 6c 69 64 61 74 65 64 20 74 6f 20 77 6f 72 6b 20 6f 6e 20 62 6f 74 68 20 57 69 6e 64 | e.validated.to.work.on.both.Wind |
| 323a0 | 6f 77 73 20 31 30 20 61 6e 64 20 69 4f 53 2f 69 50 61 64 4f 53 20 31 34 20 74 6f 20 31 37 2e 00 | ows.10.and.iOS/iPadOS.14.to.17.. |
| 323c0 | 41 66 74 65 72 20 77 65 20 68 61 76 65 20 69 6d 70 6f 72 74 65 64 20 74 68 65 20 43 41 20 63 65 | After.we.have.imported.the.CA.ce |
| 323e0 | 72 74 69 66 69 63 61 74 65 28 73 29 20 77 65 20 63 61 6e 20 6e 6f 77 20 69 6d 70 6f 72 74 20 61 | rtificate(s).we.can.now.import.a |
| 32400 | 6e 64 20 61 64 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 65 64 20 62 79 20 73 65 72 76 | nd.add.certificates.used.by.serv |
| 32420 | 69 63 65 73 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 2e 00 41 66 74 65 72 20 79 6f 75 20 6f | ices.on.this.router..After.you.o |
| 32440 | 62 74 61 69 6e 20 79 6f 75 72 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f | btain.your.server.certificate.yo |
| 32460 | 75 20 63 61 6e 20 69 6d 70 6f 72 74 20 69 74 20 66 72 6f 6d 20 61 20 66 69 6c 65 20 6f 6e 20 74 | u.can.import.it.from.a.file.on.t |
| 32480 | 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 79 73 74 65 6d 2c 20 6f 72 20 70 61 73 74 65 20 69 74 | he.local.filesystem,.or.paste.it |
| 324a0 | 20 69 6e 74 6f 20 74 68 65 20 43 4c 49 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 | .into.the.CLI..Please.note.that. |
| 324c0 | 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6d 61 | when.entering.the.certificate.ma |
| 324e0 | 6e 75 61 6c 6c 79 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 72 69 70 20 74 68 65 20 60 60 2d | nually.you.need.to.strip.the.``- |
| 32500 | 2d 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d | ----BEGIN.KEY-----``.and.``----- |
| 32520 | 45 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 | END.KEY-----``.tags..Also,.the.c |
| 32540 | 65 72 74 69 66 69 63 61 74 65 20 6f 72 20 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 | ertificate.or.key.needs.to.be.pr |
| 32560 | 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 | esented.in.a.single.line.without |
| 32580 | 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2e 00 41 66 74 65 72 20 79 6f 75 | .line.breaks.(``\n``)..After.you |
| 325a0 | 20 6f 62 74 61 69 6e 65 64 20 79 6f 75 72 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 | .obtained.your.server.certificat |
| 325c0 | 65 20 79 6f 75 20 63 61 6e 20 69 6d 70 6f 72 74 20 69 74 20 66 72 6f 6d 20 61 20 66 69 6c 65 20 | e.you.can.import.it.from.a.file. |
| 325e0 | 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 79 73 74 65 6d 2c 20 6f 72 20 70 61 73 74 | on.the.local.filesystem,.or.past |
| 32600 | 65 20 69 74 20 69 6e 74 6f 20 74 68 65 20 43 4c 49 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 | e.it.into.the.CLI..Please.note.t |
| 32620 | 68 61 74 20 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 | hat.when.entering.the.certificat |
| 32640 | 65 20 6d 61 6e 75 61 6c 6c 79 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 72 69 70 20 74 68 65 | e.manually.you.need.to.strip.the |
| 32660 | 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d | .``-----BEGIN.KEY-----``.and.``- |
| 32680 | 2d 2d 2d 2d 45 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 | ----END.KEY-----``.tags..Also,.t |
| 326a0 | 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6f 72 20 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 | he.certificate.or.key.needs.to.b |
| 326c0 | 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 | e.presented.in.a.single.line.wit |
| 326e0 | 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2e 00 41 67 65 6e 74 | hout.line.breaks.(``\n``)..Agent |
| 32700 | 20 2d 20 73 6f 66 74 77 61 72 65 20 77 68 69 63 68 20 72 75 6e 73 20 6f 6e 20 6d 61 6e 61 67 65 | .-.software.which.runs.on.manage |
| 32720 | 64 20 64 65 76 69 63 65 73 00 41 6c 65 72 74 00 41 6c 67 6f 72 69 74 68 6d 00 41 6c 69 61 73 65 | d.devices.Alert.Algorithm.Aliase |
| 32740 | 73 00 41 6c 6c 20 44 4e 53 20 72 65 71 75 65 73 74 73 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e 63 | s.All.DNS.requests.for.example.c |
| 32760 | 6f 6d 20 6d 75 73 74 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 74 6f 20 61 20 44 4e 53 20 73 65 | om.must.be.forwarded.to.a.DNS.se |
| 32780 | 72 76 65 72 20 61 74 20 31 39 32 2e 30 2e 32 2e 32 35 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 | rver.at.192.0.2.254.and.2001:db8 |
| 327a0 | 3a 63 61 66 65 3a 3a 31 00 41 6c 6c 20 53 4e 4d 50 20 4d 49 42 73 20 61 72 65 20 6c 6f 63 61 74 | :cafe::1.All.SNMP.MIBs.are.locat |
| 327c0 | 65 64 20 69 6e 20 65 61 63 68 20 69 6d 61 67 65 20 6f 66 20 56 79 4f 53 20 68 65 72 65 3a 20 60 | ed.in.each.image.of.VyOS.here:.` |
| 327e0 | 60 2f 75 73 72 2f 73 68 61 72 65 2f 73 6e 6d 70 2f 6d 69 62 73 2f 60 60 00 41 6c 6c 20 61 76 61 | `/usr/share/snmp/mibs/``.All.ava |
| 32800 | 69 6c 61 62 6c 65 20 57 57 41 4e 20 63 61 72 64 73 20 68 61 76 65 20 61 20 62 75 69 6c 64 20 69 | ilable.WWAN.cards.have.a.build.i |
| 32820 | 6e 2c 20 72 65 70 72 6f 67 72 61 6d 6d 61 62 6c 65 20 66 69 72 6d 77 61 72 65 2e 20 4d 6f 73 74 | n,.reprogrammable.firmware..Most |
| 32840 | 20 6f 66 20 74 68 65 20 76 65 6e 64 6f 72 73 20 70 72 6f 76 69 64 65 20 61 20 72 65 67 75 6c 61 | .of.the.vendors.provide.a.regula |
| 32860 | 72 20 75 70 64 61 74 65 20 74 6f 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 75 73 65 64 20 69 6e | r.update.to.the.firmware.used.in |
| 32880 | 20 74 68 65 20 62 61 73 65 62 61 6e 64 20 63 68 69 70 2e 00 41 6c 6c 20 61 76 61 69 6c 61 62 6c | .the.baseband.chip..All.availabl |
| 328a0 | 65 20 57 57 41 4e 20 63 61 72 64 73 20 68 61 76 65 20 61 20 62 75 69 6c 74 2d 69 6e 2c 20 72 65 | e.WWAN.cards.have.a.built-in,.re |
| 328c0 | 70 72 6f 67 72 61 6d 6d 61 62 6c 65 20 66 69 72 6d 77 61 72 65 2e 20 4d 6f 73 74 20 76 65 6e 64 | programmable.firmware..Most.vend |
| 328e0 | 6f 72 73 20 70 72 6f 76 69 64 65 20 72 65 67 75 6c 61 72 20 75 70 64 61 74 65 73 20 74 6f 20 66 | ors.provide.regular.updates.to.f |
| 32900 | 69 72 6d 77 61 72 65 20 75 73 65 64 20 69 6e 20 74 68 65 20 62 61 73 65 62 61 6e 64 20 63 68 69 | irmware.used.in.the.baseband.chi |
| 32920 | 70 2e 00 41 6c 6c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 73 68 6f 75 6c 64 20 62 65 20 73 74 | p..All.certificates.should.be.st |
| 32940 | 6f 72 65 64 20 6f 6e 20 56 79 4f 53 20 75 6e 64 65 72 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 | ored.on.VyOS.under.``/config/aut |
| 32960 | 68 60 60 2e 20 49 66 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 6e 6f 74 20 73 74 6f | h``..If.certificates.are.not.sto |
| 32980 | 72 65 64 20 69 6e 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 60 60 20 64 69 72 65 63 74 6f 72 79 | red.in.the.``/config``.directory |
| 329a0 | 20 74 68 65 79 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 6d 69 67 72 61 74 65 64 20 64 75 72 69 6e | .they.will.not.be.migrated.durin |
| 329c0 | 67 20 61 20 73 6f 66 74 77 61 72 65 20 75 70 64 61 74 65 2e 00 41 6c 6c 20 66 61 63 69 6c 69 74 | g.a.software.update..All.facilit |
| 329e0 | 69 65 73 00 41 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 | ies.All.interfaces.used.for.the. |
| 32a00 | 44 48 43 50 20 72 65 6c 61 79 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 | DHCP.relay.must.be.configured..T |
| 32a20 | 68 69 73 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 75 70 6c 69 6e 6b 20 74 6f 20 74 68 65 20 44 | his.includes.the.uplink.to.the.D |
| 32a40 | 48 43 50 20 73 65 72 76 65 72 2e 00 41 6c 6c 20 69 74 65 6d 73 20 69 6e 20 61 20 73 79 6e 63 20 | HCP.server..All.items.in.a.sync. |
| 32a60 | 67 72 6f 75 70 20 73 68 6f 75 6c 64 20 62 65 20 73 69 6d 69 6c 61 72 6c 79 20 63 6f 6e 66 69 67 | group.should.be.similarly.config |
| 32a80 | 75 72 65 64 2e 20 49 66 20 6f 6e 65 20 56 52 52 50 20 67 72 6f 75 70 20 69 73 20 73 65 74 20 74 | ured..If.one.VRRP.group.is.set.t |
| 32aa0 | 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 72 65 65 6d 70 74 69 6f 6e 20 64 65 6c 61 79 20 6f | o.a.different.preemption.delay.o |
| 32ac0 | 72 20 70 72 69 6f 72 69 74 79 2c 20 69 74 20 77 6f 75 6c 64 20 72 65 73 75 6c 74 20 69 6e 20 61 | r.priority,.it.would.result.in.a |
| 32ae0 | 6e 20 65 6e 64 6c 65 73 73 20 74 72 61 6e 73 69 74 69 6f 6e 20 6c 6f 6f 70 2e 00 41 6c 6c 20 6f | n.endless.transition.loop..All.o |
| 32b00 | 74 68 65 72 20 44 4e 53 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 | ther.DNS.requests.will.be.forwar |
| 32b20 | 64 65 64 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 73 65 74 20 6f 66 20 44 4e 53 20 73 65 | ded.to.a.different.set.of.DNS.se |
| 32b40 | 72 76 65 72 73 20 61 74 20 31 39 32 2e 30 2e 32 2e 31 2c 20 31 39 32 2e 30 2e 32 2e 32 2c 20 32 | rvers.at.192.0.2.1,.192.0.2.2,.2 |
| 32b60 | 30 30 31 3a 64 62 38 3a 3a 31 3a 66 66 66 66 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 32 3a | 001:db8::1:ffff.and.2001:db8::2: |
| 32b80 | 66 66 66 66 00 41 6c 6c 20 72 65 70 6c 79 20 73 69 7a 65 73 20 61 72 65 20 61 63 63 65 70 74 65 | ffff.All.reply.sizes.are.accepte |
| 32ba0 | 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 41 6c 6c 20 72 6f 75 74 65 72 73 20 69 6e 20 74 68 65 | d.by.default..All.routers.in.the |
| 32bc0 | 20 50 49 4d 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 61 67 72 65 65 20 6f 6e 20 74 68 65 73 65 | .PIM.network.must.agree.on.these |
| 32be0 | 20 76 61 6c 75 65 73 2e 00 41 6c 6c 20 73 63 72 69 70 74 73 20 65 78 63 65 63 75 74 65 64 20 74 | .values..All.scripts.excecuted.t |
| 32c00 | 68 69 73 20 77 61 79 20 61 72 65 20 65 78 65 63 75 74 65 64 20 61 73 20 72 6f 6f 74 20 75 73 65 | his.way.are.executed.as.root.use |
| 32c20 | 72 20 2d 20 74 68 69 73 20 6d 61 79 20 62 65 20 64 61 6e 67 65 72 6f 75 73 2e 20 54 6f 67 65 74 | r.-.this.may.be.dangerous..Toget |
| 32c40 | 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 6e 64 2d 73 63 72 69 70 74 69 6e 67 | her.with.:ref:`command-scripting |
| 32c60 | 60 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 6f 6d 61 74 69 6e | `.this.can.be.used.for.automatin |
| 32c80 | 67 20 28 72 65 2d 29 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 41 6c 6c 20 73 63 72 69 70 74 | g.(re-)configuration..All.script |
| 32ca0 | 73 20 65 78 65 63 75 74 65 64 20 74 68 69 73 20 77 61 79 20 61 72 65 20 65 78 65 63 75 74 65 64 | s.executed.this.way.are.executed |
| 32cc0 | 20 61 73 20 72 6f 6f 74 20 75 73 65 72 20 2d 20 74 68 69 73 20 6d 61 79 20 62 65 20 64 61 6e 67 | .as.root.user.-.this.may.be.dang |
| 32ce0 | 65 72 6f 75 73 2e 20 54 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 | erous..Together.with.:ref:`comma |
| 32d00 | 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 | nd-scripting`.this.can.be.used.f |
| 32d20 | 6f 72 20 61 75 74 6f 6d 61 74 69 6e 67 20 28 72 65 2d 29 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | or.automating.(re-)configuration |
| 32d40 | 2e 00 41 6c 6c 20 74 68 65 73 65 20 72 75 6c 65 73 20 77 69 74 68 20 4f 54 43 20 77 69 6c 6c 20 | ..All.these.rules.with.OTC.will. |
| 32d60 | 68 65 6c 70 20 74 6f 20 64 65 74 65 63 74 20 61 6e 64 20 6d 69 74 69 67 61 74 65 20 72 6f 75 74 | help.to.detect.and.mitigate.rout |
| 32d80 | 65 20 6c 65 61 6b 73 20 61 6e 64 20 68 61 70 70 65 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 | e.leaks.and.happen.automatically |
| 32da0 | 20 69 66 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 73 65 74 2e 00 41 6c 6c 20 74 68 6f 73 65 | .if.local-role.is.set..All.those |
| 32dc0 | 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 67 72 6f 75 70 65 64 20 75 6e 64 65 72 20 60 60 69 | .protocols.are.grouped.under.``i |
| 32de0 | 6e 74 65 72 66 61 63 65 73 20 74 75 6e 6e 65 6c 60 60 20 69 6e 20 56 79 4f 53 2e 20 4c 65 74 27 | nterfaces.tunnel``.in.VyOS..Let' |
| 32e00 | 73 20 74 61 6b 65 20 61 20 63 6c 6f 73 65 72 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 70 72 6f 74 | s.take.a.closer.look.at.the.prot |
| 32e20 | 6f 63 6f 6c 73 20 61 6e 64 20 6f 70 74 69 6f 6e 73 20 63 75 72 72 65 6e 74 6c 79 20 73 75 70 70 | ocols.and.options.currently.supp |
| 32e40 | 6f 72 74 65 64 20 62 79 20 56 79 4f 53 2e 00 41 6c 6c 20 74 72 61 66 66 69 63 20 62 65 74 77 65 | orted.by.VyOS..All.traffic.betwe |
| 32e60 | 65 6e 20 7a 6f 6e 65 73 20 69 73 20 61 66 66 65 63 74 65 64 20 62 79 20 65 78 69 73 74 69 6e 67 | en.zones.is.affected.by.existing |
| 32e80 | 20 70 6f 6c 69 63 69 65 73 00 41 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 61 6e 64 20 66 72 6f | .policies.All.traffic.to.and.fro |
| 32ea0 | 6d 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 69 6e 20 61 20 7a 6f 6e 65 20 69 73 20 | m.an.interface.within.a.zone.is. |
| 32ec0 | 70 65 72 6d 69 74 74 65 64 2e 00 41 6c 6c 20 74 75 6e 6e 65 6c 20 73 65 73 73 69 6f 6e 73 20 63 | permitted..All.tunnel.sessions.c |
| 32ee0 | 61 6e 20 62 65 20 63 68 65 63 6b 65 64 20 76 69 61 3a 00 41 6c 6c 2d 41 63 74 69 76 65 20 4d 75 | an.be.checked.via:.All-Active.Mu |
| 32f00 | 6c 74 69 68 6f 6d 69 6e 67 20 69 73 20 75 73 65 64 20 66 6f 72 20 72 65 64 75 6e 64 61 6e 63 79 | ltihoming.is.used.for.redundancy |
| 32f20 | 20 61 6e 64 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 2e 20 53 65 72 76 65 72 73 20 61 72 65 20 61 | .and.load.sharing..Servers.are.a |
| 32f40 | 74 74 61 63 68 65 64 20 74 6f 20 74 77 6f 20 6f 72 20 6d 6f 72 65 20 50 45 73 20 61 6e 64 20 74 | ttached.to.two.or.more.PEs.and.t |
| 32f60 | 68 65 20 6c 69 6e 6b 73 20 61 72 65 20 62 6f 6e 64 65 64 20 28 6c 69 6e 6b 2d 61 67 67 72 65 67 | he.links.are.bonded.(link-aggreg |
| 32f80 | 61 74 69 6f 6e 29 2e 20 54 68 69 73 20 67 72 6f 75 70 20 6f 66 20 73 65 72 76 65 72 20 6c 69 6e | ation)..This.group.of.server.lin |
| 32fa0 | 6b 73 20 69 73 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 6e 20 3a 61 62 62 72 3a 60 45 | ks.is.referred.to.as.an.:abbr:`E |
| 32fc0 | 53 20 28 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 29 60 2e 00 41 6c 6c 6f 63 61 74 69 6f | S.(Ethernet.Segment)`..Allocatio |
| 32fe0 | 6e 20 63 6c 69 65 6e 74 73 20 69 70 20 61 64 64 72 65 73 73 65 73 20 62 79 20 52 41 44 49 55 53 | n.clients.ip.addresses.by.RADIUS |
| 33000 | 00 41 6c 6c 6f 77 20 60 60 73 73 68 60 60 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f | .Allow.``ssh``.dynamic-protectio |
| 33020 | 6e 2e 00 41 6c 6c 6f 77 20 61 63 63 65 73 73 20 74 6f 20 73 69 74 65 73 20 69 6e 20 61 20 64 6f | n..Allow.access.to.sites.in.a.do |
| 33040 | 6d 61 69 6e 20 77 69 74 68 6f 75 74 20 72 65 74 72 69 65 76 69 6e 67 20 74 68 65 6d 20 66 72 6f | main.without.retrieving.them.fro |
| 33060 | 6d 20 74 68 65 20 50 72 6f 78 79 20 63 61 63 68 65 2e 20 53 70 65 63 69 66 79 69 6e 67 20 22 76 | m.the.Proxy.cache..Specifying."v |
| 33080 | 79 6f 73 2e 6e 65 74 22 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 61 63 63 65 73 73 20 74 6f 20 76 79 | yos.net".will.allow.access.to.vy |
| 330a0 | 6f 73 2e 6e 65 74 20 62 75 74 20 74 68 65 20 70 61 67 65 73 20 61 63 63 65 73 73 65 64 20 77 69 | os.net.but.the.pages.accessed.wi |
| 330c0 | 6c 6c 20 6e 6f 74 20 62 65 20 63 61 63 68 65 64 2e 20 49 74 20 75 73 65 66 75 6c 20 66 6f 72 20 | ll.not.be.cached..It.useful.for. |
| 330e0 | 77 6f 72 6b 69 6e 67 20 61 72 6f 75 6e 64 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 22 49 66 | working.around.problems.with."If |
| 33100 | 2d 4d 6f 64 69 66 69 65 64 2d 53 69 6e 63 65 22 20 63 68 65 63 6b 69 6e 67 20 61 74 20 63 65 72 | -Modified-Since".checking.at.cer |
| 33120 | 74 61 69 6e 20 73 69 74 65 73 2e 00 41 6c 6c 6f 77 20 62 67 70 20 74 6f 20 6e 65 67 6f 74 69 61 | tain.sites..Allow.bgp.to.negotia |
| 33140 | 74 65 20 74 68 65 20 65 78 74 65 6e 64 65 64 2d 6e 65 78 74 68 6f 70 20 63 61 70 61 62 69 6c 69 | te.the.extended-nexthop.capabili |
| 33160 | 74 79 20 77 69 74 68 20 69 74 e2 80 99 73 20 70 65 65 72 2e 20 49 66 20 79 6f 75 20 61 72 65 20 | ty.with.it...s.peer..If.you.are. |
| 33180 | 70 65 65 72 69 6e 67 20 6f 76 65 72 20 61 20 49 50 76 36 20 4c 69 6e 6b 2d 4c 6f 63 61 6c 20 61 | peering.over.a.IPv6.Link-Local.a |
| 331a0 | 64 64 72 65 73 73 20 74 68 65 6e 20 74 68 69 73 20 63 61 70 61 62 69 6c 69 74 79 20 69 73 20 74 | ddress.then.this.capability.is.t |
| 331c0 | 75 72 6e 65 64 20 6f 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 2e 20 49 66 20 79 6f 75 20 61 | urned.on.automatically..If.you.a |
| 331e0 | 72 65 20 70 65 65 72 69 6e 67 20 6f 76 65 72 20 61 20 49 50 76 36 20 47 6c 6f 62 61 6c 20 41 64 | re.peering.over.a.IPv6.Global.Ad |
| 33200 | 64 72 65 73 73 20 74 68 65 6e 20 74 75 72 6e 69 6e 67 20 6f 6e 20 74 68 69 73 20 63 6f 6d 6d 61 | dress.then.turning.on.this.comma |
| 33220 | 6e 64 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f 20 69 6e 73 74 61 6c 6c 20 49 50 76 | nd.will.allow.BGP.to.install.IPv |
| 33240 | 34 20 72 6f 75 74 65 73 20 77 69 74 68 20 49 50 76 36 20 6e 65 78 74 68 6f 70 73 20 69 66 20 79 | 4.routes.with.IPv6.nexthops.if.y |
| 33260 | 6f 75 20 64 6f 20 6e 6f 74 20 68 61 76 65 20 49 50 76 34 20 63 6f 6e 66 69 67 75 72 65 64 20 6f | ou.do.not.have.IPv4.configured.o |
| 33280 | 6e 20 69 6e 74 65 72 66 61 63 65 73 2e 00 41 6c 6c 6f 77 20 63 72 6f 73 73 2d 6f 72 69 67 69 6e | n.interfaces..Allow.cross-origin |
| 332a0 | 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 60 3c 6f 72 69 67 69 6e 3e 60 2e 00 41 6c 6c 6f 77 | .requests.from.`<origin>`..Allow |
| 332c0 | 20 65 78 70 6c 69 63 69 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 69 | .explicit.IPv6.address.for.the.i |
| 332e0 | 6e 74 65 72 66 61 63 65 2e 00 41 6c 6c 6f 77 20 68 6f 73 74 20 6e 65 74 77 6f 72 6b 69 6e 67 20 | nterface..Allow.host.networking. |
| 33300 | 69 6e 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 20 54 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 63 | in.a.container..The.network.stac |
| 33320 | 6b 20 6f 66 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 6e 6f 74 20 69 73 6f 6c 61 74 | k.of.the.container.is.not.isolat |
| 33340 | 65 64 20 66 72 6f 6d 20 74 68 65 20 68 6f 73 74 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 74 68 | ed.from.the.host.and.will.use.th |
| 33360 | 65 20 68 6f 73 74 20 49 50 2e 00 41 6c 6c 6f 77 20 6c 69 73 74 69 6e 67 20 61 64 64 69 74 69 6f | e.host.IP..Allow.listing.additio |
| 33380 | 6e 61 6c 20 63 75 73 74 6f 6d 20 64 6f 6d 61 69 6e 73 20 74 6f 20 62 65 20 62 72 6f 77 73 65 64 | nal.custom.domains.to.be.browsed |
| 333a0 | 20 28 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 60 60 6c | .(in.addition.to.the.default.``l |
| 333c0 | 6f 63 61 6c 60 60 29 20 73 6f 20 74 68 61 74 20 74 68 65 79 20 63 61 6e 20 62 65 20 72 65 66 6c | ocal``).so.that.they.can.be.refl |
| 333e0 | 65 63 74 65 64 2e 00 41 6c 6c 6f 77 20 74 68 69 73 20 42 46 44 20 70 65 65 72 20 74 6f 20 6e 6f | ected..Allow.this.BFD.peer.to.no |
| 33400 | 74 20 62 65 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 00 41 6c 6c 6f 77 65 64 20 | t.be.directly.connected.Allowed. |
| 33420 | 76 61 6c 75 65 73 20 66 70 72 20 54 43 50 20 66 6c 61 67 73 3a 20 60 60 53 59 4e 60 60 2c 20 60 | values.fpr.TCP.flags:.``SYN``,.` |
| 33440 | 60 41 43 4b 60 60 2c 20 60 60 46 49 4e 60 60 2c 20 60 60 52 53 54 60 60 2c 20 60 60 55 52 47 60 | `ACK``,.``FIN``,.``RST``,.``URG` |
| 33460 | 60 2c 20 60 60 50 53 48 60 60 2c 20 60 60 41 4c 4c 60 60 20 57 68 65 6e 20 73 70 65 63 69 66 79 | `,.``PSH``,.``ALL``.When.specify |
| 33480 | 69 6e 67 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 66 6c 61 67 2c 20 66 6c 61 67 73 20 73 68 | ing.more.than.one.flag,.flags.sh |
| 334a0 | 6f 75 6c 64 20 62 65 20 63 6f 6d 6d 61 20 73 65 70 61 72 61 74 65 64 2e 20 54 68 65 20 60 60 21 | ould.be.comma.separated..The.``! |
| 334c0 | 60 60 20 6e 65 67 61 74 65 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e | ``.negate.the.selected.protocol. |
| 334e0 | 00 41 6c 6c 6f 77 65 64 20 76 61 6c 75 65 73 20 66 70 72 20 54 43 50 20 66 6c 61 67 73 3a 20 60 | .Allowed.values.fpr.TCP.flags:.` |
| 33500 | 60 61 63 6b 60 60 2c 20 60 60 63 77 72 60 60 2c 20 60 60 65 63 6e 60 60 2c 20 60 60 66 69 6e 60 | `ack``,.``cwr``,.``ecn``,.``fin` |
| 33520 | 60 2c 20 60 60 70 73 68 60 60 2c 20 60 60 72 73 74 60 60 2c 20 60 60 73 79 6e 60 60 20 61 6e 64 | `,.``psh``,.``rst``,.``syn``.and |
| 33540 | 20 60 60 75 72 67 60 60 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 61 72 65 20 73 75 | .``urg``..Multiple.values.are.su |
| 33560 | 70 70 6f 72 74 65 64 2c 20 61 6e 64 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 73 65 6c 65 63 74 | pported,.and.for.inverted.select |
| 33580 | 69 6f 6e 20 75 73 65 20 60 60 6e 6f 74 60 60 2c 20 61 73 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 | ion.use.``not``,.as.shown.in.the |
| 335a0 | 20 65 78 61 6d 70 6c 65 2e 00 41 6c 6c 6f 77 73 20 73 70 65 63 69 66 69 63 20 56 4c 41 4e 20 49 | .example..Allows.specific.VLAN.I |
| 335c0 | 44 73 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 20 6d 65 | Ds.to.pass.through.the.bridge.me |
| 335e0 | 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 63 61 6e 20 65 69 74 68 65 72 20 | mber.interface..This.can.either. |
| 33600 | 62 65 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 56 4c 41 4e 20 69 64 20 6f 72 20 61 20 72 61 | be.an.individual.VLAN.id.or.a.ra |
| 33620 | 6e 67 65 20 6f 66 20 56 4c 41 4e 20 69 64 73 20 64 65 6c 69 6d 69 74 65 64 20 62 79 20 61 20 68 | nge.of.VLAN.ids.delimited.by.a.h |
| 33640 | 79 70 68 65 6e 2e 00 41 6c 6c 6f 77 73 20 74 6f 20 64 65 66 69 6e 65 20 55 52 4c 20 70 61 74 68 | yphen..Allows.to.define.URL.path |
| 33660 | 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 73 | .matching.rules.for.a.specific.s |
| 33680 | 65 72 76 69 63 65 2e 00 41 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ervice..Allows.you.to.configure. |
| 336a0 | 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 61 6e 20 69 6e | the.next-hop.interface.for.an.in |
| 336c0 | 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e | terface-based.IPv4.static.route. |
| 336e0 | 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 65 78 74 2d | .`<interface>`.will.be.the.next- |
| 33700 | 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 72 | hop.interface.where.traffic.is.r |
| 33720 | 6f 75 74 65 64 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 73 75 62 6e 65 74 3e 60 2e 00 | outed.for.the.given.`<subnet>`.. |
| 33740 | 41 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 78 74 | Allows.you.to.configure.the.next |
| 33760 | 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2d | -hop.interface.for.an.interface- |
| 33780 | 62 61 73 65 64 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 60 3c 69 6e 74 65 72 | based.IPv6.static.route..`<inter |
| 337a0 | 66 61 63 65 3e 60 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 | face>`.will.be.the.next-hop.inte |
| 337c0 | 72 66 61 63 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 72 6f 75 74 65 64 20 66 6f | rface.where.traffic.is.routed.fo |
| 337e0 | 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 73 75 62 6e 65 74 3e 60 2e 00 41 6c 72 65 61 64 79 20 | r.the.given.`<subnet>`..Already. |
| 33800 | 6c 65 61 72 6e 65 64 20 6b 6e 6f 77 6e 5f 68 6f 73 74 73 20 66 69 6c 65 73 20 6f 66 20 63 6c 69 | learned.known_hosts.files.of.cli |
| 33820 | 65 6e 74 73 20 6e 65 65 64 20 61 6e 20 75 70 64 61 74 65 20 61 73 20 74 68 65 20 70 75 62 6c 69 | ents.need.an.update.as.the.publi |
| 33840 | 63 20 6b 65 79 20 77 69 6c 6c 20 63 68 61 6e 67 65 2e 00 41 6c 73 6f 2c 20 2a 2a 64 65 66 61 75 | c.key.will.change..Also,.**defau |
| 33860 | 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 69 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 68 61 74 20 74 61 | lt-action**.is.an.action.that.ta |
| 33880 | 6b 65 73 20 70 6c 61 63 65 20 77 68 65 6e 65 76 65 72 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 | kes.place.whenever.a.packet.does |
| 338a0 | 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 72 75 6c 65 20 69 6e 20 69 74 27 73 20 63 68 61 69 | .not.match.any.rule.in.it's.chai |
| 338c0 | 6e 2e 20 46 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 70 6f 73 73 69 62 6c 65 20 6f 70 74 | n..For.base.chains,.possible.opt |
| 338e0 | 69 6f 6e 73 20 66 6f 72 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 61 72 65 20 | ions.for.**default-action**.are. |
| 33900 | 2a 2a 61 63 63 65 70 74 2a 2a 20 6f 72 20 2a 2a 64 72 6f 70 2a 2a 2e 00 41 6c 73 6f 2c 20 2a 2a | **accept**.or.**drop**..Also,.** |
| 33920 | 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 69 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 68 | default-action**.is.an.action.th |
| 33940 | 61 74 20 74 61 6b 65 73 20 70 6c 61 63 65 20 77 68 65 6e 65 76 65 72 20 61 20 70 61 63 6b 65 74 | at.takes.place.whenever.a.packet |
| 33960 | 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 72 75 6c 65 20 69 6e 20 69 74 73 27 | .does.not.match.any.rule.in.its' |
| 33980 | 20 63 68 61 69 6e 2e 20 46 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 70 6f 73 73 69 62 6c | .chain..For.base.chains,.possibl |
| 339a0 | 65 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a | e.options.for.**default-action** |
| 339c0 | 20 61 72 65 20 2a 2a 61 63 63 65 70 74 2a 2a 20 6f 72 20 2a 2a 64 72 6f 70 2a 2a 2e 00 41 6c 73 | .are.**accept**.or.**drop**..Als |
| 339e0 | 6f 2c 20 66 6f 72 20 62 61 63 6b 77 61 72 64 73 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 74 | o,.for.backwards.compatibility.t |
| 33a00 | 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 75 73 65 73 20 67 65 | his.configuration,.which.uses.ge |
| 33a20 | 6e 65 72 69 63 20 69 6e 74 65 72 66 61 63 65 20 64 65 66 69 6e 69 74 69 6f 6e 2c 20 69 73 20 73 | neric.interface.definition,.is.s |
| 33a40 | 74 69 6c 6c 20 76 61 6c 69 64 3a 00 41 6c 73 6f 2c 20 66 6f 72 20 74 68 6f 73 65 20 77 68 6f 20 | till.valid:.Also,.for.those.who. |
| 33a60 | 68 61 76 65 6e 27 74 20 75 70 64 61 74 65 64 20 74 6f 20 6e 65 77 65 72 20 76 65 72 73 69 6f 6e | haven't.updated.to.newer.version |
| 33a80 | 2c 20 6c 65 67 61 63 79 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 | ,.legacy.documentation.is.still. |
| 33aa0 | 70 72 65 73 65 6e 74 20 61 6e 64 20 76 61 6c 69 64 20 66 6f 72 20 61 6c 6c 20 73 61 67 69 74 74 | present.and.valid.for.all.sagitt |
| 33ac0 | 61 20 76 65 72 73 69 6f 6e 20 70 72 69 6f 72 20 74 6f 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c | a.version.prior.to.VyOS.1.4-roll |
| 33ae0 | 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 3a 00 41 6c 73 6f 2c 20 69 66 20 61 63 74 69 6f | ing-202308040557:.Also,.if.actio |
| 33b00 | 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2c 20 75 73 65 20 6e 65 78 74 20 | n.is.set.to.``queue``,.use.next. |
| 33b20 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 75 65 75 65 20 6f 70 74 | command.to.specify.the.queue.opt |
| 33b40 | 69 6f 6e 73 2e 20 50 6f 73 73 69 62 6c 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 60 60 62 79 70 | ions..Possible.options.are.``byp |
| 33b60 | 61 73 73 60 60 20 61 6e 64 20 60 60 66 61 6e 6f 75 74 60 60 3a 00 41 6c 73 6f 2c 20 69 6e 20 3a | ass``.and.``fanout``:.Also,.in.: |
| 33b80 | 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2c 20 72 65 64 69 72 65 63 74 69 | ref:`destination-nat`,.redirecti |
| 33ba0 | 6f 6e 20 74 6f 20 6c 6f 63 61 6c 68 6f 73 74 20 69 73 20 73 75 70 70 6f 72 74 65 64 2e 20 54 68 | on.to.localhost.is.supported..Th |
| 33bc0 | 65 20 72 65 64 69 72 65 63 74 20 73 74 61 74 65 6d 65 6e 74 20 69 73 20 61 20 73 70 65 63 69 61 | e.redirect.statement.is.a.specia |
| 33be0 | 6c 20 66 6f 72 6d 20 6f 66 20 64 6e 61 74 20 77 68 69 63 68 20 61 6c 77 61 79 73 20 74 72 61 6e | l.form.of.dnat.which.always.tran |
| 33c00 | 73 6c 61 74 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 | slates.the.destination.address.t |
| 33c20 | 6f 20 74 68 65 20 6c 6f 63 61 6c 20 68 6f 73 74 e2 80 99 73 20 6f 6e 65 2e 00 41 6c 73 6f 2c 20 | o.the.local.host...s.one..Also,. |
| 33c40 | 73 70 65 63 69 66 69 63 20 74 69 6d 65 6f 75 74 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 | specific.timeout.can.be.defined. |
| 33c60 | 70 65 72 20 72 75 6c 65 2e 20 49 6e 20 63 61 73 65 20 72 75 6c 65 20 67 65 74 73 20 61 20 68 69 | per.rule..In.case.rule.gets.a.hi |
| 33c80 | 74 2c 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6e 61 74 69 6f 6e 20 61 64 64 | t,.source.or.destinatination.add |
| 33ca0 | 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 67 72 6f 75 70 2c | ress.will.be.added.to.the.group, |
| 33cc0 | 20 61 6e 64 20 74 68 69 73 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e | .and.this.element.will.remain.in |
| 33ce0 | 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 74 69 6d 65 6f 75 74 20 65 78 70 69 72 65 73 | .the.group.until.timeout.expires |
| 33d00 | 2e 20 49 66 20 6e 6f 20 74 69 6d 65 6f 75 74 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e | ..If.no.timeout.is.defined,.then |
| 33d20 | 20 74 68 65 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 | .the.element.will.remain.in.the. |
| 33d40 | 67 72 6f 75 70 20 75 6e 74 69 6c 20 6e 65 78 74 20 72 65 62 6f 6f 74 2c 20 6f 72 20 75 6e 74 69 | group.until.next.reboot,.or.unti |
| 33d60 | 6c 20 61 20 6e 65 77 20 63 6f 6d 6d 69 74 20 74 68 61 74 20 63 68 61 6e 67 65 73 20 66 69 72 65 | l.a.new.commit.that.changes.fire |
| 33d80 | 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 6f 6e 65 2e 00 41 6c 73 6f | wall.configuration.is.done..Also |
| 33da0 | 2c 20 73 70 65 63 69 66 69 63 20 74 69 6d 65 6f 75 74 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e | ,.specific.timeouts.can.be.defin |
| 33dc0 | 65 64 20 70 65 72 20 72 75 6c 65 2e 20 49 6e 20 63 61 73 65 20 72 75 6c 65 20 67 65 74 73 20 61 | ed.per.rule..In.case.rule.gets.a |
| 33de0 | 20 68 69 74 2c 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6e 61 74 69 6f | .hit,.a.source.or.destinatinatio |
| 33e00 | 6e 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 67 | n.address.will.be.added.to.the.g |
| 33e20 | 72 6f 75 70 2c 20 61 6e 64 20 74 68 69 73 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 | roup,.and.this.element.will.rema |
| 33e40 | 69 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 74 68 65 20 74 69 6d 65 6f 75 | in.in.the.group.until.the.timeou |
| 33e60 | 74 20 65 78 70 69 72 65 73 2e 20 49 66 20 6e 6f 20 74 69 6d 65 6f 75 74 20 69 73 20 64 65 66 69 | t.expires..If.no.timeout.is.defi |
| 33e80 | 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 | ned,.then.the.element.will.remai |
| 33ea0 | 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 6e 65 78 74 20 72 65 62 6f 6f 74 | n.in.the.group.until.next.reboot |
| 33ec0 | 2c 20 6f 72 20 75 6e 74 69 6c 20 61 20 6e 65 77 20 63 6f 6d 6d 69 74 20 74 68 61 74 20 63 68 61 | ,.or.until.a.new.commit.that.cha |
| 33ee0 | 6e 67 65 73 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 | nges.firewall.configuration.is.d |
| 33f00 | 6f 6e 65 2e 00 41 6c 74 65 72 6e 61 74 65 20 52 6f 75 74 69 6e 67 20 54 61 62 6c 65 73 00 41 6c | one..Alternate.Routing.Tables.Al |
| 33f20 | 74 65 72 6e 61 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 61 72 65 20 75 73 65 64 20 | ternate.routing.tables.are.used. |
| 33f40 | 77 69 74 68 20 70 6f 6c 69 63 79 20 62 61 73 65 64 20 72 6f 75 74 69 6e 67 20 62 79 20 75 74 69 | with.policy.based.routing.by.uti |
| 33f60 | 6c 69 7a 69 6e 67 20 3a 72 65 66 3a 60 76 72 66 60 2e 00 41 6c 74 65 72 6e 61 74 69 76 65 20 74 | lizing.:ref:`vrf`..Alternative.t |
| 33f80 | 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 20 61 64 64 | o.multicast,.the.remote.IPv4.add |
| 33fa0 | 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 20 63 61 6e 20 62 65 20 | ress.of.the.VXLAN.tunnel.can.be. |
| 33fc0 | 73 65 74 20 64 69 72 65 63 74 6c 79 2e 20 4c 65 74 27 73 20 63 68 61 6e 67 65 20 74 68 65 20 4d | set.directly..Let's.change.the.M |
| 33fe0 | 75 6c 74 69 63 61 73 74 20 65 78 61 6d 70 6c 65 20 66 72 6f 6d 20 61 62 6f 76 65 3a 00 41 6c 74 | ulticast.example.from.above:.Alt |
| 34000 | 65 72 6e 61 74 69 76 65 6c 79 20 74 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d | ernatively.to.multicast,.the.rem |
| 34020 | 6f 74 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 | ote.IPv4.address.of.the.VXLAN.tu |
| 34040 | 6e 6e 65 6c 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 20 4c 65 74 27 73 20 | nnel.can.be.set.directly..Let's. |
| 34060 | 63 68 61 6e 67 65 20 74 68 65 20 4d 75 6c 74 69 63 61 73 74 20 65 78 61 6d 70 6c 65 20 66 72 6f | change.the.Multicast.example.fro |
| 34080 | 6d 20 61 62 6f 76 65 3a 00 41 6c 77 61 79 73 20 65 78 63 6c 75 64 65 20 74 68 69 73 20 61 64 64 | m.above:.Always.exclude.this.add |
| 340a0 | 72 65 73 73 20 66 72 6f 6d 20 61 6e 79 20 64 65 66 69 6e 65 64 20 72 61 6e 67 65 2e 20 54 68 69 | ress.from.any.defined.range..Thi |
| 340c0 | 73 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 20 61 73 73 69 67 6e 65 64 | s.address.will.never.be.assigned |
| 340e0 | 20 62 79 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 2e 00 41 6e 20 2a 2a 69 6e 74 65 72 66 | .by.the.DHCP.server..An.**interf |
| 34100 | 61 63 65 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 | ace.group**.represents.a.collect |
| 34120 | 69 6f 6e 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2e 00 41 6e 20 41 53 20 69 73 20 61 20 63 6f | ion.of.interfaces..An.AS.is.a.co |
| 34140 | 6e 6e 65 63 74 65 64 20 67 72 6f 75 70 20 6f 66 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 49 50 20 | nnected.group.of.one.or.more.IP. |
| 34160 | 70 72 65 66 69 78 65 73 20 72 75 6e 20 62 79 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 6e 65 74 77 | prefixes.run.by.one.or.more.netw |
| 34180 | 6f 72 6b 20 6f 70 65 72 61 74 6f 72 73 20 77 68 69 63 68 20 68 61 73 20 61 20 53 49 4e 47 4c 45 | ork.operators.which.has.a.SINGLE |
| 341a0 | 20 61 6e 64 20 43 4c 45 41 52 4c 59 20 44 45 46 49 4e 45 44 20 72 6f 75 74 69 6e 67 20 70 6f 6c | .and.CLEARLY.DEFINED.routing.pol |
| 341c0 | 69 63 79 2e 00 41 6e 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 63 61 6e 20 62 65 20 | icy..An.Ethernet.Segment.can.be. |
| 341e0 | 63 6f 6e 66 69 67 75 72 65 64 20 62 79 20 73 70 65 63 69 66 79 69 6e 67 20 61 20 73 79 73 74 65 | configured.by.specifying.a.syste |
| 34200 | 6d 2d 4d 41 43 20 61 6e 64 20 61 20 6c 6f 63 61 6c 20 64 69 73 63 72 69 6d 69 6e 61 74 6f 72 20 | m-MAC.and.a.local.discriminator. |
| 34220 | 6f 72 20 61 20 63 6f 6d 70 6c 65 74 65 20 45 53 49 4e 41 4d 45 20 61 67 61 69 6e 73 74 20 74 68 | or.a.complete.ESINAME.against.th |
| 34240 | 65 20 62 6f 6e 64 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 50 45 2e 00 41 6e 20 49 | e.bond.interface.on.the.PE..An.I |
| 34260 | 50 76 34 20 54 43 50 20 66 69 6c 74 65 72 20 77 69 6c 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 70 | Pv4.TCP.filter.will.only.match.p |
| 34280 | 61 63 6b 65 74 73 20 77 69 74 68 20 61 6e 20 49 50 76 34 20 68 65 61 64 65 72 20 6c 65 6e 67 74 | ackets.with.an.IPv4.header.lengt |
| 342a0 | 68 20 6f 66 20 32 30 20 62 79 74 65 73 20 28 77 68 69 63 68 20 69 73 20 74 68 65 20 6d 61 6a 6f | h.of.20.bytes.(which.is.the.majo |
| 342c0 | 72 69 74 79 20 6f 66 20 49 50 76 34 20 70 61 63 6b 65 74 73 20 61 6e 79 77 61 79 29 2e 00 41 6e | rity.of.IPv4.packets.anyway)..An |
| 342e0 | 20 53 4e 4d 50 2d 6d 61 6e 61 67 65 64 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 73 69 73 74 73 20 6f | .SNMP-managed.network.consists.o |
| 34300 | 66 20 74 68 72 65 65 20 6b 65 79 20 63 6f 6d 70 6f 6e 65 6e 74 73 3a 00 41 6e 20 60 3c 69 6e 74 | f.three.key.components:.An.`<int |
| 34320 | 65 72 66 61 63 65 3e 60 20 73 70 65 63 69 66 79 69 6e 67 20 77 68 69 63 68 20 73 6c 61 76 65 20 | erface>`.specifying.which.slave. |
| 34340 | 69 73 20 74 68 65 20 70 72 69 6d 61 72 79 20 64 65 76 69 63 65 2e 20 54 68 65 20 73 70 65 63 69 | is.the.primary.device..The.speci |
| 34360 | 66 69 65 64 20 64 65 76 69 63 65 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 62 65 20 74 68 65 20 61 | fied.device.will.always.be.the.a |
| 34380 | 63 74 69 76 65 20 73 6c 61 76 65 20 77 68 69 6c 65 20 69 74 20 69 73 20 61 76 61 69 6c 61 62 6c | ctive.slave.while.it.is.availabl |
| 343a0 | 65 2e 20 4f 6e 6c 79 20 77 68 65 6e 20 74 68 65 20 70 72 69 6d 61 72 79 20 69 73 20 6f 66 66 2d | e..Only.when.the.primary.is.off- |
| 343c0 | 6c 69 6e 65 20 77 69 6c 6c 20 61 6c 74 65 72 6e 61 74 65 20 64 65 76 69 63 65 73 20 62 65 20 75 | line.will.alternate.devices.be.u |
| 343e0 | 73 65 64 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 6f 6e 65 20 73 6c 61 | sed..This.is.useful.when.one.sla |
| 34400 | 76 65 20 69 73 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 72 20 61 6e 6f 74 68 65 72 2c 20 65 2e | ve.is.preferred.over.another,.e. |
| 34420 | 67 2e 2c 20 77 68 65 6e 20 6f 6e 65 20 73 6c 61 76 65 20 68 61 73 20 68 69 67 68 65 72 20 74 68 | g.,.when.one.slave.has.higher.th |
| 34440 | 72 6f 75 67 68 70 75 74 20 74 68 61 6e 20 61 6e 6f 74 68 65 72 2e 00 41 6e 20 61 64 64 69 74 69 | roughput.than.another..An.additi |
| 34460 | 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 | onal.layer.of.symmetric-key.cryp |
| 34480 | 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 | to.can.be.used.on.top.of.the.asy |
| 344a0 | 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 | mmetric.crypto..An.additional.la |
| 344c0 | 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 | yer.of.symmetric-key.crypto.can. |
| 344e0 | 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 | be.used.on.top.of.the.asymmetric |
| 34500 | 20 63 72 79 70 74 6f 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 61 | .crypto..This.command.automatica |
| 34520 | 6c 6c 79 20 63 72 65 61 74 65 73 20 66 6f 72 20 79 6f 75 20 74 68 65 20 72 65 71 75 69 72 65 64 | lly.creates.for.you.the.required |
| 34540 | 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 50 53 4b | .CLI.command.to.install.this.PSK |
| 34560 | 20 66 6f 72 20 61 20 67 69 76 65 6e 20 70 65 65 72 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c | .for.a.given.peer..An.additional |
| 34580 | 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 | .layer.of.symmetric-key.crypto.c |
| 345a0 | 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 | an.be.used.on.top.of.the.asymmet |
| 345c0 | 72 69 63 20 63 72 79 70 74 6f 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 75 74 6f 6d 61 74 | ric.crypto..This.command.automat |
| 345e0 | 69 63 61 6c 6c 79 20 63 72 65 61 74 65 73 20 74 68 65 20 72 65 71 75 69 72 65 64 20 43 4c 49 20 | ically.creates.the.required.CLI. |
| 34600 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 50 53 4b 20 66 6f 72 20 | command.to.install.this.PSK.for. |
| 34620 | 61 20 67 69 76 65 6e 20 70 65 65 72 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 | a.given.peer..An.additional.laye |
| 34640 | 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 | r.of.symmetric-key.crypto.can.be |
| 34660 | 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 | .used.on.top.of.the.asymmetric.c |
| 34680 | 72 79 70 74 6f 2e 20 54 68 69 73 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 00 41 6e 20 61 64 76 61 | rypto..This.is.optional..An.adva |
| 346a0 | 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 73 63 68 65 6d 65 20 69 73 20 74 68 61 74 20 79 6f 75 | ntage.of.this.scheme.is.that.you |
| 346c0 | 20 67 65 74 20 61 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 69 74 73 20 6f | .get.a.real.interface.with.its.o |
| 346e0 | 77 6e 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 73 20 69 74 20 65 61 73 69 65 | wn.address,.which.makes.it.easie |
| 34700 | 72 20 74 6f 20 73 65 74 75 70 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 6f 72 20 75 73 65 20 | r.to.setup.static.routes.or.use. |
| 34720 | 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 77 69 74 68 6f 75 | dynamic.routing.protocols.withou |
| 34740 | 74 20 68 61 76 69 6e 67 20 74 6f 20 6d 6f 64 69 66 79 20 49 50 73 65 63 20 70 6f 6c 69 63 69 65 | t.having.to.modify.IPsec.policie |
| 34760 | 73 2e 20 54 68 65 20 6f 74 68 65 72 20 61 64 76 61 6e 74 61 67 65 20 69 73 20 74 68 61 74 20 69 | s..The.other.advantage.is.that.i |
| 34780 | 74 20 67 72 65 61 74 6c 79 20 73 69 6d 70 6c 69 66 69 65 73 20 72 6f 75 74 65 72 20 74 6f 20 72 | t.greatly.simplifies.router.to.r |
| 347a0 | 6f 75 74 65 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 63 61 6e 20 62 | outer.communication,.which.can.b |
| 347c0 | 65 20 74 72 69 63 6b 79 20 77 69 74 68 20 70 6c 61 69 6e 20 49 50 73 65 63 20 62 65 63 61 75 73 | e.tricky.with.plain.IPsec.becaus |
| 347e0 | 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6f 75 74 67 6f 69 6e 67 20 61 64 64 72 65 73 73 20 | e.the.external.outgoing.address. |
| 34800 | 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 75 73 75 61 6c 6c 79 20 64 6f 65 73 6e 27 74 20 6d 61 | of.the.router.usually.doesn't.ma |
| 34820 | 74 63 68 20 74 68 65 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6f 66 20 61 20 74 79 70 69 63 61 | tch.the.IPsec.policy.of.a.typica |
| 34840 | 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 73 65 74 75 70 20 61 6e 64 20 79 6f 75 20 77 6f 75 | l.site-to-site.setup.and.you.wou |
| 34860 | 6c 64 20 6e 65 65 64 20 74 6f 20 61 64 64 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 | ld.need.to.add.special.configura |
| 34880 | 74 69 6f 6e 20 66 6f 72 20 69 74 2c 20 6f 72 20 61 64 6a 75 73 74 20 74 68 65 20 73 6f 75 72 63 | tion.for.it,.or.adjust.the.sourc |
| 348a0 | 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 | e.address.of.the.outgoing.traffi |
| 348c0 | 63 20 6f 66 20 79 6f 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 20 47 52 45 2f 49 50 73 65 | c.of.your.applications..GRE/IPse |
| 348e0 | 63 20 68 61 73 20 6e 6f 20 73 75 63 68 20 70 72 6f 62 6c 65 6d 20 61 6e 64 20 69 73 20 63 6f 6d | c.has.no.such.problem.and.is.com |
| 34900 | 70 6c 65 74 65 6c 79 20 74 72 61 6e 73 70 61 72 65 6e 74 20 66 6f 72 20 61 70 70 6c 69 63 61 74 | pletely.transparent.for.applicat |
| 34920 | 69 6f 6e 73 2e 00 41 6e 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 73 63 68 65 6d | ions..An.advantage.of.this.schem |
| 34940 | 65 20 69 73 20 74 68 61 74 20 79 6f 75 20 67 65 74 20 61 20 72 65 61 6c 20 69 6e 74 65 72 66 61 | e.is.that.you.get.a.real.interfa |
| 34960 | 63 65 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d | ce.with.its.own.address,.which.m |
| 34980 | 61 6b 65 73 20 69 74 20 65 61 73 69 65 72 20 74 6f 20 73 65 74 75 70 20 73 74 61 74 69 63 20 72 | akes.it.easier.to.setup.static.r |
| 349a0 | 6f 75 74 65 73 20 6f 72 20 75 73 65 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f | outes.or.use.dynamic.routing.pro |
| 349c0 | 74 6f 63 6f 6c 73 20 77 69 74 68 6f 75 74 20 68 61 76 69 6e 67 20 74 6f 20 6d 6f 64 69 66 79 20 | tocols.without.having.to.modify. |
| 349e0 | 49 50 73 65 63 20 70 6f 6c 69 63 69 65 73 2e 20 54 68 65 20 6f 74 68 65 72 20 61 64 76 61 6e 74 | IPsec.policies..The.other.advant |
| 34a00 | 61 67 65 20 69 73 20 74 68 61 74 20 69 74 20 67 72 65 61 74 6c 79 20 73 69 6d 70 6c 69 66 69 65 | age.is.that.it.greatly.simplifie |
| 34a20 | 73 20 72 6f 75 74 65 72 20 74 6f 20 72 6f 75 74 65 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e | s.router.to.router.communication |
| 34a40 | 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 74 72 69 63 6b 79 20 77 69 74 68 20 70 6c 61 69 6e | ,.which.can.be.tricky.with.plain |
| 34a60 | 20 49 50 73 65 63 20 62 65 63 61 75 73 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6f 75 74 67 | .IPsec.because.the.external.outg |
| 34a80 | 6f 69 6e 67 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 75 73 75 61 6c | oing.address.of.the.router.usual |
| 34aa0 | 6c 79 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 74 68 65 20 49 50 73 65 63 20 70 6f 6c 69 63 | ly.doesn't.match.the.IPsec.polic |
| 34ac0 | 79 20 6f 66 20 74 79 70 69 63 61 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 73 65 74 75 70 20 | y.of.typical.site-to-site.setup. |
| 34ae0 | 61 6e 64 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 | and.you.need.to.add.special.conf |
| 34b00 | 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 69 74 2c 20 6f 72 20 61 64 6a 75 73 74 20 74 68 65 20 | iguration.for.it,.or.adjust.the. |
| 34b20 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 | source.address.for.outgoing.traf |
| 34b40 | 66 69 63 20 6f 66 20 79 6f 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 20 47 52 45 2f 49 50 | fic.of.your.applications..GRE/IP |
| 34b60 | 73 65 63 20 68 61 73 20 6e 6f 20 73 75 63 68 20 70 72 6f 62 6c 65 6d 20 61 6e 64 20 69 73 20 63 | sec.has.no.such.problem.and.is.c |
| 34b80 | 6f 6d 70 6c 65 74 65 6c 79 20 74 72 61 6e 73 70 61 72 65 6e 74 20 66 6f 72 20 74 68 65 20 61 70 | ompletely.transparent.for.the.ap |
| 34ba0 | 70 6c 69 63 61 74 69 6f 6e 73 2e 00 41 6e 20 61 67 65 6e 74 20 69 73 20 61 20 6e 65 74 77 6f 72 | plications..An.agent.is.a.networ |
| 34bc0 | 6b 2d 6d 61 6e 61 67 65 6d 65 6e 74 20 73 6f 66 74 77 61 72 65 20 6d 6f 64 75 6c 65 20 74 68 61 | k-management.software.module.tha |
| 34be0 | 74 20 72 65 73 69 64 65 73 20 6f 6e 20 61 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 2e 20 41 | t.resides.on.a.managed.device..A |
| 34c00 | 6e 20 61 67 65 6e 74 20 68 61 73 20 6c 6f 63 61 6c 20 6b 6e 6f 77 6c 65 64 67 65 20 6f 66 20 6d | n.agent.has.local.knowledge.of.m |
| 34c20 | 61 6e 61 67 65 6d 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6e 64 20 74 72 61 6e 73 6c | anagement.information.and.transl |
| 34c40 | 61 74 65 73 20 74 68 61 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 6f 72 20 66 72 6f 6d | ates.that.information.to.or.from |
| 34c60 | 20 61 6e 20 53 4e 4d 50 2d 73 70 65 63 69 66 69 63 20 66 6f 72 6d 2e 00 41 6e 20 61 6c 74 65 72 | .an.SNMP-specific.form..An.alter |
| 34c80 | 6e 61 74 65 20 63 6f 6d 6d 61 6e 64 20 63 6f 75 6c 64 20 62 65 20 22 6d 70 6c 73 2d 74 65 20 6f | nate.command.could.be."mpls-te.o |
| 34ca0 | 6e 22 20 28 54 72 61 66 66 69 63 20 45 6e 67 69 6e 65 65 72 69 6e 67 29 00 41 6e 20 61 72 62 69 | n".(Traffic.Engineering).An.arbi |
| 34cc0 | 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 | trary.netmask.can.be.applied.to. |
| 34ce0 | 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 | mask.addresses.to.only.match.aga |
| 34d00 | 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 00 41 6e 20 61 72 62 69 | inst.a.specific.portion..An.arbi |
| 34d20 | 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 | trary.netmask.can.be.applied.to. |
| 34d40 | 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 | mask.addresses.to.only.match.aga |
| 34d60 | 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 | inst.a.specific.portion..This.is |
| 34d80 | 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 | .particularly.useful.with.IPv6.a |
| 34da0 | 6e 64 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 61 73 20 72 75 6c 65 | nd.a.zone-based.firewall.as.rule |
| 34dc0 | 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 | s.will.remain.valid.if.the.IPv6. |
| 34de0 | 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 | prefix.changes.and.the.host.port |
| 34e00 | 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 | ion.of.systems.IPv6.address.is.s |
| 34e20 | 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f | tatic.(for.example,.with.SLAAC.o |
| 34e40 | 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 | r.`tokenised.IPv6.addresses.<htt |
| 34e60 | 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 | ps://datatracker.ietf.org/doc/id |
| 34e80 | 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 | /draft-chown-6man-tokenised-ipv6 |
| 34ea0 | 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e 20 61 72 62 69 74 | -identifiers-02.txt>`_).An.arbit |
| 34ec0 | 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d | rary.netmask.can.be.applied.to.m |
| 34ee0 | 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 | ask.addresses.to.only.match.agai |
| 34f00 | 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 | nst.a.specific.portion..This.is. |
| 34f20 | 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 6e | particularly.useful.with.IPv6.an |
| 34f40 | 64 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 61 73 20 72 75 6c 65 73 | d.a.zone-based.firewall.as.rules |
| 34f60 | 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 70 | .will.remain.valid.if.the.IPv6.p |
| 34f80 | 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 | refix.changes.and.the.host.porti |
| 34fa0 | 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 74 | on.of.systems.IPv6.address.is.st |
| 34fc0 | 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 | atic.(for.example,.with.SLAAC.or |
| 34fe0 | 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 | .`tokenised.IPv6.addresses.<http |
| 35000 | 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f | s://datatracker.ietf.org/doc/id/ |
| 35020 | 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d | draft-chown-6man-tokenised-ipv6- |
| 35040 | 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 2e 00 41 6e 20 61 72 62 69 74 | identifiers-02.txt>`_)..An.arbit |
| 35060 | 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d | rary.netmask.can.be.applied.to.m |
| 35080 | 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 | ask.addresses.to.only.match.agai |
| 350a0 | 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 | nst.a.specific.portion..This.is. |
| 350c0 | 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 73 | particularly.useful.with.IPv6.as |
| 350e0 | 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 | .rules.will.remain.valid.if.the. |
| 35100 | 49 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 | IPv6.prefix.changes.and.the.host |
| 35120 | 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 | .portion.of.systems.IPv6.address |
| 35140 | 20 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c | .is.static.(for.example,.with.SL |
| 35160 | 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 | AAC.or.`tokenised.IPv6.addresses |
| 35180 | 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 20 2f | .<https://datatracker.ietf.org./ |
| 351a0 | 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 | doc/id/draft-chown-6man-tokenise |
| 351c0 | 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e | d-ipv6-identifiers-02.txt>`_).An |
| 351e0 | 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 | .arbitrary.netmask.can.be.applie |
| 35200 | 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 | d.to.mask.addresses.to.only.matc |
| 35220 | 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 | h.against.a.specific.portion..Th |
| 35240 | 69 73 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c 20 77 69 74 68 20 49 | is.is.particularly.useful.with.I |
| 35260 | 50 76 36 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 | Pv6.as.rules.will.remain.valid.i |
| 35280 | 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 68 | f.the.IPv6.prefix.changes.and.th |
| 352a0 | 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 61 | e.host.portion.of.systems.IPv6.a |
| 352c0 | 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 | ddress.is.static.(for.example,.w |
| 352e0 | 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 64 | ith.SLAAC.or.`tokenised.IPv6.add |
| 35300 | 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 | resses.<https://datatracker.ietf |
| 35320 | 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b | .org/doc/id/draft-chown-6man-tok |
| 35340 | 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 | enised-ipv6-identifiers-02.txt>` |
| 35360 | 5f 29 00 41 6e 20 62 61 73 69 63 20 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 74 6f 20 7a 6f 6e 65 | _).An.basic.introduction.to.zone |
| 35380 | 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 60 68 | -based.firewalls.can.be.found.`h |
| 353a0 | 65 72 65 20 3c 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f 72 74 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f | ere.<https://support.vyos.io/en/ |
| 353c0 | 6b 62 2f 61 72 74 69 63 6c 65 73 2f 61 2d 70 72 69 6d 65 72 2d 74 6f 2d 7a 6f 6e 65 2d 62 61 73 | kb/articles/a-primer-to-zone-bas |
| 353e0 | 65 64 2d 66 69 72 65 77 61 6c 6c 3e 60 5f 2c 20 61 6e 64 20 61 6e 20 65 78 61 6d 70 6c 65 20 61 | ed-firewall>`_,.and.an.example.a |
| 35400 | 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 6c 65 73 2d 7a 6f 6e 65 2d 70 6f 6c 69 63 79 60 2e 00 41 | t.:ref:`examples-zone-policy`..A |
| 35420 | 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 | n.example.of.a.configuration.tha |
| 35440 | 74 20 73 65 6e 64 73 20 60 60 74 65 6c 65 67 72 61 66 60 60 20 6d 65 74 72 69 63 73 20 74 6f 20 | t.sends.``telegraf``.metrics.to. |
| 35460 | 72 65 6d 6f 74 65 20 60 60 49 6e 66 6c 75 78 44 42 20 32 60 60 00 41 6e 20 65 78 61 6d 70 6c 65 | remote.``InfluxDB.2``.An.example |
| 35480 | 20 6f 66 20 63 72 65 61 74 69 6e 67 20 61 20 56 4c 41 4e 2d 61 77 61 72 65 20 62 72 69 64 67 65 | .of.creating.a.VLAN-aware.bridge |
| 354a0 | 20 69 73 20 61 73 20 66 6f 6c 6c 6f 77 73 3a 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 6b 65 | .is.as.follows:.An.example.of.ke |
| 354c0 | 79 20 67 65 6e 65 72 61 74 69 6f 6e 3a 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 74 68 65 20 | y.generation:.An.example.of.the. |
| 354e0 | 64 61 74 61 20 63 61 70 74 75 72 65 64 20 62 79 20 61 20 46 52 45 45 52 41 44 49 55 53 20 73 65 | data.captured.by.a.FREERADIUS.se |
| 35500 | 72 76 65 72 20 77 69 74 68 20 73 71 6c 20 61 63 63 6f 75 6e 74 69 6e 67 3a 00 41 6e 20 65 78 61 | rver.with.sql.accounting:.An.exa |
| 35520 | 6d 70 6c 65 3a 00 41 6e 20 6f 70 74 69 6f 6e 20 74 68 61 74 20 74 61 6b 65 73 20 61 20 71 75 6f | mple:.An.option.that.takes.a.quo |
| 35540 | 74 65 64 20 73 74 72 69 6e 67 20 69 73 20 73 65 74 20 62 79 20 72 65 70 6c 61 63 69 6e 67 20 61 | ted.string.is.set.by.replacing.a |
| 35560 | 6c 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 74 65 72 73 20 77 69 74 68 20 74 68 65 20 73 74 72 | ll.quote.characters.with.the.str |
| 35580 | 69 6e 67 20 60 60 26 71 75 6f 74 3b 60 60 20 69 6e 73 69 64 65 20 74 68 65 20 73 74 61 74 69 63 | ing.``"``.inside.the.static |
| 355a0 | 2d 6d 61 70 70 69 6e 67 2d 70 61 72 61 6d 65 74 65 72 73 20 76 61 6c 75 65 2e 20 54 68 65 20 72 | -mapping-parameters.value..The.r |
| 355c0 | 65 73 75 6c 74 69 6e 67 20 6c 69 6e 65 20 69 6e 20 64 68 63 70 64 2e 63 6f 6e 66 20 77 69 6c 6c | esulting.line.in.dhcpd.conf.will |
| 355e0 | 20 62 65 20 60 60 6f 70 74 69 6f 6e 20 70 78 65 6c 69 6e 75 78 2e 63 6f 6e 66 69 67 66 69 6c 65 | .be.``option.pxelinux.configfile |
| 35600 | 20 22 70 78 65 6c 69 6e 75 78 2e 63 66 67 2f 30 31 2d 30 30 2d 31 35 2d 31 37 2d 34 34 2d 32 64 | ."pxelinux.cfg/01-00-15-17-44-2d |
| 35620 | 2d 61 61 22 3b 60 60 2e 00 41 6e 61 6c 79 73 69 73 20 6f 6e 20 77 68 61 74 20 68 61 70 70 65 6e | -aa";``..Analysis.on.what.happen |
| 35640 | 73 20 66 6f 72 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 3a 00 41 6e 64 20 62 61 | s.for.desired.connection:.And.ba |
| 35660 | 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 | se.chain.for.traffic.generated.b |
| 35680 | 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | y.the.router.is.``set.firewall.i |
| 356a0 | 70 76 34 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d | pv4.output....``,.where.two.sub- |
| 356c0 | 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a | chains.are.available:.**filter** |
| 356e0 | 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 | .and.**raw**:.And.base.chain.for |
| 35700 | 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 | .traffic.generated.by.the.router |
| 35720 | 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 66 | .is.``set.firewall.ipv4.output.f |
| 35740 | 69 6c 74 65 72 20 2e 2e 2e 60 60 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 | ilter....``.And.base.chain.for.t |
| 35760 | 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 | raffic.generated.by.the.router.i |
| 35780 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c | s.``set.firewall.ipv6.output.fil |
| 357a0 | 74 65 72 20 2e 2e 2e 60 60 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 | ter....``.And.base.chain.for.tra |
| 357c0 | 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 | ffic.generated.by.the.router.is. |
| 357e0 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 | ``set.firewall.ipv6.output.filte |
| 35800 | 72 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 | r....``,.where.two.sub-chains.ar |
| 35820 | 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 | e.available:.**filter**.and.**ra |
| 35840 | 77 2a 2a 3a 00 41 6e 64 20 63 6f 6e 74 65 6e 74 20 6f 66 20 74 68 65 20 73 63 72 69 70 74 3a 00 | w**:.And.content.of.the.script:. |
| 35860 | 41 6e 64 20 66 6f 72 20 69 70 76 36 3a 00 41 6e 64 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 68 | And.for.ipv6:.And.for.traffic.th |
| 35880 | 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 62 72 69 64 67 65 20 69 74 | at.originates.from.the.bridge.it |
| 358a0 | 73 65 6c 66 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 | self,.the.base.chain.is.**output |
| 358c0 | 2a 2a 2c 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 | **,.base.command.is.``set.firewa |
| 358e0 | 6c 6c 20 62 72 69 64 67 65 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 61 | ll.bridge.output.filter....``,.a |
| 35900 | 6e 64 20 74 68 65 20 70 61 74 68 20 69 73 3a 00 41 6e 64 20 6e 65 78 74 2c 20 73 6f 6d 65 20 63 | nd.the.path.is:.And.next,.some.c |
| 35920 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 20 77 68 65 72 65 20 67 72 6f 75 70 | onfiguration.example.where.group |
| 35940 | 73 20 61 72 65 20 75 73 65 64 3a 00 41 6e 64 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 | s.are.used:.And.op-mode.commands |
| 35960 | 3a 00 41 6e 64 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 | :.And.the.base.chain.for.traffic |
| 35980 | 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 | .generated.by.the.router.is.``se |
| 359a0 | 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 | t.firewall.ipv4.output....``,.wh |
| 359c0 | 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 | ere.two.sub-chains.are.available |
| 359e0 | 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 74 68 | :.**filter**.and.**raw**:.And.th |
| 35a00 | 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 | e.base.chain.for.traffic.generat |
| 35a20 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 | ed.by.the.router.is.``set.firewa |
| 35a40 | 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 | ll.ipv6.output....``,.where.two. |
| 35a60 | 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 | sub-chains.are.available:.**filt |
| 35a80 | 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 74 68 65 20 64 69 66 66 65 72 | er**.and.**raw**:.And.the.differ |
| 35aa0 | 65 6e 74 20 49 50 76 34 20 2a 2a 72 65 73 65 74 2a 2a 20 63 6f 6d 6d 61 6e 64 73 20 61 76 61 69 | ent.IPv4.**reset**.commands.avai |
| 35ac0 | 6c 61 62 6c 65 3a 00 41 6e 64 20 74 68 65 6e 20 68 61 73 68 20 69 73 20 72 65 64 75 63 65 64 20 | lable:.And.then.hash.is.reduced. |
| 35ae0 | 6d 6f 64 75 6c 6f 20 73 6c 61 76 65 20 63 6f 75 6e 74 2e 00 41 6e 64 2c 20 74 6f 20 70 72 69 6e | modulo.slave.count..And,.to.prin |
| 35b00 | 74 20 6f 6e 6c 79 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 69 6e 66 6f 72 6d 61 74 69 | t.only.bridge.firewall.informati |
| 35b20 | 6f 6e 3a 00 41 6e 6f 74 68 65 72 20 74 65 72 6d 20 6f 66 74 65 6e 20 75 73 65 64 20 66 6f 72 20 | on:.Another.term.often.used.for. |
| 35b40 | 44 4e 41 54 20 69 73 20 2a 2a 31 2d 74 6f 2d 31 20 4e 41 54 2a 2a 2e 20 46 6f 72 20 61 20 31 2d | DNAT.is.**1-to-1.NAT**..For.a.1- |
| 35b60 | 74 6f 2d 31 20 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 62 6f 74 68 20 44 4e 41 | to-1.NAT.configuration,.both.DNA |
| 35b80 | 54 20 61 6e 64 20 53 4e 41 54 20 61 72 65 20 75 73 65 64 20 74 6f 20 4e 41 54 20 61 6c 6c 20 74 | T.and.SNAT.are.used.to.NAT.all.t |
| 35ba0 | 72 61 66 66 69 63 20 66 72 6f 6d 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 | raffic.from.an.external.IP.addre |
| 35bc0 | 73 73 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 | ss.to.an.internal.IP.address.and |
| 35be0 | 20 76 69 63 65 2d 76 65 72 73 61 2e 00 41 6e 6f 74 68 65 72 20 74 68 69 6e 67 20 74 6f 20 6b 65 | .vice-versa..Another.thing.to.ke |
| 35c00 | 65 70 20 69 6e 20 6d 69 6e 64 20 77 69 74 68 20 4c 44 50 20 69 73 20 74 68 61 74 20 6d 75 63 68 | ep.in.mind.with.LDP.is.that.much |
| 35c20 | 20 6c 69 6b 65 20 42 47 50 2c 20 69 74 20 69 73 20 61 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 | .like.BGP,.it.is.a.protocol.that |
| 35c40 | 20 72 75 6e 73 20 6f 6e 20 74 6f 70 20 6f 66 20 54 43 50 2e 20 49 74 20 68 6f 77 65 76 65 72 20 | .runs.on.top.of.TCP..It.however. |
| 35c60 | 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 6e 20 61 62 69 6c 69 74 79 20 74 6f 20 64 6f 20 73 | does.not.have.an.ability.to.do.s |
| 35c80 | 6f 6d 65 74 68 69 6e 67 20 6c 69 6b 65 20 61 20 72 65 66 72 65 73 68 20 63 61 70 61 62 69 6c 69 | omething.like.a.refresh.capabili |
| 35ca0 | 74 79 20 6c 69 6b 65 20 42 47 50 73 20 72 6f 75 74 65 20 72 65 66 72 65 73 68 20 63 61 70 61 62 | ty.like.BGPs.route.refresh.capab |
| 35cc0 | 69 6c 69 74 79 2e 20 54 68 65 72 65 66 6f 72 65 20 6f 6e 65 20 6d 69 67 68 74 20 68 61 76 65 20 | ility..Therefore.one.might.have. |
| 35ce0 | 74 6f 20 72 65 73 65 74 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 66 6f 72 20 61 20 63 61 70 61 | to.reset.the.neighbor.for.a.capa |
| 35d00 | 62 69 6c 69 74 79 20 63 68 61 6e 67 65 20 6f 72 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | bility.change.or.a.configuration |
| 35d20 | 20 63 68 61 6e 67 65 20 74 6f 20 77 6f 72 6b 2e 00 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f | .change.to.work..Apple.iOS/iPadO |
| 35d40 | 53 20 28 31 34 2e 32 2b 29 00 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 65 78 70 65 63 | S.(14.2+).Apple.iOS/iPadOS.expec |
| 35d60 | 74 73 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 | ts.the.server.name.to.be.also.us |
| 35d80 | 65 64 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 | ed.in.the.server's.certificate.c |
| 35da0 | 6f 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 | ommon.name,.so.it's.best.to.use. |
| 35dc0 | 74 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 | this.DNS.name.for.your.VPN.conne |
| 35de0 | 63 74 69 6f 6e 2e 00 41 70 70 6c 79 20 61 20 72 6f 75 74 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 | ction..Apply.a.route-map.filter. |
| 35e00 | 74 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 | to.routes.for.the.specified.prot |
| 35e20 | 6f 63 6f 6c 2e 00 41 70 70 6c 79 20 61 20 72 6f 75 74 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 | ocol..Apply.a.route-map.filter.t |
| 35e40 | 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f | o.routes.for.the.specified.proto |
| 35e60 | 63 6f 6c 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e | col..The.following.protocols.can |
| 35e80 | 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 | .be.used:.any,.babel,.bgp,.conne |
| 35ea0 | 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c | cted,.eigrp,.isis,.kernel,.ospf, |
| 35ec0 | 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 41 70 70 6c 79 20 61 20 72 6f 75 74 | .rip,.static,.table.Apply.a.rout |
| 35ee0 | 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 | e-map.filter.to.routes.for.the.s |
| 35f00 | 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | pecified.protocol..The.following |
| 35f20 | 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 | .protocols.can.be.used:.any,.bab |
| 35f40 | 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c | el,.bgp,.connected,.isis,.kernel |
| 35f60 | 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 41 | ,.ospfv3,.ripng,.static,.table.A |
| 35f80 | 70 70 6c 79 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 2a 2a 69 6e 62 6f 75 6e 64 | pply.routing.policy.to.**inbound |
| 35fa0 | 2a 2a 20 64 69 72 65 63 74 69 6f 6e 20 6f 66 20 6f 75 74 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 | **.direction.of.out.VLAN.interfa |
| 35fc0 | 63 65 73 00 41 70 70 6c 79 69 6e 67 20 61 20 52 75 6c 65 2d 53 65 74 20 74 6f 20 61 20 5a 6f 6e | ces.Applying.a.Rule-Set.to.a.Zon |
| 35fe0 | 65 00 41 70 70 6c 79 69 6e 67 20 61 20 52 75 6c 65 2d 53 65 74 20 74 6f 20 61 6e 20 49 6e 74 65 | e.Applying.a.Rule-Set.to.an.Inte |
| 36000 | 72 66 61 63 65 00 41 70 70 6c 79 69 6e 67 20 61 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 00 | rface.Applying.a.traffic.policy. |
| 36020 | 41 72 65 61 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 41 72 65 61 20 69 64 65 6e 74 69 66 69 | Area.Configuration.Area.identifi |
| 36040 | 65 72 3a 20 60 60 30 30 30 31 60 60 20 49 53 2d 49 53 20 61 72 65 61 20 6e 75 6d 62 65 72 20 28 | er:.``0001``.IS-IS.area.number.( |
| 36060 | 6e 75 6d 62 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 29 00 41 72 65 61 20 69 64 65 6e | numberical.area.``1``).Area.iden |
| 36080 | 74 69 66 69 65 72 3a 20 60 60 30 30 30 31 60 60 20 49 53 2d 49 53 20 61 72 65 61 20 6e 75 6d 62 | tifier:.``0001``.IS-IS.area.numb |
| 360a0 | 65 72 20 28 6e 75 6d 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 29 00 41 72 65 61 20 69 | er.(numerical.area.``1``).Area.i |
| 360c0 | 64 65 6e 74 69 66 69 65 72 3a 20 60 60 30 30 30 31 60 60 20 4f 70 65 6e 46 61 62 72 69 63 20 61 | dentifier:.``0001``.OpenFabric.a |
| 360e0 | 72 65 61 20 6e 75 6d 62 65 72 20 28 6e 75 6d 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 31 60 60 | rea.number.(numerical.area.``1`` |
| 36100 | 29 00 41 72 67 75 6d 65 6e 74 73 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 70 61 73 73 65 64 | ).Arguments.which.will.be.passed |
| 36120 | 20 74 6f 20 74 68 65 20 65 78 65 63 75 74 61 62 6c 65 2e 00 41 72 69 73 74 61 20 45 4f 53 00 41 | .to.the.executable..Arista.EOS.A |
| 36140 | 72 75 62 61 2f 48 50 00 41 73 20 49 6e 74 65 72 6e 65 74 20 77 69 64 65 20 50 4d 54 55 20 64 69 | ruba/HP.As.Internet.wide.PMTU.di |
| 36160 | 73 63 6f 76 65 72 79 20 72 61 72 65 6c 79 20 77 6f 72 6b 73 2c 20 77 65 20 73 6f 6d 65 74 69 6d | scovery.rarely.works,.we.sometim |
| 36180 | 65 73 20 6e 65 65 64 20 74 6f 20 63 6c 61 6d 70 20 6f 75 72 20 54 43 50 20 4d 53 53 20 76 61 6c | es.need.to.clamp.our.TCP.MSS.val |
| 361a0 | 75 65 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 2e 20 54 68 69 73 20 69 73 20 | ue.to.a.specific.value..This.is. |
| 361c0 | 61 20 66 69 65 6c 64 20 69 6e 20 74 68 65 20 54 43 50 20 6f 70 74 69 6f 6e 73 20 70 61 72 74 20 | a.field.in.the.TCP.options.part. |
| 361e0 | 6f 66 20 61 20 53 59 4e 20 70 61 63 6b 65 74 2e 20 42 79 20 73 65 74 74 69 6e 67 20 74 68 65 20 | of.a.SYN.packet..By.setting.the. |
| 36200 | 4d 53 53 20 76 61 6c 75 65 2c 20 79 6f 75 20 61 72 65 20 74 65 6c 6c 69 6e 67 20 74 68 65 20 72 | MSS.value,.you.are.telling.the.r |
| 36220 | 65 6d 6f 74 65 20 73 69 64 65 20 75 6e 65 71 75 69 76 6f 63 61 6c 6c 79 20 27 64 6f 20 6e 6f 74 | emote.side.unequivocally.'do.not |
| 36240 | 20 74 72 79 20 74 6f 20 73 65 6e 64 20 6d 65 20 70 61 63 6b 65 74 73 20 62 69 67 67 65 72 20 74 | .try.to.send.me.packets.bigger.t |
| 36260 | 68 61 6e 20 74 68 69 73 20 76 61 6c 75 65 27 2e 00 41 73 20 53 53 54 50 20 70 72 6f 76 69 64 65 | han.this.value'..As.SSTP.provide |
| 36280 | 73 20 50 50 50 20 76 69 61 20 61 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 20 74 68 65 20 | s.PPP.via.a.SSL/TLS.channel.the. |
| 362a0 | 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 70 75 62 6c 69 63 61 6c 6c 79 20 73 69 67 6e 65 64 20 | use.of.either.publically.signed. |
| 362c0 | 63 65 72 74 69 66 69 63 61 74 65 73 20 61 73 20 77 65 6c 6c 20 61 73 20 61 20 70 72 69 76 61 74 | certificates.as.well.as.a.privat |
| 362e0 | 65 20 50 4b 49 20 69 73 20 72 65 71 75 69 72 65 64 2e 00 41 73 20 53 53 54 50 20 70 72 6f 76 69 | e.PKI.is.required..As.SSTP.provi |
| 36300 | 64 65 73 20 50 50 50 20 76 69 61 20 61 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 20 74 68 | des.PPP.via.a.SSL/TLS.channel.th |
| 36320 | 65 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 70 75 62 6c 69 63 6c 79 20 73 69 67 6e 65 64 20 | e.use.of.either.publicly.signed. |
| 36340 | 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 70 72 69 76 61 74 65 20 50 4b 49 20 69 73 20 72 | certificates.or.private.PKI.is.r |
| 36360 | 65 71 75 69 72 65 64 2e 00 41 73 20 56 79 4f 53 20 69 73 20 4c 69 6e 75 78 20 62 61 73 65 64 20 | equired..As.VyOS.is.Linux.based. |
| 36380 | 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 75 73 65 64 20 69 73 20 6e 6f 74 20 75 73 69 | the.default.port.used.is.not.usi |
| 363a0 | 6e 67 20 34 37 38 39 20 61 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 49 41 4e 41 2d 61 73 73 69 | ng.4789.as.the.default.IANA-assi |
| 363c0 | 67 6e 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 | gned.destination.UDP.port.number |
| 363e0 | 2e 20 49 6e 73 74 65 61 64 20 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 4c 69 6e 75 78 20 64 65 | ..Instead.VyOS.uses.the.Linux.de |
| 36400 | 66 61 75 6c 74 20 70 6f 72 74 20 6f 66 20 38 34 37 32 2e 00 41 73 20 56 79 4f 53 20 69 73 20 62 | fault.port.of.8472..As.VyOS.is.b |
| 36420 | 61 73 65 64 20 6f 6e 20 4c 69 6e 75 78 20 61 6e 64 20 74 68 65 72 65 20 77 61 73 20 6e 6f 20 6f | ased.on.Linux.and.there.was.no.o |
| 36440 | 66 66 69 63 69 61 6c 20 49 41 4e 41 20 70 6f 72 74 20 61 73 73 69 67 6e 65 64 20 66 6f 72 20 56 | fficial.IANA.port.assigned.for.V |
| 36460 | 58 4c 41 4e 2c 20 56 79 4f 53 20 75 73 65 73 20 61 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 6f | XLAN,.VyOS.uses.a.default.port.o |
| 36480 | 66 20 38 34 37 32 2e 20 59 6f 75 20 63 61 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 6f 72 74 20 | f.8472..You.can.change.the.port. |
| 364a0 | 6f 6e 20 61 20 70 65 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 20 74 | on.a.per.VXLAN.interface.basis.t |
| 364c0 | 6f 20 67 65 74 20 69 74 20 77 6f 72 6b 69 6e 67 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 | o.get.it.working.across.multiple |
| 364e0 | 20 76 65 6e 64 6f 72 73 2e 00 41 73 20 56 79 4f 53 20 69 73 20 62 61 73 65 64 20 6f 6e 20 4c 69 | .vendors..As.VyOS.is.based.on.Li |
| 36500 | 6e 75 78 20 69 74 20 6c 65 76 65 72 61 67 65 73 20 69 74 73 20 66 69 72 65 77 61 6c 6c 2e 20 54 | nux.it.leverages.its.firewall..T |
| 36520 | 68 65 20 4e 65 74 66 69 6c 74 65 72 20 70 72 6f 6a 65 63 74 20 63 72 65 61 74 65 64 20 69 70 74 | he.Netfilter.project.created.ipt |
| 36540 | 61 62 6c 65 73 20 61 6e 64 20 69 74 73 20 73 75 63 63 65 73 73 6f 72 20 6e 66 74 61 62 6c 65 73 | ables.and.its.successor.nftables |
| 36560 | 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 20 74 6f 20 77 6f 72 6b 20 64 69 | .for.the.Linux.kernel.to.work.di |
| 36580 | 72 65 63 74 6c 79 20 6f 6e 20 70 61 63 6b 65 74 20 64 61 74 61 20 66 6c 6f 77 73 2e 20 54 68 69 | rectly.on.packet.data.flows..Thi |
| 365a0 | 73 20 6e 6f 77 20 65 78 74 65 6e 64 73 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 7a 6f 6e | s.now.extends.the.concept.of.zon |
| 365c0 | 65 2d 62 61 73 65 64 20 73 65 63 75 72 69 74 79 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 6d 61 | e-based.security.to.allow.for.ma |
| 365e0 | 6e 69 70 75 6c 61 74 69 6e 67 20 74 68 65 20 64 61 74 61 20 61 74 20 6d 75 6c 74 69 70 6c 65 20 | nipulating.the.data.at.multiple. |
| 36600 | 73 74 61 67 65 73 20 6f 6e 63 65 20 61 63 63 65 70 74 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 | stages.once.accepted.by.the.netw |
| 36620 | 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 74 68 65 20 64 72 69 76 65 72 20 62 65 66 | ork.interface.and.the.driver.bef |
| 36640 | 6f 72 65 20 62 65 69 6e 67 20 68 61 6e 64 65 64 20 6f 66 66 20 74 6f 20 74 68 65 20 64 65 73 74 | ore.being.handed.off.to.the.dest |
| 36660 | 69 6e 61 74 69 6f 6e 20 28 65 2e 67 2e 2c 20 61 20 77 65 62 20 73 65 72 76 65 72 20 4f 52 20 61 | ination.(e.g.,.a.web.server.OR.a |
| 36680 | 6e 6f 74 68 65 72 20 64 65 76 69 63 65 29 2e 00 41 73 20 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 | nother.device)..As.VyOS.makes.us |
| 366a0 | 65 20 6f 66 20 74 68 65 20 51 4d 49 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 63 6f 6e 6e 65 63 | e.of.the.QMI.interface.to.connec |
| 366c0 | 74 20 74 6f 20 74 68 65 20 57 57 41 4e 20 6d 6f 64 65 6d 20 63 61 72 64 73 2c 20 61 6c 73 6f 20 | t.to.the.WWAN.modem.cards,.also. |
| 366e0 | 74 68 65 20 66 69 72 6d 77 61 72 65 20 63 61 6e 20 62 65 20 72 65 70 72 6f 67 72 61 6d 6d 65 64 | the.firmware.can.be.reprogrammed |
| 36700 | 2e 00 41 73 20 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 51 4d 49 20 69 | ..As.VyOS.makes.use.of.the.QMI.i |
| 36720 | 6e 74 65 72 66 61 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 57 57 41 4e 20 | nterface.to.connect.to.the.WWAN. |
| 36740 | 6d 6f 64 65 6d 20 63 61 72 64 73 2c 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 63 61 6e 20 62 65 | modem.cards,.the.firmware.can.be |
| 36760 | 20 72 65 70 72 6f 67 72 61 6d 6d 65 64 2e 00 41 73 20 61 20 72 65 66 65 72 65 6e 63 65 3a 20 66 | .reprogrammed..As.a.reference:.f |
| 36780 | 6f 72 20 31 30 6d 62 69 74 2f 73 20 6f 6e 20 49 6e 74 65 6c 2c 20 79 6f 75 20 6d 69 67 68 74 20 | or.10mbit/s.on.Intel,.you.might. |
| 367a0 | 6e 65 65 64 20 61 74 20 6c 65 61 73 74 20 31 30 6b 62 79 74 65 20 62 75 66 66 65 72 20 69 66 20 | need.at.least.10kbyte.buffer.if. |
| 367c0 | 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 65 61 63 68 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 65 | you.want.to.reach.your.configure |
| 367e0 | 64 20 72 61 74 65 2e 00 41 73 20 61 20 72 65 73 75 6c 74 2c 20 74 68 65 20 70 72 6f 63 65 73 73 | d.rate..As.a.result,.the.process |
| 36800 | 69 6e 67 20 6f 66 20 65 61 63 68 20 70 61 63 6b 65 74 20 62 65 63 6f 6d 65 73 20 6d 6f 72 65 20 | ing.of.each.packet.becomes.more. |
| 36820 | 65 66 66 69 63 69 65 6e 74 2c 20 70 6f 74 65 6e 74 69 61 6c 6c 79 20 6c 65 76 65 72 61 67 69 6e | efficient,.potentially.leveragin |
| 36840 | 67 20 68 61 72 64 77 61 72 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 6f 66 66 6c 6f 61 64 69 6e 67 | g.hardware.encryption.offloading |
| 36860 | 20 73 75 70 70 6f 72 74 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c | .support.available.in.the.kernel |
| 36880 | 2e 00 41 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 61 70 70 6c 79 69 6e 67 20 | ..As.an.alternative.to.applying. |
| 368a0 | 70 6f 6c 69 63 79 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 64 69 72 65 63 74 6c 79 2c | policy.to.an.interface.directly, |
| 368c0 | 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 63 61 6e 20 62 65 20 63 72 | .a.zone-based.firewall.can.be.cr |
| 368e0 | 65 61 74 65 64 20 74 6f 20 73 69 6d 70 6c 69 66 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | eated.to.simplify.configuration. |
| 36900 | 77 68 65 6e 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 62 65 6c 6f 6e 67 20 | when.multiple.interfaces.belong. |
| 36920 | 74 6f 20 74 68 65 20 73 61 6d 65 20 73 65 63 75 72 69 74 79 20 7a 6f 6e 65 2e 20 49 6e 73 74 65 | to.the.same.security.zone..Inste |
| 36940 | 61 64 20 6f 66 20 61 70 70 6c 79 69 6e 67 20 72 75 6c 65 2d 73 65 74 73 20 74 6f 20 69 6e 74 65 | ad.of.applying.rule-sets.to.inte |
| 36960 | 72 66 61 63 65 73 2c 20 74 68 65 79 20 61 72 65 20 61 70 70 6c 69 65 64 20 74 6f 20 73 6f 75 72 | rfaces,.they.are.applied.to.sour |
| 36980 | 63 65 20 7a 6f 6e 65 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 7a 6f 6e 65 20 70 61 69 72 73 2e 00 | ce.zone-destination.zone.pairs.. |
| 369a0 | 41 73 20 61 6e 79 20 6f 74 68 65 72 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 2c 20 64 79 6e | As.any.other.firewall.group,.dyn |
| 369c0 | 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 75 73 65 64 | amic.firewall.groups.can.be.used |
| 369e0 | 20 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 73 20 6d 61 74 63 68 69 6e 67 20 6f | .in.firewall.rules.as.matching.o |
| 36a00 | 70 74 69 6f 6e 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 41 73 20 62 6f 74 68 20 4d 69 63 | ptions..For.example:.As.both.Mic |
| 36a20 | 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 61 6e 64 20 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 | rosoft.Windows.and.Apple.iOS/iPa |
| 36a40 | 64 4f 53 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 61 20 63 65 72 74 61 69 6e 20 73 65 74 20 6f | dOS.only.support.a.certain.set.o |
| 36a60 | 66 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 61 6e 64 20 69 6e 74 65 67 72 69 | f.encryption.ciphers.and.integri |
| 36a80 | 74 79 20 61 6c 67 6f 72 69 74 68 6d 73 20 77 65 20 77 69 6c 6c 20 76 61 6c 69 64 61 74 65 20 74 | ty.algorithms.we.will.validate.t |
| 36aa0 | 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 49 4b 45 2f 45 53 50 20 70 72 6f 70 6f 73 61 6c 73 20 | he.configured.IKE/ESP.proposals. |
| 36ac0 | 61 6e 64 20 6f 6e 6c 79 20 6c 69 73 74 20 74 68 65 20 63 6f 6d 70 61 74 69 62 6c 65 20 6f 6e 65 | and.only.list.the.compatible.one |
| 36ae0 | 73 20 74 6f 20 74 68 65 20 75 73 65 72 20 e2 80 94 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 61 72 | s.to.the.user.....if.multiple.ar |
| 36b00 | 65 20 64 65 66 69 6e 65 64 2e 20 49 66 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 6d 61 74 63 68 | e.defined..If.there.are.no.match |
| 36b20 | 69 6e 67 20 70 72 6f 70 6f 73 61 6c 73 20 66 6f 75 6e 64 20 e2 80 94 20 77 65 20 63 61 6e 20 6e | ing.proposals.found.....we.can.n |
| 36b40 | 6f 74 20 67 65 6e 65 72 61 74 65 20 61 20 70 72 6f 66 69 6c 65 20 66 6f 72 20 79 6f 75 2e 00 41 | ot.generate.a.profile.for.you..A |
| 36b60 | 73 20 64 65 73 63 72 69 62 65 64 2c 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 | s.described,.first.packet.will.b |
| 36b80 | 65 20 65 76 61 6c 75 61 74 65 64 20 62 79 20 61 6c 6c 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 | e.evaluated.by.all.the.firewall. |
| 36ba0 | 70 61 74 68 2c 20 73 6f 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 | path,.so.desired.connection.shou |
| 36bc0 | 6c 64 20 62 65 20 65 78 70 6c 69 63 69 74 65 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 | ld.be.explicitely.accepted..Same |
| 36be0 | 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f | .thing.should.be.taken.into.acco |
| 36c00 | 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 63 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 | unt.for.traffic.in.reverse.order |
| 36c20 | 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 | ..In.most.cases.state.policies.a |
| 36c40 | 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 63 63 65 70 74 20 63 6f 6e 6e 65 | re.used.in.order.to.accept.conne |
| 36c60 | 63 74 69 6f 6e 20 69 6e 20 72 65 76 65 72 73 65 20 70 61 74 63 68 2e 00 41 73 20 64 65 73 63 72 | ction.in.reverse.patch..As.descr |
| 36c80 | 69 62 65 64 2c 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 | ibed,.first.packet.will.be.evalu |
| 36ca0 | 61 74 65 64 20 62 79 20 61 6c 6c 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 | ated.by.all.the.firewall.path,.s |
| 36cc0 | 6f 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 | o.desired.connection.should.be.e |
| 36ce0 | 78 70 6c 69 63 69 74 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 20 74 68 69 6e 67 20 73 | xplicitly.accepted..Same.thing.s |
| 36d00 | 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 66 6f 72 20 | hould.be.taken.into.account.for. |
| 36d20 | 74 72 61 66 66 69 63 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 2e 20 49 6e 20 6d 6f 73 | traffic.in.reverse.order..In.mos |
| 36d40 | 74 20 63 61 73 65 73 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 | t.cases.state.policies.are.used. |
| 36d60 | 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 63 63 65 70 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 6e | in.order.to.accept.connection.in |
| 36d80 | 20 72 65 76 65 72 73 65 20 70 61 74 63 68 2e 00 41 73 20 64 65 73 63 72 69 62 65 64 2c 20 74 68 | .reverse.patch..As.described,.th |
| 36da0 | 65 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 61 74 65 64 | e.first.packet.will.be.evaluated |
| 36dc0 | 20 62 79 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 6f 20 61 20 64 65 73 69 | .by.the.firewall.path,.so.a.desi |
| 36de0 | 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 78 70 6c 69 63 69 | red.connection.should.be.explici |
| 36e00 | 74 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 | tly.accepted..Same.thing.should. |
| 36e20 | 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 | be.taken.into.account.for.traffi |
| 36e40 | 63 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 | c.in.reverse.order..In.most.case |
| 36e60 | 73 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 | s.state.policies.are.used.in.ord |
| 36e80 | 65 72 20 74 6f 20 61 63 63 65 70 74 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 6e 20 74 68 65 | er.to.accept.a.connection.in.the |
| 36ea0 | 20 72 65 76 65 72 73 65 20 70 61 74 68 2e 00 41 73 20 6d 6f 72 65 20 61 6e 64 20 6d 6f 72 65 20 | .reverse.path..As.more.and.more. |
| 36ec0 | 72 6f 75 74 65 72 73 20 72 75 6e 20 6f 6e 20 48 79 70 65 72 76 69 73 6f 72 73 2c 20 65 78 70 65 | routers.run.on.Hypervisors,.expe |
| 36ee0 | 63 69 61 6c 6c 79 20 77 69 74 68 20 61 20 3a 61 62 62 72 3a 60 4e 4f 53 20 28 4e 65 74 77 6f 72 | cially.with.a.:abbr:`NOS.(Networ |
| 36f00 | 6b 20 4f 70 65 72 61 74 69 6e 67 20 53 79 73 74 65 6d 29 60 20 61 73 20 56 79 4f 53 2c 20 69 74 | k.Operating.System)`.as.VyOS,.it |
| 36f20 | 20 6d 61 6b 65 73 20 66 65 77 65 72 20 61 6e 64 20 66 65 77 65 72 20 73 65 6e 73 65 20 74 6f 20 | .makes.fewer.and.fewer.sense.to. |
| 36f40 | 75 73 65 20 73 74 61 74 69 63 20 72 65 73 6f 75 72 63 65 20 62 69 6e 64 69 6e 67 73 20 6c 69 6b | use.static.resource.bindings.lik |
| 36f60 | 65 20 60 60 73 6d 70 2d 61 66 66 69 6e 69 74 79 60 60 20 61 73 20 70 72 65 73 65 6e 74 20 69 6e | e.``smp-affinity``.as.present.in |
| 36f80 | 20 56 79 4f 53 20 31 2e 32 20 61 6e 64 20 65 61 72 6c 69 65 72 20 74 6f 20 70 69 6e 20 63 65 72 | .VyOS.1.2.and.earlier.to.pin.cer |
| 36fa0 | 74 61 69 6e 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 6c 65 72 73 20 74 6f 20 73 70 65 63 69 | tain.interrupt.handlers.to.speci |
| 36fc0 | 66 69 63 20 43 50 55 73 2e 00 41 73 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 74 72 61 | fic.CPUs..As.network.address.tra |
| 36fe0 | 6e 73 6c 61 74 69 6f 6e 20 6d 6f 64 69 66 69 65 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 | nslation.modifies.the.IP.address |
| 37000 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 70 61 63 6b 65 74 73 2c 20 4e 41 54 20 69 6d 70 | .information.in.packets,.NAT.imp |
| 37020 | 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 6d 61 79 20 76 61 72 79 20 69 6e 20 74 68 65 69 72 20 73 | lementations.may.vary.in.their.s |
| 37040 | 70 65 63 69 66 69 63 20 62 65 68 61 76 69 6f 72 20 69 6e 20 76 61 72 69 6f 75 73 20 61 64 64 72 | pecific.behavior.in.various.addr |
| 37060 | 65 73 73 69 6e 67 20 63 61 73 65 73 20 61 6e 64 20 74 68 65 69 72 20 65 66 66 65 63 74 20 6f 6e | essing.cases.and.their.effect.on |
| 37080 | 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 73 70 65 63 69 66 69 63 73 20 | .network.traffic..The.specifics. |
| 370a0 | 6f 66 20 4e 41 54 20 62 65 68 61 76 69 6f 72 20 61 72 65 20 6e 6f 74 20 63 6f 6d 6d 6f 6e 6c 79 | of.NAT.behavior.are.not.commonly |
| 370c0 | 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 79 20 76 65 6e 64 6f 72 73 20 6f 66 20 65 71 75 69 70 6d | .documented.by.vendors.of.equipm |
| 370e0 | 65 6e 74 20 63 6f 6e 74 61 69 6e 69 6e 67 20 4e 41 54 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f | ent.containing.NAT.implementatio |
| 37100 | 6e 73 2e 00 41 73 20 6f 66 20 56 79 4f 53 20 31 2e 34 2c 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 | ns..As.of.VyOS.1.4,.OpenVPN.site |
| 37120 | 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 63 61 6e 20 75 73 65 20 65 69 74 68 65 72 20 70 72 65 | -to-site.mode.can.use.either.pre |
| 37140 | 2d 73 68 61 72 65 64 20 6b 65 79 73 20 6f 72 20 78 2e 35 30 39 20 63 65 72 74 69 66 69 63 61 74 | -shared.keys.or.x.509.certificat |
| 37160 | 65 73 2e 00 41 73 20 70 65 72 20 64 65 66 61 75 6c 74 20 61 6e 64 20 69 66 20 6e 6f 74 20 6f 74 | es..As.per.default.and.if.not.ot |
| 37180 | 68 65 72 77 69 73 65 20 64 65 66 69 6e 65 64 2c 20 6d 73 63 68 61 70 2d 76 32 20 69 73 20 62 65 | herwise.defined,.mschap-v2.is.be |
| 371a0 | 69 6e 67 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 | ing.used.for.authentication.and. |
| 371c0 | 6d 70 70 65 20 31 32 38 2d 62 69 74 20 28 73 74 61 74 65 6c 65 73 73 29 20 66 6f 72 20 65 6e 63 | mppe.128-bit.(stateless).for.enc |
| 371e0 | 72 79 70 74 69 6f 6e 2e 20 49 66 20 6e 6f 20 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 69 | ryption..If.no.gateway-address.i |
| 37200 | 73 20 73 65 74 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 | s.set.within.the.configuration,. |
| 37220 | 74 68 65 20 6c 6f 77 65 73 74 20 49 50 20 6f 75 74 20 6f 66 20 74 68 65 20 2f 32 34 20 63 6c 69 | the.lowest.IP.out.of.the./24.cli |
| 37240 | 65 6e 74 2d 69 70 2d 70 6f 6f 6c 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 2e 20 46 6f 72 20 69 | ent-ip-pool.is.being.used..For.i |
| 37260 | 6e 73 74 61 6e 63 65 2c 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 69 74 | nstance,.in.the.example.below.it |
| 37280 | 20 77 6f 75 6c 64 20 62 65 20 31 39 32 2e 31 36 38 2e 30 2e 31 2e 00 41 73 20 73 61 69 64 20 62 | .would.be.192.168.0.1..As.said.b |
| 372a0 | 65 66 6f 72 65 2c 20 6f 6e 63 65 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 61 72 65 20 | efore,.once.firewall.groups.are. |
| 372c0 | 63 72 65 61 74 65 64 2c 20 74 68 65 79 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 | created,.they.can.be.referenced. |
| 372e0 | 65 69 74 68 65 72 20 69 6e 20 66 69 72 65 77 61 6c 6c 2c 20 6e 61 74 2c 20 6e 61 74 36 36 20 61 | either.in.firewall,.nat,.nat66.a |
| 37300 | 6e 64 2f 6f 72 20 70 6f 6c 69 63 79 2d 72 6f 75 74 65 20 72 75 6c 65 73 2e 00 41 73 20 73 68 6f | nd/or.policy-route.rules..As.sho |
| 37320 | 77 6e 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 6f 6e 65 20 6f 66 20 | wn.in.the.example.above,.one.of. |
| 37340 | 74 68 65 20 70 6f 73 73 69 62 69 6c 69 74 69 65 73 20 74 6f 20 6d 61 74 63 68 20 70 61 63 6b 65 | the.possibilities.to.match.packe |
| 37360 | 74 73 20 69 73 20 62 61 73 65 64 20 6f 6e 20 6d 61 72 6b 73 20 64 6f 6e 65 20 62 79 20 74 68 65 | ts.is.based.on.marks.done.by.the |
| 37380 | 20 66 69 72 65 77 61 6c 6c 2c 20 60 74 68 61 74 20 63 61 6e 20 67 69 76 65 20 79 6f 75 20 61 20 | .firewall,.`that.can.give.you.a. |
| 373a0 | 67 72 65 61 74 20 64 65 61 6c 20 6f 66 20 66 6c 65 78 69 62 69 6c 69 74 79 60 5f 2e 00 41 73 20 | great.deal.of.flexibility`_..As. |
| 373c0 | 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 6c 61 73 74 20 63 6f 6d 6d 61 6e 64 20 6f 66 20 74 68 65 | shown.in.the.last.command.of.the |
| 373e0 | 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 74 68 65 20 60 71 75 65 75 65 2d 74 79 70 65 60 | .example.above,.the.`queue-type` |
| 37400 | 20 73 65 74 74 69 6e 67 20 61 6c 6c 6f 77 73 20 74 68 65 73 65 20 63 6f 6d 62 69 6e 61 74 69 6f | .setting.allows.these.combinatio |
| 37420 | 6e 73 2e 20 59 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 75 73 65 20 69 74 20 69 | ns..You.will.be.able.to.use.it.i |
| 37440 | 6e 20 6d 61 6e 79 20 70 6f 6c 69 63 69 65 73 2e 00 41 73 20 74 68 65 20 65 78 61 6d 70 6c 65 20 | n.many.policies..As.the.example. |
| 37460 | 69 6d 61 67 65 20 62 65 6c 6f 77 20 73 68 6f 77 73 2c 20 74 68 65 20 64 65 76 69 63 65 20 6e 6f | image.below.shows,.the.device.no |
| 37480 | 77 20 6e 65 65 64 73 20 72 75 6c 65 73 20 74 6f 20 61 6c 6c 6f 77 2f 62 6c 6f 63 6b 20 74 72 61 | w.needs.rules.to.allow/block.tra |
| 374a0 | 66 66 69 63 20 74 6f 20 6f 72 20 66 72 6f 6d 20 74 68 65 20 73 65 72 76 69 63 65 73 20 72 75 6e | ffic.to.or.from.the.services.run |
| 374c0 | 6e 69 6e 67 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 20 74 68 61 74 20 68 61 76 65 20 6f 70 65 | ning.on.the.device.that.have.ope |
| 374e0 | 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 6e 20 74 68 61 74 20 69 6e 74 65 72 66 61 63 65 2e | n.connections.on.that.interface. |
| 37500 | 00 41 73 20 74 68 65 20 65 78 61 6d 70 6c 65 20 69 6d 61 67 65 20 62 65 6c 6f 77 20 73 68 6f 77 | .As.the.example.image.below.show |
| 37520 | 73 2c 20 74 68 65 20 64 65 76 69 63 65 20 77 61 73 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 | s,.the.device.was.configured.wit |
| 37540 | 68 20 72 75 6c 65 73 20 62 6c 6f 63 6b 69 6e 67 20 69 6e 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 | h.rules.blocking.inbound.or.outb |
| 37560 | 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 6e 20 65 61 63 68 20 69 6e 74 65 72 66 61 63 65 2e 00 | ound.traffic.on.each.interface.. |
| 37580 | 41 73 20 74 68 65 20 6e 61 6d 65 20 69 6d 70 6c 69 65 73 2c 20 69 74 27 73 20 49 50 76 34 20 65 | As.the.name.implies,.it's.IPv4.e |
| 375a0 | 6e 63 61 70 73 75 6c 61 74 65 64 20 69 6e 20 49 50 76 36 2c 20 61 73 20 73 69 6d 70 6c 65 20 61 | ncapsulated.in.IPv6,.as.simple.a |
| 375c0 | 73 20 74 68 61 74 2e 00 41 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 62 65 6c 6f 77 20 74 6f 20 | s.that..As.well.as.the.below.to. |
| 375e0 | 61 6c 6c 6f 77 20 4e 41 54 2d 74 72 61 76 65 72 73 61 6c 20 28 77 68 65 6e 20 4e 41 54 20 69 73 | allow.NAT-traversal.(when.NAT.is |
| 37600 | 20 64 65 74 65 63 74 65 64 20 62 79 20 74 68 65 20 56 50 4e 20 63 6c 69 65 6e 74 2c 20 45 53 50 | .detected.by.the.VPN.client,.ESP |
| 37620 | 20 69 73 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 69 6e 20 55 44 50 20 66 6f 72 20 4e 41 54 2d | .is.encapsulated.in.UDP.for.NAT- |
| 37640 | 74 72 61 76 65 72 73 61 6c 29 3a 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 | traversal):.As.with.other.polici |
| 37660 | 65 73 2c 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 63 61 6e 20 65 6d 62 65 64 5f 20 61 6e 6f 74 68 | es,.Round-Robin.can.embed_.anoth |
| 37680 | 65 72 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 20 74 68 72 6f 75 67 68 20 74 | er.policy.into.a.class.through.t |
| 376a0 | 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 2e 00 41 73 20 77 69 | he.``queue-type``.setting..As.wi |
| 376c0 | 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 53 68 61 70 65 72 20 63 61 6e 20 65 6d | th.other.policies,.Shaper.can.em |
| 376e0 | 62 65 64 5f 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 20 69 6e 74 6f 20 69 74 73 20 63 6c 61 | bed_.other.policies.into.its.cla |
| 37700 | 73 73 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 | sses.through.the.``queue-type``. |
| 37720 | 73 65 74 74 69 6e 67 20 61 6e 64 20 74 68 65 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 69 72 | setting.and.then.configure.their |
| 37740 | 20 70 61 72 61 6d 65 74 65 72 73 2e 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 | .parameters..As.with.other.polic |
| 37760 | 69 65 73 2c 20 79 6f 75 20 63 61 6e 20 64 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 74 79 | ies,.you.can.define.different.ty |
| 37780 | 70 65 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 79 6f 75 72 20 63 6c | pe.of.matching.rules.for.your.cl |
| 377a0 | 61 73 73 65 73 3a 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 79 | asses:.As.with.other.policies,.y |
| 377c0 | 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 20 69 6e 74 | ou.can.embed_.other.policies.int |
| 377e0 | 6f 20 74 68 65 20 63 6c 61 73 73 65 73 20 28 61 6e 64 20 64 65 66 61 75 6c 74 29 20 6f 66 20 79 | o.the.classes.(and.default).of.y |
| 37800 | 6f 75 72 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 70 6f 6c 69 63 79 20 74 68 72 6f 75 67 | our.Priority.Queue.policy.throug |
| 37820 | 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 3a 00 41 73 | h.the.``queue-type``.setting:.As |
| 37840 | 20 79 6f 75 20 63 61 6e 20 73 65 65 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 68 65 72 65 | .you.can.see.in.the.example.here |
| 37860 | 2c 20 79 6f 75 20 63 61 6e 20 61 73 73 69 67 6e 20 74 68 65 20 73 61 6d 65 20 72 75 6c 65 2d 73 | ,.you.can.assign.the.same.rule-s |
| 37880 | 65 74 20 74 6f 20 73 65 76 65 72 61 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 20 41 6e 20 69 6e 74 | et.to.several.interfaces..An.int |
| 378a0 | 65 72 66 61 63 65 20 63 61 6e 20 6f 6e 6c 79 20 68 61 76 65 20 6f 6e 65 20 72 75 6c 65 2d 73 65 | erface.can.only.have.one.rule-se |
| 378c0 | 74 20 70 65 72 20 63 68 61 69 6e 2e 00 41 73 20 79 6f 75 20 63 61 6e 20 73 65 65 2c 20 4c 65 61 | t.per.chain..As.you.can.see,.Lea |
| 378e0 | 66 32 20 61 6e 64 20 4c 65 61 66 33 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 61 6c | f2.and.Leaf3.configuration.is.al |
| 37900 | 6d 6f 73 74 20 69 64 65 6e 74 69 63 61 6c 2e 20 54 68 65 72 65 20 61 72 65 20 6c 6f 74 73 20 6f | most.identical..There.are.lots.o |
| 37920 | 66 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 2c 20 49 27 6c 6c 20 74 72 79 20 74 6f 20 69 6e | f.commands.above,.I'll.try.to.in |
| 37940 | 74 6f 20 6d 6f 72 65 20 64 65 74 61 69 6c 20 62 65 6c 6f 77 2c 20 63 6f 6d 6d 61 6e 64 20 64 65 | to.more.detail.below,.command.de |
| 37960 | 73 63 72 69 70 74 69 6f 6e 73 20 61 72 65 20 70 6c 61 63 65 64 20 75 6e 64 65 72 20 74 68 65 20 | scriptions.are.placed.under.the. |
| 37980 | 63 6f 6d 6d 61 6e 64 20 62 6f 78 65 73 3a 00 41 73 20 79 6f 75 20 63 61 6e 20 73 65 65 2c 20 74 | command.boxes:.As.you.can.see,.t |
| 379a0 | 68 65 20 4c 65 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | he.Leaf2.and.Leaf3.configuration |
| 379c0 | 73 20 61 72 65 20 61 6c 6d 6f 73 74 20 69 64 65 6e 74 69 63 61 6c 2e 20 54 68 65 72 65 20 61 72 | s.are.almost.identical..There.ar |
| 379e0 | 65 20 6c 6f 74 73 20 6f 66 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 2c 20 49 27 6c 6c 20 74 | e.lots.of.commands.above,.I'll.t |
| 37a00 | 72 79 20 74 6f 20 67 6f 20 69 6e 74 6f 20 6d 6f 72 65 20 64 65 74 61 69 6c 20 62 65 6c 6f 77 2e | ry.to.go.into.more.detail.below. |
| 37a20 | 20 43 6f 6d 6d 61 6e 64 20 64 65 73 63 72 69 70 74 69 6f 6e 73 20 61 72 65 20 70 6c 61 63 65 64 | .Command.descriptions.are.placed |
| 37a40 | 20 75 6e 64 65 72 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 62 6f 78 65 73 3a 00 41 73 73 69 67 6e | .under.the.command.boxes:.Assign |
| 37a60 | 20 60 3c 6d 65 6d 62 65 72 3e 60 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 62 72 69 64 67 65 20 | .`<member>`.interface.to.bridge. |
| 37a80 | 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 41 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 | `<interface>`..A.completion.help |
| 37aa0 | 65 72 20 77 69 6c 6c 20 68 65 6c 70 20 79 6f 75 20 77 69 74 68 20 61 6c 6c 20 61 6c 6c 6f 77 65 | er.will.help.you.with.all.allowe |
| 37ac0 | 64 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 62 72 69 64 67 65 | d.interfaces.which.can.be.bridge |
| 37ae0 | 64 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 3a 72 65 66 3a 60 65 74 68 65 72 6e 65 74 2d | d..This.includes.:ref:`ethernet- |
| 37b00 | 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 62 6f 6e 64 2d 69 6e 74 65 72 66 61 63 65 | interface`,.:ref:`bond-interface |
| 37b20 | 60 2c 20 3a 72 65 66 3a 60 6c 32 74 70 76 33 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 | `,.:ref:`l2tpv3-interface`,.:ref |
| 37b40 | 3a 60 6f 70 65 6e 76 70 6e 60 2c 20 3a 72 65 66 3a 60 76 78 6c 61 6e 2d 69 6e 74 65 72 66 61 63 | :`openvpn`,.:ref:`vxlan-interfac |
| 37b60 | 65 60 2c 20 3a 72 65 66 3a 60 77 69 72 65 6c 65 73 73 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a | e`,.:ref:`wireless-interface`,.: |
| 37b80 | 72 65 66 3a 60 74 75 6e 6e 65 6c 2d 69 6e 74 65 72 66 61 63 65 60 20 61 6e 64 20 3a 72 65 66 3a | ref:`tunnel-interface`.and.:ref: |
| 37ba0 | 60 67 65 6e 65 76 65 2d 69 6e 74 65 72 66 61 63 65 60 2e 00 41 73 73 69 67 6e 20 61 20 73 70 65 | `geneve-interface`..Assign.a.spe |
| 37bc0 | 63 69 66 69 63 20 62 61 63 6b 65 6e 64 20 74 6f 20 61 20 72 75 6c 65 00 41 73 73 69 67 6e 20 61 | cific.backend.to.a.rule.Assign.a |
| 37be0 | 20 73 74 61 74 69 63 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 60 3c 75 73 65 72 3e 60 20 61 | .static.IP.address.to.`<user>`.a |
| 37c00 | 63 63 6f 75 6e 74 2e 00 41 73 73 69 67 6e 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 | ccount..Assign.interface.identif |
| 37c20 | 69 65 64 20 62 79 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 74 6f 20 56 52 46 20 6e 61 6d 65 | ied.by.`<interface>`.to.VRF.name |
| 37c40 | 64 20 60 3c 6e 61 6d 65 3e 60 2e 00 41 73 73 69 67 6e 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 | d.`<name>`..Assign.member.interf |
| 37c60 | 61 63 65 73 20 74 6f 20 50 6f 72 74 43 68 61 6e 6e 65 6c 00 41 73 73 69 67 6e 20 73 74 61 74 69 | aces.to.PortChannel.Assign.stati |
| 37c80 | 63 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 60 3c 75 73 65 72 3e 60 20 61 63 63 6f 75 6e 74 | c.IP.address.to.`<user>`.account |
| 37ca0 | 2e 00 41 73 73 69 67 6e 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 69 73 20 | ..Assign.the.IP.address.to.this. |
| 37cc0 | 6d 61 63 68 69 6e 65 20 66 6f 72 20 60 3c 74 69 6d 65 3e 60 20 73 65 63 6f 6e 64 73 2e 00 41 73 | machine.for.`<time>`.seconds..As |
| 37ce0 | 73 69 67 6e 20 74 68 65 20 53 53 48 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 | sign.the.SSH.public.key.portion. |
| 37d00 | 60 3c 6b 65 79 3e 60 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 70 65 72 2d 6b 65 79 20 60 3c | `<key>`.identified.by.per-key.`< |
| 37d20 | 69 64 65 6e 74 69 66 69 65 72 3e 60 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 20 60 | identifier>`.to.the.local.user.` |
| 37d40 | 3c 75 73 65 72 6e 61 6d 65 3e 60 2e 00 41 73 73 6f 63 69 61 74 65 73 20 74 68 65 20 70 72 65 76 | <username>`..Associates.the.prev |
| 37d60 | 69 6f 75 73 6c 79 20 67 65 6e 65 72 61 74 65 64 20 70 72 69 76 61 74 65 20 6b 65 79 20 74 6f 20 | iously.generated.private.key.to. |
| 37d80 | 61 20 73 70 65 63 69 66 69 63 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 2e 20 | a.specific.WireGuard.interface.. |
| 37da0 | 54 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 63 61 6e 20 62 65 20 67 65 6e 65 72 61 74 65 20 | The.private.key.can.be.generate. |
| 37dc0 | 76 69 61 20 74 68 65 20 63 6f 6d 6d 61 6e 64 00 41 73 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 | via.the.command.Assure.that.your |
| 37de0 | 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 6c 6c 6f 77 20 74 68 65 20 74 72 61 66 66 69 | .firewall.rules.allow.the.traffi |
| 37e00 | 63 2c 20 69 6e 20 77 68 69 63 68 20 63 61 73 65 20 79 6f 75 20 68 61 76 65 20 61 20 77 6f 72 6b | c,.in.which.case.you.have.a.work |
| 37e20 | 69 6e 67 20 56 50 4e 20 75 73 69 6e 67 20 57 69 72 65 47 75 61 72 64 2e 00 41 73 73 75 72 65 64 | ing.VPN.using.WireGuard..Assured |
| 37e40 | 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 31 31 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 | .Forwarding(AF).11.Assured.Forwa |
| 37e60 | 72 64 69 6e 67 28 41 46 29 20 31 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 | rding(AF).12.Assured.Forwarding( |
| 37e80 | 41 46 29 20 31 33 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 32 31 | AF).13.Assured.Forwarding(AF).21 |
| 37ea0 | 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 32 32 00 41 73 73 75 72 | .Assured.Forwarding(AF).22.Assur |
| 37ec0 | 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 32 33 00 41 73 73 75 72 65 64 20 46 6f 72 | ed.Forwarding(AF).23.Assured.For |
| 37ee0 | 77 61 72 64 69 6e 67 28 41 46 29 20 33 31 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e | warding(AF).31.Assured.Forwardin |
| 37f00 | 67 28 41 46 29 20 33 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 | g(AF).32.Assured.Forwarding(AF). |
| 37f20 | 33 33 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 31 00 41 73 73 | 33.Assured.Forwarding(AF).41.Ass |
| 37f40 | 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 32 00 41 73 73 75 72 65 64 20 46 | ured.Forwarding(AF).42.Assured.F |
| 37f60 | 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 33 00 41 74 20 65 76 65 72 79 20 72 6f 75 6e 64 2c | orwarding(AF).43.At.every.round, |
| 37f80 | 20 74 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 61 64 64 73 20 74 68 65 20 71 75 | .the.deficit.counter.adds.the.qu |
| 37fa0 | 61 6e 74 75 6d 20 73 6f 20 74 68 61 74 20 65 76 65 6e 20 6c 61 72 67 65 20 70 61 63 6b 65 74 73 | antum.so.that.even.large.packets |
| 37fc0 | 20 77 69 6c 6c 20 68 61 76 65 20 74 68 65 69 72 20 6f 70 70 6f 72 74 75 6e 69 74 79 20 74 6f 20 | .will.have.their.opportunity.to. |
| 37fe0 | 62 65 20 64 65 71 75 65 75 65 64 2e 00 41 74 20 74 68 65 20 6d 6f 6d 65 6e 74 20 69 74 20 6e 6f | be.dequeued..At.the.moment.it.no |
| 38000 | 74 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 77 68 6f 6c 65 20 | t.possible.to.look.at.the.whole. |
| 38020 | 66 69 72 65 77 61 6c 6c 20 6c 6f 67 20 77 69 74 68 20 56 79 4f 53 20 6f 70 65 72 61 74 69 6f 6e | firewall.log.with.VyOS.operation |
| 38040 | 61 6c 20 63 6f 6d 6d 61 6e 64 73 2e 20 41 6c 6c 20 6c 6f 67 73 20 77 69 6c 6c 20 73 61 76 65 20 | al.commands..All.logs.will.save. |
| 38060 | 74 6f 20 60 60 2f 76 61 72 2f 6c 6f 67 73 2f 6d 65 73 73 61 67 65 73 60 60 2e 20 46 6f 72 20 65 | to.``/var/logs/messages``..For.e |
| 38080 | 78 61 6d 70 6c 65 3a 20 60 60 67 72 65 70 20 27 31 30 2e 31 30 2e 30 2e 31 30 27 20 2f 76 61 72 | xample:.``grep.'10.10.0.10'./var |
| 380a0 | 2f 6c 6f 67 2f 6d 65 73 73 61 67 65 73 60 60 00 41 74 20 74 68 65 20 74 69 6d 65 20 6f 66 20 74 | /log/messages``.At.the.time.of.t |
| 380c0 | 68 69 73 20 77 72 69 74 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 69 73 70 6c 61 | his.writing.the.following.displa |
| 380e0 | 79 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 3a 00 41 74 20 76 65 72 79 20 6c 6f 77 20 72 61 | ys.are.supported:.At.very.low.ra |
| 38100 | 74 65 73 20 28 62 65 6c 6f 77 20 33 4d 62 69 74 29 2c 20 62 65 73 69 64 65 73 20 74 75 6e 69 6e | tes.(below.3Mbit),.besides.tunin |
| 38120 | 67 20 60 71 75 61 6e 74 75 6d 60 20 28 33 30 30 20 6b 65 65 70 73 20 62 65 69 6e 67 20 6f 6b 29 | g.`quantum`.(300.keeps.being.ok) |
| 38140 | 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 77 61 6e 74 20 74 6f 20 69 6e 63 72 65 61 73 65 20 60 | .you.may.also.want.to.increase.` |
| 38160 | 74 61 72 67 65 74 60 20 74 6f 20 73 6f 6d 65 74 68 69 6e 67 20 6c 69 6b 65 20 31 35 6d 73 20 61 | target`.to.something.like.15ms.a |
| 38180 | 6e 64 20 69 6e 63 72 65 61 73 65 20 60 69 6e 74 65 72 76 61 6c 60 20 74 6f 20 73 6f 6d 65 74 68 | nd.increase.`interval`.to.someth |
| 381a0 | 69 6e 67 20 61 72 6f 75 6e 64 20 31 35 30 20 6d 73 2e 00 41 74 74 61 63 68 65 73 20 75 73 65 72 | ing.around.150.ms..Attaches.user |
| 381c0 | 2d 64 65 66 69 6e 65 64 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e | -defined.network.to.a.container. |
| 381e0 | 20 4f 6e 6c 79 20 6f 6e 65 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 | .Only.one.network.must.be.specif |
| 38200 | 69 65 64 20 61 6e 64 20 6d 75 73 74 20 61 6c 72 65 61 64 79 20 65 78 69 73 74 2e 00 41 75 74 68 | ied.and.must.already.exist..Auth |
| 38220 | 65 6e 74 69 63 61 74 69 6f 6e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 28 45 41 50 6f 4c | entication.Authentication.(EAPoL |
| 38240 | 29 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e | ).Authentication.Advanced.Option |
| 38260 | 73 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 63 6c 69 | s.Authentication.application.cli |
| 38280 | 65 6e 74 2d 69 64 2e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 70 70 6c 69 63 61 74 69 | ent-id..Authentication.applicati |
| 382a0 | 6f 6e 20 63 6c 69 65 6e 74 2d 73 65 63 72 65 74 2e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | on.client-secret..Authentication |
| 382c0 | 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 74 65 6e 61 6e 74 2d 69 64 00 41 75 74 68 65 6e 74 69 63 | .application.tenant-id.Authentic |
| 382e0 | 61 74 69 6f 6e 20 69 73 20 64 6f 6e 65 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 60 60 6f 70 65 | ation.is.done.by.using.the.``ope |
| 38300 | 6e 76 70 6e 2d 61 75 74 68 2d 6c 64 61 70 2e 73 6f 60 60 20 70 6c 75 67 69 6e 20 77 68 69 63 68 | nvpn-auth-ldap.so``.plugin.which |
| 38320 | 20 69 73 20 73 68 69 70 70 65 64 20 77 69 74 68 20 65 76 65 72 79 20 56 79 4f 53 20 69 6e 73 74 | .is.shipped.with.every.VyOS.inst |
| 38340 | 61 6c 6c 61 74 69 6f 6e 2e 20 41 20 64 65 64 69 63 61 74 65 64 20 63 6f 6e 66 69 67 75 72 61 74 | allation..A.dedicated.configurat |
| 38360 | 69 6f 6e 20 66 69 6c 65 20 69 73 20 72 65 71 75 69 72 65 64 2e 20 49 74 20 69 73 20 62 65 73 74 | ion.file.is.required..It.is.best |
| 38380 | 20 70 72 61 63 74 69 73 65 20 74 6f 20 73 74 6f 72 65 20 69 74 20 69 6e 20 60 60 2f 63 6f 6e 66 | .practise.to.store.it.in.``/conf |
| 383a0 | 69 67 60 60 20 74 6f 20 73 75 72 76 69 76 65 20 69 6d 61 67 65 20 75 70 64 61 74 65 73 00 41 75 | ig``.to.survive.image.updates.Au |
| 383c0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 67 61 6e 69 7a 61 74 69 6f 6e 20 6e 61 6d 65 00 41 | thentication.organization.name.A |
| 383e0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 6f 6b 65 6e 00 41 75 74 68 65 6e 74 69 63 61 74 69 | uthentication.token.Authenticati |
| 38400 | 6f 6e 20 e2 80 93 20 74 6f 20 76 65 72 69 66 79 20 74 68 61 74 20 74 68 65 20 6d 65 73 73 61 67 | on.....to.verify.that.the.messag |
| 38420 | 65 20 69 73 20 66 72 6f 6d 20 61 20 76 61 6c 69 64 20 73 6f 75 72 63 65 2e 00 41 75 74 68 6f 72 | e.is.from.a.valid.source..Author |
| 38440 | 69 74 61 74 69 76 65 20 7a 6f 6e 65 73 00 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 74 6f 6b 65 | itative.zones.Authorization.toke |
| 38460 | 6e 00 41 75 74 6f 6d 61 74 69 63 20 56 4c 41 4e 20 43 72 65 61 74 69 6f 6e 00 41 75 74 6f 6d 61 | n.Automatic.VLAN.Creation.Automa |
| 38480 | 74 69 63 20 56 4c 41 4e 20 63 72 65 61 74 69 6f 6e 00 41 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 | tic.VLAN.creation.Automatically. |
| 384a0 | 63 72 65 61 74 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 66 6f 72 20 65 61 63 68 20 52 49 50 20 | create.BFD.session.for.each.RIP. |
| 384c0 | 70 65 65 72 20 64 69 73 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 | peer.discovered.in.this.interfac |
| 384e0 | 65 2e 20 57 68 65 6e 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 6d 6f 6e 69 74 6f 72 20 | e..When.the.BFD.session.monitor. |
| 38500 | 73 69 67 6e 61 6c 69 7a 65 20 74 68 61 74 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 64 6f 77 6e 20 | signalize.that.the.link.is.down. |
| 38520 | 74 68 65 20 52 49 50 20 70 65 65 72 20 69 73 20 72 65 6d 6f 76 65 64 20 61 6e 64 20 61 6c 6c 20 | the.RIP.peer.is.removed.and.all. |
| 38540 | 74 68 65 20 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 | the.learned.routes.associated.wi |
| 38560 | 74 68 20 74 68 61 74 20 70 65 65 72 20 61 72 65 20 72 65 6d 6f 76 65 64 2e 00 41 75 74 6f 6d 61 | th.that.peer.are.removed..Automa |
| 38580 | 74 69 63 61 6c 6c 79 20 72 65 62 6f 6f 74 20 73 79 73 74 65 6d 20 6f 6e 20 6b 65 72 6e 65 6c 20 | tically.reboot.system.on.kernel. |
| 385a0 | 70 61 6e 69 63 20 61 66 74 65 72 20 36 30 20 73 65 63 6f 6e 64 73 2e 00 41 75 74 6f 6e 6f 6d 6f | panic.after.60.seconds..Autonomo |
| 385c0 | 75 73 20 53 79 73 74 65 6d 73 00 41 76 61 69 6c 61 62 6c 65 20 68 65 61 6c 74 68 20 63 68 65 63 | us.Systems.Available.health.chec |
| 385e0 | 6b 20 70 72 6f 74 6f 63 6f 6c 73 3a 00 41 76 6f 69 64 69 6e 67 20 22 6c 65 61 6b 79 22 20 4e 41 | k.protocols:.Avoiding."leaky".NA |
| 38600 | 54 00 41 7a 75 72 65 2d 64 61 74 61 2d 65 78 70 6c 6f 72 65 72 00 42 46 44 00 42 46 44 20 53 74 | T.Azure-data-explorer.BFD.BFD.St |
| 38620 | 61 74 69 63 20 52 6f 75 74 65 20 4d 6f 6e 69 74 6f 72 69 6e 67 00 42 46 44 20 73 65 6e 64 73 20 | atic.Route.Monitoring.BFD.sends. |
| 38640 | 6c 6f 74 73 20 6f 66 20 73 6d 61 6c 6c 20 55 44 50 20 70 61 63 6b 65 74 73 20 76 65 72 79 20 71 | lots.of.small.UDP.packets.very.q |
| 38660 | 75 69 63 6b 6c 79 20 74 6f 20 65 6e 73 75 72 65 73 20 74 68 61 74 20 74 68 65 20 70 65 65 72 20 | uickly.to.ensures.that.the.peer. |
| 38680 | 69 73 20 73 74 69 6c 6c 20 61 6c 69 76 65 2e 00 42 47 50 00 42 47 50 20 2d 20 41 53 20 50 61 74 | is.still.alive..BGP.BGP.-.AS.Pat |
| 386a0 | 68 20 50 6f 6c 69 63 79 00 42 47 50 20 2d 20 43 6f 6d 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 | h.Policy.BGP.-.Community.List.BG |
| 386c0 | 50 20 2d 20 45 78 74 65 6e 64 65 64 20 43 6f 6d 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 50 20 | P.-.Extended.Community.List.BGP. |
| 386e0 | 2d 20 4c 61 72 67 65 20 43 6f 6d 6d 75 6e 69 74 79 20 4c 69 73 74 00 42 47 50 20 45 78 61 6d 70 | -.Large.Community.List.BGP.Examp |
| 38700 | 6c 65 00 42 47 50 20 52 6f 75 74 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 47 50 20 | le.BGP.Router.Configuration.BGP. |
| 38720 | 53 63 61 6c 69 6e 67 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 47 50 20 61 67 67 72 65 67 | Scaling.Configuration.BGP.aggreg |
| 38740 | 61 74 6f 72 20 61 74 74 72 69 62 75 74 65 3a 20 41 53 20 6e 75 6d 62 65 72 20 6f 72 20 49 50 20 | ator.attribute:.AS.number.or.IP. |
| 38760 | 61 64 64 72 65 73 73 20 6f 66 20 61 6e 20 61 67 67 72 65 67 61 74 69 6f 6e 2e 00 42 47 50 20 61 | address.of.an.aggregation..BGP.a |
| 38780 | 73 2d 70 61 74 68 20 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 2e 00 42 47 50 20 61 74 6f 6d 69 63 | s-path.list.to.match..BGP.atomic |
| 387a0 | 20 61 67 67 72 65 67 61 74 65 20 61 74 74 72 69 62 75 74 65 2e 00 42 47 50 20 63 6f 6d 6d 75 6e | .aggregate.attribute..BGP.commun |
| 387c0 | 69 74 79 2d 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 2e 00 42 47 50 20 65 78 74 65 6e 64 65 64 20 | ity-list.to.match..BGP.extended. |
| 387e0 | 63 6f 6d 6d 75 6e 69 74 79 20 74 6f 20 6d 61 74 63 68 2e 00 42 47 50 20 72 6f 6c 65 73 20 61 72 | community.to.match..BGP.roles.ar |
| 38800 | 65 20 64 65 66 69 6e 65 64 20 69 6e 20 52 46 43 20 3a 72 66 63 3a 60 39 32 33 34 60 20 61 6e 64 | e.defined.in.RFC.:rfc:`9234`.and |
| 38820 | 20 70 72 6f 76 69 64 65 20 61 6e 20 65 61 73 79 20 77 61 79 20 74 6f 20 61 64 64 20 72 6f 75 74 | .provide.an.easy.way.to.add.rout |
| 38840 | 65 20 6c 65 61 6b 20 70 72 65 76 65 6e 74 69 6f 6e 2c 20 64 65 74 65 63 74 69 6f 6e 20 61 6e 64 | e.leak.prevention,.detection.and |
| 38860 | 20 6d 69 74 69 67 61 74 69 6f 6e 2e 20 54 68 65 20 6c 6f 63 61 6c 20 52 6f 6c 65 20 76 61 6c 75 | .mitigation..The.local.Role.valu |
| 38880 | 65 20 69 73 20 6e 65 67 6f 74 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 6e 65 77 20 42 47 50 | e.is.negotiated.with.the.new.BGP |
| 388a0 | 20 52 6f 6c 65 20 63 61 70 61 62 69 6c 69 74 79 20 77 68 69 63 68 20 68 61 73 20 61 20 62 75 69 | .Role.capability.which.has.a.bui |
| 388c0 | 6c 74 2d 69 6e 20 63 68 65 63 6b 20 6f 66 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 | lt-in.check.of.the.corresponding |
| 388e0 | 20 76 61 6c 75 65 2e 20 49 6e 20 63 61 73 65 20 6f 66 20 61 20 6d 69 73 6d 61 74 63 68 20 74 68 | .value..In.case.of.a.mismatch.th |
| 38900 | 65 20 6e 65 77 20 4f 50 45 4e 20 52 6f 6c 65 73 20 4d 69 73 6d 61 74 63 68 20 4e 6f 74 69 66 69 | e.new.OPEN.Roles.Mismatch.Notifi |
| 38920 | 63 61 74 69 6f 6e 20 3c 32 2c 20 31 31 3e 20 77 6f 75 6c 64 20 62 65 20 73 65 6e 74 2e 20 54 68 | cation.<2,.11>.would.be.sent..Th |
| 38940 | 65 20 63 6f 72 72 65 63 74 20 52 6f 6c 65 20 70 61 69 72 73 20 61 72 65 3a 00 42 47 50 20 72 6f | e.correct.Role.pairs.are:.BGP.ro |
| 38960 | 75 74 65 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 73 69 64 65 20 74 68 65 20 73 61 6d 65 20 | uters.connected.inside.the.same. |
| 38980 | 41 53 20 74 68 72 6f 75 67 68 20 42 47 50 20 62 65 6c 6f 6e 67 20 74 6f 20 61 6e 20 69 6e 74 65 | AS.through.BGP.belong.to.an.inte |
| 389a0 | 72 6e 61 6c 20 42 47 50 20 73 65 73 73 69 6f 6e 2c 20 6f 72 20 49 42 47 50 2e 20 49 6e 20 6f 72 | rnal.BGP.session,.or.IBGP..In.or |
| 389c0 | 64 65 72 20 74 6f 20 70 72 65 76 65 6e 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 6c 6f 6f | der.to.prevent.routing.table.loo |
| 389e0 | 70 73 2c 20 49 42 47 50 20 73 70 65 61 6b 65 72 20 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 74 | ps,.IBGP.speaker.does.not.advert |
| 38a00 | 69 73 65 20 49 42 47 50 2d 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 74 6f 20 6f 74 68 65 72 | ise.IBGP-learned.routes.to.other |
| 38a20 | 20 49 42 47 50 20 73 70 65 61 6b 65 72 20 28 53 70 6c 69 74 20 48 6f 72 69 7a 6f 6e 20 6d 65 63 | .IBGP.speaker.(Split.Horizon.mec |
| 38a40 | 68 61 6e 69 73 6d 29 2e 20 41 73 20 73 75 63 68 2c 20 49 42 47 50 20 72 65 71 75 69 72 65 73 20 | hanism)..As.such,.IBGP.requires. |
| 38a60 | 61 20 66 75 6c 6c 20 6d 65 73 68 20 6f 66 20 61 6c 6c 20 70 65 65 72 73 2e 20 46 6f 72 20 6c 61 | a.full.mesh.of.all.peers..For.la |
| 38a80 | 72 67 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 69 73 20 71 75 69 63 6b 6c 79 20 62 65 63 6f 6d | rge.networks,.this.quickly.becom |
| 38aa0 | 65 73 20 75 6e 73 63 61 6c 61 62 6c 65 2e 00 42 47 50 20 72 6f 75 74 65 73 20 6d 61 79 20 62 65 | es.unscalable..BGP.routes.may.be |
| 38ac0 | 20 6c 65 61 6b 65 64 20 28 69 2e 65 2e 20 63 6f 70 69 65 64 29 20 62 65 74 77 65 65 6e 20 61 20 | .leaked.(i.e..copied).between.a. |
| 38ae0 | 75 6e 69 63 61 73 74 20 56 52 46 20 52 49 42 20 61 6e 64 20 74 68 65 20 56 50 4e 20 53 41 46 49 | unicast.VRF.RIB.and.the.VPN.SAFI |
| 38b00 | 20 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 20 66 6f 72 20 75 73 65 20 | .RIB.of.the.default.VRF.for.use. |
| 38b20 | 69 6e 20 4d 50 4c 53 2d 62 61 73 65 64 20 4c 33 56 50 4e 73 2e 20 55 6e 69 63 61 73 74 20 72 6f | in.MPLS-based.L3VPNs..Unicast.ro |
| 38b40 | 75 74 65 73 20 6d 61 79 20 61 6c 73 6f 20 62 65 20 6c 65 61 6b 65 64 20 62 65 74 77 65 65 6e 20 | utes.may.also.be.leaked.between. |
| 38b60 | 61 6e 79 20 56 52 46 73 20 28 69 6e 63 6c 75 64 69 6e 67 20 74 68 65 20 75 6e 69 63 61 73 74 20 | any.VRFs.(including.the.unicast. |
| 38b80 | 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 42 47 50 20 69 6e 73 74 61 6e 63 65 29 | RIB.of.the.default.BGP.instance) |
| 38ba0 | 2e 20 41 20 73 68 6f 72 74 63 75 74 20 73 79 6e 74 61 78 20 69 73 20 61 6c 73 6f 20 61 76 61 69 | ..A.shortcut.syntax.is.also.avai |
| 38bc0 | 6c 61 62 6c 65 20 66 6f 72 20 73 70 65 63 69 66 79 69 6e 67 20 6c 65 61 6b 69 6e 67 20 66 72 6f | lable.for.specifying.leaking.fro |
| 38be0 | 6d 20 6f 6e 65 20 56 52 46 20 74 6f 20 61 6e 6f 74 68 65 72 20 56 52 46 20 75 73 69 6e 67 20 74 | m.one.VRF.to.another.VRF.using.t |
| 38c00 | 68 65 20 64 65 66 61 75 6c 74 20 69 6e 73 74 61 6e 63 65 e2 80 99 73 20 56 50 4e 20 52 49 42 20 | he.default.instance...s.VPN.RIB. |
| 38c20 | 61 73 20 74 68 65 20 69 6e 74 65 6d 65 64 69 61 72 79 20 2e 20 41 20 63 6f 6d 6d 6f 6e 20 61 70 | as.the.intemediary...A.common.ap |
| 38c40 | 70 6c 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 56 52 46 2d 56 52 46 20 66 65 61 74 75 72 65 | plication.of.the.VRF-VRF.feature |
| 38c60 | 20 69 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 61 20 63 75 73 74 6f 6d 65 72 e2 80 99 73 20 70 72 | .is.to.connect.a.customer...s.pr |
| 38c80 | 69 76 61 74 65 20 72 6f 75 74 69 6e 67 20 64 6f 6d 61 69 6e 20 74 6f 20 61 20 70 72 6f 76 69 64 | ivate.routing.domain.to.a.provid |
| 38ca0 | 65 72 e2 80 99 73 20 56 50 4e 20 73 65 72 76 69 63 65 2e 20 4c 65 61 6b 69 6e 67 20 69 73 20 63 | er...s.VPN.service..Leaking.is.c |
| 38cc0 | 6f 6e 66 69 67 75 72 65 64 20 66 72 6f 6d 20 74 68 65 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 | onfigured.from.the.point.of.view |
| 38ce0 | 20 6f 66 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 56 52 46 3a 20 69 6d 70 6f 72 74 20 72 65 | .of.an.individual.VRF:.import.re |
| 38d00 | 66 65 72 73 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 6b 65 64 20 66 72 6f 6d 20 56 50 4e 20 74 | fers.to.routes.leaked.from.VPN.t |
| 38d20 | 6f 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 2c 20 77 68 65 72 65 61 73 20 65 78 70 6f 72 74 20 | o.a.unicast.VRF,.whereas.export. |
| 38d40 | 72 65 66 65 72 73 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 6b 65 64 20 66 72 6f 6d 20 61 20 75 | refers.to.routes.leaked.from.a.u |
| 38d60 | 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 00 42 53 53 20 63 6f 6c 6f 72 69 6e 67 20 | nicast.VRF.to.VPN..BSS.coloring. |
| 38d80 | 68 65 6c 70 73 20 74 6f 20 70 72 65 76 65 6e 74 20 63 68 61 6e 6e 65 6c 20 6a 61 6d 6d 69 6e 67 | helps.to.prevent.channel.jamming |
| 38da0 | 20 77 68 65 6e 20 6d 75 6c 74 69 70 6c 65 20 41 50 73 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 | .when.multiple.APs.use.the.same. |
| 38dc0 | 63 68 61 6e 6e 65 6c 73 2e 00 42 55 4d 20 74 72 61 66 66 69 63 20 69 73 20 72 78 65 64 20 76 69 | channels..BUM.traffic.is.rxed.vi |
| 38de0 | 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 62 79 20 61 6c 6c 20 50 45 73 20 61 74 74 61 63 68 65 | a.the.overlay.by.all.PEs.attache |
| 38e00 | 64 20 74 6f 20 61 20 73 65 72 76 65 72 20 62 75 74 20 6f 6e 6c 79 20 74 68 65 20 44 46 20 63 61 | d.to.a.server.but.only.the.DF.ca |
| 38e20 | 6e 20 66 6f 72 77 61 72 64 20 74 68 65 20 64 65 2d 63 61 70 73 75 6c 61 74 65 64 20 74 72 61 66 | n.forward.the.de-capsulated.traf |
| 38e40 | 66 69 63 20 74 6f 20 74 68 65 20 61 63 63 65 73 73 20 70 6f 72 74 2e 20 54 6f 20 61 63 63 6f 6d | fic.to.the.access.port..To.accom |
| 38e60 | 6d 6f 64 61 74 65 20 74 68 61 74 20 6e 6f 6e 2d 44 46 20 66 69 6c 74 65 72 73 20 61 72 65 20 69 | modate.that.non-DF.filters.are.i |
| 38e80 | 6e 73 74 61 6c 6c 65 64 20 69 6e 20 74 68 65 20 64 61 74 61 70 6c 61 6e 65 20 74 6f 20 64 72 6f | nstalled.in.the.dataplane.to.dro |
| 38ea0 | 70 20 74 68 65 20 74 72 61 66 66 69 63 2e 00 42 61 62 65 6c 00 42 61 62 65 6c 20 61 20 64 75 61 | p.the.traffic..Babel.Babel.a.dua |
| 38ec0 | 6c 20 73 74 61 63 6b 20 70 72 6f 74 6f 63 6f 6c 2e 20 41 20 73 69 6e 67 6c 65 20 42 61 62 65 6c | l.stack.protocol..A.single.Babel |
| 38ee0 | 20 69 6e 73 74 61 6e 63 65 20 69 73 20 61 62 6c 65 20 74 6f 20 70 65 72 66 6f 72 6d 20 72 6f 75 | .instance.is.able.to.perform.rou |
| 38f00 | 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 42 61 62 | ting.for.both.IPv4.and.IPv6..Bab |
| 38f20 | 65 6c 20 69 73 20 61 20 6d 6f 64 65 72 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 | el.is.a.modern.routing.protocol. |
| 38f40 | 64 65 73 69 67 6e 65 64 20 74 6f 20 62 65 20 72 6f 62 75 73 74 20 61 6e 64 20 65 66 66 69 63 69 | designed.to.be.robust.and.effici |
| 38f60 | 65 6e 74 20 62 6f 74 68 20 69 6e 20 6f 72 64 69 6e 61 72 79 20 77 69 72 65 64 20 6e 65 74 77 6f | ent.both.in.ordinary.wired.netwo |
| 38f80 | 72 6b 73 20 61 6e 64 20 69 6e 20 77 69 72 65 6c 65 73 73 20 6d 65 73 68 20 6e 65 74 77 6f 72 6b | rks.and.in.wireless.mesh.network |
| 38fa0 | 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 75 73 65 73 20 68 6f 70 2d 63 6f 75 6e 74 | s..By.default,.it.uses.hop-count |
| 38fc0 | 20 6f 6e 20 77 69 72 65 64 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 61 20 76 61 72 69 61 6e 74 | .on.wired.networks.and.a.variant |
| 38fe0 | 20 6f 66 20 45 54 58 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 6c 69 6e 6b 73 2c 20 49 74 20 63 61 | .of.ETX.on.wireless.links,.It.ca |
| 39000 | 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 74 61 6b 65 20 72 61 64 69 6f 20 64 69 | n.be.configured.to.take.radio.di |
| 39020 | 76 65 72 73 69 74 79 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 61 6e 64 20 74 6f 20 61 75 74 6f | versity.into.account.and.to.auto |
| 39040 | 6d 61 74 69 63 61 6c 6c 79 20 63 6f 6d 70 75 74 65 20 61 20 6c 69 6e 6b 27 73 20 6c 61 74 65 6e | matically.compute.a.link's.laten |
| 39060 | 63 79 20 61 6e 64 20 69 6e 63 6c 75 64 65 20 69 74 20 69 6e 20 74 68 65 20 6d 65 74 72 69 63 2e | cy.and.include.it.in.the.metric. |
| 39080 | 20 49 74 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 39 36 36 60 2e 00 42 | .It.is.defined.in.:rfc:`8966`..B |
| 390a0 | 61 63 6b 65 6e 64 00 42 61 63 6b 65 6e 64 20 73 65 72 76 69 63 65 20 63 65 72 74 69 66 69 63 61 | ackend.Backend.service.certifica |
| 390c0 | 74 65 73 20 61 72 65 20 63 68 65 63 6b 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 20 63 65 72 74 | tes.are.checked.against.the.cert |
| 390e0 | 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 | ificate.authority.specified.in.t |
| 39100 | 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 63 6f 75 6c 64 20 62 65 | he.configuration,.which.could.be |
| 39120 | 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 43 41 2e 00 42 61 6c 61 6e 63 65 20 61 6c 67 6f 72 69 74 | .an.internal.CA..Balance.algorit |
| 39140 | 68 6d 73 3a 00 42 61 6c 61 6e 63 69 6e 67 20 52 75 6c 65 73 00 42 61 6c 61 6e 63 69 6e 67 20 62 | hms:.Balancing.Rules.Balancing.b |
| 39160 | 61 73 65 64 20 6f 6e 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 42 61 6c 61 6e 63 69 6e 67 20 77 69 | ased.on.domain.name.Balancing.wi |
| 39180 | 74 68 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 00 42 61 6e 64 77 69 64 74 68 20 | th.HTTP.health.checks.Bandwidth. |
| 391a0 | 53 68 61 70 69 6e 67 00 42 61 6e 64 77 69 64 74 68 20 53 68 61 70 69 6e 67 20 66 6f 72 20 6c 6f | Shaping.Bandwidth.Shaping.for.lo |
| 391c0 | 63 61 6c 20 75 73 65 72 73 00 42 61 6e 64 77 69 64 74 68 20 72 61 74 65 20 6c 69 6d 69 74 73 20 | cal.users.Bandwidth.rate.limits. |
| 391e0 | 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 6f 72 20 52 41 | can.be.set.for.local.users.or.RA |
| 39200 | 44 49 55 53 20 62 61 73 65 64 20 61 74 74 72 69 62 75 74 65 73 2e 00 42 61 6e 64 77 69 64 74 68 | DIUS.based.attributes..Bandwidth |
| 39220 | 20 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 | .rate.limits.can.be.set.for.loca |
| 39240 | 6c 20 75 73 65 72 73 20 6f 72 20 76 69 61 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 74 74 72 | l.users.or.via.RADIUS.based.attr |
| 39260 | 69 62 75 74 65 73 2e 00 42 61 6e 64 77 69 64 74 68 20 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 | ibutes..Bandwidth.rate.limits.ca |
| 39280 | 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 77 69 74 68 69 6e 20 | n.be.set.for.local.users.within. |
| 392a0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 72 20 76 69 61 20 52 41 44 49 55 53 20 | the.configuration.or.via.RADIUS. |
| 392c0 | 62 61 73 65 64 20 61 74 74 72 69 62 75 74 65 73 2e 00 42 61 73 65 20 63 68 61 69 6e 20 66 6f 72 | based.attributes..Base.chain.for |
| 392e0 | 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 | .traffic.towards.the.router.is.` |
| 39300 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 | `set.firewall.ipv4.input.filter. |
| 39320 | 2e 2e 2e 60 60 00 42 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 | ...``.Base.chain.for.traffic.tow |
| 39340 | 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | ards.the.router.is.``set.firewal |
| 39360 | 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 73 65 20 63 | l.ipv6.input.filter....``.Base.c |
| 39380 | 68 61 69 6e 20 69 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 20 74 68 65 20 72 | hain.is.for.traffic.toward.the.r |
| 393a0 | 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 | outer.is.``set.firewall.ipv4.inp |
| 393c0 | 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 73 65 20 63 68 61 69 6e 20 69 73 20 66 6f | ut.filter....``.Base.chain.is.fo |
| 393e0 | 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 | r.traffic.toward.the.router.is.` |
| 39400 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 | `set.firewall.ipv6.input.filter. |
| 39420 | 2e 2e 2e 60 60 00 42 61 73 65 6c 69 6e 65 20 44 4d 56 50 4e 20 74 6f 70 6f 6c 6f 67 79 00 42 61 | ...``.Baseline.DMVPN.topology.Ba |
| 39440 | 73 69 63 20 43 6f 6e 63 65 70 74 73 00 42 61 73 69 63 20 63 6f 6d 6d 61 6e 64 73 00 42 61 73 69 | sic.Concepts.Basic.commands.Basi |
| 39460 | 63 20 66 69 6c 74 65 72 69 6e 67 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 6e 67 20 61 63 | c.filtering.can.be.done.using.ac |
| 39480 | 63 65 73 73 2d 6c 69 73 74 20 61 6e 64 20 61 63 63 65 73 73 2d 6c 69 73 74 36 2e 00 42 61 73 69 | cess-list.and.access-list6..Basi |
| 394a0 | 63 20 66 69 6c 74 65 72 69 6e 67 20 63 6f 75 6c 64 20 61 6c 73 6f 20 62 65 20 61 70 70 6c 69 65 | c.filtering.could.also.be.applie |
| 394c0 | 64 20 74 6f 20 49 50 76 36 20 74 72 61 66 66 69 63 2e 00 42 61 73 69 63 20 73 65 74 75 70 00 42 | d.to.IPv6.traffic..Basic.setup.B |
| 394e0 | 65 20 73 75 72 65 20 74 6f 20 73 65 74 20 61 20 73 61 6e 65 20 64 65 66 61 75 6c 74 20 63 6f 6e | e.sure.to.set.a.sane.default.con |
| 39500 | 66 69 67 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 67 20 66 69 6c 65 2c 20 | fig.in.the.default.config.file,. |
| 39520 | 74 68 69 73 20 77 69 6c 6c 20 62 65 20 6c 6f 61 64 65 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 | this.will.be.loaded.in.the.case. |
| 39540 | 74 68 61 74 20 61 20 75 73 65 72 20 69 73 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 61 6e 64 | that.a.user.is.authenticated.and |
| 39560 | 20 6e 6f 20 66 69 6c 65 20 69 73 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 | .no.file.is.found.in.the.configu |
| 39580 | 72 65 64 20 64 69 72 65 63 74 6f 72 79 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 75 73 65 72 73 | red.directory.matching.the.users |
| 395a0 | 20 75 73 65 72 6e 61 6d 65 2f 67 72 6f 75 70 2e 00 42 65 61 63 6f 6e 20 50 72 6f 74 65 63 74 69 | .username/group..Beacon.Protecti |
| 395c0 | 6f 6e 3a 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 72 61 6d 65 20 70 72 6f 74 65 63 74 69 6f 6e 20 | on:.management.frame.protection. |
| 395e0 | 66 6f 72 20 42 65 61 63 6f 6e 20 66 72 61 6d 65 73 2e 00 42 65 61 6d 66 6f 72 6d 69 6e 67 20 63 | for.Beacon.frames..Beamforming.c |
| 39600 | 61 70 61 62 69 6c 69 74 69 65 73 3a 00 42 65 63 61 75 73 65 20 61 6e 20 61 67 67 72 65 67 61 74 | apabilities:.Because.an.aggregat |
| 39620 | 6f 72 20 63 61 6e 6e 6f 74 20 62 65 20 61 63 74 69 76 65 20 77 69 74 68 6f 75 74 20 61 74 20 6c | or.cannot.be.active.without.at.l |
| 39640 | 65 61 73 74 20 6f 6e 65 20 61 76 61 69 6c 61 62 6c 65 20 6c 69 6e 6b 2c 20 73 65 74 74 69 6e 67 | east.one.available.link,.setting |
| 39660 | 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 74 6f 20 30 20 6f 72 20 74 6f 20 31 20 68 61 73 20 74 68 | .this.option.to.0.or.to.1.has.th |
| 39680 | 65 20 65 78 61 63 74 20 73 61 6d 65 20 65 66 66 65 63 74 2e 00 42 65 63 61 75 73 65 20 65 78 69 | e.exact.same.effect..Because.exi |
| 396a0 | 73 74 69 6e 67 20 73 65 73 73 69 6f 6e 73 20 64 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 | sting.sessions.do.not.automatica |
| 396c0 | 6c 6c 79 20 66 61 69 6c 20 6f 76 65 72 20 74 6f 20 61 20 6e 65 77 20 70 61 74 68 2c 20 74 68 65 | lly.fail.over.to.a.new.path,.the |
| 396e0 | 20 73 65 73 73 69 6f 6e 20 74 61 62 6c 65 20 63 61 6e 20 62 65 20 66 6c 75 73 68 65 64 20 6f 6e | .session.table.can.be.flushed.on |
| 39700 | 20 65 61 63 68 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 63 68 61 6e 67 65 3a 00 42 | .each.connection.state.change:.B |
| 39720 | 65 66 6f 72 65 20 65 6e 61 62 6c 69 6e 67 20 61 6e 79 20 68 61 72 64 77 61 72 65 20 73 65 67 6d | efore.enabling.any.hardware.segm |
| 39740 | 65 6e 74 61 74 69 6f 6e 20 6f 66 66 6c 6f 61 64 20 61 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 | entation.offload.a.corresponding |
| 39760 | 20 73 6f 66 74 77 61 72 65 20 6f 66 66 6c 6f 61 64 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e | .software.offload.is.required.in |
| 39780 | 20 47 53 4f 2e 20 4f 74 68 65 72 77 69 73 65 20 69 74 20 62 65 63 6f 6d 65 73 20 70 6f 73 73 69 | .GSO..Otherwise.it.becomes.possi |
| 397a0 | 62 6c 65 20 66 6f 72 20 61 20 66 72 61 6d 65 20 74 6f 20 62 65 20 72 65 2d 72 6f 75 74 65 64 20 | ble.for.a.frame.to.be.re-routed. |
| 397c0 | 62 65 74 77 65 65 6e 20 64 65 76 69 63 65 73 20 61 6e 64 20 65 6e 64 20 75 70 20 62 65 69 6e 67 | between.devices.and.end.up.being |
| 397e0 | 20 75 6e 61 62 6c 65 20 74 6f 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 00 42 65 66 6f 72 | .unable.to.be.transmitted..Befor |
| 39800 | 65 20 74 65 73 74 69 6e 67 2c 20 77 65 20 63 61 6e 20 63 68 65 63 6b 20 6d 65 6d 62 65 72 73 20 | e.testing,.we.can.check.members. |
| 39820 | 6f 66 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 42 65 66 6f 72 65 20 74 65 73 74 69 | of.firewall.groups:.Before.testi |
| 39840 | 6e 67 2c 20 77 65 20 63 61 6e 20 63 68 65 63 6b 20 74 68 65 20 6d 65 6d 62 65 72 73 20 6f 66 20 | ng,.we.can.check.the.members.of. |
| 39860 | 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 42 65 66 6f 72 65 20 79 6f 75 20 61 72 65 20 | firewall.groups:.Before.you.are. |
| 39880 | 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 61 20 72 75 6c 65 2d 73 65 74 20 74 6f 20 61 20 7a 6f | able.to.apply.a.rule-set.to.a.zo |
| 398a0 | 6e 65 20 79 6f 75 20 68 61 76 65 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 7a 6f 6e 65 73 20 | ne.you.have.to.create.the.zones. |
| 398c0 | 66 69 72 73 74 2e 00 42 65 6c 6f 77 20 61 72 65 20 61 20 6c 69 73 74 20 6f 66 20 72 65 63 6f 72 | first..Below.are.a.list.of.recor |
| 398e0 | 64 20 74 79 70 65 73 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 | d.types.available.to.be.configur |
| 39900 | 65 64 20 77 69 74 68 69 6e 20 56 79 4f 53 2e 20 53 6f 6d 65 20 72 65 63 6f 72 64 73 20 73 75 70 | ed.within.VyOS..Some.records.sup |
| 39920 | 70 6f 72 74 20 73 70 65 63 69 61 6c 20 60 3c 6e 61 6d 65 3e 60 20 6b 65 79 77 6f 72 64 73 3a 00 | port.special.`<name>`.keywords:. |
| 39940 | 42 65 6c 6f 77 20 66 6c 6f 77 2d 63 68 61 72 74 20 63 6f 75 6c 64 20 62 65 20 61 20 71 75 69 63 | Below.flow-chart.could.be.a.quic |
| 39960 | 6b 20 72 65 66 65 72 65 6e 63 65 20 66 6f 72 20 74 68 65 20 63 6c 6f 73 65 2d 61 63 74 69 6f 6e | k.reference.for.the.close-action |
| 39980 | 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 68 6f 77 20 74 68 | .combination.depending.on.how.th |
| 399a0 | 65 20 70 65 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 42 65 6c 6f 77 20 69 73 20 61 | e.peer.is.configured..Below.is.a |
| 399c0 | 6e 20 65 78 61 6d 70 6c 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 4c 4e 53 3a 00 42 65 | n.example.to.configure.a.LNS:.Be |
| 399e0 | 73 74 20 65 66 66 6f 72 74 20 74 72 61 66 66 69 63 2c 20 64 65 66 61 75 6c 74 00 42 65 74 77 65 | st.effort.traffic,.default.Betwe |
| 39a00 | 65 6e 20 63 6f 6d 70 75 74 65 72 73 2c 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 63 6f | en.computers,.the.most.common.co |
| 39a20 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 65 64 20 77 61 73 20 22 38 4e 31 22 3a 20 65 69 67 68 | nfiguration.used.was."8N1":.eigh |
| 39a40 | 74 20 62 69 74 20 63 68 61 72 61 63 74 65 72 73 2c 20 77 69 74 68 20 6f 6e 65 20 73 74 61 72 74 | t.bit.characters,.with.one.start |
| 39a60 | 20 62 69 74 2c 20 6f 6e 65 20 73 74 6f 70 20 62 69 74 2c 20 61 6e 64 20 6e 6f 20 70 61 72 69 74 | .bit,.one.stop.bit,.and.no.parit |
| 39a80 | 79 20 62 69 74 2e 20 54 68 75 73 20 31 30 20 42 61 75 64 20 74 69 6d 65 73 20 61 72 65 20 75 73 | y.bit..Thus.10.Baud.times.are.us |
| 39aa0 | 65 64 20 74 6f 20 73 65 6e 64 20 61 20 73 69 6e 67 6c 65 20 63 68 61 72 61 63 74 65 72 2c 20 61 | ed.to.send.a.single.character,.a |
| 39ac0 | 6e 64 20 73 6f 20 64 69 76 69 64 69 6e 67 20 74 68 65 20 73 69 67 6e 61 6c 6c 69 6e 67 20 62 69 | nd.so.dividing.the.signalling.bi |
| 39ae0 | 74 2d 72 61 74 65 20 62 79 20 74 65 6e 20 72 65 73 75 6c 74 73 20 69 6e 20 74 68 65 20 6f 76 65 | t-rate.by.ten.results.in.the.ove |
| 39b00 | 72 61 6c 6c 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 73 70 65 65 64 20 69 6e 20 63 68 61 72 61 | rall.transmission.speed.in.chara |
| 39b20 | 63 74 65 72 73 20 70 65 72 20 73 65 63 6f 6e 64 2e 20 54 68 69 73 20 69 73 20 61 6c 73 6f 20 74 | cters.per.second..This.is.also.t |
| 39b40 | 68 65 20 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 20 69 66 20 6e 6f 6e 65 20 6f 66 20 74 68 | he.default.setting.if.none.of.th |
| 39b60 | 6f 73 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 64 65 66 69 6e 65 64 2e 00 42 69 64 69 72 65 63 | ose.options.are.defined..Bidirec |
| 39b80 | 74 69 6f 6e 61 6c 20 4e 41 54 00 42 69 6e 61 72 79 20 76 61 6c 75 65 00 42 69 6e 64 20 63 6f 6e | tional.NAT.Binary.value.Bind.con |
| 39ba0 | 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 20 67 69 76 65 6e 20 56 52 46 20 69 6e | tainer.network.to.a.given.VRF.in |
| 39bc0 | 73 74 61 6e 63 65 2e 00 42 69 6e 64 20 6c 69 73 74 65 6e 65 72 20 74 6f 20 73 70 65 63 69 66 69 | stance..Bind.listener.to.specifi |
| 39be0 | 63 20 69 6e 74 65 72 66 61 63 65 2f 61 64 64 72 65 73 73 2c 20 6d 61 6e 64 61 74 6f 72 79 20 66 | c.interface/address,.mandatory.f |
| 39c00 | 6f 72 20 49 50 76 36 00 42 69 6e 64 73 20 65 74 68 31 2e 32 34 31 20 61 6e 64 20 76 78 6c 61 6e | or.IPv6.Binds.eth1.241.and.vxlan |
| 39c20 | 32 34 31 20 74 6f 20 65 61 63 68 20 6f 74 68 65 72 20 62 79 20 6d 61 6b 69 6e 67 20 74 68 65 6d | 241.to.each.other.by.making.them |
| 39c40 | 20 62 6f 74 68 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6f 66 20 74 68 65 20 73 | .both.member.interfaces.of.the.s |
| 39c60 | 61 6d 65 20 62 72 69 64 67 65 2e 00 42 6c 61 63 6b 68 6f 6c 65 00 42 6c 6f 63 6b 20 73 6f 75 72 | ame.bridge..Blackhole.Block.sour |
| 39c80 | 63 65 20 49 50 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 53 75 62 73 65 71 75 65 6e 74 20 62 6c 6f | ce.IP.in.seconds..Subsequent.blo |
| 39ca0 | 63 6b 73 20 69 6e 63 72 65 61 73 65 20 62 79 20 61 20 66 61 63 74 6f 72 20 6f 66 20 31 2e 35 20 | cks.increase.by.a.factor.of.1.5. |
| 39cc0 | 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 32 30 2e 00 42 6c 6f 63 6b 20 73 6f 75 72 63 65 | The.default.is.120..Block.source |
| 39ce0 | 20 49 50 20 77 68 65 6e 20 74 68 65 69 72 20 63 75 6d 75 6c 61 74 69 76 65 20 61 74 74 61 63 6b | .IP.when.their.cumulative.attack |
| 39d00 | 20 73 63 6f 72 65 20 65 78 63 65 65 64 73 20 74 68 72 65 73 68 6f 6c 64 2e 20 54 68 65 20 64 65 | .score.exceeds.threshold..The.de |
| 39d20 | 66 61 75 6c 74 20 69 73 20 33 30 2e 00 42 6c 6f 63 6b 69 6e 67 20 63 61 6c 6c 20 77 69 74 68 20 | fault.is.30..Blocking.call.with. |
| 39d40 | 6e 6f 20 74 69 6d 65 6f 75 74 2e 20 53 79 73 74 65 6d 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 75 | no.timeout..System.will.become.u |
| 39d60 | 6e 72 65 73 70 6f 6e 73 69 76 65 20 69 66 20 73 63 72 69 70 74 20 64 6f 65 73 20 6e 6f 74 20 72 | nresponsive.if.script.does.not.r |
| 39d80 | 65 74 75 72 6e 21 00 42 6f 61 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 | eturn!.Boarder.Gateway.Protocol. |
| 39da0 | 28 42 47 50 29 20 6f 72 69 67 69 6e 20 63 6f 64 65 20 74 6f 20 6d 61 74 63 68 2e 00 42 6f 6e 64 | (BGP).origin.code.to.match..Bond |
| 39dc0 | 20 2f 20 4c 69 6e 6b 20 41 67 67 72 65 67 61 74 69 6f 6e 00 42 6f 6e 64 20 6f 70 74 69 6f 6e 73 | ./.Link.Aggregation.Bond.options |
| 39de0 | 00 42 6f 6f 74 20 69 6d 61 67 65 20 6c 65 6e 67 74 68 20 69 6e 20 35 31 32 2d 6f 63 74 65 74 20 | .Boot.image.length.in.512-octet. |
| 39e00 | 62 6c 6f 63 6b 73 00 42 6f 6f 74 73 74 72 61 70 20 66 69 6c 65 20 6e 61 6d 65 00 42 6f 74 68 20 | blocks.Bootstrap.file.name.Both. |
| 39e20 | 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 6d 75 6c 74 69 63 61 73 74 20 69 73 20 70 6f 73 73 69 | IPv4.and.IPv6.multicast.is.possi |
| 39e40 | 62 6c 65 2e 00 42 6f 74 68 20 6c 6f 63 61 6c 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 61 6e 64 | ble..Both.local.administered.and |
| 39e60 | 20 72 65 6d 6f 74 65 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 3a 61 62 62 72 3a 60 52 41 44 49 | .remote.administered.:abbr:`RADI |
| 39e80 | 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 69 61 6c 2d 49 | US.(Remote.Authentication.Dial-I |
| 39ea0 | 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 29 60 20 61 63 63 6f 75 6e 74 73 20 61 72 65 20 73 75 | n.User.Service)`.accounts.are.su |
| 39ec0 | 70 70 6f 72 74 65 64 2e 00 42 6f 74 68 20 72 65 70 6c 69 65 73 20 61 6e 64 20 72 65 71 75 65 73 | pported..Both.replies.and.reques |
| 39ee0 | 74 73 20 74 79 70 65 20 67 72 61 74 75 69 74 6f 75 73 20 61 72 70 20 77 69 6c 6c 20 74 72 69 67 | ts.type.gratuitous.arp.will.trig |
| 39f00 | 67 65 72 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 20 74 6f 20 62 65 20 75 70 64 61 74 65 64 2c | ger.the.ARP.table.to.be.updated, |
| 39f20 | 20 69 66 20 74 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 20 6f 6e 2e 00 42 72 61 6e 63 68 20 31 | .if.this.setting.is.on..Branch.1 |
| 39f40 | 27 73 20 72 6f 75 74 65 72 20 6d 69 67 68 74 20 68 61 76 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 | 's.router.might.have.the.followi |
| 39f60 | 6e 67 20 6c 69 6e 65 73 3a 00 42 72 69 64 67 65 00 42 72 69 64 67 65 20 46 69 72 65 77 61 6c 6c | ng.lines:.Bridge.Bridge.Firewall |
| 39f80 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 72 69 64 67 65 20 4f 70 74 69 6f 6e 73 00 42 72 | .Configuration.Bridge.Options.Br |
| 39fa0 | 69 64 67 65 20 52 75 6c 65 73 00 42 72 69 64 67 65 20 61 6e 73 77 65 72 73 20 6f 6e 20 49 50 20 | idge.Rules.Bridge.answers.on.IP. |
| 39fc0 | 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 2f 32 34 20 61 6e 64 20 32 30 30 31 3a 64 62 | address.192.0.2.1/24.and.2001:db |
| 39fe0 | 38 3a 3a 66 66 66 66 2f 36 34 00 42 72 69 64 67 65 20 6d 61 78 69 6d 75 6d 20 61 67 69 6e 67 20 | 8::ffff/64.Bridge.maximum.aging. |
| 3a000 | 60 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 32 30 | `<time>`.in.seconds.(default:.20 |
| 3a020 | 29 2e 00 42 72 69 64 67 65 3a 00 42 75 72 73 74 20 63 6f 75 6e 74 00 42 75 73 69 6e 65 73 73 20 | )..Bridge:.Burst.count.Business. |
| 3a040 | 55 73 65 72 73 00 42 75 74 20 62 65 66 6f 72 65 20 6c 65 61 72 6e 69 6e 67 20 74 6f 20 63 6f 6e | Users.But.before.learning.to.con |
| 3a060 | 66 69 67 75 72 65 20 79 6f 75 72 20 70 6f 6c 69 63 79 2c 20 77 65 20 77 69 6c 6c 20 77 61 72 6e | figure.your.policy,.we.will.warn |
| 3a080 | 20 79 6f 75 20 61 62 6f 75 74 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 75 6e 69 74 73 20 79 | .you.about.the.different.units.y |
| 3a0a0 | 6f 75 20 63 61 6e 20 75 73 65 20 61 6e 64 20 61 6c 73 6f 20 73 68 6f 77 20 79 6f 75 20 77 68 61 | ou.can.use.and.also.show.you.wha |
| 3a0c0 | 74 20 2a 63 6c 61 73 73 65 73 2a 20 61 72 65 20 61 6e 64 20 68 6f 77 20 74 68 65 79 20 77 6f 72 | t.*classes*.are.and.how.they.wor |
| 3a0e0 | 6b 2c 20 61 73 20 73 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 6d 61 79 20 72 65 71 75 69 72 65 20 | k,.as.some.policies.may.require. |
| 3a100 | 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 2e 00 42 79 20 64 65 66 61 75 6c | you.to.configure.them..By.defaul |
| 3a120 | 74 20 56 52 52 50 20 75 73 65 73 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 2e 20 49 | t.VRRP.uses.multicast.packets..I |
| 3a140 | 66 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 | f.your.network.does.not.support. |
| 3a160 | 6d 75 6c 74 69 63 61 73 74 20 66 6f 72 20 77 68 61 74 65 76 65 72 20 72 65 61 73 6f 6e 2c 20 79 | multicast.for.whatever.reason,.y |
| 3a180 | 6f 75 20 63 61 6e 20 6d 61 6b 65 20 56 52 52 50 20 75 73 65 20 75 6e 69 63 61 73 74 20 63 6f 6d | ou.can.make.VRRP.use.unicast.com |
| 3a1a0 | 6d 75 6e 69 63 61 74 69 6f 6e 20 69 6e 73 74 65 61 64 2e 00 42 79 20 64 65 66 61 75 6c 74 20 56 | munication.instead..By.default.V |
| 3a1c0 | 52 52 50 20 75 73 65 73 20 70 72 65 65 6d 70 74 69 6f 6e 2e 20 59 6f 75 20 63 61 6e 20 64 69 73 | RRP.uses.preemption..You.can.dis |
| 3a1e0 | 61 62 6c 65 20 69 74 20 77 69 74 68 20 74 68 65 20 22 6e 6f 2d 70 72 65 65 6d 70 74 22 20 6f 70 | able.it.with.the."no-preempt".op |
| 3a200 | 74 69 6f 6e 3a 00 42 79 20 64 65 66 61 75 6c 74 20 60 73 74 72 69 63 74 2d 6c 73 61 2d 63 68 65 | tion:.By.default.`strict-lsa-che |
| 3a220 | 63 6b 69 6e 67 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 65 6e 20 74 68 65 20 68 65 | cking`.is.configured.then.the.he |
| 3a240 | 6c 70 65 72 20 77 69 6c 6c 20 61 62 6f 72 74 20 74 68 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 | lper.will.abort.the.Graceful.Res |
| 3a260 | 74 61 72 74 20 77 68 65 6e 20 61 20 4c 53 41 20 63 68 61 6e 67 65 20 6f 63 63 75 72 73 20 77 68 | tart.when.a.LSA.change.occurs.wh |
| 3a280 | 69 63 68 20 61 66 66 65 63 74 73 20 74 68 65 20 72 65 73 74 61 72 74 69 6e 67 20 72 6f 75 74 65 | ich.affects.the.restarting.route |
| 3a2a0 | 72 2e 00 42 79 20 64 65 66 61 75 6c 74 20 74 68 65 20 73 63 6f 70 65 20 6f 66 20 74 68 65 20 70 | r..By.default.the.scope.of.the.p |
| 3a2c0 | 6f 72 74 20 62 69 6e 64 69 6e 67 73 20 66 6f 72 20 75 6e 62 6f 75 6e 64 20 73 6f 63 6b 65 74 73 | ort.bindings.for.unbound.sockets |
| 3a2e0 | 20 69 73 20 6c 69 6d 69 74 65 64 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 2e 20 | .is.limited.to.the.default.VRF.. |
| 3a300 | 54 68 61 74 20 69 73 2c 20 69 74 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 6d 61 74 63 68 65 64 20 | That.is,.it.will.not.be.matched. |
| 3a320 | 62 79 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 6e 67 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 | by.packets.arriving.on.interface |
| 3a340 | 73 20 65 6e 73 6c 61 76 65 64 20 74 6f 20 61 20 56 52 46 20 61 6e 64 20 70 72 6f 63 65 73 73 65 | s.enslaved.to.a.VRF.and.processe |
| 3a360 | 73 20 6d 61 79 20 62 69 6e 64 20 74 6f 20 74 68 65 20 73 61 6d 65 20 70 6f 72 74 20 69 66 20 74 | s.may.bind.to.the.same.port.if.t |
| 3a380 | 68 65 79 20 62 69 6e 64 20 74 6f 20 61 20 56 52 46 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 46 | hey.bind.to.a.VRF..By.default,.F |
| 3a3a0 | 52 52 20 77 69 6c 6c 20 62 72 69 6e 67 20 75 70 20 70 65 65 72 69 6e 67 20 77 69 74 68 20 6d 69 | RR.will.bring.up.peering.with.mi |
| 3a3c0 | 6e 69 6d 61 6c 20 63 6f 6d 6d 6f 6e 20 63 61 70 61 62 69 6c 69 74 79 20 66 6f 72 20 74 68 65 20 | nimal.common.capability.for.the. |
| 3a3e0 | 62 6f 74 68 20 73 69 64 65 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 74 68 65 20 | both.sides..For.example,.if.the. |
| 3a400 | 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 68 61 73 20 75 6e 69 63 61 73 74 20 61 6e 64 20 6d 75 6c | local.router.has.unicast.and.mul |
| 3a420 | 74 69 63 61 73 74 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 74 68 65 20 72 65 6d 6f | ticast.capabilities.and.the.remo |
| 3a440 | 74 65 20 72 6f 75 74 65 72 20 6f 6e 6c 79 20 68 61 73 20 75 6e 69 63 61 73 74 20 63 61 70 61 62 | te.router.only.has.unicast.capab |
| 3a460 | 69 6c 69 74 79 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 65 73 74 61 | ility.the.local.router.will.esta |
| 3a480 | 62 6c 69 73 68 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 75 6e 69 63 61 73 | blish.the.connection.with.unicas |
| 3a4a0 | 74 20 6f 6e 6c 79 20 63 61 70 61 62 69 6c 69 74 79 2e 20 57 68 65 6e 20 74 68 65 72 65 20 61 72 | t.only.capability..When.there.ar |
| 3a4c0 | 65 20 6e 6f 20 63 6f 6d 6d 6f 6e 20 63 61 70 61 62 69 6c 69 74 69 65 73 2c 20 46 52 52 20 73 65 | e.no.common.capabilities,.FRR.se |
| 3a4e0 | 6e 64 73 20 55 6e 73 75 70 70 6f 72 74 65 64 20 43 61 70 61 62 69 6c 69 74 79 20 65 72 72 6f 72 | nds.Unsupported.Capability.error |
| 3a500 | 20 61 6e 64 20 74 68 65 6e 20 72 65 73 65 74 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e | .and.then.resets.the.connection. |
| 3a520 | 00 42 79 20 64 65 66 61 75 6c 74 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 | .By.default,.VyOS.does.not.adver |
| 3a540 | 74 69 73 65 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 28 30 2e 30 2e 30 2e 30 2f 30 29 | tise.a.default.route.(0.0.0.0/0) |
| 3a560 | 20 65 76 65 6e 20 69 66 20 69 74 20 69 73 20 69 6e 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e | .even.if.it.is.in.routing.table. |
| 3a580 | 20 57 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 6e 6e 6f 75 6e 63 65 20 64 65 66 61 75 | .When.you.want.to.announce.defau |
| 3a5a0 | 6c 74 20 72 6f 75 74 65 73 20 74 6f 20 74 68 65 20 70 65 65 72 2c 20 75 73 65 20 74 68 69 73 20 | lt.routes.to.the.peer,.use.this. |
| 3a5c0 | 63 6f 6d 6d 61 6e 64 2e 20 55 73 69 6e 67 20 6f 70 74 69 6f 6e 61 6c 20 61 72 67 75 6d 65 6e 74 | command..Using.optional.argument |
| 3a5e0 | 20 3a 63 66 67 63 6d 64 3a 60 72 6f 75 74 65 2d 6d 61 70 60 20 79 6f 75 20 63 61 6e 20 69 6e 6a | .:cfgcmd:`route-map`.you.can.inj |
| 3a600 | 65 63 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 74 6f 20 67 69 76 65 6e 20 6e | ect.the.default.route.to.given.n |
| 3a620 | 65 69 67 68 62 6f 72 20 6f 6e 6c 79 20 69 66 20 74 68 65 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 | eighbor.only.if.the.conditions.i |
| 3a640 | 6e 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 61 72 65 20 6d 65 74 2e 00 42 79 20 64 65 66 61 | n.the.route.map.are.met..By.defa |
| 3a660 | 75 6c 74 2c 20 61 20 6e 65 77 20 74 6f 6b 65 6e 20 69 73 20 67 65 6e 65 72 61 74 65 64 20 65 76 | ult,.a.new.token.is.generated.ev |
| 3a680 | 65 72 79 20 33 30 20 73 65 63 6f 6e 64 73 20 62 79 20 74 68 65 20 6d 6f 62 69 6c 65 20 61 70 70 | ery.30.seconds.by.the.mobile.app |
| 3a6a0 | 6c 69 63 61 74 69 6f 6e 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6d 70 65 6e 73 61 74 65 | lication..In.order.to.compensate |
| 3a6c0 | 20 66 6f 72 20 70 6f 73 73 69 62 6c 65 20 74 69 6d 65 2d 73 6b 65 77 20 62 65 74 77 65 65 6e 20 | .for.possible.time-skew.between. |
| 3a6e0 | 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 2c 20 61 6e 20 65 78 | the.client.and.the.server,.an.ex |
| 3a700 | 74 72 61 20 74 6f 6b 65 6e 20 62 65 66 6f 72 65 20 61 6e 64 20 61 66 74 65 72 20 74 68 65 20 63 | tra.token.before.and.after.the.c |
| 3a720 | 75 72 72 65 6e 74 20 74 69 6d 65 20 69 73 20 61 6c 6c 6f 77 65 64 2e 20 54 68 69 73 20 61 6c 6c | urrent.time.is.allowed..This.all |
| 3a740 | 6f 77 73 20 66 6f 72 20 61 20 74 69 6d 65 20 73 6b 65 77 20 6f 66 20 75 70 20 74 6f 20 33 30 20 | ows.for.a.time.skew.of.up.to.30. |
| 3a760 | 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 | seconds.between.authentication.s |
| 3a780 | 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 64 64 | erver.and.client..By.default,.dd |
| 3a7a0 | 63 6c 69 65 6e 74 5f 20 77 69 6c 6c 20 75 70 64 61 74 65 20 61 20 64 79 6e 61 6d 69 63 20 64 6e | client_.will.update.a.dynamic.dn |
| 3a7c0 | 73 20 72 65 63 6f 72 64 20 75 73 69 6e 67 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 64 69 | s.record.using.the.IP.address.di |
| 3a7e0 | 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | rectly.attached.to.the.interface |
| 3a800 | 2e 20 49 66 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6e 63 65 20 69 73 20 62 65 68 69 6e | ..If.your.VyOS.instance.is.behin |
| 3a820 | 64 20 4e 41 54 2c 20 79 6f 75 72 20 72 65 63 6f 72 64 20 77 69 6c 6c 20 62 65 20 75 70 64 61 74 | d.NAT,.your.record.will.be.updat |
| 3a840 | 65 64 20 74 6f 20 70 6f 69 6e 74 20 74 6f 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 49 50 2e | ed.to.point.to.your.internal.IP. |
| 3a860 | 00 42 79 20 64 65 66 61 75 6c 74 2c 20 65 6e 61 62 6c 69 6e 67 20 52 50 4b 49 20 64 6f 65 73 20 | .By.default,.enabling.RPKI.does. |
| 3a880 | 6e 6f 74 20 63 68 61 6e 67 65 20 62 65 73 74 20 70 61 74 68 20 73 65 6c 65 63 74 69 6f 6e 2e 20 | not.change.best.path.selection.. |
| 3a8a0 | 49 6e 20 70 61 72 74 69 63 75 6c 61 72 2c 20 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 20 | In.particular,.invalid.prefixes. |
| 3a8c0 | 77 69 6c 6c 20 73 74 69 6c 6c 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 64 75 72 69 6e 67 20 | will.still.be.considered.during. |
| 3a8e0 | 62 65 73 74 20 70 61 74 68 20 73 65 6c 65 63 74 69 6f 6e 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 | best.path.selection..However,.th |
| 3a900 | 65 20 72 6f 75 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 69 67 | e.router.can.be.configured.to.ig |
| 3a920 | 6e 6f 72 65 20 61 6c 6c 20 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 2e 00 42 79 20 64 65 | nore.all.invalid.prefixes..By.de |
| 3a940 | 66 61 75 6c 74 2c 20 66 6f 72 20 73 77 69 74 63 68 65 64 20 74 72 61 66 66 69 63 2c 20 6f 6e 6c | fault,.for.switched.traffic,.onl |
| 3a960 | 79 20 74 68 65 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 | y.the.rules.defined.under.``set. |
| 3a980 | 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 60 60 20 61 72 65 20 61 70 70 6c 69 65 64 2e 20 54 | firewall.bridge``.are.applied..T |
| 3a9a0 | 68 65 72 65 20 61 72 65 20 74 77 6f 20 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 74 68 61 74 | here.are.two.global-options.that |
| 3a9c0 | 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 66 | .can.be.configured.in.order.to.f |
| 3a9e0 | 6f 72 63 65 20 64 65 65 70 65 72 20 61 6e 61 6c 79 73 69 73 20 6f 66 20 74 68 65 20 70 61 63 6b | orce.deeper.analysis.of.the.pack |
| 3aa00 | 65 74 20 6f 6e 20 74 68 65 20 49 50 20 6c 61 79 65 72 2e 20 54 68 65 73 65 20 6f 70 74 69 6f 6e | et.on.the.IP.layer..These.option |
| 3aa20 | 73 20 61 72 65 3a 00 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 73 75 70 70 6f 72 74 73 20 62 | s.are:.By.default,.it.supports.b |
| 3aa40 | 6f 74 68 20 70 6c 61 6e 6e 65 64 20 61 6e 64 20 75 6e 70 6c 61 6e 6e 65 64 20 6f 75 74 61 67 65 | oth.planned.and.unplanned.outage |
| 3aa60 | 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 6c 6f 63 61 6c 6c 79 20 61 64 76 65 72 74 69 73 65 | s..By.default,.locally.advertise |
| 3aa80 | 64 20 70 72 65 66 69 78 65 73 20 75 73 65 20 74 68 65 20 69 6d 70 6c 69 63 69 74 2d 6e 75 6c 6c | d.prefixes.use.the.implicit-null |
| 3aaa0 | 20 6c 61 62 65 6c 20 74 6f 20 65 6e 63 6f 64 65 20 69 6e 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 | .label.to.encode.in.the.outgoing |
| 3aac0 | 20 4e 4c 52 49 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 6e 67 69 6e 78 20 65 78 70 6f 73 65 73 | .NLRI..By.default,.nginx.exposes |
| 3aae0 | 20 74 68 65 20 6c 6f 63 61 6c 20 41 50 49 20 6f 6e 20 61 6c 6c 20 76 69 72 74 75 61 6c 20 73 65 | .the.local.API.on.all.virtual.se |
| 3ab00 | 72 76 65 72 73 2e 20 55 73 65 20 74 68 69 73 20 74 6f 20 72 65 73 74 72 69 63 74 20 6e 67 69 6e | rvers..Use.this.to.restrict.ngin |
| 3ab20 | 78 20 74 6f 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 76 69 72 74 75 61 6c 20 68 6f 73 74 73 2e 00 | x.to.one.or.more.virtual.hosts.. |
| 3ab40 | 42 79 20 64 65 66 61 75 6c 74 2c 20 72 65 63 6f 72 64 65 64 20 66 6c 6f 77 73 20 77 69 6c 6c 20 | By.default,.recorded.flows.will. |
| 3ab60 | 62 65 20 73 61 76 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 61 6e 64 20 63 61 6e 20 62 65 20 6c | be.saved.internally.and.can.be.l |
| 3ab80 | 69 73 74 65 64 20 77 69 74 68 20 74 68 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 2e 20 59 6f 75 20 | isted.with.the.CLI.command..You. |
| 3aba0 | 6d 61 79 20 64 69 73 61 62 6c 65 20 75 73 69 6e 67 20 74 68 65 20 6c 6f 63 61 6c 20 69 6e 2d 6d | may.disable.using.the.local.in-m |
| 3abc0 | 65 6d 6f 72 79 20 74 61 62 6c 65 20 77 69 74 68 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 42 79 | emory.table.with.the.command:.By |
| 3abe0 | 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 42 47 50 20 70 72 65 66 69 78 20 69 73 20 61 64 76 65 | .default,.the.BGP.prefix.is.adve |
| 3ac00 | 72 74 69 73 65 64 20 65 76 65 6e 20 69 66 20 69 74 27 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 20 | rtised.even.if.it's.not.present. |
| 3ac20 | 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 69 73 20 62 65 68 61 76 | in.the.routing.table..This.behav |
| 3ac40 | 69 6f 75 72 20 64 69 66 66 65 72 73 20 66 72 6f 6d 20 74 68 65 20 69 6d 70 6c 65 6d 65 6e 74 61 | iour.differs.from.the.implementa |
| 3ac60 | 74 69 6f 6e 20 6f 66 20 73 6f 6d 65 20 76 65 6e 64 6f 72 73 2e 00 42 79 20 64 65 66 61 75 6c 74 | tion.of.some.vendors..By.default |
| 3ac80 | 2c 20 74 68 69 73 20 62 72 69 64 67 69 6e 67 20 69 73 20 61 6c 6c 6f 77 65 64 2e 00 42 79 20 64 | ,.this.bridging.is.allowed..By.d |
| 3aca0 | 65 66 61 75 6c 74 2c 20 77 68 65 6e 20 56 79 4f 53 20 72 65 63 65 69 76 65 73 20 61 6e 20 49 43 | efault,.when.VyOS.receives.an.IC |
| 3acc0 | 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 70 61 63 6b 65 74 20 64 65 73 74 69 6e 65 64 20 | MP.echo.request.packet.destined. |
| 3ace0 | 66 6f 72 20 69 74 73 65 6c 66 2c 20 69 74 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 77 69 74 68 20 | for.itself,.it.will.answer.with. |
| 3ad00 | 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 70 6c 79 2c 20 75 6e 6c 65 73 73 20 79 6f 75 20 61 | an.ICMP.echo.reply,.unless.you.a |
| 3ad20 | 76 6f 69 64 20 69 74 20 74 68 72 6f 75 67 68 20 69 74 73 20 66 69 72 65 77 61 6c 6c 2e 00 42 79 | void.it.through.its.firewall..By |
| 3ad40 | 20 64 65 66 61 75 6c 74 2c 20 77 68 65 6e 20 56 79 4f 53 20 72 65 63 65 69 76 65 73 20 61 6e 20 | .default,.when.VyOS.receives.an. |
| 3ad60 | 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 70 61 63 6b 65 74 20 64 65 73 74 69 6e 65 | ICMP.echo.request.packet.destine |
| 3ad80 | 64 20 66 6f 72 20 69 74 73 65 6c 66 2c 20 69 74 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 77 69 74 | d.for.itself,.it.will.answer.wit |
| 3ada0 | 68 20 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 70 6c 79 2c 20 75 6e 6c 65 73 73 20 79 6f 75 | h.an.ICMP.echo.reply,.unless.you |
| 3adc0 | 20 70 72 65 76 65 6e 74 20 69 74 20 74 68 72 6f 75 67 68 20 69 74 73 20 66 69 72 65 77 61 6c 6c | .prevent.it.through.its.firewall |
| 3ade0 | 2e 00 42 79 20 75 73 69 6e 67 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 | ..By.using.Pseudo-Ethernet.inter |
| 3ae00 | 66 61 63 65 73 20 74 68 65 72 65 20 77 69 6c 6c 20 62 65 20 6c 65 73 73 20 73 79 73 74 65 6d 20 | faces.there.will.be.less.system. |
| 3ae20 | 6f 76 65 72 68 65 61 64 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 72 75 6e 6e 69 6e 67 20 61 20 74 | overhead.compared.to.running.a.t |
| 3ae40 | 72 61 64 69 74 69 6f 6e 61 6c 20 62 72 69 64 67 69 6e 67 20 61 70 70 72 6f 61 63 68 2e 20 50 73 | raditional.bridging.approach..Ps |
| 3ae60 | 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 61 6c 73 | eudo-Ethernet.interfaces.can.als |
| 3ae80 | 6f 20 62 65 20 75 73 65 64 20 74 6f 20 77 6f 72 6b 61 72 6f 75 6e 64 20 74 68 65 20 67 65 6e 65 | o.be.used.to.workaround.the.gene |
| 3aea0 | 72 61 6c 20 6c 69 6d 69 74 20 6f 66 20 34 30 39 36 20 76 69 72 74 75 61 6c 20 4c 41 4e 73 20 28 | ral.limit.of.4096.virtual.LANs.( |
| 3aec0 | 56 4c 41 4e 73 29 20 70 65 72 20 70 68 79 73 69 63 61 6c 20 45 74 68 65 72 6e 65 74 20 70 6f 72 | VLANs).per.physical.Ethernet.por |
| 3aee0 | 74 2c 20 73 69 6e 63 65 20 74 68 61 74 20 6c 69 6d 69 74 20 69 73 20 77 69 74 68 20 72 65 73 70 | t,.since.that.limit.is.with.resp |
| 3af00 | 65 63 74 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 4d 41 43 20 61 64 64 72 65 73 73 2e 00 42 79 70 | ect.to.a.single.MAC.address..Byp |
| 3af20 | 61 73 73 69 6e 67 20 74 68 65 20 77 65 62 70 72 6f 78 79 00 43 41 20 28 43 65 72 74 69 66 69 63 | assing.the.webproxy.CA.(Certific |
| 3af40 | 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 00 43 41 4b 45 00 43 47 4e 41 54 00 43 47 4e 41 54 20 | ate.Authority).CAKE.CGNAT.CGNAT. |
| 3af60 | 77 6f 72 6b 73 20 62 79 20 70 6c 61 63 69 6e 67 20 61 20 4e 41 54 20 64 65 76 69 63 65 20 77 69 | works.by.placing.a.NAT.device.wi |
| 3af80 | 74 68 69 6e 20 74 68 65 20 49 53 50 27 73 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 20 64 65 76 | thin.the.ISP's.network..This.dev |
| 3afa0 | 69 63 65 20 74 72 61 6e 73 6c 61 74 65 73 20 70 72 69 76 61 74 65 20 49 50 20 61 64 64 72 65 73 | ice.translates.private.IP.addres |
| 3afc0 | 73 65 73 20 66 72 6f 6d 20 63 75 73 74 6f 6d 65 72 20 6e 65 74 77 6f 72 6b 73 20 74 6f 20 61 20 | ses.from.customer.networks.to.a. |
| 3afe0 | 6c 69 6d 69 74 65 64 20 70 6f 6f 6c 20 6f 66 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 | limited.pool.of.public.IP.addres |
| 3b000 | 73 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 49 53 50 2e 20 54 68 69 73 20 61 6c | ses.assigned.to.the.ISP..This.al |
| 3b020 | 6c 6f 77 73 20 6d 61 6e 79 20 63 75 73 74 6f 6d 65 72 73 20 74 6f 20 73 68 61 72 65 20 61 20 73 | lows.many.customers.to.share.a.s |
| 3b040 | 6d 61 6c 6c 65 72 20 6e 75 6d 62 65 72 20 6f 66 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 | maller.number.of.public.IP.addre |
| 3b060 | 73 73 65 73 2e 00 43 52 49 54 49 43 2f 45 43 50 00 43 61 6c 6c 20 61 6e 6f 74 68 65 72 20 72 6f | sses..CRITIC/ECP.Call.another.ro |
| 3b080 | 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 20 6f 6e 20 6d 61 74 63 68 2e 00 43 61 70 61 62 69 6c | ute-map.policy.on.match..Capabil |
| 3b0a0 | 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 00 43 65 72 74 61 69 6e 20 76 65 6e 64 6f 72 73 20 | ity.Negotiation.Certain.vendors. |
| 3b0c0 | 75 73 65 20 62 72 6f 61 64 63 61 73 74 73 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 69 72 | use.broadcasts.to.identify.their |
| 3b0e0 | 20 65 71 75 69 70 6d 65 6e 74 20 77 69 74 68 69 6e 20 6f 6e 65 20 65 74 68 65 72 6e 65 74 20 73 | .equipment.within.one.ethernet.s |
| 3b100 | 65 67 6d 65 6e 74 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 69 66 20 79 6f 75 20 73 70 6c | egment..Unfortunately.if.you.spl |
| 3b120 | 69 74 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 56 4c | it.your.network.with.multiple.VL |
| 3b140 | 41 4e 73 20 79 6f 75 20 6c 6f 6f 73 65 20 74 68 65 20 61 62 69 6c 69 74 79 20 6f 66 20 69 64 65 | ANs.you.loose.the.ability.of.ide |
| 3b160 | 6e 74 69 66 79 69 6e 67 20 79 6f 75 72 20 65 71 75 69 70 6d 65 6e 74 2e 00 43 65 72 74 69 66 69 | ntifying.your.equipment..Certifi |
| 3b180 | 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 20 28 43 41 29 00 43 65 72 74 69 66 69 63 61 74 65 20 | cate.Authority.(CA).Certificate. |
| 3b1a0 | 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 20 69 6e 20 50 45 4d 20 66 6f 72 6d 61 74 2e 00 43 | revocation.list.in.PEM.format..C |
| 3b1c0 | 65 72 74 69 66 69 63 61 74 65 73 00 43 68 61 6e 67 65 20 73 79 73 74 65 6d 20 6b 65 79 62 6f 61 | ertificates.Change.system.keyboa |
| 3b1e0 | 72 64 20 6c 61 79 6f 75 74 20 74 6f 20 67 69 76 65 6e 20 6c 61 6e 67 75 61 67 65 2e 00 43 68 61 | rd.layout.to.given.language..Cha |
| 3b200 | 6e 67 65 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 73 | nge.the.default-action.with.this |
| 3b220 | 20 73 65 74 74 69 6e 67 2e 00 43 68 61 6e 67 65 73 20 69 6e 20 42 47 50 20 70 6f 6c 69 63 69 65 | .setting..Changes.in.BGP.policie |
| 3b240 | 73 20 72 65 71 75 69 72 65 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 62 65 20 | s.require.the.BGP.session.to.be. |
| 3b260 | 63 6c 65 61 72 65 64 2e 20 43 6c 65 61 72 69 6e 67 20 68 61 73 20 61 20 6c 61 72 67 65 20 6e 65 | cleared..Clearing.has.a.large.ne |
| 3b280 | 67 61 74 69 76 65 20 69 6d 70 61 63 74 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 6f 70 65 72 61 74 69 | gative.impact.on.network.operati |
| 3b2a0 | 6f 6e 73 2e 20 53 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c 65 | ons..Soft.reconfiguration.enable |
| 3b2c0 | 73 20 79 6f 75 20 74 6f 20 67 65 6e 65 72 61 74 65 20 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 | s.you.to.generate.inbound.update |
| 3b2e0 | 73 20 66 72 6f 6d 20 61 20 6e 65 69 67 68 62 6f 72 2c 20 63 68 61 6e 67 65 20 61 6e 64 20 61 63 | s.from.a.neighbor,.change.and.ac |
| 3b300 | 74 69 76 61 74 65 20 42 47 50 20 70 6f 6c 69 63 69 65 73 20 77 69 74 68 6f 75 74 20 63 6c 65 61 | tivate.BGP.policies.without.clea |
| 3b320 | 72 69 6e 67 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 2e 00 43 68 61 6e 67 65 73 20 74 6f | ring.the.BGP.session..Changes.to |
| 3b340 | 20 74 68 65 20 4e 41 54 20 73 79 73 74 65 6d 20 6f 6e 6c 79 20 61 66 66 65 63 74 20 6e 65 77 6c | .the.NAT.system.only.affect.newl |
| 3b360 | 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 20 41 6c 72 65 61 | y.established.connections..Alrea |
| 3b380 | 64 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 6e | dy.established.connections.are.n |
| 3b3a0 | 6f 74 20 61 66 66 65 63 74 65 64 2e 00 43 68 61 6e 67 69 6e 67 20 74 68 65 20 6b 65 79 6d 61 70 | ot.affected..Changing.the.keymap |
| 3b3c0 | 20 6f 6e 6c 79 20 68 61 73 20 61 6e 20 65 66 66 65 63 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 | .only.has.an.effect.on.the.syste |
| 3b3e0 | 6d 20 63 6f 6e 73 6f 6c 65 2c 20 75 73 69 6e 67 20 53 53 48 20 6f 72 20 53 65 72 69 61 6c 20 72 | m.console,.using.SSH.or.Serial.r |
| 3b400 | 65 6d 6f 74 65 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 69 73 20 6e 6f | emote.access.to.the.device.is.no |
| 3b420 | 74 20 61 66 66 65 63 74 65 64 20 61 73 20 74 68 65 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 | t.affected.as.the.keyboard.layou |
| 3b440 | 74 20 68 65 72 65 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f 20 79 6f 75 72 20 61 63 63 65 73 | t.here.corresponds.to.your.acces |
| 3b460 | 73 20 73 79 73 74 65 6d 2e 00 43 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 | s.system..Channel.number.(IEEE.8 |
| 3b480 | 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e | 02.11),.for.2.4Ghz.(802.11.b/g/n |
| 3b4a0 | 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 | ).channels.range.from.1-14..On.5 |
| 3b4c0 | 47 68 7a 20 28 38 30 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 | Ghz.(802.11.a/h/j/n/ac).channels |
| 3b4e0 | 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 30 2c 20 33 34 20 74 6f 20 31 37 33 00 43 68 61 6e | .available.are.0,.34.to.173.Chan |
| 3b500 | 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e | nel.number.(IEEE.802.11),.for.2. |
| 3b520 | 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e | 4Ghz.(802.11.b/g/n).channels.ran |
| 3b540 | 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 30 32 2e 31 31 20 61 2f | ge.from.1-14..On.5Ghz.(802.11.a/ |
| 3b560 | 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 | h/j/n/ac).channels.available.are |
| 3b580 | 20 30 2c 20 33 34 20 74 6f 20 31 37 33 2e 20 4f 6e 20 36 47 48 7a 20 28 38 30 32 2e 31 31 20 61 | .0,.34.to.173..On.6GHz.(802.11.a |
| 3b5a0 | 78 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 32 33 33 2e | x).channels.range.from.1.to.233. |
| 3b5c0 | 00 43 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 30 32 2e 31 31 29 2c 20 66 | .Channel.number.(IEEE.802.11),.f |
| 3b5e0 | 6f 72 20 32 2e 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e 2f 61 78 29 20 63 68 61 6e | or.2.4Ghz.(802.11.b/g/n/ax).chan |
| 3b600 | 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 | nels.range.from.1-14..On.5Ghz.(8 |
| 3b620 | 30 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c | 02.11.a/h/j/n/ac).channels.avail |
| 3b640 | 61 62 6c 65 20 61 72 65 20 30 2c 20 33 34 20 74 6f 20 31 37 37 2e 20 4f 6e 20 36 47 48 7a 20 28 | able.are.0,.34.to.177..On.6GHz.( |
| 3b660 | 38 30 32 2e 31 31 20 61 78 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 | 802.11.ax).channels.range.from.1 |
| 3b680 | 20 74 6f 20 32 33 33 2e 00 43 68 65 63 6b 20 69 66 20 74 68 65 20 49 6e 74 65 6c c2 ae 20 51 41 | .to.233..Check.if.the.Intel...QA |
| 3b6a0 | 54 20 64 65 76 69 63 65 20 69 73 20 75 70 20 61 6e 64 20 72 65 61 64 79 20 74 6f 20 64 6f 20 74 | T.device.is.up.and.ready.to.do.t |
| 3b6c0 | 68 65 20 6a 6f 62 2e 00 43 68 65 63 6b 20 73 74 61 74 75 73 00 43 68 65 63 6b 20 74 68 65 20 6d | he.job..Check.status.Check.the.m |
| 3b6e0 | 61 6e 79 20 70 61 72 61 6d 65 74 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 74 68 65 | any.parameters.available.for.the |
| 3b700 | 20 60 73 68 6f 77 20 69 70 76 36 20 72 6f 75 74 65 60 20 63 6f 6d 6d 61 6e 64 3a 00 43 68 65 63 | .`show.ipv6.route`.command:.Chec |
| 3b720 | 6b 3a 00 43 68 65 63 6b 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 43 68 65 63 6b 73 00 43 | k:.Checking.connections.Checks.C |
| 3b740 | 68 65 63 6b 73 20 66 6f 72 20 74 68 65 20 65 78 69 73 74 65 6e 63 65 20 6f 66 20 74 68 65 20 53 | hecks.for.the.existence.of.the.S |
| 3b760 | 75 72 69 63 61 74 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 2c 20 75 70 64 61 | uricata.configuration.file,.upda |
| 3b780 | 74 65 73 20 74 68 65 20 73 65 72 76 69 63 65 2c 20 61 6e 64 20 74 68 65 6e 20 72 65 73 74 61 72 | tes.the.service,.and.then.restar |
| 3b7a0 | 74 73 20 69 74 2e 20 49 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 | ts.it..If.the.configuration.file |
| 3b7c0 | 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2c 20 61 20 6d 65 73 73 61 67 65 20 69 6e 64 69 63 61 74 | .is.not.found,.a.message.indicat |
| 3b7e0 | 65 73 20 74 68 61 74 20 53 75 72 69 63 61 74 61 20 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 | es.that.Suricata.is.not.configur |
| 3b800 | 65 64 2e 00 43 68 6f 6f 73 65 20 79 6f 75 72 20 60 60 64 69 72 65 63 74 6f 72 79 60 60 20 6c 6f | ed..Choose.your.``directory``.lo |
| 3b820 | 63 61 74 69 6f 6e 20 63 61 72 65 66 75 6c 6c 79 20 6f 72 20 79 6f 75 20 77 69 6c 6c 20 6c 6f 6f | cation.carefully.or.you.will.loo |
| 3b840 | 73 65 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 6f 6e 20 69 6d 61 67 65 20 75 70 67 72 61 64 65 73 | se.the.content.on.image.upgrades |
| 3b860 | 2e 20 41 6e 79 20 64 69 72 65 63 74 6f 72 79 20 75 6e 64 65 72 20 60 60 2f 63 6f 6e 66 69 67 60 | ..Any.directory.under.``/config` |
| 3b880 | 60 20 69 73 20 73 61 76 65 20 61 74 20 74 68 69 73 20 77 69 6c 6c 20 62 65 20 6d 69 67 72 61 74 | `.is.save.at.this.will.be.migrat |
| 3b8a0 | 65 64 2e 00 43 69 73 63 6f 20 43 61 74 61 6c 79 73 74 00 43 69 73 63 6f 20 61 6e 64 20 41 6c 6c | ed..Cisco.Catalyst.Cisco.and.All |
| 3b8c0 | 69 65 64 20 54 65 6c 65 73 79 6e 20 63 61 6c 6c 20 69 74 20 50 72 69 76 61 74 65 20 56 4c 41 4e | ied.Telesyn.call.it.Private.VLAN |
| 3b8e0 | 00 43 6c 61 6d 70 20 4d 53 53 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 49 50 00 43 6c 61 | .Clamp.MSS.for.a.specific.IP.Cla |
| 3b900 | 73 73 20 74 72 65 61 74 6d 65 6e 74 00 43 6c 61 73 73 65 73 00 43 6c 61 73 73 6c 65 73 73 20 73 | ss.treatment.Classes.Classless.s |
| 3b920 | 74 61 74 69 63 20 72 6f 75 74 65 00 43 6c 65 61 72 20 61 6c 6c 20 42 47 50 20 65 78 74 63 6f 6d | tatic.route.Clear.all.BGP.extcom |
| 3b940 | 6d 75 6e 69 74 69 65 73 2e 00 43 6c 69 65 6e 74 00 43 6c 69 65 6e 74 20 41 64 64 72 65 73 73 20 | munities..Client.Client.Address. |
| 3b960 | 50 6f 6f 6c 73 00 43 6c 69 65 6e 74 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 43 6c 69 65 | Pools.Client.Authentication.Clie |
| 3b980 | 6e 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6c 69 65 6e 74 20 49 50 20 50 6f 6f 6c 20 | nt.Configuration.Client.IP.Pool. |
| 3b9a0 | 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 43 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 | Advanced.Options.Client.IP.addre |
| 3b9c0 | 73 73 65 73 20 77 69 6c 6c 20 62 65 20 70 72 6f 76 69 64 65 64 20 66 72 6f 6d 20 70 6f 6f 6c 20 | sses.will.be.provided.from.pool. |
| 3b9e0 | 60 31 39 32 2e 30 2e 32 2e 30 2f 32 35 60 00 43 6c 69 65 6e 74 20 53 69 64 65 00 43 6c 69 65 6e | `192.0.2.0/25`.Client.Side.Clien |
| 3ba00 | 74 20 53 69 64 65 20 3a 00 43 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6c | t.Side.:.Client.configuration.Cl |
| 3ba20 | 69 65 6e 74 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 43 6c 69 65 6e 74 20 64 6f 6d 61 69 6e 20 73 | ient.domain.name.Client.domain.s |
| 3ba40 | 65 61 72 63 68 00 43 6c 69 65 6e 74 20 69 73 6f 6c 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 | earch.Client.isolation.can.be.us |
| 3ba60 | 65 64 20 74 6f 20 70 72 65 76 65 6e 74 20 6c 6f 77 2d 6c 65 76 65 6c 20 62 72 69 64 67 69 6e 67 | ed.to.prevent.low-level.bridging |
| 3ba80 | 20 6f 66 20 66 72 61 6d 65 73 20 62 65 74 77 65 65 6e 20 61 73 73 6f 63 69 61 74 65 64 20 73 74 | .of.frames.between.associated.st |
| 3baa0 | 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 42 53 53 2e 00 43 6c 69 65 6e 74 3a 00 43 6c 69 65 6e | ations.in.the.BSS..Client:.Clien |
| 3bac0 | 74 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 74 68 65 20 43 4e 20 66 69 65 6c | ts.are.identified.by.the.CN.fiel |
| 3bae0 | 64 20 6f 66 20 74 68 65 69 72 20 78 2e 35 30 39 20 63 65 72 74 69 66 69 63 61 74 65 73 2c 20 69 | d.of.their.x.509.certificates,.i |
| 3bb00 | 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 74 68 65 20 43 4e 20 69 73 20 60 60 63 6c 69 65 6e | n.this.example.the.CN.is.``clien |
| 3bb20 | 74 30 60 60 3a 00 43 6c 69 65 6e 74 73 20 72 65 63 65 69 76 69 6e 67 20 61 64 76 65 72 74 69 73 | t0``:.Clients.receiving.advertis |
| 3bb40 | 65 20 6d 65 73 73 61 67 65 73 20 66 72 6f 6d 20 6d 75 6c 74 69 70 6c 65 20 73 65 72 76 65 72 73 | e.messages.from.multiple.servers |
| 3bb60 | 20 63 68 6f 6f 73 65 20 74 68 65 20 73 65 72 76 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 68 | .choose.the.server.with.the.high |
| 3bb80 | 65 73 74 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 6c 75 65 2e 20 54 68 65 20 72 61 6e 67 65 20 | est.preference.value..The.range. |
| 3bba0 | 66 6f 72 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 60 60 30 2e 2e 2e 32 35 35 60 60 2e 00 43 | for.this.value.is.``0...255``..C |
| 3bbc0 | 6c 6f 63 6b 20 64 61 65 6d 6f 6e 00 43 6f 6d 6d 61 6e 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 63 | lock.daemon.Command.completion.c |
| 3bbe0 | 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 6c 69 73 74 20 61 76 61 69 6c 61 62 6c 65 20 74 69 6d | an.be.used.to.list.available.tim |
| 3bc00 | 65 20 7a 6f 6e 65 73 2e 20 54 68 65 20 61 64 6a 75 73 74 6d 65 6e 74 20 66 6f 72 20 64 61 79 6c | e.zones..The.adjustment.for.dayl |
| 3bc20 | 69 67 68 74 20 74 69 6d 65 20 77 69 6c 6c 20 74 61 6b 65 20 70 6c 61 63 65 20 61 75 74 6f 6d 61 | ight.time.will.take.place.automa |
| 3bc40 | 74 69 63 61 6c 6c 79 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 74 69 6d 65 20 6f 66 20 79 65 61 | tically.based.on.the.time.of.yea |
| 3bc60 | 72 2e 00 43 6f 6d 6d 61 6e 64 20 66 6f 72 20 64 69 73 61 62 6c 69 6e 67 20 61 20 72 75 6c 65 20 | r..Command.for.disabling.a.rule. |
| 3bc80 | 62 75 74 20 6b 65 65 70 20 69 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | but.keep.it.in.the.configuration |
| 3bca0 | 2e 00 43 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 70 72 6f 62 61 62 6c 79 20 62 65 20 65 78 74 | ..Command.should.probably.be.ext |
| 3bcc0 | 65 6e 64 65 64 20 74 6f 20 6c 69 73 74 20 61 6c 73 6f 20 74 68 65 20 72 65 61 6c 20 69 6e 74 65 | ended.to.list.also.the.real.inte |
| 3bce0 | 72 66 61 63 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 69 73 20 6f 6e 65 20 56 52 46 20 | rfaces.assigned.to.this.one.VRF. |
| 3bd00 | 74 6f 20 67 65 74 20 61 20 62 65 74 74 65 72 20 6f 76 65 72 76 69 65 77 2e 00 43 6f 6d 6d 61 6e | to.get.a.better.overview..Comman |
| 3bd20 | 64 20 75 73 65 64 20 74 6f 20 75 70 64 61 74 65 20 47 65 6f 49 50 20 64 61 74 61 62 61 73 65 20 | d.used.to.update.GeoIP.database. |
| 3bd40 | 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 73 65 74 73 2e 00 43 6f 6d 6d 61 6e 64 73 00 43 6f 6d 6d | and.firewall.sets..Commands.Comm |
| 3bd60 | 61 6e 64 73 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 74 61 73 6b 20 61 72 65 3a 00 43 6f 6d | ands.used.for.this.task.are:.Com |
| 3bd80 | 6d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 76 61 6c 69 64 20 66 6f 72 20 62 6f 74 | mon.configuration,.valid.for.bot |
| 3bda0 | 68 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f 6e 64 61 72 79 20 6e 6f 64 65 2e 00 43 6f | h.primary.and.secondary.node..Co |
| 3bdc0 | 6d 6d 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6d | mmon.interface.configuration.Com |
| 3bde0 | 6d 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 00 43 6f 6d 70 72 65 73 73 69 6f 6e 20 69 73 20 67 65 | mon.parameters.Compression.is.ge |
| 3be00 | 6e 65 72 61 6c 6c 79 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 20 56 50 4e 20 74 75 6e | nerally.not.recommended..VPN.tun |
| 3be20 | 6e 65 6c 73 20 77 68 69 63 68 20 75 73 65 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 61 72 65 20 73 | nels.which.use.compression.are.s |
| 3be40 | 75 73 63 65 70 74 69 62 6c 65 20 74 6f 20 74 68 65 20 56 4f 52 41 4c 43 45 20 61 74 74 61 63 6b | usceptible.to.the.VORALCE.attack |
| 3be60 | 20 76 65 63 74 6f 72 2e 20 45 6e 61 62 6c 65 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 69 66 20 6e | .vector..Enable.compression.if.n |
| 3be80 | 65 65 64 65 64 2e 00 43 6f 6e 63 6c 75 73 69 6f 6e 00 43 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 | eeded..Conclusion.Confederation. |
| 3bea0 | 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 e2 80 | Configuration.Confidentiality... |
| 3bec0 | 93 20 45 6e 63 72 79 70 74 69 6f 6e 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 70 72 65 76 65 | ..Encryption.of.packets.to.preve |
| 3bee0 | 6e 74 20 73 6e 6f 6f 70 69 6e 67 20 62 79 20 61 6e 20 75 6e 61 75 74 68 6f 72 69 7a 65 64 20 73 | nt.snooping.by.an.unauthorized.s |
| 3bf00 | 6f 75 72 63 65 2e 00 43 6f 6e 66 69 67 20 53 79 6e 63 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ource..Config.Sync.Configuration |
| 3bf20 | 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 45 78 61 6d 70 6c 65 00 43 6f 6e 66 69 67 75 72 61 | .Configuration.Example.Configura |
| 3bf40 | 74 69 6f 6e 20 45 78 61 6d 70 6c 65 73 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 47 75 69 64 | tion.Examples.Configuration.Guid |
| 3bf60 | 65 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 4f 70 74 69 6f 6e 73 00 43 6f 6e 66 69 67 75 72 | e.Configuration.Options.Configur |
| 3bf80 | 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 | ation.commands.covered.in.this.s |
| 3bfa0 | 65 63 74 69 6f 6e 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 66 | ection:.Configuration.commands.f |
| 3bfc0 | 6f 72 20 74 68 65 20 70 72 69 76 61 74 65 20 61 6e 64 20 70 75 62 6c 69 63 20 6b 65 79 20 77 69 | or.the.private.and.public.key.wi |
| 3bfe0 | 6c 6c 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 6f 6e 20 74 68 65 20 73 63 72 65 65 6e 20 77 68 | ll.be.displayed.on.the.screen.wh |
| 3c000 | 69 63 68 20 6e 65 65 64 73 20 74 6f 20 62 65 20 73 65 74 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 | ich.needs.to.be.set.on.the.route |
| 3c020 | 72 20 66 69 72 73 74 2e 20 4e 6f 74 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 | r.first..Note.the.command.with.t |
| 3c040 | 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 28 73 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 | he.public.key.(set.pki.key-pair. |
| 3c060 | 69 70 73 65 63 2d 4c 45 46 54 20 70 75 62 6c 69 63 20 6b 65 79 20 27 4d 49 49 42 49 6a 41 4e 42 | ipsec-LEFT.public.key.'MIIBIjANB |
| 3c080 | 67 6b 71 68 2e 2e 2e 27 29 2e 20 54 68 65 6e 20 64 6f 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 74 | gkqh...')..Then.do.the.same.on.t |
| 3c0a0 | 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f | he.opposite.router:.Configuratio |
| 3c0c0 | 6e 20 63 6f 6d 6d 61 6e 64 73 20 77 69 6c 6c 20 64 69 73 70 6c 61 79 2e 20 4e 6f 74 65 20 74 68 | n.commands.will.display..Note.th |
| 3c0e0 | 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 28 73 | e.command.with.the.public.key.(s |
| 3c100 | 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 70 73 65 63 2d 4c 45 46 54 20 70 75 62 6c 69 | et.pki.key-pair.ipsec-LEFT.publi |
| 3c120 | 63 20 6b 65 79 20 27 4d 49 49 42 49 6a 41 4e 42 67 6b 71 68 2e 2e 2e 27 29 2e 20 54 68 65 6e 20 | c.key.'MIIBIjANBgkqh...')..Then. |
| 3c140 | 64 6f 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 | do.the.same.on.the.opposite.rout |
| 3c160 | 65 72 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 3a 00 43 6f 6e 66 69 | er:.Configuration.example:.Confi |
| 3c180 | 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 73 65 20 65 78 70 6f 72 74 65 64 20 72 6f 75 74 | guration.for.these.exported.rout |
| 3c1a0 | 65 73 20 6d 75 73 74 2c 20 61 74 20 61 20 6d 69 6e 69 6d 75 6d 2c 20 73 70 65 63 69 66 79 20 74 | es.must,.at.a.minimum,.specify.t |
| 3c1c0 | 68 65 73 65 20 74 77 6f 20 70 61 72 61 6d 65 74 65 72 73 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 | hese.two.parameters..Configurati |
| 3c1e0 | 6f 6e 20 6f 66 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 73 74 61 74 69 63 60 00 43 6f 6e 66 | on.of.:ref:`routing-static`.Conf |
| 3c200 | 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 43 50 20 48 41 20 70 61 69 72 3a 00 43 6f 6e | iguration.of.a.DHCP.HA.pair:.Con |
| 3c220 | 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 70 61 | figuration.of.a.DHCP.failover.pa |
| 3c240 | 69 72 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e | ir.Configuration.of.route.leakin |
| 3c260 | 67 20 62 65 74 77 65 65 6e 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 20 52 49 42 20 61 6e 64 20 | g.between.a.unicast.VRF.RIB.and. |
| 3c280 | 74 68 65 20 56 50 4e 20 53 41 46 49 20 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 | the.VPN.SAFI.RIB.of.the.default. |
| 3c2a0 | 56 52 46 20 69 73 20 61 63 63 6f 6d 70 6c 69 73 68 65 64 20 76 69 61 20 63 6f 6d 6d 61 6e 64 73 | VRF.is.accomplished.via.commands |
| 3c2c0 | 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 61 20 56 52 46 20 61 64 64 72 65 73 73 | .in.the.context.of.a.VRF.address |
| 3c2e0 | 2d 66 61 6d 69 6c 79 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 6c 6f | -family..Configuration.of.the.lo |
| 3c300 | 67 67 69 6e 67 20 66 69 6c 65 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 73 79 6e 63 | gging.file..Configuration.resync |
| 3c320 | 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e 20 57 69 74 68 20 74 68 65 20 63 75 72 72 65 6e 74 20 69 6d | hronization..With.the.current.im |
| 3c340 | 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 20 60 73 65 72 76 69 63 65 20 63 6f 6e 66 69 67 2d | plementation.of.`service.config- |
| 3c360 | 73 79 6e 63 60 2c 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 6e 6f 64 65 20 6d 75 73 74 20 62 | sync`,.the.secondary.node.must.b |
| 3c380 | 65 20 6f 6e 6c 69 6e 65 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 79 6e 63 68 72 6f 6e | e.online..Configuration.synchron |
| 3c3a0 | 69 7a 61 74 69 6f 6e 20 28 63 6f 6e 66 69 67 20 73 79 6e 63 29 20 69 73 20 61 20 66 65 61 74 75 | ization.(config.sync).is.a.featu |
| 3c3c0 | 72 65 20 6f 66 20 56 79 4f 53 20 74 68 61 74 20 70 65 72 6d 69 74 73 20 73 79 6e 63 68 72 6f 6e | re.of.VyOS.that.permits.synchron |
| 3c3e0 | 69 7a 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 | ization.of.the.configuration.of. |
| 3c400 | 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 74 6f 20 61 6e 6f 74 68 65 72 20 69 6e 20 61 20 | one.VyOS.router.to.another.in.a. |
| 3c420 | 6e 65 74 77 6f 72 6b 2e 00 43 6f 6e 66 69 67 75 72 65 00 43 6f 6e 66 69 67 75 72 65 20 3a 61 62 | network..Configure.Configure.:ab |
| 3c440 | 62 72 3a 60 4d 54 55 20 28 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e | br:`MTU.(Maximum.Transmission.Un |
| 3c460 | 69 74 29 60 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 49 74 20 | it)`.on.given.`<interface>`..It. |
| 3c480 | 69 73 20 74 68 65 20 73 69 7a 65 20 28 69 6e 20 62 79 74 65 73 29 20 6f 66 20 74 68 65 20 6c 61 | is.the.size.(in.bytes).of.the.la |
| 3c4a0 | 72 67 65 73 74 20 65 74 68 65 72 6e 65 74 20 66 72 61 6d 65 20 73 65 6e 74 20 6f 6e 20 74 68 69 | rgest.ethernet.frame.sent.on.thi |
| 3c4c0 | 73 20 6c 69 6e 6b 2e 00 43 6f 6e 66 69 67 75 72 65 20 42 46 44 00 43 6f 6e 66 69 67 75 72 65 20 | s.link..Configure.BFD.Configure. |
| 3c4e0 | 44 4e 53 20 60 3c 72 65 63 6f 72 64 3e 60 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 75 | DNS.`<record>`.which.should.be.u |
| 3c500 | 70 64 61 74 65 64 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 73 65 74 20 6d 75 6c 74 69 70 6c 65 | pdated..This.can.be.set.multiple |
| 3c520 | 20 74 69 6d 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 44 4e 53 20 60 3c 7a 6f 6e 65 3e 60 20 74 | .times..Configure.DNS.`<zone>`.t |
| 3c540 | 6f 20 62 65 20 75 70 64 61 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 45 4e 45 56 45 20 74 | o.be.updated..Configure.GENEVE.t |
| 3c560 | 75 6e 6e 65 6c 20 66 61 72 20 65 6e 64 2f 72 65 6d 6f 74 65 20 74 75 6e 6e 65 6c 20 65 6e 64 70 | unnel.far.end/remote.tunnel.endp |
| 3c580 | 6f 69 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 | oint..Configure.Graceful.Restart |
| 3c5a0 | 20 3a 72 66 63 3a 60 33 36 32 33 60 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 2e 20 42 79 20 | .:rfc:`3623`.helper.support..By. |
| 3c5c0 | 64 65 66 61 75 6c 74 2c 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 20 69 73 20 64 69 73 61 62 | default,.helper.support.is.disab |
| 3c5e0 | 6c 65 64 20 66 6f 72 20 61 6c 6c 20 6e 65 69 67 68 62 6f 75 72 73 2e 20 54 68 69 73 20 63 6f 6e | led.for.all.neighbours..This.con |
| 3c600 | 66 69 67 20 65 6e 61 62 6c 65 73 2f 64 69 73 61 62 6c 65 73 20 68 65 6c 70 65 72 20 73 75 70 70 | fig.enables/disables.helper.supp |
| 3c620 | 6f 72 74 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 20 66 6f 72 20 61 6c 6c 20 6e 65 69 67 68 | ort.on.this.router.for.all.neigh |
| 3c640 | 62 6f 75 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 | bours..Configure.Graceful.Restar |
| 3c660 | 74 20 3a 72 66 63 3a 60 33 36 32 33 60 20 72 65 73 74 61 72 74 69 6e 67 20 73 75 70 70 6f 72 74 | t.:rfc:`3623`.restarting.support |
| 3c680 | 2e 20 57 68 65 6e 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 72 61 63 | ..When.enabled,.the.default.grac |
| 3c6a0 | 65 20 70 65 72 69 6f 64 20 69 73 20 31 32 30 20 73 65 63 6f 6e 64 73 2e 00 43 6f 6e 66 69 67 75 | e.period.is.120.seconds..Configu |
| 3c6c0 | 72 65 20 49 43 4d 50 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 2e 00 43 6f | re.ICMP.threshold.parameters..Co |
| 3c6e0 | 6e 66 69 67 75 72 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 44 48 43 50 20 60 | nfigure.IP.address.of.the.DHCP.` |
| 3c700 | 3c 73 65 72 76 65 72 3e 60 20 77 68 69 63 68 20 77 69 6c 6c 20 68 61 6e 64 6c 65 20 74 68 65 20 | <server>`.which.will.handle.the. |
| 3c720 | 72 65 6c 61 79 65 64 20 70 61 63 6b 65 74 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 52 41 44 49 55 | relayed.packets..Configure.RADIU |
| 3c740 | 53 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 69 74 73 20 72 65 71 75 69 72 65 64 20 70 6f | S.`<server>`.and.its.required.po |
| 3c760 | 72 74 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 65 71 75 65 73 74 73 2e 00 | rt.for.authentication.requests.. |
| 3c780 | 43 6f 6e 66 69 67 75 72 65 20 52 41 44 49 55 53 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 | Configure.RADIUS.`<server>`.and. |
| 3c7a0 | 69 74 73 20 72 65 71 75 69 72 65 64 20 73 68 61 72 65 64 20 60 3c 73 65 63 72 65 74 3e 60 20 66 | its.required.shared.`<secret>`.f |
| 3c7c0 | 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 77 69 74 68 20 74 68 65 20 52 41 44 49 55 53 | or.communicating.with.the.RADIUS |
| 3c7e0 | 20 73 65 72 76 65 72 2e 00 43 6f 6e 66 69 67 75 72 65 20 53 4e 41 54 20 72 75 6c 65 20 28 34 30 | .server..Configure.SNAT.rule.(40 |
| 3c800 | 29 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 61 20 64 65 73 | ).to.only.NAT.packets.with.a.des |
| 3c820 | 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 31 39 32 2e 30 2e 32 2e 31 2e 00 43 | tination.address.of.192.0.2.1..C |
| 3c840 | 6f 6e 66 69 67 75 72 65 20 54 43 50 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 | onfigure.TCP.threshold.parameter |
| 3c860 | 73 00 43 6f 6e 66 69 67 75 72 65 20 55 44 50 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 | s.Configure.UDP.threshold.parame |
| 3c880 | 74 65 72 73 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 6d 65 73 73 61 67 65 3e 60 20 77 68 69 63 68 | ters.Configure.`<message>`.which |
| 3c8a0 | 20 69 73 20 73 68 6f 77 6e 20 61 66 74 65 72 20 75 73 65 72 20 68 61 73 20 6c 6f 67 67 65 64 20 | .is.shown.after.user.has.logged. |
| 3c8c0 | 69 6e 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 6d 65 | in.to.the.system..Configure.`<me |
| 3c8e0 | 73 73 61 67 65 3e 60 20 77 68 69 63 68 20 69 73 20 73 68 6f 77 6e 20 64 75 72 69 6e 67 20 53 53 | ssage>`.which.is.shown.during.SS |
| 3c900 | 48 20 63 6f 6e 6e 65 63 74 20 61 6e 64 20 62 65 66 6f 72 65 20 61 20 75 73 65 72 20 69 73 20 6c | H.connect.and.before.a.user.is.l |
| 3c920 | 6f 67 67 65 64 20 69 6e 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 70 61 73 73 77 6f 72 64 3e 60 | ogged.in..Configure.`<password>` |
| 3c940 | 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 | .used.when.authenticating.the.up |
| 3c960 | 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 | date.request.for.DynDNS.service. |
| 3c980 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 | identified.by.`<service-name>`.. |
| 3c9a0 | 43 6f 6e 66 69 67 75 72 65 20 60 3c 70 61 73 73 77 6f 72 64 3e 60 20 75 73 65 64 20 77 68 65 6e | Configure.`<password>`.used.when |
| 3c9c0 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 | .authenticating.the.update.reque |
| 3c9e0 | 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 | st.for.DynDNS.service.identified |
| 3ca00 | 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 75 73 65 | .by.`<service>`..Configure.`<use |
| 3ca20 | 72 6e 61 6d 65 3e 60 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 | rname>`.used.when.authenticating |
| 3ca40 | 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 | .the.update.request.for.DynDNS.s |
| 3ca60 | 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 2d 6e | ervice.identified.by.`<service-n |
| 3ca80 | 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 75 73 65 72 6e 61 6d 65 3e 60 20 75 73 | ame>`..Configure.`<username>`.us |
| 3caa0 | 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 | ed.when.authenticating.the.updat |
| 3cac0 | 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 | e.request.for.DynDNS.service.ide |
| 3cae0 | 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 2e 20 46 6f 72 20 4e 61 6d 65 | ntified.by.`<service>`..For.Name |
| 3cb00 | 63 68 65 61 70 2c 20 73 65 74 20 74 68 65 20 3c 64 6f 6d 61 69 6e 3e 20 79 6f 75 20 77 69 73 68 | cheap,.set.the.<domain>.you.wish |
| 3cb20 | 20 74 6f 20 75 70 64 61 74 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 55 52 4c 20 74 68 61 74 | .to.update..Configure.a.URL.that |
| 3cb40 | 20 63 6f 6e 74 61 69 6e 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 69 6d 61 67 | .contains.information.about.imag |
| 3cb60 | 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 73 46 6c 6f 77 20 61 67 65 6e 74 20 61 64 64 72 | es..Configure.a.sFlow.agent.addr |
| 3cb80 | 65 73 73 2e 20 49 74 20 63 61 6e 20 62 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 | ess..It.can.be.IPv4.or.IPv6.addr |
| 3cba0 | 65 73 73 2c 20 62 75 74 20 79 6f 75 20 6d 75 73 74 20 73 65 74 20 74 68 65 20 73 61 6d 65 20 70 | ess,.but.you.must.set.the.same.p |
| 3cbc0 | 72 6f 74 6f 63 6f 6c 2c 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 73 46 6c 6f 77 | rotocol,.which.is.used.for.sFlow |
| 3cbe0 | 20 63 6f 6c 6c 65 63 74 6f 72 20 61 64 64 72 65 73 73 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 | .collector.addresses..By.default |
| 3cc00 | 2c 20 75 73 69 6e 67 20 72 6f 75 74 65 72 2d 69 64 20 66 72 6f 6d 20 42 47 50 20 6f 72 20 4f 53 | ,.using.router-id.from.BGP.or.OS |
| 3cc20 | 50 46 20 70 72 6f 74 6f 63 6f 6c 2c 20 6f 72 20 74 68 65 20 70 72 69 6d 61 72 79 20 49 50 20 61 | PF.protocol,.or.the.primary.IP.a |
| 3cc40 | 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 66 69 72 73 74 20 69 6e 74 65 72 66 61 63 65 2e | ddress.from.the.first.interface. |
| 3cc60 | 00 43 6f 6e 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 66 6f 72 20 3c 73 | .Configure.a.static.route.for.<s |
| 3cc80 | 75 62 6e 65 74 3e 20 75 73 69 6e 67 20 67 61 74 65 77 61 79 20 3c 61 64 64 72 65 73 73 3e 20 2c | ubnet>.using.gateway.<address>., |
| 3cca0 | 20 75 73 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 74 6f 20 69 6e 64 65 6e 74 69 66 79 | .use.source.address.to.indentify |
| 3ccc0 | 20 74 68 65 20 70 65 65 72 20 77 68 65 6e 20 69 73 20 6d 75 6c 74 69 2d 68 6f 70 20 73 65 73 73 | .the.peer.when.is.multi-hop.sess |
| 3cce0 | 69 6f 6e 20 61 6e 64 20 74 68 65 20 67 61 74 65 77 61 79 20 61 64 64 72 65 73 73 20 61 73 20 42 | ion.and.the.gateway.address.as.B |
| 3cd00 | 46 44 20 70 65 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 43 6f 6e | FD.peer.destination.address..Con |
| 3cd20 | 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 66 6f 72 20 3c 73 75 62 6e 65 | figure.a.static.route.for.<subne |
| 3cd40 | 74 3e 20 75 73 69 6e 67 20 67 61 74 65 77 61 79 20 3c 61 64 64 72 65 73 73 3e 20 61 6e 64 20 75 | t>.using.gateway.<address>.and.u |
| 3cd60 | 73 65 20 74 68 65 20 67 61 74 65 77 61 79 20 61 64 64 72 65 73 73 20 61 73 20 42 46 44 20 70 65 | se.the.gateway.address.as.BFD.pe |
| 3cd80 | 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 | er.destination.address..Configur |
| 3cda0 | 65 20 61 64 64 72 65 73 73 20 6f 66 20 4e 65 74 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 | e.address.of.NetFlow.collector.. |
| 3cdc0 | 4e 65 74 46 6c 6f 77 20 73 65 72 76 65 72 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 20 63 61 | NetFlow.server.at.`<address>`.ca |
| 3cde0 | 6e 20 62 65 20 62 6f 74 68 20 6c 69 73 74 65 6e 69 6e 67 20 6f 6e 20 61 6e 20 49 50 76 34 20 6f | n.be.both.listening.on.an.IPv4.o |
| 3ce00 | 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 64 64 72 65 73 | r.IPv6.address..Configure.addres |
| 3ce20 | 73 20 6f 66 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 73 46 6c 6f 77 20 73 65 72 76 | s.of.sFlow.collector..sFlow.serv |
| 3ce40 | 65 72 20 61 74 20 3c 61 64 64 72 65 73 73 3e 20 63 61 6e 20 62 65 20 62 6f 74 68 20 6c 69 73 74 | er.at.<address>.can.be.both.list |
| 3ce60 | 65 6e 69 6e 67 20 6f 6e 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 | ening.on.an.IPv4.or.IPv6.address |
| 3ce80 | 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 73 46 6c 6f 77 20 63 6f 6c | ..Configure.address.of.sFlow.col |
| 3cea0 | 6c 65 63 74 6f 72 2e 20 73 46 6c 6f 77 20 73 65 72 76 65 72 20 61 74 20 60 3c 61 64 64 72 65 73 | lector..sFlow.server.at.`<addres |
| 3cec0 | 73 3e 60 20 63 61 6e 20 62 65 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 | s>`.can.be.an.IPv4.or.IPv6.addre |
| 3cee0 | 73 73 2e 20 42 75 74 20 79 6f 75 20 63 61 6e 6e 6f 74 20 65 78 70 6f 72 74 20 74 6f 20 62 6f 74 | ss..But.you.cannot.export.to.bot |
| 3cf00 | 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 63 6f 6c 6c 65 63 74 6f 72 73 20 61 74 20 74 68 | h.IPv4.and.IPv6.collectors.at.th |
| 3cf20 | 65 20 73 61 6d 65 20 74 69 6d 65 21 00 43 6f 6e 66 69 67 75 72 65 20 61 67 65 6e 74 20 49 50 20 | e.same.time!.Configure.agent.IP. |
| 3cf40 | 61 64 64 72 65 73 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 69 73 20 69 6e 74 | address.associated.with.this.int |
| 3cf60 | 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 67 67 72 65 67 61 74 69 6f 6e 20 64 65 | erface..Configure.aggregation.de |
| 3cf80 | 6c 61 79 20 74 69 6d 65 72 20 69 6e 74 65 72 76 61 6c 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 6c | lay.timer.interval..Configure.al |
| 3cfa0 | 65 72 74 20 73 63 72 69 70 74 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 | ert.script.that.will.be.executed |
| 3cfc0 | 20 77 68 65 6e 20 61 6e 20 61 74 74 61 63 6b 20 69 73 20 64 65 74 65 63 74 65 64 2e 00 43 6f 6e | .when.an.attack.is.detected..Con |
| 3cfe0 | 66 69 67 75 72 65 20 61 6e 20 61 63 63 6f 75 6e 74 69 6e 67 20 73 65 72 76 65 72 20 61 6e 64 20 | figure.an.accounting.server.and. |
| 3d000 | 65 6e 61 62 6c 65 20 61 63 63 6f 75 6e 74 69 6e 67 20 77 69 74 68 3a 00 43 6f 6e 66 69 67 75 72 | enable.accounting.with:.Configur |
| 3d020 | 65 20 61 6e 64 20 65 6e 61 62 6c 65 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 6c 6f 77 20 | e.and.enable.collection.of.flow. |
| 3d040 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 | information.for.the.interface.id |
| 3d060 | 65 6e 74 69 66 69 65 64 20 62 79 20 3c 69 6e 74 65 72 66 61 63 65 3e 2e 00 43 6f 6e 66 69 67 75 | entified.by.<interface>..Configu |
| 3d080 | 72 65 20 61 6e 64 20 65 6e 61 62 6c 65 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 6c 6f 77 | re.and.enable.collection.of.flow |
| 3d0a0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 | .information.for.the.interface.i |
| 3d0c0 | 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 43 6f 6e 66 | dentified.by.`<interface>`..Conf |
| 3d0e0 | 69 67 75 72 65 20 61 75 74 6f 2d 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 6e 65 77 20 69 6d 61 67 | igure.auto-checking.for.new.imag |
| 3d100 | 65 73 00 43 6f 6e 66 69 67 75 72 65 20 62 61 63 6b 65 6e 64 20 60 3c 6e 61 6d 65 3e 60 20 6d 6f | es.Configure.backend.`<name>`.mo |
| 3d120 | 64 65 20 54 43 50 20 6f 72 20 48 54 54 50 00 43 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 72 6f | de.TCP.or.HTTP.Configure.both.ro |
| 3d140 | 75 74 65 72 73 20 28 61 20 61 6e 64 20 62 29 20 66 6f 72 20 44 48 43 50 76 36 2d 50 44 20 76 69 | uters.(a.and.b).for.DHCPv6-PD.vi |
| 3d160 | 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 64 69 72 | a.dummy.interface:.Configure.dir |
| 3d180 | 65 63 74 69 6f 6e 20 66 6f 72 20 70 72 6f 63 65 73 73 69 6e 67 20 74 72 61 66 66 69 63 2e 00 43 | ection.for.processing.traffic..C |
| 3d1a0 | 6f 6e 66 69 67 75 72 65 20 65 69 74 68 65 72 20 6f 6e 65 20 6f 72 20 74 77 6f 20 73 74 6f 70 20 | onfigure.either.one.or.two.stop. |
| 3d1c0 | 62 69 74 73 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 6f 6e 65 20 73 74 6f 70 20 | bits..This.defaults.to.one.stop. |
| 3d1e0 | 62 69 74 73 20 69 66 20 6c 65 66 74 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 2e 00 43 6f 6e 66 69 | bits.if.left.unconfigured..Confi |
| 3d200 | 67 75 72 65 20 65 69 74 68 65 72 20 73 65 76 65 6e 20 6f 72 20 65 69 67 68 74 20 64 61 74 61 20 | gure.either.seven.or.eight.data. |
| 3d220 | 62 69 74 73 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 65 69 67 68 74 20 64 61 74 | bits..This.defaults.to.eight.dat |
| 3d240 | 61 20 62 69 74 73 20 69 66 20 6c 65 66 74 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 2e 00 43 6f 6e | a.bits.if.left.unconfigured..Con |
| 3d260 | 66 69 67 75 72 65 20 67 65 6e 65 72 61 6c 20 74 68 72 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 | figure.general.threshold.paramet |
| 3d280 | 65 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 68 6f 77 20 6c 6f 6e 67 20 61 6e 20 49 50 20 28 61 | ers..Configure.how.long.an.IP.(a |
| 3d2a0 | 74 74 61 63 6b 65 72 29 20 73 68 6f 75 6c 64 20 62 65 20 6b 65 70 74 20 69 6e 20 62 6c 6f 63 6b | ttacker).should.be.kept.in.block |
| 3d2c0 | 65 64 20 73 74 61 74 65 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 39 30 30 2e | ed.state..Default.value.is.1900. |
| 3d2e0 | 00 43 6f 6e 66 69 67 75 72 65 20 69 6e 64 69 76 69 64 75 61 6c 20 62 72 69 64 67 65 20 70 6f 72 | .Configure.individual.bridge.por |
| 3d300 | 74 20 60 3c 70 72 69 6f 72 69 74 79 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 69 6e 74 65 72 66 | t.`<priority>`..Configure.interf |
| 3d320 | 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 77 69 74 68 20 6f 6e 65 20 6f 72 20 6d 6f | ace.`<interface>`.with.one.or.mo |
| 3d340 | 72 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 65 73 2e 00 43 6f 6e 66 69 67 75 72 | re.interface.addresses..Configur |
| 3d360 | 65 20 69 6e 74 65 72 66 61 63 65 2d 73 70 65 63 69 66 69 63 20 48 6f 73 74 2f 52 6f 75 74 65 72 | e.interface-specific.Host/Router |
| 3d380 | 20 62 65 68 61 76 69 6f 75 72 2e 20 49 66 20 73 65 74 2c 20 74 68 65 20 69 6e 74 65 72 66 61 63 | .behaviour..If.set,.the.interfac |
| 3d3a0 | 65 20 77 69 6c 6c 20 73 77 69 74 63 68 20 74 6f 20 68 6f 73 74 20 6d 6f 64 65 20 61 6e 64 20 49 | e.will.switch.to.host.mode.and.I |
| 3d3c0 | 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 20 77 69 6c 6c 20 62 65 20 64 69 73 61 62 6c 65 64 20 | Pv6.forwarding.will.be.disabled. |
| 3d3e0 | 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 6c 69 73 | on.this.interface..Configure.lis |
| 3d400 | 74 65 6e 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 6d 69 72 72 6f 72 69 6e 67 20 74 72 61 66 | ten.interface.for.mirroring.traf |
| 3d420 | 66 69 63 2e 00 43 6f 6e 66 69 67 75 72 65 20 6c 6f 63 61 6c 20 49 50 76 34 20 61 64 64 72 65 73 | fic..Configure.local.IPv4.addres |
| 3d440 | 73 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 73 66 6c 6f 77 2e 00 43 6f 6e 66 69 67 75 72 65 | s.to.listen.for.sflow..Configure |
| 3d460 | 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 63 6c 6f 63 6b 20 73 6c 6f 70 20 69 6e 20 73 | .maximum.allowed.clock.slop.in.s |
| 3d480 | 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 31 38 30 29 00 43 6f 6e 66 69 67 75 72 65 20 | econds.(default:.180).Configure. |
| 3d4a0 | 6e 65 77 20 53 4e 4d 50 20 75 73 65 72 20 6e 61 6d 65 64 20 22 76 79 6f 73 22 20 77 69 74 68 20 | new.SNMP.user.named."vyos".with. |
| 3d4c0 | 70 61 73 73 77 6f 72 64 20 22 76 79 6f 73 31 32 33 34 35 36 37 38 22 00 43 6f 6e 66 69 67 75 72 | password."vyos12345678".Configur |
| 3d4e0 | 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 6e 64 20 60 3c 74 61 72 | e.next-hop.`<address>`.and.`<tar |
| 3d500 | 67 65 74 2d 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 61 6e 20 49 50 76 34 20 73 74 61 74 69 63 | get-address>`.for.an.IPv4.static |
| 3d520 | 20 72 6f 75 74 65 2e 20 53 70 65 63 69 66 79 20 74 68 65 20 74 61 72 67 65 74 20 49 50 76 34 20 | .route..Specify.the.target.IPv4. |
| 3d540 | 61 64 64 72 65 73 73 20 66 6f 72 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e 67 2e 00 43 6f 6e | address.for.health.checking..Con |
| 3d560 | 66 69 67 75 72 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 | figure.next-hop.`<address>`.for. |
| 3d580 | 61 6e 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 4d 75 6c 74 69 70 6c 65 20 73 | an.IPv4.static.route..Multiple.s |
| 3d5a0 | 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e 00 43 6f 6e | tatic.routes.can.be.created..Con |
| 3d5c0 | 66 69 67 75 72 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 | figure.next-hop.`<address>`.for. |
| 3d5e0 | 61 6e 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 4d 75 6c 74 69 70 6c 65 20 73 | an.IPv6.static.route..Multiple.s |
| 3d600 | 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e 00 43 6f 6e | tatic.routes.can.be.created..Con |
| 3d620 | 66 69 67 75 72 65 20 6e 75 6d 62 65 72 20 6f 66 20 64 69 67 69 74 73 20 74 6f 20 75 73 65 20 66 | figure.number.of.digits.to.use.f |
| 3d640 | 6f 72 20 74 6f 74 70 20 68 61 73 68 20 28 64 65 66 61 75 6c 74 3a 20 36 29 00 43 6f 6e 66 69 67 | or.totp.hash.(default:.6).Config |
| 3d660 | 75 72 65 20 6f 6e 65 20 6f 66 20 74 68 65 20 70 72 65 64 65 66 69 6e 65 64 20 73 79 73 74 65 6d | ure.one.of.the.predefined.system |
| 3d680 | 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 70 72 6f 66 69 6c 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 | .performance.profiles..Configure |
| 3d6a0 | 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 61 74 74 72 69 62 75 74 65 73 20 74 6f 20 74 68 65 20 67 | .one.or.more.attributes.to.the.g |
| 3d6c0 | 69 76 65 6e 20 4e 54 50 20 73 65 72 76 65 72 2e 00 43 6f 6e 66 69 67 75 72 65 20 6f 6e 65 20 6f | iven.NTP.server..Configure.one.o |
| 3d6e0 | 72 20 6d 6f 72 65 20 73 65 72 76 65 72 73 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 73 61 74 69 | r.more.servers.for.synchronisati |
| 3d700 | 6f 6e 2e 20 53 65 72 76 65 72 20 6e 61 6d 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 61 6e | on..Server.name.can.be.either.an |
| 3d720 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 3a 61 62 62 72 3a 60 46 51 44 4e 20 28 46 75 6c 6c | .IP.address.or.:abbr:`FQDN.(Full |
| 3d740 | 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 29 60 2e 00 43 6f 6e 66 69 | y.Qualified.Domain.Name)`..Confi |
| 3d760 | 67 75 72 65 20 6f 70 74 69 6f 6e 61 6c 20 54 54 4c 20 76 61 6c 75 65 20 6f 6e 20 74 68 65 20 67 | gure.optional.TTL.value.on.the.g |
| 3d780 | 69 76 65 6e 20 72 65 73 6f 75 72 63 65 20 72 65 63 6f 72 64 2e 20 54 68 69 73 20 64 65 66 61 75 | iven.resource.record..This.defau |
| 3d7a0 | 6c 74 73 20 74 6f 20 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 68 | lts.to.600.seconds..Configure.ph |
| 3d7c0 | 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 64 75 70 6c 65 78 20 73 65 74 74 69 6e 67 2e | ysical.interface.duplex.setting. |
| 3d7e0 | 00 43 6f 6e 66 69 67 75 72 65 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 73 70 | .Configure.physical.interface.sp |
| 3d800 | 65 65 64 20 73 65 74 74 69 6e 67 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6d 69 72 72 | eed.setting..Configure.port.mirr |
| 3d820 | 6f 72 69 6e 67 20 66 6f 72 20 60 69 6e 74 65 72 66 61 63 65 60 20 69 6e 62 6f 75 6e 64 20 74 72 | oring.for.`interface`.inbound.tr |
| 3d840 | 61 66 66 69 63 20 61 6e 64 20 63 6f 70 79 20 74 68 65 20 74 72 61 66 66 69 63 20 74 6f 20 60 6d | affic.and.copy.the.traffic.to.`m |
| 3d860 | 6f 6e 69 74 6f 72 2d 69 6e 74 65 72 66 61 63 65 60 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 | onitor-interface`.Configure.port |
| 3d880 | 20 6d 69 72 72 6f 72 69 6e 67 20 66 6f 72 20 60 69 6e 74 65 72 66 61 63 65 60 20 6f 75 74 62 6f | .mirroring.for.`interface`.outbo |
| 3d8a0 | 75 6e 64 20 74 72 61 66 66 69 63 20 61 6e 64 20 63 6f 70 79 20 74 68 65 20 74 72 61 66 66 69 63 | und.traffic.and.copy.the.traffic |
| 3d8c0 | 20 74 6f 20 60 6d 6f 6e 69 74 6f 72 2d 69 6e 74 65 72 66 61 63 65 60 00 43 6f 6e 66 69 67 75 72 | .to.`monitor-interface`.Configur |
| 3d8e0 | 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f 66 20 72 65 6d 6f 74 65 20 56 58 4c 41 4e 20 65 6e | e.port.number.of.remote.VXLAN.en |
| 3d900 | 64 70 6f 69 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f | dpoint..Configure.port.number.to |
| 3d920 | 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 66 6c 6f 77 20 63 6f 6e 65 63 74 69 6f 6e 2e 20 44 65 | .be.used.for.sflow.conection..De |
| 3d940 | 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 36 33 34 33 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 6f | fault.port.is.6343..Configure.po |
| 3d960 | 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 66 6c 6f 77 20 63 | rt.number.to.be.used.for.sflow.c |
| 3d980 | 6f 6e 6e 65 63 74 69 6f 6e 2e 20 44 65 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 36 33 34 33 2e | onnection..Default.port.is.6343. |
| 3d9a0 | 00 43 6f 6e 66 69 67 75 72 65 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 6f 6d | .Configure.protocol.used.for.com |
| 3d9c0 | 6d 75 6e 69 63 61 74 69 6f 6e 20 74 6f 20 72 65 6d 6f 74 65 20 73 79 73 6c 6f 67 20 68 6f 73 74 | munication.to.remote.syslog.host |
| 3d9e0 | 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 55 44 50 20 6f 72 20 54 43 50 2e | ..This.can.be.either.UDP.or.TCP. |
| 3da00 | 00 43 6f 6e 66 69 67 75 72 65 20 70 72 6f 78 79 20 70 6f 72 74 20 69 66 20 69 74 20 64 6f 65 73 | .Configure.proxy.port.if.it.does |
| 3da20 | 20 6e 6f 74 20 6c 69 73 74 65 6e 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 | .not.listen.to.the.default.port. |
| 3da40 | 38 30 2e 00 43 6f 6e 66 69 67 75 72 65 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 62 61 | 80..Configure.requests.to.the.ba |
| 3da60 | 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 75 73 65 20 53 53 4c 20 65 6e 63 72 79 70 74 69 | ckend.server.to.use.SSL.encrypti |
| 3da80 | 6f 6e 20 61 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 62 61 63 6b 65 6e 64 20 61 67 61 69 | on.and.authenticate.backend.agai |
| 3daa0 | 6e 73 74 20 3c 63 61 2d 63 65 72 74 69 66 69 63 61 74 65 3e 00 43 6f 6e 66 69 67 75 72 65 20 72 | nst.<ca-certificate>.Configure.r |
| 3dac0 | 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f | equests.to.the.backend.server.to |
| 3dae0 | 20 75 73 65 20 53 53 4c 20 65 6e 63 72 79 70 74 69 6f 6e 20 77 69 74 68 6f 75 74 20 76 61 6c 69 | .use.SSL.encryption.without.vali |
| 3db00 | 64 61 74 69 6e 67 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 00 43 6f 6e 66 69 67 | dating.server.certificate.Config |
| 3db20 | 75 72 65 20 73 46 6c 6f 77 20 61 67 65 6e 74 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 | ure.sFlow.agent.IPv4.or.IPv6.add |
| 3db40 | 72 65 73 73 00 43 6f 6e 66 69 67 75 72 65 20 73 63 68 65 64 75 6c 65 20 63 6f 75 6e 74 65 72 2d | ress.Configure.schedule.counter- |
| 3db60 | 70 6f 6c 6c 69 6e 67 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 33 30 29 | polling.in.seconds.(default:.30) |
| 3db80 | 00 43 6f 6e 66 69 67 75 72 65 20 73 65 72 76 69 63 65 20 60 3c 6e 61 6d 65 3e 60 20 6d 6f 64 65 | .Configure.service.`<name>`.mode |
| 3dba0 | 20 54 43 50 20 6f 72 20 48 54 54 50 00 43 6f 6e 66 69 67 75 72 65 20 73 65 72 76 69 63 65 20 60 | .TCP.or.HTTP.Configure.service.` |
| 3dbc0 | 3c 6e 61 6d 65 3e 60 20 74 6f 20 75 73 65 20 74 68 65 20 62 61 63 6b 65 6e 64 20 3c 6e 61 6d 65 | <name>`.to.use.the.backend.<name |
| 3dbe0 | 3e 00 43 6f 6e 66 69 67 75 72 65 20 73 65 73 73 69 6f 6e 20 74 69 6d 65 6f 75 74 20 61 66 74 65 | >.Configure.session.timeout.afte |
| 3dc00 | 72 20 77 68 69 63 68 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c 20 62 65 20 6c 6f 67 67 65 64 20 | r.which.the.user.will.be.logged. |
| 3dc20 | 6f 75 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 73 74 65 70 20 76 61 6c 75 65 20 66 6f 72 20 74 6f | out..Configure.step.value.for.to |
| 3dc40 | 74 70 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 33 30 29 00 43 6f 6e 66 | tp.in.seconds.(default:.30).Conf |
| 3dc60 | 69 67 75 72 65 20 73 79 73 74 65 6d 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 2e 20 41 20 64 6f 6d 61 | igure.system.domain.name..A.doma |
| 3dc80 | 69 6e 20 6e 61 6d 65 20 6d 75 73 74 20 73 74 61 72 74 20 61 6e 64 20 65 6e 64 20 77 69 74 68 20 | in.name.must.start.and.end.with. |
| 3dca0 | 61 20 6c 65 74 74 65 72 20 6f 72 20 64 69 67 69 74 2c 20 61 6e 64 20 68 61 76 65 20 61 73 20 69 | a.letter.or.digit,.and.have.as.i |
| 3dcc0 | 6e 74 65 72 69 6f 72 20 63 68 61 72 61 63 74 65 72 73 20 6f 6e 6c 79 20 6c 65 74 74 65 72 73 2c | nterior.characters.only.letters, |
| 3dce0 | 20 64 69 67 69 74 73 2c 20 6f 72 20 61 20 68 79 70 68 65 6e 2e 00 43 6f 6e 66 69 67 75 72 65 20 | .digits,.or.a.hyphen..Configure. |
| 3dd00 | 74 68 65 20 41 2d 73 69 64 65 20 72 6f 75 74 65 72 20 66 6f 72 20 4e 50 54 76 36 20 75 73 69 6e | the.A-side.router.for.NPTv6.usin |
| 3dd20 | 67 20 74 68 65 20 70 72 65 66 69 78 65 73 20 61 62 6f 76 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 | g.the.prefixes.above:.Configure. |
| 3dd40 | 74 68 65 20 42 2d 73 69 64 65 20 72 6f 75 74 65 72 20 66 6f 72 20 4e 50 54 76 36 20 75 73 69 6e | the.B-side.router.for.NPTv6.usin |
| 3dd60 | 67 20 74 68 65 20 70 72 65 66 69 78 65 73 20 61 62 6f 76 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 | g.the.prefixes.above:.Configure. |
| 3dd80 | 74 68 65 20 44 4e 53 20 60 3c 73 65 72 76 65 72 3e 60 20 49 50 2f 46 51 44 4e 20 75 73 65 64 20 | the.DNS.`<server>`.IP/FQDN.used. |
| 3dda0 | 77 68 65 6e 20 75 70 64 61 74 69 6e 67 20 74 68 69 73 20 64 79 6e 61 6d 69 63 20 61 73 73 69 67 | when.updating.this.dynamic.assig |
| 3ddc0 | 6e 6d 65 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 48 54 54 50 20 41 50 49 20 73 65 | nment..Configure.the.HTTP.API.se |
| 3dde0 | 72 76 69 63 65 20 6f 6e 20 52 6f 75 74 65 72 20 42 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | rvice.on.Router.B.Configure.the. |
| 3de00 | 49 50 76 34 20 6f 72 20 49 50 76 36 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 6f 66 20 74 | IPv4.or.IPv6.listen.address.of.t |
| 3de20 | 68 65 20 54 46 54 50 20 73 65 72 76 65 72 2e 20 4d 75 6c 74 69 70 6c 65 20 49 50 76 34 20 61 6e | he.TFTP.server..Multiple.IPv4.an |
| 3de40 | 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 67 69 76 65 6e 2e 20 54 | d.IPv6.addresses.can.be.given..T |
| 3de60 | 68 65 72 65 20 77 69 6c 6c 20 62 65 20 6f 6e 65 20 54 46 54 50 20 73 65 72 76 65 72 20 69 6e 73 | here.will.be.one.TFTP.server.ins |
| 3de80 | 74 61 6e 63 65 73 20 6c 69 73 74 65 6e 69 6e 67 20 6f 6e 20 65 61 63 68 20 49 50 20 61 64 64 72 | tances.listening.on.each.IP.addr |
| 3dea0 | 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 63 6f 6e 66 69 67 2d 73 79 6e 63 20 73 | ess..Configure.the.config-sync.s |
| 3dec0 | 65 72 76 69 63 65 20 6f 6e 20 52 6f 75 74 65 72 20 41 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 | ervice.on.Router.A.Configure.the |
| 3dee0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 68 65 | .connection.tracking.protocol.he |
| 3df00 | 6c 70 65 72 20 6d 6f 64 75 6c 65 73 2e 20 41 6c 6c 20 6d 6f 64 75 6c 65 73 20 61 72 65 20 65 6e | lper.modules..All.modules.are.en |
| 3df20 | 61 62 6c 65 20 62 79 20 64 65 66 61 75 6c 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 64 | able.by.default..Configure.the.d |
| 3df40 | 69 73 63 72 65 74 65 20 70 6f 72 74 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 65 20 52 41 44 | iscrete.port.under.which.the.RAD |
| 3df60 | 49 55 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 2e 00 43 6f 6e 66 69 | IUS.server.can.be.reached..Confi |
| 3df80 | 67 75 72 65 20 74 68 65 20 64 69 73 63 72 65 74 65 20 70 6f 72 74 20 75 6e 64 65 72 20 77 68 69 | gure.the.discrete.port.under.whi |
| 3dfa0 | 63 68 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 72 65 61 63 | ch.the.TACACS.server.can.be.reac |
| 3dfc0 | 68 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e | hed..Configure.the.load-balancin |
| 3dfe0 | 67 20 68 61 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 66 6f 72 20 48 54 54 50 2e 00 43 6f 6e 66 | g.haproxy.service.for.HTTP..Conf |
| 3e000 | 69 67 75 72 65 20 74 68 65 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 72 65 76 65 72 73 65 | igure.the.load-balancing.reverse |
| 3e020 | 2d 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 66 6f 72 20 48 54 54 50 2e 00 43 6f 6e 66 69 67 75 | -proxy.service.for.HTTP..Configu |
| 3e040 | 72 65 20 74 68 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 62 65 68 61 76 69 6f 72 20 77 69 74 | re.the.timestamping.behavior.wit |
| 3e060 | 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 74 69 6f 6e 3a 00 43 6f 6e 66 69 67 75 72 | h.the.following.option:.Configur |
| 3e080 | 65 20 74 69 6d 65 20 64 72 69 66 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 | e.time.drift.in.seconds.(default |
| 3e0a0 | 3a 20 30 29 00 43 6f 6e 66 69 67 75 72 65 20 74 72 61 66 66 69 63 20 63 61 70 74 75 72 65 20 6d | :.0).Configure.traffic.capture.m |
| 3e0c0 | 6f 64 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 3a 61 62 62 | ode..Configure.user.defined.:abb |
| 3e0e0 | 72 3a 60 4d 41 43 20 28 4d 65 64 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 60 20 61 | r:`MAC.(Media.Access.Control)`.a |
| 3e100 | 64 64 72 65 73 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 43 | ddress.on.given.`<interface>`..C |
| 3e120 | 6f 6e 66 69 67 75 72 65 20 77 61 74 65 72 6d 61 72 6b 20 77 61 72 6e 69 6e 67 20 67 65 6e 65 72 | onfigure.watermark.warning.gener |
| 3e140 | 61 74 69 6f 6e 20 66 6f 72 20 61 6e 20 49 47 4d 50 20 67 72 6f 75 70 20 6c 69 6d 69 74 2e 20 47 | ation.for.an.IGMP.group.limit..G |
| 3e160 | 65 6e 65 72 61 74 65 73 20 77 61 72 6e 69 6e 67 20 6f 6e 63 65 20 74 68 65 20 63 6f 6e 66 69 67 | enerates.warning.once.the.config |
| 3e180 | 75 72 65 64 20 67 72 6f 75 70 20 6c 69 6d 69 74 20 69 73 20 72 65 61 63 68 65 64 20 77 68 69 6c | ured.group.limit.is.reached.whil |
| 3e1a0 | 65 20 61 64 64 69 6e 67 20 6e 65 77 20 67 72 6f 75 70 73 2e 00 43 6f 6e 66 69 67 75 72 65 64 20 | e.adding.new.groups..Configured. |
| 3e1c0 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 60 3c 69 64 3e 60 20 69 73 20 75 73 65 64 20 62 79 20 | routing.table.`<id>`.is.used.by. |
| 3e1e0 | 56 52 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 64 20 76 61 6c 75 65 00 43 | VRF.`<name>`..Configured.value.C |
| 3e200 | 6f 6e 66 69 67 75 72 65 73 20 68 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 | onfigures.hardware.timestamping. |
| 3e220 | 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 3c 69 6e 74 65 72 66 61 63 65 3e 2e 20 54 68 | on.the.interface.<interface>..Th |
| 3e240 | 65 20 73 70 65 63 69 61 6c 20 76 61 6c 75 65 20 60 61 6c 6c 60 20 63 61 6e 20 61 6c 73 6f 20 62 | e.special.value.`all`.can.also.b |
| 3e260 | 65 20 73 70 65 63 69 66 69 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 69 6d 65 73 74 61 6d 70 69 | e.specified.to.enable.timestampi |
| 3e280 | 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 73 75 70 70 6f 72 | ng.on.all.interfaces.that.suppor |
| 3e2a0 | 74 20 69 74 2e 00 43 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 42 47 50 20 73 70 65 61 6b 65 72 | t.it..Configures.the.BGP.speaker |
| 3e2c0 | 20 73 6f 20 74 68 61 74 20 69 74 20 6f 6e 6c 79 20 61 63 63 65 70 74 73 20 69 6e 62 6f 75 6e 64 | .so.that.it.only.accepts.inbound |
| 3e2e0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 2c 20 62 75 74 20 64 6f 65 73 20 6e 6f 74 20 | .connections.from,.but.does.not. |
| 3e300 | 69 6e 69 74 69 61 74 65 20 6f 75 74 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f | initiate.outbound.connections.to |
| 3e320 | 20 74 68 65 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 00 43 6f 6e 66 69 67 75 | .the.peer.or.peer.group..Configu |
| 3e340 | 72 65 73 20 74 68 65 20 50 54 50 20 70 6f 72 74 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 | res.the.PTP.port..By.default,.th |
| 3e360 | 65 20 73 74 61 6e 64 61 72 64 20 70 6f 72 74 20 33 31 39 20 69 73 20 75 73 65 64 2e 00 43 6f 6e | e.standard.port.319.is.used..Con |
| 3e380 | 66 69 67 75 72 65 73 20 74 68 65 20 72 69 6e 67 20 62 75 66 66 65 72 20 73 69 7a 65 20 6f 66 20 | figures.the.ring.buffer.size.of. |
| 3e3a0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 48 54 20 6d 6f | the.interface..Configuring.HT.mo |
| 3e3c0 | 64 65 20 6f 70 74 69 6f 6e 73 20 69 73 20 72 65 71 75 69 72 65 64 20 77 68 65 6e 20 75 73 69 6e | de.options.is.required.when.usin |
| 3e3e0 | 67 20 38 30 32 2e 31 31 6e 20 6f 72 20 38 30 32 2e 31 31 61 78 20 61 74 20 32 2e 34 47 48 7a 2e | g.802.11n.or.802.11ax.at.2.4GHz. |
| 3e400 | 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 49 50 6f 45 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 | .Configuring.IPoE.Server.Configu |
| 3e420 | 72 69 6e 67 20 49 50 73 65 63 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 4c 32 54 50 20 53 65 72 76 | ring.IPsec.Configuring.L2TP.Serv |
| 3e440 | 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 4c 4e 53 20 28 4c 32 54 50 20 4e 65 74 77 6f 72 6b | er.Configuring.LNS.(L2TP.Network |
| 3e460 | 20 53 65 72 76 65 72 29 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 50 50 50 6f 45 20 53 65 72 76 65 | .Server).Configuring.PPPoE.Serve |
| 3e480 | 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 50 50 54 50 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 | r.Configuring.PPTP.Server.Config |
| 3e4a0 | 75 72 69 6e 67 20 52 41 44 49 55 53 20 61 63 63 6f 75 6e 74 69 6e 67 00 43 6f 6e 66 69 67 75 72 | uring.RADIUS.accounting.Configur |
| 3e4c0 | 69 6e 67 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 43 6f 6e 66 69 67 | ing.RADIUS.authentication.Config |
| 3e4e0 | 75 72 69 6e 67 20 53 53 54 50 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 53 53 | uring.SSTP.Server.Configuring.SS |
| 3e500 | 54 50 20 63 6c 69 65 6e 74 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 56 79 4f 53 20 74 6f 20 61 63 | TP.client.Configuring.VyOS.to.ac |
| 3e520 | 74 20 61 73 20 79 6f 75 72 20 49 50 53 65 63 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 | t.as.your.IPSec.access.concentra |
| 3e540 | 74 6f 72 20 69 73 20 6f 6e 65 20 74 68 69 6e 67 2c 20 62 75 74 20 79 6f 75 20 70 72 6f 62 61 62 | tor.is.one.thing,.but.you.probab |
| 3e560 | 6c 79 20 6e 65 65 64 20 74 6f 20 73 65 74 75 70 20 79 6f 75 72 20 63 6c 69 65 6e 74 20 63 6f 6e | ly.need.to.setup.your.client.con |
| 3e580 | 6e 65 63 74 69 6e 67 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 20 73 6f 20 74 68 65 79 20 63 61 | necting.to.the.server.so.they.ca |
| 3e5a0 | 6e 20 74 61 6c 6b 20 74 6f 20 74 68 65 20 49 50 53 65 63 20 67 61 74 65 77 61 79 2e 00 43 6f 6e | n.talk.to.the.IPSec.gateway..Con |
| 3e5c0 | 66 69 67 75 72 69 6e 67 20 61 20 6c 69 73 74 65 6e 2d 61 64 64 72 65 73 73 20 69 73 20 65 73 73 | figuring.a.listen-address.is.ess |
| 3e5e0 | 65 6e 74 69 61 6c 20 66 6f 72 20 74 68 65 20 73 65 72 76 69 63 65 20 74 6f 20 77 6f 72 6b 2e 00 | ential.for.the.service.to.work.. |
| 3e600 | 43 6f 6e 6e 65 63 74 2f 44 69 73 63 6f 6e 6e 65 63 74 00 43 6f 6e 6e 65 63 74 65 64 20 63 6c 69 | Connect/Disconnect.Connected.cli |
| 3e620 | 65 6e 74 20 73 68 6f 75 6c 64 20 75 73 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 73 20 74 68 | ent.should.use.`<address>`.as.th |
| 3e640 | 65 69 72 20 44 4e 53 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 | eir.DNS.server..This.command.acc |
| 3e660 | 65 70 74 73 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 | epts.both.IPv4.and.IPv6.addresse |
| 3e680 | 73 2e 20 55 70 20 74 6f 20 74 77 6f 20 6e 61 6d 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 | s..Up.to.two.nameservers.can.be. |
| 3e6a0 | 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 49 50 76 34 2c 20 75 70 20 74 6f 20 74 68 72 65 65 | configured.for.IPv4,.up.to.three |
| 3e6c0 | 20 66 6f 72 20 49 50 76 36 2e 00 43 6f 6e 6e 65 63 74 65 64 20 63 6c 69 65 6e 74 73 20 73 68 6f | .for.IPv6..Connected.clients.sho |
| 3e6e0 | 75 6c 64 20 75 73 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 73 20 74 68 65 69 72 20 44 4e 53 | uld.use.`<address>`.as.their.DNS |
| 3e700 | 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 65 70 74 73 20 62 6f | .server..This.command.accepts.bo |
| 3e720 | 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 20 55 70 20 74 | th.IPv4.and.IPv6.addresses..Up.t |
| 3e740 | 6f 20 74 77 6f 20 6e 61 6d 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 | o.two.nameservers.can.be.configu |
| 3e760 | 72 65 64 20 66 6f 72 20 49 50 76 34 2c 20 75 70 20 74 6f 20 74 68 72 65 65 20 66 6f 72 20 49 50 | red.for.IPv4,.up.to.three.for.IP |
| 3e780 | 76 36 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 | v6..Connections.to.the.RPKI.cach |
| 3e7a0 | 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 61 62 | ing.server.can.not.only.be.estab |
| 3e7c0 | 6c 69 73 68 65 64 20 62 79 20 48 54 54 50 2f 54 4c 53 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 | lished.by.HTTP/TLS.but.you.can.a |
| 3e7e0 | 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 73 73 69 6f 6e | lso.rely.on.a.secure.SSH.session |
| 3e800 | 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 6f 20 65 6e 61 62 6c 65 20 53 53 48 20 79 6f | .to.the.server..To.enable.SSH.yo |
| 3e820 | 75 20 66 69 72 73 74 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 79 6f 75 72 73 65 6c 73 20 | u.first.need.to.create.yoursels. |
| 3e840 | 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 67 65 | an.SSH.client.keypair.using.``ge |
| 3e860 | 6e 65 72 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 | nerate.ssh.client-key./config/au |
| 3e880 | 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 | th/id_rsa_rpki``..Once.your.key. |
| 3e8a0 | 69 73 20 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 6f 6e | is.created.you.can.setup.the.con |
| 3e8c0 | 6e 65 63 74 69 6f 6e 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 | nection..Connections.to.the.RPKI |
| 3e8e0 | 20 63 61 63 68 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 | .caching.server.can.not.only.be. |
| 3e900 | 65 73 74 61 62 6c 69 73 68 65 64 20 62 79 20 48 54 54 50 2f 54 4c 53 20 62 75 74 20 79 6f 75 20 | established.by.HTTP/TLS.but.you. |
| 3e920 | 63 61 6e 20 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 | can.also.rely.on.a.secure.SSH.se |
| 3e940 | 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 6f 20 65 6e 61 62 6c 65 20 53 | ssion.to.the.server..To.enable.S |
| 3e960 | 53 48 2c 20 66 69 72 73 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 6e 20 | SH,.first.you.need.to.create.an. |
| 3e980 | 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 67 65 6e 65 72 | SSH.client.keypair.using.``gener |
| 3e9a0 | 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f | ate.ssh.client-key./config/auth/ |
| 3e9c0 | 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 69 73 20 | id_rsa_rpki``..Once.your.key.is. |
| 3e9e0 | 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 6f 6e 6e 65 63 | created.you.can.setup.the.connec |
| 3ea00 | 74 69 6f 6e 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 50 4b 49 20 63 61 | tion..Connections.to.the.RPKI.ca |
| 3ea20 | 63 68 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 | ching.server.can.not.only.be.est |
| 3ea40 | 61 62 6c 69 73 68 65 64 20 62 79 20 54 43 50 20 75 73 69 6e 67 20 74 68 65 20 52 54 52 20 70 72 | ablished.by.TCP.using.the.RTR.pr |
| 3ea60 | 6f 74 6f 63 6f 6c 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 | otocol.but.you.can.also.rely.on. |
| 3ea80 | 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 72 76 | a.secure.SSH.session.to.the.serv |
| 3eaa0 | 65 72 2e 20 54 68 69 73 20 70 72 6f 76 69 64 65 73 20 74 72 61 6e 73 70 6f 72 74 20 69 6e 74 65 | er..This.provides.transport.inte |
| 3eac0 | 67 72 69 74 79 20 61 6e 64 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 61 6e 64 20 69 74 | grity.and.confidentiality.and.it |
| 3eae0 | 20 69 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 69 66 20 79 6f 75 72 20 76 61 6c 69 64 61 74 69 | .is.a.good.idea.if.your.validati |
| 3eb00 | 6f 6e 20 73 6f 66 74 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 69 74 2e 20 20 54 6f 20 65 6e 61 | on.software.supports.it...To.ena |
| 3eb20 | 62 6c 65 20 53 53 48 2c 20 66 69 72 73 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 | ble.SSH,.first.you.need.to.creat |
| 3eb40 | 65 20 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 69 6e 67 20 60 60 | e.an.SSH.client.keypair.using.`` |
| 3eb60 | 67 65 6e 65 72 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f | generate.ssh.client-key./config/ |
| 3eb80 | 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 | auth/id_rsa_rpki``..Once.your.ke |
| 3eba0 | 79 20 69 73 20 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 74 75 70 20 74 68 65 20 63 | y.is.created.you.can.setup.the.c |
| 3ebc0 | 6f 6e 6e 65 63 74 69 6f 6e 2e 00 43 6f 6e 6e 74 72 61 63 6b 00 43 6f 6e 6e 74 72 61 63 6b 20 53 | onnection..Conntrack.Conntrack.S |
| 3ebe0 | 79 6e 63 00 43 6f 6e 6e 74 72 61 63 6b 20 53 79 6e 63 20 45 78 61 6d 70 6c 65 00 43 6f 6e 6e 74 | ync.Conntrack.Sync.Example.Connt |
| 3ec00 | 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 00 43 6f 6e 6e 74 72 61 63 6b 20 6c 6f 67 00 | rack.ignore.rules.Conntrack.log. |
| 3ec20 | 43 6f 6e 73 69 64 65 72 61 74 69 6f 6e 73 00 43 6f 6e 73 6f 6c 65 00 43 6f 6e 73 6f 6c 65 20 53 | Considerations.Console.Console.S |
| 3ec40 | 65 72 76 65 72 00 43 6f 6e 73 74 72 61 69 6e 20 74 68 65 20 6d 65 6d 6f 72 79 20 61 76 61 69 6c | erver.Constrain.the.memory.avail |
| 3ec60 | 61 62 6c 65 20 74 6f 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 43 6f 6e 74 61 69 6e 65 72 | able.to.the.container..Container |
| 3ec80 | 00 43 6f 6e 74 61 69 6e 65 72 20 4e 65 74 77 6f 72 6b 73 00 43 6f 6e 74 61 69 6e 65 72 20 52 65 | .Container.Networks.Container.Re |
| 3eca0 | 67 69 73 74 72 79 00 43 6f 6e 74 72 61 63 6b 20 54 69 6d 65 6f 75 74 73 00 43 6f 6e 76 65 72 74 | gistry.Contrack.Timeouts.Convert |
| 3ecc0 | 20 74 68 65 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 | .the.address.prefix.of.a.single. |
| 3ece0 | 60 66 63 30 30 3a 3a 2f 36 34 60 20 6e 65 74 77 6f 72 6b 20 74 6f 20 60 66 63 30 31 3a 3a 2f 36 | `fc00::/64`.network.to.`fc01::/6 |
| 3ed00 | 34 60 00 43 6f 6e 76 65 72 74 20 74 68 65 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 6f 66 | 4`.Convert.the.address.prefix.of |
| 3ed20 | 20 61 20 73 69 6e 67 6c 65 20 60 66 63 30 31 3a 3a 2f 36 34 60 20 6e 65 74 77 6f 72 6b 20 74 6f | .a.single.`fc01::/64`.network.to |
| 3ed40 | 20 60 66 63 30 30 3a 3a 2f 36 34 60 00 43 6f 70 79 20 74 68 65 20 6b 65 79 2c 20 61 73 20 69 74 | .`fc00::/64`.Copy.the.key,.as.it |
| 3ed60 | 20 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 | .is.not.stored.on.the.local.file |
| 3ed80 | 73 79 73 74 65 6d 2e 20 42 65 63 61 75 73 65 20 69 74 20 69 73 20 61 20 73 79 6d 6d 65 74 72 69 | system..Because.it.is.a.symmetri |
| 3eda0 | 63 20 6b 65 79 2c 20 6f 6e 6c 79 20 79 6f 75 20 61 6e 64 20 79 6f 75 72 20 70 65 65 72 20 73 68 | c.key,.only.you.and.your.peer.sh |
| 3edc0 | 6f 75 6c 64 20 68 61 76 65 20 6b 6e 6f 77 6c 65 64 67 65 20 6f 66 20 69 74 73 20 63 6f 6e 74 65 | ould.have.knowledge.of.its.conte |
| 3ede0 | 6e 74 2e 20 4d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 64 69 73 74 72 69 62 75 74 65 20 74 68 65 | nt..Make.sure.you.distribute.the |
| 3ee00 | 20 6b 65 79 20 69 6e 20 61 20 73 61 66 65 20 6d 61 6e 6e 65 72 2c 00 43 6f 75 6e 74 72 79 20 63 | .key.in.a.safe.manner,.Country.c |
| 3ee20 | 6f 64 65 20 28 49 53 4f 2f 49 45 43 20 33 31 36 36 2d 31 29 2e 20 55 73 65 64 20 74 6f 20 73 65 | ode.(ISO/IEC.3166-1)..Used.to.se |
| 3ee40 | 74 20 72 65 67 75 6c 61 74 6f 72 79 20 64 6f 6d 61 69 6e 2e 20 53 65 74 20 61 73 20 6e 65 65 64 | t.regulatory.domain..Set.as.need |
| 3ee60 | 65 64 20 74 6f 20 69 6e 64 69 63 61 74 65 20 63 6f 75 6e 74 72 79 20 69 6e 20 77 68 69 63 68 20 | ed.to.indicate.country.in.which. |
| 3ee80 | 64 65 76 69 63 65 20 69 73 20 6f 70 65 72 61 74 69 6e 67 2e 20 54 68 69 73 20 63 61 6e 20 6c 69 | device.is.operating..This.can.li |
| 3eea0 | 6d 69 74 20 61 76 61 69 6c 61 62 6c 65 20 63 68 61 6e 6e 65 6c 73 20 61 6e 64 20 74 72 61 6e 73 | mit.available.channels.and.trans |
| 3eec0 | 6d 69 74 20 70 6f 77 65 72 2e 00 43 6f 75 6e 74 72 79 20 63 6f 64 65 20 28 49 53 4f 2f 49 45 43 | mit.power..Country.code.(ISO/IEC |
| 3eee0 | 20 33 31 36 36 2d 31 29 2e 20 55 73 65 64 20 74 6f 20 73 65 74 20 72 65 67 75 6c 61 74 6f 72 79 | .3166-1)..Used.to.set.regulatory |
| 3ef00 | 20 64 6f 6d 61 69 6e 2e 20 53 65 74 20 61 73 20 6e 65 65 64 65 64 20 74 6f 20 69 6e 64 69 63 61 | .domain..Set.as.needed.to.indica |
| 3ef20 | 74 65 20 63 6f 75 6e 74 72 79 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 62 6f 78 20 69 73 20 6f | te.country.in.which.the.box.is.o |
| 3ef40 | 70 65 72 61 74 69 6e 67 2e 20 54 68 69 73 20 63 61 6e 20 6c 69 6d 69 74 20 61 76 61 69 6c 61 62 | perating..This.can.limit.availab |
| 3ef60 | 6c 65 20 63 68 61 6e 6e 65 6c 73 20 61 6e 64 20 74 72 61 6e 73 6d 69 74 20 70 6f 77 65 72 2e 00 | le.channels.and.transmit.power.. |
| 3ef80 | 43 72 65 61 74 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 64 65 6e | Creat.community-list.policy.iden |
| 3efa0 | 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 20 65 78 74 | tified.by.name.<text>..Creat.ext |
| 3efc0 | 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 | community-list.policy.identified |
| 3efe0 | 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 20 44 48 43 50 20 61 64 64 | .by.name.<text>..Create.DHCP.add |
| 3f000 | 72 65 73 73 20 72 61 6e 67 65 20 77 69 74 68 20 61 20 72 61 6e 67 65 20 69 64 20 6f 66 20 60 3c | ress.range.with.a.range.id.of.`< |
| 3f020 | 6e 3e 60 2e 20 44 48 43 50 20 6c 65 61 73 65 73 20 61 72 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 | n>`..DHCP.leases.are.taken.from. |
| 3f040 | 74 68 69 73 20 70 6f 6f 6c 2e 20 54 68 65 20 70 6f 6f 6c 20 73 74 61 72 74 73 20 61 74 20 61 64 | this.pool..The.pool.starts.at.ad |
| 3f060 | 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 44 48 43 50 20 61 | dress.`<address>`..Create.DHCP.a |
| 3f080 | 64 64 72 65 73 73 20 72 61 6e 67 65 20 77 69 74 68 20 61 20 72 61 6e 67 65 20 69 64 20 6f 66 20 | ddress.range.with.a.range.id.of. |
| 3f0a0 | 60 3c 6e 3e 60 2e 20 44 48 43 50 20 6c 65 61 73 65 73 20 61 72 65 20 74 61 6b 65 6e 20 66 72 6f | `<n>`..DHCP.leases.are.taken.fro |
| 3f0c0 | 6d 20 74 68 69 73 20 70 6f 6f 6c 2e 20 54 68 65 20 70 6f 6f 6c 20 73 74 6f 70 73 20 77 69 74 68 | m.this.pool..The.pool.stops.with |
| 3f0e0 | 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 44 4e 53 | .address.`<address>`..Create.DNS |
| 3f100 | 20 72 65 63 6f 72 64 20 70 65 72 20 63 6c 69 65 6e 74 20 6c 65 61 73 65 2c 20 62 79 20 61 64 64 | .record.per.client.lease,.by.add |
| 3f120 | 69 6e 67 20 63 6c 69 65 6e 74 73 20 74 6f 20 2f 65 74 63 2f 68 6f 73 74 73 20 66 69 6c 65 2e 20 | ing.clients.to./etc/hosts.file.. |
| 3f140 | 45 6e 74 72 79 20 77 69 6c 6c 20 68 61 76 65 20 66 6f 72 6d 61 74 3a 20 60 3c 73 68 61 72 65 64 | Entry.will.have.format:.`<shared |
| 3f160 | 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 3e 5f 3c 68 6f 73 74 6e 61 6d 65 3e 2e 3c 64 6f 6d 61 69 | -network-name>_<hostname>.<domai |
| 3f180 | 6e 2d 6e 61 6d 65 3e 60 00 43 72 65 61 74 65 20 60 3c 75 73 65 72 3e 60 20 66 6f 72 20 6c 6f 63 | n-name>`.Create.`<user>`.for.loc |
| 3f1a0 | 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 20 74 68 69 73 20 73 79 73 74 65 6d | al.authentication.on.this.system |
| 3f1c0 | 2e 20 54 68 65 20 75 73 65 72 73 20 70 61 73 73 77 6f 72 64 20 77 69 6c 6c 20 62 65 20 73 65 74 | ..The.users.password.will.be.set |
| 3f1e0 | 20 74 6f 20 60 3c 70 61 73 73 3e 60 2e 00 43 72 65 61 74 65 20 60 60 31 37 32 2e 31 38 2e 32 30 | .to.`<pass>`..Create.``172.18.20 |
| 3f200 | 31 2e 30 2f 32 34 60 60 20 61 73 20 61 20 73 75 62 6e 65 74 20 77 69 74 68 69 6e 20 60 60 4e 45 | 1.0/24``.as.a.subnet.within.``NE |
| 3f220 | 54 31 60 60 20 61 6e 64 20 70 61 73 73 20 61 64 64 72 65 73 73 20 6f 66 20 55 6e 69 66 69 20 63 | T1``.and.pass.address.of.Unifi.c |
| 3f240 | 6f 6e 74 72 6f 6c 6c 65 72 20 61 74 20 60 60 31 37 32 2e 31 36 2e 31 30 30 2e 31 60 60 20 74 6f | ontroller.at.``172.16.100.1``.to |
| 3f260 | 20 63 6c 69 65 6e 74 73 20 6f 66 20 74 68 61 74 20 73 75 62 6e 65 74 2e 00 43 72 65 61 74 65 20 | .clients.of.that.subnet..Create. |
| 3f280 | 61 20 43 41 20 63 68 61 69 6e 20 61 6e 64 20 6c 65 61 66 20 63 65 72 74 69 66 69 63 61 74 65 73 | a.CA.chain.and.leaf.certificates |
| 3f2a0 | 00 43 72 65 61 74 65 20 61 20 62 61 73 69 63 20 62 72 69 64 67 65 00 43 72 65 61 74 65 20 61 20 | .Create.a.basic.bridge.Create.a. |
| 3f2c0 | 66 69 6c 65 20 6e 61 6d 65 64 20 60 60 56 79 4f 53 2d 31 2e 33 2e 36 2e 31 2e 34 2e 31 2e 34 34 | file.named.``VyOS-1.3.6.1.4.1.44 |
| 3f2e0 | 36 34 31 2e 43 6f 6e 66 69 67 4d 67 6d 74 2d 43 6f 6d 6d 61 6e 64 73 60 60 20 75 73 69 6e 67 20 | 641.ConfigMgmt-Commands``.using. |
| 3f300 | 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 74 65 6e 74 3a 00 43 72 65 61 74 65 20 61 20 | the.following.content:.Create.a. |
| 3f320 | 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 2c 20 69 74 20 63 61 6e 20 62 65 20 61 | load.balancing.rule,.it.can.be.a |
| 3f340 | 20 6e 75 6d 62 65 72 20 62 65 74 77 65 65 6e 20 31 20 61 6e 64 20 39 39 39 39 3a 00 43 72 65 61 | .number.between.1.and.9999:.Crea |
| 3f360 | 74 65 20 61 20 6e 65 77 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 | te.a.new.:abbr:`CA.(Certificate. |
| 3f380 | 41 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 6f 75 74 70 75 74 20 74 68 65 20 43 41 73 20 70 | Authority)`.and.output.the.CAs.p |
| 3f3a0 | 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 6b 65 79 20 6f 6e 20 74 68 65 20 63 6f 6e | ublic.and.private.key.on.the.con |
| 3f3c0 | 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 44 48 43 50 20 73 74 61 74 69 63 20 6d | sole..Create.a.new.DHCP.static.m |
| 3f3e0 | 61 70 70 69 6e 67 20 6e 61 6d 65 64 20 60 3c 64 65 73 63 72 69 70 74 69 6f 6e 3e 60 20 77 68 69 | apping.named.`<description>`.whi |
| 3f400 | 63 68 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 74 68 65 20 68 6f 73 74 20 69 64 65 6e 74 69 66 | ch.is.valid.for.the.host.identif |
| 3f420 | 69 65 64 20 62 79 20 69 74 73 20 44 48 43 50 20 75 6e 69 71 75 65 20 69 64 65 6e 74 69 66 69 65 | ied.by.its.DHCP.unique.identifie |
| 3f440 | 72 20 28 44 55 49 44 29 20 60 3c 69 64 65 6e 74 69 66 69 65 72 3e 60 2e 00 43 72 65 61 74 65 20 | r.(DUID).`<identifier>`..Create. |
| 3f460 | 61 20 6e 65 77 20 44 48 43 50 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 20 6e 61 6d 65 64 20 | a.new.DHCP.static.mapping.named. |
| 3f480 | 60 3c 64 65 73 63 72 69 70 74 69 6f 6e 3e 60 20 77 68 69 63 68 20 69 73 20 76 61 6c 69 64 20 66 | `<description>`.which.is.valid.f |
| 3f4a0 | 6f 72 20 74 68 65 20 68 6f 73 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 69 74 73 20 4d 41 | or.the.host.identified.by.its.MA |
| 3f4c0 | 43 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 56 4c 41 4e | C.`<address>`..Create.a.new.VLAN |
| 3f4e0 | 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 | .interface.on.interface.`<interf |
| 3f500 | 61 63 65 3e 60 20 75 73 69 6e 67 20 74 68 65 20 56 4c 41 4e 20 6e 75 6d 62 65 72 20 70 72 6f 76 | ace>`.using.the.VLAN.number.prov |
| 3f520 | 69 64 65 64 20 76 69 61 20 60 3c 76 6c 61 6e 2d 69 64 3e 60 2e 00 43 72 65 61 74 65 20 61 20 6e | ided.via.`<vlan-id>`..Create.a.n |
| 3f540 | 65 77 20 56 52 46 20 69 6e 73 74 61 6e 63 65 20 77 69 74 68 20 60 3c 6e 61 6d 65 3e 60 20 61 6e | ew.VRF.instance.with.`<name>`.an |
| 3f560 | 64 20 60 3c 69 64 3e 60 2e 20 54 68 65 20 6e 61 6d 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 | d.`<id>`..The.name.is.used.when. |
| 3f580 | 70 6c 61 63 69 6e 67 20 69 6e 64 69 76 69 64 75 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e | placing.individual.interfaces.in |
| 3f5a0 | 74 6f 20 74 68 65 20 56 52 46 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 70 75 62 6c 69 63 2f | to.the.VRF..Create.a.new.public/ |
| 3f5c0 | 70 72 69 76 61 74 65 20 6b 65 79 70 61 69 72 20 61 6e 64 20 6f 75 74 70 75 74 20 74 68 65 20 63 | private.keypair.and.output.the.c |
| 3f5e0 | 65 72 74 69 66 69 63 61 74 65 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 | ertificate.on.the.console..Creat |
| 3f600 | 65 20 61 20 6e 65 77 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 70 61 69 72 20 77 | e.a.new.public/private.keypair.w |
| 3f620 | 68 69 63 68 20 69 73 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 43 41 20 72 65 66 65 72 65 6e | hich.is.signed.by.the.CA.referen |
| 3f640 | 63 65 64 20 62 79 20 60 63 61 2d 6e 61 6d 65 60 2e 20 54 68 65 20 73 69 67 6e 65 64 20 63 65 72 | ced.by.`ca-name`..The.signed.cer |
| 3f660 | 74 69 66 69 63 61 74 65 20 69 73 20 74 68 65 6e 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 | tificate.is.then.output.to.the.c |
| 3f680 | 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 73 65 6c 66 2d 73 69 67 6e 65 64 | onsole..Create.a.new.self-signed |
| 3f6a0 | 20 63 65 72 74 69 66 69 63 61 74 65 2e 20 54 68 65 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 | .certificate..The.public/private |
| 3f6c0 | 20 69 73 20 74 68 65 6e 20 73 68 6f 77 6e 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 | .is.then.shown.on.the.console..C |
| 3f6e0 | 72 65 61 74 65 20 61 20 6e 65 77 20 73 75 62 6f 72 64 69 6e 61 74 65 20 3a 61 62 62 72 3a 60 43 | reate.a.new.subordinate.:abbr:`C |
| 3f700 | 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 73 | A.(Certificate.Authority)`.and.s |
| 3f720 | 69 67 6e 20 69 74 20 75 73 69 6e 67 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 72 65 66 | ign.it.using.the.private.key.ref |
| 3f740 | 65 72 65 6e 63 65 64 20 62 79 20 60 63 61 2d 6e 61 6d 65 60 2e 00 43 72 65 61 74 65 20 61 20 6e | erenced.by.`ca-name`..Create.a.n |
| 3f760 | 65 77 20 73 75 62 6f 72 64 69 6e 61 74 65 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 | ew.subordinate.:abbr:`CA.(Certif |
| 3f780 | 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 73 69 67 6e 20 69 74 20 75 73 | icate.Authority)`.and.sign.it.us |
| 3f7a0 | 69 6e 67 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 72 65 66 65 72 65 6e 63 65 64 20 62 | ing.the.private.key.referenced.b |
| 3f7c0 | 79 20 60 6e 61 6d 65 60 2e 00 43 72 65 61 74 65 20 61 20 70 65 65 72 20 61 73 20 79 6f 75 20 77 | y.`name`..Create.a.peer.as.you.w |
| 3f7e0 | 6f 75 6c 64 20 77 68 65 6e 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 6e 20 41 53 4e 2c 20 65 78 | ould.when.you.specify.an.ASN,.ex |
| 3f800 | 63 65 70 74 20 74 68 61 74 20 69 66 20 74 68 65 20 70 65 65 72 73 20 41 53 4e 20 69 73 20 64 69 | cept.that.if.the.peers.ASN.is.di |
| 3f820 | 66 66 65 72 65 6e 74 20 74 68 61 6e 20 6d 69 6e 65 20 61 73 20 73 70 65 63 69 66 69 65 64 20 75 | fferent.than.mine.as.specified.u |
| 3f840 | 6e 64 65 72 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 | nder.the.:cfgcmd:`protocols.bgp. |
| 3f860 | 3c 61 73 6e 3e 60 20 63 6f 6d 6d 61 6e 64 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 | <asn>`.command.the.connection.wi |
| 3f880 | 6c 6c 20 62 65 20 64 65 6e 69 65 64 2e 00 43 72 65 61 74 65 20 61 20 70 65 65 72 20 61 73 20 79 | ll.be.denied..Create.a.peer.as.y |
| 3f8a0 | 6f 75 20 77 6f 75 6c 64 20 77 68 65 6e 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 6e 20 41 53 4e | ou.would.when.you.specify.an.ASN |
| 3f8c0 | 2c 20 65 78 63 65 70 74 20 74 68 61 74 20 69 66 20 74 68 65 20 70 65 65 72 73 20 41 53 4e 20 69 | ,.except.that.if.the.peers.ASN.i |
| 3f8e0 | 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 6d 69 6e 65 20 61 73 20 73 70 65 63 69 66 69 65 64 20 | s.the.same.as.mine.as.specified. |
| 3f900 | 75 6e 64 65 72 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 | under.the.:cfgcmd:`protocols.bgp |
| 3f920 | 20 3c 61 73 6e 3e 60 20 63 6f 6d 6d 61 6e 64 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 | .<asn>`.command.the.connection.w |
| 3f940 | 69 6c 6c 20 62 65 20 64 65 6e 69 65 64 2e 00 43 72 65 61 74 65 20 61 20 73 74 61 74 69 63 20 68 | ill.be.denied..Create.a.static.h |
| 3f960 | 6f 73 74 6e 61 6d 65 20 6d 61 70 70 69 6e 67 20 77 68 69 63 68 20 77 69 6c 6c 20 61 6c 77 61 79 | ostname.mapping.which.will.alway |
| 3f980 | 73 20 72 65 73 6f 6c 76 65 20 74 68 65 20 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 | s.resolve.the.name.`<hostname>`. |
| 3f9a0 | 74 6f 20 49 50 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 74 | to.IP.address.`<address>`..Creat |
| 3f9c0 | 65 20 61 73 2d 70 61 74 68 2d 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e | e.as-path-policy.identified.by.n |
| 3f9e0 | 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 | ame.<text>..Create.firewall.rule |
| 3fa00 | 20 69 6e 20 66 6f 72 77 61 72 64 20 63 68 61 69 6e 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 77 68 | .in.forward.chain,.and.define.wh |
| 3fa20 | 69 63 68 20 66 6c 6f 77 74 62 61 6c 65 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 2e 20 4f 6e | ich.flowtbale.should.be.used..On |
| 3fa40 | 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 61 63 74 69 6f 6e 20 69 73 20 60 60 6f 66 66 | ly.applicable.if.action.is.``off |
| 3fa60 | 6c 6f 61 64 60 60 2e 00 43 72 65 61 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 20 69 6e 20 | load``..Create.firewall.rule.in. |
| 3fa80 | 66 6f 72 77 61 72 64 20 63 68 61 69 6e 2c 20 61 6e 64 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f | forward.chain,.and.set.action.to |
| 3faa0 | 20 60 60 6f 66 66 6c 6f 61 64 60 60 2e 00 43 72 65 61 74 65 20 66 69 72 65 77 61 6c 6c 20 72 75 | .``offload``..Create.firewall.ru |
| 3fac0 | 6c 65 3a 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 2c 20 73 65 74 74 | le:.create.a.firewall.rule,.sett |
| 3fae0 | 69 6e 67 20 61 63 74 69 6f 6e 20 74 6f 20 60 60 6f 66 66 6c 6f 61 64 60 60 20 61 6e 64 20 75 73 | ing.action.to.``offload``.and.us |
| 3fb00 | 69 6e 67 20 64 65 73 69 72 65 64 20 66 6c 6f 77 74 61 62 6c 65 20 66 6f 72 20 60 60 6f 66 66 6c | ing.desired.flowtable.for.``offl |
| 3fb20 | 6f 61 64 2d 74 61 72 67 65 74 60 60 2e 00 43 72 65 61 74 65 20 66 6c 6f 77 74 61 62 6c 65 3a 20 | oad-target``..Create.flowtable:. |
| 3fb40 | 63 72 65 61 74 65 20 66 6c 6f 77 74 61 62 6c 65 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 | create.flowtable,.which.includes |
| 3fb60 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 61 72 65 20 67 6f 69 6e 67 20 74 | .the.interfaces.that.are.going.t |
| 3fb80 | 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 2e 00 43 72 65 61 | o.be.used.by.the.flowtable..Crea |
| 3fba0 | 74 65 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 | te.large-community-list.policy.i |
| 3fbc0 | 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 | dentified.by.name.<text>..Create |
| 3fbe0 | 20 6e 61 6d 65 64 20 60 3c 61 6c 69 61 73 3e 60 20 66 6f 72 20 74 68 65 20 63 6f 6e 66 69 67 75 | .named.`<alias>`.for.the.configu |
| 3fc00 | 72 65 64 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 20 66 6f 72 20 60 3c 68 6f 73 74 6e 61 6d | red.static.mapping.for.`<hostnam |
| 3fc20 | 65 3e 60 2e 20 54 68 75 73 20 74 68 65 20 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 | e>`..Thus.the.address.configured |
| 3fc40 | 20 61 73 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 73 74 61 74 69 63 2d 68 | .as.:cfgcmd:`set.system.static-h |
| 3fc60 | 6f 73 74 2d 6d 61 70 70 69 6e 67 20 68 6f 73 74 2d 6e 61 6d 65 20 3c 68 6f 73 74 6e 61 6d 65 3e | ost-mapping.host-name.<hostname> |
| 3fc80 | 20 69 6e 65 74 20 3c 61 64 64 72 65 73 73 3e 60 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 20 | .inet.<address>`.can.be.reached. |
| 3fca0 | 76 69 61 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 2e 00 43 72 65 61 74 65 20 6e 65 77 20 3a | via.multiple.names..Create.new.: |
| 3fcc0 | 72 66 63 3a 60 32 31 33 36 60 20 44 4e 53 20 75 70 64 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 | rfc:`2136`.DNS.update.configurat |
| 3fce0 | 69 6f 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 75 70 64 61 74 65 20 74 68 65 20 49 50 20 61 64 64 | ion.which.will.update.the.IP.add |
| 3fd00 | 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 6f | ress.assigned.to.`<interface>`.o |
| 3fd20 | 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 | n.the.service.you.configured.und |
| 3fd40 | 65 72 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 72 65 61 74 65 20 6e 65 77 20 | er.`<service-name>`..Create.new. |
| 3fd60 | 56 52 46 20 69 6e 73 74 61 6e 63 65 20 77 69 74 68 20 60 3c 6e 61 6d 65 3e 60 2e 20 54 68 65 20 | VRF.instance.with.`<name>`..The. |
| 3fd80 | 6e 61 6d 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 70 6c 61 63 69 6e 67 20 69 6e 64 69 76 69 | name.is.used.when.placing.indivi |
| 3fda0 | 64 75 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 6f 20 74 68 65 20 56 52 46 2e 00 43 72 | dual.interfaces.into.the.VRF..Cr |
| 3fdc0 | 65 61 74 65 20 6e 65 77 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 75 70 64 61 74 65 20 63 6f 6e 66 | eate.new.dynamic.DNS.update.conf |
| 3fde0 | 69 67 75 72 61 74 69 6f 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 75 70 64 61 74 65 20 74 68 65 20 | iguration.which.will.update.the. |
| 3fe00 | 49 50 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 60 3c 69 6e 74 65 72 66 61 | IP.address.assigned.to.`<interfa |
| 3fe20 | 63 65 3e 60 20 6f 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 | ce>`.on.the.service.you.configur |
| 3fe40 | 65 64 20 75 6e 64 65 72 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 72 65 61 74 | ed.under.`<service-name>`..Creat |
| 3fe60 | 65 20 6e 65 77 20 73 79 73 74 65 6d 20 75 73 65 72 20 77 69 74 68 20 75 73 65 72 6e 61 6d 65 20 | e.new.system.user.with.username. |
| 3fe80 | 60 3c 6e 61 6d 65 3e 60 20 61 6e 64 20 72 65 61 6c 2d 6e 61 6d 65 20 73 70 65 63 69 66 69 65 64 | `<name>`.and.real-name.specified |
| 3fea0 | 20 62 79 20 60 3c 73 74 72 69 6e 67 3e 60 2e 00 43 72 65 61 74 65 20 73 65 72 76 69 63 65 20 60 | .by.`<string>`..Create.service.` |
| 3fec0 | 3c 6e 61 6d 65 3e 60 20 74 6f 20 6c 69 73 74 65 6e 20 6f 6e 20 3c 70 6f 72 74 3e 00 43 72 65 61 | <name>`.to.listen.on.<port>.Crea |
| 3fee0 | 74 65 73 20 61 20 6e 61 6d 65 64 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 00 43 72 | tes.a.named.container.network.Cr |
| 3ff00 | 65 61 74 65 73 20 6c 6f 63 61 6c 20 49 50 6f 45 20 75 73 65 72 20 77 69 74 68 20 75 73 65 72 6e | eates.local.IPoE.user.with.usern |
| 3ff20 | 61 6d 65 3d 2a 2a 3c 69 6e 74 65 72 66 61 63 65 3e 2a 2a 20 61 6e 64 20 70 61 73 73 77 6f 72 64 | ame=**<interface>**.and.password |
| 3ff40 | 3d 2a 2a 3c 4d 41 43 3e 2a 2a 20 28 6d 61 63 2d 61 64 64 72 65 73 73 29 00 43 72 65 61 74 65 73 | =**<MAC>**.(mac-address).Creates |
| 3ff60 | 20 73 74 61 74 69 63 20 70 65 65 72 20 6d 61 70 70 69 6e 67 20 6f 66 20 70 72 6f 74 6f 63 6f 6c | .static.peer.mapping.of.protocol |
| 3ff80 | 2d 61 64 64 72 65 73 73 20 74 6f 20 3a 61 62 62 72 3a 60 4e 42 4d 41 20 28 4e 6f 6e 2d 62 72 6f | -address.to.:abbr:`NBMA.(Non-bro |
| 3ffa0 | 61 64 63 61 73 74 20 6d 75 6c 74 69 70 6c 65 2d 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 29 60 | adcast.multiple-access.network)` |
| 3ffc0 | 20 61 64 64 72 65 73 73 2e 00 43 72 65 61 74 69 6e 67 20 61 20 62 72 69 64 67 65 20 69 6e 74 65 | .address..Creating.a.bridge.inte |
| 3ffe0 | 72 66 61 63 65 20 69 73 20 76 65 72 79 20 73 69 6d 70 6c 65 2e 20 49 6e 20 74 68 69 73 20 65 78 | rface.is.very.simple..In.this.ex |
| 40000 | 61 6d 70 6c 65 2c 20 77 65 20 77 69 6c 6c 20 68 61 76 65 3a 00 43 72 65 61 74 69 6e 67 20 61 20 | ample,.we.will.have:.Creating.a. |
| 40020 | 66 6c 6f 77 20 74 61 62 6c 65 3a 00 43 72 65 61 74 69 6e 67 20 61 20 74 72 61 66 66 69 63 20 70 | flow.table:.Creating.a.traffic.p |
| 40040 | 6f 6c 69 63 79 00 43 72 65 61 74 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 75 73 69 6e 67 20 66 | olicy.Creating.rules.for.using.f |
| 40060 | 6c 6f 77 20 74 61 62 6c 65 73 3a 00 43 72 65 64 65 6e 74 69 61 6c 73 20 63 61 6e 20 62 65 20 64 | low.tables:.Credentials.can.be.d |
| 40080 | 65 66 69 6e 65 64 20 68 65 72 65 20 61 6e 64 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 | efined.here.and.will.only.be.use |
| 400a0 | 64 20 77 68 65 6e 20 61 64 64 69 6e 67 20 61 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 | d.when.adding.a.container.image. |
| 400c0 | 74 6f 20 74 68 65 20 73 79 73 74 65 6d 2e 00 43 72 69 74 69 63 61 6c 00 43 72 69 74 69 63 61 6c | to.the.system..Critical.Critical |
| 400e0 | 20 63 6f 6e 64 69 74 69 6f 6e 73 20 2d 20 65 2e 67 2e 20 68 61 72 64 20 64 72 69 76 65 20 65 72 | .conditions.-.e.g..hard.drive.er |
| 40100 | 72 6f 72 73 2e 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 35 33 33 00 43 72 79 73 74 | rors..Crystalfontz.CFA-533.Cryst |
| 40120 | 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 36 33 31 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 | alfontz.CFA-631.Crystalfontz.CFA |
| 40140 | 2d 36 33 33 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 36 33 35 00 43 75 72 20 48 6f | -633.Crystalfontz.CFA-635.Cur.Ho |
| 40160 | 70 20 4c 69 6d 69 74 00 43 75 72 72 65 6e 74 6c 79 20 64 6f 65 73 20 6e 6f 74 20 64 6f 20 6d 75 | p.Limit.Currently.does.not.do.mu |
| 40180 | 63 68 20 61 73 20 63 61 63 68 69 6e 67 20 69 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 65 64 | ch.as.caching.is.not.implemented |
| 401a0 | 2e 00 43 75 72 72 65 6e 74 6c 79 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 69 73 20 73 | ..Currently.dynamic.routing.is.s |
| 401c0 | 75 70 70 6f 72 74 65 64 20 66 6f 72 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f | upported.for.the.following.proto |
| 401e0 | 63 6f 6c 73 3a 00 43 75 73 74 6f 6d 20 46 69 6c 65 00 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 | cols:.Custom.File.Custom.bridge. |
| 40200 | 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 20 77 69 | firewall.chains.can.be.create.wi |
| 40220 | 74 68 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 | th.command.``set.firewall.bridge |
| 40240 | 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 | .name.<name>....``..In.order.to. |
| 40260 | 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 | use.such.custom.chain,.a.rule.wi |
| 40280 | 74 68 20 61 63 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 69 61 | th.action.jump,.and.the.appropia |
| 402a0 | 74 65 20 74 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 | te.target.should.be.defined.in.a |
| 402c0 | 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 66 69 72 65 77 | .base.chain..Custom.bridge.firew |
| 402e0 | 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 20 77 69 74 68 20 63 6f | all.chains.can.be.create.with.co |
| 40300 | 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d 65 | mmand.``set.firewall.bridge.name |
| 40320 | 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 | .<name>....``..In.order.to.use.s |
| 40340 | 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 61 63 | uch.custom.chain,.a.rule.with.ac |
| 40360 | 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 74 | tion.jump,.and.the.appropriate.t |
| 40380 | 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 | arget.should.be.defined.in.a.bas |
| 403a0 | 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 | e.chain..Custom.bridge.firewall. |
| 403c0 | 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 74 68 65 20 63 | chains.can.be.created.with.the.c |
| 403e0 | 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d | ommand.``set.firewall.bridge.nam |
| 40400 | 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 | e.<name>....``..In.order.to.use. |
| 40420 | 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 61 | such.custom.chain,.a.rule.with.a |
| 40440 | 63 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 | ction.jump,.and.the.appropriate. |
| 40460 | 74 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 | target.should.be.defined.in.a.ba |
| 40480 | 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 | se.chain..Custom.firewall.chains |
| 404a0 | 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 | .can.be.created,.with.commands.` |
| 404c0 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 5b 6e 61 6d | `set.firewall.[ipv4.|.ipv6].[nam |
| 404e0 | 65 20 7c 20 69 70 76 36 2d 6e 61 6d 65 5d 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 | e.|.ipv6-name].<name>....``..In. |
| 40500 | 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 | order.to.use.such.custom.chain,. |
| 40520 | 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 | a.rule.with.**action.jump**,.and |
| 40540 | 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c | .the.appropiate.**target**.shoul |
| 40560 | 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 | d.be.defined.in.a.base.chain..Cu |
| 40580 | 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 | stom.firewall.chains.can.be.crea |
| 405a0 | 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | ted,.with.commands.``set.firewal |
| 405c0 | 6c 20 69 70 76 34 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 | l.ipv4.name.<name>....``..In.ord |
| 405e0 | 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 | er.to.use.such.custom.chain,.a.r |
| 40600 | 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 | ule.with.**action.jump**,.and.th |
| 40620 | 65 20 61 70 70 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 | e.appropiate.**target**.should.b |
| 40640 | 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f | e.defined.in.a.base.chain..Custo |
| 40660 | 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 | m.firewall.chains.can.be.created |
| 40680 | 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | ,.with.commands.``set.firewall.i |
| 406a0 | 70 76 34 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 | pv4.name.<name>....``..In.order. |
| 406c0 | 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 | to.use.such.custom.chain,.a.rule |
| 406e0 | 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 | .with.**action.jump**,.and.the.a |
| 40700 | 70 70 72 6f 70 72 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 | ppropriate.**target**.should.be. |
| 40720 | 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 | defined.in.a.base.chain..Custom. |
| 40740 | 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 | firewall.chains.can.be.created,. |
| 40760 | 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 | with.commands.``set.firewall.ipv |
| 40780 | 36 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f | 6.name.<name>....``..In.order.to |
| 407a0 | 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 | .use.such.custom.chain,.a.rule.w |
| 407c0 | 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 | ith.**action.jump**,.and.the.app |
| 407e0 | 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 | ropiate.**target**.should.be.def |
| 40800 | 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 | ined.in.a.base.chain..Custom.fir |
| 40820 | 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 | ewall.chains.can.be.created,.wit |
| 40840 | 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6e | h.commands.``set.firewall.ipv6.n |
| 40860 | 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 | ame.<name>....``..In.order.to.us |
| 40880 | 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 | e.such.custom.chain,.a.rule.with |
| 408a0 | 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 | .**action.jump**,.and.the.approp |
| 408c0 | 72 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e | riate.**target**.should.be.defin |
| 408e0 | 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 68 65 61 6c 74 | ed.in.a.base.chain..Custom.healt |
| 40900 | 68 2d 63 68 65 63 6b 20 73 63 72 69 70 74 20 61 6c 6c 6f 77 73 20 63 68 65 63 6b 69 6e 67 20 72 | h-check.script.allows.checking.r |
| 40920 | 65 61 6c 2d 73 65 72 76 65 72 20 61 76 61 69 6c 61 62 69 6c 69 74 79 00 43 75 73 74 6f 6d 69 7a | eal-server.availability.Customiz |
| 40940 | 65 64 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 2c 20 62 61 73 65 64 20 6f 6e 20 61 20 70 61 63 6b | ed.ignore.rules,.based.on.a.pack |
| 40960 | 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 44 43 4f 20 63 61 6e 20 62 65 | et.and.flow.selector..DCO.can.be |
| 40980 | 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 62 6f 74 68 20 6e 65 77 20 61 6e 64 20 65 78 69 73 74 69 | .enabled.for.both.new.and.existi |
| 409a0 | 6e 67 20 74 75 6e 6e 65 6c 73 2c 56 79 4f 53 20 61 64 64 73 20 61 6e 20 6f 70 74 69 6f 6e 20 69 | ng.tunnels,VyOS.adds.an.option.i |
| 409c0 | 6e 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 65 72 | n.each.tunnel.configuration.wher |
| 409e0 | 65 20 77 65 20 63 61 6e 20 65 6e 61 62 6c 65 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 20 20 2e | e.we.can.enable.this.function... |
| 40a00 | 54 68 65 20 63 75 72 72 65 6e 74 20 62 65 73 74 20 70 72 61 63 74 69 63 65 20 69 73 20 74 6f 20 | The.current.best.practice.is.to. |
| 40a20 | 63 72 65 61 74 65 20 61 20 6e 65 77 20 74 75 6e 6e 65 6c 20 77 69 74 68 20 44 43 4f 20 74 6f 20 | create.a.new.tunnel.with.DCO.to. |
| 40a40 | 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 63 68 61 6e 63 65 20 6f 66 20 70 72 6f 62 6c 65 6d 73 20 | minimize.the.chance.of.problems. |
| 40a60 | 77 69 74 68 20 65 78 69 73 74 69 6e 67 20 63 6c 69 65 6e 74 73 2e 00 44 43 4f 20 63 61 6e 20 62 | with.existing.clients..DCO.can.b |
| 40a80 | 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 62 6f 74 68 20 6e 65 77 20 61 6e 64 20 65 78 69 73 74 | e.enabled.for.both.new.and.exist |
| 40aa0 | 69 6e 67 20 74 75 6e 6e 65 6c 73 2e 20 56 79 4f 53 20 61 64 64 73 20 61 6e 20 6f 70 74 69 6f 6e | ing.tunnels..VyOS.adds.an.option |
| 40ac0 | 20 69 6e 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 | .in.each.tunnel.configuration.wh |
| 40ae0 | 65 72 65 20 77 65 20 63 61 6e 20 65 6e 61 62 6c 65 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 2e | ere.we.can.enable.this.function. |
| 40b00 | 20 54 68 65 20 63 75 72 72 65 6e 74 20 62 65 73 74 20 70 72 61 63 74 69 63 65 20 69 73 20 74 6f | .The.current.best.practice.is.to |
| 40b20 | 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 74 75 6e 6e 65 6c 20 77 69 74 68 20 44 43 4f 20 74 6f | .create.a.new.tunnel.with.DCO.to |
| 40b40 | 20 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 63 68 61 6e 63 65 20 6f 66 20 70 72 6f 62 6c 65 6d 73 | .minimize.the.chance.of.problems |
| 40b60 | 20 77 69 74 68 20 65 78 69 73 74 69 6e 67 20 63 6c 69 65 6e 74 73 2e 00 44 43 4f 20 73 75 70 70 | .with.existing.clients..DCO.supp |
| 40b80 | 6f 72 74 20 69 73 20 61 20 70 65 72 2d 74 75 6e 6e 65 6c 20 6f 70 74 69 6f 6e 20 61 6e 64 20 69 | ort.is.a.per-tunnel.option.and.i |
| 40ba0 | 74 20 69 73 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 62 | t.is.not.automatically.enabled.b |
| 40bc0 | 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 6e 65 77 20 6f 72 20 75 70 67 72 61 64 65 64 20 74 75 | y.default.for.new.or.upgraded.tu |
| 40be0 | 6e 6e 65 6c 73 2e 20 45 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 6c 73 20 77 69 6c 6c 20 63 6f 6e | nnels..Existing.tunnels.will.con |
| 40c00 | 74 69 6e 75 65 20 74 6f 20 66 75 6e 63 74 69 6f 6e 20 61 73 20 74 68 65 79 20 68 61 76 65 20 69 | tinue.to.function.as.they.have.i |
| 40c20 | 6e 20 74 68 65 20 70 61 73 74 2e 00 44 44 6f 53 20 50 72 6f 74 65 63 74 69 6f 6e 00 44 48 20 47 | n.the.past..DDoS.Protection.DH.G |
| 40c40 | 72 6f 75 70 20 31 34 00 44 48 43 50 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 6d | roup.14.DHCP.High.Availability.m |
| 40c60 | 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 65 78 70 6c 69 63 69 74 6c 79 20 62 79 20 | ust.be.configured.explicitly.by. |
| 40c80 | 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 61 74 65 6d 65 6e 74 73 20 6f 6e 20 62 6f 74 68 | the.following.statements.on.both |
| 40ca0 | 20 73 65 72 76 65 72 73 3a 00 44 48 43 50 20 52 65 6c 61 79 00 44 48 43 50 20 53 65 72 76 65 72 | .servers:.DHCP.Relay.DHCP.Server |
| 40cc0 | 00 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 70 61 72 61 6d 65 74 65 72 73 00 44 48 43 50 20 6c | .DHCP.failover.parameters.DHCP.l |
| 40ce0 | 65 61 73 65 20 72 61 6e 67 65 00 44 48 43 50 20 72 61 6e 67 65 20 73 70 61 6e 73 20 66 72 6f 6d | ease.range.DHCP.range.spans.from |
| 40d00 | 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 31 30 60 20 2d 20 60 31 39 32 2e 31 36 38 2e 31 38 39 | .`192.168.189.10`.-.`192.168.189 |
| 40d20 | 2e 32 35 30 60 00 44 48 43 50 20 72 65 6c 61 79 20 65 78 61 6d 70 6c 65 00 44 48 43 50 20 73 65 | .250`.DHCP.relay.example.DHCP.se |
| 40d40 | 72 76 65 72 20 69 73 20 6c 6f 63 61 74 65 64 20 61 74 20 49 50 76 34 20 61 64 64 72 65 73 73 20 | rver.is.located.at.IPv4.address. |
| 40d60 | 31 30 2e 30 2e 31 2e 34 20 6f 6e 20 60 60 65 74 68 32 60 60 2e 00 44 48 43 50 76 36 20 61 64 64 | 10.0.1.4.on.``eth2``..DHCPv6.add |
| 40d80 | 72 65 73 73 20 70 6f 6f 6c 73 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f | ress.pools.must.be.configured.fo |
| 40da0 | 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 61 63 74 20 61 73 20 61 20 44 48 43 50 76 36 20 | r.the.system.to.act.as.a.DHCPv6. |
| 40dc0 | 73 65 72 76 65 72 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 64 65 | server..The.following.example.de |
| 40de0 | 73 63 72 69 62 65 73 20 61 20 63 6f 6d 6d 6f 6e 20 73 63 65 6e 61 72 69 6f 2e 00 44 48 43 50 76 | scribes.a.common.scenario..DHCPv |
| 40e00 | 36 20 72 65 6c 61 79 20 65 78 61 6d 70 6c 65 00 44 48 43 50 76 36 20 72 65 71 75 65 73 74 73 20 | 6.relay.example.DHCPv6.requests. |
| 40e20 | 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f 6e 20 60 6c | are.received.by.the.router.on.`l |
| 40e40 | 69 73 74 65 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 60 20 60 60 65 74 68 31 60 60 00 44 4d 56 | istening.interface`.``eth1``.DMV |
| 40e60 | 50 4e 00 44 4d 56 50 4e 20 65 78 61 6d 70 6c 65 20 6e 65 74 77 6f 72 6b 00 44 4d 56 50 4e 20 6e | PN.DMVPN.example.network.DMVPN.n |
| 40e80 | 65 74 77 6f 72 6b 00 44 4d 56 50 4e 20 6f 6e 6c 79 20 61 75 74 6f 6d 61 74 65 73 20 74 68 65 20 | etwork.DMVPN.only.automates.the. |
| 40ea0 | 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 63 6f 76 65 72 79 20 61 6e 64 20 73 65 | tunnel.endpoint.discovery.and.se |
| 40ec0 | 74 75 70 2e 20 41 20 63 6f 6d 70 6c 65 74 65 20 73 6f 6c 75 74 69 6f 6e 20 61 6c 73 6f 20 69 6e | tup..A.complete.solution.also.in |
| 40ee0 | 63 6f 72 70 6f 72 61 74 65 73 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 72 6f 75 74 69 6e 67 20 | corporates.the.use.of.a.routing. |
| 40f00 | 70 72 6f 74 6f 63 6f 6c 2e 20 42 47 50 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 77 65 | protocol..BGP.is.particularly.we |
| 40f20 | 6c 6c 20 73 75 69 74 65 64 20 66 6f 72 20 75 73 65 20 77 69 74 68 20 44 4d 56 50 4e 2e 00 44 4e | ll.suited.for.use.with.DMVPN..DN |
| 40f40 | 41 54 00 44 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f | AT.DNAT.is.typically.referred.to |
| 40f60 | 20 61 73 20 61 20 2a 2a 50 6f 72 74 20 46 6f 72 77 61 72 64 2a 2a 2e 20 57 68 65 6e 20 75 73 69 | .as.a.**Port.Forward**..When.usi |
| 40f80 | 6e 67 20 56 79 4f 53 20 61 73 20 61 20 4e 41 54 20 72 6f 75 74 65 72 20 61 6e 64 20 66 69 72 65 | ng.VyOS.as.a.NAT.router.and.fire |
| 40fa0 | 77 61 6c 6c 2c 20 61 20 63 6f 6d 6d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 61 73 | wall,.a.common.configuration.tas |
| 40fc0 | 6b 20 69 73 20 74 6f 20 72 65 64 69 72 65 63 74 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 | k.is.to.redirect.incoming.traffi |
| 40fe0 | 63 20 74 6f 20 61 20 73 79 73 74 65 6d 20 62 65 68 69 6e 64 20 74 68 65 20 66 69 72 65 77 61 6c | c.to.a.system.behind.the.firewal |
| 41000 | 6c 2e 00 44 4e 41 54 20 72 75 6c 65 20 31 30 20 72 65 70 6c 61 63 65 73 20 74 68 65 20 64 65 73 | l..DNAT.rule.10.replaces.the.des |
| 41020 | 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 61 6e 20 69 6e 62 6f 75 6e 64 20 70 | tination.address.of.an.inbound.p |
| 41040 | 61 63 6b 65 74 20 77 69 74 68 20 31 39 32 2e 30 2e 32 2e 31 30 00 44 4e 41 54 36 36 00 44 4e 53 | acket.with.192.0.2.10.DNAT66.DNS |
| 41060 | 20 46 6f 72 77 61 72 64 69 6e 67 00 44 4e 53 20 6e 61 6d 65 20 73 65 72 76 65 72 73 00 44 4e 53 | .Forwarding.DNS.name.servers.DNS |
| 41080 | 20 73 65 61 72 63 68 20 6c 69 73 74 20 74 6f 20 61 64 76 65 72 74 69 73 65 00 44 4e 53 20 73 65 | .search.list.to.advertise.DNS.se |
| 410a0 | 72 76 65 72 20 49 50 76 34 20 61 64 64 72 65 73 73 00 44 4e 53 20 73 65 72 76 65 72 20 69 73 20 | rver.IPv4.address.DNS.server.is. |
| 410c0 | 6c 6f 63 61 74 65 64 20 61 74 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 66 66 66 66 60 60 00 44 4e | located.at.``2001:db8::ffff``.DN |
| 410e0 | 53 53 4c 00 44 53 43 50 20 76 61 6c 75 65 73 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 32 34 37 | SSL.DSCP.values.as.per.:rfc:`247 |
| 41100 | 34 60 20 61 6e 64 20 3a 72 66 63 3a 60 34 35 39 35 60 3a 00 44 53 53 53 2f 43 43 4b 20 4d 6f 64 | 4`.and.:rfc:`4595`:.DSSS/CCK.Mod |
| 41120 | 65 20 69 6e 20 34 30 20 4d 48 7a 2c 20 74 68 69 73 20 73 65 74 73 20 60 60 5b 44 53 53 53 5f 43 | e.in.40.MHz,.this.sets.``[DSSS_C |
| 41140 | 43 4b 2d 34 30 5d 60 60 00 44 61 74 61 20 69 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 44 42 2d | CK-40]``.Data.is.provided.by.DB- |
| 41160 | 49 50 2e 63 6f 6d 20 75 6e 64 65 72 20 43 43 2d 42 59 2d 34 2e 30 20 6c 69 63 65 6e 73 65 2e 20 | IP.com.under.CC-BY-4.0.license.. |
| 41180 | 41 74 74 72 69 62 75 74 69 6f 6e 20 72 65 71 75 69 72 65 64 2c 20 70 65 72 6d 69 74 73 20 72 65 | Attribution.required,.permits.re |
| 411a0 | 64 69 73 74 72 69 62 75 74 69 6f 6e 20 73 6f 20 77 65 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 61 | distribution.so.we.can.include.a |
| 411c0 | 20 64 61 74 61 62 61 73 65 20 69 6e 20 69 6d 61 67 65 73 28 7e 33 4d 42 20 63 6f 6d 70 72 65 73 | .database.in.images(~3MB.compres |
| 411e0 | 73 65 64 29 2e 20 49 6e 63 6c 75 64 65 73 20 63 72 6f 6e 20 73 63 72 69 70 74 20 28 6d 61 6e 75 | sed)..Includes.cron.script.(manu |
| 41200 | 61 6c 6c 79 20 63 61 6c 6c 61 62 6c 65 20 62 79 20 6f 70 2d 6d 6f 64 65 20 75 70 64 61 74 65 20 | ally.callable.by.op-mode.update. |
| 41220 | 67 65 6f 69 70 29 20 74 6f 20 6b 65 65 70 20 64 61 74 61 62 61 73 65 20 61 6e 64 20 72 75 6c 65 | geoip).to.keep.database.and.rule |
| 41240 | 73 20 75 70 64 61 74 65 64 2e 00 44 65 62 75 67 00 44 65 62 75 67 2d 6c 65 76 65 6c 20 6d 65 73 | s.updated..Debug.Debug-level.mes |
| 41260 | 73 61 67 65 73 20 2d 20 4d 65 73 73 61 67 65 73 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 20 69 6e | sages.-.Messages.that.contain.in |
| 41280 | 66 6f 72 6d 61 74 69 6f 6e 20 6e 6f 72 6d 61 6c 6c 79 20 6f 66 20 75 73 65 20 6f 6e 6c 79 20 77 | formation.normally.of.use.only.w |
| 412a0 | 68 65 6e 20 64 65 62 75 67 67 69 6e 67 20 61 20 70 72 6f 67 72 61 6d 2e 00 44 65 66 61 75 6c 74 | hen.debugging.a.program..Default |
| 412c0 | 00 44 65 66 61 75 6c 74 20 31 2e 00 44 65 66 61 75 6c 74 20 47 61 74 65 77 61 79 2f 52 6f 75 74 | .Default.1..Default.Gateway/Rout |
| 412e0 | 65 00 44 65 66 61 75 6c 74 20 52 6f 75 74 65 72 20 50 72 65 66 65 72 65 6e 63 65 00 44 65 66 61 | e.Default.Router.Preference.Defa |
| 41300 | 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d 20 64 6f 6e 27 74 20 61 73 6b 20 63 6c 69 65 6e 74 20 | ult.behavior.-.don't.ask.client. |
| 41320 | 66 6f 72 20 6d 70 70 65 2c 20 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 69 66 20 63 6c 69 65 6e 74 | for.mppe,.but.allow.it.if.client |
| 41340 | 20 77 61 6e 74 73 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 52 41 44 49 55 53 20 | .wants..Please.note.that.RADIUS. |
| 41360 | 6d 61 79 20 6f 76 65 72 72 69 64 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 62 79 20 4d 53 2d 4d | may.override.this.option.by.MS-M |
| 41380 | 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 63 79 20 61 74 74 72 69 62 75 74 65 2e | PPE-Encryption-Policy.attribute. |
| 413a0 | 00 44 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d 20 64 6f 6e 27 74 20 61 73 6b 20 74 68 | .Default.behavior.-.don't.ask.th |
| 413c0 | 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 | e.client.for.mppe,.but.allow.it. |
| 413e0 | 69 66 20 74 68 65 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 | if.the.client.wants..Please.note |
| 41400 | 20 74 68 61 74 20 52 41 44 49 55 53 20 6d 61 79 20 6f 76 65 72 72 69 64 65 20 74 68 69 73 20 6f | .that.RADIUS.may.override.this.o |
| 41420 | 70 74 69 6f 6e 20 62 79 20 4d 53 2d 4d 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 | ption.by.MS-MPPE-Encryption-Poli |
| 41440 | 63 79 20 61 74 74 72 69 62 75 74 65 2e 00 44 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d | cy.attribute..Default.behavior.- |
| 41460 | 20 64 6f 6e 27 74 20 61 73 6b 20 74 68 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 | .don't.ask.the.client.for.mppe,. |
| 41480 | 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 69 66 20 74 68 65 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 | but.allow.it.if.the.client.wants |
| 414a0 | 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 52 41 44 49 55 53 20 6d 61 79 20 6f 76 | ..Please.note.that.RADIUS.may.ov |
| 414c0 | 65 72 72 69 64 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 4d 53 2d 4d | erride.this.option.with.the.MS-M |
| 414e0 | 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 63 79 20 61 74 74 72 69 62 75 74 65 2e | PPE-Encryption-Policy.attribute. |
| 41500 | 00 44 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 61 6e 64 20 44 4e 53 20 73 65 72 76 65 72 20 | .Default.gateway.and.DNS.server. |
| 41520 | 69 73 20 61 74 20 60 31 39 32 2e 30 2e 32 2e 32 35 34 60 00 44 65 66 61 75 6c 74 20 69 73 20 30 | is.at.`192.0.2.254`.Default.is.0 |
| 41540 | 20 66 6f 72 20 75 6e 6c 69 6d 69 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 31 2e 32 | .for.unlimited..For.example,.1.2 |
| 41560 | 35 20 6c 69 6d 69 74 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 74 6f 20 75 73 65 20 75 70 | 5.limits.the.container.to.use.up |
| 41580 | 20 74 6f 20 31 2e 32 35 20 63 6f 72 65 73 20 77 6f 72 74 68 20 6f 66 20 43 50 55 20 74 69 6d 65 | .to.1.25.cores.worth.of.CPU.time |
| 415a0 | 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 20 64 65 63 69 6d 61 6c 20 6e 75 6d 62 65 72 20 77 | ..This.can.be.a.decimal.number.w |
| 415c0 | 69 74 68 20 75 70 20 74 6f 20 74 68 72 65 65 20 64 65 63 69 6d 61 6c 20 70 6c 61 63 65 73 2e 00 | ith.up.to.three.decimal.places.. |
| 415e0 | 44 65 66 61 75 6c 74 20 69 73 20 33 31 30 30 00 44 65 66 61 75 6c 74 20 69 73 20 35 31 32 20 4d | Default.is.3100.Default.is.512.M |
| 41600 | 42 2e 20 55 73 65 20 30 20 4d 42 20 66 6f 72 20 75 6e 6c 69 6d 69 74 65 64 20 6d 65 6d 6f 72 79 | B..Use.0.MB.for.unlimited.memory |
| 41620 | 2e 00 44 65 66 61 75 6c 74 20 69 73 20 60 60 61 6e 79 2d 61 76 61 69 6c 61 62 6c 65 60 60 2e 00 | ..Default.is.``any-available``.. |
| 41640 | 44 65 66 61 75 6c 74 20 69 73 20 60 60 69 63 6d 70 60 60 2e 00 44 65 66 61 75 6c 74 20 69 73 20 | Default.is.``icmp``..Default.is. |
| 41660 | 74 6f 20 64 65 74 65 63 74 73 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 73 74 61 74 65 20 63 | to.detects.physical.link.state.c |
| 41680 | 68 61 6e 67 65 73 2e 00 44 65 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 33 31 32 38 2e 00 44 65 | hanges..Default.port.is.3128..De |
| 416a0 | 66 61 75 6c 74 3a 20 31 00 44 65 66 61 75 6c 74 3a 20 34 34 33 00 44 65 66 61 75 6c 74 73 20 74 | fault:.1.Default:.443.Defaults.t |
| 416c0 | 6f 20 27 75 69 64 27 00 44 65 66 61 75 6c 74 73 20 74 6f 20 32 32 35 2e 30 2e 30 2e 35 30 2e 00 | o.'uid'.Defaults.to.225.0.0.50.. |
| 416e0 | 44 65 66 61 75 6c 74 73 20 74 6f 20 60 60 75 73 60 60 2e 00 44 65 66 69 6e 65 20 43 6f 6e 65 63 | Defaults.to.``us``..Define.Conec |
| 41700 | 74 69 6f 6e 20 54 69 6d 65 6f 75 74 73 00 44 65 66 69 6e 65 20 49 50 76 34 20 61 6e 64 2f 6f 72 | tion.Timeouts.Define.IPv4.and/or |
| 41720 | 20 49 50 76 36 20 70 72 65 66 69 78 20 66 6f 72 20 61 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b | .IPv6.prefix.for.a.given.network |
| 41740 | 20 6e 61 6d 65 2e 20 42 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 63 61 6e 20 62 65 | .name..Both.IPv4.and.IPv6.can.be |
| 41760 | 20 75 73 65 64 20 69 6e 20 70 61 72 61 6c 6c 65 6c 2e 00 44 65 66 69 6e 65 20 49 50 76 34 20 6f | .used.in.parallel..Define.IPv4.o |
| 41780 | 72 20 49 50 76 36 20 70 72 65 66 69 78 20 66 6f 72 20 61 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 | r.IPv6.prefix.for.a.given.networ |
| 417a0 | 6b 20 6e 61 6d 65 2e 20 4f 6e 6c 79 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 6f 6e 65 20 49 50 | k.name..Only.one.IPv4.and.one.IP |
| 417c0 | 76 36 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 75 73 65 64 20 70 65 72 20 6e 65 74 77 6f 72 | v6.prefix.can.be.used.per.networ |
| 417e0 | 6b 20 6e 61 6d 65 2e 00 44 65 66 69 6e 65 20 49 50 76 34 2f 49 50 76 36 20 6d 61 6e 61 67 65 6d | k.name..Define.IPv4/IPv6.managem |
| 41800 | 65 6e 74 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 76 69 61 20 4c 4c 44 50 | ent.address.transmitted.via.LLDP |
| 41820 | 2e 20 4d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 | ..Multiple.addresses.can.be.defi |
| 41840 | 6e 65 64 2e 20 4f 6e 6c 79 20 61 64 64 72 65 73 73 65 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f | ned..Only.addresses.connected.to |
| 41860 | 20 74 68 65 20 73 79 73 74 65 6d 20 77 69 6c 6c 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 2e | .the.system.will.be.transmitted. |
| 41880 | 00 44 65 66 69 6e 65 20 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 67 | .Define.a.IPv4.or.IPv6.Network.g |
| 418a0 | 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 49 50 76 34 20 6f 72 20 61 20 49 50 76 36 20 61 64 | roup..Define.a.IPv4.or.a.IPv6.ad |
| 418c0 | 64 72 65 73 73 20 67 72 6f 75 70 00 44 65 66 69 6e 65 20 61 20 5a 6f 6e 65 00 44 65 66 69 6e 65 | dress.group.Define.a.Zone.Define |
| 418e0 | 20 61 20 64 69 73 63 72 65 74 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 | .a.discrete.source.IP.address.of |
| 41900 | 20 31 30 30 2e 36 34 2e 30 2e 31 20 66 6f 72 20 53 4e 41 54 20 72 75 6c 65 20 32 30 00 44 65 66 | .100.64.0.1.for.SNAT.rule.20.Def |
| 41920 | 69 6e 65 20 61 20 64 6f 6d 61 69 6e 20 67 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 6d 61 63 | ine.a.domain.group..Define.a.mac |
| 41940 | 20 67 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 70 6f 72 74 20 67 72 6f 75 70 2e 20 41 20 70 | .group..Define.a.port.group..A.p |
| 41960 | 6f 72 74 20 6e 61 6d 65 20 63 61 6e 20 62 65 20 61 6e 79 20 6e 61 6d 65 20 64 65 66 69 6e 65 64 | ort.name.can.be.any.name.defined |
| 41980 | 20 69 6e 20 2f 65 74 63 2f 73 65 72 76 69 63 65 73 2e 20 65 2e 67 2e 3a 20 68 74 74 70 00 44 65 | .in./etc/services..e.g.:.http.De |
| 419a0 | 66 69 6e 65 20 61 6c 6c 6f 77 65 64 20 63 69 70 68 65 72 73 20 75 73 65 64 20 66 6f 72 20 74 68 | fine.allowed.ciphers.used.for.th |
| 419c0 | 65 20 53 53 48 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 41 20 6e 75 6d 62 65 72 20 6f 66 20 61 6c | e.SSH.connection..A.number.of.al |
| 419e0 | 6c 6f 77 65 64 20 63 69 70 68 65 72 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2c 20 | lowed.ciphers.can.be.specified,. |
| 41a00 | 75 73 65 20 6d 75 6c 74 69 70 6c 65 20 6f 63 63 75 72 72 65 6e 63 65 73 20 74 6f 20 61 6c 6c 6f | use.multiple.occurrences.to.allo |
| 41a20 | 77 20 6d 75 6c 74 69 70 6c 65 20 63 69 70 68 65 72 73 2e 00 44 65 66 69 6e 65 20 61 6e 20 69 6e | w.multiple.ciphers..Define.an.in |
| 41a40 | 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 57 69 6c 64 63 61 72 64 20 61 72 65 20 61 63 63 65 | terface.group..Wildcard.are.acce |
| 41a60 | 70 74 65 64 20 74 6f 6f 2e 00 44 65 66 69 6e 65 20 62 65 68 61 76 69 6f 72 20 66 6f 72 20 67 72 | pted.too..Define.behavior.for.gr |
| 41a80 | 61 74 75 69 74 6f 75 73 20 41 52 50 20 66 72 61 6d 65 73 20 77 68 6f 27 73 20 49 50 20 69 73 20 | atuitous.ARP.frames.who's.IP.is. |
| 41aa0 | 6e 6f 74 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 41 52 50 20 74 | not.already.present.in.the.ARP.t |
| 41ac0 | 61 62 6c 65 2e 20 49 66 20 63 6f 6e 66 69 67 75 72 65 64 20 63 72 65 61 74 65 20 6e 65 77 20 65 | able..If.configured.create.new.e |
| 41ae0 | 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 | ntries.in.the.ARP.table..Define. |
| 41b00 | 62 65 68 61 76 69 6f 72 20 66 6f 72 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 66 72 61 6d | behavior.for.gratuitous.ARP.fram |
| 41b20 | 65 73 20 77 68 6f 73 65 20 49 50 20 69 73 20 6e 6f 74 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 | es.whose.IP.is.not.already.prese |
| 41b40 | 6e 74 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e 20 49 66 20 63 6f 6e 66 69 67 75 72 | nt.in.the.ARP.table..If.configur |
| 41b60 | 65 64 20 63 72 65 61 74 65 20 6e 65 77 20 65 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 41 52 50 | ed.create.new.entries.in.the.ARP |
| 41b80 | 20 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 66 | .table..Define.different.modes.f |
| 41ba0 | 6f 72 20 49 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 | or.IP.directed.broadcast.forward |
| 41bc0 | 69 6e 67 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 38 31 32 60 20 | ing.as.described.in.:rfc:`1812`. |
| 41be0 | 61 6e 64 20 3a 72 66 63 3a 60 32 36 34 34 60 2e 00 44 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e | and.:rfc:`2644`..Define.differen |
| 41c00 | 74 20 6d 6f 64 65 73 20 66 6f 72 20 73 65 6e 64 69 6e 67 20 72 65 70 6c 69 65 73 20 69 6e 20 72 | t.modes.for.sending.replies.in.r |
| 41c20 | 65 73 70 6f 6e 73 65 20 74 6f 20 72 65 63 65 69 76 65 64 20 41 52 50 20 72 65 71 75 65 73 74 73 | esponse.to.received.ARP.requests |
| 41c40 | 20 74 68 61 74 20 72 65 73 6f 6c 76 65 20 6c 6f 63 61 6c 20 74 61 72 67 65 74 20 49 50 20 61 64 | .that.resolve.local.target.IP.ad |
| 41c60 | 64 72 65 73 73 65 73 3a 00 44 65 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 72 65 73 74 72 69 | dresses:.Define.different.restri |
| 41c80 | 63 74 69 6f 6e 20 6c 65 76 65 6c 73 20 66 6f 72 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 74 68 65 20 | ction.levels.for.announcing.the. |
| 41ca0 | 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 49 50 20 | local.source.IP.address.from.IP. |
| 41cc0 | 70 61 63 6b 65 74 73 20 69 6e 20 41 52 50 20 72 65 71 75 65 73 74 73 20 73 65 6e 74 20 6f 6e 20 | packets.in.ARP.requests.sent.on. |
| 41ce0 | 69 6e 74 65 72 66 61 63 65 2e 00 44 65 66 69 6e 65 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c 65 20 | interface..Define.how.to.handle. |
| 41d00 | 6c 65 61 66 2d 73 65 6f 6e 64 73 2e 00 44 65 66 69 6e 65 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c | leaf-seonds..Define.how.to.handl |
| 41d20 | 65 20 6c 65 61 70 2d 73 65 63 6f 6e 64 73 2e 00 44 65 66 69 6e 65 20 69 6e 74 65 72 66 61 63 65 | e.leap-seconds..Define.interface |
| 41d40 | 73 20 74 6f 20 62 65 20 75 73 65 64 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 2e 00 44 | s.to.be.used.in.the.flowtable..D |
| 41d60 | 65 66 69 6e 65 20 6c 65 6e 67 68 74 20 6f 66 20 65 78 63 6c 75 64 65 20 70 72 65 66 69 78 20 69 | efine.lenght.of.exclude.prefix.i |
| 41d80 | 6e 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 2e 00 44 65 66 69 6e 65 20 6c 65 6e 67 74 68 20 6f | n.`<pd-prefix>`..Define.length.o |
| 41da0 | 66 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f 20 69 6e 63 6c 75 64 65 20 69 6e 20 6e | f.packet.payload.to.include.in.n |
| 41dc0 | 65 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 | etlink.message..Only.applicable. |
| 41de0 | 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 20 61 6e 64 20 6c 6f 67 20 67 72 | if.rule.log.is.enable.and.log.gr |
| 41e00 | 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6c 65 6e 67 74 68 20 6f 66 | oup.is.defined..Define.length.of |
| 41e20 | 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f 20 69 6e 63 6c 75 64 65 20 69 6e 20 6e 65 | .packet.payload.to.include.in.ne |
| 41e40 | 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 | tlink.message..Only.applicable.i |
| 41e60 | 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 74 68 65 20 6c 6f | f.rule.log.is.enabled.and.the.lo |
| 41e80 | 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6c 6f 67 20 67 | g.group.is.defined..Define.log.g |
| 41ea0 | 72 6f 75 70 20 74 6f 20 73 65 6e 64 20 6d 65 73 73 61 67 65 20 74 6f 2e 20 4f 6e 6c 79 20 61 70 | roup.to.send.message.to..Only.ap |
| 41ec0 | 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 2e 00 | plicable.if.rule.log.is.enable.. |
| 41ee0 | 44 65 66 69 6e 65 20 6c 6f 67 2d 6c 65 76 65 6c 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c | Define.log-level..Only.applicabl |
| 41f00 | 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 | e.if.rule.log.is.enable..Define. |
| 41f20 | 6c 6f 67 2d 6c 65 76 65 6c 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 | log-level..Only.applicable.if.ru |
| 41f40 | 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 2e 00 44 65 66 69 6e 65 20 6e 75 6d 62 65 72 | le.log.is.enabled..Define.number |
| 41f60 | 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 68 65 20 | .of.packets.to.queue.inside.the. |
| 41f80 | 6b 65 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 | kernel.before.sending.them.to.us |
| 41fa0 | 65 72 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 | erspace..Only.applicable.if.rule |
| 41fc0 | 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 | .log.is.enable.and.log.group.is. |
| 41fe0 | 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6f 70 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 6f | defined..Define.operation.mode.o |
| 42000 | 66 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 66 65 61 74 75 72 65 2e 20 44 65 66 | f.High.Availability.feature..Def |
| 42020 | 61 75 6c 74 20 76 61 6c 75 65 20 69 66 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 73 70 65 | ault.value.if.command.is.not.spe |
| 42040 | 63 69 66 69 65 64 20 69 73 20 60 61 63 74 69 76 65 2d 61 63 74 69 76 65 60 00 44 65 66 69 6e 65 | cified.is.`active-active`.Define |
| 42060 | 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f | .the.length.of.packet.payload.to |
| 42080 | 20 69 6e 63 6c 75 64 65 20 69 6e 20 61 20 6e 65 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f | .include.in.a.netlink.message..O |
| 420a0 | 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e | nly.applicable.if.rule.log.is.en |
| 420c0 | 61 62 6c 65 64 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 | abled.and.log.group.is.defined.. |
| 420e0 | 44 65 66 69 6e 65 20 74 68 65 20 6c 6f 67 20 67 72 6f 75 70 20 74 6f 20 73 65 6e 64 20 6d 65 73 | Define.the.log.group.to.send.mes |
| 42100 | 73 61 67 65 73 20 74 6f 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c | sages.to..Only.applicable.if.rul |
| 42120 | 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 6e 75 6d | e.log.is.enabled..Define.the.num |
| 42140 | 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 | ber.of.packets.to.queue.inside.t |
| 42160 | 68 65 20 6b 65 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f | he.kernel.before.sending.them.to |
| 42180 | 20 75 73 65 72 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 | .userspace..Only.applicable.if.r |
| 421a0 | 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 | ule.log.is.enabled.and.log.group |
| 421c0 | 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 6e 75 6d 62 65 72 20 6f | .is.defined..Define.the.number.o |
| 421e0 | 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 65 20 69 6e 73 69 64 65 20 74 68 65 20 6b 65 | f.packets.to.queue.inside.the.ke |
| 42200 | 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 65 72 | rnel.before.sending.them.to.user |
| 42220 | 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c | space..Only.applicable.if.rule.l |
| 42240 | 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 74 68 65 20 6c 6f 67 20 67 72 6f 75 70 20 | og.is.enabled.and.the.log.group. |
| 42260 | 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 74 69 6d 65 20 69 6e 74 65 | is.defined..Define.the.time.inte |
| 42280 | 72 76 61 6c 20 74 6f 20 75 70 64 61 74 65 20 74 68 65 20 6c 6f 63 61 6c 20 63 61 63 68 65 00 44 | rval.to.update.the.local.cache.D |
| 422a0 | 65 66 69 6e 65 20 74 68 65 20 7a 6f 6e 65 20 61 73 20 61 20 6c 6f 63 61 6c 20 7a 6f 6e 65 2e 20 | efine.the.zone.as.a.local.zone.. |
| 422c0 | 41 20 6c 6f 63 61 6c 20 7a 6f 6e 65 20 68 61 73 20 6e 6f 20 69 6e 74 65 72 66 61 63 65 73 20 61 | A.local.zone.has.no.interfaces.a |
| 422e0 | 6e 64 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 | nd.will.be.applied.to.the.router |
| 42300 | 20 69 74 73 65 6c 66 2e 00 44 65 66 69 6e 65 20 74 79 70 65 20 6f 66 20 6f 66 66 6c 6f 61 64 20 | .itself..Define.type.of.offload. |
| 42320 | 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 3a 20 60 60 68 | to.be.used.by.the.flowtable:.``h |
| 42340 | 61 72 64 77 61 72 65 60 60 20 6f 72 20 60 60 73 6f 66 74 77 61 72 65 60 60 2e 20 42 79 20 64 65 | ardware``.or.``software``..By.de |
| 42360 | 66 61 75 6c 74 2c 20 60 60 73 6f 66 74 77 61 72 65 60 60 20 6f 66 66 6c 6f 61 64 20 69 73 20 75 | fault,.``software``.offload.is.u |
| 42380 | 73 65 64 2e 00 44 65 66 69 6e 65 20 75 73 65 64 20 65 74 68 65 72 74 79 70 65 20 6f 66 20 62 72 | sed..Define.used.ethertype.of.br |
| 423a0 | 69 64 67 65 20 69 6e 74 65 72 66 61 63 65 2e 00 44 65 66 69 6e 65 64 20 74 68 65 20 49 50 76 34 | idge.interface..Defined.the.IPv4 |
| 423c0 | 2c 20 49 50 76 36 20 6f 72 20 46 51 44 4e 20 61 6e 64 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f | ,.IPv6.or.FQDN.and.port.number.o |
| 423e0 | 66 20 74 68 65 20 63 61 63 68 69 6e 67 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 69 6e 73 74 61 | f.the.caching.RPKI.caching.insta |
| 42400 | 6e 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 2e 00 44 65 66 69 6e 65 73 20 61 6c 74 65 72 | nce.which.is.used..Defines.alter |
| 42420 | 6e 61 74 65 20 73 6f 75 72 63 65 73 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 69 6e 67 20 61 6e | nate.sources.for.multicasting.an |
| 42440 | 64 20 49 47 4d 50 20 64 61 74 61 2e 20 54 68 65 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 | d.IGMP.data..The.network.address |
| 42460 | 20 6d 75 73 74 20 62 65 20 6f 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 66 6f 72 6d 61 74 | .must.be.on.the.following.format |
| 42480 | 20 27 61 2e 62 2e 63 2e 64 2f 6e 27 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 72 6f | .'a.b.c.d/n'..By.default,.the.ro |
| 424a0 | 75 74 65 72 20 77 69 6c 6c 20 61 63 63 65 70 74 20 64 61 74 61 20 66 72 6f 6d 20 73 6f 75 72 63 | uter.will.accept.data.from.sourc |
| 424c0 | 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 20 61 73 20 63 6f 6e 66 69 67 | es.on.the.same.network.as.config |
| 424e0 | 75 72 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 74 68 65 20 6d 75 6c | ured.on.an.interface..If.the.mul |
| 42500 | 74 69 63 61 73 74 20 73 6f 75 72 63 65 20 6c 69 65 73 20 6f 6e 20 61 20 72 65 6d 6f 74 65 20 6e | ticast.source.lies.on.a.remote.n |
| 42520 | 65 74 77 6f 72 6b 2c 20 6f 6e 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 66 72 6f 6d 20 77 68 65 | etwork,.one.must.define.from.whe |
| 42540 | 72 65 20 74 72 61 66 66 69 63 20 73 68 6f 75 6c 64 20 62 65 20 61 63 63 65 70 74 65 64 2e 00 44 | re.traffic.should.be.accepted..D |
| 42560 | 65 66 69 6e 65 73 20 61 6e 20 6f 66 66 2d 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 | efines.an.off-NBMA.network.prefi |
| 42580 | 78 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 47 52 45 20 69 6e 74 65 72 66 61 63 65 20 77 69 | x.for.which.the.GRE.interface.wi |
| 425a0 | 6c 6c 20 61 63 74 20 61 73 20 61 20 67 61 74 65 77 61 79 2e 20 54 68 69 73 20 61 6e 20 61 6c 74 | ll.act.as.a.gateway..This.an.alt |
| 425c0 | 65 72 6e 61 74 69 76 65 20 74 6f 20 64 65 66 69 6e 69 6e 67 20 6c 6f 63 61 6c 20 69 6e 74 65 72 | ernative.to.defining.local.inter |
| 425e0 | 66 61 63 65 73 20 77 69 74 68 20 73 68 6f 72 74 63 75 74 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 | faces.with.shortcut-destination. |
| 42600 | 66 6c 61 67 2e 00 44 65 66 69 6e 65 73 20 62 6c 61 63 6b 68 6f 6c 65 20 64 69 73 74 61 6e 63 65 | flag..Defines.blackhole.distance |
| 42620 | 20 66 6f 72 20 74 68 69 73 20 72 6f 75 74 65 2c 20 72 6f 75 74 65 73 20 77 69 74 68 20 73 6d 61 | .for.this.route,.routes.with.sma |
| 42640 | 6c 6c 65 72 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 61 72 65 | ller.administrative.distance.are |
| 42660 | 20 65 6c 65 63 74 65 64 20 70 72 69 6f 72 20 74 6f 20 74 68 6f 73 65 20 77 69 74 68 20 61 20 68 | .elected.prior.to.those.with.a.h |
| 42680 | 69 67 68 65 72 20 64 69 73 74 61 6e 63 65 2e 00 44 65 66 69 6e 65 73 20 6d 69 6e 69 6d 75 6d 20 | igher.distance..Defines.minimum. |
| 426a0 | 61 63 63 65 70 74 61 62 6c 65 20 4d 54 55 2e 20 49 66 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 74 | acceptable.MTU..If.client.will.t |
| 426c0 | 72 79 20 74 6f 20 6e 65 67 6f 74 69 61 74 65 20 6c 65 73 73 20 74 68 65 6e 20 73 70 65 63 69 66 | ry.to.negotiate.less.then.specif |
| 426e0 | 69 65 64 20 4d 54 55 20 74 68 65 6e 20 69 74 20 77 69 6c 6c 20 62 65 20 4e 41 4b 65 64 20 6f 72 | ied.MTU.then.it.will.be.NAKed.or |
| 42700 | 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 20 69 66 20 72 65 6a 65 63 74 73 20 67 72 65 61 74 65 72 | .disconnected.if.rejects.greater |
| 42720 | 20 4d 54 55 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 31 30 30 2a 2a 2e 00 | .MTU..Default.value.is.**100**.. |
| 42740 | 44 65 66 69 6e 65 73 20 6e 65 78 74 2d 68 6f 70 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 | Defines.next-hop.distance.for.th |
| 42760 | 69 73 20 72 6f 75 74 65 2c 20 72 6f 75 74 65 73 20 77 69 74 68 20 73 6d 61 6c 6c 65 72 20 61 64 | is.route,.routes.with.smaller.ad |
| 42780 | 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 61 72 65 20 65 6c 65 63 74 65 | ministrative.distance.are.electe |
| 427a0 | 64 20 70 72 69 6f 72 20 74 6f 20 74 68 6f 73 65 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 64 | d.prior.to.those.with.a.higher.d |
| 427c0 | 69 73 74 61 6e 63 65 2e 00 44 65 66 69 6e 65 73 20 70 72 65 66 65 72 72 65 64 20 4d 52 55 2e 20 | istance..Defines.preferred.MRU.. |
| 427e0 | 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e | By.default.is.not.defined..Defin |
| 42800 | 65 73 20 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 20 63 68 65 63 6b 69 6e 67 20 41 52 50 2c 20 49 | es.protocols.for.checking.ARP,.I |
| 42820 | 43 4d 50 2c 20 54 43 50 00 44 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 60 3c 6e | CMP,.TCP.Defines.the.maximum.`<n |
| 42840 | 75 6d 62 65 72 3e 60 20 6f 66 20 75 6e 61 6e 73 77 65 72 65 64 20 65 63 68 6f 20 72 65 71 75 65 | umber>`.of.unanswered.echo.reque |
| 42860 | 73 74 73 2e 20 55 70 6f 6e 20 72 65 61 63 68 69 6e 67 20 74 68 65 20 76 61 6c 75 65 20 60 3c 6e | sts..Upon.reaching.the.value.`<n |
| 42880 | 75 6d 62 65 72 3e 60 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 72 65 73 | umber>`,.the.session.will.be.res |
| 428a0 | 65 74 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 60 3c 6e 75 6d 62 65 72 | et..Defines.the.maximum.`<number |
| 428c0 | 3e 60 20 6f 66 20 75 6e 61 6e 73 77 65 72 65 64 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 2e 20 | >`.of.unanswered.echo.requests.. |
| 428e0 | 55 70 6f 6e 20 72 65 61 63 68 69 6e 67 20 74 68 65 20 76 61 6c 75 65 20 60 3c 6e 75 6d 62 65 72 | Upon.reaching.the.value.`<number |
| 42900 | 3e 60 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 72 65 73 65 74 2e 20 44 | >`,.the.session.will.be.reset..D |
| 42920 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 33 2a 2a 2e 00 44 65 66 69 6e 65 73 20 74 | efault.value.is.**3**..Defines.t |
| 42940 | 68 65 20 6d 69 6e 69 6d 75 6d 20 61 63 63 65 70 74 61 62 6c 65 20 4d 54 55 2e 20 49 66 20 61 20 | he.minimum.acceptable.MTU..If.a. |
| 42960 | 63 6c 69 65 6e 74 20 74 72 69 65 73 20 74 6f 20 6e 65 67 6f 74 69 61 74 65 20 61 6e 20 4d 54 55 | client.tries.to.negotiate.an.MTU |
| 42980 | 20 6c 6f 77 65 72 20 74 68 61 6e 20 74 68 69 73 20 69 74 20 77 69 6c 6c 20 62 65 20 4e 41 4b 65 | .lower.than.this.it.will.be.NAKe |
| 429a0 | 64 2c 20 61 6e 64 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 20 69 66 20 69 74 20 72 65 6a 65 63 74 | d,.and.disconnected.if.it.reject |
| 429c0 | 73 20 61 20 67 72 65 61 74 65 72 20 4d 54 55 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 | s.a.greater.MTU..Default.value.i |
| 429e0 | 73 20 2a 2a 31 30 30 2a 2a 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 72 6f 75 6e 64 2d 74 72 69 | s.**100**..Defines.the.round-tri |
| 42a00 | 70 20 74 69 6d 65 20 75 73 65 64 20 66 6f 72 20 61 63 74 69 76 65 20 71 75 65 75 65 20 6d 61 6e | p.time.used.for.active.queue.man |
| 42a20 | 61 67 65 6d 65 6e 74 20 28 41 51 4d 29 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 54 | agement.(AQM).in.milliseconds..T |
| 42a40 | 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 2e 00 44 65 66 69 6e 65 73 | he.default.value.is.100..Defines |
| 42a60 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 64 65 76 69 63 65 20 61 73 20 61 20 73 79 73 74 65 | .the.specified.device.as.a.syste |
| 42a80 | 6d 20 63 6f 6e 73 6f 6c 65 2e 20 41 76 61 69 6c 61 62 6c 65 20 63 6f 6e 73 6f 6c 65 20 64 65 76 | m.console..Available.console.dev |
| 42aa0 | 69 63 65 73 20 63 61 6e 20 62 65 20 28 73 65 65 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 | ices.can.be.(see.completion.help |
| 42ac0 | 65 72 29 3a 00 44 65 66 69 6e 69 6e 67 20 44 79 6e 61 6d 69 63 20 41 64 64 72 65 73 73 20 47 72 | er):.Defining.Dynamic.Address.Gr |
| 42ae0 | 6f 75 70 73 00 44 65 66 69 6e 69 6e 67 20 50 65 65 72 73 00 44 65 6c 65 67 61 74 65 20 70 72 65 | oups.Defining.Peers.Delegate.pre |
| 42b00 | 66 69 78 65 73 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 20 74 6f 20 63 6c 69 65 | fixes.from.`<pd-prefix>`.to.clie |
| 42b20 | 6e 74 73 20 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e 60 2e 20 52 61 6e 67 65 20 | nts.in.subnet.`<prefix>`..Range. |
| 42b40 | 69 73 20 64 65 66 69 6e 65 64 20 62 79 20 60 3c 6c 65 6e 67 68 74 3e 60 20 69 6e 20 62 69 74 73 | is.defined.by.`<lenght>`.in.bits |
| 42b60 | 2c 20 33 32 20 74 6f 20 36 34 2e 00 44 65 6c 65 67 61 74 65 20 70 72 65 66 69 78 65 73 20 66 72 | ,.32.to.64..Delegate.prefixes.fr |
| 42b80 | 6f 6d 20 74 68 65 20 72 61 6e 67 65 20 69 6e 64 69 63 61 74 65 64 20 62 79 20 74 68 65 20 73 74 | om.the.range.indicated.by.the.st |
| 42ba0 | 61 72 74 20 61 6e 64 20 73 74 6f 70 20 71 75 61 6c 69 66 69 65 72 2e 00 44 65 6c 65 74 65 20 42 | art.and.stop.qualifier..Delete.B |
| 42bc0 | 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 63 6f 6d 6d | GP.communities.matching.the.comm |
| 42be0 | 75 6e 69 74 79 2d 6c 69 73 74 2e 00 44 65 6c 65 74 65 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 | unity-list..Delete.BGP.communiti |
| 42c00 | 65 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d | es.matching.the.large-community- |
| 42c20 | 6c 69 73 74 2e 00 44 65 6c 65 74 65 20 4c 6f 67 73 00 44 65 6c 65 74 65 20 61 20 70 61 72 74 69 | list..Delete.Logs.Delete.a.parti |
| 42c40 | 63 75 6c 61 72 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 62 61 73 65 64 20 6f 6e 20 69 | cular.container.image.based.on.i |
| 42c60 | 74 27 73 20 69 6d 61 67 65 20 49 44 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 64 65 6c 65 74 | t's.image.ID..You.can.also.delet |
| 42c80 | 65 20 61 6c 6c 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 73 20 61 74 20 6f 6e 63 65 2e 00 | e.all.container.images.at.once.. |
| 42ca0 | 44 65 6c 65 74 65 20 61 6c 6c 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 00 44 65 6c 65 74 | Delete.all.BGP.communities.Delet |
| 42cc0 | 65 20 61 6c 6c 20 42 47 50 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 69 65 73 00 44 65 6c 65 | e.all.BGP.large-communities.Dele |
| 42ce0 | 74 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 66 72 6f 6d 20 74 68 65 20 73 79 73 74 65 6d | te.default.route.from.the.system |
| 42d00 | 2e 00 44 65 6c 65 74 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 75 73 65 72 2d 64 65 66 | ..Deletes.the.specified.user-def |
| 42d20 | 69 6e 65 64 20 66 69 6c 65 20 3c 74 65 78 74 3e 20 69 6e 20 74 68 65 20 2f 76 61 72 2f 6c 6f 67 | ined.file.<text>.in.the./var/log |
| 42d40 | 2f 75 73 65 72 20 64 69 72 65 63 74 6f 72 79 00 44 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 | /user.directory.Depending.on.the |
| 42d60 | 20 6c 6f 63 61 74 69 6f 6e 2c 20 6e 6f 74 20 61 6c 6c 20 6f 66 20 74 68 65 73 65 20 63 68 61 6e | .location,.not.all.of.these.chan |
| 42d80 | 6e 65 6c 73 20 6d 61 79 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 75 73 65 21 00 44 | nels.may.be.available.for.use!.D |
| 42da0 | 65 73 63 72 69 70 74 69 6f 6e 00 44 65 73 70 69 74 65 20 74 68 65 20 44 72 6f 70 2d 54 61 69 6c | escription.Despite.the.Drop-Tail |
| 42dc0 | 20 70 6f 6c 69 63 79 20 64 6f 65 73 20 6e 6f 74 20 73 6c 6f 77 20 64 6f 77 6e 20 70 61 63 6b 65 | .policy.does.not.slow.down.packe |
| 42de0 | 74 73 2c 20 69 66 20 6d 61 6e 79 20 70 61 63 6b 65 74 73 20 61 72 65 20 74 6f 20 62 65 20 73 65 | ts,.if.many.packets.are.to.be.se |
| 42e00 | 6e 74 2c 20 74 68 65 79 20 63 6f 75 6c 64 20 67 65 74 20 64 72 6f 70 70 65 64 20 77 68 65 6e 20 | nt,.they.could.get.dropped.when. |
| 42e20 | 74 72 79 69 6e 67 20 74 6f 20 67 65 74 20 65 6e 71 75 65 75 65 64 20 61 74 20 74 68 65 20 74 61 | trying.to.get.enqueued.at.the.ta |
| 42e40 | 69 6c 2e 20 54 68 69 73 20 63 61 6e 20 68 61 70 70 65 6e 20 69 66 20 74 68 65 20 71 75 65 75 65 | il..This.can.happen.if.the.queue |
| 42e60 | 20 68 61 73 20 73 74 69 6c 6c 20 6e 6f 74 20 62 65 65 6e 20 61 62 6c 65 20 74 6f 20 72 65 6c 65 | .has.still.not.been.able.to.rele |
| 42e80 | 61 73 65 20 65 6e 6f 75 67 68 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 69 74 73 20 68 65 61 64 | ase.enough.packets.from.its.head |
| 42ea0 | 2e 00 44 65 73 70 69 74 65 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 41 44 20 69 73 20 61 20 | ..Despite.the.fact.that.AD.is.a. |
| 42ec0 | 73 75 70 65 72 73 65 74 20 6f 66 20 4c 44 41 50 00 44 65 73 74 69 6e 61 74 69 6f 6e 20 41 64 64 | superset.of.LDAP.Destination.Add |
| 42ee0 | 72 65 73 73 00 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 00 44 65 73 74 69 6e 61 74 69 6f 6e | ress.Destination.NAT.Destination |
| 42f00 | 20 50 72 65 66 69 78 00 44 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f | .Prefix.Detailed.information.abo |
| 42f20 | 75 74 20 22 63 69 73 63 6f 22 20 61 6e 64 20 22 69 62 6d 22 20 6d 6f 64 65 6c 73 20 64 69 66 66 | ut."cisco".and."ibm".models.diff |
| 42f40 | 65 72 65 6e 63 65 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 3a 72 66 63 3a 60 33 35 | erences.can.be.found.in.:rfc:`35 |
| 42f60 | 30 39 60 2e 20 41 20 22 73 68 6f 72 74 63 75 74 22 20 6d 6f 64 65 6c 20 61 6c 6c 6f 77 73 20 41 | 09`..A."shortcut".model.allows.A |
| 42f80 | 42 52 20 74 6f 20 63 72 65 61 74 65 20 72 6f 75 74 65 73 20 62 65 74 77 65 65 6e 20 61 72 65 61 | BR.to.create.routes.between.area |
| 42fa0 | 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 74 6f 70 6f 6c 6f 67 79 20 6f 66 20 74 68 65 20 61 | s.based.on.the.topology.of.the.a |
| 42fc0 | 72 65 61 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 69 73 20 72 6f 75 74 65 72 20 62 75 | reas.connected.to.this.router.bu |
| 42fe0 | 74 20 6e 6f 74 20 75 73 69 6e 67 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 69 6e 20 63 | t.not.using.a.backbone.area.in.c |
| 43000 | 61 73 65 20 69 66 20 6e 6f 6e 2d 62 61 63 6b 62 6f 6e 65 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 | ase.if.non-backbone.route.will.b |
| 43020 | 65 20 63 68 65 61 70 65 72 2e 20 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | e.cheaper..For.more.information. |
| 43040 | 61 62 6f 75 74 20 22 73 68 6f 72 74 63 75 74 22 20 6d 6f 64 65 6c 2c 20 73 65 65 20 3a 74 3a 60 | about."shortcut".model,.see.:t:` |
| 43060 | 6f 73 70 66 2d 73 68 6f 72 74 63 75 74 2d 61 62 72 2d 30 32 2e 74 78 74 60 00 44 65 74 65 72 6d | ospf-shortcut-abr-02.txt`.Determ |
| 43080 | 69 6e 65 73 20 68 6f 77 20 6f 70 65 6e 6e 68 72 70 20 64 61 65 6d 6f 6e 20 73 68 6f 75 6c 64 20 | ines.how.opennhrp.daemon.should. |
| 430a0 | 73 6f 66 74 20 73 77 69 74 63 68 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 | soft.switch.the.multicast.traffi |
| 430c0 | 63 2e 20 43 75 72 72 65 6e 74 6c 79 2c 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 20 | c..Currently,.multicast.traffic. |
| 430e0 | 69 73 20 63 61 70 74 75 72 65 64 20 62 79 20 6f 70 65 6e 6e 68 72 70 20 64 61 65 6d 6f 6e 20 75 | is.captured.by.opennhrp.daemon.u |
| 43100 | 73 69 6e 67 20 61 20 70 61 63 6b 65 74 20 73 6f 63 6b 65 74 2c 20 61 6e 64 20 72 65 73 65 6e 74 | sing.a.packet.socket,.and.resent |
| 43120 | 20 62 61 63 6b 20 74 6f 20 70 72 6f 70 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2e 20 54 68 | .back.to.proper.destinations..Th |
| 43140 | 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 20 73 | is.means.that.multicast.packet.s |
| 43160 | 65 6e 64 69 6e 67 20 69 73 20 43 50 55 20 69 6e 74 65 6e 73 69 76 65 2e 00 44 65 76 69 63 65 20 | ending.is.CPU.intensive..Device. |
| 43180 | 69 73 20 69 6e 63 61 70 61 62 6c 65 20 6f 66 20 34 30 20 4d 48 7a 2c 20 64 6f 20 6e 6f 74 20 61 | is.incapable.of.40.MHz,.do.not.a |
| 431a0 | 64 76 65 72 74 69 73 65 2e 20 54 68 69 73 20 73 65 74 73 20 60 60 5b 34 30 2d 49 4e 54 4f 4c 45 | dvertise..This.sets.``[40-INTOLE |
| 431c0 | 52 41 4e 54 5d 60 60 00 44 65 76 69 63 65 73 20 65 76 61 6c 75 61 74 69 6e 67 20 77 68 65 74 68 | RANT]``.Devices.evaluating.wheth |
| 431e0 | 65 72 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 69 73 20 70 75 62 6c 69 63 20 6d 75 73 | er.an.IPv4.address.is.public.mus |
| 43200 | 74 20 62 65 20 75 70 64 61 74 65 64 20 74 6f 20 72 65 63 6f 67 6e 69 7a 65 20 74 68 65 20 6e 65 | t.be.updated.to.recognize.the.ne |
| 43220 | 77 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 20 41 6c 6c 6f 63 61 74 69 6e 67 20 6d 6f 72 65 | w.address.space..Allocating.more |
| 43240 | 20 70 72 69 76 61 74 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 66 6f 72 20 | .private.IPv4.address.space.for. |
| 43260 | 4e 41 54 20 64 65 76 69 63 65 73 20 6d 69 67 68 74 20 70 72 6f 6c 6f 6e 67 20 74 68 65 20 74 72 | NAT.devices.might.prolong.the.tr |
| 43280 | 61 6e 73 69 74 69 6f 6e 20 74 6f 20 49 50 76 36 2e 00 44 69 66 66 65 72 65 6e 74 20 4e 41 54 20 | ansition.to.IPv6..Different.NAT. |
| 432a0 | 54 79 70 65 73 00 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 70 61 72 61 6d 65 74 65 72 73 00 | Types.Diffie-Hellman.parameters. |
| 432c0 | 44 69 72 65 63 74 69 6f 6e 3a 20 2a 2a 69 6e 2a 2a 20 61 6e 64 20 2a 2a 6f 75 74 2a 2a 2e 20 50 | Direction:.**in**.and.**out**..P |
| 432e0 | 72 6f 74 65 63 74 20 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 20 66 72 6f 6d 20 65 78 74 65 72 | rotect.public.network.from.exter |
| 43300 | 6e 61 6c 20 61 74 74 61 63 6b 73 2c 20 61 6e 64 20 69 64 65 6e 74 69 66 79 20 69 6e 74 65 72 6e | nal.attacks,.and.identify.intern |
| 43320 | 61 6c 20 61 74 74 61 63 6b 73 20 74 6f 77 61 72 64 73 20 69 6e 74 65 72 6e 65 74 2e 00 44 69 73 | al.attacks.towards.internet..Dis |
| 43340 | 61 62 6c 65 20 28 6c 6f 63 6b 29 20 61 63 63 6f 75 6e 74 2e 20 55 73 65 72 20 77 69 6c 6c 20 6e | able.(lock).account..User.will.n |
| 43360 | 6f 74 20 62 65 20 61 62 6c 65 20 74 6f 20 6c 6f 67 20 69 6e 2e 00 44 69 73 61 62 6c 65 20 43 50 | ot.be.able.to.log.in..Disable.CP |
| 43380 | 55 20 70 6f 77 65 72 20 73 61 76 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 73 20 61 6c 73 6f 20 6b | U.power.saving.mechanisms.also.k |
| 433a0 | 6e 6f 77 6e 20 61 73 20 43 20 73 74 61 74 65 73 2e 00 44 69 73 61 62 6c 65 20 43 6f 6d 70 72 65 | nown.as.C.states..Disable.Compre |
| 433c0 | 73 73 69 6f 6e 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f 63 6f 6c 20 28 43 43 50 29 2e 20 43 43 | ssion.Control.Protocol.(CCP)..CC |
| 433e0 | 50 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 44 69 73 61 62 6c 65 | P.is.enabled.by.default..Disable |
| 43400 | 20 4d 4c 44 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 74 68 65 20 69 6e | .MLD.reports.and.query.on.the.in |
| 43420 | 74 65 72 66 61 63 65 2e 00 44 69 73 61 62 6c 65 20 60 3c 75 73 65 72 3e 60 20 61 63 63 6f 75 6e | terface..Disable.`<user>`.accoun |
| 43440 | 74 2e 00 44 69 73 61 62 6c 65 20 61 20 42 46 44 20 70 65 65 72 00 44 69 73 61 62 6c 65 20 61 20 | t..Disable.a.BFD.peer.Disable.a. |
| 43460 | 63 6f 6e 74 61 69 6e 65 72 2e 00 44 69 73 61 62 6c 65 20 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 | container..Disable.a.given.conta |
| 43480 | 69 6e 65 72 20 72 65 67 69 73 74 72 79 00 44 69 73 61 62 6c 65 20 61 6c 6c 20 6f 70 74 69 6f 6e | iner.registry.Disable.all.option |
| 434a0 | 61 6c 20 43 50 55 20 6d 69 74 69 67 61 74 69 6f 6e 73 2e 20 54 68 69 73 20 69 6d 70 72 6f 76 65 | al.CPU.mitigations..This.improve |
| 434c0 | 73 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2c 20 62 75 74 20 69 74 20 6d 61 79 | s.system.performance,.but.it.may |
| 434e0 | 20 61 6c 73 6f 20 65 78 70 6f 73 65 20 75 73 65 72 73 20 74 6f 20 73 65 76 65 72 61 6c 20 43 50 | .also.expose.users.to.several.CP |
| 43500 | 55 20 76 75 6c 6e 65 72 61 62 69 6c 69 74 69 65 73 2e 00 44 69 73 61 62 6c 65 20 63 6f 6e 6e 65 | U.vulnerabilities..Disable.conne |
| 43520 | 63 74 69 6f 6e 20 6c 6f 67 67 69 6e 67 20 76 69 61 20 53 79 73 6c 6f 67 2e 00 44 69 73 61 62 6c | ction.logging.via.Syslog..Disabl |
| 43540 | 65 20 63 6f 6e 6e 74 72 61 63 6b 20 6c 6f 6f 73 65 20 74 72 61 63 6b 20 6f 70 74 69 6f 6e 00 44 | e.conntrack.loose.track.option.D |
| 43560 | 69 73 61 62 6c 65 20 64 68 63 70 2d 72 65 6c 61 79 20 73 65 72 76 69 63 65 2e 00 44 69 73 61 62 | isable.dhcp-relay.service..Disab |
| 43580 | 6c 65 20 64 68 63 70 76 36 2d 72 65 6c 61 79 20 73 65 72 76 69 63 65 2e 00 44 69 73 61 62 6c 65 | le.dhcpv6-relay.service..Disable |
| 435a0 | 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 49 74 20 77 69 6c 6c 20 62 65 | .given.`<interface>`..It.will.be |
| 435c0 | 20 70 6c 61 63 65 64 20 69 6e 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 64 6f 77 6e | .placed.in.administratively.down |
| 435e0 | 20 28 60 60 41 2f 44 60 60 29 20 73 74 61 74 65 2e 00 44 69 73 61 62 6c 65 20 68 6f 73 74 69 6e | .(``A/D``).state..Disable.hostin |
| 43600 | 67 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 7a 6f 6e 65 20 66 6f 72 20 60 3c 64 6f 6d 61 69 | g.authoritative.zone.for.`<domai |
| 43620 | 6e 2d 6e 61 6d 65 3e 60 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 66 72 6f 6d 20 63 | n-name>`.without.deleting.from.c |
| 43640 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 62 6c 65 20 69 6d 6d 65 64 69 61 74 65 20 | onfiguration..Disable.immediate. |
| 43660 | 73 65 73 73 69 6f 6e 20 72 65 73 65 74 20 69 66 20 70 65 65 72 27 73 20 63 6f 6e 6e 65 63 74 65 | session.reset.if.peer's.connecte |
| 43680 | 64 20 6c 69 6e 6b 20 67 6f 65 73 20 64 6f 77 6e 2e 00 44 69 73 61 62 6c 65 20 70 61 73 73 77 6f | d.link.goes.down..Disable.passwo |
| 436a0 | 72 64 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 4c 6f 67 69 6e 20 76 | rd.based.authentication..Login.v |
| 436c0 | 69 61 20 53 53 48 20 6b 65 79 73 20 6f 6e 6c 79 2e 20 54 68 69 73 20 68 61 72 64 65 6e 73 20 73 | ia.SSH.keys.only..This.hardens.s |
| 436e0 | 65 63 75 72 69 74 79 21 00 44 69 73 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 65 63 | ecurity!.Disable.sending.and.rec |
| 43700 | 65 69 76 69 6e 67 20 50 49 4d 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 | eiving.PIM.control.packets.on.th |
| 43720 | 65 20 69 6e 74 65 72 66 61 63 65 2e 00 44 69 73 61 62 6c 65 20 73 70 65 63 69 66 69 63 20 72 65 | e.interface..Disable.specific.re |
| 43740 | 63 6f 72 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 69 74 20 66 72 6f 6d 20 63 6f | cord.without.deleting.it.from.co |
| 43760 | 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 62 6c 65 20 74 68 65 20 68 6f 73 74 20 76 61 | nfiguration..Disable.the.host.va |
| 43780 | 6c 69 64 61 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 72 65 76 65 72 73 65 20 44 4e 53 20 6c 6f 6f | lidation.through.reverse.DNS.loo |
| 437a0 | 6b 75 70 73 20 2d 20 63 61 6e 20 73 70 65 65 64 75 70 20 6c 6f 67 69 6e 20 74 69 6d 65 20 77 68 | kups.-.can.speedup.login.time.wh |
| 437c0 | 65 6e 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 20 69 73 20 6e 6f 74 20 70 6f 73 73 69 62 6c | en.reverse.lookup.is.not.possibl |
| 437e0 | 65 2e 00 44 69 73 61 62 6c 65 20 74 68 65 20 70 65 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | e..Disable.the.peer.configuratio |
| 43800 | 6e 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 | n.Disable.this.IPv4.static.route |
| 43820 | 20 65 6e 74 72 79 2e 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 49 50 76 36 20 73 74 61 74 69 63 | .entry..Disable.this.IPv6.static |
| 43840 | 20 72 6f 75 74 65 20 65 6e 74 72 79 2e 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 73 65 72 76 69 | .route.entry..Disable.this.servi |
| 43860 | 63 65 2e 00 44 69 73 61 62 6c 65 20 74 72 61 6e 73 6d 69 74 20 6f 66 20 4c 4c 44 50 20 66 72 61 | ce..Disable.transmit.of.LLDP.fra |
| 43880 | 6d 65 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 55 73 65 66 | mes.on.given.`<interface>`..Usef |
| 438a0 | 75 6c 20 74 6f 20 65 78 63 6c 75 64 65 20 63 65 72 74 61 69 6e 20 69 6e 74 65 72 66 61 63 65 73 | ul.to.exclude.certain.interfaces |
| 438c0 | 20 66 72 6f 6d 20 4c 4c 44 50 20 77 68 65 6e 20 60 60 61 6c 6c 60 60 20 68 61 76 65 20 62 65 65 | .from.LLDP.when.``all``.have.bee |
| 438e0 | 6e 20 65 6e 61 62 6c 65 64 2e 00 44 69 73 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 2d | n.enabled..Disabled.by.default.- |
| 43900 | 20 6e 6f 20 6b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 6c 6f 61 64 65 64 2e 00 44 69 73 61 62 6c | .no.kernel.module.loaded..Disabl |
| 43920 | 65 73 20 63 61 63 68 69 6e 67 20 6f 66 20 70 65 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 | es.caching.of.peer.information.f |
| 43940 | 72 6f 6d 20 66 6f 72 77 61 72 64 65 64 20 4e 48 52 50 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 | rom.forwarded.NHRP.Resolution.Re |
| 43960 | 70 6c 79 20 70 61 63 6b 65 74 73 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f | ply.packets..This.can.be.used.to |
| 43980 | 20 72 65 64 75 63 65 20 6d 65 6d 6f 72 79 20 63 6f 6e 73 75 6d 70 74 69 6f 6e 20 6f 6e 20 62 69 | .reduce.memory.consumption.on.bi |
| 439a0 | 67 20 4e 42 4d 41 20 73 75 62 6e 65 74 73 2e 00 44 69 73 61 62 6c 65 73 20 66 6c 6f 77 20 69 73 | g.NBMA.subnets..Disables.flow.is |
| 439c0 | 6f 6c 61 74 69 6f 6e 2c 20 61 6c 6c 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 74 68 72 6f | olation,.all.traffic.passes.thro |
| 439e0 | 75 67 68 20 61 20 73 69 6e 67 6c 65 20 71 75 65 75 65 2e 00 44 69 73 61 62 6c 65 73 20 69 6e 74 | ugh.a.single.queue..Disables.int |
| 43a00 | 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 00 | erface-based.IPv4.static.route.. |
| 43a20 | 44 69 73 61 62 6c 65 73 20 69 6e 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 36 20 73 74 | Disables.interface-based.IPv6.st |
| 43a40 | 61 74 69 63 20 72 6f 75 74 65 2e 00 44 69 73 61 62 6c 65 73 20 71 75 69 63 6b 6c 65 61 76 65 20 | atic.route..Disables.quickleave. |
| 43a60 | 6d 6f 64 65 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 20 74 68 65 20 64 61 65 6d 6f 6e 20 77 69 | mode..In.this.mode.the.daemon.wi |
| 43a80 | 6c 6c 20 6e 6f 74 20 73 65 6e 64 20 61 20 4c 65 61 76 65 20 49 47 4d 50 20 6d 65 73 73 61 67 65 | ll.not.send.a.Leave.IGMP.message |
| 43aa0 | 20 75 70 73 74 72 65 61 6d 20 61 73 20 73 6f 6f 6e 20 61 73 20 69 74 20 72 65 63 65 69 76 65 73 | .upstream.as.soon.as.it.receives |
| 43ac0 | 20 61 20 4c 65 61 76 65 20 6d 65 73 73 61 67 65 20 66 6f 72 20 61 6e 79 20 64 6f 77 6e 73 74 72 | .a.Leave.message.for.any.downstr |
| 43ae0 | 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 6e | eam.interface..The.daemon.will.n |
| 43b00 | 6f 74 20 61 73 6b 20 66 6f 72 20 4d 65 6d 62 65 72 73 68 69 70 20 72 65 70 6f 72 74 73 20 6f 6e | ot.ask.for.Membership.reports.on |
| 43b20 | 20 74 68 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 73 2c 20 61 6e 64 20 | .the.downstream.interfaces,.and. |
| 43b40 | 69 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 72 65 63 65 69 76 65 64 20 74 68 65 20 67 72 6f 75 | if.a.report.is.received.the.grou |
| 43b60 | 70 20 69 73 20 6e 6f 74 20 6a 6f 69 6e 65 64 20 61 67 61 69 6e 20 74 68 65 20 75 70 73 74 72 65 | p.is.not.joined.again.the.upstre |
| 43b80 | 61 6d 2e 00 44 69 73 61 62 6c 65 73 20 77 65 62 20 66 69 6c 74 65 72 69 6e 67 20 77 69 74 68 6f | am..Disables.web.filtering.witho |
| 43ba0 | 75 74 20 64 69 73 63 61 72 64 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 | ut.discarding.configuration..Dis |
| 43bc0 | 61 62 6c 65 73 20 77 65 62 20 70 72 6f 78 79 20 74 72 61 6e 73 70 61 72 65 6e 74 20 6d 6f 64 65 | ables.web.proxy.transparent.mode |
| 43be0 | 20 61 74 20 61 20 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 73 2e 00 44 69 73 61 62 6c 69 | .at.a.listening.address..Disabli |
| 43c00 | 6e 67 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 00 44 69 73 61 62 6c 69 6e 67 20 61 20 56 52 | ng.Advertisements.Disabling.a.VR |
| 43c20 | 52 50 20 67 72 6f 75 70 00 44 69 73 61 62 6c 69 6e 67 20 74 68 65 20 65 6e 63 72 79 70 74 69 6f | RP.group.Disabling.the.encryptio |
| 43c40 | 6e 20 6f 6e 20 74 68 65 20 6c 69 6e 6b 20 62 79 20 72 65 6d 6f 76 69 6e 67 20 60 60 73 65 63 75 | n.on.the.link.by.removing.``secu |
| 43c60 | 72 69 74 79 20 65 6e 63 72 79 70 74 60 60 20 77 69 6c 6c 20 73 68 6f 77 20 74 68 65 20 75 6e 65 | rity.encrypt``.will.show.the.une |
| 43c80 | 6e 63 72 79 70 74 65 64 20 62 75 74 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 63 6f 6e 74 65 | ncrypted.but.authenticated.conte |
| 43ca0 | 6e 74 2e 00 44 69 73 61 64 76 61 6e 74 61 67 65 73 20 61 72 65 3a 00 44 69 73 61 73 73 6f 63 69 | nt..Disadvantages.are:.Disassoci |
| 43cc0 | 61 74 65 20 73 74 61 74 69 6f 6e 73 20 62 61 73 65 64 20 6f 6e 20 65 78 63 65 73 73 69 76 65 20 | ate.stations.based.on.excessive. |
| 43ce0 | 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 66 61 69 6c 75 72 65 73 20 6f 72 20 6f 74 68 65 72 20 69 | transmission.failures.or.other.i |
| 43d00 | 6e 64 69 63 61 74 69 6f 6e 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6c 6f 73 73 2e 00 44 | ndications.of.connection.loss..D |
| 43d20 | 69 73 70 6c 61 79 20 49 50 76 34 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 56 52 | isplay.IPv4.routing.table.for.VR |
| 43d40 | 46 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 2e 00 44 69 73 70 6c 61 | F.identified.by.`<name>`..Displa |
| 43d60 | 79 20 49 50 76 36 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 56 52 46 20 69 64 65 | y.IPv6.routing.table.for.VRF.ide |
| 43d80 | 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 2e 00 44 69 73 70 6c 61 79 20 4c 6f 67 | ntified.by.`<name>`..Display.Log |
| 43da0 | 73 00 44 69 73 70 6c 61 79 20 4f 54 50 20 6b 65 79 20 66 6f 72 20 75 73 65 72 00 44 69 73 70 6c | s.Display.OTP.key.for.user.Displ |
| 43dc0 | 61 79 20 61 6c 6c 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 61 74 74 65 6d 70 74 73 20 6f 66 | ay.all.authorization.attempts.of |
| 43de0 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 61 6c 6c | .the.specified.image.Display.all |
| 43e00 | 20 6b 6e 6f 77 6e 20 41 52 50 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 20 6f 6e 20 61 20 67 69 | .known.ARP.table.entries.on.a.gi |
| 43e20 | 76 65 6e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 6c 79 20 28 60 65 74 68 31 60 29 3a 00 44 69 73 | ven.interface.only.(`eth1`):.Dis |
| 43e40 | 70 6c 61 79 20 61 6c 6c 20 6b 6e 6f 77 6e 20 41 52 50 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 | play.all.known.ARP.table.entries |
| 43e60 | 20 73 70 61 6e 6e 69 6e 67 20 61 63 72 6f 73 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 00 | .spanning.across.all.interfaces. |
| 43e80 | 44 69 73 70 6c 61 79 20 63 6f 6e 74 65 6e 74 73 20 6f 66 20 61 20 73 70 65 63 69 66 69 65 64 20 | Display.contents.of.a.specified. |
| 43ea0 | 75 73 65 72 2d 64 65 66 69 6e 65 64 20 6c 6f 67 20 66 69 6c 65 20 6f 66 20 74 68 65 20 73 70 65 | user-defined.log.file.of.the.spe |
| 43ec0 | 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 63 6f 6e 74 65 6e 74 73 20 6f 66 | cified.image.Display.contents.of |
| 43ee0 | 20 61 6c 6c 20 6d 61 73 74 65 72 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 74 68 65 20 73 70 65 | .all.master.log.files.of.the.spe |
| 43f00 | 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 6c 61 73 74 20 6c 69 6e 65 73 20 | cified.image.Display.last.lines. |
| 43f20 | 6f 66 20 74 68 65 20 73 79 73 74 65 6d 20 6c 6f 67 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 | of.the.system.log.of.the.specifi |
| 43f40 | 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 6c 69 73 74 20 6f 66 20 61 6c 6c 20 75 73 65 | ed.image.Display.list.of.all.use |
| 43f60 | 72 2d 64 65 66 69 6e 65 64 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 | r-defined.log.files.of.the.speci |
| 43f80 | 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 | fied.image.Display.log.files.of. |
| 43fa0 | 67 69 76 65 6e 20 63 61 74 65 67 6f 72 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 55 | given.category.on.the.console..U |
| 43fc0 | 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 | se.tab.completion.to.get.a.list. |
| 43fe0 | 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 63 61 74 65 67 6f 72 69 65 73 2e 20 54 68 6f 73 20 63 61 | of.available.categories..Thos.ca |
| 44000 | 74 65 67 6f 72 69 65 73 20 63 6f 75 6c 64 20 62 65 3a 20 61 6c 6c 2c 20 61 75 74 68 6f 72 69 7a | tegories.could.be:.all,.authoriz |
| 44020 | 61 74 69 6f 6e 2c 20 63 6c 75 73 74 65 72 2c 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2c 20 | ation,.cluster,.conntrack-sync,. |
| 44040 | 64 68 63 70 2c 20 64 69 72 65 63 74 6f 72 79 2c 20 64 6e 73 2c 20 66 69 6c 65 2c 20 66 69 72 65 | dhcp,.directory,.dns,.file,.fire |
| 44060 | 77 61 6c 6c 2c 20 68 74 74 70 73 2c 20 69 6d 61 67 65 20 6c 6c 64 70 2c 20 6e 61 74 2c 20 6f 70 | wall,.https,.image.lldp,.nat,.op |
| 44080 | 65 6e 76 70 6e 2c 20 73 6e 6d 70 2c 20 74 61 69 6c 2c 20 76 70 6e 2c 20 76 72 72 70 00 44 69 73 | envpn,.snmp,.tail,.vpn,.vrrp.Dis |
| 440a0 | 70 6c 61 79 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 67 69 76 65 6e 20 63 61 74 65 67 6f 72 79 | play.log.files.of.given.category |
| 440c0 | 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 55 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 | .on.the.console..Use.tab.complet |
| 440e0 | 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 63 | ion.to.get.a.list.of.available.c |
| 44100 | 61 74 65 67 6f 72 69 65 73 2e 20 54 68 6f 73 65 20 63 61 74 65 67 6f 72 69 65 73 20 63 6f 75 6c | ategories..Those.categories.coul |
| 44120 | 64 20 62 65 3a 20 61 6c 6c 2c 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 2c 20 63 6c 75 73 74 65 | d.be:.all,.authorization,.cluste |
| 44140 | 72 2c 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2c 20 64 68 63 70 2c 20 64 69 72 65 63 74 6f | r,.conntrack-sync,.dhcp,.directo |
| 44160 | 72 79 2c 20 64 6e 73 2c 20 66 69 6c 65 2c 20 66 69 72 65 77 61 6c 6c 2c 20 68 74 74 70 73 2c 20 | ry,.dns,.file,.firewall,.https,. |
| 44180 | 69 6d 61 67 65 20 6c 6c 64 70 2c 20 6e 61 74 2c 20 6f 70 65 6e 76 70 6e 2c 20 73 6e 6d 70 2c 20 | image.lldp,.nat,.openvpn,.snmp,. |
| 441a0 | 74 61 69 6c 2c 20 76 70 6e 2c 20 76 72 72 70 00 44 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 | tail,.vpn,.vrrp.Displays.informa |
| 441c0 | 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 6e 65 69 67 68 62 6f 72 73 20 64 69 73 63 6f 76 65 | tion.about.all.neighbors.discove |
| 441e0 | 72 65 64 20 76 69 61 20 4c 4c 44 50 2e 00 44 69 73 70 6c 61 79 73 20 71 75 65 75 65 20 69 6e 66 | red.via.LLDP..Displays.queue.inf |
| 44200 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 61 20 50 50 50 6f 45 20 69 6e 74 65 72 66 61 63 65 2e 00 | ormation.for.a.PPPoE.interface.. |
| 44220 | 44 69 73 70 6c 61 79 73 20 74 68 65 20 72 6f 75 74 65 20 70 61 63 6b 65 74 73 20 74 61 6b 65 6e | Displays.the.route.packets.taken |
| 44240 | 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 68 6f 73 74 20 75 74 69 6c 69 7a 69 6e 67 20 56 52 46 | .to.a.network.host.utilizing.VRF |
| 44260 | 20 69 6e 73 74 61 6e 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 | .instance.identified.by.`<name>` |
| 44280 | 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6f 70 | ..When.using.the.IPv4.or.IPv6.op |
| 442a0 | 74 69 6f 6e 2c 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 72 6f 75 74 65 20 70 61 63 6b 65 74 73 | tion,.displays.the.route.packets |
| 442c0 | 20 74 61 6b 65 6e 20 74 6f 20 74 68 65 20 67 69 76 65 6e 20 68 6f 73 74 73 20 49 50 20 61 64 64 | .taken.to.the.given.hosts.IP.add |
| 442e0 | 72 65 73 73 20 66 61 6d 69 6c 79 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 66 | ress.family..This.option.is.usef |
| 44300 | 75 6c 20 77 68 65 6e 20 74 68 65 20 68 6f 73 74 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 73 | ul.when.the.host.is.specified.as |
| 44320 | 20 61 20 68 6f 73 74 6e 61 6d 65 20 72 61 74 68 65 72 20 74 68 61 6e 20 61 6e 20 49 50 20 61 64 | .a.hostname.rather.than.an.IP.ad |
| 44340 | 64 72 65 73 73 2e 00 44 6f 20 2a 6e 6f 74 2a 20 6d 61 6e 75 61 6c 6c 79 20 65 64 69 74 20 60 2f | dress..Do.*not*.manually.edit.`/ |
| 44360 | 65 74 63 2f 68 6f 73 74 73 60 2e 20 54 68 69 73 20 66 69 6c 65 20 77 69 6c 6c 20 61 75 74 6f 6d | etc/hosts`..This.file.will.autom |
| 44380 | 61 74 69 63 61 6c 6c 79 20 62 65 20 72 65 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 62 6f 6f 74 20 | atically.be.regenerated.on.boot. |
| 443a0 | 62 61 73 65 64 20 6f 6e 20 74 68 65 20 73 65 74 74 69 6e 67 73 20 69 6e 20 74 68 69 73 20 73 65 | based.on.the.settings.in.this.se |
| 443c0 | 63 74 69 6f 6e 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 79 6f 75 27 6c 6c 20 6c 6f 73 65 20 61 | ction,.which.means.you'll.lose.a |
| 443e0 | 6c 6c 20 79 6f 75 72 20 6d 61 6e 75 61 6c 20 65 64 69 74 73 2e 20 49 6e 73 74 65 61 64 2c 20 63 | ll.your.manual.edits..Instead,.c |
| 44400 | 6f 6e 66 69 67 75 72 65 20 73 74 61 74 69 63 20 68 6f 73 74 20 6d 61 70 70 69 6e 67 73 20 61 73 | onfigure.static.host.mappings.as |
| 44420 | 20 66 6f 6c 6c 6f 77 73 2e 00 44 6f 20 6e 6f 74 20 61 6c 6c 6f 77 20 49 50 76 34 20 6e 65 78 74 | .follows..Do.not.allow.IPv4.next |
| 44440 | 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 74 6f 20 72 65 73 6f 6c 76 65 20 76 69 61 20 74 68 65 20 | hop.tracking.to.resolve.via.the. |
| 44460 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 | default.route..This.parameter.is |
| 44480 | 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 72 2d 56 52 46 2c 20 73 6f 20 74 68 65 20 63 6f 6d 6d | .configured.per-VRF,.so.the.comm |
| 444a0 | 61 6e 64 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 74 68 65 20 56 52 46 | and.is.also.available.in.the.VRF |
| 444c0 | 20 73 75 62 6e 6f 64 65 2e 00 44 6f 20 6e 6f 74 20 61 6c 6c 6f 77 20 49 50 76 36 20 6e 65 78 74 | .subnode..Do.not.allow.IPv6.next |
| 444e0 | 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 74 6f 20 72 65 73 6f 6c 76 65 20 76 69 61 20 74 68 65 20 | hop.tracking.to.resolve.via.the. |
| 44500 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 | default.route..This.parameter.is |
| 44520 | 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 72 2d 56 52 46 2c 20 73 6f 20 74 68 65 20 63 6f 6d 6d | .configured.per-VRF,.so.the.comm |
| 44540 | 61 6e 64 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 74 68 65 20 56 52 46 | and.is.also.available.in.the.VRF |
| 44560 | 20 73 75 62 6e 6f 64 65 2e 00 44 6f 20 6e 6f 74 20 61 73 73 69 67 6e 20 61 20 6c 69 6e 6b 2d 6c | .subnode..Do.not.assign.a.link-l |
| 44580 | 6f 63 61 6c 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 69 73 20 69 6e 74 65 72 66 | ocal.IPv6.address.to.this.interf |
| 445a0 | 61 63 65 2e 00 44 6f 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 49 46 42 20 61 73 20 74 68 65 | ace..Do.not.configure.IFB.as.the |
| 445c0 | 20 66 69 72 73 74 20 73 74 65 70 2e 20 46 69 72 73 74 20 63 72 65 61 74 65 20 65 76 65 72 79 74 | .first.step..First.create.everyt |
| 445e0 | 68 69 6e 67 20 65 6c 73 65 20 6f 66 20 79 6f 75 72 20 74 72 61 66 66 69 63 2d 70 6f 6c 69 63 79 | hing.else.of.your.traffic-policy |
| 44600 | 2c 20 61 6e 64 20 74 68 65 6e 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 49 46 42 | ,.and.then.you.can.configure.IFB |
| 44620 | 2e 20 4f 74 68 65 72 77 69 73 65 20 79 6f 75 20 6d 69 67 68 74 20 67 65 74 20 74 68 65 20 60 60 | ..Otherwise.you.might.get.the.`` |
| 44640 | 52 54 4e 45 54 4c 49 4e 4b 20 61 6e 73 77 65 72 3a 20 46 69 6c 65 20 65 78 69 73 74 73 60 60 20 | RTNETLINK.answer:.File.exists``. |
| 44660 | 65 72 72 6f 72 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 73 6f 6c 76 65 64 20 77 69 74 68 20 | error,.which.can.be.solved.with. |
| 44680 | 60 60 73 75 64 6f 20 69 70 20 6c 69 6e 6b 20 64 65 6c 65 74 65 20 69 66 62 30 60 60 2e 00 44 6f | ``sudo.ip.link.delete.ifb0``..Do |
| 446a0 | 20 6e 6f 74 20 6c 65 61 76 65 20 69 6e 74 72 6f 73 70 65 63 74 69 6f 6e 20 65 6e 61 62 6c 65 64 | .not.leave.introspection.enabled |
| 446c0 | 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e 2c 20 69 74 20 69 73 20 61 20 73 65 63 75 72 69 74 79 | .in.production,.it.is.a.security |
| 446e0 | 20 72 69 73 6b 2e 00 44 6f 20 6e 6f 74 20 73 65 6e 64 20 48 61 72 64 20 52 65 73 65 74 20 43 45 | .risk..Do.not.send.Hard.Reset.CE |
| 44700 | 41 53 45 20 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 66 6f 72 20 22 41 64 6d 69 6e 69 73 74 72 61 | ASE.Notification.for."Administra |
| 44720 | 74 69 76 65 20 52 65 73 65 74 22 20 65 76 65 6e 74 73 2e 20 57 68 65 6e 20 73 65 74 20 61 6e 64 | tive.Reset".events..When.set.and |
| 44740 | 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 63 | .Graceful.Restart.Notification.c |
| 44760 | 61 70 61 62 69 6c 69 74 79 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 74 77 65 65 6e 20 74 | apability.is.exchanged.between.t |
| 44780 | 68 65 20 70 65 65 72 73 2c 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 70 72 6f 63 65 | he.peers,.Graceful.Restart.proce |
| 447a0 | 64 75 72 65 73 20 61 70 70 6c 79 2c 20 61 6e 64 20 72 6f 75 74 65 73 20 77 69 6c 6c 20 62 65 20 | dures.apply,.and.routes.will.be. |
| 447c0 | 72 65 74 61 69 6e 65 64 2e 00 44 6f 20 6e 6f 74 20 75 73 65 20 74 68 65 20 6c 6f 63 61 6c 20 60 | retained..Do.not.use.the.local.` |
| 447e0 | 60 2f 65 74 63 2f 68 6f 73 74 73 60 60 20 66 69 6c 65 20 69 6e 20 6e 61 6d 65 20 72 65 73 6f 6c | `/etc/hosts``.file.in.name.resol |
| 44800 | 75 74 69 6f 6e 2e 20 56 79 4f 53 20 44 48 43 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 65 | ution..VyOS.DHCP.server.will.use |
| 44820 | 20 74 68 69 73 20 66 69 6c 65 20 74 6f 20 61 64 64 20 72 65 73 6f 6c 76 65 72 73 20 74 6f 20 61 | .this.file.to.add.resolvers.to.a |
| 44840 | 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 65 73 2e 00 44 6f 65 73 20 6e 6f 74 20 6e 65 65 64 | ssigned.addresses..Does.not.need |
| 44860 | 20 74 6f 20 62 65 20 75 73 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 70 72 6f 78 79 5f | .to.be.used.together.with.proxy_ |
| 44880 | 61 72 70 2e 00 44 6f 6d 61 69 6e 00 44 6f 6d 61 69 6e 20 47 72 6f 75 70 73 00 44 6f 6d 61 69 6e | arp..Domain.Domain.Groups.Domain |
| 448a0 | 20 4e 61 6d 65 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 28 73 29 20 66 6f 72 20 77 68 69 63 68 20 74 | .Name.Domain.name(s).for.which.t |
| 448c0 | 6f 20 6f 62 74 61 69 6e 20 63 65 72 74 69 66 69 63 61 74 65 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 | o.obtain.certificate.Domain.name |
| 448e0 | 73 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 6c 65 74 74 65 72 73 2c 20 6e 75 6d 62 65 72 73 2c 20 | s.can.include.letters,.numbers,. |
| 44900 | 68 79 70 68 65 6e 73 20 61 6e 64 20 70 65 72 69 6f 64 73 20 77 69 74 68 20 61 20 6d 61 78 69 6d | hyphens.and.periods.with.a.maxim |
| 44920 | 75 6d 20 6c 65 6e 67 74 68 20 6f 66 20 32 35 33 20 63 68 61 72 61 63 74 65 72 73 2e 00 44 6f 6d | um.length.of.253.characters..Dom |
| 44940 | 61 69 6e 20 6e 61 6d 65 73 20 74 6f 20 61 70 70 6c 79 2c 20 6d 75 6c 74 69 70 6c 65 20 64 6f 6d | ain.names.to.apply,.multiple.dom |
| 44960 | 61 69 6e 2d 6e 61 6d 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 44 6f 6d 61 | ain-names.can.be.specified..Doma |
| 44980 | 69 6e 20 73 65 61 72 63 68 20 6f 72 64 65 72 00 44 6f 6e 27 74 20 62 65 20 61 66 72 61 69 64 20 | in.search.order.Don't.be.afraid. |
| 449a0 | 74 68 61 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 72 65 2d 64 6f 20 79 6f 75 72 20 63 6f 6e 66 | that.you.need.to.re-do.your.conf |
| 449c0 | 69 67 75 72 61 74 69 6f 6e 2e 20 4b 65 79 20 74 72 61 6e 73 66 6f 72 6d 61 74 69 6f 6e 20 69 73 | iguration..Key.transformation.is |
| 449e0 | 20 68 61 6e 64 6c 65 64 2c 20 61 73 20 61 6c 77 61 79 73 2c 20 62 79 20 6f 75 72 20 6d 69 67 72 | .handled,.as.always,.by.our.migr |
| 44a00 | 61 74 69 6f 6e 20 73 63 72 69 70 74 73 2c 20 73 6f 20 74 68 69 73 20 77 69 6c 6c 20 62 65 20 61 | ation.scripts,.so.this.will.be.a |
| 44a20 | 20 73 6d 6f 6f 74 68 20 74 72 61 6e 73 69 74 69 6f 6e 20 66 6f 72 20 79 6f 75 21 00 44 6f 6e 27 | .smooth.transition.for.you!.Don' |
| 44a40 | 74 20 66 6f 72 67 65 74 2c 20 74 68 65 20 43 49 44 52 20 64 65 63 6c 61 72 65 64 20 69 6e 20 74 | t.forget,.the.CIDR.declared.in.t |
| 44a60 | 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 20 2a 2a 4d 55 53 54 20 65 78 69 73 | he.network.statement.**MUST.exis |
| 44a80 | 74 20 69 6e 20 79 6f 75 72 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 28 64 79 6e 61 6d 69 63 | t.in.your.routing.table.(dynamic |
| 44aa0 | 20 6f 72 20 73 74 61 74 69 63 29 2c 20 74 68 65 20 62 65 73 74 20 77 61 79 20 74 6f 20 6d 61 6b | .or.static),.the.best.way.to.mak |
| 44ac0 | 65 20 73 75 72 65 20 74 68 61 74 20 69 73 20 74 72 75 65 20 69 73 20 63 72 65 61 74 69 6e 67 20 | e.sure.that.is.true.is.creating. |
| 44ae0 | 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 3a 2a 2a 00 44 6f 6e 27 74 20 66 6f 72 67 65 74 2c 20 | a.static.route:**.Don't.forget,. |
| 44b00 | 74 68 65 20 43 49 44 52 20 64 65 63 6c 61 72 65 64 20 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b | the.CIDR.declared.in.the.network |
| 44b20 | 20 73 74 61 74 65 6d 65 6e 74 20 4d 55 53 54 20 2a 2a 65 78 69 73 74 20 69 6e 20 79 6f 75 72 20 | .statement.MUST.**exist.in.your. |
| 44b40 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 28 64 79 6e 61 6d 69 63 20 6f 72 20 73 74 61 74 69 63 | routing.table.(dynamic.or.static |
| 44b60 | 29 2c 20 74 68 65 20 62 65 73 74 20 77 61 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 | ),.the.best.way.to.make.sure.tha |
| 44b80 | 74 20 69 73 20 74 72 75 65 20 69 73 20 63 72 65 61 74 69 6e 67 20 61 20 73 74 61 74 69 63 20 72 | t.is.true.is.creating.a.static.r |
| 44ba0 | 6f 75 74 65 3a 2a 2a 00 44 6f 6e 27 74 20 67 65 74 20 63 6f 6e 66 75 73 65 64 20 61 62 6f 75 74 | oute:**.Don't.get.confused.about |
| 44bc0 | 20 74 68 65 20 75 73 65 64 20 2f 33 31 20 74 75 6e 6e 65 6c 20 73 75 62 6e 65 74 2e 20 3a 72 66 | .the.used./31.tunnel.subnet..:rf |
| 44be0 | 63 3a 60 33 30 32 31 60 20 67 69 76 65 73 20 79 6f 75 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 6e | c:`3021`.gives.you.additional.in |
| 44c00 | 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 75 73 69 6e 67 20 2f 33 31 20 73 75 62 6e 65 74 73 20 | formation.for.using./31.subnets. |
| 44c20 | 6f 6e 20 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6c 69 6e 6b 73 2e 00 44 6f 77 6e 6c 6f 61 | on.point-to-point.links..Downloa |
| 44c40 | 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 | d.bandwidth.limit.in.kbit/s.for. |
| 44c60 | 60 3c 75 73 65 72 3e 60 2e 00 44 6f 77 6e 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d | `<user>`..Download.bandwidth.lim |
| 44c80 | 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 75 73 65 72 20 6f 6e 20 69 6e 74 65 72 66 61 | it.in.kbit/s.for.user.on.interfa |
| 44ca0 | 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 44 6f 77 6e 6c 6f 61 64 2f 55 70 64 61 74 | ce.`<interface>`..Download/Updat |
| 44cc0 | 65 20 63 6f 6d 70 6c 65 74 65 20 62 6c 61 63 6b 6c 69 73 74 00 44 6f 77 6e 6c 6f 61 64 2f 55 70 | e.complete.blacklist.Download/Up |
| 44ce0 | 64 61 74 65 20 70 61 72 74 69 61 6c 20 62 6c 61 63 6b 6c 69 73 74 2e 00 44 72 6f 70 20 41 53 2d | date.partial.blacklist..Drop.AS- |
| 44d00 | 4e 55 4d 42 45 52 20 66 72 6f 6d 20 74 68 65 20 42 47 50 20 41 53 20 70 61 74 68 2e 00 44 72 6f | NUMBER.from.the.BGP.AS.path..Dro |
| 44d20 | 70 20 54 61 69 6c 00 44 72 6f 70 20 72 61 74 65 00 44 72 6f 70 70 65 64 20 70 61 63 6b 65 74 73 | p.Tail.Drop.rate.Dropped.packets |
| 44d40 | 20 72 65 70 6f 72 74 65 64 20 6f 6e 20 44 52 4f 50 4d 4f 4e 20 4e 65 74 6c 69 6e 6b 20 63 68 61 | .reported.on.DROPMON.Netlink.cha |
| 44d60 | 6e 6e 65 6c 20 62 79 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 20 61 72 65 20 65 78 70 6f 72 74 65 | nnel.by.Linux.kernel.are.exporte |
| 44d80 | 64 20 76 69 61 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 73 46 6c 6f 77 20 76 35 20 65 78 74 65 | d.via.the.standard.sFlow.v5.exte |
| 44da0 | 6e 73 69 6f 6e 20 66 6f 72 20 72 65 70 6f 72 74 69 6e 67 20 64 72 6f 70 70 65 64 20 70 61 63 6b | nsion.for.reporting.dropped.pack |
| 44dc0 | 65 74 73 00 44 75 61 6c 2d 53 74 61 63 6b 20 49 50 76 34 2f 49 50 76 36 20 70 72 6f 76 69 73 69 | ets.Dual-Stack.IPv4/IPv6.provisi |
| 44de0 | 6f 6e 69 6e 67 20 77 69 74 68 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 00 44 75 65 | oning.with.Prefix.Delegation.Due |
| 44e00 | 20 74 6f 20 61 20 72 61 63 65 20 63 6f 6e 64 69 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 6c 65 | .to.a.race.condition.that.can.le |
| 44e20 | 61 64 20 74 6f 20 61 20 66 61 69 6c 75 72 65 20 64 75 72 69 6e 67 20 62 6f 6f 74 20 70 72 6f 63 | ad.to.a.failure.during.boot.proc |
| 44e40 | 65 73 73 2c 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 69 6e 69 74 69 61 6c 69 | ess,.all.interfaces.are.initiali |
| 44e60 | 7a 65 64 20 62 65 66 6f 72 65 20 66 69 72 65 77 61 6c 6c 20 69 73 20 63 6f 6e 66 69 67 75 72 65 | zed.before.firewall.is.configure |
| 44e80 | 64 2e 20 54 68 69 73 20 6c 65 61 64 73 20 74 6f 20 61 20 73 69 74 75 61 74 69 6f 6e 20 77 68 65 | d..This.leads.to.a.situation.whe |
| 44ea0 | 72 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 6f 70 65 6e 20 74 6f 20 61 6c 6c 20 74 72 61 | re.the.system.is.open.to.all.tra |
| 44ec0 | 66 66 69 63 2c 20 61 6e 64 20 63 61 6e 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 73 20 61 | ffic,.and.can.be.considered.as.a |
| 44ee0 | 20 73 65 63 75 72 69 74 79 20 72 69 73 6b 2e 00 44 75 6d 6d 79 00 44 75 6d 6d 79 20 69 6e 74 65 | .security.risk..Dummy.Dummy.inte |
| 44f00 | 72 66 61 63 65 00 44 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 75 73 | rface.Dummy.interfaces.can.be.us |
| 44f20 | 65 64 20 61 73 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 61 6c 77 61 79 73 20 73 74 61 | ed.as.interfaces.that.always.sta |
| 44f40 | 79 20 75 70 20 28 69 6e 20 74 68 65 20 73 61 6d 65 20 66 61 73 68 69 6f 6e 20 74 6f 20 6c 6f 6f | y.up.(in.the.same.fashion.to.loo |
| 44f60 | 70 62 61 63 6b 73 20 69 6e 20 43 69 73 63 6f 20 49 4f 53 29 2c 20 6f 72 20 66 6f 72 20 74 65 73 | pbacks.in.Cisco.IOS),.or.for.tes |
| 44f80 | 74 69 6e 67 20 70 75 72 70 6f 73 65 73 2e 00 44 75 70 6c 69 63 61 74 65 20 70 61 63 6b 65 74 73 | ting.purposes..Duplicate.packets |
| 44fa0 | 20 61 72 65 20 6e 6f 74 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 20 | .are.not.included.in.the.packet. |
| 44fc0 | 6c 6f 73 73 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2c 20 61 6c 74 68 6f 75 67 68 20 74 68 65 20 72 | loss.calculation,.although.the.r |
| 44fe0 | 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 6f 66 20 74 68 65 73 65 20 70 61 63 6b 65 74 73 20 | ound-trip.time.of.these.packets. |
| 45000 | 69 73 20 75 73 65 64 20 69 6e 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 74 68 65 20 6d 69 6e 69 6d | is.used.in.calculating.the.minim |
| 45020 | 75 6d 2f 20 61 76 65 72 61 67 65 2f 6d 61 78 69 6d 75 6d 20 72 6f 75 6e 64 2d 74 72 69 70 20 74 | um/.average/maximum.round-trip.t |
| 45040 | 69 6d 65 20 6e 75 6d 62 65 72 73 2e 00 44 75 72 69 6e 67 20 69 6e 69 74 69 61 6c 20 64 65 70 6c | ime.numbers..During.initial.depl |
| 45060 | 6f 79 6d 65 6e 74 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 75 73 69 6e 67 20 74 68 65 20 73 74 | oyment.we.recommend.using.the.st |
| 45080 | 61 67 69 6e 67 20 41 50 49 20 6f 66 20 4c 65 74 73 45 6e 63 72 79 70 74 20 74 6f 20 70 72 65 76 | aging.API.of.LetsEncrypt.to.prev |
| 450a0 | 65 6e 74 20 61 6e 64 20 62 6c 61 63 6b 6c 69 73 74 69 6e 67 20 6f 66 20 79 6f 75 72 20 73 79 73 | ent.and.blacklisting.of.your.sys |
| 450c0 | 74 65 6d 2e 20 54 68 65 20 41 50 49 20 65 6e 64 70 6f 69 6e 74 20 69 73 20 68 74 74 70 73 3a 2f | tem..The.API.endpoint.is.https:/ |
| 450e0 | 2f 61 63 6d 65 2d 73 74 61 67 69 6e 67 2d 76 30 32 2e 61 70 69 2e 6c 65 74 73 65 6e 63 72 79 70 | /acme-staging-v02.api.letsencryp |
| 45100 | 74 2e 6f 72 67 2f 64 69 72 65 63 74 6f 72 79 00 44 75 72 69 6e 67 20 70 72 6f 66 69 6c 65 20 69 | t.org/directory.During.profile.i |
| 45120 | 6d 70 6f 72 74 2c 20 74 68 65 20 75 73 65 72 20 69 73 20 61 73 6b 65 64 20 74 6f 20 65 6e 74 65 | mport,.the.user.is.asked.to.ente |
| 45140 | 72 20 69 74 73 20 49 50 53 65 63 20 63 72 65 64 65 6e 74 69 61 6c 73 20 28 75 73 65 72 6e 61 6d | r.its.IPSec.credentials.(usernam |
| 45160 | 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 29 20 77 68 69 63 68 20 69 73 20 73 74 6f 72 65 64 20 | e.and.password).which.is.stored. |
| 45180 | 6f 6e 20 74 68 65 20 6d 6f 62 69 6c 65 2e 00 44 79 6e 61 6d 69 63 20 44 4e 53 00 44 79 6e 61 6d | on.the.mobile..Dynamic.DNS.Dynam |
| 451a0 | 69 63 20 47 72 6f 75 70 73 00 44 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 20 | ic.Groups.Dynamic.address.group. |
| 451c0 | 69 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 | is.supported.by.both.IPv4.and.IP |
| 451e0 | 76 36 20 66 61 6d 69 6c 69 65 73 2e 20 43 6f 6d 6d 61 6e 64 73 20 75 73 65 64 20 74 6f 20 64 65 | v6.families..Commands.used.to.de |
| 45200 | 66 69 6e 65 20 64 79 6e 61 6d 69 63 20 49 50 76 34 7c 49 50 76 36 20 61 64 64 72 65 73 73 20 67 | fine.dynamic.IPv4|IPv6.address.g |
| 45220 | 72 6f 75 70 73 20 61 72 65 3a 00 44 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 00 45 41 | roups.are:.Dynamic-protection.EA |
| 45240 | 50 6f 4c 20 63 6f 6d 65 73 20 77 69 74 68 20 61 6e 20 69 64 65 6e 74 69 66 79 20 6f 70 74 69 6f | PoL.comes.with.an.identify.optio |
| 45260 | 6e 2e 20 57 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 75 73 65 20 74 68 65 20 69 6e 74 65 | n..We.automatically.use.the.inte |
| 45280 | 72 66 61 63 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 61 73 20 69 64 65 6e 74 69 74 79 20 70 61 | rface.MAC.address.as.identity.pa |
| 452a0 | 72 61 6d 65 74 65 72 2e 00 45 53 50 20 28 45 6e 63 61 70 73 75 6c 61 74 69 6e 67 20 53 65 63 75 | rameter..ESP.(Encapsulating.Secu |
| 452c0 | 72 69 74 79 20 50 61 79 6c 6f 61 64 29 20 41 74 74 72 69 62 75 74 65 73 00 45 53 50 20 50 68 61 | rity.Payload).Attributes.ESP.Pha |
| 452e0 | 73 65 3a 00 45 53 50 20 69 73 20 75 73 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 63 6f 6e 66 69 | se:.ESP.is.used.to.provide.confi |
| 45300 | 64 65 6e 74 69 61 6c 69 74 79 2c 20 64 61 74 61 20 6f 72 69 67 69 6e 20 61 75 74 68 65 6e 74 69 | dentiality,.data.origin.authenti |
| 45320 | 63 61 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 20 69 6e 74 65 67 72 69 74 79 | cation,.connectionless.integrity |
| 45340 | 2c 20 61 6e 20 61 6e 74 69 2d 72 65 70 6c 61 79 20 73 65 72 76 69 63 65 20 28 61 20 66 6f 72 6d | ,.an.anti-replay.service.(a.form |
| 45360 | 20 6f 66 20 70 61 72 74 69 61 6c 20 73 65 71 75 65 6e 63 65 20 69 6e 74 65 67 72 69 74 79 29 2c | .of.partial.sequence.integrity), |
| 45380 | 20 61 6e 64 20 6c 69 6d 69 74 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 20 63 6f 6e 66 69 64 | .and.limited.traffic.flow.confid |
| 453a0 | 65 6e 74 69 61 6c 69 74 79 2e 20 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 | entiality..https://datatracker.i |
| 453c0 | 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 68 74 6d 6c 2f 72 66 63 34 33 30 33 00 45 56 50 4e 20 4d 75 | etf.org/doc/html/rfc4303.EVPN.Mu |
| 453e0 | 6c 74 69 68 6f 6d 69 6e 67 00 45 56 50 4e 2d 4d 48 20 69 73 20 69 6e 74 65 6e 64 65 64 20 61 73 | ltihoming.EVPN-MH.is.intended.as |
| 45400 | 20 61 20 72 65 70 6c 61 63 65 6d 65 6e 74 20 66 6f 72 20 4d 4c 41 47 20 6f 72 20 41 6e 79 63 61 | .a.replacement.for.MLAG.or.Anyca |
| 45420 | 73 74 20 56 54 45 50 73 2e 20 49 6e 20 6d 75 6c 74 69 68 6f 6d 69 6e 67 20 65 61 63 68 20 50 45 | st.VTEPs..In.multihoming.each.PE |
| 45440 | 20 68 61 73 20 61 6e 20 75 6e 69 71 75 65 20 56 54 45 50 20 61 64 64 72 65 73 73 20 77 68 69 63 | .has.an.unique.VTEP.address.whic |
| 45460 | 68 20 72 65 71 75 69 72 65 73 20 74 68 65 20 69 6e 74 72 6f 64 75 63 74 69 6f 6e 20 6f 66 20 61 | h.requires.the.introduction.of.a |
| 45480 | 20 6e 65 77 20 64 61 74 61 70 6c 61 6e 65 20 63 6f 6e 73 74 72 75 63 74 2c 20 4d 41 43 2d 45 43 | .new.dataplane.construct,.MAC-EC |
| 454a0 | 4d 50 2e 20 48 65 72 65 20 61 20 4d 41 43 2f 46 44 42 20 65 6e 74 72 79 20 63 61 6e 20 70 6f 69 | MP..Here.a.MAC/FDB.entry.can.poi |
| 454c0 | 6e 74 20 74 6f 20 61 20 6c 69 73 74 20 6f 66 20 72 65 6d 6f 74 65 20 50 45 73 2f 56 54 45 50 73 | nt.to.a.list.of.remote.PEs/VTEPs |
| 454e0 | 2e 00 45 61 63 68 20 3a 61 62 62 72 3a 60 41 53 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 | ..Each.:abbr:`AS.(Autonomous.Sys |
| 45500 | 74 65 6d 29 60 20 68 61 73 20 61 6e 20 69 64 65 6e 74 69 66 79 69 6e 67 20 6e 75 6d 62 65 72 20 | tem)`.has.an.identifying.number. |
| 45520 | 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 69 74 20 63 61 6c 6c 65 64 20 61 6e 20 3a 61 62 | associated.with.it.called.an.:ab |
| 45540 | 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 | br:`ASN.(Autonomous.System.Numbe |
| 45560 | 72 29 60 2e 20 54 68 69 73 20 69 73 20 61 20 74 77 6f 20 6f 63 74 65 74 20 76 61 6c 75 65 20 72 | r)`..This.is.a.two.octet.value.r |
| 45580 | 61 6e 67 69 6e 67 20 69 6e 20 76 61 6c 75 65 20 66 72 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 2e | anging.in.value.from.1.to.65535. |
| 455a0 | 20 54 68 65 20 41 53 20 6e 75 6d 62 65 72 73 20 36 34 35 31 32 20 74 68 72 6f 75 67 68 20 36 35 | .The.AS.numbers.64512.through.65 |
| 455c0 | 35 33 35 20 61 72 65 20 64 65 66 69 6e 65 64 20 61 73 20 70 72 69 76 61 74 65 20 41 53 20 6e 75 | 535.are.defined.as.private.AS.nu |
| 455e0 | 6d 62 65 72 73 2e 20 50 72 69 76 61 74 65 20 41 53 20 6e 75 6d 62 65 72 73 20 6d 75 73 74 20 6e | mbers..Private.AS.numbers.must.n |
| 45600 | 6f 74 20 62 65 20 61 64 76 65 72 74 69 73 65 64 20 6f 6e 20 74 68 65 20 67 6c 6f 62 61 6c 20 49 | ot.be.advertised.on.the.global.I |
| 45620 | 6e 74 65 72 6e 65 74 2e 20 54 68 65 20 32 2d 62 79 74 65 20 41 53 20 6e 75 6d 62 65 72 20 72 61 | nternet..The.2-byte.AS.number.ra |
| 45640 | 6e 67 65 20 68 61 73 20 62 65 65 6e 20 65 78 68 61 75 73 74 65 64 2e 20 34 2d 62 79 74 65 20 41 | nge.has.been.exhausted..4-byte.A |
| 45660 | 53 20 6e 75 6d 62 65 72 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a | S.numbers.are.specified.in.:rfc: |
| 45680 | 60 36 37 39 33 60 2c 20 61 6e 64 20 70 72 6f 76 69 64 65 20 61 20 70 6f 6f 6c 20 6f 66 20 34 32 | `6793`,.and.provide.a.pool.of.42 |
| 456a0 | 39 34 39 36 37 32 39 36 20 41 53 20 6e 75 6d 62 65 72 73 2e 00 45 61 63 68 20 4e 65 74 66 69 6c | 94967296.AS.numbers..Each.Netfil |
| 456c0 | 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 75 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 | ter.connection.is.uniquely.ident |
| 456e0 | 69 66 69 65 64 20 62 79 20 61 20 28 6c 61 79 65 72 2d 33 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f | ified.by.a.(layer-3.protocol,.so |
| 45700 | 75 72 63 65 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 | urce.address,.destination.addres |
| 45720 | 73 2c 20 6c 61 79 65 72 2d 34 20 70 72 6f 74 6f 63 6f 6c 2c 20 6c 61 79 65 72 2d 34 20 6b 65 79 | s,.layer-4.protocol,.layer-4.key |
| 45740 | 29 20 74 75 70 6c 65 2e 20 54 68 65 20 6c 61 79 65 72 2d 34 20 6b 65 79 20 64 65 70 65 6e 64 73 | ).tuple..The.layer-4.key.depends |
| 45760 | 20 6f 6e 20 74 68 65 20 74 72 61 6e 73 70 6f 72 74 20 70 72 6f 74 6f 63 6f 6c 3b 20 66 6f 72 20 | .on.the.transport.protocol;.for. |
| 45780 | 54 43 50 2f 55 44 50 20 69 74 20 69 73 20 74 68 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2c 20 | TCP/UDP.it.is.the.port.numbers,. |
| 457a0 | 66 6f 72 20 74 75 6e 6e 65 6c 73 20 69 74 20 63 61 6e 20 62 65 20 74 68 65 69 72 20 74 75 6e 6e | for.tunnels.it.can.be.their.tunn |
| 457c0 | 65 6c 20 49 44 2c 20 62 75 74 20 6f 74 68 65 72 77 69 73 65 20 69 73 20 6a 75 73 74 20 7a 65 72 | el.ID,.but.otherwise.is.just.zer |
| 457e0 | 6f 2c 20 61 73 20 69 66 20 69 74 20 77 65 72 65 20 6e 6f 74 20 70 61 72 74 20 6f 66 20 74 68 65 | o,.as.if.it.were.not.part.of.the |
| 45800 | 20 74 75 70 6c 65 2e 20 54 6f 20 62 65 20 61 62 6c 65 20 74 6f 20 69 6e 73 70 65 63 74 20 74 68 | .tuple..To.be.able.to.inspect.th |
| 45820 | 65 20 54 43 50 20 70 6f 72 74 20 69 6e 20 61 6c 6c 20 63 61 73 65 73 2c 20 70 61 63 6b 65 74 73 | e.TCP.port.in.all.cases,.packets |
| 45840 | 20 77 69 6c 6c 20 62 65 20 6d 61 6e 64 61 74 6f 72 69 6c 79 20 64 65 66 72 61 67 6d 65 6e 74 65 | .will.be.mandatorily.defragmente |
| 45860 | 64 2e 00 45 61 63 68 20 56 58 4c 41 4e 20 73 65 67 6d 65 6e 74 20 69 73 20 69 64 65 6e 74 69 66 | d..Each.VXLAN.segment.is.identif |
| 45880 | 69 65 64 20 74 68 72 6f 75 67 68 20 61 20 32 34 2d 62 69 74 20 73 65 67 6d 65 6e 74 20 49 44 2c | ied.through.a.24-bit.segment.ID, |
| 458a0 | 20 74 65 72 6d 65 64 20 74 68 65 20 3a 61 62 62 72 3a 60 56 4e 49 20 28 56 58 4c 41 4e 20 4e 65 | .termed.the.:abbr:`VNI.(VXLAN.Ne |
| 458c0 | 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 20 28 6f 72 20 56 58 4c 41 4e 20 53 65 67 6d 65 | twork.Identifier.(or.VXLAN.Segme |
| 458e0 | 6e 74 20 49 44 29 29 60 2c 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 75 70 20 74 6f 20 31 36 4d 20 | nt.ID))`,.This.allows.up.to.16M. |
| 45900 | 56 58 4c 41 4e 20 73 65 67 6d 65 6e 74 73 20 74 6f 20 63 6f 65 78 69 73 74 20 77 69 74 68 69 6e | VXLAN.segments.to.coexist.within |
| 45920 | 20 74 68 65 20 73 61 6d 65 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 6f 6d 61 69 6e 2e | .the.same.administrative.domain. |
| 45940 | 00 45 61 63 68 20 62 72 69 64 67 65 20 68 61 73 20 61 20 72 65 6c 61 74 69 76 65 20 70 72 69 6f | .Each.bridge.has.a.relative.prio |
| 45960 | 72 69 74 79 20 61 6e 64 20 63 6f 73 74 2e 20 45 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 69 73 | rity.and.cost..Each.interface.is |
| 45980 | 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 70 6f 72 74 20 28 6e 75 6d 62 65 72 29 | .associated.with.a.port.(number) |
| 459a0 | 20 69 6e 20 74 68 65 20 53 54 50 20 63 6f 64 65 2e 20 45 61 63 68 20 68 61 73 20 61 20 70 72 69 | .in.the.STP.code..Each.has.a.pri |
| 459c0 | 6f 72 69 74 79 20 61 6e 64 20 61 20 63 6f 73 74 2c 20 74 68 61 74 20 69 73 20 75 73 65 64 20 74 | ority.and.a.cost,.that.is.used.t |
| 459e0 | 6f 20 64 65 63 69 64 65 20 77 68 69 63 68 20 69 73 20 74 68 65 20 73 68 6f 72 74 65 73 74 20 70 | o.decide.which.is.the.shortest.p |
| 45a00 | 61 74 68 20 74 6f 20 66 6f 72 77 61 72 64 20 61 20 70 61 63 6b 65 74 2e 20 54 68 65 20 6c 6f 77 | ath.to.forward.a.packet..The.low |
| 45a20 | 65 73 74 20 63 6f 73 74 20 70 61 74 68 20 69 73 20 61 6c 77 61 79 73 20 75 73 65 64 20 75 6e 6c | est.cost.path.is.always.used.unl |
| 45a40 | 65 73 73 20 74 68 65 20 6f 74 68 65 72 20 70 61 74 68 20 69 73 20 64 6f 77 6e 2e 20 49 66 20 79 | ess.the.other.path.is.down..If.y |
| 45a60 | 6f 75 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 62 72 69 64 67 65 73 20 61 6e 64 20 69 6e 74 | ou.have.multiple.bridges.and.int |
| 45a80 | 65 72 66 61 63 65 73 20 74 68 65 6e 20 79 6f 75 20 6d 61 79 20 6e 65 65 64 20 74 6f 20 61 64 6a | erfaces.then.you.may.need.to.adj |
| 45aa0 | 75 73 74 20 74 68 65 20 70 72 69 6f 72 69 74 69 65 73 20 74 6f 20 61 63 68 69 65 76 65 20 6f 70 | ust.the.priorities.to.achieve.op |
| 45ac0 | 74 69 6d 75 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 00 45 61 63 68 20 62 72 6f 61 64 63 61 73 | timum.performance..Each.broadcas |
| 45ae0 | 74 20 72 65 6c 61 79 20 69 6e 73 74 61 6e 63 65 20 63 61 6e 20 62 65 20 69 6e 64 69 76 69 64 75 | t.relay.instance.can.be.individu |
| 45b00 | 61 6c 6c 79 20 64 69 73 61 62 6c 65 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 74 | ally.disabled.without.deleting.t |
| 45b20 | 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6e 6f 64 65 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 | he.configured.node.by.using.the. |
| 45b40 | 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 45 61 63 68 20 63 6c 61 73 73 20 63 61 | following.command:.Each.class.ca |
| 45b60 | 6e 20 68 61 76 65 20 61 20 67 75 61 72 61 6e 74 65 65 64 20 70 61 72 74 20 6f 66 20 74 68 65 20 | n.have.a.guaranteed.part.of.the. |
| 45b80 | 74 6f 74 61 6c 20 62 61 6e 64 77 69 64 74 68 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 | total.bandwidth.defined.for.the. |
| 45ba0 | 77 68 6f 6c 65 20 70 6f 6c 69 63 79 2c 20 73 6f 20 61 6c 6c 20 74 68 6f 73 65 20 73 68 61 72 65 | whole.policy,.so.all.those.share |
| 45bc0 | 73 20 74 6f 67 65 74 68 65 72 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 68 69 67 68 65 72 20 | s.together.should.not.be.higher. |
| 45be0 | 74 68 61 6e 20 74 68 65 20 70 6f 6c 69 63 79 27 73 20 77 68 6f 6c 65 20 62 61 6e 64 77 69 64 74 | than.the.policy's.whole.bandwidt |
| 45c00 | 68 2e 00 45 61 63 68 20 63 6c 61 73 73 20 69 73 20 61 73 73 69 67 6e 65 64 20 61 20 64 65 66 69 | h..Each.class.is.assigned.a.defi |
| 45c20 | 63 69 74 20 63 6f 75 6e 74 65 72 20 28 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 62 79 74 65 73 | cit.counter.(the.number.of.bytes |
| 45c40 | 20 74 68 61 74 20 61 20 66 6c 6f 77 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 74 72 61 6e 73 | .that.a.flow.is.allowed.to.trans |
| 45c60 | 6d 69 74 20 77 68 65 6e 20 69 74 20 69 73 20 69 74 73 20 74 75 72 6e 29 20 69 6e 69 74 69 61 6c | mit.when.it.is.its.turn).initial |
| 45c80 | 69 7a 65 64 20 74 6f 20 71 75 61 6e 74 75 6d 2e 20 51 75 61 6e 74 75 6d 20 69 73 20 61 20 70 61 | ized.to.quantum..Quantum.is.a.pa |
| 45ca0 | 72 61 6d 65 74 65 72 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 77 68 69 63 68 20 61 63 74 73 | rameter.you.configure.which.acts |
| 45cc0 | 20 6c 69 6b 65 20 61 20 63 72 65 64 69 74 20 6f 66 20 66 69 78 20 62 79 74 65 73 20 74 68 65 20 | .like.a.credit.of.fix.bytes.the. |
| 45ce0 | 63 6f 75 6e 74 65 72 20 72 65 63 65 69 76 65 73 20 6f 6e 20 65 61 63 68 20 72 6f 75 6e 64 2e 20 | counter.receives.on.each.round.. |
| 45d00 | 54 68 65 6e 20 74 68 65 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c 69 63 79 20 73 74 61 72 | Then.the.Round-Robin.policy.star |
| 45d20 | 74 73 20 6d 6f 76 69 6e 67 20 69 74 73 20 52 6f 75 6e 64 20 52 6f 62 69 6e 20 70 6f 69 6e 74 65 | ts.moving.its.Round.Robin.pointe |
| 45d40 | 72 20 74 68 72 6f 75 67 68 20 74 68 65 20 71 75 65 75 65 73 2e 20 49 66 20 74 68 65 20 64 65 66 | r.through.the.queues..If.the.def |
| 45d60 | 69 63 69 74 20 63 6f 75 6e 74 65 72 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 74 68 65 | icit.counter.is.greater.than.the |
| 45d80 | 20 70 61 63 6b 65 74 27 73 20 73 69 7a 65 20 61 74 20 74 68 65 20 68 65 61 64 20 6f 66 20 74 68 | .packet's.size.at.the.head.of.th |
| 45da0 | 65 20 71 75 65 75 65 2c 20 74 68 69 73 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 73 65 6e | e.queue,.this.packet.will.be.sen |
| 45dc0 | 74 20 61 6e 64 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 63 6f 75 6e 74 65 72 20 77 | t.and.the.value.of.the.counter.w |
| 45de0 | 69 6c 6c 20 62 65 20 64 65 63 72 65 6d 65 6e 74 65 64 20 62 79 20 74 68 65 20 70 61 63 6b 65 74 | ill.be.decremented.by.the.packet |
| 45e00 | 20 73 69 7a 65 2e 20 54 68 65 6e 2c 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 6e 65 78 | .size..Then,.the.size.of.the.nex |
| 45e20 | 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 74 68 65 | t.packet.will.be.compared.to.the |
| 45e40 | 20 63 6f 75 6e 74 65 72 20 76 61 6c 75 65 20 61 67 61 69 6e 2c 20 72 65 70 65 61 74 69 6e 67 20 | .counter.value.again,.repeating. |
| 45e60 | 74 68 65 20 70 72 6f 63 65 73 73 2e 20 4f 6e 63 65 20 74 68 65 20 71 75 65 75 65 20 69 73 20 65 | the.process..Once.the.queue.is.e |
| 45e80 | 6d 70 74 79 20 6f 72 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 63 6f 75 6e 74 65 72 | mpty.or.the.value.of.the.counter |
| 45ea0 | 20 69 73 20 69 6e 73 75 66 66 69 63 69 65 6e 74 2c 20 74 68 65 20 52 6f 75 6e 64 2d 52 6f 62 69 | .is.insufficient,.the.Round-Robi |
| 45ec0 | 6e 20 70 6f 69 6e 74 65 72 20 77 69 6c 6c 20 6d 6f 76 65 20 74 6f 20 74 68 65 20 6e 65 78 74 20 | n.pointer.will.move.to.the.next. |
| 45ee0 | 71 75 65 75 65 2e 20 49 66 20 74 68 65 20 71 75 65 75 65 20 69 73 20 65 6d 70 74 79 2c 20 74 68 | queue..If.the.queue.is.empty,.th |
| 45f00 | 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 69 | e.value.of.the.deficit.counter.i |
| 45f20 | 73 20 72 65 73 65 74 20 74 6f 20 30 2e 00 45 61 63 68 20 64 79 6e 61 6d 69 63 20 4e 48 53 20 77 | s.reset.to.0..Each.dynamic.NHS.w |
| 45f40 | 69 6c 6c 20 67 65 74 20 61 20 70 65 65 72 20 65 6e 74 72 79 20 77 69 74 68 20 74 68 65 20 63 6f | ill.get.a.peer.entry.with.the.co |
| 45f60 | 6e 66 69 67 75 72 65 64 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 | nfigured.network.address.and.the |
| 45f80 | 20 64 69 73 63 6f 76 65 72 65 64 20 4e 42 4d 41 20 61 64 64 72 65 73 73 2e 00 45 61 63 68 20 68 | .discovered.NBMA.address..Each.h |
| 45fa0 | 65 61 6c 74 68 20 63 68 65 63 6b 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 69 74 73 | ealth.check.is.configured.in.its |
| 45fc0 | 20 6f 77 6e 20 74 65 73 74 2c 20 74 65 73 74 73 20 61 72 65 20 6e 75 6d 62 65 72 65 64 20 61 6e | .own.test,.tests.are.numbered.an |
| 45fe0 | 64 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 6e 75 6d 65 72 69 63 20 6f 72 64 65 72 2e 20 46 6f | d.processed.in.numeric.order..Fo |
| 46000 | 72 20 6d 75 6c 74 69 20 74 61 72 67 65 74 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e 67 20 6d | r.multi.target.health.checking.m |
| 46020 | 75 6c 74 69 70 6c 65 20 74 65 73 74 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 3a 00 45 61 | ultiple.tests.can.be.defined:.Ea |
| 46040 | 63 68 20 69 6e 64 69 76 69 64 75 61 6c 20 63 6f 6e 66 69 67 75 72 65 64 20 63 6f 6e 73 6f 6c 65 | ch.individual.configured.console |
| 46060 | 2d 73 65 72 76 65 72 20 64 65 76 69 63 65 20 63 61 6e 20 62 65 20 64 69 72 65 63 74 6c 79 20 65 | -server.device.can.be.directly.e |
| 46080 | 78 70 6f 73 65 64 20 74 6f 20 74 68 65 20 6f 75 74 73 69 64 65 20 77 6f 72 6c 64 2e 20 41 20 75 | xposed.to.the.outside.world..A.u |
| 460a0 | 73 65 72 20 63 61 6e 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 20 76 69 61 20 53 53 48 | ser.can.directly.connect.via.SSH |
| 460c0 | 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 70 6f 72 74 2e 00 45 61 63 68 20 6e 6f | .to.the.configured.port..Each.no |
| 460e0 | 64 65 20 28 48 75 62 20 61 6e 64 20 53 70 6f 6b 65 29 20 75 73 65 73 20 61 6e 20 49 50 20 61 64 | de.(Hub.and.Spoke).uses.an.IP.ad |
| 46100 | 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 31 37 32 2e 31 36 2e 32 35 | dress.from.the.network.172.16.25 |
| 46120 | 33 2e 31 32 38 2f 32 39 2e 00 45 61 63 68 20 6f 66 20 74 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f | 3.128/29..Each.of.the.install.co |
| 46140 | 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 | mmand.should.be.applied.to.the.c |
| 46160 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 | onfiguration.and.commited.before |
| 46180 | 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 20 6f 70 65 6e 63 6f 6e 6e 65 63 74 20 63 6f 6e | .using.under.the.openconnect.con |
| 461a0 | 66 69 67 75 72 61 74 69 6f 6e 3a 00 45 61 63 68 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 70 65 | figuration:.Each.site-to-site.pe |
| 461c0 | 65 72 20 68 61 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f 6e 73 3a 00 45 61 63 68 20 73 75 | er.has.the.next.options:.Each.su |
| 461e0 | 62 73 63 72 69 62 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 61 20 6d 61 78 | bscriber.will.be.allocated.a.max |
| 46200 | 69 6d 75 6d 20 6f 66 20 32 30 30 30 20 70 6f 72 74 73 20 66 72 6f 6d 20 74 68 65 20 65 78 74 65 | imum.of.2000.ports.from.the.exte |
| 46220 | 72 6e 61 6c 20 70 6f 6f 6c 2e 00 45 65 6e 61 62 6c 65 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 | rnal.pool..Eenables.the.Generic. |
| 46240 | 50 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 20 28 56 58 4c 41 4e 2d 47 50 45 29 2e 20 | Protocol.extension.(VXLAN-GPE).. |
| 46260 | 43 75 72 72 65 6e 74 6c 79 2c 20 74 68 69 73 20 69 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 65 | Currently,.this.is.only.supporte |
| 46280 | 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6b 65 79 | d.together.with.the.external.key |
| 462a0 | 77 6f 72 64 2e 00 45 6d 61 69 6c 20 61 64 64 72 65 73 73 20 74 6f 20 61 73 73 6f 63 69 61 74 65 | word..Email.address.to.associate |
| 462c0 | 20 77 69 74 68 20 63 65 72 74 69 66 69 63 61 74 65 00 45 6d 61 69 6c 20 75 73 65 64 20 66 6f 72 | .with.certificate.Email.used.for |
| 462e0 | 20 72 65 67 69 73 74 72 61 74 69 6f 6e 20 61 6e 64 20 72 65 63 6f 76 65 72 79 20 63 6f 6e 74 61 | .registration.and.recovery.conta |
| 46300 | 63 74 2e 00 45 6d 62 65 64 64 69 6e 67 20 6f 6e 65 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 6e | ct..Embedding.one.policy.into.an |
| 46320 | 6f 74 68 65 72 20 6f 6e 65 00 45 6d 65 72 67 65 6e 63 79 00 45 6e 61 62 6c 65 20 3a 61 62 62 72 | other.one.Emergency.Enable.:abbr |
| 46340 | 3a 60 42 4d 50 20 28 42 47 50 20 4d 6f 6e 69 74 6f 72 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 | :`BMP.(BGP.Monitoring.Protocol)` |
| 46360 | 20 73 75 70 70 6f 72 74 00 45 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 49 53 49 53 20 6f 6e 20 | .support.Enable.BFD.for.ISIS.on. |
| 46380 | 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 4f 53 50 46 | an.interface.Enable.BFD.for.OSPF |
| 463a0 | 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 44 20 66 6f 72 20 | .on.an.interface.Enable.BFD.for. |
| 463c0 | 4f 53 50 46 76 33 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c 65 20 42 46 | OSPFv3.on.an.interface.Enable.BF |
| 463e0 | 44 20 69 6e 20 42 47 50 00 45 6e 61 62 6c 65 20 42 46 44 20 69 6e 20 49 53 49 53 00 45 6e 61 62 | D.in.BGP.Enable.BFD.in.ISIS.Enab |
| 46400 | 6c 65 20 42 46 44 20 69 6e 20 4f 53 50 46 00 45 6e 61 62 6c 65 20 42 46 44 20 6f 6e 20 61 20 42 | le.BFD.in.OSPF.Enable.BFD.on.a.B |
| 46420 | 47 50 20 70 65 65 72 20 67 72 6f 75 70 00 45 6e 61 62 6c 65 20 42 46 44 20 6f 6e 20 61 20 73 69 | GP.peer.group.Enable.BFD.on.a.si |
| 46440 | 6e 67 6c 65 20 42 47 50 20 6e 65 69 67 68 62 6f 72 00 45 6e 61 62 6c 65 20 44 48 43 50 20 66 61 | ngle.BGP.neighbor.Enable.DHCP.fa |
| 46460 | 69 6c 6f 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 61 64 | ilover.configuration.for.this.ad |
| 46480 | 64 72 65 73 73 20 70 6f 6f 6c 2e 00 45 6e 61 62 6c 65 20 47 72 61 70 68 51 4c 20 53 63 68 65 6d | dress.pool..Enable.GraphQL.Schem |
| 464a0 | 61 20 69 6e 74 72 6f 73 70 65 63 74 69 6f 6e 2e 00 45 6e 61 62 6c 65 20 48 54 2d 64 65 6c 61 79 | a.introspection..Enable.HT-delay |
| 464c0 | 65 64 20 42 6c 6f 63 6b 20 41 63 6b 20 60 60 5b 44 45 4c 41 59 45 44 2d 42 41 5d 60 60 00 45 6e | ed.Block.Ack.``[DELAYED-BA]``.En |
| 464e0 | 61 62 6c 65 20 49 43 4d 50 20 52 6f 75 74 65 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f | able.ICMP.Router.Discovery.Proto |
| 46500 | 63 6f 6c 20 73 75 70 70 6f 72 74 00 45 6e 61 62 6c 65 20 49 47 4d 50 20 61 6e 64 20 4d 4c 44 20 | col.support.Enable.IGMP.and.MLD. |
| 46520 | 71 75 65 72 69 65 72 2e 00 45 6e 61 62 6c 65 20 49 47 4d 50 20 61 6e 64 20 4d 4c 44 20 73 6e 6f | querier..Enable.IGMP.and.MLD.sno |
| 46540 | 6f 70 69 6e 67 2e 00 45 6e 61 62 6c 65 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 63 | oping..Enable.IP.forwarding.on.c |
| 46560 | 6c 69 65 6e 74 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 20 | lient.Enable.IS-IS.Enable.IS-IS. |
| 46580 | 61 6e 64 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 00 45 6e 61 62 | and.IGP-LDP.synchronization.Enab |
| 465a0 | 6c 65 20 49 53 2d 49 53 20 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 20 72 6f 75 74 65 73 | le.IS-IS.and.redistribute.routes |
| 465c0 | 20 6e 6f 74 20 6e 61 74 69 76 65 6c 79 20 69 6e 20 49 53 2d 49 53 00 45 6e 61 62 6c 65 20 49 53 | .not.natively.in.IS-IS.Enable.IS |
| 465e0 | 2d 49 53 20 77 69 74 68 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 28 45 78 70 65 72 69 | -IS.with.Segment.Routing.(Experi |
| 46600 | 6d 65 6e 74 61 6c 29 00 45 6e 61 62 6c 65 20 4c 2d 53 49 47 20 54 58 4f 50 20 70 72 6f 74 65 63 | mental).Enable.L-SIG.TXOP.protec |
| 46620 | 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 44 50 43 20 28 4c 6f 77 | tion.capability.Enable.LDPC.(Low |
| 46640 | 20 44 65 6e 73 69 74 79 20 50 61 72 69 74 79 20 43 68 65 63 6b 29 20 63 6f 64 69 6e 67 20 63 61 | .Density.Parity.Check).coding.ca |
| 46660 | 70 61 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 44 50 43 20 63 6f 64 69 6e 67 20 63 61 70 61 | pability.Enable.LDPC.coding.capa |
| 46680 | 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 4c 44 50 20 73 65 72 76 69 63 65 00 45 6e 61 62 6c | bility.Enable.LLDP.service.Enabl |
| 466a0 | 65 20 4f 53 50 46 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 61 6e 64 20 49 47 50 2d 4c 44 50 20 73 | e.OSPF.Enable.OSPF.and.IGP-LDP.s |
| 466c0 | 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 3a 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 77 69 74 68 | ynchronization:.Enable.OSPF.with |
| 466e0 | 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 28 45 78 70 65 72 69 6d 65 6e 74 61 6c 29 3a | .Segment.Routing.(Experimental): |
| 46700 | 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 77 69 74 68 20 72 6f 75 74 65 20 72 65 64 69 73 74 72 69 | .Enable.OSPF.with.route.redistri |
| 46720 | 62 75 74 69 6f 6e 20 6f 66 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 20 61 6e 64 20 64 65 66 61 75 | bution.of.the.loopback.and.defau |
| 46740 | 6c 74 20 6f 72 69 67 69 6e 61 74 65 3a 00 45 6e 61 62 6c 65 20 4f 54 50 20 32 46 41 20 66 6f 72 | lt.originate:.Enable.OTP.2FA.for |
| 46760 | 20 75 73 65 72 20 60 75 73 65 72 6e 61 6d 65 60 20 77 69 74 68 20 64 65 66 61 75 6c 74 20 73 65 | .user.`username`.with.default.se |
| 46780 | 74 74 69 6e 67 73 2c 20 75 73 69 6e 67 20 74 68 65 20 42 41 53 45 33 32 20 65 6e 63 6f 64 65 64 | ttings,.using.the.BASE32.encoded |
| 467a0 | 20 32 46 41 2f 4d 46 41 20 6b 65 79 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 6b 65 79 3e | .2FA/MFA.key.specified.by.`<key> |
| 467c0 | 60 2e 00 45 6e 61 62 6c 65 20 4f 70 65 6e 46 61 62 72 69 63 00 45 6e 61 62 6c 65 20 4f 70 65 6e | `..Enable.OpenFabric.Enable.Open |
| 467e0 | 56 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 6c 20 4f 66 66 6c 6f 61 64 20 66 65 61 74 75 72 65 | VPN.Data.Channel.Offload.feature |
| 46800 | 20 62 79 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 6b 65 72 6e | .by.loading.the.appropriate.kern |
| 46820 | 65 6c 20 6d 6f 64 75 6c 65 2e 00 45 6e 61 62 6c 65 20 50 52 45 46 36 34 20 6f 70 74 69 6f 6e 20 | el.module..Enable.PREF64.option. |
| 46840 | 61 73 20 6f 75 74 6c 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 37 38 31 60 2e 00 45 6e 61 62 | as.outlined.in.:rfc:`8781`..Enab |
| 46860 | 6c 65 20 52 45 53 54 20 41 50 49 00 45 6e 61 62 6c 65 20 53 4e 4d 50 00 45 6e 61 62 6c 65 20 53 | le.REST.API.Enable.SNMP.Enable.S |
| 46880 | 4e 4d 50 20 71 75 65 72 69 65 73 20 6f 66 20 74 68 65 20 4c 4c 44 50 20 64 61 74 61 62 61 73 65 | NMP.queries.of.the.LLDP.database |
| 468a0 | 00 45 6e 61 62 6c 65 20 53 4e 4d 50 20 73 75 70 70 6f 72 74 20 66 6f 72 20 61 6e 20 69 6e 64 69 | .Enable.SNMP.support.for.an.indi |
| 468c0 | 76 69 64 75 61 6c 20 72 6f 75 74 69 6e 67 20 64 61 65 6d 6f 6e 2e 00 45 6e 61 62 6c 65 20 53 54 | vidual.routing.daemon..Enable.ST |
| 468e0 | 50 00 45 6e 61 62 6c 65 20 54 46 54 50 20 73 65 72 76 69 63 65 20 62 79 20 73 70 65 63 69 66 79 | P.Enable.TFTP.service.by.specify |
| 46900 | 69 6e 67 20 74 68 65 20 60 3c 64 69 72 65 63 74 6f 72 79 3e 60 20 77 68 69 63 68 20 77 69 6c 6c | ing.the.`<directory>`.which.will |
| 46920 | 20 62 65 20 75 73 65 64 20 74 6f 20 73 65 72 76 65 20 66 69 6c 65 73 2e 00 45 6e 61 62 6c 65 20 | .be.used.to.serve.files..Enable. |
| 46940 | 56 48 54 20 54 58 4f 50 20 50 6f 77 65 72 20 53 61 76 65 20 4d 6f 64 65 00 45 6e 61 62 6c 65 20 | VHT.TXOP.Power.Save.Mode.Enable. |
| 46960 | 56 4c 41 4e 2d 41 77 61 72 65 20 42 72 69 64 67 65 00 45 6e 61 62 6c 65 20 61 75 74 6f 6d 61 74 | VLAN-Aware.Bridge.Enable.automat |
| 46980 | 69 63 20 72 65 64 69 72 65 63 74 20 66 72 6f 6d 20 68 74 74 70 20 74 6f 20 68 74 74 70 73 2e 00 | ic.redirect.from.http.to.https.. |
| 469a0 | 45 6e 61 62 6c 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 73 68 6f 72 74 63 75 74 20 72 6f 75 74 | Enable.creation.of.shortcut.rout |
| 469c0 | 65 73 2e 00 45 6e 61 62 6c 65 20 64 69 66 66 65 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 68 61 | es..Enable.different.types.of.ha |
| 469e0 | 72 64 77 61 72 65 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 6e 20 74 68 65 20 67 69 76 65 6e 20 4e | rdware.offloading.on.the.given.N |
| 46a00 | 49 43 2e 00 45 6e 61 62 6c 65 20 67 69 76 65 6e 20 6c 65 67 61 63 79 20 70 72 6f 74 6f 63 6f 6c | IC..Enable.given.legacy.protocol |
| 46a20 | 20 6f 6e 20 74 68 69 73 20 4c 4c 44 50 20 69 6e 73 74 61 6e 63 65 2e 20 4c 65 67 61 63 79 20 70 | .on.this.LLDP.instance..Legacy.p |
| 46a40 | 72 6f 74 6f 63 6f 6c 73 20 69 6e 63 6c 75 64 65 3a 00 45 6e 61 62 6c 65 20 6c 61 79 65 72 20 37 | rotocols.include:.Enable.layer.7 |
| 46a60 | 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e | .HTTP.health.check.Enable.loggin |
| 46a80 | 67 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 70 61 63 6b 65 74 2e 20 49 66 20 74 68 69 | g.for.the.matched.packet..If.thi |
| 46aa0 | 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 70 | s.configuration.command.is.not.p |
| 46ac0 | 72 65 73 65 6e 74 2c 20 74 68 65 6e 20 6c 6f 67 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e | resent,.then.log.is.not.enabled. |
| 46ae0 | 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 | .Enable.logging.for.the.matched. |
| 46b00 | 70 61 63 6b 65 74 2e 20 49 66 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f | packet..If.this.configuration.co |
| 46b20 | 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 2c 20 74 68 65 6e 20 74 68 65 20 6c | mmand.is.not.present,.then.the.l |
| 46b40 | 6f 67 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e | og.is.not.enabled..Enable.loggin |
| 46b60 | 67 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 73 20 61 6c 6c 6f 63 61 | g.of.IP.address.and.ports.alloca |
| 46b80 | 74 69 6f 6e 73 2e 00 45 6e 61 62 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 56 79 4f 53 20 74 6f | tions..Enable.or.Disable.VyOS.to |
| 46ba0 | 20 62 65 20 3a 72 66 63 3a 60 31 33 33 37 60 20 63 6f 6e 66 6f 72 6d 2e 20 54 68 65 20 66 6f 6c | .be.:rfc:`1337`.conform..The.fol |
| 46bc0 | 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 | lowing.system.parameter.will.be. |
| 46be0 | 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 56 79 4f 53 20 | altered:.Enable.or.Disable.VyOS. |
| 46c00 | 74 6f 20 62 65 20 3a 72 66 63 3a 60 31 33 33 37 60 20 63 6f 6e 66 6f 72 6d 61 6e 74 2e 20 54 68 | to.be.:rfc:`1337`.conformant..Th |
| 46c20 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c | e.following.system.parameter.wil |
| 46c40 | 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 44 69 73 61 62 6c 65 20 | l.be.altered:.Enable.or.Disable. |
| 46c60 | 69 66 20 56 79 4f 53 20 75 73 65 20 49 50 76 34 20 54 43 50 20 53 59 4e 20 43 6f 6f 6b 69 65 73 | if.VyOS.use.IPv4.TCP.SYN.Cookies |
| 46c80 | 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 | ..The.following.system.parameter |
| 46ca0 | 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 | .will.be.altered:.Enable.or.disa |
| 46cc0 | 62 6c 65 20 49 43 4d 50 76 34 20 6f 72 20 49 43 4d 50 76 36 20 72 65 64 69 72 65 63 74 20 6d 65 | ble.ICMPv4.or.ICMPv6.redirect.me |
| 46ce0 | 73 73 61 67 65 73 20 62 65 69 6e 67 20 61 63 63 65 70 74 65 64 20 62 79 20 56 79 4f 53 2e 20 54 | ssages.being.accepted.by.VyOS..T |
| 46d00 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 73 20 77 | he.following.system.parameters.w |
| 46d20 | 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c | ill.be.altered:.Enable.or.disabl |
| 46d40 | 65 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 62 65 69 6e 67 | e.ICMPv4.redirect.messages.being |
| 46d60 | 20 73 65 6e 74 20 62 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 | .sent.by.VyOS.The.following.syst |
| 46d80 | 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e | em.parameter.will.be.altered:.En |
| 46da0 | 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 69 66 20 56 79 4f 53 20 75 73 65 73 20 49 50 76 | able.or.disable.if.VyOS.uses.IPv |
| 46dc0 | 34 20 54 43 50 20 53 59 4e 20 43 6f 6f 6b 69 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | 4.TCP.SYN.Cookies..The.following |
| 46de0 | 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 | .system.parameter.will.be.altere |
| 46e00 | 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 | d:.Enable.or.disable.logging.for |
| 46e20 | 20 74 68 65 20 6d 61 74 63 68 65 64 20 70 61 63 6b 65 74 2e 00 45 6e 61 62 6c 65 20 6f 72 20 64 | .the.matched.packet..Enable.or.d |
| 46e40 | 69 73 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 6d 61 72 74 69 61 6e 20 49 50 | isable.the.logging.of.martian.IP |
| 46e60 | 76 34 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d | v4.packets..The.following.system |
| 46e80 | 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 | .parameter.will.be.altered:.Enab |
| 46ea0 | 6c 65 20 6f 73 70 66 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 73 65 74 20 | le.ospf.on.an.interface.and.set. |
| 46ec0 | 61 73 73 6f 63 69 61 74 65 64 20 61 72 65 61 2e 00 45 6e 61 62 6c 65 20 70 6f 6c 69 63 79 20 66 | associated.area..Enable.policy.f |
| 46ee0 | 6f 72 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 62 79 20 72 65 76 65 72 73 65 64 | or.source.validation.by.reversed |
| 46f00 | 20 70 61 74 68 2c 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 30 | .path,.as.specified.in.:rfc:`370 |
| 46f20 | 34 60 2e 20 43 75 72 72 65 6e 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 70 72 61 63 74 69 63 65 | 4`..Current.recommended.practice |
| 46f40 | 20 69 6e 20 3a 72 66 63 3a 60 33 37 30 34 60 20 69 73 20 74 6f 20 65 6e 61 62 6c 65 20 73 74 72 | .in.:rfc:`3704`.is.to.enable.str |
| 46f60 | 69 63 74 20 6d 6f 64 65 20 74 6f 20 70 72 65 76 65 6e 74 20 49 50 20 73 70 6f 6f 66 69 6e 67 20 | ict.mode.to.prevent.IP.spoofing. |
| 46f80 | 66 72 6f 6d 20 44 44 6f 73 20 61 74 74 61 63 6b 73 2e 20 49 66 20 75 73 69 6e 67 20 61 73 79 6d | from.DDos.attacks..If.using.asym |
| 46fa0 | 6d 65 74 72 69 63 20 72 6f 75 74 69 6e 67 20 6f 72 20 6f 74 68 65 72 20 63 6f 6d 70 6c 69 63 61 | metric.routing.or.other.complica |
| 46fc0 | 74 65 64 20 72 6f 75 74 69 6e 67 2c 20 74 68 65 6e 20 6c 6f 6f 73 65 20 6d 6f 64 65 20 69 73 20 | ted.routing,.then.loose.mode.is. |
| 46fe0 | 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 45 6e 61 62 6c 65 20 72 65 63 65 69 76 69 6e 67 20 50 50 | recommended..Enable.receiving.PP |
| 47000 | 44 55 20 75 73 69 6e 67 20 53 54 42 43 20 28 53 70 61 63 65 20 54 69 6d 65 20 42 6c 6f 63 6b 20 | DU.using.STBC.(Space.Time.Block. |
| 47020 | 43 6f 64 69 6e 67 29 00 45 6e 61 62 6c 65 20 73 61 6d 70 6c 69 6e 67 20 6f 66 20 70 61 63 6b 65 | Coding).Enable.sampling.of.packe |
| 47040 | 74 73 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 74 6f | ts,.which.will.be.transmitted.to |
| 47060 | 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 73 2e 00 45 6e 61 62 6c 65 20 73 65 6e 64 69 6e | .sFlow.collectors..Enable.sendin |
| 47080 | 67 20 50 50 44 55 20 75 73 69 6e 67 20 53 54 42 43 20 28 53 70 61 63 65 20 54 69 6d 65 20 42 6c | g.PPDU.using.STBC.(Space.Time.Bl |
| 470a0 | 6f 63 6b 20 43 6f 64 69 6e 67 29 00 45 6e 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 6f 66 20 43 69 | ock.Coding).Enable.sending.of.Ci |
| 470c0 | 73 63 6f 20 73 74 79 6c 65 20 4e 48 52 50 20 54 72 61 66 66 69 63 20 49 6e 64 69 63 61 74 69 6f | sco.style.NHRP.Traffic.Indicatio |
| 470e0 | 6e 20 70 61 63 6b 65 74 73 2e 20 49 66 20 74 68 69 73 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e | n.packets..If.this.is.enabled.an |
| 47100 | 64 20 6f 70 65 6e 6e 68 72 70 20 64 65 74 65 63 74 73 20 61 20 66 6f 72 77 61 72 64 65 64 20 20 | d.opennhrp.detects.a.forwarded.. |
| 47120 | 70 61 63 6b 65 74 2c 20 69 74 20 77 69 6c 6c 20 73 65 6e 64 20 61 20 6d 65 73 73 61 67 65 20 74 | packet,.it.will.send.a.message.t |
| 47140 | 6f 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 73 65 6e 64 65 72 20 6f 66 20 74 68 65 20 70 61 63 | o.the.original.sender.of.the.pac |
| 47160 | 6b 65 74 20 69 6e 73 74 72 75 63 74 69 6e 67 20 69 74 20 74 6f 20 63 72 65 61 74 65 20 61 20 64 | ket.instructing.it.to.create.a.d |
| 47180 | 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 64 65 73 74 69 6e | irect.connection.with.the.destin |
| 471a0 | 61 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 62 61 73 69 63 61 6c 6c 79 20 61 20 70 72 6f 74 6f | ation..This.is.basically.a.proto |
| 471c0 | 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 49 43 | col.independent.equivalent.of.IC |
| 471e0 | 4d 50 20 72 65 64 69 72 65 63 74 2e 00 45 6e 61 62 6c 65 20 73 70 61 6e 6e 69 6e 67 20 74 72 65 | MP.redirect..Enable.spanning.tre |
| 47200 | 65 20 70 72 6f 74 6f 63 6f 6c 2e 20 53 54 50 20 69 73 20 64 69 73 61 62 6c 65 64 20 62 79 20 64 | e.protocol..STP.is.disabled.by.d |
| 47220 | 65 66 61 75 6c 74 2e 00 45 6e 61 62 6c 65 20 74 68 65 20 4f 70 61 71 75 65 2d 4c 53 41 20 63 61 | efault..Enable.the.Opaque-LSA.ca |
| 47240 | 70 61 62 69 6c 69 74 79 20 28 72 66 63 32 33 37 30 29 2c 20 6e 65 63 65 73 73 61 72 79 20 74 6f | pability.(rfc2370),.necessary.to |
| 47260 | 20 74 72 61 6e 73 70 6f 72 74 20 6c 61 62 65 6c 20 6f 6e 20 49 47 50 00 45 6e 61 62 6c 65 20 74 | .transport.label.on.IGP.Enable.t |
| 47280 | 68 69 73 20 66 65 61 74 75 72 65 20 63 61 75 73 65 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 | his.feature.causes.an.interface. |
| 472a0 | 72 65 73 65 74 2e 00 45 6e 61 62 6c 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6f 66 20 4c 4c | reset..Enable.transmission.of.LL |
| 472c0 | 44 50 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 | DP.information.on.given.`<interf |
| 472e0 | 61 63 65 3e 60 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 73 61 79 20 60 60 61 6c 6c 60 60 20 | ace>`..You.can.also.say.``all``. |
| 47300 | 68 65 72 65 20 73 6f 20 4c 4c 44 50 20 69 73 20 74 75 72 6e 65 64 20 6f 6e 20 6f 6e 20 65 76 65 | here.so.LLDP.is.turned.on.on.eve |
| 47320 | 72 79 20 69 6e 74 65 72 66 61 63 65 2e 00 45 6e 61 62 6c 65 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 | ry.interface..Enabled.on-demand. |
| 47340 | 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 62 72 69 6e 67 20 75 70 20 74 68 65 20 6c | PPPoE.connections.bring.up.the.l |
| 47360 | 69 6e 6b 20 6f 6e 6c 79 20 77 68 65 6e 20 74 72 61 66 66 69 63 20 6e 65 65 64 73 20 74 6f 20 70 | ink.only.when.traffic.needs.to.p |
| 47380 | 61 73 73 20 74 68 69 73 20 6c 69 6e 6b 2e 20 20 49 66 20 74 68 65 20 6c 69 6e 6b 20 66 61 69 6c | ass.this.link...If.the.link.fail |
| 473a0 | 73 20 66 6f 72 20 61 6e 79 20 72 65 61 73 6f 6e 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 | s.for.any.reason,.the.link.is.br |
| 473c0 | 6f 75 67 68 74 20 62 61 63 6b 20 75 70 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6f 6e 63 65 | ought.back.up.automatically.once |
| 473e0 | 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 61 67 | .traffic.passes.the.interface.ag |
| 47400 | 61 69 6e 2e 20 49 66 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 6f 6e 2d 64 65 6d 61 | ain..If.you.configure.an.on-dema |
| 47420 | 6e 64 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 79 6f 75 20 6d 75 73 74 20 61 6c | nd.PPPoE.connection,.you.must.al |
| 47440 | 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 69 64 6c 65 20 74 69 6d 65 6f 75 74 20 70 65 | so.configure.the.idle.timeout.pe |
| 47460 | 72 69 6f 64 2c 20 61 66 74 65 72 20 77 68 69 63 68 20 61 6e 20 69 64 6c 65 20 50 50 50 6f 45 20 | riod,.after.which.an.idle.PPPoE. |
| 47480 | 6c 69 6e 6b 20 77 69 6c 6c 20 62 65 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 2e 20 41 20 6e 6f 6e | link.will.be.disconnected..A.non |
| 474a0 | 2d 7a 65 72 6f 20 69 64 6c 65 20 74 69 6d 65 6f 75 74 20 77 69 6c 6c 20 6e 65 76 65 72 20 64 69 | -zero.idle.timeout.will.never.di |
| 474c0 | 73 63 6f 6e 6e 65 63 74 20 74 68 65 20 6c 69 6e 6b 20 61 66 74 65 72 20 69 74 20 66 69 72 73 74 | sconnect.the.link.after.it.first |
| 474e0 | 20 63 61 6d 65 20 75 70 2e 00 45 6e 61 62 6c 65 73 20 43 69 73 63 6f 20 73 74 79 6c 65 20 61 75 | .came.up..Enables.Cisco.style.au |
| 47500 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 20 4e 48 52 50 20 70 61 63 6b 65 74 73 2e 20 54 68 | thentication.on.NHRP.packets..Th |
| 47520 | 69 73 20 65 6d 62 65 64 73 20 74 68 65 20 73 65 63 72 65 74 20 70 6c 61 69 6e 74 65 78 74 20 70 | is.embeds.the.secret.plaintext.p |
| 47540 | 61 73 73 77 6f 72 64 20 74 6f 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 4e 48 52 50 20 70 61 63 | assword.to.the.outgoing.NHRP.pac |
| 47560 | 6b 65 74 73 2e 20 49 6e 63 6f 6d 69 6e 67 20 4e 48 52 50 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 | kets..Incoming.NHRP.packets.on.t |
| 47580 | 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 61 72 65 20 64 69 73 63 61 72 64 65 64 20 75 6e 6c 65 | his.interface.are.discarded.unle |
| 475a0 | 73 73 20 74 68 65 20 73 65 63 72 65 74 20 70 61 73 73 77 6f 72 64 20 69 73 20 70 72 65 73 65 6e | ss.the.secret.password.is.presen |
| 475c0 | 74 2e 20 4d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 73 65 63 72 65 74 20 | t..Maximum.length.of.the.secret. |
| 475e0 | 69 73 20 38 20 63 68 61 72 61 63 74 65 72 73 2e 00 45 6e 61 62 6c 65 73 20 48 54 54 50 20 68 65 | is.8.characters..Enables.HTTP.he |
| 47600 | 61 6c 74 68 20 63 68 65 63 6b 73 20 75 73 69 6e 67 20 4f 50 54 49 4f 4e 20 48 54 54 50 20 72 65 | alth.checks.using.OPTION.HTTP.re |
| 47620 | 71 75 65 73 74 73 20 61 67 61 69 6e 73 74 20 27 2f 27 20 61 6e 64 20 65 78 70 65 63 74 69 6e 67 | quests.against.'/'.and.expecting |
| 47640 | 20 61 20 73 75 63 63 65 73 73 66 75 6c 20 72 65 73 70 6f 6e 73 65 20 63 6f 64 65 20 69 6e 20 74 | .a.successful.response.code.in.t |
| 47660 | 68 65 20 32 30 30 2d 33 39 39 20 72 61 6e 67 65 2e 00 45 6e 61 62 6c 65 73 20 61 6e 20 4d 50 4c | he.200-399.range..Enables.an.MPL |
| 47680 | 53 20 6c 61 62 65 6c 20 74 6f 20 62 65 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 72 6f 75 74 | S.label.to.be.attached.to.a.rout |
| 476a0 | 65 20 65 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 | e.exported.from.the.current.unic |
| 476c0 | 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 20 49 66 20 74 68 65 20 76 61 6c 75 65 20 73 70 65 | ast.VRF.to.VPN..If.the.value.spe |
| 476e0 | 63 69 66 69 65 64 20 69 73 20 61 75 74 6f 2c 20 74 68 65 20 6c 61 62 65 6c 20 76 61 6c 75 65 20 | cified.is.auto,.the.label.value. |
| 47700 | 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 66 72 6f 6d 20 61 | is.automatically.assigned.from.a |
| 47720 | 20 70 6f 6f 6c 20 6d 61 69 6e 74 61 69 6e 65 64 2e 00 45 6e 61 62 6c 65 73 20 61 6e 64 20 63 6f | .pool.maintained..Enables.and.co |
| 47740 | 6e 66 69 67 75 72 65 73 20 70 2d 73 74 61 74 65 20 64 72 69 76 65 72 20 66 6f 72 20 6d 6f 64 65 | nfigures.p-state.driver.for.mode |
| 47760 | 72 6e 20 41 4d 44 20 52 79 7a 65 6e 20 61 6e 64 20 45 70 79 63 20 43 50 55 73 2e 00 45 6e 61 62 | rn.AMD.Ryzen.and.Epyc.CPUs..Enab |
| 47780 | 6c 65 73 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 | les.bandwidth.shaping.via.RADIUS |
| 477a0 | 2e 00 45 6e 61 62 6c 65 73 20 69 6d 70 6f 72 74 20 6f 72 20 65 78 70 6f 72 74 20 6f 66 20 72 6f | ..Enables.import.or.export.of.ro |
| 477c0 | 75 74 65 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 | utes.between.the.current.unicast |
| 477e0 | 20 56 52 46 20 61 6e 64 20 56 50 4e 2e 00 45 6e 61 62 6c 65 73 20 74 68 65 20 47 65 6e 65 72 69 | .VRF.and.VPN..Enables.the.Generi |
| 47800 | 63 20 50 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 20 28 56 58 4c 41 4e 2d 47 50 45 29 | c.Protocol.extension.(VXLAN-GPE) |
| 47820 | 2e 20 43 75 72 72 65 6e 74 6c 79 2c 20 74 68 69 73 20 69 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 | ..Currently,.this.is.only.suppor |
| 47840 | 74 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6b | ted.together.with.the.external.k |
| 47860 | 65 79 77 6f 72 64 2e 00 45 6e 61 62 6c 65 73 20 74 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e 20 50 | eyword..Enables.the.NTP.daemon.P |
| 47880 | 54 50 20 74 72 61 6e 73 70 6f 72 74 2e 20 54 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e 20 77 69 6c | TP.transport..The.NTP.daemon.wil |
| 478a0 | 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 50 54 50 20 70 | l.listen.on.the.configured.PTP.p |
| 478c0 | 6f 72 74 2e 20 4e 6f 74 65 20 74 68 61 74 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 73 65 72 76 65 | ort..Note.that.one.or.more.serve |
| 478e0 | 72 73 20 6d 75 73 74 20 62 65 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 | rs.must.be.individually.enabled. |
| 47900 | 66 6f 72 20 50 54 50 20 62 65 66 6f 72 65 20 74 68 65 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 73 | for.PTP.before.the.daemon.will.s |
| 47920 | 79 6e 63 68 72 6f 6e 69 7a 65 20 6f 76 65 72 20 74 68 65 20 74 72 61 6e 73 70 6f 72 74 2e 00 45 | ynchronize.over.the.transport..E |
| 47940 | 6e 61 62 6c 65 73 20 74 68 65 20 65 63 68 6f 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6d 6f 64 | nables.the.echo.transmission.mod |
| 47960 | 65 00 45 6e 61 62 6c 65 73 20 74 68 65 20 72 6f 6f 74 20 70 61 72 74 69 74 69 6f 6e 20 61 75 74 | e.Enables.the.root.partition.aut |
| 47980 | 6f 2d 65 78 74 65 6e 73 69 6f 6e 20 61 6e 64 20 72 65 73 69 7a 65 73 20 74 6f 20 74 68 65 20 6d | o-extension.and.resizes.to.the.m |
| 479a0 | 61 78 69 6d 75 6d 20 61 76 61 69 6c 61 62 6c 65 20 73 70 61 63 65 20 6f 6e 20 73 79 73 74 65 6d | aximum.available.space.on.system |
| 479c0 | 20 62 6f 6f 74 2e 00 45 6e 61 62 6c 69 6e 67 20 41 64 76 65 72 74 69 73 6d 65 6e 74 73 00 45 6e | .boot..Enabling.Advertisments.En |
| 479e0 | 61 62 6c 69 6e 67 20 4f 70 65 6e 56 50 4e 20 44 43 4f 00 45 6e 61 62 6c 69 6e 67 20 53 53 48 20 | abling.OpenVPN.DCO.Enabling.SSH. |
| 47a00 | 6f 6e 6c 79 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 | only.requires.you.to.specify.the |
| 47a20 | 20 70 6f 72 74 20 60 60 3c 70 6f 72 74 3e 60 60 20 79 6f 75 20 77 61 6e 74 20 53 53 48 20 74 6f | .port.``<port>``.you.want.SSH.to |
| 47a40 | 20 6c 69 73 74 65 6e 20 6f 6e 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 53 53 48 20 72 75 6e 73 | .listen.on..By.default,.SSH.runs |
| 47a60 | 20 6f 6e 20 70 6f 72 74 20 32 32 2e 00 45 6e 61 62 6c 69 6e 67 20 74 68 69 73 20 66 75 6e 63 74 | .on.port.22..Enabling.this.funct |
| 47a80 | 69 6f 6e 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 72 69 73 6b 20 6f 66 20 62 61 6e 64 77 69 | ion.increases.the.risk.of.bandwi |
| 47aa0 | 64 74 68 20 73 61 74 75 72 61 74 69 6f 6e 2e 00 45 6e 66 6f 72 63 65 20 73 74 72 69 63 74 20 70 | dth.saturation..Enforce.strict.p |
| 47ac0 | 61 74 68 20 63 68 65 63 6b 69 6e 67 00 45 6e 66 6f 72 63 65 20 73 74 72 69 63 74 20 70 61 74 68 | ath.checking.Enforce.strict.path |
| 47ae0 | 20 63 68 65 63 6b 69 6e 67 2e 00 45 6e 73 6c 61 76 65 20 60 3c 6d 65 6d 62 65 72 3e 60 20 69 6e | .checking..Enslave.`<member>`.in |
| 47b00 | 74 65 72 66 61 63 65 20 74 6f 20 62 6f 6e 64 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 45 | terface.to.bond.`<interface>`..E |
| 47b20 | 6e 73 75 72 65 20 74 68 61 74 20 77 68 65 6e 20 63 6f 6d 70 61 72 69 6e 67 20 72 6f 75 74 65 73 | nsure.that.when.comparing.routes |
| 47b40 | 20 77 68 65 72 65 20 62 6f 74 68 20 61 72 65 20 65 71 75 61 6c 20 6f 6e 20 6d 6f 73 74 20 6d 65 | .where.both.are.equal.on.most.me |
| 47b60 | 74 72 69 63 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 6c 6f 63 61 6c 2d 70 72 65 66 2c 20 41 53 5f | trics,.including.local-pref,.AS_ |
| 47b80 | 50 41 54 48 20 6c 65 6e 67 74 68 2c 20 49 47 50 20 63 6f 73 74 2c 20 4d 45 44 2c 20 74 68 61 74 | PATH.length,.IGP.cost,.MED,.that |
| 47ba0 | 20 74 68 65 20 74 69 65 20 69 73 20 62 72 6f 6b 65 6e 20 62 61 73 65 64 20 6f 6e 20 72 6f 75 74 | .the.tie.is.broken.based.on.rout |
| 47bc0 | 65 72 2d 49 44 2e 00 45 6e 74 65 72 70 72 69 73 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 20 | er-ID..Enterprise.installations. |
| 47be0 | 75 73 75 61 6c 6c 79 20 73 68 69 70 20 61 20 6b 69 6e 64 20 6f 66 20 64 69 72 65 63 74 6f 72 79 | usually.ship.a.kind.of.directory |
| 47c00 | 20 73 65 72 76 69 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 74 6f 20 68 61 76 65 20 61 | .service.which.is.used.to.have.a |
| 47c20 | 20 73 69 6e 67 6c 65 20 70 61 73 73 77 6f 72 64 20 73 74 6f 72 65 20 66 6f 72 20 61 6c 6c 20 65 | .single.password.store.for.all.e |
| 47c40 | 6d 70 6c 6f 79 65 65 73 2e 20 56 79 4f 53 20 61 6e 64 20 4f 70 65 6e 56 50 4e 20 73 75 70 70 6f | mployees..VyOS.and.OpenVPN.suppo |
| 47c60 | 72 74 20 75 73 69 6e 67 20 4c 44 41 50 2f 41 44 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 | rt.using.LDAP/AD.as.single.user. |
| 47c80 | 62 61 63 6b 65 6e 64 2e 00 45 72 69 63 73 73 6f 6e 20 63 61 6c 6c 20 69 74 20 4d 41 43 2d 46 6f | backend..Ericsson.call.it.MAC-Fo |
| 47ca0 | 72 63 65 64 20 46 6f 72 77 61 72 64 69 6e 67 20 28 52 46 43 20 44 72 61 66 74 29 00 45 72 72 6f | rced.Forwarding.(RFC.Draft).Erro |
| 47cc0 | 72 00 45 72 72 6f 72 20 63 6f 6e 64 69 74 69 6f 6e 73 00 45 73 74 61 62 6c 69 73 68 65 64 20 73 | r.Error.conditions.Established.s |
| 47ce0 | 65 73 73 69 6f 6e 73 20 63 61 6e 20 62 65 20 76 69 65 77 65 64 20 75 73 69 6e 67 20 74 68 65 20 | essions.can.be.viewed.using.the. |
| 47d00 | 2a 2a 73 68 6f 77 20 6c 32 74 70 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 2a 2a 20 6f 70 | **show.l2tp-server.sessions**.op |
| 47d20 | 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 00 45 74 68 65 72 6e 65 74 00 45 74 68 65 72 | erational.command.Ethernet.Ether |
| 47d40 | 6e 65 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 69 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 | net.flow.control.is.a.mechanism. |
| 47d60 | 66 6f 72 20 74 65 6d 70 6f 72 61 72 69 6c 79 20 73 74 6f 70 70 69 6e 67 20 74 68 65 20 74 72 61 | for.temporarily.stopping.the.tra |
| 47d80 | 6e 73 6d 69 73 73 69 6f 6e 20 6f 66 20 64 61 74 61 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 66 61 | nsmission.of.data.on.Ethernet.fa |
| 47da0 | 6d 69 6c 79 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 65 20 67 6f 61 6c | mily.computer.networks..The.goal |
| 47dc0 | 20 6f 66 20 74 68 69 73 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 74 6f 20 65 6e 73 75 72 65 20 | .of.this.mechanism.is.to.ensure. |
| 47de0 | 7a 65 72 6f 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 69 6e 20 74 68 65 20 70 72 65 73 65 6e 63 65 | zero.packet.loss.in.the.presence |
| 47e00 | 20 6f 66 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 67 65 73 74 69 6f 6e 2e 00 45 74 68 65 72 6e 65 74 | .of.network.congestion..Ethernet |
| 47e20 | 20 6f 70 74 69 6f 6e 73 00 45 74 68 65 72 74 79 70 65 20 60 60 30 78 38 31 30 30 60 60 20 69 73 | .options.Ethertype.``0x8100``.is |
| 47e40 | 20 75 73 65 64 20 66 6f 72 20 60 60 38 30 32 2e 31 71 60 60 20 61 6e 64 20 65 74 68 65 72 74 79 | .used.for.``802.1q``.and.etherty |
| 47e60 | 70 65 20 60 60 30 78 38 38 61 38 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 60 60 38 30 32 2e | pe.``0x88a8``.is.used.for.``802. |
| 47e80 | 31 61 64 60 60 2e 00 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 00 45 76 65 6e 74 20 48 61 6e 64 6c | 1ad``..Event.Handler.Event.Handl |
| 47ea0 | 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 53 74 65 70 73 00 45 76 65 6e 74 20 48 61 6e | er.Configuration.Steps.Event.Han |
| 47ec0 | 64 6c 65 72 20 54 65 63 68 6e 6f 6c 6f 67 79 20 4f 76 65 72 76 69 65 77 00 45 76 65 6e 74 20 68 | dler.Technology.Overview.Event.h |
| 47ee0 | 61 6e 64 6c 65 72 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 65 78 65 63 75 74 65 20 73 63 72 | andler.allows.you.to.execute.scr |
| 47f00 | 69 70 74 73 20 77 68 65 6e 20 61 20 73 74 72 69 6e 67 20 74 68 61 74 20 6d 61 74 63 68 65 73 20 | ipts.when.a.string.that.matches. |
| 47f20 | 61 20 72 65 67 65 78 20 6f 72 20 61 20 72 65 67 65 78 20 77 69 74 68 20 61 20 73 65 72 76 69 63 | a.regex.or.a.regex.with.a.servic |
| 47f40 | 65 20 6e 61 6d 65 20 61 70 70 65 61 72 73 20 69 6e 20 6a 6f 75 72 6e 61 6c 64 20 6c 6f 67 73 2e | e.name.appears.in.journald.logs. |
| 47f60 | 20 59 6f 75 20 63 61 6e 20 70 61 73 73 20 76 61 72 69 61 62 6c 65 73 2c 20 61 72 67 75 6d 65 6e | .You.can.pass.variables,.argumen |
| 47f80 | 74 73 2c 20 61 6e 64 20 61 20 66 75 6c 6c 20 6d 61 74 63 68 69 6e 67 20 73 74 72 69 6e 67 20 74 | ts,.and.a.full.matching.string.t |
| 47fa0 | 6f 20 74 68 65 20 73 63 72 69 70 74 2e 00 45 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 73 63 72 69 | o.the.script..Event.handler.scri |
| 47fc0 | 70 74 00 45 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 | pt.Event.handler.that.monitors.t |
| 47fe0 | 68 65 20 73 74 61 74 65 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2e 00 45 76 65 72 | he.state.of.interface.eth0..Ever |
| 48000 | 79 20 4e 41 54 20 72 75 6c 65 20 68 61 73 20 61 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 6f 6d | y.NAT.rule.has.a.translation.com |
| 48020 | 6d 61 6e 64 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 64 65 66 69 6e 65 | mand.defined..The.address.define |
| 48040 | 64 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 69 73 20 74 68 65 20 61 64 64 | d.for.the.translation.is.the.add |
| 48060 | 72 65 73 73 20 75 73 65 64 20 77 68 65 6e 20 74 68 65 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 | ress.used.when.the.address.infor |
| 48080 | 6d 61 74 69 6f 6e 20 69 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 72 65 70 6c 61 63 65 64 2e 00 | mation.in.a.packet.is.replaced.. |
| 480a0 | 45 76 65 72 79 20 53 4e 41 54 36 36 20 72 75 6c 65 20 68 61 73 20 61 20 74 72 61 6e 73 6c 61 74 | Every.SNAT66.rule.has.a.translat |
| 480c0 | 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 70 72 65 66 69 78 20 | ion.command.defined..The.prefix. |
| 480e0 | 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 69 73 20 74 | defined.for.the.translation.is.t |
| 48100 | 68 65 20 70 72 65 66 69 78 20 75 73 65 64 20 77 68 65 6e 20 74 68 65 20 61 64 64 72 65 73 73 20 | he.prefix.used.when.the.address. |
| 48120 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 72 65 70 6c 61 | information.in.a.packet.is.repla |
| 48140 | 63 65 64 2e e3 80 81 00 45 76 65 72 79 20 53 53 48 20 6b 65 79 20 63 6f 6d 65 73 20 69 6e 20 74 | ced.....Every.SSH.key.comes.in.t |
| 48160 | 68 72 65 65 20 70 61 72 74 73 3a 00 45 76 65 72 79 20 53 53 48 20 70 75 62 6c 69 63 20 6b 65 79 | hree.parts:.Every.SSH.public.key |
| 48180 | 20 70 6f 72 74 69 6f 6e 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 60 3c 69 64 65 6e 74 69 66 | .portion.referenced.by.`<identif |
| 481a0 | 69 65 72 3e 60 20 72 65 71 75 69 72 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ier>`.requires.the.configuration |
| 481c0 | 20 6f 66 20 74 68 65 20 60 3c 74 79 70 65 3e 60 20 6f 66 20 70 75 62 6c 69 63 2d 6b 65 79 20 75 | .of.the.`<type>`.of.public-key.u |
| 481e0 | 73 65 64 2e 20 54 68 69 73 20 74 79 70 65 20 63 61 6e 20 62 65 20 61 6e 79 20 6f 66 3a 00 45 76 | sed..This.type.can.be.any.of:.Ev |
| 48200 | 65 72 79 20 55 44 50 20 70 6f 72 74 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 | ery.UDP.port.which.will.be.forwa |
| 48220 | 72 64 20 72 65 71 75 69 72 65 73 20 6f 6e 65 20 75 6e 69 71 75 65 20 49 44 2e 20 43 75 72 72 65 | rd.requires.one.unique.ID..Curre |
| 48240 | 6e 74 6c 79 20 77 65 20 73 75 70 70 6f 72 74 20 39 39 20 49 44 73 21 00 45 76 65 72 79 20 56 69 | ntly.we.support.99.IDs!.Every.Vi |
| 48260 | 72 74 75 61 6c 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 62 65 68 61 76 65 | rtual.Ethernet.interfaces.behave |
| 48280 | 73 20 6c 69 6b 65 20 61 20 72 65 61 6c 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 | s.like.a.real.Ethernet.interface |
| 482a0 | 2e 20 54 68 65 79 20 63 61 6e 20 68 61 76 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 | ..They.can.have.IPv4/IPv6.addres |
| 482c0 | 73 65 73 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 6f 72 20 63 61 6e 20 72 65 71 75 65 73 74 20 61 | ses.configured,.or.can.request.a |
| 482e0 | 64 64 72 65 73 73 65 73 20 62 79 20 44 48 43 50 2f 20 44 48 43 50 76 36 20 61 6e 64 20 61 72 65 | ddresses.by.DHCP/.DHCPv6.and.are |
| 48300 | 20 61 73 73 6f 63 69 61 74 65 64 2f 6d 61 70 70 65 64 20 77 69 74 68 20 61 20 72 65 61 6c 20 65 | .associated/mapped.with.a.real.e |
| 48320 | 74 68 65 72 6e 65 74 20 70 6f 72 74 2e 20 54 68 69 73 20 61 6c 73 6f 20 6d 61 6b 65 73 20 50 73 | thernet.port..This.also.makes.Ps |
| 48340 | 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 65 72 65 73 | eudo-Ethernet.interfaces.interes |
| 48360 | 74 69 6e 67 20 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 2e 20 41 20 50 73 65 | ting.for.testing.purposes..A.Pse |
| 48380 | 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 | udo-Ethernet.device.will.inherit |
| 483a0 | 20 63 68 61 72 61 63 74 65 72 69 73 74 69 63 73 20 28 73 70 65 65 64 2c 20 64 75 70 6c 65 78 2c | .characteristics.(speed,.duplex, |
| 483c0 | 20 2e 2e 2e 29 20 66 72 6f 6d 20 69 74 73 20 70 68 79 73 69 63 61 6c 20 70 61 72 65 6e 74 20 28 | ....).from.its.physical.parent.( |
| 483e0 | 74 68 65 20 73 6f 20 63 61 6c 6c 65 64 20 6c 69 6e 6b 29 20 69 6e 74 65 72 66 61 63 65 2e 00 45 | the.so.called.link).interface..E |
| 48400 | 76 65 72 79 20 57 57 41 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 71 75 69 72 65 73 20 61 6e | very.WWAN.connection.requires.an |
| 48420 | 20 3a 61 62 62 72 3a 60 41 50 4e 20 28 41 63 63 65 73 73 20 50 6f 69 6e 74 20 4e 61 6d 65 29 60 | .:abbr:`APN.(Access.Point.Name)` |
| 48440 | 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 62 79 20 74 68 65 20 63 6c 69 65 6e 74 20 74 6f 20 | .which.is.used.by.the.client.to. |
| 48460 | 64 69 61 6c 20 69 6e 74 6f 20 74 68 65 20 49 53 50 73 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 | dial.into.the.ISPs.network..This |
| 48480 | 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 70 61 72 61 6d 65 74 65 72 2e 20 43 6f 6e 74 61 | .is.a.mandatory.parameter..Conta |
| 484a0 | 63 74 20 79 6f 75 72 20 53 65 72 76 69 63 65 20 50 72 6f 76 69 64 65 72 20 66 6f 72 20 63 6f 72 | ct.your.Service.Provider.for.cor |
| 484c0 | 72 65 63 74 20 41 50 4e 2e 00 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 | rect.APN..Every.connection/remot |
| 484e0 | 65 2d 61 63 63 65 73 73 20 70 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 | e-access.pool.we.configure.also. |
| 48500 | 6e 65 65 64 73 20 61 20 70 6f 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 64 72 61 77 20 6f | needs.a.pool.where.we.can.draw.o |
| 48520 | 75 72 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 | ur.client.IP.addresses.from..We. |
| 48540 | 70 72 6f 76 69 64 65 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 | provide.one.IPv4.and.IPv6.pool.. |
| 48560 | 41 75 74 68 6f 72 69 7a 65 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 | Authorized.clients.will.receive. |
| 48580 | 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 | an.IPv4.address.from.the.192.0.2 |
| 485a0 | 2e 31 32 38 2f 32 35 20 70 72 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 | .128/25.prefix.and.an.IPv6.addre |
| 485c0 | 73 73 20 66 72 6f 6d 20 74 68 65 20 32 30 30 31 3a 64 62 38 3a 32 30 30 30 3a 3a 2f 36 34 20 70 | ss.from.the.2001:db8:2000::/64.p |
| 485e0 | 72 65 66 69 78 2e 20 57 65 20 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 | refix..We.can.also.send.some.DNS |
| 48600 | 20 6e 61 6d 65 73 65 72 76 65 72 73 20 64 6f 77 6e 20 66 6f 72 20 6f 75 72 20 63 6c 69 65 6e 74 | .nameservers.down.for.our.client |
| 48620 | 73 20 74 6f 20 75 73 65 20 77 69 74 68 20 74 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 | s.to.use.with.their.connection.. |
| 48640 | 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 | Every.connection/remote-access.p |
| 48660 | 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 6e 65 65 64 73 20 61 20 70 6f | ool.we.configure.also.needs.a.po |
| 48680 | 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 64 72 61 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 | ol.where.we.can.draw.our.client. |
| 486a0 | 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 70 72 6f 76 69 64 65 20 6f 6e | IP.addresses.from..We.provide.on |
| 486c0 | 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 | e.IPv4.and.IPv6.pool..Authorized |
| 486e0 | 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 64 | .clients.will.receive.an.IPv4.ad |
| 48700 | 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 2e 31 32 38 2f 32 35 20 70 72 | dress.from.the.192.0.2.128/25.pr |
| 48720 | 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 | efix.and.an.IPv6.address.from.th |
| 48740 | 65 20 32 30 30 31 3a 64 62 38 3a 32 30 30 30 3a 3a 2f 36 34 20 70 72 65 66 69 78 2e 20 57 65 20 | e.2001:db8:2000::/64.prefix..We. |
| 48760 | 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 | can.also.send.some.DNS.nameserve |
| 48780 | 72 73 20 64 6f 77 6e 20 74 6f 20 6f 75 72 20 63 6c 69 65 6e 74 73 20 75 73 65 64 20 6f 6e 20 74 | rs.down.to.our.clients.used.on.t |
| 487a0 | 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f | heir.connection..Every.connectio |
| 487c0 | 6e 2f 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 | n/remote-access.pool.we.configur |
| 487e0 | 65 20 61 6c 73 6f 20 6e 65 65 64 73 20 61 20 70 6f 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e | e.also.needs.a.pool.where.we.can |
| 48800 | 20 64 72 61 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 | .draw.our.client.IP.addresses.fr |
| 48820 | 6f 6d 2e 20 57 65 20 70 72 6f 76 69 64 65 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 | om..We.provide.one.IPv4.and.IPv6 |
| 48840 | 20 70 6f 6f 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 | .pool..Authorized.clients.will.r |
| 48860 | 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 | eceive.an.IPv4.address.from.the. |
| 48880 | 63 6f 6e 66 69 67 75 72 65 64 20 49 50 76 34 20 70 72 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 | configured.IPv4.prefix.and.an.IP |
| 488a0 | 76 36 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 2e | v6.address.from.the.IPv6.prefix. |
| 488c0 | 20 57 65 20 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 | .We.can.also.send.some.DNS.names |
| 488e0 | 65 72 76 65 72 73 20 64 6f 77 6e 20 74 6f 20 6f 75 72 20 63 6c 69 65 6e 74 73 20 75 73 65 64 20 | ervers.down.to.our.clients.used. |
| 48900 | 6f 6e 20 74 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 45 78 61 6d 70 6c 65 00 45 78 61 | on.their.connection..Example.Exa |
| 48920 | 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 45 78 61 6d 70 6c 65 20 43 6f 6e 66 69 | mple.Configuration.Example.Confi |
| 48940 | 67 75 72 61 74 69 6f 6e 3a 20 57 69 46 69 2d 36 20 61 74 20 32 2e 34 47 48 7a 00 45 78 61 6d 70 | guration:.WiFi-6.at.2.4GHz.Examp |
| 48960 | 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 20 57 69 46 69 2d 36 65 20 61 74 20 36 47 48 | le.Configuration:.WiFi-6e.at.6GH |
| 48980 | 7a 00 45 78 61 6d 70 6c 65 20 49 50 76 36 20 6f 6e 6c 79 3a 00 45 78 61 6d 70 6c 65 20 4e 65 74 | z.Example.IPv6.only:.Example.Net |
| 489a0 | 77 6f 72 6b 00 45 78 61 6d 70 6c 65 20 50 61 72 74 69 61 6c 20 43 6f 6e 66 69 67 00 45 78 61 6d | work.Example.Partial.Config.Exam |
| 489c0 | 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 57 69 72 65 47 75 61 72 64 20 | ple.configuration.for.WireGuard. |
| 489e0 | 69 6e 74 65 72 66 61 63 65 73 3a 00 45 78 61 6d 70 6c 65 20 66 6f 72 20 63 68 61 6e 67 69 6e 67 | interfaces:.Example.for.changing |
| 48a00 | 20 72 61 74 65 2d 6c 69 6d 69 74 20 76 69 61 20 52 41 44 49 55 53 20 43 6f 41 2e 00 45 78 61 6d | .rate-limit.via.RADIUS.CoA..Exam |
| 48a20 | 70 6c 65 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 73 69 6d 70 6c 65 20 4c 32 54 | ple.for.configuring.a.simple.L2T |
| 48a40 | 50 20 6f 76 65 72 20 49 50 73 65 63 20 56 50 4e 20 66 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 65 | P.over.IPsec.VPN.for.remote.acce |
| 48a60 | 73 73 20 28 77 6f 72 6b 73 20 77 69 74 68 20 6e 61 74 69 76 65 20 57 69 6e 64 6f 77 73 20 61 6e | ss.(works.with.native.Windows.an |
| 48a80 | 64 20 4d 61 63 20 56 50 4e 20 63 6c 69 65 6e 74 73 29 3a 00 45 78 61 6d 70 6c 65 20 6f 66 20 72 | d.Mac.VPN.clients):.Example.of.r |
| 48aa0 | 65 64 69 72 65 63 74 69 6f 6e 3a 00 45 78 61 6d 70 6c 65 20 6f 66 20 73 65 74 74 69 6e 67 20 75 | edirection:.Example.of.setting.u |
| 48ac0 | 70 20 61 20 62 61 73 69 63 20 43 47 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 20 49 | p.a.basic.CGNAT.configuration:.I |
| 48ae0 | 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 64 65 66 69 | n.the.following.example,.we.defi |
| 48b00 | 6e 65 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 70 6f 6f 6c 20 6e 61 6d 65 64 20 60 65 78 74 2d 31 | ne.an.external.pool.named.`ext-1 |
| 48b20 | 60 20 77 69 74 68 20 6f 6e 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 45 | `.with.one.external.IP.address.E |
| 48b40 | 78 61 6d 70 6c 65 20 73 79 6e 70 72 6f 78 79 00 45 78 61 6d 70 6c 65 2c 20 66 72 6f 6d 20 72 61 | xample.synproxy.Example,.from.ra |
| 48b60 | 64 69 75 73 2d 73 65 72 76 65 72 20 73 65 6e 64 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 64 69 73 | dius-server.send.command.for.dis |
| 48b80 | 63 6f 6e 6e 65 63 74 20 63 6c 69 65 6e 74 20 77 69 74 68 20 75 73 65 72 6e 61 6d 65 20 74 65 73 | connect.client.with.username.tes |
| 48ba0 | 74 00 45 78 61 6d 70 6c 65 3a 00 45 78 61 6d 70 6c 65 3a 20 41 20 68 6f 75 73 65 68 6f 6c 64 20 | t.Example:.Example:.A.household. |
| 48bc0 | 6d 69 67 68 74 20 6e 65 65 64 20 31 30 30 30 20 70 6f 72 74 73 20 74 6f 20 65 6e 73 75 72 65 20 | might.need.1000.ports.to.ensure. |
| 48be0 | 73 6d 6f 6f 74 68 20 6f 70 65 72 61 74 69 6f 6e 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 64 65 | smooth.operation.for.multiple.de |
| 48c00 | 76 69 63 65 73 20 61 6e 64 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 45 78 61 6d 70 6c 65 3a | vices.and.applications..Example: |
| 48c20 | 20 44 65 6c 65 67 61 74 65 20 61 20 2f 36 34 20 70 72 65 66 69 78 20 74 6f 20 69 6e 74 65 72 66 | .Delegate.a./64.prefix.to.interf |
| 48c40 | 61 63 65 20 65 74 68 38 20 77 68 69 63 68 20 77 69 6c 6c 20 75 73 65 20 61 20 6c 6f 63 61 6c 20 | ace.eth8.which.will.use.a.local. |
| 48c60 | 61 64 64 72 65 73 73 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 20 6f 66 20 60 60 3c 70 72 65 | address.on.this.router.of.``<pre |
| 48c80 | 66 69 78 3e 3a 3a 66 66 66 66 60 60 2c 20 61 73 20 74 68 65 20 61 64 64 72 65 73 73 20 36 35 35 | fix>::ffff``,.as.the.address.655 |
| 48ca0 | 33 34 20 77 69 6c 6c 20 63 6f 72 72 65 73 70 6f 6e 64 20 74 6f 20 60 60 66 66 66 66 60 60 20 69 | 34.will.correspond.to.``ffff``.i |
| 48cc0 | 6e 20 68 65 78 61 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 2e 00 45 78 61 6d 70 6c 65 3a | n.hexadecimal.notation..Example: |
| 48ce0 | 20 46 6f 72 20 61 6e 20 7e 38 2c 30 30 30 20 68 6f 73 74 20 6e 65 74 77 6f 72 6b 20 61 20 73 6f | .For.an.~8,000.host.network.a.so |
| 48d00 | 75 72 63 65 20 4e 41 54 20 70 6f 6f 6c 20 6f 66 20 33 32 20 49 50 20 61 64 64 72 65 73 73 65 73 | urce.NAT.pool.of.32.IP.addresses |
| 48d20 | 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 45 78 61 6d 70 6c 65 3a 20 49 66 20 49 44 20 | .is.recommended..Example:.If.ID. |
| 48d40 | 69 73 20 31 20 61 6e 64 20 74 68 65 20 63 6c 69 65 6e 74 20 69 73 20 64 65 6c 65 67 61 74 65 64 | is.1.and.the.client.is.delegated |
| 48d60 | 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 32 30 30 31 3a 64 62 38 3a 66 66 66 66 3a 3a 2f | .an.IPv6.prefix.2001:db8:ffff::/ |
| 48d80 | 34 38 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 63 6f 6d 62 69 6e 65 20 74 68 65 20 74 77 6f 20 | 48,.dhcp6c.will.combine.the.two. |
| 48da0 | 76 61 6c 75 65 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 49 50 76 36 20 70 72 65 66 69 78 | values.into.a.single.IPv6.prefix |
| 48dc0 | 2c 20 32 30 30 31 3a 64 62 38 3a 66 66 66 66 3a 31 3a 3a 2f 36 34 2c 20 61 6e 64 20 77 69 6c 6c | ,.2001:db8:ffff:1::/64,.and.will |
| 48de0 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 70 72 65 66 69 78 20 6f 6e 20 74 68 65 20 73 70 65 | .configure.the.prefix.on.the.spe |
| 48e00 | 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f | cified.interface..Example:.Mirro |
| 48e20 | 72 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 6f 6e 64 31 60 | r.the.inbound.traffic.of.`bond1` |
| 48e40 | 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 | .port.to.`eth3`.Example:.Mirror. |
| 48e60 | 74 68 65 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 72 31 60 20 70 6f 72 | the.inbound.traffic.of.`br1`.por |
| 48e80 | 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 | t.to.`eth3`.Example:.Mirror.the. |
| 48ea0 | 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 65 74 68 31 60 20 70 6f 72 74 20 74 | inbound.traffic.of.`eth1`.port.t |
| 48ec0 | 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 | o.`eth3`.Example:.Mirror.the.out |
| 48ee0 | 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 6f 6e 64 31 60 20 70 6f 72 74 20 74 6f | bound.traffic.of.`bond1`.port.to |
| 48f00 | 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 62 | .`eth3`.Example:.Mirror.the.outb |
| 48f20 | 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 72 31 60 20 70 6f 72 74 20 74 6f 20 60 65 | ound.traffic.of.`br1`.port.to.`e |
| 48f40 | 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 6f 75 74 62 6f 75 6e | th3`.Example:.Mirror.the.outboun |
| 48f60 | 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 65 74 68 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 | d.traffic.of.`eth1`.port.to.`eth |
| 48f80 | 33 60 00 45 78 61 6d 70 6c 65 3a 20 50 72 65 66 69 78 20 4c 69 73 74 73 00 45 78 61 6d 70 6c 65 | 3`.Example:.Prefix.Lists.Example |
| 48fa0 | 3a 20 53 65 74 20 60 65 74 68 30 60 20 6d 65 6d 62 65 72 20 70 6f 72 74 20 74 6f 20 62 65 20 61 | :.Set.`eth0`.member.port.to.be.a |
| 48fc0 | 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 34 00 45 78 61 6d 70 6c 65 3a 20 53 65 74 20 60 65 74 68 30 | llowed.VLAN.4.Example:.Set.`eth0 |
| 48fe0 | 60 20 6d 65 6d 62 65 72 20 70 6f 72 74 20 74 6f 20 62 65 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e | `.member.port.to.be.allowed.VLAN |
| 49000 | 20 36 2d 38 00 45 78 61 6d 70 6c 65 3a 20 53 65 74 20 60 65 74 68 30 60 20 6d 65 6d 62 65 72 20 | .6-8.Example:.Set.`eth0`.member. |
| 49020 | 70 6f 72 74 20 74 6f 20 62 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 32 00 45 78 61 6d 70 6c 65 | port.to.be.native.VLAN.2.Example |
| 49040 | 3a 20 74 6f 20 62 65 20 61 70 70 65 6e 64 65 64 20 69 73 20 73 65 74 20 74 6f 20 60 60 76 79 6f | :.to.be.appended.is.set.to.``vyo |
| 49060 | 73 2e 6e 65 74 60 60 20 61 6e 64 20 74 68 65 20 55 52 4c 20 72 65 63 65 69 76 65 64 20 69 73 20 | s.net``.and.the.URL.received.is. |
| 49080 | 60 60 77 77 77 2f 66 6f 6f 2e 68 74 6d 6c 60 60 2c 20 74 68 65 20 73 79 73 74 65 6d 20 77 69 6c | ``www/foo.html``,.the.system.wil |
| 490a0 | 6c 20 75 73 65 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 2c 20 66 69 6e 61 6c 20 55 52 4c 20 6f | l.use.the.generated,.final.URL.o |
| 490c0 | 66 20 60 60 77 77 77 2e 76 79 6f 73 2e 6e 65 74 2f 66 6f 6f 2e 68 74 6d 6c 60 60 2e 00 45 78 61 | f.``www.vyos.net/foo.html``..Exa |
| 490e0 | 6d 70 6c 65 73 00 45 78 61 6d 70 6c 65 73 20 6f 66 20 70 6f 6c 69 63 69 65 73 20 75 73 61 67 65 | mples.Examples.of.policies.usage |
| 49100 | 3a 00 45 78 61 6d 70 6c 65 73 3a 00 45 78 63 6c 75 64 65 20 49 50 20 61 64 64 72 65 73 73 65 73 | :.Examples:.Exclude.IP.addresses |
| 49120 | 20 66 72 6f 6d 20 60 60 56 52 52 50 20 70 61 63 6b 65 74 73 60 60 2e 20 54 68 69 73 20 6f 70 74 | .from.``VRRP.packets``..This.opt |
| 49140 | 69 6f 6e 20 60 60 65 78 63 6c 75 64 65 64 2d 61 64 64 72 65 73 73 60 60 20 69 73 20 75 73 65 64 | ion.``excluded-address``.is.used |
| 49160 | 20 77 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 73 65 74 20 49 50 76 34 20 2b 20 49 50 76 | .when.you.want.to.set.IPv4.+.IPv |
| 49180 | 36 20 61 64 64 72 65 73 73 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 76 69 72 74 75 61 6c 20 | 6.addresses.on.the.same.virtual. |
| 491a0 | 69 6e 74 65 72 66 61 63 65 20 6f 72 20 77 68 65 6e 20 75 73 65 64 20 6d 6f 72 65 20 74 68 61 6e | interface.or.when.used.more.than |
| 491c0 | 20 32 30 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 45 78 63 6c 75 64 65 20 60 3c 65 78 63 6c | .20.IP.addresses..Exclude.`<excl |
| 491e0 | 75 64 65 2d 70 72 65 66 69 78 3e 60 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 2e | ude-prefix>`.from.`<pd-prefix>`. |
| 49200 | 00 45 78 63 6c 75 64 65 20 61 64 64 72 65 73 73 00 45 78 63 6c 75 64 65 20 74 72 61 66 66 69 63 | .Exclude.address.Exclude.traffic |
| 49220 | 00 45 78 69 74 20 70 6f 6c 69 63 79 20 6f 6e 20 6d 61 74 63 68 3a 20 67 6f 20 74 6f 20 6e 65 78 | .Exit.policy.on.match:.go.to.nex |
| 49240 | 74 20 73 65 71 75 65 6e 63 65 20 6e 75 6d 62 65 72 2e 00 45 78 69 74 20 70 6f 6c 69 63 79 20 6f | t.sequence.number..Exit.policy.o |
| 49260 | 6e 20 6d 61 74 63 68 3a 20 67 6f 20 74 6f 20 72 75 6c 65 20 3c 31 2d 36 35 35 33 35 3e 00 45 78 | n.match:.go.to.rule.<1-65535>.Ex |
| 49280 | 70 65 64 69 74 65 64 20 66 6f 72 77 61 72 64 69 6e 67 20 28 45 46 29 00 45 78 70 6c 61 6e 61 74 | pedited.forwarding.(EF).Explanat |
| 492a0 | 69 6f 6e 00 45 78 70 6c 69 63 69 74 6c 79 20 64 65 63 6c 61 72 65 20 49 44 20 66 6f 72 20 74 68 | ion.Explicitly.declare.ID.for.th |
| 492c0 | 69 73 20 6d 69 6e 69 6f 6e 20 74 6f 20 75 73 65 20 28 64 65 66 61 75 6c 74 3a 20 68 6f 73 74 6e | is.minion.to.use.(default:.hostn |
| 492e0 | 61 6d 65 29 00 45 78 74 65 72 6e 61 6c 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 69 73 20 61 | ame).External.DHCPv6.server.is.a |
| 49300 | 74 20 32 30 30 31 3a 64 62 38 3a 3a 34 00 45 78 74 65 72 6e 61 6c 20 52 6f 75 74 65 20 53 75 6d | t.2001:db8::4.External.Route.Sum |
| 49320 | 6d 61 72 69 73 61 74 69 6f 6e 00 45 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 73 65 71 75 | marisation.External.address.sequ |
| 49340 | 65 6e 63 65 73 00 45 78 74 65 72 6e 61 6c 20 61 74 74 61 63 6b 3a 20 61 6e 20 61 74 74 61 63 6b | ences.External.attack:.an.attack |
| 49360 | 20 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 65 74 20 74 6f 77 61 72 64 73 20 61 6e 20 69 6e | .from.the.internet.towards.an.in |
| 49380 | 74 65 72 6e 61 6c 20 49 50 20 69 73 20 69 64 65 6e 74 69 66 79 2e 20 49 6e 20 74 68 69 73 20 63 | ternal.IP.is.identify..In.this.c |
| 493a0 | 61 73 65 2c 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 77 61 72 64 73 20 73 75 63 | ase,.all.connections.towards.suc |
| 493c0 | 68 20 49 50 20 77 69 6c 6c 20 62 65 20 62 6c 6f 63 6b 65 64 00 46 51 2d 43 6f 44 65 6c 00 46 51 | h.IP.will.be.blocked.FQ-CoDel.FQ |
| 493e0 | 2d 43 6f 44 65 6c 20 66 69 67 68 74 73 20 62 75 66 66 65 72 62 6c 6f 61 74 20 61 6e 64 20 72 65 | -CoDel.fights.bufferbloat.and.re |
| 49400 | 64 75 63 65 73 20 6c 61 74 65 6e 63 79 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 6f | duces.latency.without.the.need.o |
| 49420 | 66 20 63 6f 6d 70 6c 65 78 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2e 20 49 74 20 68 61 73 | f.complex.configurations..It.has |
| 49440 | 20 62 65 63 6f 6d 65 20 74 68 65 20 6e 65 77 20 64 65 66 61 75 6c 74 20 51 75 65 75 65 69 6e 67 | .become.the.new.default.Queueing |
| 49460 | 20 44 69 73 63 69 70 6c 69 6e 65 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 6f | .Discipline.for.the.interfaces.o |
| 49480 | 66 20 73 6f 6d 65 20 47 4e 55 2f 4c 69 6e 75 78 20 64 69 73 74 72 69 62 75 74 69 6f 6e 73 2e 00 | f.some.GNU/Linux.distributions.. |
| 494a0 | 46 51 2d 43 6f 44 65 6c 20 69 73 20 62 61 73 65 64 20 6f 6e 20 61 20 6d 6f 64 69 66 69 65 64 20 | FQ-CoDel.is.based.on.a.modified. |
| 494c0 | 44 65 66 69 63 69 74 20 52 6f 75 6e 64 20 52 6f 62 69 6e 20 28 44 52 52 5f 29 20 71 75 65 75 65 | Deficit.Round.Robin.(DRR_).queue |
| 494e0 | 20 73 63 68 65 64 75 6c 65 72 20 77 69 74 68 20 74 68 65 20 43 6f 44 65 6c 20 41 63 74 69 76 65 | .scheduler.with.the.CoDel.Active |
| 49500 | 20 51 75 65 75 65 20 4d 61 6e 61 67 65 6d 65 6e 74 20 28 41 51 4d 29 20 61 6c 67 6f 72 69 74 68 | .Queue.Management.(AQM).algorith |
| 49520 | 6d 20 6f 70 65 72 61 74 69 6e 67 20 6f 6e 20 65 61 63 68 20 71 75 65 75 65 2e 00 46 51 2d 43 6f | m.operating.on.each.queue..FQ-Co |
| 49540 | 44 65 6c 20 69 73 20 74 75 6e 65 64 20 74 6f 20 72 75 6e 20 6f 6b 20 77 69 74 68 20 69 74 73 20 | Del.is.tuned.to.run.ok.with.its. |
| 49560 | 64 65 66 61 75 6c 74 20 70 61 72 61 6d 65 74 65 72 73 20 61 74 20 31 30 47 62 69 74 20 73 70 65 | default.parameters.at.10Gbit.spe |
| 49580 | 65 64 73 2e 20 49 74 20 6d 69 67 68 74 20 77 6f 72 6b 20 6f 6b 20 74 6f 6f 20 61 74 20 6f 74 68 | eds..It.might.work.ok.too.at.oth |
| 495a0 | 65 72 20 73 70 65 65 64 73 20 77 69 74 68 6f 75 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e | er.speeds.without.configuring.an |
| 495c0 | 79 74 68 69 6e 67 2c 20 62 75 74 20 68 65 72 65 20 77 65 20 77 69 6c 6c 20 65 78 70 6c 61 69 6e | ything,.but.here.we.will.explain |
| 495e0 | 20 73 6f 6d 65 20 63 61 73 65 73 20 77 68 65 6e 20 79 6f 75 20 6d 69 67 68 74 20 77 61 6e 74 20 | .some.cases.when.you.might.want. |
| 49600 | 74 6f 20 74 75 6e 65 20 69 74 73 20 70 61 72 61 6d 65 74 65 72 73 2e 00 46 51 2d 43 6f 64 65 6c | to.tune.its.parameters..FQ-Codel |
| 49620 | 20 69 73 20 61 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 28 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 | .is.a.non-shaping.(work-conservi |
| 49640 | 6e 67 29 20 70 6f 6c 69 63 79 2c 20 73 6f 20 69 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 | ng).policy,.so.it.will.only.be.u |
| 49660 | 73 65 66 75 6c 20 69 66 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 | seful.if.your.outgoing.interface |
| 49680 | 20 69 73 20 72 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 | .is.really.full..If.it.is.not,.V |
| 496a0 | 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 46 | yOS.will.not.own.the.queue.and.F |
| 496c0 | 51 2d 43 6f 64 65 6c 20 77 69 6c 6c 20 68 61 76 65 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 | Q-Codel.will.have.no.effect..If. |
| 496e0 | 74 68 65 72 65 20 69 73 20 62 61 6e 64 77 69 64 74 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 | there.is.bandwidth.available.on. |
| 49700 | 74 68 65 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 | the.physical.link,.you.can.embed |
| 49720 | 5f 20 46 51 2d 43 6f 64 65 6c 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 | _.FQ-Codel.into.a.classful.shapi |
| 49740 | 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 | ng.policy.to.make.sure.it.owns.t |
| 49760 | 68 65 20 71 75 65 75 65 2e 20 49 66 20 79 6f 75 20 61 72 65 20 6e 6f 74 20 73 75 72 65 20 69 66 | he.queue..If.you.are.not.sure.if |
| 49780 | 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 65 6d 62 65 64 20 79 6f 75 72 20 46 51 2d 43 6f 44 65 6c | .you.need.to.embed.your.FQ-CoDel |
| 497a0 | 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 53 68 61 70 65 72 2c 20 64 6f 20 69 74 2e 00 46 52 | .policy.into.a.Shaper,.do.it..FR |
| 497c0 | 52 00 46 52 52 20 6f 66 66 65 72 73 20 6f 6e 6c 79 20 70 61 72 74 69 61 6c 20 73 75 70 70 6f 72 | R.FRR.offers.only.partial.suppor |
| 497e0 | 74 20 66 6f 72 20 73 6f 6d 65 20 6f 66 20 74 68 65 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 | t.for.some.of.the.routing.protoc |
| 49800 | 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 75 73 65 64 20 77 69 74 68 | ol.extensions.that.are.used.with |
| 49820 | 20 4d 50 4c 53 2d 54 45 3b 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 61 20 | .MPLS-TE;.it.does.not.support.a. |
| 49840 | 63 6f 6d 70 6c 65 74 65 20 52 53 56 50 2d 54 45 20 73 6f 6c 75 74 69 6f 6e 2e 00 46 52 52 20 73 | complete.RSVP-TE.solution..FRR.s |
| 49860 | 75 70 70 6f 72 74 73 20 61 20 6e 65 77 20 77 61 79 20 6f 66 20 63 6f 6e 66 69 67 75 72 69 6e 67 | upports.a.new.way.of.configuring |
| 49880 | 20 56 4c 41 4e 2d 74 6f 2d 56 4e 49 20 6d 61 70 70 69 6e 67 73 20 66 6f 72 20 45 56 50 4e 2d 56 | .VLAN-to-VNI.mappings.for.EVPN-V |
| 498a0 | 58 4c 41 4e 2c 20 77 68 65 6e 20 77 6f 72 6b 69 6e 67 20 77 69 74 68 20 74 68 65 20 4c 69 6e 75 | XLAN,.when.working.with.the.Linu |
| 498c0 | 78 20 6b 65 72 6e 65 6c 2e 20 49 6e 20 74 68 69 73 20 6e 65 77 20 77 61 79 2c 20 74 68 65 20 6d | x.kernel..In.this.new.way,.the.m |
| 498e0 | 61 70 70 69 6e 67 20 6f 66 20 61 20 56 4c 41 4e 20 74 6f 20 61 20 3a 61 62 62 72 3a 60 56 4e 49 | apping.of.a.VLAN.to.a.:abbr:`VNI |
| 49900 | 20 28 56 58 4c 41 4e 20 4e 65 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 20 28 6f 72 20 56 | .(VXLAN.Network.Identifier.(or.V |
| 49920 | 58 4c 41 4e 20 53 65 67 6d 65 6e 74 20 49 44 29 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 | XLAN.Segment.ID))`.is.configured |
| 49940 | 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6e 74 61 69 6e 65 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 | .against.a.container.VXLAN.inter |
| 49960 | 66 61 63 65 20 77 68 69 63 68 20 69 73 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 20 3a | face.which.is.referred.to.as.a.: |
| 49980 | 61 62 62 72 3a 60 53 56 44 20 28 53 69 6e 67 6c 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 29 60 | abbr:`SVD.(Single.VXLAN.device)` |
| 499a0 | 2e 00 46 54 50 20 64 61 65 6d 6f 6e 00 46 61 63 69 6c 69 74 69 65 73 00 46 61 63 69 6c 69 74 69 | ..FTP.daemon.Facilities.Faciliti |
| 499c0 | 65 73 20 63 61 6e 20 62 65 20 61 64 6a 75 73 74 65 64 20 74 6f 20 6d 65 65 74 20 74 68 65 20 6e | es.can.be.adjusted.to.meet.the.n |
| 499e0 | 65 65 64 73 20 6f 66 20 74 68 65 20 75 73 65 72 3a 00 46 61 63 69 6c 69 74 79 20 43 6f 64 65 00 | eeds.of.the.user:.Facility.Code. |
| 49a00 | 46 61 69 6c 6f 76 65 72 00 46 61 69 6c 6f 76 65 72 20 52 6f 75 74 65 73 00 46 61 69 6c 6f 76 65 | Failover.Failover.Routes.Failove |
| 49a20 | 72 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 75 73 65 20 66 6f 72 20 63 6f 6e 6e 74 72 61 63 6b | r.mechanism.to.use.for.conntrack |
| 49a40 | 2d 73 79 6e 63 2e 00 46 61 69 6c 6f 76 65 72 20 72 6f 75 74 65 73 20 61 72 65 20 6d 61 6e 75 61 | -sync..Failover.routes.are.manua |
| 49a60 | 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c 20 62 75 74 20 74 68 65 79 20 | lly.configured.routes,.but.they. |
| 49a80 | 69 6e 73 74 61 6c 6c 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 69 66 20 | install.to.the.routing.table.if. |
| 49aa0 | 74 68 65 20 68 65 61 6c 74 68 2d 63 68 65 63 6b 20 74 61 72 67 65 74 20 69 73 20 61 6c 69 76 65 | the.health-check.target.is.alive |
| 49ac0 | 2e 20 49 66 20 74 68 65 20 74 61 72 67 65 74 20 69 73 20 6e 6f 74 20 61 6c 69 76 65 20 74 68 65 | ..If.the.target.is.not.alive.the |
| 49ae0 | 20 72 6f 75 74 65 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 | .route.is.removed.from.the.routi |
| 49b00 | 6e 67 20 74 61 62 6c 65 20 75 6e 74 69 6c 20 74 68 65 20 74 61 72 67 65 74 20 77 69 6c 6c 20 62 | ng.table.until.the.target.will.b |
| 49b20 | 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 46 61 69 6c 6f 76 65 72 20 72 6f 75 74 65 73 20 61 72 65 | e.available..Failover.routes.are |
| 49b40 | 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c 20 62 75 74 | .manually.configured.routes,.but |
| 49b60 | 20 74 68 65 79 20 6f 6e 6c 79 20 69 6e 73 74 61 6c 6c 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e | .they.only.install.to.the.routin |
| 49b80 | 67 20 74 61 62 6c 65 20 69 66 20 74 68 65 20 68 65 61 6c 74 68 2d 63 68 65 63 6b 20 74 61 72 67 | g.table.if.the.health-check.targ |
| 49ba0 | 65 74 20 69 73 20 61 6c 69 76 65 2e 20 49 66 20 74 68 65 20 74 61 72 67 65 74 20 69 73 20 6e 6f | et.is.alive..If.the.target.is.no |
| 49bc0 | 74 20 61 6c 69 76 65 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f | t.alive.the.route.is.removed.fro |
| 49be0 | 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 6e 74 69 6c 20 74 68 65 20 74 61 | m.the.routing.table.until.the.ta |
| 49c00 | 72 67 65 74 20 62 65 63 6f 6d 65 73 20 61 76 61 69 6c 61 62 6c 65 2e 00 46 61 69 72 20 51 75 65 | rget.becomes.available..Fair.Que |
| 49c20 | 75 65 00 46 61 69 72 20 51 75 65 75 65 20 69 73 20 61 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 28 | ue.Fair.Queue.is.a.non-shaping.( |
| 49c40 | 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 6e 67 29 20 70 6f 6c 69 63 79 2c 20 73 6f 20 69 74 20 77 | work-conserving).policy,.so.it.w |
| 49c60 | 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 72 20 6f 75 74 67 6f | ill.only.be.useful.if.your.outgo |
| 49c80 | 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 | ing.interface.is.really.full..If |
| 49ca0 | 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 | .it.is.not,.VyOS.will.not.own.th |
| 49cc0 | 65 20 71 75 65 75 65 20 61 6e 64 20 46 61 69 72 20 51 75 65 75 65 20 77 69 6c 6c 20 68 61 76 65 | e.queue.and.Fair.Queue.will.have |
| 49ce0 | 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 62 61 6e 64 77 69 64 74 | .no.effect..If.there.is.bandwidt |
| 49d00 | 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b | h.available.on.the.physical.link |
| 49d20 | 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 46 61 69 72 2d 51 75 65 75 65 20 69 6e 74 6f | ,.you.can.embed_.Fair-Queue.into |
| 49d40 | 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 | .a.classful.shaping.policy.to.ma |
| 49d60 | 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 65 20 71 75 65 75 65 2e 00 46 61 69 72 20 | ke.sure.it.owns.the.queue..Fair. |
| 49d80 | 51 75 65 75 65 20 69 73 20 61 20 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 6e 67 20 73 63 68 65 64 | Queue.is.a.work-conserving.sched |
| 49da0 | 75 6c 65 72 20 77 68 69 63 68 20 73 63 68 65 64 75 6c 65 73 20 74 68 65 20 74 72 61 6e 73 6d 69 | uler.which.schedules.the.transmi |
| 49dc0 | 73 73 69 6f 6e 20 6f 66 20 70 61 63 6b 65 74 73 20 62 61 73 65 64 20 6f 6e 20 66 6c 6f 77 73 2c | ssion.of.packets.based.on.flows, |
| 49de0 | 20 74 68 61 74 20 69 73 2c 20 69 74 20 62 61 6c 61 6e 63 65 73 20 74 72 61 66 66 69 63 20 64 69 | .that.is,.it.balances.traffic.di |
| 49e00 | 73 74 72 69 62 75 74 69 6e 67 20 69 74 20 74 68 72 6f 75 67 68 20 64 69 66 66 65 72 65 6e 74 20 | stributing.it.through.different. |
| 49e20 | 73 75 62 2d 71 75 65 75 65 73 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 65 6e 73 75 72 65 20 66 61 | sub-queues.in.order.to.ensure.fa |
| 49e40 | 69 72 6e 65 73 73 20 73 6f 20 74 68 61 74 20 65 61 63 68 20 66 6c 6f 77 20 69 73 20 61 62 6c 65 | irness.so.that.each.flow.is.able |
| 49e60 | 20 74 6f 20 73 65 6e 64 20 64 61 74 61 20 69 6e 20 74 75 72 6e 2c 20 70 72 65 76 65 6e 74 69 6e | .to.send.data.in.turn,.preventin |
| 49e80 | 67 20 61 6e 79 20 73 69 6e 67 6c 65 20 6f 6e 65 20 66 72 6f 6d 20 64 72 6f 77 6e 69 6e 67 20 6f | g.any.single.one.from.drowning.o |
| 49ea0 | 75 74 20 74 68 65 20 72 65 73 74 2e 00 46 61 73 74 4e 65 74 4d 6f 6e 00 46 61 73 74 4e 65 74 4d | ut.the.rest..FastNetMon.FastNetM |
| 49ec0 | 6f 6e 20 69 73 20 61 20 68 69 67 68 2d 70 65 72 66 6f 72 6d 61 6e 63 65 20 44 44 6f 53 20 64 65 | on.is.a.high-performance.DDoS.de |
| 49ee0 | 74 65 63 74 6f 72 2f 73 65 6e 73 6f 72 20 62 75 69 6c 74 20 6f 6e 20 74 6f 70 20 6f 66 20 6d 75 | tector/sensor.built.on.top.of.mu |
| 49f00 | 6c 74 69 70 6c 65 20 70 61 63 6b 65 74 20 63 61 70 74 75 72 65 20 65 6e 67 69 6e 65 73 3a 20 4e | ltiple.packet.capture.engines:.N |
| 49f20 | 65 74 46 6c 6f 77 2c 20 49 50 46 49 58 2c 20 73 46 6c 6f 77 2c 20 41 46 5f 50 41 43 4b 45 54 20 | etFlow,.IPFIX,.sFlow,.AF_PACKET. |
| 49f40 | 28 70 6f 72 74 20 6d 69 72 72 6f 72 29 2e 20 49 74 20 63 61 6e 20 64 65 74 65 63 74 20 68 6f 73 | (port.mirror)..It.can.detect.hos |
| 49f60 | 74 73 20 69 6e 20 74 68 65 20 64 65 70 6c 6f 79 65 64 20 6e 65 74 77 6f 72 6b 20 73 65 6e 64 69 | ts.in.the.deployed.network.sendi |
| 49f80 | 6e 67 20 6f 72 20 72 65 63 65 69 76 69 6e 67 20 6c 61 72 67 65 20 76 6f 6c 75 6d 65 73 20 6f 66 | ng.or.receiving.large.volumes.of |
| 49fa0 | 20 74 72 61 66 66 69 63 2c 20 70 61 63 6b 65 74 73 2f 62 79 74 65 73 2f 66 6c 6f 77 73 20 70 65 | .traffic,.packets/bytes/flows.pe |
| 49fc0 | 72 20 73 65 63 6f 6e 64 20 61 6e 64 20 70 65 72 66 6f 72 6d 20 61 20 63 6f 6e 66 69 67 75 72 61 | r.second.and.perform.a.configura |
| 49fe0 | 62 6c 65 20 61 63 74 69 6f 6e 20 74 6f 20 68 61 6e 64 6c 65 20 74 68 61 74 20 65 76 65 6e 74 2c | ble.action.to.handle.that.event, |
| 4a000 | 20 73 75 63 68 20 61 73 20 63 61 6c 6c 69 6e 67 20 61 20 63 75 73 74 6f 6d 20 73 63 72 69 70 74 | .such.as.calling.a.custom.script |
| 4a020 | 2e 00 46 65 61 74 75 72 65 73 20 6f 66 20 74 68 65 20 43 75 72 72 65 6e 74 20 49 6d 70 6c 65 6d | ..Features.of.the.Current.Implem |
| 4a040 | 65 6e 74 61 74 69 6f 6e 00 46 69 65 6c 64 00 46 69 6c 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 | entation.Field.File.identified.b |
| 4a060 | 79 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 20 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 54 53 | y.`<filename>`.containing.the.TS |
| 4a080 | 49 47 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 20 66 6f 72 20 52 46 43 32 31 33 | IG.authentication.key.for.RFC213 |
| 4a0a0 | 36 20 6e 73 75 70 64 61 74 65 20 6f 6e 20 72 65 6d 6f 74 65 20 44 4e 53 20 73 65 72 76 65 72 2e | 6.nsupdate.on.remote.DNS.server. |
| 4a0c0 | 00 46 69 6c 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6b 65 79 66 69 6c 65 3e 60 20 | .File.identified.by.`<keyfile>`. |
| 4a0e0 | 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 73 65 63 72 65 74 20 52 4e 44 43 20 6b 65 79 20 73 | containing.the.secret.RNDC.key.s |
| 4a100 | 68 61 72 65 64 20 77 69 74 68 20 72 65 6d 6f 74 65 20 44 4e 53 20 73 65 72 76 65 72 2e 00 46 69 | hared.with.remote.DNS.server..Fi |
| 4a120 | 6c 74 65 72 20 54 79 70 65 2d 33 20 73 75 6d 6d 61 72 79 2d 4c 53 41 73 20 61 6e 6e 6f 75 6e 63 | lter.Type-3.summary-LSAs.announc |
| 4a140 | 65 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f | ed.to.other.areas.originated.fro |
| 4a160 | 6d 20 69 6e 74 72 61 2d 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 | m.intra-.area.paths.from.specifi |
| 4a180 | 65 64 20 61 72 65 61 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 | ed.area..This.command.makes.sens |
| 4a1a0 | 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 46 69 6c 74 65 72 20 73 79 73 6c 6f 67 20 6d 65 73 | e.in.ABR.only..Filter.syslog.mes |
| 4a1c0 | 73 61 67 65 73 20 62 61 73 65 64 20 6f 6e 20 66 61 63 69 6c 69 74 79 20 61 6e 64 20 6c 65 76 65 | sages.based.on.facility.and.leve |
| 4a1e0 | 6c 2e 00 46 69 6c 74 65 72 20 74 72 61 66 66 69 63 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 | l..Filter.traffic.based.on.sourc |
| 4a200 | 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 69 6c 74 65 72 2d 49 64 | e/destination.address..Filter-Id |
| 4a220 | 3d 32 30 30 30 2f 33 30 30 30 20 28 6d 65 61 6e 73 20 32 30 30 30 4b 62 69 74 20 64 6f 77 6e 2d | =2000/3000.(means.2000Kbit.down- |
| 4a240 | 73 74 72 65 61 6d 20 72 61 74 65 20 61 6e 64 20 33 30 30 30 4b 62 69 74 20 75 70 2d 73 74 72 65 | stream.rate.and.3000Kbit.up-stre |
| 4a260 | 61 6d 20 72 61 74 65 29 00 46 69 6c 74 65 72 2d 49 64 3d 35 30 30 30 2f 34 30 30 30 20 28 6d 65 | am.rate).Filter-Id=5000/4000.(me |
| 4a280 | 61 6e 73 20 35 30 30 30 4b 62 69 74 20 64 6f 77 6e 2d 73 74 72 65 61 6d 20 72 61 74 65 20 61 6e | ans.5000Kbit.down-stream.rate.an |
| 4a2a0 | 64 20 34 30 30 30 4b 62 69 74 20 75 70 2d 73 74 72 65 61 6d 20 72 61 74 65 29 20 49 66 20 61 74 | d.4000Kbit.up-stream.rate).If.at |
| 4a2c0 | 74 72 69 62 75 74 65 20 46 69 6c 74 65 72 2d 49 64 20 72 65 64 65 66 69 6e 65 64 2c 20 72 65 70 | tribute.Filter-Id.redefined,.rep |
| 4a2e0 | 6c 61 63 65 20 69 74 20 69 6e 20 52 41 44 49 55 53 20 43 6f 41 20 72 65 71 75 65 73 74 2e 00 46 | lace.it.in.RADIUS.CoA.request..F |
| 4a300 | 69 6c 74 65 72 69 6e 67 00 46 69 6c 74 65 72 69 6e 67 20 69 73 20 75 73 65 64 20 66 6f 72 20 62 | iltering.Filtering.is.used.for.b |
| 4a320 | 6f 74 68 20 69 6e 70 75 74 20 61 6e 64 20 6f 75 74 70 75 74 20 6f 66 20 74 68 65 20 72 6f 75 74 | oth.input.and.output.of.the.rout |
| 4a340 | 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 4f 6e 63 65 20 66 69 6c 74 65 72 69 6e 67 20 | ing.information..Once.filtering. |
| 4a360 | 69 73 20 64 65 66 69 6e 65 64 2c 20 69 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 69 6e | is.defined,.it.can.be.applied.in |
| 4a380 | 20 61 6e 79 20 64 69 72 65 63 74 69 6f 6e 2e 20 56 79 4f 53 20 6d 61 6b 65 73 20 66 69 6c 74 65 | .any.direction..VyOS.makes.filte |
| 4a3a0 | 72 69 6e 67 20 70 6f 73 73 69 62 6c 65 20 75 73 69 6e 67 20 61 63 6c 73 20 61 6e 64 20 70 72 65 | ring.possible.using.acls.and.pre |
| 4a3c0 | 66 69 78 20 6c 69 73 74 73 2e 00 46 69 6e 61 6c 6c 79 2c 20 74 6f 20 61 70 70 6c 79 20 74 68 65 | fix.lists..Finally,.to.apply.the |
| 4a3e0 | 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 74 6f 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 | .policy.route.to.ingress.traffic |
| 4a400 | 20 6f 6e 20 6f 75 72 20 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2c 20 77 65 20 75 73 65 3a 00 46 | .on.our.LAN.interface,.we.use:.F |
| 4a420 | 69 72 65 77 61 6c 6c 00 46 69 72 65 77 61 6c 6c 20 2d 20 49 50 76 34 20 52 75 6c 65 73 00 46 69 | irewall.Firewall.-.IPv4.Rules.Fi |
| 4a440 | 72 65 77 61 6c 6c 20 2d 20 49 50 76 36 20 52 75 6c 65 73 00 46 69 72 65 77 61 6c 6c 20 43 6f 6e | rewall.-.IPv6.Rules.Firewall.Con |
| 4a460 | 66 69 67 75 72 61 74 69 6f 6e 00 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f | figuration.Firewall.Configuratio |
| 4a480 | 6e 20 28 44 65 70 72 65 63 61 74 65 64 29 00 46 69 72 65 77 61 6c 6c 20 44 65 73 63 72 69 70 74 | n.(Deprecated).Firewall.Descript |
| 4a4a0 | 69 6f 6e 00 46 69 72 65 77 61 6c 6c 20 45 78 63 65 70 74 69 6f 6e 73 00 46 69 72 65 77 61 6c 6c | ion.Firewall.Exceptions.Firewall |
| 4a4c0 | 20 4c 6f 67 73 00 46 69 72 65 77 61 6c 6c 20 52 75 6c 65 73 00 46 69 72 65 77 61 6c 6c 20 62 61 | .Logs.Firewall.Rules.Firewall.ba |
| 4a4e0 | 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 | se.chain.to.configure.firewall.f |
| 4a500 | 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 | iltering.rules.for.transit.traff |
| 4a520 | 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 | ic.is.``set.firewall.ipv4.forwar |
| 4a540 | 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e | d.filter....``,.which.happens.in |
| 4a560 | 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 | .stage.5,.highlighted.with.red.c |
| 4a580 | 6f 6c 6f 72 2e 00 46 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e | olor..Firewall.base.chain.to.con |
| 4a5a0 | 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 | figure.firewall.filtering.rules. |
| 4a5c0 | 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 | for.transit.traffic.is.``set.fir |
| 4a5e0 | 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c | ewall.ipv6.forward.filter....``, |
| 4a600 | 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c | .which.happens.in.stage.5,.highl |
| 4a620 | 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 69 72 65 77 61 6c 6c 20 | ighted.with.red.color..Firewall. |
| 4a640 | 64 79 6e 61 6d 69 63 20 67 72 6f 75 70 73 20 61 72 65 20 64 69 66 66 65 72 65 6e 74 20 66 72 6f | dynamic.groups.are.different.fro |
| 4a660 | 6d 20 61 6c 6c 20 74 68 65 20 67 72 6f 75 70 73 20 64 65 66 69 6e 65 64 20 70 72 65 76 69 6f 75 | m.all.the.groups.defined.previou |
| 4a680 | 73 6c 79 20 62 65 63 61 75 73 65 2c 20 6e 6f 74 20 6f 6e 6c 79 20 74 68 65 79 20 63 61 6e 20 62 | sly.because,.not.only.they.can.b |
| 4a6a0 | 65 20 75 73 65 64 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 6e 20 | e.used.as.source/destination.in. |
| 4a6c0 | 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 62 75 74 20 6d 65 6d 62 65 72 73 20 6f 66 20 74 | firewall.rules,.but.members.of.t |
| 4a6e0 | 68 65 73 65 20 67 72 6f 75 70 73 20 61 72 65 20 6e 6f 74 20 64 65 66 69 6e 65 64 20 73 74 61 74 | hese.groups.are.not.defined.stat |
| 4a700 | 69 63 61 6c 6c 79 20 75 73 69 6e 67 20 76 79 6f 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e | ically.using.vyos.configuration. |
| 4a720 | 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 | .Firewall.groups.Firewall.groups |
| 4a740 | 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 | .represent.collections.of.IP.add |
| 4a760 | 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 | resses,.networks,.ports,.mac.add |
| 4a780 | 72 65 73 73 65 73 20 6f 72 20 64 6f 6d 61 69 6e 73 2e 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c | resses.or.domains..Once.created, |
| 4a7a0 | 20 61 20 67 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 | .a.group.can.be.referenced.by.fi |
| 4a7c0 | 72 65 77 61 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c | rewall,.nat.and.policy.route.rul |
| 4a7e0 | 65 73 20 61 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 | es.as.either.a.source.or.destina |
| 4a800 | 74 69 6f 6e 20 6d 61 74 63 68 65 72 2e 20 4d 65 6d 62 65 72 73 20 63 61 6e 20 62 65 20 61 64 64 | tion.matcher..Members.can.be.add |
| 4a820 | 65 64 20 6f 72 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 61 20 67 72 6f 75 70 20 77 69 74 68 6f | ed.or.removed.from.a.group.witho |
| 4a840 | 75 74 20 63 68 61 6e 67 65 73 20 74 6f 2c 20 6f 72 20 74 68 65 20 6e 65 65 64 20 74 6f 20 72 65 | ut.changes.to,.or.the.need.to.re |
| 4a860 | 6c 6f 61 64 2c 20 69 6e 64 69 76 69 64 75 61 6c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e | load,.individual.firewall.rules. |
| 4a880 | 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 | .Firewall.groups.represent.colle |
| 4a8a0 | 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 | ctions.of.IP.addresses,.networks |
| 4a8c0 | 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 20 | ,.ports,.mac.addresses,.domains. |
| 4a8e0 | 6f 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c 20 61 20 67 | or.interfaces..Once.created,.a.g |
| 4a900 | 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 72 65 77 61 | roup.can.be.referenced.by.firewa |
| 4a920 | 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c 65 73 20 61 | ll,.nat.and.policy.route.rules.a |
| 4a940 | 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e | s.either.a.source.or.destination |
| 4a960 | 20 6d 61 74 63 68 65 72 2c 20 61 6e 64 20 61 73 20 69 6e 62 70 75 6e 64 2f 6f 75 74 62 6f 75 6e | .matcher,.and.as.inbpund/outboun |
| 4a980 | 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 | d.in.the.case.of.interface.group |
| 4a9a0 | 2e 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c | ..Firewall.groups.represent.coll |
| 4a9c0 | 65 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b | ections.of.IP.addresses,.network |
| 4a9e0 | 73 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 | s,.ports,.mac.addresses,.domains |
| 4aa00 | 20 6f 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 63 65 20 63 72 65 61 74 65 64 2c 20 61 20 | .or.interfaces..Once.created,.a. |
| 4aa20 | 67 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 66 69 72 65 77 | group.can.be.referenced.by.firew |
| 4aa40 | 61 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 72 75 6c 65 73 20 | all,.nat.and.policy.route.rules. |
| 4aa60 | 61 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f | as.either.a.source.or.destinatio |
| 4aa80 | 6e 20 6d 61 74 63 68 65 72 2c 20 61 6e 64 2f 6f 72 20 61 73 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 | n.matcher,.and/or.as.inbound/out |
| 4aaa0 | 62 6f 75 6e 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 67 | bound.in.the.case.of.interface.g |
| 4aac0 | 72 6f 75 70 2e 00 46 69 72 65 77 61 6c 6c 20 6d 61 72 6b 2e 20 49 74 20 70 6f 73 73 69 62 6c 65 | roup..Firewall.mark..It.possible |
| 4aae0 | 20 74 6f 20 6c 6f 61 64 62 61 6c 61 6e 63 69 6e 67 20 74 72 61 66 66 69 63 20 62 61 73 65 64 20 | .to.loadbalancing.traffic.based. |
| 4ab00 | 6f 6e 20 60 60 66 77 6d 61 72 6b 60 60 20 76 61 6c 75 65 00 46 69 72 65 77 61 6c 6c 20 70 6f 6c | on.``fwmark``.value.Firewall.pol |
| 4ab20 | 69 63 79 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 74 | icy.can.also.be.applied.to.the.t |
| 4ab40 | 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 60 6c 6f 63 61 6c 60 2c 20 60 69 6e | unnel.interface.for.`local`,.`in |
| 4ab60 | 60 2c 20 61 6e 64 20 60 6f 75 74 60 20 64 69 72 65 63 74 69 6f 6e 73 20 61 6e 64 20 66 75 6e 63 | `,.and.`out`.directions.and.func |
| 4ab80 | 74 69 6f 6e 73 20 69 64 65 6e 74 69 63 61 6c 6c 79 20 74 6f 20 65 74 68 65 72 6e 65 74 20 69 6e | tions.identically.to.ethernet.in |
| 4aba0 | 74 65 72 66 61 63 65 73 2e 00 46 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 72 65 20 77 72 69 | terfaces..Firewall.rules.are.wri |
| 4abc0 | 74 74 65 6e 20 61 73 20 6e 6f 72 6d 61 6c 2c 20 75 73 69 6e 67 20 74 68 65 20 69 6e 74 65 72 6e | tten.as.normal,.using.the.intern |
| 4abe0 | 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 6f 66 20 6f | al.IP.address.as.the.source.of.o |
| 4ac00 | 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 61 6e 64 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f | utbound.rules.and.the.destinatio |
| 4ac20 | 6e 20 6f 66 20 69 6e 62 6f 75 6e 64 20 72 75 6c 65 73 2e 00 46 69 72 65 77 61 6c 6c 20 72 75 6c | n.of.inbound.rules..Firewall.rul |
| 4ac40 | 65 73 20 66 6f 72 20 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 00 46 69 72 65 77 61 6c 6c 2d | es.for.Destination.NAT.Firewall- |
| 4ac60 | 4c 65 67 61 63 79 00 46 69 72 6d 77 61 72 65 20 55 70 64 61 74 65 00 46 69 72 73 74 20 68 6f 70 | Legacy.Firmware.Update.First.hop |
| 4ac80 | 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 61 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2e 00 | .interface.of.a.route.to.match.. |
| 4aca0 | 46 69 72 73 74 20 6f 66 20 61 6c 6c 20 79 6f 75 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 | First.of.all.you.must.configure. |
| 4acc0 | 42 47 50 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 | BGP.router.with.the.:abbr:`ASN.( |
| 4ace0 | 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 2e 20 54 68 65 20 | Autonomous.System.Number)`..The. |
| 4ad00 | 41 53 20 6e 75 6d 62 65 72 20 69 73 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 74 | AS.number.is.an.identifier.for.t |
| 4ad20 | 68 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 2e 20 54 68 65 20 42 47 50 20 70 72 | he.autonomous.system..The.BGP.pr |
| 4ad40 | 6f 74 6f 63 6f 6c 20 75 73 65 73 20 74 68 65 20 41 53 20 6e 75 6d 62 65 72 20 66 6f 72 20 64 65 | otocol.uses.the.AS.number.for.de |
| 4ad60 | 74 65 63 74 69 6e 67 20 77 68 65 74 68 65 72 20 74 68 65 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 | tecting.whether.the.BGP.connecti |
| 4ad80 | 6f 6e 20 69 73 20 69 6e 74 65 72 6e 61 6c 20 6f 72 20 65 78 74 65 72 6e 61 6c 2e 20 56 79 4f 53 | on.is.internal.or.external..VyOS |
| 4ada0 | 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 | .does.not.have.a.special.command |
| 4adc0 | 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 42 47 50 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 42 | .to.start.the.BGP.process..The.B |
| 4ade0 | 47 50 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 | GP.process.starts.when.the.first |
| 4ae00 | 20 6e 65 69 67 68 62 6f 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 46 69 72 73 74 20 6f | .neighbor.is.configured..First.o |
| 4ae20 | 66 20 61 6c 6c 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 43 41 20 72 6f | f.all,.we.need.to.create.a.CA.ro |
| 4ae40 | 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 | ot.certificate.and.server.certif |
| 4ae60 | 69 63 61 74 65 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 73 69 64 65 2e 00 46 69 72 73 74 20 | icate.on.the.server.side..First. |
| 4ae80 | 73 63 65 6e 61 72 69 6f 3a 20 61 70 70 6c 79 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 20 | scenario:.apply.destination.NAT. |
| 4aea0 | 66 6f 72 20 61 6c 6c 20 48 54 54 50 20 74 72 61 66 66 69 63 20 63 6f 6d 6d 69 6e 67 20 74 68 72 | for.all.HTTP.traffic.comming.thr |
| 4aec0 | 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2c 20 61 6e 64 20 75 73 65 72 20 34 20 | ough.interface.eth0,.and.user.4. |
| 4aee0 | 62 61 63 6b 65 6e 64 73 2e 20 46 69 72 73 74 20 62 61 63 6b 65 6e 64 20 73 68 6f 75 6c 64 20 72 | backends..First.backend.should.r |
| 4af00 | 65 63 65 69 76 65 64 20 33 30 25 20 6f 66 20 74 68 65 20 72 65 71 75 65 73 74 2c 20 73 65 63 6f | eceived.30%.of.the.request,.seco |
| 4af20 | 6e 64 20 62 61 63 6b 65 6e 64 20 73 68 6f 75 6c 64 20 67 65 74 20 32 30 25 2c 20 74 68 69 72 64 | nd.backend.should.get.20%,.third |
| 4af40 | 20 31 35 25 20 61 6e 64 20 74 68 65 20 66 6f 75 72 74 68 20 33 35 25 20 57 65 20 77 69 6c 6c 20 | .15%.and.the.fourth.35%.We.will. |
| 4af60 | 75 73 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 | use.source.and.destination.addre |
| 4af80 | 73 73 20 66 6f 72 20 68 61 73 68 20 67 65 6e 65 72 61 74 69 6f 6e 2e 00 46 69 72 73 74 20 73 74 | ss.for.hash.generation..First.st |
| 4afa0 | 65 70 73 00 46 69 72 73 74 20 74 68 65 20 4f 54 50 20 6b 65 79 73 20 6d 75 73 74 20 62 65 20 67 | eps.First.the.OTP.keys.must.be.g |
| 4afc0 | 65 6e 65 72 61 74 65 64 20 61 6e 64 20 73 65 6e 74 20 74 6f 20 74 68 65 20 75 73 65 72 20 61 6e | enerated.and.sent.to.the.user.an |
| 4afe0 | 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 46 69 72 73 74 20 77 65 | d.to.the.configuration:.First.we |
| 4b000 | 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 62 61 73 69 63 20 73 65 74 74 69 | .need.to.specify.the.basic.setti |
| 4b020 | 6e 67 73 2e 20 31 31 39 34 2f 55 44 50 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 2e 20 54 68 | ngs..1194/UDP.is.the.default..Th |
| 4b040 | 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 6f 70 74 69 6f 6e 20 69 | e.``persistent-tunnel``.option.i |
| 4b060 | 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 61 73 20 69 74 20 70 72 65 76 65 6e 74 73 20 74 68 | s.recommended,.as.it.prevents.th |
| 4b080 | 65 20 54 55 4e 2f 54 41 50 20 64 65 76 69 63 65 20 66 72 6f 6d 20 63 6c 6f 73 69 6e 67 20 6f 6e | e.TUN/TAP.device.from.closing.on |
| 4b0a0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 73 65 74 73 20 6f 72 20 64 61 65 6d 6f 6e 20 72 65 6c | .connection.resets.or.daemon.rel |
| 4b0c0 | 6f 61 64 73 2e 00 46 69 72 73 74 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 | oads..First.we.need.to.specify.t |
| 4b0e0 | 68 65 20 62 61 73 69 63 20 73 65 74 74 69 6e 67 73 2e 20 31 31 39 34 2f 55 44 50 20 69 73 20 74 | he.basic.settings..1194/UDP.is.t |
| 4b100 | 68 65 20 64 65 66 61 75 6c 74 2e 20 54 68 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e | he.default..The.``persistent-tun |
| 4b120 | 6e 65 6c 60 60 20 6f 70 74 69 6f 6e 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 69 74 20 | nel``.option.is.recommended,.it. |
| 4b140 | 70 72 65 76 65 6e 74 73 20 74 68 65 20 54 55 4e 2f 54 41 50 20 64 65 76 69 63 65 20 66 72 6f 6d | prevents.the.TUN/TAP.device.from |
| 4b160 | 20 63 6c 6f 73 69 6e 67 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 73 65 74 73 20 6f 72 | .closing.on.connection.resets.or |
| 4b180 | 20 64 61 65 6d 6f 6e 20 72 65 6c 6f 61 64 73 2e 00 46 69 72 73 74 20 79 6f 75 20 77 69 6c 6c 20 | .daemon.reloads..First.you.will. |
| 4b1a0 | 6e 65 65 64 20 74 6f 20 64 65 70 6c 6f 79 20 61 6e 20 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 | need.to.deploy.an.RPKI.validator |
| 4b1c0 | 20 66 6f 72 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 74 6f 20 75 73 65 2e 20 4e 4c 6e 65 74 20 | .for.your.routers.to.use..NLnet. |
| 4b1e0 | 4c 61 62 73 20 70 72 6f 76 69 64 65 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 73 6f | Labs.provides.a.collection.of.so |
| 4b200 | 66 74 77 61 72 65 5f 20 79 6f 75 20 63 61 6e 20 63 6f 6d 70 61 72 65 20 61 6e 64 20 73 65 74 74 | ftware_.you.can.compare.and.sett |
| 4b220 | 6c 65 20 6f 6e 20 6f 6e 65 2e 20 4f 6e 63 65 20 79 6f 75 72 20 73 65 72 76 65 72 20 69 73 20 72 | le.on.one..Once.your.server.is.r |
| 4b240 | 75 6e 6e 69 6e 67 20 79 6f 75 20 63 61 6e 20 73 74 61 72 74 20 76 61 6c 69 64 61 74 69 6e 67 20 | unning.you.can.start.validating. |
| 4b260 | 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 46 69 72 73 74 20 79 6f 75 20 77 69 6c 6c 20 6e 65 | announcements..First.you.will.ne |
| 4b280 | 65 64 20 74 6f 20 64 65 70 6c 6f 79 20 61 6e 20 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 20 66 | ed.to.deploy.an.RPKI.validator.f |
| 4b2a0 | 6f 72 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 74 6f 20 75 73 65 2e 20 54 68 65 20 52 49 50 45 | or.your.routers.to.use..The.RIPE |
| 4b2c0 | 20 4e 43 43 20 68 65 6c 70 66 75 6c 6c 79 20 70 72 6f 76 69 64 65 20 60 73 6f 6d 65 20 69 6e 73 | .NCC.helpfully.provide.`some.ins |
| 4b2e0 | 74 72 75 63 74 69 6f 6e 73 60 5f 20 74 6f 20 67 65 74 20 79 6f 75 20 73 74 61 72 74 65 64 20 77 | tructions`_.to.get.you.started.w |
| 4b300 | 69 74 68 20 73 65 76 65 72 61 6c 20 64 69 66 66 65 72 65 6e 74 20 6f 70 74 69 6f 6e 73 2e 20 20 | ith.several.different.options... |
| 4b320 | 4f 6e 63 65 20 79 6f 75 72 20 73 65 72 76 65 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 79 6f 75 20 | Once.your.server.is.running.you. |
| 4b340 | 63 61 6e 20 73 74 61 72 74 20 76 61 6c 69 64 61 74 69 6e 67 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e | can.start.validating.announcemen |
| 4b360 | 74 73 2e 00 46 69 72 73 74 2c 20 61 6c 6c 20 74 72 61 66 66 69 63 20 69 73 20 72 65 63 65 69 76 | ts..First,.all.traffic.is.receiv |
| 4b380 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 69 74 20 69 73 20 70 72 6f 63 | ed.by.the.router,.and.it.is.proc |
| 4b3a0 | 65 73 73 65 64 20 69 6e 20 74 68 65 20 2a 2a 70 72 65 72 6f 75 74 69 6e 67 2a 2a 20 73 65 63 74 | essed.in.the.**prerouting**.sect |
| 4b3c0 | 69 6f 6e 2e 00 46 69 72 73 74 2c 20 6f 6e 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 72 75 6e 20 | ion..First,.on.both.routers.run. |
| 4b3e0 | 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 22 67 65 6e 65 72 61 74 | the.operational.command."generat |
| 4b400 | 65 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 6e 73 74 61 6c 6c 20 3c 6b 65 79 2d 70 61 69 72 | e.pki.key-pair.install.<key-pair |
| 4b420 | 20 6e 61 6d 3e 3e 22 2e 20 59 6f 75 20 6d 61 79 20 63 68 6f 6f 73 65 20 64 69 66 66 65 72 65 6e | .nam>>"..You.may.choose.differen |
| 4b440 | 74 20 6c 65 6e 67 74 68 20 74 68 61 6e 20 32 30 34 38 20 6f 66 20 63 6f 75 72 73 65 2e 00 46 69 | t.length.than.2048.of.course..Fi |
| 4b460 | 72 73 74 2c 20 6f 6e 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 72 75 6e 20 74 68 65 20 6f 70 65 | rst,.on.both.routers.run.the.ope |
| 4b480 | 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 22 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6b | rational.command."generate.pki.k |
| 4b4a0 | 65 79 2d 70 61 69 72 20 69 6e 73 74 61 6c 6c 20 3c 6b 65 79 2d 70 61 69 72 20 6e 61 6d 65 3e 22 | ey-pair.install.<key-pair.name>" |
| 4b4c0 | 2e 20 59 6f 75 20 6d 61 79 20 63 68 6f 6f 73 65 20 64 69 66 66 65 72 65 6e 74 20 6c 65 6e 67 74 | ..You.may.choose.different.lengt |
| 4b4e0 | 68 20 74 68 61 6e 20 32 30 34 38 20 6f 66 20 63 6f 75 72 73 65 2e 00 46 69 72 73 74 2c 20 6f 6e | h.than.2048.of.course..First,.on |
| 4b500 | 65 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 73 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 6b 65 | e.of.the.systems.generate.the.ke |
| 4b520 | 79 20 75 73 69 6e 67 20 74 68 65 20 3a 72 65 66 3a 60 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6f | y.using.the.:ref:`generate.pki.o |
| 4b540 | 70 65 6e 76 70 6e 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 3c 63 6f 6e 66 69 67 75 72 61 74 69 | penvpn.shared-secret<configurati |
| 4b560 | 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 3e 60 20 63 6f 6d 6d 61 6e 64 2e 20 4f 6e 63 65 | on/pki/index:pki>`.command..Once |
| 4b580 | 20 67 65 6e 65 72 61 74 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 69 6e 73 | .generated,.you.will.need.to.ins |
| 4b5a0 | 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 | tall.this.key.on.the.local.syste |
| 4b5c0 | 6d 2c 20 74 68 65 6e 20 63 6f 70 79 20 61 6e 64 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 | m,.then.copy.and.install.this.ke |
| 4b5e0 | 79 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 2e 00 46 69 72 73 74 2c 20 77 | y.to.the.remote.router..First,.w |
| 4b600 | 65 20 63 72 65 61 74 65 20 74 68 65 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 | e.create.the.root.certificate.au |
| 4b620 | 74 68 6f 72 69 74 79 2e 00 46 69 72 73 74 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 | thority..First,.you.need.to.gene |
| 4b640 | 72 61 74 65 20 61 20 6b 65 79 20 62 79 20 72 75 6e 6e 69 6e 67 20 60 60 72 75 6e 20 67 65 6e 65 | rate.a.key.by.running.``run.gene |
| 4b660 | 72 61 74 65 20 70 6b 69 20 6f 70 65 6e 76 70 6e 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 69 | rate.pki.openvpn.shared-secret.i |
| 4b680 | 6e 73 74 61 6c 6c 20 3c 6e 61 6d 65 3e 60 60 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 | nstall.<name>``.from.configurati |
| 4b6a0 | 6f 6e 20 6d 6f 64 65 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 61 6e 79 20 6e 61 6d 65 2c 20 77 | on.mode..You.can.use.any.name,.w |
| 4b6c0 | 65 20 77 69 6c 6c 20 75 73 65 20 60 60 73 32 73 60 60 2e 00 46 6c 61 73 68 00 46 6c 61 73 68 20 | e.will.use.``s2s``..Flash.Flash. |
| 4b6e0 | 4f 76 65 72 72 69 64 65 00 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f | Override.FlexVPN.vendor.ID.paylo |
| 4b700 | 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 20 69 73 20 72 65 71 75 69 72 | ad.(IKEv2.only),.which.is.requir |
| 4b720 | 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 | ed.in.order.to.make.Cisco.brand. |
| 4b740 | 64 65 76 69 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 | devices.allow.negotiating.a.loca |
| 4b760 | 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 | l.traffic.selector.(from.strongS |
| 4b780 | 77 61 6e 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 | wan's.point.of.view).that.is.not |
| 4b7a0 | 20 74 68 65 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 | .the.assigned.virtual.IP.address |
| 4b7c0 | 20 69 66 20 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 71 75 65 73 74 65 64 | .if.such.an.address.is.requested |
| 4b7e0 | 20 62 79 20 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 | .by.strongSwan..Sending.the.Cisc |
| 4b800 | 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 | o.FlexVPN.vendor.ID.prevents.the |
| 4b820 | 20 70 65 65 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 | .peer.from.narrowing.the.initiat |
| 4b840 | 6f 72 27 73 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 | or's.local.traffic.selector.and. |
| 4b860 | 61 6c 6c 6f 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 | allows.it.to.e.g..negotiate.a.TS |
| 4b880 | 20 6f 66 20 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 | .of.0.0.0.0/0.==.0.0.0.0/0.inste |
| 4b8a0 | 61 64 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 77 69 74 68 20 61 20 | ad..This.has.been.tested.with.a. |
| 4b8c0 | 22 74 75 6e 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 | "tunnel.mode.ipsec.ipv4".Cisco.t |
| 4b8e0 | 65 6d 70 6c 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 | emplate.but.should.also.work.for |
| 4b900 | 20 47 52 45 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 46 6c 6f 77 20 41 63 63 6f 75 6e 74 | .GRE.encapsulation;.Flow.Account |
| 4b920 | 69 6e 67 00 46 6c 6f 77 20 45 78 70 6f 72 74 00 46 6c 6f 77 20 61 6e 64 20 70 61 63 6b 65 74 2d | ing.Flow.Export.Flow.and.packet- |
| 4b940 | 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 | based.balancing.Flows.are.define |
| 4b960 | 64 20 62 79 20 73 6f 75 72 63 65 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 68 6f 73 74 20 70 61 69 | d.by.source-destination.host.pai |
| 4b980 | 72 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 | rs..Flows.are.defined.by.the.5-t |
| 4b9a0 | 75 70 6c 65 2e 20 46 61 69 72 6e 65 73 73 20 69 73 20 61 70 70 6c 69 65 64 20 66 69 72 73 74 20 | uple..Fairness.is.applied.first. |
| 4b9c0 | 6f 76 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 6e | over.destination.addresses,.then |
| 4b9e0 | 20 6f 76 65 72 20 69 6e 64 69 76 69 64 75 61 6c 20 66 6c 6f 77 73 2e 00 46 6c 6f 77 73 20 61 72 | .over.individual.flows..Flows.ar |
| 4ba00 | 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 75 70 6c 65 2e 20 46 61 69 72 6e 65 | e.defined.by.the.5-tuple..Fairne |
| 4ba20 | 73 73 20 69 73 20 61 70 70 6c 69 65 64 20 66 69 72 73 74 20 6f 76 65 72 20 73 6f 75 72 63 65 20 | ss.is.applied.first.over.source. |
| 4ba40 | 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 6e 20 6f 76 65 72 20 69 6e 64 69 76 69 64 75 61 6c 20 | addresses,.then.over.individual. |
| 4ba60 | 66 6c 6f 77 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 | flows..Flows.are.defined.by.the. |
| 4ba80 | 65 6e 74 69 72 65 20 35 2d 74 75 70 6c 65 20 28 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 | entire.5-tuple.(source.IP.addres |
| 4baa0 | 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 | s,.source.port,.destination.IP.a |
| 4bac0 | 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 2c 20 74 72 61 6e 73 70 | ddress,.destination.port,.transp |
| 4bae0 | 6f 72 74 20 70 72 6f 74 6f 63 6f 6c 29 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 | ort.protocol)..Flows.are.defined |
| 4bb00 | 20 6f 6e 6c 79 20 62 79 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 6c | .only.by.destination.address..Fl |
| 4bb20 | 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 6f 6e 6c 79 20 62 79 20 73 6f 75 72 63 65 20 61 | ows.are.defined.only.by.source.a |
| 4bb40 | 64 64 72 65 73 73 2e 00 46 6c 6f 77 73 20 63 61 6e 20 62 65 20 65 78 70 6f 72 74 65 64 20 76 69 | ddress..Flows.can.be.exported.vi |
| 4bb60 | 61 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 73 3a 20 4e 65 74 46 6c | a.two.different.protocols:.NetFl |
| 4bb80 | 6f 77 20 28 76 65 72 73 69 6f 6e 73 20 35 2c 20 39 20 61 6e 64 20 31 30 2f 49 50 46 49 58 29 20 | ow.(versions.5,.9.and.10/IPFIX). |
| 4bba0 | 61 6e 64 20 73 46 6c 6f 77 2e 20 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 79 6f 75 20 6d 61 79 | and.sFlow..Additionally,.you.may |
| 4bbc0 | 20 73 61 76 65 20 66 6c 6f 77 73 20 74 6f 20 61 6e 20 69 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c | .save.flows.to.an.in-memory.tabl |
| 4bbe0 | 65 20 69 6e 74 65 72 6e 61 6c 6c 79 20 69 6e 20 61 20 72 6f 75 74 65 72 2e 00 46 6c 6f 77 74 61 | e.internally.in.a.router..Flowta |
| 4bc00 | 62 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 46 6c 6f 77 74 61 62 6c 65 73 20 20 61 6c | ble.Configuration.Flowtables..al |
| 4bc20 | 6c 6f 77 73 20 79 6f 75 20 74 6f 20 64 65 66 69 6e 65 20 61 20 66 61 73 74 70 61 74 68 20 74 68 | lows.you.to.define.a.fastpath.th |
| 4bc40 | 72 6f 75 67 68 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 64 61 74 61 70 61 74 68 2e 20 54 68 | rough.the.flowtable.datapath..Th |
| 4bc60 | 65 20 66 6c 6f 77 74 61 62 6c 65 20 73 75 70 70 6f 72 74 73 20 66 6f 72 20 74 68 65 20 6c 61 79 | e.flowtable.supports.for.the.lay |
| 4bc80 | 65 72 20 33 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 6e 64 20 74 68 65 20 6c 61 79 65 72 | er.3.IPv4.and.IPv6.and.the.layer |
| 4bca0 | 20 34 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 46 6c 6f 77 74 61 | .4.TCP.and.UDP.protocols..Flowta |
| 4bcc0 | 62 6c 65 73 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 46 6c 6f 77 | bles.Firewall.Configuration.Flow |
| 4bce0 | 74 61 62 6c 65 73 20 61 6c 6c 6f 77 20 79 6f 75 20 74 6f 20 64 65 66 69 6e 65 20 61 20 66 61 73 | tables.allow.you.to.define.a.fas |
| 4bd00 | 74 70 61 74 68 20 74 68 72 6f 75 67 68 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 64 61 74 61 | tpath.through.the.flowtable.data |
| 4bd20 | 70 61 74 68 2e 20 54 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 73 75 70 70 6f 72 74 73 20 66 6f 72 | path..The.flowtable.supports.for |
| 4bd40 | 20 74 68 65 20 6c 61 79 65 72 20 33 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 6e 64 20 74 | .the.layer.3.IPv4.and.IPv6.and.t |
| 4bd60 | 68 65 20 6c 61 79 65 72 20 34 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 72 6f 74 6f 63 6f 6c 73 | he.layer.4.TCP.and.UDP.protocols |
| 4bd80 | 2e 00 46 6c 75 73 68 69 6e 67 20 74 68 65 20 73 65 73 73 69 6f 6e 20 74 61 62 6c 65 20 77 69 6c | ..Flushing.the.session.table.wil |
| 4bda0 | 6c 20 63 61 75 73 65 20 6f 74 68 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 66 61 6c | l.cause.other.connections.to.fal |
| 4bdc0 | 6c 20 62 61 63 6b 20 66 72 6f 6d 20 66 6c 6f 77 2d 62 61 73 65 64 20 74 6f 20 70 61 63 6b 65 74 | l.back.from.flow-based.to.packet |
| 4bde0 | 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 75 6e 74 69 6c 20 65 61 63 68 20 66 6c 6f 77 | -based.balancing.until.each.flow |
| 4be00 | 20 69 73 20 72 65 65 73 74 61 62 6c 69 73 68 65 64 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 53 53 | .is.reestablished..Follow.the.SS |
| 4be20 | 48 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 20 6c 6f 67 2e 00 46 6f 6c 6c 6f 77 | H.dynamic-protection.log..Follow |
| 4be40 | 20 74 68 65 20 53 53 48 20 73 65 72 76 65 72 20 6c 6f 67 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 | .the.SSH.server.log..Follow.the. |
| 4be60 | 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 43 41 20 63 65 72 74 | instructions.to.generate.CA.cert |
| 4be80 | 20 28 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 29 3a 00 46 6f 6c 6c 6f 77 | .(in.configuration.mode):.Follow |
| 4bea0 | 20 74 68 65 20 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 73 65 | .the.instructions.to.generate.se |
| 4bec0 | 72 76 65 72 20 63 65 72 74 20 28 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 | rver.cert.(in.configuration.mode |
| 4bee0 | 29 3a 00 46 6f 6c 6c 6f 77 20 74 68 65 20 6c 6f 67 73 20 66 6f 72 20 6d 44 4e 53 20 72 65 70 65 | ):.Follow.the.logs.for.mDNS.repe |
| 4bf00 | 61 74 65 72 20 73 65 72 76 69 63 65 2e 00 46 6f 72 20 3a 72 65 66 3a 60 62 69 64 69 72 65 63 74 | ater.service..For.:ref:`bidirect |
| 4bf20 | 69 6f 6e 61 6c 2d 6e 61 74 60 20 61 20 72 75 6c 65 20 66 6f 72 20 62 6f 74 68 20 3a 72 65 66 3a | ional-nat`.a.rule.for.both.:ref: |
| 4bf40 | 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 | `source-nat`.and.:ref:`destinati |
| 4bf60 | 6f 6e 2d 6e 61 74 60 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 2e 00 46 6f 72 | on-nat`.needs.to.be.created..For |
| 4bf80 | 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 72 75 6c 65 73 20 74 68 | .:ref:`destination-nat`.rules.th |
| 4bfa0 | 65 20 70 61 63 6b 65 74 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 77 69 | e.packets.destination.address.wi |
| 4bfc0 | 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | ll.be.replaced.by.the.specified. |
| 4bfe0 | 61 64 64 72 65 73 73 20 69 6e 20 74 68 65 20 60 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 | address.in.the.`translation.addr |
| 4c000 | 65 73 73 60 20 63 6f 6d 6d 61 6e 64 2e 00 46 6f 72 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e | ess`.command..For.:ref:`source-n |
| 4c020 | 61 74 60 20 72 75 6c 65 73 20 74 68 65 20 70 61 63 6b 65 74 73 20 73 6f 75 72 63 65 20 61 64 64 | at`.rules.the.packets.source.add |
| 4c040 | 72 65 73 73 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 77 69 74 68 20 74 68 65 20 61 | ress.will.be.replaced.with.the.a |
| 4c060 | 64 64 72 65 73 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 74 72 61 6e 73 6c 61 74 | ddress.specified.in.the.translat |
| 4c080 | 69 6f 6e 20 63 6f 6d 6d 61 6e 64 2e 20 41 20 70 6f 72 74 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 | ion.command..A.port.translation. |
| 4c0a0 | 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 70 61 72 | can.also.be.specified.and.is.par |
| 4c0c0 | 74 20 6f 66 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 46 6f | t.of.the.translation.address..Fo |
| 4c0e0 | 72 20 45 6e 63 72 79 70 74 69 6f 6e 3a 00 46 6f 72 20 48 61 73 68 69 6e 67 3a 00 46 6f 72 20 49 | r.Encryption:.For.Hashing:.For.I |
| 4c100 | 53 2d 49 53 20 74 6f 70 20 6f 70 65 72 61 74 65 20 63 6f 72 72 65 63 74 6c 79 2c 20 6f 6e 65 20 | S-IS.top.operate.correctly,.one. |
| 4c120 | 6d 75 73 74 20 64 6f 20 74 68 65 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 61 20 52 6f 75 74 | must.do.the.equivalent.of.a.Rout |
| 4c140 | 65 72 20 49 44 20 69 6e 20 43 4c 4e 53 2e 20 54 68 69 73 20 52 6f 75 74 65 72 20 49 44 20 69 73 | er.ID.in.CLNS..This.Router.ID.is |
| 4c160 | 20 63 61 6c 6c 65 64 20 74 68 65 20 3a 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 | .called.the.:abbr:`NET.(Network. |
| 4c180 | 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 2e 20 54 68 69 73 20 6d 75 73 74 20 62 65 20 75 6e 69 | Entity.Title)`..This.must.be.uni |
| 4c1a0 | 71 75 65 20 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 72 6f 75 74 65 72 20 74 68 | que.for.each.and.every.router.th |
| 4c1c0 | 61 74 20 69 73 20 6f 70 65 72 61 74 69 6e 67 20 69 6e 20 49 53 2d 49 53 2e 20 49 74 20 61 6c 73 | at.is.operating.in.IS-IS..It.als |
| 4c1e0 | 6f 20 6d 75 73 74 20 6e 6f 74 20 62 65 20 64 75 70 6c 69 63 61 74 65 64 20 6f 74 68 65 72 77 69 | o.must.not.be.duplicated.otherwi |
| 4c200 | 73 65 20 74 68 65 20 73 61 6d 65 20 69 73 73 75 65 73 20 74 68 61 74 20 6f 63 63 75 72 20 77 69 | se.the.same.issues.that.occur.wi |
| 4c220 | 74 68 69 6e 20 4f 53 50 46 20 77 69 6c 6c 20 6f 63 63 75 72 20 77 69 74 68 69 6e 20 49 53 2d 49 | thin.OSPF.will.occur.within.IS-I |
| 4c240 | 53 20 77 68 65 6e 20 69 74 20 63 6f 6d 65 73 20 74 6f 20 73 61 69 64 20 64 75 70 6c 69 63 61 74 | S.when.it.comes.to.said.duplicat |
| 4c260 | 69 6f 6e 2e 00 46 6f 72 20 49 6e 63 6f 6d 69 6e 67 20 61 6e 64 20 49 6d 70 6f 72 74 20 52 6f 75 | ion..For.Incoming.and.Import.Rou |
| 4c280 | 74 65 2d 6d 61 70 73 20 69 66 20 77 65 20 72 65 63 65 69 76 65 20 61 20 76 36 20 67 6c 6f 62 61 | te-maps.if.we.receive.a.v6.globa |
| 4c2a0 | 6c 20 61 6e 64 20 76 36 20 4c 4c 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 72 6f 75 74 | l.and.v6.LL.address.for.the.rout |
| 4c2c0 | 65 2c 20 74 68 65 6e 20 70 72 65 66 65 72 20 74 6f 20 75 73 65 20 74 68 65 20 67 6c 6f 62 61 6c | e,.then.prefer.to.use.the.global |
| 4c2e0 | 20 61 64 64 72 65 73 73 20 61 73 20 74 68 65 20 6e 65 78 74 68 6f 70 2e 00 46 6f 72 20 4c 6f 63 | .address.as.the.nexthop..For.Loc |
| 4c300 | 61 6c 20 55 73 65 72 73 00 46 6f 72 20 4f 70 65 6e 46 61 62 72 69 63 20 74 6f 20 6f 70 65 72 61 | al.Users.For.OpenFabric.to.opera |
| 4c320 | 74 65 20 63 6f 72 72 65 63 74 6c 79 2c 20 6f 6e 65 20 6d 75 73 74 20 64 6f 20 74 68 65 20 65 71 | te.correctly,.one.must.do.the.eq |
| 4c340 | 75 69 76 61 6c 65 6e 74 20 6f 66 20 61 20 52 6f 75 74 65 72 20 49 44 20 69 6e 20 43 6f 6e 6e 65 | uivalent.of.a.Router.ID.in.Conne |
| 4c360 | 63 74 69 6f 6e 6c 65 73 73 20 4e 65 74 77 6f 72 6b 20 53 65 72 76 69 63 65 20 28 43 4c 4e 53 29 | ctionless.Network.Service.(CLNS) |
| 4c380 | 2e 20 54 68 69 73 20 52 6f 75 74 65 72 20 49 44 20 69 73 20 63 61 6c 6c 65 64 20 74 68 65 20 3a | ..This.Router.ID.is.called.the.: |
| 4c3a0 | 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 | abbr:`NET.(Network.Entity.Title) |
| 4c3c0 | 60 2e 20 54 68 65 20 73 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 20 6d 75 73 74 20 62 65 | `..The.system.identifier.must.be |
| 4c3e0 | 20 75 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 00 46 6f 72 20 52 | .unique.within.the.network.For.R |
| 4c400 | 41 44 49 55 53 20 75 73 65 72 73 00 46 6f 72 20 55 53 42 20 70 6f 72 74 20 69 6e 66 6f 72 6d 61 | ADIUS.users.For.USB.port.informa |
| 4c420 | 74 69 6f 6e 20 70 6c 65 61 73 65 20 72 65 66 6f 72 20 74 6f 3a 20 3a 72 65 66 3a 60 68 61 72 64 | tion.please.refor.to:.:ref:`hard |
| 4c440 | 77 61 72 65 5f 75 73 62 60 2e 00 46 6f 72 20 61 20 68 65 61 64 73 74 61 72 74 20 79 6f 75 20 63 | ware_usb`..For.a.headstart.you.c |
| 4c460 | 61 6e 20 75 73 65 20 74 68 65 20 62 65 6c 6f 77 20 65 78 61 6d 70 6c 65 20 6f 6e 20 68 6f 77 20 | an.use.the.below.example.on.how. |
| 4c480 | 74 6f 20 62 75 69 6c 64 20 61 20 62 6f 6e 64 20 77 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 | to.build.a.bond.with.two.interfa |
| 4c4a0 | 63 65 73 20 66 72 6f 6d 20 56 79 4f 53 20 74 6f 20 61 20 4a 75 6e 69 70 65 72 20 45 58 20 53 77 | ces.from.VyOS.to.a.Juniper.EX.Sw |
| 4c4c0 | 69 74 63 68 20 73 79 73 74 65 6d 2e 00 46 6f 72 20 61 20 68 65 61 64 73 74 61 72 74 20 79 6f 75 | itch.system..For.a.headstart.you |
| 4c4e0 | 20 63 61 6e 20 75 73 65 20 74 68 65 20 62 65 6c 6f 77 20 65 78 61 6d 70 6c 65 20 6f 6e 20 68 6f | .can.use.the.below.example.on.ho |
| 4c500 | 77 20 74 6f 20 62 75 69 6c 64 20 61 20 62 6f 6e 64 2c 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 77 | w.to.build.a.bond,port-channel.w |
| 4c520 | 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 56 79 4f 53 20 74 6f 20 | ith.two.interfaces.from.VyOS.to. |
| 4c540 | 61 20 41 72 75 62 61 2f 48 50 20 32 35 31 30 47 20 73 77 69 74 63 68 2e 00 46 6f 72 20 61 20 6c | a.Aruba/HP.2510G.switch..For.a.l |
| 4c560 | 61 72 67 65 20 61 6d 6f 75 6e 74 20 6f 66 20 70 72 69 76 61 74 65 20 6d 61 63 68 69 6e 65 73 20 | arge.amount.of.private.machines. |
| 4c580 | 62 65 68 69 6e 64 20 74 68 65 20 4e 41 54 20 79 6f 75 72 20 61 64 64 72 65 73 73 20 70 6f 6f 6c | behind.the.NAT.your.address.pool |
| 4c5a0 | 20 6d 69 67 68 74 20 74 6f 20 62 65 20 62 69 67 67 65 72 2e 20 55 73 65 20 61 6e 79 20 61 64 64 | .might.to.be.bigger..Use.any.add |
| 4c5c0 | 72 65 73 73 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 31 30 30 2e 36 34 2e 30 2e 31 30 20 2d 20 | ress.in.the.range.100.64.0.10.-. |
| 4c5e0 | 31 30 30 2e 36 34 2e 30 2e 32 30 20 6f 6e 20 53 4e 41 54 20 72 75 6c 65 20 34 30 20 77 68 65 6e | 100.64.0.20.on.SNAT.rule.40.when |
| 4c600 | 20 64 6f 69 6e 67 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 00 46 6f 72 20 61 20 73 69 6d | .doing.the.translation.For.a.sim |
| 4c620 | 70 6c 65 20 68 6f 6d 65 20 6e 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 6a 75 73 74 20 74 68 65 20 | ple.home.network.using.just.the. |
| 4c640 | 49 53 50 27 73 20 65 71 75 69 70 6d 65 6e 74 2c 20 74 68 69 73 20 69 73 20 75 73 75 61 6c 6c 79 | ISP's.equipment,.this.is.usually |
| 4c660 | 20 64 65 73 69 72 61 62 6c 65 2e 20 42 75 74 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 | .desirable..But.if.you.want.to.r |
| 4c680 | 75 6e 20 56 79 4f 53 20 61 73 20 79 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 61 6e 64 20 72 6f 75 | un.VyOS.as.your.firewall.and.rou |
| 4c6a0 | 74 65 72 2c 20 74 68 69 73 20 77 69 6c 6c 20 72 65 73 75 6c 74 20 69 6e 20 68 61 76 69 6e 67 20 | ter,.this.will.result.in.having. |
| 4c6c0 | 61 20 64 6f 75 62 6c 65 20 4e 41 54 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 73 65 74 75 70 2e | a.double.NAT.and.firewall.setup. |
| 4c6e0 | 20 54 68 69 73 20 72 65 73 75 6c 74 73 20 69 6e 20 61 20 66 65 77 20 65 78 74 72 61 20 6c 61 79 | .This.results.in.a.few.extra.lay |
| 4c700 | 65 72 73 20 6f 66 20 63 6f 6d 70 6c 65 78 69 74 79 2c 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 | ers.of.complexity,.particularly. |
| 4c720 | 69 66 20 79 6f 75 20 75 73 65 20 73 6f 6d 65 20 4e 41 54 20 6f 72 20 74 75 6e 6e 65 6c 20 66 65 | if.you.use.some.NAT.or.tunnel.fe |
| 4c740 | 61 74 75 72 65 73 2e 00 46 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 20 70 72 6f 74 6f | atures..For.connectionless.proto |
| 4c760 | 63 6f 6c 73 20 61 73 20 6c 69 6b 65 20 49 43 4d 50 20 61 6e 64 20 55 44 50 2c 20 61 20 66 6c 6f | cols.as.like.ICMP.and.UDP,.a.flo |
| 4c780 | 77 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 63 6f 6d 70 6c 65 74 65 20 6f 6e 63 65 20 6e 6f | w.is.considered.complete.once.no |
| 4c7a0 | 20 6d 6f 72 65 20 70 61 63 6b 65 74 73 20 66 6f 72 20 74 68 69 73 20 66 6c 6f 77 20 61 70 70 65 | .more.packets.for.this.flow.appe |
| 4c7c0 | 61 72 20 61 66 74 65 72 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 74 69 6d 65 6f 75 74 2e 00 46 | ar.after.configurable.timeout..F |
| 4c7e0 | 6f 72 20 65 76 65 72 79 20 63 6c 69 65 6e 74 20 69 6e 20 74 68 65 20 6f 70 65 6e 76 70 6e 20 73 | or.every.client.in.the.openvpn.s |
| 4c800 | 65 72 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 20 74 6f 74 70 20 73 65 63 72 65 | erver.configuration.a.totp.secre |
| 4c820 | 74 20 69 73 20 63 72 65 61 74 65 64 2e 20 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 61 75 74 | t.is.created..To.display.the.aut |
| 4c840 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 75 73 65 20 74 68 65 | hentication.information,.use.the |
| 4c860 | 20 63 6f 6d 6d 61 6e 64 3a 00 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 70 72 6f 62 6c 65 | .command:.For.example,.if.proble |
| 4c880 | 6d 73 20 77 69 74 68 20 70 6f 6f 72 20 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f | ms.with.poor.time.synchronizatio |
| 4c8a0 | 6e 20 61 72 65 20 65 78 70 65 72 69 65 6e 63 65 64 2c 20 74 68 65 20 77 69 6e 64 6f 77 20 63 61 | n.are.experienced,.the.window.ca |
| 4c8c0 | 6e 20 62 65 20 69 6e 63 72 65 61 73 65 64 20 66 72 6f 6d 20 69 74 73 20 64 65 66 61 75 6c 74 20 | n.be.increased.from.its.default. |
| 4c8e0 | 73 69 7a 65 20 6f 66 20 33 20 70 65 72 6d 69 74 74 65 64 20 63 6f 64 65 73 20 28 6f 6e 65 20 70 | size.of.3.permitted.codes.(one.p |
| 4c900 | 72 65 76 69 6f 75 73 20 63 6f 64 65 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 6f 64 65 2c 20 | revious.code,.the.current.code,. |
| 4c920 | 74 68 65 20 6e 65 78 74 20 63 6f 64 65 29 20 74 6f 20 31 37 20 70 65 72 6d 69 74 74 65 64 20 63 | the.next.code).to.17.permitted.c |
| 4c940 | 6f 64 65 73 20 28 74 68 65 20 38 20 70 72 65 76 69 6f 75 73 20 63 6f 64 65 73 2c 20 74 68 65 20 | odes.(the.8.previous.codes,.the. |
| 4c960 | 63 75 72 72 65 6e 74 20 63 6f 64 65 2c 20 61 6e 64 20 74 68 65 20 38 20 6e 65 78 74 20 63 6f 64 | current.code,.and.the.8.next.cod |
| 4c980 | 65 73 29 2e 20 54 68 69 73 20 77 69 6c 6c 20 70 65 72 6d 69 74 20 66 6f 72 20 61 20 74 69 6d 65 | es)..This.will.permit.for.a.time |
| 4c9a0 | 20 73 6b 65 77 20 6f 66 20 75 70 20 74 6f 20 34 20 6d 69 6e 75 74 65 73 20 62 65 74 77 65 65 6e | .skew.of.up.to.4.minutes.between |
| 4c9c0 | 20 63 6c 69 65 6e 74 20 61 6e 64 20 73 65 72 76 65 72 2e 00 46 6f 72 20 65 78 61 6d 70 6c 65 3a | .client.and.server..For.example: |
| 4c9e0 | 00 46 6f 72 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 63 6f 6e 66 69 67 75 | .For.firewall.filtering,.configu |
| 4ca00 | 72 61 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 64 6f 6e 65 20 69 6e 20 60 60 73 65 74 20 66 | ration.should.be.done.in.``set.f |
| 4ca20 | 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 00 46 6f 72 20 | irewall.[ipv4.|.ipv6]....``.For. |
| 4ca40 | 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c | firewall.filtering,.firewall.rul |
| 4ca60 | 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 2e 20 45 61 63 68 20 72 75 6c 65 | es.need.to.be.created..Each.rule |
| 4ca80 | 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 | .is.numbered,.has.an.action.to.a |
| 4caa0 | 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 | pply.if.the.rule.is.matched,.and |
| 4cac0 | 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 | .the.ability.to.specify.multiple |
| 4cae0 | 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 | .matching.criteria..Data.packets |
| 4cb00 | 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 | .go.through.the.rules.from.1.-.9 |
| 4cb20 | 39 39 39 39 39 2c 20 73 6f 20 6f 72 64 65 72 20 69 73 20 63 72 75 63 69 61 6c 2e 20 41 74 20 74 | 99999,.so.order.is.crucial..At.t |
| 4cb40 | 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 | he.first.match.the.action.of.the |
| 4cb60 | 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 46 6f 72 20 66 69 72 65 | .rule.will.be.executed..For.fire |
| 4cb80 | 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 6e | wall.filtering,.firewall.rules.n |
| 4cba0 | 65 65 64 73 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 | eeds.to.be.created..Each.rule.is |
| 4cbc0 | 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c | .numbered,.has.an.action.to.appl |
| 4cbe0 | 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 | y.if.the.rule.is.matched,.and.th |
| 4cc00 | 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 63 72 | e.ability.to.specify.multiple.cr |
| 4cc20 | 69 74 65 72 69 61 20 6d 61 74 63 68 65 72 73 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f | iteria.matchers..Data.packets.go |
| 4cc40 | 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 | .through.the.rules.from.1.-.9999 |
| 4cc60 | 39 39 2c 20 73 6f 20 6f 72 64 65 72 20 69 73 20 63 72 75 63 69 61 6c 2e 20 41 74 20 74 68 65 20 | 99,.so.order.is.crucial..At.the. |
| 4cc80 | 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 | first.match.the.action.of.the.ru |
| 4cca0 | 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 46 6f 72 20 66 72 61 67 6d 65 6e | le.will.be.executed..For.fragmen |
| 4ccc0 | 74 65 64 20 54 43 50 20 6f 72 20 55 44 50 20 70 61 63 6b 65 74 73 20 61 6e 64 20 61 6c 6c 20 6f | ted.TCP.or.UDP.packets.and.all.o |
| 4cce0 | 74 68 65 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 72 6f 74 6f 63 6f 6c 20 74 72 61 66 | ther.IPv4.and.IPv6.protocol.traf |
| 4cd00 | 66 69 63 2c 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | fic,.the.source.and.destination. |
| 4cd20 | 70 6f 72 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 6f 6d 69 74 74 65 64 2e 20 46 6f 72 | port.information.is.omitted..For |
| 4cd40 | 20 6e 6f 6e 2d 49 50 20 74 72 61 66 66 69 63 2c 20 74 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 20 | .non-IP.traffic,.the.formula.is. |
| 4cd60 | 74 68 65 20 73 61 6d 65 20 61 73 20 66 6f 72 20 74 68 65 20 6c 61 79 65 72 32 20 74 72 61 6e 73 | the.same.as.for.the.layer2.trans |
| 4cd80 | 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2e 00 46 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 | mit.hash.policy..For.generating. |
| 4cda0 | 61 6e 20 4f 54 50 20 6b 65 79 20 69 6e 20 56 79 4f 53 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 | an.OTP.key.in.VyOS,.you.can.use. |
| 4cdc0 | 74 68 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 28 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 | the.CLI.command.(operational.mod |
| 4cde0 | 65 29 3a 00 46 6f 72 20 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 73 20 74 68 65 20 6f 72 64 65 | e):.For.inbound.updates.the.orde |
| 4ce00 | 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 3a 00 46 6f 72 20 69 6e 73 74 61 6e 63 65 | r.of.preference.is:.For.instance |
| 4ce20 | 2c 20 77 69 74 68 20 3a 63 6f 64 65 3a 60 73 65 74 20 71 6f 73 20 70 6f 6c 69 63 79 20 73 68 61 | ,.with.:code:`set.qos.policy.sha |
| 4ce40 | 70 65 72 20 4d 59 2d 53 48 41 50 45 52 20 63 6c 61 73 73 20 33 30 20 73 65 74 2d 64 73 63 70 20 | per.MY-SHAPER.class.30.set-dscp. |
| 4ce60 | 45 46 60 20 79 6f 75 20 77 6f 75 6c 64 20 62 65 20 6d 6f 64 69 66 79 69 6e 67 20 74 68 65 20 44 | EF`.you.would.be.modifying.the.D |
| 4ce80 | 53 43 50 20 66 69 65 6c 64 20 76 61 6c 75 65 20 6f 66 20 70 61 63 6b 65 74 73 20 69 6e 20 74 68 | SCP.field.value.of.packets.in.th |
| 4cea0 | 61 74 20 63 6c 61 73 73 20 74 6f 20 45 78 70 65 64 69 74 65 20 46 6f 72 77 61 72 64 69 6e 67 2e | at.class.to.Expedite.Forwarding. |
| 4cec0 | 00 46 6f 72 20 69 70 76 34 3a 00 46 6f 72 20 6c 61 74 65 73 74 20 72 65 6c 65 61 73 65 73 2c 20 | .For.ipv4:.For.latest.releases,. |
| 4cee0 | 72 65 66 65 72 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 28 69 6e 74 65 72 66 61 63 65 2d 67 | refer.the.`firewall.(interface-g |
| 4cf00 | 72 6f 75 70 73 29 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f | roups).<https://docs.vyos.io/en/ |
| 4cf20 | 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 | latest/configuration/firewall/ge |
| 4cf40 | 6e 65 72 61 6c 2e 68 74 6d 6c 23 69 6e 74 65 72 66 61 63 65 2d 67 72 6f 75 70 73 3e 60 5f 20 6d | neral.html#interface-groups>`_.m |
| 4cf60 | 61 69 6e 20 70 61 67 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 7a 6f 6e 65 20 62 61 73 65 64 | ain.page.to.configure.zone.based |
| 4cf80 | 20 72 75 6c 65 73 2e 20 4e 65 77 20 73 79 6e 74 61 78 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 | .rules..New.syntax.was.introduce |
| 4cfa0 | 64 20 68 65 72 65 20 3a 76 79 74 61 73 6b 3a 60 54 35 31 36 30 60 00 46 6f 72 20 6c 61 74 65 73 | d.here.:vytask:`T5160`.For.lates |
| 4cfc0 | 74 20 72 65 6c 65 61 73 65 73 2c 20 72 65 66 65 72 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 | t.releases,.refer.the.`firewall. |
| 4cfe0 | 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f | <https://docs.vyos.io/en/latest/ |
| 4d000 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 | configuration/firewall/general.h |
| 4d020 | 74 6d 6c 23 69 6e 74 65 72 66 61 63 65 2d 67 72 6f 75 70 73 3e 60 5f 20 6d 61 69 6e 20 70 61 67 | tml#interface-groups>`_.main.pag |
| 4d040 | 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 7a 6f 6e 65 20 62 61 73 65 64 20 72 75 6c 65 73 2e | e.to.configure.zone.based.rules. |
| 4d060 | 20 4e 65 77 20 73 79 6e 74 61 78 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 68 65 72 65 20 | .New.syntax.was.introduced.here. |
| 4d080 | 3a 76 79 74 61 73 6b 3a 60 54 35 31 36 30 60 00 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 | :vytask:`T5160`.For.more.informa |
| 4d0a0 | 74 69 6f 6e 20 6f 6e 20 68 6f 77 20 4d 50 4c 53 20 6c 61 62 65 6c 20 73 77 69 74 63 68 69 6e 67 | tion.on.how.MPLS.label.switching |
| 4d0c0 | 20 77 6f 72 6b 73 2c 20 70 6c 65 61 73 65 20 67 6f 20 76 69 73 69 74 20 60 57 69 6b 69 70 65 64 | .works,.please.go.visit.`Wikiped |
| 4d0e0 | 69 61 20 28 4d 50 4c 53 29 60 5f 2e 00 46 6f 72 20 6d 75 6c 74 69 20 68 6f 70 20 73 65 73 73 69 | ia.(MPLS)`_..For.multi.hop.sessi |
| 4d100 | 6f 6e 73 20 6f 6e 6c 79 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 | ons.only..Configure.the.minimum. |
| 4d120 | 65 78 70 65 63 74 65 64 20 54 54 4c 20 66 6f 72 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 20 42 46 44 | expected.TTL.for.an.incoming.BFD |
| 4d140 | 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 2e 00 46 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 61 69 | .control.packet..For.network.mai |
| 4d160 | 6e 74 65 6e 61 6e 63 65 2c 20 69 74 27 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 74 6f 20 64 69 | ntenance,.it's.a.good.idea.to.di |
| 4d180 | 72 65 63 74 20 75 73 65 72 73 20 74 6f 20 61 20 62 61 63 6b 75 70 20 73 65 72 76 65 72 20 73 6f | rect.users.to.a.backup.server.so |
| 4d1a0 | 20 74 68 61 74 20 74 68 65 20 70 72 69 6d 61 72 79 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 | .that.the.primary.server.can.be. |
| 4d1c0 | 73 61 66 65 6c 79 20 74 61 6b 65 6e 20 6f 75 74 20 6f 66 20 73 65 72 76 69 63 65 2e 20 49 74 27 | safely.taken.out.of.service..It' |
| 4d1e0 | 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 73 77 69 74 63 68 20 79 6f 75 72 20 50 50 50 6f 45 20 | s.possible.to.switch.your.PPPoE. |
| 4d200 | 73 65 72 76 65 72 20 74 6f 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 6d 6f 64 65 20 77 68 65 72 65 | server.to.maintenance.mode.where |
| 4d220 | 20 69 74 20 6d 61 69 6e 74 61 69 6e 73 20 61 6c 72 65 61 64 79 20 65 73 74 61 62 6c 69 73 68 65 | .it.maintains.already.establishe |
| 4d240 | 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 75 74 20 72 65 66 75 73 65 73 20 6e 65 77 20 63 | d.connections,.but.refuses.new.c |
| 4d260 | 6f 6e 6e 65 63 74 69 6f 6e 20 61 74 74 65 6d 70 74 73 2e 00 46 6f 72 20 6e 65 74 77 6f 72 6b 73 | onnection.attempts..For.networks |
| 4d280 | 20 63 6f 6e 73 69 73 74 69 6e 67 20 6f 66 20 56 79 4f 53 20 61 6e 64 20 6f 74 68 65 72 20 4c 69 | .consisting.of.VyOS.and.other.Li |
| 4d2a0 | 6e 75 78 20 73 79 73 74 65 6d 73 20 72 75 6e 6e 69 6e 67 20 72 65 6c 61 74 69 76 65 6c 79 20 72 | nux.systems.running.relatively.r |
| 4d2c0 | 65 63 65 6e 74 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 74 68 65 20 63 68 72 6f 6e 79 20 64 61 65 | ecent.versions.of.the.chrony.dae |
| 4d2e0 | 6d 6f 6e 2c 20 4e 54 50 20 70 61 63 6b 65 74 73 20 63 61 6e 20 62 65 20 22 74 75 6e 6e 65 6c 65 | mon,.NTP.packets.can.be."tunnele |
| 4d300 | 64 22 20 6f 76 65 72 20 50 54 50 2e 20 4e 54 50 20 6f 76 65 72 20 50 54 50 20 70 72 6f 76 69 64 | d".over.PTP..NTP.over.PTP.provid |
| 4d320 | 65 73 20 74 68 65 20 62 65 73 74 20 6f 66 20 62 6f 74 68 20 77 6f 72 6c 64 73 2c 20 6c 65 76 65 | es.the.best.of.both.worlds,.leve |
| 4d340 | 72 61 67 69 6e 67 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 69 6d 65 | raging.hardware.support.for.time |
| 4d360 | 73 74 61 6d 70 69 6e 67 20 50 54 50 20 70 61 63 6b 65 74 73 20 77 68 69 6c 65 20 72 65 74 61 69 | stamping.PTP.packets.while.retai |
| 4d380 | 6e 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6c 65 78 69 62 69 6c 69 | ning.the.configuration.flexibili |
| 4d3a0 | 74 79 20 61 6e 64 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 20 6f 66 20 4e 54 50 2e 00 46 | ty.and.fault.tolerance.of.NTP..F |
| 4d3c0 | 6f 72 20 6f 70 74 69 6d 61 6c 20 73 63 61 6c 61 62 69 6c 69 74 79 2c 20 4d 75 6c 74 69 63 61 73 | or.optimal.scalability,.Multicas |
| 4d3e0 | 74 20 73 68 6f 75 6c 64 6e 27 74 20 62 65 20 75 73 65 64 20 61 74 20 61 6c 6c 2c 20 62 75 74 20 | t.shouldn't.be.used.at.all,.but. |
| 4d400 | 69 6e 73 74 65 61 64 20 75 73 65 20 42 47 50 20 74 6f 20 73 69 67 6e 61 6c 20 61 6c 6c 20 63 6f | instead.use.BGP.to.signal.all.co |
| 4d420 | 6e 6e 65 63 74 65 64 20 64 65 76 69 63 65 73 20 62 65 74 77 65 65 6e 20 6c 65 61 76 65 73 2e 20 | nnected.devices.between.leaves.. |
| 4d440 | 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 79 65 74 | Unfortunately,.VyOS.does.not.yet |
| 4d460 | 20 73 75 70 70 6f 72 74 20 74 68 69 73 2e 00 46 6f 72 20 6f 75 74 62 6f 75 6e 64 20 75 70 64 61 | .support.this..For.outbound.upda |
| 4d480 | 74 65 73 20 74 68 65 20 6f 72 64 65 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 3a 00 | tes.the.order.of.preference.is:. |
| 4d4a0 | 46 6f 72 20 72 65 66 65 72 65 6e 63 65 2c 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e | For.reference,.a.description.can |
| 4d4c0 | 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 65 76 65 72 79 20 64 65 66 69 6e 65 64 20 63 75 | .be.defined.for.every.defined.cu |
| 4d4e0 | 73 74 6f 6d 20 63 68 61 69 6e 2e 00 46 6f 72 20 72 65 66 65 72 65 6e 63 65 2c 20 61 20 64 65 73 | stom.chain..For.reference,.a.des |
| 4d500 | 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 65 76 65 72 | cription.can.be.defined.for.ever |
| 4d520 | 79 20 73 69 6e 67 6c 65 20 72 75 6c 65 2c 20 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 64 65 66 | y.single.rule,.and.for.every.def |
| 4d540 | 69 6e 65 64 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2e 00 46 6f 72 20 73 65 63 75 72 69 74 79 2c | ined.custom.chain..For.security, |
| 4d560 | 20 74 68 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 | .the.listen.address.should.only. |
| 4d580 | 62 65 20 75 73 65 64 20 6f 6e 20 69 6e 74 65 72 6e 61 6c 2f 74 72 75 73 74 65 64 20 6e 65 74 77 | be.used.on.internal/trusted.netw |
| 4d5a0 | 6f 72 6b 73 21 00 46 6f 72 20 73 65 72 69 61 6c 20 76 69 61 20 55 53 42 20 70 6f 72 74 20 69 6e | orks!.For.serial.via.USB.port.in |
| 4d5c0 | 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 72 65 66 6f 72 20 74 6f 3a 20 3a 72 65 66 3a | formation.please.refor.to:.:ref: |
| 4d5e0 | 60 68 61 72 64 77 61 72 65 5f 75 73 62 60 2e 00 46 6f 72 20 73 69 6d 70 6c 69 63 69 74 79 20 77 | `hardware_usb`..For.simplicity.w |
| 4d600 | 65 27 6c 6c 20 61 73 73 75 6d 65 20 74 68 61 74 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 | e'll.assume.that.the.protocol.is |
| 4d620 | 20 47 52 45 2c 20 69 74 27 73 20 6e 6f 74 20 68 61 72 64 20 74 6f 20 67 75 65 73 73 20 77 68 61 | .GRE,.it's.not.hard.to.guess.wha |
| 4d640 | 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 65 64 20 74 6f 20 6d 61 6b 65 20 69 74 | t.needs.to.be.changed.to.make.it |
| 4d660 | 20 77 6f 72 6b 20 77 69 74 68 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 2e | .work.with.a.different.protocol. |
| 4d680 | 20 57 65 20 61 73 73 75 6d 65 20 74 68 61 74 20 49 50 73 65 63 20 77 69 6c 6c 20 75 73 65 20 70 | .We.assume.that.IPsec.will.use.p |
| 4d6a0 | 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | re-shared.secret.authentication. |
| 4d6c0 | 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 41 45 53 31 32 38 2f 53 48 41 31 20 66 6f 72 20 74 68 65 | and.will.use.AES128/SHA1.for.the |
| 4d6e0 | 20 63 69 70 68 65 72 20 61 6e 64 20 68 61 73 68 2e 20 41 64 6a 75 73 74 20 74 68 69 73 20 61 73 | .cipher.and.hash..Adjust.this.as |
| 4d700 | 20 6e 65 63 65 73 73 61 72 79 2e 00 46 6f 72 20 74 68 65 20 3a 72 65 66 3a 60 64 65 73 74 69 6e | .necessary..For.the.:ref:`destin |
| 4d720 | 61 74 69 6f 6e 2d 6e 61 74 36 36 60 20 72 75 6c 65 2c 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 | ation-nat66`.rule,.the.destinati |
| 4d740 | 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 72 65 70 6c 61 | on.address.of.the.packet.isrepla |
| 4d760 | 63 65 64 20 62 79 20 74 68 65 20 61 64 64 72 65 73 73 20 63 61 6c 63 75 6c 61 74 65 64 20 66 72 | ced.by.the.address.calculated.fr |
| 4d780 | 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 | om.the.specified.address.or.pref |
| 4d7a0 | 69 78 20 69 6e 20 74 68 65 20 60 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 60 20 | ix.in.the.`translation.address`. |
| 4d7c0 | 63 6f 6d 6d 61 6e 64 00 46 6f 72 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 74 72 61 66 66 69 63 20 | command.For.the.OpenVPN.traffic. |
| 4d7e0 | 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 | to.pass.through.the.WAN.interfac |
| 4d800 | 65 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c 20 65 78 | e,.you.must.create.a.firewall.ex |
| 4d820 | 63 65 70 74 69 6f 6e 2e 00 46 6f 72 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 74 72 61 66 66 | ception..For.the.WireGuard.traff |
| 4d840 | 69 63 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 | ic.to.pass.through.the.WAN.inter |
| 4d860 | 66 61 63 65 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 61 6c 6c | face,.you.must.create.a.firewall |
| 4d880 | 20 65 78 63 65 70 74 69 6f 6e 2e 00 46 6f 72 20 74 68 65 20 61 76 65 72 61 67 65 20 75 73 65 72 | .exception..For.the.average.user |
| 4d8a0 | 20 61 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 20 68 61 73 20 6e 6f 20 61 64 76 61 6e 74 61 | .a.serial.console.has.no.advanta |
| 4d8c0 | 67 65 20 6f 76 65 72 20 61 20 63 6f 6e 73 6f 6c 65 20 6f 66 66 65 72 65 64 20 62 79 20 61 20 64 | ge.over.a.console.offered.by.a.d |
| 4d8e0 | 69 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 6b 65 79 62 6f 61 72 64 20 61 6e 64 20 73 63 | irectly.attached.keyboard.and.sc |
| 4d900 | 72 65 65 6e 2e 20 53 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 73 20 61 72 65 20 6d 75 63 68 20 73 | reen..Serial.consoles.are.much.s |
| 4d920 | 6c 6f 77 65 72 2c 20 74 61 6b 69 6e 67 20 75 70 20 74 6f 20 61 20 73 65 63 6f 6e 64 20 74 6f 20 | lower,.taking.up.to.a.second.to. |
| 4d940 | 66 69 6c 6c 20 61 20 38 30 20 63 6f 6c 75 6d 6e 20 62 79 20 32 34 20 6c 69 6e 65 20 73 63 72 65 | fill.a.80.column.by.24.line.scre |
| 4d960 | 65 6e 2e 20 53 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 73 20 67 65 6e 65 72 61 6c 6c 79 20 6f 6e | en..Serial.consoles.generally.on |
| 4d980 | 6c 79 20 73 75 70 70 6f 72 74 20 6e 6f 6e 2d 70 72 6f 70 6f 72 74 69 6f 6e 61 6c 20 41 53 43 49 | ly.support.non-proportional.ASCI |
| 4d9a0 | 49 20 74 65 78 74 2c 20 77 69 74 68 20 6c 69 6d 69 74 65 64 20 73 75 70 70 6f 72 74 20 66 6f 72 | I.text,.with.limited.support.for |
| 4d9c0 | 20 6c 61 6e 67 75 61 67 65 73 20 6f 74 68 65 72 20 74 68 61 6e 20 45 6e 67 6c 69 73 68 2e 00 46 | .languages.other.than.English..F |
| 4d9e0 | 6f 72 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2c 20 67 72 6f 75 70 73 20 63 61 6e 20 61 | or.the.destination,.groups.can.a |
| 4da00 | 6c 73 6f 20 62 65 20 75 73 65 64 20 69 6e 73 74 65 61 64 20 6f 66 20 61 6e 20 61 64 64 72 65 73 | lso.be.used.instead.of.an.addres |
| 4da20 | 73 2e 00 46 6f 72 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 6f 66 20 61 6e | s..For.the.ingress.traffic.of.an |
| 4da40 | 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 72 65 20 69 73 20 6f 6e 6c 79 20 6f 6e 65 20 70 6f | .interface,.there.is.only.one.po |
| 4da60 | 6c 69 63 79 20 79 6f 75 20 63 61 6e 20 64 69 72 65 63 74 6c 79 20 61 70 70 6c 79 2c 20 61 20 2a | licy.you.can.directly.apply,.a.* |
| 4da80 | 2a 4c 69 6d 69 74 65 72 2a 2a 20 70 6f 6c 69 63 79 2e 20 59 6f 75 20 63 61 6e 6e 6f 74 20 61 70 | *Limiter**.policy..You.cannot.ap |
| 4daa0 | 70 6c 79 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 64 69 72 65 63 74 6c 79 20 74 6f | ply.a.shaping.policy.directly.to |
| 4dac0 | 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 6f 66 20 61 6e 79 20 69 6e 74 65 | .the.ingress.traffic.of.any.inte |
| 4dae0 | 72 66 61 63 65 20 62 65 63 61 75 73 65 20 73 68 61 70 69 6e 67 20 6f 6e 6c 79 20 77 6f 72 6b 73 | rface.because.shaping.only.works |
| 4db00 | 20 66 6f 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2e 00 46 6f 72 20 74 68 65 20 73 | .for.outbound.traffic..For.the.s |
| 4db20 | 61 6b 65 20 6f 66 20 64 65 6d 6f 6e 73 74 72 61 74 69 6f 6e 2c 20 60 65 78 61 6d 70 6c 65 20 23 | ake.of.demonstration,.`example.# |
| 4db40 | 31 20 69 6e 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 | 1.in.the.official.documentation. |
| 4db60 | 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 7a 61 62 62 69 78 2e 63 6f 6d 2f 64 6f 63 75 6d 65 6e 74 | <https://www.zabbix.com/document |
| 4db80 | 61 74 69 6f 6e 2f 63 75 72 72 65 6e 74 2f 6d 61 6e 75 61 6c 2f 20 69 6e 73 74 61 6c 6c 61 74 69 | ation/current/manual/.installati |
| 4dba0 | 6f 6e 2f 63 6f 6e 74 61 69 6e 65 72 73 3e 60 5f 20 74 6f 20 74 68 65 20 64 65 63 6c 61 72 61 74 | on/containers>`_.to.the.declarat |
| 4dbc0 | 69 76 65 20 56 79 4f 53 20 43 4c 49 20 73 79 6e 74 61 78 2e 00 46 6f 72 20 74 68 65 20 73 61 6b | ive.VyOS.CLI.syntax..For.the.sak |
| 4dbe0 | 65 20 6f 66 20 64 65 6d 6f 6e 73 74 72 61 74 69 6f 6e 2c 20 60 65 78 61 6d 70 6c 65 20 23 31 20 | e.of.demonstration,.`example.#1. |
| 4dc00 | 69 6e 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 3c 68 | in.the.official.documentation.<h |
| 4dc20 | 74 74 70 73 3a 2f 2f 77 77 77 2e 7a 61 62 62 69 78 2e 63 6f 6d 2f 64 6f 63 75 6d 65 6e 74 61 74 | ttps://www.zabbix.com/documentat |
| 4dc40 | 69 6f 6e 2f 63 75 72 72 65 6e 74 2f 6d 61 6e 75 61 6c 2f 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 2f | ion/current/manual/installation/ |
| 4dc60 | 63 6f 6e 74 61 69 6e 65 72 73 3e 60 5f 20 74 6f 20 74 68 65 20 64 65 63 6c 61 72 61 74 69 76 65 | containers>`_.to.the.declarative |
| 4dc80 | 20 56 79 4f 53 20 43 4c 49 20 73 79 6e 74 61 78 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 64 65 | .VyOS.CLI.syntax..For.traffic.de |
| 4dca0 | 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 6f 72 20 | stined.to.the.router.itself,.or. |
| 4dcc0 | 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 72 6f 75 74 65 64 20 28 61 73 73 75 6d 69 6e | that.needs.to.be.routed.(assumin |
| 4dce0 | 67 20 61 20 6c 61 79 65 72 33 20 62 72 69 64 67 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 29 | g.a.layer3.bridge.is.configured) |
| 4dd00 | 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 74 | ,.the.base.chain.is.**input**,.t |
| 4dd20 | 68 65 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | he.base.command.is.``set.firewal |
| 4dd40 | 6c 20 62 72 69 64 67 65 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 20 61 6e 64 20 | l.bridge.input.filter....``.and. |
| 4dd60 | 74 68 65 20 70 61 74 68 20 69 73 3a 00 46 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 | the.path.is:.For.traffic.origina |
| 4dd80 | 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 | ted.by.the.router,.base.chain.is |
| 4dda0 | 20 2a 2a 6f 75 74 70 75 74 20 66 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 | .**output.filter**:.``set.firewa |
| 4ddc0 | 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e | ll.[ipv4.|.ipv6].output.filter.. |
| 4dde0 | 2e 2e 60 60 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 | ..``.For.traffic.that.needs.to.b |
| 4de00 | 65 20 66 6f 72 77 61 72 64 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 | e.forwarded.internally.by.the.br |
| 4de20 | 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 | idge,.base.chain.is.is.**forward |
| 4de40 | 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 | **,.and.it's.base.command.for.fi |
| 4de60 | 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 | ltering.is.``set.firewall.bridge |
| 4de80 | 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 | .forward.filter....``,.which.hap |
| 4dea0 | 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 | pens.in.stage.4,.highlighted.wit |
| 4dec0 | 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 | h.red.color..For.traffic.that.ne |
| 4dee0 | 65 64 73 20 74 6f 20 62 65 20 66 6f 72 77 61 72 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 | eds.to.be.forwared.internally.by |
| 4df00 | 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a | .the.bridge,.base.chain.is.is.** |
| 4df20 | 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 | forward**,.and.it's.base.command |
| 4df40 | 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c | .for.filtering.is.``set.firewall |
| 4df60 | 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 | .bridge.forward.filter....``.For |
| 4df80 | 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 66 6f 72 77 61 72 | .traffic.that.needs.to.be.forwar |
| 4dfa0 | 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 | ed.internally.by.the.bridge,.bas |
| 4dfc0 | 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 | e.chain.is.is.**forward**,.and.i |
| 4dfe0 | 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 | t's.base.command.for.filtering.i |
| 4e000 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 | s.``set.firewall.bridge.forward. |
| 4e020 | 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 | filter....``,.which.happens.in.s |
| 4e040 | 74 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 20 72 65 64 20 63 | tage.4,.highlightened.with.red.c |
| 4e060 | 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 | olor..For.traffic.that.needs.to. |
| 4e080 | 62 65 20 73 77 69 74 63 68 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 | be.switched.internally.by.the.br |
| 4e0a0 | 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c | idge,.base.chain.is.**forward**, |
| 4e0c0 | 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 | .and.it's.base.command.for.filte |
| 4e0e0 | 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f | ring.is.``set.firewall.bridge.fo |
| 4e100 | 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e | rward.filter....``,.which.happen |
| 4e120 | 73 20 69 6e 20 73 74 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 | s.in.stage.4,.highlighted.with.r |
| 4e140 | 65 64 20 63 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 | ed.color..For.traffic.towards.th |
| 4e160 | 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a | e.router.itself,.base.chain.is.* |
| 4e180 | 2a 69 6e 70 75 74 20 66 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 | *input.filter**:.``set.firewall. |
| 4e1a0 | 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 | [ipv4.|.ipv6].input.filter....`` |
| 4e1c0 | 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 | .For.traffic.towards.the.router. |
| 4e1e0 | 69 74 73 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c | itself,.base.chain.is.**input**, |
| 4e200 | 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 | .while.traffic.originated.by.the |
| 4e220 | 20 72 6f 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a | .router,.base.chain.is.**output* |
| 4e240 | 2a 2e 20 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 | *..A.new.simplified.packet.flow. |
| 4e260 | 64 69 61 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f | diagram.is.shown.next,.which.sho |
| 4e280 | 77 73 20 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 | ws.the.path.for.traffic.destinat |
| 4e2a0 | 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 | ed.to.the.router.itself,.and.tra |
| 4e2c0 | 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 | ffic.generated.by.the.router.(st |
| 4e2e0 | 61 72 74 69 6e 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f | arting.from.circle.number.6):.Fo |
| 4e300 | 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 | r.traffic.towards.the.router.its |
| 4e320 | 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 | elf,.base.chain.is.**input**,.wh |
| 4e340 | 69 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f | ile.traffic.originated.by.the.ro |
| 4e360 | 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a 2a 2e 20 | uter,.base.chain.is.**output**.. |
| 4e380 | 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 | A.new.simplified.packet.flow.dia |
| 4e3a0 | 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f 77 73 20 | gram.is.shown.next,.which.shows. |
| 4e3c0 | 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f | the.path.for.traffic.destined.to |
| 4e3e0 | 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 | .the.router.itself,.and.traffic. |
| 4e400 | 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 61 72 74 69 6e | generated.by.the.router.(startin |
| 4e420 | 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 74 72 61 | g.from.circle.number.6):.For.tra |
| 4e440 | 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 | ffic.towards.the.router.itself,. |
| 4e460 | 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 69 | the.base.chain.is.**input**,.whi |
| 4e480 | 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 | le.traffic.originated.by.the.rou |
| 4e4a0 | 74 65 72 20 68 61 73 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 2a 2a 6f 75 74 70 75 74 2a | ter.has.the.base.chain.**output* |
| 4e4c0 | 2a 2e 20 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 | *..A.new.simplified.packet.flow. |
| 4e4e0 | 64 69 61 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 77 68 69 63 68 20 73 68 6f | diagram.is.shown.next,.which.sho |
| 4e500 | 77 73 20 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 | ws.the.path.for.traffic.destined |
| 4e520 | 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 | .to.the.router.itself,.and.traff |
| 4e540 | 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 28 73 74 61 72 | ic.generated.by.the.router.(star |
| 4e560 | 74 69 6e 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 | ting.from.circle.number.6):.For. |
| 4e580 | 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 | transit.traffic,.which.is.receiv |
| 4e5a0 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 | ed.by.the.router.and.forwarded,. |
| 4e5c0 | 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 2a 2a | base.chain.is.**forward.filter** |
| 4e5e0 | 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 66 | :.``set.firewall.[ipv4.|.ipv6].f |
| 4e600 | 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 20 74 72 61 6e 73 69 74 20 | orward.filter....``.For.transit. |
| 4e620 | 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 | traffic,.which.is.received.by.th |
| 4e640 | 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 62 61 73 65 20 63 68 61 | e.router.and.forwarded,.base.cha |
| 4e660 | 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2e 20 41 20 73 69 6d 70 6c 69 66 69 65 64 20 | in.is.**forward**..A.simplified. |
| 4e680 | 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 72 61 6e 73 69 74 20 | packet.flow.diagram.for.transit. |
| 4e6a0 | 74 72 61 66 66 69 63 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 46 6f 72 20 74 72 61 6e 73 | traffic.is.shown.next:.For.trans |
| 4e6c0 | 69 74 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 | it.traffic,.which.is.received.by |
| 4e6e0 | 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 72 64 65 64 2c 20 74 68 65 20 62 | .the.router.and.forwarded,.the.b |
| 4e700 | 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2e 20 41 20 73 69 6d 70 | ase.chain.is.**forward**..A.simp |
| 4e720 | 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 | lified.packet.flow.diagram.for.t |
| 4e740 | 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 46 6f | ransit.traffic.is.shown.next:.Fo |
| 4e760 | 72 20 77 65 62 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f 76 69 64 69 6e 67 20 69 6e 66 6f | r.web.application.providing.info |
| 4e780 | 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 69 72 20 73 74 61 74 65 20 48 54 54 50 20 68 | rmation.about.their.state.HTTP.h |
| 4e7a0 | 65 61 6c 74 68 20 63 68 65 63 6b 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 64 65 74 65 | ealth.checks.can.be.used.to.dete |
| 4e7c0 | 72 6d 69 6e 65 20 74 68 65 69 72 20 61 76 61 69 6c 61 62 69 6c 69 74 79 2e 00 46 6f 72 6d 61 6c | rmine.their.availability..Formal |
| 4e7e0 | 6c 79 2c 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 6c 6f 6f 6b 73 20 6c 69 6b 65 20 61 20 | ly,.a.virtual.link.looks.like.a. |
| 4e800 | 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 6e 65 63 74 69 6e | point-to-point.network.connectin |
| 4e820 | 67 20 74 77 6f 20 41 42 52 20 66 72 6f 6d 20 6f 6e 65 20 61 72 65 61 20 6f 6e 65 20 6f 66 20 77 | g.two.ABR.from.one.area.one.of.w |
| 4e840 | 68 69 63 68 20 70 68 79 73 69 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 62 | hich.physically.connected.to.a.b |
| 4e860 | 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 54 68 69 73 20 70 73 65 75 64 6f 2d 6e 65 74 77 6f 72 | ackbone.area..This.pseudo-networ |
| 4e880 | 6b 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 62 65 6c 6f 6e 67 20 74 6f 20 61 20 62 | k.is.considered.to.belong.to.a.b |
| 4e8a0 | 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 00 46 6f 72 77 61 72 64 20 69 6e 63 6f 6d 69 6e 67 20 44 | ackbone.area..Forward.incoming.D |
| 4e8c0 | 4e 53 20 71 75 65 72 69 65 73 20 74 6f 20 74 68 65 20 44 4e 53 20 73 65 72 76 65 72 73 20 63 6f | NS.queries.to.the.DNS.servers.co |
| 4e8e0 | 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 65 20 60 60 73 79 73 74 65 6d 20 6e 61 6d 65 | nfigured.under.the.``system.name |
| 4e900 | 2d 73 65 72 76 65 72 60 60 20 6e 6f 64 65 73 2e 00 46 6f 72 77 61 72 64 20 6d 65 74 68 6f 64 00 | -server``.nodes..Forward.method. |
| 4e920 | 46 6f 72 77 61 72 64 20 72 65 63 65 69 76 65 64 20 71 75 65 72 69 65 73 20 66 6f 72 20 61 20 70 | Forward.received.queries.for.a.p |
| 4e940 | 61 72 74 69 63 75 6c 61 72 20 64 6f 6d 61 69 6e 20 28 73 70 65 63 69 66 69 65 64 20 76 69 61 20 | articular.domain.(specified.via. |
| 4e960 | 60 64 6f 6d 61 69 6e 2d 6e 61 6d 65 60 29 20 74 6f 20 61 20 67 69 76 65 6e 20 6e 61 6d 65 73 65 | `domain-name`).to.a.given.namese |
| 4e980 | 72 76 65 72 2e 20 4d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 65 72 76 65 72 73 20 63 61 6e 20 62 | rver..Multiple.nameservers.can.b |
| 4e9a0 | 65 20 73 70 65 63 69 66 69 65 64 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 74 68 69 73 20 66 65 | e.specified..You.can.use.this.fe |
| 4e9c0 | 61 74 75 72 65 20 66 6f 72 20 61 20 44 4e 53 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 63 6f | ature.for.a.DNS.split-horizon.co |
| 4e9e0 | 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 46 6f 75 72 20 70 6f 6c 69 63 69 65 73 20 66 6f 72 20 72 | nfiguration..Four.policies.for.r |
| 4ea00 | 65 66 6f 72 77 61 72 64 69 6e 67 20 44 48 43 50 20 70 61 63 6b 65 74 73 20 65 78 69 73 74 3a 00 | eforwarding.DHCP.packets.exist:. |
| 4ea20 | 46 72 6f 6d 20 3a 72 66 63 3a 60 31 39 33 30 60 3a 00 46 72 6f 6d 20 61 20 73 65 63 75 72 69 74 | From.:rfc:`1930`:.From.a.securit |
| 4ea40 | 79 20 70 65 72 73 70 65 63 74 69 76 65 2c 20 69 74 20 69 73 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 | y.perspective,.it.is.not.recomme |
| 4ea60 | 6e 64 65 64 20 74 6f 20 6c 65 74 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 63 72 65 61 74 65 | nded.to.let.a.third.party.create |
| 4ea80 | 20 61 6e 64 20 73 68 61 72 65 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 66 6f 72 20 61 | .and.share.the.private.key.for.a |
| 4eaa0 | 20 73 65 63 75 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 59 6f 75 20 73 68 6f 75 6c 64 20 | .secured.connection..You.should. |
| 4eac0 | 63 72 65 61 74 65 20 74 68 65 20 70 72 69 76 61 74 65 20 70 6f 72 74 69 6f 6e 20 6f 6e 20 79 6f | create.the.private.portion.on.yo |
| 4eae0 | 75 72 20 6f 77 6e 20 61 6e 64 20 6f 6e 6c 79 20 68 61 6e 64 20 6f 75 74 20 74 68 65 20 70 75 62 | ur.own.and.only.hand.out.the.pub |
| 4eb00 | 6c 69 63 20 6b 65 79 2e 20 50 6c 65 61 73 65 20 6b 65 65 70 20 74 68 69 73 20 69 6e 20 6d 69 6e | lic.key..Please.keep.this.in.min |
| 4eb20 | 64 20 77 68 65 6e 20 75 73 69 6e 67 20 74 68 69 73 20 63 6f 6e 76 65 6e 69 65 6e 63 65 20 66 65 | d.when.using.this.convenience.fe |
| 4eb40 | 61 74 75 72 65 2e 00 46 72 6f 6d 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 64 65 66 69 6e | ature..From.main.structure.defin |
| 4eb60 | 65 64 20 69 6e 20 3a 64 6f 63 3a 60 46 69 72 65 77 61 6c 6c 20 4f 76 65 72 76 69 65 77 3c 2f 63 | ed.in.:doc:`Firewall.Overview</c |
| 4eb80 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 6e 64 65 78 3e 60 20 69 6e | onfiguration/firewall/index>`.in |
| 4eba0 | 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 66 69 6e 64 20 64 65 74 61 69 | .this.section.you.can.find.detai |
| 4ebc0 | 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 6c 79 20 66 6f 72 20 74 68 65 20 6e 65 78 | led.information.only.for.the.nex |
| 4ebe0 | 74 20 70 61 72 74 20 6f 66 20 74 68 65 20 67 65 6e 65 72 61 6c 20 73 74 72 75 63 74 75 72 65 3a | t.part.of.the.general.structure: |
| 4ec00 | 00 46 72 6f 6d 20 74 68 65 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 64 65 66 69 6e 65 64 | .From.the.main.structure.defined |
| 4ec20 | 20 69 6e 20 3a 64 6f 63 3a 60 46 69 72 65 77 61 6c 6c 20 4f 76 65 72 76 69 65 77 3c 2f 63 6f 6e | .in.:doc:`Firewall.Overview</con |
| 4ec40 | 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 6e 64 65 78 3e 60 20 69 6e 20 74 | figuration/firewall/index>`.in.t |
| 4ec60 | 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 66 69 6e 64 20 64 65 74 61 69 6c 65 | his.section.you.can.find.detaile |
| 4ec80 | 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 6c 79 20 66 6f 72 20 74 68 65 20 6e 65 78 74 20 | d.information.only.for.the.next. |
| 4eca0 | 70 61 72 74 20 6f 66 20 74 68 65 20 67 65 6e 65 72 61 6c 20 73 74 72 75 63 74 75 72 65 3a 00 46 | part.of.the.general.structure:.F |
| 4ecc0 | 75 72 74 68 65 72 20 52 65 61 64 69 6e 67 00 46 77 6d 61 72 6b 00 47 45 4e 45 56 45 00 47 45 4e | urther.Reading.Fwmark.GENEVE.GEN |
| 4ece0 | 45 56 45 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 75 70 70 6f 72 74 20 6e 65 74 77 6f | EVE.is.designed.to.support.netwo |
| 4ed00 | 72 6b 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 65 20 63 61 73 65 73 2c 20 77 68 65 | rk.virtualization.use.cases,.whe |
| 4ed20 | 72 65 20 74 75 6e 6e 65 6c 73 20 61 72 65 20 74 79 70 69 63 61 6c 6c 79 20 65 73 74 61 62 6c 69 | re.tunnels.are.typically.establi |
| 4ed40 | 73 68 65 64 20 74 6f 20 61 63 74 20 61 73 20 61 20 62 61 63 6b 70 6c 61 6e 65 20 62 65 74 77 65 | shed.to.act.as.a.backplane.betwe |
| 4ed60 | 65 6e 20 74 68 65 20 76 69 72 74 75 61 6c 20 73 77 69 74 63 68 65 73 20 72 65 73 69 64 69 6e 67 | en.the.virtual.switches.residing |
| 4ed80 | 20 69 6e 20 68 79 70 65 72 76 69 73 6f 72 73 2c 20 70 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 | .in.hypervisors,.physical.switch |
| 4eda0 | 65 73 2c 20 6f 72 20 6d 69 64 64 6c 65 62 6f 78 65 73 20 6f 72 20 6f 74 68 65 72 20 61 70 70 6c | es,.or.middleboxes.or.other.appl |
| 4edc0 | 69 61 6e 63 65 73 2e 20 41 6e 20 61 72 62 69 74 72 61 72 79 20 49 50 20 6e 65 74 77 6f 72 6b 20 | iances..An.arbitrary.IP.network. |
| 4ede0 | 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 75 6e 64 65 72 6c 61 79 20 61 6c 74 68 6f | can.be.used.as.an.underlay.altho |
| 4ee00 | 75 67 68 20 43 6c 6f 73 20 6e 65 74 77 6f 72 6b 73 20 2d 20 41 20 74 65 63 68 6e 69 71 75 65 20 | ugh.Clos.networks.-.A.technique. |
| 4ee20 | 66 6f 72 20 63 6f 6d 70 6f 73 69 6e 67 20 6e 65 74 77 6f 72 6b 20 66 61 62 72 69 63 73 20 6c 61 | for.composing.network.fabrics.la |
| 4ee40 | 72 67 65 72 20 74 68 61 6e 20 61 20 73 69 6e 67 6c 65 20 73 77 69 74 63 68 20 77 68 69 6c 65 20 | rger.than.a.single.switch.while. |
| 4ee60 | 6d 61 69 6e 74 61 69 6e 69 6e 67 20 6e 6f 6e 2d 62 6c 6f 63 6b 69 6e 67 20 62 61 6e 64 77 69 64 | maintaining.non-blocking.bandwid |
| 4ee80 | 74 68 20 61 63 72 6f 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 6f 69 6e 74 73 2e 20 45 43 4d | th.across.connection.points..ECM |
| 4eea0 | 50 20 69 73 20 75 73 65 64 20 74 6f 20 64 69 76 69 64 65 20 74 72 61 66 66 69 63 20 61 63 72 6f | P.is.used.to.divide.traffic.acro |
| 4eec0 | 73 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 65 20 6c 69 6e 6b 73 20 61 6e 64 20 73 77 69 74 63 68 | ss.the.multiple.links.and.switch |
| 4eee0 | 65 73 20 74 68 61 74 20 63 6f 6e 73 74 69 74 75 74 65 20 74 68 65 20 66 61 62 72 69 63 2e 20 53 | es.that.constitute.the.fabric..S |
| 4ef00 | 6f 6d 65 74 69 6d 65 73 20 74 65 72 6d 65 64 20 22 6c 65 61 66 20 61 6e 64 20 73 70 69 6e 65 22 | ometimes.termed."leaf.and.spine" |
| 4ef20 | 20 6f 72 20 22 66 61 74 20 74 72 65 65 22 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 00 47 45 4e 45 56 | .or."fat.tree".topologies..GENEV |
| 4ef40 | 45 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 75 70 70 6f 72 74 20 6e 65 74 77 6f 72 6b | E.is.designed.to.support.network |
| 4ef60 | 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 65 20 63 61 73 65 73 2c 20 77 68 65 72 65 | .virtualization.use.cases,.where |
| 4ef80 | 20 74 75 6e 6e 65 6c 73 20 61 72 65 20 74 79 70 69 63 61 6c 6c 79 20 65 73 74 61 62 6c 69 73 68 | .tunnels.are.typically.establish |
| 4efa0 | 65 64 20 74 6f 20 61 63 74 20 61 73 20 61 20 62 61 63 6b 70 6c 61 6e 65 20 62 65 74 77 65 65 6e | ed.to.act.as.a.backplane.between |
| 4efc0 | 20 74 68 65 20 76 69 72 74 75 61 6c 20 73 77 69 74 63 68 65 73 20 72 65 73 69 64 69 6e 67 20 69 | .the.virtual.switches.residing.i |
| 4efe0 | 6e 20 68 79 70 65 72 76 69 73 6f 72 73 2c 20 70 68 79 73 69 63 61 6c 20 73 77 69 74 63 68 65 73 | n.hypervisors,.physical.switches |
| 4f000 | 2c 20 6f 72 20 6d 69 64 64 6c 65 62 6f 78 65 73 20 6f 72 20 6f 74 68 65 72 20 61 70 70 6c 69 61 | ,.or.middleboxes.or.other.applia |
| 4f020 | 6e 63 65 73 2e 20 41 6e 20 61 72 62 69 74 72 61 72 79 20 49 50 20 6e 65 74 77 6f 72 6b 20 63 61 | nces..An.arbitrary.IP.network.ca |
| 4f040 | 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 75 6e 64 65 72 6c 61 79 20 74 68 72 6f 75 67 68 | n.be.used.as.an.underlay.through |
| 4f060 | 20 43 6c 6f 73 20 6e 65 74 77 6f 72 6b 73 20 2d 20 41 20 74 65 63 68 6e 69 71 75 65 20 66 6f 72 | .Clos.networks.-.A.technique.for |
| 4f080 | 20 63 6f 6d 70 6f 73 69 6e 67 20 6e 65 74 77 6f 72 6b 20 66 61 62 72 69 63 73 20 6c 61 72 67 65 | .composing.network.fabrics.large |
| 4f0a0 | 72 20 74 68 61 6e 20 61 20 73 69 6e 67 6c 65 20 73 77 69 74 63 68 20 77 68 69 6c 65 20 6d 61 69 | r.than.a.single.switch.while.mai |
| 4f0c0 | 6e 74 61 69 6e 69 6e 67 20 6e 6f 6e 2d 62 6c 6f 63 6b 69 6e 67 20 62 61 6e 64 77 69 64 74 68 20 | ntaining.non-blocking.bandwidth. |
| 4f0e0 | 61 63 72 6f 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 6f 69 6e 74 73 2e 20 45 43 4d 50 20 69 | across.connection.points..ECMP.i |
| 4f100 | 73 20 75 73 65 64 20 74 6f 20 64 69 76 69 64 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 | s.used.to.divide.traffic.across. |
| 4f120 | 74 68 65 20 6d 75 6c 74 69 70 6c 65 20 6c 69 6e 6b 73 20 61 6e 64 20 73 77 69 74 63 68 65 73 20 | the.multiple.links.and.switches. |
| 4f140 | 74 68 61 74 20 63 6f 6e 73 74 69 74 75 74 65 20 74 68 65 20 66 61 62 72 69 63 2e 20 53 6f 6d 65 | that.constitute.the.fabric..Some |
| 4f160 | 74 69 6d 65 73 20 74 65 72 6d 65 64 20 22 6c 65 61 66 20 61 6e 64 20 73 70 69 6e 65 22 20 6f 72 | times.termed."leaf.and.spine".or |
| 4f180 | 20 22 66 61 74 20 74 72 65 65 22 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 00 47 45 4e 45 56 45 20 6f | ."fat.tree".topologies..GENEVE.o |
| 4f1a0 | 70 74 69 6f 6e 73 00 47 52 45 20 69 73 20 61 20 77 65 6c 6c 20 64 65 66 69 6e 65 64 20 73 74 61 | ptions.GRE.is.a.well.defined.sta |
| 4f1c0 | 6e 64 61 72 64 20 74 68 61 74 20 69 73 20 63 6f 6d 6d 6f 6e 20 69 6e 20 6d 6f 73 74 20 6e 65 74 | ndard.that.is.common.in.most.net |
| 4f1e0 | 77 6f 72 6b 73 2e 20 57 68 69 6c 65 20 6e 6f 74 20 69 6e 68 65 72 65 6e 74 6c 79 20 64 69 66 66 | works..While.not.inherently.diff |
| 4f200 | 69 63 75 6c 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 72 65 20 61 72 65 20 61 20 63 | icult.to.configure.there.are.a.c |
| 4f220 | 6f 75 70 6c 65 20 6f 66 20 74 68 69 6e 67 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 6d 69 6e 64 20 | ouple.of.things.to.keep.in.mind. |
| 4f240 | 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 | to.make.sure.the.configuration.p |
| 4f260 | 65 72 66 6f 72 6d 73 20 61 73 20 65 78 70 65 63 74 65 64 2e 20 41 20 63 6f 6d 6d 6f 6e 20 63 61 | erforms.as.expected..A.common.ca |
| 4f280 | 75 73 65 20 66 6f 72 20 47 52 45 20 74 75 6e 6e 65 6c 73 20 74 6f 20 66 61 69 6c 20 74 6f 20 63 | use.for.GRE.tunnels.to.fail.to.c |
| 4f2a0 | 6f 6d 65 20 75 70 20 63 6f 72 72 65 63 74 6c 79 20 69 6e 63 6c 75 64 65 20 41 43 4c 20 6f 72 20 | ome.up.correctly.include.ACL.or. |
| 4f2c0 | 46 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 | Firewall.configurations.that.are |
| 4f2e0 | 20 64 69 73 63 61 72 64 69 6e 67 20 49 50 20 70 72 6f 74 6f 63 6f 6c 20 34 37 20 6f 72 20 62 6c | .discarding.IP.protocol.47.or.bl |
| 4f300 | 6f 63 6b 69 6e 67 20 79 6f 75 72 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 74 | ocking.your.source/destination.t |
| 4f320 | 72 61 66 66 69 63 2e 00 47 52 45 20 69 73 20 61 6c 73 6f 20 74 68 65 20 6f 6e 6c 79 20 63 6c 61 | raffic..GRE.is.also.the.only.cla |
| 4f340 | 73 73 69 63 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 63 72 65 61 74 69 | ssic.protocol.that.allows.creati |
| 4f360 | 6e 67 20 6d 75 6c 74 69 70 6c 65 20 74 75 6e 6e 65 6c 73 20 77 69 74 68 20 74 68 65 20 73 61 6d | ng.multiple.tunnels.with.the.sam |
| 4f380 | 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 64 75 65 20 74 6f 20 | e.source.and.destination.due.to. |
| 4f3a0 | 69 74 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 75 6e 6e 65 6c 20 6b 65 79 73 2e 20 44 65 73 | its.support.for.tunnel.keys..Des |
| 4f3c0 | 70 69 74 65 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 69 73 20 66 65 61 74 75 72 65 20 68 61 73 20 | pite.its.name,.this.feature.has. |
| 4f3e0 | 6e 6f 74 68 69 6e 67 20 74 6f 20 64 6f 20 77 69 74 68 20 73 65 63 75 72 69 74 79 3a 20 69 74 27 | nothing.to.do.with.security:.it' |
| 4f400 | 73 20 73 69 6d 70 6c 79 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 20 74 68 61 74 20 61 6c 6c 6f | s.simply.an.identifier.that.allo |
| 4f420 | 77 73 20 72 6f 75 74 65 72 73 20 74 6f 20 74 65 6c 6c 20 6f 6e 65 20 74 75 6e 6e 65 6c 20 66 72 | ws.routers.to.tell.one.tunnel.fr |
| 4f440 | 6f 6d 20 61 6e 6f 74 68 65 72 2e 00 47 52 45 20 69 73 20 6f 66 74 65 6e 20 73 65 65 6e 20 61 73 | om.another..GRE.is.often.seen.as |
| 4f460 | 20 61 20 6f 6e 65 20 73 69 7a 65 20 66 69 74 73 20 61 6c 6c 20 73 6f 6c 75 74 69 6f 6e 20 77 68 | .a.one.size.fits.all.solution.wh |
| 4f480 | 65 6e 20 69 74 20 63 6f 6d 65 73 20 74 6f 20 63 6c 61 73 73 69 63 20 49 50 20 74 75 6e 6e 65 6c | en.it.comes.to.classic.IP.tunnel |
| 4f4a0 | 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2c 20 61 6e 64 20 66 6f 72 20 61 20 67 6f 6f 64 20 72 65 | ing.protocols,.and.for.a.good.re |
| 4f4c0 | 61 73 6f 6e 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 72 65 20 61 72 65 20 6d 6f 72 65 20 73 70 | ason..However,.there.are.more.sp |
| 4f4e0 | 65 63 69 61 6c 69 7a 65 64 20 6f 70 74 69 6f 6e 73 2c 20 61 6e 64 20 6d 61 6e 79 20 6f 66 20 74 | ecialized.options,.and.many.of.t |
| 4f500 | 68 65 6d 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 56 79 4f 53 2e 20 54 68 65 72 65 | hem.are.supported.by.VyOS..There |
| 4f520 | 20 61 72 65 20 61 6c 73 6f 20 72 61 74 68 65 72 20 6f 62 73 63 75 72 65 20 47 52 45 20 6f 70 74 | .are.also.rather.obscure.GRE.opt |
| 4f540 | 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 66 75 6c 2e 00 47 52 45 2f 49 50 49 | ions.that.can.be.useful..GRE/IPI |
| 4f560 | 50 2f 53 49 54 20 61 6e 64 20 49 50 73 65 63 20 61 72 65 20 77 69 64 65 6c 79 20 61 63 63 65 70 | P/SIT.and.IPsec.are.widely.accep |
| 4f580 | 74 65 64 20 73 74 61 6e 64 61 72 64 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 20 74 68 69 73 20 73 | ted.standards,.which.make.this.s |
| 4f5a0 | 63 68 65 6d 65 20 65 61 73 79 20 74 6f 20 69 6d 70 6c 65 6d 65 6e 74 20 62 65 74 77 65 65 6e 20 | cheme.easy.to.implement.between. |
| 4f5c0 | 56 79 4f 53 20 61 6e 64 20 76 69 72 74 75 61 6c 6c 79 20 61 6e 79 20 6f 74 68 65 72 20 72 6f 75 | VyOS.and.virtually.any.other.rou |
| 4f5e0 | 74 65 72 2e 00 47 52 45 54 41 50 00 47 65 6e 65 61 72 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e | ter..GRETAP.Genearate.a.new.Open |
| 4f600 | 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 | VPN.shared.secret..The.generated |
| 4f620 | 20 73 65 63 72 65 64 20 69 73 20 74 68 65 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e | .secred.is.the.output.to.the.con |
| 4f640 | 73 6f 6c 65 2e 00 47 65 6e 65 61 72 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 | sole..Genearate.a.new.OpenVPN.sh |
| 4f660 | 61 72 65 64 20 73 65 63 72 65 74 2e 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 73 65 63 72 65 | ared.secret..The.generated.secre |
| 4f680 | 74 20 69 73 20 74 68 65 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 | t.is.the.output.to.the.console.. |
| 4f6a0 | 47 65 6e 65 72 61 6c 00 47 65 6e 65 72 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 47 65 | General.General.Configuration.Ge |
| 4f6c0 | 6e 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 | neral.commands.for.firewall.conf |
| 4f6e0 | 69 67 75 72 61 74 69 6f 6e 2c 20 63 6f 75 6e 74 65 72 20 61 6e 64 20 73 74 61 74 69 73 63 69 74 | iguration,.counter.and.statiscit |
| 4f700 | 73 3a 00 47 65 6e 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 66 69 72 65 77 61 6c 6c | s:.General.commands.for.firewall |
| 4f720 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 63 6f 75 6e 74 65 72 20 61 6e 64 20 73 74 61 74 | .configuration,.counter.and.stat |
| 4f740 | 69 73 74 69 63 73 3a 00 47 65 6e 65 72 61 6c 20 65 78 61 6d 70 6c 65 00 47 65 6e 65 72 61 74 65 | istics:.General.example.Generate |
| 4f760 | 20 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e | .:abbr:`MKA.(MACsec.Key.Agreemen |
| 4f780 | 74 20 70 72 6f 74 6f 63 6f 6c 29 60 20 43 41 4b 20 6b 65 79 20 31 32 38 20 6f 72 20 32 35 36 20 | t.protocol)`.CAK.key.128.or.256. |
| 4f7a0 | 62 69 74 73 2e 00 47 65 6e 65 72 61 74 65 20 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 | bits..Generate.:abbr:`MKA.(MACse |
| 4f7c0 | 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 29 60 20 43 41 4b 20 6b | c.Key.Agreement.protocol)`.CAK.k |
| 4f7e0 | 65 79 2e 00 47 65 6e 65 72 61 74 65 20 4b 65 79 70 61 69 72 00 47 65 6e 65 72 61 74 65 20 61 20 | ey..Generate.Keypair.Generate.a. |
| 4f800 | 57 69 72 65 47 75 61 72 64 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 75 73 65 64 | WireGuard.pre-shared.secret.used |
| 4f820 | 20 66 6f 72 20 70 65 65 72 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 2e 00 47 65 6e 65 72 | .for.peers.to.communicate..Gener |
| 4f840 | 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e | ate.a.new.OpenVPN.shared.secret. |
| 4f860 | 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 73 65 63 72 65 74 20 69 73 20 74 68 65 20 6f 75 74 | .The.generated.secret.is.the.out |
| 4f880 | 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 72 61 74 65 20 61 20 6e | put.to.the.console..Generate.a.n |
| 4f8a0 | 65 77 20 57 69 72 65 47 75 61 72 64 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 20 | ew.WireGuard.public/private.key. |
| 4f8c0 | 70 6f 72 74 69 6f 6e 20 61 6e 64 20 6f 75 74 70 75 74 20 74 68 65 20 72 65 73 75 6c 74 20 74 6f | portion.and.output.the.result.to |
| 4f8e0 | 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 73 65 74 | .the.console..Generate.a.new.set |
| 4f900 | 20 6f 66 20 3a 61 62 62 72 3a 60 44 48 20 28 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 29 60 20 | .of.:abbr:`DH.(Diffie-Hellman)`. |
| 4f920 | 70 61 72 61 6d 65 74 65 72 73 2e 20 54 68 65 20 6b 65 79 20 73 69 7a 65 20 69 73 20 72 65 71 75 | parameters..The.key.size.is.requ |
| 4f940 | 65 73 74 65 64 20 62 79 20 74 68 65 20 43 4c 49 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f | ested.by.the.CLI.and.defaults.to |
| 4f960 | 20 32 30 34 38 20 62 69 74 2e 00 47 65 6e 65 72 61 74 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | .2048.bit..Generate.the.configur |
| 4f980 | 61 74 69 6f 6e 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 61 64 64 20 61 20 70 75 62 | ation.mode.commands.to.add.a.pub |
| 4f9a0 | 6c 69 63 20 6b 65 79 20 66 6f 72 20 3a 72 65 66 3a 60 73 73 68 5f 6b 65 79 5f 62 61 73 65 64 5f | lic.key.for.:ref:`ssh_key_based_ |
| 4f9c0 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 2e 20 60 60 3c 6c 6f 63 61 74 69 6f 6e 3e 60 60 20 | authentication`..``<location>``. |
| 4f9e0 | 63 61 6e 20 62 65 20 61 20 6c 6f 63 61 6c 20 70 61 74 68 20 6f 72 20 61 20 55 52 4c 20 70 6f 69 | can.be.a.local.path.or.a.URL.poi |
| 4fa00 | 6e 74 69 6e 67 20 61 74 20 61 20 72 65 6d 6f 74 65 20 66 69 6c 65 2e 00 47 65 6e 65 72 61 74 65 | nting.at.a.remote.file..Generate |
| 4fa20 | 73 20 61 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 | s.a.keypair,.which.includes.the. |
| 4fa40 | 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2c 20 61 6e 64 20 62 75 | public.and.private.parts,.and.bu |
| 4fa60 | 69 6c 64 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 | ild.a.configuration.command.to.i |
| 4fa80 | 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 74 6f 20 60 60 69 6e 74 65 72 66 61 63 65 60 60 | nstall.this.key.to.``interface`` |
| 4faa0 | 2e 00 47 65 6e 65 72 61 74 65 73 20 61 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 | ..Generates.a.keypair,.which.inc |
| 4fac0 | 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 | ludes.the.public.and.private.par |
| 4fae0 | 74 73 2c 20 61 6e 64 20 62 75 69 6c 64 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 | ts,.and.builds.a.configuration.c |
| 4fb00 | 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 74 6f 20 60 60 | ommand.to.install.this.key.to.`` |
| 4fb20 | 69 6e 74 65 72 66 61 63 65 60 60 2e 00 47 65 6e 65 72 61 74 65 73 20 74 68 65 20 6b 65 79 70 61 | interface``..Generates.the.keypa |
| 4fb40 | 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e | ir,.which.includes.the.public.an |
| 4fb60 | 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2e 20 54 68 65 20 6b 65 79 20 69 73 20 6e 6f 74 20 | d.private.parts..The.key.is.not. |
| 4fb80 | 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 2d 20 6f 6e 6c 79 20 61 20 6b 65 | stored.on.the.system.-.only.a.ke |
| 4fba0 | 79 70 61 69 72 20 69 73 20 67 65 6e 65 72 61 74 65 64 2e 00 47 65 6e 65 72 69 63 20 52 6f 75 74 | ypair.is.generated..Generic.Rout |
| 4fbc0 | 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 28 47 52 45 29 00 47 65 6e 65 76 65 20 48 | ing.Encapsulation.(GRE).Geneve.H |
| 4fbe0 | 65 61 64 65 72 3a 00 47 65 74 20 61 20 6c 69 73 74 20 6f 66 20 61 6c 6c 20 77 69 72 65 67 75 61 | eader:.Get.a.list.of.all.wiregua |
| 4fc00 | 72 64 20 69 6e 74 65 72 66 61 63 65 73 00 47 65 74 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 76 | rd.interfaces.Get.an.overview.ov |
| 4fc20 | 65 72 20 74 68 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 6f 75 6e 74 65 72 73 2e 00 47 65 74 20 | er.the.encryption.counters..Get. |
| 4fc40 | 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 4c 4c 44 50 20 | detailed.information.about.LLDP. |
| 4fc60 | 6e 65 69 67 68 62 6f 72 73 2e 00 47 65 74 20 74 68 65 20 44 48 43 50 76 36 2d 50 44 20 70 72 65 | neighbors..Get.the.DHCPv6-PD.pre |
| 4fc80 | 66 69 78 65 73 20 66 72 6f 6d 20 62 6f 74 68 20 72 6f 75 74 65 72 73 3a 00 47 65 74 74 69 6e 67 | fixes.from.both.routers:.Getting |
| 4fca0 | 20 73 74 61 72 74 65 64 00 47 69 76 65 6e 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 6f 70 65 | .started.Given.the.fact.that.ope |
| 4fcc0 | 6e 20 44 4e 53 20 72 65 63 75 72 73 6f 72 73 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e | n.DNS.recursors.could.be.used.on |
| 4fce0 | 20 44 44 6f 53 20 61 6d 70 6c 69 66 69 63 61 74 69 6f 6e 20 61 74 74 61 63 6b 73 2c 20 79 6f 75 | .DDoS.amplification.attacks,.you |
| 4fd00 | 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 73 20 77 68 69 | .must.configure.the.networks.whi |
| 4fd20 | 63 68 20 61 72 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 20 72 65 63 75 72 | ch.are.allowed.to.use.this.recur |
| 4fd40 | 73 6f 72 2e 20 41 20 6e 65 74 77 6f 72 6b 20 6f 66 20 60 60 30 2e 30 2e 30 2e 30 2f 30 60 60 20 | sor..A.network.of.``0.0.0.0/0``. |
| 4fd60 | 6f 72 20 60 60 3a 3a 2f 30 60 60 20 77 6f 75 6c 64 20 61 6c 6c 6f 77 20 61 6c 6c 20 49 50 76 34 | or.``::/0``.would.allow.all.IPv4 |
| 4fd80 | 20 61 6e 64 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 20 74 6f 20 71 75 65 72 79 20 74 68 69 73 | .and.IPv6.networks.to.query.this |
| 4fda0 | 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 69 73 20 67 65 6e 65 72 61 6c 6c 79 20 61 20 62 61 64 | .server..This.is.generally.a.bad |
| 4fdc0 | 20 69 64 65 61 2e 00 47 69 76 65 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 | .idea..Given.the.following.examp |
| 4fde0 | 6c 65 20 77 65 20 68 61 76 65 20 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e | le.we.have.one.VyOS.router.actin |
| 4fe00 | 67 20 61 73 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 61 6e 64 20 61 6e 6f 74 68 65 72 20 | g.as.OpenVPN.server.and.another. |
| 4fe20 | 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 4f 70 65 6e 56 50 4e 20 63 6c | VyOS.router.acting.as.OpenVPN.cl |
| 4fe40 | 69 65 6e 74 2e 20 54 68 65 20 73 65 72 76 65 72 20 61 6c 73 6f 20 70 75 73 68 65 73 20 61 20 73 | ient..The.server.also.pushes.a.s |
| 4fe60 | 74 61 74 69 63 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 4f | tatic.client.IP.address.to.the.O |
| 4fe80 | 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 52 65 6d 65 6d 62 65 72 2c 20 63 6c 69 65 6e 74 73 | penVPN.client..Remember,.clients |
| 4fea0 | 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 69 72 20 43 4e 20 61 | .are.identified.using.their.CN.a |
| 4fec0 | 74 74 72 69 62 75 74 65 20 69 6e 20 74 68 65 20 53 53 4c 20 63 65 72 74 69 66 69 63 61 74 65 2e | ttribute.in.the.SSL.certificate. |
| 4fee0 | 00 47 69 76 65 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 77 65 20 | .Given.the.following.example.we. |
| 4ff00 | 68 61 76 65 20 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 61 | have.one.VyOS.router.acting.as.a |
| 4ff20 | 6e 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 61 6e 64 20 61 6e 6f 74 68 65 72 20 56 79 4f | n.OpenVPN.server.and.another.VyO |
| 4ff40 | 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c | S.router.acting.as.an.OpenVPN.cl |
| 4ff60 | 69 65 6e 74 2e 20 54 68 65 20 73 65 72 76 65 72 20 61 6c 73 6f 20 70 75 73 68 65 73 20 61 20 73 | ient..The.server.also.pushes.a.s |
| 4ff80 | 74 61 74 69 63 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 4f | tatic.client.IP.address.to.the.O |
| 4ffa0 | 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 52 65 6d 65 6d 62 65 72 2c 20 63 6c 69 65 6e 74 73 | penVPN.client..Remember,.clients |
| 4ffc0 | 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 69 72 20 43 4e 20 61 | .are.identified.using.their.CN.a |
| 4ffe0 | 74 74 72 69 62 75 74 65 20 69 6e 20 74 68 65 20 53 53 4c 20 63 65 72 74 69 66 69 63 61 74 65 2e | ttribute.in.the.SSL.certificate. |
| 50000 | 00 47 6c 6f 61 62 61 6c 00 47 6c 6f 62 61 6c 00 47 6c 6f 62 61 6c 20 41 64 76 61 6e 63 65 64 20 | .Gloabal.Global.Global.Advanced. |
| 50020 | 6f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 4f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 4f 70 | options.Global.Options.Global.Op |
| 50040 | 74 69 6f 6e 73 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 47 6c 6f | tions.Firewall.Configuration.Glo |
| 50060 | 62 61 6c 20 6f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 70 61 72 61 6d 65 74 65 72 73 00 47 6c | bal.options.Global.parameters.Gl |
| 50080 | 6f 62 61 6c 20 73 65 74 74 69 6e 67 73 00 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 00 47 | obal.settings.Graceful.Restart.G |
| 500a0 | 72 61 70 68 51 4c 00 47 72 61 74 75 69 74 6f 75 73 20 41 52 50 00 47 72 6f 75 70 73 00 47 72 6f | raphQL.Gratuitous.ARP.Groups.Gro |
| 500c0 | 75 70 73 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 75 6e 69 71 75 65 20 6e 61 6d 65 73 2e 20 45 | ups.need.to.have.unique.names..E |
| 500e0 | 76 65 6e 20 74 68 6f 75 67 68 20 73 6f 6d 65 20 63 6f 6e 74 61 69 6e 20 49 50 76 34 20 61 64 64 | ven.though.some.contain.IPv4.add |
| 50100 | 72 65 73 73 65 73 20 61 6e 64 20 6f 74 68 65 72 73 20 63 6f 6e 74 61 69 6e 20 49 50 76 36 20 61 | resses.and.others.contain.IPv6.a |
| 50120 | 64 64 72 65 73 73 65 73 2c 20 74 68 65 79 20 73 74 69 6c 6c 20 6e 65 65 64 20 74 6f 20 68 61 76 | ddresses,.they.still.need.to.hav |
| 50140 | 65 20 75 6e 69 71 75 65 20 6e 61 6d 65 73 2c 20 73 6f 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 | e.unique.names,.so.you.may.want. |
| 50160 | 74 6f 20 61 70 70 65 6e 64 20 22 2d 76 34 22 20 6f 72 20 22 2d 76 36 22 20 74 6f 20 79 6f 75 72 | to.append."-v4".or."-v6".to.your |
| 50180 | 20 67 72 6f 75 70 20 6e 61 6d 65 73 2e 00 48 45 20 28 48 69 67 68 20 45 66 66 69 63 69 65 6e 63 | .group.names..HE.(High.Efficienc |
| 501a0 | 79 29 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 38 30 32 2e 31 31 61 78 29 00 48 45 20 6f 70 | y).capabilities.(802.11ax).HE.op |
| 501c0 | 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 | erating.channel.center.frequency |
| 501e0 | 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 31 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 20 38 | .-.center.freq.1.(for.use.with.8 |
| 50200 | 30 2c 20 38 30 2b 38 30 20 61 6e 64 20 31 36 30 20 6d 6f 64 65 73 29 00 48 45 20 6f 70 65 72 61 | 0,.80+80.and.160.modes).HE.opera |
| 50220 | 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 | ting.channel.center.frequency.-. |
| 50240 | 63 65 6e 74 65 72 20 66 72 65 71 20 32 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 20 74 68 65 20 | center.freq.2.(for.use.with.the. |
| 50260 | 38 30 2b 38 30 20 6d 6f 64 65 29 00 48 50 20 4c 54 34 31 32 30 20 53 6e 61 70 64 72 61 67 6f 6e | 80+80.mode).HP.LT4120.Snapdragon |
| 50280 | 20 58 35 20 4c 54 45 00 48 51 27 73 20 72 6f 75 74 65 72 20 72 65 71 75 69 72 65 73 20 74 68 65 | .X5.LTE.HQ's.router.requires.the |
| 502a0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 65 70 73 20 74 6f 20 67 65 6e 65 72 61 74 65 20 63 72 79 | .following.steps.to.generate.cry |
| 502c0 | 70 74 6f 20 6d 61 74 65 72 69 61 6c 73 20 66 6f 72 20 74 68 65 20 42 72 61 6e 63 68 20 31 3a 00 | pto.materials.for.the.Branch.1:. |
| 502e0 | 48 54 20 28 48 69 67 68 20 54 68 72 6f 75 67 68 70 75 74 29 20 63 61 70 61 62 69 6c 69 74 69 65 | HT.(High.Throughput).capabilitie |
| 50300 | 73 20 28 38 30 32 2e 31 31 6e 29 00 48 54 54 50 20 41 50 49 00 48 54 54 50 20 62 61 73 65 64 20 | s.(802.11n).HTTP.API.HTTP.based. |
| 50320 | 73 65 72 76 69 63 65 73 00 48 54 54 50 20 62 61 73 69 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 | services.HTTP.basic.authenticati |
| 50340 | 6f 6e 20 75 73 65 72 6e 61 6d 65 00 48 54 54 50 20 62 61 73 69 63 20 61 75 74 68 65 6e 74 69 63 | on.username.HTTP.basic.authentic |
| 50360 | 61 74 69 6f 6e 2e 00 48 54 54 50 20 63 68 65 63 6b 73 00 48 54 54 50 20 63 6c 69 65 6e 74 00 48 | ation..HTTP.checks.HTTP.client.H |
| 50380 | 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 00 48 54 54 50 2d 41 50 49 00 48 61 69 72 70 69 | TTP.health.check.HTTP-API.Hairpi |
| 503a0 | 6e 20 4e 41 54 2f 4e 41 54 20 52 65 66 6c 65 63 74 69 6f 6e 00 48 61 6e 64 20 6f 75 74 20 70 72 | n.NAT/NAT.Reflection.Hand.out.pr |
| 503c0 | 65 66 69 78 65 73 20 6f 66 20 73 69 7a 65 20 60 3c 6c 65 6e 67 74 68 3e 60 20 69 6e 20 62 69 74 | efixes.of.size.`<length>`.in.bit |
| 503e0 | 73 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 | s.from.`<pd-prefix>`.to.clients. |
| 50400 | 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e 60 20 77 68 65 6e 20 74 68 65 20 72 65 | in.subnet.`<prefix>`.when.the.re |
| 50420 | 71 75 65 73 74 20 66 6f 72 20 70 72 65 66 69 78 20 64 65 6c 65 67 61 74 69 6f 6e 2e 00 48 61 6e | quest.for.prefix.delegation..Han |
| 50440 | 64 20 6f 75 74 20 70 72 65 66 69 78 65 73 20 6f 66 20 73 69 7a 65 20 60 3c 6c 65 6e 67 74 68 3e | d.out.prefixes.of.size.`<length> |
| 50460 | 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e | `.to.clients.in.subnet.`<prefix> |
| 50480 | 60 20 77 68 65 6e 20 74 68 65 79 20 72 65 71 75 65 73 74 20 66 6f 72 20 70 72 65 66 69 78 20 64 | `.when.they.request.for.prefix.d |
| 504a0 | 65 6c 65 67 61 74 69 6f 6e 2e 00 48 61 6e 64 6c 69 6e 67 20 61 6e 64 20 6d 6f 6e 69 74 6f 72 69 | elegation..Handling.and.monitori |
| 504c0 | 6e 67 00 48 61 70 72 6f 78 79 00 48 61 70 72 6f 78 79 20 69 73 20 61 20 62 61 6c 61 6e 63 65 72 | ng.Haproxy.Haproxy.is.a.balancer |
| 504e0 | 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 | .and.proxy.server.that.provides. |
| 50500 | 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 2c 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e | high-availability,.load.balancin |
| 50520 | 67 20 61 6e 64 20 70 72 6f 78 79 69 6e 67 20 66 6f 72 20 54 43 50 20 28 6c 65 76 65 6c 20 34 29 | g.and.proxying.for.TCP.(level.4) |
| 50540 | 20 61 6e 64 20 48 54 54 50 2d 62 61 73 65 64 20 28 6c 65 76 65 6c 20 37 29 20 61 70 70 6c 69 63 | .and.HTTP-based.(level.7).applic |
| 50560 | 61 74 69 6f 6e 73 2e 00 48 61 72 64 77 61 72 65 20 54 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 66 | ations..Hardware.Timestamping.of |
| 50580 | 20 4e 54 50 20 50 61 63 6b 65 74 73 00 48 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 | .NTP.Packets.Hardware.timestampi |
| 505a0 | 6e 67 20 64 65 70 65 6e 64 73 20 6f 6e 20 4e 49 43 20 73 75 70 70 6f 72 74 2e 20 53 6f 6d 65 20 | ng.depends.on.NIC.support..Some. |
| 505c0 | 4e 49 43 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 61 70 70 6c 79 20 | NICs.can.be.configured.to.apply. |
| 505e0 | 74 69 6d 65 73 74 61 6d 70 73 20 74 6f 20 61 6e 79 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 | timestamps.to.any.incoming.packe |
| 50600 | 74 2c 20 77 68 69 6c 65 20 6f 74 68 65 72 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 61 70 70 | t,.while.others.only.support.app |
| 50620 | 6c 79 69 6e 67 20 74 69 6d 65 73 74 61 6d 70 73 20 74 6f 20 73 70 65 63 69 66 69 63 20 70 72 6f | lying.timestamps.to.specific.pro |
| 50640 | 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 50 54 50 29 2e 00 48 61 76 69 6e 67 20 63 6f 6e 74 72 6f | tocols.(e.g..PTP)..Having.contro |
| 50660 | 6c 20 6f 76 65 72 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 6f 66 20 49 4e 56 41 4c 49 44 20 73 | l.over.the.matching.of.INVALID.s |
| 50680 | 74 61 74 65 20 74 72 61 66 66 69 63 2c 20 65 2e 67 2e 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 | tate.traffic,.e.g..the.ability.t |
| 506a0 | 6f 20 73 65 6c 65 63 74 69 76 65 6c 79 20 6c 6f 67 2c 20 69 73 20 61 6e 20 69 6d 70 6f 72 74 61 | o.selectively.log,.is.an.importa |
| 506c0 | 6e 74 20 74 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 20 74 6f 6f 6c 20 66 6f 72 20 6f 62 73 65 | nt.troubleshooting.tool.for.obse |
| 506e0 | 72 76 69 6e 67 20 62 72 6f 6b 65 6e 20 70 72 6f 74 6f 63 6f 6c 20 62 65 68 61 76 69 6f 72 2e 20 | rving.broken.protocol.behavior.. |
| 50700 | 46 6f 72 20 74 68 69 73 20 72 65 61 73 6f 6e 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 67 | For.this.reason,.VyOS.does.not.g |
| 50720 | 6c 6f 62 61 6c 6c 79 20 64 72 6f 70 20 69 6e 76 61 6c 69 64 20 73 74 61 74 65 20 74 72 61 66 66 | lobally.drop.invalid.state.traff |
| 50740 | 69 63 2c 20 69 6e 73 74 65 61 64 20 61 6c 6c 6f 77 69 6e 67 20 74 68 65 20 6f 70 65 72 61 74 6f | ic,.instead.allowing.the.operato |
| 50760 | 72 20 74 6f 20 6d 61 6b 65 20 74 68 65 20 64 65 74 65 72 6d 69 6e 61 74 69 6f 6e 20 6f 6e 20 68 | r.to.make.the.determination.on.h |
| 50780 | 6f 77 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 68 61 6e 64 6c 65 64 2e 00 48 65 61 6c 74 | ow.the.traffic.is.handled..Healt |
| 507a0 | 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 73 00 48 65 61 6c 74 68 20 63 68 65 63 6b 73 00 48 65 | h.check.scripts.Health.checks.He |
| 507c0 | 61 6c 74 68 20 63 68 65 63 6b 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 | alth.checks.can.also.be.configur |
| 507e0 | 65 64 20 66 6f 72 20 54 43 50 20 6d 6f 64 65 20 62 61 63 6b 65 6e 64 73 2e 20 59 6f 75 20 63 61 | ed.for.TCP.mode.backends..You.ca |
| 50800 | 6e 20 63 6f 6e 66 69 67 75 72 65 20 70 72 6f 74 6f 63 6f 6c 20 61 77 61 72 65 20 63 68 65 63 6b | n.configure.protocol.aware.check |
| 50820 | 73 20 66 6f 72 20 61 20 72 61 6e 67 65 20 6f 66 20 4c 61 79 65 72 20 37 20 70 72 6f 74 6f 63 6f | s.for.a.range.of.Layer.7.protoco |
| 50840 | 6c 73 3a 00 48 65 61 6c 74 68 2d 63 68 65 63 6b 00 48 65 72 65 20 61 72 65 20 73 6f 6d 65 20 65 | ls:.Health-check.Here.are.some.e |
| 50860 | 78 61 6d 70 6c 65 73 20 66 6f 72 20 61 70 70 6c 79 69 6e 67 20 61 20 72 75 6c 65 2d 73 65 74 20 | xamples.for.applying.a.rule-set. |
| 50880 | 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 48 65 72 65 20 69 73 20 61 20 73 65 63 6f 6e 64 | to.an.interface.Here.is.a.second |
| 508a0 | 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 64 75 61 6c 2d 73 74 61 63 6b 20 74 75 6e 6e 65 6c 20 | .example.of.a.dual-stack.tunnel. |
| 508c0 | 6f 76 65 72 20 49 50 76 36 20 62 65 74 77 65 65 6e 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 | over.IPv6.between.a.VyOS.router. |
| 508e0 | 61 6e 64 20 61 20 4c 69 6e 75 78 20 68 6f 73 74 20 75 73 69 6e 67 20 73 79 73 74 65 6d 64 2d 6e | and.a.Linux.host.using.systemd-n |
| 50900 | 65 74 77 6f 72 6b 64 2e 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 3a 61 62 62 | etworkd..Here.is.an.example.:abb |
| 50920 | 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 20 76 | r:`NET.(Network.Entity.Title)`.v |
| 50940 | 61 6c 75 65 3a 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 73 75 63 68 | alue:.Here.is.an.example.of.such |
| 50960 | 20 63 6f 6d 6d 61 6e 64 3a 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 72 6f 75 | .command:.Here.is.an.example.rou |
| 50980 | 74 65 2d 6d 61 70 20 74 6f 20 61 70 70 6c 79 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 72 6e 65 | te-map.to.apply.to.routes.learne |
| 509a0 | 64 20 61 74 20 69 6d 70 6f 72 74 2e 20 49 6e 20 74 68 69 73 20 66 69 6c 74 65 72 20 77 65 20 72 | d.at.import..In.this.filter.we.r |
| 509c0 | 65 6a 65 63 74 20 70 72 65 66 69 78 65 73 20 77 69 74 68 20 74 68 65 20 73 74 61 74 65 20 60 69 | eject.prefixes.with.the.state.`i |
| 509e0 | 6e 76 61 6c 69 64 60 2c 20 61 6e 64 20 73 65 74 20 61 20 68 69 67 68 65 72 20 60 6c 6f 63 61 6c | nvalid`,.and.set.a.higher.`local |
| 50a00 | 2d 70 72 65 66 65 72 65 6e 63 65 60 20 69 66 20 74 68 65 20 70 72 65 66 69 78 20 69 73 20 52 50 | -preference`.if.the.prefix.is.RP |
| 50a20 | 4b 49 20 60 76 61 6c 69 64 60 20 72 61 74 68 65 72 20 74 68 61 6e 20 6d 65 72 65 6c 79 20 60 6e | KI.`valid`.rather.than.merely.`n |
| 50a40 | 6f 74 66 6f 75 6e 64 60 2e 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 77 65 72 | otfound`..Here.is.an.example.wer |
| 50a60 | 65 20 6d 75 6c 74 69 70 6c 65 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 61 74 65 64 3a 00 48 | e.multiple.groups.are.created:.H |
| 50a80 | 65 72 65 20 69 73 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 73 68 6f 77 69 6e | ere.is.the.routing.tables.showin |
| 50aa0 | 67 20 74 68 65 20 4d 50 4c 53 20 73 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 6c 61 62 65 6c | g.the.MPLS.segment.routing.label |
| 50ac0 | 20 6f 70 65 72 61 74 69 6f 6e 73 3a 00 48 65 72 65 20 77 65 20 70 72 6f 76 69 64 65 20 74 77 6f | .operations:.Here.we.provide.two |
| 50ae0 | 20 65 78 61 6d 70 6c 65 73 20 6f 6e 20 68 6f 77 20 74 6f 20 61 70 70 6c 79 20 4e 41 54 20 4c 6f | .examples.on.how.to.apply.NAT.Lo |
| 50b00 | 61 64 20 42 61 6c 61 6e 63 65 2e 00 48 65 72 65 27 73 20 61 6e 20 65 78 74 72 61 63 74 20 6f 66 | ad.Balance..Here's.an.extract.of |
| 50b20 | 20 61 20 73 69 6d 70 6c 65 20 31 2d 74 6f 2d 31 20 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 74 69 | .a.simple.1-to-1.NAT.configurati |
| 50b40 | 6f 6e 20 77 69 74 68 20 6f 6e 65 20 69 6e 74 65 72 6e 61 6c 20 61 6e 64 20 6f 6e 65 20 65 78 74 | on.with.one.internal.and.one.ext |
| 50b60 | 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 3a 00 48 65 72 65 27 73 20 6f 6e 65 20 65 78 61 6d | ernal.interface:.Here's.one.exam |
| 50b80 | 70 6c 65 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 66 6f 72 | ple.of.a.network.environment.for |
| 50ba0 | 20 61 6e 20 41 53 50 2e 20 54 68 65 20 41 53 50 20 72 65 71 75 65 73 74 73 20 74 68 61 74 20 61 | .an.ASP..The.ASP.requests.that.a |
| 50bc0 | 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 69 73 20 63 6f 6d 70 61 6e 79 | ll.connections.from.this.company |
| 50be0 | 20 73 68 6f 75 6c 64 20 63 6f 6d 65 20 66 72 6f 6d 20 31 37 32 2e 32 39 2e 34 31 2e 38 39 20 2d | .should.come.from.172.29.41.89.- |
| 50c00 | 20 61 6e 20 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 20 61 73 73 69 67 6e 65 64 20 62 79 20 | .an.address.that.is.assigned.by. |
| 50c20 | 74 68 65 20 41 53 50 20 61 6e 64 20 6e 6f 74 20 69 6e 20 75 73 65 20 61 74 20 74 68 65 20 63 75 | the.ASP.and.not.in.use.at.the.cu |
| 50c40 | 73 74 6f 6d 65 72 20 73 69 74 65 2e 00 48 65 72 65 27 73 20 74 68 65 20 49 50 20 72 6f 75 74 65 | stomer.site..Here's.the.IP.route |
| 50c60 | 73 20 74 68 61 74 20 61 72 65 20 70 6f 70 75 6c 61 74 65 64 2e 20 4a 75 73 74 20 74 68 65 20 6c | s.that.are.populated..Just.the.l |
| 50c80 | 6f 6f 70 62 61 63 6b 3a 00 48 65 72 65 27 73 20 74 68 65 20 49 50 20 72 6f 75 74 65 73 20 74 68 | oopback:.Here's.the.IP.routes.th |
| 50ca0 | 61 74 20 61 72 65 20 70 6f 70 75 6c 61 74 65 64 3a 00 48 65 72 65 27 73 20 74 68 65 20 6e 65 69 | at.are.populated:.Here's.the.nei |
| 50cc0 | 67 68 62 6f 72 73 20 75 70 3a 00 48 65 72 65 27 73 20 74 68 65 20 72 6f 75 74 65 73 3a 00 48 65 | ghbors.up:.Here's.the.routes:.He |
| 50ce0 | 77 6c 65 74 74 2d 50 61 63 6b 61 72 64 20 63 61 6c 6c 20 69 74 20 53 6f 75 72 63 65 2d 50 6f 72 | wlett-Packard.call.it.Source-Por |
| 50d00 | 74 20 66 69 6c 74 65 72 69 6e 67 20 6f 72 20 70 6f 72 74 2d 69 73 6f 6c 61 74 69 6f 6e 00 48 69 | t.filtering.or.port-isolation.Hi |
| 50d20 | 67 68 00 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 00 48 69 67 68 20 61 76 61 69 6c 61 | gh.High.Availability.High.availa |
| 50d40 | 62 69 6c 69 74 79 00 48 6f 6d 65 20 55 73 65 72 73 00 48 6f 70 20 63 6f 75 6e 74 20 66 69 65 6c | bility.Home.Users.Hop.count.fiel |
| 50d60 | 64 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 52 41 20 70 61 63 6b 65 74 73 00 48 6f 73 | d.of.the.outgoing.RA.packets.Hos |
| 50d80 | 74 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 00 48 6f 73 74 20 6e 61 6d 65 00 48 6f 73 74 20 73 70 65 | t.Information.Host.name.Host.spe |
| 50da0 | 63 69 66 69 63 20 6d 61 70 70 69 6e 67 20 73 68 61 6c 6c 20 62 65 20 6e 61 6d 65 64 20 60 60 63 | cific.mapping.shall.be.named.``c |
| 50dc0 | 6c 69 65 6e 74 31 60 60 00 48 6f 73 74 6e 61 6d 65 00 48 6f 77 20 61 6e 20 49 50 20 61 64 64 72 | lient1``.Hostname.How.an.IP.addr |
| 50de0 | 65 73 73 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 | ess.is.assigned.to.an.interface. |
| 50e00 | 69 6e 20 3a 72 65 66 3a 60 65 74 68 65 72 6e 65 74 2d 69 6e 74 65 72 66 61 63 65 60 2e 20 54 68 | in.:ref:`ethernet-interface`..Th |
| 50e20 | 69 73 20 73 65 63 74 69 6f 6e 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 73 74 61 74 69 63 61 6c | is.section.shows.how.to.statical |
| 50e40 | 6c 79 20 6d 61 70 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 68 6f 73 74 6e 61 | ly.map.an.IP.address.to.a.hostna |
| 50e60 | 6d 65 20 66 6f 72 20 6c 6f 63 61 6c 20 28 6d 65 61 6e 69 6e 67 20 6f 6e 20 74 68 69 73 20 56 79 | me.for.local.(meaning.on.this.Vy |
| 50e80 | 4f 53 20 69 6e 73 74 61 6e 63 65 29 20 6e 61 6d 65 20 72 65 73 6f 6c 75 74 69 6f 6e 2e 20 54 68 | OS.instance).name.resolution..Th |
| 50ea0 | 69 73 20 69 73 20 74 68 65 20 56 79 4f 53 20 65 71 75 69 76 61 6c 65 6e 74 20 74 6f 20 60 2f 65 | is.is.the.VyOS.equivalent.to.`/e |
| 50ec0 | 74 63 2f 68 6f 73 74 73 60 20 66 69 6c 65 20 65 6e 74 72 69 65 73 2e 00 48 6f 77 20 74 6f 20 63 | tc/hosts`.file.entries..How.to.c |
| 50ee0 | 6f 6e 66 69 67 75 72 65 20 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 00 48 6f 77 20 74 6f 20 6d 61 | onfigure.Event.Handler.How.to.ma |
| 50f00 | 6b 65 20 69 74 20 77 6f 72 6b 00 48 6f 77 65 76 65 72 2c 20 6e 6f 77 20 79 6f 75 20 6e 65 65 64 | ke.it.work.However,.now.you.need |
| 50f20 | 20 74 6f 20 6d 61 6b 65 20 49 50 73 65 63 20 77 6f 72 6b 20 77 69 74 68 20 64 79 6e 61 6d 69 63 | .to.make.IPsec.work.with.dynamic |
| 50f40 | 20 61 64 64 72 65 73 73 20 6f 6e 20 6f 6e 65 20 73 69 64 65 2e 20 54 68 65 20 74 72 69 63 6b 79 | .address.on.one.side..The.tricky |
| 50f60 | 20 70 61 72 74 20 69 73 20 74 68 61 74 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 | .part.is.that.pre-shared.secret. |
| 50f80 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 6f 65 73 6e 27 74 20 77 6f 72 6b 20 77 69 74 68 | authentication.doesn't.work.with |
| 50fa0 | 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 2c 20 73 6f 20 77 65 27 6c 6c 20 68 61 76 65 20 | .dynamic.address,.so.we'll.have. |
| 50fc0 | 74 6f 20 75 73 65 20 52 53 41 20 6b 65 79 73 2e 00 48 6f 77 65 76 65 72 2c 20 73 69 6e 63 65 20 | to.use.RSA.keys..However,.since. |
| 50fe0 | 56 79 4f 53 20 31 2e 34 2c 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 76 65 72 69 | VyOS.1.4,.it.is.possible.to.veri |
| 51000 | 66 79 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e | fy.self-signed.certificates.usin |
| 51020 | 67 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6e 67 65 72 70 72 69 6e 74 73 2e 00 48 6f 77 65 | g.certificate.fingerprints..Howe |
| 51040 | 76 65 72 2c 20 73 70 6c 69 74 2d 74 75 6e 6e 65 6c 69 6e 67 20 63 61 6e 20 62 65 20 61 63 68 69 | ver,.split-tunneling.can.be.achi |
| 51060 | 65 76 65 64 20 62 79 20 73 70 65 63 69 66 79 69 6e 67 20 74 68 65 20 72 65 6d 6f 74 65 20 73 75 | eved.by.specifying.the.remote.su |
| 51080 | 62 6e 65 74 73 2e 20 54 68 69 73 20 65 6e 73 75 72 65 73 20 74 68 61 74 20 6f 6e 6c 79 20 74 72 | bnets..This.ensures.that.only.tr |
| 510a0 | 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 | affic.destined.for.the.remote.si |
| 510c0 | 74 65 20 69 73 20 73 65 6e 74 20 6f 76 65 72 20 74 68 65 20 74 75 6e 6e 65 6c 2e 20 41 6c 6c 20 | te.is.sent.over.the.tunnel..All. |
| 510e0 | 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 69 73 20 75 6e 61 66 66 65 63 74 65 64 2e 00 48 75 61 | other.traffic.is.unaffected..Hua |
| 51100 | 77 65 69 20 4d 45 39 30 39 73 2d 31 32 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 | wei.ME909s-120.miniPCIe.card.(LT |
| 51120 | 45 29 00 48 75 61 77 65 69 20 4d 45 39 30 39 75 2d 35 32 31 20 6d 69 6e 69 50 43 49 65 20 63 61 | E).Huawei.ME909u-521.miniPCIe.ca |
| 51140 | 72 64 20 28 4c 54 45 29 00 48 75 62 00 49 45 45 45 20 38 30 32 2e 31 58 2f 4d 41 43 73 65 63 20 | rd.(LTE).Hub.IEEE.802.1X/MACsec. |
| 51160 | 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 | pre-shared.key.mode..This.allows |
| 51180 | 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 4d 41 43 73 65 63 20 77 69 74 68 20 61 20 70 72 65 2d 73 | .configuring.MACsec.with.a.pre-s |
| 511a0 | 68 61 72 65 64 20 6b 65 79 20 75 73 69 6e 67 20 61 20 3a 61 62 62 72 3a 60 43 41 4b 20 28 4d 41 | hared.key.using.a.:abbr:`CAK.(MA |
| 511c0 | 43 73 65 63 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 6b 65 | Csec.connectivity.association.ke |
| 511e0 | 79 29 60 20 61 6e 64 20 3a 61 62 62 72 3a 60 43 4b 4e 20 28 4d 41 43 73 65 63 20 63 6f 6e 6e 65 | y)`.and.:abbr:`CKN.(MACsec.conne |
| 51200 | 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 6e 61 6d 65 29 60 20 70 61 69 72 2e | ctivity.association.name)`.pair. |
| 51220 | 00 49 45 45 45 20 38 30 32 2e 31 58 2f 4d 41 43 73 65 63 20 72 65 70 6c 61 79 20 70 72 6f 74 65 | .IEEE.802.1X/MACsec.replay.prote |
| 51240 | 63 74 69 6f 6e 20 77 69 6e 64 6f 77 2e 20 54 68 69 73 20 64 65 74 65 72 6d 69 6e 65 73 20 61 20 | ction.window..This.determines.a. |
| 51260 | 77 69 6e 64 6f 77 20 69 6e 20 77 68 69 63 68 20 72 65 70 6c 61 79 20 69 73 20 74 6f 6c 65 72 61 | window.in.which.replay.is.tolera |
| 51280 | 74 65 64 2c 20 74 6f 20 61 6c 6c 6f 77 20 72 65 63 65 69 70 74 20 6f 66 20 66 72 61 6d 65 73 20 | ted,.to.allow.receipt.of.frames. |
| 512a0 | 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 6d 69 73 6f 72 64 65 72 65 64 20 62 79 20 74 68 65 | that.have.been.misordered.by.the |
| 512c0 | 20 6e 65 74 77 6f 72 6b 2e 00 49 45 45 45 20 38 30 32 2e 31 61 64 5f 20 77 61 73 20 61 6e 20 45 | .network..IEEE.802.1ad_.was.an.E |
| 512e0 | 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 69 6e 67 20 73 74 61 6e 64 61 72 64 20 69 6e 66 6f | thernet.networking.standard.info |
| 51300 | 72 6d 61 6c 6c 79 20 6b 6e 6f 77 6e 20 61 73 20 51 69 6e 51 20 61 73 20 61 6e 20 61 6d 65 6e 64 | rmally.known.as.QinQ.as.an.amend |
| 51320 | 6d 65 6e 74 20 74 6f 20 49 45 45 45 20 73 74 61 6e 64 61 72 64 20 38 30 32 2e 31 71 20 56 4c 41 | ment.to.IEEE.standard.802.1q.VLA |
| 51340 | 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 73 20 64 65 73 63 72 69 62 65 64 20 61 62 6f 76 65 2e | N.interfaces.as.described.above. |
| 51360 | 20 38 30 32 2e 31 61 64 20 77 61 73 20 69 6e 63 6f 72 70 6f 72 61 74 65 64 20 69 6e 74 6f 20 74 | .802.1ad.was.incorporated.into.t |
| 51380 | 68 65 20 62 61 73 65 20 38 30 32 2e 31 71 5f 20 73 74 61 6e 64 61 72 64 20 69 6e 20 32 30 31 31 | he.base.802.1q_.standard.in.2011 |
| 513a0 | 2e 20 54 68 65 20 74 65 63 68 6e 69 71 75 65 20 69 73 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 | ..The.technique.is.also.known.as |
| 513c0 | 20 70 72 6f 76 69 64 65 72 20 62 72 69 64 67 69 6e 67 2c 20 53 74 61 63 6b 65 64 20 56 4c 41 4e | .provider.bridging,.Stacked.VLAN |
| 513e0 | 73 2c 20 6f 72 20 73 69 6d 70 6c 79 20 51 69 6e 51 20 6f 72 20 51 2d 69 6e 2d 51 2e 20 22 51 2d | s,.or.simply.QinQ.or.Q-in-Q.."Q- |
| 51400 | 69 6e 2d 51 22 20 63 61 6e 20 66 6f 72 20 73 75 70 70 6f 72 74 65 64 20 64 65 76 69 63 65 73 20 | in-Q".can.for.supported.devices. |
| 51420 | 61 70 70 6c 79 20 74 6f 20 43 2d 74 61 67 20 73 74 61 63 6b 69 6e 67 20 6f 6e 20 43 2d 74 61 67 | apply.to.C-tag.stacking.on.C-tag |
| 51440 | 20 28 45 74 68 65 72 6e 65 74 20 54 79 70 65 20 3d 20 30 78 38 31 30 30 29 2e 00 49 45 45 45 20 | .(Ethernet.Type.=.0x8100)..IEEE. |
| 51460 | 38 30 32 2e 31 71 5f 2c 20 6f 66 74 65 6e 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 44 6f | 802.1q_,.often.referred.to.as.Do |
| 51480 | 74 31 71 2c 20 69 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 69 6e 67 20 73 74 61 6e 64 61 72 64 20 | t1q,.is.the.networking.standard. |
| 514a0 | 74 68 61 74 20 73 75 70 70 6f 72 74 73 20 76 69 72 74 75 61 6c 20 4c 41 4e 73 20 28 56 4c 41 4e | that.supports.virtual.LANs.(VLAN |
| 514c0 | 73 29 20 6f 6e 20 61 6e 20 49 45 45 45 20 38 30 32 2e 33 20 45 74 68 65 72 6e 65 74 20 6e 65 74 | s).on.an.IEEE.802.3.Ethernet.net |
| 514e0 | 77 6f 72 6b 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 20 64 65 66 69 6e 65 73 20 61 20 73 79 73 | work..The.standard.defines.a.sys |
| 51500 | 74 65 6d 20 6f 66 20 56 4c 41 4e 20 74 61 67 67 69 6e 67 20 66 6f 72 20 45 74 68 65 72 6e 65 74 | tem.of.VLAN.tagging.for.Ethernet |
| 51520 | 20 66 72 61 6d 65 73 20 61 6e 64 20 74 68 65 20 61 63 63 6f 6d 70 61 6e 79 69 6e 67 20 70 72 6f | .frames.and.the.accompanying.pro |
| 51540 | 63 65 64 75 72 65 73 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 62 72 69 64 67 65 73 20 61 6e | cedures.to.be.used.by.bridges.an |
| 51560 | 64 20 73 77 69 74 63 68 65 73 20 69 6e 20 68 61 6e 64 6c 69 6e 67 20 73 75 63 68 20 66 72 61 6d | d.switches.in.handling.such.fram |
| 51580 | 65 73 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 20 61 6c 73 6f 20 63 6f 6e 74 61 69 6e 73 20 70 | es..The.standard.also.contains.p |
| 515a0 | 72 6f 76 69 73 69 6f 6e 73 20 66 6f 72 20 61 20 71 75 61 6c 69 74 79 2d 6f 66 2d 73 65 72 76 69 | rovisions.for.a.quality-of-servi |
| 515c0 | 63 65 20 70 72 69 6f 72 69 74 69 7a 61 74 69 6f 6e 20 73 63 68 65 6d 65 20 63 6f 6d 6d 6f 6e 6c | ce.prioritization.scheme.commonl |
| 515e0 | 79 20 6b 6e 6f 77 6e 20 61 73 20 49 45 45 45 20 38 30 32 2e 31 70 20 61 6e 64 20 64 65 66 69 6e | y.known.as.IEEE.802.1p.and.defin |
| 51600 | 65 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 41 74 74 72 69 62 75 74 65 20 52 65 67 69 73 74 72 | es.the.Generic.Attribute.Registr |
| 51620 | 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 2e 00 49 45 54 46 20 70 75 62 6c 69 73 68 65 64 20 3a | ation.Protocol..IETF.published.: |
| 51640 | 72 66 63 3a 60 36 35 39 38 60 2c 20 64 65 74 61 69 6c 69 6e 67 20 61 20 73 68 61 72 65 64 20 61 | rfc:`6598`,.detailing.a.shared.a |
| 51660 | 64 64 72 65 73 73 20 73 70 61 63 65 20 66 6f 72 20 75 73 65 20 69 6e 20 49 53 50 20 43 47 4e 20 | ddress.space.for.use.in.ISP.CGN. |
| 51680 | 64 65 70 6c 6f 79 6d 65 6e 74 73 20 74 68 61 74 20 63 61 6e 20 68 61 6e 64 6c 65 20 74 68 65 20 | deployments.that.can.handle.the. |
| 516a0 | 73 61 6d 65 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 65 73 20 6f 63 63 75 72 72 69 6e 67 20 | same.network.prefixes.occurring. |
| 516c0 | 62 6f 74 68 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 | both.on.inbound.and.outbound.int |
| 516e0 | 65 72 66 61 63 65 73 2e 20 41 52 49 4e 20 72 65 74 75 72 6e 65 64 20 61 64 64 72 65 73 73 20 73 | erfaces..ARIN.returned.address.s |
| 51700 | 70 61 63 65 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a 60 49 41 4e 41 20 28 49 6e 74 65 72 6e 65 | pace.to.the.:abbr:`IANA.(Interne |
| 51720 | 74 20 41 73 73 69 67 6e 65 64 20 4e 75 6d 62 65 72 73 20 41 75 74 68 6f 72 69 74 79 29 60 20 66 | t.Assigned.Numbers.Authority)`.f |
| 51740 | 6f 72 20 74 68 69 73 20 61 6c 6c 6f 63 61 74 69 6f 6e 2e 00 49 47 4d 50 20 2d 20 49 6e 74 65 72 | or.this.allocation..IGMP.-.Inter |
| 51760 | 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 00 49 | net.Group.Management.Protocol).I |
| 51780 | 47 4d 50 20 50 72 6f 78 79 00 49 4b 45 20 28 49 6e 74 65 72 6e 65 74 20 4b 65 79 20 45 78 63 68 | GMP.Proxy.IKE.(Internet.Key.Exch |
| 517a0 | 61 6e 67 65 29 20 41 74 74 72 69 62 75 74 65 73 00 49 4b 45 20 50 68 61 73 65 3a 00 49 4b 45 20 | ange).Attributes.IKE.Phase:.IKE. |
| 517c0 | 70 65 72 66 6f 72 6d 73 20 6d 75 74 75 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 | performs.mutual.authentication.b |
| 517e0 | 65 74 77 65 65 6e 20 74 77 6f 20 70 61 72 74 69 65 73 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 | etween.two.parties.and.establish |
| 51800 | 65 73 20 61 6e 20 49 4b 45 20 73 65 63 75 72 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 28 | es.an.IKE.security.association.( |
| 51820 | 53 41 29 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 | SA).that.includes.shared.secret. |
| 51840 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 | information.that.can.be.used.to. |
| 51860 | 65 66 66 69 63 69 65 6e 74 6c 79 20 65 73 74 61 62 6c 69 73 68 20 53 41 73 20 66 6f 72 20 45 6e | efficiently.establish.SAs.for.En |
| 51880 | 63 61 70 73 75 6c 61 74 69 6e 67 20 53 65 63 75 72 69 74 79 20 50 61 79 6c 6f 61 64 20 28 45 53 | capsulating.Security.Payload.(ES |
| 518a0 | 50 29 20 6f 72 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 48 65 61 64 65 72 20 28 41 48 29 | P).or.Authentication.Header.(AH) |
| 518c0 | 20 61 6e 64 20 61 20 73 65 74 20 6f 66 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 61 6c 67 6f | .and.a.set.of.cryptographic.algo |
| 518e0 | 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 53 41 73 20 74 6f 20 | rithms.to.be.used.by.the.SAs.to. |
| 51900 | 70 72 6f 74 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 74 68 65 79 20 63 61 | protect.the.traffic.that.they.ca |
| 51920 | 72 72 79 2e 20 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 | rry..https://datatracker.ietf.or |
| 51940 | 67 2f 64 6f 63 2f 68 74 6d 6c 2f 72 66 63 35 39 39 36 00 49 4b 45 76 31 00 49 4b 45 76 32 00 49 | g/doc/html/rfc5996.IKEv1.IKEv2.I |
| 51960 | 4b 45 76 32 20 49 50 53 65 63 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 73 20 72 65 6d 6f 74 65 2d | KEv2.IPSec.road-warriors.remote- |
| 51980 | 61 63 63 65 73 73 20 56 50 4e 00 49 50 00 49 50 20 61 64 64 72 65 73 73 00 49 50 20 61 64 64 72 | access.VPN.IP.IP.address.IP.addr |
| 519a0 | 65 73 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 31 30 30 60 60 20 73 68 61 6c 6c 20 62 65 20 73 | ess.``192.168.1.100``.shall.be.s |
| 519c0 | 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 20 74 6f 20 63 6c 69 65 6e 74 20 6e 61 6d 65 64 | tatically.mapped.to.client.named |
| 519e0 | 20 60 60 63 6c 69 65 6e 74 31 60 60 00 49 50 20 61 64 64 72 65 73 73 20 60 60 31 39 32 2e 31 36 | .``client1``.IP.address.``192.16 |
| 51a00 | 38 2e 32 2e 31 2f 32 34 60 60 00 49 50 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 20 73 | 8.2.1/24``.IP.address.for.DHCP.s |
| 51a20 | 65 72 76 65 72 20 69 64 65 6e 74 69 66 69 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 4e | erver.identifier.IP.address.of.N |
| 51a40 | 54 50 20 73 65 72 76 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 50 4f 50 33 20 73 65 72 | TP.server.IP.address.of.POP3.ser |
| 51a60 | 76 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 53 4d 54 50 20 73 65 72 76 65 72 00 49 50 | ver.IP.address.of.SMTP.server.IP |
| 51a80 | 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 | .address.of.route.to.match,.base |
| 51aa0 | 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 | d.on.access-list..IP.address.of. |
| 51ac0 | 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 65 66 69 78 2d | route.to.match,.based.on.prefix- |
| 51ae0 | 6c 69 73 74 2e 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 | list..IP.address.of.route.to.mat |
| 51b00 | 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2d 6c 65 | ch,.based.on.specified.prefix-le |
| 51b20 | 6e 67 74 68 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 | ngth..Note.that.this.can.be.used |
| 51b40 | 20 66 6f 72 20 6b 65 72 6e 65 6c 20 72 6f 75 74 65 73 20 6f 6e 6c 79 2e 20 44 6f 20 6e 6f 74 20 | .for.kernel.routes.only..Do.not. |
| 51b60 | 61 70 70 6c 79 20 74 6f 20 74 68 65 20 72 6f 75 74 65 73 20 6f 66 20 64 79 6e 61 6d 69 63 20 72 | apply.to.the.routes.of.dynamic.r |
| 51b80 | 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 42 47 50 2c 20 52 49 50 2c | outing.protocols.(e.g..BGP,.RIP, |
| 51ba0 | 20 4f 53 46 50 29 2c 20 61 73 20 74 68 69 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 | .OSFP),.as.this.can.lead.to.unex |
| 51bc0 | 70 65 63 74 65 64 20 72 65 73 75 6c 74 73 2e 2e 00 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 65 | pected.results...IP.address.to.e |
| 51be0 | 78 63 6c 75 64 65 20 66 72 6f 6d 20 44 48 43 50 20 6c 65 61 73 65 20 72 61 6e 67 65 00 49 50 20 | xclude.from.DHCP.lease.range.IP. |
| 51c00 | 61 64 64 72 65 73 73 65 73 20 6f 72 20 6e 65 74 77 6f 72 6b 73 20 66 6f 72 20 77 68 69 63 68 20 | addresses.or.networks.for.which. |
| 51c20 | 6c 6f 63 61 6c 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 20 77 69 6c 6c 20 6e 6f 74 | local.conntrack.entries.will.not |
| 51c40 | 20 62 65 20 73 79 6e 63 65 64 00 49 50 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 64 64 72 65 73 73 | .be.synced.IP.management.address |
| 51c60 | 00 49 50 20 6d 61 73 71 75 65 72 61 64 69 6e 67 20 69 73 20 61 20 74 65 63 68 6e 69 71 75 65 20 | .IP.masquerading.is.a.technique. |
| 51c80 | 74 68 61 74 20 68 69 64 65 73 20 61 6e 20 65 6e 74 69 72 65 20 49 50 20 61 64 64 72 65 73 73 20 | that.hides.an.entire.IP.address. |
| 51ca0 | 73 70 61 63 65 2c 20 75 73 75 61 6c 6c 79 20 63 6f 6e 73 69 73 74 69 6e 67 20 6f 66 20 70 72 69 | space,.usually.consisting.of.pri |
| 51cc0 | 76 61 74 65 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 62 65 68 69 6e 64 20 61 20 73 69 6e 67 | vate.IP.addresses,.behind.a.sing |
| 51ce0 | 6c 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 61 6e 6f 74 68 65 72 2c 20 75 73 75 61 6c 6c | le.IP.address.in.another,.usuall |
| 51d00 | 79 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 20 54 68 65 20 68 69 64 64 | y.public.address.space..The.hidd |
| 51d20 | 65 6e 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 63 68 61 6e 67 65 64 20 69 6e 74 6f 20 61 20 | en.addresses.are.changed.into.a. |
| 51d40 | 73 69 6e 67 6c 65 20 28 70 75 62 6c 69 63 29 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 68 | single.(public).IP.address.as.th |
| 51d60 | 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 | e.source.address.of.the.outgoing |
| 51d80 | 20 49 50 20 70 61 63 6b 65 74 73 20 73 6f 20 74 68 65 79 20 61 70 70 65 61 72 20 61 73 20 6f 72 | .IP.packets.so.they.appear.as.or |
| 51da0 | 69 67 69 6e 61 74 69 6e 67 20 6e 6f 74 20 66 72 6f 6d 20 74 68 65 20 68 69 64 64 65 6e 20 68 6f | iginating.not.from.the.hidden.ho |
| 51dc0 | 73 74 20 62 75 74 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 20 69 | st.but.from.the.routing.device.i |
| 51de0 | 74 73 65 6c 66 2e 20 42 65 63 61 75 73 65 20 6f 66 20 74 68 65 20 70 6f 70 75 6c 61 72 69 74 79 | tself..Because.of.the.popularity |
| 51e00 | 20 6f 66 20 74 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 74 6f 20 63 6f 6e 73 65 72 76 65 20 49 | .of.this.technique.to.conserve.I |
| 51e20 | 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2c 20 74 68 65 20 74 65 72 6d 20 4e 41 54 20 | Pv4.address.space,.the.term.NAT. |
| 51e40 | 68 61 73 20 62 65 63 6f 6d 65 20 76 69 72 74 75 61 6c 6c 79 20 73 79 6e 6f 6e 79 6d 6f 75 73 20 | has.become.virtually.synonymous. |
| 51e60 | 77 69 74 68 20 49 50 20 6d 61 73 71 75 65 72 61 64 69 6e 67 2e 00 49 50 20 6e 65 78 74 2d 68 6f | with.IP.masquerading..IP.next-ho |
| 51e80 | 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 61 63 | p.of.route.to.match,.based.on.ac |
| 51ea0 | 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 | cess-list..IP.next-hop.of.route. |
| 51ec0 | 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 69 70 20 61 64 64 72 65 73 73 2e 00 49 | to.match,.based.on.ip.address..I |
| 51ee0 | 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 | P.next-hop.of.route.to.match,.ba |
| 51f00 | 73 65 64 20 6f 6e 20 70 72 65 66 69 78 20 6c 65 6e 67 74 68 2e 00 49 50 20 6e 65 78 74 2d 68 6f | sed.on.prefix.length..IP.next-ho |
| 51f20 | 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 | p.of.route.to.match,.based.on.pr |
| 51f40 | 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 | efix-list..IP.next-hop.of.route. |
| 51f60 | 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 74 79 70 65 2e 00 49 50 20 70 72 65 63 | to.match,.based.on.type..IP.prec |
| 51f80 | 65 64 65 6e 63 65 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 37 39 31 60 3a | edence.as.defined.in.:rfc:`791`: |
| 51fa0 | 00 49 50 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 35 30 20 28 45 53 50 29 00 49 50 20 | .IP.protocol.number.50.(ESP).IP. |
| 51fc0 | 72 6f 75 74 65 20 73 6f 75 72 63 65 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 | route.source.of.route.to.match,. |
| 51fe0 | 62 61 73 65 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 72 6f 75 74 65 20 73 | based.on.access-list..IP.route.s |
| 52000 | 6f 75 72 63 65 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f | ource.of.route.to.match,.based.o |
| 52020 | 6e 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 36 49 50 36 00 49 50 49 50 00 49 50 49 50 36 | n.prefix-list..IP6IP6.IPIP.IPIP6 |
| 52040 | 00 49 50 53 65 63 20 49 4b 45 20 61 6e 64 20 45 53 50 00 49 50 53 65 63 20 49 4b 45 20 61 6e 64 | .IPSec.IKE.and.ESP.IPSec.IKE.and |
| 52060 | 20 45 53 50 20 47 72 6f 75 70 73 3b 00 49 50 53 65 63 20 49 4b 45 76 32 20 52 65 6d 6f 74 65 20 | .ESP.Groups;.IPSec.IKEv2.Remote. |
| 52080 | 41 63 63 65 73 73 20 56 50 4e 00 49 50 53 65 63 20 49 4b 45 76 32 20 73 69 74 65 32 73 69 74 65 | Access.VPN.IPSec.IKEv2.site2site |
| 520a0 | 20 56 50 4e 00 49 50 53 65 63 20 49 4b 45 76 32 20 73 69 74 65 32 73 69 74 65 20 56 50 4e 20 28 | .VPN.IPSec.IKEv2.site2site.VPN.( |
| 520c0 | 73 6f 75 72 63 65 20 2e 2f 64 72 61 77 2e 69 6f 2f 76 70 6e 5f 73 32 73 5f 69 6b 65 76 32 2e 64 | source../draw.io/vpn_s2s_ikev2.d |
| 520e0 | 72 61 77 69 6f 29 00 49 50 53 65 63 20 56 50 4e 20 54 75 6e 6e 65 6c 73 00 49 50 53 65 63 20 56 | rawio).IPSec.VPN.Tunnels.IPSec.V |
| 52100 | 50 4e 20 74 75 6e 6e 65 6c 73 2e 00 49 50 53 65 63 3a 00 49 50 6f 45 20 53 65 72 76 65 72 00 49 | PN.tunnels..IPSec:.IPoE.Server.I |
| 52120 | 50 6f 45 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 20 6f 6e 20 64 69 66 66 65 72 65 6e | PoE.can.be.configure.on.differen |
| 52140 | 74 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 | t.interfaces,.it.will.depend.on. |
| 52160 | 65 61 63 68 20 73 70 65 63 69 66 69 63 20 73 69 74 75 61 74 69 6f 6e 20 77 68 69 63 68 20 69 6e | each.specific.situation.which.in |
| 52180 | 74 65 72 66 61 63 65 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 49 50 6f 45 20 74 6f 20 63 6c 69 | terface.will.provide.IPoE.to.cli |
| 521a0 | 65 6e 74 73 2e 20 54 68 65 20 63 6c 69 65 6e 74 73 20 6d 61 63 20 61 64 64 72 65 73 73 20 61 6e | ents..The.clients.mac.address.an |
| 521c0 | 64 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 62 65 69 6e | d.the.incoming.interface.is.bein |
| 521e0 | 67 20 75 73 65 64 20 61 73 20 63 6f 6e 74 72 6f 6c 20 70 61 72 61 6d 65 74 65 72 2c 20 74 6f 20 | g.used.as.control.parameter,.to. |
| 52200 | 61 75 74 68 65 6e 74 69 63 61 74 65 20 61 20 63 6c 69 65 6e 74 2e 00 49 50 6f 45 20 63 61 6e 20 | authenticate.a.client..IPoE.can. |
| 52220 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 | be.configured.on.different.inter |
| 52240 | 66 61 63 65 73 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 65 61 63 68 20 73 70 | faces,.it.will.depend.on.each.sp |
| 52260 | 65 63 69 66 69 63 20 73 69 74 75 61 74 69 6f 6e 20 77 68 69 63 68 20 69 6e 74 65 72 66 61 63 65 | ecific.situation.which.interface |
| 52280 | 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 49 50 6f 45 20 74 6f 20 63 6c 69 65 6e 74 73 2e 20 54 | .will.provide.IPoE.to.clients..T |
| 522a0 | 68 65 20 63 6c 69 65 6e 74 27 73 20 6d 61 63 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 | he.client's.mac.address.and.the. |
| 522c0 | 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 | incoming.interface.is.being.used |
| 522e0 | 20 61 73 20 63 6f 6e 74 72 6f 6c 20 70 61 72 61 6d 65 74 65 72 2c 20 74 6f 20 61 75 74 68 65 6e | .as.control.parameter,.to.authen |
| 52300 | 74 69 63 61 74 65 20 61 20 63 6c 69 65 6e 74 2e 00 49 50 6f 45 20 69 73 20 61 20 6d 65 74 68 6f | ticate.a.client..IPoE.is.a.metho |
| 52320 | 64 20 6f 66 20 64 65 6c 69 76 65 72 69 6e 67 20 61 6e 20 49 50 20 70 61 79 6c 6f 61 64 20 6f 76 | d.of.delivering.an.IP.payload.ov |
| 52340 | 65 72 20 61 6e 20 45 74 68 65 72 6e 65 74 2d 62 61 73 65 64 20 61 63 63 65 73 73 20 6e 65 74 77 | er.an.Ethernet-based.access.netw |
| 52360 | 6f 72 6b 20 6f 72 20 61 6e 20 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 20 75 73 69 6e 67 20 62 | ork.or.an.access.network.using.b |
| 52380 | 72 69 64 67 65 64 20 45 74 68 65 72 6e 65 74 20 6f 76 65 72 20 41 73 79 6e 63 68 72 6f 6e 6f 75 | ridged.Ethernet.over.Asynchronou |
| 523a0 | 73 20 54 72 61 6e 73 66 65 72 20 4d 6f 64 65 20 28 41 54 4d 29 20 77 69 74 68 6f 75 74 20 75 73 | s.Transfer.Mode.(ATM).without.us |
| 523c0 | 69 6e 67 20 50 50 50 6f 45 2e 20 49 74 20 64 69 72 65 63 74 6c 79 20 65 6e 63 61 70 73 75 6c 61 | ing.PPPoE..It.directly.encapsula |
| 523e0 | 74 65 73 20 74 68 65 20 49 50 20 64 61 74 61 67 72 61 6d 73 20 69 6e 20 45 74 68 65 72 6e 65 74 | tes.the.IP.datagrams.in.Ethernet |
| 52400 | 20 66 72 61 6d 65 73 2c 20 75 73 69 6e 67 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 3a 72 66 63 | .frames,.using.the.standard.:rfc |
| 52420 | 3a 60 38 39 34 60 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 2e 00 49 50 6f 45 20 73 65 72 76 65 | :`894`.encapsulation..IPoE.serve |
| 52440 | 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 65 74 68 31 | r.will.listen.on.interfaces.eth1 |
| 52460 | 2e 35 30 20 61 6e 64 20 65 74 68 31 2e 35 31 00 49 50 73 65 63 00 49 50 73 65 63 20 70 6f 6c 69 | .50.and.eth1.51.IPsec.IPsec.poli |
| 52480 | 63 79 20 6d 61 74 63 68 69 6e 67 20 47 52 45 00 49 50 76 34 00 49 50 76 34 20 46 69 72 65 77 61 | cy.matching.GRE.IPv4.IPv4.Firewa |
| 524a0 | 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 | ll.Configuration.IPv4.address.of |
| 524c0 | 20 6e 65 78 74 20 62 6f 6f 74 73 74 72 61 70 20 73 65 72 76 65 72 00 49 50 76 34 20 61 64 64 72 | .next.bootstrap.server.IPv4.addr |
| 524e0 | 65 73 73 20 6f 66 20 72 6f 75 74 65 72 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 73 75 | ess.of.router.on.the.client's.su |
| 52500 | 62 6e 65 74 00 49 50 76 34 20 6f 72 20 49 50 76 36 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 | bnet.IPv4.or.IPv6.source.address |
| 52520 | 20 6f 66 20 4e 65 74 46 6c 6f 77 20 70 61 63 6b 65 74 73 00 49 50 76 34 20 70 65 65 72 69 6e 67 | .of.NetFlow.packets.IPv4.peering |
| 52540 | 00 49 50 76 34 20 72 65 6c 61 79 00 49 50 76 34 20 72 6f 75 74 65 20 61 6e 64 20 49 50 76 36 20 | .IPv4.relay.IPv4.route.and.IPv6. |
| 52560 | 72 6f 75 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 | route.policies.are.defined.in.th |
| 52580 | 69 73 20 73 65 63 74 69 6f 6e 2e 20 54 68 65 73 65 20 72 6f 75 74 65 20 70 6f 6c 69 63 69 65 73 | is.section..These.route.policies |
| 525a0 | 20 63 61 6e 20 74 68 65 6e 20 62 65 20 61 73 73 6f 63 69 61 74 65 64 20 74 6f 20 69 6e 74 65 72 | .can.then.be.associated.to.inter |
| 525c0 | 66 61 63 65 73 2e 00 49 50 76 34 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 | faces..IPv4.route.source:.bgp,.c |
| 525e0 | 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6e | onnected,.eigrp,.isis,.kernel,.n |
| 52600 | 68 72 70 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 49 50 76 34 20 73 65 72 | hrp,.ospf,.rip,.static..IPv4.ser |
| 52620 | 76 65 72 00 49 50 76 34 2f 49 50 76 36 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 20 6f 66 20 | ver.IPv4/IPv6.remote.address.of. |
| 52640 | 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 2e 20 41 6c 74 65 72 6e 61 74 69 76 65 20 74 6f | the.VXLAN.tunnel..Alternative.to |
| 52660 | 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 2f 49 50 76 36 | .multicast,.the.remote.IPv4/IPv6 |
| 52680 | 20 61 64 64 72 65 73 73 20 63 61 6e 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 00 49 50 76 34 2f | .address.can.set.directly..IPv4/ |
| 526a0 | 49 50 76 36 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e | IPv6.remote.address.of.the.VXLAN |
| 526c0 | 20 74 75 6e 6e 65 6c 2e 20 41 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 6d 75 6c 74 69 | .tunnel..An.alternative.to.multi |
| 526e0 | 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 | cast,.the.remote.IPv4/IPv6.addre |
| 52700 | 73 73 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 00 49 50 76 36 00 49 50 76 | ss.can.be.set.directly..IPv6.IPv |
| 52720 | 36 20 41 63 63 65 73 73 20 4c 69 73 74 00 49 50 76 36 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 | 6.Access.List.IPv6.Advanced.Opti |
| 52740 | 6f 6e 73 00 49 50 76 36 20 44 48 43 50 76 36 2d 50 44 20 45 78 61 6d 70 6c 65 00 49 50 76 36 20 | ons.IPv6.DHCPv6-PD.Example.IPv6. |
| 52760 | 44 4e 53 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 6f 70 74 69 6f 6e 61 6c 2e 00 49 50 76 36 | DNS.addresses.are.optional..IPv6 |
| 52780 | 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 50 76 36 20 4d 75 6c | .Firewall.Configuration.IPv6.Mul |
| 527a0 | 74 69 63 61 73 74 00 49 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 00 49 50 | ticast.IPv6.Prefix.Delegation.IP |
| 527c0 | 76 36 20 50 72 65 66 69 78 20 4c 69 73 74 73 00 49 50 76 36 20 53 4c 41 41 43 20 61 6e 64 20 49 | v6.Prefix.Lists.IPv6.SLAAC.and.I |
| 527e0 | 41 2d 50 44 00 49 50 76 36 20 54 43 50 20 66 69 6c 74 65 72 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 | A-PD.IPv6.TCP.filters.will.only. |
| 52800 | 6d 61 74 63 68 20 49 50 76 36 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 6e 6f 20 68 65 61 64 65 | match.IPv6.packets.with.no.heade |
| 52820 | 72 20 65 78 74 65 6e 73 69 6f 6e 2c 20 73 65 65 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 | r.extension,.see.https://en.wiki |
| 52840 | 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 49 50 76 36 5f 70 61 63 6b 65 74 23 45 78 74 65 6e | pedia.org/wiki/IPv6_packet#Exten |
| 52860 | 73 69 6f 6e 5f 68 65 61 64 65 72 73 00 49 50 76 36 20 61 64 64 72 65 73 73 20 60 60 32 30 30 31 | sion_headers.IPv6.address.``2001 |
| 52880 | 3a 64 62 38 3a 3a 31 30 31 60 60 20 73 68 61 6c 6c 20 62 65 20 73 74 61 74 69 63 61 6c 6c 79 20 | :db8::101``.shall.be.statically. |
| 528a0 | 6d 61 70 70 65 64 00 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 | mapped.IPv6.address.of.route.to. |
| 528c0 | 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 61 63 63 65 73 73 2d 6c 69 73 74 | match,.based.on.IPv6.access-list |
| 528e0 | 2e 00 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 | ..IPv6.address.of.route.to.match |
| 52900 | 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 76 | ,.based.on.IPv6.prefix-list..IPv |
| 52920 | 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 | 6.address.of.route.to.match,.bas |
| 52940 | 65 64 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2d 6c 65 6e 67 74 68 2e 20 4e | ed.on.specified.prefix-length..N |
| 52960 | 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 6b 65 | ote.that.this.can.be.used.for.ke |
| 52980 | 72 6e 65 6c 20 72 6f 75 74 65 73 20 6f 6e 6c 79 2e 20 44 6f 20 6e 6f 74 20 61 70 70 6c 79 20 74 | rnel.routes.only..Do.not.apply.t |
| 529a0 | 6f 20 74 68 65 20 72 6f 75 74 65 73 20 6f 66 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 | o.the.routes.of.dynamic.routing. |
| 529c0 | 70 72 6f 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 42 47 50 2c 20 52 49 50 2c 20 4f 53 46 50 29 2c | protocols.(e.g..BGP,.RIP,.OSFP), |
| 529e0 | 20 61 73 20 74 68 69 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 70 65 63 74 65 64 20 | .as.this.can.lead.to.unexpected. |
| 52a00 | 72 65 73 75 6c 74 73 2e 2e 00 49 50 76 36 20 63 6c 69 65 6e 74 27 73 20 70 72 65 66 69 78 00 49 | results...IPv6.client's.prefix.I |
| 52a20 | 50 76 36 20 63 6c 69 65 6e 74 27 73 20 70 72 65 66 69 78 20 61 73 73 69 67 6e 6d 65 6e 74 00 49 | Pv6.client's.prefix.assignment.I |
| 52a40 | 50 76 36 20 64 65 66 61 75 6c 74 20 63 6c 69 65 6e 74 27 73 20 70 6f 6f 6c 20 61 73 73 69 67 6e | Pv6.default.client's.pool.assign |
| 52a60 | 6d 65 6e 74 00 49 50 76 36 20 70 65 65 72 69 6e 67 00 49 50 76 36 20 70 72 65 66 69 78 20 60 60 | ment.IPv6.peering.IPv6.prefix.`` |
| 52a80 | 32 30 30 31 3a 64 62 38 3a 30 3a 31 30 31 3a 3a 2f 36 34 60 60 20 73 68 61 6c 6c 20 62 65 20 73 | 2001:db8:0:101::/64``.shall.be.s |
| 52aa0 | 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 00 49 50 76 36 20 70 72 65 66 69 78 2e 00 49 50 | tatically.mapped.IPv6.prefix..IP |
| 52ac0 | 76 36 20 72 65 6c 61 79 00 49 50 76 36 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c | v6.relay.IPv6.route.source:.bgp, |
| 52ae0 | 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c | .connected,.eigrp,.isis,.kernel, |
| 52b00 | 20 6e 68 72 70 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 49 50 | .nhrp,.ospfv3,.ripng,.static..IP |
| 52b20 | 76 36 20 73 65 72 76 65 72 00 49 50 76 36 20 73 75 70 70 6f 72 74 00 49 53 2d 49 53 00 49 53 2d | v6.server.IPv6.support.IS-IS.IS- |
| 52b40 | 49 53 20 47 6c 6f 62 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 53 2d 49 53 20 53 52 | IS.Global.Configuration.IS-IS.SR |
| 52b60 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 53 43 2d 44 48 43 50 20 4f 70 74 69 6f 6e 20 6e | .Configuration.ISC-DHCP.Option.n |
| 52b80 | 61 6d 65 00 49 64 65 6e 74 69 74 79 20 42 61 73 65 64 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ame.Identity.Based.Configuration |
| 52ba0 | 00 49 66 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 69 73 20 73 65 74 20 62 75 74 | .If.**max-threshold**.is.set.but |
| 52bc0 | 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 20 69 73 20 6e 6f 74 2c 20 74 68 65 6e 20 2a 2a | .**min-threshold.is.not,.then.** |
| 52be0 | 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 69 73 20 73 63 61 6c 65 64 20 74 6f 20 35 30 25 | min-threshold**.is.scaled.to.50% |
| 52c00 | 20 6f 66 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 2e 00 49 66 20 3a 63 66 67 63 6d | .of.**max-threshold**..If.:cfgcm |
| 52c20 | 64 3a 60 73 74 72 69 63 74 60 20 69 73 20 73 65 74 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f | d:`strict`.is.set.the.BGP.sessio |
| 52c40 | 6e 20 77 6f 6e e2 80 99 74 20 62 65 63 6f 6d 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 75 6e 74 | n.won...t.become.established.unt |
| 52c60 | 69 6c 20 74 68 65 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 73 65 74 73 20 6c 6f 63 61 6c 20 52 | il.the.BGP.neighbor.sets.local.R |
| 52c80 | 6f 6c 65 20 6f 6e 20 69 74 73 20 73 69 64 65 2e 20 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 | ole.on.its.side..This.configurat |
| 52ca0 | 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 52 46 43 20 | ion.parameter.is.defined.in.RFC. |
| 52cc0 | 3a 72 66 63 3a 60 39 32 33 34 60 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 65 6e 66 6f 72 | :rfc:`9234`.and.is.used.to.enfor |
| 52ce0 | 63 65 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 | ce.the.corresponding.configurati |
| 52d00 | 6f 6e 20 61 74 20 79 6f 75 72 20 63 6f 75 6e 74 65 72 2d 70 61 72 74 73 20 73 69 64 65 2e 00 49 | on.at.your.counter-parts.side..I |
| 52d20 | 66 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 69 73 20 75 73 65 64 20 69 6e 20 61 6e 20 65 | f.ARP.monitoring.is.used.in.an.e |
| 52d40 | 74 68 65 72 63 68 61 6e 6e 65 6c 20 63 6f 6d 70 61 74 69 62 6c 65 20 6d 6f 64 65 20 28 6d 6f 64 | therchannel.compatible.mode.(mod |
| 52d60 | 65 73 20 72 6f 75 6e 64 2d 72 6f 62 69 6e 20 61 6e 64 20 78 6f 72 2d 68 61 73 68 29 2c 20 74 68 | es.round-robin.and.xor-hash),.th |
| 52d80 | 65 20 73 77 69 74 63 68 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e | e.switch.should.be.configured.in |
| 52da0 | 20 61 20 6d 6f 64 65 20 74 68 61 74 20 65 76 65 6e 6c 79 20 64 69 73 74 72 69 62 75 74 65 73 20 | .a.mode.that.evenly.distributes. |
| 52dc0 | 70 61 63 6b 65 74 73 20 61 63 72 6f 73 73 20 61 6c 6c 20 6c 69 6e 6b 73 2e 20 49 66 20 74 68 65 | packets.across.all.links..If.the |
| 52de0 | 20 73 77 69 74 63 68 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 64 69 73 74 72 69 62 | .switch.is.configured.to.distrib |
| 52e00 | 75 74 65 20 74 68 65 20 70 61 63 6b 65 74 73 20 69 6e 20 61 6e 20 58 4f 52 20 66 61 73 68 69 6f | ute.the.packets.in.an.XOR.fashio |
| 52e20 | 6e 2c 20 61 6c 6c 20 72 65 70 6c 69 65 73 20 66 72 6f 6d 20 74 68 65 20 41 52 50 20 74 61 72 67 | n,.all.replies.from.the.ARP.targ |
| 52e40 | 65 74 73 20 77 69 6c 6c 20 62 65 20 72 65 63 65 69 76 65 64 20 6f 6e 20 74 68 65 20 73 61 6d 65 | ets.will.be.received.on.the.same |
| 52e60 | 20 6c 69 6e 6b 20 77 68 69 63 68 20 63 6f 75 6c 64 20 63 61 75 73 65 20 74 68 65 20 6f 74 68 65 | .link.which.could.cause.the.othe |
| 52e80 | 72 20 74 65 61 6d 20 6d 65 6d 62 65 72 73 20 74 6f 20 66 61 69 6c 2e 00 49 66 20 43 41 20 69 73 | r.team.members.to.fail..If.CA.is |
| 52ea0 | 20 70 72 65 73 65 6e 74 2c 20 74 68 69 73 20 63 65 72 74 69 66 69 63 61 74 65 20 77 69 6c 6c 20 | .present,.this.certificate.will. |
| 52ec0 | 62 65 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 67 65 6e 65 72 61 74 65 64 20 43 52 4c 73 00 49 66 | be.included.in.generated.CRLs.If |
| 52ee0 | 20 43 4c 49 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 | .CLI.option.is.not.specified,.th |
| 52f00 | 69 73 20 66 65 61 74 75 72 65 20 69 73 20 64 69 73 61 62 6c 65 64 2e 00 49 66 20 50 49 4d 20 68 | is.feature.is.disabled..If.PIM.h |
| 52f20 | 61 73 20 74 68 65 20 61 20 63 68 6f 69 63 65 20 6f 66 20 45 43 4d 50 20 6e 65 78 74 68 6f 70 73 | as.the.a.choice.of.ECMP.nexthops |
| 52f40 | 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 3a 61 62 62 72 3a 60 52 50 46 20 28 52 65 | .for.a.particular.:abbr:`RPF.(Re |
| 52f60 | 76 65 72 73 65 20 50 61 74 68 20 46 6f 72 77 61 72 64 69 6e 67 29 60 2c 20 50 49 4d 20 77 69 6c | verse.Path.Forwarding)`,.PIM.wil |
| 52f80 | 6c 20 63 61 75 73 65 20 53 2c 47 20 66 6c 6f 77 73 20 74 6f 20 62 65 20 73 70 72 65 61 64 20 6f | l.cause.S,G.flows.to.be.spread.o |
| 52fa0 | 75 74 20 61 6d 6f 6e 67 73 74 20 74 68 65 20 6e 65 78 74 68 6f 70 73 2e 20 49 66 20 74 68 69 73 | ut.amongst.the.nexthops..If.this |
| 52fc0 | 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 74 68 65 6e 20 74 | .command.is.not.specified.then.t |
| 52fe0 | 68 65 20 66 69 72 73 74 20 6e 65 78 74 68 6f 70 20 66 6f 75 6e 64 20 77 69 6c 6c 20 62 65 20 75 | he.first.nexthop.found.will.be.u |
| 53000 | 73 65 64 2e 00 49 66 20 50 49 4d 20 69 73 20 75 73 69 6e 67 20 45 43 4d 50 20 61 6e 64 20 61 6e | sed..If.PIM.is.using.ECMP.and.an |
| 53020 | 20 69 6e 74 65 72 66 61 63 65 20 67 6f 65 73 20 64 6f 77 6e 2c 20 63 61 75 73 65 20 50 49 4d 20 | .interface.goes.down,.cause.PIM. |
| 53040 | 74 6f 20 72 65 62 61 6c 61 6e 63 65 20 61 6c 6c 20 53 2c 47 20 66 6c 6f 77 73 20 61 63 72 6f 73 | to.rebalance.all.S,G.flows.acros |
| 53060 | 73 20 74 68 65 20 72 65 6d 61 69 6e 69 6e 67 20 6e 65 78 74 68 6f 70 73 2e 20 49 66 20 74 68 69 | s.the.remaining.nexthops..If.thi |
| 53080 | 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 64 20 50 49 4d 20 | s.command.is.not.configured.PIM. |
| 530a0 | 6f 6e 6c 79 20 6d 6f 64 69 66 69 65 73 20 74 68 6f 73 65 20 53 2c 47 20 66 6c 6f 77 73 20 74 68 | only.modifies.those.S,G.flows.th |
| 530c0 | 61 74 20 77 65 72 65 20 75 73 69 6e 67 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 | at.were.using.the.interface.that |
| 530e0 | 20 77 65 6e 74 20 64 6f 77 6e 2e 00 49 66 20 60 60 61 6c 69 61 73 60 60 20 69 73 20 73 65 74 2c | .went.down..If.``alias``.is.set, |
| 53100 | 20 69 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 | .it.can.be.used.instead.of.the.d |
| 53120 | 65 76 69 63 65 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 69 6e 67 2e 00 49 66 20 60 60 61 6c 6c 60 | evice.when.connecting..If.``all` |
| 53140 | 60 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 72 65 6d 6f 76 65 20 61 6c 6c 20 41 53 20 6e 75 | `.is.specified,.remove.all.AS.nu |
| 53160 | 6d 62 65 72 73 20 66 72 6f 6d 20 74 68 65 20 41 53 5f 50 41 54 48 20 6f 66 20 74 68 65 20 42 47 | mbers.from.the.AS_PATH.of.the.BG |
| 53180 | 50 20 70 61 74 68 27 73 20 4e 4c 52 49 2e 00 49 66 20 61 20 6c 6f 63 61 6c 20 66 69 72 65 77 61 | P.path's.NLRI..If.a.local.firewa |
| 531a0 | 6c 6c 20 70 6f 6c 69 63 79 20 69 73 20 69 6e 20 70 6c 61 63 65 20 6f 6e 20 79 6f 75 72 20 65 78 | ll.policy.is.in.place.on.your.ex |
| 531c0 | 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 | ternal.interface.you.will.need.t |
| 531e0 | 6f 20 61 6c 6c 6f 77 20 74 68 65 20 70 6f 72 74 73 20 62 65 6c 6f 77 3a 00 49 66 20 61 20 72 65 | o.allow.the.ports.below:.If.a.re |
| 53200 | 67 69 73 74 72 79 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 2c 20 44 6f 63 6b 65 72 2e | gistry.is.not.specified,.Docker. |
| 53220 | 69 6f 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 61 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 | io.will.be.used.as.the.container |
| 53240 | 20 72 65 67 69 73 74 72 79 20 75 6e 6c 65 73 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 | .registry.unless.an.alternative. |
| 53260 | 72 65 67 69 73 74 72 79 20 69 73 20 73 70 65 63 69 66 69 65 64 20 75 73 69 6e 67 20 2a 2a 73 65 | registry.is.specified.using.**se |
| 53280 | 74 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 20 3c 6e 61 6d 65 3e 2a 2a 20 6f 72 | t.container.registry.<name>**.or |
| 532a0 | 20 74 68 65 20 72 65 67 69 73 74 72 79 20 69 73 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 74 68 65 | .the.registry.is.included.in.the |
| 532c0 | 20 69 6d 61 67 65 20 6e 61 6d 65 00 49 66 20 61 20 72 65 73 70 6f 6e 73 65 20 69 73 20 68 65 61 | .image.name.If.a.response.is.hea |
| 532e0 | 72 64 2c 20 74 68 65 20 6c 65 61 73 65 20 69 73 20 61 62 61 6e 64 6f 6e 65 64 2c 20 61 6e 64 20 | rd,.the.lease.is.abandoned,.and. |
| 53300 | 74 68 65 20 73 65 72 76 65 72 20 64 6f 65 73 20 6e 6f 74 20 72 65 73 70 6f 6e 64 20 74 6f 20 74 | the.server.does.not.respond.to.t |
| 53320 | 68 65 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 6c 65 61 73 65 20 77 69 6c 6c 20 72 65 6d 61 69 6e | he.client..The.lease.will.remain |
| 53340 | 20 61 62 61 6e 64 6f 6e 65 64 20 66 6f 72 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 61 62 61 6e | .abandoned.for.a.minimum.of.aban |
| 53360 | 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 73 | don-lease-time.seconds.(defaults |
| 53380 | 20 74 6f 20 32 34 20 68 6f 75 72 73 29 2e 00 49 66 20 61 20 72 6f 75 74 65 20 68 61 73 20 61 6e | .to.24.hours)..If.a.route.has.an |
| 533a0 | 20 4f 52 49 47 49 4e 41 54 4f 52 5f 49 44 20 61 74 74 72 69 62 75 74 65 20 62 65 63 61 75 73 65 | .ORIGINATOR_ID.attribute.because |
| 533c0 | 20 69 74 20 68 61 73 20 62 65 65 6e 20 72 65 66 6c 65 63 74 65 64 2c 20 74 68 61 74 20 4f 52 49 | .it.has.been.reflected,.that.ORI |
| 533e0 | 47 49 4e 41 54 4f 52 5f 49 44 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 20 4f 74 68 65 72 77 69 | GINATOR_ID.will.be.used..Otherwi |
| 53400 | 73 65 2c 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6f 66 20 74 68 65 20 70 65 65 72 20 74 68 | se,.the.router-ID.of.the.peer.th |
| 53420 | 65 20 72 6f 75 74 65 20 77 61 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 77 69 6c 6c 20 62 | e.route.was.received.from.will.b |
| 53440 | 65 20 75 73 65 64 2e 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 | e.used..If.a.rule.is.defined,.th |
| 53460 | 65 6e 20 61 6e 20 61 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 | en.an.action.must.be.defined.for |
| 53480 | 20 69 74 2e 20 54 68 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 77 68 61 | .it..This.tells.the.firewall.wha |
| 534a0 | 74 20 74 6f 20 64 6f 20 69 66 20 61 6c 6c 20 63 72 69 74 65 72 69 61 20 6d 61 74 63 68 65 72 73 | t.to.do.if.all.criteria.matchers |
| 534c0 | 20 64 65 66 69 6e 65 64 20 66 6f 72 20 73 75 63 68 20 72 75 6c 65 20 64 6f 20 6d 61 74 63 68 2e | .defined.for.such.rule.do.match. |
| 534e0 | 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 | .If.a.rule.is.defined,.then.an.a |
| 53500 | 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 | ction.must.be.defined.for.it..Th |
| 53520 | 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f | is.tells.the.firewall.what.to.do |
| 53540 | 20 69 66 20 61 6c 6c 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 65 61 20 69 6e 20 74 68 65 | .if.all.matching.criterea.in.the |
| 53560 | 20 72 75 6c 65 20 61 72 65 20 6d 65 74 2e 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 | .rule.are.met..If.a.rule.is.defi |
| 53580 | 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 | ned,.then.an.action.must.be.defi |
| 535a0 | 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 | ned.for.it..This.tells.the.firew |
| 535c0 | 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f 20 69 66 20 61 6c 6c 20 6f 66 20 74 68 65 20 63 72 69 | all.what.to.do.if.all.of.the.cri |
| 535e0 | 74 65 72 69 61 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 61 74 20 72 75 6c 65 20 6d 61 74 63 | teria.defined.for.that.rule.matc |
| 53600 | 68 2e 00 49 66 20 61 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 66 72 65 65 20 61 64 64 72 65 73 | h..If.a.there.are.no.free.addres |
| 53620 | 73 65 73 20 62 75 74 20 74 68 65 72 65 20 61 72 65 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 | ses.but.there.are.abandoned.IP.a |
| 53640 | 64 64 72 65 73 73 65 73 2c 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 61 | ddresses,.the.DHCP.server.will.a |
| 53660 | 74 74 65 6d 70 74 20 74 6f 20 72 65 63 6c 61 69 6d 20 61 6e 20 61 62 61 6e 64 6f 6e 65 64 20 49 | ttempt.to.reclaim.an.abandoned.I |
| 53680 | 50 20 61 64 64 72 65 73 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 76 61 6c 75 | P.address.regardless.of.the.valu |
| 536a0 | 65 20 6f 66 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 2e 00 49 66 20 61 63 74 69 | e.of.abandon-lease-time..If.acti |
| 536c0 | 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2c 20 75 73 65 20 6e 65 78 74 | on.is.set.to.``queue``,.use.next |
| 536e0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 75 65 75 65 20 74 61 | .command.to.specify.the.queue.ta |
| 53700 | 72 67 65 74 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 3a 00 49 | rget..Range.is.also.supported:.I |
| 53720 | 66 20 61 6e 20 49 53 50 20 64 65 70 6c 6f 79 73 20 61 20 3a 61 62 62 72 3a 60 43 47 4e 20 28 43 | f.an.ISP.deploys.a.:abbr:`CGN.(C |
| 53740 | 61 72 72 69 65 72 2d 67 72 61 64 65 20 4e 41 54 29 60 2c 20 61 6e 64 20 75 73 65 73 20 3a 72 66 | arrier-grade.NAT)`,.and.uses.:rf |
| 53760 | 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 74 6f 20 6e 75 6d 62 65 72 | c:`1918`.address.space.to.number |
| 53780 | 20 63 75 73 74 6f 6d 65 72 20 67 61 74 65 77 61 79 73 2c 20 74 68 65 20 72 69 73 6b 20 6f 66 20 | .customer.gateways,.the.risk.of. |
| 537a0 | 61 64 64 72 65 73 73 20 63 6f 6c 6c 69 73 69 6f 6e 2c 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 | address.collision,.and.therefore |
| 537c0 | 20 72 6f 75 74 69 6e 67 20 66 61 69 6c 75 72 65 73 2c 20 61 72 69 73 65 73 20 77 68 65 6e 20 74 | .routing.failures,.arises.when.t |
| 537e0 | 68 65 20 63 75 73 74 6f 6d 65 72 20 6e 65 74 77 6f 72 6b 20 61 6c 72 65 61 64 79 20 75 73 65 73 | he.customer.network.already.uses |
| 53800 | 20 61 6e 20 3a 72 66 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 00 49 | .an.:rfc:`1918`.address.space..I |
| 53820 | 66 20 61 6e 20 61 6e 6f 74 68 65 72 20 62 72 69 64 67 65 20 69 6e 20 74 68 65 20 73 70 61 6e 6e | f.an.another.bridge.in.the.spann |
| 53840 | 69 6e 67 20 74 72 65 65 20 64 6f 65 73 20 6e 6f 74 20 73 65 6e 64 20 6f 75 74 20 61 20 68 65 6c | ing.tree.does.not.send.out.a.hel |
| 53860 | 6c 6f 20 70 61 63 6b 65 74 20 66 6f 72 20 61 20 6c 6f 6e 67 20 70 65 72 69 6f 64 20 6f 66 20 74 | lo.packet.for.a.long.period.of.t |
| 53880 | 69 6d 65 2c 20 69 74 20 69 73 20 61 73 73 75 6d 65 64 20 74 6f 20 62 65 20 64 65 61 64 2e 00 49 | ime,.it.is.assumed.to.be.dead..I |
| 538a0 | 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 | f.an.interface.is.attached.to.a. |
| 538c0 | 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e | non-default.vrf,.when.using.**in |
| 538e0 | 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 76 72 66 20 6e 61 6d 65 20 | bound-interface**,.the.vrf.name. |
| 53900 | 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 | must.be.used..For.example.``set. |
| 53920 | 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c | firewall.ipv4.forward.filter.rul |
| 53940 | 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 | e.10.inbound-interface.name.MGMT |
| 53960 | 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 | ``.If.an.interface.is.attached.t |
| 53980 | 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 | o.a.non-default.vrf,.when.using. |
| 539a0 | 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 76 72 66 20 6e | **inbound-interface**,.the.vrf.n |
| 539c0 | 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 | ame.must.be.used..For.example.`` |
| 539e0 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 | set.firewall.ipv6.forward.filter |
| 53a00 | 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 | .rule.10.inbound-interface.name. |
| 53a20 | 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 | MGMT``.If.an.interface.is.attach |
| 53a40 | 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 | ed.to.a.non-default.vrf,.when.us |
| 53a60 | 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 76 72 66 20 6e | ing.**inbound-interface**,.vrf.n |
| 53a80 | 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 | ame.must.be.used..For.example.`` |
| 53aa0 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 | set.firewall.ipv4.forward.filter |
| 53ac0 | 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 | .rule.10.inbound-interface.name. |
| 53ae0 | 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 | MGMT``.If.an.interface.is.attach |
| 53b00 | 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 | ed.to.a.non-default.vrf,.when.us |
| 53b20 | 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 76 72 66 20 6e | ing.**inbound-interface**,.vrf.n |
| 53b40 | 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 | ame.must.be.used..For.example.`` |
| 53b60 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 | set.firewall.ipv6.forward.filter |
| 53b80 | 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 | .rule.10.inbound-interface.name. |
| 53ba0 | 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 | MGMT``.If.an.interface.is.attach |
| 53bc0 | 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 | ed.to.a.non-default.vrf,.when.us |
| 53be0 | 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 72 65 61 6c | ing.**outbound-interface**,.real |
| 53c00 | 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f | .interface.name.must.be.used..Fo |
| 53c20 | 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f | r.example.``set.firewall.ipv4.fo |
| 53c40 | 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e | rward.filter.rule.10.outbound-in |
| 53c60 | 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 | terface.name.eth0``.If.an.interf |
| 53c80 | 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 | ace.is.attached.to.a.non-default |
| 53ca0 | 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 | .vrf,.when.using.**outbound-inte |
| 53cc0 | 72 66 61 63 65 2a 2a 2c 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 | rface**,.real.interface.name.mus |
| 53ce0 | 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 | t.be.used..For.example.``set.fir |
| 53d00 | 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 | ewall.ipv6.forward.filter.rule.1 |
| 53d20 | 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 | 0.outbound-interface.name.eth0`` |
| 53d40 | 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 | .If.an.interface.is.attached.to. |
| 53d60 | 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a | a.non-default.vrf,.when.using.** |
| 53d80 | 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 72 65 61 6c 20 69 | outbound-interface**,.the.real.i |
| 53da0 | 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 | nterface.name.must.be.used..For. |
| 53dc0 | 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 | example.``set.firewall.ipv4.forw |
| 53de0 | 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 | ard.filter.rule.10.outbound-inte |
| 53e00 | 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 | rface.name.eth0``.If.an.interfac |
| 53e20 | 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 | e.is.attached.to.a.non-default.v |
| 53e40 | 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 | rf,.when.using.**outbound-interf |
| 53e60 | 61 63 65 2a 2a 2c 20 74 68 65 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d | ace**,.the.real.interface.name.m |
| 53e80 | 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 | ust.be.used..For.example.``set.f |
| 53ea0 | 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 | irewall.ipv6.forward.filter.rule |
| 53ec0 | 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 | .10.outbound-interface.name.eth0 |
| 53ee0 | 60 60 00 49 66 20 63 68 6f 6f 73 69 6e 67 20 61 20 76 61 6c 75 65 20 62 65 6c 6f 77 20 33 31 20 | ``.If.choosing.a.value.below.31. |
| 53f00 | 73 65 63 6f 6e 64 73 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 73 6f 6d 65 20 68 61 72 64 77 | seconds.be.aware.that.some.hardw |
| 53f20 | 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f 74 20 73 65 65 20 64 61 74 61 20 66 6c | are.platforms.cannot.see.data.fl |
| 53f40 | 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 6e 20 33 30 20 73 65 63 6f 6e 64 20 63 | owing.in.better.than.30.second.c |
| 53f60 | 68 75 6e 6b 73 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 69 6e 63 6f 6d 69 6e 67 20 49 | hunks..If.configured,.incoming.I |
| 53f80 | 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 20 6f 6e 20 | P.directed.broadcast.packets.on. |
| 53fa0 | 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 | this.interface.will.be.forwarded |
| 53fc0 | 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 72 65 70 6c 79 20 6f 6e 6c 79 20 69 66 20 74 | ..If.configured,.reply.only.if.t |
| 53fe0 | 68 65 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 6c 6f 63 61 6c 20 61 64 | he.target.IP.address.is.local.ad |
| 54000 | 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 | dress.configured.on.the.incoming |
| 54020 | 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 74 72 79 20 74 | .interface..If.configured,.try.t |
| 54040 | 6f 20 61 76 6f 69 64 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 73 20 74 68 61 74 20 61 72 65 | o.avoid.local.addresses.that.are |
| 54060 | 20 6e 6f 74 20 69 6e 20 74 68 65 20 74 61 72 67 65 74 27 73 20 73 75 62 6e 65 74 20 66 6f 72 20 | .not.in.the.target's.subnet.for. |
| 54080 | 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 6d 6f 64 65 20 69 73 20 75 73 65 | this.interface..This.mode.is.use |
| 540a0 | 66 75 6c 20 77 68 65 6e 20 74 61 72 67 65 74 20 68 6f 73 74 73 20 72 65 61 63 68 61 62 6c 65 20 | ful.when.target.hosts.reachable. |
| 540c0 | 76 69 61 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 72 65 71 75 69 72 65 20 74 68 65 20 73 | via.this.interface.require.the.s |
| 540e0 | 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 41 52 50 20 72 65 71 75 65 73 74 73 | ource.IP.address.in.ARP.requests |
| 54100 | 20 74 6f 20 62 65 20 70 61 72 74 20 6f 66 20 74 68 65 69 72 20 6c 6f 67 69 63 61 6c 20 6e 65 74 | .to.be.part.of.their.logical.net |
| 54120 | 77 6f 72 6b 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 | work.configured.on.the.receiving |
| 54140 | 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 77 65 20 67 65 6e 65 72 61 74 65 20 74 68 65 | .interface..When.we.generate.the |
| 54160 | 20 72 65 71 75 65 73 74 20 77 65 20 77 69 6c 6c 20 63 68 65 63 6b 20 61 6c 6c 20 6f 75 72 20 73 | .request.we.will.check.all.our.s |
| 54180 | 75 62 6e 65 74 73 20 74 68 61 74 20 69 6e 63 6c 75 64 65 20 74 68 65 20 74 61 72 67 65 74 20 49 | ubnets.that.include.the.target.I |
| 541a0 | 50 20 61 6e 64 20 77 69 6c 6c 20 70 72 65 73 65 72 76 65 20 74 68 65 20 73 6f 75 72 63 65 20 61 | P.and.will.preserve.the.source.a |
| 541c0 | 64 64 72 65 73 73 20 69 66 20 69 74 20 69 73 20 66 72 6f 6d 20 73 75 63 68 20 73 75 62 6e 65 74 | ddress.if.it.is.from.such.subnet |
| 541e0 | 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 6e 6f 20 73 75 63 68 20 73 75 62 6e 65 74 20 77 65 20 | ..If.there.is.no.such.subnet.we. |
| 54200 | 73 65 6c 65 63 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 61 63 63 6f 72 64 69 6e 67 20 | select.source.address.according. |
| 54220 | 74 6f 20 74 68 65 20 72 75 6c 65 73 20 66 6f 72 20 6c 65 76 65 6c 20 32 2e 00 49 66 20 63 6f 6e | to.the.rules.for.level.2..If.con |
| 54240 | 66 69 67 75 72 69 6e 67 20 56 58 4c 41 4e 20 69 6e 20 61 20 56 79 4f 53 20 76 69 72 74 75 61 6c | figuring.VXLAN.in.a.VyOS.virtual |
| 54260 | 20 6d 61 63 68 69 6e 65 2c 20 65 6e 73 75 72 65 20 74 68 61 74 20 4d 41 43 20 73 70 6f 6f 66 69 | .machine,.ensure.that.MAC.spoofi |
| 54280 | 6e 67 20 28 48 79 70 65 72 2d 56 29 20 6f 72 20 46 6f 72 67 65 64 20 54 72 61 6e 73 6d 69 74 73 | ng.(Hyper-V).or.Forged.Transmits |
| 542a0 | 20 28 45 53 58 29 20 61 72 65 20 70 65 72 6d 69 74 74 65 64 2c 20 6f 74 68 65 72 77 69 73 65 20 | .(ESX).are.permitted,.otherwise. |
| 542c0 | 66 6f 72 77 61 72 64 65 64 20 66 72 61 6d 65 73 20 6d 61 79 20 62 65 20 62 6c 6f 63 6b 65 64 20 | forwarded.frames.may.be.blocked. |
| 542e0 | 62 79 20 74 68 65 20 68 79 70 65 72 76 69 73 6f 72 2e 00 49 66 20 65 69 74 68 65 72 20 69 73 20 | by.the.hypervisor..If.either.is. |
| 54300 | 73 65 74 20 62 6f 74 68 20 6d 75 73 74 20 62 65 20 73 65 74 2e 00 49 66 20 66 6f 72 77 61 72 64 | set.both.must.be.set..If.forward |
| 54320 | 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 74 20 | ing.traffic.to.a.different.port. |
| 54340 | 74 68 61 6e 20 69 74 20 69 73 20 61 72 72 69 76 69 6e 67 20 6f 6e 2c 20 79 6f 75 20 6d 61 79 20 | than.it.is.arriving.on,.you.may. |
| 54360 | 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 | also.configure.the.translation.p |
| 54380 | 6f 72 74 20 75 73 69 6e 67 20 60 73 65 74 20 6e 61 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 72 | ort.using.`set.nat.destination.r |
| 543a0 | 75 6c 65 20 5b 6e 5d 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 72 74 60 2e 00 49 66 20 67 75 | ule.[n].translation.port`..If.gu |
| 543c0 | 61 72 61 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 66 6f 72 20 61 20 63 6c 61 73 73 20 69 73 20 | aranteed.traffic.for.a.class.is. |
| 543e0 | 6d 65 74 20 61 6e 64 20 74 68 65 72 65 20 69 73 20 72 6f 6f 6d 20 66 6f 72 20 6d 6f 72 65 20 74 | met.and.there.is.room.for.more.t |
| 54400 | 72 61 66 66 69 63 2c 20 74 68 65 20 63 65 69 6c 69 6e 67 20 70 61 72 61 6d 65 74 65 72 20 63 61 | raffic,.the.ceiling.parameter.ca |
| 54420 | 6e 20 62 65 20 75 73 65 64 20 74 6f 20 73 65 74 20 68 6f 77 20 6d 75 63 68 20 6d 6f 72 65 20 62 | n.be.used.to.set.how.much.more.b |
| 54440 | 61 6e 64 77 69 64 74 68 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 2e 20 49 66 20 67 75 61 72 61 | andwidth.could.be.used..If.guara |
| 54460 | 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 69 73 20 6d 65 74 20 61 6e 64 20 74 68 65 72 65 20 61 | nteed.traffic.is.met.and.there.a |
| 54480 | 72 65 20 73 65 76 65 72 61 6c 20 63 6c 61 73 73 65 73 20 77 69 6c 6c 69 6e 67 20 74 6f 20 75 73 | re.several.classes.willing.to.us |
| 544a0 | 65 20 74 68 65 69 72 20 63 65 69 6c 69 6e 67 73 2c 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 70 | e.their.ceilings,.the.priority.p |
| 544c0 | 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 6f 72 64 65 | arameter.will.establish.the.orde |
| 544e0 | 72 20 69 6e 20 77 68 69 63 68 20 74 68 61 74 20 61 64 64 69 74 69 6f 6e 61 6c 20 74 72 61 66 66 | r.in.which.that.additional.traff |
| 54500 | 69 63 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 2e 20 50 72 69 6f 72 69 74 79 20 63 | ic.will.be.allocated..Priority.c |
| 54520 | 61 6e 20 62 65 20 61 6e 79 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 30 20 74 6f 20 37 2e 20 54 68 | an.be.any.number.from.0.to.7..Th |
| 54540 | 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 | e.lower.the.number,.the.higher.t |
| 54560 | 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 66 20 69 6e 74 65 72 66 61 63 65 20 77 65 72 65 20 74 | he.priority..If.interface.were.t |
| 54580 | 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f | he.packet.was.received.is.part.o |
| 545a0 | 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 | f.a.bridge,.then.packet.is.proce |
| 545c0 | 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 | ssed.at.the.**Bridge.Layer**,.wh |
| 545e0 | 69 63 68 20 63 6f 6e 74 61 69 6e 73 20 61 20 76 65 72 20 62 61 73 69 63 20 73 65 74 75 70 20 77 | ich.contains.a.ver.basic.setup.w |
| 54600 | 68 65 72 65 20 66 6f 72 20 62 72 69 64 67 65 20 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 20 69 6e | here.for.bridge.filtering:.If.in |
| 54620 | 74 65 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 | terface.were.the.packet.was.rece |
| 54640 | 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 | ived.isn't.part.of.a.bridge,.the |
| 54660 | 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 | n.packet.is.processed.at.the.**I |
| 54680 | 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 69 74 27 73 20 6e 6f 74 20 64 72 6f 70 70 65 64 2c 20 | P.Layer**:.If.it's.not.dropped,. |
| 546a0 | 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 74 6f 20 2a 2a 49 50 20 | then.the.packet.is.sent.to.**IP. |
| 546c0 | 4c 61 79 65 72 2a 2a 2c 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 70 72 6f 63 65 73 73 65 64 20 62 | Layer**,.and.will.be.processed.b |
| 546e0 | 79 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 20 66 69 72 65 77 61 6c 6c 3a 20 49 50 76 | y.the.**IP.Layer**.firewall:.IPv |
| 54700 | 34 20 6f 72 20 49 50 76 36 20 72 75 6c 65 73 65 74 2e 20 43 68 65 63 6b 20 6f 6e 63 65 20 61 67 | 4.or.IPv6.ruleset..Check.once.ag |
| 54720 | 61 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 67 65 6e 65 72 61 6c 20 70 61 63 6b 65 74 20 66 6c 6f | ain.the.:doc:`general.packet.flo |
| 54740 | 77 20 64 69 61 67 72 61 6d 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c | w.diagram</configuration/firewal |
| 54760 | 6c 2f 69 6e 64 65 78 3e 60 20 69 66 20 6e 65 65 64 65 64 2e 00 49 66 20 69 74 27 73 20 76 69 74 | l/index>`.if.needed..If.it's.vit |
| 54780 | 61 6c 20 74 68 61 74 20 74 68 65 20 64 61 65 6d 6f 6e 20 73 68 6f 75 6c 64 20 61 63 74 20 65 78 | al.that.the.daemon.should.act.ex |
| 547a0 | 61 63 74 6c 79 20 6c 69 6b 65 20 61 20 72 65 61 6c 20 6d 75 6c 74 69 63 61 73 74 20 63 6c 69 65 | actly.like.a.real.multicast.clie |
| 547c0 | 6e 74 20 6f 6e 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 | nt.on.the.upstream.interface,.th |
| 547e0 | 69 73 20 66 75 6e 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 49 | is.function.should.be.enabled..I |
| 54800 | 66 20 6b 6e 6f 77 6e 2c 20 74 68 65 20 49 50 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f | f.known,.the.IP.of.the.remote.ro |
| 54820 | 75 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 74 68 65 | uter.can.be.configured.using.the |
| 54840 | 20 60 60 72 65 6d 6f 74 65 2d 68 6f 73 74 60 60 20 64 69 72 65 63 74 69 76 65 3b 20 69 66 20 75 | .``remote-host``.directive;.if.u |
| 54860 | 6e 6b 6e 6f 77 6e 2c 20 69 74 20 63 61 6e 20 62 65 20 6f 6d 69 74 74 65 64 2e 20 57 65 20 77 69 | nknown,.it.can.be.omitted..We.wi |
| 54880 | 6c 6c 20 61 73 73 75 6d 65 20 61 20 64 79 6e 61 6d 69 63 20 49 50 20 66 6f 72 20 6f 75 72 20 72 | ll.assume.a.dynamic.IP.for.our.r |
| 548a0 | 65 6d 6f 74 65 20 72 6f 75 74 65 72 2e 00 49 66 20 6c 6f 67 67 69 6e 67 20 74 6f 20 61 20 6c 6f | emote.router..If.logging.to.a.lo |
| 548c0 | 63 61 6c 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 | cal.user.account.is.configured,. |
| 548e0 | 61 6c 6c 20 64 65 66 69 6e 65 64 20 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 61 72 65 20 64 69 73 | all.defined.log.messages.are.dis |
| 54900 | 70 6c 61 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 69 66 20 74 68 65 20 6c 6f 63 61 6c | play.on.the.console.if.the.local |
| 54920 | 20 75 73 65 72 20 69 73 20 6c 6f 67 67 65 64 20 69 6e 2c 20 69 66 20 74 68 65 20 75 73 65 72 20 | .user.is.logged.in,.if.the.user. |
| 54940 | 69 73 20 6e 6f 74 20 6c 6f 67 67 65 64 20 69 6e 2c 20 6e 6f 20 6d 65 73 73 61 67 65 73 20 61 72 | is.not.logged.in,.no.messages.ar |
| 54960 | 65 20 62 65 69 6e 67 20 64 69 73 70 6c 61 79 65 64 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e | e.being.displayed..For.an.explan |
| 54980 | 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 | ation.on.:ref:`syslog_facilities |
| 549a0 | 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 | `.keywords.and.:ref:`syslog_seve |
| 549c0 | 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 | rity_level`.keywords.see.tables. |
| 549e0 | 62 65 6c 6f 77 2e 00 49 66 20 6d 61 6b 69 6e 67 20 75 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 | below..If.making.use.of.multiple |
| 54a00 | 20 74 75 6e 6e 65 6c 73 2c 20 4f 70 65 6e 56 50 4e 20 6d 75 73 74 20 68 61 76 65 20 61 20 77 61 | .tunnels,.OpenVPN.must.have.a.wa |
| 54a20 | 79 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 64 69 66 66 65 72 65 | y.to.distinguish.between.differe |
| 54a40 | 6e 74 20 74 75 6e 6e 65 6c 73 20 61 73 69 64 65 20 66 72 6f 6d 20 74 68 65 20 70 72 65 2d 73 68 | nt.tunnels.aside.from.the.pre-sh |
| 54a60 | 61 72 65 64 2d 6b 65 79 2e 20 54 68 69 73 20 69 73 20 65 69 74 68 65 72 20 62 79 20 72 65 66 65 | ared-key..This.is.either.by.refe |
| 54a80 | 72 65 6e 63 69 6e 67 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 | rencing.IP.address.or.port.numbe |
| 54aa0 | 72 2e 20 4f 6e 65 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 | r..One.option.is.to.dedicate.a.p |
| 54ac0 | 75 62 6c 69 63 20 49 50 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 2e 20 41 6e 6f 74 68 65 72 | ublic.IP.to.each.tunnel..Another |
| 54ae0 | 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 6f 72 74 20 6e 75 | .option.is.to.dedicate.a.port.nu |
| 54b00 | 6d 62 65 72 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 28 65 2e 67 2e 20 31 31 39 35 2c 31 | mber.to.each.tunnel.(e.g..1195,1 |
| 54b20 | 31 39 36 2c 31 31 39 37 2e 2e 2e 29 2e 00 49 66 20 6d 75 6c 74 69 2d 70 61 74 68 69 6e 67 20 69 | 196,1197...)..If.multi-pathing.i |
| 54b40 | 73 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 63 68 65 63 6b 20 77 68 65 74 68 65 72 20 74 68 | s.enabled,.then.check.whether.th |
| 54b60 | 65 20 72 6f 75 74 65 73 20 6e 6f 74 20 79 65 74 20 64 69 73 74 69 6e 67 75 69 73 68 65 64 20 69 | e.routes.not.yet.distinguished.i |
| 54b80 | 6e 20 70 72 65 66 65 72 65 6e 63 65 20 6d 61 79 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 65 | n.preference.may.be.considered.e |
| 54ba0 | 71 75 61 6c 2e 20 49 66 20 3a 63 66 67 63 6d 64 3a 60 62 67 70 20 62 65 73 74 70 61 74 68 20 61 | qual..If.:cfgcmd:`bgp.bestpath.a |
| 54bc0 | 73 2d 70 61 74 68 20 6d 75 6c 74 69 70 61 74 68 2d 72 65 6c 61 78 60 20 69 73 20 73 65 74 2c 20 | s-path.multipath-relax`.is.set,. |
| 54be0 | 61 6c 6c 20 73 75 63 68 20 72 6f 75 74 65 73 20 61 72 65 20 63 6f 6e 73 69 64 65 72 65 64 20 65 | all.such.routes.are.considered.e |
| 54c00 | 71 75 61 6c 2c 20 6f 74 68 65 72 77 69 73 65 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 | qual,.otherwise.routes.received. |
| 54c20 | 76 69 61 20 69 42 47 50 20 77 69 74 68 20 69 64 65 6e 74 69 63 61 6c 20 41 53 5f 50 41 54 48 73 | via.iBGP.with.identical.AS_PATHs |
| 54c40 | 20 6f 72 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 65 42 47 50 20 6e 65 | .or.routes.received.from.eBGP.ne |
| 54c60 | 69 67 68 62 6f 75 72 73 20 69 6e 20 74 68 65 20 73 61 6d 65 20 41 53 20 61 72 65 20 63 6f 6e 73 | ighbours.in.the.same.AS.are.cons |
| 54c80 | 69 64 65 72 65 64 20 65 71 75 61 6c 2e 00 49 66 20 6e 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 | idered.equal..If.no.connection.t |
| 54ca0 | 6f 20 61 6e 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 65 73 | o.an.RPKI.cache.server.can.be.es |
| 54cc0 | 74 61 62 6c 69 73 68 65 64 20 61 66 74 65 72 20 61 20 70 72 65 2d 64 65 66 69 6e 65 64 20 74 69 | tablished.after.a.pre-defined.ti |
| 54ce0 | 6d 65 6f 75 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 70 72 6f 63 65 73 73 20 72 | meout,.the.router.will.process.r |
| 54d00 | 6f 75 74 65 73 20 77 69 74 68 6f 75 74 20 70 72 65 66 69 78 20 6f 72 69 67 69 6e 20 76 61 6c 69 | outes.without.prefix.origin.vali |
| 54d20 | 64 61 74 69 6f 6e 2e 20 49 74 20 73 74 69 6c 6c 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 65 73 74 | dation..It.still.will.try.to.est |
| 54d40 | 61 62 6c 69 73 68 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 6e 20 52 50 4b 49 20 63 | ablish.a.connection.to.an.RPKI.c |
| 54d60 | 61 63 68 65 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 62 61 63 6b 67 72 6f 75 6e 64 2e 00 49 | ache.server.in.the.background..I |
| 54d80 | 66 20 6e 6f 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 74 68 | f.no.destination.is.specified.th |
| 54da0 | 65 20 72 75 6c 65 20 77 69 6c 6c 20 6d 61 74 63 68 20 6f 6e 20 61 6e 79 20 64 65 73 74 69 6e 61 | e.rule.will.match.on.any.destina |
| 54dc0 | 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 2e 00 49 66 20 6e 6f 20 69 70 20 | tion.address.and.port..If.no.ip. |
| 54de0 | 70 72 65 66 69 78 20 6c 69 73 74 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 69 74 20 61 63 74 | prefix.list.is.specified,.it.act |
| 54e00 | 73 20 61 73 20 70 65 72 6d 69 74 2e 20 49 66 20 69 70 20 70 72 65 66 69 78 20 6c 69 73 74 20 69 | s.as.permit..If.ip.prefix.list.i |
| 54e20 | 73 20 64 65 66 69 6e 65 64 2c 20 61 6e 64 20 6e 6f 20 6d 61 74 63 68 20 69 73 20 66 6f 75 6e 64 | s.defined,.and.no.match.is.found |
| 54e40 | 2c 20 64 65 66 61 75 6c 74 20 64 65 6e 79 20 69 73 20 61 70 70 6c 69 65 64 2e 00 49 66 20 6e 6f | ,.default.deny.is.applied..If.no |
| 54e60 | 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 69 73 20 64 65 66 61 75 | .option.is.specified,.this.defau |
| 54e80 | 6c 74 73 20 74 6f 20 60 61 6c 6c 60 2e 00 49 66 20 6e 6f 74 20 73 65 74 20 28 64 65 66 61 75 6c | lts.to.`all`..If.not.set.(defaul |
| 54ea0 | 74 29 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 6e | t).allows.you.to.have.multiple.n |
| 54ec0 | 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 73 75 | etwork.interfaces.on.the.same.su |
| 54ee0 | 62 6e 65 74 2c 20 61 6e 64 20 68 61 76 65 20 74 68 65 20 41 52 50 73 20 66 6f 72 20 65 61 63 68 | bnet,.and.have.the.ARPs.for.each |
| 54f00 | 20 69 6e 74 65 72 66 61 63 65 20 62 65 20 61 6e 73 77 65 72 65 64 20 62 61 73 65 64 20 6f 6e 20 | .interface.be.answered.based.on. |
| 54f20 | 77 68 65 74 68 65 72 20 6f 72 20 6e 6f 74 20 74 68 65 20 6b 65 72 6e 65 6c 20 77 6f 75 6c 64 20 | whether.or.not.the.kernel.would. |
| 54f40 | 72 6f 75 74 65 20 61 20 70 61 63 6b 65 74 20 66 72 6f 6d 20 74 68 65 20 41 52 50 27 64 20 49 50 | route.a.packet.from.the.ARP'd.IP |
| 54f60 | 20 6f 75 74 20 74 68 61 74 20 69 6e 74 65 72 66 61 63 65 20 28 74 68 65 72 65 66 6f 72 65 20 79 | .out.that.interface.(therefore.y |
| 54f80 | 6f 75 20 6d 75 73 74 20 75 73 65 20 73 6f 75 72 63 65 20 62 61 73 65 64 20 72 6f 75 74 69 6e 67 | ou.must.use.source.based.routing |
| 54fa0 | 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 29 2e 00 49 66 20 6f 70 74 69 6f 6e 61 6c 20 | .for.this.to.work)..If.optional. |
| 54fc0 | 70 72 6f 66 69 6c 65 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 75 73 65 64 2c 20 73 65 6c 65 63 | profile.parameter.is.used,.selec |
| 54fe0 | 74 20 61 20 42 46 44 20 70 72 6f 66 69 6c 65 20 66 6f 72 20 74 68 65 20 42 46 44 20 73 65 73 73 | t.a.BFD.profile.for.the.BFD.sess |
| 55000 | 69 6f 6e 73 20 63 72 65 61 74 65 64 20 76 69 61 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e | ions.created.via.this.interface. |
| 55020 | 00 49 66 20 73 65 74 20 74 68 65 20 6b 65 72 6e 65 6c 20 63 61 6e 20 72 65 73 70 6f 6e 64 20 74 | .If.set.the.kernel.can.respond.t |
| 55040 | 6f 20 61 72 70 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 61 64 64 72 65 73 73 65 73 20 66 72 | o.arp.requests.with.addresses.fr |
| 55060 | 6f 6d 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 6d 61 79 20 73 65 | om.other.interfaces..This.may.se |
| 55080 | 65 6d 20 77 72 6f 6e 67 20 62 75 74 20 69 74 20 75 73 75 61 6c 6c 79 20 6d 61 6b 65 73 20 73 65 | em.wrong.but.it.usually.makes.se |
| 550a0 | 6e 73 65 2c 20 62 65 63 61 75 73 65 20 69 74 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 63 68 | nse,.because.it.increases.the.ch |
| 550c0 | 61 6e 63 65 20 6f 66 20 73 75 63 63 65 73 73 66 75 6c 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e | ance.of.successful.communication |
| 550e0 | 2e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 6f 77 6e 65 64 20 62 79 20 74 68 65 20 | ..IP.addresses.are.owned.by.the. |
| 55100 | 63 6f 6d 70 6c 65 74 65 20 68 6f 73 74 20 6f 6e 20 4c 69 6e 75 78 2c 20 6e 6f 74 20 62 79 20 70 | complete.host.on.Linux,.not.by.p |
| 55120 | 61 72 74 69 63 75 6c 61 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 6c 79 20 66 6f 72 20 6d | articular.interfaces..Only.for.m |
| 55140 | 6f 72 65 20 63 6f 6d 70 6c 65 78 20 73 65 74 75 70 73 20 6c 69 6b 65 20 6c 6f 61 64 2d 62 61 6c | ore.complex.setups.like.load-bal |
| 55160 | 61 6e 63 69 6e 67 2c 20 64 6f 65 73 20 74 68 69 73 20 62 65 68 61 76 69 6f 75 72 20 63 61 75 73 | ancing,.does.this.behaviour.caus |
| 55180 | 65 20 70 72 6f 62 6c 65 6d 73 2e 00 49 66 20 73 65 74 20 74 6f 20 61 6e 20 65 6d 70 74 79 20 73 | e.problems..If.set.to.an.empty.s |
| 551a0 | 74 72 69 6e 67 2c 20 74 68 65 20 6c 61 62 65 6c 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 61 64 64 | tring,.the.label.will.not.be.add |
| 551c0 | 65 64 2e 20 54 68 69 73 20 69 73 20 4e 4f 54 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 61 73 20 | ed..This.is.NOT.recommended,.as. |
| 551e0 | 69 74 20 6d 61 6b 65 73 20 69 74 20 69 6d 70 6f 73 73 69 62 6c 65 20 74 6f 20 64 69 66 66 65 72 | it.makes.it.impossible.to.differ |
| 55200 | 65 6e 74 69 61 74 65 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 6d 65 74 72 69 63 73 | entiate.between.multiple.metrics |
| 55220 | 2e 00 49 66 20 73 65 74 20 74 6f 20 65 6e 61 62 6c 65 2c 20 6f 70 65 6e 76 70 6e 2d 6f 74 70 20 | ..If.set.to.enable,.openvpn-otp. |
| 55240 | 77 69 6c 6c 20 65 78 70 65 63 74 20 70 61 73 73 77 6f 72 64 20 61 73 20 72 65 73 75 6c 74 20 6f | will.expect.password.as.result.o |
| 55260 | 66 20 63 68 61 6c 6c 65 6e 67 65 2f 20 72 65 73 70 6f 6e 73 65 20 70 72 6f 74 6f 63 6f 6c 2e 00 | f.challenge/.response.protocol.. |
| 55280 | 49 66 20 73 65 74 2c 20 49 50 76 34 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 | If.set,.IPv4.directed.broadcast. |
| 552a0 | 66 6f 72 77 61 72 64 69 6e 67 20 77 69 6c 6c 20 62 65 20 63 6f 6d 70 6c 65 74 65 6c 79 20 64 69 | forwarding.will.be.completely.di |
| 552c0 | 73 61 62 6c 65 64 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 77 68 65 74 68 65 72 20 70 65 72 | sabled.regardless.of.whether.per |
| 552e0 | 2d 69 6e 74 65 72 66 61 63 65 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f | -interface.directed.broadcast.fo |
| 55300 | 72 77 61 72 64 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 20 6f 72 20 6e 6f 74 2e 00 49 66 20 73 | rwarding.is.enabled.or.not..If.s |
| 55320 | 65 74 2c 20 74 68 65 20 64 6f 6d 61 69 6e 20 70 61 72 74 20 6f 66 20 74 68 65 20 68 6f 73 74 6e | et,.the.domain.part.of.the.hostn |
| 55340 | 61 6d 65 20 69 73 20 61 6c 77 61 79 73 20 73 65 6e 74 2c 20 65 76 65 6e 20 77 69 74 68 69 6e 20 | ame.is.always.sent,.even.within. |
| 55360 | 74 68 65 20 73 61 6d 65 20 64 6f 6d 61 69 6e 20 61 73 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 | the.same.domain.as.the.receiving |
| 55380 | 20 73 79 73 74 65 6d 2e 00 49 66 20 73 65 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c | .system..If.set,.the.router.will |
| 553a0 | 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 65 6e 64 20 70 65 72 69 6f 64 69 63 20 72 6f 75 74 65 72 20 | .no.longer.send.periodic.router. |
| 553c0 | 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 72 65 73 70 | advertisements.and.will.not.resp |
| 553e0 | 6f 6e 64 20 74 6f 20 72 6f 75 74 65 72 20 73 6f 6c 69 63 69 74 61 74 69 6f 6e 73 2e 00 49 66 20 | ond.to.router.solicitations..If. |
| 55400 | 73 75 66 66 69 78 20 69 73 20 6f 6d 69 74 74 65 64 2c 20 6d 69 6e 75 74 65 73 20 61 72 65 20 69 | suffix.is.omitted,.minutes.are.i |
| 55420 | 6d 70 6c 69 65 64 2e 00 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 6e 6f 2d 70 72 65 70 65 | mplied..If.the.:cfgcmd:`no-prepe |
| 55440 | 6e 64 60 20 61 74 74 72 69 62 75 74 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e | nd`.attribute.is.specified,.then |
| 55460 | 20 74 68 65 20 73 75 70 70 6c 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 20 6e 6f 74 20 70 72 | .the.supplied.local-as.is.not.pr |
| 55480 | 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 72 65 63 65 69 76 65 64 20 41 53 5f 50 41 54 48 2e | epended.to.the.received.AS_PATH. |
| 554a0 | 00 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 70 6c 61 63 65 2d 61 73 60 20 61 74 74 | .If.the.:cfgcmd:`replace-as`.att |
| 554c0 | 72 69 62 75 74 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 6f 6e 6c 79 20 74 | ribute.is.specified,.then.only.t |
| 554e0 | 68 65 20 73 75 70 70 6c 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 20 70 72 65 70 65 6e 64 65 | he.supplied.local-as.is.prepende |
| 55500 | 64 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 20 77 68 65 6e 20 74 72 61 6e 73 6d 69 74 74 69 | d.to.the.AS_PATH.when.transmitti |
| 55520 | 6e 67 20 6c 6f 63 61 6c 2d 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 74 6f 20 74 68 69 73 20 70 | ng.local-route.updates.to.this.p |
| 55540 | 65 65 72 2e 00 49 66 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 20 61 6c 72 65 61 64 79 20 63 6f | eer..If.the.ARP.table.already.co |
| 55560 | 6e 74 61 69 6e 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 67 72 61 | ntains.the.IP.address.of.the.gra |
| 55580 | 74 75 69 74 6f 75 73 20 61 72 70 20 66 72 61 6d 65 2c 20 74 68 65 20 61 72 70 20 74 61 62 6c 65 | tuitous.arp.frame,.the.arp.table |
| 555a0 | 20 77 69 6c 6c 20 62 65 20 75 70 64 61 74 65 64 20 72 65 67 61 72 64 6c 65 73 73 20 69 66 20 74 | .will.be.updated.regardless.if.t |
| 555c0 | 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 20 6f 6e 20 6f 72 20 6f 66 66 2e 00 49 66 20 74 68 65 | his.setting.is.on.or.off..If.the |
| 555e0 | 20 41 53 2d 50 61 74 68 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 61 20 70 72 69 | .AS-Path.for.the.route.has.a.pri |
| 55600 | 76 61 74 65 20 41 53 4e 20 62 65 74 77 65 65 6e 20 70 75 62 6c 69 63 20 41 53 4e 73 2c 20 69 74 | vate.ASN.between.public.ASNs,.it |
| 55620 | 20 69 73 20 61 73 73 75 6d 65 64 20 74 68 61 74 20 74 68 69 73 20 69 73 20 61 20 64 65 73 69 67 | .is.assumed.that.this.is.a.desig |
| 55640 | 6e 20 63 68 6f 69 63 65 2c 20 61 6e 64 20 74 68 65 20 70 72 69 76 61 74 65 20 41 53 4e 20 69 73 | n.choice,.and.the.private.ASN.is |
| 55660 | 20 6e 6f 74 20 72 65 6d 6f 76 65 64 2e 00 49 66 20 74 68 65 20 41 53 2d 50 61 74 68 20 66 6f 72 | .not.removed..If.the.AS-Path.for |
| 55680 | 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 6f 6e 6c 79 20 70 72 69 76 61 74 65 20 41 53 4e 73 | .the.route.has.only.private.ASNs |
| 556a0 | 2c 20 74 68 65 20 70 72 69 76 61 74 65 20 41 53 4e 73 20 61 72 65 20 72 65 6d 6f 76 65 64 2e 00 | ,.the.private.ASNs.are.removed.. |
| 556c0 | 49 66 20 74 68 65 20 49 50 20 70 72 65 66 69 78 20 6d 61 73 6b 20 69 73 20 70 72 65 73 65 6e 74 | If.the.IP.prefix.mask.is.present |
| 556e0 | 2c 20 69 74 20 64 69 72 65 63 74 73 20 6f 70 65 6e 6e 68 72 70 20 74 6f 20 75 73 65 20 74 68 69 | ,.it.directs.opennhrp.to.use.thi |
| 55700 | 73 20 70 65 65 72 20 61 73 20 61 20 6e 65 78 74 20 68 6f 70 20 73 65 72 76 65 72 20 77 68 65 6e | s.peer.as.a.next.hop.server.when |
| 55720 | 20 73 65 6e 64 69 6e 67 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 71 75 65 73 74 73 20 6d 61 74 | .sending.Resolution.Requests.mat |
| 55740 | 63 68 69 6e 67 20 74 68 69 73 20 73 75 62 6e 65 74 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 | ching.this.subnet..If.the.RADIUS |
| 55760 | 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 44 65 | .server.sends.the.attribute.``De |
| 55780 | 6c 65 67 61 74 65 64 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c 60 60 2c 20 49 50 76 36 | legated-IPv6-Prefix-Pool``,.IPv6 |
| 557a0 | 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 65 66 69 78 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 | .delegation.pefix.will.be.alloca |
| 557c0 | 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 | ted.from.a.predefined.IPv6.pool. |
| 557e0 | 60 60 64 65 6c 65 67 61 74 65 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 | ``delegate``.whose.name.equals.t |
| 55800 | 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 | he.attribute.value..If.the.RADIU |
| 55820 | 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 44 | S.server.sends.the.attribute.``D |
| 55840 | 65 6c 65 67 61 74 65 64 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c 60 60 2c 20 61 6e 20 | elegated-IPv6-Prefix-Pool``,.an. |
| 55860 | 49 50 76 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 77 69 6c 6c 20 62 65 20 61 | IPv6.delegation.prefix.will.be.a |
| 55880 | 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 | llocated.from.a.predefined.IPv6. |
| 558a0 | 70 6f 6f 6c 20 60 60 64 65 6c 65 67 61 74 65 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 | pool.``delegate``.whose.name.equ |
| 558c0 | 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 | als.the.attribute.value..If.the. |
| 558e0 | 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 | RADIUS.server.sends.the.attribut |
| 55900 | 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 | e.``Framed-IP-Address``.then.thi |
| 55920 | 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 | s.IP.address.will.be.allocated.t |
| 55940 | 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 | o.the.client.and.the.option.``de |
| 55960 | 66 61 75 6c 74 2d 70 6f 6f 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 | fault-pool``.within.the.CLI.conf |
| 55980 | 69 67 20 69 73 20 62 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 | ig.is.being.ignored..If.the.RADI |
| 559a0 | 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 | US.server.sends.the.attribute.`` |
| 559c0 | 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 | Framed-IP-Address``.then.this.IP |
| 559e0 | 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 | .address.will.be.allocated.to.th |
| 55a00 | 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 66 61 75 6c | e.client.and.the.option.``defaul |
| 55a20 | 74 2d 70 6f 6f 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 | t-pool``.within.the.CLI.config.w |
| 55a40 | 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | ill.be.ignored..If.the.RADIUS.se |
| 55a60 | 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 | rver.sends.the.attribute.``Frame |
| 55a80 | 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 | d-IP-Address``.then.this.IP.addr |
| 55aa0 | 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 | ess.will.be.allocated.to.the.cli |
| 55ac0 | 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 66 61 75 6c 74 2d 70 6f 6f | ent.and.the.option.``default-poo |
| 55ae0 | 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 69 6c 6c 20 62 | l``.within.the.CLI.config.will.b |
| 55b00 | 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 | eing.ignored..If.the.RADIUS.serv |
| 55b20 | 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d | er.sends.the.attribute.``Framed- |
| 55b40 | 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 65 73 | IP-Address``.then.this.IP.addres |
| 55b60 | 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e | s.will.be.allocated.to.the.clien |
| 55b80 | 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 70 2d 70 6f 6f 6c 20 77 69 74 68 69 6e 20 | t.and.the.option.ip-pool.within. |
| 55ba0 | 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 69 73 20 62 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e | the.CLI.config.is.being.ignored. |
| 55bc0 | 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 | .If.the.RADIUS.server.sends.the. |
| 55be0 | 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 50 6f 6f 6c 60 60 2c 20 49 50 20 61 64 | attribute.``Framed-Pool``,.IP.ad |
| 55c00 | 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 | dress.will.be.allocated.from.a.p |
| 55c20 | 72 65 64 65 66 69 6e 65 64 20 49 50 20 70 6f 6f 6c 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 | redefined.IP.pool.whose.name.equ |
| 55c40 | 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 | als.the.attribute.value..If.the. |
| 55c60 | 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 | RADIUS.server.sends.the.attribut |
| 55c80 | 65 20 60 60 46 72 61 6d 65 64 2d 50 6f 6f 6c 60 60 2c 20 74 68 65 6e 20 74 68 65 20 49 50 20 61 | e.``Framed-Pool``,.then.the.IP.a |
| 55ca0 | 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 | ddress.will.be.allocated.from.a. |
| 55cc0 | 70 72 65 64 65 66 69 6e 65 64 20 49 50 20 70 6f 6f 6c 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 | predefined.IP.pool.whose.name.eq |
| 55ce0 | 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 | uals.the.attribute.value..If.the |
| 55d00 | 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 | .RADIUS.server.sends.the.attribu |
| 55d20 | 74 65 20 60 60 53 74 61 74 65 66 75 6c 2d 49 50 76 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 | te.``Stateful-IPv6-Address-Pool` |
| 55d40 | 60 2c 20 49 50 76 36 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 | `,.IPv6.address.will.be.allocate |
| 55d60 | 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 | d.from.a.predefined.IPv6.pool.`` |
| 55d80 | 70 72 65 66 69 78 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 | prefix``.whose.name.equals.the.a |
| 55da0 | 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | ttribute.value..If.the.RADIUS.se |
| 55dc0 | 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 53 74 61 74 65 | rver.sends.the.attribute.``State |
| 55de0 | 66 75 6c 2d 49 50 76 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 60 2c 20 74 68 65 20 49 50 76 | ful-IPv6-Address-Pool``,.the.IPv |
| 55e00 | 36 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d | 6.address.will.be.allocated.from |
| 55e20 | 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 70 72 65 66 69 78 | .a.predefined.IPv6.pool.``prefix |
| 55e40 | 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 | ``.whose.name.equals.the.attribu |
| 55e60 | 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 75 | te.value..If.the.RADIUS.server.u |
| 55e80 | 73 65 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 4e 41 53 2d 50 6f 72 74 2d 49 64 60 | ses.the.attribute.``NAS-Port-Id` |
| 55ea0 | 60 2c 20 70 70 70 20 74 75 6e 6e 65 6c 73 20 77 69 6c 6c 20 62 65 20 72 65 6e 61 6d 65 64 2e 00 | `,.ppp.tunnels.will.be.renamed.. |
| 55ec0 | 49 66 20 74 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 73 20 6c 6f 77 | If.the.average.queue.size.is.low |
| 55ee0 | 65 72 20 74 68 61 6e 20 74 68 65 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 2c 20 61 | er.than.the.**min-threshold**,.a |
| 55f00 | 6e 20 61 72 72 69 76 69 6e 67 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 70 6c 61 63 65 64 | n.arriving.packet.will.be.placed |
| 55f20 | 20 69 6e 20 74 68 65 20 71 75 65 75 65 2e 00 49 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 71 75 | .in.the.queue..If.the.current.qu |
| 55f40 | 65 75 65 20 73 69 7a 65 20 69 73 20 6c 61 72 67 65 72 20 74 68 61 6e 20 2a 2a 71 75 65 75 65 2d | eue.size.is.larger.than.**queue- |
| 55f60 | 6c 69 6d 69 74 2a 2a 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 64 72 | limit**,.then.packets.will.be.dr |
| 55f80 | 6f 70 70 65 64 2e 20 54 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 64 65 | opped..The.average.queue.size.de |
| 55fa0 | 70 65 6e 64 73 20 6f 6e 20 69 74 73 20 66 6f 72 6d 65 72 20 61 76 65 72 61 67 65 20 73 69 7a 65 | pends.on.its.former.average.size |
| 55fc0 | 20 61 6e 64 20 69 74 73 20 63 75 72 72 65 6e 74 20 6f 6e 65 2e 00 49 66 20 74 68 65 20 69 6e 74 | .and.its.current.one..If.the.int |
| 55fe0 | 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 | erface.where.the.packet.was.rece |
| 56000 | 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 | ived.is.part.of.a.bridge,.then.p |
| 56020 | 61 63 6b 65 74 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 | acketis.processed.at.the.**Bridg |
| 56040 | 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f 6e 74 61 69 6e 73 20 61 20 62 61 73 69 | e.Layer**,.which.contains.a.basi |
| 56060 | 63 20 73 65 74 75 70 20 66 6f 72 20 62 72 69 64 67 65 20 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 | c.setup.for.bridge.filtering:.If |
| 56080 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 | .the.interface.where.the.packet. |
| 560a0 | 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 | was.received.is.part.of.a.bridge |
| 560c0 | 2c 20 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 | ,.then.the.packet.is.processed.a |
| 560e0 | 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f | t.the.**Bridge.Layer**,.which.co |
| 56100 | 6e 74 61 69 6e 73 20 61 20 62 61 73 69 63 20 73 65 74 75 70 20 66 6f 72 20 62 72 69 64 67 65 20 | ntains.a.basic.setup.for.bridge. |
| 56120 | 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 | filtering:.If.the.interface.wher |
| 56140 | 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 | e.the.packet.was.received.is.par |
| 56160 | 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 | t.of.a.bridge,.then.the.packet.i |
| 56180 | 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 | s.processed.at.the.**Bridge.Laye |
| 561a0 | 72 2a 2a 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 | r**:.If.the.interface.where.the. |
| 561c0 | 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f | packet.was.received.isn't.part.o |
| 561e0 | 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 | f.a.bridge,.then.packet.is.proce |
| 56200 | 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 74 68 65 | ssed.at.the.**IP.Layer**:.If.the |
| 56220 | 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 | .interface.where.the.packet.was. |
| 56240 | 72 65 63 65 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c | received.isn't.part.of.a.bridge, |
| 56260 | 20 74 68 65 6e 20 70 61 63 6b 65 74 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 | .then.packetis.processed.at.the. |
| 56280 | 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 | **IP.Layer**:.If.the.protocol.is |
| 562a0 | 20 49 50 76 36 20 74 68 65 6e 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e | .IPv6.then.the.source.and.destin |
| 562c0 | 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 66 69 72 73 74 20 68 61 73 68 65 64 | ation.addresses.are.first.hashed |
| 562e0 | 20 75 73 69 6e 67 20 69 70 76 36 5f 61 64 64 72 5f 68 61 73 68 2e 00 49 66 20 74 68 65 20 73 74 | .using.ipv6_addr_hash..If.the.st |
| 56300 | 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 20 70 65 65 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 | atically.mapped.peer.is.running. |
| 56320 | 43 69 73 63 6f 20 49 4f 53 2c 20 73 70 65 63 69 66 79 20 74 68 65 20 63 69 73 63 6f 20 6b 65 79 | Cisco.IOS,.specify.the.cisco.key |
| 56340 | 77 6f 72 64 2e 20 49 74 20 69 73 20 75 73 65 64 20 74 6f 20 66 69 78 20 73 74 61 74 69 63 61 6c | word..It.is.used.to.fix.statical |
| 56360 | 6c 79 20 74 68 65 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 20 49 44 20 73 | ly.the.Registration.Request.ID.s |
| 56380 | 6f 20 74 68 61 74 20 61 20 6d 61 74 63 68 69 6e 67 20 50 75 72 67 65 20 52 65 71 75 65 73 74 20 | o.that.a.matching.Purge.Request. |
| 563a0 | 63 61 6e 20 62 65 20 73 65 6e 74 20 69 66 20 4e 42 4d 41 20 61 64 64 72 65 73 73 20 68 61 73 20 | can.be.sent.if.NBMA.address.has. |
| 563c0 | 63 68 61 6e 67 65 64 2e 20 54 68 69 73 20 69 73 20 74 6f 20 77 6f 72 6b 20 61 72 6f 75 6e 64 20 | changed..This.is.to.work.around. |
| 563e0 | 62 72 6f 6b 65 6e 20 49 4f 53 20 77 68 69 63 68 20 72 65 71 75 69 72 65 73 20 50 75 72 67 65 20 | broken.IOS.which.requires.Purge. |
| 56400 | 52 65 71 75 65 73 74 20 49 44 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 6f 72 69 67 69 6e 61 6c | Request.ID.to.match.the.original |
| 56420 | 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 20 49 44 2e 00 49 66 20 74 68 65 | .Registration.Request.ID..If.the |
| 56440 | 20 73 79 73 74 65 6d 20 64 65 74 65 63 74 73 20 61 6e 20 75 6e 63 6f 6e 66 69 67 75 72 65 64 20 | .system.detects.an.unconfigured. |
| 56460 | 77 69 72 65 6c 65 73 73 20 64 65 76 69 63 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 75 74 6f | wireless.device,.it.will.be.auto |
| 56480 | 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 65 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | matically.added.the.configuratio |
| 564a0 | 6e 20 74 72 65 65 2c 20 73 70 65 63 69 66 79 69 6e 67 20 61 6e 79 20 64 65 74 65 63 74 65 64 20 | n.tree,.specifying.any.detected. |
| 564c0 | 73 65 74 74 69 6e 67 73 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 74 73 20 4d 41 43 20 61 | settings.(for.example,.its.MAC.a |
| 564e0 | 64 64 72 65 73 73 29 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 75 6e 20 69 6e | ddress).and.configured.to.run.in |
| 56500 | 20 6d 6f 6e 69 74 6f 72 20 6d 6f 64 65 2e 00 49 66 20 74 68 65 20 74 61 62 6c 65 20 69 73 20 65 | .monitor.mode..If.the.table.is.e |
| 56520 | 6d 70 74 79 20 61 6e 64 20 79 6f 75 20 68 61 76 65 20 61 20 77 61 72 6e 69 6e 67 20 6d 65 73 73 | mpty.and.you.have.a.warning.mess |
| 56540 | 61 67 65 2c 20 69 74 20 6d 65 61 6e 73 20 63 6f 6e 6e 74 72 61 63 6b 20 69 73 20 6e 6f 74 20 65 | age,.it.means.conntrack.is.not.e |
| 56560 | 6e 61 62 6c 65 64 2e 20 54 6f 20 65 6e 61 62 6c 65 20 63 6f 6e 6e 74 72 61 63 6b 2c 20 6a 75 73 | nabled..To.enable.conntrack,.jus |
| 56580 | 74 20 63 72 65 61 74 65 20 61 20 4e 41 54 20 6f 72 20 61 20 66 69 72 65 77 61 6c 6c 20 72 75 6c | t.create.a.NAT.or.a.firewall.rul |
| 565a0 | 65 2e 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 73 74 61 74 65 2d 70 | e..:cfgcmd:`set.firewall.state-p |
| 565c0 | 6f 6c 69 63 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 61 63 74 69 6f 6e 20 61 63 63 65 70 74 60 | olicy.established.action.accept` |
| 565e0 | 00 49 66 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 66 72 65 65 20 61 64 64 72 65 73 73 65 73 20 | .If.there.are.no.free.addresses. |
| 56600 | 62 75 74 20 74 68 65 72 65 20 61 72 65 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 | but.there.are.abandoned.IP.addre |
| 56620 | 73 73 65 73 2c 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 61 74 74 65 6d | sses,.the.DHCP.server.will.attem |
| 56640 | 70 74 20 74 6f 20 72 65 63 6c 61 69 6d 20 61 6e 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 | pt.to.reclaim.an.abandoned.IP.ad |
| 56660 | 64 72 65 73 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 76 61 6c 75 65 20 6f 66 | dress.regardless.of.the.value.of |
| 56680 | 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 2e 00 49 66 20 74 68 65 72 65 20 69 73 | .abandon-lease-time..If.there.is |
| 566a0 | 20 53 4e 41 54 20 72 75 6c 65 73 20 6f 6e 20 65 74 68 31 2c 20 6e 65 65 64 20 74 6f 20 61 64 64 | .SNAT.rules.on.eth1,.need.to.add |
| 566c0 | 20 65 78 63 6c 75 64 65 20 72 75 6c 65 00 49 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 | .exclude.rule.If.this.command.is |
| 566e0 | 20 69 6e 76 6f 6b 65 64 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 65 20 6d 6f 64 65 20 77 69 74 | .invoked.from.configure.mode.wit |
| 56700 | 68 20 74 68 65 20 60 60 72 75 6e 60 60 20 70 72 65 66 69 78 20 74 68 65 20 6b 65 79 20 69 73 20 | h.the.``run``.prefix.the.key.is. |
| 56720 | 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 65 64 20 74 6f 20 74 68 65 20 61 | automatically.installed.to.the.a |
| 56740 | 70 70 72 6f 70 72 69 61 74 65 20 69 6e 74 65 72 66 61 63 65 3a 00 49 66 20 74 68 69 73 20 69 73 | ppropriate.interface:.If.this.is |
| 56760 | 20 73 65 74 20 74 68 65 20 72 65 6c 61 79 20 61 67 65 6e 74 20 77 69 6c 6c 20 69 6e 73 65 72 74 | .set.the.relay.agent.will.insert |
| 56780 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 49 44 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 | .the.interface.ID..This.option.i |
| 567a0 | 73 20 73 65 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 66 20 6d 6f 72 65 20 74 68 61 6e | s.set.automatically.if.more.than |
| 567c0 | 20 6f 6e 65 20 6c 69 73 74 65 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 69 6e | .one.listening.interfaces.are.in |
| 567e0 | 20 75 73 65 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 65 6e 61 62 6c 65 64 2c | .use..If.this.option.is.enabled, |
| 56800 | 20 74 68 65 6e 20 74 68 65 20 61 6c 72 65 61 64 79 2d 73 65 6c 65 63 74 65 64 20 63 68 65 63 6b | .then.the.already-selected.check |
| 56820 | 2c 20 77 68 65 72 65 20 61 6c 72 65 61 64 79 20 73 65 6c 65 63 74 65 64 20 65 42 47 50 20 72 6f | ,.where.already.selected.eBGP.ro |
| 56840 | 75 74 65 73 20 61 72 65 20 70 72 65 66 65 72 72 65 64 2c 20 69 73 20 73 6b 69 70 70 65 64 2e 00 | utes.are.preferred,.is.skipped.. |
| 56860 | 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 67 69 76 65 6e 2c 20 6f 6e 6c 79 20 53 53 | If.this.option.is.given,.only.SS |
| 56880 | 54 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | TP.connections.to.the.specified. |
| 568a0 | 68 6f 73 74 20 61 6e 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 54 4c 53 20 53 4e 49 20 77 | host.and.with.the.same.TLS.SNI.w |
| 568c0 | 69 6c 6c 20 62 65 20 61 6c 6c 6f 77 65 64 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 | ill.be.allowed..If.this.option.i |
| 568e0 | 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 | s.specified.and.is.greater.than. |
| 56900 | 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 | 0,.then.the.PPP.module.will.send |
| 56920 | 20 4c 43 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 | .LCP.echo.requests.every.`<inter |
| 56940 | 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 | val>`.seconds..Default.value.is. |
| 56960 | 2a 2a 33 30 2a 2a 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 | **30**..If.this.option.is.specif |
| 56980 | 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 30 2c 20 74 68 65 6e 20 | ied.and.is.greater.than.0,.then. |
| 569a0 | 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 20 4c 43 50 20 70 69 6e | the.PPP.module.will.send.LCP.pin |
| 569c0 | 67 73 20 6f 66 20 74 68 65 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 65 76 65 72 79 20 60 3c 69 | gs.of.the.echo.request.every.`<i |
| 569e0 | 6e 74 65 72 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f | nterval>`.seconds..If.this.optio |
| 56a00 | 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 20 74 68 | n.is.specified.and.is.greater.th |
| 56a20 | 61 6e 20 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 | an.0,.then.the.PPP.module.will.s |
| 56a40 | 65 6e 64 20 4c 43 50 20 70 69 6e 67 73 20 6f 66 20 74 68 65 20 65 63 68 6f 20 72 65 71 75 65 73 | end.LCP.pings.of.the.echo.reques |
| 56a60 | 74 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 20 44 65 | t.every.`<interval>`.seconds..De |
| 56a80 | 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 33 30 2a 2a 2e 00 49 66 20 74 68 69 73 20 6f | fault.value.is.**30**..If.this.o |
| 56aa0 | 70 74 69 6f 6e 20 69 73 20 75 6e 73 65 74 20 28 64 65 66 61 75 6c 74 29 2c 20 69 6e 63 6f 6d 69 | ption.is.unset.(default),.incomi |
| 56ac0 | 6e 67 20 49 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 | ng.IP.directed.broadcast.packets |
| 56ae0 | 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 66 6f 72 77 61 72 64 65 64 2e 00 49 66 20 74 68 69 73 20 | .will.not.be.forwarded..If.this. |
| 56b00 | 6f 70 74 69 6f 6e 20 69 73 20 75 6e 73 65 74 20 28 64 65 66 61 75 6c 74 29 2c 20 72 65 70 6c 79 | option.is.unset.(default),.reply |
| 56b20 | 20 66 6f 72 20 61 6e 79 20 6c 6f 63 61 6c 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 73 | .for.any.local.target.IP.address |
| 56b40 | 2c 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 2e 00 49 | ,.configured.on.any.interface..I |
| 56b60 | 66 20 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 6e 6f 74 20 73 65 74 20 6f 72 20 30 | f.this.parameter.is.not.set.or.0 |
| 56b80 | 2c 20 61 6e 20 6f 6e 2d 64 65 6d 61 6e 64 20 6c 69 6e 6b 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 | ,.an.on-demand.link.will.not.be. |
| 56ba0 | 74 61 6b 65 6e 20 64 6f 77 6e 20 77 68 65 6e 20 69 74 20 69 73 20 69 64 6c 65 20 61 6e 64 20 61 | taken.down.when.it.is.idle.and.a |
| 56bc0 | 66 74 65 72 20 74 68 65 20 69 6e 69 74 69 61 6c 20 65 73 74 61 62 6c 69 73 68 6d 65 6e 74 20 6f | fter.the.initial.establishment.o |
| 56be0 | 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 49 74 20 77 69 6c 6c 20 73 74 61 79 20 75 | f.the.connection..It.will.stay.u |
| 56c00 | 70 20 66 6f 72 65 76 65 72 2e 00 49 66 20 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 | p.forever..If.this.parameter.is. |
| 56c20 | 6e 6f 74 20 73 65 74 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 68 6f 6c 64 6f 66 66 20 74 69 6d | not.set,.the.default.holdoff.tim |
| 56c40 | 65 20 69 73 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 49 66 20 75 6e 73 65 74 2c 20 69 6e 63 6f 6d | e.is.30.seconds..If.unset,.incom |
| 56c60 | 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | ing.connections.to.the.RADIUS.se |
| 56c80 | 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6e 65 61 72 65 73 74 20 69 6e 74 65 72 66 | rver.will.use.the.nearest.interf |
| 56ca0 | 61 63 65 20 61 64 64 72 65 73 73 20 70 6f 69 6e 74 69 6e 67 20 74 6f 77 61 72 64 73 20 74 68 65 | ace.address.pointing.towards.the |
| 56cc0 | 20 73 65 72 76 65 72 20 2d 20 6d 61 6b 69 6e 67 20 69 74 20 65 72 72 6f 72 20 70 72 6f 6e 65 20 | .server.-.making.it.error.prone. |
| 56ce0 | 6f 6e 20 65 2e 67 2e 20 4f 53 50 46 20 6e 65 74 77 6f 72 6b 73 20 77 68 65 6e 20 61 20 6c 69 6e | on.e.g..OSPF.networks.when.a.lin |
| 56d00 | 6b 20 66 61 69 6c 73 20 61 6e 64 20 61 20 62 61 63 6b 75 70 20 72 6f 75 74 65 20 69 73 20 74 61 | k.fails.and.a.backup.route.is.ta |
| 56d20 | 6b 65 6e 2e 00 49 66 20 75 6e 73 65 74 2c 20 69 6e 63 6f 6d 69 6e 67 20 63 6f 6e 6e 65 63 74 69 | ken..If.unset,.incoming.connecti |
| 56d40 | 6f 6e 73 20 74 6f 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 | ons.to.the.TACACS.server.will.us |
| 56d60 | 65 20 74 68 65 20 6e 65 61 72 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 | e.the.nearest.interface.address. |
| 56d80 | 70 6f 69 6e 74 69 6e 67 20 74 6f 77 61 72 64 73 20 74 68 65 20 73 65 72 76 65 72 20 2d 20 6d 61 | pointing.towards.the.server.-.ma |
| 56da0 | 6b 69 6e 67 20 69 74 20 65 72 72 6f 72 20 70 72 6f 6e 65 20 6f 6e 20 65 2e 67 2e 20 4f 53 50 46 | king.it.error.prone.on.e.g..OSPF |
| 56dc0 | 20 6e 65 74 77 6f 72 6b 73 20 77 68 65 6e 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 20 61 6e 64 20 | .networks.when.a.link.fails.and. |
| 56de0 | 61 20 62 61 63 6b 75 70 20 72 6f 75 74 65 20 69 73 20 74 61 6b 65 6e 2e 00 49 66 20 79 6f 75 20 | a.backup.route.is.taken..If.you. |
| 56e00 | 61 70 70 6c 79 20 61 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 61 6e 20 69 6e 64 69 76 69 64 75 | apply.a.parameter.to.an.individu |
| 56e20 | 61 6c 20 6e 65 69 67 68 62 6f 72 20 49 50 20 61 64 64 72 65 73 73 2c 20 79 6f 75 20 6f 76 65 72 | al.neighbor.IP.address,.you.over |
| 56e40 | 72 69 64 65 20 74 68 65 20 61 63 74 69 6f 6e 20 64 65 66 69 6e 65 64 20 66 6f 72 20 61 20 70 65 | ride.the.action.defined.for.a.pe |
| 56e60 | 65 72 20 67 72 6f 75 70 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 74 68 61 74 20 49 50 20 61 | er.group.that.includes.that.IP.a |
| 56e80 | 64 64 72 65 73 73 2e 00 49 66 20 79 6f 75 20 61 72 65 20 61 20 68 61 63 6b 65 72 20 6f 72 20 77 | ddress..If.you.are.a.hacker.or.w |
| 56ea0 | 61 6e 74 20 74 6f 20 74 72 79 20 6f 6e 20 79 6f 75 72 20 6f 77 6e 20 77 65 20 73 75 70 70 6f 72 | ant.to.try.on.your.own.we.suppor |
| 56ec0 | 74 20 70 61 73 73 69 6e 67 20 72 61 77 20 4f 70 65 6e 56 50 4e 20 6f 70 74 69 6f 6e 73 20 74 6f | t.passing.raw.OpenVPN.options.to |
| 56ee0 | 20 4f 70 65 6e 56 50 4e 2e 00 49 66 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 | .OpenVPN..If.you.are.configuring |
| 56f00 | 20 61 20 56 52 46 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 70 75 72 70 6f 73 65 73 2c 20 | .a.VRF.for.management.purposes,. |
| 56f20 | 74 68 65 72 65 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 6e 6f 20 77 61 79 20 74 6f 20 66 6f 72 | there.is.currently.no.way.to.for |
| 56f40 | 63 65 20 73 79 73 74 65 6d 20 44 4e 53 20 74 72 61 66 66 69 63 20 76 69 61 20 61 20 73 70 65 63 | ce.system.DNS.traffic.via.a.spec |
| 56f60 | 69 66 69 63 20 56 52 46 2e 00 49 66 20 79 6f 75 20 61 72 65 20 6e 65 77 20 74 6f 20 74 68 65 73 | ific.VRF..If.you.are.new.to.thes |
| 56f80 | 65 20 72 6f 75 74 69 6e 67 20 73 65 63 75 72 69 74 79 20 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 | e.routing.security.technologies. |
| 56fa0 | 74 68 65 6e 20 74 68 65 72 65 20 69 73 20 61 6e 20 60 65 78 63 65 6c 6c 65 6e 74 20 67 75 69 64 | then.there.is.an.`excellent.guid |
| 56fc0 | 65 20 74 6f 20 52 50 4b 49 60 5f 20 62 79 20 4e 4c 6e 65 74 20 4c 61 62 73 20 77 68 69 63 68 20 | e.to.RPKI`_.by.NLnet.Labs.which. |
| 56fe0 | 77 69 6c 6c 20 67 65 74 20 79 6f 75 20 75 70 20 74 6f 20 73 70 65 65 64 20 76 65 72 79 20 71 75 | will.get.you.up.to.speed.very.qu |
| 57000 | 69 63 6b 6c 79 2e 20 54 68 65 69 72 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 65 78 70 6c 61 | ickly..Their.documentation.expla |
| 57020 | 69 6e 73 20 65 76 65 72 79 74 68 69 6e 67 20 66 72 6f 6d 20 77 68 61 74 20 52 50 4b 49 20 69 73 | ins.everything.from.what.RPKI.is |
| 57040 | 20 74 6f 20 64 65 70 6c 6f 79 69 6e 67 20 69 74 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e 2e 20 | .to.deploying.it.in.production.. |
| 57060 | 49 74 20 61 6c 73 6f 20 68 61 73 20 73 6f 6d 65 20 60 68 65 6c 70 20 61 6e 64 20 6f 70 65 72 61 | It.also.has.some.`help.and.opera |
| 57080 | 74 69 6f 6e 61 6c 20 67 75 69 64 61 6e 63 65 60 5f 20 69 6e 63 6c 75 64 69 6e 67 20 22 57 68 61 | tional.guidance`_.including."Wha |
| 570a0 | 74 20 63 61 6e 20 49 20 64 6f 20 61 62 6f 75 74 20 6d 79 20 72 6f 75 74 65 20 68 61 76 69 6e 67 | t.can.I.do.about.my.route.having |
| 570c0 | 20 61 6e 20 49 6e 76 61 6c 69 64 20 73 74 61 74 65 3f 22 00 49 66 20 79 6f 75 20 61 72 65 20 72 | .an.Invalid.state?".If.you.are.r |
| 570e0 | 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 74 68 65 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 | esponsible.for.the.global.addres |
| 57100 | 73 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 2c 20 70 6c | ses.assigned.to.your.network,.pl |
| 57120 | 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 20 70 72 65 66 69 78 65 | ease.make.sure.that.your.prefixe |
| 57140 | 73 20 68 61 76 65 20 52 4f 41 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 6d | s.have.ROAs.associated.with.them |
| 57160 | 20 74 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 60 6e 6f 74 66 6f 75 6e 64 60 20 62 79 20 52 50 | .to.avoid.being.`notfound`.by.RP |
| 57180 | 4b 49 2e 20 46 6f 72 20 6d 6f 73 74 20 41 53 4e 73 20 74 68 69 73 20 77 69 6c 6c 20 69 6e 76 6f | KI..For.most.ASNs.this.will.invo |
| 571a0 | 6c 76 65 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 76 69 61 20 79 6f 75 72 20 3a 61 62 | lve.publishing.ROAs.via.your.:ab |
| 571c0 | 62 72 3a 60 52 49 52 20 28 52 65 67 69 6f 6e 61 6c 20 49 6e 74 65 72 6e 65 74 20 52 65 67 69 73 | br:`RIR.(Regional.Internet.Regis |
| 571e0 | 74 72 79 29 60 20 28 52 49 50 45 20 4e 43 43 2c 20 41 50 4e 49 43 2c 20 41 52 49 4e 2c 20 4c 41 | try)`.(RIPE.NCC,.APNIC,.ARIN,.LA |
| 57200 | 43 4e 49 43 20 6f 72 20 41 46 52 49 4e 49 43 29 2c 20 61 6e 64 20 69 73 20 73 6f 6d 65 74 68 69 | CNIC.or.AFRINIC),.and.is.somethi |
| 57220 | 6e 67 20 79 6f 75 20 61 72 65 20 65 6e 63 6f 75 72 61 67 65 64 20 74 6f 20 64 6f 20 77 68 65 6e | ng.you.are.encouraged.to.do.when |
| 57240 | 65 76 65 72 20 79 6f 75 20 70 6c 61 6e 20 74 6f 20 61 6e 6e 6f 75 6e 63 65 20 61 64 64 72 65 73 | ever.you.plan.to.announce.addres |
| 57260 | 73 65 73 20 69 6e 74 6f 20 74 68 65 20 44 46 5a 2e 00 49 66 20 79 6f 75 20 61 72 65 20 72 65 73 | ses.into.the.DFZ..If.you.are.res |
| 57280 | 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 74 68 65 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 65 | ponsible.for.the.global.addresse |
| 572a0 | 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 2c 20 70 6c 65 61 | s.assigned.to.your.network,.plea |
| 572c0 | 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 79 6f 75 72 20 70 72 65 66 69 78 65 73 20 | se.make.sure.that.your.prefixes. |
| 572e0 | 68 61 76 65 20 52 4f 41 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 6d 20 74 | have.ROAs.associated.with.them.t |
| 57300 | 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 60 6e 6f 74 66 6f 75 6e 64 60 20 62 79 20 52 50 4b 49 | o.avoid.being.`notfound`.by.RPKI |
| 57320 | 2e 20 46 6f 72 20 6d 6f 73 74 20 41 53 4e 73 20 74 68 69 73 20 77 69 6c 6c 20 69 6e 76 6f 6c 76 | ..For.most.ASNs.this.will.involv |
| 57340 | 65 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 76 69 61 20 79 6f 75 72 20 3a 61 62 62 72 | e.publishing.ROAs.via.your.:abbr |
| 57360 | 3a 60 52 49 52 20 28 52 65 67 69 6f 6e 61 6c 20 49 6e 74 65 72 6e 65 74 20 52 65 67 69 73 74 72 | :`RIR.(Regional.Internet.Registr |
| 57380 | 79 29 60 20 28 52 49 50 45 20 4e 43 43 2c 20 41 50 4e 49 43 2c 20 41 52 49 4e 2c 20 4c 41 43 4e | y)`.(RIPE.NCC,.APNIC,.ARIN,.LACN |
| 573a0 | 49 43 2c 20 6f 72 20 41 46 52 49 4e 49 43 29 2c 20 61 6e 64 20 69 73 20 73 6f 6d 65 74 68 69 6e | IC,.or.AFRINIC),.and.is.somethin |
| 573c0 | 67 20 79 6f 75 20 61 72 65 20 65 6e 63 6f 75 72 61 67 65 64 20 74 6f 20 64 6f 20 77 68 65 6e 65 | g.you.are.encouraged.to.do.whene |
| 573e0 | 76 65 72 20 79 6f 75 20 70 6c 61 6e 20 74 6f 20 61 6e 6e 6f 75 6e 63 65 20 61 64 64 72 65 73 73 | ver.you.plan.to.announce.address |
| 57400 | 65 73 20 69 6e 74 6f 20 74 68 65 20 44 46 5a 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e | es.into.the.DFZ..If.you.are.usin |
| 57420 | 67 20 46 51 2d 43 6f 44 65 6c 20 65 6d 62 65 64 64 65 64 20 69 6e 74 6f 20 53 68 61 70 65 72 5f | g.FQ-CoDel.embedded.into.Shaper_ |
| 57440 | 20 61 6e 64 20 79 6f 75 20 68 61 76 65 20 6c 61 72 67 65 20 72 61 74 65 73 20 28 31 30 30 4d 62 | .and.you.have.large.rates.(100Mb |
| 57460 | 69 74 20 61 6e 64 20 61 62 6f 76 65 29 2c 20 79 6f 75 20 6d 61 79 20 63 6f 6e 73 69 64 65 72 20 | it.and.above),.you.may.consider. |
| 57480 | 69 6e 63 72 65 61 73 69 6e 67 20 60 71 75 61 6e 74 75 6d 60 20 74 6f 20 38 30 30 30 20 6f 72 20 | increasing.`quantum`.to.8000.or. |
| 574a0 | 68 69 67 68 65 72 20 73 6f 20 74 68 61 74 20 74 68 65 20 73 63 68 65 64 75 6c 65 72 20 73 61 76 | higher.so.that.the.scheduler.sav |
| 574c0 | 65 73 20 43 50 55 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 | es.CPU..If.you.are.using.OSPF.as |
| 574e0 | 20 49 47 50 2c 20 61 6c 77 61 79 73 20 74 68 65 20 63 6c 6f 73 65 73 74 20 69 6e 74 65 72 66 61 | .IGP,.always.the.closest.interfa |
| 57500 | 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 | ce.connected.to.the.RADIUS.serve |
| 57520 | 72 20 69 73 20 75 73 65 64 2e 20 57 69 74 68 20 56 79 4f 53 20 31 2e 32 20 79 6f 75 20 63 61 6e | r.is.used..With.VyOS.1.2.you.can |
| 57540 | 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 53 20 72 65 71 75 65 73 | .bind.all.outgoing.RADIUS.reques |
| 57560 | 74 73 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 | ts.to.a.single.source.IP.e.g..th |
| 57580 | 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 61 72 65 | e.loopback.interface..If.you.are |
| 575a0 | 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 49 47 50 2c 20 61 6c 77 61 79 73 20 74 68 65 20 63 | .using.OSPF.as.IGP,.always.the.c |
| 575c0 | 6c 6f 73 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 | losest.interface.connected.to.th |
| 575e0 | 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 75 73 65 64 2e 20 59 6f 75 20 63 61 6e | e.RADIUS.server.is.used..You.can |
| 57600 | 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 53 20 72 65 71 75 65 73 | .bind.all.outgoing.RADIUS.reques |
| 57620 | 74 73 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 | ts.to.a.single.source.IP.e.g..th |
| 57640 | 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 61 72 65 | e.loopback.interface..If.you.are |
| 57660 | 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 79 6f 75 72 20 49 47 50 2c 20 75 73 65 20 74 68 65 | .using.OSPF.as.your.IGP,.use.the |
| 57680 | 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 63 6c 6f 73 65 73 74 20 74 6f 20 | .interface.connected.closest.to. |
| 576a0 | 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 59 6f 75 20 63 61 6e 20 62 69 6e 64 20 | the.RADIUS.server..You.can.bind. |
| 576c0 | 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 53 20 72 65 71 75 65 73 74 73 20 74 6f 20 | all.outgoing.RADIUS.requests.to. |
| 576e0 | 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 20 65 2e 67 2e 20 74 68 65 20 6c 6f 6f 70 | a.single.source.IP.e.g..the.loop |
| 57700 | 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 63 68 61 6e 67 65 20 74 68 | back.interface..If.you.change.th |
| 57720 | 65 20 64 65 66 61 75 6c 74 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 68 61 73 68 69 6e 67 | e.default.encryption.and.hashing |
| 57740 | 20 61 6c 67 6f 72 69 74 68 6d 73 2c 20 62 65 20 73 75 72 65 20 74 68 61 74 20 74 68 65 20 6c 6f | .algorithms,.be.sure.that.the.lo |
| 57760 | 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 65 6e 64 73 20 68 61 76 65 20 6d 61 74 63 68 69 6e | cal.and.remote.ends.have.matchin |
| 57780 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 | g.configurations,.otherwise.the. |
| 577a0 | 74 75 6e 6e 65 6c 20 77 69 6c 6c 20 6e 6f 74 20 63 6f 6d 65 20 75 70 2e 00 49 66 20 79 6f 75 20 | tunnel.will.not.come.up..If.you. |
| 577c0 | 63 68 6f 6f 73 65 20 61 6e 79 20 61 73 20 74 68 65 20 6f 70 74 69 6f 6e 20 74 68 61 74 20 77 69 | choose.any.as.the.option.that.wi |
| 577e0 | 6c 6c 20 63 61 75 73 65 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 74 68 61 74 20 61 72 65 20 | ll.cause.all.protocols.that.are. |
| 57800 | 73 65 6e 64 69 6e 67 20 72 6f 75 74 65 73 20 74 6f 20 7a 65 62 72 61 2e 00 49 66 20 79 6f 75 20 | sending.routes.to.zebra..If.you. |
| 57820 | 63 6f 6e 66 69 67 75 72 65 20 61 20 63 6c 61 73 73 20 66 6f 72 20 2a 2a 56 6f 49 50 20 74 72 61 | configure.a.class.for.**VoIP.tra |
| 57840 | 66 66 69 63 2a 2a 2c 20 64 6f 6e 27 74 20 67 69 76 65 20 69 74 20 61 6e 79 20 2a 63 65 69 6c 69 | ffic**,.don't.give.it.any.*ceili |
| 57860 | 6e 67 2a 2c 20 6f 74 68 65 72 77 69 73 65 20 6e 65 77 20 56 6f 49 50 20 63 61 6c 6c 73 20 63 6f | ng*,.otherwise.new.VoIP.calls.co |
| 57880 | 75 6c 64 20 73 74 61 72 74 20 77 68 65 6e 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 61 76 61 69 6c | uld.start.when.the.link.is.avail |
| 578a0 | 61 62 6c 65 20 61 6e 64 20 67 65 74 20 73 75 64 64 65 6e 6c 79 20 64 72 6f 70 70 65 64 20 77 68 | able.and.get.suddenly.dropped.wh |
| 578c0 | 65 6e 20 6f 74 68 65 72 20 63 6c 61 73 73 65 73 20 73 74 61 72 74 20 75 73 69 6e 67 20 74 68 65 | en.other.classes.start.using.the |
| 578e0 | 69 72 20 61 73 73 69 67 6e 65 64 20 2a 62 61 6e 64 77 69 64 74 68 2a 20 73 68 61 72 65 2e 00 49 | ir.assigned.*bandwidth*.share..I |
| 57900 | 66 20 79 6f 75 20 65 6e 61 62 6c 65 20 74 68 69 73 2c 20 79 6f 75 20 77 69 6c 6c 20 70 72 6f 62 | f.you.enable.this,.you.will.prob |
| 57920 | 61 62 6c 79 20 77 61 6e 74 20 74 6f 20 73 65 74 20 64 69 76 65 72 73 69 74 79 2d 66 61 63 74 6f | ably.want.to.set.diversity-facto |
| 57940 | 72 20 61 6e 64 20 63 68 61 6e 6e 65 6c 20 62 65 6c 6f 77 2e 00 49 66 20 79 6f 75 20 65 6e 74 65 | r.and.channel.below..If.you.ente |
| 57960 | 72 20 61 20 76 61 6c 75 65 20 73 6d 61 6c 6c 65 72 20 74 68 61 6e 20 36 30 20 73 65 63 6f 6e 64 | r.a.value.smaller.than.60.second |
| 57980 | 73 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 61 6e 64 20 77 69 6c | s.be.aware.that.this.can.and.wil |
| 579a0 | 6c 20 61 66 66 65 63 74 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 61 74 20 73 63 61 6c 65 2e 00 49 | l.affect.convergence.at.scale..I |
| 579c0 | 66 20 79 6f 75 20 66 65 65 6c 20 62 65 74 74 65 72 20 66 6f 72 77 61 72 64 69 6e 67 20 61 6c 6c | f.you.feel.better.forwarding.all |
| 579e0 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 65 71 75 65 73 74 73 20 74 6f 20 79 6f 75 72 | .authentication.requests.to.your |
| 57a00 | 20 65 6e 74 65 72 70 72 69 73 65 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2c 20 75 73 65 20 | .enterprises.RADIUS.server,.use. |
| 57a20 | 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 62 65 6c 6f 77 2e 00 49 66 20 79 6f 75 20 68 61 70 70 65 | the.commands.below..If.you.happe |
| 57a40 | 6e 20 74 6f 20 72 75 6e 20 74 68 69 73 20 69 6e 20 61 20 76 69 72 74 75 61 6c 20 65 6e 76 69 72 | n.to.run.this.in.a.virtual.envir |
| 57a60 | 6f 6e 6d 65 6e 74 20 6c 69 6b 65 20 62 79 20 45 56 45 2d 4e 47 20 79 6f 75 20 6e 65 65 64 20 74 | onment.like.by.EVE-NG.you.need.t |
| 57a80 | 6f 20 65 6e 73 75 72 65 20 79 6f 75 72 20 56 79 4f 53 20 4e 49 43 20 69 73 20 73 65 74 20 74 6f | o.ensure.your.VyOS.NIC.is.set.to |
| 57aa0 | 20 75 73 65 20 74 68 65 20 65 31 30 30 30 20 64 72 69 76 65 72 2e 20 55 73 69 6e 67 20 74 68 65 | .use.the.e1000.driver..Using.the |
| 57ac0 | 20 64 65 66 61 75 6c 74 20 60 60 76 69 72 74 69 6f 2d 6e 65 74 2d 70 63 69 60 60 20 6f 72 20 74 | .default.``virtio-net-pci``.or.t |
| 57ae0 | 68 65 20 60 60 76 6d 78 6e 65 74 33 60 60 20 64 72 69 76 65 72 20 77 69 6c 6c 20 6e 6f 74 20 77 | he.``vmxnet3``.driver.will.not.w |
| 57b00 | 6f 72 6b 2e 20 49 43 4d 50 20 6d 65 73 73 61 67 65 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 70 | ork..ICMP.messages.will.not.be.p |
| 57b20 | 72 6f 70 65 72 6c 79 20 70 72 6f 63 65 73 73 65 64 2e 20 54 68 65 79 20 61 72 65 20 76 69 73 69 | roperly.processed..They.are.visi |
| 57b40 | 62 6c 65 20 6f 6e 20 74 68 65 20 76 69 72 74 75 61 6c 20 77 69 72 65 20 62 75 74 20 77 69 6c 6c | ble.on.the.virtual.wire.but.will |
| 57b60 | 20 6e 6f 74 20 6d 61 6b 65 20 69 74 20 66 75 6c 6c 79 20 75 70 20 74 68 65 20 6e 65 74 77 6f 72 | .not.make.it.fully.up.the.networ |
| 57b80 | 6b 69 6e 67 20 73 74 61 63 6b 2e 00 49 66 20 79 6f 75 20 68 61 70 70 65 6e 20 74 6f 20 75 73 65 | king.stack..If.you.happen.to.use |
| 57ba0 | 20 53 6f 6c 61 72 57 69 6e 64 73 20 4f 72 69 6f 6e 20 61 73 20 4e 4d 53 20 79 6f 75 20 63 61 6e | .SolarWinds.Orion.as.NMS.you.can |
| 57bc0 | 20 61 6c 73 6f 20 75 73 65 20 74 68 65 20 44 65 76 69 63 65 20 54 65 6d 70 6c 61 74 65 73 20 4d | .also.use.the.Device.Templates.M |
| 57be0 | 61 6e 61 67 65 6d 65 6e 74 2e 20 41 20 74 65 6d 70 6c 61 74 65 20 66 6f 72 20 56 79 4f 53 20 63 | anagement..A.template.for.VyOS.c |
| 57c00 | 61 6e 20 62 65 20 65 61 73 69 6c 79 20 69 6d 70 6f 72 74 65 64 2e 00 49 66 20 79 6f 75 20 68 61 | an.be.easily.imported..If.you.ha |
| 57c20 | 70 70 65 6e 65 64 20 74 6f 20 75 73 65 20 61 20 43 69 73 63 6f 20 4e 4d 2d 31 36 41 20 2d 20 53 | ppened.to.use.a.Cisco.NM-16A.-.S |
| 57c40 | 69 78 74 65 65 6e 20 50 6f 72 74 20 41 73 79 6e 63 20 4e 65 74 77 6f 72 6b 20 4d 6f 64 75 6c 65 | ixteen.Port.Async.Network.Module |
| 57c60 | 20 6f 72 20 4e 4d 2d 33 32 41 20 2d 20 54 68 69 72 74 79 2d 74 77 6f 20 50 6f 72 74 20 41 73 79 | .or.NM-32A.-.Thirty-two.Port.Asy |
| 57c80 | 6e 63 20 4e 65 74 77 6f 72 6b 20 4d 6f 64 75 6c 65 20 2d 20 74 68 69 73 20 69 73 20 79 6f 75 72 | nc.Network.Module.-.this.is.your |
| 57ca0 | 20 56 79 4f 53 20 72 65 70 6c 61 63 65 6d 65 6e 74 2e 00 49 66 20 79 6f 75 20 68 61 76 65 20 61 | .VyOS.replacement..If.you.have.a |
| 57cc0 | 20 6c 6f 74 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2c 20 61 6e 64 2f 6f 72 20 61 20 6c 6f 74 | .lot.of.interfaces,.and/or.a.lot |
| 57ce0 | 20 6f 66 20 73 75 62 6e 65 74 73 2c 20 74 68 65 6e 20 65 6e 61 62 6c 69 6e 67 20 4f 53 50 46 20 | .of.subnets,.then.enabling.OSPF. |
| 57d00 | 76 69 61 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 79 20 72 65 73 75 6c 74 20 69 6e 20 61 | via.this.command.may.result.in.a |
| 57d20 | 20 73 6c 69 67 68 74 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 69 6d 70 72 6f 76 65 6d 65 6e 74 2e | .slight.performance.improvement. |
| 57d40 | 00 49 66 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 65 20 60 49 4e 53 | .If.you.have.configured.the.`INS |
| 57d60 | 49 44 45 2d 4f 55 54 60 20 70 6f 6c 69 63 79 2c 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 | IDE-OUT`.policy,.you.will.need.t |
| 57d80 | 6f 20 61 64 64 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 74 6f 20 70 65 72 6d 69 74 | o.add.additional.rules.to.permit |
| 57da0 | 20 69 6e 62 6f 75 6e 64 20 4e 41 54 20 74 72 61 66 66 69 63 2e 00 49 66 20 79 6f 75 20 68 61 76 | .inbound.NAT.traffic..If.you.hav |
| 57dc0 | 65 20 6d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 | e.multiple.addresses.configured. |
| 57de0 | 6f 6e 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 77 6f | on.a.particular.interface.and.wo |
| 57e00 | 75 6c 64 20 6c 69 6b 65 20 50 49 4d 20 74 6f 20 75 73 65 20 61 20 73 70 65 63 69 66 69 63 20 73 | uld.like.PIM.to.use.a.specific.s |
| 57e20 | 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 | ource.address.associated.with.th |
| 57e40 | 61 74 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 61 6d | at.interface..If.you.need.to.sam |
| 57e60 | 70 6c 65 20 61 6c 73 6f 20 65 67 72 65 73 73 20 74 72 61 66 66 69 63 2c 20 79 6f 75 20 6d 61 79 | ple.also.egress.traffic,.you.may |
| 57e80 | 20 77 61 6e 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 65 67 72 65 73 73 20 66 6c 6f 77 2d 61 | .want.to.configure.egress.flow-a |
| 57ea0 | 63 63 6f 75 6e 74 69 6e 67 3a 00 49 66 20 79 6f 75 20 6f 6e 6c 79 20 77 61 6e 74 20 74 6f 20 63 | ccounting:.If.you.only.want.to.c |
| 57ec0 | 68 65 63 6b 20 69 66 20 74 68 65 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 69 73 20 65 6e 61 62 | heck.if.the.user.account.is.enab |
| 57ee0 | 6c 65 64 20 61 6e 64 20 63 61 6e 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 28 61 67 61 69 6e 73 | led.and.can.authenticate.(agains |
| 57f00 | 74 20 74 68 65 20 70 72 69 6d 61 72 79 20 67 72 6f 75 70 29 20 74 68 65 20 66 6f 6c 6c 6f 77 69 | t.the.primary.group).the.followi |
| 57f20 | 6e 67 20 73 6e 69 70 70 65 64 20 69 73 20 73 75 66 66 69 63 69 65 6e 74 3a 00 49 66 20 79 6f 75 | ng.snipped.is.sufficient:.If.you |
| 57f40 | 20 73 65 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 79 | .set.a.custom.RADIUS.attribute.y |
| 57f60 | 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f | ou.must.define.it.on.both.dictio |
| 57f80 | 6e 61 72 69 65 73 20 61 74 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 | naries.at.RADIUS.server.and.clie |
| 57fa0 | 6e 74 2c 20 77 68 69 63 68 20 69 73 20 74 68 65 20 76 79 6f 73 20 72 6f 75 74 65 72 20 69 6e 20 | nt,.which.is.the.vyos.router.in. |
| 57fc0 | 6f 75 72 20 65 78 61 6d 70 6c 65 2e 00 49 66 20 79 6f 75 20 73 65 74 20 61 20 63 75 73 74 6f 6d | our.example..If.you.set.a.custom |
| 57fe0 | 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 6d 75 73 74 20 64 65 66 69 6e | .RADIUS.attribute.you.must.defin |
| 58000 | 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 61 74 20 52 41 44 | e.it.on.both.dictionaries.at.RAD |
| 58020 | 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2e 00 49 66 20 79 6f 75 20 73 65 | IUS.server.and.client..If.you.se |
| 58040 | 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 | t.a.custom.RADIUS.attribute.you. |
| 58060 | 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 | must.define.it.on.both.dictionar |
| 58080 | 69 65 73 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 | ies.on.the.RADIUS.server.and.cli |
| 580a0 | 65 6e 74 2e 00 49 66 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 20 73 65 72 76 65 72 20 74 6f 20 | ent..If.you.specify.a.server.to. |
| 580c0 | 62 65 20 63 68 65 63 6b 65 64 20 62 75 74 20 64 6f 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 | be.checked.but.do.not.configure. |
| 580e0 | 61 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 20 62 61 73 69 63 20 54 43 50 20 68 65 61 6c 74 68 20 63 | a.protocol,.a.basic.TCP.health.c |
| 58100 | 68 65 63 6b 20 77 69 6c 6c 20 62 65 20 61 74 74 65 6d 70 74 65 64 2e 20 41 20 73 65 72 76 65 72 | heck.will.be.attempted..A.server |
| 58120 | 20 73 68 61 6c 6c 20 62 65 20 64 65 65 6d 65 64 20 6f 6e 6c 69 6e 65 20 69 66 20 69 74 20 72 65 | .shall.be.deemed.online.if.it.re |
| 58140 | 73 70 6f 6e 73 65 73 20 74 6f 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 74 74 65 6d 70 74 20 | sponses.to.a.connection.attempt. |
| 58160 | 77 69 74 68 20 61 20 76 61 6c 69 64 20 60 60 53 59 4e 2f 41 43 4b 60 60 20 70 61 63 6b 65 74 2e | with.a.valid.``SYN/ACK``.packet. |
| 58180 | 00 49 66 20 79 6f 75 20 75 73 65 20 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 | .If.you.use.USB.to.serial.conver |
| 581a0 | 74 65 72 73 20 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 79 6f 75 72 20 56 79 4f 53 | ters.for.connecting.to.your.VyOS |
| 581c0 | 20 61 70 70 6c 69 61 6e 63 65 20 70 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 6d 6f 73 74 | .appliance.please.note.that.most |
| 581e0 | 20 6f 66 20 74 68 65 6d 20 75 73 65 20 73 6f 66 74 77 61 72 65 20 65 6d 75 6c 61 74 69 6f 6e 20 | .of.them.use.software.emulation. |
| 58200 | 77 69 74 68 6f 75 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 2e 20 54 68 69 73 20 6d 65 61 6e 73 | without.flow.control..This.means |
| 58220 | 20 79 6f 75 20 73 68 6f 75 6c 64 20 73 74 61 72 74 20 77 69 74 68 20 61 20 63 6f 6d 6d 6f 6e 20 | .you.should.start.with.a.common. |
| 58240 | 62 61 75 64 20 72 61 74 65 20 28 6d 6f 73 74 20 6c 69 6b 65 6c 79 20 39 36 30 30 20 62 61 75 64 | baud.rate.(most.likely.9600.baud |
| 58260 | 29 20 61 73 20 6f 74 68 65 72 77 69 73 65 20 79 6f 75 20 70 72 6f 62 61 62 6c 79 20 63 61 6e 20 | ).as.otherwise.you.probably.can. |
| 58280 | 6e 6f 74 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 75 73 69 6e 67 20 | not.connect.to.the.device.using. |
| 582a0 | 68 69 67 68 20 73 70 65 65 64 20 62 61 75 64 20 72 61 74 65 73 20 61 73 20 79 6f 75 72 20 73 65 | high.speed.baud.rates.as.your.se |
| 582c0 | 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 20 73 69 6d 70 6c 79 20 63 61 6e 20 6e 6f 74 20 70 72 | rial.converter.simply.can.not.pr |
| 582e0 | 6f 63 65 73 73 20 74 68 69 73 20 64 61 74 61 20 72 61 74 65 2e 00 49 66 20 79 6f 75 20 75 73 65 | ocess.this.data.rate..If.you.use |
| 58300 | 20 61 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 64 6f 20 6e | .a.self-signed.certificate,.do.n |
| 58320 | 6f 74 20 66 6f 72 67 65 74 20 74 6f 20 69 6e 73 74 61 6c 6c 20 43 41 20 6f 6e 20 74 68 65 20 63 | ot.forget.to.install.CA.on.the.c |
| 58340 | 6c 69 65 6e 74 20 73 69 64 65 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 68 61 6e 67 | lient.side..If.you.want.to.chang |
| 58360 | 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 66 6c 6f 77 73 2c 20 77 | e.the.maximum.number.of.flows,.w |
| 58380 | 68 69 63 68 20 61 72 65 20 74 72 61 63 6b 69 6e 67 20 73 69 6d 75 6c 74 61 6e 65 6f 75 73 6c 79 | hich.are.tracking.simultaneously |
| 583a0 | 2c 20 79 6f 75 20 6d 61 79 20 64 6f 20 74 68 69 73 20 77 69 74 68 20 74 68 69 73 20 63 6f 6d 6d | ,.you.may.do.this.with.this.comm |
| 583c0 | 61 6e 64 20 28 64 65 66 61 75 6c 74 20 38 31 39 32 29 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 | and.(default.8192)..If.you.want. |
| 583e0 | 74 6f 20 64 69 73 61 62 6c 65 20 61 20 72 75 6c 65 20 62 75 74 20 6c 65 74 20 69 74 20 69 6e 20 | to.disable.a.rule.but.let.it.in. |
| 58400 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 | the.configuration..If.you.want.t |
| 58420 | 6f 20 68 61 76 65 20 61 64 6d 69 6e 20 75 73 65 72 73 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 | o.have.admin.users.to.authentica |
| 58440 | 74 65 20 76 69 61 20 52 41 44 49 55 53 20 69 74 20 69 73 20 65 73 73 65 6e 74 69 61 6c 20 74 6f | te.via.RADIUS.it.is.essential.to |
| 58460 | 20 73 65 6e 74 20 74 68 65 20 60 60 43 69 73 63 6f 2d 41 56 2d 50 61 69 72 20 73 68 65 6c 6c 3a | .sent.the.``Cisco-AV-Pair.shell: |
| 58480 | 70 72 69 76 2d 6c 76 6c 3d 31 35 60 60 20 61 74 74 72 69 62 75 74 65 2e 20 57 69 74 68 6f 75 74 | priv-lvl=15``.attribute..Without |
| 584a0 | 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 77 69 6c 6c 20 6f 6e 6c 79 20 67 65 74 | .the.attribute.you.will.only.get |
| 584c0 | 20 72 65 67 75 6c 61 72 2c 20 6e 6f 6e 20 70 72 69 76 69 6c 65 67 75 65 64 2c 20 73 79 73 74 65 | .regular,.non.privilegued,.syste |
| 584e0 | 6d 20 75 73 65 72 73 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 65 78 69 73 | m.users..If.you.want.to.use.exis |
| 58500 | 74 69 6e 67 20 62 6c 61 63 6b 6c 69 73 74 73 20 79 6f 75 20 68 61 76 65 20 74 6f 20 63 72 65 61 | ting.blacklists.you.have.to.crea |
| 58520 | 74 65 2f 64 6f 77 6e 6c 6f 61 64 20 61 20 64 61 74 61 62 61 73 65 20 66 69 72 73 74 2e 20 4f 74 | te/download.a.database.first..Ot |
| 58540 | 68 65 72 77 69 73 65 20 79 6f 75 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 61 62 6c 65 20 74 6f 20 | herwise.you.will.not.be.able.to. |
| 58560 | 63 6f 6d 6d 69 74 20 74 68 65 20 63 6f 6e 66 69 67 20 63 68 61 6e 67 65 73 2e 00 49 66 20 79 6f | commit.the.config.changes..If.yo |
| 58580 | 75 20 77 61 6e 74 20 79 6f 75 72 20 72 6f 75 74 65 72 20 74 6f 20 66 6f 72 77 61 72 64 20 44 48 | u.want.your.router.to.forward.DH |
| 585a0 | 43 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 44 48 43 50 20 | CP.requests.to.an.external.DHCP. |
| 585c0 | 73 65 72 76 65 72 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 79 73 | server.you.can.configure.the.sys |
| 585e0 | 74 65 6d 20 74 6f 20 61 63 74 20 61 73 20 61 20 44 48 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 | tem.to.act.as.a.DHCP.relay.agent |
| 58600 | 2e 20 54 68 65 20 44 48 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 20 77 6f 72 6b 73 20 77 69 74 | ..The.DHCP.relay.agent.works.wit |
| 58620 | 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 00 49 66 20 79 6f | h.IPv4.and.IPv6.addresses..If.yo |
| 58640 | 75 20 77 61 6e 74 2c 20 6e 65 65 64 2c 20 61 6e 64 20 73 68 6f 75 6c 64 20 75 73 65 20 6d 6f 72 | u.want,.need,.and.should.use.mor |
| 58660 | 65 20 61 64 76 61 6e 63 65 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 28 64 | e.advanced.encryption.ciphers.(d |
| 58680 | 65 66 61 75 6c 74 20 69 73 20 73 74 69 6c 6c 20 33 44 45 53 29 20 79 6f 75 20 6e 65 65 64 20 74 | efault.is.still.3DES).you.need.t |
| 586a0 | 6f 20 70 72 6f 76 69 73 69 6f 6e 20 79 6f 75 72 20 64 65 76 69 63 65 20 75 73 69 6e 67 20 61 20 | o.provision.your.device.using.a. |
| 586c0 | 73 6f 2d 63 61 6c 6c 65 64 20 22 44 65 76 69 63 65 20 50 72 6f 66 69 6c 65 22 2e 20 41 20 70 72 | so-called."Device.Profile"..A.pr |
| 586e0 | 6f 66 69 6c 65 20 69 73 20 61 20 73 69 6d 70 6c 65 20 74 65 78 74 20 66 69 6c 65 20 63 6f 6e 74 | ofile.is.a.simple.text.file.cont |
| 58700 | 61 69 6e 69 6e 67 20 58 4d 4c 20 6e 6f 64 65 73 20 77 69 74 68 20 61 20 60 60 2e 6d 6f 62 69 6c | aining.XML.nodes.with.a.``.mobil |
| 58720 | 65 63 6f 6e 66 69 67 60 60 20 66 69 6c 65 20 65 78 74 65 6e 73 69 6f 6e 20 74 68 61 74 20 63 61 | econfig``.file.extension.that.ca |
| 58740 | 6e 20 62 65 20 73 65 6e 74 20 61 6e 64 20 6f 70 65 6e 65 64 20 6f 6e 20 61 6e 79 20 64 65 76 69 | n.be.sent.and.opened.on.any.devi |
| 58760 | 63 65 20 66 72 6f 6d 20 61 6e 20 45 2d 4d 61 69 6c 2e 00 49 66 20 79 6f 75 27 72 65 20 6d 61 6b | ce.from.an.E-Mail..If.you're.mak |
| 58780 | 69 6e 67 20 75 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 74 75 6e 6e 65 6c 73 2c 20 4f 70 65 | ing.use.of.multiple.tunnels,.Ope |
| 587a0 | 6e 56 50 4e 20 6d 75 73 74 20 68 61 76 65 20 61 20 77 61 79 20 74 6f 20 64 69 73 74 69 6e 67 75 | nVPN.must.have.a.way.to.distingu |
| 587c0 | 69 73 68 20 62 65 74 77 65 65 6e 20 64 69 66 66 65 72 65 6e 74 20 74 75 6e 6e 65 6c 73 20 61 73 | ish.between.different.tunnels.as |
| 587e0 | 69 64 65 20 66 72 6f 6d 20 74 68 65 20 70 72 65 2d 73 68 61 72 65 64 2d 6b 65 79 2e 20 54 68 69 | ide.from.the.pre-shared-key..Thi |
| 58800 | 73 20 69 73 20 64 6f 6e 65 20 65 69 74 68 65 72 20 62 79 20 72 65 66 65 72 65 6e 63 69 6e 67 20 | s.is.done.either.by.referencing. |
| 58820 | 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2e 20 4f 6e | IP.addresses.or.port.numbers..On |
| 58840 | 65 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 75 62 6c 69 63 | e.option.is.to.dedicate.a.public |
| 58860 | 20 49 50 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 2e 20 41 6e 6f 74 68 65 72 20 6f 70 74 69 | .IP.to.each.tunnel..Another.opti |
| 58880 | 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 | on.is.to.dedicate.a.port.number. |
| 588a0 | 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 28 65 2e 67 2e 20 31 31 39 35 2c 31 31 39 36 2c 31 | to.each.tunnel.(e.g..1195,1196,1 |
| 588c0 | 31 39 37 2e 2e 2e 29 2e 00 49 66 20 79 6f 75 27 76 65 20 63 6f 6d 70 6c 65 74 65 64 20 61 6c 6c | 197...)..If.you've.completed.all |
| 588e0 | 20 74 68 65 20 61 62 6f 76 65 20 73 74 65 70 73 20 79 6f 75 20 6e 6f 20 64 6f 75 62 74 20 77 61 | .the.above.steps.you.no.doubt.wa |
| 58900 | 6e 74 20 74 6f 20 73 65 65 20 69 66 20 69 74 27 73 20 61 6c 6c 20 77 6f 72 6b 69 6e 67 2e 00 49 | nt.to.see.if.it's.all.working..I |
| 58920 | 67 6e 6f 72 65 20 41 53 5f 50 41 54 48 20 6c 65 6e 67 74 68 20 77 68 65 6e 20 73 65 6c 65 63 74 | gnore.AS_PATH.length.when.select |
| 58940 | 69 6e 67 20 61 20 72 6f 75 74 65 00 49 67 6e 6f 72 65 20 56 52 52 50 20 6d 61 69 6e 20 69 6e 74 | ing.a.route.Ignore.VRRP.main.int |
| 58960 | 65 72 66 61 63 65 20 66 61 75 6c 74 73 00 49 6d 61 67 65 20 74 68 61 6e 6b 66 75 6c 6c 79 20 62 | erface.faults.Image.thankfully.b |
| 58980 | 6f 72 72 6f 77 65 64 20 66 72 6f 6d 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 | orrowed.from.https://en.wikipedi |
| 589a0 | 61 2e 6f 72 67 2f 77 69 6b 69 2f 46 69 6c 65 3a 53 4e 4d 50 5f 63 6f 6d 6d 75 6e 69 63 61 74 69 | a.org/wiki/File:SNMP_communicati |
| 589c0 | 6f 6e 5f 70 72 69 6e 63 69 70 6c 65 73 5f 64 69 61 67 72 61 6d 2e 50 4e 47 20 77 68 69 63 68 20 | on_principles_diagram.PNG.which. |
| 589e0 | 69 73 20 75 6e 64 65 72 20 74 68 65 20 47 4e 55 20 46 72 65 65 20 44 6f 63 75 6d 65 6e 74 61 74 | is.under.the.GNU.Free.Documentat |
| 58a00 | 69 6f 6e 20 4c 69 63 65 6e 73 65 00 49 6d 61 67 69 6e 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | ion.License.Imagine.the.followin |
| 58a20 | 67 20 74 6f 70 6f 6c 6f 67 79 00 49 6d 6d 65 64 69 61 74 65 00 49 6d 70 6c 65 6d 65 6e 74 65 64 | g.topology.Immediate.Implemented |
| 58a40 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 3a 72 66 63 3a 60 36 38 38 38 60 20 20 72 65 71 75 | .the.following.:rfc:`6888`..requ |
| 58a60 | 69 72 65 6d 65 6e 74 73 3a 00 49 6d 70 6f 72 74 20 66 69 6c 65 73 20 74 6f 20 50 4b 49 20 66 6f | irements:.Import.files.to.PKI.fo |
| 58a80 | 72 6d 61 74 00 49 6d 70 6f 72 74 20 74 68 65 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 | rmat.Import.the.CAs.private.key. |
| 58aa0 | 70 6f 72 74 69 6f 6e 20 74 6f 20 74 68 65 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 | portion.to.the.CLI..This.should. |
| 58ac0 | 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 | never.leave.the.system.as.it.is. |
| 58ae0 | 75 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 20 54 68 65 20 6b 65 | used.to.decrypt.the.data..The.ke |
| 58b00 | 79 20 69 73 20 72 65 71 75 69 72 65 64 20 69 66 20 79 6f 75 20 75 73 65 20 56 79 4f 53 20 61 73 | y.is.required.if.you.use.VyOS.as |
| 58b20 | 20 79 6f 75 72 20 63 65 72 74 69 66 69 63 61 74 65 20 67 65 6e 65 72 61 74 6f 72 2e 00 49 6d 70 | .your.certificate.generator..Imp |
| 58b40 | 6f 72 74 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 73 74 | ort.the.OpenVPN.shared.secret.st |
| 58b60 | 6f 72 65 64 20 69 6e 20 66 69 6c 65 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d | ored.in.file.to.the.VyOS.CLI..Im |
| 58b80 | 70 6f 72 74 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 74 68 65 20 66 69 | port.the.certificate.from.the.fi |
| 58ba0 | 6c 65 20 74 6f 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d 70 6f 72 74 20 74 68 65 20 70 72 69 76 61 | le.to.VyOS.CLI..Import.the.priva |
| 58bc0 | 74 65 20 6b 65 79 20 6f 66 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 | te.key.of.the.certificate.to.the |
| 58be0 | 20 56 79 4f 53 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 | .VyOS.CLI..This.should.never.lea |
| 58c00 | 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 74 20 69 73 20 75 73 65 64 20 74 6f 20 64 | ve.the.system.as.it.is.used.to.d |
| 58c20 | 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 00 49 6d 70 6f 72 74 20 74 68 65 20 70 75 62 6c | ecrypt.the.data..Import.the.publ |
| 58c40 | 69 63 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 74 68 65 20 64 65 66 69 6e | ic.CA.certificate.from.the.defin |
| 58c60 | 65 64 20 66 69 6c 65 20 74 6f 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d 70 6f 72 74 65 64 20 70 72 | ed.file.to.VyOS.CLI..Imported.pr |
| 58c80 | 65 66 69 78 65 73 20 64 75 72 69 6e 67 20 74 68 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 6d 61 79 | efixes.during.the.validation.may |
| 58ca0 | 20 68 61 76 65 20 76 61 6c 75 65 73 3a 00 49 6e 20 3a 72 66 63 3a 60 33 30 36 39 60 20 69 74 20 | .have.values:.In.:rfc:`3069`.it. |
| 58cc0 | 69 73 20 63 61 6c 6c 65 64 20 56 4c 41 4e 20 41 67 67 72 65 67 61 74 69 6f 6e 00 49 6e 20 3a 76 | is.called.VLAN.Aggregation.In.:v |
| 58ce0 | 79 74 61 73 6b 3a 60 54 32 31 39 39 60 20 74 68 65 20 73 79 6e 74 61 78 20 6f 66 20 74 68 65 20 | ytask:`T2199`.the.syntax.of.the. |
| 58d00 | 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 61 73 20 63 68 61 6e 67 65 64 2e 20 | zone.configuration.was.changed.. |
| 58d20 | 54 68 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 76 65 64 20 66 72 6f | The.zone.configuration.moved.fro |
| 58d40 | 6d 20 60 60 7a 6f 6e 65 2d 70 6f 6c 69 63 79 20 7a 6f 6e 65 20 3c 6e 61 6d 65 3e 60 60 20 74 6f | m.``zone-policy.zone.<name>``.to |
| 58d60 | 20 60 60 66 69 72 65 77 61 6c 6c 20 7a 6f 6e 65 20 3c 6e 61 6d 65 3e 60 60 2e 00 49 6e 20 45 74 | .``firewall.zone.<name>``..In.Et |
| 58d80 | 68 65 72 6e 65 74 20 62 72 69 64 67 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2c 20 | hernet.bridging.configurations,. |
| 58da0 | 4f 70 65 6e 56 50 4e 27 73 20 73 65 72 76 65 72 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 73 65 74 | OpenVPN's.server.mode.can.be.set |
| 58dc0 | 20 61 73 20 61 20 27 62 72 69 64 67 65 27 20 77 68 65 72 65 20 74 68 65 20 56 50 4e 20 74 75 6e | .as.a.'bridge'.where.the.VPN.tun |
| 58de0 | 6e 65 6c 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 65 6e 74 69 72 65 20 45 74 68 65 72 6e 65 74 | nel.encapsulates.entire.Ethernet |
| 58e00 | 20 66 72 61 6d 65 73 20 28 75 70 20 74 6f 20 31 35 31 34 20 62 79 74 65 73 29 20 69 6e 73 74 65 | .frames.(up.to.1514.bytes).inste |
| 58e20 | 61 64 20 6f 66 20 6a 75 73 74 20 49 50 20 70 61 63 6b 65 74 73 20 28 75 70 20 74 6f 20 31 35 30 | ad.of.just.IP.packets.(up.to.150 |
| 58e40 | 30 20 62 79 74 65 73 29 2e 20 54 68 69 73 20 73 65 74 75 70 20 61 6c 6c 6f 77 73 20 63 6c 69 65 | 0.bytes)..This.setup.allows.clie |
| 58e60 | 6e 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 61 79 65 72 20 32 20 66 72 61 6d 65 73 20 74 | nts.to.transmit.Layer.2.frames.t |
| 58e80 | 68 72 6f 75 67 68 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 74 75 6e 6e 65 6c 2e 20 42 65 6c 6f 77 | hrough.the.OpenVPN.tunnel..Below |
| 58ea0 | 2c 20 77 65 20 6f 75 74 6c 69 6e 65 20 61 20 62 61 73 69 63 20 63 6f 6e 66 69 67 75 72 61 74 69 | ,.we.outline.a.basic.configurati |
| 58ec0 | 6f 6e 20 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 3a 00 49 6e 20 49 6e 74 65 72 6e 65 74 20 | on.to.achieve.this:.In.Internet. |
| 58ee0 | 50 72 6f 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 20 36 20 28 49 50 76 36 29 20 6e 65 74 77 6f 72 | Protocol.Version.6.(IPv6).networ |
| 58f00 | 6b 73 2c 20 74 68 65 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 6f 66 20 41 52 50 20 69 73 20 | ks,.the.functionality.of.ARP.is. |
| 58f20 | 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 | provided.by.the.Neighbor.Discove |
| 58f40 | 72 79 20 50 72 6f 74 6f 63 6f 6c 20 28 4e 44 50 29 2e 00 49 6e 20 50 72 69 6f 72 69 74 79 20 51 | ry.Protocol.(NDP)..In.Priority.Q |
| 58f60 | 75 65 75 65 20 77 65 20 64 6f 20 6e 6f 74 20 64 65 66 69 6e 65 20 63 6c 61 73 65 73 20 77 69 74 | ueue.we.do.not.define.clases.wit |
| 58f80 | 68 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 63 6c 61 73 73 20 49 44 20 6e 75 6d 62 65 72 20 | h.a.meaningless.class.ID.number. |
| 58fa0 | 62 75 74 20 77 69 74 68 20 61 20 63 6c 61 73 73 20 70 72 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 | but.with.a.class.priority.number |
| 58fc0 | 20 28 31 2d 37 29 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 | .(1-7)..The.lower.the.number,.th |
| 58fe0 | 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 6e 20 50 72 69 6f 72 69 | e.higher.the.priority..In.Priori |
| 59000 | 74 79 20 51 75 65 75 65 20 77 65 20 64 6f 20 6e 6f 74 20 64 65 66 69 6e 65 20 63 6c 61 73 73 65 | ty.Queue.we.do.not.define.classe |
| 59020 | 73 20 77 69 74 68 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 63 6c 61 73 73 20 49 44 20 6e 75 | s.with.a.meaningless.class.ID.nu |
| 59040 | 6d 62 65 72 20 62 75 74 20 77 69 74 68 20 61 20 63 6c 61 73 73 20 70 72 69 6f 72 69 74 79 20 6e | mber.but.with.a.class.priority.n |
| 59060 | 75 6d 62 65 72 20 28 31 2d 37 29 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 | umber.(1-7)..The.lower.the.numbe |
| 59080 | 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 6e 20 56 | r,.the.higher.the.priority..In.V |
| 590a0 | 79 4f 53 20 74 68 65 20 74 65 72 6d 73 20 60 60 76 69 66 2d 73 60 60 20 61 6e 64 20 60 60 76 69 | yOS.the.terms.``vif-s``.and.``vi |
| 590c0 | 66 2d 63 60 60 20 73 74 61 6e 64 20 66 6f 72 20 74 68 65 20 65 74 68 65 72 74 79 70 65 20 74 61 | f-c``.stand.for.the.ethertype.ta |
| 590e0 | 67 73 20 74 68 61 74 20 61 72 65 20 75 73 65 64 2e 00 49 6e 20 56 79 4f 53 2c 20 38 30 32 2e 31 | gs.that.are.used..In.VyOS,.802.1 |
| 59100 | 31 61 78 20 69 73 20 6f 6e 6c 79 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 66 6f 72 20 32 2e 34 47 | 1ax.is.only.implemented.for.2.4G |
| 59120 | 48 7a 20 61 6e 64 20 36 47 48 7a 2e 00 49 6e 20 56 79 4f 53 2c 20 38 30 32 2e 31 31 61 78 20 69 | Hz.and.6GHz..In.VyOS,.802.11ax.i |
| 59140 | 73 20 6f 6e 6c 79 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 66 6f 72 20 36 47 48 7a 20 61 73 20 6f | s.only.implemented.for.6GHz.as.o |
| 59160 | 66 20 79 65 74 2e 00 49 6e 20 56 79 4f 53 2c 20 45 53 50 20 61 74 74 72 69 62 75 74 65 73 20 61 | f.yet..In.VyOS,.ESP.attributes.a |
| 59180 | 72 65 20 73 70 65 63 69 66 69 65 64 20 74 68 72 6f 75 67 68 20 45 53 50 20 67 72 6f 75 70 73 2e | re.specified.through.ESP.groups. |
| 591a0 | 20 4d 75 6c 74 69 70 6c 65 20 70 72 6f 70 6f 73 61 6c 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 | .Multiple.proposals.can.be.speci |
| 591c0 | 66 69 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 67 72 6f 75 70 2e 00 49 6e 20 56 79 4f 53 2c | fied.in.a.single.group..In.VyOS, |
| 591e0 | 20 49 4b 45 20 61 74 74 72 69 62 75 74 65 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 74 68 | .IKE.attributes.are.specified.th |
| 59200 | 72 6f 75 67 68 20 49 4b 45 20 67 72 6f 75 70 73 2e 20 4d 75 6c 74 69 70 6c 65 20 70 72 6f 70 6f | rough.IKE.groups..Multiple.propo |
| 59220 | 73 61 6c 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 61 20 73 69 6e 67 6c | sals.can.be.specified.in.a.singl |
| 59240 | 65 20 67 72 6f 75 70 2e 00 49 6e 20 56 79 4f 53 2c 20 61 20 63 6c 61 73 73 20 69 73 20 69 64 65 | e.group..In.VyOS,.a.class.is.ide |
| 59260 | 6e 74 69 66 69 65 64 20 62 79 20 61 20 6e 75 6d 62 65 72 20 79 6f 75 20 63 61 6e 20 63 68 6f 6f | ntified.by.a.number.you.can.choo |
| 59280 | 73 65 20 77 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 69 74 2e 00 49 6e 20 61 20 6d 69 6e | se.when.configuring.it..In.a.min |
| 592a0 | 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | imal.configuration,.the.followin |
| 592c0 | 67 20 6d 75 73 74 20 62 65 20 70 72 6f 76 69 64 65 64 3a 00 49 6e 20 61 20 6d 75 6c 74 69 70 6c | g.must.be.provided:.In.a.multipl |
| 592e0 | 65 20 56 4c 41 4e 20 68 65 61 64 65 72 20 63 6f 6e 74 65 78 74 2c 20 6f 75 74 20 6f 66 20 63 6f | e.VLAN.header.context,.out.of.co |
| 59300 | 6e 76 65 6e 69 65 6e 63 65 20 74 68 65 20 74 65 72 6d 20 22 56 4c 41 4e 20 74 61 67 22 20 6f 72 | nvenience.the.term."VLAN.tag".or |
| 59320 | 20 6a 75 73 74 20 22 74 61 67 22 20 66 6f 72 20 73 68 6f 72 74 20 69 73 20 6f 66 74 65 6e 20 75 | .just."tag".for.short.is.often.u |
| 59340 | 73 65 64 20 69 6e 20 70 6c 61 63 65 20 6f 66 20 22 38 30 32 2e 31 71 5f 20 56 4c 41 4e 20 68 65 | sed.in.place.of."802.1q_.VLAN.he |
| 59360 | 61 64 65 72 22 2e 20 51 69 6e 51 20 61 6c 6c 6f 77 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e | ader"..QinQ.allows.multiple.VLAN |
| 59380 | 20 74 61 67 73 20 69 6e 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 3b 20 74 6f 67 65 | .tags.in.an.Ethernet.frame;.toge |
| 593a0 | 74 68 65 72 20 74 68 65 73 65 20 74 61 67 73 20 63 6f 6e 73 74 69 74 75 74 65 20 61 20 74 61 67 | ther.these.tags.constitute.a.tag |
| 593c0 | 20 73 74 61 63 6b 2e 20 57 68 65 6e 20 75 73 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 | .stack..When.used.in.the.context |
| 593e0 | 20 6f 66 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 2c 20 61 20 51 69 6e 51 20 66 72 | .of.an.Ethernet.frame,.a.QinQ.fr |
| 59400 | 61 6d 65 20 69 73 20 61 20 66 72 61 6d 65 20 74 68 61 74 20 68 61 73 20 32 20 56 4c 41 4e 20 38 | ame.is.a.frame.that.has.2.VLAN.8 |
| 59420 | 30 32 2e 31 71 5f 20 68 65 61 64 65 72 73 20 28 64 6f 75 62 6c 65 2d 74 61 67 67 65 64 29 2e 00 | 02.1q_.headers.(double-tagged).. |
| 59440 | 49 6e 20 61 20 6e 75 74 73 68 65 6c 6c 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 69 6d 70 6c 65 | In.a.nutshell,.the.current.imple |
| 59460 | 6d 65 6e 74 61 74 69 6f 6e 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | mentation.provides.the.following |
| 59480 | 20 66 65 61 74 75 72 65 73 3a 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 3a 61 62 62 72 3a | .features:.In.addition.to.:abbr: |
| 594a0 | 60 52 41 44 49 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 | `RADIUS.(Remote.Authentication.D |
| 594c0 | 69 61 6c 2d 49 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 29 60 2c 20 3a 61 62 62 72 3a 60 54 41 | ial-In.User.Service)`,.:abbr:`TA |
| 594e0 | 43 41 43 53 20 28 54 65 72 6d 69 6e 61 6c 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 6c 65 72 | CACS.(Terminal.Access.Controller |
| 59500 | 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 20 53 79 73 74 65 6d 29 60 20 63 61 6e 20 61 6c 73 | .Access.Control.System)`.can.als |
| 59520 | 6f 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 6c 61 72 67 65 20 64 65 70 6c 6f 79 6d 65 6e 74 73 2e | o.be.found.in.large.deployments. |
| 59540 | 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 64 69 73 70 6c 61 79 69 6e 67 20 66 6c 6f 77 20 | .In.addition.to.displaying.flow. |
| 59560 | 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6c 6f 63 61 6c 6c 79 2c 20 | accounting.information.locally,. |
| 59580 | 6f 6e 65 20 63 61 6e 20 61 6c 73 6f 20 65 78 70 6f 72 74 65 64 20 74 68 65 6d 20 74 6f 20 61 20 | one.can.also.exported.them.to.a. |
| 595a0 | 63 6f 6c 6c 65 63 74 69 6f 6e 20 73 65 72 76 65 72 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 | collection.server..In.addition.t |
| 595c0 | 6f 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 2c 20 74 68 65 20 6f 75 74 70 75 74 20 | o.the.command.above,.the.output. |
| 595e0 | 69 73 20 69 6e 20 61 20 66 6f 72 6d 61 74 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 | is.in.a.format.which.can.be.used |
| 59600 | 20 74 6f 20 64 69 72 65 63 74 6c 79 20 69 6d 70 6f 72 74 20 74 68 65 20 6b 65 79 20 69 6e 74 6f | .to.directly.import.the.key.into |
| 59620 | 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 62 79 20 73 69 6d 70 6c 79 20 63 6f 70 79 2d 70 61 73 | .the.VyOS.CLI.by.simply.copy-pas |
| 59640 | 74 69 6e 67 20 74 68 65 20 6f 75 74 70 75 74 20 66 72 6f 6d 20 6f 70 2d 6d 6f 64 65 20 69 6e 74 | ting.the.output.from.op-mode.int |
| 59660 | 6f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 00 49 6e 20 61 64 64 69 74 69 6f | o.configuration.mode..In.additio |
| 59680 | 6e 20 77 65 20 73 65 74 75 70 20 49 50 76 36 20 3a 61 62 62 72 3a 60 52 41 20 28 52 6f 75 74 65 | n.we.setup.IPv6.:abbr:`RA.(Route |
| 596a0 | 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 29 60 20 74 6f 20 6d 61 6b 65 20 74 68 65 20 70 | r.Advertisements)`.to.make.the.p |
| 596c0 | 72 65 66 69 78 20 6b 6e 6f 77 6e 20 6f 6e 20 74 68 65 20 65 74 68 30 20 6c 69 6e 6b 2e 00 49 6e | refix.known.on.the.eth0.link..In |
| 596e0 | 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 64 69 73 61 62 6c 65 20 74 | .addition.you.can.also.disable.t |
| 59700 | 68 65 20 77 68 6f 6c 65 20 73 65 72 76 69 63 65 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 | he.whole.service.without.the.nee |
| 59720 | 64 20 74 6f 20 72 65 6d 6f 76 65 20 69 74 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 | d.to.remove.it.from.the.current. |
| 59740 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 77 | configuration..In.addition.you.w |
| 59760 | 69 6c 6c 20 73 70 65 63 69 66 69 79 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 | ill.specifiy.the.IP.address.or.F |
| 59780 | 51 44 4e 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 20 77 68 65 72 65 20 69 74 20 77 69 6c 6c | QDN.for.the.client.where.it.will |
| 597a0 | 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 70 61 72 61 6d 65 74 | .connect.to..The.address.paramet |
| 597c0 | 65 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 75 70 20 74 6f 20 74 77 6f 20 74 69 6d 65 73 20 61 | er.can.be.used.up.to.two.times.a |
| 597e0 | 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 | nd.is.used.to.assign.the.clients |
| 59800 | 20 73 70 65 63 69 66 69 63 20 49 50 76 34 20 28 2f 33 32 29 20 6f 72 20 49 50 76 36 20 28 2f 31 | .specific.IPv4.(/32).or.IPv6.(/1 |
| 59820 | 32 38 29 20 61 64 64 72 65 73 73 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 77 69 6c | 28).address..In.addition.you.wil |
| 59840 | 6c 20 73 70 65 63 69 66 79 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e | l.specify.the.IP.address.or.FQDN |
| 59860 | 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 20 77 68 65 72 65 20 69 74 20 77 69 6c 6c 20 63 6f | .for.the.client.where.it.will.co |
| 59880 | 6e 6e 65 63 74 20 74 6f 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 70 61 72 61 6d 65 74 65 72 20 | nnect.to..The.address.parameter. |
| 598a0 | 63 61 6e 20 62 65 20 75 73 65 64 20 75 70 20 74 6f 20 74 77 6f 20 74 69 6d 65 73 20 61 6e 64 20 | can.be.used.up.to.two.times.and. |
| 598c0 | 69 73 20 75 73 65 64 20 74 6f 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 20 73 70 | is.used.to.assign.the.clients.sp |
| 598e0 | 65 63 69 66 69 63 20 49 50 76 34 20 28 2f 33 32 29 20 6f 72 20 49 50 76 36 20 28 2f 31 32 38 29 | ecific.IPv4.(/32).or.IPv6.(/128) |
| 59900 | 20 61 64 64 72 65 73 73 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 2c 20 79 6f 75 20 63 61 6e 20 73 | .address..In.addition,.you.can.s |
| 59920 | 70 65 63 69 66 79 20 6d 61 6e 79 20 6f 74 68 65 72 20 70 61 72 61 6d 65 74 65 72 73 20 74 6f 20 | pecify.many.other.parameters.to. |
| 59940 | 67 65 74 20 42 47 50 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 00 49 6e 20 61 6e 20 2a 2a 61 64 64 | get.BGP.information:.In.an.**add |
| 59960 | 72 65 73 73 20 67 72 6f 75 70 2a 2a 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 73 73 | ress.group**.a.single.IP.address |
| 59980 | 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 20 69 73 20 64 65 66 69 6e 65 64 2e | .or.IP.address.range.is.defined. |
| 599a0 | 00 49 6e 20 61 6e 20 2a 2a 61 64 64 72 65 73 73 20 67 72 6f 75 70 2a 2a 20 61 20 73 69 6e 67 6c | .In.an.**address.group**.a.singl |
| 599c0 | 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 | e.IP.address.or.IP.address.range |
| 599e0 | 73 20 61 72 65 20 64 65 66 69 6e 65 64 2e 00 49 6e 20 62 6f 74 68 20 63 61 73 65 73 2c 20 77 65 | s.are.defined..In.both.cases,.we |
| 59a00 | 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 65 74 74 69 6e 67 73 | .will.use.the.following.settings |
| 59a20 | 3a 00 49 6e 20 63 61 73 65 20 6f 66 20 70 65 65 72 2d 70 65 65 72 20 72 65 6c 61 74 69 6f 6e 73 | :.In.case.of.peer-peer.relations |
| 59a40 | 68 69 70 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 72 65 63 65 69 76 65 64 20 6f 6e 6c 79 20 | hip.routes.can.be.received.only. |
| 59a60 | 69 66 20 4f 54 43 20 76 61 6c 75 65 20 69 73 20 65 71 75 61 6c 20 74 6f 20 79 6f 75 72 20 6e 65 | if.OTC.value.is.equal.to.your.ne |
| 59a80 | 69 67 68 62 6f 72 20 41 53 20 6e 75 6d 62 65 72 2e 00 49 6e 20 63 61 73 65 2c 20 69 66 20 79 6f | ighbor.AS.number..In.case,.if.yo |
| 59aa0 | 75 20 6e 65 65 64 20 74 6f 20 63 61 74 63 68 20 73 6f 6d 65 20 6c 6f 67 73 20 66 72 6f 6d 20 66 | u.need.to.catch.some.logs.from.f |
| 59ac0 | 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 64 61 65 6d 6f 6e 2c 20 79 6f 75 20 6d 61 79 20 63 | low-accounting.daemon,.you.may.c |
| 59ae0 | 6f 6e 66 69 67 75 72 65 20 6c 6f 67 67 69 6e 67 20 66 61 63 69 6c 69 74 79 3a 00 49 6e 20 63 6f | onfigure.logging.facility:.In.co |
| 59b00 | 6e 74 72 61 73 74 20 74 6f 20 73 69 6d 70 6c 65 20 52 45 44 2c 20 56 79 4f 53 27 20 52 61 6e 64 | ntrast.to.simple.RED,.VyOS'.Rand |
| 59b20 | 6f 6d 2d 44 65 74 65 63 74 20 75 73 65 73 20 61 20 47 65 6e 65 72 61 6c 69 7a 65 64 20 52 61 6e | om-Detect.uses.a.Generalized.Ran |
| 59b40 | 64 6f 6d 20 45 61 72 6c 79 20 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 74 68 61 74 20 70 72 6f | dom.Early.Detect.policy.that.pro |
| 59b60 | 76 69 64 65 73 20 64 69 66 66 65 72 65 6e 74 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 73 20 62 | vides.different.virtual.queues.b |
| 59b80 | 61 73 65 64 20 6f 6e 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 76 61 6c 75 65 20 | ased.on.the.IP.Precedence.value. |
| 59ba0 | 73 6f 20 74 68 61 74 20 73 6f 6d 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 73 20 63 61 6e 20 | so.that.some.virtual.queues.can. |
| 59bc0 | 64 72 6f 70 20 6d 6f 72 65 20 70 61 63 6b 65 74 73 20 74 68 61 6e 20 6f 74 68 65 72 73 2e 00 49 | drop.more.packets.than.others..I |
| 59be0 | 6e 20 66 61 69 6c 6f 76 65 72 20 6d 6f 64 65 2c 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 69 | n.failover.mode,.one.interface.i |
| 59c00 | 73 20 73 65 74 20 74 6f 20 62 65 20 74 68 65 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 | s.set.to.be.the.primary.interfac |
| 59c20 | 65 20 61 6e 64 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 73 65 63 6f 6e | e.and.other.interfaces.are.secon |
| 59c40 | 64 61 72 79 20 6f 72 20 73 70 61 72 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 62 61 6c 61 6e 63 | dary.or.spare..Instead.of.balanc |
| 59c60 | 69 6e 67 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 61 6c 6c 20 68 65 61 6c 74 68 79 20 69 | ing.traffic.across.all.healthy.i |
| 59c80 | 6e 74 65 72 66 61 63 65 73 2c 20 6f 6e 6c 79 20 74 68 65 20 70 72 69 6d 61 72 79 20 69 6e 74 65 | nterfaces,.only.the.primary.inte |
| 59ca0 | 72 66 61 63 65 20 69 73 20 75 73 65 64 20 61 6e 64 20 69 6e 20 63 61 73 65 20 6f 66 20 66 61 69 | rface.is.used.and.in.case.of.fai |
| 59cc0 | 6c 75 72 65 2c 20 61 20 73 65 63 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 73 65 6c 65 | lure,.a.secondary.interface.sele |
| 59ce0 | 63 74 65 64 20 66 72 6f 6d 20 74 68 65 20 70 6f 6f 6c 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 | cted.from.the.pool.of.available. |
| 59d00 | 69 6e 74 65 72 66 61 63 65 73 20 74 61 6b 65 73 20 6f 76 65 72 2e 20 54 68 65 20 70 72 69 6d 61 | interfaces.takes.over..The.prima |
| 59d20 | 72 79 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 73 65 6c 65 63 74 65 64 20 62 61 73 65 64 20 6f | ry.interface.is.selected.based.o |
| 59d40 | 6e 20 69 74 73 20 77 65 69 67 68 74 20 61 6e 64 20 68 65 61 6c 74 68 2c 20 6f 74 68 65 72 73 20 | n.its.weight.and.health,.others. |
| 59d60 | 62 65 63 6f 6d 65 20 73 65 63 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 73 2e 20 53 65 63 | become.secondary.interfaces..Sec |
| 59d80 | 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 74 61 6b 65 20 6f 76 65 72 20 61 | ondary.interfaces.to.take.over.a |
| 59da0 | 20 66 61 69 6c 65 64 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 61 72 65 20 63 68 | .failed.primary.interface.are.ch |
| 59dc0 | 6f 73 65 6e 20 66 72 6f 6d 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 27 73 20 69 6e | osen.from.the.load.balancer's.in |
| 59de0 | 74 65 72 66 61 63 65 20 70 6f 6f 6c 2c 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 69 72 | terface.pool,.depending.on.their |
| 59e00 | 20 77 65 69 67 68 74 20 61 6e 64 20 68 65 61 6c 74 68 2e 20 49 6e 74 65 72 66 61 63 65 20 72 6f | .weight.and.health..Interface.ro |
| 59e20 | 6c 65 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 65 6c 65 63 74 65 64 20 62 61 73 65 64 20 6f | les.can.also.be.selected.based.o |
| 59e40 | 6e 20 72 75 6c 65 20 6f 72 64 65 72 20 62 79 20 69 6e 63 6c 75 64 69 6e 67 20 69 6e 74 65 72 66 | n.rule.order.by.including.interf |
| 59e60 | 61 63 65 73 20 69 6e 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 73 20 61 6e 64 20 6f 72 64 65 | aces.in.balancing.rules.and.orde |
| 59e80 | 72 69 6e 67 20 74 68 6f 73 65 20 72 75 6c 65 73 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 20 54 6f | ring.those.rules.accordingly..To |
| 59ea0 | 20 70 75 74 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 69 6e 20 66 61 69 6c 6f 76 | .put.the.load.balancer.in.failov |
| 59ec0 | 65 72 20 6d 6f 64 65 2c 20 63 72 65 61 74 65 20 61 20 66 61 69 6c 6f 76 65 72 20 72 75 6c 65 3a | er.mode,.create.a.failover.rule: |
| 59ee0 | 00 49 6e 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 72 75 6c 65 73 2c 20 74 68 65 20 61 | .In.firewall.bridge.rules,.the.a |
| 59f00 | 63 74 69 6f 6e 20 63 61 6e 20 62 65 3a 00 49 6e 20 67 65 6e 65 72 61 6c 2c 20 4f 53 50 46 20 70 | ction.can.be:.In.general,.OSPF.p |
| 59f20 | 72 6f 74 6f 63 6f 6c 20 72 65 71 75 69 72 65 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 | rotocol.requires.a.backbone.area |
| 59f40 | 20 28 61 72 65 61 20 30 29 20 74 6f 20 62 65 20 63 6f 68 65 72 65 6e 74 20 61 6e 64 20 66 75 6c | .(area.0).to.be.coherent.and.ful |
| 59f60 | 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 20 49 2e 65 2e 20 61 6e 79 20 62 61 63 6b 62 6f 6e 65 20 | ly.connected..I.e..any.backbone. |
| 59f80 | 61 72 65 61 20 72 6f 75 74 65 72 20 6d 75 73 74 20 68 61 76 65 20 61 20 72 6f 75 74 65 20 74 6f | area.router.must.have.a.route.to |
| 59fa0 | 20 61 6e 79 20 6f 74 68 65 72 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 72 6f 75 74 65 72 2e | .any.other.backbone.area.router. |
| 59fc0 | 20 4d 6f 72 65 6f 76 65 72 2c 20 65 76 65 72 79 20 41 42 52 20 6d 75 73 74 20 68 61 76 65 20 61 | .Moreover,.every.ABR.must.have.a |
| 59fe0 | 20 6c 69 6e 6b 20 74 6f 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 48 6f 77 65 76 65 72 2c | .link.to.backbone.area..However, |
| 5a000 | 20 69 74 20 69 73 20 6e 6f 74 20 61 6c 77 61 79 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 68 61 | .it.is.not.always.possible.to.ha |
| 5a020 | 76 65 20 61 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 74 6f 20 61 20 62 61 63 6b 62 6f 6e 65 | ve.a.physical.link.to.a.backbone |
| 5a040 | 20 61 72 65 61 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 | .area..In.this.case.between.two. |
| 5a060 | 41 42 52 20 28 6f 6e 65 20 6f 66 20 74 68 65 6d 20 68 61 73 20 61 20 6c 69 6e 6b 20 74 6f 20 74 | ABR.(one.of.them.has.a.link.to.t |
| 5a080 | 68 65 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 29 20 69 6e 20 74 68 65 20 61 72 65 61 20 28 6e | he.backbone.area).in.the.area.(n |
| 5a0a0 | 6f 74 20 73 74 75 62 20 61 72 65 61 29 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 69 73 20 | ot.stub.area).a.virtual.link.is. |
| 5a0c0 | 6f 72 67 61 6e 69 7a 65 64 2e 00 49 6e 20 6c 61 72 67 65 20 64 65 70 6c 6f 79 6d 65 6e 74 73 20 | organized..In.large.deployments. |
| 5a0e0 | 69 74 20 69 73 20 6e 6f 74 20 72 65 61 73 6f 6e 61 62 6c 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 | it.is.not.reasonable.to.configur |
| 5a100 | 65 20 65 61 63 68 20 75 73 65 72 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 6f 6e 20 65 76 65 72 | e.each.user.individually.on.ever |
| 5a120 | 79 20 73 79 73 74 65 6d 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 75 73 69 6e 67 20 3a 61 | y.system..VyOS.supports.using.:a |
| 5a140 | 62 62 72 3a 60 52 41 44 49 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 | bbr:`RADIUS.(Remote.Authenticati |
| 5a160 | 6f 6e 20 44 69 61 6c 2d 49 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 29 60 20 73 65 72 76 65 72 | on.Dial-In.User.Service)`.server |
| 5a180 | 73 20 61 73 20 62 61 63 6b 65 6e 64 20 66 6f 72 20 75 73 65 72 20 61 75 74 68 65 6e 74 69 63 61 | s.as.backend.for.user.authentica |
| 5a1a0 | 74 69 6f 6e 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 | tion..In.order.for.flow.accounti |
| 5a1c0 | 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 62 65 20 63 6f 6c 6c 65 63 74 65 64 20 61 | ng.information.to.be.collected.a |
| 5a1e0 | 6e 64 20 64 69 73 70 6c 61 79 65 64 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2c 20 74 | nd.displayed.for.an.interface,.t |
| 5a200 | 68 65 20 69 6e 74 65 72 66 61 63 65 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | he.interface.must.be.configured. |
| 5a220 | 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f | for.flow.accounting..In.order.fo |
| 5a240 | 72 20 74 68 65 20 70 72 69 6d 61 72 79 20 61 6e 64 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 | r.the.primary.and.the.secondary. |
| 5a260 | 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 6b 65 65 70 20 74 68 65 69 72 20 6c 65 61 73 65 20 | DHCP.server.to.keep.their.lease. |
| 5a280 | 74 61 62 6c 65 73 20 69 6e 20 73 79 6e 63 2c 20 74 68 65 79 20 6d 75 73 74 20 62 65 20 61 62 6c | tables.in.sync,.they.must.be.abl |
| 5a2a0 | 65 20 74 6f 20 72 65 61 63 68 20 65 61 63 68 20 6f 74 68 65 72 20 6f 6e 20 54 43 50 20 70 6f 72 | e.to.reach.each.other.on.TCP.por |
| 5a2c0 | 74 20 36 34 37 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 | t.647..If.you.have.firewall.rule |
| 5a2e0 | 73 20 69 6e 20 65 66 66 65 63 74 2c 20 61 64 6a 75 73 74 20 74 68 65 6d 20 61 63 63 6f 72 64 69 | s.in.effect,.adjust.them.accordi |
| 5a300 | 6e 67 6c 79 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f | ngly..In.order.for.the.system.to |
| 5a320 | 20 75 73 65 20 61 6e 64 20 63 6f 6d 70 6c 65 74 65 20 75 6e 71 75 61 6c 69 66 69 65 64 20 68 6f | .use.and.complete.unqualified.ho |
| 5a340 | 73 74 20 6e 61 6d 65 73 2c 20 61 20 6c 69 73 74 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 | st.names,.a.list.can.be.defined. |
| 5a360 | 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 64 6f 6d 61 69 6e 20 73 65 | which.will.be.used.for.domain.se |
| 5a380 | 61 72 63 68 65 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 4c 44 | arches..In.order.to.allow.for.LD |
| 5a3a0 | 50 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 65 78 63 68 61 6e 67 | P.on.the.local.router.to.exchang |
| 5a3c0 | 65 20 6c 61 62 65 6c 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 77 69 74 68 20 6f 74 68 65 | e.label.advertisements.with.othe |
| 5a3e0 | 72 20 72 6f 75 74 65 72 73 2c 20 61 20 54 43 50 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 | r.routers,.a.TCP.session.will.be |
| 5a400 | 20 65 73 74 61 62 6c 69 73 68 65 64 20 62 65 74 77 65 65 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c | .established.between.automatical |
| 5a420 | 6c 79 20 64 69 73 63 6f 76 65 72 65 64 20 61 6e 64 20 73 74 61 74 69 63 61 6c 6c 79 20 61 73 73 | ly.discovered.and.statically.ass |
| 5a440 | 69 67 6e 65 64 20 72 6f 75 74 65 72 73 2e 20 4c 44 50 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 65 | igned.routers..LDP.will.try.to.e |
| 5a460 | 73 74 61 62 6c 69 73 68 20 61 20 54 43 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 2a 2a | stablish.a.TCP.session.to.the.** |
| 5a480 | 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 73 73 2a 2a 20 6f 66 20 6f 74 68 65 72 20 72 6f 75 | transport.address**.of.other.rou |
| 5a4a0 | 74 65 72 73 2e 20 54 68 65 72 65 66 6f 72 65 20 66 6f 72 20 4c 44 50 20 74 6f 20 66 75 6e 63 74 | ters..Therefore.for.LDP.to.funct |
| 5a4c0 | 69 6f 6e 20 70 72 6f 70 65 72 6c 79 20 70 6c 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 | ion.properly.please.make.sure.th |
| 5a4e0 | 65 20 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 73 73 20 69 73 20 73 68 6f 77 6e 20 69 6e 20 | e.transport.address.is.shown.in. |
| 5a500 | 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 61 6e 64 20 72 65 61 63 68 61 62 6c 65 20 | the.routing.table.and.reachable. |
| 5a520 | 74 6f 20 74 72 61 66 66 69 63 20 61 74 20 61 6c 6c 20 74 69 6d 65 73 2e 00 49 6e 20 6f 72 64 65 | to.traffic.at.all.times..In.orde |
| 5a540 | 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d 6f 64 69 66 79 20 72 6f 75 74 69 6e 67 20 | r.to.control.and.modify.routing. |
| 5a560 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 | information.that.is.exchanged.be |
| 5a580 | 74 77 65 65 6e 20 70 65 65 72 73 20 79 6f 75 20 63 61 6e 20 75 73 65 20 72 6f 75 74 65 2d 6d 61 | tween.peers.you.can.use.route-ma |
| 5a5a0 | 70 2c 20 66 69 6c 74 65 72 2d 6c 69 73 74 2c 20 70 72 65 66 69 78 2d 6c 69 73 74 2c 20 64 69 73 | p,.filter-list,.prefix-list,.dis |
| 5a5c0 | 74 72 69 62 75 74 65 2d 6c 69 73 74 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 64 65 66 69 6e 65 | tribute-list..In.order.to.define |
| 5a5e0 | 20 77 68 69 63 68 20 74 72 61 66 66 69 63 20 67 6f 65 73 20 69 6e 74 6f 20 77 68 69 63 68 20 63 | .which.traffic.goes.into.which.c |
| 5a600 | 6c 61 73 73 2c 20 79 6f 75 20 64 65 66 69 6e 65 20 66 69 6c 74 65 72 73 20 28 74 68 61 74 20 69 | lass,.you.define.filters.(that.i |
| 5a620 | 73 2c 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 29 2e 20 50 61 63 6b 65 | s,.the.matching.criteria)..Packe |
| 5a640 | 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 73 65 20 6d 61 74 63 68 69 6e 67 20 72 75 6c | ts.go.through.these.matching.rul |
| 5a660 | 65 73 20 28 61 73 20 69 6e 20 74 68 65 20 72 75 6c 65 73 20 6f 66 20 61 20 66 69 72 65 77 61 6c | es.(as.in.the.rules.of.a.firewal |
| 5a680 | 6c 29 20 61 6e 64 2c 20 69 66 20 61 20 70 61 63 6b 65 74 20 6d 61 74 63 68 65 73 20 74 68 65 20 | l).and,.if.a.packet.matches.the. |
| 5a6a0 | 66 69 6c 74 65 72 2c 20 69 74 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 61 74 20 63 | filter,.it.is.assigned.to.that.c |
| 5a6c0 | 6c 61 73 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 56 79 4f 53 20 54 72 61 66 | lass..In.order.to.have.VyOS.Traf |
| 5a6e0 | 66 69 63 20 43 6f 6e 74 72 6f 6c 20 77 6f 72 6b 69 6e 67 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 | fic.Control.working.you.need.to. |
| 5a700 | 66 6f 6c 6c 6f 77 20 32 20 73 74 65 70 73 3a 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 68 61 76 65 | follow.2.steps:.In.order.to.have |
| 5a720 | 20 66 75 6c 6c 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d 61 6b 65 20 75 73 65 20 6f 66 20 6d 75 | .full.control.and.make.use.of.mu |
| 5a740 | 6c 74 69 70 6c 65 20 73 74 61 74 69 63 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 | ltiple.static.public.IP.addresse |
| 5a760 | 73 2c 20 79 6f 75 72 20 56 79 4f 53 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 69 6e 69 74 69 61 | s,.your.VyOS.will.have.to.initia |
| 5a780 | 74 65 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 63 6f 6e 74 | te.the.PPPoE.connection.and.cont |
| 5a7a0 | 72 6f 6c 20 69 74 2e 20 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 69 73 20 6d 65 74 68 6f 64 | rol.it..In.order.for.this.method |
| 5a7c0 | 20 74 6f 20 77 6f 72 6b 2c 20 79 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 66 69 67 75 72 | .to.work,.you.will.have.to.figur |
| 5a7e0 | 65 20 6f 75 74 20 68 6f 77 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 20 44 53 4c 20 4d 6f 64 65 6d | e.out.how.to.make.your.DSL.Modem |
| 5a800 | 2f 52 6f 75 74 65 72 20 73 77 69 74 63 68 20 69 6e 74 6f 20 61 20 42 72 69 64 67 65 64 20 4d 6f | /Router.switch.into.a.Bridged.Mo |
| 5a820 | 64 65 20 73 6f 20 69 74 20 6f 6e 6c 79 20 61 63 74 73 20 61 73 20 61 20 44 53 4c 20 54 72 61 6e | de.so.it.only.acts.as.a.DSL.Tran |
| 5a840 | 73 63 65 69 76 65 72 20 64 65 76 69 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 62 65 74 77 65 65 | sceiver.device.to.connect.betwee |
| 5a860 | 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 6c 69 6e 6b 20 6f 66 20 79 6f 75 72 20 56 79 4f 53 | n.the.Ethernet.link.of.your.VyOS |
| 5a880 | 20 61 6e 64 20 74 68 65 20 70 68 6f 6e 65 20 63 61 62 6c 65 2e 20 4f 6e 63 65 20 79 6f 75 72 20 | .and.the.phone.cable..Once.your. |
| 5a8a0 | 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 69 73 20 69 6e 20 42 72 69 64 67 65 20 4d 6f 64 | DSL.Transceiver.is.in.Bridge.Mod |
| 5a8c0 | 65 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 67 65 74 20 6e 6f 20 49 50 20 61 64 64 72 65 73 73 20 | e,.you.should.get.no.IP.address. |
| 5a8e0 | 66 72 6f 6d 20 69 74 2e 20 50 6c 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 63 6f | from.it..Please.make.sure.you.co |
| 5a900 | 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 50 6f 72 74 20 31 20 69 66 20 | nnect.to.the.Ethernet.Port.1.if. |
| 5a920 | 79 6f 75 72 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 68 61 73 20 61 20 73 77 69 74 63 | your.DSL.Transceiver.has.a.switc |
| 5a940 | 68 2c 20 61 73 20 73 6f 6d 65 20 6f 66 20 74 68 65 6d 20 6f 6e 6c 79 20 77 6f 72 6b 20 74 68 69 | h,.as.some.of.them.only.work.thi |
| 5a960 | 73 20 77 61 79 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 70 20 73 70 65 63 69 66 69 63 20 | s.way..In.order.to.map.specific. |
| 5a980 | 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 73 70 65 63 69 66 69 63 20 68 6f 73 74 73 | IPv6.addresses.to.specific.hosts |
| 5a9a0 | 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2e | .static.mappings.can.be.created. |
| 5a9c0 | 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 65 78 70 6c 61 69 6e 73 20 | .The.following.example.explains. |
| 5a9e0 | 74 68 65 20 70 72 6f 63 65 73 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 6d 69 6e 69 6d 69 7a | the.process..In.order.to.minimiz |
| 5aa00 | 65 20 74 68 65 20 66 6c 6f 6f 64 69 6e 67 20 6f 66 20 41 52 50 20 61 6e 64 20 4e 44 20 6d 65 73 | e.the.flooding.of.ARP.and.ND.mes |
| 5aa20 | 73 61 67 65 73 20 69 6e 20 74 68 65 20 56 58 4c 41 4e 20 6e 65 74 77 6f 72 6b 2c 20 45 56 50 4e | sages.in.the.VXLAN.network,.EVPN |
| 5aa40 | 20 69 6e 63 6c 75 64 65 73 20 70 72 6f 76 69 73 69 6f 6e 73 20 3a 72 66 63 3a 60 37 34 33 32 23 | .includes.provisions.:rfc:`7432# |
| 5aa60 | 73 65 63 74 69 6f 6e 2d 31 30 60 20 74 68 61 74 20 61 6c 6c 6f 77 20 70 61 72 74 69 63 69 70 61 | section-10`.that.allow.participa |
| 5aa80 | 74 69 6e 67 20 56 54 45 50 73 20 74 6f 20 73 75 70 70 72 65 73 73 20 73 75 63 68 20 6d 65 73 73 | ting.VTEPs.to.suppress.such.mess |
| 5aaa0 | 61 67 65 73 20 69 6e 20 63 61 73 65 20 74 68 65 79 20 6b 6e 6f 77 20 74 68 65 20 4d 41 43 2d 49 | ages.in.case.they.know.the.MAC-I |
| 5aac0 | 50 20 62 69 6e 64 69 6e 67 20 61 6e 64 20 63 61 6e 20 72 65 70 6c 79 20 6f 6e 20 62 65 68 61 6c | P.binding.and.can.reply.on.behal |
| 5aae0 | 66 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 68 6f 73 74 2e 00 49 6e 20 6f 72 64 65 72 20 74 | f.of.the.remote.host..In.order.t |
| 5ab00 | 6f 20 73 65 70 61 72 61 74 65 20 74 72 61 66 66 69 63 2c 20 46 61 69 72 20 51 75 65 75 65 20 75 | o.separate.traffic,.Fair.Queue.u |
| 5ab20 | 73 65 73 20 61 20 63 6c 61 73 73 69 66 69 65 72 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 | ses.a.classifier.based.on.source |
| 5ab40 | 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e | .address,.destination.address.an |
| 5ab60 | 64 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 54 68 65 20 61 6c 67 6f 72 69 74 68 6d 20 65 6e 71 | d.source.port..The.algorithm.enq |
| 5ab80 | 75 65 75 65 73 20 70 61 63 6b 65 74 73 20 74 6f 20 68 61 73 68 20 62 75 63 6b 65 74 73 20 62 61 | ueues.packets.to.hash.buckets.ba |
| 5aba0 | 73 65 64 20 6f 6e 20 74 68 6f 73 65 20 74 72 65 65 20 70 61 72 61 6d 65 74 65 72 73 2e 20 45 61 | sed.on.those.tree.parameters..Ea |
| 5abc0 | 63 68 20 6f 66 20 74 68 65 73 65 20 62 75 63 6b 65 74 73 20 73 68 6f 75 6c 64 20 72 65 70 72 65 | ch.of.these.buckets.should.repre |
| 5abe0 | 73 65 6e 74 20 61 20 75 6e 69 71 75 65 20 66 6c 6f 77 2e 20 42 65 63 61 75 73 65 20 6d 75 6c 74 | sent.a.unique.flow..Because.mult |
| 5ac00 | 69 70 6c 65 20 66 6c 6f 77 73 20 6d 61 79 20 67 65 74 20 68 61 73 68 65 64 20 74 6f 20 74 68 65 | iple.flows.may.get.hashed.to.the |
| 5ac20 | 20 73 61 6d 65 20 62 75 63 6b 65 74 2c 20 74 68 65 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 | .same.bucket,.the.hashing.algori |
| 5ac40 | 74 68 6d 20 69 73 20 70 65 72 74 75 72 62 65 64 20 61 74 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 | thm.is.perturbed.at.configurable |
| 5ac60 | 20 69 6e 74 65 72 76 61 6c 73 20 73 6f 20 74 68 61 74 20 74 68 65 20 75 6e 66 61 69 72 6e 65 73 | .intervals.so.that.the.unfairnes |
| 5ac80 | 73 20 6c 61 73 74 73 20 6f 6e 6c 79 20 66 6f 72 20 61 20 73 68 6f 72 74 20 77 68 69 6c 65 2e 20 | s.lasts.only.for.a.short.while.. |
| 5aca0 | 50 65 72 74 75 72 62 61 74 69 6f 6e 20 6d 61 79 20 68 6f 77 65 76 65 72 20 63 61 75 73 65 20 73 | Perturbation.may.however.cause.s |
| 5acc0 | 6f 6d 65 20 69 6e 61 64 76 65 72 74 65 6e 74 20 70 61 63 6b 65 74 20 72 65 6f 72 64 65 72 69 6e | ome.inadvertent.packet.reorderin |
| 5ace0 | 67 20 74 6f 20 6f 63 63 75 72 2e 20 41 6e 20 61 64 76 69 73 61 62 6c 65 20 76 61 6c 75 65 20 63 | g.to.occur..An.advisable.value.c |
| 5ad00 | 6f 75 6c 64 20 62 65 20 31 30 20 73 65 63 6f 6e 64 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 | ould.be.10.seconds..In.order.to. |
| 5ad20 | 75 73 65 20 50 49 4d 2c 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 | use.PIM,.it.is.necessary.to.conf |
| 5ad40 | 69 67 75 72 65 20 61 20 3a 61 62 62 72 3a 60 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f | igure.a.:abbr:`RP.(Rendezvous.Po |
| 5ad60 | 69 6e 74 29 60 20 66 6f 72 20 6a 6f 69 6e 20 6d 65 73 73 61 67 65 73 20 74 6f 20 62 65 20 73 65 | int)`.for.join.messages.to.be.se |
| 5ad80 | 6e 74 20 74 6f 2e 20 43 75 72 72 65 6e 74 6c 79 20 74 68 65 20 6f 6e 6c 79 20 6d 65 74 68 6f 64 | nt.to..Currently.the.only.method |
| 5ada0 | 6f 6c 6f 67 79 20 74 6f 20 64 6f 20 74 68 69 73 20 69 73 20 76 69 61 20 73 74 61 74 69 63 20 72 | ology.to.do.this.is.via.static.r |
| 5adc0 | 65 6e 64 65 7a 76 6f 75 73 20 70 6f 69 6e 74 20 63 6f 6d 6d 61 6e 64 73 2e 00 49 6e 20 6f 72 64 | endezvous.point.commands..In.ord |
| 5ade0 | 65 72 20 74 6f 20 75 73 65 20 54 53 4f 2f 4c 52 4f 20 77 69 74 68 20 56 4d 58 4e 45 54 33 20 61 | er.to.use.TSO/LRO.with.VMXNET3.a |
| 5ae00 | 64 61 70 74 65 72 73 2c 20 74 68 65 20 53 47 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 70 74 69 6f | dapters,.the.SG.offloading.optio |
| 5ae20 | 6e 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 49 6e 20 6f 72 64 65 72 | n.must.also.be.enabled..In.order |
| 5ae40 | 20 74 6f 20 75 73 65 20 54 53 4f 2f 4c 52 4f 20 77 69 74 68 20 56 4d 58 4e 45 54 33 20 61 64 61 | .to.use.TSO/LRO.with.VMXNET3.ada |
| 5ae60 | 74 65 72 73 20 6f 6e 65 20 6d 75 73 74 20 61 6c 73 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 53 47 | ters.one.must.also.enable.the.SG |
| 5ae80 | 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 70 74 69 6f 6e 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 | .offloading.option..In.order.to. |
| 5aea0 | 75 73 65 20 66 6c 6f 77 74 61 62 6c 65 73 2c 20 74 68 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 | use.flowtables,.the.minimal.conf |
| 5aec0 | 69 67 75 72 61 74 69 6f 6e 20 6e 65 65 64 65 64 20 69 6e 63 6c 75 64 65 73 3a 00 49 6e 20 6f 74 | iguration.needed.includes:.In.ot |
| 5aee0 | 68 65 72 20 77 6f 72 64 73 20 69 74 20 61 6c 6c 6f 77 73 20 63 6f 6e 74 72 6f 6c 20 6f 66 20 77 | her.words.it.allows.control.of.w |
| 5af00 | 68 69 63 68 20 63 61 72 64 73 20 28 75 73 75 61 6c 6c 79 20 31 29 20 77 69 6c 6c 20 72 65 73 70 | hich.cards.(usually.1).will.resp |
| 5af20 | 6f 6e 64 20 74 6f 20 61 6e 20 61 72 70 20 72 65 71 75 65 73 74 2e 00 49 6e 20 6f 74 68 65 72 20 | ond.to.an.arp.request..In.other. |
| 5af40 | 77 6f 72 64 73 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 68 61 73 20 61 | words,.connection.tracking.has.a |
| 5af60 | 6c 72 65 61 64 79 20 6f 62 73 65 72 76 65 64 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 | lready.observed.the.connection.b |
| 5af80 | 65 20 63 6c 6f 73 65 64 20 61 6e 64 20 68 61 73 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 68 65 20 | e.closed.and.has.transition.the. |
| 5afa0 | 66 6c 6f 77 20 74 6f 20 49 4e 56 41 4c 49 44 20 74 6f 20 70 72 65 76 65 6e 74 20 61 74 74 61 63 | flow.to.INVALID.to.prevent.attac |
| 5afc0 | 6b 73 20 66 72 6f 6d 20 61 74 74 65 6d 70 74 69 6e 67 20 74 6f 20 72 65 75 73 65 20 74 68 65 20 | ks.from.attempting.to.reuse.the. |
| 5afe0 | 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 20 74 68 65 20 63 | connection..In.our.example.the.c |
| 5b000 | 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 20 69 73 20 63 61 6c 6c 65 64 20 76 79 6f 73 3a 00 | ertificate.name.is.called.vyos:. |
| 5b020 | 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 75 73 65 64 20 74 68 65 20 6b 65 79 20 | In.our.example,.we.used.the.key. |
| 5b040 | 6e 61 6d 65 20 60 60 6f 70 65 6e 76 70 6e 2d 31 60 60 20 77 68 69 63 68 20 77 65 20 77 69 6c 6c | name.``openvpn-1``.which.we.will |
| 5b060 | 20 72 65 66 65 72 65 6e 63 65 20 69 6e 20 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e | .reference.in.our.configuration. |
| 5b080 | 00 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 | .In.our.example,.we.will.be.forw |
| 5b0a0 | 61 72 64 69 6e 67 20 77 65 62 20 73 65 72 76 65 72 20 74 72 61 66 66 69 63 20 74 6f 20 61 6e 20 | arding.web.server.traffic.to.an. |
| 5b0c0 | 69 6e 74 65 72 6e 61 6c 20 77 65 62 20 73 65 72 76 65 72 20 6f 6e 20 31 39 32 2e 31 36 38 2e 30 | internal.web.server.on.192.168.0 |
| 5b0e0 | 2e 31 30 30 2e 20 48 54 54 50 20 74 72 61 66 66 69 63 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 | .100..HTTP.traffic.makes.use.of. |
| 5b100 | 74 68 65 20 54 43 50 20 70 72 6f 74 6f 63 6f 6c 20 6f 6e 20 70 6f 72 74 20 38 30 2e 20 46 6f 72 | the.TCP.protocol.on.port.80..For |
| 5b120 | 20 6f 74 68 65 72 20 63 6f 6d 6d 6f 6e 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2c 20 73 65 65 3a | .other.common.port.numbers,.see: |
| 5b140 | 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 4c | .https://en.wikipedia.org/wiki/L |
| 5b160 | 69 73 74 5f 6f 66 5f 54 43 50 5f 61 6e 64 5f 55 44 50 5f 70 6f 72 74 5f 6e 75 6d 62 65 72 73 00 | ist_of_TCP_and_UDP_port_numbers. |
| 5b180 | 49 6e 20 70 72 69 6e 63 69 70 6c 65 2c 20 76 61 6c 75 65 73 20 6d 75 73 74 20 62 65 20 3a 63 6f | In.principle,.values.must.be.:co |
| 5b1a0 | 64 65 3a 60 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 60 20 3c 20 3a 63 6f 64 65 3a 60 6d 61 78 2d | de:`min-threshold`.<.:code:`max- |
| 5b1c0 | 74 68 72 65 73 68 6f 6c 64 60 20 3c 20 3a 63 6f 64 65 3a 60 71 75 65 75 65 2d 6c 69 6d 69 74 60 | threshold`.<.:code:`queue-limit` |
| 5b1e0 | 2e 00 49 6e 20 73 68 6f 72 74 2c 20 44 4d 56 50 4e 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 63 | ..In.short,.DMVPN.provides.the.c |
| 5b200 | 61 70 61 62 69 6c 69 74 79 20 66 6f 72 20 63 72 65 61 74 69 6e 67 20 61 20 64 79 6e 61 6d 69 63 | apability.for.creating.a.dynamic |
| 5b220 | 2d 6d 65 73 68 20 56 50 4e 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 6f 75 74 20 68 61 76 69 6e 67 | -mesh.VPN.network.without.having |
| 5b240 | 20 74 6f 20 70 72 65 2d 63 6f 6e 66 69 67 75 72 65 20 28 73 74 61 74 69 63 29 20 61 6c 6c 20 70 | .to.pre-configure.(static).all.p |
| 5b260 | 6f 73 73 69 62 6c 65 20 74 75 6e 6e 65 6c 20 65 6e 64 2d 70 6f 69 6e 74 20 70 65 65 72 73 2e 00 | ossible.tunnel.end-point.peers.. |
| 5b280 | 49 6e 20 73 6f 6d 65 20 63 61 73 65 20 77 68 65 72 65 20 77 65 20 6e 65 65 64 20 74 6f 20 68 61 | In.some.case.where.we.need.to.ha |
| 5b2a0 | 76 65 20 61 6e 20 6f 72 67 61 6e 69 7a 61 74 69 6f 6e 20 6f 66 20 6f 75 72 20 6d 61 74 63 68 69 | ve.an.organization.of.our.matchi |
| 5b2c0 | 6e 67 20 73 65 6c 65 63 74 69 6f 6e 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 20 6d 6f 72 | ng.selection,.in.order.to.be.mor |
| 5b2e0 | 65 20 66 6c 65 78 69 62 6c 65 20 61 6e 64 20 6f 72 67 61 6e 69 7a 65 20 77 69 74 68 20 6f 75 72 | e.flexible.and.organize.with.our |
| 5b300 | 20 66 69 6c 74 65 72 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 57 65 20 63 61 6e 20 61 70 70 6c 79 | .filter.definition..We.can.apply |
| 5b320 | 20 74 72 61 66 66 69 63 20 6d 61 74 63 68 20 67 72 6f 75 70 73 2c 20 61 6c 6c 6f 77 69 6e 67 20 | .traffic.match.groups,.allowing. |
| 5b340 | 75 73 20 74 6f 20 63 72 65 61 74 65 20 64 69 73 74 69 6e 63 74 20 66 69 6c 74 65 72 20 67 72 6f | us.to.create.distinct.filter.gro |
| 5b360 | 75 70 73 20 77 69 74 68 69 6e 20 6f 75 72 20 70 6f 6c 69 63 79 20 61 6e 64 20 64 65 66 69 6e 65 | ups.within.our.policy.and.define |
| 5b380 | 20 76 61 72 69 6f 75 73 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 65 61 63 68 20 67 72 6f | .various.parameters.for.each.gro |
| 5b3a0 | 75 70 3a 00 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 20 69 74 20 6d 61 79 20 62 65 20 6d 6f 72 65 | up:.In.some.cases.it.may.be.more |
| 5b3c0 | 20 63 6f 6e 76 65 6e 69 65 6e 74 20 74 6f 20 65 6e 61 62 6c 65 20 4f 53 50 46 20 6f 6e 20 61 20 | .convenient.to.enable.OSPF.on.a. |
| 5b3e0 | 70 65 72 20 69 6e 74 65 72 66 61 63 65 2f 73 75 62 6e 65 74 20 62 61 73 69 73 20 3a 63 66 67 63 | per.interface/subnet.basis.:cfgc |
| 5b400 | 6d 64 3a 60 73 65 74 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 20 69 6e 74 65 72 66 61 63 65 | md:`set.protocols.ospf.interface |
| 5b420 | 20 3c 69 6e 74 65 72 66 61 63 65 3e 20 61 72 65 61 20 3c 78 2e 78 2e 78 2e 78 20 7c 20 78 3e 60 | .<interface>.area.<x.x.x.x.|.x>` |
| 5b440 | 00 49 6e 20 74 68 65 20 3a 72 65 66 3a 60 63 72 65 61 74 69 6e 67 5f 61 5f 74 72 61 66 66 69 63 | .In.the.:ref:`creating_a_traffic |
| 5b460 | 5f 70 6f 6c 69 63 79 60 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 73 65 65 20 74 68 | _policy`.section.you.will.see.th |
| 5b480 | 61 74 20 73 6f 6d 65 20 6f 66 20 74 68 65 20 70 6f 6c 69 63 69 65 73 20 75 73 65 20 2a 63 6c 61 | at.some.of.the.policies.use.*cla |
| 5b4a0 | 73 73 65 73 2a 2e 20 54 68 6f 73 65 20 70 6f 6c 69 63 69 65 73 20 6c 65 74 20 79 6f 75 20 64 69 | sses*..Those.policies.let.you.di |
| 5b4c0 | 73 74 72 69 62 75 74 65 20 74 72 61 66 66 69 63 20 69 6e 74 6f 20 64 69 66 66 65 72 65 6e 74 20 | stribute.traffic.into.different. |
| 5b4e0 | 63 6c 61 73 73 65 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 70 | classes.according.to.different.p |
| 5b500 | 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 63 61 6e 20 63 68 6f 6f 73 65 2e 20 53 6f 2c 20 61 20 | arameters.you.can.choose..So,.a. |
| 5b520 | 63 6c 61 73 73 20 69 73 20 6a 75 73 74 20 61 20 73 70 65 63 69 66 69 63 20 74 79 70 65 20 6f 66 | class.is.just.a.specific.type.of |
| 5b540 | 20 74 72 61 66 66 69 63 20 79 6f 75 20 73 65 6c 65 63 74 2e 00 49 6e 20 74 68 65 20 56 79 4f 53 | .traffic.you.select..In.the.VyOS |
| 5b560 | 20 43 4c 49 2c 20 61 20 6b 65 79 20 70 6f 69 6e 74 20 6f 66 74 65 6e 20 6f 76 65 72 6c 6f 6f 6b | .CLI,.a.key.point.often.overlook |
| 5b580 | 65 64 20 69 73 20 74 68 61 74 20 72 61 74 68 65 72 20 74 68 61 6e 20 62 65 69 6e 67 20 63 6f 6e | ed.is.that.rather.than.being.con |
| 5b5a0 | 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 73 65 74 20 76 70 6e 60 20 73 74 61 6e | figured.using.the.`set.vpn`.stan |
| 5b5c0 | 7a 61 2c 20 4f 70 65 6e 56 50 4e 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 61 20 6e | za,.OpenVPN.is.configured.as.a.n |
| 5b5e0 | 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 75 73 69 6e 67 20 60 73 65 74 20 69 6e 74 65 | etwork.interface.using.`set.inte |
| 5b600 | 72 66 61 63 65 73 20 6f 70 65 6e 76 70 6e 60 2e 00 49 6e 20 74 68 65 20 61 62 6f 76 65 20 65 78 | rfaces.openvpn`..In.the.above.ex |
| 5b620 | 61 6d 70 6c 65 2c 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 6f 66 20 31 39 32 2e 30 2e 32 | ample,.an.external.IP.of.192.0.2 |
| 5b640 | 2e 32 20 69 73 20 61 73 73 75 6d 65 64 2e 00 49 6e 20 74 68 65 20 61 67 65 20 6f 66 20 76 65 72 | .2.is.assumed..In.the.age.of.ver |
| 5b660 | 79 20 66 61 73 74 20 6e 65 74 77 6f 72 6b 73 2c 20 61 20 73 65 63 6f 6e 64 20 6f 66 20 75 6e 72 | y.fast.networks,.a.second.of.unr |
| 5b680 | 65 61 63 68 61 62 69 6c 69 74 79 20 6d 61 79 20 65 71 75 61 6c 20 6d 69 6c 6c 69 6f 6e 73 20 6f | eachability.may.equal.millions.o |
| 5b6a0 | 66 20 6c 6f 73 74 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 69 64 65 61 20 62 65 68 69 6e 64 20 | f.lost.packets..The.idea.behind. |
| 5b6c0 | 42 46 44 20 69 73 20 74 6f 20 64 65 74 65 63 74 20 76 65 72 79 20 71 75 69 63 6b 6c 79 20 77 68 | BFD.is.to.detect.very.quickly.wh |
| 5b6e0 | 65 6e 20 61 20 70 65 65 72 20 69 73 20 64 6f 77 6e 20 61 6e 64 20 74 61 6b 65 20 61 63 74 69 6f | en.a.peer.is.down.and.take.actio |
| 5b700 | 6e 20 65 78 74 72 65 6d 65 6c 79 20 66 61 73 74 2e 00 49 6e 20 74 68 65 20 63 61 73 65 20 6f 66 | n.extremely.fast..In.the.case.of |
| 5b720 | 20 4c 32 54 50 76 33 2c 20 74 68 65 20 66 65 61 74 75 72 65 73 20 6c 6f 73 74 20 61 72 65 20 74 | .L2TPv3,.the.features.lost.are.t |
| 5b740 | 65 6c 65 74 72 61 66 66 69 63 20 65 6e 67 69 6e 65 65 72 69 6e 67 20 66 65 61 74 75 72 65 73 20 | eletraffic.engineering.features. |
| 5b760 | 63 6f 6e 73 69 64 65 72 65 64 20 69 6d 70 6f 72 74 61 6e 74 20 69 6e 20 4d 50 4c 53 2e 20 48 6f | considered.important.in.MPLS..Ho |
| 5b780 | 77 65 76 65 72 2c 20 74 68 65 72 65 20 69 73 20 6e 6f 20 72 65 61 73 6f 6e 20 74 68 65 73 65 20 | wever,.there.is.no.reason.these. |
| 5b7a0 | 66 65 61 74 75 72 65 73 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 72 65 2d 65 6e 67 69 6e 65 65 | features.could.not.be.re-enginee |
| 5b7c0 | 72 65 64 20 69 6e 20 6f 72 20 6f 6e 20 74 6f 70 20 6f 66 20 4c 32 54 50 76 33 20 69 6e 20 6c 61 | red.in.or.on.top.of.L2TPv3.in.la |
| 5b7e0 | 74 65 72 20 70 72 6f 64 75 63 74 73 2e 00 49 6e 20 74 68 65 20 63 61 73 65 20 74 68 65 20 61 76 | ter.products..In.the.case.the.av |
| 5b800 | 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 73 20 62 65 74 77 65 65 6e 20 2a 2a 6d 69 | erage.queue.size.is.between.**mi |
| 5b820 | 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 61 6e 64 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c | n-threshold**.and.**max-threshol |
| 5b840 | 64 2a 2a 2c 20 74 68 65 6e 20 61 6e 20 61 72 72 69 76 69 6e 67 20 70 61 63 6b 65 74 20 77 6f 75 | d**,.then.an.arriving.packet.wou |
| 5b860 | 6c 64 20 62 65 20 65 69 74 68 65 72 20 64 72 6f 70 70 65 64 20 6f 72 20 70 6c 61 63 65 64 20 69 | ld.be.either.dropped.or.placed.i |
| 5b880 | 6e 20 74 68 65 20 71 75 65 75 65 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 74 | n.the.queue,.it.will.depend.on.t |
| 5b8a0 | 68 65 20 64 65 66 69 6e 65 64 20 2a 2a 6d 61 72 6b 2d 70 72 6f 62 61 62 69 6c 69 74 79 2a 2a 2e | he.defined.**mark-probability**. |
| 5b8c0 | 00 49 6e 20 74 68 65 20 63 61 73 65 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 73 | .In.the.case.you.want.to.apply.s |
| 5b8e0 | 6f 6d 65 20 6b 69 6e 64 20 6f 66 20 2a 2a 73 68 61 70 69 6e 67 2a 2a 20 74 6f 20 79 6f 75 72 20 | ome.kind.of.**shaping**.to.your. |
| 5b900 | 2a 2a 69 6e 62 6f 75 6e 64 2a 2a 20 74 72 61 66 66 69 63 2c 20 63 68 65 63 6b 20 74 68 65 20 69 | **inbound**.traffic,.check.the.i |
| 5b920 | 6e 67 72 65 73 73 2d 73 68 61 70 69 6e 67 5f 20 73 65 63 74 69 6f 6e 2e 00 49 6e 20 74 68 65 20 | ngress-shaping_.section..In.the. |
| 5b940 | 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 2c 20 77 65 20 73 65 74 20 74 68 65 20 74 79 70 65 20 6f | command.above,.we.set.the.type.o |
| 5b960 | 66 20 70 6f 6c 69 63 79 20 77 65 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 77 6f 72 6b 20 77 69 | f.policy.we.are.going.to.work.wi |
| 5b980 | 74 68 20 61 6e 64 20 74 68 65 20 6e 61 6d 65 20 77 65 20 63 68 6f 6f 73 65 20 66 6f 72 20 69 74 | th.and.the.name.we.choose.for.it |
| 5b9a0 | 3b 20 61 20 63 6c 61 73 73 20 28 73 6f 20 74 68 61 74 20 77 65 20 63 61 6e 20 64 69 66 66 65 72 | ;.a.class.(so.that.we.can.differ |
| 5b9c0 | 65 6e 74 69 61 74 65 20 73 6f 6d 65 20 74 72 61 66 66 69 63 29 20 61 6e 64 20 61 6e 20 69 64 65 | entiate.some.traffic).and.an.ide |
| 5b9e0 | 6e 74 69 66 69 61 62 6c 65 20 6e 75 6d 62 65 72 20 66 6f 72 20 74 68 61 74 20 63 6c 61 73 73 3b | ntifiable.number.for.that.class; |
| 5ba00 | 20 74 68 65 6e 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 20 6d 61 74 63 68 69 6e 67 20 72 75 | .then.we.configure.a.matching.ru |
| 5ba20 | 6c 65 20 28 6f 72 20 66 69 6c 74 65 72 29 20 61 6e 64 20 61 20 6e 61 6d 65 20 66 6f 72 20 69 74 | le.(or.filter).and.a.name.for.it |
| 5ba40 | 2e 00 49 6e 20 74 68 65 20 65 6e 64 2c 20 61 6e 20 58 4d 4c 20 73 74 72 75 63 74 75 72 65 20 69 | ..In.the.end,.an.XML.structure.i |
| 5ba60 | 73 20 67 65 6e 65 72 61 74 65 64 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 73 61 76 65 64 20 61 | s.generated.which.can.be.saved.a |
| 5ba80 | 73 20 60 60 76 79 6f 73 2e 6d 6f 62 69 6c 65 63 6f 6e 66 69 67 60 60 20 61 6e 64 20 73 65 6e 74 | s.``vyos.mobileconfig``.and.sent |
| 5baa0 | 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 62 79 20 45 2d 4d 61 69 6c 20 77 68 65 72 65 20 69 | .to.the.device.by.E-Mail.where.i |
| 5bac0 | 74 20 6c 61 74 65 72 20 63 61 6e 20 62 65 20 69 6d 70 6f 72 74 65 64 2e 00 49 6e 20 74 68 65 20 | t.later.can.be.imported..In.the. |
| 5bae0 | 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 74 68 65 20 66 69 72 73 74 20 34 39 39 20 73 65 73 | example.above,.the.first.499.ses |
| 5bb00 | 73 69 6f 6e 73 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 6f 75 74 20 64 65 6c 61 79 2e 20 50 41 44 | sions.connect.without.delay..PAD |
| 5bb20 | 4f 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 64 65 6c 61 79 65 64 20 35 30 20 6d 73 20 | O.packets.will.be.delayed.50.ms. |
| 5bb40 | 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 66 72 6f 6d 20 35 30 30 20 74 6f 20 39 39 39 2c 20 | for.connection.from.500.to.999,. |
| 5bb60 | 74 68 69 73 20 74 72 69 63 6b 20 61 6c 6c 6f 77 73 20 6f 74 68 65 72 20 50 50 50 6f 45 20 73 65 | this.trick.allows.other.PPPoE.se |
| 5bb80 | 72 76 65 72 73 20 73 65 6e 64 20 50 41 44 4f 20 66 61 73 74 65 72 20 61 6e 64 20 63 6c 69 65 6e | rvers.send.PADO.faster.and.clien |
| 5bba0 | 74 73 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 74 68 65 72 20 73 65 72 76 65 72 73 | ts.will.connect.to.other.servers |
| 5bbc0 | 2e 20 4c 61 73 74 20 63 6f 6d 6d 61 6e 64 20 73 61 79 73 20 74 68 61 74 20 74 68 69 73 20 50 50 | ..Last.command.says.that.this.PP |
| 5bbe0 | 50 6f 45 20 73 65 72 76 65 72 20 63 61 6e 20 73 65 72 76 65 20 6f 6e 6c 79 20 33 30 30 30 20 63 | PoE.server.can.serve.only.3000.c |
| 5bc00 | 6c 69 65 6e 74 73 2e 00 49 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 75 73 65 64 20 66 6f 72 20 | lients..In.the.example.used.for. |
| 5bc20 | 74 68 65 20 51 75 69 63 6b 20 53 74 61 72 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 | the.Quick.Start.configuration.ab |
| 5bc40 | 6f 76 65 2c 20 77 65 20 64 65 6d 6f 6e 73 74 72 61 74 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | ove,.we.demonstrate.the.followin |
| 5bc60 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | g.configuration:.In.the.followin |
| 5bc80 | 67 20 65 78 61 6d 70 6c 65 20 77 65 20 63 61 6e 20 73 65 65 20 61 20 62 61 73 69 63 20 6d 75 6c | g.example.we.can.see.a.basic.mul |
| 5bca0 | 74 69 63 61 73 74 20 73 65 74 75 70 3a 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 | ticast.setup:.In.the.following.e |
| 5bcc0 | 78 61 6d 70 6c 65 2c 20 62 6f 74 68 20 60 55 73 65 72 31 60 20 61 6e 64 20 60 55 73 65 72 32 60 | xample,.both.`User1`.and.`User2` |
| 5bce0 | 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 53 53 48 20 69 6e 74 6f 20 56 79 4f 53 20 61 | .will.be.able.to.SSH.into.VyOS.a |
| 5bd00 | 73 20 75 73 65 72 20 60 60 76 79 6f 73 60 60 20 75 73 69 6e 67 20 74 68 65 69 72 20 76 65 72 79 | s.user.``vyos``.using.their.very |
| 5bd20 | 20 6f 77 6e 20 6b 65 79 73 2e 20 60 55 73 65 72 31 60 20 69 73 20 72 65 73 74 72 69 63 74 65 64 | .own.keys..`User1`.is.restricted |
| 5bd40 | 20 74 6f 20 6f 6e 6c 79 20 62 65 20 61 62 6c 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 66 72 6f 6d | .to.only.be.able.to.connect.from |
| 5bd60 | 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 73 73 2e 20 49 6e 20 61 64 64 69 74 69 6f | .a.single.IP.address..In.additio |
| 5bd80 | 6e 20 69 66 20 70 61 73 73 77 6f 72 64 20 62 61 73 65 20 6c 6f 67 69 6e 20 69 73 20 77 61 6e 74 | n.if.password.base.login.is.want |
| 5bda0 | 65 64 20 66 6f 72 20 74 68 65 20 60 60 76 79 6f 73 60 60 20 75 73 65 72 20 61 20 32 46 41 2f 4d | ed.for.the.``vyos``.user.a.2FA/M |
| 5bdc0 | 46 41 20 6b 65 79 63 6f 64 65 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 61 64 64 69 74 69 | FA.keycode.is.required.in.additi |
| 5bde0 | 6f 6e 20 74 6f 20 74 68 65 20 70 61 73 73 77 6f 72 64 2e 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f | on.to.the.password..In.the.follo |
| 5be00 | 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 74 68 65 20 49 50 73 20 66 6f 72 20 74 68 65 20 72 65 | wing.example,.the.IPs.for.the.re |
| 5be20 | 6d 6f 74 65 20 63 6c 69 65 6e 74 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 | mote.clients.are.defined.in.the. |
| 5be40 | 70 65 65 72 73 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 70 65 65 72 73 20 74 6f 20 | peers..This.allows.the.peers.to. |
| 5be60 | 69 6e 74 65 72 61 63 74 20 77 69 74 68 20 6f 6e 65 20 61 6e 6f 74 68 65 72 2e 20 49 6e 20 63 6f | interact.with.one.another..In.co |
| 5be80 | 6d 70 61 72 69 73 6f 6e 20 74 6f 20 74 68 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 65 78 61 | mparison.to.the.site-to-site.exa |
| 5bea0 | 6d 70 6c 65 20 74 68 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 6b 65 65 70 61 6c 69 76 65 60 | mple.the.``persistent-keepalive` |
| 5bec0 | 60 20 66 6c 61 67 20 69 73 20 73 65 74 20 74 6f 20 31 35 20 73 65 63 6f 6e 64 73 20 74 6f 20 61 | `.flag.is.set.to.15.seconds.to.a |
| 5bee0 | 73 73 75 72 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6b 65 70 74 20 61 6c 69 | ssure.the.connection.is.kept.ali |
| 5bf00 | 76 65 2e 20 54 68 69 73 20 69 73 20 6d 61 69 6e 6c 79 20 72 65 6c 65 76 61 6e 74 20 69 66 20 6f | ve..This.is.mainly.relevant.if.o |
| 5bf20 | 6e 65 20 6f 66 20 74 68 65 20 70 65 65 72 73 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 20 61 6e | ne.of.the.peers.is.behind.NAT.an |
| 5bf40 | 64 20 63 61 6e 27 74 20 62 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 69 66 20 74 68 65 20 63 | d.can't.be.connected.to.if.the.c |
| 5bf60 | 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6c 6f 73 74 2e 20 54 6f 20 62 65 20 65 66 66 65 63 74 69 | onnection.is.lost..To.be.effecti |
| 5bf80 | 76 65 20 74 68 69 73 20 76 61 6c 75 65 20 6e 65 65 64 73 20 74 6f 20 62 65 20 6c 6f 77 65 72 20 | ve.this.value.needs.to.be.lower. |
| 5bfa0 | 74 68 61 6e 20 74 68 65 20 55 44 50 20 74 69 6d 65 6f 75 74 2e 00 49 6e 20 74 68 65 20 66 6f 6c | than.the.UDP.timeout..In.the.fol |
| 5bfc0 | 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 77 68 65 6e 20 56 4c 41 4e 39 20 74 72 61 6e 73 | lowing.example,.when.VLAN9.trans |
| 5bfe0 | 69 74 69 6f 6e 73 2c 20 56 4c 41 4e 32 30 20 77 69 6c 6c 20 61 6c 73 6f 20 74 72 61 6e 73 69 74 | itions,.VLAN20.will.also.transit |
| 5c000 | 69 6f 6e 3a 00 49 6e 20 74 68 65 20 66 75 74 75 72 65 20 74 68 69 73 20 69 73 20 65 78 70 65 63 | ion:.In.the.future.this.is.expec |
| 5c020 | 74 65 64 20 74 6f 20 62 65 20 61 20 76 65 72 79 20 75 73 65 66 75 6c 20 70 72 6f 74 6f 63 6f 6c | ted.to.be.a.very.useful.protocol |
| 5c040 | 20 28 74 68 6f 75 67 68 20 74 68 65 72 65 20 61 72 65 20 60 6f 74 68 65 72 20 70 72 6f 70 6f 73 | .(though.there.are.`other.propos |
| 5c060 | 61 6c 73 60 5f 29 2e 00 49 6e 20 74 68 65 20 6e 65 78 74 20 65 78 61 6d 70 6c 65 20 61 6c 6c 20 | als`_)..In.the.next.example.all. |
| 5c080 | 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 60 60 32 30 33 2e 30 2e 31 31 33 2e | traffic.destined.to.``203.0.113. |
| 5c0a0 | 31 60 60 20 61 6e 64 20 70 6f 72 74 20 60 60 38 32 38 30 60 60 20 70 72 6f 74 6f 63 6f 6c 20 54 | 1``.and.port.``8280``.protocol.T |
| 5c0c0 | 43 50 20 69 73 20 62 61 6c 61 6e 63 65 64 20 62 65 74 77 65 65 6e 20 32 20 72 65 61 6c 20 73 65 | CP.is.balanced.between.2.real.se |
| 5c0e0 | 72 76 65 72 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 31 60 60 20 61 6e 64 20 60 60 31 39 32 2e 30 | rvers.``192.0.2.11``.and.``192.0 |
| 5c100 | 2e 32 2e 31 32 60 60 20 74 6f 20 70 6f 72 74 20 60 60 38 30 60 60 00 49 6e 20 74 68 65 20 70 61 | .2.12``.to.port.``80``.In.the.pa |
| 5c120 | 73 74 20 28 56 79 4f 53 20 31 2e 31 29 20 75 73 65 64 20 61 20 67 61 74 65 77 61 79 2d 61 64 64 | st.(VyOS.1.1).used.a.gateway-add |
| 5c140 | 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 65 20 73 79 73 74 65 6d | ress.configured.under.the.system |
| 5c160 | 20 74 72 65 65 20 28 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 67 61 74 65 77 | .tree.(:cfgcmd:`set.system.gatew |
| 5c180 | 61 79 2d 61 64 64 72 65 73 73 20 3c 61 64 64 72 65 73 73 3e 60 29 2c 20 74 68 69 73 20 69 73 20 | ay-address.<address>`),.this.is. |
| 5c1a0 | 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 20 61 6e 64 20 65 78 69 73 74 69 6e 67 | no.longer.supported.and.existing |
| 5c1c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 72 65 20 6d 69 67 72 61 74 65 64 20 74 6f 20 | .configurations.are.migrated.to. |
| 5c1e0 | 74 68 65 20 6e 65 77 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 2e 00 49 6e 20 74 68 69 73 20 63 6f 6d | the.new.CLI.command..In.this.com |
| 5c200 | 6d 61 6e 64 20 74 72 65 65 2c 20 61 6c 6c 20 68 61 72 64 77 61 72 65 20 61 63 63 65 6c 65 72 61 | mand.tree,.all.hardware.accelera |
| 5c220 | 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 6c 65 64 2e 20 41 74 | tion.options.will.be.handled..At |
| 5c240 | 20 74 68 65 20 6d 6f 6d 65 6e 74 20 6f 6e 6c 79 20 60 49 6e 74 65 6c c2 ae 20 51 41 54 60 5f 20 | .the.moment.only.`Intel...QAT`_. |
| 5c260 | 69 73 20 73 75 70 70 6f 72 74 65 64 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 61 6c 6c | is.supported.In.this.example.all |
| 5c280 | 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 70 6f 72 74 73 20 22 38 30 2c 20 | .traffic.destined.to.ports."80,. |
| 5c2a0 | 32 32 32 32 2c 20 38 38 38 38 22 20 70 72 6f 74 6f 63 6f 6c 20 54 43 50 20 6d 61 72 6b 73 20 74 | 2222,.8888".protocol.TCP.marks.t |
| 5c2c0 | 6f 20 66 77 6d 61 72 6b 20 22 31 31 31 22 20 61 6e 64 20 62 61 6c 61 6e 63 65 64 20 62 65 74 77 | o.fwmark."111".and.balanced.betw |
| 5c2e0 | 65 65 6e 20 32 20 72 65 61 6c 20 73 65 72 76 65 72 73 2e 20 50 6f 72 74 20 22 30 22 20 69 73 20 | een.2.real.servers..Port."0".is. |
| 5c300 | 72 65 71 75 69 72 65 64 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 70 6f 72 74 73 20 61 72 65 20 75 | required.if.multiple.ports.are.u |
| 5c320 | 73 65 64 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 69 6d 61 67 65 2c 20 61 20 73 69 | sed..In.this.example.image,.a.si |
| 5c340 | 6d 70 6c 69 66 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 20 69 73 20 73 68 6f 77 6e 20 74 6f | mplifed.traffic.flow.is.shown.to |
| 5c360 | 20 68 65 6c 70 20 70 72 6f 76 69 64 65 20 63 6f 6e 74 65 78 74 20 74 6f 20 74 68 65 20 74 65 72 | .help.provide.context.to.the.ter |
| 5c380 | 6d 73 20 6f 66 20 60 66 6f 72 77 61 72 64 60 2c 20 60 69 6e 70 75 74 60 2c 20 61 6e 64 20 60 6f | ms.of.`forward`,.`input`,.and.`o |
| 5c3a0 | 75 74 70 75 74 60 20 66 6f 72 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 | utput`.for.the.new.firewall.CLI. |
| 5c3c0 | 66 6f 72 6d 61 74 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 77 65 20 77 69 6c 6c 20 | format..In.this.example.we.will. |
| 5c3e0 | 75 73 65 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 70 6c 69 63 61 74 65 64 20 63 61 73 65 3a 20 61 | use.the.most.complicated.case:.a |
| 5c400 | 20 73 65 74 75 70 20 77 68 65 72 65 20 65 61 63 68 20 63 6c 69 65 6e 74 20 69 73 20 61 20 72 6f | .setup.where.each.client.is.a.ro |
| 5c420 | 75 74 65 72 20 74 68 61 74 20 68 61 73 20 69 74 73 20 6f 77 6e 20 73 75 62 6e 65 74 20 28 74 68 | uter.that.has.its.own.subnet.(th |
| 5c440 | 69 6e 6b 20 48 51 20 61 6e 64 20 62 72 61 6e 63 68 20 6f 66 66 69 63 65 73 29 2c 20 73 69 6e 63 | ink.HQ.and.branch.offices),.sinc |
| 5c460 | 65 20 73 69 6d 70 6c 65 72 20 73 65 74 75 70 73 20 61 72 65 20 73 75 62 73 65 74 73 20 6f 66 20 | e.simpler.setups.are.subsets.of. |
| 5c480 | 69 74 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 73 6f 6d 65 20 2a 4f 70 65 6e 4e | it..In.this.example,.some.*OpenN |
| 5c4a0 | 49 43 2a 20 73 65 72 76 65 72 73 20 61 72 65 20 75 73 65 64 2c 20 74 77 6f 20 49 50 76 34 20 61 | IC*.servers.are.used,.two.IPv4.a |
| 5c4c0 | 64 64 72 65 73 73 65 73 20 61 6e 64 20 74 77 6f 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 3a | ddresses.and.two.IPv6.addresses: |
| 5c4e0 | 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 63 61 6e 20 6f 62 73 65 72 76 65 | .In.this.example,.we.can.observe |
| 5c500 | 20 74 68 61 74 20 64 69 66 66 65 72 65 6e 74 20 44 53 43 50 20 63 72 69 74 65 72 69 61 20 61 72 | .that.different.DSCP.criteria.ar |
| 5c520 | 65 20 64 65 66 69 6e 65 64 20 62 61 73 65 64 20 6f 6e 20 6f 75 72 20 51 6f 53 20 63 6f 6e 66 69 | e.defined.based.on.our.QoS.confi |
| 5c540 | 67 75 72 61 74 69 6f 6e 20 77 69 74 68 69 6e 20 74 68 65 20 73 61 6d 65 20 70 6f 6c 69 63 79 20 | guration.within.the.same.policy. |
| 5c560 | 67 72 6f 75 70 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 75 73 65 20 2a | group..In.this.example,.we.use.* |
| 5c580 | 2a 6d 61 73 71 75 65 72 61 64 65 2a 2a 20 61 73 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e | *masquerade**.as.the.translation |
| 5c5a0 | 20 61 64 64 72 65 73 73 20 69 6e 73 74 65 61 64 20 6f 66 20 61 6e 20 49 50 20 61 64 64 72 65 73 | .address.instead.of.an.IP.addres |
| 5c5c0 | 73 2e 20 54 68 65 20 2a 2a 6d 61 73 71 75 65 72 61 64 65 2a 2a 20 74 61 72 67 65 74 20 69 73 20 | s..The.**masquerade**.target.is. |
| 5c5e0 | 65 66 66 65 63 74 69 76 65 6c 79 20 61 6e 20 61 6c 69 61 73 20 74 6f 20 73 61 79 20 22 75 73 65 | effectively.an.alias.to.say."use |
| 5c600 | 20 77 68 61 74 65 76 65 72 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 6f 6e 20 74 68 65 20 6f | .whatever.IP.address.is.on.the.o |
| 5c620 | 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 22 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 | utgoing.interface",.rather.than. |
| 5c640 | 61 20 73 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 49 50 20 61 64 64 72 65 | a.statically.configured.IP.addre |
| 5c660 | 73 73 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 20 75 73 65 20 44 48 | ss..This.is.useful.if.you.use.DH |
| 5c680 | 43 50 20 66 6f 72 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 61 | CP.for.your.outgoing.interface.a |
| 5c6a0 | 6e 64 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 77 68 61 74 20 74 68 65 20 65 78 74 65 72 6e 61 6c | nd.do.not.know.what.the.external |
| 5c6c0 | 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c | .address.will.be..In.this.exampl |
| 5c6e0 | 65 2c 20 77 65 20 77 69 6c 6c 20 62 65 20 75 73 69 6e 67 20 74 68 65 20 65 78 61 6d 70 6c 65 20 | e,.we.will.be.using.the.example. |
| 5c700 | 51 75 69 63 6b 20 53 74 61 72 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 20 | Quick.Start.configuration.above. |
| 5c720 | 61 73 20 61 20 73 74 61 72 74 69 6e 67 20 70 6f 69 6e 74 2e 00 49 6e 20 74 68 69 73 20 6d 65 74 | as.a.starting.point..In.this.met |
| 5c740 | 68 6f 64 2c 20 74 68 65 20 44 53 4c 20 4d 6f 64 65 6d 2f 52 6f 75 74 65 72 20 63 6f 6e 6e 65 63 | hod,.the.DSL.Modem/Router.connec |
| 5c760 | 74 73 20 74 6f 20 74 68 65 20 49 53 50 20 66 6f 72 20 79 6f 75 20 77 69 74 68 20 79 6f 75 72 20 | ts.to.the.ISP.for.you.with.your. |
| 5c780 | 63 72 65 64 65 6e 74 69 61 6c 73 20 70 72 65 70 72 6f 67 72 61 6d 6d 65 64 20 69 6e 74 6f 20 74 | credentials.preprogrammed.into.t |
| 5c7a0 | 68 65 20 64 65 76 69 63 65 2e 20 54 68 69 73 20 67 69 76 65 73 20 79 6f 75 20 61 6e 20 3a 72 66 | he.device..This.gives.you.an.:rf |
| 5c7c0 | 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 2c 20 73 75 63 68 20 61 73 20 60 60 31 39 32 2e | c:`1918`.address,.such.as.``192. |
| 5c7e0 | 31 36 38 2e 31 2e 30 2f 32 34 60 60 20 62 79 20 64 65 66 61 75 6c 74 2e 00 49 6e 20 74 68 69 73 | 168.1.0/24``.by.default..In.this |
| 5c800 | 20 73 63 65 6e 61 72 69 6f 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 | .scenario:.In.this.section.there |
| 5c820 | 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 | 's.useful.information.of.all.fir |
| 5c840 | 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 | ewall.configuration.that.can.be. |
| 5c860 | 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 | done.regarding.IPv4,.and.appropi |
| 5c880 | 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 | ate.op-mode.commands..Configurat |
| 5c8a0 | 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 | ion.commands.covered.in.this.sec |
| 5c8c0 | 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 | tion:.In.this.section.there's.us |
| 5c8e0 | 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c | eful.information.of.all.firewall |
| 5c900 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 | .configuration.that.can.be.done. |
| 5c920 | 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 | regarding.IPv4,.and.appropriate. |
| 5c940 | 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | op-mode.commands..Configuration. |
| 5c960 | 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e | commands.covered.in.this.section |
| 5c980 | 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c | :.In.this.section.there's.useful |
| 5c9a0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e | .information.of.all.firewall.con |
| 5c9c0 | 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 | figuration.that.can.be.done.rega |
| 5c9e0 | 72 64 69 6e 67 20 49 50 76 36 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 6f 70 2d 6d 6f | rding.IPv6,.and.appropiate.op-mo |
| 5ca00 | 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 | de.commands..Configuration.comma |
| 5ca20 | 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 | nds.covered.in.this.section:.In. |
| 5ca40 | 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f | this.section.there's.useful.info |
| 5ca60 | 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 | rmation.of.all.firewall.configur |
| 5ca80 | 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 | ation.that.can.be.done.regarding |
| 5caa0 | 20 49 50 76 36 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 | .IPv6,.and.appropriate.op-mode.c |
| 5cac0 | 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 | ommands..Configuration.commands. |
| 5cae0 | 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 | covered.in.this.section:.In.this |
| 5cb00 | 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 | .section.there's.useful.informat |
| 5cb20 | 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ion.of.all.firewall.configuratio |
| 5cb40 | 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 | n.that.can.be.done.regarding.bri |
| 5cb60 | 64 67 65 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d | dge,.and.appropiate.op-mode.comm |
| 5cb80 | 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 | ands..Configuration.commands.cov |
| 5cba0 | 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 | ered.in.this.section:.In.this.se |
| 5cbc0 | 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | ction.there's.useful.information |
| 5cbe0 | 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 | .of.all.firewall.configuration.t |
| 5cc00 | 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 64 67 65 | hat.can.be.done.regarding.bridge |
| 5cc20 | 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e | ,.and.appropriate.op-mode.comman |
| 5cc40 | 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 | ds..Configuration.commands.cover |
| 5cc60 | 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 | ed.in.this.section:.In.this.sect |
| 5cc80 | 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f | ion.there's.useful.information.o |
| 5cca0 | 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 | f.all.firewall.configuration.tha |
| 5ccc0 | 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c | t.can.be.done.regarding.flowtabl |
| 5cce0 | 65 73 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 | es.In.this.section.there's.usefu |
| 5cd00 | 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f | l.information.of.all.firewall.co |
| 5cd20 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 | nfiguration.that.can.be.done.reg |
| 5cd40 | 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 73 2e 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 | arding.flowtables..In.this.secti |
| 5cd60 | 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 | on.there's.useful.information.of |
| 5cd80 | 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 | .all.firewall.configuration.that |
| 5cda0 | 20 69 73 20 6e 65 65 64 65 64 20 66 6f 72 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 | .is.needed.for.zone-based.firewa |
| 5cdc0 | 6c 6c 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 | ll..Configuration.commands.cover |
| 5cde0 | 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 | ed.in.this.section:.In.this.sect |
| 5ce00 | 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f | ion.there's.useful.information.o |
| 5ce20 | 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 | n.all.firewall.configuration.tha |
| 5ce40 | 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e | t.can.be.done.regarding.IPv4,.an |
| 5ce60 | 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 | d.appropriate.op-mode.commands.. |
| 5ce80 | 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 | Configuration.commands.covered.i |
| 5cea0 | 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 | n.this.section:.In.this.section. |
| 5cec0 | 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c | there's.useful.information.on.al |
| 5cee0 | 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 | l.firewall.configuration.that.ca |
| 5cf00 | 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 36 2c 20 61 6e 64 20 61 70 | n.be.done.regarding.IPv6,.and.ap |
| 5cf20 | 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 | propriate.op-mode.commands..Conf |
| 5cf40 | 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 | iguration.commands.covered.in.th |
| 5cf60 | 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 | is.section:.In.this.section.ther |
| 5cf80 | 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 | e's.useful.information.on.all.fi |
| 5cfa0 | 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 | rewall.configuration.that.can.be |
| 5cfc0 | 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 64 67 65 73 2c 20 61 6e 64 20 61 70 70 | .done.regarding.bridges,.and.app |
| 5cfe0 | 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 | ropriate.op-mode.commands..Confi |
| 5d000 | 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 | guration.commands.covered.in.thi |
| 5d020 | 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 | s.section:.In.this.section.there |
| 5d040 | 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 | 's.useful.information.on.all.fir |
| 5d060 | 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 | ewall.configuration.that.can.be. |
| 5d080 | 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 73 2e 00 49 6e 20 74 68 | done.regarding.flowtables..In.th |
| 5d0a0 | 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d | is.section.there's.useful.inform |
| 5d0c0 | 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 | ation.on.all.firewall.configurat |
| 5d0e0 | 69 6f 6e 20 74 68 61 74 20 69 73 20 6e 65 65 64 65 64 20 66 6f 72 20 74 68 65 20 7a 6f 6e 65 2d | ion.that.is.needed.for.the.zone- |
| 5d100 | 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f | based.firewall..Configuration.co |
| 5d120 | 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 | mmands.covered.in.this.section:. |
| 5d140 | 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 66 69 6e 64 20 61 6c 6c | In.this.section.you.can.find.all |
| 5d160 | 20 75 73 65 66 75 6c 20 66 69 72 65 77 61 6c 6c 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 | .useful.firewall.op-mode.command |
| 5d180 | 73 2e 00 49 6e 20 74 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 20 6d 6f 64 65 2c 20 61 6c | s..In.transparent.proxy.mode,.al |
| 5d1a0 | 6c 20 74 72 61 66 66 69 63 20 61 72 72 69 76 69 6e 67 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e | l.traffic.arriving.on.port.80.an |
| 5d1c0 | 64 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 69 73 20 61 | d.destined.for.the.Internet.is.a |
| 5d1e0 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 66 6f 72 77 61 72 64 65 64 20 74 68 72 6f 75 67 68 20 74 | utomatically.forwarded.through.t |
| 5d200 | 68 65 20 70 72 6f 78 79 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 69 6d 6d 65 64 69 61 74 65 20 | he.proxy..This.allows.immediate. |
| 5d220 | 70 72 6f 78 79 20 66 6f 72 77 61 72 64 69 6e 67 20 77 69 74 68 6f 75 74 20 63 6f 6e 66 69 67 75 | proxy.forwarding.without.configu |
| 5d240 | 72 69 6e 67 20 63 6c 69 65 6e 74 20 62 72 6f 77 73 65 72 73 2e 00 49 6e 20 74 79 70 69 63 61 6c | ring.client.browsers..In.typical |
| 5d260 | 20 75 73 65 73 20 6f 66 20 53 4e 4d 50 2c 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 61 64 6d 69 6e | .uses.of.SNMP,.one.or.more.admin |
| 5d280 | 69 73 74 72 61 74 69 76 65 20 63 6f 6d 70 75 74 65 72 73 20 63 61 6c 6c 65 64 20 6d 61 6e 61 67 | istrative.computers.called.manag |
| 5d2a0 | 65 72 73 20 68 61 76 65 20 74 68 65 20 74 61 73 6b 20 6f 66 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 | ers.have.the.task.of.monitoring. |
| 5d2c0 | 6f 72 20 6d 61 6e 61 67 69 6e 67 20 61 20 67 72 6f 75 70 20 6f 66 20 68 6f 73 74 73 20 6f 72 20 | or.managing.a.group.of.hosts.or. |
| 5d2e0 | 64 65 76 69 63 65 73 20 6f 6e 20 61 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 2e 20 45 | devices.on.a.computer.network..E |
| 5d300 | 61 63 68 20 6d 61 6e 61 67 65 64 20 73 79 73 74 65 6d 20 65 78 65 63 75 74 65 73 20 61 20 73 6f | ach.managed.system.executes.a.so |
| 5d320 | 66 74 77 61 72 65 20 63 6f 6d 70 6f 6e 65 6e 74 20 63 61 6c 6c 65 64 20 61 6e 20 61 67 65 6e 74 | ftware.component.called.an.agent |
| 5d340 | 20 77 68 69 63 68 20 72 65 70 6f 72 74 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 76 69 61 20 53 | .which.reports.information.via.S |
| 5d360 | 4e 4d 50 20 74 6f 20 74 68 65 20 6d 61 6e 61 67 65 72 2e 00 49 6e 20 7a 6f 6e 65 2d 62 61 73 65 | NMP.to.the.manager..In.zone-base |
| 5d380 | 64 20 70 6f 6c 69 63 79 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 73 73 69 67 6e 65 | d.policy,.interfaces.are.assigne |
| 5d3a0 | 64 20 74 6f 20 7a 6f 6e 65 73 2c 20 61 6e 64 20 69 6e 73 70 65 63 74 69 6f 6e 20 70 6f 6c 69 63 | d.to.zones,.and.inspection.polic |
| 5d3c0 | 79 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 72 61 66 66 69 63 20 6d 6f 76 69 6e 67 20 62 | y.is.applied.to.traffic.moving.b |
| 5d3e0 | 65 74 77 65 65 6e 20 74 68 65 20 7a 6f 6e 65 73 20 61 6e 64 20 61 63 74 65 64 20 6f 6e 20 61 63 | etween.the.zones.and.acted.on.ac |
| 5d400 | 63 6f 72 64 69 6e 67 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 20 41 20 5a 6f 6e | cording.to.firewall.rules..A.Zon |
| 5d420 | 65 20 69 73 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 | e.is.a.group.of.interfaces.that. |
| 5d440 | 68 61 76 65 20 73 69 6d 69 6c 61 72 20 66 75 6e 63 74 69 6f 6e 73 20 6f 72 20 66 65 61 74 75 72 | have.similar.functions.or.featur |
| 5d460 | 65 73 2e 20 49 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 73 65 63 75 72 69 74 79 20 | es..It.establishes.the.security. |
| 5d480 | 62 6f 72 64 65 72 73 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 20 41 20 7a 6f 6e 65 20 64 65 66 | borders.of.a.network..A.zone.def |
| 5d4a0 | 69 6e 65 73 20 61 20 62 6f 75 6e 64 61 72 79 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 | ines.a.boundary.where.traffic.is |
| 5d4c0 | 20 73 75 62 6a 65 63 74 65 64 20 74 6f 20 70 6f 6c 69 63 79 20 72 65 73 74 72 69 63 74 69 6f 6e | .subjected.to.policy.restriction |
| 5d4e0 | 73 20 61 73 20 69 74 20 63 72 6f 73 73 65 73 20 74 6f 20 61 6e 6f 74 68 65 72 20 72 65 67 69 6f | s.as.it.crosses.to.another.regio |
| 5d500 | 6e 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 00 49 6e 20 7a 6f 6e 65 2d 62 61 73 65 64 20 70 6f | n.of.a.network..In.zone-based.po |
| 5d520 | 6c 69 63 79 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 61 73 73 69 67 6e 65 64 20 74 6f | licy,.interfaces.are.assigned.to |
| 5d540 | 20 7a 6f 6e 65 73 2c 20 61 6e 64 20 69 6e 73 70 65 63 74 69 6f 6e 20 70 6f 6c 69 63 79 20 69 73 | .zones,.and.inspection.policy.is |
| 5d560 | 20 61 70 70 6c 69 65 64 20 74 6f 20 74 72 61 66 66 69 63 20 6d 6f 76 69 6e 67 20 62 65 74 77 65 | .applied.to.traffic.moving.betwe |
| 5d580 | 65 6e 20 74 68 65 20 7a 6f 6e 65 73 20 61 6e 64 20 61 63 74 65 64 20 6f 6e 20 61 63 63 6f 72 64 | en.the.zones.and.acted.on.accord |
| 5d5a0 | 69 6e 67 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 20 41 20 7a 6f 6e 65 20 69 73 | ing.to.firewall.rules..A.zone.is |
| 5d5c0 | 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 68 61 76 65 | .a.group.of.interfaces.that.have |
| 5d5e0 | 20 73 69 6d 69 6c 61 72 20 66 75 6e 63 74 69 6f 6e 73 20 6f 72 20 66 65 61 74 75 72 65 73 2e 20 | .similar.functions.or.features.. |
| 5d600 | 49 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 73 65 63 75 72 69 74 79 20 62 6f 72 64 | It.establishes.the.security.bord |
| 5d620 | 65 72 73 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 20 41 20 7a 6f 6e 65 20 64 65 66 69 6e 65 73 | ers.of.a.network..A.zone.defines |
| 5d640 | 20 61 20 62 6f 75 6e 64 61 72 79 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 69 73 20 73 75 62 | .a.boundary.where.traffic.is.sub |
| 5d660 | 6a 65 63 74 65 64 20 74 6f 20 70 6f 6c 69 63 79 20 72 65 73 74 72 69 63 74 69 6f 6e 73 20 61 73 | jected.to.policy.restrictions.as |
| 5d680 | 20 69 74 20 63 72 6f 73 73 65 73 20 74 6f 20 61 6e 6f 74 68 65 72 20 72 65 67 69 6f 6e 20 6f 66 | .it.crosses.to.another.region.of |
| 5d6a0 | 20 61 20 6e 65 74 77 6f 72 6b 2e 00 49 6e 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 | .a.network..Inbound.connections. |
| 5d6c0 | 74 6f 20 61 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 69 6d 70 72 6f 70 | to.a.WAN.interface.can.be.improp |
| 5d6e0 | 65 72 6c 79 20 68 61 6e 64 6c 65 64 20 77 68 65 6e 20 74 68 65 20 72 65 70 6c 79 20 69 73 20 73 | erly.handled.when.the.reply.is.s |
| 5d700 | 65 6e 74 20 62 61 63 6b 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 49 6e 63 6f 6d 69 6e 67 | ent.back.to.the.client..Incoming |
| 5d720 | 20 74 72 61 66 66 69 63 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 63 75 72 72 | .traffic.is.received.by.the.curr |
| 5d740 | 65 6e 74 20 73 6c 61 76 65 2e 20 49 66 20 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 73 6c 61 76 | ent.slave..If.the.receiving.slav |
| 5d760 | 65 20 66 61 69 6c 73 2c 20 61 6e 6f 74 68 65 72 20 73 6c 61 76 65 20 74 61 6b 65 73 20 6f 76 65 | e.fails,.another.slave.takes.ove |
| 5d780 | 72 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 66 61 69 6c 65 64 20 | r.the.MAC.address.of.the.failed. |
| 5d7a0 | 72 65 63 65 69 76 69 6e 67 20 73 6c 61 76 65 2e 00 49 6e 63 72 65 61 73 65 20 4d 61 78 69 6d 75 | receiving.slave..Increase.Maximu |
| 5d7c0 | 6d 20 4d 50 44 55 20 6c 65 6e 67 74 68 20 74 6f 20 37 39 39 31 20 6f 72 20 31 31 34 35 34 20 6f | m.MPDU.length.to.7991.or.11454.o |
| 5d7e0 | 63 74 65 74 73 20 28 64 65 66 61 75 6c 74 20 33 38 39 35 20 6f 63 74 65 74 73 29 00 49 6e 64 69 | ctets.(default.3895.octets).Indi |
| 5d800 | 63 61 74 69 6f 6e 00 49 6e 64 69 76 69 64 75 61 6c 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 00 | cation.Individual.Client.Subnet. |
| 5d820 | 49 6e 66 6f 72 6d 20 63 6c 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 44 4e 53 20 73 65 72 76 65 | Inform.client.that.the.DNS.serve |
| 5d840 | 72 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 49 | r.can.be.found.at.`<address>`..I |
| 5d860 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 67 61 74 68 65 72 65 64 20 77 69 74 68 20 4c 4c 44 50 20 69 73 | nformation.gathered.with.LLDP.is |
| 5d880 | 20 73 74 6f 72 65 64 20 69 6e 20 74 68 65 20 64 65 76 69 63 65 20 61 73 20 61 20 3a 61 62 62 72 | .stored.in.the.device.as.a.:abbr |
| 5d8a0 | 3a 60 4d 49 42 20 28 4d 61 6e 61 67 65 6d 65 6e 74 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 44 61 | :`MIB.(Management.Information.Da |
| 5d8c0 | 74 61 62 61 73 65 29 60 20 61 6e 64 20 63 61 6e 20 62 65 20 71 75 65 72 69 65 64 20 77 69 74 68 | tabase)`.and.can.be.queried.with |
| 5d8e0 | 20 3a 61 62 62 72 3a 60 53 4e 4d 50 20 28 53 69 6d 70 6c 65 20 4e 65 74 77 6f 72 6b 20 4d 61 6e | .:abbr:`SNMP.(Simple.Network.Man |
| 5d900 | 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 61 73 20 73 70 65 63 69 66 69 65 64 20 | agement.Protocol)`.as.specified. |
| 5d920 | 69 6e 20 3a 72 66 63 3a 60 32 39 32 32 60 2e 20 54 68 65 20 74 6f 70 6f 6c 6f 67 79 20 6f 66 20 | in.:rfc:`2922`..The.topology.of. |
| 5d940 | 61 6e 20 4c 4c 44 50 2d 65 6e 61 62 6c 65 64 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 62 65 20 64 | an.LLDP-enabled.network.can.be.d |
| 5d960 | 69 73 63 6f 76 65 72 65 64 20 62 79 20 63 72 61 77 6c 69 6e 67 20 74 68 65 20 68 6f 73 74 73 20 | iscovered.by.crawling.the.hosts. |
| 5d980 | 61 6e 64 20 71 75 65 72 79 69 6e 67 20 74 68 69 73 20 64 61 74 61 62 61 73 65 2e 20 49 6e 66 6f | and.querying.this.database..Info |
| 5d9a0 | 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 6d 61 79 20 62 65 20 72 65 74 72 69 65 76 65 64 20 69 6e | rmation.that.may.be.retrieved.in |
| 5d9c0 | 63 6c 75 64 65 3a 00 49 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 00 49 6e 66 6f 72 6d 61 74 69 6f 6e | clude:.Informational.Information |
| 5d9e0 | 61 6c 20 6d 65 73 73 61 67 65 73 00 49 6e 70 75 74 20 66 72 6f 6d 20 60 65 74 68 30 60 20 6e 65 | al.messages.Input.from.`eth0`.ne |
| 5da00 | 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 00 49 6e 73 70 65 63 74 20 6c 6f 67 73 3a 00 49 6e | twork.interface.Inspect.logs:.In |
| 5da20 | 73 74 61 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 73 6f 66 74 77 61 72 65 20 76 69 61 20 61 70 | stall.the.client.software.via.ap |
| 5da40 | 74 20 61 6e 64 20 65 78 65 63 75 74 65 20 70 70 74 70 73 65 74 75 70 20 74 6f 20 67 65 6e 65 72 | t.and.execute.pptpsetup.to.gener |
| 5da60 | 61 74 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 6e 73 74 65 61 64 20 6f | ate.the.configuration..Instead.o |
| 5da80 | 66 20 61 20 6e 75 6d 65 72 69 63 61 6c 20 4d 53 53 20 76 61 6c 75 65 20 60 63 6c 61 6d 70 2d 6d | f.a.numerical.MSS.value.`clamp-m |
| 5daa0 | 73 73 2d 74 6f 2d 70 6d 74 75 60 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 6f 6d | ss-to-pmtu`.can.be.used.to.autom |
| 5dac0 | 61 74 69 63 61 6c 6c 79 20 73 65 74 20 74 68 65 20 70 72 6f 70 65 72 20 76 61 6c 75 65 2e 00 49 | atically.set.the.proper.value..I |
| 5dae0 | 6e 73 74 65 61 64 20 6f 66 20 70 61 73 73 77 6f 72 64 20 6f 6e 6c 79 20 61 75 74 68 65 6e 74 69 | nstead.of.password.only.authenti |
| 5db00 | 63 61 74 69 6f 6e 2c 20 32 46 41 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 | cation,.2FA.password.authenticat |
| 5db20 | 69 6f 6e 20 2b 20 4f 54 50 20 6b 65 79 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 41 6c 74 65 72 | ion.+.OTP.key.can.be.used..Alter |
| 5db40 | 6e 61 74 69 76 65 6c 79 2c 20 4f 54 50 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 6c | natively,.OTP.authentication.onl |
| 5db60 | 79 2c 20 77 69 74 68 6f 75 74 20 61 20 70 61 73 73 77 6f 72 64 2c 20 63 61 6e 20 62 65 20 75 73 | y,.without.a.password,.can.be.us |
| 5db80 | 65 64 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 61 6e 20 4f 54 50 20 63 6f 6e 66 69 67 75 72 61 | ed..To.do.this,.an.OTP.configura |
| 5dba0 | 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 | tion.must.be.added.to.the.config |
| 5dbc0 | 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 3a 00 49 6e 73 74 65 61 64 20 6f 66 20 73 65 6e 64 69 6e | uration.above:.Instead.of.sendin |
| 5dbe0 | 67 20 74 68 65 20 72 65 61 6c 20 73 79 73 74 65 6d 20 68 6f 73 74 6e 61 6d 65 20 74 6f 20 74 68 | g.the.real.system.hostname.to.th |
| 5dc00 | 65 20 44 48 43 50 20 73 65 72 76 65 72 2c 20 6f 76 65 72 77 72 69 74 65 20 74 68 65 20 68 6f 73 | e.DHCP.server,.overwrite.the.hos |
| 5dc20 | 74 2d 6e 61 6d 65 20 77 69 74 68 20 74 68 69 73 20 67 69 76 65 6e 2d 76 61 6c 75 65 2e 00 49 6e | t-name.with.this.given-value..In |
| 5dc40 | 73 74 65 61 64 2c 20 6d 65 6d 62 65 72 73 20 6f 66 20 74 68 65 73 65 20 67 72 6f 75 70 73 20 61 | stead,.members.of.these.groups.a |
| 5dc60 | 72 65 20 61 64 64 65 64 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 75 73 69 6e 67 20 66 69 72 65 77 | re.added.dynamically.using.firew |
| 5dc80 | 61 6c 6c 20 72 75 6c 65 73 2e 00 49 6e 74 65 67 72 69 74 79 20 e2 80 93 20 4d 65 73 73 61 67 65 | all.rules..Integrity.....Message |
| 5dca0 | 20 69 6e 74 65 67 72 69 74 79 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 61 20 70 61 63 6b | .integrity.to.ensure.that.a.pack |
| 5dcc0 | 65 74 20 68 61 73 20 6e 6f 74 20 62 65 65 6e 20 74 61 6d 70 65 72 65 64 20 77 68 69 6c 65 20 69 | et.has.not.been.tampered.while.i |
| 5dce0 | 6e 20 74 72 61 6e 73 69 74 20 69 6e 63 6c 75 64 69 6e 67 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 | n.transit.including.an.optional. |
| 5dd00 | 70 61 63 6b 65 74 20 72 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 20 6d 65 63 68 61 6e 69 | packet.replay.protection.mechani |
| 5dd20 | 73 6d 2e 00 49 6e 74 65 6c 20 41 58 32 30 30 00 49 6e 74 65 6c c2 ae 20 51 41 54 00 49 6e 74 65 | sm..Intel.AX200.Intel...QAT.Inte |
| 5dd40 | 72 63 6f 6e 6e 65 63 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 56 52 46 20 77 69 74 68 20 76 72 66 | rconnect.the.global.VRF.with.vrf |
| 5dd60 | 20 22 72 65 64 22 20 75 73 69 6e 67 20 74 68 65 20 76 65 74 68 31 30 20 3c 2d 3e 20 76 65 74 68 | ."red".using.the.veth10.<->.veth |
| 5dd80 | 20 31 31 20 70 61 69 72 00 49 6e 74 65 72 66 61 63 65 20 2a 2a 65 74 68 30 2a 2a 20 75 73 65 64 | .11.pair.Interface.**eth0**.used |
| 5dda0 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 75 70 73 74 72 65 61 6d 2e 00 49 6e 74 65 72 66 61 | .to.connect.to.upstream..Interfa |
| 5ddc0 | 63 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 6e 74 65 72 66 61 63 65 20 47 72 6f 75 70 | ce.Configuration.Interface.Group |
| 5dde0 | 73 00 49 6e 74 65 72 66 61 63 65 20 52 6f 75 74 65 73 00 49 6e 74 65 72 66 61 63 65 20 60 65 74 | s.Interface.Routes.Interface.`et |
| 5de00 | 68 31 60 20 4c 41 4e 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 2e 20 49 6e 20 6f 72 64 65 72 20 | h1`.LAN.is.behind.NAT..In.order. |
| 5de20 | 74 6f 20 73 75 62 73 63 72 69 62 65 20 60 31 30 2e 30 2e 30 2e 30 2f 32 33 60 20 73 75 62 6e 65 | to.subscribe.`10.0.0.0/23`.subne |
| 5de40 | 74 20 6d 75 6c 74 69 63 61 73 74 20 77 68 69 63 68 20 69 73 20 69 6e 20 60 65 74 68 30 60 20 57 | t.multicast.which.is.in.`eth0`.W |
| 5de60 | 41 4e 20 77 65 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 67 6d 70 2d 70 72 6f | AN.we.need.to.configure.igmp-pro |
| 5de80 | 78 79 2e 00 49 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 6e 74 65 | xy..Interface.configuration.Inte |
| 5dea0 | 72 66 61 63 65 20 66 6f 72 20 44 48 43 50 20 52 65 6c 61 79 20 41 67 65 6e 74 20 74 6f 20 66 6f | rface.for.DHCP.Relay.Agent.to.fo |
| 5dec0 | 72 77 61 72 64 20 72 65 71 75 65 73 74 73 20 6f 75 74 2e 00 49 6e 74 65 72 66 61 63 65 20 66 6f | rward.requests.out..Interface.fo |
| 5dee0 | 72 20 44 48 43 50 20 52 65 6c 61 79 20 41 67 65 6e 74 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 | r.DHCP.Relay.Agent.to.listen.for |
| 5df00 | 20 72 65 71 75 65 73 74 73 2e 00 49 6e 74 65 72 66 61 63 65 20 73 70 65 63 69 66 69 63 20 63 6f | .requests..Interface.specific.co |
| 5df20 | 6d 6d 61 6e 64 73 00 49 6e 74 65 72 66 61 63 65 20 74 6f 20 75 73 65 20 66 6f 72 20 73 79 6e 63 | mmands.Interface.to.use.for.sync |
| 5df40 | 69 6e 67 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 2e 00 49 6e 74 65 72 66 61 63 65 | ing.conntrack.entries..Interface |
| 5df60 | 20 75 73 65 64 20 66 6f 72 20 56 58 4c 41 4e 20 75 6e 64 65 72 6c 61 79 2e 20 54 68 69 73 20 69 | .used.for.VXLAN.underlay..This.i |
| 5df80 | 73 20 6d 61 6e 64 61 74 6f 72 79 20 77 68 65 6e 20 75 73 69 6e 67 20 56 58 4c 41 4e 20 76 69 61 | s.mandatory.when.using.VXLAN.via |
| 5dfa0 | 20 61 20 6d 75 6c 74 69 63 61 73 74 20 6e 65 74 77 6f 72 6b 2e 20 56 58 4c 41 4e 20 74 72 61 66 | .a.multicast.network..VXLAN.traf |
| 5dfc0 | 66 69 63 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 65 6e 74 65 72 20 61 6e 64 20 65 78 69 74 20 74 | fic.will.always.enter.and.exit.t |
| 5dfe0 | 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 49 6e 74 65 72 66 61 63 65 20 77 65 69 67 68 74 00 | his.interface..Interface.weight. |
| 5e000 | 49 6e 74 65 72 66 61 63 65 73 00 49 6e 74 65 72 66 61 63 65 73 20 43 6f 6e 66 69 67 75 72 61 74 | Interfaces.Interfaces.Configurat |
| 5e020 | 69 6f 6e 00 49 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 20 70 61 72 74 69 63 69 70 61 74 65 20 | ion.Interfaces.that.participate. |
| 5e040 | 69 6e 20 74 68 65 20 44 48 43 50 20 72 65 6c 61 79 20 70 72 6f 63 65 73 73 2e 20 49 66 20 74 68 | in.the.DHCP.relay.process..If.th |
| 5e060 | 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 2c 20 61 74 20 6c 65 61 73 74 20 74 77 6f | is.command.is.used,.at.least.two |
| 5e080 | 20 65 6e 74 72 69 65 73 20 6f 66 20 69 74 20 61 72 65 20 72 65 71 75 69 72 65 64 3a 20 6f 6e 65 | .entries.of.it.are.required:.one |
| 5e0a0 | 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 63 61 70 74 75 72 65 73 | .for.the.interface.that.captures |
| 5e0c0 | 20 74 68 65 20 64 68 63 70 2d 72 65 71 75 65 73 74 73 2c 20 61 6e 64 20 6f 6e 65 20 66 6f 72 20 | .the.dhcp-requests,.and.one.for. |
| 5e0e0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 6f 72 77 61 72 64 20 73 75 63 68 20 72 65 | the.interface.to.forward.such.re |
| 5e100 | 71 75 65 73 74 73 2e 20 41 20 77 61 72 6e 69 6e 67 20 6d 65 73 73 61 67 65 20 77 69 6c 6c 20 62 | quests..A.warning.message.will.b |
| 5e120 | 65 20 73 68 6f 77 6e 20 69 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 2c | e.shown.if.this.command.is.used, |
| 5e140 | 20 73 69 6e 63 65 20 6e 65 77 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 73 68 6f 75 6c | .since.new.implementations.shoul |
| 5e160 | 64 20 75 73 65 20 60 60 6c 69 73 74 65 6e 2d 69 6e 74 65 72 66 61 63 65 60 60 20 61 6e 64 20 60 | d.use.``listen-interface``.and.` |
| 5e180 | 60 75 70 73 74 72 65 61 6d 2d 69 6e 74 65 72 66 61 63 65 60 60 2e 00 49 6e 74 65 72 66 61 63 65 | `upstream-interface``..Interface |
| 5e1a0 | 73 20 77 68 6f 73 65 20 44 48 43 50 20 63 6c 69 65 6e 74 20 6e 61 6d 65 73 65 72 76 65 72 73 20 | s.whose.DHCP.client.nameservers. |
| 5e1c0 | 74 6f 20 66 6f 72 77 61 72 64 20 72 65 71 75 65 73 74 73 20 74 6f 2e 00 49 6e 74 65 72 66 61 63 | to.forward.requests.to..Interfac |
| 5e1e0 | 65 73 2c 20 74 68 65 69 72 20 77 65 69 67 68 74 20 61 6e 64 20 74 68 65 20 74 79 70 65 20 6f 66 | es,.their.weight.and.the.type.of |
| 5e200 | 20 74 72 61 66 66 69 63 20 74 6f 20 62 65 20 62 61 6c 61 6e 63 65 64 20 61 72 65 20 64 65 66 69 | .traffic.to.be.balanced.are.defi |
| 5e220 | 6e 65 64 20 69 6e 20 6e 75 6d 62 65 72 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 20 73 | ned.in.numbered.balancing.rule.s |
| 5e240 | 65 74 73 2e 20 54 68 65 20 72 75 6c 65 20 73 65 74 73 20 61 72 65 20 65 78 65 63 75 74 65 64 20 | ets..The.rule.sets.are.executed. |
| 5e260 | 69 6e 20 6e 75 6d 65 72 69 63 61 6c 20 6f 72 64 65 72 20 61 67 61 69 6e 73 74 20 6f 75 74 67 6f | in.numerical.order.against.outgo |
| 5e280 | 69 6e 67 20 70 61 63 6b 65 74 73 2e 20 49 6e 20 63 61 73 65 20 6f 66 20 61 20 6d 61 74 63 68 20 | ing.packets..In.case.of.a.match. |
| 5e2a0 | 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 74 68 72 6f 75 67 68 20 61 6e 20 69 6e | the.packet.is.sent.through.an.in |
| 5e2c0 | 74 65 72 66 61 63 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 6d 61 74 63 68 69 6e | terface.specified.in.the.matchin |
| 5e2e0 | 67 20 72 75 6c 65 2e 20 49 66 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 | g.rule..If.a.packet.doesn't.matc |
| 5e300 | 68 20 61 6e 79 20 72 75 6c 65 20 69 74 20 69 73 20 73 65 6e 74 20 62 79 20 75 73 69 6e 67 20 74 | h.any.rule.it.is.sent.by.using.t |
| 5e320 | 68 65 20 73 79 73 74 65 6d 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 52 75 6c 65 20 6e 75 | he.system.routing.table..Rule.nu |
| 5e340 | 6d 62 65 72 73 20 63 61 6e 27 74 20 62 65 20 63 68 61 6e 67 65 64 2e 00 49 6e 74 65 72 6e 61 6c | mbers.can't.be.changed..Internal |
| 5e360 | 20 61 74 74 61 63 6b 3a 20 61 6e 20 61 74 74 61 63 6b 20 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 | .attack:.an.attack.from.the.inte |
| 5e380 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 28 67 65 6e 65 72 61 74 65 64 20 62 79 20 61 20 63 75 73 | rnal.network.(generated.by.a.cus |
| 5e3a0 | 74 6f 6d 65 72 29 20 74 6f 77 61 72 64 73 20 74 68 65 20 69 6e 74 65 72 6e 65 74 20 69 73 20 69 | tomer).towards.the.internet.is.i |
| 5e3c0 | 64 65 6e 74 69 66 79 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 61 6c 6c 20 63 6f 6e 6e 65 | dentify..In.this.case,.all.conne |
| 5e3e0 | 63 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 69 73 20 70 61 72 74 69 63 75 6c 61 72 20 49 50 2f 43 | ctions.from.this.particular.IP/C |
| 5e400 | 75 73 74 6f 6d 65 72 20 77 69 6c 6c 20 62 65 20 62 6c 6f 63 6b 65 64 2e 00 49 6e 74 65 72 6e 61 | ustomer.will.be.blocked..Interna |
| 5e420 | 6c 6c 79 2c 20 69 6e 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 70 72 6f 63 65 73 73 65 | lly,.in.flow-accounting.processe |
| 5e440 | 73 20 65 78 69 73 74 20 61 20 62 75 66 66 65 72 20 66 6f 72 20 64 61 74 61 20 65 78 63 68 61 6e | s.exist.a.buffer.for.data.exchan |
| 5e460 | 67 69 6e 67 20 62 65 74 77 65 65 6e 20 63 6f 72 65 20 70 72 6f 63 65 73 73 20 61 6e 64 20 70 6c | ging.between.core.process.and.pl |
| 5e480 | 75 67 69 6e 73 20 28 65 61 63 68 20 65 78 70 6f 72 74 20 74 61 72 67 65 74 20 69 73 20 61 20 73 | ugins.(each.export.target.is.a.s |
| 5e4a0 | 65 70 61 72 61 74 65 64 20 70 6c 75 67 69 6e 29 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 68 69 | eparated.plugin)..If.you.have.hi |
| 5e4c0 | 67 68 20 74 72 61 66 66 69 63 20 6c 65 76 65 6c 73 20 6f 72 20 6e 6f 74 65 64 20 73 6f 6d 65 20 | gh.traffic.levels.or.noted.some. |
| 5e4e0 | 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 6d 69 73 73 65 64 20 72 65 63 6f 72 64 73 20 6f 72 20 | problems.with.missed.records.or. |
| 5e500 | 73 74 6f 70 70 69 6e 67 20 65 78 70 6f 72 74 69 6e 67 2c 20 79 6f 75 20 6d 61 79 20 74 72 79 20 | stopping.exporting,.you.may.try. |
| 5e520 | 74 6f 20 69 6e 63 72 65 61 73 65 20 61 20 64 65 66 61 75 6c 74 20 62 75 66 66 65 72 20 73 69 7a | to.increase.a.default.buffer.siz |
| 5e540 | 65 20 28 31 30 20 4d 69 42 29 20 77 69 74 68 20 74 68 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 | e.(10.MiB).with.the.next.command |
| 5e560 | 3a 00 49 6e 74 65 72 6e 65 74 20 4b 65 79 20 45 78 63 68 61 6e 67 65 20 76 65 72 73 69 6f 6e 20 | :.Internet.Key.Exchange.version. |
| 5e580 | 32 20 28 49 4b 45 76 32 29 20 69 73 20 61 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f | 2.(IKEv2).is.a.tunneling.protoco |
| 5e5a0 | 6c 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 73 65 63 2c 20 74 68 61 74 20 65 73 74 61 62 6c 69 73 | l,.based.on.IPsec,.that.establis |
| 5e5c0 | 68 65 73 20 61 20 73 65 63 75 72 65 20 56 50 4e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 62 | hes.a.secure.VPN.communication.b |
| 5e5e0 | 65 74 77 65 65 6e 20 56 50 4e 20 64 65 76 69 63 65 73 2c 20 20 61 6e 64 20 64 65 66 69 6e 65 73 | etween.VPN.devices,..and.defines |
| 5e600 | 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 61 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | .negotiation.and.authentication. |
| 5e620 | 70 72 6f 63 65 73 73 65 73 20 66 6f 72 20 49 50 73 65 63 20 73 65 63 75 72 69 74 79 20 61 73 73 | processes.for.IPsec.security.ass |
| 5e640 | 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 73 29 2e 20 49 74 20 69 73 20 6f 66 74 65 6e 20 6b 6e 6f | ociations.(SAs)..It.is.often.kno |
| 5e660 | 77 6e 20 61 73 20 49 4b 45 76 32 2f 49 50 53 65 63 20 6f 72 20 49 50 53 65 63 20 49 4b 45 76 32 | wn.as.IKEv2/IPSec.or.IPSec.IKEv2 |
| 5e680 | 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 e2 80 94 20 6f 72 20 72 6f 61 64 2d 77 61 72 72 69 | .remote-access.....or.road-warri |
| 5e6a0 | 6f 72 73 20 61 73 20 6f 74 68 65 72 73 20 63 61 6c 6c 20 69 74 2e 00 49 6e 74 65 72 6e 65 74 20 | ors.as.others.call.it..Internet. |
| 5e6c0 | 4b 65 79 20 45 78 63 68 61 6e 67 65 20 76 65 72 73 69 6f 6e 20 32 2c 20 49 4b 45 76 32 20 66 6f | Key.Exchange.version.2,.IKEv2.fo |
| 5e6e0 | 72 20 73 68 6f 72 74 2c 20 69 73 20 61 20 72 65 71 75 65 73 74 2f 72 65 73 70 6f 6e 73 65 20 70 | r.short,.is.a.request/response.p |
| 5e700 | 72 6f 74 6f 63 6f 6c 20 64 65 76 65 6c 6f 70 65 64 20 62 79 20 62 6f 74 68 20 43 69 73 63 6f 20 | rotocol.developed.by.both.Cisco. |
| 5e720 | 61 6e 64 20 4d 69 63 72 6f 73 6f 66 74 2e 20 49 74 20 69 73 20 75 73 65 64 20 74 6f 20 65 73 74 | and.Microsoft..It.is.used.to.est |
| 5e740 | 61 62 6c 69 73 68 20 61 6e 64 20 73 65 63 75 72 65 20 49 50 76 34 2f 49 50 76 36 20 63 6f 6e 6e | ablish.and.secure.IPv4/IPv6.conn |
| 5e760 | 65 63 74 69 6f 6e 73 2c 20 62 65 20 69 74 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 | ections,.be.it.a.site-to-site.VP |
| 5e780 | 4e 20 6f 72 20 66 72 6f 6d 20 61 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 20 63 6f 6e 6e 65 63 74 | N.or.from.a.road-warrior.connect |
| 5e7a0 | 69 6e 67 20 74 6f 20 61 20 68 75 62 20 73 69 74 65 2e 20 49 4b 45 76 32 2c 20 77 68 65 6e 20 72 | ing.to.a.hub.site..IKEv2,.when.r |
| 5e7c0 | 75 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 2c 20 6f 72 20 72 65 | un.in.point-to-multipoint,.or.re |
| 5e7e0 | 6d 6f 74 65 2d 61 63 63 65 73 73 2f 72 6f 61 64 2d 77 61 72 72 69 6f 72 20 6d 6f 64 65 2c 20 73 | mote-access/road-warrior.mode,.s |
| 5e800 | 65 63 75 72 65 73 20 74 68 65 20 73 65 72 76 65 72 2d 73 69 64 65 20 77 69 74 68 20 61 6e 6f 74 | ecures.the.server-side.with.anot |
| 5e820 | 68 65 72 20 6c 61 79 65 72 20 62 79 20 75 73 69 6e 67 20 61 6e 20 78 35 30 39 20 73 69 67 6e 65 | her.layer.by.using.an.x509.signe |
| 5e840 | 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 49 6e 74 65 72 6e 65 74 77 6f | d.server.certificate..Internetwo |
| 5e860 | 72 6b 20 43 6f 6e 74 72 6f 6c 00 49 6e 74 65 72 76 61 6c 00 49 6e 74 65 72 76 61 6c 20 28 69 6e | rk.Control.Interval.Interval.(in |
| 5e880 | 20 73 65 63 6f 6e 64 73 29 20 66 6f 72 20 73 65 6e 64 69 6e 67 20 6d 61 72 6b 20 6d 65 73 73 61 | .seconds).for.sending.mark.messa |
| 5e8a0 | 67 65 73 20 74 6f 20 74 68 65 20 73 79 73 6c 6f 67 20 69 6e 70 75 74 20 74 6f 20 69 6e 64 69 63 | ges.to.the.syslog.input.to.indic |
| 5e8c0 | 61 74 65 20 74 68 61 74 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 73 79 73 74 65 6d 20 69 73 20 66 | ate.that.the.logging.system.is.f |
| 5e8e0 | 75 6e 63 74 69 6f 6e 69 6e 67 2e 00 49 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 | unctioning..Interval.in.millisec |
| 5e900 | 6f 6e 64 73 00 49 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 20 62 65 74 77 65 65 6e | onds.Interval.in.minutes.between |
| 5e920 | 20 75 70 64 61 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 36 30 29 00 49 6e 74 72 6f 64 75 63 69 | .updates.(default:.60).Introduci |
| 5e940 | 6e 67 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 72 65 6d 6f 76 65 73 20 74 68 65 20 | ng.route.reflectors.removes.the. |
| 5e960 | 6e 65 65 64 20 66 6f 72 20 74 68 65 20 66 75 6c 6c 2d 6d 65 73 68 2e 20 57 68 65 6e 20 79 6f 75 | need.for.the.full-mesh..When.you |
| 5e980 | 20 63 6f 6e 66 69 67 75 72 65 20 61 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 79 6f 75 | .configure.a.route.reflector.you |
| 5e9a0 | 20 68 61 76 65 20 74 6f 20 74 65 6c 6c 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 65 74 68 65 72 | .have.to.tell.the.router.whether |
| 5e9c0 | 20 74 68 65 20 6f 74 68 65 72 20 49 42 47 50 20 72 6f 75 74 65 72 20 69 73 20 61 20 63 6c 69 65 | .the.other.IBGP.router.is.a.clie |
| 5e9e0 | 6e 74 20 6f 72 20 6e 6f 6e 2d 63 6c 69 65 6e 74 2e 20 41 20 63 6c 69 65 6e 74 20 69 73 20 61 6e | nt.or.non-client..A.client.is.an |
| 5ea00 | 20 49 42 47 50 20 72 6f 75 74 65 72 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 20 72 65 66 6c | .IBGP.router.that.the.route.refl |
| 5ea20 | 65 63 74 6f 72 20 77 69 6c 6c 20 e2 80 9c 72 65 66 6c 65 63 74 e2 80 9d 20 72 6f 75 74 65 73 20 | ector.will....reflect....routes. |
| 5ea40 | 74 6f 2c 20 74 68 65 20 6e 6f 6e 2d 63 6c 69 65 6e 74 20 69 73 20 6a 75 73 74 20 61 20 72 65 67 | to,.the.non-client.is.just.a.reg |
| 5ea60 | 75 6c 61 72 20 49 42 47 50 20 6e 65 69 67 68 62 6f 72 2e 20 52 6f 75 74 65 20 72 65 66 6c 65 63 | ular.IBGP.neighbor..Route.reflec |
| 5ea80 | 74 6f 72 73 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a | tors.mechanism.is.described.in.: |
| 5eaa0 | 72 66 63 3a 60 34 34 35 36 60 20 61 6e 64 20 75 70 64 61 74 65 64 20 62 79 20 3a 72 66 63 3a 60 | rfc:`4456`.and.updated.by.:rfc:` |
| 5eac0 | 37 36 30 36 60 2e 00 49 6e 74 72 75 73 69 6f 6e 20 44 65 74 65 63 74 69 6f 6e 20 28 49 44 53 29 | 7606`..Intrusion.Detection.(IDS) |
| 5eae0 | 3a 20 41 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 61 6e 64 20 64 | :.Analyzes.network.traffic.and.d |
| 5eb00 | 65 74 65 63 74 73 20 73 75 73 70 69 63 69 6f 75 73 20 61 63 74 69 76 69 74 69 65 73 2c 20 61 74 | etects.suspicious.activities,.at |
| 5eb20 | 74 61 63 6b 73 2c 20 61 6e 64 20 6d 61 6c 69 63 69 6f 75 73 20 74 72 61 66 66 69 63 2e 20 49 6e | tacks,.and.malicious.traffic..In |
| 5eb40 | 74 72 75 73 69 6f 6e 20 50 72 65 76 65 6e 74 69 6f 6e 20 28 49 50 53 29 3a 20 42 6c 6f 63 6b 73 | trusion.Prevention.(IPS):.Blocks |
| 5eb60 | 20 6f 72 20 6d 6f 64 69 66 69 65 73 20 73 75 73 70 69 63 69 6f 75 73 20 74 72 61 66 66 69 63 20 | .or.modifies.suspicious.traffic. |
| 5eb80 | 69 6e 20 72 65 61 6c 2d 74 69 6d 65 2c 20 70 72 65 76 65 6e 74 69 6e 67 20 61 74 74 61 63 6b 73 | in.real-time,.preventing.attacks |
| 5eba0 | 20 62 65 66 6f 72 65 20 74 68 65 79 20 70 65 6e 65 74 72 61 74 65 20 74 68 65 20 6e 65 74 77 6f | .before.they.penetrate.the.netwo |
| 5ebc0 | 72 6b 2e 20 4e 65 74 77 6f 72 6b 20 53 65 63 75 72 69 74 79 20 4d 6f 6e 69 74 6f 72 69 6e 67 20 | rk..Network.Security.Monitoring. |
| 5ebe0 | 28 4e 53 4d 29 3a 20 43 6f 6c 6c 65 63 74 73 20 61 6e 64 20 61 6e 61 6c 79 7a 65 73 20 6e 65 74 | (NSM):.Collects.and.analyzes.net |
| 5ec00 | 77 6f 72 6b 20 64 61 74 61 20 74 6f 20 64 65 74 65 63 74 20 61 6e 6f 6d 61 6c 69 65 73 20 61 6e | work.data.to.detect.anomalies.an |
| 5ec20 | 64 20 69 64 65 6e 74 69 66 79 20 74 68 72 65 61 74 73 2e 20 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 | d.identify.threats..Multi-Protoc |
| 5ec40 | 6f 6c 20 53 75 70 70 6f 72 74 3a 20 53 75 72 69 63 61 74 61 20 73 75 70 70 6f 72 74 73 20 61 6e | ol.Support:.Suricata.supports.an |
| 5ec60 | 61 6c 79 73 69 73 20 6f 66 20 76 61 72 69 6f 75 73 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 | alysis.of.various.network.protoc |
| 5ec80 | 6f 6c 73 20 73 75 63 68 20 61 73 20 48 54 54 50 2c 20 46 54 50 2c 20 53 4d 42 2c 20 61 6e 64 20 | ols.such.as.HTTP,.FTP,.SMB,.and. |
| 5eca0 | 6d 61 6e 79 20 6f 74 68 65 72 73 2e 20 49 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f | many.others..In.configuration.mo |
| 5ecc0 | 64 65 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 61 73 20 66 6f 6c 6c 6f 77 73 3a | de,.the.commands.are.as.follows: |
| 5ece0 | 00 49 74 20 64 69 73 61 62 6c 65 73 20 74 72 61 6e 73 70 61 72 65 6e 74 20 68 75 67 65 20 70 61 | .It.disables.transparent.huge.pa |
| 5ed00 | 67 65 73 2c 20 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 20 4e 55 4d 41 20 62 61 6c 61 6e 63 69 6e | ges,.and.automatic.NUMA.balancin |
| 5ed20 | 67 2e 20 49 74 20 61 6c 73 6f 20 75 73 65 73 20 63 70 75 70 6f 77 65 72 20 74 6f 20 73 65 74 20 | g..It.also.uses.cpupower.to.set. |
| 5ed40 | 74 68 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 63 70 75 66 72 65 71 20 67 6f 76 65 72 6e 6f 72 | the.performance.cpufreq.governor |
| 5ed60 | 2c 20 61 6e 64 20 72 65 71 75 65 73 74 73 20 61 20 63 70 75 5f 64 6d 61 5f 6c 61 74 65 6e 63 79 | ,.and.requests.a.cpu_dma_latency |
| 5ed80 | 20 76 61 6c 75 65 20 6f 66 20 31 2e 20 49 74 20 61 6c 73 6f 20 73 65 74 73 20 62 75 73 79 5f 72 | .value.of.1..It.also.sets.busy_r |
| 5eda0 | 65 61 64 20 61 6e 64 20 62 75 73 79 5f 70 6f 6c 6c 20 74 69 6d 65 73 20 74 6f 20 35 30 20 75 73 | ead.and.busy_poll.times.to.50.us |
| 5edc0 | 2c 20 61 6e 64 20 74 63 70 5f 66 61 73 74 6f 70 65 6e 20 74 6f 20 33 2e 00 49 74 20 65 6e 61 62 | ,.and.tcp_fastopen.to.3..It.enab |
| 5ede0 | 6c 65 73 20 74 72 61 6e 73 70 61 72 65 6e 74 20 68 75 67 65 20 70 61 67 65 73 2c 20 61 6e 64 20 | les.transparent.huge.pages,.and. |
| 5ee00 | 75 73 65 73 20 63 70 75 70 6f 77 65 72 20 74 6f 20 73 65 74 20 74 68 65 20 70 65 72 66 6f 72 6d | uses.cpupower.to.set.the.perform |
| 5ee20 | 61 6e 63 65 20 63 70 75 66 72 65 71 20 67 6f 76 65 72 6e 6f 72 2e 20 49 74 20 61 6c 73 6f 20 73 | ance.cpufreq.governor..It.also.s |
| 5ee40 | 65 74 73 20 60 60 6b 65 72 6e 65 6c 2e 73 63 68 65 64 5f 6d 69 6e 5f 67 72 61 6e 75 6c 61 72 69 | ets.``kernel.sched_min_granulari |
| 5ee60 | 74 79 5f 6e 73 60 60 20 74 6f 20 31 30 20 75 73 2c 20 60 60 6b 65 72 6e 65 6c 2e 73 63 68 65 64 | ty_ns``.to.10.us,.``kernel.sched |
| 5ee80 | 5f 77 61 6b 65 75 70 5f 67 72 61 6e 75 6c 61 72 69 74 79 5f 6e 73 60 60 20 74 6f 20 31 35 20 75 | _wakeup_granularity_ns``.to.15.u |
| 5eea0 | 73 73 2c 20 61 6e 64 20 60 60 76 6d 2e 64 69 72 74 79 5f 72 61 74 69 6f 60 60 20 74 6f 20 34 30 | ss,.and.``vm.dirty_ratio``.to.40 |
| 5eec0 | 25 2e 00 49 74 20 67 65 6e 65 72 61 74 65 73 20 74 68 65 20 6b 65 79 70 61 69 72 2c 20 77 68 69 | %..It.generates.the.keypair,.whi |
| 5eee0 | 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 | ch.includes.the.public.and.priva |
| 5ef00 | 74 65 20 70 61 72 74 73 2e 20 54 68 65 20 6b 65 79 20 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 | te.parts..The.key.is.not.stored. |
| 5ef20 | 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 2d 20 6f 6e 6c 79 20 61 20 6b 65 79 70 61 69 72 20 69 | on.the.system.-.only.a.keypair.i |
| 5ef40 | 73 20 67 65 6e 65 72 61 74 65 64 2e 00 49 74 20 68 61 6e 64 73 20 6f 75 74 20 70 72 65 66 69 78 | s.generated..It.hands.out.prefix |
| 5ef60 | 65 73 20 60 60 32 30 30 31 3a 64 62 38 3a 30 3a 31 30 3a 3a 2f 36 34 60 60 20 74 68 72 6f 75 67 | es.``2001:db8:0:10::/64``.throug |
| 5ef80 | 68 20 60 60 32 30 30 31 3a 64 62 38 3a 30 3a 31 66 3a 3a 2f 36 34 60 60 2e 00 49 74 20 68 65 6c | h.``2001:db8:0:1f::/64``..It.hel |
| 5efa0 | 70 73 20 74 6f 20 73 75 70 70 6f 72 74 20 61 73 20 48 45 4c 50 45 52 20 6f 6e 6c 79 20 66 6f 72 | ps.to.support.as.HELPER.only.for |
| 5efc0 | 20 70 6c 61 6e 6e 65 64 20 72 65 73 74 61 72 74 73 2e 00 49 74 20 68 65 6c 70 73 20 74 6f 20 74 | .planned.restarts..It.helps.to.t |
| 5efe0 | 68 69 6e 6b 20 6f 66 20 74 68 65 20 73 79 6e 74 61 78 20 61 73 3a 20 28 73 65 65 20 62 65 6c 6f | hink.of.the.syntax.as:.(see.belo |
| 5f000 | 77 29 2e 20 54 68 65 20 27 72 75 6c 65 2d 73 65 74 27 20 73 68 6f 75 6c 64 20 62 65 20 77 72 69 | w)..The.'rule-set'.should.be.wri |
| 5f020 | 74 74 65 6e 20 66 72 6f 6d 20 74 68 65 20 70 65 72 73 70 65 63 74 69 76 65 20 6f 66 3a 20 2a 53 | tten.from.the.perspective.of:.*S |
| 5f040 | 6f 75 72 63 65 20 5a 6f 6e 65 2a 2d 74 6f 2d 3e 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 5a 6f 6e | ource.Zone*-to->*Destination.Zon |
| 5f060 | 65 2a 00 49 74 20 69 73 20 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 43 69 73 63 6f 20 28 | e*.It.is.compatible.with.Cisco.( |
| 5f080 | 52 29 20 41 6e 79 43 6f 6e 6e 65 63 74 20 28 52 29 20 63 6c 69 65 6e 74 73 2e 00 49 74 20 69 73 | R).AnyConnect.(R).clients..It.is |
| 5f0a0 | 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 60 60 65 74 68 31 60 60 00 49 74 20 69 73 20 63 6f 6e | .connected.to.``eth1``.It.is.con |
| 5f0c0 | 6e 65 63 74 65 64 20 74 6f 20 60 60 65 74 68 31 60 60 2e 00 49 74 20 69 73 20 68 69 67 68 6c 79 | nected.to.``eth1``..It.is.highly |
| 5f0e0 | 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 53 53 48 20 6b 65 79 20 61 75 74 68 | .recommended.to.use.SSH.key.auth |
| 5f100 | 65 6e 74 69 63 61 74 69 6f 6e 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 65 72 65 20 69 73 20 | entication..By.default.there.is. |
| 5f120 | 6f 6e 6c 79 20 6f 6e 65 20 75 73 65 72 20 28 60 60 76 79 6f 73 60 60 29 2c 20 61 6e 64 20 79 6f | only.one.user.(``vyos``),.and.yo |
| 5f140 | 75 20 63 61 6e 20 61 73 73 69 67 6e 20 61 6e 79 20 6e 75 6d 62 65 72 20 6f 66 20 6b 65 79 73 20 | u.can.assign.any.number.of.keys. |
| 5f160 | 74 6f 20 74 68 61 74 20 75 73 65 72 2e 20 59 6f 75 20 63 61 6e 20 67 65 6e 65 72 61 74 65 20 61 | to.that.user..You.can.generate.a |
| 5f180 | 20 73 73 68 20 6b 65 79 20 77 69 74 68 20 74 68 65 20 60 60 73 73 68 2d 6b 65 79 67 65 6e 60 60 | .ssh.key.with.the.``ssh-keygen`` |
| 5f1a0 | 20 63 6f 6d 6d 61 6e 64 20 6f 6e 20 79 6f 75 72 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 2c 20 | .command.on.your.local.machine,. |
| 5f1c0 | 77 68 69 63 68 20 77 69 6c 6c 20 28 62 79 20 64 65 66 61 75 6c 74 29 20 73 61 76 65 20 69 74 20 | which.will.(by.default).save.it. |
| 5f1e0 | 61 73 20 60 60 7e 2f 2e 73 73 68 2f 69 64 5f 72 73 61 2e 70 75 62 60 60 2e 00 49 74 20 69 73 20 | as.``~/.ssh/id_rsa.pub``..It.is. |
| 5f200 | 68 69 67 68 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 | highly.recommended.to.use.the.sa |
| 5f220 | 6d 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 62 6f 74 68 20 74 68 65 20 4c 44 50 20 72 6f 75 74 | me.address.for.both.the.LDP.rout |
| 5f240 | 65 72 2d 69 64 20 61 6e 64 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 74 72 61 6e 73 70 6f 72 | er-id.and.the.discovery.transpor |
| 5f260 | 74 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 66 6f 72 20 56 79 4f 53 20 4d 50 4c 53 20 4c 44 50 | t.address,.but.for.VyOS.MPLS.LDP |
| 5f280 | 20 74 6f 20 77 6f 72 6b 20 62 6f 74 68 20 70 61 72 61 6d 65 74 65 72 73 20 6d 75 73 74 20 62 65 | .to.work.both.parameters.must.be |
| 5f2a0 | 20 65 78 70 6c 69 63 69 74 6c 79 20 73 65 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | .explicitly.set.in.the.configura |
| 5f2c0 | 74 69 6f 6e 2e 00 49 74 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 | tion..It.is.important.to.note.th |
| 5f2e0 | 61 74 20 77 68 65 6e 20 63 72 65 61 74 69 6e 67 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 | at.when.creating.firewall.rules. |
| 5f300 | 74 68 61 74 20 74 68 65 20 44 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6f 63 63 75 72 73 | that.the.DNAT.translation.occurs |
| 5f320 | 20 2a 2a 62 65 66 6f 72 65 2a 2a 20 74 72 61 66 66 69 63 20 74 72 61 76 65 72 73 65 73 20 74 68 | .**before**.traffic.traverses.th |
| 5f340 | 65 20 66 69 72 65 77 61 6c 6c 2e 20 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 2c 20 74 68 65 20 | e.firewall..In.other.words,.the. |
| 5f360 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 68 61 73 20 61 6c 72 65 61 64 79 20 | destination.address.has.already. |
| 5f380 | 62 65 65 6e 20 74 72 61 6e 73 6c 61 74 65 64 20 74 6f 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 | been.translated.to.192.168.0.100 |
| 5f3a0 | 2e 00 49 74 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 77 | ..It.is.important.to.note.that.w |
| 5f3c0 | 68 65 6e 20 63 72 65 61 74 69 6e 67 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 74 68 65 | hen.creating.firewall.rules,.the |
| 5f3e0 | 20 44 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6f 63 63 75 72 73 20 2a 2a 62 65 66 6f 72 | .DNAT.translation.occurs.**befor |
| 5f400 | 65 2a 2a 20 74 72 61 66 66 69 63 20 74 72 61 76 65 72 73 65 73 20 74 68 65 20 66 69 72 65 77 61 | e**.traffic.traverses.the.firewa |
| 5f420 | 6c 6c 2e 20 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 2c 20 74 68 65 20 64 65 73 74 69 6e 61 74 | ll..In.other.words,.the.destinat |
| 5f440 | 69 6f 6e 20 61 64 64 72 65 73 73 20 68 61 73 20 61 6c 72 65 61 64 79 20 62 65 65 6e 20 74 72 61 | ion.address.has.already.been.tra |
| 5f460 | 6e 73 6c 61 74 65 64 20 74 6f 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 00 49 74 20 69 73 20 | nslated.to.192.168.0.100..It.is. |
| 5f480 | 6e 6f 74 20 73 75 66 66 69 63 69 65 6e 74 20 74 6f 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 | not.sufficient.to.only.configure |
| 5f4a0 | 20 61 20 4c 33 56 50 4e 20 56 52 46 73 20 62 75 74 20 4c 33 56 50 4e 20 56 52 46 73 20 6d 75 73 | .a.L3VPN.VRFs.but.L3VPN.VRFs.mus |
| 5f4c0 | 74 20 62 65 20 6d 61 69 6e 74 61 69 6e 65 64 2c 20 74 6f 6f 2e 46 6f 72 20 4c 33 56 50 4e 20 56 | t.be.maintained,.too.For.L3VPN.V |
| 5f4e0 | 52 46 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 65 | RF.maintenance.the.following.ope |
| 5f500 | 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 69 6e 20 70 6c 61 63 65 2e 00 | rational.commands.are.in.place.. |
| 5f520 | 49 74 20 69 73 20 6e 6f 74 20 73 75 66 66 69 63 69 65 6e 74 20 74 6f 20 6f 6e 6c 79 20 63 6f 6e | It.is.not.sufficient.to.only.con |
| 5f540 | 66 69 67 75 72 65 20 61 20 56 52 46 20 62 75 74 20 56 52 46 73 20 6d 75 73 74 20 62 65 20 6d 61 | figure.a.VRF.but.VRFs.must.be.ma |
| 5f560 | 69 6e 74 61 69 6e 65 64 2c 20 74 6f 6f 2e 20 46 6f 72 20 56 52 46 20 6d 61 69 6e 74 65 6e 61 6e | intained,.too..For.VRF.maintenan |
| 5f580 | 63 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d | ce.the.following.operational.com |
| 5f5a0 | 6d 61 6e 64 73 20 61 72 65 20 69 6e 20 70 6c 61 63 65 2e 00 49 74 20 69 73 20 6e 6f 74 20 76 61 | mands.are.in.place..It.is.not.va |
| 5f5c0 | 6c 69 64 20 74 6f 20 75 73 65 20 74 68 65 20 60 76 69 66 20 31 60 20 6f 70 74 69 6f 6e 20 66 6f | lid.to.use.the.`vif.1`.option.fo |
| 5f5e0 | 72 20 56 4c 41 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 73 20 62 65 63 61 75 73 65 20 56 4c 41 | r.VLAN.aware.bridges.because.VLA |
| 5f600 | 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 73 20 61 73 73 75 6d 65 20 74 68 61 74 20 61 6c 6c 20 | N.aware.bridges.assume.that.all. |
| 5f620 | 75 6e 6c 61 62 65 6c 65 64 20 70 61 63 6b 65 74 73 20 62 65 6c 6f 6e 67 20 74 6f 20 74 68 65 20 | unlabeled.packets.belong.to.the. |
| 5f640 | 64 65 66 61 75 6c 74 20 56 4c 41 4e 20 31 20 6d 65 6d 62 65 72 20 61 6e 64 20 74 68 61 74 20 74 | default.VLAN.1.member.and.that.t |
| 5f660 | 68 65 20 56 4c 41 4e 20 49 44 20 6f 66 20 74 68 65 20 62 72 69 64 67 65 27 73 20 70 61 72 65 6e | he.VLAN.ID.of.the.bridge's.paren |
| 5f680 | 74 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 61 79 73 20 31 00 49 74 20 69 73 20 70 6f | t.interface.is.always.1.It.is.po |
| 5f6a0 | 73 73 69 62 6c 65 20 74 6f 20 65 6e 68 61 6e 63 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | ssible.to.enhance.authentication |
| 5f6c0 | 20 73 65 63 75 72 69 74 79 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 3a 61 62 62 72 3a 60 32 46 | .security.by.using.the.:abbr:`2F |
| 5f6e0 | 41 20 28 54 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 60 2f 3a | A.(Two-factor.authentication)`/: |
| 5f700 | 61 62 62 72 3a 60 4d 46 41 20 28 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 | abbr:`MFA.(Multi-factor.authenti |
| 5f720 | 63 61 74 69 6f 6e 29 60 20 66 65 61 74 75 72 65 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a | cation)`.feature.together.with.: |
| 5f740 | 61 62 62 72 3a 60 4f 54 50 20 28 4f 6e 65 2d 54 69 6d 65 2d 50 61 64 29 60 20 6f 6e 20 56 79 4f | abbr:`OTP.(One-Time-Pad)`.on.VyO |
| 5f760 | 53 2e 20 3a 61 62 62 72 3a 60 32 46 41 20 28 54 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e | S..:abbr:`2FA.(Two-factor.authen |
| 5f780 | 74 69 63 61 74 69 6f 6e 29 60 2f 3a 61 62 62 72 3a 60 4d 46 41 20 28 4d 75 6c 74 69 2d 66 61 63 | tication)`/:abbr:`MFA.(Multi-fac |
| 5f7a0 | 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 60 20 69 73 20 63 6f 6e 66 69 67 75 72 | tor.authentication)`.is.configur |
| 5f7c0 | 65 64 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 20 70 65 72 20 65 61 63 68 20 75 73 65 72 2e 20 | ed.independently.per.each.user.. |
| 5f7e0 | 49 66 20 61 6e 20 4f 54 50 20 6b 65 79 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 | If.an.OTP.key.is.configured.for. |
| 5f800 | 61 20 75 73 65 72 2c 20 32 46 41 2f 4d 46 41 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 | a.user,.2FA/MFA.is.automatically |
| 5f820 | 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 74 68 61 74 20 70 61 72 74 69 63 75 6c 61 72 20 75 73 65 | .enabled.for.that.particular.use |
| 5f840 | 72 2e 20 49 66 20 61 20 75 73 65 72 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 6e 20 4f 54 | r..If.a.user.does.not.have.an.OT |
| 5f860 | 50 20 6b 65 79 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 74 68 65 72 65 20 69 73 20 6e 6f 20 32 46 | P.key.configured,.there.is.no.2F |
| 5f880 | 41 2f 4d 46 41 20 63 68 65 63 6b 20 66 6f 72 20 74 68 61 74 20 75 73 65 72 2e 00 49 74 20 69 73 | A/MFA.check.for.that.user..It.is |
| 5f8a0 | 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 70 65 72 6d 69 74 20 42 47 50 20 69 6e 73 74 61 6c 6c 20 | .possible.to.permit.BGP.install. |
| 5f8c0 | 56 50 4e 20 70 72 65 66 69 78 65 73 20 77 69 74 68 6f 75 74 20 74 72 61 6e 73 70 6f 72 74 20 6c | VPN.prefixes.without.transport.l |
| 5f8e0 | 61 62 65 6c 73 2e 20 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 69 | abels..This.configuration.will.i |
| 5f900 | 6e 73 74 61 6c 6c 20 56 50 4e 20 70 72 65 66 69 78 65 73 20 6f 72 69 67 69 6e 61 74 65 64 20 66 | nstall.VPN.prefixes.originated.f |
| 5f920 | 72 6f 6d 20 61 6e 20 65 2d 62 67 70 20 73 65 73 73 69 6f 6e 2c 20 61 6e 64 20 77 69 74 68 20 74 | rom.an.e-bgp.session,.and.with.t |
| 5f940 | 68 65 20 6e 65 78 74 2d 68 6f 70 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 | he.next-hop.directly.connected.. |
| 5f960 | 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 73 74 61 74 | It.is.possible.to.specify.a.stat |
| 5f980 | 69 63 20 72 6f 75 74 65 20 66 6f 72 20 69 70 76 36 20 70 72 65 66 69 78 65 73 20 75 73 69 6e 67 | ic.route.for.ipv6.prefixes.using |
| 5f9a0 | 20 61 6e 20 53 52 76 36 20 73 65 67 6d 65 6e 74 73 20 69 6e 73 74 72 75 63 74 69 6f 6e 2e 20 54 | .an.SRv6.segments.instruction..T |
| 5f9c0 | 68 65 20 60 2f 60 20 73 65 70 61 72 61 74 6f 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 | he.`/`.separator.can.be.used.to. |
| 5f9e0 | 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 73 65 67 6d 65 6e 74 20 69 6e 73 74 72 75 63 | specify.multiple.segment.instruc |
| 5fa00 | 74 69 6f 6e 73 2e 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 75 73 65 20 65 69 74 | tions..It.is.possible.to.use.eit |
| 5fa20 | 68 65 72 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 55 6e 69 63 61 73 74 20 74 6f 20 73 79 6e 63 | her.Multicast.or.Unicast.to.sync |
| 5fa40 | 20 63 6f 6e 6e 74 72 61 63 6b 20 74 72 61 66 66 69 63 2e 20 4d 6f 73 74 20 65 78 61 6d 70 6c 65 | .conntrack.traffic..Most.example |
| 5fa60 | 73 20 62 65 6c 6f 77 20 73 68 6f 77 20 4d 75 6c 74 69 63 61 73 74 2c 20 62 75 74 20 75 6e 69 63 | s.below.show.Multicast,.but.unic |
| 5fa80 | 61 73 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 75 73 69 6e 67 20 74 68 | ast.can.be.specified.by.using.th |
| 5faa0 | 65 20 22 70 65 65 72 22 20 6b 65 79 77 6f 72 6b 20 61 66 74 65 72 20 74 68 65 20 73 70 65 63 69 | e."peer".keywork.after.the.speci |
| 5fac0 | 66 69 63 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 61 73 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f | ficed.interface,.as.in.the.follo |
| 5fae0 | 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 | wing.example:.It.is.possible.to. |
| 5fb00 | 75 73 65 20 65 69 74 68 65 72 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 55 6e 69 63 61 73 74 20 | use.either.Multicast.or.Unicast. |
| 5fb20 | 74 6f 20 73 79 6e 63 20 63 6f 6e 6e 74 72 61 63 6b 20 74 72 61 66 66 69 63 2e 20 4d 6f 73 74 20 | to.sync.conntrack.traffic..Most. |
| 5fb40 | 65 78 61 6d 70 6c 65 73 20 62 65 6c 6f 77 20 73 68 6f 77 20 4d 75 6c 74 69 63 61 73 74 2c 20 62 | examples.below.show.Multicast,.b |
| 5fb60 | 75 74 20 75 6e 69 63 61 73 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 75 | ut.unicast.can.be.specified.by.u |
| 5fb80 | 73 69 6e 67 20 74 68 65 20 22 70 65 65 72 22 20 6b 65 79 77 6f 72 6b 20 61 66 74 65 72 20 74 68 | sing.the."peer".keywork.after.th |
| 5fba0 | 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 61 73 20 69 6e 20 74 68 65 | e.specified.interface,.as.in.the |
| 5fbc0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 49 74 20 69 73 20 76 65 72 79 20 65 | .following.example:.It.is.very.e |
| 5fbe0 | 61 73 79 20 74 6f 20 6d 69 73 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 63 61 73 74 20 72 65 | asy.to.misconfigure.multicast.re |
| 5fc00 | 70 65 61 74 69 6e 67 20 69 66 20 79 6f 75 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 4e 48 53 | peating.if.you.have.multiple.NHS |
| 5fc20 | 65 73 2e 00 49 74 20 75 73 65 73 20 61 20 73 69 6e 67 6c 65 20 54 43 50 20 6f 72 20 55 44 50 20 | es..It.uses.a.single.TCP.or.UDP. |
| 5fc40 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 72 65 6c 79 20 6f 6e 20 | connection.and.does.not.rely.on. |
| 5fc60 | 70 61 63 6b 65 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 65 73 2c 20 73 6f 20 69 74 20 77 | packet.source.addresses,.so.it.w |
| 5fc80 | 69 6c 6c 20 77 6f 72 6b 20 65 76 65 6e 20 74 68 72 6f 75 67 68 20 61 20 64 6f 75 62 6c 65 20 4e | ill.work.even.through.a.double.N |
| 5fca0 | 41 54 3a 20 70 65 72 66 65 63 74 20 66 6f 72 20 70 75 62 6c 69 63 20 68 6f 74 73 70 6f 74 73 20 | AT:.perfect.for.public.hotspots. |
| 5fcc0 | 61 6e 64 20 73 75 63 68 00 49 74 20 75 73 65 73 20 61 20 73 74 6f 63 68 61 73 74 69 63 20 6d 6f | and.such.It.uses.a.stochastic.mo |
| 5fce0 | 64 65 6c 20 74 6f 20 63 6c 61 73 73 69 66 79 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 73 | del.to.classify.incoming.packets |
| 5fd00 | 20 69 6e 74 6f 20 64 69 66 66 65 72 65 6e 74 20 66 6c 6f 77 73 20 61 6e 64 20 69 73 20 75 73 65 | .into.different.flows.and.is.use |
| 5fd20 | 64 20 74 6f 20 70 72 6f 76 69 64 65 20 61 20 66 61 69 72 20 73 68 61 72 65 20 6f 66 20 74 68 65 | d.to.provide.a.fair.share.of.the |
| 5fd40 | 20 62 61 6e 64 77 69 64 74 68 20 74 6f 20 61 6c 6c 20 74 68 65 20 66 6c 6f 77 73 20 75 73 69 6e | .bandwidth.to.all.the.flows.usin |
| 5fd60 | 67 20 74 68 65 20 71 75 65 75 65 2e 20 45 61 63 68 20 66 6c 6f 77 20 69 73 20 6d 61 6e 61 67 65 | g.the.queue..Each.flow.is.manage |
| 5fd80 | 64 20 62 79 20 74 68 65 20 43 6f 44 65 6c 20 71 75 65 75 69 6e 67 20 20 64 69 73 63 69 70 6c 69 | d.by.the.CoDel.queuing..discipli |
| 5fda0 | 6e 65 2e 20 52 65 6f 72 64 65 72 69 6e 67 20 77 69 74 68 69 6e 20 61 20 66 6c 6f 77 20 69 73 20 | ne..Reordering.within.a.flow.is. |
| 5fdc0 | 61 76 6f 69 64 65 64 20 73 69 6e 63 65 20 43 6f 64 65 6c 20 69 6e 74 65 72 6e 61 6c 6c 79 20 75 | avoided.since.Codel.internally.u |
| 5fde0 | 73 65 73 20 61 20 46 49 46 4f 20 71 75 65 75 65 2e 00 49 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d | ses.a.FIFO.queue..It.will.be.com |
| 5fe00 | 62 69 6e 65 64 20 77 69 74 68 20 74 68 65 20 64 65 6c 65 67 61 74 65 64 20 70 72 65 66 69 78 20 | bined.with.the.delegated.prefix. |
| 5fe20 | 61 6e 64 20 74 68 65 20 73 6c 61 2d 69 64 20 74 6f 20 66 6f 72 6d 20 61 20 63 6f 6d 70 6c 65 74 | and.the.sla-id.to.form.a.complet |
| 5fe40 | 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | e.interface.address..The.default |
| 5fe60 | 20 69 73 20 74 6f 20 75 73 65 20 74 68 65 20 45 55 49 2d 36 34 20 61 64 64 72 65 73 73 20 6f 66 | .is.to.use.the.EUI-64.address.of |
| 5fe80 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 49 74 27 73 20 65 61 73 79 20 74 6f 20 73 65 74 | .the.interface..It's.easy.to.set |
| 5fea0 | 75 70 20 61 6e 64 20 6f 66 66 65 72 73 20 76 65 72 79 20 66 6c 65 78 69 62 6c 65 20 73 70 6c 69 | up.and.offers.very.flexible.spli |
| 5fec0 | 74 20 74 75 6e 6e 65 6c 69 6e 67 00 49 74 27 73 20 6e 6f 74 20 6c 69 6b 65 6c 79 20 74 68 61 74 | t.tunneling.It's.not.likely.that |
| 5fee0 | 20 61 6e 79 6f 6e 65 20 77 69 6c 6c 20 6e 65 65 64 20 69 74 20 61 6e 79 20 74 69 6d 65 20 73 6f | .anyone.will.need.it.any.time.so |
| 5ff00 | 6f 6e 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 65 78 69 73 74 2e 00 49 74 27 73 20 73 6c 6f 77 | on,.but.it.does.exist..It's.slow |
| 5ff20 | 65 72 20 74 68 61 6e 20 49 50 73 65 63 20 64 75 65 20 74 6f 20 68 69 67 68 65 72 20 70 72 6f 74 | er.than.IPsec.due.to.higher.prot |
| 5ff40 | 6f 63 6f 6c 20 6f 76 65 72 68 65 61 64 20 61 6e 64 20 74 68 65 20 66 61 63 74 20 69 74 20 72 75 | ocol.overhead.and.the.fact.it.ru |
| 5ff60 | 6e 73 20 69 6e 20 75 73 65 72 20 6d 6f 64 65 20 77 68 69 6c 65 20 49 50 73 65 63 2c 20 6f 6e 20 | ns.in.user.mode.while.IPsec,.on. |
| 5ff80 | 4c 69 6e 75 78 2c 20 69 73 20 69 6e 20 6b 65 72 6e 65 6c 20 6d 6f 64 65 00 49 74 27 73 20 74 69 | Linux,.is.in.kernel.mode.It's.ti |
| 5ffa0 | 6d 65 20 74 6f 20 63 68 65 63 6b 20 63 6f 6e 6e 74 72 61 63 6b 20 74 61 62 6c 65 2c 20 74 6f 20 | me.to.check.conntrack.table,.to. |
| 5ffc0 | 73 65 65 20 69 66 20 61 6e 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 61 73 20 61 63 63 65 70 74 | see.if.any.connection.was.accept |
| 5ffe0 | 65 64 2c 20 61 6e 64 20 69 66 20 77 61 73 20 70 72 6f 70 65 72 6c 79 20 6f 66 66 6c 6f 61 64 65 | ed,.and.if.was.properly.offloade |
| 60000 | 64 00 49 74 27 73 20 74 69 6d 65 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 63 6f 6e 6e 74 72 61 | d.It's.time.to.check.the.conntra |
| 60020 | 63 6b 20 74 61 62 6c 65 2c 20 74 6f 20 73 65 65 20 69 66 20 61 6e 79 20 63 6f 6e 6e 65 63 74 69 | ck.table,.to.see.if.any.connecti |
| 60040 | 6f 6e 73 20 77 65 72 65 20 61 63 63 65 70 74 65 64 2c 20 61 6e 64 20 69 66 20 69 74 20 77 61 73 | ons.were.accepted,.and.if.it.was |
| 60060 | 20 70 72 6f 70 65 72 6c 79 20 6f 66 66 6c 6f 61 64 65 64 00 4a 6f 69 6e 20 61 20 67 69 76 65 6e | .properly.offloaded.Join.a.given |
| 60080 | 20 56 52 46 2e 20 54 68 69 73 20 77 69 6c 6c 20 6f 70 65 6e 20 61 20 6e 65 77 20 73 75 62 73 68 | .VRF..This.will.open.a.new.subsh |
| 600a0 | 65 6c 6c 20 77 69 74 68 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 56 52 46 2e 00 4a 75 | ell.within.the.specified.VRF..Ju |
| 600c0 | 6d 70 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 72 75 6c 65 20 69 6e 20 74 68 69 73 20 72 | mp.to.a.different.rule.in.this.r |
| 600e0 | 6f 75 74 65 2d 6d 61 70 20 6f 6e 20 61 20 6d 61 74 63 68 2e 00 4a 75 6e 69 70 65 72 20 45 58 20 | oute-map.on.a.match..Juniper.EX. |
| 60100 | 53 77 69 74 63 68 00 4b 65 72 6e 65 6c 00 4b 65 72 6e 65 6c 20 50 61 72 61 6d 65 74 65 72 73 3a | Switch.Kernel.Kernel.Parameters: |
| 60120 | 20 6b 65 72 6e 65 6c 2e 6d 73 67 6d 61 78 2c 20 6b 65 72 6e 65 6c 2e 6d 73 67 6d 6e 62 2c 20 6b | .kernel.msgmax,.kernel.msgmnb,.k |
| 60140 | 65 72 6e 65 6c 2e 6d 73 67 6d 6e 69 2c 20 6b 65 72 6e 65 6c 2e 73 65 6d 2c 20 6b 65 72 6e 65 6c | ernel.msgmni,.kernel.sem,.kernel |
| 60160 | 2e 73 68 6d 61 6c 6c 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 6d 61 78 2c 20 6b 65 72 6e 65 6c 2e 73 | .shmall,.kernel.shmmax,.kernel.s |
| 60180 | 68 6d 6d 6e 69 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 5f 72 6d 69 64 5f 66 6f 72 63 65 64 00 4b 65 | hmmni,.kernel.shm_rmid_forced.Ke |
| 601a0 | 72 6e 65 6c 20 6d 65 73 73 61 67 65 73 00 4b 65 79 20 42 61 73 65 64 20 41 75 74 68 65 6e 74 69 | rnel.messages.Key.Based.Authenti |
| 601c0 | 63 61 74 69 6f 6e 00 4b 65 79 20 47 65 6e 65 72 61 74 69 6f 6e 00 4b 65 79 20 4d 61 6e 61 67 65 | cation.Key.Generation.Key.Manage |
| 601e0 | 6d 65 6e 74 00 4b 65 79 20 50 61 72 61 6d 65 74 65 72 73 3a 00 4b 65 79 20 50 6f 69 6e 74 73 3a | ment.Key.Parameters:.Key.Points: |
| 60200 | 00 4b 65 79 20 65 78 63 68 61 6e 67 65 20 61 6e 64 20 70 61 79 6c 6f 61 64 20 65 6e 63 72 79 70 | .Key.exchange.and.payload.encryp |
| 60220 | 74 69 6f 6e 20 69 73 20 64 6f 6e 65 20 75 73 69 6e 67 20 49 4b 45 20 61 6e 64 20 45 53 50 20 70 | tion.is.done.using.IKE.and.ESP.p |
| 60240 | 72 6f 70 6f 73 61 6c 73 20 61 73 20 6b 6e 6f 77 6e 20 66 72 6f 6d 20 49 4b 45 76 31 20 62 75 74 | roposals.as.known.from.IKEv1.but |
| 60260 | 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 66 61 73 74 65 72 20 74 6f 20 65 | .the.connections.are.faster.to.e |
| 60280 | 73 74 61 62 6c 69 73 68 2c 20 6d 6f 72 65 20 72 65 6c 69 61 62 6c 65 2c 20 61 6e 64 20 61 6c 73 | stablish,.more.reliable,.and.als |
| 602a0 | 6f 20 73 75 70 70 6f 72 74 20 72 6f 61 6d 69 6e 67 20 66 72 6f 6d 20 49 50 20 74 6f 20 49 50 20 | o.support.roaming.from.IP.to.IP. |
| 602c0 | 28 63 61 6c 6c 65 64 20 4d 4f 42 49 4b 45 20 77 68 69 63 68 20 6d 61 6b 65 73 20 73 75 72 65 20 | (called.MOBIKE.which.makes.sure. |
| 602e0 | 79 6f 75 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 6f 65 73 20 6e 6f 74 20 64 72 6f 70 20 77 68 | your.connection.does.not.drop.wh |
| 60300 | 65 6e 20 63 68 61 6e 67 69 6e 67 20 6e 65 74 77 6f 72 6b 73 20 66 72 6f 6d 20 65 2e 67 2e 20 57 | en.changing.networks.from.e.g..W |
| 60320 | 49 46 49 20 74 6f 20 4c 54 45 20 61 6e 64 20 62 61 63 6b 29 2e 20 41 75 74 68 65 6e 74 69 63 61 | IFI.to.LTE.and.back)..Authentica |
| 60340 | 74 69 6f 6e 20 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 77 69 74 68 20 58 2e 35 30 39 20 | tion.can.be.achieved.with.X.509. |
| 60360 | 63 65 72 74 69 66 69 63 61 74 65 73 2e 00 4b 65 79 20 65 78 63 68 61 6e 67 65 20 61 6e 64 20 70 | certificates..Key.exchange.and.p |
| 60380 | 61 79 6c 6f 61 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 64 6f 6e 65 20 | ayload.encryption.is.still.done. |
| 603a0 | 75 73 69 6e 67 20 49 4b 45 20 61 6e 64 20 45 53 50 20 70 72 6f 70 6f 73 61 6c 73 20 61 73 20 6b | using.IKE.and.ESP.proposals.as.k |
| 603c0 | 6e 6f 77 6e 20 66 72 6f 6d 20 49 4b 45 76 31 20 62 75 74 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 | nown.from.IKEv1.but.the.connecti |
| 603e0 | 6f 6e 73 20 61 72 65 20 66 61 73 74 65 72 20 74 6f 20 65 73 74 61 62 6c 69 73 68 2c 20 6d 6f 72 | ons.are.faster.to.establish,.mor |
| 60400 | 65 20 72 65 6c 69 61 62 6c 65 2c 20 61 6e 64 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 20 72 6f 61 | e.reliable,.and.also.support.roa |
| 60420 | 6d 69 6e 67 20 66 72 6f 6d 20 49 50 20 74 6f 20 49 50 20 28 63 61 6c 6c 65 64 20 4d 4f 42 49 4b | ming.from.IP.to.IP.(called.MOBIK |
| 60440 | 45 20 77 68 69 63 68 20 6d 61 6b 65 73 20 73 75 72 65 20 79 6f 75 72 20 63 6f 6e 6e 65 63 74 69 | E.which.makes.sure.your.connecti |
| 60460 | 6f 6e 20 64 6f 65 73 20 6e 6f 74 20 64 72 6f 70 20 77 68 65 6e 20 63 68 61 6e 67 69 6e 67 20 6e | on.does.not.drop.when.changing.n |
| 60480 | 65 74 77 6f 72 6b 73 20 66 72 6f 6d 20 65 2e 67 2e 20 57 49 46 49 20 74 6f 20 4c 54 45 20 61 6e | etworks.from.e.g..WIFI.to.LTE.an |
| 604a0 | 64 20 62 61 63 6b 29 2e 00 4b 65 79 20 75 73 61 67 65 20 28 43 4c 49 29 00 4b 65 79 62 6f 61 72 | d.back)..Key.usage.(CLI).Keyboar |
| 604c0 | 64 20 4c 61 79 6f 75 74 00 4b 65 79 70 61 69 72 73 00 4b 65 79 77 6f 72 64 00 4b 6e 6f 77 6e 20 | d.Layout.Keypairs.Keyword.Known. |
| 604e0 | 69 73 73 75 65 73 00 4c 32 54 50 00 4c 32 54 50 20 6f 76 65 72 20 49 50 73 65 63 00 4c 32 54 50 | issues.L2TP.L2TP.over.IPsec.L2TP |
| 60500 | 76 33 00 4c 32 54 50 76 33 20 63 61 6e 20 62 65 20 72 65 67 61 72 64 65 64 20 61 73 20 62 65 69 | v3.L2TPv3.can.be.regarded.as.bei |
| 60520 | 6e 67 20 74 6f 20 4d 50 4c 53 20 77 68 61 74 20 49 50 20 69 73 20 74 6f 20 41 54 4d 3a 20 61 20 | ng.to.MPLS.what.IP.is.to.ATM:.a. |
| 60540 | 73 69 6d 70 6c 69 66 69 65 64 20 76 65 72 73 69 6f 6e 20 6f 66 20 74 68 65 20 73 61 6d 65 20 63 | simplified.version.of.the.same.c |
| 60560 | 6f 6e 63 65 70 74 2c 20 77 69 74 68 20 6d 75 63 68 20 6f 66 20 74 68 65 20 73 61 6d 65 20 62 65 | oncept,.with.much.of.the.same.be |
| 60580 | 6e 65 66 69 74 20 61 63 68 69 65 76 65 64 20 61 74 20 61 20 66 72 61 63 74 69 6f 6e 20 6f 66 20 | nefit.achieved.at.a.fraction.of. |
| 605a0 | 74 68 65 20 65 66 66 6f 72 74 2c 20 61 74 20 74 68 65 20 63 6f 73 74 20 6f 66 20 6c 6f 73 69 6e | the.effort,.at.the.cost.of.losin |
| 605c0 | 67 20 73 6f 6d 65 20 74 65 63 68 6e 69 63 61 6c 20 66 65 61 74 75 72 65 73 20 63 6f 6e 73 69 64 | g.some.technical.features.consid |
| 605e0 | 65 72 65 64 20 6c 65 73 73 20 69 6d 70 6f 72 74 61 6e 74 20 69 6e 20 74 68 65 20 6d 61 72 6b 65 | ered.less.important.in.the.marke |
| 60600 | 74 2e 00 4c 32 54 50 76 33 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 | t..L2TPv3.is.described.in.:rfc:` |
| 60620 | 33 39 32 31 60 2e 00 4c 32 54 50 76 33 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 | 3921`..L2TPv3.is.described.in.:r |
| 60640 | 66 63 3a 60 33 39 33 31 60 2e 00 4c 32 54 50 76 33 20 6f 70 74 69 6f 6e 73 00 4c 32 54 50 76 33 | fc:`3931`..L2TPv3.options.L2TPv3 |
| 60660 | 3a 00 4c 33 56 50 4e 20 56 52 46 73 00 4c 44 41 50 00 4c 44 41 50 20 70 72 6f 74 6f 63 6f 6c 20 | :.L3VPN.VRFs.LDAP.LDAP.protocol. |
| 60680 | 76 65 72 73 69 6f 6e 2e 20 44 65 66 61 75 6c 74 73 20 74 6f 20 33 20 69 66 20 6e 6f 74 20 73 70 | version..Defaults.to.3.if.not.sp |
| 606a0 | 65 63 69 66 69 65 64 2e 00 4c 44 41 50 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 74 6f 20 6c | ecified..LDAP.search.filter.to.l |
| 606c0 | 6f 63 61 74 65 20 74 68 65 20 75 73 65 72 20 44 4e 2e 20 52 65 71 75 69 72 65 64 20 69 66 20 74 | ocate.the.user.DN..Required.if.t |
| 606e0 | 68 65 20 75 73 65 72 73 20 61 72 65 20 69 6e 20 61 20 68 69 65 72 61 72 63 68 79 20 62 65 6c 6f | he.users.are.in.a.hierarchy.belo |
| 60700 | 77 20 74 68 65 20 62 61 73 65 20 44 4e 2c 20 6f 72 20 69 66 20 74 68 65 20 6c 6f 67 69 6e 20 6e | w.the.base.DN,.or.if.the.login.n |
| 60720 | 61 6d 65 20 69 73 20 6e 6f 74 20 77 68 61 74 20 62 75 69 6c 64 73 20 74 68 65 20 75 73 65 72 20 | ame.is.not.what.builds.the.user. |
| 60740 | 73 70 65 63 69 66 69 63 20 70 61 72 74 20 6f 66 20 74 68 65 20 75 73 65 72 73 20 44 4e 2e 00 4c | specific.part.of.the.users.DN..L |
| 60760 | 4c 44 50 00 4c 4c 44 50 20 70 65 72 66 6f 72 6d 73 20 66 75 6e 63 74 69 6f 6e 73 20 73 69 6d 69 | LDP.LLDP.performs.functions.simi |
| 60780 | 6c 61 72 20 74 6f 20 73 65 76 65 72 61 6c 20 70 72 6f 70 72 69 65 74 61 72 79 20 70 72 6f 74 6f | lar.to.several.proprietary.proto |
| 607a0 | 63 6f 6c 73 2c 20 73 75 63 68 20 61 73 20 3a 61 62 62 72 3a 60 43 44 50 20 28 43 69 73 63 6f 20 | cols,.such.as.:abbr:`CDP.(Cisco. |
| 607c0 | 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 2c 20 3a 61 62 62 72 3a 60 46 44 50 | Discovery.Protocol)`,.:abbr:`FDP |
| 607e0 | 20 28 46 6f 75 6e 64 72 79 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 2c 20 | .(Foundry.Discovery.Protocol)`,. |
| 60800 | 3a 61 62 62 72 3a 60 4e 44 50 20 28 4e 6f 72 74 65 6c 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f | :abbr:`NDP.(Nortel.Discovery.Pro |
| 60820 | 74 6f 63 6f 6c 29 60 20 61 6e 64 20 3a 61 62 62 72 3a 60 4c 4c 54 44 20 28 4c 69 6e 6b 20 4c 61 | tocol)`.and.:abbr:`LLTD.(Link.La |
| 60840 | 79 65 72 20 54 6f 70 6f 6c 6f 67 79 20 44 69 73 63 6f 76 65 72 79 29 60 2e 00 4c 4e 53 20 28 4c | yer.Topology.Discovery)`..LNS.(L |
| 60860 | 32 54 50 20 4e 65 74 77 6f 72 6b 20 53 65 72 76 65 72 29 00 4c 4e 53 20 61 72 65 20 6f 66 74 65 | 2TP.Network.Server).LNS.are.ofte |
| 60880 | 6e 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 61 20 4c 41 43 20 28 4c 32 54 50 | n.used.to.connect.to.a.LAC.(L2TP |
| 608a0 | 20 41 63 63 65 73 73 20 43 6f 6e 63 65 6e 74 72 61 74 6f 72 29 2e 00 4c 61 62 65 6c 20 44 69 73 | .Access.Concentrator)..Label.Dis |
| 608c0 | 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 00 4c 61 62 65 6c 20 74 6f 20 75 73 65 20 | tribution.Protocol.Label.to.use. |
| 608e0 | 66 6f 72 20 74 68 65 20 6d 65 74 72 69 63 20 6e 61 6d 65 20 77 68 65 6e 20 73 65 6e 64 69 6e 67 | for.the.metric.name.when.sending |
| 60900 | 20 6d 65 74 72 69 63 73 2e 00 4c 61 73 74 6c 79 2c 20 77 65 20 63 61 6e 20 63 72 65 61 74 65 20 | .metrics..Lastly,.we.can.create. |
| 60920 | 74 68 65 20 6c 65 61 66 20 63 65 72 74 69 66 69 63 61 74 65 73 20 74 68 61 74 20 64 65 76 69 63 | the.leaf.certificates.that.devic |
| 60940 | 65 73 20 61 6e 64 20 75 73 65 72 73 20 77 69 6c 6c 20 75 74 69 6c 69 73 65 2e 00 4c 61 79 65 72 | es.and.users.will.utilise..Layer |
| 60960 | 20 32 20 54 75 6e 6e 65 6c 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 20 33 | .2.Tunnelling.Protocol.Version.3 |
| 60980 | 20 69 73 20 61 6e 20 49 45 54 46 20 73 74 61 6e 64 61 72 64 20 72 65 6c 61 74 65 64 20 74 6f 20 | .is.an.IETF.standard.related.to. |
| 609a0 | 4c 32 54 50 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 61 6c 74 65 | L2TP.that.can.be.used.as.an.alte |
| 609c0 | 72 6e 61 74 69 76 65 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 3a 72 65 66 3a 60 6d 70 6c 73 60 20 | rnative.protocol.to.:ref:`mpls`. |
| 609e0 | 66 6f 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6f 66 20 6d 75 6c 74 69 70 72 6f 74 6f 63 | for.encapsulation.of.multiprotoc |
| 60a00 | 6f 6c 20 4c 61 79 65 72 20 32 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 66 66 69 | ol.Layer.2.communications.traffi |
| 60a20 | 63 20 6f 76 65 72 20 49 50 20 6e 65 74 77 6f 72 6b 73 2e 20 4c 69 6b 65 20 4c 32 54 50 2c 20 4c | c.over.IP.networks..Like.L2TP,.L |
| 60a40 | 32 54 50 76 33 20 70 72 6f 76 69 64 65 73 20 61 20 70 73 65 75 64 6f 2d 77 69 72 65 20 73 65 72 | 2TPv3.provides.a.pseudo-wire.ser |
| 60a60 | 76 69 63 65 20 62 75 74 20 69 73 20 73 63 61 6c 65 64 20 74 6f 20 66 69 74 20 63 61 72 72 69 65 | vice.but.is.scaled.to.fit.carrie |
| 60a80 | 72 20 72 65 71 75 69 72 65 6d 65 6e 74 73 2e 00 4c 65 61 73 65 20 74 69 6d 65 20 77 69 6c 6c 20 | r.requirements..Lease.time.will. |
| 60aa0 | 62 65 20 6c 65 66 74 20 61 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 77 68 69 | be.left.at.the.default.value.whi |
| 60ac0 | 63 68 20 69 73 20 32 34 20 68 6f 75 72 73 00 4c 65 61 73 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 | ch.is.24.hours.Lease.timeout.in. |
| 60ae0 | 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 38 36 34 30 30 29 00 4c 65 67 61 63 79 20 | seconds.(default:.86400).Legacy. |
| 60b00 | 46 69 72 65 77 61 6c 6c 00 4c 65 74 20 53 4e 4d 50 20 64 61 65 6d 6f 6e 20 6c 69 73 74 65 6e 20 | Firewall.Let.SNMP.daemon.listen. |
| 60b20 | 6f 6e 6c 79 20 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 00 4c 65 74 | only.on.IP.address.192.0.2.1.Let |
| 60b40 | 27 73 20 61 73 73 75 6d 65 20 50 43 34 20 6f 6e 20 4c 65 61 66 32 20 77 61 6e 74 73 20 74 6f 20 | 's.assume.PC4.on.Leaf2.wants.to. |
| 60b60 | 70 69 6e 67 20 50 43 35 20 6f 6e 20 4c 65 61 66 33 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 73 65 | ping.PC5.on.Leaf3..Instead.of.se |
| 60b80 | 74 74 69 6e 67 20 4c 65 61 66 33 20 61 73 20 6f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 6d 61 | tting.Leaf3.as.our.remote.end.ma |
| 60ba0 | 6e 75 61 6c 6c 79 2c 20 4c 65 61 66 32 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 74 68 65 20 70 | nually,.Leaf2.encapsulates.the.p |
| 60bc0 | 61 63 6b 65 74 20 69 6e 74 6f 20 61 20 55 44 50 2d 70 61 63 6b 65 74 20 61 6e 64 20 73 65 6e 64 | acket.into.a.UDP-packet.and.send |
| 60be0 | 73 20 69 74 20 74 6f 20 69 74 73 20 64 65 73 69 67 6e 61 74 65 64 20 6d 75 6c 74 69 63 61 73 74 | s.it.to.its.designated.multicast |
| 60c00 | 2d 61 64 64 72 65 73 73 20 76 69 61 20 53 70 69 6e 65 31 2e 20 57 68 65 6e 20 53 70 69 6e 65 31 | -address.via.Spine1..When.Spine1 |
| 60c20 | 20 72 65 63 65 69 76 65 73 20 74 68 69 73 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 | .receives.this.packet.it.forward |
| 60c40 | 73 20 69 74 20 74 6f 20 61 6c 6c 20 6f 74 68 65 72 20 6c 65 61 76 65 73 20 77 68 6f 20 68 61 73 | s.it.to.all.other.leaves.who.has |
| 60c60 | 20 6a 6f 69 6e 65 64 20 74 68 65 20 73 61 6d 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 | .joined.the.same.multicast-group |
| 60c80 | 2c 20 69 6e 20 74 68 69 73 20 63 61 73 65 20 4c 65 61 66 33 2e 20 57 68 65 6e 20 4c 65 61 66 33 | ,.in.this.case.Leaf3..When.Leaf3 |
| 60ca0 | 20 72 65 63 65 69 76 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 | .receives.the.packet.it.forwards |
| 60cc0 | 20 69 74 2c 20 77 68 69 6c 65 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 6c 65 61 72 | .it,.while.at.the.same.time.lear |
| 60ce0 | 6e 69 6e 67 20 74 68 61 74 20 50 43 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 62 65 68 69 6e | ning.that.PC4.is.reachable.behin |
| 60d00 | 64 20 4c 65 61 66 32 2c 20 62 65 63 61 75 73 65 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 | d.Leaf2,.because.the.encapsulate |
| 60d20 | 64 20 70 61 63 6b 65 74 20 68 61 64 20 4c 65 61 66 32 27 73 20 49 50 20 61 64 64 72 65 73 73 20 | d.packet.had.Leaf2's.IP.address. |
| 60d40 | 73 65 74 20 61 73 20 73 6f 75 72 63 65 20 49 50 2e 00 4c 65 74 27 73 20 61 73 73 75 6d 65 20 50 | set.as.source.IP..Let's.assume.P |
| 60d60 | 43 34 20 6f 6e 20 4c 65 61 66 32 20 77 61 6e 74 73 20 74 6f 20 70 69 6e 67 20 50 43 35 20 6f 6e | C4.on.Leaf2.wants.to.ping.PC5.on |
| 60d80 | 20 4c 65 61 66 33 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 73 65 74 74 69 6e 67 20 4c 65 61 66 33 | .Leaf3..Instead.of.setting.Leaf3 |
| 60da0 | 20 61 73 20 6f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 6d 61 6e 75 61 6c 6c 79 2c 20 4c 65 61 | .as.our.remote.end.manually,.Lea |
| 60dc0 | 66 32 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 6e 74 6f 20 | f2.encapsulates.the.packet.into. |
| 60de0 | 61 20 55 44 50 2d 70 61 63 6b 65 74 20 61 6e 64 20 73 65 6e 64 73 20 69 74 20 74 6f 20 69 74 73 | a.UDP-packet.and.sends.it.to.its |
| 60e00 | 27 20 64 65 73 69 67 6e 61 74 65 64 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 20 76 | '.designated.multicast-address.v |
| 60e20 | 69 61 20 53 70 69 6e 65 31 2e 20 57 68 65 6e 20 53 70 69 6e 65 31 20 72 65 63 65 69 76 65 73 20 | ia.Spine1..When.Spine1.receives. |
| 60e40 | 74 68 69 73 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 20 74 6f 20 61 6c | this.packet.it.forwards.it.to.al |
| 60e60 | 6c 20 6f 74 68 65 72 20 6c 65 61 76 65 73 20 77 68 6f 20 68 61 73 20 6a 6f 69 6e 65 64 20 74 68 | l.other.leaves.who.has.joined.th |
| 60e80 | 65 20 73 61 6d 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 2c 20 69 6e 20 74 68 69 73 20 | e.same.multicast-group,.in.this. |
| 60ea0 | 63 61 73 65 20 4c 65 61 66 33 2e 20 57 68 65 6e 20 4c 65 61 66 33 20 72 65 63 65 69 76 65 73 20 | case.Leaf3..When.Leaf3.receives. |
| 60ec0 | 74 68 65 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 2c 20 77 68 69 6c 65 | the.packet.it.forwards.it,.while |
| 60ee0 | 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 6c 65 61 72 6e 69 6e 67 20 74 68 61 74 20 | .at.the.same.time.learning.that. |
| 60f00 | 50 43 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 62 65 68 69 6e 64 20 4c 65 61 66 32 2c 20 62 | PC4.is.reachable.behind.Leaf2,.b |
| 60f20 | 65 63 61 75 73 65 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 20 68 | ecause.the.encapsulated.packet.h |
| 60f40 | 61 64 20 4c 65 61 66 32 27 73 20 49 50 20 61 64 64 72 65 73 73 20 73 65 74 20 61 73 20 73 6f 75 | ad.Leaf2's.IP.address.set.as.sou |
| 60f60 | 72 63 65 20 49 50 2e 00 4c 65 74 27 73 20 61 73 73 75 6d 65 20 77 65 20 68 61 76 65 20 74 77 6f | rce.IP..Let's.assume.we.have.two |
| 60f80 | 20 44 48 43 50 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 6f 6e 65 20 4c 41 4e | .DHCP.WAN.interfaces.and.one.LAN |
| 60fa0 | 20 28 65 74 68 32 29 3a 00 4c 65 74 27 73 20 62 75 69 6c 64 20 61 20 73 69 6d 70 6c 65 20 56 50 | .(eth2):.Let's.build.a.simple.VP |
| 60fc0 | 4e 20 62 65 74 77 65 65 6e 20 32 20 49 6e 74 65 6c c2 ae 20 51 41 54 20 72 65 61 64 79 20 64 65 | N.between.2.Intel...QAT.ready.de |
| 60fe0 | 76 69 63 65 73 2e 00 4c 65 74 27 73 20 65 78 70 61 6e 64 20 74 68 65 20 65 78 61 6d 70 6c 65 20 | vices..Let's.expand.the.example. |
| 61000 | 66 72 6f 6d 20 61 62 6f 76 65 20 61 6e 64 20 61 64 64 20 77 65 69 67 68 74 20 74 6f 20 74 68 65 | from.above.and.add.weight.to.the |
| 61020 | 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 65 20 62 61 6e 64 77 69 64 74 68 20 66 72 6f 6d 20 | .interfaces..The.bandwidth.from. |
| 61040 | 65 74 68 30 20 69 73 20 6c 61 72 67 65 72 20 74 68 61 6e 20 65 74 68 31 2e 20 50 65 72 20 64 65 | eth0.is.larger.than.eth1..Per.de |
| 61060 | 66 61 75 6c 74 2c 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 69 73 20 64 69 73 74 72 | fault,.outbound.traffic.is.distr |
| 61080 | 69 62 75 74 65 64 20 72 61 6e 64 6f 6d 6c 79 20 61 63 72 6f 73 73 20 61 76 61 69 6c 61 62 6c 65 | ibuted.randomly.across.available |
| 610a0 | 20 69 6e 74 65 72 66 61 63 65 73 2e 20 57 65 69 67 68 74 73 20 63 61 6e 20 62 65 20 61 73 73 69 | .interfaces..Weights.can.be.assi |
| 610c0 | 67 6e 65 64 20 74 6f 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 | gned.to.interfaces.to.influence. |
| 610e0 | 74 68 65 20 62 61 6c 61 6e 63 69 6e 67 2e 00 4c 65 74 73 20 61 73 73 75 6d 65 20 74 68 65 20 66 | the.balancing..Lets.assume.the.f |
| 61100 | 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 3a 00 4c 65 76 65 6c 20 34 20 62 61 6c 61 6e | ollowing.topology:.Level.4.balan |
| 61120 | 63 69 6e 67 00 4c 69 66 65 74 69 6d 65 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 | cing.Lifetime.associated.with.th |
| 61140 | 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 72 20 69 6e 20 75 6e 69 74 73 20 6f 66 20 73 65 63 | e.default.router.in.units.of.sec |
| 61160 | 6f 6e 64 73 00 4c 69 66 65 74 69 6d 65 20 69 6e 20 64 61 79 73 3b 20 64 65 66 61 75 6c 74 20 69 | onds.Lifetime.in.days;.default.i |
| 61180 | 73 20 33 36 35 00 4c 69 66 65 74 69 6d 65 20 69 73 20 64 65 63 72 65 6d 65 6e 74 65 64 20 62 79 | s.365.Lifetime.is.decremented.by |
| 611a0 | 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 73 69 6e 63 65 20 74 68 65 | .the.number.of.seconds.since.the |
| 611c0 | 20 6c 61 73 74 20 52 41 20 2d 20 75 73 65 20 69 6e 20 63 6f 6e 6a 75 6e 63 74 69 6f 6e 20 77 69 | .last.RA.-.use.in.conjunction.wi |
| 611e0 | 74 68 20 61 20 44 48 43 50 76 36 2d 50 44 20 70 72 65 66 69 78 00 4c 69 6b 65 20 6f 6e 20 4d 69 | th.a.DHCPv6-PD.prefix.Like.on.Mi |
| 61200 | 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 2c 20 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f | crosoft.Windows,.Apple.iOS/iPadO |
| 61220 | 53 20 6f 75 74 20 6f 66 20 74 68 65 20 62 6f 78 20 64 6f 65 73 20 6e 6f 74 20 65 78 70 6f 73 65 | S.out.of.the.box.does.not.expose |
| 61240 | 20 61 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 56 50 4e 20 6f 70 74 69 6f 6e 73 20 76 69 61 20 74 | .all.available.VPN.options.via.t |
| 61260 | 68 65 20 64 65 76 69 63 65 20 47 55 49 2e 00 4c 69 6d 69 74 20 61 6c 6c 6f 77 65 64 20 63 69 70 | he.device.GUI..Limit.allowed.cip |
| 61280 | 68 65 72 20 61 6c 67 6f 72 69 74 68 6d 73 20 75 73 65 64 20 64 75 72 69 6e 67 20 53 53 4c 2f 54 | her.algorithms.used.during.SSL/T |
| 612a0 | 4c 53 20 68 61 6e 64 73 68 61 6b 65 00 4c 69 6d 69 74 20 6c 6f 67 69 6e 73 20 74 6f 20 60 3c 6c | LS.handshake.Limit.logins.to.`<l |
| 612c0 | 69 6d 69 74 3e 60 20 70 65 72 20 65 76 65 72 79 20 60 60 72 61 74 65 2d 74 69 6d 65 60 60 20 73 | imit>`.per.every.``rate-time``.s |
| 612e0 | 65 63 6f 6e 64 73 2e 20 52 61 74 65 20 6c 69 6d 69 74 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 | econds..Rate.limit.must.be.betwe |
| 61300 | 65 6e 20 31 20 61 6e 64 20 31 30 20 61 74 74 65 6d 70 74 73 2e 00 4c 69 6d 69 74 20 6c 6f 67 69 | en.1.and.10.attempts..Limit.logi |
| 61320 | 6e 73 20 74 6f 20 60 60 72 61 74 65 2d 6c 69 6d 69 74 60 60 20 61 74 74 65 6d 70 73 20 70 65 72 | ns.to.``rate-limit``.attemps.per |
| 61340 | 20 65 76 65 72 79 20 60 3c 73 65 63 6f 6e 64 73 3e 60 2e 20 52 61 74 65 20 74 69 6d 65 20 6d 75 | .every.`<seconds>`..Rate.time.mu |
| 61360 | 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 35 20 61 6e 64 20 36 30 30 20 73 65 63 6f 6e 64 73 | st.be.between.15.and.600.seconds |
| 61380 | 2e 00 4c 69 6d 69 74 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 63 6f 6e 6e 65 63 | ..Limit.maximum.number.of.connec |
| 613a0 | 74 69 6f 6e 73 00 4c 69 6d 69 74 65 72 00 4c 69 6d 69 74 65 72 20 69 73 20 6f 6e 65 20 6f 66 20 | tions.Limiter.Limiter.is.one.of. |
| 613c0 | 74 68 6f 73 65 20 70 6f 6c 69 63 69 65 73 20 74 68 61 74 20 75 73 65 73 20 63 6c 61 73 73 65 73 | those.policies.that.uses.classes |
| 613e0 | 5f 20 28 49 6e 67 72 65 73 73 20 71 64 69 73 63 20 69 73 20 61 63 74 75 61 6c 6c 79 20 61 20 63 | _.(Ingress.qdisc.is.actually.a.c |
| 61400 | 6c 61 73 73 6c 65 73 73 20 70 6f 6c 69 63 79 20 62 75 74 20 66 69 6c 74 65 72 73 20 64 6f 20 77 | lassless.policy.but.filters.do.w |
| 61420 | 6f 72 6b 20 69 6e 20 69 74 29 2e 00 4c 69 6d 69 74 73 00 4c 69 6e 65 20 70 72 69 6e 74 65 72 20 | ork.in.it)..Limits.Line.printer. |
| 61440 | 73 75 62 73 79 73 74 65 6d 00 4c 69 6e 6b 20 4d 54 55 20 76 61 6c 75 65 20 70 6c 61 63 65 64 20 | subsystem.Link.MTU.value.placed. |
| 61460 | 69 6e 20 52 41 73 2c 20 65 78 63 6c 75 64 65 64 20 69 6e 20 52 41 73 20 69 66 20 75 6e 73 65 74 | in.RAs,.excluded.in.RAs.if.unset |
| 61480 | 00 4c 69 6e 6b 20 4d 54 55 20 76 61 6c 75 65 20 70 6c 61 63 65 64 20 69 6e 20 52 41 73 2c 20 65 | .Link.MTU.value.placed.in.RAs,.e |
| 614a0 | 78 6c 75 64 65 64 20 69 6e 20 52 41 73 20 69 66 20 75 6e 73 65 74 00 4c 69 6e 6b 20 61 67 67 72 | xluded.in.RAs.if.unset.Link.aggr |
| 614c0 | 65 67 61 74 69 6f 6e 00 4c 69 6e 75 78 20 6e 65 74 66 69 6c 74 65 72 20 77 69 6c 6c 20 6e 6f 74 | egation.Linux.netfilter.will.not |
| 614e0 | 20 4e 41 54 20 74 72 61 66 66 69 63 20 6d 61 72 6b 65 64 20 61 73 20 49 4e 56 41 4c 49 44 2e 20 | .NAT.traffic.marked.as.INVALID.. |
| 61500 | 54 68 69 73 20 6f 66 74 65 6e 20 63 6f 6e 66 75 73 65 73 20 70 65 6f 70 6c 65 20 69 6e 74 6f 20 | This.often.confuses.people.into. |
| 61520 | 74 68 69 6e 6b 69 6e 67 20 74 68 61 74 20 4c 69 6e 75 78 20 28 6f 72 20 73 70 65 63 69 66 69 63 | thinking.that.Linux.(or.specific |
| 61540 | 61 6c 6c 79 20 56 79 4f 53 29 20 68 61 73 20 61 20 62 72 6f 6b 65 6e 20 4e 41 54 20 69 6d 70 6c | ally.VyOS).has.a.broken.NAT.impl |
| 61560 | 65 6d 65 6e 74 61 74 69 6f 6e 20 62 65 63 61 75 73 65 20 6e 6f 6e 2d 4e 41 54 65 64 20 74 72 61 | ementation.because.non-NATed.tra |
| 61580 | 66 66 69 63 20 69 73 20 73 65 65 6e 20 6c 65 61 76 69 6e 67 20 61 6e 20 65 78 74 65 72 6e 61 6c | ffic.is.seen.leaving.an.external |
| 615a0 | 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 69 73 20 61 63 74 75 61 6c 6c 79 20 77 6f 72 | .interface..This.is.actually.wor |
| 615c0 | 6b 69 6e 67 20 61 73 20 69 6e 74 65 6e 64 65 64 2c 20 61 6e 64 20 61 20 70 61 63 6b 65 74 20 63 | king.as.intended,.and.a.packet.c |
| 615e0 | 61 70 74 75 72 65 20 6f 66 20 74 68 65 20 22 6c 65 61 6b 79 22 20 74 72 61 66 66 69 63 20 73 68 | apture.of.the."leaky".traffic.sh |
| 61600 | 6f 75 6c 64 20 72 65 76 65 61 6c 20 74 68 61 74 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 | ould.reveal.that.the.traffic.is. |
| 61620 | 65 69 74 68 65 72 20 61 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 54 43 50 20 22 52 53 54 22 2c 20 | either.an.additional.TCP."RST",. |
| 61640 | 22 46 49 4e 2c 41 43 4b 22 2c 20 6f 72 20 22 52 53 54 2c 41 43 4b 22 20 73 65 6e 74 20 62 79 20 | "FIN,ACK",.or."RST,ACK".sent.by. |
| 61660 | 63 6c 69 65 6e 74 20 73 79 73 74 65 6d 73 20 61 66 74 65 72 20 4c 69 6e 75 78 20 6e 65 74 66 69 | client.systems.after.Linux.netfi |
| 61680 | 6c 74 65 72 20 63 6f 6e 73 69 64 65 72 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 6c | lter.considers.the.connection.cl |
| 616a0 | 6f 73 65 64 2e 20 54 68 65 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 69 73 20 74 68 65 20 61 64 64 | osed..The.most.common.is.the.add |
| 616c0 | 69 74 69 6f 6e 61 6c 20 54 43 50 20 52 53 54 20 73 6f 6d 65 20 68 6f 73 74 20 69 6d 70 6c 65 6d | itional.TCP.RST.some.host.implem |
| 616e0 | 65 6e 74 61 74 69 6f 6e 73 20 73 65 6e 64 20 61 66 74 65 72 20 74 65 72 6d 69 6e 61 74 69 6e 67 | entations.send.after.terminating |
| 61700 | 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 77 68 69 63 68 20 69 73 20 69 6d 70 6c 65 6d 65 6e | .a.connection.(which.is.implemen |
| 61720 | 74 61 74 69 6f 6e 2d 73 70 65 63 69 66 69 63 29 2e 00 4c 69 73 74 20 61 6c 6c 20 4d 41 43 73 65 | tation-specific)..List.all.MACse |
| 61740 | 63 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4c 69 73 74 20 6f 66 20 66 61 63 69 6c 69 74 69 65 73 | c.interfaces..List.of.facilities |
| 61760 | 20 75 73 65 64 20 62 79 20 73 79 73 6c 6f 67 2e 20 4d 6f 73 74 20 66 61 63 69 6c 69 74 69 65 73 | .used.by.syslog..Most.facilities |
| 61780 | 20 6e 61 6d 65 73 20 61 72 65 20 73 65 6c 66 20 65 78 70 6c 61 6e 61 74 6f 72 79 2e 20 46 61 63 | .names.are.self.explanatory..Fac |
| 617a0 | 69 6c 69 74 69 65 73 20 6c 6f 63 61 6c 30 20 2d 20 6c 6f 63 61 6c 37 20 63 6f 6d 6d 6f 6e 20 75 | ilities.local0.-.local7.common.u |
| 617c0 | 73 61 67 65 20 69 73 20 66 2e 65 2e 20 61 73 20 6e 65 74 77 6f 72 6b 20 6c 6f 67 73 20 66 61 63 | sage.is.f.e..as.network.logs.fac |
| 617e0 | 69 6c 69 74 69 65 73 20 66 6f 72 20 6e 6f 64 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 65 71 | ilities.for.nodes.and.network.eq |
| 61800 | 75 69 70 6d 65 6e 74 2e 20 47 65 6e 65 72 61 6c 6c 79 20 69 74 20 64 65 70 65 6e 64 73 20 6f 6e | uipment..Generally.it.depends.on |
| 61820 | 20 74 68 65 20 73 69 74 75 61 74 69 6f 6e 20 68 6f 77 20 74 6f 20 63 6c 61 73 73 69 66 79 20 6c | .the.situation.how.to.classify.l |
| 61840 | 6f 67 73 20 61 6e 64 20 70 75 74 20 74 68 65 6d 20 74 6f 20 66 61 63 69 6c 69 74 69 65 73 2e 20 | ogs.and.put.them.to.facilities.. |
| 61860 | 53 65 65 20 66 61 63 69 6c 69 74 69 65 73 20 6d 6f 72 65 20 61 73 20 61 20 74 6f 6f 6c 20 72 61 | See.facilities.more.as.a.tool.ra |
| 61880 | 74 68 65 72 20 74 68 61 6e 20 61 20 64 69 72 65 63 74 69 76 65 20 74 6f 20 66 6f 6c 6c 6f 77 2e | ther.than.a.directive.to.follow. |
| 618a0 | 00 4c 69 73 74 20 6f 66 20 6e 65 74 77 6f 72 6b 73 20 6f 72 20 63 6c 69 65 6e 74 20 61 64 64 72 | .List.of.networks.or.client.addr |
| 618c0 | 65 73 73 65 73 20 70 65 72 6d 69 74 74 65 64 20 74 6f 20 63 6f 6e 74 61 63 74 20 74 68 69 73 20 | esses.permitted.to.contact.this. |
| 618e0 | 4e 54 50 20 73 65 72 76 65 72 2e 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 4d 41 | NTP.server..List.of.supported.MA |
| 61900 | 43 73 3a 20 60 60 68 6d 61 63 2d 6d 64 35 60 60 2c 20 60 60 68 6d 61 63 2d 6d 64 35 2d 39 36 60 | Cs:.``hmac-md5``,.``hmac-md5-96` |
| 61920 | 60 2c 20 60 60 68 6d 61 63 2d 72 69 70 65 6d 64 31 36 30 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 | `,.``hmac-ripemd160``,.``hmac-sh |
| 61940 | 61 31 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d 39 36 60 60 2c 20 60 60 68 6d 61 63 2d 73 | a1``,.``hmac-sha1-96``,.``hmac-s |
| 61960 | 68 61 32 2d 32 35 36 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 35 31 32 60 60 2c 20 60 60 | ha2-256``,.``hmac-sha2-512``,.`` |
| 61980 | 75 6d 61 63 2d 36 34 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 63 2d 31 32 | umac-64@openssh.com``,.``umac-12 |
| 619a0 | 38 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 6d 64 35 2d 65 74 6d 40 | 8@openssh.com``,.``hmac-md5-etm@ |
| 619c0 | 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 6d 64 35 2d 39 36 2d 65 74 6d | openssh.com``,.``hmac-md5-96-etm |
| 619e0 | 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 72 69 70 65 6d 64 31 36 30 | @openssh.com``,.``hmac-ripemd160 |
| 61a00 | 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d | -etm@openssh.com``,.``hmac-sha1- |
| 61a20 | 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d 39 | etm@openssh.com``,.``hmac-sha1-9 |
| 61a40 | 36 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 | 6-etm@openssh.com``,.``hmac-sha2 |
| 61a60 | 2d 32 35 36 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 | -256-etm@openssh.com``,.``hmac-s |
| 61a80 | 68 61 32 2d 35 31 32 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 | ha2-512-etm@openssh.com``,.``uma |
| 61aa0 | 63 2d 36 34 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 63 2d 31 | c-64-etm@openssh.com``,.``umac-1 |
| 61ac0 | 32 38 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 00 4c 69 73 74 20 6f 66 20 73 75 70 | 28-etm@openssh.com``.List.of.sup |
| 61ae0 | 70 6f 72 74 65 64 20 61 6c 67 6f 72 69 74 68 6d 73 3a 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c | ported.algorithms:.``diffie-hell |
| 61b00 | 6d 61 6e 2d 67 72 6f 75 70 31 2d 73 68 61 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c | man-group1-sha1``,.``diffie-hell |
| 61b20 | 6d 61 6e 2d 67 72 6f 75 70 31 34 2d 73 68 61 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c | man-group14-sha1``,.``diffie-hel |
| 61b40 | 6c 6d 61 6e 2d 67 72 6f 75 70 31 34 2d 73 68 61 32 35 36 60 60 2c 20 60 60 64 69 66 66 69 65 2d | lman-group14-sha256``,.``diffie- |
| 61b60 | 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 36 2d 73 68 61 35 31 32 60 60 2c 20 60 60 64 69 66 66 | hellman-group16-sha512``,.``diff |
| 61b80 | 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 38 2d 73 68 61 35 31 32 60 60 2c 20 60 60 64 | ie-hellman-group18-sha512``,.``d |
| 61ba0 | 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 2d 65 78 63 68 61 6e 67 65 2d 73 68 61 | iffie-hellman-group-exchange-sha |
| 61bc0 | 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 2d 65 78 63 68 | 1``,.``diffie-hellman-group-exch |
| 61be0 | 61 6e 67 65 2d 73 68 61 32 35 36 60 60 2c 20 60 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 | ange-sha256``,.``ecdh-sha2-nistp |
| 61c00 | 32 35 36 60 60 2c 20 60 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 2c 20 60 | 256``,.``ecdh-sha2-nistp384``,.` |
| 61c20 | 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 60 60 2c 20 60 60 63 75 72 76 65 32 35 | `ecdh-sha2-nistp521``,.``curve25 |
| 61c40 | 35 31 39 2d 73 68 61 32 35 36 60 60 20 61 6e 64 20 60 60 63 75 72 76 65 32 35 35 31 39 2d 73 68 | 519-sha256``.and.``curve25519-sh |
| 61c60 | 61 32 35 36 40 6c 69 62 73 73 68 2e 6f 72 67 60 60 2e 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f | a256@libssh.org``..List.of.suppo |
| 61c80 | 72 74 65 64 20 61 6c 67 6f 72 69 74 68 6d 73 3a 20 60 60 73 73 68 2d 65 64 32 35 35 31 39 60 60 | rted.algorithms:.``ssh-ed25519`` |
| 61ca0 | 2c 20 60 60 73 73 68 2d 65 64 32 35 35 31 39 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 | ,.``ssh-ed25519-cert-v01@openssh |
| 61cc0 | 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 73 73 68 2d 65 64 32 35 35 31 39 40 6f 70 65 6e 73 73 68 | .com``,.``sk-ssh-ed25519@openssh |
| 61ce0 | 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 73 73 68 2d 65 64 32 35 35 31 39 2d 63 65 72 74 2d 76 30 | .com``,.``sk-ssh-ed25519-cert-v0 |
| 61d00 | 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 | 1@openssh.com``,.``ecdsa-sha2-ni |
| 61d20 | 73 74 70 32 35 36 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 2d | stp256``,.``ecdsa-sha2-nistp256- |
| 61d40 | 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 65 63 64 73 61 2d | cert-v01@openssh.com``,.``ecdsa- |
| 61d60 | 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 | sha2-nistp384``,.``ecdsa-sha2-ni |
| 61d80 | 73 74 70 33 38 34 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 | stp384-cert-v01@openssh.com``,.` |
| 61da0 | 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 60 60 2c 20 60 60 65 63 64 73 61 2d | `ecdsa-sha2-nistp521``,.``ecdsa- |
| 61dc0 | 73 68 61 32 2d 6e 69 73 74 70 35 32 31 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 | sha2-nistp521-cert-v01@openssh.c |
| 61de0 | 6f 6d 60 60 2c 20 60 60 73 6b 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 40 6f | om``,.``sk-ecdsa-sha2-nistp256@o |
| 61e00 | 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 | penssh.com``,.``sk-ecdsa-sha2-ni |
| 61e20 | 73 74 70 32 35 36 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 | stp256-cert-v01@openssh.com``,.` |
| 61e40 | 60 77 65 62 61 75 74 68 6e 2d 73 6b 2d 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 | `webauthn-sk-ecdsa-sha2-nistp256 |
| 61e60 | 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 73 68 2d 64 73 73 60 60 2c 20 60 60 73 | @openssh.com``,.``ssh-dss``,.``s |
| 61e80 | 73 68 2d 64 73 73 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 | sh-dss-cert-v01@openssh.com``,.` |
| 61ea0 | 60 73 73 68 2d 72 73 61 60 60 2c 20 60 60 73 73 68 2d 72 73 61 2d 63 65 72 74 2d 76 30 31 40 6f | `ssh-rsa``,.``ssh-rsa-cert-v01@o |
| 61ec0 | 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 32 35 36 60 60 2c 20 | penssh.com``,.``rsa-sha2-256``,. |
| 61ee0 | 60 60 72 73 61 2d 73 68 61 32 2d 32 35 36 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e | ``rsa-sha2-256-cert-v01@openssh. |
| 61f00 | 63 6f 6d 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 35 31 32 60 60 2c 20 60 60 72 73 61 2d 73 | com``,.``rsa-sha2-512``,.``rsa-s |
| 61f20 | 68 61 32 2d 35 31 32 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 00 4c | ha2-512-cert-v01@openssh.com``.L |
| 61f40 | 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 63 69 70 68 65 72 73 3a 20 60 60 33 64 65 73 | ist.of.supported.ciphers:.``3des |
| 61f60 | 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 32 38 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 39 32 | -cbc``,.``aes128-cbc``,.``aes192 |
| 61f80 | 2d 63 62 63 60 60 2c 20 60 60 61 65 73 32 35 36 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 32 38 | -cbc``,.``aes256-cbc``,.``aes128 |
| 61fa0 | 2d 63 74 72 60 60 2c 20 60 60 61 65 73 31 39 32 2d 63 74 72 60 60 2c 20 60 60 61 65 73 32 35 36 | -ctr``,.``aes192-ctr``,.``aes256 |
| 61fc0 | 2d 63 74 72 60 60 2c 20 60 60 61 72 63 66 6f 75 72 31 32 38 60 60 2c 20 60 60 61 72 63 66 6f 75 | -ctr``,.``arcfour128``,.``arcfou |
| 61fe0 | 72 32 35 36 60 60 2c 20 60 60 61 72 63 66 6f 75 72 60 60 2c 20 60 60 62 6c 6f 77 66 69 73 68 2d | r256``,.``arcfour``,.``blowfish- |
| 62000 | 63 62 63 60 60 2c 20 60 60 63 61 73 74 31 32 38 2d 63 62 63 60 60 00 4c 69 73 74 20 6f 66 20 77 | cbc``,.``cast128-cbc``.List.of.w |
| 62020 | 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 00 4c 69 73 74 65 6e 20 66 6f 72 | ell-known.communities.Listen.for |
| 62040 | 20 44 48 43 50 20 72 65 71 75 65 73 74 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 60 65 74 | .DHCP.requests.on.interface.``et |
| 62060 | 68 31 60 60 2e 00 4c 69 73 74 73 20 56 52 46 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 | h1``..Lists.VRFs.that.have.been. |
| 62080 | 63 72 65 61 74 65 64 00 4c 6f 61 64 20 42 61 6c 61 6e 63 65 00 4c 6f 61 64 20 42 61 6c 61 6e 63 | created.Load.Balance.Load.Balanc |
| 620a0 | 69 6e 67 00 4c 6f 61 64 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 20 69 6e 20 | ing.Load.the.container.image.in. |
| 620c0 | 6f 70 2d 6d 6f 64 65 2e 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 00 4c 6f 61 64 2d 62 61 6c | op-mode..Load-balancing.Load-bal |
| 620e0 | 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 | ancing.algorithms.to.be.used.for |
| 62100 | 20 64 69 73 74 72 69 62 75 74 65 64 20 72 65 71 75 65 73 74 73 20 61 6d 6f 6e 67 20 74 68 65 20 | .distributed.requests.among.the. |
| 62120 | 61 76 61 69 6c 61 62 6c 65 20 73 65 72 76 65 72 73 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 | available.servers.Load-balancing |
| 62140 | 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 64 69 73 74 72 | .algorithms.to.be.used.for.distr |
| 62160 | 69 62 75 74 69 6e 64 20 72 65 71 75 65 73 74 73 20 61 6d 6f 6e 67 20 74 68 65 20 76 61 69 6c 61 | ibutind.requests.among.the.vaila |
| 62180 | 62 6c 65 20 73 65 72 76 65 72 73 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 73 63 68 65 64 | ble.servers.Load-balancing.sched |
| 621a0 | 75 6c 65 20 61 6c 67 6f 72 69 74 68 6d 3a 00 4c 6f 63 61 6c 00 4c 6f 63 61 6c 20 43 6f 6e 66 69 | ule.algorithm:.Local.Local.Confi |
| 621c0 | 67 75 72 61 74 69 6f 6e 20 2d 20 41 6e 6e 6f 74 61 74 65 64 3a 00 4c 6f 63 61 6c 20 43 6f 6e 66 | guration.-.Annotated:.Local.Conf |
| 621e0 | 69 67 75 72 61 74 69 6f 6e 3a 00 4c 6f 63 61 6c 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 | iguration:.Local.IP.`<address>`. |
| 62200 | 75 73 65 64 20 77 68 65 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 48 | used.when.communicating.to.the.H |
| 62220 | 41 20 70 65 65 72 2e 00 4c 6f 63 61 6c 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 75 73 65 | A.peer..Local.IP.`<address>`.use |
| 62240 | 64 20 77 68 65 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 66 61 69 6c | d.when.communicating.to.the.fail |
| 62260 | 6f 76 65 72 20 70 65 65 72 2e 00 4c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f | over.peer..Local.IP.addresses.to |
| 62280 | 20 6c 69 73 74 65 6e 20 6f 6e 00 4c 6f 63 61 6c 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 | .listen.on.Local.IPv4.addresses. |
| 622a0 | 66 6f 72 20 73 65 72 76 69 63 65 20 74 6f 20 6c 69 73 74 65 6e 20 6f 6e 2e 00 4c 6f 63 61 6c 20 | for.service.to.listen.on..Local. |
| 622c0 | 52 6f 75 74 65 20 49 50 76 34 00 4c 6f 63 61 6c 20 52 6f 75 74 65 20 49 50 76 36 00 4c 6f 63 61 | Route.IPv4.Local.Route.IPv6.Loca |
| 622e0 | 6c 20 52 6f 75 74 65 20 50 6f 6c 69 63 79 00 4c 6f 63 61 6c 20 55 73 65 72 20 41 63 63 6f 75 6e | l.Route.Policy.Local.User.Accoun |
| 62300 | 74 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 6b | t.Local.path.that.includes.the.k |
| 62320 | 6e 6f 77 6e 20 68 6f 73 74 73 20 66 69 6c 65 2e 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 | nown.hosts.file..Local.path.that |
| 62340 | 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 66 69 6c 65 20 6f | .includes.the.private.key.file.o |
| 62360 | 66 20 74 68 65 20 72 6f 75 74 65 72 2e 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 20 69 6e | f.the.router..Local.path.that.in |
| 62380 | 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 66 69 6c 65 20 6f 66 20 74 68 | cludes.the.public.key.file.of.th |
| 623a0 | 65 20 72 6f 75 74 65 72 2e 00 4c 6f 63 61 6c 20 72 6f 75 74 65 00 4c 6f 63 61 6c 6c 79 20 63 6f | e.router..Local.route.Locally.co |
| 623c0 | 6e 6e 65 63 74 20 74 6f 20 73 65 72 69 61 6c 20 70 6f 72 74 20 69 64 65 6e 74 69 66 69 65 64 20 | nnect.to.serial.port.identified. |
| 623e0 | 62 79 20 60 3c 64 65 76 69 63 65 3e 60 2e 00 4c 6f 63 61 6c 6c 79 20 73 69 67 6e 69 66 69 63 61 | by.`<device>`..Locally.significa |
| 62400 | 6e 74 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 2e 00 4c 6f 67 20 | nt.administrative.distance..Log. |
| 62420 | 61 6c 65 72 74 00 4c 6f 67 20 61 75 64 69 74 00 4c 6f 67 20 63 68 61 6e 67 65 73 20 69 6e 20 61 | alert.Log.audit.Log.changes.in.a |
| 62440 | 64 6a 61 63 65 6e 63 79 20 73 74 61 74 65 2e 00 4c 6f 67 20 65 76 65 72 79 74 68 69 6e 67 00 4c | djacency.state..Log.everything.L |
| 62460 | 6f 67 20 6d 65 73 73 61 67 65 73 20 66 72 6f 6d 20 61 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 | og.messages.from.a.specified.ima |
| 62480 | 67 65 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f | ge.can.be.displayed.on.the.conso |
| 624a0 | 6c 65 2e 20 44 65 74 61 69 6c 73 20 6f 66 20 61 6c 6c 6f 77 65 64 20 70 61 72 61 6d 65 74 65 72 | le..Details.of.allowed.parameter |
| 624c0 | 73 3a 00 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 74 6f 20 60 60 2f 64 65 76 | s:.Log.syslog.messages.to.``/dev |
| 624e0 | 2f 63 6f 6e 73 6f 6c 65 60 60 2c 20 66 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f | /console``,.for.an.explanation.o |
| 62500 | 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f | n.:ref:`syslog_facilities`.keywo |
| 62520 | 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 | rds.and.:ref:`syslog_severity_le |
| 62540 | 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 | vel`.keywords.see.tables.below.. |
| 62560 | 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 74 6f 20 66 69 6c 65 20 73 70 65 63 | Log.syslog.messages.to.file.spec |
| 62580 | 69 66 69 65 64 20 76 69 61 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 2c 20 66 6f 72 20 61 6e 20 65 | ified.via.`<filename>`,.for.an.e |
| 625a0 | 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c | xplanation.on.:ref:`syslog_facil |
| 625c0 | 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 | ities`.keywords.and.:ref:`syslog |
| 625e0 | 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 | _severity_level`.keywords.see.ta |
| 62600 | 62 6c 65 73 20 62 65 6c 6f 77 2e 00 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 | bles.below..Log.syslog.messages. |
| 62620 | 74 6f 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 61 64 | to.remote.host.specified.by.`<ad |
| 62640 | 64 72 65 73 73 3e 60 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 73 70 65 63 | dress>`..The.address.can.be.spec |
| 62660 | 69 66 69 65 64 20 62 79 20 65 69 74 68 65 72 20 46 51 44 4e 20 6f 72 20 49 50 20 61 64 64 72 65 | ified.by.either.FQDN.or.IP.addre |
| 62680 | 73 73 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 | ss..For.an.explanation.on.:ref:` |
| 626a0 | 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 | syslog_facilities`.keywords.and. |
| 626c0 | 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 | :ref:`syslog_severity_level`.key |
| 626e0 | 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 4c 6f 67 20 74 68 65 20 | words.see.tables.below..Log.the. |
| 62700 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 65 76 65 6e 74 73 20 70 65 72 20 70 | connection.tracking.events.per.p |
| 62720 | 72 6f 74 6f 63 6f 6c 2e 00 4c 6f 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 | rotocol..Log.the.connection.trac |
| 62740 | 6b 69 6e 67 20 65 76 65 6e 74 73 20 70 65 72 20 74 79 70 65 2e 00 4c 6f 67 67 69 6e 67 00 4c 6f | king.events.per.type..Logging.Lo |
| 62760 | 67 67 69 6e 67 20 63 61 6e 20 62 65 20 65 6e 61 62 6c 65 20 66 6f 72 20 65 76 65 72 79 20 73 69 | gging.can.be.enable.for.every.si |
| 62780 | 6e 67 6c 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 2e 20 49 66 20 65 6e 61 62 6c 65 64 2c 20 | ngle.firewall.rule..If.enabled,. |
| 627a0 | 6f 74 68 65 72 20 6c 6f 67 20 6f 70 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 | other.log.options.can.be.defined |
| 627c0 | 2e 00 4c 6f 67 67 69 6e 67 20 74 6f 20 61 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 6c 65 61 76 65 | ..Logging.to.a.remote.host.leave |
| 627e0 | 73 20 74 68 65 20 6c 6f 63 61 6c 20 6c 6f 67 67 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | s.the.local.logging.configuratio |
| 62800 | 6e 20 69 6e 74 61 63 74 2c 20 69 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 | n.intact,.it.can.be.configured.i |
| 62820 | 6e 20 70 61 72 61 6c 6c 65 6c 20 74 6f 20 61 20 63 75 73 74 6f 6d 20 66 69 6c 65 20 6f 72 20 63 | n.parallel.to.a.custom.file.or.c |
| 62840 | 6f 6e 73 6f 6c 65 20 6c 6f 67 67 69 6e 67 2e 20 59 6f 75 20 63 61 6e 20 6c 6f 67 20 74 6f 20 6d | onsole.logging..You.can.log.to.m |
| 62860 | 75 6c 74 69 70 6c 65 20 68 6f 73 74 73 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2c 20 | ultiple.hosts.at.the.same.time,. |
| 62880 | 75 73 69 6e 67 20 65 69 74 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 54 68 65 20 64 65 66 | using.either.TCP.or.UDP..The.def |
| 628a0 | 61 75 6c 74 20 69 73 20 73 65 6e 64 69 6e 67 20 74 68 65 20 6d 65 73 73 61 67 65 73 20 76 69 61 | ault.is.sending.the.messages.via |
| 628c0 | 20 70 6f 72 74 20 35 31 34 2f 55 44 50 2e 00 4c 6f 67 69 6e 20 42 61 6e 6e 65 72 00 4c 6f 67 69 | .port.514/UDP..Login.Banner.Logi |
| 628e0 | 6e 20 6c 69 6d 69 74 73 00 4c 6f 67 69 6e 2f 55 73 65 72 20 4d 61 6e 61 67 65 6d 65 6e 74 00 4c | n.limits.Login/User.Management.L |
| 62900 | 6f 6b 69 00 4c 6f 6f 70 20 46 72 65 65 20 41 6c 74 65 72 6e 61 74 65 20 28 4c 46 41 29 00 4c 6f | oki.Loop.Free.Alternate.(LFA).Lo |
| 62920 | 6f 70 62 61 63 6b 00 4c 6f 6f 70 62 61 63 6b 73 20 6f 63 63 75 72 73 20 61 74 20 74 68 65 20 49 | opback.Loopbacks.occurs.at.the.I |
| 62940 | 50 20 6c 65 76 65 6c 20 74 68 65 20 73 61 6d 65 20 77 61 79 20 61 73 20 66 6f 72 20 6f 74 68 65 | P.level.the.same.way.as.for.othe |
| 62960 | 72 20 69 6e 74 65 72 66 61 63 65 73 2c 20 65 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 20 61 72 | r.interfaces,.ethernet.frames.ar |
| 62980 | 65 20 6e 6f 74 20 66 6f 72 77 61 72 64 65 64 20 62 65 74 77 65 65 6e 20 50 73 65 75 64 6f 2d 45 | e.not.forwarded.between.Pseudo-E |
| 629a0 | 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4c 6f 77 00 4d 41 43 20 47 72 6f 75 | thernet.interfaces..Low.MAC.Grou |
| 629c0 | 70 73 00 4d 41 43 20 61 64 64 72 65 73 73 20 61 67 69 6e 67 20 60 3c 74 69 6d 65 60 3e 20 69 6e | ps.MAC.address.aging.`<time`>.in |
| 629e0 | 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 33 30 30 29 2e 00 4d 41 43 2f 50 48 59 | .seconds.(default:.300)..MAC/PHY |
| 62a00 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 4d 41 43 56 4c 41 4e 20 2d 20 50 73 65 75 64 6f 20 45 74 | .information.MACVLAN.-.Pseudo.Et |
| 62a20 | 68 65 72 6e 65 74 00 4d 41 43 73 65 63 00 4d 41 43 73 65 63 20 69 73 20 61 6e 20 49 45 45 45 20 | hernet.MACsec.MACsec.is.an.IEEE. |
| 62a40 | 73 74 61 6e 64 61 72 64 20 28 49 45 45 45 20 38 30 32 2e 31 41 45 29 20 66 6f 72 20 4d 41 43 20 | standard.(IEEE.802.1AE).for.MAC. |
| 62a60 | 73 65 63 75 72 69 74 79 2c 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 32 30 30 36 2e 20 49 74 | security,.introduced.in.2006..It |
| 62a80 | 20 64 65 66 69 6e 65 73 20 61 20 77 61 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 70 72 | .defines.a.way.to.establish.a.pr |
| 62aa0 | 6f 74 6f 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 | otocol.independent.connection.be |
| 62ac0 | 74 77 65 65 6e 20 74 77 6f 20 68 6f 73 74 73 20 77 69 74 68 20 64 61 74 61 20 63 6f 6e 66 69 64 | tween.two.hosts.with.data.confid |
| 62ae0 | 65 6e 74 69 61 6c 69 74 79 2c 20 61 75 74 68 65 6e 74 69 63 69 74 79 20 61 6e 64 2f 6f 72 20 69 | entiality,.authenticity.and/or.i |
| 62b00 | 6e 74 65 67 72 69 74 79 2c 20 75 73 69 6e 67 20 47 43 4d 2d 41 45 53 2d 31 32 38 2e 20 4d 41 43 | ntegrity,.using.GCM-AES-128..MAC |
| 62b20 | 73 65 63 20 6f 70 65 72 61 74 65 73 20 6f 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 6c 61 79 | sec.operates.on.the.Ethernet.lay |
| 62b40 | 65 72 20 61 6e 64 20 61 73 20 73 75 63 68 20 69 73 20 61 20 6c 61 79 65 72 20 32 20 70 72 6f 74 | er.and.as.such.is.a.layer.2.prot |
| 62b60 | 6f 63 6f 6c 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 69 74 27 73 20 64 65 73 69 67 6e 65 64 20 | ocol,.which.means.it's.designed. |
| 62b80 | 74 6f 20 73 65 63 75 72 65 20 74 72 61 66 66 69 63 20 77 69 74 68 69 6e 20 61 20 6c 61 79 65 72 | to.secure.traffic.within.a.layer |
| 62ba0 | 20 32 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 63 6c 75 64 69 6e 67 20 44 48 43 50 20 6f 72 20 41 52 | .2.network,.including.DHCP.or.AR |
| 62bc0 | 50 20 72 65 71 75 65 73 74 73 2e 20 49 74 20 64 6f 65 73 20 6e 6f 74 20 63 6f 6d 70 65 74 65 20 | P.requests..It.does.not.compete. |
| 62be0 | 77 69 74 68 20 6f 74 68 65 72 20 73 65 63 75 72 69 74 79 20 73 6f 6c 75 74 69 6f 6e 73 20 73 75 | with.other.security.solutions.su |
| 62c00 | 63 68 20 61 73 20 49 50 73 65 63 20 28 6c 61 79 65 72 20 33 29 20 6f 72 20 54 4c 53 20 28 6c 61 | ch.as.IPsec.(layer.3).or.TLS.(la |
| 62c20 | 79 65 72 20 34 29 2c 20 61 73 20 61 6c 6c 20 74 68 6f 73 65 20 73 6f 6c 75 74 69 6f 6e 73 20 61 | yer.4),.as.all.those.solutions.a |
| 62c40 | 72 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 69 72 20 6f 77 6e 20 73 70 65 63 69 66 69 63 20 75 | re.used.for.their.own.specific.u |
| 62c60 | 73 65 20 63 61 73 65 73 2e 00 4d 41 43 73 65 63 20 69 73 20 61 6e 20 69 6e 74 65 72 65 73 74 69 | se.cases..MACsec.is.an.interesti |
| 62c80 | 6e 67 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 65 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 | ng.alternative.to.existing.tunne |
| 62ca0 | 6c 69 6e 67 20 73 6f 6c 75 74 69 6f 6e 73 20 74 68 61 74 20 70 72 6f 74 65 63 74 73 20 6c 61 79 | ling.solutions.that.protects.lay |
| 62cc0 | 65 72 20 32 20 62 79 20 70 65 72 66 6f 72 6d 69 6e 67 20 69 6e 74 65 67 72 69 74 79 2c 20 6f 72 | er.2.by.performing.integrity,.or |
| 62ce0 | 69 67 69 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 61 6e 64 20 6f 70 74 69 6f 6e 61 | igin.authentication,.and.optiona |
| 62d00 | 6c 6c 79 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 65 20 74 79 70 69 63 61 6c 20 75 73 65 20 | lly.encryption..The.typical.use. |
| 62d20 | 63 61 73 65 20 69 73 20 74 6f 20 75 73 65 20 4d 41 43 73 65 63 20 62 65 74 77 65 65 6e 20 68 6f | case.is.to.use.MACsec.between.ho |
| 62d40 | 73 74 73 20 61 6e 64 20 61 63 63 65 73 73 20 73 77 69 74 63 68 65 73 2c 20 62 65 74 77 65 65 6e | sts.and.access.switches,.between |
| 62d60 | 20 74 77 6f 20 68 6f 73 74 73 2c 20 6f 72 20 62 65 74 77 65 65 6e 20 74 77 6f 20 73 77 69 74 63 | .two.hosts,.or.between.two.switc |
| 62d80 | 68 65 73 2e 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 2c 20 77 65 20 75 | hes..in.this.example.below,.we.u |
| 62da0 | 73 65 20 56 58 4c 41 4e 20 61 6e 64 20 4d 41 43 73 65 63 20 74 6f 20 73 65 63 75 72 65 20 74 68 | se.VXLAN.and.MACsec.to.secure.th |
| 62dc0 | 65 20 74 75 6e 6e 65 6c 2e 00 4d 41 43 73 65 63 20 6f 6e 6c 79 20 70 72 6f 76 69 64 65 73 20 61 | e.tunnel..MACsec.only.provides.a |
| 62de0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 79 20 64 65 66 61 75 6c 74 2c 20 65 6e 63 72 79 70 | uthentication.by.default,.encryp |
| 62e00 | 74 69 6f 6e 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 | tion.is.optional..This.command.w |
| 62e20 | 69 6c 6c 20 65 6e 61 62 6c 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 6f 75 | ill.enable.encryption.for.all.ou |
| 62e40 | 74 67 6f 69 6e 67 20 70 61 63 6b 65 74 73 2e 00 4d 41 43 73 65 63 20 6f 70 74 69 6f 6e 73 00 4d | tgoing.packets..MACsec.options.M |
| 62e60 | 41 43 73 65 63 20 6f 76 65 72 20 77 61 6e 00 4d 44 49 20 70 6f 77 65 72 00 4d 46 41 20 54 4f 54 | ACsec.over.wan.MDI.power.MFA.TOT |
| 62e80 | 50 20 6f 70 74 69 6f 6e 73 00 4d 46 41 2f 32 46 41 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | P.options.MFA/2FA.authentication |
| 62ea0 | 20 75 73 69 6e 67 20 4f 54 50 20 28 6f 6e 65 20 74 69 6d 65 20 70 61 73 73 77 6f 72 64 73 29 00 | .using.OTP.(one.time.passwords). |
| 62ec0 | 4d 50 4c 53 00 4d 50 4c 53 20 73 75 70 70 6f 72 74 20 69 6e 20 56 79 4f 53 20 69 73 20 6e 6f 74 | MPLS.MPLS.support.in.VyOS.is.not |
| 62ee0 | 20 66 69 6e 69 73 68 65 64 20 79 65 74 2c 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 69 74 73 | .finished.yet,.and.therefore.its |
| 62f00 | 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 6c 69 6d 69 74 65 64 2e 20 43 75 72 72 65 | .functionality.is.limited..Curre |
| 62f20 | 6e 74 6c 79 20 74 68 65 72 65 20 69 73 20 6e 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 4d 50 4c | ntly.there.is.no.support.for.MPL |
| 62f40 | 53 20 65 6e 61 62 6c 65 64 20 56 50 4e 20 73 65 72 76 69 63 65 73 20 73 75 63 68 20 61 73 20 4c | S.enabled.VPN.services.such.as.L |
| 62f60 | 32 56 50 4e 73 20 61 6e 64 20 6d 56 50 4e 73 2e 20 52 53 56 50 20 73 75 70 70 6f 72 74 20 69 73 | 2VPNs.and.mVPNs..RSVP.support.is |
| 62f80 | 20 61 6c 73 6f 20 6e 6f 74 20 70 72 65 73 65 6e 74 20 61 73 20 74 68 65 20 75 6e 64 65 72 6c 79 | .also.not.present.as.the.underly |
| 62fa0 | 69 6e 67 20 72 6f 75 74 69 6e 67 20 73 74 61 63 6b 20 28 46 52 52 29 20 64 6f 65 73 20 6e 6f 74 | ing.routing.stack.(FRR).does.not |
| 62fc0 | 20 69 6d 70 6c 65 6d 65 6e 74 20 69 74 2e 20 43 75 72 72 65 6e 74 6c 79 20 56 79 4f 53 20 69 6d | .implement.it..Currently.VyOS.im |
| 62fe0 | 70 6c 65 6d 65 6e 74 73 20 4c 44 50 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 52 46 43 | plements.LDP.as.described.in.RFC |
| 63000 | 20 35 30 33 36 3b 20 6f 74 68 65 72 20 4c 44 50 20 73 74 61 6e 64 61 72 64 20 61 72 65 20 74 68 | .5036;.other.LDP.standard.are.th |
| 63020 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 6e 65 73 3a 20 52 46 43 20 36 37 32 30 2c 20 52 46 43 20 | e.following.ones:.RFC.6720,.RFC. |
| 63040 | 36 36 36 37 2c 20 52 46 43 20 35 39 31 39 2c 20 52 46 43 20 35 35 36 31 2c 20 52 46 43 20 37 35 | 6667,.RFC.5919,.RFC.5561,.RFC.75 |
| 63060 | 35 32 2c 20 52 46 43 20 34 34 34 37 2e 20 42 65 63 61 75 73 65 20 4d 50 4c 53 20 69 73 20 61 6c | 52,.RFC.4447..Because.MPLS.is.al |
| 63080 | 72 65 61 64 79 20 61 76 61 69 6c 61 62 6c 65 20 28 46 52 52 20 61 6c 73 6f 20 73 75 70 70 6f 72 | ready.available.(FRR.also.suppor |
| 630a0 | 74 73 20 52 46 43 20 33 30 33 31 29 2e 00 4d 53 53 20 76 61 6c 75 65 20 3d 20 4d 54 55 20 2d 20 | ts.RFC.3031)..MSS.value.=.MTU.-. |
| 630c0 | 32 30 20 28 49 50 20 68 65 61 64 65 72 29 20 2d 20 32 30 20 28 54 43 50 20 68 65 61 64 65 72 29 | 20.(IP.header).-.20.(TCP.header) |
| 630e0 | 2c 20 72 65 73 75 6c 74 69 6e 67 20 69 6e 20 31 34 35 32 20 62 79 74 65 73 20 6f 6e 20 61 20 31 | ,.resulting.in.1452.bytes.on.a.1 |
| 63100 | 34 39 32 20 62 79 74 65 20 4d 54 55 2e 00 4d 53 53 20 76 61 6c 75 65 20 3d 20 4d 54 55 20 2d 20 | 492.byte.MTU..MSS.value.=.MTU.-. |
| 63120 | 34 30 20 28 49 50 76 36 20 68 65 61 64 65 72 29 20 2d 20 32 30 20 28 54 43 50 20 68 65 61 64 65 | 40.(IPv6.header).-.20.(TCP.heade |
| 63140 | 72 29 2c 20 72 65 73 75 6c 74 69 6e 67 20 69 6e 20 31 34 33 32 20 62 79 74 65 73 20 6f 6e 20 61 | r),.resulting.in.1432.bytes.on.a |
| 63160 | 20 31 34 39 32 20 62 79 74 65 20 4d 54 55 2e 00 4d 54 55 00 4d 61 69 6c 20 73 79 73 74 65 6d 00 | .1492.byte.MTU..MTU.Mail.system. |
| 63180 | 4d 61 69 6e 20 6e 6f 74 65 73 20 72 65 67 61 72 64 69 6e 67 20 74 68 69 73 20 70 61 63 6b 65 74 | Main.notes.regarding.this.packet |
| 631a0 | 20 66 6c 6f 77 20 61 6e 64 20 74 65 72 6d 69 6e 6f 6c 6f 67 79 20 75 73 65 64 20 69 6e 20 56 79 | .flow.and.terminology.used.in.Vy |
| 631c0 | 4f 53 20 66 69 72 65 77 61 6c 6c 3a 00 4d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 56 79 4f 53 | OS.firewall:.Main.structure.VyOS |
| 631e0 | 20 66 69 72 65 77 61 6c 6c 20 63 6c 69 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 4d 61 69 | .firewall.cli.is.shown.next:.Mai |
| 63200 | 6e 20 73 74 72 75 63 74 75 72 65 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 4d 61 69 6e 74 | n.structure.is.shown.next:.Maint |
| 63220 | 65 6e 61 6e 63 65 20 6d 6f 64 65 00 4d 61 6b 65 20 63 6f 6e 66 69 67 2d 73 79 6e 63 20 72 65 6c | enance.mode.Make.config-sync.rel |
| 63240 | 65 76 61 6e 74 20 63 68 61 6e 67 65 73 20 74 6f 20 52 6f 75 74 65 72 20 41 27 73 20 63 6f 6e 66 | evant.changes.to.Router.A's.conf |
| 63260 | 69 67 75 72 61 74 69 6f 6e 00 4d 61 6b 65 20 73 75 72 65 20 63 6f 6e 6e 74 72 61 63 6b 20 69 73 | iguration.Make.sure.conntrack.is |
| 63280 | 20 65 6e 61 62 6c 65 64 20 62 79 20 72 75 6e 6e 69 6e 67 20 61 6e 64 20 73 68 6f 77 20 63 6f 6e | .enabled.by.running.and.show.con |
| 632a0 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 2e 00 4d 61 6e 61 67 65 20 69 | nection.tracking.table..Manage.i |
| 632c0 | 6e 74 65 72 6e 61 6c 20 71 75 65 75 65 20 73 69 7a 65 2c 20 64 65 66 61 75 6c 74 20 73 69 7a 65 | nternal.queue.size,.default.size |
| 632e0 | 20 69 73 20 34 30 39 36 20 65 76 65 6e 74 73 2e 00 4d 61 6e 61 67 65 20 6c 6f 67 20 6c 65 76 65 | .is.4096.events..Manage.log.leve |
| 63300 | 6c 00 4d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 00 4d 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 | l.Managed.devices.Management.Fra |
| 63320 | 6d 65 20 50 72 6f 74 65 63 74 69 6f 6e 20 28 4d 46 50 29 20 61 63 63 6f 72 64 69 6e 67 20 74 6f | me.Protection.(MFP).according.to |
| 63340 | 20 49 45 45 45 20 38 30 32 2e 31 31 77 00 4d 61 6e 64 61 74 6f 72 79 20 53 65 74 74 69 6e 67 73 | .IEEE.802.11w.Mandatory.Settings |
| 63360 | 00 4d 61 6e 75 61 6c 20 4e 65 69 67 68 62 6f 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4d | .Manual.Neighbor.Configuration.M |
| 63380 | 61 6e 75 61 6c 6c 79 20 74 72 69 67 67 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 72 65 6e 65 | anually.trigger.certificate.rene |
| 633a0 | 77 61 6c 2e 20 54 68 69 73 20 77 69 6c 6c 20 62 65 20 64 6f 6e 65 20 74 77 69 63 65 20 61 20 64 | wal..This.will.be.done.twice.a.d |
| 633c0 | 61 79 2e 00 4d 61 70 73 20 74 68 65 20 56 4e 49 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 | ay..Maps.the.VNI.to.the.specifie |
| 633e0 | 64 20 56 4c 41 4e 20 69 64 2e 20 54 68 65 20 56 4c 41 4e 20 63 61 6e 20 74 68 65 6e 20 62 65 20 | d.VLAN.id..The.VLAN.can.then.be. |
| 63400 | 63 6f 6e 73 75 6d 65 64 20 62 79 20 61 20 62 72 69 64 67 65 2e 00 4d 61 72 6b 20 52 41 44 49 55 | consumed.by.a.bridge..Mark.RADIU |
| 63420 | 53 20 73 65 72 76 65 72 20 61 73 20 6f 66 66 6c 69 6e 65 20 66 6f 72 20 74 68 69 73 20 67 69 76 | S.server.as.offline.for.this.giv |
| 63440 | 65 6e 20 60 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 4d 61 72 6b 20 74 68 65 | en.`<time>`.in.seconds..Mark.the |
| 63460 | 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 61 73 20 70 61 73 73 77 6f 72 64 20 70 72 6f | .CAs.private.key.as.password.pro |
| 63480 | 74 65 63 74 65 64 2e 20 55 73 65 72 20 69 73 20 61 73 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 | tected..User.is.asked.for.the.pa |
| 634a0 | 73 73 77 6f 72 64 20 77 68 65 6e 20 74 68 65 20 6b 65 79 20 69 73 20 72 65 66 65 72 65 6e 63 65 | ssword.when.the.key.is.reference |
| 634c0 | 64 2e 00 4d 61 72 6b 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 61 73 20 70 61 73 73 77 | d..Mark.the.private.key.as.passw |
| 634e0 | 6f 72 64 20 70 72 6f 74 65 63 74 65 64 2e 20 55 73 65 72 20 69 73 20 61 73 6b 65 64 20 66 6f 72 | ord.protected..User.is.asked.for |
| 63500 | 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 77 68 65 6e 20 74 68 65 20 6b 65 79 20 69 73 20 72 65 | .the.password.when.the.key.is.re |
| 63520 | 66 65 72 65 6e 63 65 64 2e 00 4d 61 74 63 68 20 42 47 50 20 6c 61 72 67 65 20 63 6f 6d 6d 75 6e | ferenced..Match.BGP.large.commun |
| 63540 | 69 74 69 65 73 2e 00 4d 61 74 63 68 20 49 50 20 61 64 64 72 65 73 73 65 73 20 62 61 73 65 64 20 | ities..Match.IP.addresses.based. |
| 63560 | 6f 6e 20 69 74 73 20 67 65 6f 6c 6f 63 61 74 69 6f 6e 2e 20 4d 6f 72 65 20 69 6e 66 6f 3a 20 60 | on.its.geolocation..More.info:.` |
| 63580 | 67 65 6f 69 70 20 6d 61 74 63 68 69 6e 67 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 | geoip.matching.<https://wiki.nft |
| 635a0 | 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 | ables.org/wiki-nftables/index.ph |
| 635c0 | 70 2f 47 65 6f 49 50 5f 6d 61 74 63 68 69 6e 67 3e 60 5f 2e 00 4d 61 74 63 68 20 49 50 20 61 64 | p/GeoIP_matching>`_..Match.IP.ad |
| 635e0 | 64 72 65 73 73 65 73 20 62 61 73 65 64 20 6f 6e 20 69 74 73 20 67 65 6f 6c 6f 63 61 74 69 6f 6e | dresses.based.on.its.geolocation |
| 63600 | 2e 20 4d 6f 72 65 20 69 6e 66 6f 3a 20 60 67 65 6f 69 70 20 6d 61 74 63 68 69 6e 67 20 3c 68 74 | ..More.info:.`geoip.matching.<ht |
| 63620 | 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 | tps://wiki.nftables.org/wiki-nft |
| 63640 | 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 47 65 6f 49 50 5f 6d 61 74 63 68 69 6e 67 3e 60 | ables/index.php/GeoIP_matching>` |
| 63660 | 5f 2e 20 55 73 65 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 74 6f 20 6d 61 74 63 68 20 61 6e | _..Use.inverse-match.to.match.an |
| 63680 | 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 67 69 76 65 6e 20 63 6f 75 6e 74 72 79 2d | ything.except.the.given.country- |
| 636a0 | 63 6f 64 65 73 2e 00 4d 61 74 63 68 20 52 50 4b 49 20 76 61 6c 69 64 61 74 69 6f 6e 20 72 65 73 | codes..Match.RPKI.validation.res |
| 636c0 | 75 6c 74 2e 00 4d 61 74 63 68 20 61 20 70 72 6f 74 6f 63 6f 6c 20 63 72 69 74 65 72 69 61 2e 20 | ult..Match.a.protocol.criteria.. |
| 636e0 | 41 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 77 68 69 63 | A.protocol.number.or.a.name.whic |
| 63700 | 68 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 3a 20 60 60 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c | h.is.defined.in:.``/etc/protocol |
| 63720 | 73 60 60 2e 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 6c 6c 60 60 20 66 | s``..Special.names.are.``all``.f |
| 63740 | 6f 72 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 5f 75 64 70 60 60 | or.all.protocols.and.``tcp_udp`` |
| 63760 | 20 66 6f 72 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 20 70 61 63 6b 65 74 73 2e 20 | .for.tcp.and.udp.based.packets.. |
| 63780 | 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 73 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 | The.``!``.negates.the.selected.p |
| 637a0 | 72 6f 74 6f 63 6f 6c 2e 00 4d 61 74 63 68 20 61 20 70 72 6f 74 6f 63 6f 6c 20 63 72 69 74 65 72 | rotocol..Match.a.protocol.criter |
| 637c0 | 69 61 2e 20 41 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 | ia..A.protocol.number.or.a.name. |
| 637e0 | 77 68 69 63 68 20 69 73 20 68 65 72 65 20 64 65 66 69 6e 65 64 3a 20 60 60 2f 65 74 63 2f 70 72 | which.is.here.defined:.``/etc/pr |
| 63800 | 6f 74 6f 63 6f 6c 73 60 60 2e 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 | otocols``..Special.names.are.``a |
| 63820 | 6c 6c 60 60 20 66 6f 72 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 | ll``.for.all.protocols.and.``tcp |
| 63840 | 5f 75 64 70 60 60 20 66 6f 72 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 20 70 61 63 | _udp``.for.tcp.and.udp.based.pac |
| 63860 | 6b 65 74 73 2e 20 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 20 74 68 65 20 73 65 6c 65 63 | kets..The.``!``.negate.the.selec |
| 63880 | 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 4d 61 74 63 68 20 61 67 61 69 6e 73 74 20 74 68 65 20 | ted.protocol..Match.against.the. |
| 638a0 | 73 74 61 74 65 20 6f 66 20 61 20 70 61 63 6b 65 74 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | state.of.a.packet..Match.based.o |
| 638c0 | 6e 20 56 4c 41 4e 20 69 64 65 6e 74 69 66 69 65 72 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f | n.VLAN.identifier..Range.is.also |
| 638e0 | 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 56 4c 41 4e 20 | .supported..Match.based.on.VLAN. |
| 63900 | 70 72 69 6f 72 69 74 79 20 28 50 72 69 6f 72 69 74 79 20 43 6f 64 65 20 50 6f 69 6e 74 20 2d 20 | priority.(Priority.Code.Point.-. |
| 63920 | 50 43 50 29 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 4d | PCP)..Range.is.also.supported..M |
| 63940 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 4d | atch.based.on.connection.mark..M |
| 63960 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e | atch.based.on.connection.trackin |
| 63980 | 67 20 70 72 6f 74 6f 63 6f 6c 20 68 65 6c 70 65 72 20 6d 6f 64 75 6c 65 20 74 6f 20 73 65 63 75 | g.protocol.helper.module.to.secu |
| 639a0 | 72 65 20 75 73 65 20 6f 66 20 74 68 61 74 20 68 65 6c 70 65 72 20 6d 6f 64 75 6c 65 2e 20 53 65 | re.use.of.that.helper.module..Se |
| 639c0 | 65 20 62 65 6c 6f 77 20 66 6f 72 20 70 6f 73 73 69 62 6c 65 20 63 6f 6d 70 6c 65 74 69 6f 6e 73 | e.below.for.possible.completions |
| 639e0 | 20 60 3c 6d 6f 64 75 6c 65 3e 60 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 64 73 63 70 | .`<module>`..Match.based.on.dscp |
| 63a00 | 20 76 61 6c 75 65 20 63 72 69 74 65 72 69 61 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 | .value.criteria..Multiple.values |
| 63a20 | 20 66 72 6f 6d 20 30 20 74 6f 20 36 33 20 61 6e 64 20 72 61 6e 67 65 73 20 61 72 65 20 73 75 70 | .from.0.to.63.and.ranges.are.sup |
| 63a40 | 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 64 73 63 70 20 76 61 6c 75 | ported..Match.based.on.dscp.valu |
| 63a60 | 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 66 72 61 67 6d 65 6e 74 20 63 72 69 74 65 | e..Match.based.on.fragment.crite |
| 63a80 | 72 69 61 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 66 72 61 67 6d 65 6e 74 61 74 69 6f | ria..Match.based.on.fragmentatio |
| 63aa0 | 6e 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 20 63 6f 64 65 20 61 6e 64 20 | n..Match.based.on.icmp.code.and. |
| 63ac0 | 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 20 74 79 70 65 2d 6e | type..Match.based.on.icmp.type-n |
| 63ae0 | 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d | ame.criteria..Use.tab.for.inform |
| 63b00 | 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 | ation.about.what.**type-name**.c |
| 63b20 | 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 | riteria.are.supported..Match.bas |
| 63b40 | 65 64 20 6f 6e 20 69 63 6d 70 20 74 79 70 65 2d 6e 61 6d 65 2e 20 55 73 65 20 74 61 62 20 66 6f | ed.on.icmp.type-name..Use.tab.fo |
| 63b60 | 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d | r.information.about.what.**type- |
| 63b80 | 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d | name**.criteria.are.supported..M |
| 63ba0 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 20 63 | atch.based.on.icmpv6.type-name.c |
| 63bc0 | 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | riteria..Use.tab.for.information |
| 63be0 | 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 | .about.what.**type-name**.criter |
| 63c00 | 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | ia.are.supported..Match.based.on |
| 63c20 | 20 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 | .icmpv6.type-name..Use.tab.for.i |
| 63c40 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d | nformation.about.what.**type-nam |
| 63c60 | 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 | e**.criteria.are.supported..Matc |
| 63c80 | 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 20 63 6f 64 65 20 61 6e 64 20 | h.based.on.icmp|icmpv6.code.and. |
| 63ca0 | 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 | type..Match.based.on.icmp|icmpv6 |
| 63cc0 | 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 | .type-name.criteria..Use.tab.for |
| 63ce0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e | .information.about.what.**type-n |
| 63d00 | 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 | ame**.criteria.are.supported..Ma |
| 63d20 | 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 | tch.based.on.icmp|icmpv6.type-na |
| 63d40 | 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 | me.criteria..Use.tab.for.informa |
| 63d60 | 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 | tion.about.what.type-name.criter |
| 63d80 | 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | ia.are.supported..Match.based.on |
| 63da0 | 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e | .inbound.interface.group..Prepen |
| 63dc0 | 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 | ding.character.``!``.for.inverte |
| 63de0 | 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 | d.matching.criteria.is.also.supp |
| 63e00 | 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 | ortd..For.example.``!IFACE_GROUP |
| 63e20 | 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 | ``.Match.based.on.inbound.interf |
| 63e40 | 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 | ace.group..Prepending.character. |
| 63e60 | 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 | ``!``.for.inverted.matching.crit |
| 63e80 | 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d | eria.is.also.supported..For.exam |
| 63ea0 | 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 | ple.``!IFACE_GROUP``.Match.based |
| 63ec0 | 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 | .on.inbound.interface..Wilcard.` |
| 63ee0 | 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 | `*``.can.be.used..For.example:.` |
| 63f00 | 60 65 74 68 32 2a 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 | `eth2*``.Match.based.on.inbound. |
| 63f20 | 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 | interface..Wilcard.``*``.can.be. |
| 63f40 | 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 | used..For.example:.``eth2*``..Pr |
| 63f60 | 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 | epending.character.``!``.for.inv |
| 63f80 | 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 | erted.matching.criteria.is.also. |
| 63fa0 | 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 | supportd..For.example.``!eth2``. |
| 63fc0 | 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 | Match.based.on.inbound.interface |
| 63fe0 | 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f | ..Wildcard.``*``.can.be.used..Fo |
| 64000 | 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 | r.example:.``eth2*``..Prepending |
| 64020 | 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 | .character.``!``.for.inverted.ma |
| 64040 | 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 | tching.criteria.is.also.supporte |
| 64060 | 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 | d..For.example.``!eth2``.Match.b |
| 64080 | 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 | ased.on.inbound.interface..Wildc |
| 640a0 | 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 | ard.``*``.can.be.used..For.examp |
| 640c0 | 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 | le:.``eth2*``..Prepending.the.ch |
| 640e0 | 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 | aracter.``!``.to.invert.the.crit |
| 64100 | 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e | eria.to.match.is.also.supported. |
| 64120 | 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 | .For.example.``!eth2``.Match.bas |
| 64140 | 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 | ed.on.inbound/outbound.interface |
| 64160 | 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 | ..Wilcard.``*``.can.be.used..For |
| 64180 | 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 | .example:.``eth2*``.Match.based. |
| 641a0 | 6f 6e 20 69 70 73 65 63 20 63 72 69 74 65 72 69 61 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | on.ipsec.criteria..Match.based.o |
| 641c0 | 6e 20 69 70 73 65 63 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6e 61 74 20 63 6f 6e 6e | n.ipsec..Match.based.on.nat.conn |
| 641e0 | 65 63 74 69 6f 6e 20 73 74 61 74 75 73 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 | ection.status..Match.based.on.ou |
| 64200 | 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 | tbound.interface.group..Prependi |
| 64220 | 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 | ng.character.``!``.for.inverted. |
| 64240 | 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 | matching.criteria.is.also.suppor |
| 64260 | 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 | td..For.example.``!IFACE_GROUP`` |
| 64280 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 | .Match.based.on.outbound.interfa |
| 642a0 | 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 | ce.group..Prepending.character.` |
| 642c0 | 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 | `!``.for.inverted.matching.crite |
| 642e0 | 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 | ria.is.also.supported..For.examp |
| 64300 | 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 | le.``!IFACE_GROUP``.Match.based. |
| 64320 | 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 | on.outbound.interface.group..Pre |
| 64340 | 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 | pending.the.character.``!``.to.i |
| 64360 | 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 | nvert.the.criteria.to.match.is.a |
| 64380 | 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 | lso.supported..For.example.``!IF |
| 643a0 | 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f | ACE_GROUP``.Match.based.on.outbo |
| 643c0 | 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e | und.interface..Wilcard.``*``.can |
| 643e0 | 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 | .be.used..For.example:.``eth2*`` |
| 64400 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 | .Match.based.on.outbound.interfa |
| 64420 | 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 | ce..Wilcard.``*``.can.be.used..F |
| 64440 | 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e | or.example:.``eth2*``..Prependin |
| 64460 | 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d | g.character.``!``.for.inverted.m |
| 64480 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 | atching.criteria.is.also.support |
| 644a0 | 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 | d..For.example.``!eth2``.Match.b |
| 644c0 | 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 | ased.on.outbound.interface..Wild |
| 644e0 | 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d | card.``*``.can.be.used..For.exam |
| 64500 | 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 | ple:.``eth2*``..Prepending.chara |
| 64520 | 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 | cter.``!``.for.inverted.matching |
| 64540 | 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 | .criteria.is.also.supported..For |
| 64560 | 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | .example.``!eth2``.Match.based.o |
| 64580 | 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 | n.outbound.interface..Wildcard.` |
| 645a0 | 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 | `*``.can.be.used..For.example:.` |
| 645c0 | 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 | `eth2*``..Prepending.the.charact |
| 645e0 | 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 | er.``!``.to.invert.the.criteria. |
| 64600 | 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 | to.match.is.also.supported..For. |
| 64620 | 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | example.``!eth2``.Match.based.on |
| 64640 | 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 20 63 72 69 74 65 72 69 61 2e 20 4d 75 6c 74 69 70 6c | .packet.length.criteria..Multipl |
| 64660 | 65 20 76 61 6c 75 65 73 20 66 72 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 20 61 6e 64 20 72 61 6e | e.values.from.1.to.65535.and.ran |
| 64680 | 67 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | ges.are.supported..Match.based.o |
| 646a0 | 6e 20 70 61 63 6b 65 74 20 74 79 70 65 20 63 72 69 74 65 72 69 61 2e 00 4d 61 74 63 68 20 62 61 | n.packet.type.criteria..Match.ba |
| 646c0 | 73 65 64 20 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 6f 72 20 6e 61 6d 65 20 61 | sed.on.protocol.number.or.name.a |
| 646e0 | 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c 73 60 60 2e | s.defined.in.``/etc/protocols``. |
| 64700 | 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 20 60 60 61 6c 6c 60 60 20 66 6f 72 20 61 | .Special.names.are.``all``.for.a |
| 64720 | 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 5f 75 64 70 60 60 20 66 6f 72 | ll.protocols.and.``tcp_udp``.for |
| 64740 | 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 | .tcp.and.udp.based.packets..The. |
| 64760 | 60 60 21 60 60 20 6e 65 67 61 74 65 73 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f | ``!``.negates.the.selected.proto |
| 64780 | 63 6f 6c 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 72 65 63 65 6e 74 6c 79 20 73 65 65 | col..Match.based.on.recently.see |
| 647a0 | 6e 20 73 6f 75 72 63 65 73 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 | n.sources..Match.based.on.source |
| 647c0 | 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 20 54 68 69 | .and/or.destination.address..Thi |
| 647e0 | 73 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 | s.is.similar.to.the.network.grou |
| 64800 | 70 73 20 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 | ps.part,.but.here.you.are.able.t |
| 64820 | 6f 20 6e 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 65 73 2e | o.negate.the.matching.addresses. |
| 64840 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 74 79 70 | .Match.based.on.the.Ethernet.typ |
| 64860 | 65 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 77 68 65 6e 20 69 74 20 69 73 20 56 4c 41 4e 20 | e.of.the.packet.when.it.is.VLAN. |
| 64880 | 74 61 67 67 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 45 74 68 65 72 | tagged..Match.based.on.the.Ether |
| 648a0 | 6e 65 74 20 74 79 70 65 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 00 4d 61 74 63 68 20 62 61 | net.type.of.the.packet..Match.ba |
| 648c0 | 73 65 64 20 6f 6e 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f | sed.on.the.inbound.interface.gro |
| 648e0 | 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 | up..Prepending.the.character.``! |
| 64900 | 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 | ``.to.invert.the.criteria.to.mat |
| 64920 | 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c | ch.is.also.supported..For.exampl |
| 64940 | 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | e.``!IFACE_GROUP``.Match.based.o |
| 64960 | 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 76 65 72 61 67 65 20 72 61 74 65 2c 20 73 70 65 63 | n.the.maximum.average.rate,.spec |
| 64980 | 69 66 69 65 64 20 61 73 20 2a 2a 69 6e 74 65 67 65 72 2f 75 6e 69 74 2a 2a 2e 20 46 6f 72 20 65 | ified.as.**integer/unit**..For.e |
| 649a0 | 78 61 6d 70 6c 65 20 2a 2a 35 2f 6d 69 6e 75 74 65 73 2a 2a 00 4d 61 74 63 68 20 62 61 73 65 64 | xample.**5/minutes**.Match.based |
| 649c0 | 20 6f 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 | .on.the.maximum.number.of.packet |
| 649e0 | 73 20 74 6f 20 61 6c 6c 6f 77 20 69 6e 20 65 78 63 65 73 73 20 6f 66 20 72 61 74 65 2e 00 4d 61 | s.to.allow.in.excess.of.rate..Ma |
| 64a00 | 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 2e 20 | tch.based.on.the.packet.length.. |
| 64a20 | 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 66 72 6f 6d 20 31 20 74 6f 20 36 35 35 33 35 20 | Multiple.values.from.1.to.65535. |
| 64a40 | 61 6e 64 20 72 61 6e 67 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 | and.ranges.are.supported..Match. |
| 64a60 | 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 61 63 6b 65 74 20 74 79 70 65 2e 00 4d 61 74 63 68 20 | based.on.the.packet.type..Match. |
| 64a80 | 62 61 73 65 64 20 6f 6e 20 76 6c 61 6e 20 49 44 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 | based.on.vlan.ID..Range.is.also. |
| 64aa0 | 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 76 6c 61 6e 20 70 | supported..Match.based.on.vlan.p |
| 64ac0 | 72 69 6f 72 69 74 79 28 70 63 70 29 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 | riority(pcp)..Range.is.also.supp |
| 64ae0 | 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 73 20 6f 6e 20 72 65 63 65 6e 74 6c 79 20 73 | orted..Match.bases.on.recently.s |
| 64b00 | 65 65 6e 20 73 6f 75 72 63 65 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 | een.sources..Match.criteria.base |
| 64b20 | 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 4d 61 74 63 68 20 63 72 69 74 | d.on.connection.mark..Match.crit |
| 64b40 | 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 6e 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 | eria.based.on.nat.connection.sta |
| 64b60 | 74 75 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 | tus..Match.criteria.based.on.sou |
| 64b80 | 72 63 65 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 20 | rce.and/or.destination.address.. |
| 64ba0 | 54 68 69 73 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 | This.is.similar.to.the.network.g |
| 64bc0 | 72 6f 75 70 73 20 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c | roups.part,.but.here.you.are.abl |
| 64be0 | 65 20 74 6f 20 6e 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 | e.to.negate.the.matching.address |
| 64c00 | 65 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 | es..Match.criteria.based.on.sour |
| 64c20 | 63 65 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 63 2d 61 64 64 72 65 73 | ce.and/or.destination.mac-addres |
| 64c40 | 73 2e 00 4d 61 74 63 68 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 4d 61 74 63 68 20 66 69 72 65 77 | s..Match.domain.name.Match.firew |
| 64c60 | 61 6c 6c 20 6d 61 72 6b 20 76 61 6c 75 65 00 4d 61 74 63 68 20 68 6f 70 2d 6c 69 6d 69 74 20 70 | all.mark.value.Match.hop-limit.p |
| 64c80 | 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 73 20 66 6f 72 20 | arameter,.where.'eq'.stands.for. |
| 64ca0 | 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 67 72 65 61 74 65 | 'equal';.'gt'.stands.for.'greate |
| 64cc0 | 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 | r.than',.and.'lt'.stands.for.'le |
| 64ce0 | 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 | ss.than'..Match.local.preference |
| 64d00 | 2e 00 4d 61 74 63 68 20 72 6f 75 74 65 20 6d 65 74 72 69 63 2e 00 4d 61 74 63 68 20 74 68 65 20 | ..Match.route.metric..Match.the. |
| 64d20 | 68 6f 70 2d 6c 69 6d 69 74 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 | hop-limit.parameter,.where.'eq'. |
| 64d40 | 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 | stands.for.'equal';.'gt'.stands. |
| 64d60 | 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 | for.'greater.than',.and.'lt'.sta |
| 64d80 | 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 74 68 65 20 74 | nds.for.'less.than'..Match.the.t |
| 64da0 | 69 6d 65 20 74 6f 20 6c 69 76 65 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 | ime.to.live.parameter,.where.'eq |
| 64dc0 | 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 | '.stands.for.'equal';.'gt'.stand |
| 64de0 | 73 20 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 | s.for.'greater.than',.and.'lt'.s |
| 64e00 | 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 74 69 6d | tands.for.'less.than'..Match.tim |
| 64e20 | 65 20 74 6f 20 6c 69 76 65 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 | e.to.live.parameter,.where.'eq'. |
| 64e40 | 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 | stands.for.'equal';.'gt'.stands. |
| 64e60 | 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 | for.'greater.than',.and.'lt'.sta |
| 64e80 | 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 77 68 65 6e 20 | nds.for.'less.than'..Match.when. |
| 64ea0 | 27 63 6f 75 6e 74 27 20 61 6d 6f 75 6e 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 | 'count'.amount.of.connections.ar |
| 64ec0 | 65 20 73 65 65 6e 20 77 69 74 68 69 6e 20 27 74 69 6d 65 27 2e 20 54 68 65 73 65 20 6d 61 74 63 | e.seen.within.'time'..These.matc |
| 64ee0 | 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 62 6c 6f | hing.criteria.can.be.used.to.blo |
| 64f00 | 63 6b 20 62 72 75 74 65 2d 66 6f 72 63 65 20 61 74 74 65 6d 70 74 73 2e 00 4d 61 74 63 68 69 6e | ck.brute-force.attempts..Matchin |
| 64f20 | 67 20 63 72 69 74 65 72 69 61 00 4d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 00 4d 61 78 69 | g.criteria.Matching.traffic.Maxi |
| 64f40 | 6d 75 6d 20 41 2d 4d 53 44 55 20 6c 65 6e 67 74 68 20 33 38 33 39 20 28 64 65 66 61 75 6c 74 29 | mum.A-MSDU.length.3839.(default) |
| 64f60 | 20 6f 72 20 37 39 33 35 20 6f 63 74 65 74 73 00 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 | .or.7935.octets.Maximum.Transmis |
| 64f80 | 73 69 6f 6e 20 55 6e 69 74 20 28 4d 54 55 29 20 28 64 65 66 61 75 6c 74 3a 20 2a 2a 31 34 33 36 | sion.Unit.(MTU).(default:.**1436 |
| 64fa0 | 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 20 28 4d | **).Maximum.Transmission.Unit.(M |
| 64fc0 | 54 55 29 20 28 64 65 66 61 75 6c 74 3a 20 2a 2a 31 34 39 32 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 | TU).(default:.**1492**).Maximum. |
| 64fe0 | 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 20 28 4d 54 55 29 20 28 64 65 66 61 75 6c 74 | Transmission.Unit.(MTU).(default |
| 65000 | 3a 20 2a 2a 31 35 30 30 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 61 63 63 65 70 74 65 64 20 63 6f 6e | :.**1500**).Maximum.accepted.con |
| 65020 | 6e 65 63 74 69 6f 6e 20 72 61 74 65 20 28 65 2e 67 2e 20 31 2f 6d 69 6e 2c 20 36 30 2f 73 65 63 | nection.rate.(e.g..1/min,.60/sec |
| 65040 | 29 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 44 4e 53 20 63 61 63 68 65 20 65 6e | ).Maximum.number.of.DNS.cache.en |
| 65060 | 74 72 69 65 73 2e 20 31 20 6d 69 6c 6c 69 6f 6e 20 70 65 72 20 43 50 55 20 63 6f 72 65 20 77 69 | tries..1.million.per.CPU.core.wi |
| 65080 | 6c 6c 20 67 65 6e 65 72 61 6c 6c 79 20 73 75 66 66 69 63 65 20 66 6f 72 20 6d 6f 73 74 20 69 6e | ll.generally.suffice.for.most.in |
| 650a0 | 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 49 | stallations..Maximum.number.of.I |
| 650c0 | 50 76 34 20 6e 61 6d 65 73 65 72 76 65 72 73 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f | Pv4.nameservers.Maximum.number.o |
| 650e0 | 66 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 70 72 6f 63 65 73 73 65 73 20 74 6f 20 73 70 61 | f.authenticator.processes.to.spa |
| 65100 | 77 6e 2e 20 49 66 20 79 6f 75 20 73 74 61 72 74 20 74 6f 6f 20 66 65 77 20 53 71 75 69 64 20 77 | wn..If.you.start.too.few.Squid.w |
| 65120 | 69 6c 6c 20 68 61 76 65 20 74 6f 20 77 61 69 74 20 66 6f 72 20 74 68 65 6d 20 74 6f 20 70 72 6f | ill.have.to.wait.for.them.to.pro |
| 65140 | 63 65 73 73 20 61 20 62 61 63 6b 6c 6f 67 20 6f 66 20 63 72 65 64 65 6e 74 69 61 6c 20 76 65 72 | cess.a.backlog.of.credential.ver |
| 65160 | 69 66 69 63 61 74 69 6f 6e 73 2c 20 73 6c 6f 77 69 6e 67 20 69 74 20 64 6f 77 6e 2e 20 57 68 65 | ifications,.slowing.it.down..Whe |
| 65180 | 6e 20 70 61 73 73 77 6f 72 64 20 76 65 72 69 66 69 63 61 74 69 6f 6e 73 20 61 72 65 20 64 6f 6e | n.password.verifications.are.don |
| 651a0 | 65 20 76 69 61 20 61 20 28 73 6c 6f 77 29 20 6e 65 74 77 6f 72 6b 20 79 6f 75 20 61 72 65 20 6c | e.via.a.(slow).network.you.are.l |
| 651c0 | 69 6b 65 6c 79 20 74 6f 20 6e 65 65 64 20 6c 6f 74 73 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 | ikely.to.need.lots.of.authentica |
| 651e0 | 74 6f 72 20 70 72 6f 63 65 73 73 65 73 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 | tor.processes..Maximum.number.of |
| 65200 | 20 63 6f 6e 63 75 72 72 65 6e 74 20 73 65 73 73 69 6f 6e 20 73 74 61 72 74 20 61 74 74 65 6d 70 | .concurrent.session.start.attemp |
| 65220 | 74 73 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 73 74 61 74 69 6f 6e 73 20 61 6c | ts.Maximum.number.of.stations.al |
| 65240 | 6c 6f 77 65 64 20 69 6e 20 73 74 61 74 69 6f 6e 20 74 61 62 6c 65 2e 20 4e 65 77 20 73 74 61 74 | lowed.in.station.table..New.stat |
| 65260 | 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 72 65 6a 65 63 74 65 64 20 61 66 74 65 72 20 74 68 65 20 | ions.will.be.rejected.after.the. |
| 65280 | 73 74 61 74 69 6f 6e 20 74 61 62 6c 65 20 69 73 20 66 75 6c 6c 2e 20 49 45 45 45 20 38 30 32 2e | station.table.is.full..IEEE.802. |
| 652a0 | 31 31 20 68 61 73 20 61 20 6c 69 6d 69 74 20 6f 66 20 32 30 30 37 20 64 69 66 66 65 72 65 6e 74 | 11.has.a.limit.of.2007.different |
| 652c0 | 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 49 44 73 2c 20 73 6f 20 74 68 69 73 20 6e 75 6d 62 65 72 | .association.IDs,.so.this.number |
| 652e0 | 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 6c 61 72 67 65 72 20 74 68 61 6e 20 74 68 61 74 2e | .should.not.be.larger.than.that. |
| 65300 | 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 74 69 6d 65 73 20 61 6e 20 65 78 70 69 | .Maximum.number.of.times.an.expi |
| 65320 | 72 65 64 20 72 65 63 6f 72 64 e2 80 99 73 20 54 54 4c 20 69 73 20 65 78 74 65 6e 64 65 64 20 62 | red.record...s.TTL.is.extended.b |
| 65340 | 79 20 33 30 73 20 77 68 65 6e 20 73 65 72 76 69 6e 67 20 73 74 61 6c 65 2e 20 45 78 74 65 6e 73 | y.30s.when.serving.stale..Extens |
| 65360 | 69 6f 6e 20 6f 6e 6c 79 20 6f 63 63 75 72 73 20 69 66 20 61 20 72 65 63 6f 72 64 20 63 61 6e 6e | ion.only.occurs.if.a.record.cann |
| 65380 | 6f 74 20 62 65 20 72 65 66 72 65 73 68 65 64 2e 20 41 20 76 61 6c 75 65 20 6f 66 20 30 20 6d 65 | ot.be.refreshed..A.value.of.0.me |
| 653a0 | 61 6e 73 20 74 68 65 20 53 65 72 76 65 20 53 74 61 6c 65 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 | ans.the.Serve.Stale.mechanism.is |
| 653c0 | 20 6e 6f 74 20 75 73 65 64 2e 20 54 6f 20 61 6c 6c 6f 77 20 72 65 63 6f 72 64 73 20 62 65 63 6f | .not.used..To.allow.records.beco |
| 653e0 | 6d 69 6e 67 20 73 74 61 6c 65 20 74 6f 20 62 65 20 73 65 72 76 65 64 20 66 6f 72 20 61 6e 20 68 | ming.stale.to.be.served.for.an.h |
| 65400 | 6f 75 72 2c 20 75 73 65 20 61 20 76 61 6c 75 65 20 6f 66 20 31 32 30 2e 00 4d 61 78 69 6d 75 6d | our,.use.a.value.of.120..Maximum |
| 65420 | 20 6e 75 6d 62 65 72 20 6f 66 20 74 72 69 65 73 20 74 6f 20 73 65 6e 64 20 41 63 63 65 73 73 2d | .number.of.tries.to.send.Access- |
| 65440 | 52 65 71 75 65 73 74 2f 41 63 63 6f 75 6e 74 69 6e 67 2d 52 65 71 75 65 73 74 20 71 75 65 72 69 | Request/Accounting-Request.queri |
| 65460 | 65 73 00 4d 65 64 69 75 6d 00 4d 65 6d 62 65 72 20 49 6e 74 65 72 66 61 63 65 73 00 4d 65 6d 62 | es.Medium.Member.Interfaces.Memb |
| 65480 | 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 60 65 74 68 31 60 20 61 6e 64 20 56 4c 41 4e 20 31 30 | er.interfaces.`eth1`.and.VLAN.10 |
| 654a0 | 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 32 60 00 4d 65 73 73 61 67 65 73 20 67 65 | .on.interface.`eth2`.Messages.ge |
| 654c0 | 6e 65 72 61 74 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 73 79 73 6c 6f 67 64 00 4d 65 | nerated.internally.by.syslogd.Me |
| 654e0 | 74 72 69 73 20 76 65 72 73 69 6f 6e 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 32 | tris.version,.the.default.is.``2 |
| 65500 | 60 60 00 4d 69 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 28 31 30 2b 29 00 4d 69 63 72 6f | ``.Microsoft.Windows.(10+).Micro |
| 65520 | 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 65 78 70 65 63 74 73 20 74 68 65 20 73 65 72 76 65 72 20 | soft.Windows.expects.the.server. |
| 65540 | 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 65 64 20 69 6e 20 74 68 65 20 73 65 72 76 | name.to.be.also.used.in.the.serv |
| 65560 | 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 6f 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f | er's.certificate.common.name,.so |
| 65580 | 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 74 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 | .it's.best.to.use.this.DNS.name. |
| 655a0 | 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 4d 69 6e 20 61 6e 64 | for.your.VPN.connection..Min.and |
| 655c0 | 20 6d 61 78 20 69 6e 74 65 72 76 61 6c 73 20 62 65 74 77 65 65 6e 20 75 6e 73 6f 6c 69 63 69 74 | .max.intervals.between.unsolicit |
| 655e0 | 65 64 20 6d 75 6c 74 69 63 61 73 74 20 52 41 73 00 4d 69 6e 69 6d 75 6d 20 66 69 72 65 77 61 6c | ed.multicast.RAs.Minimum.firewal |
| 65600 | 6c 20 72 75 6c 65 73 65 74 20 69 73 20 70 72 6f 76 69 64 65 64 2c 20 77 68 69 63 68 20 69 6e 63 | l.ruleset.is.provided,.which.inc |
| 65620 | 6c 75 64 65 73 20 73 6f 6d 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 61 6e 64 20 | ludes.some.filtering.rules,.and. |
| 65640 | 61 70 70 72 6f 70 72 69 61 74 65 20 72 75 6c 65 73 20 66 6f 72 20 75 73 69 6e 67 20 66 6c 6f 77 | appropriate.rules.for.using.flow |
| 65660 | 74 61 62 6c 65 20 6f 66 66 6c 6f 61 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 4d 69 6e 75 | table.offload.capabilities..Minu |
| 65680 | 6d 75 6d 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 20 69 73 20 70 72 6f 76 69 64 65 64 | mum.firewall.ruleset.is.provided |
| 656a0 | 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 73 6f 6d 65 20 66 69 6c 74 65 72 69 6e 67 20 | ,.which.includes.some.filtering. |
| 656c0 | 72 75 6c 65 73 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 72 75 6c 65 73 20 66 6f 72 20 | rules,.and.appropiate.rules.for. |
| 656e0 | 75 73 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 20 6f 66 66 6c 6f 61 64 20 63 61 70 61 62 69 6c 69 | using.flowtable.offload.capabili |
| 65700 | 74 69 65 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 6a 6f 69 6e 2f 70 72 75 6e 65 20 69 6e 74 65 | ties..Modify.the.join/prune.inte |
| 65720 | 72 76 61 6c 20 74 68 61 74 20 50 49 4d 20 75 73 65 73 20 74 6f 20 74 68 65 20 6e 65 77 20 76 61 | rval.that.PIM.uses.to.the.new.va |
| 65740 | 6c 75 65 2e 20 54 69 6d 65 20 69 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 | lue..Time.is.specified.in.second |
| 65760 | 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 20 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 | s..Modify.the.time.out.value.for |
| 65780 | 20 61 20 53 2c 47 20 66 6c 6f 77 20 66 72 6f 6d 20 31 2d 36 35 35 33 35 20 73 65 63 6f 6e 64 73 | .a.S,G.flow.from.1-65535.seconds |
| 657a0 | 20 61 74 20 3a 61 62 62 72 3a 60 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 | .at.:abbr:`RP.(Rendezvous.Point) |
| 657c0 | 60 2e 20 54 68 65 20 6e 6f 72 6d 61 6c 20 6b 65 65 70 61 6c 69 76 65 20 70 65 72 69 6f 64 20 66 | `..The.normal.keepalive.period.f |
| 657e0 | 6f 72 20 74 68 65 20 4b 41 54 28 53 2c 47 29 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 31 30 20 | or.the.KAT(S,G).defaults.to.210. |
| 65800 | 73 65 63 6f 6e 64 73 2e 20 48 6f 77 65 76 65 72 2c 20 61 74 20 74 68 65 20 3a 61 62 62 72 3a 60 | seconds..However,.at.the.:abbr:` |
| 65820 | 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 60 2c 20 74 68 65 20 6b 65 65 70 | RP.(Rendezvous.Point)`,.the.keep |
| 65840 | 61 6c 69 76 65 20 70 65 72 69 6f 64 20 6d 75 73 74 20 62 65 20 61 74 20 6c 65 61 73 74 20 74 68 | alive.period.must.be.at.least.th |
| 65860 | 65 20 52 65 67 69 73 74 65 72 5f 53 75 70 70 72 65 73 73 69 6f 6e 5f 54 69 6d 65 2c 20 6f 72 20 | e.Register_Suppression_Time,.or. |
| 65880 | 74 68 65 20 52 50 20 6d 61 79 20 74 69 6d 65 20 6f 75 74 20 74 68 65 20 28 53 2c 47 29 20 73 74 | the.RP.may.time.out.the.(S,G).st |
| 658a0 | 61 74 65 20 62 65 66 6f 72 65 20 74 68 65 20 6e 65 78 74 20 4e 75 6c 6c 2d 52 65 67 69 73 74 65 | ate.before.the.next.Null-Registe |
| 658c0 | 72 20 61 72 72 69 76 65 73 2e 20 54 68 75 73 2c 20 74 68 65 20 4b 41 54 28 53 2c 47 29 20 69 73 | r.arrives..Thus,.the.KAT(S,G).is |
| 658e0 | 20 73 65 74 20 74 6f 20 6d 61 78 28 4b 65 65 70 61 6c 69 76 65 5f 50 65 72 69 6f 64 2c 20 52 50 | .set.to.max(Keepalive_Period,.RP |
| 65900 | 5f 4b 65 65 70 61 6c 69 76 65 5f 50 65 72 69 6f 64 29 20 77 68 65 6e 20 61 20 52 65 67 69 73 74 | _Keepalive_Period).when.a.Regist |
| 65920 | 65 72 2d 53 74 6f 70 20 69 73 20 73 65 6e 74 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 | er-Stop.is.sent..Modify.the.time |
| 65940 | 20 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 20 61 20 53 2c 47 20 66 6c 6f 77 20 66 72 6f 6d 20 31 | .out.value.for.a.S,G.flow.from.1 |
| 65960 | 2d 36 35 35 33 35 20 73 65 63 6f 6e 64 73 2e 20 49 66 20 63 68 6f 6f 73 69 6e 67 20 61 20 76 61 | -65535.seconds..If.choosing.a.va |
| 65980 | 6c 75 65 20 62 65 6c 6f 77 20 33 31 20 73 65 63 6f 6e 64 73 20 62 65 20 61 77 61 72 65 20 74 68 | lue.below.31.seconds.be.aware.th |
| 659a0 | 61 74 20 73 6f 6d 65 20 68 61 72 64 77 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f | at.some.hardware.platforms.canno |
| 659c0 | 74 20 73 65 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 | t.see.data.flowing.in.better.tha |
| 659e0 | 6e 20 33 30 20 73 65 63 6f 6e 64 20 63 68 75 6e 6b 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 | n.30.second.chunks..Modify.the.t |
| 65a00 | 69 6d 65 20 74 68 61 74 20 70 69 6d 20 77 69 6c 6c 20 72 65 67 69 73 74 65 72 20 73 75 70 70 72 | ime.that.pim.will.register.suppr |
| 65a20 | 65 73 73 20 61 20 46 48 52 20 77 69 6c 6c 20 73 65 6e 64 20 72 65 67 69 73 74 65 72 20 6e 6f 74 | ess.a.FHR.will.send.register.not |
| 65a40 | 69 66 69 63 61 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 4d 6f 6e 69 74 6f | ifications.to.the.kernel..Monito |
| 65a60 | 72 20 6d 6f 64 65 20 6c 65 74 73 20 74 68 65 20 73 79 73 74 65 6d 20 70 61 73 73 69 76 65 6c 79 | r.mode.lets.the.system.passively |
| 65a80 | 20 6d 6f 6e 69 74 6f 72 20 77 69 72 65 6c 65 73 73 20 74 72 61 66 66 69 63 00 4d 6f 6e 69 74 6f | .monitor.wireless.traffic.Monito |
| 65aa0 | 72 2c 20 74 68 65 20 73 79 73 74 65 6d 20 70 61 73 73 69 76 65 6c 79 20 6d 6f 6e 69 74 6f 72 73 | r,.the.system.passively.monitors |
| 65ac0 | 20 61 6e 79 20 6b 69 6e 64 20 6f 66 20 77 69 72 65 6c 65 73 73 20 74 72 61 66 66 69 63 00 4d 6f | .any.kind.of.wireless.traffic.Mo |
| 65ae0 | 6e 69 74 6f 72 69 6e 67 00 4d 6f 6e 69 74 6f 72 69 6e 67 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 | nitoring.Monitoring.functionalit |
| 65b00 | 79 20 77 69 74 68 20 60 60 74 65 6c 65 67 72 61 66 60 60 20 61 6e 64 20 60 60 49 6e 66 6c 75 78 | y.with.``telegraf``.and.``Influx |
| 65b20 | 44 42 20 32 60 60 20 69 73 20 70 72 6f 76 69 64 65 64 2e 20 54 65 6c 65 67 72 61 66 20 69 73 20 | DB.2``.is.provided..Telegraf.is. |
| 65b40 | 74 68 65 20 6f 70 65 6e 20 73 6f 75 72 63 65 20 73 65 72 76 65 72 20 61 67 65 6e 74 20 74 6f 20 | the.open.source.server.agent.to. |
| 65b60 | 68 65 6c 70 20 79 6f 75 20 63 6f 6c 6c 65 63 74 20 6d 65 74 72 69 63 73 2c 20 65 76 65 6e 74 73 | help.you.collect.metrics,.events |
| 65b80 | 20 61 6e 64 20 6c 6f 67 73 20 66 72 6f 6d 20 79 6f 75 72 20 72 6f 75 74 65 72 73 2e 00 4d 6f 72 | .and.logs.from.your.routers..Mor |
| 65ba0 | 65 20 64 65 74 61 69 6c 73 20 61 62 6f 75 74 20 74 68 65 20 49 50 73 65 63 20 61 6e 64 20 56 54 | e.details.about.the.IPsec.and.VT |
| 65bc0 | 49 20 69 73 73 75 65 20 61 6e 64 20 6f 70 74 69 6f 6e 20 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 | I.issue.and.option.disable-route |
| 65be0 | 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 20 68 74 74 70 73 3a 2f 2f 62 6c 6f 67 2e 76 79 6f 73 2e 69 | -autoinstall.https://blog.vyos.i |
| 65c00 | 6f 2f 76 79 6f 73 2d 31 2d 64 6f 74 2d 32 2d 30 2d 64 65 76 65 6c 6f 70 6d 65 6e 74 2d 6e 65 77 | o/vyos-1-dot-2-0-development-new |
| 65c20 | 73 2d 69 6e 2d 6a 75 6c 79 00 4d 6f 73 74 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 | s-in-july.Most.operating.systems |
| 65c40 | 20 69 6e 63 6c 75 64 65 20 6e 61 74 69 76 65 20 63 6c 69 65 6e 74 20 73 75 70 70 6f 72 74 20 66 | .include.native.client.support.f |
| 65c60 | 6f 72 20 49 50 73 65 63 20 49 4b 45 76 32 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 | or.IPsec.IKEv2.VPN.connections,. |
| 65c80 | 61 6e 64 20 6f 74 68 65 72 73 20 74 79 70 69 63 61 6c 6c 79 20 68 61 76 65 20 61 6e 20 61 70 70 | and.others.typically.have.an.app |
| 65ca0 | 20 6f 72 20 61 64 64 2d 6f 6e 20 70 61 63 6b 61 67 65 20 77 68 69 63 68 20 61 64 64 73 20 74 68 | .or.add-on.package.which.adds.th |
| 65cc0 | 65 20 63 61 70 61 62 69 6c 69 74 79 2e 20 54 68 69 73 20 73 65 63 74 69 6f 6e 20 63 6f 76 65 72 | e.capability..This.section.cover |
| 65ce0 | 73 20 49 50 73 65 63 20 49 4b 45 76 32 20 63 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 | s.IPsec.IKEv2.client.configurati |
| 65d00 | 6f 6e 20 66 6f 72 20 57 69 6e 64 6f 77 73 20 31 30 2e 00 4d 6f 75 6e 74 20 61 20 76 6f 6c 75 6d | on.for.Windows.10..Mount.a.volum |
| 65d20 | 65 20 69 6e 74 6f 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 00 4d 75 6c 74 69 00 4d 75 6c 74 69 | e.into.the.container.Multi.Multi |
| 65d40 | 2d 63 6c 69 65 6e 74 20 73 65 72 76 65 72 20 69 73 20 74 68 65 20 6d 6f 73 74 20 70 6f 70 75 6c | -client.server.is.the.most.popul |
| 65d60 | 61 72 20 4f 70 65 6e 56 50 4e 20 6d 6f 64 65 20 6f 6e 20 72 6f 75 74 65 72 73 2e 20 49 74 20 61 | ar.OpenVPN.mode.on.routers..It.a |
| 65d80 | 6c 77 61 79 73 20 75 73 65 73 20 78 2e 35 30 39 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | lways.uses.x.509.authentication. |
| 65da0 | 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 65 71 75 69 72 65 73 20 61 20 50 4b 49 20 73 65 74 | and.therefore.requires.a.PKI.set |
| 65dc0 | 75 70 2e 20 52 65 66 65 72 20 74 68 69 73 20 74 6f 70 69 63 20 3a 72 65 66 3a 60 63 6f 6e 66 69 | up..Refer.this.topic.:ref:`confi |
| 65de0 | 67 75 72 61 74 69 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 60 20 74 6f 20 67 65 6e 65 72 | guration/pki/index:pki`.to.gener |
| 65e00 | 61 74 65 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 61 20 73 65 72 76 65 72 20 63 | ate.a.CA.certificate,.a.server.c |
| 65e20 | 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 6b 65 79 2c 20 61 20 63 65 72 74 69 66 69 63 61 74 | ertificate.and.key,.a.certificat |
| 65e40 | 65 20 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 2c 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c | e.revocation.list,.a.Diffie-Hell |
| 65e60 | 6d 61 6e 20 6b 65 79 20 65 78 63 68 61 6e 67 65 20 70 61 72 61 6d 65 74 65 72 73 20 66 69 6c 65 | man.key.exchange.parameters.file |
| 65e80 | 2e 20 59 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 | ..You.do.not.need.client.certifi |
| 65ea0 | 63 61 74 65 73 20 61 6e 64 20 6b 65 79 73 20 66 6f 72 20 74 68 65 20 73 65 72 76 65 72 20 73 65 | cates.and.keys.for.the.server.se |
| 65ec0 | 74 75 70 2e 00 4d 75 6c 74 69 2d 63 6c 69 65 6e 74 20 73 65 72 76 65 72 20 69 73 20 74 68 65 20 | tup..Multi-client.server.is.the. |
| 65ee0 | 6d 6f 73 74 20 70 6f 70 75 6c 61 72 20 4f 70 65 6e 56 50 4e 20 6d 6f 64 65 20 6f 6e 20 72 6f 75 | most.popular.OpenVPN.mode.on.rou |
| 65f00 | 74 65 72 73 2e 20 49 74 20 61 6c 77 61 79 73 20 75 73 65 73 20 78 2e 35 30 39 20 61 75 74 68 65 | ters..It.always.uses.x.509.authe |
| 65f20 | 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 65 71 75 69 72 65 73 | ntication.and.therefore.requires |
| 65f40 | 20 61 20 50 4b 49 20 73 65 74 75 70 2e 20 52 65 66 65 72 20 74 68 69 73 20 74 6f 70 69 63 20 3a | .a.PKI.setup..Refer.this.topic.: |
| 65f60 | 72 65 66 3a 60 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 | ref:`configuration/pki/index:pki |
| 65f80 | 60 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 | `.to.generate.a.CA.certificate,. |
| 65fa0 | 61 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 6b 65 79 2c 20 61 20 | a.server.certificate.and.key,.a. |
| 65fc0 | 63 65 72 74 69 66 69 63 61 74 65 20 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 2c 20 61 6e 64 | certificate.revocation.list,.and |
| 65fe0 | 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 6b 65 79 20 65 78 63 68 61 6e 67 65 20 70 | .a.Diffie-Hellman.key.exchange.p |
| 66000 | 61 72 61 6d 65 74 65 72 73 20 66 69 6c 65 2e 20 59 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 | arameters.file..You.do.not.need. |
| 66020 | 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 6e 64 20 6b 65 79 73 20 66 6f 72 | client.certificates.and.keys.for |
| 66040 | 20 74 68 65 20 73 65 72 76 65 72 20 73 65 74 75 70 2e 00 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 | .the.server.setup..Multi-factor. |
| 66060 | 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 4d 75 6c 74 69 2d 68 6f 6d 65 64 2e 20 49 6e 20 61 | Authentication.Multi-homed..In.a |
| 66080 | 20 6d 75 6c 74 69 2d 68 6f 6d 65 64 20 6e 65 74 77 6f 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 | .multi-homed.network.environment |
| 660a0 | 2c 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 61 | ,.the.NAT66.device.connects.to.a |
| 660c0 | 6e 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 73 69 6d 75 6c 74 61 6e 65 | n.internal.network.and.simultane |
| 660e0 | 6f 75 73 6c 79 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 65 78 74 65 | ously.connects.to.different.exte |
| 66100 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 73 2e 20 41 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 | rnal.networks..Address.translati |
| 66120 | 6f 6e 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 65 61 63 68 20 65 78 74 | on.can.be.configured.on.each.ext |
| 66140 | 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 69 64 65 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 | ernal.network.side.interface.of. |
| 66160 | 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 74 6f 20 63 6f 6e 76 65 72 74 20 74 68 65 20 | the.NAT66.device.to.convert.the. |
| 66180 | 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 69 6e | same.internal.network.address.in |
| 661a0 | 74 6f 20 64 69 66 66 65 72 65 6e 74 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 | to.different.external.network.ad |
| 661c0 | 64 72 65 73 73 65 73 2c 20 61 6e 64 20 72 65 61 6c 69 7a 65 20 74 68 65 20 6d 61 70 70 69 6e 67 | dresses,.and.realize.the.mapping |
| 661e0 | 20 6f 66 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 74 6f | .of.the.same.internal.address.to |
| 66200 | 20 6d 75 6c 74 69 70 6c 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 2e 00 4d 75 | .multiple.external.addresses..Mu |
| 66220 | 6c 74 69 3a 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 | lti:.can.be.specified.multiple.t |
| 66240 | 69 6d 65 73 2e 00 4d 75 6c 74 69 63 61 73 74 00 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 20 75 73 | imes..Multicast.Multicast.DNS.us |
| 66260 | 65 73 20 74 68 65 20 32 32 34 2e 30 2e 30 2e 32 35 31 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 | es.the.224.0.0.251.address,.whic |
| 66280 | 68 20 69 73 20 22 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 73 63 6f 70 65 64 22 20 61 | h.is."administratively.scoped".a |
| 662a0 | 6e 64 20 64 6f 65 73 20 6e 6f 74 20 6c 65 61 76 65 20 74 68 65 20 73 75 62 6e 65 74 2e 20 49 74 | nd.does.not.leave.the.subnet..It |
| 662c0 | 20 72 65 74 72 61 6e 73 6d 69 74 73 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f | .retransmits.mDNS.packets.from.o |
| 662e0 | 6e 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 | ne.interface.to.other.interfaces |
| 66300 | 2e 20 54 68 69 73 20 65 6e 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 65 2e 67 2e 20 | ..This.enables.support.for.e.g.. |
| 66320 | 41 70 70 6c 65 20 41 69 72 70 6c 61 79 20 64 65 76 69 63 65 73 20 61 63 72 6f 73 73 20 6d 75 6c | Apple.Airplay.devices.across.mul |
| 66340 | 74 69 70 6c 65 20 56 4c 41 4e 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 20 75 73 65 73 20 | tiple.VLANs..Multicast.DNS.uses. |
| 66360 | 74 68 65 20 72 65 73 65 72 76 65 64 20 61 64 64 72 65 73 73 20 60 60 32 32 34 2e 30 2e 30 2e 32 | the.reserved.address.``224.0.0.2 |
| 66380 | 35 31 60 60 2c 20 77 68 69 63 68 20 69 73 20 60 22 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c | 51``,.which.is.`"administrativel |
| 663a0 | 79 20 73 63 6f 70 65 64 22 60 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 6c 65 61 76 65 20 74 68 | y.scoped"`.and.does.not.leave.th |
| 663c0 | 65 20 73 75 62 6e 65 74 2e 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 72 65 74 72 61 6e 73 6d | e.subnet..mDNS.repeater.retransm |
| 663e0 | 69 74 73 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 | its.mDNS.packets.from.one.interf |
| 66400 | 61 63 65 20 74 6f 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 65 6e | ace.to.other.interfaces..This.en |
| 66420 | 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 64 65 76 69 63 65 73 20 75 73 69 6e 67 20 | ables.support.for.devices.using. |
| 66440 | 6d 44 4e 53 20 64 69 73 63 6f 76 65 72 79 20 28 6c 69 6b 65 20 6e 65 74 77 6f 72 6b 20 70 72 69 | mDNS.discovery.(like.network.pri |
| 66460 | 6e 74 65 72 73 2c 20 41 70 70 6c 65 20 41 69 72 70 6c 61 79 2c 20 43 68 72 6f 6d 65 63 61 73 74 | nters,.Apple.Airplay,.Chromecast |
| 66480 | 2c 20 76 61 72 69 6f 75 73 20 49 50 20 62 61 73 65 64 20 68 6f 6d 65 2d 61 75 74 6f 6d 61 74 69 | ,.various.IP.based.home-automati |
| 664a0 | 6f 6e 20 64 65 76 69 63 65 73 20 65 74 63 29 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 | on.devices.etc).across.multiple. |
| 664c0 | 56 4c 41 4e 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 56 58 4c 41 4e 00 4d 75 6c 74 69 63 61 73 74 | VLANs..Multicast.VXLAN.Multicast |
| 664e0 | 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 20 66 6f 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 | .group.address.for.VXLAN.interfa |
| 66500 | 63 65 2e 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 63 61 6e 20 62 65 20 62 75 69 6c 74 20 65 | ce..VXLAN.tunnels.can.be.built.e |
| 66520 | 69 74 68 65 72 20 76 69 61 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 76 69 61 20 55 6e 69 63 61 | ither.via.Multicast.or.via.Unica |
| 66540 | 73 74 2e 00 4d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 20 66 6f 72 20 | st..Multicast.group.address.for. |
| 66560 | 74 68 65 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 56 58 4c 41 4e 20 74 75 6e 6e 65 | the.VXLAN.interface..VXLAN.tunne |
| 66580 | 6c 73 20 63 61 6e 20 62 65 20 62 75 69 6c 74 20 65 69 74 68 65 72 20 76 69 61 20 4d 75 6c 74 69 | ls.can.be.built.either.via.Multi |
| 665a0 | 63 61 73 74 20 6f 72 20 76 69 61 20 55 6e 69 63 61 73 74 2e 00 4d 75 6c 74 69 63 61 73 74 20 67 | cast.or.via.Unicast..Multicast.g |
| 665c0 | 72 6f 75 70 20 74 6f 20 75 73 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 20 63 6f 6e 6e 74 72 61 63 | roup.to.use.for.syncing.conntrac |
| 665e0 | 6b 20 65 6e 74 72 69 65 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 73 20 77 | k.entries..Multicast.receivers.w |
| 66600 | 69 6c 6c 20 74 61 6c 6b 20 49 47 4d 50 20 74 6f 20 74 68 65 69 72 20 6c 6f 63 61 6c 20 72 6f 75 | ill.talk.IGMP.to.their.local.rou |
| 66620 | 74 65 72 2c 20 73 6f 2c 20 62 65 73 69 64 65 73 20 68 61 76 69 6e 67 20 50 49 4d 20 63 6f 6e 66 | ter,.so,.besides.having.PIM.conf |
| 66640 | 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 72 6f 75 74 65 72 2c 20 49 47 4d 50 20 6d 75 73 | igured.in.every.router,.IGMP.mus |
| 66660 | 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 61 6e 79 20 72 6f 75 74 | t.also.be.configured.in.any.rout |
| 66680 | 65 72 20 77 68 65 72 65 20 74 68 65 72 65 20 63 6f 75 6c 64 20 62 65 20 61 20 6d 75 6c 74 69 63 | er.where.there.could.be.a.multic |
| 666a0 | 61 73 74 20 72 65 63 65 69 76 65 72 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 | ast.receiver.locally.connected.. |
| 666c0 | 4d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 74 61 6c 6b 20 4d 4c | Multicast.receivers.will.talk.ML |
| 666e0 | 44 20 74 6f 20 74 68 65 69 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2c 20 73 6f 2c 20 62 65 73 | D.to.their.local.router,.so,.bes |
| 66700 | 69 64 65 73 20 68 61 76 69 6e 67 20 50 49 4d 76 36 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 | ides.having.PIMv6.configured.in. |
| 66720 | 65 76 65 72 79 20 72 6f 75 74 65 72 2c 20 4d 4c 44 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 63 | every.router,.MLD.must.also.be.c |
| 66740 | 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 61 6e 79 20 72 6f 75 74 65 72 20 77 68 65 72 65 20 74 68 | onfigured.in.any.router.where.th |
| 66760 | 65 72 65 20 63 6f 75 6c 64 20 62 65 20 61 20 6d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 | ere.could.be.a.multicast.receive |
| 66780 | 72 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 4d 75 6c 74 69 63 61 73 74 2d 72 | r.locally.connected..Multicast-r |
| 667a0 | 6f 75 74 69 6e 67 20 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 74 68 65 20 6c 65 61 76 65 | outing.is.required.for.the.leave |
| 667c0 | 73 20 74 6f 20 66 6f 72 77 61 72 64 20 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e 20 65 61 63 | s.to.forward.traffic.between.eac |
| 667e0 | 68 20 6f 74 68 65 72 20 69 6e 20 61 20 6d 6f 72 65 20 73 63 61 6c 61 62 6c 65 20 77 61 79 2e 20 | h.other.in.a.more.scalable.way.. |
| 66800 | 54 68 69 73 20 61 6c 73 6f 20 72 65 71 75 69 72 65 73 20 50 49 4d 20 74 6f 20 62 65 20 65 6e 61 | This.also.requires.PIM.to.be.ena |
| 66820 | 62 6c 65 64 20 74 6f 77 61 72 64 73 20 74 68 65 20 6c 65 61 76 65 73 20 73 6f 20 74 68 61 74 20 | bled.towards.the.leaves.so.that. |
| 66840 | 74 68 65 20 53 70 69 6e 65 20 63 61 6e 20 6c 65 61 72 6e 20 77 68 61 74 20 6d 75 6c 74 69 63 61 | the.Spine.can.learn.what.multica |
| 66860 | 73 74 20 67 72 6f 75 70 73 20 65 61 63 68 20 4c 65 61 66 20 65 78 70 65 63 74 73 20 74 72 61 66 | st.groups.each.Leaf.expects.traf |
| 66880 | 66 69 63 20 66 72 6f 6d 2e 00 4d 75 6c 74 69 70 6c 65 20 44 4e 53 20 73 65 72 76 65 72 73 20 63 | fic.from..Multiple.DNS.servers.c |
| 668a0 | 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 52 50 4b 49 20 63 61 63 | an.be.defined..Multiple.RPKI.cac |
| 668c0 | 68 69 6e 67 20 69 6e 73 74 61 6e 63 65 73 20 63 61 6e 20 62 65 20 73 75 70 70 6c 69 65 64 20 61 | hing.instances.can.be.supplied.a |
| 668e0 | 6e 64 20 74 68 65 79 20 6e 65 65 64 20 61 20 70 72 65 66 65 72 65 6e 63 65 20 69 6e 20 77 68 69 | nd.they.need.a.preference.in.whi |
| 66900 | 63 68 20 74 68 65 69 72 20 72 65 73 75 6c 74 20 73 65 74 73 20 61 72 65 20 75 73 65 64 2e 00 4d | ch.their.result.sets.are.used..M |
| 66920 | 75 6c 74 69 70 6c 65 20 55 70 6c 69 6e 6b 73 00 4d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 74 6f | ultiple.Uplinks.Multiple.VLAN.to |
| 66940 | 20 56 4e 49 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | .VNI.mappings.can.be.configured. |
| 66960 | 61 67 61 69 6e 73 74 20 74 68 65 20 73 61 6d 65 20 53 56 44 2e 20 54 68 69 73 20 61 6c 6c 6f 77 | against.the.same.SVD..This.allow |
| 66980 | 73 20 66 6f 72 20 61 20 73 69 67 6e 69 66 69 63 61 6e 74 20 73 63 61 6c 69 6e 67 20 6f 66 20 74 | s.for.a.significant.scaling.of.t |
| 669a0 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 56 4e 49 73 20 73 69 6e 63 65 20 61 20 73 65 70 61 72 61 | he.number.of.VNIs.since.a.separa |
| 669c0 | 74 65 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 | te.VXLAN.interface.is.no.longer. |
| 669e0 | 72 65 71 75 69 72 65 64 20 66 6f 72 20 65 61 63 68 20 56 4e 49 2e 00 4d 75 6c 74 69 70 6c 65 20 | required.for.each.VNI..Multiple. |
| 66a00 | 61 6c 69 61 73 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 70 65 72 20 68 6f 73 | aliases.can.be.specified.per.hos |
| 66a20 | 74 2d 6e 61 6d 65 2e 00 4d 75 6c 74 69 70 6c 65 20 61 6c 69 61 73 65 73 20 63 61 6e 20 70 65 20 | t-name..Multiple.aliases.can.pe. |
| 66a40 | 73 70 65 63 69 66 69 65 64 20 70 65 72 20 68 6f 73 74 2d 6e 61 6d 65 2e 00 4d 75 6c 74 69 70 6c | specified.per.host-name..Multipl |
| 66a60 | 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 | e.destination.ports.can.be.speci |
| 66a80 | 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 2e 20 | fied.as.a.comma-separated.list.. |
| 66aa0 | 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 6e 65 67 61 | The.whole.list.can.also.be."nega |
| 66ac0 | 74 65 64 22 20 75 73 69 6e 67 20 27 21 27 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 27 21 32 | ted".using.'!'..For.example:.'!2 |
| 66ae0 | 32 2c 74 65 6c 6e 65 74 2c 68 74 74 70 2c 31 32 33 2c 31 30 30 31 2d 31 30 30 35 27 00 4d 75 6c | 2,telnet,http,123,1001-1005'.Mul |
| 66b00 | 74 69 70 6c 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 | tiple.destination.ports.can.be.s |
| 66b20 | 70 65 63 69 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 20 6c 69 | pecified.as.a.comma-separated.li |
| 66b40 | 73 74 2e 20 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 | st..The.whole.list.can.also.be." |
| 66b60 | 6e 65 67 61 74 65 64 22 20 75 73 69 6e 67 20 27 21 27 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a | negated".using.'!'..For.example: |
| 66b80 | 20 60 21 32 32 2c 74 65 6c 6e 65 74 2c 68 74 74 70 2c 31 32 33 2c 31 30 30 31 2d 31 30 30 35 60 | .`!22,telnet,http,123,1001-1005` |
| 66ba0 | 60 00 4d 75 6c 74 69 70 6c 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 00 4d 75 | `.Multiple.external.addresses.Mu |
| 66bc0 | 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 | ltiple.interfaces.may.be.specifi |
| 66be0 | 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 73 2f 63 6c 69 65 6e 74 20 49 50 20 | ed..Multiple.networks/client.IP. |
| 66c00 | 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 4d 75 6c | addresses.can.be.configured..Mul |
| 66c20 | 74 69 70 6c 65 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 | tiple.servers.can.be.specified.. |
| 66c40 | 4d 75 6c 74 69 70 6c 65 20 73 65 72 76 69 63 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 70 65 | Multiple.services.can.be.used.pe |
| 66c60 | 72 20 69 6e 74 65 72 66 61 63 65 2e 20 4a 75 73 74 20 73 70 65 63 69 66 79 20 61 73 20 6d 61 6e | r.interface..Just.specify.as.man |
| 66c80 | 79 20 73 65 72 76 69 63 65 73 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 79 6f 75 20 | y.services.per.interface.as.you. |
| 66ca0 | 6c 69 6b 65 21 00 4d 75 6c 74 69 70 6c 65 20 73 6f 75 72 63 65 20 70 6f 72 74 73 20 63 61 6e 20 | like!.Multiple.source.ports.can. |
| 66cc0 | 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 | be.specified.as.a.comma-separate |
| 66ce0 | 64 20 6c 69 73 74 2e 20 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 | d.list..The.whole.list.can.also. |
| 66d00 | 62 65 20 22 6e 65 67 61 74 65 64 22 20 75 73 69 6e 67 20 60 60 21 60 60 2e 20 46 6f 72 20 65 78 | be."negated".using.``!``..For.ex |
| 66d20 | 61 6d 70 6c 65 3a 00 4d 75 6c 74 69 70 6c 65 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 | ample:.Multiple.target.IP.addres |
| 66d40 | 73 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 20 41 74 20 6c 65 61 73 74 20 6f | ses.can.be.specified..At.least.o |
| 66d60 | 6e 65 20 49 50 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 67 69 76 65 6e 20 66 6f 72 20 | ne.IP.address.must.be.given.for. |
| 66d80 | 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 74 6f 20 66 75 6e 63 74 69 6f 6e 2e 00 4d 75 6c 74 | ARP.monitoring.to.function..Mult |
| 66da0 | 69 70 6c 65 20 75 73 65 72 73 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 73 61 | iple.users.can.connect.to.the.sa |
| 66dc0 | 6d 65 20 73 65 72 69 61 6c 20 64 65 76 69 63 65 20 62 75 74 20 6f 6e 6c 79 20 6f 6e 65 20 69 73 | me.serial.device.but.only.one.is |
| 66de0 | 20 61 6c 6c 6f 77 65 64 20 74 6f 20 77 72 69 74 65 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 | .allowed.to.write.to.the.console |
| 66e00 | 20 70 6f 72 74 2e 00 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 73 20 | .port..Multiprotocol.extensions. |
| 66e20 | 65 6e 61 62 6c 65 20 42 47 50 20 74 6f 20 63 61 72 72 79 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f | enable.BGP.to.carry.routing.info |
| 66e40 | 72 6d 61 74 69 6f 6e 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 20 6c 61 79 | rmation.for.multiple.network.lay |
| 66e60 | 65 72 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 42 47 50 20 73 75 70 70 6f 72 74 73 20 61 6e 20 41 64 | er.protocols..BGP.supports.an.Ad |
| 66e80 | 64 72 65 73 73 20 46 61 6d 69 6c 79 20 49 64 65 6e 74 69 66 69 65 72 20 28 41 46 49 29 20 66 6f | dress.Family.Identifier.(AFI).fo |
| 66ea0 | 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 4e 00 4e 41 54 00 4e 41 54 20 28 73 70 65 63 | r.IPv4.and.IPv6..N.NAT.NAT.(spec |
| 66ec0 | 69 66 69 63 61 6c 6c 79 2c 20 53 6f 75 72 63 65 20 4e 41 54 29 3b 00 4e 41 54 20 43 6f 6e 66 69 | ifically,.Source.NAT);.NAT.Confi |
| 66ee0 | 67 75 72 61 74 69 6f 6e 00 4e 41 54 20 4c 6f 61 64 20 42 61 6c 61 6e 63 65 00 4e 41 54 20 4c 6f | guration.NAT.Load.Balance.NAT.Lo |
| 66f00 | 61 64 20 42 61 6c 61 6e 63 65 20 75 73 65 73 20 61 6e 20 61 6c 67 6f 72 69 74 68 6d 20 74 68 61 | ad.Balance.uses.an.algorithm.tha |
| 66f20 | 74 20 67 65 6e 65 72 61 74 65 73 20 61 20 68 61 73 68 20 61 6e 64 20 62 61 73 65 64 20 6f 6e 20 | t.generates.a.hash.and.based.on. |
| 66f40 | 69 74 2c 20 74 68 65 6e 20 69 74 20 61 70 70 6c 69 65 73 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e | it,.then.it.applies.correspondin |
| 66f60 | 67 20 74 72 61 6e 73 6c 61 74 69 6f 6e 2e 20 54 68 69 73 20 68 61 73 68 20 63 61 6e 20 62 65 20 | g.translation..This.hash.can.be. |
| 66f80 | 67 65 6e 65 72 61 74 65 64 20 72 61 6e 64 6f 6d 6c 79 2c 20 6f 72 20 63 61 6e 20 75 73 65 20 64 | generated.randomly,.or.can.use.d |
| 66fa0 | 61 74 61 20 66 72 6f 6d 20 74 68 65 20 69 70 20 68 65 61 64 65 72 3a 20 73 6f 75 72 63 65 2d 61 | ata.from.the.ip.header:.source-a |
| 66fc0 | 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 72 65 73 73 2c 20 73 6f 75 | ddress,.destination-address,.sou |
| 66fe0 | 72 63 65 2d 70 6f 72 74 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 70 6f 72 74 | rce-port.and/or.destination-port |
| 67000 | 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 74 | ..By.default,.it.will.generate.t |
| 67020 | 68 65 20 68 61 73 68 20 72 61 6e 64 6f 6d 6c 79 2e 00 4e 41 54 20 52 75 6c 65 73 65 74 00 4e 41 | he.hash.randomly..NAT.Ruleset.NA |
| 67040 | 54 20 62 65 66 6f 72 65 20 56 50 4e 00 4e 41 54 20 62 65 66 6f 72 65 20 56 50 4e 20 54 6f 70 6f | T.before.VPN.NAT.before.VPN.Topo |
| 67060 | 6c 6f 67 79 00 4e 41 54 2c 20 52 6f 75 74 69 6e 67 2c 20 46 69 72 65 77 61 6c 6c 20 49 6e 74 65 | logy.NAT,.Routing,.Firewall.Inte |
| 67080 | 72 61 63 74 69 6f 6e 00 4e 41 54 34 34 00 4e 41 54 36 34 00 4e 41 54 36 34 20 63 6c 69 65 6e 74 | raction.NAT44.NAT64.NAT64.client |
| 670a0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 4e 41 54 36 34 20 70 72 65 66 69 78 20 6d 61 73 | .configuration:.NAT64.prefix.mas |
| 670c0 | 6b 20 6d 75 73 74 20 62 65 20 6f 6e 65 20 6f 66 3a 20 2f 33 32 2c 20 2f 34 30 2c 20 2f 34 38 2c | k.must.be.one.of:./32,./40,./48, |
| 670e0 | 20 2f 35 36 2c 20 2f 36 34 20 6f 72 20 39 36 2e 00 4e 41 54 36 34 20 73 65 72 76 65 72 20 63 6f | ./56,./64.or.96..NAT64.server.co |
| 67100 | 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 4e 41 54 36 36 28 4e 50 54 76 36 29 00 4e 48 52 50 20 70 | nfiguration:.NAT66(NPTv6).NHRP.p |
| 67120 | 72 6f 76 69 64 65 73 20 74 68 65 20 64 79 6e 61 6d 69 63 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f | rovides.the.dynamic.tunnel.endpo |
| 67140 | 69 6e 74 20 64 69 73 63 6f 76 65 72 79 20 6d 65 63 68 61 6e 69 73 6d 20 28 65 6e 64 70 6f 69 6e | int.discovery.mechanism.(endpoin |
| 67160 | 74 20 72 65 67 69 73 74 72 61 74 69 6f 6e 2c 20 61 6e 64 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 | t.registration,.and.endpoint.dis |
| 67180 | 63 6f 76 65 72 79 2f 6c 6f 6f 6b 75 70 29 2c 20 6d 47 52 45 20 70 72 6f 76 69 64 65 73 20 74 68 | covery/lookup),.mGRE.provides.th |
| 671a0 | 65 20 74 75 6e 6e 65 6c 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 69 74 73 65 6c 66 2c 20 61 | e.tunnel.encapsulation.itself,.a |
| 671c0 | 6e 64 20 74 68 65 20 49 50 53 65 63 20 70 72 6f 74 6f 63 6f 6c 73 20 68 61 6e 64 6c 65 20 74 68 | nd.the.IPSec.protocols.handle.th |
| 671e0 | 65 20 6b 65 79 20 65 78 63 68 61 6e 67 65 2c 20 61 6e 64 20 63 72 79 70 74 6f 20 6d 65 63 68 61 | e.key.exchange,.and.crypto.mecha |
| 67200 | 6e 69 73 6d 2e 00 4e 54 50 00 4e 54 50 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 73 79 6e | nism..NTP.NTP.is.intended.to.syn |
| 67220 | 63 68 72 6f 6e 69 7a 65 20 61 6c 6c 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 63 6f 6d 70 75 | chronize.all.participating.compu |
| 67240 | 74 65 72 73 20 74 6f 20 77 69 74 68 69 6e 20 61 20 66 65 77 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 | ters.to.within.a.few.millisecond |
| 67260 | 73 20 6f 66 20 3a 61 62 62 72 3a 60 55 54 43 20 28 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 | s.of.:abbr:`UTC.(Coordinated.Uni |
| 67280 | 76 65 72 73 61 6c 20 54 69 6d 65 29 60 2e 20 49 74 20 75 73 65 73 20 74 68 65 20 69 6e 74 65 72 | versal.Time)`..It.uses.the.inter |
| 672a0 | 73 65 63 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 2c 20 61 20 6d 6f 64 69 66 69 65 64 20 76 65 | section.algorithm,.a.modified.ve |
| 672c0 | 72 73 69 6f 6e 20 6f 66 20 4d 61 72 7a 75 6c 6c 6f 27 73 20 61 6c 67 6f 72 69 74 68 6d 2c 20 74 | rsion.of.Marzullo's.algorithm,.t |
| 672e0 | 6f 20 73 65 6c 65 63 74 20 61 63 63 75 72 61 74 65 20 74 69 6d 65 20 73 65 72 76 65 72 73 20 61 | o.select.accurate.time.servers.a |
| 67300 | 6e 64 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 6d 69 74 69 67 61 74 65 20 74 68 65 20 65 | nd.is.designed.to.mitigate.the.e |
| 67320 | 66 66 65 63 74 73 20 6f 66 20 76 61 72 69 61 62 6c 65 20 6e 65 74 77 6f 72 6b 20 6c 61 74 65 6e | ffects.of.variable.network.laten |
| 67340 | 63 79 2e 20 4e 54 50 20 63 61 6e 20 75 73 75 61 6c 6c 79 20 6d 61 69 6e 74 61 69 6e 20 74 69 6d | cy..NTP.can.usually.maintain.tim |
| 67360 | 65 20 74 6f 20 77 69 74 68 69 6e 20 74 65 6e 73 20 6f 66 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 | e.to.within.tens.of.milliseconds |
| 67380 | 20 6f 76 65 72 20 74 68 65 20 70 75 62 6c 69 63 20 49 6e 74 65 72 6e 65 74 2c 20 61 6e 64 20 63 | .over.the.public.Internet,.and.c |
| 673a0 | 61 6e 20 61 63 68 69 65 76 65 20 62 65 74 74 65 72 20 74 68 61 6e 20 6f 6e 65 20 6d 69 6c 6c 69 | an.achieve.better.than.one.milli |
| 673c0 | 73 65 63 6f 6e 64 20 61 63 63 75 72 61 63 79 20 69 6e 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 | second.accuracy.in.local.area.ne |
| 673e0 | 74 77 6f 72 6b 73 20 75 6e 64 65 72 20 69 64 65 61 6c 20 63 6f 6e 64 69 74 69 6f 6e 73 2e 20 41 | tworks.under.ideal.conditions..A |
| 67400 | 73 79 6d 6d 65 74 72 69 63 20 72 6f 75 74 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 63 6f 6e | symmetric.routes.and.network.con |
| 67420 | 67 65 73 74 69 6f 6e 20 63 61 6e 20 63 61 75 73 65 20 65 72 72 6f 72 73 20 6f 66 20 31 30 30 20 | gestion.can.cause.errors.of.100. |
| 67440 | 6d 73 20 6f 72 20 6d 6f 72 65 2e 00 4e 54 50 20 70 72 6f 63 65 73 73 20 77 69 6c 6c 20 6f 6e 6c | ms.or.more..NTP.process.will.onl |
| 67460 | 79 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 49 50 20 61 64 64 | y.listen.on.the.specified.IP.add |
| 67480 | 72 65 73 73 2e 20 59 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 74 68 65 20 60 3c 61 64 64 | ress..You.must.specify.the.`<add |
| 674a0 | 72 65 73 73 3e 60 20 61 6e 64 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 74 68 65 20 70 65 72 6d 69 74 | ress>`.and.optionally.the.permit |
| 674c0 | 74 65 64 20 63 6c 69 65 6e 74 73 2e 20 4d 75 6c 74 69 70 6c 65 20 6c 69 73 74 65 6e 20 61 64 64 | ted.clients..Multiple.listen.add |
| 674e0 | 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 4e 54 50 20 70 72 | resses.can.be.configured..NTP.pr |
| 67500 | 6f 63 65 73 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 73 70 | ocess.will.only.listen.on.the.sp |
| 67520 | 65 63 69 66 69 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 6f 75 20 6d 75 73 74 20 73 70 65 | ecified.IP.address..You.must.spe |
| 67540 | 63 69 66 79 20 74 68 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 6e 64 20 6f 70 74 69 6f 6e 61 | cify.the.`<address>`.and.optiona |
| 67560 | 6c 6c 79 20 74 68 65 20 70 65 72 6d 69 74 74 65 64 20 63 6c 69 65 6e 74 73 2e 20 4d 75 6c 74 69 | lly.the.permitted.clients..Multi |
| 67580 | 70 6c 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 73 61 6d 65 20 49 50 | ple.listen.addresses.for.same.IP |
| 675a0 | 20 66 61 6d 69 6c 79 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 2e 20 | .family.is.no.longer.supported.. |
| 675c0 | 4f 6e 6c 79 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 6f 6e 65 20 49 50 76 36 20 61 64 64 72 65 | Only.one.IPv4.and.one.IPv6.addre |
| 675e0 | 73 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 75 73 69 6e 67 20 73 65 70 61 | ss.can.be.configured,.using.sepa |
| 67600 | 72 61 74 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 65 61 63 68 2e 00 4e 54 50 20 73 75 62 73 | rate.commands.for.each..NTP.subs |
| 67620 | 79 73 74 65 6d 00 4e 54 50 20 73 75 70 70 6c 69 65 73 20 61 20 77 61 72 6e 69 6e 67 20 6f 66 20 | ystem.NTP.supplies.a.warning.of. |
| 67640 | 61 6e 79 20 69 6d 70 65 6e 64 69 6e 67 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 61 64 6a 75 73 74 | any.impending.leap.second.adjust |
| 67660 | 6d 65 6e 74 2c 20 62 75 74 20 6e 6f 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 6c | ment,.but.no.information.about.l |
| 67680 | 6f 63 61 6c 20 74 69 6d 65 20 7a 6f 6e 65 73 20 6f 72 20 64 61 79 6c 69 67 68 74 20 73 61 76 69 | ocal.time.zones.or.daylight.savi |
| 676a0 | 6e 67 20 74 69 6d 65 20 69 73 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 00 4e 61 6d 65 20 53 65 72 | ng.time.is.transmitted..Name.Ser |
| 676c0 | 76 65 72 00 4e 61 6d 65 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 63 65 72 74 69 66 69 63 61 74 | ver.Name.of.installed.certificat |
| 676e0 | 65 20 61 75 74 68 6f 72 69 74 79 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 4e 61 6d 65 20 6f 66 | e.authority.certificate..Name.of |
| 67700 | 20 69 6e 73 74 61 6c 6c 65 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 4e | .installed.server.certificate..N |
| 67720 | 61 6d 65 20 6f 66 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 00 4e 61 6d 65 20 6f 66 20 74 68 | ame.of.static.mapping.Name.of.th |
| 67740 | 65 20 73 69 6e 67 6c 65 20 74 61 62 6c 65 20 4f 6e 6c 79 20 69 66 20 73 65 74 20 67 72 6f 75 70 | e.single.table.Only.if.set.group |
| 67760 | 2d 6d 65 74 72 69 63 73 20 73 69 6e 67 6c 65 2d 74 61 62 6c 65 2e 00 4e 61 6d 65 20 6f 72 20 49 | -metrics.single-table..Name.or.I |
| 67780 | 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 54 46 54 50 20 73 65 72 76 65 72 00 4e 65 74 42 49 | Pv4.address.of.TFTP.server.NetBI |
| 677a0 | 4f 53 20 6f 76 65 72 20 54 43 50 2f 49 50 20 6e 61 6d 65 20 73 65 72 76 65 72 00 4e 65 74 46 6c | OS.over.TCP/IP.name.server.NetFl |
| 677c0 | 6f 77 00 4e 65 74 46 6c 6f 77 20 2f 20 49 50 46 49 58 00 4e 65 74 46 6c 6f 77 20 65 6e 67 69 6e | ow.NetFlow./.IPFIX.NetFlow.engin |
| 677e0 | 65 2d 69 64 20 77 68 69 63 68 20 77 69 6c 6c 20 61 70 70 65 61 72 20 69 6e 20 4e 65 74 46 6c 6f | e-id.which.will.appear.in.NetFlo |
| 67800 | 77 20 64 61 74 61 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 32 35 35 2e 00 4e | w.data..The.range.is.0.to.255..N |
| 67820 | 65 74 46 6c 6f 77 20 69 73 20 61 20 66 65 61 74 75 72 65 20 74 68 61 74 20 77 61 73 20 69 6e 74 | etFlow.is.a.feature.that.was.int |
| 67840 | 72 6f 64 75 63 65 64 20 6f 6e 20 43 69 73 63 6f 20 72 6f 75 74 65 72 73 20 61 72 6f 75 6e 64 20 | roduced.on.Cisco.routers.around. |
| 67860 | 31 39 39 36 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 | 1996.that.provides.the.ability.t |
| 67880 | 6f 20 63 6f 6c 6c 65 63 74 20 49 50 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 61 73 20 | o.collect.IP.network.traffic.as. |
| 678a0 | 69 74 20 65 6e 74 65 72 73 20 6f 72 20 65 78 69 74 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e | it.enters.or.exits.an.interface. |
| 678c0 | 20 42 79 20 61 6e 61 6c 79 7a 69 6e 67 20 74 68 65 20 64 61 74 61 20 70 72 6f 76 69 64 65 64 20 | .By.analyzing.the.data.provided. |
| 678e0 | 62 79 20 4e 65 74 46 6c 6f 77 2c 20 61 20 6e 65 74 77 6f 72 6b 20 61 64 6d 69 6e 69 73 74 72 61 | by.NetFlow,.a.network.administra |
| 67900 | 74 6f 72 20 63 61 6e 20 64 65 74 65 72 6d 69 6e 65 20 74 68 69 6e 67 73 20 73 75 63 68 20 61 73 | tor.can.determine.things.such.as |
| 67920 | 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 | .the.source.and.destination.of.t |
| 67940 | 72 61 66 66 69 63 2c 20 63 6c 61 73 73 20 6f 66 20 73 65 72 76 69 63 65 2c 20 61 6e 64 20 74 68 | raffic,.class.of.service,.and.th |
| 67960 | 65 20 63 61 75 73 65 73 20 6f 66 20 63 6f 6e 67 65 73 74 69 6f 6e 2e 20 41 20 74 79 70 69 63 61 | e.causes.of.congestion..A.typica |
| 67980 | 6c 20 66 6c 6f 77 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 73 65 74 75 70 20 28 75 73 69 6e 67 20 4e | l.flow.monitoring.setup.(using.N |
| 679a0 | 65 74 46 6c 6f 77 29 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 74 68 72 65 65 20 6d 61 69 6e 20 63 | etFlow).consists.of.three.main.c |
| 679c0 | 6f 6d 70 6f 6e 65 6e 74 73 3a 00 4e 65 74 46 6c 6f 77 20 69 73 20 75 73 75 61 6c 6c 79 20 65 6e | omponents:.NetFlow.is.usually.en |
| 679e0 | 61 62 6c 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 20 74 | abled.on.a.per-interface.basis.t |
| 67a00 | 6f 20 6c 69 6d 69 74 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6d 70 6f | o.limit.load.on.the.router.compo |
| 67a20 | 6e 65 6e 74 73 20 69 6e 76 6f 6c 76 65 64 20 69 6e 20 4e 65 74 46 6c 6f 77 2c 20 6f 72 20 74 6f | nents.involved.in.NetFlow,.or.to |
| 67a40 | 20 6c 69 6d 69 74 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 4e 65 74 46 6c 6f 77 20 72 65 63 | .limit.the.amount.of.NetFlow.rec |
| 67a60 | 6f 72 64 73 20 65 78 70 6f 72 74 65 64 2e 00 4e 65 74 46 6c 6f 77 20 76 35 20 65 78 61 6d 70 6c | ords.exported..NetFlow.v5.exampl |
| 67a80 | 65 3a 00 4e 65 74 66 69 6c 74 65 72 20 62 61 73 65 64 00 4e 65 74 6d 61 73 6b 20 67 72 65 61 74 | e:.Netfilter.based.Netmask.great |
| 67aa0 | 65 72 20 74 68 61 6e 20 6c 65 6e 67 74 68 2e 00 4e 65 74 6d 61 73 6b 20 6c 65 73 73 20 74 68 61 | er.than.length..Netmask.less.tha |
| 67ac0 | 6e 20 6c 65 6e 67 74 68 00 4e 65 74 77 6f 72 6b 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 20 43 | n.length.Network.Advertisement.C |
| 67ae0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4e 65 74 77 6f 72 6b 20 43 6f 6e 74 72 6f 6c 00 4e 65 74 | onfiguration.Network.Control.Net |
| 67b00 | 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 00 4e 65 74 77 6f 72 6b 20 47 72 6f 75 70 73 00 4e 65 74 | work.Emulator.Network.Groups.Net |
| 67b20 | 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 45 6e 74 65 72 70 72 69 73 65 2d 54 45 53 54 | work.ID.(SSID).``Enterprise-TEST |
| 67b40 | 60 60 00 4e 65 74 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 54 45 53 54 60 60 00 4e 65 | ``.Network.ID.(SSID).``TEST``.Ne |
| 67b60 | 74 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 74 65 73 74 2e 61 78 60 60 00 4e 65 74 77 | twork.ID.(SSID).``test.ax``.Netw |
| 67b80 | 6f 72 6b 20 54 6f 70 6f 6c 6f 67 79 20 44 69 61 67 72 61 6d 00 4e 65 74 77 6f 72 6b 20 6d 61 6e | ork.Topology.Diagram.Network.man |
| 67ba0 | 61 67 65 6d 65 6e 74 20 73 74 61 74 69 6f 6e 20 28 4e 4d 53 29 20 2d 20 73 6f 66 74 77 61 72 65 | agement.station.(NMS).-.software |
| 67bc0 | 20 77 68 69 63 68 20 72 75 6e 73 20 6f 6e 20 74 68 65 20 6d 61 6e 61 67 65 72 00 4e 65 74 77 6f | .which.runs.on.the.manager.Netwo |
| 67be0 | 72 6b 20 6e 65 77 73 20 73 75 62 73 79 73 74 65 6d 00 4e 65 74 77 6f 72 6b 20 74 6f 20 62 65 20 | rk.news.subsystem.Network.to.be. |
| 67c00 | 70 72 6f 74 65 63 74 65 64 3a 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 20 28 70 75 62 6c 69 63 20 | protected:.192.0.2.0/24.(public. |
| 67c20 | 49 50 73 20 75 73 65 20 62 79 20 63 75 73 74 6f 6d 65 72 73 29 00 4e 65 74 77 6f 72 6b 73 20 61 | IPs.use.by.customers).Networks.a |
| 67c40 | 6c 6c 6f 77 65 64 20 74 6f 20 71 75 65 72 79 20 74 68 69 73 20 73 65 72 76 65 72 00 4e 65 77 20 | llowed.to.query.this.server.New. |
| 67c60 | 75 73 65 72 20 77 69 6c 6c 20 75 73 65 20 53 48 41 2f 41 45 53 20 66 6f 72 20 61 75 74 68 65 6e | user.will.use.SHA/AES.for.authen |
| 67c80 | 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 70 72 69 76 61 63 79 00 4e 65 78 74 20 69 74 20 69 73 20 | tication.and.privacy.Next.it.is. |
| 67ca0 | 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 32 46 41 20 66 6f 72 20 4f | necessary.to.configure.2FA.for.O |
| 67cc0 | 70 65 6e 43 6f 6e 6e 65 63 74 3a 00 4e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 | penConnect:.Next-hop.interface.f |
| 67ce0 | 6f 72 20 74 68 65 20 72 6f 75 74 65 00 4e 65 78 74 68 6f 70 20 49 50 20 61 64 64 72 65 73 73 2e | or.the.route.Nexthop.IP.address. |
| 67d00 | 00 4e 65 78 74 68 6f 70 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 | .Nexthop.IPv6.address.to.match.. |
| 67d20 | 4e 65 78 74 68 6f 70 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 4e 65 78 74 68 6f 70 20 54 72 | Nexthop.IPv6.address..Nexthop.Tr |
| 67d40 | 61 63 6b 69 6e 67 00 4e 65 78 74 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 72 65 73 6f 6c 76 65 20 | acking.Nexthop.tracking.resolve. |
| 67d60 | 6e 65 78 74 68 6f 70 73 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 62 | nexthops.via.the.default.route.b |
| 67d80 | 79 20 64 65 66 61 75 6c 74 2e 20 54 68 69 73 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 | y.default..This.is.enabled.by.de |
| 67da0 | 66 61 75 6c 74 20 66 6f 72 20 61 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 | fault.for.a.traditional.profile. |
| 67dc0 | 6f 66 20 46 52 52 20 77 68 69 63 68 20 77 65 20 75 73 65 2e 20 49 74 20 61 6e 64 20 63 61 6e 20 | of.FRR.which.we.use..It.and.can. |
| 67de0 | 62 65 20 64 69 73 61 62 6c 65 64 20 69 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 77 61 6e 27 74 20 | be.disabled.if.you.do.not.wan't. |
| 67e00 | 74 6f 20 65 2e 67 2e 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f 20 70 65 65 72 20 61 63 72 6f 73 73 | to.e.g..allow.BGP.to.peer.across |
| 67e20 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4e 65 78 74 68 6f 70 20 74 72 61 63 | .the.default.route..Nexthop.trac |
| 67e40 | 6b 69 6e 67 20 72 65 73 6f 6c 76 65 20 6e 65 78 74 68 6f 70 73 20 76 69 61 20 74 68 65 20 64 65 | king.resolve.nexthops.via.the.de |
| 67e60 | 66 61 75 6c 74 20 72 6f 75 74 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 54 68 69 73 20 69 73 20 | fault.route.by.default..This.is. |
| 67e80 | 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 61 20 74 72 61 64 69 74 69 | enabled.by.default.for.a.traditi |
| 67ea0 | 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 6f 66 20 46 52 52 20 77 68 69 63 68 20 77 65 20 75 73 65 | onal.profile.of.FRR.which.we.use |
| 67ec0 | 2e 20 49 74 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 61 62 6c 65 64 20 69 66 20 79 6f 75 20 | ..It.and.can.be.disabled.if.you. |
| 67ee0 | 64 6f 20 6e 6f 74 20 77 61 6e 74 20 74 6f 20 65 2e 67 2e 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f | do.not.want.to.e.g..allow.BGP.to |
| 67f00 | 20 70 65 65 72 20 61 63 72 6f 73 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 | .peer.across.the.default.route.. |
| 67f20 | 4e 6f 20 52 4f 41 20 65 78 69 73 74 73 20 77 68 69 63 68 20 63 6f 76 65 72 73 20 74 68 61 74 20 | No.ROA.exists.which.covers.that. |
| 67f40 | 70 72 65 66 69 78 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 74 68 69 73 20 69 73 20 74 68 | prefix..Unfortunately.this.is.th |
| 67f60 | 65 20 63 61 73 65 20 66 6f 72 20 61 62 6f 75 74 20 34 30 25 2d 35 30 25 20 6f 66 20 74 68 65 20 | e.case.for.about.40%-50%.of.the. |
| 67f80 | 70 72 65 66 69 78 65 73 20 77 68 69 63 68 20 77 65 72 65 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f | prefixes.which.were.announced.to |
| 67fa0 | 20 74 68 65 20 3a 61 62 62 72 3a 60 44 46 5a 20 28 64 65 66 61 75 6c 74 2d 66 72 65 65 20 7a 6f | .the.:abbr:`DFZ.(default-free.zo |
| 67fc0 | 6e 65 29 60 20 61 74 20 74 68 65 20 73 74 61 72 74 20 6f 66 20 32 30 32 34 2e 00 4e 6f 20 52 4f | ne)`.at.the.start.of.2024..No.RO |
| 67fe0 | 41 20 65 78 69 73 74 73 20 77 68 69 63 68 20 63 6f 76 65 72 73 20 74 68 61 74 20 70 72 65 66 69 | A.exists.which.covers.that.prefi |
| 68000 | 78 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 74 68 69 73 20 69 73 20 74 68 65 20 63 61 73 | x..Unfortunately.this.is.the.cas |
| 68020 | 65 20 66 6f 72 20 61 62 6f 75 74 20 38 30 25 20 6f 66 20 74 68 65 20 49 50 76 34 20 70 72 65 66 | e.for.about.80%.of.the.IPv4.pref |
| 68040 | 69 78 65 73 20 77 68 69 63 68 20 77 65 72 65 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 74 68 65 | ixes.which.were.announced.to.the |
| 68060 | 20 3a 61 62 62 72 3a 60 44 46 5a 20 28 64 65 66 61 75 6c 74 2d 66 72 65 65 20 7a 6f 6e 65 29 60 | .:abbr:`DFZ.(default-free.zone)` |
| 68080 | 20 61 74 20 74 68 65 20 73 74 61 72 74 20 6f 66 20 32 30 32 30 00 4e 6f 20 56 4c 41 4e 20 74 61 | .at.the.start.of.2020.No.VLAN.ta |
| 680a0 | 67 67 69 6e 67 20 72 65 71 75 69 72 65 64 20 62 79 20 79 6f 75 72 20 49 53 50 2e 00 4e 6f 20 72 | gging.required.by.your.ISP..No.r |
| 680c0 | 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 73 73 65 64 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 2e | oute.is.suppressed.indefinitely. |
| 680e0 | 20 4d 61 78 69 6d 75 6d 2d 73 75 70 70 72 65 73 73 2d 74 69 6d 65 20 64 65 66 69 6e 65 73 20 74 | .Maximum-suppress-time.defines.t |
| 68100 | 68 65 20 6d 61 78 69 6d 75 6d 20 74 69 6d 65 20 61 20 72 6f 75 74 65 20 63 61 6e 20 62 65 20 73 | he.maximum.time.a.route.can.be.s |
| 68120 | 75 70 70 72 65 73 73 65 64 20 62 65 66 6f 72 65 20 69 74 20 69 73 20 72 65 2d 61 64 76 65 72 74 | uppressed.before.it.is.re-advert |
| 68140 | 69 73 65 64 2e 00 4e 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 53 52 4c 42 00 4e 6f 20 73 75 70 | ised..No.support.for.SRLB.No.sup |
| 68160 | 70 6f 72 74 20 66 6f 72 20 62 69 6e 64 69 6e 67 20 53 49 44 00 4e 6f 20 73 75 70 70 6f 72 74 20 | port.for.binding.SID.No.support. |
| 68180 | 66 6f 72 20 6c 65 76 65 6c 20 72 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 28 4c 31 20 74 6f 20 | for.level.redistribution.(L1.to. |
| 681a0 | 4c 32 20 6f 72 20 4c 32 20 74 6f 20 4c 31 29 00 4e 6f 6e 2d 74 72 61 6e 73 70 61 72 65 6e 74 20 | L2.or.L2.to.L1).Non-transparent. |
| 681c0 | 70 72 6f 78 79 69 6e 67 20 72 65 71 75 69 72 65 73 20 74 68 61 74 20 74 68 65 20 63 6c 69 65 6e | proxying.requires.that.the.clien |
| 681e0 | 74 20 62 72 6f 77 73 65 72 73 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 | t.browsers.be.configured.with.th |
| 68200 | 65 20 70 72 6f 78 79 20 73 65 74 74 69 6e 67 73 20 62 65 66 6f 72 65 20 72 65 71 75 65 73 74 73 | e.proxy.settings.before.requests |
| 68220 | 20 61 72 65 20 72 65 64 69 72 65 63 74 65 64 2e 20 54 68 65 20 61 64 76 61 6e 74 61 67 65 20 6f | .are.redirected..The.advantage.o |
| 68240 | 66 20 74 68 69 73 20 69 73 20 74 68 61 74 20 74 68 65 20 63 6c 69 65 6e 74 20 77 65 62 20 62 72 | f.this.is.that.the.client.web.br |
| 68260 | 6f 77 73 65 72 20 63 61 6e 20 64 65 74 65 63 74 20 74 68 61 74 20 61 20 70 72 6f 78 79 20 69 73 | owser.can.detect.that.a.proxy.is |
| 68280 | 20 69 6e 20 75 73 65 20 61 6e 64 20 63 61 6e 20 62 65 68 61 76 65 20 61 63 63 6f 72 64 69 6e 67 | .in.use.and.can.behave.according |
| 682a0 | 6c 79 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 2c 20 77 65 62 2d 74 72 61 6e 73 6d 69 74 74 65 64 | ly..In.addition,.web-transmitted |
| 682c0 | 20 6d 61 6c 77 61 72 65 20 63 61 6e 20 73 6f 6d 65 74 69 6d 65 73 20 62 65 20 62 6c 6f 63 6b 65 | .malware.can.sometimes.be.blocke |
| 682e0 | 64 20 62 79 20 61 20 6e 6f 6e 2d 74 72 61 6e 73 70 61 72 65 6e 74 20 77 65 62 20 70 72 6f 78 79 | d.by.a.non-transparent.web.proxy |
| 68300 | 2c 20 73 69 6e 63 65 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 61 77 61 72 65 20 6f 66 20 74 68 | ,.since.they.are.not.aware.of.th |
| 68320 | 65 20 70 72 6f 78 79 20 73 65 74 74 69 6e 67 73 2e 00 4e 6f 6e 65 20 6f 66 20 74 68 65 20 6f 70 | e.proxy.settings..None.of.the.op |
| 68340 | 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 20 68 61 76 65 20 63 6c 69 65 6e 74 20 73 6f 66 74 | erating.systems.have.client.soft |
| 68360 | 77 61 72 65 20 69 6e 73 74 61 6c 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 00 4e 6f 72 6d 61 6c | ware.installed.by.default.Normal |
| 68380 | 20 62 75 74 20 73 69 67 6e 69 66 69 63 61 6e 74 20 63 6f 6e 64 69 74 69 6f 6e 73 20 2d 20 63 6f | .but.significant.conditions.-.co |
| 683a0 | 6e 64 69 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 65 72 72 6f 72 20 63 6f 6e 64 | nditions.that.are.not.error.cond |
| 683c0 | 69 74 69 6f 6e 73 2c 20 62 75 74 20 74 68 61 74 20 6d 61 79 20 72 65 71 75 69 72 65 20 73 70 65 | itions,.but.that.may.require.spe |
| 683e0 | 63 69 61 6c 20 68 61 6e 64 6c 69 6e 67 2e 00 4e 6f 74 20 61 6c 6c 20 3a 72 66 63 3a 60 36 38 38 | cial.handling..Not.all.:rfc:`688 |
| 68400 | 38 60 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 | 8`.requirements.are.implemented. |
| 68420 | 69 6e 20 43 47 4e 41 54 2e 00 4e 6f 74 20 61 6c 6c 20 74 72 61 6e 73 6d 69 74 20 70 6f 6c 69 63 | in.CGNAT..Not.all.transmit.polic |
| 68440 | 69 65 73 20 6d 61 79 20 62 65 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c 69 61 6e 74 2c 20 70 61 | ies.may.be.802.3ad.compliant,.pa |
| 68460 | 72 74 69 63 75 6c 61 72 6c 79 20 69 6e 20 72 65 67 61 72 64 73 20 74 6f 20 74 68 65 20 70 61 63 | rticularly.in.regards.to.the.pac |
| 68480 | 6b 65 74 20 6d 69 73 6f 72 64 65 72 69 6e 67 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 6f 66 20 | ket.misordering.requirements.of. |
| 684a0 | 73 65 63 74 69 6f 6e 20 34 33 2e 32 2e 34 20 6f 66 20 74 68 65 20 38 30 32 2e 33 61 64 20 73 74 | section.43.2.4.of.the.802.3ad.st |
| 684c0 | 61 6e 64 61 72 64 2e 00 4e 6f 74 65 20 74 68 61 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 6c | andard..Note.that.deleting.the.l |
| 684e0 | 6f 67 20 66 69 6c 65 20 64 6f 65 73 20 6e 6f 74 20 73 74 6f 70 20 74 68 65 20 73 79 73 74 65 6d | og.file.does.not.stop.the.system |
| 68500 | 20 66 72 6f 6d 20 6c 6f 67 67 69 6e 67 20 65 76 65 6e 74 73 2e 20 49 66 20 79 6f 75 20 75 73 65 | .from.logging.events..If.you.use |
| 68520 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 68 69 6c 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 | .this.command.while.the.system.i |
| 68540 | 73 20 6c 6f 67 67 69 6e 67 20 65 76 65 6e 74 73 2c 20 6f 6c 64 20 6c 6f 67 20 65 76 65 6e 74 73 | s.logging.events,.old.log.events |
| 68560 | 20 77 69 6c 6c 20 62 65 20 64 65 6c 65 74 65 64 2c 20 62 75 74 20 65 76 65 6e 74 73 20 61 66 74 | .will.be.deleted,.but.events.aft |
| 68580 | 65 72 20 74 68 65 20 64 65 6c 65 74 65 20 6f 70 65 72 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 | er.the.delete.operation.will.be. |
| 685a0 | 72 65 63 6f 72 64 65 64 20 69 6e 20 74 68 65 20 6e 65 77 20 66 69 6c 65 2e 20 54 6f 20 64 65 6c | recorded.in.the.new.file..To.del |
| 685c0 | 65 74 65 20 74 68 65 20 66 69 6c 65 20 61 6c 74 6f 67 65 74 68 65 72 2c 20 66 69 72 73 74 20 64 | ete.the.file.altogether,.first.d |
| 685e0 | 65 6c 65 74 65 20 6c 6f 67 67 69 6e 67 20 74 6f 20 74 68 65 20 66 69 6c 65 20 75 73 69 6e 67 20 | elete.logging.to.the.file.using. |
| 68600 | 73 79 73 74 65 6d 20 73 79 73 6c 6f 67 20 3a 72 65 66 3a 60 63 75 73 74 6f 6d 2d 66 69 6c 65 60 | system.syslog.:ref:`custom-file` |
| 68620 | 20 63 6f 6d 6d 61 6e 64 2c 20 61 6e 64 20 74 68 65 6e 20 64 65 6c 65 74 65 20 74 68 65 20 66 69 | .command,.and.then.delete.the.fi |
| 68640 | 6c 65 2e 00 4e 6f 74 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 68 65 20 70 75 | le..Note.the.command.with.the.pu |
| 68660 | 62 6c 69 63 20 6b 65 79 20 28 73 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 70 73 65 63 | blic.key.(set.pki.key-pair.ipsec |
| 68680 | 2d 52 49 47 48 54 20 70 75 62 6c 69 63 20 6b 65 79 20 27 46 41 41 4f 43 41 51 38 41 4d 49 49 2e | -RIGHT.public.key.'FAAOCAQ8AMII. |
| 686a0 | 2e 2e 27 29 2e 00 4e 6f 74 65 3a 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 73 20 64 6f | ..')..Note:.certificate.names.do |
| 686c0 | 6e 27 74 20 6d 61 74 74 65 72 2c 20 77 65 20 75 73 65 20 27 6f 70 65 6e 76 70 6e 2d 6c 6f 63 61 | n't.matter,.we.use.'openvpn-loca |
| 686e0 | 6c 27 20 61 6e 64 20 27 6f 70 65 6e 76 70 6e 2d 72 65 6d 6f 74 65 27 20 62 75 74 20 74 68 65 79 | l'.and.'openvpn-remote'.but.they |
| 68700 | 20 63 61 6e 20 62 65 20 61 72 62 69 74 72 61 72 79 2e 00 4e 6f 74 69 63 65 00 4e 6f 77 20 63 6f | .can.be.arbitrary..Notice.Now.co |
| 68720 | 6e 66 69 67 75 72 65 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 20 73 65 72 76 69 63 65 20 6f | nfigure.conntrack-sync.service.o |
| 68740 | 6e 20 60 60 72 6f 75 74 65 72 31 60 60 20 2a 2a 61 6e 64 2a 2a 20 60 60 72 6f 75 74 65 72 32 60 | n.``router1``.**and**.``router2` |
| 68760 | 60 00 4e 6f 77 20 74 68 65 20 6e 6f 74 65 64 20 70 75 62 6c 69 63 20 6b 65 79 73 20 73 68 6f 75 | `.Now.the.noted.public.keys.shou |
| 68780 | 6c 64 20 62 65 20 65 6e 74 65 72 65 64 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f | ld.be.entered.on.the.opposite.ro |
| 687a0 | 75 74 65 72 73 2e 00 4e 6f 77 20 74 68 65 20 75 73 65 72 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 | uters..Now.the.user.can.connect. |
| 687c0 | 74 68 72 6f 75 67 68 20 73 73 68 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 28 61 73 73 75 6d | through.ssh.to.the.router.(assum |
| 687e0 | 69 6e 67 20 73 73 68 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 29 2e 00 4e 6f 77 20 75 73 65 72 | ing.ssh.is.configured)..Now.user |
| 68800 | 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 68 72 6f 75 67 68 20 73 73 68 20 74 6f 20 74 68 65 20 | .can.connect.through.ssh.to.the. |
| 68820 | 72 6f 75 74 65 72 20 28 61 73 73 75 6d 69 6e 67 20 73 73 68 20 69 73 20 63 6f 6e 66 69 67 75 72 | router.(assuming.ssh.is.configur |
| 68840 | 65 64 29 2e 00 4e 6f 77 20 77 65 20 61 64 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 74 6f 20 74 68 | ed)..Now.we.add.the.option.to.th |
| 68860 | 65 20 73 63 6f 70 65 2c 20 61 64 61 70 74 20 74 6f 20 79 6f 75 72 20 73 65 74 75 70 00 4e 6f 77 | e.scope,.adapt.to.your.setup.Now |
| 68880 | 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 73 65 72 76 65 72 20 6e | .we.need.to.specify.the.server.n |
| 688a0 | 65 74 77 6f 72 6b 20 73 65 74 74 69 6e 67 73 2e 20 49 6e 20 61 6c 6c 20 63 61 73 65 73 20 77 65 | etwork.settings..In.all.cases.we |
| 688c0 | 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 73 75 62 6e 65 74 20 66 6f 72 20 | .need.to.specify.the.subnet.for. |
| 688e0 | 63 6c 69 65 6e 74 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 73 2e 20 53 69 6e 63 65 20 77 | client.tunnel.endpoints..Since.w |
| 68900 | 65 20 77 61 6e 74 20 63 6c 69 65 6e 74 73 20 74 6f 20 61 63 63 65 73 73 20 61 20 73 70 65 63 69 | e.want.clients.to.access.a.speci |
| 68920 | 66 69 63 20 6e 65 74 77 6f 72 6b 20 62 65 68 69 6e 64 20 6f 75 72 20 72 6f 75 74 65 72 2c 20 77 | fic.network.behind.our.router,.w |
| 68940 | 65 20 77 69 6c 6c 20 75 73 65 20 61 20 70 75 73 68 2d 72 6f 75 74 65 20 6f 70 74 69 6f 6e 20 66 | e.will.use.a.push-route.option.f |
| 68960 | 6f 72 20 69 6e 73 74 61 6c 6c 69 6e 67 20 74 68 61 74 20 72 6f 75 74 65 20 6f 6e 20 63 6c 69 65 | or.installing.that.route.on.clie |
| 68980 | 6e 74 73 2e 00 4e 6f 77 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 68 65 20 75 73 65 | nts..Now.when.connecting.the.use |
| 689a0 | 72 20 77 69 6c 6c 20 66 69 72 73 74 20 62 65 20 61 73 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 | r.will.first.be.asked.for.the.pa |
| 689c0 | 73 73 77 6f 72 64 20 61 6e 64 20 74 68 65 6e 20 74 68 65 20 4f 54 50 20 6b 65 79 2e 00 4e 6f 77 | ssword.and.then.the.OTP.key..Now |
| 689e0 | 20 79 6f 75 20 61 72 65 20 72 65 61 64 79 20 74 6f 20 73 65 74 75 70 20 49 50 73 65 63 2e 20 54 | .you.are.ready.to.setup.IPsec..T |
| 68a00 | 68 65 20 6b 65 79 20 70 6f 69 6e 74 73 3a 00 4e 6f 77 20 79 6f 75 20 61 72 65 20 72 65 61 64 79 | he.key.points:.Now.you.are.ready |
| 68a20 | 20 74 6f 20 73 65 74 75 70 20 49 50 73 65 63 2e 20 59 6f 75 27 6c 6c 20 6e 65 65 64 20 74 6f 20 | .to.setup.IPsec..You'll.need.to. |
| 68a40 | 75 73 65 20 61 6e 20 49 44 20 69 6e 73 74 65 61 64 20 6f 66 20 61 64 64 72 65 73 73 20 66 6f 72 | use.an.ID.instead.of.address.for |
| 68a60 | 20 74 68 65 20 70 65 65 72 2e 00 4e 75 6d 62 65 72 20 6f 66 20 61 6e 74 65 6e 6e 61 73 20 6f 6e | .the.peer..Number.of.antennas.on |
| 68a80 | 20 74 68 69 73 20 63 61 72 64 00 4e 75 6d 62 65 72 20 6f 66 20 62 69 74 73 20 6f 66 20 63 6c 69 | .this.card.Number.of.bits.of.cli |
| 68aa0 | 65 6e 74 20 49 50 76 34 20 61 64 64 72 65 73 73 20 74 6f 20 70 61 73 73 20 77 68 65 6e 20 73 65 | ent.IPv4.address.to.pass.when.se |
| 68ac0 | 6e 64 69 6e 67 20 45 44 4e 53 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 20 61 64 64 72 65 73 73 | nding.EDNS.Client.Subnet.address |
| 68ae0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 4e 75 6d 62 65 72 20 6f 66 20 6c 69 6e 65 73 20 74 6f | .information..Number.of.lines.to |
| 68b00 | 20 62 65 20 64 69 73 70 6c 61 79 65 64 2c 20 64 65 66 61 75 6c 74 20 31 30 00 4f 53 50 46 00 4f | .be.displayed,.default.10.OSPF.O |
| 68b20 | 53 50 46 20 53 52 20 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 53 50 46 20 69 73 20 61 20 | SPF.SR..Configuration.OSPF.is.a. |
| 68b40 | 77 69 64 65 6c 79 20 75 73 65 64 20 49 47 50 20 69 6e 20 6c 61 72 67 65 20 65 6e 74 65 72 70 72 | widely.used.IGP.in.large.enterpr |
| 68b60 | 69 73 65 20 6e 65 74 77 6f 72 6b 73 2e 00 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 | ise.networks..OSPF.routing.devic |
| 68b80 | 65 73 20 6e 6f 72 6d 61 6c 6c 79 20 64 69 73 63 6f 76 65 72 20 74 68 65 69 72 20 6e 65 69 67 68 | es.normally.discover.their.neigh |
| 68ba0 | 62 6f 72 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 62 79 20 6c 69 73 74 65 6e 69 6e 67 20 74 6f | bors.dynamically.by.listening.to |
| 68bc0 | 20 74 68 65 20 62 72 6f 61 64 63 61 73 74 20 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 68 65 6c 6c | .the.broadcast.or.multicast.hell |
| 68be0 | 6f 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 42 65 63 61 75 73 | o.packets.on.the.network..Becaus |
| 68c00 | 65 20 61 6e 20 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f | e.an.NBMA.network.does.not.suppo |
| 68c20 | 72 74 20 62 72 6f 61 64 63 61 73 74 20 28 6f 72 20 6d 75 6c 74 69 63 61 73 74 29 2c 20 74 68 65 | rt.broadcast.(or.multicast),.the |
| 68c40 | 20 64 65 76 69 63 65 20 63 61 6e 6e 6f 74 20 64 69 73 63 6f 76 65 72 20 69 74 73 20 6e 65 69 67 | .device.cannot.discover.its.neig |
| 68c60 | 68 62 6f 72 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 2c 20 73 6f 20 79 6f 75 20 6d 75 73 74 20 63 | hbors.dynamically,.so.you.must.c |
| 68c80 | 6f 6e 66 69 67 75 72 65 20 61 6c 6c 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 74 61 74 69 | onfigure.all.the.neighbors.stati |
| 68ca0 | 63 61 6c 6c 79 2e 00 4f 53 50 46 76 32 20 28 49 50 76 34 29 00 4f 53 50 46 76 33 20 28 49 50 76 | cally..OSPFv2.(IPv4).OSPFv3.(IPv |
| 68cc0 | 36 29 00 4f 54 50 2d 6b 65 79 20 67 65 6e 65 72 61 74 69 6f 6e 00 4f 66 66 6c 6f 61 64 69 6e 67 | 6).OTP-key.generation.Offloading |
| 68ce0 | 00 4f 66 66 73 65 74 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 73 75 62 6e 65 74 20 69 | .Offset.of.the.client's.subnet.i |
| 68d00 | 6e 20 73 65 63 6f 6e 64 73 20 66 72 6f 6d 20 43 6f 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 | n.seconds.from.Coordinated.Unive |
| 68d20 | 72 73 61 6c 20 54 69 6d 65 20 28 55 54 43 29 00 4f 66 74 65 6e 20 77 65 20 6e 65 65 64 20 74 6f | rsal.Time.(UTC).Often.we.need.to |
| 68d40 | 20 65 6d 62 65 64 20 6f 6e 65 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 6f | .embed.one.policy.into.another.o |
| 68d60 | 6e 65 2e 20 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 64 6f 20 73 6f 20 6f 6e 20 63 | ne..It.is.possible.to.do.so.on.c |
| 68d80 | 6c 61 73 73 66 75 6c 20 70 6f 6c 69 63 69 65 73 2c 20 62 79 20 61 74 74 61 63 68 69 6e 67 20 61 | lassful.policies,.by.attaching.a |
| 68da0 | 20 6e 65 77 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 2e 20 46 6f 72 20 69 6e | .new.policy.into.a.class..For.in |
| 68dc0 | 73 74 61 6e 63 65 2c 20 79 6f 75 20 6d 69 67 68 74 20 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 | stance,.you.might.want.to.apply. |
| 68de0 | 64 69 66 66 65 72 65 6e 74 20 70 6f 6c 69 63 69 65 73 20 74 6f 20 74 68 65 20 64 69 66 66 65 72 | different.policies.to.the.differ |
| 68e00 | 65 6e 74 20 63 6c 61 73 73 65 73 20 6f 66 20 61 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c | ent.classes.of.a.Round-Robin.pol |
| 68e20 | 69 63 79 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 4f 66 74 65 6e 20 79 | icy.you.have.configured..Often.y |
| 68e40 | 6f 75 20 77 69 6c 6c 20 61 6c 73 6f 20 68 61 76 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 | ou.will.also.have.to.configure.y |
| 68e60 | 6f 75 72 20 2a 64 65 66 61 75 6c 74 2a 20 74 72 61 66 66 69 63 20 69 6e 20 74 68 65 20 73 61 6d | our.*default*.traffic.in.the.sam |
| 68e80 | 65 20 77 61 79 20 79 6f 75 20 64 6f 20 77 69 74 68 20 61 20 63 6c 61 73 73 2e 20 2a 44 65 66 61 | e.way.you.do.with.a.class..*Defa |
| 68ea0 | 75 6c 74 2a 20 63 61 6e 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 20 63 6c 61 73 73 20 61 | ult*.can.be.considered.a.class.a |
| 68ec0 | 73 20 69 74 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 74 68 61 74 2e 20 49 74 20 63 6f 6e 74 61 | s.it.behaves.like.that..It.conta |
| 68ee0 | 69 6e 73 20 61 6e 79 20 74 72 61 66 66 69 63 20 74 68 61 74 20 64 69 64 20 6e 6f 74 20 6d 61 74 | ins.any.traffic.that.did.not.mat |
| 68f00 | 63 68 20 61 6e 79 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 63 6c 61 73 73 65 73 2c 20 73 | ch.any.of.the.defined.classes,.s |
| 68f20 | 6f 20 69 74 20 69 73 20 6c 69 6b 65 20 61 6e 20 6f 70 65 6e 20 63 6c 61 73 73 2c 20 61 20 63 6c | o.it.is.like.an.open.class,.a.cl |
| 68f40 | 61 73 73 20 77 69 74 68 6f 75 74 20 6d 61 74 63 68 69 6e 67 20 66 69 6c 74 65 72 73 2e 00 4f 6e | ass.without.matching.filters..On |
| 68f60 | 20 61 63 74 69 76 65 20 72 6f 75 74 65 72 20 72 75 6e 3a 00 4f 6e 20 62 6f 74 68 20 73 69 64 65 | .active.router.run:.On.both.side |
| 68f80 | 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 73 65 6c 66 2d 73 | s,.you.need.to.generate.a.self-s |
| 68fa0 | 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 70 72 65 66 65 72 72 61 62 6c 79 20 75 | igned.certificate,.preferrably.u |
| 68fc0 | 73 69 6e 67 20 74 68 65 20 22 65 63 22 20 28 65 6c 6c 69 70 74 69 63 20 63 75 72 76 65 29 20 74 | sing.the."ec".(elliptic.curve).t |
| 68fe0 | 79 70 65 2e 20 59 6f 75 20 63 61 6e 20 67 65 6e 65 72 61 74 65 20 74 68 65 6d 20 62 79 20 65 78 | ype..You.can.generate.them.by.ex |
| 69000 | 65 63 75 74 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 60 60 72 75 6e 20 67 65 6e 65 72 61 74 65 20 70 | ecuting.command.``run.generate.p |
| 69020 | 6b 69 20 63 65 72 74 69 66 69 63 61 74 65 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 69 6e 73 74 61 | ki.certificate.self-signed.insta |
| 69040 | 6c 6c 20 3c 6e 61 6d 65 3e 60 60 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ll.<name>``.in.the.configuration |
| 69060 | 20 6d 6f 64 65 2e 20 4f 6e 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 63 6f 6d 70 6c | .mode..Once.the.command.is.compl |
| 69080 | 65 74 65 2c 20 69 74 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 | ete,.it.will.add.the.certificate |
| 690a0 | 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 73 73 69 6f 6e 2c 20 74 | .to.the.configuration.session,.t |
| 690c0 | 6f 20 74 68 65 20 60 60 70 6b 69 60 60 20 73 75 62 74 72 65 65 2e 20 59 6f 75 20 63 61 6e 20 74 | o.the.``pki``.subtree..You.can.t |
| 690e0 | 68 65 6e 20 72 65 76 69 65 77 20 74 68 65 20 70 72 6f 70 6f 73 65 64 20 63 68 61 6e 67 65 73 20 | hen.review.the.proposed.changes. |
| 69100 | 61 6e 64 20 63 6f 6d 6d 69 74 20 74 68 65 6d 2e 00 4f 6e 20 6c 6f 77 20 72 61 74 65 73 20 28 62 | and.commit.them..On.low.rates.(b |
| 69120 | 65 6c 6f 77 20 34 30 4d 62 69 74 29 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 74 75 6e | elow.40Mbit).you.may.want.to.tun |
| 69140 | 65 20 60 71 75 61 6e 74 75 6d 60 20 64 6f 77 6e 20 74 6f 20 73 6f 6d 65 74 68 69 6e 67 20 6c 69 | e.`quantum`.down.to.something.li |
| 69160 | 6b 65 20 33 30 30 20 62 79 74 65 73 2e 00 4f 6e 20 6d 6f 73 74 20 73 63 65 6e 61 72 69 6f 73 2c | ke.300.bytes..On.most.scenarios, |
| 69180 | 20 74 68 65 72 65 27 73 20 6e 6f 20 6e 65 65 64 20 74 6f 20 63 68 61 6e 67 65 20 73 70 65 63 69 | .there's.no.need.to.change.speci |
| 691a0 | 66 69 63 20 70 61 72 61 6d 65 74 65 72 73 2c 20 61 6e 64 20 75 73 69 6e 67 20 64 65 66 61 75 6c | fic.parameters,.and.using.defaul |
| 691c0 | 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 65 6e 6f 75 67 68 2e 20 42 75 74 20 74 | t.configuration.is.enough..But.t |
| 691e0 | 68 65 72 65 20 61 72 65 20 63 61 73 65 73 20 77 65 72 65 20 65 78 74 72 61 20 63 6f 6e 66 69 67 | here.are.cases.were.extra.config |
| 69200 | 75 72 61 74 69 6f 6e 20 69 73 20 6e 65 65 64 65 64 2e 00 4f 6e 20 73 74 61 6e 64 62 79 20 72 6f | uration.is.needed..On.standby.ro |
| 69220 | 75 74 65 72 20 72 75 6e 3a 00 4f 6e 20 73 79 73 74 65 6d 73 20 77 69 74 68 20 6d 75 6c 74 69 70 | uter.run:.On.systems.with.multip |
| 69240 | 6c 65 20 72 65 64 75 6e 64 61 6e 74 20 75 70 6c 69 6e 6b 73 20 61 6e 64 20 72 6f 75 74 65 73 2c | le.redundant.uplinks.and.routes, |
| 69260 | 20 69 74 27 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 74 6f 20 75 73 65 20 61 20 64 65 64 69 63 | .it's.a.good.idea.to.use.a.dedic |
| 69280 | 61 74 65 64 20 61 64 64 72 65 73 73 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 | ated.address.for.management.and. |
| 692a0 | 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 48 6f 77 65 76 | dynamic.routing.protocols..Howev |
| 692c0 | 65 72 2c 20 61 73 73 69 67 6e 69 6e 67 20 74 68 61 74 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 | er,.assigning.that.address.to.a. |
| 692e0 | 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 69 73 20 72 69 73 6b 79 3a 20 69 66 20 74 68 61 74 20 | physical.link.is.risky:.if.that. |
| 69300 | 6c 69 6e 6b 20 67 6f 65 73 20 64 6f 77 6e 2c 20 74 68 61 74 20 61 64 64 72 65 73 73 20 77 69 6c | link.goes.down,.that.address.wil |
| 69320 | 6c 20 62 65 63 6f 6d 65 20 69 6e 61 63 63 65 73 73 69 62 6c 65 2e 20 41 20 63 6f 6d 6d 6f 6e 20 | l.become.inaccessible..A.common. |
| 69340 | 73 6f 6c 75 74 69 6f 6e 20 69 73 20 74 6f 20 61 73 73 69 67 6e 20 74 68 65 20 6d 61 6e 61 67 65 | solution.is.to.assign.the.manage |
| 69360 | 6d 65 6e 74 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 61 20 | ment.address.to.a.loopback.or.a. |
| 69380 | 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 64 76 65 72 74 69 73 65 20 74 68 | dummy.interface.and.advertise.th |
| 693a0 | 61 74 20 61 64 64 72 65 73 73 20 76 69 61 20 61 6c 6c 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b | at.address.via.all.physical.link |
| 693c0 | 73 2c 20 73 6f 20 74 68 61 74 20 69 74 27 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 | s,.so.that.it's.reachable.throug |
| 693e0 | 68 20 61 6e 79 20 6f 66 20 74 68 65 6d 2e 20 53 69 6e 63 65 20 69 6e 20 4c 69 6e 75 78 2d 62 61 | h.any.of.them..Since.in.Linux-ba |
| 69400 | 73 65 64 20 73 79 73 74 65 6d 73 2c 20 74 68 65 72 65 20 63 61 6e 20 62 65 20 6f 6e 6c 79 20 6f | sed.systems,.there.can.be.only.o |
| 69420 | 6e 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2c 20 69 74 27 73 20 62 65 74 74 | ne.loopback.interface,.it's.bett |
| 69440 | 65 72 20 74 6f 20 75 73 65 20 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 | er.to.use.a.dummy.interface.for. |
| 69460 | 74 68 61 74 20 70 75 72 70 6f 73 65 2c 20 73 69 6e 63 65 20 74 68 65 79 20 63 61 6e 20 62 65 20 | that.purpose,.since.they.can.be. |
| 69480 | 61 64 64 65 64 2c 20 72 65 6d 6f 76 65 64 2c 20 61 6e 64 20 74 61 6b 65 6e 20 75 70 20 61 6e 64 | added,.removed,.and.taken.up.and |
| 694a0 | 20 64 6f 77 6e 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 2e 00 4f 6e 20 74 68 65 20 4c 45 46 54 | .down.independently..On.the.LEFT |
| 694c0 | 20 28 73 74 61 74 69 63 20 61 64 64 72 65 73 73 29 3a 00 4f 6e 20 74 68 65 20 4c 45 46 54 3a 00 | .(static.address):.On.the.LEFT:. |
| 694e0 | 4f 6e 20 74 68 65 20 52 49 47 48 54 20 28 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 29 3a 00 | On.the.RIGHT.(dynamic.address):. |
| 69500 | 4f 6e 20 74 68 65 20 52 49 47 48 54 2c 20 73 65 74 75 70 20 62 79 20 61 6e 61 6c 6f 67 79 20 61 | On.the.RIGHT,.setup.by.analogy.a |
| 69520 | 6e 64 20 73 77 61 70 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 | nd.swap.local.and.remote.address |
| 69540 | 65 73 2e 00 4f 6e 20 74 68 65 20 52 49 47 48 54 3a 00 4f 6e 20 74 68 65 20 61 63 74 69 76 65 20 | es..On.the.RIGHT:.On.the.active. |
| 69560 | 72 6f 75 74 65 72 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 68 61 76 65 20 69 6e 66 6f 72 6d 61 74 | router,.you.should.have.informat |
| 69580 | 69 6f 6e 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2d 63 61 63 68 65 20 6f 66 20 63 6f 6e | ion.in.the.internal-cache.of.con |
| 695a0 | 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 20 54 68 65 20 73 61 6d 65 20 63 75 72 72 65 6e 74 20 61 63 | ntrack-sync..The.same.current.ac |
| 695c0 | 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6e 75 6d 62 65 72 20 73 68 6f 75 6c 64 20 62 | tive.connections.number.should.b |
| 695e0 | 65 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 65 78 74 65 72 6e 61 6c 2d 63 61 63 68 65 20 6f 66 | e.shown.in.the.external-cache.of |
| 69600 | 20 74 68 65 20 73 74 61 6e 64 62 79 20 72 6f 75 74 65 72 00 4f 6e 20 74 68 65 20 69 6e 69 74 69 | .the.standby.router.On.the.initi |
| 69620 | 61 74 6f 72 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 72 65 6d 6f 74 65 2d | ator,.we.need.to.set.the.remote- |
| 69640 | 69 64 20 6f 70 74 69 6f 6e 20 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 69 64 65 6e 74 69 66 | id.option.so.that.it.can.identif |
| 69660 | 79 20 49 4b 45 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 65 20 72 65 73 70 6f 6e 64 65 72 | y.IKE.traffic.from.the.responder |
| 69680 | 20 63 6f 72 72 65 63 74 6c 79 2e 00 4f 6e 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 2c 20 77 65 | .correctly..On.the.initiator,.we |
| 696a0 | 20 73 65 74 20 74 68 65 20 70 65 65 72 20 61 64 64 72 65 73 73 20 74 6f 20 69 74 73 20 70 75 62 | .set.the.peer.address.to.its.pub |
| 696c0 | 6c 69 63 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 6f 6e 20 74 68 65 20 72 65 73 70 6f 6e 64 65 | lic.address,.but.on.the.responde |
| 696e0 | 72 20 77 65 20 6f 6e 6c 79 20 73 65 74 20 74 68 65 20 69 64 2e 00 4f 6e 20 74 68 65 20 6c 61 73 | r.we.only.set.the.id..On.the.las |
| 69700 | 74 20 68 6f 70 20 72 6f 75 74 65 72 20 69 66 20 69 74 20 69 73 20 64 65 73 69 72 65 64 20 74 6f | t.hop.router.if.it.is.desired.to |
| 69720 | 20 6e 6f 74 20 73 77 69 74 63 68 20 6f 76 65 72 20 74 6f 20 74 68 65 20 53 50 54 20 74 72 65 65 | .not.switch.over.to.the.SPT.tree |
| 69740 | 20 63 6f 6e 66 69 67 75 72 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 4f 6e 20 74 68 65 20 | .configure.this.command..On.the. |
| 69760 | 72 65 73 70 6f 6e 64 65 72 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 6c 6f | responder,.we.need.to.set.the.lo |
| 69780 | 63 61 6c 20 69 64 20 73 6f 20 74 68 61 74 20 69 6e 69 74 69 61 74 6f 72 20 63 61 6e 20 6b 6e 6f | cal.id.so.that.initiator.can.kno |
| 697a0 | 77 20 77 68 6f 27 73 20 74 61 6c 6b 69 6e 67 20 74 6f 20 69 74 20 66 6f 72 20 74 68 65 20 70 6f | w.who's.talking.to.it.for.the.po |
| 697c0 | 69 6e 74 20 23 33 20 74 6f 20 77 6f 72 6b 2e 00 4f 6e 63 65 20 61 20 63 6c 61 73 73 20 68 61 73 | int.#3.to.work..Once.a.class.has |
| 697e0 | 20 61 20 66 69 6c 74 65 72 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 61 | .a.filter.configured,.you.will.a |
| 69800 | 6c 73 6f 20 68 61 76 65 20 74 6f 20 64 65 66 69 6e 65 20 77 68 61 74 20 79 6f 75 20 77 61 6e 74 | lso.have.to.define.what.you.want |
| 69820 | 20 74 6f 20 64 6f 20 77 69 74 68 20 74 68 65 20 74 72 61 66 66 69 63 20 6f 66 20 74 68 61 74 20 | .to.do.with.the.traffic.of.that. |
| 69840 | 63 6c 61 73 73 2c 20 77 68 61 74 20 73 70 65 63 69 66 69 63 20 54 72 61 66 66 69 63 2d 43 6f 6e | class,.what.specific.Traffic-Con |
| 69860 | 74 72 6f 6c 20 74 72 65 61 74 6d 65 6e 74 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 67 69 76 65 20 | trol.treatment.you.want.to.give. |
| 69880 | 69 74 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 64 69 66 66 65 72 65 6e 74 20 70 6f 73 73 | it..You.will.have.different.poss |
| 698a0 | 69 62 69 6c 69 74 69 65 73 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 20 54 72 61 66 66 | ibilities.depending.on.the.Traff |
| 698c0 | 69 63 20 50 6f 6c 69 63 79 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 2e 00 4f | ic.Policy.you.are.configuring..O |
| 698e0 | 6e 63 65 20 61 20 6e 65 69 67 68 62 6f 72 20 68 61 73 20 62 65 65 6e 20 66 6f 75 6e 64 2c 20 74 | nce.a.neighbor.has.been.found,.t |
| 69900 | 68 65 20 65 6e 74 72 79 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 62 65 20 76 61 6c | he.entry.is.considered.to.be.val |
| 69920 | 69 64 20 66 6f 72 20 61 74 20 6c 65 61 73 74 20 66 6f 72 20 74 68 69 73 20 73 70 65 63 69 66 69 | id.for.at.least.for.this.specifi |
| 69940 | 63 20 74 69 6d 65 2e 20 41 6e 20 65 6e 74 72 79 27 73 20 76 61 6c 69 64 69 74 79 20 77 69 6c 6c | c.time..An.entry's.validity.will |
| 69960 | 20 62 65 20 65 78 74 65 6e 64 65 64 20 69 66 20 69 74 20 72 65 63 65 69 76 65 73 20 70 6f 73 69 | .be.extended.if.it.receives.posi |
| 69980 | 74 69 76 65 20 66 65 65 64 62 61 63 6b 20 66 72 6f 6d 20 68 69 67 68 65 72 20 6c 65 76 65 6c 20 | tive.feedback.from.higher.level. |
| 699a0 | 70 72 6f 74 6f 63 6f 6c 73 2e 00 4f 6e 63 65 20 61 20 72 6f 75 74 65 20 69 73 20 61 73 73 65 73 | protocols..Once.a.route.is.asses |
| 699c0 | 73 65 64 20 61 20 70 65 6e 61 6c 74 79 2c 20 74 68 65 20 70 65 6e 61 6c 74 79 20 69 73 20 64 65 | sed.a.penalty,.the.penalty.is.de |
| 699e0 | 63 72 65 61 73 65 64 20 62 79 20 68 61 6c 66 20 65 61 63 68 20 74 69 6d 65 20 61 20 70 72 65 64 | creased.by.half.each.time.a.pred |
| 69a00 | 65 66 69 6e 65 64 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 65 6c 61 70 73 65 73 20 28 68 | efined.amount.of.time.elapses.(h |
| 69a20 | 61 6c 66 2d 6c 69 66 65 2d 74 69 6d 65 29 2e 20 57 68 65 6e 20 74 68 65 20 61 63 63 75 6d 75 6c | alf-life-time)..When.the.accumul |
| 69a40 | 61 74 65 64 20 70 65 6e 61 6c 74 69 65 73 20 66 61 6c 6c 20 62 65 6c 6f 77 20 61 20 70 72 65 64 | ated.penalties.fall.below.a.pred |
| 69a60 | 65 66 69 6e 65 64 20 74 68 72 65 73 68 6f 6c 64 20 28 72 65 75 73 65 2d 76 61 6c 75 65 29 2c 20 | efined.threshold.(reuse-value),. |
| 69a80 | 74 68 65 20 72 6f 75 74 65 20 69 73 20 75 6e 73 75 70 70 72 65 73 73 65 64 20 61 6e 64 20 61 64 | the.route.is.unsuppressed.and.ad |
| 69aa0 | 64 65 64 20 62 61 63 6b 20 69 6e 74 6f 20 74 68 65 20 42 47 50 20 72 6f 75 74 69 6e 67 20 74 61 | ded.back.into.the.BGP.routing.ta |
| 69ac0 | 62 6c 65 2e 00 4f 6e 63 65 20 61 20 74 72 61 66 66 69 63 2d 70 6f 6c 69 63 79 20 69 73 20 63 72 | ble..Once.a.traffic-policy.is.cr |
| 69ae0 | 65 61 74 65 64 2c 20 79 6f 75 20 63 61 6e 20 61 70 70 6c 79 20 69 74 20 74 6f 20 61 6e 20 69 6e | eated,.you.can.apply.it.to.an.in |
| 69b00 | 74 65 72 66 61 63 65 3a 00 4f 6e 63 65 20 61 20 75 73 65 72 20 68 61 73 20 32 46 41 2f 4f 54 50 | terface:.Once.a.user.has.2FA/OTP |
| 69b20 | 20 63 6f 6e 66 69 67 75 72 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 69 72 20 61 63 63 6f 75 6e | .configured.against.their.accoun |
| 69b40 | 74 2c 20 74 68 65 79 20 6d 75 73 74 20 6c 6f 67 69 6e 20 75 73 69 6e 67 20 74 68 65 69 72 20 70 | t,.they.must.login.using.their.p |
| 69b60 | 61 73 73 77 6f 72 64 20 77 69 74 68 20 74 68 65 20 4f 54 50 20 63 6f 64 65 20 61 70 70 65 6e 64 | assword.with.the.OTP.code.append |
| 69b80 | 65 64 20 74 6f 20 69 74 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 49 66 20 74 68 65 20 75 73 | ed.to.it..For.example:.If.the.us |
| 69ba0 | 65 72 73 20 70 61 73 73 77 6f 72 64 20 69 73 20 76 79 6f 73 72 6f 63 6b 73 20 61 6e 64 20 74 68 | ers.password.is.vyosrocks.and.th |
| 69bc0 | 65 20 4f 54 50 20 63 6f 64 65 20 69 73 20 38 31 37 34 35 34 20 74 68 65 6e 20 74 68 65 79 20 77 | e.OTP.code.is.817454.then.they.w |
| 69be0 | 6f 75 6c 64 20 65 6e 74 65 72 20 74 68 65 69 72 20 70 61 73 73 77 6f 72 64 20 61 73 20 76 79 6f | ould.enter.their.password.as.vyo |
| 69c00 | 73 72 6f 63 6b 73 38 31 37 34 35 34 00 4f 6e 63 65 20 63 72 65 61 74 65 64 20 69 6e 20 74 68 65 | srocks817454.Once.created.in.the |
| 69c20 | 20 73 79 73 74 65 6d 2c 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 | .system,.Pseudo-Ethernet.interfa |
| 69c40 | 63 65 73 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 65 64 20 69 6e 20 74 68 65 20 65 78 61 | ces.can.be.referenced.in.the.exa |
| 69c60 | 63 74 20 73 61 6d 65 20 77 61 79 20 61 73 20 6f 74 68 65 72 20 45 74 68 65 72 6e 65 74 20 69 6e | ct.same.way.as.other.Ethernet.in |
| 69c80 | 74 65 72 66 61 63 65 73 2e 20 4e 6f 74 65 73 20 61 62 6f 75 74 20 75 73 69 6e 67 20 50 73 65 75 | terfaces..Notes.about.using.Pseu |
| 69ca0 | 64 6f 2d 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 3a 00 4f 6e 63 65 20 64 79 | do-.Ethernet.interfaces:.Once.dy |
| 69cc0 | 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 61 72 65 20 64 65 66 69 6e 65 | namic.firewall.groups.are.define |
| 69ce0 | 64 2c 20 74 68 65 79 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 69 6e 20 66 69 72 65 77 61 | d,.they.should.be.used.in.firewa |
| 69d00 | 6c 6c 20 72 75 6c 65 73 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 64 79 6e 61 6d 69 63 61 6c 6c 79 | ll.rules.in.order.to.dynamically |
| 69d20 | 20 61 64 64 20 65 6c 65 6d 65 6e 74 73 20 74 6f 20 69 74 2e 00 4f 6e 63 65 20 66 6c 6f 77 20 61 | .add.elements.to.it..Once.flow.a |
| 69d40 | 63 63 6f 75 6e 74 69 6e 67 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 20 69 6e | ccounting.is.configured.on.an.in |
| 69d60 | 74 65 72 66 61 63 65 73 20 69 74 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 | terfaces.it.provides.the.ability |
| 69d80 | 20 74 6f 20 64 69 73 70 6c 61 79 20 63 61 70 74 75 72 65 64 20 6e 65 74 77 6f 72 6b 20 74 72 61 | .to.display.captured.network.tra |
| 69da0 | 66 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 63 6f 6e 66 69 67 75 | ffic.information.for.all.configu |
| 69dc0 | 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4f 6e 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | red.interfaces..Once.the.command |
| 69de0 | 20 69 73 20 63 6f 6d 70 6c 65 74 65 64 2c 20 69 74 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 63 | .is.completed,.it.will.add.the.c |
| 69e00 | 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | ertificate.to.the.configuration. |
| 69e20 | 73 65 73 73 69 6f 6e 2c 20 74 6f 20 74 68 65 20 70 6b 69 20 73 75 62 74 72 65 65 2e 20 59 6f 75 | session,.to.the.pki.subtree..You |
| 69e40 | 20 63 61 6e 20 74 68 65 6e 20 72 65 76 69 65 77 20 74 68 65 20 70 72 6f 70 6f 73 65 64 20 63 68 | .can.then.review.the.proposed.ch |
| 69e60 | 61 6e 67 65 73 20 61 6e 64 20 63 6f 6d 6d 69 74 20 74 68 65 6d 2e 00 4f 6e 63 65 20 74 68 65 20 | anges.and.commit.them..Once.the. |
| 69e80 | 66 69 72 73 74 20 70 61 63 6b 65 74 20 6f 66 20 74 68 65 20 66 6c 6f 77 20 73 75 63 63 65 73 73 | first.packet.of.the.flow.success |
| 69ea0 | 66 75 6c 6c 79 20 67 6f 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 49 50 20 66 6f 72 77 61 72 | fully.goes.through.the.IP.forwar |
| 69ec0 | 64 69 6e 67 20 70 61 74 68 20 28 62 6c 61 63 6b 20 63 69 72 63 6c 65 73 20 70 61 74 68 29 2c 20 | ding.path.(black.circles.path),. |
| 69ee0 | 66 72 6f 6d 20 74 68 65 20 73 65 63 6f 6e 64 20 70 61 63 6b 65 74 20 6f 6e 2c 20 79 6f 75 20 6d | from.the.second.packet.on,.you.m |
| 69f00 | 69 67 68 74 20 64 65 63 69 64 65 20 74 6f 20 6f 66 66 6c 6f 61 64 20 74 68 65 20 66 6c 6f 77 20 | ight.decide.to.offload.the.flow. |
| 69f20 | 74 6f 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 74 68 72 6f 75 67 68 20 79 6f 75 72 20 72 75 | to.the.flowtable.through.your.ru |
| 69f40 | 6c 65 73 65 74 2e 20 54 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 69 6e 66 72 61 73 74 72 75 63 74 | leset..The.flowtable.infrastruct |
| 69f60 | 75 72 65 20 70 72 6f 76 69 64 65 73 20 61 20 72 75 6c 65 20 61 63 74 69 6f 6e 20 74 68 61 74 20 | ure.provides.a.rule.action.that. |
| 69f80 | 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 73 70 65 63 69 66 79 20 77 68 65 6e 20 74 6f 20 61 64 | allows.you.to.specify.when.to.ad |
| 69fa0 | 64 20 61 20 66 6c 6f 77 20 74 6f 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 28 4f 6e 20 66 6f | d.a.flow.to.the.flowtable.(On.fo |
| 69fc0 | 72 77 61 72 64 20 66 69 6c 74 65 72 69 6e 67 2c 20 72 65 64 20 63 69 72 63 6c 65 20 6e 75 6d 62 | rward.filtering,.red.circle.numb |
| 69fe0 | 65 72 20 36 29 00 4f 6e 63 65 20 74 68 65 20 6c 6f 63 61 6c 20 74 75 6e 6e 65 6c 20 65 6e 64 70 | er.6).Once.the.local.tunnel.endp |
| 6a000 | 6f 69 6e 74 20 60 60 73 65 74 20 73 65 72 76 69 63 65 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 | oint.``set.service.pppoe-server. |
| 6a020 | 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 27 31 30 2e 31 2e 31 2e 32 27 60 60 20 68 61 73 | gateway-address.'10.1.1.2'``.has |
| 6a040 | 20 62 65 65 6e 20 64 65 66 69 6e 65 64 2c 20 74 68 65 20 63 6c 69 65 6e 74 20 49 50 20 70 6f 6f | .been.defined,.the.client.IP.poo |
| 6a060 | 6c 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 64 65 66 69 6e 65 64 20 61 73 20 61 20 72 61 6e | l.can.be.either.defined.as.a.ran |
| 6a080 | 67 65 20 6f 72 20 61 73 20 73 75 62 6e 65 74 20 75 73 69 6e 67 20 43 49 44 52 20 6e 6f 74 61 74 | ge.or.as.subnet.using.CIDR.notat |
| 6a0a0 | 69 6f 6e 2e 20 49 66 20 74 68 65 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 20 69 73 20 75 73 65 | ion..If.the.CIDR.notation.is.use |
| 6a0c0 | 64 2c 20 6d 75 6c 74 69 70 6c 65 20 73 75 62 6e 65 74 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 | d,.multiple.subnets.can.be.setup |
| 6a0e0 | 20 77 68 69 63 68 20 61 72 65 20 75 73 65 64 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 2e 00 4f 6e | .which.are.used.sequentially..On |
| 6a100 | 63 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 61 72 65 20 73 65 74 20 66 6f | ce.the.matching.rules.are.set.fo |
| 6a120 | 72 20 61 20 63 6c 61 73 73 2c 20 79 6f 75 20 63 61 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 | r.a.class,.you.can.start.configu |
| 6a140 | 72 69 6e 67 20 68 6f 77 20 79 6f 75 20 77 61 6e 74 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 | ring.how.you.want.matching.traff |
| 6a160 | 69 63 20 74 6f 20 62 65 68 61 76 65 2e 00 4f 6e 63 65 20 74 68 65 20 75 73 65 72 20 69 73 20 63 | ic.to.behave..Once.the.user.is.c |
| 6a180 | 6f 6e 6e 65 63 74 65 64 2c 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 69 73 20 75 73 | onnected,.the.user.session.is.us |
| 6a1a0 | 69 6e 67 20 74 68 65 20 73 65 74 20 6c 69 6d 69 74 73 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 | ing.the.set.limits.and.can.be.di |
| 6a1c0 | 73 70 6c 61 79 65 64 20 76 69 61 20 27 73 68 6f 77 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 73 | splayed.via.'show.pppoe-server.s |
| 6a1e0 | 65 73 73 69 6f 6e 73 27 2e 00 4f 6e 63 65 20 74 68 65 20 75 73 65 72 20 69 73 20 63 6f 6e 6e 65 | essions'..Once.the.user.is.conne |
| 6a200 | 63 74 65 64 2c 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 69 73 20 75 73 69 6e 67 20 | cted,.the.user.session.is.using. |
| 6a220 | 74 68 65 20 73 65 74 20 6c 69 6d 69 74 73 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 | the.set.limits.and.can.be.displa |
| 6a240 | 79 65 64 20 76 69 61 20 60 60 73 68 6f 77 20 70 70 70 6f 65 2d 73 65 72 76 65 72 20 73 65 73 73 | yed.via.``show.pppoe-server.sess |
| 6a260 | 69 6f 6e 73 60 60 2e 00 4f 6e 63 65 20 79 6f 75 20 63 6f 6d 6d 69 74 20 74 68 65 20 61 62 6f 76 | ions``..Once.you.commit.the.abov |
| 6a280 | 65 20 63 68 61 6e 67 65 73 20 79 6f 75 20 63 61 6e 20 63 72 65 61 74 65 20 61 20 63 6f 6e 66 69 | e.changes.you.can.create.a.confi |
| 6a2a0 | 67 20 66 69 6c 65 20 69 6e 20 74 68 65 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 6f 63 73 65 72 | g.file.in.the./config/auth/ocser |
| 6a2c0 | 76 2f 63 6f 6e 66 69 67 2d 70 65 72 2d 75 73 65 72 20 64 69 72 65 63 74 6f 72 79 20 74 68 61 74 | v/config-per-user.directory.that |
| 6a2e0 | 20 6d 61 74 63 68 65 73 20 61 20 75 73 65 72 6e 61 6d 65 20 6f 66 20 61 20 75 73 65 72 20 79 6f | .matches.a.username.of.a.user.yo |
| 6a300 | 75 20 68 61 76 65 20 63 72 65 61 74 65 64 20 65 2e 67 2e 20 22 74 73 74 22 2e 20 4e 6f 77 20 77 | u.have.created.e.g.."tst"..Now.w |
| 6a320 | 68 65 6e 20 6c 6f 67 67 69 6e 67 20 69 6e 20 77 69 74 68 20 74 68 65 20 22 74 73 74 22 20 75 73 | hen.logging.in.with.the."tst".us |
| 6a340 | 65 72 20 74 68 65 20 63 6f 6e 66 69 67 20 6f 70 74 69 6f 6e 73 20 79 6f 75 20 73 65 74 20 69 6e | er.the.config.options.you.set.in |
| 6a360 | 20 74 68 69 73 20 66 69 6c 65 20 77 69 6c 6c 20 62 65 20 6c 6f 61 64 65 64 2e 00 4f 6e 63 65 20 | .this.file.will.be.loaded..Once. |
| 6a380 | 79 6f 75 20 68 61 76 65 20 61 6e 20 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 20 63 6f 6e 6e | you.have.an.Ethernet.device.conn |
| 6a3a0 | 65 63 74 65 64 2c 20 69 2e 65 2e 20 60 65 74 68 30 60 2c 20 74 68 65 6e 20 79 6f 75 20 63 61 6e | ected,.i.e..`eth0`,.then.you.can |
| 6a3c0 | 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 74 6f 20 6f 70 65 6e 20 74 68 65 20 50 50 50 6f 45 20 | .configure.it.to.open.the.PPPoE. |
| 6a3e0 | 73 65 73 73 69 6f 6e 20 66 6f 72 20 79 6f 75 20 61 6e 64 20 79 6f 75 72 20 44 53 4c 20 54 72 61 | session.for.you.and.your.DSL.Tra |
| 6a400 | 6e 73 63 65 69 76 65 72 20 28 4d 6f 64 65 6d 2f 52 6f 75 74 65 72 29 20 6a 75 73 74 20 61 63 74 | nsceiver.(Modem/Router).just.act |
| 6a420 | 73 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 79 6f 75 72 20 6d 65 73 73 61 67 65 73 20 69 6e 20 | s.to.translate.your.messages.in. |
| 6a440 | 61 20 77 61 79 20 74 68 61 74 20 76 44 53 4c 2f 61 44 53 4c 20 75 6e 64 65 72 73 74 61 6e 64 73 | a.way.that.vDSL/aDSL.understands |
| 6a460 | 2e 00 4f 6e 63 65 20 79 6f 75 20 68 61 76 65 20 73 65 74 75 70 20 79 6f 75 72 20 53 53 54 50 20 | ..Once.you.have.setup.your.SSTP. |
| 6a480 | 73 65 72 76 65 72 20 74 68 65 72 65 20 63 6f 6d 65 73 20 74 68 65 20 74 69 6d 65 20 74 6f 20 64 | server.there.comes.the.time.to.d |
| 6a4a0 | 6f 20 73 6f 6d 65 20 62 61 73 69 63 20 74 65 73 74 69 6e 67 2e 20 54 68 65 20 4c 69 6e 75 78 20 | o.some.basic.testing..The.Linux. |
| 6a4c0 | 63 6c 69 65 6e 74 20 75 73 65 64 20 66 6f 72 20 74 65 73 74 69 6e 67 20 69 73 20 63 61 6c 6c 65 | client.used.for.testing.is.calle |
| 6a4e0 | 64 20 73 73 74 70 63 5f 2e 20 73 73 74 70 63 5f 20 72 65 71 75 69 72 65 73 20 61 20 50 50 50 20 | d.sstpc_..sstpc_.requires.a.PPP. |
| 6a500 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 65 65 72 20 66 69 6c 65 2e 00 4f 6e 63 65 20 79 6f | configuration/peer.file..Once.yo |
| 6a520 | 75 72 20 72 6f 75 74 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 65 6a | ur.routers.are.configured.to.rej |
| 6a540 | 65 63 74 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 2c 20 79 6f 75 20 63 | ect.RPKI-invalid.prefixes,.you.c |
| 6a560 | 61 6e 20 74 65 73 74 20 77 68 65 74 68 65 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | an.test.whether.the.configuratio |
| 6a580 | 6e 20 69 73 20 77 6f 72 6b 69 6e 67 20 63 6f 72 72 65 63 74 6c 79 20 75 73 69 6e 67 20 43 6c 6f | n.is.working.correctly.using.Clo |
| 6a5a0 | 75 64 66 6c 61 72 65 27 73 20 74 65 73 74 5f 20 77 65 62 73 69 74 65 2e 20 4b 65 65 70 20 69 6e | udflare's.test_.website..Keep.in |
| 6a5c0 | 20 6d 69 6e 64 20 74 68 61 74 20 69 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 69 73 20 74 6f 20 | .mind.that.in.order.for.this.to. |
| 6a5e0 | 77 6f 72 6b 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 6e 6f 20 64 65 66 61 75 6c | work,.you.need.to.have.no.defaul |
| 6a600 | 74 20 72 6f 75 74 65 73 20 6f 72 20 61 6e 79 74 68 69 6e 67 20 65 6c 73 65 20 74 68 61 74 20 77 | t.routes.or.anything.else.that.w |
| 6a620 | 6f 75 6c 64 20 73 74 69 6c 6c 20 73 65 6e 64 20 74 72 61 66 66 69 63 20 74 6f 20 52 50 4b 49 2d | ould.still.send.traffic.to.RPKI- |
| 6a640 | 69 6e 76 61 6c 69 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2e 00 4f 6e 63 65 20 79 6f 75 72 20 | invalid.destinations..Once.your. |
| 6a660 | 72 6f 75 74 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 65 6a 65 63 74 | routers.are.configured.to.reject |
| 6a680 | 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 20 70 72 65 66 69 78 65 73 2c 20 79 6f 75 20 63 61 6e 20 | .RPKI-invalid.prefixes,.you.can. |
| 6a6a0 | 74 65 73 74 20 77 68 65 74 68 65 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 | test.whether.the.configuration.i |
| 6a6c0 | 73 20 77 6f 72 6b 69 6e 67 20 63 6f 72 72 65 63 74 6c 79 20 75 73 69 6e 67 20 74 68 65 20 60 52 | s.working.correctly.using.the.`R |
| 6a6e0 | 49 50 45 20 4c 61 62 73 20 52 50 4b 49 20 54 65 73 74 60 5f 20 65 78 70 65 72 69 6d 65 6e 74 61 | IPE.Labs.RPKI.Test`_.experimenta |
| 6a700 | 6c 20 74 6f 6f 6c 2e 00 4f 6e 65 20 54 79 70 65 2d 33 20 73 75 6d 6d 61 72 79 2d 4c 53 41 20 77 | l.tool..One.Type-3.summary-LSA.w |
| 6a720 | 69 74 68 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 20 3c 45 2e 46 2e 47 2e 48 2f 4d 3e 20 69 73 20 | ith.routing.info.<E.F.G.H/M>.is. |
| 6a740 | 61 6e 6e 6f 75 6e 63 65 64 20 69 6e 74 6f 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 69 66 20 | announced.into.backbone.area.if. |
| 6a760 | 64 65 66 69 6e 65 64 20 61 72 65 61 20 63 6f 6e 74 61 69 6e 73 20 61 74 20 6c 65 61 73 74 20 6f | defined.area.contains.at.least.o |
| 6a780 | 6e 65 20 69 6e 74 72 61 2d 61 72 65 61 20 6e 65 74 77 6f 72 6b 20 28 69 2e 65 2e 20 64 65 73 63 | ne.intra-area.network.(i.e..desc |
| 6a7a0 | 72 69 62 65 64 20 77 69 74 68 20 72 6f 75 74 65 72 2d 4c 53 41 20 6f 72 20 6e 65 74 77 6f 72 6b | ribed.with.router-LSA.or.network |
| 6a7c0 | 2d 4c 53 41 29 20 66 72 6f 6d 20 72 61 6e 67 65 20 3c 41 2e 42 2e 43 2e 44 2f 4d 3e 2e 20 54 68 | -LSA).from.range.<A.B.C.D/M>..Th |
| 6a7e0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e | is.command.makes.sense.in.ABR.on |
| 6a800 | 6c 79 2e 00 4f 6e 65 20 69 6d 70 6c 69 63 69 74 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 65 78 69 | ly..One.implicit.environment.exi |
| 6a820 | 73 74 73 2e 00 4f 6e 65 20 6f 66 20 74 68 65 20 69 6d 70 6f 72 74 61 6e 74 20 66 65 61 74 75 72 | sts..One.of.the.important.featur |
| 6a840 | 65 73 20 62 75 69 6c 74 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 20 4e 65 74 66 69 6c 74 65 72 | es.built.on.top.of.the.Netfilter |
| 6a860 | 20 66 72 61 6d 65 77 6f 72 6b 20 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e | .framework.is.connection.trackin |
| 6a880 | 67 2e 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 61 6c 6c 6f 77 73 20 74 68 | g..Connection.tracking.allows.th |
| 6a8a0 | 65 20 6b 65 72 6e 65 6c 20 74 6f 20 6b 65 65 70 20 74 72 61 63 6b 20 6f 66 20 61 6c 6c 20 6c 6f | e.kernel.to.keep.track.of.all.lo |
| 6a8c0 | 67 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 72 20 73 65 73 | gical.network.connections.or.ses |
| 6a8e0 | 73 69 6f 6e 73 2c 20 61 6e 64 20 74 68 65 72 65 62 79 20 72 65 6c 61 74 65 20 61 6c 6c 20 6f 66 | sions,.and.thereby.relate.all.of |
| 6a900 | 20 74 68 65 20 70 61 63 6b 65 74 73 20 77 68 69 63 68 20 6d 61 79 20 6d 61 6b 65 20 75 70 20 74 | .the.packets.which.may.make.up.t |
| 6a920 | 68 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4e 41 54 20 72 65 6c 69 65 73 20 6f 6e 20 74 68 | hat.connection..NAT.relies.on.th |
| 6a940 | 69 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 61 6c 6c 20 | is.information.to.translate.all. |
| 6a960 | 72 65 6c 61 74 65 64 20 70 61 63 6b 65 74 73 20 69 6e 20 74 68 65 20 73 61 6d 65 20 77 61 79 2c | related.packets.in.the.same.way, |
| 6a980 | 20 61 6e 64 20 69 70 74 61 62 6c 65 73 20 63 61 6e 20 75 73 65 20 74 68 69 73 20 69 6e 66 6f 72 | .and.iptables.can.use.this.infor |
| 6a9a0 | 6d 61 74 69 6f 6e 20 74 6f 20 61 63 74 20 61 73 20 61 20 73 74 61 74 65 66 75 6c 20 66 69 72 65 | mation.to.act.as.a.stateful.fire |
| 6a9c0 | 77 61 6c 6c 2e 00 4f 6e 65 20 6f 66 20 74 68 65 20 75 73 65 73 20 6f 66 20 46 61 69 72 20 51 75 | wall..One.of.the.uses.of.Fair.Qu |
| 6a9e0 | 65 75 65 20 6d 69 67 68 74 20 62 65 20 74 68 65 20 6d 69 74 69 67 61 74 69 6f 6e 20 6f 66 20 44 | eue.might.be.the.mitigation.of.D |
| 6aa00 | 65 6e 69 61 6c 20 6f 66 20 53 65 72 76 69 63 65 20 61 74 74 61 63 6b 73 2e 00 4f 6e 6c 79 20 38 | enial.of.Service.attacks..Only.8 |
| 6aa20 | 30 32 2e 31 51 2d 74 61 67 67 65 64 20 70 61 63 6b 65 74 73 20 61 72 65 20 61 63 63 65 70 74 65 | 02.1Q-tagged.packets.are.accepte |
| 6aa40 | 64 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 76 69 66 73 2e 00 4f 6e 6c 79 20 56 52 52 50 20 69 73 | d.on.Ethernet.vifs..Only.VRRP.is |
| 6aa60 | 20 73 75 70 70 6f 72 74 65 64 2e 20 52 65 71 75 69 72 65 64 20 6f 70 74 69 6f 6e 2e 00 4f 6e 6c | .supported..Required.option..Onl |
| 6aa80 | 79 20 61 6c 6c 6f 77 20 63 65 72 74 61 69 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 | y.allow.certain.IP.addresses.or. |
| 6aaa0 | 70 72 65 66 69 78 65 73 20 74 6f 20 61 63 63 65 73 73 20 74 68 65 20 68 74 74 70 73 20 77 65 62 | prefixes.to.access.the.https.web |
| 6aac0 | 73 65 72 76 65 72 2e 00 4f 6e 6c 79 20 69 6e 20 74 68 65 20 73 6f 75 72 63 65 20 63 72 69 74 65 | server..Only.in.the.source.crite |
| 6aae0 | 72 69 61 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 61 20 6d 61 63 2d 61 64 64 72 65 | ria,.you.can.specify.a.mac-addre |
| 6ab00 | 73 73 2e 00 4f 6e 6c 79 20 6f 6e 65 20 53 52 47 42 20 61 6e 64 20 64 65 66 61 75 6c 74 20 53 50 | ss..Only.one.SRGB.and.default.SP |
| 6ab20 | 46 20 41 6c 67 6f 72 69 74 68 6d 20 69 73 20 73 75 70 70 6f 72 74 65 64 00 4f 6e 6c 79 20 72 65 | F.Algorithm.is.supported.Only.re |
| 6ab40 | 71 75 65 73 74 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 44 48 43 50 20 73 | quest.an.address.from.the.DHCP.s |
| 6ab60 | 65 72 76 65 72 20 62 75 74 20 64 6f 20 6e 6f 74 20 72 65 71 75 65 73 74 20 61 20 64 65 66 61 75 | erver.but.do.not.request.a.defau |
| 6ab80 | 6c 74 20 67 61 74 65 77 61 79 2e 00 4f 6e 6c 79 20 72 65 71 75 65 73 74 20 61 6e 20 61 64 64 72 | lt.gateway..Only.request.an.addr |
| 6aba0 | 65 73 73 20 66 72 6f 6d 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 62 75 74 20 64 6f | ess.from.the.PPPoE.server.but.do |
| 6abc0 | 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 6e 79 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 | .not.install.any.default.route.. |
| 6abe0 | 4f 6e 6c 79 20 72 65 71 75 65 73 74 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 | Only.request.an.address.from.the |
| 6ac00 | 20 53 53 54 50 20 73 65 72 76 65 72 20 62 75 74 20 64 6f 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 | .SSTP.server.but.do.not.install. |
| 6ac20 | 61 6e 79 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4f 6e 6c 79 20 74 68 65 20 74 79 70 65 | any.default.route..Only.the.type |
| 6ac40 | 20 28 60 60 73 73 68 2d 72 73 61 60 60 29 20 61 6e 64 20 74 68 65 20 6b 65 79 20 28 60 60 41 41 | .(``ssh-rsa``).and.the.key.(``AA |
| 6ac60 | 41 42 33 4e 2e 2e 2e 60 60 29 20 61 72 65 20 75 73 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 | AB3N...``).are.used..Note.that.t |
| 6ac80 | 68 65 20 6b 65 79 20 77 69 6c 6c 20 75 73 75 61 6c 6c 79 20 62 65 20 73 65 76 65 72 61 6c 20 68 | he.key.will.usually.be.several.h |
| 6aca0 | 75 6e 64 72 65 64 20 63 68 61 72 61 63 74 65 72 73 20 6c 6f 6e 67 2c 20 61 6e 64 20 79 6f 75 20 | undred.characters.long,.and.you. |
| 6acc0 | 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 63 6f 70 79 20 61 6e 64 20 70 61 73 74 65 20 69 74 2e 20 | will.need.to.copy.and.paste.it.. |
| 6ace0 | 53 6f 6d 65 20 74 65 72 6d 69 6e 61 6c 20 65 6d 75 6c 61 74 6f 72 73 20 6d 61 79 20 61 63 63 69 | Some.terminal.emulators.may.acci |
| 6ad00 | 64 65 6e 74 61 6c 6c 79 20 73 70 6c 69 74 20 74 68 69 73 20 6f 76 65 72 20 73 65 76 65 72 61 6c | dentally.split.this.over.several |
| 6ad20 | 20 6c 69 6e 65 73 2e 20 42 65 20 61 74 74 65 6e 74 69 76 65 20 77 68 65 6e 20 79 6f 75 20 70 61 | .lines..Be.attentive.when.you.pa |
| 6ad40 | 73 74 65 20 69 74 20 74 68 61 74 20 69 74 20 6f 6e 6c 79 20 70 61 73 74 65 73 20 61 73 20 61 20 | ste.it.that.it.only.pastes.as.a. |
| 6ad60 | 73 69 6e 67 6c 65 20 6c 69 6e 65 2e 20 54 68 65 20 74 68 69 72 64 20 70 61 72 74 20 69 73 20 73 | single.line..The.third.part.is.s |
| 6ad80 | 69 6d 70 6c 79 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 2c 20 61 6e 64 20 69 73 20 66 6f 72 20 | imply.an.identifier,.and.is.for. |
| 6ada0 | 79 6f 75 72 20 6f 77 6e 20 72 65 66 65 72 65 6e 63 65 2e 00 4f 6e 6c 79 20 77 6f 72 6b 73 20 77 | your.own.reference..Only.works.w |
| 6adc0 | 69 74 68 20 61 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 77 69 74 68 20 65 78 74 65 72 6e 61 6c | ith.a.VXLAN.device.with.external |
| 6ade0 | 20 66 6c 61 67 20 73 65 74 2e 00 4f 70 2d 6d 6f 64 65 20 63 68 65 63 6b 20 76 69 72 74 75 61 6c | .flag.set..Op-mode.check.virtual |
| 6ae00 | 2d 73 65 72 76 65 72 20 73 74 61 74 75 73 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 00 4f 70 65 6e 43 | -server.status.OpenConnect.OpenC |
| 6ae20 | 6f 6e 6e 65 63 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 73 65 6e 64 | onnect.can.be.configured.to.send |
| 6ae40 | 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 61 20 52 41 44 | .accounting.information.to.a.RAD |
| 6ae60 | 49 55 53 20 73 65 72 76 65 72 20 74 6f 20 63 61 70 74 75 72 65 20 75 73 65 72 20 73 65 73 73 69 | IUS.server.to.capture.user.sessi |
| 6ae80 | 6f 6e 20 64 61 74 61 20 73 75 63 68 20 61 73 20 74 69 6d 65 20 6f 66 20 63 6f 6e 6e 65 63 74 2f | on.data.such.as.time.of.connect/ |
| 6aea0 | 64 69 73 63 6f 6e 6e 65 63 74 2c 20 64 61 74 61 20 74 72 61 6e 73 66 65 72 72 65 64 2c 20 61 6e | disconnect,.data.transferred,.an |
| 6aec0 | 64 20 73 6f 20 6f 6e 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 73 65 72 76 65 72 20 6d 61 74 63 | d.so.on..OpenConnect.server.matc |
| 6aee0 | 68 65 73 20 74 68 65 20 66 69 6c 65 6e 61 6d 65 20 69 6e 20 61 20 63 61 73 65 20 73 65 6e 73 69 | hes.the.filename.in.a.case.sensi |
| 6af00 | 74 69 76 65 20 6d 61 6e 6e 65 72 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 68 65 20 75 73 65 72 6e | tive.manner,.make.sure.the.usern |
| 6af20 | 61 6d 65 2f 67 72 6f 75 70 20 6e 61 6d 65 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 6d 61 74 | ame/group.name.you.configure.mat |
| 6af40 | 63 68 65 73 20 74 68 65 20 66 69 6c 65 6e 61 6d 65 20 65 78 61 63 74 6c 79 2e 00 4f 70 65 6e 43 | ches.the.filename.exactly..OpenC |
| 6af60 | 6f 6e 6e 65 63 74 20 73 75 70 70 6f 72 74 73 20 61 20 73 75 62 73 65 74 20 6f 66 20 69 74 27 73 | onnect.supports.a.subset.of.it's |
| 6af80 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 74 6f 20 62 65 20 61 70 70 | .configuration.options.to.be.app |
| 6afa0 | 6c 69 65 64 20 6f 6e 20 61 20 70 65 72 20 75 73 65 72 2f 67 72 6f 75 70 20 62 61 73 69 73 2c 20 | lied.on.a.per.user/group.basis,. |
| 6afc0 | 66 6f 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 75 72 70 6f 73 65 73 20 77 65 20 72 65 | for.configuration.purposes.we.re |
| 6afe0 | 66 65 72 20 74 6f 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 73 20 22 49 64 | fer.to.this.functionality.as."Id |
| 6b000 | 65 6e 74 69 74 79 20 62 61 73 65 64 20 63 6f 6e 66 69 67 22 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 | entity.based.config"..The.follow |
| 6b020 | 69 6e 67 20 60 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 53 65 72 76 65 72 20 4d 61 6e 75 61 6c 20 3c | ing.`OpenConnect.Server.Manual.< |
| 6b040 | 68 74 74 70 73 3a 2f 2f 6f 63 73 65 72 76 2e 67 69 74 6c 61 62 2e 69 6f 2f 77 77 77 2f 6d 61 6e | https://ocserv.gitlab.io/www/man |
| 6b060 | 75 61 6c 2e 68 74 6d 6c 23 3a 7e 3a 74 65 78 74 3d 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 25 32 | ual.html#:~:text=Configuration%2 |
| 6b080 | 30 66 69 6c 65 73 25 32 30 74 68 61 74 25 20 32 30 77 69 6c 6c 25 32 30 62 65 25 32 30 61 70 70 | 0files%20that%.20will%20be%20app |
| 6b0a0 | 6c 69 65 64 25 32 30 70 65 72 25 32 30 75 73 65 72 25 32 30 63 6f 6e 6e 65 63 74 69 6f 6e 25 32 | lied%20per%20user%20connection%2 |
| 6b0c0 | 30 6f 72 25 30 41 25 32 33 25 32 30 70 65 72 25 32 30 67 72 6f 75 70 3e 60 5f 20 6f 75 74 6c 69 | 0or%0A%23%20per%20group>`_.outli |
| 6b0e0 | 6e 65 73 20 74 68 65 20 73 65 74 20 6f 66 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 | nes.the.set.of.configuration.opt |
| 6b100 | 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e 20 54 68 69 73 20 63 61 6e 20 | ions.that.are.allowed..This.can. |
| 6b120 | 62 65 20 6c 65 76 65 72 61 67 65 64 20 74 6f 20 61 70 70 6c 79 20 64 69 66 66 65 72 65 6e 74 20 | be.leveraged.to.apply.different. |
| 6b140 | 73 65 74 73 20 6f 66 20 63 6f 6e 66 69 67 73 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 75 73 65 | sets.of.configs.to.different.use |
| 6b160 | 72 73 20 6f 72 20 67 72 6f 75 70 73 20 6f 66 20 75 73 65 72 73 2e 00 4f 70 65 6e 43 6f 6e 6e 65 | rs.or.groups.of.users..OpenConne |
| 6b180 | 63 74 2d 63 6f 6d 70 61 74 69 62 6c 65 20 73 65 72 76 65 72 20 66 65 61 74 75 72 65 20 68 61 73 | ct-compatible.server.feature.has |
| 6b1a0 | 20 62 65 65 6e 20 61 76 61 69 6c 61 62 6c 65 20 73 69 6e 63 65 20 45 71 75 75 6c 65 75 73 20 28 | .been.available.since.Equuleus.( |
| 6b1c0 | 31 2e 33 29 2e 20 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 56 50 4e 20 73 75 70 70 6f 72 74 73 20 53 | 1.3)..Openconnect.VPN.supports.S |
| 6b1e0 | 53 4c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 6f 66 66 65 72 73 20 66 75 6c 6c 20 6e 65 | SL.connection.and.offers.full.ne |
| 6b200 | 74 77 6f 72 6b 20 61 63 63 65 73 73 2e 20 53 53 4c 20 56 50 4e 20 6e 65 74 77 6f 72 6b 20 65 78 | twork.access..SSL.VPN.network.ex |
| 6b220 | 74 65 6e 73 69 6f 6e 20 63 6f 6e 6e 65 63 74 73 20 74 68 65 20 65 6e 64 2d 75 73 65 72 20 73 79 | tension.connects.the.end-user.sy |
| 6b240 | 73 74 65 6d 20 74 6f 20 74 68 65 20 63 6f 72 70 6f 72 61 74 65 20 6e 65 74 77 6f 72 6b 20 77 69 | stem.to.the.corporate.network.wi |
| 6b260 | 74 68 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 73 20 62 61 73 65 64 20 6f 6e 6c 79 20 6f 6e | th.access.controls.based.only.on |
| 6b280 | 20 6e 65 74 77 6f 72 6b 20 6c 61 79 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 73 75 63 68 | .network.layer.information,.such |
| 6b2a0 | 20 61 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 | .as.destination.IP.address.and.p |
| 6b2c0 | 6f 72 74 20 6e 75 6d 62 65 72 2e 20 53 6f 2c 20 69 74 20 70 72 6f 76 69 64 65 73 20 73 61 66 65 | ort.number..So,.it.provides.safe |
| 6b2e0 | 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 74 79 70 65 73 20 6f 66 20 | .communication.for.all.types.of. |
| 6b300 | 64 65 76 69 63 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 70 75 62 6c 69 63 20 6e 65 74 | device.traffic.across.public.net |
| 6b320 | 77 6f 72 6b 73 20 61 6e 64 20 70 72 69 76 61 74 65 20 6e 65 74 77 6f 72 6b 73 2c 20 61 6c 73 6f | works.and.private.networks,.also |
| 6b340 | 20 65 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 66 69 63 20 77 69 74 68 20 53 53 4c 20 70 | .encrypts.the.traffic.with.SSL.p |
| 6b360 | 72 6f 74 6f 63 6f 6c 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 2d 63 6f 6d 70 61 74 69 62 6c 65 20 | rotocol..OpenConnect-compatible. |
| 6b380 | 73 65 72 76 65 72 20 66 65 61 74 75 72 65 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 66 72 6f 6d | server.feature.is.available.from |
| 6b3a0 | 20 74 68 69 73 20 72 65 6c 65 61 73 65 2e 20 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 56 50 4e 20 73 | .this.release..Openconnect.VPN.s |
| 6b3c0 | 75 70 70 6f 72 74 73 20 53 53 4c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 6f 66 66 65 72 | upports.SSL.connection.and.offer |
| 6b3e0 | 73 20 66 75 6c 6c 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 2e 20 53 53 4c 20 56 50 4e 20 6e | s.full.network.access..SSL.VPN.n |
| 6b400 | 65 74 77 6f 72 6b 20 65 78 74 65 6e 73 69 6f 6e 20 63 6f 6e 6e 65 63 74 73 20 74 68 65 20 65 6e | etwork.extension.connects.the.en |
| 6b420 | 64 2d 75 73 65 72 20 73 79 73 74 65 6d 20 74 6f 20 74 68 65 20 63 6f 72 70 6f 72 61 74 65 20 6e | d-user.system.to.the.corporate.n |
| 6b440 | 65 74 77 6f 72 6b 20 77 69 74 68 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 73 20 62 61 73 65 | etwork.with.access.controls.base |
| 6b460 | 64 20 6f 6e 6c 79 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 6c 61 79 65 72 20 69 6e 66 6f 72 6d 61 74 | d.only.on.network.layer.informat |
| 6b480 | 69 6f 6e 2c 20 73 75 63 68 20 61 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 | ion,.such.as.destination.IP.addr |
| 6b4a0 | 65 73 73 20 61 6e 64 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 53 6f 2c 20 69 74 20 70 72 6f 76 | ess.and.port.number..So,.it.prov |
| 6b4c0 | 69 64 65 73 20 73 61 66 65 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 | ides.safe.communication.for.all. |
| 6b4e0 | 74 79 70 65 73 20 6f 66 20 64 65 76 69 63 65 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 70 | types.of.device.traffic.across.p |
| 6b500 | 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 70 72 69 76 61 74 65 20 6e 65 74 77 6f | ublic.networks.and.private.netwo |
| 6b520 | 72 6b 73 2c 20 61 6c 73 6f 20 65 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 66 69 63 20 77 | rks,.also.encrypts.the.traffic.w |
| 6b540 | 69 74 68 20 53 53 4c 20 70 72 6f 74 6f 63 6f 6c 2e 00 4f 70 65 6e 46 61 62 72 69 63 00 4f 70 65 | ith.SSL.protocol..OpenFabric.Ope |
| 6b560 | 6e 46 61 62 72 69 63 20 47 6c 6f 62 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 65 | nFabric.Global.Configuration.Ope |
| 6b580 | 6e 46 61 62 72 69 63 20 61 20 64 75 61 6c 20 73 74 61 63 6b 20 70 72 6f 74 6f 63 6f 6c 2e 20 41 | nFabric.a.dual.stack.protocol..A |
| 6b5a0 | 20 73 69 6e 67 6c 65 20 4f 70 65 6e 46 61 62 72 69 63 20 69 6e 73 74 61 6e 63 65 20 69 73 20 61 | .single.OpenFabric.instance.is.a |
| 6b5c0 | 62 6c 65 20 74 6f 20 70 65 72 66 6f 72 6d 20 72 6f 75 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 | ble.to.perform.routing.for.both. |
| 6b5e0 | 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 4f 70 65 6e 46 61 62 72 69 63 2c 20 73 70 65 63 69 | IPv4.and.IPv6..OpenFabric,.speci |
| 6b600 | 66 69 65 64 20 69 6e 20 60 64 72 61 66 74 2d 77 68 69 74 65 2d 6f 70 65 6e 66 61 62 72 69 63 2d | fied.in.`draft-white-openfabric- |
| 6b620 | 30 36 2e 74 78 74 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 | 06.txt.<https://datatracker.ietf |
| 6b640 | 2e 6f 72 67 2f 64 6f 63 2f 68 74 6d 6c 2f 64 72 61 66 74 2d 77 68 69 74 65 2d 6f 70 65 6e 66 61 | .org/doc/html/draft-white-openfa |
| 6b660 | 62 72 69 63 2d 30 36 3e 60 5f 2c 20 69 73 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f | bric-06>`_,.is.a.routing.protoco |
| 6b680 | 6c 20 64 65 72 69 76 65 64 20 66 72 6f 6d 20 49 53 2d 49 53 2c 20 70 72 6f 76 69 64 69 6e 67 20 | l.derived.from.IS-IS,.providing. |
| 6b6a0 | 6c 69 6e 6b 2d 73 74 61 74 65 20 72 6f 75 74 69 6e 67 20 77 69 74 68 20 65 66 66 69 63 69 65 6e | link-state.routing.with.efficien |
| 6b6c0 | 74 20 66 6c 6f 6f 64 69 6e 67 20 66 6f 72 20 74 6f 70 6f 6c 6f 67 69 65 73 20 6c 69 6b 65 20 73 | t.flooding.for.topologies.like.s |
| 6b6e0 | 70 69 6e 65 2d 6c 65 61 66 20 6e 65 74 77 6f 72 6b 73 2e 00 4f 70 65 6e 56 50 4e 00 4f 70 65 6e | pine-leaf.networks..OpenVPN.Open |
| 6b700 | 56 50 4e 20 2a 2a 77 69 6c 6c 20 6e 6f 74 2a 2a 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 | VPN.**will.not**.automatically.c |
| 6b720 | 72 65 61 74 65 20 72 6f 75 74 65 73 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 20 66 6f 72 20 63 | reate.routes.in.the.kernel.for.c |
| 6b740 | 6c 69 65 6e 74 20 73 75 62 6e 65 74 73 20 77 68 65 6e 20 74 68 65 79 20 63 6f 6e 6e 65 63 74 20 | lient.subnets.when.they.connect. |
| 6b760 | 61 6e 64 20 77 69 6c 6c 20 6f 6e 6c 79 20 75 73 65 20 63 6c 69 65 6e 74 2d 73 75 62 6e 65 74 20 | and.will.only.use.client-subnet. |
| 6b780 | 61 73 73 6f 63 69 61 74 69 6f 6e 20 69 6e 74 65 72 6e 61 6c 6c 79 2c 20 73 6f 20 77 65 20 6e 65 | association.internally,.so.we.ne |
| 6b7a0 | 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 6f 75 74 65 20 74 6f 20 74 68 65 20 31 30 2e 32 | ed.to.create.a.route.to.the.10.2 |
| 6b7c0 | 33 2e 30 2e 30 2f 32 30 20 6e 65 74 77 6f 72 6b 20 6f 75 72 73 65 6c 76 65 73 3a 00 4f 70 65 6e | 3.0.0/20.network.ourselves:.Open |
| 6b7e0 | 56 50 4e 20 44 43 4f 20 69 73 20 6e 6f 74 20 61 20 66 75 6c 6c 79 20 73 75 70 70 6f 72 74 65 64 | VPN.DCO.is.not.a.fully.supported |
| 6b800 | 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 2c 20 61 6e 64 20 69 73 20 63 75 72 72 65 6e 74 | .OpenVPN.feature,.and.is.current |
| 6b820 | 6c 79 20 63 6f 6e 73 69 64 65 72 65 64 20 65 78 70 65 72 69 6d 65 6e 74 61 6c 2e 20 46 75 72 74 | ly.considered.experimental..Furt |
| 6b840 | 68 65 72 6d 6f 72 65 2c 20 74 68 65 72 65 20 61 72 65 20 63 65 72 74 61 69 6e 20 4f 70 65 6e 56 | hermore,.there.are.certain.OpenV |
| 6b860 | 50 4e 20 66 65 61 74 75 72 65 73 20 61 6e 64 20 75 73 65 20 63 61 73 65 73 20 74 68 61 74 20 72 | PN.features.and.use.cases.that.r |
| 6b880 | 65 6d 61 69 6e 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 44 43 4f 2e 20 54 6f 20 | emain.incompatible.with.DCO..To. |
| 6b8a0 | 67 65 74 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 75 6e 64 65 72 73 74 61 6e 64 69 6e | get.a.comprehensive.understandin |
| 6b8c0 | 67 20 6f 66 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 61 73 73 6f 63 69 61 74 65 64 20 | g.of.the.limitations.associated. |
| 6b8e0 | 77 69 74 68 20 44 43 4f 2c 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 6c 69 73 74 20 6f 66 20 6b | with.DCO,.refer.to.the.list.of.k |
| 6b900 | 6e 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 64 6f 63 75 6d 65 6e 74 | nown.limitations.in.the.document |
| 6b920 | 61 74 69 6f 6e 2e 00 4f 70 65 6e 56 50 4e 20 44 43 4f 20 69 73 20 6e 6f 74 20 66 75 6c 6c 20 4f | ation..OpenVPN.DCO.is.not.full.O |
| 6b940 | 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 73 20 73 75 70 70 6f 72 74 65 64 20 2c 20 69 73 20 63 | penVPN.features.supported.,.is.c |
| 6b960 | 75 72 72 65 6e 74 6c 79 20 63 6f 6e 73 69 64 65 72 65 64 20 65 78 70 65 72 69 6d 65 6e 74 61 6c | urrently.considered.experimental |
| 6b980 | 2e 20 46 75 72 74 68 65 72 6d 6f 72 65 2c 20 74 68 65 72 65 20 61 72 65 20 63 65 72 74 61 69 6e | ..Furthermore,.there.are.certain |
| 6b9a0 | 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 73 20 61 6e 64 20 75 73 65 20 63 61 73 65 73 20 | .OpenVPN.features.and.use.cases. |
| 6b9c0 | 74 68 61 74 20 72 65 6d 61 69 6e 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 44 43 | that.remain.incompatible.with.DC |
| 6b9e0 | 4f 2e 20 54 6f 20 67 65 74 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 75 6e 64 65 72 73 | O..To.get.a.comprehensive.unders |
| 6ba00 | 74 61 6e 64 69 6e 67 20 6f 66 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 61 73 73 6f 63 | tanding.of.the.limitations.assoc |
| 6ba20 | 69 61 74 65 64 20 77 69 74 68 20 44 43 4f 2c 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 6c 69 73 | iated.with.DCO,.refer.to.the.lis |
| 6ba40 | 74 20 6f 66 20 6b 6e 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 64 6f | t.of.known.limitations.in.the.do |
| 6ba60 | 63 75 6d 65 6e 74 61 74 69 6f 6e 2e 00 4f 70 65 6e 56 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 | cumentation..OpenVPN.Data.Channe |
| 6ba80 | 6c 20 4f 66 66 6c 6f 61 64 20 28 44 43 4f 29 00 4f 70 65 6e 56 50 4e 20 44 61 74 61 20 43 68 61 | l.Offload.(DCO).OpenVPN.Data.Cha |
| 6baa0 | 6e 6e 65 6c 20 4f 66 66 6c 6f 61 64 20 28 44 43 4f 29 20 65 6e 61 62 6c 65 73 20 73 69 67 6e 69 | nnel.Offload.(DCO).enables.signi |
| 6bac0 | 66 69 63 61 6e 74 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 65 6e 68 61 6e 63 65 6d 65 6e 74 20 69 | ficant.performance.enhancement.i |
| 6bae0 | 6e 20 65 6e 63 72 79 70 74 65 64 20 4f 70 65 6e 56 50 4e 20 64 61 74 61 20 70 72 6f 63 65 73 73 | n.encrypted.OpenVPN.data.process |
| 6bb00 | 69 6e 67 2e 20 42 79 20 6d 69 6e 69 6d 69 7a 69 6e 67 20 63 6f 6e 74 65 78 74 20 73 77 69 74 63 | ing..By.minimizing.context.switc |
| 6bb20 | 68 69 6e 67 20 66 6f 72 20 65 61 63 68 20 70 61 63 6b 65 74 2c 20 44 43 4f 20 65 66 66 65 63 74 | hing.for.each.packet,.DCO.effect |
| 6bb40 | 69 76 65 6c 79 20 72 65 64 75 63 65 73 20 6f 76 65 72 68 65 61 64 2e 20 54 68 69 73 20 6f 70 74 | ively.reduces.overhead..This.opt |
| 6bb60 | 69 6d 69 7a 61 74 69 6f 6e 20 69 73 20 61 63 68 69 65 76 65 64 20 62 79 20 6b 65 65 70 69 6e 67 | imization.is.achieved.by.keeping |
| 6bb80 | 20 6d 6f 73 74 20 64 61 74 61 20 68 61 6e 64 6c 69 6e 67 20 74 61 73 6b 73 20 77 69 74 68 69 6e | .most.data.handling.tasks.within |
| 6bba0 | 20 74 68 65 20 6b 65 72 6e 65 6c 2c 20 61 76 6f 69 64 69 6e 67 20 66 72 65 71 75 65 6e 74 20 73 | .the.kernel,.avoiding.frequent.s |
| 6bbc0 | 77 69 74 63 68 65 73 20 62 65 74 77 65 65 6e 20 6b 65 72 6e 65 6c 20 61 6e 64 20 75 73 65 72 20 | witches.between.kernel.and.user. |
| 6bbe0 | 73 70 61 63 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 70 61 63 6b 65 74 20 | space.for.encryption.and.packet. |
| 6bc00 | 68 61 6e 64 6c 69 6e 67 2e 00 4f 70 65 6e 56 50 4e 20 4c 6f 67 73 00 4f 70 65 6e 56 50 4e 20 61 | handling..OpenVPN.Logs.OpenVPN.a |
| 6bc20 | 6c 6c 6f 77 73 20 66 6f 72 20 65 69 74 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 55 44 50 | llows.for.either.TCP.or.UDP..UDP |
| 6bc40 | 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 74 68 65 20 6c 6f 77 65 73 74 20 6c 61 74 65 6e 63 79 | .will.provide.the.lowest.latency |
| 6bc60 | 2c 20 77 68 69 6c 65 20 54 43 50 20 77 69 6c 6c 20 77 6f 72 6b 20 62 65 74 74 65 72 20 66 6f 72 | ,.while.TCP.will.work.better.for |
| 6bc80 | 20 6c 6f 73 73 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 3b 20 67 65 6e 65 72 61 6c 6c 79 20 55 44 | .lossy.connections;.generally.UD |
| 6bca0 | 50 20 69 73 20 70 72 65 66 65 72 72 65 64 20 77 68 65 6e 20 70 6f 73 73 69 62 6c 65 2e 00 4f 70 | P.is.preferred.when.possible..Op |
| 6bcc0 | 65 6e 56 50 4e 20 69 73 20 70 6f 70 75 6c 61 72 20 66 6f 72 20 63 6c 69 65 6e 74 2d 73 65 72 76 | enVPN.is.popular.for.client-serv |
| 6bce0 | 65 72 20 73 65 74 75 70 73 2c 20 62 75 74 20 69 74 73 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 | er.setups,.but.its.site-to-site. |
| 6bd00 | 6d 6f 64 65 20 72 65 6d 61 69 6e 73 20 61 20 72 65 6c 61 74 69 76 65 6c 79 20 6f 62 73 63 75 72 | mode.remains.a.relatively.obscur |
| 6bd20 | 65 20 66 65 61 74 75 72 65 2c 20 61 6e 64 20 6d 61 6e 79 20 72 6f 75 74 65 72 20 61 70 70 6c 69 | e.feature,.and.many.router.appli |
| 6bd40 | 61 6e 63 65 73 20 73 74 69 6c 6c 20 64 6f 6e 27 74 20 73 75 70 70 6f 72 74 20 69 74 2e 20 48 6f | ances.still.don't.support.it..Ho |
| 6bd60 | 77 65 76 65 72 2c 20 69 74 27 73 20 76 65 72 79 20 75 73 65 66 75 6c 20 66 6f 72 20 71 75 69 63 | wever,.it's.very.useful.for.quic |
| 6bd80 | 6b 6c 79 20 73 65 74 74 69 6e 67 20 75 70 20 74 75 6e 6e 65 6c 73 20 62 65 74 77 65 65 6e 20 72 | kly.setting.up.tunnels.between.r |
| 6bda0 | 6f 75 74 65 72 73 2e 00 4f 70 65 6e 56 50 4e 20 73 74 61 74 75 73 20 63 61 6e 20 62 65 20 76 65 | outers..OpenVPN.status.can.be.ve |
| 6bdc0 | 72 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 73 68 6f 77 20 6f 70 65 6e 76 70 6e 60 20 | rified.using.the.`show.openvpn`. |
| 6bde0 | 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 2e 20 53 65 65 20 74 68 65 20 62 75 | operational.commands..See.the.bu |
| 6be00 | 69 6c 74 2d 69 6e 20 68 65 6c 70 20 66 6f 72 20 61 20 63 6f 6d 70 6c 65 74 65 20 6c 69 73 74 20 | ilt-in.help.for.a.complete.list. |
| 6be20 | 6f 66 20 6f 70 74 69 6f 6e 73 2e 00 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 43 6f 6e 66 69 67 75 72 | of.options..Openconnect.Configur |
| 6be40 | 61 74 69 6f 6e 00 4f 70 65 72 61 74 69 6e 67 20 4d 6f 64 65 73 00 4f 70 65 72 61 74 69 6f 6e 00 | ation.Operating.Modes.Operation. |
| 6be60 | 4f 70 65 72 61 74 69 6f 6e 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 20 4d 6f 64 | Operation.Commands.Operation.Mod |
| 6be80 | 65 00 4f 70 65 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 20 6d | e.Operation.commands.Operation.m |
| 6bea0 | 6f 64 65 20 6f 66 20 77 69 72 65 6c 65 73 73 20 72 61 64 69 6f 2e 00 4f 70 65 72 61 74 69 6f 6e | ode.of.wireless.radio..Operation |
| 6bec0 | 2d 6d 6f 64 65 00 4f 70 65 72 61 74 69 6f 6e 2d 6d 6f 64 65 20 46 69 72 65 77 61 6c 6c 00 4f 70 | -mode.Operation-mode.Firewall.Op |
| 6bee0 | 65 72 61 74 69 6f 6e 61 6c 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 61 6c 20 4d | erational.Commands.Operational.M |
| 6bf00 | 6f 64 65 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 | ode.Commands.Operational.command |
| 6bf20 | 73 00 4f 70 74 69 6f 6e 00 4f 70 74 69 6f 6e 20 34 33 20 66 6f 72 20 55 6e 69 46 49 00 4f 70 74 | s.Option.Option.43.for.UniFI.Opt |
| 6bf40 | 69 6f 6e 20 64 65 73 63 72 69 70 74 69 6f 6e 00 4f 70 74 69 6f 6e 20 6e 75 6d 62 65 72 00 4f 70 | ion.description.Option.number.Op |
| 6bf60 | 74 69 6f 6e 20 73 70 65 63 69 66 79 69 6e 67 20 74 68 65 20 72 61 74 65 20 69 6e 20 77 68 69 63 | tion.specifying.the.rate.in.whic |
| 6bf80 | 68 20 77 65 27 6c 6c 20 61 73 6b 20 6f 75 72 20 6c 69 6e 6b 20 70 61 72 74 6e 65 72 20 74 6f 20 | h.we'll.ask.our.link.partner.to. |
| 6bfa0 | 74 72 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 20 70 61 63 6b 65 74 73 20 69 6e 20 38 30 32 2e 33 | transmit.LACPDU.packets.in.802.3 |
| 6bfc0 | 61 64 20 6d 6f 64 65 2e 00 4f 70 74 69 6f 6e 20 74 6f 20 64 69 73 61 62 6c 65 20 72 75 6c 65 2e | ad.mode..Option.to.disable.rule. |
| 6bfe0 | 00 4f 70 74 69 6f 6e 20 74 6f 20 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 6c 6f 67 | .Option.to.enable.or.disable.log |
| 6c000 | 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 2e 00 4f 70 74 69 6f 6e 20 74 6f 20 6c 6f 67 20 70 61 | .matching.rule..Option.to.log.pa |
| 6c020 | 63 6b 65 74 73 20 68 69 74 74 69 6e 67 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2e 00 4f 70 | ckets.hitting.default-action..Op |
| 6c040 | 74 69 6f 6e 61 6c 00 4f 70 74 69 6f 6e 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 | tional.Optional.Configuration.Op |
| 6c060 | 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 20 70 72 65 66 69 78 2d 6c 69 73 74 20 63 61 6e | tional.parameter.prefix-list.can |
| 6c080 | 20 62 65 20 75 73 65 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 77 68 69 63 68 20 67 72 6f 75 70 73 20 | .be.use.to.control.which.groups. |
| 6c0a0 | 74 6f 20 73 77 69 74 63 68 20 6f 72 20 6e 6f 74 20 73 77 69 74 63 68 2e 20 49 66 20 61 20 67 72 | to.switch.or.not.switch..If.a.gr |
| 6c0c0 | 6f 75 70 20 69 73 20 50 45 52 4d 49 54 20 61 73 20 70 65 72 20 74 68 65 20 70 72 65 66 69 78 2d | oup.is.PERMIT.as.per.the.prefix- |
| 6c0e0 | 6c 69 73 74 2c 20 74 68 65 6e 20 74 68 65 20 53 50 54 20 73 77 69 74 63 68 6f 76 65 72 20 64 6f | list,.then.the.SPT.switchover.do |
| 6c100 | 65 73 20 6e 6f 74 20 68 61 70 70 65 6e 20 66 6f 72 20 69 74 20 61 6e 64 20 69 66 20 69 74 20 69 | es.not.happen.for.it.and.if.it.i |
| 6c120 | 73 20 44 45 4e 59 2c 20 74 68 65 6e 20 74 68 65 20 53 50 54 20 73 77 69 74 63 68 6f 76 65 72 20 | s.DENY,.then.the.SPT.switchover. |
| 6c140 | 68 61 70 70 65 6e 73 2e 00 4f 70 74 69 6f 6e 61 6c 2c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 | happens..Optional,.if.you.want.t |
| 6c160 | 6f 20 65 6e 61 62 6c 65 20 75 70 6c 6f 61 64 73 2c 20 65 6c 73 65 20 54 46 54 50 20 73 65 72 76 | o.enable.uploads,.else.TFTP.serv |
| 6c180 | 65 72 20 77 69 6c 6c 20 61 63 74 20 61 73 20 61 20 72 65 61 64 2d 6f 6e 6c 79 20 73 65 72 76 65 | er.will.act.as.a.read-only.serve |
| 6c1a0 | 72 2e 00 4f 70 74 69 6f 6e 61 6c 2f 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 73 00 4f 70 74 | r..Optional/default.settings.Opt |
| 6c1c0 | 69 6f 6e 61 6c 6c 79 20 73 65 74 20 61 20 73 70 65 63 69 66 69 63 20 73 74 61 74 69 63 20 49 50 | ionally.set.a.specific.static.IP |
| 6c1e0 | 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 63 6f 6e 74 61 | v4.or.IPv6.address.for.the.conta |
| 6c200 | 69 6e 65 72 2e 20 54 68 69 73 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 | iner..This.address.must.be.withi |
| 6c220 | 6e 20 74 68 65 20 6e 61 6d 65 64 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 2e 00 4f 70 74 69 | n.the.named.network.prefix..Opti |
| 6c240 | 6f 6e 73 00 4f 70 74 69 6f 6e 73 20 28 47 6c 6f 62 61 6c 20 49 50 73 65 63 20 73 65 74 74 69 6e | ons.Options.(Global.IPsec.settin |
| 6c260 | 67 73 29 20 41 74 74 72 69 62 75 74 65 73 00 4f 70 74 69 6f 6e 73 20 75 73 65 64 20 66 6f 72 20 | gs).Attributes.Options.used.for. |
| 6c280 | 71 75 65 75 65 20 74 61 72 67 65 74 2e 20 41 63 74 69 6f 6e 20 71 75 65 75 65 20 6d 75 73 74 20 | queue.target..Action.queue.must. |
| 6c2a0 | 62 65 20 64 65 66 69 6e 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 20 73 65 74 74 69 6e 67 00 4f | be.defined.to.use.this.setting.O |
| 6c2c0 | 72 20 2a 2a 62 69 6e 61 72 79 2a 2a 20 70 72 65 66 69 78 65 73 2e 00 4f 72 2c 20 66 6f 72 20 65 | r.**binary**.prefixes..Or,.for.e |
| 6c2e0 | 78 61 6d 70 6c 65 20 66 74 70 2c 20 60 64 65 6c 65 74 65 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 | xample.ftp,.`delete.system.connt |
| 6c300 | 72 61 63 6b 20 6d 6f 64 75 6c 65 73 20 66 74 70 60 2e 00 4f 72 64 65 72 20 63 6f 6e 6e 74 72 61 | rack.modules.ftp`..Order.conntra |
| 6c320 | 63 6b 64 20 74 6f 20 72 65 71 75 65 73 74 20 61 20 63 6f 6d 70 6c 65 74 65 20 63 6f 6e 6e 74 72 | ckd.to.request.a.complete.conntr |
| 6c340 | 61 63 6b 20 74 61 62 6c 65 20 72 65 73 79 6e 63 20 61 67 61 69 6e 73 74 20 74 68 65 20 6f 74 68 | ack.table.resync.against.the.oth |
| 6c360 | 65 72 20 6e 6f 64 65 20 61 74 20 73 74 61 72 74 75 70 2e 00 4f 72 69 67 69 6e 61 74 65 20 61 6e | er.node.at.startup..Originate.an |
| 6c380 | 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 28 74 79 70 65 2d 35 29 20 4c 53 41 20 64 65 73 63 72 69 | .AS-External.(type-5).LSA.descri |
| 6c3a0 | 62 69 6e 67 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 6e 74 6f 20 61 6c 6c 20 65 78 | bing.a.default.route.into.all.ex |
| 6c3c0 | 74 65 72 6e 61 6c 2d 72 6f 75 74 69 6e 67 20 63 61 70 61 62 6c 65 20 61 72 65 61 73 2c 20 6f 66 | ternal-routing.capable.areas,.of |
| 6c3e0 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6d 65 74 72 69 63 20 61 6e 64 20 6d 65 74 72 69 63 | .the.specified.metric.and.metric |
| 6c400 | 20 74 79 70 65 2e 20 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 6c 77 61 79 73 60 20 6b | .type..If.the.:cfgcmd:`always`.k |
| 6c420 | 65 79 77 6f 72 64 20 69 73 20 67 69 76 65 6e 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 | eyword.is.given.then.the.default |
| 6c440 | 20 69 73 20 61 6c 77 61 79 73 20 61 64 76 65 72 74 69 73 65 64 2c 20 65 76 65 6e 20 77 68 65 6e | .is.always.advertised,.even.when |
| 6c460 | 20 74 68 65 72 65 20 69 73 20 6e 6f 20 64 65 66 61 75 6c 74 20 70 72 65 73 65 6e 74 20 69 6e 20 | .there.is.no.default.present.in. |
| 6c480 | 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 20 | the.routing.table..The.argument. |
| 6c4a0 | 3a 63 66 67 63 6d 64 3a 60 72 6f 75 74 65 2d 6d 61 70 60 20 73 70 65 63 69 66 69 65 73 20 74 6f | :cfgcmd:`route-map`.specifies.to |
| 6c4c0 | 20 61 64 76 65 72 74 69 73 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 66 20 | .advertise.the.default.route.if. |
| 6c4e0 | 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 69 73 20 73 61 74 69 73 66 69 65 64 2e 00 4f 74 68 65 | the.route.map.is.satisfied..Othe |
| 6c500 | 72 20 61 74 74 72 69 62 75 74 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 2c 20 62 75 74 20 74 68 | r.attributes.can.be.used,.but.th |
| 6c520 | 65 79 20 68 61 76 65 20 74 6f 20 62 65 20 69 6e 20 6f 6e 65 20 6f 66 20 74 68 65 20 64 69 63 74 | ey.have.to.be.in.one.of.the.dict |
| 6c540 | 69 6f 6e 61 72 69 65 73 20 69 6e 20 2a 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 | ionaries.in.*/usr/share/accel-pp |
| 6c560 | 70 2f 72 61 64 69 75 73 2a 2e 00 4f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d | p/radius*..Our.configuration.com |
| 6c580 | 6d 61 6e 64 73 20 77 6f 75 6c 64 20 62 65 3a 00 4f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 6f | mands.would.be:.Our.remote.end.o |
| 6c5a0 | 66 20 74 68 65 20 74 75 6e 6e 65 6c 20 66 6f 72 20 70 65 65 72 20 60 74 6f 2d 77 67 30 32 60 20 | f.the.tunnel.for.peer.`to-wg02`. |
| 6c5c0 | 69 73 20 72 65 61 63 68 61 62 6c 65 20 61 74 20 31 39 32 2e 30 2e 32 2e 31 20 70 6f 72 74 20 35 | is.reachable.at.192.0.2.1.port.5 |
| 6c5e0 | 31 38 32 30 00 4f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 62 61 6c | 1820.Outbound.traffic.can.be.bal |
| 6c600 | 61 6e 63 65 64 20 62 65 74 77 65 65 6e 20 74 77 6f 20 6f 72 20 6d 6f 72 65 20 6f 75 74 62 6f 75 | anced.between.two.or.more.outbou |
| 6c620 | 6e 64 20 69 6e 74 65 72 66 61 63 65 73 2e 20 49 66 20 61 20 70 61 74 68 20 66 61 69 6c 73 2c 20 | nd.interfaces..If.a.path.fails,. |
| 6c640 | 74 72 61 66 66 69 63 20 69 73 20 62 61 6c 61 6e 63 65 64 20 61 63 72 6f 73 73 20 74 68 65 20 72 | traffic.is.balanced.across.the.r |
| 6c660 | 65 6d 61 69 6e 69 6e 67 20 68 65 61 6c 74 68 79 20 70 61 74 68 73 2c 20 61 20 72 65 63 6f 76 65 | emaining.healthy.paths,.a.recove |
| 6c680 | 72 65 64 20 70 61 74 68 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 65 64 20 | red.path.is.automatically.added. |
| 6c6a0 | 62 61 63 6b 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 61 6e 64 20 75 73 | back.to.the.routing.table.and.us |
| 6c6c0 | 65 64 20 62 79 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 2e 20 54 68 65 20 6c 6f 61 | ed.by.the.load.balancer..The.loa |
| 6c6e0 | 64 20 62 61 6c 61 6e 63 65 72 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 73 20 72 6f | d.balancer.automatically.adds.ro |
| 6c700 | 75 74 65 73 20 66 6f 72 20 65 61 63 68 20 70 61 74 68 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e | utes.for.each.path.to.the.routin |
| 6c720 | 67 20 74 61 62 6c 65 20 61 6e 64 20 62 61 6c 61 6e 63 65 73 20 74 72 61 66 66 69 63 20 61 63 72 | g.table.and.balances.traffic.acr |
| 6c740 | 6f 73 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 64 | oss.the.configured.interfaces,.d |
| 6c760 | 65 74 65 72 6d 69 6e 65 64 20 62 79 20 69 6e 74 65 72 66 61 63 65 20 68 65 61 6c 74 68 20 61 6e | etermined.by.interface.health.an |
| 6c780 | 64 20 77 65 69 67 68 74 2e 00 4f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 69 73 20 62 61 | d.weight..Outgoing.traffic.is.ba |
| 6c7a0 | 6c 61 6e 63 65 64 20 69 6e 20 61 20 66 6c 6f 77 2d 62 61 73 65 64 20 6d 61 6e 6e 65 72 2e 20 41 | lanced.in.a.flow-based.manner..A |
| 6c7c0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 20 69 73 20 75 73 | .connection.tracking.table.is.us |
| 6c7e0 | 65 64 20 74 6f 20 74 72 61 63 6b 20 66 6c 6f 77 73 20 62 79 20 74 68 65 69 72 20 73 6f 75 72 63 | ed.to.track.flows.by.their.sourc |
| 6c800 | 65 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 | e.address,.destination.address.a |
| 6c820 | 6e 64 20 70 6f 72 74 2e 20 45 61 63 68 20 66 6c 6f 77 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 | nd.port..Each.flow.is.assigned.t |
| 6c840 | 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 | o.an.interface.according.to.the. |
| 6c860 | 64 65 66 69 6e 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 73 20 61 6e 64 20 73 75 62 73 | defined.balancing.rules.and.subs |
| 6c880 | 65 71 75 65 6e 74 20 70 61 63 6b 65 74 73 20 61 72 65 20 73 65 6e 74 20 74 68 72 6f 75 67 68 20 | equent.packets.are.sent.through. |
| 6c8a0 | 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 68 61 73 20 74 68 65 | the.same.interface..This.has.the |
| 6c8c0 | 20 61 64 76 61 6e 74 61 67 65 20 74 68 61 74 20 70 61 63 6b 65 74 73 20 61 6c 77 61 79 73 20 61 | .advantage.that.packets.always.a |
| 6c8e0 | 72 72 69 76 65 20 69 6e 20 6f 72 64 65 72 20 69 66 20 6c 69 6e 6b 73 20 77 69 74 68 20 64 69 66 | rrive.in.order.if.links.with.dif |
| 6c900 | 66 65 72 65 6e 74 20 73 70 65 65 64 73 20 61 72 65 20 69 6e 20 75 73 65 2e 00 4f 75 74 70 75 74 | ferent.speeds.are.in.use..Output |
| 6c920 | 20 66 72 6f 6d 20 60 65 74 68 30 60 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 00 4f | .from.`eth0`.network.interface.O |
| 6c940 | 75 74 70 75 74 20 70 6c 75 67 69 6e 20 50 72 6f 6d 65 74 68 65 75 73 20 63 6c 69 65 6e 74 00 4f | utput.plugin.Prometheus.client.O |
| 6c960 | 76 65 72 20 49 50 00 4f 76 65 72 20 49 50 53 65 63 2c 20 4c 32 20 56 50 4e 20 28 62 72 69 64 67 | ver.IP.Over.IPSec,.L2.VPN.(bridg |
| 6c980 | 65 29 00 4f 76 65 72 20 55 44 50 00 4f 76 65 72 72 69 64 65 20 73 74 61 74 69 63 2d 6d 61 70 70 | e).Over.UDP.Override.static-mapp |
| 6c9a0 | 69 6e 67 27 73 20 6e 61 6d 65 2d 73 65 72 76 65 72 20 77 69 74 68 20 61 20 63 75 73 74 6f 6d 20 | ing's.name-server.with.a.custom. |
| 6c9c0 | 6f 6e 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 6f 6e 6c 79 20 74 6f 20 74 68 | one.that.will.be.sent.only.to.th |
| 6c9e0 | 69 73 20 68 6f 73 74 2e 00 4f 76 65 72 72 69 64 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f | is.host..Override.the.default.co |
| 6ca00 | 6d 6d 61 6e 64 20 66 72 6f 6d 20 74 68 65 20 69 6d 61 67 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 | mmand.from.the.image.for.a.conta |
| 6ca20 | 69 6e 65 72 2e 00 4f 76 65 72 72 69 64 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 65 6e 74 72 79 | iner..Override.the.default.entry |
| 6ca40 | 70 6f 69 6e 74 20 66 72 6f 6d 20 74 68 65 20 69 6d 61 67 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 | point.from.the.image.for.a.conta |
| 6ca60 | 69 6e 65 72 2e 00 4f 76 65 72 76 69 65 77 00 4f 76 65 72 76 69 65 77 20 61 6e 64 20 62 61 73 69 | iner..Overview.Overview.and.basi |
| 6ca80 | 63 20 63 6f 6e 63 65 70 74 73 00 4f 76 65 72 76 69 65 77 20 6f 66 20 64 65 66 69 6e 65 64 20 67 | c.concepts.Overview.of.defined.g |
| 6caa0 | 72 6f 75 70 73 2e 20 59 6f 75 20 73 65 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 | roups..You.see.the.firewall.grou |
| 6cac0 | 70 20 6e 61 6d 65 2c 20 74 79 70 65 2c 20 72 65 66 65 72 65 6e 63 65 73 20 28 77 68 65 72 65 20 | p.name,.type,.references.(where. |
| 6cae0 | 74 68 65 20 67 72 6f 75 70 20 69 73 20 75 73 65 64 29 2c 20 6d 65 6d 62 65 72 73 2c 20 74 69 6d | the.group.is.used),.members,.tim |
| 6cb00 | 65 6f 75 74 20 61 6e 64 20 65 78 70 69 72 61 74 69 6f 6e 20 28 6c 61 73 74 20 74 77 6f 20 6f 6e | eout.and.expiration.(last.two.on |
| 6cb20 | 6c 79 20 70 72 65 73 65 6e 74 20 69 6e 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 | ly.present.in.dynamic.firewall.g |
| 6cb40 | 72 6f 75 70 73 29 2e 00 4f 76 65 72 76 69 65 77 20 6f 66 20 64 65 66 69 6e 65 64 20 67 72 6f 75 | roups)..Overview.of.defined.grou |
| 6cb60 | 70 73 2e 20 59 6f 75 20 73 65 65 20 74 68 65 20 74 79 70 65 2c 20 74 68 65 20 6d 65 6d 62 65 72 | ps..You.see.the.type,.the.member |
| 6cb80 | 73 2c 20 61 6e 64 20 77 68 65 72 65 20 74 68 65 20 67 72 6f 75 70 20 69 73 20 75 73 65 64 2e 00 | s,.and.where.the.group.is.used.. |
| 6cba0 | 4f 76 65 72 77 72 69 74 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 20 68 6f 73 74 | Overwrites.the.local.system.host |
| 6cbc0 | 20 6e 61 6d 65 20 75 73 65 64 20 69 6e 20 73 79 73 6c 6f 67 73 2e 00 50 42 52 20 6d 75 6c 74 69 | .name.used.in.syslogs..PBR.multi |
| 6cbe0 | 70 6c 65 20 75 70 6c 69 6e 6b 73 00 50 43 31 20 69 73 20 69 6e 20 74 68 65 20 60 60 64 65 66 61 | ple.uplinks.PC1.is.in.the.``defa |
| 6cc00 | 75 6c 74 60 60 20 56 52 46 20 61 6e 64 20 61 63 74 69 6e 67 20 61 73 20 65 2e 67 2e 20 61 20 22 | ult``.VRF.and.acting.as.e.g..a." |
| 6cc20 | 66 69 6c 65 73 65 72 76 65 72 22 00 50 43 32 20 69 73 20 69 6e 20 56 52 46 20 60 60 62 6c 75 65 | fileserver".PC2.is.in.VRF.``blue |
| 6cc40 | 60 60 20 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 76 65 6c 6f 70 6d 65 6e 74 20 64 65 70 61 | ``.which.is.the.development.depa |
| 6cc60 | 72 74 6d 65 6e 74 00 50 43 33 20 61 6e 64 20 50 43 34 20 61 72 65 20 63 6f 6e 6e 65 63 74 65 64 | rtment.PC3.and.PC4.are.connected |
| 6cc80 | 20 74 6f 20 61 20 62 72 69 64 67 65 20 64 65 76 69 63 65 20 6f 6e 20 72 6f 75 74 65 72 20 60 60 | .to.a.bridge.device.on.router.`` |
| 6cca0 | 52 31 60 60 20 77 68 69 63 68 20 69 73 20 69 6e 20 56 52 46 20 60 60 72 65 64 60 60 2e 20 53 61 | R1``.which.is.in.VRF.``red``..Sa |
| 6ccc0 | 79 20 74 68 69 73 20 69 73 20 74 68 65 20 48 52 20 64 65 70 61 72 74 6d 65 6e 74 2e 00 50 43 34 | y.this.is.the.HR.department..PC4 |
| 6cce0 | 20 68 61 73 20 49 50 20 31 30 2e 30 2e 30 2e 34 2f 32 34 20 61 6e 64 20 50 43 35 20 68 61 73 20 | .has.IP.10.0.0.4/24.and.PC5.has. |
| 6cd00 | 49 50 20 31 30 2e 30 2e 30 2e 35 2f 32 34 2c 20 73 6f 20 74 68 65 79 20 62 65 6c 69 65 76 65 20 | IP.10.0.0.5/24,.so.they.believe. |
| 6cd20 | 74 68 65 79 20 61 72 65 20 69 6e 20 74 68 65 20 73 61 6d 65 20 62 72 6f 61 64 63 61 73 74 20 64 | they.are.in.the.same.broadcast.d |
| 6cd40 | 6f 6d 61 69 6e 2e 00 50 43 35 20 72 65 63 65 69 76 65 73 20 74 68 65 20 70 69 6e 67 20 65 63 68 | omain..PC5.receives.the.ping.ech |
| 6cd60 | 6f 2c 20 72 65 73 70 6f 6e 64 73 20 77 69 74 68 20 61 6e 20 65 63 68 6f 20 72 65 70 6c 79 20 74 | o,.responds.with.an.echo.reply.t |
| 6cd80 | 68 61 74 20 4c 65 61 66 33 20 72 65 63 65 69 76 65 73 20 61 6e 64 20 74 68 69 73 20 74 69 6d 65 | hat.Leaf3.receives.and.this.time |
| 6cda0 | 20 66 6f 72 77 61 72 64 73 20 74 6f 20 4c 65 61 66 32 27 73 20 75 6e 69 63 61 73 74 20 61 64 64 | .forwards.to.Leaf2's.unicast.add |
| 6cdc0 | 72 65 73 73 20 64 69 72 65 63 74 6c 79 20 62 65 63 61 75 73 65 20 69 74 20 6c 65 61 72 6e 65 64 | ress.directly.because.it.learned |
| 6cde0 | 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 50 43 34 20 61 62 6f 76 65 2e 20 57 68 65 6e | .the.location.of.PC4.above..When |
| 6ce00 | 20 4c 65 61 66 32 20 72 65 63 65 69 76 65 73 20 74 68 65 20 65 63 68 6f 20 72 65 70 6c 79 20 66 | .Leaf2.receives.the.echo.reply.f |
| 6ce20 | 72 6f 6d 20 50 43 35 20 69 74 20 73 65 65 73 20 74 68 61 74 20 69 74 20 63 61 6d 65 20 66 72 6f | rom.PC5.it.sees.that.it.came.fro |
| 6ce40 | 6d 20 4c 65 61 66 33 20 61 6e 64 20 73 6f 20 72 65 6d 65 6d 62 65 72 73 20 74 68 61 74 20 50 43 | m.Leaf3.and.so.remembers.that.PC |
| 6ce60 | 35 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 4c 65 61 66 33 2e 00 50 49 4d 20 28 50 | 5.is.reachable.via.Leaf3..PIM.(P |
| 6ce80 | 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 29 20 6d | rotocol.Independent.Multicast).m |
| 6cea0 | 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 72 | ust.be.configured.in.every.inter |
| 6cec0 | 66 61 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 74 | face.of.every.participating.rout |
| 6cee0 | 65 72 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 20 | er..Every.router.must.also.have. |
| 6cf00 | 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f | the.location.of.the.Rendevouz.Po |
| 6cf20 | 69 6e 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 | int.manually.configured..Then,.u |
| 6cf40 | 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 65 | nidirectional.shared.trees.roote |
| 6cf60 | 64 20 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 | d.at.the.Rendevouz.Point.will.au |
| 6cf80 | 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 | tomatically.be.built.for.multica |
| 6cfa0 | 73 74 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 50 49 4d 20 61 6e 64 20 49 47 4d 50 00 50 49 | st.distribution..PIM.and.IGMP.PI |
| 6cfc0 | 4d 20 e2 80 93 20 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 | M.....Protocol.Independent.Multi |
| 6cfe0 | 63 61 73 74 00 50 49 4d 2d 53 4d 20 2d 20 50 49 4d 20 53 70 61 72 73 65 20 4d 6f 64 65 00 50 49 | cast.PIM-SM.-.PIM.Sparse.Mode.PI |
| 6d000 | 4d 36 20 2d 20 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 | M6.-.Protocol.Independent.Multic |
| 6d020 | 61 73 74 20 66 6f 72 20 49 50 76 36 00 50 49 4d 76 36 20 28 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 | ast.for.IPv6.PIMv6.(Protocol.Ind |
| 6d040 | 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 20 66 6f 72 20 49 50 76 36 29 20 6d 75 73 | ependent.Multicast.for.IPv6).mus |
| 6d060 | 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 | t.be.configured.in.every.interfa |
| 6d080 | 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 72 6f 75 74 65 72 | ce.of.every.participating.router |
| 6d0a0 | 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d 75 73 74 20 61 6c 73 6f 20 68 61 76 65 20 74 68 | ..Every.router.must.also.have.th |
| 6d0c0 | 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e | e.location.of.the.Rendevouz.Poin |
| 6d0e0 | 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 6e 69 | t.manually.configured..Then,.uni |
| 6d100 | 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 20 74 72 65 65 73 20 72 6f 6f 74 65 64 20 | directional.shared.trees.rooted. |
| 6d120 | 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 74 6f | at.the.Rendevouz.Point.will.auto |
| 6d140 | 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 | matically.be.built.for.multicast |
| 6d160 | 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 50 4b 49 00 50 50 44 55 00 50 50 50 20 41 64 76 61 | .distribution..PKI.PPDU.PPP.Adva |
| 6d180 | 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 50 50 50 20 53 65 74 74 69 6e 67 73 00 50 50 50 6f 45 00 | nced.Options.PPP.Settings.PPPoE. |
| 6d1a0 | 50 50 50 6f 45 20 53 65 72 76 65 72 00 50 50 50 6f 45 20 6f 70 74 69 6f 6e 73 00 50 50 54 50 2d | PPPoE.Server.PPPoE.options.PPTP- |
| 6d1c0 | 53 65 72 76 65 72 00 50 54 50 20 54 72 61 6e 73 70 6f 72 74 20 6f 66 20 4e 54 50 20 50 61 63 6b | Server.PTP.Transport.of.NTP.Pack |
| 6d1e0 | 65 74 73 00 50 61 63 6b 65 74 20 4d 6f 64 69 66 69 63 61 74 69 6f 6e 73 00 50 61 63 6b 65 74 2d | ets.Packet.Modifications.Packet- |
| 6d200 | 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 20 62 65 | based.balancing.can.lead.to.a.be |
| 6d220 | 74 74 65 72 20 62 61 6c 61 6e 63 65 20 61 63 72 6f 73 73 20 69 6e 74 65 72 66 61 63 65 73 20 77 | tter.balance.across.interfaces.w |
| 6d240 | 68 65 6e 20 6f 75 74 20 6f 66 20 6f 72 64 65 72 20 70 61 63 6b 65 74 73 20 61 72 65 20 6e 6f 20 | hen.out.of.order.packets.are.no. |
| 6d260 | 69 73 73 75 65 2e 20 50 65 72 2d 70 61 63 6b 65 74 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e | issue..Per-packet-based.balancin |
| 6d280 | 67 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 61 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c | g.can.be.set.for.a.balancing.rul |
| 6d2a0 | 65 20 77 69 74 68 3a 00 50 61 72 61 6d 65 74 65 72 73 20 62 65 67 69 6e 6e 69 6e 67 20 77 69 74 | e.with:.Parameters.beginning.wit |
| 6d2c0 | 68 20 66 73 2e 6d 71 75 65 75 65 2e 2a 00 50 61 72 61 6d 65 74 65 72 73 20 62 65 67 69 6e 6e 69 | h.fs.mqueue.*.Parameters.beginni |
| 6d2e0 | 6e 67 20 77 69 74 68 20 6e 65 74 2e 2a 20 28 6f 6e 6c 79 20 69 66 20 75 73 65 72 2d 64 65 66 69 | ng.with.net.*.(only.if.user-defi |
| 6d300 | 6e 65 64 20 6e 65 74 77 6f 72 6b 20 69 73 20 75 73 65 64 29 00 50 61 72 74 69 63 75 6c 61 72 6c | ned.network.is.used).Particularl |
| 6d320 | 79 20 6c 61 72 67 65 20 6e 65 74 77 6f 72 6b 73 20 6d 61 79 20 77 69 73 68 20 74 6f 20 72 75 6e | y.large.networks.may.wish.to.run |
| 6d340 | 20 74 68 65 69 72 20 6f 77 6e 20 52 50 4b 49 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 | .their.own.RPKI.certificate.auth |
| 6d360 | 6f 72 69 74 79 20 61 6e 64 20 70 75 62 6c 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 20 69 6e 73 | ority.and.publication.server.ins |
| 6d380 | 74 65 61 64 20 6f 66 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 76 69 61 20 74 68 65 69 | tead.of.publishing.ROAs.via.thei |
| 6d3a0 | 72 20 52 49 52 2e 20 54 68 69 73 20 69 73 20 61 20 73 75 62 6a 65 63 74 20 66 61 72 20 62 65 79 | r.RIR..This.is.a.subject.far.bey |
| 6d3c0 | 6f 6e 64 20 74 68 65 20 73 63 6f 70 65 20 6f 66 20 56 79 4f 53 27 20 64 6f 63 75 6d 65 6e 74 61 | ond.the.scope.of.VyOS'.documenta |
| 6d3e0 | 74 69 6f 6e 2e 20 43 6f 6e 73 69 64 65 72 20 72 65 61 64 69 6e 67 20 61 62 6f 75 74 20 4b 72 69 | tion..Consider.reading.about.Kri |
| 6d400 | 6c 6c 5f 20 69 66 20 74 68 69 73 20 69 73 20 61 20 72 61 62 62 69 74 20 68 6f 6c 65 20 79 6f 75 | ll_.if.this.is.a.rabbit.hole.you |
| 6d420 | 20 6e 65 65 64 20 6f 72 20 65 73 70 65 63 69 61 6c 6c 79 20 77 61 6e 74 20 74 6f 20 64 69 76 65 | .need.or.especially.want.to.dive |
| 6d440 | 20 64 6f 77 6e 2e 00 50 61 73 73 20 61 64 64 72 65 73 73 20 6f 66 20 55 6e 69 66 69 20 63 6f 6e | .down..Pass.address.of.Unifi.con |
| 6d460 | 74 72 6f 6c 6c 65 72 20 61 74 20 60 60 31 37 32 2e 31 36 2e 31 30 30 2e 31 60 60 20 74 6f 20 61 | troller.at.``172.16.100.1``.to.a |
| 6d480 | 6c 6c 20 63 6c 69 65 6e 74 73 20 6f 66 20 60 60 4e 45 54 31 60 60 00 50 61 74 68 20 60 3c 63 6f | ll.clients.of.``NET1``.Path.`<co |
| 6d4a0 | 73 74 3e 60 20 76 61 6c 75 65 20 66 6f 72 20 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f | st>`.value.for.Spanning.Tree.Pro |
| 6d4c0 | 74 6f 63 6f 6c 2e 20 45 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 61 20 62 72 69 64 67 | tocol..Each.interface.in.a.bridg |
| 6d4e0 | 65 20 63 6f 75 6c 64 20 68 61 76 65 20 61 20 64 69 66 66 65 72 65 6e 74 20 73 70 65 65 64 20 61 | e.could.have.a.different.speed.a |
| 6d500 | 6e 64 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 64 65 63 69 64 | nd.this.value.is.used.when.decid |
| 6d520 | 69 6e 67 20 77 68 69 63 68 20 6c 69 6e 6b 20 74 6f 20 75 73 65 2e 20 46 61 73 74 65 72 20 69 6e | ing.which.link.to.use..Faster.in |
| 6d540 | 74 65 72 66 61 63 65 73 20 73 68 6f 75 6c 64 20 68 61 76 65 20 6c 6f 77 65 72 20 63 6f 73 74 73 | terfaces.should.have.lower.costs |
| 6d560 | 2e 00 50 61 74 68 20 74 6f 20 60 3c 66 69 6c 65 3e 60 20 70 6f 69 6e 74 69 6e 67 20 74 6f 20 74 | ..Path.to.`<file>`.pointing.to.t |
| 6d580 | 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 63 65 72 74 69 66 69 | he.certificate.authority.certifi |
| 6d5a0 | 63 61 74 65 2e 00 50 61 74 68 20 74 6f 20 60 3c 66 69 6c 65 3e 60 20 70 6f 69 6e 74 69 6e 67 20 | cate..Path.to.`<file>`.pointing. |
| 6d5c0 | 74 6f 20 74 68 65 20 73 65 72 76 65 72 73 20 63 65 72 74 69 66 69 63 61 74 65 20 28 70 75 62 6c | to.the.servers.certificate.(publ |
| 6d5e0 | 69 63 20 70 6f 72 74 69 6f 6e 29 2e 00 50 65 65 72 20 2d 20 50 65 65 72 00 50 65 65 72 20 47 72 | ic.portion)..Peer.-.Peer.Peer.Gr |
| 6d600 | 6f 75 70 73 00 50 65 65 72 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 50 | oups.Peer.IP.address.to.match..P |
| 6d620 | 65 65 72 20 50 61 72 61 6d 65 74 65 72 73 00 50 65 65 72 20 67 72 6f 75 70 73 20 61 72 65 20 75 | eer.Parameters.Peer.groups.are.u |
| 6d640 | 73 65 64 20 74 6f 20 68 65 6c 70 20 69 6d 70 72 6f 76 65 20 73 63 61 6c 69 6e 67 20 62 79 20 67 | sed.to.help.improve.scaling.by.g |
| 6d660 | 65 6e 65 72 61 74 69 6e 67 20 74 68 65 20 73 61 6d 65 20 75 70 64 61 74 65 20 69 6e 66 6f 72 6d | enerating.the.same.update.inform |
| 6d680 | 61 74 69 6f 6e 20 74 6f 20 61 6c 6c 20 6d 65 6d 62 65 72 73 20 6f 66 20 61 20 70 65 65 72 20 67 | ation.to.all.members.of.a.peer.g |
| 6d6a0 | 72 6f 75 70 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 | roup..Note.that.this.means.that. |
| 6d6c0 | 74 68 65 20 72 6f 75 74 65 73 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 61 20 6d 65 6d 62 65 72 | the.routes.generated.by.a.member |
| 6d6e0 | 20 6f 66 20 61 20 70 65 65 72 20 67 72 6f 75 70 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 62 61 | .of.a.peer.group.will.be.sent.ba |
| 6d700 | 63 6b 20 74 6f 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 70 65 65 72 20 77 69 74 68 | ck.to.that.originating.peer.with |
| 6d720 | 20 74 68 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 69 66 69 65 72 20 61 74 74 72 69 | .the.originator.identifier.attri |
| 6d740 | 62 75 74 65 20 73 65 74 20 74 6f 20 69 6e 64 69 63 61 74 65 64 20 74 68 65 20 6f 72 69 67 69 6e | bute.set.to.indicated.the.origin |
| 6d760 | 61 74 69 6e 67 20 70 65 65 72 2e 20 41 6c 6c 20 70 65 65 72 73 20 6e 6f 74 20 61 73 73 6f 63 69 | ating.peer..All.peers.not.associ |
| 6d780 | 61 74 65 64 20 77 69 74 68 20 61 20 73 70 65 63 69 66 69 63 20 70 65 65 72 20 67 72 6f 75 70 20 | ated.with.a.specific.peer.group. |
| 6d7a0 | 61 72 65 20 74 72 65 61 74 65 64 20 61 73 20 62 65 6c 6f 6e 67 69 6e 67 20 74 6f 20 61 20 64 65 | are.treated.as.belonging.to.a.de |
| 6d7c0 | 66 61 75 6c 74 20 70 65 65 72 20 67 72 6f 75 70 2c 20 61 6e 64 20 77 69 6c 6c 20 73 68 61 72 65 | fault.peer.group,.and.will.share |
| 6d7e0 | 20 75 70 64 61 74 65 73 2e 00 50 65 65 72 20 74 6f 20 73 65 6e 64 20 75 6e 69 63 61 73 74 20 55 | .updates..Peer.to.send.unicast.U |
| 6d800 | 44 50 20 63 6f 6e 6e 74 72 61 63 6b 20 73 79 6e 63 20 65 6e 74 69 72 65 73 20 74 6f 2c 20 69 66 | DP.conntrack.sync.entires.to,.if |
| 6d820 | 20 6e 6f 74 20 75 73 69 6e 67 20 4d 75 6c 74 69 63 61 73 74 20 63 6f 6e 66 69 67 75 72 61 74 69 | .not.using.Multicast.configurati |
| 6d840 | 6f 6e 20 66 72 6f 6d 20 61 62 6f 76 65 20 61 62 6f 76 65 2e 00 50 65 65 72 73 20 43 6f 6e 66 69 | on.from.above.above..Peers.Confi |
| 6d860 | 67 75 72 61 74 69 6f 6e 00 50 65 72 20 64 65 66 61 75 6c 74 20 56 79 4f 53 73 20 68 61 73 20 6d | guration.Per.default.VyOSs.has.m |
| 6d880 | 69 6e 69 6d 61 6c 20 73 79 73 6c 6f 67 20 6c 6f 67 67 69 6e 67 20 65 6e 61 62 6c 65 64 20 77 68 | inimal.syslog.logging.enabled.wh |
| 6d8a0 | 69 63 68 20 69 73 20 73 74 6f 72 65 64 20 61 6e 64 20 72 6f 74 61 74 65 64 20 6c 6f 63 61 6c 6c | ich.is.stored.and.rotated.locall |
| 6d8c0 | 79 2e 20 45 72 72 6f 72 73 20 77 69 6c 6c 20 62 65 20 61 6c 77 61 79 73 20 6c 6f 67 67 65 64 20 | y..Errors.will.be.always.logged. |
| 6d8e0 | 74 6f 20 61 20 6c 6f 63 61 6c 20 66 69 6c 65 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 | to.a.local.file,.which.includes. |
| 6d900 | 60 6c 6f 63 61 6c 37 60 20 65 72 72 6f 72 20 6d 65 73 73 61 67 65 73 2c 20 65 6d 65 72 67 65 6e | `local7`.error.messages,.emergen |
| 6d920 | 63 79 20 6d 65 73 73 61 67 65 73 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 74 6f 20 74 68 65 20 | cy.messages.will.be.sent.to.the. |
| 6d940 | 63 6f 6e 73 6f 6c 65 2c 20 74 6f 6f 2e 00 50 65 72 20 64 65 66 61 75 6c 74 20 65 76 65 72 79 20 | console,.too..Per.default.every. |
| 6d960 | 70 61 63 6b 65 74 20 69 73 20 73 61 6d 70 6c 65 64 20 28 74 68 61 74 20 69 73 2c 20 74 68 65 20 | packet.is.sampled.(that.is,.the. |
| 6d980 | 73 61 6d 70 6c 69 6e 67 20 72 61 74 65 20 69 73 20 31 29 2e 00 50 65 72 20 64 65 66 61 75 6c 74 | sampling.rate.is.1)..Per.default |
| 6d9a0 | 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 69 73 20 62 65 69 6e 67 20 72 65 70 6c 61 | .the.user.session.is.being.repla |
| 6d9c0 | 63 65 64 20 69 66 20 61 20 73 65 63 6f 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 | ced.if.a.second.authentication.r |
| 6d9e0 | 65 71 75 65 73 74 20 73 75 63 63 65 65 64 73 2e 20 53 75 63 68 20 73 65 73 73 69 6f 6e 20 72 65 | equest.succeeds..Such.session.re |
| 6da00 | 71 75 65 73 74 73 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 64 65 6e 69 65 64 20 6f 72 20 61 | quests.can.be.either.denied.or.a |
| 6da20 | 6c 6c 6f 77 65 64 20 65 6e 74 69 72 65 6c 79 2c 20 77 68 69 63 68 20 77 6f 75 6c 64 20 61 6c 6c | llowed.entirely,.which.would.all |
| 6da40 | 6f 77 20 6d 75 6c 74 69 70 6c 65 20 73 65 73 73 69 6f 6e 73 20 66 6f 72 20 61 20 75 73 65 72 20 | ow.multiple.sessions.for.a.user. |
| 6da60 | 69 6e 20 74 68 65 20 6c 61 74 74 65 72 20 63 61 73 65 2e 20 49 66 20 69 74 20 69 73 20 64 65 6e | in.the.latter.case..If.it.is.den |
| 6da80 | 69 65 64 2c 20 74 68 65 20 73 65 63 6f 6e 64 20 73 65 73 73 69 6f 6e 20 69 73 20 62 65 69 6e 67 | ied,.the.second.session.is.being |
| 6daa0 | 20 72 65 6a 65 63 74 65 64 20 65 76 65 6e 20 69 66 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 | .rejected.even.if.the.authentica |
| 6dac0 | 74 69 6f 6e 20 73 75 63 63 65 65 64 73 2c 20 74 68 65 20 75 73 65 72 20 68 61 73 20 74 6f 20 74 | tion.succeeds,.the.user.has.to.t |
| 6dae0 | 65 72 6d 69 6e 61 74 65 20 69 74 73 20 66 69 72 73 74 20 73 65 73 73 69 6f 6e 20 61 6e 64 20 63 | erminate.its.first.session.and.c |
| 6db00 | 61 6e 20 74 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 67 61 69 6e 2e 00 50 65 | an.then.authentication.again..Pe |
| 6db20 | 72 20 64 65 66 61 75 6c 74 2c 20 69 6e 74 65 72 66 61 63 65 73 20 75 73 65 64 20 69 6e 20 61 20 | r.default,.interfaces.used.in.a. |
| 6db40 | 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 70 6f 6f 6c 20 72 65 70 6c 61 63 65 20 74 68 65 20 | load.balancing.pool.replace.the. |
| 6db60 | 73 6f 75 72 63 65 20 49 50 20 6f 66 20 65 61 63 68 20 6f 75 74 67 6f 69 6e 67 20 70 61 63 6b 65 | source.IP.of.each.outgoing.packe |
| 6db80 | 74 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 64 72 65 73 73 20 74 6f 20 65 6e 73 75 72 65 | t.with.its.own.address.to.ensure |
| 6dba0 | 20 74 68 61 74 20 72 65 70 6c 69 65 73 20 61 72 72 69 76 65 20 6f 6e 20 74 68 65 20 73 61 6d 65 | .that.replies.arrive.on.the.same |
| 6dbc0 | 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 77 6f 72 6b 73 20 74 68 72 6f 75 67 68 20 61 | .interface..This.works.through.a |
| 6dbe0 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 67 65 6e 65 72 61 74 65 64 20 73 6f 75 72 63 65 20 4e 41 | utomatically.generated.source.NA |
| 6dc00 | 54 20 28 53 4e 41 54 29 20 72 75 6c 65 73 2c 20 74 68 65 73 65 20 72 75 6c 65 73 20 61 72 65 20 | T.(SNAT).rules,.these.rules.are. |
| 6dc20 | 6f 6e 6c 79 20 61 70 70 6c 69 65 64 20 74 6f 20 62 61 6c 61 6e 63 65 64 20 74 72 61 66 66 69 63 | only.applied.to.balanced.traffic |
| 6dc40 | 2e 20 49 6e 20 63 61 73 65 73 20 77 68 65 72 65 20 74 68 69 73 20 62 65 68 61 76 69 6f 75 72 20 | ..In.cases.where.this.behaviour. |
| 6dc60 | 69 73 20 6e 6f 74 20 64 65 73 69 72 65 64 2c 20 74 68 65 20 61 75 74 6f 6d 61 74 69 63 20 67 65 | is.not.desired,.the.automatic.ge |
| 6dc80 | 6e 65 72 61 74 69 6f 6e 20 6f 66 20 53 4e 41 54 20 72 75 6c 65 73 20 63 61 6e 20 62 65 20 64 69 | neration.of.SNAT.rules.can.be.di |
| 6dca0 | 73 61 62 6c 65 64 3a 00 50 65 72 66 6f 72 6d 20 4e 41 54 20 6c 6f 6f 6b 75 70 20 62 65 66 6f 72 | sabled:.Perform.NAT.lookup.befor |
| 6dcc0 | 65 20 61 70 70 6c 79 69 6e 67 20 66 6c 6f 77 2d 69 73 6f 6c 61 74 69 6f 6e 20 72 75 6c 65 73 2e | e.applying.flow-isolation.rules. |
| 6dce0 | 00 50 65 72 66 6f 72 6d 61 6e 63 65 00 50 65 72 69 6f 64 69 63 61 6c 6c 79 2c 20 61 20 68 65 6c | .Performance.Periodically,.a.hel |
| 6dd00 | 6c 6f 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 6f 75 74 20 62 79 20 74 68 65 20 52 6f 6f | lo.packet.is.sent.out.by.the.Roo |
| 6dd20 | 74 20 42 72 69 64 67 65 20 61 6e 64 20 74 68 65 20 44 65 73 69 67 6e 61 74 65 64 20 42 72 69 64 | t.Bridge.and.the.Designated.Brid |
| 6dd40 | 67 65 73 2e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 63 | ges..Hello.packets.are.used.to.c |
| 6dd60 | 6f 6d 6d 75 6e 69 63 61 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 | ommunicate.information.about.the |
| 6dd80 | 20 74 6f 70 6f 6c 6f 67 79 20 74 68 72 6f 75 67 68 6f 75 74 20 74 68 65 20 65 6e 74 69 72 65 20 | .topology.throughout.the.entire. |
| 6dda0 | 42 72 69 64 67 65 64 20 4c 6f 63 61 6c 20 41 72 65 61 20 4e 65 74 77 6f 72 6b 2e 00 50 69 6e 67 | Bridged.Local.Area.Network..Ping |
| 6ddc0 | 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 69 6e 74 65 72 72 75 70 74 65 64 20 61 74 20 61 | .command.can.be.interrupted.at.a |
| 6dde0 | 6e 79 20 67 69 76 65 6e 20 74 69 6d 65 20 75 73 69 6e 67 20 60 60 3c 43 74 72 6c 3e 2b 63 60 60 | ny.given.time.using.``<Ctrl>+c`` |
| 6de00 | 2e 20 41 20 62 72 69 65 66 20 73 74 61 74 69 73 74 69 63 20 69 73 20 73 68 6f 77 6e 20 61 66 74 | ..A.brief.statistic.is.shown.aft |
| 6de20 | 65 72 77 61 72 64 73 2e 00 50 69 6e 67 20 75 73 65 73 20 49 43 4d 50 20 70 72 6f 74 6f 63 6f 6c | erwards..Ping.uses.ICMP.protocol |
| 6de40 | 27 73 20 6d 61 6e 64 61 74 6f 72 79 20 45 43 48 4f 5f 52 45 51 55 45 53 54 20 64 61 74 61 67 72 | 's.mandatory.ECHO_REQUEST.datagr |
| 6de60 | 61 6d 20 74 6f 20 65 6c 69 63 69 74 20 61 6e 20 49 43 4d 50 20 45 43 48 4f 5f 52 45 53 50 4f 4e | am.to.elicit.an.ICMP.ECHO_RESPON |
| 6de80 | 53 45 20 66 72 6f 6d 20 61 20 68 6f 73 74 20 6f 72 20 67 61 74 65 77 61 79 2e 20 45 43 48 4f 5f | SE.from.a.host.or.gateway..ECHO_ |
| 6dea0 | 52 45 51 55 45 53 54 20 64 61 74 61 67 72 61 6d 73 20 28 70 69 6e 67 73 29 20 77 69 6c 6c 20 68 | REQUEST.datagrams.(pings).will.h |
| 6dec0 | 61 76 65 20 61 6e 20 49 50 20 61 6e 64 20 49 43 4d 50 20 68 65 61 64 65 72 2c 20 66 6f 6c 6c 6f | ave.an.IP.and.ICMP.header,.follo |
| 6dee0 | 77 65 64 20 62 79 20 22 73 74 72 75 63 74 20 74 69 6d 65 76 61 6c 22 20 61 6e 64 20 61 6e 20 61 | wed.by."struct.timeval".and.an.a |
| 6df00 | 72 62 69 74 72 61 72 79 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 64 20 62 79 74 65 73 20 75 73 65 | rbitrary.number.of.pad.bytes.use |
| 6df20 | 64 20 74 6f 20 66 69 6c 6c 20 6f 75 74 20 74 68 65 20 70 61 63 6b 65 74 2e 00 50 69 6e 67 69 6e | d.to.fill.out.the.packet..Pingin |
| 6df40 | 67 20 28 49 50 76 36 29 20 74 68 65 20 6f 74 68 65 72 20 68 6f 73 74 20 61 6e 64 20 69 6e 74 65 | g.(IPv6).the.other.host.and.inte |
| 6df60 | 72 63 65 70 74 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 20 60 60 65 74 68 31 60 60 | rcepting.the.traffic.in.``eth1`` |
| 6df80 | 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 69 73 20 65 6e | .will.show.you.the.content.is.en |
| 6dfa0 | 63 72 79 70 74 65 64 2e 00 50 6c 61 63 65 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 67 69 76 65 | crypted..Place.interface.in.give |
| 6dfc0 | 6e 20 56 52 46 20 69 6e 73 74 61 6e 63 65 2e 00 50 6c 61 79 20 61 6e 20 61 75 64 69 62 6c 65 20 | n.VRF.instance..Play.an.audible. |
| 6dfe0 | 62 65 65 70 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 20 73 70 65 61 6b 65 72 20 77 68 65 6e 20 | beep.to.the.system.speaker.when. |
| 6e000 | 73 79 73 74 65 6d 20 69 73 20 72 65 61 64 79 2e 00 50 6c 65 61 73 65 20 62 65 20 61 77 61 72 65 | system.is.ready..Please.be.aware |
| 6e020 | 2c 20 64 75 65 20 74 6f 20 61 6e 20 75 70 73 74 72 65 61 6d 20 62 75 67 2c 20 63 6f 6e 66 69 67 | ,.due.to.an.upstream.bug,.config |
| 6e040 | 20 63 68 61 6e 67 65 73 2f 63 6f 6d 6d 69 74 73 20 77 69 6c 6c 20 72 65 73 74 61 72 74 20 74 68 | .changes/commits.will.restart.th |
| 6e060 | 65 20 70 70 70 20 64 61 65 6d 6f 6e 20 61 6e 64 20 77 69 6c 6c 20 72 65 73 65 74 20 65 78 69 73 | e.ppp.daemon.and.will.reset.exis |
| 6e080 | 74 69 6e 67 20 49 50 6f 45 20 73 65 73 73 69 6f 6e 73 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 | ting.IPoE.sessions,.in.order.to. |
| 6e0a0 | 62 65 63 6f 6d 65 20 65 66 66 65 63 74 69 76 65 2e 00 50 6c 65 61 73 65 20 62 65 20 61 77 61 72 | become.effective..Please.be.awar |
| 6e0c0 | 65 2c 20 64 75 65 20 74 6f 20 61 6e 20 75 70 73 74 72 65 61 6d 20 62 75 67 2c 20 63 6f 6e 66 69 | e,.due.to.an.upstream.bug,.confi |
| 6e0e0 | 67 20 63 68 61 6e 67 65 73 2f 63 6f 6d 6d 69 74 73 20 77 69 6c 6c 20 72 65 73 74 61 72 74 20 74 | g.changes/commits.will.restart.t |
| 6e100 | 68 65 20 70 70 70 20 64 61 65 6d 6f 6e 20 61 6e 64 20 77 69 6c 6c 20 72 65 73 65 74 20 65 78 69 | he.ppp.daemon.and.will.reset.exi |
| 6e120 | 73 74 69 6e 67 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 63 6f 6e | sting.PPPoE.connections.from.con |
| 6e140 | 6e 65 63 74 65 64 20 75 73 65 72 73 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 | nected.users,.in.order.to.become |
| 6e160 | 20 65 66 66 65 63 74 69 76 65 2e 00 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 | .effective..Please.refer.to.the. |
| 6e180 | 3a 72 65 66 3a 60 69 70 73 65 63 60 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 74 | :ref:`ipsec`.documentation.for.t |
| 6e1a0 | 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 49 50 53 65 63 20 72 65 6c 61 74 65 64 20 6f 70 74 69 | he.individual.IPSec.related.opti |
| 6e1c0 | 6f 6e 73 2e 00 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 3a 72 65 66 3a 60 74 | ons..Please.refer.to.the.:ref:`t |
| 6e1e0 | 75 6e 6e 65 6c 2d 69 6e 74 65 72 66 61 63 65 60 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 | unnel-interface`.documentation.f |
| 6e200 | 6f 72 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 74 75 6e 6e 65 6c 20 72 65 6c 61 74 65 64 | or.the.individual.tunnel.related |
| 6e220 | 20 6f 70 74 69 6f 6e 73 2e 00 50 6c 65 61 73 65 20 73 65 65 20 74 68 65 20 3a 72 65 66 3a 60 64 | .options..Please.see.the.:ref:`d |
| 6e240 | 68 63 70 2d 64 6e 73 2d 71 75 69 63 6b 2d 73 74 61 72 74 60 20 63 6f 6e 66 69 67 75 72 61 74 69 | hcp-dns-quick-start`.configurati |
| 6e260 | 6f 6e 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 20 61 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 3a 72 | on..Please.take.a.look.at.the.:r |
| 6e280 | 65 66 3a 60 76 79 6f 73 61 70 69 60 20 70 61 67 65 20 66 6f 72 20 61 6e 20 64 65 74 61 69 6c 65 | ef:`vyosapi`.page.for.an.detaile |
| 6e2a0 | 64 20 68 6f 77 2d 74 6f 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 20 61 20 6c 6f 6f 6b 20 61 74 20 | d.how-to..Please.take.a.look.at. |
| 6e2c0 | 74 68 65 20 43 6f 6e 74 72 69 62 75 74 69 6e 67 20 47 75 69 64 65 20 66 6f 72 20 6f 75 72 20 3a | the.Contributing.Guide.for.our.: |
| 6e2e0 | 72 65 66 3a 60 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 60 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 | ref:`documentation`..Please.take |
| 6e300 | 20 61 20 6c 6f 6f 6b 20 69 6e 20 74 68 65 20 41 75 74 6f 6d 61 74 69 6f 6e 20 73 65 63 74 69 6f | .a.look.in.the.Automation.sectio |
| 6e320 | 6e 20 74 6f 20 66 69 6e 64 20 73 6f 6d 65 20 75 73 65 66 75 6c 6c 20 45 78 61 6d 70 6c 65 73 2e | n.to.find.some.usefull.Examples. |
| 6e340 | 00 50 6c 65 61 73 65 2c 20 72 65 66 65 72 20 74 6f 20 61 70 70 72 6f 70 69 61 74 65 20 73 65 63 | .Please,.refer.to.appropiate.sec |
| 6e360 | 74 69 6f 6e 20 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 | tion.for.more.information.about. |
| 6e380 | 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 50 6c 65 61 73 65 2c 20 | firewall.configuration:.Please,. |
| 6e3a0 | 72 65 66 65 72 20 74 6f 20 61 70 70 72 6f 70 72 69 61 74 65 20 73 65 63 74 69 6f 6e 20 66 6f 72 | refer.to.appropriate.section.for |
| 6e3c0 | 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 66 69 72 65 77 61 6c 6c | .more.information.about.firewall |
| 6e3e0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 50 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 | .configuration:.Policies.are.use |
| 6e400 | 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 74 72 61 66 66 69 63 20 6d 61 6e 61 | d.for.filtering.and.traffic.mana |
| 6e420 | 67 65 6d 65 6e 74 2e 20 57 69 74 68 20 70 6f 6c 69 63 69 65 73 2c 20 6e 65 74 77 6f 72 6b 20 61 | gement..With.policies,.network.a |
| 6e440 | 64 6d 69 6e 69 73 74 72 61 74 6f 72 73 20 63 6f 75 6c 64 20 66 69 6c 74 65 72 20 61 6e 64 20 74 | dministrators.could.filter.and.t |
| 6e460 | 72 65 61 74 20 74 72 61 66 66 69 63 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 | reat.traffic.according.to.their. |
| 6e480 | 6e 65 65 64 73 2e 00 50 6f 6c 69 63 69 65 73 20 66 6f 72 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 | needs..Policies.for.local.traffi |
| 6e4a0 | 63 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 50 | c.are.defined.in.this.section..P |
| 6e4c0 | 6f 6c 69 63 69 65 73 2c 20 69 6e 20 56 79 4f 53 2c 20 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 | olicies,.in.VyOS,.are.implemente |
| 6e4e0 | 64 20 75 73 69 6e 67 20 46 52 52 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 72 6f 75 74 65 20 | d.using.FRR.filtering.and.route. |
| 6e500 | 6d 61 70 73 2e 20 44 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 46 52 | maps..Detailed.information.of.FR |
| 6e520 | 52 20 63 6f 75 6c 64 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 68 74 74 70 3a 2f 2f 64 6f 63 73 2e | R.could.be.found.in.http://docs. |
| 6e540 | 66 72 72 6f 75 74 69 6e 67 2e 6f 72 67 2f 00 50 6f 6c 69 63 79 00 50 6f 6c 69 63 79 20 53 65 63 | frrouting.org/.Policy.Policy.Sec |
| 6e560 | 74 69 6f 6e 73 00 50 6f 6c 69 63 79 20 66 6f 72 20 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 74 | tions.Policy.for.checking.target |
| 6e580 | 73 00 50 6f 6c 69 63 79 20 74 6f 20 74 72 61 63 6b 20 70 72 65 76 69 6f 75 73 6c 79 20 65 73 74 | s.Policy.to.track.previously.est |
| 6e5a0 | 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 50 6f 6c 69 63 79 2d 42 61 73 | ablished.connections..Policy-Bas |
| 6e5c0 | 65 64 20 52 6f 75 74 69 6e 67 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 49 53 50 20 75 70 6c | ed.Routing.with.multiple.ISP.upl |
| 6e5e0 | 69 6e 6b 73 20 28 73 6f 75 72 63 65 20 2e 2f 64 72 61 77 2e 69 6f 2f 70 62 72 5f 65 78 61 6d 70 | inks.(source../draw.io/pbr_examp |
| 6e600 | 6c 65 5f 31 2e 64 72 61 77 69 6f 29 00 50 6f 72 74 20 47 72 6f 75 70 73 00 50 6f 72 74 20 4d 69 | le_1.drawio).Port.Groups.Port.Mi |
| 6e620 | 72 72 6f 72 20 28 53 50 41 4e 29 00 50 6f 72 74 20 63 61 6c 63 75 6c 61 74 69 6f 6e 00 50 6f 72 | rror.(SPAN).Port.calculation.Por |
| 6e640 | 74 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 | t.for.Dynamic.Authorization.Exte |
| 6e660 | 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 6f 41 29 00 50 6f 72 74 20 67 72 6f 75 70 | nsion.server.(DM/CoA).Port.group |
| 6e680 | 73 20 61 72 65 20 75 73 65 66 75 6c 20 77 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 | s.are.useful.when.you.need.to.cr |
| 6e6a0 | 65 61 74 65 20 72 75 6c 65 73 20 74 68 61 74 20 61 70 70 6c 79 20 74 6f 20 73 70 65 63 69 66 69 | eate.rules.that.apply.to.specifi |
| 6e6c0 | 63 20 70 6f 72 74 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 79 6f 75 20 77 61 6e | c.ports..For.example,.if.you.wan |
| 6e6e0 | 74 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 | t.to.create.a.rule.that.monitors |
| 6e700 | 20 74 72 61 66 66 69 63 20 64 69 72 65 63 74 65 64 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 | .traffic.directed.to.a.specific. |
| 6e720 | 70 6f 72 74 20 6f 72 20 67 72 6f 75 70 20 6f 66 20 70 6f 72 74 73 2c 20 79 6f 75 20 63 61 6e 20 | port.or.group.of.ports,.you.can. |
| 6e740 | 75 73 65 20 74 68 65 20 67 72 6f 75 70 20 6e 61 6d 65 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 | use.the.group.name.instead.of.th |
| 6e760 | 65 20 61 63 74 75 61 6c 20 70 6f 72 74 2e 20 54 68 69 73 20 61 6c 73 6f 20 73 69 6d 70 6c 69 66 | e.actual.port..This.also.simplif |
| 6e780 | 69 65 73 20 72 75 6c 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 6d 61 6b 65 73 20 74 68 | ies.rule.management.and.makes.th |
| 6e7a0 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 2e 00 50 | e.configuration.more.flexible..P |
| 6e7c0 | 6f 72 74 20 6b 6e 6f 63 6b 69 6e 67 20 65 78 61 6d 70 6c 65 00 50 6f 72 74 20 6e 61 6d 65 20 61 | ort.knocking.example.Port.name.a |
| 6e7e0 | 6e 64 20 64 65 73 63 72 69 70 74 69 6f 6e 00 50 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 | nd.description.Port.number.used. |
| 6e800 | 62 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 39 32 37 33 | by.connection,.default.is.``9273 |
| 6e820 | 60 60 00 50 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 63 6f 6e 6e 65 63 74 69 6f | ``.Port.number.used.by.connectio |
| 6e840 | 6e 2e 00 50 6f 72 74 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 48 54 54 50 53 20 72 65 71 75 | n..Port.to.listen.for.HTTPS.requ |
| 6e860 | 65 73 74 73 3b 20 64 65 66 61 75 6c 74 20 34 34 33 00 50 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 | ests;.default.443.Portions.of.th |
| 6e880 | 65 20 6e 65 74 77 6f 72 6b 20 77 68 69 63 68 20 61 72 65 20 56 4c 41 4e 2d 61 77 61 72 65 20 28 | e.network.which.are.VLAN-aware.( |
| 6e8a0 | 69 2e 65 2e 2c 20 49 45 45 45 20 38 30 32 2e 31 71 5f 20 63 6f 6e 66 6f 72 6d 61 6e 74 29 20 63 | i.e.,.IEEE.802.1q_.conformant).c |
| 6e8c0 | 61 6e 20 69 6e 63 6c 75 64 65 20 56 4c 41 4e 20 74 61 67 73 2e 20 57 68 65 6e 20 61 20 66 72 61 | an.include.VLAN.tags..When.a.fra |
| 6e8e0 | 6d 65 20 65 6e 74 65 72 73 20 74 68 65 20 56 4c 41 4e 2d 61 77 61 72 65 20 70 6f 72 74 69 6f 6e | me.enters.the.VLAN-aware.portion |
| 6e900 | 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 61 20 74 61 67 20 69 73 20 61 64 64 65 64 20 | .of.the.network,.a.tag.is.added. |
| 6e920 | 74 6f 20 72 65 70 72 65 73 65 6e 74 20 74 68 65 20 56 4c 41 4e 20 6d 65 6d 62 65 72 73 68 69 70 | to.represent.the.VLAN.membership |
| 6e940 | 2e 20 45 61 63 68 20 66 72 61 6d 65 20 6d 75 73 74 20 62 65 20 64 69 73 74 69 6e 67 75 69 73 68 | ..Each.frame.must.be.distinguish |
| 6e960 | 61 62 6c 65 20 61 73 20 62 65 69 6e 67 20 77 69 74 68 69 6e 20 65 78 61 63 74 6c 79 20 6f 6e 65 | able.as.being.within.exactly.one |
| 6e980 | 20 56 4c 41 4e 2e 20 41 20 66 72 61 6d 65 20 69 6e 20 74 68 65 20 56 4c 41 4e 2d 61 77 61 72 65 | .VLAN..A.frame.in.the.VLAN-aware |
| 6e9a0 | 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 61 74 20 64 6f 65 | .portion.of.the.network.that.doe |
| 6e9c0 | 73 20 6e 6f 74 20 63 6f 6e 74 61 69 6e 20 61 20 56 4c 41 4e 20 74 61 67 20 69 73 20 61 73 73 75 | s.not.contain.a.VLAN.tag.is.assu |
| 6e9e0 | 6d 65 64 20 74 6f 20 62 65 20 66 6c 6f 77 69 6e 67 20 6f 6e 20 74 68 65 20 6e 61 74 69 76 65 20 | med.to.be.flowing.on.the.native. |
| 6ea00 | 56 4c 41 4e 2e 00 50 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 00 50 72 65 63 65 64 65 6e 63 65 | VLAN..Pre-shared.keys.Precedence |
| 6ea20 | 00 50 72 65 65 6d 70 74 69 6f 6e 00 50 72 65 66 65 72 20 61 20 73 70 65 63 69 66 69 63 20 72 6f | .Preemption.Prefer.a.specific.ro |
| 6ea40 | 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 72 6f 75 74 65 73 20 6f 76 65 72 20 61 6e 6f 74 68 | uting.protocol.routes.over.anoth |
| 6ea60 | 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 | er.routing.protocol.running.on.t |
| 6ea80 | 68 65 20 73 61 6d 65 20 72 6f 75 74 65 72 2e 00 50 72 65 66 65 72 20 68 69 67 68 65 72 20 6c 6f | he.same.router..Prefer.higher.lo |
| 6eaa0 | 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 72 6f 75 74 65 73 20 74 6f 20 6c 6f 77 65 72 2e 00 | cal.preference.routes.to.lower.. |
| 6eac0 | 50 72 65 66 65 72 20 68 69 67 68 65 72 20 6c 6f 63 61 6c 20 77 65 69 67 68 74 20 72 6f 75 74 65 | Prefer.higher.local.weight.route |
| 6eae0 | 73 20 74 6f 20 6c 6f 77 65 72 20 72 6f 75 74 65 73 2e 00 50 72 65 66 65 72 20 6c 6f 63 61 6c 20 | s.to.lower.routes..Prefer.local. |
| 6eb00 | 72 6f 75 74 65 73 20 28 73 74 61 74 69 63 73 2c 20 61 67 67 72 65 67 61 74 65 73 2c 20 72 65 64 | routes.(statics,.aggregates,.red |
| 6eb20 | 69 73 74 72 69 62 75 74 65 64 29 20 74 6f 20 72 65 63 65 69 76 65 64 20 72 6f 75 74 65 73 2e 00 | istributed).to.received.routes.. |
| 6eb40 | 50 72 65 66 65 72 20 73 68 6f 72 74 65 73 74 20 68 6f 70 2d 63 6f 75 6e 74 20 41 53 5f 50 41 54 | Prefer.shortest.hop-count.AS_PAT |
| 6eb60 | 48 73 2e 00 50 72 65 66 65 72 20 74 68 65 20 6c 6f 77 65 73 74 20 6f 72 69 67 69 6e 20 74 79 70 | Hs..Prefer.the.lowest.origin.typ |
| 6eb80 | 65 20 72 6f 75 74 65 2e 20 54 68 61 74 20 69 73 2c 20 70 72 65 66 65 72 20 49 47 50 20 6f 72 69 | e.route..That.is,.prefer.IGP.ori |
| 6eba0 | 67 69 6e 20 72 6f 75 74 65 73 20 74 6f 20 45 47 50 2c 20 74 6f 20 49 6e 63 6f 6d 70 6c 65 74 65 | gin.routes.to.EGP,.to.Incomplete |
| 6ebc0 | 20 72 6f 75 74 65 73 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 72 65 63 65 69 76 | .routes..Prefer.the.route.receiv |
| 6ebe0 | 65 64 20 66 72 6f 6d 20 61 6e 20 65 78 74 65 72 6e 61 6c 2c 20 65 42 47 50 20 70 65 65 72 20 6f | ed.from.an.external,.eBGP.peer.o |
| 6ec00 | 76 65 72 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 74 | ver.routes.received.from.other.t |
| 6ec20 | 79 70 65 73 20 6f 66 20 70 65 65 72 73 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 | ypes.of.peers..Prefer.the.route. |
| 6ec40 | 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 74 68 65 20 | received.from.the.peer.with.the. |
| 6ec60 | 68 69 67 68 65 72 20 74 72 61 6e 73 70 6f 72 74 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 2c 20 | higher.transport.layer.address,. |
| 6ec80 | 61 73 20 61 20 6c 61 73 74 2d 72 65 73 6f 72 74 20 74 69 65 2d 62 72 65 61 6b 65 72 2e 00 50 72 | as.a.last-resort.tie-breaker..Pr |
| 6eca0 | 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 6f 77 65 72 20 49 47 | efer.the.route.with.the.lower.IG |
| 6ecc0 | 50 20 63 6f 73 74 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 | P.cost..Prefer.the.route.with.th |
| 6ece0 | 65 20 6c 6f 77 65 73 74 20 60 72 6f 75 74 65 72 2d 49 44 60 2e 20 49 66 20 74 68 65 20 72 6f 75 | e.lowest.`router-ID`..If.the.rou |
| 6ed00 | 74 65 20 68 61 73 20 61 6e 20 60 4f 52 49 47 49 4e 41 54 4f 52 5f 49 44 60 20 61 74 74 72 69 62 | te.has.an.`ORIGINATOR_ID`.attrib |
| 6ed20 | 75 74 65 2c 20 74 68 72 6f 75 67 68 20 69 42 47 50 20 72 65 66 6c 65 63 74 69 6f 6e 2c 20 74 68 | ute,.through.iBGP.reflection,.th |
| 6ed40 | 65 6e 20 74 68 61 74 20 72 6f 75 74 65 72 20 49 44 20 69 73 20 75 73 65 64 2c 20 6f 74 68 65 72 | en.that.router.ID.is.used,.other |
| 6ed60 | 77 69 73 65 20 74 68 65 20 60 72 6f 75 74 65 72 2d 49 44 60 20 6f 66 20 74 68 65 20 70 65 65 72 | wise.the.`router-ID`.of.the.peer |
| 6ed80 | 20 74 68 65 20 72 6f 75 74 65 20 77 61 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 69 73 20 | .the.route.was.received.from.is. |
| 6eda0 | 75 73 65 64 2e 00 50 72 65 66 65 72 65 6e 63 65 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 | used..Preference.associated.with |
| 6edc0 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 72 00 50 72 65 66 69 78 20 43 6f 6e 76 65 | .the.default.router.Prefix.Conve |
| 6ede0 | 72 73 69 6f 6e 00 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 00 50 72 65 66 69 78 20 4c | rsion.Prefix.Delegation.Prefix.L |
| 6ee00 | 69 73 74 20 50 6f 6c 69 63 79 00 50 72 65 66 69 78 20 4c 69 73 74 73 00 50 72 65 66 69 78 20 63 | ist.Policy.Prefix.Lists.Prefix.c |
| 6ee20 | 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 66 6f 72 20 6f 6e 2d 6c 69 6e 6b 20 64 65 74 65 72 | an.not.be.used.for.on-link.deter |
| 6ee40 | 6d 69 6e 61 74 69 6f 6e 00 50 72 65 66 69 78 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 | mination.Prefix.can.not.be.used. |
| 6ee60 | 66 6f 72 20 73 74 61 74 65 6c 65 73 73 20 61 64 64 72 65 73 73 20 61 75 74 6f 2d 63 6f 6e 66 69 | for.stateless.address.auto-confi |
| 6ee80 | 67 75 72 61 74 69 6f 6e 00 50 72 65 66 69 78 20 66 69 6c 74 65 72 69 6e 67 20 63 61 6e 20 62 65 | guration.Prefix.filtering.can.be |
| 6eea0 | 20 64 6f 6e 65 20 75 73 69 6e 67 20 70 72 65 66 69 78 2d 6c 69 73 74 20 61 6e 64 20 70 72 65 66 | .done.using.prefix-list.and.pref |
| 6eec0 | 69 78 2d 6c 69 73 74 36 2e 00 50 72 65 66 69 78 20 6c 65 6e 67 74 68 20 69 6e 20 69 6e 74 65 72 | ix-list6..Prefix.length.in.inter |
| 6eee0 | 66 61 63 65 20 6d 75 73 74 20 62 65 20 65 71 75 61 6c 20 6f 72 20 62 69 67 67 65 72 20 28 69 2e | face.must.be.equal.or.bigger.(i. |
| 6ef00 | 65 2e 20 73 6d 61 6c 6c 65 72 20 6e 65 74 77 6f 72 6b 29 20 74 68 61 6e 20 70 72 65 66 69 78 20 | e..smaller.network).than.prefix. |
| 6ef20 | 6c 65 6e 67 74 68 20 69 6e 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 2e 20 46 6f 72 | length.in.network.statement..For |
| 6ef40 | 20 65 78 61 6d 70 6c 65 20 73 74 61 74 65 6d 65 6e 74 20 61 62 6f 76 65 20 64 6f 65 73 6e 27 74 | .example.statement.above.doesn't |
| 6ef60 | 20 65 6e 61 62 6c 65 20 6f 73 70 66 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 | .enable.ospf.on.interface.with.a |
| 6ef80 | 64 64 72 65 73 73 20 31 39 32 2e 31 36 38 2e 31 2e 31 2f 32 33 2c 20 62 75 74 20 69 74 20 64 6f | ddress.192.168.1.1/23,.but.it.do |
| 6efa0 | 65 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 64 64 72 65 73 73 20 31 39 32 | es.on.interface.with.address.192 |
| 6efc0 | 2e 31 36 38 2e 31 2e 31 32 39 2f 32 35 2e 00 50 72 65 66 69 78 20 6c 69 73 74 73 20 70 72 6f 76 | .168.1.129/25..Prefix.lists.prov |
| 6efe0 | 69 64 65 73 20 74 68 65 20 6d 6f 73 74 20 70 6f 77 65 72 66 75 6c 20 70 72 65 66 69 78 20 62 61 | ides.the.most.powerful.prefix.ba |
| 6f000 | 73 65 64 20 66 69 6c 74 65 72 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 2e 20 49 6e 20 61 64 64 69 | sed.filtering.mechanism..In.addi |
| 6f020 | 74 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 2d 6c 69 73 74 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 | tion.to.access-list.functionalit |
| 6f040 | 79 2c 20 69 70 20 70 72 65 66 69 78 2d 6c 69 73 74 20 68 61 73 20 70 72 65 66 69 78 20 6c 65 6e | y,.ip.prefix-list.has.prefix.len |
| 6f060 | 67 74 68 20 72 61 6e 67 65 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 2e 00 50 72 65 66 69 78 20 | gth.range.specification..Prefix. |
| 6f080 | 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 2e 00 50 72 65 66 69 78 65 73 00 50 72 65 70 65 | to.match.against..Prefixes.Prepe |
| 6f0a0 | 6e 64 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 6c 61 73 74 20 41 53 20 6e 75 6d 62 65 72 20 28 | nd.the.existing.last.AS.number.( |
| 6f0c0 | 74 68 65 20 6c 65 66 74 6d 6f 73 74 20 41 53 4e 29 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 | the.leftmost.ASN).to.the.AS_PATH |
| 6f0e0 | 2e 00 50 72 65 70 65 6e 64 20 74 68 65 20 67 69 76 65 6e 20 73 74 72 69 6e 67 20 6f 66 20 41 53 | ..Prepend.the.given.string.of.AS |
| 6f100 | 20 6e 75 6d 62 65 72 73 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 20 6f 66 20 74 68 65 20 42 | .numbers.to.the.AS_PATH.of.the.B |
| 6f120 | 47 50 20 70 61 74 68 27 73 20 4e 4c 52 49 2e 00 50 72 69 6e 63 69 70 6c 65 20 6f 66 20 53 4e 4d | GP.path's.NLRI..Principle.of.SNM |
| 6f140 | 50 20 43 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 00 50 72 69 6e 74 20 61 20 73 75 6d 6d 61 72 79 20 | P.Communication.Print.a.summary. |
| 6f160 | 6f 66 20 6e 65 69 67 68 62 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 6f 72 20 74 68 65 20 | of.neighbor.connections.for.the. |
| 6f180 | 73 70 65 63 69 66 69 65 64 20 41 46 49 2f 53 41 46 49 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 2e 00 | specified.AFI/SAFI.combination.. |
| 6f1a0 | 50 72 69 6e 74 20 61 63 74 69 76 65 20 49 50 56 34 20 6f 72 20 49 50 56 36 20 72 6f 75 74 65 73 | Print.active.IPV4.or.IPV6.routes |
| 6f1c0 | 20 61 64 76 65 72 74 69 73 65 64 20 76 69 61 20 74 68 65 20 56 50 4e 20 53 41 46 49 2e 00 50 72 | .advertised.via.the.VPN.SAFI..Pr |
| 6f1e0 | 69 6e 74 20 6f 75 74 20 74 68 65 20 6c 69 73 74 20 6f 66 20 65 78 69 73 74 69 6e 67 20 63 72 79 | int.out.the.list.of.existing.cry |
| 6f200 | 70 74 6f 20 70 6f 6c 69 63 69 65 73 00 50 72 69 6e 74 20 6f 75 74 20 74 68 65 20 6c 69 73 74 20 | pto.policies.Print.out.the.list. |
| 6f220 | 6f 66 20 65 78 69 73 74 69 6e 67 20 69 6e 2d 6b 65 72 6e 65 6c 20 63 72 79 70 74 6f 20 73 74 61 | of.existing.in-kernel.crypto.sta |
| 6f240 | 74 65 00 50 72 69 6f 72 69 74 79 00 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 00 50 72 69 6f 72 | te.Priority.Priority.Queue.Prior |
| 6f260 | 69 74 79 20 51 75 65 75 65 2c 20 61 73 20 6f 74 68 65 72 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 | ity.Queue,.as.other.non-shaping. |
| 6f280 | 70 6f 6c 69 63 69 65 73 2c 20 69 73 20 6f 6e 6c 79 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 72 | policies,.is.only.useful.if.your |
| 6f2a0 | 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 20 66 75 | .outgoing.interface.is.really.fu |
| 6f2c0 | 6c 6c 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 | ll..If.it.is.not,.VyOS.will.not. |
| 6f2e0 | 6f 77 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 | own.the.queue.and.Priority.Queue |
| 6f300 | 20 77 69 6c 6c 20 68 61 76 65 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 74 68 65 72 65 20 69 | .will.have.no.effect..If.there.i |
| 6f320 | 73 20 62 61 6e 64 77 69 64 74 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 | s.bandwidth.available.on.the.phy |
| 6f340 | 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 50 72 69 6f 72 | sical.link,.you.can.embed_.Prior |
| 6f360 | 69 74 79 20 51 75 65 75 65 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e | ity.Queue.into.a.classful.shapin |
| 6f380 | 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 | g.policy.to.make.sure.it.owns.th |
| 6f3a0 | 65 20 71 75 65 75 65 2e 20 49 6e 20 74 68 61 74 20 63 61 73 65 20 70 61 63 6b 65 74 73 20 63 61 | e.queue..In.that.case.packets.ca |
| 6f3c0 | 6e 20 62 65 20 70 72 69 6f 72 69 74 69 7a 65 64 20 62 61 73 65 64 20 6f 6e 20 44 53 43 50 2e 00 | n.be.prioritized.based.on.DSCP.. |
| 6f3e0 | 50 72 69 76 61 74 65 20 56 4c 41 4e 20 70 72 6f 78 79 20 61 72 70 2e 20 42 61 73 69 63 61 6c 6c | Private.VLAN.proxy.arp..Basicall |
| 6f400 | 79 20 61 6c 6c 6f 77 20 70 72 6f 78 79 20 61 72 70 20 72 65 70 6c 69 65 73 20 62 61 63 6b 20 74 | y.allow.proxy.arp.replies.back.t |
| 6f420 | 6f 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 20 28 66 72 6f 6d 20 77 68 69 63 68 | o.the.same.interface.(from.which |
| 6f440 | 20 74 68 65 20 41 52 50 20 72 65 71 75 65 73 74 2f 73 6f 6c 69 63 69 74 61 74 69 6f 6e 20 77 61 | .the.ARP.request/solicitation.wa |
| 6f460 | 73 20 72 65 63 65 69 76 65 64 29 2e 00 50 72 6f 66 69 6c 65 20 67 65 6e 65 72 61 74 69 6f 6e 20 | s.received)..Profile.generation. |
| 6f480 | 68 61 70 70 65 6e 73 20 66 72 6f 6d 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6c 65 76 | happens.from.the.operational.lev |
| 6f4a0 | 65 6c 20 61 6e 64 20 69 73 20 61 73 20 73 69 6d 70 6c 65 20 61 73 20 69 73 73 75 69 6e 67 20 74 | el.and.is.as.simple.as.issuing.t |
| 6f4c0 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 72 65 61 74 65 20 61 | he.following.command.to.create.a |
| 6f4e0 | 20 70 72 6f 66 69 6c 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 49 4b 45 76 32 | .profile.to.connect.to.the.IKEv2 |
| 6f500 | 20 61 63 63 65 73 73 20 73 65 72 76 65 72 20 61 74 20 60 60 76 70 6e 2e 76 79 6f 73 2e 6e 65 74 | .access.server.at.``vpn.vyos.net |
| 6f520 | 60 60 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 | ``.with.the.configuration.for.th |
| 6f540 | 65 20 60 60 72 77 60 60 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f | e.``rw``.remote-access.connectio |
| 6f560 | 6e 20 67 72 6f 75 70 2e 00 50 72 6f 6d 65 74 68 65 75 73 2d 63 6c 69 65 6e 74 00 50 72 6f 74 65 | n.group..Prometheus-client.Prote |
| 6f580 | 63 74 73 20 68 6f 73 74 20 66 72 6f 6d 20 62 72 75 74 65 2d 66 6f 72 63 65 20 61 74 74 61 63 6b | cts.host.from.brute-force.attack |
| 6f5a0 | 73 20 61 67 61 69 6e 73 74 20 53 53 48 2e 20 4c 6f 67 20 6d 65 73 73 61 67 65 73 20 61 72 65 20 | s.against.SSH..Log.messages.are. |
| 6f5c0 | 70 61 72 73 65 64 2c 20 6c 69 6e 65 2d 62 79 2d 6c 69 6e 65 2c 20 66 6f 72 20 72 65 63 6f 67 6e | parsed,.line-by-line,.for.recogn |
| 6f5e0 | 69 7a 65 64 20 70 61 74 74 65 72 6e 73 2e 20 49 66 20 61 6e 20 61 74 74 61 63 6b 2c 20 73 75 63 | ized.patterns..If.an.attack,.suc |
| 6f600 | 68 20 61 73 20 73 65 76 65 72 61 6c 20 6c 6f 67 69 6e 20 66 61 69 6c 75 72 65 73 20 77 69 74 68 | h.as.several.login.failures.with |
| 6f620 | 69 6e 20 61 20 66 65 77 20 73 65 63 6f 6e 64 73 2c 20 69 73 20 64 65 74 65 63 74 65 64 2c 20 74 | in.a.few.seconds,.is.detected,.t |
| 6f640 | 68 65 20 6f 66 66 65 6e 64 69 6e 67 20 49 50 20 69 73 20 62 6c 6f 63 6b 65 64 2e 20 4f 66 66 65 | he.offending.IP.is.blocked..Offe |
| 6f660 | 6e 64 65 72 73 20 61 72 65 20 75 6e 62 6c 6f 63 6b 65 64 20 61 66 74 65 72 20 61 20 73 65 74 20 | nders.are.unblocked.after.a.set. |
| 6f680 | 69 6e 74 65 72 76 61 6c 2e 00 50 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 77 68 69 63 68 20 65 78 70 | interval..Protocol.for.which.exp |
| 6f6a0 | 65 63 74 20 65 6e 74 72 69 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 | ect.entries.need.to.be.synchroni |
| 6f6c0 | 7a 65 64 2e 00 50 72 6f 74 6f 63 6f 6c 73 00 50 72 6f 74 6f 63 6f 6c 73 20 61 72 65 3a 20 74 63 | zed..Protocols.Protocols.are:.tc |
| 6f6e0 | 70 2c 20 73 63 74 70 2c 20 64 63 63 70 2c 20 75 64 70 2c 20 69 63 6d 70 20 61 6e 64 20 69 70 76 | p,.sctp,.dccp,.udp,.icmp.and.ipv |
| 6f700 | 36 2d 69 63 6d 70 2e 00 50 72 6f 76 69 64 65 20 54 46 54 50 20 73 65 72 76 65 72 20 6c 69 73 74 | 6-icmp..Provide.TFTP.server.list |
| 6f720 | 65 6e 69 6e 67 20 6f 6e 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 | ening.on.both.IPv4.and.IPv6.addr |
| 6f740 | 65 73 73 65 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 60 60 20 61 6e 64 20 60 60 32 30 30 31 3a 64 | esses.``192.0.2.1``.and.``2001:d |
| 6f760 | 62 38 3a 3a 31 60 60 20 73 65 72 76 69 6e 67 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 66 72 6f 6d | b8::1``.serving.the.content.from |
| 6f780 | 20 60 60 2f 63 6f 6e 66 69 67 2f 74 66 74 70 62 6f 6f 74 60 60 2e 20 55 70 6c 6f 61 64 69 6e 67 | .``/config/tftpboot``..Uploading |
| 6f7a0 | 20 76 69 61 20 54 46 54 50 20 74 6f 20 74 68 69 73 20 73 65 72 76 65 72 20 69 73 20 64 69 73 61 | .via.TFTP.to.this.server.is.disa |
| 6f7c0 | 62 6c 65 64 2e 00 50 72 6f 76 69 64 65 20 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 | bled..Provide.a.IPv4.or.IPv6.add |
| 6f7e0 | 72 65 73 73 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 00 50 72 6f 76 69 64 65 20 61 | ress.group.description.Provide.a |
| 6f800 | 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 64 65 73 63 | .IPv4.or.IPv6.network.group.desc |
| 6f820 | 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 | ription..Provide.a.description.f |
| 6f840 | 6f 72 20 65 61 63 68 20 72 75 6c 65 2e 00 50 72 6f 76 69 64 65 20 61 20 64 65 73 63 72 69 70 74 | or.each.rule..Provide.a.descript |
| 6f860 | 69 6f 6e 20 74 6f 20 74 68 65 20 66 6c 6f 77 20 74 61 62 6c 65 2e 00 50 72 6f 76 69 64 65 20 61 | ion.to.the.flow.table..Provide.a |
| 6f880 | 20 64 6f 6d 61 69 6e 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 | .domain.group.description..Provi |
| 6f8a0 | 64 65 20 61 20 6d 61 63 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 | de.a.mac.group.description..Prov |
| 6f8c0 | 69 64 65 20 61 20 70 6f 72 74 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 | ide.a.port.group.description..Pr |
| 6f8e0 | 6f 76 69 64 65 20 61 20 72 75 6c 65 2d 73 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 | ovide.a.rule-set.description.to. |
| 6f900 | 61 20 63 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 2e 00 50 72 6f 76 69 64 65 | a.custom.firewall.chain..Provide |
| 6f920 | 20 61 20 72 75 6c 65 2d 73 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 | .a.rule-set.description..Provide |
| 6f940 | 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 64 | .an.IPv4.or.IPv6.network.group.d |
| 6f960 | 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | escription..Provide.an.interface |
| 6f980 | 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 00 50 72 6f 76 69 64 65 72 20 2d 20 43 75 | .group.description.Provider.-.Cu |
| 6f9a0 | 73 74 6f 6d 65 72 00 50 72 6f 76 69 64 65 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 | stomer.Provides.a.backbone.area. |
| 6f9c0 | 63 6f 68 65 72 65 6e 63 65 20 62 79 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 65 73 74 61 62 6c | coherence.by.virtual.link.establ |
| 6f9e0 | 69 73 68 6d 65 6e 74 2e 00 50 72 6f 76 69 64 65 73 20 61 20 70 65 72 2d 64 65 76 69 63 65 20 63 | ishment..Provides.a.per-device.c |
| 6fa00 | 6f 6e 74 72 6f 6c 20 74 6f 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 20 74 68 65 20 74 68 72 | ontrol.to.enable/disable.the.thr |
| 6fa20 | 65 61 64 65 64 20 6d 6f 64 65 20 66 6f 72 20 61 6c 6c 20 74 68 65 20 4e 41 50 49 20 69 6e 73 74 | eaded.mode.for.all.the.NAPI.inst |
| 6fa40 | 61 6e 63 65 73 20 6f 66 20 74 68 65 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 | ances.of.the.given.network.devic |
| 6fa60 | 65 2c 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 66 6f 72 20 61 20 64 65 76 69 63 65 | e,.without.the.need.for.a.device |
| 6fa80 | 20 75 70 2f 64 6f 77 6e 2e 00 50 72 6f 78 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d | .up/down..Proxy.authentication.m |
| 6faa0 | 65 74 68 6f 64 2c 20 63 75 72 72 65 6e 74 6c 79 20 6f 6e 6c 79 20 4c 44 41 50 20 69 73 20 73 75 | ethod,.currently.only.LDAP.is.su |
| 6fac0 | 70 70 6f 72 74 65 64 2e 00 50 73 65 75 64 6f 20 45 74 68 65 72 6e 65 74 2f 4d 41 43 56 4c 41 4e | pported..Pseudo.Ethernet/MACVLAN |
| 6fae0 | 20 6f 70 74 69 6f 6e 73 00 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 | .options.Pseudo-Ethernet.interfa |
| 6fb00 | 63 65 73 20 63 61 6e 20 6e 6f 74 20 62 65 20 72 65 61 63 68 65 64 20 66 72 6f 6d 20 79 6f 75 72 | ces.can.not.be.reached.from.your |
| 6fb20 | 20 69 6e 74 65 72 6e 61 6c 20 68 6f 73 74 2e 20 54 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 | .internal.host..This.means.that. |
| 6fb40 | 79 6f 75 20 63 61 6e 20 6e 6f 74 20 74 72 79 20 74 6f 20 70 69 6e 67 20 61 20 50 73 65 75 64 6f | you.can.not.try.to.ping.a.Pseudo |
| 6fb60 | 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 20 66 72 6f 6d 20 74 68 65 20 68 6f 73 | -Ethernet.interface.from.the.hos |
| 6fb80 | 74 20 73 79 73 74 65 6d 20 6f 6e 20 77 68 69 63 68 20 69 74 20 69 73 20 64 65 66 69 6e 65 64 2e | t.system.on.which.it.is.defined. |
| 6fba0 | 20 54 68 65 20 70 69 6e 67 20 77 69 6c 6c 20 62 65 20 6c 6f 73 74 2e 00 50 73 65 75 64 6f 2d 45 | .The.ping.will.be.lost..Pseudo-E |
| 6fbc0 | 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 6d 61 79 20 6e 6f 74 20 77 6f 72 6b 20 | thernet.interfaces.may.not.work. |
| 6fbe0 | 69 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 77 68 69 63 68 20 65 78 70 65 63 74 20 61 20 3a | in.environments.which.expect.a.: |
| 6fc00 | 61 62 62 72 3a 60 4e 49 43 20 28 4e 65 74 77 6f 72 6b 20 49 6e 74 65 72 66 61 63 65 20 43 61 72 | abbr:`NIC.(Network.Interface.Car |
| 6fc20 | 64 29 60 20 74 6f 20 6f 6e 6c 79 20 68 61 76 65 20 61 20 73 69 6e 67 6c 65 20 61 64 64 72 65 73 | d)`.to.only.have.a.single.addres |
| 6fc40 | 73 2e 20 54 68 69 73 20 61 70 70 6c 69 65 73 20 74 6f 3a 20 2d 20 56 4d 77 61 72 65 20 6d 61 63 | s..This.applies.to:.-.VMware.mac |
| 6fc60 | 68 69 6e 65 73 20 75 73 69 6e 67 20 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 73 20 2d 20 4e | hines.using.default.settings.-.N |
| 6fc80 | 65 74 77 6f 72 6b 20 73 77 69 74 63 68 65 73 20 77 69 74 68 20 73 65 63 75 72 69 74 79 20 73 65 | etwork.switches.with.security.se |
| 6fca0 | 74 74 69 6e 67 73 20 61 6c 6c 6f 77 69 6e 67 20 6f 6e 6c 79 20 61 20 73 69 6e 67 6c 65 20 4d 41 | ttings.allowing.only.a.single.MA |
| 6fcc0 | 43 20 61 64 64 72 65 73 73 20 2d 20 78 44 53 4c 20 6d 6f 64 65 6d 73 20 74 68 61 74 20 74 72 79 | C.address.-.xDSL.modems.that.try |
| 6fce0 | 20 74 6f 20 6c 65 61 72 6e 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 | .to.learn.the.MAC.address.of.the |
| 6fd00 | 20 4e 49 43 00 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 6f 72 20 4d 41 43 56 4c 41 4e 20 | .NIC.Pseudo-Ethernet.or.MACVLAN. |
| 6fd20 | 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 73 65 65 6e 20 61 73 20 73 75 62 69 6e 74 | interfaces.can.be.seen.as.subint |
| 6fd40 | 65 72 66 61 63 65 73 20 74 6f 20 72 65 67 75 6c 61 72 20 65 74 68 65 72 6e 65 74 20 69 6e 74 65 | erfaces.to.regular.ethernet.inte |
| 6fd60 | 72 66 61 63 65 73 2e 20 45 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 73 75 62 69 6e 74 65 72 66 | rfaces..Each.and.every.subinterf |
| 6fd80 | 61 63 65 20 69 73 20 63 72 65 61 74 65 64 20 61 20 64 69 66 66 65 72 65 6e 74 20 6d 65 64 69 61 | ace.is.created.a.different.media |
| 6fda0 | 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 20 28 4d 41 43 29 20 61 64 64 72 65 73 73 2c 20 66 | .access.control.(MAC).address,.f |
| 6fdc0 | 6f 72 20 61 20 73 69 6e 67 6c 65 20 70 68 79 73 69 63 61 6c 20 45 74 68 65 72 6e 65 74 20 70 6f | or.a.single.physical.Ethernet.po |
| 6fde0 | 72 74 2e 20 50 73 65 75 64 6f 2d 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 | rt..Pseudo-.Ethernet.interfaces. |
| 6fe00 | 68 61 76 65 20 6d 6f 73 74 20 6f 66 20 74 68 65 69 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 | have.most.of.their.application.i |
| 6fe20 | 6e 20 76 69 72 74 75 61 6c 69 7a 65 64 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 2c 00 50 75 62 6c | n.virtualized.environments,.Publ |
| 6fe40 | 69 73 68 20 61 20 70 6f 72 74 20 66 6f 72 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 50 75 | ish.a.port.for.the.container..Pu |
| 6fe60 | 6c 6c 20 61 20 6e 65 77 20 69 6d 61 67 65 20 66 6f 72 20 63 6f 6e 74 61 69 6e 65 72 00 51 69 6e | ll.a.new.image.for.container.Qin |
| 6fe80 | 51 20 28 38 30 32 2e 31 61 64 29 00 51 6f 53 00 51 75 65 75 65 20 73 69 7a 65 20 66 6f 72 20 6c | Q.(802.1ad).QoS.Queue.size.for.l |
| 6fea0 | 69 73 74 65 6e 69 6e 67 20 74 6f 20 6c 6f 63 61 6c 20 63 6f 6e 6e 74 72 61 63 6b 20 65 76 65 6e | istening.to.local.conntrack.even |
| 6fec0 | 74 73 20 69 6e 20 4d 42 2e 00 51 75 65 75 65 20 73 69 7a 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 | ts.in.MB..Queue.size.for.syncing |
| 6fee0 | 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 20 69 6e 20 4d 42 2e 00 51 75 6f 74 65 73 | .conntrack.entries.in.MB..Quotes |
| 6ff00 | 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 73 69 64 65 20 70 61 72 61 6d 65 74 65 72 20 76 61 | .can.be.used.inside.parameter.va |
| 6ff20 | 6c 75 65 73 20 62 79 20 72 65 70 6c 61 63 69 6e 67 20 61 6c 6c 20 71 75 6f 74 65 20 63 68 61 72 | lues.by.replacing.all.quote.char |
| 6ff40 | 61 63 74 65 72 73 20 77 69 74 68 20 74 68 65 20 73 74 72 69 6e 67 20 60 60 26 71 75 6f 74 3b 60 | acters.with.the.string.``"` |
| 6ff60 | 60 2e 20 54 68 65 79 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 77 69 74 68 20 6c 69 | `..They.will.be.replaced.with.li |
| 6ff80 | 74 65 72 61 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 74 65 72 73 20 77 68 65 6e 20 67 65 6e 65 | teral.quote.characters.when.gene |
| 6ffa0 | 72 61 74 69 6e 67 20 64 68 63 70 64 2e 63 6f 6e 66 2e 00 52 31 20 68 61 73 20 31 39 32 2e 30 2e | rating.dhcpd.conf..R1.has.192.0. |
| 6ffc0 | 32 2e 31 2f 32 34 20 26 20 32 30 30 31 3a 64 62 38 3a 3a 31 2f 36 34 00 52 31 20 69 73 20 6d 61 | 2.1/24.&.2001:db8::1/64.R1.is.ma |
| 6ffe0 | 6e 61 67 65 64 20 74 68 72 6f 75 67 68 20 61 6e 20 6f 75 74 2d 6f 66 2d 62 61 6e 64 20 6e 65 74 | naged.through.an.out-of-band.net |
| 70000 | 77 6f 72 6b 20 74 68 61 74 20 72 65 73 69 64 65 73 20 69 6e 20 56 52 46 20 60 60 6d 67 6d 74 60 | work.that.resides.in.VRF.``mgmt` |
| 70020 | 60 00 52 31 3a 00 52 32 20 68 61 73 20 31 39 32 2e 30 2e 32 2e 32 2f 32 34 20 26 20 32 30 30 31 | `.R1:.R2.has.192.0.2.2/24.&.2001 |
| 70040 | 3a 64 62 38 3a 3a 32 2f 36 34 00 52 32 3a 00 52 41 44 49 55 53 00 52 41 44 49 55 53 20 53 65 74 | :db8::2/64.R2:.RADIUS.RADIUS.Set |
| 70060 | 75 70 00 52 41 44 49 55 53 20 61 64 76 61 6e 63 65 64 20 66 65 61 74 75 72 65 73 00 52 41 44 49 | up.RADIUS.advanced.features.RADI |
| 70080 | 55 53 20 61 64 76 61 6e 63 65 64 20 6f 70 74 69 6f 6e 73 00 52 41 44 49 55 53 20 61 75 74 68 65 | US.advanced.options.RADIUS.authe |
| 700a0 | 6e 74 69 63 61 74 69 6f 6e 00 52 41 44 49 55 53 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 | ntication.RADIUS.bandwidth.shapi |
| 700c0 | 6e 67 20 61 74 74 72 69 62 75 74 65 00 52 41 44 49 55 53 20 70 72 6f 76 69 64 65 73 20 74 68 65 | ng.attribute.RADIUS.provides.the |
| 700e0 | 20 49 50 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f | .IP.addresses.in.the.example.abo |
| 70100 | 76 65 20 76 69 61 20 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 2e 00 52 41 44 49 55 53 | ve.via.Framed-IP-Address..RADIUS |
| 70120 | 20 73 65 72 76 65 72 20 61 74 20 60 60 31 39 32 2e 31 36 38 2e 33 2e 31 30 60 60 20 77 69 74 68 | .server.at.``192.168.3.10``.with |
| 70140 | 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 60 60 56 79 4f 53 50 61 73 73 77 6f 72 64 60 60 00 | .shared-secret.``VyOSPassword``. |
| 70160 | 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 6f 75 6c 64 20 62 65 20 68 61 72 64 65 6e 65 64 | RADIUS.servers.could.be.hardened |
| 70180 | 20 62 79 20 6f 6e 6c 79 20 61 6c 6c 6f 77 69 6e 67 20 63 65 72 74 61 69 6e 20 49 50 20 61 64 64 | .by.only.allowing.certain.IP.add |
| 701a0 | 72 65 73 73 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 2e 20 41 73 20 6f 66 20 74 68 69 73 20 74 68 | resses.to.connect..As.of.this.th |
| 701c0 | 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 65 61 63 68 20 52 41 44 49 55 53 20 | e.source.address.of.each.RADIUS. |
| 701e0 | 71 75 65 72 79 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 52 41 44 49 55 53 20 | query.can.be.configured..RADIUS. |
| 70200 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 00 52 45 51 20 32 3a 20 41 20 43 47 4e 20 6d 75 73 74 | source.address.REQ.2:.A.CGN.must |
| 70220 | 20 68 61 76 65 20 61 20 64 65 66 61 75 6c 74 20 22 49 50 20 61 64 64 72 65 73 73 20 70 6f 6f 6c | .have.a.default."IP.address.pool |
| 70240 | 69 6e 67 22 20 62 65 68 61 76 69 6f 72 20 6f 66 20 22 50 61 69 72 65 64 22 2e 20 43 47 4e 20 6d | ing".behavior.of."Paired"..CGN.m |
| 70260 | 75 73 74 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 | ust.use.the.same.external.IP.add |
| 70280 | 72 65 73 73 20 6d 61 70 70 69 6e 67 20 66 6f 72 20 61 6c 6c 20 73 65 73 73 69 6f 6e 73 20 61 73 | ress.mapping.for.all.sessions.as |
| 702a0 | 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 | sociated.with.the.same.internal. |
| 702c0 | 49 50 20 61 64 64 72 65 73 73 2c 20 62 65 20 74 68 65 79 20 54 43 50 2c 20 55 44 50 2c 20 49 43 | IP.address,.be.they.TCP,.UDP,.IC |
| 702e0 | 4d 50 2c 20 73 6f 6d 65 74 68 69 6e 67 20 65 6c 73 65 2c 20 6f 72 20 61 20 6d 69 78 20 6f 66 20 | MP,.something.else,.or.a.mix.of. |
| 70300 | 64 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 52 45 51 20 33 3a 20 54 68 65 20 | different.protocols..REQ.3:.The. |
| 70320 | 43 47 4e 20 66 75 6e 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 68 61 76 65 20 61 6e 79 | CGN.function.should.not.have.any |
| 70340 | 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 6f 6e 20 74 68 65 20 73 69 7a 65 20 6f 72 20 74 68 65 20 | .limitations.on.the.size.or.the. |
| 70360 | 63 6f 6e 74 69 67 75 69 74 79 20 6f 66 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 | contiguity.of.the.external.addre |
| 70380 | 73 73 20 70 6f 6f 6c 2e 00 52 45 51 20 34 3a 20 41 20 43 47 4e 20 6d 75 73 74 20 73 75 70 70 6f | ss.pool..REQ.4:.A.CGN.must.suppo |
| 703a0 | 72 74 20 6c 69 6d 69 74 69 6e 67 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 65 78 74 65 72 6e | rt.limiting.the.number.of.extern |
| 703c0 | 61 6c 20 70 6f 72 74 73 20 28 6f 72 2c 20 65 71 75 69 76 61 6c 65 6e 74 6c 79 2c 20 22 69 64 65 | al.ports.(or,.equivalently,."ide |
| 703e0 | 6e 74 69 66 69 65 72 73 22 20 66 6f 72 20 49 43 4d 50 29 20 74 68 61 74 20 61 72 65 20 61 73 73 | ntifiers".for.ICMP).that.are.ass |
| 70400 | 69 67 6e 65 64 20 70 65 72 20 73 75 62 73 63 72 69 62 65 72 00 52 45 53 54 00 52 46 43 20 33 37 | igned.per.subscriber.REST.RFC.37 |
| 70420 | 36 38 20 63 72 65 61 74 65 73 20 61 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 | 68.creates.a.virtual.interface.. |
| 70440 | 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 74 68 65 20 64 65 73 74 69 6e 61 | If.you.want.to.apply.the.destina |
| 70460 | 74 69 6f 6e 20 4e 41 54 20 72 75 6c 65 20 74 6f 20 74 68 65 20 74 72 61 66 66 69 63 20 73 65 6e | tion.NAT.rule.to.the.traffic.sen |
| 70480 | 74 20 74 6f 20 74 68 65 20 76 69 72 74 75 61 6c 20 4d 41 43 2c 20 73 65 74 20 74 68 65 20 63 72 | t.to.the.virtual.MAC,.set.the.cr |
| 704a0 | 65 61 74 65 64 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 60 69 6e 62 6f | eated.virtual.interface.as.`inbo |
| 704c0 | 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 2e 00 52 46 43 20 33 37 36 38 20 64 65 66 69 6e 65 73 | und-interface`..RFC.3768.defines |
| 704e0 | 20 61 20 76 69 72 74 75 61 6c 20 4d 41 43 20 61 64 64 72 65 73 73 20 74 6f 20 65 61 63 68 20 56 | .a.virtual.MAC.address.to.each.V |
| 70500 | 52 52 50 20 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 69 73 20 76 69 72 74 75 61 6c | RRP.virtual.router..This.virtual |
| 70520 | 20 72 6f 75 74 65 72 20 4d 41 43 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 75 73 65 64 | .router.MAC.address.will.be.used |
| 70540 | 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 69 6e 20 61 6c 6c 20 70 65 72 69 6f 64 69 63 20 56 | .as.the.source.in.all.periodic.V |
| 70560 | 52 52 50 20 6d 65 73 73 61 67 65 73 20 73 65 6e 74 20 62 79 20 74 68 65 20 61 63 74 69 76 65 20 | RRP.messages.sent.by.the.active. |
| 70580 | 6e 6f 64 65 2e 20 57 68 65 6e 20 74 68 65 20 72 66 63 33 37 36 38 2d 63 6f 6d 70 61 74 69 62 69 | node..When.the.rfc3768-compatibi |
| 705a0 | 6c 69 74 79 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 2c 20 61 20 6e 65 77 20 56 52 52 50 20 69 | lity.option.is.set,.a.new.VRRP.i |
| 705c0 | 6e 74 65 72 66 61 63 65 20 69 73 20 63 72 65 61 74 65 64 2c 20 74 6f 20 77 68 69 63 68 20 74 68 | nterface.is.created,.to.which.th |
| 705e0 | 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 76 69 72 74 75 61 6c 20 49 50 | e.MAC.address.and.the.virtual.IP |
| 70600 | 20 61 64 64 72 65 73 73 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e | .address.is.automatically.assign |
| 70620 | 65 64 2e 00 52 46 43 20 38 36 38 20 74 69 6d 65 20 73 65 72 76 65 72 20 49 50 76 34 20 61 64 64 | ed..RFC.868.time.server.IPv4.add |
| 70640 | 72 65 73 73 00 52 49 50 00 52 49 50 76 31 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a | ress.RIP.RIPv1.as.described.in.: |
| 70660 | 72 66 63 3a 60 31 30 35 38 60 00 52 49 50 76 32 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e | rfc:`1058`.RIPv2.as.described.in |
| 70680 | 20 3a 72 66 63 3a 60 32 34 35 33 60 00 52 50 4b 49 00 52 53 2d 53 65 72 76 65 72 20 2d 20 52 53 | .:rfc:`2453`.RPKI.RS-Server.-.RS |
| 706a0 | 2d 43 6c 69 65 6e 74 00 52 53 41 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 65 72 76 | -Client.RSA.can.be.used.for.serv |
| 706c0 | 69 63 65 73 20 73 75 63 68 20 61 73 20 6b 65 79 20 65 78 63 68 61 6e 67 65 73 20 61 6e 64 20 66 | ices.such.as.key.exchanges.and.f |
| 706e0 | 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 70 75 72 70 6f 73 65 73 2e 20 54 6f 20 6d 61 6b 65 20 | or.encryption.purposes..To.make. |
| 70700 | 49 50 53 65 63 20 77 6f 72 6b 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 | IPSec.work.with.dynamic.address. |
| 70720 | 6f 6e 20 6f 6e 65 2f 62 6f 74 68 20 73 69 64 65 73 2c 20 77 65 20 77 69 6c 6c 20 68 61 76 65 20 | on.one/both.sides,.we.will.have. |
| 70740 | 74 6f 20 75 73 65 20 52 53 41 20 6b 65 79 73 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 | to.use.RSA.keys.for.authenticati |
| 70760 | 6f 6e 2e 20 54 68 65 79 20 61 72 65 20 76 65 72 79 20 66 61 73 74 20 61 6e 64 20 65 61 73 79 20 | on..They.are.very.fast.and.easy. |
| 70780 | 74 6f 20 73 65 74 75 70 2e 00 52 53 41 2d 4b 65 79 73 00 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 | to.setup..RSA-Keys.Random-Detect |
| 707a0 | 00 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 63 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 | .Random-Detect.could.be.useful.f |
| 707c0 | 6f 72 20 68 65 61 76 79 20 74 72 61 66 66 69 63 2e 20 4f 6e 65 20 75 73 65 20 6f 66 20 74 68 69 | or.heavy.traffic..One.use.of.thi |
| 707e0 | 73 20 61 6c 67 6f 72 69 74 68 6d 20 6d 69 67 68 74 20 62 65 20 74 6f 20 70 72 65 76 65 6e 74 20 | s.algorithm.might.be.to.prevent. |
| 70800 | 61 20 62 61 63 6b 62 6f 6e 65 20 6f 76 65 72 6c 6f 61 64 2e 20 42 75 74 20 6f 6e 6c 79 20 66 6f | a.backbone.overload..But.only.fo |
| 70820 | 72 20 54 43 50 20 28 62 65 63 61 75 73 65 20 64 72 6f 70 70 65 64 20 70 61 63 6b 65 74 73 20 63 | r.TCP.(because.dropped.packets.c |
| 70840 | 6f 75 6c 64 20 62 65 20 72 65 74 72 61 6e 73 6d 69 74 74 65 64 29 2c 20 6e 6f 74 20 66 6f 72 20 | ould.be.retransmitted),.not.for. |
| 70860 | 55 44 50 2e 00 52 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2c 20 64 65 66 61 75 6c 74 20 | UDP..Range.is.1.to.255,.default. |
| 70880 | 69 73 20 31 2e 00 52 61 6e 67 65 20 69 73 20 31 20 74 6f 20 33 30 30 2c 20 64 65 66 61 75 6c 74 | is.1..Range.is.1.to.300,.default |
| 708a0 | 20 69 73 20 31 30 2e 00 52 61 74 65 20 43 6f 6e 74 72 6f 6c 00 52 61 74 65 20 6c 69 6d 69 74 00 | .is.10..Rate.Control.Rate.limit. |
| 708c0 | 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 64 6f 77 6e 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 | Rate.limit.the.download.bandwidt |
| 708e0 | 68 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 64 74 68 3e 60 20 | h.for.`<user>`.to.`<bandwidth>`. |
| 70900 | 6b 62 69 74 2f 73 2e 00 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 75 70 6c 6f 61 64 20 62 61 | kbit/s..Rate.limit.the.upload.ba |
| 70920 | 6e 64 77 69 64 74 68 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 | ndwidth.for.`<user>`.to.`<bandwi |
| 70940 | 64 74 68 3e 60 20 6b 62 69 74 2f 73 00 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 75 70 6c 6f | dth>`.kbit/s.Rate.limit.the.uplo |
| 70960 | 61 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 | ad.bandwidth.for.`<user>`.to.`<b |
| 70980 | 61 6e 64 77 69 64 74 68 3e 60 20 6b 62 69 74 2f 73 2e 00 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 | andwidth>`.kbit/s..Rate-Control. |
| 709a0 | 69 73 20 61 20 43 50 55 2d 66 72 69 65 6e 64 6c 79 20 70 6f 6c 69 63 79 2e 20 59 6f 75 20 6d 69 | is.a.CPU-friendly.policy..You.mi |
| 709c0 | 67 68 74 20 63 6f 6e 73 69 64 65 72 20 75 73 69 6e 67 20 69 74 20 77 68 65 6e 20 79 6f 75 20 6a | ght.consider.using.it.when.you.j |
| 709e0 | 75 73 74 20 73 69 6d 70 6c 79 20 77 61 6e 74 20 74 6f 20 73 6c 6f 77 20 74 72 61 66 66 69 63 20 | ust.simply.want.to.slow.traffic. |
| 70a00 | 64 6f 77 6e 2e 00 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 69 73 20 61 20 63 6c 61 73 73 6c 65 73 | down..Rate-Control.is.a.classles |
| 70a20 | 73 20 70 6f 6c 69 63 79 20 74 68 61 74 20 6c 69 6d 69 74 73 20 74 68 65 20 70 61 63 6b 65 74 20 | s.policy.that.limits.the.packet. |
| 70a40 | 66 6c 6f 77 20 74 6f 20 61 20 73 65 74 20 72 61 74 65 2e 20 49 74 20 69 73 20 61 20 70 75 72 65 | flow.to.a.set.rate..It.is.a.pure |
| 70a60 | 20 73 68 61 70 65 72 2c 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 73 63 68 65 64 75 6c 65 20 74 72 | .shaper,.it.does.not.schedule.tr |
| 70a80 | 61 66 66 69 63 2e 20 54 72 61 66 66 69 63 20 69 73 20 66 69 6c 74 65 72 65 64 20 62 61 73 65 64 | affic..Traffic.is.filtered.based |
| 70aa0 | 20 6f 6e 20 74 68 65 20 65 78 70 65 6e 64 69 74 75 72 65 20 6f 66 20 74 6f 6b 65 6e 73 2e 20 54 | .on.the.expenditure.of.tokens..T |
| 70ac0 | 6f 6b 65 6e 73 20 72 6f 75 67 68 6c 79 20 63 6f 72 72 65 73 70 6f 6e 64 20 74 6f 20 62 79 74 65 | okens.roughly.correspond.to.byte |
| 70ae0 | 73 2e 00 52 61 77 20 50 61 72 61 6d 65 74 65 72 73 00 52 61 77 20 70 61 72 61 6d 65 74 65 72 73 | s..Raw.Parameters.Raw.parameters |
| 70b00 | 20 63 61 6e 20 62 65 20 70 61 73 73 65 64 20 74 6f 20 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b | .can.be.passed.to.shared-network |
| 70b20 | 2d 6e 61 6d 65 2c 20 73 75 62 6e 65 74 20 61 6e 64 20 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 | -name,.subnet.and.static-mapping |
| 70b40 | 3a 00 52 65 2d 67 65 6e 65 72 61 74 65 64 20 61 20 6b 6e 6f 77 6e 20 70 75 62 2f 70 72 69 76 61 | :.Re-generated.a.known.pub/priva |
| 70b60 | 74 65 20 6b 65 79 66 69 6c 65 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 | te.keyfile.which.can.be.used.to. |
| 70b80 | 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 74 68 65 72 20 73 65 72 76 69 63 65 73 20 28 65 2e 67 2e 20 | connect.to.other.services.(e.g.. |
| 70ba0 | 52 50 4b 49 20 63 61 63 68 65 29 2e 00 52 65 2d 67 65 6e 65 72 61 74 65 64 20 74 68 65 20 70 75 | RPKI.cache)..Re-generated.the.pu |
| 70bc0 | 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 70 6f 72 74 69 6f 6e 20 77 68 69 63 68 20 53 53 | blic/private.keyportion.which.SS |
| 70be0 | 48 20 75 73 65 73 20 74 6f 20 73 65 63 75 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 52 65 | H.uses.to.secure.connections..Re |
| 70c00 | 61 63 68 61 62 6c 65 20 54 69 6d 65 00 52 65 61 6c 20 73 65 72 76 65 72 00 52 65 61 6c 20 73 65 | achable.Time.Real.server.Real.se |
| 70c20 | 72 76 65 72 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 00 52 65 61 6c 20 73 65 | rver.IP.address.and.port.Real.se |
| 70c40 | 72 76 65 72 20 69 73 20 61 75 74 6f 2d 65 78 63 6c 75 64 65 64 20 69 66 20 70 6f 72 74 20 63 68 | rver.is.auto-excluded.if.port.ch |
| 70c60 | 65 63 6b 20 77 69 74 68 20 74 68 69 73 20 73 65 72 76 65 72 20 66 61 69 6c 2e 00 52 65 63 65 69 | eck.with.this.server.fail..Recei |
| 70c80 | 76 65 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 63 72 65 61 | ve.traffic.from.connections.crea |
| 70ca0 | 74 65 64 20 62 79 20 74 68 65 20 73 65 72 76 65 72 20 69 73 20 61 6c 73 6f 20 62 61 6c 61 6e 63 | ted.by.the.server.is.also.balanc |
| 70cc0 | 65 64 2e 20 57 68 65 6e 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 20 73 65 6e 64 73 20 | ed..When.the.local.system.sends. |
| 70ce0 | 61 6e 20 41 52 50 20 52 65 71 75 65 73 74 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 64 72 69 76 65 | an.ARP.Request.the.bonding.drive |
| 70d00 | 72 20 63 6f 70 69 65 73 20 61 6e 64 20 73 61 76 65 73 20 74 68 65 20 70 65 65 72 27 73 20 49 50 | r.copies.and.saves.the.peer's.IP |
| 70d20 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 41 52 50 20 70 61 63 6b 65 74 | .information.from.the.ARP.packet |
| 70d40 | 2e 20 57 68 65 6e 20 74 68 65 20 41 52 50 20 52 65 70 6c 79 20 61 72 72 69 76 65 73 20 66 72 6f | ..When.the.ARP.Reply.arrives.fro |
| 70d60 | 6d 20 74 68 65 20 70 65 65 72 2c 20 69 74 73 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 | m.the.peer,.its.hardware.address |
| 70d80 | 20 69 73 20 72 65 74 72 69 65 76 65 64 20 61 6e 64 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 64 72 | .is.retrieved.and.the.bonding.dr |
| 70da0 | 69 76 65 72 20 69 6e 69 74 69 61 74 65 73 20 61 6e 20 41 52 50 20 72 65 70 6c 79 20 74 6f 20 74 | iver.initiates.an.ARP.reply.to.t |
| 70dc0 | 68 69 73 20 70 65 65 72 20 61 73 73 69 67 6e 69 6e 67 20 69 74 20 74 6f 20 6f 6e 65 20 6f 66 20 | his.peer.assigning.it.to.one.of. |
| 70de0 | 74 68 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 2e 20 41 20 70 72 6f 62 6c 65 | the.slaves.in.the.bond..A.proble |
| 70e00 | 6d 61 74 69 63 20 6f 75 74 63 6f 6d 65 20 6f 66 20 75 73 69 6e 67 20 41 52 50 20 6e 65 67 6f 74 | matic.outcome.of.using.ARP.negot |
| 70e20 | 69 61 74 69 6f 6e 20 66 6f 72 20 62 61 6c 61 6e 63 69 6e 67 20 69 73 20 74 68 61 74 20 65 61 63 | iation.for.balancing.is.that.eac |
| 70e40 | 68 20 74 69 6d 65 20 74 68 61 74 20 61 6e 20 41 52 50 20 72 65 71 75 65 73 74 20 69 73 20 62 72 | h.time.that.an.ARP.request.is.br |
| 70e60 | 6f 61 64 63 61 73 74 20 69 74 20 75 73 65 73 20 74 68 65 20 68 61 72 64 77 61 72 65 20 61 64 64 | oadcast.it.uses.the.hardware.add |
| 70e80 | 72 65 73 73 20 6f 66 20 74 68 65 20 62 6f 6e 64 2e 20 48 65 6e 63 65 2c 20 70 65 65 72 73 20 6c | ress.of.the.bond..Hence,.peers.l |
| 70ea0 | 65 61 72 6e 20 74 68 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 | earn.the.hardware.address.of.the |
| 70ec0 | 20 62 6f 6e 64 20 61 6e 64 20 74 68 65 20 62 61 6c 61 6e 63 69 6e 67 20 6f 66 20 72 65 63 65 69 | .bond.and.the.balancing.of.recei |
| 70ee0 | 76 65 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 61 70 73 65 73 20 74 6f 20 74 68 65 20 63 75 72 72 | ve.traffic.collapses.to.the.curr |
| 70f00 | 65 6e 74 20 73 6c 61 76 65 2e 20 54 68 69 73 20 69 73 20 68 61 6e 64 6c 65 64 20 62 79 20 73 65 | ent.slave..This.is.handled.by.se |
| 70f20 | 6e 64 69 6e 67 20 75 70 64 61 74 65 73 20 28 41 52 50 20 52 65 70 6c 69 65 73 29 20 74 6f 20 61 | nding.updates.(ARP.Replies).to.a |
| 70f40 | 6c 6c 20 74 68 65 20 70 65 65 72 73 20 77 69 74 68 20 74 68 65 69 72 20 69 6e 64 69 76 69 64 75 | ll.the.peers.with.their.individu |
| 70f60 | 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 73 | ally.assigned.hardware.address.s |
| 70f80 | 75 63 68 20 74 68 61 74 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 72 65 64 69 73 74 72 69 | uch.that.the.traffic.is.redistri |
| 70fa0 | 62 75 74 65 64 2e 20 52 65 63 65 69 76 65 20 74 72 61 66 66 69 63 20 69 73 20 61 6c 73 6f 20 72 | buted..Receive.traffic.is.also.r |
| 70fc0 | 65 64 69 73 74 72 69 62 75 74 65 64 20 77 68 65 6e 20 61 20 6e 65 77 20 73 6c 61 76 65 20 69 73 | edistributed.when.a.new.slave.is |
| 70fe0 | 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 62 6f 6e 64 20 61 6e 64 20 77 68 65 6e 20 61 6e 20 69 | .added.to.the.bond.and.when.an.i |
| 71000 | 6e 61 63 74 69 76 65 20 73 6c 61 76 65 20 69 73 20 72 65 2d 61 63 74 69 76 61 74 65 64 2e 20 54 | nactive.slave.is.re-activated..T |
| 71020 | 68 65 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 69 73 20 64 69 73 74 72 69 62 75 74 65 64 20 73 | he.receive.load.is.distributed.s |
| 71040 | 65 71 75 65 6e 74 69 61 6c 6c 79 20 28 72 6f 75 6e 64 20 72 6f 62 69 6e 29 20 61 6d 6f 6e 67 20 | equentially.(round.robin).among. |
| 71060 | 74 68 65 20 67 72 6f 75 70 20 6f 66 20 68 69 67 68 65 73 74 20 73 70 65 65 64 20 73 6c 61 76 65 | the.group.of.highest.speed.slave |
| 71080 | 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 2e 00 52 65 63 65 69 76 65 64 20 52 41 44 49 55 53 20 61 | s.in.the.bond..Received.RADIUS.a |
| 710a0 | 74 74 72 69 62 75 74 65 73 20 68 61 76 65 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 | ttributes.have.a.higher.priority |
| 710c0 | 20 74 68 61 6e 20 70 61 72 61 6d 65 74 65 72 73 20 64 65 66 69 6e 65 64 20 77 69 74 68 69 6e 20 | .than.parameters.defined.within. |
| 710e0 | 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 72 65 66 65 72 20 74 6f 20 | the.CLI.configuration,.refer.to. |
| 71100 | 74 68 65 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 62 65 6c 6f 77 2e 00 52 65 63 6f 6d 6d 65 6e 64 | the.explanation.below..Recommend |
| 71120 | 65 64 20 66 6f 72 20 6c 61 72 67 65 72 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 52 65 63 | ed.for.larger.installations..Rec |
| 71140 | 6f 72 64 20 74 79 70 65 73 00 52 65 64 69 72 65 63 74 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 | ord.types.Redirect.HTTP.to.HTTPS |
| 71160 | 00 52 65 64 69 72 65 63 74 20 4d 69 63 72 6f 73 6f 66 74 20 52 44 50 20 74 72 61 66 66 69 63 20 | .Redirect.Microsoft.RDP.traffic. |
| 71180 | 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 28 4c 41 4e 2c 20 70 72 69 76 61 74 65 29 | from.the.internal.(LAN,.private) |
| 711a0 | 20 6e 65 74 77 6f 72 6b 20 76 69 61 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e | .network.via.:ref:`destination-n |
| 711c0 | 61 74 60 20 69 6e 20 72 75 6c 65 20 31 31 30 20 74 6f 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2c | at`.in.rule.110.to.the.internal, |
| 711e0 | 20 70 72 69 76 61 74 65 20 68 6f 73 74 20 31 39 32 2e 30 2e 32 2e 34 30 2e 20 57 65 20 61 6c 73 | .private.host.192.0.2.40..We.als |
| 71200 | 6f 20 6e 65 65 64 20 61 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 72 75 6c 65 20 | o.need.a.:ref:`source-nat`.rule. |
| 71220 | 31 31 30 20 66 6f 72 20 74 68 65 20 72 65 76 65 72 73 65 20 70 61 74 68 20 6f 66 20 74 68 65 20 | 110.for.the.reverse.path.of.the. |
| 71240 | 74 72 61 66 66 69 63 2e 20 54 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 31 39 | traffic..The.internal.network.19 |
| 71260 | 32 2e 30 2e 32 2e 30 2f 32 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 69 6e 74 65 | 2.0.2.0/24.is.reachable.via.inte |
| 71280 | 72 66 61 63 65 20 60 65 74 68 30 2e 31 30 60 2e 00 52 65 64 69 72 65 63 74 20 4d 69 63 72 6f 73 | rface.`eth0.10`..Redirect.Micros |
| 712a0 | 6f 66 74 20 52 44 50 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 65 20 6f 75 74 73 69 64 65 | oft.RDP.traffic.from.the.outside |
| 712c0 | 20 28 57 41 4e 2c 20 65 78 74 65 72 6e 61 6c 29 20 77 6f 72 6c 64 20 76 69 61 20 3a 72 65 66 3a | .(WAN,.external).world.via.:ref: |
| 712e0 | 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 69 6e 20 72 75 6c 65 20 31 30 30 20 74 6f | `destination-nat`.in.rule.100.to |
| 71300 | 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2c 20 70 72 69 76 61 74 65 20 68 6f 73 74 20 31 39 32 2e | .the.internal,.private.host.192. |
| 71320 | 30 2e 32 2e 34 30 2e 00 52 65 64 69 72 65 63 74 20 55 52 4c 20 74 6f 20 61 20 6e 65 77 20 6c 6f | 0.2.40..Redirect.URL.to.a.new.lo |
| 71340 | 63 61 74 69 6f 6e 00 52 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 | cation.Redistribution.Configurat |
| 71360 | 69 6f 6e 00 52 65 64 75 6e 64 61 6e 63 79 20 61 6e 64 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 2e | ion.Redundancy.and.load.sharing. |
| 71380 | 20 54 68 65 72 65 20 61 72 65 20 6d 75 6c 74 69 70 6c 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 | .There.are.multiple.NAT66.device |
| 713a0 | 73 20 61 74 20 74 68 65 20 65 64 67 65 20 6f 66 20 61 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b | s.at.the.edge.of.an.IPv6.network |
| 713c0 | 20 74 6f 20 61 6e 6f 74 68 65 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 70 61 | .to.another.IPv6.network..The.pa |
| 713e0 | 74 68 20 74 68 72 6f 75 67 68 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 74 6f 20 61 | th.through.the.NAT66.device.to.a |
| 71400 | 6e 6f 74 68 65 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 66 6f 72 6d 73 20 61 6e 20 65 71 75 | nother.IPv6.network.forms.an.equ |
| 71420 | 69 76 61 6c 65 6e 74 20 72 6f 75 74 65 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 | ivalent.route,.and.traffic.can.b |
| 71440 | 65 20 6c 6f 61 64 2d 73 68 61 72 65 64 20 6f 6e 20 74 68 65 73 65 20 4e 41 54 36 36 20 64 65 76 | e.load-shared.on.these.NAT66.dev |
| 71460 | 69 63 65 73 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 | ices..In.this.case,.you.can.conf |
| 71480 | 69 67 75 72 65 20 74 68 65 20 73 61 6d 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 74 72 | igure.the.same.source.address.tr |
| 714a0 | 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 73 20 6f 6e 20 74 68 65 73 65 20 4e 41 54 36 36 20 64 | anslation.rules.on.these.NAT66.d |
| 714c0 | 65 76 69 63 65 73 2c 20 73 6f 20 74 68 61 74 20 61 6e 79 20 4e 41 54 36 36 20 64 65 76 69 63 65 | evices,.so.that.any.NAT66.device |
| 714e0 | 20 63 61 6e 20 68 61 6e 64 6c 65 20 49 50 76 36 20 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e | .can.handle.IPv6.traffic.between |
| 71500 | 20 64 69 66 66 65 72 65 6e 74 20 73 69 74 65 73 2e 00 52 65 67 69 73 74 65 72 20 44 4e 53 20 72 | .different.sites..Register.DNS.r |
| 71520 | 65 63 6f 72 64 20 60 60 65 78 61 6d 70 6c 65 2e 76 79 6f 73 2e 69 6f 60 60 20 6f 6e 20 44 4e 53 | ecord.``example.vyos.io``.on.DNS |
| 71540 | 20 73 65 72 76 65 72 20 60 60 6e 73 31 2e 76 79 6f 73 2e 69 6f 60 60 00 52 65 67 75 6c 61 72 20 | .server.``ns1.vyos.io``.Regular. |
| 71560 | 56 4c 41 4e 73 20 28 38 30 32 2e 31 71 29 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f | VLANs.(802.1q).Regular.expressio |
| 71580 | 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c | n.to.match.against.a.community-l |
| 715a0 | 69 73 74 2e 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 | ist..Regular.expression.to.match |
| 715c0 | 20 61 67 61 69 6e 73 74 20 61 20 6c 61 72 67 65 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2e | .against.a.large.community.list. |
| 715e0 | 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 | .Regular.expression.to.match.aga |
| 71600 | 69 6e 73 74 20 61 6e 20 41 53 20 70 61 74 68 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 22 36 34 | inst.an.AS.path..For.example."64 |
| 71620 | 35 30 31 20 36 34 35 30 32 22 2e 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 | 501.64502"..Regular.expression.t |
| 71640 | 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 6e 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d | o.match.against.an.extended.comm |
| 71660 | 75 6e 69 74 79 20 6c 69 73 74 2c 20 77 68 65 72 65 20 74 65 78 74 20 63 6f 75 6c 64 20 62 65 3a | unity.list,.where.text.could.be: |
| 71680 | 00 52 65 6a 65 63 74 20 44 48 43 50 20 6c 65 61 73 65 73 20 66 72 6f 6d 20 61 20 67 69 76 65 6e | .Reject.DHCP.leases.from.a.given |
| 716a0 | 20 61 64 64 72 65 73 73 20 6f 72 20 72 61 6e 67 65 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 | .address.or.range..This.is.usefu |
| 716c0 | 6c 20 77 68 65 6e 20 61 20 6d 6f 64 65 6d 20 67 69 76 65 73 20 61 20 6c 6f 63 61 6c 20 49 50 20 | l.when.a.modem.gives.a.local.IP. |
| 716e0 | 77 68 65 6e 20 66 69 72 73 74 20 73 74 61 72 74 69 6e 67 2e 00 52 65 6d 65 6d 62 65 72 20 73 6f | when.first.starting..Remember.so |
| 71700 | 75 72 63 65 20 49 50 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 66 6f 72 65 20 72 65 73 65 74 20 | urce.IP.in.seconds.before.reset. |
| 71720 | 74 68 65 69 72 20 73 63 6f 72 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 38 30 30 | their.score..The.default.is.1800 |
| 71740 | 2e 00 52 65 6d 6f 74 65 20 41 63 63 65 73 73 00 52 65 6d 6f 74 65 20 41 63 63 65 73 73 20 22 52 | ..Remote.Access.Remote.Access."R |
| 71760 | 6f 61 64 57 61 72 72 69 6f 72 22 20 45 78 61 6d 70 6c 65 00 52 65 6d 6f 74 65 20 41 63 63 65 73 | oadWarrior".Example.Remote.Acces |
| 71780 | 73 20 22 52 6f 61 64 57 61 72 72 69 6f 72 22 20 63 6c 69 65 6e 74 73 00 52 65 6d 6f 74 65 20 43 | s."RoadWarrior".clients.Remote.C |
| 717a0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 2d 20 41 6e 6e 6f 74 61 74 65 64 3a 00 52 65 6d 6f 74 65 | onfiguration.-.Annotated:.Remote |
| 717c0 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 52 65 6d 6f 74 65 20 48 6f 73 74 00 52 65 6d 6f | .Configuration:.Remote.Host.Remo |
| 717e0 | 74 65 20 4c 6f 6b 69 20 70 6f 72 74 00 52 65 6d 6f 74 65 20 4c 6f 6b 69 20 75 72 6c 00 52 65 6d | te.Loki.port.Remote.Loki.url.Rem |
| 71800 | 6f 74 65 20 55 52 4c 00 52 65 6d 6f 74 65 20 55 52 4c 20 74 6f 20 53 70 6c 75 6e 6b 20 63 6f 6c | ote.URL.Remote.URL.to.Splunk.col |
| 71820 | 6c 65 63 74 6f 72 00 52 65 6d 6f 74 65 20 55 52 4c 2e 00 52 65 6d 6f 74 65 20 60 60 49 6e 66 6c | lector.Remote.URL..Remote.``Infl |
| 71840 | 75 78 44 42 60 60 20 62 75 63 6b 65 74 20 6e 61 6d 65 00 52 65 6d 6f 74 65 20 64 61 74 61 62 61 | uxDB``.bucket.name.Remote.databa |
| 71860 | 73 65 20 6e 61 6d 65 2e 00 52 65 6d 6f 74 65 20 70 65 65 72 20 49 50 20 60 3c 61 64 64 72 65 73 | se.name..Remote.peer.IP.`<addres |
| 71880 | 73 3e 60 20 6f 66 20 74 68 65 20 73 65 63 6f 6e 64 20 44 48 43 50 20 73 65 72 76 65 72 20 69 6e | s>`.of.the.second.DHCP.server.in |
| 718a0 | 20 74 68 69 73 20 48 41 20 63 6c 75 73 74 65 72 2e 00 52 65 6d 6f 74 65 20 70 65 65 72 20 49 50 | .this.HA.cluster..Remote.peer.IP |
| 718c0 | 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 73 65 63 6f 6e 64 20 44 48 43 50 20 | .`<address>`.of.the.second.DHCP. |
| 718e0 | 73 65 72 76 65 72 20 69 6e 20 74 68 69 73 20 66 61 69 6c 6f 76 65 72 20 63 6c 75 73 74 65 72 2e | server.in.this.failover.cluster. |
| 71900 | 00 52 65 6d 6f 74 65 20 70 6f 72 74 00 52 65 6d 6f 74 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e | .Remote.port.Remote.transmission |
| 71920 | 20 69 6e 74 65 72 76 61 6c 20 77 69 6c 6c 20 62 65 20 6d 75 6c 74 69 70 6c 69 65 64 20 62 79 20 | .interval.will.be.multiplied.by. |
| 71940 | 74 68 69 73 20 76 61 6c 75 65 00 52 65 6e 61 6d 69 6e 67 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 | this.value.Renaming.clients.inte |
| 71960 | 72 66 61 63 65 73 20 62 79 20 52 41 44 49 55 53 00 52 65 70 65 61 74 20 74 68 65 20 70 72 6f 63 | rfaces.by.RADIUS.Repeat.the.proc |
| 71980 | 65 64 75 72 65 20 6f 6e 20 74 68 65 20 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 00 52 65 70 6c 61 | edure.on.the.other.router..Repla |
| 719a0 | 79 20 70 72 6f 74 65 63 74 69 6f 6e 00 52 65 71 75 65 73 74 20 6f 6e 6c 79 20 61 20 74 65 6d 70 | y.protection.Request.only.a.temp |
| 719c0 | 6f 72 61 72 79 20 61 64 64 72 65 73 73 20 61 6e 64 20 6e 6f 74 20 66 6f 72 6d 20 61 6e 20 49 41 | orary.address.and.not.form.an.IA |
| 719e0 | 5f 4e 41 20 28 49 64 65 6e 74 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 20 66 6f 72 20 4e 6f | _NA.(Identity.Association.for.No |
| 71a00 | 6e 2d 74 65 6d 70 6f 72 61 72 79 20 41 64 64 72 65 73 73 65 73 29 20 70 61 72 74 6e 65 72 73 68 | n-temporary.Addresses).partnersh |
| 71a20 | 69 70 2e 00 52 65 71 75 65 73 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 20 74 68 72 6f 75 | ip..Requests.are.forwarded.throu |
| 71a40 | 67 68 20 60 60 65 74 68 32 60 60 20 61 73 20 74 68 65 20 60 75 70 73 74 72 65 61 6d 20 69 6e 74 | gh.``eth2``.as.the.`upstream.int |
| 71a60 | 65 72 66 61 63 65 60 00 52 65 71 75 69 72 65 20 74 68 65 20 70 65 65 72 20 74 6f 20 61 75 74 68 | erface`.Require.the.peer.to.auth |
| 71a80 | 65 6e 74 69 63 61 74 65 20 69 74 73 65 6c 66 20 75 73 69 6e 67 20 6f 6e 65 20 6f 66 20 74 68 65 | enticate.itself.using.one.of.the |
| 71aa0 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 3a 20 70 61 70 2c 20 63 68 61 70 2c | .following.protocols:.pap,.chap, |
| 71ac0 | 20 6d 73 63 68 61 70 2c 20 6d 73 63 68 61 70 2d 76 32 2e 00 52 65 71 75 69 72 65 6d 65 6e 74 73 | .mschap,.mschap-v2..Requirements |
| 71ae0 | 00 52 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 65 6e 61 62 6c 65 20 73 79 6e 70 72 6f 78 79 | .Requirements.to.enable.synproxy |
| 71b00 | 3a 00 52 65 71 75 69 72 65 6d 65 6e 74 73 3a 00 52 65 73 65 72 76 65 64 20 50 6f 72 74 73 3a 20 | :.Requirements:.Reserved.Ports:. |
| 71b20 | 41 73 73 75 6d 65 20 31 30 32 34 20 70 6f 72 74 73 20 61 72 65 20 72 65 73 65 72 76 65 64 20 66 | Assume.1024.ports.are.reserved.f |
| 71b40 | 6f 72 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 73 65 72 76 69 63 65 73 20 61 6e 64 20 61 64 6d 69 6e | or.well-known.services.and.admin |
| 71b60 | 69 73 74 72 61 74 69 76 65 20 70 75 72 70 6f 73 65 73 2e 00 52 65 73 65 74 00 52 65 73 65 74 20 | istrative.purposes..Reset.Reset. |
| 71b80 | 4f 70 65 6e 56 50 4e 00 52 65 73 65 74 20 61 6c 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 49 | OpenVPN.Reset.all.site-to-site.I |
| 71ba0 | 50 53 65 63 20 56 50 4e 20 73 65 73 73 69 6f 6e 73 2e 20 49 74 20 74 65 72 6d 69 6e 61 74 65 73 | PSec.VPN.sessions..It.terminates |
| 71bc0 | 20 61 6c 6c 20 61 63 74 69 76 65 20 63 68 69 6c 64 5f 73 61 20 61 6e 64 20 72 65 69 6e 69 74 69 | .all.active.child_sa.and.reiniti |
| 71be0 | 61 74 65 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 52 65 73 65 74 20 61 6c 6c 20 74 | ates.the.connection..Reset.all.t |
| 71c00 | 75 6e 6e 65 6c 73 20 66 6f 72 20 61 20 67 69 76 65 6e 20 70 65 65 72 2c 20 63 61 6e 20 73 70 65 | unnels.for.a.given.peer,.can.spe |
| 71c20 | 63 69 66 79 20 74 75 6e 6e 65 6c 20 6f 72 20 76 74 69 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 | cify.tunnel.or.vti.interface..It |
| 71c40 | 20 74 65 72 6d 69 6e 61 74 65 73 20 61 20 73 70 65 63 69 66 69 63 20 63 68 69 6c 64 5f 73 61 20 | .terminates.a.specific.child_sa. |
| 71c60 | 61 6e 64 20 72 65 69 6e 69 74 69 61 74 65 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 | and.reinitiates.the.connection.. |
| 71c80 | 52 65 73 65 74 20 63 6f 6d 6d 61 6e 64 73 00 52 65 73 65 74 73 20 74 68 65 20 6c 6f 63 61 6c 20 | Reset.commands.Resets.the.local. |
| 71ca0 | 44 4e 53 20 66 6f 72 77 61 72 64 69 6e 67 20 63 61 63 68 65 20 64 61 74 61 62 61 73 65 2e 20 59 | DNS.forwarding.cache.database..Y |
| 71cc0 | 6f 75 20 63 61 6e 20 72 65 73 65 74 20 74 68 65 20 63 61 63 68 65 20 66 6f 72 20 61 6c 6c 20 65 | ou.can.reset.the.cache.for.all.e |
| 71ce0 | 6e 74 72 69 65 73 20 6f 72 20 6f 6e 6c 79 20 66 6f 72 20 65 6e 74 72 69 65 73 20 74 6f 20 61 20 | ntries.or.only.for.entries.to.a. |
| 71d00 | 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2e 00 52 65 73 74 61 72 74 00 52 65 73 74 61 72 74 | specific.domain..Restart.Restart |
| 71d20 | 20 44 48 43 50 20 72 65 6c 61 79 20 73 65 72 76 69 63 65 00 52 65 73 74 61 72 74 20 44 48 43 50 | .DHCP.relay.service.Restart.DHCP |
| 71d40 | 76 36 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6d 6d 65 64 69 61 74 65 6c 79 2e 00 52 65 73 74 | v6.relay.agent.immediately..Rest |
| 71d60 | 61 72 74 20 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 69 6e 65 72 00 52 65 73 74 61 72 74 20 6d 44 | art.a.given.container.Restart.mD |
| 71d80 | 4e 53 20 72 65 70 65 61 74 65 72 20 73 65 72 76 69 63 65 2e 00 52 65 73 74 61 72 74 20 74 68 65 | NS.repeater.service..Restart.the |
| 71da0 | 20 44 48 43 50 20 73 65 72 76 65 72 00 52 65 73 74 61 72 74 20 74 68 65 20 49 47 4d 50 20 70 72 | .DHCP.server.Restart.the.IGMP.pr |
| 71dc0 | 6f 78 79 20 70 72 6f 63 65 73 73 2e 00 52 65 73 74 61 72 74 20 74 68 65 20 49 50 73 65 63 20 56 | oxy.process..Restart.the.IPsec.V |
| 71de0 | 50 4e 20 70 72 6f 63 65 73 73 20 61 6e 64 20 72 65 2d 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 | PN.process.and.re-establishes.th |
| 71e00 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 52 65 73 74 61 72 74 20 74 68 65 20 53 53 48 20 64 61 | e.connection..Restart.the.SSH.da |
| 71e20 | 65 6d 6f 6e 20 70 72 6f 63 65 73 73 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 65 73 73 69 6f | emon.process,.the.current.sessio |
| 71e40 | 6e 20 69 73 20 6e 6f 74 20 61 66 66 65 63 74 65 64 2c 20 6f 6e 6c 79 20 74 68 65 20 62 61 63 6b | n.is.not.affected,.only.the.back |
| 71e60 | 67 72 6f 75 6e 64 20 64 61 65 6d 6f 6e 20 69 73 20 72 65 73 74 61 72 74 65 64 2e 00 52 65 73 74 | ground.daemon.is.restarted..Rest |
| 71e80 | 61 72 74 73 20 74 68 65 20 44 4e 53 20 72 65 63 75 72 73 6f 72 20 70 72 6f 63 65 73 73 2e 20 54 | arts.the.DNS.recursor.process..T |
| 71ea0 | 68 69 73 20 61 6c 73 6f 20 69 6e 76 61 6c 69 64 61 74 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 44 | his.also.invalidates.the.local.D |
| 71ec0 | 4e 53 20 66 6f 72 77 61 72 64 69 6e 67 20 63 61 63 68 65 2e 00 52 65 73 74 61 72 74 73 20 74 68 | NS.forwarding.cache..Restarts.th |
| 71ee0 | 65 20 73 65 72 76 69 63 65 2e 20 49 74 20 63 68 65 63 6b 73 20 69 66 20 74 68 65 20 53 75 72 69 | e.service..It.checks.if.the.Suri |
| 71f00 | 63 61 74 61 20 73 65 72 76 69 63 65 20 69 73 20 61 63 74 69 76 65 20 62 65 66 6f 72 65 20 61 74 | cata.service.is.active.before.at |
| 71f20 | 74 65 6d 70 74 69 6e 67 20 74 6f 20 72 65 73 74 61 72 74 20 69 74 2e 20 49 66 20 69 74 20 69 73 | tempting.to.restart.it..If.it.is |
| 71f40 | 20 6e 6f 74 20 61 63 74 69 76 65 2c 20 61 20 6d 65 73 73 61 67 65 20 69 6e 64 69 63 61 74 65 73 | .not.active,.a.message.indicates |
| 71f60 | 20 74 68 61 74 20 74 68 65 20 73 65 72 76 69 63 65 20 69 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 | .that.the.service.is.not.configu |
| 71f80 | 72 65 64 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 61 | red..This.command.is.used.when.a |
| 71fa0 | 64 64 69 6e 67 20 6e 65 77 20 72 75 6c 65 73 20 6d 61 6e 75 61 6c 6c 79 2e 00 52 65 73 75 6c 74 | dding.new.rules.manually..Result |
| 71fc0 | 69 6e 67 20 69 6e 00 52 65 73 75 6c 74 73 20 69 6e 3a 00 52 65 74 72 61 6e 73 6d 69 74 20 54 69 | ing.in.Results.in:.Retransmit.Ti |
| 71fe0 | 6d 65 72 00 52 65 74 72 69 65 76 65 20 63 75 72 72 65 6e 74 20 73 74 61 74 69 73 74 69 63 73 20 | mer.Retrieve.current.statistics. |
| 72000 | 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d | of.connection.tracking.subsystem |
| 72020 | 2e 00 52 65 74 72 69 65 76 65 20 63 75 72 72 65 6e 74 20 73 74 61 74 75 73 20 6f 66 20 63 6f 6e | ..Retrieve.current.status.of.con |
| 72040 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 52 65 74 72 | nection.tracking.subsystem..Retr |
| 72060 | 69 65 76 65 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 66 72 6f 6d 20 63 6f 6e | ieve.public.key.portion.from.con |
| 72080 | 66 69 67 75 72 65 64 20 57 49 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 2e 00 52 65 76 | figured.WIreGuard.interface..Rev |
| 720a0 | 65 72 73 65 2d 70 72 6f 78 79 00 52 6f 75 6e 64 20 52 6f 62 69 6e 00 52 6f 75 74 65 20 41 67 67 | erse-proxy.Round.Robin.Route.Agg |
| 720c0 | 72 65 67 61 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 44 61 6d | regation.Configuration.Route.Dam |
| 720e0 | 70 65 6e 69 6e 67 00 52 6f 75 74 65 20 46 69 6c 74 65 72 69 6e 67 00 52 6f 75 74 65 20 46 69 6c | pening.Route.Filtering.Route.Fil |
| 72100 | 74 65 72 69 6e 67 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 4d 61 70 00 52 | tering.Configuration.Route.Map.R |
| 72120 | 6f 75 74 65 20 4d 61 70 20 50 6f 6c 69 63 79 00 52 6f 75 74 65 20 52 65 64 69 73 74 72 69 62 75 | oute.Map.Policy.Route.Redistribu |
| 72140 | 74 69 6f 6e 00 52 6f 75 74 65 20 52 65 66 6c 65 63 74 6f 72 20 43 6f 6e 66 69 67 75 72 61 74 69 | tion.Route.Reflector.Configurati |
| 72160 | 6f 6e 00 52 6f 75 74 65 20 53 65 6c 65 63 74 69 6f 6e 00 52 6f 75 74 65 20 53 65 6c 65 63 74 69 | on.Route.Selection.Route.Selecti |
| 72180 | 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 61 6e 64 20 52 6f 75 74 65 | on.Configuration.Route.and.Route |
| 721a0 | 36 20 50 6f 6c 69 63 79 00 52 6f 75 74 65 20 64 61 6d 70 65 6e 69 6e 67 20 77 69 63 68 20 64 65 | 6.Policy.Route.dampening.wich.de |
| 721c0 | 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 34 33 39 60 20 65 6e 61 62 6c 65 73 20 79 | scribed.in.:rfc:`2439`.enables.y |
| 721e0 | 6f 75 20 74 6f 20 69 64 65 6e 74 69 66 79 20 72 6f 75 74 65 73 20 74 68 61 74 20 72 65 70 65 61 | ou.to.identify.routes.that.repea |
| 72200 | 74 65 64 6c 79 20 66 61 69 6c 20 61 6e 64 20 72 65 74 75 72 6e 2e 20 49 66 20 72 6f 75 74 65 20 | tedly.fail.and.return..If.route. |
| 72220 | 64 61 6d 70 65 6e 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 61 6e 20 75 6e 73 74 61 62 6c | dampening.is.enabled,.an.unstabl |
| 72240 | 65 20 72 6f 75 74 65 20 61 63 63 75 6d 75 6c 61 74 65 73 20 70 65 6e 61 6c 74 69 65 73 20 65 61 | e.route.accumulates.penalties.ea |
| 72260 | 63 68 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 66 61 69 6c 73 20 61 6e 64 20 72 65 74 75 | ch.time.the.route.fails.and.retu |
| 72280 | 72 6e 73 2e 20 49 66 20 74 68 65 20 61 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 69 65 | rns..If.the.accumulated.penaltie |
| 722a0 | 73 20 65 78 63 65 65 64 20 61 20 74 68 72 65 73 68 6f 6c 64 2c 20 74 68 65 20 72 6f 75 74 65 20 | s.exceed.a.threshold,.the.route. |
| 722c0 | 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 61 64 76 65 72 74 69 73 65 64 2e 20 54 68 69 73 20 69 73 | is.no.longer.advertised..This.is |
| 722e0 | 20 72 6f 75 74 65 20 73 75 70 70 72 65 73 73 69 6f 6e 2e 20 52 6f 75 74 65 73 20 74 68 61 74 20 | .route.suppression..Routes.that. |
| 72300 | 68 61 76 65 20 62 65 65 6e 20 73 75 70 70 72 65 73 73 65 64 20 61 72 65 20 72 65 2d 65 6e 74 65 | have.been.suppressed.are.re-ente |
| 72320 | 72 65 64 20 69 6e 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 6f 6e 6c 79 20 | red.into.the.routing.table.only. |
| 72340 | 77 68 65 6e 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 68 65 69 72 20 70 65 6e 61 6c 74 79 | when.the.amount.of.their.penalty |
| 72360 | 20 66 61 6c 6c 73 20 62 65 6c 6f 77 20 61 20 74 68 72 65 73 68 6f 6c 64 2e 00 52 6f 75 74 65 20 | .falls.below.a.threshold..Route. |
| 72380 | 66 69 6c 74 65 72 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 75 73 69 6e 67 20 61 20 72 6f | filter.can.be.applied.using.a.ro |
| 723a0 | 75 74 65 2d 6d 61 70 3a 00 52 6f 75 74 65 20 6d 61 70 20 69 73 20 61 20 70 6f 77 65 72 66 75 6c | ute-map:.Route.map.is.a.powerful |
| 723c0 | 6c 20 63 6f 6d 6d 61 6e 64 2c 20 74 68 61 74 20 67 69 76 65 73 20 6e 65 74 77 6f 72 6b 20 61 64 | l.command,.that.gives.network.ad |
| 723e0 | 6d 69 6e 69 73 74 72 61 74 6f 72 73 20 61 20 76 65 72 79 20 75 73 65 66 75 6c 20 61 6e 64 20 66 | ministrators.a.very.useful.and.f |
| 72400 | 6c 65 78 69 62 6c 65 20 74 6f 6f 6c 20 66 6f 72 20 74 72 61 66 66 69 63 20 6d 61 6e 69 70 75 6c | lexible.tool.for.traffic.manipul |
| 72420 | 61 74 69 6f 6e 2e 00 52 6f 75 74 65 20 6d 61 70 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 | ation..Route.maps.can.be.configu |
| 72440 | 72 65 64 20 74 6f 20 6d 61 74 63 68 20 61 20 73 70 65 63 69 66 69 63 20 52 50 4b 49 20 76 61 6c | red.to.match.a.specific.RPKI.val |
| 72460 | 69 64 61 74 69 6f 6e 20 73 74 61 74 65 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 63 | idation.state..This.allows.the.c |
| 72480 | 72 65 61 74 69 6f 6e 20 6f 66 20 6c 6f 63 61 6c 20 70 6f 6c 69 63 69 65 73 2c 20 77 68 69 63 68 | reation.of.local.policies,.which |
| 724a0 | 20 68 61 6e 64 6c 65 20 42 47 50 20 72 6f 75 74 65 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 | .handle.BGP.routes.based.on.the. |
| 724c0 | 6f 75 74 63 6f 6d 65 20 6f 66 20 74 68 65 20 50 72 65 66 69 78 20 4f 72 69 67 69 6e 20 56 61 6c | outcome.of.the.Prefix.Origin.Val |
| 724e0 | 69 64 61 74 69 6f 6e 2e 00 52 6f 75 74 65 20 6d 65 74 72 69 63 00 52 6f 75 74 65 20 74 61 67 20 | idation..Route.metric.Route.tag. |
| 72500 | 74 6f 20 6d 61 74 63 68 2e 00 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 00 | to.match..Router.Advertisements. |
| 72520 | 52 6f 75 74 65 72 20 4c 69 66 65 74 69 6d 65 00 52 6f 75 74 65 72 20 72 65 63 65 69 76 65 73 20 | Router.Lifetime.Router.receives. |
| 72540 | 44 48 43 50 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 20 6f 6e 20 60 60 65 74 68 31 60 60 | DHCP.client.requests.on.``eth1`` |
| 72560 | 20 61 6e 64 20 72 65 6c 61 79 73 20 74 68 65 6d 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 20 61 | .and.relays.them.to.the.server.a |
| 72580 | 74 20 31 30 2e 30 2e 31 2e 34 20 6f 6e 20 60 60 65 74 68 32 60 60 2e 00 52 6f 75 74 65 73 20 65 | t.10.0.1.4.on.``eth2``..Routes.e |
| 725a0 | 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 74 68 | xported.from.a.unicast.VRF.to.th |
| 725c0 | 65 20 56 50 4e 20 52 49 42 20 6d 75 73 74 20 62 65 20 61 75 67 6d 65 6e 74 65 64 20 62 79 20 74 | e.VPN.RIB.must.be.augmented.by.t |
| 725e0 | 77 6f 20 70 61 72 61 6d 65 74 65 72 73 3a 00 52 6f 75 74 65 73 20 6f 6e 20 4e 6f 64 65 20 32 3a | wo.parameters:.Routes.on.Node.2: |
| 72600 | 00 52 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 73 65 6e 74 20 66 72 6f 6d 20 70 72 6f 76 69 | .Routes.that.are.sent.from.provi |
| 72620 | 64 65 72 2c 20 72 73 2d 73 65 72 76 65 72 2c 20 6f 72 20 74 68 65 20 70 65 65 72 20 6c 6f 63 61 | der,.rs-server,.or.the.peer.loca |
| 72640 | 6c 2d 72 6f 6c 65 20 28 6f 72 20 69 66 20 72 65 63 65 69 76 65 64 20 62 79 20 63 75 73 74 6f 6d | l-role.(or.if.received.by.custom |
| 72660 | 65 72 2c 20 72 73 2d 63 6c 69 65 6e 74 2c 20 6f 72 20 74 68 65 20 70 65 65 72 20 6c 6f 63 61 6c | er,.rs-client,.or.the.peer.local |
| 72680 | 2d 72 6f 6c 65 29 20 77 69 6c 6c 20 62 65 20 6d 61 72 6b 65 64 20 77 69 74 68 20 61 20 6e 65 77 | -role).will.be.marked.with.a.new |
| 726a0 | 20 4f 6e 6c 79 20 74 6f 20 43 75 73 74 6f 6d 65 72 20 28 4f 54 43 29 20 61 74 74 72 69 62 75 74 | .Only.to.Customer.(OTC).attribut |
| 726c0 | 65 2e 00 52 6f 75 74 65 73 20 77 69 74 68 20 61 20 64 69 73 74 61 6e 63 65 20 6f 66 20 32 35 35 | e..Routes.with.a.distance.of.255 |
| 726e0 | 20 61 72 65 20 65 66 66 65 63 74 69 76 65 6c 79 20 64 69 73 61 62 6c 65 64 20 61 6e 64 20 6e 6f | .are.effectively.disabled.and.no |
| 72700 | 74 20 69 6e 73 74 61 6c 6c 65 64 20 69 6e 74 6f 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 52 6f 75 | t.installed.into.the.kernel..Rou |
| 72720 | 74 65 73 20 77 69 74 68 20 74 68 69 73 20 61 74 74 72 69 62 75 74 65 20 63 61 6e 20 6f 6e 6c 79 | tes.with.this.attribute.can.only |
| 72740 | 20 62 65 20 73 65 6e 74 20 74 6f 20 79 6f 75 72 20 6e 65 69 67 68 62 6f 72 20 69 66 20 79 6f 75 | .be.sent.to.your.neighbor.if.you |
| 72760 | 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 70 72 6f 76 69 64 65 72 20 6f 72 20 72 73 2d 73 | r.local-role.is.provider.or.rs-s |
| 72780 | 65 72 76 65 72 2e 20 52 6f 75 74 65 73 20 77 69 74 68 20 74 68 69 73 20 61 74 74 72 69 62 75 74 | erver..Routes.with.this.attribut |
| 727a0 | 65 20 63 61 6e 20 62 65 20 72 65 63 65 69 76 65 64 20 6f 6e 6c 79 20 69 66 20 79 6f 75 72 20 6c | e.can.be.received.only.if.your.l |
| 727c0 | 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 63 75 73 74 6f 6d 65 72 20 6f 72 20 72 73 2d 63 6c 69 65 | ocal-role.is.customer.or.rs-clie |
| 727e0 | 6e 74 2e 00 52 6f 75 74 69 6e 65 00 52 6f 75 74 69 6e 67 00 52 6f 75 74 69 6e 67 20 74 61 62 6c | nt..Routine.Routing.Routing.tabl |
| 72800 | 65 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 65 78 61 | es.that.will.be.used.in.this.exa |
| 72820 | 6d 70 6c 65 20 61 72 65 3a 00 52 75 6c 65 20 31 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 | mple.are:.Rule.10.matches.reques |
| 72840 | 74 73 20 77 69 74 68 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 60 6e 6f 64 65 31 2e | ts.with.the.domain.name.``node1. |
| 72860 | 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 20 66 6f 72 77 61 72 64 73 20 74 6f 20 74 68 65 20 62 61 | example.com``.forwards.to.the.ba |
| 72880 | 63 6b 65 6e 64 20 60 60 62 6b 2d 61 70 69 2d 30 31 60 60 00 52 75 6c 65 20 31 30 20 6d 61 74 63 | ckend.``bk-api-01``.Rule.10.matc |
| 728a0 | 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 74 68 65 20 65 78 61 63 74 20 55 52 4c 20 | hes.requests.with.the.exact.URL. |
| 728c0 | 70 61 74 68 20 60 60 2f 2e 77 65 6c 6c 2d 6b 6e 6f 77 6e 2f 78 78 78 60 60 20 61 6e 64 20 72 65 | path.``/.well-known/xxx``.and.re |
| 728e0 | 64 69 72 65 63 74 73 20 74 6f 20 6c 6f 63 61 74 69 6f 6e 20 60 60 2f 63 65 72 74 73 2f 60 60 2e | directs.to.location.``/certs/``. |
| 72900 | 00 52 75 6c 65 20 31 31 30 20 69 73 20 68 69 74 2c 20 73 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | .Rule.110.is.hit,.so.connection. |
| 72920 | 69 73 20 61 63 63 65 70 74 65 64 2e 00 52 75 6c 65 20 32 30 20 6d 61 74 63 68 65 73 20 72 65 71 | is.accepted..Rule.20.matches.req |
| 72940 | 75 65 73 74 73 20 77 69 74 68 20 55 52 4c 20 70 61 74 68 73 20 65 6e 64 69 6e 67 20 69 6e 20 60 | uests.with.URL.paths.ending.in.` |
| 72960 | 60 2f 6d 61 69 6c 60 60 20 6f 72 20 65 78 61 63 74 20 70 61 74 68 20 60 60 2f 65 6d 61 69 6c 2f | `/mail``.or.exact.path.``/email/ |
| 72980 | 62 61 72 60 60 20 72 65 64 69 72 65 63 74 20 74 6f 20 6c 6f 63 61 74 69 6f 6e 20 60 60 2f 70 6f | bar``.redirect.to.location.``/po |
| 729a0 | 73 74 66 69 78 2f 60 60 2e 00 52 75 6c 65 20 32 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 | stfix/``..Rule.20.matches.reques |
| 729c0 | 74 73 20 77 69 74 68 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 60 6e 6f 64 65 32 2e | ts.with.the.domain.name.``node2. |
| 729e0 | 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 20 66 6f 72 77 61 72 64 73 20 74 6f 20 74 68 65 20 62 61 | example.com``.forwards.to.the.ba |
| 72a00 | 63 6b 65 6e 64 20 60 60 62 6b 2d 61 70 69 2d 30 32 60 60 00 52 75 6c 65 20 53 74 61 74 75 73 00 | ckend.``bk-api-02``.Rule.Status. |
| 72a20 | 52 75 6c 65 2d 53 65 74 73 00 52 75 6c 65 2d 73 65 74 20 6f 76 65 72 76 69 65 77 00 52 75 6c 65 | Rule-Sets.Rule-set.overview.Rule |
| 72a40 | 73 00 52 75 6c 65 73 20 61 6c 6c 6f 77 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 72 6f 75 | s.Rules.allow.to.control.and.rou |
| 72a60 | 74 65 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 66 69 63 20 | te.incoming.traffic.to.specific. |
| 72a80 | 62 61 63 6b 65 6e 64 20 62 61 73 65 64 20 6f 6e 20 70 72 65 64 65 66 69 6e 65 64 20 63 6f 6e 64 | backend.based.on.predefined.cond |
| 72aa0 | 69 74 69 6f 6e 73 2e 20 52 75 6c 65 73 20 61 6c 6c 6f 77 20 74 6f 20 64 65 66 69 6e 65 20 6d 61 | itions..Rules.allow.to.define.ma |
| 72ac0 | 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 6e 64 20 70 65 72 66 6f 72 6d 20 61 63 74 69 | tching.criteria.and.perform.acti |
| 72ae0 | 6f 6e 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 00 52 75 6c 65 73 20 77 69 6c 6c 20 62 65 20 63 72 | on.accordingly..Rules.will.be.cr |
| 72b00 | 65 61 74 65 64 20 66 6f 72 20 62 6f 74 68 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 | eated.for.both.:ref:`source-nat` |
| 72b20 | 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 00 52 75 6e | .and.:ref:`destination-nat`..Run |
| 72b40 | 6e 69 6e 67 20 42 65 68 69 6e 64 20 4e 41 54 00 53 4e 41 54 00 53 4e 41 54 36 34 00 53 4e 41 54 | ning.Behind.NAT.SNAT.SNAT64.SNAT |
| 72b60 | 36 36 00 53 4e 4d 50 00 53 4e 4d 50 20 45 78 74 65 6e 73 69 6f 6e 73 00 53 4e 4d 50 20 50 72 6f | 66.SNMP.SNMP.Extensions.SNMP.Pro |
| 72b80 | 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 73 00 53 4e 4d 50 20 63 61 6e 20 77 6f 72 6b 20 73 79 6e | tocol.Versions.SNMP.can.work.syn |
| 72ba0 | 63 68 72 6f 6e 6f 75 73 6c 79 20 6f 72 20 61 73 79 6e 63 68 72 6f 6e 6f 75 73 6c 79 2e 20 49 6e | chronously.or.asynchronously..In |
| 72bc0 | 20 73 79 6e 63 68 72 6f 6e 6f 75 73 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2c 20 74 68 65 20 | .synchronous.communication,.the. |
| 72be0 | 6d 6f 6e 69 74 6f 72 69 6e 67 20 73 79 73 74 65 6d 20 71 75 65 72 69 65 73 20 74 68 65 20 72 6f | monitoring.system.queries.the.ro |
| 72c00 | 75 74 65 72 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 2e 20 49 6e 20 61 73 79 6e 63 68 72 6f 6e 6f | uter.periodically..In.asynchrono |
| 72c20 | 75 73 2c 20 74 68 65 20 72 6f 75 74 65 72 20 73 65 6e 64 73 20 6e 6f 74 69 66 69 63 61 74 69 6f | us,.the.router.sends.notificatio |
| 72c40 | 6e 20 74 6f 20 74 68 65 20 22 74 72 61 70 22 20 28 74 68 65 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 | n.to.the."trap".(the.monitoring. |
| 72c60 | 68 6f 73 74 29 2e 00 53 4e 4d 50 20 69 73 20 61 20 63 6f 6d 70 6f 6e 65 6e 74 20 6f 66 20 74 68 | host)..SNMP.is.a.component.of.th |
| 72c80 | 65 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 53 75 69 74 65 20 61 73 20 64 65 66 | e.Internet.Protocol.Suite.as.def |
| 72ca0 | 69 6e 65 64 20 62 79 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 45 6e 67 69 6e 65 65 72 69 6e 67 | ined.by.the.Internet.Engineering |
| 72cc0 | 20 54 61 73 6b 20 46 6f 72 63 65 20 28 49 45 54 46 29 2e 20 49 74 20 63 6f 6e 73 69 73 74 73 20 | .Task.Force.(IETF)..It.consists. |
| 72ce0 | 6f 66 20 61 20 73 65 74 20 6f 66 20 73 74 61 6e 64 61 72 64 73 20 66 6f 72 20 6e 65 74 77 6f 72 | of.a.set.of.standards.for.networ |
| 72d00 | 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 2c 20 69 6e 63 6c 75 64 69 6e 67 20 61 6e 20 61 70 70 6c 69 | k.management,.including.an.appli |
| 72d20 | 63 61 74 69 6f 6e 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 20 64 61 74 61 62 61 73 | cation.layer.protocol,.a.databas |
| 72d40 | 65 20 73 63 68 65 6d 61 2c 20 61 6e 64 20 61 20 73 65 74 20 6f 66 20 64 61 74 61 20 6f 62 6a 65 | e.schema,.and.a.set.of.data.obje |
| 72d60 | 63 74 73 2e 00 53 4e 4d 50 20 69 73 20 77 69 64 65 6c 79 20 75 73 65 64 20 69 6e 20 6e 65 74 77 | cts..SNMP.is.widely.used.in.netw |
| 72d80 | 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 6f 6e 69 74 | ork.management.for.network.monit |
| 72da0 | 6f 72 69 6e 67 2e 20 53 4e 4d 50 20 65 78 70 6f 73 65 73 20 6d 61 6e 61 67 65 6d 65 6e 74 20 64 | oring..SNMP.exposes.management.d |
| 72dc0 | 61 74 61 20 69 6e 20 74 68 65 20 66 6f 72 6d 20 6f 66 20 76 61 72 69 61 62 6c 65 73 20 6f 6e 20 | ata.in.the.form.of.variables.on. |
| 72de0 | 74 68 65 20 6d 61 6e 61 67 65 64 20 73 79 73 74 65 6d 73 20 6f 72 67 61 6e 69 7a 65 64 20 69 6e | the.managed.systems.organized.in |
| 72e00 | 20 61 20 6d 61 6e 61 67 65 6d 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 61 73 65 20 28 | .a.management.information.base.( |
| 72e20 | 4d 49 42 5f 29 20 77 68 69 63 68 20 64 65 73 63 72 69 62 65 20 74 68 65 20 73 79 73 74 65 6d 20 | MIB_).which.describe.the.system. |
| 72e40 | 73 74 61 74 75 73 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 73 65 20 | status.and.configuration..These. |
| 72e60 | 76 61 72 69 61 62 6c 65 73 20 63 61 6e 20 74 68 65 6e 20 62 65 20 72 65 6d 6f 74 65 6c 79 20 71 | variables.can.then.be.remotely.q |
| 72e80 | 75 65 72 69 65 64 20 28 61 6e 64 2c 20 69 6e 20 73 6f 6d 65 20 63 69 72 63 75 6d 73 74 61 6e 63 | ueried.(and,.in.some.circumstanc |
| 72ea0 | 65 73 2c 20 6d 61 6e 69 70 75 6c 61 74 65 64 29 20 62 79 20 6d 61 6e 61 67 69 6e 67 20 61 70 70 | es,.manipulated).by.managing.app |
| 72ec0 | 6c 69 63 61 74 69 6f 6e 73 2e 00 53 4e 4d 50 76 32 00 53 4e 4d 50 76 32 20 64 6f 65 73 20 6e 6f | lications..SNMPv2.SNMPv2.does.no |
| 72ee0 | 74 20 73 75 70 70 6f 72 74 20 61 6e 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 63 | t.support.any.authentication.mec |
| 72f00 | 68 61 6e 69 73 6d 73 2c 20 6f 74 68 65 72 20 74 68 61 6e 20 63 6c 69 65 6e 74 20 73 6f 75 72 63 | hanisms,.other.than.client.sourc |
| 72f20 | 65 20 61 64 64 72 65 73 73 2c 20 73 6f 20 79 6f 75 20 73 68 6f 75 6c 64 20 73 70 65 63 69 66 79 | e.address,.so.you.should.specify |
| 72f40 | 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 63 6c 69 65 6e 74 73 20 61 6c 6c 6f 77 65 64 20 74 6f | .addresses.of.clients.allowed.to |
| 72f60 | 20 6d 6f 6e 69 74 6f 72 20 74 68 65 20 72 6f 75 74 65 72 2e 20 4e 6f 74 65 20 74 68 61 74 20 53 | .monitor.the.router..Note.that.S |
| 72f80 | 4e 4d 50 76 32 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 6e 6f 20 65 6e 63 72 79 70 74 69 6f | NMPv2.also.supports.no.encryptio |
| 72fa0 | 6e 20 61 6e 64 20 61 6c 77 61 79 73 20 73 65 6e 64 73 20 64 61 74 61 20 69 6e 20 70 6c 61 69 6e | n.and.always.sends.data.in.plain |
| 72fc0 | 20 74 65 78 74 2e 00 53 4e 4d 50 76 32 20 69 73 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 61 6e | .text..SNMPv2.is.the.original.an |
| 72fe0 | 64 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 6c 79 20 75 73 65 64 20 76 65 72 73 69 6f 6e 2e 20 46 6f | d.most.commonly.used.version..Fo |
| 73000 | 72 20 61 75 74 68 6f 72 69 7a 69 6e 67 20 63 6c 69 65 6e 74 73 2c 20 53 4e 4d 50 20 75 73 65 73 | r.authorizing.clients,.SNMP.uses |
| 73020 | 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 20 43 6f 6d | .the.concept.of.communities..Com |
| 73040 | 6d 75 6e 69 74 69 65 73 20 6d 61 79 20 68 61 76 65 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 | munities.may.have.authorization. |
| 73060 | 73 65 74 20 74 6f 20 72 65 61 64 20 6f 6e 6c 79 20 28 74 68 69 73 20 69 73 20 6d 6f 73 74 20 63 | set.to.read.only.(this.is.most.c |
| 73080 | 6f 6d 6d 6f 6e 29 20 6f 72 20 74 6f 20 72 65 61 64 20 61 6e 64 20 77 72 69 74 65 20 28 74 68 69 | ommon).or.to.read.and.write.(thi |
| 730a0 | 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 61 63 74 69 76 65 6c 79 20 75 73 65 64 20 69 6e | s.option.is.not.actively.used.in |
| 730c0 | 20 56 79 4f 53 29 2e 00 53 4e 4d 50 76 33 00 53 4e 4d 50 76 33 20 28 76 65 72 73 69 6f 6e 20 33 | .VyOS)..SNMPv3.SNMPv3.(version.3 |
| 730e0 | 20 6f 66 20 74 68 65 20 53 4e 4d 50 20 70 72 6f 74 6f 63 6f 6c 29 20 69 6e 74 72 6f 64 75 63 65 | .of.the.SNMP.protocol).introduce |
| 73100 | 64 20 61 20 77 68 6f 6c 65 20 73 6c 65 77 20 6f 66 20 6e 65 77 20 73 65 63 75 72 69 74 79 20 72 | d.a.whole.slew.of.new.security.r |
| 73120 | 65 6c 61 74 65 64 20 66 65 61 74 75 72 65 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 6d | elated.features.that.have.been.m |
| 73140 | 69 73 73 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 70 72 65 76 69 6f 75 73 20 76 65 72 73 69 6f 6e | issing.from.the.previous.version |
| 73160 | 73 2e 20 53 65 63 75 72 69 74 79 20 77 61 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 62 69 67 67 65 | s..Security.was.one.of.the.bigge |
| 73180 | 73 74 20 77 65 61 6b 6e 65 73 73 20 6f 66 20 53 4e 4d 50 20 75 6e 74 69 6c 20 76 33 2e 20 41 75 | st.weakness.of.SNMP.until.v3..Au |
| 731a0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 6e 20 53 4e 4d 50 20 56 65 72 73 69 6f 6e 73 20 31 20 | thentication.in.SNMP.Versions.1. |
| 731c0 | 61 6e 64 20 32 20 61 6d 6f 75 6e 74 73 20 74 6f 20 6e 6f 74 68 69 6e 67 20 6d 6f 72 65 20 74 68 | and.2.amounts.to.nothing.more.th |
| 731e0 | 61 6e 20 61 20 70 61 73 73 77 6f 72 64 20 28 63 6f 6d 6d 75 6e 69 74 79 20 73 74 72 69 6e 67 29 | an.a.password.(community.string) |
| 73200 | 20 73 65 6e 74 20 69 6e 20 63 6c 65 61 72 20 74 65 78 74 20 62 65 74 77 65 65 6e 20 61 20 6d 61 | .sent.in.clear.text.between.a.ma |
| 73220 | 6e 61 67 65 72 20 61 6e 64 20 61 67 65 6e 74 2e 20 45 61 63 68 20 53 4e 4d 50 76 33 20 6d 65 73 | nager.and.agent..Each.SNMPv3.mes |
| 73240 | 73 61 67 65 20 63 6f 6e 74 61 69 6e 73 20 73 65 63 75 72 69 74 79 20 70 61 72 61 6d 65 74 65 72 | sage.contains.security.parameter |
| 73260 | 73 20 77 68 69 63 68 20 61 72 65 20 65 6e 63 6f 64 65 64 20 61 73 20 61 6e 20 6f 63 74 65 74 20 | s.which.are.encoded.as.an.octet. |
| 73280 | 73 74 72 69 6e 67 2e 20 54 68 65 20 6d 65 61 6e 69 6e 67 20 6f 66 20 74 68 65 73 65 20 73 65 63 | string..The.meaning.of.these.sec |
| 732a0 | 75 72 69 74 79 20 70 61 72 61 6d 65 74 65 72 73 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 | urity.parameters.depends.on.the. |
| 732c0 | 73 65 63 75 72 69 74 79 20 6d 6f 64 65 6c 20 62 65 69 6e 67 20 75 73 65 64 2e 00 53 50 41 4e 20 | security.model.being.used..SPAN. |
| 732e0 | 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 63 61 6e 20 63 6f 70 79 20 74 68 65 20 69 6e 62 6f | port.mirroring.can.copy.the.inbo |
| 73300 | 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 74 68 65 20 69 6e 74 65 | und/outbound.traffic.of.the.inte |
| 73320 | 72 66 61 63 65 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 | rface.to.the.specified.interface |
| 73340 | 2c 20 75 73 75 61 6c 6c 79 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 63 | ,.usually.the.interface.can.be.c |
| 73360 | 6f 6e 6e 65 63 74 65 64 20 74 6f 20 73 6f 6d 65 20 73 70 65 63 69 61 6c 20 65 71 75 69 70 6d 65 | onnected.to.some.special.equipme |
| 73380 | 6e 74 2c 20 73 75 63 68 20 61 73 20 61 20 62 65 68 61 76 69 6f 72 20 63 6f 6e 74 72 6f 6c 20 73 | nt,.such.as.a.behavior.control.s |
| 733a0 | 79 73 74 65 6d 2c 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 73 79 73 74 65 | ystem,.intrusion.detection.syste |
| 733c0 | 6d 20 6f 72 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 65 63 74 6f 72 2c 20 61 6e 64 20 63 61 6e 20 | m.or.traffic.collector,.and.can. |
| 733e0 | 63 6f 70 79 20 61 6c 6c 20 72 65 6c 61 74 65 64 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 | copy.all.related.traffic.from.th |
| 73400 | 69 73 20 70 6f 72 74 2e 20 54 68 65 20 62 65 6e 65 66 69 74 20 6f 66 20 6d 69 72 72 6f 72 69 6e | is.port..The.benefit.of.mirrorin |
| 73420 | 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 74 68 61 74 20 74 68 65 20 61 70 70 6c 69 63 | g.the.traffic.is.that.the.applic |
| 73440 | 61 74 69 6f 6e 20 69 73 20 69 73 6f 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 73 6f 75 72 63 | ation.is.isolated.from.the.sourc |
| 73460 | 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 6f 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f | e.traffic.and.so.application.pro |
| 73480 | 63 65 73 73 69 6e 67 20 64 6f 65 73 20 6e 6f 74 20 61 66 66 65 63 74 20 74 68 65 20 74 72 61 66 | cessing.does.not.affect.the.traf |
| 734a0 | 66 69 63 20 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 00 53 | fic.or.the.system.performance..S |
| 734c0 | 50 41 4e 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 63 61 6e 20 63 6f 70 79 20 74 68 65 20 | PAN.port.mirroring.can.copy.the. |
| 734e0 | 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 74 68 65 20 | inbound/outbound.traffic.of.the. |
| 73500 | 69 6e 74 65 72 66 61 63 65 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 | interface.to.the.specified.inter |
| 73520 | 66 61 63 65 2c 20 75 73 75 61 6c 6c 79 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 | face,.usually.the.interface.can. |
| 73540 | 62 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 73 6f 6d 65 20 73 70 65 63 69 61 6c 20 65 71 75 | be.connected.to.some.special.equ |
| 73560 | 69 70 6d 65 6e 74 2c 20 73 75 63 68 20 61 73 20 62 65 68 61 76 69 6f 72 20 63 6f 6e 74 72 6f 6c | ipment,.such.as.behavior.control |
| 73580 | 20 73 79 73 74 65 6d 2c 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 73 79 73 | .system,.intrusion.detection.sys |
| 735a0 | 74 65 6d 20 61 6e 64 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 65 63 74 6f 72 2c 20 61 6e 64 20 63 | tem.and.traffic.collector,.and.c |
| 735c0 | 61 6e 20 63 6f 70 79 20 61 6c 6c 20 72 65 6c 61 74 65 64 20 74 72 61 66 66 69 63 20 66 72 6f 6d | an.copy.all.related.traffic.from |
| 735e0 | 20 74 68 69 73 20 70 6f 72 74 2e 20 54 68 65 20 62 65 6e 65 66 69 74 20 6f 66 20 6d 69 72 72 6f | .this.port..The.benefit.of.mirro |
| 73600 | 72 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 74 68 61 74 20 74 68 65 20 61 70 70 | ring.the.traffic.is.that.the.app |
| 73620 | 6c 69 63 61 74 69 6f 6e 20 69 73 20 69 73 6f 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 73 6f | lication.is.isolated.from.the.so |
| 73640 | 75 72 63 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 6f 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 | urce.traffic.and.so.application. |
| 73660 | 70 72 6f 63 65 73 73 69 6e 67 20 64 6f 65 73 20 6e 6f 74 20 61 66 66 65 63 74 20 74 68 65 20 74 | processing.does.not.affect.the.t |
| 73680 | 72 61 66 66 69 63 20 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 | raffic.or.the.system.performance |
| 736a0 | 2e 00 53 53 48 00 53 53 48 20 3a 72 65 66 3a 60 73 73 68 5f 6b 65 79 5f 62 61 73 65 64 5f 61 75 | ..SSH.SSH.:ref:`ssh_key_based_au |
| 736c0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 00 53 53 48 20 3a 72 65 66 3a 60 73 73 68 5f 6f 70 65 72 | thentication`.SSH.:ref:`ssh_oper |
| 736e0 | 61 74 69 6f 6e 60 00 53 53 48 20 63 6c 69 65 6e 74 00 53 53 48 20 70 72 6f 76 69 64 65 73 20 61 | ation`.SSH.client.SSH.provides.a |
| 73700 | 20 73 65 63 75 72 65 20 63 68 61 6e 6e 65 6c 20 6f 76 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 | .secure.channel.over.an.unsecure |
| 73720 | 64 20 6e 65 74 77 6f 72 6b 20 69 6e 20 61 20 63 6c 69 65 6e 74 2d 73 65 72 76 65 72 20 61 72 63 | d.network.in.a.client-server.arc |
| 73740 | 68 69 74 65 63 74 75 72 65 2c 20 63 6f 6e 6e 65 63 74 69 6e 67 20 61 6e 20 53 53 48 20 63 6c 69 | hitecture,.connecting.an.SSH.cli |
| 73760 | 65 6e 74 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 77 69 74 68 20 61 6e 20 53 53 48 20 73 65 72 76 | ent.application.with.an.SSH.serv |
| 73780 | 65 72 2e 20 43 6f 6d 6d 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 20 69 6e 63 6c 75 64 65 20 | er..Common.applications.include. |
| 737a0 | 72 65 6d 6f 74 65 20 63 6f 6d 6d 61 6e 64 2d 6c 69 6e 65 20 6c 6f 67 69 6e 20 61 6e 64 20 72 65 | remote.command-line.login.and.re |
| 737c0 | 6d 6f 74 65 20 63 6f 6d 6d 61 6e 64 20 65 78 65 63 75 74 69 6f 6e 2c 20 62 75 74 20 61 6e 79 20 | mote.command.execution,.but.any. |
| 737e0 | 6e 65 74 77 6f 72 6b 20 73 65 72 76 69 63 65 20 63 61 6e 20 62 65 20 73 65 63 75 72 65 64 20 77 | network.service.can.be.secured.w |
| 73800 | 69 74 68 20 53 53 48 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 73 70 65 63 69 66 69 63 61 74 | ith.SSH..The.protocol.specificat |
| 73820 | 69 6f 6e 20 64 69 73 74 69 6e 67 75 69 73 68 65 73 20 62 65 74 77 65 65 6e 20 74 77 6f 20 6d 61 | ion.distinguishes.between.two.ma |
| 73840 | 6a 6f 72 20 76 65 72 73 69 6f 6e 73 2c 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 53 53 48 | jor.versions,.referred.to.as.SSH |
| 73860 | 2d 31 20 61 6e 64 20 53 53 48 2d 32 2e 00 53 53 48 20 75 73 65 72 6e 61 6d 65 20 74 6f 20 65 73 | -1.and.SSH-2..SSH.username.to.es |
| 73880 | 74 61 62 6c 69 73 68 20 61 6e 20 53 53 48 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 74 68 65 | tablish.an.SSH.connection.to.the |
| 738a0 | 20 63 61 63 68 65 20 73 65 72 76 65 72 2e 00 53 53 48 20 77 61 73 20 64 65 73 69 67 6e 65 64 20 | .cache.server..SSH.was.designed. |
| 738c0 | 61 73 20 61 20 72 65 70 6c 61 63 65 6d 65 6e 74 20 66 6f 72 20 54 65 6c 6e 65 74 20 61 6e 64 20 | as.a.replacement.for.Telnet.and. |
| 738e0 | 66 6f 72 20 75 6e 73 65 63 75 72 65 64 20 72 65 6d 6f 74 65 20 73 68 65 6c 6c 20 70 72 6f 74 6f | for.unsecured.remote.shell.proto |
| 73900 | 63 6f 6c 73 20 73 75 63 68 20 61 73 20 74 68 65 20 42 65 72 6b 65 6c 65 79 20 72 6c 6f 67 69 6e | cols.such.as.the.Berkeley.rlogin |
| 73920 | 2c 20 72 73 68 2c 20 61 6e 64 20 72 65 78 65 63 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 54 68 6f 73 | ,.rsh,.and.rexec.protocols..Thos |
| 73940 | 65 20 70 72 6f 74 6f 63 6f 6c 73 20 73 65 6e 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 6e 6f | e.protocols.send.information,.no |
| 73960 | 74 61 62 6c 79 20 70 61 73 73 77 6f 72 64 73 2c 20 69 6e 20 70 6c 61 69 6e 74 65 78 74 2c 20 72 | tably.passwords,.in.plaintext,.r |
| 73980 | 65 6e 64 65 72 69 6e 67 20 74 68 65 6d 20 73 75 73 63 65 70 74 69 62 6c 65 20 74 6f 20 69 6e 74 | endering.them.susceptible.to.int |
| 739a0 | 65 72 63 65 70 74 69 6f 6e 20 61 6e 64 20 64 69 73 63 6c 6f 73 75 72 65 20 75 73 69 6e 67 20 70 | erception.and.disclosure.using.p |
| 739c0 | 61 63 6b 65 74 20 61 6e 61 6c 79 73 69 73 2e 20 54 68 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 75 | acket.analysis..The.encryption.u |
| 739e0 | 73 65 64 20 62 79 20 53 53 48 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 70 72 6f 76 69 64 | sed.by.SSH.is.intended.to.provid |
| 73a00 | 65 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 | e.confidentiality.and.integrity. |
| 73a20 | 6f 66 20 64 61 74 61 20 6f 76 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 64 20 6e 65 74 77 6f 72 | of.data.over.an.unsecured.networ |
| 73a40 | 6b 2c 20 73 75 63 68 20 61 73 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 00 53 53 49 44 20 74 6f | k,.such.as.the.Internet..SSID.to |
| 73a60 | 20 62 65 20 75 73 65 64 20 69 6e 20 49 45 45 45 20 38 30 32 2e 31 31 20 6d 61 6e 61 67 65 6d 65 | .be.used.in.IEEE.802.11.manageme |
| 73a80 | 6e 74 20 66 72 61 6d 65 73 00 53 53 4c 20 42 72 69 64 67 69 6e 67 00 53 53 4c 20 43 65 72 74 69 | nt.frames.SSL.Bridging.SSL.Certi |
| 73aa0 | 66 69 63 61 74 65 73 00 53 53 4c 20 43 65 72 74 69 66 69 63 61 74 65 73 20 67 65 6e 65 72 61 74 | ficates.SSL.Certificates.generat |
| 73ac0 | 69 6f 6e 00 53 53 4c 20 6d 61 74 63 68 20 53 65 72 76 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 | ion.SSL.match.Server.Name.Indica |
| 73ae0 | 74 69 6f 6e 20 28 53 4e 49 29 20 6f 70 74 69 6f 6e 3a 00 53 53 54 50 20 43 6c 69 65 6e 74 00 53 | tion.(SNI).option:.SSTP.Client.S |
| 73b00 | 53 54 50 20 43 6c 69 65 6e 74 20 4f 70 74 69 6f 6e 73 00 53 53 54 50 20 53 65 72 76 65 72 00 53 | STP.Client.Options.SSTP.Server.S |
| 73b20 | 53 54 50 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 4c 69 6e 75 78 2c 20 42 53 44 2c | STP.is.available.for.Linux,.BSD, |
| 73b40 | 20 61 6e 64 20 57 69 6e 64 6f 77 73 2e 00 53 53 54 50 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 | .and.Windows..SSTP.remote.server |
| 73b60 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 20 43 61 6e 20 62 65 20 65 69 74 68 65 72 20 61 6e | .to.connect.to..Can.be.either.an |
| 73b80 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e 2e 00 53 54 50 20 50 61 72 61 6d 65 74 | .IP.address.or.FQDN..STP.Paramet |
| 73ba0 | 65 72 00 53 61 6c 74 2d 4d 69 6e 69 6f 6e 00 53 61 6c 74 53 74 61 63 6b 5f 20 69 73 20 50 79 74 | er.Salt-Minion.SaltStack_.is.Pyt |
| 73bc0 | 68 6f 6e 2d 62 61 73 65 64 2c 20 6f 70 65 6e 2d 73 6f 75 72 63 65 20 73 6f 66 74 77 61 72 65 20 | hon-based,.open-source.software. |
| 73be0 | 66 6f 72 20 65 76 65 6e 74 2d 64 72 69 76 65 6e 20 49 54 20 61 75 74 6f 6d 61 74 69 6f 6e 2c 20 | for.event-driven.IT.automation,. |
| 73c00 | 72 65 6d 6f 74 65 20 74 61 73 6b 20 65 78 65 63 75 74 69 6f 6e 2c 20 61 6e 64 20 63 6f 6e 66 69 | remote.task.execution,.and.confi |
| 73c20 | 67 75 72 61 74 69 6f 6e 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 53 75 70 70 6f 72 74 69 6e 67 20 | guration.management..Supporting. |
| 73c40 | 74 68 65 20 22 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 61 73 20 63 6f 64 65 22 20 61 70 70 | the."infrastructure.as.code".app |
| 73c60 | 72 6f 61 63 68 20 74 6f 20 64 61 74 61 20 63 65 6e 74 65 72 20 73 79 73 74 65 6d 20 61 6e 64 20 | roach.to.data.center.system.and. |
| 73c80 | 6e 65 74 77 6f 72 6b 20 64 65 70 6c 6f 79 6d 65 6e 74 20 61 6e 64 20 6d 61 6e 61 67 65 6d 65 6e | network.deployment.and.managemen |
| 73ca0 | 74 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 75 74 6f 6d 61 74 69 6f 6e 2c 20 53 65 63 | t,.configuration.automation,.Sec |
| 73cc0 | 4f 70 73 20 6f 72 63 68 65 73 74 72 61 74 69 6f 6e 2c 20 76 75 6c 6e 65 72 61 62 69 6c 69 74 79 | Ops.orchestration,.vulnerability |
| 73ce0 | 20 72 65 6d 65 64 69 61 74 69 6f 6e 2c 20 61 6e 64 20 68 79 62 72 69 64 20 63 6c 6f 75 64 20 63 | .remediation,.and.hybrid.cloud.c |
| 73d00 | 6f 6e 74 72 6f 6c 2e 00 53 61 6d 65 20 61 73 20 65 78 70 6f 72 74 2d 6c 69 73 74 2c 20 62 75 74 | ontrol..Same.as.export-list,.but |
| 73d20 | 20 69 74 20 61 70 70 6c 69 65 73 20 74 6f 20 70 61 74 68 73 20 61 6e 6e 6f 75 6e 63 65 64 20 69 | .it.applies.to.paths.announced.i |
| 73d40 | 6e 74 6f 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 20 61 73 20 54 79 70 65 2d 33 20 73 75 6d | nto.specified.area.as.Type-3.sum |
| 73d60 | 6d 61 72 79 2d 4c 53 41 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 | mary-LSAs..This.command.makes.se |
| 73d80 | 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 53 61 6d 65 20 73 70 65 63 69 66 69 63 20 6d | nse.in.ABR.only..Same.specific.m |
| 73da0 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 | atching.criteria.that.can.be.use |
| 73dc0 | 64 20 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 61 72 65 20 64 65 73 63 72 69 62 | d.in.bridge.firewall.are.describ |
| 73de0 | 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 53 61 6d 70 6c 65 20 63 6f 6e 66 69 | ed.in.this.section:.Sample.confi |
| 73e00 | 67 75 72 61 74 69 6f 6e 20 6f 66 20 53 56 44 20 77 69 74 68 20 56 4c 41 4e 20 74 6f 20 56 4e 49 | guration.of.SVD.with.VLAN.to.VNI |
| 73e20 | 20 6d 61 70 70 69 6e 67 73 20 69 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 2e 00 53 61 6d 70 6c 65 | .mappings.is.shown.below..Sample |
| 73e40 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 73 65 74 75 70 20 4c 44 50 20 6f 6e 20 56 | .configuration.to.setup.LDP.on.V |
| 73e60 | 79 4f 53 00 53 63 61 6e 6e 69 6e 67 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 20 6f 6e | yOS.Scanning.is.not.supported.on |
| 73e80 | 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 64 72 69 76 65 72 73 20 61 6e 64 20 77 69 72 65 6c 65 | .all.wireless.drivers.and.wirele |
| 73ea0 | 73 73 20 68 61 72 64 77 61 72 65 2e 20 52 65 66 65 72 20 74 6f 20 79 6f 75 72 20 64 72 69 76 65 | ss.hardware..Refer.to.your.drive |
| 73ec0 | 72 20 61 6e 64 20 77 69 72 65 6c 65 73 73 20 68 61 72 64 77 61 72 65 20 64 6f 63 75 6d 65 6e 74 | r.and.wireless.hardware.document |
| 73ee0 | 61 74 69 6f 6e 20 66 6f 72 20 66 75 72 74 68 65 72 20 64 65 74 61 69 6c 73 2e 00 53 63 72 69 70 | ation.for.further.details..Scrip |
| 73f00 | 74 20 65 78 65 63 75 74 69 6f 6e 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 62 65 66 6f 72 65 | t.execution.Script.to.run.before |
| 73f20 | 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6d 65 73 20 75 70 00 53 63 72 69 | .session.interface.comes.up.Scri |
| 73f40 | 70 74 20 74 6f 20 72 75 6e 20 62 65 66 6f 72 65 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 | pt.to.run.before.the.session.int |
| 73f60 | 65 72 66 61 63 65 20 63 6f 6d 65 73 20 75 70 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 | erface.comes.up.Script.to.run.wh |
| 73f80 | 65 6e 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 68 61 6e 67 65 64 20 62 79 20 | en.session.interface.changed.by. |
| 73fa0 | 52 41 44 49 55 53 20 43 6f 41 20 68 61 6e 64 6c 69 6e 67 00 53 63 72 69 70 74 20 74 6f 20 72 75 | RADIUS.CoA.handling.Script.to.ru |
| 73fc0 | 6e 20 77 68 65 6e 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 67 6f 69 6e 67 20 74 | n.when.session.interface.going.t |
| 73fe0 | 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 73 | o.terminate.Script.to.run.when.s |
| 74000 | 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 63 | ession.interface.is.completely.c |
| 74020 | 6f 6e 66 69 67 75 72 65 64 20 61 6e 64 20 73 74 61 72 74 65 64 00 53 63 72 69 70 74 20 74 6f 20 | onfigured.and.started.Script.to. |
| 74040 | 72 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 61 | run.when.the.session.interface.a |
| 74060 | 62 6f 75 74 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 | bout.to.terminate.Script.to.run. |
| 74080 | 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 62 | when.the.session.interface.is.ab |
| 740a0 | 6f 75 74 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 | out.to.terminate.Script.to.run.w |
| 740c0 | 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 68 61 | hen.the.session.interface.is.cha |
| 740e0 | 6e 67 65 64 20 62 79 20 52 41 44 49 55 53 20 43 6f 41 20 68 61 6e 64 6c 69 6e 67 00 53 63 72 69 | nged.by.RADIUS.CoA.handling.Scri |
| 74100 | 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 | pt.to.run.when.the.session.inter |
| 74120 | 66 61 63 65 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 61 6e | face.is.completely.configured.an |
| 74140 | 64 20 73 74 61 72 74 65 64 00 53 63 72 69 70 74 69 6e 67 00 53 65 63 6f 6e 64 20 73 63 65 6e 61 | d.started.Scripting.Second.scena |
| 74160 | 72 69 6f 3a 20 61 70 70 6c 79 20 73 6f 75 72 63 65 20 4e 41 54 20 66 6f 72 20 61 6c 6c 20 6f 75 | rio:.apply.source.NAT.for.all.ou |
| 74180 | 74 67 6f 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 4c 41 4e 20 31 30 2e 30 | tgoing.connections.from.LAN.10.0 |
| 741a0 | 2e 30 2e 30 2f 38 2c 20 75 73 69 6e 67 20 33 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 65 73 | .0.0/8,.using.3.public.addresses |
| 741c0 | 20 61 6e 64 20 65 71 75 61 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 57 65 20 77 69 6c 6c | .and.equal.distribution..We.will |
| 741e0 | 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 20 72 61 6e 64 6f 6d 6c 79 2e 00 53 65 63 | .generate.the.hash.randomly..Sec |
| 74200 | 6f 6e 64 6c 79 2c 20 77 65 20 63 72 65 61 74 65 20 74 68 65 20 69 6e 74 65 72 6d 65 64 69 61 72 | ondly,.we.create.the.intermediar |
| 74220 | 79 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 69 65 73 2c 20 77 68 69 63 68 | y.certificate.authorities,.which |
| 74240 | 20 61 72 65 20 75 73 65 64 20 74 6f 20 73 69 67 6e 20 74 68 65 20 6c 65 61 66 20 63 65 72 74 69 | .are.used.to.sign.the.leaf.certi |
| 74260 | 66 69 63 61 74 65 73 2e 00 53 65 63 72 65 74 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 | ficates..Secret.for.Dynamic.Auth |
| 74280 | 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 | orization.Extension.server.(DM/C |
| 742a0 | 6f 41 29 00 53 65 63 75 72 69 74 79 00 53 65 63 75 72 69 74 79 2f 61 75 74 68 65 6e 74 69 63 61 | oA).Security.Security/authentica |
| 742c0 | 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 00 53 65 65 20 3a 72 66 63 3a 60 37 37 36 31 23 73 65 63 | tion.messages.See.:rfc:`7761#sec |
| 742e0 | 74 69 6f 6e 2d 34 2e 31 60 20 66 6f 72 20 64 65 74 61 69 6c 73 2e 00 53 65 65 20 62 65 6c 6f 77 | tion-4.1`.for.details..See.below |
| 74300 | 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 61 76 61 69 6c 61 | .the.different.parameters.availa |
| 74320 | 62 6c 65 20 66 6f 72 20 74 68 65 20 49 50 76 34 20 2a 2a 73 68 6f 77 2a 2a 20 63 6f 6d 6d 61 6e | ble.for.the.IPv4.**show**.comman |
| 74340 | 64 3a 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 | d:.Segment.Routing.Segment.Routi |
| 74360 | 6e 67 20 28 53 52 29 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 61 72 63 68 69 74 65 63 74 75 72 | ng.(SR).is.a.network.architectur |
| 74380 | 65 20 74 68 61 74 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 73 6f 75 72 63 65 2d 72 6f 75 74 | e.that.is.similar.to.source-rout |
| 743a0 | 69 6e 67 20 2e 20 49 6e 20 74 68 69 73 20 61 72 63 68 69 74 65 63 74 75 72 65 2c 20 74 68 65 20 | ing...In.this.architecture,.the. |
| 743c0 | 69 6e 67 72 65 73 73 20 72 6f 75 74 65 72 20 61 64 64 73 20 61 20 6c 69 73 74 20 6f 66 20 73 65 | ingress.router.adds.a.list.of.se |
| 743e0 | 67 6d 65 6e 74 73 2c 20 6b 6e 6f 77 6e 20 61 73 20 53 49 44 73 2c 20 74 6f 20 74 68 65 20 70 61 | gments,.known.as.SIDs,.to.the.pa |
| 74400 | 63 6b 65 74 20 61 73 20 69 74 20 65 6e 74 65 72 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 54 | cket.as.it.enters.the.network..T |
| 74420 | 68 65 73 65 20 73 65 67 6d 65 6e 74 73 20 72 65 70 72 65 73 65 6e 74 20 64 69 66 66 65 72 65 6e | hese.segments.represent.differen |
| 74440 | 74 20 70 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 70 61 74 68 20 74 | t.portions.of.the.network.path.t |
| 74460 | 68 61 74 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 74 61 6b 65 2e 00 53 65 67 6d 65 6e | hat.the.packet.will.take..Segmen |
| 74480 | 74 20 52 6f 75 74 69 6e 67 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 65 | t.Routing.can.be.applied.to.an.e |
| 744a0 | 78 69 73 74 69 6e 67 20 4d 50 4c 53 2d 62 61 73 65 64 20 64 61 74 61 20 70 6c 61 6e 65 20 61 6e | xisting.MPLS-based.data.plane.an |
| 744c0 | 64 20 64 65 66 69 6e 65 73 20 61 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 6e 65 74 77 6f 72 | d.defines.a.control.plane.networ |
| 744e0 | 6b 20 61 72 63 68 69 74 65 63 74 75 72 65 2e 20 49 6e 20 4d 50 4c 53 20 6e 65 74 77 6f 72 6b 73 | k.architecture..In.MPLS.networks |
| 74500 | 2c 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 65 6e 63 6f 64 65 64 20 61 73 20 4d 50 4c 53 20 6c | ,.segments.are.encoded.as.MPLS.l |
| 74520 | 61 62 65 6c 73 20 61 6e 64 20 61 72 65 20 61 64 64 65 64 20 61 74 20 74 68 65 20 69 6e 67 72 65 | abels.and.are.added.at.the.ingre |
| 74540 | 73 73 20 72 6f 75 74 65 72 2e 20 54 68 65 73 65 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 72 65 | ss.router..These.MPLS.labels.are |
| 74560 | 20 74 68 65 6e 20 65 78 63 68 61 6e 67 65 64 20 61 6e 64 20 70 6f 70 75 6c 61 74 65 64 20 62 79 | .then.exchanged.and.populated.by |
| 74580 | 20 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 73 20 28 49 47 50 | .Interior.Gateway.Protocols.(IGP |
| 745a0 | 73 29 20 6c 69 6b 65 20 49 53 2d 49 53 20 6f 72 20 4f 53 50 46 20 77 68 69 63 68 20 61 72 65 20 | s).like.IS-IS.or.OSPF.which.are. |
| 745c0 | 72 75 6e 6e 69 6e 67 20 6f 6e 20 6d 6f 73 74 20 49 53 50 73 2e 00 53 65 67 6d 65 6e 74 20 72 6f | running.on.most.ISPs..Segment.ro |
| 745e0 | 75 74 69 6e 67 20 28 53 52 29 20 69 73 20 75 73 65 64 20 62 79 20 74 68 65 20 49 47 50 20 70 72 | uting.(SR).is.used.by.the.IGP.pr |
| 74600 | 6f 74 6f 63 6f 6c 73 20 74 6f 20 69 6e 74 65 72 63 6f 6e 6e 65 63 74 20 6e 65 74 77 6f 72 6b 20 | otocols.to.interconnect.network. |
| 74620 | 64 65 76 69 63 65 73 2c 20 62 65 6c 6f 77 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 68 6f | devices,.below.configuration.sho |
| 74640 | 77 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 53 52 20 6f 6e 20 49 53 2d 49 53 3a 00 53 65 | ws.how.to.enable.SR.on.IS-IS:.Se |
| 74660 | 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 28 53 52 29 20 69 73 20 75 73 65 64 20 62 79 20 74 68 | gment.routing.(SR).is.used.by.th |
| 74680 | 65 20 49 47 50 20 70 72 6f 74 6f 63 6f 6c 73 20 74 6f 20 69 6e 74 65 72 63 6f 6e 6e 65 63 74 20 | e.IGP.protocols.to.interconnect. |
| 746a0 | 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 2c 20 62 65 6c 6f 77 20 63 6f 6e 66 69 67 75 72 61 | network.devices,.below.configura |
| 746c0 | 74 69 6f 6e 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 53 52 20 6f 6e 20 4f | tion.shows.how.to.enable.SR.on.O |
| 746e0 | 53 50 46 3a 00 53 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 64 65 66 69 6e 65 73 20 61 20 63 | SPF:.Segment.routing.defines.a.c |
| 74700 | 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 6e 65 74 77 6f 72 6b 20 61 72 63 68 69 74 65 63 74 75 72 | ontrol.plane.network.architectur |
| 74720 | 65 20 61 6e 64 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 65 78 69 73 74 | e.and.can.be.applied.to.an.exist |
| 74740 | 69 6e 67 20 4d 50 4c 53 20 62 61 73 65 64 20 64 61 74 61 70 6c 61 6e 65 2e 20 49 6e 20 74 68 65 | ing.MPLS.based.dataplane..In.the |
| 74760 | 20 4d 50 4c 53 20 6e 65 74 77 6f 72 6b 73 2c 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 65 6e 63 | .MPLS.networks,.segments.are.enc |
| 74780 | 6f 64 65 64 20 61 73 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 6e 64 20 61 72 65 20 69 6d 70 6f | oded.as.MPLS.labels.and.are.impo |
| 747a0 | 73 65 64 20 61 74 20 74 68 65 20 69 6e 67 72 65 73 73 20 72 6f 75 74 65 72 2e 20 4d 50 4c 53 20 | sed.at.the.ingress.router..MPLS. |
| 747c0 | 6c 61 62 65 6c 73 20 61 72 65 20 65 78 63 68 61 6e 67 65 64 20 61 6e 64 20 70 6f 70 75 6c 61 74 | labels.are.exchanged.and.populat |
| 747e0 | 65 64 20 62 79 20 49 47 50 73 20 6c 69 6b 65 20 49 53 2d 49 53 2e 53 65 67 6d 65 6e 74 20 52 6f | ed.by.IGPs.like.IS-IS.Segment.Ro |
| 74800 | 75 74 69 6e 67 20 61 73 20 70 65 72 20 52 46 43 38 36 36 37 20 66 6f 72 20 4d 50 4c 53 20 64 61 | uting.as.per.RFC8667.for.MPLS.da |
| 74820 | 74 61 70 6c 61 6e 65 2e 20 49 74 20 73 75 70 70 6f 72 74 73 20 49 50 76 34 2c 20 49 50 76 36 20 | taplane..It.supports.IPv4,.IPv6. |
| 74840 | 61 6e 64 20 45 43 4d 50 20 61 6e 64 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 61 67 61 | and.ECMP.and.has.been.tested.aga |
| 74860 | 69 6e 73 74 20 43 69 73 63 6f 20 26 20 4a 75 6e 69 70 65 72 20 72 6f 75 74 65 72 73 2e 68 6f 77 | inst.Cisco.&.Juniper.routers.how |
| 74880 | 65 76 65 72 2c 74 68 69 73 20 64 65 70 6c 6f 79 6d 65 6e 74 20 69 73 20 73 74 69 6c 6c 20 45 58 | ever,this.deployment.is.still.EX |
| 748a0 | 50 45 52 49 4d 45 4e 54 41 4c 20 66 6f 72 20 46 52 52 2e 00 53 65 6c 65 63 74 20 54 4c 53 20 76 | PERIMENTAL.for.FRR..Select.TLS.v |
| 748c0 | 65 72 73 69 6f 6e 20 75 73 65 64 2e 00 53 65 6c 65 63 74 20 63 69 70 68 65 72 20 73 75 69 74 65 | ersion.used..Select.cipher.suite |
| 748e0 | 20 75 73 65 64 20 66 6f 72 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6f 70 65 72 61 74 69 6f | .used.for.cryptographic.operatio |
| 74900 | 6e 73 2e 20 54 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 2e 00 53 | ns..This.setting.is.mandatory..S |
| 74920 | 65 6c 65 63 74 20 68 6f 77 20 6c 61 62 65 6c 73 20 61 72 65 20 61 6c 6c 6f 63 61 74 65 64 20 69 | elect.how.labels.are.allocated.i |
| 74940 | 6e 20 74 68 65 20 67 69 76 65 6e 20 56 52 46 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 | n.the.given.VRF..By.default,.the |
| 74960 | 20 70 65 72 2d 76 72 66 20 6d 6f 64 65 20 69 73 20 73 65 6c 65 63 74 65 64 2c 20 61 6e 64 20 6f | .per-vrf.mode.is.selected,.and.o |
| 74980 | 6e 65 20 6c 61 62 65 6c 20 69 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 70 72 65 66 69 78 65 | ne.label.is.used.for.all.prefixe |
| 749a0 | 73 20 66 72 6f 6d 20 74 68 65 20 56 52 46 2e 20 54 68 65 20 70 65 72 2d 6e 65 78 74 68 6f 70 20 | s.from.the.VRF..The.per-nexthop. |
| 749c0 | 77 69 6c 6c 20 75 73 65 20 61 20 75 6e 69 71 75 65 20 6c 61 62 65 6c 20 66 6f 72 20 61 6c 6c 20 | will.use.a.unique.label.for.all. |
| 749e0 | 70 72 65 66 69 78 65 73 20 74 68 61 74 20 61 72 65 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 | prefixes.that.are.reachable.via. |
| 74a00 | 74 68 65 20 73 61 6d 65 20 6e 65 78 74 68 6f 70 2e 00 53 65 6c 66 20 53 69 67 6e 65 64 20 43 41 | the.same.nexthop..Self.Signed.CA |
| 74a20 | 00 53 65 6e 64 20 61 20 50 72 6f 78 79 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 31 | .Send.a.Proxy.Protocol.version.1 |
| 74a40 | 20 68 65 61 64 65 72 20 28 74 65 78 74 20 66 6f 72 6d 61 74 29 00 53 65 6e 64 20 61 20 50 72 6f | .header.(text.format).Send.a.Pro |
| 74a60 | 78 79 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 20 68 65 61 64 65 72 20 28 62 69 | xy.Protocol.version.2.header.(bi |
| 74a80 | 6e 61 72 79 20 66 6f 72 6d 61 74 29 00 53 65 6e 64 20 61 6c 6c 20 44 4e 53 20 71 75 65 72 69 65 | nary.format).Send.all.DNS.querie |
| 74aa0 | 73 20 74 6f 20 74 68 65 20 49 50 76 34 2f 49 50 76 36 20 44 4e 53 20 73 65 72 76 65 72 20 73 70 | s.to.the.IPv4/IPv6.DNS.server.sp |
| 74ac0 | 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 6e 20 6f 70 74 | ecified.under.`<address>`.on.opt |
| 74ae0 | 69 6f 6e 61 6c 20 70 6f 72 74 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 70 6f 72 | ional.port.specified.under.`<por |
| 74b00 | 74 3e 60 2e 20 54 68 65 20 70 6f 72 74 20 64 65 66 61 75 6c 74 73 20 74 6f 20 35 33 2e 20 59 6f | t>`..The.port.defaults.to.53..Yo |
| 74b20 | 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 65 72 | u.can.configure.multiple.nameser |
| 74b40 | 76 65 72 73 20 68 65 72 65 2e 00 53 65 6e 64 20 65 6d 70 74 79 20 53 53 49 44 20 69 6e 20 62 65 | vers.here..Send.empty.SSID.in.be |
| 74b60 | 61 63 6f 6e 73 20 61 6e 64 20 69 67 6e 6f 72 65 20 70 72 6f 62 65 20 72 65 71 75 65 73 74 20 66 | acons.and.ignore.probe.request.f |
| 74b80 | 72 61 6d 65 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 66 75 6c 6c 20 53 | rames.that.do.not.specify.full.S |
| 74ba0 | 53 49 44 2c 20 69 2e 65 2e 2c 20 72 65 71 75 69 72 65 20 73 74 61 74 69 6f 6e 73 20 74 6f 20 6b | SID,.i.e.,.require.stations.to.k |
| 74bc0 | 6e 6f 77 20 53 53 49 44 2e 00 53 65 6e 64 20 65 6d 70 74 79 20 53 53 49 44 20 69 6e 20 62 65 61 | now.SSID..Send.empty.SSID.in.bea |
| 74be0 | 63 6f 6e 73 20 61 6e 64 20 69 67 6e 6f 72 65 20 70 72 6f 62 65 20 72 65 71 75 65 73 74 20 66 72 | cons.and.ignore.probe.request.fr |
| 74c00 | 61 6d 65 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 66 75 6c 6c 20 53 53 | ames.that.do.not.specify.full.SS |
| 74c20 | 49 44 2c 20 69 2e 65 2e 2c 20 72 65 71 75 69 72 65 20 73 74 61 74 69 6f 6e 73 20 74 6f 20 6b 6e | ID,.i.e.,.require.stations.to.kn |
| 74c40 | 6f 77 20 74 68 65 20 53 53 49 44 2e 00 53 65 6e 74 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 | ow.the.SSID..Sent.to.the.client. |
| 74c60 | 28 4c 41 43 29 20 69 6e 20 74 68 65 20 48 6f 73 74 2d 4e 61 6d 65 20 61 74 74 72 69 62 75 74 65 | (LAC).in.the.Host-Name.attribute |
| 74c80 | 00 53 65 72 69 61 6c 20 43 6f 6e 73 6f 6c 65 00 53 65 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 | .Serial.Console.Serial.interface |
| 74ca0 | 73 20 63 61 6e 20 62 65 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 | s.can.be.any.interface.which.is. |
| 74cc0 | 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 43 50 55 20 6f 72 | directly.connected.to.the.CPU.or |
| 74ce0 | 20 63 68 69 70 73 65 74 20 28 6d 6f 73 74 6c 79 20 6b 6e 6f 77 6e 20 61 73 20 61 20 74 74 79 53 | .chipset.(mostly.known.as.a.ttyS |
| 74d00 | 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 4c 69 6e 75 78 29 20 6f 72 20 61 6e 79 20 6f 74 68 65 | .interface.in.Linux).or.any.othe |
| 74d20 | 72 20 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 20 28 50 72 6f 6c 69 | r.USB.to.serial.converter.(Proli |
| 74d40 | 66 69 63 20 50 4c 32 33 30 33 20 6f 72 20 46 54 44 49 20 46 54 32 33 32 2f 46 54 34 32 33 32 20 | fic.PL2303.or.FTDI.FT232/FT4232. |
| 74d60 | 62 61 73 65 64 20 63 68 69 70 73 29 2e 00 53 65 72 76 65 72 00 53 65 72 76 65 72 20 43 65 72 74 | based.chips)..Server.Server.Cert |
| 74d80 | 69 66 69 63 61 74 65 00 53 65 72 76 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 65 72 | ificate.Server.Configuration.Ser |
| 74da0 | 76 65 72 20 53 69 64 65 00 53 65 72 76 65 72 20 53 69 64 65 3a 00 53 65 72 76 65 72 20 62 72 69 | ver.Side.Server.Side:.Server.bri |
| 74dc0 | 64 67 65 00 53 65 72 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 65 72 76 65 72 20 | dge.Server.configuration.Server. |
| 74de0 | 6e 61 6d 65 73 20 66 6f 72 20 76 69 72 74 75 61 6c 20 68 6f 73 74 73 20 69 74 20 63 61 6e 20 62 | names.for.virtual.hosts.it.can.b |
| 74e00 | 65 20 65 78 61 63 74 2c 20 77 69 6c 64 63 61 72 64 20 6f 72 20 72 65 67 65 78 2e 00 53 65 72 76 | e.exact,.wildcard.or.regex..Serv |
| 74e20 | 65 72 3a 00 53 65 72 76 69 63 65 00 53 65 72 76 69 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | er:.Service.Service.configuratio |
| 74e40 | 6e 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 62 69 6e 64 69 6e 67 20 74 6f 20 | n.is.responsible.for.binding.to. |
| 74e60 | 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 2c 20 77 68 69 6c 65 20 74 68 65 20 62 61 63 6b 65 | a.specific.port,.while.the.backe |
| 74e80 | 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 | nd.configuration.determines.the. |
| 74ea0 | 74 79 70 65 20 6f 66 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 74 6f 20 62 65 20 61 70 70 | type.of.load.balancing.to.be.app |
| 74ec0 | 6c 69 65 64 20 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 72 65 61 6c 20 73 65 72 76 | lied.and.specifies.the.real.serv |
| 74ee0 | 65 72 73 20 74 6f 20 62 65 20 75 74 69 6c 69 7a 65 64 2e 00 53 65 74 20 42 46 44 20 70 65 65 72 | ers.to.be.utilized..Set.BFD.peer |
| 74f00 | 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 00 53 65 | .IPv4.address.or.IPv6.address.Se |
| 74f20 | 74 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 74 6f 20 65 78 61 63 74 6c 79 20 | t.BGP.community-list.to.exactly. |
| 74f40 | 6d 61 74 63 68 2e 00 53 65 74 20 42 47 50 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 | match..Set.BGP.local.preference. |
| 74f60 | 61 74 74 72 69 62 75 74 65 2e 00 53 65 74 20 42 47 50 20 6f 72 69 67 69 6e 20 63 6f 64 65 2e 00 | attribute..Set.BGP.origin.code.. |
| 74f80 | 53 65 74 20 42 47 50 20 6f 72 69 67 69 6e 61 74 6f 72 20 49 44 20 61 74 74 72 69 62 75 74 65 2e | Set.BGP.originator.ID.attribute. |
| 74fa0 | 00 53 65 74 20 42 47 50 20 77 65 69 67 68 74 20 61 74 74 72 69 62 75 74 65 00 53 65 74 20 44 4e | .Set.BGP.weight.attribute.Set.DN |
| 74fc0 | 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 55 44 50 20 70 61 63 6b 65 | AT.rule.20.to.only.NAT.UDP.packe |
| 74fe0 | 74 73 00 53 65 74 20 49 50 20 66 72 61 67 6d 65 6e 74 20 6d 61 74 63 68 2c 20 77 68 65 72 65 3a | ts.Set.IP.fragment.match,.where: |
| 75000 | 00 53 65 74 20 49 50 53 65 63 20 69 6e 62 6f 75 6e 64 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 | .Set.IPSec.inbound.match.criteri |
| 75020 | 61 73 2c 20 77 68 65 72 65 3a 00 53 65 74 20 4f 53 50 46 20 65 78 74 65 72 6e 61 6c 20 6d 65 74 | as,.where:.Set.OSPF.external.met |
| 75040 | 72 69 63 2d 74 79 70 65 2e 00 53 65 74 20 53 4e 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e | ric-type..Set.SNAT.rule.20.to.on |
| 75060 | 6c 79 20 4e 41 54 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 61 63 6b 65 74 73 00 53 65 74 20 53 | ly.NAT.TCP.and.UDP.packets.Set.S |
| 75080 | 4e 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 70 61 63 6b 65 74 73 20 | NAT.rule.20.to.only.NAT.packets. |
| 750a0 | 61 72 72 69 76 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 20 6e | arriving.from.the.192.0.2.0/24.n |
| 750c0 | 65 74 77 6f 72 6b 00 53 65 74 20 53 4e 41 54 20 72 75 6c 65 20 33 30 20 74 6f 20 6f 6e 6c 79 20 | etwork.Set.SNAT.rule.30.to.only. |
| 750e0 | 4e 41 54 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 32 30 | NAT.packets.arriving.from.the.20 |
| 75100 | 33 2e 30 2e 31 31 33 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 61 20 73 6f 75 72 | 3.0.113.0/24.network.with.a.sour |
| 75120 | 63 65 20 70 6f 72 74 20 6f 66 20 38 30 20 61 6e 64 20 34 34 33 00 53 65 74 20 53 53 4c 20 63 65 | ce.port.of.80.and.443.Set.SSL.ce |
| 75140 | 72 74 65 66 69 63 61 74 65 20 3c 6e 61 6d 65 3e 20 66 6f 72 20 73 65 72 76 69 63 65 20 3c 6e 61 | rteficate.<name>.for.service.<na |
| 75160 | 6d 65 3e 00 53 65 74 20 53 53 4c 20 63 65 72 74 69 66 69 63 61 74 65 20 3c 6e 61 6d 65 3e 20 66 | me>.Set.SSL.certificate.<name>.f |
| 75180 | 6f 72 20 73 65 72 76 69 63 65 20 3c 6e 61 6d 65 3e 00 53 65 74 20 54 43 50 2d 4d 53 53 20 28 6d | or.service.<name>.Set.TCP-MSS.(m |
| 751a0 | 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e | aximum.segment.size).for.the.con |
| 751c0 | 6e 65 63 74 69 6f 6e 00 53 65 74 20 54 54 4c 20 74 6f 20 33 30 30 20 73 65 63 6f 6e 64 73 00 53 | nection.Set.TTL.to.300.seconds.S |
| 751e0 | 65 74 20 56 69 72 74 75 61 6c 20 54 75 6e 6e 65 6c 20 49 6e 74 65 72 66 61 63 65 00 53 65 74 20 | et.Virtual.Tunnel.Interface.Set. |
| 75200 | 61 20 63 6f 6e 74 61 69 6e 65 72 20 64 65 73 63 72 69 70 74 69 6f 6e 00 53 65 74 20 61 20 64 65 | a.container.description.Set.a.de |
| 75220 | 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 73 68 61 70 65 72 2e 00 53 65 74 20 61 20 | scription.for.the.shaper..Set.a. |
| 75240 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 | destination.and/or.source.addres |
| 75260 | 73 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 20 66 6f 72 20 69 70 76 34 3a 00 53 65 74 20 | s..Accepted.input.for.ipv4:.Set. |
| 75280 | 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 20 70 6f 72 74 | a.destination.and/or.source.port |
| 752a0 | 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 3a 00 53 65 74 20 61 20 68 75 6d 61 6e 20 72 65 | ..Accepted.input:.Set.a.human.re |
| 752c0 | 61 64 61 62 6c 65 2c 20 64 65 73 63 72 69 70 74 69 76 65 20 61 6c 69 61 73 20 66 6f 72 20 74 68 | adable,.descriptive.alias.for.th |
| 752e0 | 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 41 6c 69 61 73 20 69 73 20 75 73 65 64 20 62 79 20 | is.connection..Alias.is.used.by. |
| 75300 | 65 2e 67 2e 20 74 68 65 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 61 63 65 73 | e.g..the.:opcmd:`show.interfaces |
| 75320 | 60 20 63 6f 6d 6d 61 6e 64 20 6f 72 20 53 4e 4d 50 20 62 61 73 65 64 20 6d 6f 6e 69 74 6f 72 69 | `.command.or.SNMP.based.monitori |
| 75340 | 6e 67 20 74 6f 6f 6c 73 2e 00 53 65 74 20 61 20 6c 69 6d 69 74 20 6f 6e 20 74 68 65 20 6d 61 78 | ng.tools..Set.a.limit.on.the.max |
| 75360 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 63 6f 6e 63 75 72 72 65 6e 74 20 6c 6f 67 67 65 64 | imum.number.of.concurrent.logged |
| 75380 | 2d 69 6e 20 75 73 65 72 73 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 65 74 20 61 20 6d | -in.users.on.the.system..Set.a.m |
| 753a0 | 65 61 6e 69 6e 67 66 75 6c 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 53 65 74 20 61 20 6e 61 6d | eaningful.description..Set.a.nam |
| 753c0 | 65 64 20 61 70 69 20 6b 65 79 2e 20 45 76 65 72 79 20 6b 65 79 20 68 61 73 20 74 68 65 20 73 61 | ed.api.key..Every.key.has.the.sa |
| 753e0 | 6d 65 2c 20 66 75 6c 6c 20 70 65 72 6d 69 73 73 69 6f 6e 73 20 6f 6e 20 74 68 65 20 73 79 73 74 | me,.full.permissions.on.the.syst |
| 75400 | 65 6d 2e 00 53 65 74 20 61 20 72 75 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 53 65 74 20 | em..Set.a.rule.description..Set. |
| 75420 | 61 20 73 70 65 63 69 66 69 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 53 65 74 20 | a.specific.connection.mark..Set. |
| 75440 | 61 20 73 70 65 63 69 66 69 63 20 70 61 63 6b 65 74 20 6d 61 72 6b 20 76 61 6c 75 65 2e 00 53 65 | a.specific.packet.mark.value..Se |
| 75460 | 74 20 61 20 73 70 65 63 69 66 69 63 20 70 61 63 6b 65 74 20 6d 61 72 6b 2e 00 53 65 74 20 61 20 | t.a.specific.packet.mark..Set.a. |
| 75480 | 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 20 6f 66 20 44 69 66 66 65 72 65 6e 74 69 61 74 65 64 | specific.value.of.Differentiated |
| 754a0 | 20 53 65 72 76 69 63 65 73 20 43 6f 64 65 70 6f 69 6e 74 20 28 44 53 43 50 29 2e 00 53 65 74 20 | .Services.Codepoint.(DSCP)..Set. |
| 754c0 | 61 63 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2e | action.for.the.route-map.policy. |
| 754e0 | 00 53 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 6f 6e 20 65 6e 74 72 69 65 73 20 6d | .Set.action.to.take.on.entries.m |
| 75500 | 61 74 63 68 69 6e 67 20 74 68 69 73 20 72 75 6c 65 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a | atching.this.rule..Set.an.:abbr: |
| 75520 | 60 41 20 28 41 64 64 72 65 73 73 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 | `A.(Address)`.record..Supports.` |
| 75540 | 60 40 60 60 20 61 6e 64 20 60 60 61 6e 79 60 60 20 6b 65 79 77 6f 72 64 73 2e 00 53 65 74 20 61 | `@``.and.``any``.keywords..Set.a |
| 75560 | 6e 20 3a 61 62 62 72 3a 60 41 41 41 41 20 28 49 50 76 36 20 41 64 64 72 65 73 73 29 60 20 72 65 | n.:abbr:`AAAA.(IPv6.Address)`.re |
| 75580 | 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 61 6e 64 20 60 60 61 6e 79 60 60 | cord..Supports.``@``.and.``any`` |
| 755a0 | 20 6b 65 79 77 6f 72 64 73 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 43 4e 41 4d 45 20 28 | .keywords..Set.an.:abbr:`CNAME.( |
| 755c0 | 43 61 6e 6f 6e 69 63 61 6c 20 6e 61 6d 65 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 | Canonical.name)`.record..Support |
| 755e0 | 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 4e | s.``@``.keyword..Set.an.:abbr:`N |
| 75600 | 41 50 54 52 20 28 4e 61 6d 69 6e 67 20 61 75 74 68 6f 72 69 74 79 20 70 6f 69 6e 74 65 72 29 60 | APTR.(Naming.authority.pointer)` |
| 75620 | 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e | .record..Supports.``@``.keyword. |
| 75640 | 20 4e 41 50 54 52 20 72 65 63 6f 72 64 73 20 73 75 70 70 6f 72 74 20 74 68 65 20 66 6f 6c 6c 6f | .NAPTR.records.support.the.follo |
| 75660 | 77 69 6e 67 20 6f 70 74 69 6f 6e 73 3a 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 4e 53 20 28 | wing.options:.Set.an.:abbr:`NS.( |
| 75680 | 4e 61 6d 65 73 65 72 76 65 72 29 60 20 72 65 63 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 | Nameserver)`.record..Set.an.:abb |
| 756a0 | 72 3a 60 50 54 52 20 28 50 6f 69 6e 74 65 72 20 72 65 63 6f 72 64 29 60 20 72 65 63 6f 72 64 2e | r:`PTR.(Pointer.record)`.record. |
| 756c0 | 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 | .Supports.``@``.keyword..Set.an. |
| 756e0 | 3a 61 62 62 72 3a 60 53 50 46 20 28 53 65 6e 64 65 72 20 70 6f 6c 69 63 79 20 66 72 61 6d 65 77 | :abbr:`SPF.(Sender.policy.framew |
| 75700 | 6f 72 6b 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 | ork)`.record..Supports.``@``.key |
| 75720 | 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 53 52 56 20 28 53 65 72 76 69 63 65 | word..Set.an.:abbr:`SRV.(Service |
| 75740 | 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 | )`.record..Supports.``@``.keywor |
| 75760 | 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 54 58 54 20 28 54 65 78 74 29 60 20 72 65 63 | d..Set.an.:abbr:`TXT.(Text)`.rec |
| 75780 | 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 | ord..Supports.``@``.keyword..Set |
| 757a0 | 20 61 6e 20 41 50 49 2d 4b 45 59 20 69 73 20 74 68 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 | .an.API-KEY.is.the.minimal.confi |
| 757c0 | 67 75 72 61 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 77 6f 72 6b 69 6e 67 20 41 50 49 20 45 6e | guration.to.get.a.working.API.En |
| 757e0 | 64 70 6f 69 6e 74 2e 00 53 65 74 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 70 6f 72 74 2d 72 61 6e | dpoint..Set.an.external.port-ran |
| 75800 | 67 65 20 66 6f 72 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 70 6f 6f 6c 2c 20 74 68 65 20 64 65 | ge.for.the.external.pool,.the.de |
| 75820 | 66 61 75 6c 74 20 72 61 6e 67 65 20 69 73 20 31 30 32 34 2d 36 35 35 33 35 2e 20 4d 75 6c 74 69 | fault.range.is.1024-65535..Multi |
| 75840 | 70 6c 65 20 65 6e 74 72 69 65 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 | ple.entries.can.be.added.to.the. |
| 75860 | 73 61 6d 65 20 70 6f 6f 6c 2e 00 53 65 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 61 | same.pool..Set.authentication.ba |
| 75880 | 63 6b 65 6e 64 2e 20 54 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 | ckend..The.configured.authentica |
| 758a0 | 74 69 6f 6e 20 62 61 63 6b 65 6e 64 20 69 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 71 75 65 | tion.backend.is.used.for.all.que |
| 758c0 | 72 69 65 73 2e 00 53 65 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 20 76 61 6c 75 65 2e | ries..Set.connection.mark.value. |
| 758e0 | 00 53 65 74 20 63 6f 6e 74 61 69 6e 65 72 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 6f 72 20 70 | .Set.container.capabilities.or.p |
| 75900 | 65 72 6d 69 73 73 69 6f 6e 73 2e 00 53 65 74 20 63 6f 6e 74 61 69 6e 65 72 20 73 79 73 63 74 6c | ermissions..Set.container.sysctl |
| 75920 | 20 76 61 6c 75 65 73 2e 00 53 65 74 20 63 75 73 74 6f 6d 20 48 54 54 50 20 68 65 61 64 65 72 73 | .values..Set.custom.HTTP.headers |
| 75940 | 20 74 6f 20 62 65 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 61 6c 6c 20 72 65 73 70 6f 6e 73 65 73 | .to.be.included.in.all.responses |
| 75960 | 00 53 65 74 20 63 75 73 74 6f 6d 20 48 54 54 50 20 68 65 61 64 65 72 73 20 74 6f 20 62 65 20 69 | .Set.custom.HTTP.headers.to.be.i |
| 75980 | 6e 63 6c 75 64 65 64 20 69 6e 20 61 6c 6c 20 72 65 73 70 6f 6e 73 65 73 20 75 73 69 6e 67 20 74 | ncluded.in.all.responses.using.t |
| 759a0 | 68 65 20 62 61 63 6b 65 6e 64 00 53 65 74 20 64 65 6c 61 79 20 62 65 74 77 65 65 6e 20 67 72 61 | he.backend.Set.delay.between.gra |
| 759c0 | 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 73 73 61 67 65 73 20 73 65 6e 74 20 6f 6e 20 61 6e 20 | tuitous.ARP.messages.sent.on.an. |
| 759e0 | 69 6e 74 65 72 66 61 63 65 2e 00 53 65 74 20 64 65 6c 61 79 20 66 6f 72 20 73 65 63 6f 6e 64 20 | interface..Set.delay.for.second. |
| 75a00 | 73 65 74 20 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 61 66 74 65 72 20 74 72 61 | set.of.gratuitous.ARPs.after.tra |
| 75a20 | 6e 73 69 74 69 6f 6e 20 74 6f 20 4d 41 53 54 45 52 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 | nsition.to.MASTER..Set.descripti |
| 75a40 | 6f 6e 20 60 3c 74 65 78 74 3e 60 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 73 65 72 76 | on.`<text>`.for.dynamic.DNS.serv |
| 75a60 | 69 63 65 20 62 65 69 6e 67 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 53 65 74 20 64 65 73 63 72 69 | ice.being.configured..Set.descri |
| 75a80 | 70 74 69 6f 6e 20 66 6f 72 20 61 73 2d 70 61 74 68 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 | ption.for.as-path-list.policy..S |
| 75aa0 | 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 | et.description.for.community-lis |
| 75ac0 | 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 65 78 | t.policy..Set.description.for.ex |
| 75ae0 | 74 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 | tcommunity-list.policy..Set.desc |
| 75b00 | 72 69 70 74 69 6f 6e 20 66 6f 72 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 | ription.for.large-community-list |
| 75b20 | 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c | .policy..Set.description.for.rul |
| 75b40 | 65 20 69 6e 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 | e.in.IPv6.prefix-list..Set.descr |
| 75b60 | 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c 65 20 69 6e 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 | iption.for.rule.in.the.prefix-li |
| 75b80 | 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c 65 2e 00 53 65 | st..Set.description.for.rule..Se |
| 75ba0 | 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 49 50 76 36 20 61 63 63 65 73 | t.description.for.the.IPv6.acces |
| 75bc0 | 73 20 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 | s.list..Set.description.for.the. |
| 75be0 | 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 | IPv6.prefix-list.policy..Set.des |
| 75c00 | 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 2e 00 53 65 | cription.for.the.access.list..Se |
| 75c20 | 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 | t.description.for.the.prefix-lis |
| 75c40 | 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 | t.policy..Set.description.for.th |
| 75c60 | 65 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 | e.route-map.policy..Set.descript |
| 75c80 | 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 75 6c 65 20 69 6e 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 | ion.for.the.rule.in.the.route-ma |
| 75ca0 | 70 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 6f 66 20 74 68 65 | p.policy..Set.description.of.the |
| 75cc0 | 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 00 53 65 74 20 64 65 73 63 72 69 70 | .peer.or.peer.group..Set.descrip |
| 75ce0 | 74 69 6f 6e 2e 00 53 65 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 72 | tion..Set.destination.address.or |
| 75d00 | 20 70 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 2e 00 53 65 74 20 64 65 73 74 69 6e 61 74 69 6f | .prefix.to.match..Set.destinatio |
| 75d20 | 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 6d 65 74 72 69 63 2e 20 41 64 64 20 6f | n.routing.protocol.metric..Add.o |
| 75d40 | 72 20 73 75 62 74 72 61 63 74 20 6d 65 74 72 69 63 2c 20 6f 72 20 73 65 74 20 6d 65 74 72 69 63 | r.subtract.metric,.or.set.metric |
| 75d60 | 20 76 61 6c 75 65 2e 00 53 65 74 20 65 74 68 31 20 74 6f 20 62 65 20 74 68 65 20 6c 69 73 74 65 | .value..Set.eth1.to.be.the.liste |
| 75d80 | 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 65 20 44 48 43 50 76 36 20 72 65 | ning.interface.for.the.DHCPv6.re |
| 75da0 | 6c 61 79 2e 00 53 65 74 20 65 78 65 63 75 74 69 6f 6e 20 74 69 6d 65 20 69 6e 20 63 6f 6d 6d 6f | lay..Set.execution.time.in.commo |
| 75dc0 | 6e 20 63 72 6f 6e 5f 20 74 69 6d 65 20 66 6f 72 6d 61 74 2e 20 41 20 63 72 6f 6e 20 60 3c 73 70 | n.cron_.time.format..A.cron.`<sp |
| 75de0 | 65 63 3e 60 20 6f 66 20 60 60 33 30 20 2a 2f 36 20 2a 20 2a 20 2a 60 60 20 77 6f 75 6c 64 20 65 | ec>`.of.``30.*/6.*.*.*``.would.e |
| 75e00 | 78 65 63 75 74 65 20 74 68 65 20 60 3c 74 61 73 6b 3e 60 20 61 74 20 6d 69 6e 75 74 65 20 33 30 | xecute.the.`<task>`.at.minute.30 |
| 75e20 | 20 70 61 73 74 20 65 76 65 72 79 20 36 74 68 20 68 6f 75 72 2e 00 53 65 74 20 65 78 74 63 6f 6d | .past.every.6th.hour..Set.extcom |
| 75e40 | 6d 75 6e 69 74 79 20 62 61 6e 64 77 69 64 74 68 00 53 65 74 20 65 78 74 65 72 6e 61 6c 20 73 6f | munity.bandwidth.Set.external.so |
| 75e60 | 75 72 63 65 20 70 6f 72 74 20 6c 69 6d 69 74 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 6c | urce.port.limits.that.will.be.al |
| 75e80 | 6c 6f 63 61 74 65 64 20 74 6f 20 65 61 63 68 20 73 75 62 73 63 72 69 62 65 72 20 69 6e 64 69 76 | located.to.each.subscriber.indiv |
| 75ea0 | 69 64 75 61 6c 6c 79 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 30 | idually..The.default.value.is.20 |
| 75ec0 | 30 30 2e 00 53 65 74 20 68 6f 70 20 6c 69 6d 69 74 20 76 61 6c 75 65 2e 00 53 65 74 20 69 66 20 | 00..Set.hop.limit.value..Set.if. |
| 75ee0 | 61 6e 74 65 6e 6e 61 20 70 61 74 74 65 72 6e 20 64 6f 65 73 20 6e 6f 74 20 63 68 61 6e 67 65 20 | antenna.pattern.does.not.change. |
| 75f00 | 64 75 72 69 6e 67 20 74 68 65 20 6c 69 66 65 74 69 6d 65 20 6f 66 20 61 6e 20 61 73 73 6f 63 69 | during.the.lifetime.of.an.associ |
| 75f20 | 61 74 69 6f 6e 00 53 65 74 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6d | ation.Set.inbound.interface.to.m |
| 75f40 | 61 74 63 68 2e 00 53 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 61 20 7a 6f 6e 65 2e 20 | atch..Set.interfaces.to.a.zone.. |
| 75f60 | 41 20 7a 6f 6e 65 20 63 61 6e 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 | A.zone.can.have.multiple.interfa |
| 75f80 | 63 65 73 2e 20 42 75 74 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 6f 6e 6c 79 20 62 | ces..But.an.interface.can.only.b |
| 75fa0 | 65 20 61 20 6d 65 6d 62 65 72 20 69 6e 20 6f 6e 65 20 7a 6f 6e 65 2e 00 53 65 74 20 6c 6f 63 61 | e.a.member.in.one.zone..Set.loca |
| 75fc0 | 6c 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 | l.:abbr:`ASN.(Autonomous.System. |
| 75fe0 | 4e 75 6d 62 65 72 29 60 20 74 68 61 74 20 74 68 69 73 20 72 6f 75 74 65 72 20 72 65 70 72 65 73 | Number)`.that.this.router.repres |
| 76000 | 65 6e 74 73 2e 20 54 68 69 73 20 69 73 20 61 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 | ents..This.is.a.a.mandatory.opti |
| 76020 | 6f 6e 21 00 53 65 74 20 6c 6f 63 61 6c 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 | on!.Set.local.autonomous.system. |
| 76040 | 6e 75 6d 62 65 72 20 74 68 61 74 20 74 68 69 73 20 72 6f 75 74 65 72 20 72 65 70 72 65 73 65 6e | number.that.this.router.represen |
| 76060 | 74 73 2e 20 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 21 00 | ts..This.is.a.mandatory.option!. |
| 76080 | 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e | Set.match.criteria.based.on.conn |
| 760a0 | 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 | ection.mark..Set.match.criteria. |
| 760c0 | 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 2c 20 77 68 65 72 65 | based.on.destination.port,.where |
| 760e0 | 20 3c 6d 61 74 63 68 5f 63 72 69 74 65 72 69 61 3e 20 63 6f 75 6c 64 20 62 65 3a 00 53 65 74 20 | .<match_criteria>.could.be:.Set. |
| 76100 | 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 65 73 73 69 6f 6e 20 | match.criteria.based.on.session. |
| 76120 | 73 74 61 74 65 2e 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 | state..Set.match.criteria.based. |
| 76140 | 6f 6e 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 67 72 6f 75 70 73 2c | on.source.or.destination.groups, |
| 76160 | 20 77 68 65 72 65 20 3c 74 65 78 74 3e 20 77 6f 75 6c 64 20 62 65 20 74 68 65 20 67 72 6f 75 70 | .where.<text>.would.be.the.group |
| 76180 | 20 6e 61 6d 65 2f 69 64 65 6e 74 69 66 69 65 72 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 | .name/identifier..Prepend.charac |
| 761a0 | 74 65 72 20 27 21 27 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 | ter.'!'.for.inverted.matching.cr |
| 761c0 | 69 74 65 72 69 61 2e 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 | iteria..Set.match.criteria.based |
| 761e0 | 20 6f 6e 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 70 76 34 7c 69 | .on.source.or.destination.ipv4|i |
| 76200 | 70 76 36 20 61 64 64 72 65 73 73 2c 20 77 68 65 72 65 20 3c 6d 61 74 63 68 5f 63 72 69 74 65 72 | pv6.address,.where.<match_criter |
| 76220 | 69 61 3e 20 63 6f 75 6c 64 20 62 65 3a 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 | ia>.could.be:.Set.match.criteria |
| 76240 | 20 62 61 73 65 64 20 6f 6e 20 74 63 70 20 66 6c 61 67 73 2e 20 41 6c 6c 6f 77 65 64 20 76 61 6c | .based.on.tcp.flags..Allowed.val |
| 76260 | 75 65 73 20 66 6f 72 20 54 43 50 20 66 6c 61 67 73 3a 20 53 59 4e 20 41 43 4b 20 46 49 4e 20 52 | ues.for.TCP.flags:.SYN.ACK.FIN.R |
| 76280 | 53 54 20 55 52 47 20 50 53 48 20 41 4c 4c 2e 20 57 68 65 6e 20 73 70 65 63 69 66 79 69 6e 67 20 | ST.URG.PSH.ALL..When.specifying. |
| 762a0 | 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 66 6c 61 67 2c 20 66 6c 61 67 73 20 73 68 6f 75 6c 64 | more.than.one.flag,.flags.should |
| 762c0 | 20 62 65 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 | .be.comma-separated..For.example |
| 762e0 | 20 3a 20 76 61 6c 75 65 20 6f 66 20 27 53 59 4e 2c 21 41 43 4b 2c 21 46 49 4e 2c 21 52 53 54 27 | .:.value.of.'SYN,!ACK,!FIN,!RST' |
| 76300 | 20 77 69 6c 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 74 68 | .will.only.match.packets.with.th |
| 76320 | 65 20 53 59 4e 20 66 6c 61 67 20 73 65 74 2c 20 61 6e 64 20 74 68 65 20 41 43 4b 2c 20 46 49 4e | e.SYN.flag.set,.and.the.ACK,.FIN |
| 76340 | 20 61 6e 64 20 52 53 54 20 66 6c 61 67 73 20 75 6e 73 65 74 2e 00 53 65 74 20 6d 61 78 69 6d 75 | .and.RST.flags.unset..Set.maximu |
| 76360 | 6d 20 60 3c 73 69 7a 65 3e 60 20 6f 66 20 44 48 43 50 20 70 61 63 6b 65 74 73 20 69 6e 63 6c 75 | m.`<size>`.of.DHCP.packets.inclu |
| 76380 | 64 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 49 66 | ding.relay.agent.information..If |
| 763a0 | 20 61 20 44 48 43 50 20 70 61 63 6b 65 74 20 73 69 7a 65 20 73 75 72 70 61 73 73 65 73 20 74 68 | .a.DHCP.packet.size.surpasses.th |
| 763c0 | 69 73 20 76 61 6c 75 65 20 69 74 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 77 69 | is.value.it.will.be.forwarded.wi |
| 763e0 | 74 68 6f 75 74 20 61 70 70 65 6e 64 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f | thout.appending.relay.agent.info |
| 76400 | 72 6d 61 74 69 6f 6e 2e 20 52 61 6e 67 65 20 36 34 2e 2e 2e 31 34 30 30 2c 20 64 65 66 61 75 6c | rmation..Range.64...1400,.defaul |
| 76420 | 74 20 35 37 36 2e 00 53 65 74 20 6d 61 78 69 6d 75 6d 20 61 76 65 72 61 67 65 20 6d 61 74 63 68 | t.576..Set.maximum.average.match |
| 76440 | 69 6e 67 20 72 61 74 65 2e 20 46 6f 72 6d 61 74 20 66 6f 72 20 72 61 74 65 3a 20 69 6e 74 65 67 | ing.rate..Format.for.rate:.integ |
| 76460 | 65 72 2f 74 69 6d 65 5f 75 6e 69 74 2c 20 77 68 65 72 65 20 74 69 6d 65 5f 75 6e 69 74 20 63 6f | er/time_unit,.where.time_unit.co |
| 76480 | 75 6c 64 20 62 65 20 61 6e 79 20 6f 6e 65 20 6f 66 20 73 65 63 6f 6e 64 2c 20 6d 69 6e 75 74 65 | uld.be.any.one.of.second,.minute |
| 764a0 | 2c 20 68 6f 75 72 20 6f 72 20 64 61 79 2e 46 6f 72 20 65 78 61 6d 70 6c 65 20 31 2f 73 65 63 6f | ,.hour.or.day.For.example.1/seco |
| 764c0 | 6e 64 20 69 6d 70 6c 69 65 73 20 72 75 6c 65 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 20 61 74 | nd.implies.rule.to.be.matched.at |
| 764e0 | 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 6f 6e 63 65 20 70 65 72 20 73 65 63 6f 6e 64 2e 00 | .an.average.of.once.per.second.. |
| 76500 | 53 65 74 20 6d 61 78 69 6d 75 6d 20 68 6f 70 20 63 6f 75 6e 74 20 62 65 66 6f 72 65 20 70 61 63 | Set.maximum.hop.count.before.pac |
| 76520 | 6b 65 74 73 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2c 20 64 65 66 61 75 6c 74 3a 20 31 30 00 | kets.are.discarded,.default:.10. |
| 76540 | 53 65 74 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f | Set.maximum.number.of.packets.to |
| 76560 | 20 61 6c 6f 77 20 69 6e 20 65 78 63 65 73 73 20 6f 66 20 72 61 74 65 2e 00 53 65 74 20 6d 69 6e | .alow.in.excess.of.rate..Set.min |
| 76580 | 69 6d 75 6d 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 72 65 66 72 65 73 68 69 6e | imum.time.interval.for.refreshin |
| 765a0 | 67 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 77 68 69 6c 65 20 4d 41 53 54 45 52 2e 00 | g.gratuitous.ARPs.while.MASTER.. |
| 765c0 | 53 65 74 20 6d 6f 64 65 20 66 6f 72 20 49 50 73 65 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f | Set.mode.for.IPsec.authenticatio |
| 765e0 | 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 4c 32 54 50 20 63 6c 69 65 6e 74 73 2e | n.between.VyOS.and.L2TP.clients. |
| 76600 | 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 | .Set.number.of.gratuitous.ARP.me |
| 76620 | 73 73 61 67 65 73 20 74 6f 20 73 65 6e 64 20 61 74 20 61 20 74 69 6d 65 20 61 66 74 65 72 20 74 | ssages.to.send.at.a.time.after.t |
| 76640 | 72 61 6e 73 69 74 69 6f 6e 20 74 6f 20 4d 41 53 54 45 52 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 | ransition.to.MASTER..Set.number. |
| 76660 | 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 73 73 61 67 65 73 20 74 6f 20 73 65 | of.gratuitous.ARP.messages.to.se |
| 76680 | 6e 64 20 61 74 20 61 20 74 69 6d 65 20 77 68 69 6c 65 20 4d 41 53 54 45 52 2e 00 53 65 74 20 6e | nd.at.a.time.while.MASTER..Set.n |
| 766a0 | 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 48 65 6c 6c 6f 20 49 6e 74 65 72 | umber.of.seconds.for.Hello.Inter |
| 766c0 | 76 61 6c 20 74 69 6d 65 72 20 76 61 6c 75 65 2e 20 53 65 74 74 69 6e 67 20 74 68 69 73 20 76 61 | val.timer.value..Setting.this.va |
| 766e0 | 6c 75 65 2c 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 65 | lue,.Hello.packet.will.be.sent.e |
| 76700 | 76 65 72 79 20 74 69 6d 65 72 20 76 61 6c 75 65 20 73 65 63 6f 6e 64 73 20 6f 6e 20 74 68 65 20 | very.timer.value.seconds.on.the. |
| 76720 | 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 76 61 6c 75 65 20 | specified.interface..This.value. |
| 76740 | 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 6d 65 20 66 6f 72 20 61 6c 6c 20 72 6f 75 74 65 72 73 | must.be.the.same.for.all.routers |
| 76760 | 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 63 6f 6d 6d 6f 6e 20 6e 65 74 77 6f 72 6b 2e 20 54 | .attached.to.a.common.network..T |
| 76780 | 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 20 73 65 63 6f 6e 64 73 2e 20 | he.default.value.is.10.seconds.. |
| 767a0 | 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 | The.interval.range.is.1.to.65535 |
| 767c0 | 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 72 6f 75 74 | ..Set.number.of.seconds.for.rout |
| 767e0 | 65 72 20 44 65 61 64 20 49 6e 74 65 72 76 61 6c 20 74 69 6d 65 72 20 76 61 6c 75 65 20 75 73 65 | er.Dead.Interval.timer.value.use |
| 76800 | 64 20 66 6f 72 20 57 61 69 74 20 54 69 6d 65 72 20 61 6e 64 20 49 6e 61 63 74 69 76 69 74 79 20 | d.for.Wait.Timer.and.Inactivity. |
| 76820 | 54 69 6d 65 72 2e 20 54 68 69 73 20 76 61 6c 75 65 20 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 | Timer..This.value.must.be.the.sa |
| 76840 | 6d 65 20 66 6f 72 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 | me.for.all.routers.attached.to.a |
| 76860 | 20 63 6f 6d 6d 6f 6e 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | .common.network..The.default.val |
| 76880 | 75 65 20 69 73 20 34 30 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 | ue.is.40.seconds..The.interval.r |
| 768a0 | 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 53 65 74 20 70 61 63 6b 65 74 20 6d | ange.is.1.to.65535..Set.packet.m |
| 768c0 | 6f 64 69 66 69 63 61 74 69 6f 6e 73 3a 20 45 78 70 6c 69 63 69 74 6c 79 20 73 65 74 20 54 43 50 | odifications:.Explicitly.set.TCP |
| 768e0 | 20 4d 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 20 76 61 6c 75 65 2e 00 53 65 74 | .Maximum.segment.size.value..Set |
| 76900 | 20 70 61 63 6b 65 74 20 6d 6f 64 69 66 69 63 61 74 69 6f 6e 73 3a 20 50 61 63 6b 65 74 20 44 69 | .packet.modifications:.Packet.Di |
| 76920 | 66 66 65 72 65 6e 74 69 61 74 65 64 20 53 65 72 76 69 63 65 73 20 43 6f 64 65 70 6f 69 6e 74 20 | fferentiated.Services.Codepoint. |
| 76940 | 28 44 53 43 50 29 00 53 65 74 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 6d 61 74 63 68 69 | (DSCP).Set.parameters.for.matchi |
| 76960 | 6e 67 20 72 65 63 65 6e 74 6c 79 20 73 65 65 6e 20 73 6f 75 72 63 65 73 2e 20 54 68 69 73 20 6d | ng.recently.seen.sources..This.m |
| 76980 | 61 74 63 68 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 62 79 20 73 65 65 74 69 6e 67 20 63 6f | atch.could.be.used.by.seeting.co |
| 769a0 | 75 6e 74 20 28 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 73 65 65 6e 20 6d 6f 72 65 20 74 68 | unt.(source.address.seen.more.th |
| 769c0 | 61 6e 20 3c 31 2d 32 35 35 3e 20 74 69 6d 65 73 29 20 61 6e 64 2f 6f 72 20 74 69 6d 65 20 28 73 | an.<1-255>.times).and/or.time.(s |
| 769e0 | 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 73 65 65 6e 20 69 6e 20 74 68 65 20 6c 61 73 74 20 3c | ource.address.seen.in.the.last.< |
| 76a00 | 30 2d 34 32 39 34 39 36 37 32 39 35 3e 20 73 65 63 6f 6e 64 73 29 2e 00 53 65 74 20 70 72 65 64 | 0-4294967295>.seconds)..Set.pred |
| 76a20 | 65 66 69 6e 65 64 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 70 68 72 61 73 65 2e 00 53 65 74 | efined.shared.secret.phrase..Set |
| 76a40 | 20 70 72 65 66 69 78 65 73 20 74 6f 20 74 61 62 6c 65 2e 00 53 65 74 20 70 72 6f 78 79 20 66 6f | .prefixes.to.table..Set.proxy.fo |
| 76a60 | 72 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 69 74 69 61 74 65 64 20 62 79 20 56 | r.all.connections.initiated.by.V |
| 76a80 | 79 4f 53 2c 20 69 6e 63 6c 75 64 69 6e 67 20 48 54 54 50 2c 20 48 54 54 50 53 2c 20 61 6e 64 20 | yOS,.including.HTTP,.HTTPS,.and. |
| 76aa0 | 46 54 50 20 28 61 6e 6f 6e 79 6d 6f 75 73 20 66 74 70 29 2e 00 53 65 74 20 72 6f 75 74 65 20 74 | FTP.(anonymous.ftp)..Set.route.t |
| 76ac0 | 61 72 67 65 74 20 76 61 6c 75 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 36 35 35 33 35 | arget.value.in.format.``<0-65535 |
| 76ae0 | 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 20 6f 72 20 60 60 3c 49 50 3a 30 2d 36 35 35 33 | :0-4294967295>``.or.``<IP:0-6553 |
| 76b00 | 35 3e 60 60 2e 00 53 65 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f 20 66 6f 72 77 61 | 5>``..Set.routing.table.to.forwa |
| 76b20 | 72 64 20 70 61 63 6b 65 74 20 74 6f 2e 00 53 65 74 20 72 75 6c 65 20 61 63 74 69 6f 6e 20 74 6f | rd.packet.to..Set.rule.action.to |
| 76b40 | 20 64 72 6f 70 2e 00 53 65 74 20 73 65 72 76 69 63 65 20 74 6f 20 62 69 6e 64 20 6f 6e 20 49 50 | .drop..Set.service.to.bind.on.IP |
| 76b60 | 20 61 64 64 72 65 73 73 2c 20 62 79 20 64 65 66 61 75 6c 74 20 6c 69 73 74 65 6e 20 6f 6e 20 61 | .address,.by.default.listen.on.a |
| 76b80 | 6e 79 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 00 53 65 74 20 73 69 74 65 20 6f 66 20 6f 72 69 | ny.IPv4.and.IPv6.Set.site.of.ori |
| 76ba0 | 67 69 6e 20 76 61 6c 75 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 | gin.value.in.format.``<0-65535:0 |
| 76bc0 | 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 20 6f 72 20 60 60 3c 49 50 3a 30 2d 36 35 35 33 35 3e | -4294967295>``.or.``<IP:0-65535> |
| 76be0 | 60 60 2e 00 53 65 74 20 73 6f 6d 65 20 61 74 74 72 69 62 75 74 65 73 20 28 6c 69 6b 65 20 41 53 | ``..Set.some.attributes.(like.AS |
| 76c00 | 20 50 41 54 48 20 6f 72 20 43 6f 6d 6d 75 6e 69 74 79 20 76 61 6c 75 65 29 20 74 6f 20 61 64 76 | .PATH.or.Community.value).to.adv |
| 76c20 | 65 72 74 69 73 65 64 20 72 6f 75 74 65 73 20 74 6f 20 6e 65 69 67 68 62 6f 72 73 2e 00 53 65 74 | ertised.routes.to.neighbors..Set |
| 76c40 | 20 73 6f 6d 65 20 6d 65 74 72 69 63 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 66 | .some.metric.to.routes.learned.f |
| 76c60 | 72 6f 6d 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 69 67 68 62 6f 72 2e 00 53 65 74 20 73 | rom.a.particular.neighbor..Set.s |
| 76c80 | 6f 75 72 63 65 20 49 50 2f 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 20 72 6f 75 74 65 2e | ource.IP/IPv6.address.for.route. |
| 76ca0 | 00 53 65 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 20 74 6f | .Set.source.address.or.prefix.to |
| 76cc0 | 20 6d 61 74 63 68 2e 00 53 65 74 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 20 74 6f 20 79 6f | .match..Set.source-address.to.yo |
| 76ce0 | 75 72 20 6c 6f 63 61 6c 20 49 50 20 28 4c 41 4e 29 2e 00 53 65 74 20 74 61 67 20 76 61 6c 75 65 | ur.local.IP.(LAN)..Set.tag.value |
| 76d00 | 20 66 6f 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 00 53 65 74 20 74 68 65 20 22 | .for.routing.protocol..Set.the." |
| 76d20 | 72 65 63 75 72 73 69 6f 6e 20 64 65 73 69 72 65 64 22 20 62 69 74 20 69 6e 20 72 65 71 75 65 73 | recursion.desired".bit.in.reques |
| 76d40 | 74 73 20 74 6f 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 6e 61 6d 65 73 65 72 76 65 72 2e 00 53 | ts.to.the.upstream.nameserver..S |
| 76d60 | 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 44 52 20 28 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 | et.the.:abbr:`DR.(Designated.Rou |
| 76d80 | 74 65 72 29 60 20 50 72 69 6f 72 69 74 79 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | ter)`.Priority.for.the.interface |
| 76da0 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 61 6c 6c 6f | ..This.command.is.useful.to.allo |
| 76dc0 | 77 20 74 68 65 20 75 73 65 72 20 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 77 68 61 74 20 6e 6f 64 | w.the.user.to.influence.what.nod |
| 76de0 | 65 20 62 65 63 6f 6d 65 73 20 74 68 65 20 44 52 20 66 6f 72 20 61 20 4c 41 4e 20 73 65 67 6d 65 | e.becomes.the.DR.for.a.LAN.segme |
| 76e00 | 6e 74 2e 00 53 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 4d 52 55 20 28 4d 61 78 69 6d 75 6d 20 | nt..Set.the.:abbr:`MRU.(Maximum. |
| 76e20 | 52 65 63 65 69 76 65 20 55 6e 69 74 29 60 20 74 6f 20 60 6d 72 75 60 2e 20 50 50 50 64 20 77 69 | Receive.Unit)`.to.`mru`..PPPd.wi |
| 76e40 | 6c 6c 20 61 73 6b 20 74 68 65 20 70 65 65 72 20 74 6f 20 73 65 6e 64 20 70 61 63 6b 65 74 73 20 | ll.ask.the.peer.to.send.packets. |
| 76e60 | 6f 66 20 6e 6f 20 6d 6f 72 65 20 74 68 61 6e 20 60 6d 72 75 60 20 62 79 74 65 73 2e 20 54 68 65 | of.no.more.than.`mru`.bytes..The |
| 76e80 | 20 76 61 6c 75 65 20 6f 66 20 60 6d 72 75 60 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 | .value.of.`mru`.must.be.between. |
| 76ea0 | 31 32 38 20 61 6e 64 20 31 36 33 38 34 2e 00 53 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 54 54 | 128.and.16384..Set.the.:abbr:`TT |
| 76ec0 | 4c 20 28 54 69 6d 65 2d 74 6f 2d 6c 69 76 65 29 60 20 66 6f 72 20 74 68 65 20 72 65 63 6f 72 64 | L.(Time-to-live)`.for.the.record |
| 76ee0 | 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 69 73 20 33 30 30 20 73 65 63 6f | .in.seconds..Default.is.300.seco |
| 76f00 | 6e 64 73 2e 00 53 65 74 20 74 68 65 20 42 47 50 20 6e 65 78 74 68 6f 70 20 61 64 64 72 65 73 73 | nds..Set.the.BGP.nexthop.address |
| 76f20 | 20 74 6f 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 65 65 72 2e 20 46 6f 72 | .to.the.address.of.the.peer..For |
| 76f40 | 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 20 72 6f 75 74 65 2d 6d 61 70 20 74 68 69 73 20 6d 65 61 6e | .an.incoming.route-map.this.mean |
| 76f60 | 73 20 74 68 65 20 69 70 20 61 64 64 72 65 73 73 20 6f 66 20 6f 75 72 20 70 65 65 72 20 69 73 20 | s.the.ip.address.of.our.peer.is. |
| 76f80 | 75 73 65 64 2e 20 46 6f 72 20 61 6e 20 6f 75 74 67 6f 69 6e 67 20 72 6f 75 74 65 2d 6d 61 70 20 | used..For.an.outgoing.route-map. |
| 76fa0 | 74 68 69 73 20 6d 65 61 6e 73 20 74 68 65 20 69 70 20 61 64 64 72 65 73 73 20 6f 66 20 6f 75 72 | this.means.the.ip.address.of.our |
| 76fc0 | 20 73 65 6c 66 20 69 73 20 75 73 65 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 70 | .self.is.used.to.establish.the.p |
| 76fe0 | 65 65 72 69 6e 67 20 77 69 74 68 20 6f 75 72 20 6e 65 69 67 68 62 6f 72 2e 00 53 65 74 20 74 68 | eering.with.our.neighbor..Set.th |
| 77000 | 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 69 6e 74 65 72 66 | e.IP.address.of.the.local.interf |
| 77020 | 61 63 65 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 74 75 6e 6e 65 6c 2e 00 53 | ace.to.be.used.for.the.tunnel..S |
| 77040 | 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 | et.the.IP.address.of.the.remote. |
| 77060 | 70 65 65 72 2e 20 49 74 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 6e 20 | peer..It.may.be.specified.as.an. |
| 77080 | 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 2e | IPv4.address.or.an.IPv6.address. |
| 770a0 | 00 53 65 74 20 74 68 65 20 49 50 76 34 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 | .Set.the.IPv4.source.validation. |
| 770c0 | 6d 6f 64 65 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d | mode..The.following.system.param |
| 770e0 | 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 53 65 74 20 74 68 65 20 4d 4c | eter.will.be.altered:.Set.the.ML |
| 77100 | 44 20 6c 61 73 74 20 6d 65 6d 62 65 72 20 71 75 65 72 79 20 63 6f 75 6e 74 2e 20 54 68 65 20 64 | D.last.member.query.count..The.d |
| 77120 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 2e 00 53 65 74 20 74 68 65 20 4d 4c 44 20 6c | efault.value.is.2..Set.the.MLD.l |
| 77140 | 61 73 74 20 6d 65 6d 62 65 72 20 71 75 65 72 79 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6c | ast.member.query.interval.in.mil |
| 77160 | 6c 69 73 65 63 6f 6e 64 73 20 28 31 30 30 2d 36 35 35 33 35 30 30 29 2e 20 54 68 65 20 64 65 66 | liseconds.(100-6553500)..The.def |
| 77180 | 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e | ault.value.is.1000.milliseconds. |
| 771a0 | 00 53 65 74 20 74 68 65 20 4d 4c 44 20 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 | .Set.the.MLD.query.response.time |
| 771c0 | 6f 75 74 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 28 31 30 30 2d 36 35 35 33 35 30 30 | out.in.milliseconds.(100-6553500 |
| 771e0 | 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 30 20 6d 69 | )..The.default.value.is.10000.mi |
| 77200 | 6c 6c 69 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 65 20 4d 4c 44 20 76 65 72 73 69 6f 6e 20 | lliseconds..Set.the.MLD.version. |
| 77220 | 75 73 65 64 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 64 65 66 61 | used.on.this.interface..The.defa |
| 77240 | 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 2e 00 53 65 74 20 74 68 65 20 4d 61 78 69 6d 75 6d 20 | ult.value.is.2..Set.the.Maximum. |
| 77260 | 53 74 61 63 6b 20 44 65 70 74 68 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 | Stack.Depth.supported.by.the.rou |
| 77280 | 74 65 72 2e 20 54 68 65 20 76 61 6c 75 65 20 64 65 70 65 6e 64 20 6f 66 20 74 68 65 20 4d 50 4c | ter..The.value.depend.of.the.MPL |
| 772a0 | 53 20 64 61 74 61 70 6c 61 6e 65 2e 00 53 65 74 20 74 68 65 20 50 49 4d 20 68 65 6c 6c 6f 20 61 | S.dataplane..Set.the.PIM.hello.a |
| 772c0 | 6e 64 20 68 6f 6c 64 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 61 20 69 6e 74 65 72 66 61 63 65 | nd.hold.interval.for.a.interface |
| 772e0 | 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 47 6c 6f 62 61 6c | ..Set.the.Segment.Routing.Global |
| 77300 | 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 | .Block.i.e..the.label.range.used |
| 77320 | 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d | .by.MPLS.to.store.label.in.the.M |
| 77340 | 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 | PLS.FIB.for.Prefix.SID..Note.tha |
| 77360 | 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 | t.the.block.size.may.not.exceed. |
| 77380 | 36 35 35 33 35 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 47 | 65535..Set.the.Segment.Routing.G |
| 773a0 | 6c 6f 62 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 6f 77 20 6c 61 62 65 6c 20 72 | lobal.Block.i.e..the.low.label.r |
| 773c0 | 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c | ange.used.by.MPLS.to.store.label |
| 773e0 | 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e | .in.the.MPLS.FIB.for.Prefix.SID. |
| 77400 | 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f | .Note.that.the.block.size.may.no |
| 77420 | 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 | t.exceed.65535..Set.the.Segment. |
| 77440 | 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 61 62 | Routing.Local.Block.i.e..the.lab |
| 77460 | 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c | el.range.used.by.MPLS.to.store.l |
| 77480 | 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 | abel.in.the.MPLS.FIB.for.Prefix. |
| 774a0 | 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 | SID..Note.that.the.block.size.ma |
| 774c0 | 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 | y.not.exceed.65535.Segment.Routi |
| 774e0 | 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 2c 20 54 68 65 20 6e 65 67 61 74 69 76 65 20 63 6f 6d | ng.Local.Block,.The.negative.com |
| 77500 | 6d 61 6e 64 20 61 6c 77 61 79 73 20 75 6e 73 65 74 73 20 62 6f 74 68 2e 00 53 65 74 20 74 68 65 | mand.always.unsets.both..Set.the |
| 77520 | 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 | .Segment.Routing.Local.Block.i.e |
| 77540 | 2e 20 74 68 65 20 6c 6f 77 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 | ..the.low.label.range.used.by.MP |
| 77560 | 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 | LS.to.store.label.in.the.MPLS.FI |
| 77580 | 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 | B.for.Prefix.SID..Note.that.the. |
| 775a0 | 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e | block.size.may.not.exceed.65535. |
| 775c0 | 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 2c 20 54 68 65 | Segment.Routing.Local.Block,.The |
| 775e0 | 20 6e 65 67 61 74 69 76 65 20 63 6f 6d 6d 61 6e 64 20 61 6c 77 61 79 73 20 75 6e 73 65 74 73 20 | .negative.command.always.unsets. |
| 77600 | 62 6f 74 68 2e 00 53 65 74 20 74 68 65 20 54 43 50 2d 4d 53 53 20 28 54 43 50 20 6d 61 78 69 6d | both..Set.the.TCP-MSS.(TCP.maxim |
| 77620 | 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 | um.segment.size).for.the.connect |
| 77640 | 69 6f 6e 2e 00 53 65 74 20 74 68 65 20 54 43 50 2d 4d 53 53 20 28 6d 61 78 69 6d 75 6d 20 73 65 | ion..Set.the.TCP-MSS.(maximum.se |
| 77660 | 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 00 53 | gment.size).for.the.connection.S |
| 77680 | 65 74 20 74 68 65 20 54 54 4c 20 28 54 69 6d 65 20 74 6f 20 4c 69 76 65 29 20 76 61 6c 75 65 2e | et.the.TTL.(Time.to.Live).value. |
| 776a0 | 00 53 65 74 20 74 68 65 20 55 73 65 72 20 49 44 20 6f 72 20 47 72 6f 75 70 20 49 44 20 6f 66 20 | .Set.the.User.ID.or.Group.ID.of. |
| 776c0 | 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 00 53 65 74 20 74 68 65 20 60 60 73 73 68 64 60 60 20 6c | the.container.Set.the.``sshd``.l |
| 776e0 | 6f 67 20 6c 65 76 65 6c 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 69 6e 66 6f 60 | og.level..The.default.is.``info` |
| 77700 | 60 2e 00 53 65 74 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 61 63 6b 65 6e | `..Set.the.address.of.the.backen |
| 77720 | 64 20 70 6f 72 74 00 53 65 74 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 61 | d.port.Set.the.address.of.the.ba |
| 77740 | 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 77 68 69 63 68 20 74 68 65 20 69 6e 63 6f 6d 69 | ckend.server.to.which.the.incomi |
| 77760 | 6e 67 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 00 53 65 74 | ng.traffic.will.be.forwarded.Set |
| 77780 | 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 79 70 65 20 66 6f 72 20 47 72 61 | .the.authentication.type.for.Gra |
| 777a0 | 70 68 51 4c 2c 20 64 65 66 61 75 6c 74 20 6f 70 74 69 6f 6e 20 69 73 20 6b 65 79 2e 20 41 76 61 | phQL,.default.option.is.key..Ava |
| 777c0 | 69 6c 61 62 6c 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 3a 00 53 65 74 20 74 68 65 20 62 79 74 65 | ilable.options.are:.Set.the.byte |
| 777e0 | 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 4a 57 54 20 73 65 63 72 65 74 2e 20 44 65 66 61 75 | .length.of.the.JWT.secret..Defau |
| 77800 | 6c 74 20 69 73 20 33 32 2e 00 53 65 74 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 72 67 75 6d 65 | lt.is.32..Set.the.command.argume |
| 77820 | 6e 74 73 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 74 68 65 20 64 65 66 | nts.for.a.container..Set.the.def |
| 77840 | 61 75 6c 74 20 56 52 52 50 20 76 65 72 73 69 6f 6e 20 74 6f 20 75 73 65 2e 20 54 68 69 73 20 64 | ault.VRRP.version.to.use..This.d |
| 77860 | 65 66 61 75 6c 74 73 20 74 6f 20 32 2c 20 62 75 74 20 49 50 76 36 20 69 6e 73 74 61 6e 63 65 73 | efaults.to.2,.but.IPv6.instances |
| 77880 | 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 75 73 65 20 76 65 72 73 69 6f 6e 20 33 2e 00 53 65 74 20 | .will.always.use.version.3..Set. |
| 778a0 | 74 68 65 20 64 65 76 69 63 65 27 73 20 74 72 61 6e 73 6d 69 74 20 28 54 58 29 20 6b 65 79 2e 20 | the.device's.transmit.(TX).key.. |
| 778c0 | 54 68 69 73 20 6b 65 79 20 6d 75 73 74 20 62 65 20 61 20 68 65 78 20 73 74 72 69 6e 67 20 74 68 | This.key.must.be.a.hex.string.th |
| 778e0 | 61 74 20 69 73 20 31 36 2d 62 79 74 65 73 20 28 47 43 4d 2d 41 45 53 2d 31 32 38 29 20 6f 72 20 | at.is.16-bytes.(GCM-AES-128).or. |
| 77900 | 33 32 2d 62 79 74 65 73 20 28 47 43 4d 2d 41 45 53 2d 32 35 36 29 2e 00 53 65 74 20 74 68 65 20 | 32-bytes.(GCM-AES-256)..Set.the. |
| 77920 | 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 | distance.for.the.default.gateway |
| 77940 | 20 73 65 6e 74 20 62 79 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 | .sent.by.the.DHCP.server..Set.th |
| 77960 | 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 | e.distance.for.the.default.gatew |
| 77980 | 61 79 20 73 65 6e 74 20 62 79 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 2e 00 53 65 74 | ay.sent.by.the.PPPoE.server..Set |
| 779a0 | 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 | .the.distance.for.the.default.ga |
| 779c0 | 74 65 77 61 79 20 73 65 6e 74 20 62 79 20 74 68 65 20 53 53 54 50 20 73 65 72 76 65 72 2e 00 53 | teway.sent.by.the.SSTP.server..S |
| 779e0 | 65 74 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 20 6f 66 20 74 68 65 | et.the.encapsulation.type.of.the |
| 77a00 | 20 74 75 6e 6e 65 6c 2e 20 56 61 6c 69 64 20 76 61 6c 75 65 73 20 66 6f 72 20 65 6e 63 61 70 73 | .tunnel..Valid.values.for.encaps |
| 77a20 | 75 6c 61 74 69 6f 6e 20 61 72 65 3a 20 75 64 70 2c 20 69 70 2e 00 53 65 74 20 74 68 65 20 67 6c | ulation.are:.udp,.ip..Set.the.gl |
| 77a40 | 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 20 61 6e 20 65 73 74 61 62 6c 69 73 68 65 64 20 | obal.setting.for.an.established. |
| 77a60 | 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 53 65 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 73 65 74 74 69 | connection..Set.the.global.setti |
| 77a80 | 6e 67 20 66 6f 72 20 69 6e 76 61 6c 69 64 20 70 61 63 6b 65 74 73 2e 00 53 65 74 20 74 68 65 20 | ng.for.invalid.packets..Set.the. |
| 77aa0 | 67 6c 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 20 72 65 6c 61 74 65 64 20 63 6f 6e 6e 65 | global.setting.for.related.conne |
| 77ac0 | 63 74 69 6f 6e 73 2e 00 53 65 74 20 74 68 65 20 68 6f 73 74 20 6e 61 6d 65 20 66 6f 72 20 61 20 | ctions..Set.the.host.name.for.a. |
| 77ae0 | 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 74 68 65 20 6c 69 66 65 74 69 6d 65 20 66 6f 72 20 | container..Set.the.lifetime.for. |
| 77b00 | 4a 57 54 20 74 6f 6b 65 6e 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 69 | JWT.tokens.in.seconds..Default.i |
| 77b20 | 73 20 33 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 65 20 6c 69 73 74 65 6e 20 70 | s.3600.seconds..Set.the.listen.p |
| 77b40 | 6f 72 74 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 41 50 49 2c 20 74 68 69 73 20 68 61 73 20 6e | ort.of.the.local.API,.this.has.n |
| 77b60 | 6f 20 65 66 66 65 63 74 20 6f 6e 20 74 68 65 20 77 65 62 73 65 72 76 65 72 2e 20 54 68 65 20 64 | o.effect.on.the.webserver..The.d |
| 77b80 | 65 66 61 75 6c 74 20 69 73 20 70 6f 72 74 20 38 30 38 30 00 53 65 74 20 74 68 65 20 6d 61 78 69 | efault.is.port.8080.Set.the.maxi |
| 77ba0 | 6d 75 6d 20 68 6f 70 20 60 3c 63 6f 75 6e 74 3e 60 20 62 65 66 6f 72 65 20 70 61 63 6b 65 74 73 | mum.hop.`<count>`.before.packets |
| 77bc0 | 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2e 20 52 61 6e 67 65 20 30 2e 2e 2e 32 35 35 2c 20 64 | .are.discarded..Range.0...255,.d |
| 77be0 | 65 66 61 75 6c 74 20 31 30 2e 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 | efault.10..Set.the.maximum.lengt |
| 77c00 | 68 20 6f 66 20 41 2d 4d 50 44 55 20 70 72 65 2d 45 4f 46 20 70 61 64 64 69 6e 67 20 74 68 61 74 | h.of.A-MPDU.pre-EOF.padding.that |
| 77c20 | 20 74 68 65 20 73 74 61 74 69 6f 6e 20 63 61 6e 20 72 65 63 65 69 76 65 00 53 65 74 20 74 68 65 | .the.station.can.receive.Set.the |
| 77c40 | 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 54 43 50 20 68 61 6c 66 2d 6f 70 65 6e | .maximum.number.of.TCP.half-open |
| 77c60 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 65 | .connections..Set.the.maximum.re |
| 77c80 | 71 75 65 73 74 20 62 6f 64 79 20 73 69 7a 65 20 69 6e 20 6d 65 67 61 62 79 74 65 73 2e 20 44 65 | quest.body.size.in.megabytes..De |
| 77ca0 | 66 61 75 6c 74 20 69 73 20 31 4d 42 2e 00 53 65 74 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 | fault.is.1MB..Set.the.name.of.th |
| 77cc0 | 65 20 53 53 4c 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 | e.SSL.:abbr:`CA.(Certificate.Aut |
| 77ce0 | 68 6f 72 69 74 79 29 60 20 50 4b 49 20 65 6e 74 72 79 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 | hority)`.PKI.entry.used.for.auth |
| 77d00 | 65 6e 74 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 20 49 | entication.of.the.remote.side..I |
| 77d20 | 66 20 61 6e 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 | f.an.intermediate.CA.certificate |
| 77d40 | 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 61 6c 6c 20 70 61 72 65 6e 74 20 43 | .is.specified,.then.all.parent.C |
| 77d60 | 41 20 63 65 72 74 69 66 69 63 61 74 65 73 20 74 68 61 74 20 65 78 69 73 74 20 69 6e 20 74 68 65 | A.certificates.that.exist.in.the |
| 77d80 | 20 50 4b 49 2c 20 73 75 63 68 20 61 73 20 74 68 65 20 72 6f 6f 74 20 43 41 20 6f 72 20 61 64 64 | .PKI,.such.as.the.root.CA.or.add |
| 77da0 | 69 74 69 6f 6e 61 6c 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 43 41 73 2c 20 77 69 6c 6c 20 61 | itional.intermediate.CAs,.will.a |
| 77dc0 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 75 73 65 64 20 64 75 72 69 6e 67 20 63 65 72 74 | utomatically.be.used.during.cert |
| 77de0 | 69 66 69 63 61 74 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 | ificate.validation.to.ensure.tha |
| 77e00 | 74 20 74 68 65 20 66 75 6c 6c 20 63 68 61 69 6e 20 6f 66 20 74 72 75 73 74 20 69 73 20 61 76 61 | t.the.full.chain.of.trust.is.ava |
| 77e20 | 69 6c 61 62 6c 65 2e 00 53 65 74 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 78 35 30 39 | ilable..Set.the.name.of.the.x509 |
| 77e40 | 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 | .client.keypair.used.to.authenti |
| 77e60 | 63 61 74 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 38 30 32 2e 31 78 20 73 79 73 74 65 6d 2e 20 | cate.against.the.802.1x.system.. |
| 77e80 | 41 6c 6c 20 70 61 72 65 6e 74 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 66 20 74 68 | All.parent.CA.certificates.of.th |
| 77ea0 | 65 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 73 75 63 68 20 61 73 20 69 6e | e.client.certificate,.such.as.in |
| 77ec0 | 74 65 72 6d 65 64 69 61 74 65 20 61 6e 64 20 72 6f 6f 74 20 43 41 73 2c 20 77 69 6c 6c 20 62 65 | termediate.and.root.CAs,.will.be |
| 77ee0 | 20 73 65 6e 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 45 41 50 2d 54 4c 53 20 68 61 6e | .sent.as.part.of.the.EAP-TLS.han |
| 77f00 | 64 73 68 61 6b 65 2e 00 53 65 74 20 74 68 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 49 44 20 66 | dshake..Set.the.native.VLAN.ID.f |
| 77f20 | 6c 61 67 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 61 20 64 61 74 | lag.of.the.interface..When.a.dat |
| 77f40 | 61 20 70 61 63 6b 65 74 20 77 69 74 68 6f 75 74 20 61 20 56 4c 41 4e 20 74 61 67 20 65 6e 74 65 | a.packet.without.a.VLAN.tag.ente |
| 77f60 | 72 73 20 74 68 65 20 70 6f 72 74 2c 20 74 68 65 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 6c | rs.the.port,.the.data.packet.wil |
| 77f80 | 6c 20 62 65 20 66 6f 72 63 65 64 20 74 6f 20 61 64 64 20 61 20 74 61 67 20 6f 66 20 61 20 73 70 | l.be.forced.to.add.a.tag.of.a.sp |
| 77fa0 | 65 63 69 66 69 63 20 76 6c 61 6e 20 69 64 2e 20 57 68 65 6e 20 74 68 65 20 76 6c 61 6e 20 69 64 | ecific.vlan.id..When.the.vlan.id |
| 77fc0 | 20 66 6c 61 67 20 66 6c 6f 77 73 20 6f 75 74 2c 20 74 68 65 20 74 61 67 20 6f 66 20 74 68 65 20 | .flag.flows.out,.the.tag.of.the. |
| 77fe0 | 76 6c 61 6e 20 69 64 20 77 69 6c 6c 20 62 65 20 73 74 72 69 70 70 65 64 00 53 65 74 20 74 68 65 | vlan.id.will.be.stripped.Set.the |
| 78000 | 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 49 44 20 66 6c 61 67 20 6f 66 20 74 68 65 20 69 6e 74 65 | .native.VLAN.ID.flag.of.the.inte |
| 78020 | 72 66 61 63 65 2e 20 57 68 65 6e 20 61 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 74 68 6f 75 | rface..When.a.data.packet.withou |
| 78040 | 74 20 61 20 56 4c 41 4e 20 74 61 67 20 65 6e 74 65 72 73 20 74 68 65 20 70 6f 72 74 2c 20 74 68 | t.a.VLAN.tag.enters.the.port,.th |
| 78060 | 65 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 68 61 76 65 20 61 20 73 70 65 63 69 66 | e.data.packet.will.have.a.specif |
| 78080 | 69 63 20 76 6c 61 6e 20 69 64 20 61 64 64 65 64 20 74 6f 20 69 74 2e 20 57 68 65 6e 20 74 68 65 | ic.vlan.id.added.to.it..When.the |
| 780a0 | 20 70 61 63 6b 65 74 20 66 6c 6f 77 73 20 6f 75 74 2c 20 74 68 65 20 6e 61 74 69 76 65 20 76 6c | .packet.flows.out,.the.native.vl |
| 780c0 | 61 6e 20 74 61 67 20 77 69 6c 6c 20 62 65 20 73 74 72 69 70 70 65 64 2e 00 53 65 74 20 74 68 65 | an.tag.will.be.stripped..Set.the |
| 780e0 | 20 6e 65 78 74 2d 68 6f 70 20 61 73 20 75 6e 63 68 61 6e 67 65 64 2e 20 50 61 73 73 20 74 68 72 | .next-hop.as.unchanged..Pass.thr |
| 78100 | 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 77 69 74 68 6f 75 74 20 63 68 61 6e 67 | ough.the.route-map.without.chang |
| 78120 | 69 6e 67 20 69 74 73 20 76 61 6c 75 65 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 | ing.its.value.Set.the.number.of. |
| 78140 | 54 43 50 20 6d 61 78 69 6d 75 6d 20 72 65 74 72 61 6e 73 6d 69 74 20 61 74 74 65 6d 70 74 73 2e | TCP.maximum.retransmit.attempts. |
| 78160 | 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 | .Set.the.number.of.health.check. |
| 78180 | 66 61 69 6c 75 72 65 73 20 62 65 66 6f 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 | failures.before.an.interface.is. |
| 781a0 | 6d 61 72 6b 65 64 20 61 73 20 75 6e 61 76 61 69 6c 61 62 6c 65 2c 20 72 61 6e 67 65 20 66 6f 72 | marked.as.unavailable,.range.for |
| 781c0 | 20 6e 75 6d 62 65 72 20 69 73 20 31 20 74 6f 20 31 30 2c 20 64 65 66 61 75 6c 74 20 31 2e 20 4f | .number.is.1.to.10,.default.1..O |
| 781e0 | 72 20 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 75 63 63 65 73 73 66 75 6c 20 68 | r.set.the.number.of.successful.h |
| 78200 | 65 61 6c 74 68 20 63 68 65 63 6b 73 20 62 65 66 6f 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | ealth.checks.before.an.interface |
| 78220 | 20 69 73 20 61 64 64 65 64 20 62 61 63 6b 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 | .is.added.back.to.the.interface. |
| 78240 | 70 6f 6f 6c 2c 20 72 61 6e 67 65 20 66 6f 72 20 6e 75 6d 62 65 72 20 69 73 20 31 20 74 6f 20 31 | pool,.range.for.number.is.1.to.1 |
| 78260 | 30 2c 20 64 65 66 61 75 6c 74 20 31 2e 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 | 0,.default.1..Set.the.number.of. |
| 78280 | 73 65 63 6f 6e 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 77 61 69 74 73 20 75 6e 74 69 6c 20 72 | seconds.the.router.waits.until.r |
| 782a0 | 65 74 72 79 69 6e 67 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 63 61 63 68 65 20 | etrying.to.connect.to.the.cache. |
| 782c0 | 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 | server..Set.the.number.of.second |
| 782e0 | 73 20 74 68 65 20 72 6f 75 74 65 72 20 77 61 69 74 73 20 75 6e 74 69 6c 20 74 68 65 20 72 6f 75 | s.the.router.waits.until.the.rou |
| 78300 | 74 65 72 20 65 78 70 69 72 65 73 20 74 68 65 20 63 61 63 68 65 2e 00 53 65 74 20 74 68 65 20 6f | ter.expires.the.cache..Set.the.o |
| 78320 | 70 74 69 6f 6e 73 20 66 6f 72 20 74 68 69 73 20 70 75 62 6c 69 63 20 6b 65 79 2e 20 53 65 65 20 | ptions.for.this.public.key..See. |
| 78340 | 74 68 65 20 73 73 68 20 60 60 61 75 74 68 6f 72 69 7a 65 64 5f 6b 65 79 73 60 60 20 6d 61 6e 20 | the.ssh.``authorized_keys``.man. |
| 78360 | 70 61 67 65 20 66 6f 72 20 64 65 74 61 69 6c 73 20 6f 66 20 77 68 61 74 20 79 6f 75 20 63 61 6e | page.for.details.of.what.you.can |
| 78380 | 20 73 70 65 63 69 66 79 20 68 65 72 65 2e 20 54 6f 20 70 6c 61 63 65 20 61 20 60 60 22 60 60 20 | .specify.here..To.place.a.``"``. |
| 783a0 | 63 68 61 72 61 63 74 65 72 20 69 6e 20 74 68 65 20 6f 70 74 69 6f 6e 73 20 66 69 65 6c 64 2c 20 | character.in.the.options.field,. |
| 783c0 | 75 73 65 20 60 60 26 71 75 6f 74 3b 60 60 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 66 72 | use.``"``,.for.example.``fr |
| 783e0 | 6f 6d 3d 26 71 75 6f 74 3b 31 30 2e 30 2e 30 2e 30 2f 32 34 26 71 75 6f 74 3b 60 60 20 74 6f 20 | om="10.0.0.0/24"``.to. |
| 78400 | 72 65 73 74 72 69 63 74 20 77 68 65 72 65 20 74 68 65 20 75 73 65 72 20 6d 61 79 20 63 6f 6e 6e | restrict.where.the.user.may.conn |
| 78420 | 65 63 74 20 66 72 6f 6d 20 77 68 65 6e 20 75 73 69 6e 67 20 74 68 69 73 20 6b 65 79 2e 00 53 65 | ect.from.when.using.this.key..Se |
| 78440 | 74 20 74 68 65 20 70 61 72 69 74 79 20 6f 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 6f 6e 73 | t.the.parity.option.for.the.cons |
| 78460 | 6f 6c 65 2e 20 49 66 20 75 6e 73 65 74 20 74 68 69 73 20 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 | ole..If.unset.this.will.default. |
| 78480 | 74 6f 20 6e 6f 6e 65 2e 00 53 65 74 20 74 68 65 20 70 65 65 72 27 73 20 4d 41 43 20 61 64 64 72 | to.none..Set.the.peer's.MAC.addr |
| 784a0 | 65 73 73 00 53 65 74 20 74 68 65 20 70 65 65 72 27 73 20 6b 65 79 20 75 73 65 64 20 74 6f 20 72 | ess.Set.the.peer's.key.used.to.r |
| 784c0 | 65 63 65 69 76 65 20 28 52 58 29 20 74 72 61 66 66 69 63 00 53 65 74 20 74 68 65 20 70 65 65 72 | eceive.(RX).traffic.Set.the.peer |
| 784e0 | 2d 73 65 73 73 69 6f 6e 2d 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 20 69 | -session-id,.which.is.a.32-bit.i |
| 78500 | 6e 74 65 67 65 72 20 76 61 6c 75 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 73 65 73 | nteger.value.assigned.to.the.ses |
| 78520 | 73 69 6f 6e 20 62 79 20 74 68 65 20 70 65 65 72 2e 20 54 68 65 20 76 61 6c 75 65 20 75 73 65 64 | sion.by.the.peer..The.value.used |
| 78540 | 20 6d 75 73 74 20 6d 61 74 63 68 20 74 68 65 20 73 65 73 73 69 6f 6e 5f 69 64 20 76 61 6c 75 65 | .must.match.the.session_id.value |
| 78560 | 20 62 65 69 6e 67 20 75 73 65 64 20 61 74 20 74 68 65 20 70 65 65 72 2e 00 53 65 74 20 74 68 65 | .being.used.at.the.peer..Set.the |
| 78580 | 20 72 61 6e 67 65 20 6f 66 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 | .range.of.external.IP.addresses. |
| 785a0 | 66 6f 72 20 74 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 72 61 6e 67 | for.the.CGNAT.pool..Set.the.rang |
| 785c0 | 65 20 6f 66 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 | e.of.external.IP.addresses.for.t |
| 785e0 | 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 20 54 68 65 20 73 65 71 75 65 6e 63 65 20 69 73 20 6f | he.CGNAT.pool..The.sequence.is.o |
| 78600 | 70 74 69 6f 6e 61 6c 3b 20 69 66 20 73 65 74 2c 20 61 20 6c 6f 77 65 72 20 76 61 6c 75 65 20 6d | ptional;.if.set,.a.lower.value.m |
| 78620 | 65 61 6e 73 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 2e 00 53 65 74 20 74 68 65 20 72 61 | eans.higher.priority..Set.the.ra |
| 78640 | 6e 67 65 20 6f 66 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 | nge.of.internal.IP.addresses.for |
| 78660 | 20 74 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 72 65 73 74 61 72 74 | .the.CGNAT.pool..Set.the.restart |
| 78680 | 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 | .behavior.of.the.container..Set. |
| 786a0 | 74 68 65 20 72 6f 75 74 65 20 6d 65 74 72 69 63 2e 20 57 68 65 6e 20 75 73 65 64 20 77 69 74 68 | the.route.metric..When.used.with |
| 786c0 | 20 42 47 50 2c 20 73 65 74 20 74 68 65 20 42 47 50 20 61 74 74 72 69 62 75 74 65 20 4d 45 44 20 | .BGP,.set.the.BGP.attribute.MED. |
| 786e0 | 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 2e 20 55 73 65 20 60 60 2b 2f 2d 60 60 | to.a.specific.value..Use.``+/-`` |
| 78700 | 20 74 6f 20 61 64 64 20 6f 72 20 73 75 62 74 72 61 63 74 20 74 68 65 20 73 70 65 63 69 66 69 65 | .to.add.or.subtract.the.specifie |
| 78720 | 64 20 76 61 6c 75 65 20 74 6f 2f 66 72 6f 6d 20 74 68 65 20 65 78 69 73 74 69 6e 67 2f 4d 45 44 | d.value.to/from.the.existing/MED |
| 78740 | 2e 20 55 73 65 20 60 60 72 74 74 60 60 20 74 6f 20 73 65 74 20 74 68 65 20 4d 45 44 20 74 6f 20 | ..Use.``rtt``.to.set.the.MED.to. |
| 78760 | 74 68 65 20 72 6f 75 6e 64 20 74 72 69 70 20 74 69 6d 65 20 6f 72 20 60 60 2b 72 74 74 2f 2d 72 | the.round.trip.time.or.``+rtt/-r |
| 78780 | 74 74 60 60 20 74 6f 20 61 64 64 2f 73 75 62 74 72 61 63 74 20 74 68 65 20 72 6f 75 6e 64 20 74 | tt``.to.add/subtract.the.round.t |
| 787a0 | 72 69 70 20 74 69 6d 65 20 74 6f 2f 66 72 6f 6d 20 74 68 65 20 4d 45 44 2e 00 53 65 74 20 74 68 | rip.time.to/from.the.MED..Set.th |
| 787c0 | 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f 20 66 6f 72 77 61 72 64 20 70 61 63 6b 65 | e.routing.table.to.forward.packe |
| 787e0 | 74 20 77 69 74 68 2e 00 53 65 74 20 74 68 65 20 72 75 6c 65 20 66 6f 72 20 74 68 65 20 73 6f 75 | t.with..Set.the.rule.for.the.sou |
| 78800 | 72 63 65 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 72 75 6c 65 20 66 6f 72 20 74 68 65 20 74 | rce.pool..Set.the.rule.for.the.t |
| 78820 | 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 73 65 73 73 69 6f 6e | ranslation.pool..Set.the.session |
| 78840 | 20 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 20 69 6e 74 65 67 65 72 20 76 | .id,.which.is.a.32-bit.integer.v |
| 78860 | 61 6c 75 65 2e 20 55 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 69 66 69 65 73 20 74 68 65 20 73 65 | alue..Uniquely.identifies.the.se |
| 78880 | 73 73 69 6f 6e 20 62 65 69 6e 67 20 63 72 65 61 74 65 64 2e 20 54 68 65 20 76 61 6c 75 65 20 75 | ssion.being.created..The.value.u |
| 788a0 | 73 65 64 20 6d 75 73 74 20 6d 61 74 63 68 20 74 68 65 20 70 65 65 72 5f 73 65 73 73 69 6f 6e 5f | sed.must.match.the.peer_session_ |
| 788c0 | 69 64 20 76 61 6c 75 65 20 62 65 69 6e 67 20 75 73 65 64 20 61 74 20 74 68 65 20 70 65 65 72 2e | id.value.being.used.at.the.peer. |
| 788e0 | 00 53 65 74 20 74 68 65 20 73 68 61 70 65 72 20 62 61 6e 64 77 69 64 74 68 2c 20 65 69 74 68 65 | .Set.the.shaper.bandwidth,.eithe |
| 78900 | 72 20 61 73 20 61 6e 20 65 78 70 6c 69 63 69 74 20 62 69 74 72 61 74 65 20 6f 72 20 61 20 70 65 | r.as.an.explicit.bitrate.or.a.pe |
| 78920 | 72 63 65 6e 74 61 67 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 62 61 6e 64 77 69 | rcentage.of.the.interface.bandwi |
| 78940 | 64 74 68 2e 00 53 65 74 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 68 61 73 68 20 74 61 | dth..Set.the.size.of.the.hash.ta |
| 78960 | 62 6c 65 2e 20 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 68 61 73 | ble..The.connection.tracking.has |
| 78980 | 68 20 74 61 62 6c 65 20 6d 61 6b 65 73 20 73 65 61 72 63 68 69 6e 67 20 74 68 65 20 63 6f 6e 6e | h.table.makes.searching.the.conn |
| 789a0 | 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 20 66 61 73 74 65 72 2e 20 54 68 | ection.tracking.table.faster..Th |
| 789c0 | 65 20 68 61 73 68 20 74 61 62 6c 65 20 75 73 65 73 20 e2 80 9c 62 75 63 6b 65 74 73 e2 80 9d 20 | e.hash.table.uses....buckets.... |
| 789e0 | 74 6f 20 72 65 63 6f 72 64 20 65 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 | to.record.entries.in.the.connect |
| 78a00 | 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 2e 00 53 65 74 20 74 68 65 20 73 6f 75 72 | ion.tracking.table..Set.the.sour |
| 78a20 | 63 65 20 49 50 20 6f 66 20 66 6f 72 77 61 72 64 65 64 20 70 61 63 6b 65 74 73 2c 20 6f 74 68 65 | ce.IP.of.forwarded.packets,.othe |
| 78a40 | 72 77 69 73 65 20 6f 72 69 67 69 6e 61 6c 20 73 65 6e 64 65 72 73 20 61 64 64 72 65 73 73 20 69 | rwise.original.senders.address.i |
| 78a60 | 73 20 75 73 65 64 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e | s.used..Set.the.timeout.in.secon |
| 78a80 | 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 20 69 6e 20 61 20 | ds.for.a.protocol.or.state.in.a. |
| 78aa0 | 63 75 73 74 6f 6d 20 72 75 6c 65 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 | custom.rule..Set.the.timeout.in. |
| 78ac0 | 73 65 63 6f 6e 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 2e | seconds.for.a.protocol.or.state. |
| 78ae0 | 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 75 6e 64 73 20 66 6f 72 | .Set.the.timeout.in.secounds.for |
| 78b00 | 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 20 69 6e 20 61 20 63 75 73 74 6f 6d | .a.protocol.or.state.in.a.custom |
| 78b20 | 20 72 75 6c 65 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 75 6e | .rule..Set.the.timeout.in.secoun |
| 78b40 | 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 65 2e 00 53 65 74 20 | ds.for.a.protocol.or.state..Set. |
| 78b60 | 74 68 65 20 74 75 6e 6e 65 6c 20 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 2d 62 69 74 | the.tunnel.id,.which.is.a.32-bit |
| 78b80 | 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 2e 20 55 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 69 66 | .integer.value..Uniquely.identif |
| 78ba0 | 69 65 73 20 74 68 65 20 74 75 6e 6e 65 6c 20 69 6e 74 6f 20 77 68 69 63 68 20 74 68 65 20 73 65 | ies.the.tunnel.into.which.the.se |
| 78bc0 | 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 63 72 65 61 74 65 64 2e 00 53 65 74 20 74 68 65 20 77 | ssion.will.be.created..Set.the.w |
| 78be0 | 69 6e 64 6f 77 20 73 63 61 6c 65 20 66 61 63 74 6f 72 20 66 6f 72 20 54 43 50 20 77 69 6e 64 6f | indow.scale.factor.for.TCP.windo |
| 78c00 | 77 20 73 63 61 6c 69 6e 67 00 53 65 74 20 77 69 6e 64 6f 77 20 6f 66 20 63 6f 6e 63 75 72 72 65 | w.scaling.Set.window.of.concurre |
| 78c20 | 6e 74 6c 79 20 76 61 6c 69 64 20 63 6f 64 65 73 2e 00 53 65 74 73 20 74 68 65 20 48 54 54 50 20 | ntly.valid.codes..Sets.the.HTTP. |
| 78c40 | 6d 65 74 68 6f 64 20 74 6f 20 62 65 20 75 73 65 64 2c 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 | method.to.be.used,.can.be.either |
| 78c60 | 3a 20 6f 70 74 69 6f 6e 2c 20 67 65 74 2c 20 70 6f 73 74 2c 20 70 75 74 00 53 65 74 73 20 74 68 | :.option,.get,.post,.put.Sets.th |
| 78c80 | 65 20 65 6e 64 70 6f 69 6e 74 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 68 65 61 6c 74 68 | e.endpoint.to.be.used.for.health |
| 78ca0 | 20 63 68 65 63 6b 73 00 53 65 74 73 20 74 68 65 20 65 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 | .checks.Sets.the.expected.result |
| 78cc0 | 20 63 6f 6e 64 69 74 69 6f 6e 20 66 6f 72 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 61 20 73 65 72 | .condition.for.considering.a.ser |
| 78ce0 | 76 65 72 20 68 65 61 6c 74 68 79 2e 00 53 65 74 73 20 74 68 65 20 65 78 70 65 63 74 65 64 20 72 | ver.healthy..Sets.the.expected.r |
| 78d00 | 65 73 75 6c 74 20 63 6f 6e 64 69 74 69 6f 6e 20 66 6f 72 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 | esult.condition.for.considering. |
| 78d20 | 61 20 73 65 72 76 65 72 20 68 65 61 6c 74 68 79 2e 20 53 6f 6d 65 20 70 6f 73 73 69 62 6c 65 20 | a.server.healthy..Some.possible. |
| 78d40 | 65 78 61 6d 70 6c 65 73 20 61 72 65 3a 00 53 65 74 73 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d | examples.are:.Sets.the.image.nam |
| 78d60 | 65 20 69 6e 20 74 68 65 20 68 75 62 20 72 65 67 69 73 74 72 79 00 53 65 74 73 20 74 68 65 20 69 | e.in.the.hub.registry.Sets.the.i |
| 78d80 | 6e 74 65 72 66 61 63 65 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 | nterface.to.listen.for.multicast |
| 78da0 | 20 70 61 63 6b 65 74 73 20 6f 6e 2e 20 43 6f 75 6c 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 63 6b | .packets.on..Could.be.a.loopback |
| 78dc0 | 2c 20 6e 6f 74 20 79 65 74 20 74 65 73 74 65 64 2e 00 53 65 74 73 20 74 68 65 20 6c 69 73 74 65 | ,.not.yet.tested..Sets.the.liste |
| 78de0 | 6e 69 6e 67 20 70 6f 72 74 20 66 6f 72 20 61 20 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 | ning.port.for.a.listening.addres |
| 78e00 | 73 2e 20 54 68 69 73 20 6f 76 65 72 72 69 64 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f | s..This.overrides.the.default.po |
| 78e20 | 72 74 20 6f 66 20 33 31 32 38 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 63 20 6c 69 73 74 65 | rt.of.3128.on.the.specific.liste |
| 78e40 | 6e 20 61 64 64 72 65 73 73 2e 00 53 65 74 73 20 74 68 65 20 75 6e 69 71 75 65 20 69 64 20 66 6f | n.address..Sets.the.unique.id.fo |
| 78e60 | 72 20 74 68 69 73 20 76 78 6c 61 6e 2d 69 6e 74 65 72 66 61 63 65 2e 20 4e 6f 74 20 73 75 72 65 | r.this.vxlan-interface..Not.sure |
| 78e80 | 20 68 6f 77 20 69 74 20 63 6f 72 72 65 6c 61 74 65 73 20 77 69 74 68 20 6d 75 6c 74 69 63 61 73 | .how.it.correlates.with.multicas |
| 78ea0 | 74 2d 61 64 64 72 65 73 73 2e 00 53 65 74 74 69 6e 67 20 52 45 53 54 20 41 50 49 20 61 6e 64 20 | t-address..Setting.REST.API.and. |
| 78ec0 | 61 6e 20 41 50 49 2d 4b 45 59 20 69 73 20 74 68 65 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 | an.API-KEY.is.the.minimal.config |
| 78ee0 | 75 72 61 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 77 6f 72 6b 69 6e 67 20 41 50 49 20 45 6e 64 | uration.to.get.a.working.API.End |
| 78f00 | 70 6f 69 6e 74 2e 00 53 65 74 74 69 6e 67 20 56 52 52 50 20 67 72 6f 75 70 20 70 72 69 6f 72 69 | point..Setting.VRRP.group.priori |
| 78f20 | 74 79 00 53 65 74 74 69 6e 67 20 6e 61 6d 65 00 53 65 74 74 69 6e 67 20 74 68 69 73 20 75 70 20 | ty.Setting.name.Setting.this.up. |
| 78f40 | 6f 6e 20 41 57 53 20 77 69 6c 6c 20 72 65 71 75 69 72 65 20 61 20 22 43 75 73 74 6f 6d 20 50 72 | on.AWS.will.require.a."Custom.Pr |
| 78f60 | 6f 74 6f 63 6f 6c 20 52 75 6c 65 22 20 66 6f 72 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 | otocol.Rule".for.protocol.number |
| 78f80 | 20 22 34 37 22 20 28 47 52 45 29 20 41 6c 6c 6f 77 20 52 75 6c 65 20 69 6e 20 54 57 4f 20 70 6c | ."47".(GRE).Allow.Rule.in.TWO.pl |
| 78fa0 | 61 63 65 73 2e 20 46 69 72 73 74 6c 79 20 6f 6e 20 74 68 65 20 56 50 43 20 4e 65 74 77 6f 72 6b | aces..Firstly.on.the.VPC.Network |
| 78fc0 | 20 41 43 4c 2c 20 61 6e 64 20 73 65 63 6f 6e 64 6c 79 20 6f 6e 20 74 68 65 20 73 65 63 75 72 69 | .ACL,.and.secondly.on.the.securi |
| 78fe0 | 74 79 20 67 72 6f 75 70 20 6e 65 74 77 6f 72 6b 20 41 43 4c 20 61 74 74 61 63 68 65 64 20 74 6f | ty.group.network.ACL.attached.to |
| 79000 | 20 74 68 65 20 45 43 32 20 69 6e 73 74 61 6e 63 65 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e | .the.EC2.instance..This.has.been |
| 79020 | 20 74 65 73 74 65 64 20 61 73 20 77 6f 72 6b 69 6e 67 20 66 6f 72 20 74 68 65 20 6f 66 66 69 63 | .tested.as.working.for.the.offic |
| 79040 | 69 61 6c 20 41 4d 49 20 69 6d 61 67 65 20 6f 6e 20 74 68 65 20 41 57 53 20 4d 61 72 6b 65 74 70 | ial.AMI.image.on.the.AWS.Marketp |
| 79060 | 6c 61 63 65 2e 20 28 4c 6f 63 61 74 65 20 74 68 65 20 63 6f 72 72 65 63 74 20 56 50 43 20 61 6e | lace..(Locate.the.correct.VPC.an |
| 79080 | 64 20 73 65 63 75 72 69 74 79 20 67 72 6f 75 70 20 62 79 20 6e 61 76 69 67 61 74 69 6e 67 20 74 | d.security.group.by.navigating.t |
| 790a0 | 68 72 6f 75 67 68 20 74 68 65 20 64 65 74 61 69 6c 73 20 70 61 6e 65 20 62 65 6c 6f 77 20 79 6f | hrough.the.details.pane.below.yo |
| 790c0 | 75 72 20 45 43 32 20 69 6e 73 74 61 6e 63 65 20 69 6e 20 74 68 65 20 41 57 53 20 63 6f 6e 73 6f | ur.EC2.instance.in.the.AWS.conso |
| 790e0 | 6c 65 29 2e 00 53 65 74 74 69 6e 67 20 75 70 20 49 50 53 65 63 3a 00 53 65 74 74 69 6e 67 20 75 | le)..Setting.up.IPSec:.Setting.u |
| 79100 | 70 20 4f 70 65 6e 56 50 4e 00 53 65 74 74 69 6e 67 20 75 70 20 61 20 66 75 6c 6c 2d 62 6c 6f 77 | p.OpenVPN.Setting.up.a.full-blow |
| 79120 | 6e 20 50 4b 49 20 77 69 74 68 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 77 6f 75 6c | n.PKI.with.a.CA.certificate.woul |
| 79140 | 64 20 61 72 67 75 61 62 6c 79 20 64 65 66 65 61 74 20 74 68 65 20 70 75 72 70 6f 73 65 20 6f 66 | d.arguably.defeat.the.purpose.of |
| 79160 | 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e 56 50 4e 2c 20 73 69 6e 63 65 20 69 74 73 | .site-to-site.OpenVPN,.since.its |
| 79180 | 20 6d 61 69 6e 20 67 6f 61 6c 20 69 73 20 73 75 70 70 6f 73 65 64 20 74 6f 20 62 65 20 63 6f 6e | .main.goal.is.supposed.to.be.con |
| 791a0 | 66 69 67 75 72 61 74 69 6f 6e 20 73 69 6d 70 6c 69 63 69 74 79 2c 20 63 6f 6d 70 61 72 65 64 20 | figuration.simplicity,.compared. |
| 791c0 | 74 6f 20 73 65 72 76 65 72 20 73 65 74 75 70 73 20 74 68 61 74 20 6e 65 65 64 20 74 6f 20 73 75 | to.server.setups.that.need.to.su |
| 791e0 | 70 70 6f 72 74 20 6d 75 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 2e 00 53 65 74 74 69 6e 67 20 | pport.multiple.clients..Setting. |
| 79200 | 75 70 20 63 65 72 74 69 66 69 63 61 74 65 73 00 53 65 74 74 69 6e 67 20 75 70 20 63 65 72 74 69 | up.certificates.Setting.up.certi |
| 79220 | 66 69 63 61 74 65 73 3a 00 53 65 74 74 69 6e 67 20 75 70 20 74 75 6e 6e 65 6c 3a 00 53 65 74 74 | ficates:.Setting.up.tunnel:.Sett |
| 79240 | 69 6e 67 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 63 6f 6d 65 20 61 63 74 69 76 65 20 77 69 74 68 | ing.will.only.become.active.with |
| 79260 | 20 74 68 65 20 6e 65 78 74 20 72 65 62 6f 6f 74 21 00 53 65 74 75 70 20 44 48 43 50 20 48 41 20 | .the.next.reboot!.Setup.DHCP.HA. |
| 79280 | 66 6f 72 20 6e 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 00 53 65 74 75 70 20 44 | for.network.192.0.2.0/24.Setup.D |
| 792a0 | 48 43 50 20 66 61 69 6c 6f 76 65 72 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 | HCP.failover.for.network.192.0.2 |
| 792c0 | 2e 30 2f 32 34 00 53 65 74 75 70 20 65 6e 63 72 79 70 74 65 64 20 70 61 73 73 77 6f 72 64 20 66 | .0/24.Setup.encrypted.password.f |
| 792e0 | 6f 72 20 67 69 76 65 6e 20 75 73 65 72 6e 61 6d 65 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 | or.given.username..This.is.usefu |
| 79300 | 6c 20 66 6f 72 20 74 72 61 6e 73 66 65 72 72 69 6e 67 20 61 20 68 61 73 68 65 64 20 70 61 73 73 | l.for.transferring.a.hashed.pass |
| 79320 | 77 6f 72 64 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 74 6f 20 73 79 73 74 65 6d 2e 00 53 65 74 75 | word.from.system.to.system..Setu |
| 79340 | 70 20 74 68 65 20 60 3c 74 69 6d 65 6f 75 74 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 77 68 65 | p.the.`<timeout>`.in.seconds.whe |
| 79360 | 6e 20 71 75 65 72 79 69 6e 67 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 53 65 | n.querying.the.RADIUS.server..Se |
| 79380 | 74 75 70 20 74 68 65 20 60 3c 74 69 6d 65 6f 75 74 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 77 | tup.the.`<timeout>`.in.seconds.w |
| 793a0 | 68 65 6e 20 71 75 65 72 79 69 6e 67 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 2e 00 | hen.querying.the.TACACS.server.. |
| 793c0 | 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 | Setup.the.dynamic.DNS.hostname.` |
| 793e0 | 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 | <hostname>`.associated.with.the. |
| 79400 | 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c | DynDNS.provider.identified.by.`< |
| 79420 | 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 | service-name>`..Setup.the.dynami |
| 79440 | 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f | c.DNS.hostname.`<hostname>`.asso |
| 79460 | 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 | ciated.with.the.DynDNS.provider. |
| 79480 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 20 77 68 65 6e 20 74 | identified.by.`<service>`.when.t |
| 794a0 | 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 61 64 64 72 65 73 73 20 60 3c 69 6e 74 65 72 | he.IP.address.on.address.`<inter |
| 794c0 | 66 61 63 65 3e 60 20 63 68 61 6e 67 65 73 2e 00 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 | face>`.changes..Setup.the.dynami |
| 794e0 | 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f | c.DNS.hostname.`<hostname>`.asso |
| 79500 | 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 | ciated.with.the.DynDNS.provider. |
| 79520 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 20 77 68 65 6e 20 74 | identified.by.`<service>`.when.t |
| 79540 | 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 | he.IP.address.on.interface.`<int |
| 79560 | 65 72 66 61 63 65 3e 60 20 63 68 61 6e 67 65 73 2e 00 53 65 76 65 72 61 6c 20 63 6f 6d 6d 61 6e | erface>`.changes..Several.comman |
| 79580 | 64 73 20 75 74 69 6c 69 7a 65 20 63 55 52 4c 20 74 6f 20 69 6e 69 74 69 61 74 65 20 74 72 61 6e | ds.utilize.cURL.to.initiate.tran |
| 795a0 | 73 66 65 72 73 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 | sfers..Configure.the.local.sourc |
| 795c0 | 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 73 20 75 73 65 64 20 66 6f 72 20 61 6c 6c | e.IPv4/IPv6.address.used.for.all |
| 795e0 | 20 63 55 52 4c 20 6f 70 65 72 61 74 69 6f 6e 73 2e 00 53 65 76 65 72 61 6c 20 63 6f 6d 6d 61 6e | .cURL.operations..Several.comman |
| 79600 | 64 73 20 75 74 69 6c 69 7a 65 20 63 75 72 6c 20 74 6f 20 69 6e 69 74 69 61 74 65 20 74 72 61 6e | ds.utilize.curl.to.initiate.tran |
| 79620 | 73 66 65 72 73 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 | sfers..Configure.the.local.sourc |
| 79640 | 65 20 69 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 43 55 52 4c 20 6f 70 | e.interface.used.for.all.CURL.op |
| 79660 | 65 72 61 74 69 6f 6e 73 2e 00 53 65 76 65 72 69 74 79 00 53 65 76 65 72 69 74 79 20 4c 65 76 65 | erations..Severity.Severity.Leve |
| 79680 | 6c 00 53 68 61 70 65 72 00 53 68 6f 72 74 20 47 49 20 63 61 70 61 62 69 6c 69 74 69 65 73 00 53 | l.Shaper.Short.GI.capabilities.S |
| 796a0 | 68 6f 72 74 20 47 49 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 66 6f 72 20 32 30 20 61 6e 64 20 | hort.GI.capabilities.for.20.and. |
| 796c0 | 34 30 20 4d 48 7a 00 53 68 6f 72 74 20 62 75 72 73 74 73 20 63 61 6e 20 62 65 20 61 6c 6c 6f 77 | 40.MHz.Short.bursts.can.be.allow |
| 796e0 | 65 64 20 74 6f 20 65 78 63 65 65 64 20 74 68 65 20 6c 69 6d 69 74 2e 20 4f 6e 20 63 72 65 61 74 | ed.to.exceed.the.limit..On.creat |
| 79700 | 69 6f 6e 2c 20 74 68 65 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 74 72 61 66 66 69 63 20 69 73 | ion,.the.Rate-Control.traffic.is |
| 79720 | 20 73 74 6f 63 6b 65 64 20 77 69 74 68 20 74 6f 6b 65 6e 73 20 77 68 69 63 68 20 63 6f 72 72 65 | .stocked.with.tokens.which.corre |
| 79740 | 73 70 6f 6e 64 20 74 6f 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 20 74 | spond.to.the.amount.of.traffic.t |
| 79760 | 68 61 74 20 63 61 6e 20 62 65 20 62 75 72 73 74 20 69 6e 20 6f 6e 65 20 67 6f 2e 20 54 6f 6b 65 | hat.can.be.burst.in.one.go..Toke |
| 79780 | 6e 73 20 61 72 72 69 76 65 20 61 74 20 61 20 73 74 65 61 64 79 20 72 61 74 65 2c 20 75 6e 74 69 | ns.arrive.at.a.steady.rate,.unti |
| 797a0 | 6c 20 74 68 65 20 62 75 63 6b 65 74 20 69 73 20 66 75 6c 6c 2e 00 53 68 6f 72 74 63 75 74 20 73 | l.the.bucket.is.full..Shortcut.s |
| 797c0 | 79 6e 74 61 78 20 66 6f 72 20 73 70 65 63 69 66 79 69 6e 67 20 61 75 74 6f 6d 61 74 69 63 20 6c | yntax.for.specifying.automatic.l |
| 797e0 | 65 61 6b 69 6e 67 20 66 72 6f 6d 20 76 72 66 20 56 52 46 4e 41 4d 45 20 74 6f 20 74 68 65 20 63 | eaking.from.vrf.VRFNAME.to.the.c |
| 79800 | 75 72 72 65 6e 74 20 56 52 46 20 75 73 69 6e 67 20 74 68 65 20 56 50 4e 20 52 49 42 20 61 73 20 | urrent.VRF.using.the.VPN.RIB.as. |
| 79820 | 69 6e 74 65 72 6d 65 64 69 61 72 79 2e 20 54 68 65 20 52 44 20 61 6e 64 20 52 54 20 61 72 65 20 | intermediary..The.RD.and.RT.are. |
| 79840 | 61 75 74 6f 20 64 65 72 69 76 65 64 20 61 6e 64 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 73 | auto.derived.and.should.not.be.s |
| 79860 | 70 65 63 69 66 69 65 64 20 65 78 70 6c 69 63 69 74 6c 79 20 66 6f 72 20 65 69 74 68 65 72 20 74 | pecified.explicitly.for.either.t |
| 79880 | 68 65 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 56 52 46 e2 80 99 73 | he.source.or.destination.VRF...s |
| 798a0 | 2e 00 53 68 6f 77 00 53 68 6f 77 20 43 47 4e 41 54 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 00 53 68 | ..Show.Show.CGNAT.allocations.Sh |
| 798c0 | 6f 77 20 44 48 43 50 20 73 65 72 76 65 72 20 64 61 65 6d 6f 6e 20 6c 6f 67 20 66 69 6c 65 00 53 | ow.DHCP.server.daemon.log.file.S |
| 798e0 | 68 6f 77 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 64 61 65 6d 6f 6e 20 6c 6f 67 20 66 69 6c | how.DHCPv6.server.daemon.log.fil |
| 79900 | 65 00 53 68 6f 77 20 46 69 72 65 77 61 6c 6c 20 6c 6f 67 00 53 68 6f 77 20 4c 4c 44 50 20 6e 65 | e.Show.Firewall.log.Show.LLDP.ne |
| 79920 | 69 67 68 62 6f 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 76 69 61 20 69 6e 74 65 72 66 61 63 65 20 | ighbors.connected.via.interface. |
| 79940 | 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 20 53 53 48 20 64 79 6e 61 6d 69 63 2d | `<interface>`..Show.SSH.dynamic- |
| 79960 | 70 72 6f 74 65 63 74 69 6f 6e 20 6c 6f 67 2e 00 53 68 6f 77 20 53 53 48 20 73 65 72 76 65 72 20 | protection.log..Show.SSH.server. |
| 79980 | 6c 6f 67 2e 00 53 68 6f 77 20 53 53 48 20 73 65 72 76 65 72 20 70 75 62 6c 69 63 20 6b 65 79 20 | log..Show.SSH.server.public.key. |
| 799a0 | 66 69 6e 67 65 72 70 72 69 6e 74 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 61 20 76 69 73 75 61 6c | fingerprints,.including.a.visual |
| 799c0 | 20 41 53 43 49 49 20 61 72 74 20 72 65 70 72 65 73 65 6e 74 61 74 69 6f 6e 2e 00 53 68 6f 77 20 | .ASCII.art.representation..Show. |
| 799e0 | 53 53 48 20 73 65 72 76 65 72 20 70 75 62 6c 69 63 20 6b 65 79 20 66 69 6e 67 65 72 70 72 69 6e | SSH.server.public.key.fingerprin |
| 79a00 | 74 73 2e 00 53 68 6f 77 20 57 41 4e 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 69 6e 66 6f 72 | ts..Show.WAN.load.balancer.infor |
| 79a20 | 6d 61 74 69 6f 6e 20 69 6e 63 6c 75 64 69 6e 67 20 74 65 73 74 20 74 79 70 65 73 20 61 6e 64 20 | mation.including.test.types.and. |
| 79a40 | 74 61 72 67 65 74 73 2e 20 41 20 63 68 61 72 61 63 74 65 72 20 61 74 20 74 68 65 20 73 74 61 72 | targets..A.character.at.the.star |
| 79a60 | 74 20 6f 66 20 65 61 63 68 20 6c 69 6e 65 20 64 65 70 69 63 74 73 20 74 68 65 20 73 74 61 74 65 | t.of.each.line.depicts.the.state |
| 79a80 | 20 6f 66 20 74 68 65 20 74 65 73 74 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 49 4d | .of.the.test.Show.WWAN.module.IM |
| 79aa0 | 45 49 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 49 4d 53 49 2e 00 53 68 6f 77 20 | EI..Show.WWAN.module.IMSI..Show. |
| 79ac0 | 57 57 41 4e 20 6d 6f 64 75 6c 65 20 4d 53 49 53 44 4e 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f | WWAN.module.MSISDN..Show.WWAN.mo |
| 79ae0 | 64 75 6c 65 20 53 49 4d 20 63 61 72 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 53 68 6f 77 20 | dule.SIM.card.information..Show. |
| 79b00 | 57 57 41 4e 20 6d 6f 64 75 6c 65 20 66 69 72 6d 77 61 72 65 2e 00 53 68 6f 77 20 57 57 41 4e 20 | WWAN.module.firmware..Show.WWAN. |
| 79b20 | 6d 6f 64 75 6c 65 20 68 61 72 64 77 61 72 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 53 68 | module.hardware.capabilities..Sh |
| 79b40 | 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 68 61 72 64 77 61 72 65 20 72 65 76 69 73 69 6f 6e | ow.WWAN.module.hardware.revision |
| 79b60 | 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 6d 6f 64 65 6c 2e 00 53 68 6f 77 20 57 | ..Show.WWAN.module.model..Show.W |
| 79b80 | 57 41 4e 20 6d 6f 64 75 6c 65 20 73 69 67 6e 61 6c 20 73 74 72 65 6e 67 74 68 2e 00 53 68 6f 77 | WAN.module.signal.strength..Show |
| 79ba0 | 20 61 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 61 | .a.detailed.information.of.all.a |
| 79bc0 | 63 74 69 76 65 20 49 50 73 65 63 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e | ctive.IPsec.Security.Association |
| 79be0 | 73 20 28 53 41 29 20 69 6e 20 76 65 72 62 6f 73 65 20 66 6f 72 6d 61 74 2e 00 53 68 6f 77 20 61 | s.(SA).in.verbose.format..Show.a |
| 79c00 | 20 6c 69 73 74 20 61 76 61 69 6c 61 62 6c 65 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 | .list.available.container.networ |
| 79c20 | 6b 73 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 3a 61 62 62 | ks.Show.a.list.of.installed.:abb |
| 79c40 | 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 63 | r:`CA.(Certificate.Authority)`.c |
| 79c60 | 65 72 74 69 66 69 63 61 74 65 73 2e 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 | ertificates..Show.a.list.of.inst |
| 79c80 | 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 43 52 4c 73 20 28 43 65 72 74 69 66 69 63 61 74 65 20 52 | alled.:abbr:`CRLs.(Certificate.R |
| 79ca0 | 65 76 6f 63 61 74 69 6f 6e 20 4c 69 73 74 29 60 2e 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 | evocation.List)`..Show.a.list.of |
| 79cc0 | 20 69 6e 73 74 61 6c 6c 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 00 53 68 6f 77 20 61 64 64 | .installed.certificates.Show.add |
| 79ce0 | 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 00 53 68 6f 77 20 61 | ress.and.port.allocations.Show.a |
| 79d00 | 6c 6c 20 42 46 44 20 70 65 65 72 73 00 53 68 6f 77 20 61 6c 6c 20 61 63 74 69 76 65 20 49 50 73 | ll.BFD.peers.Show.all.active.IPs |
| 79d20 | 65 63 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 00 53 68 | ec.Security.Associations.(SA).Sh |
| 79d40 | 6f 77 20 61 6c 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 20 66 6f 72 20 61 6e 20 65 78 74 65 72 6e | ow.all.allocations.for.an.extern |
| 79d60 | 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 53 68 6f 77 20 61 6c 6c 20 61 6c 6c 6f 63 61 74 69 6f | al.IP.address.Show.all.allocatio |
| 79d80 | 6e 73 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 53 68 | ns.for.an.internal.IP.address.Sh |
| 79da0 | 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 | ow.all.currently.active.IKE.Secu |
| 79dc0 | 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 20 66 6f 72 20 61 20 73 70 65 | rity.Associations.(SA).for.a.spe |
| 79de0 | 63 69 66 69 63 20 70 65 65 72 2e 00 53 68 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 | cific.peer..Show.all.currently.a |
| 79e00 | 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 | ctive.IKE.Security.Associations. |
| 79e20 | 28 53 41 29 20 74 68 61 74 20 61 72 65 20 75 73 69 6e 67 20 4e 41 54 20 54 72 61 76 65 72 73 61 | (SA).that.are.using.NAT.Traversa |
| 79e40 | 6c 2e 00 53 68 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 63 74 69 76 65 20 49 4b 45 | l..Show.all.currently.active.IKE |
| 79e60 | 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 2e 00 53 68 6f 77 20 61 6c 6c | .Security.Associations..Show.all |
| 79e80 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 | .the.configured.pre-shared.secre |
| 79ea0 | 74 20 6b 65 79 73 2e 00 53 68 6f 77 20 61 76 61 69 6c 61 62 6c 65 20 6f 66 66 6c 6f 61 64 69 6e | t.keys..Show.available.offloadin |
| 79ec0 | 67 20 66 75 6e 63 74 69 6f 6e 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 | g.functions.on.given.`<interface |
| 79ee0 | 3e 60 00 53 68 6f 77 20 62 69 6e 64 65 64 20 71 61 74 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 | >`.Show.binded.qat.device.interr |
| 79f00 | 75 70 74 73 20 74 6f 20 63 65 72 74 61 69 6e 20 63 6f 72 65 2e 00 53 68 6f 77 20 62 72 69 64 67 | upts.to.certain.core..Show.bridg |
| 79f20 | 65 20 60 3c 6e 61 6d 65 3e 60 20 66 64 62 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 63 75 72 72 | e.`<name>`.fdb.displays.the.curr |
| 79f40 | 65 6e 74 20 66 6f 72 77 61 72 64 69 6e 67 20 74 61 62 6c 65 3a 00 53 68 6f 77 20 62 72 69 64 67 | ent.forwarding.table:.Show.bridg |
| 79f60 | 65 20 60 3c 6e 61 6d 65 3e 60 20 6d 64 62 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 63 75 72 72 | e.`<name>`.mdb.displays.the.curr |
| 79f80 | 65 6e 74 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 6d 65 6d 62 65 72 73 68 69 70 20 74 | ent.multicast.group.membership.t |
| 79fa0 | 61 62 6c 65 2e 54 68 65 20 74 61 62 6c 65 20 69 73 20 70 6f 70 75 6c 61 74 65 64 20 62 79 20 49 | able.The.table.is.populated.by.I |
| 79fc0 | 47 4d 50 20 61 6e 64 20 4d 4c 44 20 73 6e 6f 6f 70 69 6e 67 20 69 6e 20 74 68 65 20 62 72 69 64 | GMP.and.MLD.snooping.in.the.brid |
| 79fe0 | 67 65 20 64 72 69 76 65 72 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 2e 00 53 68 6f 77 20 62 72 | ge.driver.automatically..Show.br |
| 7a000 | 69 65 66 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 53 68 6f 77 20 | ief.interface.information..Show. |
| 7a020 | 63 6f 6d 6d 61 6e 64 73 00 53 68 6f 77 20 63 6f 6e 66 69 67 75 72 65 64 20 73 65 72 69 61 6c 20 | commands.Show.configured.serial. |
| 7a040 | 70 6f 72 74 73 20 61 6e 64 20 74 68 65 69 72 20 72 65 73 70 65 63 74 69 76 65 20 69 6e 74 65 72 | ports.and.their.respective.inter |
| 7a060 | 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 | face.configuration..Show.connect |
| 7a080 | 69 6f 6e 20 64 61 74 61 20 6f 66 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 64 20 74 72 61 66 66 69 | ion.data.of.load.balanced.traffi |
| 7a0a0 | 63 3a 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 79 6e 63 69 6e 67 20 65 78 74 65 72 | c:.Show.connection.syncing.exter |
| 7a0c0 | 6e 61 6c 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f | nal.cache.entries.Show.connectio |
| 7a0e0 | 6e 20 73 79 6e 63 69 6e 67 20 69 6e 74 65 72 6e 61 6c 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 | n.syncing.internal.cache.entries |
| 7a100 | 00 53 68 6f 77 20 63 75 72 72 65 6e 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 75 73 65 72 73 2e | .Show.currently.connected.users. |
| 7a120 | 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 | .Show.detailed.information.about |
| 7a140 | 20 61 6c 6c 20 6c 65 61 72 6e 65 64 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4e 6f 64 | .all.learned.Segment.Routing.Nod |
| 7a160 | 65 73 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f | es.Show.detailed.information.abo |
| 7a180 | 75 74 20 70 72 65 66 69 78 2d 73 69 64 20 61 6e 64 20 6c 61 62 65 6c 20 6c 65 61 72 6e 65 64 00 | ut.prefix-sid.and.label.learned. |
| 7a1a0 | 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 | Show.detailed.information.about. |
| 7a1c0 | 74 68 65 20 75 6e 64 65 72 6c 61 79 69 6e 67 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 73 20 6f | the.underlaying.physical.links.o |
| 7a1e0 | 6e 20 67 69 76 65 6e 20 62 6f 6e 64 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 | n.given.bond.`<interface>`..Show |
| 7a200 | 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 67 69 76 65 6e 20 60 | .detailed.information.on.given.` |
| 7a220 | 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 | <interface>`.Show.detailed.infor |
| 7a240 | 6d 61 74 69 6f 6e 20 6f 6e 20 74 68 65 20 67 69 76 65 6e 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 | mation.on.the.given.loopback.int |
| 7a260 | 65 72 66 61 63 65 20 60 6c 6f 60 2e 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 | erface.`lo`..Show.detailed.infor |
| 7a280 | 6d 61 74 69 6f 6e 20 73 75 6d 6d 61 72 79 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 | mation.summary.on.given.`<interf |
| 7a2a0 | 61 63 65 3e 60 00 53 68 6f 77 20 64 65 74 61 69 6c 73 20 6f 66 20 61 6c 6c 20 61 76 61 69 6c 61 | ace>`.Show.details.of.all.availa |
| 7a2c0 | 62 6c 65 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 53 68 6f 77 20 66 6c 6f 77 20 61 63 | ble.VPN.connections.Show.flow.ac |
| 7a2e0 | 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 67 69 76 65 6e 20 60 | counting.information.for.given.` |
| 7a300 | 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 68 6f 73 74 | <interface>`.for.a.specific.host |
| 7a320 | 20 6f 6e 6c 79 2e 00 53 68 6f 77 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f | .only..Show.flow.accounting.info |
| 7a340 | 72 6d 61 74 69 6f 6e 20 66 6f 72 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e | rmation.for.given.`<interface>`. |
| 7a360 | 00 53 68 6f 77 20 67 65 6e 65 72 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 | .Show.general.information.about. |
| 7a380 | 73 70 65 63 69 66 69 63 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 00 53 68 6f | specific.WireGuard.interface.Sho |
| 7a3a0 | 77 20 69 6e 66 6f 20 61 62 6f 75 74 20 74 68 65 20 57 69 72 65 67 75 61 72 64 20 73 65 72 76 69 | w.info.about.the.Wireguard.servi |
| 7a3c0 | 63 65 2e 20 49 74 20 61 6c 73 6f 20 73 68 6f 77 73 20 74 68 65 20 6c 61 74 65 73 74 20 68 61 6e | ce..It.also.shows.the.latest.han |
| 7a3e0 | 64 73 68 61 6b 65 2e 00 53 68 6f 77 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 70 | dshake..Show.information.about.p |
| 7a400 | 68 79 73 69 63 61 6c 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 6c 69 73 74 20 | hysical.`<interface>`.Show.list. |
| 7a420 | 6f 66 20 49 50 73 20 63 75 72 72 65 6e 74 6c 79 20 62 6c 6f 63 6b 65 64 20 62 79 20 53 53 48 20 | of.IPs.currently.blocked.by.SSH. |
| 7a440 | 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 6f | dynamic-protection..Show.logs.fo |
| 7a460 | 72 20 49 50 73 65 63 00 53 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 6d 44 4e 53 20 72 65 70 65 61 | r.IPsec.Show.logs.for.mDNS.repea |
| 7a480 | 74 65 72 20 73 65 72 76 69 63 65 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 61 20 67 69 | ter.service..Show.logs.from.a.gi |
| 7a4a0 | 76 65 6e 20 63 6f 6e 74 61 69 6e 65 72 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 61 6c 6c | ven.container.Show.logs.from.all |
| 7a4c0 | 20 44 48 43 50 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 65 73 2e 00 53 68 6f 77 20 6c 6f 67 | .DHCP.client.processes..Show.log |
| 7a4e0 | 73 20 66 72 6f 6d 20 61 6c 6c 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 | s.from.all.DHCPv6.client.process |
| 7a500 | 65 73 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 63 20 60 69 6e 74 | es..Show.logs.from.specific.`int |
| 7a520 | 65 72 66 61 63 65 60 20 44 48 43 50 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 2e 00 53 68 6f | erface`.DHCP.client.process..Sho |
| 7a540 | 77 20 6c 6f 67 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 63 20 60 69 6e 74 65 72 66 61 63 65 60 | w.logs.from.specific.`interface` |
| 7a560 | 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 2e 00 53 68 6f 77 20 6f 6e 6c | .DHCPv6.client.process..Show.onl |
| 7a580 | 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 73 70 65 63 69 66 69 65 64 20 43 65 72 74 | y.information.for.specified.Cert |
| 7a5a0 | 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 69 6e 66 | ificate.Authority..Show.only.inf |
| 7a5c0 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 73 70 65 63 69 66 69 65 64 20 63 65 72 74 69 66 69 63 61 | ormation.for.specified.certifica |
| 7a5e0 | 74 65 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 6c 65 61 73 65 73 20 69 6e 20 74 68 65 20 73 70 65 63 | te..Show.only.leases.in.the.spec |
| 7a600 | 69 66 69 65 64 20 70 6f 6f 6c 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 6c 65 61 73 65 73 20 77 69 74 | ified.pool..Show.only.leases.wit |
| 7a620 | 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 61 74 65 2e 20 50 6f 73 73 69 62 6c 65 20 | h.the.specified.state..Possible. |
| 7a640 | 73 74 61 74 65 73 3a 20 61 62 61 6e 64 6f 6e 65 64 2c 20 61 63 74 69 76 65 2c 20 61 6c 6c 2c 20 | states:.abandoned,.active,.all,. |
| 7a660 | 62 61 63 6b 75 70 2c 20 65 78 70 69 72 65 64 2c 20 66 72 65 65 2c 20 72 65 6c 65 61 73 65 64 2c | backup,.expired,.free,.released, |
| 7a680 | 20 72 65 73 65 74 20 28 64 65 66 61 75 6c 74 20 3d 20 61 63 74 69 76 65 29 00 53 68 6f 77 20 6f | .reset.(default.=.active).Show.o |
| 7a6a0 | 6e 6c 79 20 6c 65 61 73 65 73 20 77 69 74 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 | nly.leases.with.the.specified.st |
| 7a6c0 | 61 74 65 2e 20 50 6f 73 73 69 62 6c 65 20 73 74 61 74 65 73 3a 20 61 6c 6c 2c 20 61 63 74 69 76 | ate..Possible.states:.all,.activ |
| 7a6e0 | 65 2c 20 66 72 65 65 2c 20 65 78 70 69 72 65 64 2c 20 72 65 6c 65 61 73 65 64 2c 20 61 62 61 6e | e,.free,.expired,.released,.aban |
| 7a700 | 64 6f 6e 65 64 2c 20 72 65 73 65 74 2c 20 62 61 63 6b 75 70 20 28 64 65 66 61 75 6c 74 20 3d 20 | doned,.reset,.backup.(default.=. |
| 7a720 | 61 63 74 69 76 65 29 00 53 68 6f 77 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 65 6e 74 72 79 | active).Show.routing.table.entry |
| 7a740 | 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 53 68 6f 77 20 73 70 65 | .for.the.default.route..Show.spe |
| 7a760 | 63 69 66 69 63 20 4d 41 43 73 65 63 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 | cific.MACsec.interface.informati |
| 7a780 | 6f 6e 00 53 68 6f 77 20 73 74 61 74 75 73 20 6f 66 20 6e 65 77 20 73 65 74 75 70 3a 00 53 68 6f | on.Show.status.of.new.setup:.Sho |
| 7a7a0 | 77 20 73 74 61 74 75 73 65 73 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 6c 65 61 73 65 73 20 | w.statuses.of.all.active.leases. |
| 7a7c0 | 67 72 61 6e 74 65 64 20 62 79 20 6c 6f 63 61 6c 20 28 74 68 69 73 20 73 65 72 76 65 72 29 20 6f | granted.by.local.(this.server).o |
| 7a7e0 | 72 20 72 65 6d 6f 74 65 20 28 66 61 69 6c 6f 76 65 72 20 73 65 72 76 65 72 29 3a 00 53 68 6f 77 | r.remote.(failover.server):.Show |
| 7a800 | 20 73 74 61 74 75 73 65 73 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 6c 65 61 73 65 73 3a 00 | .statuses.of.all.active.leases:. |
| 7a820 | 53 68 6f 77 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 73 74 61 74 69 73 74 69 63 73 20 | Show.the.DHCP.server.statistics. |
| 7a840 | 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 6f 6f 6c 2e 00 53 68 6f 77 20 74 68 65 | for.the.specified.pool..Show.the |
| 7a860 | 20 44 48 43 50 20 73 65 72 76 65 72 20 73 74 61 74 69 73 74 69 63 73 3a 00 53 68 6f 77 20 74 68 | .DHCP.server.statistics:.Show.th |
| 7a880 | 65 20 63 6f 6e 73 6f 6c 65 20 73 65 72 76 65 72 20 6c 6f 67 2e 00 53 68 6f 77 20 74 68 65 20 64 | e.console.server.log..Show.the.d |
| 7a8a0 | 65 74 61 69 6c 65 64 20 73 74 61 74 75 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 49 4b | etailed.status.information.of.IK |
| 7a8c0 | 45 20 63 68 61 72 6f 6e 20 70 72 6f 63 65 73 73 2e 00 53 68 6f 77 20 74 68 65 20 66 75 6c 6c 20 | E.charon.process..Show.the.full. |
| 7a8e0 | 63 6f 6e 66 69 67 20 75 70 6c 6f 61 64 65 64 20 74 6f 20 74 68 65 20 51 41 54 20 64 65 76 69 63 | config.uploaded.to.the.QAT.devic |
| 7a900 | 65 2e 00 53 68 6f 77 20 74 68 65 20 6c 69 73 74 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 63 | e..Show.the.list.of.all.active.c |
| 7a920 | 6f 6e 74 61 69 6e 65 72 73 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 63 61 6c 20 63 6f 6e 74 61 69 | ontainers..Show.the.local.contai |
| 7a940 | 6e 65 72 20 69 6d 61 67 65 73 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 20 73 | ner.images..Show.the.logs.of.a.s |
| 7a960 | 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 | pecific.Rule-Set..Show.the.logs. |
| 7a980 | 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 62 72 69 64 67 65 | of.all.firewall;.show.all.bridge |
| 7a9a0 | 20 66 69 72 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f | .firewall.logs;.show.all.logs.fo |
| 7a9c0 | 72 20 66 6f 72 77 61 72 64 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f | r.forward.hook;.show.all.logs.fo |
| 7a9e0 | 72 20 66 6f 72 77 61 72 64 20 68 6f 6f 6b 20 61 6e 64 20 70 72 69 6f 72 69 74 79 20 66 69 6c 74 | r.forward.hook.and.priority.filt |
| 7aa00 | 65 72 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 | er;.show.all.logs.for.particular |
| 7aa20 | 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 | .custom.chain;.show.logs.for.spe |
| 7aa40 | 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 | cific.Rule-Set..Show.the.logs.of |
| 7aa60 | 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 69 70 76 34 20 66 69 72 | .all.firewall;.show.all.ipv4.fir |
| 7aa80 | 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 | ewall.logs;.show.all.logs.for.pa |
| 7aaa0 | 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 | rticular.hook;.show.all.logs.for |
| 7aac0 | 20 70 61 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 20 61 6e 64 20 70 72 69 6f 72 69 74 79 3b 20 73 | .particular.hook.and.priority;.s |
| 7aae0 | 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 63 75 73 74 | how.all.logs.for.particular.cust |
| 7ab00 | 6f 6d 20 63 68 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 | om.chain;.show.logs.for.specific |
| 7ab20 | 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 6c 6c 20 | .Rule-Set..Show.the.logs.of.all. |
| 7ab40 | 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 69 70 76 36 20 66 69 72 65 77 61 6c 6c | firewall;.show.all.ipv6.firewall |
| 7ab60 | 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 | .logs;.show.all.logs.for.particu |
| 7ab80 | 6c 61 72 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 | lar.hook;.show.all.logs.for.part |
| 7aba0 | 69 63 75 6c 61 72 20 68 6f 6f 6b 20 61 6e 64 20 70 72 69 6f 72 69 74 79 3b 20 73 68 6f 77 20 61 | icular.hook.and.priority;.show.a |
| 7abc0 | 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 63 75 73 74 6f 6d 20 63 68 | ll.logs.for.particular.custom.ch |
| 7abe0 | 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 52 75 6c 65 | ain;.show.logs.for.specific.Rule |
| 7ac00 | 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 72 6f 75 74 65 00 53 68 6f 77 20 74 68 65 20 73 74 | -Set..Show.the.route.Show.the.st |
| 7ac20 | 61 74 75 73 20 6f 66 20 72 75 6e 6e 69 6e 67 20 49 50 73 65 63 20 70 72 6f 63 65 73 73 20 61 6e | atus.of.running.IPsec.process.an |
| 7ac40 | 64 20 70 72 6f 63 65 73 73 20 49 44 2e 00 53 68 6f 77 20 74 72 61 6e 73 63 65 69 76 65 72 20 69 | d.process.ID..Show.transceiver.i |
| 7ac60 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 70 6c 75 67 69 6e 20 6d 6f 64 75 6c 65 73 2c 20 | nformation.from.plugin.modules,. |
| 7ac80 | 65 2e 67 20 53 46 50 2b 2c 20 51 53 46 50 00 53 68 6f 77 69 6e 67 20 42 46 44 20 6d 6f 6e 69 74 | e.g.SFP+,.QSFP.Showing.BFD.monit |
| 7aca0 | 6f 72 65 64 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 00 53 68 6f 77 73 20 73 74 61 74 75 73 20 | ored.static.routes.Shows.status. |
| 7acc0 | 6f 66 20 61 6c 6c 20 61 73 73 69 67 6e 65 64 20 6c 65 61 73 65 73 3a 00 53 69 64 65 20 41 3a 00 | of.all.assigned.leases:.Side.A:. |
| 7ace0 | 53 69 64 65 20 42 3a 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 | Side.B:.Sierra.Wireless.AirPrime |
| 7ad00 | 20 4d 43 37 33 30 34 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 65 72 | .MC7304.miniPCIe.card.(LTE).Sier |
| 7ad20 | 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 34 33 30 20 6d 69 6e 69 | ra.Wireless.AirPrime.MC7430.mini |
| 7ad40 | 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 | PCIe.card.(LTE).Sierra.Wireless. |
| 7ad60 | 41 69 72 50 72 69 6d 65 20 4d 43 37 34 35 35 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c | AirPrime.MC7455.miniPCIe.card.(L |
| 7ad80 | 54 45 29 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 | TE).Sierra.Wireless.AirPrime.MC7 |
| 7ada0 | 37 31 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 6d 69 6c 61 72 20 | 710.miniPCIe.card.(LTE).Similar. |
| 7adc0 | 63 6f 6d 62 69 6e 61 74 69 6f 6e 73 20 61 72 65 20 61 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 | combinations.are.applicable.for. |
| 7ade0 | 74 68 65 20 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 2e 00 53 69 6d 69 6c 61 72 | the.dead-peer-detection..Similar |
| 7ae00 | 6c 79 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 45 53 20 70 65 65 72 | ly.traffic.received.from.ES.peer |
| 7ae20 | 73 20 76 69 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 63 61 6e 6e 6f 74 20 62 65 20 66 6f 72 77 | s.via.the.overlay.cannot.be.forw |
| 7ae40 | 61 72 64 65 64 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 69 73 20 73 70 6c | arded.to.the.server..This.is.spl |
| 7ae60 | 69 74 2d 68 6f 72 69 7a 6f 6e 2d 66 69 6c 74 65 72 69 6e 67 20 77 69 74 68 20 6c 6f 63 61 6c 20 | it-horizon-filtering.with.local. |
| 7ae80 | 62 69 61 73 2e 00 53 69 6d 70 6c 65 20 42 61 62 65 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | bias..Simple.Babel.configuration |
| 7aea0 | 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 20 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 69 6e | .using.2.nodes.and.redistributin |
| 7aec0 | 67 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 00 53 69 6d 70 6c 65 20 52 | g.connected.interfaces..Simple.R |
| 7aee0 | 49 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 20 61 | IP.configuration.using.2.nodes.a |
| 7af00 | 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 74 65 | nd.redistributing.connected.inte |
| 7af20 | 72 66 61 63 65 73 2e 00 53 69 6d 70 6c 65 20 73 65 74 75 70 20 77 69 74 68 20 6f 6e 65 20 75 73 | rfaces..Simple.setup.with.one.us |
| 7af40 | 65 72 20 61 64 64 65 64 20 61 6e 64 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 | er.added.and.password.authentica |
| 7af60 | 74 69 6f 6e 3a 00 53 69 6d 70 6c 65 20 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 | tion:.Simple.text.password.authe |
| 7af80 | 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 69 6e 73 65 63 75 72 65 20 61 6e 64 20 64 65 70 72 65 63 | ntication.is.insecure.and.deprec |
| 7afa0 | 61 74 65 64 20 69 6e 20 66 61 76 6f 75 72 20 6f 66 20 4d 44 35 20 48 4d 41 43 20 61 75 74 68 65 | ated.in.favour.of.MD5.HMAC.authe |
| 7afc0 | 6e 74 69 63 61 74 69 6f 6e 2e 00 53 69 6e 63 65 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 64 6f | ntication..Since.both.routers.do |
| 7afe0 | 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 69 72 20 65 66 66 65 63 74 69 76 65 20 70 75 62 6c 69 63 | .not.know.their.effective.public |
| 7b000 | 20 61 64 64 72 65 73 73 65 73 2c 20 77 65 20 73 65 74 20 74 68 65 20 6c 6f 63 61 6c 2d 61 64 64 | .addresses,.we.set.the.local-add |
| 7b020 | 72 65 73 73 20 6f 66 20 74 68 65 20 70 65 65 72 20 74 6f 20 22 61 6e 79 22 2e 00 53 69 6e 63 65 | ress.of.the.peer.to."any"..Since |
| 7b040 | 20 62 72 69 64 67 65 73 20 6f 70 65 72 61 74 65 73 20 61 74 20 6c 61 79 65 72 20 32 2c 20 62 6f | .bridges.operates.at.layer.2,.bo |
| 7b060 | 74 68 20 6d 61 74 63 68 65 72 73 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 72 | th.matchers.for.IPv4.and.IPv6.ar |
| 7b080 | 65 20 73 75 70 70 6f 72 74 65 64 20 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 | e.supported.in.bridge.firewall.c |
| 7b0a0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 53 61 6d 65 20 61 70 70 6c 69 65 73 20 66 6f 72 20 66 | onfiguration..Same.applies.for.f |
| 7b0c0 | 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2e 00 53 69 6e 63 65 20 62 72 69 64 67 65 73 20 6f 70 | irewall.groups..Since.bridges.op |
| 7b0e0 | 65 72 61 74 73 20 61 74 20 6c 61 79 65 72 20 32 2c 20 62 6f 74 68 20 6d 61 74 63 68 65 72 73 20 | erats.at.layer.2,.both.matchers. |
| 7b100 | 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 20 | for.IPv4.and.IPv6.are.supported. |
| 7b120 | 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | in.bridge.firewall.configuration |
| 7b140 | 2e 20 53 61 6d 65 20 61 70 70 6c 69 65 73 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 | ..Same.applies.to.firewall.group |
| 7b160 | 73 2e 00 53 69 6e 63 65 20 69 74 27 73 20 61 20 48 51 20 61 6e 64 20 62 72 61 6e 63 68 20 6f 66 | s..Since.it's.a.HQ.and.branch.of |
| 7b180 | 66 69 63 65 73 20 73 65 74 75 70 2c 20 77 65 20 77 69 6c 6c 20 77 61 6e 74 20 61 6c 6c 20 63 6c | fices.setup,.we.will.want.all.cl |
| 7b1a0 | 69 65 6e 74 73 20 74 6f 20 68 61 76 65 20 66 69 78 65 64 20 61 64 64 72 65 73 73 65 73 20 61 6e | ients.to.have.fixed.addresses.an |
| 7b1c0 | 64 20 77 65 20 77 69 6c 6c 20 72 6f 75 74 65 20 74 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 | d.we.will.route.traffic.to.speci |
| 7b1e0 | 66 69 63 20 73 75 62 6e 65 74 73 20 74 68 72 6f 75 67 68 20 74 68 65 6d 2e 20 57 65 20 6e 65 65 | fic.subnets.through.them..We.nee |
| 7b200 | 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 65 61 63 68 20 63 6c 69 65 6e 74 20 | d.configuration.for.each.client. |
| 7b220 | 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 2e 00 53 69 6e 63 65 20 69 74 27 73 20 61 20 48 51 | to.achieve.this..Since.it's.a.HQ |
| 7b240 | 20 77 69 74 68 20 62 72 61 6e 63 68 20 6f 66 66 69 63 65 73 20 73 65 74 75 70 2c 20 77 65 20 77 | .with.branch.offices.setup,.we.w |
| 7b260 | 69 6c 6c 20 77 61 6e 74 20 61 6c 6c 20 63 6c 69 65 6e 74 73 20 74 6f 20 68 61 76 65 20 66 69 78 | ill.want.all.clients.to.have.fix |
| 7b280 | 65 64 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 77 65 20 77 69 6c 6c 20 72 6f 75 74 65 20 74 | ed.addresses.and.we.will.route.t |
| 7b2a0 | 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 66 69 63 20 73 75 62 6e 65 74 73 20 74 68 72 6f 75 | raffic.to.specific.subnets.throu |
| 7b2c0 | 67 68 20 74 68 65 6d 2e 20 57 65 20 6e 65 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 | gh.them..We.need.configuration.f |
| 7b2e0 | 6f 72 20 65 61 63 68 20 63 6c 69 65 6e 74 20 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 2e 00 | or.each.client.to.achieve.this.. |
| 7b300 | 53 69 6e 63 65 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 6f 75 6c 64 20 62 65 | Since.the.RADIUS.server.would.be |
| 7b320 | 20 61 20 73 69 6e 67 6c 65 20 70 6f 69 6e 74 20 6f 66 20 66 61 69 6c 75 72 65 2c 20 6d 75 6c 74 | .a.single.point.of.failure,.mult |
| 7b340 | 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 | iple.RADIUS.servers.can.be.setup |
| 7b360 | 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 73 75 62 73 65 71 75 65 6e 74 69 61 6c 6c | .and.will.be.used.subsequentiall |
| 7b380 | 79 2e 00 53 69 6e 63 65 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 6f 75 6c 64 | y..Since.the.RADIUS.server.would |
| 7b3a0 | 20 62 65 20 61 20 73 69 6e 67 6c 65 20 70 6f 69 6e 74 20 6f 66 20 66 61 69 6c 75 72 65 2c 20 6d | .be.a.single.point.of.failure,.m |
| 7b3c0 | 75 6c 74 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 65 | ultiple.RADIUS.servers.can.be.se |
| 7b3e0 | 74 75 70 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 73 75 62 73 65 71 75 65 6e 74 69 | tup.and.will.be.used.subsequenti |
| 7b400 | 61 6c 6c 79 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 53 69 6e 63 65 20 74 68 65 20 6d 44 4e | ally..For.example:.Since.the.mDN |
| 7b420 | 53 20 70 72 6f 74 6f 63 6f 6c 20 73 65 6e 64 73 20 74 68 65 20 3a 61 62 62 72 3a 60 41 41 28 41 | S.protocol.sends.the.:abbr:`AA(A |
| 7b440 | 75 74 68 6f 72 69 74 61 74 69 76 65 20 41 6e 73 77 65 72 29 60 20 72 65 63 6f 72 64 73 20 69 6e | uthoritative.Answer)`.records.in |
| 7b460 | 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 73 65 6c 66 2c 20 74 68 65 20 72 65 70 65 61 74 65 72 | .the.packet.itself,.the.repeater |
| 7b480 | 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 66 6f 72 67 65 20 74 68 65 20 73 6f 75 72 | .does.not.need.to.forge.the.sour |
| 7b4a0 | 63 65 20 61 64 64 72 65 73 73 2e 20 49 6e 73 74 65 61 64 2c 20 74 68 65 20 73 6f 75 72 63 65 20 | ce.address..Instead,.the.source. |
| 7b4c0 | 61 64 64 72 65 73 73 20 69 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 | address.is.of.the.interface.that |
| 7b4e0 | 20 72 65 70 65 61 74 73 20 74 68 65 20 70 61 63 6b 65 74 2e 00 53 69 6e 63 65 20 74 68 65 20 6d | .repeats.the.packet..Since.the.m |
| 7b500 | 44 4e 53 20 70 72 6f 74 6f 63 6f 6c 20 73 65 6e 64 73 20 74 68 65 20 41 41 20 72 65 63 6f 72 64 | DNS.protocol.sends.the.AA.record |
| 7b520 | 73 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 73 65 6c 66 2c 20 74 68 65 20 72 65 70 65 | s.in.the.packet.itself,.the.repe |
| 7b540 | 61 74 65 72 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 66 6f 72 67 65 20 74 68 65 20 | ater.does.not.need.to.forge.the. |
| 7b560 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 49 6e 73 74 65 61 64 2c 20 74 68 65 20 73 6f 75 | source.address..Instead,.the.sou |
| 7b580 | 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 | rce.address.is.of.the.interface. |
| 7b5a0 | 74 68 61 74 20 72 65 70 65 61 74 73 20 74 68 65 20 70 61 63 6b 65 74 2e 00 53 69 6e 63 65 20 77 | that.repeats.the.packet..Since.w |
| 7b5c0 | 65 20 61 72 65 20 61 6e 61 6c 79 7a 69 6e 67 20 61 74 74 61 63 6b 73 20 74 6f 20 61 6e 64 20 66 | e.are.analyzing.attacks.to.and.f |
| 7b5e0 | 72 6f 6d 20 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 74 77 6f 20 74 79 | rom.our.internal.network,.two.ty |
| 7b600 | 70 65 73 20 6f 66 20 61 74 74 61 63 6b 73 20 63 61 6e 20 62 65 20 69 64 65 6e 74 69 66 69 65 64 | pes.of.attacks.can.be.identified |
| 7b620 | 2c 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 20 61 63 74 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 | ,.and.different.actions.are.need |
| 7b640 | 65 64 3a 00 53 69 6e 63 65 20 77 65 20 61 72 65 20 61 6e 61 6c 79 7a 69 6e 67 20 61 74 74 61 63 | ed:.Since.we.are.analyzing.attac |
| 7b660 | 6b 73 20 74 6f 20 61 6e 64 20 66 72 6f 6d 20 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 | ks.to.and.from.our.internal.netw |
| 7b680 | 6f 72 6b 2c 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 61 74 74 61 63 6b 73 20 63 61 6e 20 62 65 | ork,.two.types.of.attacks.can.be |
| 7b6a0 | 20 69 64 65 6e 74 69 66 69 65 64 2c 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 73 20 61 63 74 69 | .identified,.and.differents.acti |
| 7b6c0 | 6f 6e 73 20 61 72 65 20 6e 65 65 64 65 64 3a 00 53 69 6e 67 6c 65 20 56 58 4c 41 4e 20 64 65 76 | ons.are.needed:.Single.VXLAN.dev |
| 7b6e0 | 69 63 65 20 28 53 56 44 29 00 53 69 6e 67 6c 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 | ice.(SVD).Single.external.addres |
| 7b700 | 73 00 53 69 74 65 20 74 6f 20 53 69 74 65 20 56 50 4e 00 53 69 74 65 2d 74 6f 2d 53 69 74 65 00 | s.Site.to.Site.VPN.Site-to-Site. |
| 7b720 | 53 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 61 20 77 61 79 | Site-to-site.mode.provides.a.way |
| 7b740 | 20 74 6f 20 61 64 64 20 72 65 6d 6f 74 65 20 70 65 65 72 73 2c 20 77 68 69 63 68 20 63 6f 75 6c | .to.add.remote.peers,.which.coul |
| 7b760 | 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 65 78 63 68 61 6e 67 65 20 65 6e 63 72 | d.be.configured.to.exchange.encr |
| 7b780 | 79 70 74 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 74 68 65 6d 20 61 | ypted.information.between.them.a |
| 7b7a0 | 6e 64 20 56 79 4f 53 20 69 74 73 65 6c 66 20 6f 72 20 63 6f 6e 6e 65 63 74 65 64 2f 72 6f 75 74 | nd.VyOS.itself.or.connected/rout |
| 7b7c0 | 65 64 20 6e 65 74 77 6f 72 6b 73 2e 00 53 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 73 | ed.networks..Site-to-site.mode.s |
| 7b7e0 | 75 70 70 6f 72 74 73 20 78 2e 35 30 39 20 62 75 74 20 64 6f 65 73 6e 27 74 20 72 65 71 75 69 72 | upports.x.509.but.doesn't.requir |
| 7b800 | 65 20 69 74 20 61 6e 64 20 63 61 6e 20 61 6c 73 6f 20 77 6f 72 6b 20 77 69 74 68 20 73 74 61 74 | e.it.and.can.also.work.with.stat |
| 7b820 | 69 63 20 6b 65 79 73 2c 20 77 68 69 63 68 20 69 73 20 73 69 6d 70 6c 65 72 20 69 6e 20 6d 61 6e | ic.keys,.which.is.simpler.in.man |
| 7b840 | 79 20 63 61 73 65 73 2e 20 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 27 6c 6c 20 | y.cases..In.this.example,.we'll. |
| 7b860 | 63 6f 6e 66 69 67 75 72 65 20 61 20 73 69 6d 70 6c 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 | configure.a.simple.site-to-site. |
| 7b880 | 4f 70 65 6e 56 50 4e 20 74 75 6e 6e 65 6c 20 75 73 69 6e 67 20 61 20 32 30 34 38 2d 62 69 74 20 | OpenVPN.tunnel.using.a.2048-bit. |
| 7b8a0 | 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 2e 00 53 69 7a 65 20 6f 66 20 74 68 65 20 52 53 41 20 | pre-shared.key..Size.of.the.RSA. |
| 7b8c0 | 6b 65 79 2e 00 53 6c 61 76 65 20 73 65 6c 65 63 74 69 6f 6e 20 66 6f 72 20 6f 75 74 67 6f 69 6e | key..Slave.selection.for.outgoin |
| 7b8e0 | 67 20 74 72 61 66 66 69 63 20 69 73 20 64 6f 6e 65 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 | g.traffic.is.done.according.to.t |
| 7b900 | 68 65 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 6d | he.transmit.hash.policy,.which.m |
| 7b920 | 61 79 20 62 65 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 74 68 65 20 64 65 66 61 75 6c 74 20 73 | ay.be.changed.from.the.default.s |
| 7b940 | 69 6d 70 6c 65 20 58 4f 52 20 70 6f 6c 69 63 79 20 76 69 61 20 74 68 65 20 3a 63 66 67 63 6d 64 | imple.XOR.policy.via.the.:cfgcmd |
| 7b960 | 3a 60 68 61 73 68 2d 70 6f 6c 69 63 79 60 20 6f 70 74 69 6f 6e 2c 20 64 6f 63 75 6d 65 6e 74 65 | :`hash-policy`.option,.documente |
| 7b980 | 64 20 62 65 6c 6f 77 2e 00 53 6f 20 69 6e 20 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 | d.below..So.in.our.firewall.poli |
| 7b9a0 | 63 79 2c 20 77 65 20 77 61 6e 74 20 74 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 69 63 20 63 6f 6d | cy,.we.want.to.allow.traffic.com |
| 7b9c0 | 69 6e 67 20 69 6e 20 6f 6e 20 74 68 65 20 6f 75 74 73 69 64 65 20 69 6e 74 65 72 66 61 63 65 2c | ing.in.on.the.outside.interface, |
| 7b9e0 | 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 54 43 50 20 70 6f 72 74 20 38 30 20 61 6e 64 20 74 68 | .destined.for.TCP.port.80.and.th |
| 7ba00 | 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 00 53 | e.IP.address.of.192.168.0.100..S |
| 7ba20 | 6f 20 69 6e 20 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 2c 20 77 65 20 77 61 | o.in.our.firewall.ruleset,.we.wa |
| 7ba40 | 6e 74 20 74 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 69 63 20 77 68 69 63 68 20 70 72 65 76 69 6f | nt.to.allow.traffic.which.previo |
| 7ba60 | 75 73 6c 79 20 6d 61 74 63 68 65 64 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6e 61 74 20 72 | usly.matched.a.destination.nat.r |
| 7ba80 | 75 6c 65 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 61 76 6f 69 64 20 63 72 65 61 74 69 6e 67 20 | ule..In.order.to.avoid.creating. |
| 7baa0 | 6d 61 6e 79 20 72 75 6c 65 73 2c 20 6f 6e 65 20 66 6f 72 20 65 61 63 68 20 64 65 73 74 69 6e 61 | many.rules,.one.for.each.destina |
| 7bac0 | 74 69 6f 6e 20 6e 61 74 20 72 75 6c 65 2c 20 77 65 20 63 61 6e 20 61 63 63 65 70 74 20 61 6c 6c | tion.nat.rule,.we.can.accept.all |
| 7bae0 | 20 2a 2a 27 64 6e 61 74 27 2a 2a 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 77 69 74 68 20 6f 6e 65 | .**'dnat'**.connections.with.one |
| 7bb00 | 20 73 69 6d 70 6c 65 20 72 75 6c 65 2c 20 75 73 69 6e 67 20 60 60 63 6f 6e 6e 65 63 74 69 6f 6e | .simple.rule,.using.``connection |
| 7bb20 | 2d 73 74 61 74 75 73 60 60 20 6d 61 74 63 68 65 72 3a 00 53 6f 2c 20 66 69 72 65 77 61 6c 6c 20 | -status``.matcher:.So,.firewall. |
| 7bb40 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6e 65 65 64 65 64 20 66 6f 72 20 74 68 69 73 20 73 65 | configuration.needed.for.this.se |
| 7bb60 | 74 75 70 3a 00 53 6f 6c 61 72 57 69 6e 64 73 00 53 6f 6d 65 20 49 53 50 73 20 62 79 20 64 65 66 | tup:.SolarWinds.Some.ISPs.by.def |
| 7bb80 | 61 75 6c 74 20 6f 6e 6c 79 20 64 65 6c 65 67 61 74 65 20 61 20 2f 36 34 20 70 72 65 66 69 78 2e | ault.only.delegate.a./64.prefix. |
| 7bba0 | 20 54 6f 20 72 65 71 75 65 73 74 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 70 72 65 66 69 | .To.request.for.a.specific.prefi |
| 7bbc0 | 78 20 73 69 7a 65 20 75 73 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 74 6f 20 72 65 71 75 65 73 | x.size.use.this.option.to.reques |
| 7bbe0 | 74 20 66 6f 72 20 61 20 62 69 67 67 65 72 20 64 65 6c 65 67 61 74 69 6f 6e 20 66 6f 72 20 74 68 | t.for.a.bigger.delegation.for.th |
| 7bc00 | 69 73 20 70 64 20 60 3c 69 64 3e 60 2e 20 54 68 69 73 20 76 61 6c 75 65 20 69 73 20 69 6e 20 74 | is.pd.`<id>`..This.value.is.in.t |
| 7bc20 | 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 33 32 20 2d 20 36 34 20 73 6f 20 79 6f 75 20 63 6f 75 | he.range.from.32.-.64.so.you.cou |
| 7bc40 | 6c 64 20 72 65 71 75 65 73 74 20 75 70 20 74 6f 20 61 20 2f 33 32 20 70 72 65 66 69 78 20 28 69 | ld.request.up.to.a./32.prefix.(i |
| 7bc60 | 66 20 79 6f 75 72 20 49 53 50 20 61 6c 6c 6f 77 73 20 74 68 69 73 29 20 64 6f 77 6e 20 74 6f 20 | f.your.ISP.allows.this).down.to. |
| 7bc80 | 61 20 2f 36 34 20 64 65 6c 65 67 61 74 69 6f 6e 2e 00 53 6f 6d 65 20 49 54 20 65 6e 76 69 72 6f | a./64.delegation..Some.IT.enviro |
| 7bca0 | 6e 6d 65 6e 74 73 20 72 65 71 75 69 72 65 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 70 72 6f 78 | nments.require.the.use.of.a.prox |
| 7bcc0 | 79 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 20 57 69 | y.to.connect.to.the.Internet..Wi |
| 7bce0 | 74 68 6f 75 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 56 79 4f 53 20 75 70 | thout.this.configuration.VyOS.up |
| 7bd00 | 64 61 74 65 73 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 20 64 69 72 | dates.could.not.be.installed.dir |
| 7bd20 | 65 63 74 6c 79 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 3a 6f 70 63 6d 64 3a 60 61 64 64 20 73 | ectly.by.using.the.:opcmd:`add.s |
| 7bd40 | 79 73 74 65 6d 20 69 6d 61 67 65 60 20 63 6f 6d 6d 61 6e 64 20 28 3a 72 65 66 3a 60 75 70 64 61 | ystem.image`.command.(:ref:`upda |
| 7bd60 | 74 65 5f 76 79 6f 73 60 29 2e 00 53 6f 6d 65 20 52 41 44 49 55 53 20 73 65 76 65 72 73 20 75 73 | te_vyos`)..Some.RADIUS.severs.us |
| 7bd80 | 65 20 61 6e 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 20 6c 69 73 74 20 77 68 69 63 68 20 61 | e.an.access.control.list.which.a |
| 7bda0 | 6c 6c 6f 77 73 20 6f 72 20 64 65 6e 69 65 73 20 71 75 65 72 69 65 73 2c 20 6d 61 6b 65 20 73 75 | llows.or.denies.queries,.make.su |
| 7bdc0 | 72 65 20 74 6f 20 61 64 64 20 79 6f 75 72 20 56 79 4f 53 20 72 6f 75 74 65 72 20 74 6f 20 74 68 | re.to.add.your.VyOS.router.to.th |
| 7bde0 | 65 20 61 6c 6c 6f 77 65 64 20 63 6c 69 65 6e 74 20 6c 69 73 74 2e 00 53 6f 6d 65 20 52 41 44 49 | e.allowed.client.list..Some.RADI |
| 7be00 | 55 53 5f 20 73 65 76 65 72 73 20 75 73 65 20 61 6e 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c | US_.severs.use.an.access.control |
| 7be20 | 20 6c 69 73 74 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 6f 72 20 64 65 6e 69 65 73 20 71 75 65 | .list.which.allows.or.denies.que |
| 7be40 | 72 69 65 73 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 6f 20 61 64 64 20 79 6f 75 72 20 56 79 4f 53 | ries,.make.sure.to.add.your.VyOS |
| 7be60 | 20 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 61 6c 6c 6f 77 65 64 20 63 6c 69 65 6e 74 20 6c 69 | .router.to.the.allowed.client.li |
| 7be80 | 73 74 2e 00 53 6f 6d 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 73 65 72 76 69 63 65 20 70 72 6f | st..Some.application.service.pro |
| 7bea0 | 76 69 64 65 72 73 20 28 41 53 50 73 29 20 6f 70 65 72 61 74 65 20 61 20 56 50 4e 20 67 61 74 65 | viders.(ASPs).operate.a.VPN.gate |
| 7bec0 | 77 61 79 20 74 6f 20 70 72 6f 76 69 64 65 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 69 72 20 69 | way.to.provide.access.to.their.i |
| 7bee0 | 6e 74 65 72 6e 61 6c 20 72 65 73 6f 75 72 63 65 73 2c 20 61 6e 64 20 72 65 71 75 69 72 65 20 74 | nternal.resources,.and.require.t |
| 7bf00 | 68 61 74 20 61 20 63 6f 6e 6e 65 63 74 69 6e 67 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e 20 74 72 | hat.a.connecting.organisation.tr |
| 7bf20 | 61 6e 73 6c 61 74 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 73 65 72 76 69 | anslate.all.traffic.to.the.servi |
| 7bf40 | 63 65 20 70 72 6f 76 69 64 65 72 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 20 73 6f 75 72 63 65 20 | ce.provider.network.to.a.source. |
| 7bf60 | 61 64 64 72 65 73 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 20 41 53 50 2e 00 53 6f 6d | address.provided.by.the.ASP..Som |
| 7bf80 | 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 69 65 73 20 72 65 71 75 69 72 65 20 63 | e.container.registries.require.c |
| 7bfa0 | 72 65 64 65 6e 74 69 61 6c 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 53 6f 6d 65 20 66 69 72 65 | redentials.to.be.used..Some.fire |
| 7bfc0 | 77 61 6c 6c 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 67 6c 6f 62 61 6c 20 61 6e 64 20 68 61 76 | wall.settings.are.global.and.hav |
| 7bfe0 | 65 20 61 6e 20 61 66 66 65 63 74 20 6f 6e 20 74 68 65 20 77 68 6f 6c 65 20 73 79 73 74 65 6d 2e | e.an.affect.on.the.whole.system. |
| 7c000 | 00 53 6f 6d 65 20 66 69 72 65 77 61 6c 6c 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 67 6c 6f 62 | .Some.firewall.settings.are.glob |
| 7c020 | 61 6c 20 61 6e 64 20 68 61 76 65 20 61 6e 20 61 66 66 65 63 74 20 6f 6e 20 74 68 65 20 77 68 6f | al.and.have.an.affect.on.the.who |
| 7c040 | 6c 65 20 73 79 73 74 65 6d 2e 20 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 | le.system..In.this.section.there |
| 7c060 | 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 73 | 's.useful.information.about.thes |
| 7c080 | 65 20 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 63 6f 6e | e.global-options.that.can.be.con |
| 7c0a0 | 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 76 79 6f 73 20 63 6c 69 2e 00 53 6f 6d 65 20 70 6f 6c | figured.using.vyos.cli..Some.pol |
| 7c0c0 | 69 63 69 65 73 20 61 6c 72 65 61 64 79 20 69 6e 63 6c 75 64 65 20 6f 74 68 65 72 20 65 6d 62 65 | icies.already.include.other.embe |
| 7c0e0 | 64 64 65 64 20 70 6f 6c 69 63 69 65 73 20 69 6e 73 69 64 65 2e 20 54 68 61 74 20 69 73 20 74 68 | dded.policies.inside..That.is.th |
| 7c100 | 65 20 63 61 73 65 20 6f 66 20 53 68 61 70 65 72 5f 3a 20 65 61 63 68 20 6f 66 20 69 74 73 20 63 | e.case.of.Shaper_:.each.of.its.c |
| 7c120 | 6c 61 73 73 65 73 20 75 73 65 20 66 61 69 72 2d 71 75 65 75 65 20 75 6e 6c 65 73 73 20 79 6f 75 | lasses.use.fair-queue.unless.you |
| 7c140 | 20 63 68 61 6e 67 65 20 69 74 2e 00 53 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 63 61 6e 20 62 65 | .change.it..Some.policies.can.be |
| 7c160 | 20 63 6f 6d 62 69 6e 65 64 2c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 65 | .combined,.you.will.be.able.to.e |
| 7c180 | 6d 62 65 64 5f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 6f 6c 69 63 79 20 74 68 61 74 20 77 69 | mbed_.a.different.policy.that.wi |
| 7c1a0 | 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 20 63 6c 61 73 73 20 6f 66 20 74 68 65 20 | ll.be.applied.to.a.class.of.the. |
| 7c1c0 | 6d 61 69 6e 20 70 6f 6c 69 63 79 2e 00 53 6f 6d 65 20 70 6f 73 73 69 62 6c 65 20 65 78 61 6d 70 | main.policy..Some.possible.examp |
| 7c1e0 | 6c 65 73 20 61 72 65 3a 00 53 6f 6d 65 20 70 72 6f 78 79 73 20 72 65 71 75 69 72 65 2f 73 75 70 | les.are:.Some.proxys.require/sup |
| 7c200 | 70 6f 72 74 20 74 68 65 20 22 62 61 73 69 63 22 20 48 54 54 50 20 61 75 74 68 65 6e 74 69 63 61 | port.the."basic".HTTP.authentica |
| 7c220 | 74 69 6f 6e 20 73 63 68 65 6d 65 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 37 36 31 37 60 2c 20 | tion.scheme.as.per.:rfc:`7617`,. |
| 7c240 | 74 68 75 73 20 61 20 70 61 73 73 77 6f 72 64 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 | thus.a.password.can.be.configure |
| 7c260 | 64 2e 00 53 6f 6d 65 20 70 72 6f 78 79 73 20 72 65 71 75 69 72 65 2f 73 75 70 70 6f 72 74 20 74 | d..Some.proxys.require/support.t |
| 7c280 | 68 65 20 22 62 61 73 69 63 22 20 48 54 54 50 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 | he."basic".HTTP.authentication.s |
| 7c2a0 | 63 68 65 6d 65 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 37 36 31 37 60 2c 20 74 68 75 73 20 61 | cheme.as.per.:rfc:`7617`,.thus.a |
| 7c2c0 | 20 75 73 65 72 6e 61 6d 65 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 53 6f 6d | .username.can.be.configured..Som |
| 7c2e0 | 65 20 72 65 63 65 6e 74 20 49 53 50 73 20 72 65 71 75 69 72 65 20 79 6f 75 20 74 6f 20 62 75 69 | e.recent.ISPs.require.you.to.bui |
| 7c300 | 6c 64 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 | ld.the.PPPoE.connection.through. |
| 7c320 | 61 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 4f 6e 65 20 6f 66 20 74 68 6f 73 65 20 49 | a.VLAN.interface..One.of.those.I |
| 7c340 | 53 50 73 20 69 73 20 65 2e 67 2e 20 44 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 20 69 6e 20 | SPs.is.e.g..Deutsche.Telekom.in. |
| 7c360 | 47 65 72 6d 61 6e 79 2e 20 56 79 4f 53 20 63 61 6e 20 65 61 73 69 6c 79 20 63 72 65 61 74 65 20 | Germany..VyOS.can.easily.create. |
| 7c380 | 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 74 68 72 6f 75 67 68 20 61 6e 20 65 6e 63 61 70 | a.PPPoE.session.through.an.encap |
| 7c3a0 | 73 75 6c 61 74 65 64 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 66 6f 6c 6c | sulated.VLAN.interface..The.foll |
| 7c3c0 | 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 72 75 6e 20 79 6f 75 | owing.configuration.will.run.you |
| 7c3e0 | 72 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 56 4c 41 4e 37 | r.PPPoE.connection.through.VLAN7 |
| 7c400 | 20 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 4c 41 4e 20 66 6f 72 20 44 | .which.is.the.default.VLAN.for.D |
| 7c420 | 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 3a 00 53 6f 6d 65 20 73 65 72 76 69 63 65 73 20 64 | eutsche.Telekom:.Some.services.d |
| 7c440 | 6f 6e 27 74 20 77 6f 72 6b 20 63 6f 72 72 65 63 74 6c 79 20 77 68 65 6e 20 62 65 69 6e 67 20 68 | on't.work.correctly.when.being.h |
| 7c460 | 61 6e 64 6c 65 64 20 76 69 61 20 61 20 77 65 62 20 70 72 6f 78 79 2e 20 53 6f 20 73 6f 6d 65 74 | andled.via.a.web.proxy..So.somet |
| 7c480 | 69 6d 65 73 20 69 74 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 62 79 70 61 73 73 20 61 20 74 72 | imes.it.is.useful.to.bypass.a.tr |
| 7c4a0 | 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 3a 00 53 6f 6d 65 20 75 73 65 72 73 20 74 65 6e 64 | ansparent.proxy:.Some.users.tend |
| 7c4c0 | 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 65 69 72 20 6d 6f 62 69 6c 65 20 64 65 76 69 63 65 73 | .to.connect.their.mobile.devices |
| 7c4e0 | 20 75 73 69 6e 67 20 57 69 72 65 47 75 61 72 64 20 74 6f 20 74 68 65 69 72 20 56 79 4f 53 20 72 | .using.WireGuard.to.their.VyOS.r |
| 7c500 | 6f 75 74 65 72 2e 20 54 6f 20 65 61 73 65 20 64 65 70 6c 6f 79 6d 65 6e 74 20 6f 6e 65 20 63 61 | outer..To.ease.deployment.one.ca |
| 7c520 | 6e 20 67 65 6e 65 72 61 74 65 20 61 20 22 70 65 72 20 6d 6f 62 69 6c 65 22 20 63 6f 6e 66 69 67 | n.generate.a."per.mobile".config |
| 7c540 | 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 53 6f 6d 65 74 | uration.from.the.VyOS.CLI..Somet |
| 7c560 | 69 6d 65 73 20 6f 70 74 69 6f 6e 20 6c 69 6e 65 73 20 69 6e 20 74 68 65 20 67 65 6e 65 72 61 74 | imes.option.lines.in.the.generat |
| 7c580 | 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 71 75 69 72 65 | ed.OpenVPN.configuration.require |
| 7c5a0 | 20 71 75 6f 74 65 73 2e 20 54 68 69 73 20 69 73 20 64 6f 6e 65 20 74 68 72 6f 75 67 68 20 61 20 | .quotes..This.is.done.through.a. |
| 7c5c0 | 68 61 63 6b 20 6f 6e 20 6f 75 72 20 63 6f 6e 66 69 67 20 67 65 6e 65 72 61 74 6f 72 2e 20 59 6f | hack.on.our.config.generator..Yo |
| 7c5e0 | 75 20 63 61 6e 20 70 61 73 73 20 71 75 6f 74 65 73 20 75 73 69 6e 67 20 74 68 65 20 60 60 26 71 | u.can.pass.quotes.using.the.``&q |
| 7c600 | 75 6f 74 3b 60 60 20 73 74 61 74 65 6d 65 6e 74 2e 00 53 6f 72 74 20 74 68 65 20 6f 75 74 70 75 | uot;``.statement..Sort.the.outpu |
| 7c620 | 74 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6b 65 79 2e 20 50 6f 73 73 69 62 6c 65 | t.by.the.specified.key..Possible |
| 7c640 | 20 6b 65 79 73 3a 20 65 78 70 69 72 65 73 2c 20 69 61 69 64 5f 64 75 69 64 2c 20 69 70 2c 20 6c | .keys:.expires,.iaid_duid,.ip,.l |
| 7c660 | 61 73 74 5f 63 6f 6d 6d 2c 20 70 6f 6f 6c 2c 20 72 65 6d 61 69 6e 69 6e 67 2c 20 73 74 61 74 65 | ast_comm,.pool,.remaining,.state |
| 7c680 | 2c 20 74 79 70 65 20 28 64 65 66 61 75 6c 74 20 3d 20 69 70 29 00 53 6f 72 74 20 74 68 65 20 6f | ,.type.(default.=.ip).Sort.the.o |
| 7c6a0 | 75 74 70 75 74 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6b 65 79 2e 20 50 6f 73 73 | utput.by.the.specified.key..Poss |
| 7c6c0 | 69 62 6c 65 20 6b 65 79 73 3a 20 69 70 2c 20 68 61 72 64 77 61 72 65 5f 61 64 64 72 65 73 73 2c | ible.keys:.ip,.hardware_address, |
| 7c6e0 | 20 73 74 61 74 65 2c 20 73 74 61 72 74 2c 20 65 6e 64 2c 20 72 65 6d 61 69 6e 69 6e 67 2c 20 70 | .state,.start,.end,.remaining,.p |
| 7c700 | 6f 6f 6c 2c 20 68 6f 73 74 6e 61 6d 65 20 28 64 65 66 61 75 6c 74 20 3d 20 69 70 29 00 53 6f 75 | ool,.hostname.(default.=.ip).Sou |
| 7c720 | 72 63 65 20 41 64 64 72 65 73 73 00 53 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 75 73 | rce.Address.Source.IP.address.us |
| 7c740 | 65 64 20 66 6f 72 20 56 58 4c 41 4e 20 75 6e 64 65 72 6c 61 79 2e 20 54 68 69 73 20 69 73 20 6d | ed.for.VXLAN.underlay..This.is.m |
| 7c760 | 61 6e 64 61 74 6f 72 79 20 77 68 65 6e 20 75 73 69 6e 67 20 56 58 4c 41 4e 20 76 69 61 20 4c 32 | andatory.when.using.VXLAN.via.L2 |
| 7c780 | 56 50 4e 2f 45 56 50 4e 2e 00 53 6f 75 72 63 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 75 73 | VPN/EVPN..Source.IPv4.address.us |
| 7c7a0 | 65 64 20 69 6e 20 61 6c 6c 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 71 75 65 69 72 65 73 2e | ed.in.all.RADIUS.server.queires. |
| 7c7c0 | 00 53 6f 75 72 63 65 20 4e 41 54 20 72 75 6c 65 73 00 53 6f 75 72 63 65 20 50 72 65 66 69 78 00 | .Source.NAT.rules.Source.Prefix. |
| 7c7e0 | 53 6f 75 72 63 65 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 52 41 | Source.all.connections.to.the.RA |
| 7c800 | 44 49 55 53 20 73 65 72 76 65 72 73 20 66 72 6f 6d 20 67 69 76 65 6e 20 56 52 46 20 60 3c 6e 61 | DIUS.servers.from.given.VRF.`<na |
| 7c820 | 6d 65 3e 60 2e 00 53 6f 75 72 63 65 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 | me>`..Source.all.connections.to. |
| 7c840 | 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 73 20 66 72 6f 6d 20 67 69 76 65 6e 20 56 52 | the.TACACS.servers.from.given.VR |
| 7c860 | 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 53 6f 75 72 63 65 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 6d | F.`<name>`..Source.protocol.to.m |
| 7c880 | 61 74 63 68 2e 00 53 6f 75 72 63 65 20 74 75 6e 6e 65 6c 20 66 72 6f 6d 20 64 75 6d 6d 79 20 69 | atch..Source.tunnel.from.dummy.i |
| 7c8a0 | 6e 74 65 72 66 61 63 65 00 53 6f 75 72 63 65 20 74 75 6e 6e 65 6c 20 66 72 6f 6d 20 6c 6f 6f 70 | nterface.Source.tunnel.from.loop |
| 7c8c0 | 62 61 63 6b 73 00 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 20 66 6f 72 | backs.Spanning.Tree.Protocol.for |
| 7c8e0 | 77 61 72 64 69 6e 67 20 60 3c 64 65 6c 61 79 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 | warding.`<delay>`.in.seconds.(de |
| 7c900 | 66 61 75 6c 74 3a 20 31 35 29 2e 00 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 | fault:.15)..Spanning.Tree.Protoc |
| 7c920 | 6f 6c 20 68 65 6c 6c 6f 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 60 3c 69 6e 74 65 72 76 61 | ol.hello.advertisement.`<interva |
| 7c940 | 6c 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 32 29 2e 00 53 70 61 | l>`.in.seconds.(default:.2)..Spa |
| 7c960 | 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c | nning.Tree.Protocol.is.not.enabl |
| 7c980 | 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 69 6e 20 56 79 4f 53 2e 20 3a 72 65 66 3a 60 73 74 70 | ed.by.default.in.VyOS..:ref:`stp |
| 7c9a0 | 60 20 63 61 6e 20 62 65 20 65 61 73 69 6c 79 20 65 6e 61 62 6c 65 64 20 69 66 20 6e 65 65 64 65 | `.can.be.easily.enabled.if.neede |
| 7c9c0 | 64 2e 00 53 70 61 74 69 61 6c 20 4d 75 6c 74 69 70 6c 65 78 69 6e 67 20 50 6f 77 65 72 20 53 61 | d..Spatial.Multiplexing.Power.Sa |
| 7c9e0 | 76 65 20 28 53 4d 50 53 29 20 73 65 74 74 69 6e 67 73 00 53 70 65 63 66 79 69 6e 67 20 6e 68 73 | ve.(SMPS).settings.Specfying.nhs |
| 7ca00 | 20 6d 61 6b 65 73 20 61 6c 6c 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 20 74 6f 20 | .makes.all.multicast.packets.to. |
| 7ca20 | 62 65 20 72 65 70 65 61 74 65 64 20 74 6f 20 65 61 63 68 20 73 74 61 74 69 63 61 6c 6c 79 20 63 | be.repeated.to.each.statically.c |
| 7ca40 | 6f 6e 66 69 67 75 72 65 64 20 6e 65 78 74 20 68 6f 70 2e 00 53 70 65 63 69 66 69 65 73 20 3a 61 | onfigured.next.hop..Specifies.:a |
| 7ca60 | 62 62 72 3a 60 4d 50 50 45 20 28 4d 69 63 72 6f 73 6f 66 74 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f | bbr:`MPPE.(Microsoft.Point-to-Po |
| 7ca80 | 69 6e 74 20 45 6e 63 72 79 70 74 69 6f 6e 29 60 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 | int.Encryption)`.negotiation.pre |
| 7caa0 | 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 3a 61 62 62 72 3a 60 4d 50 50 45 20 28 | ference..Specifies.:abbr:`MPPE.( |
| 7cac0 | 4d 69 63 72 6f 73 6f 66 74 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 45 6e 63 72 79 70 74 | Microsoft.Point-to-Point.Encrypt |
| 7cae0 | 69 6f 6e 29 60 20 6e 65 67 6f 74 69 6f 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 | ion)`.negotioation.preference..S |
| 7cb00 | 70 65 63 69 66 69 65 73 20 49 50 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 | pecifies.IP.address.for.Dynamic. |
| 7cb20 | 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 | Authorization.Extension.server.( |
| 7cb40 | 44 4d 2f 43 6f 41 29 00 53 70 65 63 69 66 69 65 73 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 | DM/CoA).Specifies.IPv4.negotiati |
| 7cb60 | 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 49 50 76 36 20 6e 65 | on.preference..Specifies.IPv6.ne |
| 7cb80 | 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 | gotiation.preference..Specifies. |
| 7cba0 | 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 74 6f 20 72 65 73 70 6f 6e 64 2e 20 49 66 20 61 62 73 65 | Service-Name.to.respond..If.abse |
| 7cbc0 | 6e 74 20 61 6e 79 20 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 69 73 20 61 63 63 65 70 74 61 62 6c | nt.any.Service-Name.is.acceptabl |
| 7cbe0 | 65 20 61 6e 64 20 63 6c 69 65 6e 74 e2 80 99 73 20 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 77 69 | e.and.client...s.Service-Name.wi |
| 7cc00 | 6c 6c 20 62 65 20 73 65 6e 74 20 62 61 63 6b 2e 20 41 6c 73 6f 20 70 6f 73 73 69 62 6c 65 20 73 | ll.be.sent.back..Also.possible.s |
| 7cc20 | 65 74 20 6d 75 6c 74 69 70 6c 65 20 73 65 72 76 69 63 65 2d 6e 61 6d 65 73 3a 20 60 73 6e 31 2c | et.multiple.service-names:.`sn1, |
| 7cc40 | 73 6e 32 2c 73 6e 33 60 00 53 70 65 63 69 66 69 65 73 20 61 64 64 72 65 73 73 20 74 6f 20 62 65 | sn2,sn3`.Specifies.address.to.be |
| 7cc60 | 20 75 73 65 64 20 61 73 20 73 65 72 76 65 72 20 69 70 20 61 64 64 72 65 73 73 20 69 66 20 72 61 | .used.as.server.ip.address.if.ra |
| 7cc80 | 64 69 75 73 20 63 61 6e 20 61 73 73 69 67 6e 20 6f 6e 6c 79 20 63 6c 69 65 6e 74 20 61 64 64 72 | dius.can.assign.only.client.addr |
| 7cca0 | 65 73 73 2e 20 49 6e 20 73 75 63 68 20 63 61 73 65 20 69 66 20 63 6c 69 65 6e 74 20 61 64 64 72 | ess..In.such.case.if.client.addr |
| 7ccc0 | 65 73 73 20 69 73 20 6d 61 74 63 68 65 64 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 6d 61 73 6b 20 | ess.is.matched.network.and.mask. |
| 7cce0 | 74 68 65 6e 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 20 61 6e 64 20 6d 61 73 6b 20 | then.specified.address.and.mask. |
| 7cd00 | 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 20 59 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 6d 75 | will.be.used..You.can.specify.mu |
| 7cd20 | 6c 74 69 70 6c 65 20 73 75 63 68 20 6f 70 74 69 6f 6e 73 2e 00 53 70 65 63 69 66 69 65 73 20 61 | ltiple.such.options..Specifies.a |
| 7cd40 | 6e 20 6f 70 74 69 6f 6e 61 6c 20 72 6f 75 74 65 2d 6d 61 70 20 74 6f 20 62 65 20 61 70 70 6c 69 | n.optional.route-map.to.be.appli |
| 7cd60 | 65 64 20 74 6f 20 72 6f 75 74 65 73 20 69 6d 70 6f 72 74 65 64 20 6f 72 20 65 78 70 6f 72 74 65 | ed.to.routes.imported.or.exporte |
| 7cd80 | 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 | d.between.the.current.unicast.VR |
| 7cda0 | 46 20 61 6e 64 20 56 50 4e 2e 00 53 70 65 63 69 66 69 65 73 20 61 6e 20 75 70 73 74 72 65 61 6d | F.and.VPN..Specifies.an.upstream |
| 7cdc0 | 20 6e 65 74 77 6f 72 6b 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 66 72 6f 6d 20 77 68 69 63 | .network.`<interface>`.from.whic |
| 7cde0 | 68 20 72 65 70 6c 69 65 73 20 66 72 6f 6d 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 6f 74 | h.replies.from.`<server>`.and.ot |
| 7ce00 | 68 65 72 20 72 65 6c 61 79 20 61 67 65 6e 74 73 20 77 69 6c 6c 20 62 65 20 61 63 63 65 70 74 65 | her.relay.agents.will.be.accepte |
| 7ce20 | 64 2e 00 53 70 65 63 69 66 69 65 73 20 66 69 78 65 64 20 6f 72 20 72 61 6e 64 6f 6d 20 69 6e 74 | d..Specifies.fixed.or.random.int |
| 7ce40 | 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e 20 42 79 20 64 | erface.identifier.for.IPv6..By.d |
| 7ce60 | 65 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 68 6f 77 20 6c | efault.is.fixed..Specifies.how.l |
| 7ce80 | 6f 6e 67 20 73 71 75 69 64 20 61 73 73 75 6d 65 73 20 61 6e 20 65 78 74 65 72 6e 61 6c 6c 79 20 | ong.squid.assumes.an.externally. |
| 7cea0 | 76 61 6c 69 64 61 74 65 64 20 75 73 65 72 6e 61 6d 65 3a 70 61 73 73 77 6f 72 64 20 70 61 69 72 | validated.username:password.pair |
| 7cec0 | 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 2d 20 69 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 20 68 | .is.valid.for.-.in.other.words.h |
| 7cee0 | 6f 77 20 6f 66 74 65 6e 20 74 68 65 20 68 65 6c 70 65 72 20 70 72 6f 67 72 61 6d 20 69 73 20 63 | ow.often.the.helper.program.is.c |
| 7cf00 | 61 6c 6c 65 64 20 66 6f 72 20 74 68 61 74 20 75 73 65 72 2e 20 53 65 74 20 74 68 69 73 20 6c 6f | alled.for.that.user..Set.this.lo |
| 7cf20 | 77 20 74 6f 20 66 6f 72 63 65 20 72 65 76 61 6c 69 64 61 74 69 6f 6e 20 77 69 74 68 20 73 68 6f | w.to.force.revalidation.with.sho |
| 7cf40 | 72 74 20 6c 69 76 65 64 20 70 61 73 73 77 6f 72 64 73 2e 00 53 70 65 63 69 66 69 65 73 20 69 66 | rt.lived.passwords..Specifies.if |
| 7cf60 | 20 61 20 66 69 78 65 64 20 6f 72 20 72 61 6e 64 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 | .a.fixed.or.random.interface.ide |
| 7cf80 | 6e 74 69 66 69 65 72 20 69 73 20 75 73 65 64 20 66 6f 72 20 49 50 76 36 2e 20 54 68 65 20 64 65 | ntifier.is.used.for.IPv6..The.de |
| 7cfa0 | 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 69 66 20 75 6e 6b | fault.is.fixed..Specifies.if.unk |
| 7cfc0 | 6e 6f 77 6e 20 73 6f 75 72 63 65 20 6c 69 6e 6b 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 65 73 | nown.source.link.layer.addresses |
| 7cfe0 | 20 61 6e 64 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 65 6e 74 65 72 65 64 20 69 6e | .and.IP.addresses.are.entered.in |
| 7d000 | 74 6f 20 74 68 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 66 6f 72 77 61 72 64 69 6e 67 20 64 | to.the.VXLAN.device.forwarding.d |
| 7d020 | 61 74 61 62 61 73 65 2e 00 53 70 65 63 69 66 69 65 73 20 6e 75 6d 62 65 72 20 6f 66 20 69 6e 74 | atabase..Specifies.number.of.int |
| 7d040 | 65 72 66 61 63 65 73 20 74 6f 20 63 61 63 68 65 2e 20 54 68 69 73 20 70 72 65 76 65 6e 74 73 20 | erfaces.to.cache..This.prevents. |
| 7d060 | 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 62 65 69 6e 67 20 72 65 6d 6f 76 65 64 20 6f 6e | interfaces.from.being.removed.on |
| 7d080 | 63 65 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 73 65 73 73 69 6f 6e 20 69 73 20 | ce.the.corresponding.session.is. |
| 7d0a0 | 64 65 73 74 72 6f 79 65 64 2e 20 49 6e 73 74 65 61 64 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 | destroyed..Instead,.interfaces.a |
| 7d0c0 | 72 65 20 63 61 63 68 65 64 20 66 6f 72 20 6c 61 74 65 72 20 75 73 65 20 69 6e 20 6e 65 77 20 73 | re.cached.for.later.use.in.new.s |
| 7d0e0 | 65 73 73 69 6f 6e 73 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 72 65 64 75 63 65 20 74 68 65 20 | essions..This.should.reduce.the. |
| 7d100 | 6b 65 72 6e 65 6c 2d 6c 65 76 65 6c 20 69 6e 74 65 72 66 61 63 65 20 63 72 65 61 74 69 6f 6e 2f | kernel-level.interface.creation/ |
| 7d120 | 64 65 6c 65 74 69 6f 6e 20 72 61 74 65 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 | deletion.rate..Default.value.is. |
| 7d140 | 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 6e 75 6d 62 65 72 20 6f 66 20 69 6e 74 65 72 | **0**..Specifies.number.of.inter |
| 7d160 | 66 61 63 65 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 63 61 63 68 65 2e 20 49 74 20 6d 65 61 6e 73 | faces.to.keep.in.cache..It.means |
| 7d180 | 20 74 68 61 74 20 64 6f 6e e2 80 99 74 20 64 65 73 74 72 6f 79 20 69 6e 74 65 72 66 61 63 65 20 | .that.don...t.destroy.interface. |
| 7d1a0 | 61 66 74 65 72 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 73 65 73 73 69 6f 6e 20 69 73 20 64 | after.corresponding.session.is.d |
| 7d1c0 | 65 73 74 72 6f 79 65 64 2c 20 69 6e 73 74 65 61 64 20 70 6c 61 63 65 20 69 74 20 74 6f 20 63 61 | estroyed,.instead.place.it.to.ca |
| 7d1e0 | 63 68 65 20 61 6e 64 20 75 73 65 20 69 74 20 6c 61 74 65 72 20 66 6f 72 20 6e 65 77 20 73 65 73 | che.and.use.it.later.for.new.ses |
| 7d200 | 73 69 6f 6e 73 20 72 65 70 65 61 74 65 64 6c 79 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 72 65 | sions.repeatedly..This.should.re |
| 7d220 | 64 75 63 65 20 6b 65 72 6e 65 6c 2d 6c 65 76 65 6c 20 69 6e 74 65 72 66 61 63 65 20 63 72 65 61 | duce.kernel-level.interface.crea |
| 7d240 | 74 69 6f 6e 2f 64 65 6c 65 74 69 6f 6e 20 72 61 74 65 20 6c 61 63 6b 2e 20 44 65 66 61 75 6c 74 | tion/deletion.rate.lack..Default |
| 7d260 | 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 6f 6e 65 20 6f | .value.is.**0**..Specifies.one.o |
| 7d280 | 66 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 70 6f 6c 69 63 69 65 73 2e 20 54 68 65 20 64 65 66 61 | f.the.bonding.policies..The.defa |
| 7d2a0 | 75 6c 74 20 69 73 20 38 30 32 2e 33 61 64 2e 20 50 6f 73 73 69 62 6c 65 20 76 61 6c 75 65 73 20 | ult.is.802.3ad..Possible.values. |
| 7d2c0 | 61 72 65 3a 00 53 70 65 63 69 66 69 65 73 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 | are:.Specifies.peer.interface.id |
| 7d2e0 | 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 | entifier.for.IPv6..By.default.is |
| 7d300 | 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 | .fixed..Specifies.proxy.service. |
| 7d320 | 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 6c 69 73 74 65 6e 20 61 64 | listening.address..The.listen.ad |
| 7d340 | 64 72 65 73 73 20 69 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 77 68 69 63 68 | dress.is.the.IP.address.on.which |
| 7d360 | 20 74 68 65 20 77 65 62 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 66 | .the.web.proxy.service.listens.f |
| 7d380 | 6f 72 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 2e 00 53 70 65 63 69 66 69 65 73 20 72 65 | or.client.requests..Specifies.re |
| 7d3a0 | 6c 61 79 20 61 67 65 6e 74 20 49 50 20 61 64 64 72 65 00 53 70 65 63 69 66 69 65 73 20 73 69 6e | lay.agent.IP.addre.Specifies.sin |
| 7d3c0 | 67 6c 65 20 60 3c 67 61 74 65 77 61 79 3e 60 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 62 65 | gle.`<gateway>`.IP.address.to.be |
| 7d3e0 | 20 75 73 65 64 20 61 73 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 6f 66 20 50 50 50 20 69 6e | .used.as.local.address.of.PPP.in |
| 7d400 | 74 65 72 66 61 63 65 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 61 74 20 74 68 65 20 3a 61 62 | terfaces..Specifies.that.the.:ab |
| 7d420 | 62 72 3a 60 4e 42 4d 41 20 28 4e 6f 6e 2d 62 72 6f 61 64 63 61 73 74 20 6d 75 6c 74 69 70 6c 65 | br:`NBMA.(Non-broadcast.multiple |
| 7d440 | 2d 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 29 60 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 74 | -access.network)`.addresses.of.t |
| 7d460 | 68 65 20 6e 65 78 74 20 68 6f 70 20 73 65 72 76 65 72 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 | he.next.hop.servers.are.defined. |
| 7d480 | 69 6e 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 6e 62 6d 61 2d 64 6f 6d 61 69 6e 2d 6e | in.the.domain.name.nbma-domain-n |
| 7d4a0 | 61 6d 65 2e 20 46 6f 72 20 65 61 63 68 20 41 20 72 65 63 6f 72 64 20 6f 70 65 6e 6e 68 72 70 20 | ame..For.each.A.record.opennhrp. |
| 7d4c0 | 63 72 65 61 74 65 73 20 61 20 64 79 6e 61 6d 69 63 20 4e 48 53 20 65 6e 74 72 79 2e 00 53 70 65 | creates.a.dynamic.NHS.entry..Spe |
| 7d4e0 | 63 69 66 69 65 73 20 74 68 65 20 41 52 50 20 6c 69 6e 6b 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 60 | cifies.the.ARP.link.monitoring.` |
| 7d500 | 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 | <time>`.in.seconds..Specifies.th |
| 7d520 | 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 75 73 65 20 61 73 20 41 52 50 20 6d 6f 6e | e.IP.addresses.to.use.as.ARP.mon |
| 7d540 | 69 74 6f 72 69 6e 67 20 70 65 65 72 73 20 77 68 65 6e 20 3a 63 66 67 63 6d 64 3a 60 61 72 70 2d | itoring.peers.when.:cfgcmd:`arp- |
| 7d560 | 6d 6f 6e 69 74 6f 72 20 69 6e 74 65 72 76 61 6c 60 20 6f 70 74 69 6f 6e 20 69 73 20 3e 20 30 2e | monitor.interval`.option.is.>.0. |
| 7d580 | 20 54 68 65 73 65 20 61 72 65 20 74 68 65 20 74 61 72 67 65 74 73 20 6f 66 20 74 68 65 20 41 52 | .These.are.the.targets.of.the.AR |
| 7d5a0 | 50 20 72 65 71 75 65 73 74 20 73 65 6e 74 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 | P.request.sent.to.determine.the. |
| 7d5c0 | 68 65 61 6c 74 68 20 6f 66 20 74 68 65 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 74 61 72 67 65 74 | health.of.the.link.to.the.target |
| 7d5e0 | 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 3a 61 62 62 72 | s..Specifies.the.available.:abbr |
| 7d600 | 3a 60 4d 41 43 20 28 4d 65 73 73 61 67 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 43 6f | :`MAC.(Message.Authentication.Co |
| 7d620 | 64 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 54 68 65 20 4d 41 43 20 61 6c 67 6f 72 69 74 | de)`.algorithms..The.MAC.algorit |
| 7d640 | 68 6d 20 69 73 20 75 73 65 64 20 69 6e 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 | hm.is.used.in.protocol.version.2 |
| 7d660 | 20 66 6f 72 20 64 61 74 61 20 69 6e 74 65 67 72 69 74 79 20 70 72 6f 74 65 63 74 69 6f 6e 2e 20 | .for.data.integrity.protection.. |
| 7d680 | 4d 75 6c 74 69 70 6c 65 20 61 6c 67 6f 72 69 74 68 6d 73 20 63 61 6e 20 62 65 20 70 72 6f 76 69 | Multiple.algorithms.can.be.provi |
| 7d6a0 | 64 65 64 20 62 79 20 75 73 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 63 6f 6d 6d 61 6e 64 73 2c 20 | ded.by.using.multiple.commands,. |
| 7d6c0 | 64 65 66 69 6e 69 6e 67 20 6f 6e 65 20 61 6c 67 6f 72 69 74 68 6d 20 70 65 72 20 63 6f 6d 6d 61 | defining.one.algorithm.per.comma |
| 7d6e0 | 6e 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 3a 61 62 62 | nd..Specifies.the.available.:abb |
| 7d700 | 72 3a 60 4d 41 43 20 28 4d 65 73 73 61 67 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 43 | r:`MAC.(Message.Authentication.C |
| 7d720 | 6f 64 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 54 68 65 20 4d 41 43 20 61 6c 67 6f 72 69 | ode)`.algorithms..The.MAC.algori |
| 7d740 | 74 68 6d 20 69 73 20 75 73 65 64 20 69 6e 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 | thm.is.used.in.protocol.version. |
| 7d760 | 32 20 66 6f 72 20 64 61 74 61 20 69 6e 74 65 67 72 69 74 79 20 70 72 6f 74 65 63 74 69 6f 6e 2e | 2.for.data.integrity.protection. |
| 7d780 | 20 4d 75 6c 74 69 70 6c 65 20 61 6c 67 6f 72 69 74 68 6d 73 20 63 61 6e 20 62 65 20 70 72 6f 76 | .Multiple.algorithms.can.be.prov |
| 7d7a0 | 69 64 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 62 61 73 65 20 44 4e 20 75 6e 64 65 | ided..Specifies.the.base.DN.unde |
| 7d7c0 | 72 20 77 68 69 63 68 20 74 68 65 20 75 73 65 72 73 20 61 72 65 20 6c 6f 63 61 74 65 64 2e 00 53 | r.which.the.users.are.located..S |
| 7d7e0 | 70 65 63 69 66 69 65 73 20 74 68 65 20 63 6c 69 65 6e 74 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 | pecifies.the.client.connectivity |
| 7d800 | 20 6d 6f 64 65 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 63 6c 69 65 6e 74 73 20 73 75 62 | .mode..Specifies.the.clients.sub |
| 7d820 | 6e 65 74 20 6d 61 73 6b 20 61 73 20 70 65 72 20 52 46 43 20 39 35 30 2e 20 49 66 20 75 6e 73 65 | net.mask.as.per.RFC.950..If.unse |
| 7d840 | 74 2c 20 73 75 62 6e 65 74 20 64 65 63 6c 61 72 61 74 69 6f 6e 20 69 73 20 75 73 65 64 2e 00 53 | t,.subnet.declaration.is.used..S |
| 7d860 | 70 65 63 69 66 69 65 73 20 74 68 65 20 68 6f 6c 64 69 6e 67 20 74 69 6d 65 20 66 6f 72 20 4e 48 | pecifies.the.holding.time.for.NH |
| 7d880 | 52 50 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 73 20 61 6e 64 20 52 65 73 | RP.Registration.Requests.and.Res |
| 7d8a0 | 6f 6c 75 74 69 6f 6e 20 52 65 70 6c 69 65 73 20 73 65 6e 74 20 66 72 6f 6d 20 74 68 69 73 20 69 | olution.Replies.sent.from.this.i |
| 7d8c0 | 6e 74 65 72 66 61 63 65 20 6f 72 20 73 68 6f 72 74 63 75 74 2d 74 61 72 67 65 74 2e 20 54 68 65 | nterface.or.shortcut-target..The |
| 7d8e0 | 20 68 6f 6c 64 74 69 6d 65 20 69 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 | .holdtime.is.specified.in.second |
| 7d900 | 73 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f 20 74 77 6f 20 68 6f 75 72 73 2e 00 53 70 65 | s.and.defaults.to.two.hours..Spe |
| 7d920 | 63 69 66 69 65 73 20 74 68 65 20 69 6e 74 65 72 76 61 6c 20 61 74 20 77 68 69 63 68 20 4e 65 74 | cifies.the.interval.at.which.Net |
| 7d940 | 66 6c 6f 77 20 64 61 74 61 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 74 6f 20 61 20 63 6f 6c 6c | flow.data.will.be.sent.to.a.coll |
| 7d960 | 65 63 74 6f 72 2e 20 41 73 20 70 65 72 20 64 65 66 61 75 6c 74 2c 20 4e 65 74 66 6c 6f 77 20 64 | ector..As.per.default,.Netflow.d |
| 7d980 | 61 74 61 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 65 76 65 72 79 20 36 30 20 73 65 63 6f 6e 64 | ata.will.be.sent.every.60.second |
| 7d9a0 | 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 | s..Specifies.the.maximum.size.of |
| 7d9c0 | 20 61 20 72 65 70 6c 79 20 62 6f 64 79 20 69 6e 20 4b 42 2c 20 75 73 65 64 20 74 6f 20 6c 69 6d | .a.reply.body.in.KB,.used.to.lim |
| 7d9e0 | 69 74 20 74 68 65 20 72 65 70 6c 79 20 73 69 7a 65 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 | it.the.reply.size..Specifies.the |
| 7da00 | 20 6d 69 6e 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6c 69 6e 6b 73 20 74 68 61 74 20 6d 75 | .minimum.number.of.links.that.mu |
| 7da20 | 73 74 20 62 65 20 61 63 74 69 76 65 20 62 65 66 6f 72 65 20 61 73 73 65 72 74 69 6e 67 20 63 61 | st.be.active.before.asserting.ca |
| 7da40 | 72 72 69 65 72 2e 20 49 74 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 43 69 73 63 | rrier..It.is.similar.to.the.Cisc |
| 7da60 | 6f 20 45 74 68 65 72 43 68 61 6e 6e 65 6c 20 6d 69 6e 2d 6c 69 6e 6b 73 20 66 65 61 74 75 72 65 | o.EtherChannel.min-links.feature |
| 7da80 | 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 73 65 74 74 69 6e 67 20 74 68 65 20 6d 69 6e 69 6d 75 | ..This.allows.setting.the.minimu |
| 7daa0 | 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6d 65 6d 62 65 72 20 70 6f 72 74 73 20 74 68 61 74 20 6d 75 | m.number.of.member.ports.that.mu |
| 7dac0 | 73 74 20 62 65 20 75 70 20 28 6c 69 6e 6b 2d 75 70 20 73 74 61 74 65 29 20 62 65 66 6f 72 65 20 | st.be.up.(link-up.state).before. |
| 7dae0 | 6d 61 72 6b 69 6e 67 20 74 68 65 20 62 6f 6e 64 20 64 65 76 69 63 65 20 61 73 20 75 70 20 28 63 | marking.the.bond.device.as.up.(c |
| 7db00 | 61 72 72 69 65 72 20 6f 6e 29 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 66 6f 72 20 73 | arrier.on)..This.is.useful.for.s |
| 7db20 | 69 74 75 61 74 69 6f 6e 73 20 77 68 65 72 65 20 68 69 67 68 65 72 20 6c 65 76 65 6c 20 73 65 72 | ituations.where.higher.level.ser |
| 7db40 | 76 69 63 65 73 20 73 75 63 68 20 61 73 20 63 6c 75 73 74 65 72 69 6e 67 20 77 61 6e 74 20 74 6f | vices.such.as.clustering.want.to |
| 7db60 | 20 65 6e 73 75 72 65 20 61 20 6d 69 6e 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6c 6f 77 20 | .ensure.a.minimum.number.of.low. |
| 7db80 | 62 61 6e 64 77 69 64 74 68 20 6c 69 6e 6b 73 20 61 72 65 20 61 63 74 69 76 65 20 62 65 66 6f 72 | bandwidth.links.are.active.befor |
| 7dba0 | 65 20 73 77 69 74 63 68 6f 76 65 72 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 6e 61 6d 65 | e.switchover..Specifies.the.name |
| 7dbc0 | 20 6f 66 20 74 68 65 20 44 4e 20 61 74 74 72 69 62 75 74 65 20 74 68 61 74 20 63 6f 6e 74 61 69 | .of.the.DN.attribute.that.contai |
| 7dbe0 | 6e 73 20 74 68 65 20 75 73 65 72 6e 61 6d 65 2f 6c 6f 67 69 6e 2e 20 43 6f 6d 62 69 6e 65 64 20 | ns.the.username/login..Combined. |
| 7dc00 | 77 69 74 68 20 74 68 65 20 62 61 73 65 20 44 4e 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 20 74 68 | with.the.base.DN.to.construct.th |
| 7dc20 | 65 20 75 73 65 72 73 20 44 4e 20 77 68 65 6e 20 6e 6f 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 | e.users.DN.when.no.search.filter |
| 7dc40 | 20 69 73 20 73 70 65 63 69 66 69 65 64 20 28 60 66 69 6c 74 65 72 2d 65 78 70 72 65 73 73 69 6f | .is.specified.(`filter-expressio |
| 7dc60 | 6e 60 29 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 | n`)..Specifies.the.peer.interfac |
| 7dc80 | 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e 20 54 68 65 20 64 65 66 61 75 | e.identifier.for.IPv6..The.defau |
| 7dca0 | 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 68 79 73 69 | lt.is.fixed..Specifies.the.physi |
| 7dcc0 | 63 61 6c 20 60 3c 65 74 68 58 3e 60 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 20 | cal.`<ethX>`.Ethernet.interface. |
| 7dce0 | 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 50 73 65 75 64 6f 20 45 74 68 65 72 6e 65 | associated.with.a.Pseudo.Etherne |
| 7dd00 | 74 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 | t.`<interface>`..Specifies.the.p |
| 7dd20 | 6f 72 74 20 60 3c 70 6f 72 74 3e 60 20 74 68 61 74 20 74 68 65 20 53 53 54 50 20 70 6f 72 74 20 | ort.`<port>`.that.the.SSTP.port. |
| 7dd40 | 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 28 64 65 66 61 75 6c 74 20 34 34 33 29 2e 00 53 70 | will.listen.on.(default.443)..Sp |
| 7dd60 | 65 63 69 66 69 65 73 20 74 68 65 20 70 72 6f 74 65 63 74 69 6f 6e 20 73 63 6f 70 65 20 28 61 6b | ecifies.the.protection.scope.(ak |
| 7dd80 | 61 20 72 65 61 6c 6d 20 6e 61 6d 65 29 20 77 68 69 63 68 20 69 73 20 74 6f 20 62 65 20 72 65 70 | a.realm.name).which.is.to.be.rep |
| 7dda0 | 6f 72 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 74 68 65 20 61 75 74 68 | orted.to.the.client.for.the.auth |
| 7ddc0 | 65 6e 74 69 63 61 74 69 6f 6e 20 73 63 68 65 6d 65 2e 20 49 74 20 69 73 20 63 6f 6d 6d 6f 6e 6c | entication.scheme..It.is.commonl |
| 7dde0 | 79 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 65 78 74 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c | y.part.of.the.text.the.user.will |
| 7de00 | 20 73 65 65 20 77 68 65 6e 20 70 72 6f 6d 70 74 65 64 20 66 6f 72 20 74 68 65 69 72 20 75 73 65 | .see.when.prompted.for.their.use |
| 7de20 | 72 6e 61 6d 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 | rname.and.password..Specifies.th |
| 7de40 | 65 20 72 6f 75 74 65 20 64 69 73 74 69 6e 67 75 69 73 68 65 72 20 74 6f 20 62 65 20 61 64 64 65 | e.route.distinguisher.to.be.adde |
| 7de60 | 64 20 74 6f 20 61 20 72 6f 75 74 65 20 65 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 74 68 65 20 63 | d.to.a.route.exported.from.the.c |
| 7de80 | 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 00 53 70 65 63 69 | urrent.unicast.VRF.to.VPN..Speci |
| 7dea0 | 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 2d 74 61 72 67 65 74 20 6c 69 73 74 20 74 6f 20 62 65 | fies.the.route-target.list.to.be |
| 7dec0 | 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 72 6f 75 74 65 20 28 65 78 70 6f 72 74 29 20 6f 72 | .attached.to.a.route.(export).or |
| 7dee0 | 20 74 68 65 20 72 6f 75 74 65 2d 74 61 72 67 65 74 20 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 20 | .the.route-target.list.to.match. |
| 7df00 | 61 67 61 69 6e 73 74 20 28 69 6d 70 6f 72 74 29 20 77 68 65 6e 20 65 78 70 6f 72 74 69 6e 67 2f | against.(import).when.exporting/ |
| 7df20 | 69 6d 70 6f 72 74 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e | importing.between.the.current.un |
| 7df40 | 69 63 61 73 74 20 56 52 46 20 61 6e 64 20 56 50 4e 2e 54 68 65 20 52 54 4c 49 53 54 20 69 73 20 | icast.VRF.and.VPN.The.RTLIST.is. |
| 7df60 | 61 20 73 70 61 63 65 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 72 6f 75 74 65 2d | a.space-separated.list.of.route- |
| 7df80 | 74 61 72 67 65 74 73 2c 20 77 68 69 63 68 20 61 72 65 20 42 47 50 20 65 78 74 65 6e 64 65 64 20 | targets,.which.are.BGP.extended. |
| 7dfa0 | 63 6f 6d 6d 75 6e 69 74 79 20 76 61 6c 75 65 73 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e | community.values.as.described.in |
| 7dfc0 | 20 45 78 74 65 6e 64 65 64 20 43 6f 6d 6d 75 6e 69 74 69 65 73 20 41 74 74 72 69 62 75 74 65 2e | .Extended.Communities.Attribute. |
| 7dfe0 | 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 73 69 67 6e 61 74 75 72 65 20 61 6c 67 6f 72 69 74 | .Specifies.the.signature.algorit |
| 7e000 | 68 6d 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 63 63 65 70 74 65 64 20 66 6f 72 20 70 75 | hms.that.will.be.accepted.for.pu |
| 7e020 | 62 6c 69 63 20 6b 65 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 53 70 65 63 69 66 69 65 | blic.key.authentication.Specifie |
| 7e040 | 73 20 74 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 72 79 2c 20 54 68 69 73 20 64 69 | s.the.vendor.dictionary,.This.di |
| 7e060 | 63 74 69 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 | ctionary.needs.to.be.present.in. |
| 7e080 | 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 | /usr/share/accel-ppp/radius..Spe |
| 7e0a0 | 63 69 66 69 65 73 20 74 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 72 79 2c 20 64 69 | cifies.the.vendor.dictionary,.di |
| 7e0c0 | 63 74 69 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 69 6e 20 2f 75 73 72 2f 73 68 61 | ctionary.needs.to.be.in./usr/sha |
| 7e0e0 | 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 | re/accel-ppp/radius..Specifies.t |
| 7e100 | 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 72 79 2e 20 54 68 69 73 20 64 69 63 74 69 | he.vendor.dictionary..This.dicti |
| 7e120 | 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 2f 75 73 | onary.needs.to.be.present.in./us |
| 7e140 | 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2e 00 53 70 65 63 69 66 | r/share/accel-ppp/radius..Specif |
| 7e160 | 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 | ies.timeout.in.seconds.to.wait.f |
| 7e180 | 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 | or.any.peer.activity..If.this.op |
| 7e1a0 | 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 | tion.is.specified.it.turns.on.ad |
| 7e1c0 | 61 70 74 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e | aptive.lcp.echo.functionality.an |
| 7e1e0 | 64 20 22 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 65 64 | d."lcp-echo-failure".is.not.used |
| 7e200 | 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 | ..Default.value.is.**0**..Specif |
| 7e220 | 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 | ies.timeout.in.seconds.to.wait.f |
| 7e240 | 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 | or.any.peer.activity..If.this.op |
| 7e260 | 74 69 6f 6e 20 73 70 65 63 69 66 69 65 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 61 70 74 | tion.specified.it.turns.on.adapt |
| 7e280 | 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e 64 20 22 | ive.lcp.echo.functionality.and." |
| 7e2a0 | 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 65 64 2e 00 53 | lcp-echo-failure".is.not.used..S |
| 7e2c0 | 70 65 63 69 66 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 | pecifies.timeout.in.seconds.to.w |
| 7e2e0 | 61 69 74 20 66 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 74 79 2e 20 49 66 20 74 68 | ait.for.any.peer.activity..If.th |
| 7e300 | 69 73 20 6f 70 74 69 6f 6e 20 73 70 65 63 69 66 69 65 64 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 | is.option.specified.it.turns.on. |
| 7e320 | 61 64 61 70 74 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 | adaptive.lcp.echo.functionality. |
| 7e340 | 61 6e 64 20 22 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 69 73 20 6e 6f 74 20 75 73 | and."lcp-echo-failure".is.not.us |
| 7e360 | 65 64 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 | ed..Default.value.is.**0**..Spec |
| 7e380 | 69 66 69 65 73 20 77 68 65 74 68 65 72 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 63 6f 6e 74 72 6f | ifies.whether.an.external.contro |
| 7e3a0 | 6c 20 70 6c 61 6e 65 20 28 65 2e 67 2e 20 42 47 50 20 4c 32 56 50 4e 2f 45 56 50 4e 29 20 6f 72 | l.plane.(e.g..BGP.L2VPN/EVPN).or |
| 7e3c0 | 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 46 44 42 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 | .the.internal.FDB.should.be.used |
| 7e3e0 | 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 20 74 68 65 20 56 58 4c 41 4e 20 64 65 | ..Specifies.whether.the.VXLAN.de |
| 7e400 | 76 69 63 65 20 69 73 20 63 61 70 61 62 6c 65 20 6f 66 20 76 6e 69 20 66 69 6c 74 65 72 69 6e 67 | vice.is.capable.of.vni.filtering |
| 7e420 | 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 20 74 68 69 73 20 4e 53 53 41 20 62 6f | ..Specifies.whether.this.NSSA.bo |
| 7e440 | 72 64 65 72 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 75 6e 63 6f 6e 64 69 74 69 6f 6e 61 6c 6c 79 | rder.router.will.unconditionally |
| 7e460 | 20 74 72 61 6e 73 6c 61 74 65 20 54 79 70 65 2d 37 20 4c 53 41 73 20 69 6e 74 6f 20 54 79 70 65 | .translate.Type-7.LSAs.into.Type |
| 7e480 | 2d 35 20 4c 53 41 73 2e 20 57 68 65 6e 20 72 6f 6c 65 20 69 73 20 41 6c 77 61 79 73 2c 20 54 79 | -5.LSAs..When.role.is.Always,.Ty |
| 7e4a0 | 70 65 2d 37 20 4c 53 41 73 20 61 72 65 20 74 72 61 6e 73 6c 61 74 65 64 20 69 6e 74 6f 20 54 79 | pe-7.LSAs.are.translated.into.Ty |
| 7e4c0 | 70 65 2d 35 20 4c 53 41 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 74 72 61 6e | pe-5.LSAs.regardless.of.the.tran |
| 7e4e0 | 73 6c 61 74 6f 72 20 73 74 61 74 65 20 6f 66 20 6f 74 68 65 72 20 4e 53 53 41 20 62 6f 72 64 65 | slator.state.of.other.NSSA.borde |
| 7e500 | 72 20 72 6f 75 74 65 72 73 2e 20 57 68 65 6e 20 72 6f 6c 65 20 69 73 20 43 61 6e 64 69 64 61 74 | r.routers..When.role.is.Candidat |
| 7e520 | 65 2c 20 74 68 69 73 20 72 6f 75 74 65 72 20 70 61 72 74 69 63 69 70 61 74 65 73 20 69 6e 20 74 | e,.this.router.participates.in.t |
| 7e540 | 68 65 20 74 72 61 6e 73 6c 61 74 6f 72 20 65 6c 65 63 74 69 6f 6e 20 74 6f 20 64 65 74 65 72 6d | he.translator.election.to.determ |
| 7e560 | 69 6e 65 20 69 66 20 69 74 20 77 69 6c 6c 20 70 65 72 66 6f 72 6d 20 74 68 65 20 74 72 61 6e 73 | ine.if.it.will.perform.the.trans |
| 7e580 | 6c 61 74 69 6f 6e 73 20 64 75 74 69 65 73 2e 20 57 68 65 6e 20 72 6f 6c 65 20 69 73 20 4e 65 76 | lations.duties..When.role.is.Nev |
| 7e5a0 | 65 72 2c 20 74 68 69 73 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 6e 65 76 65 72 20 74 72 61 6e 73 | er,.this.router.will.never.trans |
| 7e5c0 | 6c 61 74 65 20 54 79 70 65 2d 37 20 4c 53 41 73 20 69 6e 74 6f 20 54 79 70 65 2d 35 20 4c 53 41 | late.Type-7.LSAs.into.Type-5.LSA |
| 7e5e0 | 73 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 69 63 68 20 52 41 44 49 55 53 20 73 65 72 76 65 72 | s..Specifies.which.RADIUS.server |
| 7e600 | 20 61 74 74 72 69 62 75 74 65 20 63 6f 6e 74 61 69 6e 73 20 74 68 65 20 72 61 74 65 20 6c 69 6d | .attribute.contains.the.rate.lim |
| 7e620 | 69 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 61 74 74 72 | it.information..The.default.attr |
| 7e640 | 69 62 75 74 65 20 69 73 20 60 46 69 6c 74 65 72 2d 49 64 60 2e 00 53 70 65 63 69 66 69 65 73 20 | ibute.is.`Filter-Id`..Specifies. |
| 7e660 | 77 68 69 63 68 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 74 74 72 69 62 75 74 65 20 63 6f | which.RADIUS.server.attribute.co |
| 7e680 | 6e 74 61 69 6e 73 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 20 69 6e 66 6f 72 6d 61 74 69 6f | ntains.the.rate.limit.informatio |
| 7e6a0 | 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 61 74 74 72 69 62 75 74 65 20 69 73 20 60 60 46 69 | n..The.default.attribute.is.``Fi |
| 7e6c0 | 6c 74 65 72 2d 49 64 60 60 2e 00 53 70 65 63 69 66 79 20 44 48 43 50 76 34 20 72 65 6c 61 79 20 | lter-Id``..Specify.DHCPv4.relay. |
| 7e6e0 | 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 70 61 73 73 20 72 65 71 75 65 73 74 73 20 74 6f 2e 20 | IP.address.to.pass.requests.to.. |
| 7e700 | 49 66 20 73 70 65 63 69 66 69 65 64 20 67 69 61 64 64 72 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 | If.specified.giaddr.is.also.need |
| 7e720 | 65 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 6e 65 74 | ed..Specify.IPv4.and/or.IPv6.net |
| 7e740 | 77 6f 72 6b 73 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 70 72 6f 74 65 63 74 65 64 2f 6d | works.that.should.be.protected/m |
| 7e760 | 6f 6e 69 74 6f 72 65 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 | onitored..Specify.IPv4.and/or.IP |
| 7e780 | 76 36 20 6e 65 74 77 6f 72 6b 73 20 77 68 69 63 68 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 | v6.networks.which.are.going.to.b |
| 7e7a0 | 65 20 65 78 63 6c 75 64 65 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 2f 49 50 76 36 20 6c 69 | e.excluded..Specify.IPv4/IPv6.li |
| 7e7c0 | 73 74 65 6e 20 61 64 64 72 65 73 73 20 6f 66 20 53 53 48 20 73 65 72 76 65 72 2e 20 4d 75 6c 74 | sten.address.of.SSH.server..Mult |
| 7e7e0 | 69 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 53 | iple.addresses.can.be.defined..S |
| 7e800 | 70 65 63 69 66 79 20 61 20 3a 61 62 62 72 3a 60 53 49 50 20 28 53 65 73 73 69 6f 6e 20 49 6e 69 | pecify.a.:abbr:`SIP.(Session.Ini |
| 7e820 | 74 69 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 73 65 72 76 65 72 20 62 79 20 49 50 76 | tiation.Protocol)`.server.by.IPv |
| 7e840 | 36 20 61 64 64 72 65 73 73 20 6f 66 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d | 6.address.of.Fully.Qualified.Dom |
| 7e860 | 61 69 6e 20 4e 61 6d 65 20 66 6f 72 20 61 6c 6c 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e | ain.Name.for.all.DHCPv6.clients. |
| 7e880 | 00 53 70 65 63 69 66 79 20 61 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 | .Specify.a.Fully.Qualified.Domai |
| 7e8a0 | 6e 20 4e 61 6d 65 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 | n.Name.as.source/destination.mat |
| 7e8c0 | 63 68 65 72 2e 20 45 6e 73 75 72 65 20 72 6f 75 74 65 72 20 69 73 20 61 62 6c 65 20 74 6f 20 72 | cher..Ensure.router.is.able.to.r |
| 7e8e0 | 65 73 6f 6c 76 65 20 73 75 63 68 20 64 6e 73 20 71 75 65 72 79 2e 00 53 70 65 63 69 66 79 20 61 | esolve.such.dns.query..Specify.a |
| 7e900 | 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 20 61 73 20 | .Fully.Qualified.Domain.Name.as. |
| 7e920 | 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 74 6f 20 6d 61 74 63 68 2e 20 45 6e 73 | source/destination.to.match..Ens |
| 7e940 | 75 72 65 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 61 62 6c 65 20 74 6f 20 72 | ure.that.the.router.is.able.to.r |
| 7e960 | 65 73 6f 6c 76 65 20 74 68 69 73 20 64 6e 73 20 71 75 65 72 79 2e 00 53 70 65 63 69 66 79 20 61 | esolve.this.dns.query..Specify.a |
| 7e980 | 20 4e 49 53 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 76 36 20 63 | .NIS.server.address.for.DHCPv6.c |
| 7e9a0 | 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 79 20 61 20 4e 49 53 2b 20 73 65 72 76 65 72 20 61 64 | lients..Specify.a.NIS+.server.ad |
| 7e9c0 | 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 | dress.for.DHCPv6.clients..Specif |
| 7e9e0 | 79 20 61 20 72 61 6e 67 65 20 6f 66 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 65 73 20 76 69 61 | y.a.range.of.group.addresses.via |
| 7ea00 | 20 61 20 70 72 65 66 69 78 2d 6c 69 73 74 20 74 68 61 74 20 66 6f 72 63 65 73 20 50 49 4d 20 74 | .a.prefix-list.that.forces.PIM.t |
| 7ea20 | 6f 20 6e 65 76 65 72 20 64 6f 20 3a 61 62 62 72 3a 60 53 53 4d 20 28 53 6f 75 72 63 65 2d 53 70 | o.never.do.:abbr:`SSM.(Source-Sp |
| 7ea40 | 65 63 69 66 69 63 20 4d 75 6c 74 69 63 61 73 74 29 60 20 6f 76 65 72 2e 00 53 70 65 63 69 66 79 | ecific.Multicast)`.over..Specify |
| 7ea60 | 20 61 62 73 6f 6c 75 74 65 20 60 3c 70 61 74 68 3e 60 20 74 6f 20 73 63 72 69 70 74 20 77 68 69 | .absolute.`<path>`.to.script.whi |
| 7ea80 | 63 68 20 77 69 6c 6c 20 62 65 20 72 75 6e 20 77 68 65 6e 20 60 3c 74 61 73 6b 3e 60 20 69 73 20 | ch.will.be.run.when.`<task>`.is. |
| 7eaa0 | 65 78 65 63 75 74 65 64 2e 00 53 70 65 63 69 66 79 20 61 6c 6c 6f 77 65 64 20 3a 61 62 62 72 3a | executed..Specify.allowed.:abbr: |
| 7eac0 | 60 4b 45 58 20 28 4b 65 79 20 45 78 63 68 61 6e 67 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e | `KEX.(Key.Exchange)`.algorithms. |
| 7eae0 | 00 53 70 65 63 69 66 79 20 61 6e 20 61 6c 74 65 72 6e 61 74 65 20 41 53 20 66 6f 72 20 74 68 69 | .Specify.an.alternate.AS.for.thi |
| 7eb00 | 73 20 42 47 50 20 70 72 6f 63 65 73 73 20 77 68 65 6e 20 69 6e 74 65 72 61 63 74 69 6e 67 20 77 | s.BGP.process.when.interacting.w |
| 7eb20 | 69 74 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 | ith.the.specified.peer.or.peer.g |
| 7eb40 | 72 6f 75 70 2e 20 57 69 74 68 20 6e 6f 20 6d 6f 64 69 66 69 65 72 73 2c 20 74 68 65 20 73 70 65 | roup..With.no.modifiers,.the.spe |
| 7eb60 | 63 69 66 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 | cified.local-as.is.prepended.to. |
| 7eb80 | 74 68 65 20 72 65 63 65 69 76 65 64 20 41 53 5f 50 41 54 48 20 77 68 65 6e 20 72 65 63 65 69 76 | the.received.AS_PATH.when.receiv |
| 7eba0 | 69 6e 67 20 72 6f 75 74 69 6e 67 20 75 70 64 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 70 65 65 | ing.routing.updates.from.the.pee |
| 7ebc0 | 72 2c 20 61 6e 64 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 | r,.and.prepended.to.the.outgoing |
| 7ebe0 | 20 41 53 5f 50 41 54 48 20 28 61 66 74 65 72 20 74 68 65 20 70 72 6f 63 65 73 73 20 6c 6f 63 61 | .AS_PATH.(after.the.process.loca |
| 7ec00 | 6c 20 41 53 29 20 77 68 65 6e 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f | l.AS).when.transmitting.local.ro |
| 7ec20 | 75 74 65 73 20 74 6f 20 74 68 65 20 70 65 65 72 2e 00 53 70 65 63 69 66 79 20 61 6e 20 61 6c 74 | utes.to.the.peer..Specify.an.alt |
| 7ec40 | 65 72 6e 61 74 65 20 54 43 50 20 70 6f 72 74 20 77 68 65 72 65 20 74 68 65 20 6c 64 61 70 20 73 | ernate.TCP.port.where.the.ldap.s |
| 7ec60 | 65 72 76 65 72 20 69 73 20 6c 69 73 74 65 6e 69 6e 67 20 69 66 20 6f 74 68 65 72 20 74 68 61 6e | erver.is.listening.if.other.than |
| 7ec80 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 4c 44 41 50 20 70 6f 72 74 20 33 38 39 2e 00 53 70 65 63 | .the.default.LDAP.port.389..Spec |
| 7eca0 | 69 66 79 20 66 61 63 69 6c 69 74 79 20 61 6e 64 20 6c 65 76 65 6c 20 66 6f 72 20 6c 6f 67 67 69 | ify.facility.and.level.for.loggi |
| 7ecc0 | 6e 67 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 | ng..For.an.explanation.on.:ref:` |
| 7ece0 | 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 | syslog_facilities`.and.:ref:`sys |
| 7ed00 | 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 73 65 65 20 74 61 62 6c 65 73 20 69 | log_severity_level`.see.tables.i |
| 7ed20 | 6e 20 73 79 73 6c 6f 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 63 74 69 6f 6e 2e 00 | n.syslog.configuration.section.. |
| 7ed40 | 53 70 65 63 69 66 79 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 | Specify.interval.in.seconds.to.w |
| 7ed60 | 61 69 74 20 62 65 74 77 65 65 6e 20 44 79 6e 61 6d 69 63 20 44 4e 53 20 75 70 64 61 74 65 73 2e | ait.between.Dynamic.DNS.updates. |
| 7ed80 | 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 70 | .The.default.is..300.seconds..Sp |
| 7eda0 | 65 63 69 66 79 20 6c 6f 63 61 6c 20 72 61 6e 67 65 20 6f 66 20 69 70 20 61 64 64 72 65 73 73 20 | ecify.local.range.of.ip.address. |
| 7edc0 | 74 6f 20 67 69 76 65 20 74 6f 20 64 68 63 70 20 63 6c 69 65 6e 74 73 2e 20 46 69 72 73 74 20 49 | to.give.to.dhcp.clients..First.I |
| 7ede0 | 50 20 69 6e 20 72 61 6e 67 65 20 69 73 20 72 6f 75 74 65 72 20 49 50 2e 20 49 66 20 79 6f 75 20 | P.in.range.is.router.IP..If.you. |
| 7ee00 | 6e 65 65 64 20 6d 6f 72 65 20 63 75 73 74 6f 6d 69 7a 61 74 69 6f 6e 20 75 73 65 20 60 63 6c 69 | need.more.customization.use.`cli |
| 7ee20 | 65 6e 74 2d 69 70 2d 70 6f 6f 6c 60 00 53 70 65 63 69 66 79 20 6e 61 6d 65 20 6f 66 20 74 68 65 | ent-ip-pool`.Specify.name.of.the |
| 7ee40 | 20 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 | .:abbr:`VRF.(Virtual.Routing.and |
| 7ee60 | 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 69 6e 73 74 61 6e 63 65 2e 00 53 70 65 63 69 66 79 20 | .Forwarding)`.instance..Specify. |
| 7ee80 | 6e 65 78 74 68 6f 70 20 6f 6e 20 74 68 65 20 70 61 74 68 20 74 6f 20 74 68 65 20 64 65 73 74 69 | nexthop.on.the.path.to.the.desti |
| 7eea0 | 6e 61 74 69 6f 6e 2c 20 60 60 69 70 76 34 2d 61 64 64 72 65 73 73 60 60 20 63 61 6e 20 62 65 20 | nation,.``ipv4-address``.can.be. |
| 7eec0 | 73 65 74 20 74 6f 20 60 60 64 68 63 70 60 60 00 53 70 65 63 69 66 79 20 73 74 61 74 69 63 20 72 | set.to.``dhcp``.Specify.static.r |
| 7eee0 | 6f 75 74 65 20 69 6e 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 73 65 6e 64 | oute.into.the.routing.table.send |
| 7ef00 | 69 6e 67 20 61 6c 6c 20 6e 6f 6e 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 | ing.all.non.local.traffic.to.the |
| 7ef20 | 20 6e 65 78 74 68 6f 70 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 53 70 | .nexthop.address.`<address>`..Sp |
| 7ef40 | 65 63 69 66 79 20 74 68 65 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 | ecify.the.IP.`<address>`.of.the. |
| 7ef60 | 52 41 44 49 55 53 20 73 65 72 76 65 72 20 75 73 65 72 20 77 69 74 68 20 74 68 65 20 70 72 65 2d | RADIUS.server.user.with.the.pre- |
| 7ef80 | 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 67 69 76 65 6e 20 69 6e 20 60 3c 73 65 63 72 65 74 3e | shared-secret.given.in.`<secret> |
| 7efa0 | 60 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 | `..Specify.the.IP.`<address>`.of |
| 7efc0 | 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 20 75 73 65 72 20 77 69 74 68 20 74 68 65 | .the.TACACS.server.user.with.the |
| 7efe0 | 20 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 67 69 76 65 6e 20 69 6e 20 60 3c 73 65 | .pre-shared-secret.given.in.`<se |
| 7f000 | 63 72 65 74 3e 60 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 49 50 76 34 20 73 6f 75 72 63 65 20 | cret>`..Specify.the.IPv4.source. |
| 7f020 | 61 64 64 72 65 73 73 20 74 6f 20 75 73 65 20 66 6f 72 20 74 68 65 20 42 47 50 20 73 65 73 73 69 | address.to.use.for.the.BGP.sessi |
| 7f040 | 6f 6e 20 74 6f 20 74 68 69 73 20 6e 65 69 67 68 62 6f 72 2c 20 6d 61 79 20 62 65 20 73 70 65 63 | on.to.this.neighbor,.may.be.spec |
| 7f060 | 69 66 69 65 64 20 61 73 20 65 69 74 68 65 72 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 | ified.as.either.an.IPv4.address. |
| 7f080 | 64 69 72 65 63 74 6c 79 20 6f 72 20 61 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 | directly.or.as.an.interface.name |
| 7f0a0 | 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 4c 44 41 50 20 73 65 72 76 65 72 20 74 6f 20 63 6f 6e | ..Specify.the.LDAP.server.to.con |
| 7f0c0 | 6e 65 63 74 20 74 6f 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 61 64 64 72 65 73 73 2c 20 41 50 | nect.to..Specify.the.address,.AP |
| 7f0e0 | 49 20 6b 65 79 2c 20 74 69 6d 65 6f 75 74 20 61 6e 64 20 70 6f 72 74 20 6f 66 20 74 68 65 20 73 | I.key,.timeout.and.port.of.the.s |
| 7f100 | 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 2e 20 59 6f 75 20 6e 65 65 64 20 74 6f 20 65 6e 61 | econdary.router..You.need.to.ena |
| 7f120 | 62 6c 65 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 48 54 54 50 20 41 50 49 20 73 | ble.and.configure.the.HTTP.API.s |
| 7f140 | 65 72 76 69 63 65 20 6f 6e 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 20 66 | ervice.on.the.secondary.router.f |
| 7f160 | 6f 72 20 63 6f 6e 66 69 67 20 73 79 6e 63 20 74 6f 20 6f 70 65 72 61 74 65 2e 00 53 70 65 63 69 | or.config.sync.to.operate..Speci |
| 7f180 | 66 79 20 74 68 65 20 69 64 65 6e 74 69 66 69 65 72 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 73 | fy.the.identifier.value.of.the.s |
| 7f1a0 | 69 74 65 2d 6c 65 76 65 6c 20 61 67 67 72 65 67 61 74 6f 72 20 28 53 4c 41 29 20 6f 6e 20 74 68 | ite-level.aggregator.(SLA).on.th |
| 7f1c0 | 65 20 69 6e 74 65 72 66 61 63 65 2e 20 49 44 20 6d 75 73 74 20 62 65 20 61 20 64 65 63 69 6d 61 | e.interface..ID.must.be.a.decima |
| 7f1e0 | 6c 20 6e 75 6d 62 65 72 20 67 72 65 61 74 65 72 20 74 68 65 6e 20 30 20 77 68 69 63 68 20 66 69 | l.number.greater.then.0.which.fi |
| 7f200 | 74 73 20 69 6e 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 53 4c 41 20 49 44 73 20 28 73 65 65 | ts.in.the.length.of.SLA.IDs.(see |
| 7f220 | 20 62 65 6c 6f 77 29 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 61 | .below)..Specify.the.interface.a |
| 7f240 | 64 64 72 65 73 73 20 75 73 65 64 20 6c 6f 63 61 6c 6c 79 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 | ddress.used.locally.on.the.inter |
| 7f260 | 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 72 65 66 69 78 20 68 61 73 20 62 65 65 6e 20 64 | face.where.the.prefix.has.been.d |
| 7f280 | 65 6c 65 67 61 74 65 64 20 74 6f 2e 20 49 44 20 6d 75 73 74 20 62 65 20 61 20 64 65 63 69 6d 61 | elegated.to..ID.must.be.a.decima |
| 7f2a0 | 6c 20 69 6e 74 65 67 65 72 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 72 | l.integer..Specify.the.minimum.r |
| 7f2c0 | 65 71 75 69 72 65 64 20 54 4c 53 20 76 65 72 73 69 6f 6e 20 31 2e 32 20 6f 72 20 31 2e 33 00 53 | equired.TLS.version.1.2.or.1.3.S |
| 7f2e0 | 70 65 63 69 66 79 20 74 68 65 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 75 73 | pecify.the.plaintext.password.us |
| 7f300 | 65 72 20 62 79 20 75 73 65 72 20 60 3c 6e 61 6d 65 3e 60 20 6f 6e 20 74 68 69 73 20 73 79 73 74 | er.by.user.`<name>`.on.this.syst |
| 7f320 | 65 6d 2e 20 54 68 65 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 77 69 6c 6c 20 | em..The.plaintext.password.will. |
| 7f340 | 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 74 72 61 6e 73 66 65 72 72 65 64 20 69 6e 74 | be.automatically.transferred.int |
| 7f360 | 6f 20 61 20 73 65 63 75 72 65 20 68 61 73 68 65 64 20 70 61 73 73 77 6f 72 64 20 61 6e 64 20 6e | o.a.secure.hashed.password.and.n |
| 7f380 | 6f 74 20 73 61 76 65 64 20 61 6e 79 77 68 65 72 65 20 69 6e 20 70 6c 61 69 6e 74 65 78 74 2e 00 | ot.saved.anywhere.in.plaintext.. |
| 7f3a0 | 53 70 65 63 69 66 79 20 74 68 65 20 70 6f 72 74 20 75 73 65 64 20 6f 6e 20 77 68 69 63 68 20 74 | Specify.the.port.used.on.which.t |
| 7f3c0 | 68 65 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 69 73 20 6c 69 73 74 65 6e 69 6e 67 20 66 6f | he.proxy.service.is.listening.fo |
| 7f3e0 | 72 20 72 65 71 75 65 73 74 73 2e 20 54 68 69 73 20 70 6f 72 74 20 69 73 20 74 68 65 20 64 65 66 | r.requests..This.port.is.the.def |
| 7f400 | 61 75 6c 74 20 70 6f 72 74 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 | ault.port.used.for.the.specified |
| 7f420 | 20 6c 69 73 74 65 6e 2d 61 64 64 72 65 73 73 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 73 65 63 | .listen-address..Specify.the.sec |
| 7f440 | 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 73 79 6e | tion.of.the.configuration.to.syn |
| 7f460 | 63 68 72 6f 6e 69 7a 65 2e 20 49 66 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 73 65 63 74 69 | chronize..If.more.than.one.secti |
| 7f480 | 6f 6e 20 69 73 20 74 6f 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 2c 20 72 65 70 65 61 74 | on.is.to.be.synchronized,.repeat |
| 7f4a0 | 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 64 64 20 61 64 64 69 74 69 6f 6e 61 6c 20 73 | .the.command.to.add.additional.s |
| 7f4c0 | 65 63 74 69 6f 6e 73 20 61 73 20 72 65 71 75 69 72 65 64 2e 00 53 70 65 63 69 66 79 20 74 68 65 | ections.as.required..Specify.the |
| 7f4e0 | 20 73 79 73 74 65 6d 73 20 60 3c 74 69 6d 65 7a 6f 6e 65 3e 60 20 61 73 20 74 68 65 20 52 65 67 | .systems.`<timezone>`.as.the.Reg |
| 7f500 | 69 6f 6e 2f 4c 6f 63 61 74 69 6f 6e 20 74 68 61 74 20 62 65 73 74 20 64 65 66 69 6e 65 73 20 79 | ion/Location.that.best.defines.y |
| 7f520 | 6f 75 72 20 6c 6f 63 61 74 69 6f 6e 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 73 70 65 63 69 | our.location..For.example,.speci |
| 7f540 | 66 79 69 6e 67 20 55 53 2f 50 61 63 69 66 69 63 20 73 65 74 73 20 74 68 65 20 74 69 6d 65 20 7a | fying.US/Pacific.sets.the.time.z |
| 7f560 | 6f 6e 65 20 74 6f 20 55 53 20 50 61 63 69 66 69 63 20 74 69 6d 65 2e 00 53 70 65 63 69 66 79 20 | one.to.US.Pacific.time..Specify. |
| 7f580 | 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 77 68 65 6e 20 60 3c 74 61 73 6b 3e 60 20 | the.time.interval.when.`<task>`. |
| 7f5a0 | 73 68 6f 75 6c 64 20 62 65 20 65 78 65 63 75 74 65 64 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c | should.be.executed..The.interval |
| 7f5c0 | 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 73 20 6e 75 6d 62 65 72 20 77 69 74 68 20 6f 6e 65 | .is.specified.as.number.with.one |
| 7f5e0 | 20 6f 66 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 75 66 66 69 78 65 73 3a 00 53 70 65 63 | .of.the.following.suffixes:.Spec |
| 7f600 | 69 66 79 20 74 69 6d 65 6f 75 74 20 2f 20 75 70 64 61 74 65 20 69 6e 74 65 72 76 61 6c 20 74 6f | ify.timeout./.update.interval.to |
| 7f620 | 20 63 68 65 63 6b 20 69 66 20 49 50 20 61 64 64 72 65 73 73 20 63 68 61 6e 67 65 64 2e 00 53 70 | .check.if.IP.address.changed..Sp |
| 7f640 | 65 63 69 66 79 20 74 69 6d 65 6f 75 74 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 6b 65 65 70 61 | ecify.timeout.interval.for.keepa |
| 7f660 | 6c 69 76 65 20 6d 65 73 73 61 67 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 79 | live.message.in.seconds..Specify |
| 7f680 | 20 77 68 65 72 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 73 68 61 72 65 64 20 62 79 20 6d 75 | .where.interface.is.shared.by.mu |
| 7f6a0 | 6c 74 69 70 6c 65 20 75 73 65 72 73 20 6f 72 20 69 74 20 69 73 20 76 6c 61 6e 2d 70 65 72 2d 75 | ltiple.users.or.it.is.vlan-per-u |
| 7f6c0 | 73 65 72 2e 00 53 70 69 6e 65 31 20 69 73 20 61 20 43 69 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 | ser..Spine1.is.a.Cisco.IOS.route |
| 7f6e0 | 72 20 72 75 6e 6e 69 6e 67 20 76 65 72 73 69 6f 6e 20 31 35 2e 34 2c 20 4c 65 61 66 32 20 61 6e | r.running.version.15.4,.Leaf2.an |
| 7f700 | 64 20 4c 65 61 66 33 20 61 72 65 20 65 61 63 68 20 56 79 4f 53 20 72 6f 75 74 65 72 73 20 72 75 | d.Leaf3.are.each.VyOS.routers.ru |
| 7f720 | 6e 6e 69 6e 67 20 31 2e 32 2e 00 53 70 69 6e 65 31 20 69 73 20 61 20 43 69 73 63 6f 20 49 4f 53 | nning.1.2..Spine1.is.a.Cisco.IOS |
| 7f740 | 20 72 6f 75 74 65 72 20 72 75 6e 6e 69 6e 67 20 76 65 72 73 69 6f 6e 20 31 35 2e 34 2c 20 4c 65 | .router.running.version.15.4,.Le |
| 7f760 | 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 69 73 20 65 61 63 68 20 61 20 56 79 4f 53 20 72 6f 75 | af2.and.Leaf3.is.each.a.VyOS.rou |
| 7f780 | 74 65 72 20 72 75 6e 6e 69 6e 67 20 31 2e 32 2e 00 53 70 6c 75 6e 6b 00 53 70 6f 6b 65 00 53 71 | ter.running.1.2..Splunk.Spoke.Sq |
| 7f7a0 | 75 69 64 5f 20 69 73 20 61 20 63 61 63 68 69 6e 67 20 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 | uid_.is.a.caching.and.forwarding |
| 7f7c0 | 20 48 54 54 50 20 77 65 62 20 70 72 6f 78 79 2e 20 49 74 20 68 61 73 20 61 20 77 69 64 65 20 76 | .HTTP.web.proxy..It.has.a.wide.v |
| 7f7e0 | 61 72 69 65 74 79 20 6f 66 20 75 73 65 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 73 70 65 65 64 69 | ariety.of.uses,.including.speedi |
| 7f800 | 6e 67 20 75 70 20 61 20 77 65 62 20 73 65 72 76 65 72 20 62 79 20 63 61 63 68 69 6e 67 20 72 65 | ng.up.a.web.server.by.caching.re |
| 7f820 | 70 65 61 74 65 64 20 72 65 71 75 65 73 74 73 2c 20 63 61 63 68 69 6e 67 20 77 65 62 2c 20 44 4e | peated.requests,.caching.web,.DN |
| 7f840 | 53 20 61 6e 64 20 6f 74 68 65 72 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 20 6c 6f 6f | S.and.other.computer.network.loo |
| 7f860 | 6b 75 70 73 20 66 6f 72 20 61 20 67 72 6f 75 70 20 6f 66 20 70 65 6f 70 6c 65 20 73 68 61 72 69 | kups.for.a.group.of.people.shari |
| 7f880 | 6e 67 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 65 73 2c 20 61 6e 64 20 61 69 64 69 6e 67 | ng.network.resources,.and.aiding |
| 7f8a0 | 20 73 65 63 75 72 69 74 79 20 62 79 20 66 69 6c 74 65 72 69 6e 67 20 74 72 61 66 66 69 63 2e 20 | .security.by.filtering.traffic.. |
| 7f8c0 | 41 6c 74 68 6f 75 67 68 20 70 72 69 6d 61 72 69 6c 79 20 75 73 65 64 20 66 6f 72 20 48 54 54 50 | Although.primarily.used.for.HTTP |
| 7f8e0 | 20 61 6e 64 20 46 54 50 2c 20 53 71 75 69 64 20 69 6e 63 6c 75 64 65 73 20 6c 69 6d 69 74 65 64 | .and.FTP,.Squid.includes.limited |
| 7f900 | 20 73 75 70 70 6f 72 74 20 66 6f 72 20 73 65 76 65 72 61 6c 20 6f 74 68 65 72 20 70 72 6f 74 6f | .support.for.several.other.proto |
| 7f920 | 63 6f 6c 73 20 69 6e 63 6c 75 64 69 6e 67 20 49 6e 74 65 72 6e 65 74 20 47 6f 70 68 65 72 2c 20 | cols.including.Internet.Gopher,. |
| 7f940 | 53 53 4c 2c 5b 36 5d 20 54 4c 53 20 61 6e 64 20 48 54 54 50 53 2e 20 53 71 75 69 64 20 64 6f 65 | SSL,[6].TLS.and.HTTPS..Squid.doe |
| 7f960 | 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 74 68 65 20 53 4f 43 4b 53 20 70 72 6f 74 6f 63 6f 6c | s.not.support.the.SOCKS.protocol |
| 7f980 | 2e 00 53 74 61 72 74 20 57 65 62 73 65 72 76 65 72 20 69 6e 20 67 69 76 65 6e 20 20 56 52 46 2e | ..Start.Webserver.in.given..VRF. |
| 7f9a0 | 00 53 74 61 72 74 20 57 65 62 73 65 72 76 65 72 20 69 6e 20 67 69 76 65 6e 20 56 52 46 2e 00 53 | .Start.Webserver.in.given.VRF..S |
| 7f9c0 | 74 61 72 74 20 62 79 20 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 49 50 53 65 63 20 53 41 73 20 28 | tart.by.checking.for.IPSec.SAs.( |
| 7f9e0 | 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 29 20 77 69 74 68 3a 00 53 74 61 | Security.Associations).with:.Sta |
| 7fa00 | 72 74 69 6e 67 20 66 72 6f 6d 20 2a 2a 56 79 4f 53 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 | rting.from.**VyOS-1.5-rolling-20 |
| 7fa20 | 32 34 31 30 30 36 30 30 30 37 2a 2a 2c 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 63 61 6e 20 6d | 2410060007**,.the.firewall.can.m |
| 7fa40 | 6f 64 69 66 79 20 70 61 63 6b 65 74 73 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 73 65 | odify.packets.before.they.are.se |
| 7fa60 | 6e 74 20 6f 75 74 2e 20 54 68 69 73 20 66 65 61 75 72 65 20 70 72 6f 76 69 64 65 73 20 6d 6f 72 | nt.out..This.feaure.provides.mor |
| 7fa80 | 65 20 66 6c 65 78 69 62 69 6c 69 74 79 20 69 6e 20 70 61 63 6b 65 74 20 68 61 6e 64 6c 69 6e 67 | e.flexibility.in.packet.handling |
| 7faa0 | 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 | ..Starting.from.VyOS.1.4-rolling |
| 7fac0 | 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 | -202308040557,.a.new.firewall.st |
| 7fae0 | 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 | ructure.can.be.found.on.all.VyOS |
| 7fb00 | 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 | .installations..The.Zone.based.f |
| 7fb20 | 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 | irewall.was.removed.in.that.vers |
| 7fb40 | 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 | ion,.but.re.introduced.in.VyOS.1 |
| 7fb60 | 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 | .4.and.1.5..All.versions.built.a |
| 7fb80 | 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 76 65 20 74 68 69 73 20 66 65 61 74 75 72 | fter.2023-10-22.have.this.featur |
| 7fba0 | 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 | e..Documentation.for.most.of.the |
| 7fbc0 | 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 | .new.firewall.CLI.can.be.found.i |
| 7fbe0 | 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 | n.the.`firewall.<https://docs.vy |
| 7fc00 | 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 | os.io/en/latest/configuration/fi |
| 7fc20 | 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 00 | rewall/general.html>`_.chapter.. |
| 7fc40 | 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 | Starting.from.VyOS.1.4-rolling-2 |
| 7fc60 | 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 | 02308040557,.a.new.firewall.stru |
| 7fc80 | 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 69 | cture.can.be.found.on.all.VyOS.i |
| 7fca0 | 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 | nstallations..The.Zone.based.fir |
| 7fcc0 | 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f | ewall.was.removed.in.that.versio |
| 7fce0 | 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 | n,.but.re.introduced.in.VyOS.1.4 |
| 7fd00 | 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 | .and.1.5..All.versions.built.aft |
| 7fd20 | 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 76 65 20 74 68 69 73 20 66 65 61 74 75 72 65 2e | er.2023-10-22.have.this.feature. |
| 7fd40 | 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e | .Documentation.for.most.of.the.n |
| 7fd60 | 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 | ew.firewall.CLI.can.be.found.in. |
| 7fd80 | 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 | the.`firewall.<https://docs.vyos |
| 7fda0 | 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 | .io/en/latest/configuration/fire |
| 7fdc0 | 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 | wall/general.html>`_.chapter..Th |
| 7fde0 | 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c | e.legacy.firewall.is.still.avail |
| 7fe00 | 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c | able.for.versions.before.1.4-rol |
| 7fe20 | 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 | ling-202308040557.and.can.be.fou |
| 7fe40 | 6e 64 20 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 | nd.in.the.:doc:`legacy.firewall. |
| 7fe60 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 | configuration.</configuration/fi |
| 7fe80 | 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 65 72 2e | rewall/general-legacy>`.chapter. |
| 7fea0 | 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d | .Starting.from.VyOS.1.4-rolling- |
| 7fec0 | 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 | 202308040557,.a.new.firewall.str |
| 7fee0 | 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 | ucture.can.be.found.on.all.VyOS. |
| 7ff00 | 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 | installations..Zone.based.firewa |
| 7ff20 | 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 | ll.was.removed.in.that.version,. |
| 7ff40 | 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e | but.re.introduced.in.VyOS.1.4.an |
| 7ff60 | 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 | d.1.5..All.versions.built.after. |
| 7ff80 | 32 30 32 33 2d 31 30 2d 32 32 20 68 61 73 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 | 2023-10-22.has.this.feature..Doc |
| 7ffa0 | 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 | umentation.for.most.of.the.new.f |
| 7ffc0 | 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 | irewall.CLI.can.be.found.in.the. |
| 7ffe0 | 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f | `firewall.<https://docs.vyos.io/ |
| 80000 | 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c | en/latest/configuration/firewall |
| 80020 | 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 | /general.html>`_.chapter..The.le |
| 80040 | 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 | gacy.firewall.is.still.available |
| 80060 | 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 | .for.versions.before.1.4-rolling |
| 80080 | 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 | -202308040557.and.can.be.found.i |
| 800a0 | 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 | n.the.:doc:`legacy.firewall.conf |
| 800c0 | 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 | iguration.</configuration/firewa |
| 800e0 | 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 65 72 2e 00 53 74 61 | ll/general-legacy>`.chapter..Sta |
| 80100 | 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 | rting.from.VyOS.1.4-rolling-2023 |
| 80120 | 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 | 08040557,.a.new.firewall.structu |
| 80140 | 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 | re.can.be.found.on.all.vyos.inst |
| 80160 | 61 6c 61 74 69 6f 6e 73 2c 20 61 6e 64 20 7a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c | alations,.and.zone.based.firewal |
| 80180 | 6c 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 2e 20 44 6f 63 75 6d 65 | l.is.no.longer.supported..Docume |
| 801a0 | 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 | ntation.for.most.of.the.new.fire |
| 801c0 | 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 | wall.CLI.can.be.found.in.the.`fi |
| 801e0 | 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f | rewall.<https://docs.vyos.io/en/ |
| 80200 | 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 | latest/configuration/firewall/ge |
| 80220 | 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 | neral.html>`_.chapter..The.legac |
| 80240 | 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f | y.firewall.is.still.available.fo |
| 80260 | 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 | r.versions.before.1.4-rolling-20 |
| 80280 | 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 | 2308040557.and.can.be.found.in.t |
| 802a0 | 68 65 20 3a 72 65 66 3a 60 66 69 72 65 77 61 6c 6c 2d 6c 65 67 61 63 79 60 20 63 68 61 70 74 65 | he.:ref:`firewall-legacy`.chapte |
| 802c0 | 72 2e 20 54 68 65 20 65 78 61 6d 70 6c 65 73 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 | r..The.examples.in.this.section. |
| 802e0 | 75 73 65 20 74 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 | use.the.legacy.firewall.configur |
| 80300 | 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 2c 20 73 69 6e 63 65 20 74 68 69 73 20 66 65 61 74 75 | ation.commands,.since.this.featu |
| 80320 | 72 65 20 68 61 73 20 62 65 65 6e 20 72 65 6d 6f 76 65 64 20 69 6e 20 65 61 72 6c 69 65 72 20 72 | re.has.been.removed.in.earlier.r |
| 80340 | 65 6c 65 61 73 65 73 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d | eleases..Starting.from.VyOS.1.4- |
| 80360 | 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 | rolling-202308040557,.a.new.fire |
| 80380 | 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 | wall.structure.can.be.found.on.a |
| 803a0 | 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 61 74 69 6f 6e 73 2e 20 5a 6f 6e 65 20 62 61 73 65 64 | ll.vyos.instalations..Zone.based |
| 803c0 | 20 66 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 61 74 20 76 65 | .firewall.was.removed.in.that.ve |
| 803e0 | 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 | rsion,.but.re.introduced.in.VyOS |
| 80400 | 20 31 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 | .1.4.and.1.5..All.versions.built |
| 80420 | 20 61 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 73 20 74 68 69 73 20 66 65 61 74 75 | .after.2023-10-22.has.this.featu |
| 80440 | 72 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 | re..Documentation.for.most.of.th |
| 80460 | 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 | e.new.firewall.CLI.can.be.found. |
| 80480 | 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 | in.the.`firewall.<https://docs.v |
| 804a0 | 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 | yos.io/en/latest/configuration/f |
| 804c0 | 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e | irewall/general.html>`_.chapter. |
| 804e0 | 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 | .The.legacy.firewall.is.still.av |
| 80500 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 2e 34 2d | ailable.for.versions.before.1.4- |
| 80520 | 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 62 65 20 | rolling-202308040557.and.can.be. |
| 80540 | 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 | found.in.the.:doc:`legacy.firewa |
| 80560 | 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ll.configuration.</configuration |
| 80580 | 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 20 63 68 61 70 74 | /firewall/general-legacy>`.chapt |
| 805a0 | 65 72 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 | er..Starting.from.VyOS.1.4-rolli |
| 805c0 | 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 | ng-202308040557,.a.new.firewall. |
| 805e0 | 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 | structure.can.be.found.on.all.vy |
| 80600 | 6f 73 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 | os.installations..Starting.from. |
| 80620 | 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 | VyOS.1.4-rolling-202308040557,.a |
| 80640 | 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 | .new.firewall.structure.can.be.f |
| 80660 | 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 | ound.on.all.vyos.installations.. |
| 80680 | 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6e 65 77 20 66 69 72 65 77 | Documentation.for.most.new.firew |
| 806a0 | 61 6c 6c 20 63 6c 69 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 68 65 72 65 3a 00 53 74 61 72 74 | all.cli.can.be.found.here:.Start |
| 806c0 | 69 6e 67 20 6f 66 20 77 69 74 68 20 56 79 4f 53 20 31 2e 33 20 28 65 71 75 75 6c 65 75 73 29 20 | ing.of.with.VyOS.1.3.(equuleus). |
| 806e0 | 77 65 20 61 64 64 65 64 20 73 75 70 70 6f 72 74 20 66 6f 72 20 72 75 6e 6e 69 6e 67 20 56 79 4f | we.added.support.for.running.VyO |
| 80700 | 53 20 61 73 20 61 6e 20 4f 75 74 2d 6f 66 2d 42 61 6e 64 20 4d 61 6e 61 67 65 6d 65 6e 74 20 64 | S.as.an.Out-of-Band.Management.d |
| 80720 | 65 76 69 63 65 20 77 68 69 63 68 20 70 72 6f 76 69 64 65 73 20 72 65 6d 6f 74 65 20 61 63 63 65 | evice.which.provides.remote.acce |
| 80740 | 73 73 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 53 53 48 20 74 6f 20 64 69 72 65 63 74 6c 79 20 61 | ss.by.means.of.SSH.to.directly.a |
| 80760 | 74 74 61 63 68 65 64 20 73 65 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 53 74 61 72 74 | ttached.serial.interfaces..Start |
| 80780 | 69 6e 67 20 77 69 74 68 20 56 79 4f 53 20 31 2e 32 20 61 20 3a 61 62 62 72 3a 60 6d 44 4e 53 20 | ing.with.VyOS.1.2.a.:abbr:`mDNS. |
| 807a0 | 28 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 29 60 20 72 65 70 65 61 74 65 72 20 66 75 6e 63 74 69 | (Multicast.DNS)`.repeater.functi |
| 807c0 | 6f 6e 61 6c 69 74 79 20 69 73 20 70 72 6f 76 69 64 65 64 2e 20 41 64 64 69 74 69 6f 6e 61 6c 20 | onality.is.provided..Additional. |
| 807e0 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 6f 62 74 61 69 6e 65 64 20 66 72 6f 6d | information.can.be.obtained.from |
| 80800 | 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 4d | .https://en.wikipedia.org/wiki/M |
| 80820 | 75 6c 74 69 63 61 73 74 5f 44 4e 53 2e 00 53 74 61 74 69 63 00 53 74 61 74 69 63 20 3a 61 62 62 | ulticast_DNS..Static.Static.:abb |
| 80840 | 72 3a 60 53 41 4b 20 28 53 65 63 75 72 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 4b 65 | r:`SAK.(Secure.Authentication.Ke |
| 80860 | 79 29 60 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6d 61 6e 75 61 | y)`.mode.can.be.configured.manua |
| 80880 | 6c 6c 79 20 6f 6e 20 65 61 63 68 20 64 65 76 69 63 65 20 77 69 73 68 69 6e 67 20 74 6f 20 75 73 | lly.on.each.device.wishing.to.us |
| 808a0 | 65 20 4d 41 43 73 65 63 2e 20 4b 65 79 73 20 6d 75 73 74 20 62 65 20 73 65 74 20 73 74 61 74 69 | e.MACsec..Keys.must.be.set.stati |
| 808c0 | 63 61 6c 6c 79 20 6f 6e 20 61 6c 6c 20 64 65 76 69 63 65 73 20 66 6f 72 20 74 72 61 66 66 69 63 | cally.on.all.devices.for.traffic |
| 808e0 | 20 74 6f 20 66 6c 6f 77 20 70 72 6f 70 65 72 6c 79 2e 20 4b 65 79 20 72 6f 74 61 74 69 6f 6e 20 | .to.flow.properly..Key.rotation. |
| 80900 | 69 73 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 74 68 65 20 61 64 6d 69 6e 69 73 74 72 61 74 6f | is.dependent.on.the.administrato |
| 80920 | 72 20 75 70 64 61 74 69 6e 67 20 61 6c 6c 20 6b 65 79 73 20 6d 61 6e 75 61 6c 6c 79 20 61 63 72 | r.updating.all.keys.manually.acr |
| 80940 | 6f 73 73 20 63 6f 6e 6e 65 63 74 65 64 20 64 65 76 69 63 65 73 2e 20 53 74 61 74 69 63 20 53 41 | oss.connected.devices..Static.SA |
| 80960 | 4b 20 6d 6f 64 65 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 4d 4b 41 2e | K.mode.can.not.be.used.with.MKA. |
| 80980 | 00 53 74 61 74 69 63 20 44 48 43 50 20 49 50 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 20 74 | .Static.DHCP.IP.address.assign.t |
| 809a0 | 6f 20 68 6f 73 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 64 65 73 63 72 69 70 74 69 | o.host.identified.by.`<descripti |
| 809c0 | 6f 6e 3e 60 2e 20 49 50 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 69 6e 73 69 64 65 20 | on>`..IP.address.must.be.inside. |
| 809e0 | 74 68 65 20 60 3c 73 75 62 6e 65 74 3e 60 20 77 68 69 63 68 20 69 73 20 64 65 66 69 6e 65 64 20 | the.`<subnet>`.which.is.defined. |
| 80a00 | 62 75 74 20 63 61 6e 20 62 65 20 6f 75 74 73 69 64 65 20 74 68 65 20 64 79 6e 61 6d 69 63 20 72 | but.can.be.outside.the.dynamic.r |
| 80a20 | 61 6e 67 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 | ange.created.with.:cfgcmd:`set.s |
| 80a40 | 65 72 76 69 63 65 20 64 68 63 70 2d 73 65 72 76 65 72 20 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 | ervice.dhcp-server.shared-networ |
| 80a60 | 6b 2d 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 73 75 62 6e 65 74 20 3c 73 75 62 6e 65 74 3e 20 72 61 | k-name.<name>.subnet.<subnet>.ra |
| 80a80 | 6e 67 65 20 3c 6e 3e 60 2e 20 49 66 20 6e 6f 20 69 70 2d 61 64 64 72 65 73 73 20 69 73 20 73 70 | nge.<n>`..If.no.ip-address.is.sp |
| 80aa0 | 65 63 69 66 69 65 64 2c 20 61 6e 20 49 50 20 66 72 6f 6d 20 74 68 65 20 64 79 6e 61 6d 69 63 20 | ecified,.an.IP.from.the.dynamic. |
| 80ac0 | 70 6f 6f 6c 20 69 73 20 75 73 65 64 2e 00 53 74 61 74 69 63 20 48 6f 73 74 6e 61 6d 65 20 4d 61 | pool.is.used..Static.Hostname.Ma |
| 80ae0 | 70 70 69 6e 67 00 53 74 61 74 69 63 20 4b 65 79 73 00 53 74 61 74 69 63 20 52 6f 75 74 65 73 00 | pping.Static.Keys.Static.Routes. |
| 80b00 | 53 74 61 74 69 63 20 52 6f 75 74 69 6e 67 20 6f 72 20 6f 74 68 65 72 20 64 79 6e 61 6d 69 63 20 | Static.Routing.or.other.dynamic. |
| 80b20 | 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 76 | routing.protocols.can.be.used.ov |
| 80b40 | 65 72 20 74 68 65 20 76 74 75 6e 20 69 6e 74 65 72 66 61 63 65 00 53 74 61 74 69 63 20 52 6f 75 | er.the.vtun.interface.Static.Rou |
| 80b60 | 74 69 6e 67 3a 00 53 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 00 53 74 61 74 69 63 20 6d 61 70 | ting:.Static.mappings.Static.map |
| 80b80 | 70 69 6e 67 73 20 61 72 65 6e 27 74 20 73 68 6f 77 6e 2e 20 54 6f 20 73 68 6f 77 20 61 6c 6c 20 | pings.aren't.shown..To.show.all. |
| 80ba0 | 73 74 61 74 65 73 2c 20 75 73 65 20 60 60 73 68 6f 77 20 64 68 63 70 20 73 65 72 76 65 72 20 6c | states,.use.``show.dhcp.server.l |
| 80bc0 | 65 61 73 65 73 20 73 74 61 74 65 20 61 6c 6c 60 60 2e 00 53 74 61 74 69 63 20 72 6f 75 74 65 73 | eases.state.all``..Static.routes |
| 80be0 | 20 61 72 65 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 2c | .are.manually.configured.routes, |
| 80c00 | 20 77 68 69 63 68 2c 20 69 6e 20 67 65 6e 65 72 61 6c 2c 20 63 61 6e 6e 6f 74 20 62 65 20 75 70 | .which,.in.general,.cannot.be.up |
| 80c20 | 64 61 74 65 64 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 66 72 6f 6d 20 69 6e 66 6f 72 6d 61 74 69 | dated.dynamically.from.informati |
| 80c40 | 6f 6e 20 56 79 4f 53 20 6c 65 61 72 6e 73 20 61 62 6f 75 74 20 74 68 65 20 6e 65 74 77 6f 72 6b | on.VyOS.learns.about.the.network |
| 80c60 | 20 74 6f 70 6f 6c 6f 67 79 20 66 72 6f 6d 20 6f 74 68 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f | .topology.from.other.routing.pro |
| 80c80 | 74 6f 63 6f 6c 73 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 | tocols..However,.if.a.link.fails |
| 80ca0 | 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 72 65 6d 6f 76 65 20 72 6f 75 74 65 73 2c | ,.the.router.will.remove.routes, |
| 80cc0 | 20 69 6e 63 6c 75 64 69 6e 67 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 2c 20 66 72 6f 6d 20 74 | .including.static.routes,.from.t |
| 80ce0 | 68 65 20 3a 61 62 62 72 3a 60 52 49 50 42 20 28 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 | he.:abbr:`RIPB.(Routing.Informat |
| 80d00 | 69 6f 6e 20 42 61 73 65 29 60 20 74 68 61 74 20 75 73 65 64 20 74 68 69 73 20 69 6e 74 65 72 66 | ion.Base)`.that.used.this.interf |
| 80d20 | 61 63 65 20 74 6f 20 72 65 61 63 68 20 74 68 65 20 6e 65 78 74 20 68 6f 70 2e 20 49 6e 20 67 65 | ace.to.reach.the.next.hop..In.ge |
| 80d40 | 6e 65 72 61 6c 2c 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 | neral,.static.routes.should.only |
| 80d60 | 20 62 65 20 75 73 65 64 20 66 6f 72 20 76 65 72 79 20 73 69 6d 70 6c 65 20 6e 65 74 77 6f 72 6b | .be.used.for.very.simple.network |
| 80d80 | 20 74 6f 70 6f 6c 6f 67 69 65 73 2c 20 6f 72 20 74 6f 20 6f 76 65 72 72 69 64 65 20 74 68 65 20 | .topologies,.or.to.override.the. |
| 80da0 | 62 65 68 61 76 69 6f 72 20 6f 66 20 61 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 | behavior.of.a.dynamic.routing.pr |
| 80dc0 | 6f 74 6f 63 6f 6c 20 66 6f 72 20 61 20 73 6d 61 6c 6c 20 6e 75 6d 62 65 72 20 6f 66 20 72 6f 75 | otocol.for.a.small.number.of.rou |
| 80de0 | 74 65 73 2e 20 54 68 65 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 72 6f 75 74 65 | tes..The.collection.of.all.route |
| 80e00 | 73 20 74 68 65 20 72 6f 75 74 65 72 20 68 61 73 20 6c 65 61 72 6e 65 64 20 66 72 6f 6d 20 69 74 | s.the.router.has.learned.from.it |
| 80e20 | 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 72 20 66 72 6f 6d 20 69 74 73 20 64 79 6e 61 | s.configuration.or.from.its.dyna |
| 80e40 | 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 69 73 20 73 74 6f 72 65 64 20 | mic.routing.protocols.is.stored. |
| 80e60 | 69 6e 20 74 68 65 20 52 49 42 2e 20 55 6e 69 63 61 73 74 20 72 6f 75 74 65 73 20 61 72 65 20 64 | in.the.RIB..Unicast.routes.are.d |
| 80e80 | 69 72 65 63 74 6c 79 20 75 73 65 64 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 66 6f | irectly.used.to.determine.the.fo |
| 80ea0 | 72 77 61 72 64 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 75 6e 69 63 61 73 74 20 | rwarding.table.used.for.unicast. |
| 80ec0 | 70 61 63 6b 65 74 20 66 6f 72 77 61 72 64 69 6e 67 2e 00 53 74 61 74 69 63 20 72 6f 75 74 65 73 | packet.forwarding..Static.routes |
| 80ee0 | 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 72 65 66 65 72 65 6e 63 69 6e 67 20 74 | .can.be.configured.referencing.t |
| 80f00 | 68 65 20 74 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 3b 20 66 6f 72 20 65 78 61 6d 70 6c 65 | he.tunnel.interface;.for.example |
| 80f20 | 2c 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 75 73 65 20 61 20 6e 65 | ,.the.local.router.will.use.a.ne |
| 80f40 | 74 77 6f 72 6b 20 6f 66 20 31 30 2e 30 2e 30 2e 30 2f 31 36 2c 20 77 68 69 6c 65 20 74 68 65 20 | twork.of.10.0.0.0/16,.while.the. |
| 80f60 | 72 65 6d 6f 74 65 20 68 61 73 20 61 20 6e 65 74 77 6f 72 6b 20 6f 66 20 31 30 2e 31 2e 30 2e 30 | remote.has.a.network.of.10.1.0.0 |
| 80f80 | 2f 31 36 3a 00 53 74 61 74 69 6f 6e 20 6d 6f 64 65 20 61 63 74 73 20 61 73 20 61 20 57 69 2d 46 | /16:.Station.mode.acts.as.a.Wi-F |
| 80fa0 | 69 20 63 6c 69 65 6e 74 20 61 63 63 65 73 73 69 6e 67 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 | i.client.accessing.the.network.t |
| 80fc0 | 68 72 6f 75 67 68 20 61 6e 20 61 76 61 69 6c 61 62 6c 65 20 57 41 50 00 53 74 61 74 69 6f 6e 20 | hrough.an.available.WAP.Station. |
| 80fe0 | 73 75 70 70 6f 72 74 73 20 72 65 63 65 69 76 69 6e 67 20 56 48 54 20 76 61 72 69 61 6e 74 20 48 | supports.receiving.VHT.variant.H |
| 81000 | 54 20 43 6f 6e 74 72 6f 6c 20 66 69 65 6c 64 00 53 74 61 74 75 73 00 53 74 69 63 6b 79 20 43 6f | T.Control.field.Status.Sticky.Co |
| 81020 | 6e 6e 65 63 74 69 6f 6e 73 00 53 74 6f 72 61 67 65 20 6f 66 20 72 6f 75 74 65 20 75 70 64 61 74 | nnections.Storage.of.route.updat |
| 81040 | 65 73 20 75 73 65 73 20 6d 65 6d 6f 72 79 2e 20 49 66 20 79 6f 75 20 65 6e 61 62 6c 65 20 73 6f | es.uses.memory..If.you.enable.so |
| 81060 | 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 6e 62 6f 75 6e 64 20 66 6f 72 20 6d | ft.reconfiguration.inbound.for.m |
| 81080 | 75 6c 74 69 70 6c 65 20 6e 65 69 67 68 62 6f 72 73 2c 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 | ultiple.neighbors,.the.amount.of |
| 810a0 | 20 6d 65 6d 6f 72 79 20 75 73 65 64 20 63 61 6e 20 62 65 63 6f 6d 65 20 73 69 67 6e 69 66 69 63 | .memory.used.can.become.signific |
| 810c0 | 61 6e 74 2e 00 53 75 66 66 69 78 65 73 00 53 75 6d 6d 61 72 69 73 61 74 69 6f 6e 20 73 74 61 72 | ant..Suffixes.Summarisation.star |
| 810e0 | 74 73 20 6f 6e 6c 79 20 61 66 74 65 72 20 74 68 69 73 20 64 65 6c 61 79 20 74 69 6d 65 72 20 65 | ts.only.after.this.delay.timer.e |
| 81100 | 78 70 69 72 79 2e 00 53 75 70 70 6f 72 74 65 64 20 4d 6f 64 75 6c 65 73 00 53 75 70 70 6f 72 74 | xpiry..Supported.Modules.Support |
| 81120 | 65 64 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 73 65 74 2e 00 53 75 70 70 6f 72 74 65 64 20 | ed.channel.width.set..Supported. |
| 81140 | 64 61 65 6d 6f 6e 73 3a 00 53 75 70 70 6f 72 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 | daemons:.Supported.interface.typ |
| 81160 | 65 73 3a 00 53 75 70 70 6f 72 74 65 64 20 72 65 6d 6f 74 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 | es:.Supported.remote.protocols.a |
| 81180 | 72 65 20 46 54 50 2c 20 46 54 50 53 2c 20 48 54 54 50 2c 20 48 54 54 50 53 2c 20 53 43 50 2f 53 | re.FTP,.FTPS,.HTTP,.HTTPS,.SCP/S |
| 811a0 | 46 54 50 20 61 6e 64 20 54 46 54 50 2e 00 53 75 70 70 6f 72 74 65 64 20 76 65 72 73 69 6f 6e 73 | FTP.and.TFTP..Supported.versions |
| 811c0 | 20 6f 66 20 52 49 50 20 61 72 65 3a 00 53 75 70 70 6f 72 74 73 20 61 73 20 48 45 4c 50 45 52 20 | .of.RIP.are:.Supports.as.HELPER. |
| 811e0 | 66 6f 72 20 63 6f 6e 66 69 67 75 72 65 64 20 67 72 61 63 65 20 70 65 72 69 6f 64 2e 00 53 75 70 | for.configured.grace.period..Sup |
| 81200 | 70 6f 73 65 20 74 68 65 20 4c 45 46 54 20 72 6f 75 74 65 72 20 68 61 73 20 65 78 74 65 72 6e 61 | pose.the.LEFT.router.has.externa |
| 81220 | 6c 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 20 6f 6e 20 69 74 73 20 65 74 68 30 | l.address.192.0.2.10.on.its.eth0 |
| 81240 | 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 74 68 65 20 52 49 47 48 54 20 72 6f 75 74 65 72 | .interface,.and.the.RIGHT.router |
| 81260 | 20 69 73 20 32 30 33 2e 30 2e 31 31 33 2e 34 35 00 53 75 70 70 6f 73 65 20 79 6f 75 20 77 61 6e | .is.203.0.113.45.Suppose.you.wan |
| 81280 | 74 20 74 6f 20 75 73 65 20 31 30 2e 32 33 2e 31 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 20 66 6f | t.to.use.10.23.1.0/24.network.fo |
| 812a0 | 72 20 63 6c 69 65 6e 74 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 73 20 61 6e 64 20 61 6c | r.client.tunnel.endpoints.and.al |
| 812c0 | 6c 20 63 6c 69 65 6e 74 20 73 75 62 6e 65 74 73 20 62 65 6c 6f 6e 67 20 74 6f 20 31 30 2e 32 33 | l.client.subnets.belong.to.10.23 |
| 812e0 | 2e 30 2e 30 2f 32 30 2e 20 41 6c 6c 20 63 6c 69 65 6e 74 73 20 6e 65 65 64 20 61 63 63 65 73 73 | .0.0/20..All.clients.need.access |
| 81300 | 20 74 6f 20 74 68 65 20 31 39 32 2e 31 36 38 2e 30 2e 30 2f 31 36 20 6e 65 74 77 6f 72 6b 2e 00 | .to.the.192.168.0.0/16.network.. |
| 81320 | 53 75 70 70 72 65 73 73 20 73 65 6e 64 69 6e 67 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f | Suppress.sending.Capability.Nego |
| 81340 | 74 69 61 74 69 6f 6e 20 61 73 20 4f 50 45 4e 20 6d 65 73 73 61 67 65 20 6f 70 74 69 6f 6e 61 6c | tiation.as.OPEN.message.optional |
| 81360 | 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 74 68 65 20 70 65 65 72 2e 20 54 68 69 73 20 63 6f 6d | .parameter.to.the.peer..This.com |
| 81380 | 6d 61 6e 64 20 6f 6e 6c 79 20 61 66 66 65 63 74 73 20 74 68 65 20 70 65 65 72 20 69 73 20 63 6f | mand.only.affects.the.peer.is.co |
| 813a0 | 6e 66 69 67 75 72 65 64 20 6f 74 68 65 72 20 74 68 61 6e 20 49 50 76 34 20 75 6e 69 63 61 73 74 | nfigured.other.than.IPv4.unicast |
| 813c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 53 75 72 69 63 61 74 61 20 46 65 61 74 75 72 65 | .configuration..Suricata.Feature |
| 813e0 | 73 00 53 75 72 69 63 61 74 61 20 61 6e 64 20 56 79 4f 53 20 61 72 65 20 70 6f 77 65 72 66 75 6c | s.Suricata.and.VyOS.are.powerful |
| 81400 | 20 74 6f 6f 6c 73 20 66 6f 72 20 65 6e 73 75 72 69 6e 67 20 6e 65 74 77 6f 72 6b 20 73 65 63 75 | .tools.for.ensuring.network.secu |
| 81420 | 72 69 74 79 20 61 6e 64 20 74 72 61 66 66 69 63 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 53 75 72 | rity.and.traffic.management..Sur |
| 81440 | 69 63 61 74 61 20 69 73 20 61 6e 20 6f 70 65 6e 2d 73 6f 75 72 63 65 20 69 6e 74 72 75 73 69 6f | icata.is.an.open-source.intrusio |
| 81460 | 6e 20 64 65 74 65 63 74 69 6f 6e 20 61 6e 64 20 70 72 65 76 65 6e 74 69 6f 6e 20 73 79 73 74 65 | n.detection.and.prevention.syste |
| 81480 | 6d 20 28 49 44 53 2f 49 50 53 29 20 74 68 61 74 20 61 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 | m.(IDS/IPS).that.analyzes.networ |
| 814a0 | 6b 20 70 61 63 6b 65 74 73 20 69 6e 20 72 65 61 6c 2d 74 69 6d 65 2e 00 53 79 6e 61 6d 69 63 20 | k.packets.in.real-time..Synamic. |
| 814c0 | 69 6e 73 74 72 75 63 74 73 20 74 6f 20 66 6f 72 77 61 72 64 20 74 6f 20 61 6c 6c 20 70 65 65 72 | instructs.to.forward.to.all.peer |
| 814e0 | 73 20 77 68 69 63 68 20 77 65 20 68 61 76 65 20 61 20 64 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 | s.which.we.have.a.direct.connect |
| 81500 | 69 6f 6e 20 77 69 74 68 2e 20 41 6c 74 65 72 6e 61 74 69 76 65 6c 79 2c 20 79 6f 75 20 63 61 6e | ion.with..Alternatively,.you.can |
| 81520 | 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 76 65 20 6d 75 6c 74 69 70 6c 65 20 | .specify.the.directive.multiple. |
| 81540 | 74 69 6d 65 73 20 66 6f 72 20 65 61 63 68 20 70 72 6f 74 6f 63 6f 6c 2d 61 64 64 72 65 73 73 20 | times.for.each.protocol-address. |
| 81560 | 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 20 73 68 6f 75 6c 64 20 62 65 20 | the.multicast.traffic.should.be. |
| 81580 | 73 65 6e 74 20 74 6f 2e 00 53 79 6e 63 20 67 72 6f 75 70 73 00 53 79 6e 63 68 72 6f 6e 69 7a 65 | sent.to..Sync.groups.Synchronize |
| 815a0 | 20 74 68 65 20 74 69 6d 65 2d 7a 6f 6e 65 20 61 6e 64 20 4f 53 50 46 20 63 6f 6e 66 69 67 75 72 | .the.time-zone.and.OSPF.configur |
| 815c0 | 61 74 69 6f 6e 20 66 72 6f 6d 20 52 6f 75 74 65 72 20 41 20 74 6f 20 52 6f 75 74 65 72 20 42 00 | ation.from.Router.A.to.Router.B. |
| 815e0 | 53 79 6e 70 72 6f 78 79 00 53 79 6e 70 72 6f 78 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 53 79 | Synproxy.Synproxy.connections.Sy |
| 81600 | 6e 70 72 6f 78 79 20 72 65 6c 69 65 73 20 6f 6e 20 73 79 6e 63 6f 6f 6b 69 65 73 20 61 6e 64 20 | nproxy.relies.on.syncookies.and. |
| 81620 | 54 43 50 20 74 69 6d 65 73 74 61 6d 70 73 2c 20 65 6e 73 75 72 65 20 74 68 65 73 65 20 61 72 65 | TCP.timestamps,.ensure.these.are |
| 81640 | 20 65 6e 61 62 6c 65 64 00 53 79 6e 74 61 78 20 68 61 73 20 63 68 61 6e 67 65 64 20 66 72 6f 6d | .enabled.Syntax.has.changed.from |
| 81660 | 20 56 79 4f 53 20 31 2e 32 20 28 63 72 75 78 29 20 61 6e 64 20 69 74 20 77 69 6c 6c 20 62 65 20 | .VyOS.1.2.(crux).and.it.will.be. |
| 81680 | 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6d 69 67 72 61 74 65 64 20 64 75 72 69 6e 67 20 61 6e | automatically.migrated.during.an |
| 816a0 | 20 75 70 67 72 61 64 65 2e 00 53 79 73 63 74 6c 00 53 79 73 6c 6f 67 00 53 79 73 6c 6f 67 20 73 | .upgrade..Sysctl.Syslog.Syslog.s |
| 816c0 | 75 70 70 6f 72 74 73 20 6c 6f 67 67 69 6e 67 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 74 61 72 67 | upports.logging.to.multiple.targ |
| 816e0 | 65 74 73 2c 20 74 68 6f 73 65 20 74 61 72 67 65 74 73 20 63 6f 75 6c 64 20 62 65 20 61 20 70 6c | ets,.those.targets.could.be.a.pl |
| 81700 | 61 69 6e 20 66 69 6c 65 20 6f 6e 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 | ain.file.on.your.VyOS.installati |
| 81720 | 6f 6e 20 69 74 73 65 6c 66 2c 20 61 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 20 6f 72 20 61 | on.itself,.a.serial.console.or.a |
| 81740 | 20 72 65 6d 6f 74 65 20 73 79 73 6c 6f 67 20 73 65 72 76 65 72 20 77 68 69 63 68 20 69 73 20 72 | .remote.syslog.server.which.is.r |
| 81760 | 65 61 63 68 65 64 20 76 69 61 20 3a 61 62 62 72 3a 60 49 50 20 28 49 6e 74 65 72 6e 65 74 20 50 | eached.via.:abbr:`IP.(Internet.P |
| 81780 | 72 6f 74 6f 63 6f 6c 29 60 20 55 44 50 2f 54 43 50 2e 00 53 79 73 6c 6f 67 20 75 73 65 73 20 6c | rotocol)`.UDP/TCP..Syslog.uses.l |
| 817a0 | 6f 67 72 6f 74 61 74 65 20 74 6f 20 72 6f 74 61 74 65 20 6c 6f 67 66 69 6c 65 73 20 61 66 74 65 | ogrotate.to.rotate.logfiles.afte |
| 817c0 | 72 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 67 69 76 65 73 20 62 79 74 65 73 2e 20 57 65 20 6b 65 | r.a.number.of.gives.bytes..We.ke |
| 817e0 | 65 70 20 61 73 20 6d 61 6e 79 20 61 73 20 60 3c 6e 75 6d 62 65 72 3e 60 20 72 6f 74 61 74 65 64 | ep.as.many.as.`<number>`.rotated |
| 81800 | 20 66 69 6c 65 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 20 6f 6e | .file.before.they.are.deleted.on |
| 81820 | 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 79 73 6c 6f 67 20 75 73 65 73 20 6c 6f 67 72 6f 74 61 | .the.system..Syslog.uses.logrota |
| 81840 | 74 65 20 74 6f 20 72 6f 74 61 74 65 20 6c 6f 67 69 6c 65 73 20 61 66 74 65 72 20 61 20 6e 75 6d | te.to.rotate.logiles.after.a.num |
| 81860 | 62 65 72 20 6f 66 20 67 69 76 65 73 20 62 79 74 65 73 2e 20 57 65 20 6b 65 65 70 20 61 73 20 6d | ber.of.gives.bytes..We.keep.as.m |
| 81880 | 61 6e 79 20 61 73 20 60 3c 6e 75 6d 62 65 72 3e 60 20 72 6f 74 61 74 65 64 20 66 69 6c 65 20 62 | any.as.`<number>`.rotated.file.b |
| 818a0 | 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 20 6f 6e 20 74 68 65 20 73 79 | efore.they.are.deleted.on.the.sy |
| 818c0 | 73 74 65 6d 2e 00 53 79 73 6c 6f 67 20 77 69 6c 6c 20 77 72 69 74 65 20 60 3c 73 69 7a 65 3e 60 | stem..Syslog.will.write.`<size>` |
| 818e0 | 20 6b 69 6c 6f 62 79 74 65 73 20 69 6e 74 6f 20 74 68 65 20 66 69 6c 65 20 73 70 65 63 69 66 69 | .kilobytes.into.the.file.specifi |
| 81900 | 65 64 20 62 79 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 2e 20 41 66 74 65 72 20 74 68 69 73 20 6c | ed.by.`<filename>`..After.this.l |
| 81920 | 69 6d 69 74 20 68 61 73 20 62 65 65 6e 20 72 65 61 63 68 65 64 2c 20 74 68 65 20 63 75 73 74 6f | imit.has.been.reached,.the.custo |
| 81940 | 6d 20 66 69 6c 65 20 69 73 20 22 72 6f 74 61 74 65 64 22 20 62 79 20 6c 6f 67 72 6f 74 61 74 65 | m.file.is."rotated".by.logrotate |
| 81960 | 20 61 6e 64 20 61 20 6e 65 77 20 63 75 73 74 6f 6d 20 66 69 6c 65 20 69 73 20 63 72 65 61 74 65 | .and.a.new.custom.file.is.create |
| 81980 | 64 2e 00 53 79 73 74 65 6d 00 53 79 73 74 65 6d 20 44 4e 53 00 53 79 73 74 65 6d 20 44 69 73 70 | d..System.System.DNS.System.Disp |
| 819a0 | 6c 61 79 20 28 4c 43 44 29 00 53 79 73 74 65 6d 20 4e 61 6d 65 20 61 6e 64 20 44 65 73 63 72 69 | lay.(LCD).System.Name.and.Descri |
| 819c0 | 70 74 69 6f 6e 00 53 79 73 74 65 6d 20 50 72 6f 78 79 00 53 79 73 74 65 6d 20 57 69 64 65 20 63 | ption.System.Proxy.System.Wide.c |
| 819e0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 79 73 74 65 6d 20 63 61 70 61 62 69 6c 69 74 69 65 73 | onfiguration.System.capabilities |
| 81a00 | 20 28 73 77 69 74 63 68 69 6e 67 2c 20 72 6f 75 74 69 6e 67 2c 20 65 74 63 2e 29 00 53 79 73 74 | .(switching,.routing,.etc.).Syst |
| 81a20 | 65 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 00 53 79 73 74 65 6d | em.configuration.commands.System |
| 81a40 | 20 64 61 65 6d 6f 6e 73 00 53 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 31 39 | .daemons.System.identifier:.``19 |
| 81a60 | 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 20 2d 20 66 6f 72 20 73 79 73 74 65 6d 20 69 64 65 6e | 21.6800.1002``.-.for.system.iden |
| 81a80 | 74 69 66 69 65 72 73 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 6f 20 75 73 65 20 49 50 20 61 | tifiers.we.recommend.to.use.IP.a |
| 81aa0 | 64 64 72 65 73 73 20 6f 72 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 | ddress.or.MAC.address.of.the.rou |
| 81ac0 | 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 65 20 77 61 79 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 | ter.itself..The.way.to.construct |
| 81ae0 | 20 74 68 69 73 20 69 73 20 74 6f 20 6b 65 65 70 20 61 6c 6c 20 6f 66 20 74 68 65 20 7a 65 72 6f | .this.is.to.keep.all.of.the.zero |
| 81b00 | 65 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 49 50 20 61 64 64 72 65 73 73 2c 20 61 6e 64 | es.of.the.router.IP.address,.and |
| 81b20 | 20 74 68 65 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 65 72 69 6f 64 73 20 66 72 6f 6d 20 62 65 | .then.change.the.periods.from.be |
| 81b40 | 69 6e 67 20 65 76 65 72 79 20 74 68 72 65 65 20 6e 75 6d 62 65 72 73 20 74 6f 20 65 76 65 72 79 | ing.every.three.numbers.to.every |
| 81b60 | 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 74 68 61 74 20 | .four.numbers..The.address.that. |
| 81b80 | 69 73 20 6c 69 73 74 65 64 20 68 65 72 65 20 69 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 32 60 | is.listed.here.is.``192.168.1.2` |
| 81ba0 | 60 2c 20 77 68 69 63 68 20 69 66 20 65 78 70 61 6e 64 65 64 20 77 69 6c 6c 20 74 75 72 6e 20 69 | `,.which.if.expanded.will.turn.i |
| 81bc0 | 6e 74 6f 20 60 60 31 39 32 2e 31 36 38 2e 30 30 31 2e 30 30 32 60 60 2e 20 54 68 65 6e 20 61 6c | nto.``192.168.001.002``..Then.al |
| 81be0 | 6c 20 6f 6e 65 20 68 61 73 20 74 6f 20 64 6f 20 69 73 20 6d 6f 76 65 20 74 68 65 20 64 6f 74 73 | l.one.has.to.do.is.move.the.dots |
| 81c00 | 20 74 6f 20 68 61 76 65 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 20 69 6e 73 74 65 61 64 20 6f 66 | .to.have.four.numbers.instead.of |
| 81c20 | 20 74 68 72 65 65 2e 20 54 68 69 73 20 67 69 76 65 73 20 75 73 20 60 60 31 39 32 31 2e 36 38 30 | .three..This.gives.us.``1921.680 |
| 81c40 | 30 2e 31 30 30 32 60 60 2e 00 53 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 31 | 0.1002``..System.identifier:.``1 |
| 81c60 | 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 20 2d 20 66 6f 72 20 73 79 73 74 65 6d 20 69 64 65 | 921.6800.1002``.-.for.system.ide |
| 81c80 | 74 69 66 69 65 72 73 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 6f 20 75 73 65 20 49 50 20 61 | tifiers.we.recommend.to.use.IP.a |
| 81ca0 | 64 64 72 65 73 73 20 6f 72 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 | ddress.or.MAC.address.of.the.rou |
| 81cc0 | 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 65 20 77 61 79 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 | ter.itself..The.way.to.construct |
| 81ce0 | 20 74 68 69 73 20 69 73 20 74 6f 20 6b 65 65 70 20 61 6c 6c 20 6f 66 20 74 68 65 20 7a 65 72 6f | .this.is.to.keep.all.of.the.zero |
| 81d00 | 65 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 49 50 20 61 64 64 72 65 73 73 2c 20 61 6e 64 | es.of.the.router.IP.address,.and |
| 81d20 | 20 74 68 65 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 65 72 69 6f 64 73 20 66 72 6f 6d 20 62 65 | .then.change.the.periods.from.be |
| 81d40 | 69 6e 67 20 65 76 65 72 79 20 74 68 72 65 65 20 6e 75 6d 62 65 72 73 20 74 6f 20 65 76 65 72 79 | ing.every.three.numbers.to.every |
| 81d60 | 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 74 68 61 74 20 | .four.numbers..The.address.that. |
| 81d80 | 69 73 20 6c 69 73 74 65 64 20 68 65 72 65 20 69 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 32 60 | is.listed.here.is.``192.168.1.2` |
| 81da0 | 60 2c 20 77 68 69 63 68 20 69 66 20 65 78 70 61 6e 64 65 64 20 77 69 6c 6c 20 74 75 72 6e 20 69 | `,.which.if.expanded.will.turn.i |
| 81dc0 | 6e 74 6f 20 60 60 31 39 32 2e 31 36 38 2e 30 30 31 2e 30 30 32 60 60 2e 20 54 68 65 6e 20 61 6c | nto.``192.168.001.002``..Then.al |
| 81de0 | 6c 20 6f 6e 65 20 68 61 73 20 74 6f 20 64 6f 20 69 73 20 6d 6f 76 65 20 74 68 65 20 64 6f 74 73 | l.one.has.to.do.is.move.the.dots |
| 81e00 | 20 74 6f 20 68 61 76 65 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 20 69 6e 73 74 65 61 64 20 6f 66 | .to.have.four.numbers.instead.of |
| 81e20 | 20 74 68 72 65 65 2e 20 54 68 69 73 20 67 69 76 65 73 20 75 73 20 60 60 31 39 32 31 2e 36 38 30 | .three..This.gives.us.``1921.680 |
| 81e40 | 30 2e 31 30 30 32 60 60 2e 00 53 79 73 74 65 6d 20 69 73 20 75 6e 75 73 61 62 6c 65 20 2d 20 61 | 0.1002``..System.is.unusable.-.a |
| 81e60 | 20 70 61 6e 69 63 20 63 6f 6e 64 69 74 69 6f 6e 00 54 41 43 41 43 53 20 45 78 61 6d 70 6c 65 00 | .panic.condition.TACACS.Example. |
| 81e80 | 54 41 43 41 43 53 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 39 30 37 60 | TACACS.is.defined.in.:rfc:`8907` |
| 81ea0 | 2e 00 54 41 43 41 43 53 20 73 65 72 76 65 72 73 20 63 6f 75 6c 64 20 62 65 20 68 61 72 64 65 6e | ..TACACS.servers.could.be.harden |
| 81ec0 | 65 64 20 62 79 20 6f 6e 6c 79 20 61 6c 6c 6f 77 69 6e 67 20 63 65 72 74 61 69 6e 20 49 50 20 61 | ed.by.only.allowing.certain.IP.a |
| 81ee0 | 64 64 72 65 73 73 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 2e 20 41 73 20 6f 66 20 74 68 69 73 20 | ddresses.to.connect..As.of.this. |
| 81f00 | 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 65 61 63 68 20 54 41 43 41 43 | the.source.address.of.each.TACAC |
| 81f20 | 53 20 71 75 65 72 79 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 54 41 43 41 43 | S.query.can.be.configured..TACAC |
| 81f40 | 53 2b 00 54 42 44 00 54 43 50 20 26 20 55 44 50 20 73 65 72 76 69 63 65 73 20 72 75 6e 6e 69 6e | S+.TBD.TCP.&.UDP.services.runnin |
| 81f60 | 67 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 20 63 6f 6e 74 65 78 74 20 28 69 65 | g.in.the.default.VRF.context.(ie |
| 81f80 | 2e 2c 20 6e 6f 74 20 62 6f 75 6e 64 20 74 6f 20 61 6e 79 20 56 52 46 20 64 65 76 69 63 65 29 20 | .,.not.bound.to.any.VRF.device). |
| 81fa0 | 63 61 6e 20 77 6f 72 6b 20 61 63 72 6f 73 73 20 61 6c 6c 20 56 52 46 20 64 6f 6d 61 69 6e 73 20 | can.work.across.all.VRF.domains. |
| 81fc0 | 62 79 20 65 6e 61 62 6c 69 6e 67 20 74 68 69 73 20 6f 70 74 69 6f 6e 2e 00 54 43 50 20 63 68 65 | by.enabling.this.option..TCP.che |
| 81fe0 | 63 6b 73 00 54 46 54 50 20 53 65 72 76 65 72 00 54 61 67 20 69 73 20 74 68 65 20 6f 70 74 69 6f | cks.TFTP.Server.Tag.is.the.optio |
| 82000 | 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 2e 20 49 66 20 74 61 67 20 63 6f 6e 66 69 67 75 72 65 64 | nal.parameter..If.tag.configured |
| 82020 | 20 53 75 6d 6d 61 72 79 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 6f 72 69 67 69 6e 61 74 65 | .Summary.route.will.be.originate |
| 82040 | 64 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 61 67 2e 00 54 61 73 6b 20 | d.with.the.configured.tag..Task. |
| 82060 | 53 63 68 65 64 75 6c 65 72 00 54 65 6c 65 67 72 61 66 00 54 65 6c 65 67 72 61 66 20 63 61 6e 20 | Scheduler.Telegraf.Telegraf.can. |
| 82080 | 62 65 20 75 73 65 64 20 74 6f 20 73 65 6e 64 20 6c 6f 67 73 20 74 6f 20 4c 6f 6b 69 20 75 73 69 | be.used.to.send.logs.to.Loki.usi |
| 820a0 | 6e 67 20 74 61 67 73 20 61 73 20 6c 61 62 65 6c 73 2e 00 54 65 6c 65 67 72 61 66 20 6f 75 74 70 | ng.tags.as.labels..Telegraf.outp |
| 820c0 | 75 74 20 70 6c 75 67 69 6e 20 61 7a 75 72 65 2d 64 61 74 61 2d 65 78 70 6c 6f 72 65 72 5f 00 54 | ut.plugin.azure-data-explorer_.T |
| 820e0 | 65 6c 65 67 72 61 66 20 6f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 70 72 6f 6d 65 74 68 65 75 73 | elegraf.output.plugin.prometheus |
| 82100 | 2d 63 6c 69 65 6e 74 5f 00 54 65 6c 65 67 72 61 66 20 6f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 | -client_.Telegraf.output.plugin. |
| 82120 | 73 70 6c 75 6e 6b 5f 2e 20 48 54 54 50 20 45 76 65 6e 74 20 43 6f 6c 6c 65 63 74 6f 72 2e 00 54 | splunk_..HTTP.Event.Collector..T |
| 82140 | 65 6c 6c 20 50 49 4d 20 74 68 61 74 20 77 65 20 77 6f 75 6c 64 20 6e 6f 74 20 6c 69 6b 65 20 74 | ell.PIM.that.we.would.not.like.t |
| 82160 | 6f 20 75 73 65 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 72 6f 63 65 73 73 20 | o.use.this.interface.to.process. |
| 82180 | 62 6f 6f 74 73 74 72 61 70 20 6d 65 73 73 61 67 65 73 2e 00 54 65 6c 6c 20 50 49 4d 20 74 68 61 | bootstrap.messages..Tell.PIM.tha |
| 821a0 | 74 20 77 65 20 77 6f 75 6c 64 20 6e 6f 74 20 6c 69 6b 65 20 74 6f 20 75 73 65 20 74 68 69 73 20 | t.we.would.not.like.to.use.this. |
| 821c0 | 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 72 6f 63 65 73 73 20 75 6e 69 63 61 73 74 20 62 6f 6f | interface.to.process.unicast.boo |
| 821e0 | 74 73 74 72 61 70 20 6d 65 73 73 61 67 65 73 2e 00 54 65 6c 6c 20 68 6f 73 74 73 20 74 6f 20 75 | tstrap.messages..Tell.hosts.to.u |
| 82200 | 73 65 20 74 68 65 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 28 73 74 61 74 65 66 75 6c 29 20 70 | se.the.administered.(stateful).p |
| 82220 | 72 6f 74 6f 63 6f 6c 20 28 69 2e 65 2e 20 44 48 43 50 29 20 66 6f 72 20 61 75 74 6f 63 6f 6e 66 | rotocol.(i.e..DHCP).for.autoconf |
| 82240 | 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 6f 74 68 65 72 20 28 6e 6f 6e 2d 61 64 64 72 65 73 73 29 | iguration.of.other.(non-address) |
| 82260 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 54 65 6c 6c 20 68 6f 73 74 73 20 74 6f 20 75 73 65 20 74 | .information.Tell.hosts.to.use.t |
| 82280 | 68 65 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 73 74 61 74 65 66 75 6c 20 70 72 6f 74 6f 63 6f | he.administered.stateful.protoco |
| 822a0 | 6c 20 28 69 2e 65 2e 20 44 48 43 50 29 20 66 6f 72 20 61 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 | l.(i.e..DHCP).for.autoconfigurat |
| 822c0 | 69 6f 6e 00 54 65 6c 6c 20 74 68 65 20 41 50 20 74 68 61 74 20 61 6e 74 65 6e 6e 61 20 70 6f 73 | ion.Tell.the.AP.that.antenna.pos |
| 822e0 | 69 74 69 6f 6e 73 20 61 72 65 20 66 69 78 65 64 20 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 63 68 | itions.are.fixed.and.will.not.ch |
| 82300 | 61 6e 67 65 20 64 75 72 69 6e 67 20 74 68 65 20 6c 69 66 65 74 69 6d 65 20 6f 66 20 61 6e 20 61 | ange.during.the.lifetime.of.an.a |
| 82320 | 73 73 6f 63 69 61 74 69 6f 6e 2e 00 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 62 6c 65 20 74 68 | ssociation..Temporary.disable.th |
| 82340 | 69 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 | is.RADIUS.server..Temporary.disa |
| 82360 | 62 6c 65 20 74 68 69 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 49 74 20 77 6f 6e 27 74 | ble.this.RADIUS.server..It.won't |
| 82380 | 20 62 65 20 71 75 65 72 69 65 64 2e 00 54 65 6d 70 6f 72 61 72 79 20 64 69 73 61 62 6c 65 20 74 | .be.queried..Temporary.disable.t |
| 823a0 | 68 69 73 20 54 41 43 41 43 53 20 73 65 72 76 65 72 2e 20 49 74 20 77 6f 6e 27 74 20 62 65 20 71 | his.TACACS.server..It.won't.be.q |
| 823c0 | 75 65 72 69 65 64 2e 00 54 65 72 6d 69 6e 61 74 65 20 53 53 4c 00 54 65 73 74 20 63 6f 6e 6e 65 | ueried..Terminate.SSL.Test.conne |
| 823e0 | 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 | cting.given.connection-oriented. |
| 82400 | 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 | interface..`<interface>`.can.be. |
| 82420 | 60 60 70 70 70 6f 65 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 | ``pppoe0``.as.the.example..Test. |
| 82440 | 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 | connecting.given.connection-orie |
| 82460 | 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 | nted.interface..`<interface>`.ca |
| 82480 | 6e 20 62 65 20 60 60 73 73 74 70 63 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 | n.be.``sstpc0``.as.the.example.. |
| 824a0 | 54 65 73 74 20 64 69 73 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 | Test.disconnecting.given.connect |
| 824c0 | 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 | ion-oriented.interface..`<interf |
| 824e0 | 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 70 70 70 6f 65 30 60 60 20 61 73 20 74 68 65 20 65 | ace>`.can.be.``pppoe0``.as.the.e |
| 82500 | 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 64 69 73 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e | xample..Test.disconnecting.given |
| 82520 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 | .connection-oriented.interface.. |
| 82540 | 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 73 73 74 70 63 30 60 60 20 | `<interface>`.can.be.``sstpc0``. |
| 82560 | 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 66 72 6f 6d 20 74 68 65 20 49 50 | as.the.example..Test.from.the.IP |
| 82580 | 76 36 20 6f 6e 6c 79 20 63 6c 69 65 6e 74 3a 00 54 65 73 74 69 6e 67 20 53 53 54 50 00 54 65 73 | v6.only.client:.Testing.SSTP.Tes |
| 825a0 | 74 69 6e 67 20 61 6e 64 20 56 61 6c 69 64 61 74 69 6f 6e 00 54 68 61 6e 6b 73 20 74 6f 20 74 68 | ting.and.Validation.Thanks.to.th |
| 825c0 | 69 73 20 64 69 73 63 6f 76 65 72 79 2c 20 61 6e 79 20 73 75 62 73 65 71 75 65 6e 74 20 74 72 61 | is.discovery,.any.subsequent.tra |
| 825e0 | 66 66 69 63 20 62 65 74 77 65 65 6e 20 50 43 34 20 61 6e 64 20 50 43 35 20 77 69 6c 6c 20 6e 6f | ffic.between.PC4.and.PC5.will.no |
| 82600 | 74 20 62 65 20 75 73 69 6e 67 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 | t.be.using.the.multicast-address |
| 82620 | 20 62 65 74 77 65 65 6e 20 74 68 65 20 6c 65 61 76 65 73 20 61 73 20 74 68 65 79 20 62 6f 74 68 | .between.the.leaves.as.they.both |
| 82640 | 20 6b 6e 6f 77 20 62 65 68 69 6e 64 20 77 68 69 63 68 20 4c 65 61 66 20 74 68 65 20 50 43 73 20 | .know.behind.which.Leaf.the.PCs. |
| 82660 | 61 72 65 20 63 6f 6e 6e 65 63 74 65 64 2e 20 54 68 69 73 20 73 61 76 65 73 20 74 72 61 66 66 69 | are.connected..This.saves.traffi |
| 82680 | 63 20 61 73 20 6c 65 73 73 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 20 73 65 6e 74 | c.as.less.multicast.packets.sent |
| 826a0 | 20 72 65 64 75 63 65 73 20 74 68 65 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b | .reduces.the.load.on.the.network |
| 826c0 | 2c 20 77 68 69 63 68 20 69 6d 70 72 6f 76 65 73 20 73 63 61 6c 61 62 69 6c 69 74 79 20 77 68 65 | ,.which.improves.scalability.whe |
| 826e0 | 6e 20 6d 6f 72 65 20 6c 65 61 76 65 73 20 61 72 65 20 61 64 64 65 64 2e 00 54 68 61 74 20 69 73 | n.more.leaves.are.added..That.is |
| 82700 | 20 68 6f 77 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 64 6f 20 74 68 65 20 73 6f | .how.it.is.possible.to.do.the.so |
| 82720 | 2d 63 61 6c 6c 65 64 20 22 69 6e 67 72 65 73 73 20 73 68 61 70 69 6e 67 22 2e 00 54 68 61 74 20 | -called."ingress.shaping"..That. |
| 82740 | 6c 6f 6f 6b 73 20 67 6f 6f 64 20 2d 20 77 65 20 64 65 66 69 6e 65 64 20 32 20 74 75 6e 6e 65 6c | looks.good.-.we.defined.2.tunnel |
| 82760 | 73 20 61 6e 64 20 74 68 65 79 27 72 65 20 62 6f 74 68 20 75 70 20 61 6e 64 20 72 75 6e 6e 69 6e | s.and.they're.both.up.and.runnin |
| 82780 | 67 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 | g..The.:abbr:`ASN.(Autonomous.Sy |
| 827a0 | 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 65 73 73 65 | stem.Number)`.is.one.of.the.esse |
| 827c0 | 6e 74 69 61 6c 20 65 6c 65 6d 65 6e 74 73 20 6f 66 20 42 47 50 2e 20 42 47 50 20 69 73 20 61 20 | ntial.elements.of.BGP..BGP.is.a. |
| 827e0 | 64 69 73 74 61 6e 63 65 20 76 65 63 74 6f 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c | distance.vector.routing.protocol |
| 82800 | 2c 20 61 6e 64 20 74 68 65 20 41 53 2d 50 61 74 68 20 66 72 61 6d 65 77 6f 72 6b 20 70 72 6f 76 | ,.and.the.AS-Path.framework.prov |
| 82820 | 69 64 65 73 20 64 69 73 74 61 6e 63 65 20 76 65 63 74 6f 72 20 6d 65 74 72 69 63 20 61 6e 64 20 | ides.distance.vector.metric.and. |
| 82840 | 6c 6f 6f 70 20 64 65 74 65 63 74 69 6f 6e 20 74 6f 20 42 47 50 2e 00 54 68 65 20 3a 61 62 62 72 | loop.detection.to.BGP..The.:abbr |
| 82860 | 3a 60 44 4e 50 54 76 36 20 28 44 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 76 36 2d 74 6f 2d 49 50 | :`DNPTv6.(Destination.IPv6-to-IP |
| 82880 | 76 36 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 | v6.Network.Prefix.Translation)`. |
| 828a0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 | destination.address.translation. |
| 828c0 | 66 75 6e 63 74 69 6f 6e 20 69 73 20 75 73 65 64 20 69 6e 20 73 63 65 6e 61 72 69 6f 73 20 77 68 | function.is.used.in.scenarios.wh |
| 828e0 | 65 72 65 20 74 68 65 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e | ere.the.server.in.the.internal.n |
| 82900 | 65 74 77 6f 72 6b 20 70 72 6f 76 69 64 65 73 20 73 65 72 76 69 63 65 73 20 74 6f 20 74 68 65 20 | etwork.provides.services.to.the. |
| 82920 | 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 73 75 63 68 20 61 73 20 70 72 6f 76 69 64 | external.network,.such.as.provid |
| 82940 | 69 6e 67 20 57 65 62 20 73 65 72 76 69 63 65 73 20 6f 72 20 46 54 50 20 73 65 72 76 69 63 65 73 | ing.Web.services.or.FTP.services |
| 82960 | 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 42 79 20 63 6f 6e | .to.the.external.network..By.con |
| 82980 | 66 69 67 75 72 69 6e 67 20 74 68 65 20 6d 61 70 70 69 6e 67 20 72 65 6c 61 74 69 6f 6e 73 68 69 | figuring.the.mapping.relationshi |
| 829a0 | 70 20 62 65 74 77 65 65 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 73 65 72 76 65 72 20 61 64 | p.between.the.internal.server.ad |
| 829c0 | 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 | dress.and.the.external.network.a |
| 829e0 | 64 64 72 65 73 73 20 6f 6e 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 | ddress.on.the.external.network.s |
| 82a00 | 69 64 65 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 | ide.interface.of.the.NAT66.devic |
| 82a20 | 65 2c 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 75 73 65 72 73 20 63 61 6e 20 61 63 | e,.external.network.users.can.ac |
| 82a40 | 63 65 73 73 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 65 72 76 65 72 | cess.the.internal.network.server |
| 82a60 | 20 74 68 72 6f 75 67 68 20 74 68 65 20 64 65 73 69 67 6e 61 74 65 64 20 65 78 74 65 72 6e 61 6c | .through.the.designated.external |
| 82a80 | 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 4d 50 4c | .network.address..The.:abbr:`MPL |
| 82aa0 | 53 20 28 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 4c 61 62 65 6c 20 53 77 69 74 63 68 69 6e | S.(Multi-Protocol.Label.Switchin |
| 82ac0 | 67 29 60 20 61 72 63 68 69 74 65 63 74 75 72 65 20 64 6f 65 73 20 6e 6f 74 20 61 73 73 75 6d 65 | g)`.architecture.does.not.assume |
| 82ae0 | 20 61 20 73 69 6e 67 6c 65 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 63 72 65 61 74 65 20 4d 50 4c | .a.single.protocol.to.create.MPL |
| 82b00 | 53 20 70 61 74 68 73 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 4c 61 62 65 6c | S.paths..VyOS.supports.the.Label |
| 82b20 | 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 4c 44 50 29 20 61 73 20 | .Distribution.Protocol.(LDP).as. |
| 82b40 | 69 6d 70 6c 65 6d 65 6e 74 65 64 20 62 79 20 46 52 52 2c 20 62 61 73 65 64 20 6f 6e 20 3a 72 66 | implemented.by.FRR,.based.on.:rf |
| 82b60 | 63 3a 60 35 30 33 36 60 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 57 4c 41 4e 20 28 57 69 72 65 6c | c:`5036`..The.:abbr:`WLAN.(Wirel |
| 82b80 | 65 73 73 20 4c 41 4e 29 60 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 73 20 38 30 32 | ess.LAN)`.interface.provides.802 |
| 82ba0 | 2e 31 31 20 28 61 2f 62 2f 67 2f 6e 2f 61 63 29 20 77 69 72 65 6c 65 73 73 20 73 75 70 70 6f 72 | .11.(a/b/g/n/ac).wireless.suppor |
| 82bc0 | 74 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 | t.(commonly.referred.to.as.Wi-Fi |
| 82be0 | 29 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 63 6f 6d 70 61 74 69 62 6c 65 20 68 61 72 64 77 61 72 | ).by.means.of.compatible.hardwar |
| 82c00 | 65 2e 20 49 66 20 79 6f 75 72 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 69 74 2c | e..If.your.hardware.supports.it, |
| 82c20 | 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 67 69 63 61 6c 20 | .VyOS.supports.multiple.logical. |
| 82c40 | 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 20 70 65 72 20 70 68 79 73 69 63 61 6c | wireless.interfaces.per.physical |
| 82c60 | 20 64 65 76 69 63 65 2e 00 54 68 65 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 36 36 60 | .device..The.:ref:`source-nat66` |
| 82c80 | 20 72 75 6c 65 20 72 65 70 6c 61 63 65 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 | .rule.replaces.the.source.addres |
| 82ca0 | 73 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 61 6e 64 20 63 61 6c 63 75 6c 61 74 65 73 20 74 | s.of.the.packet.and.calculates.t |
| 82cc0 | 68 65 20 63 6f 6e 76 65 72 74 65 64 20 61 64 64 72 65 73 73 20 75 73 69 6e 67 20 74 68 65 20 70 | he.converted.address.using.the.p |
| 82ce0 | 72 65 66 69 78 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 72 75 6c 65 2e 00 54 68 65 | refix.specified.in.the.rule..The |
| 82d00 | 20 41 52 50 20 6d 6f 6e 69 74 6f 72 20 77 6f 72 6b 73 20 62 79 20 70 65 72 69 6f 64 69 63 61 6c | .ARP.monitor.works.by.periodical |
| 82d20 | 6c 79 20 63 68 65 63 6b 69 6e 67 20 74 68 65 20 73 6c 61 76 65 20 64 65 76 69 63 65 73 20 74 6f | ly.checking.the.slave.devices.to |
| 82d40 | 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 74 68 65 72 20 74 68 65 79 20 68 61 76 65 20 73 65 6e | .determine.whether.they.have.sen |
| 82d60 | 74 20 6f 72 20 72 65 63 65 69 76 65 64 20 74 72 61 66 66 69 63 20 72 65 63 65 6e 74 6c 79 20 28 | t.or.received.traffic.recently.( |
| 82d80 | 74 68 65 20 70 72 65 63 69 73 65 20 63 72 69 74 65 72 69 61 20 64 65 70 65 6e 64 73 20 75 70 6f | the.precise.criteria.depends.upo |
| 82da0 | 6e 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 6d 6f 64 65 2c 20 61 6e 64 20 74 68 65 20 73 74 61 74 | n.the.bonding.mode,.and.the.stat |
| 82dc0 | 65 20 6f 66 20 74 68 65 20 73 6c 61 76 65 29 2e 20 52 65 67 75 6c 61 72 20 74 72 61 66 66 69 63 | e.of.the.slave)..Regular.traffic |
| 82de0 | 20 69 73 20 67 65 6e 65 72 61 74 65 64 20 76 69 61 20 41 52 50 20 70 72 6f 62 65 73 20 69 73 73 | .is.generated.via.ARP.probes.iss |
| 82e00 | 75 65 64 20 66 6f 72 20 74 68 65 20 61 64 64 72 65 73 73 65 73 20 73 70 65 63 69 66 69 65 64 20 | ued.for.the.addresses.specified. |
| 82e20 | 62 79 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 72 70 2d 6d 6f 6e 69 74 6f 72 20 74 61 72 67 | by.the.:cfgcmd:`arp-monitor.targ |
| 82e40 | 65 74 60 20 6f 70 74 69 6f 6e 2e 00 54 68 65 20 41 53 50 20 68 61 73 20 64 6f 63 75 6d 65 6e 74 | et`.option..The.ASP.has.document |
| 82e60 | 65 64 20 74 68 65 69 72 20 49 50 53 65 63 20 72 65 71 75 69 72 65 6d 65 6e 74 73 3a 00 54 68 65 | ed.their.IPSec.requirements:.The |
| 82e80 | 20 42 47 50 20 72 6f 75 74 65 72 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 6e 65 20 6f | .BGP.router.can.connect.to.one.o |
| 82ea0 | 72 20 6d 6f 72 65 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 73 20 74 6f 20 72 65 63 | r.more.RPKI.cache.servers.to.rec |
| 82ec0 | 65 69 76 65 20 76 61 6c 69 64 61 74 65 64 20 70 72 65 66 69 78 20 74 6f 20 6f 72 69 67 69 6e 20 | eive.validated.prefix.to.origin. |
| 82ee0 | 41 53 20 6d 61 70 70 69 6e 67 73 2e 20 41 64 76 61 6e 63 65 64 20 66 61 69 6c 6f 76 65 72 20 63 | AS.mappings..Advanced.failover.c |
| 82f00 | 61 6e 20 62 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 62 79 20 73 65 72 76 65 72 20 73 6f 63 6b | an.be.implemented.by.server.sock |
| 82f20 | 65 74 73 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 | ets.with.different.preference.va |
| 82f40 | 6c 75 65 73 2e 00 54 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 73 | lues..The.CLI.configuration.is.s |
| 82f60 | 61 6d 65 20 61 73 20 6d 65 6e 74 69 6f 6e 65 64 20 69 6e 20 61 62 6f 76 65 20 61 72 74 69 63 6c | ame.as.mentioned.in.above.articl |
| 82f80 | 65 73 2e 20 54 68 65 20 6f 6e 6c 79 20 64 69 66 66 65 72 65 6e 63 65 20 69 73 2c 20 74 68 61 74 | es..The.only.difference.is,.that |
| 82fa0 | 20 65 61 63 68 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 2c 20 6d 75 73 | .each.routing.protocol.used,.mus |
| 82fc0 | 74 20 62 65 20 70 72 65 66 69 78 65 64 20 77 69 74 68 20 74 68 65 20 60 76 72 66 20 6e 61 6d 65 | t.be.prefixed.with.the.`vrf.name |
| 82fe0 | 20 3c 6e 61 6d 65 3e 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 65 20 43 4c 4e 53 20 61 64 64 72 65 | .<name>`.command..The.CLNS.addre |
| 83000 | 73 73 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 72 | ss.consists.of.the.following.par |
| 83020 | 74 73 3a 00 54 68 65 20 44 46 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 20 63 6f 6e 66 69 67 75 | ts:.The.DF.preference.is.configu |
| 83040 | 72 61 62 6c 65 20 70 65 72 2d 45 53 2e 00 54 68 65 20 44 48 43 50 20 75 6e 69 71 75 65 20 69 64 | rable.per-ES..The.DHCP.unique.id |
| 83060 | 65 6e 74 69 66 69 65 72 20 28 44 55 49 44 29 20 69 73 20 75 73 65 64 20 62 79 20 61 20 63 6c 69 | entifier.(DUID).is.used.by.a.cli |
| 83080 | 65 6e 74 20 74 6f 20 67 65 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 61 20 | ent.to.get.an.IP.address.from.a. |
| 830a0 | 44 48 43 50 76 36 20 73 65 72 76 65 72 2e 20 49 74 20 68 61 73 20 61 20 32 2d 62 79 74 65 20 44 | DHCPv6.server..It.has.a.2-byte.D |
| 830c0 | 55 49 44 20 74 79 70 65 20 66 69 65 6c 64 2c 20 61 6e 64 20 61 20 76 61 72 69 61 62 6c 65 2d 6c | UID.type.field,.and.a.variable-l |
| 830e0 | 65 6e 67 74 68 20 69 64 65 6e 74 69 66 69 65 72 20 66 69 65 6c 64 20 75 70 20 74 6f 20 31 32 38 | ength.identifier.field.up.to.128 |
| 83100 | 20 62 79 74 65 73 2e 20 49 74 73 20 61 63 74 75 61 6c 20 6c 65 6e 67 74 68 20 64 65 70 65 6e 64 | .bytes..Its.actual.length.depend |
| 83120 | 73 20 6f 6e 20 69 74 73 20 74 79 70 65 2e 20 54 68 65 20 73 65 72 76 65 72 20 63 6f 6d 70 61 72 | s.on.its.type..The.server.compar |
| 83140 | 65 73 20 74 68 65 20 44 55 49 44 20 77 69 74 68 20 69 74 73 20 64 61 74 61 62 61 73 65 20 61 6e | es.the.DUID.with.its.database.an |
| 83160 | 64 20 64 65 6c 69 76 65 72 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 61 74 61 20 28 61 | d.delivers.configuration.data.(a |
| 83180 | 64 64 72 65 73 73 2c 20 6c 65 61 73 65 20 74 69 6d 65 73 2c 20 44 4e 53 20 73 65 72 76 65 72 73 | ddress,.lease.times,.DNS.servers |
| 831a0 | 2c 20 65 74 63 2e 29 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 54 68 65 20 44 4e 20 61 6e | ,.etc.).to.the.client..The.DN.an |
| 831c0 | 64 20 70 61 73 73 77 6f 72 64 20 74 6f 20 62 69 6e 64 20 61 73 20 77 68 69 6c 65 20 70 65 72 66 | d.password.to.bind.as.while.perf |
| 831e0 | 6f 72 6d 69 6e 67 20 73 65 61 72 63 68 65 73 2e 00 54 68 65 20 44 4e 20 61 6e 64 20 70 61 73 73 | orming.searches..The.DN.and.pass |
| 83200 | 77 6f 72 64 20 74 6f 20 62 69 6e 64 20 61 73 20 77 68 69 6c 65 20 70 65 72 66 6f 72 6d 69 6e 67 | word.to.bind.as.while.performing |
| 83220 | 20 73 65 61 72 63 68 65 73 2e 20 41 73 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 6e 65 65 64 73 | .searches..As.the.password.needs |
| 83240 | 20 74 6f 20 62 65 20 70 72 69 6e 74 65 64 20 69 6e 20 70 6c 61 69 6e 20 74 65 78 74 20 69 6e 20 | .to.be.printed.in.plain.text.in. |
| 83260 | 79 6f 75 72 20 53 71 75 69 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 20 69 73 20 73 | your.Squid.configuration.it.is.s |
| 83280 | 74 72 6f 6e 67 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 61 20 61 63 63 | trongly.recommended.to.use.a.acc |
| 832a0 | 6f 75 6e 74 20 77 69 74 68 20 6d 69 6e 69 6d 61 6c 20 61 73 73 6f 63 69 61 74 65 64 20 70 72 69 | ount.with.minimal.associated.pri |
| 832c0 | 76 69 6c 65 67 65 73 2e 20 54 68 69 73 20 74 6f 20 6c 69 6d 69 74 20 74 68 65 20 64 61 6d 61 67 | vileges..This.to.limit.the.damag |
| 832e0 | 65 20 69 6e 20 63 61 73 65 20 73 6f 6d 65 6f 6e 65 20 63 6f 75 6c 64 20 67 65 74 20 68 6f 6c 64 | e.in.case.someone.could.get.hold |
| 83300 | 20 6f 66 20 61 20 63 6f 70 79 20 6f 66 20 79 6f 75 72 20 53 71 75 69 64 20 63 6f 6e 66 69 67 75 | .of.a.copy.of.your.Squid.configu |
| 83320 | 72 61 74 69 6f 6e 20 66 69 6c 65 2e 00 54 68 65 20 46 51 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 | ration.file..The.FQ-CoDel.policy |
| 83340 | 20 64 69 73 74 72 69 62 75 74 65 73 20 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 74 6f 20 31 30 | .distributes.the.traffic.into.10 |
| 83360 | 32 34 20 46 49 46 4f 20 71 75 65 75 65 73 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 70 72 6f 76 | 24.FIFO.queues.and.tries.to.prov |
| 83380 | 69 64 65 20 67 6f 6f 64 20 73 65 72 76 69 63 65 20 62 65 74 77 65 65 6e 20 61 6c 6c 20 6f 66 20 | ide.good.service.between.all.of. |
| 833a0 | 74 68 65 6d 2e 20 49 74 20 61 6c 73 6f 20 74 72 69 65 73 20 74 6f 20 6b 65 65 70 20 74 68 65 20 | them..It.also.tries.to.keep.the. |
| 833c0 | 6c 65 6e 67 74 68 20 6f 66 20 61 6c 6c 20 74 68 65 20 71 75 65 75 65 73 20 73 68 6f 72 74 2e 00 | length.of.all.the.queues.short.. |
| 833e0 | 54 68 65 20 48 54 54 50 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 20 6f 6e 20 54 43 50 20 70 | The.HTTP.service.listen.on.TCP.p |
| 83400 | 6f 72 74 20 38 30 2e 00 54 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 69 6e | ort.80..The.IP.address.of.the.in |
| 83420 | 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 20 77 65 20 77 69 73 68 20 74 6f 20 66 6f 72 77 61 72 64 | ternal.system.we.wish.to.forward |
| 83440 | 20 74 72 61 66 66 69 63 20 74 6f 2e 00 54 68 65 20 49 6e 74 65 6c 20 41 58 32 30 30 20 63 61 72 | .traffic.to..The.Intel.AX200.car |
| 83460 | 64 20 64 6f 65 73 20 6e 6f 74 20 77 6f 72 6b 20 6f 75 74 20 6f 66 20 74 68 65 20 62 6f 78 20 69 | d.does.not.work.out.of.the.box.i |
| 83480 | 6e 20 41 50 20 6d 6f 64 65 2c 20 73 65 65 20 68 74 74 70 73 3a 2f 2f 75 6e 69 78 2e 73 74 61 63 | n.AP.mode,.see.https://unix.stac |
| 834a0 | 6b 65 78 63 68 61 6e 67 65 2e 63 6f 6d 2f 71 75 65 73 74 69 6f 6e 73 2f 35 39 38 32 37 35 2f 69 | kexchange.com/questions/598275/i |
| 834c0 | 6e 74 65 6c 2d 61 78 32 30 30 2d 61 70 2d 6d 6f 64 65 2e 20 59 6f 75 20 63 61 6e 20 73 74 69 6c | ntel-ax200-ap-mode..You.can.stil |
| 834e0 | 6c 20 70 75 74 20 74 68 69 73 20 63 61 72 64 20 69 6e 74 6f 20 41 50 20 6d 6f 64 65 20 75 73 69 | l.put.this.card.into.AP.mode.usi |
| 83500 | 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 | ng.the.following.configuration:. |
| 83520 | 54 68 65 20 4f 49 44 20 60 60 2e 31 2e 33 2e 36 2e 31 2e 34 2e 31 2e 38 30 37 32 2e 31 2e 33 2e | The.OID.``.1.3.6.1.4.1.8072.1.3. |
| 83540 | 32 2e 33 2e 31 2e 31 2e 34 2e 31 31 36 2e 31 30 31 2e 31 31 35 2e 31 31 36 60 60 2c 20 6f 6e 63 | 2.3.1.1.4.116.101.115.116``,.onc |
| 83560 | 65 20 63 61 6c 6c 65 64 2c 20 77 69 6c 6c 20 63 6f 6e 74 61 69 6e 20 74 68 65 20 6f 75 74 70 75 | e.called,.will.contain.the.outpu |
| 83580 | 74 20 6f 66 20 74 68 65 20 65 78 74 65 6e 73 69 6f 6e 2e 00 54 68 65 20 50 6f 69 6e 74 2d 74 6f | t.of.the.extension..The.Point-to |
| 835a0 | 2d 50 6f 69 6e 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 20 28 50 50 54 50 5f | -Point.Tunneling.Protocol.(PPTP_ |
| 835c0 | 29 20 68 61 73 20 62 65 65 6e 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 69 6e 20 56 79 4f 53 20 6f | ).has.been.implemented.in.VyOS.o |
| 835e0 | 6e 6c 79 20 66 6f 72 20 62 61 63 6b 77 61 72 64 73 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 2e | nly.for.backwards.compatibility. |
| 83600 | 20 50 50 54 50 20 68 61 73 20 6d 61 6e 79 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 73 65 63 75 72 69 | .PPTP.has.many.well.known.securi |
| 83620 | 74 79 20 69 73 73 75 65 73 20 61 6e 64 20 79 6f 75 20 73 68 6f 75 6c 64 20 75 73 65 20 6f 6e 65 | ty.issues.and.you.should.use.one |
| 83640 | 20 6f 66 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 6e 65 77 20 56 50 4e 20 69 6d 70 6c 65 | .of.the.many.other.new.VPN.imple |
| 83660 | 6d 65 6e 74 61 74 69 6f 6e 73 2e 00 54 68 65 20 50 6f 77 65 72 44 4e 53 20 72 65 63 75 72 73 6f | mentations..The.PowerDNS.recurso |
| 83680 | 72 20 68 61 73 20 35 20 64 69 66 66 65 72 65 6e 74 20 6c 65 76 65 6c 73 20 6f 66 20 44 4e 53 53 | r.has.5.different.levels.of.DNSS |
| 836a0 | 45 43 20 70 72 6f 63 65 73 73 69 6e 67 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 73 65 74 20 | EC.processing,.which.can.be.set. |
| 836c0 | 77 69 74 68 20 74 68 65 20 64 6e 73 73 65 63 20 73 65 74 74 69 6e 67 2e 20 49 6e 20 6f 72 64 65 | with.the.dnssec.setting..In.orde |
| 836e0 | 72 20 66 72 6f 6d 20 6c 65 61 73 74 20 74 6f 20 6d 6f 73 74 20 70 72 6f 63 65 73 73 69 6e 67 2c | r.from.least.to.most.processing, |
| 83700 | 20 74 68 65 73 65 20 61 72 65 3a 00 54 68 65 20 50 72 65 63 69 73 69 6f 6e 20 54 69 6d 65 20 50 | .these.are:.The.Precision.Time.P |
| 83720 | 72 6f 74 6f 63 6f 6c 20 28 49 45 45 45 20 31 35 38 38 29 20 69 73 20 61 20 6c 6f 63 61 6c 20 6e | rotocol.(IEEE.1588).is.a.local.n |
| 83740 | 65 74 77 6f 72 6b 20 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 70 72 6f 74 | etwork.time.synchronization.prot |
| 83760 | 6f 63 6f 6c 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 68 69 67 68 20 70 72 65 63 69 73 69 6f | ocol.that.provides.high.precisio |
| 83780 | 6e 20 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 62 79 20 6c 65 76 65 72 61 | n.time.synchronization.by.levera |
| 837a0 | 67 69 6e 67 20 68 61 72 64 77 61 72 65 20 63 6c 6f 63 6b 73 20 69 6e 20 4e 49 43 73 20 61 6e 64 | ging.hardware.clocks.in.NICs.and |
| 837c0 | 20 6f 74 68 65 72 20 6e 65 74 77 6f 72 6b 20 65 6c 65 6d 65 6e 74 73 2e 20 56 79 4f 53 20 64 6f | .other.network.elements..VyOS.do |
| 837e0 | 65 73 20 6e 6f 74 20 63 75 72 72 65 6e 74 6c 79 20 73 75 70 70 6f 72 74 20 73 74 61 6e 64 61 72 | es.not.currently.support.standar |
| 83800 | 64 73 2d 62 61 73 65 64 20 50 54 50 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 64 65 70 6c 6f | ds-based.PTP,.which.can.be.deplo |
| 83820 | 79 65 64 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 20 6f 66 20 4e 54 50 2e 00 54 68 65 20 50 72 | yed.independently.of.NTP..The.Pr |
| 83840 | 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 73 20 61 20 63 6c 61 73 73 66 75 6c 20 73 63 68 65 64 | iority.Queue.is.a.classful.sched |
| 83860 | 75 6c 69 6e 67 20 70 6f 6c 69 63 79 2e 20 49 74 20 64 6f 65 73 20 6e 6f 74 20 64 65 6c 61 79 20 | uling.policy..It.does.not.delay. |
| 83880 | 70 61 63 6b 65 74 73 20 28 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 73 20 6e 6f 74 20 61 | packets.(Priority.Queue.is.not.a |
| 838a0 | 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 29 2c 20 69 74 20 73 69 6d 70 6c 79 20 64 65 71 75 | .shaping.policy),.it.simply.dequ |
| 838c0 | 65 75 65 73 20 70 61 63 6b 65 74 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 | eues.packets.according.to.their. |
| 838e0 | 70 72 69 6f 72 69 74 79 2e 00 54 68 65 20 52 41 44 49 55 53 20 61 63 63 6f 75 6e 74 69 6e 67 20 | priority..The.RADIUS.accounting. |
| 83900 | 66 65 61 74 75 72 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 74 68 65 20 4f 70 | feature.must.be.used.with.the.Op |
| 83920 | 65 6e 43 6f 6e 6e 65 63 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 52 41 | enConnect.authentication.mode.RA |
| 83940 | 44 49 55 53 2e 20 49 74 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 | DIUS..It.cannot.be.used.with.loc |
| 83960 | 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 59 6f 75 20 6d 75 73 74 20 63 6f 6e 66 | al.authentication..You.must.conf |
| 83980 | 69 67 75 72 65 20 74 68 65 20 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 61 75 74 68 65 6e 74 69 63 61 | igure.the.OpenConnect.authentica |
| 839a0 | 74 69 6f 6e 20 6d 6f 64 65 20 74 6f 20 22 72 61 64 69 75 73 22 2e 00 54 68 65 20 52 41 44 49 55 | tion.mode.to."radius"..The.RADIU |
| 839c0 | 53 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 69 6e 20 56 79 4f 53 20 61 72 65 20 6c 6f 63 61 74 | S.dictionaries.in.VyOS.are.locat |
| 839e0 | 65 64 20 61 74 20 60 60 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 | ed.at.``/usr/share/accel-ppp/rad |
| 83a00 | 69 75 73 2f 60 60 00 54 68 65 20 53 52 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 70 6f 72 74 69 | ius/``.The.SR.segments.are.porti |
| 83a20 | 6f 6e 73 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 70 61 74 68 20 74 61 6b 65 6e 20 62 79 | ons.of.the.network.path.taken.by |
| 83a40 | 20 74 68 65 20 70 61 63 6b 65 74 2c 20 61 6e 64 20 61 72 65 20 63 61 6c 6c 65 64 20 53 49 44 73 | .the.packet,.and.are.called.SIDs |
| 83a60 | 2e 20 41 74 20 65 61 63 68 20 6e 6f 64 65 2c 20 74 68 65 20 66 69 72 73 74 20 53 49 44 20 6f 66 | ..At.each.node,.the.first.SID.of |
| 83a80 | 20 74 68 65 20 6c 69 73 74 20 69 73 20 72 65 61 64 2c 20 65 78 65 63 75 74 65 64 20 61 73 20 61 | .the.list.is.read,.executed.as.a |
| 83aa0 | 20 66 6f 72 77 61 72 64 69 6e 67 20 66 75 6e 63 74 69 6f 6e 2c 20 61 6e 64 20 6d 61 79 20 62 65 | .forwarding.function,.and.may.be |
| 83ac0 | 20 70 6f 70 70 65 64 20 74 6f 20 6c 65 74 20 74 68 65 20 6e 65 78 74 20 6e 6f 64 65 20 72 65 61 | .popped.to.let.the.next.node.rea |
| 83ae0 | 64 20 74 68 65 20 6e 65 78 74 20 53 49 44 20 6f 66 20 74 68 65 20 6c 69 73 74 2e 20 54 68 65 20 | d.the.next.SID.of.the.list..The. |
| 83b00 | 53 49 44 20 6c 69 73 74 20 63 6f 6d 70 6c 65 74 65 6c 79 20 64 65 74 65 72 6d 69 6e 65 73 20 74 | SID.list.completely.determines.t |
| 83b20 | 68 65 20 70 61 74 68 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 66 6f 72 77 | he.path.where.the.packet.is.forw |
| 83b40 | 61 72 64 65 64 2e 00 54 68 65 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 20 64 6f 65 73 20 6e 6f | arded..The.Shaper.policy.does.no |
| 83b60 | 74 20 67 75 61 72 61 6e 74 65 65 20 61 20 6c 6f 77 20 64 65 6c 61 79 2c 20 62 75 74 20 69 74 20 | t.guarantee.a.low.delay,.but.it. |
| 83b80 | 64 6f 65 73 20 67 75 61 72 61 6e 74 65 65 20 62 61 6e 64 77 69 64 74 68 20 74 6f 20 64 69 66 66 | does.guarantee.bandwidth.to.diff |
| 83ba0 | 65 72 65 6e 74 20 74 72 61 66 66 69 63 20 63 6c 61 73 73 65 73 20 61 6e 64 20 61 6c 73 6f 20 6c | erent.traffic.classes.and.also.l |
| 83bc0 | 65 74 73 20 79 6f 75 20 64 65 63 69 64 65 20 68 6f 77 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 6d | ets.you.decide.how.to.allocate.m |
| 83be0 | 6f 72 65 20 74 72 61 66 66 69 63 20 6f 6e 63 65 20 74 68 65 20 67 75 61 72 61 6e 74 65 65 73 20 | ore.traffic.once.the.guarantees. |
| 83c00 | 61 72 65 20 6d 65 74 2e 00 54 68 65 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 | are.met..The.UDP.port.number.use |
| 83c20 | 64 20 62 79 20 79 6f 75 72 20 61 70 6c 6c 69 63 61 74 69 6f 6e 2e 20 49 74 20 69 73 20 6d 61 6e | d.by.your.apllication..It.is.man |
| 83c40 | 64 61 74 6f 72 79 20 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 6f 70 65 72 61 74 69 6f | datory.for.this.kind.of.operatio |
| 83c60 | 6e 2e 00 54 68 65 20 55 44 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 79 | n..The.UDP.port.number.used.by.y |
| 83c80 | 6f 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 2e 20 49 74 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 | our.application..It.is.mandatory |
| 83ca0 | 20 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 6f 70 65 72 61 74 69 6f 6e 2e 00 54 68 65 | .for.this.kind.of.operation..The |
| 83cc0 | 20 56 58 4c 41 4e 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 20 77 61 73 20 6f 72 69 67 69 6e 61 | .VXLAN.specification.was.origina |
| 83ce0 | 6c 6c 79 20 63 72 65 61 74 65 64 20 62 79 20 56 4d 77 61 72 65 2c 20 41 72 69 73 74 61 20 4e 65 | lly.created.by.VMware,.Arista.Ne |
| 83d00 | 74 77 6f 72 6b 73 20 61 6e 64 20 43 69 73 63 6f 2e 20 4f 74 68 65 72 20 62 61 63 6b 65 72 73 20 | tworks.and.Cisco..Other.backers. |
| 83d20 | 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 69 6e 63 6c 75 64 65 20 | of.the.VXLAN.technology.include. |
| 83d40 | 48 75 61 77 65 69 2c 20 42 72 6f 61 64 63 6f 6d 2c 20 43 69 74 72 69 78 2c 20 50 69 63 61 38 2c | Huawei,.Broadcom,.Citrix,.Pica8, |
| 83d60 | 20 42 69 67 20 53 77 69 74 63 68 20 4e 65 74 77 6f 72 6b 73 2c 20 43 75 6d 75 6c 75 73 20 4e 65 | .Big.Switch.Networks,.Cumulus.Ne |
| 83d80 | 74 77 6f 72 6b 73 2c 20 44 65 6c 6c 20 45 4d 43 2c 20 45 72 69 63 73 73 6f 6e 2c 20 4d 65 6c 6c | tworks,.Dell.EMC,.Ericsson,.Mell |
| 83da0 | 61 6e 6f 78 2c 20 46 72 65 65 42 53 44 2c 20 4f 70 65 6e 42 53 44 2c 20 52 65 64 20 48 61 74 2c | anox,.FreeBSD,.OpenBSD,.Red.Hat, |
| 83dc0 | 20 4a 6f 79 65 6e 74 2c 20 61 6e 64 20 4a 75 6e 69 70 65 72 20 4e 65 74 77 6f 72 6b 73 2e 00 54 | .Joyent,.and.Juniper.Networks..T |
| 83de0 | 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 63 61 6e 20 61 6c 73 6f 20 62 | he.VyOS.DNS.forwarder.can.also.b |
| 83e00 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 68 6f 73 74 20 61 75 74 68 6f 72 69 74 61 74 69 | e.configured.to.host.authoritati |
| 83e20 | 76 65 20 72 65 63 6f 72 64 73 20 66 6f 72 20 61 20 64 6f 6d 61 69 6e 2e 00 54 68 65 20 56 79 4f | ve.records.for.a.domain..The.VyO |
| 83e40 | 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 72 65 | S.DNS.forwarder.does.not.require |
| 83e60 | 20 61 6e 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 2e 20 49 74 20 63 61 6e 20 | .an.upstream.DNS.server..It.can. |
| 83e80 | 73 65 72 76 65 20 61 73 20 61 20 66 75 6c 6c 20 72 65 63 75 72 73 69 76 65 20 44 4e 53 20 73 65 | serve.as.a.full.recursive.DNS.se |
| 83ea0 | 72 76 65 72 20 2d 20 62 75 74 20 69 74 20 63 61 6e 20 61 6c 73 6f 20 66 6f 72 77 61 72 64 20 71 | rver.-.but.it.can.also.forward.q |
| 83ec0 | 75 65 72 69 65 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 75 70 73 74 72 65 61 6d 20 | ueries.to.configurable.upstream. |
| 83ee0 | 44 4e 53 20 73 65 72 76 65 72 73 2e 20 42 79 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 | DNS.servers..By.not.configuring. |
| 83f00 | 61 6e 79 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 73 20 79 6f 75 20 61 6c 73 | any.upstream.DNS.servers.you.als |
| 83f20 | 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 74 72 61 63 6b 65 64 20 62 79 20 74 68 65 20 70 72 6f | o.avoid.being.tracked.by.the.pro |
| 83f40 | 76 69 64 65 72 20 6f 66 20 79 6f 75 72 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 | vider.of.your.upstream.DNS.serve |
| 83f60 | 72 2e 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6f | r..The.VyOS.DNS.forwarder.will.o |
| 83f80 | 6e 6c 79 20 61 63 63 65 70 74 20 6c 6f 6f 6b 75 70 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 | nly.accept.lookup.requests.from. |
| 83fa0 | 74 68 65 20 4c 41 4e 20 73 75 62 6e 65 74 73 20 2d 20 31 39 32 2e 31 36 38 2e 31 2e 30 2f 32 34 | the.LAN.subnets.-.192.168.1.0/24 |
| 83fc0 | 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 | .and.2001:db8::/64.The.VyOS.DNS. |
| 83fe0 | 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 66 6f 72 20 72 | forwarder.will.only.listen.for.r |
| 84000 | 65 71 75 65 73 74 73 20 6f 6e 20 74 68 65 20 65 74 68 31 20 28 4c 41 4e 29 20 69 6e 74 65 72 66 | equests.on.the.eth1.(LAN).interf |
| 84020 | 61 63 65 20 61 64 64 72 65 73 73 65 73 20 2d 20 31 39 32 2e 31 36 38 2e 31 2e 32 35 34 20 66 6f | ace.addresses.-.192.168.1.254.fo |
| 84040 | 72 20 49 50 76 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 66 66 66 66 20 66 6f 72 20 49 50 | r.IPv4.and.2001:db8::ffff.for.IP |
| 84060 | 76 36 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 70 | v6.The.VyOS.DNS.forwarder.will.p |
| 84080 | 61 73 73 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 73 20 66 6f 72 20 20 31 30 2e 69 6e 2d 61 | ass.reverse.lookups.for..10.in-a |
| 840a0 | 64 64 72 2e 61 72 70 61 2c 20 31 36 38 2e 31 39 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 | ddr.arpa,.168.192.in-addr.arpa,. |
| 840c0 | 31 36 2d 33 31 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 20 7a 6f 6e 65 73 20 74 6f 20 | 16-31.172.in-addr.arpa.zones.to. |
| 840e0 | 75 70 73 74 72 65 61 6d 20 73 65 72 76 65 72 2e 00 54 68 65 20 56 79 4f 53 20 50 4b 49 20 73 75 | upstream.server..The.VyOS.PKI.su |
| 84100 | 62 73 79 73 74 65 6d 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 6f | bsystem.can.also.be.used.to.auto |
| 84120 | 6d 61 74 69 63 61 6c 6c 79 20 72 65 74 72 69 65 76 65 20 43 65 72 74 69 66 69 63 61 74 65 73 20 | matically.retrieve.Certificates. |
| 84140 | 75 73 69 6e 67 20 74 68 65 20 3a 61 62 62 72 3a 60 41 43 4d 45 20 28 41 75 74 6f 6d 61 74 69 63 | using.the.:abbr:`ACME.(Automatic |
| 84160 | 20 43 65 72 74 69 66 69 63 61 74 65 20 4d 61 6e 61 67 65 6d 65 6e 74 20 45 6e 76 69 72 6f 6e 6d | .Certificate.Management.Environm |
| 84180 | 65 6e 74 29 60 20 70 72 6f 74 6f 63 6f 6c 2e 00 54 68 65 20 56 79 4f 53 20 63 6f 6e 74 61 69 6e | ent)`.protocol..The.VyOS.contain |
| 841a0 | 65 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 62 61 73 65 64 20 6f 6e 20 60 50 | er.implementation.is.based.on.`P |
| 841c0 | 6f 64 6d 61 6e 20 3c 68 74 74 70 73 3a 2f 2f 70 6f 64 6d 61 6e 2e 69 6f 2f 3e 60 5f 20 61 73 20 | odman.<https://podman.io/>`_.as. |
| 841e0 | 61 20 64 65 61 6d 6f 6e 6c 65 73 73 20 63 6f 6e 74 61 69 6e 65 72 20 65 6e 67 69 6e 65 2e 00 54 | a.deamonless.container.engine..T |
| 84200 | 68 65 20 56 79 4f 53 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e | he.VyOS.container.implementation |
| 84220 | 20 69 73 20 62 61 73 65 64 20 6f 6e 20 60 50 6f 64 6d 61 6e 3c 68 74 74 70 73 3a 2f 2f 70 6f 64 | .is.based.on.`Podman<https://pod |
| 84240 | 6d 61 6e 2e 69 6f 2f 3e 60 20 61 73 20 61 20 64 65 61 6d 6f 6e 6c 65 73 73 20 63 6f 6e 74 61 69 | man.io/>`.as.a.deamonless.contai |
| 84260 | 6e 65 72 20 65 6e 67 69 6e 65 2e 00 54 68 65 20 57 41 50 20 69 6e 20 74 68 69 73 20 65 78 61 6d | ner.engine..The.WAP.in.this.exam |
| 84280 | 70 6c 65 20 68 61 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 68 61 72 61 63 74 65 72 69 | ple.has.the.following.characteri |
| 842a0 | 73 74 69 63 73 3a 00 54 68 65 20 57 69 72 65 6c 65 73 73 20 57 69 64 65 2d 41 72 65 61 2d 4e 65 | stics:.The.Wireless.Wide-Area-Ne |
| 842c0 | 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 73 20 61 63 63 65 73 73 20 | twork.interface.provides.access. |
| 842e0 | 28 74 68 72 6f 75 67 68 20 61 20 77 69 72 65 6c 65 73 73 20 6d 6f 64 65 6d 2f 77 77 61 6e 29 20 | (through.a.wireless.modem/wwan). |
| 84300 | 74 6f 20 77 69 72 65 6c 65 73 73 20 6e 65 74 77 6f 72 6b 73 20 70 72 6f 76 69 64 65 64 20 62 79 | to.wireless.networks.provided.by |
| 84320 | 20 76 61 72 69 6f 75 73 20 63 65 6c 6c 75 6c 61 72 20 70 72 6f 76 69 64 65 72 73 2e 00 54 68 65 | .various.cellular.providers..The |
| 84340 | 20 60 60 43 44 60 60 2d 62 69 74 20 69 73 20 68 6f 6e 6f 72 65 64 20 63 6f 72 72 65 63 74 6c 79 | .``CD``-bit.is.honored.correctly |
| 84360 | 20 66 6f 72 20 70 72 6f 63 65 73 73 20 61 6e 64 20 76 61 6c 69 64 61 74 65 2e 20 46 6f 72 20 6c | .for.process.and.validate..For.l |
| 84380 | 6f 67 2d 66 61 69 6c 2c 20 66 61 69 6c 75 72 65 73 20 77 69 6c 6c 20 62 65 20 6c 6f 67 67 65 64 | og-fail,.failures.will.be.logged |
| 843a0 | 20 74 6f 6f 2e 00 54 68 65 20 60 60 61 64 64 72 65 73 73 60 60 20 63 61 6e 20 62 65 20 63 6f 6e | .too..The.``address``.can.be.con |
| 843c0 | 66 69 67 75 72 65 64 20 65 69 74 68 65 72 20 6f 6e 20 74 68 65 20 56 52 52 50 20 69 6e 74 65 72 | figured.either.on.the.VRRP.inter |
| 843e0 | 66 61 63 65 20 6f 72 20 6f 6e 20 6e 6f 74 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 2e 00 54 | face.or.on.not.VRRP.interface..T |
| 84400 | 68 65 20 60 60 61 64 64 72 65 73 73 60 60 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 | he.``address``.parameter.can.be. |
| 84420 | 65 69 74 68 65 72 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 | either.an.IPv4.or.IPv6.address,. |
| 84440 | 62 75 74 20 79 6f 75 20 63 61 6e 20 6e 6f 74 20 6d 69 78 20 49 50 76 34 20 61 6e 64 20 49 50 76 | but.you.can.not.mix.IPv4.and.IPv |
| 84460 | 36 20 69 6e 20 74 68 65 20 73 61 6d 65 20 67 72 6f 75 70 2c 20 61 6e 64 20 77 69 6c 6c 20 6e 65 | 6.in.the.same.group,.and.will.ne |
| 84480 | 65 64 20 74 6f 20 63 72 65 61 74 65 20 67 72 6f 75 70 73 20 77 69 74 68 20 64 69 66 66 65 72 65 | ed.to.create.groups.with.differe |
| 844a0 | 6e 74 20 56 52 49 44 73 20 73 70 65 63 69 61 6c 6c 79 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 | nt.VRIDs.specially.for.IPv4.and. |
| 844c0 | 49 50 76 36 2e 20 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 49 50 76 34 20 2b 20 | IPv6..If.you.want.to.use.IPv4.+. |
| 844e0 | 49 50 76 36 20 61 64 64 72 65 73 73 20 79 6f 75 20 63 61 6e 20 75 73 65 20 6f 70 74 69 6f 6e 20 | IPv6.address.you.can.use.option. |
| 84500 | 60 60 65 78 63 6c 75 64 65 64 2d 61 64 64 72 65 73 73 60 60 00 54 68 65 20 60 60 62 6b 2d 62 72 | ``excluded-address``.The.``bk-br |
| 84520 | 69 64 67 65 2d 73 73 6c 60 60 20 62 61 63 6b 65 6e 64 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 73 | idge-ssl``.backend.connects.to.s |
| 84540 | 72 30 31 20 73 65 72 76 65 72 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 76 69 61 20 48 54 54 50 53 | r01.server.on.port.443.via.HTTPS |
| 84560 | 20 61 6e 64 20 63 68 65 63 6b 73 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 68 61 73 20 61 | .and.checks.backend.server.has.a |
| 84580 | 20 76 61 6c 69 64 20 63 65 72 74 69 66 69 63 61 74 65 20 74 72 75 73 74 65 64 20 62 79 20 43 41 | .valid.certificate.trusted.by.CA |
| 845a0 | 20 60 60 63 61 63 65 72 74 60 60 00 54 68 65 20 60 60 68 74 74 70 60 60 20 73 65 72 76 69 63 65 | .``cacert``.The.``http``.service |
| 845c0 | 20 69 73 20 6c 65 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 66 6f 72 63 65 | .is.lestens.on.port.80.and.force |
| 845e0 | 20 72 65 64 69 72 65 63 74 73 20 66 72 6f 6d 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 2e 00 54 | .redirects.from.HTTP.to.HTTPS..T |
| 84600 | 68 65 20 60 60 68 74 74 70 60 60 20 73 65 72 76 69 63 65 20 69 73 20 6c 69 73 74 65 6e 73 20 6f | he.``http``.service.is.listens.o |
| 84620 | 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 66 6f 72 63 65 20 72 65 64 69 72 65 63 74 73 20 66 72 | n.port.80.and.force.redirects.fr |
| 84640 | 6f 6d 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 | om.HTTP.to.HTTPS..The.``https``. |
| 84660 | 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 | service.listens.on.port.443.with |
| 84680 | 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 62 72 69 64 67 65 2d 73 73 6c 60 60 20 74 6f 20 68 61 | .backend.``bk-bridge-ssl``.to.ha |
| 846a0 | 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 | ndle.HTTPS.traffic..It.uses.cert |
| 846c0 | 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 | ificate.named.``cert``.for.SSL.t |
| 846e0 | 65 72 6d 69 6e 61 74 69 6f 6e 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 | ermination..The.``https``.servic |
| 84700 | 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 | e.listens.on.port.443.with.backe |
| 84720 | 6e 64 20 60 60 62 6b 2d 64 65 66 61 75 6c 74 60 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 | nd.``bk-default``.to.handle.HTTP |
| 84740 | 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e | S.traffic..It.uses.certificate.n |
| 84760 | 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f | amed.``cert``.for.SSL.terminatio |
| 84780 | 6e 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 | n..The.``https``.service.listens |
| 847a0 | 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 64 | .on.port.443.with.backend.``bk-d |
| 847c0 | 65 66 61 75 6c 74 60 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 | efault``.to.handle.HTTPS.traffic |
| 847e0 | 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 | ..It.uses.certificate.named.``ce |
| 84800 | 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f 6e 2e 20 48 53 54 53 20 68 | rt``.for.SSL.termination..HSTS.h |
| 84820 | 65 61 64 65 72 20 69 73 20 73 65 74 20 77 69 74 68 20 61 20 31 2d 79 65 61 72 20 65 78 70 69 72 | eader.is.set.with.a.1-year.expir |
| 84840 | 79 2c 20 74 6f 20 74 65 6c 6c 20 62 72 6f 77 73 65 72 73 20 74 6f 20 61 6c 77 61 79 73 20 75 73 | y,.to.tell.browsers.to.always.us |
| 84860 | 65 20 53 53 4c 20 66 6f 72 20 73 69 74 65 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 | e.SSL.for.site..The.``https``.se |
| 84880 | 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 | rvice.listens.on.port.443.with.b |
| 848a0 | 61 63 6b 65 6e 64 20 60 62 6b 2d 64 65 66 61 75 6c 74 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 | ackend.`bk-default`.to.handle.HT |
| 848c0 | 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 | TPS.traffic..It.uses.certificate |
| 848e0 | 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 | .named.``cert``.for.SSL.terminat |
| 84900 | 69 6f 6e 2e 00 54 68 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 64 | ion..The.``persistent-tunnel``.d |
| 84920 | 69 72 65 63 74 69 76 65 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 75 73 20 74 6f 20 63 6f 6e 66 69 67 | irective.will.allow.us.to.config |
| 84940 | 75 72 65 20 74 75 6e 6e 65 6c 2d 72 65 6c 61 74 65 64 20 61 74 74 72 69 62 75 74 65 73 2c 20 73 | ure.tunnel-related.attributes,.s |
| 84960 | 75 63 68 20 61 73 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 61 73 20 77 65 20 77 6f 75 | uch.as.firewall.policy.as.we.wou |
| 84980 | 6c 64 20 6f 6e 20 61 6e 79 20 6e 6f 72 6d 61 6c 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 | ld.on.any.normal.network.interfa |
| 849a0 | 63 65 2e 00 54 68 65 20 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 60 20 6d 75 73 74 20 | ce..The.``source-address``.must. |
| 849c0 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 6f 6e 65 20 6f 66 20 56 79 4f 53 20 69 6e 74 | be.configured.on.one.of.VyOS.int |
| 849e0 | 65 72 66 61 63 65 2e 20 42 65 73 74 20 70 72 61 63 74 69 63 65 20 77 6f 75 6c 64 20 62 65 20 61 | erface..Best.practice.would.be.a |
| 84a00 | 20 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 | .loopback.or.dummy.interface..Th |
| 84a20 | 65 20 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e | e.``source-address``.must.be.con |
| 84a40 | 66 69 67 75 72 65 64 20 74 6f 20 74 68 61 74 20 6f 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e | figured.to.that.of.an.interface. |
| 84a60 | 20 42 65 73 74 20 70 72 61 63 74 69 63 65 20 77 6f 75 6c 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 | .Best.practice.would.be.a.loopba |
| 84a80 | 63 6b 20 6f 72 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 60 73 68 6f 77 | ck.or.dummy.interface..The.`show |
| 84aa0 | 20 62 72 69 64 67 65 60 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 63 61 6e | .bridge`.operational.command.can |
| 84ac0 | 20 62 65 20 75 73 65 64 20 74 6f 20 64 69 73 70 6c 61 79 20 63 6f 6e 66 69 67 75 72 65 64 20 62 | .be.used.to.display.configured.b |
| 84ae0 | 72 69 64 67 65 73 3a 00 54 68 65 20 61 62 6f 76 65 20 64 69 72 65 63 74 6f 72 79 20 61 6e 64 20 | ridges:.The.above.directory.and. |
| 84b00 | 64 65 66 61 75 6c 74 2d 63 6f 6e 66 69 67 20 6d 75 73 74 20 62 65 20 61 20 63 68 69 6c 64 20 64 | default-config.must.be.a.child.d |
| 84b20 | 69 72 65 63 74 6f 72 79 20 6f 66 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2c 20 73 69 6e 63 65 20 | irectory.of./config/auth,.since. |
| 84b40 | 66 69 6c 65 73 20 6f 75 74 73 69 64 65 20 74 68 69 73 20 64 69 72 65 63 74 6f 72 79 20 61 72 65 | files.outside.this.directory.are |
| 84b60 | 20 6e 6f 74 20 70 65 72 73 69 73 74 65 64 20 61 66 74 65 72 20 61 6e 20 69 6d 61 67 65 20 75 70 | .not.persisted.after.an.image.up |
| 84b80 | 67 72 61 64 65 2e 00 54 68 65 20 61 63 74 69 6f 6e 20 63 61 6e 20 62 65 20 3a 00 54 68 65 20 61 | grade..The.action.can.be.:.The.a |
| 84ba0 | 64 64 72 65 73 73 20 6f 66 20 52 6f 75 74 65 72 20 42 20 69 73 20 31 30 2e 30 2e 32 30 2e 31 31 | ddress.of.Router.B.is.10.0.20.11 |
| 84bc0 | 32 20 61 6e 64 20 74 68 65 20 70 6f 72 74 20 75 73 65 64 20 69 73 20 38 34 34 33 00 54 68 65 20 | 2.and.the.port.used.is.8443.The. |
| 84be0 | 61 64 64 72 65 73 73 20 74 68 65 20 73 65 72 76 65 72 20 6c 69 73 74 65 6e 73 20 74 6f 20 64 75 | address.the.server.listens.to.du |
| 84c00 | 72 69 6e 67 20 68 74 74 70 2d 30 31 20 63 68 61 6c 6c 65 6e 67 65 00 54 68 65 20 61 64 76 61 6e | ring.http-01.challenge.The.advan |
| 84c20 | 74 61 67 65 20 6f 66 20 74 68 69 73 20 69 73 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 2d 73 | tage.of.this.is.that.the.route-s |
| 84c40 | 65 6c 65 63 74 69 6f 6e 20 28 61 74 20 74 68 69 73 20 70 6f 69 6e 74 29 20 77 69 6c 6c 20 62 65 | election.(at.this.point).will.be |
| 84c60 | 20 6d 6f 72 65 20 64 65 74 65 72 6d 69 6e 69 73 74 69 63 2e 20 54 68 65 20 64 69 73 61 64 76 61 | .more.deterministic..The.disadva |
| 84c80 | 6e 74 61 67 65 20 69 73 20 74 68 61 74 20 61 20 66 65 77 20 6f 72 20 65 76 65 6e 20 6f 6e 65 20 | ntage.is.that.a.few.or.even.one. |
| 84ca0 | 6c 6f 77 65 73 74 2d 49 44 20 72 6f 75 74 65 72 20 6d 61 79 20 61 74 74 72 61 63 74 20 61 6c 6c | lowest-ID.router.may.attract.all |
| 84cc0 | 20 74 72 61 66 66 69 63 20 74 6f 20 6f 74 68 65 72 77 69 73 65 2d 65 71 75 61 6c 20 70 61 74 68 | .traffic.to.otherwise-equal.path |
| 84ce0 | 73 20 62 65 63 61 75 73 65 20 6f 66 20 74 68 69 73 20 63 68 65 63 6b 2e 20 49 74 20 6d 61 79 20 | s.because.of.this.check..It.may. |
| 84d00 | 69 6e 63 72 65 61 73 65 20 74 68 65 20 70 6f 73 73 69 62 69 6c 69 74 79 20 6f 66 20 4d 45 44 20 | increase.the.possibility.of.MED. |
| 84d20 | 6f 72 20 49 47 50 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 2c 20 75 6e 6c 65 73 73 20 6f 74 68 65 72 | or.IGP.oscillation,.unless.other |
| 84d40 | 20 6d 65 61 73 75 72 65 73 20 77 65 72 65 20 74 61 6b 65 6e 20 74 6f 20 61 76 6f 69 64 20 74 68 | .measures.were.taken.to.avoid.th |
| 84d60 | 65 73 65 2e 20 54 68 65 20 65 78 61 63 74 20 62 65 68 61 76 69 6f 75 72 20 77 69 6c 6c 20 62 65 | ese..The.exact.behaviour.will.be |
| 84d80 | 20 73 65 6e 73 69 74 69 76 65 20 74 6f 20 74 68 65 20 69 42 47 50 20 61 6e 64 20 72 65 66 6c 65 | .sensitive.to.the.iBGP.and.refle |
| 84da0 | 63 74 69 6f 6e 20 74 6f 70 6f 6c 6f 67 79 2e 00 54 68 65 20 61 6c 6c 6f 63 61 74 65 64 20 61 64 | ction.topology..The.allocated.ad |
| 84dc0 | 64 72 65 73 73 20 62 6c 6f 63 6b 20 69 73 20 31 30 30 2e 36 34 2e 30 2e 30 2f 31 30 2e 00 54 68 | dress.block.is.100.64.0.0/10..Th |
| 84de0 | 65 20 61 6d 6f 75 6e 74 20 6f 66 20 44 75 70 6c 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 | e.amount.of.Duplicate.Address.De |
| 84e00 | 74 65 63 74 69 6f 6e 20 70 72 6f 62 65 73 20 74 6f 20 73 65 6e 64 2e 00 54 68 65 20 61 74 74 72 | tection.probes.to.send..The.attr |
| 84e20 | 69 62 75 74 65 73 20 3a 63 66 67 63 6d 64 3a 60 70 72 65 66 69 78 2d 6c 69 73 74 60 20 61 6e 64 | ibutes.:cfgcmd:`prefix-list`.and |
| 84e40 | 20 3a 63 66 67 63 6d 64 3a 60 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 60 20 61 72 65 20 6d | .:cfgcmd:`distribute-list`.are.m |
| 84e60 | 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 73 69 76 65 2c 20 61 6e 64 20 6f 6e 6c 79 20 6f 6e 65 20 | utually.exclusive,.and.only.one. |
| 84e80 | 63 6f 6d 6d 61 6e 64 20 28 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 20 6f 72 20 70 72 65 66 | command.(distribute-list.or.pref |
| 84ea0 | 69 78 2d 6c 69 73 74 29 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 61 63 68 20 | ix-list).can.be.applied.to.each. |
| 84ec0 | 69 6e 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e 64 20 64 69 72 65 63 74 69 6f 6e 20 66 6f | inbound.or.outbound.direction.fo |
| 84ee0 | 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 65 20 61 76 61 | r.a.particular.neighbor..The.ava |
| 84f00 | 69 6c 61 62 6c 65 20 6d 6f 64 65 73 20 61 72 65 3a 00 54 68 65 20 61 76 61 69 6c 61 62 6c 65 20 | ilable.modes.are:.The.available. |
| 84f20 | 6f 70 74 69 6f 6e 73 20 66 6f 72 20 3c 6d 61 74 63 68 3e 20 61 72 65 3a 00 54 68 65 20 62 61 73 | options.for.<match>.are:.The.bas |
| 84f40 | 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 | e.chain.for.traffic.towards.the. |
| 84f60 | 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e | router.is.``set.firewall.ipv4.in |
| 84f80 | 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 54 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 | put.filter....``.The.base.chain. |
| 84fa0 | 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 | for.traffic.towards.the.router.i |
| 84fc0 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 | s.``set.firewall.ipv6.input.filt |
| 84fe0 | 65 72 20 2e 2e 2e 60 60 00 54 68 65 20 62 61 73 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e | er....``.The.base.firewall.chain |
| 85000 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f | .to.configure.filtering.rules.fo |
| 85020 | 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 | r.transit.traffic.is.``set.firew |
| 85040 | 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 | all.ipv4.forward.filter....``,.w |
| 85060 | 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 | hich.happens.in.stage.5,.highlig |
| 85080 | 68 74 65 64 20 69 6e 20 74 68 65 20 63 6f 6c 6f 72 20 72 65 64 2e 00 54 68 65 20 62 61 73 65 20 | hted.in.the.color.red..The.base. |
| 850a0 | 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 6c 74 | firewall.chain.to.configure.filt |
| 850c0 | 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 | ering.rules.for.transit.traffic. |
| 850e0 | 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 | is.``set.firewall.ipv6.forward.f |
| 85100 | 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 | ilter....``,.which.happens.in.st |
| 85120 | 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 69 6e 20 74 68 65 20 63 6f 6c 6f 72 20 | age.5,.highlighted.in.the.color. |
| 85140 | 72 65 64 2e 00 54 68 65 20 62 65 6c 6f 77 20 72 65 66 65 72 65 6e 63 65 64 20 49 50 20 61 64 64 | red..The.below.referenced.IP.add |
| 85160 | 72 65 73 73 20 60 31 39 32 2e 30 2e 32 2e 31 60 20 69 73 20 75 73 65 64 20 61 73 20 65 78 61 6d | ress.`192.0.2.1`.is.used.as.exam |
| 85180 | 70 6c 65 20 61 64 64 72 65 73 73 20 72 65 70 72 65 73 65 6e 74 69 6e 67 20 61 20 67 6c 6f 62 61 | ple.address.representing.a.globa |
| 851a0 | 6c 20 75 6e 69 63 61 73 74 20 61 64 64 72 65 73 73 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 | l.unicast.address.under.which.th |
| 851c0 | 65 20 48 55 42 20 63 61 6e 20 62 65 20 63 6f 6e 74 61 63 74 65 64 20 62 79 20 65 61 63 68 20 61 | e.HUB.can.be.contacted.by.each.a |
| 851e0 | 6e 64 20 65 76 65 72 79 20 69 6e 64 69 76 69 64 75 61 6c 20 73 70 6f 6b 65 2e 00 54 68 65 20 62 | nd.every.individual.spoke..The.b |
| 85200 | 6f 6e 64 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 73 20 61 20 6d 65 74 68 | onding.interface.provides.a.meth |
| 85220 | 6f 64 20 66 6f 72 20 61 67 67 72 65 67 61 74 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 | od.for.aggregating.multiple.netw |
| 85240 | 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 6c 6f 67 | ork.interfaces.into.a.single.log |
| 85260 | 69 63 61 6c 20 22 62 6f 6e 64 65 64 22 20 69 6e 74 65 72 66 61 63 65 2c 20 6f 72 20 4c 41 47 2c | ical."bonded".interface,.or.LAG, |
| 85280 | 20 6f 72 20 65 74 68 65 72 2d 63 68 61 6e 6e 65 6c 2c 20 6f 72 20 70 6f 72 74 2d 63 68 61 6e 6e | .or.ether-channel,.or.port-chann |
| 852a0 | 65 6c 2e 20 54 68 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 62 6f 6e 64 65 64 20 69 | el..The.behavior.of.the.bonded.i |
| 852c0 | 6e 74 65 72 66 61 63 65 73 20 64 65 70 65 6e 64 73 20 75 70 6f 6e 20 74 68 65 20 6d 6f 64 65 3b | nterfaces.depends.upon.the.mode; |
| 852e0 | 20 67 65 6e 65 72 61 6c 6c 79 20 73 70 65 61 6b 69 6e 67 2c 20 6d 6f 64 65 73 20 70 72 6f 76 69 | .generally.speaking,.modes.provi |
| 85300 | 64 65 20 65 69 74 68 65 72 20 68 6f 74 20 73 74 61 6e 64 62 79 20 6f 72 20 6c 6f 61 64 20 62 61 | de.either.hot.standby.or.load.ba |
| 85320 | 6c 61 6e 63 69 6e 67 20 73 65 72 76 69 63 65 73 2e 20 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 | lancing.services..Additionally,. |
| 85340 | 6c 69 6e 6b 20 69 6e 74 65 67 72 69 74 79 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 6d 61 79 20 62 65 | link.integrity.monitoring.may.be |
| 85360 | 20 70 65 72 66 6f 72 6d 65 64 2e 00 54 68 65 20 63 61 73 65 20 6f 66 20 69 6e 67 72 65 73 73 20 | .performed..The.case.of.ingress. |
| 85380 | 73 68 61 70 69 6e 67 00 54 68 65 20 63 68 72 6f 6e 79 20 64 61 65 6d 6f 6e 20 6f 6e 20 56 79 4f | shaping.The.chrony.daemon.on.VyO |
| 853a0 | 53 20 63 61 6e 20 6c 65 76 65 72 61 67 65 20 4e 49 43 20 68 61 72 64 77 61 72 65 20 63 61 70 61 | S.can.leverage.NIC.hardware.capa |
| 853c0 | 62 69 6c 69 74 69 65 73 20 74 6f 20 72 65 63 6f 72 64 20 74 68 65 20 65 78 61 63 74 20 74 69 6d | bilities.to.record.the.exact.tim |
| 853e0 | 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 72 65 63 65 69 76 65 64 20 6f 6e 20 74 68 65 20 69 6e | e.packets.are.received.on.the.in |
| 85400 | 74 65 72 66 61 63 65 2c 20 61 73 20 77 65 6c 6c 20 61 73 20 77 68 65 6e 20 70 61 63 6b 65 74 73 | terface,.as.well.as.when.packets |
| 85420 | 20 77 65 72 65 20 61 63 74 75 61 6c 6c 79 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 20 54 68 69 73 | .were.actually.transmitted..This |
| 85440 | 20 70 72 6f 76 69 64 65 73 20 69 6d 70 72 6f 76 65 64 20 61 63 63 75 72 61 63 79 20 61 6e 64 20 | .provides.improved.accuracy.and. |
| 85460 | 73 74 61 62 69 6c 69 74 79 20 77 68 65 6e 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 75 6e 64 | stability.when.the.system.is.und |
| 85480 | 65 72 20 6c 6f 61 64 2c 20 61 73 20 71 75 65 75 69 6e 67 20 61 6e 64 20 4f 53 20 63 6f 6e 74 65 | er.load,.as.queuing.and.OS.conte |
| 854a0 | 78 74 20 73 77 69 74 63 68 69 6e 67 20 63 61 6e 20 69 6e 74 72 6f 64 75 63 65 20 61 20 76 61 72 | xt.switching.can.introduce.a.var |
| 854c0 | 69 61 62 6c 65 20 64 65 6c 61 79 20 62 65 74 77 65 65 6e 20 77 68 65 6e 20 74 68 65 20 70 61 63 | iable.delay.between.when.the.pac |
| 854e0 | 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 61 | ket.is.received.on.the.network.a |
| 85500 | 6e 64 20 77 68 65 6e 20 69 74 20 69 73 20 61 63 74 75 61 6c 6c 79 20 70 72 6f 63 65 73 73 65 64 | nd.when.it.is.actually.processed |
| 85520 | 20 62 79 20 74 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e 2e 00 54 68 65 20 63 6c 69 65 6e 74 27 73 | .by.the.NTP.daemon..The.client's |
| 85540 | 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 70 75 74 20 69 6e 74 6f 20 61 20 56 52 46 | .interface.can.be.put.into.a.VRF |
| 85560 | 20 63 6f 6e 74 65 78 74 20 76 69 61 20 61 20 52 41 44 49 55 53 20 41 63 63 65 73 73 2d 41 63 63 | .context.via.a.RADIUS.Access-Acc |
| 85580 | 65 70 74 20 70 61 63 6b 65 74 2c 20 6f 72 20 63 68 61 6e 67 65 64 20 76 69 61 20 52 41 44 49 55 | ept.packet,.or.changed.via.RADIU |
| 855a0 | 53 20 43 6f 41 2e 20 60 60 41 63 63 65 6c 2d 56 52 46 2d 4e 61 6d 65 60 60 20 69 73 20 75 73 65 | S.CoA..``Accel-VRF-Name``.is.use |
| 855c0 | 64 20 66 6f 72 20 74 68 65 73 65 20 70 75 72 70 6f 73 65 73 2e 20 54 68 69 73 20 69 73 20 61 20 | d.for.these.purposes..This.is.a. |
| 855e0 | 63 75 73 74 6f 6d 20 60 41 43 43 45 4c 2d 50 50 50 20 61 74 74 72 69 62 75 74 65 60 5f 2e 20 44 | custom.`ACCEL-PPP.attribute`_..D |
| 85600 | 65 66 69 6e 65 20 69 74 20 69 6e 20 79 6f 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 | efine.it.in.your.RADIUS.server.. |
| 85620 | 54 68 65 20 63 6c 69 65 6e 74 2c 20 6f 6e 63 65 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 61 75 | The.client,.once.successfully.au |
| 85640 | 74 68 65 6e 74 69 63 61 74 65 64 2c 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 | thenticated,.will.receive.an.IPv |
| 85660 | 34 20 61 6e 64 20 61 6e 20 49 50 76 36 20 2f 36 34 20 61 64 64 72 65 73 73 20 74 6f 20 74 65 72 | 4.and.an.IPv6./64.address.to.ter |
| 85680 | 6d 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 6f 6e 20 74 68 65 | minate.the.PPPoE.endpoint.on.the |
| 856a0 | 20 63 6c 69 65 6e 74 20 73 69 64 65 20 61 6e 64 20 61 20 2f 35 36 20 73 75 62 6e 65 74 20 66 6f | .client.side.and.a./56.subnet.fo |
| 856c0 | 72 20 74 68 65 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 72 6e 61 6c 20 75 73 65 2e 00 54 68 65 20 | r.the.clients.internal.use..The. |
| 856e0 | 63 6c 69 65 6e 74 2c 20 6f 6e 63 65 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 61 75 74 68 65 6e | client,.once.successfully.authen |
| 85700 | 74 69 63 61 74 65 64 2c 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 6e | ticated,.will.receive.an.IPv4.an |
| 85720 | 64 20 61 6e 20 49 50 76 36 20 2f 36 34 20 61 64 64 72 65 73 73 20 74 6f 20 74 65 72 6d 69 6e 61 | d.an.IPv6./64.address.to.termina |
| 85740 | 74 65 20 74 68 65 20 70 70 70 6f 65 20 65 6e 64 70 6f 69 6e 74 20 6f 6e 20 74 68 65 20 63 6c 69 | te.the.pppoe.endpoint.on.the.cli |
| 85760 | 65 6e 74 20 73 69 64 65 20 61 6e 64 20 61 20 2f 35 36 20 73 75 62 6e 65 74 20 66 6f 72 20 74 68 | ent.side.and.a./56.subnet.for.th |
| 85780 | 65 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 72 6e 61 6c 20 75 73 65 2e 00 54 68 65 20 63 6c 69 65 | e.clients.internal.use..The.clie |
| 857a0 | 6e 74 73 20 3a 61 62 62 72 3a 60 43 50 45 20 28 43 75 73 74 6f 6d 65 72 20 50 72 65 6d 69 73 65 | nts.:abbr:`CPE.(Customer.Premise |
| 857c0 | 73 20 45 71 75 69 70 6d 65 6e 74 29 60 20 63 61 6e 20 6e 6f 77 20 63 6f 6d 6d 75 6e 69 63 61 74 | s.Equipment)`.can.now.communicat |
| 857e0 | 65 20 76 69 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 2e 20 41 6c 6c 20 64 65 76 69 63 65 73 20 | e.via.IPv4.or.IPv6..All.devices. |
| 85800 | 62 65 68 69 6e 64 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 61 30 30 3a 32 37 66 66 3a 66 65 32 66 | behind.``2001:db8::a00:27ff:fe2f |
| 85820 | 3a 64 38 30 36 2f 36 34 60 60 20 63 61 6e 20 75 73 65 20 61 64 64 72 65 73 73 65 73 20 66 72 6f | :d806/64``.can.use.addresses.fro |
| 85840 | 6d 20 60 60 32 30 30 31 3a 64 62 38 3a 31 3a 3a 2f 35 36 60 60 20 61 6e 64 20 63 61 6e 20 67 6c | m.``2001:db8:1::/56``.and.can.gl |
| 85860 | 6f 62 61 6c 6c 79 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e | obally.communicate.without.the.n |
| 85880 | 65 65 64 20 6f 66 20 61 6e 79 20 4e 41 54 20 72 75 6c 65 73 2e 00 54 68 65 20 63 6f 6d 6d 61 6e | eed.of.any.NAT.rules..The.comman |
| 858a0 | 64 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 72 65 67 75 | d.:opcmd:`show.interfaces.wiregu |
| 858c0 | 61 72 64 20 77 67 30 31 20 70 75 62 6c 69 63 2d 6b 65 79 60 20 77 69 6c 6c 20 74 68 65 6e 20 73 | ard.wg01.public-key`.will.then.s |
| 858e0 | 68 6f 77 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 2c 20 77 68 69 63 68 20 6e 65 65 64 73 20 | how.the.public.key,.which.needs. |
| 85900 | 74 6f 20 62 65 20 73 68 61 72 65 64 20 77 69 74 68 20 74 68 65 20 70 65 65 72 2e 00 54 68 65 20 | to.be.shared.with.the.peer..The. |
| 85920 | 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 67 65 6e 65 72 61 74 65 73 20 61 20 63 6f 6e 66 69 67 75 | command.also.generates.a.configu |
| 85940 | 72 61 74 69 6f 6e 20 73 6e 69 70 70 65 64 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 63 6f 70 79 | ration.snipped.which.can.be.copy |
| 85960 | 2f 70 61 73 74 65 64 20 69 6e 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 69 66 20 6e 65 65 | /pasted.into.the.VyOS.CLI.if.nee |
| 85980 | 64 65 64 2e 20 54 68 65 20 73 75 70 70 6c 69 65 64 20 60 60 3c 6e 61 6d 65 3e 60 60 20 6f 6e 20 | ded..The.supplied.``<name>``.on. |
| 859a0 | 74 68 65 20 43 4c 49 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 74 68 65 20 70 65 65 72 20 6e 61 6d | the.CLI.will.become.the.peer.nam |
| 859c0 | 65 20 69 6e 20 74 68 65 20 73 6e 69 70 70 65 74 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 61 6c | e.in.the.snippet..The.command.al |
| 859e0 | 73 6f 20 67 65 6e 65 72 61 74 65 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 6e 69 | so.generates.a.configuration.sni |
| 85a00 | 70 70 65 74 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 63 6f 70 79 2f 70 61 73 74 65 64 20 69 6e | ppet.which.can.be.copy/pasted.in |
| 85a20 | 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 69 66 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 | to.the.VyOS.CLI.if.needed..The.s |
| 85a40 | 75 70 70 6c 69 65 64 20 60 60 3c 6e 61 6d 65 3e 60 60 20 6f 6e 20 74 68 65 20 43 4c 49 20 77 69 | upplied.``<name>``.on.the.CLI.wi |
| 85a60 | 6c 6c 20 62 65 63 6f 6d 65 20 74 68 65 20 70 65 65 72 20 6e 61 6d 65 20 69 6e 20 74 68 65 20 73 | ll.become.the.peer.name.in.the.s |
| 85a80 | 6e 69 70 70 65 74 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 62 65 6c 6f 77 20 65 6e 61 62 6c 65 | nippet..The.command.below.enable |
| 85aa0 | 73 20 69 74 2c 20 61 73 73 75 6d 69 6e 67 20 74 68 65 20 52 41 44 49 55 53 20 63 6f 6e 6e 65 63 | s.it,.assuming.the.RADIUS.connec |
| 85ac0 | 74 69 6f 6e 20 68 61 73 20 62 65 65 6e 20 73 65 74 75 70 20 61 6e 64 20 69 73 20 77 6f 72 6b 69 | tion.has.been.setup.and.is.worki |
| 85ae0 | 6e 67 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 63 75 72 72 65 6e 74 | ng..The.command.displays.current |
| 85b00 | 20 52 49 50 20 73 74 61 74 75 73 2e 20 49 74 20 69 6e 63 6c 75 64 65 73 20 52 49 50 20 74 69 6d | .RIP.status..It.includes.RIP.tim |
| 85b20 | 65 72 2c 20 66 69 6c 74 65 72 69 6e 67 2c 20 76 65 72 73 69 6f 6e 2c 20 52 49 50 20 65 6e 61 62 | er,.filtering,.version,.RIP.enab |
| 85b40 | 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 52 49 50 20 70 65 65 72 20 69 6e 66 6f 72 | led.interface.and.RIP.peer.infor |
| 85b60 | 6d 61 74 69 6f 6e 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 70 6f 6e 20 54 45 53 54 55 4e 4e 45 | mation..The.command.pon.TESTUNNE |
| 85b80 | 4c 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 50 50 54 50 20 74 75 6e 6e 65 6c 20 74 6f | L.establishes.the.PPTP.tunnel.to |
| 85ba0 | 20 74 68 65 20 72 65 6d 6f 74 65 20 73 79 73 74 65 6d 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 | .the.remote.system..The.command. |
| 85bc0 | 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 63 70 75 73 3d 3c 6e 75 6d 3e 22 20 77 68 65 | translates.to."--cpus=<num>".whe |
| 85be0 | 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 54 68 65 20 | n.the.container.is.created..The. |
| 85c00 | 63 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 6e 65 74 20 68 6f 73 | command.translates.to."--net.hos |
| 85c20 | 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 | t".when.the.container.is.created |
| 85c40 | 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 70 | ..The.command.translates.to."--p |
| 85c60 | 69 64 20 68 6f 73 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 | id.host".when.the.container.is.c |
| 85c80 | 72 65 61 74 65 64 2e 00 54 68 65 20 63 6f 6d 70 75 74 65 72 73 20 6f 6e 20 61 6e 20 69 6e 74 65 | reated..The.computers.on.an.inte |
| 85ca0 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 75 73 65 20 61 6e 79 20 6f 66 20 74 68 65 20 | rnal.network.can.use.any.of.the. |
| 85cc0 | 61 64 64 72 65 73 73 65 73 20 73 65 74 20 61 73 69 64 65 20 62 79 20 74 68 65 20 3a 61 62 62 72 | addresses.set.aside.by.the.:abbr |
| 85ce0 | 3a 60 49 41 4e 41 20 28 49 6e 74 65 72 6e 65 74 20 41 73 73 69 67 6e 65 64 20 4e 75 6d 62 65 72 | :`IANA.(Internet.Assigned.Number |
| 85d00 | 73 20 41 75 74 68 6f 72 69 74 79 29 60 20 66 6f 72 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 | s.Authority)`.for.private.addres |
| 85d20 | 73 69 6e 67 20 28 73 65 65 20 3a 72 66 63 3a 60 31 39 31 38 60 29 2e 20 54 68 65 73 65 20 72 65 | sing.(see.:rfc:`1918`)..These.re |
| 85d40 | 73 65 72 76 65 64 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 6e 6f 74 20 69 6e 20 75 | served.IP.addresses.are.not.in.u |
| 85d60 | 73 65 20 6f 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2c 20 73 6f 20 61 6e 20 65 78 74 65 72 6e | se.on.the.Internet,.so.an.extern |
| 85d80 | 61 6c 20 6d 61 63 68 69 6e 65 20 77 69 6c 6c 20 6e 6f 74 20 64 69 72 65 63 74 6c 79 20 72 6f 75 | al.machine.will.not.directly.rou |
| 85da0 | 74 65 20 74 6f 20 74 68 65 6d 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 61 64 64 72 65 73 | te.to.them..The.following.addres |
| 85dc0 | 73 65 73 20 61 72 65 20 72 65 73 65 72 76 65 64 20 66 6f 72 20 70 72 69 76 61 74 65 20 75 73 65 | ses.are.reserved.for.private.use |
| 85de0 | 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 6c 6f 6f 6b 20 61 73 | :.The.configuration.will.look.as |
| 85e00 | 20 66 6f 6c 6c 6f 77 73 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 62 6f | .follows:.The.configurations.abo |
| 85e20 | 76 65 20 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 74 6f 20 75 73 69 6e 67 20 32 35 36 2d 62 69 74 | ve.will.default.to.using.256-bit |
| 85e40 | 20 41 45 53 20 69 6e 20 47 43 4d 20 6d 6f 64 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 | .AES.in.GCM.mode.for.encryption. |
| 85e60 | 28 69 66 20 62 6f 74 68 20 73 69 64 65 73 20 73 75 70 70 6f 72 74 20 4e 43 50 29 20 61 6e 64 20 | (if.both.sides.support.NCP).and. |
| 85e80 | 53 48 41 2d 31 20 66 6f 72 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 53 | SHA-1.for.HMAC.authentication..S |
| 85ea0 | 48 41 2d 31 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 77 65 61 6b 2c 20 62 75 74 20 6f 74 68 | HA-1.is.considered.weak,.but.oth |
| 85ec0 | 65 72 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 61 72 65 20 61 76 61 69 6c 61 | er.hashing.algorithms.are.availa |
| 85ee0 | 62 6c 65 2c 20 61 73 20 61 72 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d | ble,.as.are.encryption.algorithm |
| 85f00 | 73 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 62 6f 76 65 20 77 69 6c 6c | s:.The.configurations.above.will |
| 85f20 | 20 64 65 66 61 75 6c 74 20 74 6f 20 75 73 69 6e 67 20 32 35 36 2d 62 69 74 20 41 45 53 20 69 6e | .default.to.using.256-bit.AES.in |
| 85f40 | 20 47 43 4d 20 6d 6f 64 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 28 69 66 20 62 6f 74 | .GCM.mode.for.encryption.(if.bot |
| 85f60 | 68 20 73 69 64 65 73 20 73 75 70 70 6f 72 74 20 64 61 74 61 20 63 69 70 68 65 72 20 6e 65 67 6f | h.sides.support.data.cipher.nego |
| 85f80 | 74 69 61 74 69 6f 6e 29 20 61 6e 64 20 53 48 41 2d 31 20 66 6f 72 20 48 4d 41 43 20 61 75 74 68 | tiation).and.SHA-1.for.HMAC.auth |
| 85fa0 | 65 6e 74 69 63 61 74 69 6f 6e 2e 20 53 48 41 2d 31 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 | entication..SHA-1.is.considered. |
| 85fc0 | 77 65 61 6b 2c 20 62 75 74 20 6f 74 68 65 72 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 | weak,.but.other.hashing.algorith |
| 85fe0 | 6d 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2c 20 61 73 20 61 72 65 20 65 6e 63 72 79 70 74 | ms.are.available,.as.are.encrypt |
| 86000 | 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 73 3a 00 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 | ion.algorithms:.The.connection.s |
| 86020 | 74 61 74 65 20 68 6f 77 65 76 65 72 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 69 6e 64 65 70 | tate.however.is.completely.indep |
| 86040 | 65 6e 64 65 6e 74 20 6f 66 20 61 6e 79 20 75 70 70 65 72 2d 6c 65 76 65 6c 20 73 74 61 74 65 2c | endent.of.any.upper-level.state, |
| 86060 | 20 73 75 63 68 20 61 73 20 54 43 50 27 73 20 6f 72 20 53 43 54 50 27 73 20 73 74 61 74 65 2e 20 | .such.as.TCP's.or.SCTP's.state.. |
| 86080 | 50 61 72 74 20 6f 66 20 74 68 65 20 72 65 61 73 6f 6e 20 66 6f 72 20 74 68 69 73 20 69 73 20 74 | Part.of.the.reason.for.this.is.t |
| 860a0 | 68 61 74 20 77 68 65 6e 20 6d 65 72 65 6c 79 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 63 6b 65 | hat.when.merely.forwarding.packe |
| 860c0 | 74 73 2c 20 69 2e 65 2e 20 6e 6f 20 6c 6f 63 61 6c 20 64 65 6c 69 76 65 72 79 2c 20 74 68 65 20 | ts,.i.e..no.local.delivery,.the. |
| 860e0 | 54 43 50 20 65 6e 67 69 6e 65 20 6d 61 79 20 6e 6f 74 20 6e 65 63 65 73 73 61 72 69 6c 79 20 62 | TCP.engine.may.not.necessarily.b |
| 86100 | 65 20 69 6e 76 6f 6b 65 64 20 61 74 20 61 6c 6c 2e 20 45 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f | e.invoked.at.all..Even.connectio |
| 86120 | 6e 6c 65 73 73 2d 6d 6f 64 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 73 20 73 75 63 68 20 61 73 | nless-mode.transmissions.such.as |
| 86140 | 20 55 44 50 2c 20 49 50 73 65 63 20 28 41 48 2f 45 53 50 29 2c 20 47 52 45 20 61 6e 64 20 6f 74 | .UDP,.IPsec.(AH/ESP),.GRE.and.ot |
| 86160 | 68 65 72 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 68 61 76 65 2c 20 61 74 | her.tunneling.protocols.have,.at |
| 86180 | 20 6c 65 61 73 74 2c 20 61 20 70 73 65 75 64 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 | .least,.a.pseudo.connection.stat |
| 861a0 | 65 2e 20 54 68 65 20 68 65 75 72 69 73 74 69 63 20 66 6f 72 20 73 75 63 68 20 70 72 6f 74 6f 63 | e..The.heuristic.for.such.protoc |
| 861c0 | 6f 6c 73 20 69 73 20 6f 66 74 65 6e 20 62 61 73 65 64 20 75 70 6f 6e 20 61 20 70 72 65 73 65 74 | ols.is.often.based.upon.a.preset |
| 861e0 | 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 20 69 6e 61 63 74 69 76 69 74 79 2c 20 61 | .timeout.value.for.inactivity,.a |
| 86200 | 66 74 65 72 20 77 68 6f 73 65 20 65 78 70 69 72 61 74 69 6f 6e 20 61 20 4e 65 74 66 69 6c 74 65 | fter.whose.expiration.a.Netfilte |
| 86220 | 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 64 72 6f 70 70 65 64 2e 00 54 68 65 20 63 6f 6e | r.connection.is.dropped..The.con |
| 86240 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 65 78 70 65 63 74 20 74 61 62 6c 65 20 63 6f | nection.tracking.expect.table.co |
| 86260 | 6e 74 61 69 6e 73 20 6f 6e 65 20 65 6e 74 72 79 20 66 6f 72 20 65 61 63 68 20 65 78 70 65 63 74 | ntains.one.entry.for.each.expect |
| 86280 | 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 74 6f 20 61 6e 20 65 78 69 73 | ed.connection.related.to.an.exis |
| 862a0 | 74 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 54 68 65 73 65 20 61 72 65 20 67 65 6e 65 72 | ting.connection..These.are.gener |
| 862c0 | 61 6c 6c 79 20 75 73 65 64 20 62 79 20 e2 80 9c 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b | ally.used.by....connection.track |
| 862e0 | 69 6e 67 20 68 65 6c 70 65 72 e2 80 9d 20 6d 6f 64 75 6c 65 73 20 73 75 63 68 20 61 73 20 46 54 | ing.helper....modules.such.as.FT |
| 86300 | 50 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 73 69 7a 65 20 6f 66 20 74 68 65 20 65 78 70 65 63 | P..The.default.size.of.the.expec |
| 86320 | 74 20 74 61 62 6c 65 20 69 73 20 32 30 34 38 20 65 6e 74 72 69 65 73 2e 00 54 68 65 20 63 6f 6e | t.table.is.2048.entries..The.con |
| 86340 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 20 63 6f 6e 74 61 69 6e 73 20 | nection.tracking.table.contains. |
| 86360 | 6f 6e 65 20 65 6e 74 72 79 20 66 6f 72 20 65 61 63 68 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 | one.entry.for.each.connection.be |
| 86380 | 69 6e 67 20 74 72 61 63 6b 65 64 20 62 79 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 68 65 20 63 | ing.tracked.by.the.system..The.c |
| 863a0 | 6f 6e 74 61 69 6e 65 72 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 73 68 61 72 65 20 74 68 65 20 | ontainer.and.the.host.share.the. |
| 863c0 | 73 61 6d 65 20 70 72 6f 63 65 73 73 20 6e 61 6d 65 73 70 61 63 65 2e 20 54 68 69 73 20 6d 65 61 | same.process.namespace..This.mea |
| 863e0 | 6e 73 20 74 68 61 74 20 70 72 6f 63 65 73 73 65 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 | ns.that.processes.running.on.the |
| 86400 | 20 68 6f 73 74 20 61 72 65 20 76 69 73 69 62 6c 65 20 69 6e 73 69 64 65 20 74 68 65 20 63 6f 6e | .host.are.visible.inside.the.con |
| 86420 | 74 61 69 6e 65 72 2c 20 61 6e 64 20 70 72 6f 63 65 73 73 65 73 20 69 6e 73 69 64 65 20 74 68 65 | tainer,.and.processes.inside.the |
| 86440 | 20 63 6f 6e 74 61 69 6e 65 72 20 61 72 65 20 76 69 73 69 62 6c 65 20 6f 6e 20 74 68 65 20 68 6f | .container.are.visible.on.the.ho |
| 86460 | 73 74 2e 00 54 68 65 20 63 75 72 72 65 6e 74 20 61 74 74 72 69 62 75 74 65 20 27 46 69 6c 74 65 | st..The.current.attribute.'Filte |
| 86480 | 72 2d 49 64 27 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 64 65 66 61 75 6c 74 20 61 | r-Id'.is.being.used.as.default.a |
| 864a0 | 6e 64 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 69 74 68 69 6e 20 52 41 44 49 55 53 3a 00 54 | nd.can.be.setup.within.RADIUS:.T |
| 864c0 | 68 65 20 63 75 72 72 65 6e 74 20 61 74 74 72 69 62 75 74 65 20 60 60 46 69 6c 74 65 72 2d 49 64 | he.current.attribute.``Filter-Id |
| 864e0 | 60 60 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 64 65 66 61 75 6c 74 20 61 6e 64 20 | ``.is.being.used.as.default.and. |
| 86500 | 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 69 74 68 69 6e 20 52 41 44 49 55 53 3a 00 54 68 65 20 | can.be.setup.within.RADIUS:.The. |
| 86520 | 63 75 72 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 76 65 72 73 69 6f 6e 20 34 20 28 4e | current.protocol.is.version.4.(N |
| 86540 | 54 50 76 34 29 2c 20 77 68 69 63 68 20 69 73 20 61 20 70 72 6f 70 6f 73 65 64 20 73 74 61 6e 64 | TPv4),.which.is.a.proposed.stand |
| 86560 | 61 72 64 20 61 73 20 64 6f 63 75 6d 65 6e 74 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 39 30 35 60 | ard.as.documented.in.:rfc:`5905` |
| 86580 | 2e 20 49 74 20 69 73 20 62 61 63 6b 77 61 72 64 20 63 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 | ..It.is.backward.compatible.with |
| 865a0 | 20 76 65 72 73 69 6f 6e 20 33 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 | .version.3,.specified.in.:rfc:`1 |
| 865c0 | 33 30 35 60 2e 00 54 68 65 20 64 61 65 6d 6f 6e 20 64 6f 75 62 6c 65 73 20 74 68 65 20 73 69 7a | 305`..The.daemon.doubles.the.siz |
| 865e0 | 65 20 6f 66 20 74 68 65 20 6e 65 74 6c 69 6e 6b 20 65 76 65 6e 74 20 73 6f 63 6b 65 74 20 62 75 | e.of.the.netlink.event.socket.bu |
| 86600 | 66 66 65 72 20 73 69 7a 65 20 69 66 20 69 74 20 64 65 74 65 63 74 73 20 6e 65 74 6c 69 6e 6b 20 | ffer.size.if.it.detects.netlink. |
| 86620 | 65 76 65 6e 74 20 6d 65 73 73 61 67 65 20 64 72 6f 70 70 69 6e 67 2e 20 54 68 69 73 20 63 6c 61 | event.message.dropping..This.cla |
| 86640 | 75 73 65 20 73 65 74 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 62 75 66 66 65 72 20 73 69 7a 65 | use.sets.the.maximum.buffer.size |
| 86660 | 20 67 72 6f 77 74 68 20 74 68 61 74 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 2e 00 54 68 65 | .growth.that.can.be.reached..The |
| 86680 | 20 64 65 66 61 75 6c 74 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 66 6f 72 20 72 61 | .default.RADIUS.attribute.for.ra |
| 866a0 | 74 65 20 6c 69 6d 69 74 69 6e 67 20 69 73 20 60 60 46 69 6c 74 65 72 2d 49 64 60 60 2c 20 62 75 | te.limiting.is.``Filter-Id``,.bu |
| 866c0 | 74 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 72 65 64 65 66 69 6e 65 20 69 74 2e 00 54 68 65 20 | t.you.may.also.redefine.it..The. |
| 866e0 | 64 65 66 61 75 6c 74 20 56 79 4f 53 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 28 60 76 79 6f 73 | default.VyOS.user.account.(`vyos |
| 86700 | 60 29 2c 20 61 73 20 77 65 6c 6c 20 61 73 20 6e 65 77 6c 79 20 63 72 65 61 74 65 64 20 75 73 65 | `),.as.well.as.newly.created.use |
| 86720 | 72 20 61 63 63 6f 75 6e 74 73 2c 20 68 61 76 65 20 61 6c 6c 20 63 61 70 61 62 69 6c 69 74 69 65 | r.accounts,.have.all.capabilitie |
| 86740 | 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 79 73 74 65 6d 2e 20 41 6c 6c 20 61 | s.to.configure.the.system..All.a |
| 86760 | 63 63 6f 75 6e 74 73 20 68 61 76 65 20 73 75 64 6f 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 | ccounts.have.sudo.capabilities.a |
| 86780 | 6e 64 20 74 68 65 72 65 66 6f 72 65 20 63 61 6e 20 6f 70 65 72 61 74 65 20 61 73 20 72 6f 6f 74 | nd.therefore.can.operate.as.root |
| 867a0 | 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 68 6f 73 74 | .on.the.system..The.default.host |
| 867c0 | 6e 61 6d 65 20 75 73 65 64 20 69 73 20 60 76 79 6f 73 60 2e 00 54 68 65 20 64 65 66 61 75 6c 74 | name.used.is.`vyos`..The.default |
| 867e0 | 20 69 73 20 31 34 39 32 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 38 30 32 2e 31 | .is.1492..The.default.is.``802.1 |
| 86800 | 71 60 60 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 6c 65 61 73 65 20 74 69 6d 65 20 66 6f 72 20 | q``..The.default.lease.time.for. |
| 86820 | 44 48 43 50 76 36 20 6c 65 61 73 65 73 20 69 73 20 32 34 20 68 6f 75 72 73 2e 20 54 68 69 73 20 | DHCPv6.leases.is.24.hours..This. |
| 86840 | 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 20 62 79 20 73 75 70 70 6c 79 69 6e 67 20 61 20 60 60 | can.be.changed.by.supplying.a.`` |
| 86860 | 64 65 66 61 75 6c 74 2d 74 69 6d 65 60 60 2c 20 60 60 6d 61 78 69 6d 75 6d 2d 74 69 6d 65 60 60 | default-time``,.``maximum-time`` |
| 86880 | 20 61 6e 64 20 60 60 6d 69 6e 69 6d 75 6d 2d 74 69 6d 65 60 60 2e 20 41 6c 6c 20 76 61 6c 75 65 | .and.``minimum-time``..All.value |
| 868a0 | 73 20 6e 65 65 64 20 74 6f 20 62 65 20 73 75 70 70 6c 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 73 | s.need.to.be.supplied.in.seconds |
| 868c0 | 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 75 64 70 20 69 73 20 73 65 74 20 74 6f | ..The.default.port.udp.is.set.to |
| 868e0 | 20 38 34 37 32 2e 20 49 74 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 68 20 60 60 | .8472..It.can.be.changed.with.`` |
| 86900 | 73 65 74 20 69 6e 74 65 72 66 61 63 65 20 76 78 6c 61 6e 20 3c 76 78 6c 61 6e 4e 3e 20 70 6f 72 | set.interface.vxlan.<vxlanN>.por |
| 86920 | 74 20 3c 70 6f 72 74 3e 60 60 00 54 68 65 20 64 65 66 61 75 6c 74 20 74 69 6d 65 20 69 73 20 36 | t.<port>``.The.default.time.is.6 |
| 86940 | 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 63 6f 72 | 0.seconds..The.default.value.cor |
| 86960 | 72 65 73 70 6f 6e 64 73 20 74 6f 20 36 34 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 | responds.to.64..The.default.valu |
| 86980 | 65 20 69 73 20 30 2e 20 54 68 69 73 20 77 69 6c 6c 20 63 61 75 73 65 20 74 68 65 20 63 61 72 72 | e.is.0..This.will.cause.the.carr |
| 869a0 | 69 65 72 20 74 6f 20 62 65 20 61 73 73 65 72 74 65 64 20 28 66 6f 72 20 38 30 32 2e 33 61 64 20 | ier.to.be.asserted.(for.802.3ad. |
| 869c0 | 6d 6f 64 65 29 20 77 68 65 6e 65 76 65 72 20 74 68 65 72 65 20 69 73 20 61 6e 20 61 63 74 69 76 | mode).whenever.there.is.an.activ |
| 869e0 | 65 20 61 67 67 72 65 67 61 74 6f 72 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 | e.aggregator,.regardless.of.the. |
| 86a00 | 6e 75 6d 62 65 72 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 6c 69 6e 6b 73 20 69 6e 20 74 68 61 | number.of.available.links.in.tha |
| 86a20 | 74 20 61 67 67 72 65 67 61 74 6f 72 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | t.aggregator..The.default.value. |
| 86a40 | 69 73 20 33 20 70 61 63 6b 65 74 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | is.3.packets..The.default.value. |
| 86a60 | 69 73 20 33 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 30 30 20 73 | is.3..The.default.value.is.300.s |
| 86a80 | 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 30 | econds..The.default.value.is.600 |
| 86aa0 | 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 37 | .seconds..The.default.value.is.7 |
| 86ac0 | 32 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 | 200.seconds..The.default.value.i |
| 86ae0 | 73 20 38 36 34 30 30 20 73 65 63 6f 6e 64 73 20 77 68 69 63 68 20 63 6f 72 72 65 73 70 6f 6e 64 | s.86400.seconds.which.correspond |
| 86b00 | 73 20 74 6f 20 6f 6e 65 20 64 61 79 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 | s.to.one.day..The.default.value. |
| 86b20 | 69 73 20 73 6c 6f 77 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 73 20 66 6f 72 20 | is.slow..The.default.values.for. |
| 86b40 | 74 68 65 20 6d 69 6e 69 6d 75 6d 2d 74 68 72 65 73 68 6f 6c 64 20 64 65 70 65 6e 64 20 6f 6e 20 | the.minimum-threshold.depend.on. |
| 86b60 | 49 50 20 70 72 65 63 65 64 65 6e 63 65 3a 00 54 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 | IP.precedence:.The.destination.p |
| 86b80 | 6f 72 74 20 75 73 65 64 20 66 6f 72 20 63 72 65 61 74 69 6e 67 20 61 20 56 58 4c 41 4e 20 69 6e | ort.used.for.creating.a.VXLAN.in |
| 86ba0 | 74 65 72 66 61 63 65 20 69 6e 20 4c 69 6e 75 78 20 64 65 66 61 75 6c 74 73 20 74 6f 20 69 74 73 | terface.in.Linux.defaults.to.its |
| 86bc0 | 20 70 72 65 2d 73 74 61 6e 64 61 72 64 20 76 61 6c 75 65 20 6f 66 20 38 34 37 32 20 74 6f 20 70 | .pre-standard.value.of.8472.to.p |
| 86be0 | 72 65 73 65 72 76 65 20 62 61 63 6b 77 61 72 64 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 2e 20 | reserve.backward.compatibility.. |
| 86c00 | 41 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 69 72 65 63 74 69 76 65 20 74 6f 20 73 75 70 | A.configuration.directive.to.sup |
| 86c20 | 70 6f 72 74 20 61 20 75 73 65 72 2d 73 70 65 63 69 66 69 65 64 20 64 65 73 74 69 6e 61 74 69 6f | port.a.user-specified.destinatio |
| 86c40 | 6e 20 70 6f 72 74 20 74 6f 20 6f 76 65 72 72 69 64 65 20 74 68 61 74 20 62 65 68 61 76 69 6f 72 | n.port.to.override.that.behavior |
| 86c60 | 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 75 73 69 6e 67 20 74 68 65 20 61 62 6f 76 65 20 63 6f | .is.available.using.the.above.co |
| 86c80 | 6d 6d 61 6e 64 2e 00 54 68 65 20 64 65 76 69 63 65 20 63 61 6e 20 6f 6e 6c 79 20 72 65 63 65 69 | mmand..The.device.can.only.recei |
| 86ca0 | 76 65 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 56 4e 49 73 20 63 6f 6e 66 69 67 75 72 65 64 20 | ve.packets.with.VNIs.configured. |
| 86cc0 | 69 6e 20 74 68 65 20 56 4e 49 20 66 69 6c 74 65 72 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 65 20 | in.the.VNI.filtering.table..The. |
| 86ce0 | 64 69 61 6c 6f 67 75 65 20 62 65 74 77 65 65 6e 20 48 41 20 70 61 72 74 6e 65 72 73 20 69 73 20 | dialogue.between.HA.partners.is. |
| 86d00 | 6e 65 69 74 68 65 72 20 65 6e 63 72 79 70 74 65 64 20 6e 6f 72 20 61 75 74 68 65 6e 74 69 63 61 | neither.encrypted.nor.authentica |
| 86d20 | 74 65 64 2e 20 53 69 6e 63 65 20 6d 6f 73 74 20 44 48 43 50 20 73 65 72 76 65 72 73 20 65 78 69 | ted..Since.most.DHCP.servers.exi |
| 86d40 | 73 74 20 77 69 74 68 69 6e 20 61 6e 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e 27 73 20 6f 77 6e 20 | st.within.an.organisation's.own. |
| 86d60 | 73 65 63 75 72 65 20 49 6e 74 72 61 6e 65 74 2c 20 74 68 69 73 20 77 6f 75 6c 64 20 62 65 20 61 | secure.Intranet,.this.would.be.a |
| 86d80 | 6e 20 75 6e 6e 65 63 65 73 73 61 72 79 20 6f 76 65 72 68 65 61 64 2e 20 48 6f 77 65 76 65 72 2c | n.unnecessary.overhead..However, |
| 86da0 | 20 69 66 20 79 6f 75 20 68 61 76 65 20 44 48 43 50 20 48 41 20 70 65 65 72 73 20 77 68 6f 73 65 | .if.you.have.DHCP.HA.peers.whose |
| 86dc0 | 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 76 65 72 73 65 20 69 6e 73 65 63 75 72 | .communications.traverse.insecur |
| 86de0 | 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 68 | e.networks,.then.we.recommend.th |
| 86e00 | 61 74 20 79 6f 75 20 63 6f 6e 73 69 64 65 72 20 74 68 65 20 75 73 65 20 6f 66 20 56 50 4e 20 74 | at.you.consider.the.use.of.VPN.t |
| 86e20 | 75 6e 6e 65 6c 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 6d 20 74 6f 20 65 6e 73 75 72 65 20 | unneling.between.them.to.ensure. |
| 86e40 | 74 68 61 74 20 74 68 65 20 48 41 20 70 61 72 74 6e 65 72 73 68 69 70 20 69 73 20 69 6d 6d 75 6e | that.the.HA.partnership.is.immun |
| 86e60 | 65 20 74 6f 20 64 69 73 72 75 70 74 69 6f 6e 20 28 61 63 63 69 64 65 6e 74 61 6c 20 6f 72 20 6f | e.to.disruption.(accidental.or.o |
| 86e80 | 74 68 65 72 77 69 73 65 29 20 76 69 61 20 74 68 69 72 64 20 70 61 72 74 69 65 73 2e 00 54 68 65 | therwise).via.third.parties..The |
| 86ea0 | 20 64 69 61 6c 6f 67 75 65 20 62 65 74 77 65 65 6e 20 66 61 69 6c 6f 76 65 72 20 70 61 72 74 6e | .dialogue.between.failover.partn |
| 86ec0 | 65 72 73 20 69 73 20 6e 65 69 74 68 65 72 20 65 6e 63 72 79 70 74 65 64 20 6e 6f 72 20 61 75 74 | ers.is.neither.encrypted.nor.aut |
| 86ee0 | 68 65 6e 74 69 63 61 74 65 64 2e 20 53 69 6e 63 65 20 6d 6f 73 74 20 44 48 43 50 20 73 65 72 76 | henticated..Since.most.DHCP.serv |
| 86f00 | 65 72 73 20 65 78 69 73 74 20 77 69 74 68 69 6e 20 61 6e 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e | ers.exist.within.an.organisation |
| 86f20 | 27 73 20 6f 77 6e 20 73 65 63 75 72 65 20 49 6e 74 72 61 6e 65 74 2c 20 74 68 69 73 20 77 6f 75 | 's.own.secure.Intranet,.this.wou |
| 86f40 | 6c 64 20 62 65 20 61 6e 20 75 6e 6e 65 63 65 73 73 61 72 79 20 6f 76 65 72 68 65 61 64 2e 20 48 | ld.be.an.unnecessary.overhead..H |
| 86f60 | 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 68 61 76 65 20 44 48 43 50 20 66 61 69 6c 6f 76 65 | owever,.if.you.have.DHCP.failove |
| 86f80 | 72 20 70 65 65 72 73 20 77 68 6f 73 65 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 | r.peers.whose.communications.tra |
| 86fa0 | 76 65 72 73 65 20 69 6e 73 65 63 75 72 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 77 65 | verse.insecure.networks,.then.we |
| 86fc0 | 20 72 65 63 6f 6d 6d 65 6e 64 20 74 68 61 74 20 79 6f 75 20 63 6f 6e 73 69 64 65 72 20 74 68 65 | .recommend.that.you.consider.the |
| 86fe0 | 20 75 73 65 20 6f 66 20 56 50 4e 20 74 75 6e 6e 65 6c 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 | .use.of.VPN.tunneling.between.th |
| 87000 | 65 6d 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 66 61 69 6c 6f 76 65 72 20 70 | em.to.ensure.that.the.failover.p |
| 87020 | 61 72 74 6e 65 72 73 68 69 70 20 69 73 20 69 6d 6d 75 6e 65 20 74 6f 20 64 69 73 72 75 70 74 69 | artnership.is.immune.to.disrupti |
| 87040 | 6f 6e 20 28 61 63 63 69 64 65 6e 74 61 6c 20 6f 72 20 6f 74 68 65 72 77 69 73 65 29 20 76 69 61 | on.(accidental.or.otherwise).via |
| 87060 | 20 74 68 69 72 64 20 70 61 72 74 69 65 73 2e 00 54 68 65 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 | .third.parties..The.domain-name. |
| 87080 | 70 61 72 61 6d 65 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e | parameter.should.be.the.domain.n |
| 870a0 | 61 6d 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 70 70 65 6e 64 65 64 20 74 6f 20 74 68 65 | ame.that.will.be.appended.to.the |
| 870c0 | 20 63 6c 69 65 6e 74 27 73 20 68 6f 73 74 6e 61 6d 65 20 74 6f 20 66 6f 72 6d 20 61 20 66 75 6c | .client's.hostname.to.form.a.ful |
| 870e0 | 6c 79 2d 71 75 61 6c 69 66 69 65 64 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 28 46 51 44 4e 29 20 | ly-qualified.domain-name.(FQDN). |
| 87100 | 28 44 48 43 50 20 4f 70 74 69 6f 6e 20 30 31 35 29 2e 00 54 68 65 20 64 6f 6d 61 69 6e 2d 6e 61 | (DHCP.Option.015)..The.domain-na |
| 87120 | 6d 65 20 70 61 72 61 6d 65 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 64 6f 6d 61 69 | me.parameter.should.be.the.domai |
| 87140 | 6e 20 6e 61 6d 65 20 75 73 65 64 20 77 68 65 6e 20 63 6f 6d 70 6c 65 74 69 6e 67 20 44 4e 53 20 | n.name.used.when.completing.DNS. |
| 87160 | 72 65 71 75 65 73 74 20 77 68 65 72 65 20 6e 6f 20 66 75 6c 6c 20 46 51 44 4e 20 69 73 20 70 61 | request.where.no.full.FQDN.is.pa |
| 87180 | 73 73 65 64 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 67 69 76 65 6e 20 6d | ssed..This.option.can.be.given.m |
| 871a0 | 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 20 69 66 20 79 6f 75 20 6e 65 65 64 20 6d 75 6c 74 69 70 | ultiple.times.if.you.need.multip |
| 871c0 | 6c 65 20 73 65 61 72 63 68 20 64 6f 6d 61 69 6e 73 20 28 44 48 43 50 20 4f 70 74 69 6f 6e 20 31 | le.search.domains.(DHCP.Option.1 |
| 871e0 | 31 39 29 2e 00 54 68 65 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 61 6c 6c 6f 77 73 20 | 19)..The.dummy.interface.allows. |
| 87200 | 75 73 20 74 6f 20 68 61 76 65 20 61 6e 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 74 68 65 20 | us.to.have.an.equivalent.of.the. |
| 87220 | 43 69 73 63 6f 20 49 4f 53 20 4c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 2d 20 61 | Cisco.IOS.Loopback.interface.-.a |
| 87240 | 20 72 6f 75 74 65 72 2d 69 6e 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 77 65 20 63 61 | .router-internal.interface.we.ca |
| 87260 | 6e 20 75 73 65 20 66 6f 72 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 68 65 20 72 6f 75 74 65 | n.use.for.IP.addresses.the.route |
| 87280 | 72 20 6d 75 73 74 20 6b 6e 6f 77 20 61 62 6f 75 74 2c 20 62 75 74 20 77 68 69 63 68 20 61 72 65 | r.must.know.about,.but.which.are |
| 872a0 | 20 6e 6f 74 20 61 63 74 75 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 20 72 65 61 6c | .not.actually.assigned.to.a.real |
| 872c0 | 20 6e 65 74 77 6f 72 6b 2e 00 54 68 65 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 69 73 | .network..The.dummy.interface.is |
| 872e0 | 20 72 65 61 6c 6c 79 20 61 20 6c 69 74 74 6c 65 20 65 78 6f 74 69 63 2c 20 62 75 74 20 72 61 74 | .really.a.little.exotic,.but.rat |
| 87300 | 68 65 72 20 75 73 65 66 75 6c 20 6e 65 76 65 72 74 68 65 6c 65 73 73 2e 20 44 75 6d 6d 79 20 69 | her.useful.nevertheless..Dummy.i |
| 87320 | 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 6d 75 63 68 20 6c 69 6b 65 20 74 68 65 20 3a 72 65 66 | nterfaces.are.much.like.the.:ref |
| 87340 | 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 2c | :`loopback-interface`.interface, |
| 87360 | 20 65 78 63 65 70 74 20 79 6f 75 20 63 61 6e 20 68 61 76 65 20 61 73 20 6d 61 6e 79 20 61 73 20 | .except.you.can.have.as.many.as. |
| 87380 | 79 6f 75 20 77 61 6e 74 2e 00 54 68 65 20 65 6d 62 65 64 64 65 64 20 53 71 75 69 64 20 70 72 6f | you.want..The.embedded.Squid.pro |
| 873a0 | 78 79 20 63 61 6e 20 75 73 65 20 4c 44 41 50 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 | xy.can.use.LDAP.to.authenticate. |
| 873c0 | 75 73 65 72 73 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6d 70 61 6e 79 20 77 69 64 65 20 64 69 72 | users.against.a.company.wide.dir |
| 873e0 | 65 63 74 6f 72 79 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 | ectory..The.following.configurat |
| 87400 | 69 6f 6e 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 68 6f 77 20 74 6f 20 75 73 65 20 | ion.is.an.example.of.how.to.use. |
| 87420 | 41 63 74 69 76 65 20 44 69 72 65 63 74 6f 72 79 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 | Active.Directory.as.authenticati |
| 87440 | 6f 6e 20 62 61 63 6b 65 6e 64 2e 20 51 75 65 72 69 65 73 20 61 72 65 20 64 6f 6e 65 20 76 69 61 | on.backend..Queries.are.done.via |
| 87460 | 20 4c 44 41 50 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 20 75 73 65 73 20 31 39 | .LDAP..The.example.above.uses.19 |
| 87480 | 32 2e 30 2e 32 2e 32 20 61 73 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 2e 20 | 2.0.2.2.as.external.IP.address.. |
| 874a0 | 41 20 4c 41 43 20 6e 6f 72 6d 61 6c 6c 79 20 72 65 71 75 69 72 65 73 20 61 6e 20 61 75 74 68 65 | A.LAC.normally.requires.an.authe |
| 874c0 | 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 2c 20 77 68 69 63 68 20 69 73 20 73 65 74 | ntication.password,.which.is.set |
| 874e0 | 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f | .in.the.example.configuration.to |
| 87500 | 20 60 60 6c 6e 73 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 27 73 65 63 72 65 74 27 60 60 2e | .``lns.shared-secret.'secret'``. |
| 87520 | 20 54 68 69 73 20 73 65 74 75 70 20 72 65 71 75 69 72 65 73 20 74 68 65 20 43 6f 6d 70 72 65 73 | .This.setup.requires.the.Compres |
| 87540 | 73 69 6f 6e 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f 63 6f 6c 20 28 43 43 50 29 20 62 65 69 6e | sion.Control.Protocol.(CCP).bein |
| 87560 | 67 20 64 69 73 61 62 6c 65 64 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 76 70 | g.disabled,.the.command.``set.vp |
| 87580 | 6e 20 6c 32 74 70 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 63 70 2d 64 69 73 61 62 6c 65 | n.l2tp.remote-access.ccp-disable |
| 875a0 | 60 60 20 61 63 63 6f 6d 70 6c 69 73 68 65 73 20 74 68 61 74 2e 00 54 68 65 20 65 78 61 6d 70 6c | ``.accomplishes.that..The.exampl |
| 875c0 | 65 20 62 65 6c 6f 77 20 63 6f 76 65 72 73 20 61 20 64 75 61 6c 2d 73 74 61 63 6b 20 63 6f 6e 66 | e.below.covers.a.dual-stack.conf |
| 875e0 | 69 67 75 72 61 74 69 6f 6e 20 76 69 61 20 70 70 70 6f 65 2d 73 65 72 76 65 72 2e 00 54 68 65 20 | iguration.via.pppoe-server..The. |
| 87600 | 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 63 6f 76 65 72 73 20 61 20 64 75 61 6c 2d 73 74 61 63 | example.below.covers.a.dual-stac |
| 87620 | 6b 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c | k.configuration..The.example.bel |
| 87640 | 6f 77 20 75 73 65 73 20 41 43 4e 20 61 73 20 61 63 63 65 73 73 2d 63 6f 6e 63 65 6e 74 72 61 74 | ow.uses.ACN.as.access-concentrat |
| 87660 | 6f 72 20 6e 61 6d 65 2c 20 61 73 73 69 67 6e 73 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d | or.name,.assigns.an.address.from |
| 87680 | 20 74 68 65 20 70 6f 6f 6c 20 31 30 2e 31 2e 31 2e 31 30 30 2d 31 31 31 2c 20 74 65 72 6d 69 6e | .the.pool.10.1.1.100-111,.termin |
| 876a0 | 61 74 65 73 20 61 74 20 74 68 65 20 6c 6f 63 61 6c 20 65 6e 64 70 6f 69 6e 74 20 31 30 2e 31 2e | ates.at.the.local.endpoint.10.1. |
| 876c0 | 31 2e 31 20 61 6e 64 20 73 65 72 76 65 73 20 72 65 71 75 65 73 74 73 20 6f 6e 6c 79 20 6f 6e 20 | 1.1.and.serves.requests.only.on. |
| 876e0 | 65 74 68 31 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | eth1..The.example.configuration. |
| 87700 | 62 65 6c 6f 77 20 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 6e 20 49 50 20 74 6f 20 74 68 65 20 63 | below.will.assign.an.IP.to.the.c |
| 87720 | 6c 69 65 6e 74 20 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 | lient.on.the.incoming.interface. |
| 87740 | 65 74 68 31 20 77 69 74 68 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 61 64 64 72 65 73 73 | eth1.with.the.client.mac.address |
| 87760 | 20 30 30 3a 35 30 3a 37 39 3a 36 36 3a 36 38 3a 30 30 2e 20 4f 74 68 65 72 20 44 48 43 50 20 64 | .00:50:79:66:68:00..Other.DHCP.d |
| 87780 | 69 73 63 6f 76 65 72 79 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 | iscovery.requests.will.be.ignore |
| 877a0 | 64 2c 20 75 6e 6c 65 73 73 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 68 61 73 20 62 65 65 | d,.unless.the.client.mac.has.bee |
| 877c0 | 6e 20 65 6e 61 62 6c 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 | n.enabled.in.the.configuration.. |
| 877e0 | 54 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 62 65 6c 6f 77 20 | The.example.configuration.below. |
| 87800 | 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 6e 20 49 50 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 | will.assign.an.IP.to.the.client. |
| 87820 | 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 32 20 77 | on.the.incoming.interface.eth2.w |
| 87840 | 69 74 68 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 61 64 64 72 65 73 73 20 30 38 3a 30 30 | ith.the.client.mac.address.08:00 |
| 87860 | 3a 32 37 3a 32 66 3a 64 38 3a 30 36 2e 20 4f 74 68 65 72 20 44 48 43 50 20 64 69 73 63 6f 76 65 | :27:2f:d8:06..Other.DHCP.discove |
| 87880 | 72 79 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2c 20 75 6e 6c | ry.requests.will.be.ignored,.unl |
| 878a0 | 65 73 73 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 68 61 73 20 62 65 65 6e 20 65 6e 61 62 | ess.the.client.mac.has.been.enab |
| 878c0 | 6c 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 | led.in.the.configuration..The.ex |
| 878e0 | 61 6d 70 6c 65 20 63 72 65 61 74 65 73 20 61 20 77 69 72 65 6c 65 73 73 20 73 74 61 74 69 6f 6e | ample.creates.a.wireless.station |
| 87900 | 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 57 69 2d 46 69 20 | .(commonly.referred.to.as.Wi-Fi. |
| 87920 | 63 6c 69 65 6e 74 29 20 74 68 61 74 20 61 63 63 65 73 73 65 73 20 74 68 65 20 6e 65 74 77 6f 72 | client).that.accesses.the.networ |
| 87940 | 6b 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 50 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 | k.through.the.WAP.defined.in.the |
| 87960 | 20 61 62 6f 76 65 20 65 78 61 6d 70 6c 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 68 79 73 | .above.example..The.default.phys |
| 87980 | 69 63 61 6c 20 64 65 76 69 63 65 20 28 60 60 70 68 79 30 60 60 29 20 69 73 20 75 73 65 64 2e 00 | ical.device.(``phy0``).is.used.. |
| 879a0 | 54 68 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 74 72 61 6e 73 | The.external.IP.address.to.trans |
| 879c0 | 6c 61 74 65 20 74 6f 00 54 68 65 20 66 69 72 65 77 61 6c 6c 20 73 75 70 70 6f 72 74 73 20 74 68 | late.to.The.firewall.supports.th |
| 879e0 | 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 67 72 6f 75 70 73 20 66 6f 72 20 61 64 64 72 65 73 73 | e.creation.of.groups.for.address |
| 87a00 | 65 73 2c 20 64 6f 6d 61 69 6e 73 2c 20 69 6e 74 65 72 66 61 63 65 73 2c 20 6d 61 63 2d 61 64 64 | es,.domains,.interfaces,.mac-add |
| 87a20 | 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 70 6f 72 74 20 67 72 6f 75 70 73 | resses,.networks.and.port.groups |
| 87a40 | 2e 20 54 68 69 73 20 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 6c 61 74 65 72 20 | ..This.groups.can.be.used.later. |
| 87a60 | 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 20 61 73 20 64 65 73 69 72 65 64 2e 00 | in.firewall.ruleset.as.desired.. |
| 87a80 | 54 68 65 20 66 69 72 65 77 61 6c 6c 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 63 72 65 61 74 69 | The.firewall.supports.the.creati |
| 87aa0 | 6f 6e 20 6f 66 20 67 72 6f 75 70 73 20 66 6f 72 20 70 6f 72 74 73 2c 20 61 64 64 72 65 73 73 65 | on.of.groups.for.ports,.addresse |
| 87ac0 | 73 2c 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 20 28 69 6d 70 6c 65 6d 65 6e 74 65 64 20 75 73 69 | s,.and.networks.(implemented.usi |
| 87ae0 | 6e 67 20 6e 65 74 66 69 6c 74 65 72 20 69 70 73 65 74 29 20 61 6e 64 20 74 68 65 20 6f 70 74 69 | ng.netfilter.ipset).and.the.opti |
| 87b00 | 6f 6e 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 7a 6f 6e 65 20 62 61 73 65 64 20 66 69 | on.of.interface.or.zone.based.fi |
| 87b20 | 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 00 54 68 65 20 66 69 72 73 74 20 49 50 20 69 6e 20 74 | rewall.policy..The.first.IP.in.t |
| 87b40 | 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 20 69 73 20 72 65 73 65 72 76 65 64 | he.container.network.is.reserved |
| 87b60 | 20 62 79 20 74 68 65 20 65 6e 67 69 6e 65 20 61 6e 64 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 | .by.the.engine.and.cannot.be.use |
| 87b80 | 64 00 54 68 65 20 66 69 72 73 74 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 61 72 61 6d | d.The.first.address.of.the.param |
| 87ba0 | 65 74 65 72 20 60 60 63 6c 69 65 6e 74 2d 73 75 62 6e 65 74 60 60 2c 20 77 69 6c 6c 20 62 65 20 | eter.``client-subnet``,.will.be. |
| 87bc0 | 75 73 65 64 20 61 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 2e 20 43 6f 6e | used.as.the.default.gateway..Con |
| 87be0 | 6e 65 63 74 65 64 20 73 65 73 73 69 6f 6e 73 20 63 61 6e 20 62 65 20 63 68 65 63 6b 65 64 20 76 | nected.sessions.can.be.checked.v |
| 87c00 | 69 61 20 74 68 65 20 60 60 73 68 6f 77 20 69 70 6f 65 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f | ia.the.``show.ipoe-server.sessio |
| 87c20 | 6e 73 60 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 65 20 66 69 72 73 74 20 61 6e 64 20 61 72 67 75 | ns``.command..The.first.and.argu |
| 87c40 | 61 62 6c 79 20 63 6c 65 61 6e 65 72 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 6d 61 6b 65 20 79 | ably.cleaner.option.is.to.make.y |
| 87c60 | 6f 75 72 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6d 61 74 63 68 20 47 52 45 20 70 61 63 6b 65 | our.IPsec.policy.match.GRE.packe |
| 87c80 | 74 73 20 62 65 74 77 65 65 6e 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 20 6f 66 | ts.between.external.addresses.of |
| 87ca0 | 20 79 6f 75 72 20 72 6f 75 74 65 72 73 2e 20 54 68 69 73 20 69 73 20 74 68 65 20 62 65 73 74 20 | .your.routers..This.is.the.best. |
| 87cc0 | 6f 70 74 69 6f 6e 20 69 66 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 68 61 76 65 20 73 74 61 74 | option.if.both.routers.have.stat |
| 87ce0 | 69 63 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 66 69 72 73 74 | ic.external.addresses..The.first |
| 87d00 | 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 6d 65 63 68 61 6e 69 73 6d 2c 20 74 68 65 20 70 61 75 | .flow.control.mechanism,.the.pau |
| 87d20 | 73 65 20 66 72 61 6d 65 2c 20 77 61 73 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 49 45 45 | se.frame,.was.defined.by.the.IEE |
| 87d40 | 45 20 38 30 32 2e 33 78 20 73 74 61 6e 64 61 72 64 2e 00 54 68 65 20 66 69 72 73 74 20 69 70 20 | E.802.3x.standard..The.first.ip. |
| 87d60 | 61 64 64 72 65 73 73 20 69 73 20 74 68 65 20 52 50 27 73 20 61 64 64 72 65 73 73 20 61 6e 64 20 | address.is.the.RP's.address.and. |
| 87d80 | 74 68 65 20 73 65 63 6f 6e 64 20 76 61 6c 75 65 20 69 73 20 74 68 65 20 6d 61 74 63 68 69 6e 67 | the.second.value.is.the.matching |
| 87da0 | 20 70 72 65 66 69 78 20 6f 66 20 67 72 6f 75 70 20 72 61 6e 67 65 73 20 63 6f 76 65 72 65 64 2e | .prefix.of.group.ranges.covered. |
| 87dc0 | 00 54 68 65 20 66 69 72 73 74 20 72 65 67 69 73 74 72 61 74 69 6f 6e 20 72 65 71 75 65 73 74 20 | .The.first.registration.request. |
| 87de0 | 69 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 62 72 6f 61 64 63 61 73 | is.sent.to.the.protocol.broadcas |
| 87e00 | 74 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 27 73 20 72 65 61 6c | t.address,.and.the.server's.real |
| 87e20 | 20 70 72 6f 74 6f 63 6f 6c 20 61 64 64 72 65 73 73 20 69 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 | .protocol.address.is.dynamically |
| 87e40 | 20 64 65 74 65 63 74 65 64 20 66 72 6f 6d 20 74 68 65 20 66 69 72 73 74 20 72 65 67 69 73 74 72 | .detected.from.the.first.registr |
| 87e60 | 61 74 69 6f 6e 20 72 65 70 6c 79 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 50 50 50 20 63 | ation.reply..The.following.PPP.c |
| 87e80 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 73 74 73 20 4d 53 43 48 41 50 2d 76 32 3a 00 54 68 | onfiguration.tests.MSCHAP-v2:.Th |
| 87ea0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 60 72 65 63 65 69 76 65 2d 66 69 6c 74 65 72 60 20 6d 6f 64 | e.following.`receive-filter`.mod |
| 87ec0 | 65 73 20 63 61 6e 20 62 65 20 73 65 6c 65 63 74 65 64 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e | es.can.be.selected:.The.followin |
| 87ee0 | 67 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 67 65 6e 65 72 61 74 | g.command.can.be.used.to.generat |
| 87f00 | 65 20 74 68 65 20 4f 54 50 20 6b 65 79 20 61 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 43 4c 49 | e.the.OTP.key.as.well.as.the.CLI |
| 87f20 | 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 3a 00 54 68 65 | .commands.to.configure.them:.The |
| 87f40 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 75 73 65 73 20 74 68 65 20 65 78 70 6c | .following.command.uses.the.expl |
| 87f60 | 69 63 69 74 2d 6e 75 6c 6c 20 6c 61 62 65 6c 20 76 61 6c 75 65 20 66 6f 72 20 61 6c 6c 20 74 68 | icit-null.label.value.for.all.th |
| 87f80 | 65 20 42 47 50 20 69 6e 73 74 61 6e 63 65 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 | e.BGP.instances..The.following.c |
| 87fa0 | 6f 6d 6d 61 6e 64 73 20 6c 65 74 20 79 6f 75 20 63 68 65 63 6b 20 74 75 6e 6e 65 6c 20 73 74 61 | ommands.let.you.check.tunnel.sta |
| 87fc0 | 74 75 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 6c 65 74 20 | tus..The.following.commands.let. |
| 87fe0 | 79 6f 75 20 72 65 73 65 74 20 4f 70 65 6e 56 50 4e 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | you.reset.OpenVPN..The.following |
| 88000 | 20 63 6f 6d 6d 61 6e 64 73 20 74 72 61 6e 73 6c 61 74 65 20 74 6f 20 22 2d 2d 6e 65 74 20 68 6f | .commands.translate.to."--net.ho |
| 88020 | 73 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 | st".when.the.container.is.create |
| 88040 | 64 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 77 6f 75 6c 64 20 62 | d.The.following.commands.would.b |
| 88060 | 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 74 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 61 20 | e.required.to.set.options.for.a. |
| 88080 | 67 69 76 65 6e 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 69 | given.dynamic.routing.protocol.i |
| 880a0 | 6e 73 69 64 65 20 61 20 67 69 76 65 6e 20 76 72 66 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | nside.a.given.vrf:.The.following |
| 880c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 65 6d 6f 6e 73 74 72 61 74 65 73 20 68 6f 77 20 | .configuration.demonstrates.how. |
| 880e0 | 74 6f 20 75 73 65 20 56 79 4f 53 20 74 6f 20 61 63 68 69 65 76 65 20 6c 6f 61 64 20 62 61 6c 61 | to.use.VyOS.to.achieve.load.bala |
| 88100 | 6e 63 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 2e 00 | ncing.based.on.the.domain.name.. |
| 88120 | 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 70 6c | The.following.configuration.expl |
| 88140 | 69 63 69 74 6c 79 20 6a 6f 69 6e 73 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 60 66 66 | icitly.joins.multicast.group.`ff |
| 88160 | 31 35 3a 3a 31 32 33 34 60 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 20 61 6e | 15::1234`.on.interface.`eth1`.an |
| 88180 | 64 20 73 6f 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 | d.source-specific.multicast.grou |
| 881a0 | 70 20 60 66 66 31 35 3a 3a 35 36 37 38 60 20 77 69 74 68 20 73 6f 75 72 63 65 20 61 64 64 72 65 | p.`ff15::5678`.with.source.addre |
| 881c0 | 73 73 20 60 32 30 30 31 3a 64 62 38 3a 3a 31 60 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 | ss.`2001:db8::1`.on.interface.`e |
| 881e0 | 74 68 31 60 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | th1`:.The.following.configuratio |
| 88200 | 6e 20 6f 6e 20 56 79 4f 53 20 61 70 70 6c 69 65 73 20 74 6f 20 61 6c 6c 20 66 6f 6c 6c 6f 77 69 | n.on.VyOS.applies.to.all.followi |
| 88220 | 6e 67 20 33 72 64 20 70 61 72 74 79 20 76 65 6e 64 6f 72 73 2e 20 49 74 20 63 72 65 61 74 65 73 | ng.3rd.party.vendors..It.creates |
| 88240 | 20 61 20 62 6f 6e 64 20 77 69 74 68 20 74 77 6f 20 6c 69 6e 6b 73 20 61 6e 64 20 56 4c 41 4e 20 | .a.bond.with.two.links.and.VLAN. |
| 88260 | 31 30 2c 20 31 30 30 20 6f 6e 20 74 68 65 20 62 6f 6e 64 65 64 20 69 6e 74 65 72 66 61 63 65 73 | 10,.100.on.the.bonded.interfaces |
| 88280 | 20 77 69 74 68 20 61 20 70 65 72 20 56 49 46 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 00 54 68 | .with.a.per.VIF.IPv4.address..Th |
| 882a0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 72 65 76 65 72 73 | e.following.configuration.revers |
| 882c0 | 65 2d 70 72 6f 78 79 20 74 65 72 6d 69 6e 61 74 65 20 53 53 4c 2e 00 54 68 65 20 66 6f 6c 6c 6f | e-proxy.terminate.SSL..The.follo |
| 882e0 | 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 72 6d 69 6e 61 74 65 73 20 53 53 | wing.configuration.terminates.SS |
| 88300 | 4c 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 | L.on.the.router..The.following.c |
| 88320 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 72 6d 69 6e 61 74 65 73 20 69 6e 63 6f 6d 69 6e 67 | onfiguration.terminates.incoming |
| 88340 | 20 48 54 54 50 53 20 74 72 61 66 66 69 63 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2c 20 74 68 | .HTTPS.traffic.on.the.router,.th |
| 88360 | 65 6e 20 72 65 2d 65 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 | en.re-encrypts.the.traffic.and.s |
| 88380 | 65 6e 64 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 76 69 61 20 48 | ends.to.the.backend.server.via.H |
| 883a0 | 54 54 50 53 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 69 66 20 65 6e 63 72 79 70 74 69 | TTPS..This.is.useful.if.encrypti |
| 883c0 | 6f 6e 20 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 62 6f 74 68 20 6c 65 67 73 2c 20 62 75 | on.is.required.for.both.legs,.bu |
| 883e0 | 74 20 79 6f 75 20 64 6f 20 6e 6f 74 20 77 61 6e 74 20 74 6f 20 69 6e 73 74 61 6c 6c 20 70 75 62 | t.you.do.not.want.to.install.pub |
| 88400 | 6c 69 63 6c 79 20 74 72 75 73 74 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 6e 20 65 61 | licly.trusted.certificates.on.ea |
| 88420 | 63 68 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | ch.backend.server..The.following |
| 88440 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 20 2f 36 34 | .configuration.will.assign.a./64 |
| 88460 | 20 70 72 65 66 69 78 20 6f 75 74 20 6f 66 20 61 20 2f 35 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 | .prefix.out.of.a./56.delegation. |
| 88480 | 74 6f 20 65 74 68 30 2e 20 54 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e | to.eth0..The.IPv6.address.assign |
| 884a0 | 65 64 20 74 6f 20 65 74 68 30 20 77 69 6c 6c 20 62 65 20 3c 70 72 65 66 69 78 3e 3a 3a 66 66 66 | ed.to.eth0.will.be.<prefix>::fff |
| 884c0 | 66 2f 36 34 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 20 70 72 65 | f/64..If.you.do.not.know.the.pre |
| 884e0 | 66 69 78 20 73 69 7a 65 20 64 65 6c 65 67 61 74 65 64 20 74 6f 20 79 6f 75 2c 20 73 74 61 72 74 | fix.size.delegated.to.you,.start |
| 88500 | 20 77 69 74 68 20 73 6c 61 2d 6c 65 6e 20 30 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 | .with.sla-len.0..The.following.c |
| 88520 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 73 65 74 75 70 20 61 20 50 50 50 6f 45 20 | onfiguration.will.setup.a.PPPoE. |
| 88540 | 73 65 73 73 69 6f 6e 20 73 6f 75 72 63 65 20 66 72 6f 6d 20 65 74 68 31 20 61 6e 64 20 61 73 73 | session.source.from.eth1.and.ass |
| 88560 | 69 67 6e 20 61 20 2f 36 34 20 70 72 65 66 69 78 20 6f 75 74 20 6f 66 20 61 20 2f 35 36 20 64 65 | ign.a./64.prefix.out.of.a./56.de |
| 88580 | 6c 65 67 61 74 69 6f 6e 20 28 72 65 71 75 65 73 74 65 64 20 66 72 6f 6d 20 74 68 65 20 49 53 50 | legation.(requested.from.the.ISP |
| 885a0 | 29 20 74 6f 20 65 74 68 30 2e 20 54 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 | ).to.eth0..The.IPv6.address.assi |
| 885c0 | 67 6e 65 64 20 74 6f 20 65 74 68 30 20 77 69 6c 6c 20 62 65 20 3c 70 72 65 66 69 78 3e 3a 3a 31 | gned.to.eth0.will.be.<prefix>::1 |
| 885e0 | 2f 36 34 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 20 70 72 65 66 | /64..If.you.do.not.know.the.pref |
| 88600 | 69 78 20 73 69 7a 65 20 64 65 6c 65 67 61 74 65 64 20 74 6f 20 79 6f 75 2c 20 73 74 61 72 74 20 | ix.size.delegated.to.you,.start. |
| 88620 | 77 69 74 68 20 73 6c 61 2d 6c 65 6e 20 30 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 | with.sla-len.0..The.following.ex |
| 88640 | 61 6d 70 6c 65 20 61 6c 6c 6f 77 73 20 56 79 4f 53 20 74 6f 20 75 73 65 20 3a 61 62 62 72 3a 60 | ample.allows.VyOS.to.use.:abbr:` |
| 88660 | 50 42 52 20 28 50 6f 6c 69 63 79 2d 42 61 73 65 64 20 52 6f 75 74 69 6e 67 29 60 20 66 6f 72 20 | PBR.(Policy-Based.Routing)`.for. |
| 88680 | 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 74 | traffic,.which.originated.from.t |
| 886a0 | 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 61 74 20 73 6f 6c 75 74 69 6f 6e 20 | he.router.itself..That.solution. |
| 886c0 | 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 49 53 50 27 73 20 61 6e 64 20 56 79 4f 53 20 72 6f 75 74 | for.multiple.ISP's.and.VyOS.rout |
| 886e0 | 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 69 6e | er.will.respond.from.the.same.in |
| 88700 | 74 65 72 66 61 63 65 20 74 68 61 74 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 | terface.that.the.packet.was.rece |
| 88720 | 69 76 65 64 2e 20 41 6c 73 6f 2c 20 69 74 20 75 73 65 64 2c 20 69 66 20 77 65 20 77 61 6e 74 20 | ived..Also,.it.used,.if.we.want. |
| 88740 | 74 68 61 74 20 6f 6e 65 20 56 50 4e 20 74 75 6e 6e 65 6c 20 74 6f 20 62 65 20 74 68 72 6f 75 67 | that.one.VPN.tunnel.to.be.throug |
| 88760 | 68 20 6f 6e 65 20 70 72 6f 76 69 64 65 72 2c 20 61 6e 64 20 74 68 65 20 73 65 63 6f 6e 64 20 74 | h.one.provider,.and.the.second.t |
| 88780 | 68 72 6f 75 67 68 20 61 6e 6f 74 68 65 72 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 | hrough.another..The.following.ex |
| 887a0 | 61 6d 70 6c 65 20 63 72 65 61 74 65 73 20 61 20 57 41 50 2e 20 57 68 65 6e 20 63 6f 6e 66 69 67 | ample.creates.a.WAP..When.config |
| 887c0 | 75 72 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 57 41 50 20 69 6e 74 65 72 66 61 63 65 73 2c 20 79 | uring.multiple.WAP.interfaces,.y |
| 887e0 | 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 75 6e 69 71 75 65 20 49 50 20 61 64 64 72 65 73 | ou.must.specify.unique.IP.addres |
| 88800 | 73 65 73 2c 20 63 68 61 6e 6e 65 6c 73 2c 20 4e 65 74 77 6f 72 6b 20 49 44 73 20 63 6f 6d 6d 6f | ses,.channels,.Network.IDs.commo |
| 88820 | 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 3a 61 62 62 72 3a 60 53 53 49 44 20 28 | nly.referred.to.as.:abbr:`SSID.( |
| 88840 | 53 65 72 76 69 63 65 20 53 65 74 20 49 64 65 6e 74 69 66 69 65 72 29 60 2c 20 61 6e 64 20 4d 41 | Service.Set.Identifier)`,.and.MA |
| 88860 | 43 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 | C.addresses..The.following.examp |
| 88880 | 6c 65 20 69 73 20 62 61 73 65 64 20 6f 6e 20 61 20 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 | le.is.based.on.a.Sierra.Wireless |
| 888a0 | 20 4d 43 37 37 31 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 6f 6e 6c 79 20 74 68 65 20 | .MC7710.miniPCIe.card.(only.the. |
| 888c0 | 66 6f 72 6d 20 66 61 63 74 6f 72 20 69 6e 20 72 65 61 6c 69 74 79 20 69 74 20 72 75 6e 73 20 55 | form.factor.in.reality.it.runs.U |
| 888e0 | 42 53 29 20 61 6e 64 20 44 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 20 61 73 20 49 53 50 2e | BS).and.Deutsche.Telekom.as.ISP. |
| 88900 | 20 54 68 65 20 63 61 72 64 20 69 73 20 61 73 73 65 6d 62 6c 65 64 20 69 6e 74 6f 20 61 20 3a 72 | .The.card.is.assembled.into.a.:r |
| 88920 | 65 66 3a 60 70 63 2d 65 6e 67 69 6e 65 73 2d 61 70 75 34 60 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 | ef:`pc-engines-apu4`..The.follow |
| 88940 | 69 6e 67 20 65 78 61 6d 70 6c 65 20 74 6f 70 6f 6c 6f 67 79 20 77 61 73 20 62 75 69 6c 74 20 75 | ing.example.topology.was.built.u |
| 88960 | 73 69 6e 67 20 45 56 45 2d 4e 47 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 | sing.EVE-NG..The.following.examp |
| 88980 | 6c 65 20 77 69 6c 6c 20 73 68 6f 77 20 68 6f 77 20 56 79 4f 53 20 63 61 6e 20 62 65 20 75 73 65 | le.will.show.how.VyOS.can.be.use |
| 889a0 | 64 20 74 6f 20 72 65 64 69 72 65 63 74 20 77 65 62 20 74 72 61 66 66 69 63 20 74 6f 20 61 6e 20 | d.to.redirect.web.traffic.to.an. |
| 889c0 | 65 78 74 65 72 6e 61 6c 20 74 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 3a 00 54 68 65 20 | external.transparent.proxy:.The. |
| 889e0 | 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 73 20 73 68 6f 77 20 68 6f 77 20 74 6f 20 63 | following.examples.show.how.to.c |
| 88a00 | 6f 6e 66 69 67 75 72 65 20 4e 41 54 36 34 20 6f 6e 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 2e | onfigure.NAT64.on.a.VyOS.router. |
| 88a20 | 20 54 68 65 20 31 39 32 2e 30 2e 32 2e 31 30 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 20 | .The.192.0.2.10.address.is.used. |
| 88a40 | 61 73 20 74 68 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 74 72 61 6e | as.the.IPv4.address.for.the.tran |
| 88a60 | 73 6c 61 74 69 6f 6e 20 70 6f 6f 6c 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d | slation.pool..The.following.exam |
| 88a80 | 70 6c 65 73 20 77 69 6c 6c 20 73 68 6f 77 20 76 61 6c 69 64 20 63 6f 6e 66 69 67 75 72 61 74 69 | ples.will.show.valid.configurati |
| 88aa0 | 6f 6e 73 20 66 6f 72 20 57 69 46 69 2d 36 20 28 32 2e 34 47 48 7a 29 20 61 6e 64 20 57 69 46 69 | ons.for.WiFi-6.(2.4GHz).and.WiFi |
| 88ac0 | 2d 36 65 20 28 36 47 48 7a 29 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 73 20 77 69 74 68 20 74 68 | -6e.(6GHz).Access-Points.with.th |
| 88ae0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 68 61 72 61 63 74 65 72 69 73 74 69 63 73 3a 00 54 68 65 | e.following.characteristics:.The |
| 88b00 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 68 61 72 64 77 61 72 65 20 6d 6f 64 75 6c 65 73 20 68 61 76 65 | .following.hardware.modules.have |
| 88b20 | 20 62 65 65 6e 20 74 65 73 74 65 64 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 69 6e 20 61 6e 20 | .been.tested.successfully.in.an. |
| 88b40 | 3a 72 65 66 3a 60 70 63 2d 65 6e 67 69 6e 65 73 2d 61 70 75 34 60 20 62 6f 61 72 64 3a 00 54 68 | :ref:`pc-engines-apu4`.board:.Th |
| 88b60 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 69 73 20 74 68 65 20 63 6f 6e 66 69 67 20 66 6f 72 20 74 68 | e.following.is.the.config.for.th |
| 88b80 | 65 20 69 50 68 6f 6e 65 20 70 65 65 72 20 61 62 6f 76 65 2e 20 49 74 27 73 20 69 6d 70 6f 72 74 | e.iPhone.peer.above..It's.import |
| 88ba0 | 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 74 68 65 20 60 60 41 6c 6c 6f 77 65 64 49 50 | ant.to.note.that.the.``AllowedIP |
| 88bc0 | 73 60 60 20 77 69 6c 64 63 61 72 64 20 73 65 74 74 69 6e 67 20 64 69 72 65 63 74 73 20 61 6c 6c | s``.wildcard.setting.directs.all |
| 88be0 | 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 74 | .IPv4.and.IPv6.traffic.through.t |
| 88c00 | 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f | he.connection..The.following.pro |
| 88c20 | 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 | tocols.can.be.used:.any,.babel,. |
| 88c40 | 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 | bgp,.connected,.eigrp,.isis,.ker |
| 88c60 | 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 54 68 | nel,.ospf,.rip,.static,.table.Th |
| 88c80 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 | e.following.protocols.can.be.use |
| 88ca0 | 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 | d:.any,.babel,.bgp,.connected,.i |
| 88cc0 | 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 | sis,.kernel,.ospfv3,.ripng,.stat |
| 88ce0 | 69 63 2c 20 74 61 62 6c 65 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 72 75 63 74 75 72 | ic,.table.The.following.structur |
| 88d00 | 65 20 72 65 73 70 72 65 73 65 6e 74 20 74 68 65 20 63 6c 69 20 73 74 72 75 63 74 75 72 65 2e 00 | e.respresent.the.cli.structure.. |
| 88d20 | 54 68 65 20 66 6f 72 6d 75 6c 61 20 66 6f 72 20 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 54 43 50 | The.formula.for.unfragmented.TCP |
| 88d40 | 20 61 6e 64 20 55 44 50 20 70 61 63 6b 65 74 73 20 69 73 00 54 68 65 20 66 6f 72 77 61 72 64 69 | .and.UDP.packets.is.The.forwardi |
| 88d60 | 6e 67 20 64 65 6c 61 79 20 74 69 6d 65 20 69 73 20 74 68 65 20 74 69 6d 65 20 73 70 65 6e 74 20 | ng.delay.time.is.the.time.spent. |
| 88d80 | 69 6e 20 65 61 63 68 20 6f 66 20 74 68 65 20 6c 69 73 74 65 6e 69 6e 67 20 61 6e 64 20 6c 65 61 | in.each.of.the.listening.and.lea |
| 88da0 | 72 6e 69 6e 67 20 73 74 61 74 65 73 20 62 65 66 6f 72 65 20 74 68 65 20 46 6f 72 77 61 72 64 69 | rning.states.before.the.Forwardi |
| 88dc0 | 6e 67 20 73 74 61 74 65 20 69 73 20 65 6e 74 65 72 65 64 2e 20 54 68 69 73 20 64 65 6c 61 79 20 | ng.state.is.entered..This.delay. |
| 88de0 | 69 73 20 73 6f 20 74 68 61 74 20 77 68 65 6e 20 61 20 6e 65 77 20 62 72 69 64 67 65 20 63 6f 6d | is.so.that.when.a.new.bridge.com |
| 88e00 | 65 73 20 6f 6e 74 6f 20 61 20 62 75 73 79 20 6e 65 74 77 6f 72 6b 20 69 74 20 6c 6f 6f 6b 73 20 | es.onto.a.busy.network.it.looks. |
| 88e20 | 61 74 20 73 6f 6d 65 20 74 72 61 66 66 69 63 20 62 65 66 6f 72 65 20 70 61 72 74 69 63 69 70 61 | at.some.traffic.before.participa |
| 88e40 | 74 69 6e 67 2e 00 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ting..The.generated.configuratio |
| 88e60 | 6e 20 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 | n.will.look.like:.The.generated. |
| 88e80 | 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 74 68 65 6e 20 6f 75 74 70 75 74 20 74 6f 20 74 68 | parameters.are.then.output.to.th |
| 88ea0 | 65 20 63 6f 6e 73 6f 6c 65 2e 00 54 68 65 20 67 65 6e 65 72 69 63 20 6e 61 6d 65 20 6f 66 20 51 | e.console..The.generic.name.of.Q |
| 88ec0 | 75 61 6c 69 74 79 20 6f 66 20 53 65 72 76 69 63 65 20 6f 72 20 54 72 61 66 66 69 63 20 43 6f 6e | uality.of.Service.or.Traffic.Con |
| 88ee0 | 74 72 6f 6c 20 69 6e 76 6f 6c 76 65 73 20 74 68 69 6e 67 73 20 6c 69 6b 65 20 73 68 61 70 69 6e | trol.involves.things.like.shapin |
| 88f00 | 67 20 74 72 61 66 66 69 63 2c 20 73 63 68 65 64 75 6c 69 6e 67 20 6f 72 20 64 72 6f 70 70 69 6e | g.traffic,.scheduling.or.droppin |
| 88f20 | 67 20 70 61 63 6b 65 74 73 2c 20 77 68 69 63 68 20 61 72 65 20 74 68 65 20 6b 69 6e 64 20 6f 66 | g.packets,.which.are.the.kind.of |
| 88f40 | 20 74 68 69 6e 67 73 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 70 6c 61 79 20 77 69 74 | .things.you.may.want.to.play.wit |
| 88f60 | 68 20 77 68 65 6e 20 79 6f 75 20 68 61 76 65 2c 20 66 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 61 | h.when.you.have,.for.instance,.a |
| 88f80 | 20 62 61 6e 64 77 69 64 74 68 20 62 6f 74 74 6c 65 6e 65 63 6b 20 69 6e 20 61 20 6c 69 6e 6b 20 | .bandwidth.bottleneck.in.a.link. |
| 88fa0 | 61 6e 64 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 73 6f 6d 65 68 6f 77 20 70 72 69 6f 72 69 74 69 | and.you.want.to.somehow.prioriti |
| 88fc0 | 7a 65 20 73 6f 6d 65 20 74 79 70 65 20 6f 66 20 74 72 61 66 66 69 63 20 6f 76 65 72 20 61 6e 6f | ze.some.type.of.traffic.over.ano |
| 88fe0 | 74 68 65 72 2e 00 54 68 65 20 68 61 73 68 20 74 79 70 65 20 75 73 65 64 20 77 68 65 6e 20 64 69 | ther..The.hash.type.used.when.di |
| 89000 | 73 63 6f 76 65 72 69 6e 67 20 66 69 6c 65 20 6f 6e 20 6d 61 73 74 65 72 20 73 65 72 76 65 72 20 | scovering.file.on.master.server. |
| 89020 | 28 64 65 66 61 75 6c 74 3a 20 73 68 61 32 35 36 29 00 54 68 65 20 68 65 61 6c 74 68 20 6f 66 20 | (default:.sha256).The.health.of. |
| 89040 | 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 70 61 74 68 73 20 61 73 73 69 67 6e 65 64 20 74 6f | interfaces.and.paths.assigned.to |
| 89060 | 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 69 73 20 70 65 72 69 6f 64 69 63 61 6c | .the.load.balancer.is.periodical |
| 89080 | 6c 79 20 63 68 65 63 6b 65 64 20 62 79 20 73 65 6e 64 69 6e 67 20 49 43 4d 50 20 70 61 63 6b 65 | ly.checked.by.sending.ICMP.packe |
| 890a0 | 74 73 20 28 70 69 6e 67 29 20 74 6f 20 72 65 6d 6f 74 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 | ts.(ping).to.remote.destinations |
| 890c0 | 2c 20 61 20 54 54 4c 20 74 65 73 74 20 6f 72 20 74 68 65 20 65 78 65 63 75 74 69 6f 6e 20 6f 66 | ,.a.TTL.test.or.the.execution.of |
| 890e0 | 20 61 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 2e 20 49 66 20 61 6e 20 69 6e | .a.user.defined.script..If.an.in |
| 89100 | 74 65 72 66 61 63 65 20 66 61 69 6c 73 20 74 68 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 69 | terface.fails.the.health.check.i |
| 89120 | 74 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e | t.is.removed.from.the.load.balan |
| 89140 | 63 65 72 27 73 20 70 6f 6f 6c 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 6f 20 65 6e 61 | cer's.pool.of.interfaces..To.ena |
| 89160 | 62 6c 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 | ble.health.checking.for.an.inter |
| 89180 | 66 61 63 65 3a 00 54 68 65 20 68 65 6c 6c 6f 2d 6d 75 6c 74 69 70 6c 69 65 72 20 73 70 65 63 69 | face:.The.hello-multiplier.speci |
| 891a0 | 66 69 65 73 20 68 6f 77 20 6d 61 6e 79 20 48 65 6c 6c 6f 73 20 74 6f 20 73 65 6e 64 20 70 65 72 | fies.how.many.Hellos.to.send.per |
| 891c0 | 20 73 65 63 6f 6e 64 2c 20 66 72 6f 6d 20 31 20 28 65 76 65 72 79 20 73 65 63 6f 6e 64 29 20 74 | .second,.from.1.(every.second).t |
| 891e0 | 6f 20 31 30 20 28 65 76 65 72 79 20 31 30 30 6d 73 29 2e 20 54 68 75 73 20 6f 6e 65 20 63 61 6e | o.10.(every.100ms)..Thus.one.can |
| 89200 | 20 68 61 76 65 20 31 73 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 69 6d 65 20 66 6f 72 20 4f 53 | .have.1s.convergence.time.for.OS |
| 89220 | 50 46 2e 20 49 66 20 74 68 69 73 20 66 6f 72 6d 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 | PF..If.this.form.is.specified,.t |
| 89240 | 68 65 6e 20 74 68 65 20 68 65 6c 6c 6f 2d 69 6e 74 65 72 76 61 6c 20 61 64 76 65 72 74 69 73 65 | hen.the.hello-interval.advertise |
| 89260 | 64 20 69 6e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 69 73 20 73 65 74 20 74 6f 20 30 20 61 | d.in.Hello.packets.is.set.to.0.a |
| 89280 | 6e 64 20 74 68 65 20 68 65 6c 6c 6f 2d 69 6e 74 65 72 76 61 6c 20 6f 6e 20 72 65 63 65 69 76 65 | nd.the.hello-interval.on.receive |
| 892a0 | 64 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 69 73 20 6e 6f 74 20 63 68 65 63 6b 65 64 2c 20 | d.Hello.packets.is.not.checked,. |
| 892c0 | 74 68 75 73 20 74 68 65 20 68 65 6c 6c 6f 2d 6d 75 6c 74 69 70 6c 69 65 72 20 6e 65 65 64 20 4e | thus.the.hello-multiplier.need.N |
| 892e0 | 4f 54 20 62 65 20 74 68 65 20 73 61 6d 65 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 72 | OT.be.the.same.across.multiple.r |
| 89300 | 6f 75 74 65 72 73 20 6f 6e 20 61 20 63 6f 6d 6d 6f 6e 20 6c 69 6e 6b 2e 00 54 68 65 20 68 6f 73 | outers.on.a.common.link..The.hos |
| 89320 | 74 6e 61 6d 65 20 63 61 6e 20 62 65 20 75 70 20 74 6f 20 36 33 20 63 68 61 72 61 63 74 65 72 73 | tname.can.be.up.to.63.characters |
| 89340 | 2e 20 41 20 68 6f 73 74 6e 61 6d 65 20 6d 75 73 74 20 73 74 61 72 74 20 61 6e 64 20 65 6e 64 20 | ..A.hostname.must.start.and.end. |
| 89360 | 77 69 74 68 20 61 20 6c 65 74 74 65 72 20 6f 72 20 64 69 67 69 74 2c 20 61 6e 64 20 68 61 76 65 | with.a.letter.or.digit,.and.have |
| 89380 | 20 61 73 20 69 6e 74 65 72 69 6f 72 20 63 68 61 72 61 63 74 65 72 73 20 6f 6e 6c 79 20 6c 65 74 | .as.interior.characters.only.let |
| 893a0 | 74 65 72 73 2c 20 64 69 67 69 74 73 2c 20 6f 72 20 61 20 68 79 70 68 65 6e 2e 00 54 68 65 20 68 | ters,.digits,.or.a.hyphen..The.h |
| 893c0 | 6f 73 74 6e 61 6d 65 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6d 61 73 | ostname.or.IP.address.of.the.mas |
| 893e0 | 74 65 72 00 54 68 65 20 69 64 65 6e 74 69 66 69 65 72 20 69 73 20 74 68 65 20 64 65 76 69 63 65 | ter.The.identifier.is.the.device |
| 89400 | 27 73 20 44 55 49 44 3a 20 63 6f 6c 6f 6e 2d 73 65 70 61 72 61 74 65 64 20 68 65 78 20 6c 69 73 | 's.DUID:.colon-separated.hex.lis |
| 89420 | 74 20 28 61 73 20 75 73 65 64 20 62 79 20 69 73 63 2d 64 68 63 70 20 6f 70 74 69 6f 6e 20 64 68 | t.(as.used.by.isc-dhcp.option.dh |
| 89440 | 63 70 76 36 2e 63 6c 69 65 6e 74 2d 69 64 29 2e 20 49 66 20 74 68 65 20 64 65 76 69 63 65 20 61 | cpv6.client-id)..If.the.device.a |
| 89460 | 6c 72 65 61 64 79 20 68 61 73 20 61 20 64 79 6e 61 6d 69 63 20 6c 65 61 73 65 20 66 72 6f 6d 20 | lready.has.a.dynamic.lease.from. |
| 89480 | 74 68 65 20 44 48 43 50 76 36 20 73 65 72 76 65 72 2c 20 69 74 73 20 44 55 49 44 20 63 61 6e 20 | the.DHCPv6.server,.its.DUID.can. |
| 894a0 | 62 65 20 66 6f 75 6e 64 20 77 69 74 68 20 60 60 73 68 6f 77 20 73 65 72 76 69 63 65 20 64 68 63 | be.found.with.``show.service.dhc |
| 894c0 | 70 76 36 20 73 65 72 76 65 72 20 6c 65 61 73 65 73 60 60 2e 20 54 68 65 20 44 55 49 44 20 62 65 | pv6.server.leases``..The.DUID.be |
| 894e0 | 67 69 6e 73 20 61 74 20 74 68 65 20 35 74 68 20 6f 63 74 65 74 20 28 61 66 74 65 72 20 74 68 65 | gins.at.the.5th.octet.(after.the |
| 89500 | 20 34 74 68 20 63 6f 6c 6f 6e 29 20 6f 66 20 49 41 49 44 5f 44 55 49 44 2e 00 54 68 65 20 69 6e | .4th.colon).of.IAID_DUID..The.in |
| 89520 | 64 69 76 69 64 75 61 6c 20 73 70 6f 6b 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 6f 6e | dividual.spoke.configurations.on |
| 89540 | 6c 79 20 64 69 66 66 65 72 20 69 6e 20 74 68 65 20 6c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 73 | ly.differ.in.the.local.IP.addres |
| 89560 | 73 20 6f 6e 20 74 68 65 20 60 60 74 75 6e 31 30 60 60 20 69 6e 74 65 72 66 61 63 65 2e 20 53 65 | s.on.the.``tun10``.interface..Se |
| 89580 | 65 20 74 68 65 20 61 62 6f 76 65 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 68 65 20 69 6e 64 69 | e.the.above.diagram.for.the.indi |
| 895a0 | 76 69 64 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 69 6e 6e 65 72 20 74 | vidual.IP.addresses..The.inner.t |
| 895c0 | 61 67 20 69 73 20 74 68 65 20 74 61 67 20 77 68 69 63 68 20 69 73 20 63 6c 6f 73 65 73 74 20 74 | ag.is.the.tag.which.is.closest.t |
| 895e0 | 6f 20 74 68 65 20 70 61 79 6c 6f 61 64 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 66 72 61 | o.the.payload.portion.of.the.fra |
| 89600 | 6d 65 2e 20 49 74 20 69 73 20 6f 66 66 69 63 69 61 6c 6c 79 20 63 61 6c 6c 65 64 20 43 2d 54 41 | me..It.is.officially.called.C-TA |
| 89620 | 47 20 28 63 75 73 74 6f 6d 65 72 20 74 61 67 2c 20 77 69 74 68 20 65 74 68 65 72 74 79 70 65 20 | G.(customer.tag,.with.ethertype. |
| 89640 | 30 78 38 31 30 30 29 2e 20 54 68 65 20 6f 75 74 65 72 20 74 61 67 20 69 73 20 74 68 65 20 6f 6e | 0x8100)..The.outer.tag.is.the.on |
| 89660 | 65 20 63 6c 6f 73 65 72 2f 63 6c 6f 73 65 73 74 20 74 6f 20 74 68 65 20 45 74 68 65 72 6e 65 74 | e.closer/closest.to.the.Ethernet |
| 89680 | 20 68 65 61 64 65 72 2c 20 69 74 73 20 6e 61 6d 65 20 69 73 20 53 2d 54 41 47 20 28 73 65 72 76 | .header,.its.name.is.S-TAG.(serv |
| 896a0 | 69 63 65 20 74 61 67 20 77 69 74 68 20 45 74 68 65 72 6e 65 74 20 54 79 70 65 20 3d 20 30 78 38 | ice.tag.with.Ethernet.Type.=.0x8 |
| 896c0 | 38 61 38 29 2e 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 | 8a8)..The.interface.that.will.be |
| 896e0 | 20 6d 6f 6e 69 74 6f 72 65 64 20 62 79 20 74 68 65 20 53 75 72 69 63 61 74 61 20 73 65 72 76 69 | .monitored.by.the.Suricata.servi |
| 89700 | 63 65 2e 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 | ce..The.interface.traffic.will.b |
| 89720 | 65 20 63 6f 6d 69 6e 67 20 69 6e 20 6f 6e 3b 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 20 75 73 | e.coming.in.on;.The.interface.us |
| 89740 | 65 64 20 74 6f 20 72 65 63 65 69 76 65 20 61 6e 64 20 72 65 6c 61 79 20 69 6e 64 69 76 69 64 75 | ed.to.receive.and.relay.individu |
| 89760 | 61 6c 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 2e 20 49 66 20 79 6f 75 20 77 61 6e | al.broadcast.packets..If.you.wan |
| 89780 | 74 20 74 6f 20 72 65 63 65 69 76 65 2f 72 65 6c 61 79 20 70 61 63 6b 65 74 73 20 6f 6e 20 62 6f | t.to.receive/relay.packets.on.bo |
| 897a0 | 74 68 20 60 65 74 68 31 60 20 61 6e 64 20 60 65 74 68 32 60 20 62 6f 74 68 20 69 6e 74 65 72 66 | th.`eth1`.and.`eth2`.both.interf |
| 897c0 | 61 63 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 61 64 64 65 64 2e 00 54 68 65 20 69 6e 74 65 72 | aces.need.to.be.added..The.inter |
| 897e0 | 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 77 65 20 77 61 6e 74 20 74 6f 20 74 72 61 6e | nal.IP.addresses.we.want.to.tran |
| 89800 | 73 6c 61 74 65 00 54 68 65 20 69 6e 76 65 72 73 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | slate.The.inverse.configuration. |
| 89820 | 68 61 73 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 | has.to.be.applied.to.the.remote. |
| 89840 | 73 69 64 65 2e 00 54 68 65 20 6c 61 72 67 65 73 74 20 4d 54 55 20 73 69 7a 65 20 79 6f 75 20 63 | side..The.largest.MTU.size.you.c |
| 89860 | 61 6e 20 75 73 65 20 77 69 74 68 20 44 53 4c 20 69 73 20 31 34 39 32 20 64 75 65 20 74 6f 20 50 | an.use.with.DSL.is.1492.due.to.P |
| 89880 | 50 50 6f 45 20 6f 76 65 72 68 65 61 64 2e 20 49 66 20 79 6f 75 20 61 72 65 20 73 77 69 74 63 68 | PPoE.overhead..If.you.are.switch |
| 898a0 | 69 6e 67 20 66 72 6f 6d 20 61 20 44 48 43 50 20 62 61 73 65 64 20 49 53 50 20 6c 69 6b 65 20 63 | ing.from.a.DHCP.based.ISP.like.c |
| 898c0 | 61 62 6c 65 20 74 68 65 6e 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 74 68 69 6e 67 73 20 6c | able.then.be.aware.that.things.l |
| 898e0 | 69 6b 65 20 56 50 4e 20 6c 69 6e 6b 73 20 6d 61 79 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 74 | ike.VPN.links.may.need.to.have.t |
| 89900 | 68 65 69 72 20 4d 54 55 20 73 69 7a 65 73 20 61 64 6a 75 73 74 65 64 20 74 6f 20 77 6f 72 6b 20 | heir.MTU.sizes.adjusted.to.work. |
| 89920 | 77 69 74 68 69 6e 20 74 68 69 73 20 6c 69 6d 69 74 2e 00 54 68 65 20 6c 61 73 74 20 73 74 65 70 | within.this.limit..The.last.step |
| 89940 | 20 69 73 20 74 6f 20 64 65 66 69 6e 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 72 6f 75 74 65 | .is.to.define.an.interface.route |
| 89960 | 20 66 6f 72 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 20 74 6f 20 67 65 74 20 74 68 72 6f 75 | .for.192.168.2.0/24.to.get.throu |
| 89980 | 67 68 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 60 77 67 30 31 | gh.the.WireGuard.interface.`wg01 |
| 899a0 | 60 2e 20 4d 75 6c 74 69 70 6c 65 20 49 50 73 20 6f 72 20 6e 65 74 77 6f 72 6b 73 20 63 61 6e 20 | `..Multiple.IPs.or.networks.can. |
| 899c0 | 62 65 20 64 65 66 69 6e 65 64 20 61 6e 64 20 72 6f 75 74 65 64 2e 20 54 68 65 20 6c 61 73 74 20 | be.defined.and.routed..The.last. |
| 899e0 | 63 68 65 63 6b 20 69 73 20 61 6c 6c 6f 77 65 64 2d 69 70 73 20 77 68 69 63 68 20 65 69 74 68 65 | check.is.allowed-ips.which.eithe |
| 89a00 | 72 20 70 72 65 76 65 6e 74 73 20 6f 72 20 61 6c 6c 6f 77 73 20 74 68 65 20 74 72 61 66 66 69 63 | r.prevents.or.allows.the.traffic |
| 89a20 | 2e 00 54 68 65 20 6c 65 67 61 63 79 20 61 6e 64 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 | ..The.legacy.and.zone-based.fire |
| 89a40 | 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 69 73 20 6e 6f | wall.configuration.options.is.no |
| 89a60 | 74 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 2e 20 54 68 65 79 20 61 72 65 20 68 65 72 | t.longer.supported..They.are.her |
| 89a80 | 65 20 66 6f 72 20 72 65 66 65 72 65 6e 63 65 20 70 75 72 70 6f 73 65 73 20 6f 6e 6c 79 2e 00 54 | e.for.reference.purposes.only..T |
| 89aa0 | 68 65 20 6c 69 6d 69 74 65 72 20 70 65 72 66 6f 72 6d 73 20 62 61 73 69 63 20 69 6e 67 72 65 73 | he.limiter.performs.basic.ingres |
| 89ac0 | 73 20 70 6f 6c 69 63 69 6e 67 20 6f 66 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2e 20 4d 75 6c | s.policing.of.traffic.flows..Mul |
| 89ae0 | 74 69 70 6c 65 20 63 6c 61 73 73 65 73 20 6f 66 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 | tiple.classes.of.traffic.can.be. |
| 89b00 | 64 65 66 69 6e 65 64 20 61 6e 64 20 74 72 61 66 66 69 63 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 | defined.and.traffic.limits.can.b |
| 89b20 | 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 61 63 68 20 63 6c 61 73 73 2e 20 41 6c 74 68 6f 75 67 | e.applied.to.each.class..Althoug |
| 89b40 | 68 20 74 68 65 20 70 6f 6c 69 63 65 72 20 75 73 65 73 20 61 20 74 6f 6b 65 6e 20 62 75 63 6b 65 | h.the.policer.uses.a.token.bucke |
| 89b60 | 74 20 6d 65 63 68 61 6e 69 73 6d 20 69 6e 74 65 72 6e 61 6c 6c 79 2c 20 69 74 20 64 6f 65 73 20 | t.mechanism.internally,.it.does. |
| 89b80 | 6e 6f 74 20 68 61 76 65 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 79 20 74 6f 20 64 65 6c 61 79 | not.have.the.capability.to.delay |
| 89ba0 | 20 61 20 70 61 63 6b 65 74 20 61 73 20 61 20 73 68 61 70 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d | .a.packet.as.a.shaping.mechanism |
| 89bc0 | 20 64 6f 65 73 2e 20 54 72 61 66 66 69 63 20 65 78 63 65 65 64 69 6e 67 20 74 68 65 20 64 65 66 | .does..Traffic.exceeding.the.def |
| 89be0 | 69 6e 65 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 73 20 69 73 20 64 69 72 65 63 74 6c | ined.bandwidth.limits.is.directl |
| 89c00 | 79 20 64 72 6f 70 70 65 64 2e 20 41 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 62 75 72 | y.dropped..A.maximum.allowed.bur |
| 89c20 | 73 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 6f 2e 00 54 68 65 20 6c 69 | st.can.be.configured.too..The.li |
| 89c40 | 6e 6b 20 62 61 6e 64 77 69 64 74 68 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 | nk.bandwidth.extended.community. |
| 89c60 | 69 73 20 65 6e 63 6f 64 65 64 20 61 73 20 6e 6f 6e 2d 74 72 61 6e 73 69 74 69 76 65 00 54 68 65 | is.encoded.as.non-transitive.The |
| 89c80 | 20 6c 6f 63 61 6c 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f | .local.IPv4.or.IPv6.addresses.to |
| 89ca0 | 20 62 69 6e 64 20 74 68 65 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 74 6f 2e 20 54 68 65 20 | .bind.the.DNS.forwarder.to..The. |
| 89cc0 | 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 69 73 20 61 64 | forwarder.will.listen.on.this.ad |
| 89ce0 | 64 72 65 73 73 20 66 6f 72 20 69 6e 63 6f 6d 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 | dress.for.incoming.connections.. |
| 89d00 | 54 68 65 20 6c 6f 63 61 6c 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 | The.local.IPv4.or.IPv6.addresses |
| 89d20 | 20 74 6f 20 75 73 65 20 61 73 20 61 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 | .to.use.as.a.source.address.for. |
| 89d40 | 73 65 6e 64 69 6e 67 20 71 75 65 72 69 65 73 2e 20 54 68 65 20 66 6f 72 77 61 72 64 65 72 20 77 | sending.queries..The.forwarder.w |
| 89d60 | 69 6c 6c 20 73 65 6e 64 20 66 6f 72 77 61 72 64 65 64 20 6f 75 74 62 6f 75 6e 64 20 44 4e 53 20 | ill.send.forwarded.outbound.DNS. |
| 89d80 | 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 74 68 69 73 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 | requests.from.this.address..The. |
| 89da0 | 6c 6f 63 61 6c 20 73 69 74 65 20 77 69 6c 6c 20 68 61 76 65 20 61 20 73 75 62 6e 65 74 20 6f 66 | local.site.will.have.a.subnet.of |
| 89dc0 | 20 31 30 2e 30 2e 30 2e 30 2f 31 36 2e 00 54 68 65 20 6c 6f 6f 70 62 61 63 6b 20 6e 65 74 77 6f | .10.0.0.0/16..The.loopback.netwo |
| 89de0 | 72 6b 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 20 76 69 72 74 75 61 6c 20 6e 65 74 | rking.interface.is.a.virtual.net |
| 89e00 | 77 6f 72 6b 20 64 65 76 69 63 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 65 6e 74 69 72 65 6c 79 | work.device.implemented.entirely |
| 89e20 | 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 41 6c 6c 20 74 72 61 66 66 69 63 20 73 65 6e 74 20 74 | .in.software..All.traffic.sent.t |
| 89e40 | 6f 20 69 74 20 22 6c 6f 6f 70 73 20 62 61 63 6b 22 20 61 6e 64 20 6a 75 73 74 20 74 61 72 67 65 | o.it."loops.back".and.just.targe |
| 89e60 | 74 73 20 73 65 72 76 69 63 65 73 20 6f 6e 20 79 6f 75 72 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e | ts.services.on.your.local.machin |
| 89e80 | 65 2e 00 54 68 65 20 6d 61 69 6e 20 62 65 6e 65 66 69 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 61 | e..The.main.benefit.to.configura |
| 89ea0 | 74 69 6f 6e 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 69 73 20 74 68 61 74 20 69 74 20 | tion.synchronization.is.that.it. |
| 89ec0 | 65 6c 69 6d 69 6e 61 74 65 73 20 68 61 76 69 6e 67 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 72 65 | eliminates.having.to.manually.re |
| 89ee0 | 70 6c 69 63 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 68 61 6e 67 65 73 20 6d 61 | plicate.configuration.changes.ma |
| 89f00 | 64 65 20 6f 6e 20 74 68 65 20 70 72 69 6d 61 72 79 20 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 | de.on.the.primary.router.to.the. |
| 89f20 | 73 65 63 6f 6e 64 61 72 79 20 28 72 65 70 6c 69 63 61 29 20 72 6f 75 74 65 72 2e 00 54 68 65 20 | secondary.(replica).router..The. |
| 89f40 | 6d 61 69 6e 20 70 6f 69 6e 74 73 20 72 65 67 61 72 64 69 6e 67 20 74 68 69 73 20 70 61 63 6b 65 | main.points.regarding.this.packe |
| 89f60 | 74 20 66 6c 6f 77 20 61 6e 64 20 74 65 72 6d 69 6e 6f 6c 6f 67 79 20 75 73 65 64 20 69 6e 20 56 | t.flow.and.terminology.used.in.V |
| 89f80 | 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 61 72 65 20 63 6f 76 65 72 65 64 20 62 65 6c 6f 77 3a 00 | yOS.firewall.are.covered.below:. |
| 89fa0 | 54 68 65 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c | The.main.structure.VyOS.firewall |
| 89fc0 | 20 63 6c 69 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 54 68 65 20 6d 61 69 6e 20 73 74 72 | .cli.is.shown.next:.The.main.str |
| 89fe0 | 75 63 74 75 72 65 20 6f 66 20 74 68 65 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 | ucture.of.the.VyOS.firewall.CLI. |
| 8a000 | 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 54 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 | is.shown.next:.The.maximum.numbe |
| 8a020 | 72 20 6f 66 20 74 61 72 67 65 74 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 | r.of.targets.that.can.be.specifi |
| 8a040 | 65 64 20 69 73 20 31 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 6e | ed.is.16..The.default.value.is.n |
| 8a060 | 6f 20 49 50 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 6d 65 61 6e 69 6e 67 20 6f 66 20 74 68 65 | o.IP.address..The.meaning.of.the |
| 8a080 | 20 43 6c 61 73 73 20 49 44 20 69 73 20 6e 6f 74 20 74 68 65 20 73 61 6d 65 20 66 6f 72 20 65 76 | .Class.ID.is.not.the.same.for.ev |
| 8a0a0 | 65 72 79 20 74 79 70 65 20 6f 66 20 70 6f 6c 69 63 79 2e 20 4e 6f 72 6d 61 6c 6c 79 20 70 6f 6c | ery.type.of.policy..Normally.pol |
| 8a0c0 | 69 63 69 65 73 20 6a 75 73 74 20 6e 65 65 64 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 6e 75 | icies.just.need.a.meaningless.nu |
| 8a0e0 | 6d 62 65 72 20 74 6f 20 69 64 65 6e 74 69 66 79 20 61 20 63 6c 61 73 73 20 28 43 6c 61 73 73 20 | mber.to.identify.a.class.(Class. |
| 8a100 | 49 44 29 2c 20 62 75 74 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 | ID),.but.that.does.not.apply.to. |
| 8a120 | 65 76 65 72 79 20 70 6f 6c 69 63 79 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 61 20 63 6c | every.policy..The.number.of.a.cl |
| 8a140 | 61 73 73 20 69 6e 20 61 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 74 20 64 6f 65 73 20 | ass.in.a.Priority.Queue.it.does. |
| 8a160 | 6e 6f 74 20 6f 6e 6c 79 20 69 64 65 6e 74 69 66 79 20 69 74 2c 20 69 74 20 61 6c 73 6f 20 64 65 | not.only.identify.it,.it.also.de |
| 8a180 | 66 69 6e 65 73 20 69 74 73 20 70 72 69 6f 72 69 74 79 2e 00 54 68 65 20 6d 65 6d 62 65 72 20 69 | fines.its.priority..The.member.i |
| 8a1a0 | 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 20 69 73 20 61 20 74 72 75 6e 6b 20 74 68 61 74 20 | nterface.`eth1`.is.a.trunk.that. |
| 8a1c0 | 61 6c 6c 6f 77 73 20 56 4c 41 4e 20 31 30 20 74 6f 20 70 61 73 73 00 54 68 65 20 6d 65 74 72 69 | allows.VLAN.10.to.pass.The.metri |
| 8a1e0 | 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 20 28 4d 61 78 20 76 61 | c.range.is.1.to.16777215.(Max.va |
| 8a200 | 6c 75 65 20 64 65 70 65 6e 64 20 69 66 20 6d 65 74 72 69 63 20 73 75 70 70 6f 72 74 20 6e 61 72 | lue.depend.if.metric.support.nar |
| 8a220 | 72 6f 77 20 6f 72 20 77 69 64 65 20 76 61 6c 75 65 29 2e 00 54 68 65 20 6d 69 6e 69 6d 61 6c 20 | row.or.wide.value)..The.minimal. |
| 8a240 | 65 63 68 6f 20 72 65 63 65 69 76 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 69 6e 74 65 72 76 | echo.receive.transmission.interv |
| 8a260 | 61 6c 20 74 68 61 74 20 74 68 69 73 20 73 79 73 74 65 6d 20 69 73 20 63 61 70 61 62 6c 65 20 6f | al.that.this.system.is.capable.o |
| 8a280 | 66 20 68 61 6e 64 6c 69 6e 67 00 54 68 65 20 6d 6f 73 74 20 76 69 73 69 62 6c 65 20 61 70 70 6c | f.handling.The.most.visible.appl |
| 8a2a0 | 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 66 6f 72 20 61 | ication.of.the.protocol.is.for.a |
| 8a2c0 | 63 63 65 73 73 20 74 6f 20 73 68 65 6c 6c 20 61 63 63 6f 75 6e 74 73 20 6f 6e 20 55 6e 69 78 2d | ccess.to.shell.accounts.on.Unix- |
| 8a2e0 | 6c 69 6b 65 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 2c 20 62 75 74 20 69 74 20 73 | like.operating.systems,.but.it.s |
| 8a300 | 65 65 73 20 73 6f 6d 65 20 6c 69 6d 69 74 65 64 20 75 73 65 20 6f 6e 20 57 69 6e 64 6f 77 73 20 | ees.some.limited.use.on.Windows. |
| 8a320 | 61 73 20 77 65 6c 6c 2e 20 49 6e 20 32 30 31 35 2c 20 4d 69 63 72 6f 73 6f 66 74 20 61 6e 6e 6f | as.well..In.2015,.Microsoft.anno |
| 8a340 | 75 6e 63 65 64 20 74 68 61 74 20 74 68 65 79 20 77 6f 75 6c 64 20 69 6e 63 6c 75 64 65 20 6e 61 | unced.that.they.would.include.na |
| 8a360 | 74 69 76 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 53 53 48 20 69 6e 20 61 20 66 75 74 75 72 65 | tive.support.for.SSH.in.a.future |
| 8a380 | 20 72 65 6c 65 61 73 65 2e 00 54 68 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 20 75 73 | .release..The.multicast-group.us |
| 8a3a0 | 65 64 20 62 79 20 61 6c 6c 20 6c 65 61 76 65 73 20 66 6f 72 20 74 68 69 73 20 76 6c 61 6e 20 65 | ed.by.all.leaves.for.this.vlan.e |
| 8a3c0 | 78 74 65 6e 73 69 6f 6e 2e 20 48 61 73 20 74 6f 20 62 65 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 | xtension..Has.to.be.the.same.on. |
| 8a3e0 | 61 6c 6c 20 6c 65 61 76 65 73 20 74 68 61 74 20 68 61 73 20 74 68 69 73 20 69 6e 74 65 72 66 61 | all.leaves.that.has.this.interfa |
| 8a400 | 63 65 2e 00 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 73 65 72 76 69 63 65 20 63 61 6e 20 | ce..The.name.of.the.service.can. |
| 8a420 | 62 65 20 64 69 66 66 65 72 65 6e 74 2c 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 69 74 | be.different,.in.this.example.it |
| 8a440 | 20 69 73 20 6f 6e 6c 79 20 66 6f 72 20 63 6f 6e 76 65 6e 69 65 6e 63 65 2e 00 54 68 65 20 6e 65 | .is.only.for.convenience..The.ne |
| 8a460 | 74 6d 61 73 6b 20 6f 72 20 64 6f 6d 61 69 6e 20 74 68 61 74 20 45 44 4e 53 20 43 6c 69 65 6e 74 | tmask.or.domain.that.EDNS.Client |
| 8a480 | 20 53 75 62 6e 65 74 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 69 6e | .Subnet.should.be.enabled.for.in |
| 8a4a0 | 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 2e 00 54 68 65 20 6e 65 74 77 6f 72 6b 20 74 | .outgoing.queries..The.network.t |
| 8a4c0 | 6f 70 6f 6c 6f 67 79 20 69 73 20 64 65 63 6c 61 72 65 64 20 62 79 20 73 68 61 72 65 64 2d 6e 65 | opology.is.declared.by.shared-ne |
| 8a4e0 | 74 77 6f 72 6b 2d 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 73 75 62 6e 65 74 20 64 65 63 6c 61 72 | twork-name.and.the.subnet.declar |
| 8a500 | 61 74 69 6f 6e 73 2e 20 54 68 65 20 44 48 43 50 20 73 65 72 76 69 63 65 20 63 61 6e 20 73 65 72 | ations..The.DHCP.service.can.ser |
| 8a520 | 76 65 20 6d 75 6c 74 69 70 6c 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 73 2c 20 77 69 74 | ve.multiple.shared.networks,.wit |
| 8a540 | 68 20 65 61 63 68 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 68 61 76 69 6e 67 20 31 20 6f | h.each.shared.network.having.1.o |
| 8a560 | 72 20 6d 6f 72 65 20 73 75 62 6e 65 74 73 2e 20 45 61 63 68 20 73 75 62 6e 65 74 20 6d 75 73 74 | r.more.subnets..Each.subnet.must |
| 8a580 | 20 62 65 20 70 72 65 73 65 6e 74 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 41 20 72 | .be.present.on.an.interface..A.r |
| 8a5a0 | 61 6e 67 65 20 63 61 6e 20 62 65 20 64 65 63 6c 61 72 65 64 20 69 6e 73 69 64 65 20 61 20 73 75 | ange.can.be.declared.inside.a.su |
| 8a5c0 | 62 6e 65 74 20 74 6f 20 64 65 66 69 6e 65 20 61 20 70 6f 6f 6c 20 6f 66 20 64 79 6e 61 6d 69 63 | bnet.to.define.a.pool.of.dynamic |
| 8a5e0 | 20 61 64 64 72 65 73 73 65 73 2e 20 4d 75 6c 74 69 70 6c 65 20 72 61 6e 67 65 73 20 63 61 6e 20 | .addresses..Multiple.ranges.can. |
| 8a600 | 62 65 20 64 65 66 69 6e 65 64 20 61 6e 64 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 68 6f 6c 65 73 | be.defined.and.can.contain.holes |
| 8a620 | 2e 20 53 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 | ..Static.mappings.can.be.set.to. |
| 8a640 | 61 73 73 69 67 6e 20 22 73 74 61 74 69 63 22 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 63 6c 69 | assign."static".addresses.to.cli |
| 8a660 | 65 6e 74 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 69 72 20 4d 41 43 20 61 64 64 72 65 73 73 2e | ents.based.on.their.MAC.address. |
| 8a680 | 00 54 68 65 20 6e 65 78 74 20 65 78 61 6d 70 6c 65 20 69 73 20 61 20 73 69 6d 70 6c 65 20 63 6f | .The.next.example.is.a.simple.co |
| 8a6a0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 00 54 | nfiguration.of.conntrack-sync..T |
| 8a6c0 | 68 65 20 6e 65 78 74 20 73 74 65 70 20 69 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 | he.next.step.is.to.configure.you |
| 8a6e0 | 72 20 6c 6f 63 61 6c 20 73 69 64 65 20 61 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 70 6f 6c 69 | r.local.side.as.well.as.the.poli |
| 8a700 | 63 79 20 62 61 73 65 64 20 74 72 75 73 74 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 | cy.based.trusted.destination.add |
| 8a720 | 72 65 73 73 65 73 2e 20 49 66 20 79 6f 75 20 6f 6e 6c 79 20 69 6e 69 74 69 61 74 65 20 61 20 63 | resses..If.you.only.initiate.a.c |
| 8a740 | 6f 6e 6e 65 63 74 69 6f 6e 2c 20 74 68 65 20 6c 69 73 74 65 6e 20 70 6f 72 74 20 61 6e 64 20 61 | onnection,.the.listen.port.and.a |
| 8a760 | 64 64 72 65 73 73 2f 70 6f 72 74 20 69 73 20 6f 70 74 69 6f 6e 61 6c 3b 20 68 6f 77 65 76 65 72 | ddress/port.is.optional;.however |
| 8a780 | 2c 20 69 66 20 79 6f 75 20 61 63 74 20 6c 69 6b 65 20 61 20 73 65 72 76 65 72 20 61 6e 64 20 65 | ,.if.you.act.like.a.server.and.e |
| 8a7a0 | 6e 64 70 6f 69 6e 74 73 20 69 6e 69 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | ndpoints.initiate.the.connection |
| 8a7c0 | 73 20 74 6f 20 79 6f 75 72 20 73 79 73 74 65 6d 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 64 65 | s.to.your.system,.you.need.to.de |
| 8a7e0 | 66 69 6e 65 20 61 20 70 6f 72 74 20 79 6f 75 72 20 63 6c 69 65 6e 74 73 20 63 61 6e 20 63 6f 6e | fine.a.port.your.clients.can.con |
| 8a800 | 6e 65 63 74 20 74 6f 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 70 6f 72 74 20 69 73 20 72 | nect.to,.otherwise.the.port.is.r |
| 8a820 | 61 6e 64 6f 6d 6c 79 20 63 68 6f 73 65 6e 20 61 6e 64 20 6d 61 79 20 6d 61 6b 65 20 63 6f 6e 6e | andomly.chosen.and.may.make.conn |
| 8a840 | 65 63 74 69 6f 6e 20 64 69 66 66 69 63 75 6c 74 20 77 69 74 68 20 66 69 72 65 77 61 6c 6c 20 72 | ection.difficult.with.firewall.r |
| 8a860 | 75 6c 65 73 2c 20 73 69 6e 63 65 20 74 68 65 20 70 6f 72 74 20 6d 61 79 20 62 65 20 64 69 66 66 | ules,.since.the.port.may.be.diff |
| 8a880 | 65 72 65 6e 74 20 65 61 63 68 20 74 69 6d 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 72 65 | erent.each.time.the.system.is.re |
| 8a8a0 | 62 6f 6f 74 65 64 2e 00 54 68 65 20 6e 6f 74 65 64 20 70 75 62 6c 69 63 20 6b 65 79 73 20 73 68 | booted..The.noted.public.keys.sh |
| 8a8c0 | 6f 75 6c 64 20 62 65 20 65 6e 74 65 72 65 64 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 | ould.be.entered.on.the.opposite. |
| 8a8e0 | 72 6f 75 74 65 72 73 2e 00 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 6d 69 6c 6c 69 73 65 63 6f | routers..The.number.of.milliseco |
| 8a900 | 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 20 72 65 6d 6f 74 65 20 61 75 74 68 6f 72 69 | nds.to.wait.for.a.remote.authori |
| 8a920 | 74 61 74 69 76 65 20 73 65 72 76 65 72 20 74 6f 20 72 65 73 70 6f 6e 64 20 62 65 66 6f 72 65 20 | tative.server.to.respond.before. |
| 8a940 | 74 69 6d 69 6e 67 20 6f 75 74 20 61 6e 64 20 72 65 73 70 6f 6e 64 69 6e 67 20 77 69 74 68 20 53 | timing.out.and.responding.with.S |
| 8a960 | 45 52 56 46 41 49 4c 2e 00 54 68 65 20 6e 75 6d 62 65 72 20 70 61 72 61 6d 65 74 65 72 20 28 31 | ERVFAIL..The.number.parameter.(1 |
| 8a980 | 2d 31 30 29 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 61 63 | -10).configures.the.amount.of.ac |
| 8a9a0 | 63 65 70 74 65 64 20 6f 63 63 75 72 65 6e 63 65 73 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 20 | cepted.occurences.of.the.system. |
| 8a9c0 | 41 53 20 6e 75 6d 62 65 72 20 69 6e 20 41 53 20 70 61 74 68 2e 00 54 68 65 20 6f 66 66 69 63 69 | AS.number.in.AS.path..The.offici |
| 8a9e0 | 61 6c 20 70 6f 72 74 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 69 73 20 31 31 39 34 2c 20 77 68 69 | al.port.for.OpenVPN.is.1194,.whi |
| 8aa00 | 63 68 20 77 65 20 72 65 73 65 72 76 65 20 66 6f 72 20 63 6c 69 65 6e 74 20 56 50 4e 3b 20 77 65 | ch.we.reserve.for.client.VPN;.we |
| 8aa20 | 20 77 69 6c 6c 20 75 73 65 20 31 31 39 35 20 66 6f 72 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 | .will.use.1195.for.site-to-site. |
| 8aa40 | 56 50 4e 2e 00 54 68 65 20 6f 6e 6c 79 20 73 74 61 67 65 73 20 56 79 4f 53 20 77 69 6c 6c 20 70 | VPN..The.only.stages.VyOS.will.p |
| 8aa60 | 72 6f 63 65 73 73 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 63 | rocess.as.part.of.the.firewall.c |
| 8aa80 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 74 68 65 20 60 66 6f 72 77 61 72 64 60 20 28 46 | onfiguration.is.the.`forward`.(F |
| 8aaa0 | 34 20 73 74 61 67 65 29 2c 20 60 69 6e 70 75 74 60 20 28 4c 34 20 73 74 61 67 65 29 2c 20 61 6e | 4.stage),.`input`.(L4.stage),.an |
| 8aac0 | 64 20 60 6f 75 74 70 75 74 60 20 28 4c 35 20 73 74 61 67 65 29 2e 20 41 6c 6c 20 74 68 65 20 6f | d.`output`.(L5.stage)..All.the.o |
| 8aae0 | 74 68 65 72 20 73 74 61 67 65 73 20 61 6e 64 20 73 74 65 70 73 20 61 72 65 20 66 6f 72 20 72 65 | ther.stages.and.steps.are.for.re |
| 8ab00 | 66 65 72 65 6e 63 65 20 61 6e 64 20 63 61 6e 74 20 62 65 20 6d 61 6e 69 70 75 6c 61 74 65 64 20 | ference.and.cant.be.manipulated. |
| 8ab20 | 74 68 72 6f 75 67 68 20 56 79 4f 53 2e 00 54 68 65 20 6f 70 74 69 6f 6e 61 6c 20 60 64 69 73 61 | through.VyOS..The.optional.`disa |
| 8ab40 | 62 6c 65 60 20 6f 70 74 69 6f 6e 20 61 6c 6c 6f 77 73 20 74 6f 20 65 78 63 6c 75 64 65 20 69 6e | ble`.option.allows.to.exclude.in |
| 8ab60 | 74 65 72 66 61 63 65 20 66 72 6f 6d 20 70 61 73 73 69 76 65 20 73 74 61 74 65 2e 20 54 68 69 73 | terface.from.passive.state..This |
| 8ab80 | 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 69 66 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 | .command.is.used.if.the.command. |
| 8aba0 | 3a 63 66 67 63 6d 64 3a 60 70 61 73 73 69 76 65 2d 69 6e 74 65 72 66 61 63 65 20 64 65 66 61 75 | :cfgcmd:`passive-interface.defau |
| 8abc0 | 6c 74 60 20 77 61 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 54 68 65 20 6f 70 74 69 6f 6e 61 6c | lt`.was.configured..The.optional |
| 8abe0 | 20 70 61 72 61 6d 65 74 65 72 20 72 65 67 69 73 74 65 72 20 73 70 65 63 69 66 69 65 73 20 74 68 | .parameter.register.specifies.th |
| 8ac00 | 61 74 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 73 74 20 73 68 6f 75 6c 64 20 62 | at.Registration.Request.should.b |
| 8ac20 | 65 20 73 65 6e 74 20 74 6f 20 74 68 69 73 20 70 65 65 72 20 6f 6e 20 73 74 61 72 74 75 70 2e 00 | e.sent.to.this.peer.on.startup.. |
| 8ac40 | 54 68 65 20 6f 72 69 67 69 6e 61 6c 20 38 30 32 2e 31 71 5f 20 73 70 65 63 69 66 69 63 61 74 69 | The.original.802.1q_.specificati |
| 8ac60 | 6f 6e 20 61 6c 6c 6f 77 73 20 61 20 73 69 6e 67 6c 65 20 56 69 72 74 75 61 6c 20 4c 6f 63 61 6c | on.allows.a.single.Virtual.Local |
| 8ac80 | 20 41 72 65 61 20 4e 65 74 77 6f 72 6b 20 28 56 4c 41 4e 29 20 68 65 61 64 65 72 20 74 6f 20 62 | .Area.Network.(VLAN).header.to.b |
| 8aca0 | 65 20 69 6e 73 65 72 74 65 64 20 69 6e 74 6f 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d | e.inserted.into.an.Ethernet.fram |
| 8acc0 | 65 2e 20 51 69 6e 51 20 61 6c 6c 6f 77 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 74 61 67 | e..QinQ.allows.multiple.VLAN.tag |
| 8ace0 | 73 20 74 6f 20 62 65 20 69 6e 73 65 72 74 65 64 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 66 | s.to.be.inserted.into.a.single.f |
| 8ad00 | 72 61 6d 65 2c 20 61 6e 20 65 73 73 65 6e 74 69 61 6c 20 63 61 70 61 62 69 6c 69 74 79 20 66 6f | rame,.an.essential.capability.fo |
| 8ad20 | 72 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 4d 65 74 72 6f 20 45 74 68 65 72 6e 65 74 20 6e 65 | r.implementing.Metro.Ethernet.ne |
| 8ad40 | 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 20 4a 75 73 74 20 61 73 20 51 69 6e 51 20 65 | twork.topologies..Just.as.QinQ.e |
| 8ad60 | 78 74 65 6e 64 73 20 38 30 32 2e 31 51 2c 20 51 69 6e 51 20 69 74 73 65 6c 66 20 69 73 20 65 78 | xtends.802.1Q,.QinQ.itself.is.ex |
| 8ad80 | 74 65 6e 64 65 64 20 62 79 20 6f 74 68 65 72 20 4d 65 74 72 6f 20 45 74 68 65 72 6e 65 74 20 70 | tended.by.other.Metro.Ethernet.p |
| 8ada0 | 72 6f 74 6f 63 6f 6c 73 2e 00 54 68 65 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 | rotocols..The.outgoing.interface |
| 8adc0 | 20 74 6f 20 70 65 72 66 6f 72 6d 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6f 6e 00 54 | .to.perform.the.translation.on.T |
| 8ade0 | 68 65 20 70 65 65 72 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 61 6e 20 61 6c 70 68 61 6e 75 6d | he.peer.name.must.be.an.alphanum |
| 8ae00 | 65 72 69 63 20 61 6e 64 20 63 61 6e 20 68 61 76 65 20 68 79 70 65 6e 20 6f 72 20 75 6e 64 65 72 | eric.and.can.have.hypen.or.under |
| 8ae20 | 73 63 6f 72 65 20 61 73 20 73 70 65 63 69 61 6c 20 63 68 61 72 61 63 74 65 72 73 2e 20 49 74 20 | score.as.special.characters..It. |
| 8ae40 | 69 73 20 70 75 72 65 6c 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 2e 00 54 68 65 20 70 65 65 | is.purely.informational..The.pee |
| 8ae60 | 72 20 6e 61 6d 65 73 20 52 49 47 48 54 20 61 6e 64 20 4c 45 46 54 20 61 72 65 20 75 73 65 64 20 | r.names.RIGHT.and.LEFT.are.used. |
| 8ae80 | 61 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 20 74 65 78 74 2e 00 54 68 65 20 70 65 65 72 20 | as.informational.text..The.peer. |
| 8aea0 | 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 79 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 | with.lower.priority.will.become. |
| 8aec0 | 74 68 65 20 6b 65 79 20 73 65 72 76 65 72 20 61 6e 64 20 73 74 61 72 74 20 64 69 73 74 72 69 62 | the.key.server.and.start.distrib |
| 8aee0 | 75 74 69 6e 67 20 53 41 4b 73 2e 00 54 68 65 20 70 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 69 73 20 | uting.SAKs..The.ping.command.is. |
| 8af00 | 75 73 65 64 20 74 6f 20 74 65 73 74 20 77 68 65 74 68 65 72 20 61 20 6e 65 74 77 6f 72 6b 20 68 | used.to.test.whether.a.network.h |
| 8af20 | 6f 73 74 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 6f 72 20 6e 6f 74 2e 00 54 68 65 20 70 6f 70 | ost.is.reachable.or.not..The.pop |
| 8af40 | 75 6c 61 72 20 55 6e 69 78 2f 4c 69 6e 75 78 20 60 60 64 69 67 60 60 20 74 6f 6f 6c 20 73 65 74 | ular.Unix/Linux.``dig``.tool.set |
| 8af60 | 73 20 74 68 65 20 41 44 2d 62 69 74 20 69 6e 20 74 68 65 20 71 75 65 72 79 2e 20 54 68 69 73 20 | s.the.AD-bit.in.the.query..This. |
| 8af80 | 6d 69 67 68 74 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 70 65 63 74 65 64 20 71 75 65 72 79 20 72 | might.lead.to.unexpected.query.r |
| 8afa0 | 65 73 75 6c 74 73 20 77 68 65 6e 20 74 65 73 74 69 6e 67 2e 20 53 65 74 20 60 60 2b 6e 6f 61 64 | esults.when.testing..Set.``+noad |
| 8afc0 | 60 60 20 6f 6e 20 74 68 65 20 60 60 64 69 67 60 60 20 63 6f 6d 6d 61 6e 64 20 6c 69 6e 65 20 77 | ``.on.the.``dig``.command.line.w |
| 8afe0 | 68 65 6e 20 74 68 69 73 20 69 73 20 74 68 65 20 63 61 73 65 2e 00 54 68 65 20 70 72 65 2d 73 68 | hen.this.is.the.case..The.pre-sh |
| 8b000 | 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 20 69 73 20 64 65 70 72 65 63 61 74 65 64 20 61 6e 64 20 | ared.key.mode.is.deprecated.and. |
| 8b020 | 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 66 75 74 75 72 65 20 4f 70 65 6e | will.be.removed.from.future.Open |
| 8b040 | 56 50 4e 20 76 65 72 73 69 6f 6e 73 2c 20 73 6f 20 56 79 4f 53 20 77 69 6c 6c 20 68 61 76 65 20 | VPN.versions,.so.VyOS.will.have. |
| 8b060 | 74 6f 20 72 65 6d 6f 76 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 68 61 74 20 6f 70 74 69 6f | to.remove.support.for.that.optio |
| 8b080 | 6e 20 61 73 20 77 65 6c 6c 2e 20 54 68 65 20 72 65 61 73 6f 6e 20 69 73 20 74 68 61 74 20 75 73 | n.as.well..The.reason.is.that.us |
| 8b0a0 | 69 6e 67 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 20 69 73 20 73 69 67 6e 69 66 69 63 61 | ing.pre-shared.keys.is.significa |
| 8b0c0 | 6e 74 6c 79 20 6c 65 73 73 20 73 65 63 75 72 65 20 74 68 61 6e 20 75 73 69 6e 67 20 54 4c 53 2e | ntly.less.secure.than.using.TLS. |
| 8b0e0 | 00 54 68 65 20 70 72 65 66 69 78 20 61 6e 64 20 41 53 4e 20 74 68 61 74 20 6f 72 69 67 69 6e 61 | .The.prefix.and.ASN.that.origina |
| 8b100 | 74 65 64 20 69 74 20 6d 61 74 63 68 20 61 20 73 69 67 6e 65 64 20 52 4f 41 2e 20 54 68 65 73 65 | ted.it.match.a.signed.ROA..These |
| 8b120 | 20 61 72 65 20 70 72 6f 62 61 62 6c 79 20 74 72 75 73 74 77 6f 72 74 68 79 20 72 6f 75 74 65 20 | .are.probably.trustworthy.route. |
| 8b140 | 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 54 68 65 20 70 72 65 66 69 78 20 6f 72 20 70 72 65 | announcements..The.prefix.or.pre |
| 8b160 | 66 69 78 20 6c 65 6e 67 74 68 20 61 6e 64 20 41 53 4e 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 | fix.length.and.ASN.that.originat |
| 8b180 | 65 64 20 69 74 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 61 6e 79 20 65 78 69 73 74 69 6e 67 | ed.it.doesn't.match.any.existing |
| 8b1a0 | 20 52 4f 41 2e 20 54 68 69 73 20 63 6f 75 6c 64 20 62 65 20 74 68 65 20 72 65 73 75 6c 74 20 6f | .ROA..This.could.be.the.result.o |
| 8b1c0 | 66 20 61 20 70 72 65 66 69 78 20 68 69 6a 61 63 6b 2c 20 6f 72 20 6d 65 72 65 6c 79 20 61 20 6d | f.a.prefix.hijack,.or.merely.a.m |
| 8b1e0 | 69 73 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 62 75 74 20 73 68 6f 75 6c 64 20 70 72 6f 62 | isconfiguration,.but.should.prob |
| 8b200 | 61 62 6c 79 20 62 65 20 74 72 65 61 74 65 64 20 61 73 20 75 6e 74 72 75 73 74 77 6f 72 74 68 79 | ably.be.treated.as.untrustworthy |
| 8b220 | 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 54 68 65 20 70 72 69 6d 61 72 | .route.announcements..The.primar |
| 8b240 | 79 20 44 48 43 50 20 73 65 72 76 65 72 20 75 73 65 73 20 61 64 64 72 65 73 73 20 60 31 39 32 2e | y.DHCP.server.uses.address.`192. |
| 8b260 | 31 36 38 2e 31 38 39 2e 32 35 32 60 00 54 68 65 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 | 168.189.252`.The.primary.and.sec |
| 8b280 | 6f 6e 64 61 72 79 20 73 74 61 74 65 6d 65 6e 74 73 20 64 65 74 65 72 6d 69 6e 65 73 20 77 68 65 | ondary.statements.determines.whe |
| 8b2a0 | 74 68 65 72 20 74 68 65 20 73 65 72 76 65 72 20 69 73 20 70 72 69 6d 61 72 79 20 6f 72 20 73 65 | ther.the.server.is.primary.or.se |
| 8b2c0 | 63 6f 6e 64 61 72 79 2e 00 54 68 65 20 70 72 69 6d 61 72 79 20 6f 70 74 69 6f 6e 20 69 73 20 6f | condary..The.primary.option.is.o |
| 8b2e0 | 6e 6c 79 20 76 61 6c 69 64 20 66 6f 72 20 61 63 74 69 76 65 2d 62 61 63 6b 75 70 2c 20 74 72 61 | nly.valid.for.active-backup,.tra |
| 8b300 | 6e 73 6d 69 74 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 2c 20 61 6e 64 20 61 64 61 70 74 69 76 65 | nsmit-load-balance,.and.adaptive |
| 8b320 | 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 6d 6f 64 65 2e 00 54 68 65 20 70 72 69 6f 72 69 74 79 | -load-balance.mode..The.priority |
| 8b340 | 20 6d 75 73 74 20 62 65 20 61 6e 20 69 6e 74 65 67 65 72 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 | .must.be.an.integer.number.from. |
| 8b360 | 31 20 74 6f 20 32 35 35 2e 20 48 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 | 1.to.255..Higher.priority.value. |
| 8b380 | 69 6e 63 72 65 61 73 65 73 20 72 6f 75 74 65 72 27 73 20 70 72 65 63 65 64 65 6e 63 65 20 69 6e | increases.router's.precedence.in |
| 8b3a0 | 20 74 68 65 20 6d 61 73 74 65 72 20 65 6c 65 63 74 69 6f 6e 73 2e 00 54 68 65 20 70 72 6f 63 65 | .the.master.elections..The.proce |
| 8b3c0 | 64 75 72 65 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 3a 61 62 62 72 3a 60 4e 49 53 2b 20 28 4e | dure.to.specify.a.:abbr:`NIS+.(N |
| 8b3e0 | 65 74 77 6f 72 6b 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 53 65 72 76 69 63 65 20 50 6c 75 73 29 | etwork.Information.Service.Plus) |
| 8b400 | 60 20 64 6f 6d 61 69 6e 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 4e 49 53 20 64 | `.domain.is.similar.to.the.NIS.d |
| 8b420 | 6f 6d 61 69 6e 20 6f 6e 65 3a 00 54 68 65 20 70 72 6f 6d 70 74 20 69 73 20 61 64 6a 75 73 74 65 | omain.one:.The.prompt.is.adjuste |
| 8b440 | 64 20 74 6f 20 72 65 66 6c 65 63 74 20 74 68 69 73 20 63 68 61 6e 67 65 20 69 6e 20 62 6f 74 68 | d.to.reflect.this.change.in.both |
| 8b460 | 20 63 6f 6e 66 69 67 20 61 6e 64 20 6f 70 2d 6d 6f 64 65 2e 00 54 68 65 20 70 72 6f 74 6f 63 6f | .config.and.op-mode..The.protoco |
| 8b480 | 6c 20 61 6e 64 20 70 6f 72 74 20 77 65 20 77 69 73 68 20 74 6f 20 66 6f 72 77 61 72 64 3b 00 54 | l.and.port.we.wish.to.forward;.T |
| 8b4a0 | 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 75 73 75 61 6c 6c 79 20 64 65 73 63 72 69 62 65 64 | he.protocol.is.usually.described |
| 8b4c0 | 20 69 6e 20 74 65 72 6d 73 20 6f 66 20 61 20 63 6c 69 65 6e 74 2d 73 65 72 76 65 72 20 6d 6f 64 | .in.terms.of.a.client-server.mod |
| 8b4e0 | 65 6c 2c 20 62 75 74 20 63 61 6e 20 61 73 20 65 61 73 69 6c 79 20 62 65 20 75 73 65 64 20 69 6e | el,.but.can.as.easily.be.used.in |
| 8b500 | 20 70 65 65 72 2d 74 6f 2d 70 65 65 72 20 72 65 6c 61 74 69 6f 6e 73 68 69 70 73 20 77 68 65 72 | .peer-to-peer.relationships.wher |
| 8b520 | 65 20 62 6f 74 68 20 70 65 65 72 73 20 63 6f 6e 73 69 64 65 72 20 74 68 65 20 6f 74 68 65 72 20 | e.both.peers.consider.the.other. |
| 8b540 | 74 6f 20 62 65 20 61 20 70 6f 74 65 6e 74 69 61 6c 20 74 69 6d 65 20 73 6f 75 72 63 65 2e 20 49 | to.be.a.potential.time.source..I |
| 8b560 | 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 73 65 6e 64 20 61 6e 64 20 72 65 63 65 69 76 65 20 | mplementations.send.and.receive. |
| 8b580 | 74 69 6d 65 73 74 61 6d 70 73 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 55 44 50 20 28 55 73 65 | timestamps.using.:abbr:`UDP.(Use |
| 8b5a0 | 72 20 44 61 74 61 67 72 61 6d 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6f 6e 20 70 6f 72 74 20 6e 75 | r.Datagram.Protocol)`.on.port.nu |
| 8b5c0 | 6d 62 65 72 20 31 32 33 2e 00 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 68 65 61 64 20 | mber.123..The.protocol.overhead. |
| 8b5e0 | 6f 66 20 4c 32 54 50 76 33 20 69 73 20 61 6c 73 6f 20 73 69 67 6e 69 66 69 63 61 6e 74 6c 79 20 | of.L2TPv3.is.also.significantly. |
| 8b600 | 62 69 67 67 65 72 20 74 68 61 6e 20 4d 50 4c 53 2e 00 54 68 65 20 70 72 6f 78 79 20 73 65 72 76 | bigger.than.MPLS..The.proxy.serv |
| 8b620 | 69 63 65 20 69 6e 20 56 79 4f 53 20 69 73 20 62 61 73 65 64 20 6f 6e 20 53 71 75 69 64 5f 20 61 | ice.in.VyOS.is.based.on.Squid_.a |
| 8b640 | 6e 64 20 73 6f 6d 65 20 72 65 6c 61 74 65 64 20 6d 6f 64 75 6c 65 73 2e 00 54 68 65 20 70 75 62 | nd.some.related.modules..The.pub |
| 8b660 | 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 73 69 64 65 | lic.IP.address.of.the.local.side |
| 8b680 | 20 6f 66 20 74 68 65 20 56 50 4e 20 77 69 6c 6c 20 62 65 20 31 39 38 2e 35 31 2e 31 30 30 2e 31 | .of.the.VPN.will.be.198.51.100.1 |
| 8b6a0 | 30 2e 00 54 68 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 | 0..The.public.IP.address.of.the. |
| 8b6c0 | 72 65 6d 6f 74 65 20 73 69 64 65 20 6f 66 20 74 68 65 20 56 50 4e 20 77 69 6c 6c 20 62 65 20 32 | remote.side.of.the.VPN.will.be.2 |
| 8b6e0 | 30 33 2e 30 2e 31 31 33 2e 31 31 2e 00 54 68 65 20 72 61 74 65 2d 6c 69 6d 69 74 20 69 73 20 73 | 03.0.113.11..The.rate-limit.is.s |
| 8b700 | 65 74 20 69 6e 20 6b 62 69 74 2f 73 65 63 2e 00 54 68 65 20 72 65 67 75 6c 61 72 20 65 78 70 72 | et.in.kbit/sec..The.regular.expr |
| 8b720 | 65 73 73 69 6f 6e 20 6d 61 74 63 68 65 73 20 69 66 20 61 6e 64 20 6f 6e 6c 79 20 69 66 20 74 68 | ession.matches.if.and.only.if.th |
| 8b740 | 65 20 65 6e 74 69 72 65 20 73 74 72 69 6e 67 20 6d 61 74 63 68 65 73 20 74 68 65 20 70 61 74 74 | e.entire.string.matches.the.patt |
| 8b760 | 65 72 6e 2e 00 54 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 60 74 6f 2d 77 67 30 32 60 20 75 | ern..The.remote.peer.`to-wg02`.u |
| 8b780 | 73 65 73 20 58 4d 72 6c 50 79 6b 61 78 68 64 41 41 69 53 6a 68 74 50 6c 76 69 33 30 4e 56 6b 76 | ses.XMrlPykaxhdAAiSjhtPlvi30NVkv |
| 8b7a0 | 4c 51 6c 69 51 75 4b 50 37 41 49 37 43 79 49 3d 20 61 73 20 69 74 73 20 70 75 62 6c 69 63 20 6b | LQliQuKP7AI7CyI=.as.its.public.k |
| 8b7c0 | 65 79 20 70 6f 72 74 69 6f 6e 00 54 68 65 20 72 65 6d 6f 74 65 20 73 69 74 65 20 77 69 6c 6c 20 | ey.portion.The.remote.site.will. |
| 8b7e0 | 68 61 76 65 20 61 20 73 75 62 6e 65 74 20 6f 66 20 31 30 2e 31 2e 30 2e 30 2f 31 36 2e 00 54 68 | have.a.subnet.of.10.1.0.0/16..Th |
| 8b800 | 65 20 72 65 6d 6f 74 65 20 75 73 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6f 70 65 6e 63 | e.remote.user.will.use.the.openc |
| 8b820 | 6f 6e 6e 65 63 74 20 63 6c 69 65 6e 74 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 | onnect.client.to.connect.to.the. |
| 8b840 | 72 6f 75 74 65 72 20 61 6e 64 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 20 61 64 | router.and.will.receive.an.IP.ad |
| 8b860 | 64 72 65 73 73 20 66 72 6f 6d 20 61 20 56 50 4e 20 70 6f 6f 6c 2c 20 61 6c 6c 6f 77 69 6e 67 20 | dress.from.a.VPN.pool,.allowing. |
| 8b880 | 66 75 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 00 54 68 65 20 | full.access.to.the.network..The. |
| 8b8a0 | 72 65 71 75 65 73 74 6f 72 20 6e 65 74 6d 61 73 6b 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 | requestor.netmask.for.which.the. |
| 8b8c0 | 72 65 71 75 65 73 74 6f 72 20 49 50 20 41 64 64 72 65 73 73 20 73 68 6f 75 6c 64 20 62 65 20 75 | requestor.IP.Address.should.be.u |
| 8b8e0 | 73 65 64 20 61 73 20 74 68 65 20 45 44 4e 53 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 20 66 6f | sed.as.the.EDNS.Client.Subnet.fo |
| 8b900 | 72 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 2e 00 54 68 65 20 72 65 71 75 69 72 65 64 | r.outgoing.queries..The.required |
| 8b920 | 20 63 6f 6e 66 69 67 20 66 69 6c 65 20 6d 61 79 20 6c 6f 6f 6b 20 6c 69 6b 65 20 74 68 69 73 3a | .config.file.may.look.like.this: |
| 8b940 | 00 54 68 65 20 72 65 71 75 69 72 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 | .The.required.configuration.can. |
| 8b960 | 62 65 20 62 72 6f 6b 65 6e 20 64 6f 77 6e 20 69 6e 74 6f 20 34 20 6d 61 6a 6f 72 20 70 69 65 63 | be.broken.down.into.4.major.piec |
| 8b980 | 65 73 3a 00 54 68 65 20 72 65 73 75 6c 74 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | es:.The.resulting.configuration. |
| 8b9a0 | 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 54 68 65 20 72 6f 6f 74 20 63 61 75 73 65 20 6f | will.look.like:.The.root.cause.o |
| 8b9c0 | 66 20 74 68 65 20 70 72 6f 62 6c 65 6d 20 69 73 20 74 68 61 74 20 66 6f 72 20 56 54 49 20 74 75 | f.the.problem.is.that.for.VTI.tu |
| 8b9e0 | 6e 6e 65 6c 73 20 74 6f 20 77 6f 72 6b 2c 20 74 68 65 69 72 20 74 72 61 66 66 69 63 20 73 65 6c | nnels.to.work,.their.traffic.sel |
| 8ba00 | 65 63 74 6f 72 73 20 68 61 76 65 20 74 6f 20 62 65 20 73 65 74 20 74 6f 20 30 2e 30 2e 30 2e 30 | ectors.have.to.be.set.to.0.0.0.0 |
| 8ba20 | 2f 30 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 74 75 6e 6e | /0.for.traffic.to.match.the.tunn |
| 8ba40 | 65 6c 2c 20 65 76 65 6e 20 74 68 6f 75 67 68 20 61 63 74 75 61 6c 20 72 6f 75 74 69 6e 67 20 64 | el,.even.though.actual.routing.d |
| 8ba60 | 65 63 69 73 69 6f 6e 20 69 73 20 6d 61 64 65 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 6e 65 74 | ecision.is.made.according.to.net |
| 8ba80 | 66 69 6c 74 65 72 20 6d 61 72 6b 73 2e 20 55 6e 6c 65 73 73 20 72 6f 75 74 65 20 69 6e 73 65 72 | filter.marks..Unless.route.inser |
| 8baa0 | 74 69 6f 6e 20 69 73 20 64 69 73 61 62 6c 65 64 20 65 6e 74 69 72 65 6c 79 2c 20 53 74 72 6f 6e | tion.is.disabled.entirely,.Stron |
| 8bac0 | 67 53 57 41 4e 20 74 68 75 73 20 6d 69 73 74 61 6b 65 6e 6c 79 20 69 6e 73 65 72 74 73 20 61 20 | gSWAN.thus.mistakenly.inserts.a. |
| 8bae0 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 56 54 49 20 70 65 | default.route.through.the.VTI.pe |
| 8bb00 | 65 72 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 73 20 61 6c 6c 20 74 72 61 66 | er.address,.which.makes.all.traf |
| 8bb20 | 66 69 63 20 72 6f 75 74 65 64 20 74 6f 20 6e 6f 77 68 65 72 65 2e 00 54 68 65 20 72 6f 75 6e 64 | fic.routed.to.nowhere..The.round |
| 8bb40 | 2d 72 6f 62 69 6e 20 70 6f 6c 69 63 79 20 69 73 20 61 20 63 6c 61 73 73 66 75 6c 20 73 63 68 65 | -robin.policy.is.a.classful.sche |
| 8bb60 | 64 75 6c 65 72 20 74 68 61 74 20 64 69 76 69 64 65 73 20 74 72 61 66 66 69 63 20 69 6e 20 64 69 | duler.that.divides.traffic.in.di |
| 8bb80 | 66 66 65 72 65 6e 74 20 63 6c 61 73 73 65 73 5f 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 | fferent.classes_.you.can.configu |
| 8bba0 | 72 65 20 28 75 70 20 74 6f 20 34 30 39 36 29 2e 20 59 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 | re.(up.to.4096)..You.can.embed_. |
| 8bbc0 | 61 20 6e 65 77 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 65 61 63 68 20 6f 66 20 74 68 6f 73 65 20 | a.new.policy.into.each.of.those. |
| 8bbe0 | 63 6c 61 73 73 65 73 20 28 64 65 66 61 75 6c 74 20 69 6e 63 6c 75 64 65 64 29 2e 00 54 68 65 20 | classes.(default.included)..The. |
| 8bc00 | 72 6f 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 20 75 73 65 64 20 62 79 20 | route.selection.process.used.by. |
| 8bc20 | 46 52 52 27 73 20 42 47 50 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 75 73 65 73 20 74 68 | FRR's.BGP.implementation.uses.th |
| 8bc40 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 65 63 69 73 69 6f 6e 20 63 72 69 74 65 72 69 6f 6e 2c 20 | e.following.decision.criterion,. |
| 8bc60 | 73 74 61 72 74 69 6e 67 20 61 74 20 74 68 65 20 74 6f 70 20 6f 66 20 74 68 65 20 6c 69 73 74 20 | starting.at.the.top.of.the.list. |
| 8bc80 | 61 6e 64 20 67 6f 69 6e 67 20 74 6f 77 61 72 64 73 20 74 68 65 20 62 6f 74 74 6f 6d 20 75 6e 74 | and.going.towards.the.bottom.unt |
| 8bca0 | 69 6c 20 6f 6e 65 20 6f 66 20 74 68 65 20 66 61 63 74 6f 72 73 20 63 61 6e 20 62 65 20 75 73 65 | il.one.of.the.factors.can.be.use |
| 8bcc0 | 64 2e 00 54 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 73 68 6f 72 74 65 73 74 20 63 | d..The.route.with.the.shortest.c |
| 8bce0 | 6c 75 73 74 65 72 2d 6c 69 73 74 20 6c 65 6e 67 74 68 20 69 73 20 75 73 65 64 2e 20 54 68 65 20 | luster-list.length.is.used..The. |
| 8bd00 | 63 6c 75 73 74 65 72 2d 6c 69 73 74 20 72 65 66 6c 65 63 74 73 20 74 68 65 20 69 42 47 50 20 72 | cluster-list.reflects.the.iBGP.r |
| 8bd20 | 65 66 6c 65 63 74 69 6f 6e 20 70 61 74 68 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 74 61 6b | eflection.path.the.route.has.tak |
| 8bd40 | 65 6e 2e 00 54 68 65 20 72 6f 75 74 65 72 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 75 70 64 | en..The.router.automatically.upd |
| 8bd60 | 61 74 65 73 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 | ates.link-state.information.with |
| 8bd80 | 20 69 74 73 20 6e 65 69 67 68 62 6f 72 73 2e 20 4f 6e 6c 79 20 61 6e 20 6f 62 73 6f 6c 65 74 65 | .its.neighbors..Only.an.obsolete |
| 8bda0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 75 70 64 61 74 65 64 20 77 68 69 63 68 20 61 67 | .information.is.updated.which.ag |
| 8bdc0 | 65 20 68 61 73 20 65 78 63 65 65 64 65 64 20 61 20 73 70 65 63 69 66 69 63 20 74 68 72 65 73 68 | e.has.exceeded.a.specific.thresh |
| 8bde0 | 6f 6c 64 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 63 68 61 6e 67 65 73 20 61 20 74 68 | old..This.parameter.changes.a.th |
| 8be00 | 72 65 73 68 6f 6c 64 20 76 61 6c 75 65 2c 20 77 68 69 63 68 20 62 79 20 64 65 66 61 75 6c 74 20 | reshold.value,.which.by.default. |
| 8be20 | 69 73 20 31 38 30 30 20 73 65 63 6f 6e 64 73 20 28 68 61 6c 66 20 61 6e 20 68 6f 75 72 29 2e 20 | is.1800.seconds.(half.an.hour).. |
| 8be40 | 54 68 65 20 76 61 6c 75 65 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 77 68 6f 6c | The.value.is.applied.to.the.whol |
| 8be60 | 65 20 4f 53 50 46 20 72 6f 75 74 65 72 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 | e.OSPF.router..The.timer.range.i |
| 8be80 | 73 20 31 30 20 74 6f 20 31 38 30 30 2e 00 54 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 | s.10.to.1800..The.router.should. |
| 8bea0 | 64 69 73 63 61 72 64 20 44 48 43 50 20 70 61 63 6b 61 67 65 73 20 61 6c 72 65 61 64 79 20 63 6f | discard.DHCP.packages.already.co |
| 8bec0 | 6e 74 61 69 6e 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | ntaining.relay.agent.information |
| 8bee0 | 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 6f 6e 6c 79 20 72 65 71 75 65 73 74 73 20 66 72 | .to.ensure.that.only.requests.fr |
| 8bf00 | 6f 6d 20 44 48 43 50 20 63 6c 69 65 6e 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 2e 00 54 | om.DHCP.clients.are.forwarded..T |
| 8bf20 | 68 65 20 73 46 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 68 73 66 | he.sFlow.accounting.based.on.hsf |
| 8bf40 | 6c 6f 77 64 20 68 74 74 70 73 3a 2f 2f 73 66 6c 6f 77 2e 6e 65 74 2f 00 54 68 65 20 73 61 6d 65 | lowd.https://sflow.net/.The.same |
| 8bf60 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 61 70 70 6c 79 20 77 68 65 | .configuration.options.apply.whe |
| 8bf80 | 6e 20 49 64 65 6e 74 69 74 79 20 62 61 73 65 64 20 63 6f 6e 66 69 67 20 69 73 20 63 6f 6e 66 69 | n.Identity.based.config.is.confi |
| 8bfa0 | 67 75 72 65 64 20 69 6e 20 67 72 6f 75 70 20 6d 6f 64 65 20 65 78 63 65 70 74 20 74 68 61 74 20 | gured.in.group.mode.except.that. |
| 8bfc0 | 67 72 6f 75 70 20 6d 6f 64 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 77 69 74 68 | group.mode.can.only.be.used.with |
| 8bfe0 | 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 54 68 65 20 73 63 68 65 | .RADIUS.authentication..The.sche |
| 8c000 | 6d 65 20 61 62 6f 76 65 20 64 6f 65 73 6e 27 74 20 77 6f 72 6b 20 77 68 65 6e 20 6f 6e 65 20 6f | me.above.doesn't.work.when.one.o |
| 8c020 | 66 20 74 68 65 20 72 6f 75 74 65 72 73 20 68 61 73 20 61 20 64 79 6e 61 6d 69 63 20 65 78 74 65 | f.the.routers.has.a.dynamic.exte |
| 8c040 | 72 6e 61 6c 20 61 64 64 72 65 73 73 20 74 68 6f 75 67 68 2e 20 54 68 65 20 63 6c 61 73 73 69 63 | rnal.address.though..The.classic |
| 8c060 | 20 77 6f 72 6b 61 72 6f 75 6e 64 20 66 6f 72 20 74 68 69 73 20 69 73 20 74 6f 20 73 65 74 75 70 | .workaround.for.this.is.to.setup |
| 8c080 | 20 61 6e 20 61 64 64 72 65 73 73 20 6f 6e 20 61 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 | .an.address.on.a.loopback.interf |
| 8c0a0 | 61 63 65 20 61 6e 64 20 75 73 65 20 69 74 20 61 73 20 61 20 73 6f 75 72 63 65 20 61 64 64 72 65 | ace.and.use.it.as.a.source.addre |
| 8c0c0 | 73 73 20 66 6f 72 20 74 68 65 20 47 52 45 20 74 75 6e 6e 65 6c 2c 20 74 68 65 6e 20 73 65 74 75 | ss.for.the.GRE.tunnel,.then.setu |
| 8c0e0 | 70 20 61 6e 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 74 63 68 20 74 68 6f 73 65 | p.an.IPsec.policy.to.match.those |
| 8c100 | 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 73 65 61 72 63 68 20 | .loopback.addresses..The.search. |
| 8c120 | 66 69 6c 74 65 72 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 75 70 20 74 6f 20 31 35 20 6f 63 63 75 | filter.can.contain.up.to.15.occu |
| 8c140 | 72 72 65 6e 63 65 73 20 6f 66 20 25 73 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 72 65 70 6c | rrences.of.%s.which.will.be.repl |
| 8c160 | 61 63 65 64 20 62 79 20 74 68 65 20 75 73 65 72 6e 61 6d 65 2c 20 61 73 20 69 6e 20 22 75 69 64 | aced.by.the.username,.as.in."uid |
| 8c180 | 3d 25 73 22 20 66 6f 72 20 3a 72 66 63 3a 60 32 30 33 37 60 20 64 69 72 65 63 74 6f 72 69 65 73 | =%s".for.:rfc:`2037`.directories |
| 8c1a0 | 2e 20 46 6f 72 20 61 20 64 65 74 61 69 6c 65 64 20 64 65 73 63 72 69 70 74 69 6f 6e 20 6f 66 20 | ..For.a.detailed.description.of. |
| 8c1c0 | 4c 44 41 50 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 73 79 6e 74 61 78 20 73 65 65 20 3a 72 | LDAP.search.filter.syntax.see.:r |
| 8c1e0 | 66 63 3a 60 32 32 35 34 60 2e 00 54 68 65 20 73 65 63 6f 6e 64 61 72 79 20 44 48 43 50 20 73 65 | fc:`2254`..The.secondary.DHCP.se |
| 8c200 | 72 76 65 72 20 75 73 65 73 20 61 64 64 72 65 73 73 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 32 | rver.uses.address.`192.168.189.2 |
| 8c220 | 35 33 60 00 54 68 65 20 73 65 63 75 72 69 74 79 20 61 70 70 72 6f 61 63 68 20 69 6e 20 53 4e 4d | 53`.The.security.approach.in.SNM |
| 8c240 | 50 76 33 20 74 61 72 67 65 74 73 3a 00 54 68 65 20 73 65 71 75 65 6e 63 65 20 60 60 5e 45 63 3f | Pv3.targets:.The.sequence.``^Ec? |
| 8c260 | 60 60 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 3a 20 60 60 43 74 72 6c 2b 45 20 63 20 3f 60 60 | ``.translates.to:.``Ctrl+E.c.?`` |
| 8c280 | 2e 20 54 6f 20 71 75 69 74 20 74 68 65 20 73 65 73 73 69 6f 6e 20 75 73 65 3a 20 60 60 43 74 72 | ..To.quit.the.session.use:.``Ctr |
| 8c2a0 | 6c 2b 45 20 63 20 2e 60 60 00 54 68 65 20 73 65 74 75 70 20 69 73 20 74 68 69 73 3a 20 4c 65 61 | l+E.c..``.The.setup.is.this:.Lea |
| 8c2c0 | 66 32 20 2d 20 53 70 69 6e 65 31 20 2d 20 4c 65 61 66 33 00 54 68 65 20 73 69 7a 65 20 6f 66 20 | f2.-.Spine1.-.Leaf3.The.size.of. |
| 8c2e0 | 74 68 65 20 6f 6e 2d 64 69 73 6b 20 50 72 6f 78 79 20 63 61 63 68 65 20 69 73 20 75 73 65 72 20 | the.on-disk.Proxy.cache.is.user. |
| 8c300 | 63 6f 6e 66 69 67 75 72 61 62 6c 65 2e 20 54 68 65 20 50 72 6f 78 69 65 73 20 64 65 66 61 75 6c | configurable..The.Proxies.defaul |
| 8c320 | 74 20 63 61 63 68 65 2d 73 69 7a 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 31 30 | t.cache-size.is.configured.to.10 |
| 8c340 | 30 20 4d 42 2e 00 54 68 65 20 73 70 65 65 64 20 28 62 61 75 64 72 61 74 65 29 20 6f 66 20 74 68 | 0.MB..The.speed.(baudrate).of.th |
| 8c360 | 65 20 63 6f 6e 73 6f 6c 65 20 64 65 76 69 63 65 2e 20 53 75 70 70 6f 72 74 65 64 20 76 61 6c 75 | e.console.device..Supported.valu |
| 8c380 | 65 73 20 61 72 65 3a 00 54 68 65 20 73 74 61 6e 64 61 72 64 20 77 61 73 20 64 65 76 65 6c 6f 70 | es.are:.The.standard.was.develop |
| 8c3a0 | 65 64 20 62 79 20 49 45 45 45 20 38 30 32 2e 31 2c 20 61 20 77 6f 72 6b 69 6e 67 20 67 72 6f 75 | ed.by.IEEE.802.1,.a.working.grou |
| 8c3c0 | 70 20 6f 66 20 74 68 65 20 49 45 45 45 20 38 30 32 20 73 74 61 6e 64 61 72 64 73 20 63 6f 6d 6d | p.of.the.IEEE.802.standards.comm |
| 8c3e0 | 69 74 74 65 65 2c 20 61 6e 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 62 65 20 61 63 74 69 76 | ittee,.and.continues.to.be.activ |
| 8c400 | 65 6c 79 20 72 65 76 69 73 65 64 2e 20 4f 6e 65 20 6f 66 20 74 68 65 20 6e 6f 74 61 62 6c 65 20 | ely.revised..One.of.the.notable. |
| 8c420 | 72 65 76 69 73 69 6f 6e 73 20 69 73 20 38 30 32 2e 31 51 2d 32 30 31 34 20 77 68 69 63 68 20 69 | revisions.is.802.1Q-2014.which.i |
| 8c440 | 6e 63 6f 72 70 6f 72 61 74 65 64 20 49 45 45 45 20 38 30 32 2e 31 61 71 20 28 53 68 6f 72 74 65 | ncorporated.IEEE.802.1aq.(Shorte |
| 8c460 | 73 74 20 50 61 74 68 20 42 72 69 64 67 69 6e 67 29 20 61 6e 64 20 6d 75 63 68 20 6f 66 20 74 68 | st.Path.Bridging).and.much.of.th |
| 8c480 | 65 20 49 45 45 45 20 38 30 32 2e 31 64 20 73 74 61 6e 64 61 72 64 2e 00 54 68 65 20 73 75 62 73 | e.IEEE.802.1d.standard..The.subs |
| 8c4a0 | 65 74 20 6f 66 20 70 6f 73 73 69 62 6c 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 3a 00 54 | et.of.possible.parameters.are:.T |
| 8c4c0 | 68 65 20 73 75 70 70 6f 72 74 65 64 20 76 61 6c 75 65 73 20 66 6f 72 20 61 20 73 70 65 63 69 66 | he.supported.values.for.a.specif |
| 8c4e0 | 69 63 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 6f 62 74 61 69 6e 65 64 20 77 69 74 | ic.interface.can.be.obtained.wit |
| 8c500 | 68 3a 20 60 65 74 68 74 6f 6f 6c 20 2d 67 20 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 54 68 65 20 | h:.`ethtool.-g.<interface>`.The. |
| 8c520 | 73 79 73 2d 6d 61 63 20 61 6e 64 20 6c 6f 63 61 6c 20 64 69 73 63 72 69 6d 69 6e 61 74 6f 72 20 | sys-mac.and.local.discriminator. |
| 8c540 | 61 72 65 20 75 73 65 64 20 66 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 61 20 31 30 2d 62 79 74 | are.used.for.generating.a.10-byt |
| 8c560 | 65 2c 20 54 79 70 65 2d 33 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 49 44 2e 20 45 | e,.Type-3.Ethernet.Segment.ID..E |
| 8c580 | 53 49 4e 41 4d 45 20 69 73 20 61 20 31 30 2d 62 79 74 65 2c 20 54 79 70 65 2d 30 20 45 74 68 65 | SINAME.is.a.10-byte,.Type-0.Ethe |
| 8c5a0 | 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 49 44 20 2d 20 22 30 30 3a 41 41 3a 42 42 3a 43 43 3a 44 | rnet.Segment.ID.-."00:AA:BB:CC:D |
| 8c5c0 | 44 3a 45 45 3a 46 46 3a 47 47 3a 48 48 3a 49 49 22 2e 00 54 68 65 20 73 79 73 74 65 6d 20 4c 43 | D:EE:FF:GG:HH:II"..The.system.LC |
| 8c5e0 | 44 20 3a 61 62 62 72 3a 60 4c 43 44 20 28 4c 69 71 75 69 64 2d 63 72 79 73 74 61 6c 20 64 69 73 | D.:abbr:`LCD.(Liquid-crystal.dis |
| 8c600 | 70 6c 61 79 29 60 20 6f 70 74 69 6f 6e 20 69 73 20 66 6f 72 20 75 73 65 72 73 20 72 75 6e 6e 69 | play)`.option.is.for.users.runni |
| 8c620 | 6e 67 20 56 79 4f 53 20 6f 6e 20 68 61 72 64 77 61 72 65 20 74 68 61 74 20 66 65 61 74 75 72 65 | ng.VyOS.on.hardware.that.feature |
| 8c640 | 73 20 61 6e 20 4c 43 44 20 64 69 73 70 6c 61 79 2e 20 54 68 69 73 20 69 73 20 74 79 70 69 63 61 | s.an.LCD.display..This.is.typica |
| 8c660 | 6c 6c 79 20 61 20 73 6d 61 6c 6c 20 64 69 73 70 6c 61 79 20 62 75 69 6c 74 20 69 6e 20 61 6e 20 | lly.a.small.display.built.in.an. |
| 8c680 | 31 39 20 69 6e 63 68 20 72 61 63 6b 2d 6d 6f 75 6e 74 61 62 6c 65 20 61 70 70 6c 69 61 6e 63 65 | 19.inch.rack-mountable.appliance |
| 8c6a0 | 2e 20 54 68 6f 73 65 20 64 69 73 70 6c 61 79 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 73 68 6f | ..Those.displays.are.used.to.sho |
| 8c6c0 | 77 20 72 75 6e 74 69 6d 65 20 64 61 74 61 2e 00 54 68 65 20 73 79 73 74 65 6d 20 69 73 20 63 6f | w.runtime.data..The.system.is.co |
| 8c6e0 | 6e 66 69 67 75 72 65 64 20 74 6f 20 61 74 74 65 6d 70 74 20 64 6f 6d 61 69 6e 20 63 6f 6d 70 6c | nfigured.to.attempt.domain.compl |
| 8c700 | 65 74 69 6f 6e 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 72 64 65 72 3a 20 76 79 | etion.in.the.following.order:.vy |
| 8c720 | 6f 73 2e 69 6f 20 28 66 69 72 73 74 29 2c 20 76 79 6f 73 2e 6e 65 74 20 28 73 65 63 6f 6e 64 29 | os.io.(first),.vyos.net.(second) |
| 8c740 | 20 61 6e 64 20 76 79 6f 73 2e 6e 65 74 77 6f 72 6b 20 28 6c 61 73 74 29 3a 00 54 68 65 20 74 61 | .and.vyos.network.(last):.The.ta |
| 8c760 | 62 6c 65 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 61 74 61 3a 00 | ble.consists.of.following.data:. |
| 8c780 | 54 68 65 20 74 61 73 6b 20 73 63 68 65 64 75 6c 65 72 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f | The.task.scheduler.allows.you.to |
| 8c7a0 | 20 65 78 65 63 75 74 65 20 74 61 73 6b 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 73 63 68 65 64 75 | .execute.tasks.on.a.given.schedu |
| 8c7c0 | 6c 65 2e 20 49 74 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 55 4e 49 58 20 63 72 6f 6e 5f 2e 00 | le..It.makes.use.of.UNIX.cron_.. |
| 8c7e0 | 54 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 | The.translation.address.must.be. |
| 8c800 | 73 65 74 20 74 6f 20 6f 6e 65 20 6f 66 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 61 64 64 72 | set.to.one.of.the.available.addr |
| 8c820 | 65 73 73 65 73 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 60 6f 75 74 62 6f 75 6e | esses.on.the.configured.`outboun |
| 8c840 | 64 2d 69 6e 74 65 72 66 61 63 65 60 20 6f 72 20 69 74 20 6d 75 73 74 20 62 65 20 73 65 74 20 74 | d-interface`.or.it.must.be.set.t |
| 8c860 | 6f 20 60 6d 61 73 71 75 65 72 61 64 65 60 20 77 68 69 63 68 20 77 69 6c 6c 20 75 73 65 20 74 68 | o.`masquerade`.which.will.use.th |
| 8c880 | 65 20 70 72 69 6d 61 72 79 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 60 6f 75 74 | e.primary.IP.address.of.the.`out |
| 8c8a0 | 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 20 61 73 20 69 74 73 20 74 72 61 6e 73 6c 61 74 | bound-interface`.as.its.translat |
| 8c8c0 | 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 74 75 6e 6e 65 6c 20 77 69 6c 6c 20 75 73 65 | ion.address..The.tunnel.will.use |
| 8c8e0 | 20 31 30 2e 32 35 35 2e 31 2e 31 20 66 6f 72 20 74 68 65 20 6c 6f 63 61 6c 20 49 50 20 61 6e 64 | .10.255.1.1.for.the.local.IP.and |
| 8c900 | 20 31 30 2e 32 35 35 2e 31 2e 32 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 2e 00 54 68 65 20 | .10.255.1.2.for.the.remote..The. |
| 8c920 | 74 79 70 65 20 63 61 6e 20 62 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 3a 20 61 73 62 72 2d | type.can.be.the.following:.asbr- |
| 8c940 | 73 75 6d 6d 61 72 79 2c 20 65 78 74 65 72 6e 61 6c 2c 20 6e 65 74 77 6f 72 6b 2c 20 6e 73 73 61 | summary,.external,.network,.nssa |
| 8c960 | 2d 65 78 74 65 72 6e 61 6c 2c 20 6f 70 61 71 75 65 2d 61 72 65 61 2c 20 6f 70 61 71 75 65 2d 61 | -external,.opaque-area,.opaque-a |
| 8c980 | 73 2c 20 6f 70 61 71 75 65 2d 6c 69 6e 6b 2c 20 72 6f 75 74 65 72 2c 20 73 75 6d 6d 61 72 79 2e | s,.opaque-link,.router,.summary. |
| 8c9a0 | 00 54 68 65 20 75 6c 74 69 6d 61 74 65 20 67 6f 61 6c 20 6f 66 20 63 6c 61 73 73 69 66 79 69 6e | .The.ultimate.goal.of.classifyin |
| 8c9c0 | 67 20 74 72 61 66 66 69 63 20 69 73 20 74 6f 20 67 69 76 65 20 65 61 63 68 20 63 6c 61 73 73 20 | g.traffic.is.to.give.each.class. |
| 8c9e0 | 61 20 64 69 66 66 65 72 65 6e 74 20 74 72 65 61 74 6d 65 6e 74 2e 00 54 68 65 20 75 73 65 20 6f | a.different.treatment..The.use.o |
| 8ca00 | 66 20 49 50 6f 45 20 61 64 64 72 65 73 73 65 73 20 74 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 | f.IPoE.addresses.the.disadvantag |
| 8ca20 | 65 20 74 68 61 74 20 50 50 50 20 69 73 20 75 6e 73 75 69 74 65 64 20 66 6f 72 20 6d 75 6c 74 69 | e.that.PPP.is.unsuited.for.multi |
| 8ca40 | 63 61 73 74 20 64 65 6c 69 76 65 72 79 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 75 73 65 72 73 2e | cast.delivery.to.multiple.users. |
| 8ca60 | 20 54 79 70 69 63 61 6c 6c 79 2c 20 49 50 6f 45 20 75 73 65 73 20 44 79 6e 61 6d 69 63 20 48 6f | .Typically,.IPoE.uses.Dynamic.Ho |
| 8ca80 | 73 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 45 78 | st.Configuration.Protocol.and.Ex |
| 8caa0 | 74 65 6e 73 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c | tensible.Authentication.Protocol |
| 8cac0 | 20 74 6f 20 70 72 6f 76 69 64 65 20 74 68 65 20 73 61 6d 65 20 66 75 6e 63 74 69 6f 6e 61 6c 69 | .to.provide.the.same.functionali |
| 8cae0 | 74 79 20 61 73 20 50 50 50 6f 45 2c 20 62 75 74 20 69 6e 20 61 20 6c 65 73 73 20 72 6f 62 75 73 | ty.as.PPPoE,.but.in.a.less.robus |
| 8cb00 | 74 20 6d 61 6e 6e 65 72 2e 00 54 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 61 74 74 72 69 | t.manner..The.value.of.the.attri |
| 8cb20 | 62 75 74 65 20 60 60 4e 41 53 2d 50 6f 72 74 2d 49 64 60 60 20 6d 75 73 74 20 62 65 20 6c 65 73 | bute.``NAS-Port-Id``.must.be.les |
| 8cb40 | 73 20 74 68 61 6e 20 31 36 20 63 68 61 72 61 63 74 65 72 73 2c 20 6f 74 68 65 72 77 69 73 65 20 | s.than.16.characters,.otherwise. |
| 8cb60 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 6f 6e 27 74 20 62 65 20 72 65 6e 61 6d 65 64 2e 00 | the.interface.won't.be.renamed.. |
| 8cb80 | 54 68 65 20 76 65 6e 64 6f 72 2d 63 6c 61 73 73 2d 69 64 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 | The.vendor-class-id.option.can.b |
| 8cba0 | 65 20 75 73 65 64 20 74 6f 20 72 65 71 75 65 73 74 20 61 20 73 70 65 63 69 66 69 63 20 63 6c 61 | e.used.to.request.a.specific.cla |
| 8cbc0 | 73 73 20 6f 66 20 76 65 6e 64 6f 72 20 6f 70 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 65 20 73 65 | ss.of.vendor.options.from.the.se |
| 8cbe0 | 72 76 65 72 2e 00 54 68 65 20 76 65 74 68 20 64 65 76 69 63 65 73 20 61 72 65 20 76 69 72 74 75 | rver..The.veth.devices.are.virtu |
| 8cc00 | 61 6c 20 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 73 2e 20 54 68 65 79 20 63 61 6e 20 61 63 | al.Ethernet.devices..They.can.ac |
| 8cc20 | 74 20 61 73 20 74 75 6e 6e 65 6c 73 20 62 65 74 77 65 65 6e 20 6e 65 74 77 6f 72 6b 20 6e 61 6d | t.as.tunnels.between.network.nam |
| 8cc40 | 65 73 70 61 63 65 73 20 74 6f 20 63 72 65 61 74 65 20 61 20 62 72 69 64 67 65 20 74 6f 20 61 20 | espaces.to.create.a.bridge.to.a. |
| 8cc60 | 70 68 79 73 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 20 69 6e 20 61 6e 6f 74 68 | physical.network.device.in.anoth |
| 8cc80 | 65 72 20 6e 61 6d 65 73 70 61 63 65 20 6f 72 20 56 52 46 2c 20 62 75 74 20 63 61 6e 20 61 6c 73 | er.namespace.or.VRF,.but.can.als |
| 8cca0 | 6f 20 62 65 20 75 73 65 64 20 61 73 20 73 74 61 6e 64 61 6c 6f 6e 65 20 6e 65 74 77 6f 72 6b 20 | o.be.used.as.standalone.network. |
| 8ccc0 | 64 65 76 69 63 65 73 2e 00 54 68 65 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 4e 41 54 36 34 20 70 72 | devices..The.well.known.NAT64.pr |
| 8cce0 | 65 66 69 78 20 69 73 20 60 60 36 34 3a 66 66 39 62 3a 3a 2f 39 36 60 60 00 54 68 65 20 77 69 6e | efix.is.``64:ff9b::/96``.The.win |
| 8cd00 | 64 6f 77 20 73 69 7a 65 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 20 61 6e 64 20 32 | dow.size.must.be.between.1.and.2 |
| 8cd20 | 31 2e 00 54 68 65 20 77 69 72 65 6c 65 73 73 20 63 6c 69 65 6e 74 20 28 73 75 70 70 6c 69 63 61 | 1..The.wireless.client.(supplica |
| 8cd40 | 6e 74 29 20 61 75 74 68 65 6e 74 69 63 61 74 65 73 20 61 67 61 69 6e 73 74 20 74 68 65 20 52 41 | nt).authenticates.against.the.RA |
| 8cd60 | 44 49 55 53 20 73 65 72 76 65 72 20 28 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 | DIUS.server.(authentication.serv |
| 8cd80 | 65 72 29 20 75 73 69 6e 67 20 61 6e 20 3a 61 62 62 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 69 | er).using.an.:abbr:`EAP.(Extensi |
| 8cda0 | 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 20 6d | ble.Authentication.Protocol)`..m |
| 8cdc0 | 65 74 68 6f 64 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 | ethod.configured.on.the.RADIUS.s |
| 8cde0 | 65 72 76 65 72 2e 20 54 68 65 20 57 41 50 20 28 61 6c 73 6f 20 72 65 66 65 72 72 65 64 20 74 6f | erver..The.WAP.(also.referred.to |
| 8ce00 | 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 29 20 72 6f 6c 65 20 69 73 20 74 6f 20 73 65 | .as.authenticator).role.is.to.se |
| 8ce20 | 6e 64 20 61 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 62 | nd.all.authentication.messages.b |
| 8ce40 | 65 74 77 65 65 6e 20 74 68 65 20 73 75 70 70 6c 69 63 61 6e 74 20 61 6e 64 20 74 68 65 20 63 6f | etween.the.supplicant.and.the.co |
| 8ce60 | 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 2c 20 | nfigured.authentication.server,. |
| 8ce80 | 74 68 75 73 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 72 65 73 70 6f 6e | thus.the.RADIUS.server.is.respon |
| 8cea0 | 73 69 62 6c 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 | sible.for.authenticating.the.use |
| 8cec0 | 72 73 2e 00 54 68 65 20 77 69 72 65 6c 65 73 73 20 63 6c 69 65 6e 74 20 28 73 75 70 70 6c 69 63 | rs..The.wireless.client.(supplic |
| 8cee0 | 61 6e 74 29 20 61 75 74 68 65 6e 74 69 63 61 74 65 73 20 61 67 61 69 6e 73 74 20 74 68 65 20 52 | ant).authenticates.against.the.R |
| 8cf00 | 41 44 49 55 53 20 73 65 72 76 65 72 20 28 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 | ADIUS.server.(authentication.ser |
| 8cf20 | 76 65 72 29 20 75 73 69 6e 67 20 61 6e 20 3a 61 62 62 72 3a 60 45 41 50 20 28 45 78 74 65 6e 73 | ver).using.an.:abbr:`EAP.(Extens |
| 8cf40 | 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6d | ible.Authentication.Protocol)`.m |
| 8cf60 | 65 74 68 6f 64 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 | ethod.configured.on.the.RADIUS.s |
| 8cf80 | 65 72 76 65 72 2e 20 54 68 65 20 57 41 50 20 28 61 6c 73 6f 20 72 65 66 65 72 72 65 64 20 74 6f | erver..The.WAP.(also.referred.to |
| 8cfa0 | 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 29 20 72 6f 6c 65 20 69 73 20 74 6f 20 73 65 | .as.authenticator).role.is.to.se |
| 8cfc0 | 6e 64 20 61 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 62 | nd.all.authentication.messages.b |
| 8cfe0 | 65 74 77 65 65 6e 20 74 68 65 20 73 75 70 70 6c 69 63 61 6e 74 20 61 6e 64 20 74 68 65 20 63 6f | etween.the.supplicant.and.the.co |
| 8d000 | 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 2c 20 | nfigured.authentication.server,. |
| 8d020 | 74 68 75 73 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 72 65 73 70 6f 6e | thus.the.RADIUS.server.is.respon |
| 8d040 | 73 69 62 6c 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 | sible.for.authenticating.the.use |
| 8d060 | 72 73 2e 00 54 68 65 20 77 72 69 74 69 6e 67 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | rs..The.writing.of.the.configura |
| 8d080 | 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 20 69 73 20 | tion.to.the.secondary.router.is. |
| 8d0a0 | 70 65 72 66 6f 72 6d 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 56 79 4f 53 20 48 54 54 50 20 | performed.through.the.VyOS.HTTP. |
| 8d0c0 | 41 50 49 2e 20 54 68 65 20 75 73 65 72 20 63 61 6e 20 73 70 65 63 69 66 79 20 77 68 69 63 68 20 | API..The.user.can.specify.which. |
| 8d0e0 | 70 6f 72 74 69 6f 6e 28 73 29 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | portion(s).of.the.configuration. |
| 8d100 | 77 69 6c 6c 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 20 61 6e 64 20 74 68 65 20 6d 6f 64 | will.be.synchronized.and.the.mod |
| 8d120 | 65 20 74 6f 20 75 73 65 20 2d 20 77 68 65 74 68 65 72 20 74 6f 20 72 65 70 6c 61 63 65 20 6f 72 | e.to.use.-.whether.to.replace.or |
| 8d140 | 20 61 64 64 2e 00 54 68 65 6e 20 61 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 53 4e 41 54 20 | .add..Then.a.corresponding.SNAT. |
| 8d160 | 72 75 6c 65 20 69 73 20 63 72 65 61 74 65 64 20 74 6f 20 4e 41 54 20 6f 75 74 67 6f 69 6e 67 20 | rule.is.created.to.NAT.outgoing. |
| 8d180 | 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 74 6f 20 61 | traffic.for.the.internal.IP.to.a |
| 8d1a0 | 20 72 65 73 65 72 76 65 64 20 65 78 74 65 72 6e 61 6c 20 49 50 2e 20 54 68 69 73 20 64 65 64 69 | .reserved.external.IP..This.dedi |
| 8d1c0 | 63 61 74 65 73 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 | cates.an.external.IP.address.to. |
| 8d1e0 | 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 69 73 20 75 73 | an.internal.IP.address.and.is.us |
| 8d200 | 65 66 75 6c 20 66 6f 72 20 70 72 6f 74 6f 63 6f 6c 73 20 77 68 69 63 68 20 64 6f 6e 27 74 20 68 | eful.for.protocols.which.don't.h |
| 8d220 | 61 76 65 20 74 68 65 20 6e 6f 74 69 6f 6e 20 6f 66 20 70 6f 72 74 73 2c 20 73 75 63 68 20 61 73 | ave.the.notion.of.ports,.such.as |
| 8d240 | 20 47 52 45 2e 00 54 68 65 6e 20 77 65 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 2c 20 | .GRE..Then.we.need.to.generate,. |
| 8d260 | 61 64 64 20 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 | add.and.specify.the.names.of.the |
| 8d280 | 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6d 61 74 65 72 69 61 6c 73 2e 20 45 61 63 68 20 6f | .cryptographic.materials..Each.o |
| 8d2a0 | 66 20 74 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 | f.the.install.command.should.be. |
| 8d2c0 | 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 | applied.to.the.configuration.and |
| 8d2e0 | 20 63 6f 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 | .commited.before.using.under.the |
| 8d300 | 20 6f 70 65 6e 76 70 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | .openvpn.interface.configuration |
| 8d320 | 2e 00 54 68 65 6e 20 77 65 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 2c 20 61 64 64 20 | ..Then.we.need.to.generate,.add. |
| 8d340 | 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 20 63 72 79 | and.specify.the.names.of.the.cry |
| 8d360 | 70 74 6f 67 72 61 70 68 69 63 20 6d 61 74 65 72 69 61 6c 73 2e 20 45 61 63 68 20 6f 66 20 74 68 | ptographic.materials..Each.of.th |
| 8d380 | 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 6e 64 73 20 73 68 6f 75 6c 64 20 62 65 20 61 70 70 | e.install.commands.should.be.app |
| 8d3a0 | 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f | lied.to.the.configuration.and.co |
| 8d3c0 | 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 20 6f 70 | mmited.before.using.under.the.op |
| 8d3e0 | 65 6e 76 70 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 | envpn.interface.configuration..T |
| 8d400 | 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 65 20 6b 65 79 20 | hen.you.need.to.install.the.key. |
| 8d420 | 6f 6e 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 3a 00 54 68 65 6e 20 79 6f 75 20 6e | on.the.remote.router:.Then.you.n |
| 8d440 | 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 6b 65 79 20 69 6e 20 79 6f 75 72 20 4f 70 65 6e 56 | eed.to.set.the.key.in.your.OpenV |
| 8d460 | 50 4e 20 69 6e 74 65 72 66 61 63 65 20 73 65 74 74 69 6e 67 73 3a 00 54 68 65 6e 2c 20 46 61 73 | PN.interface.settings:.Then,.Fas |
| 8d480 | 74 4e 65 74 4d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 65 72 65 20 61 72 65 | tNetMon.configuration:.There.are |
| 8d4a0 | 20 33 20 64 65 66 61 75 6c 74 20 4e 54 50 20 73 65 72 76 65 72 20 73 65 74 2e 20 59 6f 75 20 61 | .3.default.NTP.server.set..You.a |
| 8d4c0 | 72 65 20 61 62 6c 65 20 74 6f 20 63 68 61 6e 67 65 20 74 68 65 6d 2e 00 54 68 65 72 65 20 61 72 | re.able.to.change.them..There.ar |
| 8d4e0 | 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 67 61 | e.a.lot.of.matching.criteria.aga |
| 8d500 | 69 6e 73 74 20 77 68 69 63 68 20 74 68 65 20 70 61 63 6b 61 67 65 20 63 61 6e 20 62 65 20 74 65 | inst.which.the.package.can.be.te |
| 8d520 | 73 74 65 64 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e | sted..There.are.a.lot.of.matchin |
| 8d540 | 67 20 63 72 69 74 65 72 69 61 20 61 67 61 69 6e 73 74 20 77 68 69 63 68 20 74 68 65 20 70 61 63 | g.criteria.against.which.the.pac |
| 8d560 | 6b 65 74 20 63 61 6e 20 62 65 20 74 65 73 74 65 64 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c | ket.can.be.tested..There.are.a.l |
| 8d580 | 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 67 61 69 6e 73 74 20 | ot.of.matching.criteria.against. |
| 8d5a0 | 77 68 69 63 68 20 74 68 65 20 70 61 63 6b 65 74 20 63 61 6e 20 62 65 20 74 65 73 74 65 64 2e 20 | which.the.packet.can.be.tested.. |
| 8d5c0 | 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 3a 64 6f 63 3a 60 49 50 76 34 3c 2f 63 6f 6e 66 | Please.refer.to.:doc:`IPv4</conf |
| 8d5e0 | 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 70 76 34 3e 60 20 61 6e 64 20 3a 64 | iguration/firewall/ipv4>`.and.:d |
| 8d600 | 6f 63 3a 60 49 50 76 36 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c | oc:`IPv6</configuration/firewall |
| 8d620 | 2f 69 70 76 36 3e 60 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 66 6f 72 20 6d 6f | /ipv6>`.matching.criteria.for.mo |
| 8d640 | 72 65 20 64 65 74 61 69 6c 73 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d | re.details..There.are.a.lot.of.m |
| 8d660 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 6f 70 74 69 6f 6e 73 20 61 76 61 69 6c 61 62 | atching.criteria.options.availab |
| 8d680 | 6c 65 2c 20 62 6f 74 68 20 66 6f 72 20 60 60 70 6f 6c 69 63 79 20 72 6f 75 74 65 60 60 20 61 6e | le,.both.for.``policy.route``.an |
| 8d6a0 | 64 20 60 60 70 6f 6c 69 63 79 20 72 6f 75 74 65 36 60 60 2e 20 54 68 65 73 65 20 6f 70 74 69 6f | d.``policy.route6``..These.optio |
| 8d6c0 | 6e 73 20 61 72 65 20 6c 69 73 74 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 | ns.are.listed.in.this.section..T |
| 8d6e0 | 68 65 72 65 20 61 72 65 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f | here.are.different.parameters.fo |
| 8d700 | 72 20 67 65 74 74 69 6e 67 20 70 72 65 66 69 78 2d 6c 69 73 74 20 69 6e 66 6f 72 6d 61 74 69 6f | r.getting.prefix-list.informatio |
| 8d720 | 6e 3a 00 54 68 65 72 65 20 61 72 65 20 6c 69 6d 69 74 73 20 6f 6e 20 77 68 69 63 68 20 63 68 61 | n:.There.are.limits.on.which.cha |
| 8d740 | 6e 6e 65 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 48 54 34 30 2d 20 61 6e 64 | nnels.can.be.used.with.HT40-.and |
| 8d760 | 20 48 54 34 30 2b 2e 20 46 6f 6c 6c 6f 77 69 6e 67 20 74 61 62 6c 65 20 73 68 6f 77 73 20 74 68 | .HT40+..Following.table.shows.th |
| 8d780 | 65 20 63 68 61 6e 6e 65 6c 73 20 74 68 61 74 20 6d 61 79 20 62 65 20 61 76 61 69 6c 61 62 6c 65 | e.channels.that.may.be.available |
| 8d7a0 | 20 66 6f 72 20 48 54 34 30 2d 20 61 6e 64 20 48 54 34 30 2b 20 75 73 65 20 70 65 72 20 49 45 45 | .for.HT40-.and.HT40+.use.per.IEE |
| 8d7c0 | 45 20 38 30 32 2e 31 31 6e 20 41 6e 6e 65 78 20 4a 3a 00 54 68 65 72 65 20 61 72 65 20 6d 61 6e | E.802.11n.Annex.J:.There.are.man |
| 8d7e0 | 79 20 70 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f | y.parameters.you.will.be.able.to |
| 8d800 | 20 75 73 65 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 74 72 61 66 66 | .use.in.order.to.match.the.traff |
| 8d820 | 69 63 20 79 6f 75 20 77 61 6e 74 20 66 6f 72 20 61 20 63 6c 61 73 73 3a 00 54 68 65 72 65 20 61 | ic.you.want.for.a.class:.There.a |
| 8d840 | 72 65 20 6d 75 6c 74 69 70 6c 65 20 76 65 72 73 69 6f 6e 73 20 61 76 61 69 6c 61 62 6c 65 20 66 | re.multiple.versions.available.f |
| 8d860 | 6f 72 20 74 68 65 20 4e 65 74 46 6c 6f 77 20 64 61 74 61 2e 20 54 68 65 20 60 3c 76 65 72 73 69 | or.the.NetFlow.data..The.`<versi |
| 8d880 | 6f 6e 3e 60 20 75 73 65 64 20 69 6e 20 74 68 65 20 65 78 70 6f 72 74 65 64 20 66 6c 6f 77 20 64 | on>`.used.in.the.exported.flow.d |
| 8d8a0 | 61 74 61 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 68 65 72 65 2e 20 54 68 65 20 | ata.can.be.configured.here..The. |
| 8d8c0 | 66 6f 6c 6c 6f 77 69 6e 67 20 76 65 72 73 69 6f 6e 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 | following.versions.are.supported |
| 8d8e0 | 3a 00 54 68 65 72 65 20 61 72 65 20 72 61 74 65 2d 6c 69 6d 69 74 65 64 20 61 6e 64 20 6e 6f 6e | :.There.are.rate-limited.and.non |
| 8d900 | 20 72 61 74 65 2d 6c 69 6d 69 74 65 64 20 75 73 65 72 73 20 28 4d 41 43 73 29 00 54 68 65 72 65 | .rate-limited.users.(MACs).There |
| 8d920 | 20 61 72 65 20 73 6f 6d 65 20 73 63 65 6e 61 72 69 6f 73 20 77 68 65 72 65 20 73 65 72 69 61 6c | .are.some.scenarios.where.serial |
| 8d940 | 20 63 6f 6e 73 6f 6c 65 73 20 61 72 65 20 75 73 65 66 75 6c 2e 20 53 79 73 74 65 6d 20 61 64 6d | .consoles.are.useful..System.adm |
| 8d960 | 69 6e 69 73 74 72 61 74 69 6f 6e 20 6f 66 20 72 65 6d 6f 74 65 20 63 6f 6d 70 75 74 65 72 73 20 | inistration.of.remote.computers. |
| 8d980 | 69 73 20 75 73 75 61 6c 6c 79 20 64 6f 6e 65 20 75 73 69 6e 67 20 3a 72 65 66 3a 60 73 73 68 60 | is.usually.done.using.:ref:`ssh` |
| 8d9a0 | 2c 20 62 75 74 20 74 68 65 72 65 20 61 72 65 20 74 69 6d 65 73 20 77 68 65 6e 20 61 63 63 65 73 | ,.but.there.are.times.when.acces |
| 8d9c0 | 73 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 69 73 20 74 68 65 20 6f 6e 6c 79 20 77 61 79 | s.to.the.console.is.the.only.way |
| 8d9e0 | 20 74 6f 20 64 69 61 67 6e 6f 73 65 20 61 6e 64 20 63 6f 72 72 65 63 74 20 73 6f 66 74 77 61 72 | .to.diagnose.and.correct.softwar |
| 8da00 | 65 20 66 61 69 6c 75 72 65 73 2e 20 4d 61 6a 6f 72 20 75 70 67 72 61 64 65 73 20 74 6f 20 74 68 | e.failures..Major.upgrades.to.th |
| 8da20 | 65 20 69 6e 73 74 61 6c 6c 65 64 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 6d 61 79 20 61 6c 73 | e.installed.distribution.may.als |
| 8da40 | 6f 20 72 65 71 75 69 72 65 20 63 6f 6e 73 6f 6c 65 20 61 63 63 65 73 73 2e 00 54 68 65 72 65 20 | o.require.console.access..There. |
| 8da60 | 61 72 65 20 74 68 72 65 65 20 6d 6f 64 65 73 20 6f 66 20 6f 70 65 72 61 74 69 6f 6e 20 66 6f 72 | are.three.modes.of.operation.for |
| 8da80 | 20 61 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 3a 00 54 68 65 72 65 20 61 72 65 | .a.wireless.interface:.There.are |
| 8daa0 | 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 4e 65 74 77 6f 72 6b 20 41 64 6d 69 6e 73 20 77 68 6f | .two.types.of.Network.Admins.who |
| 8dac0 | 20 64 65 61 6c 20 77 69 74 68 20 42 47 50 2c 20 74 68 6f 73 65 20 77 68 6f 20 68 61 76 65 20 63 | .deal.with.BGP,.those.who.have.c |
| 8dae0 | 72 65 61 74 65 64 20 61 6e 20 69 6e 74 65 72 6e 61 74 69 6f 6e 61 6c 20 69 6e 63 69 64 65 6e 74 | reated.an.international.incident |
| 8db00 | 20 61 6e 64 2f 6f 72 20 6f 75 74 61 67 65 2c 20 61 6e 64 20 74 68 6f 73 65 20 77 68 6f 20 61 72 | .and/or.outage,.and.those.who.ar |
| 8db20 | 65 20 6c 79 69 6e 67 00 54 68 65 72 65 20 61 72 65 20 74 77 6f 20 77 61 79 73 20 74 68 61 74 20 | e.lying.There.are.two.ways.that. |
| 8db40 | 68 65 6c 70 20 75 73 20 74 6f 20 6d 69 74 69 67 61 74 65 20 74 68 65 20 42 47 50 73 20 66 75 6c | help.us.to.mitigate.the.BGPs.ful |
| 8db60 | 6c 2d 6d 65 73 68 20 72 65 71 75 69 72 65 6d 65 6e 74 20 69 6e 20 61 20 6e 65 74 77 6f 72 6b 3a | l-mesh.requirement.in.a.network: |
| 8db80 | 00 54 68 65 72 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 6f 6e 65 20 6c 6f 6f 70 62 61 63 6b 20 | .There.can.only.be.one.loopback. |
| 8dba0 | 60 60 6c 6f 60 60 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 | ``lo``.interface.on.the.system.. |
| 8dbc0 | 49 66 20 79 6f 75 20 6e 65 65 64 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 2c | If.you.need.multiple.interfaces, |
| 8dbe0 | 20 70 6c 65 61 73 65 20 75 73 65 20 74 68 65 20 3a 72 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 | .please.use.the.:ref:`dummy-inte |
| 8dc00 | 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 2e 00 54 68 65 72 65 20 63 6f 75 | rface`.interface.type..There.cou |
| 8dc20 | 6c 64 20 62 65 20 61 20 77 69 64 65 20 72 61 6e 67 65 20 6f 66 20 72 6f 75 74 69 6e 67 20 70 6f | ld.be.a.wide.range.of.routing.po |
| 8dc40 | 6c 69 63 69 65 73 2e 20 53 6f 6d 65 20 65 78 61 6d 70 6c 65 73 20 61 72 65 20 6c 69 73 74 65 64 | licies..Some.examples.are.listed |
| 8dc60 | 20 62 65 6c 6f 77 3a 00 54 68 65 72 65 20 69 73 20 61 20 76 65 72 79 20 6e 69 63 65 20 70 69 63 | .below:.There.is.a.very.nice.pic |
| 8dc80 | 74 75 72 65 2f 65 78 70 6c 61 6e 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 56 79 61 74 74 61 20 64 | ture/explanation.in.the.Vyatta.d |
| 8dca0 | 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 72 65 77 | ocumentation.which.should.be.rew |
| 8dcc0 | 72 69 74 74 65 6e 20 68 65 72 65 2e 00 54 68 65 72 65 20 69 73 20 61 6c 73 6f 20 61 20 47 52 45 | ritten.here..There.is.also.a.GRE |
| 8dce0 | 20 6f 76 65 72 20 49 50 76 36 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 61 76 61 69 6c 61 62 | .over.IPv6.encapsulation.availab |
| 8dd00 | 6c 65 2c 20 69 74 20 69 73 20 63 61 6c 6c 65 64 3a 20 60 60 69 70 36 67 72 65 60 60 2e 00 54 68 | le,.it.is.called:.``ip6gre``..Th |
| 8dd20 | 65 72 65 20 69 73 20 61 6e 20 65 6e 74 69 72 65 20 63 68 61 70 74 65 72 20 61 62 6f 75 74 20 68 | ere.is.an.entire.chapter.about.h |
| 8dd40 | 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 3a 72 65 66 3a 60 76 72 66 60 2c 20 70 6c | ow.to.configure.a.:ref:`vrf`,.pl |
| 8dd60 | 65 61 73 65 20 63 68 65 63 6b 20 74 68 69 73 20 66 6f 72 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 | ease.check.this.for.additional.i |
| 8dd80 | 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 54 68 65 72 65 27 73 20 61 20 76 61 72 69 65 74 79 20 6f 66 | nformation..There's.a.variety.of |
| 8dda0 | 20 63 6c 69 65 6e 74 20 47 55 49 20 66 72 6f 6e 74 65 6e 64 73 20 66 6f 72 20 61 6e 79 20 70 6c | .client.GUI.frontends.for.any.pl |
| 8ddc0 | 61 74 66 6f 72 6d 00 54 68 65 73 65 20 61 72 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f | atform.These.are.the.commands.fo |
| 8dde0 | 72 20 61 20 62 61 73 69 63 20 73 65 74 75 70 2e 00 54 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 | r.a.basic.setup..These.commands. |
| 8de00 | 61 6c 6c 6f 77 20 74 68 65 20 56 4c 41 4e 31 30 20 61 6e 64 20 56 4c 41 4e 31 31 20 68 6f 73 74 | allow.the.VLAN10.and.VLAN11.host |
| 8de20 | 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 65 61 63 68 20 6f 74 68 65 72 | s.to.communicate.with.each.other |
| 8de40 | 20 75 73 69 6e 67 20 74 68 65 20 6d 61 69 6e 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 | .using.the.main.routing.table..T |
| 8de60 | 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 72 65 61 74 65 20 61 20 66 6c 65 78 69 62 6c 65 20 | hese.commands.create.a.flexible. |
| 8de80 | 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 74 68 65 20 53 75 | interface.for.configuring.the.Su |
| 8dea0 | 72 69 63 61 74 61 20 73 65 72 76 69 63 65 2c 20 61 6c 6c 6f 77 69 6e 67 20 75 73 65 72 73 20 74 | ricata.service,.allowing.users.t |
| 8dec0 | 6f 20 73 70 65 63 69 66 79 20 61 64 64 72 65 73 73 65 73 2c 20 70 6f 72 74 73 2c 20 61 6e 64 20 | o.specify.addresses,.ports,.and. |
| 8dee0 | 6c 6f 67 67 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 2e 00 54 68 65 73 65 20 63 6f 6e 66 69 67 | logging.parameters..These.config |
| 8df00 | 75 72 61 74 69 6f 6e 20 69 73 20 6e 6f 74 20 6d 61 6e 64 61 74 6f 72 79 20 61 6e 64 20 69 6e 20 | uration.is.not.mandatory.and.in. |
| 8df20 | 6d 6f 73 74 20 63 61 73 65 73 20 74 68 65 72 65 27 73 20 6e 6f 20 6e 65 65 64 20 74 6f 20 63 6f | most.cases.there's.no.need.to.co |
| 8df40 | 6e 66 69 67 75 72 65 20 69 74 2e 20 42 75 74 20 69 66 20 6e 65 63 65 73 73 61 72 79 2c 20 47 72 | nfigure.it..But.if.necessary,.Gr |
| 8df60 | 61 74 75 69 74 6f 75 73 20 41 52 50 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 | atuitous.ARP.can.be.configured.i |
| 8df80 | 6e 20 60 60 67 6c 6f 62 61 6c 2d 70 61 72 61 6d 65 74 65 72 73 60 60 20 61 6e 64 2f 6f 72 20 69 | n.``global-parameters``.and/or.i |
| 8dfa0 | 6e 20 60 60 67 72 6f 75 70 60 60 20 73 65 63 74 69 6f 6e 2e 00 54 68 65 73 65 20 70 61 72 61 6d | n.``group``.section..These.param |
| 8dfc0 | 65 74 65 72 73 20 61 72 65 20 70 61 73 73 65 64 20 61 73 2d 69 73 20 74 6f 20 69 73 63 2d 64 68 | eters.are.passed.as-is.to.isc-dh |
| 8dfe0 | 63 70 27 73 20 64 68 63 70 64 2e 63 6f 6e 66 20 75 6e 64 65 72 20 74 68 65 20 63 6f 6e 66 69 67 | cp's.dhcpd.conf.under.the.config |
| 8e000 | 75 72 61 74 69 6f 6e 20 6e 6f 64 65 20 74 68 65 79 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e | uration.node.they.are.defined.in |
| 8e020 | 2e 20 54 68 65 79 20 61 72 65 20 6e 6f 74 20 76 61 6c 69 64 61 74 65 64 20 73 6f 20 61 6e 20 65 | ..They.are.not.validated.so.an.e |
| 8e040 | 72 72 6f 72 20 69 6e 20 74 68 65 20 72 61 77 20 70 61 72 61 6d 65 74 65 72 73 20 77 6f 6e 27 74 | rror.in.the.raw.parameters.won't |
| 8e060 | 20 62 65 20 63 61 75 67 68 74 20 62 79 20 76 79 6f 73 27 73 20 73 63 72 69 70 74 73 20 61 6e 64 | .be.caught.by.vyos's.scripts.and |
| 8e080 | 20 77 69 6c 6c 20 63 61 75 73 65 20 64 68 63 70 64 20 74 6f 20 66 61 69 6c 20 74 6f 20 73 74 61 | .will.cause.dhcpd.to.fail.to.sta |
| 8e0a0 | 72 74 2e 20 41 6c 77 61 79 73 20 76 65 72 69 66 79 20 74 68 61 74 20 74 68 65 20 70 61 72 61 6d | rt..Always.verify.that.the.param |
| 8e0c0 | 65 74 65 72 73 20 61 72 65 20 63 6f 72 72 65 63 74 20 62 65 66 6f 72 65 20 63 6f 6d 6d 69 74 74 | eters.are.correct.before.committ |
| 8e0e0 | 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 52 65 66 65 72 20 74 6f 20 | ing.the.configuration..Refer.to. |
| 8e100 | 69 73 63 2d 64 68 63 70 27 73 20 64 68 63 70 64 2e 63 6f 6e 66 20 6d 61 6e 75 61 6c 20 66 6f 72 | isc-dhcp's.dhcpd.conf.manual.for |
| 8e120 | 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 20 68 74 74 70 73 3a 2f 2f 6b 62 2e 69 73 | .more.information:.https://kb.is |
| 8e140 | 63 2e 6f 72 67 2f 64 6f 63 73 2f 69 73 63 2d 64 68 63 70 2d 34 34 2d 6d 61 6e 75 61 6c 2d 70 61 | c.org/docs/isc-dhcp-44-manual-pa |
| 8e160 | 67 65 73 2d 64 68 63 70 64 63 6f 6e 66 00 54 68 65 73 65 20 70 61 72 61 6d 65 74 65 72 73 20 6e | ges-dhcpdconf.These.parameters.n |
| 8e180 | 65 65 64 20 74 6f 20 62 65 20 70 61 72 74 20 6f 66 20 74 68 65 20 44 48 43 50 20 67 6c 6f 62 61 | eed.to.be.part.of.the.DHCP.globa |
| 8e1a0 | 6c 20 6f 70 74 69 6f 6e 73 2e 20 54 68 65 79 20 73 74 61 79 20 75 6e 63 68 61 6e 67 65 64 2e 00 | l.options..They.stay.unchanged.. |
| 8e1c0 | 54 68 65 79 20 63 61 6e 20 62 65 20 2a 2a 64 65 63 69 6d 61 6c 2a 2a 20 70 72 65 66 69 78 65 73 | They.can.be.**decimal**.prefixes |
| 8e1e0 | 2e 00 54 68 69 6e 67 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 69 6e 20 74 68 69 | ..Things.to.be.considered.in.thi |
| 8e200 | 73 20 73 65 74 75 70 3a 00 54 68 69 6e 67 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 72 65 64 20 | s.setup:.Things.to.be.considred. |
| 8e220 | 69 6e 20 74 68 69 73 20 73 65 74 75 70 3a 00 54 68 69 73 20 61 64 64 72 65 73 73 20 6d 75 73 74 | in.this.setup:.This.address.must |
| 8e240 | 20 62 65 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 6c 6f 63 61 6c 20 69 6e 74 65 72 | .be.the.address.of.a.local.inter |
| 8e260 | 66 61 63 65 2e 20 49 74 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 6e 20 | face..It.may.be.specified.as.an. |
| 8e280 | 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 2e | IPv4.address.or.an.IPv6.address. |
| 8e2a0 | 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c | .This.algorithm.is.802.3ad.compl |
| 8e2c0 | 69 61 6e 74 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 6e 6f 74 20 66 75 6c 6c | iant..This.algorithm.is.not.full |
| 8e2e0 | 79 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c 69 61 6e 74 2e 20 41 20 73 69 6e 67 6c 65 20 54 43 | y.802.3ad.compliant..A.single.TC |
| 8e300 | 50 20 6f 72 20 55 44 50 20 63 6f 6e 76 65 72 73 61 74 69 6f 6e 20 63 6f 6e 74 61 69 6e 69 6e 67 | P.or.UDP.conversation.containing |
| 8e320 | 20 62 6f 74 68 20 66 72 61 67 6d 65 6e 74 65 64 20 61 6e 64 20 75 6e 66 72 61 67 6d 65 6e 74 65 | .both.fragmented.and.unfragmente |
| 8e340 | 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 65 65 20 70 61 63 6b 65 74 73 20 73 74 72 69 70 | d.packets.will.see.packets.strip |
| 8e360 | 65 64 20 61 63 72 6f 73 73 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 6d | ed.across.two.interfaces..This.m |
| 8e380 | 61 79 20 72 65 73 75 6c 74 20 69 6e 20 6f 75 74 20 6f 66 20 6f 72 64 65 72 20 64 65 6c 69 76 65 | ay.result.in.out.of.order.delive |
| 8e3a0 | 72 79 2e 20 4d 6f 73 74 20 74 72 61 66 66 69 63 20 74 79 70 65 73 20 77 69 6c 6c 20 6e 6f 74 20 | ry..Most.traffic.types.will.not. |
| 8e3c0 | 6d 65 65 74 20 74 68 65 73 65 20 63 72 69 74 65 72 69 61 2c 20 61 73 20 54 43 50 20 72 61 72 65 | meet.these.criteria,.as.TCP.rare |
| 8e3e0 | 6c 79 20 66 72 61 67 6d 65 6e 74 73 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 6d 6f 73 74 20 55 | ly.fragments.traffic,.and.most.U |
| 8e400 | 44 50 20 74 72 61 66 66 69 63 20 69 73 20 6e 6f 74 20 69 6e 76 6f 6c 76 65 64 20 69 6e 20 65 78 | DP.traffic.is.not.involved.in.ex |
| 8e420 | 74 65 6e 64 65 64 20 63 6f 6e 76 65 72 73 61 74 69 6f 6e 73 2e 20 4f 74 68 65 72 20 69 6d 70 6c | tended.conversations..Other.impl |
| 8e440 | 65 6d 65 6e 74 61 74 69 6f 6e 73 20 6f 66 20 38 30 32 2e 33 61 64 20 6d 61 79 20 6f 72 20 6d 61 | ementations.of.802.3ad.may.or.ma |
| 8e460 | 79 20 6e 6f 74 20 74 6f 6c 65 72 61 74 65 20 74 68 69 73 20 6e 6f 6e 63 6f 6d 70 6c 69 61 6e 63 | y.not.tolerate.this.noncomplianc |
| 8e480 | 65 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 77 69 6c 6c 20 70 6c 61 63 65 20 61 6c 6c | e..This.algorithm.will.place.all |
| 8e4a0 | 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b | .traffic.to.a.particular.network |
| 8e4c0 | 20 70 65 65 72 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 73 6c 61 76 65 2e 00 54 68 69 73 20 61 6c | .peer.on.the.same.slave..This.al |
| 8e4e0 | 67 6f 72 69 74 68 6d 20 77 69 6c 6c 20 70 6c 61 63 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 | gorithm.will.place.all.traffic.t |
| 8e500 | 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b 20 70 65 65 72 20 6f 6e 20 74 | o.a.particular.network.peer.on.t |
| 8e520 | 68 65 20 73 61 6d 65 20 73 6c 61 76 65 2e 20 46 6f 72 20 6e 6f 6e 2d 49 50 20 74 72 61 66 66 69 | he.same.slave..For.non-IP.traffi |
| 8e540 | 63 2c 20 74 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 66 6f | c,.the.formula.is.the.same.as.fo |
| 8e560 | 72 20 74 68 65 20 6c 61 79 65 72 32 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 | r.the.layer2.transmit.hash.polic |
| 8e580 | 79 2e 00 54 68 69 73 20 61 6c 6c 6f 77 73 20 61 76 6f 69 64 69 6e 67 20 74 68 65 20 74 69 6d 65 | y..This.allows.avoiding.the.time |
| 8e5a0 | 72 73 20 64 65 66 69 6e 65 64 20 69 6e 20 42 47 50 20 61 6e 64 20 4f 53 50 46 20 70 72 6f 74 6f | rs.defined.in.BGP.and.OSPF.proto |
| 8e5c0 | 63 6f 6c 20 74 6f 20 65 78 70 69 72 65 73 2e 00 54 68 69 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 | col.to.expires..This.allows.the. |
| 8e5e0 | 6f 70 65 72 61 74 6f 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 6e 75 6d 62 65 72 20 6f | operator.to.control.the.number.o |
| 8e600 | 66 20 6f 70 65 6e 20 66 69 6c 65 20 64 65 73 63 72 69 70 74 6f 72 73 20 65 61 63 68 20 64 61 65 | f.open.file.descriptors.each.dae |
| 8e620 | 6d 6f 6e 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 73 74 61 72 74 20 77 69 74 68 2e 20 49 66 | mon.is.allowed.to.start.with..If |
| 8e640 | 20 74 68 65 20 6f 70 65 72 61 74 6f 72 20 70 6c 61 6e 73 20 74 6f 20 72 75 6e 20 62 67 70 20 77 | .the.operator.plans.to.run.bgp.w |
| 8e660 | 69 74 68 20 73 65 76 65 72 61 6c 20 74 68 6f 75 73 61 6e 64 73 20 6f 66 20 70 65 65 72 73 20 74 | ith.several.thousands.of.peers.t |
| 8e680 | 68 65 6e 20 74 68 69 73 20 69 73 20 77 68 65 72 65 20 77 65 20 77 6f 75 6c 64 20 6d 6f 64 69 66 | hen.this.is.where.we.would.modif |
| 8e6a0 | 79 20 46 52 52 20 74 6f 20 61 6c 6c 6f 77 20 74 68 69 73 20 74 6f 20 68 61 70 70 65 6e 2e 00 54 | y.FRR.to.allow.this.to.happen..T |
| 8e6c0 | 68 69 73 20 61 6c 73 6f 20 77 6f 72 6b 73 20 66 6f 72 20 72 65 76 65 72 73 65 2d 6c 6f 6f 6b 75 | his.also.works.for.reverse-looku |
| 8e6e0 | 70 20 7a 6f 6e 65 73 20 28 60 60 31 38 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 60 60 | p.zones.(``18.172.in-addr.arpa`` |
| 8e700 | 29 2e 00 54 68 69 73 20 61 72 74 69 63 6c 65 20 74 6f 75 63 68 65 73 20 6f 6e 20 27 63 6c 61 73 | )..This.article.touches.on.'clas |
| 8e720 | 73 69 63 27 20 49 50 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 54 68 69 | sic'.IP.tunneling.protocols..Thi |
| 8e740 | 73 20 62 6c 75 65 70 72 69 6e 74 20 75 73 65 73 20 56 79 4f 53 20 61 73 20 74 68 65 20 44 4d 56 | s.blueprint.uses.VyOS.as.the.DMV |
| 8e760 | 50 4e 20 48 75 62 20 61 6e 64 20 43 69 73 63 6f 20 28 37 32 30 36 56 58 52 29 20 61 6e 64 20 56 | PN.Hub.and.Cisco.(7206VXR).and.V |
| 8e780 | 79 4f 53 20 61 73 20 6d 75 6c 74 69 70 6c 65 20 73 70 6f 6b 65 20 73 69 74 65 73 2e 20 54 68 65 | yOS.as.multiple.spoke.sites..The |
| 8e7a0 | 20 6c 61 62 20 77 61 73 20 62 75 69 6c 64 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 45 56 45 2d | .lab.was.build.using.:abbr:`EVE- |
| 8e7c0 | 4e 47 20 28 45 6d 75 6c 61 74 65 64 20 56 69 72 74 75 61 6c 20 45 6e 76 69 72 6f 6e 6d 65 6e 74 | NG.(Emulated.Virtual.Environment |
| 8e7e0 | 20 4e 47 29 60 2e 00 54 68 69 73 20 62 6c 75 65 70 72 69 6e 74 20 75 73 65 73 20 56 79 4f 53 20 | .NG)`..This.blueprint.uses.VyOS. |
| 8e800 | 61 73 20 74 68 65 20 44 4d 56 50 4e 20 48 75 62 20 61 6e 64 20 43 69 73 63 6f 20 28 37 32 30 36 | as.the.DMVPN.Hub.and.Cisco.(7206 |
| 8e820 | 56 58 52 29 20 61 6e 64 20 56 79 4f 53 20 61 73 20 6d 75 6c 74 69 70 6c 65 20 73 70 6f 6b 65 20 | VXR).and.VyOS.as.multiple.spoke. |
| 8e840 | 73 69 74 65 73 2e 20 54 68 65 20 6c 61 62 20 77 61 73 20 62 75 69 6c 74 20 75 73 69 6e 67 20 3a | sites..The.lab.was.built.using.: |
| 8e860 | 61 62 62 72 3a 60 45 56 45 2d 4e 47 20 28 45 6d 75 6c 61 74 65 64 20 56 69 72 74 75 61 6c 20 45 | abbr:`EVE-NG.(Emulated.Virtual.E |
| 8e880 | 6e 76 69 72 6f 6e 6d 65 6e 74 20 4e 47 29 60 2e 00 54 68 69 73 20 63 61 6e 20 62 65 20 63 6f 6e | nvironment.NG)`..This.can.be.con |
| 8e8a0 | 66 69 72 6d 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 60 73 68 6f 77 20 69 70 20 72 6f 75 74 65 | firmed.using.the.``show.ip.route |
| 8e8c0 | 20 74 61 62 6c 65 20 31 30 30 60 60 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 | .table.100``.operational.command |
| 8e8e0 | 2e 00 54 68 69 73 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 64 6f 6e 65 20 69 66 20 61 6c 6c 20 79 | ..This.can.only.be.done.if.all.y |
| 8e900 | 6f 75 72 20 75 73 65 72 73 20 61 72 65 20 6c 6f 63 61 74 65 64 20 64 69 72 65 63 74 6c 79 20 75 | our.users.are.located.directly.u |
| 8e920 | 6e 64 65 72 20 74 68 65 20 73 61 6d 65 20 70 6f 73 69 74 69 6f 6e 20 69 6e 20 74 68 65 20 4c 44 | nder.the.same.position.in.the.LD |
| 8e940 | 41 50 20 74 72 65 65 20 61 6e 64 20 74 68 65 20 6c 6f 67 69 6e 20 6e 61 6d 65 20 69 73 20 75 73 | AP.tree.and.the.login.name.is.us |
| 8e960 | 65 64 20 66 6f 72 20 6e 61 6d 69 6e 67 20 65 61 63 68 20 75 73 65 72 20 6f 62 6a 65 63 74 2e 20 | ed.for.naming.each.user.object.. |
| 8e980 | 49 66 20 79 6f 75 72 20 4c 44 41 50 20 74 72 65 65 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 | If.your.LDAP.tree.does.not.match |
| 8e9a0 | 20 74 68 65 73 65 20 63 72 69 74 65 72 69 61 73 20 6f 72 20 69 66 20 79 6f 75 20 77 61 6e 74 20 | .these.criterias.or.if.you.want. |
| 8e9c0 | 74 6f 20 66 69 6c 74 65 72 20 77 68 6f 20 61 72 65 20 76 61 6c 69 64 20 75 73 65 72 73 20 74 68 | to.filter.who.are.valid.users.th |
| 8e9e0 | 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 75 73 65 20 61 20 73 65 61 72 63 68 20 66 69 6c 74 | en.you.need.to.use.a.search.filt |
| 8ea00 | 65 72 20 74 6f 20 73 65 61 72 63 68 20 66 6f 72 20 79 6f 75 72 20 75 73 65 72 73 20 44 4e 20 28 | er.to.search.for.your.users.DN.( |
| 8ea20 | 60 66 69 6c 74 65 72 2d 65 78 70 72 65 73 73 69 6f 6e 60 29 2e 00 54 68 69 73 20 63 68 61 70 65 | `filter-expression`)..This.chape |
| 8ea40 | 74 65 72 20 64 65 73 63 72 69 62 65 73 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 6b | ter.describes.how.to.configure.k |
| 8ea60 | 65 72 6e 65 6c 20 70 61 72 61 6d 65 74 65 72 73 20 61 74 20 72 75 6e 74 69 6d 65 2e 00 54 68 69 | ernel.parameters.at.runtime..Thi |
| 8ea80 | 73 20 63 68 61 70 74 65 72 20 64 65 73 63 72 69 62 65 20 74 68 65 20 70 6f 73 73 69 62 69 6c 69 | s.chapter.describe.the.possibili |
| 8eaa0 | 74 69 65 73 20 6f 66 20 61 64 76 61 6e 63 65 64 20 73 79 73 74 65 6d 20 62 65 68 61 76 69 6f 72 | ties.of.advanced.system.behavior |
| 8eac0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 64 20 73 65 74 73 20 6e 65 74 77 6f 72 6b 20 65 6e 74 69 74 | ..This.commad.sets.network.entit |
| 8eae0 | 79 20 74 69 74 6c 65 20 28 4e 45 54 29 20 70 72 6f 76 69 64 65 64 20 69 6e 20 49 53 4f 20 66 6f | y.title.(NET).provided.in.ISO.fo |
| 8eb00 | 72 6d 61 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 65 70 74 20 69 6e 63 6f 6d 69 | rmat..This.command.accept.incomi |
| 8eb20 | 6e 67 20 72 6f 75 74 65 73 20 77 69 74 68 20 41 53 20 70 61 74 68 20 63 6f 6e 74 61 69 6e 69 6e | ng.routes.with.AS.path.containin |
| 8eb40 | 67 20 41 53 20 6e 75 6d 62 65 72 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 76 61 6c 75 65 20 | g.AS.number.with.the.same.value. |
| 8eb60 | 61 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 79 73 74 65 6d 20 41 53 2e 20 54 68 69 73 20 69 | as.the.current.system.AS..This.i |
| 8eb80 | 73 20 75 73 65 64 20 77 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 74 68 65 20 | s.used.when.you.want.to.use.the. |
| 8eba0 | 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 69 6e 20 79 6f 75 72 20 73 69 74 65 73 2c 20 62 75 | same.AS.number.in.your.sites,.bu |
| 8ebc0 | 74 20 79 6f 75 20 63 61 6e e2 80 99 74 20 63 6f 6e 6e 65 63 74 20 74 68 65 6d 20 64 69 72 65 63 | t.you.can...t.connect.them.direc |
| 8ebe0 | 74 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 20 6f 76 65 72 72 69 64 65 | tly..This.command.allow.override |
| 8ec00 | 20 74 68 65 20 72 65 73 75 6c 74 20 6f 66 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 | .the.result.of.Capability.Negoti |
| 8ec20 | 61 74 69 6f 6e 20 77 69 74 68 20 6c 6f 63 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 | ation.with.local.configuration.. |
| 8ec40 | 49 67 6e 6f 72 65 20 72 65 6d 6f 74 65 20 70 65 65 72 e2 80 99 73 20 63 61 70 61 62 69 6c 69 74 | Ignore.remote.peer...s.capabilit |
| 8ec60 | 79 20 76 61 6c 75 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 70 65 65 | y.value..This.command.allows.pee |
| 8ec80 | 72 69 6e 67 73 20 62 65 74 77 65 65 6e 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 | rings.between.directly.connected |
| 8eca0 | 20 65 42 47 50 20 70 65 65 72 73 20 75 73 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 | .eBGP.peers.using.loopback.addre |
| 8ecc0 | 73 73 65 73 20 77 69 74 68 6f 75 74 20 61 64 6a 75 73 74 69 6e 67 20 74 68 65 20 64 65 66 61 75 | sses.without.adjusting.the.defau |
| 8ece0 | 6c 74 20 54 54 4c 20 6f 66 20 31 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 | lt.TTL.of.1..This.command.allows |
| 8ed00 | 20 73 65 73 73 69 6f 6e 73 20 74 6f 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 77 69 74 68 | .sessions.to.be.established.with |
| 8ed20 | 20 65 42 47 50 20 6e 65 69 67 68 62 6f 72 73 20 77 68 65 6e 20 74 68 65 79 20 61 72 65 20 6d 75 | .eBGP.neighbors.when.they.are.mu |
| 8ed40 | 6c 74 69 70 6c 65 20 68 6f 70 73 20 61 77 61 79 2e 20 57 68 65 6e 20 74 68 65 20 6e 65 69 67 68 | ltiple.hops.away..When.the.neigh |
| 8ed60 | 62 6f 72 20 69 73 20 6e 6f 74 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 61 6e | bor.is.not.directly.connected.an |
| 8ed80 | 64 20 74 68 69 73 20 6b 6e 6f 62 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 | d.this.knob.is.not.enabled,.the. |
| 8eda0 | 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 65 73 74 61 62 6c 69 73 68 2e 20 54 68 65 20 | session.will.not.establish..The. |
| 8edc0 | 6e 75 6d 62 65 72 20 6f 66 20 68 6f 70 73 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 | number.of.hops.range.is.1.to.255 |
| 8ede0 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6d 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 | ..This.command.is.mutually.exclu |
| 8ee00 | 73 69 76 65 20 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 74 74 6c 2d 73 65 63 75 72 69 74 79 20 | sive.with.:cfgcmd:`ttl-security. |
| 8ee20 | 68 6f 70 73 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 68 65 20 72 | hops`..This.command.allows.the.r |
| 8ee40 | 6f 75 74 65 72 20 74 6f 20 70 72 65 66 65 72 20 72 6f 75 74 65 20 74 6f 20 73 70 65 63 69 66 69 | outer.to.prefer.route.to.specifi |
| 8ee60 | 65 64 20 70 72 65 66 69 78 20 6c 65 61 72 6e 65 64 20 76 69 61 20 49 47 50 20 74 68 72 6f 75 67 | ed.prefix.learned.via.IGP.throug |
| 8ee80 | 68 20 62 61 63 6b 64 6f 6f 72 20 6c 69 6e 6b 20 69 6e 73 74 65 61 64 20 6f 66 20 61 20 72 6f 75 | h.backdoor.link.instead.of.a.rou |
| 8eea0 | 74 65 20 74 6f 20 74 68 65 20 73 61 6d 65 20 70 72 65 66 69 78 20 6c 65 61 72 6e 65 64 20 76 69 | te.to.the.same.prefix.learned.vi |
| 8eec0 | 61 20 45 42 47 50 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 6c | a.EBGP..This.command.allows.to.l |
| 8eee0 | 6f 67 20 63 68 61 6e 67 65 73 20 69 6e 20 61 64 6a 61 63 65 6e 63 79 2e 20 57 69 74 68 20 74 68 | og.changes.in.adjacency..With.th |
| 8ef00 | 65 20 6f 70 74 69 6f 6e 61 6c 20 3a 63 66 67 63 6d 64 3a 60 64 65 74 61 69 6c 60 20 61 72 67 75 | e.optional.:cfgcmd:`detail`.argu |
| 8ef20 | 6d 65 6e 74 2c 20 61 6c 6c 20 63 68 61 6e 67 65 73 20 69 6e 20 61 64 6a 61 63 65 6e 63 79 20 73 | ment,.all.changes.in.adjacency.s |
| 8ef40 | 74 61 74 75 73 20 61 72 65 20 73 68 6f 77 6e 2e 20 57 69 74 68 6f 75 74 20 3a 63 66 67 63 6d 64 | tatus.are.shown..Without.:cfgcmd |
| 8ef60 | 3a 60 64 65 74 61 69 6c 60 2c 20 6f 6e 6c 79 20 63 68 61 6e 67 65 73 20 74 6f 20 66 75 6c 6c 20 | :`detail`,.only.changes.to.full. |
| 8ef80 | 6f 72 20 72 65 67 72 65 73 73 69 6f 6e 73 20 61 72 65 20 73 68 6f 77 6e 2e 00 54 68 69 73 20 63 | or.regressions.are.shown..This.c |
| 8efa0 | 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 73 | ommand.allows.to.specify.the.dis |
| 8efc0 | 74 72 69 62 75 74 69 6f 6e 20 74 79 70 65 20 66 6f 72 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 63 | tribution.type.for.the.network.c |
| 8efe0 | 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 3a 00 54 68 69 73 | onnected.to.this.interface:.This |
| 8f000 | 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 | .command.allows.to.use.route.map |
| 8f020 | 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 | .to.filter.redistributed.routes. |
| 8f040 | 66 72 6f 6d 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 | from.given.route.source..There.a |
| 8f060 | 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 | re.five.modes.available.for.rout |
| 8f080 | 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c | e.source:.bgp,.connected,.kernel |
| 8f0a0 | 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c | ,.ripng,.static..This.command.al |
| 8f0c0 | 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 | lows.to.use.route.map.to.filter. |
| 8f0e0 | 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 | redistributed.routes.from.the.gi |
| 8f100 | 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 | ven.route.source..There.are.five |
| 8f120 | 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 | .modes.available.for.route.sourc |
| 8f140 | 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c | e:.bgp,.connected,.kernel,.ospf, |
| 8f160 | 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 | .static..This.command.allows.to. |
| 8f180 | 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 | use.route.map.to.filter.redistri |
| 8f1a0 | 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 | buted.routes.from.the.given.rout |
| 8f1c0 | 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 | e.source..There.are.five.modes.a |
| 8f1e0 | 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 | vailable.for.route.source:.bgp,. |
| 8f200 | 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 | connected,.kernel,.rip,.static.. |
| 8f220 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 | This.command.allows.to.use.route |
| 8f240 | 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 | .map.to.filter.redistributed.rou |
| 8f260 | 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e | tes.from.the.given.route.source. |
| 8f280 | 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 | .There.are.six.modes.available.f |
| 8f2a0 | 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c | or.route.source:.bgp,.connected, |
| 8f2c0 | 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 | .kernel,.ospf,.rip,.static..This |
| 8f2e0 | 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 | .command.allows.to.use.route.map |
| 8f300 | 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e | .to.filter.redistributed.routes. |
| 8f320 | 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 | .There.are.six.modes.available.f |
| 8f340 | 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e | or.route.source:.connected,.kern |
| 8f360 | 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 | el,.ospf,.rip,.static,.table..Th |
| 8f380 | 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 61 63 63 65 | is.command.allows.you.apply.acce |
| 8f3a0 | 73 73 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 | ss.lists.to.a.chosen.interface.t |
| 8f3c0 | 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 | o.filter.the.Babel.routes..This. |
| 8f3e0 | 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 61 63 63 65 73 73 20 | command.allows.you.apply.access. |
| 8f400 | 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 | lists.to.a.chosen.interface.to.f |
| 8f420 | 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ilter.the.RIP.path..This.command |
| 8f440 | 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 70 72 65 66 69 78 20 6c 69 73 74 73 20 74 | .allows.you.apply.prefix.lists.t |
| 8f460 | 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 | o.a.chosen.interface.to.filter.t |
| 8f480 | 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c | he.Babel.routes..This.command.al |
| 8f4a0 | 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 70 72 65 66 69 78 20 6c 69 73 74 73 20 74 6f 20 61 | lows.you.apply.prefix.lists.to.a |
| 8f4c0 | 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 | .chosen.interface.to.filter.the. |
| 8f4e0 | 52 49 50 20 70 61 74 68 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f | RIP.path..This.command.allows.yo |
| 8f500 | 75 20 74 6f 20 73 65 6c 65 63 74 20 61 20 73 70 65 63 69 66 69 63 20 61 63 63 65 73 73 20 63 6f | u.to.select.a.specific.access.co |
| 8f520 | 6e 63 65 6e 74 72 61 74 6f 72 20 77 68 65 6e 20 79 6f 75 20 6b 6e 6f 77 20 74 68 65 20 61 63 63 | ncentrator.when.you.know.the.acc |
| 8f540 | 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 60 3c 6e 61 6d 65 3e 60 2e 00 54 68 69 73 | ess.concentrators.`<name>`..This |
| 8f560 | 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 72 6f 75 74 65 2d 6d 61 70 20 74 6f 20 73 65 | .command.applies.route-map.to.se |
| 8f580 | 6c 65 63 74 69 76 65 6c 79 20 75 6e 73 75 70 70 72 65 73 73 20 70 72 65 66 69 78 65 73 20 73 75 | lectively.unsuppress.prefixes.su |
| 8f5a0 | 70 70 72 65 73 73 65 64 20 62 79 20 73 75 6d 6d 61 72 69 73 61 74 69 6f 6e 2e 00 54 68 69 73 20 | ppressed.by.summarisation..This. |
| 8f5c0 | 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 41 53 20 70 61 74 68 20 61 63 63 65 | command.applies.the.AS.path.acce |
| 8f5e0 | 73 73 20 6c 69 73 74 20 66 69 6c 74 65 72 73 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 | ss.list.filters.named.in.<name>. |
| 8f600 | 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f | to.the.specified.BGP.neighbor.to |
| 8f620 | 20 72 65 73 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f | .restrict.the.routing.informatio |
| 8f640 | 6e 20 74 68 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 | n.that.BGP.learns.and/or.adverti |
| 8f660 | 73 65 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f | ses..The.arguments.:cfgcmd:`expo |
| 8f680 | 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 | rt`.and.:cfgcmd:`import`.specify |
| 8f6a0 | 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 41 53 20 70 | .the.direction.in.which.the.AS.p |
| 8f6c0 | 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 | ath.access.list.are.applied..Thi |
| 8f6e0 | 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 | s.command.applies.the.access.lis |
| 8f700 | 74 20 66 69 6c 74 65 72 73 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 75 6d 62 65 72 3e 20 74 6f 20 74 | t.filters.named.in.<number>.to.t |
| 8f720 | 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 72 65 73 | he.specified.BGP.neighbor.to.res |
| 8f740 | 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 | trict.the.routing.information.th |
| 8f760 | 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 73 65 73 2e | at.BGP.learns.and/or.advertises. |
| 8f780 | 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 | .The.arguments.:cfgcmd:`export`. |
| 8f7a0 | 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 | and.:cfgcmd:`import`.specify.the |
| 8f7c0 | 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 61 63 63 65 73 73 20 6c | .direction.in.which.the.access.l |
| 8f7e0 | 69 73 74 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 | ist.are.applied..This.command.ap |
| 8f800 | 70 6c 69 65 73 20 74 68 65 20 70 72 66 65 66 69 78 20 6c 69 73 74 20 66 69 6c 74 65 72 73 20 6e | plies.the.prfefix.list.filters.n |
| 8f820 | 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | amed.in.<name>.to.the.specified. |
| 8f840 | 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 72 6f 75 | BGP.neighbor.to.restrict.the.rou |
| 8f860 | 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 42 47 50 20 6c 65 61 72 6e 73 | ting.information.that.BGP.learns |
| 8f880 | 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 73 65 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 | .and/or.advertises..The.argument |
| 8f8a0 | 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 | s.:cfgcmd:`export`.and.:cfgcmd:` |
| 8f8c0 | 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e | import`.specify.the.direction.in |
| 8f8e0 | 20 77 68 69 63 68 20 74 68 65 20 70 72 65 66 69 78 20 6c 69 73 74 20 61 72 65 20 61 70 70 6c 69 | .which.the.prefix.list.are.appli |
| 8f900 | 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 72 6f 75 | ed..This.command.applies.the.rou |
| 8f920 | 74 65 20 6d 61 70 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 74 6f 20 74 68 65 20 73 70 | te.map.named.in.<name>.to.the.sp |
| 8f940 | 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 | ecified.BGP.neighbor.to.control. |
| 8f960 | 61 6e 64 20 6d 6f 64 69 66 79 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 | and.modify.routing.information.t |
| 8f980 | 68 61 74 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 74 77 65 65 6e 20 70 65 65 72 73 2e 20 | hat.is.exchanged.between.peers.. |
| 8f9a0 | 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 | The.arguments.:cfgcmd:`export`.a |
| 8f9c0 | 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 20 | nd.:cfgcmd:`import`.specify.the. |
| 8f9e0 | 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 | direction.in.which.the.route.map |
| 8fa00 | 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 62 69 6e 64 20 | .are.applied..This.command.bind. |
| 8fa20 | 73 70 65 63 69 66 69 63 20 70 65 65 72 20 74 6f 20 70 65 65 72 20 67 72 6f 75 70 20 77 69 74 68 | specific.peer.to.peer.group.with |
| 8fa40 | 20 61 20 67 69 76 65 6e 20 6e 61 6d 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 | .a.given.name..This.command.can. |
| 8fa60 | 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 | be.used.to.filter.the.Babel.rout |
| 8fa80 | 65 73 20 75 73 69 6e 67 20 61 63 63 65 73 73 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 | es.using.access.lists..:cfgcmd:` |
| 8faa0 | 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 | in`.and.:cfgcmd:`out`.this.is.th |
| 8fac0 | 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 61 63 63 65 73 73 20 | e.direction.in.which.the.access. |
| 8fae0 | 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | lists.are.applied..This.command. |
| 8fb00 | 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 | can.be.used.to.filter.the.Babel. |
| 8fb20 | 72 6f 75 74 65 73 20 75 73 69 6e 67 20 70 72 65 66 69 78 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 | routes.using.prefix.lists..:cfgc |
| 8fb40 | 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 | md:`in`.and.:cfgcmd:`out`.this.i |
| 8fb60 | 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 65 | s.the.direction.in.which.the.pre |
| 8fb80 | 66 69 78 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d | fix.lists.are.applied..This.comm |
| 8fba0 | 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 | and.can.be.used.to.filter.the.RI |
| 8fbc0 | 50 20 70 61 74 68 20 75 73 69 6e 67 20 61 63 63 65 73 73 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 | P.path.using.access.lists..:cfgc |
| 8fbe0 | 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 | md:`in`.and.:cfgcmd:`out`.this.i |
| 8fc00 | 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 61 63 63 | s.the.direction.in.which.the.acc |
| 8fc20 | 65 73 73 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d | ess.lists.are.applied..This.comm |
| 8fc40 | 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 | and.can.be.used.to.filter.the.RI |
| 8fc60 | 50 20 70 61 74 68 20 75 73 69 6e 67 20 70 72 65 66 69 78 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 | P.path.using.prefix.lists..:cfgc |
| 8fc80 | 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 74 68 69 73 20 69 | md:`in`.and.:cfgcmd:`out`.this.i |
| 8fca0 | 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 65 | s.the.direction.in.which.the.pre |
| 8fcc0 | 66 69 78 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d | fix.lists.are.applied..This.comm |
| 8fce0 | 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 70 72 65 76 69 6f 75 73 20 63 6f | and.can.be.used.with.previous.co |
| 8fd00 | 6d 6d 61 6e 64 20 74 6f 20 73 65 74 73 20 64 65 66 61 75 6c 74 20 52 49 50 20 64 69 73 74 61 6e | mmand.to.sets.default.RIP.distan |
| 8fd20 | 63 65 20 74 6f 20 73 70 65 63 69 66 69 65 64 20 76 61 6c 75 65 20 77 68 65 6e 20 74 68 65 20 72 | ce.to.specified.value.when.the.r |
| 8fd40 | 6f 75 74 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6d 61 74 63 68 65 73 20 74 | oute.source.IP.address.matches.t |
| 8fd60 | 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 20 61 6e 64 20 74 68 65 20 73 70 65 63 | he.specified.prefix.and.the.spec |
| 8fd80 | 69 66 69 65 64 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | ified.access-list..This.command. |
| 8fda0 | 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 42 47 50 2e 20 54 68 | change.distance.value.of.BGP..Th |
| 8fdc0 | 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c | e.arguments.are.the.distance.val |
| 8fde0 | 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 2c 20 69 6e 74 65 72 6e 61 | ues.for.external.routes,.interna |
| 8fe00 | 6c 20 72 6f 75 74 65 73 20 61 6e 64 20 6c 6f 63 61 6c 20 72 6f 75 74 65 73 20 72 65 73 70 65 63 | l.routes.and.local.routes.respec |
| 8fe20 | 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 | tively..The.distance.range.is.1. |
| 8fe40 | 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 | to.255..This.command.change.dist |
| 8fe60 | 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 20 67 6c 6f 62 61 6c 6c 79 2e 20 54 68 65 | ance.value.of.OSPF.globally..The |
| 8fe80 | 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 | .distance.range.is.1.to.255..Thi |
| 8fea0 | 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 | s.command.change.distance.value. |
| 8fec0 | 6f 66 20 4f 53 50 46 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 | of.OSPF..The.arguments.are.the.d |
| 8fee0 | 69 73 74 61 6e 63 65 20 76 61 6c 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 | istance.values.for.external.rout |
| 8ff00 | 65 73 2c 20 69 6e 74 65 72 2d 61 72 65 61 20 72 6f 75 74 65 73 20 61 6e 64 20 69 6e 74 72 61 2d | es,.inter-area.routes.and.intra- |
| 8ff20 | 61 72 65 61 20 72 6f 75 74 65 73 20 72 65 73 70 65 63 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 | area.routes.respectively..The.di |
| 8ff40 | 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 | stance.range.is.1.to.255..This.c |
| 8ff60 | 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 | ommand.change.distance.value.of. |
| 8ff80 | 4f 53 50 46 76 33 20 67 6c 6f 62 61 6c 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 | OSPFv3.globally..The.distance.ra |
| 8ffa0 | 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 | nge.is.1.to.255..This.command.ch |
| 8ffc0 | 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 76 33 2e 20 54 | ange.distance.value.of.OSPFv3..T |
| 8ffe0 | 68 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 | he.arguments.are.the.distance.va |
| 90000 | 6c 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 2c 20 69 6e 74 65 72 2d | lues.for.external.routes,.inter- |
| 90020 | 61 72 65 61 20 72 6f 75 74 65 73 20 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 61 20 72 6f 75 74 65 | area.routes.and.intra-area.route |
| 90040 | 73 20 72 65 73 70 65 63 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e | s.respectively..The.distance.ran |
| 90060 | 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 | ge.is.1.to.255..This.command.cha |
| 90080 | 6e 67 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 52 49 50 2e 20 54 | nge.the.distance.value.of.RIP..T |
| 900a0 | 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 | he.distance.range.is.1.to.255..T |
| 900c0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 73 20 74 68 65 20 65 42 47 50 20 62 65 68 | his.command.changes.the.eBGP.beh |
| 900e0 | 61 76 69 6f 72 20 6f 66 20 46 52 52 2e 20 42 79 20 64 65 66 61 75 6c 74 20 46 52 52 20 65 6e 61 | avior.of.FRR..By.default.FRR.ena |
| 90100 | 62 6c 65 73 20 3a 72 66 63 3a 60 38 32 31 32 60 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 77 | bles.:rfc:`8212`.functionality.w |
| 90120 | 68 69 63 68 20 61 66 66 65 63 74 73 20 68 6f 77 20 65 42 47 50 20 72 6f 75 74 65 73 20 61 72 65 | hich.affects.how.eBGP.routes.are |
| 90140 | 20 61 64 76 65 72 74 69 73 65 64 2c 20 6e 61 6d 65 6c 79 20 6e 6f 20 72 6f 75 74 65 73 20 61 72 | .advertised,.namely.no.routes.ar |
| 90160 | 65 20 61 64 76 65 72 74 69 73 65 64 20 61 63 72 6f 73 73 20 65 42 47 50 20 73 65 73 73 69 6f 6e | e.advertised.across.eBGP.session |
| 90180 | 73 20 77 69 74 68 6f 75 74 20 73 6f 6d 65 20 73 6f 72 74 20 6f 66 20 65 67 72 65 73 73 20 72 6f | s.without.some.sort.of.egress.ro |
| 901a0 | 75 74 65 2d 6d 61 70 2f 70 6f 6c 69 63 79 20 69 6e 20 70 6c 61 63 65 2e 20 49 6e 20 56 79 4f 53 | ute-map/policy.in.place..In.VyOS |
| 901c0 | 20 68 6f 77 65 76 65 72 20 77 65 20 68 61 76 65 20 74 68 69 73 20 52 46 43 20 66 75 6e 63 74 69 | .however.we.have.this.RFC.functi |
| 901e0 | 6f 6e 61 6c 69 74 79 20 64 69 73 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 73 6f 20 74 | onality.disabled.by.default.so.t |
| 90200 | 68 61 74 20 77 65 20 63 61 6e 20 70 72 65 73 65 72 76 65 20 62 61 63 6b 77 61 72 64 73 20 63 6f | hat.we.can.preserve.backwards.co |
| 90220 | 6d 70 61 74 69 62 69 6c 69 74 79 20 77 69 74 68 20 6f 6c 64 65 72 20 76 65 72 73 69 6f 6e 73 20 | mpatibility.with.older.versions. |
| 90240 | 6f 66 20 56 79 4f 53 2e 20 57 69 74 68 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 6f 6e 65 20 63 61 | of.VyOS..With.this.option.one.ca |
| 90260 | 6e 20 65 6e 61 62 6c 65 20 3a 72 66 63 3a 60 38 32 31 32 60 20 66 75 6e 63 74 69 6f 6e 61 6c 69 | n.enable.:rfc:`8212`.functionali |
| 90280 | 74 79 20 74 6f 20 6f 70 65 72 61 74 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 | ty.to.operate..This.command.conf |
| 902a0 | 69 67 75 72 65 73 20 70 61 64 64 69 6e 67 20 6f 6e 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 | igures.padding.on.hello.packets. |
| 902c0 | 74 6f 20 61 63 63 6f 6d 6d 6f 64 61 74 65 20 61 73 79 6d 6d 65 74 72 69 63 61 6c 20 6d 61 78 69 | to.accommodate.asymmetrical.maxi |
| 902e0 | 6d 75 6d 20 74 72 61 6e 73 66 65 72 20 75 6e 69 74 73 20 28 4d 54 55 73 29 20 66 72 6f 6d 20 64 | mum.transfer.units.(MTUs).from.d |
| 90300 | 69 66 66 65 72 65 6e 74 20 68 6f 73 74 73 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a | ifferent.hosts.as.described.in.: |
| 90320 | 72 66 63 3a 60 33 37 31 39 60 2e 20 54 68 69 73 20 68 65 6c 70 73 20 74 6f 20 70 72 65 76 65 6e | rfc:`3719`..This.helps.to.preven |
| 90340 | 74 20 61 20 70 72 65 6d 61 74 75 72 65 20 61 64 6a 61 63 65 6e 63 79 20 55 70 20 73 74 61 74 65 | t.a.premature.adjacency.Up.state |
| 90360 | 20 77 68 65 6e 20 6f 6e 65 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 73 20 4d 54 55 20 64 6f | .when.one.routing.devices.MTU.do |
| 90380 | 65 73 20 6e 6f 74 20 6d 65 65 74 20 74 68 65 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 | es.not.meet.the.requirements.to. |
| 903a0 | 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 61 64 6a 61 63 65 6e 63 79 2e 00 54 68 69 73 20 63 6f | establish.the.adjacency..This.co |
| 903c0 | 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 | mmand.configures.the.authenticat |
| 903e0 | 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 61 20 72 6f 75 74 69 6e 67 20 64 6f 6d 61 69 | ion.password.for.a.routing.domai |
| 90400 | 6e 2c 20 61 73 20 63 6c 65 61 72 20 74 65 78 74 20 6f 72 20 6d 64 35 20 6f 6e 65 2e 00 54 68 69 | n,.as.clear.text.or.md5.one..Thi |
| 90420 | 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 61 75 74 68 65 6e 74 | s.command.configures.the.authent |
| 90440 | 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 | ication.password.for.the.interfa |
| 90460 | 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 | ce..This.command.configures.the. |
| 90480 | 6d 61 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 20 67 65 6e 65 72 61 74 65 64 20 3a 61 62 62 72 3a | maximum.size.of.generated.:abbr: |
| 904a0 | 60 4c 53 50 73 20 28 4c 69 6e 6b 20 53 74 61 74 65 20 50 44 55 73 29 60 2c 20 69 6e 20 62 79 74 | `LSPs.(Link.State.PDUs)`,.in.byt |
| 904c0 | 65 73 2e 20 54 68 65 20 73 69 7a 65 20 72 61 6e 67 65 20 69 73 20 31 32 38 20 74 6f 20 34 33 35 | es..The.size.range.is.128.to.435 |
| 904e0 | 32 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 70 | 2..This.command.configures.the.p |
| 90500 | 61 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 | assive.mode.for.this.interface.. |
| 90520 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 6e 65 69 67 68 | This.command.creates.a.new.neigh |
| 90540 | 62 6f 72 20 77 68 6f 73 65 20 72 65 6d 6f 74 65 2d 61 73 20 69 73 20 3c 6e 61 73 6e 3e 2e 20 54 | bor.whose.remote-as.is.<nasn>..T |
| 90560 | 68 65 20 6e 65 69 67 68 62 6f 72 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 6e 20 49 50 | he.neighbor.address.can.be.an.IP |
| 90580 | 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 72 | v4.address.or.an.IPv6.address.or |
| 905a0 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 75 73 65 20 66 6f 72 20 74 68 65 20 63 6f 6e | .an.interface.to.use.for.the.con |
| 905c0 | 6e 65 63 74 69 6f 6e 2e 20 54 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 70 70 6c 69 63 61 62 | nection..The.command.is.applicab |
| 905e0 | 6c 65 20 66 6f 72 20 70 65 65 72 20 61 6e 64 20 70 65 65 72 20 67 72 6f 75 70 2e 00 54 68 69 73 | le.for.peer.and.peer.group..This |
| 90600 | 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 6f 75 74 65 2d 6d 61 70 | .command.creates.a.new.route-map |
| 90620 | 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 | .policy,.identified.by.<text>..T |
| 90640 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 | his.command.creates.a.new.rule.i |
| 90660 | 6e 20 74 68 65 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e | n.the.IPv6.access.list.and.defin |
| 90680 | 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 | es.an.action..This.command.creat |
| 906a0 | 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 | es.a.new.rule.in.the.IPv6.prefix |
| 906c0 | 2d 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 | -list.and.defines.an.action..Thi |
| 906e0 | 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 | s.command.creates.a.new.rule.in. |
| 90700 | 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 | the.access.list.and.defines.an.a |
| 90720 | 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 | ction..This.command.creates.a.ne |
| 90740 | 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 20 61 6e 64 20 64 65 | w.rule.in.the.prefix-list.and.de |
| 90760 | 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 | fines.an.action..This.command.cr |
| 90780 | 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 2c 20 | eates.the.new.IPv6.access.list,. |
| 907a0 | 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | identified.by.<text>.This.comman |
| 907c0 | 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 | d.creates.the.new.IPv6.prefix-li |
| 907e0 | 73 74 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 2e | st.policy,.identified.by.<text>. |
| 90800 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 61 63 | .This.command.creates.the.new.ac |
| 90820 | 63 65 73 73 20 6c 69 73 74 20 70 6f 6c 69 63 79 2c 20 77 68 65 72 65 20 3c 61 63 6c 5f 6e 75 6d | cess.list.policy,.where.<acl_num |
| 90840 | 62 65 72 3e 20 6d 75 73 74 20 62 65 20 61 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 31 20 74 6f 20 | ber>.must.be.a.number.from.1.to. |
| 90860 | 32 36 39 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e | 2699..This.command.creates.the.n |
| 90880 | 65 77 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 | ew.prefix-list.policy,.identifie |
| 908a0 | 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 | d.by.<text>..This.command.define |
| 908c0 | 73 20 61 20 6e 65 77 20 70 65 65 72 20 67 72 6f 75 70 2e 20 59 6f 75 20 63 61 6e 20 73 70 65 63 | s.a.new.peer.group..You.can.spec |
| 908e0 | 69 66 79 20 74 6f 20 74 68 65 20 67 72 6f 75 70 20 74 68 65 20 73 61 6d 65 20 70 61 72 61 6d 65 | ify.to.the.group.the.same.parame |
| 90900 | 74 65 72 73 20 74 68 61 74 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 66 6f 72 20 73 70 | ters.that.you.can.specify.for.sp |
| 90920 | 65 63 69 66 69 63 20 6e 65 69 67 68 62 6f 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | ecific.neighbors..This.command.d |
| 90940 | 65 66 69 6e 65 73 20 6d 61 74 63 68 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 49 | efines.matching.parameters.for.I |
| 90960 | 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 20 72 75 6c 65 2e 20 4d 61 74 63 68 69 6e 67 20 63 | Pv6.access.list.rule..Matching.c |
| 90980 | 72 69 74 65 72 69 61 20 63 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 73 6f 75 72 | riteria.could.be.applied.to.sour |
| 909a0 | 63 65 20 70 61 72 61 6d 65 74 65 72 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 | ce.parameters:.This.command.defi |
| 909c0 | 6e 65 73 20 6d 61 74 63 68 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 61 63 63 65 | nes.matching.parameters.for.acce |
| 909e0 | 73 73 20 6c 69 73 74 20 72 75 6c 65 2e 20 4d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 | ss.list.rule..Matching.criteria. |
| 90a00 | 63 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | could.be.applied.to.destination. |
| 90a20 | 6f 72 20 73 6f 75 72 63 65 20 70 61 72 61 6d 65 74 65 72 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 | or.source.parameters:.This.comma |
| 90a40 | 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 49 53 2d 49 53 20 72 6f 75 74 65 72 20 62 65 68 61 | nd.defines.the.IS-IS.router.beha |
| 90a60 | 76 69 6f 72 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 | vior:.This.command.defines.the.a |
| 90a80 | 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 79 20 61 6d 6f 75 6e 74 20 61 74 20 77 68 69 | ccumulated.penalty.amount.at.whi |
| 90aa0 | 63 68 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 2d 61 64 76 65 72 74 69 73 65 64 2e 20 54 | ch.the.route.is.re-advertised..T |
| 90ac0 | 68 65 20 70 65 6e 61 6c 74 79 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 30 30 30 30 2e 00 | he.penalty.range.is.1.to.20000.. |
| 90ae0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 63 75 6d 75 6c | This.command.defines.the.accumul |
| 90b00 | 61 74 65 64 20 70 65 6e 61 6c 74 79 20 61 6d 6f 75 6e 74 20 61 74 20 77 68 69 63 68 20 74 68 65 | ated.penalty.amount.at.which.the |
| 90b20 | 20 72 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 73 73 65 64 2e 20 54 68 65 20 70 65 6e 61 6c 74 | .route.is.suppressed..The.penalt |
| 90b40 | 79 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 30 30 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d | y.range.is.1.to.20000..This.comm |
| 90b60 | 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 69 | and.defines.the.amount.of.time.i |
| 90b80 | 6e 20 6d 69 6e 75 74 65 73 20 61 66 74 65 72 20 77 68 69 63 68 20 61 20 70 65 6e 61 6c 74 79 20 | n.minutes.after.which.a.penalty. |
| 90ba0 | 69 73 20 72 65 64 75 63 65 64 20 62 79 20 68 61 6c 66 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 | is.reduced.by.half..The.timer.ra |
| 90bc0 | 6e 67 65 20 69 73 20 31 30 20 74 6f 20 34 35 20 6d 69 6e 75 74 65 73 2e 00 54 68 69 73 20 63 6f | nge.is.10.to.45.minutes..This.co |
| 90be0 | 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 | mmand.defines.the.maximum.number |
| 90c00 | 20 6f 66 20 70 61 72 61 6c 6c 65 6c 20 72 6f 75 74 65 73 20 74 68 61 74 20 74 68 65 20 42 47 50 | .of.parallel.routes.that.the.BGP |
| 90c20 | 20 63 61 6e 20 73 75 70 70 6f 72 74 2e 20 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 42 47 50 20 74 | .can.support..In.order.for.BGP.t |
| 90c40 | 6f 20 75 73 65 20 74 68 65 20 73 65 63 6f 6e 64 20 70 61 74 68 2c 20 74 68 65 20 66 6f 6c 6c 6f | o.use.the.second.path,.the.follo |
| 90c60 | 77 69 6e 67 20 61 74 74 72 69 62 75 74 65 73 20 68 61 76 65 20 74 6f 20 6d 61 74 63 68 3a 20 57 | wing.attributes.have.to.match:.W |
| 90c80 | 65 69 67 68 74 2c 20 4c 6f 63 61 6c 20 50 72 65 66 65 72 65 6e 63 65 2c 20 41 53 20 50 61 74 68 | eight,.Local.Preference,.AS.Path |
| 90ca0 | 20 28 62 6f 74 68 20 41 53 20 6e 75 6d 62 65 72 20 61 6e 64 20 41 53 20 70 61 74 68 20 6c 65 6e | .(both.AS.number.and.AS.path.len |
| 90cc0 | 67 74 68 29 2c 20 4f 72 69 67 69 6e 20 63 6f 64 65 2c 20 4d 45 44 2c 20 49 47 50 20 6d 65 74 72 | gth),.Origin.code,.MED,.IGP.metr |
| 90ce0 | 69 63 2e 20 41 6c 73 6f 2c 20 74 68 65 20 6e 65 78 74 20 68 6f 70 20 61 64 64 72 65 73 73 20 66 | ic..Also,.the.next.hop.address.f |
| 90d00 | 6f 72 20 65 61 63 68 20 70 61 74 68 20 6d 75 73 74 20 62 65 20 64 69 66 66 65 72 65 6e 74 2e 00 | or.each.path.must.be.different.. |
| 90d20 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d | This.command.defines.the.maximum |
| 90d40 | 20 74 69 6d 65 20 69 6e 20 6d 69 6e 75 74 65 73 20 74 68 61 74 20 61 20 72 6f 75 74 65 20 69 73 | .time.in.minutes.that.a.route.is |
| 90d60 | 20 73 75 70 70 72 65 73 73 65 64 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 | .suppressed..The.timer.range.is. |
| 90d80 | 31 20 74 6f 20 32 35 35 20 6d 69 6e 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | 1.to.255.minutes..This.command.d |
| 90da0 | 69 73 61 62 6c 65 20 74 68 65 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 20 54 | isable.the.peer.or.peer.group..T |
| 90dc0 | 6f 20 72 65 65 6e 61 62 6c 65 20 74 68 65 20 70 65 65 72 20 75 73 65 20 74 68 65 20 64 65 6c 65 | o.reenable.the.peer.use.the.dele |
| 90de0 | 74 65 20 66 6f 72 6d 20 6f 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f | te.form.of.this.command..This.co |
| 90e00 | 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 20 66 6f 72 20 | mmand.disables.IGP-LDP.sync.for. |
| 90e20 | 74 68 69 73 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f | this.specific.interface..This.co |
| 90e40 | 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 54 68 72 65 65 2d 57 61 79 20 48 61 6e 64 73 68 61 | mmand.disables.Three-Way.Handsha |
| 90e60 | 6b 65 20 66 6f 72 20 50 32 50 20 61 64 6a 61 63 65 6e 63 69 65 73 20 77 68 69 63 68 20 64 65 73 | ke.for.P2P.adjacencies.which.des |
| 90e80 | 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 33 30 33 60 2e 20 54 68 72 65 65 2d 57 61 79 | cribed.in.:rfc:`5303`..Three-Way |
| 90ea0 | 20 48 61 6e 64 73 68 61 6b 65 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 | .Handshake.is.enabled.by.default |
| 90ec0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 63 68 65 63 6b 20 6f 66 | ..This.command.disables.check.of |
| 90ee0 | 20 74 68 65 20 4d 54 55 20 76 61 6c 75 65 20 69 6e 20 74 68 65 20 4f 53 50 46 20 44 42 44 20 70 | .the.MTU.value.in.the.OSPF.DBD.p |
| 90f00 | 61 63 6b 65 74 73 2e 20 54 68 75 73 2c 20 75 73 65 20 6f 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e | ackets..Thus,.use.of.this.comman |
| 90f20 | 64 20 61 6c 6c 6f 77 73 20 74 68 65 20 4f 53 50 46 20 61 64 6a 61 63 65 6e 63 79 20 74 6f 20 72 | d.allows.the.OSPF.adjacency.to.r |
| 90f40 | 65 61 63 68 20 74 68 65 20 46 55 4c 4c 20 73 74 61 74 65 20 65 76 65 6e 20 74 68 6f 75 67 68 20 | each.the.FULL.state.even.though. |
| 90f60 | 74 68 65 72 65 20 69 73 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 4d 54 55 20 6d 69 73 6d 61 74 | there.is.an.interface.MTU.mismat |
| 90f80 | 63 68 20 62 65 74 77 65 65 6e 20 74 77 6f 20 4f 53 50 46 20 72 6f 75 74 65 72 73 2e 00 54 68 69 | ch.between.two.OSPF.routers..Thi |
| 90fa0 | 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 69 74 2e 00 54 68 69 73 20 63 6f 6d 6d | s.command.disables.it..This.comm |
| 90fc0 | 61 6e 64 20 64 69 73 61 62 6c 65 73 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 69 6f 6e 20 62 65 | and.disables.route.reflection.be |
| 90fe0 | 74 77 65 65 6e 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 63 6c 69 65 6e 74 73 2e 20 42 | tween.route.reflector.clients..B |
| 91000 | 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 63 6c 69 65 6e 74 73 20 6f 66 20 61 20 72 6f 75 74 | y.default,.the.clients.of.a.rout |
| 91020 | 65 20 72 65 66 6c 65 63 74 6f 72 20 61 72 65 20 6e 6f 74 20 72 65 71 75 69 72 65 64 20 74 6f 20 | e.reflector.are.not.required.to. |
| 91040 | 62 65 20 66 75 6c 6c 79 20 6d 65 73 68 65 64 20 61 6e 64 20 74 68 65 20 72 6f 75 74 65 73 20 66 | be.fully.meshed.and.the.routes.f |
| 91060 | 72 6f 6d 20 61 20 63 6c 69 65 6e 74 20 61 72 65 20 72 65 66 6c 65 63 74 65 64 20 74 6f 20 6f 74 | rom.a.client.are.reflected.to.ot |
| 91080 | 68 65 72 20 63 6c 69 65 6e 74 73 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 74 68 65 20 63 6c 69 | her.clients..However,.if.the.cli |
| 910a0 | 65 6e 74 73 20 61 72 65 20 66 75 6c 6c 79 20 6d 65 73 68 65 64 2c 20 72 6f 75 74 65 20 72 65 66 | ents.are.fully.meshed,.route.ref |
| 910c0 | 6c 65 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 72 65 71 75 69 72 65 64 2e 20 49 6e 20 74 68 69 73 | lection.is.not.required..In.this |
| 910e0 | 20 63 61 73 65 2c 20 75 73 65 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 6e 6f 2d 63 6c 69 65 6e | .case,.use.the.:cfgcmd:`no-clien |
| 91100 | 74 2d 74 6f 2d 63 6c 69 65 6e 74 2d 72 65 66 6c 65 63 74 69 6f 6e 60 20 63 6f 6d 6d 61 6e 64 20 | t-to-client-reflection`.command. |
| 91120 | 74 6f 20 64 69 73 61 62 6c 65 20 63 6c 69 65 6e 74 2d 74 6f 2d 63 6c 69 65 6e 74 20 72 65 66 6c | to.disable.client-to-client.refl |
| 91140 | 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 73 70 | ection..This.command.disables.sp |
| 91160 | 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 42 79 | lit-horizon.on.the.interface..By |
| 91180 | 20 64 65 66 61 75 6c 74 2c 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 74 69 73 | .default,.VyOS.does.not.advertis |
| 911a0 | 65 20 52 49 50 20 72 6f 75 74 65 73 20 6f 75 74 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f | e.RIP.routes.out.the.interface.o |
| 911c0 | 76 65 72 20 77 68 69 63 68 20 74 68 65 79 20 77 65 72 65 20 6c 65 61 72 6e 65 64 20 28 73 70 6c | ver.which.they.were.learned.(spl |
| 911e0 | 69 74 20 68 6f 72 69 7a 6f 6e 29 2e 33 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 | it.horizon).3.This.command.disab |
| 91200 | 6c 65 73 20 74 68 65 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 20 61 63 72 6f 73 73 20 6d 75 6c 74 | les.the.load.sharing.across.mult |
| 91220 | 69 70 6c 65 20 4c 46 41 20 62 61 63 6b 75 70 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | iple.LFA.backups..This.command.d |
| 91240 | 69 73 70 6c 61 79 73 20 42 47 50 20 64 61 6d 70 65 6e 65 64 20 72 6f 75 74 65 73 2e 00 54 68 69 | isplays.BGP.dampened.routes..Thi |
| 91260 | 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 65 63 65 69 76 65 64 2d | s.command.displays.BGP.received- |
| 91280 | 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 61 63 63 65 70 74 65 64 20 61 66 74 65 72 20 66 | routes.that.are.accepted.after.f |
| 912a0 | 69 6c 74 65 72 69 6e 67 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | iltering..This.command.displays. |
| 912c0 | 42 47 50 20 72 6f 75 74 65 73 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 61 20 6e 65 69 67 68 | BGP.routes.advertised.to.a.neigh |
| 912e0 | 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 | bor..This.command.displays.BGP.r |
| 91300 | 6f 75 74 65 73 20 61 6c 6c 6f 77 65 64 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 41 | outes.allowed.by.the.specified.A |
| 91320 | 53 20 50 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | S.Path.access.list..This.command |
| 91340 | 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 6f 75 74 65 73 20 6f 72 69 67 69 6e 61 74 69 6e 67 | .displays.BGP.routes.originating |
| 91360 | 20 66 72 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 | .from.the.specified.BGP.neighbor |
| 91380 | 20 62 65 66 6f 72 65 20 69 6e 62 6f 75 6e 64 20 70 6f 6c 69 63 79 20 69 73 20 61 70 70 6c 69 65 | .before.inbound.policy.is.applie |
| 913a0 | 64 2e 20 54 6f 20 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 62 6f 75 6e 64 20 73 | d..To.use.this.command.inbound.s |
| 913c0 | 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 65 6e 61 62 | oft.reconfiguration.must.be.enab |
| 913e0 | 6c 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 4c 53 41 73 20 | led..This.command.displays.LSAs. |
| 91400 | 69 6e 20 4d 61 78 41 67 65 20 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 | in.MaxAge.list..This.command.dis |
| 91420 | 70 6c 61 79 73 20 52 49 50 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | plays.RIP.routes..This.command.d |
| 91440 | 69 73 70 6c 61 79 73 20 61 20 64 61 74 61 62 61 73 65 20 63 6f 6e 74 65 6e 74 73 20 66 6f 72 20 | isplays.a.database.contents.for. |
| 91460 | 61 20 73 70 65 63 69 66 69 63 20 6c 69 6e 6b 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 74 79 | a.specific.link.advertisement.ty |
| 91480 | 70 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 61 20 73 75 6d 6d | pe..This.command.displays.a.summ |
| 914a0 | 61 72 79 20 74 61 62 6c 65 20 77 69 74 68 20 61 20 64 61 74 61 62 61 73 65 20 63 6f 6e 74 65 6e | ary.table.with.a.database.conten |
| 914c0 | 74 73 20 28 4c 53 41 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | ts.(LSA)..This.command.displays. |
| 914e0 | 61 20 74 61 62 6c 65 20 6f 66 20 70 61 74 68 73 20 74 6f 20 61 72 65 61 20 62 6f 75 6e 64 61 72 | a.table.of.paths.to.area.boundar |
| 91500 | 79 20 61 6e 64 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 62 6f 75 6e 64 61 72 79 | y.and.autonomous.system.boundary |
| 91520 | 20 72 6f 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | .routers..This.command.displays. |
| 91540 | 61 6c 6c 20 65 6e 74 72 69 65 73 20 69 6e 20 42 47 50 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 | all.entries.in.BGP.routing.table |
| 91560 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 64 61 6d 70 65 6e 65 64 | ..This.command.displays.dampened |
| 91580 | 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 42 47 50 20 6e 65 69 67 68 62 | .routes.received.from.BGP.neighb |
| 915a0 | 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 65 78 74 65 72 6e | or..This.command.displays.extern |
| 915c0 | 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 69 6e 74 | al.information.redistributed.int |
| 915e0 | 6f 20 4f 53 50 46 76 33 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 69 | o.OSPFv3.This.command.displays.i |
| 91600 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 42 47 50 20 72 6f 75 74 65 73 20 77 68 6f 73 | nformation.about.BGP.routes.whos |
| 91620 | 65 20 41 53 20 70 61 74 68 20 6d 61 74 63 68 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | e.AS.path.matches.the.specified. |
| 91640 | 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | regular.expression..This.command |
| 91660 | 20 64 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 66 6c 61 70 | .displays.information.about.flap |
| 91680 | 70 69 6e 67 20 42 47 50 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 | ping.BGP.routes..This.command.di |
| 916a0 | 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 70 61 72 | splays.information.about.the.par |
| 916c0 | 74 69 63 75 6c 61 72 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 42 47 50 20 72 6f 75 74 69 6e 67 | ticular.entry.in.the.BGP.routing |
| 916e0 | 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 72 6f | .table..This.command.displays.ro |
| 91700 | 75 74 65 73 20 74 68 61 74 20 61 72 65 20 70 65 72 6d 69 74 74 65 64 20 62 79 20 74 68 65 20 42 | utes.that.are.permitted.by.the.B |
| 91720 | 47 50 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | GP.community.list..This.command. |
| 91740 | 64 69 73 70 6c 61 79 73 20 72 6f 75 74 65 73 20 74 68 61 74 20 62 65 6c 6f 6e 67 20 74 6f 20 73 | displays.routes.that.belong.to.s |
| 91760 | 70 65 63 69 66 69 65 64 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 20 56 61 6c 69 64 20 | pecified.BGP.communities..Valid. |
| 91780 | 76 61 6c 75 65 20 69 73 20 61 20 63 6f 6d 6d 75 6e 69 74 79 20 6e 75 6d 62 65 72 20 69 6e 20 74 | value.is.a.community.number.in.t |
| 917a0 | 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 34 32 39 34 39 36 37 32 30 30 2c 20 6f | he.range.from.1.to.4294967200,.o |
| 917c0 | 72 20 41 41 3a 4e 4e 20 28 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 2d 63 6f 6d 6d 75 | r.AA:NN.(autonomous.system-commu |
| 917e0 | 6e 69 74 79 20 6e 75 6d 62 65 72 2f 32 2d 62 79 74 65 20 6e 75 6d 62 65 72 29 2c 20 6e 6f 2d 65 | nity.number/2-byte.number),.no-e |
| 91800 | 78 70 6f 72 74 2c 20 6c 6f 63 61 6c 2d 61 73 2c 20 6f 72 20 6e 6f 2d 61 64 76 65 72 74 69 73 65 | xport,.local-as,.or.no-advertise |
| 91820 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 72 6f 75 74 65 73 20 77 | ..This.command.displays.routes.w |
| 91840 | 69 74 68 20 63 6c 61 73 73 6c 65 73 73 20 69 6e 74 65 72 64 6f 6d 61 69 6e 20 72 6f 75 74 69 6e | ith.classless.interdomain.routin |
| 91860 | 67 20 28 43 49 44 52 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | g.(CIDR)..This.command.displays. |
| 91880 | 73 74 61 74 65 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 4f 53 50 46 20 | state.and.configuration.of.OSPF. |
| 918a0 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 6f 72 20 61 6c 6c 20 | the.specified.interface,.or.all. |
| 918c0 | 69 6e 74 65 72 66 61 63 65 73 20 69 66 20 6e 6f 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 67 69 | interfaces.if.no.interface.is.gi |
| 918e0 | 76 65 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 73 74 61 74 65 | ven..This.command.displays.state |
| 91900 | 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 4f 53 50 46 20 74 68 65 20 73 | .and.configuration.of.OSPF.the.s |
| 91920 | 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 6f 72 20 61 6c 6c 20 69 6e 74 65 72 | pecified.interface,.or.all.inter |
| 91940 | 66 61 63 65 73 20 69 66 20 6e 6f 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 67 69 76 65 6e 2e 20 | faces.if.no.interface.is.given.. |
| 91960 | 57 68 69 74 68 20 74 68 65 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 70 72 65 66 | Whith.the.argument.:cfgcmd:`pref |
| 91980 | 69 78 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 77 73 20 63 6f 6e 6e 65 63 74 65 64 | ix`.this.command.shows.connected |
| 919a0 | 20 70 72 65 66 69 78 65 73 20 74 6f 20 61 64 76 65 72 74 69 73 65 2e 00 54 68 69 73 20 63 6f 6d | .prefixes.to.advertise..This.com |
| 919c0 | 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 74 | mand.displays.the.OSPF.routing.t |
| 919e0 | 61 62 6c 65 2c 20 61 73 20 64 65 74 65 72 6d 69 6e 65 64 20 62 79 20 74 68 65 20 6d 6f 73 74 20 | able,.as.determined.by.the.most. |
| 91a00 | 72 65 63 65 6e 74 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d | recent.SPF.calculation..This.com |
| 91a20 | 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 4f 53 50 46 20 72 6f 75 74 69 6e 67 20 74 | mand.displays.the.OSPF.routing.t |
| 91a40 | 61 62 6c 65 2c 20 61 73 20 64 65 74 65 72 6d 69 6e 65 64 20 62 79 20 74 68 65 20 6d 6f 73 74 20 | able,.as.determined.by.the.most. |
| 91a60 | 72 65 63 65 6e 74 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 57 69 74 68 20 74 68 65 | recent.SPF.calculation..With.the |
| 91a80 | 20 6f 70 74 69 6f 6e 61 6c 20 3a 63 66 67 63 6d 64 3a 60 64 65 74 61 69 6c 60 20 61 72 67 75 6d | .optional.:cfgcmd:`detail`.argum |
| 91aa0 | 65 6e 74 2c 20 65 61 63 68 20 72 6f 75 74 65 20 69 74 65 6d 27 73 20 61 64 76 65 72 74 69 73 65 | ent,.each.route.item's.advertise |
| 91ac0 | 72 20 72 6f 75 74 65 72 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 61 74 74 72 69 62 75 74 65 20 77 | r.router.and.network.attribute.w |
| 91ae0 | 69 6c 6c 20 62 65 20 73 68 6f 77 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c | ill.be.shown..This.command.displ |
| 91b00 | 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 44 52 20 63 68 6f 69 63 65 20 69 6e 66 6f 72 | ays.the.neighbor.DR.choice.infor |
| 91b20 | 6d 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 | mation..This.command.displays.th |
| 91b40 | 65 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 64 65 74 | e.neighbors.information.in.a.det |
| 91b60 | 61 69 6c 65 64 20 66 6f 72 6d 20 66 6f 72 20 61 20 6e 65 69 67 68 62 6f 72 20 77 68 6f 73 65 20 | ailed.form.for.a.neighbor.whose. |
| 91b80 | 49 50 20 61 64 64 72 65 73 73 20 69 73 20 73 70 65 63 69 66 69 65 64 2e 00 54 68 69 73 20 63 6f | IP.address.is.specified..This.co |
| 91ba0 | 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 66 | mmand.displays.the.neighbors.inf |
| 91bc0 | 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 64 65 74 61 69 6c 65 64 20 66 6f 72 6d 2c 20 6e 6f 74 | ormation.in.a.detailed.form,.not |
| 91be0 | 20 6a 75 73 74 20 61 20 73 75 6d 6d 61 72 79 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d | .just.a.summary.table..This.comm |
| 91c00 | 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 74 61 74 75 | and.displays.the.neighbors.statu |
| 91c20 | 73 20 66 6f 72 20 61 20 6e 65 69 67 68 62 6f 72 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 | s.for.a.neighbor.on.the.specifie |
| 91c40 | 64 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 | d.interface..This.command.displa |
| 91c60 | 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 74 61 74 75 73 2e 00 54 68 69 73 20 63 6f | ys.the.neighbors.status..This.co |
| 91c80 | 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 73 74 61 74 75 73 20 6f 66 20 61 6c 6c | mmand.displays.the.status.of.all |
| 91ca0 | 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 | .BGP.connections..This.command.e |
| 91cc0 | 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 6e 65 69 67 68 62 6f 72 20 75 70 2f 64 6f 77 6e 20 63 | nable.logging.neighbor.up/down.c |
| 91ce0 | 68 61 6e 67 65 73 20 61 6e 64 20 72 65 73 65 74 20 72 65 61 73 6f 6e 2e 00 54 68 69 73 20 63 6f | hanges.and.reset.reason..This.co |
| 91d00 | 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 73 20 73 75 6d 6d 61 72 69 73 61 74 | mmand.enable/disables.summarisat |
| 91d20 | 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 64 64 72 65 73 73 20 72 | ion.for.the.configured.address.r |
| 91d40 | 61 6e 67 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 3a 61 62 62 72 | ange..This.command.enables.:abbr |
| 91d60 | 3a 60 42 46 44 20 28 42 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 46 6f 72 77 61 72 64 69 6e 67 20 | :`BFD.(Bidirectional.Forwarding. |
| 91d80 | 44 65 74 65 63 74 69 6f 6e 29 60 20 6f 6e 20 74 68 69 73 20 4f 53 50 46 20 6c 69 6e 6b 20 69 6e | Detection)`.on.this.OSPF.link.in |
| 91da0 | 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 3a 72 | terface..This.command.enables.:r |
| 91dc0 | 66 63 3a 60 36 32 33 32 60 20 70 75 72 67 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 | fc:`6232`.purge.originator.ident |
| 91de0 | 69 66 69 63 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 | ification..This.command.enables. |
| 91e00 | 3a 72 66 63 3a 60 36 32 33 32 60 20 70 75 72 67 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 | :rfc:`6232`.purge.originator.ide |
| 91e20 | 6e 74 69 66 69 63 61 74 69 6f 6e 2e 20 45 6e 61 62 6c 65 20 70 75 72 67 65 20 6f 72 69 67 69 6e | ntification..Enable.purge.origin |
| 91e40 | 61 74 6f 72 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 28 50 4f 49 29 20 62 79 20 61 64 64 | ator.identification.(POI).by.add |
| 91e60 | 69 6e 67 20 74 68 65 20 74 79 70 65 2c 20 6c 65 6e 67 74 68 20 61 6e 64 20 76 61 6c 75 65 20 28 | ing.the.type,.length.and.value.( |
| 91e80 | 54 4c 56 29 20 77 69 74 68 20 74 68 65 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 | TLV).with.the.Intermediate.Syste |
| 91ea0 | 6d 20 28 49 53 29 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 4c 53 50 | m.(IS).identification.to.the.LSP |
| 91ec0 | 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 63 6f 6e 74 61 69 6e 20 50 4f 49 20 69 6e 66 6f 72 6d | s.that.do.not.contain.POI.inform |
| 91ee0 | 61 74 69 6f 6e 2e 20 49 66 20 61 6e 20 49 53 20 67 65 6e 65 72 61 74 65 73 20 61 20 70 75 72 67 | ation..If.an.IS.generates.a.purg |
| 91f00 | 65 2c 20 56 79 4f 53 20 61 64 64 73 20 74 68 69 73 20 54 4c 56 20 77 69 74 68 20 74 68 65 20 73 | e,.VyOS.adds.this.TLV.with.the.s |
| 91f20 | 79 73 74 65 6d 20 49 44 20 6f 66 20 74 68 65 20 49 53 20 74 6f 20 74 68 65 20 70 75 72 67 65 2e | ystem.ID.of.the.IS.to.the.purge. |
| 91f40 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 49 50 20 66 61 73 74 20 72 65 | .This.command.enables.IP.fast.re |
| 91f60 | 2d 72 6f 75 74 69 6e 67 20 74 68 61 74 20 69 73 20 70 61 72 74 20 6f 66 20 3a 72 66 63 3a 60 35 | -routing.that.is.part.of.:rfc:`5 |
| 91f80 | 32 38 36 60 2e 20 53 70 65 63 69 66 69 63 61 6c 6c 79 20 74 68 69 73 20 69 73 20 61 20 70 72 65 | 286`..Specifically.this.is.a.pre |
| 91fa0 | 66 69 78 20 6c 69 73 74 20 77 68 69 63 68 20 72 65 66 65 72 65 6e 63 65 73 20 61 20 70 72 65 66 | fix.list.which.references.a.pref |
| 91fc0 | 69 78 20 69 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 73 65 6c 65 63 74 20 65 6c 69 67 69 62 6c 65 | ix.in.which.will.select.eligible |
| 91fe0 | 20 50 51 20 6e 6f 64 65 73 20 66 6f 72 20 72 65 6d 6f 74 65 20 4c 46 41 20 62 61 63 6b 75 70 73 | .PQ.nodes.for.remote.LFA.backups |
| 92000 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 49 53 2d 49 53 20 6f 6e 20 | ..This.command.enables.IS-IS.on. |
| 92020 | 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 | this.interface,.and.allows.for.a |
| 92040 | 64 6a 61 63 65 6e 63 79 20 74 6f 20 6f 63 63 75 72 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 | djacency.to.occur..Note.that.the |
| 92060 | 20 6e 61 6d 65 20 6f 66 20 49 53 2d 49 53 20 69 6e 73 74 61 6e 63 65 20 6d 75 73 74 20 62 65 20 | .name.of.IS-IS.instance.must.be. |
| 92080 | 74 68 65 20 73 61 6d 65 20 61 73 20 74 68 65 20 6f 6e 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 66 | the.same.as.the.one.used.to.conf |
| 920a0 | 69 67 75 72 65 20 74 68 65 20 49 53 2d 49 53 20 70 72 6f 63 65 73 73 2e 00 54 68 69 73 20 63 6f | igure.the.IS-IS.process..This.co |
| 920c0 | 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 4f 70 65 6e 46 61 62 72 69 63 20 69 6e 73 74 61 6e 63 | mmand.enables.OpenFabric.instanc |
| 920e0 | 65 20 77 69 74 68 20 3c 4e 41 4d 45 3e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2c | e.with.<NAME>.on.this.interface, |
| 92100 | 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 64 6a 61 63 65 6e 63 79 20 74 6f 20 6f 63 63 | .and.allows.for.adjacency.to.occ |
| 92120 | 75 72 20 66 6f 72 20 61 64 64 72 65 73 73 20 66 61 6d 69 6c 79 20 28 49 50 76 34 20 6f 72 20 49 | ur.for.address.family.(IPv4.or.I |
| 92140 | 50 76 36 20 6f 72 20 62 6f 74 68 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c | Pv6.or.both)..This.command.enabl |
| 92160 | 65 73 20 52 49 50 20 61 6e 64 20 73 65 74 73 20 74 68 65 20 52 49 50 20 65 6e 61 62 6c 65 20 69 | es.RIP.and.sets.the.RIP.enable.i |
| 92180 | 6e 74 65 72 66 61 63 65 20 62 79 20 4e 45 54 57 4f 52 4b 2e 20 54 68 65 20 69 6e 74 65 72 66 61 | nterface.by.NETWORK..The.interfa |
| 921a0 | 63 65 73 20 77 68 69 63 68 20 68 61 76 65 20 61 64 64 72 65 73 73 65 73 20 6d 61 74 63 68 69 6e | ces.which.have.addresses.matchin |
| 921c0 | 67 20 77 69 74 68 20 4e 45 54 57 4f 52 4b 20 61 72 65 20 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 | g.with.NETWORK.are.enabled..This |
| 921e0 | 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 70 6f 69 73 6f 6e 2d 72 65 76 65 72 73 65 20 | .command.enables.poison-reverse. |
| 92200 | 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 62 6f 74 68 20 70 6f 69 73 6f 6e | on.the.interface..If.both.poison |
| 92220 | 20 72 65 76 65 72 73 65 20 61 6e 64 20 73 70 6c 69 74 20 68 6f 72 69 7a 6f 6e 20 61 72 65 20 65 | .reverse.and.split.horizon.are.e |
| 92240 | 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 56 79 4f 53 20 61 64 76 65 72 74 69 73 65 73 20 74 68 65 | nabled,.then.VyOS.advertises.the |
| 92260 | 20 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 61 73 20 75 6e 72 65 61 63 68 61 62 6c 65 20 6f | .learned.routes.as.unreachable.o |
| 92280 | 76 65 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 68 69 63 68 20 74 68 65 20 72 | ver.the.interface.on.which.the.r |
| 922a0 | 6f 75 74 65 20 77 61 73 20 6c 65 61 72 6e 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 | oute.was.learned..This.command.e |
| 922c0 | 6e 61 62 6c 65 73 20 72 6f 75 74 69 6e 67 20 75 73 69 6e 67 20 72 61 64 69 6f 20 66 72 65 71 75 | nables.routing.using.radio.frequ |
| 922e0 | 65 6e 63 79 20 64 69 76 65 72 73 69 74 79 2e 20 54 68 69 73 20 69 73 20 68 69 67 68 6c 79 20 72 | ency.diversity..This.is.highly.r |
| 92300 | 65 63 6f 6d 6d 65 6e 64 65 64 20 69 6e 20 6e 65 74 77 6f 72 6b 73 20 77 69 74 68 20 6d 61 6e 79 | ecommended.in.networks.with.many |
| 92320 | 20 77 69 72 65 6c 65 73 73 20 6e 6f 64 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e | .wireless.nodes..This.command.en |
| 92340 | 61 62 6c 65 73 20 73 65 6e 64 69 6e 67 20 74 69 6d 65 73 74 61 6d 70 73 20 77 69 74 68 20 65 61 | ables.sending.timestamps.with.ea |
| 92360 | 63 68 20 48 65 6c 6c 6f 20 61 6e 64 20 49 48 55 20 6d 65 73 73 61 67 65 20 69 6e 20 6f 72 64 65 | ch.Hello.and.IHU.message.in.orde |
| 92380 | 72 20 74 6f 20 63 6f 6d 70 75 74 65 20 52 54 54 20 76 61 6c 75 65 73 2e 20 49 74 20 69 73 20 72 | r.to.compute.RTT.values..It.is.r |
| 923a0 | 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 69 6d 65 73 74 61 6d 70 73 20 | ecommended.to.enable.timestamps. |
| 923c0 | 6f 6e 20 74 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | on.tunnel.interfaces..This.comma |
| 923e0 | 6e 64 20 65 6e 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 68 | nd.enables.support.for.dynamic.h |
| 92400 | 6f 73 74 6e 61 6d 65 20 54 4c 56 2e 20 44 79 6e 61 6d 69 63 20 68 6f 73 74 6e 61 6d 65 20 6d 61 | ostname.TLV..Dynamic.hostname.ma |
| 92420 | 70 70 69 6e 67 20 64 65 74 65 72 6d 69 6e 65 64 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e | pping.determined.as.described.in |
| 92440 | 20 3a 72 66 63 3a 60 32 37 36 33 60 2c 20 44 79 6e 61 6d 69 63 20 48 6f 73 74 6e 61 6d 65 20 45 | .:rfc:`2763`,.Dynamic.Hostname.E |
| 92460 | 78 63 68 61 6e 67 65 20 4d 65 63 68 61 6e 69 73 6d 20 66 6f 72 20 49 53 2d 49 53 2e 00 54 68 69 | xchange.Mechanism.for.IS-IS..Thi |
| 92480 | 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 49 50 76 34 20 66 69 72 65 77 | s.command.enables.the.IPv4.firew |
| 924a0 | 61 6c 6c 20 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 61 66 66 69 63 2e 20 49 66 20 74 68 69 73 | all.for.bridged.traffic..If.this |
| 924c0 | 20 6f 70 74 69 6f 6e 73 20 69 73 20 75 73 65 64 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 77 69 | .options.is.used,.then.packet.wi |
| 924e0 | 6c 6c 20 61 6c 73 6f 20 62 65 20 70 61 72 73 65 64 20 62 79 20 72 75 6c 65 73 20 64 65 66 69 6e | ll.also.be.parsed.by.rules.defin |
| 92500 | 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 2e 2e 2e 60 60 00 | ed.in.``set.firewall.ipv4....``. |
| 92520 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 49 50 76 36 20 66 69 | This.command.enables.the.IPv6.fi |
| 92540 | 72 65 77 61 6c 6c 20 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 61 66 66 69 63 2e 20 49 66 20 74 | rewall.for.bridged.traffic..If.t |
| 92560 | 68 69 73 20 6f 70 74 69 6f 6e 73 20 69 73 20 75 73 65 64 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 | his.options.is.used,.then.packet |
| 92580 | 20 77 69 6c 6c 20 61 6c 73 6f 20 62 65 20 70 61 72 73 65 64 20 62 79 20 72 75 6c 65 73 20 64 65 | .will.also.be.parsed.by.rules.de |
| 925a0 | 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 2e 2e 2e | fined.in.``set.firewall.ipv6.... |
| 925c0 | 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 4f 52 46 20 | ``.This.command.enables.the.ORF. |
| 925e0 | 63 61 70 61 62 69 6c 69 74 79 20 28 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 | capability.(described.in.:rfc:`5 |
| 92600 | 32 39 31 60 29 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 65 | 291`).on.the.local.router,.and.e |
| 92620 | 6e 61 62 6c 65 73 20 4f 52 46 20 63 61 70 61 62 69 6c 69 74 79 20 61 64 76 65 72 74 69 73 65 6d | nables.ORF.capability.advertisem |
| 92640 | 65 6e 74 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 70 65 65 72 2e 20 54 | ent.to.the.specified.BGP.peer..T |
| 92660 | 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 63 65 69 76 65 60 20 6b 65 79 77 6f 72 64 20 63 6f 6e | he.:cfgcmd:`receive`.keyword.con |
| 92680 | 66 69 67 75 72 65 73 20 61 20 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 4f 52 | figures.a.router.to.advertise.OR |
| 926a0 | 46 20 72 65 63 65 69 76 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 54 68 65 20 3a 63 66 67 | F.receive.capabilities..The.:cfg |
| 926c0 | 63 6d 64 3a 60 73 65 6e 64 60 20 6b 65 79 77 6f 72 64 20 63 6f 6e 66 69 67 75 72 65 73 20 61 20 | cmd:`send`.keyword.configures.a. |
| 926e0 | 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 4f 52 46 20 73 65 6e 64 20 63 61 70 | router.to.advertise.ORF.send.cap |
| 92700 | 61 62 69 6c 69 74 69 65 73 2e 20 54 6f 20 61 64 76 65 72 74 69 73 65 20 61 20 66 69 6c 74 65 72 | abilities..To.advertise.a.filter |
| 92720 | 20 66 72 6f 6d 20 61 20 73 65 6e 64 65 72 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 | .from.a.sender,.you.must.create. |
| 92740 | 61 6e 20 49 50 20 70 72 65 66 69 78 20 6c 69 73 74 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 | an.IP.prefix.list.for.the.specif |
| 92760 | 69 65 64 20 42 47 50 20 70 65 65 72 20 61 70 70 6c 69 65 64 20 69 6e 20 69 6e 62 6f 75 6e 64 20 | ied.BGP.peer.applied.in.inbound. |
| 92780 | 64 65 72 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 | derection..This.command.enables. |
| 927a0 | 74 68 65 20 70 61 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 | the.passive.mode.for.this.interf |
| 927c0 | 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 66 6f 72 63 65 73 20 47 65 6e 65 72 | ace..This.command.enforces.Gener |
| 927e0 | 61 6c 69 7a 65 64 20 54 54 4c 20 53 65 63 75 72 69 74 79 20 4d 65 63 68 61 6e 69 73 6d 20 28 47 | alized.TTL.Security.Mechanism.(G |
| 92800 | 54 53 4d 29 2c 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 30 38 32 | TSM),.as.specified.in.:rfc:`5082 |
| 92820 | 60 2e 20 57 69 74 68 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2c 20 6f 6e 6c 79 20 6e 65 69 67 68 | `..With.this.command,.only.neigh |
| 92840 | 62 6f 72 73 20 74 68 61 74 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 6e 75 6d 62 65 72 20 6f | bors.that.are.specified.number.o |
| 92860 | 66 20 68 6f 70 73 20 61 77 61 79 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 62 | f.hops.away.will.be.allowed.to.b |
| 92880 | 65 63 6f 6d 65 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 | ecome.neighbors..The.number.of.h |
| 928a0 | 6f 70 73 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 34 2e 20 54 68 69 73 20 63 6f 6d 6d | ops.range.is.1.to.254..This.comm |
| 928c0 | 61 6e 64 20 69 73 20 6d 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 73 69 76 65 20 77 69 74 68 20 3a | and.is.mutually.exclusive.with.: |
| 928e0 | 63 66 67 63 6d 64 3a 60 65 62 67 70 2d 6d 75 6c 74 69 68 6f 70 60 2e 00 54 68 69 73 20 63 6f 6d | cfgcmd:`ebgp-multihop`..This.com |
| 92900 | 6d 61 6e 64 20 66 6f 72 63 65 73 20 73 74 72 69 63 74 6c 79 20 63 6f 6d 70 61 72 65 20 72 65 6d | mand.forces.strictly.compare.rem |
| 92920 | 6f 74 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 6c 6f 63 61 6c 20 63 61 70 61 62 | ote.capabilities.and.local.capab |
| 92940 | 69 6c 69 74 69 65 73 2e 20 49 66 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 72 65 20 64 69 66 | ilities..If.capabilities.are.dif |
| 92960 | 66 65 72 65 6e 74 2c 20 73 65 6e 64 20 55 6e 73 75 70 70 6f 72 74 65 64 20 43 61 70 61 62 69 6c | ferent,.send.Unsupported.Capabil |
| 92980 | 69 74 79 20 65 72 72 6f 72 20 74 68 65 6e 20 72 65 73 65 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e | ity.error.then.reset.connection. |
| 929a0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 63 65 73 20 74 68 65 20 42 47 50 20 73 70 65 | .This.command.forces.the.BGP.spe |
| 929c0 | 61 6b 65 72 20 74 6f 20 72 65 70 6f 72 74 20 69 74 73 65 6c 66 20 61 73 20 74 68 65 20 6e 65 78 | aker.to.report.itself.as.the.nex |
| 929e0 | 74 20 68 6f 70 20 66 6f 72 20 61 6e 20 61 64 76 65 72 74 69 73 65 64 20 72 6f 75 74 65 20 69 74 | t.hop.for.an.advertised.route.it |
| 92a00 | 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 | .advertised.to.a.neighbor..This. |
| 92a20 | 63 6f 6d 6d 61 6e 64 20 67 65 6e 65 72 61 74 65 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 | command.generate.a.default.route |
| 92a40 | 20 69 6e 74 6f 20 74 68 65 20 52 49 50 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 69 76 65 | .into.the.RIP..This.command.give |
| 92a60 | 73 20 61 20 62 72 69 65 66 20 73 74 61 74 75 73 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 73 | s.a.brief.status.overview.of.a.s |
| 92a80 | 70 65 63 69 66 69 65 64 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 | pecified.wireless.interface..The |
| 92aa0 | 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 | .wireless.interface.identifier.c |
| 92ac0 | 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 | an.range.from.wlan0.to.wlan999.. |
| 92ae0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 6f 65 73 20 68 61 6e 64 20 69 6e 20 68 61 6e 64 20 77 | This.command.goes.hand.in.hand.w |
| 92b00 | 69 74 68 20 74 68 65 20 6c 69 73 74 65 6e 20 72 61 6e 67 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | ith.the.listen.range.command.to. |
| 92b20 | 6c 69 6d 69 74 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 42 47 50 20 6e 65 69 67 68 62 6f 72 | limit.the.amount.of.BGP.neighbor |
| 92b40 | 73 20 74 68 61 74 20 61 72 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f | s.that.are.allowed.to.connect.to |
| 92b60 | 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 65 20 6c 69 6d 69 74 20 72 61 6e | .the.local.router..The.limit.ran |
| 92b80 | 67 65 20 69 73 20 31 20 74 6f 20 35 30 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 6f | ge.is.1.to.5000..This.command.go |
| 92ba0 | 74 20 61 64 64 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 69 6e 76 65 72 74 73 20 | t.added.in.VyOS.1.4.and.inverts. |
| 92bc0 | 74 68 65 20 6c 6f 67 69 63 20 66 72 6f 6d 20 74 68 65 20 6f 6c 64 20 60 60 64 65 66 61 75 6c 74 | the.logic.from.the.old.``default |
| 92be0 | 2d 72 6f 75 74 65 60 60 20 43 4c 49 20 6f 70 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | -route``.CLI.option..This.comman |
| 92c00 | 64 20 69 6e 73 74 65 61 64 20 6f 66 20 73 75 6d 6d 61 72 69 7a 69 6e 67 20 69 6e 74 72 61 20 61 | d.instead.of.summarizing.intra.a |
| 92c20 | 72 65 61 20 70 61 74 68 73 20 66 69 6c 74 65 72 20 74 68 65 6d 20 2d 20 69 2e 65 2e 20 69 6e 74 | rea.paths.filter.them.-.i.e..int |
| 92c40 | 72 61 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 74 68 69 73 20 72 61 6e 67 65 20 61 72 | ra.area.paths.from.this.range.ar |
| 92c60 | 65 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 64 20 69 6e 74 6f 20 6f 74 68 65 72 20 61 72 65 61 | e.not.advertised.into.other.area |
| 92c80 | 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 | s..This.command.makes.sense.in.A |
| 92ca0 | 42 52 20 6f 6e 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 6c 73 6f 20 75 73 | BR.only..This.command.is.also.us |
| 92cc0 | 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 | ed.to.enable.the.OSPF.process..T |
| 92ce0 | 68 65 20 61 72 65 61 20 6e 75 6d 62 65 72 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 | he.area.number.can.be.specified. |
| 92d00 | 69 6e 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 72 61 6e 67 65 | in.decimal.notation.in.the.range |
| 92d20 | 20 66 72 6f 6d 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 4f 72 20 69 74 20 63 61 6e | .from.0.to.4294967295..Or.it.can |
| 92d40 | 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 6f 74 74 65 64 20 64 65 63 69 6d 61 6c 20 | .be.specified.in.dotted.decimal. |
| 92d60 | 6e 6f 74 61 74 69 6f 6e 20 73 69 6d 69 6c 61 72 20 74 6f 20 69 70 20 61 64 64 72 65 73 73 2e 00 | notation.similar.to.ip.address.. |
| 92d80 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c 79 20 61 6c 6c 6f 77 65 64 20 66 6f 72 | This.command.is.only.allowed.for |
| 92da0 | 20 65 42 47 50 20 70 65 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c | .eBGP.peers..This.command.is.onl |
| 92dc0 | 79 20 61 6c 6c 6f 77 65 64 20 66 6f 72 20 65 42 47 50 20 70 65 65 72 73 2e 20 49 74 20 69 73 20 | y.allowed.for.eBGP.peers..It.is. |
| 92de0 | 6e 6f 74 20 61 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 70 65 65 72 20 67 72 6f 75 70 73 2e 00 | not.applicable.for.peer.groups.. |
| 92e00 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c 79 20 75 73 65 66 75 6c 20 61 74 20 73 | This.command.is.only.useful.at.s |
| 92e20 | 63 61 6c 65 20 77 68 65 6e 20 79 6f 75 20 63 61 6e 20 70 6f 73 73 69 62 6c 79 20 68 61 76 65 20 | cale.when.you.can.possibly.have. |
| 92e40 | 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 20 6f 66 20 50 49 4d 20 63 6f 6e 74 72 6f 6c 20 70 61 | a.large.number.of.PIM.control.pa |
| 92e60 | 63 6b 65 74 73 20 66 6c 6f 77 69 6e 67 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 73 | ckets.flowing..This.command.is.s |
| 92e80 | 70 65 63 69 66 69 63 20 74 6f 20 46 52 52 20 61 6e 64 20 56 79 4f 53 2e 20 54 68 65 20 72 6f 75 | pecific.to.FRR.and.VyOS..The.rou |
| 92ea0 | 74 65 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 | te.command.makes.a.static.route. |
| 92ec0 | 6f 6e 6c 79 20 69 6e 73 69 64 65 20 52 49 50 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 | only.inside.RIP..This.command.sh |
| 92ee0 | 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 62 79 20 61 64 76 61 6e 63 65 64 20 75 73 | ould.be.used.only.by.advanced.us |
| 92f00 | 65 72 73 20 77 68 6f 20 61 72 65 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 6b 6e 6f 77 6c 65 64 | ers.who.are.particularly.knowled |
| 92f20 | 67 65 61 62 6c 65 20 61 62 6f 75 74 20 74 68 65 20 52 49 50 20 70 72 6f 74 6f 63 6f 6c 2e 20 49 | geable.about.the.RIP.protocol..I |
| 92f40 | 6e 20 6d 6f 73 74 20 63 61 73 65 73 2c 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 63 72 65 61 74 | n.most.cases,.we.recommend.creat |
| 92f60 | 69 6e 67 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 69 6e 20 56 79 4f 53 20 61 6e 64 20 72 | ing.a.static.route.in.VyOS.and.r |
| 92f80 | 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 69 74 20 69 6e 20 52 49 50 20 75 73 69 6e 67 20 3a 63 | edistributing.it.in.RIP.using.:c |
| 92fa0 | 66 67 63 6d 64 3a 60 72 65 64 69 73 74 72 69 62 75 74 65 20 73 74 61 74 69 63 60 2e 00 54 68 69 | fgcmd:`redistribute.static`..Thi |
| 92fc0 | 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 66 6f 72 20 61 64 76 65 72 74 69 73 69 6e | s.command.is.used.for.advertisin |
| 92fe0 | 67 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 63 6f | g.IPv4.or.IPv6.networks..This.co |
| 93000 | 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 74 72 69 65 76 65 20 69 6e 66 6f 72 6d | mmand.is.used.to.retrieve.inform |
| 93020 | 61 74 69 6f 6e 20 61 62 6f 75 74 20 57 41 50 20 77 69 74 68 69 6e 20 74 68 65 20 72 61 6e 67 65 | ation.about.WAP.within.the.range |
| 93040 | 20 6f 66 20 79 6f 75 72 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 | .of.your.wireless.interface..Thi |
| 93060 | 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 | s.command.is.useful.on.wireless. |
| 93080 | 69 6e 74 65 72 66 61 63 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 73 74 61 74 69 6f 6e | interfaces.configured.in.station |
| 930a0 | 20 6d 6f 64 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 69 66 | .mode..This.command.is.useful.if |
| 930c0 | 20 6f 6e 65 20 64 65 73 69 72 65 73 20 74 6f 20 6c 6f 6f 73 65 6e 20 74 68 65 20 72 65 71 75 69 | .one.desires.to.loosen.the.requi |
| 930e0 | 72 65 6d 65 6e 74 20 66 6f 72 20 42 47 50 20 74 6f 20 68 61 76 65 20 73 74 72 69 63 74 6c 79 20 | rement.for.BGP.to.have.strictly. |
| 93100 | 64 65 66 69 6e 65 64 20 6e 65 69 67 68 62 6f 72 73 2e 20 53 70 65 63 69 66 69 63 61 6c 6c 79 20 | defined.neighbors..Specifically. |
| 93120 | 77 68 61 74 20 69 73 20 61 6c 6c 6f 77 65 64 20 69 73 20 66 6f 72 20 74 68 65 20 6c 6f 63 61 6c | what.is.allowed.is.for.the.local |
| 93140 | 20 72 6f 75 74 65 72 20 74 6f 20 6c 69 73 74 65 6e 20 74 6f 20 61 20 72 61 6e 67 65 20 6f 66 20 | .router.to.listen.to.a.range.of. |
| 93160 | 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 64 65 66 69 6e 65 64 20 62 | IPv4.or.IPv6.addresses.defined.b |
| 93180 | 79 20 61 20 70 72 65 66 69 78 20 61 6e 64 20 74 6f 20 61 63 63 65 70 74 20 42 47 50 20 6f 70 65 | y.a.prefix.and.to.accept.BGP.ope |
| 931a0 | 6e 20 6d 65 73 73 61 67 65 73 2e 20 57 68 65 6e 20 61 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f | n.messages..When.a.TCP.connectio |
| 931c0 | 6e 20 28 61 6e 64 20 73 75 62 73 65 71 75 65 6e 74 6c 79 20 61 20 42 47 50 20 6f 70 65 6e 20 6d | n.(and.subsequently.a.BGP.open.m |
| 931e0 | 65 73 73 61 67 65 29 20 66 72 6f 6d 20 77 69 74 68 69 6e 20 74 68 69 73 20 72 61 6e 67 65 20 74 | essage).from.within.this.range.t |
| 93200 | 72 69 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 | ries.to.connect.the.local.router |
| 93220 | 20 74 68 65 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 72 65 73 70 | .then.the.local.router.will.resp |
| 93240 | 6f 6e 64 20 61 6e 64 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 20 74 68 65 20 70 61 72 61 6d 65 74 | ond.and.connect.with.the.paramet |
| 93260 | 65 72 73 20 74 68 61 74 20 61 72 65 20 64 65 66 69 6e 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 | ers.that.are.defined.within.the. |
| 93280 | 70 65 65 72 20 67 72 6f 75 70 2e 20 4f 6e 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 61 20 70 65 | peer.group..One.must.define.a.pe |
| 932a0 | 65 72 2d 67 72 6f 75 70 20 66 6f 72 20 65 61 63 68 20 72 61 6e 67 65 20 74 68 61 74 20 69 73 20 | er-group.for.each.range.that.is. |
| 932c0 | 6c 69 73 74 65 64 2e 20 49 66 20 6e 6f 20 70 65 65 72 2d 67 72 6f 75 70 20 69 73 20 64 65 66 69 | listed..If.no.peer-group.is.defi |
| 932e0 | 6e 65 64 20 74 68 65 6e 20 61 6e 20 65 72 72 6f 72 20 77 69 6c 6c 20 6b 65 65 70 20 79 6f 75 20 | ned.then.an.error.will.keep.you. |
| 93300 | 66 72 6f 6d 20 63 6f 6d 6d 69 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | from.committing.the.configuratio |
| 93320 | 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 6f 64 69 66 69 65 73 20 74 68 65 20 64 65 66 | n..This.command.modifies.the.def |
| 93340 | 61 75 6c 74 20 6d 65 74 72 69 63 20 28 68 6f 70 20 63 6f 75 6e 74 29 20 76 61 6c 75 65 20 66 6f | ault.metric.(hop.count).value.fo |
| 93360 | 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 72 | r.redistributed.routes..The.metr |
| 93380 | 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | ic.range.is.1.to.16..The.default |
| 933a0 | 20 76 61 6c 75 65 20 69 73 20 31 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 6f 65 73 20 6e | .value.is.1..This.command.does.n |
| 933c0 | 6f 74 20 61 66 66 65 63 74 20 63 6f 6e 6e 65 63 74 65 64 20 72 6f 75 74 65 20 65 76 65 6e 20 69 | ot.affect.connected.route.even.i |
| 933e0 | 66 20 69 74 20 69 73 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 62 79 20 3a 63 66 67 63 6d 64 | f.it.is.redistributed.by.:cfgcmd |
| 93400 | 3a 60 72 65 64 69 73 74 72 69 62 75 74 65 20 63 6f 6e 6e 65 63 74 65 64 60 2e 20 54 6f 20 6d 6f | :`redistribute.connected`..To.mo |
| 93420 | 64 69 66 79 20 63 6f 6e 6e 65 63 74 65 64 20 72 6f 75 74 65 73 20 6d 65 74 72 69 63 20 76 61 6c | dify.connected.routes.metric.val |
| 93440 | 75 65 2c 20 70 6c 65 61 73 65 20 75 73 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 64 69 73 74 72 69 | ue,.please.use.:cfgcmd:`redistri |
| 93460 | 62 75 74 65 20 63 6f 6e 6e 65 63 74 65 64 20 6d 65 74 72 69 63 60 2e 00 54 68 69 73 20 63 6f 6d | bute.connected.metric`..This.com |
| 93480 | 6d 61 6e 64 20 6f 76 65 72 72 69 64 65 20 41 53 20 6e 75 6d 62 65 72 20 6f 66 20 74 68 65 20 6f | mand.override.AS.number.of.the.o |
| 934a0 | 72 69 67 69 6e 61 74 69 6e 67 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 6c 6f 63 61 6c | riginating.router.with.the.local |
| 934c0 | 20 41 53 20 6e 75 6d 62 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 70 72 65 76 65 6e 74 | .AS.number..This.command.prevent |
| 934e0 | 73 20 66 72 6f 6d 20 73 65 6e 64 69 6e 67 20 62 61 63 6b 20 70 72 65 66 69 78 65 73 20 6c 65 61 | s.from.sending.back.prefixes.lea |
| 93500 | 72 6e 65 64 20 66 72 6f 6d 20 74 68 65 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d | rned.from.the.neighbor..This.com |
| 93520 | 6d 61 6e 64 20 70 72 6f 76 69 64 65 73 20 74 6f 20 63 6f 6d 70 61 72 65 20 64 69 66 66 65 72 65 | mand.provides.to.compare.differe |
| 93540 | 6e 74 20 4d 45 44 20 76 61 6c 75 65 73 20 74 68 61 74 20 61 64 76 65 72 74 69 73 65 64 20 62 79 | nt.MED.values.that.advertised.by |
| 93560 | 20 6e 65 69 67 68 62 6f 75 72 73 20 69 6e 20 74 68 65 20 73 61 6d 65 20 41 53 20 66 6f 72 20 72 | .neighbours.in.the.same.AS.for.r |
| 93580 | 6f 75 74 65 73 20 73 65 6c 65 63 74 69 6f 6e 2e 20 57 68 65 6e 20 74 68 69 73 20 63 6f 6d 6d 61 | outes.selection..When.this.comma |
| 935a0 | 6e 64 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 73 | nd.is.enabled,.routes.from.the.s |
| 935c0 | 61 6d 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 61 72 65 20 67 72 6f 75 70 65 | ame.autonomous.system.are.groupe |
| 935e0 | 64 20 74 6f 67 65 74 68 65 72 2c 20 61 6e 64 20 74 68 65 20 62 65 73 74 20 65 6e 74 72 69 65 73 | d.together,.and.the.best.entries |
| 93600 | 20 6f 66 20 65 61 63 68 20 67 72 6f 75 70 20 61 72 65 20 63 6f 6d 70 61 72 65 64 2e 00 54 68 69 | .of.each.group.are.compared..Thi |
| 93620 | 73 20 63 6f 6d 6d 61 6e 64 20 70 72 6f 76 69 64 65 73 20 74 6f 20 63 6f 6d 70 61 72 65 20 74 68 | s.command.provides.to.compare.th |
| 93640 | 65 20 4d 45 44 20 6f 6e 20 72 6f 75 74 65 73 2c 20 65 76 65 6e 20 77 68 65 6e 20 74 68 65 79 20 | e.MED.on.routes,.even.when.they. |
| 93660 | 77 65 72 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 6e 65 69 | were.received.from.different.nei |
| 93680 | 67 68 62 6f 75 72 69 6e 67 20 41 53 65 73 2e 20 53 65 74 74 69 6e 67 20 74 68 69 73 20 6f 70 74 | ghbouring.ASes..Setting.this.opt |
| 936a0 | 69 6f 6e 20 6d 61 6b 65 73 20 74 68 65 20 6f 72 64 65 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 | ion.makes.the.order.of.preferenc |
| 936c0 | 65 20 6f 66 20 72 6f 75 74 65 73 20 6d 6f 72 65 20 64 65 66 69 6e 65 64 2c 20 61 6e 64 20 73 68 | e.of.routes.more.defined,.and.sh |
| 936e0 | 6f 75 6c 64 20 65 6c 69 6d 69 6e 61 74 65 20 4d 45 44 20 69 6e 64 75 63 65 64 20 6f 73 63 69 6c | ould.eliminate.MED.induced.oscil |
| 93700 | 6c 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 | lations..This.command.redistribu |
| 93720 | 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 | tes.routing.information.from.the |
| 93740 | 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 69 6e 74 6f 20 74 68 65 20 49 53 49 | .given.route.source.into.the.ISI |
| 93760 | 53 20 64 61 74 61 62 61 73 65 20 61 73 20 4c 65 76 65 6c 2d 31 2e 20 54 68 65 72 65 20 61 72 65 | S.database.as.Level-1..There.are |
| 93780 | 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 | .six.modes.available.for.route.s |
| 937a0 | 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f | ource:.bgp,.connected,.kernel,.o |
| 937c0 | 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 | spf,.rip,.static..This.command.r |
| 937e0 | 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | edistributes.routing.information |
| 93800 | 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 69 6e 74 | .from.the.given.route.source.int |
| 93820 | 6f 20 74 68 65 20 49 53 49 53 20 64 61 74 61 62 61 73 65 20 61 73 20 4c 65 76 65 6c 2d 32 2e 20 | o.the.ISIS.database.as.Level-2.. |
| 93840 | 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f | There.are.six.modes.available.fo |
| 93860 | 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 | r.route.source:.bgp,.connected,. |
| 93880 | 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 | kernel,.ospf,.rip,.static..This. |
| 938a0 | 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e | command.redistributes.routing.in |
| 938c0 | 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 | formation.from.the.given.route.s |
| 938e0 | 6f 75 72 63 65 20 69 6e 74 6f 20 74 68 65 20 52 49 50 20 74 61 62 6c 65 73 2e 20 54 68 65 72 65 | ource.into.the.RIP.tables..There |
| 93900 | 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f | .are.five.modes.available.for.ro |
| 93920 | 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e | ute.source:.bgp,.connected,.kern |
| 93940 | 65 6c 2c 20 6f 73 70 66 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 | el,.ospf,.static..This.command.r |
| 93960 | 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | edistributes.routing.information |
| 93980 | 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 | .from.the.given.route.source.to. |
| 939a0 | 74 68 65 20 42 47 50 20 70 72 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d | the.BGP.process..There.are.six.m |
| 939c0 | 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a | odes.available.for.route.source: |
| 939e0 | 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 | .connected,.kernel,.ospf,.rip,.s |
| 93a00 | 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 | tatic,.table..This.command.redis |
| 93a20 | 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f | tributes.routing.information.fro |
| 93a40 | 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 | m.the.given.route.source.to.the. |
| 93a60 | 42 61 62 65 6c 20 70 72 6f 63 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 | Babel.process..This.command.redi |
| 93a80 | 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 | stributes.routing.information.fr |
| 93aa0 | 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 | om.the.given.route.source.to.the |
| 93ac0 | 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f | .OSPF.process..There.are.five.mo |
| 93ae0 | 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 | des.available.for.route.source:. |
| 93b00 | 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 2c 20 73 74 61 | bgp,.connected,.kernel,.rip,.sta |
| 93b20 | 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 | tic..This.command.redistributes. |
| 93b40 | 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 | routing.information.from.the.giv |
| 93b60 | 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 | en.route.source.to.the.OSPFv3.pr |
| 93b80 | 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 | ocess..There.are.five.modes.avai |
| 93ba0 | 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e | lable.for.route.source:.bgp,.con |
| 93bc0 | 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 54 | nected,.kernel,.ripng,.static..T |
| 93be0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 6d 6f 76 65 73 20 74 68 65 20 70 72 69 76 61 74 65 20 | his.command.removes.the.private. |
| 93c00 | 41 53 4e 20 6f 66 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 61 64 76 65 72 74 69 73 65 | ASN.of.routes.that.are.advertise |
| 93c20 | 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 65 72 2e 20 49 74 20 72 65 6d | d.to.the.configured.peer..It.rem |
| 93c40 | 6f 76 65 73 20 6f 6e 6c 79 20 70 72 69 76 61 74 65 20 41 53 4e 73 20 6f 6e 20 72 6f 75 74 65 73 | oves.only.private.ASNs.on.routes |
| 93c60 | 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 45 42 47 50 20 70 65 65 72 73 2e 00 54 68 69 73 20 | .advertised.to.EBGP.peers..This. |
| 93c80 | 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 | command.resets.BGP.connections.t |
| 93ca0 | 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6e 65 69 67 68 62 6f 72 20 49 50 20 61 64 64 72 | o.the.specified.neighbor.IP.addr |
| 93cc0 | 65 73 73 2e 20 57 69 74 68 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 73 6f 66 74 | ess..With.argument.:cfgcmd:`soft |
| 93ce0 | 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 69 74 69 61 74 65 73 20 61 20 73 6f 66 74 20 | `.this.command.initiates.a.soft. |
| 93d00 | 72 65 73 65 74 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 74 68 65 | reset..If.you.do.not.specify.the |
| 93d20 | 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 6f 72 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 6f | .:cfgcmd:`in`.or.:cfgcmd:`out`.o |
| 93d40 | 70 74 69 6f 6e 73 2c 20 62 6f 74 68 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e | ptions,.both.inbound.and.outboun |
| 93d60 | 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 74 72 69 67 67 | d.soft.reconfiguration.are.trigg |
| 93d80 | 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 42 47 50 20 63 6f | ered..This.command.resets.BGP.co |
| 93da0 | 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 65 65 72 20 | nnections.to.the.specified.peer. |
| 93dc0 | 67 72 6f 75 70 2e 20 57 69 74 68 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 73 6f | group..With.argument.:cfgcmd:`so |
| 93de0 | 66 74 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 69 74 69 61 74 65 73 20 61 20 73 6f 66 | ft`.this.command.initiates.a.sof |
| 93e00 | 74 20 72 65 73 65 74 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 73 70 65 63 69 66 79 20 74 | t.reset..If.you.do.not.specify.t |
| 93e20 | 68 65 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 6f 72 20 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 | he.:cfgcmd:`in`.or.:cfgcmd:`out` |
| 93e40 | 20 6f 70 74 69 6f 6e 73 2c 20 62 6f 74 68 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f | .options,.both.inbound.and.outbo |
| 93e60 | 75 6e 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 74 72 69 | und.soft.reconfiguration.are.tri |
| 93e80 | 67 67 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 61 6c 6c 20 | ggered..This.command.resets.all. |
| 93ea0 | 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 66 20 67 69 76 65 6e 20 72 6f 75 74 65 72 2e | BGP.connections.of.given.router. |
| 93ec0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 61 6c 6c 20 65 78 74 65 72 6e 61 | .This.command.resets.all.externa |
| 93ee0 | 6c 20 42 47 50 20 70 65 65 72 73 20 6f 66 20 67 69 76 65 6e 20 72 6f 75 74 65 72 2e 00 54 68 69 | l.BGP.peers.of.given.router..Thi |
| 93f00 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 6c 65 63 74 73 20 41 42 52 20 6d 6f 64 65 6c 2e 20 4f 53 50 | s.command.selects.ABR.model..OSP |
| 93f20 | 46 20 72 6f 75 74 65 72 20 73 75 70 70 6f 72 74 73 20 66 6f 75 72 20 41 42 52 20 6d 6f 64 65 6c | F.router.supports.four.ABR.model |
| 93f40 | 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 20 64 65 66 61 75 6c 74 20 6d 65 74 72 | s:.This.command.set.default.metr |
| 93f60 | 69 63 20 66 6f 72 20 63 69 72 63 75 69 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 | ic.for.circuit..This.command.set |
| 93f80 | 20 74 68 65 20 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 74 68 61 74 20 64 69 76 65 72 73 69 | .the.channel.number.that.diversi |
| 93fa0 | 74 79 20 72 6f 75 74 69 6e 67 20 75 73 65 73 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 | ty.routing.uses.for.this.interfa |
| 93fc0 | 63 65 20 28 73 65 65 20 64 69 76 65 72 73 69 74 79 20 6f 70 74 69 6f 6e 20 61 62 6f 76 65 29 2e | ce.(see.diversity.option.above). |
| 93fe0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 41 54 54 20 62 69 74 20 74 6f 20 31 20 | .This.command.sets.ATT.bit.to.1. |
| 94000 | 69 6e 20 4c 65 76 65 6c 31 20 4c 53 50 73 2e 20 49 74 20 69 73 20 64 65 73 63 72 69 62 65 64 20 | in.Level1.LSPs..It.is.described. |
| 94020 | 69 6e 20 3a 72 66 63 3a 60 33 37 38 37 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 | in.:rfc:`3787`..This.command.set |
| 94040 | 73 20 43 6f 6d 70 6c 65 74 65 20 53 65 71 75 65 6e 63 65 20 4e 75 6d 62 65 72 20 50 61 63 6b 65 | s.Complete.Sequence.Number.Packe |
| 94060 | 74 73 20 28 43 53 4e 50 29 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 | ts.(CSNP).interval.in.seconds..T |
| 94080 | 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 30 30 2e 00 54 | he.interval.range.is.1.to.600..T |
| 940a0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 6d 61 78 69 6d 75 6d 20 4c 53 50 | his.command.sets.LSP.maximum.LSP |
| 940c0 | 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 | .lifetime.in.seconds..The.interv |
| 940e0 | 61 6c 20 72 61 6e 67 65 20 69 73 20 33 35 30 20 74 6f 20 36 35 35 33 35 2e 20 4c 53 50 73 20 72 | al.range.is.350.to.65535..LSPs.r |
| 94100 | 65 6d 61 69 6e 20 69 6e 20 61 20 64 61 74 61 62 61 73 65 20 66 6f 72 20 31 32 30 30 20 73 65 63 | emain.in.a.database.for.1200.sec |
| 94120 | 6f 6e 64 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 | onds.by.default..If.they.are.not |
| 94140 | 20 72 65 66 72 65 73 68 65 64 20 62 79 20 74 68 61 74 20 74 69 6d 65 2c 20 74 68 65 79 20 61 72 | .refreshed.by.that.time,.they.ar |
| 94160 | 65 20 64 65 6c 65 74 65 64 2e 20 59 6f 75 20 63 61 6e 20 63 68 61 6e 67 65 20 74 68 65 20 4c 53 | e.deleted..You.can.change.the.LS |
| 94180 | 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 6f 72 20 74 68 65 20 4c 53 50 20 6c 69 | P.refresh.interval.or.the.LSP.li |
| 941a0 | 66 65 74 69 6d 65 2e 20 54 68 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c | fetime..The.LSP.refresh.interval |
| 941c0 | 20 73 68 6f 75 6c 64 20 62 65 20 6c 65 73 73 20 74 68 61 6e 20 74 68 65 20 4c 53 50 20 6c 69 66 | .should.be.less.than.the.LSP.lif |
| 941e0 | 65 74 69 6d 65 20 6f 72 20 65 6c 73 65 20 4c 53 50 73 20 77 69 6c 6c 20 74 69 6d 65 20 6f 75 74 | etime.or.else.LSPs.will.time.out |
| 94200 | 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 72 65 66 72 65 73 68 65 64 2e 00 54 68 69 73 | .before.they.are.refreshed..This |
| 94220 | 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 6d 61 78 69 6d 75 6d 20 4c 53 50 20 6c 69 | .command.sets.LSP.maximum.LSP.li |
| 94240 | 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 | fetime.in.seconds..The.interval. |
| 94260 | 72 61 6e 67 65 20 69 73 20 33 36 30 20 74 6f 20 36 35 35 33 35 2e 20 4c 53 50 73 20 72 65 6d 61 | range.is.360.to.65535..LSPs.rema |
| 94280 | 69 6e 20 69 6e 20 61 20 64 61 74 61 62 61 73 65 20 66 6f 72 20 31 32 30 30 20 73 65 63 6f 6e 64 | in.in.a.database.for.1200.second |
| 942a0 | 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 72 65 | s.by.default..If.they.are.not.re |
| 942c0 | 66 72 65 73 68 65 64 20 62 79 20 74 68 61 74 20 74 69 6d 65 2c 20 74 68 65 79 20 61 72 65 20 64 | freshed.by.that.time,.they.are.d |
| 942e0 | 65 6c 65 74 65 64 2e 20 59 6f 75 20 63 61 6e 20 63 68 61 6e 67 65 20 74 68 65 20 4c 53 50 20 72 | eleted..You.can.change.the.LSP.r |
| 94300 | 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 6f 72 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 | efresh.interval.or.the.LSP.lifet |
| 94320 | 69 6d 65 2e 20 54 68 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 73 68 | ime..The.LSP.refresh.interval.sh |
| 94340 | 6f 75 6c 64 20 62 65 20 6c 65 73 73 20 74 68 61 6e 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 | ould.be.less.than.the.LSP.lifeti |
| 94360 | 6d 65 20 6f 72 20 65 6c 73 65 20 4c 53 50 73 20 77 69 6c 6c 20 74 69 6d 65 20 6f 75 74 20 62 65 | me.or.else.LSPs.will.time.out.be |
| 94380 | 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 72 65 66 72 65 73 68 65 64 2e 00 54 68 69 73 20 63 6f | fore.they.are.refreshed..This.co |
| 943a0 | 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 | mmand.sets.LSP.refresh.interval. |
| 943c0 | 69 6e 20 73 65 63 6f 6e 64 73 2e 20 49 53 2d 49 53 20 67 65 6e 65 72 61 74 65 73 20 4c 53 50 73 | in.seconds..IS-IS.generates.LSPs |
| 943e0 | 20 77 68 65 6e 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 61 20 6c 69 6e 6b 20 63 68 61 6e 67 65 | .when.the.state.of.a.link.change |
| 94400 | 73 2e 20 48 6f 77 65 76 65 72 2c 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 72 6f 75 74 69 | s..However,.to.ensure.that.routi |
| 94420 | 6e 67 20 64 61 74 61 62 61 73 65 73 20 6f 6e 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 72 65 6d 61 | ng.databases.on.all.routers.rema |
| 94440 | 69 6e 20 63 6f 6e 76 65 72 67 65 64 2c 20 4c 53 50 73 20 69 6e 20 73 74 61 62 6c 65 20 6e 65 74 | in.converged,.LSPs.in.stable.net |
| 94460 | 77 6f 72 6b 73 20 61 72 65 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 61 20 72 65 67 75 6c 61 72 | works.are.generated.on.a.regular |
| 94480 | 20 62 61 73 69 73 20 65 76 65 6e 20 74 68 6f 75 67 68 20 74 68 65 72 65 20 68 61 73 20 62 65 65 | .basis.even.though.there.has.bee |
| 944a0 | 6e 20 6e 6f 20 63 68 61 6e 67 65 20 74 6f 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 74 68 65 20 | n.no.change.to.the.state.of.the. |
| 944c0 | 6c 69 6e 6b 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 | links..The.interval.range.is.1.t |
| 944e0 | 6f 20 36 35 32 33 35 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 39 30 | o.65235..The.default.value.is.90 |
| 94500 | 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 | 0.seconds..This.command.sets.LSP |
| 94520 | 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 | .refresh.interval.in.seconds..Th |
| 94540 | 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 32 33 35 2e 00 | e.interval.range.is.1.to.65235.. |
| 94560 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4f 53 50 46 20 61 75 74 68 65 6e 74 69 63 | This.command.sets.OSPF.authentic |
| 94580 | 61 74 69 6f 6e 20 6b 65 79 20 74 6f 20 61 20 73 69 6d 70 6c 65 20 70 61 73 73 77 6f 72 64 2e 20 | ation.key.to.a.simple.password.. |
| 945a0 | 41 66 74 65 72 20 73 65 74 74 69 6e 67 2c 20 61 6c 6c 20 4f 53 50 46 20 70 61 63 6b 65 74 73 20 | After.setting,.all.OSPF.packets. |
| 945c0 | 61 72 65 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2e 20 4b 65 79 20 68 61 73 20 6c 65 6e 67 74 | are.authenticated..Key.has.lengt |
| 945e0 | 68 20 75 70 20 74 6f 20 38 20 63 68 61 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 | h.up.to.8.chars..This.command.se |
| 94600 | 74 73 20 50 53 4e 50 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 | ts.PSNP.interval.in.seconds..The |
| 94620 | 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 32 37 2e 00 54 68 69 | .interval.range.is.0.to.127..Thi |
| 94640 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 50 61 72 74 69 61 6c 20 53 65 71 75 65 6e 63 65 20 | s.command.sets.Partial.Sequence. |
| 94660 | 4e 75 6d 62 65 72 20 50 61 63 6b 65 74 73 20 28 50 53 4e 50 29 20 69 6e 74 65 72 76 61 6c 20 69 | Number.Packets.(PSNP).interval.i |
| 94680 | 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 | n.seconds..The.interval.range.is |
| 946a0 | 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 52 6f 75 | .1.to.120..This.command.sets.Rou |
| 946c0 | 74 65 72 20 50 72 69 6f 72 69 74 79 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 2e 20 54 68 65 20 | ter.Priority.integer.value..The. |
| 946e0 | 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 | router.with.the.highest.priority |
| 94700 | 20 77 69 6c 6c 20 62 65 20 6d 6f 72 65 20 65 6c 69 67 69 62 6c 65 20 74 6f 20 62 65 63 6f 6d 65 | .will.be.more.eligible.to.become |
| 94720 | 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 2e 20 53 65 74 74 69 6e 67 20 74 68 65 20 | .Designated.Router..Setting.the. |
| 94740 | 76 61 6c 75 65 20 74 6f 20 30 2c 20 6d 61 6b 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 6e 65 | value.to.0,.makes.the.router.ine |
| 94760 | 6c 69 67 69 62 6c 65 20 74 6f 20 62 65 63 6f 6d 65 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 | ligible.to.become.Designated.Rou |
| 94780 | 74 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 2e 20 54 68 65 | ter..The.default.value.is.1..The |
| 947a0 | 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 32 35 35 2e 00 54 68 69 | .interval.range.is.0.to.255..Thi |
| 947c0 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 61 20 73 74 61 74 69 63 20 74 69 65 72 20 6e 75 6d | s.command.sets.a.static.tier.num |
| 947e0 | 62 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 61 73 20 6c 6f 63 61 74 69 6f 6e 20 69 6e 20 | ber.to.advertise.as.location.in. |
| 94800 | 74 68 65 20 66 61 62 72 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 64 65 | the.fabric..This.command.sets.de |
| 94820 | 66 61 75 6c 74 20 52 49 50 20 64 69 73 74 61 6e 63 65 20 74 6f 20 61 20 73 70 65 63 69 66 69 65 | fault.RIP.distance.to.a.specifie |
| 94840 | 64 20 76 61 6c 75 65 20 77 68 65 6e 20 74 68 65 20 72 6f 75 74 65 73 20 73 6f 75 72 63 65 20 49 | d.value.when.the.routes.source.I |
| 94860 | 50 20 61 64 64 72 65 73 73 20 6d 61 74 63 68 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | P.address.matches.the.specified. |
| 94880 | 70 72 65 66 69 78 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 64 65 66 61 75 6c | prefix..This.command.sets.defaul |
| 948a0 | 74 20 6d 65 74 72 69 63 20 66 6f 72 20 63 69 72 63 75 69 74 2e 20 54 68 65 20 6d 65 74 72 69 63 | t.metric.for.circuit..The.metric |
| 948c0 | 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f | .range.is.1.to.16777215..This.co |
| 948e0 | 6d 6d 61 6e 64 20 73 65 74 73 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 | mmand.sets.hello.interval.in.sec |
| 94900 | 6f 6e 64 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 | onds.on.a.given.interface..The.r |
| 94920 | 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ange.is.1.to.600..This.command.s |
| 94940 | 65 74 73 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 6f 6e | ets.hello.interval.in.seconds.on |
| 94960 | 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 | .a.given.interface..The.range.is |
| 94980 | 20 31 20 74 6f 20 36 30 30 2e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 20 75 73 65 | .1.to.600..Hello.packets.are.use |
| 949a0 | 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 6e 64 20 6d 61 69 6e 74 61 69 6e 20 61 64 6a 61 | d.to.establish.and.maintain.adja |
| 949c0 | 63 65 6e 63 79 20 62 65 74 77 65 65 6e 20 4f 70 65 6e 46 61 62 72 69 63 20 6e 65 69 67 68 62 6f | cency.between.OpenFabric.neighbo |
| 949e0 | 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6c 69 6e 6b 20 63 6f 73 74 20 | rs..This.command.sets.link.cost. |
| 94a00 | 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 | for.the.specified.interface..The |
| 94a20 | 20 63 6f 73 74 20 76 61 6c 75 65 20 69 73 20 73 65 74 20 74 6f 20 72 6f 75 74 65 72 2d 4c 53 41 | .cost.value.is.set.to.router-LSA |
| 94a40 | e2 80 99 73 20 6d 65 74 72 69 63 20 66 69 65 6c 64 20 61 6e 64 20 75 73 65 64 20 66 6f 72 20 53 | ...s.metric.field.and.used.for.S |
| 94a60 | 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 54 68 65 20 63 6f 73 74 20 72 61 6e 67 65 20 69 | PF.calculation..The.cost.range.i |
| 94a80 | 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 | s.1.to.65535..This.command.sets. |
| 94aa0 | 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 61 74 20 77 68 69 63 68 20 6c 69 6e 6b 2d 73 | minimum.interval.at.which.link-s |
| 94ac0 | 74 61 74 65 20 70 61 63 6b 65 74 73 20 28 4c 53 50 73 29 20 61 72 65 20 67 65 6e 65 72 61 74 65 | tate.packets.(LSPs).are.generate |
| 94ae0 | 64 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 | d..The.interval.range.is.1.to.12 |
| 94b00 | 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 | 0..This.command.sets.minimum.int |
| 94b20 | 65 72 76 61 6c 20 62 65 74 77 65 65 6e 20 63 6f 6e 73 65 63 75 74 69 76 65 20 53 50 46 20 63 61 | erval.between.consecutive.SPF.ca |
| 94b40 | 6c 63 75 6c 61 74 69 6f 6e 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 54 68 65 20 69 6e 74 65 72 76 | lculations.in.seconds.The.interv |
| 94b60 | 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | al.range.is.1.to.120..This.comma |
| 94b80 | 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 62 65 74 77 65 65 6e | nd.sets.minimum.interval.between |
| 94ba0 | 20 63 6f 6e 73 65 63 75 74 69 76 65 20 73 68 6f 72 74 65 73 74 20 70 61 74 68 20 66 69 72 73 74 | .consecutive.shortest.path.first |
| 94bc0 | 20 28 53 50 46 29 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 20 69 6e 20 73 65 63 6f 6e 64 73 2e 54 | .(SPF).calculations.in.seconds.T |
| 94be0 | 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 | he.interval.range.is.1.to.120..T |
| 94c00 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 | his.command.sets.minimum.interva |
| 94c20 | 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 72 65 67 65 6e 65 72 61 74 69 6e | l.in.seconds.between.regeneratin |
| 94c40 | 67 20 73 61 6d 65 20 4c 53 50 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 | g.same.LSP..The.interval.range.i |
| 94c60 | 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 75 | s.1.to.120..This.command.sets.mu |
| 94c80 | 6c 74 69 70 6c 69 65 72 20 66 6f 72 20 68 65 6c 6c 6f 20 68 6f 6c 64 69 6e 67 20 74 69 6d 65 20 | ltiplier.for.hello.holding.time. |
| 94ca0 | 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 61 6e 67 65 20 | on.a.given.interface..The.range. |
| 94cc0 | 69 73 20 32 20 74 6f 20 31 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e | is.2.to.100..This.command.sets.n |
| 94ce0 | 65 74 77 6f 72 6b 20 65 6e 74 69 74 79 20 74 69 74 6c 65 20 28 4e 45 54 29 20 70 72 6f 76 69 64 | etwork.entity.title.(NET).provid |
| 94d00 | 65 64 20 69 6e 20 49 53 4f 20 66 6f 72 6d 61 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ed.in.ISO.format..This.command.s |
| 94d20 | 65 74 73 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 49 6e 66 54 72 61 | ets.number.of.seconds.for.InfTra |
| 94d40 | 6e 73 44 65 6c 61 79 20 76 61 6c 75 65 2e 20 49 74 20 61 6c 6c 6f 77 73 20 74 6f 20 73 65 74 20 | nsDelay.value..It.allows.to.set. |
| 94d60 | 61 6e 64 20 61 64 6a 75 73 74 20 66 6f 72 20 65 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 74 68 | and.adjust.for.each.interface.th |
| 94d80 | 65 20 64 65 6c 61 79 20 69 6e 74 65 72 76 61 6c 20 62 65 66 6f 72 65 20 73 74 61 72 74 69 6e 67 | e.delay.interval.before.starting |
| 94da0 | 20 74 68 65 20 73 79 6e 63 68 72 6f 6e 69 7a 69 6e 67 20 70 72 6f 63 65 73 73 20 6f 66 20 74 68 | .the.synchronizing.process.of.th |
| 94dc0 | 65 20 72 6f 75 74 65 72 27 73 20 64 61 74 61 62 61 73 65 20 77 69 74 68 20 61 6c 6c 20 6e 65 69 | e.router's.database.with.all.nei |
| 94de0 | 67 68 62 6f 72 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 20 73 | ghbors..The.default.value.is.1.s |
| 94e00 | 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 33 20 | econds..The.interval.range.is.3. |
| 94e20 | 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e 75 6d 62 | to.65535..This.command.sets.numb |
| 94e40 | 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 52 78 6d 74 49 6e 74 65 72 76 61 6c 20 74 | er.of.seconds.for.RxmtInterval.t |
| 94e60 | 69 6d 65 72 20 76 61 6c 75 65 2e 20 54 68 69 73 20 76 61 6c 75 65 20 69 73 20 75 73 65 64 20 77 | imer.value..This.value.is.used.w |
| 94e80 | 68 65 6e 20 72 65 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 44 61 74 61 62 61 73 65 20 44 65 73 63 | hen.retransmitting.Database.Desc |
| 94ea0 | 72 69 70 74 69 6f 6e 20 61 6e 64 20 4c 69 6e 6b 20 53 74 61 74 65 20 52 65 71 75 65 73 74 20 70 | ription.and.Link.State.Request.p |
| 94ec0 | 61 63 6b 65 74 73 20 69 66 20 61 63 6b 6e 6f 77 6c 65 64 67 65 20 77 61 73 20 6e 6f 74 20 72 65 | ackets.if.acknowledge.was.not.re |
| 94ee0 | 63 65 69 76 65 64 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 35 20 73 | ceived..The.default.value.is.5.s |
| 94f00 | 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 33 20 | econds..The.interval.range.is.3. |
| 94f20 | 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 6c 64 2d | to.65535..This.command.sets.old- |
| 94f40 | 73 74 79 6c 65 20 28 49 53 4f 20 31 30 35 38 39 29 20 6f 72 20 6e 65 77 20 73 74 79 6c 65 20 70 | style.(ISO.10589).or.new.style.p |
| 94f60 | 61 63 6b 65 74 20 66 6f 72 6d 61 74 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 | acket.formats:.This.command.sets |
| 94f80 | 20 6f 74 68 65 72 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 73 20 3c 6e 73 75 62 61 73 6e 3e 20 | .other.confederations.<nsubasn>. |
| 94fa0 | 61 73 20 6d 65 6d 62 65 72 73 20 6f 66 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 | as.members.of.autonomous.system. |
| 94fc0 | 73 70 65 63 69 66 69 65 64 20 62 79 20 3a 63 66 67 63 6d 64 3a 60 63 6f 6e 66 65 64 65 72 61 74 | specified.by.:cfgcmd:`confederat |
| 94fe0 | 69 6f 6e 20 69 64 65 6e 74 69 66 69 65 72 20 3c 61 73 6e 3e 60 2e 00 54 68 69 73 20 63 6f 6d 6d | ion.identifier.<asn>`..This.comm |
| 95000 | 61 6e 64 20 73 65 74 73 20 6f 76 65 72 6c 6f 61 64 20 62 69 74 20 74 6f 20 61 76 6f 69 64 20 61 | and.sets.overload.bit.to.avoid.a |
| 95020 | 6e 79 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 74 68 69 73 20 | ny.transit.traffic.through.this. |
| 95040 | 72 6f 75 74 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 76 65 72 6c 6f | router..This.command.sets.overlo |
| 95060 | 61 64 20 62 69 74 20 74 6f 20 61 76 6f 69 64 20 61 6e 79 20 74 72 61 6e 73 69 74 20 74 72 61 66 | ad.bit.to.avoid.any.transit.traf |
| 95080 | 66 69 63 20 74 68 72 6f 75 67 68 20 74 68 69 73 20 72 6f 75 74 65 72 2e 20 49 74 20 69 73 20 64 | fic.through.this.router..It.is.d |
| 950a0 | 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 38 37 60 2e 00 54 68 69 73 20 63 6f | escribed.in.:rfc:`3787`..This.co |
| 950c0 | 6d 6d 61 6e 64 20 73 65 74 73 20 70 72 69 6f 72 69 74 79 20 66 6f 72 20 74 68 65 20 69 6e 74 65 | mmand.sets.priority.for.the.inte |
| 950e0 | 72 66 61 63 65 20 66 6f 72 20 3a 61 62 62 72 3a 60 44 49 53 20 28 44 65 73 69 67 6e 61 74 65 64 | rface.for.:abbr:`DIS.(Designated |
| 95100 | 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 29 60 20 65 6c 65 63 74 69 6f 6e 2e | .Intermediate.System)`.election. |
| 95120 | 20 54 68 65 20 70 72 69 6f 72 69 74 79 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 32 37 2e | .The.priority.range.is.0.to.127. |
| 95140 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 61 64 6d 69 6e 69 73 74 72 | .This.command.sets.the.administr |
| 95160 | 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 | ative.distance.for.a.particular. |
| 95180 | 72 6f 75 74 65 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 | route..The.distance.range.is.1.t |
| 951a0 | 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 61 75 74 | o.255..This.command.sets.the.aut |
| 951c0 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 74 68 65 20 69 6e 74 | hentication.password.for.the.int |
| 951e0 | 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 63 6f | erface..This.command.sets.the.co |
| 95200 | 73 74 20 6f 66 20 64 65 66 61 75 6c 74 2d 73 75 6d 6d 61 72 79 20 4c 53 41 73 20 61 6e 6e 6f 75 | st.of.default-summary.LSAs.annou |
| 95220 | 6e 63 65 64 20 74 6f 20 73 74 75 62 62 79 20 61 72 65 61 73 2e 20 54 68 65 20 63 6f 73 74 20 72 | nced.to.stubby.areas..The.cost.r |
| 95240 | 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d | ange.is.0.to.16777215..This.comm |
| 95260 | 61 6e 64 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 73 74 20 6f 66 20 4c 53 41 | and.sets.the.default.cost.of.LSA |
| 95280 | 73 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 4e 53 53 41 20 61 72 65 61 73 2e 20 54 68 65 20 63 | s.announced.to.NSSA.areas..The.c |
| 952a0 | 6f 73 74 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 | ost.range.is.0.to.16777215..This |
| 952c0 | 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 69 74 69 61 6c 20 64 65 6c 61 79 2c | .command.sets.the.initial.delay, |
| 952e0 | 20 74 68 65 20 69 6e 69 74 69 61 6c 2d 68 6f 6c 64 74 69 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 | .the.initial-holdtime.and.the.ma |
| 95300 | 78 69 6d 75 6d 2d 68 6f 6c 64 74 69 6d 65 20 62 65 74 77 65 65 6e 20 77 68 65 6e 20 53 50 46 20 | ximum-holdtime.between.when.SPF. |
| 95320 | 69 73 20 63 61 6c 63 75 6c 61 74 65 64 20 61 6e 64 20 74 68 65 20 65 76 65 6e 74 20 77 68 69 63 | is.calculated.and.the.event.whic |
| 95340 | 68 20 74 72 69 67 67 65 72 65 64 20 74 68 65 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 54 68 65 | h.triggered.the.calculation..The |
| 95360 | 20 74 69 6d 65 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 6d 69 6c 6c 69 73 65 63 | .times.are.specified.in.millisec |
| 95380 | 6f 6e 64 73 20 61 6e 64 20 6d 75 73 74 20 62 65 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 6f 66 | onds.and.must.be.in.the.range.of |
| 953a0 | 20 30 20 74 6f 20 36 30 30 30 30 30 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 3a 63 66 67 63 | .0.to.600000.milliseconds..:cfgc |
| 953c0 | 6d 64 3a 60 64 65 6c 61 79 60 20 73 65 74 73 20 74 68 65 20 69 6e 69 74 69 61 6c 20 53 50 46 20 | md:`delay`.sets.the.initial.SPF. |
| 953e0 | 73 63 68 65 64 75 6c 65 20 64 65 6c 61 79 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 | schedule.delay.in.milliseconds.. |
| 95400 | 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 30 30 20 6d 73 2e 20 3a 63 66 | The.default.value.is.200.ms..:cf |
| 95420 | 67 63 6d 64 3a 60 69 6e 69 74 69 61 6c 2d 68 6f 6c 64 74 69 6d 65 60 20 73 65 74 73 20 74 68 65 | gcmd:`initial-holdtime`.sets.the |
| 95440 | 20 6d 69 6e 69 6d 75 6d 20 68 6f 6c 64 20 74 69 6d 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 63 | .minimum.hold.time.between.two.c |
| 95460 | 6f 6e 73 65 63 75 74 69 76 65 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2e 20 54 68 65 | onsecutive.SPF.calculations..The |
| 95480 | 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 20 6d 73 2e 20 3a 63 66 67 63 | .default.value.is.1000.ms..:cfgc |
| 954a0 | 6d 64 3a 60 6d 61 78 2d 68 6f 6c 64 74 69 6d 65 60 20 73 65 74 73 20 74 68 65 20 6d 61 78 69 6d | md:`max-holdtime`.sets.the.maxim |
| 954c0 | 75 6d 20 77 61 69 74 20 74 69 6d 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 63 6f 6e 73 65 63 75 | um.wait.time.between.two.consecu |
| 954e0 | 74 69 76 65 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 64 65 66 61 75 | tive.SPF.calculations..The.defau |
| 95500 | 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | lt.value.is.10000.ms..This.comma |
| 95520 | 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 62 61 6e 64 77 69 64 74 68 20 | nd.sets.the.interface.bandwidth. |
| 95540 | 66 6f 72 20 63 6f 73 74 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2c 20 77 68 65 72 65 20 62 61 6e | for.cost.calculations,.where.ban |
| 95560 | 64 77 69 64 74 68 20 63 61 6e 20 62 65 20 69 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f | dwidth.can.be.in.range.from.1.to |
| 95580 | 20 31 30 30 30 30 30 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 4d 62 69 74 73 2f 73 2e 00 54 | .100000,.specified.in.Mbits/s..T |
| 955a0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 | his.command.sets.the.interface.t |
| 955c0 | 79 70 65 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 | ype:.This.command.sets.the.inter |
| 955e0 | 66 61 63 65 20 77 69 74 68 20 52 49 50 20 4d 44 35 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | face.with.RIP.MD5.authentication |
| 95600 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 73 65 74 73 20 4d 44 35 20 4b 65 79 | ..This.command.also.sets.MD5.Key |
| 95620 | 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 72 20 74 68 61 6e 20 31 | ..The.key.must.be.shorter.than.1 |
| 95640 | 36 20 63 68 61 72 61 63 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 | 6.characters..This.command.sets. |
| 95660 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 52 49 50 20 73 69 6d 70 6c 65 20 70 61 | the.interface.with.RIP.simple.pa |
| 95680 | 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 69 73 20 63 6f 6d 6d | ssword.authentication..This.comm |
| 956a0 | 61 6e 64 20 61 6c 73 6f 20 73 65 74 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 74 72 | and.also.sets.authentication.str |
| 956c0 | 69 6e 67 2e 20 54 68 65 20 73 74 72 69 6e 67 20 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 72 20 | ing..The.string.must.be.shorter. |
| 956e0 | 74 68 61 6e 20 31 36 20 63 68 61 72 61 63 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | than.16.characters..This.command |
| 95700 | 20 73 65 74 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 69 63 61 74 69 76 65 20 66 61 63 74 6f 72 20 | .sets.the.multiplicative.factor. |
| 95720 | 75 73 65 64 20 66 6f 72 20 64 69 76 65 72 73 69 74 79 20 72 6f 75 74 69 6e 67 2c 20 69 6e 20 75 | used.for.diversity.routing,.in.u |
| 95740 | 6e 69 74 73 20 6f 66 20 31 2f 32 35 36 3b 20 6c 6f 77 65 72 20 76 61 6c 75 65 73 20 63 61 75 73 | nits.of.1/256;.lower.values.caus |
| 95760 | 65 20 64 69 76 65 72 73 69 74 79 20 74 6f 20 70 6c 61 79 20 61 20 6d 6f 72 65 20 69 6d 70 6f 72 | e.diversity.to.play.a.more.impor |
| 95780 | 74 61 6e 74 20 72 6f 6c 65 20 69 6e 20 72 6f 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 2e 20 54 68 | tant.role.in.route.selection..Th |
| 957a0 | 65 20 64 65 66 61 75 6c 74 20 69 74 20 32 35 36 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 74 68 | e.default.it.256,.which.means.th |
| 957c0 | 61 74 20 64 69 76 65 72 73 69 74 79 20 70 6c 61 79 73 20 6e 6f 20 72 6f 6c 65 20 69 6e 20 72 6f | at.diversity.plays.no.role.in.ro |
| 957e0 | 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 3b 20 79 6f 75 20 77 69 6c 6c 20 70 72 6f 62 61 62 6c 79 | ute.selection;.you.will.probably |
| 95800 | 20 77 61 6e 74 20 74 6f 20 73 65 74 20 74 68 61 74 20 74 6f 20 31 32 38 20 6f 72 20 6c 65 73 73 | .want.to.set.that.to.128.or.less |
| 95820 | 20 6f 6e 20 6e 6f 64 65 73 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 69 6e 64 65 70 65 6e 64 | .on.nodes.with.multiple.independ |
| 95840 | 65 6e 74 20 72 61 64 69 6f 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 | ent.radios..This.command.sets.th |
| 95860 | 65 20 72 65 66 65 72 65 6e 63 65 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 63 6f 73 74 20 63 | e.reference.bandwidth.for.cost.c |
| 95880 | 61 6c 63 75 6c 61 74 69 6f 6e 73 2c 20 77 68 65 72 65 20 62 61 6e 64 77 69 64 74 68 20 63 61 6e | alculations,.where.bandwidth.can |
| 958a0 | 20 62 65 20 69 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 34 32 39 34 39 36 37 2c 20 | .be.in.range.from.1.to.4294967,. |
| 958c0 | 73 70 65 63 69 66 69 65 64 20 69 6e 20 4d 62 69 74 73 2f 73 2e 20 54 68 65 20 64 65 66 61 75 6c | specified.in.Mbits/s..The.defaul |
| 958e0 | 74 20 69 73 20 31 30 30 4d 62 69 74 2f 73 20 28 69 2e 65 2e 20 61 20 6c 69 6e 6b 20 6f 66 20 62 | t.is.100Mbit/s.(i.e..a.link.of.b |
| 95900 | 61 6e 64 77 69 64 74 68 20 31 30 30 4d 62 69 74 2f 73 20 6f 72 20 68 69 67 68 65 72 20 77 69 6c | andwidth.100Mbit/s.or.higher.wil |
| 95920 | 6c 20 68 61 76 65 20 61 20 63 6f 73 74 20 6f 66 20 31 2e 20 43 6f 73 74 20 6f 66 20 6c 6f 77 65 | l.have.a.cost.of.1..Cost.of.lowe |
| 95940 | 72 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6e 6b 73 20 77 69 6c 6c 20 62 65 20 73 63 61 6c 65 64 | r.bandwidth.links.will.be.scaled |
| 95960 | 20 77 69 74 68 20 72 65 66 65 72 65 6e 63 65 20 74 6f 20 74 68 69 73 20 63 6f 73 74 29 2e 00 54 | .with.reference.to.this.cost)..T |
| 95980 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6f | his.command.sets.the.router-ID.o |
| 959a0 | 66 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 72 6f 75 74 65 72 2d 49 | f.the.OSPF.process..The.router-I |
| 959c0 | 44 20 6d 61 79 20 62 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f | D.may.be.an.IP.address.of.the.ro |
| 959e0 | 75 74 65 72 2c 20 62 75 74 20 6e 65 65 64 20 6e 6f 74 20 62 65 20 e2 80 93 20 69 74 20 63 61 6e | uter,.but.need.not.be.....it.can |
| 95a00 | 20 62 65 20 61 6e 79 20 61 72 62 69 74 72 61 72 79 20 33 32 62 69 74 20 6e 75 6d 62 65 72 2e 20 | .be.any.arbitrary.32bit.number.. |
| 95a20 | 48 6f 77 65 76 65 72 20 69 74 20 4d 55 53 54 20 62 65 20 75 6e 69 71 75 65 20 77 69 74 68 69 6e | However.it.MUST.be.unique.within |
| 95a40 | 20 74 68 65 20 65 6e 74 69 72 65 20 4f 53 50 46 20 64 6f 6d 61 69 6e 20 74 6f 20 74 68 65 20 4f | .the.entire.OSPF.domain.to.the.O |
| 95a60 | 53 50 46 20 73 70 65 61 6b 65 72 20 e2 80 93 20 62 61 64 20 74 68 69 6e 67 73 20 77 69 6c 6c 20 | SPF.speaker.....bad.things.will. |
| 95a80 | 68 61 70 70 65 6e 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 4f 53 50 46 20 73 70 65 61 6b 65 72 73 | happen.if.multiple.OSPF.speakers |
| 95aa0 | 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 72 6f | .are.configured.with.the.same.ro |
| 95ac0 | 75 74 65 72 2d 49 44 21 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 72 | uter-ID!.This.command.sets.the.r |
| 95ae0 | 6f 75 74 65 72 2d 49 44 20 6f 66 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 2e 20 | outer-ID.of.the.OSPFv3.process.. |
| 95b00 | 54 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6d 61 79 20 62 65 20 61 6e 20 49 50 20 61 64 64 72 65 | The.router-ID.may.be.an.IP.addre |
| 95b20 | 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 75 74 20 6e 65 65 64 20 6e 6f 74 20 62 | ss.of.the.router,.but.need.not.b |
| 95b40 | 65 20 e2 80 93 20 69 74 20 63 61 6e 20 62 65 20 61 6e 79 20 61 72 62 69 74 72 61 72 79 20 33 32 | e.....it.can.be.any.arbitrary.32 |
| 95b60 | 62 69 74 20 6e 75 6d 62 65 72 2e 20 48 6f 77 65 76 65 72 20 69 74 20 4d 55 53 54 20 62 65 20 75 | bit.number..However.it.MUST.be.u |
| 95b80 | 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 20 65 6e 74 69 72 65 20 4f 53 50 46 76 33 20 64 | nique.within.the.entire.OSPFv3.d |
| 95ba0 | 6f 6d 61 69 6e 20 74 6f 20 74 68 65 20 4f 53 50 46 76 33 20 73 70 65 61 6b 65 72 20 e2 80 93 20 | omain.to.the.OSPFv3.speaker..... |
| 95bc0 | 62 61 64 20 74 68 69 6e 67 73 20 77 69 6c 6c 20 68 61 70 70 65 6e 20 69 66 20 6d 75 6c 74 69 70 | bad.things.will.happen.if.multip |
| 95be0 | 6c 65 20 4f 53 50 46 76 33 20 73 70 65 61 6b 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 | le.OSPFv3.speakers.are.configure |
| 95c00 | 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 72 6f 75 74 65 72 2d 49 44 21 00 54 68 69 73 20 | d.with.the.same.router-ID!.This. |
| 95c20 | 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 | command.sets.the.specified.inter |
| 95c40 | 66 61 63 65 20 74 6f 20 70 61 73 73 69 76 65 20 6d 6f 64 65 2e 20 4f 6e 20 70 61 73 73 69 76 65 | face.to.passive.mode..On.passive |
| 95c60 | 20 6d 6f 64 65 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6c 6c 20 72 65 63 65 69 76 69 6e 67 20 70 | .mode.interface,.all.receiving.p |
| 95c80 | 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 61 73 20 6e 6f 72 6d 61 6c 20 61 | ackets.are.processed.as.normal.a |
| 95ca0 | 6e 64 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 73 65 6e 64 20 65 69 74 68 65 72 20 6d 75 6c | nd.VyOS.does.not.send.either.mul |
| 95cc0 | 74 69 63 61 73 74 20 6f 72 20 75 6e 69 63 61 73 74 20 52 49 50 20 70 61 63 6b 65 74 73 20 65 78 | ticast.or.unicast.RIP.packets.ex |
| 95ce0 | 63 65 70 74 20 74 6f 20 52 49 50 20 6e 65 69 67 68 62 6f 72 73 20 73 70 65 63 69 66 69 65 64 20 | cept.to.RIP.neighbors.specified. |
| 95d00 | 77 69 74 68 20 6e 65 69 67 68 62 6f 72 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d | with.neighbor.command..This.comm |
| 95d20 | 61 6e 64 20 73 68 6f 75 6c 64 20 4e 4f 54 20 62 65 20 73 65 74 20 6e 6f 72 6d 61 6c 6c 79 2e 00 | and.should.NOT.be.set.normally.. |
| 95d40 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 77 73 20 62 6f 74 68 20 73 74 61 74 75 73 20 61 | This.command.shows.both.status.a |
| 95d60 | 6e 64 20 73 74 61 74 69 73 74 69 63 73 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 77 | nd.statistics.on.the.specified.w |
| 95d80 | 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 77 69 72 65 6c 65 73 73 20 | ireless.interface..The.wireless. |
| 95da0 | 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 61 6e 20 72 61 6e 67 65 20 66 | interface.identifier.can.range.f |
| 95dc0 | 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | rom.wlan0.to.wlan999..This.comma |
| 95de0 | 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 42 47 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e | nd.specifies.a.BGP.confederation |
| 95e00 | 20 69 64 65 6e 74 69 66 69 65 72 2e 20 3c 61 73 6e 3e 20 69 73 20 74 68 65 20 6e 75 6d 62 65 72 | .identifier..<asn>.is.the.number |
| 95e20 | 20 6f 66 20 74 68 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 74 68 61 74 20 69 | .of.the.autonomous.system.that.i |
| 95e40 | 6e 74 65 72 6e 61 6c 6c 79 20 69 6e 63 6c 75 64 65 73 20 6d 75 6c 74 69 70 6c 65 20 73 75 62 2d | nternally.includes.multiple.sub- |
| 95e60 | 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 73 20 28 61 20 63 6f 6e 66 65 64 65 72 61 74 | autonomous.systems.(a.confederat |
| 95e80 | 69 6f 6e 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 42 | ion)..This.command.specifies.a.B |
| 95ea0 | 61 62 65 6c 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 62 79 20 69 6e 74 65 72 66 | abel.enabled.interface.by.interf |
| 95ec0 | 61 63 65 20 6e 61 6d 65 2e 20 42 6f 74 68 20 74 68 65 20 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 | ace.name..Both.the.sending.and.r |
| 95ee0 | 65 63 65 69 76 69 6e 67 20 6f 66 20 42 61 62 65 6c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 | eceiving.of.Babel.packets.will.b |
| 95f00 | 65 20 65 6e 61 62 6c 65 64 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 63 69 | e.enabled.on.the.interface.speci |
| 95f20 | 66 69 65 64 20 69 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | fied.in.this.command..This.comma |
| 95f40 | 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 4d 44 35 20 70 61 73 73 77 6f 72 64 20 74 6f 20 62 | nd.specifies.a.MD5.password.to.b |
| 95f60 | 65 20 75 73 65 64 20 77 69 74 68 20 74 68 65 20 74 63 70 20 73 6f 63 6b 65 74 20 74 68 61 74 20 | e.used.with.the.tcp.socket.that. |
| 95f80 | 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 | is.being.used.to.connect.to.the. |
| 95fa0 | 72 65 6d 6f 74 65 20 70 65 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 | remote.peer..This.command.specif |
| 95fc0 | 69 65 73 20 61 20 52 49 50 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 62 79 20 69 | ies.a.RIP.enabled.interface.by.i |
| 95fe0 | 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2e 20 42 6f 74 68 20 74 68 65 20 73 65 6e 64 69 6e 67 20 | nterface.name..Both.the.sending. |
| 96000 | 61 6e 64 20 72 65 63 65 69 76 69 6e 67 20 6f 66 20 52 49 50 20 70 61 63 6b 65 74 73 20 77 69 6c | and.receiving.of.RIP.packets.wil |
| 96020 | 6c 20 62 65 20 65 6e 61 62 6c 65 64 20 6f 6e 20 74 68 65 20 70 6f 72 74 20 73 70 65 63 69 66 69 | l.be.enabled.on.the.port.specifi |
| 96040 | 65 64 20 69 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ed.in.this.command..This.command |
| 96060 | 20 73 70 65 63 69 66 69 65 73 20 61 20 52 49 50 20 6e 65 69 67 68 62 6f 72 2e 20 57 68 65 6e 20 | .specifies.a.RIP.neighbor..When. |
| 96080 | 61 20 6e 65 69 67 68 62 6f 72 20 64 6f 65 73 6e e2 80 99 74 20 75 6e 64 65 72 73 74 61 6e 64 20 | a.neighbor.doesn...t.understand. |
| 960a0 | 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 | multicast,.this.command.is.used. |
| 960c0 | 74 6f 20 73 70 65 63 69 66 79 20 6e 65 69 67 68 62 6f 72 73 2e 20 49 6e 20 73 6f 6d 65 20 63 61 | to.specify.neighbors..In.some.ca |
| 960e0 | 73 65 73 2c 20 6e 6f 74 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 77 69 6c 6c 20 62 65 20 61 62 6c | ses,.not.all.routers.will.be.abl |
| 96100 | 65 20 74 6f 20 75 6e 64 65 72 73 74 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 69 6e 67 2c 20 77 68 | e.to.understand.multicasting,.wh |
| 96120 | 65 72 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 73 65 6e 74 20 74 6f 20 61 20 6e 65 74 77 6f 72 | ere.packets.are.sent.to.a.networ |
| 96140 | 6b 20 6f 72 20 61 20 67 72 6f 75 70 20 6f 66 20 61 64 64 72 65 73 73 65 73 2e 20 49 6e 20 61 20 | k.or.a.group.of.addresses..In.a. |
| 96160 | 73 69 74 75 61 74 69 6f 6e 20 77 68 65 72 65 20 61 20 6e 65 69 67 68 62 6f 72 20 63 61 6e 6e 6f | situation.where.a.neighbor.canno |
| 96180 | 74 20 70 72 6f 63 65 73 73 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 2c 20 69 74 20 | t.process.multicast.packets,.it. |
| 961a0 | 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 64 69 72 65 | is.necessary.to.establish.a.dire |
| 961c0 | 63 74 20 6c 69 6e 6b 20 62 65 74 77 65 65 6e 20 72 6f 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f | ct.link.between.routers..This.co |
| 961e0 | 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 64 65 66 61 75 6c 74 20 77 65 69 67 68 74 | mmand.specifies.a.default.weight |
| 96200 | 20 76 61 6c 75 65 20 66 6f 72 20 74 68 65 20 6e 65 69 67 68 62 6f 72 e2 80 99 73 20 72 6f 75 74 | .value.for.the.neighbor...s.rout |
| 96220 | 65 73 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 | es..The.number.range.is.1.to.655 |
| 96240 | 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 6d 61 78 | 35..This.command.specifies.a.max |
| 96260 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 72 65 66 69 78 65 73 20 77 65 20 63 61 6e 20 72 | imum.number.of.prefixes.we.can.r |
| 96280 | 65 63 65 69 76 65 20 66 72 6f 6d 20 61 20 67 69 76 65 6e 20 70 65 65 72 2e 20 49 66 20 74 68 69 | eceive.from.a.given.peer..If.thi |
| 962a0 | 73 20 6e 75 6d 62 65 72 20 69 73 20 65 78 63 65 65 64 65 64 2c 20 74 68 65 20 42 47 50 20 73 65 | s.number.is.exceeded,.the.BGP.se |
| 962c0 | 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 65 73 74 72 6f 79 65 64 2e 20 54 68 65 20 6e 75 6d | ssion.will.be.destroyed..The.num |
| 962e0 | 62 65 72 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 00 54 68 | ber.range.is.1.to.4294967295..Th |
| 96300 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 | is.command.specifies.all.interfa |
| 96320 | 63 65 73 20 61 73 20 70 61 73 73 69 76 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 42 65 63 61 75 | ces.as.passive.by.default..Becau |
| 96340 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 73 20 74 68 65 20 63 6f 6e 66 | se.this.command.changes.the.conf |
| 96360 | 69 67 75 72 61 74 69 6f 6e 20 6c 6f 67 69 63 20 74 6f 20 61 20 64 65 66 61 75 6c 74 20 70 61 73 | iguration.logic.to.a.default.pas |
| 96380 | 73 69 76 65 3b 20 74 68 65 72 65 66 6f 72 65 2c 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 65 72 | sive;.therefore,.interfaces.wher |
| 963a0 | 65 20 72 6f 75 74 65 72 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 65 78 70 65 63 74 65 | e.router.adjacencies.are.expecte |
| 963c0 | 64 20 6e 65 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 | d.need.to.be.configured.with.the |
| 963e0 | 20 3a 63 66 67 63 6d 64 3a 60 70 61 73 73 69 76 65 2d 69 6e 74 65 72 66 61 63 65 2d 65 78 63 6c | .:cfgcmd:`passive-interface-excl |
| 96400 | 75 64 65 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 | ude`.command..This.command.speci |
| 96420 | 66 69 65 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 70 61 73 73 69 76 65 20 6d | fies.all.interfaces.to.passive.m |
| 96440 | 6f 64 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 | ode..This.command.specifies.an.a |
| 96460 | 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 72 6f 76 69 64 65 73 20 74 68 | ggregate.address.and.provides.th |
| 96480 | 61 74 20 6c 6f 6e 67 65 72 2d 70 72 65 66 69 78 65 73 20 69 6e 73 69 64 65 20 6f 66 20 74 68 65 | at.longer-prefixes.inside.of.the |
| 964a0 | 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 61 72 65 20 73 75 70 70 72 65 73 73 65 | .aggregate.address.are.suppresse |
| 964c0 | 64 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 42 47 50 20 75 70 64 61 74 65 73 20 6f 75 74 | d.before.sending.BGP.updates.out |
| 964e0 | 20 74 6f 20 70 65 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 | .to.peers..This.command.specifie |
| 96500 | 73 20 61 6e 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 77 69 74 68 20 61 20 6d 61 | s.an.aggregate.address.with.a.ma |
| 96520 | 74 68 65 6d 61 74 69 63 61 6c 20 73 65 74 20 6f 66 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 | thematical.set.of.autonomous.sys |
| 96540 | 74 65 6d 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 72 69 7a 65 73 20 74 68 | tems..This.command.summarizes.th |
| 96560 | 65 20 41 53 5f 50 41 54 48 20 61 74 74 72 69 62 75 74 65 73 20 6f 66 20 61 6c 6c 20 74 68 65 20 | e.AS_PATH.attributes.of.all.the. |
| 96580 | 69 6e 64 69 76 69 64 75 61 6c 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | individual.routes..This.command. |
| 965a0 | 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 2e 20 | specifies.an.aggregate.address.. |
| 965c0 | 54 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 61 6c 73 6f 20 61 6e 6e 6f 75 6e 63 65 20 6c 6f | The.router.will.also.announce.lo |
| 965e0 | 6e 67 65 72 2d 70 72 65 66 69 78 65 73 20 69 6e 73 69 64 65 20 6f 66 20 74 68 65 20 61 67 67 72 | nger-prefixes.inside.of.the.aggr |
| 96600 | 65 67 61 74 65 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 | egate.address..This.command.spec |
| 96620 | 69 66 69 65 73 20 61 74 74 72 69 62 75 74 65 73 20 74 6f 20 62 65 20 6c 65 66 74 20 75 6e 63 68 | ifies.attributes.to.be.left.unch |
| 96640 | 61 6e 67 65 64 20 66 6f 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 73 65 6e 74 20 74 6f | anged.for.advertisements.sent.to |
| 96660 | 20 61 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 00 54 68 69 73 20 63 6f 6d 6d | .a.peer.or.peer.group..This.comm |
| 96680 | 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 63 69 72 63 75 69 74 20 74 79 70 65 20 66 6f 72 20 69 | and.specifies.circuit.type.for.i |
| 966a0 | 6e 74 65 72 66 61 63 65 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 | nterface:.This.command.specifies |
| 966c0 | 20 63 6c 75 73 74 65 72 20 49 44 20 77 68 69 63 68 20 69 64 65 6e 74 69 66 69 65 73 20 61 20 63 | .cluster.ID.which.identifies.a.c |
| 966e0 | 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 61 6e | ollection.of.route.reflectors.an |
| 96700 | 64 20 74 68 65 69 72 20 63 6c 69 65 6e 74 73 2c 20 61 6e 64 20 69 73 20 75 73 65 64 20 62 79 20 | d.their.clients,.and.is.used.by. |
| 96720 | 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 74 6f 20 61 76 6f 69 64 20 6c 6f 6f 70 69 6e | route.reflectors.to.avoid.loopin |
| 96740 | 67 2e 20 42 79 20 64 65 66 61 75 6c 74 20 63 6c 75 73 74 65 72 20 49 44 20 69 73 20 73 65 74 20 | g..By.default.cluster.ID.is.set. |
| 96760 | 74 6f 20 74 68 65 20 42 47 50 20 72 6f 75 74 65 72 20 69 64 20 76 61 6c 75 65 2c 20 62 75 74 20 | to.the.BGP.router.id.value,.but. |
| 96780 | 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 33 32 2d 62 69 | can.be.set.to.an.arbitrary.32-bi |
| 967a0 | 74 20 76 61 6c 75 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | t.value..This.command.specifies. |
| 967c0 | 68 6f 6c 64 2d 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 74 69 6d 65 72 20 | hold-time.in.seconds..The.timer. |
| 967e0 | 72 61 6e 67 65 20 69 73 20 34 20 74 6f 20 36 35 35 33 35 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | range.is.4.to.65535..The.default |
| 96800 | 20 76 61 6c 75 65 20 69 73 20 31 38 30 20 73 65 63 6f 6e 64 2e 20 49 66 20 79 6f 75 20 73 65 74 | .value.is.180.second..If.you.set |
| 96820 | 20 76 61 6c 75 65 20 74 6f 20 30 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 68 6f 6c 64 20 72 | .value.to.0.VyOS.will.not.hold.r |
| 96840 | 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 69 6e | outes..This.command.specifies.in |
| 96860 | 74 65 72 66 61 63 65 20 61 73 20 70 61 73 73 69 76 65 2e 20 50 61 73 73 69 76 65 20 69 6e 74 65 | terface.as.passive..Passive.inte |
| 96880 | 72 66 61 63 65 20 61 64 76 65 72 74 69 73 65 73 20 69 74 73 20 61 64 64 72 65 73 73 2c 20 62 75 | rface.advertises.its.address,.bu |
| 968a0 | 74 20 64 6f 65 73 20 6e 6f 74 20 72 75 6e 20 74 68 65 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c | t.does.not.run.the.OSPF.protocol |
| 968c0 | 20 28 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 6e 6f 74 20 66 6f 72 6d 65 64 20 61 6e 64 | .(adjacencies.are.not.formed.and |
| 968e0 | 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 20 6e 6f 74 20 67 65 6e 65 72 61 74 65 64 | .hello.packets.are.not.generated |
| 96900 | 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6b 65 65 70 2d 61 | )..This.command.specifies.keep-a |
| 96920 | 6c 69 76 65 20 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 74 69 6d 65 72 20 | live.time.in.seconds..The.timer. |
| 96940 | 63 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 34 20 74 6f 20 36 35 35 33 35 2e 20 54 68 65 20 64 | can.range.from.4.to.65535..The.d |
| 96960 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 20 73 65 63 6f 6e 64 2e 00 54 68 69 73 20 | efault.value.is.60.second..This. |
| 96980 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 28 4d 45 44 29 20 66 | command.specifies.metric.(MED).f |
| 969a0 | 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 | or.redistributed.routes..The.met |
| 969c0 | 72 69 63 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 54 68 | ric.range.is.0.to.4294967295..Th |
| 969e0 | 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 | ere.are.six.modes.available.for. |
| 96a00 | 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c | route.source:.connected,.kernel, |
| 96a20 | 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 20 | .ospf,.rip,.static,.table..This. |
| 96a40 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 66 6f 72 20 72 65 64 | command.specifies.metric.for.red |
| 96a60 | 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e | istributed.routes.from.the.given |
| 96a80 | 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f | .route.source..There.are.five.mo |
| 96aa0 | 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 | des.available.for.route.source:. |
| 96ac0 | 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 73 74 | bgp,.connected,.kernel,.ospf,.st |
| 96ae0 | 61 74 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 | atic..The.metric.range.is.1.to.1 |
| 96b00 | 36 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 | 6..This.command.specifies.metric |
| 96b20 | 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 | .for.redistributed.routes.from.t |
| 96b40 | 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 | he.given.route.source..There.are |
| 96b60 | 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 | .five.modes.available.for.route. |
| 96b80 | 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 | source:.bgp,.connected,.kernel,. |
| 96ba0 | 72 69 70 2c 20 73 74 61 74 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 | rip,.static..The.metric.range.is |
| 96bc0 | 20 31 20 74 6f 20 31 36 37 37 37 32 31 34 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | .1.to.16777214..This.command.spe |
| 96be0 | 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 | cifies.metric.for.redistributed. |
| 96c00 | 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 | routes.from.the.given.route.sour |
| 96c20 | 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c | ce..There.are.six.modes.availabl |
| 96c40 | 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 | e.for.route.source:.bgp,.connect |
| 96c60 | 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 20 54 | ed,.kernel,.ospf,.rip,.static..T |
| 96c80 | 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 35 | he.metric.range.is.1.to.16777215 |
| 96ca0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 | ..This.command.specifies.metric. |
| 96cc0 | 74 79 70 65 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 44 | type.for.redistributed.routes..D |
| 96ce0 | 69 66 66 65 72 65 6e 63 65 20 62 65 74 77 65 65 6e 20 74 77 6f 20 6d 65 74 72 69 63 20 74 79 70 | ifference.between.two.metric.typ |
| 96d00 | 65 73 20 74 68 61 74 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 20 69 73 20 61 20 6d 65 74 72 69 | es.that.metric.type.1.is.a.metri |
| 96d20 | 63 20 77 68 69 63 68 20 69 73 20 22 63 6f 6d 6d 65 6e 73 75 72 61 62 6c 65 22 20 77 69 74 68 20 | c.which.is."commensurable".with. |
| 96d40 | 69 6e 6e 65 72 20 4f 53 50 46 20 6c 69 6e 6b 73 2e 20 57 68 65 6e 20 63 61 6c 63 75 6c 61 74 69 | inner.OSPF.links..When.calculati |
| 96d60 | 6e 67 20 61 20 6d 65 74 72 69 63 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 64 65 73 74 | ng.a.metric.to.the.external.dest |
| 96d80 | 69 6e 61 74 69 6f 6e 2c 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 6d 65 74 72 69 63 20 69 73 | ination,.the.full.path.metric.is |
| 96da0 | 20 63 61 6c 63 75 6c 61 74 65 64 20 61 73 20 61 20 6d 65 74 72 69 63 20 73 75 6d 20 70 61 74 68 | .calculated.as.a.metric.sum.path |
| 96dc0 | 20 6f 66 20 61 20 72 6f 75 74 65 72 20 77 68 69 63 68 20 68 61 64 20 61 64 76 65 72 74 69 73 65 | .of.a.router.which.had.advertise |
| 96de0 | 64 20 74 68 69 73 20 6c 69 6e 6b 20 70 6c 75 73 20 74 68 65 20 6c 69 6e 6b 20 6d 65 74 72 69 63 | d.this.link.plus.the.link.metric |
| 96e00 | 2e 20 54 68 75 73 2c 20 61 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 65 61 73 74 20 73 | ..Thus,.a.route.with.the.least.s |
| 96e20 | 75 6d 6d 61 72 79 20 6d 65 74 72 69 63 20 77 69 6c 6c 20 62 65 20 73 65 6c 65 63 74 65 64 2e 20 | ummary.metric.will.be.selected.. |
| 96e40 | 49 66 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 69 73 20 61 64 76 65 72 74 69 73 65 64 20 77 | If.external.link.is.advertised.w |
| 96e60 | 69 74 68 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 20 74 68 65 20 70 61 74 68 20 69 73 20 73 65 | ith.metric.type.2.the.path.is.se |
| 96e80 | 6c 65 63 74 65 64 20 77 68 69 63 68 20 6c 69 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f | lected.which.lies.through.the.ro |
| 96ea0 | 75 74 65 72 20 77 68 69 63 68 20 61 64 76 65 72 74 69 73 65 64 20 74 68 69 73 20 6c 69 6e 6b 20 | uter.which.advertised.this.link. |
| 96ec0 | 77 69 74 68 20 74 68 65 20 6c 65 61 73 74 20 6d 65 74 72 69 63 20 64 65 73 70 69 74 65 20 6f 66 | with.the.least.metric.despite.of |
| 96ee0 | 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 69 6e 74 65 72 6e 61 6c 20 70 61 74 68 20 74 6f 20 | .the.fact.that.internal.path.to. |
| 96f00 | 74 68 69 73 20 72 6f 75 74 65 72 20 69 73 20 6c 6f 6e 67 65 72 20 28 77 69 74 68 20 6d 6f 72 65 | this.router.is.longer.(with.more |
| 96f20 | 20 63 6f 73 74 29 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 74 77 6f 20 72 6f 75 74 65 72 73 20 | .cost)..However,.if.two.routers. |
| 96f40 | 61 64 76 65 72 74 69 73 65 64 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 61 6e 64 20 | advertised.an.external.link.and. |
| 96f60 | 77 69 74 68 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 20 74 68 65 20 70 72 65 66 65 72 65 6e 63 | with.metric.type.2.the.preferenc |
| 96f80 | 65 20 69 73 20 67 69 76 65 6e 20 74 6f 20 74 68 65 20 70 61 74 68 20 77 68 69 63 68 20 6c 69 65 | e.is.given.to.the.path.which.lie |
| 96fa0 | 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 61 20 73 68 6f 72 | s.through.the.router.with.a.shor |
| 96fc0 | 74 65 72 20 69 6e 74 65 72 6e 61 6c 20 70 61 74 68 2e 20 49 66 20 74 77 6f 20 64 69 66 66 65 72 | ter.internal.path..If.two.differ |
| 96fe0 | 65 6e 74 20 72 6f 75 74 65 72 73 20 61 64 76 65 72 74 69 73 65 64 20 74 77 6f 20 6c 69 6e 6b 73 | ent.routers.advertised.two.links |
| 97000 | 20 74 6f 20 74 68 65 20 73 61 6d 65 20 65 78 74 65 72 6e 61 6c 20 64 65 73 74 69 6d 61 74 69 6f | .to.the.same.external.destimatio |
| 97020 | 6e 20 62 75 74 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 6d 65 74 72 69 63 20 74 79 70 65 | n.but.with.different.metric.type |
| 97040 | 2c 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 20 69 73 20 70 72 65 66 65 72 72 65 64 2e 20 49 66 | ,.metric.type.1.is.preferred..If |
| 97060 | 20 74 79 70 65 20 6f 66 20 61 20 6d 65 74 72 69 63 20 6c 65 66 74 20 75 6e 64 65 66 69 6e 65 64 | .type.of.a.metric.left.undefined |
| 97080 | 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 63 6f 6e 73 69 64 65 72 20 74 68 65 73 65 20 | .the.router.will.consider.these. |
| 970a0 | 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 73 20 74 6f 20 68 61 76 65 20 61 20 64 65 66 61 75 6c 74 | external.links.to.have.a.default |
| 970c0 | 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | .metric.type.2..This.command.spe |
| 970e0 | 63 69 66 69 65 73 20 6e 65 74 77 6f 72 6b 20 74 79 70 65 20 74 6f 20 50 6f 69 6e 74 2d 74 6f 2d | cifies.network.type.to.Point-to- |
| 97100 | 50 6f 69 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 6e 65 74 77 6f 72 6b 20 74 79 70 65 20 | Point..The.default.network.type. |
| 97120 | 69 73 20 62 72 6f 61 64 63 61 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 | is.broadcast..This.command.speci |
| 97140 | 66 69 65 73 20 74 68 61 74 20 42 47 50 20 63 6f 6e 73 69 64 65 72 73 20 74 68 65 20 4d 45 44 20 | fies.that.BGP.considers.the.MED. |
| 97160 | 77 68 65 6e 20 63 6f 6d 70 61 72 69 6e 67 20 72 6f 75 74 65 73 20 6f 72 69 67 69 6e 61 74 65 64 | when.comparing.routes.originated |
| 97180 | 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 73 75 62 2d 41 53 73 20 77 69 74 68 69 6e 20 74 | .from.different.sub-ASs.within.t |
| 971a0 | 68 65 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 74 6f 20 77 68 69 63 68 20 74 68 69 73 20 42 | he.confederation.to.which.this.B |
| 971c0 | 47 50 20 73 70 65 61 6b 65 72 20 62 65 6c 6f 6e 67 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 | GP.speaker.belongs..The.default. |
| 971e0 | 73 74 61 74 65 2c 20 77 68 65 72 65 20 74 68 65 20 4d 45 44 20 61 74 74 72 69 62 75 74 65 20 69 | state,.where.the.MED.attribute.i |
| 97200 | 73 20 6e 6f 74 20 63 6f 6e 73 69 64 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | s.not.considered..This.command.s |
| 97220 | 70 65 63 69 66 69 65 73 20 74 68 61 74 20 42 47 50 20 64 65 63 69 73 69 6f 6e 20 70 72 6f 63 65 | pecifies.that.BGP.decision.proce |
| 97240 | 73 73 20 73 68 6f 75 6c 64 20 63 6f 6e 73 69 64 65 72 20 70 61 74 68 73 20 6f 66 20 65 71 75 61 | ss.should.consider.paths.of.equa |
| 97260 | 6c 20 41 53 5f 50 41 54 48 20 6c 65 6e 67 74 68 20 63 61 6e 64 69 64 61 74 65 73 20 66 6f 72 20 | l.AS_PATH.length.candidates.for. |
| 97280 | 6d 75 6c 74 69 70 61 74 68 20 63 6f 6d 70 75 74 61 74 69 6f 6e 2e 20 57 69 74 68 6f 75 74 20 74 | multipath.computation..Without.t |
| 972a0 | 68 65 20 6b 6e 6f 62 2c 20 74 68 65 20 65 6e 74 69 72 65 20 41 53 5f 50 41 54 48 20 6d 75 73 74 | he.knob,.the.entire.AS_PATH.must |
| 972c0 | 20 6d 61 74 63 68 20 66 6f 72 20 6d 75 6c 74 69 70 61 74 68 20 63 6f 6d 70 75 74 61 74 69 6f 6e | .match.for.multipath.computation |
| 972e0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 61 20 | ..This.command.specifies.that.a. |
| 97300 | 72 6f 75 74 65 20 77 69 74 68 20 61 20 4d 45 44 20 69 73 20 61 6c 77 61 79 73 20 63 6f 6e 73 69 | route.with.a.MED.is.always.consi |
| 97320 | 64 65 72 65 64 20 74 6f 20 62 65 20 62 65 74 74 65 72 20 74 68 61 6e 20 61 20 72 6f 75 74 65 20 | dered.to.be.better.than.a.route. |
| 97340 | 77 69 74 68 6f 75 74 20 61 20 4d 45 44 20 62 79 20 63 61 75 73 69 6e 67 20 74 68 65 20 6d 69 73 | without.a.MED.by.causing.the.mis |
| 97360 | 73 69 6e 67 20 4d 45 44 20 61 74 74 72 69 62 75 74 65 20 74 6f 20 68 61 76 65 20 61 20 76 61 6c | sing.MED.attribute.to.have.a.val |
| 97380 | 75 65 20 6f 66 20 69 6e 66 69 6e 69 74 79 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 73 74 61 74 | ue.of.infinity..The.default.stat |
| 973a0 | 65 2c 20 77 68 65 72 65 20 74 68 65 20 6d 69 73 73 69 6e 67 20 4d 45 44 20 61 74 74 72 69 62 75 | e,.where.the.missing.MED.attribu |
| 973c0 | 74 65 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 68 61 76 65 20 61 20 76 61 6c 75 65 | te.is.considered.to.have.a.value |
| 973e0 | 20 6f 66 20 7a 65 72 6f 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 | .of.zero..This.command.specifies |
| 97400 | 20 74 68 61 74 20 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f | .that.route.updates.received.fro |
| 97420 | 6d 20 74 68 69 73 20 6e 65 69 67 68 62 6f 72 20 77 69 6c 6c 20 62 65 20 73 74 6f 72 65 64 20 75 | m.this.neighbor.will.be.stored.u |
| 97440 | 6e 6d 6f 64 69 66 69 65 64 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 69 6e 62 | nmodified,.regardless.of.the.inb |
| 97460 | 6f 75 6e 64 20 70 6f 6c 69 63 79 2e 20 57 68 65 6e 20 69 6e 62 6f 75 6e 64 20 73 6f 66 74 20 72 | ound.policy..When.inbound.soft.r |
| 97480 | 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 73 | econfiguration.is.enabled,.the.s |
| 974a0 | 74 6f 72 65 64 20 75 70 64 61 74 65 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 79 20 74 | tored.updates.are.processed.by.t |
| 974c0 | 68 65 20 6e 65 77 20 70 6f 6c 69 63 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 63 | he.new.policy.configuration.to.c |
| 974e0 | 72 65 61 74 65 20 6e 65 77 20 69 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 73 2e 00 54 68 69 73 20 | reate.new.inbound.updates..This. |
| 97500 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 73 69 6d 70 6c 65 20 70 61 | command.specifies.that.simple.pa |
| 97520 | 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 | ssword.authentication.should.be. |
| 97540 | 75 73 65 64 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 61 72 65 61 2e 20 54 68 65 20 70 61 73 | used.for.the.given.area..The.pas |
| 97560 | 73 77 6f 72 64 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e | sword.must.also.be.configured.on |
| 97580 | 20 61 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 00 54 68 69 73 20 63 6f 6d | .a.per-interface.basis..This.com |
| 975a0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 74 68 65 20 63 6f 6d 6d 75 6e 69 74 | mand.specifies.that.the.communit |
| 975c0 | 79 20 61 74 74 72 69 62 75 74 65 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 73 65 6e 74 20 69 | y.attribute.should.not.be.sent.i |
| 975e0 | 6e 20 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 74 6f 20 61 20 70 65 65 72 2e 20 42 79 20 64 65 | n.route.updates.to.a.peer..By.de |
| 97600 | 66 61 75 6c 74 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 69 73 20 73 65 6e | fault.community.attribute.is.sen |
| 97620 | 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 74 | t..This.command.specifies.that.t |
| 97640 | 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 70 61 74 68 20 | he.length.of.confederation.path. |
| 97660 | 73 65 74 73 20 61 6e 64 20 73 65 71 75 65 6e 63 65 73 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b | sets.and.sequences.should.be.tak |
| 97680 | 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 64 75 72 69 6e 67 20 74 68 65 20 42 47 50 20 62 | en.into.account.during.the.BGP.b |
| 976a0 | 65 73 74 20 70 61 74 68 20 64 65 63 69 73 69 6f 6e 20 70 72 6f 63 65 73 73 2e 00 54 68 69 73 20 | est.path.decision.process..This. |
| 976c0 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 | command.specifies.the.IP.address |
| 976e0 | 20 6f 66 20 74 68 65 20 6e 65 69 67 68 62 6f 72 69 6e 67 20 64 65 76 69 63 65 2e 00 54 68 69 73 | .of.the.neighboring.device..This |
| 97700 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 4f 53 50 46 20 65 6e 61 62 | .command.specifies.the.OSPF.enab |
| 97720 | 6c 65 64 20 69 6e 74 65 72 66 61 63 65 28 73 29 2e 20 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 | led.interface(s)..If.the.interfa |
| 97740 | 63 65 20 68 61 73 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 64 65 66 69 6e 65 64 20 72 | ce.has.an.address.from.defined.r |
| 97760 | 61 6e 67 65 20 74 68 65 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 4f 53 | ange.then.the.command.enables.OS |
| 97780 | 50 46 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 73 6f 20 72 6f 75 74 65 72 20 63 | PF.on.this.interface.so.router.c |
| 977a0 | 61 6e 20 70 72 6f 76 69 64 65 20 6e 65 74 77 6f 72 6b 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 | an.provide.network.information.t |
| 977c0 | 6f 20 74 68 65 20 6f 74 68 65 72 20 6f 73 70 66 20 72 6f 75 74 65 72 73 20 76 69 61 20 74 68 69 | o.the.other.ospf.routers.via.thi |
| 977e0 | 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 | s.interface..This.command.specif |
| 97800 | 69 65 73 20 74 68 65 20 4f 53 50 46 76 33 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 | ies.the.OSPFv3.enabled.interface |
| 97820 | 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 6c 73 6f 20 75 73 65 64 20 74 6f 20 65 | ..This.command.is.also.used.to.e |
| 97840 | 6e 61 62 6c 65 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 61 72 65 61 | nable.the.OSPF.process..The.area |
| 97860 | 20 6e 75 6d 62 65 72 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 65 63 69 | .number.can.be.specified.in.deci |
| 97880 | 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 30 | mal.notation.in.the.range.from.0 |
| 978a0 | 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 4f 72 20 69 74 20 63 61 6e 20 62 65 20 73 70 65 | .to.4294967295..Or.it.can.be.spe |
| 978c0 | 63 69 66 69 65 64 20 69 6e 20 64 6f 74 74 65 64 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f | cified.in.dotted.decimal.notatio |
| 978e0 | 6e 20 73 69 6d 69 6c 61 72 20 74 6f 20 69 70 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f | n.similar.to.ip.address..This.co |
| 97900 | 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 | mmand.specifies.the.area.to.be.a |
| 97920 | 20 4e 53 53 41 20 54 6f 74 61 6c 6c 79 20 53 74 75 62 20 41 72 65 61 2e 20 41 42 52 73 20 66 6f | .NSSA.Totally.Stub.Area..ABRs.fo |
| 97940 | 72 20 73 75 63 68 20 61 6e 20 61 72 65 61 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 70 61 | r.such.an.area.do.not.need.to.pa |
| 97960 | 73 73 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 70 65 2d 33 29 20 4c 53 41 73 | ss.Network-Summary.(type-3).LSAs |
| 97980 | 20 28 65 78 63 65 70 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 73 75 6d 6d 61 72 79 20 72 6f 75 | .(except.the.default.summary.rou |
| 979a0 | 74 65 29 2c 20 41 53 42 52 2d 53 75 6d 6d 61 72 79 20 4c 53 41 73 20 28 74 79 70 65 2d 34 29 20 | te),.ASBR-Summary.LSAs.(type-4). |
| 979c0 | 61 6e 64 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 28 74 79 70 65 2d 35 29 20 69 6e | and.AS-External.LSAs.(type-5).in |
| 979e0 | 74 6f 20 74 68 65 20 61 72 65 61 2e 20 42 75 74 20 54 79 70 65 2d 37 20 4c 53 41 73 20 74 68 61 | to.the.area..But.Type-7.LSAs.tha |
| 97a00 | 74 20 63 6f 6e 76 65 72 74 20 74 6f 20 54 79 70 65 2d 35 20 61 74 20 74 68 65 20 4e 53 53 41 20 | t.convert.to.Type-5.at.the.NSSA. |
| 97a20 | 41 42 52 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | ABR.are.allowed..This.command.sp |
| 97a40 | 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 4e 6f 74 20 53 6f 20 | ecifies.the.area.to.be.a.Not.So. |
| 97a60 | 53 74 75 62 62 79 20 41 72 65 61 2e 20 45 78 74 65 72 6e 61 6c 20 72 6f 75 74 69 6e 67 20 69 6e | Stubby.Area..External.routing.in |
| 97a80 | 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 69 6d 70 6f 72 74 65 64 20 69 6e 74 6f 20 61 6e 20 4e 53 | formation.is.imported.into.an.NS |
| 97aa0 | 53 41 20 69 6e 20 54 79 70 65 2d 37 20 4c 53 41 73 2e 20 54 79 70 65 2d 37 20 4c 53 41 73 20 61 | SA.in.Type-7.LSAs..Type-7.LSAs.a |
| 97ac0 | 72 65 20 73 69 6d 69 6c 61 72 20 74 6f 20 54 79 70 65 2d 35 20 41 53 2d 65 78 74 65 72 6e 61 6c | re.similar.to.Type-5.AS-external |
| 97ae0 | 20 4c 53 41 73 2c 20 65 78 63 65 70 74 20 74 68 61 74 20 74 68 65 79 20 63 61 6e 20 6f 6e 6c 79 | .LSAs,.except.that.they.can.only |
| 97b00 | 20 62 65 20 66 6c 6f 6f 64 65 64 20 69 6e 74 6f 20 74 68 65 20 4e 53 53 41 2e 20 49 6e 20 6f 72 | .be.flooded.into.the.NSSA..In.or |
| 97b20 | 64 65 72 20 74 6f 20 66 75 72 74 68 65 72 20 70 72 6f 70 61 67 61 74 65 20 74 68 65 20 4e 53 53 | der.to.further.propagate.the.NSS |
| 97b40 | 41 20 65 78 74 65 72 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 74 68 65 20 54 79 70 65 | A.external.information,.the.Type |
| 97b60 | 2d 37 20 4c 53 41 20 6d 75 73 74 20 62 65 20 74 72 61 6e 73 6c 61 74 65 64 20 74 6f 20 61 20 54 | -7.LSA.must.be.translated.to.a.T |
| 97b80 | 79 70 65 2d 35 20 41 53 2d 65 78 74 65 72 6e 61 6c 2d 4c 53 41 20 62 79 20 74 68 65 20 4e 53 53 | ype-5.AS-external-LSA.by.the.NSS |
| 97ba0 | 41 20 41 42 52 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 | A.ABR..This.command.specifies.th |
| 97bc0 | 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 53 74 75 62 20 41 72 65 61 2e 20 54 68 61 74 20 69 | e.area.to.be.a.Stub.Area..That.i |
| 97be0 | 73 2c 20 61 6e 20 61 72 65 61 20 77 68 65 72 65 20 6e 6f 20 72 6f 75 74 65 72 20 6f 72 69 67 69 | s,.an.area.where.no.router.origi |
| 97c00 | 6e 61 74 65 73 20 72 6f 75 74 65 73 20 65 78 74 65 72 6e 61 6c 20 74 6f 20 4f 53 50 46 20 61 6e | nates.routes.external.to.OSPF.an |
| 97c20 | 64 20 68 65 6e 63 65 20 61 6e 20 61 72 65 61 20 77 68 65 72 65 20 61 6c 6c 20 65 78 74 65 72 6e | d.hence.an.area.where.all.extern |
| 97c40 | 61 6c 20 72 6f 75 74 65 73 20 61 72 65 20 76 69 61 20 74 68 65 20 41 42 52 28 73 29 2e 20 48 65 | al.routes.are.via.the.ABR(s)..He |
| 97c60 | 6e 63 65 2c 20 41 42 52 73 20 66 6f 72 20 73 75 63 68 20 61 6e 20 61 72 65 61 20 64 6f 20 6e 6f | nce,.ABRs.for.such.an.area.do.no |
| 97c80 | 74 20 6e 65 65 64 20 74 6f 20 70 61 73 73 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 | t.need.to.pass.AS-External.LSAs. |
| 97ca0 | 28 74 79 70 65 2d 35 29 20 6f 72 20 41 53 42 52 2d 53 75 6d 6d 61 72 79 20 4c 53 41 73 20 28 74 | (type-5).or.ASBR-Summary.LSAs.(t |
| 97cc0 | 79 70 65 2d 34 29 20 69 6e 74 6f 20 74 68 65 20 61 72 65 61 2e 20 54 68 65 79 20 6e 65 65 64 20 | ype-4).into.the.area..They.need. |
| 97ce0 | 6f 6e 6c 79 20 70 61 73 73 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 70 65 2d | only.pass.Network-Summary.(type- |
| 97d00 | 33 29 20 4c 53 41 73 20 69 6e 74 6f 20 73 75 63 68 20 61 6e 20 61 72 65 61 2c 20 61 6c 6f 6e 67 | 3).LSAs.into.such.an.area,.along |
| 97d20 | 20 77 69 74 68 20 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 20 73 75 6d 6d 61 72 79 2e 00 54 | .with.a.default-route.summary..T |
| 97d40 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 | his.command.specifies.the.area.t |
| 97d60 | 6f 20 62 65 20 61 20 54 6f 74 61 6c 6c 79 20 53 74 75 62 20 41 72 65 61 2e 20 49 6e 20 61 64 64 | o.be.a.Totally.Stub.Area..In.add |
| 97d80 | 69 74 69 6f 6e 20 74 6f 20 73 74 75 62 20 61 72 65 61 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 74 | ition.to.stub.area.limitations.t |
| 97da0 | 68 69 73 20 61 72 65 61 20 74 79 70 65 20 70 72 65 76 65 6e 74 73 20 61 6e 20 41 42 52 20 66 72 | his.area.type.prevents.an.ABR.fr |
| 97dc0 | 6f 6d 20 69 6e 6a 65 63 74 69 6e 67 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 | om.injecting.Network-Summary.(ty |
| 97de0 | 70 65 2d 33 29 20 4c 53 41 73 20 69 6e 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 | pe-3).LSAs.into.the.specified.st |
| 97e00 | 75 62 20 61 72 65 61 2e 20 4f 6e 6c 79 20 64 65 66 61 75 6c 74 20 73 75 6d 6d 61 72 79 20 72 6f | ub.area..Only.default.summary.ro |
| 97e20 | 75 74 65 20 69 73 20 61 6c 6c 6f 77 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | ute.is.allowed..This.command.spe |
| 97e40 | 63 69 66 69 65 73 20 74 68 65 20 62 61 73 65 20 72 65 63 65 69 76 65 20 63 6f 73 74 20 66 6f 72 | cifies.the.base.receive.cost.for |
| 97e60 | 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 46 6f 72 20 77 69 72 65 6c 65 73 73 20 69 6e | .this.interface..For.wireless.in |
| 97e80 | 74 65 72 66 61 63 65 73 2c 20 69 74 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 75 6c 74 69 | terfaces,.it.specifies.the.multi |
| 97ea0 | 70 6c 69 65 72 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 70 75 74 69 6e 67 20 74 68 65 20 45 54 58 | plier.used.for.computing.the.ETX |
| 97ec0 | 20 72 65 63 65 70 74 69 6f 6e 20 63 6f 73 74 20 28 64 65 66 61 75 6c 74 20 32 35 36 29 3b 20 66 | .reception.cost.(default.256);.f |
| 97ee0 | 6f 72 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 73 70 65 63 69 66 69 65 | or.wired.interfaces,.it.specifie |
| 97f00 | 73 20 74 68 65 20 63 6f 73 74 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 64 76 65 72 74 69 73 | s.the.cost.that.will.be.advertis |
| 97f20 | 65 64 20 74 6f 20 6e 65 69 67 68 62 6f 75 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ed.to.neighbours..This.command.s |
| 97f40 | 70 65 63 69 66 69 65 73 20 74 68 65 20 64 65 63 61 79 20 66 61 63 74 6f 72 20 66 6f 72 20 74 68 | pecifies.the.decay.factor.for.th |
| 97f60 | 65 20 65 78 70 6f 6e 65 6e 74 69 61 6c 20 6d 6f 76 69 6e 67 20 61 76 65 72 61 67 65 20 6f 66 20 | e.exponential.moving.average.of. |
| 97f80 | 52 54 54 20 73 61 6d 70 6c 65 73 2c 20 69 6e 20 75 6e 69 74 73 20 6f 66 20 31 2f 32 35 36 2e 20 | RTT.samples,.in.units.of.1/256.. |
| 97fa0 | 48 69 67 68 65 72 20 76 61 6c 75 65 73 20 64 69 73 63 61 72 64 20 6f 6c 64 20 73 61 6d 70 6c 65 | Higher.values.discard.old.sample |
| 97fc0 | 73 20 66 61 73 74 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 34 32 2e 00 54 68 69 | s.faster..The.default.is.42..Thi |
| 97fe0 | 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 | s.command.specifies.the.default. |
| 98000 | 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 6c 75 65 2e 20 54 68 65 20 6c 6f 63 61 | local.preference.value..The.loca |
| 98020 | 6c 20 70 72 65 66 65 72 65 6e 63 65 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 34 32 39 34 39 | l.preference.range.is.0.to.42949 |
| 98040 | 36 37 32 39 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 | 67295..This.command.specifies.th |
| 98060 | 65 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 76 61 6c 75 65 20 6f 66 20 72 65 64 69 73 74 | e.default.metric.value.of.redist |
| 98080 | 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 | ributed.routes..The.metric.range |
| 980a0 | 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 34 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | .is.0.to.16777214..This.command. |
| 980c0 | 73 70 65 63 69 66 69 65 73 20 74 68 65 20 67 61 72 62 61 67 65 2d 63 6f 6c 6c 65 63 74 69 6f 6e | specifies.the.garbage-collection |
| 980e0 | 20 74 69 6d 65 72 2e 20 55 70 6f 6e 20 65 78 70 69 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 67 | .timer..Upon.expiration.of.the.g |
| 98100 | 61 72 62 61 67 65 2d 63 6f 6c 6c 65 63 74 69 6f 6e 20 74 69 6d 65 72 2c 20 74 68 65 20 72 6f 75 | arbage-collection.timer,.the.rou |
| 98120 | 74 65 20 69 73 20 66 69 6e 61 6c 6c 79 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 72 | te.is.finally.removed.from.the.r |
| 98140 | 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 | outing.table..The.time.range.is. |
| 98160 | 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 37 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | 5.to.2147483647..The.default.val |
| 98180 | 75 65 20 69 73 20 31 32 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | ue.is.120.seconds..This.command. |
| 981a0 | 73 70 65 63 69 66 69 65 73 20 74 68 65 20 67 69 76 65 6e 20 6e 65 69 67 68 62 6f 72 20 61 73 20 | specifies.the.given.neighbor.as. |
| 981c0 | 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 63 6c 69 65 6e 74 2e 00 54 68 69 73 20 63 6f 6d | route.reflector.client..This.com |
| 981e0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 69 6d | mand.specifies.the.length.of.tim |
| 98200 | 65 2c 20 69 6e 20 73 65 63 6f 6e 64 73 2c 20 62 65 66 6f 72 65 20 74 68 65 20 72 6f 75 74 69 6e | e,.in.seconds,.before.the.routin |
| 98220 | 67 20 64 65 76 69 63 65 20 73 65 6e 64 73 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 6f 75 74 | g.device.sends.hello.packets.out |
| 98240 | 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 62 65 66 6f 72 65 20 69 74 20 65 73 74 61 | .of.the.interface.before.it.esta |
| 98260 | 62 6c 69 73 68 65 73 20 61 64 6a 61 63 65 6e 63 79 20 77 69 74 68 20 61 20 6e 65 69 67 68 62 6f | blishes.adjacency.with.a.neighbo |
| 98280 | 72 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 20 73 65 63 6f 6e | r..The.range.is.1.to.65535.secon |
| 982a0 | 64 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 20 73 65 63 6f | ds..The.default.value.is.60.seco |
| 982c0 | 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 | nds..This.command.specifies.the. |
| 982e0 | 6d 61 78 69 6d 75 6d 20 52 54 54 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 61 62 | maximum.RTT,.in.milliseconds,.ab |
| 98300 | 6f 76 65 20 77 68 69 63 68 20 77 65 20 64 6f 6e 27 74 20 69 6e 63 72 65 61 73 65 20 74 68 65 20 | ove.which.we.don't.increase.the. |
| 98320 | 63 6f 73 74 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | cost.to.a.neighbour..The.default |
| 98340 | 20 69 73 20 31 32 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 | .is.120.ms..This.command.specifi |
| 98360 | 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 63 6f 73 74 20 61 64 64 65 64 20 74 6f 20 61 20 6e | es.the.maximum.cost.added.to.a.n |
| 98380 | 65 69 67 68 62 6f 75 72 20 62 65 63 61 75 73 65 20 6f 66 20 52 54 54 2c 20 69 2e 65 2e 20 77 68 | eighbour.because.of.RTT,.i.e..wh |
| 983a0 | 65 6e 20 74 68 65 20 52 54 54 20 69 73 20 68 69 67 68 65 72 20 6f 72 20 65 71 75 61 6c 20 74 68 | en.the.RTT.is.higher.or.equal.th |
| 983c0 | 61 6e 20 72 74 74 2d 6d 61 78 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 35 30 2e 20 | an.rtt-max..The.default.is.150.. |
| 983e0 | 53 65 74 74 69 6e 67 20 69 74 20 74 6f 20 30 20 65 66 66 65 63 74 69 76 65 6c 79 20 64 69 73 61 | Setting.it.to.0.effectively.disa |
| 98400 | 62 6c 65 73 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 52 54 54 2d 62 61 73 65 64 20 63 6f 73 74 | bles.the.use.of.a.RTT-based.cost |
| 98420 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 69 6e | ..This.command.specifies.the.min |
| 98440 | 69 6d 75 6d 20 52 54 54 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 73 74 61 72 74 | imum.RTT,.in.milliseconds,.start |
| 98460 | 69 6e 67 20 66 72 6f 6d 20 77 68 69 63 68 20 77 65 20 69 6e 63 72 65 61 73 65 20 74 68 65 20 63 | ing.from.which.we.increase.the.c |
| 98480 | 6f 73 74 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 72 2e 20 54 68 65 20 61 64 64 69 74 69 6f 6e | ost.to.a.neighbour..The.addition |
| 984a0 | 61 6c 20 63 6f 73 74 20 69 73 20 6c 69 6e 65 61 72 20 69 6e 20 28 72 74 74 20 2d 20 72 74 74 2d | al.cost.is.linear.in.(rtt.-.rtt- |
| 984c0 | 6d 69 6e 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 30 20 6d 73 2e 00 54 68 69 73 | min)..The.default.is.10.ms..This |
| 984e0 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 72 | .command.specifies.the.minimum.r |
| 98500 | 6f 75 74 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 | oute.advertisement.interval.for. |
| 98520 | 74 68 65 20 70 65 65 72 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 76 61 6c 75 65 20 69 73 20 | the.peer..The.interval.value.is. |
| 98540 | 30 20 74 6f 20 36 30 30 20 73 65 63 6f 6e 64 73 2c 20 77 69 74 68 20 74 68 65 20 64 65 66 61 75 | 0.to.600.seconds,.with.the.defau |
| 98560 | 6c 74 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 69 6e 74 65 72 76 61 6c 20 62 65 69 6e 67 20 | lt.advertisement.interval.being. |
| 98580 | 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 72 6f | 0..This.command.specifies.the.ro |
| 985a0 | 75 74 65 72 20 70 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 6e 6f 6e 62 72 | uter.priority.value.of.the.nonbr |
| 985c0 | 6f 61 64 63 61 73 74 20 6e 65 69 67 68 62 6f 72 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 | oadcast.neighbor.associated.with |
| 985e0 | 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 73 70 65 63 69 66 69 65 64 2e 20 54 68 65 20 64 | .the.IP.address.specified..The.d |
| 98600 | 65 66 61 75 6c 74 20 69 73 20 30 2e 20 54 68 69 73 20 6b 65 79 77 6f 72 64 20 64 6f 65 73 20 6e | efault.is.0..This.keyword.does.n |
| 98620 | 6f 74 20 61 70 70 6c 79 20 74 6f 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 20 | ot.apply.to.point-to-multipoint. |
| 98640 | 69 6e 74 65 72 66 61 63 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 | interfaces..This.command.specifi |
| 98660 | 65 73 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 2e 20 49 66 20 72 6f 75 74 65 72 20 49 44 20 69 | es.the.router-ID..If.router.ID.i |
| 98680 | 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 69 74 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 | s.not.specified.it.will.use.the. |
| 986a0 | 68 69 67 68 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 49 50 20 61 64 64 72 65 73 73 2e 00 54 68 | highest.interface.IP.address..Th |
| 986c0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 63 6f | is.command.specifies.the.time.co |
| 986e0 | 6e 73 74 61 6e 74 2c 20 69 6e 20 73 65 63 6f 6e 64 73 2c 20 6f 66 20 74 68 65 20 73 6d 6f 6f 74 | nstant,.in.seconds,.of.the.smoot |
| 98700 | 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 20 75 73 65 64 20 66 6f 72 20 69 6d 70 6c 65 6d 65 6e | hing.algorithm.used.for.implemen |
| 98720 | 74 69 6e 67 20 68 79 73 74 65 72 65 73 69 73 2e 20 4c 61 72 67 65 72 20 76 61 6c 75 65 73 20 72 | ting.hysteresis..Larger.values.r |
| 98740 | 65 64 75 63 65 20 72 6f 75 74 65 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 20 61 74 20 74 68 65 20 63 | educe.route.oscillation.at.the.c |
| 98760 | 6f 73 74 20 6f 66 20 76 65 72 79 20 73 6c 69 67 68 74 6c 79 20 69 6e 63 72 65 61 73 69 6e 67 20 | ost.of.very.slightly.increasing. |
| 98780 | 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 69 6d 65 2e 20 54 68 65 20 76 61 6c 75 65 20 30 20 64 69 | convergence.time..The.value.0.di |
| 987a0 | 73 61 62 6c 65 73 20 68 79 73 74 65 72 65 73 69 73 2c 20 61 6e 64 20 69 73 20 73 75 69 74 61 62 | sables.hysteresis,.and.is.suitab |
| 987c0 | 6c 65 20 66 6f 72 20 77 69 72 65 64 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 65 20 64 65 66 61 75 | le.for.wired.networks..The.defau |
| 987e0 | 6c 74 20 69 73 20 34 20 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 | lt.is.4.s..This.command.specifie |
| 98800 | 73 20 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 61 66 74 65 72 | s.the.time.in.milliseconds.after |
| 98820 | 20 77 68 69 63 68 20 61 6e 20 27 69 6d 70 6f 72 74 61 6e 74 27 20 72 65 71 75 65 73 74 20 6f 72 | .which.an.'important'.request.or |
| 98840 | 20 75 70 64 61 74 65 20 77 69 6c 6c 20 62 65 20 72 65 73 65 6e 74 2e 20 54 68 65 20 64 65 66 61 | .update.will.be.resent..The.defa |
| 98860 | 75 6c 74 20 69 73 20 32 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | ult.is.2000.ms..This.command.spe |
| 98880 | 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 | cifies.the.time.in.milliseconds. |
| 988a0 | 62 65 74 77 65 65 6e 20 74 77 6f 20 73 63 68 65 64 75 6c 65 64 20 68 65 6c 6c 6f 73 2e 20 4f 6e | between.two.scheduled.hellos..On |
| 988c0 | 20 77 69 72 65 64 20 6c 69 6e 6b 73 2c 20 42 61 62 65 6c 20 6e 6f 74 69 63 65 73 20 61 20 6c 69 | .wired.links,.Babel.notices.a.li |
| 988e0 | 6e 6b 20 66 61 69 6c 75 72 65 20 77 69 74 68 69 6e 20 74 77 6f 20 68 65 6c 6c 6f 20 69 6e 74 65 | nk.failure.within.two.hello.inte |
| 98900 | 72 76 61 6c 73 3b 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 6c 69 6e 6b 73 2c 20 74 68 65 20 6c 69 | rvals;.on.wireless.links,.the.li |
| 98920 | 6e 6b 20 71 75 61 6c 69 74 79 20 76 61 6c 75 65 20 69 73 20 72 65 65 73 74 69 6d 61 74 65 64 20 | nk.quality.value.is.reestimated. |
| 98940 | 61 74 20 65 76 65 72 79 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 2e 20 54 68 65 20 64 65 66 | at.every.hello.interval..The.def |
| 98960 | 61 75 6c 74 20 69 73 20 34 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | ault.is.4000.ms..This.command.sp |
| 98980 | 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 | ecifies.the.time.in.milliseconds |
| 989a0 | 20 62 65 74 77 65 65 6e 20 74 77 6f 20 73 63 68 65 64 75 6c 65 64 20 75 70 64 61 74 65 73 2e 20 | .between.two.scheduled.updates.. |
| 989c0 | 53 69 6e 63 65 20 42 61 62 65 6c 20 6d 61 6b 65 73 20 65 78 74 65 6e 73 69 76 65 20 75 73 65 20 | Since.Babel.makes.extensive.use. |
| 989e0 | 6f 66 20 74 72 69 67 67 65 72 65 64 20 75 70 64 61 74 65 73 2c 20 74 68 69 73 20 63 61 6e 20 62 | of.triggered.updates,.this.can.b |
| 98a00 | 65 20 73 65 74 20 74 6f 20 66 61 69 72 6c 79 20 68 69 67 68 20 76 61 6c 75 65 73 20 6f 6e 20 6c | e.set.to.fairly.high.values.on.l |
| 98a20 | 69 6e 6b 73 20 77 69 74 68 20 6c 69 74 74 6c 65 20 70 61 63 6b 65 74 20 6c 6f 73 73 2e 20 54 68 | inks.with.little.packet.loss..Th |
| 98a40 | 65 20 64 65 66 61 75 6c 74 20 69 73 20 32 30 30 30 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d | e.default.is.20000.ms..This.comm |
| 98a60 | 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 6f 75 74 20 74 69 6d 65 72 2e | and.specifies.the.timeout.timer. |
| 98a80 | 20 55 70 6f 6e 20 65 78 70 69 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 74 69 6d 65 6f 75 74 2c | .Upon.expiration.of.the.timeout, |
| 98aa0 | 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 76 61 6c 69 64 3b 20 68 | .the.route.is.no.longer.valid;.h |
| 98ac0 | 6f 77 65 76 65 72 2c 20 69 74 20 69 73 20 72 65 74 61 69 6e 65 64 20 69 6e 20 74 68 65 20 72 6f | owever,.it.is.retained.in.the.ro |
| 98ae0 | 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 61 20 73 68 6f 72 74 20 74 69 6d 65 20 73 6f 20 | uting.table.for.a.short.time.so. |
| 98b00 | 74 68 61 74 20 6e 65 69 67 68 62 6f 72 73 20 63 61 6e 20 62 65 20 6e 6f 74 69 66 69 65 64 20 74 | that.neighbors.can.be.notified.t |
| 98b20 | 68 61 74 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 62 65 65 6e 20 64 72 6f 70 70 65 64 2e 20 | hat.the.route.has.been.dropped.. |
| 98b40 | 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 | The.time.range.is.5.to.214748364 |
| 98b60 | 37 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 38 30 20 73 65 63 6f | 7..The.default.value.is.180.seco |
| 98b80 | 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 | nds..This.command.specifies.the. |
| 98ba0 | 75 70 64 61 74 65 20 74 69 6d 65 72 2e 20 45 76 65 72 79 20 75 70 64 61 74 65 20 74 69 6d 65 72 | update.timer..Every.update.timer |
| 98bc0 | 20 73 65 63 6f 6e 64 73 2c 20 74 68 65 20 52 49 50 20 70 72 6f 63 65 73 73 20 69 73 20 61 77 61 | .seconds,.the.RIP.process.is.awa |
| 98be0 | 6b 65 6e 65 64 20 74 6f 20 73 65 6e 64 20 61 6e 20 75 6e 73 6f 6c 69 63 69 74 65 64 20 72 65 73 | kened.to.send.an.unsolicited.res |
| 98c00 | 70 6f 6e 73 65 20 6d 65 73 73 61 67 65 20 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 63 6f 6d | ponse.message.containing.the.com |
| 98c20 | 70 6c 65 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f 20 61 6c 6c 20 6e 65 69 67 68 | plete.routing.table.to.all.neigh |
| 98c40 | 62 6f 72 69 6e 67 20 52 49 50 20 72 6f 75 74 65 72 73 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e | boring.RIP.routers..The.time.ran |
| 98c60 | 67 65 20 69 73 20 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 37 2e 20 54 68 65 20 64 65 66 61 75 | ge.is.5.to.2147483647..The.defau |
| 98c80 | 6c 74 20 76 61 6c 75 65 20 69 73 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d | lt.value.is.30.seconds..This.com |
| 98ca0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 20 74 6f 20 70 65 72 66 6f 72 | mand.specifies.whether.to.perfor |
| 98cc0 | 6d 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | m.split-horizon.on.the.interface |
| 98ce0 | 2e 20 53 70 65 63 69 66 79 69 6e 67 20 6e 6f 20 62 61 62 65 6c 20 73 70 6c 69 74 2d 68 6f 72 69 | ..Specifying.no.babel.split-hori |
| 98d00 | 7a 6f 6e 20 69 73 20 61 6c 77 61 79 73 20 63 6f 72 72 65 63 74 2c 20 77 68 69 6c 65 20 62 61 62 | zon.is.always.correct,.while.bab |
| 98d20 | 65 6c 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 69 73 20 61 6e 20 6f 70 74 69 6d 69 73 61 74 | el.split-horizon.is.an.optimisat |
| 98d40 | 69 6f 6e 20 74 68 61 74 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 6f 6e 20 | ion.that.should.only.be.used.on. |
| 98d60 | 73 79 6d 6d 65 74 72 69 63 20 61 6e 64 20 74 72 61 6e 73 69 74 69 76 65 20 28 77 69 72 65 64 29 | symmetric.and.transitive.(wired) |
| 98d80 | 20 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 79 20 | .networks..This.command.specify. |
| 98da0 | 74 68 61 74 20 4f 53 50 46 20 70 61 63 6b 65 74 73 20 6d 75 73 74 20 62 65 20 61 75 74 68 65 6e | that.OSPF.packets.must.be.authen |
| 98dc0 | 74 69 63 61 74 65 64 20 77 69 74 68 20 4d 44 35 20 48 4d 41 43 73 20 77 69 74 68 69 6e 20 74 68 | ticated.with.MD5.HMACs.within.th |
| 98de0 | 65 20 67 69 76 65 6e 20 61 72 65 61 2e 20 4b 65 79 69 6e 67 20 6d 61 74 65 72 69 61 6c 20 6d 75 | e.given.area..Keying.material.mu |
| 98e00 | 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 | st.also.be.configured.on.a.per-i |
| 98e20 | 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | nterface.basis..This.command.spe |
| 98e40 | 63 69 66 79 73 20 74 68 61 74 20 4d 44 35 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 | cifys.that.MD5.HMAC.authenticati |
| 98e60 | 6f 6e 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 | on.must.be.used.on.this.interfac |
| 98e80 | 65 2e 20 49 74 20 73 65 74 73 20 4f 53 50 46 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b | e..It.sets.OSPF.authentication.k |
| 98ea0 | 65 79 20 74 6f 20 61 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 70 61 73 73 77 6f 72 64 2e 20 | ey.to.a.cryptographic.password.. |
| 98ec0 | 4b 65 79 2d 69 64 20 69 64 65 6e 74 69 66 69 65 73 20 73 65 63 72 65 74 20 6b 65 79 20 75 73 65 | Key-id.identifies.secret.key.use |
| 98ee0 | 64 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 6d 65 73 73 61 67 65 20 64 69 67 65 73 74 2e 20 | d.to.create.the.message.digest.. |
| 98f00 | 54 68 69 73 20 49 44 20 69 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 | This.ID.is.part.of.the.protocol. |
| 98f20 | 61 6e 64 20 6d 75 73 74 20 62 65 20 63 6f 6e 73 69 73 74 65 6e 74 20 61 63 72 6f 73 73 20 72 6f | and.must.be.consistent.across.ro |
| 98f40 | 75 74 65 72 73 20 6f 6e 20 61 20 6c 69 6e 6b 2e 20 54 68 65 20 6b 65 79 20 63 61 6e 20 62 65 20 | uters.on.a.link..The.key.can.be. |
| 98f60 | 6c 6f 6e 67 20 75 70 20 74 6f 20 31 36 20 63 68 61 72 73 20 28 6c 61 72 67 65 72 20 73 74 72 69 | long.up.to.16.chars.(larger.stri |
| 98f80 | 6e 67 73 20 77 69 6c 6c 20 62 65 20 74 72 75 6e 63 61 74 65 64 29 2c 20 61 6e 64 20 69 73 20 61 | ngs.will.be.truncated),.and.is.a |
| 98fa0 | 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 67 69 76 65 6e 20 6b 65 79 2d 69 64 2e | ssociated.with.the.given.key-id. |
| 98fc0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 72 69 7a 65 73 20 69 6e 74 72 61 20 61 | .This.command.summarizes.intra.a |
| 98fe0 | 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 20 69 6e | rea.paths.from.specified.area.in |
| 99000 | 74 6f 20 6f 6e 65 20 54 79 70 65 2d 33 20 49 6e 74 65 72 2d 41 72 65 61 20 50 72 65 66 69 78 20 | to.one.Type-3.Inter-Area.Prefix. |
| 99020 | 4c 53 41 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 2e 20 54 68 | LSA.announced.to.other.areas..Th |
| 99040 | 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 69 6e 20 41 | is.command.can.be.used.only.in.A |
| 99060 | 42 52 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 72 69 7a 65 73 20 69 6e 74 72 | BR..This.command.summarizes.intr |
| 99080 | 61 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 | a.area.paths.from.specified.area |
| 990a0 | 20 69 6e 74 6f 20 6f 6e 65 20 73 75 6d 6d 61 72 79 2d 4c 53 41 20 28 54 79 70 65 2d 33 29 20 61 | .into.one.summary-LSA.(Type-3).a |
| 990c0 | 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 2e 20 54 68 69 73 20 63 6f | nnounced.to.other.areas..This.co |
| 990e0 | 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 69 6e 20 41 42 52 20 61 6e | mmand.can.be.used.only.in.ABR.an |
| 99100 | 64 20 4f 4e 4c 59 20 72 6f 75 74 65 72 2d 4c 53 41 73 20 28 54 79 70 65 2d 31 29 20 61 6e 64 20 | d.ONLY.router-LSAs.(Type-1).and. |
| 99120 | 6e 65 74 77 6f 72 6b 2d 4c 53 41 73 20 28 54 79 70 65 2d 32 29 20 28 69 2e 65 2e 20 4c 53 41 73 | network-LSAs.(Type-2).(i.e..LSAs |
| 99140 | 20 77 69 74 68 20 73 63 6f 70 65 20 61 72 65 61 29 20 63 61 6e 20 62 65 20 73 75 6d 6d 61 72 69 | .with.scope.area).can.be.summari |
| 99160 | 7a 65 64 2e 20 41 53 2d 65 78 74 65 72 6e 61 6c 2d 4c 53 41 73 20 28 54 79 70 65 2d 35 29 20 63 | zed..AS-external-LSAs.(Type-5).c |
| 99180 | 61 6e e2 80 99 74 20 62 65 20 73 75 6d 6d 61 72 69 7a 65 64 20 2d 20 74 68 65 69 72 20 73 63 6f | an...t.be.summarized.-.their.sco |
| 991a0 | 70 65 20 69 73 20 41 53 2e 20 54 68 65 20 6f 70 74 69 6f 6e 61 6c 20 61 72 67 75 6d 65 6e 74 20 | pe.is.AS..The.optional.argument. |
| 991c0 | 3a 63 66 67 63 6d 64 3a 60 63 6f 73 74 60 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 67 67 | :cfgcmd:`cost`.specifies.the.agg |
| 991e0 | 72 65 67 61 74 65 64 20 6c 69 6e 6b 20 6d 65 74 72 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 | regated.link.metric..The.metric. |
| 99200 | 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d | range.is.0.to.16777215..This.com |
| 99220 | 6d 61 6e 64 20 74 6f 20 65 6e 73 75 72 65 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 74 68 65 | mand.to.ensure.not.advertise.the |
| 99240 | 20 73 75 6d 6d 61 72 79 20 6c 73 61 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 65 78 74 | .summary.lsa.for.the.matched.ext |
| 99260 | 65 72 6e 61 6c 20 4c 53 41 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 75 73 65 73 20 74 6f | ernal.LSAs..This.command.uses.to |
| 99280 | 20 63 6c 65 61 72 20 42 47 50 20 72 6f 75 74 65 20 64 61 6d 70 65 6e 69 6e 67 20 69 6e 66 6f 72 | .clear.BGP.route.dampening.infor |
| 992a0 | 6d 61 74 69 6f 6e 20 61 6e 64 20 74 6f 20 75 6e 73 75 70 70 72 65 73 73 20 73 75 70 70 72 65 73 | mation.and.to.unsuppress.suppres |
| 992c0 | 73 65 64 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 61 73 20 69 6e 74 | sed.routes..This.command.was.int |
| 992e0 | 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 2d 20 69 74 20 77 61 73 20 70 72 65 | roduced.in.VyOS.1.4.-.it.was.pre |
| 99300 | 76 69 6f 75 73 6c 79 20 63 61 6c 6c 65 64 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 6f | viously.called:.``set.firewall.o |
| 99320 | 70 74 69 6f 6e 73 20 69 6e 74 65 72 66 61 63 65 20 3c 6e 61 6d 65 3e 20 61 64 6a 75 73 74 2d 6d | ptions.interface.<name>.adjust-m |
| 99340 | 73 73 20 3c 76 61 6c 75 65 3e 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 61 73 20 69 6e | ss.<value>``.This.command.was.in |
| 99360 | 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 2d 20 69 74 20 77 61 73 20 70 72 | troduced.in.VyOS.1.4.-.it.was.pr |
| 99380 | 65 76 69 6f 75 73 6c 79 20 63 61 6c 6c 65 64 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 | eviously.called:.``set.firewall. |
| 993a0 | 6f 70 74 69 6f 6e 73 20 69 6e 74 65 72 66 61 63 65 20 3c 6e 61 6d 65 3e 20 61 64 6a 75 73 74 2d | options.interface.<name>.adjust- |
| 993c0 | 6d 73 73 36 20 3c 76 61 6c 75 65 3e 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c | mss6.<value>``.This.command.will |
| 993e0 | 20 63 68 61 6e 67 65 20 74 68 65 20 68 6f 6c 64 20 64 6f 77 6e 20 76 61 6c 75 65 20 66 6f 72 20 | .change.the.hold.down.value.for. |
| 99400 | 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 63 | IGP-LDP.synchronization.during.c |
| 99420 | 6f 6e 76 65 72 67 65 6e 63 65 2f 69 6e 74 65 72 66 61 63 65 20 66 6c 61 70 20 65 76 65 6e 74 73 | onvergence/interface.flap.events |
| 99440 | 2c 20 62 75 74 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 6c 79 2e 00 54 | ,.but.for.this.interface.only..T |
| 99460 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 68 61 6e 67 65 20 74 68 65 20 68 6f 6c 64 | his.command.will.change.the.hold |
| 99480 | 20 64 6f 77 6e 20 76 61 6c 75 65 20 67 6c 6f 62 61 6c 6c 79 20 66 6f 72 20 49 47 50 2d 4c 44 50 | .down.value.globally.for.IGP-LDP |
| 994a0 | 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 63 6f 6e 76 65 72 67 65 | .synchronization.during.converge |
| 994c0 | 6e 63 65 2f 69 6e 74 65 72 66 61 63 65 20 66 6c 61 70 20 65 76 65 6e 74 73 2e 00 54 68 69 73 20 | nce/interface.flap.events..This. |
| 994e0 | 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 61 20 74 69 65 2d 62 72 65 | command.will.configure.a.tie-bre |
| 99500 | 61 6b 65 72 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 63 61 6c 20 4c 46 41 20 62 61 63 6b | aker.for.multiple.local.LFA.back |
| 99520 | 75 70 73 2e 20 54 68 65 20 6c 6f 77 65 72 20 69 6e 64 65 78 20 6e 75 6d 62 65 72 73 20 77 69 6c | ups..The.lower.index.numbers.wil |
| 99540 | 6c 20 62 65 20 70 72 6f 63 65 73 73 65 64 20 66 69 72 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | l.be.processed.first..This.comma |
| 99560 | 6e 64 20 77 69 6c 6c 20 65 6e 61 62 6c 65 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 | nd.will.enable.IGP-LDP.synchroni |
| 99580 | 7a 61 74 69 6f 6e 20 67 6c 6f 62 61 6c 6c 79 20 66 6f 72 20 49 53 49 53 2e 20 54 68 69 73 20 72 | zation.globally.for.ISIS..This.r |
| 995a0 | 65 71 75 69 72 65 73 20 66 6f 72 20 4c 44 50 20 74 6f 20 62 65 20 66 75 6e 63 74 69 6f 6e 61 6c | equires.for.LDP.to.be.functional |
| 995c0 | 2e 20 54 68 69 73 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 34 34 | ..This.is.described.in.:rfc:`544 |
| 995e0 | 33 60 2e 20 42 79 20 64 65 66 61 75 6c 74 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 6f 70 | 3`..By.default.all.interfaces.op |
| 99600 | 65 72 61 74 69 6f 6e 61 6c 20 69 6e 20 49 53 2d 49 53 20 61 72 65 20 65 6e 61 62 6c 65 64 20 66 | erational.in.IS-IS.are.enabled.f |
| 99620 | 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e 20 4c 6f 6f 70 62 61 63 6b 73 20 61 72 | or.synchronization..Loopbacks.ar |
| 99640 | 65 20 65 78 65 6d 70 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 65 6e 61 62 | e.exempt..This.command.will.enab |
| 99660 | 6c 65 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 67 6c 6f 62 61 | le.IGP-LDP.synchronization.globa |
| 99680 | 6c 6c 79 20 66 6f 72 20 4f 53 50 46 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 73 20 66 6f 72 20 | lly.for.OSPF..This.requires.for. |
| 996a0 | 4c 44 50 20 74 6f 20 62 65 20 66 75 6e 63 74 69 6f 6e 61 6c 2e 20 54 68 69 73 20 69 73 20 64 65 | LDP.to.be.functional..This.is.de |
| 996c0 | 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 34 34 33 60 2e 20 42 79 20 64 65 66 61 75 | scribed.in.:rfc:`5443`..By.defau |
| 996e0 | 6c 74 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 69 6e | lt.all.interfaces.operational.in |
| 99700 | 20 4f 53 50 46 20 61 72 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a | .OSPF.are.enabled.for.synchroniz |
| 99720 | 61 74 69 6f 6e 2e 20 4c 6f 6f 70 62 61 63 6b 73 20 61 72 65 20 65 78 65 6d 70 74 2e 00 54 68 69 | ation..Loopbacks.are.exempt..Thi |
| 99740 | 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 61 20 64 65 66 61 75 6c | s.command.will.generate.a.defaul |
| 99760 | 74 2d 72 6f 75 74 65 20 69 6e 20 4c 31 20 64 61 74 61 62 61 73 65 2e 00 54 68 69 73 20 63 6f 6d | t-route.in.L1.database..This.com |
| 99780 | 6d 61 6e 64 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 | mand.will.generate.a.default-rou |
| 997a0 | 74 65 20 69 6e 20 4c 32 20 64 61 74 61 62 61 73 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | te.in.L2.database..This.command. |
| 997c0 | 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 72 75 6c 65 20 | will.give.an.overview.of.a.rule. |
| 997e0 | 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 00 54 68 69 73 20 63 6f 6d 6d 61 6e | in.a.single.rule-set.This.comman |
| 99800 | 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 72 75 6c | d.will.give.an.overview.of.a.rul |
| 99820 | 65 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 2c 20 70 6c 75 73 20 69 6e 66 | e.in.a.single.rule-set,.plus.inf |
| 99840 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 2e 00 54 68 69 | ormation.for.default.action..Thi |
| 99860 | 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 | s.command.will.give.an.overview. |
| 99880 | 6f 66 20 61 20 72 75 6c 65 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 2e 00 | of.a.rule.in.a.single.rule-set.. |
| 998a0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 | This.command.will.give.an.overvi |
| 998c0 | 65 77 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 74 2e 00 54 68 69 73 20 63 6f | ew.of.a.single.rule-set..This.co |
| 998e0 | 6d 6d 61 6e 64 20 77 69 6c 6c 20 6c 69 6d 69 74 20 4c 46 41 20 62 61 63 6b 75 70 20 63 6f 6d 70 | mmand.will.limit.LFA.backup.comp |
| 99900 | 75 74 61 74 69 6f 6e 20 75 70 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 | utation.up.to.the.specified.pref |
| 99920 | 69 78 20 70 72 69 6f 72 69 74 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 6f 75 6c 64 20 | ix.priority..This.command.would. |
| 99940 | 61 6c 6c 6f 77 20 74 68 65 20 64 79 6e 61 6d 69 63 20 75 70 64 61 74 65 20 6f 66 20 63 61 70 61 | allow.the.dynamic.update.of.capa |
| 99960 | 62 69 6c 69 74 69 65 73 20 6f 76 65 72 20 61 6e 20 65 73 74 61 62 6c 69 73 68 65 64 20 42 47 50 | bilities.over.an.established.BGP |
| 99980 | 20 73 65 73 73 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 73 20 63 72 65 61 74 65 73 20 | .session..This.commands.creates. |
| 999a0 | 61 20 62 72 69 64 67 65 20 74 68 61 74 20 69 73 20 75 73 65 64 20 74 6f 20 62 69 6e 64 20 74 72 | a.bridge.that.is.used.to.bind.tr |
| 999c0 | 61 66 66 69 63 20 6f 6e 20 65 74 68 31 20 76 6c 61 6e 20 32 34 31 20 77 69 74 68 20 74 68 65 20 | affic.on.eth1.vlan.241.with.the. |
| 999e0 | 76 78 6c 61 6e 32 34 31 2d 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 49 50 20 61 64 64 72 65 | vxlan241-interface..The.IP.addre |
| 99a00 | 73 73 20 69 73 20 6e 6f 74 20 72 65 71 75 69 72 65 64 2e 20 49 74 20 6d 61 79 20 68 6f 77 65 76 | ss.is.not.required..It.may.howev |
| 99a20 | 65 72 20 62 65 20 75 73 65 64 20 61 73 20 61 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 | er.be.used.as.a.default.gateway. |
| 99a40 | 66 6f 72 20 65 61 63 68 20 4c 65 61 66 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 64 65 76 69 63 | for.each.Leaf.which.allows.devic |
| 99a60 | 65 73 20 6f 6e 20 74 68 65 20 76 6c 61 6e 20 74 6f 20 72 65 61 63 68 20 6f 74 68 65 72 20 73 75 | es.on.the.vlan.to.reach.other.su |
| 99a80 | 62 6e 65 74 73 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 73 20 74 68 61 74 20 74 68 65 20 73 75 | bnets..This.requires.that.the.su |
| 99aa0 | 62 6e 65 74 73 20 61 72 65 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 62 79 20 4f 53 50 46 20 | bnets.are.redistributed.by.OSPF. |
| 99ac0 | 73 6f 20 74 68 61 74 20 74 68 65 20 53 70 69 6e 65 20 77 69 6c 6c 20 6c 65 61 72 6e 20 68 6f 77 | so.that.the.Spine.will.learn.how |
| 99ae0 | 20 74 6f 20 72 65 61 63 68 20 69 74 2e 20 54 6f 20 64 6f 20 74 68 69 73 20 79 6f 75 20 6e 65 65 | .to.reach.it..To.do.this.you.nee |
| 99b00 | 64 20 74 6f 20 63 68 61 6e 67 65 20 74 68 65 20 4f 53 50 46 20 6e 65 74 77 6f 72 6b 20 66 72 6f | d.to.change.the.OSPF.network.fro |
| 99b20 | 6d 20 27 31 30 2e 30 2e 30 2e 30 2f 38 27 20 74 6f 20 27 30 2e 30 2e 30 2e 30 2f 30 27 20 74 6f | m.'10.0.0.0/8'.to.'0.0.0.0/0'.to |
| 99b40 | 20 61 6c 6c 6f 77 20 31 37 32 2e 31 36 2f 31 32 2d 6e 65 74 77 6f 72 6b 73 20 74 6f 20 62 65 20 | .allow.172.16/12-networks.to.be. |
| 99b60 | 61 64 76 65 72 74 69 73 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 73 20 73 70 65 63 69 66 | advertised..This.commands.specif |
| 99b80 | 69 65 73 20 74 68 65 20 46 69 6e 69 74 65 20 53 74 61 74 65 20 4d 61 63 68 69 6e 65 20 28 46 53 | ies.the.Finite.State.Machine.(FS |
| 99ba0 | 4d 29 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 74 69 6d 69 6e | M).intended.to.control.the.timin |
| 99bc0 | 67 20 6f 66 20 74 68 65 20 65 78 65 63 75 74 69 6f 6e 20 6f 66 20 53 50 46 20 63 61 6c 63 75 6c | g.of.the.execution.of.SPF.calcul |
| 99be0 | 61 74 69 6f 6e 73 20 69 6e 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 49 47 50 20 65 76 65 6e 74 73 | ations.in.response.to.IGP.events |
| 99c00 | 2e 20 54 68 65 20 70 72 6f 63 65 73 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a | ..The.process.described.in.:rfc: |
| 99c20 | 60 38 34 30 35 60 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c | `8405`..This.configuration.enabl |
| 99c40 | 65 73 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 20 6f 6e 20 62 61 63 6b 65 6e 64 | es.HTTP.health.checks.on.backend |
| 99c60 | 20 73 65 72 76 65 72 73 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 | .servers..This.configuration.ena |
| 99c80 | 62 6c 65 73 20 74 68 65 20 54 43 50 20 72 65 76 65 72 73 65 20 70 72 6f 78 79 20 66 6f 72 20 74 | bles.the.TCP.reverse.proxy.for.t |
| 99ca0 | 68 65 20 22 6d 79 2d 74 63 70 2d 61 70 69 22 20 73 65 72 76 69 63 65 2e 20 49 6e 63 6f 6d 69 6e | he."my-tcp-api".service..Incomin |
| 99cc0 | 67 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 6e 20 70 6f 72 74 20 38 38 38 38 20 77 | g.TCP.connections.on.port.8888.w |
| 99ce0 | 69 6c 6c 20 62 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 64 20 61 63 72 6f 73 73 20 74 68 65 20 | ill.be.load.balanced.across.the. |
| 99d00 | 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 73 20 28 73 72 76 30 31 20 61 6e 64 20 73 72 76 30 32 | backend.servers.(srv01.and.srv02 |
| 99d20 | 29 20 75 73 69 6e 67 20 74 68 65 20 72 6f 75 6e 64 2d 72 6f 62 69 6e 20 6c 6f 61 64 2d 62 61 6c | ).using.the.round-robin.load-bal |
| 99d40 | 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 | ancing.algorithm..This.configura |
| 99d60 | 74 69 6f 6e 20 67 65 6e 65 72 61 74 65 73 20 26 20 69 6e 73 74 61 6c 6c 73 20 69 6e 74 6f 20 74 | tion.generates.&.installs.into.t |
| 99d80 | 68 65 20 56 79 4f 53 20 50 4b 49 20 73 79 73 74 65 6d 20 61 20 72 6f 6f 74 20 63 65 72 74 69 66 | he.VyOS.PKI.system.a.root.certif |
| 99da0 | 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2c 20 61 6c 6f 6e 67 73 69 64 65 20 74 77 6f 20 69 | icate.authority,.alongside.two.i |
| 99dc0 | 6e 74 65 72 6d 65 64 69 61 72 79 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 | ntermediary.certificate.authorit |
| 99de0 | 69 65 73 20 66 6f 72 20 63 6c 69 65 6e 74 20 26 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 | ies.for.client.&.server.certific |
| 99e00 | 61 74 65 73 2e 20 54 68 65 73 65 20 43 41 73 20 61 72 65 20 74 68 65 6e 20 75 73 65 64 20 74 6f | ates..These.CAs.are.then.used.to |
| 99e20 | 20 67 65 6e 65 72 61 74 65 20 61 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 66 | .generate.a.server.certificate.f |
| 99e40 | 6f 72 20 74 68 65 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 61 20 63 6c 69 65 6e 74 20 63 65 72 74 | or.the.router,.and.a.client.cert |
| 99e60 | 69 66 69 63 61 74 65 20 66 6f 72 20 61 20 75 73 65 72 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 | ificate.for.a.user..This.configu |
| 99e80 | 72 61 74 69 6f 6e 20 6c 69 73 74 65 6e 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 72 65 64 | ration.listen.on.port.80.and.red |
| 99ea0 | 69 72 65 63 74 20 69 6e 63 6f 6d 69 6e 67 20 72 65 71 75 65 73 74 73 20 74 6f 20 48 54 54 50 53 | irect.incoming.requests.to.HTTPS |
| 99ec0 | 3a 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 69 66 69 65 73 20 74 68 | :.This.configuration.modifies.th |
| 99ee0 | 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d | e.behavior.of.the.network.statem |
| 99f00 | 65 6e 74 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 65 64 | ent..If.you.have.this.configured |
| 99f20 | 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 65 78 69 | .the.underlying.network.must.exi |
| 99f40 | 73 74 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f | st.in.the.routing.table..This.co |
| 99f60 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 72 65 71 75 69 72 65 | nfiguration.parameter.is.require |
| 99f80 | 64 20 61 6e 64 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 65 20 74 6f 20 65 61 63 68 20 73 75 62 | d.and.must.be.unique.to.each.sub |
| 99fa0 | 6e 65 74 2e 20 49 74 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 6d 61 70 20 73 75 62 6e 65 | net..It.is.required.to.map.subne |
| 99fc0 | 74 73 20 74 6f 20 6c 65 61 73 65 20 66 69 6c 65 20 65 6e 74 72 69 65 73 2e 00 54 68 69 73 20 63 | ts.to.lease.file.entries..This.c |
| 99fe0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 73 20 74 68 65 20 | onfiguration.parameter.lets.the. |
| 9a000 | 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 44 48 43 50 20 72 | DHCP.server.to.listen.for.DHCP.r |
| 9a020 | 65 71 75 65 73 74 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 | equests.sent.to.the.specified.ad |
| 9a040 | 64 72 65 73 73 2c 20 69 74 20 69 73 20 6f 6e 6c 79 20 72 65 61 6c 69 73 74 69 63 61 6c 6c 79 20 | dress,.it.is.only.realistically. |
| 9a060 | 75 73 65 66 75 6c 20 66 6f 72 20 61 20 73 65 72 76 65 72 20 77 68 6f 73 65 20 6f 6e 6c 79 20 63 | useful.for.a.server.whose.only.c |
| 9a080 | 6c 69 65 6e 74 73 20 61 72 65 20 72 65 61 63 68 65 64 20 76 69 61 20 75 6e 69 63 61 73 74 73 2c | lients.are.reached.via.unicasts, |
| 9a0a0 | 20 73 75 63 68 20 61 73 20 76 69 61 20 44 48 43 50 20 72 65 6c 61 79 20 61 67 65 6e 74 73 2e 00 | .such.as.via.DHCP.relay.agents.. |
| 9a0c0 | 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 | This.configuration.parameter.let |
| 9a0e0 | 73 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 20 76 65 6e 64 6f 72 2d 6f 70 74 69 6f 6e 20 66 6f | s.you.specify.a.vendor-option.fo |
| 9a100 | 72 20 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 | r.the.entire.shared.network.defi |
| 9a120 | 6e 69 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 | nition..All.subnets.will.inherit |
| 9a140 | 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 | .this.configuration.item.if.not. |
| 9a160 | 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 41 6e 20 65 78 61 6d 70 6c 65 20 66 6f | specified.locally..An.example.fo |
| 9a180 | 72 20 55 62 69 71 75 69 74 69 20 69 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 54 68 69 73 20 | r.Ubiquiti.is.shown.below:.This. |
| 9a1a0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 6c 65 74 73 20 79 6f 75 | configuration.parameter.lets.you |
| 9a1c0 | 20 73 70 65 63 69 66 79 20 61 20 76 65 6e 64 6f 72 2d 6f 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 | .specify.a.vendor-option.for.the |
| 9a1e0 | 20 73 75 62 6e 65 74 20 73 70 65 63 69 66 69 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 73 68 61 | .subnet.specified.within.the.sha |
| 9a200 | 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6e 20 65 78 61 6d 70 | red.network.definition..An.examp |
| 9a220 | 6c 65 20 66 6f 72 20 55 62 69 71 75 69 74 69 20 69 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 | le.for.Ubiquiti.is.shown.below:. |
| 9a240 | 54 68 69 73 20 63 6f 75 6c 64 20 62 65 20 68 65 6c 70 66 75 6c 20 69 66 20 79 6f 75 20 77 61 6e | This.could.be.helpful.if.you.wan |
| 9a260 | 74 20 74 6f 20 74 65 73 74 20 68 6f 77 20 61 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 62 65 68 | t.to.test.how.an.application.beh |
| 9a280 | 61 76 65 73 20 75 6e 64 65 72 20 63 65 72 74 61 69 6e 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 64 69 | aves.under.certain.network.condi |
| 9a2a0 | 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 72 65 61 74 65 73 20 61 20 72 6f 75 74 65 20 70 6f 6c 69 | tions..This.creates.a.route.poli |
| 9a2c0 | 63 79 20 63 61 6c 6c 65 64 20 46 49 4c 54 45 52 2d 57 45 42 20 77 69 74 68 20 6f 6e 65 20 72 75 | cy.called.FILTER-WEB.with.one.ru |
| 9a2e0 | 6c 65 20 74 6f 20 73 65 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 | le.to.set.the.routing.table.for. |
| 9a300 | 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 28 54 43 50 20 70 6f 72 74 20 38 30 29 20 74 | matching.traffic.(TCP.port.80).t |
| 9a320 | 6f 20 74 61 62 6c 65 20 49 44 20 31 30 30 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 | o.table.ID.100.instead.of.the.de |
| 9a340 | 66 61 75 6c 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 64 65 66 61 75 6c | fault.routing.table..This.defaul |
| 9a360 | 74 73 20 74 6f 20 31 30 30 30 30 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 31 38 | ts.to.10000..This.defaults.to.18 |
| 9a380 | 31 32 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 30 30 37 2e 00 54 68 69 73 20 | 12..This.defaults.to.2007..This. |
| 9a3a0 | 64 65 66 61 75 6c 74 73 20 74 6f 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 64 65 66 | defaults.to.30.seconds..This.def |
| 9a3c0 | 61 75 6c 74 73 20 74 6f 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 64 65 66 61 75 | aults.to.300.seconds..This.defau |
| 9a3e0 | 6c 74 73 20 74 6f 20 34 39 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 35 2e 00 54 | lts.to.49..This.defaults.to.5..T |
| 9a400 | 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 55 44 50 00 54 68 69 73 20 64 65 66 61 75 6c 74 | his.defaults.to.UDP.This.default |
| 9a420 | 73 20 74 6f 20 62 6f 74 68 20 31 2e 32 20 61 6e 64 20 31 2e 33 2e 00 54 68 69 73 20 64 65 66 61 | s.to.both.1.2.and.1.3..This.defa |
| 9a440 | 75 6c 74 73 20 74 6f 20 68 74 74 70 73 3a 2f 2f 61 63 6d 65 2d 76 30 32 2e 61 70 69 2e 6c 65 74 | ults.to.https://acme-v02.api.let |
| 9a460 | 73 65 6e 63 72 79 70 74 2e 6f 72 67 2f 64 69 72 65 63 74 6f 72 79 00 54 68 69 73 20 64 65 66 61 | sencrypt.org/directory.This.defa |
| 9a480 | 75 6c 74 73 20 74 6f 20 70 68 79 30 2e 00 54 68 69 73 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 | ults.to.phy0..This.depends.on.th |
| 9a4a0 | 65 20 64 72 69 76 65 72 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 6d 61 79 20 6e 6f | e.driver.capabilities.and.may.no |
| 9a4c0 | 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 77 69 74 68 20 61 6c 6c 20 64 72 69 76 65 72 73 2e | t.be.available.with.all.drivers. |
| 9a4e0 | 00 54 68 69 73 20 64 69 61 62 6c 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 63 61 63 68 65 20 | .This.diable.the.external.cache. |
| 9a500 | 61 6e 64 20 64 69 72 65 63 74 6c 79 20 69 6e 6a 65 63 74 73 20 74 68 65 20 66 6c 6f 77 2d 73 74 | and.directly.injects.the.flow-st |
| 9a520 | 61 74 65 73 20 69 6e 74 6f 20 74 68 65 20 69 6e 2d 6b 65 72 6e 65 6c 20 43 6f 6e 6e 65 63 74 69 | ates.into.the.in-kernel.Connecti |
| 9a540 | 6f 6e 20 54 72 61 63 6b 69 6e 67 20 53 79 73 74 65 6d 20 6f 66 20 74 68 65 20 62 61 63 6b 75 70 | on.Tracking.System.of.the.backup |
| 9a560 | 20 66 69 72 65 77 61 6c 6c 2e 00 54 68 69 73 20 64 69 61 67 72 61 6d 20 63 6f 72 72 65 73 70 6f | .firewall..This.diagram.correspo |
| 9a580 | 6e 64 73 20 77 69 74 68 20 74 68 65 20 65 78 61 6d 70 6c 65 20 73 69 74 65 20 74 6f 20 73 69 74 | nds.with.the.example.site.to.sit |
| 9a5a0 | 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 62 65 6c 6f 77 2e 00 54 68 69 73 20 65 6e 61 62 | e.configuration.below..This.enab |
| 9a5c0 | 6c 65 73 20 3a 72 66 63 3a 60 33 31 33 37 60 20 73 75 70 70 6f 72 74 2c 20 77 68 65 72 65 20 74 | les.:rfc:`3137`.support,.where.t |
| 9a5e0 | 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 20 64 65 73 63 72 69 62 65 73 20 69 74 73 20 74 72 | he.OSPF.process.describes.its.tr |
| 9a600 | 61 6e 73 69 74 20 6c 69 6e 6b 73 20 69 6e 20 69 74 73 20 72 6f 75 74 65 72 2d 4c 53 41 20 61 73 | ansit.links.in.its.router-LSA.as |
| 9a620 | 20 68 61 76 69 6e 67 20 69 6e 66 69 6e 69 74 65 20 64 69 73 74 61 6e 63 65 20 73 6f 20 74 68 61 | .having.infinite.distance.so.tha |
| 9a640 | 74 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 77 69 6c 6c 20 61 76 6f 69 64 20 63 61 6c 63 75 | t.other.routers.will.avoid.calcu |
| 9a660 | 6c 61 74 69 6e 67 20 74 72 61 6e 73 69 74 20 70 61 74 68 73 20 74 68 72 6f 75 67 68 20 74 68 65 | lating.transit.paths.through.the |
| 9a680 | 20 72 6f 75 74 65 72 20 77 68 69 6c 65 20 73 74 69 6c 6c 20 62 65 69 6e 67 20 61 62 6c 65 20 74 | .router.while.still.being.able.t |
| 9a6a0 | 6f 20 72 65 61 63 68 20 6e 65 74 77 6f 72 6b 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 | o.reach.networks.through.the.rou |
| 9a6c0 | 74 65 72 2e 00 54 68 69 73 20 65 6e 61 62 6c 65 73 20 74 68 65 20 67 72 65 65 6e 66 69 65 6c 64 | ter..This.enables.the.greenfield |
| 9a6e0 | 20 6f 70 74 69 6f 6e 20 77 68 69 63 68 20 73 65 74 73 20 74 68 65 20 60 60 5b 47 46 5d 60 60 20 | .option.which.sets.the.``[GF]``. |
| 9a700 | 6f 70 74 69 6f 6e 00 54 68 69 73 20 65 73 74 61 62 6c 69 73 68 65 73 20 6f 75 72 20 50 6f 72 74 | option.This.establishes.our.Port |
| 9a720 | 20 46 6f 72 77 61 72 64 20 72 75 6c 65 2c 20 62 75 74 20 69 66 20 77 65 20 63 72 65 61 74 65 64 | .Forward.rule,.but.if.we.created |
| 9a740 | 20 61 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 69 74 20 77 69 6c 6c 20 6c 69 6b 65 6c | .a.firewall.policy.it.will.likel |
| 9a760 | 79 20 62 6c 6f 63 6b 20 74 68 65 20 74 72 61 66 66 69 63 2e 00 54 68 69 73 20 65 78 61 6d 70 6c | y.block.the.traffic..This.exampl |
| 9a780 | 65 20 63 72 65 61 74 65 73 20 61 6e 20 49 50 76 34 20 70 72 65 66 69 78 2d 6c 69 73 74 20 6e 61 | e.creates.an.IPv4.prefix-list.na |
| 9a7a0 | 6d 65 64 20 50 4c 34 2d 45 58 41 4d 50 4c 45 2d 4e 41 4d 45 2c 20 64 65 66 69 6e 65 73 20 33 20 | med.PL4-EXAMPLE-NAME,.defines.3. |
| 9a7c0 | 72 75 6c 65 73 20 65 61 63 68 20 77 69 74 68 20 31 20 70 72 65 66 69 78 2c 20 61 6e 64 20 6d 61 | rules.each.with.1.prefix,.and.ma |
| 9a7e0 | 74 63 68 65 73 20 6c 65 20 28 6c 65 73 73 20 74 68 61 6e 2f 65 71 75 61 6c 20 74 6f 29 20 2f 33 | tches.le.(less.than/equal.to)./3 |
| 9a800 | 32 2e 00 54 68 69 73 20 65 78 61 6d 70 6c 65 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 74 61 72 | 2..This.example.shows.how.to.tar |
| 9a820 | 67 65 74 20 61 6e 20 4d 53 53 20 63 6c 61 6d 70 20 28 69 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 | get.an.MSS.clamp.(in.our.example |
| 9a840 | 20 74 6f 20 31 33 36 30 20 62 79 74 65 73 29 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 64 65 | .to.1360.bytes).to.a.specific.de |
| 9a860 | 73 74 69 6e 61 74 69 6f 6e 20 49 50 2e 00 54 68 69 73 20 65 78 61 6d 70 6c 65 20 75 73 65 73 20 | stination.IP..This.example.uses. |
| 9a880 | 43 41 43 65 72 74 20 61 73 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2e | CACert.as.certificate.authority. |
| 9a8a0 | 00 54 68 69 73 20 66 65 61 74 75 72 65 20 63 6c 6f 73 65 6c 79 20 77 6f 72 6b 73 20 74 6f 67 65 | .This.feature.closely.works.toge |
| 9a8c0 | 74 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 70 6b 69 60 20 73 75 62 73 79 73 74 65 6d 20 61 | ther.with.:ref:`pki`.subsystem.a |
| 9a8e0 | 73 20 79 6f 75 20 72 65 71 75 69 72 65 64 20 61 20 78 35 30 39 20 63 65 72 74 69 66 69 63 61 74 | s.you.required.a.x509.certificat |
| 9a900 | 65 2e 00 54 68 69 73 20 66 65 61 74 75 72 65 20 73 65 72 76 65 73 20 74 68 65 20 70 75 72 70 6f | e..This.feature.serves.the.purpo |
| 9a920 | 73 65 20 6f 66 20 74 68 69 67 68 74 65 6e 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 76 61 6c | se.of.thightening.the.packet.val |
| 9a940 | 69 64 61 74 69 6f 6e 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 61 76 6f 69 64 20 72 65 | idation.requirements.to.avoid.re |
| 9a960 | 63 65 69 76 69 6e 67 20 42 46 44 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 73 20 66 72 6f 6d | ceiving.BFD.control.packets.from |
| 9a980 | 20 6f 74 68 65 72 20 73 65 73 73 69 6f 6e 73 2e 00 54 68 69 73 20 66 65 61 74 75 72 65 20 73 75 | .other.sessions..This.feature.su |
| 9a9a0 | 6d 6d 61 72 69 73 65 73 20 6f 72 69 67 69 6e 61 74 65 64 20 65 78 74 65 72 6e 61 6c 20 4c 53 41 | mmarises.originated.external.LSA |
| 9a9c0 | 73 20 28 54 79 70 65 2d 35 20 61 6e 64 20 54 79 70 65 2d 37 29 2e 20 53 75 6d 6d 61 72 79 20 52 | s.(Type-5.and.Type-7)..Summary.R |
| 9a9e0 | 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 6f 72 69 67 69 6e 61 74 65 64 20 6f 6e 2d 62 65 68 61 6c | oute.will.be.originated.on-behal |
| 9aa00 | 66 20 6f 66 20 61 6c 6c 20 6d 61 74 63 68 65 64 20 65 78 74 65 72 6e 61 6c 20 4c 53 41 73 2e 00 | f.of.all.matched.external.LSAs.. |
| 9aa20 | 54 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 63 6f 6e 74 72 6f 6c 6c 65 64 | This.functionality.is.controlled |
| 9aa40 | 20 62 79 20 61 64 64 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 | .by.adding.the.following.configu |
| 9aa60 | 72 61 74 69 6f 6e 3a 00 54 68 69 73 20 66 75 6e 63 74 69 6f 6e 73 20 66 6f 72 20 62 6f 74 68 20 | ration:.This.functions.for.both. |
| 9aa80 | 69 6e 64 69 76 69 64 75 61 6c 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 61 64 64 72 65 73 73 | individual.addresses.and.address |
| 9aaa0 | 20 67 72 6f 75 70 73 2e 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 49 47 50 2d 4c 44 50 20 73 | .groups..This.gives.us.IGP-LDP.s |
| 9aac0 | 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 6e 6f 6e 2d 6c 6f 6f 70 62 | ynchronization.for.all.non-loopb |
| 9aae0 | 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 61 20 68 6f 6c 64 64 6f 77 6e 20 74 | ack.interfaces.with.a.holddown.t |
| 9ab00 | 69 6d 65 72 20 6f 66 20 7a 65 72 6f 20 73 65 63 6f 6e 64 73 3a 00 54 68 69 73 20 67 69 76 65 73 | imer.of.zero.seconds:.This.gives |
| 9ab20 | 20 75 73 20 4d 50 4c 53 20 73 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 65 6e 61 62 6c 65 64 | .us.MPLS.segment.routing.enabled |
| 9ab40 | 20 61 6e 64 20 6c 61 62 65 6c 73 20 66 6f 72 20 66 61 72 20 65 6e 64 20 6c 6f 6f 70 62 61 63 6b | .and.labels.for.far.end.loopback |
| 9ab60 | 73 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6e | s:.This.gives.us.the.following.n |
| 9ab80 | 65 69 67 68 62 6f 72 73 68 69 70 73 2c 20 4c 65 76 65 6c 20 31 20 61 6e 64 20 4c 65 76 65 6c 20 | eighborships,.Level.1.and.Level. |
| 9aba0 | 32 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6e | 2:.This.gives.us.the.following.n |
| 9abc0 | 65 69 67 68 62 6f 72 73 68 69 70 73 3a 00 54 68 69 73 20 69 6e 73 74 72 75 63 74 73 20 6f 70 65 | eighborships:.This.instructs.ope |
| 9abe0 | 6e 6e 68 72 70 20 74 6f 20 72 65 70 6c 79 20 77 69 74 68 20 61 75 74 68 6f 72 61 74 69 76 65 20 | nnhrp.to.reply.with.authorative. |
| 9ac00 | 61 6e 73 77 65 72 73 20 6f 6e 20 4e 48 52 50 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 71 75 65 | answers.on.NHRP.Resolution.Reque |
| 9ac20 | 73 74 73 20 64 65 73 74 69 6e 69 65 64 20 74 6f 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 74 68 | sts.destinied.to.addresses.in.th |
| 9ac40 | 69 73 20 69 6e 74 65 72 66 61 63 65 20 28 69 6e 73 74 65 61 64 20 6f 66 20 66 6f 72 77 61 72 64 | is.interface.(instead.of.forward |
| 9ac60 | 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 73 29 2e 20 54 68 69 73 20 65 66 66 65 63 74 69 76 65 | ing.the.packets)..This.effective |
| 9ac80 | 6c 79 20 61 6c 6c 6f 77 73 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 73 68 6f 72 74 63 | ly.allows.the.creation.of.shortc |
| 9aca0 | 75 74 20 72 6f 75 74 65 73 20 74 6f 20 73 75 62 6e 65 74 73 20 6c 6f 63 61 74 65 64 20 6f 6e 20 | ut.routes.to.subnets.located.on. |
| 9acc0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 69 73 20 61 20 63 6f 6d 6d 6f 6e 20 | the.interface..This.is.a.common. |
| 9ace0 | 73 63 65 6e 61 72 69 6f 20 77 68 65 72 65 20 62 6f 74 68 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 | scenario.where.both.:ref:`source |
| 9ad00 | 2d 6e 61 74 60 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 | -nat`.and.:ref:`destination-nat` |
| 9ad20 | 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 | .are.configured.at.the.same.time |
| 9ad40 | 2e 20 49 74 27 73 20 63 6f 6d 6d 6f 6e 6c 79 20 75 73 65 64 20 77 68 65 6e 20 69 6e 74 65 72 6e | ..It's.commonly.used.when.intern |
| 9ad60 | 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 6f 73 74 73 20 6e 65 65 64 20 74 6f 20 65 73 74 61 62 | al.(private).hosts.need.to.estab |
| 9ad80 | 6c 69 73 68 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 65 78 74 65 72 6e 61 6c 20 | lish.a.connection.with.external. |
| 9ada0 | 72 65 73 6f 75 72 63 65 73 20 61 6e 64 20 65 78 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 73 20 6e | resources.and.external.systems.n |
| 9adc0 | 65 65 64 20 74 6f 20 61 63 63 65 73 73 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 | eed.to.access.internal.(private) |
| 9ade0 | 20 72 65 73 6f 75 72 63 65 73 2e 00 54 68 69 73 20 69 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 | .resources..This.is.a.configurat |
| 9ae00 | 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 60 3c 73 75 62 6e 65 74 3e 60 | ion.parameter.for.the.`<subnet>` |
| 9ae20 | 2c 20 73 61 79 69 6e 67 20 74 68 61 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 72 65 73 | ,.saying.that.as.part.of.the.res |
| 9ae40 | 70 6f 6e 73 65 2c 20 74 65 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 | ponse,.tell.the.client.that.the. |
| 9ae60 | 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 20 61 | default.gateway.can.be.reached.a |
| 9ae80 | 74 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 54 68 69 73 20 69 73 20 61 20 63 6f 6e 66 69 67 75 | t.`<address>`..This.is.a.configu |
| 9aea0 | 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 73 75 62 6e 65 74 2c | ration.parameter.for.the.subnet, |
| 9aec0 | 20 73 61 79 69 6e 67 20 74 68 61 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 72 65 73 70 | .saying.that.as.part.of.the.resp |
| 9aee0 | 6f 6e 73 65 2c 20 74 65 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 74 68 65 20 44 | onse,.tell.the.client.that.the.D |
| 9af00 | 4e 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 20 60 3c 61 64 64 72 | NS.server.can.be.found.at.`<addr |
| 9af20 | 65 73 73 3e 60 2e 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 63 6f 6d 6d 61 | ess>`..This.is.a.mandatory.comma |
| 9af40 | 6e 64 2e 20 53 65 74 73 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d | nd..Sets.regular.expression.to.m |
| 9af60 | 61 74 63 68 20 61 67 61 69 6e 73 74 20 6c 6f 67 20 73 74 72 69 6e 67 20 6d 65 73 73 61 67 65 2e | atch.against.log.string.message. |
| 9af80 | 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 63 6f 6d 6d 61 6e 64 2e 20 53 65 | .This.is.a.mandatory.command..Se |
| 9afa0 | 74 73 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 2e 20 | ts.the.full.path.to.the.script.. |
| 9afc0 | 54 68 65 20 73 63 72 69 70 74 20 66 69 6c 65 20 6d 75 73 74 20 62 65 20 65 78 65 63 75 74 61 62 | The.script.file.must.be.executab |
| 9afe0 | 6c 65 2e 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 00 54 | le..This.is.a.mandatory.option.T |
| 9b000 | 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 73 65 74 74 69 6e 67 2e 00 54 68 69 73 | his.is.a.mandatory.setting..This |
| 9b020 | 20 69 73 20 61 63 68 69 65 76 65 64 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 66 69 72 73 74 20 | .is.achieved.by.using.the.first. |
| 9b040 | 74 68 72 65 65 20 62 69 74 73 20 6f 66 20 74 68 65 20 54 6f 53 20 28 54 79 70 65 20 6f 66 20 53 | three.bits.of.the.ToS.(Type.of.S |
| 9b060 | 65 72 76 69 63 65 29 20 66 69 65 6c 64 20 74 6f 20 63 61 74 65 67 6f 72 69 7a 65 20 64 61 74 61 | ervice).field.to.categorize.data |
| 9b080 | 20 73 74 72 65 61 6d 73 20 61 6e 64 2c 20 69 6e 20 61 63 63 6f 72 64 61 6e 63 65 20 77 69 74 68 | .streams.and,.in.accordance.with |
| 9b0a0 | 20 74 68 65 20 64 65 66 69 6e 65 64 20 70 72 65 63 65 64 65 6e 63 65 20 70 61 72 61 6d 65 74 65 | .the.defined.precedence.paramete |
| 9b0c0 | 72 73 2c 20 61 20 64 65 63 69 73 69 6f 6e 20 69 73 20 6d 61 64 65 2e 00 54 68 69 73 20 69 73 20 | rs,.a.decision.is.made..This.is. |
| 9b0e0 | 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 20 74 68 65 20 48 55 42 73 20 49 50 20 61 64 64 72 65 73 | also.known.as.the.HUBs.IP.addres |
| 9b100 | 73 20 6f 72 20 46 51 44 4e 2e 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 | s.or.FQDN..This.is.an.optional.c |
| 9b120 | 6f 6d 6d 61 6e 64 20 62 65 63 61 75 73 65 20 74 68 65 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 | ommand.because.the.event.handler |
| 9b140 | 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 64 20 61 | .will.be.automatically.created.a |
| 9b160 | 66 74 65 72 20 61 6e 79 20 6f 66 20 74 68 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 73 2e 00 54 | fter.any.of.the.next.commands..T |
| 9b180 | 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 41 64 64 73 | his.is.an.optional.command..Adds |
| 9b1a0 | 20 61 72 67 75 6d 65 6e 74 73 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 2e 20 41 72 67 75 6d 65 | .arguments.to.the.script..Argume |
| 9b1c0 | 6e 74 73 20 6d 75 73 74 20 62 65 20 73 65 70 61 72 61 74 65 64 20 62 79 20 73 70 61 63 65 73 2e | nts.must.be.separated.by.spaces. |
| 9b1e0 | 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 41 64 | .This.is.an.optional.command..Ad |
| 9b200 | 64 73 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 61 6e 64 20 69 74 73 20 76 61 6c 75 65 20 74 6f 20 | ds.environment.and.its.value.to. |
| 9b220 | 74 68 65 20 73 63 72 69 70 74 2e 20 55 73 65 20 73 65 70 61 72 61 74 65 20 63 6f 6d 6d 61 6e 64 | the.script..Use.separate.command |
| 9b240 | 73 20 66 6f 72 20 65 61 63 68 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 2e 00 54 68 69 73 20 69 73 20 | s.for.each.environment..This.is. |
| 9b260 | 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 20 46 69 6c 74 65 72 73 20 6c 6f 67 | an.optional.command..Filters.log |
| 9b280 | 20 6d 65 73 73 61 67 65 73 20 62 79 20 73 79 73 6c 6f 67 2d 69 64 65 6e 74 69 66 69 65 72 2e 00 | .messages.by.syslog-identifier.. |
| 9b2a0 | 54 68 69 73 20 69 73 20 64 6f 6e 65 20 74 6f 20 73 75 70 70 6f 72 74 20 28 65 74 68 65 72 6e 65 | This.is.done.to.support.(etherne |
| 9b2c0 | 74 29 20 73 77 69 74 63 68 20 66 65 61 74 75 72 65 73 2c 20 6c 69 6b 65 20 3a 72 66 63 3a 60 33 | t).switch.features,.like.:rfc:`3 |
| 9b2e0 | 30 36 39 60 2c 20 77 68 65 72 65 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 70 6f 72 74 73 | 069`,.where.the.individual.ports |
| 9b300 | 20 61 72 65 20 4e 4f 54 20 61 6c 6c 6f 77 65 64 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 | .are.NOT.allowed.to.communicate. |
| 9b320 | 77 69 74 68 20 65 61 63 68 20 6f 74 68 65 72 2c 20 62 75 74 20 74 68 65 79 20 61 72 65 20 61 6c | with.each.other,.but.they.are.al |
| 9b340 | 6c 6f 77 65 64 20 74 6f 20 74 61 6c 6b 20 74 6f 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 72 6f | lowed.to.talk.to.the.upstream.ro |
| 9b360 | 75 74 65 72 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 30 36 39 | uter..As.described.in.:rfc:`3069 |
| 9b380 | 60 2c 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 73 65 | `,.it.is.possible.to.allow.these |
| 9b3a0 | 20 68 6f 73 74 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 74 68 72 6f 75 67 68 20 74 68 | .hosts.to.communicate.through.th |
| 9b3c0 | 65 20 75 70 73 74 72 65 61 6d 20 72 6f 75 74 65 72 20 62 79 20 70 72 6f 78 79 5f 61 72 70 27 69 | e.upstream.router.by.proxy_arp'i |
| 9b3e0 | 6e 67 2e 00 54 68 69 73 20 69 73 20 65 73 70 65 63 69 61 6c 6c 79 20 75 73 65 66 75 6c 20 66 6f | ng..This.is.especially.useful.fo |
| 9b400 | 72 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2c 20 73 69 6e 63 65 20 | r.the.upstream.interface,.since. |
| 9b420 | 74 68 65 20 73 6f 75 72 63 65 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 | the.source.for.multicast.traffic |
| 9b440 | 20 69 73 20 6f 66 74 65 6e 20 66 72 6f 6d 20 61 20 72 65 6d 6f 74 65 20 6c 6f 63 61 74 69 6f 6e | .is.often.from.a.remote.location |
| 9b460 | 2e 00 54 68 69 73 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 69 6d 70 6c 65 73 74 20 74 79 | ..This.is.one.of.the.simplest.ty |
| 9b480 | 70 65 73 20 6f 66 20 74 75 6e 6e 65 6c 73 2c 20 61 73 20 64 65 66 69 6e 65 64 20 62 79 20 3a 72 | pes.of.tunnels,.as.defined.by.:r |
| 9b4a0 | 66 63 3a 60 32 30 30 33 60 2e 20 49 74 20 74 61 6b 65 73 20 61 6e 20 49 50 76 34 20 70 61 63 6b | fc:`2003`..It.takes.an.IPv4.pack |
| 9b4c0 | 65 74 20 61 6e 64 20 73 65 6e 64 73 20 69 74 20 61 73 20 61 20 70 61 79 6c 6f 61 64 20 6f 66 20 | et.and.sends.it.as.a.payload.of. |
| 9b4e0 | 61 6e 6f 74 68 65 72 20 49 50 76 34 20 70 61 63 6b 65 74 2e 20 46 6f 72 20 74 68 69 73 20 72 65 | another.IPv4.packet..For.this.re |
| 9b500 | 61 73 6f 6e 2c 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 6f 74 68 65 72 20 63 6f 6e 66 69 67 75 | ason,.there.are.no.other.configu |
| 9b520 | 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 | ration.options.for.this.kind.of. |
| 9b540 | 74 75 6e 6e 65 6c 2e 00 54 68 69 73 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 00 54 68 69 73 20 69 | tunnel..This.is.optional..This.i |
| 9b560 | 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 20 | s.similar.to.the.network.groups. |
| 9b580 | 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 6e | part,.but.here.you.are.able.to.n |
| 9b5a0 | 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 | egate.the.matching.addresses..Th |
| 9b5c0 | 69 73 20 69 73 20 74 68 65 20 49 50 76 36 20 63 6f 75 6e 74 65 72 70 61 72 74 20 6f 66 20 49 50 | is.is.the.IPv6.counterpart.of.IP |
| 9b5e0 | 49 50 2e 20 49 27 6d 20 6e 6f 74 20 61 77 61 72 65 20 6f 66 20 61 6e 20 52 46 43 20 74 68 61 74 | IP..I'm.not.aware.of.an.RFC.that |
| 9b600 | 20 64 65 66 69 6e 65 73 20 74 68 69 73 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 73 70 65 63 | .defines.this.encapsulation.spec |
| 9b620 | 69 66 69 63 61 6c 6c 79 2c 20 62 75 74 20 69 74 27 73 20 61 20 6e 61 74 75 72 61 6c 20 73 70 65 | ifically,.but.it's.a.natural.spe |
| 9b640 | 63 69 66 69 63 20 63 61 73 65 20 6f 66 20 49 50 76 36 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e | cific.case.of.IPv6.encapsulation |
| 9b660 | 20 6d 65 63 68 61 6e 69 73 6d 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 32 34 | .mechanisms.described.in.:rfc:24 |
| 9b680 | 37 33 60 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 4c 41 4e 20 65 78 74 65 6e 73 69 6f 6e 20 75 | 73`..This.is.the.LAN.extension.u |
| 9b6a0 | 73 65 20 63 61 73 65 2e 20 54 68 65 20 65 74 68 30 20 70 6f 72 74 20 6f 66 20 74 68 65 20 64 69 | se.case..The.eth0.port.of.the.di |
| 9b6c0 | 73 74 61 6e 74 20 56 50 4e 20 70 65 65 72 73 20 77 69 6c 6c 20 62 65 20 64 69 72 65 63 74 6c 79 | stant.VPN.peers.will.be.directly |
| 9b6e0 | 20 63 6f 6e 6e 65 63 74 65 64 20 6c 69 6b 65 20 69 66 20 74 68 65 72 65 20 77 61 73 20 61 20 73 | .connected.like.if.there.was.a.s |
| 9b700 | 77 69 74 63 68 20 62 65 74 77 65 65 6e 20 74 68 65 6d 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 | witch.between.them..This.is.the. |
| 9b720 | 4c 43 44 20 6d 6f 64 65 6c 20 75 73 65 64 20 69 6e 20 79 6f 75 72 20 73 79 73 74 65 6d 2e 00 54 | LCD.model.used.in.your.system..T |
| 9b740 | 68 69 73 20 69 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 | his.is.the.configuration.paramet |
| 9b760 | 65 72 20 66 6f 72 20 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b | er.for.the.entire.shared.network |
| 9b780 | 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e | .definition..All.subnets.will.in |
| 9b7a0 | 68 65 72 69 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 | herit.this.configuration.item.if |
| 9b7c0 | 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 00 54 68 69 73 20 69 73 20 | .not.specified.locally..This.is. |
| 9b7e0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 | the.configuration.parameter.for. |
| 9b800 | 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 | the.entire.shared.network.defini |
| 9b820 | 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 74 | tion..All.subnets.will.inherit.t |
| 9b840 | 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 73 70 | his.configuration.item.if.not.sp |
| 9b860 | 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 4d 75 6c 74 69 70 6c 65 20 44 4e 53 20 73 65 | ecified.locally..Multiple.DNS.se |
| 9b880 | 72 76 65 72 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 54 68 69 73 20 69 73 20 74 68 | rvers.can.be.defined..This.is.th |
| 9b8a0 | 65 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 74 68 65 20 68 6f 73 74 20 62 6c 6f 63 6b 20 69 | e.equivalent.of.the.host.block.i |
| 9b8c0 | 6e 20 64 68 63 70 64 2e 63 6f 6e 66 20 6f 66 20 69 73 63 2d 64 68 63 70 64 2e 00 54 68 69 73 20 | n.dhcpd.conf.of.isc-dhcpd..This. |
| 9b8e0 | 69 73 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 | is.the.name.of.the.physical.inte |
| 9b900 | 72 66 61 63 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 79 6f 75 72 20 4c 43 | rface.used.to.connect.to.your.LC |
| 9b920 | 44 20 64 69 73 70 6c 61 79 2e 20 54 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 69 73 20 73 75 70 | D.display..Tab.completion.is.sup |
| 9b940 | 70 6f 72 74 65 64 20 61 6e 64 20 69 74 20 77 69 6c 6c 20 6c 69 73 74 20 79 6f 75 20 61 6c 6c 20 | ported.and.it.will.list.you.all. |
| 9b960 | 61 76 61 69 6c 61 62 6c 65 20 73 65 72 69 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 | available.serial.interface..This |
| 9b980 | 20 69 73 20 74 68 65 20 70 6f 6c 69 63 79 20 74 68 61 74 20 72 65 71 75 69 65 72 65 73 20 74 68 | .is.the.policy.that.requieres.th |
| 9b9a0 | 65 20 6c 6f 77 65 73 74 20 72 65 73 6f 75 72 63 65 73 20 66 6f 72 20 74 68 65 20 73 61 6d 65 20 | e.lowest.resources.for.the.same. |
| 9b9c0 | 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 2e 20 42 75 74 20 2a 2a 76 65 72 79 20 6c 69 | amount.of.traffic..But.**very.li |
| 9b9e0 | 6b 65 6c 79 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 69 74 20 61 73 20 79 6f 75 20 63 | kely.you.do.not.need.it.as.you.c |
| 9ba00 | 61 6e 6e 6f 74 20 67 65 74 20 6d 75 63 68 20 66 72 6f 6d 20 69 74 2e 20 53 6f 6d 65 74 69 6d 65 | annot.get.much.from.it..Sometime |
| 9ba20 | 73 20 69 74 20 69 73 20 75 73 65 64 20 6a 75 73 74 20 74 6f 20 65 6e 61 62 6c 65 20 6c 6f 67 67 | s.it.is.used.just.to.enable.logg |
| 9ba40 | 69 6e 67 2e 2a 2a 00 54 68 69 73 20 69 73 20 74 68 65 20 70 6f 6c 69 63 79 20 74 68 61 74 20 72 | ing.**.This.is.the.policy.that.r |
| 9ba60 | 65 71 75 69 72 65 73 20 74 68 65 20 6c 6f 77 65 73 74 20 72 65 73 6f 75 72 63 65 73 20 66 6f 72 | equires.the.lowest.resources.for |
| 9ba80 | 20 74 68 65 20 73 61 6d 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 2e 20 42 75 74 | .the.same.amount.of.traffic..But |
| 9baa0 | 20 2a 2a 76 65 72 79 20 6c 69 6b 65 6c 79 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 69 | .**very.likely.you.do.not.need.i |
| 9bac0 | 74 20 61 73 20 79 6f 75 20 63 61 6e 6e 6f 74 20 67 65 74 20 6d 75 63 68 20 66 72 6f 6d 20 69 74 | t.as.you.cannot.get.much.from.it |
| 9bae0 | 2e 20 53 6f 6d 65 74 69 6d 65 73 20 69 74 20 69 73 20 75 73 65 64 20 6a 75 73 74 20 74 6f 20 65 | ..Sometimes.it.is.used.just.to.e |
| 9bb00 | 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 2e 2a 2a 00 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 2c | nable.logging.**.This.is.useful, |
| 9bb20 | 20 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 74 | .for.example,.in.combination.wit |
| 9bb40 | 68 20 68 6f 73 74 66 69 6c 65 20 75 70 64 61 74 65 2e 00 54 68 69 73 20 69 73 20 77 68 65 72 65 | h.hostfile.update..This.is.where |
| 9bb60 | 20 22 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 22 20 63 6f 6d 65 73 20 69 6e 74 | ."UDP.broadcast.relay".comes.int |
| 9bb80 | 6f 20 70 6c 61 79 21 20 49 74 20 77 69 6c 6c 20 66 6f 72 77 61 72 64 20 72 65 63 65 69 76 65 64 | o.play!.It.will.forward.received |
| 9bba0 | 20 62 72 6f 61 64 63 61 73 74 73 20 74 6f 20 6f 74 68 65 72 20 63 6f 6e 66 69 67 75 72 65 64 20 | .broadcasts.to.other.configured. |
| 9bbc0 | 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 6d 61 6b 65 73 20 74 68 65 20 73 65 72 76 65 72 20 | networks..This.makes.the.server. |
| 9bbe0 | 61 75 74 68 6f 72 69 74 61 74 69 76 65 6c 79 20 6e 6f 74 20 61 77 61 72 65 20 6f 66 3a 20 31 30 | authoritatively.not.aware.of:.10 |
| 9bc00 | 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 38 2e 31 39 32 2e 69 6e 2d 61 64 64 72 2e 61 | .in-addr.arpa,.168.192.in-addr.a |
| 9bc20 | 72 70 61 2c 20 31 36 2d 33 31 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 77 68 69 | rpa,.16-31.172.in-addr.arpa,.whi |
| 9bc40 | 63 68 20 65 6e 61 62 6c 69 6e 67 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 28 | ch.enabling.upstream.DNS.server( |
| 9bc60 | 73 29 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 | s).to.be.used.for.reverse.lookup |
| 9bc80 | 73 20 6f 66 20 74 68 65 73 65 20 7a 6f 6e 65 73 2e 00 54 68 69 73 20 6d 65 74 68 6f 64 20 61 75 | s.of.these.zones..This.method.au |
| 9bca0 | 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 69 73 61 62 6c 65 73 20 49 50 76 36 20 74 72 61 66 66 69 | tomatically.disables.IPv6.traffi |
| 9bcc0 | 63 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 6e | c.forwarding.on.the.interface.in |
| 9bce0 | 20 71 75 65 73 74 69 6f 6e 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 66 61 | .question..This.mode.provides.fa |
| 9bd00 | 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 | ult.tolerance..This.mode.provide |
| 9bd20 | 73 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 20 54 68 65 20 3a 63 66 67 63 6d 64 3a 60 | s.fault.tolerance..The.:cfgcmd:` |
| 9bd40 | 70 72 69 6d 61 72 79 60 20 6f 70 74 69 6f 6e 2c 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 65 6c 6f | primary`.option,.documented.belo |
| 9bd60 | 77 2c 20 61 66 66 65 63 74 73 20 74 68 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 69 73 20 | w,.affects.the.behavior.of.this. |
| 9bd80 | 6d 6f 64 65 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 6c 6f 61 64 20 62 61 | mode..This.mode.provides.load.ba |
| 9bda0 | 6c 61 6e 63 69 6e 67 20 61 6e 64 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 00 54 68 69 | lancing.and.fault.tolerance..Thi |
| 9bdc0 | 73 20 6f 70 74 69 6f 6e 20 61 64 64 73 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 | s.option.adds.Power.Constraint.e |
| 9bde0 | 6c 65 6d 65 6e 74 20 77 68 65 6e 20 61 70 70 6c 69 63 61 62 6c 65 20 61 6e 64 20 43 6f 75 6e 74 | lement.when.applicable.and.Count |
| 9be00 | 72 79 20 65 6c 65 6d 65 6e 74 20 69 73 20 61 64 64 65 64 2e 20 50 6f 77 65 72 20 43 6f 6e 73 74 | ry.element.is.added..Power.Const |
| 9be20 | 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 69 73 20 72 65 71 75 69 72 65 64 20 62 79 20 54 72 61 | raint.element.is.required.by.Tra |
| 9be40 | 6e 73 6d 69 74 20 50 6f 77 65 72 20 43 6f 6e 74 72 6f 6c 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e | nsmit.Power.Control..This.option |
| 9be60 | 20 61 64 64 73 20 74 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 69 6e 66 6f 72 | .adds.the.Power.Constraint.infor |
| 9be80 | 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 20 77 68 65 6e 20 61 70 70 6c 69 63 61 62 6c 65 20 61 | mation.element.when.applicable.a |
| 9bea0 | 6e 64 20 74 68 65 20 43 6f 75 6e 74 72 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 | nd.the.Country.information.eleme |
| 9bec0 | 6e 74 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 | nt.is.configured..The.Power.Cons |
| 9bee0 | 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 69 73 20 72 65 71 75 69 72 65 64 20 62 79 20 54 72 | traint.element.is.required.by.Tr |
| 9bf00 | 61 6e 73 6d 69 74 20 50 6f 77 65 72 20 43 6f 6e 74 72 6f 6c 2e 00 54 68 69 73 20 6f 70 74 69 6f | ansmit.Power.Control..This.optio |
| 9bf20 | 6e 20 61 6c 6c 6f 77 20 74 6f 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 38 30 32 2e 33 61 64 | n.allow.to.specifies.the.802.3ad |
| 9bf40 | 20 73 79 73 74 65 6d 20 4d 41 43 20 61 64 64 72 65 73 73 2e 59 6f 75 20 63 61 6e 20 73 65 74 20 | .system.MAC.address.You.can.set. |
| 9bf60 | 61 20 72 61 6e 64 6f 6d 20 6d 61 63 2d 61 64 64 72 65 73 73 20 74 68 61 74 20 63 61 6e 20 62 65 | a.random.mac-address.that.can.be |
| 9bf80 | 20 75 73 65 64 20 66 6f 72 20 74 68 65 73 65 20 4c 41 43 50 44 55 20 65 78 63 68 61 6e 67 65 73 | .used.for.these.LACPDU.exchanges |
| 9bfa0 | 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d | ..This.option.can.be.specified.m |
| 9bfc0 | 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 | ultiple.times..This.option.can.b |
| 9bfe0 | 65 20 73 75 70 70 6c 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 54 68 69 73 20 | e.supplied.multiple.times..This. |
| 9c000 | 6f 70 74 69 6f 6e 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 69 6e 20 41 63 63 65 73 73 2d 50 6f | option.is.mandatory.in.Access-Po |
| 9c020 | 69 6e 74 20 6d 6f 64 65 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 72 65 71 75 69 72 65 | int.mode..This.option.is.require |
| 9c040 | 64 20 77 68 65 6e 20 72 75 6e 6e 69 6e 67 20 61 20 44 4d 56 50 4e 20 73 70 6f 6b 65 2e 00 54 68 | d.when.running.a.DMVPN.spoke..Th |
| 9c060 | 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 62 79 20 73 6f 6d 65 20 44 48 43 50 20 63 | is.option.is.used.by.some.DHCP.c |
| 9c080 | 6c 69 65 6e 74 73 20 61 73 20 61 20 77 61 79 20 66 6f 72 20 75 73 65 72 73 20 74 6f 20 73 70 65 | lients.as.a.way.for.users.to.spe |
| 9c0a0 | 63 69 66 79 20 69 64 65 6e 74 69 66 79 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 | cify.identifying.information.to. |
| 9c0c0 | 74 68 65 20 63 6c 69 65 6e 74 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 | the.client..This.can.be.used.in. |
| 9c0e0 | 61 20 73 69 6d 69 6c 61 72 20 77 61 79 20 74 6f 20 74 68 65 20 76 65 6e 64 6f 72 2d 63 6c 61 73 | a.similar.way.to.the.vendor-clas |
| 9c100 | 73 2d 69 64 65 6e 74 69 66 69 65 72 20 6f 70 74 69 6f 6e 2c 20 62 75 74 20 74 68 65 20 76 61 6c | s-identifier.option,.but.the.val |
| 9c120 | 75 65 20 6f 66 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 62 79 | ue.of.the.option.is.specified.by |
| 9c140 | 20 74 68 65 20 75 73 65 72 2c 20 6e 6f 74 20 74 68 65 20 76 65 6e 64 6f 72 2e 00 54 68 69 73 20 | .the.user,.not.the.vendor..This. |
| 9c160 | 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 62 79 20 73 6f 6d 65 20 44 48 43 50 20 63 6c 69 65 | option.is.used.by.some.DHCP.clie |
| 9c180 | 6e 74 73 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 76 65 6e 64 6f 72 20 74 79 70 65 20 | nts.to.identify.the.vendor.type. |
| 9c1a0 | 61 6e 64 20 70 6f 73 73 69 62 6c 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f | and.possibly.the.configuration.o |
| 9c1c0 | 66 20 61 20 44 48 43 50 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | f.a.DHCP.client..The.information |
| 9c1e0 | 20 69 73 20 61 20 73 74 72 69 6e 67 20 6f 66 20 62 79 74 65 73 20 77 68 6f 73 65 20 63 6f 6e 74 | .is.a.string.of.bytes.whose.cont |
| 9c200 | 65 6e 74 73 20 61 72 65 20 73 70 65 63 69 66 69 63 20 74 6f 20 74 68 65 20 76 65 6e 64 6f 72 20 | ents.are.specific.to.the.vendor. |
| 9c220 | 61 6e 64 20 61 72 65 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 61 20 73 74 61 6e 64 | and.are.not.specified.in.a.stand |
| 9c240 | 61 72 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 77 69 | ard..This.option.must.be.used.wi |
| 9c260 | 74 68 20 60 60 74 69 6d 65 6f 75 74 60 60 20 6f 70 74 69 6f 6e 2e 00 54 68 69 73 20 6f 70 74 69 | th.``timeout``.option..This.opti |
| 9c280 | 6f 6e 20 6f 6e 6c 79 20 61 66 66 65 63 74 73 20 38 30 32 2e 33 61 64 20 6d 6f 64 65 2e 00 54 68 | on.only.affects.802.3ad.mode..Th |
| 9c2a0 | 69 73 20 6f 70 74 69 6f 6e 20 72 65 71 75 69 72 65 73 20 3a 61 62 62 72 3a 60 4d 46 50 20 28 4d | is.option.requires.:abbr:`MFP.(M |
| 9c2c0 | 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 6f 74 65 63 74 69 6f 6e 29 60 20 74 6f 20 | anagement.Frame.Protection)`.to. |
| 9c2e0 | 62 65 20 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 73 70 65 63 69 66 69 65 | be.enabled..This.option.specifie |
| 9c300 | 73 20 61 20 64 65 6c 61 79 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 66 6f 72 65 20 76 72 72 70 | s.a.delay.in.seconds.before.vrrp |
| 9c320 | 20 69 6e 73 74 61 6e 63 65 73 20 73 74 61 72 74 20 75 70 20 61 66 74 65 72 20 6b 65 65 70 61 6c | .instances.start.up.after.keepal |
| 9c340 | 69 76 65 64 20 73 74 61 72 74 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 77 61 73 20 63 61 6c | ived.starts..This.option.was.cal |
| 9c360 | 6c 65 64 20 2d 2d 6e 63 70 2d 63 69 70 68 65 72 73 20 69 6e 20 4f 70 65 6e 56 50 4e 20 32 2e 34 | led.--ncp-ciphers.in.OpenVPN.2.4 |
| 9c380 | 20 62 75 74 20 68 61 73 20 62 65 65 6e 20 72 65 6e 61 6d 65 64 20 74 6f 20 2d 2d 64 61 74 61 2d | .but.has.been.renamed.to.--data- |
| 9c3a0 | 63 69 70 68 65 72 73 20 69 6e 20 4f 70 65 6e 56 50 4e 20 32 2e 35 20 74 6f 20 6d 6f 72 65 20 61 | ciphers.in.OpenVPN.2.5.to.more.a |
| 9c3c0 | 63 63 75 72 61 74 65 6c 79 20 72 65 66 6c 65 63 74 20 69 74 73 20 6d 65 61 6e 69 6e 67 2e 20 54 | ccurately.reflect.its.meaning..T |
| 9c3e0 | 68 65 20 66 69 72 73 74 20 63 69 70 68 65 72 20 69 6e 20 74 68 61 74 20 6c 69 73 74 20 74 68 61 | he.first.cipher.in.that.list.tha |
| 9c400 | 74 20 69 73 20 61 6c 73 6f 20 69 6e 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 2d 2d 64 61 74 61 | t.is.also.in.the.client's.--data |
| 9c420 | 2d 63 69 70 68 65 72 73 20 6c 69 73 74 20 69 73 20 63 68 6f 73 65 6e 2e 20 49 66 20 6e 6f 20 63 | -ciphers.list.is.chosen..If.no.c |
| 9c440 | 6f 6d 6d 6f 6e 20 63 69 70 68 65 72 20 69 73 20 66 6f 75 6e 64 20 74 68 65 20 63 6c 69 65 6e 74 | ommon.cipher.is.found.the.client |
| 9c460 | 20 69 73 20 72 65 6a 65 63 74 65 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 73 20 64 65 66 61 75 | .is.rejected..This.options.defau |
| 9c480 | 6c 74 73 20 74 6f 20 32 30 34 38 00 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 61 6c 6c 6f 77 | lts.to.2048.This.parameter.allow |
| 9c4a0 | 73 20 74 6f 20 22 73 68 6f 72 74 63 75 74 22 20 72 6f 75 74 65 73 20 28 6e 6f 6e 2d 62 61 63 6b | s.to."shortcut".routes.(non-back |
| 9c4c0 | 62 6f 6e 65 29 20 66 6f 72 20 69 6e 74 65 72 2d 61 72 65 61 20 72 6f 75 74 65 73 2e 20 54 68 65 | bone).for.inter-area.routes..The |
| 9c4e0 | 72 65 20 61 72 65 20 74 68 72 65 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 | re.are.three.modes.available.for |
| 9c500 | 20 72 6f 75 74 65 73 20 73 68 6f 72 74 63 75 74 74 69 6e 67 3a 00 54 68 69 73 20 70 6f 6c 69 63 | .routes.shortcutting:.This.polic |
| 9c520 | 79 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 61 20 6d 6f 72 65 20 | y.is.intended.to.provide.a.more. |
| 9c540 | 62 61 6c 61 6e 63 65 64 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 6f 66 20 74 72 61 66 66 69 63 | balanced.distribution.of.traffic |
| 9c560 | 20 74 68 61 6e 20 6c 61 79 65 72 32 20 61 6c 6f 6e 65 2c 20 65 73 70 65 63 69 61 6c 6c 79 20 69 | .than.layer2.alone,.especially.i |
| 9c580 | 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 77 68 65 72 65 20 61 20 6c 61 79 65 72 33 20 67 61 | n.environments.where.a.layer3.ga |
| 9c5a0 | 74 65 77 61 79 20 64 65 76 69 63 65 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 72 65 61 63 | teway.device.is.required.to.reac |
| 9c5c0 | 68 20 6d 6f 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 70 72 6f 6d 70 74 | h.most.destinations..This.prompt |
| 9c5e0 | 65 64 20 73 6f 6d 65 20 49 53 50 73 20 74 6f 20 64 65 76 65 6c 6f 70 20 61 20 70 6f 6c 69 63 79 | ed.some.ISPs.to.develop.a.policy |
| 9c600 | 20 77 69 74 68 69 6e 20 74 68 65 20 3a 61 62 62 72 3a 60 41 52 49 4e 20 28 41 6d 65 72 69 63 61 | .within.the.:abbr:`ARIN.(America |
| 9c620 | 6e 20 52 65 67 69 73 74 72 79 20 66 6f 72 20 49 6e 74 65 72 6e 65 74 20 4e 75 6d 62 65 72 73 29 | n.Registry.for.Internet.Numbers) |
| 9c640 | 60 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 6e 65 77 20 70 72 69 76 61 74 65 20 61 64 64 72 65 73 | `.to.allocate.new.private.addres |
| 9c660 | 73 20 73 70 61 63 65 20 66 6f 72 20 43 47 4e 73 2c 20 62 75 74 20 41 52 49 4e 20 64 65 66 65 72 | s.space.for.CGNs,.but.ARIN.defer |
| 9c680 | 72 65 64 20 74 6f 20 74 68 65 20 49 45 54 46 20 62 65 66 6f 72 65 20 69 6d 70 6c 65 6d 65 6e 74 | red.to.the.IETF.before.implement |
| 9c6a0 | 69 6e 67 20 74 68 65 20 70 6f 6c 69 63 79 20 69 6e 64 69 63 61 74 69 6e 67 20 74 68 61 74 20 74 | ing.the.policy.indicating.that.t |
| 9c6c0 | 68 65 20 6d 61 74 74 65 72 20 77 61 73 20 6e 6f 74 20 61 20 74 79 70 69 63 61 6c 20 61 6c 6c 6f | he.matter.was.not.a.typical.allo |
| 9c6e0 | 63 61 74 69 6f 6e 20 69 73 73 75 65 20 62 75 74 20 61 20 72 65 73 65 72 76 61 74 69 6f 6e 20 6f | cation.issue.but.a.reservation.o |
| 9c700 | 66 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 65 63 68 6e 69 63 61 6c 20 70 75 72 70 6f 73 | f.addresses.for.technical.purpos |
| 9c720 | 65 73 20 28 70 65 72 20 3a 72 66 63 3a 60 32 38 36 30 60 29 2e 00 54 68 69 73 20 72 65 71 75 69 | es.(per.:rfc:`2860`)..This.requi |
| 9c740 | 72 65 64 20 73 65 74 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 6f | red.setting.defines.the.action.o |
| 9c760 | 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 61 63 74 69 6f 6e 20 69 73 | f.the.current.rule..If.action.is |
| 9c780 | 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 6a 75 6d 70 2d 74 61 | .set.to.``jump``,.then.``jump-ta |
| 9c7a0 | 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 | rget``.is.also.needed..This.requ |
| 9c7c0 | 69 72 65 64 20 73 65 74 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 | ired.setting.defines.the.action. |
| 9c7e0 | 6f 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 61 63 74 69 6f 6e 20 69 | of.the.current.rule..If.action.i |
| 9c800 | 73 20 73 65 74 20 74 6f 20 6a 75 6d 70 2c 20 74 68 65 6e 20 6a 75 6d 70 2d 74 61 72 67 65 74 20 | s.set.to.jump,.then.jump-target. |
| 9c820 | 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 64 20 73 65 | is.also.needed..This.required.se |
| 9c840 | 74 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 | tting.defines.the.action.of.the. |
| 9c860 | 63 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 74 68 65 20 61 63 74 69 6f 6e 20 69 73 20 73 | current.rule..If.the.action.is.s |
| 9c880 | 65 74 20 74 6f 20 6a 75 6d 70 2c 20 74 68 65 6e 20 61 20 6a 75 6d 70 2d 74 61 72 67 65 74 20 69 | et.to.jump,.then.a.jump-target.i |
| 9c8a0 | 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 73 20 74 77 6f | s.also.needed..This.requires.two |
| 9c8c0 | 20 66 69 6c 65 73 2c 20 6f 6e 65 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 64 65 76 69 63 65 | .files,.one.to.create.the.device |
| 9c8e0 | 20 28 58 58 58 2e 6e 65 74 64 65 76 29 20 61 6e 64 20 6f 6e 65 20 74 6f 20 63 6f 6e 66 69 67 75 | .(XXX.netdev).and.one.to.configu |
| 9c900 | 72 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 20 28 58 58 | re.the.network.on.the.device.(XX |
| 9c920 | 58 2e 6e 65 74 77 6f 72 6b 29 00 54 68 69 73 20 72 65 73 75 6c 74 73 20 69 6e 20 74 68 65 20 61 | X.network).This.results.in.the.a |
| 9c940 | 63 74 69 76 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 69 73 20 73 61 79 73 20 74 | ctive.configuration:.This.says.t |
| 9c960 | 68 61 74 20 74 68 69 73 20 64 65 76 69 63 65 20 69 73 20 74 68 65 20 6f 6e 6c 79 20 44 48 43 50 | hat.this.device.is.the.only.DHCP |
| 9c980 | 20 73 65 72 76 65 72 20 66 6f 72 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 2e 20 49 66 20 6f 74 68 | .server.for.this.network..If.oth |
| 9c9a0 | 65 72 20 64 65 76 69 63 65 73 20 61 72 65 20 74 72 79 69 6e 67 20 74 6f 20 6f 66 66 65 72 20 44 | er.devices.are.trying.to.offer.D |
| 9c9c0 | 48 43 50 20 6c 65 61 73 65 73 2c 20 74 68 69 73 20 6d 61 63 68 69 6e 65 20 77 69 6c 6c 20 73 65 | HCP.leases,.this.machine.will.se |
| 9c9e0 | 6e 64 20 27 44 48 43 50 4e 41 4b 27 20 74 6f 20 61 6e 79 20 64 65 76 69 63 65 20 74 72 79 69 6e | nd.'DHCPNAK'.to.any.device.tryin |
| 9ca00 | 67 20 74 6f 20 72 65 71 75 65 73 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 74 68 61 74 20 | g.to.request.an.IP.address.that. |
| 9ca20 | 69 73 20 6e 6f 74 20 76 61 6c 69 64 20 66 6f 72 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 2e 00 54 | is.not.valid.for.this.network..T |
| 9ca40 | 68 69 73 20 73 65 63 74 69 6f 6e 20 64 65 73 63 72 69 62 65 73 20 63 6f 6e 66 69 67 75 72 69 6e | his.section.describes.configurin |
| 9ca60 | 67 20 44 4e 53 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2c 20 6e 61 6d 65 6c 79 3a 00 54 68 69 | g.DNS.on.the.system,.namely:.Thi |
| 9ca80 | 73 20 73 65 63 74 69 6f 6e 20 64 65 73 63 72 69 62 65 73 20 74 68 65 20 73 79 73 74 65 6d 27 73 | s.section.describes.the.system's |
| 9caa0 | 20 68 6f 73 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6e 64 20 68 6f 77 20 74 6f 20 63 6f 6e | .host.information.and.how.to.con |
| 9cac0 | 66 69 67 75 72 65 20 74 68 65 6d 2c 20 69 74 20 63 6f 76 65 72 73 20 74 68 65 20 66 6f 6c 6c 6f | figure.them,.it.covers.the.follo |
| 9cae0 | 77 69 6e 67 20 74 6f 70 69 63 73 3a 00 54 68 69 73 20 73 65 63 74 69 6f 6e 20 6e 65 65 64 73 20 | wing.topics:.This.section.needs. |
| 9cb00 | 69 6d 70 72 6f 76 65 6d 65 6e 74 73 2c 20 65 78 61 6d 70 6c 65 73 20 61 6e 64 20 65 78 70 6c 61 | improvements,.examples.and.expla |
| 9cb20 | 6e 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 73 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 | nations..This.set.the.default.ac |
| 9cb40 | 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 | tion.of.the.rule-set.if.no.rule. |
| 9cb60 | 6d 61 74 63 68 65 64 20 61 20 70 61 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e 20 49 66 20 64 65 | matched.a.packet.criteria..If.de |
| 9cb80 | 66 61 63 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 | facult-action.is.set.to.``jump`` |
| 9cba0 | 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 | ,.then.``default-jump-target``.i |
| 9cbc0 | 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 20 73 65 74 20 74 68 65 20 64 65 66 61 | s.also.needed..This.set.the.defa |
| 9cbe0 | 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f | ult.action.of.the.rule-set.if.no |
| 9cc00 | 20 72 75 6c 65 20 6d 61 74 63 68 65 64 20 61 20 70 61 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e | .rule.matched.a.packet.criteria. |
| 9cc20 | 20 49 66 20 64 65 66 61 63 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 | .If.defacult-action.is.set.to.`` |
| 9cc40 | 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 | jump``,.then.``default-jump-targ |
| 9cc60 | 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 | et``.is.also.needed..Note.that.f |
| 9cc80 | 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 | or.base.chains,.default.action.c |
| 9cca0 | 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 60 60 20 6f 72 20 | an.only.be.set.to.``accept``.or. |
| 9ccc0 | 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c | ``drop``,.while.on.custom.chain, |
| 9cce0 | 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 | .more.actions.are.available..Thi |
| 9cd00 | 73 20 73 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 | s.set.the.default.action.of.the. |
| 9cd20 | 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 6d 61 74 63 68 65 64 20 61 20 70 61 | rule-set.if.no.rule.matched.a.pa |
| 9cd40 | 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e 20 49 66 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e | cket.criteria..If.default-action |
| 9cd60 | 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 | .is.set.to.``jump``,.then.``defa |
| 9cd80 | 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 | ult-jump-target``.is.also.needed |
| 9cda0 | 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 | ..Note.that.for.base.chains,.def |
| 9cdc0 | 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 | ault.action.can.only.be.set.to.` |
| 9cde0 | 60 61 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 | `accept``.or.``drop``,.while.on. |
| 9ce00 | 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 | custom.chain,.more.actions.are.a |
| 9ce20 | 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 61 63 63 65 70 74 65 64 | vailable..This.sets.the.accepted |
| 9ce40 | 20 63 69 70 68 65 72 73 20 74 6f 20 75 73 65 20 77 68 65 6e 20 76 65 72 73 69 6f 6e 20 3d 3e 20 | .ciphers.to.use.when.version.=>. |
| 9ce60 | 32 2e 34 2e 30 20 61 6e 64 20 4e 43 50 20 69 73 20 65 6e 61 62 6c 65 64 20 28 77 68 69 63 68 20 | 2.4.0.and.NCP.is.enabled.(which. |
| 9ce80 | 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 29 2e 20 44 65 66 61 75 6c 74 20 4e 43 50 20 63 69 70 | is.the.default)..Default.NCP.cip |
| 9cea0 | 68 65 72 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 3e 3d 20 32 2e 34 2e 30 20 69 73 20 61 65 73 | her.for.versions.>=.2.4.0.is.aes |
| 9cec0 | 32 35 36 67 63 6d 2e 20 54 68 65 20 66 69 72 73 74 20 63 69 70 68 65 72 20 69 6e 20 74 68 69 73 | 256gcm..The.first.cipher.in.this |
| 9cee0 | 20 6c 69 73 74 20 69 73 20 77 68 61 74 20 73 65 72 76 65 72 20 70 75 73 68 65 73 20 74 6f 20 63 | .list.is.what.server.pushes.to.c |
| 9cf00 | 6c 69 65 6e 74 73 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 63 69 70 68 65 72 20 77 68 65 | lients..This.sets.the.cipher.whe |
| 9cf20 | 6e 20 4e 43 50 20 28 4e 65 67 6f 74 69 61 62 6c 65 20 43 72 79 70 74 6f 20 50 61 72 61 6d 65 74 | n.NCP.(Negotiable.Crypto.Paramet |
| 9cf40 | 65 72 73 29 20 69 73 20 64 69 73 61 62 6c 65 64 20 6f 72 20 4f 70 65 6e 56 50 4e 20 76 65 72 73 | ers).is.disabled.or.OpenVPN.vers |
| 9cf60 | 69 6f 6e 20 3c 20 32 2e 34 2e 30 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 63 69 70 68 65 | ion.<.2.4.0..This.sets.the.ciphe |
| 9cf80 | 72 20 77 68 65 6e 20 4e 43 50 20 28 4e 65 67 6f 74 69 61 62 6c 65 20 43 72 79 70 74 6f 20 50 61 | r.when.NCP.(Negotiable.Crypto.Pa |
| 9cfa0 | 72 61 6d 65 74 65 72 73 29 20 69 73 20 64 69 73 61 62 6c 65 64 20 6f 72 20 4f 70 65 6e 56 50 4e | rameters).is.disabled.or.OpenVPN |
| 9cfc0 | 20 76 65 72 73 69 6f 6e 20 3c 20 32 2e 34 2e 30 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 73 68 | .version.<.2.4.0..This.option.sh |
| 9cfe0 | 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 61 6e 79 20 6c 6f 6e 67 65 72 20 69 6e 20 54 | ould.not.be.used.any.longer.in.T |
| 9d000 | 4c 53 20 6d 6f 64 65 20 61 6e 64 20 73 74 69 6c 6c 20 65 78 69 73 74 73 20 66 6f 72 20 63 6f 6d | LS.mode.and.still.exists.for.com |
| 9d020 | 70 61 74 69 62 69 6c 69 74 79 20 77 69 74 68 20 6f 6c 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | patibility.with.old.configuratio |
| 9d040 | 6e 73 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e | ns..This.sets.the.default.action |
| 9d060 | 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 61 20 70 61 63 6b 65 74 20 64 6f 65 | .of.the.rule-set.if.a.packet.doe |
| 9d080 | 73 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 6f 66 20 74 68 65 20 72 75 6c 65 73 20 69 6e 20 | s.not.match.any.of.the.rules.in. |
| 9d0a0 | 74 68 61 74 20 63 68 61 69 6e 2e 20 49 66 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 | that.chain..If.default-action.is |
| 9d0c0 | 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 | .set.to.``jump``,.then.``default |
| 9d0e0 | 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e | -jump-target``.is.also.needed..N |
| 9d100 | 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 61 75 6c | ote.that.for.base.chains,.defaul |
| 9d120 | 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 | t.action.can.only.be.set.to.``ac |
| 9d140 | 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 | cept``.or.``drop``,.while.on.cus |
| 9d160 | 74 6f 6d 20 63 68 61 69 6e 73 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 | tom.chains.more.actions.are.avai |
| 9d180 | 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 | lable..This.sets.the.default.act |
| 9d1a0 | 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 61 20 70 61 63 6b 65 74 20 | ion.of.the.rule-set.if.a.packet. |
| 9d1c0 | 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 20 63 72 69 74 65 72 69 61 20 6f 66 20 61 | does.not.match.the.criteria.of.a |
| 9d1e0 | 6e 79 20 72 75 6c 65 2e 20 49 66 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 | ny.rule..If.default-action.is.se |
| 9d200 | 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 | t.to.``jump``,.then.``default-ju |
| 9d220 | 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 | mp-target``.is.also.needed..Note |
| 9d240 | 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 74 68 65 20 64 65 66 61 75 | .that.for.base.chains,.the.defau |
| 9d260 | 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 | lt.action.can.only.be.set.to.``a |
| 9d280 | 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 | ccept``.or.``drop``,.while.on.cu |
| 9d2a0 | 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 | stom.chains,.more.actions.are.av |
| 9d2c0 | 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 63 6f 6e 66 69 67 75 72 65 73 | ailable..This.setting.configures |
| 9d2e0 | 20 53 70 61 63 69 61 6c 20 53 74 72 65 61 6d 20 61 6e 64 20 4d 6f 64 75 6c 61 74 69 6f 6e 20 43 | .Spacial.Stream.and.Modulation.C |
| 9d300 | 6f 64 69 6e 67 20 53 63 68 65 6d 65 20 73 65 74 74 69 6e 67 73 20 66 6f 72 20 48 45 20 6d 6f 64 | oding.Scheme.settings.for.HE.mod |
| 9d320 | 65 20 28 48 45 2d 4d 43 53 29 2e 20 49 74 20 69 73 20 75 73 75 61 6c 6c 79 20 6e 6f 74 20 6e 65 | e.(HE-MCS)..It.is.usually.not.ne |
| 9d340 | 65 64 65 64 20 74 6f 20 73 65 74 20 74 68 69 73 20 65 78 70 6c 69 63 69 74 6c 79 2c 20 62 75 74 | eded.to.set.this.explicitly,.but |
| 9d360 | 20 69 74 20 6d 69 67 68 74 20 68 65 6c 70 20 77 69 74 68 20 73 6f 6d 65 20 57 69 46 69 20 61 64 | .it.might.help.with.some.WiFi.ad |
| 9d380 | 61 70 74 65 72 73 2e 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 64 65 66 61 75 6c 74 73 20 74 6f | apters..This.setting.defaults.to |
| 9d3a0 | 20 31 35 30 30 20 61 6e 64 20 69 73 20 76 61 6c 69 64 20 62 65 74 77 65 65 6e 20 31 30 20 61 6e | .1500.and.is.valid.between.10.an |
| 9d3c0 | 64 20 36 30 30 30 30 2e 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 65 6e 61 62 6c 65 20 6f 72 20 | d.60000..This.setting.enable.or. |
| 9d3e0 | 64 69 73 61 62 6c 65 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 6f 66 20 69 63 6d 70 20 62 72 6f | disable.the.response.of.icmp.bro |
| 9d400 | 61 64 63 61 73 74 20 6d 65 73 73 61 67 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 | adcast.messages..The.following.s |
| 9d420 | 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a | ystem.parameter.will.be.altered: |
| 9d440 | 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 65 6e 61 62 6c 65 73 20 6f 72 20 64 69 73 61 62 6c 65 | .This.setting.enables.or.disable |
| 9d460 | 73 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 69 63 6d 70 20 62 72 6f 61 64 63 61 73 74 | s.the.response.to.icmp.broadcast |
| 9d480 | 20 6d 65 73 73 61 67 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 | .messages..The.following.system. |
| 9d4a0 | 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 | parameter.will.be.altered:.This. |
| 9d4c0 | 73 65 74 74 69 6e 67 20 68 61 6e 64 6c 65 20 69 66 20 56 79 4f 53 20 61 63 63 65 70 74 20 70 61 | setting.handle.if.VyOS.accept.pa |
| 9d4e0 | 63 6b 65 74 73 20 77 69 74 68 20 61 20 73 6f 75 72 63 65 20 72 6f 75 74 65 20 6f 70 74 69 6f 6e | ckets.with.a.source.route.option |
| 9d500 | 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 | ..The.following.system.parameter |
| 9d520 | 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 68 | .will.be.altered:.This.setting.h |
| 9d540 | 61 6e 64 6c 65 73 20 69 66 20 56 79 4f 53 20 61 63 63 65 70 74 73 20 70 61 63 6b 65 74 73 20 77 | andles.if.VyOS.accepts.packets.w |
| 9d560 | 69 74 68 20 61 20 73 6f 75 72 63 65 20 72 6f 75 74 65 20 6f 70 74 69 6f 6e 2e 20 54 68 65 20 66 | ith.a.source.route.option..The.f |
| 9d580 | 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 73 20 77 69 6c 6c 20 | ollowing.system.parameters.will. |
| 9d5a0 | 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 2c 20 77 68 69 63 68 20 | be.altered:.This.setting,.which. |
| 9d5c0 | 64 65 66 61 75 6c 74 73 20 74 6f 20 33 36 30 30 20 73 65 63 6f 6e 64 73 2c 20 70 75 74 73 20 61 | defaults.to.3600.seconds,.puts.a |
| 9d5e0 | 20 6d 61 78 69 6d 75 6d 20 6f 6e 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 6e | .maximum.on.the.amount.of.time.n |
| 9d600 | 65 67 61 74 69 76 65 20 65 6e 74 72 69 65 73 20 61 72 65 20 63 61 63 68 65 64 2e 00 54 68 69 73 | egative.entries.are.cached..This |
| 9d620 | 20 73 65 74 75 70 20 77 69 6c 6c 20 6d 61 6b 65 20 74 68 65 20 56 52 52 50 20 70 72 6f 63 65 73 | .setup.will.make.the.VRRP.proces |
| 9d640 | 73 20 65 78 65 63 75 74 65 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f | s.execute.the.``/config/scripts/ |
| 9d660 | 76 72 72 70 2d 63 68 65 63 6b 2e 73 68 20 73 63 72 69 70 74 60 60 20 65 76 65 72 79 20 36 30 20 | vrrp-check.sh.script``.every.60. |
| 9d680 | 73 65 63 6f 6e 64 73 2c 20 61 6e 64 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 68 65 20 67 72 6f 75 | seconds,.and.transition.the.grou |
| 9d6a0 | 70 20 74 6f 20 74 68 65 20 66 61 75 6c 74 20 73 74 61 74 65 20 69 66 20 69 74 20 66 61 69 6c 73 | p.to.the.fault.state.if.it.fails |
| 9d6c0 | 20 28 69 2e 65 2e 20 65 78 69 74 73 20 77 69 74 68 20 6e 6f 6e 2d 7a 65 72 6f 20 73 74 61 74 75 | .(i.e..exits.with.non-zero.statu |
| 9d6e0 | 73 29 20 74 68 72 65 65 20 74 69 6d 65 73 3a 00 54 68 69 73 20 73 70 65 63 69 66 69 65 73 20 74 | s).three.times:.This.specifies.t |
| 9d700 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 43 50 55 20 72 65 73 6f 75 72 63 65 73 20 74 68 65 20 63 | he.number.of.CPU.resources.the.c |
| 9d720 | 6f 6e 74 61 69 6e 65 72 20 63 61 6e 20 75 73 65 2e 00 54 68 69 73 20 73 74 61 67 65 20 69 6e 63 | ontainer.can.use..This.stage.inc |
| 9d740 | 6c 75 64 65 73 3a 00 54 68 69 73 20 73 74 61 74 65 6d 65 6e 74 20 73 70 65 63 69 66 69 65 73 20 | ludes:.This.statement.specifies. |
| 9d760 | 64 68 63 70 36 63 20 74 6f 20 6f 6e 6c 79 20 65 78 63 68 61 6e 67 65 20 69 6e 66 6f 72 6d 61 74 | dhcp6c.to.only.exchange.informat |
| 9d780 | 69 6f 6e 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 20 77 | ional.configuration.parameters.w |
| 9d7a0 | 69 74 68 20 73 65 72 76 65 72 73 2e 20 41 20 6c 69 73 74 20 6f 66 20 44 4e 53 20 73 65 72 76 65 | ith.servers..A.list.of.DNS.serve |
| 9d7c0 | 72 20 61 64 64 72 65 73 73 65 73 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 73 75 63 | r.addresses.is.an.example.of.suc |
| 9d7e0 | 68 20 70 61 72 61 6d 65 74 65 72 73 2e 20 54 68 69 73 20 73 74 61 74 65 6d 65 6e 74 20 69 73 20 | h.parameters..This.statement.is. |
| 9d800 | 75 73 65 66 75 6c 20 77 68 65 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 64 6f 65 73 20 6e 6f 74 20 | useful.when.the.client.does.not. |
| 9d820 | 6e 65 65 64 20 73 74 61 74 65 66 75 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 | need.stateful.configuration.para |
| 9d840 | 6d 65 74 65 72 73 20 73 75 63 68 20 61 73 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 6f 72 | meters.such.as.IPv6.addresses.or |
| 9d860 | 20 70 72 65 66 69 78 65 73 2e 00 54 68 69 73 20 73 75 70 70 6f 72 74 20 6d 61 79 20 62 65 20 65 | .prefixes..This.support.may.be.e |
| 9d880 | 6e 61 62 6c 65 64 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 28 61 6e 64 20 69 6e 64 | nabled.administratively.(and.ind |
| 9d8a0 | 65 66 69 6e 69 74 65 6c 79 29 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 64 6d | efinitely).with.the.:cfgcmd:`adm |
| 9d8c0 | 69 6e 69 73 74 72 61 74 69 76 65 60 20 63 6f 6d 6d 61 6e 64 2e 20 49 74 20 6d 61 79 20 61 6c 73 | inistrative`.command..It.may.als |
| 9d8e0 | 6f 20 62 65 20 65 6e 61 62 6c 65 64 20 63 6f 6e 64 69 74 69 6f 6e 61 6c 6c 79 2e 20 43 6f 6e 64 | o.be.enabled.conditionally..Cond |
| 9d900 | 69 74 69 6f 6e 61 6c 20 65 6e 61 62 6c 69 6e 67 20 6f 66 20 6d 61 78 2d 6d 65 74 72 69 63 20 72 | itional.enabling.of.max-metric.r |
| 9d920 | 6f 75 74 65 72 2d 6c 73 61 73 20 63 61 6e 20 62 65 20 66 6f 72 20 61 20 70 65 72 69 6f 64 20 6f | outer-lsas.can.be.for.a.period.o |
| 9d940 | 66 20 73 65 63 6f 6e 64 73 20 61 66 74 65 72 20 73 74 61 72 74 75 70 20 77 69 74 68 20 74 68 65 | f.seconds.after.startup.with.the |
| 9d960 | 20 3a 63 66 67 63 6d 64 3a 60 6f 6e 2d 73 74 61 72 74 75 70 20 3c 73 65 63 6f 6e 64 73 3e 60 20 | .:cfgcmd:`on-startup.<seconds>`. |
| 9d980 | 63 6f 6d 6d 61 6e 64 20 61 6e 64 2f 6f 72 20 66 6f 72 20 61 20 70 65 72 69 6f 64 20 6f 66 20 73 | command.and/or.for.a.period.of.s |
| 9d9a0 | 65 63 6f 6e 64 73 20 70 72 69 6f 72 20 74 6f 20 73 68 75 74 64 6f 77 6e 20 77 69 74 68 20 74 68 | econds.prior.to.shutdown.with.th |
| 9d9c0 | 65 20 3a 63 66 67 63 6d 64 3a 60 6f 6e 2d 73 68 75 74 64 6f 77 6e 20 3c 73 65 63 6f 6e 64 73 3e | e.:cfgcmd:`on-shutdown.<seconds> |
| 9d9e0 | 60 20 63 6f 6d 6d 61 6e 64 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 | `.command..The.time.range.is.5.t |
| 9da00 | 6f 20 38 36 34 30 30 2e 00 54 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 69 73 20 63 6f 6d 6d 6f | o.86400..This.technique.is.commo |
| 9da20 | 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 4e 41 54 20 52 65 66 6c 65 63 74 69 6f | nly.referred.to.as.NAT.Reflectio |
| 9da40 | 6e 20 6f 72 20 48 61 69 72 70 69 6e 20 4e 41 54 2e 00 54 68 69 73 20 74 65 63 68 6e 6f 6c 6f 67 | n.or.Hairpin.NAT..This.technolog |
| 9da60 | 79 20 69 73 20 6b 6e 6f 77 6e 20 62 79 20 64 69 66 66 65 72 65 6e 74 20 6e 61 6d 65 73 3a 00 54 | y.is.known.by.different.names:.T |
| 9da80 | 68 69 73 20 74 68 65 20 73 69 6d 70 6c 65 73 74 20 71 75 65 75 65 20 70 6f 73 73 69 62 6c 65 20 | his.the.simplest.queue.possible. |
| 9daa0 | 79 6f 75 20 63 61 6e 20 61 70 70 6c 79 20 74 6f 20 79 6f 75 72 20 74 72 61 66 66 69 63 2e 20 54 | you.can.apply.to.your.traffic..T |
| 9dac0 | 72 61 66 66 69 63 20 6d 75 73 74 20 67 6f 20 74 68 72 6f 75 67 68 20 61 20 66 69 6e 69 74 65 20 | raffic.must.go.through.a.finite. |
| 9dae0 | 71 75 65 75 65 20 62 65 66 6f 72 65 20 69 74 20 69 73 20 61 63 74 75 61 6c 6c 79 20 73 65 6e 74 | queue.before.it.is.actually.sent |
| 9db00 | 2e 20 59 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 68 6f 77 20 6d 61 6e 79 20 70 61 63 6b 65 | ..You.must.define.how.many.packe |
| 9db20 | 74 73 20 74 68 61 74 20 71 75 65 75 65 20 63 61 6e 20 63 6f 6e 74 61 69 6e 2e 00 54 68 69 73 20 | ts.that.queue.can.contain..This. |
| 9db40 | 74 6f 70 6f 6c 6f 67 79 20 77 61 73 20 62 75 69 6c 74 20 75 73 69 6e 67 20 47 4e 53 33 2e 00 54 | topology.was.built.using.GNS3..T |
| 9db60 | 68 69 73 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 74 69 6f | his.will.add.the.following.optio |
| 9db80 | 6e 20 74 6f 20 74 68 65 20 4b 65 72 6e 65 6c 20 63 6f 6d 6d 61 6e 64 6c 69 6e 65 3a 00 54 68 69 | n.to.the.Kernel.commandline:.Thi |
| 9dba0 | 73 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 77 6f 20 6f 70 74 | s.will.add.the.following.two.opt |
| 9dbc0 | 69 6f 6e 73 20 74 6f 20 74 68 65 20 4b 65 72 6e 65 6c 20 63 6f 6d 6d 61 6e 64 6c 69 6e 65 3a 00 | ions.to.the.Kernel.commandline:. |
| 9dbe0 | 54 68 69 73 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6d 6f 73 74 20 77 69 64 65 6c 79 20 75 73 65 | This.will.be.the.most.widely.use |
| 9dc00 | 64 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 61 20 72 6f 75 74 65 72 20 63 61 72 72 79 69 6e 67 | d.interface.on.a.router.carrying |
| 9dc20 | 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 72 65 61 6c 20 77 6f 72 6c 64 2e 00 54 68 69 73 | .traffic.to.the.real.world..This |
| 9dc40 | 20 77 69 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 20 41 52 50 20 65 6e 74 | .will.configure.a.static.ARP.ent |
| 9dc60 | 72 79 20 61 6c 77 61 79 73 20 72 65 73 6f 6c 76 69 6e 67 20 60 3c 61 64 64 72 65 73 73 3e 60 20 | ry.always.resolving.`<address>`. |
| 9dc80 | 74 6f 20 60 3c 6d 61 63 3e 60 20 66 6f 72 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 | to.`<mac>`.for.interface.`<inter |
| 9dca0 | 66 61 63 65 3e 60 2e 00 54 68 69 73 20 77 69 6c 6c 20 6d 61 74 63 68 20 54 43 50 20 74 72 61 66 | face>`..This.will.match.TCP.traf |
| 9dcc0 | 66 69 63 20 77 69 74 68 20 73 6f 75 72 63 65 20 70 6f 72 74 20 38 30 2e 00 54 68 69 73 20 77 69 | fic.with.source.port.80..This.wi |
| 9dce0 | 6c 6c 20 72 65 6e 64 65 72 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 64 63 6c 69 65 6e 74 | ll.render.the.following.ddclient |
| 9dd00 | 5f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 74 72 79 3a 00 54 68 69 73 20 77 69 6c 6c | _.configuration.entry:.This.will |
| 9dd20 | 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 | .show.you.a.basic.firewall.overv |
| 9dd40 | 69 65 77 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 | iew.This.will.show.you.a.basic.f |
| 9dd60 | 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 66 6f 72 20 61 6c 6c 20 72 75 6c 65 2d 73 | irewall.overview,.for.all.rule-s |
| 9dd80 | 65 74 73 2c 20 61 6e 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 6f 72 20 69 70 76 34 00 54 68 69 73 20 | ets,.and.not.only.for.ipv4.This. |
| 9dda0 | 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f | will.show.you.a.basic.firewall.o |
| 9ddc0 | 76 65 72 76 69 65 77 2c 20 66 6f 72 20 61 6c 6c 20 72 75 6c 65 2d 73 65 74 73 2c 20 61 6e 64 20 | verview,.for.all.rule-sets,.and. |
| 9dde0 | 6e 6f 74 20 6f 6e 6c 79 20 66 6f 72 20 69 70 76 36 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 | not.only.for.ipv6.This.will.show |
| 9de00 | 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 | .you.a.basic.firewall.overview,. |
| 9de20 | 66 6f 72 20 61 6c 6c 20 72 75 6c 65 73 65 74 2c 20 61 6e 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 6f | for.all.ruleset,.and.not.only.fo |
| 9de40 | 72 20 69 70 76 34 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 | r.ipv4.This.will.show.you.a.basi |
| 9de60 | 63 20 73 75 6d 6d 61 72 79 20 6f 66 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 7a 6f 6e 65 2e 00 | c.summary.of.a.particular.zone.. |
| 9de80 | 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 73 75 6d 6d 61 | This.will.show.you.a.basic.summa |
| 9dea0 | 72 79 20 6f 66 20 74 68 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 | ry.of.the.zone.configuration..Th |
| 9dec0 | 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 73 75 6d 6d 61 72 79 | is.will.show.you.a.basic.summary |
| 9dee0 | 20 6f 66 20 7a 6f 6e 65 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 69 73 20 77 69 | .of.zones.configuration..This.wi |
| 9df00 | 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 72 75 6c 65 2d 73 65 74 20 73 74 61 74 69 73 74 69 63 | ll.show.you.a.rule-set.statistic |
| 9df20 | 20 73 69 6e 63 65 20 74 68 65 20 6c 61 73 74 20 62 6f 6f 74 2e 00 54 68 69 73 20 77 69 6c 6c 20 | .since.the.last.boot..This.will. |
| 9df40 | 73 68 6f 77 20 79 6f 75 20 61 20 73 74 61 74 69 73 74 69 63 20 6f 66 20 61 6c 6c 20 72 75 6c 65 | show.you.a.statistic.of.all.rule |
| 9df60 | 2d 73 65 74 73 20 73 69 6e 63 65 20 74 68 65 20 6c 61 73 74 20 62 6f 6f 74 2e 00 54 68 69 73 20 | -sets.since.the.last.boot..This. |
| 9df80 | 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 73 75 6d 6d 61 72 79 20 6f 66 20 72 75 6c 65 2d | will.show.you.a.summary.of.rule- |
| 9dfa0 | 73 65 74 73 20 61 6e 64 20 67 72 6f 75 70 73 00 54 68 69 73 20 77 6f 72 6b 61 72 6f 75 6e 64 20 | sets.and.groups.This.workaround. |
| 9dfc0 | 6c 65 74 73 20 79 6f 75 20 61 70 70 6c 79 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 | lets.you.apply.a.shaping.policy. |
| 9dfe0 | 74 6f 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 63 20 62 79 20 66 69 72 73 74 20 | to.the.ingress.traffic.by.first. |
| 9e000 | 72 65 64 69 72 65 63 74 69 6e 67 20 69 74 20 74 6f 20 61 6e 20 69 6e 2d 62 65 74 77 65 65 6e 20 | redirecting.it.to.an.in-between. |
| 9e020 | 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 20 28 60 49 6e 74 65 72 6d 65 64 69 61 74 65 | virtual.interface.(`Intermediate |
| 9e040 | 20 46 75 6e 63 74 69 6f 6e 61 6c 20 42 6c 6f 63 6b 60 5f 29 2e 20 54 68 65 72 65 2c 20 69 6e 20 | .Functional.Block`_)..There,.in. |
| 9e060 | 74 68 61 74 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 2c 20 79 6f 75 20 77 69 6c 6c | that.virtual.interface,.you.will |
| 9e080 | 20 62 65 20 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 61 6e 79 20 6f 66 20 74 68 65 20 70 6f 6c | .be.able.to.apply.any.of.the.pol |
| 9e0a0 | 69 63 69 65 73 20 74 68 61 74 20 77 6f 72 6b 20 66 6f 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 | icies.that.work.for.outbound.tra |
| 9e0c0 | 66 66 69 63 2c 20 66 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 61 20 73 68 61 70 69 6e 67 20 6f 6e | ffic,.for.instance,.a.shaping.on |
| 9e0e0 | 65 2e 00 54 68 69 73 20 77 6f 75 6c 64 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 66 6f 6c 6c 6f | e..This.would.generate.the.follo |
| 9e100 | 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 72 65 65 20 73 69 67 6e 69 66 | wing.configuration:.Three.signif |
| 9e120 | 69 63 61 6e 74 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 53 4e 4d 50 20 68 61 76 65 20 62 65 65 6e | icant.versions.of.SNMP.have.been |
| 9e140 | 20 64 65 76 65 6c 6f 70 65 64 20 61 6e 64 20 64 65 70 6c 6f 79 65 64 2e 20 53 4e 4d 50 76 31 20 | .developed.and.deployed..SNMPv1. |
| 9e160 | 69 73 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 76 65 72 73 69 6f 6e 20 6f 66 20 74 68 65 20 70 | is.the.original.version.of.the.p |
| 9e180 | 72 6f 74 6f 63 6f 6c 2e 20 4d 6f 72 65 20 72 65 63 65 6e 74 20 76 65 72 73 69 6f 6e 73 2c 20 53 | rotocol..More.recent.versions,.S |
| 9e1a0 | 4e 4d 50 76 32 63 20 61 6e 64 20 53 4e 4d 50 76 33 2c 20 66 65 61 74 75 72 65 20 69 6d 70 72 6f | NMPv2c.and.SNMPv3,.feature.impro |
| 9e1c0 | 76 65 6d 65 6e 74 73 20 69 6e 20 70 65 72 66 6f 72 6d 61 6e 63 65 2c 20 66 6c 65 78 69 62 69 6c | vements.in.performance,.flexibil |
| 9e1e0 | 69 74 79 20 61 6e 64 20 73 65 63 75 72 69 74 79 2e 00 54 69 6d 65 20 5a 6f 6e 65 00 54 69 6d 65 | ity.and.security..Time.Zone.Time |
| 9e200 | 20 5a 6f 6e 65 20 73 65 74 74 69 6e 67 20 69 73 20 76 65 72 79 20 69 6d 70 6f 72 74 61 6e 74 20 | .Zone.setting.is.very.important. |
| 9e220 | 61 73 20 65 2e 67 20 61 6c 6c 20 79 6f 75 72 20 6c 6f 67 66 69 6c 65 20 65 6e 74 72 69 65 73 20 | as.e.g.all.your.logfile.entries. |
| 9e240 | 77 69 6c 6c 20 62 65 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | will.be.based.on.the.configured. |
| 9e260 | 7a 6f 6e 65 2e 20 57 69 74 68 6f 75 74 20 70 72 6f 70 65 72 20 74 69 6d 65 20 7a 6f 6e 65 20 63 | zone..Without.proper.time.zone.c |
| 9e280 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 20 77 69 6c 6c 20 62 65 20 76 65 72 79 20 64 69 66 | onfiguration.it.will.be.very.dif |
| 9e2a0 | 66 69 63 75 6c 74 20 74 6f 20 63 6f 6d 70 61 72 65 20 6c 6f 67 66 69 6c 65 73 20 66 72 6f 6d 20 | ficult.to.compare.logfiles.from. |
| 9e2c0 | 64 69 66 66 65 72 65 6e 74 20 73 79 73 74 65 6d 73 2e 00 54 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 | different.systems..Time.in.milli |
| 9e2e0 | 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 72 65 74 72 61 6e 73 6d 69 74 74 65 64 20 4e 65 | seconds.between.retransmitted.Ne |
| 9e300 | 69 67 68 62 6f 72 20 53 6f 6c 69 63 69 74 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 00 54 69 6d | ighbor.Solicitation.messages.Tim |
| 9e320 | 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 68 65 20 70 72 65 66 69 78 20 77 69 6c | e.in.seconds.that.the.prefix.wil |
| 9e340 | 6c 20 72 65 6d 61 69 6e 20 70 72 65 66 65 72 72 65 64 20 28 64 65 66 61 75 6c 74 20 34 20 68 6f | l.remain.preferred.(default.4.ho |
| 9e360 | 75 72 73 29 00 54 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 68 65 20 70 72 | urs).Time.in.seconds.that.the.pr |
| 9e380 | 65 66 69 78 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 28 64 65 66 61 75 6c 74 3a | efix.will.remain.valid.(default: |
| 9e3a0 | 20 33 30 20 64 61 79 73 29 00 54 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 | .30.days).Time.in.seconds.that.t |
| 9e3c0 | 68 65 20 70 72 65 66 69 78 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 28 64 65 66 | he.prefix.will.remain.valid.(def |
| 9e3e0 | 61 75 6c 74 3a 20 36 35 35 32 38 20 73 65 63 6f 6e 64 73 29 00 54 69 6d 65 20 69 73 20 69 6e 20 | ault:.65528.seconds).Time.is.in. |
| 9e400 | 6d 69 6e 75 74 65 73 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f 20 36 30 2e 00 54 69 6d 65 | minutes.and.defaults.to.60..Time |
| 9e420 | 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 64 65 66 69 6e 65 64 20 72 75 6c 65 2e 00 54 69 6d 65 | .to.match.the.defined.rule..Time |
| 9e440 | 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 74 68 61 74 20 61 20 6e 6f 64 65 20 61 | ,.in.milliseconds,.that.a.node.a |
| 9e460 | 73 73 75 6d 65 73 20 61 20 6e 65 69 67 68 62 6f 72 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 61 | ssumes.a.neighbor.is.reachable.a |
| 9e480 | 66 74 65 72 20 68 61 76 69 6e 67 20 72 65 63 65 69 76 65 64 20 61 20 72 65 61 63 68 61 62 69 6c | fter.having.received.a.reachabil |
| 9e4a0 | 69 74 79 20 63 6f 6e 66 69 72 6d 61 74 69 6f 6e 00 54 69 6d 65 6f 75 74 20 63 61 6e 20 62 65 20 | ity.confirmation.Timeout.can.be. |
| 9e4c0 | 64 65 66 69 6e 65 64 20 75 73 69 6e 67 20 73 65 63 6f 6e 64 73 2c 20 6d 69 6e 75 74 65 73 2c 20 | defined.using.seconds,.minutes,. |
| 9e4e0 | 68 6f 75 72 73 20 6f 72 20 64 61 79 73 3a 00 54 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 | hours.or.days:.Timeout.in.second |
| 9e500 | 73 00 54 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 68 65 61 | s.Timeout.in.seconds.between.hea |
| 9e520 | 6c 74 68 20 74 61 72 67 65 74 20 63 68 65 63 6b 73 2e 00 54 69 6d 65 6f 75 74 20 74 6f 20 77 61 | lth.target.checks..Timeout.to.wa |
| 9e540 | 69 74 20 72 65 70 6c 79 20 66 6f 72 20 49 6e 74 65 72 69 6d 2d 55 70 64 61 74 65 20 70 61 63 6b | it.reply.for.Interim-Update.pack |
| 9e560 | 65 74 73 2e 20 28 64 65 66 61 75 6c 74 20 33 20 73 65 63 6f 6e 64 73 29 00 54 69 6d 65 6f 75 74 | ets..(default.3.seconds).Timeout |
| 9e580 | 20 74 6f 20 77 61 69 74 20 72 65 73 70 6f 6e 73 65 20 66 72 6f 6d 20 73 65 72 76 65 72 20 28 73 | .to.wait.response.from.server.(s |
| 9e5a0 | 65 63 6f 6e 64 73 29 00 54 69 6d 65 72 73 00 54 6f 20 61 63 74 69 76 61 74 65 20 74 68 65 20 56 | econds).Timers.To.activate.the.V |
| 9e5c0 | 4c 41 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 2c 20 79 6f 75 20 6d 75 73 74 20 61 63 74 69 76 | LAN.aware.bridge,.you.must.activ |
| 9e5e0 | 61 74 65 20 74 68 69 73 20 73 65 74 74 69 6e 67 20 74 6f 20 75 73 65 20 56 4c 41 4e 20 73 65 74 | ate.this.setting.to.use.VLAN.set |
| 9e600 | 74 69 6e 67 73 20 66 6f 72 20 74 68 65 20 62 72 69 64 67 65 00 54 6f 20 61 6c 6c 6f 77 20 56 50 | tings.for.the.bridge.To.allow.VP |
| 9e620 | 4e 2d 63 6c 69 65 6e 74 73 20 61 63 63 65 73 73 20 76 69 61 20 79 6f 75 72 20 65 78 74 65 72 6e | N-clients.access.via.your.extern |
| 9e640 | 61 6c 20 61 64 64 72 65 73 73 2c 20 61 20 4e 41 54 20 72 75 6c 65 20 69 73 20 72 65 71 75 69 72 | al.address,.a.NAT.rule.is.requir |
| 9e660 | 65 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 6c 69 73 74 69 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 | ed:.To.allow.listing.additional. |
| 9e680 | 63 75 73 74 6f 6d 20 64 6f 6d 61 69 6e 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 6f 70 65 | custom.domain,.for.example.``ope |
| 9e6a0 | 6e 74 68 72 65 61 64 2e 74 68 72 65 61 64 2e 68 6f 6d 65 2e 61 72 70 61 60 60 2c 20 73 6f 20 74 | nthread.thread.home.arpa``,.so.t |
| 9e6c0 | 68 61 74 20 69 74 20 63 61 6e 20 72 65 66 6c 65 63 74 65 64 20 69 6e 20 61 64 64 69 74 69 6f 6e | hat.it.can.reflected.in.addition |
| 9e6e0 | 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 60 60 6c 6f 63 61 6c 60 60 2c 20 75 73 65 20 74 | .to.the.default.``local``,.use.t |
| 9e700 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 6f | he.following.command:.To.allow.o |
| 9e720 | 6e 6c 79 20 73 70 65 63 69 66 69 63 20 73 65 72 76 69 63 65 73 2c 20 66 6f 72 20 65 78 61 6d 70 | nly.specific.services,.for.examp |
| 9e740 | 6c 65 20 60 60 5f 61 69 72 70 6c 61 79 2e 5f 74 63 70 60 60 20 6f 72 20 60 60 5f 69 70 70 2e 5f | le.``_airplay._tcp``.or.``_ipp._ |
| 9e760 | 74 63 70 60 60 2c 20 28 69 6e 73 74 65 61 64 20 6f 66 20 61 6c 6c 20 73 65 72 76 69 63 65 73 29 | tcp``,.(instead.of.all.services) |
| 9e780 | 20 74 6f 20 62 65 20 72 65 2d 62 72 6f 61 64 63 61 73 74 65 64 2c 20 75 73 65 20 74 68 65 20 66 | .to.be.re-broadcasted,.use.the.f |
| 9e7a0 | 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 | ollowing.command:.To.allow.traff |
| 9e7c0 | 69 63 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 6f 20 63 6c 69 65 6e 74 73 2c 20 79 | ic.to.pass.through.to.clients,.y |
| 9e7e0 | 6f 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 72 75 6c | ou.need.to.add.the.following.rul |
| 9e800 | 65 73 2e 20 28 69 66 20 79 6f 75 20 75 73 65 64 20 74 68 65 20 64 65 66 61 75 6c 74 20 63 6f 6e | es..(if.you.used.the.default.con |
| 9e820 | 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 74 68 65 20 74 6f 70 20 6f 66 20 74 68 69 73 20 70 61 | figuration.at.the.top.of.this.pa |
| 9e840 | 67 65 29 00 54 6f 20 61 70 70 6c 79 20 74 68 69 73 20 70 6f 6c 69 63 79 20 74 6f 20 74 68 65 20 | ge).To.apply.this.policy.to.the. |
| 9e860 | 63 6f 72 72 65 63 74 20 69 6e 74 65 72 66 61 63 65 2c 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 | correct.interface,.configure.it. |
| 9e880 | 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 6c 6f 63 | on.the.interface.the.inbound.loc |
| 9e8a0 | 61 6c 20 68 6f 73 74 20 77 69 6c 6c 20 73 65 6e 64 20 74 68 72 6f 75 67 68 20 74 6f 20 72 65 61 | al.host.will.send.through.to.rea |
| 9e8c0 | 63 68 20 6f 75 72 20 64 65 73 74 69 6e 65 64 20 74 61 72 67 65 74 20 68 6f 73 74 20 28 69 6e 20 | ch.our.destined.target.host.(in. |
| 9e8e0 | 6f 75 72 20 65 78 61 6d 70 6c 65 20 65 74 68 31 29 2e 00 54 6f 20 61 75 74 6f 20 75 70 64 61 74 | our.example.eth1)..To.auto.updat |
| 9e900 | 65 20 74 68 65 20 62 6c 61 63 6b 6c 69 73 74 20 66 69 6c 65 73 00 54 6f 20 61 75 74 6f 6d 61 74 | e.the.blacklist.files.To.automat |
| 9e920 | 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 20 49 50 20 61 | ically.assign.the.client.an.IP.a |
| 9e940 | 64 64 72 65 73 73 20 61 73 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 2c 20 61 20 63 6c 69 | ddress.as.tunnel.endpoint,.a.cli |
| 9e960 | 65 6e 74 20 49 50 20 70 6f 6f 6c 20 69 73 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 6f 75 72 63 | ent.IP.pool.is.needed..The.sourc |
| 9e980 | 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 52 41 44 49 55 53 20 6f 72 20 61 20 6c 6f 63 61 | e.can.be.either.RADIUS.or.a.loca |
| 9e9a0 | 6c 20 73 75 62 6e 65 74 20 6f 72 20 49 50 20 72 61 6e 67 65 20 64 65 66 69 6e 69 74 69 6f 6e 2e | l.subnet.or.IP.range.definition. |
| 9e9c0 | 00 54 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 74 68 65 20 63 6c 69 | .To.automatically.assign.the.cli |
| 9e9e0 | 65 6e 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 75 6e 6e 65 6c 20 65 6e 64 70 | ent.an.IP.address.as.tunnel.endp |
| 9ea00 | 6f 69 6e 74 2c 20 61 20 63 6c 69 65 6e 74 20 49 50 20 70 6f 6f 6c 20 69 73 20 6e 65 65 64 65 64 | oint,.a.client.IP.pool.is.needed |
| 9ea20 | 2e 20 54 68 65 20 73 6f 75 72 63 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 52 41 44 49 55 | ..The.source.can.be.either.RADIU |
| 9ea40 | 53 20 6f 72 20 61 20 6e 61 6d 65 64 20 70 6f 6f 6c 2e 20 54 68 65 72 65 20 69 73 20 70 6f 73 73 | S.or.a.named.pool..There.is.poss |
| 9ea60 | 69 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 64 | ibility.to.create.multiple.named |
| 9ea80 | 20 70 6f 6f 6c 73 2e 20 45 61 63 68 20 6e 61 6d 65 64 20 70 6f 6f 6c 20 63 61 6e 20 69 6e 63 6c | .pools..Each.named.pool.can.incl |
| 9eaa0 | 75 64 65 20 6f 6e 6c 79 20 6f 6e 65 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 2e 20 54 6f 20 75 | ude.only.one.address.range..To.u |
| 9eac0 | 73 65 20 6d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 73 20 63 6f 6e 66 69 | se.multiple.address.ranges.confi |
| 9eae0 | 67 75 72 65 20 60 60 6e 65 78 74 2d 70 6f 6f 6c 60 60 20 6f 70 74 69 6f 6e 2e 00 54 6f 20 62 65 | gure.``next-pool``.option..To.be |
| 9eb00 | 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 | .used.only.when.``action``.is.se |
| 9eb20 | 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | t.to.``jump``..Use.this.command. |
| 9eb40 | 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 75 73 | to.specify.jump.target..To.be.us |
| 9eb60 | 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 | ed.only.when.``default-action``. |
| 9eb80 | 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d | is.set.to.``jump``..Use.this.com |
| 9eba0 | 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 | mand.to.specify.jump.target.for. |
| 9ebc0 | 64 65 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 | default.rule..To.be.used.only.wh |
| 9ebe0 | 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 | en.``default-action``.is.set.to. |
| 9ec00 | 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 | ``jump``..Use.this.command.to.sp |
| 9ec20 | 65 63 69 66 79 20 74 68 65 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 74 68 65 20 64 65 | ecify.the.jump.target.for.the.de |
| 9ec40 | 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e | fault.rule..To.be.used.only.when |
| 9ec60 | 20 60 60 64 65 66 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a | .``defult-action``.is.set.to.``j |
| 9ec80 | 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 | ump``..Use.this.command.to.speci |
| 9eca0 | 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 64 65 66 61 75 6c 74 20 72 75 6c 65 2e | fy.jump.target.for.default.rule. |
| 9ecc0 | 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 | .To.be.used.only.when.action.is. |
| 9ece0 | 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | set.to.``jump``..Use.this.comman |
| 9ed00 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 | d.to.specify.jump.target..To.be. |
| 9ed20 | 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 | used.only.when.action.is.set.to. |
| 9ed40 | 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 | ``jump``..Use.this.command.to.sp |
| 9ed60 | 65 63 69 66 79 20 74 68 65 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 65 20 75 73 65 | ecify.the.jump.target..To.be.use |
| 9ed80 | 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 | d.only.when.action.is.set.to.``q |
| 9eda0 | 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 74 | ueue``..Use.this.command.to.dist |
| 9edc0 | 72 69 62 75 74 65 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 73 65 76 65 72 61 6c 20 71 | ribute.packets.between.several.q |
| 9ede0 | 75 65 75 65 73 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 | ueues..To.be.used.only.when.acti |
| 9ee00 | 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 | on.is.set.to.``queue``..Use.this |
| 9ee20 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 65 74 20 70 61 63 6b 65 74 20 67 6f 20 74 68 72 6f 75 67 | .command.to.let.packet.go.throug |
| 9ee40 | 68 20 66 69 72 65 77 61 6c 6c 20 77 68 65 6e 20 6e 6f 20 75 73 65 72 73 70 61 63 65 20 73 6f 66 | h.firewall.when.no.userspace.sof |
| 9ee60 | 74 77 61 72 65 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 71 75 65 75 65 2e | tware.is.connected.to.the.queue. |
| 9ee80 | 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 | .To.be.used.only.when.action.is. |
| 9eea0 | 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | set.to.``queue``..Use.this.comma |
| 9eec0 | 6e 64 20 74 6f 20 6c 65 74 20 74 68 65 20 70 61 63 6b 65 74 20 67 6f 20 74 68 72 6f 75 67 68 20 | nd.to.let.the.packet.go.through. |
| 9eee0 | 66 69 72 65 77 61 6c 6c 20 77 68 65 6e 20 6e 6f 20 75 73 65 72 73 70 61 63 65 20 73 6f 66 74 77 | firewall.when.no.userspace.softw |
| 9ef00 | 61 72 65 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 71 75 65 75 65 2e 00 54 | are.is.connected.to.the.queue..T |
| 9ef20 | 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 | o.be.used.only.when.action.is.se |
| 9ef40 | 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | t.to.``queue``..Use.this.command |
| 9ef60 | 20 74 6f 20 73 70 65 63 69 66 79 20 71 75 65 75 65 20 74 61 72 67 65 74 20 74 6f 20 75 73 65 2e | .to.specify.queue.target.to.use. |
| 9ef80 | 20 51 75 65 75 65 20 72 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 | .Queue.range.is.also.supported.. |
| 9efa0 | 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 | To.be.used.only.when.action.is.s |
| 9efc0 | 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | et.to.``queue``..Use.this.comman |
| 9efe0 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 75 65 75 65 20 74 61 72 67 65 74 20 74 6f | d.to.specify.the.queue.target.to |
| 9f000 | 20 75 73 65 2e 20 51 75 65 75 65 20 72 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 | .use..Queue.range.is.also.suppor |
| 9f020 | 74 65 64 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e | ted..To.be.used.only.when.action |
| 9f040 | 20 69 73 20 73 65 74 20 74 6f 20 6a 75 6d 70 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | .is.set.to.jump..Use.this.comman |
| 9f060 | 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 2e 00 54 6f 20 62 79 70 | d.to.specify.jump.target..To.byp |
| 9f080 | 61 73 73 20 74 68 65 20 70 72 6f 78 79 20 66 6f 72 20 65 76 65 72 79 20 72 65 71 75 65 73 74 20 | ass.the.proxy.for.every.request. |
| 9f0a0 | 74 68 61 74 20 69 73 20 63 6f 6d 69 6e 67 20 66 72 6f 6d 20 61 20 73 70 65 63 69 66 69 63 20 73 | that.is.coming.from.a.specific.s |
| 9f0c0 | 6f 75 72 63 65 3a 00 54 6f 20 62 79 70 61 73 73 20 74 68 65 20 70 72 6f 78 79 20 66 6f 72 20 65 | ource:.To.bypass.the.proxy.for.e |
| 9f0e0 | 76 65 72 79 20 72 65 71 75 65 73 74 20 74 68 61 74 20 69 73 20 64 69 72 65 63 74 65 64 20 74 6f | very.request.that.is.directed.to |
| 9f100 | 20 61 20 73 70 65 63 69 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 3a 00 54 6f 20 63 6f 6e 66 | .a.specific.destination:.To.conf |
| 9f120 | 69 67 75 72 65 20 49 50 76 36 20 61 73 73 69 67 6e 6d 65 6e 74 73 20 66 6f 72 20 63 6c 69 65 6e | igure.IPv6.assignments.for.clien |
| 9f140 | 74 73 2c 20 74 77 6f 20 6f 70 74 69 6f 6e 73 20 6e 65 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 | ts,.two.options.need.to.be.confi |
| 9f160 | 67 75 72 65 64 2e 20 41 20 67 6c 6f 62 61 6c 20 70 72 65 66 69 78 20 77 68 69 63 68 20 69 73 20 | gured..A.global.prefix.which.is. |
| 9f180 | 74 65 72 6d 69 6e 61 74 65 64 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 20 63 70 65 20 61 6e | terminated.on.the.clients.cpe.an |
| 9f1a0 | 64 20 61 20 64 65 6c 65 67 61 74 65 64 20 70 72 65 66 69 78 2c 20 74 68 65 20 63 6c 69 65 6e 74 | d.a.delegated.prefix,.the.client |
| 9f1c0 | 20 63 61 6e 20 75 73 65 20 66 6f 72 20 64 65 76 69 63 65 73 20 72 6f 75 74 65 64 20 76 69 61 20 | .can.use.for.devices.routed.via. |
| 9f1e0 | 74 68 65 20 63 6c 69 65 6e 74 73 20 63 70 65 2e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 56 79 | the.clients.cpe..To.configure.Vy |
| 9f200 | 4f 53 20 77 69 74 68 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c | OS.with.the.:doc:`legacy.firewal |
| 9f220 | 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f | l.configuration.</configuration/ |
| 9f240 | 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 00 54 6f 20 63 6f 6e | firewall/general-legacy>`.To.con |
| 9f260 | 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 68 20 74 68 65 20 3a 64 6f 63 3a 60 7a 6f 6e 65 2d | figure.VyOS.with.the.:doc:`zone- |
| 9f280 | 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 | based.firewall.configuration.</c |
| 9f2a0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 7a 6f 6e 65 3e 60 00 54 6f 20 | onfiguration/firewall/zone>`.To. |
| 9f2c0 | 63 6f 6e 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 68 20 74 68 65 20 6e 65 77 20 3a 64 6f 63 | configure.VyOS.with.the.new.:doc |
| 9f2e0 | 3a 60 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 | :`firewall.configuration.</confi |
| 9f300 | 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 3e 60 00 54 6f 20 63 | guration/firewall/general>`.To.c |
| 9f320 | 6f 6e 66 69 67 75 72 65 20 62 6c 6f 63 6b 69 6e 67 20 61 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 | onfigure.blocking.add.the.follow |
| 9f340 | 69 6e 67 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 54 6f 20 63 6f 6e 66 | ing.to.the.configuration.To.conf |
| 9f360 | 69 67 75 72 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 79 6f | igure.site-to-site.connection.yo |
| 9f380 | 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 70 65 65 72 73 20 77 69 74 68 20 74 68 65 20 60 60 73 | u.need.to.add.peers.with.the.``s |
| 9f3a0 | 65 74 20 76 70 6e 20 69 70 73 65 63 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 70 65 65 72 20 3c | et.vpn.ipsec.site-to-site.peer.< |
| 9f3c0 | 6e 61 6d 65 3e 60 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 73 79 | name>``.command..To.configure.sy |
| 9f3e0 | 73 6c 6f 67 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 77 69 74 63 68 20 69 6e 74 6f 20 63 6f | slog,.you.need.to.switch.into.co |
| 9f400 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 | nfiguration.mode..To.configure.y |
| 9f420 | 6f 75 72 20 4c 43 44 20 64 69 73 70 6c 61 79 20 79 6f 75 20 6d 75 73 74 20 66 69 72 73 74 20 69 | our.LCD.display.you.must.first.i |
| 9f440 | 64 65 6e 74 69 66 79 20 74 68 65 20 75 73 65 64 20 68 61 72 64 77 61 72 65 2c 20 61 6e 64 20 63 | dentify.the.used.hardware,.and.c |
| 9f460 | 6f 6e 6e 65 63 74 69 76 69 74 79 20 6f 66 20 74 68 65 20 64 69 73 70 6c 61 79 20 74 6f 20 79 6f | onnectivity.of.the.display.to.yo |
| 9f480 | 75 72 20 73 79 73 74 65 6d 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 6e 79 20 73 65 72 69 61 | ur.system..This.can.be.any.seria |
| 9f4a0 | 6c 20 70 6f 72 74 20 28 60 74 74 79 53 78 78 60 29 20 6f 72 20 73 65 72 69 61 6c 20 76 69 61 20 | l.port.(`ttySxx`).or.serial.via. |
| 9f4c0 | 55 53 42 20 6f 72 20 65 76 65 6e 20 6f 6c 64 20 70 61 72 61 6c 6c 65 6c 20 70 6f 72 74 20 69 6e | USB.or.even.old.parallel.port.in |
| 9f4e0 | 74 65 72 66 61 63 65 73 2e 00 54 6f 20 63 72 65 61 74 65 20 56 4c 41 4e 73 20 70 65 72 20 75 73 | terfaces..To.create.VLANs.per.us |
| 9f500 | 65 72 20 64 75 72 69 6e 67 20 72 75 6e 74 69 6d 65 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | er.during.runtime,.the.following |
| 9f520 | 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 72 65 71 75 69 72 65 64 20 6f 6e 20 61 20 70 65 72 20 | .settings.are.required.on.a.per. |
| 9f540 | 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 20 56 4c 41 4e 20 49 44 20 61 6e 64 20 56 4c 41 | interface.basis..VLAN.ID.and.VLA |
| 9f560 | 4e 20 72 61 6e 67 65 20 63 61 6e 20 62 65 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 63 6f | N.range.can.be.present.in.the.co |
| 9f580 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2e 00 54 6f | nfiguration.at.the.same.time..To |
| 9f5a0 | 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 69 6e 65 20 69 6e 20 79 6f 75 72 20 6c 6f 67 69 6e | .create.a.new.line.in.your.login |
| 9f5c0 | 20 6d 65 73 73 61 67 65 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 65 73 63 61 70 65 20 74 68 65 20 | .message.you.need.to.escape.the. |
| 9f5e0 | 6e 65 77 20 6c 69 6e 65 20 63 68 61 72 61 63 74 65 72 20 62 79 20 75 73 69 6e 67 20 60 60 5c 5c | new.line.character.by.using.``\\ |
| 9f600 | 6e 60 60 2e 00 54 6f 20 63 72 65 61 74 65 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 74 75 6e | n``..To.create.more.than.one.tun |
| 9f620 | 6e 65 6c 2c 20 75 73 65 20 64 69 73 74 69 6e 63 74 20 55 44 50 20 70 6f 72 74 73 2e 00 54 6f 20 | nel,.use.distinct.UDP.ports..To. |
| 9f640 | 63 72 65 61 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 31 30 30 20 61 6e 64 20 61 64 64 | create.routing.table.100.and.add |
| 9f660 | 20 61 20 6e 65 77 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 74 6f 20 62 65 20 75 73 65 | .a.new.default.gateway.to.be.use |
| 9f680 | 64 20 62 79 20 74 72 61 66 66 69 63 20 6d 61 74 63 68 69 6e 67 20 6f 75 72 20 72 6f 75 74 65 20 | d.by.traffic.matching.our.route. |
| 9f6a0 | 70 6f 6c 69 63 79 3a 00 54 6f 20 64 65 66 69 6e 65 20 61 20 7a 6f 6e 65 20 73 65 74 75 70 20 65 | policy:.To.define.a.zone.setup.e |
| 9f6c0 | 69 74 68 65 72 20 6f 6e 65 20 77 69 74 68 20 69 6e 74 65 72 66 61 63 65 73 20 6f 72 20 61 20 6c | ither.one.with.interfaces.or.a.l |
| 9f6e0 | 6f 63 61 6c 20 7a 6f 6e 65 2e 00 54 6f 20 64 69 73 61 62 6c 65 20 61 64 76 65 72 74 69 73 65 6d | ocal.zone..To.disable.advertisem |
| 9f700 | 65 6e 74 73 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 | ents.without.deleting.the.config |
| 9f720 | 75 72 61 74 69 6f 6e 3a 00 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | uration:.To.display.the.configur |
| 9f740 | 65 64 20 4f 54 50 20 75 73 65 72 20 6b 65 79 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | ed.OTP.user.key,.use.the.command |
| 9f760 | 3a 00 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 4f 54 50 20 | :.To.display.the.configured.OTP. |
| 9f780 | 75 73 65 72 20 73 65 74 74 69 6e 67 73 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 | user.settings,.use.the.command:. |
| 9f7a0 | 54 6f 20 65 6e 61 62 6c 65 20 4d 4c 44 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 | To.enable.MLD.reports.and.query. |
| 9f7c0 | 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 60 65 74 68 30 60 20 61 6e 64 20 60 65 74 68 31 60 3a | on.interfaces.`eth0`.and.`eth1`: |
| 9f7e0 | 00 54 6f 20 65 6e 61 62 6c 65 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 | .To.enable.RADIUS.based.authenti |
| 9f800 | 63 61 74 69 6f 6e 2c 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 | cation,.the.authentication.mode. |
| 9f820 | 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 63 | needs.to.be.changed.within.the.c |
| 9f840 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 72 65 76 69 6f 75 73 20 73 65 74 74 69 6e 67 73 20 | onfiguration..Previous.settings. |
| 9f860 | 6c 69 6b 65 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 73 74 69 6c 6c 20 65 78 69 73 74 | like.the.local.users.still.exist |
| 9f880 | 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 68 6f 77 65 76 | .within.the.configuration,.howev |
| 9f8a0 | 65 72 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 75 73 65 64 20 69 66 20 74 68 65 20 6d 6f 64 65 | er.they.are.not.used.if.the.mode |
| 9f8c0 | 20 68 61 73 20 62 65 65 6e 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 6c 6f 63 61 6c 20 74 6f 20 | .has.been.changed.from.local.to. |
| 9f8e0 | 72 61 64 69 75 73 2e 20 4f 6e 63 65 20 63 68 61 6e 67 65 64 20 62 61 63 6b 20 74 6f 20 6c 6f 63 | radius..Once.changed.back.to.loc |
| 9f900 | 61 6c 2c 20 69 74 20 77 69 6c 6c 20 75 73 65 20 61 6c 6c 20 6c 6f 63 61 6c 20 61 63 63 6f 75 6e | al,.it.will.use.all.local.accoun |
| 9f920 | 74 73 20 61 67 61 69 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 52 41 44 49 55 53 20 62 61 73 65 64 | ts.again..To.enable.RADIUS.based |
| 9f940 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 | .authentication,.the.authenticat |
| 9f960 | 69 6f 6e 20 6d 6f 64 65 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 65 64 20 77 69 74 | ion.mode.needs.to.be.changed.wit |
| 9f980 | 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 72 65 76 69 6f 75 73 20 | hin.the.configuration..Previous. |
| 9f9a0 | 73 65 74 74 69 6e 67 73 20 6c 69 6b 65 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 73 2c 20 73 | settings.like.the.local.users,.s |
| 9f9c0 | 74 69 6c 6c 20 65 78 69 73 74 73 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 | till.exists.within.the.configura |
| 9f9e0 | 74 69 6f 6e 2c 20 68 6f 77 65 76 65 72 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 75 73 65 64 20 | tion,.however.they.are.not.used. |
| 9fa00 | 69 66 20 74 68 65 20 6d 6f 64 65 20 68 61 73 20 62 65 65 6e 20 63 68 61 6e 67 65 64 20 66 72 6f | if.the.mode.has.been.changed.fro |
| 9fa20 | 6d 20 6c 6f 63 61 6c 20 74 6f 20 72 61 64 69 75 73 2e 20 4f 6e 63 65 20 63 68 61 6e 67 65 64 20 | m.local.to.radius..Once.changed. |
| 9fa40 | 62 61 63 6b 20 74 6f 20 6c 6f 63 61 6c 2c 20 69 74 20 77 69 6c 6c 20 75 73 65 20 61 6c 6c 20 6c | back.to.local,.it.will.use.all.l |
| 9fa60 | 6f 63 61 6c 20 61 63 63 6f 75 6e 74 73 20 61 67 61 69 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 62 | ocal.accounts.again..To.enable.b |
| 9fa80 | 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 2c 20 74 68 65 | andwidth.shaping.via.RADIUS,.the |
| 9faa0 | 20 6f 70 74 69 6f 6e 20 72 61 74 65 2d 6c 69 6d 69 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 65 | .option.rate-limit.needs.to.be.e |
| 9fac0 | 6e 61 62 6c 65 64 2e 00 54 6f 20 65 6e 61 62 6c 65 20 64 65 62 75 67 20 6d 65 73 73 61 67 65 73 | nabled..To.enable.debug.messages |
| 9fae0 | 2e 20 41 76 61 69 6c 61 62 6c 65 20 76 69 61 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 6c 6f 67 | ..Available.via.:opcmd:`show.log |
| 9fb00 | 60 20 6f 72 20 3a 6f 70 63 6d 64 3a 60 6d 6f 6e 69 74 6f 72 20 6c 6f 67 60 00 54 6f 20 65 6e 61 | `.or.:opcmd:`monitor.log`.To.ena |
| 9fb20 | 62 6c 65 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 6f | ble.mDNS.repeater.you.need.to.co |
| 9fb40 | 6e 66 69 67 75 72 65 20 61 74 20 6c 65 61 73 74 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 | nfigure.at.least.two.interfaces. |
| 9fb60 | 73 6f 20 74 68 61 74 20 61 6c 6c 20 69 6e 63 6f 6d 69 6e 67 20 6d 44 4e 53 20 70 61 63 6b 65 74 | so.that.all.incoming.mDNS.packet |
| 9fb80 | 73 20 66 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | s.from.one.interface.configured. |
| 9fba0 | 68 65 72 65 20 63 61 6e 20 62 65 20 72 65 2d 62 72 6f 61 64 63 61 73 74 65 64 20 74 6f 20 61 6e | here.can.be.re-broadcasted.to.an |
| 9fbc0 | 79 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 28 73 29 20 63 6f 6e 66 69 67 75 72 65 64 20 | y.other.interface(s).configured. |
| 9fbe0 | 75 6e 64 65 72 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 6d 44 | under.this.section..To.enable.mD |
| 9fc00 | 4e 53 20 72 65 70 65 61 74 65 72 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | NS.repeater.you.need.to.configur |
| 9fc20 | 65 20 61 74 20 6c 65 61 73 74 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 6f 20 72 65 | e.at.least.two.interfaces..To.re |
| 9fc40 | 2d 62 72 6f 61 64 63 61 73 74 20 61 6c 6c 20 69 6e 63 6f 6d 69 6e 67 20 6d 44 4e 53 20 70 61 63 | -broadcast.all.incoming.mDNS.pac |
| 9fc60 | 6b 65 74 73 20 66 72 6f 6d 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 | kets.from.any.interface.configur |
| 9fc80 | 65 64 20 68 65 72 65 20 74 6f 20 61 6e 79 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 20 63 | ed.here.to.any.other.interface.c |
| 9fca0 | 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 6f | onfigured.under.this.section..To |
| 9fcc0 | 20 65 6e 61 62 6c 65 20 74 68 65 20 48 54 54 50 20 73 65 63 75 72 69 74 79 20 68 65 61 64 65 72 | .enable.the.HTTP.security.header |
| 9fce0 | 73 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 2c 20 75 73 65 | s.in.the.configuration.file,.use |
| 9fd00 | 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 6c 65 20 | .the.command:.To.enable/disable. |
| 9fd20 | 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 | helper.support.for.a.specific.ne |
| 9fd40 | 69 67 68 62 6f 75 72 2c 20 74 68 65 20 72 6f 75 74 65 72 2d 69 64 20 28 41 2e 42 2e 43 2e 44 29 | ighbour,.the.router-id.(A.B.C.D) |
| 9fd60 | 20 68 61 73 20 74 6f 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 54 6f 20 65 78 63 6c 75 64 65 | .has.to.be.specified..To.exclude |
| 9fd80 | 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 2c 20 74 72 | .traffic.from.load.balancing,.tr |
| 9fda0 | 61 66 66 69 63 20 6d 61 74 63 68 69 6e 67 20 61 6e 20 65 78 63 6c 75 64 65 20 72 75 6c 65 20 69 | affic.matching.an.exclude.rule.i |
| 9fdc0 | 73 20 6e 6f 74 20 62 61 6c 61 6e 63 65 64 20 62 75 74 20 72 6f 75 74 65 64 20 74 68 72 6f 75 67 | s.not.balanced.but.routed.throug |
| 9fde0 | 68 20 74 68 65 20 73 79 73 74 65 6d 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 69 6e 73 74 65 | h.the.system.routing.table.inste |
| 9fe00 | 61 64 3a 00 54 6f 20 65 78 70 6c 61 69 6e 20 74 68 65 20 75 73 61 67 65 20 6f 66 20 4c 4e 53 20 | ad:.To.explain.the.usage.of.LNS. |
| 9fe20 | 66 6f 6c 6c 6f 77 20 6f 75 72 20 62 6c 75 65 70 72 69 6e 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 | follow.our.blueprint.:ref:`examp |
| 9fe40 | 6c 65 73 2d 6c 61 63 2d 6c 6e 73 60 2e 00 54 6f 20 65 78 74 65 6e 64 20 53 4e 4d 50 20 61 67 65 | les-lac-lns`..To.extend.SNMP.age |
| 9fe60 | 6e 74 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2c 20 63 75 73 74 6f 6d 20 73 63 72 69 70 74 73 | nt.functionality,.custom.scripts |
| 9fe80 | 20 63 61 6e 20 62 65 20 65 78 65 63 75 74 65 64 20 65 76 65 72 79 20 74 69 6d 65 20 74 68 65 20 | .can.be.executed.every.time.the. |
| 9fea0 | 61 67 65 6e 74 20 69 73 20 62 65 69 6e 67 20 63 61 6c 6c 65 64 2e 20 54 68 69 73 20 63 61 6e 20 | agent.is.being.called..This.can. |
| 9fec0 | 62 65 20 61 63 68 69 65 76 65 64 20 62 79 20 75 73 69 6e 67 20 60 60 61 72 62 69 74 72 61 72 79 | be.achieved.by.using.``arbitrary |
| 9fee0 | 20 65 78 74 65 6e 73 69 6f 6e 63 6f 6d 6d 61 6e 64 73 60 60 2e 20 54 68 65 20 66 69 72 73 74 20 | .extensioncommands``..The.first. |
| 9ff00 | 73 74 65 70 20 69 73 20 74 6f 20 63 72 65 61 74 65 20 61 20 66 75 6e 63 74 69 6f 6e 61 6c 20 73 | step.is.to.create.a.functional.s |
| 9ff20 | 63 72 69 70 74 20 6f 66 20 63 6f 75 72 73 65 2c 20 74 68 65 6e 20 75 70 6c 6f 61 64 20 69 74 20 | cript.of.course,.then.upload.it. |
| 9ff40 | 74 6f 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6e 63 65 20 76 69 61 20 74 68 65 20 63 6f | to.your.VyOS.instance.via.the.co |
| 9ff60 | 6d 6d 61 6e 64 20 60 60 73 63 70 20 79 6f 75 72 5f 73 63 72 69 70 74 2e 73 68 20 76 79 6f 73 40 | mmand.``scp.your_script.sh.vyos@ |
| 9ff80 | 79 6f 75 72 5f 72 6f 75 74 65 72 3a 2f 63 6f 6e 66 69 67 2f 75 73 65 72 2d 64 61 74 61 60 60 2e | your_router:/config/user-data``. |
| 9ffa0 | 20 4f 6e 63 65 20 74 68 65 20 73 63 72 69 70 74 20 69 73 20 75 70 6c 6f 61 64 65 64 2c 20 69 74 | .Once.the.script.is.uploaded,.it |
| 9ffc0 | 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 76 69 61 20 74 68 65 20 | .needs.to.be.configured.via.the. |
| 9ffe0 | 63 6f 6d 6d 61 6e 64 20 62 65 6c 6f 77 2e 00 54 6f 20 66 6f 72 77 61 72 64 20 61 6c 6c 20 62 72 | command.below..To.forward.all.br |
| a0000 | 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 60 55 44 50 | oadcast.packets.received.on.`UDP |
| a0020 | 20 70 6f 72 74 20 31 39 30 30 60 20 6f 6e 20 60 65 74 68 33 60 2c 20 60 65 74 68 34 60 20 6f 72 | .port.1900`.on.`eth3`,.`eth4`.or |
| a0040 | 20 60 65 74 68 35 60 20 74 6f 20 61 6c 6c 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 | .`eth5`.to.all.other.interfaces. |
| a0060 | 69 6e 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 6f 20 67 65 6e 65 72 61 | in.this.configuration..To.genera |
| a0080 | 74 65 20 74 68 65 20 43 41 2c 20 74 68 65 20 73 65 72 76 65 72 20 70 72 69 76 61 74 65 20 6b 65 | te.the.CA,.the.server.private.ke |
| a00a0 | 79 20 61 6e 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | y.and.certificates.the.following |
| a00c0 | 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 20 75 73 65 64 2e 00 54 6f 20 67 65 74 20 69 74 | .commands.can.be.used..To.get.it |
| a00e0 | 20 74 6f 20 77 6f 72 6b 20 61 73 20 61 6e 20 61 63 63 65 73 73 20 70 6f 69 6e 74 20 77 69 74 68 | .to.work.as.an.access.point.with |
| a0100 | 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 | .this.configuration.you.will.nee |
| a0120 | 64 20 74 6f 20 73 65 74 20 75 70 20 61 20 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 77 6f 72 | d.to.set.up.a.DHCP.server.to.wor |
| a0140 | 6b 20 77 69 74 68 20 74 68 61 74 20 6e 65 74 77 6f 72 6b 2e 20 59 6f 75 20 63 61 6e 20 2d 20 6f | k.with.that.network..You.can.-.o |
| a0160 | 66 20 63 6f 75 72 73 65 20 2d 20 61 6c 73 6f 20 62 72 69 64 67 65 20 74 68 65 20 57 69 72 65 6c | f.course.-.also.bridge.the.Wirel |
| a0180 | 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 6e 79 20 63 6f 6e 66 69 67 75 72 65 | ess.interface.with.any.configure |
| a01a0 | 64 20 62 72 69 64 67 65 20 28 3a 72 65 66 3a 60 62 72 69 64 67 65 2d 69 6e 74 65 72 66 61 63 65 | d.bridge.(:ref:`bridge-interface |
| a01c0 | 60 29 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 6f 20 68 61 6e 64 20 6f 75 74 20 69 6e | `).on.the.system..To.hand.out.in |
| a01e0 | 64 69 76 69 64 75 61 6c 20 70 72 65 66 69 78 65 73 20 74 6f 20 79 6f 75 72 20 63 6c 69 65 6e 74 | dividual.prefixes.to.your.client |
| a0200 | 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 | s.the.following.configuration.is |
| a0220 | 20 75 73 65 64 3a 00 54 6f 20 69 6d 70 6f 72 74 20 69 74 20 66 72 6f 6d 20 74 68 65 20 66 69 6c | .used:.To.import.it.from.the.fil |
| a0240 | 65 73 79 73 74 65 6d 20 75 73 65 3a 00 54 6f 20 6b 6e 6f 77 20 6d 6f 72 65 20 61 62 6f 75 74 20 | esystem.use:.To.know.more.about. |
| a0260 | 73 63 72 69 70 74 69 6e 67 2c 20 63 68 65 63 6b 20 74 68 65 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 | scripting,.check.the.:ref:`comma |
| a0280 | 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 73 65 63 74 69 6f 6e 2e 00 54 6f 20 6c 69 73 74 65 6e | nd-scripting`.section..To.listen |
| a02a0 | 20 6f 6e 20 62 6f 74 68 20 60 65 74 68 30 60 20 61 6e 64 20 60 65 74 68 31 60 20 6d 44 4e 53 20 | .on.both.`eth0`.and.`eth1`.mDNS. |
| a02c0 | 70 61 63 6b 65 74 73 20 61 6e 64 20 61 6c 73 6f 20 72 65 70 65 61 74 20 70 61 63 6b 65 74 73 20 | packets.and.also.repeat.packets. |
| a02e0 | 72 65 63 65 69 76 65 64 20 6f 6e 20 60 65 74 68 30 60 20 74 6f 20 60 65 74 68 31 60 20 28 61 6e | received.on.`eth0`.to.`eth1`.(an |
| a0300 | 64 20 76 69 63 65 2d 76 65 72 73 61 29 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 | d.vice-versa).use.the.following. |
| a0320 | 63 6f 6d 6d 61 6e 64 73 3a 00 54 6f 20 6d 61 6e 69 70 75 6c 61 74 65 20 6f 72 20 64 69 73 70 6c | commands:.To.manipulate.or.displ |
| a0340 | 61 79 20 41 52 50 5f 20 74 61 62 6c 65 20 65 6e 74 72 69 65 73 2c 20 74 68 65 20 66 6f 6c 6c 6f | ay.ARP_.table.entries,.the.follo |
| a0360 | 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2e 00 54 | wing.commands.are.implemented..T |
| a0380 | 6f 20 70 65 72 66 6f 72 6d 20 61 20 67 72 61 63 65 66 75 6c 20 73 68 75 74 64 6f 77 6e 2c 20 74 | o.perform.a.graceful.shutdown,.t |
| a03a0 | 68 65 20 46 52 52 20 60 60 67 72 61 63 65 66 75 6c 2d 72 65 73 74 61 72 74 20 70 72 65 70 61 72 | he.FRR.``graceful-restart.prepar |
| a03c0 | 65 20 69 70 20 6f 73 70 66 60 60 20 45 58 45 43 2d 6c 65 76 65 6c 20 63 6f 6d 6d 61 6e 64 20 6e | e.ip.ospf``.EXEC-level.command.n |
| a03e0 | 65 65 64 73 20 74 6f 20 62 65 20 69 73 73 75 65 64 20 62 65 66 6f 72 65 20 72 65 73 74 61 72 74 | eeds.to.be.issued.before.restart |
| a0400 | 69 6e 67 20 74 68 65 20 6f 73 70 66 64 20 64 61 65 6d 6f 6e 2e 00 54 6f 20 70 72 65 76 65 6e 74 | ing.the.ospfd.daemon..To.prevent |
| a0420 | 20 69 73 73 75 65 73 20 77 69 74 68 20 64 69 76 65 72 67 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 | .issues.with.divergent.configura |
| a0440 | 74 69 6f 6e 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 70 61 69 72 20 6f 66 20 72 6f 75 74 65 72 | tions.between.the.pair.of.router |
| a0460 | 73 2c 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 69 73 20 73 74 72 69 63 74 6c 79 20 75 | s,.synchronization.is.strictly.u |
| a0480 | 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 70 72 69 6d 61 72 79 20 74 6f 20 72 65 | nidirectional.from.primary.to.re |
| a04a0 | 70 6c 69 63 61 2e 20 42 6f 74 68 20 72 6f 75 74 65 72 73 20 73 68 6f 75 6c 64 20 62 65 20 6f 6e | plica..Both.routers.should.be.on |
| a04c0 | 6c 69 6e 65 20 61 6e 64 20 72 75 6e 20 74 68 65 20 73 61 6d 65 20 76 65 72 73 69 6f 6e 20 6f 66 | line.and.run.the.same.version.of |
| a04e0 | 20 56 79 4f 53 2e 00 54 6f 20 72 65 71 75 65 73 74 20 61 20 2f 35 36 20 70 72 65 66 69 78 20 66 | .VyOS..To.request.a./56.prefix.f |
| a0500 | 72 6f 6d 20 79 6f 75 72 20 49 53 50 20 75 73 65 3a 00 54 6f 20 72 65 73 74 61 72 74 20 74 68 65 | rom.your.ISP.use:.To.restart.the |
| a0520 | 20 44 48 43 50 76 36 20 73 65 72 76 65 72 00 54 6f 20 73 65 74 75 70 20 53 4e 41 54 2c 20 77 65 | .DHCPv6.server.To.setup.SNAT,.we |
| a0540 | 20 6e 65 65 64 20 74 6f 20 6b 6e 6f 77 3a 00 54 6f 20 73 65 74 75 70 20 61 20 64 65 73 74 69 6e | .need.to.know:.To.setup.a.destin |
| a0560 | 61 74 69 6f 6e 20 4e 41 54 20 72 75 6c 65 20 77 65 20 6e 65 65 64 20 74 6f 20 67 61 74 68 65 72 | ation.NAT.rule.we.need.to.gather |
| a0580 | 3a 00 54 6f 20 75 70 64 61 74 65 20 74 68 65 20 66 69 72 6d 77 61 72 65 2c 20 56 79 4f 53 20 61 | :.To.update.the.firmware,.VyOS.a |
| a05a0 | 6c 73 6f 20 73 68 69 70 73 20 74 68 65 20 60 71 6d 69 2d 66 69 72 6d 77 61 72 65 2d 75 70 64 61 | lso.ships.the.`qmi-firmware-upda |
| a05c0 | 74 65 60 20 62 69 6e 61 72 79 2e 20 54 6f 20 75 70 67 72 61 64 65 20 74 68 65 20 66 69 72 6d 77 | te`.binary..To.upgrade.the.firmw |
| a05e0 | 61 72 65 20 6f 66 20 61 6e 20 65 2e 67 2e 20 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 4d | are.of.an.e.g..Sierra.Wireless.M |
| a0600 | 43 37 37 31 30 20 6d 6f 64 75 6c 65 20 74 6f 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 70 72 6f | C7710.module.to.the.firmware.pro |
| a0620 | 76 69 64 65 64 20 69 6e 20 74 68 65 20 66 69 6c 65 20 60 60 39 39 39 39 39 39 39 5f 39 39 39 39 | vided.in.the.file.``9999999_9999 |
| a0640 | 39 39 39 5f 39 32 30 30 5f 30 33 2e 30 35 2e 31 34 2e 30 30 5f 30 30 5f 67 65 6e 65 72 69 63 5f | 999_9200_03.05.14.00_00_generic_ |
| a0660 | 30 30 30 2e 30 30 30 5f 30 30 31 5f 53 50 4b 47 5f 4d 43 2e 63 77 65 60 60 20 75 73 65 20 74 68 | 000.000_001_SPKG_MC.cwe``.use.th |
| a0680 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 75 73 65 20 61 20 52 41 | e.following.command:.To.use.a.RA |
| a06a0 | 44 49 55 53 20 73 65 72 76 65 72 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 | DIUS.server.for.authentication.a |
| a06c0 | 6e 64 20 62 61 6e 64 77 69 64 74 68 2d 73 68 61 70 69 6e 67 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 | nd.bandwidth-shaping,.the.follow |
| a06e0 | 69 6e 67 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 | ing.example.configuration.can.be |
| a0700 | 20 75 73 65 64 2e 00 54 6f 20 75 73 65 20 61 20 72 61 64 69 75 73 20 73 65 72 76 65 72 2c 20 79 | .used..To.use.a.radius.server,.y |
| a0720 | 6f 75 20 6e 65 65 64 20 74 6f 20 73 77 69 74 63 68 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 | ou.need.to.switch.to.authenticat |
| a0740 | 69 6f 6e 20 6d 6f 64 65 20 52 41 44 49 55 53 20 61 6e 64 20 74 68 65 6e 20 63 6f 6e 66 69 67 75 | ion.mode.RADIUS.and.then.configu |
| a0760 | 72 65 20 69 74 2e 00 54 6f 20 75 73 65 20 73 75 63 68 20 61 20 73 65 72 76 69 63 65 2c 20 6f 6e | re.it..To.use.such.a.service,.on |
| a0780 | 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 61 20 6c 6f 67 69 6e 2c 20 70 61 73 73 77 6f 72 64 2c | e.must.define.a.login,.password, |
| a07a0 | 20 6f 6e 65 20 6f 72 20 6d 75 6c 74 69 70 6c 65 20 68 6f 73 74 6e 61 6d 65 73 2c 20 70 72 6f 74 | .one.or.multiple.hostnames,.prot |
| a07c0 | 6f 63 6f 6c 20 61 6e 64 20 73 65 72 76 65 72 2e 00 54 6f 20 75 73 65 20 74 68 65 20 53 61 6c 74 | ocol.and.server..To.use.the.Salt |
| a07e0 | 2d 4d 69 6e 69 6f 6e 2c 20 61 20 72 75 6e 6e 69 6e 67 20 53 61 6c 74 2d 4d 61 73 74 65 72 20 69 | -Minion,.a.running.Salt-Master.i |
| a0800 | 73 20 72 65 71 75 69 72 65 64 2e 20 59 6f 75 20 63 61 6e 20 66 69 6e 64 20 6d 6f 72 65 20 69 6e | s.required..You.can.find.more.in |
| a0820 | 20 74 68 65 20 60 53 61 6c 74 20 50 6f 6a 65 63 74 20 44 6f 63 75 6d 65 6e 74 61 69 6f 6e 20 3c | .the.`Salt.Poject.Documentaion.< |
| a0840 | 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 73 61 6c 74 70 72 6f 6a 65 63 74 2e 69 6f 2f 65 6e 2f 6c | https://docs.saltproject.io/en/l |
| a0860 | 61 74 65 73 74 2f 63 6f 6e 74 65 6e 74 73 2e 68 74 6d 6c 3e 60 5f 00 54 6f 20 75 73 65 20 74 68 | atest/contents.html>`_.To.use.th |
| a0880 | 65 20 53 61 6c 74 2d 4d 69 6e 69 6f 6e 2c 20 61 20 72 75 6e 6e 69 6e 67 20 53 61 6c 74 2d 4d 61 | e.Salt-Minion,.a.running.Salt-Ma |
| a08a0 | 73 74 65 72 20 69 73 20 72 65 71 75 69 72 65 64 2e 20 59 6f 75 20 63 61 6e 20 66 69 6e 64 20 6d | ster.is.required..You.can.find.m |
| a08c0 | 6f 72 65 20 69 6e 20 74 68 65 20 60 53 61 6c 74 20 50 72 6f 6a 65 63 74 20 44 6f 63 75 6d 65 6e | ore.in.the.`Salt.Project.Documen |
| a08e0 | 74 61 74 69 6f 6e 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 73 61 6c 74 70 72 6f 6a 65 63 74 | tation.<https://docs.saltproject |
| a0900 | 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 74 65 6e 74 73 2e 68 74 6d 6c 3e 60 5f 00 54 | .io/en/latest/contents.html>`_.T |
| a0920 | 6f 20 75 73 65 20 74 68 69 73 20 66 75 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 65 | o.use.this.full.configuration.we |
| a0940 | 20 61 73 75 6d 65 20 61 20 70 75 62 6c 69 63 20 61 63 63 65 73 73 69 62 6c 65 20 68 6f 73 74 6e | .asume.a.public.accessible.hostn |
| a0960 | 61 6d 65 2e 00 54 6f 70 6f 6c 6f 67 79 3a 00 54 6f 70 6f 6c 6f 67 79 3a 20 50 43 34 20 2d 20 4c | ame..Topology:.Topology:.PC4.-.L |
| a0980 | 65 61 66 32 20 2d 20 53 70 69 6e 65 31 20 2d 20 4c 65 61 66 33 20 2d 20 50 43 35 00 54 6f 74 61 | eaf2.-.Spine1.-.Leaf3.-.PC5.Tota |
| a09a0 | 6c 20 50 6f 72 74 73 3a 20 36 35 35 33 36 20 28 30 20 74 6f 20 36 35 35 33 35 29 00 54 6f 75 62 | l.Ports:.65536.(0.to.65535).Toub |
| a09c0 | 6c 65 73 68 6f 6f 74 69 6e 67 00 54 72 61 63 6b 00 54 72 61 63 6b 20 6f 70 74 69 6f 6e 20 74 6f | leshooting.Track.Track.option.to |
| a09e0 | 20 74 72 61 63 6b 20 6e 6f 6e 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 20 73 74 61 74 65 73 | .track.non.VRRP.interface.states |
| a0a00 | 2e 20 56 52 52 50 20 63 68 61 6e 67 65 73 20 73 74 61 74 75 73 20 74 6f 20 60 60 46 41 55 4c 54 | ..VRRP.changes.status.to.``FAULT |
| a0a20 | 60 60 20 69 66 20 6f 6e 65 20 6f 66 20 74 68 65 20 74 72 61 63 6b 20 69 6e 74 65 72 66 61 63 65 | ``.if.one.of.the.track.interface |
| a0a40 | 73 20 69 6e 20 73 74 61 74 65 20 60 60 64 6f 77 6e 60 60 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c | s.in.state.``down``..Traditional |
| a0a60 | 20 42 47 50 20 64 69 64 20 6e 6f 74 20 68 61 76 65 20 74 68 65 20 66 65 61 74 75 72 65 20 74 6f | .BGP.did.not.have.the.feature.to |
| a0a80 | 20 64 65 74 65 63 74 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 27 73 20 63 61 70 61 62 69 6c 69 | .detect.a.remote.peer's.capabili |
| a0aa0 | 74 69 65 73 2c 20 65 2e 67 2e 20 77 68 65 74 68 65 72 20 69 74 20 63 61 6e 20 68 61 6e 64 6c 65 | ties,.e.g..whether.it.can.handle |
| a0ac0 | 20 70 72 65 66 69 78 20 74 79 70 65 73 20 6f 74 68 65 72 20 74 68 61 6e 20 49 50 76 34 20 75 6e | .prefix.types.other.than.IPv4.un |
| a0ae0 | 69 63 61 73 74 20 72 6f 75 74 65 73 2e 20 54 68 69 73 20 77 61 73 20 61 20 62 69 67 20 70 72 6f | icast.routes..This.was.a.big.pro |
| a0b00 | 62 6c 65 6d 20 75 73 69 6e 67 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 | blem.using.Multiprotocol.Extensi |
| a0b20 | 6f 6e 20 66 6f 72 20 42 47 50 20 69 6e 20 61 6e 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6e 65 74 | on.for.BGP.in.an.operational.net |
| a0b40 | 77 6f 72 6b 2e 20 3a 72 66 63 3a 60 32 38 34 32 60 20 61 64 6f 70 74 65 64 20 61 20 66 65 61 74 | work..:rfc:`2842`.adopted.a.feat |
| a0b60 | 75 72 65 20 63 61 6c 6c 65 64 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f | ure.called.Capability.Negotiatio |
| a0b80 | 6e 2e 20 2a 62 67 70 64 2a 20 75 73 65 20 74 68 69 73 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 | n..*bgpd*.use.this.Capability.Ne |
| a0ba0 | 67 6f 74 69 61 74 69 6f 6e 20 74 6f 20 64 65 74 65 63 74 20 74 68 65 20 72 65 6d 6f 74 65 20 70 | gotiation.to.detect.the.remote.p |
| a0bc0 | 65 65 72 27 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 49 66 20 61 20 70 65 65 72 20 69 73 | eer's.capabilities..If.a.peer.is |
| a0be0 | 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 61 6e 20 49 50 76 34 20 75 6e 69 63 | .only.configured.as.an.IPv4.unic |
| a0c00 | 61 73 74 20 6e 65 69 67 68 62 6f 72 2c 20 2a 62 67 70 64 2a 20 64 6f 65 73 20 6e 6f 74 20 73 65 | ast.neighbor,.*bgpd*.does.not.se |
| a0c20 | 6e 64 20 74 68 65 73 65 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 | nd.these.Capability.Negotiation. |
| a0c40 | 70 61 63 6b 65 74 73 20 28 61 74 20 6c 65 61 73 74 20 6e 6f 74 20 75 6e 6c 65 73 73 20 6f 74 68 | packets.(at.least.not.unless.oth |
| a0c60 | 65 72 20 6f 70 74 69 6f 6e 61 6c 20 42 47 50 20 66 65 61 74 75 72 65 73 20 72 65 71 75 69 72 65 | er.optional.BGP.features.require |
| a0c80 | 20 63 61 70 61 62 69 6c 69 74 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 29 2e 00 54 72 61 64 69 74 | .capability.negotiation)..Tradit |
| a0ca0 | 69 6f 6e 61 6c 6c 79 20 66 69 72 65 77 61 6c 6c 73 20 77 65 65 72 65 20 63 6f 6e 66 69 67 75 72 | ionally.firewalls.weere.configur |
| a0cc0 | 65 64 20 77 69 74 68 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 64 61 74 61 20 67 6f 69 6e | ed.with.the.concept.of.data.goin |
| a0ce0 | 67 20 69 6e 20 61 6e 64 20 6f 75 74 20 6f 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 | g.in.and.out.of.an.interface..Th |
| a0d00 | 65 20 72 6f 75 74 65 72 20 6a 75 73 74 20 6c 69 73 74 65 6e 65 64 20 74 6f 20 74 68 65 20 64 61 | e.router.just.listened.to.the.da |
| a0d20 | 74 61 20 66 6c 6f 77 69 6e 67 20 74 68 72 6f 75 67 68 20 61 6e 64 20 72 65 73 70 6f 6e 64 69 6e | ta.flowing.through.and.respondin |
| a0d40 | 67 20 61 73 20 72 65 71 75 69 72 65 64 20 69 66 20 69 74 20 77 61 73 20 64 69 72 65 63 74 65 64 | g.as.required.if.it.was.directed |
| a0d60 | 20 61 74 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 00 54 72 61 64 69 74 69 6f 6e | .at.the.router.itself..Tradition |
| a0d80 | 61 6c 6c 79 20 68 61 72 64 77 61 72 65 20 72 6f 75 74 65 72 73 20 69 6d 70 6c 65 6d 65 6e 74 20 | ally.hardware.routers.implement. |
| a0da0 | 49 50 73 65 63 20 65 78 63 6c 75 73 69 76 65 6c 79 20 64 75 65 20 74 6f 20 72 65 6c 61 74 69 76 | IPsec.exclusively.due.to.relativ |
| a0dc0 | 65 20 65 61 73 65 20 6f 66 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 69 74 20 69 6e 20 68 61 72 | e.ease.of.implementing.it.in.har |
| a0de0 | 64 77 61 72 65 20 61 6e 64 20 69 6e 73 75 66 66 69 63 69 65 6e 74 20 43 50 55 20 70 6f 77 65 72 | dware.and.insufficient.CPU.power |
| a0e00 | 20 66 6f 72 20 64 6f 69 6e 67 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 6e 20 73 6f 66 74 77 61 72 | .for.doing.encryption.in.softwar |
| a0e20 | 65 2e 20 53 69 6e 63 65 20 56 79 4f 53 20 69 73 20 61 20 73 6f 66 74 77 61 72 65 20 72 6f 75 74 | e..Since.VyOS.is.a.software.rout |
| a0e40 | 65 72 2c 20 74 68 69 73 20 69 73 20 6c 65 73 73 20 6f 66 20 61 20 63 6f 6e 63 65 72 6e 2e 20 4f | er,.this.is.less.of.a.concern..O |
| a0e60 | 70 65 6e 56 50 4e 20 68 61 73 20 62 65 65 6e 20 77 69 64 65 6c 79 20 75 73 65 64 20 6f 6e 20 55 | penVPN.has.been.widely.used.on.U |
| a0e80 | 4e 49 58 20 70 6c 61 74 66 6f 72 6d 20 66 6f 72 20 61 20 6c 6f 6e 67 20 74 69 6d 65 20 61 6e 64 | NIX.platform.for.a.long.time.and |
| a0ea0 | 20 69 73 20 61 20 70 6f 70 75 6c 61 72 20 6f 70 74 69 6f 6e 20 66 6f 72 20 72 65 6d 6f 74 65 20 | .is.a.popular.option.for.remote. |
| a0ec0 | 61 63 63 65 73 73 20 56 50 4e 2c 20 74 68 6f 75 67 68 20 69 74 27 73 20 61 6c 73 6f 20 63 61 70 | access.VPN,.though.it's.also.cap |
| a0ee0 | 61 62 6c 65 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | able.of.site-to-site.connections |
| a0f00 | 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 6c 79 20 68 61 72 64 77 61 72 65 20 72 6f 75 74 65 72 73 | ..Traditionally.hardware.routers |
| a0f20 | 20 69 6d 70 6c 65 6d 65 6e 74 20 49 50 73 65 63 20 65 78 63 6c 75 73 69 76 65 6c 79 20 64 75 65 | .implement.IPsec.exclusively.due |
| a0f40 | 20 74 6f 20 72 65 6c 61 74 69 76 65 20 65 61 73 65 20 6f 66 20 69 6d 70 6c 65 6d 65 6e 74 69 6e | .to.relative.ease.of.implementin |
| a0f60 | 67 20 69 74 20 69 6e 20 68 61 72 64 77 61 72 65 20 61 6e 64 20 69 6e 73 75 66 66 69 63 69 65 6e | g.it.in.hardware.and.insufficien |
| a0f80 | 74 20 43 50 55 20 70 6f 77 65 72 20 66 6f 72 20 64 6f 69 6e 67 20 65 6e 63 72 79 70 74 69 6f 6e | t.CPU.power.for.doing.encryption |
| a0fa0 | 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 53 69 6e 63 65 20 56 79 4f 53 20 69 73 20 61 20 73 6f | .in.software..Since.VyOS.is.a.so |
| a0fc0 | 66 74 77 61 72 65 20 72 6f 75 74 65 72 2c 20 74 68 69 73 20 69 73 20 6c 65 73 73 20 6f 66 20 61 | ftware.router,.this.is.less.of.a |
| a0fe0 | 20 63 6f 6e 63 65 72 6e 2e 20 4f 70 65 6e 56 50 4e 20 68 61 73 20 62 65 65 6e 20 77 69 64 65 6c | .concern..OpenVPN.has.been.widel |
| a1000 | 79 20 75 73 65 64 20 6f 6e 20 74 68 65 20 55 4e 49 58 20 70 6c 61 74 66 6f 72 6d 20 66 6f 72 20 | y.used.on.the.UNIX.platform.for. |
| a1020 | 61 20 6c 6f 6e 67 20 74 69 6d 65 20 61 6e 64 20 69 73 20 61 20 70 6f 70 75 6c 61 72 20 6f 70 74 | a.long.time.and.is.a.popular.opt |
| a1040 | 69 6f 6e 20 66 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 56 50 4e 2c 20 74 68 6f 75 67 | ion.for.remote.access.VPN,.thoug |
| a1060 | 68 20 69 74 27 73 20 61 6c 73 6f 20 63 61 70 61 62 6c 65 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 | h.it's.also.capable.of.site-to-s |
| a1080 | 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 72 61 66 66 69 63 20 46 69 6c 74 65 72 73 | ite.connections..Traffic.Filters |
| a10a0 | 00 54 72 61 66 66 69 63 20 46 69 6c 74 65 72 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 63 6f 6e | .Traffic.Filters.are.used.to.con |
| a10c0 | 74 72 6f 6c 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 68 61 76 65 20 74 68 65 | trol.which.packets.will.have.the |
| a10e0 | 20 64 65 66 69 6e 65 64 20 4e 41 54 20 72 75 6c 65 73 20 61 70 70 6c 69 65 64 2e 20 46 69 76 65 | .defined.NAT.rules.applied..Five |
| a1100 | 20 64 69 66 66 65 72 65 6e 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 | .different.filters.can.be.applie |
| a1120 | 64 20 77 69 74 68 69 6e 20 61 20 4e 41 54 20 72 75 6c 65 2e 00 54 72 61 66 66 69 63 20 4d 61 74 | d.within.a.NAT.rule..Traffic.Mat |
| a1140 | 63 68 20 47 72 6f 75 70 00 54 72 61 66 66 69 63 20 50 6f 6c 69 63 79 00 54 72 61 66 66 69 63 20 | ch.Group.Traffic.Policy.Traffic. |
| a1160 | 63 61 6e 6e 6f 74 20 66 6c 6f 77 20 62 65 74 77 65 65 6e 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 | cannot.flow.between.a.zone.membe |
| a1180 | 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 74 68 | r.interface.and.any.interface.th |
| a11a0 | 61 74 20 69 73 20 6e 6f 74 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 2e 00 54 72 61 66 66 69 63 | at.is.not.a.zone.member..Traffic |
| a11c0 | 20 63 61 6e 6e 6f 74 20 66 6c 6f 77 20 62 65 74 77 65 65 6e 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 | .cannot.flow.between.zone.member |
| a11e0 | 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 | .interface.and.any.interface.tha |
| a1200 | 74 20 69 73 20 6e 6f 74 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 2e 00 54 72 61 66 66 69 63 20 | t.is.not.a.zone.member..Traffic. |
| a1220 | 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 6c 6c 20 67 6f 20 74 | from.multicast.sources.will.go.t |
| a1240 | 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e 64 20 72 65 63 65 | o.the.Rendezvous.Point,.and.rece |
| a1260 | 69 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 73 68 61 72 65 64 | ivers.will.pull.it.from.a.shared |
| a1280 | 20 74 72 65 65 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 | .tree.using.:abbr:`IGMP.(Interne |
| a12a0 | 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 2e 00 54 | t.Group.Management.Protocol)`..T |
| a12c0 | 72 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 | raffic.from.multicast.sources.wi |
| a12e0 | 6c 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 | ll.go.to.the.Rendezvous.Point,.a |
| a1300 | 6e 64 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 | nd.receivers.will.pull.it.from.a |
| a1320 | 20 73 68 61 72 65 64 20 74 72 65 65 20 75 73 69 6e 67 20 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 | .shared.tree.using.IGMP.(Interne |
| a1340 | 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 2e 00 54 72 | t.Group.Management.Protocol)..Tr |
| a1360 | 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 73 20 77 69 6c | affic.from.multicast.sources.wil |
| a1380 | 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e | l.go.to.the.Rendezvous.Point,.an |
| a13a0 | 64 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 | d.receivers.will.pull.it.from.a. |
| a13c0 | 73 68 61 72 65 64 20 74 72 65 65 20 75 73 69 6e 67 20 4d 4c 44 20 28 4d 75 6c 74 69 63 61 73 74 | shared.tree.using.MLD.(Multicast |
| a13e0 | 20 4c 69 73 74 65 6e 65 72 20 44 69 73 63 6f 76 65 72 79 29 2e 00 54 72 61 66 66 69 63 20 6d 75 | .Listener.Discovery)..Traffic.mu |
| a1400 | 73 74 20 62 65 20 73 79 6d 6d 65 74 72 69 63 00 54 72 61 66 66 69 63 20 77 68 69 63 68 20 69 73 | st.be.symmetric.Traffic.which.is |
| a1420 | 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f 6e 20 61 6e 20 69 6e | .received.by.the.router.on.an.in |
| a1440 | 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 6d 65 6d 62 65 72 20 6f 66 20 61 20 62 72 69 | terface.which.is.member.of.a.bri |
| a1460 | 64 67 65 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 6f 6e 20 74 68 65 20 2a 2a 42 72 69 64 67 65 | dge.is.processed.on.the.**Bridge |
| a1480 | 20 4c 61 79 65 72 2a 2a 2e 20 41 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c | .Layer**..A.simplified.packet.fl |
| a14a0 | 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 68 69 73 20 6c 61 79 65 72 20 69 73 20 73 68 6f | ow.diagram.for.this.layer.is.sho |
| a14c0 | 77 6e 20 6e 65 78 74 3a 00 54 72 61 66 66 69 63 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 | wn.next:.Traffic.which.is.receiv |
| a14e0 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 | ed.by.the.router.on.an.interface |
| a1500 | 20 77 68 69 63 68 20 69 73 20 6d 65 6d 62 65 72 20 6f 66 20 61 20 62 72 69 64 67 65 20 69 73 20 | .which.is.member.of.a.bridge.is. |
| a1520 | 70 72 6f 63 65 73 73 65 64 20 6f 6e 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a | processed.on.the.**Bridge.Layer* |
| a1540 | 2a 2e 20 42 65 66 6f 72 65 20 74 68 65 20 62 72 69 64 67 65 20 64 65 63 69 73 69 6f 6e 20 69 73 | *..Before.the.bridge.decision.is |
| a1560 | 20 6d 61 64 65 2c 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 61 72 65 20 61 6e 61 6c 79 7a 65 64 20 | .made,.all.packets.are.analyzed. |
| a1580 | 61 74 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2e 20 46 69 72 73 74 20 66 69 6c 74 65 72 73 | at.**Prerouting**..First.filters |
| a15a0 | 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 72 65 2c 20 61 6e 64 20 61 6c 73 6f 20 72 | .can.be.applied.here,.and.also.r |
| a15c0 | 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 | ules.for.ignoring.connection.tra |
| a15e0 | 63 6b 69 6e 67 20 73 79 73 74 65 6d 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 | cking.system.can.be.configured.. |
| a1600 | 54 68 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 | The.relevant.configuration.that. |
| a1620 | 61 63 74 73 20 69 6e 20 2a 2a 70 72 65 72 6f 75 74 69 6e 67 2a 2a 20 69 73 3a 00 54 72 61 6e 73 | acts.in.**prerouting**.is:.Trans |
| a1640 | 69 74 69 6f 6e 20 73 63 72 69 70 74 73 00 54 72 61 6e 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 | ition.scripts.Transition.scripts |
| a1660 | 20 63 61 6e 20 68 65 6c 70 20 79 6f 75 20 69 6d 70 6c 65 6d 65 6e 74 20 76 61 72 69 6f 75 73 20 | .can.help.you.implement.various. |
| a1680 | 66 69 78 75 70 73 2c 20 73 75 63 68 20 61 73 20 73 74 61 72 74 69 6e 67 20 61 6e 64 20 73 74 6f | fixups,.such.as.starting.and.sto |
| a16a0 | 70 70 69 6e 67 20 73 65 72 76 69 63 65 73 2c 20 6f 72 20 65 76 65 6e 20 6d 6f 64 69 66 79 69 6e | pping.services,.or.even.modifyin |
| a16c0 | 67 20 74 68 65 20 56 79 4f 53 20 63 6f 6e 66 69 67 20 6f 6e 20 56 52 52 50 20 74 72 61 6e 73 69 | g.the.VyOS.config.on.VRRP.transi |
| a16e0 | 74 69 6f 6e 2e 20 54 68 69 73 20 73 65 74 75 70 20 77 69 6c 6c 20 6d 61 6b 65 20 74 68 65 20 56 | tion..This.setup.will.make.the.V |
| a1700 | 52 52 50 20 70 72 6f 63 65 73 73 20 65 78 65 63 75 74 65 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 | RRP.process.execute.the.``/confi |
| a1720 | 67 2f 73 63 72 69 70 74 73 2f 76 72 72 70 2d 66 61 69 6c 2e 73 68 60 60 20 77 69 74 68 20 61 72 | g/scripts/vrrp-fail.sh``.with.ar |
| a1740 | 67 75 6d 65 6e 74 20 60 60 46 6f 6f 60 60 20 77 68 65 6e 20 56 52 52 50 20 66 61 69 6c 73 2c 20 | gument.``Foo``.when.VRRP.fails,. |
| a1760 | 61 6e 64 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 76 72 72 70 2d 6d | and.the.``/config/scripts/vrrp-m |
| a1780 | 61 73 74 65 72 2e 73 68 60 60 20 77 68 65 6e 20 74 68 65 20 72 6f 75 74 65 72 20 62 65 63 6f 6d | aster.sh``.when.the.router.becom |
| a17a0 | 65 73 20 74 68 65 20 6d 61 73 74 65 72 3a 00 54 72 61 6e 73 70 61 72 65 6e 74 20 50 72 6f 78 79 | es.the.master:.Transparent.Proxy |
| a17c0 | 00 54 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 00 54 75 6e 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 | .Troubleshooting.Tuning.commands |
| a17e0 | 00 54 75 6e 6e 65 6c 00 54 75 6e 6e 65 6c 20 6b 65 79 73 00 54 75 6e 6e 65 6c 20 70 61 73 73 77 | .Tunnel.Tunnel.keys.Tunnel.passw |
| a1800 | 6f 72 64 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 63 6c 69 | ord.used.to.authenticate.the.cli |
| a1820 | 65 6e 74 20 28 4c 41 43 29 00 54 75 72 6e 20 6f 6e 20 66 6c 6f 77 2d 62 61 73 65 64 20 74 69 6d | ent.(LAC).Turn.on.flow-based.tim |
| a1840 | 65 73 74 61 6d 70 20 65 78 74 65 6e 73 69 6f 6e 2e 00 54 77 6f 20 65 6e 76 69 72 6f 6e 6d 65 6e | estamp.extension..Two.environmen |
| a1860 | 74 20 76 61 72 69 61 62 6c 65 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 00 54 77 6f 20 69 | t.variables.are.available:.Two.i |
| a1880 | 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 65 20 75 73 65 64 20 69 | nterfaces.are.going.to.be.used.i |
| a18a0 | 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 73 3a 20 65 74 68 30 20 61 6e 64 20 65 74 68 31 00 | n.the.flowtables:.eth0.and.eth1. |
| a18c0 | 54 77 6f 20 6e 65 77 20 66 69 6c 65 73 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f | Two.new.files.``/config/auth/id_ |
| a18e0 | 72 73 61 5f 72 70 6b 69 60 60 20 61 6e 64 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 | rsa_rpki``.and.``/config/auth/id |
| a1900 | 5f 72 73 61 5f 72 70 6b 69 2e 70 75 62 60 60 20 77 69 6c 6c 20 62 65 20 63 72 65 61 74 65 64 2e | _rsa_rpki.pub``.will.be.created. |
| a1920 | 00 54 77 6f 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 60 | .Two.options.are.available.for.` |
| a1940 | 6d 6f 64 65 60 3a 20 65 69 74 68 65 72 20 60 6c 6f 61 64 60 20 61 6e 64 20 72 65 70 6c 61 63 65 | mode`:.either.`load`.and.replace |
| a1960 | 20 6f 72 20 60 73 65 74 60 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 63 74 | .or.`set`.the.configuration.sect |
| a1980 | 69 6f 6e 2e 00 54 77 6f 20 72 6f 75 74 65 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 62 6f 74 68 20 | ion..Two.routers.connected.both. |
| a19a0 | 76 69 61 20 65 74 68 31 20 74 68 72 6f 75 67 68 20 61 6e 20 75 6e 74 72 75 73 74 65 64 20 73 77 | via.eth1.through.an.untrusted.sw |
| a19c0 | 69 74 63 68 00 54 79 70 65 20 6f 66 20 6d 65 74 72 69 63 73 20 67 72 6f 75 70 69 6e 67 20 77 68 | itch.Type.of.metrics.grouping.wh |
| a19e0 | 65 6e 20 70 75 73 68 20 74 6f 20 41 7a 75 72 65 20 44 61 74 61 20 45 78 70 6c 6f 72 65 72 2e 20 | en.push.to.Azure.Data.Explorer.. |
| a1a00 | 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 74 61 62 6c 65 2d 70 65 72 2d 6d 65 74 72 69 | The.default.is.``table-per-metri |
| a1a20 | 63 60 60 2e 00 54 79 70 65 2d 31 20 28 45 41 44 2d 70 65 72 2d 45 53 20 61 6e 64 20 45 41 44 2d | c``..Type-1.(EAD-per-ES.and.EAD- |
| a1a40 | 70 65 72 2d 45 56 49 29 20 72 6f 75 74 65 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 61 64 76 65 | per-EVI).routes.are.used.to.adve |
| a1a60 | 72 74 69 73 65 20 74 68 65 20 6c 6f 63 61 6c 6c 79 20 61 74 74 61 63 68 65 64 20 45 53 73 20 61 | rtise.the.locally.attached.ESs.a |
| a1a80 | 6e 64 20 74 6f 20 6c 65 61 72 6e 20 6f 66 66 20 72 65 6d 6f 74 65 20 45 53 73 20 69 6e 20 74 68 | nd.to.learn.off.remote.ESs.in.th |
| a1aa0 | 65 20 6e 65 74 77 6f 72 6b 2e 20 4c 6f 63 61 6c 20 54 79 70 65 2d 32 2f 4d 41 43 2d 49 50 20 72 | e.network..Local.Type-2/MAC-IP.r |
| a1ac0 | 6f 75 74 65 73 20 61 72 65 20 61 6c 73 6f 20 61 64 76 65 72 74 69 73 65 64 20 77 69 74 68 20 61 | outes.are.also.advertised.with.a |
| a1ae0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 45 53 49 20 61 6c 6c 6f 77 69 6e 67 20 66 6f 72 20 4d 41 | .destination.ESI.allowing.for.MA |
| a1b00 | 43 2d 49 50 20 73 79 6e 63 69 6e 67 20 62 65 74 77 65 65 6e 20 45 74 68 65 72 6e 65 74 20 53 65 | C-IP.syncing.between.Ethernet.Se |
| a1b20 | 67 6d 65 6e 74 20 70 65 65 72 73 2e 20 52 65 66 65 72 65 6e 63 65 3a 20 52 46 43 20 37 34 33 32 | gment.peers..Reference:.RFC.7432 |
| a1b40 | 2c 20 52 46 43 20 38 33 36 35 00 54 79 70 65 2d 34 20 28 45 53 52 29 20 72 6f 75 74 65 73 20 61 | ,.RFC.8365.Type-4.(ESR).routes.a |
| a1b60 | 72 65 20 75 73 65 64 20 66 6f 72 20 44 65 73 69 67 6e 61 74 65 64 20 46 6f 72 77 61 72 64 65 72 | re.used.for.Designated.Forwarder |
| a1b80 | 20 28 44 46 29 20 65 6c 65 63 74 69 6f 6e 2e 20 44 46 73 20 66 6f 72 77 61 72 64 20 42 55 4d 20 | .(DF).election..DFs.forward.BUM. |
| a1ba0 | 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 76 69 61 20 74 68 65 20 6f 76 65 72 6c 61 79 | traffic.received.via.the.overlay |
| a1bc0 | 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 75 73 | .network..This.implementation.us |
| a1be0 | 65 73 20 61 20 70 72 65 66 65 72 65 6e 63 65 20 62 61 73 65 64 20 44 46 20 65 6c 65 63 74 69 6f | es.a.preference.based.DF.electio |
| a1c00 | 6e 20 73 70 65 63 69 66 69 65 64 20 62 79 20 64 72 61 66 74 2d 69 65 74 66 2d 62 65 73 73 2d 65 | n.specified.by.draft-ietf-bess-e |
| a1c20 | 76 70 6e 2d 70 72 65 66 2d 64 66 2e 00 54 79 70 69 63 61 6c 6c 79 2c 20 61 20 31 2d 74 6f 2d 31 | vpn-pref-df..Typically,.a.1-to-1 |
| a1c40 | 20 4e 41 54 20 72 75 6c 65 20 6f 6d 69 74 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | .NAT.rule.omits.the.destination. |
| a1c60 | 70 6f 72 74 20 28 61 6c 6c 20 70 6f 72 74 73 29 20 61 6e 64 20 72 65 70 6c 61 63 65 73 20 74 68 | port.(all.ports).and.replaces.th |
| a1c80 | 65 20 70 72 6f 74 6f 63 6f 6c 20 77 69 74 68 20 65 69 74 68 65 72 20 2a 2a 61 6c 6c 2a 2a 20 6f | e.protocol.with.either.**all**.o |
| a1ca0 | 72 20 2a 2a 69 70 2a 2a 2e 00 55 44 50 20 42 72 6f 61 64 63 61 73 74 20 52 65 6c 61 79 00 55 44 | r.**ip**..UDP.Broadcast.Relay.UD |
| a1cc0 | 50 20 6d 6f 64 65 20 77 6f 72 6b 73 20 62 65 74 74 65 72 20 77 69 74 68 20 4e 41 54 3a 00 55 44 | P.mode.works.better.with.NAT:.UD |
| a1ce0 | 50 20 70 6f 72 74 20 31 37 30 31 20 66 6f 72 20 49 50 73 65 63 00 55 44 50 20 70 6f 72 74 20 34 | P.port.1701.for.IPsec.UDP.port.4 |
| a1d00 | 35 30 30 20 28 4e 41 54 2d 54 29 00 55 44 50 20 70 6f 72 74 20 35 30 30 20 28 49 4b 45 29 00 55 | 500.(NAT-T).UDP.port.500.(IKE).U |
| a1d20 | 52 4c 20 46 69 6c 74 65 72 69 6e 67 20 69 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 53 71 75 69 | RL.Filtering.is.provided.by.Squi |
| a1d40 | 64 47 75 61 72 64 5f 2e 00 55 52 4c 20 66 69 6c 74 65 72 69 6e 67 00 55 52 4c 20 77 69 74 68 20 | dGuard_..URL.filtering.URL.with. |
| a1d60 | 73 69 67 6e 61 74 75 72 65 20 6f 66 20 6d 61 73 74 65 72 20 66 6f 72 20 61 75 74 68 20 72 65 70 | signature.of.master.for.auth.rep |
| a1d80 | 6c 79 20 76 65 72 69 66 69 63 61 74 69 6f 6e 00 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f | ly.verification.USB.to.serial.co |
| a1da0 | 6e 76 65 72 74 65 72 73 20 77 69 6c 6c 20 68 61 6e 64 6c 65 20 6d 6f 73 74 20 6f 66 20 74 68 65 | nverters.will.handle.most.of.the |
| a1dc0 | 69 72 20 77 6f 72 6b 20 69 6e 20 73 6f 66 74 77 61 72 65 20 73 6f 20 79 6f 75 20 73 68 6f 75 6c | ir.work.in.software.so.you.shoul |
| a1de0 | 64 20 62 65 20 63 61 72 65 66 75 6c 6c 20 77 69 74 68 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 | d.be.carefull.with.the.selected. |
| a1e00 | 62 61 75 64 72 61 74 65 20 61 73 20 73 6f 6d 65 20 74 69 6d 65 73 20 74 68 65 79 20 63 61 6e 27 | baudrate.as.some.times.they.can' |
| a1e20 | 74 20 63 6f 70 65 20 77 69 74 68 20 74 68 65 20 65 78 70 65 63 74 65 64 20 73 70 65 65 64 2e 00 | t.cope.with.the.expected.speed.. |
| a1e40 | 55 55 43 50 20 73 75 62 73 79 73 74 65 6d 00 55 6e 64 65 72 20 73 6f 6d 65 20 63 69 72 63 75 6d | UUCP.subsystem.Under.some.circum |
| a1e60 | 73 74 61 6e 63 65 73 2c 20 4c 52 4f 20 69 73 20 6b 6e 6f 77 6e 20 74 6f 20 6d 6f 64 69 66 79 20 | stances,.LRO.is.known.to.modify. |
| a1e80 | 74 68 65 20 70 61 63 6b 65 74 20 68 65 61 64 65 72 73 20 6f 66 20 66 6f 72 77 61 72 64 65 64 20 | the.packet.headers.of.forwarded. |
| a1ea0 | 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 62 72 65 61 6b 73 20 74 68 65 20 65 6e 64 2d 74 6f | traffic,.which.breaks.the.end-to |
| a1ec0 | 2d 65 6e 64 20 70 72 69 6e 63 69 70 6c 65 20 6f 66 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f | -end.principle.of.computer.netwo |
| a1ee0 | 72 6b 69 6e 67 2e 20 4c 52 4f 20 69 73 20 61 6c 73 6f 20 6f 6e 6c 79 20 61 62 6c 65 20 74 6f 20 | rking..LRO.is.also.only.able.to. |
| a1f00 | 6f 66 66 6c 6f 61 64 20 54 43 50 20 73 65 67 6d 65 6e 74 73 20 65 6e 63 61 70 73 75 6c 61 74 65 | offload.TCP.segments.encapsulate |
| a1f20 | 64 20 69 6e 20 49 50 76 34 20 70 61 63 6b 65 74 73 2e 20 44 75 65 20 74 6f 20 74 68 65 73 65 20 | d.in.IPv4.packets..Due.to.these. |
| a1f40 | 6c 69 6d 69 74 61 74 69 6f 6e 73 2c 20 69 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 | limitations,.it.is.recommended.t |
| a1f60 | 6f 20 75 73 65 20 47 52 4f 20 28 47 65 6e 65 72 69 63 20 52 65 63 65 69 76 65 20 4f 66 66 6c 6f | o.use.GRO.(Generic.Receive.Offlo |
| a1f80 | 61 64 29 20 77 68 65 72 65 20 70 6f 73 73 69 62 6c 65 2e 20 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 | ad).where.possible..More.informa |
| a1fa0 | 74 69 6f 6e 20 6f 6e 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 6f 66 20 4c 52 4f 20 63 | tion.on.the.limitations.of.LRO.c |
| a1fc0 | 61 6e 20 62 65 20 66 6f 75 6e 64 20 68 65 72 65 3a 20 68 74 74 70 73 3a 2f 2f 6c 77 6e 2e 6e 65 | an.be.found.here:.https://lwn.ne |
| a1fe0 | 74 2f 41 72 74 69 63 6c 65 73 2f 33 35 38 39 31 30 2f 00 55 6e 69 63 61 73 74 00 55 6e 69 63 61 | t/Articles/358910/.Unicast.Unica |
| a2000 | 73 74 20 56 52 52 50 00 55 6e 69 63 61 73 74 20 56 58 4c 41 4e 00 55 6e 69 74 20 6f 66 20 74 68 | st.VRRP.Unicast.VXLAN.Unit.of.th |
| a2020 | 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 4d 42 2e 00 55 6e 69 74 73 00 55 6e 74 69 6c 20 56 79 | is.command.is.MB..Units.Until.Vy |
| a2040 | 4f 53 20 31 2e 34 2c 20 74 68 65 20 6f 6e 6c 79 20 6f 70 74 69 6f 6e 20 66 6f 72 20 73 69 74 65 | OS.1.4,.the.only.option.for.site |
| a2060 | 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e 56 50 4e 20 77 69 74 68 6f 75 74 20 50 4b 49 20 77 61 73 | -to-site.OpenVPN.without.PKI.was |
| a2080 | 20 74 6f 20 75 73 65 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 2e 20 54 68 61 74 20 6f 70 | .to.use.pre-shared.keys..That.op |
| a20a0 | 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 62 75 74 20 69 74 20 69 | tion.is.still.available.but.it.i |
| a20c0 | 73 20 64 65 70 72 65 63 61 74 65 64 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 | s.deprecated.and.will.be.removed |
| a20e0 | 20 69 6e 20 74 68 65 20 66 75 74 75 72 65 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 | .in.the.future..However,.if.you. |
| a2100 | 6e 65 65 64 20 74 6f 20 73 65 74 20 75 70 20 61 20 74 75 6e 6e 65 6c 20 74 6f 20 61 6e 20 6f 6c | need.to.set.up.a.tunnel.to.an.ol |
| a2120 | 64 65 72 20 56 79 4f 53 20 76 65 72 73 69 6f 6e 20 6f 72 20 61 20 73 79 73 74 65 6d 20 77 69 74 | der.VyOS.version.or.a.system.wit |
| a2140 | 68 20 6f 6c 64 65 72 20 4f 70 65 6e 56 50 4e 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 74 69 | h.older.OpenVPN,.you.need.to.sti |
| a2160 | 6c 6c 20 6e 65 65 64 20 74 6f 20 6b 6e 6f 77 20 68 6f 77 20 74 6f 20 75 73 65 20 69 74 2e 00 55 | ll.need.to.know.how.to.use.it..U |
| a2180 | 70 20 74 6f 20 73 65 76 65 6e 20 71 75 65 75 65 73 20 2d 64 65 66 69 6e 65 64 20 61 73 20 63 6c | p.to.seven.queues.-defined.as.cl |
| a21a0 | 61 73 73 65 73 5f 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 70 72 69 6f 72 69 74 69 65 73 | asses_.with.different.priorities |
| a21c0 | 2d 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 50 61 63 6b 65 74 73 20 61 72 65 | -.can.be.configured..Packets.are |
| a21e0 | 20 70 6c 61 63 65 64 20 69 6e 74 6f 20 71 75 65 75 65 73 20 62 61 73 65 64 20 6f 6e 20 61 73 73 | .placed.into.queues.based.on.ass |
| a2200 | 6f 63 69 61 74 65 64 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 2e 20 50 61 63 6b 65 74 73 20 | ociated.match.criteria..Packets. |
| a2220 | 61 72 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 66 72 6f 6d 20 74 68 65 20 71 75 65 75 65 73 20 | are.transmitted.from.the.queues. |
| a2240 | 69 6e 20 70 72 69 6f 72 69 74 79 20 6f 72 64 65 72 2e 20 49 66 20 63 6c 61 73 73 65 73 20 77 69 | in.priority.order..If.classes.wi |
| a2260 | 74 68 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 61 72 65 20 62 65 69 6e 67 20 66 | th.a.higher.priority.are.being.f |
| a2280 | 69 6c 6c 65 64 20 77 69 74 68 20 70 61 63 6b 65 74 73 20 63 6f 6e 74 69 6e 75 6f 75 73 6c 79 2c | illed.with.packets.continuously, |
| a22a0 | 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 79 20 63 6c 61 | .packets.from.lower.priority.cla |
| a22c0 | 73 73 65 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 61 66 | sses.will.only.be.transmitted.af |
| a22e0 | 74 65 72 20 74 72 61 66 66 69 63 20 76 6f 6c 75 6d 65 20 66 72 6f 6d 20 68 69 67 68 65 72 20 70 | ter.traffic.volume.from.higher.p |
| a2300 | 72 69 6f 72 69 74 79 20 63 6c 61 73 73 65 73 20 64 65 63 72 65 61 73 65 73 2e 00 55 70 64 61 74 | riority.classes.decreases..Updat |
| a2320 | 65 00 55 70 64 61 74 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 00 55 70 64 61 74 65 20 | e.Update.container.image.Update. |
| a2340 | 67 65 6f 69 70 20 64 61 74 61 62 61 73 65 00 55 70 64 61 74 65 73 00 55 70 64 61 74 65 73 20 66 | geoip.database.Updates.Updates.f |
| a2360 | 72 6f 6d 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 73 20 61 72 65 20 64 | rom.the.RPKI.cache.servers.are.d |
| a2380 | 69 72 65 63 74 6c 79 20 61 70 70 6c 69 65 64 20 61 6e 64 20 70 61 74 68 20 73 65 6c 65 63 74 69 | irectly.applied.and.path.selecti |
| a23a0 | 6f 6e 20 69 73 20 75 70 64 61 74 65 64 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 20 28 53 6f 66 74 | on.is.updated.accordingly..(Soft |
| a23c0 | 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 65 6e 61 62 6c 65 64 | .reconfiguration.must.be.enabled |
| a23e0 | 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 29 2e 00 55 70 6c 69 6e 6b 2f 43 6f 72 65 20 | .for.this.to.work)..Uplink/Core. |
| a2400 | 74 72 61 63 6b 69 6e 67 2e 00 55 70 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 | tracking..Upload.bandwidth.limit |
| a2420 | 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 2e 00 55 70 6c 6f 61 64 20 | .in.kbit/s.for.`<user>`..Upload. |
| a2440 | 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 66 6f | bandwidth.limit.in.kbit/s.for.fo |
| a2460 | 72 20 75 73 65 72 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e | r.user.on.interface.`<interface> |
| a2480 | 60 2e 00 55 70 6f 6e 20 72 65 63 65 70 74 69 6f 6e 20 6f 66 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 | `..Upon.reception.of.an.incoming |
| a24a0 | 20 70 61 63 6b 65 74 2c 20 77 68 65 6e 20 61 20 72 65 73 70 6f 6e 73 65 20 69 73 20 73 65 6e 74 | .packet,.when.a.response.is.sent |
| a24c0 | 2c 20 69 74 20 6d 69 67 68 74 20 62 65 20 64 65 73 69 72 65 64 20 74 6f 20 65 6e 73 75 72 65 20 | ,.it.might.be.desired.to.ensure. |
| a24e0 | 74 68 61 74 20 69 74 20 6c 65 61 76 65 73 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 69 6e 74 | that.it.leaves.from.the.same.int |
| a2500 | 65 72 66 61 63 65 20 61 73 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 6f 6e 65 2e 20 54 68 69 73 20 | erface.as.the.inbound.one..This. |
| a2520 | 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 62 79 20 65 6e 61 62 6c 69 6e 67 20 73 74 69 63 | can.be.achieved.by.enabling.stic |
| a2540 | 6b 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e | ky.connections.in.the.load.balan |
| a2560 | 63 69 6e 67 3a 00 55 70 6f 6e 20 73 68 75 74 64 6f 77 6e 2c 20 74 68 69 73 20 6f 70 74 69 6f 6e | cing:.Upon.shutdown,.this.option |
| a2580 | 20 77 69 6c 6c 20 64 65 70 72 65 63 61 74 65 20 74 68 65 20 70 72 65 66 69 78 20 62 79 20 61 6e | .will.deprecate.the.prefix.by.an |
| a25a0 | 6e 6f 75 6e 63 69 6e 67 20 69 74 20 69 6e 20 74 68 65 20 73 68 75 74 64 6f 77 6e 20 52 41 00 55 | nouncing.it.in.the.shutdown.RA.U |
| a25c0 | 73 61 62 6c 65 20 50 6f 72 74 73 20 2f 20 50 6f 72 74 73 20 70 65 72 20 53 75 62 73 63 72 69 62 | sable.Ports./.Ports.per.Subscrib |
| a25e0 | 65 72 00 55 73 61 62 6c 65 20 50 6f 72 74 73 3a 20 36 35 35 33 36 20 2d 20 31 30 32 34 20 3d 20 | er.Usable.Ports:.65536.-.1024.=. |
| a2600 | 36 34 35 31 32 00 55 73 65 20 38 30 32 2e 31 31 61 78 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 | 64512.Use.802.11ax.protocol.Use. |
| a2620 | 38 30 32 2e 31 31 6e 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 3a 61 62 62 72 3a 60 44 48 20 28 | 802.11n.protocol.Use.:abbr:`DH.( |
| a2640 | 44 69 66 66 69 65 e2 80 93 48 65 6c 6c 6d 61 6e 29 60 20 70 61 72 61 6d 65 74 65 72 73 20 66 72 | Diffie...Hellman)`.parameters.fr |
| a2660 | 6f 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 2e 20 4d 75 73 74 20 62 65 20 61 74 20 6c 65 61 | om.PKI.subsystem..Must.be.at.lea |
| a2680 | 73 74 20 32 30 34 38 20 62 69 74 73 20 69 6e 20 6c 65 6e 67 74 68 2e 00 55 73 65 20 43 41 20 63 | st.2048.bits.in.length..Use.CA.c |
| a26a0 | 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 00 55 73 | ertificate.from.PKI.subsystem.Us |
| a26c0 | 65 20 44 79 6e 44 4e 53 20 61 73 20 79 6f 75 72 20 70 72 65 66 65 72 72 65 64 20 70 72 6f 76 69 | e.DynDNS.as.your.preferred.provi |
| a26e0 | 64 65 72 3a 00 55 73 65 20 49 50 20 66 69 72 65 77 61 6c 6c 00 55 73 65 20 54 4c 53 20 62 75 74 | der:.Use.IP.firewall.Use.TLS.but |
| a2700 | 20 73 6b 69 70 20 68 6f 73 74 20 76 61 6c 69 64 61 74 69 6f 6e 00 55 73 65 20 54 4c 53 20 65 6e | .skip.host.validation.Use.TLS.en |
| a2720 | 63 72 79 70 74 69 6f 6e 2e 00 55 73 65 20 60 3c 73 75 62 6e 65 74 3e 60 20 61 73 20 74 68 65 20 | cryption..Use.`<subnet>`.as.the. |
| a2740 | 49 50 20 70 6f 6f 6c 20 66 6f 72 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6e 67 20 63 6c 69 65 6e | IP.pool.for.all.connecting.clien |
| a2760 | 74 73 2e 00 55 73 65 20 60 60 73 68 6f 77 20 6c 6f 67 20 7c 20 73 74 72 69 70 2d 70 72 69 76 61 | ts..Use.``show.log.|.strip-priva |
| a2780 | 74 65 60 60 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 68 69 64 65 20 70 72 69 76 61 74 65 | te``.if.you.want.to.hide.private |
| a27a0 | 20 64 61 74 61 20 77 68 65 6e 20 73 68 61 72 69 6e 67 20 79 6f 75 72 20 6c 6f 67 73 2e 00 55 73 | .data.when.sharing.your.logs..Us |
| a27c0 | 65 20 60 64 65 6c 65 74 65 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 6d 6f 64 75 6c | e.`delete.system.conntrack.modul |
| a27e0 | 65 73 60 20 74 6f 20 64 65 61 63 74 69 76 65 20 61 6c 6c 20 6d 6f 64 75 6c 65 73 2e 00 55 73 65 | es`.to.deactive.all.modules..Use |
| a2800 | 20 61 20 70 65 72 73 69 73 74 65 6e 74 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4e | .a.persistent.LDAP.connection..N |
| a2820 | 6f 72 6d 61 6c 6c 79 20 74 68 65 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6f | ormally.the.LDAP.connection.is.o |
| a2840 | 6e 6c 79 20 6f 70 65 6e 20 77 68 69 6c 65 20 76 61 6c 69 64 61 74 69 6e 67 20 61 20 75 73 65 72 | nly.open.while.validating.a.user |
| a2860 | 6e 61 6d 65 20 74 6f 20 70 72 65 73 65 72 76 65 20 72 65 73 6f 75 72 63 65 73 20 61 74 20 74 68 | name.to.preserve.resources.at.th |
| a2880 | 65 20 4c 44 41 50 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 75 73 65 | e.LDAP.server..This.option.cause |
| a28a0 | 73 20 74 68 65 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 62 65 20 6b 65 70 74 | s.the.LDAP.connection.to.be.kept |
| a28c0 | 20 6f 70 65 6e 2c 20 61 6c 6c 6f 77 69 6e 67 20 69 74 20 74 6f 20 62 65 20 72 65 75 73 65 64 20 | .open,.allowing.it.to.be.reused. |
| a28e0 | 66 6f 72 20 66 75 72 74 68 65 72 20 75 73 65 72 20 76 61 6c 69 64 61 74 69 6f 6e 73 2e 00 55 73 | for.further.user.validations..Us |
| a2900 | 65 20 61 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 | e.a.specific.address-group..Prep |
| a2920 | 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 | end.character.``!``.for.inverted |
| a2940 | 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 | .matching.criteria..Use.a.specif |
| a2960 | 69 63 20 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 | ic.address-group..Prepending.the |
| a2980 | 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 | .character.``!``.to.invert.the.c |
| a29a0 | 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 | riteria.to.match.is.also.support |
| a29c0 | 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2d 67 72 6f 75 70 2e | ed..Use.a.specific.domain-group. |
| a29e0 | 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 | .Prepend.character.``!``.for.inv |
| a2a00 | 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 | erted.matching.criteria..Use.a.s |
| a2a20 | 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 | pecific.domain-group..Prepending |
| a2a40 | 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 | .the.character.``!``.to.invert.t |
| a2a60 | 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 | he.criteria.to.match.is.also.sup |
| a2a80 | 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 79 6e 61 6d 69 63 2d 61 | ported..Use.a.specific.dynamic-a |
| a2aa0 | 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 | ddress-group..Prepend.character. |
| a2ac0 | 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 | ``!``.for.inverted.matching.crit |
| a2ae0 | 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 79 6e 61 6d 69 63 2d 61 64 64 | eria..Use.a.specific.dynamic-add |
| a2b00 | 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 | ress-group..Prepending.the.chara |
| a2b20 | 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 | cter.``!``.to.invert.the.criteri |
| a2b40 | 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 | a.to.match.is.also.supported..Us |
| a2b60 | 65 20 61 20 73 70 65 63 69 66 69 63 20 6d 61 63 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 | e.a.specific.mac-group..Prepend. |
| a2b80 | 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 | character.``!``.for.inverted.mat |
| a2ba0 | 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 6d | ching.criteria..Use.a.specific.m |
| a2bc0 | 61 63 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 | ac-group..Prepending.the.charact |
| a2be0 | 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 | er.``!``.to.invert.the.criteria. |
| a2c00 | 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 | to.match.is.also.supported..Use. |
| a2c20 | 61 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e | a.specific.network-group..Prepen |
| a2c40 | 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d | d.character.``!``.for.inverted.m |
| a2c60 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 | atching.criteria..Use.a.specific |
| a2c80 | 20 6e 65 74 77 6f 72 6b 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 | .network-group..Prepending.the.c |
| a2ca0 | 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 | haracter.``!``.to.invert.the.cri |
| a2cc0 | 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 | teria.to.match.is.also.supported |
| a2ce0 | 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 2d 67 72 6f 75 70 2e 20 50 72 65 | ..Use.a.specific.port-group..Pre |
| a2d00 | 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 | pend.character.``!``.for.inverte |
| a2d20 | 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 | d.matching.criteria..Use.a.speci |
| a2d40 | 66 69 63 20 70 6f 72 74 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 | fic.port-group..Prepending.the.c |
| a2d60 | 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 | haracter.``!``.to.invert.the.cri |
| a2d80 | 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 | teria.to.match.is.also.supported |
| a2da0 | 2e 00 55 73 65 20 61 63 74 69 76 65 2d 61 63 74 69 76 65 20 48 41 20 6d 6f 64 65 2e 00 55 73 65 | ..Use.active-active.HA.mode..Use |
| a2dc0 | 20 61 64 64 72 65 73 73 20 60 6d 61 73 71 75 65 72 61 64 65 60 20 28 74 68 65 20 69 6e 74 65 72 | .address.`masquerade`.(the.inter |
| a2de0 | 66 61 63 65 73 20 70 72 69 6d 61 72 79 20 61 64 64 72 65 73 73 29 20 6f 6e 20 72 75 6c 65 20 33 | faces.primary.address).on.rule.3 |
| a2e00 | 30 00 55 73 65 20 61 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 67 65 6e 65 72 61 74 65 64 | 0.Use.an.automatically.generated |
| a2e20 | 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 00 55 73 65 20 61 6e 79 | .self-signed.certificate.Use.any |
| a2e40 | 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 2c 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e | .local.address,.configured.on.an |
| a2e60 | 79 20 69 6e 74 65 72 66 61 63 65 20 69 66 20 74 68 69 73 20 69 73 20 6e 6f 74 20 73 65 74 2e 00 | y.interface.if.this.is.not.set.. |
| a2e80 | 55 73 65 20 61 75 74 68 20 6b 65 79 20 66 69 6c 65 20 61 74 20 60 60 2f 63 6f 6e 66 69 67 2f 61 | Use.auth.key.file.at.``/config/a |
| a2ea0 | 75 74 68 2f 6d 79 2e 6b 65 79 60 60 00 55 73 65 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f | uth/my.key``.Use.certificate.fro |
| a2ec0 | 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 00 55 73 65 20 63 6f 6e 66 69 67 75 72 65 64 20 60 | m.PKI.subsystem.Use.configured.` |
| a2ee0 | 3c 75 72 6c 3e 60 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 79 6f 75 72 20 49 50 20 61 64 64 72 | <url>`.to.determine.your.IP.addr |
| a2f00 | 65 73 73 2e 20 64 64 63 6c 69 65 6e 74 5f 20 77 69 6c 6c 20 6c 6f 61 64 20 60 3c 75 72 6c 3e 60 | ess..ddclient_.will.load.`<url>` |
| a2f20 | 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 65 78 74 72 61 63 74 20 79 6f 75 72 20 49 50 20 61 64 | .and.tries.to.extract.your.IP.ad |
| a2f40 | 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 72 65 73 70 6f 6e 73 65 2e 00 55 73 65 20 64 65 53 | dress.from.the.response..Use.deS |
| a2f60 | 45 43 20 28 64 65 64 79 6e 2e 69 6f 29 20 61 73 20 79 6f 75 72 20 70 72 65 66 65 72 72 65 64 20 | EC.(dedyn.io).as.your.preferred. |
| a2f80 | 70 72 6f 76 69 64 65 72 3a 00 55 73 65 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 74 6f 20 6d | provider:.Use.inverse-match.to.m |
| a2fa0 | 61 74 63 68 20 61 6e 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 67 69 76 65 6e 20 63 | atch.anything.except.the.given.c |
| a2fc0 | 6f 75 6e 74 72 79 2d 63 6f 64 65 73 2e 00 55 73 65 20 6c 6f 63 61 6c 20 73 6f 63 6b 65 74 20 66 | ountry-codes..Use.local.socket.f |
| a2fe0 | 6f 72 20 41 50 49 00 55 73 65 20 6c 6f 63 61 6c 20 75 73 65 72 20 60 66 6f 6f 60 20 77 69 74 68 | or.API.Use.local.user.`foo`.with |
| a3000 | 20 70 61 73 73 77 6f 72 64 20 60 62 61 72 60 00 55 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 | .password.`bar`.Use.tab.completi |
| a3020 | 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 6f 66 20 63 61 74 65 67 6f 72 69 65 73 2e 00 | on.to.get.a.list.of.categories.. |
| a3040 | 55 73 65 20 74 68 65 20 51 52 20 63 6f 64 65 20 74 6f 20 61 64 64 20 74 68 65 20 75 73 65 72 20 | Use.the.QR.code.to.add.the.user. |
| a3060 | 61 63 63 6f 75 6e 74 20 69 6e 20 47 6f 6f 67 6c 65 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 | account.in.Google.authenticator. |
| a3080 | 61 70 70 6c 69 63 61 74 69 6f 6e 20 61 6e 64 20 6f 6e 20 63 6c 69 65 6e 74 20 73 69 64 65 2c 20 | application.and.on.client.side,. |
| a30a0 | 75 73 65 20 74 68 65 20 4f 54 50 20 6e 75 6d 62 65 72 20 61 73 20 70 61 73 73 77 6f 72 64 2e 00 | use.the.OTP.number.as.password.. |
| a30c0 | 55 73 65 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 | Use.the.address.of.the.specified |
| a30e0 | 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 20 | .interface.on.the.local.machine. |
| a3100 | 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e | as.the.source.address.of.the.con |
| a3120 | 6e 65 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c | nection..Use.the.following.topol |
| a3140 | 6f 67 79 20 74 6f 20 62 75 69 6c 64 20 61 20 6e 61 74 36 36 20 62 61 73 65 64 20 69 73 6f 6c 61 | ogy.to.build.a.nat66.based.isola |
| a3160 | 74 65 64 20 6e 65 74 77 6f 72 6b 20 62 65 74 77 65 65 6e 20 69 6e 74 65 72 6e 61 6c 20 61 6e 64 | ted.network.between.internal.and |
| a3180 | 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 73 20 28 64 79 6e 61 6d 69 63 20 70 72 65 66 | .external.networks.(dynamic.pref |
| a31a0 | 69 78 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 29 3a 00 55 73 65 20 74 68 65 20 66 6f | ix.is.not.supported):.Use.the.fo |
| a31c0 | 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 69 6e | llowing.topology.to.translate.in |
| a31e0 | 74 65 72 6e 61 6c 20 75 73 65 72 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 73 20 28 60 60 66 | ternal.user.local.addresses.(``f |
| a3200 | 63 3a 3a 2f 37 60 60 29 20 74 6f 20 44 48 43 50 76 36 2d 50 44 20 70 72 6f 76 69 64 65 64 20 70 | c::/7``).to.DHCPv6-PD.provided.p |
| a3220 | 72 65 66 69 78 65 73 20 66 72 6f 6d 20 61 6e 20 49 53 50 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f | refixes.from.an.ISP.connected.to |
| a3240 | 20 61 20 56 79 4f 53 20 48 41 20 70 61 69 72 2e 00 55 73 65 20 74 68 65 20 73 70 65 63 69 66 69 | .a.VyOS.HA.pair..Use.the.specifi |
| a3260 | 65 64 20 61 64 64 72 65 73 73 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 20 | ed.address.on.the.local.machine. |
| a3280 | 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6f 6e | as.the.source.address.of.the.con |
| a32a0 | 6e 65 63 74 69 6f 6e 2e 20 4f 6e 6c 79 20 75 73 65 66 75 6c 20 6f 6e 20 73 79 73 74 65 6d 73 20 | nection..Only.useful.on.systems. |
| a32c0 | 77 69 74 68 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 61 64 64 72 65 73 73 2e 00 55 73 65 20 | with.more.than.one.address..Use. |
| a32e0 | 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 | these.commands.if.you.would.like |
| a3300 | 20 74 6f 20 73 65 74 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 61 6e 64 20 | .to.set.the.discovery.hello.and. |
| a3320 | 68 6f 6c 64 20 74 69 6d 65 20 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 74 68 65 20 74 61 72 | hold.time.parameters.for.the.tar |
| a3340 | 67 65 74 65 64 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 | geted.LDP.neighbors..Use.these.c |
| a3360 | 6f 6d 6d 61 6e 64 73 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 | ommands.if.you.would.like.to.set |
| a3380 | 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 61 6e 64 20 68 6f 6c 64 20 74 69 | .the.discovery.hello.and.hold.ti |
| a33a0 | 6d 65 20 70 61 72 61 6d 65 74 65 72 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 | me.parameters..Use.these.command |
| a33c0 | 73 20 74 6f 20 61 6c 73 6f 20 75 73 65 20 49 50 76 34 2c 20 6f 72 20 49 50 76 36 20 66 69 72 65 | s.to.also.use.IPv4,.or.IPv6.fire |
| a33e0 | 77 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 61 66 66 69 63 00 55 | wall.rules.for.bridged.traffic.U |
| a3400 | 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 | se.these.commands.to.control.the |
| a3420 | 20 65 78 70 6f 72 74 69 6e 67 20 6f 66 20 66 6f 72 77 61 72 64 69 6e 67 20 65 71 75 69 76 61 6c | .exporting.of.forwarding.equival |
| a3440 | 65 6e 63 65 20 63 6c 61 73 73 65 73 20 28 46 45 43 73 29 20 66 6f 72 20 4c 44 50 20 74 6f 20 6e | ence.classes.(FECs).for.LDP.to.n |
| a3460 | 65 69 67 68 62 6f 72 73 2e 20 54 68 69 73 20 77 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 | eighbors..This.would.be.useful.f |
| a3480 | 6f 72 20 65 78 61 6d 70 6c 65 20 6f 6e 20 6f 6e 6c 79 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 74 68 | or.example.on.only.announcing.th |
| a34a0 | 65 20 6c 61 62 65 6c 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 6e 65 65 64 65 64 | e.labeled.routes.that.are.needed |
| a34c0 | 20 61 6e 64 20 6e 6f 74 20 6f 6e 65 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 6e 65 65 64 65 | .and.not.ones.that.are.not.neede |
| a34e0 | 64 2c 20 73 75 63 68 20 61 73 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 69 | d,.such.as.announcing.loopback.i |
| a3500 | 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 6e 6f 20 6f 74 68 65 72 73 2e 00 55 73 65 20 74 68 65 | nterfaces.and.no.others..Use.the |
| a3520 | 73 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 69 6d 70 6f 72 | se.commands.to.control.the.impor |
| a3540 | 74 69 6e 67 20 6f 66 20 66 6f 72 77 61 72 64 69 6e 67 20 65 71 75 69 76 61 6c 65 6e 63 65 20 63 | ting.of.forwarding.equivalence.c |
| a3560 | 6c 61 73 73 65 73 20 28 46 45 43 73 29 20 66 6f 72 20 4c 44 50 20 66 72 6f 6d 20 6e 65 69 67 68 | lasses.(FECs).for.LDP.from.neigh |
| a3580 | 62 6f 72 73 2e 20 54 68 69 73 20 77 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 66 6f 72 20 65 | bors..This.would.be.useful.for.e |
| a35a0 | 78 61 6d 70 6c 65 20 6f 6e 20 6f 6e 6c 79 20 61 63 63 65 70 74 69 6e 67 20 74 68 65 20 6c 61 62 | xample.on.only.accepting.the.lab |
| a35c0 | 65 6c 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 6e 65 65 64 65 64 20 61 6e 64 20 | eled.routes.that.are.needed.and. |
| a35e0 | 6e 6f 74 20 6f 6e 65 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 6e 65 65 64 65 64 2c 20 73 75 | not.ones.that.are.not.needed,.su |
| a3600 | 63 68 20 61 73 20 61 63 63 65 70 74 69 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 | ch.as.accepting.loopback.interfa |
| a3620 | 63 65 73 20 61 6e 64 20 72 65 6a 65 63 74 69 6e 67 20 61 6c 6c 20 6f 74 68 65 72 73 2e 00 55 73 | ces.and.rejecting.all.others..Us |
| a3640 | 65 20 74 68 69 73 20 50 49 4d 20 63 6f 6d 6d 61 6e 64 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 | e.this.PIM.command.in.the.select |
| a3660 | 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 73 65 74 20 74 68 65 20 70 72 69 6f 72 69 74 79 | ed.interface.to.set.the.priority |
| a3680 | 20 28 31 2d 34 32 39 34 39 36 37 32 39 35 29 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 69 6e 66 6c | .(1-4294967295).you.want.to.infl |
| a36a0 | 75 65 6e 63 65 20 69 6e 20 74 68 65 20 65 6c 65 63 74 69 6f 6e 20 6f 66 20 61 20 6e 6f 64 65 20 | uence.in.the.election.of.a.node. |
| a36c0 | 74 6f 20 62 65 63 6f 6d 65 20 74 68 65 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 20 | to.become.the.Designated.Router. |
| a36e0 | 66 6f 72 20 61 20 4c 41 4e 20 73 65 67 6d 65 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 | for.a.LAN.segment..The.default.p |
| a3700 | 72 69 6f 72 69 74 79 20 69 73 20 31 2c 20 73 65 74 20 61 20 20 68 69 67 68 65 72 20 76 61 6c 75 | riority.is.1,.set.a..higher.valu |
| a3720 | 65 20 74 6f 20 67 69 76 65 20 74 68 65 20 72 6f 75 74 65 72 20 6d 6f 72 65 20 70 72 65 66 65 72 | e.to.give.the.router.more.prefer |
| a3740 | 65 6e 63 65 20 69 6e 20 74 68 65 20 44 52 20 65 6c 65 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 2e | ence.in.the.DR.election.process. |
| a3760 | 00 55 73 65 20 74 68 69 73 20 50 49 4d 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6d 6f 64 69 66 79 20 | .Use.this.PIM.command.to.modify. |
| a3780 | 74 68 65 20 74 69 6d 65 20 6f 75 74 20 76 61 6c 75 65 20 28 33 31 2d 36 30 30 30 30 20 73 65 63 | the.time.out.value.(31-60000.sec |
| a37a0 | 6f 6e 64 73 29 20 66 6f 72 20 61 6e 20 60 28 53 2c 47 29 20 3c 68 74 74 70 73 3a 2f 2f 74 6f 6f | onds).for.an.`(S,G).<https://too |
| a37c0 | 6c 73 2e 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 37 37 36 31 23 73 65 63 74 69 6f 6e | ls.ietf.org/html/rfc7761#section |
| a37e0 | 2d 34 2e 31 3e 60 5f 20 66 6c 6f 77 2e 20 33 31 20 73 65 63 6f 6e 64 73 20 69 73 20 63 68 6f 73 | -4.1>`_.flow..31.seconds.is.chos |
| a3800 | 65 6e 20 66 6f 72 20 61 20 6c 6f 77 65 72 20 62 6f 75 6e 64 20 61 73 20 73 6f 6d 65 20 68 61 72 | en.for.a.lower.bound.as.some.har |
| a3820 | 64 77 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f 74 20 73 65 65 20 64 61 74 61 20 | dware.platforms.cannot.see.data. |
| a3840 | 66 6c 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 6e 20 33 30 20 73 65 63 6f 6e 64 | flowing.in.better.than.30.second |
| a3860 | 73 20 63 68 75 6e 6b 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 | s.chunks..Use.this.comand.to.set |
| a3880 | 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 | .the.IPv6.address.pool.from.whic |
| a38a0 | 68 20 61 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 | h.a.PPPoE.client.will.get.an.IPv |
| a38c0 | 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 | 6.prefix.of.your.defined.length. |
| a38e0 | 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e | (mask).to.terminate.the.PPPoE.en |
| a3900 | 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c | dpoint.at.their.side..The.mask.l |
| a3920 | 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 | ength.can.be.set.from.48.to.128. |
| a3940 | 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 | bit.long,.the.default.value.is.6 |
| a3960 | 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 | 4..Use.this.comand.to.set.the.IP |
| a3980 | 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 49 50 | v6.address.pool.from.which.an.IP |
| a39a0 | 6f 45 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 | oE.client.will.get.an.IPv6.prefi |
| a39c0 | 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 | x.of.your.defined.length.(mask). |
| a39e0 | 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 49 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 61 | to.terminate.the.IPoE.endpoint.a |
| a3a00 | 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 | t.their.side..The.mask.length.ca |
| a3a20 | 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 | n.be.set.from.48.to.128.bit.long |
| a3a40 | 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 | ,.the.default.value.is.64..Use.t |
| a3a60 | 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 | his.comand.to.set.the.IPv6.addre |
| a3a80 | 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 50 50 50 6f 45 20 63 6c 69 65 | ss.pool.from.which.an.PPPoE.clie |
| a3aa0 | 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f | nt.will.get.an.IPv6.prefix.of.yo |
| a3ac0 | 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d | ur.defined.length.(mask).to.term |
| a3ae0 | 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 | inate.the.PPPoE.endpoint.at.thei |
| a3b00 | 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 | r.side..The.mask.length.can.be.s |
| a3b20 | 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 | et.from.48.to.128.bit.long,.the. |
| a3b40 | 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f | default.value.is.64..Use.this.co |
| a3b60 | 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f | mand.to.set.the.IPv6.address.poo |
| a3b80 | 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 50 50 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c | l.from.which.an.PPTP.client.will |
| a3ba0 | 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 | .get.an.IPv6.prefix.of.your.defi |
| a3bc0 | 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 | ned.length.(mask).to.terminate.t |
| a3be0 | 68 65 20 50 50 54 50 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 | he.PPTP.endpoint.at.their.side.. |
| a3c00 | 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 | The.mask.length.can.be.set.from. |
| a3c20 | 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 | 48.to.128.bit.long,.the.default. |
| a3c40 | 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 | value.is.64..Use.this.comand.to. |
| a3c60 | 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 | set.the.IPv6.address.pool.from.w |
| a3c80 | 68 69 63 68 20 61 6e 20 53 53 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 | hich.an.SSTP.client.will.get.an. |
| a3ca0 | 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 | IPv6.prefix.of.your.defined.leng |
| a3cc0 | 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 53 53 54 50 20 | th.(mask).to.terminate.the.SSTP. |
| a3ce0 | 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b | endpoint.at.their.side..The.mask |
| a3d00 | 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 62 65 74 77 65 65 6e 20 34 38 20 61 6e | .length.can.be.set.between.48.an |
| a3d20 | 64 20 31 32 38 20 62 69 74 73 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | d.128.bits.long,.the.default.val |
| a3d40 | 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 | ue.is.64..Use.this.comand.to.set |
| a3d60 | 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 | .the.IPv6.address.pool.from.whic |
| a3d80 | 68 20 61 6e 20 53 53 54 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 | h.an.SSTP.client.will.get.an.IPv |
| a3da0 | 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 | 6.prefix.of.your.defined.length. |
| a3dc0 | 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 53 53 54 50 20 65 6e 64 | (mask).to.terminate.the.SSTP.end |
| a3de0 | 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 | point.at.their.side..The.mask.le |
| a3e00 | 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 | ngth.can.be.set.from.48.to.128.b |
| a3e20 | 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 | it.long,.the.default.value.is.64 |
| a3e40 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 | ..Use.this.comand.to.set.the.IPv |
| a3e60 | 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 6c 32 74 | 6.address.pool.from.which.an.l2t |
| a3e80 | 70 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 | p.client.will.get.an.IPv6.prefix |
| a3ea0 | 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 | .of.your.defined.length.(mask).t |
| a3ec0 | 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 6c 32 74 70 20 65 6e 64 70 6f 69 6e 74 20 61 74 | o.terminate.the.l2tp.endpoint.at |
| a3ee0 | 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e | .their.side..The.mask.length.can |
| a3f00 | 20 62 65 20 73 65 74 20 62 65 74 77 65 65 6e 20 34 38 20 61 6e 64 20 31 32 38 20 62 69 74 73 20 | .be.set.between.48.and.128.bits. |
| a3f20 | 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 | long,.the.default.value.is.64..U |
| a3f40 | 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 | se.this.comand.to.set.the.IPv6.a |
| a3f60 | 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 6c 32 74 70 20 63 | ddress.pool.from.which.an.l2tp.c |
| a3f80 | 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 | lient.will.get.an.IPv6.prefix.of |
| a3fa0 | 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 | .your.defined.length.(mask).to.t |
| a3fc0 | 65 72 6d 69 6e 61 74 65 20 74 68 65 20 6c 32 74 70 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 | erminate.the.l2tp.endpoint.at.th |
| a3fe0 | 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 | eir.side..The.mask.length.can.be |
| a4000 | 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 | .set.from.48.to.128.bit.long,.th |
| a4020 | 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 | e.default.value.is.64..Use.this. |
| a4040 | 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 70 6f 6f 6c 20 6f 66 20 63 6c 69 65 6e 74 | command.for.every.pool.of.client |
| a4060 | 20 49 50 20 61 64 64 72 65 73 73 65 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 65 66 69 6e 65 | .IP.addresses.you.want.to.define |
| a4080 | 2e 20 54 68 65 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 74 68 69 73 20 70 6f 6f 6c 20 77 69 6c | ..The.addresses.of.this.pool.wil |
| a40a0 | 6c 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 | l.be.given.to.PPPoE.clients..You |
| a40c0 | 20 6d 75 73 74 20 75 73 65 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 20 61 6e 64 20 69 74 20 6d | .must.use.CIDR.notation.and.it.m |
| a40e0 | 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 00 55 73 65 20 | ust.be.within.a./24.subnet..Use. |
| a4100 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 70 6f 6f 6c 20 6f 66 20 63 | this.command.for.every.pool.of.c |
| a4120 | 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 | lient.IP.addresses.you.want.to.d |
| a4140 | 65 66 69 6e 65 2e 20 54 68 65 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 74 68 69 73 20 70 6f 6f | efine..The.addresses.of.this.poo |
| a4160 | 6c 20 77 69 6c 6c 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 | l.will.be.given.to.PPPoE.clients |
| a4180 | 2e 20 59 6f 75 20 6d 75 73 74 20 75 73 65 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2e 00 55 73 | ..You.must.use.CIDR.notation..Us |
| a41a0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 | e.this.command.if.you.would.like |
| a41c0 | 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 46 45 43 | .for.the.router.to.advertise.FEC |
| a41e0 | 73 20 77 69 74 68 20 61 20 6c 61 62 65 6c 20 6f 66 20 30 20 66 6f 72 20 65 78 70 6c 69 63 69 74 | s.with.a.label.of.0.for.explicit |
| a4200 | 20 6e 75 6c 6c 20 6f 70 65 72 61 74 69 6f 6e 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | .null.operations..Use.this.comma |
| a4220 | 6e 64 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 | nd.if.you.would.like.to.control. |
| a4240 | 74 68 65 20 6c 6f 63 61 6c 20 46 45 43 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 20 66 6f 72 20 4c 44 | the.local.FEC.allocations.for.LD |
| a4260 | 50 2e 20 41 20 67 6f 6f 64 20 65 78 61 6d 70 6c 65 20 77 6f 75 6c 64 20 62 65 20 66 6f 72 20 79 | P..A.good.example.would.be.for.y |
| a4280 | 6f 75 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 6e 6f 74 20 61 6c 6c 6f 63 61 74 65 | our.local.router.to.not.allocate |
| a42a0 | 20 61 20 6c 61 62 65 6c 20 66 6f 72 20 65 76 65 72 79 74 68 69 6e 67 2e 20 4a 75 73 74 20 61 20 | .a.label.for.everything..Just.a. |
| a42c0 | 6c 61 62 65 6c 20 66 6f 72 20 77 68 61 74 20 69 74 27 73 20 75 73 65 66 75 6c 2e 20 41 20 67 6f | label.for.what.it's.useful..A.go |
| a42e0 | 6f 64 20 65 78 61 6d 70 6c 65 20 77 6f 75 6c 64 20 62 65 20 6a 75 73 74 20 61 20 6c 6f 6f 70 62 | od.example.would.be.just.a.loopb |
| a4300 | 61 63 6b 20 6c 61 62 65 6c 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 | ack.label..Use.this.command.if.y |
| a4320 | 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 20 74 68 65 20 54 43 50 20 73 65 73 | ou.would.like.to.set.the.TCP.ses |
| a4340 | 73 69 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 73 2e 00 55 73 65 20 74 68 | sion.hold.time.intervals..Use.th |
| a4360 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 6c 65 63 74 65 64 | is.command.to.allow.the.selected |
| a4380 | 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 6d 75 6c 74 69 63 61 73 74 20 67 | .interface.to.join.a.multicast.g |
| a43a0 | 72 6f 75 70 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 61 64 64 72 | roup.defining.the.multicast.addr |
| a43c0 | 65 73 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 6a 6f 69 6e 20 61 6e 64 20 74 68 65 20 73 6f 75 | ess.you.want.to.join.and.the.sou |
| a43e0 | 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 6f 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | rce.IP.address.too..Use.this.com |
| a4400 | 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 | mand.to.allow.the.selected.inter |
| a4420 | 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 2e 00 | face.to.join.a.multicast.group.. |
| a4440 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 | Use.this.command.to.allow.the.se |
| a4460 | 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 73 6f 75 72 63 | lected.interface.to.join.a.sourc |
| a4480 | 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 2e 00 55 73 65 20 | e-specific.multicast.group..Use. |
| a44a0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 6c 6f 67 20 6d 65 73 73 61 67 | this.command.to.check.log.messag |
| a44c0 | 65 73 20 73 70 65 63 69 66 69 63 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 | es.specific.to.an.interface..Use |
| a44e0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 6c 6f 67 20 6d 65 73 73 61 | .this.command.to.check.log.messa |
| a4500 | 67 65 73 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 20 65 6e 74 72 69 65 73 20 66 6f 72 20 73 75 | ges.which.include.entries.for.su |
| a4520 | 63 63 65 73 73 66 75 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 73 20 77 65 6c 6c 20 61 73 20 | ccessful.connections.as.well.as. |
| a4540 | 66 61 69 6c 75 72 65 73 20 61 6e 64 20 65 72 72 6f 72 73 20 72 65 6c 61 74 65 64 20 74 6f 20 61 | failures.and.errors.related.to.a |
| a4560 | 6c 6c 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 | ll.OpenVPN.interfaces..Use.this. |
| a4580 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 74 75 6e 6e 65 6c 20 73 74 61 74 | command.to.check.the.tunnel.stat |
| a45a0 | 75 73 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 | us.for.OpenVPN.client.interfaces |
| a45c0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 | ..Use.this.command.to.check.the. |
| a45e0 | 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 | tunnel.status.for.OpenVPN.server |
| a4600 | 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | .interfaces..Use.this.command.to |
| a4620 | 20 63 68 65 63 6b 20 74 68 65 20 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 20 66 6f 72 20 4f 70 65 | .check.the.tunnel.status.for.Ope |
| a4640 | 6e 56 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 | nVPN.site-to-site.interfaces..Us |
| a4660 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6c 65 61 72 20 42 6f 72 64 65 72 20 47 | e.this.command.to.clear.Border.G |
| a4680 | 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 73 74 61 74 69 73 74 69 63 73 20 6f 72 20 73 74 | ateway.Protocol.statistics.or.st |
| a46a0 | 61 74 75 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | atus..Use.this.command.to.config |
| a46c0 | 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 | ure.DHCPv6.Prefix.Delegation.(RF |
| a46e0 | 43 33 36 33 33 29 20 6f 6e 20 49 50 6f 45 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f | C3633).on.IPoE..You.will.have.to |
| a4700 | 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 | .set.your.IPv6.pool.and.the.leng |
| a4720 | 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f | th.of.the.delegation.prefix..Fro |
| a4740 | 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c | m.the.defined.IPv6.pool.you.will |
| a4760 | 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 | .be.handing.out.networks.of.the. |
| a4780 | 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 | defined.length.(delegation-prefi |
| a47a0 | 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e | x)..The.length.of.the.delegation |
| a47c0 | 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 | .prefix.can.be.set.from.32.to.64 |
| a47e0 | 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | .bit.long..Use.this.command.to.c |
| a4800 | 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f | onfigure.DHCPv6.Prefix.Delegatio |
| a4820 | 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 50 50 50 6f 45 2e 20 59 6f 75 20 77 69 6c 6c 20 68 | n.(RFC3633).on.PPPoE..You.will.h |
| a4840 | 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 | ave.to.set.your.IPv6.pool.and.th |
| a4860 | 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 | e.length.of.the.delegation.prefi |
| a4880 | 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f | x..From.the.defined.IPv6.pool.yo |
| a48a0 | 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f | u.will.be.handing.out.networks.o |
| a48c0 | 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e | f.the.defined.length.(delegation |
| a48e0 | 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 | -prefix)..The.length.of.the.dele |
| a4900 | 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 | gation.prefix.can.be.set.from.32 |
| a4920 | 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | .to.64.bit.long..Use.this.comman |
| a4940 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c | d.to.configure.DHCPv6.Prefix.Del |
| a4960 | 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 50 50 54 50 2e 20 59 6f 75 20 77 | egation.(RFC3633).on.PPTP..You.w |
| a4980 | 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 | ill.have.to.set.your.IPv6.pool.a |
| a49a0 | 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 | nd.the.length.of.the.delegation. |
| a49c0 | 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f | prefix..From.the.defined.IPv6.po |
| a49e0 | 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f | ol.you.will.be.handing.out.netwo |
| a4a00 | 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 | rks.of.the.defined.length.(deleg |
| a4a20 | 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 | ation-prefix)..The.length.of.the |
| a4a40 | 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 | .delegation.prefix.can.be.set.fr |
| a4a60 | 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 | om.32.to.64.bit.long..Use.this.c |
| a4a80 | 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 | ommand.to.configure.DHCPv6.Prefi |
| a4aa0 | 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 53 53 54 50 2e 20 | x.Delegation.(RFC3633).on.SSTP.. |
| a4ac0 | 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 | You.will.have.to.set.your.IPv6.p |
| a4ae0 | 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 | ool.and.the.length.of.the.delega |
| a4b00 | 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 | tion.prefix..From.the.defined.IP |
| a4b20 | 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 | v6.pool.you.will.be.handing.out. |
| a4b40 | 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 | networks.of.the.defined.length.( |
| a4b60 | 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f | delegation-prefix)..The.length.o |
| a4b80 | 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 | f.the.delegation.prefix.can.be.s |
| a4ba0 | 65 74 20 62 65 74 77 65 65 6e 20 33 32 20 61 6e 64 20 36 34 20 62 69 74 73 20 6c 6f 6e 67 2e 00 | et.between.32.and.64.bits.long.. |
| a4bc0 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 | Use.this.command.to.configure.DH |
| a4be0 | 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 | CPv6.Prefix.Delegation.(RFC3633) |
| a4c00 | 20 6f 6e 20 53 53 54 50 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 | .on.SSTP..You.will.have.to.set.y |
| a4c20 | 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 | our.IPv6.pool.and.the.length.of. |
| a4c40 | 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 | the.delegation.prefix..From.the. |
| a4c60 | 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 | defined.IPv6.pool.you.will.be.ha |
| a4c80 | 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 | nding.out.networks.of.the.define |
| a4ca0 | 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 | d.length.(delegation-prefix)..Th |
| a4cc0 | 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 | e.length.of.the.delegation.prefi |
| a4ce0 | 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c | x.can.be.set.from.32.to.64.bit.l |
| a4d00 | 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 | ong..Use.this.command.to.configu |
| a4d20 | 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 | re.DHCPv6.Prefix.Delegation.(RFC |
| a4d40 | 33 36 33 33 29 20 6f 6e 20 6c 32 74 70 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 | 3633).on.l2tp..You.will.have.to. |
| a4d60 | 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 | set.your.IPv6.pool.and.the.lengt |
| a4d80 | 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d | h.of.the.delegation.prefix..From |
| a4da0 | 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 | .the.defined.IPv6.pool.you.will. |
| a4dc0 | 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 | be.handing.out.networks.of.the.d |
| a4de0 | 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 | efined.length.(delegation-prefix |
| a4e00 | 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 | )..The.length.of.the.delegation. |
| a4e20 | 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 62 65 74 77 65 65 6e 20 33 32 20 61 6e 64 20 36 34 20 | prefix.can.be.between.32.and.64. |
| a4e40 | 62 69 74 73 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | bits.long..Use.this.command.to.c |
| a4e60 | 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f | onfigure.DHCPv6.Prefix.Delegatio |
| a4e80 | 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 6c 32 74 70 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 | n.(RFC3633).on.l2tp..You.will.ha |
| a4ea0 | 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 | ve.to.set.your.IPv6.pool.and.the |
| a4ec0 | 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 | .length.of.the.delegation.prefix |
| a4ee0 | 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 | ..From.the.defined.IPv6.pool.you |
| a4f00 | 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 | .will.be.handing.out.networks.of |
| a4f20 | 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d | .the.defined.length.(delegation- |
| a4f40 | 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 | prefix)..The.length.of.the.deleg |
| a4f60 | 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 | ation.prefix.can.be.set.from.32. |
| a4f80 | 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | to.64.bit.long..Use.this.command |
| a4fa0 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 | .to.configure.DHCPv6.Prefix.Dele |
| a4fc0 | 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 | gation.(RFC3633)..You.will.have. |
| a4fe0 | 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 | to.set.your.IPv6.pool.and.the.le |
| a5000 | 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 | ngth.of.the.delegation.prefix..F |
| a5020 | 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 | rom.the.defined.IPv6.pool.you.wi |
| a5040 | 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 | ll.be.handing.out.networks.of.th |
| a5060 | 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 | e.defined.length.(delegation-pre |
| a5080 | 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 | fix)..The.length.of.the.delegati |
| a50a0 | 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 | on.prefix.can.be.set.from.32.to. |
| a50c0 | 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | 64.bit.long..Use.this.command.to |
| a50e0 | 20 63 6f 6e 66 69 67 75 72 65 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e | .configure.Dynamic.Authorization |
| a5100 | 20 45 78 74 65 6e 73 69 6f 6e 73 20 74 6f 20 52 41 44 49 55 53 20 73 6f 20 74 68 61 74 20 79 6f | .Extensions.to.RADIUS.so.that.yo |
| a5120 | 75 20 63 61 6e 20 72 65 6d 6f 74 65 6c 79 20 64 69 73 63 6f 6e 6e 65 63 74 20 73 65 73 73 69 6f | u.can.remotely.disconnect.sessio |
| a5140 | 6e 73 20 61 6e 64 20 63 68 61 6e 67 65 20 73 6f 6d 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f | ns.and.change.some.authenticatio |
| a5160 | 6e 20 70 61 72 61 6d 65 74 65 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | n.parameters..Use.this.command.t |
| a5180 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 22 62 6c 61 63 6b 2d 68 6f 6c 65 22 20 72 6f 75 74 65 | o.configure.a."black-hole".route |
| a51a0 | 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2e 20 41 20 62 6c 61 63 6b 2d 68 6f 6c 65 20 72 6f 75 | .on.the.router..A.black-hole.rou |
| a51c0 | 74 65 20 69 73 20 61 20 72 6f 75 74 65 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 73 79 73 74 | te.is.a.route.for.which.the.syst |
| a51e0 | 65 6d 20 73 69 6c 65 6e 74 6c 79 20 64 69 73 63 61 72 64 20 70 61 63 6b 65 74 73 20 74 68 61 74 | em.silently.discard.packets.that |
| a5200 | 20 61 72 65 20 6d 61 74 63 68 65 64 2e 20 54 68 69 73 20 70 72 65 76 65 6e 74 73 20 6e 65 74 77 | .are.matched..This.prevents.netw |
| a5220 | 6f 72 6b 73 20 6c 65 61 6b 69 6e 67 20 6f 75 74 20 70 75 62 6c 69 63 20 69 6e 74 65 72 66 61 63 | orks.leaking.out.public.interfac |
| a5240 | 65 73 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 70 72 65 76 65 6e 74 20 74 68 65 6d | es,.but.it.does.not.prevent.them |
| a5260 | 20 66 72 6f 6d 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 61 20 6d 6f 72 65 20 73 70 65 63 69 | .from.being.used.as.a.more.speci |
| a5280 | 66 69 63 20 72 6f 75 74 65 20 69 6e 73 69 64 65 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 2e 00 55 | fic.route.inside.your.network..U |
| a52a0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 4e | se.this.command.to.configure.a.N |
| a52c0 | 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 20 64 65 66 69 6e 69 6e 67 20 | etwork.Emulator.policy.defining. |
| a52e0 | 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 66 69 78 65 64 20 61 6d 6f 75 6e 74 20 6f 66 | its.name.and.the.fixed.amount.of |
| a5300 | 20 74 69 6d 65 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 64 64 20 74 6f 20 61 6c 6c 20 70 61 63 | .time.you.want.to.add.to.all.pac |
| a5320 | 6b 65 74 20 67 6f 69 6e 67 20 6f 75 74 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 | ket.going.out.of.the.interface.. |
| a5340 | 54 68 65 20 6c 61 74 65 6e 63 79 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 20 74 68 72 6f 75 67 | The.latency.will.be.added.throug |
| a5360 | 68 20 74 68 65 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 20 71 64 69 73 63 2e | h.the.Token.Bucket.Filter.qdisc. |
| a5380 | 20 49 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 74 61 6b 65 20 65 66 66 65 63 74 20 69 66 20 79 6f 75 | .It.will.only.take.effect.if.you |
| a53a0 | 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 74 73 20 62 61 6e 64 77 69 64 74 68 20 74 | .have.configured.its.bandwidth.t |
| a53c0 | 6f 6f 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 73 65 63 73 2c 20 6d 73 20 61 6e 64 20 75 73 2e | oo..You.can.use.secs,.ms.and.us. |
| a53e0 | 20 44 65 66 61 75 6c 74 3a 20 35 30 6d 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | .Default:.50ms..Use.this.command |
| a5400 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 70 | .to.configure.a.Priority.Queue.p |
| a5420 | 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 | olicy,.set.its.name,.set.a.class |
| a5440 | 20 77 69 74 68 20 61 20 70 72 69 6f 72 69 74 79 20 66 72 6f 6d 20 31 20 74 6f 20 37 20 61 6e 64 | .with.a.priority.from.1.to.7.and |
| a5460 | 20 64 65 66 69 6e 65 20 61 20 68 61 72 64 20 6c 69 6d 69 74 20 6f 6e 20 74 68 65 20 72 65 61 6c | .define.a.hard.limit.on.the.real |
| a5480 | 20 71 75 65 75 65 20 73 69 7a 65 2e 20 57 68 65 6e 20 74 68 69 73 20 6c 69 6d 69 74 20 69 73 20 | .queue.size..When.this.limit.is. |
| a54a0 | 72 65 61 63 68 65 64 2c 20 6e 65 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 72 6f 70 70 65 64 | reached,.new.packets.are.dropped |
| a54c0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ..Use.this.command.to.configure. |
| a54e0 | 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 | a.Random-Detect.policy.and.set.i |
| a5500 | 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 6e 61 6d 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 | ts.name,.then.name.the.IP.Preced |
| a5520 | 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 | ence.for.the.virtual.queue.you.a |
| a5540 | 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 74 68 65 20 6d 61 78 69 | re.configuring.and.what.the.maxi |
| a5560 | 6d 75 6d 20 73 69 7a 65 20 6f 66 20 69 74 73 20 71 75 65 75 65 20 77 69 6c 6c 20 62 65 20 28 66 | mum.size.of.its.queue.will.be.(f |
| a5580 | 72 6f 6d 20 31 20 74 6f 20 31 2d 34 32 39 34 39 36 37 32 39 35 20 70 61 63 6b 65 74 73 29 2e 20 | rom.1.to.1-4294967295.packets).. |
| a55a0 | 50 61 63 6b 65 74 73 20 61 72 65 20 64 72 6f 70 70 65 64 20 77 68 65 6e 20 74 68 65 20 63 75 72 | Packets.are.dropped.when.the.cur |
| a55c0 | 72 65 6e 74 20 71 75 65 75 65 20 6c 65 6e 67 74 68 20 72 65 61 63 68 65 73 20 74 68 69 73 20 76 | rent.queue.length.reaches.this.v |
| a55e0 | 61 6c 75 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | alue..Use.this.command.to.config |
| a5600 | 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 | ure.a.Random-Detect.policy.and.s |
| a5620 | 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 | et.its.name,.then.state.the.IP.P |
| a5640 | 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 | recedence.for.the.virtual.queue. |
| a5660 | 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 69 74 73 | you.are.configuring.and.what.its |
| a5680 | 20 6d 61 72 6b 20 28 64 72 6f 70 29 20 70 72 6f 62 61 62 69 6c 69 74 79 20 77 69 6c 6c 20 62 65 | .mark.(drop).probability.will.be |
| a56a0 | 2e 20 53 65 74 20 74 68 65 20 70 72 6f 62 61 62 69 6c 69 74 79 20 62 79 20 67 69 76 69 6e 67 20 | ..Set.the.probability.by.giving. |
| a56c0 | 74 68 65 20 4e 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 66 72 61 63 74 69 6f 6e 20 31 2f 4e 20 | the.N.value.of.the.fraction.1/N. |
| a56e0 | 28 64 65 66 61 75 6c 74 3a 20 31 30 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | (default:.10)..Use.this.command. |
| a5700 | 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c | to.configure.a.Random-Detect.pol |
| a5720 | 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 | icy.and.set.its.name,.then.state |
| a5740 | 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 | .the.IP.Precedence.for.the.virtu |
| a5760 | 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 | al.queue.you.are.configuring.and |
| a5780 | 20 77 68 61 74 20 69 74 73 20 6d 61 78 69 6d 75 6d 20 74 68 72 65 73 68 6f 6c 64 20 66 6f 72 20 | .what.its.maximum.threshold.for. |
| a57a0 | 72 61 6e 64 6f 6d 20 64 65 74 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 28 66 72 6f 6d 20 30 | random.detection.will.be.(from.0 |
| a57c0 | 20 74 6f 20 34 30 39 36 20 70 61 63 6b 65 74 73 2c 20 64 65 66 61 75 6c 74 3a 20 31 38 29 2e 20 | .to.4096.packets,.default:.18).. |
| a57e0 | 41 74 20 74 68 69 73 20 73 69 7a 65 2c 20 74 68 65 20 6d 61 72 6b 69 6e 67 20 28 64 72 6f 70 29 | At.this.size,.the.marking.(drop) |
| a5800 | 20 70 72 6f 62 61 62 69 6c 69 74 79 20 69 73 20 6d 61 78 69 6d 61 6c 2e 00 55 73 65 20 74 68 69 | .probability.is.maximal..Use.thi |
| a5820 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d | s.command.to.configure.a.Random- |
| a5840 | 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 | Detect.policy.and.set.its.name,. |
| a5860 | 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 | then.state.the.IP.Precedence.for |
| a5880 | 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 | .the.virtual.queue.you.are.confi |
| a58a0 | 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 69 74 73 20 6d 69 6e 69 6d 75 6d 20 74 68 72 65 | guring.and.what.its.minimum.thre |
| a58c0 | 73 68 6f 6c 64 20 66 6f 72 20 72 61 6e 64 6f 6d 20 64 65 74 65 63 74 69 6f 6e 20 77 69 6c 6c 20 | shold.for.random.detection.will. |
| a58e0 | 62 65 20 28 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 36 20 70 61 63 6b 65 74 73 29 2e 20 20 49 66 | be.(from.0.to.4096.packets)...If |
| a5900 | 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 65 78 63 65 65 64 65 64 2c 20 70 61 63 6b 65 74 73 | .this.value.is.exceeded,.packets |
| a5920 | 20 73 74 61 72 74 20 62 65 69 6e 67 20 65 6c 69 67 69 62 6c 65 20 66 6f 72 20 62 65 69 6e 67 20 | .start.being.eligible.for.being. |
| a5940 | 64 72 6f 70 70 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e | dropped..Use.this.command.to.con |
| a5960 | 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e | figure.a.Random-Detect.policy.an |
| a5980 | 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 | d.set.its.name,.then.state.the.I |
| a59a0 | 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 | P.Precedence.for.the.virtual.que |
| a59c0 | 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 | ue.you.are.configuring.and.what. |
| a59e0 | 74 68 65 20 73 69 7a 65 20 6f 66 20 69 74 73 20 61 76 65 72 61 67 65 2d 70 61 63 6b 65 74 20 73 | the.size.of.its.average-packet.s |
| a5a00 | 68 6f 75 6c 64 20 62 65 20 28 69 6e 20 62 79 74 65 73 2c 20 64 65 66 61 75 6c 74 3a 20 31 30 32 | hould.be.(in.bytes,.default:.102 |
| a5a20 | 34 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | 4)..Use.this.command.to.configur |
| a5a40 | 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 | e.a.Random-Detect.policy,.set.it |
| a5a60 | 73 20 6e 61 6d 65 20 61 6e 64 20 73 65 74 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 62 61 6e | s.name.and.set.the.available.ban |
| a5a80 | 64 77 69 64 74 68 20 66 6f 72 20 74 68 69 73 20 70 6f 6c 69 63 79 2e 20 49 74 20 69 73 20 75 73 | dwidth.for.this.policy..It.is.us |
| a5aa0 | 65 64 20 66 6f 72 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 74 68 65 20 61 76 65 72 61 67 65 20 71 | ed.for.calculating.the.average.q |
| a5ac0 | 75 65 75 65 20 73 69 7a 65 20 61 66 74 65 72 20 73 6f 6d 65 20 69 64 6c 65 20 74 69 6d 65 2e 20 | ueue.size.after.some.idle.time.. |
| a5ae0 | 49 74 20 73 68 6f 75 6c 64 20 62 65 20 73 65 74 20 74 6f 20 74 68 65 20 62 61 6e 64 77 69 64 74 | It.should.be.set.to.the.bandwidt |
| a5b00 | 68 20 6f 66 20 79 6f 75 72 20 69 6e 74 65 72 66 61 63 65 2e 20 52 61 6e 64 6f 6d 20 44 65 74 65 | h.of.your.interface..Random.Dete |
| a5b20 | 63 74 20 69 73 20 6e 6f 74 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 2c 20 74 68 69 73 | ct.is.not.a.shaping.policy,.this |
| a5b40 | 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 73 68 61 70 65 2e 00 55 73 65 20 74 68 69 | .command.will.not.shape..Use.thi |
| a5b60 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 74 65 2d 43 6f | s.command.to.configure.a.Rate-Co |
| a5b80 | 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 | ntrol.policy,.set.its.name.and.t |
| a5ba0 | 68 65 20 6d 61 78 69 6d 75 6d 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 61 20 70 61 63 6b | he.maximum.amount.of.time.a.pack |
| a5bc0 | 65 74 20 63 61 6e 20 62 65 20 71 75 65 75 65 64 20 28 64 65 66 61 75 6c 74 3a 20 35 30 20 6d 73 | et.can.be.queued.(default:.50.ms |
| a5be0 | 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | )..Use.this.command.to.configure |
| a5c00 | 20 61 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 | .a.Rate-Control.policy,.set.its. |
| a5c20 | 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 20 79 6f 75 20 77 61 6e 74 | name.and.the.rate.limit.you.want |
| a5c40 | 20 74 6f 20 68 61 76 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | .to.have..Use.this.command.to.co |
| a5c60 | 6e 66 69 67 75 72 65 20 61 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 | nfigure.a.Rate-Control.policy,.s |
| a5c80 | 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 | et.its.name.and.the.size.of.the. |
| a5ca0 | 62 75 63 6b 65 74 20 69 6e 20 62 79 74 65 73 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 61 76 | bucket.in.bytes.which.will.be.av |
| a5cc0 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 62 75 72 73 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | ailable.for.burst..Use.this.comm |
| a5ce0 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 | and.to.configure.a.Round-Robin.p |
| a5d00 | 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 | olicy,.set.its.name,.set.a.class |
| a5d20 | 20 49 44 2c 20 61 6e 64 20 74 68 65 20 71 75 61 6e 74 75 6d 20 66 6f 72 20 74 68 61 74 20 63 6c | .ID,.and.the.quantum.for.that.cl |
| a5d40 | 61 73 73 2e 20 54 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 77 69 6c 6c 20 61 64 | ass..The.deficit.counter.will.ad |
| a5d60 | 64 20 74 68 61 74 20 76 61 6c 75 65 20 65 61 63 68 20 72 6f 75 6e 64 2e 00 55 73 65 20 74 68 69 | d.that.value.each.round..Use.thi |
| a5d80 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 6f 75 6e 64 2d 52 | s.command.to.configure.a.Round-R |
| a5da0 | 6f 62 69 6e 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 | obin.policy,.set.its.name,.set.a |
| a5dc0 | 20 63 6c 61 73 73 20 49 44 2c 20 61 6e 64 20 74 68 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 6e | .class.ID,.and.the.queue.size.in |
| a5de0 | 20 70 61 63 6b 65 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | .packets..Use.this.command.to.co |
| a5e00 | 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 | nfigure.a.Shaper.policy,.set.its |
| a5e20 | 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 62 61 6e 64 77 69 64 74 68 20 | .name.and.the.maximum.bandwidth. |
| a5e40 | 66 6f 72 20 61 6c 6c 20 63 6f 6d 62 69 6e 65 64 20 74 72 61 66 66 69 63 2e 00 55 73 65 20 74 68 | for.all.combined.traffic..Use.th |
| a5e60 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 | is.command.to.configure.a.Shaper |
| a5e80 | 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 | .policy,.set.its.name,.define.a. |
| a5ea0 | 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 67 75 61 72 61 6e 74 65 65 64 20 74 72 61 | class.and.set.the.guaranteed.tra |
| a5ec0 | 66 66 69 63 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 74 6f 20 74 68 61 | ffic.you.want.to.allocate.to.tha |
| a5ee0 | 74 20 63 6c 61 73 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e | t.class..Use.this.command.to.con |
| a5f00 | 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 | figure.a.Shaper.policy,.set.its. |
| a5f20 | 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 | name,.define.a.class.and.set.the |
| a5f40 | 20 6d 61 78 69 6d 75 6d 20 73 70 65 65 64 20 70 6f 73 73 69 62 6c 65 20 66 6f 72 20 74 68 69 73 | .maximum.speed.possible.for.this |
| a5f60 | 20 63 6c 61 73 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 63 65 69 6c 69 6e 67 20 76 61 6c 75 | .class..The.default.ceiling.valu |
| a5f80 | 65 20 69 73 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 20 76 61 6c 75 65 2e 00 55 73 65 20 74 68 | e.is.the.bandwidth.value..Use.th |
| a5fa0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 | is.command.to.configure.a.Shaper |
| a5fc0 | 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 | .policy,.set.its.name,.define.a. |
| a5fe0 | 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 66 6f 72 20 75 | class.and.set.the.priority.for.u |
| a6000 | 73 61 67 65 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 62 61 6e 64 77 69 64 74 68 20 6f 6e 63 65 | sage.of.available.bandwidth.once |
| a6020 | 20 67 75 61 72 61 6e 74 65 65 73 20 68 61 76 65 20 62 65 65 6e 20 6d 65 74 2e 20 54 68 65 20 6c | .guarantees.have.been.met..The.l |
| a6040 | 6f 77 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 | ower.the.priority.number,.the.hi |
| a6060 | 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 | gher.the.priority..The.default.p |
| a6080 | 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 69 73 20 30 2c 20 74 68 65 20 68 69 67 68 65 73 74 20 | riority.value.is.0,.the.highest. |
| a60a0 | 70 72 69 6f 72 69 74 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f | priority..Use.this.command.to.co |
| a60c0 | 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 | nfigure.a.Shaper.policy,.set.its |
| a60e0 | 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 | .name,.define.a.class.and.set.th |
| a6100 | 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 60 74 6f 63 6b 65 6e 20 62 75 63 6b 65 74 60 5f 20 69 | e.size.of.the.`tocken.bucket`_.i |
| a6120 | 6e 20 62 79 74 65 73 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 61 76 61 69 6c 61 62 6c 65 | n.bytes,.which.will.be.available |
| a6140 | 20 74 6f 20 62 65 20 73 65 6e 74 20 61 74 20 63 65 69 6c 69 6e 67 20 73 70 65 65 64 20 28 64 65 | .to.be.sent.at.ceiling.speed.(de |
| a6160 | 66 61 75 6c 74 3a 20 31 35 4b 62 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | fault:.15Kb)..Use.this.command.t |
| a6180 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 64 61 74 61 2d 72 61 74 65 20 6c 69 6d 69 74 20 74 6f | o.configure.a.data-rate.limit.to |
| a61a0 | 20 50 50 50 4f 6f 45 20 63 6c 69 65 6e 74 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 64 6f 77 6e | .PPPOoE.clients.for.traffic.down |
| a61c0 | 6c 6f 61 64 20 6f 72 20 75 70 6c 6f 61 64 2e 20 54 68 65 20 72 61 74 65 2d 6c 69 6d 69 74 20 69 | load.or.upload..The.rate-limit.i |
| a61e0 | 73 20 73 65 74 20 69 6e 20 6b 62 69 74 2f 73 65 63 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | s.set.in.kbit/sec..Use.this.comm |
| a6200 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 64 72 6f 70 2d 74 61 69 6c 20 70 6f 6c | and.to.configure.a.drop-tail.pol |
| a6220 | 69 63 79 20 28 50 46 49 46 4f 29 2e 20 43 68 6f 6f 73 65 20 61 20 75 6e 69 71 75 65 20 6e 61 6d | icy.(PFIFO)..Choose.a.unique.nam |
| a6240 | 65 20 66 6f 72 20 74 68 69 73 20 70 6f 6c 69 63 79 20 61 6e 64 20 74 68 65 20 73 69 7a 65 20 6f | e.for.this.policy.and.the.size.o |
| a6260 | 66 20 74 68 65 20 71 75 65 75 65 20 62 79 20 73 65 74 74 69 6e 67 20 74 68 65 20 6e 75 6d 62 65 | f.the.queue.by.setting.the.numbe |
| a6280 | 72 20 6f 66 20 70 61 63 6b 65 74 73 20 69 74 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 28 6d 61 78 | r.of.packets.it.can.contain.(max |
| a62a0 | 69 6d 75 6d 20 34 32 39 34 39 36 37 32 39 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | imum.4294967295)..Use.this.comma |
| a62c0 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 73 70 65 63 69 66 69 63 20 73 65 73 73 69 | nd.to.configure.a.specific.sessi |
| a62e0 | 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 66 6f 72 20 4c 44 50 20 70 65 65 72 73 2e 20 53 65 74 20 | on.hold.time.for.LDP.peers..Set. |
| a6300 | 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 4c 44 50 20 70 65 65 72 20 61 | the.IP.address.of.the.LDP.peer.a |
| a6320 | 6e 64 20 61 20 73 65 73 73 69 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 74 68 61 74 20 73 68 6f 75 | nd.a.session.hold.time.that.shou |
| a6340 | 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 69 74 2e 20 59 6f 75 20 6d 61 79 | ld.be.configured.for.it..You.may |
| a6360 | 20 68 61 76 65 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 66 6f 72 20 | .have.to.reset.the.neighbor.for. |
| a6380 | 74 68 69 73 20 74 6f 20 77 6f 72 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | this.to.work..Use.this.command.t |
| a63a0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 | o.configure.an.Ingress.Policer,. |
| a63c0 | 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 62 75 72 73 74 20 | defining.its.name.and.the.burst. |
| a63e0 | 73 69 7a 65 20 69 6e 20 62 79 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 31 35 29 20 66 6f 72 20 | size.in.bytes.(default:.15).for. |
| a6400 | 69 74 73 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | its.default.policy..Use.this.com |
| a6420 | 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c | mand.to.configure.an.Ingress.Pol |
| a6440 | 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 | icer,.defining.its.name.and.the. |
| a6460 | 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 69 74 | maximum.allowed.bandwidth.for.it |
| a6480 | 73 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | s.default.policy..Use.this.comma |
| a64a0 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 | nd.to.configure.an.Ingress.Polic |
| a64c0 | 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 | er,.defining.its.name,.a.class.i |
| a64e0 | 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 20 61 6e 64 20 74 68 65 20 62 75 72 73 74 | dentifier.(1-4090).and.the.burst |
| a6500 | 20 73 69 7a 65 20 69 6e 20 62 79 74 65 73 20 66 6f 72 20 74 68 69 73 20 63 6c 61 73 73 20 28 64 | .size.in.bytes.for.this.class.(d |
| a6520 | 65 66 61 75 6c 74 3a 20 31 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | efault:.15)..Use.this.command.to |
| a6540 | 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 | .configure.an.Ingress.Policer,.d |
| a6560 | 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 | efining.its.name,.a.class.identi |
| a6580 | 66 69 65 72 20 28 31 2d 34 30 39 30 29 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 6c | fier.(1-4090).and.the.maximum.al |
| a65a0 | 6c 6f 77 65 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 74 68 69 73 20 63 6c 61 73 73 2e 00 | lowed.bandwidth.for.this.class.. |
| a65c0 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e | Use.this.command.to.configure.an |
| a65e0 | 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e | .Ingress.Policer,.defining.its.n |
| a6600 | 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 | ame,.a.class.identifier.(1-4090) |
| a6620 | 2c 20 61 20 63 6c 61 73 73 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 20 6e 61 6d 65 20 61 6e 64 | ,.a.class.matching.rule.name.and |
| a6640 | 20 69 74 73 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | .its.description..Use.this.comma |
| a6660 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 | nd.to.configure.an.Ingress.Polic |
| a6680 | 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 | er,.defining.its.name,.a.class.i |
| a66a0 | 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 2c 20 61 6e 64 20 74 68 65 20 70 72 69 6f | dentifier.(1-4090),.and.the.prio |
| a66c0 | 72 69 74 79 20 28 30 2d 32 30 2c 20 64 65 66 61 75 6c 74 20 32 30 29 20 69 6e 20 77 68 69 63 68 | rity.(0-20,.default.20).in.which |
| a66e0 | 20 74 68 65 20 72 75 6c 65 20 69 73 20 65 76 61 6c 75 61 74 65 64 20 28 74 68 65 20 6c 6f 77 65 | .the.rule.is.evaluated.(the.lowe |
| a6700 | 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 | r.the.number,.the.higher.the.pri |
| a6720 | 6f 72 69 74 79 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 | ority)..Use.this.command.to.conf |
| a6740 | 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 | igure.an.fq-codel.policy,.set.it |
| a6760 | 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 | s.name.and.the.maximum.number.of |
| a6780 | 20 62 79 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 31 35 31 34 29 20 74 6f 20 62 65 20 64 65 71 | .bytes.(default:.1514).to.be.deq |
| a67a0 | 75 65 75 65 64 20 66 72 6f 6d 20 61 20 71 75 65 75 65 20 61 74 20 6f 6e 63 65 2e 00 55 73 65 20 | ueued.from.a.queue.at.once..Use. |
| a67c0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d | this.command.to.configure.an.fq- |
| a67e0 | 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 | codel.policy,.set.its.name.and.t |
| a6800 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 75 62 2d 71 75 65 75 65 73 20 28 64 65 66 61 75 6c 74 | he.number.of.sub-queues.(default |
| a6820 | 3a 20 31 30 32 34 29 20 69 6e 74 6f 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 61 72 65 20 63 | :.1024).into.which.packets.are.c |
| a6840 | 6c 61 73 73 69 66 69 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | lassified..Use.this.command.to.c |
| a6860 | 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 | onfigure.an.fq-codel.policy,.set |
| a6880 | 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 74 69 6d 65 20 70 65 72 69 6f 64 20 75 73 | .its.name.and.the.time.period.us |
| a68a0 | 65 64 20 62 79 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 6c 6f 6f 70 20 6f 66 20 43 6f 44 65 6c 20 | ed.by.the.control.loop.of.CoDel. |
| a68c0 | 74 6f 20 64 65 74 65 63 74 20 77 68 65 6e 20 61 20 70 65 72 73 69 73 74 65 6e 74 20 71 75 65 75 | to.detect.when.a.persistent.queu |
| a68e0 | 65 20 69 73 20 64 65 76 65 6c 6f 70 69 6e 67 2c 20 65 6e 73 75 72 69 6e 67 20 74 68 61 74 20 74 | e.is.developing,.ensuring.that.t |
| a6900 | 68 65 20 6d 65 61 73 75 72 65 64 20 6d 69 6e 69 6d 75 6d 20 64 65 6c 61 79 20 64 6f 65 73 20 6e | he.measured.minimum.delay.does.n |
| a6920 | 6f 74 20 62 65 63 6f 6d 65 20 74 6f 6f 20 73 74 61 6c 65 20 28 64 65 66 61 75 6c 74 3a 20 31 30 | ot.become.too.stale.(default:.10 |
| a6940 | 30 6d 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | 0ms)..Use.this.command.to.config |
| a6960 | 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 | ure.an.fq-codel.policy,.set.its. |
| a6980 | 6e 61 6d 65 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 61 20 68 61 72 64 20 6c 69 6d 69 74 20 6f 6e | name,.and.define.a.hard.limit.on |
| a69a0 | 20 74 68 65 20 72 65 61 6c 20 71 75 65 75 65 20 73 69 7a 65 2e 20 57 68 65 6e 20 74 68 69 73 20 | .the.real.queue.size..When.this. |
| a69c0 | 6c 69 6d 69 74 20 69 73 20 72 65 61 63 68 65 64 2c 20 6e 65 77 20 70 61 63 6b 65 74 73 20 61 72 | limit.is.reached,.new.packets.ar |
| a69e0 | 65 20 64 72 6f 70 70 65 64 20 28 64 65 66 61 75 6c 74 3a 20 31 30 32 34 30 20 70 61 63 6b 65 74 | e.dropped.(default:.10240.packet |
| a6a00 | 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | s)..Use.this.command.to.configur |
| a6a20 | 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 | e.an.fq-codel.policy,.set.its.na |
| a6a40 | 6d 65 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 74 68 65 20 61 63 63 65 70 74 61 62 6c 65 20 6d 69 | me,.and.define.the.acceptable.mi |
| a6a60 | 6e 69 6d 75 6d 20 73 74 61 6e 64 69 6e 67 2f 70 65 72 73 69 73 74 65 6e 74 20 71 75 65 75 65 20 | nimum.standing/persistent.queue. |
| a6a80 | 64 65 6c 61 79 2e 20 54 68 69 73 20 6d 69 6e 69 6d 75 6d 20 64 65 6c 61 79 20 69 73 20 69 64 65 | delay..This.minimum.delay.is.ide |
| a6aa0 | 6e 74 69 66 69 65 64 20 62 79 20 74 72 61 63 6b 69 6e 67 20 74 68 65 20 6c 6f 63 61 6c 20 6d 69 | ntified.by.tracking.the.local.mi |
| a6ac0 | 6e 69 6d 75 6d 20 71 75 65 75 65 20 64 65 6c 61 79 20 74 68 61 74 20 70 61 63 6b 65 74 73 20 65 | nimum.queue.delay.that.packets.e |
| a6ae0 | 78 70 65 72 69 65 6e 63 65 20 28 64 65 66 61 75 6c 74 3a 20 35 6d 73 29 2e 00 55 73 65 20 74 68 | xperience.(default:.5ms)..Use.th |
| a6b00 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 69 6e 74 65 72 | is.command.to.configure.an.inter |
| a6b20 | 66 61 63 65 20 77 69 74 68 20 49 47 4d 50 20 73 6f 20 74 68 61 74 20 50 49 4d 20 63 61 6e 20 72 | face.with.IGMP.so.that.PIM.can.r |
| a6b40 | 65 63 65 69 76 65 20 49 47 4d 50 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e | eceive.IGMP.reports.and.query.on |
| a6b60 | 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 42 79 20 64 65 66 61 | .the.selected.interface..By.defa |
| a6b80 | 75 6c 74 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 33 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e | ult.IGMP.version.3.will.be.used. |
| a6ba0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 | .Use.this.command.to.configure.a |
| a6bc0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 66 6f 72 20 4c 44 50 20 70 65 65 72 73 2e 20 53 65 74 | uthentication.for.LDP.peers..Set |
| a6be0 | 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 4c 44 50 20 70 65 65 72 20 | .the.IP.address.of.the.LDP.peer. |
| a6c00 | 61 6e 64 20 61 20 70 61 73 73 77 6f 72 64 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 73 68 | and.a.password.that.should.be.sh |
| a6c20 | 61 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 20 6e 65 69 67 68 62 6f 72 | ared.in.order.to.become.neighbor |
| a6c40 | 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | s..Use.this.command.to.configure |
| a6c60 | 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 | .in.the.selected.interface.the.I |
| a6c80 | 47 4d 50 20 68 6f 73 74 20 71 75 65 72 79 20 69 6e 74 65 72 76 61 6c 20 28 31 2d 31 38 30 30 29 | GMP.host.query.interval.(1-1800) |
| a6ca0 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 50 49 4d 20 77 69 6c 6c 20 75 73 65 2e 00 55 | .in.seconds.that.PIM.will.use..U |
| a6cc0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 | se.this.command.to.configure.in. |
| a6ce0 | 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 | the.selected.interface.the.IGMP. |
| a6d00 | 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 | query.response.timeout.value.(10 |
| a6d20 | 2d 32 35 30 29 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 | -250).in.deciseconds..If.a.repor |
| a6d40 | 74 20 69 73 20 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 | t.is.not.returned.in.the.specifi |
| a6d60 | 65 64 20 74 69 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 | ed.time,.it.will.be.assumed.the. |
| a6d80 | 28 53 2c 47 29 20 6f 72 20 28 2a 2c 47 29 20 73 74 61 74 65 20 3a 72 66 63 3a 60 37 37 36 31 23 | (S,G).or.(*,G).state.:rfc:`7761# |
| a6da0 | 73 65 63 74 69 6f 6e 2d 34 2e 31 60 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 | section-4.1`.has.timed.out..Use. |
| a6dc0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 | this.command.to.configure.in.the |
| a6de0 | 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 71 75 65 | .selected.interface.the.IGMP.que |
| a6e00 | 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 2d 32 35 | ry.response.timeout.value.(10-25 |
| a6e20 | 30 29 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 74 20 69 | 0).in.deciseconds..If.a.report.i |
| a6e40 | 73 20 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | s.not.returned.in.the.specified. |
| a6e60 | 74 69 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 28 53 2c | time,.it.will.be.assumed.the.(S, |
| a6e80 | 47 29 20 6f 72 20 28 5c 2a 2c 47 29 20 73 74 61 74 65 20 3a 72 66 63 3a 60 37 37 36 31 23 73 65 | G).or.(\*,G).state.:rfc:`7761#se |
| a6ea0 | 63 74 69 6f 6e 2d 34 2e 31 60 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 74 68 | ction-4.1`.has.timed.out..Use.th |
| a6ec0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 | is.command.to.configure.in.the.s |
| a6ee0 | 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 71 75 65 72 79 | elected.interface.the.IGMP.query |
| a6f00 | 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 28 31 30 2d 32 35 30 29 | .response.timeout.value.(10-250) |
| a6f20 | 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 | .in.deciseconds..If.a.report.is. |
| a6f40 | 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 74 69 | not.returned.in.the.specified.ti |
| a6f60 | 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 73 75 6d 65 64 20 74 68 65 20 60 28 53 2c 47 | me,.it.will.be.assumed.the.`(S,G |
| a6f80 | 29 20 6f 72 20 28 2a 2c 47 29 20 73 74 61 74 65 20 3c 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 2e | ).or.(*,G).state.<https://tools. |
| a6fa0 | 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e | ietf.org/html/rfc7761#section-4. |
| a6fc0 | 31 3e 60 5f 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | 1>`_.has.timed.out..Use.this.com |
| a6fe0 | 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 | mand.to.configure.in.the.selecte |
| a7000 | 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 4d 4c 44 20 68 6f 73 74 20 71 75 65 72 79 20 69 | d.interface.the.MLD.host.query.i |
| a7020 | 6e 74 65 72 76 61 6c 20 28 31 2d 36 35 35 33 35 29 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 | nterval.(1-65535).in.seconds.tha |
| a7040 | 74 20 50 49 4d 20 77 69 6c 6c 20 75 73 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 | t.PIM.will.use..The.default.valu |
| a7060 | 65 20 69 73 20 31 32 35 20 73 65 63 6f 6e 64 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | e.is.125.seconds..Use.this.comma |
| a7080 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 20 73 61 6d 70 6c 69 6e 67 20 72 61 | nd.to.configure.the..sampling.ra |
| a70a0 | 74 65 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 20 54 68 65 20 73 79 73 74 | te.for.flow.accounting..The.syst |
| a70c0 | 65 6d 20 73 61 6d 70 6c 65 73 20 6f 6e 65 20 69 6e 20 65 76 65 72 79 20 60 3c 72 61 74 65 3e 60 | em.samples.one.in.every.`<rate>` |
| a70e0 | 20 70 61 63 6b 65 74 73 2c 20 77 68 65 72 65 20 60 3c 72 61 74 65 3e 60 20 69 73 20 74 68 65 20 | .packets,.where.`<rate>`.is.the. |
| a7100 | 76 61 6c 75 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 74 68 65 20 73 61 6d 70 6c 69 6e | value.configured.for.the.samplin |
| a7120 | 67 2d 72 61 74 65 20 6f 70 74 69 6f 6e 2e 20 54 68 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 | g-rate.option..The.advantage.of. |
| a7140 | 73 61 6d 70 6c 69 6e 67 20 65 76 65 72 79 20 6e 20 70 61 63 6b 65 74 73 2c 20 77 68 65 72 65 20 | sampling.every.n.packets,.where. |
| a7160 | 6e 20 3e 20 31 2c 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 64 65 63 72 65 61 73 65 20 74 68 | n.>.1,.allows.you.to.decrease.th |
| a7180 | 65 20 61 6d 6f 75 6e 74 20 6f 66 20 70 72 6f 63 65 73 73 69 6e 67 20 72 65 73 6f 75 72 63 65 73 | e.amount.of.processing.resources |
| a71a0 | 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 20 54 | .required.for.flow.accounting..T |
| a71c0 | 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 65 20 6f 66 20 6e 6f 74 20 73 61 6d 70 6c 69 6e 67 20 | he.disadvantage.of.not.sampling. |
| a71e0 | 65 76 65 72 79 20 70 61 63 6b 65 74 20 69 73 20 74 68 61 74 20 74 68 65 20 73 74 61 74 69 73 74 | every.packet.is.that.the.statist |
| a7200 | 69 63 73 20 70 72 6f 64 75 63 65 64 20 61 72 65 20 65 73 74 69 6d 61 74 65 73 20 6f 66 20 61 63 | ics.produced.are.estimates.of.ac |
| a7220 | 74 75 61 6c 20 64 61 74 61 20 66 6c 6f 77 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | tual.data.flows..Use.this.comman |
| a7240 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 61 6e | d.to.configure.the.IP.address.an |
| a7260 | 64 20 74 68 65 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 6b 65 79 20 6f 66 20 79 6f 75 72 20 | d.the.shared.secret.key.of.your. |
| a7280 | 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 20 59 6f 75 20 63 61 6e 20 68 61 76 65 20 6d 75 6c | RADIUS.server...You.can.have.mul |
| a72a0 | 74 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 6f 6e 66 69 67 75 72 65 64 20 | tiple.RADIUS.servers.configured. |
| a72c0 | 69 66 20 79 6f 75 20 77 69 73 68 20 74 6f 20 61 63 68 69 65 76 65 20 72 65 64 75 6e 64 61 6e 63 | if.you.wish.to.achieve.redundanc |
| a72e0 | 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | y..Use.this.command.to.configure |
| a7300 | 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 75 73 65 64 20 61 73 20 74 68 65 20 4c 44 50 20 | .the.IP.address.used.as.the.LDP. |
| a7320 | 72 6f 75 74 65 72 2d 69 64 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 64 65 76 69 63 65 2e 00 55 | router-id.of.the.local.device..U |
| a7340 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 | se.this.command.to.configure.the |
| a7360 | 20 50 49 4d 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 | .PIM.hello.interval.in.seconds.( |
| a7380 | 31 2d 31 38 30 29 20 66 6f 72 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 | 1-180).for.the.selected.interfac |
| a73a0 | 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | e..Use.this.command.to.configure |
| a73c0 | 20 74 68 65 20 62 75 72 73 74 20 73 69 7a 65 20 6f 66 20 74 68 65 20 74 72 61 66 66 69 63 20 69 | .the.burst.size.of.the.traffic.i |
| a73e0 | 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 44 65 66 | n.a.Network.Emulator.policy..Def |
| a7400 | 69 6e 65 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c | ine.the.name.of.the.Network.Emul |
| a7420 | 61 74 6f 72 20 70 6f 6c 69 63 79 20 61 6e 64 20 69 74 73 20 74 72 61 66 66 69 63 20 62 75 72 73 | ator.policy.and.its.traffic.burs |
| a7440 | 74 20 73 69 7a 65 20 28 69 74 20 77 69 6c 6c 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 | t.size.(it.will.be.configured.th |
| a7460 | 72 6f 75 67 68 20 74 68 65 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 20 71 64 | rough.the.Token.Bucket.Filter.qd |
| a7480 | 69 73 63 29 2e 20 44 65 66 61 75 6c 74 3a 31 35 6b 62 2e 20 49 74 20 77 69 6c 6c 20 6f 6e 6c 79 | isc)..Default:15kb..It.will.only |
| a74a0 | 20 74 61 6b 65 20 65 66 66 65 63 74 20 69 66 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 | .take.effect.if.you.have.configu |
| a74c0 | 72 65 64 20 69 74 73 20 62 61 6e 64 77 69 64 74 68 20 74 6f 6f 2e 00 55 73 65 20 74 68 69 73 20 | red.its.bandwidth.too..Use.this. |
| a74e0 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 20 67 | command.to.configure.the.local.g |
| a7500 | 61 74 65 77 61 79 20 49 50 20 61 64 64 72 65 73 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | ateway.IP.address..Use.this.comm |
| a7520 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 61 74 | and.to.configure.the.maximum.rat |
| a7540 | 65 20 61 74 20 77 68 69 63 68 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 73 68 61 70 65 | e.at.which.traffic.will.be.shape |
| a7560 | 64 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 | d.in.a.Network.Emulator.policy.. |
| a7580 | 44 65 66 69 6e 65 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 70 6f 6c 69 63 79 20 61 6e | Define.the.name.of.the.policy.an |
| a75a0 | 64 20 74 68 65 20 72 61 74 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | d.the.rate..Use.this.command.to. |
| a75c0 | 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 61 6d 70 6c 69 6e 67 20 72 61 74 65 20 66 6f 72 20 | configure.the.sampling.rate.for. |
| a75e0 | 73 46 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 28 64 65 66 61 75 6c 74 3a 20 31 30 30 30 29 | sFlow.accounting.(default:.1000) |
| a7600 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 | .Use.this.command.to.configure.t |
| a7620 | 68 65 20 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 6f 66 20 | he.username.and.the.password.of. |
| a7640 | 61 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 75 73 65 72 2e 00 55 73 65 20 74 | a.locally.configured.user..Use.t |
| a7660 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 6d 61 78 69 6d | his.command.to.control.the.maxim |
| a7680 | 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 71 75 61 6c 20 63 6f 73 74 20 70 61 74 68 73 20 74 6f | um.number.of.equal.cost.paths.to |
| a76a0 | 20 72 65 61 63 68 20 61 20 73 70 65 63 69 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 | .reach.a.specific.destination..T |
| a76c0 | 68 65 20 75 70 70 65 72 20 6c 69 6d 69 74 20 6d 61 79 20 64 69 66 66 65 72 20 69 66 20 79 6f 75 | he.upper.limit.may.differ.if.you |
| a76e0 | 20 63 68 61 6e 67 65 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 4d 55 4c 54 49 50 41 54 48 5f 4e | .change.the.value.of.MULTIPATH_N |
| a7700 | 55 4d 20 64 75 72 69 6e 67 20 63 6f 6d 70 69 6c 61 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 | UM.during.compilation..The.defau |
| a7720 | 6c 74 20 69 73 20 4d 55 4c 54 49 50 41 54 48 5f 4e 55 4d 20 28 36 34 29 2e 00 55 73 65 20 74 68 | lt.is.MULTIPATH_NUM.(64)..Use.th |
| a7740 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 46 61 69 72 2d 51 75 65 75 | is.command.to.create.a.Fair-Queu |
| a7760 | 65 20 70 6f 6c 69 63 79 20 61 6e 64 20 67 69 76 65 20 69 74 20 61 20 6e 61 6d 65 2e 20 49 74 20 | e.policy.and.give.it.a.name..It. |
| a7780 | 69 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e | is.based.on.the.Stochastic.Fairn |
| a77a0 | 65 73 73 20 51 75 65 75 65 69 6e 67 20 61 6e 64 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 | ess.Queueing.and.can.be.applied. |
| a77c0 | 74 6f 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2e 00 55 73 65 20 74 68 69 73 20 63 6f | to.outbound.traffic..Use.this.co |
| a77e0 | 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 49 50 73 65 63 20 69 6e 74 65 72 66 61 63 65 2e | mmand.to.define.IPsec.interface. |
| a7800 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 61 20 46 61 | .Use.this.command.to.define.a.Fa |
| a7820 | 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 | ir-Queue.policy,.based.on.the.St |
| a7840 | 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 75 65 69 6e 67 2c 20 61 6e 64 20 | ochastic.Fairness.Queueing,.and. |
| a7860 | 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 6d 61 78 69 6d 75 6d 20 70 61 63 6b 65 74 | set.the.number.of.maximum.packet |
| a7880 | 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 77 61 69 74 20 69 6e 20 74 68 65 20 71 75 65 75 65 2e 20 | s.allowed.to.wait.in.the.queue.. |
| a78a0 | 41 6e 79 20 6f 74 68 65 72 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 64 72 6f 70 70 65 64 | Any.other.packet.will.be.dropped |
| a78c0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 61 20 46 | ..Use.this.command.to.define.a.F |
| a78e0 | 61 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 | air-Queue.policy,.based.on.the.S |
| a7900 | 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 75 65 69 6e 67 2c 20 61 6e 64 | tochastic.Fairness.Queueing,.and |
| a7920 | 20 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 61 74 20 77 68 | .set.the.number.of.seconds.at.wh |
| a7940 | 69 63 68 20 61 20 6e 65 77 20 71 75 65 75 65 20 61 6c 67 6f 72 69 74 68 6d 20 70 65 72 74 75 72 | ich.a.new.queue.algorithm.pertur |
| a7960 | 62 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 20 28 6d 61 78 69 6d 75 6d 20 34 32 39 34 39 | bation.will.occur.(maximum.42949 |
| a7980 | 36 37 32 39 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 | 67295)..Use.this.command.to.defi |
| a79a0 | 6e 65 20 64 65 66 61 75 6c 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d | ne.default.IPv6.address.pool.nam |
| a79c0 | 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 64 65 | e..Use.this.command.to.define.de |
| a79e0 | 66 61 75 6c 74 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d 65 2e 00 55 73 65 20 74 68 69 | fault.address.pool.name..Use.thi |
| a7a00 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 64 6f 6d 61 69 6e 73 2c 20 6f 6e 65 | s.command.to.define.domains,.one |
| a7a20 | 20 61 74 20 61 20 74 69 6d 65 2c 20 73 6f 20 74 68 61 74 20 74 68 65 20 73 79 73 74 65 6d 20 75 | .at.a.time,.so.that.the.system.u |
| a7a40 | 73 65 73 20 74 68 65 6d 20 74 6f 20 63 6f 6d 70 6c 65 74 65 20 75 6e 71 75 61 6c 69 66 69 65 64 | ses.them.to.complete.unqualified |
| a7a60 | 20 68 6f 73 74 20 6e 61 6d 65 73 2e 20 4d 61 78 69 6d 75 6d 3a 20 36 20 65 6e 74 72 69 65 73 2e | .host.names..Maximum:.6.entries. |
| a7a80 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 69 6e 20 74 | .Use.this.command.to.define.in.t |
| a7aa0 | 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 74 68 65 72 20 79 6f | he.selected.interface.whether.yo |
| a7ac0 | 75 20 63 68 6f 6f 73 65 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 32 20 6f 72 20 33 2e 00 55 73 | u.choose.IGMP.version.2.or.3..Us |
| a7ae0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 69 6e 20 74 68 65 20 | e.this.command.to.define.in.the. |
| a7b00 | 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 74 68 65 72 20 79 6f 75 20 63 | selected.interface.whether.you.c |
| a7b20 | 68 6f 6f 73 65 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 32 20 6f 72 20 33 2e 20 54 68 65 20 64 | hoose.IGMP.version.2.or.3..The.d |
| a7b40 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | efault.value.is.3..Use.this.comm |
| a7b60 | 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e | and.to.define.the.IP.address.ran |
| a7b80 | 67 65 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e | ge.to.be.given.to.PPPoE.clients. |
| a7ba0 | 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 | .If.notation.``x.x.x.x-x.x.x.x`` |
| a7bc0 | 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 | ,.it.must.be.within.a./24.subnet |
| a7be0 | 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 | ..If.notation.``x.x.x.x/x``.is.u |
| a7c00 | 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 | sed.there.is.possibility.to.set. |
| a7c20 | 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | host/netmask..Use.this.command.t |
| a7c40 | 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 | o.define.the.first.IP.address.of |
| a7c60 | 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e | .a.pool.of.addresses.to.be.given |
| a7c80 | 20 74 6f 20 49 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 | .to.IPoE.clients..If.notation.`` |
| a7ca0 | 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 | x.x.x.x-x.x.x.x``,.it.must.be.wi |
| a7cc0 | 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 | thin.a./24.subnet..If.notation.` |
| a7ce0 | 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f | `x.x.x.x/x``.is.used.there.is.po |
| a7d00 | 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 | ssibility.to.set.host/netmask..U |
| a7d20 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 | se.this.command.to.define.the.fi |
| a7d40 | 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 | rst.IP.address.of.a.pool.of.addr |
| a7d60 | 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e | esses.to.be.given.to.PPPoE.clien |
| a7d80 | 74 73 2e 20 49 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e | ts..It.must.be.within.a./24.subn |
| a7da0 | 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 | et..Use.this.command.to.define.t |
| a7dc0 | 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 | he.first.IP.address.of.a.pool.of |
| a7de0 | 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 54 50 20 63 | .addresses.to.be.given.to.PPTP.c |
| a7e00 | 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e | lients..If.notation.``x.x.x.x-x. |
| a7e20 | 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 | x.x.x``,.it.must.be.within.a./24 |
| a7e40 | 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 | .subnet..If.notation.``x.x.x.x/x |
| a7e60 | 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 | ``.is.used.there.is.possibility. |
| a7e80 | 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f | to.set.host/netmask..Use.this.co |
| a7ea0 | 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 | mmand.to.define.the.first.IP.add |
| a7ec0 | 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 | ress.of.a.pool.of.addresses.to.b |
| a7ee0 | 65 20 67 69 76 65 6e 20 74 6f 20 53 53 54 50 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 | e.given.to.SSTP.clients..If.nota |
| a7f00 | 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 | tion.``x.x.x.x-x.x.x.x``,.it.mus |
| a7f20 | 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 | t.be.within.a./24.subnet..If.not |
| a7f40 | 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 | ation.``x.x.x.x/x``.is.used.ther |
| a7f60 | 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 | e.is.possibility.to.set.host/net |
| a7f80 | 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 | mask..Use.this.command.to.define |
| a7fa0 | 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 | .the.first.IP.address.of.a.pool. |
| a7fc0 | 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 6c 32 74 70 | of.addresses.to.be.given.to.l2tp |
| a7fe0 | 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d | .clients..If.notation.``x.x.x.x- |
| a8000 | 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f | x.x.x.x``,.it.must.be.within.a./ |
| a8020 | 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 | 24.subnet..If.notation.``x.x.x.x |
| a8040 | 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 | /x``.is.used.there.is.possibilit |
| a8060 | 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 | y.to.set.host/netmask..Use.this. |
| a8080 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 | command.to.define.the.first.IP.a |
| a80a0 | 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f | ddress.of.a.pool.of.addresses.to |
| a80c0 | 20 62 65 20 67 69 76 65 6e 20 74 6f 20 70 70 70 6f 65 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e | .be.given.to.pppoe.clients..If.n |
| a80e0 | 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 | otation.``x.x.x.x-x.x.x.x``,.it. |
| a8100 | 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 | must.be.within.a./24.subnet..If. |
| a8120 | 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 | notation.``x.x.x.x/x``.is.used.t |
| a8140 | 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f | here.is.possibility.to.set.host/ |
| a8160 | 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 | netmask..Use.this.command.to.def |
| a8180 | 69 6e 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 | ine.the.interface.the.PPPoE.serv |
| a81a0 | 65 72 20 77 69 6c 6c 20 75 73 65 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 50 50 50 6f 45 20 | er.will.use.to.listen.for.PPPoE. |
| a81c0 | 63 6c 69 65 6e 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 | clients..Use.this.command.to.def |
| a81e0 | 69 6e 65 20 74 68 65 20 6c 61 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f | ine.the.last.IP.address.of.a.poo |
| a8200 | 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 | l.of.addresses.to.be.given.to.PP |
| a8220 | 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 | PoE.clients..It.must.be.within.a |
| a8240 | 20 2f 32 34 20 73 75 62 6e 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | ./24.subnet..Use.this.command.to |
| a8260 | 20 64 65 66 69 6e 65 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 71 75 65 75 65 20 | .define.the.length.of.the.queue. |
| a8280 | 6f 66 20 79 6f 75 72 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e | of.your.Network.Emulator.policy. |
| a82a0 | 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 | .Set.the.policy.name.and.the.max |
| a82c0 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 28 31 2d 34 32 39 34 39 36 | imum.number.of.packets.(1-429496 |
| a82e0 | 37 32 39 35 29 20 74 68 65 20 71 75 65 75 65 20 6d 61 79 20 68 6f 6c 64 20 71 75 65 75 65 64 20 | 7295).the.queue.may.hold.queued. |
| a8300 | 61 74 20 61 20 74 69 6d 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 | at.a.time..Use.this.command.to.d |
| a8320 | 65 66 69 6e 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 6e 74 72 | efine.the.maximum.number.of.entr |
| a8340 | 69 65 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 74 68 65 20 41 52 50 20 63 61 63 68 65 20 28 31 30 | ies.to.keep.in.the.ARP.cache.(10 |
| a8360 | 32 34 2c 20 32 30 34 38 2c 20 34 30 39 36 2c 20 38 31 39 32 2c 20 31 36 33 38 34 2c 20 33 32 37 | 24,.2048,.4096,.8192,.16384,.327 |
| a8380 | 36 38 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 | 68)..Use.this.command.to.define. |
| a83a0 | 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 6e 74 72 69 65 73 20 74 6f | the.maximum.number.of.entries.to |
| a83c0 | 20 6b 65 65 70 20 69 6e 20 74 68 65 20 4e 65 69 67 68 62 6f 72 20 63 61 63 68 65 20 28 31 30 32 | .keep.in.the.Neighbor.cache.(102 |
| a83e0 | 34 2c 20 32 30 34 38 2c 20 34 30 39 36 2c 20 38 31 39 32 2c 20 31 36 33 38 34 2c 20 33 32 37 36 | 4,.2048,.4096,.8192,.16384,.3276 |
| a8400 | 38 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 | 8)..Use.this.command.to.define.t |
| a8420 | 68 65 20 6e 65 78 74 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d 65 2e 00 55 73 65 20 74 | he.next.address.pool.name..Use.t |
| a8440 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 77 68 65 74 68 65 72 20 79 6f | his.command.to.define.whether.yo |
| a8460 | 75 72 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 6c 6f 63 61 6c 6c 79 20 61 75 | ur.PPPoE.clients.will.locally.au |
| a8480 | 74 68 65 6e 74 69 63 61 74 65 20 69 6e 20 79 6f 75 72 20 56 79 4f 53 20 73 79 73 74 65 6d 20 6f | thenticate.in.your.VyOS.system.o |
| a84a0 | 72 20 69 6e 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | r.in.RADIUS.server..Use.this.com |
| a84c0 | 6d 61 6e 64 20 74 6f 20 64 69 72 65 63 74 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6e | mand.to.direct.an.interface.to.n |
| a84e0 | 6f 74 20 64 65 74 65 63 74 20 61 6e 79 20 70 68 79 73 69 63 61 6c 20 73 74 61 74 65 20 63 68 61 | ot.detect.any.physical.state.cha |
| a8500 | 6e 67 65 73 20 6f 6e 20 61 20 6c 69 6e 6b 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 68 65 | nges.on.a.link,.for.example,.whe |
| a8520 | 6e 20 74 68 65 20 63 61 62 6c 65 20 69 73 20 75 6e 70 6c 75 67 67 65 64 2e 00 55 73 65 20 74 68 | n.the.cable.is.unplugged..Use.th |
| a8540 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 49 50 76 34 20 64 69 72 65 63 | is.command.to.disable.IPv4.direc |
| a8560 | 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 | ted.broadcast.forwarding.on.all. |
| a8580 | 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | interfaces..Use.this.command.to. |
| a85a0 | 64 69 73 61 62 6c 65 20 49 50 76 34 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 | disable.IPv4.forwarding.on.all.i |
| a85c0 | 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 | nterfaces..Use.this.command.to.d |
| a85e0 | 69 73 61 62 6c 65 20 49 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e | isable.IPv6.forwarding.on.all.in |
| a8600 | 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 | terfaces..Use.this.command.to.di |
| a8620 | 73 61 62 6c 65 20 49 50 76 36 20 6f 70 65 72 61 74 69 6f 6e 20 6f 6e 20 69 6e 74 65 72 66 61 63 | sable.IPv6.operation.on.interfac |
| a8640 | 65 20 77 68 65 6e 20 44 75 70 6c 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 74 65 63 74 69 | e.when.Duplicate.Address.Detecti |
| a8660 | 6f 6e 20 66 61 69 6c 73 20 6f 6e 20 4c 69 6e 6b 2d 4c 6f 63 61 6c 20 61 64 64 72 65 73 73 2e 00 | on.fails.on.Link-Local.address.. |
| a8680 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 | Use.this.command.to.disable.the. |
| a86a0 | 67 65 6e 65 72 61 74 69 6f 6e 20 6f 66 20 45 74 68 65 72 6e 65 74 20 66 6c 6f 77 20 63 6f 6e 74 | generation.of.Ethernet.flow.cont |
| a86c0 | 72 6f 6c 20 28 70 61 75 73 65 20 66 72 61 6d 65 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | rol.(pause.frames)..Use.this.com |
| a86e0 | 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 6e 6f 69 73 65 20 69 6e 20 61 20 4e 65 74 77 6f | mand.to.emulate.noise.in.a.Netwo |
| a8700 | 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 | rk.Emulator.policy..Set.the.poli |
| a8720 | 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 63 6f | cy.name.and.the.percentage.of.co |
| a8740 | 72 72 75 70 74 65 64 20 70 61 63 6b 65 74 73 20 79 6f 75 20 77 61 6e 74 2e 20 41 20 72 61 6e 64 | rrupted.packets.you.want..A.rand |
| a8760 | 6f 6d 20 65 72 72 6f 72 20 77 69 6c 6c 20 62 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 61 | om.error.will.be.introduced.in.a |
| a8780 | 20 72 61 6e 64 6f 6d 20 70 6f 73 69 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 68 6f 73 65 6e 20 | .random.position.for.the.chosen. |
| a87a0 | 70 65 72 63 65 6e 74 20 6f 66 20 70 61 63 6b 65 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | percent.of.packets..Use.this.com |
| a87c0 | 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 70 61 63 6b 65 74 2d 6c 6f 73 73 20 63 6f 6e 64 | mand.to.emulate.packet-loss.cond |
| a87e0 | 69 74 69 6f 6e 73 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c | itions.in.a.Network.Emulator.pol |
| a8800 | 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 | icy..Set.the.policy.name.and.the |
| a8820 | 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 6c 6f 73 73 20 70 61 63 6b 65 74 73 20 79 6f 75 72 | .percentage.of.loss.packets.your |
| a8840 | 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 73 75 66 66 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 | .traffic.will.suffer..Use.this.c |
| a8860 | 6f 6d 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 70 61 63 6b 65 74 2d 72 65 6f 72 64 65 72 | ommand.to.emulate.packet-reorder |
| a8880 | 69 6e 67 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c | ing.conditions.in.a.Network.Emul |
| a88a0 | 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 | ator.policy..Set.the.policy.name |
| a88c0 | 20 61 6e 64 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 72 65 6f 72 64 65 72 65 64 | .and.the.percentage.of.reordered |
| a88e0 | 20 70 61 63 6b 65 74 73 20 79 6f 75 72 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 73 75 66 66 65 | .packets.your.traffic.will.suffe |
| a8900 | 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 4c 44 | r..Use.this.command.to.enable.LD |
| a8920 | 50 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 79 6f 75 20 64 65 66 69 6e 65 2e 00 55 | P.on.the.interface.you.define..U |
| a8940 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 4d 50 4c 53 20 70 | se.this.command.to.enable.MPLS.p |
| a8960 | 72 6f 63 65 73 73 69 6e 67 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 79 6f 75 20 64 | rocessing.on.the.interface.you.d |
| a8980 | 65 66 69 6e 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c | efine..Use.this.command.to.enabl |
| a89a0 | 65 20 50 49 4d 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 | e.PIM.in.the.selected.interface. |
| a89c0 | 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 | so.that.it.can.communicate.with. |
| a89e0 | 50 49 4d 20 6e 65 69 67 68 62 6f 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | PIM.neighbors..Use.this.command. |
| a8a00 | 74 6f 20 65 6e 61 62 6c 65 20 50 49 4d 76 36 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 | to.enable.PIMv6.in.the.selected. |
| a8a20 | 69 6e 74 65 72 66 61 63 65 20 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 63 6f 6d 6d 75 6e 69 | interface.so.that.it.can.communi |
| a8a40 | 63 61 74 65 20 77 69 74 68 20 50 49 4d 76 36 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 69 73 20 | cate.with.PIMv6.neighbors..This. |
| a8a60 | 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 65 6e 61 62 6c 65 73 20 4d 4c 44 20 72 65 70 6f 72 74 73 | command.also.enables.MLD.reports |
| a8a80 | 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 75 6e 6c 65 | .and.query.on.the.interface.unle |
| a8aa0 | 73 73 20 3a 63 66 67 63 6d 64 3a 60 6d 6c 64 20 64 69 73 61 62 6c 65 60 20 69 73 20 63 6f 6e 66 | ss.:cfgcmd:`mld.disable`.is.conf |
| a8ac0 | 69 67 75 72 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 | igured..Use.this.command.to.enab |
| a8ae0 | 6c 65 20 61 63 71 75 69 73 69 74 69 6f 6e 20 6f 66 20 49 50 76 36 20 61 64 64 72 65 73 73 20 75 | le.acquisition.of.IPv6.address.u |
| a8b00 | 73 69 6e 67 20 73 74 61 74 65 6c 65 73 73 20 61 75 74 6f 63 6f 6e 66 69 67 20 28 53 4c 41 41 43 | sing.stateless.autoconfig.(SLAAC |
| a8b20 | 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 62 61 | )..Use.this.command.to.enable.ba |
| a8b40 | 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 61 20 52 41 44 49 55 53 2e 00 55 73 65 20 | ndwidth.shaping.via.RADIUS..Use. |
| a8b60 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 70 72 6f 78 79 20 41 64 64 | this.command.to.enable.proxy.Add |
| a8b80 | 72 65 73 73 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 41 52 50 29 20 6f | ress.Resolution.Protocol.(ARP).o |
| a8ba0 | 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 50 72 6f 78 79 20 41 52 50 20 61 6c 6c 6f | n.this.interface..Proxy.ARP.allo |
| a8bc0 | 77 73 20 61 6e 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 72 65 73 70 | ws.an.Ethernet.interface.to.resp |
| a8be0 | 6f 6e 64 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 3a 61 62 62 72 3a 60 4d 41 43 20 28 4d 65 64 | ond.with.its.own.:abbr:`MAC.(Med |
| a8c00 | 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 60 20 61 64 64 72 65 73 73 20 74 6f 20 41 | ia.Access.Control)`.address.to.A |
| a8c20 | 52 50 20 72 65 71 75 65 73 74 73 20 66 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 | RP.requests.for.destination.IP.a |
| a8c40 | 64 64 72 65 73 73 65 73 20 6f 6e 20 73 75 62 6e 65 74 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 | ddresses.on.subnets.attached.to. |
| a8c60 | 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 | other.interfaces.on.the.system.. |
| a8c80 | 53 75 62 73 65 71 75 65 6e 74 20 70 61 63 6b 65 74 73 20 73 65 6e 74 20 74 6f 20 74 68 6f 73 65 | Subsequent.packets.sent.to.those |
| a8ca0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 66 6f | .destination.IP.addresses.are.fo |
| a8cc0 | 72 77 61 72 64 65 64 20 61 70 70 72 6f 70 72 69 61 74 65 6c 79 20 62 79 20 74 68 65 20 73 79 73 | rwarded.appropriately.by.the.sys |
| a8ce0 | 74 65 6d 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 | tem..Use.this.command.to.enable. |
| a8d00 | 74 61 72 67 65 74 65 64 20 4c 44 50 20 73 65 73 73 69 6f 6e 73 20 74 6f 20 74 68 65 20 6c 6f 63 | targeted.LDP.sessions.to.the.loc |
| a8d20 | 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 74 68 65 6e 20 | al.router..The.router.will.then. |
| a8d40 | 72 65 73 70 6f 6e 64 20 74 6f 20 61 6e 79 20 73 65 73 73 69 6f 6e 73 20 74 68 61 74 20 61 72 65 | respond.to.any.sessions.that.are |
| a8d60 | 20 74 72 79 69 6e 67 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 69 74 20 74 68 61 74 20 61 72 | .trying.to.connect.to.it.that.ar |
| a8d80 | 65 20 6e 6f 74 20 61 20 6c 69 6e 6b 20 6c 6f 63 61 6c 20 74 79 70 65 20 6f 66 20 54 43 50 20 63 | e.not.a.link.local.type.of.TCP.c |
| a8da0 | 6f 6e 6e 65 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 | onnection..Use.this.command.to.e |
| a8dc0 | 6e 61 62 6c 65 20 74 68 65 20 64 65 6c 61 79 20 6f 66 20 50 41 44 4f 20 28 50 50 50 6f 45 20 41 | nable.the.delay.of.PADO.(PPPoE.A |
| a8de0 | 63 74 69 76 65 20 44 69 73 63 6f 76 65 72 79 20 4f 66 66 65 72 29 20 70 61 63 6b 65 74 73 2c 20 | ctive.Discovery.Offer).packets,. |
| a8e00 | 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 20 73 65 73 73 69 6f 6e 20 62 | which.can.be.used.as.a.session.b |
| a8e20 | 61 6c 61 6e 63 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 20 77 69 74 68 20 6f 74 68 65 72 20 50 50 | alancing.mechanism.with.other.PP |
| a8e40 | 50 6f 45 20 73 65 72 76 65 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | PoE.servers..Use.this.command.to |
| a8e60 | 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 74 72 79 20 | .enable.the.local.router.to.try. |
| a8e80 | 61 6e 64 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 20 61 20 74 61 72 67 65 74 65 64 20 4c 44 50 20 | and.connect.with.a.targeted.LDP. |
| a8ea0 | 73 65 73 73 69 6f 6e 20 74 6f 20 61 6e 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 00 55 73 65 20 74 | session.to.another.router..Use.t |
| a8ec0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e | his.command.to.enable.the.loggin |
| a8ee0 | 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 6e 20 63 75 73 74 6f | g.of.the.default.action.on.custo |
| a8f00 | 6d 20 63 68 61 69 6e 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e | m.chains..Use.this.command.to.en |
| a8f20 | 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 | able.the.logging.of.the.default. |
| a8f40 | 61 63 74 69 6f 6e 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 63 68 61 69 6e 2e 00 55 | action.on.the.specified.chain..U |
| a8f60 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f | se.this.command.to.enable.the.lo |
| a8f80 | 67 67 69 6e 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 2e 00 55 73 65 | gging.of.the.default.action..Use |
| a8fa0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 2c 20 64 69 73 61 62 6c 65 | .this.command.to.enable,.disable |
| a8fc0 | 2c 20 6f 72 20 73 70 65 63 69 66 79 20 68 6f 70 20 63 6f 75 6e 74 20 66 6f 72 20 54 54 4c 20 73 | ,.or.specify.hop.count.for.TTL.s |
| a8fe0 | 65 63 75 72 69 74 79 20 66 6f 72 20 4c 44 50 20 70 65 65 72 73 2e 20 42 79 20 64 65 66 61 75 6c | ecurity.for.LDP.peers..By.defaul |
| a9000 | 74 20 74 68 65 20 76 61 6c 75 65 20 69 73 20 73 65 74 20 74 6f 20 32 35 35 20 28 6f 72 20 6d 61 | t.the.value.is.set.to.255.(or.ma |
| a9020 | 78 20 54 54 4c 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 66 6c 75 73 | x.TTL)..Use.this.command.to.flus |
| a9040 | 68 20 74 68 65 20 6b 65 72 6e 65 6c 20 49 50 76 36 20 72 6f 75 74 65 20 63 61 63 68 65 2e 20 41 | h.the.kernel.IPv6.route.cache..A |
| a9060 | 6e 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 74 6f 20 66 6c 75 73 68 20 | n.address.can.be.added.to.flush. |
| a9080 | 69 74 20 6f 6e 6c 79 20 66 6f 72 20 74 68 61 74 20 72 6f 75 74 65 2e 00 55 73 65 20 74 68 69 73 | it.only.for.that.route..Use.this |
| a90a0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 | .command.to.get.an.overview.of.a |
| a90c0 | 20 7a 6f 6e 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 69 | .zone..Use.this.command.to.get.i |
| a90e0 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 4f 53 50 46 76 33 2e 00 55 73 65 20 74 68 69 | nformation.about.OSPFv3..Use.thi |
| a9100 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f | s.command.to.get.information.abo |
| a9120 | 75 74 20 74 68 65 20 52 49 50 4e 47 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 74 68 69 73 20 63 | ut.the.RIPNG.protocol.Use.this.c |
| a9140 | 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 72 75 63 74 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f | ommand.to.instruct.the.system.to |
| a9160 | 20 65 73 74 61 62 6c 69 73 68 20 61 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 75 | .establish.a.PPPoE.connection.au |
| a9180 | 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6f 6e 63 65 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 | tomatically.once.traffic.passes. |
| a91a0 | 74 68 72 6f 75 67 68 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 41 20 64 69 73 61 62 6c 65 | through.the.interface..A.disable |
| a91c0 | 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c | d.on-demand.connection.is.establ |
| a91e0 | 69 73 68 65 64 20 61 74 20 62 6f 6f 74 20 74 69 6d 65 20 61 6e 64 20 72 65 6d 61 69 6e 73 20 75 | ished.at.boot.time.and.remains.u |
| a9200 | 70 2e 20 49 66 20 74 68 65 20 6c 69 6e 6b 20 66 61 69 6c 73 20 66 6f 72 20 61 6e 79 20 72 65 61 | p..If.the.link.fails.for.any.rea |
| a9220 | 73 6f 6e 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 6f 75 67 68 74 20 62 61 63 6b 20 75 70 | son,.the.link.is.brought.back.up |
| a9240 | 20 69 6d 6d 65 64 69 61 74 65 6c 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | .immediately..Use.this.command.t |
| a9260 | 6f 20 6c 69 6e 6b 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 | o.link.the.PPPoE.connection.to.a |
| a9280 | 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 45 61 63 68 20 50 50 50 6f 45 20 | .physical.interface..Each.PPPoE. |
| a92a0 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 6f | connection.must.be.established.o |
| a92c0 | 76 65 72 20 61 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 49 6e 74 65 72 66 | ver.a.physical.interface..Interf |
| a92e0 | 61 63 65 73 20 63 61 6e 20 62 65 20 72 65 67 75 6c 61 72 20 45 74 68 65 72 6e 65 74 20 69 6e 74 | aces.can.be.regular.Ethernet.int |
| a9300 | 65 72 66 61 63 65 73 2c 20 56 49 46 73 20 6f 72 20 62 6f 6e 64 69 6e 67 20 69 6e 74 65 72 66 61 | erfaces,.VIFs.or.bonding.interfa |
| a9320 | 63 65 73 2f 56 49 46 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f | ces/VIFs..Use.this.command.to.lo |
| a9340 | 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 | cally.check.the.active.sessions. |
| a9360 | 69 6e 20 74 68 65 20 49 50 6f 45 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | in.the.IPoE.server..Use.this.com |
| a9380 | 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 | mand.to.locally.check.the.active |
| a93a0 | 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 2e 00 55 | .sessions.in.the.PPPoE.server..U |
| a93c0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b | se.this.command.to.locally.check |
| a93e0 | 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 50 50 54 50 | .the.active.sessions.in.the.PPTP |
| a9400 | 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 | .server..Use.this.command.to.loc |
| a9420 | 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 | ally.check.the.active.sessions.i |
| a9440 | 6e 20 74 68 65 20 53 53 54 50 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | n.the.SSTP.server..Use.this.comm |
| a9460 | 61 6e 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 65 6e 64 | and.to.manually.configure.a.Rend |
| a9480 | 65 7a 76 6f 75 73 20 50 6f 69 6e 74 20 66 6f 72 20 50 49 4d 20 73 6f 20 74 68 61 74 20 6a 6f 69 | ezvous.Point.for.PIM.so.that.joi |
| a94a0 | 6e 20 6d 65 73 73 61 67 65 73 20 63 61 6e 20 62 65 20 73 65 6e 74 20 74 68 65 72 65 2e 20 53 65 | n.messages.can.be.sent.there..Se |
| a94c0 | 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 61 64 64 72 65 73 73 20 61 6e | t.the.Rendevouz.Point.address.an |
| a94e0 | 64 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 70 72 65 66 69 78 20 6f 66 20 67 72 6f 75 70 20 72 | d.the.matching.prefix.of.group.r |
| a9500 | 61 6e 67 65 73 20 63 6f 76 65 72 65 64 2e 20 54 68 65 73 65 20 76 61 6c 75 65 73 20 6d 75 73 74 | anges.covered..These.values.must |
| a9520 | 20 62 65 20 73 68 61 72 65 64 20 77 69 74 68 20 65 76 65 72 79 20 72 6f 75 74 65 72 20 70 61 72 | .be.shared.with.every.router.par |
| a9540 | 74 69 63 69 70 61 74 69 6e 67 20 69 6e 20 74 68 65 20 50 49 4d 20 6e 65 74 77 6f 72 6b 2e 00 55 | ticipating.in.the.PIM.network..U |
| a9560 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 | se.this.command.to.not.install.a |
| a9580 | 64 76 65 72 74 69 73 65 64 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 72 73 20 69 6e 74 6f 20 74 | dvertised.DNS.nameservers.into.t |
| a95a0 | 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | he.local.system..Use.this.comman |
| a95c0 | 64 20 74 6f 20 70 72 65 66 65 72 20 49 50 76 34 20 66 6f 72 20 54 43 50 20 70 65 65 72 20 74 72 | d.to.prefer.IPv4.for.TCP.peer.tr |
| a95e0 | 61 6e 73 70 6f 72 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 66 6f 72 20 4c 44 50 20 77 68 65 6e 20 | ansport.connection.for.LDP.when. |
| a9600 | 62 6f 74 68 20 61 6e 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 4c 44 50 20 61 64 64 72 65 73 | both.an.IPv4.and.IPv6.LDP.addres |
| a9620 | 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 69 6e 74 | s.are.configured.on.the.same.int |
| a9640 | 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 | erface..Use.this.command.to.rese |
| a9660 | 74 20 49 50 76 36 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 | t.IPv6.Neighbor.Discovery.Protoc |
| a9680 | 6f 6c 20 63 61 63 68 65 20 66 6f 72 20 61 6e 20 61 64 64 72 65 73 73 20 6f 72 20 69 6e 74 65 72 | ol.cache.for.an.address.or.inter |
| a96a0 | 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 | face..Use.this.command.to.reset. |
| a96c0 | 61 6e 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 2f 54 43 50 20 73 65 73 73 69 6f 6e 20 74 68 61 74 | an.LDP.neighbor/TCP.session.that |
| a96e0 | 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | .is.established.Use.this.command |
| a9700 | 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 70 72 6f 63 65 73 73 20 6f 6e | .to.reset.the.OpenVPN.process.on |
| a9720 | 20 61 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 | .a.specific.interface..Use.this. |
| a9740 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 4f | command.to.reset.the.specified.O |
| a9760 | 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | penVPN.client..Use.this.command. |
| a9780 | 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 6f 6e | to.restrict.the.PPPoE.session.on |
| a97a0 | 20 61 20 67 69 76 65 6e 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 2e 20 4e 6f | .a.given.access.concentrator..No |
| a97c0 | 72 6d 61 6c 6c 79 2c 20 61 20 68 6f 73 74 20 73 65 6e 64 73 20 61 20 50 50 50 6f 45 20 69 6e 69 | rmally,.a.host.sends.a.PPPoE.ini |
| a97e0 | 74 69 61 74 69 6f 6e 20 70 61 63 6b 65 74 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 50 50 50 6f | tiation.packet.to.start.the.PPPo |
| a9800 | 45 20 64 69 73 63 6f 76 65 72 79 20 70 72 6f 63 65 73 73 2c 20 61 20 6e 75 6d 62 65 72 20 6f 66 | E.discovery.process,.a.number.of |
| a9820 | 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 72 65 73 70 6f 6e 64 20 77 69 | .access.concentrators.respond.wi |
| a9840 | 74 68 20 6f 66 66 65 72 20 70 61 63 6b 65 74 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 73 65 | th.offer.packets.and.the.host.se |
| a9860 | 6c 65 63 74 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 72 65 73 70 6f 6e 64 69 6e 67 20 61 63 63 65 | lects.one.of.the.responding.acce |
| a9880 | 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 74 6f 20 73 65 72 76 65 20 74 68 69 73 20 73 | ss.concentrators.to.serve.this.s |
| a98a0 | 65 73 73 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 | ession..Use.this.command.to.see. |
| a98c0 | 4c 44 50 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 | LDP.interface.information.Use.th |
| a98e0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 20 69 | is.command.to.see.LDP.neighbor.i |
| a9900 | 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 | nformation.Use.this.command.to.s |
| a9920 | 65 65 20 64 65 74 61 69 6c 65 64 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 20 69 6e 66 6f 72 6d 61 | ee.detailed.LDP.neighbor.informa |
| a9940 | 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 64 69 73 | tion.Use.this.command.to.see.dis |
| a9960 | 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 | covery.hello.information.Use.thi |
| a9980 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 74 68 65 20 4c 61 62 65 6c 20 49 6e 66 6f 72 | s.command.to.see.the.Label.Infor |
| a99a0 | 6d 61 74 69 6f 6e 20 42 61 73 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | mation.Base..Use.this.command.to |
| a99c0 | 20 73 65 74 20 61 20 6e 61 6d 65 20 66 6f 72 20 74 68 69 73 20 50 50 50 6f 45 2d 73 65 72 76 65 | .set.a.name.for.this.PPPoE-serve |
| a99e0 | 72 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 2e 00 55 73 65 20 74 68 69 73 20 | r.access.concentrator..Use.this. |
| a9a00 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 72 65 2d 64 69 61 6c 20 64 65 6c 61 79 20 74 69 6d | command.to.set.re-dial.delay.tim |
| a9a20 | 65 20 74 6f 20 62 65 20 75 73 65 64 20 77 69 74 68 20 70 65 72 73 69 73 74 20 50 50 50 6f 45 20 | e.to.be.used.with.persist.PPPoE. |
| a9a40 | 73 65 73 73 69 6f 6e 73 2e 20 57 68 65 6e 20 74 68 65 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e | sessions..When.the.PPPoE.session |
| a9a60 | 20 69 73 20 74 65 72 6d 69 6e 61 74 65 64 20 62 79 20 70 65 65 72 2c 20 61 6e 64 20 6f 6e 2d 64 | .is.terminated.by.peer,.and.on-d |
| a9a80 | 65 6d 61 6e 64 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 73 65 74 2c 20 74 68 65 20 72 6f 75 | emand.option.is.not.set,.the.rou |
| a9aa0 | 74 65 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 65 73 74 61 62 6c 69 73 68 | ter.will.attempt.to.re-establish |
| a9ac0 | 20 74 68 65 20 50 50 50 6f 45 20 6c 69 6e 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | .the.PPPoE.link..Use.this.comman |
| a9ae0 | 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6c | d.to.set.the.IP.address.of.the.l |
| a9b00 | 6f 63 61 6c 20 65 6e 64 70 6f 69 6e 74 20 6f 66 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e | ocal.endpoint.of.a.PPPoE.session |
| a9b20 | 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 20 73 65 74 20 69 74 20 77 69 6c 6c 20 62 65 20 6e 65 | ..If.it.is.not.set.it.will.be.ne |
| a9b40 | 67 6f 74 69 61 74 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 | gotiated..Use.this.command.to.se |
| a9b60 | 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 65 | t.the.IP.address.of.the.remote.e |
| a9b80 | 6e 64 70 6f 69 6e 74 20 6f 66 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 2e 20 49 66 20 69 | ndpoint.of.a.PPPoE.session..If.i |
| a9ba0 | 74 20 69 73 20 6e 6f 74 20 73 65 74 20 69 74 20 77 69 6c 6c 20 62 65 20 6e 65 67 6f 74 69 61 74 | t.is.not.set.it.will.be.negotiat |
| a9bc0 | 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 | ed..Use.this.command.to.set.the. |
| a9be0 | 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 65 76 65 72 79 20 44 6f | IPv4.or.IPv6.address.of.every.Do |
| a9c00 | 6d 61 6e 20 4e 61 6d 65 20 53 65 72 76 65 72 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 6f 6e 66 | man.Name.Server.you.want.to.conf |
| a9c20 | 69 67 75 72 65 2e 20 54 68 65 79 20 77 69 6c 6c 20 62 65 20 70 72 6f 70 61 67 61 74 65 64 20 74 | igure..They.will.be.propagated.t |
| a9c40 | 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | o.PPPoE.clients..Use.this.comman |
| a9c60 | 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 74 72 61 6e 73 70 | d.to.set.the.IPv4.or.IPv6.transp |
| a9c80 | 6f 72 74 2d 61 64 64 72 65 73 73 20 75 73 65 64 20 62 79 20 4c 44 50 2e 00 55 73 65 20 74 68 69 | ort-address.used.by.LDP..Use.thi |
| a9ca0 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 69 64 6c 65 20 74 69 6d 65 6f 75 | s.command.to.set.the.idle.timeou |
| a9cc0 | 74 20 69 6e 74 65 72 76 61 6c 20 74 6f 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6f 6e 2d 64 65 | t.interval.to.be.used.with.on-de |
| a9ce0 | 6d 61 6e 64 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 73 2e 20 57 68 65 6e 20 61 6e 20 6f 6e 2d | mand.PPPoE.sessions..When.an.on- |
| a9d00 | 64 65 6d 61 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 | demand.connection.is.established |
| a9d20 | 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 6f 75 67 68 74 20 75 70 20 6f 6e 6c 79 20 77 68 | ,.the.link.is.brought.up.only.wh |
| a9d40 | 65 6e 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 61 6e 64 20 69 73 20 64 69 73 61 62 6c | en.traffic.is.sent.and.is.disabl |
| a9d60 | 65 64 20 77 68 65 6e 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 69 64 6c 65 20 66 6f 72 20 74 68 65 | ed.when.the.link.is.idle.for.the |
| a9d80 | 20 69 6e 74 65 72 76 61 6c 20 73 70 65 63 69 66 69 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f | .interval.specified..Use.this.co |
| a9da0 | 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 61 75 | mmand.to.set.the.password.for.au |
| a9dc0 | 74 68 65 6e 74 69 63 61 74 69 6e 67 20 77 69 74 68 20 61 20 72 65 6d 6f 74 65 20 50 50 50 6f 45 | thenticating.with.a.remote.PPPoE |
| a9de0 | 20 65 6e 64 70 6f 69 6e 74 2e 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 6f 70 74 | .endpoint..Authentication.is.opt |
| a9e00 | 69 6f 6e 61 6c 20 66 72 6f 6d 20 74 68 65 20 73 79 73 74 65 6d 27 73 20 70 6f 69 6e 74 20 6f 66 | ional.from.the.system's.point.of |
| a9e20 | 20 76 69 65 77 20 62 75 74 20 6d 6f 73 74 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 73 | .view.but.most.service.providers |
| a9e40 | 20 72 65 71 75 69 72 65 20 69 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | .require.it..Use.this.command.to |
| a9e60 | 20 73 65 74 20 74 68 65 20 74 61 72 67 65 74 20 74 6f 20 75 73 65 2e 20 41 63 74 69 6f 6e 20 71 | .set.the.target.to.use..Action.q |
| a9e80 | 75 65 75 65 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 74 6f 20 75 73 65 20 74 68 69 73 | ueue.must.be.defined.to.use.this |
| a9ea0 | 20 73 65 74 74 69 6e 67 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 | .setting.Use.this.command.to.set |
| a9ec0 | 20 74 68 65 20 75 73 65 72 6e 61 6d 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 | .the.username.for.authenticating |
| a9ee0 | 20 77 69 74 68 20 61 20 72 65 6d 6f 74 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 2e 20 41 | .with.a.remote.PPPoE.endpoint..A |
| a9f00 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 6f 70 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 74 | uthentication.is.optional.from.t |
| a9f20 | 68 65 20 73 79 73 74 65 6d 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 20 62 75 74 20 6d 6f | he.system's.point.of.view.but.mo |
| a9f40 | 73 74 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 73 20 72 65 71 75 69 72 65 20 69 74 2e | st.service.providers.require.it. |
| a9f60 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 42 | .Use.this.command.to.show.IPv6.B |
| a9f80 | 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 | order.Gateway.Protocol.informati |
| a9fa0 | 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 | on..Use.this.command.to.show.IPv |
| a9fc0 | 36 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 69 6e | 6.Neighbor.Discovery.Protocol.in |
| a9fe0 | 66 6f 72 6d 61 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 | formation..Use.this.command.to.s |
| aa000 | 68 6f 77 20 49 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 20 73 74 61 74 75 73 2e 00 55 73 65 20 | how.IPv6.forwarding.status..Use. |
| aa020 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 6d 75 6c 74 69 63 | this.command.to.show.IPv6.multic |
| aa040 | 61 73 74 20 67 72 6f 75 70 20 6d 65 6d 62 65 72 73 68 69 70 2e 00 55 73 65 20 74 68 69 73 20 63 | ast.group.membership..Use.this.c |
| aa060 | 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 72 6f 75 74 65 73 2e 00 55 73 65 20 | ommand.to.show.IPv6.routes..Use. |
| aa080 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 61 6c 6c 20 49 50 76 36 20 61 63 | this.command.to.show.all.IPv6.ac |
| aa0a0 | 63 65 73 73 20 6c 69 73 74 73 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 | cess.lists.Use.this.command.to.s |
| aa0c0 | 68 6f 77 20 61 6c 6c 20 49 50 76 36 20 70 72 65 66 69 78 20 6c 69 73 74 73 00 55 73 65 20 74 68 | how.all.IPv6.prefix.lists.Use.th |
| aa0e0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 74 68 65 20 73 74 61 74 75 73 20 6f 66 | is.command.to.show.the.status.of |
| aa100 | 20 74 68 65 20 52 49 50 4e 47 20 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 74 68 69 73 20 63 6f 6d | .the.RIPNG.protocol.Use.this.com |
| aa120 | 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 44 4e 53 20 73 65 72 76 65 72 20 66 6f 72 | mand.to.specify.a.DNS.server.for |
| aa140 | 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 44 4e 53 20 6c | .the.system.to.be.used.for.DNS.l |
| aa160 | 6f 6f 6b 75 70 73 2e 20 4d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 44 4e 53 20 73 65 72 76 65 72 | ookups..More.than.one.DNS.server |
| aa180 | 20 63 61 6e 20 62 65 20 61 64 64 65 64 2c 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6f 6e 65 20 61 | .can.be.added,.configuring.one.a |
| aa1a0 | 74 20 61 20 74 69 6d 65 2e 20 42 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 | t.a.time..Both.IPv4.and.IPv6.add |
| aa1c0 | 72 65 73 73 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 | resses.are.supported..Use.this.c |
| aa1e0 | 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 | ommand.to.specify.a.domain.name. |
| aa200 | 74 6f 20 62 65 20 61 70 70 65 6e 64 65 64 20 74 6f 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 73 20 77 | to.be.appended.to.domain-names.w |
| aa220 | 69 74 68 69 6e 20 55 52 4c 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 61 | ithin.URLs.that.do.not.include.a |
| aa240 | 20 64 6f 74 20 60 60 2e 60 60 20 74 68 65 20 64 6f 6d 61 69 6e 20 69 73 20 61 70 70 65 6e 64 65 | .dot.``.``.the.domain.is.appende |
| aa260 | 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 | d..Use.this.command.to.specify.a |
| aa280 | 20 73 65 72 76 69 63 65 20 6e 61 6d 65 20 62 79 20 77 68 69 63 68 20 74 68 65 20 6c 6f 63 61 6c | .service.name.by.which.the.local |
| aa2a0 | 20 50 50 50 6f 45 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 73 65 6c 65 63 74 20 61 63 63 65 | .PPPoE.interface.can.select.acce |
| aa2c0 | 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 | ss.concentrators.to.connect.with |
| aa2e0 | 2e 20 49 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 61 6e 79 20 61 63 63 65 73 73 20 | ..It.will.connect.to.any.access. |
| aa300 | 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 69 66 20 6e 6f 74 20 73 65 74 2e 00 55 73 65 20 74 68 69 | concentrator.if.not.set..Use.thi |
| aa320 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 4c 61 79 65 72 20 34 20 69 6e 66 6f 72 6d 61 | s.command.to.use.Layer.4.informa |
| aa340 | 74 69 6f 6e 20 66 6f 72 20 49 50 76 34 20 45 43 4d 50 20 68 61 73 68 69 6e 67 2e 00 55 73 65 20 | tion.for.IPv4.ECMP.hashing..Use. |
| aa360 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 61 20 43 69 73 63 6f 20 6e 6f 6e 2d | this.command.to.use.a.Cisco.non- |
| aa380 | 63 6f 6d 70 6c 69 61 6e 74 20 66 6f 72 6d 61 74 20 74 6f 20 73 65 6e 64 20 61 6e 64 20 69 6e 74 | compliant.format.to.send.and.int |
| aa3a0 | 65 72 70 72 65 74 20 74 68 65 20 44 75 61 6c 2d 53 74 61 63 6b 20 63 61 70 61 62 69 6c 69 74 79 | erpret.the.Dual-Stack.capability |
| aa3c0 | 20 54 4c 56 20 66 6f 72 20 49 50 76 36 20 4c 44 50 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 | .TLV.for.IPv6.LDP.communications |
| aa3e0 | 2e 20 54 68 69 73 20 69 73 20 72 65 6c 61 74 65 64 20 74 6f 20 3a 72 66 63 3a 60 37 35 35 32 60 | ..This.is.related.to.:rfc:`7552` |
| aa400 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 6f 72 64 65 72 65 | ..Use.this.command.to.use.ordere |
| aa420 | 64 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 63 6f 6e 74 72 6f 6c 20 6d 6f 64 | d.label.distribution.control.mod |
| aa440 | 65 2e 20 46 52 52 20 62 79 20 64 65 66 61 75 6c 74 20 75 73 65 73 20 69 6e 64 65 70 65 6e 64 65 | e..FRR.by.default.uses.independe |
| aa460 | 6e 74 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 63 6f 6e 74 72 6f 6c 20 6d 6f | nt.label.distribution.control.mo |
| aa480 | 64 65 20 66 6f 72 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 20 54 68 69 73 | de.for.label.distribution...This |
| aa4a0 | 20 69 73 20 72 65 6c 61 74 65 64 20 74 6f 20 3a 72 66 63 3a 60 35 30 33 36 60 2e 00 55 73 65 20 | .is.related.to.:rfc:`5036`..Use. |
| aa4c0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 72 20 4c 61 79 65 72 20 34 20 69 6e 66 | this.command.to.user.Layer.4.inf |
| aa4e0 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 45 43 4d 50 20 68 61 73 68 69 6e 67 2e 00 55 73 65 20 74 | ormation.for.ECMP.hashing..Use.t |
| aa500 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 | his.command.to.view.operational. |
| aa520 | 73 74 61 74 75 73 20 61 6e 64 20 64 65 74 61 69 6c 73 20 77 69 72 65 6c 65 73 73 2d 73 70 65 63 | status.and.details.wireless-spec |
| aa540 | 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 77 69 72 65 6c | ific.information.about.all.wirel |
| aa560 | 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | ess.interfaces..Use.this.command |
| aa580 | 20 74 6f 20 76 69 65 77 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 73 74 61 74 75 73 20 61 6e 64 20 | .to.view.operational.status.and. |
| aa5a0 | 77 69 72 65 6c 65 73 73 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 | wireless-specific.information.ab |
| aa5c0 | 6f 75 74 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 | out.all.wireless.interfaces..Use |
| aa5e0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 77 69 72 65 6c 65 73 73 20 69 | .this.command.to.view.wireless.i |
| aa600 | 6e 74 65 72 66 61 63 65 20 71 75 65 75 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 | nterface.queue.information..The. |
| aa620 | 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 63 61 | wireless.interface.identifier.ca |
| aa640 | 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 55 | n.range.from.wlan0.to.wlan999..U |
| aa660 | 73 65 64 20 66 6f 72 20 74 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 2e 00 55 73 65 64 20 74 6f | sed.for.troubleshooting..Used.to |
| aa680 | 20 62 6c 6f 63 6b 20 61 20 73 70 65 63 69 66 69 63 20 6d 69 6d 65 2d 74 79 70 65 2e 00 55 73 65 | .block.a.specific.mime-type..Use |
| aa6a0 | 64 20 74 6f 20 62 6c 6f 63 6b 20 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 73 20 62 79 20 74 | d.to.block.specific.domains.by.t |
| aa6c0 | 68 65 20 50 72 6f 78 79 2e 20 53 70 65 63 69 66 79 69 6e 67 20 22 76 79 6f 73 2e 6e 65 74 22 20 | he.Proxy..Specifying."vyos.net". |
| aa6e0 | 77 69 6c 6c 20 62 6c 6f 63 6b 20 61 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 76 79 6f 73 2e 6e 65 | will.block.all.access.to.vyos.ne |
| aa700 | 74 2c 20 61 6e 64 20 73 70 65 63 69 66 79 69 6e 67 20 22 2e 78 78 78 22 20 77 69 6c 6c 20 62 6c | t,.and.specifying.".xxx".will.bl |
| aa720 | 6f 63 6b 20 61 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 55 52 4c 73 20 68 61 76 69 6e 67 20 61 6e | ock.all.access.to.URLs.having.an |
| aa740 | 20 55 52 4c 20 65 6e 64 69 6e 67 20 6f 6e 20 2e 78 78 78 2e 00 55 73 65 72 20 69 6e 74 65 72 66 | .URL.ending.on..xxx..User.interf |
| aa760 | 61 63 65 20 63 61 6e 20 62 65 20 70 75 74 20 74 6f 20 56 52 46 20 63 6f 6e 74 65 78 74 20 76 69 | ace.can.be.put.to.VRF.context.vi |
| aa780 | 61 20 52 41 44 49 55 53 20 41 63 63 65 73 73 2d 41 63 63 65 70 74 20 70 61 63 6b 65 74 2c 20 6f | a.RADIUS.Access-Accept.packet,.o |
| aa7a0 | 72 20 63 68 61 6e 67 65 20 69 74 20 76 69 61 20 52 41 44 49 55 53 20 43 6f 41 2e 20 60 60 41 63 | r.change.it.via.RADIUS.CoA..``Ac |
| aa7c0 | 63 65 6c 2d 56 52 46 2d 4e 61 6d 65 60 60 20 69 73 20 75 73 65 64 20 66 72 6f 6d 20 74 68 65 73 | cel-VRF-Name``.is.used.from.thes |
| aa7e0 | 65 20 70 75 72 70 6f 73 65 73 2e 20 49 74 20 69 73 20 63 75 73 74 6f 6d 20 60 41 43 43 45 4c 2d | e.purposes..It.is.custom.`ACCEL- |
| aa800 | 50 50 50 20 61 74 74 72 69 62 75 74 65 60 5f 2e 20 44 65 66 69 6e 65 20 69 74 20 69 6e 20 79 6f | PPP.attribute`_..Define.it.in.yo |
| aa820 | 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 55 73 65 72 2d 6c 65 76 65 6c 20 6d 65 73 | ur.RADIUS.server..User-level.mes |
| aa840 | 73 61 67 65 73 00 55 73 69 6e 67 20 27 73 6f 66 74 2d 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f | sages.Using.'soft-reconfiguratio |
| aa860 | 6e 27 20 77 65 20 67 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 75 70 64 61 74 65 20 77 69 74 68 | n'.we.get.the.policy.update.with |
| aa880 | 6f 75 74 20 62 6f 75 6e 63 69 6e 67 20 74 68 65 20 6e 65 69 67 68 62 6f 72 2e 00 55 73 69 6e 67 | out.bouncing.the.neighbor..Using |
| aa8a0 | 20 2a 2a 6f 70 65 6e 76 70 6e 2d 6f 70 74 69 6f 6e 20 2d 72 65 6e 65 67 2d 73 65 63 2a 2a 20 63 | .**openvpn-option.-reneg-sec**.c |
| aa8c0 | 61 6e 20 62 65 20 74 72 69 63 6b 79 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 | an.be.tricky..This.option.is.use |
| aa8e0 | 64 20 74 6f 20 72 65 6e 65 67 6f 74 69 61 74 65 20 64 61 74 61 20 63 68 61 6e 6e 65 6c 20 61 66 | d.to.renegotiate.data.channel.af |
| aa900 | 74 65 72 20 6e 20 73 65 63 6f 6e 64 73 2e 20 57 68 65 6e 20 75 73 65 64 20 61 74 20 62 6f 74 68 | ter.n.seconds..When.used.at.both |
| aa920 | 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2c 20 74 68 65 20 6c 6f 77 65 72 20 76 61 | .server.and.client,.the.lower.va |
| aa940 | 6c 75 65 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 | lue.will.trigger.the.renegotiati |
| aa960 | 6f 6e 2e 20 49 66 20 79 6f 75 20 73 65 74 20 69 74 20 74 6f 20 30 20 6f 6e 20 6f 6e 65 20 73 69 | on..If.you.set.it.to.0.on.one.si |
| aa980 | 64 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 74 6f 20 64 69 73 61 62 6c 65 | de.of.the.connection.(to.disable |
| aa9a0 | 20 69 74 29 2c 20 74 68 65 20 63 68 6f 73 65 6e 20 76 61 6c 75 65 20 6f 6e 20 74 68 65 20 6f 74 | .it),.the.chosen.value.on.the.ot |
| aa9c0 | 68 65 72 20 73 69 64 65 20 77 69 6c 6c 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 6e 20 74 68 65 | her.side.will.determine.when.the |
| aa9e0 | 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 2e 00 55 73 69 6e 67 | .renegotiation.will.occur..Using |
| aaa00 | 20 2a 2a 6f 70 65 6e 76 70 6e 2d 6f 70 74 69 6f 6e 20 2d 72 65 6e 65 67 2d 73 65 63 2a 2a 20 63 | .**openvpn-option.-reneg-sec**.c |
| aaa20 | 61 6e 20 62 65 20 74 72 69 63 6b 79 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 | an.be.tricky..This.option.is.use |
| aaa40 | 64 20 74 6f 20 72 65 6e 65 67 6f 74 69 61 74 65 20 64 61 74 61 20 63 68 61 6e 6e 65 6c 20 61 66 | d.to.renegotiate.data.channel.af |
| aaa60 | 74 65 72 20 6e 20 73 65 63 6f 6e 64 73 2e 20 57 68 65 6e 20 75 73 65 64 20 6f 6e 20 62 6f 74 68 | ter.n.seconds..When.used.on.both |
| aaa80 | 20 74 68 65 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2c 20 74 68 65 20 6c 6f 77 65 | .the.server.and.client,.the.lowe |
| aaaa0 | 72 20 76 61 6c 75 65 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 72 65 6e 65 67 6f 74 | r.value.will.trigger.the.renegot |
| aaac0 | 69 61 74 69 6f 6e 2e 20 49 66 20 79 6f 75 20 73 65 74 20 69 74 20 74 6f 20 30 20 6f 6e 20 6f 6e | iation..If.you.set.it.to.0.on.on |
| aaae0 | 65 20 73 69 64 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 74 6f 20 64 69 73 | e.side.of.the.connection.(to.dis |
| aab00 | 61 62 6c 65 20 69 74 29 2c 20 74 68 65 20 63 68 6f 73 65 6e 20 76 61 6c 75 65 20 6f 6e 20 74 68 | able.it),.the.chosen.value.on.th |
| aab20 | 65 20 6f 74 68 65 72 20 73 69 64 65 20 77 69 6c 6c 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 6e | e.other.side.will.determine.when |
| aab40 | 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 2e 00 55 | .the.renegotiation.will.occur..U |
| aab60 | 73 69 6e 67 20 42 47 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 00 55 73 69 6e 67 20 42 47 50 | sing.BGP.confederation.Using.BGP |
| aab80 | 20 72 6f 75 74 65 2d 72 65 66 6c 65 63 74 6f 72 73 00 55 73 69 6e 67 20 44 79 6e 61 6d 69 63 20 | .route-reflectors.Using.Dynamic. |
| aaba0 | 46 69 72 65 77 61 6c 6c 20 47 72 6f 75 70 73 00 55 73 69 6e 67 20 4e 65 74 46 6c 6f 77 20 6f 6e | Firewall.Groups.Using.NetFlow.on |
| aabc0 | 20 72 6f 75 74 65 72 73 20 77 69 74 68 20 68 69 67 68 20 74 72 61 66 66 69 63 20 6c 65 76 65 6c | .routers.with.high.traffic.level |
| aabe0 | 73 20 6d 61 79 20 6c 65 61 64 20 74 6f 20 68 69 67 68 20 43 50 55 20 75 73 61 67 65 20 61 6e 64 | s.may.lead.to.high.CPU.usage.and |
| aac00 | 20 6d 61 79 20 61 66 66 65 63 74 20 74 68 65 20 72 6f 75 74 65 72 27 73 20 70 65 72 66 6f 72 6d | .may.affect.the.router's.perform |
| aac20 | 61 6e 63 65 2e 20 49 6e 20 73 75 63 68 20 63 61 73 65 73 2c 20 63 6f 6e 73 69 64 65 72 20 75 73 | ance..In.such.cases,.consider.us |
| aac40 | 69 6e 67 20 73 46 6c 6f 77 20 69 6e 73 74 65 61 64 2e 00 55 73 69 6e 67 20 56 4c 41 4e 20 61 77 | ing.sFlow.instead..Using.VLAN.aw |
| aac60 | 61 72 65 20 42 72 69 64 67 65 00 55 73 69 6e 67 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 | are.Bridge.Using.address.and.por |
| aac80 | 74 20 67 72 6f 75 70 73 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 | t.groups.allows.you.to.make.your |
| aaca0 | 20 53 75 72 69 63 61 74 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 | .Suricata.configuration.more.fle |
| aacc0 | 78 69 62 6c 65 20 61 6e 64 20 6d 61 6e 61 67 65 61 62 6c 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 | xible.and.manageable..Instead.of |
| aace0 | 20 73 70 65 63 69 66 79 69 6e 67 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 70 6f 72 | .specifying.IP.addresses.and.por |
| aad00 | 74 73 20 64 69 72 65 63 74 6c 79 20 69 6e 20 65 61 63 68 20 72 75 6c 65 2c 20 79 6f 75 20 63 61 | ts.directly.in.each.rule,.you.ca |
| aad20 | 6e 20 64 65 66 69 6e 65 20 74 68 65 6d 20 6f 6e 63 65 20 69 6e 20 74 68 65 20 76 61 72 73 20 73 | n.define.them.once.in.the.vars.s |
| aad40 | 65 63 74 69 6f 6e 20 61 6e 64 20 74 68 65 6e 20 72 65 66 65 72 65 6e 63 65 20 74 68 65 6d 20 62 | ection.and.then.reference.them.b |
| aad60 | 79 20 67 72 6f 75 70 20 6e 61 6d 65 73 2e 20 54 68 69 73 20 69 73 20 65 73 70 65 63 69 61 6c 6c | y.group.names..This.is.especiall |
| aad80 | 79 20 75 73 65 66 75 6c 20 69 6e 20 6c 61 72 67 65 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 63 | y.useful.in.large.networks.and.c |
| aada0 | 6f 6d 70 6c 65 78 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 77 68 65 72 65 20 6d 75 6c 74 | omplex.configurations.where.mult |
| aadc0 | 69 70 6c 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 70 6f 72 74 73 20 6e 65 65 64 | iple.IP.addresses.and.ports.need |
| aade0 | 20 74 6f 20 62 65 20 6d 6f 6e 69 74 6f 72 65 64 2e 00 55 73 69 6e 67 20 64 79 6e 61 6d 69 63 20 | .to.be.monitored..Using.dynamic. |
| aae00 | 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2c 20 77 65 20 63 61 6e 20 73 65 63 75 72 65 20 61 | firewall.groups,.we.can.secure.a |
| aae20 | 63 63 65 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 2c 20 6f 72 20 61 6e 79 20 6f 74 68 65 | ccess.to.the.router,.or.any.othe |
| aae40 | 72 20 64 65 76 69 63 65 20 69 66 20 6e 65 65 64 65 64 2c 20 62 79 20 75 73 69 6e 67 20 74 68 65 | r.device.if.needed,.by.using.the |
| aae60 | 20 74 65 63 68 6e 69 71 75 65 20 6f 66 20 70 6f 72 74 20 6b 6e 6f 63 6b 69 6e 67 2e 00 55 73 69 | .technique.of.port.knocking..Usi |
| aae80 | 6e 67 20 6f 75 72 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 63 68 61 70 74 65 72 20 2d 20 3a | ng.our.documentation.chapter.-.: |
| aaea0 | 72 65 66 3a 60 70 6b 69 60 20 67 65 6e 65 72 61 74 65 20 61 6e 64 20 69 6e 73 74 61 6c 6c 20 43 | ref:`pki`.generate.and.install.C |
| aaec0 | 41 20 61 6e 64 20 53 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 00 55 73 69 6e 67 20 74 | A.and.Server.certificate.Using.t |
| aaee0 | 68 65 20 6f 70 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 | he.operation.mode.command.to.vie |
| aaf00 | 77 20 42 72 69 64 67 65 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 69 6e 67 20 74 68 69 73 20 | w.Bridge.Information.Using.this. |
| aaf20 | 63 6f 6d 6d 61 6e 64 2c 20 79 6f 75 20 77 69 6c 6c 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 63 | command,.you.will.create.a.new.c |
| aaf40 | 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 69 63 68 20 63 61 6e 20 63 6f | lient.configuration.which.can.co |
| aaf60 | 6e 6e 65 63 74 20 74 6f 20 60 60 69 6e 74 65 72 66 61 63 65 60 60 20 6f 6e 20 74 68 69 73 20 72 | nnect.to.``interface``.on.this.r |
| aaf80 | 6f 75 74 65 72 2e 20 54 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 66 72 6f 6d 20 74 68 65 20 73 | outer..The.public.key.from.the.s |
| aafa0 | 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 | pecified.interface.is.automatica |
| aafc0 | 6c 6c 79 20 65 78 74 72 61 63 74 65 64 20 61 6e 64 20 65 6d 62 65 64 64 65 64 20 69 6e 74 6f 20 | lly.extracted.and.embedded.into. |
| aafe0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 55 73 75 61 6c 6c 79 20 74 68 69 73 20 | the.configuration..Usually.this. |
| ab000 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 69 6e 20 50 45 73 20 28 50 72 | configuration.is.used.in.PEs.(Pr |
| ab020 | 6f 76 69 64 65 72 20 45 64 67 65 29 20 74 6f 20 72 65 70 6c 61 63 65 20 74 68 65 20 69 6e 63 6f | ovider.Edge).to.replace.the.inco |
| ab040 | 6d 69 6e 67 20 63 75 73 74 6f 6d 65 72 20 41 53 20 6e 75 6d 62 65 72 20 73 6f 20 74 68 65 20 63 | ming.customer.AS.number.so.the.c |
| ab060 | 6f 6e 6e 65 63 74 65 64 20 43 45 20 28 20 43 75 73 74 6f 6d 65 72 20 45 64 67 65 29 20 63 61 6e | onnected.CE.(.Customer.Edge).can |
| ab080 | 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 61 73 20 74 68 65 20 6f | .use.the.same.AS.number.as.the.o |
| ab0a0 | 74 68 65 72 20 63 75 73 74 6f 6d 65 72 20 73 69 74 65 73 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 | ther.customer.sites..This.allows |
| ab0c0 | 20 63 75 73 74 6f 6d 65 72 73 20 6f 66 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6e 65 74 77 6f | .customers.of.the.provider.netwo |
| ab0e0 | 72 6b 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 61 63 72 | rk.to.use.the.same.AS.number.acr |
| ab100 | 6f 73 73 20 74 68 65 69 72 20 73 69 74 65 73 2e 00 56 48 54 20 28 56 65 72 79 20 48 69 67 68 20 | oss.their.sites..VHT.(Very.High. |
| ab120 | 54 68 72 6f 75 67 68 70 75 74 29 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 38 30 32 2e 31 31 | Throughput).capabilities.(802.11 |
| ab140 | 61 63 29 00 56 48 54 20 6c 69 6e 6b 20 61 64 61 70 74 61 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 | ac).VHT.link.adaptation.capabili |
| ab160 | 74 69 65 73 00 56 48 54 20 6f 70 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 | ties.VHT.operating.channel.cente |
| ab180 | 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 31 20 28 66 6f 72 | r.frequency.-.center.freq.1.(for |
| ab1a0 | 20 75 73 65 20 77 69 74 68 20 38 30 2c 20 38 30 2b 38 30 20 61 6e 64 20 31 36 30 20 6d 6f 64 65 | .use.with.80,.80+80.and.160.mode |
| ab1c0 | 73 29 00 56 48 54 20 6f 70 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 | s).VHT.operating.channel.center. |
| ab1e0 | 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 32 20 28 66 6f 72 20 75 | frequency.-.center.freq.2.(for.u |
| ab200 | 73 65 20 77 69 74 68 20 74 68 65 20 38 30 2b 38 30 20 6d 6f 64 65 29 00 56 4c 41 4e 00 56 4c 41 | se.with.the.80+80.mode).VLAN.VLA |
| ab220 | 4e 20 31 30 20 6f 6e 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 32 60 20 | N.10.on.member.interface.`eth2`. |
| ab240 | 28 41 43 43 45 53 53 20 6d 6f 64 65 29 00 56 4c 41 4e 20 45 78 61 6d 70 6c 65 00 56 4c 41 4e 20 | (ACCESS.mode).VLAN.Example.VLAN. |
| ab260 | 4f 70 74 69 6f 6e 73 00 56 4c 41 4e 20 6d 6f 6e 69 74 6f 72 20 66 6f 72 20 61 75 74 6f 6d 61 74 | Options.VLAN.monitor.for.automat |
| ab280 | 69 63 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 66 | ic.creation.of.VLAN.interfaces.f |
| ab2a0 | 6f 72 20 73 70 65 63 69 66 69 63 20 75 73 65 72 20 6f 6e 20 73 70 65 63 69 66 69 63 20 3c 69 6e | or.specific.user.on.specific.<in |
| ab2c0 | 74 65 72 66 61 63 65 3e 00 56 4c 41 4e 20 6e 61 6d 65 00 56 4c 41 4e 27 73 20 63 61 6e 20 62 65 | terface>.VLAN.name.VLAN's.can.be |
| ab2e0 | 20 63 72 65 61 74 65 64 20 62 79 20 41 63 63 65 6c 2d 70 70 70 20 6f 6e 20 74 68 65 20 66 6c 79 | .created.by.Accel-ppp.on.the.fly |
| ab300 | 20 76 69 61 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 4b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 | .via.the.use.of.a.Kernel.module. |
| ab320 | 6e 61 6d 65 64 20 60 60 76 6c 61 6e 5f 6d 6f 6e 60 60 2c 20 77 68 69 63 68 20 69 73 20 6d 6f 6e | named.``vlan_mon``,.which.is.mon |
| ab340 | 69 74 6f 72 69 6e 67 20 69 6e 63 6f 6d 69 6e 67 20 76 6c 61 6e 73 20 61 6e 64 20 63 72 65 61 74 | itoring.incoming.vlans.and.creat |
| ab360 | 65 73 20 74 68 65 20 6e 65 63 65 73 73 61 72 79 20 56 4c 41 4e 20 69 66 20 72 65 71 75 69 72 65 | es.the.necessary.VLAN.if.require |
| ab380 | 64 20 61 6e 64 20 61 6c 6c 6f 77 65 64 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 68 65 | d.and.allowed..VyOS.supports.the |
| ab3a0 | 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 56 4c 41 4e 20 49 44 27 73 20 6f 72 20 65 6e 74 69 | .use.of.either.VLAN.ID's.or.enti |
| ab3c0 | 72 65 20 72 61 6e 67 65 73 2c 20 62 6f 74 68 20 76 61 6c 75 65 73 20 63 61 6e 20 62 65 20 64 65 | re.ranges,.both.values.can.be.de |
| ab3e0 | 66 69 6e 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 66 6f 72 20 61 6e 20 69 6e | fined.at.the.same.time.for.an.in |
| ab400 | 74 65 72 66 61 63 65 2e 00 56 4c 41 4e 27 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 62 | terface..VLAN's.can.be.created.b |
| ab420 | 79 20 41 63 63 65 6c 2d 70 70 70 20 6f 6e 20 74 68 65 20 66 6c 79 20 76 69 61 20 74 68 65 20 75 | y.Accel-ppp.on.the.fly.via.the.u |
| ab440 | 73 65 20 6f 66 20 61 20 4b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 6e 61 6d 65 64 20 60 76 6c 61 | se.of.a.Kernel.module.named.`vla |
| ab460 | 6e 5f 6d 6f 6e 60 2c 20 77 68 69 63 68 20 69 73 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 69 6e 63 6f | n_mon`,.which.is.monitoring.inco |
| ab480 | 6d 69 6e 67 20 76 6c 61 6e 73 20 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 63 65 73 | ming.vlans.and.creates.the.neces |
| ab4a0 | 73 61 72 79 20 56 4c 41 4e 20 69 66 20 72 65 71 75 69 72 65 64 20 61 6e 64 20 61 6c 6c 6f 77 65 | sary.VLAN.if.required.and.allowe |
| ab4c0 | 64 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 75 73 65 20 6f 66 20 65 69 74 68 | d..VyOS.supports.the.use.of.eith |
| ab4e0 | 65 72 20 56 4c 41 4e 20 49 44 27 73 20 6f 72 20 65 6e 74 69 72 65 20 72 61 6e 67 65 73 2c 20 62 | er.VLAN.ID's.or.entire.ranges,.b |
| ab500 | 6f 74 68 20 76 61 6c 75 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 74 20 74 68 65 | oth.values.can.be.defined.at.the |
| ab520 | 20 73 61 6d 65 20 74 69 6d 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 56 4d 77 | .same.time.for.an.interface..VMw |
| ab540 | 61 72 65 20 75 73 65 72 73 20 73 68 6f 75 6c 64 20 65 6e 73 75 72 65 20 74 68 61 74 20 61 20 56 | are.users.should.ensure.that.a.V |
| ab560 | 4d 58 4e 45 54 33 20 61 64 61 70 74 65 72 20 69 73 20 75 73 65 64 2e 20 45 31 30 30 30 20 61 64 | MXNET3.adapter.is.used..E1000.ad |
| ab580 | 61 70 74 65 72 73 20 68 61 76 65 20 6b 6e 6f 77 6e 20 69 73 73 75 65 73 20 77 69 74 68 20 47 52 | apters.have.known.issues.with.GR |
| ab5a0 | 45 20 70 72 6f 63 65 73 73 69 6e 67 2e 00 56 50 4e 00 56 50 4e 2d 63 6c 69 65 6e 74 73 20 77 69 | E.processing..VPN.VPN-clients.wi |
| ab5c0 | 6c 6c 20 72 65 71 75 65 73 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 | ll.request.configuration.paramet |
| ab5e0 | 65 72 73 2c 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 79 6f 75 20 63 61 6e 20 44 4e 53 20 70 61 72 61 | ers,.optionally.you.can.DNS.para |
| ab600 | 6d 65 74 65 72 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 56 52 46 00 56 52 46 20 52 6f 75 | meter.to.the.client..VRF.VRF.Rou |
| ab620 | 74 65 20 4c 65 61 6b 69 6e 67 00 56 52 46 20 61 6e 64 20 4e 41 54 00 56 52 46 20 62 6c 75 65 20 | te.Leaking.VRF.and.NAT.VRF.blue. |
| ab640 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 00 56 52 46 20 64 65 66 61 75 6c 74 20 72 6f 75 74 69 6e | routing.table.VRF.default.routin |
| ab660 | 67 20 74 61 62 6c 65 00 56 52 46 20 72 65 64 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 00 56 52 | g.table.VRF.red.routing.table.VR |
| ab680 | 46 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e 67 00 56 52 46 20 74 6f 70 6f 6c 6f 67 79 20 65 78 61 | F.route.leaking.VRF.topology.exa |
| ab6a0 | 6d 70 6c 65 00 56 52 52 50 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 65 72 20 52 65 64 75 6e 64 | mple.VRRP.(Virtual.Router.Redund |
| ab6c0 | 61 6e 63 79 20 50 72 6f 74 6f 63 6f 6c 29 20 70 72 6f 76 69 64 65 73 20 61 63 74 69 76 65 2f 62 | ancy.Protocol).provides.active/b |
| ab6e0 | 61 63 6b 75 70 20 72 65 64 75 6e 64 61 6e 63 79 20 66 6f 72 20 72 6f 75 74 65 72 73 2e 20 45 76 | ackup.redundancy.for.routers..Ev |
| ab700 | 65 72 79 20 56 52 52 50 20 72 6f 75 74 65 72 20 68 61 73 20 61 20 70 68 79 73 69 63 61 6c 20 49 | ery.VRRP.router.has.a.physical.I |
| ab720 | 50 2f 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 61 20 76 69 72 74 75 61 6c 20 61 64 | P/IPv6.address,.and.a.virtual.ad |
| ab740 | 64 72 65 73 73 2e 20 4f 6e 20 73 74 61 72 74 75 70 2c 20 72 6f 75 74 65 72 73 20 65 6c 65 63 74 | dress..On.startup,.routers.elect |
| ab760 | 20 74 68 65 20 6d 61 73 74 65 72 2c 20 61 6e 64 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 | .the.master,.and.the.router.with |
| ab780 | 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 20 62 65 63 6f 6d 65 73 20 74 68 | .the.highest.priority.becomes.th |
| ab7a0 | 65 20 6d 61 73 74 65 72 20 61 6e 64 20 61 73 73 69 67 6e 73 20 74 68 65 20 76 69 72 74 75 61 6c | e.master.and.assigns.the.virtual |
| ab7c0 | 20 61 64 64 72 65 73 73 20 74 6f 20 69 74 73 20 69 6e 74 65 72 66 61 63 65 2e 20 41 6c 6c 20 72 | .address.to.its.interface..All.r |
| ab7e0 | 6f 75 74 65 72 73 20 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 69 65 73 20 62 65 63 | outers.with.lower.priorities.bec |
| ab800 | 6f 6d 65 20 62 61 63 6b 75 70 20 72 6f 75 74 65 72 73 2e 20 54 68 65 20 6d 61 73 74 65 72 20 74 | ome.backup.routers..The.master.t |
| ab820 | 68 65 6e 20 73 74 61 72 74 73 20 73 65 6e 64 69 6e 67 20 6b 65 65 70 61 6c 69 76 65 20 70 61 63 | hen.starts.sending.keepalive.pac |
| ab840 | 6b 65 74 73 20 74 6f 20 6e 6f 74 69 66 79 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 74 68 61 | kets.to.notify.other.routers.tha |
| ab860 | 74 20 69 74 27 73 20 61 76 61 69 6c 61 62 6c 65 2e 20 49 66 20 74 68 65 20 6d 61 73 74 65 72 20 | t.it's.available..If.the.master. |
| ab880 | 66 61 69 6c 73 20 61 6e 64 20 73 74 6f 70 73 20 73 65 6e 64 69 6e 67 20 6b 65 65 70 61 6c 69 76 | fails.and.stops.sending.keepaliv |
| ab8a0 | 65 20 70 61 63 6b 65 74 73 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 6e | e.packets,.the.router.with.the.n |
| ab8c0 | 65 78 74 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 20 62 65 63 6f 6d 65 73 20 74 68 65 | ext.highest.priority.becomes.the |
| ab8e0 | 20 6e 65 77 20 6d 61 73 74 65 72 20 61 6e 64 20 74 61 6b 65 73 20 6f 76 65 72 20 74 68 65 20 76 | .new.master.and.takes.over.the.v |
| ab900 | 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 2e 00 56 52 52 50 20 63 61 6e 20 75 73 65 20 74 77 6f | irtual.address..VRRP.can.use.two |
| ab920 | 20 6d 6f 64 65 73 3a 20 70 72 65 65 6d 70 74 69 76 65 20 61 6e 64 20 6e 6f 6e 2d 70 72 65 65 6d | .modes:.preemptive.and.non-preem |
| ab940 | 70 74 69 76 65 2e 20 49 6e 20 74 68 65 20 70 72 65 65 6d 70 74 69 76 65 20 6d 6f 64 65 2c 20 69 | ptive..In.the.preemptive.mode,.i |
| ab960 | 66 20 61 20 72 6f 75 74 65 72 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 | f.a.router.with.a.higher.priorit |
| ab980 | 79 20 66 61 69 6c 73 20 61 6e 64 20 74 68 65 6e 20 63 6f 6d 65 73 20 62 61 63 6b 2c 20 72 6f 75 | y.fails.and.then.comes.back,.rou |
| ab9a0 | 74 65 72 73 20 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 79 20 77 69 6c 6c 20 67 69 | ters.with.lower.priority.will.gi |
| ab9c0 | 76 65 20 75 70 20 74 68 65 69 72 20 6d 61 73 74 65 72 20 73 74 61 74 75 73 2e 20 49 6e 20 6e 6f | ve.up.their.master.status..In.no |
| ab9e0 | 6e 2d 70 72 65 65 6d 70 74 69 76 65 20 6d 6f 64 65 2c 20 74 68 65 20 6e 65 77 6c 79 20 65 6c 65 | n-preemptive.mode,.the.newly.ele |
| aba00 | 63 74 65 64 20 6d 61 73 74 65 72 20 77 69 6c 6c 20 6b 65 65 70 20 74 68 65 20 6d 61 73 74 65 72 | cted.master.will.keep.the.master |
| aba20 | 20 73 74 61 74 75 73 20 61 6e 64 20 74 68 65 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 20 | .status.and.the.virtual.address. |
| aba40 | 69 6e 64 65 66 69 6e 69 74 65 6c 79 2e 00 56 52 52 50 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 | indefinitely..VRRP.functionality |
| aba60 | 20 63 61 6e 20 62 65 20 65 78 74 65 6e 64 65 64 20 77 69 74 68 20 73 63 72 69 70 74 73 2e 20 56 | .can.be.extended.with.scripts..V |
| aba80 | 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 77 6f 20 6b 69 6e 64 73 20 6f 66 20 73 63 72 69 70 74 | yOS.supports.two.kinds.of.script |
| abaa0 | 73 3a 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 73 20 61 6e 64 20 74 72 61 6e | s:.health.check.scripts.and.tran |
| abac0 | 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 2e 20 48 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 | sition.scripts..Health.check.scr |
| abae0 | 69 70 74 73 20 65 78 65 63 75 74 65 20 63 75 73 74 6f 6d 20 63 68 65 63 6b 73 20 69 6e 20 61 64 | ipts.execute.custom.checks.in.ad |
| abb00 | 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 6d 61 73 74 65 72 20 72 6f 75 74 65 72 20 72 65 61 63 | dition.to.the.master.router.reac |
| abb20 | 68 61 62 69 6c 69 74 79 2e 20 54 72 61 6e 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 20 61 72 65 | hability..Transition.scripts.are |
| abb40 | 20 65 78 65 63 75 74 65 64 20 77 68 65 6e 20 56 52 52 50 20 73 74 61 74 65 20 63 68 61 6e 67 65 | .executed.when.VRRP.state.change |
| abb60 | 73 20 66 72 6f 6d 20 6d 61 73 74 65 72 20 74 6f 20 62 61 63 6b 75 70 20 6f 72 20 66 61 75 6c 74 | s.from.master.to.backup.or.fault |
| abb80 | 20 61 6e 64 20 76 69 63 65 20 76 65 72 73 61 20 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 | .and.vice.versa.and.can.be.used. |
| abba0 | 74 6f 20 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 63 65 72 74 61 69 6e 20 73 65 72 | to.enable.or.disable.certain.ser |
| abbc0 | 76 69 63 65 73 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e 00 56 52 52 50 20 67 72 6f 75 70 73 20 | vices,.for.example..VRRP.groups. |
| abbe0 | 61 72 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 74 68 65 20 60 60 73 65 74 20 68 69 67 68 2d | are.created.with.the.``set.high- |
| abc00 | 61 76 61 69 6c 61 62 69 6c 69 74 79 20 76 72 72 70 20 67 72 6f 75 70 20 24 47 52 4f 55 50 5f 4e | availability.vrrp.group.$GROUP_N |
| abc20 | 41 4d 45 60 60 20 63 6f 6d 6d 61 6e 64 73 2e 20 54 68 65 20 72 65 71 75 69 72 65 64 20 70 61 72 | AME``.commands..The.required.par |
| abc40 | 61 6d 65 74 65 72 73 20 61 72 65 20 69 6e 74 65 72 66 61 63 65 2c 20 76 72 69 64 2c 20 61 6e 64 | ameters.are.interface,.vrid,.and |
| abc60 | 20 61 64 64 72 65 73 73 2e 00 56 52 52 50 20 6b 65 65 70 61 6c 69 76 65 20 70 61 63 6b 65 74 73 | .address..VRRP.keepalive.packets |
| abc80 | 20 75 73 65 20 6d 75 6c 74 69 63 61 73 74 2c 20 61 6e 64 20 56 52 52 50 20 73 65 74 75 70 73 20 | .use.multicast,.and.VRRP.setups. |
| abca0 | 61 72 65 20 6c 69 6d 69 74 65 64 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 64 61 74 61 6c 69 6e 6b | are.limited.to.a.single.datalink |
| abcc0 | 20 6c 61 79 65 72 20 73 65 67 6d 65 6e 74 2e 20 59 6f 75 20 63 61 6e 20 73 65 74 75 70 20 6d 75 | .layer.segment..You.can.setup.mu |
| abce0 | 6c 74 69 70 6c 65 20 56 52 52 50 20 67 72 6f 75 70 73 20 28 61 6c 73 6f 20 63 61 6c 6c 65 64 20 | ltiple.VRRP.groups.(also.called. |
| abd00 | 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 73 29 2e 20 56 69 72 74 75 61 6c 20 72 6f 75 74 65 72 | virtual.routers)..Virtual.router |
| abd20 | 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 61 20 56 52 49 44 20 28 56 69 72 74 | s.are.identified.by.a.VRID.(Virt |
| abd40 | 75 61 6c 20 52 6f 75 74 65 72 20 49 44 65 6e 74 69 66 69 65 72 29 2e 20 49 66 20 79 6f 75 20 73 | ual.Router.IDentifier)..If.you.s |
| abd60 | 65 74 75 70 20 6d 75 6c 74 69 70 6c 65 20 67 72 6f 75 70 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 | etup.multiple.groups.on.the.same |
| abd80 | 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 69 72 20 56 52 49 44 73 20 6d 75 73 74 20 62 65 20 | .interface,.their.VRIDs.must.be. |
| abda0 | 75 6e 69 71 75 65 20 69 66 20 74 68 65 79 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 61 64 64 72 | unique.if.they.use.the.same.addr |
| abdc0 | 65 73 73 20 66 61 6d 69 6c 79 2c 20 62 75 74 20 69 74 27 73 20 70 6f 73 73 69 62 6c 65 20 28 65 | ess.family,.but.it's.possible.(e |
| abde0 | 76 65 6e 20 69 66 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 66 6f 72 20 72 65 61 64 61 | ven.if.not.recommended.for.reada |
| abe00 | 62 69 6c 69 74 79 20 72 65 61 73 6f 6e 73 29 20 74 6f 20 75 73 65 20 64 75 70 6c 69 63 61 74 65 | bility.reasons).to.use.duplicate |
| abe20 | 20 56 52 49 44 73 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 | .VRIDs.on.different.interfaces.. |
| abe40 | 56 52 52 50 20 70 72 69 6f 72 69 74 79 20 63 61 6e 20 62 65 20 73 65 74 20 77 69 74 68 20 60 60 | VRRP.priority.can.be.set.with.`` |
| abe60 | 70 72 69 6f 72 69 74 79 60 60 20 6f 70 74 69 6f 6e 3a 00 56 54 49 20 2d 20 56 69 72 74 75 61 6c | priority``.option:.VTI.-.Virtual |
| abe80 | 20 54 75 6e 6e 65 6c 20 49 6e 74 65 72 66 61 63 65 00 56 58 4c 41 4e 00 56 58 4c 41 4e 20 69 73 | .Tunnel.Interface.VXLAN.VXLAN.is |
| abea0 | 20 61 6e 20 65 76 6f 6c 75 74 69 6f 6e 20 6f 66 20 65 66 66 6f 72 74 73 20 74 6f 20 73 74 61 6e | .an.evolution.of.efforts.to.stan |
| abec0 | 64 61 72 64 69 7a 65 20 61 6e 20 6f 76 65 72 6c 61 79 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e | dardize.an.overlay.encapsulation |
| abee0 | 20 70 72 6f 74 6f 63 6f 6c 2e 20 49 74 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 73 63 61 6c | .protocol..It.increases.the.scal |
| abf00 | 61 62 69 6c 69 74 79 20 75 70 20 74 6f 20 31 36 20 6d 69 6c 6c 69 6f 6e 20 6c 6f 67 69 63 61 6c | ability.up.to.16.million.logical |
| abf20 | 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 6c 61 79 65 72 20 32 | .networks.and.allows.for.layer.2 |
| abf40 | 20 61 64 6a 61 63 65 6e 63 79 20 61 63 72 6f 73 73 20 49 50 20 6e 65 74 77 6f 72 6b 73 2e 20 4d | .adjacency.across.IP.networks..M |
| abf60 | 75 6c 74 69 63 61 73 74 20 6f 72 20 75 6e 69 63 61 73 74 20 77 69 74 68 20 68 65 61 64 2d 65 6e | ulticast.or.unicast.with.head-en |
| abf80 | 64 20 72 65 70 6c 69 63 61 74 69 6f 6e 20 28 48 45 52 29 20 69 73 20 75 73 65 64 20 74 6f 20 66 | d.replication.(HER).is.used.to.f |
| abfa0 | 6c 6f 6f 64 20 62 72 6f 61 64 63 61 73 74 2c 20 75 6e 6b 6e 6f 77 6e 20 75 6e 69 63 61 73 74 2c | lood.broadcast,.unknown.unicast, |
| abfc0 | 20 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 20 28 42 55 4d 29 20 74 72 61 66 66 69 63 2e 00 56 58 | .and.multicast.(BUM).traffic..VX |
| abfe0 | 4c 41 4e 20 73 70 65 63 69 66 69 63 20 6f 70 74 69 6f 6e 73 00 56 58 4c 41 4e 20 77 61 73 20 6f | LAN.specific.options.VXLAN.was.o |
| ac000 | 66 66 69 63 69 61 6c 6c 79 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 79 20 74 68 65 20 49 45 54 46 | fficially.documented.by.the.IETF |
| ac020 | 20 69 6e 20 3a 72 66 63 3a 60 37 33 34 38 60 2e 00 56 61 6c 69 64 20 76 61 6c 75 65 73 20 61 72 | .in.:rfc:`7348`..Valid.values.ar |
| ac040 | 65 20 30 2e 2e 32 35 35 2e 00 56 61 6c 69 64 20 76 61 6c 75 65 73 20 61 72 65 20 31 2e 2e 36 33 | e.0..255..Valid.values.are.1..63 |
| ac060 | 00 56 61 6c 75 65 00 56 61 6c 75 65 20 74 6f 20 73 65 6e 64 20 74 6f 20 52 41 44 49 55 53 20 73 | .Value.Value.to.send.to.RADIUS.s |
| ac080 | 65 72 76 65 72 20 69 6e 20 4e 41 53 2d 49 50 2d 41 64 64 72 65 73 73 20 61 74 74 72 69 62 75 74 | erver.in.NAS-IP-Address.attribut |
| ac0a0 | 65 20 61 6e 64 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 20 69 6e 20 44 4d 2f 43 6f 41 20 72 65 | e.and.to.be.matched.in.DM/CoA.re |
| ac0c0 | 71 75 65 73 74 73 2e 20 41 6c 73 6f 20 44 4d 2f 43 6f 41 20 73 65 72 76 65 72 20 77 69 6c 6c 20 | quests..Also.DM/CoA.server.will. |
| ac0e0 | 62 69 6e 64 20 74 6f 20 74 68 61 74 20 61 64 64 72 65 73 73 2e 00 56 61 6c 75 65 20 74 6f 20 73 | bind.to.that.address..Value.to.s |
| ac100 | 65 6e 64 20 74 6f 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 6e 20 4e 41 53 2d 49 64 65 6e | end.to.RADIUS.server.in.NAS-Iden |
| ac120 | 74 69 66 69 65 72 20 61 74 74 72 69 62 75 74 65 20 61 6e 64 20 74 6f 20 62 65 20 6d 61 74 63 68 | tifier.attribute.and.to.be.match |
| ac140 | 65 64 20 69 6e 20 44 4d 2f 43 6f 41 20 72 65 71 75 65 73 74 73 2e 00 56 65 72 69 66 69 63 61 74 | ed.in.DM/CoA.requests..Verificat |
| ac160 | 69 6f 6e 00 56 65 72 69 66 69 63 61 74 69 6f 6e 3a 00 56 65 72 69 66 79 20 63 6f 6e 66 69 67 75 | ion.Verification:.Verify.configu |
| ac180 | 72 61 74 69 6f 6e 20 63 68 61 6e 67 65 73 20 68 61 76 65 20 62 65 65 6e 20 72 65 70 6c 69 63 61 | ration.changes.have.been.replica |
| ac1a0 | 74 65 64 20 74 6f 20 52 6f 75 74 65 72 20 42 00 56 65 72 69 66 79 20 74 68 61 74 20 63 6f 6e 6e | ted.to.Router.B.Verify.that.conn |
| ac1c0 | 65 63 74 69 6f 6e 73 20 61 72 65 20 68 69 74 74 69 6e 67 20 74 68 65 20 72 75 6c 65 20 6f 6e 20 | ections.are.hitting.the.rule.on. |
| ac1e0 | 62 6f 74 68 20 73 69 64 65 73 3a 00 56 65 72 73 69 6f 6e 00 56 69 72 74 75 61 6c 20 45 74 68 65 | both.sides:.Version.Virtual.Ethe |
| ac200 | 72 6e 65 74 00 56 69 72 74 75 61 6c 20 53 65 72 76 65 72 20 61 6c 6c 6f 77 73 20 74 6f 20 4c 6f | rnet.Virtual.Server.allows.to.Lo |
| ac220 | 61 64 2d 62 61 6c 61 6e 63 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 76 | ad-balance.traffic.destination.v |
| ac240 | 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 3a 70 6f 72 74 20 62 65 74 77 65 65 6e 20 73 65 76 65 | irtual-address:port.between.seve |
| ac260 | 72 61 6c 20 72 65 61 6c 20 73 65 72 76 65 72 73 2e 00 56 69 72 74 75 61 6c 2d 73 65 72 76 65 72 | ral.real.servers..Virtual-server |
| ac280 | 00 56 69 72 74 75 61 6c 2d 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 | .Virtual-server.can.be.configure |
| ac2a0 | 64 20 77 69 74 68 20 56 52 52 50 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 20 6f 72 20 77 | d.with.VRRP.virtual.address.or.w |
| ac2c0 | 69 74 68 6f 75 74 20 56 52 52 50 2e 00 56 6f 6c 75 6d 65 20 69 73 20 65 69 74 68 65 72 20 6d 6f | ithout.VRRP..Volume.is.either.mo |
| ac2e0 | 75 6e 74 65 64 20 61 73 20 72 77 20 28 72 65 61 64 2d 77 72 69 74 65 20 2d 20 64 65 66 61 75 6c | unted.as.rw.(read-write.-.defaul |
| ac300 | 74 29 20 6f 72 20 72 6f 20 28 72 65 61 64 2d 6f 6e 6c 79 29 00 56 79 4f 53 20 31 2e 31 20 73 75 | t).or.ro.(read-only).VyOS.1.1.su |
| ac320 | 70 70 6f 72 74 65 64 20 6c 6f 67 69 6e 20 61 73 20 75 73 65 72 20 60 60 72 6f 6f 74 60 60 2e 20 | pported.login.as.user.``root``.. |
| ac340 | 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 72 65 6d 6f 76 65 64 20 64 75 65 20 74 6f 20 74 69 67 | This.has.been.removed.due.to.tig |
| ac360 | 68 74 65 72 20 73 65 63 75 72 69 74 79 20 69 6e 20 56 79 4f 53 20 31 2e 32 2e 00 56 79 4f 53 20 | hter.security.in.VyOS.1.2..VyOS. |
| ac380 | 31 2e 33 20 28 65 71 75 75 6c 65 75 73 29 20 73 75 70 70 6f 72 74 73 20 44 48 43 50 76 36 2d 50 | 1.3.(equuleus).supports.DHCPv6-P |
| ac3a0 | 44 20 28 3a 72 66 63 3a 60 33 36 33 33 60 29 2e 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 | D.(:rfc:`3633`)..DHCPv6.Prefix.D |
| ac3c0 | 65 6c 65 67 61 74 69 6f 6e 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 6d 6f 73 74 20 49 | elegation.is.supported.by.most.I |
| ac3e0 | 53 50 73 20 77 68 6f 20 70 72 6f 76 69 64 65 20 6e 61 74 69 76 65 20 49 50 76 36 20 66 6f 72 20 | SPs.who.provide.native.IPv6.for. |
| ac400 | 63 6f 6e 73 75 6d 65 72 73 20 6f 6e 20 66 69 78 65 64 20 6e 65 74 77 6f 72 6b 73 2e 00 56 79 4f | consumers.on.fixed.networks..VyO |
| ac420 | 53 20 31 2e 34 20 28 73 61 67 69 74 74 61 29 20 69 6e 74 72 6f 64 75 63 65 64 20 64 79 6e 61 6d | S.1.4.(sagitta).introduced.dynam |
| ac440 | 69 63 20 72 6f 75 74 69 6e 67 20 73 75 70 70 6f 72 74 20 66 6f 72 20 56 52 46 73 2e 00 56 79 4f | ic.routing.support.for.VRFs..VyO |
| ac460 | 53 20 31 2e 34 20 63 68 61 6e 67 65 64 20 74 68 65 20 77 61 79 20 69 6e 20 68 6f 77 20 65 6e 63 | S.1.4.changed.the.way.in.how.enc |
| ac480 | 72 79 70 74 69 6f 6e 20 6b 65 79 73 20 6f 72 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 | ryption.keys.or.certificates.are |
| ac4a0 | 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 49 6e 20 74 68 65 20 70 72 | .stored.on.the.system..In.the.pr |
| ac4c0 | 65 20 56 79 4f 53 20 31 2e 34 20 65 72 61 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 67 6f 74 | e.VyOS.1.4.era,.certificates.got |
| ac4e0 | 20 73 74 6f 72 65 64 20 75 6e 64 65 72 20 2f 63 6f 6e 66 69 67 20 61 6e 64 20 65 76 65 72 79 20 | .stored.under./config.and.every. |
| ac500 | 73 65 72 76 69 63 65 20 72 65 66 65 72 65 6e 63 65 64 20 61 20 66 69 6c 65 2e 20 54 68 61 74 20 | service.referenced.a.file..That. |
| ac520 | 6d 61 64 65 20 63 6f 70 79 69 6e 67 20 61 20 72 75 6e 6e 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 | made.copying.a.running.configura |
| ac540 | 74 69 6f 6e 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 41 20 74 6f 20 73 79 73 74 65 6d 20 42 20 61 | tion.from.system.A.to.system.B.a |
| ac560 | 20 62 69 74 20 68 61 72 64 65 72 2c 20 61 73 20 79 6f 75 20 68 61 64 20 74 6f 20 63 6f 70 79 20 | .bit.harder,.as.you.had.to.copy. |
| ac580 | 74 68 65 20 66 69 6c 65 73 20 61 6e 64 20 74 68 65 69 72 20 70 65 72 6d 69 73 73 69 6f 6e 73 20 | the.files.and.their.permissions. |
| ac5a0 | 62 79 20 68 61 6e 64 2e 00 56 79 4f 53 20 31 2e 34 20 63 68 61 6e 67 65 64 20 74 68 65 20 77 61 | by.hand..VyOS.1.4.changed.the.wa |
| ac5c0 | 79 20 69 6e 20 68 6f 77 20 65 6e 63 72 79 74 69 6f 6e 20 6b 65 79 73 20 6f 72 20 63 65 72 74 69 | y.in.how.encrytion.keys.or.certi |
| ac5e0 | 66 69 63 61 74 65 73 20 61 72 65 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d | ficates.are.stored.on.the.system |
| ac600 | 2e 20 49 6e 20 74 68 65 20 70 72 65 20 56 79 4f 53 20 31 2e 34 20 65 72 61 2c 20 63 65 72 74 69 | ..In.the.pre.VyOS.1.4.era,.certi |
| ac620 | 66 69 63 61 74 65 73 20 67 6f 74 20 73 74 6f 72 65 64 20 75 6e 64 65 72 20 2f 63 6f 6e 66 69 67 | ficates.got.stored.under./config |
| ac640 | 20 61 6e 64 20 65 76 65 72 79 20 73 65 72 76 69 63 65 20 72 65 66 65 72 65 6e 63 65 64 20 61 20 | .and.every.service.referenced.a. |
| ac660 | 66 69 6c 65 2e 20 54 68 61 74 20 6d 61 64 65 20 63 6f 70 79 69 6e 67 20 61 20 72 75 6e 6e 69 6e | file..That.made.copying.a.runnin |
| ac680 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 41 20 74 6f | g.configuration.from.system.A.to |
| ac6a0 | 20 73 79 73 74 65 6d 20 42 20 61 20 62 69 74 20 68 61 72 64 65 72 2c 20 61 73 20 79 6f 75 20 68 | .system.B.a.bit.harder,.as.you.h |
| ac6c0 | 61 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 66 69 6c 65 73 20 61 6e 64 20 74 68 65 69 72 20 70 | ad.to.copy.the.files.and.their.p |
| ac6e0 | 65 72 6d 69 73 73 69 6f 6e 73 20 62 79 20 68 61 6e 64 2e 00 56 79 4f 53 20 31 2e 34 20 75 73 65 | ermissions.by.hand..VyOS.1.4.use |
| ac700 | 73 20 63 68 72 6f 6e 79 20 69 6e 73 74 65 61 64 20 6f 66 20 6e 74 70 64 20 28 73 65 65 20 3a 76 | s.chrony.instead.of.ntpd.(see.:v |
| ac720 | 79 74 61 73 6b 3a 60 54 33 30 30 38 60 29 20 77 68 69 63 68 20 77 69 6c 6c 20 6e 6f 20 6c 6f 6e | ytask:`T3008`).which.will.no.lon |
| ac740 | 67 65 72 20 61 63 63 65 70 74 20 61 6e 6f 6e 79 6d 6f 75 73 20 4e 54 50 20 72 65 71 75 65 73 74 | ger.accept.anonymous.NTP.request |
| ac760 | 73 20 61 73 20 69 6e 20 56 79 4f 53 20 31 2e 33 2e 20 41 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 | s.as.in.VyOS.1.3..All.configurat |
| ac780 | 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 6d 69 67 72 61 74 65 64 20 74 6f 20 6b 65 65 70 20 74 68 | ions.will.be.migrated.to.keep.th |
| ac7a0 | 65 20 61 6e 6f 6e 79 6d 6f 75 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 46 6f 72 20 6e | e.anonymous.functionality..For.n |
| ac7c0 | 65 77 20 73 65 74 75 70 73 20 69 66 20 79 6f 75 20 68 61 76 65 20 63 6c 69 65 6e 74 73 20 75 73 | ew.setups.if.you.have.clients.us |
| ac7e0 | 69 6e 67 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 61 73 20 4e 54 | ing.your.VyOS.installation.as.NT |
| ac800 | 50 20 73 65 72 76 65 72 2c 20 79 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 74 68 65 20 60 | P.server,.you.must.specify.the.` |
| ac820 | 61 6c 6c 6f 77 2d 63 6c 69 65 6e 74 60 20 64 69 72 65 63 74 69 76 65 2e 00 56 79 4f 53 20 41 72 | allow-client`.directive..VyOS.Ar |
| ac840 | 69 73 74 61 20 45 4f 53 20 73 65 74 75 70 00 56 79 4f 53 20 45 53 50 20 67 72 6f 75 70 20 68 61 | ista.EOS.setup.VyOS.ESP.group.ha |
| ac860 | 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f 6e 73 3a 00 56 79 4f 53 20 46 69 65 6c 64 00 56 | s.the.next.options:.VyOS.Field.V |
| ac880 | 79 4f 53 20 49 4b 45 20 67 72 6f 75 70 20 68 61 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f | yOS.IKE.group.has.the.next.optio |
| ac8a0 | 6e 73 3a 00 56 79 4f 53 20 4d 49 42 73 00 56 79 4f 53 20 4e 41 54 36 36 20 44 48 43 50 76 36 20 | ns:.VyOS.MIBs.VyOS.NAT66.DHCPv6. |
| ac8c0 | 75 73 69 6e 67 20 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 00 56 79 4f 53 20 4e 41 54 | using.a.dummy.interface.VyOS.NAT |
| ac8e0 | 36 36 20 53 69 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 65 00 56 79 4f 53 20 4e 65 74 77 6f 72 6b | 66.Simple.Configure.VyOS.Network |
| ac900 | 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 20 65 6d 75 6c 61 74 65 73 20 74 68 65 20 63 6f | .Emulator.policy.emulates.the.co |
| ac920 | 6e 64 69 74 69 6f 6e 73 20 79 6f 75 20 63 61 6e 20 73 75 66 66 65 72 20 69 6e 20 61 20 72 65 61 | nditions.you.can.suffer.in.a.rea |
| ac940 | 6c 20 6e 65 74 77 6f 72 6b 2e 20 59 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 63 | l.network..You.will.be.able.to.c |
| ac960 | 6f 6e 66 69 67 75 72 65 20 74 68 69 6e 67 73 20 6c 69 6b 65 20 72 61 74 65 2c 20 62 75 72 73 74 | onfigure.things.like.rate,.burst |
| ac980 | 2c 20 64 65 6c 61 79 2c 20 70 61 63 6b 65 74 20 6c 6f 73 73 2c 20 70 61 63 6b 65 74 20 63 6f 72 | ,.delay,.packet.loss,.packet.cor |
| ac9a0 | 72 75 70 74 69 6f 6e 20 6f 72 20 70 61 63 6b 65 74 20 72 65 6f 72 64 65 72 69 6e 67 2e 00 56 79 | ruption.or.packet.reordering..Vy |
| ac9c0 | 4f 53 20 4f 70 74 69 6f 6e 00 56 79 4f 53 20 50 6f 6c 69 63 79 2d 42 61 73 65 64 20 52 6f 75 74 | OS.Option.VyOS.Policy-Based.Rout |
| ac9e0 | 69 6e 67 20 28 50 42 52 29 20 77 6f 72 6b 73 20 62 79 20 6d 61 74 63 68 69 6e 67 20 73 6f 75 72 | ing.(PBR).works.by.matching.sour |
| aca00 | 63 65 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 73 20 61 6e 64 20 66 6f 72 77 61 72 64 | ce.IP.address.ranges.and.forward |
| aca20 | 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 75 73 69 6e 67 20 64 69 66 66 65 72 65 6e 74 20 | ing.the.traffic.using.different. |
| aca40 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 2e 00 56 79 4f 53 20 53 4e 4d 50 20 73 75 70 70 6f 72 | routing.tables..VyOS.SNMP.suppor |
| aca60 | 74 73 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 56 79 4f 53 20 61 6c 73 6f | ts.both.IPv4.and.IPv6..VyOS.also |
| aca80 | 20 63 6f 6d 65 73 20 77 69 74 68 20 61 20 62 75 69 6c 64 20 69 6e 20 53 53 54 50 20 73 65 72 76 | .comes.with.a.build.in.SSTP.serv |
| acaa0 | 65 72 2c 20 73 65 65 20 3a 72 65 66 3a 60 73 73 74 70 60 2e 00 56 79 4f 53 20 61 6c 73 6f 20 70 | er,.see.:ref:`sstp`..VyOS.also.p |
| acac0 | 72 6f 76 69 64 65 73 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c | rovides.DHCPv6.server.functional |
| acae0 | 69 74 79 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 74 68 69 73 20 73 | ity.which.is.described.in.this.s |
| acb00 | 65 63 74 69 6f 6e 2e 00 56 79 4f 53 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 28 63 75 72 72 | ection..VyOS.also.supports.(curr |
| acb20 | 65 6e 74 6c 79 29 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 6f 66 20 61 75 | ently).two.different.modes.of.au |
| acb40 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 6c 6f 63 61 6c 20 61 6e 64 20 52 41 44 49 55 53 2e 20 | thentication,.local.and.RADIUS.. |
| acb60 | 54 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 6f 63 61 6c 20 75 73 65 72 20 6e 61 6d 65 64 | To.create.a.new.local.user.named |
| acb80 | 20 60 60 76 79 6f 73 60 60 20 77 69 74 68 20 70 61 73 73 77 6f 72 64 20 60 60 76 79 6f 73 60 60 | .``vyos``.with.password.``vyos`` |
| acba0 | 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f | .use.the.following.commands..VyO |
| acbc0 | 53 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f | S.also.supports.two.different.mo |
| acbe0 | 64 65 73 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 6c 6f 63 61 6c 20 61 6e 64 | des.of.authentication,.local.and |
| acc00 | 20 52 41 44 49 55 53 2e 20 54 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 6f 63 61 6c 20 75 | .RADIUS..To.create.a.new.local.u |
| acc20 | 73 65 72 20 6e 61 6d 65 64 20 22 76 79 6f 73 22 20 77 69 74 68 20 61 20 70 61 73 73 77 6f 72 64 | ser.named."vyos".with.a.password |
| acc40 | 20 6f 66 20 22 76 79 6f 73 22 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d | .of."vyos".use.the.following.com |
| acc60 | 6d 61 6e 64 73 2e 00 56 79 4f 53 20 63 61 6e 20 61 6c 73 6f 20 72 75 6e 20 69 6e 20 44 4d 56 50 | mands..VyOS.can.also.run.in.DMVP |
| acc80 | 4e 20 73 70 6f 6b 65 20 6d 6f 64 65 2e 00 56 79 4f 53 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 | N.spoke.mode..VyOS.can.be.config |
| acca0 | 75 72 65 64 20 74 6f 20 74 72 61 63 6b 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 75 73 69 6e 67 20 | ured.to.track.connections.using. |
| accc0 | 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 | the.connection.tracking.subsyste |
| acce0 | 6d 2e 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 62 65 63 6f 6d 65 73 20 6f | m..Connection.tracking.becomes.o |
| acd00 | 70 65 72 61 74 69 6f 6e 61 6c 20 6f 6e 63 65 20 65 69 74 68 65 72 20 73 74 61 74 65 66 75 6c 20 | perational.once.either.stateful. |
| acd20 | 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 | firewall.or.NAT.is.configured..V |
| acd40 | 79 4f 53 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 61 63 74 20 61 73 20 61 6e 20 4f 70 65 6e 56 | yOS.can.not.only.act.as.an.OpenV |
| acd60 | 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6f 72 20 73 65 72 76 65 72 20 66 6f 72 20 6d 75 | PN.site-to-site.or.server.for.mu |
| acd80 | 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 | ltiple.clients.but.you.can.also. |
| acda0 | 63 6f 6e 66 69 67 75 72 65 20 61 6e 79 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 | configure.any.VyOS.OpenVPN.inter |
| acdc0 | 66 61 63 65 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 20 74 68 61 74 20 63 | face.as.an.OpenVPN.client.that.c |
| acde0 | 6f 6e 6e 65 63 74 73 20 74 6f 20 61 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 | onnects.to.a.VyOS.OpenVPN.server |
| ace00 | 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 2e 00 56 79 | .or.any.other.OpenVPN.server..Vy |
| ace20 | 4f 53 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 61 63 74 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 | OS.can.not.only.act.as.an.OpenVP |
| ace40 | 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6f 72 20 73 65 72 76 65 72 20 66 6f 72 20 6d 75 6c | N.site-to-site.or.server.for.mul |
| ace60 | 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 20 63 61 6e 20 69 6e 64 65 65 64 20 61 6c | tiple.clients..You.can.indeed.al |
| ace80 | 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 79 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 69 6e | so.configure.any.VyOS.OpenVPN.in |
| acea0 | 74 65 72 66 61 63 65 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 20 63 6f 6e | terface.as.an.OpenVPN.client.con |
| acec0 | 6e 65 63 74 69 6e 67 20 74 6f 20 61 20 56 79 4f 53 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 | necting.to.a.VyOS.OpenVPN.server |
| acee0 | 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 2e 00 56 79 | .or.any.other.OpenVPN.server..Vy |
| acf00 | 4f 53 20 64 65 66 61 75 6c 74 20 77 69 6c 6c 20 62 65 20 60 61 75 74 6f 60 2e 00 56 79 4f 53 20 | OS.default.will.be.`auto`..VyOS. |
| acf20 | 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 | does.not.have.a.special.command. |
| acf40 | 74 6f 20 73 74 61 72 74 20 74 68 65 20 42 61 62 65 6c 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 | to.start.the.Babel.process..The. |
| acf60 | 42 61 62 65 6c 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 | Babel.process.starts.when.the.fi |
| acf80 | 72 73 74 20 42 61 62 65 6c 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 | rst.Babel.enabled.interface.is.c |
| acfa0 | 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 | onfigured..VyOS.does.not.have.a. |
| acfc0 | 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 4f 53 50 | special.command.to.start.the.OSP |
| acfe0 | 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 20 73 74 61 72 | F.process..The.OSPF.process.star |
| ad000 | 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 6f 73 70 66 20 65 6e 61 62 6c 65 64 20 69 | ts.when.the.first.ospf.enabled.i |
| ad020 | 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 64 6f 65 | nterface.is.configured..VyOS.doe |
| ad040 | 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | s.not.have.a.special.command.to. |
| ad060 | 73 74 61 72 74 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 4f 53 | start.the.OSPFv3.process..The.OS |
| ad080 | 50 46 76 33 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 | PFv3.process.starts.when.the.fir |
| ad0a0 | 73 74 20 6f 73 70 66 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e | st.ospf.enabled.interface.is.con |
| ad0c0 | 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 66 61 63 69 6c 69 74 61 74 65 73 20 49 50 20 4d 75 6c | figured..VyOS.facilitates.IP.Mul |
| ad0e0 | 74 69 63 61 73 74 20 62 79 20 73 75 70 70 6f 72 74 69 6e 67 20 2a 2a 50 49 4d 20 53 70 61 72 73 | ticast.by.supporting.**PIM.Spars |
| ad100 | 65 20 4d 6f 64 65 2a 2a 2c 20 2a 2a 49 47 4d 50 2a 2a 20 61 6e 64 20 2a 2a 49 47 4d 50 2d 50 72 | e.Mode**,.**IGMP**.and.**IGMP-Pr |
| ad120 | 6f 78 79 2a 2a 2e 00 56 79 4f 53 20 66 61 63 69 6c 69 74 61 74 65 73 20 49 50 76 36 20 4d 75 6c | oxy**..VyOS.facilitates.IPv6.Mul |
| ad140 | 74 69 63 61 73 74 20 62 79 20 73 75 70 70 6f 72 74 69 6e 67 20 2a 2a 50 49 4d 76 36 2a 2a 20 61 | ticast.by.supporting.**PIMv6**.a |
| ad160 | 6e 64 20 2a 2a 4d 4c 44 2a 2a 2e 00 56 79 4f 53 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 46 61 | nd.**MLD**..VyOS.includes.the.Fa |
| ad180 | 73 74 4e 65 74 4d 6f 6e 20 43 6f 6d 6d 75 6e 69 74 79 20 45 64 69 74 69 6f 6e 2e 00 56 79 4f 53 | stNetMon.Community.Edition..VyOS |
| ad1a0 | 20 69 73 20 61 62 6c 65 20 74 6f 20 75 70 64 61 74 65 20 61 20 72 65 6d 6f 74 65 20 44 4e 53 20 | .is.able.to.update.a.remote.DNS. |
| ad1c0 | 72 65 63 6f 72 64 20 77 68 65 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 67 65 74 73 20 61 20 | record.when.an.interface.gets.a. |
| ad1e0 | 6e 65 77 20 49 50 20 61 64 64 72 65 73 73 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 64 6f 20 73 | new.IP.address..In.order.to.do.s |
| ad200 | 6f 2c 20 56 79 4f 53 20 69 6e 63 6c 75 64 65 73 20 64 64 63 6c 69 65 6e 74 5f 2c 20 61 20 50 65 | o,.VyOS.includes.ddclient_,.a.Pe |
| ad220 | 72 6c 20 73 63 72 69 70 74 20 77 72 69 74 74 65 6e 20 66 6f 72 20 74 68 69 73 20 6f 6e 6c 79 20 | rl.script.written.for.this.only. |
| ad240 | 6f 6e 65 20 70 75 72 70 6f 73 65 2e 00 56 79 4f 53 20 69 73 20 61 6c 73 6f 20 61 62 6c 65 20 74 | one.purpose..VyOS.is.also.able.t |
| ad260 | 6f 20 75 73 65 20 61 6e 79 20 73 65 72 76 69 63 65 20 72 65 6c 79 69 6e 67 20 6f 6e 20 70 72 6f | o.use.any.service.relying.on.pro |
| ad280 | 74 6f 63 6f 6c 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 64 64 63 6c 69 65 6e 74 2e 00 56 79 | tocols.supported.by.ddclient..Vy |
| ad2a0 | 4f 53 20 69 74 73 65 6c 66 20 73 75 70 70 6f 72 74 73 20 53 4e 4d 50 76 32 5f 20 28 76 65 72 73 | OS.itself.supports.SNMPv2_.(vers |
| ad2c0 | 69 6f 6e 20 32 29 20 61 6e 64 20 53 4e 4d 50 76 33 5f 20 28 76 65 72 73 69 6f 6e 20 33 29 20 77 | ion.2).and.SNMPv3_.(version.3).w |
| ad2e0 | 68 65 72 65 20 74 68 65 20 6c 61 74 65 72 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 62 65 | here.the.later.is.recommended.be |
| ad300 | 63 61 75 73 65 20 6f 66 20 69 6d 70 72 6f 76 65 64 20 73 65 63 75 72 69 74 79 20 28 6f 70 74 69 | cause.of.improved.security.(opti |
| ad320 | 6f 6e 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 65 6e 63 72 79 70 74 69 | onal.authentication.and.encrypti |
| ad340 | 6f 6e 29 2e 00 56 79 4f 53 20 6c 65 74 73 20 79 6f 75 20 63 6f 6e 74 72 6f 6c 20 74 72 61 66 66 | on)..VyOS.lets.you.control.traff |
| ad360 | 69 63 20 69 6e 20 6d 61 6e 79 20 64 69 66 66 65 72 65 6e 74 20 77 61 79 73 2c 20 68 65 72 65 20 | ic.in.many.different.ways,.here. |
| ad380 | 77 65 20 77 69 6c 6c 20 63 6f 76 65 72 20 65 76 65 72 79 20 70 6f 73 73 69 62 69 6c 69 74 79 2e | we.will.cover.every.possibility. |
| ad3a0 | 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 61 73 20 6d 61 6e 79 20 70 6f 6c 69 63 | .You.can.configure.as.many.polic |
| ad3c0 | 69 65 73 20 61 73 20 79 6f 75 20 77 61 6e 74 2c 20 62 75 74 20 79 6f 75 20 77 69 6c 6c 20 6f 6e | ies.as.you.want,.but.you.will.on |
| ad3e0 | 6c 79 20 62 65 20 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 6f 6e 65 20 70 6f 6c 69 63 79 20 70 | ly.be.able.to.apply.one.policy.p |
| ad400 | 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 64 69 72 65 63 74 69 6f 6e 20 28 69 6e 62 6f | er.interface.and.direction.(inbo |
| ad420 | 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e 64 29 2e 00 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 | und.or.outbound)..VyOS.makes.use |
| ad440 | 20 6f 66 20 3a 61 62 62 72 3a 60 46 52 52 20 28 46 72 65 65 20 52 61 6e 67 65 20 52 6f 75 74 69 | .of.:abbr:`FRR.(Free.Range.Routi |
| ad460 | 6e 67 29 60 20 61 6e 64 20 77 65 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 74 68 61 6e 6b 20 | ng)`.and.we.would.like.to.thank. |
| ad480 | 74 68 65 6d 20 66 6f 72 20 74 68 65 69 72 20 65 66 66 6f 72 74 21 00 56 79 4f 53 20 6d 61 6b 65 | them.for.their.effort!.VyOS.make |
| ad4a0 | 73 20 75 73 65 20 6f 66 20 4c 69 6e 75 78 20 60 6e 65 74 66 69 6c 74 65 72 20 3c 68 74 74 70 73 | s.use.of.Linux.`netfilter.<https |
| ad4c0 | 3a 2f 2f 6e 65 74 66 69 6c 74 65 72 2e 6f 72 67 2f 3e 60 5f 20 66 6f 72 20 70 61 63 6b 65 74 20 | ://netfilter.org/>`_.for.packet. |
| ad4e0 | 66 69 6c 74 65 72 69 6e 67 2e 00 56 79 4f 53 20 6e 6f 74 20 6f 6e 6c 79 20 63 61 6e 20 6e 6f 77 | filtering..VyOS.not.only.can.now |
| ad500 | 20 6d 61 6e 61 67 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 69 73 73 75 65 64 20 62 79 20 33 | .manage.certificates.issued.by.3 |
| ad520 | 72 64 20 70 61 72 74 79 20 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 69 65 73 | rd.party.Certificate.Authorities |
| ad540 | 2c 20 69 74 20 63 61 6e 20 61 6c 73 6f 20 61 63 74 20 61 73 20 61 20 43 41 20 6f 6e 20 69 74 73 | ,.it.can.also.act.as.a.CA.on.its |
| ad560 | 20 6f 77 6e 2e 20 59 6f 75 20 63 61 6e 20 63 72 65 61 74 65 20 79 6f 75 72 20 6f 77 6e 20 72 6f | .own..You.can.create.your.own.ro |
| ad580 | 6f 74 20 43 41 20 61 6e 64 20 73 69 67 6e 20 6b 65 79 73 20 77 69 74 68 20 69 74 20 62 79 20 6d | ot.CA.and.sign.keys.with.it.by.m |
| ad5a0 | 61 6b 69 6e 67 20 75 73 65 20 6f 66 20 73 6f 6d 65 20 73 69 6d 70 6c 65 20 6f 70 2d 6d 6f 64 65 | aking.use.of.some.simple.op-mode |
| ad5c0 | 20 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f 53 20 6e 6f 77 20 61 6c 73 6f 20 68 61 73 20 74 68 65 | .commands..VyOS.now.also.has.the |
| ad5e0 | 20 61 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 20 43 41 73 2c 20 6b 65 79 73 2c 20 44 69 | .ability.to.create.CAs,.keys,.Di |
| ad600 | 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 61 6e 64 20 6f 74 68 65 72 20 6b 65 79 70 61 69 72 73 20 | ffie-Hellman.and.other.keypairs. |
| ad620 | 66 72 6f 6d 20 61 6e 20 65 61 73 79 20 74 6f 20 61 63 63 65 73 73 20 6f 70 65 72 61 74 69 6f 6e | from.an.easy.to.access.operation |
| ad640 | 61 6c 20 6c 65 76 65 6c 20 63 6f 6d 6d 61 6e 64 2e 00 56 79 4f 53 20 6f 70 65 72 61 74 69 6f 6e | al.level.command..VyOS.operation |
| ad660 | 61 6c 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 6e 6f 74 20 6f 6e 6c 79 20 61 76 | al.mode.commands.are.not.only.av |
| ad680 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 67 65 6e 65 72 61 74 69 6e 67 20 6b 65 79 73 20 62 75 74 20 | ailable.for.generating.keys.but. |
| ad6a0 | 61 6c 73 6f 20 74 6f 20 64 69 73 70 6c 61 79 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 | also.to.display.them..VyOS.provi |
| ad6c0 | 64 65 20 61 6e 20 48 54 54 50 20 41 50 49 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 69 74 20 74 | de.an.HTTP.API..You.can.use.it.t |
| ad6e0 | 6f 20 65 78 65 63 75 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2c 20 75 70 64 61 | o.execute.op-mode.commands,.upda |
| ad700 | 74 65 20 56 79 4f 53 2c 20 73 65 74 20 6f 72 20 64 65 6c 65 74 65 20 63 6f 6e 66 69 67 2e 00 56 | te.VyOS,.set.or.delete.config..V |
| ad720 | 79 4f 53 20 70 72 6f 76 69 64 65 73 20 44 4e 53 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 | yOS.provides.DNS.infrastructure. |
| ad740 | 66 6f 72 20 73 6d 61 6c 6c 20 6e 65 74 77 6f 72 6b 73 2e 20 49 74 20 69 73 20 64 65 73 69 67 6e | for.small.networks..It.is.design |
| ad760 | 65 64 20 74 6f 20 62 65 20 6c 69 67 68 74 77 65 69 67 68 74 20 61 6e 64 20 68 61 76 65 20 61 20 | ed.to.be.lightweight.and.have.a. |
| ad780 | 73 6d 61 6c 6c 20 66 6f 6f 74 70 72 69 6e 74 2c 20 73 75 69 74 61 62 6c 65 20 66 6f 72 20 72 65 | small.footprint,.suitable.for.re |
| ad7a0 | 73 6f 75 72 63 65 20 63 6f 6e 73 74 72 61 69 6e 65 64 20 72 6f 75 74 65 72 73 20 61 6e 64 20 66 | source.constrained.routers.and.f |
| ad7c0 | 69 72 65 77 61 6c 6c 73 2e 20 46 6f 72 20 74 68 69 73 20 77 65 20 75 74 69 6c 69 7a 65 20 50 6f | irewalls..For.this.we.utilize.Po |
| ad7e0 | 77 65 72 44 4e 53 20 72 65 63 75 72 73 6f 72 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 48 | werDNS.recursor..VyOS.provides.H |
| ad800 | 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 73 75 70 70 6f 72 74 20 66 6f 72 20 44 48 43 | igh.Availability.support.for.DHC |
| ad820 | 50 20 73 65 72 76 65 72 2e 20 44 48 43 50 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 | P.server..DHCP.High.Availability |
| ad840 | 20 63 61 6e 20 61 63 74 20 69 6e 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 3a | .can.act.in.two.different.modes: |
| ad860 | 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 61 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 6e 65 | .VyOS.provides.a.command.to.gene |
| ad880 | 72 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 75 73 65 64 20 62 | rate.a.connection.profile.used.b |
| ad8a0 | 79 20 57 69 6e 64 6f 77 73 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 77 69 6c 6c 20 63 6f 6e 6e | y.Windows.clients.that.will.conn |
| ad8c0 | 65 63 74 20 74 6f 20 74 68 65 20 22 72 77 22 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 6f 75 | ect.to.the."rw".connection.on.ou |
| ad8e0 | 72 20 56 79 4f 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c | r.VyOS.server..VyOS.provides.pol |
| ad900 | 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 | icies.commands.exclusively.for.B |
| ad920 | 47 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c | GP.traffic.filtering.and.manipul |
| ad940 | 61 74 69 6f 6e 3a 20 2a 2a 61 73 2d 70 61 74 68 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f | ation:.**as-path-list**.is.one.o |
| ad960 | 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 | f.them..VyOS.provides.policies.c |
| ad980 | 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 | ommands.exclusively.for.BGP.traf |
| ad9a0 | 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 | fic.filtering.and.manipulation:. |
| ad9c0 | 2a 2a 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 | **community-list**.is.one.of.the |
| ad9e0 | 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e | m..VyOS.provides.policies.comman |
| ada00 | 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 | ds.exclusively.for.BGP.traffic.f |
| ada20 | 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 65 78 74 | iltering.and.manipulation:.**ext |
| ada40 | 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e | community-list**.is.one.of.them. |
| ada60 | 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 | .VyOS.provides.policies.commands |
| ada80 | 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 69 6c | .exclusively.for.BGP.traffic.fil |
| adaa0 | 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 6c 61 72 67 65 | tering.and.manipulation:.**large |
| adac0 | 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d | -community-list**.is.one.of.them |
| adae0 | 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 73 6f 6d 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c | ..VyOS.provides.some.operational |
| adb00 | 20 63 6f 6d 6d 61 6e 64 73 20 6f 6e 20 4f 70 65 6e 56 50 4e 2e 00 56 79 4f 53 20 70 72 6f 76 69 | .commands.on.OpenVPN..VyOS.provi |
| adb20 | 64 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 2e 20 44 | des.support.for.DHCP.failover..D |
| adb40 | 48 43 50 20 66 61 69 6c 6f 76 65 72 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | HCP.failover.must.be.configured. |
| adb60 | 65 78 70 6c 69 63 69 74 6c 79 20 62 79 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 61 74 | explicitly.by.the.following.stat |
| adb80 | 65 6d 65 6e 74 73 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 74 68 69 73 20 75 74 69 6c 69 | ements..VyOS.provides.this.utili |
| adba0 | 74 79 20 74 6f 20 69 6d 70 6f 72 74 20 65 78 69 73 74 69 6e 67 20 63 65 72 74 69 66 69 63 61 74 | ty.to.import.existing.certificat |
| adbc0 | 65 73 2f 6b 65 79 20 66 69 6c 65 73 20 64 69 72 65 63 74 6c 79 20 69 6e 74 6f 20 50 4b 49 20 66 | es/key.files.directly.into.PKI.f |
| adbe0 | 72 6f 6d 20 6f 70 2d 6d 6f 64 65 2e 20 50 72 65 76 69 6f 75 73 20 74 6f 20 56 79 4f 53 20 31 2e | rom.op-mode..Previous.to.VyOS.1. |
| adc00 | 34 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 77 65 72 65 20 73 74 6f 72 65 64 20 75 6e 64 65 | 4,.certificates.were.stored.unde |
| adc20 | 72 20 74 68 65 20 2f 63 6f 6e 66 69 67 20 66 6f 6c 64 65 72 20 70 65 72 6d 61 6e 65 6e 74 6c 79 | r.the./config.folder.permanently |
| adc40 | 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 72 65 74 61 69 6e 65 64 20 70 6f 73 74 20 75 70 67 72 61 | .and.will.be.retained.post.upgra |
| adc60 | 64 65 2e 00 56 79 4f 53 20 72 65 76 65 72 73 65 2d 70 72 6f 78 79 20 69 73 20 62 61 6c 61 6e 63 | de..VyOS.reverse-proxy.is.balanc |
| adc80 | 65 72 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 20 74 68 61 74 20 70 72 6f 76 69 64 65 | er.and.proxy.server.that.provide |
| adca0 | 73 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 2c 20 6c 6f 61 64 20 62 61 6c 61 6e 63 | s.high-availability,.load.balanc |
| adcc0 | 69 6e 67 20 61 6e 64 20 70 72 6f 78 79 69 6e 67 20 66 6f 72 20 54 43 50 20 28 6c 65 76 65 6c 20 | ing.and.proxying.for.TCP.(level. |
| adce0 | 34 29 20 61 6e 64 20 48 54 54 50 2d 62 61 73 65 64 20 28 6c 65 76 65 6c 20 37 29 20 61 70 70 6c | 4).and.HTTP-based.(level.7).appl |
| add00 | 69 63 61 74 69 6f 6e 73 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 3a 61 62 62 72 3a 60 50 | ications..VyOS.supports.:abbr:`P |
| add20 | 49 4d 2d 53 4d 20 28 50 49 4d 20 53 70 61 72 73 65 20 4d 6f 64 65 29 60 20 61 73 20 77 65 6c 6c | IM-SM.(PIM.Sparse.Mode)`.as.well |
| add40 | 20 61 73 20 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 | .as.:abbr:`IGMP.(Internet.Group. |
| add60 | 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 76 32 20 61 6e 64 20 76 33 00 | Management.Protocol)`.v2.and.v3. |
| add80 | 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 | VyOS.supports.both.IGMP.version. |
| adda0 | 32 20 61 6e 64 20 76 65 72 73 69 6f 6e 20 33 20 28 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 73 6f | 2.and.version.3.(which.allows.so |
| addc0 | 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 29 2e 00 56 79 4f 53 20 73 | urce-specific.multicast)..VyOS.s |
| adde0 | 75 70 70 6f 72 74 73 20 62 6f 74 68 20 4d 4c 44 20 76 65 72 73 69 6f 6e 20 31 20 61 6e 64 20 76 | upports.both.MLD.version.1.and.v |
| ade00 | 65 72 73 69 6f 6e 20 32 20 28 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 73 6f 75 72 63 65 2d 73 70 | ersion.2.(which.allows.source-sp |
| ade20 | 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 29 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 | ecific.multicast)..VyOS.supports |
| ade40 | 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 | .flow-accounting.for.both.IPv4.a |
| ade60 | 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 73 79 73 74 65 6d 20 61 63 74 73 | nd.IPv6.traffic..The.system.acts |
| ade80 | 20 61 73 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 2c 20 61 6e 64 20 79 6f 75 20 61 72 65 | .as.a.flow.exporter,.and.you.are |
| adea0 | 20 66 72 65 65 20 74 6f 20 75 73 65 20 69 74 20 77 69 74 68 20 61 6e 79 20 63 6f 6d 70 61 74 69 | .free.to.use.it.with.any.compati |
| adec0 | 62 6c 65 20 63 6f 6c 6c 65 63 74 6f 72 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c | ble.collector..VyOS.supports.mul |
| adee0 | 74 69 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 28 4d 46 41 29 20 6f | ti-factor.authentication.(MFA).o |
| adf00 | 72 20 74 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 75 73 69 6e | r.two-factor.authentication.usin |
| adf20 | 67 20 54 69 6d 65 2d 62 61 73 65 64 20 4f 6e 65 2d 54 69 6d 65 20 50 61 73 73 77 6f 72 64 20 28 | g.Time-based.One-Time.Password.( |
| adf40 | 54 4f 54 50 29 2e 20 43 6f 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 47 6f 6f 67 6c 65 20 41 75 | TOTP)..Compatible.with.Google.Au |
| adf60 | 74 68 65 6e 74 69 63 61 74 6f 72 20 73 6f 66 74 77 61 72 65 20 74 6f 6b 65 6e 2c 20 6f 74 68 65 | thenticator.software.token,.othe |
| adf80 | 72 20 73 6f 66 74 77 61 72 65 20 74 6f 6b 65 6e 73 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 | r.software.tokens..VyOS.supports |
| adfa0 | 20 6d 75 6c 74 69 70 6c 65 20 49 4b 45 76 32 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f | .multiple.IKEv2.remote-access.co |
| adfc0 | 6e 6e 65 63 74 69 6f 6e 73 2e 20 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 61 6e 20 | nnections..Every.connection.can. |
| adfe0 | 68 61 76 65 20 69 74 73 20 64 65 64 69 63 61 74 65 64 20 49 4b 45 2f 45 53 50 20 63 69 70 68 65 | have.its.dedicated.IKE/ESP.ciphe |
| ae000 | 72 73 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 6c 6f 63 61 6c 20 6c 69 73 74 65 6e | rs,.certificates.or.local.listen |
| ae020 | 20 61 64 64 72 65 73 73 20 66 6f 72 20 65 2e 67 2e 20 69 6e 62 6f 75 6e 64 20 6c 6f 61 64 20 62 | .address.for.e.g..inbound.load.b |
| ae040 | 61 6c 61 6e 63 69 6e 67 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 | alancing..VyOS.supports.multiple |
| ae060 | 20 49 4b 45 76 32 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | .IKEv2.remote-access.connections |
| ae080 | 2e 20 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 61 6e 20 68 61 76 65 20 69 74 73 20 | ..Every.connection.can.have.its. |
| ae0a0 | 6f 77 6e 20 64 65 64 69 63 61 74 65 64 20 49 4b 45 2f 45 53 50 20 63 69 70 68 65 72 73 2c 20 63 | own.dedicated.IKE/ESP.ciphers,.c |
| ae0c0 | 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 6c 6f 63 61 6c 20 6c 69 73 74 65 6e 20 61 64 64 72 | ertificates.or.local.listen.addr |
| ae0e0 | 65 73 73 20 66 6f 72 20 65 2e 67 2e 20 69 6e 62 6f 75 6e 64 20 6c 6f 61 64 20 62 61 6c 61 6e 63 | ess.for.e.g..inbound.load.balanc |
| ae100 | 69 6e 67 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6f 6e 6c 69 6e 65 20 63 68 65 63 6b 69 | ing..VyOS.supports.online.checki |
| ae120 | 6e 67 20 66 6f 72 20 75 70 64 61 74 65 73 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 73 46 6c | ng.for.updates.VyOS.supports.sFl |
| ae140 | 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 | ow.accounting.for.both.IPv4.and. |
| ae160 | 49 50 76 36 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 73 79 73 74 65 6d 20 61 63 74 73 20 61 73 | IPv6.traffic..The.system.acts.as |
| ae180 | 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 2c 20 61 6e 64 20 79 6f 75 20 61 72 65 20 66 72 | .a.flow.exporter,.and.you.are.fr |
| ae1a0 | 65 65 20 74 6f 20 75 73 65 20 69 74 20 77 69 74 68 20 61 6e 79 20 63 6f 6d 70 61 74 69 62 6c 65 | ee.to.use.it.with.any.compatible |
| ae1c0 | 20 63 6f 6c 6c 65 63 74 6f 72 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 73 65 74 74 69 6e | .collector..VyOS.supports.settin |
| ae1e0 | 67 20 74 69 6d 65 6f 75 74 73 20 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 63 63 6f 72 | g.timeouts.for.connections.accor |
| ae200 | 64 69 6e 67 20 74 6f 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 79 70 65 2e 20 59 6f 75 | ding.to.the.connection.type..You |
| ae220 | 20 63 61 6e 20 73 65 74 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 66 6f 72 20 67 65 6e 65 | .can.set.timeout.values.for.gene |
| ae240 | 72 69 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 66 6f 72 20 49 43 4d 50 20 63 6f 6e 6e 65 63 | ric.connections,.for.ICMP.connec |
| ae260 | 74 69 6f 6e 73 2c 20 55 44 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 6f 72 20 66 6f 72 20 54 | tions,.UDP.connections,.or.for.T |
| ae280 | 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 64 69 | CP.connections.in.a.number.of.di |
| ae2a0 | 66 66 65 72 65 6e 74 20 73 74 61 74 65 73 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 73 65 | fferent.states..VyOS.supports.se |
| ae2c0 | 74 74 69 6e 67 20 75 70 20 50 50 50 6f 45 20 69 6e 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 | tting.up.PPPoE.in.two.different. |
| ae2e0 | 77 61 79 73 20 74 6f 20 61 20 50 50 50 6f 45 20 69 6e 74 65 72 6e 65 74 20 63 6f 6e 6e 65 63 74 | ways.to.a.PPPoE.internet.connect |
| ae300 | 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 62 65 63 61 75 73 65 20 6d 6f 73 74 20 49 53 50 73 20 70 | ion..This.is.because.most.ISPs.p |
| ae320 | 72 6f 76 69 64 65 20 61 20 6d 6f 64 65 6d 20 74 68 61 74 20 69 73 20 61 6c 73 6f 20 61 20 77 69 | rovide.a.modem.that.is.also.a.wi |
| ae340 | 72 65 6c 65 73 73 20 72 6f 75 74 65 72 2e 00 56 79 4f 53 20 75 73 65 73 20 49 53 43 20 44 48 43 | reless.router..VyOS.uses.ISC.DHC |
| ae360 | 50 20 73 65 72 76 65 72 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 | P.server.for.both.IPv4.and.IPv6. |
| ae380 | 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 6d 65 6e 74 2e 00 56 79 4f 53 20 75 73 65 73 20 4b 65 | address.assignment..VyOS.uses.Ke |
| ae3a0 | 61 20 44 48 43 50 20 73 65 72 76 65 72 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 | a.DHCP.server.for.both.IPv4.and. |
| ae3c0 | 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 6d 65 6e 74 2e 00 56 79 4f 53 20 75 73 | IPv6.address.assignment..VyOS.us |
| ae3e0 | 65 73 20 5b 46 52 52 6f 75 74 69 6e 67 5d 28 68 74 74 70 73 3a 2f 2f 66 72 72 6f 75 74 69 6e 67 | es.[FRRouting](https://frrouting |
| ae400 | 2e 6f 72 67 2f 29 20 61 73 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 66 6f 72 20 | .org/).as.the.control.plane.for. |
| ae420 | 64 79 6e 61 6d 69 63 20 61 6e 64 20 73 74 61 74 69 63 20 72 6f 75 74 69 6e 67 2e 20 54 68 65 20 | dynamic.and.static.routing..The. |
| ae440 | 72 6f 75 74 69 6e 67 20 64 61 65 6d 6f 6e 20 62 65 68 61 76 69 6f 72 20 63 61 6e 20 62 65 20 61 | routing.daemon.behavior.can.be.a |
| ae460 | 64 6a 75 73 74 65 64 20 64 75 72 69 6e 67 20 72 75 6e 74 69 6d 65 2c 20 62 75 74 20 72 65 71 75 | djusted.during.runtime,.but.requ |
| ae480 | 69 72 65 20 65 69 74 68 65 72 20 61 20 72 65 73 74 61 72 74 20 6f 66 20 74 68 65 20 72 6f 75 74 | ire.either.a.restart.of.the.rout |
| ae4a0 | 69 6e 67 20 64 61 65 6d 6f 6e 2c 20 6f 72 20 61 20 72 65 62 6f 6f 74 20 6f 66 20 74 68 65 20 73 | ing.daemon,.or.a.reboot.of.the.s |
| ae4c0 | 79 73 74 65 6d 2e 00 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 60 69 6e 74 65 72 66 61 63 65 73 | ystem..VyOS.uses.the.`interfaces |
| ae4e0 | 20 77 77 61 6e 60 20 73 75 62 73 79 73 74 65 6d 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 61 74 69 | .wwan`.subsystem.for.configurati |
| ae500 | 6f 6e 2e 00 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 60 6d 69 72 72 6f 72 60 20 6f 70 74 69 6f | on..VyOS.uses.the.`mirror`.optio |
| ae520 | 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 2e 20 54 | n.to.configure.port.mirroring..T |
| ae540 | 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 64 69 76 69 64 65 64 20 69 6e 74 6f | he.configuration.is.divided.into |
| ae560 | 20 32 20 64 69 66 66 65 72 65 6e 74 20 64 69 72 65 63 74 69 6f 6e 73 2e 20 44 65 73 74 69 6e 61 | .2.different.directions..Destina |
| ae580 | 74 69 6f 6e 20 70 6f 72 74 73 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | tion.ports.should.be.configured. |
| ae5a0 | 66 6f 72 20 64 69 66 66 65 72 65 6e 74 20 74 72 61 66 66 69 63 20 64 69 72 65 63 74 69 6f 6e 73 | for.different.traffic.directions |
| ae5c0 | 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 60 61 63 63 65 6c 2d 70 70 70 60 5f 20 74 6f 20 | ..VyOS.utilizes.`accel-ppp`_.to. |
| ae5e0 | 70 72 6f 76 69 64 65 20 3a 61 62 62 72 3a 60 49 50 6f 45 20 28 49 6e 74 65 72 6e 65 74 20 50 72 | provide.:abbr:`IPoE.(Internet.Pr |
| ae600 | 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 45 74 68 65 72 6e 65 74 29 60 20 73 65 72 76 65 72 20 66 75 | otocol.over.Ethernet)`.server.fu |
| ae620 | 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 | nctionality..It.can.be.used.with |
| ae640 | 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 28 6d 61 63 2d 61 64 64 72 65 | .local.authentication.(mac-addre |
| ae660 | 73 73 29 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 | ss).or.a.connected.RADIUS.server |
| ae680 | 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 60 61 63 63 65 6c 2d 70 70 70 60 5f 20 74 6f 20 | ..VyOS.utilizes.`accel-ppp`_.to. |
| ae6a0 | 70 72 6f 76 69 64 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 | provide.PPPoE.server.functionali |
| ae6c0 | 74 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 | ty..It.can.be.used.with.local.au |
| ae6e0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 | thentication.or.a.connected.RADI |
| ae700 | 55 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 61 63 63 65 6c 2d 70 | US.server..VyOS.utilizes.accel-p |
| ae720 | 70 70 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 4c 32 54 50 20 73 65 72 76 65 72 20 66 75 6e 63 74 | pp_.to.provide.L2TP.server.funct |
| ae740 | 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f | ionality..It.can.be.used.with.lo |
| ae760 | 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 | cal.authentication.or.a.connecte |
| ae780 | 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 61 | d.RADIUS.server..VyOS.utilizes.a |
| ae7a0 | 63 63 65 6c 2d 70 70 70 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 53 53 54 50 20 73 65 72 76 65 72 | ccel-ppp_.to.provide.SSTP.server |
| ae7c0 | 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 57 65 20 73 75 70 70 6f 72 74 20 62 6f 74 68 20 | .functionality..We.support.both. |
| ae7e0 | 6c 6f 63 61 6c 20 61 6e 64 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e | local.and.RADIUS.authentication. |
| ae800 | 00 57 41 4e 20 4c 6f 61 64 20 42 61 6c 61 63 69 6e 67 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 | .WAN.Load.Balacing.should.not.be |
| ae820 | 20 75 73 65 64 20 77 68 65 6e 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f | .used.when.dynamic.routing.proto |
| ae840 | 63 6f 6c 20 69 73 20 75 73 65 64 2f 6e 65 65 64 65 64 2e 20 54 68 69 73 20 66 65 61 74 75 72 65 | col.is.used/needed..This.feature |
| ae860 | 20 63 72 65 61 74 65 73 20 63 75 73 74 6f 6d 69 7a 65 64 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | .creates.customized.routing.tabl |
| ae880 | 65 73 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 74 68 61 74 20 6d 61 6b 65 | es.and.firewall.rules,.that.make |
| ae8a0 | 73 20 69 74 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 74 6f 20 75 73 65 20 77 69 74 68 20 72 6f | s.it.incompatible.to.use.with.ro |
| ae8c0 | 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f | uting.protocols..WAN.interface.o |
| ae8e0 | 6e 20 60 65 74 68 31 60 00 57 41 4e 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 00 57 4c 41 4e | n.`eth1`.WAN.load.balancing.WLAN |
| ae900 | 2f 57 49 46 49 20 2d 20 57 69 72 65 6c 65 73 73 20 4c 41 4e 00 57 4d 4d 2d 50 53 20 55 6e 73 63 | /WIFI.-.Wireless.LAN.WMM-PS.Unsc |
| ae920 | 68 65 64 75 6c 65 64 20 41 75 74 6f 6d 61 74 69 63 20 50 6f 77 65 72 20 53 61 76 65 20 44 65 6c | heduled.Automatic.Power.Save.Del |
| ae940 | 69 76 65 72 79 20 5b 55 2d 41 50 53 44 5d 00 57 50 41 20 70 61 73 73 70 68 72 61 73 65 20 60 60 | ivery.[U-APSD].WPA.passphrase.`` |
| ae960 | 31 32 33 34 35 36 37 38 60 60 00 57 50 41 20 70 61 73 73 70 68 72 61 73 65 20 60 60 73 75 70 65 | 12345678``.WPA.passphrase.``supe |
| ae980 | 72 2d 64 6f 6f 70 65 72 2d 73 65 63 75 72 65 2d 70 61 73 73 70 68 72 61 73 65 60 60 00 57 57 41 | r-dooper-secure-passphrase``.WWA |
| ae9a0 | 4e 20 2d 20 57 69 72 65 6c 65 73 73 20 57 69 64 65 2d 41 72 65 61 2d 4e 65 74 77 6f 72 6b 00 57 | N.-.Wireless.Wide-Area-Network.W |
| ae9c0 | 61 72 6e 69 6e 67 00 57 61 72 6e 69 6e 67 20 63 6f 6e 64 69 74 69 6f 6e 73 00 57 65 20 61 73 73 | arning.Warning.conditions.We.ass |
| ae9e0 | 75 6d 65 20 74 68 61 74 20 74 68 65 20 4c 45 46 54 20 72 6f 75 74 65 72 20 68 61 73 20 73 74 61 | ume.that.the.LEFT.router.has.sta |
| aea00 | 74 69 63 20 31 39 32 2e 30 2e 32 2e 31 30 20 61 64 64 72 65 73 73 20 6f 6e 20 65 74 68 30 2c 20 | tic.192.0.2.10.address.on.eth0,. |
| aea20 | 61 6e 64 20 74 68 65 20 52 49 47 48 54 20 72 6f 75 74 65 72 20 68 61 73 20 61 20 64 79 6e 61 6d | and.the.RIGHT.router.has.a.dynam |
| aea40 | 69 63 20 61 64 64 72 65 73 73 20 6f 6e 20 65 74 68 30 2e 00 57 65 20 63 61 6e 20 61 6c 73 6f 20 | ic.address.on.eth0..We.can.also. |
| aea60 | 63 72 65 61 74 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 43 65 | create.the.certificates.using.Ce |
| aea80 | 72 62 6f 72 74 20 77 68 69 63 68 20 69 73 20 61 6e 20 65 61 73 79 2d 74 6f 2d 75 73 65 20 63 6c | rbort.which.is.an.easy-to-use.cl |
| aeaa0 | 69 65 6e 74 20 74 68 61 74 20 66 65 74 63 68 65 73 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 | ient.that.fetches.a.certificate. |
| aeac0 | 66 72 6f 6d 20 4c 65 74 27 73 20 45 6e 63 72 79 70 74 20 61 6e 20 6f 70 65 6e 20 63 65 72 74 69 | from.Let's.Encrypt.an.open.certi |
| aeae0 | 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 6c 61 75 6e 63 68 65 64 20 62 79 20 74 68 65 | ficate.authority.launched.by.the |
| aeb00 | 20 45 46 46 2c 20 4d 6f 7a 69 6c 6c 61 2c 20 61 6e 64 20 6f 74 68 65 72 73 20 61 6e 64 20 64 65 | .EFF,.Mozilla,.and.others.and.de |
| aeb20 | 70 6c 6f 79 73 20 69 74 20 74 6f 20 61 20 77 65 62 20 73 65 72 76 65 72 2e 00 57 65 20 63 61 6e | ploys.it.to.a.web.server..We.can |
| aeb40 | 20 61 6c 73 6f 20 63 72 65 61 74 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 75 73 | .also.create.the.certificates.us |
| aeb60 | 69 6e 67 20 43 65 72 74 62 6f 74 20 77 68 69 63 68 20 69 73 20 61 6e 20 65 61 73 79 2d 74 6f 2d | ing.Certbot.which.is.an.easy-to- |
| aeb80 | 75 73 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 66 65 74 63 68 65 73 20 61 20 63 65 72 74 69 66 | use.client.that.fetches.a.certif |
| aeba0 | 69 63 61 74 65 20 66 72 6f 6d 20 4c 65 74 27 73 20 45 6e 63 72 79 70 74 20 61 6e 20 6f 70 65 6e | icate.from.Let's.Encrypt.an.open |
| aebc0 | 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 6c 61 75 6e 63 68 65 64 20 | .certificate.authority.launched. |
| aebe0 | 62 79 20 74 68 65 20 45 46 46 2c 20 4d 6f 7a 69 6c 6c 61 2c 20 61 6e 64 20 6f 74 68 65 72 73 20 | by.the.EFF,.Mozilla,.and.others. |
| aec00 | 61 6e 64 20 64 65 70 6c 6f 79 73 20 69 74 20 74 6f 20 61 20 77 65 62 20 73 65 72 76 65 72 2e 00 | and.deploys.it.to.a.web.server.. |
| aec20 | 57 65 20 63 61 6e 20 62 75 69 6c 64 20 72 6f 75 74 65 2d 6d 61 70 73 20 66 6f 72 20 69 6d 70 6f | We.can.build.route-maps.for.impo |
| aec40 | 72 74 20 62 61 73 65 64 20 6f 6e 20 74 68 65 73 65 20 73 74 61 74 65 73 2e 20 48 65 72 65 20 69 | rt.based.on.these.states..Here.i |
| aec60 | 73 20 61 20 73 69 6d 70 6c 65 20 52 50 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 | s.a.simple.RPKI.configuration,.w |
| aec80 | 68 65 72 65 20 60 72 6f 75 74 69 6e 61 74 6f 72 60 20 69 73 20 74 68 65 20 52 50 4b 49 2d 76 61 | here.`routinator`.is.the.RPKI-va |
| aeca0 | 6c 69 64 61 74 69 6e 67 20 22 63 61 63 68 65 22 20 73 65 72 76 65 72 20 77 69 74 68 20 69 70 20 | lidating."cache".server.with.ip. |
| aecc0 | 60 31 39 32 2e 30 2e 32 2e 31 60 3a 00 57 65 20 63 61 6e 27 74 20 73 75 70 70 6f 72 74 20 61 6c | `192.0.2.1`:.We.can't.support.al |
| aece0 | 6c 20 64 69 73 70 6c 61 79 73 20 66 72 6f 6d 20 74 68 65 20 62 65 67 69 6e 6e 69 6e 67 2e 20 49 | l.displays.from.the.beginning..I |
| aed00 | 66 20 79 6f 75 72 20 64 69 73 70 6c 61 79 20 74 79 70 65 20 69 73 20 6d 69 73 73 69 6e 67 2c 20 | f.your.display.type.is.missing,. |
| aed20 | 70 6c 65 61 73 65 20 63 72 65 61 74 65 20 61 20 66 65 61 74 75 72 65 20 72 65 71 75 65 73 74 20 | please.create.a.feature.request. |
| aed40 | 76 69 61 20 50 68 61 62 72 69 63 61 74 6f 72 5f 2e 00 57 65 20 63 6f 6e 66 69 67 75 72 65 20 61 | via.Phabricator_..We.configure.a |
| aed60 | 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6e 61 6d 65 64 20 60 60 72 77 60 60 20 66 6f 72 | .new.connection.named.``rw``.for |
| aed80 | 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 2c 20 74 68 61 74 20 69 64 65 6e 74 69 66 69 65 73 20 69 | .road-warrior,.that.identifies.i |
| aeda0 | 74 73 65 6c 66 20 61 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 60 60 20 74 6f 20 74 68 65 20 63 6c | tself.as.``192.0.2.1``.to.the.cl |
| aedc0 | 69 65 6e 74 73 20 61 6e 64 20 75 73 65 73 20 74 68 65 20 60 60 76 79 6f 73 60 60 20 63 65 72 74 | ients.and.uses.the.``vyos``.cert |
| aede0 | 69 66 69 63 61 74 65 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 60 43 41 63 65 72 74 5f 43 6c | ificate.signed.by.the.`CAcert_Cl |
| aee00 | 61 73 73 33 5f 52 6f 6f 74 60 60 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 43 41 2e 20 57 65 20 | ass3_Root``.intermediate.CA..We. |
| aee20 | 73 65 6c 65 63 74 20 6f 75 72 20 70 72 65 76 69 6f 75 73 6c 79 20 73 70 65 63 69 66 69 65 64 20 | select.our.previously.specified. |
| aee40 | 49 4b 45 2f 45 53 50 20 67 72 6f 75 70 73 20 61 6e 64 20 61 6c 73 6f 20 6c 69 6e 6b 20 74 68 65 | IKE/ESP.groups.and.also.link.the |
| aee60 | 20 49 50 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 74 6f 20 64 72 61 77 20 61 64 64 72 65 73 73 | .IP.address.pool.to.draw.address |
| aee80 | 65 73 20 66 72 6f 6d 2e 00 57 65 20 63 6f 75 6c 64 20 65 78 70 61 6e 64 20 6f 6e 20 74 68 69 73 | es.from..We.could.expand.on.this |
| aeea0 | 20 61 6e 64 20 61 6c 73 6f 20 64 65 6e 79 20 6c 69 6e 6b 20 6c 6f 63 61 6c 20 61 6e 64 20 6d 75 | .and.also.deny.link.local.and.mu |
| aeec0 | 6c 74 69 63 61 73 74 20 69 6e 20 74 68 65 20 72 75 6c 65 20 32 30 20 61 63 74 69 6f 6e 20 64 65 | lticast.in.the.rule.20.action.de |
| aeee0 | 6e 79 2e 00 57 65 20 64 6f 20 6e 6f 74 20 68 61 76 65 20 43 4c 49 20 6e 6f 64 65 73 20 66 6f 72 | ny..We.do.not.have.CLI.nodes.for |
| aef00 | 20 65 76 65 72 79 20 73 69 6e 67 6c 65 20 4f 70 65 6e 56 50 4e 20 6f 70 74 69 6f 6e 2e 20 49 66 | .every.single.OpenVPN.option..If |
| aef20 | 20 61 6e 20 6f 70 74 69 6f 6e 20 69 73 20 6d 69 73 73 69 6e 67 2c 20 61 20 66 65 61 74 75 72 65 | .an.option.is.missing,.a.feature |
| aef40 | 20 72 65 71 75 65 73 74 20 73 68 6f 75 6c 64 20 62 65 20 6f 70 65 6e 65 64 20 61 74 20 50 68 61 | .request.should.be.opened.at.Pha |
| aef60 | 62 72 69 63 61 74 6f 72 5f 20 73 6f 20 61 6c 6c 20 75 73 65 72 73 20 63 61 6e 20 62 65 6e 65 66 | bricator_.so.all.users.can.benef |
| aef80 | 69 74 20 66 72 6f 6d 20 69 74 20 28 73 65 65 20 3a 72 65 66 3a 60 69 73 73 75 65 73 5f 66 65 61 | it.from.it.(see.:ref:`issues_fea |
| aefa0 | 74 75 72 65 73 60 29 2e 00 57 65 20 64 6f 6e 27 74 20 72 65 63 6f 6d 65 6e 64 20 74 6f 20 75 73 | tures`)..We.don't.recomend.to.us |
| aefc0 | 65 20 61 72 67 75 6d 65 6e 74 73 2e 20 55 73 69 6e 67 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 | e.arguments..Using.environments. |
| aefe0 | 69 73 20 6d 6f 72 65 20 70 72 65 66 66 65 72 65 62 6c 65 2e 00 57 65 20 67 65 6e 65 72 61 74 65 | is.more.preffereble..We.generate |
| af000 | 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 75 73 65 64 20 62 79 20 57 69 | .a.connection.profile.used.by.Wi |
| af020 | 6e 64 6f 77 73 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 | ndows.clients.that.will.connect. |
| af040 | 74 6f 20 74 68 65 20 22 72 77 22 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 6f 75 72 20 56 79 | to.the."rw".connection.on.our.Vy |
| af060 | 4f 53 20 73 65 72 76 65 72 20 6f 6e 20 74 68 65 20 56 50 4e 20 73 65 72 76 65 72 73 20 49 50 20 | OS.server.on.the.VPN.servers.IP. |
| af080 | 61 64 64 72 65 73 73 2f 66 71 64 6e 20 60 76 70 6e 2e 76 79 6f 73 2e 6e 65 74 60 2e 00 57 65 20 | address/fqdn.`vpn.vyos.net`..We. |
| af0a0 | 6c 69 73 74 65 6e 20 6f 6e 20 70 6f 72 74 20 35 31 38 32 30 00 57 65 20 6e 65 65 64 20 74 6f 20 | listen.on.port.51820.We.need.to. |
| af0c0 | 67 65 6e 65 72 61 74 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 77 68 69 63 68 20 61 | generate.the.certificate.which.a |
| af0e0 | 75 74 68 65 6e 74 69 63 61 74 65 73 20 75 73 65 72 73 20 77 68 6f 20 61 74 74 65 6d 70 74 20 74 | uthenticates.users.who.attempt.t |
| af100 | 6f 20 61 63 63 65 73 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 65 20 74 68 | o.access.the.network.resource.th |
| af120 | 72 6f 75 67 68 20 74 68 65 20 53 53 4c 20 56 50 4e 20 74 75 6e 6e 65 6c 73 2e 20 54 68 65 20 66 | rough.the.SSL.VPN.tunnels..The.f |
| af140 | 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 77 69 6c 6c 20 63 72 65 61 74 65 20 61 20 | ollowing.commands.will.create.a. |
| af160 | 73 65 6c 66 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 6e 64 20 77 69 6c | self.signed.certificates.and.wil |
| af180 | 6c 20 62 65 20 73 74 6f 72 65 64 20 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 57 65 | l.be.stored.in.configuration:.We |
| af1a0 | 20 6e 6f 77 20 75 74 69 6c 69 7a 65 20 60 74 75 6e 65 64 60 20 66 6f 72 20 64 79 6e 61 6d 69 63 | .now.utilize.`tuned`.for.dynamic |
| af1c0 | 20 72 65 73 6f 75 72 63 65 20 62 61 6c 61 6e 63 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 70 72 6f | .resource.balancing.based.on.pro |
| af1e0 | 66 69 6c 65 73 2e 00 57 65 20 6f 6e 6c 79 20 61 6c 6c 6f 77 20 74 68 65 20 31 39 32 2e 31 36 38 | files..We.only.allow.the.192.168 |
| af200 | 2e 32 2e 30 2f 32 34 20 73 75 62 6e 65 74 20 74 6f 20 74 72 61 76 65 6c 20 6f 76 65 72 20 74 68 | .2.0/24.subnet.to.travel.over.th |
| af220 | 65 20 74 75 6e 6e 65 6c 00 57 65 20 6f 6e 6c 79 20 6e 65 65 64 20 61 20 73 69 6e 67 6c 65 20 73 | e.tunnel.We.only.need.a.single.s |
| af240 | 74 65 70 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 3a 00 57 65 20 72 6f 75 74 65 | tep.for.this.interface:.We.route |
| af260 | 20 61 6c 6c 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 65 20 31 39 32 2e 31 36 38 2e 32 2e 30 | .all.traffic.for.the.192.168.2.0 |
| af280 | 2f 32 34 20 6e 65 74 77 6f 72 6b 20 74 6f 20 69 6e 74 65 72 66 61 63 65 20 60 77 67 30 31 60 00 | /24.network.to.interface.`wg01`. |
| af2a0 | 57 65 20 75 73 65 20 61 20 76 6f 6e 74 61 69 6e 65 72 20 70 72 6f 76 69 64 69 6e 67 20 74 68 65 | We.use.a.vontainer.providing.the |
| af2c0 | 20 54 41 43 41 43 53 20 73 65 72 76 65 20 72 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2e 00 | .TACACS.serve.rin.this.example.. |
| af2e0 | 57 65 20 77 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 65 70 74 20 74 72 61 66 66 69 63 20 63 6f 6d 69 | We.will.only.accept.traffic.comi |
| af300 | 6e 67 20 66 72 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2c 20 70 72 6f 74 6f 63 6f 6c | ng.from.interface.eth0,.protocol |
| af320 | 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 | .tcp.and.destination.port.1122.. |
| af340 | 41 6c 6c 20 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 74 72 65 73 70 61 73 73 69 6e 67 20 74 68 | All.other.traffic.trespassing.th |
| af360 | 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 62 6c 6f 63 6b 65 64 2e 00 57 65 20 77 | e.router.should.be.blocked..We.w |
| af380 | 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 65 70 74 20 74 72 61 66 66 69 63 20 63 6f 6d 6d 69 6e 67 20 | ill.only.accept.traffic.comming. |
| af3a0 | 66 72 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 | from.interface.eth0,.protocol.tc |
| af3c0 | 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 6c 6c | p.and.destination.port.1122..All |
| af3e0 | 20 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 74 72 61 73 70 61 73 73 69 6e 67 20 74 68 65 20 72 | .other.traffic.traspassing.the.r |
| af400 | 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 62 6c 6f 63 6b 65 64 2e 00 57 65 27 6c 6c 20 63 | outer.should.be.blocked..We'll.c |
| af420 | 6f 6e 66 69 67 75 72 65 20 4f 70 65 6e 56 50 4e 20 75 73 69 6e 67 20 73 65 6c 66 2d 73 69 67 6e | onfigure.OpenVPN.using.self-sign |
| af440 | 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 2c 20 61 6e 64 20 74 68 65 6e 20 64 69 73 63 75 73 | ed.certificates,.and.then.discus |
| af460 | 73 20 74 68 65 20 6c 65 67 61 63 79 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 | s.the.legacy.pre-shared.key.mode |
| af480 | 2e 00 57 65 27 6c 6c 20 75 73 65 20 74 68 65 20 49 4b 45 20 61 6e 64 20 45 53 50 20 67 72 6f 75 | ..We'll.use.the.IKE.and.ESP.grou |
| af4a0 | 70 73 20 63 72 65 61 74 65 64 20 61 62 6f 76 65 20 66 6f 72 20 74 68 69 73 20 56 50 4e 2e 20 42 | ps.created.above.for.this.VPN..B |
| af4c0 | 65 63 61 75 73 65 20 77 65 20 6e 65 65 64 20 61 63 63 65 73 73 20 74 6f 20 32 20 64 69 66 66 65 | ecause.we.need.access.to.2.diffe |
| af4e0 | 72 65 6e 74 20 73 75 62 6e 65 74 73 20 6f 6e 20 74 68 65 20 66 61 72 20 73 69 64 65 2c 20 77 65 | rent.subnets.on.the.far.side,.we |
| af500 | 20 77 69 6c 6c 20 6e 65 65 64 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 74 75 6e 6e 65 6c 73 | .will.need.two.different.tunnels |
| af520 | 2e 20 49 66 20 79 6f 75 20 63 68 61 6e 67 65 64 20 74 68 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 | ..If.you.changed.the.names.of.th |
| af540 | 65 20 45 53 50 20 67 72 6f 75 70 20 61 6e 64 20 49 4b 45 20 67 72 6f 75 70 20 69 6e 20 74 68 65 | e.ESP.group.and.IKE.group.in.the |
| af560 | 20 70 72 65 76 69 6f 75 73 20 73 74 65 70 2c 20 6d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 75 73 | .previous.step,.make.sure.you.us |
| af580 | 65 20 74 68 65 20 63 6f 72 72 65 63 74 20 6e 61 6d 65 73 20 68 65 72 65 20 74 6f 6f 2e 00 57 65 | e.the.correct.names.here.too..We |
| af5a0 | 62 20 50 72 6f 78 79 20 41 75 74 6f 64 69 73 63 6f 76 65 72 79 20 28 57 50 41 44 29 20 55 52 4c | b.Proxy.Autodiscovery.(WPAD).URL |
| af5c0 | 00 57 65 62 70 72 6f 78 79 00 57 65 62 73 65 72 76 65 72 20 73 68 6f 75 6c 64 20 6c 69 73 74 65 | .Webproxy.Webserver.should.liste |
| af5e0 | 6e 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 6f 72 74 2e 00 57 65 62 73 65 72 76 65 72 20 73 | n.on.specified.port..Webserver.s |
| af600 | 68 6f 75 6c 64 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 49 | hould.only.listen.on.specified.I |
| af620 | 50 20 61 64 64 72 65 73 73 00 57 68 65 6e 20 4c 44 50 20 69 73 20 77 6f 72 6b 69 6e 67 2c 20 79 | P.address.When.LDP.is.working,.y |
| af640 | 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 73 65 65 20 6c 61 62 65 6c 20 69 6e 66 | ou.will.be.able.to.see.label.inf |
| af660 | 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 6f 75 74 63 6f 6d 65 20 6f 66 20 60 60 73 68 6f | ormation.in.the.outcome.of.``sho |
| af680 | 77 20 69 70 20 72 6f 75 74 65 60 60 2e 20 42 65 73 69 64 65 73 20 74 68 61 74 20 69 6e 66 6f 72 | w.ip.route``..Besides.that.infor |
| af6a0 | 6d 61 74 69 6f 6e 2c 20 74 68 65 72 65 20 61 72 65 20 61 6c 73 6f 20 73 70 65 63 69 66 69 63 20 | mation,.there.are.also.specific. |
| af6c0 | 2a 73 68 6f 77 2a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 4c 44 50 3a 00 57 68 65 6e 20 50 49 | *show*.commands.for.LDP:.When.PI |
| af6e0 | 4d 20 72 65 63 65 69 76 65 73 20 61 20 72 65 67 69 73 74 65 72 20 70 61 63 6b 65 74 20 74 68 65 | M.receives.a.register.packet.the |
| af700 | 20 73 6f 75 72 63 65 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 63 6f | .source.of.the.packet.will.be.co |
| af720 | 6d 70 61 72 65 64 20 74 6f 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 20 73 70 65 63 69 66 | mpared.to.the.prefix-list.specif |
| af740 | 69 65 64 2c 20 61 6e 64 20 69 66 20 61 20 70 65 72 6d 69 74 20 69 73 20 72 65 63 65 69 76 65 64 | ied,.and.if.a.permit.is.received |
| af760 | 20 6e 6f 72 6d 61 6c 20 70 72 6f 63 65 73 73 69 6e 67 20 63 6f 6e 74 69 6e 75 65 73 2e 20 49 66 | .normal.processing.continues..If |
| af780 | 20 61 20 64 65 6e 79 20 69 73 20 72 65 74 75 72 6e 65 64 20 66 6f 72 20 74 68 65 20 73 6f 75 72 | .a.deny.is.returned.for.the.sour |
| af7a0 | 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 67 69 73 74 65 72 20 70 61 63 6b 65 | ce.address.of.the.register.packe |
| af7c0 | 74 20 61 20 72 65 67 69 73 74 65 72 20 73 74 6f 70 20 6d 65 73 73 61 67 65 20 69 73 20 73 65 6e | t.a.register.stop.message.is.sen |
| af7e0 | 74 20 74 6f 20 74 68 65 20 73 6f 75 72 63 65 2e 00 57 68 65 6e 20 56 52 46 73 20 61 72 65 20 75 | t.to.the.source..When.VRFs.are.u |
| af800 | 73 65 64 20 69 74 20 69 73 20 6e 6f 74 20 6f 6e 6c 79 20 6d 61 6e 64 61 74 6f 72 79 20 74 6f 20 | sed.it.is.not.only.mandatory.to. |
| af820 | 63 72 65 61 74 65 20 61 20 56 52 46 20 62 75 74 20 61 6c 73 6f 20 74 68 65 20 56 52 46 20 69 74 | create.a.VRF.but.also.the.VRF.it |
| af840 | 73 65 6c 66 20 6e 65 65 64 73 20 74 6f 20 62 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 | self.needs.to.be.assigned.to.an. |
| af860 | 69 6e 74 65 72 66 61 63 65 2e 00 57 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 79 6e | interface..When.a.``custom``.Dyn |
| af880 | 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 73 20 75 73 65 64 20 74 68 65 20 60 3c 73 65 72 76 65 | DNS.provider.is.used.the.`<serve |
| af8a0 | 72 3e 60 20 77 68 65 72 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 73 20 61 72 65 20 62 65 | r>`.where.update.requests.are.be |
| af8c0 | 69 6e 67 20 73 65 6e 74 20 74 6f 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 57 | ing.sent.to.must.be.specified..W |
| af8e0 | 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 | hen.a.``custom``.DynDNS.provider |
| af900 | 20 69 73 20 75 73 65 64 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 | .is.used.the.protocol.used.for.c |
| af920 | 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6d 75 73 | ommunicating.to.the.provider.mus |
| af940 | 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 70 72 6f 74 6f 63 6f 6c 3e | t.be.specified.under.`<protocol> |
| af960 | 60 2e 20 53 65 65 20 74 68 65 20 65 6d 62 65 64 64 65 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 | `..See.the.embedded.completion.h |
| af980 | 65 6c 70 65 72 20 66 6f 72 20 61 76 61 69 6c 61 62 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 | elper.for.available.protocols..W |
| af9a0 | 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 | hen.a.``custom``.DynDNS.provider |
| af9c0 | 20 69 73 20 75 73 65 64 2c 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 | .is.used,.the.protocol.used.for. |
| af9e0 | 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6d 75 | communicating.to.the.provider.mu |
| afa00 | 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 70 72 6f 74 6f 63 6f 6c | st.be.specified.under.`<protocol |
| afa20 | 3e 60 2e 20 53 65 65 20 74 68 65 20 65 6d 62 65 64 64 65 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 | >`..See.the.embedded.completion. |
| afa40 | 68 65 6c 70 65 72 20 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 61 62 6f 76 65 20 63 6f 6d 6d 61 | helper.when.entering.above.comma |
| afa60 | 6e 64 20 66 6f 72 20 61 76 61 69 6c 61 62 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 68 65 6e | nd.for.available.protocols..When |
| afa80 | 20 61 20 66 61 69 6c 6f 76 65 72 20 6f 63 63 75 72 73 20 69 6e 20 61 63 74 69 76 65 2d 62 61 63 | .a.failover.occurs.in.active-bac |
| afaa0 | 6b 75 70 20 6d 6f 64 65 2c 20 62 6f 6e 64 69 6e 67 20 77 69 6c 6c 20 69 73 73 75 65 20 6f 6e 65 | kup.mode,.bonding.will.issue.one |
| afac0 | 20 6f 72 20 6d 6f 72 65 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 6f 6e 20 74 68 65 20 | .or.more.gratuitous.ARPs.on.the. |
| afae0 | 6e 65 77 6c 79 20 61 63 74 69 76 65 20 73 6c 61 76 65 2e 20 4f 6e 65 20 67 72 61 74 75 69 74 6f | newly.active.slave..One.gratuito |
| afb00 | 75 73 20 41 52 50 20 69 73 20 69 73 73 75 65 64 20 66 6f 72 20 74 68 65 20 62 6f 6e 64 69 6e 67 | us.ARP.is.issued.for.the.bonding |
| afb20 | 20 6d 61 73 74 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 65 61 63 68 20 56 4c 41 4e 20 | .master.interface.and.each.VLAN. |
| afb40 | 69 6e 74 65 72 66 61 63 65 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 62 6f 76 65 20 69 74 2c 20 | interfaces.configured.above.it,. |
| afb60 | 70 72 6f 76 69 64 65 64 20 74 68 61 74 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 68 61 73 20 | provided.that.the.interface.has. |
| afb80 | 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 49 50 20 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 | at.least.one.IP.address.configur |
| afba0 | 65 64 2e 20 47 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 69 73 73 75 65 64 20 66 6f 72 20 56 | ed..Gratuitous.ARPs.issued.for.V |
| afbc0 | 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 74 61 67 67 65 64 20 77 69 74 68 20 74 | LAN.interfaces.are.tagged.with.t |
| afbe0 | 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 56 4c 41 4e 20 69 64 2e 00 57 68 65 6e 20 61 20 6c | he.appropriate.VLAN.id..When.a.l |
| afc00 | 69 6e 6b 20 69 73 20 72 65 63 6f 6e 6e 65 63 74 65 64 20 6f 72 20 61 20 6e 65 77 20 73 6c 61 76 | ink.is.reconnected.or.a.new.slav |
| afc20 | 65 20 6a 6f 69 6e 73 20 74 68 65 20 62 6f 6e 64 20 74 68 65 20 72 65 63 65 69 76 65 20 74 72 61 | e.joins.the.bond.the.receive.tra |
| afc40 | 66 66 69 63 20 69 73 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 61 6d 6f 6e 67 20 61 6c 6c 20 | ffic.is.redistributed.among.all. |
| afc60 | 61 63 74 69 76 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 62 79 20 69 6e 69 | active.slaves.in.the.bond.by.ini |
| afc80 | 74 69 61 74 69 6e 67 20 41 52 50 20 52 65 70 6c 69 65 73 20 77 69 74 68 20 74 68 65 20 73 65 6c | tiating.ARP.Replies.with.the.sel |
| afca0 | 65 63 74 65 64 20 4d 41 43 20 61 64 64 72 65 73 73 20 74 6f 20 65 61 63 68 20 6f 66 20 74 68 65 | ected.MAC.address.to.each.of.the |
| afcc0 | 20 63 6c 69 65 6e 74 73 2e 20 54 68 65 20 75 70 64 65 6c 61 79 20 70 61 72 61 6d 65 74 65 72 20 | .clients..The.updelay.parameter. |
| afce0 | 28 64 65 74 61 69 6c 65 64 20 62 65 6c 6f 77 29 20 6d 75 73 74 20 62 65 20 73 65 74 20 74 6f 20 | (detailed.below).must.be.set.to. |
| afd00 | 61 20 76 61 6c 75 65 20 65 71 75 61 6c 20 6f 72 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 74 68 | a.value.equal.or.greater.than.th |
| afd20 | 65 20 73 77 69 74 63 68 27 73 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 6c 61 79 20 73 6f 20 74 | e.switch's.forwarding.delay.so.t |
| afd40 | 68 61 74 20 74 68 65 20 41 52 50 20 52 65 70 6c 69 65 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 | hat.the.ARP.Replies.sent.to.the. |
| afd60 | 70 65 65 72 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 62 6c 6f 63 6b 65 64 20 62 79 20 74 68 65 | peers.will.not.be.blocked.by.the |
| afd80 | 20 73 77 69 74 63 68 2e 00 57 68 65 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 74 6f 20 62 65 20 | .switch..When.a.packet.is.to.be. |
| afda0 | 73 65 6e 74 2c 20 69 74 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 67 6f 20 74 68 72 6f 75 67 68 | sent,.it.will.have.to.go.through |
| afdc0 | 20 74 68 61 74 20 71 75 65 75 65 2c 20 73 6f 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 | .that.queue,.so.the.packet.will. |
| afde0 | 62 65 20 70 6c 61 63 65 64 20 61 74 20 74 68 65 20 74 61 69 6c 20 6f 66 20 69 74 2e 20 57 68 65 | be.placed.at.the.tail.of.it..Whe |
| afe00 | 6e 20 74 68 65 20 70 61 63 6b 65 74 20 63 6f 6d 70 6c 65 74 65 6c 79 20 67 6f 65 73 20 74 68 72 | n.the.packet.completely.goes.thr |
| afe20 | 6f 75 67 68 20 69 74 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 64 65 71 75 65 75 65 64 20 65 6d 70 | ough.it,.it.will.be.dequeued.emp |
| afe40 | 74 79 69 6e 67 20 69 74 73 20 70 6c 61 63 65 20 69 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 | tying.its.place.in.the.queue.and |
| afe60 | 20 62 65 69 6e 67 20 65 76 65 6e 74 75 61 6c 6c 79 20 68 61 6e 64 65 64 20 74 6f 20 74 68 65 20 | .being.eventually.handed.to.the. |
| afe80 | 4e 49 43 20 74 6f 20 62 65 20 61 63 74 75 61 6c 6c 79 20 73 65 6e 74 20 6f 75 74 2e 00 57 68 65 | NIC.to.be.actually.sent.out..Whe |
| afea0 | 6e 20 61 20 70 65 65 72 20 72 65 63 65 69 76 65 73 20 61 20 6d 61 72 74 69 61 6e 20 6e 65 78 74 | n.a.peer.receives.a.martian.next |
| afec0 | 68 6f 70 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 4e 4c 52 49 20 66 6f 72 20 61 20 72 6f | hop.as.part.of.the.NLRI.for.a.ro |
| afee0 | 75 74 65 20 70 65 72 6d 69 74 20 74 68 65 20 6e 65 78 74 68 6f 70 20 74 6f 20 62 65 20 75 73 65 | ute.permit.the.nexthop.to.be.use |
| aff00 | 64 20 61 73 20 73 75 63 68 2c 20 69 6e 73 74 65 61 64 20 6f 66 20 72 65 6a 65 63 74 69 6e 67 20 | d.as.such,.instead.of.rejecting. |
| aff20 | 61 6e 64 20 72 65 73 65 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 57 68 | and.resetting.the.connection..Wh |
| aff40 | 65 6e 20 61 20 72 6f 75 74 65 20 66 61 69 6c 73 2c 20 61 20 72 6f 75 74 69 6e 67 20 75 70 64 61 | en.a.route.fails,.a.routing.upda |
| aff60 | 74 65 20 69 73 20 73 65 6e 74 20 74 6f 20 77 69 74 68 64 72 61 77 20 74 68 65 20 72 6f 75 74 65 | te.is.sent.to.withdraw.the.route |
| aff80 | 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 27 73 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | .from.the.network's.routing.tabl |
| affa0 | 65 73 2e 20 57 68 65 6e 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 2d 65 6e 61 62 6c 65 64 | es..When.the.route.is.re-enabled |
| affc0 | 2c 20 74 68 65 20 63 68 61 6e 67 65 20 69 6e 20 61 76 61 69 6c 61 62 69 6c 69 74 79 20 69 73 20 | ,.the.change.in.availability.is. |
| affe0 | 61 6c 73 6f 20 61 64 76 65 72 74 69 73 65 64 2e 20 41 20 72 6f 75 74 65 20 74 68 61 74 20 63 6f | also.advertised..A.route.that.co |
| b0000 | 6e 74 69 6e 75 61 6c 6c 79 20 66 61 69 6c 73 20 61 6e 64 20 72 65 74 75 72 6e 73 20 72 65 71 75 | ntinually.fails.and.returns.requ |
| b0020 | 69 72 65 73 20 61 20 67 72 65 61 74 20 64 65 61 6c 20 6f 66 20 6e 65 74 77 6f 72 6b 20 74 72 61 | ires.a.great.deal.of.network.tra |
| b0040 | 66 66 69 63 20 74 6f 20 75 70 64 61 74 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 61 62 6f 75 74 | ffic.to.update.the.network.about |
| b0060 | 20 74 68 65 20 72 6f 75 74 65 27 73 20 73 74 61 74 75 73 2e 00 57 68 65 6e 20 61 64 64 69 6e 67 | .the.route's.status..When.adding |
| b0080 | 20 49 50 76 36 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 78 63 68 61 6e | .IPv6.routing.information.exchan |
| b00a0 | 67 65 20 66 65 61 74 75 72 65 20 74 6f 20 42 47 50 2e 20 54 68 65 72 65 20 77 65 72 65 20 73 6f | ge.feature.to.BGP..There.were.so |
| b00c0 | 6d 65 20 70 72 6f 70 6f 73 61 6c 73 2e 20 3a 61 62 62 72 3a 60 49 45 54 46 20 28 49 6e 74 65 72 | me.proposals..:abbr:`IETF.(Inter |
| b00e0 | 6e 65 74 20 45 6e 67 69 6e 65 65 72 69 6e 67 20 54 61 73 6b 20 46 6f 72 63 65 29 60 20 3a 61 62 | net.Engineering.Task.Force)`.:ab |
| b0100 | 62 72 3a 60 49 44 52 20 28 49 6e 74 65 72 20 44 6f 6d 61 69 6e 20 52 6f 75 74 69 6e 67 29 60 20 | br:`IDR.(Inter.Domain.Routing)`. |
| b0120 | 61 64 6f 70 74 65 64 20 61 20 70 72 6f 70 6f 73 61 6c 20 63 61 6c 6c 65 64 20 4d 75 6c 74 69 70 | adopted.a.proposal.called.Multip |
| b0140 | 72 6f 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 42 47 50 2e 20 54 68 65 20 73 | rotocol.Extension.for.BGP..The.s |
| b0160 | 70 65 63 69 66 69 63 61 74 69 6f 6e 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 | pecification.is.described.in.:rf |
| b0180 | 63 3a 60 32 32 38 33 60 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 64 6f 65 73 20 6e 6f 74 20 | c:`2283`..The.protocol.does.not. |
| b01a0 | 64 65 66 69 6e 65 20 6e 65 77 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 49 74 20 64 65 66 69 6e 65 73 | define.new.protocols..It.defines |
| b01c0 | 20 6e 65 77 20 61 74 74 72 69 62 75 74 65 73 20 74 6f 20 65 78 69 73 74 69 6e 67 20 42 47 50 2e | .new.attributes.to.existing.BGP. |
| b01e0 | 20 57 68 65 6e 20 69 74 20 69 73 20 75 73 65 64 20 65 78 63 68 61 6e 67 69 6e 67 20 49 50 76 36 | .When.it.is.used.exchanging.IPv6 |
| b0200 | 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 74 20 69 73 20 63 61 6c 6c 65 | .routing.information.it.is.calle |
| b0220 | 64 20 42 47 50 2d 34 2b 2e 20 57 68 65 6e 20 69 74 20 69 73 20 75 73 65 64 20 66 6f 72 20 65 78 | d.BGP-4+..When.it.is.used.for.ex |
| b0240 | 63 68 61 6e 67 69 6e 67 20 6d 75 6c 74 69 63 61 73 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 | changing.multicast.routing.infor |
| b0260 | 6d 61 74 69 6f 6e 20 69 74 20 69 73 20 63 61 6c 6c 65 64 20 4d 42 47 50 2e 00 57 68 65 6e 20 61 | mation.it.is.called.MBGP..When.a |
| b0280 | 6c 6c 20 74 68 65 20 75 6e 64 65 72 6c 61 79 20 6c 69 6e 6b 73 20 67 6f 20 64 6f 77 6e 20 74 68 | ll.the.underlay.links.go.down.th |
| b02a0 | 65 20 50 45 20 6e 6f 20 6c 6f 6e 67 65 72 20 68 61 73 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 | e.PE.no.longer.has.access.to.the |
| b02c0 | 20 56 78 4c 41 4e 20 2b 6f 76 65 72 6c 61 79 2e 20 54 6f 20 70 72 65 76 65 6e 74 20 62 6c 61 63 | .VxLAN.+overlay..To.prevent.blac |
| b02e0 | 6b 68 6f 6c 69 6e 67 20 6f 66 20 74 72 61 66 66 69 63 20 74 68 65 20 73 65 72 76 65 72 2f 45 53 | kholing.of.traffic.the.server/ES |
| b0300 | 20 6c 69 6e 6b 73 20 61 72 65 20 70 72 6f 74 6f 64 6f 77 6e 65 64 20 6f 6e 20 74 68 65 20 50 45 | .links.are.protodowned.on.the.PE |
| b0320 | 2e 00 57 68 65 6e 20 61 6e 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 73 65 72 76 65 72 20 64 | ..When.an.authoritative.server.d |
| b0340 | 6f 65 73 20 6e 6f 74 20 61 6e 73 77 65 72 20 61 20 71 75 65 72 79 20 6f 72 20 73 65 6e 64 73 20 | oes.not.answer.a.query.or.sends. |
| b0360 | 61 20 72 65 70 6c 79 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 64 6f 65 73 20 6e 6f 74 20 6c 69 | a.reply.the.recursor.does.not.li |
| b0380 | 6b 65 2c 20 69 74 20 69 73 20 74 68 72 6f 74 74 6c 65 64 2e 20 41 6e 79 20 73 65 72 76 65 72 73 | ke,.it.is.throttled..Any.servers |
| b03a0 | 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 73 75 70 70 6c 69 65 64 20 6e 65 74 6d 61 73 6b 73 20 | .matching.the.supplied.netmasks. |
| b03c0 | 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 20 74 68 72 6f 74 74 6c 65 64 2e 00 57 68 65 6e 20 63 6f | will.never.be.throttled..When.co |
| b03e0 | 6e 66 69 67 75 72 65 64 2c 20 50 50 50 6f 45 20 77 69 6c 6c 20 63 72 65 61 74 65 20 74 68 65 20 | nfigured,.PPPoE.will.create.the. |
| b0400 | 6e 65 63 65 73 73 61 72 79 20 56 4c 41 4e 73 20 77 68 65 6e 20 72 65 71 75 69 72 65 64 2e 20 4f | necessary.VLANs.when.required..O |
| b0420 | 6e 63 65 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 68 61 73 20 62 65 65 6e 20 63 61 | nce.the.user.session.has.been.ca |
| b0440 | 6e 63 65 6c 6c 65 64 20 61 6e 64 20 74 68 65 20 56 4c 41 4e 20 69 73 20 6e 6f 74 20 6e 65 65 64 | ncelled.and.the.VLAN.is.not.need |
| b0460 | 65 64 20 61 6e 79 6d 6f 72 65 2c 20 56 79 4f 53 20 77 69 6c 6c 20 72 65 6d 6f 76 65 20 69 74 20 | ed.anymore,.VyOS.will.remove.it. |
| b0480 | 61 67 61 69 6e 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 52 61 6e 64 6f 6d | again..When.configuring.a.Random |
| b04a0 | 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 3a 20 2a 2a 74 68 65 20 68 69 67 68 65 72 20 74 68 65 | -Detect.policy:.**the.higher.the |
| b04c0 | 20 70 72 65 63 65 64 65 6e 63 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 | .precedence.number,.the.higher.t |
| b04e0 | 68 65 20 70 72 69 6f 72 69 74 79 2a 2a 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 | he.priority**..When.configuring. |
| b0500 | 79 6f 75 72 20 66 69 6c 74 65 72 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 60 60 54 | your.filter,.you.can.use.the.``T |
| b0520 | 61 62 60 60 20 6b 65 79 20 74 6f 20 73 65 65 20 74 68 65 20 6d 61 6e 79 20 64 69 66 66 65 72 65 | ab``.key.to.see.the.many.differe |
| b0540 | 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 2e | nt.parameters.you.can.configure. |
| b0560 | 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 79 6f 75 72 20 74 72 61 66 66 69 63 20 70 | .When.configuring.your.traffic.p |
| b0580 | 6f 6c 69 63 79 2c 20 79 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 64 61 74 61 | olicy,.you.will.have.to.set.data |
| b05a0 | 20 72 61 74 65 20 76 61 6c 75 65 73 2c 20 77 61 74 63 68 20 6f 75 74 20 74 68 65 20 75 6e 69 74 | .rate.values,.watch.out.the.unit |
| b05c0 | 73 20 79 6f 75 20 61 72 65 20 6d 61 6e 61 67 69 6e 67 2c 20 69 74 20 69 73 20 65 61 73 79 20 74 | s.you.are.managing,.it.is.easy.t |
| b05e0 | 6f 20 67 65 74 20 63 6f 6e 66 75 73 65 64 20 77 69 74 68 20 74 68 65 20 64 69 66 66 65 72 65 6e | o.get.confused.with.the.differen |
| b0600 | 74 20 70 72 65 66 69 78 65 73 20 61 6e 64 20 73 75 66 66 69 78 65 73 20 79 6f 75 20 63 61 6e 20 | t.prefixes.and.suffixes.you.can. |
| b0620 | 75 73 65 2e 20 56 79 4f 53 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 73 68 6f 77 20 79 6f 75 20 74 | use..VyOS.will.always.show.you.t |
| b0640 | 68 65 20 64 69 66 66 65 72 65 6e 74 20 75 6e 69 74 73 20 79 6f 75 20 63 61 6e 20 75 73 65 2e 00 | he.different.units.you.can.use.. |
| b0660 | 57 68 65 6e 20 64 65 66 69 6e 69 6e 67 20 61 20 72 75 6c 65 2c 20 69 74 20 69 73 20 65 6e 61 62 | When.defining.a.rule,.it.is.enab |
| b0680 | 6c 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 2c 20 69 74 | le.by.default..In.some.cases,.it |
| b06a0 | 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 6a 75 73 74 20 64 69 73 61 62 6c 65 20 74 68 65 20 72 | .is.useful.to.just.disable.the.r |
| b06c0 | 75 6c 65 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 72 65 6d 6f 76 69 6e 67 20 69 74 2e 00 57 68 | ule,.rather.than.removing.it..Wh |
| b06e0 | 65 6e 20 64 65 66 69 6e 69 6e 67 20 61 20 72 75 6c 65 2c 20 69 74 20 69 73 20 65 6e 61 62 6c 65 | en.defining.a.rule,.it.is.enable |
| b0700 | 64 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 2c 20 69 74 20 | d.by.default..In.some.cases,.it. |
| b0720 | 69 73 20 75 73 65 66 75 6c 20 74 6f 20 6a 75 73 74 20 64 69 73 61 62 6c 65 20 74 68 65 20 72 75 | is.useful.to.just.disable.the.ru |
| b0740 | 6c 65 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 72 65 6d 6f 76 69 6e 67 20 69 74 2e 00 57 68 65 | le,.rather.than.removing.it..Whe |
| b0760 | 6e 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 74 72 61 6e 73 6c 61 74 65 64 20 61 64 64 72 65 73 | n.defining.the.translated.addres |
| b0780 | 73 2c 20 63 61 6c 6c 65 64 20 60 60 62 61 63 6b 65 6e 64 73 60 60 2c 20 61 20 60 60 77 65 69 67 | s,.called.``backends``,.a.``weig |
| b07a0 | 68 74 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 6c 65 | ht``.must.be.configured..This.le |
| b07c0 | 74 73 20 74 68 65 20 75 73 65 72 20 64 65 66 69 6e 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 20 | ts.the.user.define.load.balance. |
| b07e0 | 64 69 73 74 72 69 62 75 74 69 6f 6e 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 69 72 20 | distribution.according.to.their. |
| b0800 | 6e 65 65 64 73 2e 20 54 68 65 6d 20 73 75 6d 20 6f 66 20 61 6c 6c 20 74 68 65 20 77 65 69 67 68 | needs..Them.sum.of.all.the.weigh |
| b0820 | 74 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 62 61 63 6b 65 6e 64 73 20 73 68 6f 75 | ts.defined.for.the.backends.shou |
| b0840 | 6c 64 20 62 65 20 65 71 75 61 6c 20 74 6f 20 31 30 30 2e 20 49 6e 20 6f 64 65 72 20 77 6f 72 64 | ld.be.equal.to.100..In.oder.word |
| b0860 | 73 2c 20 74 68 65 20 77 65 69 67 68 74 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 62 61 | s,.the.weight.defined.for.the.ba |
| b0880 | 63 6b 65 6e 64 20 69 73 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 74 68 65 20 63 | ckend.is.the.percentage.of.the.c |
| b08a0 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 68 61 74 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 73 75 63 | onnections.that.will.receive.suc |
| b08c0 | 68 20 62 61 63 6b 65 6e 64 2e 00 57 68 65 6e 20 64 65 71 75 65 75 69 6e 67 2c 20 65 61 63 68 20 | h.backend..When.dequeuing,.each. |
| b08e0 | 68 61 73 68 2d 62 75 63 6b 65 74 20 77 69 74 68 20 64 61 74 61 20 69 73 20 71 75 65 72 69 65 64 | hash-bucket.with.data.is.queried |
| b0900 | 20 69 6e 20 61 20 72 6f 75 6e 64 20 72 6f 62 69 6e 20 66 61 73 68 69 6f 6e 2e 20 59 6f 75 20 63 | .in.a.round.robin.fashion..You.c |
| b0920 | 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 71 | an.configure.the.length.of.the.q |
| b0940 | 75 65 75 65 2e 00 57 68 65 6e 20 64 65 73 69 67 6e 69 6e 67 20 79 6f 75 72 20 4e 41 54 20 72 75 | ueue..When.designing.your.NAT.ru |
| b0960 | 6c 65 73 65 74 20 6c 65 61 76 65 20 73 6f 6d 65 20 73 70 61 63 65 20 62 65 74 77 65 65 6e 20 63 | leset.leave.some.space.between.c |
| b0980 | 6f 6e 73 65 63 75 74 69 76 65 20 72 75 6c 65 73 20 66 6f 72 20 6c 61 74 65 72 20 65 78 74 65 6e | onsecutive.rules.for.later.exten |
| b09a0 | 73 69 6f 6e 2e 20 59 6f 75 72 20 72 75 6c 65 73 65 74 20 63 6f 75 6c 64 20 73 74 61 72 74 20 77 | sion..Your.ruleset.could.start.w |
| b09c0 | 69 74 68 20 6e 75 6d 62 65 72 73 20 31 30 2c 20 32 30 2c 20 33 30 2e 20 59 6f 75 20 74 68 75 73 | ith.numbers.10,.20,.30..You.thus |
| b09e0 | 20 63 61 6e 20 6c 61 74 65 72 20 65 78 74 65 6e 64 20 74 68 65 20 72 75 6c 65 73 65 74 20 61 6e | .can.later.extend.the.ruleset.an |
| b0a00 | 64 20 70 6c 61 63 65 20 6e 65 77 20 72 75 6c 65 73 20 62 65 74 77 65 65 6e 20 65 78 69 73 74 69 | d.place.new.rules.between.existi |
| b0a20 | 6e 67 20 6f 6e 65 73 2e 00 57 68 65 6e 20 64 6f 69 6e 67 20 66 61 75 6c 74 20 69 73 6f 6c 61 74 | ng.ones..When.doing.fault.isolat |
| b0a40 | 69 6f 6e 20 77 69 74 68 20 70 69 6e 67 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 66 69 72 73 74 20 | ion.with.ping,.you.should.first. |
| b0a60 | 72 75 6e 20 69 74 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 68 6f 73 74 2c 20 74 6f 20 76 65 72 | run.it.on.the.local.host,.to.ver |
| b0a80 | 69 66 79 20 74 68 61 74 20 74 68 65 20 6c 6f 63 61 6c 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 | ify.that.the.local.network.inter |
| b0aa0 | 66 61 63 65 20 69 73 20 75 70 20 61 6e 64 20 72 75 6e 6e 69 6e 67 2e 20 54 68 65 6e 2c 20 63 6f | face.is.up.and.running..Then,.co |
| b0ac0 | 6e 74 69 6e 75 65 20 77 69 74 68 20 68 6f 73 74 73 20 61 6e 64 20 67 61 74 65 77 61 79 73 20 66 | ntinue.with.hosts.and.gateways.f |
| b0ae0 | 75 72 74 68 65 72 20 64 6f 77 6e 20 74 68 65 20 72 6f 61 64 20 74 6f 77 61 72 64 73 20 79 6f 75 | urther.down.the.road.towards.you |
| b0b00 | 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 52 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 61 | r.destination..Round-trip.time.a |
| b0b20 | 6e 64 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 73 74 61 74 69 73 74 69 63 73 20 61 72 65 20 63 6f | nd.packet.loss.statistics.are.co |
| b0b40 | 6d 70 75 74 65 64 2e 00 57 68 65 6e 20 66 69 72 73 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f | mputed..When.first.connecting.to |
| b0b60 | 20 74 68 65 20 6e 65 77 20 56 50 4e 20 74 68 65 20 75 73 65 72 20 69 73 20 70 72 6f 6d 70 74 65 | .the.new.VPN.the.user.is.prompte |
| b0b80 | 64 20 74 6f 20 65 6e 74 65 72 20 70 72 6f 70 65 72 20 63 72 65 64 65 6e 74 69 61 6c 73 2e 00 57 | d.to.enter.proper.credentials..W |
| b0ba0 | 68 65 6e 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 43 47 4e 41 54 2c 20 65 6e 73 75 72 69 6e 67 | hen.implementing.CGNAT,.ensuring |
| b0bc0 | 20 74 68 61 74 20 74 68 65 72 65 20 61 72 65 20 65 6e 6f 75 67 68 20 70 6f 72 74 73 20 61 6c 6c | .that.there.are.enough.ports.all |
| b0be0 | 6f 63 61 74 65 64 20 70 65 72 20 73 75 62 73 63 72 69 62 65 72 20 69 73 20 63 72 69 74 69 63 61 | ocated.per.subscriber.is.critica |
| b0c00 | 6c 2e 20 42 65 6c 6f 77 20 69 73 20 61 20 73 75 6d 6d 61 72 79 20 62 61 73 65 64 20 6f 6e 20 52 | l..Below.is.a.summary.based.on.R |
| b0c20 | 46 43 20 36 38 38 38 2e 00 57 68 65 6e 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 | FC.6888..When.loading.the.certif |
| b0c40 | 69 63 61 74 65 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 73 74 72 69 70 | icate.you.need.to.manually.strip |
| b0c60 | 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 43 45 52 54 49 46 49 43 41 54 45 2d 2d 2d | .the.``-----BEGIN.CERTIFICATE--- |
| b0c80 | 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 20 43 45 52 54 49 46 49 43 41 54 45 2d | --``.and.``-----END.CERTIFICATE- |
| b0ca0 | 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 69 66 69 63 61 | ----``.tags..Also,.the.certifica |
| b0cc0 | 74 65 2f 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 | te/key.needs.to.be.presented.in. |
| b0ce0 | 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b | a.single.line.without.line.break |
| b0d00 | 73 20 28 60 60 5c 6e 60 60 29 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 | s.(``\n``),.this.can.be.done.usi |
| b0d20 | 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 68 65 6c 6c 20 63 6f 6d 6d 61 6e 64 3a 00 | ng.the.following.shell.command:. |
| b0d40 | 57 68 65 6e 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 | When.loading.the.certificate.you |
| b0d60 | 20 6e 65 65 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d | .need.to.manually.strip.the.``-- |
| b0d80 | 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 | ---BEGIN.KEY-----``.and.``-----E |
| b0da0 | 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 | ND.KEY-----``.tags..Also,.the.ce |
| b0dc0 | 72 74 69 66 69 63 61 74 65 2f 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e | rtificate/key.needs.to.be.presen |
| b0de0 | 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e | ted.in.a.single.line.without.lin |
| b0e00 | 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 64 | e.breaks.(``\n``),.this.can.be.d |
| b0e20 | 6f 6e 65 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 68 65 6c 6c 20 63 6f | one.using.the.following.shell.co |
| b0e40 | 6d 6d 61 6e 64 3a 00 57 68 65 6e 20 6d 61 74 68 63 69 6e 67 20 61 6c 6c 20 70 61 74 74 65 72 6e | mmand:.When.mathcing.all.pattern |
| b0e60 | 73 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 72 75 6c 65 2c 20 74 68 65 6e 20 64 69 66 66 65 72 | s.defined.in.a.rule,.then.differ |
| b0e80 | 65 6e 74 20 61 63 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 6d 61 64 65 2e 20 54 68 69 73 20 69 6e | ent.actions.can.be.made..This.in |
| b0ea0 | 63 6c 75 64 65 73 20 64 72 6f 70 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 2c 20 6d 6f 64 69 66 | cludes.droping.the.packet,.modif |
| b0ec0 | 79 69 6e 67 20 63 65 72 74 61 69 6e 20 64 61 74 61 2c 20 6f 72 20 73 65 74 74 69 6e 67 20 61 20 | ying.certain.data,.or.setting.a. |
| b0ee0 | 64 69 66 66 65 72 65 6e 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 57 68 65 6e 20 6e 6f | different.routing.table..When.no |
| b0f00 | 20 6f 70 74 69 6f 6e 73 2f 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 75 73 65 64 2c 20 74 68 | .options/parameters.are.used,.th |
| b0f20 | 65 20 63 6f 6e 74 65 6e 74 73 20 6f 66 20 74 68 65 20 6d 61 69 6e 20 73 79 73 6c 6f 67 20 66 69 | e.contents.of.the.main.syslog.fi |
| b0f40 | 6c 65 20 61 72 65 20 64 69 73 70 6c 61 79 65 64 2e 00 57 68 65 6e 20 6e 6f 2d 72 65 6c 65 61 73 | le.are.displayed..When.no-releas |
| b0f60 | 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 61 76 6f 69 | e.is.specified,.dhcp6c.will.avoi |
| b0f80 | 64 20 73 65 6e 64 69 6e 67 20 61 20 72 65 6c 65 61 73 65 20 6d 65 73 73 61 67 65 20 6f 6e 20 63 | d.sending.a.release.message.on.c |
| b0fa0 | 6c 69 65 6e 74 20 65 78 69 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 70 72 65 76 65 6e 74 20 6c | lient.exit.in.order.to.prevent.l |
| b0fc0 | 6f 73 69 6e 67 20 61 6e 20 61 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 | osing.an.assigned.address.or.pre |
| b0fe0 | 66 69 78 2e 00 57 68 65 6e 20 6e 6f 2d 72 65 6c 65 61 73 65 20 69 73 20 73 70 65 63 69 66 69 65 | fix..When.no-release.is.specifie |
| b1000 | 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 73 65 6e 64 20 61 20 72 65 6c 65 61 73 65 20 6d 65 | d,.dhcp6c.will.send.a.release.me |
| b1020 | 73 73 61 67 65 20 6f 6e 20 63 6c 69 65 6e 74 20 65 78 69 74 20 74 6f 20 70 72 65 76 65 6e 74 20 | ssage.on.client.exit.to.prevent. |
| b1040 | 6c 6f 73 69 6e 67 20 61 6e 20 61 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 | losing.an.assigned.address.or.pr |
| b1060 | 65 66 69 78 2e 00 57 68 65 6e 20 70 72 6f 63 65 73 73 69 6e 67 20 70 61 63 6b 65 74 73 20 66 72 | efix..When.processing.packets.fr |
| b1080 | 6f 6d 20 61 20 6e 65 69 67 68 62 6f 72 20 70 72 6f 63 65 73 73 20 74 68 65 20 6e 75 6d 62 65 72 | om.a.neighbor.process.the.number |
| b10a0 | 20 6f 66 20 70 61 63 6b 65 74 73 20 69 6e 63 6f 6d 69 6e 67 20 61 74 20 6f 6e 65 20 74 69 6d 65 | .of.packets.incoming.at.one.time |
| b10c0 | 20 62 65 66 6f 72 65 20 6d 6f 76 69 6e 67 20 6f 6e 20 74 6f 20 74 68 65 20 6e 65 78 74 20 74 61 | .before.moving.on.to.the.next.ta |
| b10e0 | 73 6b 2e 00 57 68 65 6e 20 72 61 70 69 64 2d 63 6f 6d 6d 69 74 20 69 73 20 73 70 65 63 69 66 69 | sk..When.rapid-commit.is.specifi |
| b1100 | 65 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 69 6e 63 6c 75 64 65 20 61 20 72 61 70 69 64 2d | ed,.dhcp6c.will.include.a.rapid- |
| b1120 | 63 6f 6d 6d 69 74 20 6f 70 74 69 6f 6e 20 69 6e 20 73 6f 6c 69 63 69 74 20 6d 65 73 73 61 67 65 | commit.option.in.solicit.message |
| b1140 | 73 20 61 6e 64 20 77 61 69 74 20 66 6f 72 20 61 6e 20 69 6d 6d 65 64 69 61 74 65 20 72 65 70 6c | s.and.wait.for.an.immediate.repl |
| b1160 | 79 20 69 6e 73 74 65 61 64 20 6f 66 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 2e 00 57 68 65 | y.instead.of.advertisements..Whe |
| b1180 | 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 63 61 70 61 | n.remote.peer.does.not.have.capa |
| b11a0 | 62 69 6c 69 74 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 66 65 61 74 75 72 65 2c 20 72 65 6d 6f | bility.negotiation.feature,.remo |
| b11c0 | 74 65 20 70 65 65 72 20 77 69 6c 6c 20 6e 6f 74 20 73 65 6e 64 20 61 6e 79 20 63 61 70 61 62 69 | te.peer.will.not.send.any.capabi |
| b11e0 | 6c 69 74 69 65 73 20 61 74 20 61 6c 6c 2e 20 49 6e 20 74 68 61 74 20 63 61 73 65 2c 20 62 67 70 | lities.at.all..In.that.case,.bgp |
| b1200 | 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 63 6f 6e 66 69 67 | .configures.the.peer.with.config |
| b1220 | 75 72 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 57 68 65 6e 20 72 75 6e 6e 69 6e 67 20 | ured.capabilities..When.running. |
| b1240 | 69 74 20 61 74 20 31 47 62 69 74 20 61 6e 64 20 6c 6f 77 65 72 2c 20 79 6f 75 20 6d 61 79 20 77 | it.at.1Gbit.and.lower,.you.may.w |
| b1260 | 61 6e 74 20 74 6f 20 72 65 64 75 63 65 20 74 68 65 20 60 71 75 65 75 65 2d 6c 69 6d 69 74 60 20 | ant.to.reduce.the.`queue-limit`. |
| b1280 | 74 6f 20 31 30 30 30 20 70 61 63 6b 65 74 73 20 6f 72 20 6c 65 73 73 2e 20 49 6e 20 72 61 74 65 | to.1000.packets.or.less..In.rate |
| b12a0 | 73 20 6c 69 6b 65 20 31 30 4d 62 69 74 2c 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 73 | s.like.10Mbit,.you.may.want.to.s |
| b12c0 | 65 74 20 69 74 20 74 6f 20 36 30 30 20 70 61 63 6b 65 74 73 2e 00 57 68 65 6e 20 73 65 6e 64 69 | et.it.to.600.packets..When.sendi |
| b12e0 | 6e 67 20 50 49 4d 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 74 65 6c 6c 20 50 49 4d 20 74 6f | ng.PIM.hello.packets.tell.PIM.to |
| b1300 | 20 6e 6f 74 20 73 65 6e 64 20 61 6e 79 20 76 36 20 73 65 63 6f 6e 64 61 72 79 20 61 64 64 72 65 | .not.send.any.v6.secondary.addre |
| b1320 | 73 73 65 73 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 69 6e 66 6f | sses.on.the.interface..This.info |
| b1340 | 72 6d 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 74 6f 20 61 6c 6c 6f 77 20 50 49 4d 20 74 6f 20 | rmation.is.used.to.allow.PIM.to. |
| b1360 | 75 73 65 20 76 36 20 6e 65 78 74 68 6f 70 73 20 69 6e 20 69 74 27 73 20 64 65 63 69 73 69 6f 6e | use.v6.nexthops.in.it's.decision |
| b1380 | 20 66 6f 72 20 3a 61 62 62 72 3a 60 52 50 46 20 28 52 65 76 65 72 73 65 20 50 61 74 68 20 46 6f | .for.:abbr:`RPF.(Reverse.Path.Fo |
| b13a0 | 72 77 61 72 64 69 6e 67 29 60 20 6c 6f 6f 6b 75 70 20 69 66 20 74 68 69 73 20 6f 70 74 69 6f 6e | rwarding)`.lookup.if.this.option |
| b13c0 | 20 69 73 20 6e 6f 74 20 73 65 74 20 28 64 65 66 61 75 6c 74 29 2e 00 57 68 65 6e 20 73 65 74 20 | .is.not.set.(default)..When.set. |
| b13e0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 22 64 69 | the.interface.is.enabled.for."di |
| b1400 | 61 6c 2d 6f 6e 2d 64 65 6d 61 6e 64 22 2e 00 57 68 65 6e 20 73 70 65 63 69 66 69 65 64 2c 20 74 | al-on-demand"..When.specified,.t |
| b1420 | 68 69 73 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 6f 6e 6c 79 20 6b 65 79 77 6f 72 64 20 66 | his.should.be.the.only.keyword.f |
| b1440 | 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 57 68 65 6e 20 73 74 61 72 74 69 6e 67 20 | or.the.interface..When.starting. |
| b1460 | 61 20 56 79 4f 53 20 6c 69 76 65 20 73 79 73 74 65 6d 20 28 74 68 65 20 69 6e 73 74 61 6c 6c 61 | a.VyOS.live.system.(the.installa |
| b1480 | 74 69 6f 6e 20 43 44 29 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6b 65 79 62 6f 61 72 64 | tion.CD).the.configured.keyboard |
| b14a0 | 20 6c 61 79 6f 75 74 20 64 65 66 61 75 6c 74 73 20 74 6f 20 55 53 2e 20 41 73 20 74 68 69 73 20 | .layout.defaults.to.US..As.this. |
| b14c0 | 6d 69 67 68 74 20 6e 6f 74 20 73 75 69 74 65 20 65 76 65 72 79 6f 6e 65 27 73 20 75 73 65 20 63 | might.not.suite.everyone's.use.c |
| b14e0 | 61 73 65 20 79 6f 75 20 63 61 6e 20 61 64 6a 75 73 74 20 74 68 65 20 75 73 65 64 20 6b 65 79 62 | ase.you.can.adjust.the.used.keyb |
| b1500 | 6f 61 72 64 20 6c 61 79 6f 75 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c | oard.layout.on.the.system.consol |
| b1520 | 65 2e 00 57 68 65 6e 20 73 74 61 72 74 69 6e 67 20 61 20 56 79 4f 53 20 6c 69 76 65 20 73 79 73 | e..When.starting.a.VyOS.live.sys |
| b1540 | 74 65 6d 20 28 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 43 44 29 20 74 68 65 20 63 6f | tem.(the.installation.CD).the.co |
| b1560 | 6e 66 69 67 75 72 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 64 65 66 61 75 6c 74 | nfigured.keyboard.layout.default |
| b1580 | 73 20 74 6f 20 55 53 2e 20 41 73 20 74 68 69 73 20 6d 69 67 68 74 20 6e 6f 74 20 73 75 69 74 65 | s.to.US..As.this.might.not.suite |
| b15a0 | 20 65 76 65 72 79 6f 6e 65 73 20 75 73 65 20 63 61 73 65 20 79 6f 75 20 63 61 6e 20 61 64 6a 75 | .everyones.use.case.you.can.adju |
| b15c0 | 73 74 20 74 68 65 20 75 73 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 6f 6e 20 74 | st.the.used.keyboard.layout.on.t |
| b15e0 | 68 65 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c 65 2e 00 57 68 65 6e 20 74 68 65 20 44 48 43 50 | he.system.console..When.the.DHCP |
| b1600 | 20 73 65 72 76 65 72 20 69 73 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 64 79 6e 61 6d 69 63 61 6c | .server.is.considering.dynamical |
| b1620 | 6c 79 20 61 6c 6c 6f 63 61 74 69 6e 67 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 | ly.allocating.an.IP.address.to.a |
| b1640 | 20 63 6c 69 65 6e 74 2c 20 69 74 20 66 69 72 73 74 20 73 65 6e 64 73 20 61 6e 20 49 43 4d 50 20 | .client,.it.first.sends.an.ICMP. |
| b1660 | 45 63 68 6f 20 72 65 71 75 65 73 74 20 28 61 20 70 69 6e 67 29 20 74 6f 20 74 68 65 20 61 64 64 | Echo.request.(a.ping).to.the.add |
| b1680 | 72 65 73 73 20 62 65 69 6e 67 20 61 73 73 69 67 6e 65 64 2e 20 49 74 20 77 61 69 74 73 20 66 6f | ress.being.assigned..It.waits.fo |
| b16a0 | 72 20 61 20 73 65 63 6f 6e 64 2c 20 61 6e 64 20 69 66 20 6e 6f 20 49 43 4d 50 20 45 63 68 6f 20 | r.a.second,.and.if.no.ICMP.Echo. |
| b16c0 | 72 65 73 70 6f 6e 73 65 20 68 61 73 20 62 65 65 6e 20 68 65 61 72 64 2c 20 69 74 20 61 73 73 69 | response.has.been.heard,.it.assi |
| b16e0 | 67 6e 73 20 74 68 65 20 61 64 64 72 65 73 73 2e 00 57 68 65 6e 20 74 68 65 20 63 6c 6f 73 65 2d | gns.the.address..When.the.close- |
| b1700 | 61 63 74 69 6f 6e 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 20 6f 6e 20 74 68 65 20 70 65 65 72 | action.option.is.set.on.the.peer |
| b1720 | 73 2c 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 74 79 70 65 20 6f 66 20 65 61 63 68 20 70 | s,.the.connection-type.of.each.p |
| b1740 | 65 65 72 20 68 61 73 20 74 6f 20 63 6f 6e 73 69 64 65 72 65 64 20 63 61 72 65 66 75 6c 6c 79 2e | eer.has.to.considered.carefully. |
| b1760 | 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 73 20 73 | .For.example,.if.the.option.is.s |
| b1780 | 65 74 20 6f 6e 20 62 6f 74 68 20 70 65 65 72 73 2c 20 74 68 65 6e 20 62 6f 74 68 20 77 6f 75 6c | et.on.both.peers,.then.both.woul |
| b17a0 | 64 20 61 74 74 65 6d 70 74 20 74 6f 20 69 6e 69 74 69 61 74 65 20 61 6e 64 20 68 6f 6c 64 20 6f | d.attempt.to.initiate.and.hold.o |
| b17c0 | 70 65 6e 20 6d 75 6c 74 69 70 6c 65 20 63 6f 70 69 65 73 20 6f 66 20 65 61 63 68 20 63 68 69 6c | pen.multiple.copies.of.each.chil |
| b17e0 | 64 20 53 41 2e 20 54 68 69 73 20 6d 69 67 68 74 20 6c 65 61 64 20 74 6f 20 69 6e 73 74 61 62 69 | d.SA..This.might.lead.to.instabi |
| b1800 | 6c 69 74 79 20 6f 66 20 74 68 65 20 64 65 76 69 63 65 20 6f 72 20 63 70 75 2f 6d 65 6d 6f 72 79 | lity.of.the.device.or.cpu/memory |
| b1820 | 20 75 74 69 6c 69 7a 61 74 69 6f 6e 2e 00 57 68 65 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 | .utilization..When.the.command.a |
| b1840 | 62 6f 76 65 20 69 73 20 73 65 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 65 76 | bove.is.set,.VyOS.will.answer.ev |
| b1860 | 65 72 79 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 61 64 64 72 65 73 73 65 64 20 | ery.ICMP.echo.request.addressed. |
| b1880 | 74 6f 20 69 74 73 65 6c 66 2c 20 62 75 74 20 74 68 61 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 68 61 | to.itself,.but.that.will.only.ha |
| b18a0 | 70 70 65 6e 20 69 66 20 6e 6f 20 6f 74 68 65 72 20 72 75 6c 65 20 69 73 20 61 70 70 6c 69 65 64 | ppen.if.no.other.rule.is.applied |
| b18c0 | 20 64 72 6f 70 70 69 6e 67 20 6f 72 20 72 65 6a 65 63 74 69 6e 67 20 6c 6f 63 61 6c 20 65 63 68 | .dropping.or.rejecting.local.ech |
| b18e0 | 6f 20 72 65 71 75 65 73 74 73 2e 20 49 6e 20 63 61 73 65 20 6f 66 20 63 6f 6e 66 6c 69 63 74 2c | o.requests..In.case.of.conflict, |
| b1900 | 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 61 6e 73 77 65 72 20 49 43 4d 50 20 65 63 68 6f 20 | .VyOS.will.not.answer.ICMP.echo. |
| b1920 | 72 65 71 75 65 73 74 73 2e 00 57 68 65 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 | requests..When.the.command.above |
| b1940 | 20 69 73 20 73 65 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 61 6e 73 77 65 72 20 6e 6f 20 49 43 4d | .is.set,.VyOS.will.answer.no.ICM |
| b1960 | 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 61 64 64 72 65 73 73 65 64 20 74 6f 20 69 74 73 65 | P.echo.request.addressed.to.itse |
| b1980 | 6c 66 20 61 74 20 61 6c 6c 2c 20 6e 6f 20 6d 61 74 74 65 72 20 77 68 65 72 65 20 69 74 20 63 6f | lf.at.all,.no.matter.where.it.co |
| b19a0 | 6d 65 73 20 66 72 6f 6d 20 6f 72 20 77 68 65 74 68 65 72 20 6d 6f 72 65 20 73 70 65 63 69 66 69 | mes.from.or.whether.more.specifi |
| b19c0 | 63 20 72 75 6c 65 73 20 61 72 65 20 62 65 69 6e 67 20 61 70 70 6c 69 65 64 20 74 6f 20 61 63 63 | c.rules.are.being.applied.to.acc |
| b19e0 | 65 70 74 20 74 68 65 6d 2e 00 57 68 65 6e 20 74 68 65 20 76 72 72 70 20 67 72 6f 75 70 20 69 73 | ept.them..When.the.vrrp.group.is |
| b1a00 | 20 61 20 6d 65 6d 62 65 72 20 6f 66 20 74 68 65 20 73 79 6e 63 20 67 72 6f 75 70 20 77 69 6c 6c | .a.member.of.the.sync.group.will |
| b1a20 | 20 75 73 65 20 6f 6e 6c 79 20 74 68 65 20 73 79 6e 63 20 67 72 6f 75 70 20 68 65 61 6c 74 68 20 | .use.only.the.sync.group.health. |
| b1a40 | 63 68 65 63 6b 20 73 63 72 69 70 74 2e 20 54 68 69 73 20 65 78 61 6d 70 6c 65 20 73 68 6f 77 73 | check.script..This.example.shows |
| b1a60 | 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 66 6f 72 20 74 68 65 20 73 79 6e | .how.to.configure.it.for.the.syn |
| b1a80 | 63 20 67 72 6f 75 70 3a 00 57 68 65 6e 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 69 73 20 65 6e | c.group:.When.timestamping.is.en |
| b1aa0 | 61 62 6c 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2c 20 63 68 72 6f 6e 79 27 73 20 | abled.on.an.interface,.chrony's. |
| b1ac0 | 64 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 69 73 20 74 6f 20 74 72 79 20 74 6f 20 63 6f | default.behavior.is.to.try.to.co |
| b1ae0 | 6e 66 69 67 75 72 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6f 6e 6c 79 20 74 69 | nfigure.the.interface.to.only.ti |
| b1b00 | 6d 65 73 74 61 6d 70 20 4e 54 50 20 70 61 63 6b 65 74 73 2e 20 49 66 20 74 68 69 73 20 6d 6f 64 | mestamp.NTP.packets..If.this.mod |
| b1b20 | 65 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 2c 20 63 68 72 6f 6e 79 20 77 69 6c 6c 20 | e.is.not.supported,.chrony.will. |
| b1b40 | 61 74 74 65 6d 70 74 20 74 6f 20 73 65 74 20 69 74 20 74 6f 20 74 69 6d 65 73 74 61 6d 70 20 61 | attempt.to.set.it.to.timestamp.a |
| b1b60 | 6c 6c 20 70 61 63 6b 65 74 73 2e 20 49 66 20 6e 65 69 74 68 65 72 20 6f 70 74 69 6f 6e 20 69 73 | ll.packets..If.neither.option.is |
| b1b80 | 20 73 75 70 70 6f 72 74 65 64 20 28 65 2e 67 2e 20 74 68 65 20 4e 49 43 20 63 61 6e 20 6f 6e 6c | .supported.(e.g..the.NIC.can.onl |
| b1ba0 | 79 20 74 69 6d 65 73 74 61 6d 70 20 72 65 63 65 69 76 65 64 20 50 54 50 20 70 61 63 6b 65 74 73 | y.timestamp.received.PTP.packets |
| b1bc0 | 29 2c 20 63 68 72 6f 6e 79 20 77 69 6c 6c 20 6c 65 76 65 72 61 67 65 20 74 69 6d 65 73 74 61 6d | ),.chrony.will.leverage.timestam |
| b1be0 | 70 69 6e 67 20 6f 6e 20 74 72 61 6e 73 6d 69 74 74 65 64 20 70 61 63 6b 65 74 73 20 6f 6e 6c 79 | ping.on.transmitted.packets.only |
| b1c00 | 2c 20 77 68 69 63 68 20 73 74 69 6c 6c 20 70 72 6f 76 69 64 65 73 20 73 6f 6d 65 20 62 65 6e 65 | ,.which.still.provides.some.bene |
| b1c20 | 66 69 74 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 44 48 43 50 20 74 6f 20 72 65 74 72 69 65 76 65 | fit..When.using.DHCP.to.retrieve |
| b1c40 | 20 49 50 76 34 20 61 64 64 72 65 73 73 20 61 6e 64 20 69 66 20 6c 6f 63 61 6c 20 63 75 73 74 6f | .IPv4.address.and.if.local.custo |
| b1c60 | 6d 69 7a 61 74 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 65 64 2c 20 74 68 65 79 20 73 68 6f 75 6c | mizations.are.needed,.they.shoul |
| b1c80 | 64 20 62 65 20 70 6f 73 73 69 62 6c 65 20 75 73 69 6e 67 20 74 68 65 20 65 6e 74 65 72 20 61 6e | d.be.possible.using.the.enter.an |
| b1ca0 | 64 20 65 78 69 74 20 68 6f 6f 6b 73 20 70 72 6f 76 69 64 65 64 2e 20 54 68 65 20 68 6f 6f 6b 20 | d.exit.hooks.provided..The.hook. |
| b1cc0 | 64 69 72 73 20 61 72 65 3a 00 57 68 65 6e 20 75 73 69 6e 67 20 45 56 45 2d 4e 47 20 74 6f 20 6c | dirs.are:.When.using.EVE-NG.to.l |
| b1ce0 | 61 62 20 74 68 69 73 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 65 6e 73 75 72 65 20 79 6f 75 20 61 | ab.this.environment.ensure.you.a |
| b1d00 | 72 65 20 75 73 69 6e 67 20 65 31 30 30 30 20 61 73 20 74 68 65 20 64 65 73 69 72 65 64 20 64 72 | re.using.e1000.as.the.desired.dr |
| b1d20 | 69 76 65 72 20 66 6f 72 20 79 6f 75 72 20 56 79 4f 53 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 | iver.for.your.VyOS.network.inter |
| b1d40 | 66 61 63 65 73 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 74 68 65 20 72 65 67 75 6c 61 72 20 76 69 | faces..When.using.the.regular.vi |
| b1d60 | 72 74 69 6f 20 6e 65 74 77 6f 72 6b 20 64 72 69 76 65 72 20 6e 6f 20 4c 41 43 50 20 50 44 55 73 | rtio.network.driver.no.LACP.PDUs |
| b1d80 | 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 62 79 20 56 79 4f 53 20 74 68 75 73 20 74 68 65 20 70 | .will.be.sent.by.VyOS.thus.the.p |
| b1da0 | 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 63 6f 6d 65 20 61 63 | ort-channel.will.never.become.ac |
| b1dc0 | 74 69 76 65 21 00 57 68 65 6e 20 75 73 69 6e 67 20 4e 41 54 20 66 6f 72 20 61 20 6c 61 72 67 65 | tive!.When.using.NAT.for.a.large |
| b1de0 | 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 69 74 20 72 65 63 6f 6d | .number.of.host.systems.it.recom |
| b1e00 | 6d 65 6e 64 65 64 20 74 68 61 74 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 31 20 49 50 20 61 64 | mended.that.a.minimum.of.1.IP.ad |
| b1e20 | 64 72 65 73 73 20 69 73 20 75 73 65 64 20 74 6f 20 4e 41 54 20 65 76 65 72 79 20 32 35 36 20 68 | dress.is.used.to.NAT.every.256.h |
| b1e40 | 6f 73 74 20 73 79 73 74 65 6d 73 2e 20 54 68 69 73 20 69 73 20 64 75 65 20 74 6f 20 74 68 65 20 | ost.systems..This.is.due.to.the. |
| b1e60 | 6c 69 6d 69 74 20 6f 66 20 36 35 2c 30 30 30 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 20 61 76 61 | limit.of.65,000.port.numbers.ava |
| b1e80 | 69 6c 61 62 6c 65 20 66 6f 72 20 75 6e 69 71 75 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 | ilable.for.unique.translations.a |
| b1ea0 | 6e 64 20 61 20 72 65 73 65 72 76 69 6e 67 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 32 30 30 | nd.a.reserving.an.average.of.200 |
| b1ec0 | 2d 33 30 30 20 73 65 73 73 69 6f 6e 73 20 70 65 72 20 68 6f 73 74 20 73 79 73 74 65 6d 2e 00 57 | -300.sessions.per.host.system..W |
| b1ee0 | 68 65 6e 20 75 73 69 6e 67 20 4e 41 54 20 66 6f 72 20 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 | hen.using.NAT.for.a.large.number |
| b1f00 | 20 6f 66 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 69 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 | .of.host.systems.it.recommended. |
| b1f20 | 74 68 61 74 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 31 20 49 50 20 61 64 64 72 65 73 73 20 69 | that.a.minimum.of.1.IP.address.i |
| b1f40 | 73 20 75 73 65 64 20 74 6f 20 4e 41 54 20 65 76 65 72 79 20 32 35 36 20 70 72 69 76 61 74 65 20 | s.used.to.NAT.every.256.private. |
| b1f60 | 68 6f 73 74 20 73 79 73 74 65 6d 73 2e 20 54 68 69 73 20 69 73 20 64 75 65 20 74 6f 20 74 68 65 | host.systems..This.is.due.to.the |
| b1f80 | 20 6c 69 6d 69 74 20 6f 66 20 36 35 2c 30 30 30 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 20 61 76 | .limit.of.65,000.port.numbers.av |
| b1fa0 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 75 6e 69 71 75 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 | ailable.for.unique.translations. |
| b1fc0 | 61 6e 64 20 61 20 72 65 73 65 72 76 69 6e 67 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 32 30 | and.a.reserving.an.average.of.20 |
| b1fe0 | 30 2d 33 30 30 20 73 65 73 73 69 6f 6e 73 20 70 65 72 20 68 6f 73 74 20 73 79 73 74 65 6d 2e 00 | 0-300.sessions.per.host.system.. |
| b2000 | 57 68 65 6e 20 75 73 69 6e 67 20 53 53 48 2c 20 6b 6e 6f 77 6e 2d 68 6f 73 74 73 2d 66 69 6c 65 | When.using.SSH,.known-hosts-file |
| b2020 | 2c 20 70 72 69 76 61 74 65 2d 6b 65 79 2d 66 69 6c 65 20 61 6e 64 20 70 75 62 6c 69 63 2d 6b 65 | ,.private-key-file.and.public-ke |
| b2040 | 79 2d 66 69 6c 65 20 61 72 65 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 73 2e 00 57 68 | y-file.are.mandatory.options..Wh |
| b2060 | 65 6e 20 75 73 69 6e 67 20 53 53 48 2c 20 70 72 69 76 61 74 65 2d 6b 65 79 2d 66 69 6c 65 20 61 | en.using.SSH,.private-key-file.a |
| b2080 | 6e 64 20 70 75 62 6c 69 63 2d 6b 65 79 2d 66 69 6c 65 20 61 72 65 20 6d 61 6e 64 61 74 6f 72 79 | nd.public-key-file.are.mandatory |
| b20a0 | 20 6f 70 74 69 6f 6e 73 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 54 69 6d 65 2d 62 61 73 65 64 20 | .options..When.using.Time-based. |
| b20c0 | 6f 6e 65 2d 74 69 6d 65 20 70 61 73 73 77 6f 72 64 20 28 54 4f 54 50 29 20 28 4f 54 50 20 48 4f | one-time.password.(TOTP).(OTP.HO |
| b20e0 | 54 50 2d 74 69 6d 65 29 2c 20 62 65 20 73 75 72 65 20 74 68 61 74 20 74 68 65 20 74 69 6d 65 20 | TP-time),.be.sure.that.the.time. |
| b2100 | 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 61 6e 64 20 74 68 65 20 4f 54 50 20 74 6f 6b 65 6e 20 | on.the.server.and.the.OTP.token. |
| b2120 | 67 65 6e 65 72 61 74 6f 72 20 61 72 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 20 62 79 20 4e 54 | generator.are.synchronized.by.NT |
| b2140 | 50 00 57 68 65 6e 20 75 73 69 6e 67 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 49 50 73 65 63 20 | P.When.using.site-to-site.IPsec. |
| b2160 | 77 69 74 68 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 73 2c 20 62 65 20 73 75 72 65 20 74 6f 20 | with.VTI.interfaces,.be.sure.to. |
| b2180 | 64 69 73 61 62 6c 65 20 72 6f 75 74 65 20 61 75 74 6f 69 6e 73 74 61 6c 6c 00 57 68 65 6e 20 75 | disable.route.autoinstall.When.u |
| b21a0 | 73 69 6e 67 20 74 68 65 20 49 50 76 36 20 70 72 6f 74 6f 63 6f 6c 2c 20 4d 52 55 20 6d 75 73 74 | sing.the.IPv6.protocol,.MRU.must |
| b21c0 | 20 62 65 20 61 74 20 6c 65 61 73 74 20 31 32 38 30 20 62 79 74 65 73 2e 00 57 68 65 6e 20 75 74 | .be.at.least.1280.bytes..When.ut |
| b21e0 | 69 6c 69 7a 69 6e 67 20 56 79 4f 53 20 69 6e 20 61 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 77 | ilizing.VyOS.in.an.environment.w |
| b2200 | 69 74 68 20 41 72 69 73 74 61 20 67 65 61 72 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 69 73 | ith.Arista.gear.you.can.use.this |
| b2220 | 20 62 6c 75 65 20 70 72 69 6e 74 20 61 73 20 61 6e 20 69 6e 69 74 69 61 6c 20 73 65 74 75 70 20 | .blue.print.as.an.initial.setup. |
| b2240 | 74 6f 20 67 65 74 20 61 6e 20 4c 41 43 50 20 62 6f 6e 64 20 2f 20 70 6f 72 74 2d 63 68 61 6e 6e | to.get.an.LACP.bond./.port-chann |
| b2260 | 65 6c 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 62 65 74 77 65 65 6e 20 74 68 6f 73 65 20 74 77 6f | el.operational.between.those.two |
| b2280 | 20 64 65 76 69 63 65 73 2e 00 57 68 65 72 65 20 62 6f 74 68 20 72 6f 75 74 65 73 20 77 65 72 65 | .devices..Where.both.routes.were |
| b22a0 | 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 65 42 47 50 20 70 65 65 72 73 2c 20 74 68 65 6e 20 | .received.from.eBGP.peers,.then. |
| b22c0 | 70 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 68 69 63 68 20 69 73 20 61 6c 72 65 61 64 | prefer.the.route.which.is.alread |
| b22e0 | 79 20 73 65 6c 65 63 74 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 68 65 63 6b | y.selected..Note.that.this.check |
| b2300 | 20 69 73 20 6e 6f 74 20 61 70 70 6c 69 65 64 20 69 66 20 3a 63 66 67 63 6d 64 3a 60 62 67 70 20 | .is.not.applied.if.:cfgcmd:`bgp. |
| b2320 | 62 65 73 74 70 61 74 68 20 63 6f 6d 70 61 72 65 2d 72 6f 75 74 65 72 69 64 60 20 69 73 20 63 6f | bestpath.compare-routerid`.is.co |
| b2340 | 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 63 68 65 63 6b 20 63 61 6e 20 70 72 65 76 65 6e 74 | nfigured..This.check.can.prevent |
| b2360 | 20 73 6f 6d 65 20 63 61 73 65 73 20 6f 66 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 2e 00 57 68 65 72 | .some.cases.of.oscillation..Wher |
| b2380 | 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 | e.firewall.base.chain.to.configu |
| b23a0 | 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 | re.firewall.filtering.rules.for. |
| b23c0 | 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | transit.traffic.is.``set.firewal |
| b23e0 | 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 | l.ipv4.forward.filter....``,.whi |
| b2400 | 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 | ch.happens.in.stage.5,.highlight |
| b2420 | 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c | ed.with.red.color..Where.firewal |
| b2440 | 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 | l.base.chain.to.configure.firewa |
| b2460 | 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 | ll.filtering.rules.for.transit.t |
| b2480 | 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f | raffic.is.``set.firewall.ipv4.fo |
| b24a0 | 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e | rward.filter....``,.which.happen |
| b24c0 | 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 | s.in.stage.5,.highlightened.with |
| b24e0 | 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 | .red.color..Where.firewall.base. |
| b2500 | 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 | chain.to.configure.firewall.filt |
| b2520 | 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 | ering.rules.for.transit.traffic. |
| b2540 | 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 | is.``set.firewall.ipv6.forward.f |
| b2560 | 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 | ilter....``,.which.happens.in.st |
| b2580 | 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f | age.5,.highlighted.with.red.colo |
| b25a0 | 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 | r..Where.firewall.base.chain.to. |
| b25c0 | 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c | configure.firewall.filtering.rul |
| b25e0 | 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 | es.for.transit.traffic.is.``set. |
| b2600 | 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e | firewall.ipv6.forward.filter.... |
| b2620 | 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 | ``,.which.happens.in.stage.5,.hi |
| b2640 | 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 | ghlightened.with.red.color..Wher |
| b2660 | 65 20 72 6f 75 74 65 73 20 77 69 74 68 20 61 20 4d 45 44 20 77 65 72 65 20 72 65 63 65 69 76 65 | e.routes.with.a.MED.were.receive |
| b2680 | 64 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 41 53 2c 20 70 72 65 66 65 72 20 74 68 65 20 72 | d.from.the.same.AS,.prefer.the.r |
| b26a0 | 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 6f 77 65 73 74 20 4d 45 44 2e 00 57 68 65 72 65 2c | oute.with.the.lowest.MED..Where, |
| b26c0 | 20 6d 61 69 6e 20 6b 65 79 20 77 6f 72 64 73 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | .main.key.words.and.configuratio |
| b26e0 | 6e 20 70 61 74 68 73 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 75 6e 64 65 72 73 74 | n.paths.that.needs.to.be.underst |
| b2700 | 6f 6f 64 3a 00 57 68 65 74 68 65 72 20 74 6f 20 61 63 63 65 70 74 20 44 41 44 20 28 44 75 70 6c | ood:.Whether.to.accept.DAD.(Dupl |
| b2720 | 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 74 65 63 74 69 6f 6e 29 2e 00 57 68 69 63 68 20 | icate.Address.Detection)..Which. |
| b2740 | 67 65 6e 65 72 61 74 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 | generates.the.following.configur |
| b2760 | 61 74 69 6f 6e 3a 00 57 68 69 63 68 20 72 65 73 75 6c 74 73 20 69 6e 20 61 20 63 6f 6e 66 69 67 | ation:.Which.results.in.a.config |
| b2780 | 75 72 61 74 69 6f 6e 20 6f 66 3a 00 57 68 69 63 68 20 77 6f 75 6c 64 20 67 65 6e 65 72 61 74 65 | uration.of:.Which.would.generate |
| b27a0 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 4e 41 54 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 63 | .the.following.NAT.destination.c |
| b27c0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 57 68 69 6c 65 20 2a 2a 6e 65 74 77 6f 72 6b 20 67 72 | onfiguration:.While.**network.gr |
| b27e0 | 6f 75 70 73 2a 2a 20 61 63 63 65 70 74 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 69 6e 20 43 49 44 | oups**.accept.IP.networks.in.CID |
| b2800 | 52 20 6e 6f 74 61 74 69 6f 6e 2c 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 65 | R.notation,.specific.IP.addresse |
| b2820 | 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 61 73 20 61 20 33 32 2d 62 69 74 20 70 72 65 66 69 | s.can.be.added.as.a.32-bit.prefi |
| b2840 | 78 2e 20 49 66 20 79 6f 75 20 66 6f 72 65 73 65 65 20 74 68 65 20 6e 65 65 64 20 74 6f 20 61 64 | x..If.you.foresee.the.need.to.ad |
| b2860 | 64 20 61 20 6d 69 78 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b | d.a.mix.of.addresses.and.network |
| b2880 | 73 2c 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 69 73 20 72 65 63 6f 6d 6d 65 6e | s,.the.network.group.is.recommen |
| b28a0 | 64 65 64 2e 00 57 68 69 6c 65 20 2a 2a 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 2a 2a 20 61 63 | ded..While.**network.groups**.ac |
| b28c0 | 63 65 70 74 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 69 6e 20 43 49 44 52 20 6e 6f 74 61 74 69 6f | cept.IP.networks.in.CIDR.notatio |
| b28e0 | 6e 2c 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 | n,.specific.IP.addresses.can.be. |
| b2900 | 61 64 64 65 64 20 61 73 20 61 20 33 32 2d 62 69 74 20 70 72 65 66 69 78 2e 20 49 66 20 79 6f 75 | added.as.a.32-bit.prefix..If.you |
| b2920 | 20 66 6f 72 65 73 65 65 20 74 68 65 20 6e 65 65 64 20 74 6f 20 61 64 64 20 61 20 6d 69 78 20 6f | .foresee.the.need.to.add.a.mix.o |
| b2940 | 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 61 | f.addresses.and.networks,.then.a |
| b2960 | 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 57 | .network.group.is.recommended..W |
| b2980 | 68 69 6c 65 20 6d 61 6e 79 20 61 72 65 20 61 77 61 72 65 20 6f 66 20 4f 70 65 6e 56 50 4e 20 61 | hile.many.are.aware.of.OpenVPN.a |
| b29a0 | 73 20 61 20 43 6c 69 65 6e 74 20 56 50 4e 20 73 6f 6c 75 74 69 6f 6e 2c 20 69 74 20 69 73 20 6f | s.a.Client.VPN.solution,.it.is.o |
| b29c0 | 66 74 65 6e 20 6f 76 65 72 6c 6f 6f 6b 65 64 20 61 73 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 | ften.overlooked.as.a.site-to-sit |
| b29e0 | 65 20 56 50 4e 20 73 6f 6c 75 74 69 6f 6e 20 64 75 65 20 74 6f 20 6c 61 63 6b 20 6f 66 20 73 75 | e.VPN.solution.due.to.lack.of.su |
| b2a00 | 70 70 6f 72 74 20 66 6f 72 20 74 68 69 73 20 6d 6f 64 65 20 69 6e 20 6d 61 6e 79 20 72 6f 75 74 | pport.for.this.mode.in.many.rout |
| b2a20 | 65 72 20 70 6c 61 74 66 6f 72 6d 73 2e 00 57 68 69 6c 65 20 6e 6f 72 6d 61 6c 20 47 52 45 20 69 | er.platforms..While.normal.GRE.i |
| b2a40 | 73 20 66 6f 72 20 6c 61 79 65 72 20 33 2c 20 47 52 45 54 41 50 20 69 73 20 66 6f 72 20 6c 61 79 | s.for.layer.3,.GRETAP.is.for.lay |
| b2a60 | 65 72 20 32 2e 20 47 52 45 54 41 50 20 63 61 6e 20 65 6e 63 61 70 73 75 6c 61 74 65 20 45 74 68 | er.2..GRETAP.can.encapsulate.Eth |
| b2a80 | 65 72 6e 65 74 20 66 72 61 6d 65 73 2c 20 74 68 75 73 20 69 74 20 63 61 6e 20 62 65 20 62 72 69 | ernet.frames,.thus.it.can.be.bri |
| b2aa0 | 64 67 65 64 20 77 69 74 68 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 63 72 | dged.with.other.interfaces.to.cr |
| b2ac0 | 65 61 74 65 20 64 61 74 61 6c 69 6e 6b 20 6c 61 79 65 72 20 73 65 67 6d 65 6e 74 73 20 74 68 61 | eate.datalink.layer.segments.tha |
| b2ae0 | 74 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 72 65 6d 6f 74 65 20 73 69 74 65 73 2e 00 57 68 | t.span.multiple.remote.sites..Wh |
| b2b00 | 69 74 65 6c 69 73 74 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b | itelist.of.addresses.and.network |
| b2b20 | 73 2e 20 41 6c 77 61 79 73 20 61 6c 6c 6f 77 20 69 6e 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 | s..Always.allow.inbound.connecti |
| b2b40 | 6f 6e 73 20 66 72 6f 6d 20 74 68 65 73 65 20 73 79 73 74 65 6d 73 2e 00 57 69 46 69 2d 36 28 65 | ons.from.these.systems..WiFi-6(e |
| b2b60 | 29 20 2d 20 38 30 32 2e 31 31 61 78 00 57 69 6c 6c 20 61 64 64 20 60 60 70 65 72 73 69 73 74 2d | ).-.802.11ax.Will.add.``persist- |
| b2b80 | 6b 65 79 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 | key``.to.the.generated.OpenVPN.c |
| b2ba0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 6c 65 61 73 65 20 75 73 65 20 74 68 69 73 20 6f 6e | onfiguration..Please.use.this.on |
| b2bc0 | 6c 79 20 61 73 20 6c 61 73 74 20 72 65 73 6f 72 74 20 2d 20 74 68 69 6e 67 73 20 6d 69 67 68 74 | ly.as.last.resort.-.things.might |
| b2be0 | 20 62 72 65 61 6b 20 61 6e 64 20 4f 70 65 6e 56 50 4e 20 77 6f 6e 27 74 20 73 74 61 72 74 20 69 | .break.and.OpenVPN.won't.start.i |
| b2c00 | 66 20 79 6f 75 20 70 61 73 73 20 69 6e 76 61 6c 69 64 20 6f 70 74 69 6f 6e 73 2f 73 79 6e 74 61 | f.you.pass.invalid.options/synta |
| b2c20 | 78 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 6b 65 79 60 60 20 61 | x..Will.add.``persistent-key``.a |
| b2c40 | 74 20 74 68 65 20 65 6e 64 20 6f 66 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 | t.the.end.of.the.generated.OpenV |
| b2c60 | 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 6c 65 61 73 65 20 75 73 65 20 74 68 69 | PN.configuration..Please.use.thi |
| b2c80 | 73 20 6f 6e 6c 79 20 61 73 20 6c 61 73 74 20 72 65 73 6f 72 74 20 2d 20 74 68 69 6e 67 73 20 6d | s.only.as.last.resort.-.things.m |
| b2ca0 | 69 67 68 74 20 62 72 65 61 6b 20 61 6e 64 20 4f 70 65 6e 56 50 4e 20 77 6f 6e 27 74 20 73 74 61 | ight.break.and.OpenVPN.won't.sta |
| b2cc0 | 72 74 20 69 66 20 79 6f 75 20 70 61 73 73 20 69 6e 76 61 6c 69 64 20 6f 70 74 69 6f 6e 73 2f 73 | rt.if.you.pass.invalid.options/s |
| b2ce0 | 79 6e 74 61 78 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 70 75 73 68 20 22 6b 65 65 70 61 6c 69 76 | yntax..Will.add.``push."keepaliv |
| b2d00 | 65 20 31 20 31 30 22 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 | e.1.10"``.to.the.generated.OpenV |
| b2d20 | 50 4e 20 63 6f 6e 66 69 67 20 66 69 6c 65 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 72 6f 75 74 65 | PN.config.file..Will.add.``route |
| b2d40 | 2d 75 70 20 22 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 74 75 6e 5f 75 70 2e 73 68 20 61 72 67 31 | -up."/config/auth/tun_up.sh.arg1 |
| b2d60 | 22 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e | "``.to.the.generated.OpenVPN.con |
| b2d80 | 66 69 67 20 66 69 6c 65 2e 20 54 68 65 20 70 61 74 68 20 61 6e 64 20 61 72 67 75 6d 65 6e 74 73 | fig.file..The.path.and.arguments |
| b2da0 | 20 6e 65 65 64 20 74 6f 20 62 65 20 73 69 6e 67 6c 65 2d 20 6f 72 20 64 6f 75 62 6c 65 2d 71 75 | .need.to.be.single-.or.double-qu |
| b2dc0 | 6f 74 65 64 2e 00 57 69 6c 6c 20 62 65 20 72 65 63 6f 72 64 65 64 20 6f 6e 6c 79 20 70 61 63 6b | oted..Will.be.recorded.only.pack |
| b2de0 | 65 74 73 2f 66 6c 6f 77 73 20 6f 6e 20 2a 2a 69 6e 63 6f 6d 69 6e 67 2a 2a 20 64 69 72 65 63 74 | ets/flows.on.**incoming**.direct |
| b2e00 | 69 6f 6e 20 69 6e 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 20 62 79 20 | ion.in.configured.interfaces.by. |
| b2e20 | 64 65 66 61 75 6c 74 2e 00 57 69 6c 6c 20 64 72 6f 70 20 60 3c 73 68 61 72 65 64 2d 6e 65 74 77 | default..Will.drop.`<shared-netw |
| b2e40 | 6f 72 6b 2d 6e 61 6d 65 3e 5f 60 20 66 72 6f 6d 20 63 6c 69 65 6e 74 20 44 4e 53 20 72 65 63 6f | ork-name>_`.from.client.DNS.reco |
| b2e60 | 72 64 2c 20 75 73 69 6e 67 20 6f 6e 6c 79 20 74 68 65 20 68 6f 73 74 20 64 65 63 6c 61 72 61 74 | rd,.using.only.the.host.declarat |
| b2e80 | 69 6f 6e 20 6e 61 6d 65 20 61 6e 64 20 64 6f 6d 61 69 6e 3a 20 60 3c 68 6f 73 74 6e 61 6d 65 3e | ion.name.and.domain:.`<hostname> |
| b2ea0 | 2e 3c 64 6f 6d 61 69 6e 2d 6e 61 6d 65 3e 60 00 57 69 6e 64 6f 77 73 20 31 30 20 64 6f 65 73 20 | .<domain-name>`.Windows.10.does. |
| b2ec0 | 6e 6f 74 20 61 6c 6c 6f 77 20 61 20 75 73 65 72 20 74 6f 20 63 68 6f 6f 73 65 20 74 68 65 20 69 | not.allow.a.user.to.choose.the.i |
| b2ee0 | 6e 74 65 67 72 69 74 79 20 61 6e 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 | ntegrity.and.encryption.ciphers. |
| b2f00 | 75 73 69 6e 67 20 74 68 65 20 47 55 49 20 61 6e 64 20 69 74 20 75 73 65 73 20 73 6f 6d 65 20 6f | using.the.GUI.and.it.uses.some.o |
| b2f20 | 6c 64 65 72 20 70 72 6f 70 6f 73 61 6c 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 41 20 75 73 65 | lder.proposals.by.default..A.use |
| b2f40 | 72 20 63 61 6e 20 6f 6e 6c 79 20 63 68 61 6e 67 65 20 74 68 65 20 70 72 6f 70 6f 73 61 6c 73 20 | r.can.only.change.the.proposals. |
| b2f60 | 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 69 64 65 20 62 79 20 63 6f 6e 66 69 67 75 72 69 6e | on.the.client.side.by.configurin |
| b2f80 | 67 20 74 68 65 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 69 6c 65 20 76 | g.the.IPSec.connection.profile.v |
| b2fa0 | 69 61 20 50 6f 77 65 72 53 68 65 6c 6c 2e 00 57 69 6e 64 6f 77 73 20 49 6e 74 65 72 6e 65 74 20 | ia.PowerShell..Windows.Internet. |
| b2fc0 | 4e 61 6d 65 20 53 65 72 76 69 63 65 20 28 57 49 4e 53 29 20 73 65 72 76 65 72 73 20 70 72 6f 70 | Name.Service.(WINS).servers.prop |
| b2fe0 | 61 67 61 74 65 64 20 74 6f 20 63 6c 69 65 6e 74 00 57 69 6e 64 6f 77 73 20 65 78 70 65 63 74 73 | agated.to.client.Windows.expects |
| b3000 | 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 65 64 | .the.server.name.to.be.also.used |
| b3020 | 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 6f 6d | .in.the.server's.certificate.com |
| b3040 | 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 74 68 | mon.name,.so.it's.best.to.use.th |
| b3060 | 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 | is.DNS.name.for.your.VPN.connect |
| b3080 | 69 6f 6e 2e 00 57 69 72 65 47 75 61 72 64 00 57 69 72 65 47 75 61 72 64 20 43 6c 69 65 6e 74 20 | ion..WireGuard.WireGuard.Client. |
| b30a0 | 51 52 20 63 6f 64 65 00 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 69 74 73 65 | QR.code.WireGuard.interface.itse |
| b30c0 | 6c 66 20 75 73 65 73 20 61 64 64 72 65 73 73 20 31 30 2e 31 2e 30 2e 31 2f 33 30 00 57 69 72 65 | lf.uses.address.10.1.0.1/30.Wire |
| b30e0 | 47 75 61 72 64 20 69 73 20 61 6e 20 65 78 74 72 65 6d 65 6c 79 20 73 69 6d 70 6c 65 20 79 65 74 | Guard.is.an.extremely.simple.yet |
| b3100 | 20 66 61 73 74 20 61 6e 64 20 6d 6f 64 65 72 6e 20 56 50 4e 20 74 68 61 74 20 75 74 69 6c 69 7a | .fast.and.modern.VPN.that.utiliz |
| b3120 | 65 73 20 73 74 61 74 65 2d 6f 66 2d 74 68 65 2d 61 72 74 20 63 72 79 70 74 6f 67 72 61 70 68 79 | es.state-of-the-art.cryptography |
| b3140 | 2e 20 53 65 65 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 77 69 72 65 67 75 61 72 64 2e 63 6f 6d 20 | ..See.https://www.wireguard.com. |
| b3160 | 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 57 69 72 65 47 75 61 72 64 20 | for.more.information..WireGuard. |
| b3180 | 72 65 71 75 69 72 65 73 20 74 68 65 20 67 65 6e 65 72 61 74 69 6f 6e 20 6f 66 20 61 20 6b 65 79 | requires.the.generation.of.a.key |
| b31a0 | 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 61 20 70 72 69 76 61 74 65 20 6b | pair,.which.includes.a.private.k |
| b31c0 | 65 79 20 74 6f 20 64 65 63 72 79 70 74 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 2c 20 | ey.to.decrypt.incoming.traffic,. |
| b31e0 | 61 6e 64 20 61 20 70 75 62 6c 69 63 20 6b 65 79 20 66 6f 72 20 70 65 65 72 28 73 29 20 74 6f 20 | and.a.public.key.for.peer(s).to. |
| b3200 | 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2e 00 57 69 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 | encrypt.traffic..Wireless.channe |
| b3220 | 6c 20 60 60 31 31 60 60 20 66 6f 72 20 32 2e 34 47 48 7a 00 57 69 72 65 6c 65 73 73 20 63 68 61 | l.``11``.for.2.4GHz.Wireless.cha |
| b3240 | 6e 6e 65 6c 20 60 60 31 60 60 00 57 69 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 6c 20 60 60 35 60 | nnel.``1``.Wireless.channel.``5` |
| b3260 | 60 20 66 6f 72 20 36 47 48 7a 00 57 69 72 65 6c 65 73 73 20 64 65 76 69 63 65 20 74 79 70 65 20 | `.for.6GHz.Wireless.device.type. |
| b3280 | 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 00 57 69 72 65 6c 65 73 73 20 68 61 72 64 | for.this.interface.Wireless.hard |
| b32a0 | 77 61 72 65 20 64 65 76 69 63 65 20 75 73 65 64 20 61 73 20 75 6e 64 65 72 6c 61 79 20 72 61 64 | ware.device.used.as.underlay.rad |
| b32c0 | 69 6f 2e 00 57 69 72 65 6c 65 73 73 20 6f 70 74 69 6f 6e 73 00 57 69 72 65 6c 65 73 73 20 6f 70 | io..Wireless.options.Wireless.op |
| b32e0 | 74 69 6f 6e 73 20 28 53 74 61 74 69 6f 6e 2f 43 6c 69 65 6e 74 29 00 57 69 72 65 6c 65 73 73 4d | tions.(Station/Client).WirelessM |
| b3300 | 6f 64 65 6d 20 28 57 57 41 4e 29 20 6f 70 74 69 6f 6e 73 00 57 69 74 68 20 56 79 4f 53 20 62 65 | odem.(WWAN).options.With.VyOS.be |
| b3320 | 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 4c 69 6e 75 78 20 61 6e 64 20 69 74 | ing.based.on.top.of.Linux.and.it |
| b3340 | 73 20 6b 65 72 6e 65 6c 2c 20 74 68 65 20 4e 65 74 66 69 6c 74 65 72 20 70 72 6f 6a 65 63 74 20 | s.kernel,.the.Netfilter.project. |
| b3360 | 63 72 65 61 74 65 64 20 74 68 65 20 69 70 74 61 62 6c 65 73 20 61 6e 64 20 6e 6f 77 20 74 68 65 | created.the.iptables.and.now.the |
| b3380 | 20 73 75 63 63 65 73 73 6f 72 20 6e 66 74 61 62 6c 65 73 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 | .successor.nftables.for.the.Linu |
| b33a0 | 78 20 6b 65 72 6e 65 6c 20 74 6f 20 77 6f 72 6b 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 | x.kernel.to.work.directly.on.the |
| b33c0 | 20 64 61 74 61 20 66 6c 6f 77 73 2e 20 54 68 69 73 20 6e 6f 77 20 65 78 74 65 6e 64 73 20 74 68 | .data.flows..This.now.extends.th |
| b33e0 | 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 7a 6f 6e 65 2d 62 61 73 65 64 20 73 65 63 75 72 69 74 79 | e.concept.of.zone-based.security |
| b3400 | 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 6d 61 6e 69 70 75 6c 61 74 69 6e 67 20 74 68 65 20 64 | .to.allow.for.manipulating.the.d |
| b3420 | 61 74 61 20 61 74 20 6d 75 6c 74 69 70 6c 65 20 73 74 61 67 65 73 20 6f 6e 63 65 20 61 63 63 65 | ata.at.multiple.stages.once.acce |
| b3440 | 70 74 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e | pted.by.the.network.interface.an |
| b3460 | 64 20 74 68 65 20 64 72 69 76 65 72 20 62 65 66 6f 72 65 20 62 65 69 6e 67 20 68 61 6e 64 65 64 | d.the.driver.before.being.handed |
| b3480 | 20 6f 66 66 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 65 2e 67 2e 20 61 20 | .off.to.the.destination.(e.g..a. |
| b34a0 | 77 65 62 20 73 65 72 76 65 72 20 4f 52 20 61 6e 6f 74 68 65 72 20 64 65 76 69 63 65 29 2e 00 57 | web.server.OR.another.device)..W |
| b34c0 | 69 74 68 20 57 69 72 65 47 75 61 72 64 2c 20 61 20 52 6f 61 64 20 57 61 72 72 69 6f 72 20 56 50 | ith.WireGuard,.a.Road.Warrior.VP |
| b34e0 | 4e 20 63 6f 6e 66 69 67 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 61 20 73 69 74 65 2d 74 6f | N.config.is.similar.to.a.site-to |
| b3500 | 2d 73 69 74 65 20 56 50 4e 2e 20 49 74 20 6a 75 73 74 20 6c 61 63 6b 73 20 74 68 65 20 60 60 61 | -site.VPN..It.just.lacks.the.``a |
| b3520 | 64 64 72 65 73 73 60 60 20 61 6e 64 20 60 60 70 6f 72 74 60 60 20 73 74 61 74 65 6d 65 6e 74 73 | ddress``.and.``port``.statements |
| b3540 | 2e 00 57 69 74 68 20 74 68 65 20 60 60 6e 61 6d 65 2d 73 65 72 76 65 72 60 60 20 6f 70 74 69 6f | ..With.the.``name-server``.optio |
| b3560 | 6e 20 73 65 74 20 74 6f 20 60 60 6e 6f 6e 65 60 60 2c 20 56 79 4f 53 20 77 69 6c 6c 20 69 67 6e | n.set.to.``none``,.VyOS.will.ign |
| b3580 | 6f 72 65 20 74 68 65 20 6e 61 6d 65 73 65 72 76 65 72 73 20 79 6f 75 72 20 49 53 50 20 73 65 6e | ore.the.nameservers.your.ISP.sen |
| b35a0 | 64 73 20 79 6f 75 20 61 6e 64 20 74 68 75 73 20 79 6f 75 20 63 61 6e 20 66 75 6c 6c 79 20 72 65 | ds.you.and.thus.you.can.fully.re |
| b35c0 | 6c 79 20 6f 6e 20 74 68 65 20 6f 6e 65 73 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 | ly.on.the.ones.you.have.configur |
| b35e0 | 65 64 20 73 74 61 74 69 63 61 6c 6c 79 2e 00 57 69 74 68 20 74 68 65 20 66 69 72 65 77 61 6c 6c | ed.statically..With.the.firewall |
| b3600 | 20 79 6f 75 20 63 61 6e 20 73 65 74 20 72 75 6c 65 73 20 74 6f 20 61 63 63 65 70 74 2c 20 64 72 | .you.can.set.rules.to.accept,.dr |
| b3620 | 6f 70 20 6f 72 20 72 65 6a 65 63 74 20 49 43 4d 50 20 69 6e 2c 20 6f 75 74 20 6f 72 20 6c 6f 63 | op.or.reject.ICMP.in,.out.or.loc |
| b3640 | 61 6c 20 74 72 61 66 66 69 63 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 75 73 65 20 74 68 65 | al.traffic..You.can.also.use.the |
| b3660 | 20 67 65 6e 65 72 61 6c 20 2a 2a 66 69 72 65 77 61 6c 6c 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 63 | .general.**firewall.all-ping**.c |
| b3680 | 6f 6d 6d 61 6e 64 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 66 66 65 63 74 73 20 6f 6e 6c | ommand..This.command.affects.onl |
| b36a0 | 79 20 74 6f 20 4c 4f 43 41 4c 20 28 70 61 63 6b 65 74 73 20 64 65 73 74 69 6e 65 64 20 66 6f 72 | y.to.LOCAL.(packets.destined.for |
| b36c0 | 20 79 6f 75 72 20 56 79 4f 53 20 73 79 73 74 65 6d 29 2c 20 6e 6f 74 20 74 6f 20 49 4e 20 6f 72 | .your.VyOS.system),.not.to.IN.or |
| b36e0 | 20 4f 55 54 20 74 72 61 66 66 69 63 2e 00 57 69 74 68 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2c | .OUT.traffic..With.this.command, |
| b3700 | 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 68 6f 77 20 74 68 65 20 55 52 4c 20 70 61 74 | .you.can.specify.how.the.URL.pat |
| b3720 | 68 20 73 68 6f 75 6c 64 20 62 65 20 6d 61 74 63 68 65 64 20 61 67 61 69 6e 73 74 20 69 6e 63 6f | h.should.be.matched.against.inco |
| b3740 | 6d 69 6e 67 20 72 65 71 75 65 73 74 73 2e 00 57 69 74 68 20 74 68 69 73 20 63 6f 6e 66 69 67 75 | ming.requests..With.this.configu |
| b3760 | 72 61 74 69 6f 6e 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 67 65 74 20 73 73 68 20 61 63 63 65 | ration,.in.order.to.get.ssh.acce |
| b3780 | 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 2c 20 74 68 65 20 75 73 65 72 20 6e 65 65 64 73 | ss.to.the.router,.the.user.needs |
| b37a0 | 20 74 6f 3a 00 57 69 74 68 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 69 6e | .to:.With.this.configuration,.in |
| b37c0 | 20 6f 72 64 65 72 20 74 6f 20 67 65 74 20 73 73 68 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 | .order.to.get.ssh.access.to.the. |
| b37e0 | 72 6f 75 74 65 72 2c 20 75 73 65 72 20 6e 65 65 64 73 20 74 6f 3a 00 57 69 74 68 20 7a 6f 6e 65 | router,.user.needs.to:.With.zone |
| b3800 | 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 | -based.firewalls.a.new.concept.w |
| b3820 | 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 | as.implemented,.in.addition.to.t |
| b3840 | 68 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 61 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 | he.standard.in.and.out.traffic.f |
| b3860 | 6c 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 | lows,.a.local.flow.was.added..Th |
| b3880 | 69 73 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 6f 72 | is.local.flow.was.for.traffic.or |
| b38a0 | 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f | iginating.and.destined.to.the.ro |
| b38c0 | 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 68 69 63 68 20 6d 65 61 6e 73 20 74 68 61 74 20 61 64 | uter.itself..Which.means.that.ad |
| b38e0 | 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 | ditional.rules.were.required.to. |
| b3900 | 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 | secure.the.firewall.itself.from. |
| b3920 | 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 | the.network,.in.addition.to.the. |
| b3940 | 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 | existing.inbound.and.outbound.ru |
| b3960 | 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 | les.from.the.traditional.concept |
| b3980 | 20 61 62 6f 76 65 2e 00 57 69 74 68 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c | .above..With.zone-based.firewall |
| b39a0 | 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c | s.a.new.concept.was.implemented, |
| b39c0 | 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 | .in.addition.to.the.standard.in. |
| b39e0 | 61 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 | and.out.traffic.flows,.a.local.f |
| b3a00 | 6c 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 69 73 20 6c 6f 63 61 6c 20 77 61 73 20 66 6f | low.was.added..This.local.was.fo |
| b3a20 | 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 64 65 73 74 69 6e | r.traffic.originating.and.destin |
| b3a40 | 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 68 69 63 68 20 6d | ed.to.the.router.itself..Which.m |
| b3a60 | 65 61 6e 73 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 20 72 65 71 75 69 | eans.additional.rules.were.requi |
| b3a80 | 72 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 69 74 73 65 6c | red.to.secure.the.firewall.itsel |
| b3aa0 | 66 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 | f.from.the.network,.in.addition. |
| b3ac0 | 74 6f 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 | to.the.existing.inbound.and.outb |
| b3ae0 | 6f 75 6e 64 20 72 75 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 | ound.rules.from.the.traditional. |
| b3b00 | 63 6f 6e 63 65 70 74 20 61 62 6f 76 65 2e 00 57 69 74 68 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 | concept.above..With.zone-based.f |
| b3b20 | 69 72 65 77 61 6c 6c 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 61 73 20 69 6d 70 6c 65 | irewalls.a.new.concept.was.imple |
| b3b40 | 6d 65 6e 74 65 64 2c 20 69 6e 20 61 64 64 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 74 61 6e 64 61 | mented,.in.addtion.to.the.standa |
| b3b60 | 72 64 20 69 6e 20 61 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2c 20 61 20 6c | rd.in.and.out.traffic.flows,.a.l |
| b3b80 | 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 69 73 20 6c 6f 63 61 6c 20 | ocal.flow.was.added..This.local. |
| b3ba0 | 77 61 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 | was.for.traffic.originating.and. |
| b3bc0 | 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 | destined.to.the.router.itself..W |
| b3be0 | 68 69 63 68 20 6d 65 61 6e 73 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 | hich.means.additional.rules.were |
| b3c00 | 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c | .required.to.secure.the.firewall |
| b3c20 | 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 | .itself.from.the.network,.in.add |
| b3c40 | 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e | ition.to.the.existing.inbound.an |
| b3c60 | 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 | d.outbound.rules.from.the.tradit |
| b3c80 | 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 20 61 62 6f 76 65 2e 00 59 00 59 6f 75 20 61 70 70 6c 79 | ional.concept.above..Y.You.apply |
| b3ca0 | 20 61 20 72 75 6c 65 2d 73 65 74 20 61 6c 77 61 79 73 20 74 6f 20 61 20 7a 6f 6e 65 20 66 72 6f | .a.rule-set.always.to.a.zone.fro |
| b3cc0 | 6d 20 61 6e 20 6f 74 68 65 72 20 7a 6f 6e 65 2c 20 69 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 | m.an.other.zone,.it.is.recommend |
| b3ce0 | 65 64 20 74 6f 20 63 72 65 61 74 65 20 6f 6e 65 20 72 75 6c 65 2d 73 65 74 20 66 6f 72 20 65 61 | ed.to.create.one.rule-set.for.ea |
| b3d00 | 63 68 20 7a 6f 6e 65 20 70 61 69 72 2e 00 59 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 73 65 | ch.zone.pair..You.are.able.to.se |
| b3d20 | 74 20 70 6f 73 74 2d 6c 6f 67 69 6e 20 6f 72 20 70 72 65 2d 6c 6f 67 69 6e 20 62 61 6e 6e 65 72 | t.post-login.or.pre-login.banner |
| b3d40 | 20 6d 65 73 73 61 67 65 73 20 74 6f 20 64 69 73 70 6c 61 79 20 63 65 72 74 61 69 6e 20 69 6e 66 | .messages.to.display.certain.inf |
| b3d60 | 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 73 79 73 74 65 6d 2e 00 59 6f 75 20 61 72 | ormation.for.this.system..You.ar |
| b3d80 | 65 20 62 65 20 61 62 6c 65 20 74 6f 20 64 6f 77 6e 6c 6f 61 64 20 74 68 65 20 66 69 6c 65 73 20 | e.be.able.to.download.the.files. |
| b3da0 | 75 73 69 6e 67 20 53 43 50 2c 20 6f 6e 63 65 20 74 68 65 20 53 53 48 20 73 65 72 76 69 63 65 20 | using.SCP,.once.the.SSH.service. |
| b3dc0 | 68 61 73 20 62 65 65 6e 20 61 63 74 69 76 61 74 65 64 20 6c 69 6b 65 20 73 6f 00 59 6f 75 20 63 | has.been.activated.like.so.You.c |
| b3de0 | 61 6e 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 | an.also.configure.the.time.inter |
| b3e00 | 76 61 6c 20 66 6f 72 20 70 72 65 65 6d 70 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 22 70 72 65 | val.for.preemption.with.the."pre |
| b3e20 | 65 6d 70 74 2d 64 65 6c 61 79 22 20 6f 70 74 69 6f 6e 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c | empt-delay".option..For.example, |
| b3e40 | 20 74 6f 20 73 65 74 20 74 68 65 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 72 6f 75 74 | .to.set.the.higher.priority.rout |
| b3e60 | 65 72 20 74 6f 20 74 61 6b 65 20 6f 76 65 72 20 69 6e 20 31 38 30 20 73 65 63 6f 6e 64 73 2c 20 | er.to.take.over.in.180.seconds,. |
| b3e80 | 75 73 65 3a 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 64 65 66 69 6e 65 20 63 75 73 74 6f 6d 20 | use:.You.can.also.define.custom. |
| b3ea0 | 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 74 6f 20 61 70 70 6c 79 20 74 6f 20 61 20 73 70 65 | timeout.values.to.apply.to.a.spe |
| b3ec0 | 63 69 66 69 63 20 73 75 62 73 65 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 61 73 | cific.subset.of.connections,.bas |
| b3ee0 | 65 64 20 6f 6e 20 61 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 | ed.on.a.packet.and.flow.selector |
| b3f00 | 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 | ..To.do.this,.you.need.to.create |
| b3f20 | 20 61 20 72 75 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 61 6e 64 20 | .a.rule.defining.the.packet.and. |
| b3f40 | 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 6b 65 65 70 | flow.selector..You.can.also.keep |
| b3f60 | 20 64 69 66 66 65 72 65 6e 74 20 44 4e 53 20 7a 6f 6e 65 20 75 70 64 61 74 65 64 2e 20 4a 75 73 | .different.DNS.zone.updated..Jus |
| b3f80 | 74 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 63 6f 6e 66 69 67 20 6e 6f 64 65 3a 20 60 60 73 65 | t.create.a.new.config.node:.``se |
| b3fa0 | 74 20 73 65 72 76 69 63 65 20 64 6e 73 20 64 79 6e 61 6d 69 63 20 69 6e 74 65 72 66 61 63 65 20 | t.service.dns.dynamic.interface. |
| b3fc0 | 3c 69 6e 74 65 72 66 61 63 65 3e 20 72 66 63 32 31 33 36 20 3c 6f 74 68 65 72 2d 73 65 72 76 69 | <interface>.rfc2136.<other-servi |
| b3fe0 | 63 65 2d 6e 61 6d 65 3e 60 60 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 6f 70 74 20 66 6f 72 20 | ce-name>``.You.can.also.opt.for. |
| b4000 | 75 73 69 6e 67 20 60 3a 3a 2f 36 34 60 20 61 73 20 70 72 65 66 69 78 20 66 6f 72 20 79 6f 75 72 | using.`::/64`.as.prefix.for.your |
| b4020 | 20 3a 61 62 62 72 3a 60 52 41 73 20 28 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e | .:abbr:`RAs.(Router.Advertisemen |
| b4040 | 74 73 29 60 2e 20 54 68 69 73 20 77 69 6c 6c 20 74 61 6b 65 20 74 68 65 20 49 50 76 36 20 47 55 | ts)`..This.will.take.the.IPv6.GU |
| b4060 | 41 20 70 72 65 66 69 78 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 | A.prefix.assigned.to.the.interfa |
| b4080 | 63 65 2c 20 77 68 69 63 68 20 63 6f 6d 65 73 20 69 6e 20 68 61 6e 64 79 20 77 68 65 6e 20 75 73 | ce,.which.comes.in.handy.when.us |
| b40a0 | 69 6e 67 20 44 48 43 50 76 36 2d 50 44 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 73 70 65 63 | ing.DHCPv6-PD..You.can.also.spec |
| b40c0 | 69 66 79 20 77 68 69 63 68 20 49 50 76 36 20 61 63 63 65 73 73 2d 6c 69 73 74 20 73 68 6f 75 6c | ify.which.IPv6.access-list.shoul |
| b40e0 | 64 20 62 65 20 73 68 6f 77 6e 3a 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 74 75 6e 65 20 6d 75 | d.be.shown:.You.can.also.tune.mu |
| b4100 | 6c 74 69 63 61 73 74 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 | lticast.with.the.following.comma |
| b4120 | 6e 64 73 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 75 73 65 20 61 6e 6f 74 68 65 72 20 61 74 | nds..You.can.also.use.another.at |
| b4140 | 74 72 69 62 75 74 65 73 20 66 6f 72 20 69 64 65 6e 74 69 66 79 20 63 6c 69 65 6e 74 20 66 6f 72 | tributes.for.identify.client.for |
| b4160 | 20 64 69 73 63 6f 6e 6e 65 63 74 2c 20 6c 69 6b 65 20 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 | .disconnect,.like.Framed-IP-Addr |
| b4180 | 65 73 73 2c 20 41 63 63 74 2d 53 65 73 73 69 6f 6e 2d 49 64 2c 20 65 74 63 2e 20 52 65 73 75 6c | ess,.Acct-Session-Id,.etc..Resul |
| b41a0 | 74 20 63 6f 6d 6d 61 6e 64 73 20 61 70 70 65 61 72 73 20 69 6e 20 6c 6f 67 2e 00 59 6f 75 20 63 | t.commands.appears.in.log..You.c |
| b41c0 | 61 6e 20 61 6c 73 6f 20 77 72 69 74 65 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 | an.also.write.a.description.for. |
| b41e0 | 61 20 66 69 6c 74 65 72 3a 00 59 6f 75 20 63 61 6e 20 61 73 73 69 67 6e 20 6d 75 6c 74 69 70 6c | a.filter:.You.can.assign.multipl |
| b4200 | 65 20 6b 65 79 73 20 74 6f 20 74 68 65 20 73 61 6d 65 20 75 73 65 72 20 62 79 20 75 73 69 6e 67 | e.keys.to.the.same.user.by.using |
| b4220 | 20 61 20 75 6e 69 71 75 65 20 69 64 65 6e 74 69 66 69 65 72 20 70 65 72 20 53 53 48 20 6b 65 79 | .a.unique.identifier.per.SSH.key |
| b4240 | 2e 00 59 6f 75 20 63 61 6e 20 61 76 6f 69 64 20 74 68 65 20 22 6c 65 61 6b 79 22 20 62 65 68 61 | ..You.can.avoid.the."leaky".beha |
| b4260 | 76 69 6f 72 20 62 79 20 75 73 69 6e 67 20 61 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 | vior.by.using.a.firewall.policy. |
| b4280 | 74 68 61 74 20 64 72 6f 70 73 20 22 69 6e 76 61 6c 69 64 22 20 73 74 61 74 65 20 70 61 63 6b 65 | that.drops."invalid".state.packe |
| b42a0 | 74 73 2e 00 59 6f 75 20 63 61 6e 20 63 68 65 63 6b 20 79 6f 75 72 20 4e 49 43 20 64 72 69 76 65 | ts..You.can.check.your.NIC.drive |
| b42c0 | 72 20 62 79 20 69 73 73 75 69 6e 67 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 | r.by.issuing.:opcmd:`show.interf |
| b42e0 | 61 63 65 73 20 65 74 68 65 72 6e 65 74 20 65 74 68 30 20 70 68 79 73 69 63 61 6c 20 7c 20 67 72 | aces.ethernet.eth0.physical.|.gr |
| b4300 | 65 70 20 2d 69 20 64 72 69 76 65 72 60 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 | ep.-i.driver`.You.can.configure. |
| b4320 | 61 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 | a.policy.into.a.class.through.th |
| b4340 | 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 2e 00 59 6f 75 20 63 61 | e.``queue-type``.setting..You.ca |
| b4360 | 6e 20 63 6f 6e 66 69 67 75 72 65 20 63 6c 61 73 73 65 73 20 28 75 70 20 74 6f 20 34 30 39 30 29 | n.configure.classes.(up.to.4090) |
| b4380 | 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 73 65 74 74 69 6e 67 73 20 61 6e 64 20 61 20 64 | .with.different.settings.and.a.d |
| b43a0 | 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 61 70 70 6c | efault.policy.which.will.be.appl |
| b43c0 | 69 65 64 20 74 6f 20 61 6e 79 20 74 72 61 66 66 69 63 20 6e 6f 74 20 6d 61 74 63 68 69 6e 67 20 | ied.to.any.traffic.not.matching. |
| b43e0 | 61 6e 79 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 63 6c 61 73 73 65 73 2e 00 59 | any.of.the.configured.classes..Y |
| b4400 | 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 | ou.can.configure.multiple.interf |
| b4420 | 61 63 65 73 20 77 68 69 63 68 20 77 68 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e | aces.which.whould.participate.in |
| b4440 | 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 | .flow.accounting..You.can.config |
| b4460 | 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 68 | ure.multiple.interfaces.which.wh |
| b4480 | 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 73 66 6c 6f 77 20 61 63 63 6f 75 6e | ould.participate.in.sflow.accoun |
| b44a0 | 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 | ting..You.can.configure.multiple |
| b44c0 | 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 6f 75 6c 64 20 70 61 72 74 69 63 69 70 | .interfaces.which.would.particip |
| b44e0 | 61 74 65 20 69 6e 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 | ate.in.flow.accounting..You.can. |
| b4500 | 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 | configure.multiple.interfaces.wh |
| b4520 | 69 63 68 20 77 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 73 66 6c 6f 77 20 61 | ich.would.participate.in.sflow.a |
| b4540 | 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 72 65 61 74 65 20 6d 75 6c 74 69 70 | ccounting..You.can.create.multip |
| b4560 | 6c 65 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 6f 6e 20 61 20 70 68 79 73 69 63 61 6c | le.VLAN.interfaces.on.a.physical |
| b4580 | 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 56 4c 41 4e 20 49 44 20 72 61 6e 67 65 20 69 73 | .interface..The.VLAN.ID.range.is |
| b45a0 | 20 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 34 2e 00 59 6f 75 20 63 61 6e 20 64 65 66 69 6e 65 20 | .from.0.to.4094..You.can.define. |
| b45c0 | 63 75 73 74 6f 6d 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 74 6f 20 61 70 70 6c 79 20 74 | custom.timeout.values.to.apply.t |
| b45e0 | 6f 20 61 20 73 70 65 63 69 66 69 63 20 73 75 62 73 65 74 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f | o.a.specific.subset.of.connectio |
| b4600 | 6e 73 2c 20 62 61 73 65 64 20 6f 6e 20 61 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 | ns,.based.on.a.packet.and.flow.s |
| b4620 | 65 6c 65 63 74 6f 72 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f | elector..To.do.this,.you.need.to |
| b4640 | 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 70 61 63 6b | .create.a.rule.defining.the.pack |
| b4660 | 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 59 6f 75 20 63 61 6e 20 64 69 | et.and.flow.selector..You.can.di |
| b4680 | 73 61 62 6c 65 20 61 20 56 52 52 50 20 67 72 6f 75 70 20 77 69 74 68 20 60 60 64 69 73 61 62 6c | sable.a.VRRP.group.with.``disabl |
| b46a0 | 65 60 60 20 6f 70 74 69 6f 6e 3a 00 59 6f 75 20 63 61 6e 20 67 65 74 20 6d 6f 72 65 20 73 70 65 | e``.option:.You.can.get.more.spe |
| b46c0 | 63 69 66 69 63 20 4f 53 50 46 76 33 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 79 20 75 73 69 6e | cific.OSPFv3.information.by.usin |
| b46e0 | 67 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 59 6f | g.the.parameters.shown.below:.Yo |
| b4700 | 75 20 63 61 6e 20 6e 6f 74 20 61 73 73 69 67 6e 20 74 68 65 20 73 61 6d 65 20 61 6c 6c 6f 77 65 | u.can.not.assign.the.same.allowe |
| b4720 | 64 2d 69 70 73 20 73 74 61 74 65 6d 65 6e 74 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 57 69 72 65 | d-ips.statement.to.multiple.Wire |
| b4740 | 47 75 61 72 64 20 70 65 65 72 73 2e 20 54 68 69 73 20 61 20 64 65 73 69 67 6e 20 64 65 63 69 73 | Guard.peers..This.a.design.decis |
| b4760 | 69 6f 6e 2e 20 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 | ion..For.more.information.please |
| b4780 | 20 63 68 65 63 6b 20 74 68 65 20 60 57 69 72 65 47 75 61 72 64 20 6d 61 69 6c 69 6e 67 20 6c 69 | .check.the.`WireGuard.mailing.li |
| b47a0 | 73 74 60 5f 2e 00 59 6f 75 20 63 61 6e 20 6e 6f 74 20 72 75 6e 20 74 68 69 73 20 69 6e 20 61 20 | st`_..You.can.not.run.this.in.a. |
| b47c0 | 56 52 52 50 20 73 65 74 75 70 2c 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 6d 44 4e 53 20 72 65 70 | VRRP.setup,.if.multiple.mDNS.rep |
| b47e0 | 65 61 74 65 72 73 20 61 72 65 20 6c 61 75 6e 63 68 65 64 20 69 6e 20 61 20 73 75 62 6e 65 74 20 | eaters.are.launched.in.a.subnet. |
| b4800 | 79 6f 75 20 77 69 6c 6c 20 65 78 70 65 72 69 65 6e 63 65 20 74 68 65 20 6d 44 4e 53 20 70 61 63 | you.will.experience.the.mDNS.pac |
| b4820 | 6b 65 74 20 73 74 6f 72 6d 20 64 65 61 74 68 21 00 59 6f 75 20 63 61 6e 20 6e 6f 77 20 22 64 69 | ket.storm.death!.You.can.now."di |
| b4840 | 61 6c 22 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 77 6f 69 6e 67 20 | al".the.peer.with.the.follwoing. |
| b4860 | 63 6f 6d 6d 61 6e 64 3a 20 60 60 73 73 74 70 63 20 2d 2d 6c 6f 67 2d 6c 65 76 65 6c 20 34 20 2d | command:.``sstpc.--log-level.4.- |
| b4880 | 2d 6c 6f 67 2d 73 74 64 65 72 72 20 2d 2d 75 73 65 72 20 76 79 6f 73 20 2d 2d 70 61 73 73 77 6f | -log-stderr.--user.vyos.--passwo |
| b48a0 | 72 64 20 76 79 6f 73 20 76 70 6e 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 20 2d 2d 20 63 61 6c 6c 20 | rd.vyos.vpn.example.com.--.call. |
| b48c0 | 76 79 6f 73 60 60 2e 00 59 6f 75 20 63 61 6e 20 6e 6f 77 20 53 53 48 20 69 6e 74 6f 20 79 6f 75 | vyos``..You.can.now.SSH.into.you |
| b48e0 | 72 20 73 79 73 74 65 6d 20 75 73 69 6e 67 20 61 64 6d 69 6e 2f 61 64 6d 69 6e 20 61 73 20 61 20 | r.system.using.admin/admin.as.a. |
| b4900 | 64 65 66 61 75 6c 74 20 75 73 65 72 20 73 75 70 70 6c 69 65 64 20 66 72 6f 6d 20 74 68 65 20 60 | default.user.supplied.from.the.` |
| b4920 | 60 6c 66 6b 65 69 74 65 6c 2f 74 61 63 61 63 73 5f 70 6c 75 73 3a 6c 61 74 65 73 74 60 60 20 63 | `lfkeitel/tacacs_plus:latest``.c |
| b4940 | 6f 6e 74 61 69 6e 65 72 2e 00 59 6f 75 20 63 61 6e 20 6f 6e 6c 79 20 61 70 70 6c 79 20 6f 6e 65 | ontainer..You.can.only.apply.one |
| b4960 | 20 70 6f 6c 69 63 79 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 64 69 72 65 63 74 | .policy.per.interface.and.direct |
| b4980 | 69 6f 6e 2c 20 62 75 74 20 79 6f 75 20 63 6f 75 6c 64 20 72 65 75 73 65 20 61 20 70 6f 6c 69 63 | ion,.but.you.could.reuse.a.polic |
| b49a0 | 79 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 64 69 | y.on.different.interfaces.and.di |
| b49c0 | 72 65 63 74 69 6f 6e 73 3a 00 59 6f 75 20 63 61 6e 20 6f 6e 6c 79 20 73 70 65 63 69 66 79 20 61 | rections:.You.can.only.specify.a |
| b49e0 | 20 73 6f 75 72 63 65 20 6d 61 63 2d 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 59 6f | .source.mac-address.to.match..Yo |
| b4a00 | 75 20 63 61 6e 20 72 75 6e 20 74 68 65 20 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 | u.can.run.the.UDP.broadcast.rela |
| b4a20 | 79 20 73 65 72 76 69 63 65 20 6f 6e 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 72 73 20 63 6f | y.service.on.multiple.routers.co |
| b4a40 | 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 73 75 62 6e 65 74 2e 20 54 68 65 72 65 20 69 73 20 2a 2a | nnected.to.a.subnet..There.is.** |
| b4a60 | 4e 4f 2a 2a 20 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 20 70 61 63 6b 65 74 20 | NO**.UDP.broadcast.relay.packet. |
| b4a80 | 73 74 6f 72 6d 21 00 59 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 61 20 73 74 61 74 69 63 20 | storm!.You.can.specify.a.static. |
| b4aa0 | 44 48 43 50 20 61 73 73 69 67 6e 6d 65 6e 74 20 6f 6e 20 61 20 70 65 72 20 68 6f 73 74 20 62 61 | DHCP.assignment.on.a.per.host.ba |
| b4ac0 | 73 69 73 2e 20 59 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 | sis..You.will.need.the.MAC.addre |
| b4ae0 | 73 73 20 6f 66 20 74 68 65 20 73 74 61 74 69 6f 6e 20 61 6e 64 20 79 6f 75 72 20 64 65 73 69 72 | ss.of.the.station.and.your.desir |
| b4b00 | 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 | ed.IP.address..The.address.must. |
| b4b20 | 62 65 20 69 6e 73 69 64 65 20 74 68 65 20 73 75 62 6e 65 74 20 64 65 66 69 6e 69 74 69 6f 6e 20 | be.inside.the.subnet.definition. |
| b4b40 | 62 75 74 20 63 61 6e 20 62 65 20 6f 75 74 73 69 64 65 20 6f 66 20 74 68 65 20 72 61 6e 67 65 20 | but.can.be.outside.of.the.range. |
| b4b60 | 73 74 61 74 65 6d 65 6e 74 2e 00 59 6f 75 20 63 61 6e 20 74 65 73 74 20 74 68 65 20 53 4e 4d 50 | statement..You.can.test.the.SNMP |
| b4b80 | 76 33 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 66 72 6f 6d 20 61 6e 79 20 6c 69 6e 75 78 20 | v3.functionality.from.any.linux. |
| b4ba0 | 62 61 73 65 64 20 73 79 73 74 65 6d 2c 20 6a 75 73 74 20 72 75 6e 20 74 68 65 20 66 6f 6c 6c 6f | based.system,.just.run.the.follo |
| b4bc0 | 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 20 60 60 73 6e 6d 70 77 61 6c 6b 20 2d 76 20 33 20 2d 75 | wing.command:.``snmpwalk.-v.3.-u |
| b4be0 | 20 76 79 6f 73 20 2d 61 20 53 48 41 20 2d 41 20 76 79 6f 73 31 32 33 34 35 36 37 38 20 2d 78 20 | .vyos.-a.SHA.-A.vyos12345678.-x. |
| b4c00 | 41 45 53 20 2d 58 20 76 79 6f 73 31 32 33 34 35 36 37 38 20 2d 6c 20 61 75 74 68 50 72 69 76 20 | AES.-X.vyos12345678.-l.authPriv. |
| b4c20 | 31 39 32 2e 30 2e 32 2e 31 20 2e 31 60 60 00 59 6f 75 20 63 61 6e 20 75 73 65 20 77 69 6c 64 63 | 192.0.2.1..1``.You.can.use.wildc |
| b4c40 | 61 72 64 20 60 60 2a 60 60 20 74 6f 20 6d 61 74 63 68 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e | ard.``*``.to.match.a.group.of.in |
| b4c60 | 74 65 72 66 61 63 65 73 2e 00 59 6f 75 20 63 61 6e 20 76 65 72 69 66 79 20 79 6f 75 72 20 56 52 | terfaces..You.can.verify.your.VR |
| b4c80 | 52 50 20 67 72 6f 75 70 20 73 74 61 74 75 73 20 77 69 74 68 20 74 68 65 20 6f 70 65 72 61 74 69 | RP.group.status.with.the.operati |
| b4ca0 | 6f 6e 61 6c 20 6d 6f 64 65 20 60 60 72 75 6e 20 73 68 6f 77 20 76 72 72 70 60 60 20 63 6f 6d 6d | onal.mode.``run.show.vrrp``.comm |
| b4cc0 | 61 6e 64 3a 00 59 6f 75 20 63 61 6e 20 76 69 65 77 20 74 68 61 74 20 74 68 65 20 70 6f 6c 69 63 | and:.You.can.view.that.the.polic |
| b4ce0 | 79 20 69 73 20 62 65 69 6e 67 20 63 6f 72 72 65 63 74 6c 79 20 28 6f 72 20 69 6e 63 6f 72 72 65 | y.is.being.correctly.(or.incorre |
| b4d00 | 63 74 6c 79 29 20 75 74 69 6c 69 73 65 64 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | ctly).utilised.with.the.followin |
| b4d20 | 67 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f 75 20 63 61 6e 6e 6f 74 20 65 61 73 69 6c 79 20 72 65 64 | g.command:.You.cannot.easily.red |
| b4d40 | 69 73 74 72 69 62 75 74 65 20 49 50 76 36 20 72 6f 75 74 65 73 20 76 69 61 20 4f 53 50 46 76 33 | istribute.IPv6.routes.via.OSPFv3 |
| b4d60 | 20 6f 6e 20 61 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 6c 69 6e 6b 2e 20 | .on.a.WireGuard.interface.link.. |
| b4d80 | 54 68 69 73 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 6c | This.requires.you.to.configure.l |
| b4da0 | 69 6e 6b 2d 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 73 20 6d 61 6e 75 61 6c 6c 79 20 6f 6e 20 | ink-local.addresses.manually.on. |
| b4dc0 | 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 73 2c 20 73 65 65 20 3a 76 | the.WireGuard.interfaces,.see.:v |
| b4de0 | 79 74 61 73 6b 3a 60 54 31 34 38 33 60 2e 00 59 6f 75 20 64 6f 20 2a 2a 6e 6f 74 2a 2a 20 6e 65 | ytask:`T1483`..You.do.**not**.ne |
| b4e00 | 65 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 | ed.to.copy.the.certificate.to.th |
| b4e20 | 65 20 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 20 49 6e 73 74 65 61 64 2c 20 79 6f 75 20 6e 65 65 | e.other.router..Instead,.you.nee |
| b4e40 | 64 20 74 6f 20 72 65 74 72 69 65 76 65 20 69 74 73 20 53 48 41 2d 32 35 36 20 66 69 6e 67 65 72 | d.to.retrieve.its.SHA-256.finger |
| b4e60 | 70 72 69 6e 74 2e 20 4f 70 65 6e 56 50 4e 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 73 20 53 48 41 | print..OpenVPN.only.supports.SHA |
| b4e80 | 2d 32 35 36 20 66 69 6e 67 65 72 70 72 69 6e 74 73 20 61 74 20 74 68 65 20 6d 6f 6d 65 6e 74 2c | -256.fingerprints.at.the.moment, |
| b4ea0 | 20 73 6f 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | .so.you.need.to.use.the.followin |
| b4ec0 | 67 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f 75 20 6d 61 79 20 61 6c 73 6f 20 61 64 64 69 74 69 6f 6e | g.command:.You.may.also.addition |
| b4ee0 | 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 74 69 6d 65 6f 75 74 73 20 66 6f 72 20 64 69 66 66 | ally.configure.timeouts.for.diff |
| b4f00 | 65 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 59 6f 75 20 | erent.types.of.connections..You. |
| b4f20 | 6d 61 79 20 65 78 70 65 63 74 20 72 65 61 6c 20 74 68 72 6f 75 67 68 70 75 74 73 20 61 72 6f 75 | may.expect.real.throughputs.arou |
| b4f40 | 6e 64 20 31 30 4d 42 79 74 65 73 2f 73 20 6f 72 20 68 69 67 68 65 72 20 69 6e 20 63 72 6f 77 64 | nd.10MBytes/s.or.higher.in.crowd |
| b4f60 | 65 64 20 61 72 65 61 73 2e 00 59 6f 75 20 6d 61 79 20 65 78 70 65 63 74 20 72 65 61 6c 20 74 68 | ed.areas..You.may.expect.real.th |
| b4f80 | 72 6f 75 67 68 70 75 74 73 20 61 72 6f 75 6e 64 20 35 30 4d 42 79 74 65 73 2f 73 20 74 6f 20 31 | roughputs.around.50MBytes/s.to.1 |
| b4fa0 | 35 30 4d 42 79 74 65 73 2f 73 2c 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 6f 62 73 74 72 75 63 | 50MBytes/s,.depending.on.obstruc |
| b4fc0 | 74 69 6f 6e 73 20 62 79 20 77 61 6c 6c 73 2c 20 77 61 74 65 72 2c 20 6d 65 74 61 6c 20 6f 72 20 | tions.by.walls,.water,.metal.or. |
| b4fe0 | 6f 74 68 65 72 20 6d 61 74 65 72 69 61 6c 73 20 77 69 74 68 20 68 69 67 68 20 65 6c 65 63 74 72 | other.materials.with.high.electr |
| b5000 | 6f 2d 6d 61 67 6e 65 74 69 63 20 64 61 6d 70 65 6e 69 6e 67 20 61 74 20 36 47 48 7a 2e 20 42 65 | o-magnetic.dampening.at.6GHz..Be |
| b5020 | 73 74 20 72 65 73 75 6c 74 73 20 61 72 65 20 61 63 68 69 65 76 65 64 20 77 69 74 68 20 74 68 65 | st.results.are.achieved.with.the |
| b5040 | 20 41 50 20 62 65 69 6e 67 20 69 6e 20 74 68 65 20 73 61 6d 65 20 72 6f 6f 6d 20 61 6e 64 20 69 | .AP.being.in.the.same.room.and.i |
| b5060 | 6e 20 6c 69 6e 65 2d 6f 66 2d 73 69 67 68 74 2e 00 59 6f 75 20 6d 61 79 20 70 72 65 66 65 72 20 | n.line-of-sight..You.may.prefer. |
| b5080 | 6c 6f 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 | locally.configured.capabilities. |
| b50a0 | 6d 6f 72 65 20 74 68 61 6e 20 74 68 65 20 6e 65 67 6f 74 69 61 74 65 64 20 63 61 70 61 62 69 6c | more.than.the.negotiated.capabil |
| b50c0 | 69 74 69 65 73 20 65 76 65 6e 20 74 68 6f 75 67 68 20 72 65 6d 6f 74 65 20 70 65 65 72 20 73 65 | ities.even.though.remote.peer.se |
| b50e0 | 6e 64 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 49 66 20 74 68 65 20 70 65 65 72 20 69 73 | nds.capabilities..If.the.peer.is |
| b5100 | 20 63 6f 6e 66 69 67 75 72 65 64 20 62 79 20 3a 63 66 67 63 6d 64 3a 60 6f 76 65 72 72 69 64 65 | .configured.by.:cfgcmd:`override |
| b5120 | 2d 63 61 70 61 62 69 6c 69 74 79 60 2c 20 56 79 4f 53 20 69 67 6e 6f 72 65 73 20 72 65 63 65 69 | -capability`,.VyOS.ignores.recei |
| b5140 | 76 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 74 68 65 6e 20 6f 76 65 72 72 69 64 65 20 6e | ved.capabilities.then.override.n |
| b5160 | 65 67 6f 74 69 61 74 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 77 69 74 68 20 63 6f 6e 66 | egotiated.capabilities.with.conf |
| b5180 | 69 67 75 72 65 64 20 76 61 6c 75 65 73 2e 00 59 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 64 | igured.values..You.may.want.to.d |
| b51a0 | 69 73 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 | isable.sending.Capability.Negoti |
| b51c0 | 61 74 69 6f 6e 20 4f 50 45 4e 20 6d 65 73 73 61 67 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 | ation.OPEN.message.optional.para |
| b51e0 | 6d 65 74 65 72 20 74 6f 20 74 68 65 20 70 65 65 72 20 77 68 65 6e 20 72 65 6d 6f 74 65 20 70 65 | meter.to.the.peer.when.remote.pe |
| b5200 | 65 72 20 64 6f 65 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 20 43 61 70 61 62 69 6c 69 74 79 | er.does.not.implement.Capability |
| b5220 | 20 4e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 50 6c 65 61 73 65 20 75 73 65 20 3a 63 66 67 63 6d 64 | .Negotiation..Please.use.:cfgcmd |
| b5240 | 3a 60 64 69 73 61 62 6c 65 2d 63 61 70 61 62 69 6c 69 74 79 2d 6e 65 67 6f 74 69 61 74 69 6f 6e | :`disable-capability-negotiation |
| b5260 | 60 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 66 65 61 74 75 72 65 | `.command.to.disable.the.feature |
| b5280 | 2e 00 59 6f 75 20 6e 65 65 64 20 32 20 73 65 70 61 72 61 74 65 20 66 69 72 65 77 61 6c 6c 73 20 | ..You.need.2.separate.firewalls. |
| b52a0 | 74 6f 20 64 65 66 69 6e 65 20 74 72 61 66 66 69 63 3a 20 6f 6e 65 20 66 6f 72 20 65 61 63 68 20 | to.define.traffic:.one.for.each. |
| b52c0 | 64 69 72 65 63 74 69 6f 6e 2e 00 59 6f 75 20 6e 65 65 64 20 74 6f 20 64 69 73 61 62 6c 65 20 74 | direction..You.need.to.disable.t |
| b52e0 | 68 65 20 69 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c 65 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e | he.in-memory.table.in.production |
| b5300 | 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 21 20 55 73 69 6e 67 20 3a 61 62 62 72 3a 60 49 4d 54 20 | .environments!.Using.:abbr:`IMT. |
| b5320 | 28 49 6e 2d 4d 65 6d 6f 72 79 20 54 61 62 6c 65 29 60 20 6d 61 79 20 6c 65 61 64 20 74 6f 20 68 | (In-Memory.Table)`.may.lead.to.h |
| b5340 | 65 61 76 79 20 43 50 55 20 6f 76 65 72 6c 6f 61 64 69 6e 67 20 61 6e 64 20 75 6e 73 74 61 62 6c | eavy.CPU.overloading.and.unstabl |
| b5360 | 65 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 62 65 68 61 76 69 6f 72 2e 00 59 6f 75 20 | e.flow-accounting.behavior..You. |
| b5380 | 6e 65 65 64 20 79 6f 75 72 20 50 50 50 6f 45 20 63 72 65 64 65 6e 74 69 61 6c 73 20 66 72 6f 6d | need.your.PPPoE.credentials.from |
| b53a0 | 20 79 6f 75 72 20 44 53 4c 20 49 53 50 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6e 66 69 67 | .your.DSL.ISP.in.order.to.config |
| b53c0 | 75 72 65 20 74 68 69 73 2e 20 54 68 65 20 75 73 75 61 6c 20 75 73 65 72 6e 61 6d 65 20 69 73 20 | ure.this..The.usual.username.is. |
| b53e0 | 69 6e 20 74 68 65 20 66 6f 72 6d 20 6f 66 20 6e 61 6d 65 40 68 6f 73 74 2e 6e 65 74 20 62 75 74 | in.the.form.of.name@host.net.but |
| b5400 | 20 6d 61 79 20 76 61 72 79 20 64 65 70 65 6e 64 69 6e 67 20 6f 6e 20 49 53 50 2e 00 59 6f 75 20 | .may.vary.depending.on.ISP..You. |
| b5420 | 6e 6f 77 20 73 65 65 20 74 68 65 20 6c 6f 6e 67 65 72 20 41 53 20 70 61 74 68 2e 00 59 6f 75 20 | now.see.the.longer.AS.path..You. |
| b5440 | 73 68 6f 75 6c 64 20 61 64 64 20 61 20 66 69 72 65 77 61 6c 6c 20 74 6f 20 79 6f 75 72 20 63 6f | should.add.a.firewall.to.your.co |
| b5460 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 20 61 73 20 77 65 6c 6c 20 62 79 20 61 73 73 | nfiguration.above.as.well.by.ass |
| b5480 | 69 67 6e 69 6e 67 20 69 74 20 74 6f 20 74 68 65 20 70 70 70 6f 65 30 20 69 74 73 65 6c 66 20 61 | igning.it.to.the.pppoe0.itself.a |
| b54a0 | 73 20 73 68 6f 77 6e 20 68 65 72 65 3a 00 59 6f 75 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 65 6e | s.shown.here:.You.should.also.en |
| b54c0 | 73 75 72 65 20 74 68 61 74 20 74 68 65 20 4f 55 54 49 53 44 45 5f 4c 4f 43 41 4c 20 66 69 72 65 | sure.that.the.OUTISDE_LOCAL.fire |
| b54e0 | 77 61 6c 6c 20 67 72 6f 75 70 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 57 41 4e | wall.group.is.applied.to.the.WAN |
| b5500 | 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 20 64 69 72 65 63 74 69 6f 6e 20 28 6c 6f 63 61 | .interface.and.a.direction.(loca |
| b5520 | 6c 29 2e 00 59 6f 75 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 | l)..You.should.also.ensure.that. |
| b5540 | 74 68 65 20 4f 55 54 53 49 44 45 5f 4c 4f 43 41 4c 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 | the.OUTSIDE_LOCAL.firewall.group |
| b5560 | 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 | .is.applied.to.the.WAN.interface |
| b5580 | 20 61 6e 64 20 61 20 64 69 72 65 63 74 69 6f 6e 20 28 6c 6f 63 61 6c 29 2e 00 59 6f 75 20 77 69 | .and.a.direction.(local)..You.wi |
| b55a0 | 6c 6c 20 61 6c 73 6f 20 6e 65 65 64 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 6f 66 20 79 | ll.also.need.the.public.key.of.y |
| b55c0 | 6f 75 72 20 70 65 65 72 20 61 73 20 77 65 6c 6c 20 61 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 28 | our.peer.as.well.as.the.network( |
| b55e0 | 73 29 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 74 75 6e 6e 65 6c 20 28 61 6c 6c 6f 77 65 64 2d 69 | s).you.want.to.tunnel.(allowed-i |
| b5600 | 70 73 29 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 57 69 72 65 47 75 61 72 64 20 74 75 6e | ps).to.configure.a.WireGuard.tun |
| b5620 | 6e 65 6c 2e 20 54 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 62 65 6c 6f 77 20 69 73 20 61 6c 77 | nel..The.public.key.below.is.alw |
| b5640 | 61 79 73 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 66 72 6f 6d 20 79 6f 75 72 20 70 65 65 | ays.the.public.key.from.your.pee |
| b5660 | 72 2c 20 6e 6f 74 20 79 6f 75 72 20 6c 6f 63 61 6c 20 6f 6e 65 2e 00 59 6f 75 72 20 49 53 50 73 | r,.not.your.local.one..Your.ISPs |
| b5680 | 20 6d 6f 64 65 6d 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 70 6f 72 74 20 60 60 65 74 | .modem.is.connected.to.port.``et |
| b56a0 | 68 30 60 60 20 6f 66 20 79 6f 75 72 20 56 79 4f 53 20 62 6f 78 2e 00 59 6f 75 72 20 4c 41 4e 20 | h0``.of.your.VyOS.box..Your.LAN. |
| b56c0 | 63 6f 6e 6e 65 63 74 65 64 20 6f 6e 20 65 74 68 30 20 75 73 65 73 20 70 72 65 66 69 78 20 60 60 | connected.on.eth0.uses.prefix.`` |
| b56e0 | 32 30 30 31 3a 64 62 38 3a 62 65 65 66 3a 32 3a 3a 2f 36 34 60 60 20 77 69 74 68 20 74 68 65 20 | 2001:db8:beef:2::/64``.with.the. |
| b5700 | 72 6f 75 74 65 72 20 62 65 65 69 6e 67 20 60 60 32 30 30 31 3a 64 62 38 3a 62 65 65 66 3a 32 3a | router.beeing.``2001:db8:beef:2: |
| b5720 | 3a 31 60 60 00 5a 65 62 72 61 20 73 75 70 70 6f 72 74 73 20 70 72 65 66 69 78 2d 6c 69 73 74 73 | :1``.Zebra.supports.prefix-lists |
| b5740 | 20 61 6e 64 20 52 6f 75 74 65 20 4d 61 70 73 20 74 6f 20 6d 61 74 63 68 20 72 6f 75 74 65 73 20 | .and.Route.Maps.to.match.routes. |
| b5760 | 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 46 52 52 20 63 6f 6d 70 6f 6e 65 6e | received.from.other.FRR.componen |
| b5780 | 74 73 2e 20 54 68 65 20 70 65 72 6d 69 74 2f 64 65 6e 79 20 66 61 63 69 6c 69 74 69 65 73 20 70 | ts..The.permit/deny.facilities.p |
| b57a0 | 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 | rovided.by.these.commands.can.be |
| b57c0 | 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 77 68 69 63 68 20 72 6f 75 74 65 73 20 7a 65 62 | .used.to.filter.which.routes.zeb |
| b57e0 | 72 61 20 77 69 6c 6c 20 69 6e 73 74 61 6c 6c 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 5a | ra.will.install.in.the.kernel..Z |
| b5800 | 65 62 72 61 20 73 75 70 70 6f 72 74 73 20 70 72 65 66 69 78 2d 6c 69 73 74 73 20 61 6e 64 20 52 | ebra.supports.prefix-lists.and.R |
| b5820 | 6f 75 74 65 20 4d 61 70 73 73 20 74 6f 20 6d 61 74 63 68 20 72 6f 75 74 65 73 20 72 65 63 65 69 | oute.Mapss.to.match.routes.recei |
| b5840 | 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 46 52 52 20 63 6f 6d 70 6f 6e 65 6e 74 73 2e 20 54 | ved.from.other.FRR.components..T |
| b5860 | 68 65 20 70 65 72 6d 69 74 2f 64 65 6e 79 20 66 61 63 69 6c 69 74 69 65 73 20 70 72 6f 76 69 64 | he.permit/deny.facilities.provid |
| b5880 | 65 64 20 62 79 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 20 75 73 65 64 | ed.by.these.commands.can.be.used |
| b58a0 | 20 74 6f 20 66 69 6c 74 65 72 20 77 68 69 63 68 20 72 6f 75 74 65 73 20 7a 65 62 72 61 20 77 69 | .to.filter.which.routes.zebra.wi |
| b58c0 | 6c 6c 20 69 6e 73 74 61 6c 6c 20 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 5a 65 62 72 61 2f | ll.install.in.the.kernel..Zebra/ |
| b58e0 | 4b 65 72 6e 65 6c 20 72 6f 75 74 65 20 66 69 6c 74 65 72 69 6e 67 00 5a 6f 6e 65 20 42 61 73 65 | Kernel.route.filtering.Zone.Base |
| b5900 | 64 20 46 69 72 65 77 61 6c 6c 00 5a 6f 6e 65 20 42 61 73 65 64 20 46 69 72 65 77 61 6c 6c 20 28 | d.Firewall.Zone.Based.Firewall.( |
| b5920 | 44 65 70 72 65 63 61 74 65 64 29 00 5a 6f 6e 65 2d 50 6f 6c 69 63 79 20 4f 76 65 72 76 69 65 77 | Deprecated).Zone-Policy.Overview |
| b5940 | 00 5a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 00 5b 41 2e 42 2e 43 2e 44 5d 20 e2 | .Zone-based.firewall.[A.B.C.D].. |
| b5960 | 80 93 20 6c 69 6e 6b 2d 73 74 61 74 65 2d 69 64 2e 20 57 69 74 68 20 74 68 69 73 20 73 70 65 63 | ...link-state-id..With.this.spec |
| b5980 | 69 66 69 65 64 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 70 6f 72 74 69 | ified.the.command.displays.porti |
| b59a0 | 6f 6e 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 74 68 | on.of.the.network.environment.th |
| b59c0 | 61 74 20 69 73 20 62 65 69 6e 67 20 64 65 73 63 72 69 62 65 64 20 62 79 20 74 68 65 20 61 64 76 | at.is.being.described.by.the.adv |
| b59e0 | 65 72 74 69 73 65 6d 65 6e 74 2e 20 54 68 65 20 76 61 6c 75 65 20 65 6e 74 65 72 65 64 20 64 65 | ertisement..The.value.entered.de |
| b5a00 | 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 e2 80 99 73 20 4c | pends.on.the.advertisement...s.L |
| b5a20 | 53 20 74 79 70 65 2e 20 49 74 20 6d 75 73 74 20 62 65 20 65 6e 74 65 72 65 64 20 69 6e 20 74 68 | S.type..It.must.be.entered.in.th |
| b5a40 | 65 20 66 6f 72 6d 20 6f 66 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 2e 00 60 31 2e 20 43 72 65 | e.form.of.an.IP.address..`1..Cre |
| b5a60 | 61 74 65 20 61 6e 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 60 5f 00 60 32 2e 20 41 64 64 20 72 | ate.an.event.handler`_.`2..Add.r |
| b5a80 | 65 67 65 78 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 60 5f 00 60 33 2e 20 41 64 64 20 61 20 66 | egex.to.the.script`_.`3..Add.a.f |
| b5aa0 | 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 60 5f 00 60 34 2e 20 41 64 64 | ull.path.to.the.script`_.`4..Add |
| b5ac0 | 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 73 60 5f 00 60 3c 6e 61 6d 65 3e 60 20 | .optional.parameters`_.`<name>`. |
| b5ae0 | 6d 75 73 74 20 62 65 20 69 64 65 6e 74 69 63 61 6c 20 6f 6e 20 62 6f 74 68 20 73 69 64 65 73 21 | must.be.identical.on.both.sides! |
| b5b00 | 00 60 43 6f 6d 6d 6f 6e 20 41 70 70 6c 69 63 61 74 69 6f 6e 73 20 4b 65 70 74 20 45 6e 68 61 6e | .`Common.Applications.Kept.Enhan |
| b5b20 | 63 65 64 60 5f 20 28 43 41 4b 45 29 20 69 73 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 | ced`_.(CAKE).is.a.comprehensive. |
| b5b40 | 71 75 65 75 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 79 73 74 65 6d 2c 20 69 6d 70 6c 65 6d 65 | queue.management.system,.impleme |
| b5b60 | 6e 74 65 64 20 61 73 20 61 20 71 75 65 75 65 20 64 69 73 63 69 70 6c 69 6e 65 20 28 71 64 69 73 | nted.as.a.queue.discipline.(qdis |
| b5b80 | 63 29 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 2e 20 49 74 20 69 73 20 64 | c).for.the.Linux.kernel..It.is.d |
| b5ba0 | 65 73 69 67 6e 65 64 20 74 6f 20 72 65 70 6c 61 63 65 20 61 6e 64 20 69 6d 70 72 6f 76 65 20 75 | esigned.to.replace.and.improve.u |
| b5bc0 | 70 6f 6e 20 74 68 65 20 63 6f 6d 70 6c 65 78 20 68 69 65 72 61 72 63 68 79 20 6f 66 20 73 69 6d | pon.the.complex.hierarchy.of.sim |
| b5be0 | 70 6c 65 20 71 64 69 73 63 73 20 70 72 65 73 65 6e 74 6c 79 20 72 65 71 75 69 72 65 64 20 74 6f | ple.qdiscs.presently.required.to |
| b5c00 | 20 65 66 66 65 63 74 69 76 65 6c 79 20 74 61 63 6b 6c 65 20 74 68 65 20 62 75 66 66 65 72 62 6c | .effectively.tackle.the.bufferbl |
| b5c20 | 6f 61 74 20 70 72 6f 62 6c 65 6d 20 61 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 65 64 67 65 2e | oat.problem.at.the.network.edge. |
| b5c40 | 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 61 2e 6b 65 79 20 7c 20 68 65 61 64 20 2d 6e | .``$.tail.-n.+2.ca.key.|.head.-n |
| b5c60 | 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b | .-1.|.tr.-d.'\n'``.``$.tail.-n.+ |
| b5c80 | 32 20 63 61 2e 70 65 6d 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c | 2.ca.pem.|.head.-n.-1.|.tr.-d.'\ |
| b5ca0 | 6e 27 60 60 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 65 72 74 2e 6b 65 79 20 7c 20 68 | n'``.``$.tail.-n.+2.cert.key.|.h |
| b5cc0 | 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 24 20 74 61 69 | ead.-n.-1.|.tr.-d.'\n'``.``$.tai |
| b5ce0 | 6c 20 2d 6e 20 2b 32 20 63 65 72 74 2e 70 65 6d 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 | l.-n.+2.cert.pem.|.head.-n.-1.|. |
| b5d00 | 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 2b 60 60 20 73 75 63 63 65 73 73 66 75 6c 00 60 60 | tr.-d.'\n'``.``+``.successful.`` |
| b5d20 | 2d 60 60 20 66 61 69 6c 65 64 00 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 64 68 63 | -``.failed.``/config/scripts/dhc |
| b5d40 | 70 2d 63 6c 69 65 6e 74 2f 70 6f 73 74 2d 68 6f 6f 6b 73 2e 64 2f 60 60 00 60 60 2f 63 6f 6e 66 | p-client/post-hooks.d/``.``/conf |
| b5d60 | 69 67 2f 73 63 72 69 70 74 73 2f 64 68 63 70 2d 63 6c 69 65 6e 74 2f 70 72 65 2d 68 6f 6f 6b 73 | ig/scripts/dhcp-client/pre-hooks |
| b5d80 | 2e 64 2f 60 60 00 60 60 30 2e 70 6f 6f 6c 2e 6e 74 70 2e 6f 72 67 60 60 00 60 60 30 60 60 20 2d | .d/``.``0.pool.ntp.org``.``0``.- |
| b5da0 | 20 32 30 20 6f 72 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 64 65 66 | .20.or.40.MHz.channel.width.(def |
| b5dc0 | 61 75 6c 74 29 00 60 60 30 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 2d 37 00 60 60 30 60 60 3a 20 | ault).``0``.-.HE-MCS.0-7.``0``:. |
| b5de0 | 4e 6f 20 72 65 70 6c 61 79 20 77 69 6e 64 6f 77 2c 20 73 74 72 69 63 74 20 63 68 65 63 6b 00 60 | No.replay.window,.strict.check.` |
| b5e00 | 60 31 2d 34 32 39 34 39 36 37 32 39 35 60 60 3a 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 | `1-4294967295``:.Number.of.packe |
| b5e20 | 74 73 20 74 68 61 74 20 63 6f 75 6c 64 20 62 65 20 6d 69 73 6f 72 64 65 72 65 64 00 60 60 31 2e | ts.that.could.be.misordered.``1. |
| b5e40 | 70 6f 6f 6c 2e 6e 74 70 2e 6f 72 67 60 60 00 60 60 31 31 35 32 30 30 60 60 20 2d 20 31 31 35 2c | pool.ntp.org``.``115200``.-.115, |
| b5e60 | 32 30 30 20 62 70 73 20 28 64 65 66 61 75 6c 74 20 66 6f 72 20 73 65 72 69 61 6c 20 63 6f 6e 73 | 200.bps.(default.for.serial.cons |
| b5e80 | 6f 6c 65 29 00 60 60 31 32 30 30 60 60 20 2d 20 31 32 30 30 20 62 70 73 00 60 60 31 33 31 60 60 | ole).``1200``.-.1200.bps.``131`` |
| b5ea0 | 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 31 60 60 20 | .-.20.MHz.channel.width.``131``. |
| b5ec0 | 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 | -.20.MHz.channel.width.(6GHz).`` |
| b5ee0 | 31 33 32 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 | 132``.-.40.MHz.channel.width.``1 |
| b5f00 | 33 32 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 | 32``.-.40.MHz.channel.width.(6GH |
| b5f20 | 7a 29 00 60 60 31 33 33 60 60 20 2d 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 | z).``133``.-.80.MHz.channel.widt |
| b5f40 | 68 00 60 60 31 33 33 60 60 20 2d 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 | h.``133``.-.80.MHz.channel.width |
| b5f60 | 20 28 36 47 48 7a 29 00 60 60 31 33 34 60 60 20 2d 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 | .(6GHz).``134``.-.160.MHz.channe |
| b5f80 | 6c 20 77 69 64 74 68 00 60 60 31 33 34 60 60 20 2d 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 | l.width.``134``.-.160.MHz.channe |
| b5fa0 | 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 33 35 60 60 20 2d 20 38 30 2b 38 30 20 4d | l.width.(6GHz).``135``.-.80+80.M |
| b5fc0 | 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 35 60 60 20 2d 20 38 30 2b 38 30 | Hz.channel.width.``135``.-.80+80 |
| b5fe0 | 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 39 32 2e | .MHz.channel.width.(6GHz).``192. |
| b6000 | 31 36 38 2e 32 2e 32 35 34 60 60 20 49 50 20 61 64 64 72 65 65 73 73 20 6f 6e 20 56 79 4f 53 20 | 168.2.254``.IP.addreess.on.VyOS. |
| b6020 | 65 74 68 32 20 66 72 6f 6d 20 49 53 50 32 00 60 60 31 39 32 30 30 60 60 20 2d 20 31 39 2c 32 30 | eth2.from.ISP2.``19200``.-.19,20 |
| b6040 | 30 20 62 70 73 00 60 60 31 60 60 20 2d 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 | 0.bps.``1``.-.80.MHz.channel.wid |
| b6060 | 74 68 00 60 60 31 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 2d 39 00 60 60 32 2e 70 6f 6f 6c 2e 6e | th.``1``.-.HE-MCS.0-9.``2.pool.n |
| b6080 | 74 70 2e 6f 72 67 60 60 00 60 60 32 30 33 2e 30 2e 31 31 33 2e 32 35 34 60 60 20 49 50 20 61 64 | tp.org``.``203.0.113.254``.IP.ad |
| b60a0 | 64 72 65 65 73 73 20 6f 6e 20 56 79 4f 53 20 65 74 68 31 20 66 72 6f 6d 20 49 53 50 31 00 60 60 | dreess.on.VyOS.eth1.from.ISP1.`` |
| b60c0 | 32 34 30 30 60 60 20 2d 20 32 34 30 30 20 62 70 73 00 60 60 32 60 60 20 2d 20 31 36 30 20 4d 48 | 2400``.-.2400.bps.``2``.-.160.MH |
| b60e0 | 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 32 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 | z.channel.width.``2``.-.HE-MCS.0 |
| b6100 | 2d 31 31 00 60 60 33 38 34 30 30 60 60 20 2d 20 33 38 2c 34 30 30 20 62 70 73 20 28 64 65 66 61 | -11.``38400``.-.38,400.bps.(defa |
| b6120 | 75 6c 74 20 66 6f 72 20 58 65 6e 20 63 6f 6e 73 6f 6c 65 29 00 60 60 33 60 60 20 2d 20 38 30 2b | ult.for.Xen.console).``3``.-.80+ |
| b6140 | 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 33 60 60 20 2d 20 48 45 2d | 80.MHz.channel.width.``3``.-.HE- |
| b6160 | 4d 43 53 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 00 60 60 34 38 30 30 60 60 20 2d 20 | MCS.is.not.supported.``4800``.-. |
| b6180 | 34 38 30 30 20 62 70 73 00 60 60 35 37 36 30 30 60 60 20 2d 20 35 37 2c 36 30 30 20 62 70 73 00 | 4800.bps.``57600``.-.57,600.bps. |
| b61a0 | 60 60 36 34 3a 66 66 39 62 3a 3a 2f 39 36 60 60 20 69 73 20 74 68 65 20 77 65 6c 6c 2d 6b 6e 6f | ``64:ff9b::/96``.is.the.well-kno |
| b61c0 | 77 6e 20 70 72 65 66 69 78 20 66 6f 72 20 49 50 76 34 2d 65 6d 62 65 64 64 65 64 20 49 50 76 36 | wn.prefix.for.IPv4-embedded.IPv6 |
| b61e0 | 20 61 64 64 72 65 73 73 65 73 2e 20 54 68 65 20 70 72 65 66 69 78 20 69 73 20 75 73 65 64 20 74 | .addresses..The.prefix.is.used.t |
| b6200 | 6f 20 72 65 70 72 65 73 65 6e 74 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 61 6e | o.represent.IPv4.addresses.in.an |
| b6220 | 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 6d 61 74 2e 20 54 68 65 20 49 50 76 34 20 61 | .IPv6.address.format..The.IPv4.a |
| b6240 | 64 64 72 65 73 73 20 69 73 20 65 6e 63 6f 64 65 64 20 69 6e 20 74 68 65 20 6c 6f 77 2d 6f 72 64 | ddress.is.encoded.in.the.low-ord |
| b6260 | 65 72 20 33 32 20 62 69 74 73 20 6f 66 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 20 | er.32.bits.of.the.IPv6.address.. |
| b6280 | 54 68 65 20 68 69 67 68 2d 6f 72 64 65 72 20 33 32 20 62 69 74 73 20 61 72 65 20 73 65 74 20 74 | The.high-order.32.bits.are.set.t |
| b62a0 | 6f 20 74 68 65 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 70 72 65 66 69 78 20 36 34 3a 66 66 39 62 3a | o.the.well-known.prefix.64:ff9b: |
| b62c0 | 3a 2f 39 36 2e 00 60 60 38 30 32 2e 33 61 64 60 60 20 2d 20 49 45 45 45 20 38 30 32 2e 33 61 64 | :/96..``802.3ad``.-.IEEE.802.3ad |
| b62e0 | 20 44 79 6e 61 6d 69 63 20 6c 69 6e 6b 20 61 67 67 72 65 67 61 74 69 6f 6e 2e 20 43 72 65 61 74 | .Dynamic.link.aggregation..Creat |
| b6300 | 65 73 20 61 67 67 72 65 67 61 74 69 6f 6e 20 67 72 6f 75 70 73 20 74 68 61 74 20 73 68 61 72 65 | es.aggregation.groups.that.share |
| b6320 | 20 74 68 65 20 73 61 6d 65 20 73 70 65 65 64 20 61 6e 64 20 64 75 70 6c 65 78 20 73 65 74 74 69 | .the.same.speed.and.duplex.setti |
| b6340 | 6e 67 73 2e 20 55 74 69 6c 69 7a 65 73 20 61 6c 6c 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 | ngs..Utilizes.all.slaves.in.the. |
| b6360 | 61 63 74 69 76 65 20 61 67 67 72 65 67 61 74 6f 72 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 | active.aggregator.according.to.t |
| b6380 | 68 65 20 38 30 32 2e 33 61 64 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 2e 00 60 60 38 31 60 60 | he.802.3ad.specification..``81`` |
| b63a0 | 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 32 2e 34 47 48 7a 29 | .-.20.MHz.channel.width.(2.4GHz) |
| b63c0 | 00 60 60 38 33 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 2c 20 | .``83``.-.40.MHz.channel.width,. |
| b63e0 | 73 65 63 6f 6e 64 61 72 79 20 32 30 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 61 62 6f 76 65 20 70 72 | secondary.20MHz.channel.above.pr |
| b6400 | 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 20 28 32 2e 34 47 48 7a 29 00 60 60 38 34 60 60 20 2d 20 | imary.channel.(2.4GHz).``84``.-. |
| b6420 | 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 2c 20 73 65 63 6f 6e 64 61 72 79 20 | 40.MHz.channel.width,.secondary. |
| b6440 | 32 30 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 62 65 6c 6f 77 20 70 72 69 6d 61 72 79 20 63 68 61 6e | 20MHz.channel.below.primary.chan |
| b6460 | 6e 65 6c 20 28 32 2e 34 47 48 7a 29 00 60 60 39 36 30 30 60 60 20 2d 20 39 36 30 30 20 62 70 73 | nel.(2.4GHz).``9600``.-.9600.bps |
| b6480 | 00 60 60 3c 20 64 68 2d 67 72 6f 75 70 20 3e 60 60 20 64 65 66 69 6e 65 73 20 61 20 44 69 66 66 | .``<.dh-group.>``.defines.a.Diff |
| b64a0 | 69 65 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 6f 72 20 50 46 53 3b 00 60 60 40 60 60 20 | ie-Hellman.group.for.PFS;.``@``. |
| b64c0 | 55 73 65 20 40 20 61 73 20 72 65 63 6f 72 64 20 6e 61 6d 65 20 74 6f 20 73 65 74 20 74 68 65 20 | Use.@.as.record.name.to.set.the. |
| b64e0 | 72 65 63 6f 72 64 20 66 6f 72 20 74 68 65 20 72 6f 6f 74 20 64 6f 6d 61 69 6e 2e 00 60 60 4b 6e | record.for.the.root.domain..``Kn |
| b6500 | 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 3a 60 60 00 60 60 53 74 61 74 65 66 75 6c 2d 49 50 | own.limitations:``.``Stateful-IP |
| b6520 | 76 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 60 20 61 6e 64 20 60 60 44 65 6c 65 67 61 74 65 | v6-Address-Pool``.and.``Delegate |
| b6540 | 64 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c 60 60 20 61 72 65 20 64 65 66 69 6e 65 64 | d-IPv6-Prefix-Pool``.are.defined |
| b6560 | 20 69 6e 20 52 46 43 36 39 31 31 2e 20 49 66 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 64 65 66 | .in.RFC6911..If.they.are.not.def |
| b6580 | 69 6e 65 64 20 69 6e 20 79 6f 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2c 20 61 64 64 20 | ined.in.your.RADIUS.server,.add. |
| b65a0 | 6e 65 77 20 64 69 63 74 69 6f 6e 61 72 79 5f 2e 00 60 60 57 4c 42 5f 49 4e 54 45 52 46 41 43 45 | new.dictionary_..``WLB_INTERFACE |
| b65c0 | 5f 4e 41 4d 45 3d 5b 69 6e 74 65 72 66 61 63 65 6e 61 6d 65 5d 60 60 3a 20 49 6e 74 65 72 66 61 | _NAME=[interfacename]``:.Interfa |
| b65e0 | 63 65 20 74 6f 20 62 65 20 6d 6f 6e 69 74 6f 72 65 64 00 60 60 57 4c 42 5f 49 4e 54 45 52 46 41 | ce.to.be.monitored.``WLB_INTERFA |
| b6600 | 43 45 5f 53 54 41 54 45 3d 5b 41 43 54 49 56 45 7c 46 41 49 4c 45 44 5d 60 60 3a 20 49 6e 74 65 | CE_STATE=[ACTIVE|FAILED]``:.Inte |
| b6620 | 72 66 61 63 65 20 73 74 61 74 65 00 60 60 61 60 60 20 2d 20 38 30 32 2e 31 31 61 20 2d 20 35 34 | rface.state.``a``.-.802.11a.-.54 |
| b6640 | 20 4d 62 69 74 73 2f 73 65 63 00 60 60 61 63 60 60 20 2d 20 38 30 32 2e 31 31 61 63 20 2d 20 31 | .Mbits/sec.``ac``.-.802.11ac.-.1 |
| b6660 | 33 30 30 20 4d 62 69 74 73 2f 73 65 63 00 60 60 61 63 63 65 70 74 2d 6f 77 6e 2d 6e 65 78 74 68 | 300.Mbits/sec.``accept-own-nexth |
| b6680 | 6f 70 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d | op``.-...........Well-known.comm |
| b66a0 | 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 61 63 63 65 70 74 2d 6f 77 6e 2d 6e 65 78 74 68 6f 70 | unities.value.accept-own-nexthop |
| b66c0 | 20 30 78 46 46 46 46 30 30 30 38 00 60 60 61 63 63 65 70 74 2d 6f 77 6e 60 60 20 2d 20 20 20 20 | .0xFFFF0008.``accept-own``.-.... |
| b66e0 | 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e | ...............Well-known.commun |
| b6700 | 69 74 69 65 73 20 76 61 6c 75 65 20 41 43 43 45 50 54 5f 4f 57 4e 20 30 78 46 46 46 46 30 30 30 | ities.value.ACCEPT_OWN.0xFFFF000 |
| b6720 | 31 00 60 60 61 63 63 65 70 74 60 60 3a 20 61 63 63 65 70 74 20 74 68 65 20 70 61 63 6b 65 74 2e | 1.``accept``:.accept.the.packet. |
| b6740 | 00 60 60 61 63 63 65 73 73 2d 70 6f 69 6e 74 60 60 20 2d 20 41 63 63 65 73 73 2d 70 6f 69 6e 74 | .``access-point``.-.Access-point |
| b6760 | 20 66 6f 72 77 61 72 64 73 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 6f 74 68 65 72 20 | .forwards.packets.between.other. |
| b6780 | 6e 6f 64 65 73 00 60 60 61 63 74 69 6f 6e 60 60 20 6b 65 65 70 2d 61 6c 69 76 65 20 66 61 69 6c | nodes.``action``.keep-alive.fail |
| b67a0 | 75 72 65 20 61 63 74 69 6f 6e 3a 00 60 60 61 63 74 69 76 65 2d 62 61 63 6b 75 70 60 60 20 2d 20 | ure.action:.``active-backup``.-. |
| b67c0 | 41 63 74 69 76 65 2d 62 61 63 6b 75 70 20 70 6f 6c 69 63 79 3a 20 4f 6e 6c 79 20 6f 6e 65 20 73 | Active-backup.policy:.Only.one.s |
| b67e0 | 6c 61 76 65 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 69 73 20 61 63 74 69 76 65 2e 20 41 20 64 69 | lave.in.the.bond.is.active..A.di |
| b6800 | 66 66 65 72 65 6e 74 20 73 6c 61 76 65 20 62 65 63 6f 6d 65 73 20 61 63 74 69 76 65 20 69 66 2c | fferent.slave.becomes.active.if, |
| b6820 | 20 61 6e 64 20 6f 6e 6c 79 20 69 66 2c 20 74 68 65 20 61 63 74 69 76 65 20 73 6c 61 76 65 20 66 | .and.only.if,.the.active.slave.f |
| b6840 | 61 69 6c 73 2e 20 54 68 65 20 62 6f 6e 64 27 73 20 4d 41 43 20 61 64 64 72 65 73 73 20 69 73 20 | ails..The.bond's.MAC.address.is. |
| b6860 | 65 78 74 65 72 6e 61 6c 6c 79 20 76 69 73 69 62 6c 65 20 6f 6e 20 6f 6e 6c 79 20 6f 6e 65 20 70 | externally.visible.on.only.one.p |
| b6880 | 6f 72 74 20 28 6e 65 74 77 6f 72 6b 20 61 64 61 70 74 65 72 29 20 74 6f 20 61 76 6f 69 64 20 63 | ort.(network.adapter).to.avoid.c |
| b68a0 | 6f 6e 66 75 73 69 6e 67 20 74 68 65 20 73 77 69 74 63 68 2e 00 60 60 61 63 74 69 76 65 60 60 20 | onfusing.the.switch..``active``. |
| b68c0 | 54 68 69 73 20 69 73 20 74 68 65 20 6c 6f 77 2d 6c 65 76 65 6c 20 66 69 72 6d 77 61 72 65 20 63 | This.is.the.low-level.firmware.c |
| b68e0 | 6f 6e 74 72 6f 6c 20 6d 6f 64 65 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 72 6f 66 69 6c 65 | ontrol.mode.based.on.the.profile |
| b6900 | 20 73 65 74 20 61 6e 64 20 74 68 65 20 73 79 73 74 65 6d 20 67 6f 76 65 72 6e 6f 72 20 68 61 73 | .set.and.the.system.governor.has |
| b6920 | 20 6e 6f 20 65 66 66 65 63 74 2e 00 60 60 61 64 61 70 74 69 76 65 2d 6c 6f 61 64 2d 62 61 6c 61 | .no.effect..``adaptive-load-bala |
| b6940 | 6e 63 65 60 60 20 2d 20 41 64 61 70 74 69 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a | nce``.-.Adaptive.load.balancing: |
| b6960 | 20 69 6e 63 6c 75 64 65 73 20 74 72 61 6e 73 6d 69 74 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 | .includes.transmit-load-balance. |
| b6980 | 70 6c 75 73 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 66 6f 72 20 | plus.receive.load.balancing.for. |
| b69a0 | 49 50 56 34 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 | IPV4.traffic,.and.does.not.requi |
| b69c0 | 72 65 20 61 6e 79 20 73 70 65 63 69 61 6c 20 73 77 69 74 63 68 20 73 75 70 70 6f 72 74 2e 20 54 | re.any.special.switch.support..T |
| b69e0 | 68 65 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 69 73 20 61 63 68 | he.receive.load.balancing.is.ach |
| b6a00 | 69 65 76 65 64 20 62 79 20 41 52 50 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 54 68 65 20 62 6f | ieved.by.ARP.negotiation..The.bo |
| b6a20 | 6e 64 69 6e 67 20 64 72 69 76 65 72 20 69 6e 74 65 72 63 65 70 74 73 20 74 68 65 20 41 52 50 20 | nding.driver.intercepts.the.ARP. |
| b6a40 | 52 65 70 6c 69 65 73 20 73 65 6e 74 20 62 79 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d | Replies.sent.by.the.local.system |
| b6a60 | 20 6f 6e 20 74 68 65 69 72 20 77 61 79 20 6f 75 74 20 61 6e 64 20 6f 76 65 72 77 72 69 74 65 73 | .on.their.way.out.and.overwrites |
| b6a80 | 20 74 68 65 20 73 6f 75 72 63 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 77 69 74 | .the.source.hardware.address.wit |
| b6aa0 | 68 20 74 68 65 20 75 6e 69 71 75 65 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 6f 66 | h.the.unique.hardware.address.of |
| b6ac0 | 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 73 | .one.of.the.slaves.in.the.bond.s |
| b6ae0 | 75 63 68 20 74 68 61 74 20 64 69 66 66 65 72 65 6e 74 20 70 65 65 72 73 20 75 73 65 20 64 69 66 | uch.that.different.peers.use.dif |
| b6b00 | 66 65 72 65 6e 74 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 | ferent.hardware.addresses.for.th |
| b6b20 | 65 20 73 65 72 76 65 72 2e 00 60 60 61 64 64 72 65 73 73 60 60 20 49 50 20 61 64 64 72 65 73 73 | e.server..``address``.IP.address |
| b6b40 | 20 6f 72 20 73 75 62 6e 65 74 2e 00 60 60 61 67 67 72 65 73 73 69 76 65 60 60 20 75 73 65 20 41 | .or.subnet..``aggressive``.use.A |
| b6b60 | 67 67 72 65 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 73 | ggressive.mode.for.Key.Exchanges |
| b6b80 | 20 69 6e 20 74 68 65 20 49 4b 45 76 31 20 70 72 6f 74 6f 63 6f 6c 20 61 67 67 72 65 73 73 69 76 | .in.the.IKEv1.protocol.aggressiv |
| b6ba0 | 65 20 6d 6f 64 65 20 69 73 20 6d 75 63 68 20 6d 6f 72 65 20 69 6e 73 65 63 75 72 65 20 63 6f 6d | e.mode.is.much.more.insecure.com |
| b6bc0 | 70 61 72 65 64 20 74 6f 20 4d 61 69 6e 20 6d 6f 64 65 3b 00 60 60 61 6c 6c 2d 61 76 61 69 6c 61 | pared.to.Main.mode;.``all-availa |
| b6be0 | 62 6c 65 60 60 20 61 6c 6c 20 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 74 20 61 64 64 72 65 73 | ble``.all.checking.target.addres |
| b6c00 | 73 65 73 20 6d 75 73 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 70 61 73 73 20 74 68 | ses.must.be.available.to.pass.th |
| b6c20 | 69 73 20 63 68 65 63 6b 00 60 60 61 6d 64 5f 70 73 74 61 74 65 3d 7b 6d 6f 64 65 7d 60 60 20 53 | is.check.``amd_pstate={mode}``.S |
| b6c40 | 65 74 73 20 74 68 65 20 70 2d 73 74 61 74 65 20 6d 6f 64 65 00 60 60 61 6e 79 2d 61 76 61 69 6c | ets.the.p-state.mode.``any-avail |
| b6c60 | 61 62 6c 65 60 60 20 61 6e 79 20 6f 66 20 74 68 65 20 63 68 65 63 6b 69 6e 67 20 74 61 72 67 65 | able``.any.of.the.checking.targe |
| b6c80 | 74 20 61 64 64 72 65 73 73 65 73 20 6d 75 73 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 74 6f | t.addresses.must.be.available.to |
| b6ca0 | 20 70 61 73 73 20 74 68 69 73 20 63 68 65 63 6b 00 60 60 61 6e 79 60 60 20 55 73 65 20 61 6e 79 | .pass.this.check.``any``.Use.any |
| b6cc0 | 20 61 73 20 72 65 63 6f 72 64 20 6e 61 6d 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 | .as.record.name.to.configure.the |
| b6ce0 | 20 72 65 63 6f 72 64 20 61 73 20 61 20 77 69 6c 64 63 61 72 64 2e 00 60 60 61 75 74 68 65 6e 74 | .record.as.a.wildcard..``authent |
| b6d00 | 69 63 61 74 69 6f 6e 20 6c 6f 63 61 6c 2d 69 64 2f 72 65 6d 6f 74 65 2d 69 64 60 60 20 2d 20 49 | ication.local-id/remote-id``.-.I |
| b6d20 | 4b 45 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 66 6f 72 20 76 61 | KE.identification.is.used.for.va |
| b6d40 | 6c 69 64 61 74 69 6f 6e 20 6f 66 20 56 50 4e 20 70 65 65 72 20 64 65 76 69 63 65 73 20 64 75 72 | lidation.of.VPN.peer.devices.dur |
| b6d60 | 69 6e 67 20 49 4b 45 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e | ing.IKE.negotiation..If.you.do.n |
| b6d80 | 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 2d 69 64 65 6e 74 69 | ot.configure.local/remote-identi |
| b6da0 | 74 79 2c 20 74 68 65 20 64 65 76 69 63 65 20 75 73 65 73 20 74 68 65 20 49 50 76 34 20 6f 72 20 | ty,.the.device.uses.the.IPv4.or. |
| b6dc0 | 49 50 76 36 20 61 64 64 72 65 73 73 20 74 68 61 74 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f | IPv6.address.that.corresponds.to |
| b6de0 | 20 74 68 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 20 70 65 65 72 20 62 79 20 64 65 66 61 75 6c | .the.local/remote.peer.by.defaul |
| b6e00 | 74 2e 20 49 6e 20 63 65 72 74 61 69 6e 20 6e 65 74 77 6f 72 6b 20 73 65 74 75 70 73 20 28 6c 69 | t..In.certain.network.setups.(li |
| b6e20 | 6b 65 20 69 70 73 65 63 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 | ke.ipsec.interface.with.dynamic. |
| b6e40 | 61 64 64 72 65 73 73 2c 20 6f 72 20 62 65 68 69 6e 64 20 74 68 65 20 4e 41 54 20 29 2c 20 74 68 | address,.or.behind.the.NAT.),.th |
| b6e60 | 65 20 49 4b 45 20 49 44 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 20 | e.IKE.ID.received.from.the.peer. |
| b6e80 | 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 20 49 4b 45 20 67 61 74 65 77 61 79 20 63 | does.not.match.the.IKE.gateway.c |
| b6ea0 | 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 2e 20 54 68 69 73 20 63 61 | onfigured.on.the.device..This.ca |
| b6ec0 | 6e 20 6c 65 61 64 20 74 6f 20 61 20 50 68 61 73 65 20 31 20 76 61 6c 69 64 61 74 69 6f 6e 20 66 | n.lead.to.a.Phase.1.validation.f |
| b6ee0 | 61 69 6c 75 72 65 2e 20 53 6f 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 6f 20 63 6f 6e 66 69 67 75 | ailure..So,.make.sure.to.configu |
| b6f00 | 72 65 20 74 68 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 20 69 64 20 65 78 70 6c 69 63 69 74 6c | re.the.local/remote.id.explicitl |
| b6f20 | 79 20 61 6e 64 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 49 4b 45 20 49 44 20 69 73 20 | y.and.ensure.that.the.IKE.ID.is. |
| b6f40 | 74 68 65 20 73 61 6d 65 20 61 73 20 74 68 65 20 72 65 6d 6f 74 65 2d 69 64 65 6e 74 69 74 79 20 | the.same.as.the.remote-identity. |
| b6f60 | 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 70 65 65 72 20 64 65 76 69 63 65 2e 00 60 | configured.on.the.peer.device..` |
| b6f80 | 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 2d 20 63 6f 6e 66 69 67 75 72 65 20 61 75 | `authentication``.-.configure.au |
| b6fa0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 61 20 | thentication.between.VyOS.and.a. |
| b6fc0 | 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 49 66 20 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 | remote.peer..If.pre-shared-secre |
| b6fe0 | 74 20 6d 6f 64 65 20 69 73 20 75 73 65 64 2c 20 74 68 65 20 73 65 63 72 65 74 20 6b 65 79 20 6d | t.mode.is.used,.the.secret.key.m |
| b7000 | 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 76 70 6e 20 69 70 73 65 | ust.be.defined.in.``set.vpn.ipse |
| b7020 | 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 61 6e 64 20 73 75 62 6f 70 74 69 6f 6e | c.authentication``.and.suboption |
| b7040 | 73 3a 00 60 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 2d 20 63 6f 6e 66 69 67 75 72 | s:.``authentication``.-.configur |
| b7060 | 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e | e.authentication.between.VyOS.an |
| b7080 | 64 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 53 75 62 6f 70 74 69 6f 6e 73 3a 00 60 60 61 | d.a.remote.peer..Suboptions:.``a |
| b70a0 | 78 60 60 20 2d 20 38 30 32 2e 31 31 61 78 20 2d 20 65 78 63 65 65 64 73 20 31 47 42 69 74 2f 73 | x``.-.802.11ax.-.exceeds.1GBit/s |
| b70c0 | 65 63 00 60 60 62 60 60 20 2d 20 38 30 32 2e 31 31 62 20 2d 20 31 31 20 4d 62 69 74 73 2f 73 65 | ec.``b``.-.802.11b.-.11.Mbits/se |
| b70e0 | 63 00 60 60 62 61 62 65 6c 60 60 20 2d 20 42 61 62 65 6c 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 | c.``babel``.-.Babel.routing.prot |
| b7100 | 6f 63 6f 6c 20 28 42 61 62 65 6c 29 00 60 60 62 65 67 69 6e 60 60 20 4d 61 74 63 68 65 73 20 74 | ocol.(Babel).``begin``.Matches.t |
| b7120 | 68 65 20 62 65 67 69 6e 6e 69 6e 67 20 6f 66 20 74 68 65 20 55 52 4c 20 70 61 74 68 00 60 60 62 | he.beginning.of.the.URL.path.``b |
| b7140 | 67 70 60 60 20 2d 20 42 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 28 | gp``.-.Border.Gateway.Protocol.( |
| b7160 | 42 47 50 29 00 60 60 62 69 6e 64 60 60 20 2d 20 73 65 6c 65 63 74 20 61 20 56 54 49 20 69 6e 74 | BGP).``bind``.-.select.a.VTI.int |
| b7180 | 65 72 66 61 63 65 20 74 6f 20 62 69 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3b 00 60 60 62 | erface.to.bind.to.this.peer;.``b |
| b71a0 | 6c 61 63 6b 68 6f 6c 65 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 | lackhole``.-.................... |
| b71c0 | 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 42 4c 41 | Well-known.communities.value.BLA |
| b71e0 | 43 4b 48 4f 4c 45 20 30 78 46 46 46 46 30 32 39 41 00 60 60 62 72 6f 61 64 63 61 73 74 60 60 20 | CKHOLE.0xFFFF029A.``broadcast``. |
| b7200 | 2d 20 42 72 6f 61 64 63 61 73 74 20 70 6f 6c 69 63 79 3a 20 74 72 61 6e 73 6d 69 74 73 20 65 76 | -.Broadcast.policy:.transmits.ev |
| b7220 | 65 72 79 74 68 69 6e 67 20 6f 6e 20 61 6c 6c 20 73 6c 61 76 65 20 69 6e 74 65 72 66 61 63 65 73 | erything.on.all.slave.interfaces |
| b7240 | 2e 00 60 60 62 75 72 73 74 60 60 3a 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 61 | ..``burst``:.Number.of.packets.a |
| b7260 | 6c 6c 6f 77 65 64 20 74 6f 20 6f 76 65 72 73 68 6f 6f 74 20 74 68 65 20 6c 69 6d 69 74 20 77 69 | llowed.to.overshoot.the.limit.wi |
| b7280 | 74 68 69 6e 20 60 60 70 65 72 69 6f 64 60 60 2e 20 44 65 66 61 75 6c 74 20 35 2e 00 60 60 63 61 | thin.``period``..Default.5..``ca |
| b72a0 | 2d 63 65 72 74 2d 66 69 6c 65 60 60 20 2d 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 | -cert-file``.-.CA.certificate.fi |
| b72c0 | 6c 65 2e 20 55 73 69 6e 67 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 72 65 6d | le..Using.for.authenticating.rem |
| b72e0 | 6f 74 65 20 70 65 65 72 3b 00 60 60 63 61 2d 63 65 72 74 69 66 69 63 61 74 65 60 60 20 2d 20 43 | ote.peer;.``ca-certificate``.-.C |
| b7300 | 41 20 63 65 72 74 69 66 69 63 61 74 65 20 69 6e 20 50 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 | A.certificate.in.PKI.configurati |
| b7320 | 6f 6e 2e 20 55 73 69 6e 67 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 72 65 6d | on..Using.for.authenticating.rem |
| b7340 | 6f 74 65 20 70 65 65 72 3b 00 60 60 63 64 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 43 | ote.peer;.``cdp``.-.Listen.for.C |
| b7360 | 44 50 20 66 6f 72 20 43 69 73 63 6f 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 | DP.for.Cisco.routers/switches.`` |
| b7380 | 63 65 72 74 2d 66 69 6c 65 60 60 20 2d 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6c 65 2c 20 | cert-file``.-.certificate.file,. |
| b73a0 | 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 | which.will.be.used.for.authentic |
| b73c0 | 61 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 | ating.local.router.on.remote.pee |
| b73e0 | 72 3b 00 60 60 63 65 72 74 69 66 69 63 61 74 65 60 60 20 2d 20 63 65 72 74 69 66 69 63 61 74 65 | r;.``certificate``.-.certificate |
| b7400 | 20 66 69 6c 65 20 69 6e 20 50 4b 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 | .file.in.PKI.configuration,.whic |
| b7420 | 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e | h.will.be.used.for.authenticatin |
| b7440 | 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 | g.local.router.on.remote.peer;.` |
| b7460 | 60 63 6c 65 61 72 60 60 20 63 6c 6f 73 65 73 20 74 68 65 20 43 48 49 4c 44 5f 53 41 20 61 6e 64 | `clear``.closes.the.CHILD_SA.and |
| b7480 | 20 64 6f 65 73 20 6e 6f 74 20 74 61 6b 65 20 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e 20 28 64 | .does.not.take.further.action.(d |
| b74a0 | 65 66 61 75 6c 74 29 3b 00 60 60 63 6c 65 61 72 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f | efault);.``clear``.set.action.to |
| b74c0 | 20 63 6c 65 61 72 3b 00 60 60 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 20 3d 20 6e 6f 6e 65 20 7c 20 | .clear;.``close-action.=.none.|. |
| b74e0 | 63 6c 65 61 72 20 7c 20 68 6f 6c 64 20 7c 20 72 65 73 74 61 72 74 60 60 20 2d 20 64 65 66 69 6e | clear.|.hold.|.restart``.-.defin |
| b7500 | 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d | es.the.action.to.take.if.the.rem |
| b7520 | 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 | ote.peer.unexpectedly.closes.a.C |
| b7540 | 48 49 4c 44 5f 53 41 20 28 73 65 65 20 61 62 6f 76 65 20 66 6f 72 20 6d 65 61 6e 69 6e 67 20 6f | HILD_SA.(see.above.for.meaning.o |
| b7560 | 66 20 76 61 6c 75 65 73 29 2e 20 41 20 63 6c 6f 73 65 61 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 | f.values)..A.closeaction.should. |
| b7580 | 6e 6f 74 20 62 65 20 75 73 65 64 20 69 66 20 74 68 65 20 70 65 65 72 20 75 73 65 73 20 72 65 61 | not.be.used.if.the.peer.uses.rea |
| b75a0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 75 6e 69 71 75 65 69 64 73 2e 00 60 60 63 6c | uthentication.or.uniqueids..``cl |
| b75c0 | 6f 73 65 2d 61 63 74 69 6f 6e 20 3d 20 6e 6f 6e 65 20 7c 20 63 6c 65 61 72 20 7c 20 74 72 61 70 | ose-action.=.none.|.clear.|.trap |
| b75e0 | 20 7c 20 73 74 61 72 74 60 60 20 2d 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 | .|.start``.-.defines.the.action. |
| b7600 | 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 | to.take.if.the.remote.peer.unexp |
| b7620 | 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 48 49 4c 44 5f 53 41 20 28 73 65 65 20 61 | ectedly.closes.a.CHILD_SA.(see.a |
| b7640 | 62 6f 76 65 20 66 6f 72 20 6d 65 61 6e 69 6e 67 20 6f 66 20 76 61 6c 75 65 73 29 2e 20 41 20 63 | bove.for.meaning.of.values)..A.c |
| b7660 | 6c 6f 73 65 61 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 69 66 | loseaction.should.not.be.used.if |
| b7680 | 20 74 68 65 20 70 65 65 72 20 75 73 65 73 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | .the.peer.uses.reauthentication. |
| b76a0 | 6f 72 20 75 6e 69 71 75 65 69 64 73 2e 00 60 60 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 60 60 20 64 | or.uniqueids..``close-action``.d |
| b76c0 | 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 | efines.the.action.to.take.if.the |
| b76e0 | 20 72 65 6d 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 | .remote.peer.unexpectedly.closes |
| b7700 | 20 61 20 43 48 49 4c 44 5f 53 41 3a 00 60 60 63 6f 6d 70 72 65 73 73 69 6f 6e 60 60 20 20 45 6e | .a.CHILD_SA:.``compression``..En |
| b7720 | 61 62 6c 65 73 20 74 68 65 20 20 49 50 43 6f 6d 70 28 49 50 20 50 61 79 6c 6f 61 64 20 43 6f 6d | ables.the..IPComp(IP.Payload.Com |
| b7740 | 70 72 65 73 73 69 6f 6e 29 20 70 72 6f 74 6f 63 6f 6c 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 | pression).protocol.which.allows. |
| b7760 | 63 6f 6d 70 72 65 73 73 69 6e 67 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 6f 66 20 49 50 20 70 61 | compressing.the.content.of.IP.pa |
| b7780 | 63 6b 65 74 73 2e 00 60 60 63 6f 6d 70 72 65 73 73 69 6f 6e 60 60 20 77 68 65 74 68 65 72 20 49 | ckets..``compression``.whether.I |
| b77a0 | 50 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 6f 66 20 63 6f 6e 74 65 6e 74 20 69 73 20 | PComp.compression.of.content.is. |
| b77c0 | 70 72 6f 70 6f 73 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 3a 00 60 60 63 6f | proposed.on.the.connection:.``co |
| b77e0 | 6e 6e 65 63 74 65 64 60 60 20 2d 20 43 6f 6e 6e 65 63 74 65 64 20 72 6f 75 74 65 73 20 28 64 69 | nnected``.-.Connected.routes.(di |
| b7800 | 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 73 75 62 6e 65 74 20 6f 72 20 68 6f 73 74 29 00 | rectly.attached.subnet.or.host). |
| b7820 | 60 60 63 6f 6e 6e 65 63 74 69 6f 6e 2d 74 79 70 65 60 60 20 2d 20 68 6f 77 20 74 6f 20 68 61 6e | ``connection-type``.-.how.to.han |
| b7840 | 64 6c 65 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 63 65 73 73 2e 20 50 6f 73 | dle.this.connection.process..Pos |
| b7860 | 73 69 62 6c 65 20 76 61 72 69 61 6e 74 73 3a 00 60 60 63 6f 6e 74 69 6e 75 65 60 60 3a 20 63 6f | sible.variants:.``continue``:.co |
| b7880 | 6e 74 69 6e 75 65 20 70 61 72 73 69 6e 67 20 6e 65 78 74 20 72 75 6c 65 2e 00 60 60 63 72 6c 2d | ntinue.parsing.next.rule..``crl- |
| b78a0 | 66 69 6c 65 60 60 20 2d 20 66 69 6c 65 20 77 69 74 68 20 74 68 65 20 43 65 72 74 69 66 69 63 61 | file``.-.file.with.the.Certifica |
| b78c0 | 74 65 20 52 65 76 6f 63 61 74 69 6f 6e 20 4c 69 73 74 2e 20 55 73 69 6e 67 20 74 6f 20 63 68 65 | te.Revocation.List..Using.to.che |
| b78e0 | 63 6b 20 69 66 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 74 68 65 20 72 65 6d 6f | ck.if.a.certificate.for.the.remo |
| b7900 | 74 65 20 70 65 65 72 20 69 73 20 76 61 6c 69 64 20 6f 72 20 72 65 76 6f 6b 65 64 3b 00 60 60 64 | te.peer.is.valid.or.revoked;.``d |
| b7920 | 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 64 61 79 73 00 | ``.-.Execution.interval.in.days. |
| b7940 | 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 20 61 63 74 69 6f 6e 20 3d 20 63 | ``dead-peer-detection.action.=.c |
| b7960 | 6c 65 61 72 20 7c 20 68 6f 6c 64 20 7c 20 72 65 73 74 61 72 74 60 60 20 2d 20 52 5f 55 5f 54 48 | lear.|.hold.|.restart``.-.R_U_TH |
| b7980 | 45 52 45 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 28 49 4b 45 76 31 29 | ERE.notification.messages(IKEv1) |
| b79a0 | 20 6f 72 20 65 6d 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 6d 65 73 73 61 67 65 73 | .or.empty.INFORMATIONAL.messages |
| b79c0 | 20 28 49 4b 45 76 32 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 73 65 6e 74 20 69 | .(IKEv2).are.periodically.sent.i |
| b79e0 | 6e 20 6f 72 64 65 72 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 65 6c 69 6e 65 73 73 20 | n.order.to.check.the.liveliness. |
| b7a00 | 6f 66 20 74 68 65 20 49 50 73 65 63 20 70 65 65 72 2e 20 54 68 65 20 76 61 6c 75 65 73 20 63 6c | of.the.IPsec.peer..The.values.cl |
| b7a20 | 65 61 72 2c 20 68 6f 6c 64 2c 20 61 6e 64 20 72 65 73 74 61 72 74 20 61 6c 6c 20 61 63 74 69 76 | ear,.hold,.and.restart.all.activ |
| b7a40 | 61 74 65 20 44 50 44 20 61 6e 64 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 61 63 74 69 6f 6e | ate.DPD.and.determine.the.action |
| b7a60 | 20 74 6f 20 70 65 72 66 6f 72 6d 20 6f 6e 20 61 20 74 69 6d 65 6f 75 74 2e 20 57 69 74 68 20 60 | .to.perform.on.a.timeout..With.` |
| b7a80 | 60 63 6c 65 61 72 60 60 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 63 6c 6f 73 65 | `clear``.the.connection.is.close |
| b7aa0 | 64 20 77 69 74 68 20 6e 6f 20 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e 73 20 74 61 6b 65 6e 2e | d.with.no.further.actions.taken. |
| b7ac0 | 20 60 60 68 6f 6c 64 60 60 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 | .``hold``.installs.a.trap.policy |
| b7ae0 | 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 74 63 68 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 | ,.which.will.catch.matching.traf |
| b7b00 | 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 | fic.and.tries.to.re-negotiate.th |
| b7b20 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 64 65 6d 61 6e 64 2e 20 60 60 72 65 73 74 61 72 | e.connection.on.demand..``restar |
| b7b40 | 74 60 60 20 77 69 6c 6c 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 67 67 65 72 20 61 6e 20 | t``.will.immediately.trigger.an. |
| b7b60 | 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e | attempt.to.re-negotiate.the.conn |
| b7b80 | 65 63 74 69 6f 6e 2e 00 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 20 61 63 | ection..``dead-peer-detection.ac |
| b7ba0 | 74 69 6f 6e 20 3d 20 63 6c 65 61 72 20 7c 20 74 72 61 70 20 7c 20 72 65 73 74 61 72 74 60 60 20 | tion.=.clear.|.trap.|.restart``. |
| b7bc0 | 2d 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 | -.R_U_THERE.notification.message |
| b7be0 | 73 28 49 4b 45 76 31 29 20 6f 72 20 65 6d 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 | s(IKEv1).or.empty.INFORMATIONAL. |
| b7c00 | 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 32 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c | messages.(IKEv2).are.periodicall |
| b7c20 | 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 | y.sent.in.order.to.check.the.liv |
| b7c40 | 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 20 49 50 73 65 63 20 70 65 65 72 2e 20 54 68 65 20 76 | eliness.of.the.IPsec.peer..The.v |
| b7c60 | 61 6c 75 65 73 20 63 6c 65 61 72 2c 20 74 72 61 70 2c 20 61 6e 64 20 72 65 73 74 61 72 74 20 61 | alues.clear,.trap,.and.restart.a |
| b7c80 | 6c 6c 20 61 63 74 69 76 61 74 65 20 44 50 44 20 61 6e 64 20 64 65 74 65 72 6d 69 6e 65 20 74 68 | ll.activate.DPD.and.determine.th |
| b7ca0 | 65 20 61 63 74 69 6f 6e 20 74 6f 20 70 65 72 66 6f 72 6d 20 6f 6e 20 61 20 74 69 6d 65 6f 75 74 | e.action.to.perform.on.a.timeout |
| b7cc0 | 2e 20 57 69 74 68 20 60 60 63 6c 65 61 72 60 60 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | ..With.``clear``.the.connection. |
| b7ce0 | 69 73 20 63 6c 6f 73 65 64 20 77 69 74 68 20 6e 6f 20 66 75 72 74 68 65 72 20 61 63 74 69 6f 6e | is.closed.with.no.further.action |
| b7d00 | 73 20 74 61 6b 65 6e 2e 20 60 60 74 72 61 70 60 60 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 | s.taken..``trap``.installs.a.tra |
| b7d20 | 70 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 74 63 68 20 6d 61 74 63 68 | p.policy,.which.will.catch.match |
| b7d40 | 69 6e 67 20 74 72 61 66 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f | ing.traffic.and.tries.to.re-nego |
| b7d60 | 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 64 65 6d 61 6e 64 2e 20 | tiate.the.connection.on.demand.. |
| b7d80 | 60 60 72 65 73 74 61 72 74 60 60 20 77 69 6c 6c 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 | ``restart``.will.immediately.tri |
| b7da0 | 67 67 65 72 20 61 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 | gger.an.attempt.to.re-negotiate. |
| b7dc0 | 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 | the.connection..``dead-peer-dete |
| b7de0 | 63 74 69 6f 6e 60 60 20 63 6f 6e 74 72 6f 6c 73 20 74 68 65 20 75 73 65 20 6f 66 20 74 68 65 20 | ction``.controls.the.use.of.the. |
| b7e00 | 44 65 61 64 20 50 65 65 72 20 44 65 74 65 63 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 28 44 50 | Dead.Peer.Detection.protocol.(DP |
| b7e20 | 44 2c 20 52 46 43 20 33 37 30 36 29 20 77 68 65 72 65 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 | D,.RFC.3706).where.R_U_THERE.not |
| b7e40 | 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 31 29 20 6f 72 20 65 6d | ification.messages.(IKEv1).or.em |
| b7e60 | 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 | pty.INFORMATIONAL.messages.(IKEv |
| b7e80 | 32 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 | 2).are.periodically.sent.in.orde |
| b7ea0 | 72 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 | r.to.check.the.liveliness.of.the |
| b7ec0 | 20 49 50 73 65 63 20 70 65 65 72 3a 00 60 60 64 65 66 61 75 6c 74 2d 65 73 70 2d 67 72 6f 75 70 | .IPsec.peer:.``default-esp-group |
| b7ee0 | 60 60 20 2d 20 45 53 50 20 67 72 6f 75 70 20 74 6f 20 75 73 65 20 62 79 20 64 65 66 61 75 6c 74 | ``.-.ESP.group.to.use.by.default |
| b7f00 | 20 66 6f 72 20 74 72 61 66 66 69 63 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 4d 69 67 68 74 20 62 | .for.traffic.encryption..Might.b |
| b7f20 | 65 20 6f 76 65 72 77 72 69 74 74 65 6e 20 62 79 20 69 6e 64 69 76 69 64 75 61 6c 20 73 65 74 74 | e.overwritten.by.individual.sett |
| b7f40 | 69 6e 67 73 20 66 6f 72 20 74 75 6e 6e 65 6c 20 6f 72 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 | ings.for.tunnel.or.VTI.interface |
| b7f60 | 20 62 69 6e 64 69 6e 67 3b 00 60 60 64 65 73 63 72 69 70 74 69 6f 6e 60 60 20 2d 20 64 65 73 63 | .binding;.``description``.-.desc |
| b7f80 | 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 70 65 65 72 3b 00 60 60 64 68 2d 67 72 6f 75 | ription.for.this.peer;.``dh-grou |
| b7fa0 | 70 60 60 20 64 68 2d 67 72 6f 75 70 3b 00 60 60 64 68 63 70 2d 69 6e 74 65 72 66 61 63 65 60 60 | p``.dh-group;.``dhcp-interface`` |
| b7fc0 | 20 2d 20 49 44 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 67 65 6e 65 72 61 74 | .-.ID.for.authentication.generat |
| b7fe0 | 65 64 20 66 72 6f 6d 20 44 48 43 50 20 61 64 64 72 65 73 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 | ed.from.DHCP.address.dynamically |
| b8000 | 3b 00 60 60 64 68 63 70 2d 69 6e 74 65 72 66 61 63 65 60 60 20 2d 20 75 73 65 20 61 6e 20 49 50 | ;.``dhcp-interface``.-.use.an.IP |
| b8020 | 20 61 64 64 72 65 73 73 2c 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 44 48 43 50 20 66 6f 72 | .address,.received.from.DHCP.for |
| b8040 | 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 73 20 70 65 65 72 | .IPSec.connection.with.this.peer |
| b8060 | 2c 20 69 6e 73 74 65 61 64 20 6f 66 20 60 60 6c 6f 63 61 6c 2d 61 64 64 72 65 73 73 60 60 3b 00 | ,.instead.of.``local-address``;. |
| b8080 | 60 60 64 69 73 61 62 6c 65 2d 6d 6f 62 69 6b 65 60 60 20 64 69 73 61 62 6c 65 73 20 4d 4f 42 49 | ``disable-mobike``.disables.MOBI |
| b80a0 | 4b 45 20 53 75 70 70 6f 72 74 2e 20 4d 4f 42 49 4b 45 20 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c | KE.Support..MOBIKE.is.only.avail |
| b80c0 | 61 62 6c 65 20 66 6f 72 20 49 4b 45 76 32 20 61 6e 64 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 | able.for.IKEv2.and.enabled.by.de |
| b80e0 | 66 61 75 6c 74 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 65 6b 65 79 60 60 20 44 6f 20 6e 6f 74 20 | fault..``disable-rekey``.Do.not. |
| b8100 | 6c 6f 63 61 6c 6c 79 20 69 6e 69 74 69 61 74 65 20 61 20 72 65 2d 6b 65 79 20 6f 66 20 74 68 65 | locally.initiate.a.re-key.of.the |
| b8120 | 20 53 41 2c 20 72 65 6d 6f 74 65 20 70 65 65 72 20 6d 75 73 74 20 72 65 2d 6b 65 79 20 62 65 66 | .SA,.remote.peer.must.re-key.bef |
| b8140 | 6f 72 65 20 65 78 70 69 72 61 74 69 6f 6e 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d | ore.expiration..``disable-route- |
| b8160 | 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 2d 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 77 68 65 6e | autoinstall``.-.This.option.when |
| b8180 | 20 63 6f 6e 66 69 67 75 72 65 64 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 72 6f 75 74 65 73 20 | .configured.disables.the.routes. |
| b81a0 | 69 6e 73 74 61 6c 6c 65 64 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 74 61 62 6c 65 20 32 | installed.in.the.default.table.2 |
| b81c0 | 32 30 20 66 6f 72 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 69 70 73 65 63 2e 20 49 74 20 69 73 | 20.for.site-to-site.ipsec..It.is |
| b81e0 | 20 6d 6f 73 74 6c 79 20 75 73 65 64 20 77 69 74 68 20 56 54 49 20 63 6f 6e 66 69 67 75 72 61 74 | .mostly.used.with.VTI.configurat |
| b8200 | 69 6f 6e 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e 73 74 61 6c 6c | ion..``disable-route-autoinstall |
| b8220 | 60 60 20 44 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 20 | ``.Do.not.automatically.install. |
| b8240 | 72 6f 75 74 65 73 20 74 6f 20 72 65 6d 6f 74 65 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 | routes.to.remote.``disable-route |
| b8260 | 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 44 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 | -autoinstall``.Do.not.automatica |
| b8280 | 6c 6c 79 20 69 6e 73 74 61 6c 6c 20 72 6f 75 74 65 73 20 74 6f 20 72 65 6d 6f 74 65 20 6e 65 74 | lly.install.routes.to.remote.net |
| b82a0 | 77 6f 72 6b 73 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 2d 20 64 69 73 61 62 6c 65 20 74 68 69 | works;.``disable``.-.disable.thi |
| b82c0 | 73 20 74 75 6e 6e 65 6c 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 44 69 73 61 62 6c 65 20 50 46 | s.tunnel;.``disable``.Disable.PF |
| b82e0 | 53 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 64 69 73 61 62 6c 65 20 49 50 43 6f 6d 70 20 63 6f | S;.``disable``.disable.IPComp.co |
| b8300 | 6d 70 72 65 73 73 69 6f 6e 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 64 69 73 61 62 6c 65 60 60 | mpression.(default);.``disable`` |
| b8320 | 20 64 69 73 61 62 6c 65 20 4d 4f 42 49 4b 45 3b 00 60 60 64 72 6f 70 60 60 3a 20 64 72 6f 70 20 | .disable.MOBIKE;.``drop``:.drop. |
| b8340 | 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 | the.packet..``ecdsa-sha2-nistp25 |
| b8360 | 36 60 60 00 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 00 60 60 65 63 | 6``.``ecdsa-sha2-nistp384``.``ec |
| b8380 | 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 60 60 00 60 60 65 64 70 60 60 20 2d 20 4c 69 | dsa-sha2-nistp521``.``edp``.-.Li |
| b83a0 | 73 74 65 6e 20 66 6f 72 20 45 44 50 20 66 6f 72 20 45 78 74 72 65 6d 65 20 72 6f 75 74 65 72 73 | sten.for.EDP.for.Extreme.routers |
| b83c0 | 2f 73 77 69 74 63 68 65 73 00 60 60 65 6e 61 62 6c 65 60 60 20 49 6e 68 65 72 69 74 20 44 69 66 | /switches.``enable``.Inherit.Dif |
| b83e0 | 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 72 6f 6d 20 49 4b 45 20 67 72 6f 75 70 | fie-Hellman.group.from.IKE.group |
| b8400 | 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 65 6e 61 62 6c 65 60 60 20 65 6e 61 62 6c 65 20 49 50 | .(default);.``enable``.enable.IP |
| b8420 | 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 6f 6e 3b 00 60 60 65 6e 61 62 6c 65 60 60 20 65 6e 61 | Comp.compression;.``enable``.ena |
| b8440 | 62 6c 65 20 4d 4f 42 49 4b 45 20 28 64 65 66 61 75 6c 74 20 66 6f 72 20 49 4b 45 76 32 29 3b 00 | ble.MOBIKE.(default.for.IKEv2);. |
| b8460 | 60 60 65 6e 63 72 79 70 74 69 6f 6e 60 60 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 | ``encryption``.encryption.algori |
| b8480 | 74 68 6d 20 28 64 65 66 61 75 6c 74 20 31 32 38 20 62 69 74 20 41 45 53 2d 43 42 43 29 3b 00 60 | thm.(default.128.bit.AES-CBC);.` |
| b84a0 | 60 65 6e 63 72 79 70 74 69 6f 6e 60 60 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 | `encryption``.encryption.algorit |
| b84c0 | 68 6d 3b 00 60 60 65 6e 64 60 60 20 4d 61 74 63 68 65 73 20 74 68 65 20 65 6e 64 20 6f 66 20 74 | hm;.``end``.Matches.the.end.of.t |
| b84e0 | 68 65 20 55 52 4c 20 70 61 74 68 2e 00 60 60 65 73 70 2d 67 72 6f 75 70 60 60 20 2d 20 64 65 66 | he.URL.path..``esp-group``.-.def |
| b8500 | 69 6e 65 20 45 53 50 20 67 72 6f 75 70 20 66 6f 72 20 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 | ine.ESP.group.for.encrypt.traffi |
| b8520 | 63 2c 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 69 73 20 74 75 6e 6e 65 6c 3b 00 60 60 65 73 70 | c,.defined.by.this.tunnel;.``esp |
| b8540 | 2d 67 72 6f 75 70 60 60 20 2d 20 64 65 66 69 6e 65 20 45 53 50 20 67 72 6f 75 70 20 66 6f 72 20 | -group``.-.define.ESP.group.for. |
| b8560 | 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2c 20 70 61 73 73 65 64 20 74 68 69 73 20 56 54 49 | encrypt.traffic,.passed.this.VTI |
| b8580 | 20 69 6e 74 65 72 66 61 63 65 2e 00 60 60 65 78 61 63 74 60 60 20 52 65 71 75 69 72 65 73 20 61 | .interface..``exact``.Requires.a |
| b85a0 | 6e 20 65 78 61 63 74 6c 79 20 6d 61 74 63 68 20 6f 66 20 74 68 65 20 55 52 4c 20 70 61 74 68 00 | n.exactly.match.of.the.URL.path. |
| b85c0 | 60 60 66 64 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 46 44 50 20 66 6f 72 20 46 6f 75 | ``fdp``.-.Listen.for.FDP.for.Fou |
| b85e0 | 6e 64 72 79 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 66 69 6c 65 60 60 20 2d | ndry.routers/switches.``file``.- |
| b8600 | 20 70 61 74 68 20 74 6f 20 74 68 65 20 6b 65 79 20 66 69 6c 65 3b 00 60 60 66 69 6c 65 6e 61 6d | .path.to.the.key.file;.``filenam |
| b8620 | 65 60 60 20 20 4c 6f 67 20 66 69 6c 65 20 28 64 65 66 61 75 6c 74 3a 20 65 76 65 2e 6a 73 6f 6e | e``..Log.file.(default:.eve.json |
| b8640 | 29 2e 00 60 60 66 69 6c 65 74 79 70 65 60 60 20 20 45 56 45 20 6c 6f 67 67 69 6e 67 20 64 65 73 | )..``filetype``..EVE.logging.des |
| b8660 | 74 69 6e 61 74 69 6f 6e 20 28 64 65 66 61 75 6c 74 3a 20 72 65 67 75 6c 61 72 29 2e 00 60 60 66 | tination.(default:.regular)..``f |
| b8680 | 6c 65 78 76 70 6e 60 60 20 41 6c 6c 6f 77 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 | lexvpn``.Allow.FlexVPN.vendor.ID |
| b86a0 | 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 | .payload.(IKEv2.only)..Send.the. |
| b86c0 | 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 | Cisco.FlexVPN.vendor.ID.payload. |
| b86e0 | 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 20 69 73 20 72 65 71 75 69 72 65 64 20 | (IKEv2.only),.which.is.required. |
| b8700 | 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 64 65 76 | in.order.to.make.Cisco.brand.dev |
| b8720 | 69 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 | ices.allow.negotiating.a.local.t |
| b8740 | 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e | raffic.selector.(from.strongSwan |
| b8760 | 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 20 74 68 | 's.point.of.view).that.is.not.th |
| b8780 | 65 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 66 | e.assigned.virtual.IP.address.if |
| b87a0 | 20 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 | .such.an.address.is.requested.by |
| b87c0 | 20 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 6f 20 46 | .strongSwan..Sending.the.Cisco.F |
| b87e0 | 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 70 65 | lexVPN.vendor.ID.prevents.the.pe |
| b8800 | 65 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 27 | er.from.narrowing.the.initiator' |
| b8820 | 73 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c | s.local.traffic.selector.and.all |
| b8840 | 6f 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 20 6f 66 | ows.it.to.e.g..negotiate.a.TS.of |
| b8860 | 20 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e | .0.0.0.0/0.==.0.0.0.0/0.instead. |
| b8880 | 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 77 69 74 68 20 61 20 22 74 75 | .This.has.been.tested.with.a."tu |
| b88a0 | 6e 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 65 6d 70 | nnel.mode.ipsec.ipv4".Cisco.temp |
| b88c0 | 6c 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 | late.but.should.also.work.for.GR |
| b88e0 | 45 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 60 60 66 6c 65 78 76 70 6e 60 60 20 41 6c 6c | E.encapsulation;.``flexvpn``.All |
| b8900 | 6f 77 73 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 | ows.FlexVPN.vendor.ID.payload.(I |
| b8920 | 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 43 69 73 63 6f 00 60 60 66 6c 65 | KEv2.only)..Send.the.Cisco.``fle |
| b8940 | 78 76 70 6e 60 60 20 41 6c 6c 6f 77 73 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 | xvpn``.Allows.FlexVPN.vendor.ID. |
| b8960 | 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 68 65 20 43 | payload.(IKEv2.only)..Send.the.C |
| b8980 | 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 | isco.FlexVPN.vendor.ID.payload.( |
| b89a0 | 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 20 69 73 20 72 65 71 75 69 72 65 64 20 69 | IKEv2.only),.which.is.required.i |
| b89c0 | 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 73 63 6f 20 62 72 61 6e 64 20 64 65 76 69 | n.order.to.make.Cisco.brand.devi |
| b89e0 | 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 72 | ces.allow.negotiating.a.local.tr |
| b8a00 | 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e 27 | affic.selector.(from.strongSwan' |
| b8a20 | 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 68 61 74 20 69 73 20 6e 6f 74 20 74 68 65 | s.point.of.view).that.is.not.the |
| b8a40 | 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 66 20 | .assigned.virtual.IP.address.if. |
| b8a60 | 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 | such.an.address.is.requested.by. |
| b8a80 | 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e 67 20 74 68 65 20 43 69 73 63 6f 20 46 6c | strongSwan..Sending.the.Cisco.Fl |
| b8aa0 | 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 70 65 65 | exVPN.vendor.ID.prevents.the.pee |
| b8ac0 | 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 27 73 | r.from.narrowing.the.initiator's |
| b8ae0 | 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c 6f | .local.traffic.selector.and.allo |
| b8b00 | 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 69 61 74 65 20 61 20 54 53 20 6f 66 20 | ws.it.to.e.g..negotiate.a.TS.of. |
| b8b20 | 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e 20 | 0.0.0.0/0.==.0.0.0.0/0.instead.. |
| b8b40 | 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 77 69 74 68 20 61 20 22 74 75 6e | This.has.been.tested.with.a."tun |
| b8b60 | 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 34 22 20 43 69 73 63 6f 20 74 65 6d 70 6c | nel.mode.ipsec.ipv4".Cisco.templ |
| b8b80 | 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 45 | ate.but.should.also.work.for.GRE |
| b8ba0 | 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 60 60 66 6f 72 63 65 2d 75 64 70 2d 65 6e 63 61 | .encapsulation;.``force-udp-enca |
| b8bc0 | 70 73 75 6c 61 74 69 6f 6e 60 60 20 2d 20 66 6f 72 63 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f | psulation``.-.force.encapsulatio |
| b8be0 | 6e 20 6f 66 20 45 53 50 20 69 6e 74 6f 20 55 44 50 20 64 61 74 61 67 72 61 6d 73 2e 20 55 73 65 | n.of.ESP.into.UDP.datagrams..Use |
| b8c00 | 66 75 6c 20 69 6e 20 63 61 73 65 20 69 66 20 62 65 74 77 65 65 6e 20 6c 6f 63 61 6c 20 61 6e 64 | ful.in.case.if.between.local.and |
| b8c20 | 20 72 65 6d 6f 74 65 20 73 69 64 65 20 69 73 20 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 2c | .remote.side.is.firewall.or.NAT, |
| b8c40 | 20 77 68 69 63 68 20 6e 6f 74 20 61 6c 6c 6f 77 73 20 70 61 73 73 69 6e 67 20 70 6c 61 69 6e 20 | .which.not.allows.passing.plain. |
| b8c60 | 45 53 50 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 74 68 65 6d 3b 00 60 60 67 60 60 20 | ESP.packets.between.them;.``g``. |
| b8c80 | 2d 20 38 30 32 2e 31 31 67 20 2d 20 35 34 20 4d 62 69 74 73 2f 73 65 63 20 28 64 65 66 61 75 6c | -.802.11g.-.54.Mbits/sec.(defaul |
| b8ca0 | 74 29 00 60 60 67 72 61 63 65 66 75 6c 2d 73 68 75 74 64 6f 77 6e 60 60 20 2d 20 20 20 20 20 20 | t).``graceful-shutdown``.-...... |
| b8cc0 | 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c | ......Well-known.communities.val |
| b8ce0 | 75 65 20 47 52 41 43 45 46 55 4c 5f 53 48 55 54 44 4f 57 4e 20 30 78 46 46 46 46 30 30 30 30 00 | ue.GRACEFUL_SHUTDOWN.0xFFFF0000. |
| b8d00 | 60 60 67 72 6f 75 70 60 60 20 20 41 64 64 72 65 73 73 20 67 72 6f 75 70 2e 00 60 60 67 72 6f 75 | ``group``..Address.group..``grou |
| b8d20 | 70 60 60 20 20 50 6f 72 74 20 67 72 6f 75 70 2e 00 60 60 67 75 69 64 65 64 60 60 20 54 68 65 20 | p``..Port.group..``guided``.The. |
| b8d40 | 64 72 69 76 65 72 20 61 6c 6c 6f 77 73 20 74 6f 20 73 65 74 20 64 65 73 69 72 65 64 20 70 65 72 | driver.allows.to.set.desired.per |
| b8d60 | 66 6f 72 6d 61 6e 63 65 20 6c 65 76 65 6c 73 20 61 6e 64 20 74 68 65 20 66 69 72 6d 77 61 72 65 | formance.levels.and.the.firmware |
| b8d80 | 20 73 65 6c 65 63 74 73 20 61 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6c 65 76 65 6c 20 69 6e 20 | .selects.a.performance.level.in. |
| b8da0 | 74 68 69 73 20 72 61 6e 67 65 20 61 6e 64 20 66 69 74 74 69 6e 67 20 74 6f 20 74 68 65 20 63 75 | this.range.and.fitting.to.the.cu |
| b8dc0 | 72 72 65 6e 74 20 77 6f 72 6b 6c 6f 61 64 2e 00 60 60 68 60 60 20 2d 20 45 78 65 63 75 74 69 6f | rrent.workload..``h``.-.Executio |
| b8de0 | 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 68 6f 75 72 73 00 60 60 68 61 73 68 60 60 20 68 61 73 | n.interval.in.hours.``hash``.has |
| b8e00 | 68 20 61 6c 67 6f 72 69 74 68 6d 20 28 64 65 66 61 75 6c 74 20 73 68 61 31 29 2e 00 60 60 68 61 | h.algorithm.(default.sha1)..``ha |
| b8e20 | 73 68 60 60 20 68 61 73 68 20 61 6c 67 6f 72 69 74 68 6d 2e 00 60 60 68 6f 6c 64 60 60 20 73 65 | sh``.hash.algorithm..``hold``.se |
| b8e40 | 74 20 61 63 74 69 6f 6e 20 74 6f 20 68 6f 6c 64 20 28 64 65 66 61 75 6c 74 29 00 60 60 68 6f 6c | t.action.to.hold.(default).``hol |
| b8e60 | 64 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 68 6f 6c 64 3b 00 60 60 68 74 32 30 60 60 | d``.set.action.to.hold;.``ht20`` |
| b8e80 | 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 68 74 34 30 2b 60 | .-.20.MHz.channel.width.``ht40+` |
| b8ea0 | 60 20 2d 20 42 6f 74 68 20 32 30 20 4d 48 7a 20 61 6e 64 20 34 30 20 4d 48 7a 20 77 69 74 68 20 | `.-.Both.20.MHz.and.40.MHz.with. |
| b8ec0 | 73 65 63 6f 6e 64 61 72 79 20 63 68 61 6e 6e 65 6c 20 61 62 6f 76 65 20 74 68 65 20 70 72 69 6d | secondary.channel.above.the.prim |
| b8ee0 | 61 72 79 20 63 68 61 6e 6e 65 6c 00 60 60 68 74 34 30 2d 60 60 20 2d 20 42 6f 74 68 20 32 30 20 | ary.channel.``ht40-``.-.Both.20. |
| b8f00 | 4d 48 7a 20 61 6e 64 20 34 30 20 4d 48 7a 20 77 69 74 68 20 73 65 63 6f 6e 64 61 72 79 20 63 68 | MHz.and.40.MHz.with.secondary.ch |
| b8f20 | 61 6e 6e 65 6c 20 62 65 6c 6f 77 20 74 68 65 20 70 72 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 00 | annel.below.the.primary.channel. |
| b8f40 | 60 60 68 76 63 30 60 60 20 2d 20 58 65 6e 20 63 6f 6e 73 6f 6c 65 00 60 60 69 64 60 60 20 2d 20 | ``hvc0``.-.Xen.console.``id``.-. |
| b8f60 | 73 74 61 74 69 63 20 49 44 27 73 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 | static.ID's.for.authentication.. |
| b8f80 | 49 6e 20 67 65 6e 65 72 61 6c 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 61 64 64 72 | In.general.local.and.remote.addr |
| b8fa0 | 65 73 73 20 60 60 3c 78 2e 78 2e 78 2e 78 3e 60 60 2c 20 60 60 3c 68 3a 68 3a 68 3a 68 3a 68 3a | ess.``<x.x.x.x>``,.``<h:h:h:h:h: |
| b8fc0 | 68 3a 68 3a 68 3e 60 60 20 6f 72 20 60 60 25 61 6e 79 60 60 3b 00 60 60 69 6b 65 2d 67 72 6f 75 | h:h:h>``.or.``%any``;.``ike-grou |
| b8fe0 | 70 60 60 20 2d 20 49 4b 45 20 67 72 6f 75 70 20 74 6f 20 75 73 65 20 66 6f 72 20 6b 65 79 20 65 | p``.-.IKE.group.to.use.for.key.e |
| b9000 | 78 63 68 61 6e 67 65 73 3b 00 60 60 69 6b 65 76 31 60 60 20 75 73 65 20 49 4b 45 76 31 20 66 6f | xchanges;.``ikev1``.use.IKEv1.fo |
| b9020 | 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 3b 00 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 | r.Key.Exchange;.``ikev2-reauth`` |
| b9040 | 20 2d 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 64 75 | .-.reauthenticate.remote.peer.du |
| b9060 | 72 69 6e 67 20 74 68 65 20 72 65 6b 65 79 69 6e 67 20 70 72 6f 63 65 73 73 2e 20 43 61 6e 20 62 | ring.the.rekeying.process..Can.b |
| b9080 | 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 69 74 68 20 49 4b 45 76 32 2e 20 43 72 65 61 74 65 20 61 | e.used.only.with.IKEv2..Create.a |
| b90a0 | 20 6e 65 77 20 49 4b 45 5f 53 41 20 66 72 6f 6d 20 74 68 65 20 73 63 72 61 74 63 68 20 61 6e 64 | .new.IKE_SA.from.the.scratch.and |
| b90c0 | 20 74 72 79 20 74 6f 20 72 65 63 72 65 61 74 65 20 61 6c 6c 20 49 50 73 65 63 20 53 41 73 3b 00 | .try.to.recreate.all.IPsec.SAs;. |
| b90e0 | 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 20 77 68 65 74 68 65 72 20 72 65 6b 65 79 69 6e | ``ikev2-reauth``.whether.rekeyin |
| b9100 | 67 20 6f 66 20 61 6e 20 49 4b 45 5f 53 41 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 72 65 61 75 74 | g.of.an.IKE_SA.should.also.reaut |
| b9120 | 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 70 65 65 72 2e 20 49 6e 20 49 4b 45 76 31 2c 20 72 65 | henticate.the.peer..In.IKEv1,.re |
| b9140 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 61 6c 77 61 79 73 20 64 6f 6e 65 2e 20 53 | authentication.is.always.done..S |
| b9160 | 65 74 74 69 6e 67 20 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 65 6e 61 62 6c 65 73 20 72 65 | etting.this.parameter.enables.re |
| b9180 | 6d 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 75 72 69 | mote.host.re-authentication.duri |
| b91a0 | 6e 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 79 2e 00 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 | ng.an.IKE.rekey..``ikev2-reauth` |
| b91c0 | 60 20 77 68 65 74 68 65 72 20 72 65 6b 65 79 69 6e 67 20 6f 66 20 61 6e 20 49 4b 45 5f 53 41 20 | `.whether.rekeying.of.an.IKE_SA. |
| b91e0 | 73 68 6f 75 6c 64 20 61 6c 73 6f 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 70 | should.also.reauthenticate.the.p |
| b9200 | 65 65 72 2e 20 49 6e 20 49 4b 45 76 31 2c 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | eer..In.IKEv1,.reauthentication. |
| b9220 | 69 73 20 61 6c 77 61 79 73 20 64 6f 6e 65 3a 00 60 60 69 6b 65 76 32 60 60 20 75 73 65 20 49 4b | is.always.done:.``ikev2``.use.IK |
| b9240 | 45 76 32 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 3b 00 60 60 69 6e 60 60 3a 20 52 75 | Ev2.for.Key.Exchange;.``in``:.Ru |
| b9260 | 6c 65 73 65 74 20 66 6f 72 20 66 6f 72 77 61 72 64 65 64 20 70 61 63 6b 65 74 73 20 6f 6e 20 61 | leset.for.forwarded.packets.on.a |
| b9280 | 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 00 60 60 69 6e 69 74 63 61 6c 6c 5f 62 | n.inbound.interface.``initcall_b |
| b92a0 | 6c 61 63 6b 6c 69 73 74 3d 61 63 70 69 5f 63 70 75 66 72 65 71 5f 69 6e 69 74 60 60 20 44 69 73 | lacklist=acpi_cpufreq_init``.Dis |
| b92c0 | 61 62 6c 65 20 64 65 66 61 75 6c 74 20 41 43 50 49 20 43 50 55 20 66 72 65 71 75 65 6e 63 79 20 | able.default.ACPI.CPU.frequency. |
| b92e0 | 73 63 61 6c 65 00 60 60 69 6e 69 74 69 61 74 65 60 60 20 2d 20 64 6f 65 73 20 69 6e 69 74 69 61 | scale.``initiate``.-.does.initia |
| b9300 | 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 72 65 6d 6f 74 65 20 70 65 65 72 20 69 6d 6d 65 | l.connection.to.remote.peer.imme |
| b9320 | 64 69 61 74 65 6c 79 20 61 66 74 65 72 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 61 66 | diately.after.configuring.and.af |
| b9340 | 74 65 72 20 62 6f 6f 74 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 20 74 68 65 20 63 6f 6e 6e 65 | ter.boot..In.this.mode.the.conne |
| b9360 | 63 74 69 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 72 65 73 74 61 72 74 65 64 20 69 6e 20 63 | ction.will.not.be.restarted.in.c |
| b9380 | 61 73 65 20 6f 66 20 64 69 73 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 74 68 65 72 65 66 6f 72 65 20 | ase.of.disconnection,.therefore. |
| b93a0 | 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 74 6f 67 65 74 68 65 72 20 77 69 74 | should.be.used.only.together.wit |
| b93c0 | 68 20 44 50 44 20 6f 72 20 61 6e 6f 74 68 65 72 20 73 65 73 73 69 6f 6e 20 74 72 61 63 6b 69 6e | h.DPD.or.another.session.trackin |
| b93e0 | 67 20 6d 65 74 68 6f 64 73 3b 00 60 60 69 6e 74 65 6c 5f 69 64 6c 65 2e 6d 61 78 5f 63 73 74 61 | g.methods;.``intel_idle.max_csta |
| b9400 | 74 65 3d 30 60 60 20 44 69 73 61 62 6c 65 20 69 6e 74 65 6c 5f 69 64 6c 65 20 61 6e 64 20 66 61 | te=0``.Disable.intel_idle.and.fa |
| b9420 | 6c 6c 20 62 61 63 6b 20 6f 6e 20 61 63 70 69 5f 69 64 6c 65 00 60 60 69 6e 74 65 72 66 61 63 65 | ll.back.on.acpi_idle.``interface |
| b9440 | 60 60 20 49 6e 74 65 72 66 61 63 65 20 4e 61 6d 65 20 74 6f 20 75 73 65 2e 20 54 68 65 20 6e 61 | ``.Interface.Name.to.use..The.na |
| b9460 | 6d 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 68 69 63 68 00 60 60 69 | me.of.the.interface.on.which.``i |
| b9480 | 6e 74 65 72 66 61 63 65 60 60 20 49 6e 74 65 72 66 61 63 65 20 4e 61 6d 65 20 74 6f 20 75 73 65 | nterface``.Interface.Name.to.use |
| b94a0 | 2e 20 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 | ..The.name.of.the.interface.on.w |
| b94c0 | 68 69 63 68 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 73 68 6f 75 6c 64 | hich.virtual.IP.addresses.should |
| b94e0 | 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 2e 20 49 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 | .be.installed..If.not.specified. |
| b9500 | 74 68 65 20 61 64 64 72 65 73 73 65 73 20 77 69 6c 6c 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 20 | the.addresses.will.be.installed. |
| b9520 | 6f 6e 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 3b 00 60 60 69 6e 74 | on.the.outbound.interface;.``int |
| b9540 | 65 72 66 61 63 65 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c | erface``.is.used.for.the.VyOS.CL |
| b9560 | 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 57 69 72 65 47 75 | I.command.to.identify.the.WireGu |
| b9580 | 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 69 73 20 70 72 69 76 61 74 65 | ard.interface.where.this.private |
| b95a0 | 20 6b 65 79 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 60 60 69 6e 74 65 72 6c 65 61 76 65 | .key.is.to.be.used..``interleave |
| b95c0 | 60 60 20 65 6e 61 62 6c 65 73 20 4e 54 50 20 69 6e 74 65 72 6c 65 61 76 65 64 20 6d 6f 64 65 20 | ``.enables.NTP.interleaved.mode. |
| b95e0 | 28 73 65 65 20 60 64 72 61 66 74 2d 6e 74 70 2d 69 6e 74 65 72 6c 65 61 76 65 64 2d 6d 6f 64 65 | (see.`draft-ntp-interleaved-mode |
| b9600 | 73 60 5f 29 2c 20 77 68 69 63 68 20 63 61 6e 20 69 6d 70 72 6f 76 65 20 73 79 6e 63 68 72 6f 6e | s`_),.which.can.improve.synchron |
| b9620 | 69 7a 61 74 69 6f 6e 20 61 63 63 75 72 61 63 79 20 61 6e 64 20 73 74 61 62 69 6c 69 74 79 20 77 | ization.accuracy.and.stability.w |
| b9640 | 68 65 6e 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 62 6f 74 68 20 70 61 72 74 69 65 73 2e 00 60 | hen.supported.by.both.parties..` |
| b9660 | 60 69 6e 74 65 72 6e 65 74 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 | `internet``.-................... |
| b9680 | 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 30 | ..Well-known.communities.value.0 |
| b96a0 | 00 60 60 69 6e 74 65 72 76 61 6c 60 60 20 6b 65 65 70 2d 61 6c 69 76 65 20 69 6e 74 65 72 76 61 | .``interval``.keep-alive.interva |
| b96c0 | 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 32 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 | l.in.seconds.<2-86400>.(default. |
| b96e0 | 33 30 29 3b 00 60 60 69 73 69 73 60 60 20 2d 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 | 30);.``isis``.-.Intermediate.Sys |
| b9700 | 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 28 49 53 2d 49 | tem.to.Intermediate.System.(IS-I |
| b9720 | 53 29 00 60 60 6a 75 6d 70 60 60 3a 20 6a 75 6d 70 20 74 6f 20 61 6e 6f 74 68 65 72 20 63 75 73 | S).``jump``:.jump.to.another.cus |
| b9740 | 74 6f 6d 20 63 68 61 69 6e 2e 00 60 60 6b 65 72 6e 65 6c 60 60 20 2d 20 4b 65 72 6e 65 6c 20 72 | tom.chain..``kernel``.-.Kernel.r |
| b9760 | 6f 75 74 65 73 00 60 60 6b 65 79 2d 65 78 63 68 61 6e 67 65 60 60 20 77 68 69 63 68 20 70 72 6f | outes.``key-exchange``.which.pro |
| b9780 | 74 6f 63 6f 6c 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 74 6f 20 69 6e 69 74 69 61 6c 69 | tocol.should.be.used.to.initiali |
| b97a0 | 7a 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 49 66 20 6e 6f 74 20 73 65 74 20 62 6f 74 | ze.the.connection.If.not.set.bot |
| b97c0 | 68 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 68 61 6e 64 6c 65 64 20 61 6e 64 20 63 6f 6e 6e | h.protocols.are.handled.and.conn |
| b97e0 | 65 63 74 69 6f 6e 73 20 77 69 6c 6c 20 75 73 65 20 49 4b 45 76 32 20 77 68 65 6e 20 69 6e 69 74 | ections.will.use.IKEv2.when.init |
| b9800 | 69 61 74 69 6e 67 2c 20 62 75 74 20 61 63 63 65 70 74 20 61 6e 79 20 70 72 6f 74 6f 63 6f 6c 20 | iating,.but.accept.any.protocol. |
| b9820 | 76 65 72 73 69 6f 6e 20 77 68 65 6e 20 72 65 73 70 6f 6e 64 69 6e 67 3a 00 60 60 6b 65 79 60 60 | version.when.responding:.``key`` |
| b9840 | 20 2d 20 61 20 70 72 69 76 61 74 65 20 6b 65 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 | .-.a.private.key,.which.will.be. |
| b9860 | 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f | used.for.authenticating.local.ro |
| b9880 | 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 3a 00 60 60 6b 65 79 60 60 20 75 73 65 | uter.on.remote.peer:.``key``.use |
| b98a0 | 20 41 50 49 20 6b 65 79 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 60 60 73 65 72 76 69 63 | .API.keys.configured.in.``servic |
| b98c0 | 65 20 68 74 74 70 73 20 61 70 69 20 6b 65 79 73 60 60 00 60 60 6c 61 74 65 6e 63 79 60 60 3a 20 | e.https.api.keys``.``latency``:. |
| b98e0 | 41 20 73 65 72 76 65 72 20 70 72 6f 66 69 6c 65 20 66 6f 63 75 73 65 64 20 6f 6e 20 6c 6f 77 65 | A.server.profile.focused.on.lowe |
| b9900 | 72 69 6e 67 20 6e 65 74 77 6f 72 6b 20 6c 61 74 65 6e 63 79 2e 20 54 68 69 73 20 70 72 6f 66 69 | ring.network.latency..This.profi |
| b9920 | 6c 65 20 66 61 76 6f 72 73 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6f 76 65 72 20 70 6f 77 65 72 | le.favors.performance.over.power |
| b9940 | 20 73 61 76 69 6e 67 73 20 62 79 20 73 65 74 74 69 6e 67 20 60 60 69 6e 74 65 6c 5f 70 73 74 61 | .savings.by.setting.``intel_psta |
| b9960 | 74 65 60 60 20 61 6e 64 20 60 60 6d 69 6e 5f 70 65 72 66 5f 70 63 74 3d 31 30 30 60 60 2e 00 60 | te``.and.``min_perf_pct=100``..` |
| b9980 | 60 6c 64 61 70 60 60 20 4c 44 41 50 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 6c | `ldap``.LDAP.protocol.check..``l |
| b99a0 | 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 | east-connection``.Distributes.re |
| b99c0 | 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 20 77 69 74 68 20 74 68 65 20 66 65 | quests.to.the.server.with.the.fe |
| b99e0 | 77 65 73 74 20 61 63 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 60 60 6c 65 61 73 74 2d | west.active.connections.``least- |
| b9a00 | 63 6f 6e 6e 65 63 74 69 6f 6e 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 | connection``.Distributes.request |
| b9a20 | 73 20 74 70 20 74 6a 65 20 73 65 72 76 65 72 20 77 6f 74 6a 20 74 68 65 20 66 65 77 65 73 74 20 | s.tp.tje.server.wotj.the.fewest. |
| b9a40 | 61 63 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 60 60 6c 69 66 65 2d 62 79 74 65 73 60 | active.connections.``life-bytes` |
| b9a60 | 60 20 45 53 50 20 6c 69 66 65 20 69 6e 20 62 79 74 65 73 20 3c 31 30 32 34 2d 32 36 38 34 33 35 | `.ESP.life.in.bytes.<1024-268435 |
| b9a80 | 34 35 36 30 30 30 30 30 3e 2e 20 4e 75 6d 62 65 72 20 6f 66 20 62 79 74 65 73 20 74 72 61 6e 73 | 45600000>..Number.of.bytes.trans |
| b9aa0 | 6d 69 74 74 65 64 20 6f 76 65 72 20 61 6e 20 49 50 73 65 63 20 53 41 20 62 65 66 6f 72 65 20 69 | mitted.over.an.IPsec.SA.before.i |
| b9ac0 | 74 20 65 78 70 69 72 65 73 3b 00 60 60 6c 69 66 65 2d 70 61 63 6b 65 74 73 60 60 20 45 53 50 20 | t.expires;.``life-packets``.ESP. |
| b9ae0 | 6c 69 66 65 20 69 6e 20 70 61 63 6b 65 74 73 20 3c 31 30 30 30 2d 32 36 38 34 33 35 34 35 36 30 | life.in.packets.<1000-2684354560 |
| b9b00 | 30 30 30 30 3e 2e 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 72 61 6e 73 6d 69 | 0000>..Number.of.packets.transmi |
| b9b20 | 74 74 65 64 20 6f 76 65 72 20 61 6e 20 49 50 73 65 63 20 53 41 20 62 65 66 6f 72 65 20 69 74 20 | tted.over.an.IPsec.SA.before.it. |
| b9b40 | 65 78 70 69 72 65 73 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 60 20 45 53 50 20 6c 69 66 65 74 69 | expires;.``lifetime``.ESP.lifeti |
| b9b60 | 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 33 30 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c | me.in.seconds.<30-86400>.(defaul |
| b9b80 | 74 20 33 36 30 30 29 2e 20 48 6f 77 20 6c 6f 6e 67 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 69 | t.3600)..How.long.a.particular.i |
| b9ba0 | 6e 73 74 61 6e 63 65 20 6f 66 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 61 20 73 65 74 20 6f | nstance.of.a.connection.(a.set.o |
| b9bc0 | 66 20 65 6e 63 72 79 70 74 69 6f 6e 2f 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 73 | f.encryption/authentication.keys |
| b9be0 | 20 66 6f 72 20 75 73 65 72 20 70 61 63 6b 65 74 73 29 20 73 68 6f 75 6c 64 20 6c 61 73 74 2c 20 | .for.user.packets).should.last,. |
| b9c00 | 66 72 6f 6d 20 73 75 63 63 65 73 73 66 75 6c 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 74 6f 20 65 | from.successful.negotiation.to.e |
| b9c20 | 78 70 69 72 79 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 60 20 49 4b 45 20 6c 69 66 65 74 69 6d 65 | xpiry;.``lifetime``.IKE.lifetime |
| b9c40 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 30 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 32 | .in.seconds.<0-86400>.(default.2 |
| b9c60 | 38 38 30 30 29 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 60 20 49 4b 45 20 6c 69 66 65 74 69 6d 65 | 8800);.``lifetime``.IKE.lifetime |
| b9c80 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 33 30 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 | .in.seconds.<30-86400>.(default. |
| b9ca0 | 32 38 38 30 30 29 3b 00 60 60 6c 6c 67 72 2d 73 74 61 6c 65 60 60 20 2d 20 20 20 20 20 20 20 20 | 28800);.``llgr-stale``.-........ |
| b9cc0 | 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 | ...........Well-known.communitie |
| b9ce0 | 73 20 76 61 6c 75 65 20 4c 4c 47 52 5f 53 54 41 4c 45 20 30 78 46 46 46 46 30 30 30 36 00 60 60 | s.value.LLGR_STALE.0xFFFF0006.`` |
| b9d00 | 6c 6f 63 61 6c 2d 61 64 64 72 65 73 73 60 60 20 2d 20 6c 6f 63 61 6c 20 49 50 20 61 64 64 72 65 | local-address``.-.local.IP.addre |
| b9d20 | 73 73 20 66 6f 72 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 74 68 69 | ss.for.IPSec.connection.with.thi |
| b9d40 | 73 20 70 65 65 72 2e 20 49 66 20 64 65 66 69 6e 65 64 20 60 60 61 6e 79 60 60 2c 20 74 68 65 6e | s.peer..If.defined.``any``,.then |
| b9d60 | 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 77 68 69 63 68 20 63 6f 6e 66 69 67 75 72 65 64 20 | .an.IP.address.which.configured. |
| b9d80 | 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 | on.interface.with.default.route. |
| b9da0 | 77 69 6c 6c 20 62 65 20 75 73 65 64 3b 00 60 60 6c 6f 63 61 6c 2d 61 73 60 60 20 2d 20 20 20 20 | will.be.used;.``local-as``.-.... |
| b9dc0 | 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d | .................Well-known.comm |
| b9de0 | 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 45 58 50 4f 52 54 5f 53 55 42 43 4f 4e 46 45 | unities.value.NO_EXPORT_SUBCONFE |
| b9e00 | 44 20 30 78 46 46 46 46 46 46 30 33 00 60 60 6c 6f 63 61 6c 2d 69 64 60 60 20 2d 20 49 44 20 66 | D.0xFFFFFF03.``local-id``.-.ID.f |
| b9e20 | 6f 72 20 74 68 65 20 6c 6f 63 61 6c 20 56 79 4f 53 20 72 6f 75 74 65 72 2e 20 49 66 20 64 65 66 | or.the.local.VyOS.router..If.def |
| b9e40 | 69 6e 65 64 2c 20 64 75 72 69 6e 67 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | ined,.during.the.authentication. |
| b9e60 | 69 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 64 20 74 6f 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 | it.will.be.send.to.remote.peer;. |
| b9e80 | 60 60 6c 6f 63 61 6c 2d 6b 65 79 60 60 20 2d 20 6e 61 6d 65 20 6f 66 20 50 4b 49 20 6b 65 79 2d | ``local-key``.-.name.of.PKI.key- |
| b9ea0 | 70 61 69 72 20 77 69 74 68 20 6c 6f 63 61 6c 20 70 72 69 76 61 74 65 20 6b 65 79 00 60 60 6c 6f | pair.with.local.private.key.``lo |
| b9ec0 | 63 61 6c 60 60 20 2d 20 64 65 66 69 6e 65 20 61 20 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 66 6f | cal``.-.define.a.local.source.fo |
| b9ee0 | 72 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 | r.match.traffic,.which.should.be |
| b9f00 | 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 | .encrypted.and.send.to.this.peer |
| b9f20 | 3a 00 60 60 6c 6f 63 61 6c 60 60 3a 20 52 75 6c 65 73 65 74 20 66 6f 72 20 70 61 63 6b 65 74 73 | :.``local``:.Ruleset.for.packets |
| b9f40 | 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 69 73 20 72 6f 75 74 65 72 00 60 60 6d 60 60 20 | .destined.for.this.router.``m``. |
| b9f60 | 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 00 | -.Execution.interval.in.minutes. |
| b9f80 | 60 60 6d 61 69 6e 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 62 79 20 56 | ``main``.Routing.table.used.by.V |
| b9fa0 | 79 4f 53 20 61 6e 64 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6e 6f 74 20 70 61 72 | yOS.and.other.interfaces.not.par |
| b9fc0 | 74 69 63 69 70 61 74 69 6e 67 20 69 6e 20 50 42 52 00 60 60 6d 61 69 6e 60 60 20 75 73 65 20 4d | ticipating.in.PBR.``main``.use.M |
| b9fe0 | 61 69 6e 20 6d 6f 64 65 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 73 20 69 6e 20 74 68 | ain.mode.for.Key.Exchanges.in.th |
| ba000 | 65 20 49 4b 45 76 31 20 50 72 6f 74 6f 63 6f 6c 20 28 52 65 63 6f 6d 6d 65 6e 64 65 64 20 44 65 | e.IKEv1.Protocol.(Recommended.De |
| ba020 | 66 61 75 6c 74 29 3b 00 60 60 6d 65 73 73 61 67 65 60 60 3a 20 46 75 6c 6c 20 6d 65 73 73 61 67 | fault);.``message``:.Full.messag |
| ba040 | 65 20 74 68 61 74 20 68 61 73 20 74 72 69 67 67 65 72 65 64 20 74 68 65 20 73 63 72 69 70 74 2e | e.that.has.triggered.the.script. |
| ba060 | 00 60 60 6d 69 74 69 67 61 74 69 6f 6e 73 3d 6f 66 66 60 60 00 60 60 6d 6f 62 69 6b 65 60 60 20 | .``mitigations=off``.``mobike``. |
| ba080 | 65 6e 61 62 6c 65 20 4d 4f 42 49 4b 45 20 53 75 70 70 6f 72 74 2e 20 4d 4f 42 49 4b 45 20 69 73 | enable.MOBIKE.Support..MOBIKE.is |
| ba0a0 | 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 49 4b 45 76 32 3a 00 60 60 6d 6f 64 | .only.available.for.IKEv2:.``mod |
| ba0c0 | 65 60 60 20 2d 20 6d 6f 64 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 | e``.-.mode.for.authentication.be |
| ba0e0 | 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 72 65 6d 6f 74 65 20 70 65 65 72 3a 00 60 60 6d 6f | tween.VyOS.and.remote.peer:.``mo |
| ba100 | 64 65 60 60 20 49 4b 45 76 31 20 50 68 61 73 65 20 31 20 4d 6f 64 65 20 53 65 6c 65 63 74 69 6f | de``.IKEv1.Phase.1.Mode.Selectio |
| ba120 | 6e 3a 00 60 60 6d 6f 64 65 60 60 20 74 68 65 20 74 79 70 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e | n:.``mode``.the.type.of.the.conn |
| ba140 | 65 63 74 69 6f 6e 3a 00 60 60 6d 6f 6e 69 74 6f 72 60 60 20 2d 20 50 61 73 73 69 76 65 6c 79 20 | ection:.``monitor``.-.Passively. |
| ba160 | 6d 6f 6e 69 74 6f 72 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 65 20 66 72 65 71 75 | monitor.all.packets.on.the.frequ |
| ba180 | 65 6e 63 79 2f 63 68 61 6e 6e 65 6c 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f | ency/channel.``multi-user-beamfo |
| ba1a0 | 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 | rmee``.-.Support.for.operation.a |
| ba1c0 | 73 20 6d 75 6c 74 69 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 65 00 60 60 6d 75 6c 74 69 2d | s.multi.user.beamformee.``multi- |
| ba1e0 | 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 | user-beamformee``.-.Support.for. |
| ba200 | 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 | operation.as.single.user.beamfor |
| ba220 | 6d 65 72 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 60 60 20 2d 20 | mer.``multi-user-beamformer``.-. |
| ba240 | 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 6d 75 6c 74 69 20 75 | Support.for.operation.as.multi.u |
| ba260 | 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d | ser.beamformer.``multi-user-beam |
| ba280 | 66 6f 72 6d 65 72 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e | former``.-.Support.for.operation |
| ba2a0 | 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 6d 79 73 | .as.single.user.beamformer.``mys |
| ba2c0 | 71 6c 60 60 20 4d 79 53 51 4c 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 6e 60 60 | ql``.MySQL.protocol.check..``n`` |
| ba2e0 | 20 2d 20 38 30 32 2e 31 31 6e 20 2d 20 36 30 30 20 4d 62 69 74 73 2f 73 65 63 00 60 60 6e 61 6d | .-.802.11n.-.600.Mbits/sec.``nam |
| ba300 | 65 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d | e``.is.used.for.the.VyOS.CLI.com |
| ba320 | 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 69 73 20 6b 65 79 2e 20 54 68 69 73 20 | mand.to.identify.this.key..This. |
| ba340 | 6b 65 79 20 60 60 6e 61 6d 65 60 60 20 69 73 20 74 68 65 6e 20 75 73 65 64 20 69 6e 20 74 68 65 | key.``name``.is.then.used.in.the |
| ba360 | 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 72 65 66 65 72 65 6e 63 65 20 | .CLI.configuration.to.reference. |
| ba380 | 74 68 65 20 6b 65 79 20 69 6e 73 74 61 6e 63 65 2e 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e | the.key.instance..``net.ipv4.con |
| ba3a0 | 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 72 65 64 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 | f.all.accept_redirects``.``net.i |
| ba3c0 | 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 73 6f 75 72 63 65 5f 72 6f 75 74 65 | pv4.conf.all.accept_source_route |
| ba3e0 | 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 6c 6f 67 5f 6d 61 72 74 69 | ``.``net.ipv4.conf.all.log_marti |
| ba400 | 61 6e 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 72 70 5f 66 69 6c | ans``.``net.ipv4.conf.all.rp_fil |
| ba420 | 74 65 72 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 73 65 6e 64 5f 72 | ter``.``net.ipv4.conf.all.send_r |
| ba440 | 65 64 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 69 63 6d 70 5f 65 63 68 6f 5f | edirects``.``net.ipv4.icmp_echo_ |
| ba460 | 69 67 6e 6f 72 65 5f 62 72 6f 61 64 63 61 73 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 74 | ignore_broadcasts``.``net.ipv4.t |
| ba480 | 63 70 5f 72 66 63 31 33 33 37 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 74 63 70 5f 73 79 6e 63 | cp_rfc1337``.``net.ipv4.tcp_sync |
| ba4a0 | 6f 6f 6b 69 65 73 60 60 00 60 60 6e 65 74 2e 69 70 76 36 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 | ookies``.``net.ipv6.conf.all.acc |
| ba4c0 | 65 70 74 5f 72 65 64 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 36 2e 63 6f 6e 66 2e | ept_redirects``.``net.ipv6.conf. |
| ba4e0 | 61 6c 6c 2e 61 63 63 65 70 74 5f 73 6f 75 72 63 65 5f 72 6f 75 74 65 60 60 00 60 60 6e 6f 2d 61 | all.accept_source_route``.``no-a |
| ba500 | 64 76 65 72 74 69 73 65 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c | dvertise``.-.................Wel |
| ba520 | 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 41 44 56 | l-known.communities.value.NO_ADV |
| ba540 | 45 52 54 49 53 45 20 30 78 46 46 46 46 46 46 30 32 00 60 60 6e 6f 2d 65 78 70 6f 72 74 60 60 20 | ERTISE.0xFFFFFF02.``no-export``. |
| ba560 | 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 | -....................Well-known. |
| ba580 | 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 45 58 50 4f 52 54 20 30 78 46 46 | communities.value.NO_EXPORT.0xFF |
| ba5a0 | 46 46 46 46 30 31 00 60 60 6e 6f 2d 6c 6c 67 72 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 | FFFF01.``no-llgr``.-............ |
| ba5c0 | 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 | ..........Well-known.communities |
| ba5e0 | 20 76 61 6c 75 65 20 4e 4f 5f 4c 4c 47 52 20 30 78 46 46 46 46 30 30 30 37 00 60 60 6e 6f 2d 70 | .value.NO_LLGR.0xFFFF0007.``no-p |
| ba600 | 65 65 72 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c | eer``.-......................Wel |
| ba620 | 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 50 45 45 52 | l-known.communities.value.NOPEER |
| ba640 | 20 30 78 46 46 46 46 46 46 30 34 00 60 60 6e 6f 60 60 20 64 69 73 61 62 6c 65 20 72 65 6d 6f 74 | .0xFFFFFF04.``no``.disable.remot |
| ba660 | 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 6e 74 69 63 61 74 6f 6e 20 64 75 72 69 6e 67 20 61 | e.host.re-authenticaton.during.a |
| ba680 | 6e 20 49 4b 45 20 72 65 6b 65 79 3b 00 60 60 6e 6f 6e 65 60 60 20 2d 20 45 78 65 63 75 74 69 6f | n.IKE.rekey;.``none``.-.Executio |
| ba6a0 | 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 74 65 73 00 60 60 6e 6f 6e 65 60 60 20 2d | n.interval.in.minutes.``none``.- |
| ba6c0 | 20 6c 6f 61 64 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 6c 79 2c 20 77 68 69 63 | .loads.the.connection.only,.whic |
| ba6e0 | 68 20 74 68 65 6e 20 63 61 6e 20 62 65 20 6d 61 6e 75 61 6c 6c 79 20 69 6e 69 74 69 61 74 65 64 | h.then.can.be.manually.initiated |
| ba700 | 20 6f 72 20 75 73 65 64 20 61 73 20 61 20 72 65 73 70 6f 6e 64 65 72 20 63 6f 6e 66 69 67 75 72 | .or.used.as.a.responder.configur |
| ba720 | 61 74 69 6f 6e 2e 00 60 60 6e 6f 6e 65 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 6e 6f | ation..``none``.set.action.to.no |
| ba740 | 6e 65 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 6e 6f 73 65 6c 65 63 74 60 60 20 6d 61 72 6b 73 | ne.(default);.``noselect``.marks |
| ba760 | 20 74 68 65 20 73 65 72 76 65 72 20 61 73 20 75 6e 75 73 65 64 2c 20 65 78 63 65 70 74 20 66 6f | .the.server.as.unused,.except.fo |
| ba780 | 72 20 64 69 73 70 6c 61 79 20 70 75 72 70 6f 73 65 73 2e 20 54 68 65 20 73 65 72 76 65 72 20 69 | r.display.purposes..The.server.i |
| ba7a0 | 73 20 64 69 73 63 61 72 64 65 64 20 62 79 20 74 68 65 20 73 65 6c 65 63 74 69 6f 6e 20 61 6c 67 | s.discarded.by.the.selection.alg |
| ba7c0 | 6f 72 69 74 68 6d 2e 00 60 60 6e 6f 74 72 61 63 6b 60 60 3a 20 69 67 6e 6f 72 65 20 63 6f 6e 6e | orithm..``notrack``:.ignore.conn |
| ba7e0 | 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 69 73 20 61 63 74 | ection.tracking.system..This.act |
| ba800 | 69 6f 6e 20 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 20 70 72 65 72 6f 75 74 | ion.is.only.available.in.prerout |
| ba820 | 69 6e 67 20 63 68 61 69 6e 2e 00 60 60 6e 74 73 60 60 20 65 6e 61 62 6c 65 73 20 4e 65 74 77 6f | ing.chain..``nts``.enables.Netwo |
| ba840 | 72 6b 20 54 69 6d 65 20 53 65 63 75 72 69 74 79 20 28 4e 54 53 29 20 66 6f 72 20 74 68 65 20 73 | rk.Time.Security.(NTS).for.the.s |
| ba860 | 65 72 76 65 72 20 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 39 31 35 | erver.as.specified.in.:rfc:`8915 |
| ba880 | 60 00 60 60 6f 70 74 69 6f 6e 73 60 60 00 60 60 6f 73 70 66 60 60 20 2d 20 4f 70 65 6e 20 53 68 | `.``options``.``ospf``.-.Open.Sh |
| ba8a0 | 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 20 28 4f 53 50 46 76 32 29 00 60 60 6f 73 70 | ortest.Path.First.(OSPFv2).``osp |
| ba8c0 | 66 76 33 60 60 20 2d 20 4f 70 65 6e 20 53 68 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 | fv3``.-.Open.Shortest.Path.First |
| ba8e0 | 20 28 49 50 76 36 29 20 28 4f 53 50 46 76 33 29 00 60 60 6f 75 74 60 60 3a 20 52 75 6c 65 73 65 | .(IPv6).(OSPFv3).``out``:.Rulese |
| ba900 | 74 20 66 6f 72 20 66 6f 72 77 61 72 64 65 64 20 70 61 63 6b 65 74 73 20 6f 6e 20 61 6e 20 6f 75 | t.for.forwarded.packets.on.an.ou |
| ba920 | 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 00 60 60 70 61 73 73 69 76 65 60 60 20 54 68 65 | tbound.interface.``passive``.The |
| ba940 | 20 64 72 69 76 65 72 20 61 6c 6c 6f 77 73 20 74 68 65 20 73 79 73 74 65 6d 20 67 6f 76 65 72 6e | .driver.allows.the.system.govern |
| ba960 | 6f 72 20 74 6f 20 6d 61 6e 61 67 65 20 43 50 55 20 66 72 65 71 75 65 6e 63 79 20 77 68 69 6c 65 | or.to.manage.CPU.frequency.while |
| ba980 | 20 70 72 6f 76 69 64 69 6e 67 20 61 76 61 69 6c 61 62 6c 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 | .providing.available.performance |
| ba9a0 | 20 73 74 61 74 65 73 2e 00 60 60 70 61 73 73 70 68 72 61 73 65 60 60 20 2d 20 6c 6f 63 61 6c 20 | .states..``passphrase``.-.local. |
| ba9c0 | 70 72 69 76 61 74 65 20 6b 65 79 20 70 61 73 73 70 68 72 61 73 65 00 60 60 70 61 73 73 70 68 72 | private.key.passphrase.``passphr |
| ba9e0 | 61 73 65 60 60 20 2d 20 70 72 69 76 61 74 65 20 6b 65 79 20 70 61 73 73 70 68 72 61 73 65 2c 20 | ase``.-.private.key.passphrase,. |
| baa00 | 69 66 20 6e 65 65 64 65 64 2e 00 60 60 70 61 73 73 77 6f 72 64 60 60 20 2d 20 70 61 73 73 70 68 | if.needed..``password``.-.passph |
| baa20 | 72 61 73 65 20 70 72 69 76 61 74 65 20 6b 65 79 2c 20 69 66 20 6e 65 65 64 65 64 2e 00 60 60 70 | rase.private.key,.if.needed..``p |
| baa40 | 65 65 72 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 | eer``.is.used.for.the.VyOS.CLI.c |
| baa60 | 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 57 69 72 65 47 75 61 72 64 | ommand.to.identify.the.WireGuard |
| baa80 | 20 70 65 65 72 20 77 68 65 72 65 20 74 68 69 73 20 73 65 63 72 65 64 20 69 73 20 74 6f 20 62 65 | .peer.where.this.secred.is.to.be |
| baaa0 | 20 75 73 65 64 2e 00 60 60 70 65 65 72 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 | .used..``peer``.is.used.for.the. |
| baac0 | 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 | VyOS.CLI.command.to.identify.the |
| baae0 | 20 57 69 72 65 47 75 61 72 64 20 70 65 65 72 20 77 68 65 72 65 20 74 68 69 73 20 73 65 63 72 65 | .WireGuard.peer.where.this.secre |
| bab00 | 74 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 60 60 70 65 72 69 6f 64 60 60 3a 20 54 69 6d | t.is.to.be.used..``period``:.Tim |
| bab20 | 65 20 77 69 6e 64 6f 77 20 66 6f 72 20 72 61 74 65 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 50 | e.window.for.rate.calculation..P |
| bab40 | 6f 73 73 69 62 6c 65 20 76 61 6c 75 65 73 3a 20 60 60 73 65 63 6f 6e 64 60 60 20 28 6f 6e 65 20 | ossible.values:.``second``.(one. |
| bab60 | 73 65 63 6f 6e 64 29 2c 20 60 60 6d 69 6e 75 74 65 60 60 20 28 6f 6e 65 20 6d 69 6e 75 74 65 29 | second),.``minute``.(one.minute) |
| bab80 | 2c 20 60 60 68 6f 75 72 60 60 20 28 6f 6e 65 20 68 6f 75 72 29 2e 20 44 65 66 61 75 6c 74 20 69 | ,.``hour``.(one.hour)..Default.i |
| baba0 | 73 20 60 60 73 65 63 6f 6e 64 60 60 2e 00 60 60 70 66 73 60 60 20 77 68 65 74 68 65 72 20 50 65 | s.``second``..``pfs``.whether.Pe |
| babc0 | 72 66 65 63 74 20 46 6f 72 77 61 72 64 20 53 65 63 72 65 63 79 20 6f 66 20 6b 65 79 73 20 69 73 | rfect.Forward.Secrecy.of.keys.is |
| babe0 | 20 64 65 73 69 72 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 27 73 20 6b 65 79 | .desired.on.the.connection's.key |
| bac00 | 69 6e 67 20 63 68 61 6e 6e 65 6c 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 20 44 69 66 66 69 65 | ing.channel.and.defines.a.Diffie |
| bac20 | 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 6f 72 20 50 46 53 3a 00 60 60 70 67 73 71 6c 60 | -Hellman.group.for.PFS:.``pgsql` |
| bac40 | 60 20 50 6f 73 74 67 72 65 53 51 4c 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 70 | `.PostgreSQL.protocol.check..``p |
| bac60 | 6f 6f 6c 60 60 20 6d 6f 62 69 6c 69 7a 65 73 20 70 65 72 73 69 73 74 65 6e 74 20 63 6c 69 65 6e | ool``.mobilizes.persistent.clien |
| bac80 | 74 20 6d 6f 64 65 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 77 69 74 68 20 61 20 6e 75 6d 62 65 72 | t.mode.association.with.a.number |
| baca0 | 20 6f 66 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 73 2e 00 60 60 70 6f 72 74 60 60 20 20 50 6f | .of.remote.servers..``port``..Po |
| bacc0 | 72 74 20 6e 75 6d 62 65 72 2e 00 60 60 70 6f 72 74 60 60 20 2d 20 64 65 66 69 6e 65 20 70 6f 72 | rt.number..``port``.-.define.por |
| bace0 | 74 2e 20 48 61 76 65 20 65 66 66 65 63 74 20 6f 6e 6c 79 20 77 68 65 6e 20 75 73 65 64 20 74 6f | t..Have.effect.only.when.used.to |
| bad00 | 67 65 74 68 65 72 20 77 69 74 68 20 60 60 70 72 65 66 69 78 60 60 3b 00 60 60 70 72 65 2d 73 68 | gether.with.``prefix``;.``pre-sh |
| bad20 | 61 72 65 64 2d 73 65 63 72 65 74 60 60 20 2d 20 75 73 65 20 70 72 65 64 65 66 69 6e 65 64 20 73 | ared-secret``.-.use.predefined.s |
| bad40 | 68 61 72 65 64 20 73 65 63 72 65 74 20 70 68 72 61 73 65 3b 00 60 60 70 72 65 66 65 72 60 60 20 | hared.secret.phrase;.``prefer``. |
| bad60 | 6d 61 72 6b 73 20 74 68 65 20 73 65 72 76 65 72 20 61 73 20 70 72 65 66 65 72 72 65 64 2e 20 41 | marks.the.server.as.preferred..A |
| bad80 | 6c 6c 20 6f 74 68 65 72 20 74 68 69 6e 67 73 20 62 65 69 6e 67 20 65 71 75 61 6c 2c 20 74 68 69 | ll.other.things.being.equal,.thi |
| bada0 | 73 20 68 6f 73 74 20 77 69 6c 6c 20 62 65 20 63 68 6f 73 65 6e 20 66 6f 72 20 73 79 6e 63 68 72 | s.host.will.be.chosen.for.synchr |
| badc0 | 6f 6e 69 7a 61 74 69 6f 6e 20 61 6d 6f 6e 67 20 61 20 73 65 74 20 6f 66 20 63 6f 72 72 65 63 74 | onization.among.a.set.of.correct |
| bade0 | 6c 79 20 6f 70 65 72 61 74 69 6e 67 20 68 6f 73 74 73 2e 00 60 60 70 72 65 66 69 78 60 60 20 2d | ly.operating.hosts..``prefix``.- |
| bae00 | 20 49 50 20 6e 65 74 77 6f 72 6b 20 61 74 20 6c 6f 63 61 6c 20 73 69 64 65 2e 00 60 60 70 72 65 | .IP.network.at.local.side..``pre |
| bae20 | 66 69 78 60 60 20 2d 20 49 50 20 6e 65 74 77 6f 72 6b 20 61 74 20 72 65 6d 6f 74 65 20 73 69 64 | fix``.-.IP.network.at.remote.sid |
| bae40 | 65 2e 00 60 60 70 72 66 60 60 20 70 73 65 75 64 6f 2d 72 61 6e 64 6f 6d 20 66 75 6e 63 74 69 6f | e..``prf``.pseudo-random.functio |
| bae60 | 6e 2e 00 60 60 70 72 69 6f 72 69 74 79 60 60 20 2d 20 41 64 64 20 70 72 69 6f 72 69 74 79 20 66 | n..``priority``.-.Add.priority.f |
| bae80 | 6f 72 20 70 6f 6c 69 63 79 2d 62 61 73 65 64 20 49 50 53 65 63 20 56 50 4e 20 74 75 6e 6e 65 6c | or.policy-based.IPSec.VPN.tunnel |
| baea0 | 73 28 6c 6f 77 65 73 74 20 76 61 6c 75 65 20 6d 6f 72 65 20 70 72 65 66 65 72 61 62 6c 65 29 00 | s(lowest.value.more.preferable). |
| baec0 | 60 60 70 72 6f 63 65 73 73 6f 72 2e 6d 61 78 5f 63 73 74 61 74 65 3d 31 60 60 20 4c 69 6d 69 74 | ``processor.max_cstate=1``.Limit |
| baee0 | 20 70 72 6f 63 65 73 73 6f 72 20 74 6f 20 6d 61 78 69 6d 75 6d 20 43 2d 73 74 61 74 65 20 31 00 | .processor.to.maximum.C-state.1. |
| baf00 | 60 60 70 72 6f 70 6f 73 61 6c 60 60 20 45 53 50 2d 67 72 6f 75 70 20 70 72 6f 70 6f 73 61 6c 20 | ``proposal``.ESP-group.proposal. |
| baf20 | 77 69 74 68 20 6e 75 6d 62 65 72 20 3c 31 2d 36 35 35 33 35 3e 3a 00 60 60 70 72 6f 70 6f 73 61 | with.number.<1-65535>:.``proposa |
| baf40 | 6c 60 60 20 74 68 65 20 6c 69 73 74 20 6f 66 20 70 72 6f 70 6f 73 61 6c 73 20 61 6e 64 20 74 68 | l``.the.list.of.proposals.and.th |
| baf60 | 65 69 72 20 70 61 72 61 6d 65 74 65 72 73 3a 00 60 60 70 72 6f 74 6f 63 6f 6c 60 60 20 2d 20 64 | eir.parameters:.``protocol``.-.d |
| baf80 | 65 66 69 6e 65 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 6d 61 74 63 68 20 74 72 61 | efine.the.protocol.for.match.tra |
| bafa0 | 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 | ffic,.which.should.be.encrypted. |
| bafc0 | 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3b 00 60 60 70 73 6b 60 60 20 2d | and.send.to.this.peer;.``psk``.- |
| bafe0 | 20 50 72 65 73 68 61 72 65 64 20 73 65 63 72 65 74 20 6b 65 79 20 6e 61 6d 65 3a 00 60 60 70 74 | .Preshared.secret.key.name:.``pt |
| bb000 | 70 60 60 20 65 6e 61 62 6c 65 73 20 74 68 65 20 50 54 50 20 74 72 61 6e 73 70 6f 72 74 20 66 6f | p``.enables.the.PTP.transport.fo |
| bb020 | 72 20 74 68 69 73 20 73 65 72 76 65 72 20 28 73 65 65 20 3a 72 65 66 3a 60 70 74 70 2d 74 72 61 | r.this.server.(see.:ref:`ptp-tra |
| bb040 | 6e 73 70 6f 72 74 60 29 2e 00 60 60 71 75 65 75 65 60 60 3a 20 45 6e 71 75 65 75 65 20 70 61 63 | nsport`)..``queue``:.Enqueue.pac |
| bb060 | 6b 65 74 20 74 6f 20 75 73 65 72 73 70 61 63 65 2e 00 60 60 72 61 74 65 60 60 3a 20 4e 75 6d 62 | ket.to.userspace..``rate``:.Numb |
| bb080 | 65 72 20 6f 66 20 70 61 63 6b 65 74 73 2e 20 44 65 66 61 75 6c 74 20 35 2e 00 60 60 72 65 63 65 | er.of.packets..Default.5..``rece |
| bb0a0 | 69 76 65 2d 66 69 6c 74 65 72 20 5b 61 6c 6c 7c 6e 74 70 7c 70 74 70 7c 6e 6f 6e 65 5d 60 60 20 | ive-filter.[all|ntp|ptp|none]``. |
| bb0c0 | 73 65 6c 65 63 74 73 20 74 68 65 20 72 65 63 65 69 76 65 20 66 69 6c 74 65 72 20 6d 6f 64 65 2c | selects.the.receive.filter.mode, |
| bb0e0 | 20 77 68 69 63 68 20 63 6f 6e 74 72 6f 6c 73 20 77 68 69 63 68 20 69 6e 62 6f 75 6e 64 20 70 61 | .which.controls.which.inbound.pa |
| bb100 | 63 6b 65 74 73 20 74 68 65 20 4e 49 43 20 61 70 70 6c 69 65 73 20 74 69 6d 65 73 74 61 6d 70 73 | ckets.the.NIC.applies.timestamps |
| bb120 | 20 74 6f 2e 20 54 68 65 20 73 65 6c 65 63 74 65 64 20 6d 6f 64 65 20 6d 75 73 74 20 62 65 20 73 | .to..The.selected.mode.must.be.s |
| bb140 | 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 4e 49 43 2c 20 6f 72 20 74 69 6d 65 73 74 61 6d | upported.by.the.NIC,.or.timestam |
| bb160 | 70 69 6e 67 20 77 69 6c 6c 20 62 65 20 64 69 73 61 62 6c 65 64 20 66 6f 72 20 74 68 65 20 69 6e | ping.will.be.disabled.for.the.in |
| bb180 | 74 65 72 66 61 63 65 2e 00 60 60 72 65 64 69 73 60 60 20 52 65 64 69 73 20 70 72 6f 74 6f 63 6f | terface..``redis``.Redis.protoco |
| bb1a0 | 6c 20 63 68 65 63 6b 2e 00 60 60 72 65 6a 65 63 74 60 60 3a 20 72 65 6a 65 63 74 20 74 68 65 20 | l.check..``reject``:.reject.the. |
| bb1c0 | 70 61 63 6b 65 74 2e 00 60 60 72 65 6d 6f 74 65 2d 61 64 64 72 65 73 73 60 60 20 2d 20 72 65 6d | packet..``remote-address``.-.rem |
| bb1e0 | 6f 74 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 68 6f 73 74 6e 61 6d 65 20 66 6f 72 20 49 | ote.IP.address.or.hostname.for.I |
| bb200 | 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 | PSec.connection..IPv4.or.IPv6.ad |
| bb220 | 64 72 65 73 73 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 61 20 70 65 65 72 20 68 61 73 20 61 20 | dress.is.used.when.a.peer.has.a. |
| bb240 | 70 75 62 6c 69 63 20 73 74 61 74 69 63 20 49 50 20 61 64 64 72 65 73 73 2e 20 48 6f 73 74 6e 61 | public.static.IP.address..Hostna |
| bb260 | 6d 65 20 69 73 20 61 20 44 4e 53 20 6e 61 6d 65 20 77 68 69 63 68 20 63 6f 75 6c 64 20 62 65 20 | me.is.a.DNS.name.which.could.be. |
| bb280 | 75 73 65 64 20 77 68 65 6e 20 61 20 70 65 65 72 20 68 61 73 20 61 20 70 75 62 6c 69 63 20 49 50 | used.when.a.peer.has.a.public.IP |
| bb2a0 | 20 61 64 64 72 65 73 73 20 61 6e 64 20 44 4e 53 20 6e 61 6d 65 2c 20 62 75 74 20 61 6e 20 49 50 | .address.and.DNS.name,.but.an.IP |
| bb2c0 | 20 61 64 64 72 65 73 73 20 63 6f 75 6c 64 20 62 65 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 74 | .address.could.be.changed.from.t |
| bb2e0 | 69 6d 65 20 74 6f 20 74 69 6d 65 2e 00 60 60 72 65 6d 6f 74 65 2d 69 64 60 60 20 2d 20 64 65 66 | ime.to.time..``remote-id``.-.def |
| bb300 | 69 6e 65 20 61 6e 20 49 44 20 66 6f 72 20 72 65 6d 6f 74 65 20 70 65 65 72 2c 20 69 6e 73 74 65 | ine.an.ID.for.remote.peer,.inste |
| bb320 | 61 64 20 6f 66 20 75 73 69 6e 67 20 70 65 65 72 20 6e 61 6d 65 20 6f 72 20 61 64 64 72 65 73 73 | ad.of.using.peer.name.or.address |
| bb340 | 2e 20 55 73 65 66 75 6c 20 69 6e 20 63 61 73 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 | ..Useful.in.case.if.the.remote.p |
| bb360 | 65 65 72 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 20 6f 72 20 69 66 20 60 60 6d 6f 64 65 20 78 | eer.is.behind.NAT.or.if.``mode.x |
| bb380 | 35 30 39 60 60 20 69 73 20 75 73 65 64 3b 00 60 60 72 65 6d 6f 74 65 2d 6b 65 79 60 60 20 2d 20 | 509``.is.used;.``remote-key``.-. |
| bb3a0 | 6e 61 6d 65 20 6f 66 20 50 4b 49 20 6b 65 79 2d 70 61 69 72 20 77 69 74 68 20 72 65 6d 6f 74 65 | name.of.PKI.key-pair.with.remote |
| bb3c0 | 20 70 75 62 6c 69 63 20 6b 65 79 00 60 60 72 65 6d 6f 74 65 60 60 20 2d 20 64 65 66 69 6e 65 20 | .public.key.``remote``.-.define. |
| bb3e0 | 74 68 65 20 72 65 6d 6f 74 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 6d 61 74 63 68 | the.remote.destination.for.match |
| bb400 | 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 63 72 79 70 | .traffic,.which.should.be.encryp |
| bb420 | 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 3a 00 60 60 72 65 70 | ted.and.send.to.this.peer:.``rep |
| bb440 | 6c 61 79 2d 77 69 6e 64 6f 77 60 60 20 2d 20 49 50 73 65 63 20 72 65 70 6c 61 79 20 77 69 6e 64 | lay-window``.-.IPsec.replay.wind |
| bb460 | 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 6f 72 20 74 68 69 73 20 43 48 49 4c 44 5f 53 | ow.to.configure.for.this.CHILD_S |
| bb480 | 41 20 28 64 65 66 61 75 6c 74 3a 20 33 32 29 2c 20 61 20 76 61 6c 75 65 20 6f 66 20 30 20 64 69 | A.(default:.32),.a.value.of.0.di |
| bb4a0 | 73 61 62 6c 65 73 20 49 50 73 65 63 20 72 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 00 60 | sables.IPsec.replay.protection.` |
| bb4c0 | 60 72 65 71 2d 73 73 6c 2d 73 6e 69 60 60 20 53 53 4c 20 53 65 72 76 65 72 20 4e 61 6d 65 20 49 | `req-ssl-sni``.SSL.Server.Name.I |
| bb4e0 | 6e 64 69 63 61 74 69 6f 6e 20 28 53 4e 49 29 20 72 65 71 75 65 73 74 20 6d 61 74 63 68 00 60 60 | ndication.(SNI).request.match.`` |
| bb500 | 72 65 73 70 2d 74 69 6d 65 60 60 3a 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 72 65 73 70 6f 6e 73 | resp-time``:.the.maximum.respons |
| bb520 | 65 20 74 69 6d 65 20 66 6f 72 20 70 69 6e 67 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 52 61 6e 67 | e.time.for.ping.in.seconds..Rang |
| bb540 | 65 20 31 2e 2e 2e 33 30 2c 20 64 65 66 61 75 6c 74 20 35 00 60 60 72 65 73 70 6f 6e 64 60 60 20 | e.1...30,.default.5.``respond``. |
| bb560 | 2d 20 64 6f 65 73 20 6e 6f 74 20 74 72 79 20 74 6f 20 69 6e 69 74 69 61 74 65 20 61 20 63 6f 6e | -.does.not.try.to.initiate.a.con |
| bb580 | 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 49 6e 20 74 68 69 | nection.to.a.remote.peer..In.thi |
| bb5a0 | 73 20 6d 6f 64 65 2c 20 74 68 65 20 49 50 53 65 63 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 | s.mode,.the.IPSec.session.will.b |
| bb5c0 | 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 6f 6e 6c 79 20 61 66 74 65 72 20 69 6e 69 74 69 61 74 | e.established.only.after.initiat |
| bb5e0 | 69 6f 6e 20 66 72 6f 6d 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 43 6f 75 6c 64 20 62 65 | ion.from.a.remote.peer..Could.be |
| bb600 | 20 75 73 65 66 75 6c 20 77 68 65 6e 20 74 68 65 72 65 20 69 73 20 6e 6f 20 64 69 72 65 63 74 20 | .useful.when.there.is.no.direct. |
| bb620 | 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 74 6f 20 74 68 65 20 70 65 65 72 20 64 75 65 20 74 6f 20 | connectivity.to.the.peer.due.to. |
| bb640 | 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 20 69 6e 20 74 68 65 20 6d 69 64 64 6c 65 20 6f 66 | firewall.or.NAT.in.the.middle.of |
| bb660 | 20 74 68 65 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 00 60 60 72 65 | .the.local.and.remote.side..``re |
| bb680 | 73 74 61 72 74 60 60 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 74 72 69 65 73 20 74 6f 20 72 65 2d | start``.immediately.tries.to.re- |
| bb6a0 | 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 43 48 49 4c 44 5f 53 41 20 75 6e 64 65 72 20 61 20 66 | negotiate.the.CHILD_SA.under.a.f |
| bb6c0 | 72 65 73 68 20 49 4b 45 5f 53 41 3b 00 60 60 72 65 73 74 61 72 74 60 60 20 73 65 74 20 61 63 74 | resh.IKE_SA;.``restart``.set.act |
| bb6e0 | 69 6f 6e 20 74 6f 20 72 65 73 74 61 72 74 3b 00 60 60 72 65 74 75 72 6e 60 60 3a 20 52 65 74 75 | ion.to.restart;.``return``:.Retu |
| bb700 | 72 6e 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 68 61 69 6e 20 61 6e 64 20 63 6f | rn.from.the.current.chain.and.co |
| bb720 | 6e 74 69 6e 75 65 20 61 74 20 74 68 65 20 6e 65 78 74 20 72 75 6c 65 20 6f 66 20 74 68 65 20 6c | ntinue.at.the.next.rule.of.the.l |
| bb740 | 61 73 74 20 63 68 61 69 6e 2e 00 60 60 72 69 70 60 60 20 2d 20 52 6f 75 74 69 6e 67 20 49 6e 66 | ast.chain..``rip``.-.Routing.Inf |
| bb760 | 6f 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 52 49 50 29 00 60 60 72 69 70 6e 67 60 | ormation.Protocol.(RIP).``ripng` |
| bb780 | 60 20 2d 20 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c | `.-.Routing.Information.Protocol |
| bb7a0 | 20 6e 65 78 74 2d 67 65 6e 65 72 61 74 69 6f 6e 20 28 49 50 76 36 29 20 28 52 49 50 6e 67 29 00 | .next-generation.(IPv6).(RIPng). |
| bb7c0 | 60 60 72 6f 75 6e 64 2d 72 6f 62 69 6e 60 60 20 2d 20 52 6f 75 6e 64 2d 72 6f 62 69 6e 20 70 6f | ``round-robin``.-.Round-robin.po |
| bb7e0 | 6c 69 63 79 3a 20 54 72 61 6e 73 6d 69 74 20 70 61 63 6b 65 74 73 20 69 6e 20 73 65 71 75 65 6e | licy:.Transmit.packets.in.sequen |
| bb800 | 74 69 61 6c 20 6f 72 64 65 72 20 66 72 6f 6d 20 74 68 65 20 66 69 72 73 74 20 61 76 61 69 6c 61 | tial.order.from.the.first.availa |
| bb820 | 62 6c 65 20 73 6c 61 76 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 6c 61 73 74 2e 00 60 60 72 6f | ble.slave.through.the.last..``ro |
| bb840 | 75 6e 64 2d 72 6f 62 69 6e 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 | und-robin``.Distributes.requests |
| bb860 | 20 69 6e 20 61 20 63 69 72 63 75 6c 61 72 20 6d 61 6e 6e 65 72 2c 20 73 65 71 75 65 6e 74 69 61 | .in.a.circular.manner,.sequentia |
| bb880 | 6c 6c 79 20 73 65 6e 64 69 6e 67 20 65 61 63 68 20 72 65 71 75 65 73 74 20 74 6f 20 74 68 65 20 | lly.sending.each.request.to.the. |
| bb8a0 | 6e 65 78 74 20 73 65 72 76 65 72 20 69 6e 20 6c 69 6e 65 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 | next.server.in.line.``route-filt |
| bb8c0 | 65 72 2d 74 72 61 6e 73 6c 61 74 65 64 2d 76 34 60 60 20 2d 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 | er-translated-v4``.-...Well-know |
| bb8e0 | 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 | n.communities.value.ROUTE_FILTER |
| bb900 | 5f 54 52 41 4e 53 4c 41 54 45 44 5f 76 34 20 30 78 46 46 46 46 30 30 30 32 00 60 60 72 6f 75 74 | _TRANSLATED_v4.0xFFFF0002.``rout |
| bb920 | 65 2d 66 69 6c 74 65 72 2d 74 72 61 6e 73 6c 61 74 65 64 2d 76 36 60 60 20 2d 20 20 20 57 65 6c | e-filter-translated-v6``.-...Wel |
| bb940 | 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f | l-known.communities.value.ROUTE_ |
| bb960 | 46 49 4c 54 45 52 5f 54 52 41 4e 53 4c 41 54 45 44 5f 76 36 20 30 78 46 46 46 46 30 30 30 34 00 | FILTER_TRANSLATED_v6.0xFFFF0004. |
| bb980 | 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 72 2d 76 34 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 | ``route-filter-v4``.-........... |
| bb9a0 | 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 | ...Well-known.communities.value. |
| bb9c0 | 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f 76 34 20 30 78 46 46 46 46 30 30 30 33 00 60 60 72 6f 75 | ROUTE_FILTER_v4.0xFFFF0003.``rou |
| bb9e0 | 74 65 2d 66 69 6c 74 65 72 2d 76 36 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 | te-filter-v6``.-..............We |
| bba00 | 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 | ll-known.communities.value.ROUTE |
| bba20 | 5f 46 49 4c 54 45 52 5f 76 36 20 30 78 46 46 46 46 30 30 30 35 00 60 60 72 73 61 2d 6b 65 79 2d | _FILTER_v6.0xFFFF0005.``rsa-key- |
| bba40 | 6e 61 6d 65 60 60 20 2d 20 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 20 66 6f 72 20 61 75 74 68 | name``.-.shared.RSA.key.for.auth |
| bba60 | 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 64 65 66 69 | entication..The.key.must.be.defi |
| bba80 | 6e 65 64 20 69 6e 20 74 68 65 20 60 60 73 65 74 20 76 70 6e 20 72 73 61 2d 6b 65 79 73 60 60 20 | ned.in.the.``set.vpn.rsa-keys``. |
| bbaa0 | 73 65 63 74 69 6f 6e 3b 00 60 60 72 73 61 60 60 20 2d 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 52 | section;.``rsa``.-.options.for.R |
| bbac0 | 53 41 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 3a 00 60 60 72 73 61 60 60 20 | SA.authentication.mode:.``rsa``. |
| bbae0 | 2d 20 75 73 65 20 73 69 6d 70 6c 65 20 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 2e 00 60 60 72 | -.use.simple.shared.RSA.key..``r |
| bbb00 | 73 61 60 60 20 2d 20 75 73 65 20 73 69 6d 70 6c 65 20 73 68 61 72 65 64 20 52 53 41 20 6b 65 79 | sa``.-.use.simple.shared.RSA.key |
| bbb20 | 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 | ..The.key.must.be.defined.in.the |
| bbb40 | 20 60 60 73 65 74 20 76 70 6e 20 72 73 61 2d 6b 65 79 73 60 60 20 73 65 63 74 69 6f 6e 3b 00 60 | .``set.vpn.rsa-keys``.section;.` |
| bbb60 | 60 73 65 63 72 65 74 60 60 20 2d 20 70 72 65 64 65 66 69 6e 65 64 20 73 68 61 72 65 64 20 73 65 | `secret``.-.predefined.shared.se |
| bbb80 | 63 72 65 74 2e 20 55 73 65 64 20 69 66 20 63 6f 6e 66 69 67 75 72 65 64 20 6d 6f 64 65 20 60 60 | cret..Used.if.configured.mode.`` |
| bbba0 | 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 60 60 3b 00 60 60 73 65 74 20 66 69 72 65 77 | pre-shared-secret``;.``set.firew |
| bbbc0 | 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e | all.bridge.forward.filter....``. |
| bbbe0 | 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 69 6e 70 75 74 20 66 69 6c | .``set.firewall.bridge.input.fil |
| bbc00 | 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 | ter....``..``set.firewall.bridge |
| bbc20 | 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 | .output.filter....``..``set.fire |
| bbc40 | 77 61 6c 6c 20 62 72 69 64 67 65 20 70 72 65 72 6f 75 74 69 6e 67 20 66 69 6c 74 65 72 20 2e 2e | wall.bridge.prerouting.filter... |
| bbc60 | 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 | .``..``set.firewall.ipv4.forward |
| bbc80 | 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 | .filter....``..``set.firewall.ip |
| bbca0 | 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 | v4.input.filter....``..``set.fir |
| bbcc0 | 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 | ewall.ipv4.output.filter....``.. |
| bbce0 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 | ``set.firewall.ipv6.forward.filt |
| bbd00 | 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e | er....``..``set.firewall.ipv6.in |
| bbd20 | 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c | put.filter....``..``set.firewall |
| bbd40 | 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 69 6e | .ipv6.output.filter....``..``sin |
| bbd60 | 67 6c 65 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 | gle-user-beamformee``.-.Support. |
| bbd80 | 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 | for.operation.as.single.user.bea |
| bbda0 | 6d 66 6f 72 6d 65 65 00 60 60 73 69 6e 67 6c 65 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 | mformee.``single-user-beamformer |
| bbdc0 | 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 | ``.-.Support.for.operation.as.si |
| bbde0 | 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 73 6d 74 70 60 60 20 53 4d | ngle.user.beamformer.``smtp``.SM |
| bbe00 | 54 50 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 73 6f 6e 6d 70 60 60 20 2d 20 4c | TP.protocol.check..``sonmp``.-.L |
| bbe20 | 69 73 74 65 6e 20 66 6f 72 20 53 4f 4e 4d 50 20 66 6f 72 20 4e 6f 72 74 65 6c 20 72 6f 75 74 65 | isten.for.SONMP.for.Nortel.route |
| bbe40 | 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 60 20 44 | rs/switches.``source-address``.D |
| bbe60 | 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 | istributes.requests.based.on.the |
| bbe80 | 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 | .source.IP.address.of.the.client |
| bbea0 | 00 60 60 73 73 68 2d 64 73 73 60 60 00 60 60 73 73 68 2d 65 64 32 35 35 31 39 60 60 00 60 60 73 | .``ssh-dss``.``ssh-ed25519``.``s |
| bbec0 | 73 68 2d 72 73 61 20 41 41 41 41 42 33 4e 7a 61 43 31 79 63 32 45 41 41 41 41 42 41 41 2e 2e 2e | sh-rsa.AAAAB3NzaC1yc2EAAAABAA... |
| bbee0 | 56 42 44 35 6c 4b 77 45 57 42 20 75 73 65 72 6e 61 6d 65 40 68 6f 73 74 2e 65 78 61 6d 70 6c 65 | VBD5lKwEWB.username@host.example |
| bbf00 | 2e 63 6f 6d 60 60 00 60 60 73 73 68 2d 72 73 61 60 60 00 60 60 73 73 6c 2d 66 63 2d 73 6e 69 2d | .com``.``ssh-rsa``.``ssl-fc-sni- |
| bbf20 | 65 6e 64 60 60 20 53 53 4c 20 66 72 6f 6e 74 65 6e 64 20 6d 61 74 63 68 20 65 6e 64 20 6f 66 20 | end``.SSL.frontend.match.end.of. |
| bbf40 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 53 65 72 76 65 72 20 4e 61 6d 65 00 60 60 73 73 6c 2d 66 63 2d | connection.Server.Name.``ssl-fc- |
| bbf60 | 73 6e 69 60 60 20 53 53 4c 20 66 72 6f 6e 74 65 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 53 65 | sni``.SSL.frontend.connection.Se |
| bbf80 | 72 76 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 74 69 6f 6e 20 6d 61 74 63 68 00 60 60 73 74 61 | rver.Name.Indication.match.``sta |
| bbfa0 | 72 74 60 60 20 74 72 69 65 73 20 74 6f 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 72 65 2d 63 72 65 | rt``.tries.to.immediately.re-cre |
| bbfc0 | 61 74 65 20 74 68 65 20 43 48 49 4c 44 5f 53 41 3b 00 60 60 73 74 61 74 69 63 60 60 20 2d 20 53 | ate.the.CHILD_SA;.``static``.-.S |
| bbfe0 | 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 65 73 00 60 60 73 74 | tatically.configured.routes.``st |
| bc000 | 61 74 69 6f 6e 60 60 20 2d 20 43 6f 6e 6e 65 63 74 73 20 74 6f 20 61 6e 6f 74 68 65 72 20 61 63 | ation``.-.Connects.to.another.ac |
| bc020 | 63 65 73 73 20 70 6f 69 6e 74 00 60 60 73 74 61 74 75 73 20 32 30 30 2d 33 39 39 60 60 20 45 78 | cess.point.``status.200-399``.Ex |
| bc040 | 70 65 63 74 69 6e 67 20 61 20 6e 6f 6e 2d 66 61 69 6c 75 72 65 20 72 65 73 70 6f 6e 73 65 20 63 | pecting.a.non-failure.response.c |
| bc060 | 6f 64 65 00 60 60 73 74 61 74 75 73 20 32 30 30 60 60 20 45 78 70 65 63 74 69 6e 67 20 61 20 32 | ode.``status.200``.Expecting.a.2 |
| bc080 | 30 30 20 72 65 73 70 6f 6e 73 65 20 63 6f 64 65 00 60 60 73 74 72 69 6e 67 20 73 75 63 63 65 73 | 00.response.code.``string.succes |
| bc0a0 | 73 60 60 20 45 78 70 65 63 74 69 6e 67 20 74 68 65 20 73 74 72 69 6e 67 20 60 73 75 63 63 65 73 | s``.Expecting.the.string.`succes |
| bc0c0 | 73 60 20 69 6e 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 62 6f 64 79 00 60 60 73 79 6e 70 72 6f | s`.in.the.response.body.``synpro |
| bc0e0 | 78 79 60 60 3a 20 73 79 6e 70 72 6f 78 79 20 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 73 79 73 | xy``:.synproxy.the.packet..``sys |
| bc100 | 63 74 6c 60 60 20 69 73 20 75 73 65 64 20 74 6f 20 6d 6f 64 69 66 79 20 6b 65 72 6e 65 6c 20 70 | ctl``.is.used.to.modify.kernel.p |
| bc120 | 61 72 61 6d 65 74 65 72 73 20 61 74 20 72 75 6e 74 69 6d 65 2e 20 20 54 68 65 20 70 61 72 61 6d | arameters.at.runtime...The.param |
| bc140 | 65 74 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 74 68 6f 73 65 20 6c 69 73 74 65 64 | eters.available.are.those.listed |
| bc160 | 20 75 6e 64 65 72 20 2f 70 72 6f 63 2f 73 79 73 2f 2e 00 60 60 74 61 62 6c 65 20 31 30 60 60 20 | .under./proc/sys/..``table.10``. |
| bc180 | 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 49 53 50 31 00 60 60 74 61 | Routing.table.used.for.ISP1.``ta |
| bc1a0 | 62 6c 65 20 31 30 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 | ble.10``.Routing.table.used.for. |
| bc1c0 | 56 4c 41 4e 20 31 30 20 28 31 39 32 2e 31 36 38 2e 31 38 38 2e 30 2f 32 34 29 00 60 60 74 61 62 | VLAN.10.(192.168.188.0/24).``tab |
| bc1e0 | 6c 65 20 31 31 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 49 | le.11``.Routing.table.used.for.I |
| bc200 | 53 50 32 00 60 60 74 61 62 6c 65 20 31 31 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 | SP2.``table.11``.Routing.table.u |
| bc220 | 73 65 64 20 66 6f 72 20 56 4c 41 4e 20 31 31 20 28 31 39 32 2e 31 36 38 2e 31 38 39 2e 30 2f 32 | sed.for.VLAN.11.(192.168.189.0/2 |
| bc240 | 34 29 00 60 60 74 61 62 6c 65 60 60 20 2d 20 4e 6f 6e 2d 6d 61 69 6e 20 4b 65 72 6e 65 6c 20 52 | 4).``table``.-.Non-main.Kernel.R |
| bc260 | 6f 75 74 69 6e 67 20 54 61 62 6c 65 00 60 60 74 61 72 67 65 74 60 60 3a 20 74 68 65 20 74 61 72 | outing.Table.``target``:.the.tar |
| bc280 | 67 65 74 20 74 6f 20 62 65 20 73 65 6e 74 20 49 43 4d 50 20 70 61 63 6b 65 74 73 20 74 6f 2c 20 | get.to.be.sent.ICMP.packets.to,. |
| bc2a0 | 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f | address.can.be.an.IPv4.address.o |
| bc2c0 | 72 20 68 6f 73 74 6e 61 6d 65 00 60 60 74 65 73 74 2d 73 63 72 69 70 74 60 60 3a 20 41 20 75 73 | r.hostname.``test-script``:.A.us |
| bc2e0 | 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 20 6d 75 73 74 20 72 65 74 75 72 6e 20 30 20 | er.defined.script.must.return.0. |
| bc300 | 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 73 75 63 63 65 73 73 66 75 6c 20 61 6e 64 20 | to.be.considered.successful.and. |
| bc320 | 6e 6f 6e 2d 7a 65 72 6f 20 74 6f 20 66 61 69 6c 2e 20 53 63 72 69 70 74 73 20 61 72 65 20 6c 6f | non-zero.to.fail..Scripts.are.lo |
| bc340 | 63 61 74 65 64 20 69 6e 20 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2c 20 66 6f 72 20 64 69 | cated.in./config/scripts,.for.di |
| bc360 | 66 66 65 72 65 6e 74 20 6c 6f 63 61 74 69 6f 6e 73 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 | fferent.locations.the.full.path. |
| bc380 | 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 6f 76 69 64 65 64 00 60 60 74 68 72 65 73 68 6f 6c 64 | needs.to.be.provided.``threshold |
| bc3a0 | 60 60 3a 20 60 60 62 65 6c 6f 77 60 60 20 6f 72 20 60 60 61 62 6f 76 65 60 60 20 74 68 65 20 73 | ``:.``below``.or.``above``.the.s |
| bc3c0 | 70 65 63 69 66 69 65 64 20 72 61 74 65 20 6c 69 6d 69 74 2e 00 60 60 74 68 72 6f 75 67 68 70 75 | pecified.rate.limit..``throughpu |
| bc3e0 | 74 60 60 3a 20 41 20 73 65 72 76 65 72 20 70 72 6f 66 69 6c 65 20 66 6f 63 75 73 65 64 20 6f 6e | t``:.A.server.profile.focused.on |
| bc400 | 20 69 6d 70 72 6f 76 69 6e 67 20 6e 65 74 77 6f 72 6b 20 74 68 72 6f 75 67 68 70 75 74 2e 20 54 | .improving.network.throughput..T |
| bc420 | 68 69 73 20 70 72 6f 66 69 6c 65 20 66 61 76 6f 72 73 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6f | his.profile.favors.performance.o |
| bc440 | 76 65 72 20 70 6f 77 65 72 20 73 61 76 69 6e 67 73 20 62 79 20 73 65 74 74 69 6e 67 20 60 60 69 | ver.power.savings.by.setting.``i |
| bc460 | 6e 74 65 6c 5f 70 73 74 61 74 65 60 60 20 61 6e 64 20 60 60 6d 61 78 5f 70 65 72 66 5f 70 63 74 | ntel_pstate``.and.``max_perf_pct |
| bc480 | 3d 31 30 30 60 60 20 61 6e 64 20 69 6e 63 72 65 61 73 69 6e 67 20 6b 65 72 6e 65 6c 20 6e 65 74 | =100``.and.increasing.kernel.net |
| bc4a0 | 77 6f 72 6b 20 62 75 66 66 65 72 20 73 69 7a 65 73 2e 00 60 60 74 69 6d 65 31 2e 76 79 6f 73 2e | work.buffer.sizes..``time1.vyos. |
| bc4c0 | 6e 65 74 60 60 00 60 60 74 69 6d 65 32 2e 76 79 6f 73 2e 6e 65 74 60 60 00 60 60 74 69 6d 65 33 | net``.``time2.vyos.net``.``time3 |
| bc4e0 | 2e 76 79 6f 73 2e 6e 65 74 60 60 00 60 60 74 69 6d 65 6f 75 74 60 60 20 6b 65 65 70 2d 61 6c 69 | .vyos.net``.``timeout``.keep-ali |
| bc500 | 76 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 32 2d 38 36 34 30 30 3e 20 | ve.timeout.in.seconds.<2-86400>. |
| bc520 | 28 64 65 66 61 75 6c 74 20 31 32 30 29 20 49 4b 45 76 31 20 6f 6e 6c 79 00 60 60 74 6f 6b 65 6e | (default.120).IKEv1.only.``token |
| bc540 | 60 60 20 75 73 65 20 4a 57 54 20 74 6f 6b 65 6e 73 2e 00 60 60 74 72 61 6e 73 6d 69 74 2d 6c 6f | ``.use.JWT.tokens..``transmit-lo |
| bc560 | 61 64 2d 62 61 6c 61 6e 63 65 60 60 20 2d 20 41 64 61 70 74 69 76 65 20 74 72 61 6e 73 6d 69 74 | ad-balance``.-.Adaptive.transmit |
| bc580 | 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a 20 63 68 61 6e 6e 65 6c 20 62 6f 6e 64 69 6e 67 | .load.balancing:.channel.bonding |
| bc5a0 | 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 72 65 20 61 6e 79 20 73 70 65 63 69 | .that.does.not.require.any.speci |
| bc5c0 | 61 6c 20 73 77 69 74 63 68 20 73 75 70 70 6f 72 74 2e 00 60 60 74 72 61 6e 73 70 6f 72 74 60 60 | al.switch.support..``transport`` |
| bc5e0 | 20 74 72 61 6e 73 70 6f 72 74 20 6d 6f 64 65 3b 00 60 60 74 72 61 70 60 60 20 20 69 6e 73 74 61 | .transport.mode;.``trap``..insta |
| bc600 | 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 | lls.a.trap.policy,.which.will.ca |
| bc620 | 74 63 68 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 | tch.matching.traffic.and.tries.t |
| bc640 | 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 74 75 6e 6e 65 6c 20 6f 6e 2d 64 65 6d | o.re-negotiate.the.tunnel.on-dem |
| bc660 | 61 6e 64 3b 00 60 60 74 72 61 70 60 60 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f | and;.``trap``.installs.a.trap.po |
| bc680 | 6c 69 63 79 20 66 6f 72 20 74 68 65 20 43 48 49 4c 44 5f 53 41 3b 00 60 60 74 74 6c 2d 6c 69 6d | licy.for.the.CHILD_SA;.``ttl-lim |
| bc6a0 | 69 74 60 60 3a 20 46 6f 72 20 74 68 65 20 55 44 50 20 54 54 4c 20 6c 69 6d 69 74 20 74 65 73 74 | it``:.For.the.UDP.TTL.limit.test |
| bc6c0 | 20 74 68 65 20 68 6f 70 20 63 6f 75 6e 74 20 6c 69 6d 69 74 20 6d 75 73 74 20 62 65 20 73 70 65 | .the.hop.count.limit.must.be.spe |
| bc6e0 | 63 69 66 69 65 64 2e 20 54 68 65 20 6c 69 6d 69 74 20 6d 75 73 74 20 62 65 20 73 68 6f 72 74 65 | cified..The.limit.must.be.shorte |
| bc700 | 72 20 74 68 61 6e 20 74 68 65 20 70 61 74 68 20 6c 65 6e 67 74 68 2c 20 61 6e 20 49 43 4d 50 20 | r.than.the.path.length,.an.ICMP. |
| bc720 | 74 69 6d 65 20 65 78 70 69 72 65 64 20 6d 65 73 73 61 67 65 20 69 73 20 6e 65 65 64 65 64 20 74 | time.expired.message.is.needed.t |
| bc740 | 6f 20 62 65 20 72 65 74 75 72 6e 65 64 20 66 6f 72 20 61 20 73 75 63 63 65 73 73 66 75 6c 20 74 | o.be.returned.for.a.successful.t |
| bc760 | 65 73 74 2e 20 64 65 66 61 75 6c 74 20 31 00 60 60 74 74 79 53 4e 60 60 20 2d 20 53 65 72 69 61 | est..default.1.``ttySN``.-.Seria |
| bc780 | 6c 20 64 65 76 69 63 65 20 6e 61 6d 65 00 60 60 74 74 79 55 53 42 58 60 60 20 2d 20 55 53 42 20 | l.device.name.``ttyUSBX``.-.USB. |
| bc7a0 | 53 65 72 69 61 6c 20 64 65 76 69 63 65 20 6e 61 6d 65 00 60 60 74 75 6e 6e 65 6c 60 60 20 2d 20 | Serial.device.name.``tunnel``.-. |
| bc7c0 | 64 65 66 69 6e 65 20 63 72 69 74 65 72 69 61 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 62 | define.criteria.for.traffic.to.b |
| bc7e0 | 65 20 6d 61 74 63 68 65 64 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6e 67 20 61 6e 64 20 73 65 6e | e.matched.for.encrypting.and.sen |
| bc800 | 64 20 69 74 20 74 6f 20 61 20 70 65 65 72 3a 00 60 60 74 75 6e 6e 65 6c 60 60 20 74 75 6e 6e 65 | d.it.to.a.peer:.``tunnel``.tunne |
| bc820 | 6c 20 6d 6f 64 65 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 74 79 70 65 60 60 20 20 4c 6f 67 20 | l.mode.(default);.``type``..Log. |
| bc840 | 74 79 70 65 73 2e 00 60 60 74 79 70 65 60 60 3a 20 53 70 65 63 69 66 79 20 74 68 65 20 74 79 70 | types..``type``:.Specify.the.typ |
| bc860 | 65 20 6f 66 20 74 65 73 74 2e 20 74 79 70 65 20 63 61 6e 20 62 65 20 70 69 6e 67 2c 20 74 74 6c | e.of.test..type.can.be.ping,.ttl |
| bc880 | 20 6f 72 20 61 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 00 60 60 75 73 65 2d | .or.a.user.defined.script.``use- |
| bc8a0 | 78 35 30 39 2d 69 64 60 60 20 2d 20 75 73 65 20 6c 6f 63 61 6c 20 49 44 20 66 72 6f 6d 20 78 35 | x509-id``.-.use.local.ID.from.x5 |
| bc8c0 | 30 39 20 63 65 72 74 69 66 69 63 61 74 65 2e 20 43 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 | 09.certificate..Cannot.be.used.w |
| bc8e0 | 68 65 6e 20 60 60 69 64 60 60 20 69 73 20 64 65 66 69 6e 65 64 3b 00 60 60 76 69 72 74 75 61 6c | hen.``id``.is.defined;.``virtual |
| bc900 | 2d 61 64 64 72 65 73 73 60 60 20 2d 20 44 65 66 69 6e 65 73 20 61 20 76 69 72 74 75 61 6c 20 49 | -address``.-.Defines.a.virtual.I |
| bc920 | 50 20 61 64 64 72 65 73 73 20 77 68 69 63 68 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 | P.address.which.is.requested.by. |
| bc940 | 74 68 65 20 69 6e 69 74 69 61 74 6f 72 20 61 6e 64 20 6f 6e 65 20 6f 72 20 73 65 76 65 72 61 6c | the.initiator.and.one.or.several |
| bc960 | 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 | .IPv4.and/or.IPv6.addresses.are. |
| bc980 | 61 73 73 69 67 6e 65 64 20 66 72 6f 6d 20 6d 75 6c 74 69 70 6c 65 20 70 6f 6f 6c 73 20 62 79 20 | assigned.from.multiple.pools.by. |
| bc9a0 | 74 68 65 20 72 65 73 70 6f 6e 64 65 72 2e 00 60 60 76 69 72 74 75 61 6c 2d 69 70 60 60 20 41 6c | the.responder..``virtual-ip``.Al |
| bc9c0 | 6c 6f 77 20 69 6e 73 74 61 6c 6c 20 76 69 72 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 | low.install.virtual-ip.addresses |
| bc9e0 | 2e 20 43 6f 6d 6d 61 20 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 | ..Comma.separated.list.of.virtua |
| bca00 | 6c 20 49 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 | l.IPs.to.request.in.IKEv2.config |
| bca20 | 75 72 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 | uration.payloads.or.IKEv1.Mode.C |
| bca40 | 6f 6e 66 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e | onfig..The.wildcard.addresses.0. |
| bca60 | 30 2e 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 | 0.0.0.and.::.request.an.arbitrar |
| bca80 | 79 20 61 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 | y.address,.specific.addresses.ma |
| bcaa0 | 79 20 62 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 | y.be.defined..The.responder.may. |
| bcac0 | 72 65 74 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 20 61 64 64 72 65 73 73 2c 20 74 68 6f 75 | return.a.different.address,.thou |
| bcae0 | 67 68 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 61 6c 6c 2e 00 60 60 76 69 72 74 75 61 6c 2d 69 70 | gh,.or.none.at.all..``virtual-ip |
| bcb00 | 60 60 20 41 6c 6c 6f 77 73 20 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 6f 66 20 76 69 | ``.Allows.the.installation.of.vi |
| bcb20 | 72 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 2e 20 41 20 63 6f 6d 6d 61 00 60 60 76 69 | rtual-ip.addresses..A.comma.``vi |
| bcb40 | 72 74 75 61 6c 2d 69 70 60 60 20 41 6c 6c 6f 77 73 20 74 6f 20 69 6e 73 74 61 6c 6c 20 76 69 72 | rtual-ip``.Allows.to.install.vir |
| bcb60 | 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 2e 20 43 6f 6d 6d 61 20 73 65 70 61 72 61 74 | tual-ip.addresses..Comma.separat |
| bcb80 | 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 6c 20 49 50 73 20 74 6f 20 72 65 71 75 65 73 | ed.list.of.virtual.IPs.to.reques |
| bcba0 | 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 | t.in.IKEv2.configuration.payload |
| bcbc0 | 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 69 67 2e 20 54 68 65 20 77 69 6c 64 | s.or.IKEv1.Mode.Config..The.wild |
| bcbe0 | 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e 30 2e 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 | card.addresses.0.0.0.0.and.::.re |
| bcc00 | 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 61 64 64 72 65 73 73 2c 20 73 70 65 63 | quest.an.arbitrary.address,.spec |
| bcc20 | 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 79 20 62 65 20 64 65 66 69 6e 65 64 2e 20 54 | ific.addresses.may.be.defined..T |
| bcc40 | 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 75 72 6e 20 61 20 64 69 66 66 65 72 | he.responder.may.return.a.differ |
| bcc60 | 65 6e 74 20 61 64 64 72 65 73 73 2c 20 74 68 6f 75 67 68 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 | ent.address,.though,.or.none.at. |
| bcc80 | 61 6c 6c 2e 20 44 65 66 69 6e 65 20 74 68 65 20 60 60 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 | all..Define.the.``virtual-addres |
| bcca0 | 73 60 60 20 6f 70 74 69 6f 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 | s``.option.to.configure.the.IP.a |
| bccc0 | 64 64 72 65 73 73 20 69 6e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 68 69 65 72 61 72 63 68 79 | ddress.in.site-to-site.hierarchy |
| bcce0 | 2e 00 60 60 76 6e 63 60 60 20 2d 20 56 69 72 74 75 61 6c 20 4e 65 74 77 6f 72 6b 20 43 6f 6e 74 | ..``vnc``.-.Virtual.Network.Cont |
| bcd00 | 72 6f 6c 20 28 56 4e 43 29 00 60 60 76 74 69 60 60 20 2d 20 75 73 65 20 61 20 56 54 49 20 69 6e | rol.(VNC).``vti``.-.use.a.VTI.in |
| bcd20 | 74 65 72 66 61 63 65 20 66 6f 72 20 74 72 61 66 66 69 63 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 | terface.for.traffic.encryption.. |
| bcd40 | 41 6e 79 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 73 65 6e 64 20 | Any.traffic,.which.will.be.send. |
| bcd60 | 74 6f 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 62 65 20 65 6e 63 72 79 70 74 | to.VTI.interface.will.be.encrypt |
| bcd80 | 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 65 72 2e 20 55 73 69 6e 67 20 | ed.and.send.to.this.peer..Using. |
| bcda0 | 56 54 49 20 6d 61 6b 65 73 20 49 50 53 65 63 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 | VTI.makes.IPSec.configuration.mu |
| bcdc0 | 63 68 20 66 6c 65 78 69 62 6c 65 20 61 6e 64 20 65 61 73 69 65 72 20 69 6e 20 63 6f 6d 70 6c 65 | ch.flexible.and.easier.in.comple |
| bcde0 | 78 20 73 69 74 75 61 74 69 6f 6e 2c 20 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 64 79 6e 61 6d | x.situation,.and.allows.to.dynam |
| bce00 | 69 63 61 6c 6c 79 20 61 64 64 2f 64 65 6c 65 74 65 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b | ically.add/delete.remote.network |
| bce20 | 73 2c 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 61 20 70 65 65 72 2c 20 61 73 20 69 6e 20 74 | s,.reachable.via.a.peer,.as.in.t |
| bce40 | 68 69 73 20 6d 6f 64 65 20 72 6f 75 74 65 72 20 64 6f 6e 27 74 20 6e 65 65 64 20 74 6f 20 63 72 | his.mode.router.don't.need.to.cr |
| bce60 | 65 61 74 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 53 41 2f 70 6f 6c 69 63 79 20 66 6f 72 20 65 61 | eate.additional.SA/policy.for.ea |
| bce80 | 63 68 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 3a 00 60 60 76 79 6f 73 5f 63 65 72 74 60 60 | ch.remote.network:.``vyos_cert`` |
| bcea0 | 20 69 73 20 61 20 6c 65 61 66 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 75 73 | .is.a.leaf.server.certificate.us |
| bcec0 | 65 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 | ed.to.identify.the.VyOS.router,. |
| bcee0 | 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 73 65 72 76 65 72 20 69 6e 74 65 72 6d 65 64 69 61 72 | signed.by.the.server.intermediar |
| bcf00 | 79 20 43 41 2e 00 60 60 76 79 6f 73 5f 63 6c 69 65 6e 74 5f 63 61 60 60 20 61 6e 64 20 60 60 76 | y.CA..``vyos_client_ca``.and.``v |
| bcf20 | 79 6f 73 5f 73 65 72 76 65 72 5f 63 61 60 60 20 61 72 65 20 69 6e 74 65 72 6d 65 64 69 61 72 79 | yos_server_ca``.are.intermediary |
| bcf40 | 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 69 65 73 2c 20 77 68 69 63 68 20 | .certificate.authorities,.which. |
| bcf60 | 61 72 65 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 72 6f 6f 74 20 43 41 2e 00 60 60 76 79 6f | are.signed.by.the.root.CA..``vyo |
| bcf80 | 73 5f 65 78 61 6d 70 6c 65 5f 75 73 65 72 60 60 20 69 73 20 61 20 6c 65 61 66 20 63 6c 69 65 6e | s_example_user``.is.a.leaf.clien |
| bcfa0 | 74 20 63 65 72 74 69 66 69 63 61 74 65 20 75 73 65 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 61 | t.certificate.used.to.identify.a |
| bcfc0 | 20 75 73 65 72 2c 20 73 69 67 6e 65 64 20 62 79 20 63 6c 69 65 6e 74 20 69 6e 74 65 72 6d 65 64 | .user,.signed.by.client.intermed |
| bcfe0 | 69 61 72 79 20 43 41 2e 00 60 60 76 79 6f 73 5f 72 6f 6f 74 5f 63 61 60 60 20 69 73 20 74 68 65 | iary.CA..``vyos_root_ca``.is.the |
| bd000 | 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2e 00 60 60 78 | .root.certificate.authority..``x |
| bd020 | 35 30 39 60 60 20 2d 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 78 35 30 39 20 61 75 74 68 65 6e 74 | 509``.-.options.for.x509.authent |
| bd040 | 69 63 61 74 69 6f 6e 20 6d 6f 64 65 3a 00 60 60 78 35 30 39 60 60 20 2d 20 75 73 65 20 63 65 72 | ication.mode:.``x509``.-.use.cer |
| bd060 | 74 69 66 69 63 61 74 65 73 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 66 6f 72 20 61 75 74 | tificates.infrastructure.for.aut |
| bd080 | 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 60 60 78 6f 72 2d 68 61 73 68 60 60 20 2d 20 58 4f 52 20 | hentication..``xor-hash``.-.XOR. |
| bd0a0 | 70 6f 6c 69 63 79 3a 20 54 72 61 6e 73 6d 69 74 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 73 65 | policy:.Transmit.based.on.the.se |
| bd0c0 | 6c 65 63 74 65 64 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2e 20 20 54 68 | lected.transmit.hash.policy...Th |
| bd0e0 | 65 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 20 69 73 20 61 20 73 69 6d 70 6c 65 20 5b 28 73 | e.default.policy.is.a.simple.[(s |
| bd100 | 6f 75 72 63 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 58 4f 52 27 64 20 77 69 74 68 20 64 65 73 | ource.MAC.address.XOR'd.with.des |
| bd120 | 74 69 6e 61 74 69 6f 6e 20 4d 41 43 20 61 64 64 72 65 73 73 20 58 4f 52 20 70 61 63 6b 65 74 20 | tination.MAC.address.XOR.packet. |
| bd140 | 74 79 70 65 20 49 44 29 20 6d 6f 64 75 6c 6f 20 73 6c 61 76 65 20 63 6f 75 6e 74 5d 2e 20 41 6c | type.ID).modulo.slave.count]..Al |
| bd160 | 74 65 72 6e 61 74 65 20 74 72 61 6e 73 6d 69 74 20 70 6f 6c 69 63 69 65 73 20 6d 61 79 20 62 65 | ternate.transmit.policies.may.be |
| bd180 | 20 73 65 6c 65 63 74 65 64 20 76 69 61 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 68 61 73 68 2d | .selected.via.the.:cfgcmd:`hash- |
| bd1a0 | 70 6f 6c 69 63 79 60 20 6f 70 74 69 6f 6e 2c 20 64 65 73 63 72 69 62 65 64 20 62 65 6c 6f 77 2e | policy`.option,.described.below. |
| bd1c0 | 00 60 60 79 65 73 60 60 20 65 6e 61 62 6c 65 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 | .``yes``.enable.remote.host.re-a |
| bd1e0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 | uthentication.during.an.IKE.reke |
| bd200 | 79 3b 00 60 61 6c 6c 60 3a 20 41 6c 6c 20 72 65 63 65 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 | y;.`all`:.All.received.packets.w |
| bd220 | 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 00 60 69 67 6e 6f 72 65 60 3a 20 4e 6f | ill.be.timestamped..`ignore`:.No |
| bd240 | 20 63 6f 72 72 65 63 74 69 6f 6e 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6c | .correction.is.applied.to.the.cl |
| bd260 | 6f 63 6b 20 66 6f 72 20 74 68 65 20 6c 65 61 70 20 73 65 63 6f 6e 64 2e 20 54 68 65 20 63 6c 6f | ock.for.the.leap.second..The.clo |
| bd280 | 63 6b 20 77 69 6c 6c 20 62 65 20 63 6f 72 72 65 63 74 65 64 20 6c 61 74 65 72 20 69 6e 20 6e 6f | ck.will.be.corrected.later.in.no |
| bd2a0 | 72 6d 61 6c 20 6f 70 65 72 61 74 69 6f 6e 20 77 68 65 6e 20 6e 65 77 20 6d 65 61 73 75 72 65 6d | rmal.operation.when.new.measurem |
| bd2c0 | 65 6e 74 73 20 61 72 65 20 6d 61 64 65 20 61 6e 64 20 74 68 65 20 65 73 74 69 6d 61 74 65 64 20 | ents.are.made.and.the.estimated. |
| bd2e0 | 6f 66 66 73 65 74 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 6f 6e 65 20 73 65 63 6f 6e 64 20 65 | offset.includes.the.one.second.e |
| bd300 | 72 72 6f 72 2e 00 60 6e 6f 6e 65 60 3a 20 4e 6f 20 72 65 63 65 69 76 65 64 20 70 61 63 6b 65 74 | rror..`none`:.No.received.packet |
| bd320 | 73 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 20 48 61 72 64 77 61 72 65 20 | s.will.be.timestamped..Hardware. |
| bd340 | 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 66 20 74 72 61 6e 73 6d 69 74 74 65 64 20 70 61 63 6b | timestamping.of.transmitted.pack |
| bd360 | 65 74 73 20 77 69 6c 6c 20 73 74 69 6c 6c 20 62 65 20 6c 65 76 65 72 61 67 65 64 2c 20 69 66 20 | ets.will.still.be.leveraged,.if. |
| bd380 | 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 4e 49 43 2e 00 60 6e 74 70 60 3a 20 4f 6e 6c | supported.by.the.NIC..`ntp`:.Onl |
| bd3a0 | 79 20 72 65 63 65 69 76 65 64 20 20 4e 54 50 20 70 72 6f 74 6f 63 6f 6c 20 70 61 63 6b 65 74 73 | y.received..NTP.protocol.packets |
| bd3c0 | 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 00 60 70 74 70 60 3a 20 4f 6e 6c | .will.be.timestamped..`ptp`:.Onl |
| bd3e0 | 79 20 72 65 63 65 69 76 65 64 20 50 54 50 20 70 72 6f 74 6f 63 6f 6c 20 70 61 63 6b 65 74 73 20 | y.received.PTP.protocol.packets. |
| bd400 | 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e 20 43 6f 6d 62 69 6e 65 64 20 77 69 | will.be.timestamped..Combined.wi |
| bd420 | 74 68 20 74 68 65 20 50 54 50 20 74 72 61 6e 73 70 6f 72 74 20 66 6f 72 20 4e 54 50 20 70 61 63 | th.the.PTP.transport.for.NTP.pac |
| bd440 | 6b 65 74 73 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 6c 65 76 65 72 61 67 65 64 20 74 6f 20 74 | kets,.this.can.be.leveraged.to.t |
| bd460 | 61 6b 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 68 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 | ake.advantage.of.hardware.timest |
| bd480 | 61 6d 70 69 6e 67 20 6f 6e 20 4e 49 43 73 20 74 68 61 74 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 | amping.on.NICs.that.only.support |
| bd4a0 | 20 74 68 65 20 70 74 70 20 66 69 6c 74 65 72 20 6d 6f 64 65 2e 00 60 73 6d 65 61 72 60 3a 20 57 | .the.ptp.filter.mode..`smear`:.W |
| bd4c0 | 68 65 6e 20 73 6d 65 61 72 69 6e 67 20 61 20 6c 65 61 70 20 73 65 63 6f 6e 64 2c 20 74 68 65 20 | hen.smearing.a.leap.second,.the. |
| bd4e0 | 6c 65 61 70 20 73 74 61 74 75 73 20 69 73 20 73 75 70 70 72 65 73 73 65 64 20 6f 6e 20 74 68 65 | leap.status.is.suppressed.on.the |
| bd500 | 20 73 65 72 76 65 72 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 64 20 74 69 6d 65 20 69 73 20 63 | .server.and.the.served.time.is.c |
| bd520 | 6f 72 72 65 63 74 65 64 20 73 6c 6f 77 6c 79 20 62 79 20 73 6c 65 77 69 6e 67 20 69 6e 73 74 65 | orrected.slowly.by.slewing.inste |
| bd540 | 61 64 20 6f 66 20 73 74 65 70 70 69 6e 67 2e 20 54 68 65 20 63 6c 69 65 6e 74 73 20 64 6f 20 6e | ad.of.stepping..The.clients.do.n |
| bd560 | 6f 74 20 6e 65 65 64 20 61 6e 79 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ot.need.any.special.configuratio |
| bd580 | 6e 20 61 73 20 74 68 65 79 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 72 65 20 69 73 20 61 | n.as.they.do.not.know.there.is.a |
| bd5a0 | 6e 79 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 61 6e 64 20 74 68 65 79 20 66 6f 6c 6c 6f 77 20 74 | ny.leap.second.and.they.follow.t |
| bd5c0 | 68 65 20 73 65 72 76 65 72 20 74 69 6d 65 20 77 68 69 63 68 20 65 76 65 6e 74 75 61 6c 6c 79 20 | he.server.time.which.eventually. |
| bd5e0 | 62 72 69 6e 67 73 20 74 68 65 6d 20 62 61 63 6b 20 74 6f 20 55 54 43 2e 20 43 61 72 65 20 6d 75 | brings.them.back.to.UTC..Care.mu |
| bd600 | 73 74 20 62 65 20 74 61 6b 65 6e 20 74 6f 20 65 6e 73 75 72 65 20 74 68 65 79 20 75 73 65 20 6f | st.be.taken.to.ensure.they.use.o |
| bd620 | 6e 6c 79 20 4e 54 50 20 73 65 72 76 65 72 73 20 77 68 69 63 68 20 73 6d 65 61 72 20 74 68 65 20 | nly.NTP.servers.which.smear.the. |
| bd640 | 6c 65 61 70 20 73 65 63 6f 6e 64 20 69 6e 20 65 78 61 63 74 6c 79 20 74 68 65 20 73 61 6d 65 20 | leap.second.in.exactly.the.same. |
| bd660 | 77 61 79 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 73 61 74 69 6f 6e 2e 00 60 73 6f 75 72 63 65 | way.for.synchronisation..`source |
| bd680 | 2d 61 64 64 72 65 73 73 60 20 61 6e 64 20 60 73 6f 75 72 63 65 2d 69 6e 74 65 72 66 61 63 65 60 | -address`.and.`source-interface` |
| bd6a0 | 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d | .can.not.be.used.at.the.same.tim |
| bd6c0 | 65 2e 00 60 73 79 73 74 65 6d 60 3a 20 57 68 65 6e 20 69 6e 73 65 72 74 69 6e 67 20 61 20 6c 65 | e..`system`:.When.inserting.a.le |
| bd6e0 | 61 70 20 73 65 63 6f 6e 64 2c 20 74 68 65 20 6b 65 72 6e 65 6c 20 73 74 65 70 73 20 74 68 65 20 | ap.second,.the.kernel.steps.the. |
| bd700 | 73 79 73 74 65 6d 20 63 6c 6f 63 6b 20 62 61 63 6b 77 61 72 64 73 20 62 79 20 6f 6e 65 20 73 65 | system.clock.backwards.by.one.se |
| bd720 | 63 6f 6e 64 20 77 68 65 6e 20 74 68 65 20 63 6c 6f 63 6b 20 67 65 74 73 20 74 6f 20 30 30 3a 30 | cond.when.the.clock.gets.to.00:0 |
| bd740 | 30 3a 30 30 20 55 54 43 2e 20 57 68 65 6e 20 64 65 6c 65 74 69 6e 67 20 61 20 6c 65 61 70 20 73 | 0:00.UTC..When.deleting.a.leap.s |
| bd760 | 65 63 6f 6e 64 2c 20 69 74 20 73 74 65 70 73 20 66 6f 72 77 61 72 64 20 62 79 20 6f 6e 65 20 73 | econd,.it.steps.forward.by.one.s |
| bd780 | 65 63 6f 6e 64 20 77 68 65 6e 20 74 68 65 20 63 6c 6f 63 6b 20 67 65 74 73 20 74 6f 20 32 33 3a | econd.when.the.clock.gets.to.23: |
| bd7a0 | 35 39 3a 35 39 20 55 54 43 2e 00 60 74 69 6d 65 7a 6f 6e 65 60 3a 20 54 68 69 73 20 64 69 72 65 | 59:59.UTC..`timezone`:.This.dire |
| bd7c0 | 63 74 69 76 65 20 73 70 65 63 69 66 69 65 73 20 61 20 74 69 6d 65 7a 6f 6e 65 20 69 6e 20 74 68 | ctive.specifies.a.timezone.in.th |
| bd7e0 | 65 20 73 79 73 74 65 6d 20 74 69 6d 65 7a 6f 6e 65 20 64 61 74 61 62 61 73 65 20 77 68 69 63 68 | e.system.timezone.database.which |
| bd800 | 20 63 68 72 6f 6e 79 64 20 63 61 6e 20 75 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 77 68 | .chronyd.can.use.to.determine.wh |
| bd820 | 65 6e 20 77 69 6c 6c 20 74 68 65 20 6e 65 78 74 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 6f 63 63 | en.will.the.next.leap.second.occ |
| bd840 | 75 72 20 61 6e 64 20 77 68 61 74 20 69 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 6f 66 66 73 65 | ur.and.what.is.the.current.offse |
| bd860 | 74 20 62 65 74 77 65 65 6e 20 54 41 49 20 61 6e 64 20 55 54 43 2e 20 49 74 20 77 69 6c 6c 20 70 | t.between.TAI.and.UTC..It.will.p |
| bd880 | 65 72 69 6f 64 69 63 61 6c 6c 79 20 63 68 65 63 6b 20 69 66 20 32 33 3a 35 39 3a 35 39 20 61 6e | eriodically.check.if.23:59:59.an |
| bd8a0 | 64 20 32 33 3a 35 39 3a 36 30 20 61 72 65 20 76 61 6c 69 64 20 74 69 6d 65 73 20 69 6e 20 74 68 | d.23:59:60.are.valid.times.in.th |
| bd8c0 | 65 20 74 69 6d 65 7a 6f 6e 65 2e 20 54 68 69 73 20 6e 6f 72 6d 61 6c 6c 79 20 77 6f 72 6b 73 20 | e.timezone..This.normally.works. |
| bd8e0 | 77 69 74 68 20 74 68 65 20 72 69 67 68 74 2f 55 54 43 20 74 69 6d 65 7a 6f 6e 65 20 77 68 69 63 | with.the.right/UTC.timezone.whic |
| bd900 | 68 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 00 60 74 77 65 65 74 20 62 79 20 45 76 69 6c 4d | h.is.the.default.`tweet.by.EvilM |
| bd920 | 6f 67 60 5f 2c 20 32 30 32 30 2d 30 32 2d 32 31 00 61 20 62 61 6e 64 77 69 64 74 68 20 74 65 73 | og`_,.2020-02-21.a.bandwidth.tes |
| bd940 | 74 20 6f 76 65 72 20 74 68 65 20 56 50 4e 20 67 6f 74 20 74 68 65 73 65 20 72 65 73 75 6c 74 73 | t.over.the.VPN.got.these.results |
| bd960 | 3a 00 61 20 62 6c 61 6e 6b 20 69 6e 64 69 63 61 74 65 73 20 74 68 61 74 20 6e 6f 20 74 65 73 74 | :.a.blank.indicates.that.no.test |
| bd980 | 20 68 61 73 20 62 65 65 6e 20 63 61 72 72 69 65 64 20 6f 75 74 00 61 65 73 32 35 36 20 45 6e 63 | .has.been.carried.out.aes256.Enc |
| bd9a0 | 72 79 70 74 69 6f 6e 00 61 6c 65 72 74 00 61 6c 6c 00 61 6e 20 52 44 20 2f 20 52 54 4c 49 53 54 | ryption.alert.all.an.RD./.RTLIST |
| bd9c0 | 00 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 61 20 6e 65 78 74 68 6f 70 00 61 6e 79 | .an.interface.with.a.nexthop.any |
| bd9e0 | 3a 20 61 6e 79 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 61 6e 79 3a 20 | :.any.IP.address.to.match..any:. |
| bda00 | 61 6e 79 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 61 75 74 68 00 | any.IPv6.address.to.match..auth. |
| bda20 | 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 00 61 75 74 6f 20 2d 20 69 6e 74 65 72 66 61 63 65 20 64 | authorization.auto.-.interface.d |
| bda40 | 75 70 6c 65 78 20 73 65 74 74 69 6e 67 20 69 73 20 61 75 74 6f 2d 6e 65 67 6f 74 69 61 74 65 64 | uplex.setting.is.auto-negotiated |
| bda60 | 00 61 75 74 6f 20 2d 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 65 64 20 69 73 20 61 75 74 6f 2d | .auto.-.interface.speed.is.auto- |
| bda80 | 6e 65 67 6f 74 69 61 74 65 64 00 62 67 70 64 00 62 6f 6e 64 69 6e 67 00 62 6f 6f 74 2d 73 69 7a | negotiated.bgpd.bonding.boot-siz |
| bdaa0 | 65 00 62 6f 6f 74 66 69 6c 65 2d 6e 61 6d 65 00 62 6f 6f 74 66 69 6c 65 2d 6e 61 6d 65 2c 20 66 | e.bootfile-name.bootfile-name,.f |
| bdac0 | 69 6c 65 6e 61 6d 65 00 62 6f 6f 74 66 69 6c 65 2d 73 65 72 76 65 72 00 62 6f 6f 74 66 69 6c 65 | ilename.bootfile-server.bootfile |
| bdae0 | 2d 73 69 7a 65 00 62 72 69 64 67 65 00 63 6c 69 65 6e 74 20 65 78 61 6d 70 6c 65 20 28 64 65 62 | -size.bridge.client.example.(deb |
| bdb00 | 69 61 6e 20 39 29 00 63 6c 69 65 6e 74 2d 70 72 65 66 69 78 2d 6c 65 6e 67 74 68 00 63 6c 6f 63 | ian.9).client-prefix-length.cloc |
| bdb20 | 6b 00 63 6c 6f 63 6b 20 64 61 65 6d 6f 6e 20 28 6e 6f 74 65 20 32 29 00 63 72 69 74 00 63 72 6f | k.clock.daemon.(note.2).crit.cro |
| bdb40 | 6e 00 64 61 65 6d 6f 6e 00 64 64 63 6c 69 65 6e 74 5f 20 68 61 73 20 61 6e 6f 74 68 65 72 20 77 | n.daemon.ddclient_.has.another.w |
| bdb60 | 61 79 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 57 41 4e 20 49 50 20 61 64 64 72 65 | ay.to.determine.the.WAN.IP.addre |
| bdb80 | 73 73 2e 20 54 68 69 73 20 69 73 20 63 6f 6e 74 72 6f 6c 6c 65 64 20 62 79 3a 00 64 64 63 6c 69 | ss..This.is.controlled.by:.ddcli |
| bdba0 | 65 6e 74 5f 20 75 73 65 73 20 74 77 6f 20 6d 65 74 68 6f 64 73 20 74 6f 20 75 70 64 61 74 65 20 | ent_.uses.two.methods.to.update. |
| bdbc0 | 61 20 44 4e 53 20 72 65 63 6f 72 64 2e 20 54 68 65 20 66 69 72 73 74 20 6f 6e 65 20 77 69 6c 6c | a.DNS.record..The.first.one.will |
| bdbe0 | 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 64 69 72 65 63 74 6c 79 20 74 6f 20 74 68 65 20 44 4e | .send.updates.directly.to.the.DN |
| bdc00 | 53 20 64 61 65 6d 6f 6e 2c 20 69 6e 20 63 6f 6d 70 6c 69 61 6e 63 65 20 77 69 74 68 20 3a 72 66 | S.daemon,.in.compliance.with.:rf |
| bdc20 | 63 3a 60 32 31 33 36 60 2e 20 54 68 65 20 73 65 63 6f 6e 64 20 6f 6e 65 20 69 6e 76 6f 6c 76 65 | c:`2136`..The.second.one.involve |
| bdc40 | 73 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 73 65 72 76 69 63 65 2c 20 6c 69 6b 65 20 44 79 | s.a.third.party.service,.like.Dy |
| bdc60 | 6e 44 4e 53 2e 63 6f 6d 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 73 69 6d 69 6c 61 72 20 77 65 | nDNS.com.or.any.other.similar.we |
| bdc80 | 62 73 69 74 65 2e 20 54 68 69 73 20 6d 65 74 68 6f 64 20 75 73 65 73 20 48 54 54 50 20 72 65 71 | bsite..This.method.uses.HTTP.req |
| bdca0 | 75 65 73 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 74 68 65 20 6e 65 77 20 49 50 20 61 64 64 | uests.to.transmit.the.new.IP.add |
| bdcc0 | 72 65 73 73 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 69 6e 20 | ress..You.can.configure.both.in. |
| bdce0 | 56 79 4f 53 2e 00 64 64 63 6c 69 65 6e 74 5f 20 75 73 65 73 20 74 77 6f 20 6d 65 74 68 6f 64 73 | VyOS..ddclient_.uses.two.methods |
| bdd00 | 20 74 6f 20 75 70 64 61 74 65 20 61 20 44 4e 53 20 72 65 63 6f 72 64 2e 20 54 68 65 20 66 69 72 | .to.update.a.DNS.record..The.fir |
| bdd20 | 73 74 20 6f 6e 65 20 77 69 6c 6c 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 64 69 72 65 63 74 6c | st.one.will.send.updates.directl |
| bdd40 | 79 20 74 6f 20 74 68 65 20 44 4e 53 20 64 61 65 6d 6f 6e 2c 20 69 6e 20 63 6f 6d 70 6c 69 61 6e | y.to.the.DNS.daemon,.in.complian |
| bdd60 | 63 65 20 77 69 74 68 20 3a 72 66 63 3a 60 32 31 33 36 60 2e 20 54 68 65 20 73 65 63 6f 6e 64 20 | ce.with.:rfc:`2136`..The.second. |
| bdd80 | 6f 6e 65 20 69 6e 76 6f 6c 76 65 73 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 73 65 72 76 69 | one.involves.a.third.party.servi |
| bdda0 | 63 65 2c 20 6c 69 6b 65 20 44 79 6e 44 4e 53 2e 63 6f 6d 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 | ce,.like.DynDNS.com.or.any.other |
| bddc0 | 20 73 75 63 68 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 2e 20 54 68 69 73 20 6d 65 74 | .such.service.provider..This.met |
| bdde0 | 68 6f 64 20 75 73 65 73 20 48 54 54 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 72 61 6e 73 6d | hod.uses.HTTP.requests.to.transm |
| bde00 | 69 74 20 74 68 65 20 6e 65 77 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 6f 75 20 63 61 6e 20 63 | it.the.new.IP.address..You.can.c |
| bde20 | 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 69 6e 20 56 79 4f 53 2e 00 64 64 63 6c 69 65 6e 74 5f | onfigure.both.in.VyOS..ddclient_ |
| bde40 | 20 77 69 6c 6c 20 73 6b 69 70 20 61 6e 79 20 61 64 64 72 65 73 73 20 6c 6f 63 61 74 65 64 20 62 | .will.skip.any.address.located.b |
| bde60 | 65 66 6f 72 65 20 74 68 65 20 73 74 72 69 6e 67 20 73 65 74 20 69 6e 20 60 3c 70 61 74 74 65 72 | efore.the.string.set.in.`<patter |
| bde80 | 6e 3e 60 2e 00 64 65 62 75 67 00 64 65 63 72 65 6d 65 6e 74 2d 6c 69 66 65 74 69 6d 65 00 64 65 | n>`..debug.decrement-lifetime.de |
| bdea0 | 66 61 75 6c 74 20 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 00 64 65 66 61 75 6c 74 2d 6c 65 61 73 | fault.min-threshold.default-leas |
| bdec0 | 65 2d 74 69 6d 65 2c 20 6d 61 78 2d 6c 65 61 73 65 2d 74 69 6d 65 00 64 65 66 61 75 6c 74 2d 6c | e-time,.max-lease-time.default-l |
| bdee0 | 69 66 65 74 69 6d 65 00 64 65 66 61 75 6c 74 2d 70 72 65 66 65 72 65 6e 63 65 00 64 65 66 61 75 | ifetime.default-preference.defau |
| bdf00 | 6c 74 2d 72 6f 75 74 65 72 00 64 65 70 72 65 63 61 74 65 2d 70 72 65 66 69 78 00 64 65 73 74 69 | lt-router.deprecate-prefix.desti |
| bdf20 | 6e 61 74 69 6f 6e 2d 68 61 73 68 69 6e 67 00 64 68 63 70 2d 73 65 72 76 65 72 2d 69 64 65 6e 74 | nation-hashing.dhcp-server-ident |
| bdf40 | 69 66 69 65 72 00 64 69 72 65 63 74 00 64 69 72 65 63 74 6f 72 79 00 64 69 73 61 62 6c 65 3a 20 | ifier.direct.directory.disable:. |
| bdf60 | 4e 6f 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 6f 6e 00 64 6e 73 73 6c 00 64 6f 6d 61 69 | No.source.validation.dnssl.domai |
| bdf80 | 6e 2d 6e 61 6d 65 00 64 6f 6d 61 69 6e 2d 6e 61 6d 65 2d 73 65 72 76 65 72 73 00 64 6f 6d 61 69 | n-name.domain-name-servers.domai |
| bdfa0 | 6e 2d 73 65 61 72 63 68 00 65 6d 65 72 67 00 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 | n-search.emerg.enable.or.disable |
| bdfc0 | 20 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 73 65 6e 64 20 | ..ICMPv4.redirect.messages.send. |
| bdfe0 | 62 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 | by.VyOS.The.following.system.par |
| be000 | 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 20 6f | ameter.will.be.altered:.enable.o |
| be020 | 72 20 64 69 73 61 62 6c 65 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 | r.disable.ICMPv4.redirect.messag |
| be040 | 65 73 20 73 65 6e 64 20 62 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 | es.send.by.VyOS.The.following.sy |
| be060 | 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 | stem.parameter.will.be.altered:. |
| be080 | 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 6f 66 20 49 43 4d 50 76 34 20 6f 72 20 49 | enable.or.disable.of.ICMPv4.or.I |
| be0a0 | 43 4d 50 76 36 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 61 63 63 65 70 74 65 64 | CMPv6.redirect.messages.accepted |
| be0c0 | 20 62 79 20 56 79 4f 53 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 | .by.VyOS..The.following.system.p |
| be0e0 | 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 | arameter.will.be.altered:.enable |
| be100 | 20 6f 72 20 64 69 73 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 6d 61 72 74 69 | .or.disable.the.logging.of.marti |
| be120 | 61 6e 20 49 50 76 34 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 | an.IPv4.packets..The.following.s |
| be140 | 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a | ystem.parameter.will.be.altered: |
| be160 | 00 65 72 72 00 65 74 68 65 72 6e 65 74 00 65 78 61 63 74 2d 6d 61 74 63 68 3a 20 65 78 61 63 74 | .err.ethernet.exact-match:.exact |
| be180 | 20 6d 61 74 63 68 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 65 73 2e 00 | .match.of.the.network.prefixes.. |
| be1a0 | 65 78 63 6c 75 64 65 00 66 61 69 6c 6f 76 65 72 00 66 61 73 74 3a 20 52 65 71 75 65 73 74 20 70 | exclude.failover.fast:.Request.p |
| be1c0 | 61 72 74 6e 65 72 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 73 20 65 76 65 72 79 | artner.to.transmit.LACPDUs.every |
| be1e0 | 20 31 20 73 65 63 6f 6e 64 00 66 69 6c 65 20 3c 66 69 6c 65 20 6e 61 6d 65 3e 00 66 69 6c 74 65 | .1.second.file.<file.name>.filte |
| be200 | 72 2d 6c 69 73 74 00 66 74 70 00 66 75 6c 6c 20 2d 20 61 6c 77 61 79 73 20 75 73 65 20 66 75 6c | r-list.ftp.full.-.always.use.ful |
| be220 | 6c 2d 64 75 70 6c 65 78 00 67 65 6e 65 76 65 00 68 61 6c 66 20 2d 20 61 6c 77 61 79 73 20 75 73 | l-duplex.geneve.half.-.always.us |
| be240 | 65 20 68 61 6c 66 2d 64 75 70 6c 65 78 00 68 6f 70 2d 6c 69 6d 69 74 00 68 6f 73 74 3a 20 73 69 | e.half-duplex.hop-limit.host:.si |
| be260 | 6e 67 6c 65 20 68 6f 73 74 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 68 | ngle.host.IP.address.to.match..h |
| be280 | 74 74 70 73 3a 2f 2f 61 63 63 65 73 73 2e 72 65 64 68 61 74 2e 63 6f 6d 2f 73 69 74 65 73 2f 64 | ttps://access.redhat.com/sites/d |
| be2a0 | 65 66 61 75 6c 74 2f 66 69 6c 65 73 2f 61 74 74 61 63 68 6d 65 6e 74 73 2f 32 30 31 35 30 31 2d | efault/files/attachments/201501- |
| be2c0 | 70 65 72 66 2d 62 72 69 65 66 2d 6c 6f 77 2d 6c 61 74 65 6e 63 79 2d 74 75 6e 69 6e 67 2d 72 68 | perf-brief-low-latency-tuning-rh |
| be2e0 | 65 6c 37 2d 76 32 2e 31 2e 70 64 66 00 68 74 74 70 73 3a 2f 2f 63 6f 6d 6d 75 6e 69 74 79 2e 6f | el7-v2.1.pdf.https://community.o |
| be300 | 70 65 6e 76 70 6e 2e 6e 65 74 2f 6f 70 65 6e 76 70 6e 2f 77 69 6b 69 2f 44 61 74 61 43 68 61 6e | penvpn.net/openvpn/wiki/DataChan |
| be320 | 6e 65 6c 4f 66 66 6c 6f 61 64 2f 46 65 61 74 75 72 65 73 00 68 74 74 70 73 3a 2f 2f 64 6f 63 73 | nelOffload/Features.https://docs |
| be340 | 2e 6b 65 72 6e 65 6c 2e 6f 72 67 2f 61 64 6d 69 6e 2d 67 75 69 64 65 2f 70 6d 2f 61 6d 64 2d 70 | .kernel.org/admin-guide/pm/amd-p |
| be360 | 73 74 61 74 65 2e 68 74 6d 6c 00 69 66 20 74 68 65 72 65 20 69 73 20 61 20 73 75 70 70 6f 72 74 | state.html.if.there.is.a.support |
| be380 | 65 64 20 64 65 76 69 63 65 2c 20 65 6e 61 62 6c 65 20 49 6e 74 65 6c c2 ae 20 51 41 54 00 69 66 | ed.device,.enable.Intel...QAT.if |
| be3a0 | 20 74 68 65 72 65 20 69 73 20 6e 6f 6e 20 64 65 76 69 63 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | .there.is.non.device.the.command |
| be3c0 | 20 77 69 6c 6c 20 73 68 6f 77 20 60 60 60 4e 6f 20 51 41 54 20 64 65 76 69 63 65 20 66 6f 75 6e | .will.show.```No.QAT.device.foun |
| be3e0 | 64 60 60 60 00 69 6e 66 6f 00 69 6e 68 65 72 69 74 20 6d 61 74 63 68 65 73 20 66 72 6f 6d 20 61 | d```.info.inherit.matches.from.a |
| be400 | 6e 6f 74 68 65 72 20 67 72 6f 75 70 00 69 6e 74 65 72 76 61 6c 00 69 6e 76 61 6c 69 64 00 69 6e | nother.group.interval.invalid.in |
| be420 | 76 65 72 73 65 2d 6d 61 74 63 68 3a 20 6e 65 74 77 6f 72 6b 2f 6e 65 74 6d 61 73 6b 20 74 6f 20 | verse-match:.network/netmask.to. |
| be440 | 6d 61 74 63 68 20 28 72 65 71 75 69 72 65 73 20 6e 65 74 77 6f 72 6b 20 62 65 20 64 65 66 69 6e | match.(requires.network.be.defin |
| be460 | 65 64 29 2e 00 69 70 2d 66 6f 72 77 61 72 64 69 6e 67 00 69 73 69 73 64 00 69 74 20 63 61 6e 20 | ed)..ip-forwarding.isisd.it.can. |
| be480 | 62 65 20 75 73 65 64 20 77 69 74 68 20 61 6e 79 20 4e 49 43 00 69 74 20 63 61 6e 20 62 65 20 75 | be.used.with.any.NIC.it.can.be.u |
| be4a0 | 73 65 64 20 77 69 74 68 20 61 6e 79 20 4e 49 43 2c 00 69 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e | sed.with.any.NIC,.it.does.not.in |
| be4c0 | 63 72 65 61 73 65 20 68 61 72 64 77 61 72 65 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 75 70 74 | crease.hardware.device.interrupt |
| be4e0 | 20 72 61 74 65 20 28 61 6c 74 68 6f 75 67 68 20 69 74 20 64 6f 65 73 20 69 6e 74 72 6f 64 75 63 | .rate.(although.it.does.introduc |
| be500 | 65 20 69 6e 74 65 72 2d 70 72 6f 63 65 73 73 6f 72 20 69 6e 74 65 72 72 75 70 74 73 20 28 49 50 | e.inter-processor.interrupts.(IP |
| be520 | 49 73 29 29 2e 00 69 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 72 65 61 73 65 20 68 61 72 64 77 | Is))..it.does.not.increase.hardw |
| be540 | 61 72 65 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 75 70 74 20 72 61 74 65 2c 20 61 6c 74 68 6f | are.device.interrupt.rate,.altho |
| be560 | 75 67 68 20 69 74 20 64 6f 65 73 20 69 6e 74 72 6f 64 75 63 65 20 69 6e 74 65 72 2d 70 72 6f 63 | ugh.it.does.introduce.inter-proc |
| be580 | 65 73 73 6f 72 20 69 6e 74 65 72 72 75 70 74 73 20 28 49 50 49 73 29 00 6b 65 72 6e 00 6c 32 74 | essor.interrupts.(IPIs).kern.l2t |
| be5a0 | 70 76 33 00 6c 64 70 64 00 6c 65 61 73 65 00 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 | pv3.ldpd.lease.least-connection. |
| be5c0 | 6c 65 66 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 20 23 20 56 50 | left.local_ip:.192.168.0.10.#.VP |
| be5e0 | 4e 20 47 61 74 65 77 61 79 2c 20 62 65 68 69 6e 64 20 4e 41 54 20 64 65 76 69 63 65 00 6c 65 66 | N.Gateway,.behind.NAT.device.lef |
| be600 | 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 60 31 39 38 2e 35 31 2e 31 30 30 2e 33 60 20 23 20 73 65 72 | t.local_ip:.`198.51.100.3`.#.ser |
| be620 | 76 65 72 20 73 69 64 65 20 57 41 4e 20 49 50 00 6c 65 66 74 20 70 75 62 6c 69 63 5f 69 70 3a 31 | ver.side.WAN.IP.left.public_ip:1 |
| be640 | 37 32 2e 31 38 2e 32 30 31 2e 31 30 00 6c 65 66 74 20 73 75 62 6e 65 74 3a 20 60 31 39 32 2e 31 | 72.18.201.10.left.subnet:.`192.1 |
| be660 | 36 38 2e 30 2e 30 2f 32 34 60 20 73 69 74 65 31 2c 20 73 65 72 76 65 72 20 73 69 64 65 20 28 69 | 68.0.0/24`.site1,.server.side.(i |
| be680 | 2e 65 2e 20 6c 6f 63 61 6c 69 74 79 2c 20 61 63 74 75 61 6c 6c 79 20 74 68 65 72 65 20 69 73 20 | .e..locality,.actually.there.is. |
| be6a0 | 6e 6f 20 63 6c 69 65 6e 74 20 6f 72 20 73 65 72 76 65 72 20 72 6f 6c 65 73 29 00 6c 69 6e 6b 2d | no.client.or.server.roles).link- |
| be6c0 | 6d 74 75 00 6c 6f 63 61 6c 20 75 73 65 20 30 20 28 6c 6f 63 61 6c 30 29 00 6c 6f 63 61 6c 20 75 | mtu.local.use.0.(local0).local.u |
| be6e0 | 73 65 20 31 20 28 6c 6f 63 61 6c 31 29 00 6c 6f 63 61 6c 20 75 73 65 20 32 20 28 6c 6f 63 61 6c | se.1.(local1).local.use.2.(local |
| be700 | 32 29 00 6c 6f 63 61 6c 20 75 73 65 20 33 20 28 6c 6f 63 61 6c 33 29 00 6c 6f 63 61 6c 20 75 73 | 2).local.use.3.(local3).local.us |
| be720 | 65 20 34 20 28 6c 6f 63 61 6c 34 29 00 6c 6f 63 61 6c 20 75 73 65 20 35 20 28 6c 6f 63 61 6c 35 | e.4.(local4).local.use.5.(local5 |
| be740 | 29 00 6c 6f 63 61 6c 20 75 73 65 20 37 20 28 6c 6f 63 61 6c 37 29 00 6c 6f 63 61 6c 30 00 6c 6f | ).local.use.7.(local7).local0.lo |
| be760 | 63 61 6c 31 00 6c 6f 63 61 6c 32 00 6c 6f 63 61 6c 33 00 6c 6f 63 61 6c 34 00 6c 6f 63 61 6c 35 | cal1.local2.local3.local4.local5 |
| be780 | 00 6c 6f 63 61 6c 36 00 6c 6f 63 61 6c 37 00 6c 6f 63 61 6c 69 74 79 2d 62 61 73 65 64 2d 6c 65 | .local6.local7.locality-based-le |
| be7a0 | 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 6c 6f 67 61 6c 65 72 74 00 6c 6f 67 61 75 64 69 74 | ast-connection.logalert.logaudit |
| be7c0 | 00 6c 6f 6f 73 65 3a 20 45 61 63 68 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 27 73 20 73 | .loose:.Each.incoming.packet's.s |
| be7e0 | 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 61 6c 73 6f 20 74 65 73 74 65 64 20 61 67 61 | ource.address.is.also.tested.aga |
| be800 | 69 6e 73 74 20 74 68 65 20 46 49 42 20 61 6e 64 20 69 66 20 74 68 65 20 73 6f 75 72 63 65 20 61 | inst.the.FIB.and.if.the.source.a |
| be820 | 64 64 72 65 73 73 20 69 73 20 6e 6f 74 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 61 6e 79 20 | ddress.is.not.reachable.via.any. |
| be840 | 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 70 61 63 6b 65 74 20 63 68 65 63 6b 20 77 69 6c 6c 20 | interface.the.packet.check.will. |
| be860 | 66 61 69 6c 2e 00 6c 70 72 00 6d 44 4e 53 20 52 65 70 65 61 74 65 72 00 6d 44 4e 53 20 72 65 70 | fail..lpr.mDNS.Repeater.mDNS.rep |
| be880 | 65 61 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 72 65 2d 62 72 | eater.can.be.configured.to.re-br |
| be8a0 | 6f 61 64 63 61 73 74 20 6f 6e 6c 79 20 73 70 65 63 69 66 69 63 20 73 65 72 76 69 63 65 73 2e 20 | oadcast.only.specific.services.. |
| be8c0 | 42 79 20 64 65 66 61 75 6c 74 2c 20 61 6c 6c 20 73 65 72 76 69 63 65 73 20 61 72 65 20 72 65 2d | By.default,.all.services.are.re- |
| be8e0 | 62 72 6f 61 64 63 61 73 74 65 64 2e 00 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 63 61 6e 20 62 | broadcasted..mDNS.repeater.can.b |
| be900 | 65 20 65 6e 61 62 6c 65 64 20 65 69 74 68 65 72 20 6f 6e 20 49 50 76 34 20 73 6f 63 6b 65 74 20 | e.enabled.either.on.IPv4.socket. |
| be920 | 6f 72 20 6f 6e 20 49 50 76 36 20 73 6f 63 6b 65 74 20 6f 72 20 62 6f 74 68 20 74 6f 20 72 65 2d | or.on.IPv6.socket.or.both.to.re- |
| be940 | 62 72 6f 61 64 63 61 73 74 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 6d 44 4e 53 20 72 65 70 65 | broadcast..By.default,.mDNS.repe |
| be960 | 61 74 65 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 62 6f 74 68 20 49 50 76 34 20 61 6e | ater.will.listen.on.both.IPv4.an |
| be980 | 64 20 49 50 76 36 2e 00 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 63 61 6e 20 62 65 20 74 65 6d | d.IPv6..mDNS.repeater.can.be.tem |
| be9a0 | 70 6f 72 61 72 69 6c 79 20 64 69 73 61 62 6c 65 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 | porarily.disabled.without.deleti |
| be9c0 | 6e 67 20 74 68 65 20 73 65 72 76 69 63 65 20 75 73 69 6e 67 00 6d 61 69 6c 00 6d 61 6e 61 67 65 | ng.the.service.using.mail.manage |
| be9e0 | 64 2d 66 6c 61 67 00 6d 61 74 63 68 2d 66 72 61 67 3a 20 53 65 63 6f 6e 64 20 61 6e 64 20 66 75 | d-flag.match-frag:.Second.and.fu |
| bea00 | 72 74 68 65 72 20 66 72 61 67 6d 65 6e 74 73 20 6f 66 20 66 72 61 67 6d 65 6e 74 65 64 20 70 61 | rther.fragments.of.fragmented.pa |
| bea20 | 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 69 70 73 65 63 3a 20 6d 61 74 63 68 20 69 6e 62 6f 75 6e | ckets..match-ipsec:.match.inboun |
| bea40 | 64 20 49 50 73 65 63 20 70 61 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 6e 6f 6e 2d 66 72 61 67 3a | d.IPsec.packets..match-non-frag: |
| bea60 | 20 48 65 61 64 20 66 72 61 67 6d 65 6e 74 73 20 6f 72 20 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 | .Head.fragments.or.unfragmented. |
| bea80 | 70 61 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 6e 6f 6e 65 3a 20 6d 61 74 63 68 20 69 6e 62 6f 75 | packets..match-none:.match.inbou |
| beaa0 | 6e 64 20 6e 6f 6e 2d 49 50 73 65 63 20 70 61 63 6b 65 74 73 2e 00 6d 69 6e 69 6d 61 6c 20 63 6f | nd.non-IPsec.packets..minimal.co |
| beac0 | 6e 66 69 67 00 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 49 47 | nfig.more.information.related.IG |
| beae0 | 50 20 20 2d 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 69 73 69 73 60 00 6d 6f 72 65 20 69 6e | P..-.:ref:`routing-isis`.more.in |
| beb00 | 66 6f 72 6d 61 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 49 47 50 20 20 2d 20 3a 72 65 66 3a 60 72 | formation.related.IGP..-.:ref:`r |
| beb20 | 6f 75 74 69 6e 67 2d 6f 73 70 66 60 00 6e 61 6d 65 2d 73 65 72 76 65 72 00 6e 65 74 62 69 6f 73 | outing-ospf`.name-server.netbios |
| beb40 | 2d 6e 61 6d 65 2d 73 65 72 76 65 72 73 00 6e 65 74 77 6f 72 6b 3a 20 6e 65 74 77 6f 72 6b 2f 6e | -name-servers.network:.network/n |
| beb60 | 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 68 20 28 72 65 71 75 69 72 65 73 20 69 6e 76 65 72 73 | etmask.to.match.(requires.invers |
| beb80 | 65 2d 6d 61 74 63 68 20 62 65 20 64 65 66 69 6e 65 64 29 20 42 55 47 2c 20 4e 4f 20 69 6e 76 65 | e-match.be.defined).BUG,.NO.inve |
| beba0 | 72 74 2d 6d 61 74 63 68 20 6f 70 74 69 6f 6e 20 69 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 36 00 | rt-match.option.in.access-list6. |
| bebc0 | 6e 65 74 77 6f 72 6b 3a 20 6e 65 74 77 6f 72 6b 2f 6e 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 | network:.network/netmask.to.matc |
| bebe0 | 68 20 28 72 65 71 75 69 72 65 73 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 62 65 20 64 65 66 | h.(requires.inverse-match.be.def |
| bec00 | 69 6e 65 64 29 2e 00 6e 65 74 77 6f 72 6b 73 3b 00 6e 65 77 73 00 6e 65 78 74 2d 73 65 72 76 65 | ined)..networks;.news.next-serve |
| bec20 | 72 00 6e 6f 2d 61 75 74 6f 6e 6f 6d 6f 75 73 2d 66 6c 61 67 00 6e 6f 2d 6f 6e 2d 6c 69 6e 6b 2d | r.no-autonomous-flag.no-on-link- |
| bec40 | 66 6c 61 67 00 6e 6f 74 66 6f 75 6e 64 00 6e 6f 74 69 63 65 00 6e 74 70 00 6e 74 70 2d 73 65 72 | flag.notfound.notice.ntp.ntp-ser |
| bec60 | 76 65 72 00 6e 74 70 2d 73 65 72 76 65 72 73 00 6f 6e 65 20 72 75 6c 65 20 77 69 74 68 20 61 20 | ver.ntp-servers.one.rule.with.a. |
| bec80 | 4c 41 4e 20 28 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 29 20 61 6e 64 20 74 68 65 20 | LAN.(inbound-interface).and.the. |
| beca0 | 57 41 4e 20 28 69 6e 74 65 72 66 61 63 65 29 2e 00 6f 70 65 6e 76 70 6e 00 6f 73 70 66 36 64 00 | WAN.(interface)..openvpn.ospf6d. |
| becc0 | 6f 73 70 66 64 00 6f 73 70 66 64 20 73 75 70 70 6f 72 74 73 20 4f 70 61 71 75 65 20 4c 53 41 20 | ospfd.ospfd.supports.Opaque.LSA. |
| bece0 | 3a 72 66 63 3a 60 32 33 37 30 60 20 61 73 20 70 61 72 74 69 61 6c 20 73 75 70 70 6f 72 74 20 66 | :rfc:`2370`.as.partial.support.f |
| bed00 | 6f 72 20 4d 50 4c 53 20 54 72 61 66 66 69 63 20 45 6e 67 69 6e 65 65 72 69 6e 67 20 4c 53 41 73 | or.MPLS.Traffic.Engineering.LSAs |
| bed20 | 2e 20 54 68 65 20 6f 70 61 71 75 65 2d 6c 73 61 20 63 61 70 61 62 69 6c 69 74 79 20 6d 75 73 74 | ..The.opaque-lsa.capability.must |
| bed40 | 20 62 65 20 65 6e 61 62 6c 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | .be.enabled.in.the.configuration |
| bed60 | 2e 00 6f 74 68 65 72 2d 63 6f 6e 66 69 67 2d 66 6c 61 67 00 70 61 67 65 73 20 74 6f 20 73 6f 72 | ..other-config-flag.pages.to.sor |
| bed80 | 74 00 70 6f 6c 69 63 79 20 61 73 2d 70 61 74 68 2d 6c 69 73 74 00 70 6f 6c 69 63 79 20 63 6f 6d | t.policy.as-path-list.policy.com |
| beda0 | 6d 75 6e 69 74 79 2d 6c 69 73 74 00 70 6f 6c 69 63 79 20 65 78 74 63 6f 6d 6d 75 6e 69 74 79 2d | munity-list.policy.extcommunity- |
| bedc0 | 6c 69 73 74 00 70 6f 6c 69 63 79 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 | list.policy.large-community-list |
| bede0 | 00 70 6f 70 2d 73 65 72 76 65 72 00 70 72 65 66 65 72 72 65 64 2d 6c 69 66 65 74 69 6d 65 00 70 | .pop-server.preferred-lifetime.p |
| bee00 | 72 65 66 69 78 2d 6c 69 73 74 2c 20 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 00 70 73 65 75 | refix-list,.distribute-list.pseu |
| bee20 | 64 6f 2d 65 74 68 65 72 6e 65 74 00 72 61 6e 67 65 00 72 65 61 63 68 61 62 6c 65 2d 74 69 6d 65 | do-ethernet.range.reachable-time |
| bee40 | 00 72 65 73 65 74 20 63 6f 6d 6d 61 6e 64 73 00 72 65 74 72 61 6e 73 2d 74 69 6d 65 72 00 72 66 | .reset.commands.retrans-timer.rf |
| bee60 | 63 33 34 34 32 2d 73 74 61 74 69 63 2d 72 6f 75 74 65 2c 20 77 69 6e 64 6f 77 73 2d 73 74 61 74 | c3442-static-route,.windows-stat |
| bee80 | 69 63 2d 72 6f 75 74 65 00 72 66 63 33 37 36 38 2d 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 00 72 | ic-route.rfc3768-compatibility.r |
| beea0 | 69 67 68 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 31 37 32 2e 31 38 2e 32 30 32 2e 31 30 20 23 20 72 | ight.local_ip:.172.18.202.10.#.r |
| beec0 | 69 67 68 74 20 73 69 64 65 20 57 41 4e 20 49 50 00 72 69 67 68 74 20 6c 6f 63 61 6c 5f 69 70 3a | ight.side.WAN.IP.right.local_ip: |
| beee0 | 20 60 32 30 33 2e 30 2e 31 31 33 2e 32 60 20 23 20 72 65 6d 6f 74 65 20 6f 66 66 69 63 65 20 73 | .`203.0.113.2`.#.remote.office.s |
| bef00 | 69 64 65 20 57 41 4e 20 49 50 00 72 69 67 68 74 20 73 75 62 6e 65 74 3a 20 60 31 30 2e 30 2e 30 | ide.WAN.IP.right.subnet:.`10.0.0 |
| bef20 | 2e 30 2f 32 34 60 20 73 69 74 65 32 2c 72 65 6d 6f 74 65 20 6f 66 66 69 63 65 20 73 69 64 65 00 | .0/24`.site2,remote.office.side. |
| bef40 | 72 69 70 64 00 72 6f 75 6e 64 2d 72 6f 62 69 6e 00 72 6f 75 74 65 2d 6d 61 70 00 72 6f 75 74 65 | ripd.round-robin.route-map.route |
| bef60 | 72 73 00 73 46 6c 6f 77 00 73 46 6c 6f 77 20 69 73 20 61 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 | rs.sFlow.sFlow.is.a.technology.t |
| bef80 | 68 61 74 20 65 6e 61 62 6c 65 73 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 6f 66 20 6e 65 74 77 6f 72 | hat.enables.monitoring.of.networ |
| befa0 | 6b 20 74 72 61 66 66 69 63 20 62 79 20 73 65 6e 64 69 6e 67 20 73 61 6d 70 6c 65 64 20 70 61 63 | k.traffic.by.sending.sampled.pac |
| befc0 | 6b 65 74 73 20 74 6f 20 61 20 63 6f 6c 6c 65 63 74 6f 72 20 64 65 76 69 63 65 2e 00 73 65 63 75 | kets.to.a.collector.device..secu |
| befe0 | 72 69 74 79 00 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 6c 20 49 | rity.separated.list.of.virtual.I |
| bf000 | 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 75 72 61 | Ps.to.request.in.IKEv2.configura |
| bf020 | 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 | tion.payloads.or.IKEv1.Mode.Conf |
| bf040 | 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e 30 2e 30 | ig..The.wildcard.addresses.0.0.0 |
| bf060 | 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 61 | .0.and.::.request.an.arbitrary.a |
| bf080 | 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 79 20 62 | ddress,.specific.addresses.may.b |
| bf0a0 | 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 | e.defined..The.responder.may.ret |
| bf0c0 | 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 20 61 64 64 72 65 73 73 2c 20 6f 72 20 6e 6f 6e 65 | urn.a.different.address,.or.none |
| bf0e0 | 20 61 74 20 61 6c 6c 2e 20 44 65 66 69 6e 65 20 74 68 65 20 60 60 76 69 72 74 75 61 6c 2d 61 64 | .at.all..Define.the.``virtual-ad |
| bf100 | 64 72 65 73 73 60 60 20 6f 70 74 69 6f 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | dress``.option.to.configure.the. |
| bf120 | 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 68 69 65 | IP.address.in.a.site-to-site.hie |
| bf140 | 72 61 72 63 68 79 2e 00 73 65 72 76 65 72 20 65 78 61 6d 70 6c 65 00 73 65 72 76 65 72 2d 69 64 | rarchy..server.example.server-id |
| bf160 | 65 6e 74 69 66 69 65 72 00 73 65 74 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f | entifier.set.a.destination.and/o |
| bf180 | 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 | r.source.address..Accepted.input |
| bf1a0 | 3a 00 73 68 61 32 35 36 20 48 61 73 68 65 73 00 73 68 6f 77 20 63 6f 6d 6d 61 6e 64 73 00 73 69 | :.sha256.Hashes.show.commands.si |
| bf1c0 | 61 64 64 72 00 73 6c 6f 77 3a 20 52 65 71 75 65 73 74 20 70 61 72 74 6e 65 72 20 74 6f 20 74 72 | addr.slow:.Request.partner.to.tr |
| bf1e0 | 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 73 20 65 76 65 72 79 20 33 30 20 73 65 63 6f 6e 64 73 00 | ansmit.LACPDUs.every.30.seconds. |
| bf200 | 73 6d 74 70 2d 73 65 72 76 65 72 00 73 6f 66 74 77 61 72 65 20 66 69 6c 74 65 72 73 20 63 61 6e | smtp-server.software.filters.can |
| bf220 | 20 65 61 73 69 6c 79 20 62 65 20 61 64 64 65 64 20 74 6f 20 68 61 73 68 20 6f 76 65 72 20 6e 65 | .easily.be.added.to.hash.over.ne |
| bf240 | 77 20 70 72 6f 74 6f 63 6f 6c 73 00 73 6f 66 74 77 61 72 65 20 66 69 6c 74 65 72 73 20 63 61 6e | w.protocols.software.filters.can |
| bf260 | 20 65 61 73 69 6c 79 20 62 65 20 61 64 64 65 64 20 74 6f 20 68 61 73 68 20 6f 76 65 72 20 6e 65 | .easily.be.added.to.hash.over.ne |
| bf280 | 77 20 70 72 6f 74 6f 63 6f 6c 73 2c 00 73 6f 75 72 63 65 2d 68 61 73 68 69 6e 67 00 73 70 6f 6b | w.protocols,.source-hashing.spok |
| bf2a0 | 65 30 31 2d 73 70 6f 6b 65 30 34 00 73 70 6f 6b 65 30 35 00 73 74 61 74 69 63 2d 6d 61 70 70 69 | e01-spoke04.spoke05.static-mappi |
| bf2c0 | 6e 67 00 73 74 61 74 69 63 2d 72 6f 75 74 65 00 73 74 72 69 63 74 3a 20 45 61 63 68 20 69 6e 63 | ng.static-route.strict:.Each.inc |
| bf2e0 | 6f 6d 69 6e 67 20 70 61 63 6b 65 74 20 69 73 20 74 65 73 74 65 64 20 61 67 61 69 6e 73 74 20 74 | oming.packet.is.tested.against.t |
| bf300 | 68 65 20 46 49 42 20 61 6e 64 20 69 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 6e | he.FIB.and.if.the.interface.is.n |
| bf320 | 6f 74 20 74 68 65 20 62 65 73 74 20 72 65 76 65 72 73 65 20 70 61 74 68 20 74 68 65 20 70 61 63 | ot.the.best.reverse.path.the.pac |
| bf340 | 6b 65 74 20 63 68 65 63 6b 20 77 69 6c 6c 20 66 61 69 6c 2e 20 42 79 20 64 65 66 61 75 6c 74 20 | ket.check.will.fail..By.default. |
| bf360 | 66 61 69 6c 65 64 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2e 00 73 75 | failed.packets.are.discarded..su |
| bf380 | 62 6e 65 74 2d 6d 61 73 6b 00 73 75 72 69 63 61 74 61 00 73 79 73 6c 6f 67 00 74 61 69 6c 00 74 | bnet-mask.suricata.syslog.tail.t |
| bf3a0 | 63 5f 20 69 73 20 61 20 70 6f 77 65 72 66 75 6c 20 74 6f 6f 6c 20 66 6f 72 20 54 72 61 66 66 69 | c_.is.a.powerful.tool.for.Traffi |
| bf3c0 | 63 20 43 6f 6e 74 72 6f 6c 20 66 6f 75 6e 64 20 61 74 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 | c.Control.found.at.the.Linux.ker |
| bf3e0 | 6e 65 6c 2e 20 48 6f 77 65 76 65 72 2c 20 69 74 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | nel..However,.its.configuration. |
| bf400 | 69 73 20 6f 66 74 65 6e 20 63 6f 6e 73 69 64 65 72 65 64 20 61 20 63 75 6d 62 65 72 73 6f 6d 65 | is.often.considered.a.cumbersome |
| bf420 | 20 74 61 73 6b 2e 20 46 6f 72 74 75 6e 61 74 65 6c 79 2c 20 56 79 4f 53 20 65 61 73 65 73 20 74 | .task..Fortunately,.VyOS.eases.t |
| bf440 | 68 65 20 6a 6f 62 20 74 68 72 6f 75 67 68 20 69 74 73 20 43 4c 49 2c 20 77 68 69 6c 65 20 75 73 | he.job.through.its.CLI,.while.us |
| bf460 | 69 6e 67 20 60 60 74 63 60 60 20 61 73 20 62 61 63 6b 65 6e 64 2e 00 74 66 74 70 2d 73 65 72 76 | ing.``tc``.as.backend..tftp-serv |
| bf480 | 65 72 2d 6e 61 6d 65 00 74 68 69 73 20 6f 70 74 69 6f 6e 20 61 6c 6c 6f 77 73 20 74 6f 20 63 6f | er-name.this.option.allows.to.co |
| bf4a0 | 6e 66 69 67 75 72 65 20 70 72 65 66 69 78 2d 73 69 64 20 6f 6e 20 53 52 2e 20 54 68 65 20 e2 80 | nfigure.prefix-sid.on.SR..The... |
| bf4c0 | 98 6e 6f 2d 70 68 70 2d 66 6c 61 67 e2 80 99 20 6d 65 61 6e 73 20 4e 4f 20 50 65 6e 75 6c 74 69 | .no-php-flag....means.NO.Penulti |
| bf4e0 | 6d 61 74 65 20 48 6f 70 20 50 6f 70 70 69 6e 67 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 53 52 20 | mate.Hop.Popping.that.allows.SR. |
| bf500 | 6e 6f 64 65 20 74 6f 20 72 65 71 75 65 73 74 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 20 | node.to.request.to.its.neighbor. |
| bf520 | 74 6f 20 6e 6f 74 20 70 6f 70 20 74 68 65 20 6c 61 62 65 6c 2e 20 54 68 65 20 e2 80 98 65 78 70 | to.not.pop.the.label..The....exp |
| bf540 | 6c 69 63 69 74 2d 6e 75 6c 6c e2 80 99 20 66 6c 61 67 20 61 6c 6c 6f 77 73 20 53 52 20 6e 6f 64 | licit-null....flag.allows.SR.nod |
| bf560 | 65 20 74 6f 20 72 65 71 75 65 73 74 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 | e.to.request.to.its.neighbor.to. |
| bf580 | 73 65 6e 64 20 49 50 20 70 61 63 6b 65 74 20 77 69 74 68 20 74 68 65 20 45 58 50 4c 49 43 49 54 | send.IP.packet.with.the.EXPLICIT |
| bf5a0 | 2d 4e 55 4c 4c 20 6c 61 62 65 6c 2e 20 54 68 65 20 e2 80 98 6e 2d 66 6c 61 67 2d 63 6c 65 61 72 | -NULL.label..The....n-flag-clear |
| bf5c0 | e2 80 99 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 65 78 70 6c 69 63 | ....option.can.be.used.to.explic |
| bf5e0 | 69 74 6c 79 20 63 6c 65 61 72 20 74 68 65 20 4e 6f 64 65 20 66 6c 61 67 20 74 68 61 74 20 69 73 | itly.clear.the.Node.flag.that.is |
| bf600 | 20 73 65 74 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 50 72 65 66 69 78 2d 53 49 44 73 20 | .set.by.default.for.Prefix-SIDs. |
| bf620 | 61 73 73 6f 63 69 61 74 65 64 20 74 6f 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 73 73 65 73 | associated.to.loopback.addresses |
| bf640 | 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f | ..This.option.is.necessary.to.co |
| bf660 | 6e 66 69 67 75 72 65 20 41 6e 79 63 61 73 74 2d 53 49 44 73 2e 00 74 69 6d 65 2d 6f 66 66 73 65 | nfigure.Anycast-SIDs..time-offse |
| bf680 | 74 00 74 69 6d 65 2d 73 65 72 76 65 72 00 74 69 6d 65 2d 73 65 72 76 65 72 73 00 74 75 6e 6e 65 | t.time-server.time-servers.tunne |
| bf6a0 | 6c 00 75 73 65 20 36 20 28 6c 6f 63 61 6c 36 29 00 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | l.use.6.(local6).use.this.comman |
| bf6c0 | 64 20 74 6f 20 63 68 65 63 6b 20 69 66 20 74 68 65 72 65 20 69 73 20 61 6e 20 49 6e 74 65 6c c2 | d.to.check.if.there.is.an.Intel. |
| bf6e0 | ae 20 51 41 54 20 73 75 70 70 6f 72 74 65 64 20 50 72 6f 63 65 73 73 6f 72 20 69 6e 20 79 6f 75 | ..QAT.supported.Processor.in.you |
| bf700 | 72 20 73 79 73 74 65 6d 2e 00 75 73 65 72 00 75 75 63 70 00 76 61 6c 69 64 00 76 61 6c 69 64 2d | r.system..user.uucp.valid.valid- |
| bf720 | 6c 69 66 65 74 69 6d 65 00 76 65 74 68 20 69 6e 74 65 72 66 61 63 65 73 20 6e 65 65 64 20 74 6f | lifetime.veth.interfaces.need.to |
| bf740 | 20 62 65 20 63 72 65 61 74 65 64 20 69 6e 20 70 61 69 72 73 20 2d 20 69 74 27 73 20 63 61 6c 6c | .be.created.in.pairs.-.it's.call |
| bf760 | 65 64 20 74 68 65 20 70 65 65 72 20 6e 61 6d 65 00 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 | ed.the.peer.name.virtual.IP.addr |
| bf780 | 65 73 73 65 73 20 73 68 6f 75 6c 64 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 2e 20 49 66 20 6e 6f | esses.should.be.installed..If.no |
| bf7a0 | 74 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 61 64 64 72 65 73 73 65 73 20 77 69 6c 6c 20 62 | t.specified.the.addresses.will.b |
| bf7c0 | 65 20 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 | e.installed.on.the.outbound.inte |
| bf7e0 | 72 66 61 63 65 3b 00 76 78 6c 61 6e 00 77 61 72 6e 69 6e 67 00 77 65 20 64 65 73 63 72 69 62 65 | rface;.vxlan.warning.we.describe |
| bf800 | 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 53 52 20 49 53 49 53 20 2f 20 53 52 | d.the.configuration.SR.ISIS./.SR |
| bf820 | 20 4f 53 50 46 20 75 73 69 6e 67 20 32 20 63 6f 6e 6e 65 63 74 65 64 20 77 69 74 68 20 74 68 65 | .OSPF.using.2.connected.with.the |
| bf840 | 6d 20 74 6f 20 73 68 61 72 65 20 6c 61 62 65 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 77 65 | m.to.share.label.information..we |
| bf860 | 69 67 68 74 65 64 2d 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 77 65 69 67 68 74 65 64 | ighted-least-connection.weighted |
| bf880 | 2d 72 6f 75 6e 64 2d 72 6f 62 69 6e 00 77 68 69 6c 65 20 61 20 2a 62 79 74 65 2a 20 69 73 20 77 | -round-robin.while.a.*byte*.is.w |
| bf8a0 | 72 69 74 74 65 6e 20 61 73 20 61 20 73 69 6e 67 6c 65 20 2a 2a 62 2a 2a 2e 00 77 69 6e 73 2d 73 | ritten.as.a.single.**b**..wins-s |
| bf8c0 | 65 72 76 65 72 00 77 69 72 65 67 75 61 72 64 00 77 69 72 65 6c 65 73 73 00 77 69 74 68 20 3a 63 | erver.wireguard.wireless.with.:c |
| bf8e0 | 66 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 61 63 63 65 6c 65 72 61 74 69 6f 6e 20 71 | fgcmd:`set.system.acceleration.q |
| bf900 | 61 74 60 20 6f 6e 20 62 6f 74 68 20 73 79 73 74 65 6d 73 20 74 68 65 20 62 61 6e 64 77 69 64 74 | at`.on.both.systems.the.bandwidt |
| bf920 | 68 20 69 6e 63 72 65 61 73 65 73 2e 00 77 70 61 64 2d 75 72 6c 00 77 70 61 64 2d 75 72 6c 2c 20 | h.increases..wpad-url.wpad-url,. |
| bf940 | 77 70 61 64 2d 75 72 6c 20 63 6f 64 65 20 32 35 32 20 3d 20 74 65 78 74 00 77 77 61 6e 00 7a 65 | wpad-url.code.252.=.text.wwan.ze |
| bf960 | 62 72 61 00 4d 49 4d 45 2d 56 65 72 73 69 6f 6e 3a 20 31 2e 30 0a 43 6f 6e 74 65 6e 74 2d 54 79 | bra.MIME-Version:.1.0.Content-Ty |
| bf980 | 70 65 3a 20 74 65 78 74 2f 70 6c 61 69 6e 3b 20 63 68 61 72 73 65 74 3d 55 54 46 2d 38 0a 43 6f | pe:.text/plain;.charset=UTF-8.Co |
| bf9a0 | 6e 74 65 6e 74 2d 54 72 61 6e 73 66 65 72 2d 45 6e 63 6f 64 69 6e 67 3a 20 38 62 69 74 0a 58 2d | ntent-Transfer-Encoding:.8bit.X- |
| bf9c0 | 47 65 6e 65 72 61 74 6f 72 3a 20 4c 6f 63 61 6c 61 7a 79 20 28 68 74 74 70 73 3a 2f 2f 6c 6f 63 | Generator:.Localazy.(https://loc |
| bf9e0 | 61 6c 61 7a 79 2e 63 6f 6d 29 0a 50 72 6f 6a 65 63 74 2d 49 64 2d 56 65 72 73 69 6f 6e 3a 20 0a | alazy.com).Project-Id-Version:.. |
| bfa00 | 4c 61 6e 67 75 61 67 65 3a 20 64 65 0a 50 6c 75 72 61 6c 2d 46 6f 72 6d 73 3a 20 6e 70 6c 75 72 | Language:.de.Plural-Forms:.nplur |
| bfa20 | 61 6c 73 3d 32 3b 20 70 6c 75 72 61 6c 3d 28 6e 3d 3d 31 29 20 3f 20 30 20 3a 20 31 3b 0a 00 21 | als=2;.plural=(n==1).?.0.:.1;..! |
| bfa40 | 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 2f 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 | <h:h:h:h:h:h:h:h/x>:.Match.every |
| bfa60 | 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 | thing.except.the.specified.prefi |
| bfa80 | 78 2e 00 21 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 2d 3c 68 3a 68 3a 68 3a 68 3a 68 | x..!<h:h:h:h:h:h:h:h>-<h:h:h:h:h |
| bfaa0 | 3a 68 3a 68 3a 68 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 | :h:h:h>:.Match.everything.except |
| bfac0 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 72 61 6e 67 65 2e 00 21 3c 68 3a 68 3a 68 3a 68 3a | .the.specified.range..!<h:h:h:h: |
| bfae0 | 68 3a 68 3a 68 3a 68 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 | h:h:h:h>:.Match.everything.excep |
| bfb00 | 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 2e 00 21 3c 78 2e 78 2e 78 | t.the.specified.address..!<x.x.x |
| bfb20 | 2e 78 2f 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 | .x/x>:.Match.everything.except.t |
| bfb40 | 68 65 20 73 70 65 63 69 66 69 65 64 20 73 75 62 6e 65 74 2e 00 21 3c 78 2e 78 2e 78 2e 78 3e 2d | he.specified.subnet..!<x.x.x.x>- |
| bfb60 | 3c 78 2e 78 2e 78 2e 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 | <x.x.x.x>:.Match.everything.exce |
| bfb80 | 70 74 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 72 61 6e 67 65 2e 00 21 3c 78 2e 78 2e 78 2e | pt.the.specified.range..!<x.x.x. |
| bfba0 | 78 3e 3a 20 4d 61 74 63 68 20 65 76 65 72 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 | x>:.Match.everything.except.the. |
| bfbc0 | 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 2e 00 22 4d 61 6e 61 67 65 64 20 61 64 64 72 | specified.address.."Managed.addr |
| bfbe0 | 65 73 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 22 20 66 6c 61 67 00 22 4f 74 68 65 72 20 63 | ess.configuration".flag."Other.c |
| bfc00 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 22 20 66 6c 61 67 00 23 23 23 23 23 23 23 23 23 23 23 23 23 | onfiguration".flag.############# |
| bfc20 | 23 23 23 23 23 23 c3 a4 23 23 23 23 23 23 23 23 23 23 23 23 23 20 46 6c 6f 77 74 61 62 6c 65 73 | ######..#############.Flowtables |
| bfc40 | 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 23 23 23 23 23 23 23 23 | .Firewall.Configuration.######## |
| bfc60 | 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 23 00 28 54 68 69 73 20 | #########################.(This. |
| bfc80 | 63 61 6e 20 62 65 20 75 73 65 66 75 6c 20 77 68 65 6e 20 61 20 63 61 6c 6c 65 64 20 73 65 72 76 | can.be.useful.when.a.called.serv |
| bfca0 | 69 63 65 20 68 61 73 20 6d 61 6e 79 20 61 6e 64 2f 6f 72 20 6f 66 74 65 6e 20 63 68 61 6e 67 69 | ice.has.many.and/or.often.changi |
| bfcc0 | 6e 67 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 2d 20 65 2e 67 2e 20 | ng.destination.addresses.-.e.g.. |
| bfce0 | 4e 65 74 66 6c 69 78 2e 29 00 2a 2a 28 44 65 66 61 75 6c 74 29 2a 2a 20 46 6c 6f 77 73 20 61 72 | Netflix.).**(Default)**.Flows.ar |
| bfd00 | 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 35 2d 74 75 70 6c 65 2c 20 66 61 69 72 6e 65 | e.defined.by.the.5-tuple,.fairne |
| bfd20 | 73 73 20 69 73 20 61 70 70 6c 69 65 64 20 6f 76 65 72 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 | ss.is.applied.over.source.and.de |
| bfd40 | 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 61 6c 73 6f 20 6f 76 65 | stination.addresses.and.also.ove |
| bfd60 | 72 20 69 6e 64 69 76 69 64 75 61 6c 20 66 6c 6f 77 73 2e 00 2a 2a 31 2d 32 35 34 2a 2a 20 e2 80 | r.individual.flows..**1-254**... |
| bfd80 | 93 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 61 20 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 | ..interfaces.with.a.channel.numb |
| bfda0 | 65 72 20 69 6e 74 65 72 66 65 72 65 20 77 69 74 68 20 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e | er.interfere.with.interfering.in |
| bfdc0 | 74 65 72 66 61 63 65 73 20 61 6e 64 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 74 68 65 | terfaces.and.interfaces.with.the |
| bfde0 | 20 73 61 6d 65 20 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 2e 20 2a 2a 69 6e 74 65 72 66 65 72 | .same.channel.number..**interfer |
| bfe00 | 69 6e 67 2a 2a 20 e2 80 93 20 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 | ing**.....interfering.interfaces |
| bfe20 | 20 61 72 65 20 61 73 73 75 6d 65 64 20 74 6f 20 69 6e 74 65 72 66 65 72 65 20 77 69 74 68 20 61 | .are.assumed.to.interfere.with.a |
| bfe40 | 6c 6c 20 6f 74 68 65 72 20 63 68 61 6e 6e 65 6c 73 20 65 78 63 65 70 74 20 6e 6f 6e 69 6e 74 65 | ll.other.channels.except.noninte |
| bfe60 | 72 66 65 72 69 6e 67 20 63 68 61 6e 6e 65 6c 73 2e 20 2a 2a 6e 6f 6e 69 6e 74 65 72 66 65 72 69 | rfering.channels..**noninterferi |
| bfe80 | 6e 67 2a 2a 20 e2 80 93 20 6e 6f 6e 69 6e 74 65 72 66 65 72 69 6e 67 20 69 6e 74 65 72 66 61 63 | ng**.....noninterfering.interfac |
| bfea0 | 65 73 20 61 72 65 20 61 73 73 75 6d 65 64 20 74 6f 20 6f 6e 6c 79 20 69 6e 74 65 72 66 65 72 65 | es.are.assumed.to.only.interfere |
| bfec0 | 20 77 69 74 68 20 74 68 65 6d 73 65 6c 76 65 73 2e 00 2a 2a 31 2e 20 43 6f 6e 66 69 72 6d 20 49 | .with.themselves..**1..Confirm.I |
| bfee0 | 50 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 62 65 74 77 65 65 6e 20 74 75 6e 6e 65 6c 20 73 6f | P.connectivity.between.tunnel.so |
| bff00 | 75 72 63 65 2d 61 64 64 72 65 73 73 20 61 6e 64 20 72 65 6d 6f 74 65 3a 2a 2a 00 2a 2a 31 30 2a | urce-address.and.remote:**.**10* |
| bff20 | 2a 20 2d 20 3a 61 62 62 72 3a 60 49 50 46 49 58 20 28 49 50 20 46 6c 6f 77 20 49 6e 66 6f 72 6d | *.-.:abbr:`IPFIX.(IP.Flow.Inform |
| bff40 | 61 74 69 6f 6e 20 45 78 70 6f 72 74 29 60 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 33 39 31 37 | ation.Export)`.as.per.:rfc:`3917 |
| bff60 | 60 00 2a 2a 32 2e 20 43 6f 6e 66 69 72 6d 20 74 68 65 20 6c 69 6e 6b 20 74 79 70 65 20 68 61 73 | `.**2..Confirm.the.link.type.has |
| bff80 | 20 62 65 65 6e 20 73 65 74 20 74 6f 20 47 52 45 3a 2a 2a 00 2a 2a 33 2e 20 43 6f 6e 66 69 72 6d | .been.set.to.GRE:**.**3..Confirm |
| bffa0 | 20 49 50 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 61 63 72 6f 73 73 20 74 68 65 20 74 75 6e 6e | .IP.connectivity.across.the.tunn |
| bffc0 | 65 6c 3a 2a 2a 00 2a 2a 35 2a 2a 20 2d 20 4d 6f 73 74 20 63 6f 6d 6d 6f 6e 20 76 65 72 73 69 6f | el:**.**5**.-.Most.common.versio |
| bffe0 | 6e 2c 20 62 75 74 20 72 65 73 74 72 69 63 74 65 64 20 74 6f 20 49 50 76 34 20 66 6c 6f 77 73 20 | n,.but.restricted.to.IPv4.flows. |
| c0000 | 6f 6e 6c 79 00 2a 2a 39 2a 2a 20 2d 20 4e 65 74 46 6c 6f 77 20 76 65 72 73 69 6f 6e 20 39 20 28 | only.**9**.-.NetFlow.version.9.( |
| c0020 | 64 65 66 61 75 6c 74 29 00 2a 2a 41 53 20 70 61 74 68 20 6c 65 6e 67 74 68 20 63 68 65 63 6b 2a | default).**AS.path.length.check* |
| c0040 | 2a 00 2a 2a 41 63 74 69 76 65 2d 61 63 74 69 76 65 2a 2a 3a 20 62 6f 74 68 20 44 48 43 50 20 73 | *.**Active-active**:.both.DHCP.s |
| c0060 | 65 72 76 65 72 73 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 44 48 43 50 20 72 65 71 75 | ervers.will.respond.to.DHCP.requ |
| c0080 | 65 73 74 73 2e 20 49 66 20 60 60 6d 6f 64 65 60 60 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 | ests..If.``mode``.is.not.defined |
| c00a0 | 2c 20 74 68 69 73 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 2e 00 | ,.this.is.the.default.behavior.. |
| c00c0 | 2a 2a 41 63 74 69 76 65 2d 70 61 73 73 69 76 65 2a 2a 3a 20 6f 6e 6c 79 20 60 60 70 72 69 6d 61 | **Active-passive**:.only.``prima |
| c00e0 | 72 79 60 60 20 73 65 72 76 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 44 48 43 50 | ry``.server.will.respond.to.DHCP |
| c0100 | 20 72 65 71 75 65 73 74 73 2e 20 49 66 20 74 68 69 73 20 73 65 72 76 65 72 20 67 6f 65 73 20 6f | .requests..If.this.server.goes.o |
| c0120 | 66 66 6c 69 6e 65 2c 20 74 68 65 6e 20 60 60 73 65 63 6f 6e 64 61 72 79 60 60 20 73 65 72 76 65 | ffline,.then.``secondary``.serve |
| c0140 | 72 20 77 69 6c 6c 20 74 61 6b 65 20 70 6c 61 63 65 2e 00 2a 2a 41 6c 72 65 61 64 79 2d 73 65 6c | r.will.take.place..**Already-sel |
| c0160 | 65 63 74 65 64 20 65 78 74 65 72 6e 61 6c 20 63 68 65 63 6b 2a 2a 00 2a 2a 41 70 70 6c 69 63 61 | ected.external.check**.**Applica |
| c0180 | 74 69 6f 6e 20 43 6f 6d 70 61 74 69 62 69 6c 69 74 79 2a 2a 3a 20 53 6f 6d 65 20 61 70 70 6c 69 | tion.Compatibility**:.Some.appli |
| c01a0 | 63 61 74 69 6f 6e 73 20 61 6e 64 20 70 72 6f 74 6f 63 6f 6c 73 20 6d 61 79 20 6e 6f 74 20 77 6f | cations.and.protocols.may.not.wo |
| c01c0 | 72 6b 20 77 65 6c 6c 20 77 69 74 68 20 43 47 4e 41 54 20 64 75 65 20 74 6f 20 74 68 65 69 72 20 | rk.well.with.CGNAT.due.to.their. |
| c01e0 | 72 65 6c 69 61 6e 63 65 20 6f 6e 20 75 6e 69 71 75 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 | reliance.on.unique.public.IP.add |
| c0200 | 72 65 73 73 65 73 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 49 6e 62 6f 75 6e 64 20 | resses..**Applies.to:**.Inbound. |
| c0220 | 74 72 61 66 66 69 63 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 4f 75 74 62 6f 75 6e | traffic..**Applies.to:**.Outboun |
| c0240 | 64 20 54 72 61 66 66 69 63 2e 00 2a 2a 41 70 70 6c 69 65 73 20 74 6f 3a 2a 2a 20 4f 75 74 62 6f | d.Traffic..**Applies.to:**.Outbo |
| c0260 | 75 6e 64 20 74 72 61 66 66 69 63 2e 00 2a 2a 41 70 70 6c 79 20 74 68 65 20 74 72 61 66 66 69 63 | und.traffic..**Apply.the.traffic |
| c0280 | 20 70 6f 6c 69 63 79 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 6e 67 72 65 73 73 20 | .policy.to.an.interface.ingress. |
| c02a0 | 6f 72 20 65 67 72 65 73 73 2a 2a 2e 00 2a 2a 42 72 69 64 67 65 20 50 6f 72 74 3f 2a 2a 3a 20 63 | or.egress**..**Bridge.Port?**:.c |
| c02c0 | 68 6f 6f 73 65 20 61 70 70 72 6f 70 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 69 | hoose.appropiate.path.based.on.i |
| c02e0 | 66 20 69 6e 74 65 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 | f.interface.were.the.packet.was. |
| c0300 | 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 6f 72 | received.is.part.of.a.bridge,.or |
| c0320 | 20 6e 6f 74 2e 00 2a 2a 42 72 69 64 67 65 20 50 6f 72 74 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 | .not..**Bridge.Port?**:.choose.a |
| c0340 | 70 70 72 6f 70 72 69 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 77 68 65 74 68 65 72 | ppropriate.path.based.on.whether |
| c0360 | 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 | .interface.where.the.packet.was. |
| c0380 | 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 6f 72 | received.is.part.of.a.bridge,.or |
| c03a0 | 20 6e 6f 74 2e 00 2a 2a 43 61 6c 63 75 6c 61 74 65 20 74 68 65 20 4e 75 6d 62 65 72 20 6f 66 20 | .not..**Calculate.the.Number.of. |
| c03c0 | 53 75 62 73 63 72 69 62 65 72 73 20 70 65 72 20 50 75 62 6c 69 63 20 49 50 2a 2a 3a 00 2a 2a 43 | Subscribers.per.Public.IP**:.**C |
| c03e0 | 69 73 63 6f 20 49 4f 53 20 52 6f 75 74 65 72 3a 2a 2a 00 2a 2a 43 6c 69 65 6e 74 20 49 50 20 61 | isco.IOS.Router:**.**Client.IP.a |
| c0400 | 64 64 72 65 73 73 20 76 69 61 20 49 50 20 72 61 6e 67 65 20 64 65 66 69 6e 69 74 69 6f 6e 2a 2a | ddress.via.IP.range.definition** |
| c0420 | 00 2a 2a 43 6c 69 65 6e 74 20 49 50 20 73 75 62 6e 65 74 73 20 76 69 61 20 43 49 44 52 20 6e 6f | .**Client.IP.subnets.via.CIDR.no |
| c0440 | 74 61 74 69 6f 6e 2a 2a 00 2a 2a 43 6c 75 73 74 65 72 2d 4c 69 73 74 20 6c 65 6e 67 74 68 20 63 | tation**.**Cluster-List.length.c |
| c0460 | 68 65 63 6b 2a 2a 00 2a 2a 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 2a 2a 3a 20 72 75 6c | heck**.**Conntrack.Ignore**:.rul |
| c0480 | 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f | es.defined.under.``set.system.co |
| c04a0 | 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e | nntrack.ignore.[ipv4.|.ipv6].... |
| c04c0 | 60 60 2e 00 2a 2a 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 2a 2a 3a 20 72 75 6c 65 73 20 | ``..**Conntrack.Ignore**:.rules. |
| c04e0 | 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 | defined.under.``set.system.connt |
| c0500 | 72 61 63 6b 20 69 67 6e 6f 72 65 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 2e 2e 2e 60 60 2e | rack.ignore.[ipv4.|.ipv6]....``. |
| c0520 | 20 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d | .Starting.from.vyos-1.5-rolling- |
| c0540 | 32 30 32 34 30 36 31 32 30 30 32 30 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 6f 6e 65 | 202406120020,.configuration.done |
| c0560 | 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 | .in.this.section.can.be.done.in. |
| c0580 | 60 60 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 70 72 65 72 6f 75 74 | ``firewall.[ipv4.|.ipv6].prerout |
| c05a0 | 69 6e 67 20 2e 2e 2e 60 60 2e 20 46 6f 72 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 72 65 61 | ing....``..For.compatibility.rea |
| c05c0 | 73 6f 6e 73 2c 20 74 68 69 73 20 66 65 61 74 75 72 65 20 69 73 20 73 74 69 6c 6c 20 70 72 65 73 | sons,.this.feature.is.still.pres |
| c05e0 | 65 6e 74 2c 20 62 75 74 20 69 74 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 | ent,.but.it.will.be.removed.in.t |
| c0600 | 68 65 20 66 75 74 75 72 65 2e 00 2a 2a 43 6f 73 74 2d 45 66 66 65 63 74 69 76 65 2a 2a 3a 20 52 | he.future..**Cost-Effective**:.R |
| c0620 | 65 64 75 63 65 73 20 74 68 65 20 63 6f 73 74 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 | educes.the.cost.associated.with. |
| c0640 | 61 63 71 75 69 72 69 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 70 75 62 6c 69 63 20 49 50 76 34 | acquiring.additional.public.IPv4 |
| c0660 | 20 61 64 64 72 65 73 73 65 73 2e 00 2a 2a 43 72 65 61 74 65 20 61 20 74 72 61 66 66 69 63 20 70 | .addresses..**Create.a.traffic.p |
| c0680 | 6f 6c 69 63 79 2a 2a 2e 00 2a 2a 44 48 43 50 28 76 36 29 2a 2a 00 2a 2a 44 48 43 50 76 36 20 50 | olicy**..**DHCP(v6)**.**DHCPv6.P |
| c06a0 | 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 50 44 29 2a 2a 00 2a 2a 44 65 73 74 69 6e | refix.Delegation.(PD)**.**Destin |
| c06c0 | 61 74 69 6f 6e 20 4e 41 54 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 | ation.NAT**:.rules.defined.under |
| c06e0 | 20 60 60 73 65 74 20 5b 6e 61 74 20 7c 20 6e 61 74 36 36 5d 20 64 65 73 74 69 6e 61 74 69 6f 6e | .``set.[nat.|.nat66].destination |
| c0700 | 2e 2e 2e 60 60 2e 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 20 74 68 65 20 72 6f 75 74 | ...``..**Destination.is.the.rout |
| c0720 | 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 6e 20 61 70 70 72 6f 70 72 69 61 74 65 20 70 61 74 | er?**:.choose.an.appropriate.pat |
| c0740 | 68 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 | h.based.on.destination.IP.addres |
| c0760 | 73 2e 20 54 72 61 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 65 73 20 74 6f 20 | s..Transit.forward.continues.to. |
| c0780 | 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 77 68 65 72 65 | **forward**,.while.traffic.where |
| c07a0 | 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 63 | .the.destination.IP.address.is.c |
| c07c0 | 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 65 | onfigured.on.the.router.continue |
| c07e0 | 73 20 74 6f 20 2a 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 | s.to.**input**..**Destination.is |
| c0800 | 20 74 68 65 20 72 6f 75 74 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 69 61 74 | .the.router?**:.choose.appropiat |
| c0820 | 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 | e.path.based.on.destination.IP.a |
| c0840 | 64 64 72 65 73 73 2e 20 54 72 61 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e 75 6e | ddress..Transit.forward.continun |
| c0860 | 65 73 20 74 6f 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 | es.to.**forward**,.while.traffic |
| c0880 | 20 74 68 61 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 | .that.destination.IP.address.is. |
| c08a0 | 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e 75 | configured.on.the.router.continu |
| c08c0 | 65 73 20 74 6f 20 2a 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 65 73 74 69 6e 61 74 69 6f 6e 20 69 | es.to.**input**..**Destination.i |
| c08e0 | 73 20 74 68 65 20 72 6f 75 74 65 72 3f 2a 2a 3a 20 63 68 6f 6f 73 65 20 61 70 70 72 6f 70 72 69 | s.the.router?**:.choose.appropri |
| c0900 | 61 74 65 20 70 61 74 68 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 | ate.path.based.on.destination.IP |
| c0920 | 20 61 64 64 72 65 73 73 2e 20 54 72 61 6e 73 69 74 20 66 6f 72 77 61 72 64 20 63 6f 6e 74 69 6e | .address..Transit.forward.contin |
| c0940 | 75 65 73 20 74 6f 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 | ues.to.**forward**,.while.traffi |
| c0960 | 63 20 74 68 61 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 | c.that.destination.IP.address.is |
| c0980 | 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 63 6f 6e 74 69 6e | .configured.on.the.router.contin |
| c09a0 | 75 65 73 20 74 6f 20 2a 2a 69 6e 70 75 74 2a 2a 2e 00 2a 2a 44 6f 63 75 6d 65 6e 74 61 74 69 6f | ues.to.**input**..**Documentatio |
| c09c0 | 6e 20 75 6e 64 65 72 20 64 65 76 65 6c 6f 70 6d 65 6e 74 2a 2a 00 2a 2a 45 73 74 69 6d 61 74 65 | n.under.development**.**Estimate |
| c09e0 | 20 50 6f 72 74 73 20 4e 65 65 64 65 64 20 70 65 72 20 53 75 62 73 63 72 69 62 65 72 2a 2a 3a 00 | .Ports.Needed.per.Subscriber**:. |
| c0a00 | 2a 2a 45 74 68 65 72 6e 65 74 20 28 70 72 6f 74 6f 63 6f 6c 2c 20 64 65 73 74 69 6e 61 74 69 6f | **Ethernet.(protocol,.destinatio |
| c0a20 | 6e 20 61 64 64 72 65 73 73 20 6f 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 29 2a 2a 00 2a | n.address.or.source.address)**.* |
| c0a40 | 2a 45 78 61 6d 70 6c 65 3a 2a 2a 00 2a 2a 45 78 74 65 72 6e 61 6c 20 63 68 65 63 6b 2a 2a 00 2a | *Example:**.**External.check**.* |
| c0a60 | 2a 46 69 72 65 77 61 6c 6c 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 63 6f 6d 6d 61 6e 64 73 | *Firewall.Prerouting**:.commands |
| c0a80 | 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 | .found.under.``set.firewall.ipv4 |
| c0aa0 | 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 20 2e 2e 2e 60 60 00 2a 2a 46 69 72 65 77 61 6c 6c | .prerouting.raw....``.**Firewall |
| c0ac0 | 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e | .Prerouting**:.commands.found.un |
| c0ae0 | 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 70 72 65 72 6f 75 74 69 | der.``set.firewall.ipv6.prerouti |
| c0b00 | 6e 67 20 72 61 77 20 2e 2e 2e 60 60 00 2a 2a 46 69 72 65 77 61 6c 6c 20 6d 61 72 6b 2a 2a 00 2a | ng.raw....``.**Firewall.mark**.* |
| c0b20 | 2a 46 69 72 65 77 61 6c 6c 20 70 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 72 75 6c 65 73 20 64 65 | *Firewall.prerouting**:.rules.de |
| c0b40 | 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 | fined.under.``set.firewall.[ipv4 |
| c0b60 | 20 7c 20 69 70 76 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 2e 2e 2e 60 60 2e 20 41 6c | .|.ipv6].prerouting.raw...``..Al |
| c0b80 | 6c 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 | l.rules.defined.in.this.section. |
| c0ba0 | 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | are.processed.before.connection. |
| c0bc0 | 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 46 6c 6f 77 74 61 62 6c 65 20 | tracking.subsystem..**Flowtable. |
| c0be0 | 52 65 66 65 72 65 6e 63 65 3a 2a 2a 20 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 6b 65 72 6e 65 6c | Reference:**.https://docs.kernel |
| c0c00 | 2e 6f 72 67 2f 6e 65 74 77 6f 72 6b 69 6e 67 2f 6e 66 5f 66 6c 6f 77 74 61 62 6c 65 2e 68 74 6d | .org/networking/nf_flowtable.htm |
| c0c20 | 6c 00 2a 2a 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2a 2a 20 6f 66 20 4e 65 | l.**For.more.information**.of.Ne |
| c0c40 | 74 66 69 6c 74 65 72 20 68 6f 6f 6b 73 20 61 6e 64 20 4c 69 6e 75 78 20 6e 65 74 77 6f 72 6b 69 | tfilter.hooks.and.Linux.networki |
| c0c60 | 6e 67 20 70 61 63 6b 65 74 20 66 6c 6f 77 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 | ng.packet.flows.can.be.found.in. |
| c0c80 | 60 4e 65 74 66 69 6c 74 65 72 2d 48 6f 6f 6b 73 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e | `Netfilter-Hooks.<https://wiki.n |
| c0ca0 | 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e | ftables.org/wiki-nftables/index. |
| c0cc0 | 70 68 70 2f 4e 65 74 66 69 6c 74 65 72 5f 68 6f 6f 6b 73 3e 60 5f 00 2a 2a 46 6f 72 77 61 72 64 | php/Netfilter_hooks>`_.**Forward |
| c0ce0 | 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 | .(Bridge)**:.stage.where.traffic |
| c0d00 | 20 74 68 61 74 20 69 73 20 74 72 61 73 73 70 61 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 | .that.is.trasspasing.through.the |
| c0d20 | 20 62 72 69 64 67 65 20 69 73 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c | .bridge.is.filtered.and.controll |
| c0d40 | 65 64 3a 00 2a 2a 46 6f 72 77 61 72 64 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 | ed:.**Forward.(Bridge)**:.stage. |
| c0d60 | 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 74 72 65 73 70 61 73 69 6e 67 | where.traffic.that.is.trespasing |
| c0d80 | 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 20 69 73 20 66 69 6c 74 65 72 65 64 20 | .through.the.bridge.is.filtered. |
| c0da0 | 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 46 6f 72 77 61 72 64 20 28 42 72 69 64 67 | and.controlled:.**Forward.(Bridg |
| c0dc0 | 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 | e)**:.stage.where.traffic.that.i |
| c0de0 | 73 20 74 72 65 73 70 61 73 73 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 62 72 69 64 67 65 | s.trespassing.through.the.bridge |
| c0e00 | 20 69 73 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 46 | .is.filtered.and.controlled:.**F |
| c0e20 | 6f 72 77 61 72 64 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 6e 73 69 74 20 74 72 | orward**:.stage.where.transit.tr |
| c0e40 | 61 66 66 69 63 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f | affic.can.be.filtered.and.contro |
| c0e60 | 6c 6c 65 64 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 | lled..This.includes.ipv4.and.ipv |
| c0e80 | 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a | 6.filtering.rules,.defined.in:.* |
| c0ea0 | 2a 48 61 72 64 77 61 72 65 20 6f 66 66 6c 6f 61 64 3a 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 73 | *Hardware.offload:**.should.be.s |
| c0ec0 | 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 4e 49 43 73 20 75 73 65 64 2e 00 2a 2a 49 47 50 | upported.by.the.NICs.used..**IGP |
| c0ee0 | 20 63 6f 73 74 20 63 68 65 63 6b 2a 2a 00 2a 2a 49 50 76 34 20 28 44 53 43 50 20 76 61 6c 75 65 | .cost.check**.**IPv4.(DSCP.value |
| c0f00 | 2c 20 6d 61 78 69 6d 75 6d 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 2c 20 70 72 6f 74 6f 63 6f | ,.maximum.packet.length,.protoco |
| c0f20 | 6c 2c 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 2a 2a 20 2a 2a 64 65 73 74 69 6e 61 74 69 | l,.source.address,**.**destinati |
| c0f40 | 6f 6e 20 61 64 64 72 65 73 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 74 69 6e 61 | on.address,.source.port,.destina |
| c0f60 | 74 69 6f 6e 20 70 6f 72 74 20 6f 72 20 54 43 50 20 66 6c 61 67 73 29 2a 2a 00 2a 2a 49 50 76 34 | tion.port.or.TCP.flags)**.**IPv4 |
| c0f80 | 20 41 64 64 72 65 73 73 20 43 6f 6e 73 65 72 76 61 74 69 6f 6e 2a 2a 3a 20 43 47 4e 41 54 20 68 | .Address.Conservation**:.CGNAT.h |
| c0fa0 | 65 6c 70 73 20 6d 69 74 69 67 61 74 65 20 74 68 65 20 65 78 68 61 75 73 74 69 6f 6e 20 6f 66 20 | elps.mitigate.the.exhaustion.of. |
| c0fc0 | 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 62 79 20 61 6c 6c 6f 77 69 6e 67 20 6d 75 6c 74 69 | IPv4.addresses.by.allowing.multi |
| c0fe0 | 70 6c 65 20 63 75 73 74 6f 6d 65 72 73 20 74 6f 20 73 68 61 72 65 20 61 20 73 69 6e 67 6c 65 20 | ple.customers.to.share.a.single. |
| c1000 | 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 2e 00 2a 2a 49 50 76 36 20 28 44 53 43 50 20 | public.IP.address..**IPv6.(DSCP. |
| c1020 | 76 61 6c 75 65 2c 20 6d 61 78 69 6d 75 6d 20 70 61 79 6c 6f 61 64 20 6c 65 6e 67 74 68 2c 20 70 | value,.maximum.payload.length,.p |
| c1040 | 72 6f 74 6f 63 6f 6c 2c 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 2a 2a 20 2a 2a 64 65 73 | rotocol,.source.address,**.**des |
| c1060 | 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 | tination.address,.source.port,.d |
| c1080 | 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 6f 72 20 54 43 50 20 66 6c 61 67 73 29 2a 2a 00 | estination.port.or.TCP.flags)**. |
| c10a0 | 2a 2a 49 66 20 79 6f 75 20 61 72 65 20 6c 6f 6f 6b 69 6e 67 20 66 6f 72 20 61 20 70 6f 6c 69 63 | **If.you.are.looking.for.a.polic |
| c10c0 | 79 20 66 6f 72 20 79 6f 75 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2a 2a 20 62 75 | y.for.your.outbound.traffic**.bu |
| c10e0 | 74 20 79 6f 75 20 64 6f 6e 27 74 20 6b 6e 6f 77 20 77 68 69 63 68 20 6f 6e 65 20 79 6f 75 20 6e | t.you.don't.know.which.one.you.n |
| c1100 | 65 65 64 20 61 6e 64 20 79 6f 75 20 64 6f 6e 27 74 20 77 61 6e 74 20 74 6f 20 67 6f 20 74 68 72 | eed.and.you.don't.want.to.go.thr |
| c1120 | 6f 75 67 68 20 65 76 65 72 79 20 70 6f 73 73 69 62 6c 65 20 70 6f 6c 69 63 79 20 73 68 6f 77 6e | ough.every.possible.policy.shown |
| c1140 | 20 68 65 72 65 2c 20 2a 2a 6f 75 72 20 62 65 74 20 69 73 20 74 68 61 74 20 68 69 67 68 6c 79 20 | .here,.**our.bet.is.that.highly. |
| c1160 | 6c 69 6b 65 6c 79 20 79 6f 75 20 61 72 65 20 6c 6f 6f 6b 69 6e 67 20 66 6f 72 20 61 2a 2a 20 53 | likely.you.are.looking.for.a**.S |
| c1180 | 68 61 70 65 72 5f 20 2a 2a 70 6f 6c 69 63 79 20 61 6e 64 20 79 6f 75 20 77 61 6e 74 20 74 6f 2a | haper_.**policy.and.you.want.to* |
| c11a0 | 2a 20 3a 72 65 66 3a 60 73 65 74 20 69 74 73 20 71 75 65 75 65 73 20 3c 65 6d 62 65 64 3e 60 20 | *.:ref:`set.its.queues.<embed>`. |
| c11c0 | 2a 2a 61 73 20 46 51 2d 43 6f 44 65 6c 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 | **as.FQ-CoDel**..**Important.not |
| c11e0 | 65 20 61 62 6f 75 74 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 3a 2a | e.about.conntrack.ignore.rules:* |
| c1200 | 2a 20 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 | *.Starting.from.vyos-1.5-rolling |
| c1220 | 2d 32 30 32 34 30 36 31 32 30 30 32 30 2c 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 20 63 61 6e 20 | -202406120020,.ignore.rules.can. |
| c1240 | 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 | be.defined.in.``set.firewall.[ip |
| c1260 | 76 34 20 7c 20 69 70 76 36 5d 20 70 72 65 72 6f 75 74 69 6e 67 20 72 61 77 20 2e 2e 2e 60 60 2e | v4.|.ipv6].prerouting.raw....``. |
| c1280 | 20 49 74 27 73 20 65 78 70 65 63 74 65 64 20 74 68 61 74 20 69 6e 20 74 68 65 20 66 75 74 75 72 | .It's.expected.that.in.the.futur |
| c12a0 | 65 20 74 68 65 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 20 77 69 6c | e.the.conntrack.ignore.rules.wil |
| c12c0 | 6c 20 62 65 20 72 65 6d 6f 76 65 64 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 | l.be.removed..**Important.note.a |
| c12e0 | 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 61 20 64 65 66 | bout.default-actions:**.If.a.def |
| c1300 | 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 | ault.action.for.any.base.chain.i |
| c1320 | 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 | s.not.defined,.then.the.default. |
| c1340 | 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 | action.is.set.to.**accept**.for. |
| c1360 | 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 | that.chain..For.custom.chains,.i |
| c1380 | 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 | f.the.default.action.is.not.defi |
| c13a0 | 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 | ned,.then.the.default-action.is. |
| c13c0 | 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 | set.to.**drop**.**Important.note |
| c13e0 | 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 | .about.default-actions:**.If.def |
| c1400 | 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 | ault.action.for.any.base.chain.i |
| c1420 | 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 | s.not.defined,.then.the.default. |
| c1440 | 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 | action.is.set.to.**accept**.for. |
| c1460 | 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 | that.chain..For.custom.chains,.i |
| c1480 | 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c | f.default.action.is.not.defined, |
| c14a0 | 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 | .then.the.default-action.is.set. |
| c14c0 | 74 6f 20 2a 2a 64 72 6f 70 2a 2a 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f | to.**drop**.**Important.note.abo |
| c14e0 | 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 | ut.default-actions:**.If.default |
| c1500 | 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f | .action.for.any.base.chain.is.no |
| c1520 | 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 | t.defined,.then.the.default.acti |
| c1540 | 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 | on.is.set.to.**accept**.for.that |
| c1560 | 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 64 65 | .chain..For.custom.chains,.if.de |
| c1580 | 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 | fault.action.is.not.defined,.the |
| c15a0 | 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a | n.the.default-action.is.set.to.* |
| c15c0 | 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 57 69 63 68 74 69 67 65 72 20 48 69 6e 77 65 69 73 20 7a 75 20 | *drop**..**Wichtiger.Hinweis.zu. |
| c15e0 | 53 74 61 6e 64 61 72 64 61 6b 74 69 6f 6e 65 6e 3a 20 2a 2a 20 57 65 6e 6e 20 64 69 65 20 53 74 | Standardaktionen:.**.Wenn.die.St |
| c1600 | 61 6e 64 61 72 64 61 6b 74 69 6f 6e 20 66 c3 bc 72 20 65 69 6e 65 20 4b 65 74 74 65 20 6e 69 63 | andardaktion.f..r.eine.Kette.nic |
| c1620 | 68 74 20 64 65 66 69 6e 69 65 72 74 20 69 73 74 2c 20 69 73 74 20 64 69 65 20 53 74 61 6e 64 61 | ht.definiert.ist,.ist.die.Standa |
| c1640 | 72 64 61 6b 74 69 6f 6e 20 66 c3 bc 72 20 64 69 65 73 65 20 4b 65 74 74 65 20 61 75 66 20 2a 2a | rdaktion.f..r.diese.Kette.auf.** |
| c1660 | 20 61 63 63 65 70 74 2a 2a 20 67 65 73 65 74 7a 74 2e 20 4e 75 72 20 66 c3 bc 72 20 62 65 6e 75 | .accept**.gesetzt..Nur.f..r.benu |
| c1680 | 74 7a 65 72 64 65 66 69 6e 69 65 72 74 65 20 4b 65 74 74 65 6e 20 69 73 74 20 64 69 65 20 53 74 | tzerdefinierte.Ketten.ist.die.St |
| c16a0 | 61 6e 64 61 72 64 61 6b 74 69 6f 6e 20 61 75 66 20 2a 2a 64 72 6f 70 2a 2a 20 67 65 73 65 74 7a | andardaktion.auf.**drop**.gesetz |
| c16c0 | 74 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c | t..**Important.note.about.defaul |
| c16e0 | 74 2d 61 63 74 69 6f 6e 73 3a 2a 2a 20 49 66 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 | t-actions:**.If.default.action.f |
| c1700 | 6f 72 20 61 6e 79 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 | or.any.chain.is.not.defined,.the |
| c1720 | 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a | n.the.default.action.is.set.to.* |
| c1740 | 2a 64 72 6f 70 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 00 2a 2a 49 6d 70 6f 72 74 | *drop**.for.that.chain..**Import |
| c1760 | 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a 2a | ant.note.about.default-actions:* |
| c1780 | 2a 20 49 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 20 | *.If.the.default.action.for.any. |
| c17a0 | 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 | base.chain.is.not.defined,.then. |
| c17c0 | 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 61 | the.default.action.is.set.to.**a |
| c17e0 | 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 74 | ccept**.for.that.chain..For.cust |
| c1800 | 6f 6d 20 63 68 61 69 6e 73 20 69 66 20 61 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 | om.chains.if.a.default.action.is |
| c1820 | 20 6e 6f 74 20 64 65 66 69 6e 65 64 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 | .not.defined.then.the.default-ac |
| c1840 | 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a 49 6d 70 6f 72 | tion.is.set.to.**drop**..**Impor |
| c1860 | 74 61 6e 74 20 6e 6f 74 65 20 61 62 6f 75 74 20 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 73 3a | tant.note.about.default-actions: |
| c1880 | 2a 2a 20 49 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 61 6e 79 | **.If.the.default.action.for.any |
| c18a0 | 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e | .base.chain.is.not.defined,.then |
| c18c0 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a | .the.default.action.is.set.to.** |
| c18e0 | 61 63 63 65 70 74 2a 2a 20 66 6f 72 20 74 68 61 74 20 63 68 61 69 6e 2e 20 46 6f 72 20 63 75 73 | accept**.for.that.chain..For.cus |
| c1900 | 74 6f 6d 20 63 68 61 69 6e 73 2c 20 69 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f | tom.chains,.if.the.default.actio |
| c1920 | 6e 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 64 65 66 61 75 | n.is.not.defined,.then.the.defau |
| c1940 | 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 2a 2a 64 72 6f 70 2a 2a 2e 00 2a 2a | lt-action.is.set.to.**drop**..** |
| c1960 | 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 6f 6e 20 75 73 61 67 65 20 6f 66 20 74 65 72 6d 73 | Important.note.on.usage.of.terms |
| c1980 | 3a 2a 2a 20 54 68 65 20 66 69 72 65 77 61 6c 6c 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 | :**.The.firewall.makes.use.of.th |
| c19a0 | 65 20 74 65 72 6d 73 20 60 66 6f 72 77 61 72 64 60 2c 20 60 69 6e 70 75 74 60 2c 20 61 6e 64 20 | e.terms.`forward`,.`input`,.and. |
| c19c0 | 60 6f 75 74 70 75 74 60 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 20 4d 6f | `output`.for.firewall.policy..Mo |
| c19e0 | 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 4e 65 74 66 69 6c 74 65 72 20 68 6f 6f 6b | re.information.of.Netfilter.hook |
| c1a00 | 73 20 61 6e 64 20 4c 69 6e 75 78 20 6e 65 74 77 6f 72 6b 69 6e 67 20 70 61 63 6b 65 74 20 66 6c | s.and.Linux.networking.packet.fl |
| c1a20 | 6f 77 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 60 4e 65 74 66 69 6c 74 65 72 2d 48 | ows.can.be.found.in.`Netfilter-H |
| c1a40 | 6f 6f 6b 73 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f | ooks.<https://wiki.nftables.org/ |
| c1a60 | 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 4e 65 74 66 69 6c 74 65 | wiki-nftables/index.php/Netfilte |
| c1a80 | 72 5f 68 6f 6f 6b 73 3e 60 5f 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 20 6f 6e 20 75 | r_hooks>`_.**Important.note.on.u |
| c1aa0 | 73 61 67 65 20 6f 66 20 74 65 72 6d 73 3a 2a 2a 20 54 68 65 20 66 69 72 65 77 61 6c 6c 20 6d 61 | sage.of.terms:**.The.firewall.ma |
| c1ac0 | 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 74 65 72 6d 73 20 60 69 6e 60 2c 20 60 6f 75 74 60 | kes.use.of.the.terms.`in`,.`out` |
| c1ae0 | 2c 20 61 6e 64 20 60 6c 6f 63 61 6c 60 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 | ,.and.`local`.for.firewall.polic |
| c1b00 | 79 2e 20 55 73 65 72 73 20 65 78 70 65 72 69 65 6e 63 65 64 20 77 69 74 68 20 6e 65 74 66 69 6c | y..Users.experienced.with.netfil |
| c1b20 | 74 65 72 20 6f 66 74 65 6e 20 63 6f 6e 66 75 73 65 20 60 69 6e 60 20 74 6f 20 62 65 20 61 20 72 | ter.often.confuse.`in`.to.be.a.r |
| c1b40 | 65 66 65 72 65 6e 63 65 20 74 6f 20 74 68 65 20 60 49 4e 50 55 54 60 20 63 68 61 69 6e 2c 20 61 | eference.to.the.`INPUT`.chain,.a |
| c1b60 | 6e 64 20 60 6f 75 74 60 20 74 68 65 20 60 4f 55 54 50 55 54 60 20 63 68 61 69 6e 20 66 72 6f 6d | nd.`out`.the.`OUTPUT`.chain.from |
| c1b80 | 20 6e 65 74 66 69 6c 74 65 72 2e 20 54 68 69 73 20 69 73 20 6e 6f 74 20 74 68 65 20 63 61 73 65 | .netfilter..This.is.not.the.case |
| c1ba0 | 2e 20 54 68 65 73 65 20 69 6e 73 74 65 61 64 20 69 6e 64 69 63 61 74 65 20 74 68 65 20 75 73 65 | ..These.instead.indicate.the.use |
| c1bc0 | 20 6f 66 20 74 68 65 20 60 46 4f 52 57 41 52 44 60 20 63 68 61 69 6e 20 61 6e 64 20 65 69 74 68 | .of.the.`FORWARD`.chain.and.eith |
| c1be0 | 65 72 20 74 68 65 20 69 6e 70 75 74 20 6f 72 20 6f 75 74 70 75 74 20 69 6e 74 65 72 66 61 63 65 | er.the.input.or.output.interface |
| c1c00 | 2e 20 54 68 65 20 60 49 4e 50 55 54 60 20 63 68 61 69 6e 2c 20 77 68 69 63 68 20 69 73 20 75 73 | ..The.`INPUT`.chain,.which.is.us |
| c1c20 | 65 64 20 66 6f 72 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 4f 53 2c 20 | ed.for.local.traffic.to.the.OS,. |
| c1c40 | 69 73 20 61 20 72 65 66 65 72 65 6e 63 65 20 74 6f 20 61 73 20 60 6c 6f 63 61 6c 60 20 77 69 74 | is.a.reference.to.as.`local`.wit |
| c1c60 | 68 20 72 65 73 70 65 63 74 20 74 6f 20 69 74 73 20 69 6e 70 75 74 20 69 6e 74 65 72 66 61 63 65 | h.respect.to.its.input.interface |
| c1c80 | 2e 00 2a 2a 49 6d 70 6f 72 74 61 6e 74 20 6e 6f 74 65 3a 2a 2a 20 54 68 69 73 20 64 6f 63 75 6d | ..**Important.note:**.This.docum |
| c1ca0 | 65 6e 74 61 74 69 6f 6e 20 69 73 20 76 61 6c 69 64 20 6f 6e 6c 79 20 66 6f 72 20 56 79 4f 53 20 | entation.is.valid.only.for.VyOS. |
| c1cc0 | 53 61 67 69 74 74 61 20 70 72 69 6f 72 20 74 6f 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 | Sagitta.prior.to.1.4-rolling-202 |
| c1ce0 | 33 30 38 30 34 30 35 35 37 00 2a 2a 57 69 63 68 74 69 67 65 72 20 48 69 6e 77 65 69 73 3a 20 2a | 308040557.**Wichtiger.Hinweis:.* |
| c1d00 | 2a 20 44 69 65 73 65 20 44 6f 6b 75 6d 65 6e 74 61 74 69 6f 6e 20 69 73 74 20 6e 75 72 20 66 c3 | *.Diese.Dokumentation.ist.nur.f. |
| c1d20 | bc 72 20 56 79 4f 53 20 53 61 67 69 74 74 61 20 76 6f 72 20 31 2e 34 2d 52 6f 6c 6c 69 6e 67 2d | .r.VyOS.Sagitta.vor.1.4-Rolling- |
| c1d40 | 59 59 59 59 4d 4d 44 44 48 48 4d 4d 20 67 c3 bc 6c 74 69 67 00 2a 2a 49 6e 70 75 74 20 28 42 72 | YYYYMMDDHHMM.g..ltig.**Input.(Br |
| c1d60 | 69 64 67 65 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 64 65 73 | idge)**:.stage.where.traffic.des |
| c1d80 | 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 20 63 61 6e 20 | tined.for.the.bridge.itself.can. |
| c1da0 | 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 2a 2a 49 6e | be.filtered.and.controlled:.**In |
| c1dc0 | 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 | put**:.stage.where.traffic.desti |
| c1de0 | 6e 61 74 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 | nated.to.the.router.itself.can.b |
| c1e00 | 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 54 68 69 73 20 | e.filtered.and.controlled..This. |
| c1e20 | 69 73 20 77 68 65 72 65 20 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 73 65 63 75 72 69 6e 67 20 | is.where.all.rules.for.securing. |
| c1e40 | 74 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 74 61 6b 65 20 70 6c 61 63 65 2e 20 54 68 | the.router.should.take.place..Th |
| c1e60 | 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 | is.includes.ipv4.and.ipv6.filter |
| c1e80 | 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 49 6e 70 75 74 2a 2a | ing.rules,.defined.in:.**Input** |
| c1ea0 | 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 | :.stage.where.traffic.destined.f |
| c1ec0 | 6f 72 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 | or.the.router.itself.can.be.filt |
| c1ee0 | 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 54 68 69 73 20 69 73 20 77 68 65 | ered.and.controlled..This.is.whe |
| c1f00 | 72 65 20 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 73 65 63 75 72 69 6e 67 20 74 68 65 20 72 6f | re.all.rules.for.securing.the.ro |
| c1f20 | 75 74 65 72 20 73 68 6f 75 6c 64 20 74 61 6b 65 20 70 6c 61 63 65 2e 20 54 68 69 73 20 69 6e 63 | uter.should.take.place..This.inc |
| c1f40 | 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 75 | ludes.ipv4.and.ipv6.filtering.ru |
| c1f60 | 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 49 6e 74 65 72 66 61 63 65 20 6e 61 6d | les,.defined.in:.**Interface.nam |
| c1f80 | 65 2a 2a 00 2a 2a 4c 45 46 54 2a 2a 00 2a 2a 4c 45 46 54 3a 2a 2a 20 2a 20 57 41 4e 20 69 6e 74 | e**.**LEFT**.**LEFT:**.*.WAN.int |
| c1fa0 | 65 72 66 61 63 65 20 6f 6e 20 60 65 74 68 30 2e 32 30 31 60 20 2a 20 60 65 74 68 30 2e 32 30 31 | erface.on.`eth0.201`.*.`eth0.201 |
| c1fc0 | 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 37 32 2e 31 38 2e 32 30 31 2e 31 30 2f 32 | `.interface.IP:.`172.18.201.10/2 |
| c1fe0 | 34 60 20 2a 20 60 76 74 69 31 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 | 4`.*.`vti10`.interface.IP:.`10.0 |
| c2000 | 2e 30 2e 32 2f 33 31 60 20 2a 20 60 64 75 6d 30 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 | .0.2/31`.*.`dum0`.interface.IP:. |
| c2020 | 60 31 30 2e 30 2e 31 31 2e 31 2f 32 34 60 20 28 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 | `10.0.11.1/24`.(for.testing.purp |
| c2040 | 6f 73 65 73 29 00 2a 2a 4c 61 79 65 72 20 33 20 62 72 69 64 67 65 2a 2a 3a 20 57 68 65 6e 20 61 | oses).**Layer.3.bridge**:.When.a |
| c2060 | 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 | n.IP.address.is.assigned.to.the. |
| c2080 | 62 72 69 64 67 65 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 69 66 20 74 72 61 66 66 69 63 | bridge.interface,.and.if.traffic |
| c20a0 | 20 69 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 74 6f 20 74 68 69 73 20 49 | .is.sent.to.the.router.to.this.I |
| c20c0 | 50 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 75 73 69 6e 67 20 73 75 63 68 20 49 50 20 61 73 20 | P.(for.example.using.such.IP.as. |
| c20e0 | 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 29 2c 20 74 68 65 6e 20 72 75 6c 65 73 20 64 65 66 | default.gateway),.then.rules.def |
| c2100 | 69 6e 65 64 20 66 6f 72 20 2a 2a 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 2a 2a 20 77 6f 6e | ined.for.**bridge.firewall**.won |
| c2120 | 27 74 20 6d 61 74 63 68 2c 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 61 6e 61 6c 79 73 69 73 20 | 't.match,.and.firewall.analysis. |
| c2140 | 63 6f 6e 74 69 6e 75 65 73 20 61 74 20 2a 2a 49 50 20 6c 61 79 65 72 2a 2a 2e 00 2a 2a 4c 65 61 | continues.at.**IP.layer**..**Lea |
| c2160 | 66 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 2a 2a 4c 65 61 66 33 20 63 6f 6e 66 | f2.configuration:**.**Leaf3.conf |
| c2180 | 69 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 2a 2a 4c 69 6e 75 78 20 73 79 73 74 65 6d 64 2d 6e 65 74 | iguration:**.**Linux.systemd-net |
| c21a0 | 77 6f 72 6b 64 3a 2a 2a 00 2a 2a 4c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 63 68 65 63 | workd:**.**Local.preference.chec |
| c21c0 | 6b 2a 2a 00 2a 2a 4c 6f 63 61 6c 20 72 6f 75 74 65 20 63 68 65 63 6b 2a 2a 00 2a 2a 4d 45 44 20 | k**.**Local.route.check**.**MED. |
| c21e0 | 63 68 65 63 6b 2a 2a 00 2a 2a 4d 75 6c 74 69 2d 70 61 74 68 20 63 68 65 63 6b 2a 2a 00 2a 2a 4e | check**.**Multi-path.check**.**N |
| c2200 | 6f 64 65 20 31 2a 2a 00 2a 2a 4e 6f 64 65 20 31 3a 2a 2a 00 2a 2a 4e 6f 64 65 20 32 2a 2a 00 2a | ode.1**.**Node.1:**.**Node.2**.* |
| c2220 | 2a 4e 6f 64 65 20 32 3a 2a 2a 00 2a 2a 4e 6f 64 65 31 3a 2a 2a 00 2a 2a 4e 6f 64 65 32 3a 2a 2a | *Node.2:**.**Node1:**.**Node2:** |
| c2240 | 00 2a 2a 4f 50 54 49 4f 4e 41 4c 3a 2a 2a 20 45 78 63 6c 75 64 65 20 49 6e 74 65 72 2d 56 4c 41 | .**OPTIONAL:**.Exclude.Inter-VLA |
| c2260 | 4e 20 74 72 61 66 66 69 63 20 28 62 65 74 77 65 65 6e 20 56 4c 41 4e 31 30 20 61 6e 64 20 56 4c | N.traffic.(between.VLAN10.and.VL |
| c2280 | 41 4e 31 31 29 20 66 72 6f 6d 20 50 42 52 00 2a 2a 4f 53 50 46 20 6e 65 74 77 6f 72 6b 20 72 6f | AN11).from.PBR.**OSPF.network.ro |
| c22a0 | 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 | uting.table**.....includes.a.lis |
| c22c0 | 74 20 6f 66 20 61 63 71 75 69 72 65 64 20 72 6f 75 74 65 73 20 66 6f 72 20 61 6c 6c 20 61 63 63 | t.of.acquired.routes.for.all.acc |
| c22e0 | 65 73 73 69 62 6c 65 20 6e 65 74 77 6f 72 6b 73 20 28 6f 72 20 61 67 67 72 65 67 61 74 65 64 20 | essible.networks.(or.aggregated. |
| c2300 | 61 72 65 61 20 72 61 6e 67 65 73 29 20 6f 66 20 4f 53 50 46 20 73 79 73 74 65 6d 2e 20 22 49 41 | area.ranges).of.OSPF.system.."IA |
| c2320 | 22 20 66 6c 61 67 20 6d 65 61 6e 73 20 74 68 61 74 20 72 6f 75 74 65 20 64 65 73 74 69 6e 61 74 | ".flag.means.that.route.destinat |
| c2340 | 69 6f 6e 20 69 73 20 69 6e 20 74 68 65 20 61 72 65 61 20 74 6f 20 77 68 69 63 68 20 74 68 65 20 | ion.is.in.the.area.to.which.the. |
| c2360 | 72 6f 75 74 65 72 20 69 73 20 6e 6f 74 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 2e 65 2e 20 69 74 | router.is.not.connected,.i.e..it |
| c2380 | e2 80 99 73 20 61 6e 20 69 6e 74 65 72 2d 61 72 65 61 20 70 61 74 68 2e 20 49 6e 20 73 71 75 61 | ...s.an.inter-area.path..In.squa |
| c23a0 | 72 65 20 62 72 61 63 6b 65 74 73 20 61 20 73 75 6d 6d 61 72 79 20 6d 65 74 72 69 63 20 66 6f 72 | re.brackets.a.summary.metric.for |
| c23c0 | 20 61 6c 6c 20 6c 69 6e 6b 73 20 74 68 72 6f 75 67 68 20 77 68 69 63 68 20 61 20 70 61 74 68 20 | .all.links.through.which.a.path. |
| c23e0 | 6c 69 65 73 20 74 6f 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 20 69 73 20 73 70 65 63 69 66 69 65 | lies.to.this.network.is.specifie |
| c2400 | 64 2e 20 22 76 69 61 22 20 70 72 65 66 69 78 20 64 65 66 69 6e 65 73 20 61 20 72 6f 75 74 65 72 | d.."via".prefix.defines.a.router |
| c2420 | 2d 67 61 74 65 77 61 79 2c 20 69 2e 65 2e 20 74 68 65 20 66 69 72 73 74 20 72 6f 75 74 65 72 20 | -gateway,.i.e..the.first.router. |
| c2440 | 6f 6e 20 74 68 65 20 77 61 79 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 6e | on.the.way.to.the.destination.(n |
| c2460 | 65 78 74 20 68 6f 70 29 2e 20 2a 2a 4f 53 50 46 20 72 6f 75 74 65 72 20 72 6f 75 74 69 6e 67 20 | ext.hop)..**OSPF.router.routing. |
| c2480 | 74 61 62 6c 65 2a 2a 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 20 61 20 6c 69 73 74 20 6f 66 20 61 | table**.....includes.a.list.of.a |
| c24a0 | 63 71 75 69 72 65 64 20 72 6f 75 74 65 73 20 74 6f 20 61 6c 6c 20 61 63 63 65 73 73 69 62 6c 65 | cquired.routes.to.all.accessible |
| c24c0 | 20 41 42 52 73 20 61 6e 64 20 41 53 42 52 73 2e 20 2a 2a 4f 53 50 46 20 65 78 74 65 72 6e 61 6c | .ABRs.and.ASBRs..**OSPF.external |
| c24e0 | 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2a 2a 20 e2 80 93 20 69 6e 63 6c 75 64 65 73 20 61 20 | .routing.table**.....includes.a. |
| c2500 | 6c 69 73 74 20 6f 66 20 61 63 71 75 69 72 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 | list.of.acquired.routes.that.are |
| c2520 | 20 65 78 74 65 72 6e 61 6c 20 74 6f 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 22 | .external.to.the.OSPF.process.." |
| c2540 | 45 22 20 66 6c 61 67 20 70 6f 69 6e 74 73 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6c | E".flag.points.to.the.external.l |
| c2560 | 69 6e 6b 20 6d 65 74 72 69 63 20 74 79 70 65 20 28 45 31 20 e2 80 93 20 6d 65 74 72 69 63 20 74 | ink.metric.type.(E1.....metric.t |
| c2580 | 79 70 65 20 31 2c 20 45 32 20 e2 80 93 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 29 2e 20 45 78 | ype.1,.E2.....metric.type.2)..Ex |
| c25a0 | 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 6d 65 74 72 69 63 20 69 73 20 70 72 69 6e 74 65 64 20 69 6e | ternal.link.metric.is.printed.in |
| c25c0 | 20 74 68 65 20 22 3c 6d 65 74 72 69 63 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 69 63 | .the."<metric.of.the.router.whic |
| c25e0 | 68 20 61 64 76 65 72 74 69 73 65 64 20 74 68 65 20 6c 69 6e 6b 3e 2f 3c 6c 69 6e 6b 20 6d 65 74 | h.advertised.the.link>/<link.met |
| c2600 | 72 69 63 3e 22 20 66 6f 72 6d 61 74 2e 00 2a 2a 4f 6e 65 20 67 61 74 65 77 61 79 3a 2a 2a 00 2a | ric>".format..**One.gateway:**.* |
| c2620 | 2a 4f 72 69 67 69 6e 20 63 68 65 63 6b 2a 2a 00 2a 2a 4f 75 74 70 75 74 20 28 42 72 69 64 67 65 | *Origin.check**.**Output.(Bridge |
| c2640 | 29 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 | )**:.stage.where.traffic.that.or |
| c2660 | 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 20 | iginates.from.the.bridge.itself. |
| c2680 | 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 3a 00 | can.be.filtered.and.controlled:. |
| c26a0 | 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | **Output.Filter**:.``set.firewal |
| c26c0 | 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e | l.[ipv4.|.ipv6].output.filter... |
| c26e0 | 2e 60 60 2e 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 | .``..**Output.Filter**:.``set.fi |
| c2700 | 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e | rewall.ipv4.output.filter....``. |
| c2720 | 20 52 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 | .Rules.defined.in.this.section.a |
| c2740 | 72 65 20 70 72 6f 63 65 73 73 65 64 20 61 66 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 | re.processed.after.connection.tr |
| c2760 | 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 46 69 6c 74 65 | acking.subsystem..**Output.Filte |
| c2780 | 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 | r**:.``set.firewall.ipv6.output. |
| c27a0 | 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 20 52 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 | filter....``..Rules.defined.in.t |
| c27c0 | 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 61 66 74 65 72 20 | his.section.are.processed.after. |
| c27e0 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a | connection.tracking.subsystem..* |
| c2800 | 2a 4f 75 74 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 | *Output.Prerouting**:.``set.fire |
| c2820 | 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 | wall.[ipv4.|.ipv6].output.filter |
| c2840 | 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f 75 | ....``..As.described.in.**Prerou |
| c2860 | 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 | ting**,.rules.defined.in.this.se |
| c2880 | 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 | ction.are.processed.before.conne |
| c28a0 | 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 | ction.tracking.subsystem..**Outp |
| c28c0 | 75 74 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 | ut.Prerouting**:.``set.firewall. |
| c28e0 | 69 70 76 34 20 6f 75 74 70 75 74 20 72 61 77 20 2e 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 72 69 | ipv4.output.raw....``..As.descri |
| c2900 | 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 65 66 | bed.in.**Prerouting**,.rules.def |
| c2920 | 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 | ined.in.this.section.are.process |
| c2940 | 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 | ed.before.connection.tracking.su |
| c2960 | 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 20 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 | bsystem..**Output.Prerouting**:. |
| c2980 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 72 61 77 20 2e | ``set.firewall.ipv6.output.raw.. |
| c29a0 | 2e 2e 60 60 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 | ..``..As.described.in.**Prerouti |
| c29c0 | 6e 67 2a 2a 2c 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 | ng**,.rules.defined.in.this.sect |
| c29e0 | 69 6f 6e 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 65 66 6f 72 65 20 63 6f 6e 6e 65 63 74 | ion.are.processed.before.connect |
| c2a00 | 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 2a 2a 4f 75 74 70 75 74 | ion.tracking.subsystem..**Output |
| c2a20 | 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 69 73 20 | **:.stage.where.traffic.that.is. |
| c2a40 | 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 | originated.by.the.router.itself. |
| c2a60 | 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 | can.be.filtered.and.controlled.. |
| c2a80 | 42 61 72 65 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 | Bare.in.mind.that.this.traffic.c |
| c2aa0 | 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 74 65 64 | an.be.a.new.connection.originted |
| c2ac0 | 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f | .by.a.internal.process.running.o |
| c2ae0 | 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 63 | n.VyOS.router,.such.as.NTP,.or.c |
| c2b00 | 61 6e 20 62 65 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 | an.be.a.response.to.traffic.rece |
| c2b20 | 69 76 65 64 20 65 78 74 65 72 6e 61 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 74 2a | ived.externaly.through.**inputt* |
| c2b40 | 2a 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 | *.(for.example.response.to.an.ss |
| c2b60 | 68 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 | h.login.attempt.to.the.router).. |
| c2b80 | 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 | This.includes.ipv4.and.ipv6.filt |
| c2ba0 | 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 | ering.rules,.defined.in:.**Outpu |
| c2bc0 | 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 | t**:.stage.where.traffic.that.or |
| c2be0 | 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 | iginates.from.the.router.itself. |
| c2c00 | 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 | can.be.filtered.and.controlled.. |
| c2c20 | 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 | Bear.in.mind.that.this.traffic.c |
| c2c40 | 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 | an.be.a.new.connection.originate |
| c2c60 | 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 | d.by.a.internal.process.running. |
| c2c80 | 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 | on.VyOS.router,.such.as.NTP,.or. |
| c2ca0 | 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 | a.response.to.traffic.received.e |
| c2cc0 | 78 74 65 72 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 | xternally.through.**input**.(for |
| c2ce0 | 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 | .example.response.to.an.ssh.logi |
| c2d00 | 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 | n.attempt.to.the.router)..This.i |
| c2d20 | 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 | ncludes.ipv4.and.ipv6.filtering. |
| c2d40 | 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 | rules,.defined.in:.**Output**:.s |
| c2d60 | 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 | tage.where.traffic.that.originat |
| c2d80 | 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 | es.from.the.router.itself.can.be |
| c2da0 | 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 | .filtered.and.controlled..Bear.i |
| c2dc0 | 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 | n.mind.that.this.traffic.can.be. |
| c2de0 | 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 | a.new.connection.originated.by.a |
| c2e00 | 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f | .internal.process.running.on.VyO |
| c2e20 | 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 73 70 | S.router,.such.as.NTP,.or.a.resp |
| c2e40 | 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 6e 61 | onse.to.traffic.received.externa |
| c2e60 | 6c 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 6d 70 | lly.through.**input**.(for.examp |
| c2e80 | 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 74 65 | le.response.to.an.ssh.login.atte |
| c2ea0 | 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 | mpt.to.the.router)..This.include |
| c2ec0 | 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 72 75 6c 65 73 2c 20 61 6e 64 20 74 77 6f 20 64 | s.ipv4.and.ipv6.rules,.and.two.d |
| c2ee0 | 69 66 66 65 72 65 6e 74 20 73 65 63 74 69 6f 6e 73 20 61 72 65 20 70 72 65 73 65 6e 74 3a 00 2a | ifferent.sections.are.present:.* |
| c2f00 | 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 | *Output**:.stage.where.traffic.t |
| c2f20 | 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 | hat.originates.from.the.router.i |
| c2f40 | 74 73 65 6c 66 20 63 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f | tself.can.be.filtered.and.contro |
| c2f60 | 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 | lled..Bear.in.mind.that.this.tra |
| c2f80 | 66 66 69 63 20 63 61 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 | ffic.can.be.a.new.connection.ori |
| c2fa0 | 67 69 6e 61 74 65 64 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 | ginated.by.a.internal.process.ru |
| c2fc0 | 6e 6e 69 6e 67 20 6f 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 | nning.on.VyOS.router,.such.as.NT |
| c2fe0 | 50 2c 20 6f 72 20 61 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 | P,.or.a.response.to.traffic.rece |
| c3000 | 69 76 65 64 20 65 78 74 65 72 6e 61 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a | ived.externaly.through.**input** |
| c3020 | 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 | .(for.example.response.to.an.ssh |
| c3040 | 20 6c 6f 67 69 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 | .login.attempt.to.the.router)..T |
| c3060 | 68 69 73 20 69 6e 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 | his.includes.ipv4.and.ipv6.filte |
| c3080 | 72 69 6e 67 20 72 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 | ring.rules,.defined.in:.**Output |
| c30a0 | 2a 2a 3a 20 73 74 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 | **:.stage.where.traffic.that.ori |
| c30c0 | 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 | ginates.from.the.router.itself.c |
| c30e0 | 61 6e 20 62 65 20 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 | an.be.filtered.and.controlled..B |
| c3100 | 65 61 72 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 | ear.in.mind.that.this.traffic.ca |
| c3120 | 6e 20 62 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 | n.be.a.new.connection.originated |
| c3140 | 20 62 79 20 61 20 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f | .by.a.internal.process.running.o |
| c3160 | 6e 20 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 | n.VyOS.router,.such.as.NTP,.or.a |
| c3180 | 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 | .response.to.traffic.received.ex |
| c31a0 | 74 65 72 6e 61 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 74 2a 2a 20 28 66 6f 72 20 | ternaly.through.**inputt**.(for. |
| c31c0 | 65 78 61 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e | example.response.to.an.ssh.login |
| c31e0 | 20 61 74 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e | .attempt.to.the.router)..This.in |
| c3200 | 63 6c 75 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 66 69 6c 74 65 72 69 6e 67 20 72 | cludes.ipv4.and.ipv6.filtering.r |
| c3220 | 75 6c 65 73 2c 20 64 65 66 69 6e 65 64 20 69 6e 3a 00 2a 2a 4f 75 74 70 75 74 2a 2a 3a 20 73 74 | ules,.defined.in:.**Output**:.st |
| c3240 | 61 67 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 | age.where.traffic.that.originate |
| c3260 | 73 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 20 63 61 6e 20 62 65 20 | s.from.the.router.itself.can.be. |
| c3280 | 66 69 6c 74 65 72 65 64 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 6c 65 64 2e 20 42 65 61 72 20 69 6e | filtered.and.controlled..Bear.in |
| c32a0 | 20 6d 69 6e 64 20 74 68 61 74 20 74 68 69 73 20 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 61 | .mind.that.this.traffic.can.be.a |
| c32c0 | 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 61 20 | .new.connection.originated.by.a. |
| c32e0 | 69 6e 74 65 72 6e 61 6c 20 70 72 6f 63 65 73 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 20 | internal.process.running.on.the. |
| c3300 | 56 79 4f 53 20 72 6f 75 74 65 72 20 73 75 63 68 20 61 73 20 4e 54 50 2c 20 6f 72 20 61 20 72 65 | VyOS.router.such.as.NTP,.or.a.re |
| c3320 | 73 70 6f 6e 73 65 20 74 6f 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 65 78 74 65 72 | sponse.to.traffic.received.exter |
| c3340 | 6e 61 6c 6c 79 20 74 68 72 6f 75 67 68 20 2a 2a 69 6e 70 75 74 2a 2a 20 28 66 6f 72 20 65 78 61 | nally.through.**input**.(for.exa |
| c3360 | 6d 70 6c 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 61 6e 20 73 73 68 20 6c 6f 67 69 6e 20 61 74 | mple.response.to.an.ssh.login.at |
| c3380 | 74 65 6d 70 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 29 2e 20 54 68 69 73 20 69 6e 63 6c 75 | tempt.to.the.router)..This.inclu |
| c33a0 | 64 65 73 20 69 70 76 34 20 61 6e 64 20 69 70 76 36 20 72 75 6c 65 73 2c 20 61 6e 64 20 74 77 6f | des.ipv4.and.ipv6.rules,.and.two |
| c33c0 | 20 64 69 66 66 65 72 65 6e 74 20 73 65 63 74 69 6f 6e 73 20 61 72 65 20 70 72 65 73 65 6e 74 3a | .different.sections.are.present: |
| c33e0 | 00 2a 2a 50 65 65 72 20 61 64 64 72 65 73 73 2a 2a 00 2a 2a 50 65 72 66 6f 72 6d 61 6e 63 65 20 | .**Peer.address**.**Performance. |
| c3400 | 4f 76 65 72 68 65 61 64 73 2a 2a 3a 20 54 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 72 6f | Overheads**:.The.translation.pro |
| c3420 | 63 65 73 73 20 63 61 6e 20 69 6e 74 72 6f 64 75 63 65 20 6c 61 74 65 6e 63 79 20 61 6e 64 20 70 | cess.can.introduce.latency.and.p |
| c3440 | 6f 74 65 6e 74 69 61 6c 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 62 6f 74 74 6c 65 6e 65 63 6b 73 | otential.performance.bottlenecks |
| c3460 | 2c 20 65 73 70 65 63 69 61 6c 6c 79 20 75 6e 64 65 72 20 68 69 67 68 20 6c 6f 61 64 2e 00 2a 2a | ,.especially.under.high.load..** |
| c3480 | 50 6f 6c 69 63 79 20 52 6f 75 74 65 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e | Policy.Route**:.rules.defined.un |
| c34a0 | 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 63 79 20 5b 72 6f 75 74 65 20 7c 20 72 6f 75 74 65 36 | der.``set.policy.[route.|.route6 |
| c34c0 | 5d 20 2e 2e 2e 60 60 2e 00 2a 2a 50 6f 6c 69 63 79 20 64 65 66 69 6e 69 74 69 6f 6e 3a 2a 2a 00 | ]....``..**Policy.definition:**. |
| c34e0 | 2a 2a 50 6f 72 74 20 41 6c 6c 6f 63 61 74 69 6f 6e 20 4c 69 6d 69 74 73 2a 2a 3a 20 45 61 63 68 | **Port.Allocation.Limits**:.Each |
| c3500 | 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 68 61 73 20 61 20 6c 69 6d 69 74 65 64 | .public.IP.address.has.a.limited |
| c3520 | 20 6e 75 6d 62 65 72 20 6f 66 20 70 6f 72 74 73 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 65 | .number.of.ports,.which.can.be.e |
| c3540 | 78 68 61 75 73 74 65 64 2c 20 61 66 66 65 63 74 69 6e 67 20 74 68 65 20 61 62 69 6c 69 74 79 20 | xhausted,.affecting.the.ability. |
| c3560 | 74 6f 20 65 73 74 61 62 6c 69 73 68 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 2a 2a | to.establish.new.connections..** |
| c3580 | 50 6f 72 74 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f 63 6f 6c 2a 2a 3a 20 50 43 50 20 69 73 20 | Port.Control.Protocol**:.PCP.is. |
| c35a0 | 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2e 00 2a 2a 50 6f 73 74 72 6f 75 74 69 6e 67 2a 2a | not.implemented..**Postrouting** |
| c35c0 | 3a 20 61 73 20 69 6e 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2c 20 73 65 76 65 72 61 6c 20 | :.as.in.**Prerouting**,.several. |
| c35e0 | 61 63 74 69 6f 6e 73 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 | actions.defined.in.different.par |
| c3600 | 74 73 20 6f 66 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 72 65 20 70 65 72 | ts.of.VyOS.configuration.are.per |
| c3620 | 66 6f 72 6d 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 | formed.in.this.stage..This.inclu |
| c3640 | 64 65 73 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 20 28 42 72 69 64 67 65 29 2a 2a 3a 20 61 6c | des:.**Prerouting.(Bridge)**:.al |
| c3660 | 6c 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 | l.packets.that.are.received.by.t |
| c3680 | 68 65 20 62 72 69 64 67 65 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 69 73 20 | he.bridge.are.processed.in.this. |
| c36a0 | 73 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 69 6e 61 | stage,.regardless.of.the.destina |
| c36c0 | 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 20 46 69 72 73 74 20 66 69 6c 74 65 72 | tion.of.the.packet..First.filter |
| c36e0 | 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 72 65 2c 20 61 6e 64 2f 6f 72 20 61 6c | s.can.be.applied.here,.and/or.al |
| c3700 | 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 72 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 | so.configure.rules.for.ignoring. |
| c3720 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 2c 20 61 6e 64 20 | connection.tracking.system,.and. |
| c3740 | 61 6c 73 6f 20 61 70 70 6c 79 20 70 6f 6c 69 63 79 20 72 6f 75 74 69 6e 67 20 75 73 69 6e 67 20 | also.apply.policy.routing.using. |
| c3760 | 60 60 73 65 74 60 60 20 6f 70 74 69 6f 6e 20 77 68 69 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 68 | ``set``.option.while.defining.th |
| c3780 | 65 20 72 75 6c 65 2e 20 54 68 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 | e.rule..The.relevant.configurati |
| c37a0 | 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 20 28 42 | on.that.acts.in:.**Prerouting.(B |
| c37c0 | 72 69 64 67 65 29 2a 2a 3a 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 72 | ridge)**:.all.packets.that.are.r |
| c37e0 | 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 62 72 69 64 67 65 20 61 72 65 20 70 72 6f 63 65 73 | eceived.by.the.bridge.are.proces |
| c3800 | 73 65 64 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 | sed.in.this.stage,.regardless.of |
| c3820 | 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 20 | .the.destination.of.the.packet.. |
| c3840 | 46 69 72 73 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 72 | First.filters.can.be.applied.her |
| c3860 | 65 2c 20 61 6e 64 2f 6f 72 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 72 75 6c 65 73 20 66 | e,.and/or.also.configure.rules.f |
| c3880 | 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 | or.ignoring.connection.tracking. |
| c38a0 | 73 79 73 74 65 6d 2e 20 54 68 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 | system..The.relevant.configurati |
| c38c0 | 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a | on.that.acts.in:.**Prerouting**: |
| c38e0 | 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 | .All.packets.that.are.received.b |
| c3900 | 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 | y.the.router.are.processed.in.th |
| c3920 | 69 73 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 65 73 74 | is.stage,.regardless.of.the.dest |
| c3940 | 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 20 53 74 61 72 74 69 6e 67 20 | ination.of.the.packet..Starting. |
| c3960 | 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 32 30 30 | from.vyos-1.5-rolling-2024061200 |
| c3980 | 32 30 2c 20 61 20 6e 65 77 20 73 65 63 74 69 6f 6e 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 66 | 20,.a.new.section.was.added.to.f |
| c39a0 | 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 72 65 20 61 72 65 | irewall.configuration..There.are |
| c39c0 | 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e | .several.actions.that.can.be.don |
| c39e0 | 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 | e.in.this.stage,.and.currently.t |
| c3a00 | 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 6c 73 6f 20 64 65 66 69 6e 65 64 20 69 6e | hese.actions.are.also.defined.in |
| c3a20 | 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 69 6e 20 56 79 4f 53 20 63 6f 6e 66 69 67 75 | .different.parts.in.VyOS.configu |
| c3a40 | 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 | ration..Order.is.important,.and. |
| c3a60 | 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 | relevant.configuration.that.acts |
| c3a80 | 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 | .in.this.stage.are:.**Prerouting |
| c3aa0 | 2a 2a 3a 20 41 6c 6c 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 72 65 63 65 69 76 65 | **:.All.packets.that.are.receive |
| c3ac0 | 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e | d.by.the.router.are.processed.in |
| c3ae0 | 20 74 68 69 73 20 73 74 61 67 65 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 64 | .this.stage,.regardless.of.the.d |
| c3b00 | 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 2e 20 53 74 61 72 74 69 | estination.of.the.packet..Starti |
| c3b20 | 6e 67 20 66 72 6f 6d 20 76 79 6f 73 2d 31 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 30 36 31 | ng.from.vyos-1.5-rolling-2024061 |
| c3b40 | 32 30 30 32 30 2c 20 61 20 6e 65 77 20 73 65 63 74 69 6f 6e 20 77 61 73 20 61 64 64 65 64 20 74 | 20020,.a.new.section.was.added.t |
| c3b60 | 6f 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 54 68 | o.the.firewall.configuration..Th |
| c3b80 | 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e | ere.are.several.actions.that.can |
| c3ba0 | 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 72 | .be.done.in.this.stage,.and.curr |
| c3bc0 | 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 6c 73 6f 20 64 65 66 | ently.these.actions.are.also.def |
| c3be0 | 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 6f 66 20 74 68 65 20 56 | ined.in.different.parts.of.the.V |
| c3c00 | 79 4f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f | yOS.configuration..Order.is.impo |
| c3c20 | 72 74 61 6e 74 2c 20 61 6e 64 20 74 68 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 | rtant,.and.the.relevant.configur |
| c3c40 | 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 | ation.that.acts.in.this.stage.ar |
| c3c60 | 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 3a 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f | e:.**Prerouting**:.several.actio |
| c3c80 | 6e 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 6e | ns.can.be.done.in.this.stage,.an |
| c3ca0 | 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 64 65 | d.currently.these.actions.are.de |
| c3cc0 | 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 74 73 20 69 6e 20 56 79 4f 53 | fined.in.different.parts.in.VyOS |
| c3ce0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 | .configuration..Order.is.importa |
| c3d00 | 6e 74 2c 20 61 6e 64 20 61 6c 6c 20 74 68 65 73 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 70 65 | nt,.and.all.these.actions.are.pe |
| c3d20 | 72 66 6f 72 6d 65 64 20 62 65 66 6f 72 65 20 61 6e 79 20 61 63 74 69 6f 6e 73 20 64 65 66 69 6e | rformed.before.any.actions.defin |
| c3d40 | 65 64 20 75 6e 64 65 72 20 60 60 66 69 72 65 77 61 6c 6c 60 60 20 73 65 63 74 69 6f 6e 2e 20 52 | ed.under.``firewall``.section..R |
| c3d60 | 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 | elevant.configuration.that.acts. |
| c3d80 | 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 3a 00 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a | in.this.stage.are:.**Prerouting* |
| c3da0 | 2a 3a 20 73 65 76 65 72 61 6c 20 61 63 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 69 | *:.several.actions.can.be.done.i |
| c3dc0 | 6e 20 74 68 69 73 20 73 74 61 67 65 2c 20 61 6e 64 20 63 75 72 72 65 6e 74 6c 79 20 74 68 65 73 | n.this.stage,.and.currently.thes |
| c3de0 | 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 64 69 66 66 65 72 65 | e.actions.are.defined.in.differe |
| c3e00 | 6e 74 20 70 61 72 74 73 20 69 6e 20 76 79 6f 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 | nt.parts.in.vyos.configuration.. |
| c3e20 | 4f 72 64 65 72 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 2c 20 61 6e 64 20 61 6c 6c 20 74 68 65 73 | Order.is.important,.and.all.thes |
| c3e40 | 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 70 65 72 66 6f 72 6d 65 64 20 62 65 66 6f 72 65 20 61 | e.actions.are.performed.before.a |
| c3e60 | 6e 79 20 61 63 74 69 6f 6e 73 20 64 65 66 69 6e 65 20 75 6e 64 65 72 20 60 60 66 69 72 65 77 61 | ny.actions.define.under.``firewa |
| c3e80 | 6c 6c 60 60 20 73 65 63 74 69 6f 6e 2e 20 52 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 75 72 61 | ll``.section..Relevant.configura |
| c3ea0 | 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 74 68 69 73 20 73 74 61 67 65 20 61 72 65 | tion.that.acts.in.this.stage.are |
| c3ec0 | 3a 00 2a 2a 50 72 69 6d 61 72 79 2a 2a 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c | :.**Primary**.**Queueing.discipl |
| c3ee0 | 69 6e 65 2a 2a 20 46 61 69 72 2f 46 6c 6f 77 20 51 75 65 75 65 20 43 6f 44 65 6c 2e 00 2a 2a 51 | ine**.Fair/Flow.Queue.CoDel..**Q |
| c3f00 | 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 44 65 66 69 63 69 74 20 52 6f | ueueing.discipline:**.Deficit.Ro |
| c3f20 | 75 6e 64 20 52 6f 62 69 6e 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 | und.Robin..**Queueing.discipline |
| c3f40 | 3a 2a 2a 20 44 65 66 69 63 69 74 20 6d 6f 64 65 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 | :**.Deficit.mode..**Queueing.dis |
| c3f60 | 63 69 70 6c 69 6e 65 3a 2a 2a 20 47 65 6e 65 72 61 6c 69 7a 65 64 20 52 61 6e 64 6f 6d 20 45 61 | cipline:**.Generalized.Random.Ea |
| c3f80 | 72 6c 79 20 44 72 6f 70 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a | rly.Drop..**Queueing.discipline: |
| c3fa0 | 2a 2a 20 48 69 65 72 61 72 63 68 69 63 61 6c 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 2e 00 2a 2a | **.Hierarchical.Token.Bucket..** |
| c3fc0 | 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 49 6e 67 72 65 73 73 20 70 | Queueing.discipline:**.Ingress.p |
| c3fe0 | 6f 6c 69 63 65 72 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a | olicer..**Queueing.discipline:** |
| c4000 | 20 50 46 49 46 4f 20 28 50 61 63 6b 65 74 20 46 69 72 73 74 20 49 6e 20 46 69 72 73 74 20 4f 75 | .PFIFO.(Packet.First.In.First.Ou |
| c4020 | 74 29 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 50 52 49 | t)..**Queueing.discipline:**.PRI |
| c4040 | 4f 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 53 46 51 20 | O..**Queueing.discipline:**.SFQ. |
| c4060 | 28 53 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 75 69 6e 67 29 2e 00 2a | (Stochastic.Fairness.Queuing)..* |
| c4080 | 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 54 6f 63 6b 65 6e 20 42 | *Queueing.discipline:**.Tocken.B |
| c40a0 | 75 63 6b 65 74 20 46 69 6c 74 65 72 2e 00 2a 2a 51 75 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c | ucket.Filter..**Queueing.discipl |
| c40c0 | 69 6e 65 3a 2a 2a 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 46 69 6c 74 65 72 2e 00 2a 2a 51 75 | ine:**.Token.Bucket.Filter..**Qu |
| c40e0 | 65 75 65 69 6e 67 20 64 69 73 63 69 70 6c 69 6e 65 3a 2a 2a 20 6e 65 74 65 6d 20 28 4e 65 74 77 | eueing.discipline:**.netem.(Netw |
| c4100 | 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 29 20 2b 20 54 42 46 20 28 54 6f 6b 65 6e 20 42 75 63 6b 65 | ork.Emulator).+.TBF.(Token.Bucke |
| c4120 | 74 20 46 69 6c 74 65 72 29 2e 00 2a 2a 52 31 20 4d 41 43 73 65 63 30 31 2a 2a 00 2a 2a 52 31 20 | t.Filter)..**R1.MACsec01**.**R1. |
| c4140 | 53 74 61 74 69 63 20 4b 65 79 2a 2a 00 2a 2a 52 31 2a 2a 00 2a 2a 52 32 20 4d 41 43 73 65 63 30 | Static.Key**.**R1**.**R2.MACsec0 |
| c4160 | 32 2a 2a 00 2a 2a 52 32 20 53 74 61 74 69 63 20 4b 65 79 2a 2a 00 2a 2a 52 32 2a 2a 00 2a 2a 52 | 2**.**R2.Static.Key**.**R2**.**R |
| c4180 | 41 44 49 55 53 20 62 61 73 65 64 20 49 50 20 70 6f 6f 6c 73 20 28 46 72 61 6d 65 64 2d 49 50 2d | ADIUS.based.IP.pools.(Framed-IP- |
| c41a0 | 41 64 64 72 65 73 73 29 2a 2a 00 2a 2a 52 41 44 49 55 53 20 73 65 73 73 69 6f 6e 73 20 6d 61 6e | Address)**.**RADIUS.sessions.man |
| c41c0 | 61 67 65 6d 65 6e 74 20 44 4d 2f 43 6f 41 2a 2a 00 2a 2a 52 49 47 48 54 2a 2a 00 2a 2a 52 49 47 | agement.DM/CoA**.**RIGHT**.**RIG |
| c41e0 | 48 54 3a 2a 2a 20 2a 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 68 30 2e 32 | HT:**.*.WAN.interface.on.`eth0.2 |
| c4200 | 30 32 60 20 2a 20 60 65 74 68 30 2e 32 30 31 60 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 | 02`.*.`eth0.201`.interface.IP:.` |
| c4220 | 31 37 32 2e 31 38 2e 32 30 32 2e 31 30 2f 32 34 60 20 2a 20 60 76 74 69 31 30 60 20 69 6e 74 65 | 172.18.202.10/24`.*.`vti10`.inte |
| c4240 | 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 30 2e 33 2f 33 31 60 20 2a 20 60 64 75 6d 30 60 | rface.IP:.`10.0.0.3/31`.*.`dum0` |
| c4260 | 20 69 6e 74 65 72 66 61 63 65 20 49 50 3a 20 60 31 30 2e 30 2e 31 32 2e 31 2f 32 34 60 20 28 66 | .interface.IP:.`10.0.12.1/24`.(f |
| c4280 | 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 29 00 2a 2a 52 6f 75 74 65 72 20 31 2a | or.testing.purposes).**Router.1* |
| c42a0 | 2a 00 2a 2a 52 6f 75 74 65 72 20 32 2a 2a 00 2a 2a 52 6f 75 74 65 72 20 33 2a 2a 00 2a 2a 52 6f | *.**Router.2**.**Router.3**.**Ro |
| c42c0 | 75 74 65 72 2d 49 44 20 63 68 65 63 6b 2a 2a 00 2a 2a 52 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 | uter-ID.check**.**Routes.learned |
| c42e0 | 20 61 66 74 65 72 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 20 61 70 70 6c 69 65 64 3a 2a 2a | .after.routing.policy.applied:** |
| c4300 | 00 2a 2a 52 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 62 65 66 6f 72 65 20 72 6f 75 74 69 6e 67 | .**Routes.learned.before.routing |
| c4320 | 20 70 6f 6c 69 63 79 20 61 70 70 6c 69 65 64 3a 2a 2a 00 2a 2a 53 57 31 2a 2a 00 2a 2a 53 57 32 | .policy.applied:**.**SW1**.**SW2 |
| c4340 | 2a 2a 00 2a 2a 53 63 61 6c 61 62 69 6c 69 74 79 2a 2a 3a 20 49 53 50 73 20 63 61 6e 20 73 75 70 | **.**Scalability**:.ISPs.can.sup |
| c4360 | 70 6f 72 74 20 6d 6f 72 65 20 63 75 73 74 6f 6d 65 72 73 20 77 69 74 68 6f 75 74 20 6e 65 65 64 | port.more.customers.without.need |
| c4380 | 69 6e 67 20 61 20 70 72 6f 70 6f 72 74 69 6f 6e 61 6c 20 69 6e 63 72 65 61 73 65 20 69 6e 20 70 | ing.a.proportional.increase.in.p |
| c43a0 | 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 2a 2a 53 65 63 6f 6e 64 61 72 79 2a | ublic.IP.addresses..**Secondary* |
| c43c0 | 2a 00 2a 2a 53 65 74 74 69 6e 67 20 75 70 20 49 50 53 65 63 2a 2a 00 2a 2a 53 65 74 74 69 6e 67 | *.**Setting.up.IPSec**.**Setting |
| c43e0 | 20 75 70 20 74 68 65 20 47 52 45 20 74 75 6e 6e 65 6c 2a 2a 00 2a 2a 53 6f 75 72 63 65 20 4e 41 | .up.the.GRE.tunnel**.**Source.NA |
| c4400 | 54 2a 2a 3a 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 5b | T**:.rules.defined.under.``set.[ |
| c4420 | 6e 61 74 20 7c 20 6e 61 74 36 36 5d 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 2e 2e 60 60 2e 00 2a | nat.|.nat66].destination...``..* |
| c4440 | 2a 53 70 69 6e 65 31 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 2a 2a 00 2a 2a 53 74 61 74 75 | *Spine1.Configuration:**.**Statu |
| c4460 | 73 2a 2a 00 2a 2a 54 6f 20 73 65 65 20 74 68 65 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 | s**.**To.see.the.redistributed.r |
| c4480 | 6f 75 74 65 73 3a 2a 2a 00 2a 2a 54 6f 74 61 6c 20 50 6f 72 74 73 20 41 76 61 69 6c 61 62 6c 65 | outes:**.**Total.Ports.Available |
| c44a0 | 2a 2a 3a 00 2a 2a 54 72 61 63 65 61 62 69 6c 69 74 79 20 49 73 73 75 65 73 2a 2a 3a 20 53 69 6e | **:.**Traceability.Issues**:.Sin |
| c44c0 | 63 65 20 6d 75 6c 74 69 70 6c 65 20 75 73 65 72 73 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 | ce.multiple.users.share.the.same |
| c44e0 | 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 2c 20 74 72 61 63 6b 69 6e 67 20 69 6e 64 | .public.IP.address,.tracking.ind |
| c4500 | 69 76 69 64 75 61 6c 20 75 73 65 72 73 20 66 6f 72 20 73 65 63 75 72 69 74 79 20 61 6e 64 20 6c | ividual.users.for.security.and.l |
| c4520 | 65 67 61 6c 20 70 75 72 70 6f 73 65 73 20 63 61 6e 20 62 65 20 63 68 61 6c 6c 65 6e 67 69 6e 67 | egal.purposes.can.be.challenging |
| c4540 | 2e 00 2a 2a 54 77 6f 20 67 61 74 65 77 61 79 73 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 20 6d | ..**Two.gateways.and.different.m |
| c4560 | 65 74 72 69 63 73 3a 2a 2a 00 2a 2a 56 4c 41 4e 20 49 44 2a 2a 00 2a 2a 56 79 4f 53 20 52 6f 75 | etrics:**.**VLAN.ID**.**VyOS.Rou |
| c4580 | 74 65 72 3a 2a 2a 00 2a 2a 57 65 69 67 68 74 20 63 68 65 63 6b 2a 2a 00 2a 2a 61 64 64 72 65 73 | ter:**.**Weight.check**.**addres |
| c45a0 | 73 2a 2a 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 | s**.can.be.specified.multiple.ti |
| c45c0 | 6d 65 73 20 61 73 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2c | mes.as.IPv4.and/or.IPv6.address, |
| c45e0 | 20 65 2e 67 2e 20 31 39 32 2e 30 2e 32 2e 31 2f 32 34 20 61 6e 64 2f 6f 72 20 32 30 30 31 3a 64 | .e.g..192.0.2.1/24.and/or.2001:d |
| c4600 | 62 38 3a 3a 31 2f 36 34 00 2a 2a 61 64 64 72 65 73 73 2a 2a 20 63 61 6e 20 62 65 20 73 70 65 63 | b8::1/64.**address**.can.be.spec |
| c4620 | 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2c 20 65 2e 67 2e 20 31 39 32 2e 31 | ified.multiple.times,.e.g..192.1 |
| c4640 | 36 38 2e 31 30 30 2e 31 20 61 6e 64 2f 6f 72 20 31 39 32 2e 31 36 38 2e 31 30 30 2e 30 2f 32 34 | 68.100.1.and/or.192.168.100.0/24 |
| c4660 | 00 2a 2a 61 6c 6c 6f 77 2a 2a 20 2d 20 4e 65 67 6f 74 69 61 74 65 20 49 50 76 34 20 6f 6e 6c 79 | .**allow**.-.Negotiate.IPv4.only |
| c4680 | 20 69 66 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 20 28 44 65 66 61 75 6c 74 20 76 61 6c | .if.client.requests.(Default.val |
| c46a0 | 75 65 29 00 2a 2a 61 6c 6c 6f 77 2a 2a 20 2d 20 4e 65 67 6f 74 69 61 74 65 20 49 50 76 36 20 6f | ue).**allow**.-.Negotiate.IPv6.o |
| c46c0 | 6e 6c 79 20 69 66 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 00 2a 2a 61 6c 6c 6f 77 2d 68 | nly.if.client.requests.**allow-h |
| c46e0 | 6f 73 74 2d 6e 65 74 77 6f 72 6b 73 2a 2a 20 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 20 77 69 | ost-networks**.cannot.be.used.wi |
| c4700 | 74 68 20 2a 2a 6e 65 74 77 6f 72 6b 2a 2a 00 2a 2a 61 6c 77 61 79 73 2a 2a 3a 20 52 65 73 74 61 | th.**network**.**always**:.Resta |
| c4720 | 72 74 20 63 6f 6e 74 61 69 6e 65 72 73 20 77 68 65 6e 20 74 68 65 79 20 65 78 69 74 2c 20 72 65 | rt.containers.when.they.exit,.re |
| c4740 | 67 61 72 64 6c 65 73 73 20 6f 66 20 73 74 61 74 75 73 2c 20 72 65 74 72 79 69 6e 67 20 69 6e 64 | gardless.of.status,.retrying.ind |
| c4760 | 65 66 69 6e 69 74 65 6c 79 00 2a 2a 61 70 70 65 6e 64 3a 2a 2a 20 54 68 65 20 72 65 6c 61 79 20 | efinitely.**append:**.The.relay. |
| c4780 | 61 67 65 6e 74 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 61 70 70 65 6e 64 20 69 74 73 20 6f | agent.is.allowed.to.append.its.o |
| c47a0 | 77 6e 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 61 20 72 65 63 65 69 76 | wn.relay.information.to.a.receiv |
| c47c0 | 65 64 20 44 48 43 50 20 70 61 63 6b 65 74 2c 20 64 69 73 72 65 67 61 72 64 69 6e 67 20 72 65 6c | ed.DHCP.packet,.disregarding.rel |
| c47e0 | 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 | ay.information.already.present.i |
| c4800 | 6e 20 74 68 65 20 70 61 63 6b 65 74 2e 00 2a 2a 61 70 70 6c 69 63 61 74 69 6f 6e 2a 2a 3a 20 61 | n.the.packet..**application**:.a |
| c4820 | 6e 61 6c 79 7a 65 73 20 72 65 63 65 69 76 65 64 20 66 6c 6f 77 20 64 61 74 61 20 69 6e 20 74 68 | nalyzes.received.flow.data.in.th |
| c4840 | 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e | e.context.of.intrusion.detection |
| c4860 | 20 6f 72 20 74 72 61 66 66 69 63 20 70 72 6f 66 69 6c 69 6e 67 2c 20 66 6f 72 20 65 78 61 6d 70 | .or.traffic.profiling,.for.examp |
| c4880 | 6c 65 00 2a 2a 61 75 74 6f 2a 2a 20 e2 80 93 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 65 | le.**auto**.....automatically.de |
| c48a0 | 74 65 72 6d 69 6e 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 2e 20 2a 2a 77 | termines.the.interface.type..**w |
| c48c0 | 69 72 65 64 2a 2a 20 e2 80 93 20 65 6e 61 62 6c 65 73 20 6f 70 74 69 6d 69 73 61 74 69 6f 6e 73 | ired**.....enables.optimisations |
| c48e0 | 20 66 6f 72 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 20 2a 2a 77 69 72 65 6c 65 73 | .for.wired.interfaces..**wireles |
| c4900 | 73 2a 2a 20 e2 80 93 20 64 69 73 61 62 6c 65 73 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 6f 70 74 | s**.....disables.a.number.of.opt |
| c4920 | 69 6d 69 73 61 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 6f 6e 6c 79 20 63 6f 72 72 65 63 74 | imisations.that.are.only.correct |
| c4940 | 20 6f 6e 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 20 53 70 65 63 69 66 79 69 6e 67 | .on.wired.interfaces..Specifying |
| c4960 | 20 77 69 72 65 6c 65 73 73 20 69 73 20 61 6c 77 61 79 73 20 63 6f 72 72 65 63 74 2c 20 62 75 74 | .wireless.is.always.correct,.but |
| c4980 | 20 6d 61 79 20 63 61 75 73 65 20 73 6c 6f 77 65 72 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 61 6e | .may.cause.slower.convergence.an |
| c49a0 | 64 20 65 78 74 72 61 20 72 6f 75 74 69 6e 67 20 74 72 61 66 66 69 63 2e 00 2a 2a 62 61 6e 2d 74 | d.extra.routing.traffic..**ban-t |
| c49c0 | 69 6d 65 2a 2a 20 61 6e 64 20 2a 2a 74 68 72 65 73 68 6f 6c 64 2a 2a 3a 20 74 68 65 73 65 20 76 | ime**.and.**threshold**:.these.v |
| c49e0 | 61 6c 75 65 73 20 61 72 65 20 6b 65 70 74 20 76 65 72 79 20 6c 6f 77 20 69 6e 20 6f 72 64 65 72 | alues.are.kept.very.low.in.order |
| c4a00 | 20 74 6f 20 65 61 73 69 6c 79 20 69 64 65 6e 74 69 66 79 20 61 6e 64 20 67 65 6e 65 72 61 74 65 | .to.easily.identify.and.generate |
| c4a20 | 20 61 6e 64 20 61 74 74 61 63 6b 2e 00 2a 2a 62 72 6f 61 64 63 61 73 74 2a 2a 20 e2 80 93 20 62 | .and.attack..**broadcast**.....b |
| c4a40 | 72 6f 61 64 63 61 73 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 64 69 73 74 72 69 62 75 74 69 | roadcast.IP.addresses.distributi |
| c4a60 | 6f 6e 2e 20 2a 2a 6e 6f 6e 2d 62 72 6f 61 64 63 61 73 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 | on..**non-broadcast**.....addres |
| c4a80 | 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 73 20 | s.distribution.in.NBMA.networks. |
| c4aa0 | 74 6f 70 6f 6c 6f 67 79 2e 20 2a 2a 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 2a | topology..**point-to-multipoint* |
| c4ac0 | 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f | *.....address.distribution.in.po |
| c4ae0 | 69 6e 74 2d 74 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b 73 2e 20 2a 2a 70 6f | int-to-multipoint.networks..**po |
| c4b00 | 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 | int-to-point**.....address.distr |
| c4b20 | 69 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 | ibution.in.point-to-point.networ |
| c4b40 | 6b 73 2e 00 2a 2a 62 72 6f 61 64 63 61 73 74 2a 2a 20 e2 80 93 20 62 72 6f 61 64 63 61 73 74 20 | ks..**broadcast**.....broadcast. |
| c4b60 | 49 50 20 61 64 64 72 65 73 73 65 73 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 20 2a 2a 70 6f 69 | IP.addresses.distribution..**poi |
| c4b80 | 6e 74 2d 74 6f 2d 70 6f 69 6e 74 2a 2a 20 e2 80 93 20 61 64 64 72 65 73 73 20 64 69 73 74 72 69 | nt-to-point**.....address.distri |
| c4ba0 | 62 75 74 69 6f 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 6f 72 6b | bution.in.point-to-point.network |
| c4bc0 | 73 2e 00 2a 2a 63 61 6c 6c 69 6e 67 2d 73 69 64 2a 2a 20 2d 20 43 61 6c 63 75 6c 61 74 65 20 69 | s..**calling-sid**.-.Calculate.i |
| c4be0 | 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 72 6f 6d 20 63 61 6c 6c 69 6e 67 | nterface.identifier.from.calling |
| c4c00 | 2d 73 74 61 74 69 6f 6e 2d 69 64 2e 00 2a 2a 63 69 73 63 6f 2a 2a 20 e2 80 93 20 61 20 72 6f 75 | -station-id..**cisco**.....a.rou |
| c4c20 | 74 65 72 20 77 69 6c 6c 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 61 73 20 41 42 52 20 69 66 | ter.will.be.considered.as.ABR.if |
| c4c40 | 20 69 74 20 68 61 73 20 73 65 76 65 72 61 6c 20 63 6f 6e 66 69 67 75 72 65 64 20 6c 69 6e 6b 73 | .it.has.several.configured.links |
| c4c60 | 20 74 6f 20 74 68 65 20 6e 65 74 77 6f 72 6b 73 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 61 72 | .to.the.networks.in.different.ar |
| c4c80 | 65 61 73 20 6f 6e 65 20 6f 66 20 77 68 69 63 68 20 69 73 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 | eas.one.of.which.is.a.backbone.a |
| c4ca0 | 72 65 61 2e 20 4d 6f 72 65 6f 76 65 72 2c 20 74 68 65 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 62 | rea..Moreover,.the.link.to.the.b |
| c4cc0 | 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 73 68 6f 75 6c 64 20 62 65 20 61 63 74 69 76 65 20 28 77 | ackbone.area.should.be.active.(w |
| c4ce0 | 6f 72 6b 69 6e 67 29 2e 20 2a 2a 69 62 6d 2a 2a 20 e2 80 93 20 69 64 65 6e 74 69 63 61 6c 20 74 | orking)..**ibm**.....identical.t |
| c4d00 | 6f 20 22 63 69 73 63 6f 22 20 6d 6f 64 65 6c 20 62 75 74 20 69 6e 20 74 68 69 73 20 63 61 73 65 | o."cisco".model.but.in.this.case |
| c4d20 | 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 6c 69 6e 6b 20 6d 61 79 20 6e 6f 74 20 62 65 | .a.backbone.area.link.may.not.be |
| c4d40 | 20 61 63 74 69 76 65 2e 20 2a 2a 73 74 61 6e 64 61 72 64 2a 2a 20 e2 80 93 20 72 6f 75 74 65 72 | .active..**standard**.....router |
| c4d60 | 20 68 61 73 20 73 65 76 65 72 61 6c 20 61 63 74 69 76 65 20 6c 69 6e 6b 73 20 74 6f 20 64 69 66 | .has.several.active.links.to.dif |
| c4d80 | 66 65 72 65 6e 74 20 61 72 65 61 73 2e 20 2a 2a 73 68 6f 72 74 63 75 74 2a 2a 20 e2 80 93 20 69 | ferent.areas..**shortcut**.....i |
| c4da0 | 64 65 6e 74 69 63 61 6c 20 74 6f 20 22 73 74 61 6e 64 61 72 64 22 20 62 75 74 20 69 6e 20 74 68 | dentical.to."standard".but.in.th |
| c4dc0 | 69 73 20 6d 6f 64 65 6c 20 61 20 72 6f 75 74 65 72 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 | is.model.a.router.is.allowed.to. |
| c4de0 | 75 73 65 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 61 72 65 61 73 20 74 6f 70 6f 6c 6f 67 79 20 77 | use.a.connected.areas.topology.w |
| c4e00 | 69 74 68 6f 75 74 20 69 6e 76 6f 6c 76 69 6e 67 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 | ithout.involving.a.backbone.area |
| c4e20 | 20 66 6f 72 20 69 6e 74 65 72 2d 61 72 65 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 2a 2a 63 | .for.inter-area.connections..**c |
| c4e40 | 6f 6c 6c 65 63 74 6f 72 2a 2a 3a 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 72 65 63 65 | ollector**:.responsible.for.rece |
| c4e60 | 70 74 69 6f 6e 2c 20 73 74 6f 72 61 67 65 20 61 6e 64 20 70 72 65 2d 70 72 6f 63 65 73 73 69 6e | ption,.storage.and.pre-processin |
| c4e80 | 67 20 6f 66 20 66 6c 6f 77 20 64 61 74 61 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 61 20 66 | g.of.flow.data.received.from.a.f |
| c4ea0 | 6c 6f 77 20 65 78 70 6f 72 74 65 72 00 2a 2a 64 65 66 61 75 6c 74 2a 2a 20 e2 80 93 20 20 74 68 | low.exporter.**default**......th |
| c4ec0 | 69 73 20 61 72 65 61 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 68 6f 72 74 63 75 | is.area.will.be.used.for.shortcu |
| c4ee0 | 74 74 69 6e 67 20 6f 6e 6c 79 20 69 66 20 41 42 52 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 | tting.only.if.ABR.does.not.have. |
| c4f00 | 61 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 6f 72 20 74 | a.link.to.the.backbone.area.or.t |
| c4f20 | 68 69 73 20 6c 69 6e 6b 20 77 61 73 20 6c 6f 73 74 2e 20 2a 2a 65 6e 61 62 6c 65 2a 2a 20 e2 80 | his.link.was.lost..**enable**... |
| c4f40 | 93 20 74 68 65 20 61 72 65 61 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 68 6f 72 | ..the.area.will.be.used.for.shor |
| c4f60 | 74 63 75 74 74 69 6e 67 20 65 76 65 72 79 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 74 68 | tcutting.every.time.the.route.th |
| c4f80 | 61 74 20 67 6f 65 73 20 74 68 72 6f 75 67 68 20 69 74 20 69 73 20 63 68 65 61 70 65 72 2e 20 2a | at.goes.through.it.is.cheaper..* |
| c4fa0 | 2a 64 69 73 61 62 6c 65 2a 2a 20 e2 80 93 20 74 68 69 73 20 61 72 65 61 20 69 73 20 6e 65 76 65 | *disable**.....this.area.is.neve |
| c4fc0 | 72 20 75 73 65 64 20 62 79 20 41 42 52 20 66 6f 72 20 72 6f 75 74 65 73 20 73 68 6f 72 74 63 75 | r.used.by.ABR.for.routes.shortcu |
| c4fe0 | 74 74 69 6e 67 2e 00 2a 2a 64 65 66 61 75 6c 74 2a 2a 20 e2 80 93 20 65 6e 61 62 6c 65 20 73 70 | tting..**default**.....enable.sp |
| c5000 | 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2c | lit-horizon.on.wired.interfaces, |
| c5020 | 20 61 6e 64 20 64 69 73 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 77 69 | .and.disable.split-horizon.on.wi |
| c5040 | 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2e 20 2a 2a 65 6e 61 62 6c 65 2a 2a 20 e2 80 | reless.interfaces..**enable**... |
| c5060 | 93 20 65 6e 61 62 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 69 73 20 69 | ..enable.split-horizon.on.this.i |
| c5080 | 6e 74 65 72 66 61 63 65 73 2e 20 2a 2a 64 69 73 61 62 6c 65 2a 2a 20 e2 80 93 20 64 69 73 61 62 | nterfaces..**disable**.....disab |
| c50a0 | 6c 65 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 | le.split-horizon.on.this.interfa |
| c50c0 | 63 65 73 2e 00 2a 2a 64 65 6e 79 2a 2a 20 2d 20 44 6f 20 6e 6f 74 20 6e 65 67 6f 74 69 61 74 65 | ces..**deny**.-.Do.not.negotiate |
| c50e0 | 20 49 50 76 34 00 2a 2a 64 65 6e 79 2a 2a 20 2d 20 44 6f 20 6e 6f 74 20 6e 65 67 6f 74 69 61 74 | .IPv4.**deny**.-.Do.not.negotiat |
| c5100 | 65 20 49 50 76 36 20 28 64 65 66 61 75 6c 74 20 76 61 6c 75 65 29 00 2a 2a 64 65 6e 79 2a 2a 20 | e.IPv6.(default.value).**deny**. |
| c5120 | 2d 20 64 65 6e 79 20 6d 70 70 65 00 2a 2a 64 65 6e 79 2a 2a 3a 20 44 65 6e 79 20 73 65 63 6f 6e | -.deny.mppe.**deny**:.Deny.secon |
| c5140 | 64 20 73 65 73 73 69 6f 6e 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 2e 00 2a 2a 64 65 73 74 69 | d.session.authorization..**desti |
| c5160 | 6e 61 74 69 6f 6e 2a 2a 20 2d 20 73 70 65 63 69 66 79 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 | nation**.-.specify.which.packets |
| c5180 | 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 | .the.translation.will.be.applied |
| c51a0 | 20 74 6f 2c 20 6f 6e 6c 79 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 | .to,.only.based.on.the.destinati |
| c51c0 | 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 2f 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 63 6f | on.address.and/or.port.number.co |
| c51e0 | 6e 66 69 67 75 72 65 64 2e 00 2a 2a 64 68 63 70 2a 2a 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 | nfigured..**dhcp**.interface.add |
| c5200 | 72 65 73 73 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 44 48 43 50 20 66 72 6f 6d 20 61 20 | ress.is.received.by.DHCP.from.a. |
| c5220 | 44 48 43 50 20 73 65 72 76 65 72 20 6f 6e 20 74 68 69 73 20 73 65 67 6d 65 6e 74 2e 00 2a 2a 64 | DHCP.server.on.this.segment..**d |
| c5240 | 68 63 70 76 36 2a 2a 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 69 73 20 72 65 63 | hcpv6**.interface.address.is.rec |
| c5260 | 65 69 76 65 64 20 62 79 20 44 48 43 50 76 36 20 66 72 6f 6d 20 61 20 44 48 43 50 76 36 20 73 65 | eived.by.DHCPv6.from.a.DHCPv6.se |
| c5280 | 72 76 65 72 20 6f 6e 20 74 68 69 73 20 73 65 67 6d 65 6e 74 2e 00 2a 2a 64 69 73 61 62 6c 65 2a | rver.on.this.segment..**disable* |
| c52a0 | 2a 3a 20 44 69 73 61 62 6c 65 73 20 73 65 73 73 69 6f 6e 20 63 6f 6e 74 72 6f 6c 2e 00 2a 2a 64 | *:.Disables.session.control..**d |
| c52c0 | 69 73 63 61 72 64 3a 2a 2a 20 52 65 63 65 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 68 69 63 68 | iscard:**.Received.packets.which |
| c52e0 | 20 61 6c 72 65 61 64 79 20 63 6f 6e 74 61 69 6e 20 72 65 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 | .already.contain.relay.informati |
| c5300 | 6f 6e 20 77 69 6c 6c 20 62 65 20 64 69 73 63 61 72 64 65 64 2e 00 2a 2a 64 6f 77 6e 73 74 72 65 | on.will.be.discarded..**downstre |
| c5320 | 61 6d 3a 2a 2a 20 44 6f 77 6e 73 74 72 65 61 6d 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 | am:**.Downstream.network.interfa |
| c5340 | 63 65 73 20 61 72 65 20 74 68 65 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 69 6e 74 65 72 66 61 | ces.are.the.distribution.interfa |
| c5360 | 63 65 73 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6e 65 74 77 6f 72 6b 73 2c | ces.to.the.destination.networks, |
| c5380 | 20 77 68 65 72 65 20 6d 75 6c 74 69 63 61 73 74 20 63 6c 69 65 6e 74 73 20 63 61 6e 20 6a 6f 69 | .where.multicast.clients.can.joi |
| c53a0 | 6e 20 67 72 6f 75 70 73 20 61 6e 64 20 72 65 63 65 69 76 65 20 6d 75 6c 74 69 63 61 73 74 20 64 | n.groups.and.receive.multicast.d |
| c53c0 | 61 74 61 2e 20 4f 6e 65 20 6f 72 20 6d 6f 72 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 | ata..One.or.more.downstream.inte |
| c53e0 | 72 66 61 63 65 73 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 2a 2a 65 78 70 | rfaces.must.be.configured..**exp |
| c5400 | 6f 72 74 65 72 2a 2a 3a 20 61 67 67 72 65 67 61 74 65 73 20 70 61 63 6b 65 74 73 20 69 6e 74 6f | orter**:.aggregates.packets.into |
| c5420 | 20 66 6c 6f 77 73 20 61 6e 64 20 65 78 70 6f 72 74 73 20 66 6c 6f 77 20 72 65 63 6f 72 64 73 20 | .flows.and.exports.flow.records. |
| c5440 | 74 6f 77 61 72 64 73 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 66 6c 6f 77 20 63 6f 6c 6c 65 63 74 | towards.one.or.more.flow.collect |
| c5460 | 6f 72 73 00 2a 2a 66 69 72 65 77 61 6c 6c 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 61 66 66 65 63 74 | ors.**firewall.all-ping**.affect |
| c5480 | 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 41 4c 20 61 6e 64 20 69 74 20 61 6c 77 61 79 73 20 62 65 | s.only.to.LOCAL.and.it.always.be |
| c54a0 | 68 61 76 65 73 20 69 6e 20 74 68 65 20 6d 6f 73 74 20 72 65 73 74 72 69 63 74 69 76 65 20 77 61 | haves.in.the.most.restrictive.wa |
| c54c0 | 79 00 2a 2a 66 69 72 65 77 61 6c 6c 20 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 61 6c 6c 2d | y.**firewall.global-options.all- |
| c54e0 | 70 69 6e 67 2a 2a 20 61 66 66 65 63 74 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 41 4c 20 61 6e 64 | ping**.affects.only.to.LOCAL.and |
| c5500 | 20 69 74 20 61 6c 77 61 79 73 20 62 65 68 61 76 65 73 20 69 6e 20 74 68 65 20 6d 6f 73 74 20 72 | .it.always.behaves.in.the.most.r |
| c5520 | 65 73 74 72 69 63 74 69 76 65 20 77 61 79 00 2a 2a 66 6f 72 77 61 72 64 3a 2a 2a 20 41 6c 6c 20 | estrictive.way.**forward:**.All. |
| c5540 | 70 61 63 6b 65 74 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 2c 20 72 65 6c 61 79 20 69 6e 66 | packets.are.forwarded,.relay.inf |
| c5560 | 6f 72 6d 61 74 69 6f 6e 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 77 69 6c 6c 20 62 65 | ormation.already.present.will.be |
| c5580 | 20 69 67 6e 6f 72 65 64 2e 00 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 | .ignored..**inbound-interface**. |
| c55a0 | 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 64 65 73 74 69 | -.applicable.only.to.:ref:`desti |
| c55c0 | 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 | nation-nat`..It.configures.the.i |
| c55e0 | 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 69 | nterface.which.is.used.for.the.i |
| c5600 | 6e 73 69 64 65 20 74 72 61 66 66 69 63 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 | nside.traffic.the.translation.ru |
| c5620 | 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 00 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 | le.applies.to..**inbound-interfa |
| c5640 | 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 | ce**.-.applicable.only.to.:ref:` |
| c5660 | 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 | destination-nat`..It.configures. |
| c5680 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 | the.interface.which.is.used.for. |
| c56a0 | 74 68 65 20 69 6e 73 69 64 65 20 74 72 61 66 66 69 63 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 | the.inside.traffic.the.translati |
| c56c0 | 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 20 49 6e 74 65 72 66 61 63 65 20 67 72 | on.rule.applies.to..Interface.gr |
| c56e0 | 6f 75 70 73 2c 20 69 6e 76 65 72 74 65 64 20 73 65 6c 65 63 74 69 6f 6e 20 61 6e 64 20 77 69 6c | oups,.inverted.selection.and.wil |
| c5700 | 64 63 61 72 64 2c 20 61 72 65 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 2a 2a 69 70 76 | dcard,.are.also.supported..**ipv |
| c5720 | 34 2d 61 64 64 72 2a 2a 20 2d 20 43 61 6c 63 75 6c 61 74 65 20 69 6e 74 65 72 66 61 63 65 20 69 | 4-addr**.-.Calculate.interface.i |
| c5740 | 64 65 6e 74 69 66 69 65 72 20 66 72 6f 6d 20 49 50 76 34 20 61 64 64 72 65 73 73 2e 00 2a 2a 6c | dentifier.from.IPv4.address..**l |
| c5760 | 32 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 63 6c 69 65 6e 74 73 20 61 72 65 20 6f | 2**:.It.means.that.clients.are.o |
| c5780 | 6e 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 20 77 68 65 72 65 20 69 6e 74 65 72 66 61 63 65 20 69 | n.same.network.where.interface.i |
| c57a0 | 73 2e 2a 2a 28 64 65 66 61 75 6c 74 29 2a 2a 00 2a 2a 6c 33 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 | s.**(default)**.**l3**:.It.means |
| c57c0 | 20 74 68 61 74 20 63 6c 69 65 6e 74 20 61 72 65 20 62 65 68 69 6e 64 20 73 6f 6d 65 20 72 6f 75 | .that.client.are.behind.some.rou |
| c57e0 | 74 65 72 2e 00 2a 2a 6c 61 79 65 72 32 2a 2a 20 2d 20 55 73 65 73 20 58 4f 52 20 6f 66 20 68 61 | ter..**layer2**.-.Uses.XOR.of.ha |
| c5800 | 72 64 77 61 72 65 20 4d 41 43 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 70 61 63 6b 65 74 20 | rdware.MAC.addresses.and.packet. |
| c5820 | 74 79 70 65 20 49 44 20 66 69 65 6c 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 | type.ID.field.to.generate.the.ha |
| c5840 | 73 68 2e 20 54 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 00 2a 2a 6c 61 79 65 72 32 2b 33 2a 2a 20 | sh..The.formula.is.**layer2+3**. |
| c5860 | 2d 20 54 68 69 73 20 70 6f 6c 69 63 79 20 75 73 65 73 20 61 20 63 6f 6d 62 69 6e 61 74 69 6f 6e | -.This.policy.uses.a.combination |
| c5880 | 20 6f 66 20 6c 61 79 65 72 32 20 61 6e 64 20 6c 61 79 65 72 33 20 70 72 6f 74 6f 63 6f 6c 20 69 | .of.layer2.and.layer3.protocol.i |
| c58a0 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 2e | nformation.to.generate.the.hash. |
| c58c0 | 20 55 73 65 73 20 58 4f 52 20 6f 66 20 68 61 72 64 77 61 72 65 20 4d 41 43 20 61 64 64 72 65 73 | .Uses.XOR.of.hardware.MAC.addres |
| c58e0 | 73 65 73 20 61 6e 64 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 67 65 6e 65 72 61 74 65 | ses.and.IP.addresses.to.generate |
| c5900 | 20 74 68 65 20 68 61 73 68 2e 20 54 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 3a 00 2a 2a 6c 61 79 | .the.hash..The.formula.is:.**lay |
| c5920 | 65 72 33 2b 34 2a 2a 20 2d 20 54 68 69 73 20 70 6f 6c 69 63 79 20 75 73 65 73 20 75 70 70 65 72 | er3+4**.-.This.policy.uses.upper |
| c5940 | 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 77 68 65 | .layer.protocol.information,.whe |
| c5960 | 6e 20 61 76 61 69 6c 61 62 6c 65 2c 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 | n.available,.to.generate.the.has |
| c5980 | 68 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 | h..This.allows.for.traffic.to.a. |
| c59a0 | 70 61 72 74 69 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b 20 70 65 65 72 20 74 6f 20 73 70 61 6e 20 | particular.network.peer.to.span. |
| c59c0 | 6d 75 6c 74 69 70 6c 65 20 73 6c 61 76 65 73 2c 20 61 6c 74 68 6f 75 67 68 20 61 20 73 69 6e 67 | multiple.slaves,.although.a.sing |
| c59e0 | 6c 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 73 70 61 6e 20 6d 75 6c 74 | le.connection.will.not.span.mult |
| c5a00 | 69 70 6c 65 20 73 6c 61 76 65 73 2e 00 2a 2a 6c 65 66 74 2a 2a 00 2a 2a 6c 65 76 65 6c 2d 31 2a | iple.slaves..**left**.**level-1* |
| c5a20 | 2a 20 2d 20 41 63 74 20 61 73 20 61 20 73 74 61 74 69 6f 6e 20 28 4c 65 76 65 6c 20 31 29 20 72 | *.-.Act.as.a.station.(Level.1).r |
| c5a40 | 6f 75 74 65 72 20 6f 6e 6c 79 2e 00 2a 2a 6c 65 76 65 6c 2d 31 2a 2a 20 2d 20 4c 65 76 65 6c 2d | outer.only..**level-1**.-.Level- |
| c5a60 | 31 20 6f 6e 6c 79 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 2e 00 2a | 1.only.adjacencies.are.formed..* |
| c5a80 | 2a 6c 65 76 65 6c 2d 31 2d 32 2a 2a 20 2d 20 41 63 74 20 61 73 20 61 20 73 74 61 74 69 6f 6e 20 | *level-1-2**.-.Act.as.a.station. |
| c5aa0 | 28 4c 65 76 65 6c 20 31 29 20 72 6f 75 74 65 72 20 61 6e 64 20 61 72 65 61 20 28 4c 65 76 65 6c | (Level.1).router.and.area.(Level |
| c5ac0 | 20 32 29 20 72 6f 75 74 65 72 2e 00 2a 2a 6c 65 76 65 6c 2d 31 2d 32 2a 2a 20 2d 20 4c 65 76 65 | .2).router..**level-1-2**.-.Leve |
| c5ae0 | 6c 2d 31 2d 32 20 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 66 6f 72 6d 65 64 00 2a 2a 6c | l-1-2.adjacencies.are.formed.**l |
| c5b00 | 65 76 65 6c 2d 32 2d 6f 6e 6c 79 2a 2a 20 2d 20 41 63 74 20 61 73 20 61 6e 20 61 72 65 61 20 28 | evel-2-only**.-.Act.as.an.area.( |
| c5b20 | 4c 65 76 65 6c 20 32 29 20 72 6f 75 74 65 72 20 6f 6e 6c 79 2e 00 2a 2a 6c 65 76 65 6c 2d 32 2d | Level.2).router.only..**level-2- |
| c5b40 | 6f 6e 6c 79 2a 2a 20 2d 20 4c 65 76 65 6c 2d 32 20 6f 6e 6c 79 20 61 64 6a 61 63 65 6e 63 69 65 | only**.-.Level-2.only.adjacencie |
| c5b60 | 73 20 61 72 65 20 66 6f 72 6d 65 64 00 2a 2a 6c 6f 63 61 6c 20 73 69 64 65 20 2d 20 63 6f 6d 6d | s.are.formed.**local.side.-.comm |
| c5b80 | 61 6e 64 73 2a 2a 00 2a 2a 6c 6f 63 61 6c 2a 2a 3a 20 41 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 | ands**.**local**:.All.authentica |
| c5ba0 | 74 69 6f 6e 20 71 75 65 72 69 65 73 20 61 72 65 20 68 61 6e 64 6c 65 64 20 6c 6f 63 61 6c 6c 79 | tion.queries.are.handled.locally |
| c5bc0 | 2e 00 2a 2a 6c 6f 63 61 6c 2a 2a 3a 20 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 63 6c 69 65 6e | ..**local**:.It.means.that.clien |
| c5be0 | 74 20 61 72 65 20 62 65 68 69 6e 64 20 73 6f 6d 65 20 72 6f 75 74 65 72 2e 00 2a 2a 6c 6f 67 2d | t.are.behind.some.router..**log- |
| c5c00 | 66 61 69 6c 2a 2a 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 2c 20 74 68 65 20 72 65 63 75 72 73 6f | fail**.In.this.mode,.the.recurso |
| c5c20 | 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 76 61 6c 69 64 61 74 65 20 61 6c 6c 20 64 | r.will.attempt.to.validate.all.d |
| c5c40 | 61 74 61 20 69 74 20 72 65 74 72 69 65 76 65 73 20 66 72 6f 6d 20 61 75 74 68 6f 72 69 74 61 74 | ata.it.retrieves.from.authoritat |
| c5c60 | 69 76 65 20 73 65 72 76 65 72 73 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 63 | ive.servers,.regardless.of.the.c |
| c5c80 | 6c 69 65 6e 74 27 73 20 44 4e 53 53 45 43 20 64 65 73 69 72 65 73 2c 20 61 6e 64 20 77 69 6c 6c | lient's.DNSSEC.desires,.and.will |
| c5ca0 | 20 6c 6f 67 20 74 68 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 72 65 73 75 6c 74 2e 20 54 68 69 73 | .log.the.validation.result..This |
| c5cc0 | 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 | .mode.can.be.used.to.determine.t |
| c5ce0 | 68 65 20 65 78 74 72 61 20 6c 6f 61 64 20 61 6e 64 20 61 6d 6f 75 6e 74 20 6f 66 20 70 6f 73 73 | he.extra.load.and.amount.of.poss |
| c5d00 | 69 62 6c 79 20 62 6f 67 75 73 20 61 6e 73 77 65 72 73 20 62 65 66 6f 72 65 20 74 75 72 6e 69 6e | ibly.bogus.answers.before.turnin |
| c5d20 | 67 20 6f 6e 20 66 75 6c 6c 2d 62 6c 6f 77 6e 20 76 61 6c 69 64 61 74 69 6f 6e 2e 20 52 65 73 70 | g.on.full-blown.validation..Resp |
| c5d40 | 6f 6e 73 65 73 20 74 6f 20 63 6c 69 65 6e 74 20 71 75 65 72 69 65 73 20 61 72 65 20 74 68 65 20 | onses.to.client.queries.are.the. |
| c5d60 | 73 61 6d 65 20 61 73 20 77 69 74 68 20 70 72 6f 63 65 73 73 2e 00 2a 2a 6c 6f 6f 6b 75 70 2d 61 | same.as.with.process..**lookup-a |
| c5d80 | 2a 2a 20 41 20 46 6c 61 67 2e 00 2a 2a 6c 6f 6f 6b 75 70 2d 73 72 76 2a 2a 20 53 20 66 6c 61 67 | **.A.Flag..**lookup-srv**.S.flag |
| c5da0 | 2e 00 2a 2a 6e 61 72 72 6f 77 2a 2a 20 2d 20 55 73 65 20 6f 6c 64 20 73 74 79 6c 65 20 6f 66 20 | ..**narrow**.-.Use.old.style.of. |
| c5dc0 | 54 4c 56 73 20 77 69 74 68 20 6e 61 72 72 6f 77 20 6d 65 74 72 69 63 2e 00 2a 2a 6e 65 74 2d 61 | TLVs.with.narrow.metric..**net-a |
| c5de0 | 64 6d 69 6e 2a 2a 3a 20 4e 65 74 77 6f 72 6b 20 6f 70 65 72 61 74 69 6f 6e 73 20 28 69 6e 74 65 | dmin**:.Network.operations.(inte |
| c5e00 | 72 66 61 63 65 2c 20 66 69 72 65 77 61 6c 6c 2c 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 29 | rface,.firewall,.routing.tables) |
| c5e20 | 00 2a 2a 6e 65 74 2d 62 69 6e 64 2d 73 65 72 76 69 63 65 2a 2a 3a 20 42 69 6e 64 20 61 20 73 6f | .**net-bind-service**:.Bind.a.so |
| c5e40 | 63 6b 65 74 20 74 6f 20 70 72 69 76 69 6c 65 67 65 64 20 70 6f 72 74 73 20 28 70 6f 72 74 20 6e | cket.to.privileged.ports.(port.n |
| c5e60 | 75 6d 62 65 72 73 20 6c 65 73 73 20 74 68 61 6e 20 31 30 32 34 29 00 2a 2a 6e 65 74 2d 72 61 77 | umbers.less.than.1024).**net-raw |
| c5e80 | 2a 2a 3a 20 50 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 63 72 65 61 74 65 20 72 61 77 20 6e 65 74 | **:.Permission.to.create.raw.net |
| c5ea0 | 77 6f 72 6b 20 73 6f 63 6b 65 74 73 00 2a 2a 6e 6f 2a 2a 3a 20 44 6f 20 6e 6f 74 20 72 65 73 74 | work.sockets.**no**:.Do.not.rest |
| c5ec0 | 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 73 20 6f 6e 20 65 78 69 74 00 2a 2a 6e 6f 61 75 74 68 2a | art.containers.on.exit.**noauth* |
| c5ee0 | 2a 3a 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 69 73 61 62 6c 65 64 00 2a 2a 6e 6f 61 | *:.Authentication.disabled.**noa |
| c5f00 | 75 74 68 2a 2a 3a 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 69 73 61 62 6c 65 64 2e 00 | uth**:.Authentication.disabled.. |
| c5f20 | 2a 2a 6f 66 66 2a 2a 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 2c 20 6e 6f 20 44 4e 53 53 45 43 20 | **off**.In.this.mode,.no.DNSSEC. |
| c5f40 | 70 72 6f 63 65 73 73 69 6e 67 20 74 61 6b 65 73 20 70 6c 61 63 65 2e 20 54 68 65 20 72 65 63 75 | processing.takes.place..The.recu |
| c5f60 | 72 73 6f 72 20 77 69 6c 6c 20 6e 6f 74 20 73 65 74 20 74 68 65 20 44 4e 53 53 45 43 20 4f 4b 20 | rsor.will.not.set.the.DNSSEC.OK. |
| c5f80 | 28 44 4f 29 20 62 69 74 20 69 6e 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 | (DO).bit.in.the.outgoing.queries |
| c5fa0 | 20 61 6e 64 20 77 69 6c 6c 20 69 67 6e 6f 72 65 20 74 68 65 20 44 4f 20 61 6e 64 20 41 44 20 62 | .and.will.ignore.the.DO.and.AD.b |
| c5fc0 | 69 74 73 20 69 6e 20 71 75 65 72 69 65 73 2e 00 2a 2a 6f 6e 2d 66 61 69 6c 75 72 65 2a 2a 3a 20 | its.in.queries..**on-failure**:. |
| c5fe0 | 52 65 73 74 61 72 74 20 63 6f 6e 74 61 69 6e 65 72 73 20 77 68 65 6e 20 74 68 65 79 20 65 78 69 | Restart.containers.when.they.exi |
| c6000 | 74 20 77 69 74 68 20 61 20 6e 6f 6e 2d 7a 65 72 6f 20 65 78 69 74 20 63 6f 64 65 2c 20 72 65 74 | t.with.a.non-zero.exit.code,.ret |
| c6020 | 72 79 69 6e 67 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 20 28 64 65 66 61 75 6c 74 29 00 2a 2a 6f | rying.indefinitely.(default).**o |
| c6040 | 72 64 65 72 2a 2a 20 52 75 6c 65 20 6f 72 64 65 72 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 | rder**.Rule.order..Requires.`<va |
| c6060 | 6c 75 65 3e 60 2e 00 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 20 2d 20 | lue>`..**outbound-interface**.-. |
| c6080 | 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d | applicable.only.to.:ref:`source- |
| c60a0 | 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 | nat`..It.configures.the.interfac |
| c60c0 | 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 6f 75 74 73 69 64 65 20 | e.which.is.used.for.the.outside. |
| c60e0 | 74 72 61 66 66 69 63 20 74 68 61 74 20 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 | traffic.that.this.translation.ru |
| c6100 | 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 00 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 | le.applies.to..**outbound-interf |
| c6120 | 61 63 65 2a 2a 20 2d 20 61 70 70 6c 69 63 61 62 6c 65 20 6f 6e 6c 79 20 74 6f 20 3a 72 65 66 3a | ace**.-.applicable.only.to.:ref: |
| c6140 | 60 73 6f 75 72 63 65 2d 6e 61 74 60 2e 20 49 74 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 | `source-nat`..It.configures.the. |
| c6160 | 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 | interface.which.is.used.for.the. |
| c6180 | 6f 75 74 73 69 64 65 20 74 72 61 66 66 69 63 20 74 68 61 74 20 74 68 69 73 20 74 72 61 6e 73 6c | outside.traffic.that.this.transl |
| c61a0 | 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 20 49 6e 74 65 72 66 61 63 65 | ation.rule.applies.to..Interface |
| c61c0 | 20 67 72 6f 75 70 73 2c 20 69 6e 76 65 72 74 65 64 20 73 65 6c 65 63 74 69 6f 6e 20 61 6e 64 20 | .groups,.inverted.selection.and. |
| c61e0 | 77 69 6c 64 63 61 72 64 2c 20 61 72 65 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 2a 2a | wildcard,.are.also.supported..** |
| c6200 | 70 72 65 66 65 72 2a 2a 20 2d 20 41 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 49 50 76 34 20 6e | prefer**.-.Ask.client.for.IPv4.n |
| c6220 | 65 67 6f 74 69 61 74 69 6f 6e 2c 20 64 6f 20 6e 6f 74 20 66 61 69 6c 20 69 66 20 69 74 20 72 65 | egotiation,.do.not.fail.if.it.re |
| c6240 | 6a 65 63 74 73 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 41 73 6b 20 63 6c 69 65 6e 74 20 66 6f | jects.**prefer**.-.Ask.client.fo |
| c6260 | 72 20 49 50 76 36 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 64 6f 20 6e 6f 74 20 66 61 69 6c 20 | r.IPv6.negotiation,.do.not.fail. |
| c6280 | 69 66 20 69 74 20 72 65 6a 65 63 74 73 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 61 73 6b 20 63 | if.it.rejects.**prefer**.-.ask.c |
| c62a0 | 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 20 64 6f | lient.for.mppe,.if.it.rejects.do |
| c62c0 | 6e 27 74 20 66 61 69 6c 00 2a 2a 70 72 65 66 65 72 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 | n't.fail.**prefer**.-.ask.client |
| c62e0 | 20 66 6f 72 20 6d 70 70 65 2c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 20 64 6f 6e 27 74 20 66 | .for.mppe,.if.it.rejects.don't.f |
| c6300 | 61 69 6c 2e 20 28 44 65 66 61 75 6c 74 20 76 61 6c 75 65 29 00 2a 2a 70 72 65 66 65 72 65 6e 63 | ail..(Default.value).**preferenc |
| c6320 | 65 2a 2a 20 52 75 6c 65 20 70 72 65 66 65 72 65 6e 63 65 2e 20 52 65 71 75 69 72 65 73 20 60 3c | e**.Rule.preference..Requires.`< |
| c6340 | 76 61 6c 75 65 3e 60 2e 20 44 65 66 61 75 6c 74 73 20 74 6f 20 30 20 69 66 20 6e 6f 74 20 73 65 | value>`..Defaults.to.0.if.not.se |
| c6360 | 74 2e 00 2a 2a 70 72 6f 63 65 73 73 2a 2a 20 57 68 65 6e 20 64 6e 73 73 65 63 20 69 73 20 73 65 | t..**process**.When.dnssec.is.se |
| c6380 | 74 20 74 6f 20 70 72 6f 63 65 73 73 20 74 68 65 20 62 65 68 61 76 69 6f 72 20 69 73 20 73 69 6d | t.to.process.the.behavior.is.sim |
| c63a0 | 69 6c 61 72 20 74 6f 20 70 72 6f 63 65 73 73 2d 6e 6f 2d 76 61 6c 69 64 61 74 65 2e 20 48 6f 77 | ilar.to.process-no-validate..How |
| c63c0 | 65 76 65 72 2c 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 76 | ever,.the.recursor.will.try.to.v |
| c63e0 | 61 6c 69 64 61 74 65 20 74 68 65 20 64 61 74 61 20 69 66 20 61 74 20 6c 65 61 73 74 20 6f 6e 65 | alidate.the.data.if.at.least.one |
| c6400 | 20 6f 66 20 74 68 65 20 44 4f 20 6f 72 20 41 44 20 62 69 74 73 20 69 73 20 73 65 74 20 69 6e 20 | .of.the.DO.or.AD.bits.is.set.in. |
| c6420 | 74 68 65 20 71 75 65 72 79 3b 20 69 6e 20 74 68 61 74 20 63 61 73 65 2c 20 69 74 20 77 69 6c 6c | the.query;.in.that.case,.it.will |
| c6440 | 20 73 65 74 20 74 68 65 20 41 44 2d 62 69 74 20 69 6e 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 | .set.the.AD-bit.in.the.response. |
| c6460 | 77 68 65 6e 20 74 68 65 20 64 61 74 61 20 69 73 20 76 61 6c 69 64 61 74 65 64 20 73 75 63 63 65 | when.the.data.is.validated.succe |
| c6480 | 73 73 66 75 6c 6c 79 2c 20 6f 72 20 73 65 6e 64 20 53 45 52 56 46 41 49 4c 20 77 68 65 6e 20 74 | ssfully,.or.send.SERVFAIL.when.t |
| c64a0 | 68 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 63 6f 6d 65 73 20 75 70 20 62 6f 67 75 73 2e 00 2a 2a | he.validation.comes.up.bogus..** |
| c64c0 | 70 72 6f 63 65 73 73 2d 6e 6f 2d 76 61 6c 69 64 61 74 65 2a 2a 20 49 6e 20 74 68 69 73 20 6d 6f | process-no-validate**.In.this.mo |
| c64e0 | 64 65 20 74 68 65 20 72 65 63 75 72 73 6f 72 20 61 63 74 73 20 61 73 20 61 20 22 73 65 63 75 72 | de.the.recursor.acts.as.a."secur |
| c6500 | 69 74 79 20 61 77 61 72 65 2c 20 6e 6f 6e 2d 76 61 6c 69 64 61 74 69 6e 67 22 20 6e 61 6d 65 73 | ity.aware,.non-validating".names |
| c6520 | 65 72 76 65 72 2c 20 6d 65 61 6e 69 6e 67 20 69 74 20 77 69 6c 6c 20 73 65 74 20 74 68 65 20 44 | erver,.meaning.it.will.set.the.D |
| c6540 | 4f 2d 62 69 74 20 6f 6e 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 20 61 6e 64 20 77 69 | O-bit.on.outgoing.queries.and.wi |
| c6560 | 6c 6c 20 70 72 6f 76 69 64 65 20 44 4e 53 53 45 43 20 72 65 6c 61 74 65 64 20 52 52 73 65 74 73 | ll.provide.DNSSEC.related.RRsets |
| c6580 | 20 28 4e 53 45 43 2c 20 52 52 53 49 47 29 20 74 6f 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 61 | .(NSEC,.RRSIG).to.clients.that.a |
| c65a0 | 73 6b 20 66 6f 72 20 74 68 65 6d 20 28 62 79 20 6d 65 61 6e 73 20 6f 66 20 61 20 44 4f 2d 62 69 | sk.for.them.(by.means.of.a.DO-bi |
| c65c0 | 74 20 69 6e 20 74 68 65 20 71 75 65 72 79 29 2c 20 65 78 63 65 70 74 20 66 6f 72 20 7a 6f 6e 65 | t.in.the.query),.except.for.zone |
| c65e0 | 73 20 70 72 6f 76 69 64 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 61 75 74 68 2d 7a 6f 6e 65 | s.provided.through.the.auth-zone |
| c6600 | 73 20 73 65 74 74 69 6e 67 2e 20 49 74 20 77 69 6c 6c 20 6e 6f 74 20 64 6f 20 61 6e 79 20 76 61 | s.setting..It.will.not.do.any.va |
| c6620 | 6c 69 64 61 74 69 6f 6e 20 69 6e 20 74 68 69 73 20 6d 6f 64 65 2c 20 6e 6f 74 20 65 76 65 6e 20 | lidation.in.this.mode,.not.even. |
| c6640 | 77 68 65 6e 20 72 65 71 75 65 73 74 65 64 20 62 79 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 2a 2a | when.requested.by.the.client..** |
| c6660 | 70 72 6f 74 6f 63 6f 6c 2a 2a 20 2d 20 73 70 65 63 69 66 79 20 77 68 69 63 68 20 74 79 70 65 73 | protocol**.-.specify.which.types |
| c6680 | 20 6f 66 20 70 72 6f 74 6f 63 6f 6c 73 20 74 68 69 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 | .of.protocols.this.translation.r |
| c66a0 | 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 2e 20 4f 6e 6c 79 20 70 61 63 6b 65 74 73 20 6d 61 74 | ule.applies.to..Only.packets.mat |
| c66c0 | 63 68 69 6e 67 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 20 61 72 65 | ching.the.specified.protocol.are |
| c66e0 | 20 4e 41 54 65 64 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 69 73 20 61 70 70 6c 69 65 73 20 | .NATed..By.default.this.applies. |
| c6700 | 74 6f 20 60 61 6c 6c 60 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 2a 2a 70 72 6f 74 6f 63 6f 6c 2d 73 | to.`all`.protocols..**protocol-s |
| c6720 | 70 65 63 69 66 69 63 2a 2a 20 50 20 66 6c 61 67 2e 00 2a 2a 72 61 64 69 75 73 2a 2a 3a 20 41 6c | pecific**.P.flag..**radius**:.Al |
| c6740 | 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 71 75 65 72 69 65 73 20 61 72 65 20 68 61 6e | l.authentication.queries.are.han |
| c6760 | 64 6c 65 64 20 62 79 20 61 20 63 6f 6e 66 69 67 75 72 65 64 20 52 41 44 49 55 53 20 73 65 72 76 | dled.by.a.configured.RADIUS.serv |
| c6780 | 65 72 2e 00 2a 2a 72 61 6e 64 6f 6d 2a 2a 20 2d 20 52 61 6e 64 6f 6d 20 69 6e 74 65 72 66 61 63 | er..**random**.-.Random.interfac |
| c67a0 | 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 00 2a 2a 72 65 67 65 78 70 2a 2a | e.identifier.for.IPv6.**regexp** |
| c67c0 | 20 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 20 52 65 71 75 69 72 65 73 20 60 3c | .Regular.expression..Requires.`< |
| c67e0 | 76 61 6c 75 65 3e 60 2e 00 2a 2a 72 65 6d 6f 74 65 20 73 69 64 65 20 2d 20 63 6f 6d 6d 61 6e 64 | value>`..**remote.side.-.command |
| c6800 | 73 2a 2a 00 2a 2a 72 65 70 6c 61 63 65 2a 2a 3a 20 54 65 72 6d 69 6e 61 74 65 20 66 69 72 73 74 | s**.**replace**:.Terminate.first |
| c6820 | 20 73 65 73 73 69 6f 6e 20 77 68 65 6e 20 73 65 63 6f 6e 64 20 69 73 20 61 75 74 68 6f 72 69 7a | .session.when.second.is.authoriz |
| c6840 | 65 64 20 2a 2a 28 64 65 66 61 75 6c 74 29 2a 2a 00 2a 2a 72 65 70 6c 61 63 65 3a 2a 2a 20 52 65 | ed.**(default)**.**replace:**.Re |
| c6860 | 6c 61 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 | lay.information.already.present. |
| c6880 | 69 6e 20 61 20 70 61 63 6b 65 74 20 69 73 20 73 74 72 69 70 70 65 64 20 61 6e 64 20 72 65 70 6c | in.a.packet.is.stripped.and.repl |
| c68a0 | 61 63 65 64 20 77 69 74 68 20 74 68 65 20 72 6f 75 74 65 72 27 73 20 6f 77 6e 20 72 65 6c 61 79 | aced.with.the.router's.own.relay |
| c68c0 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 73 65 74 2e 00 2a 2a 72 65 70 6c 61 63 65 6d 65 6e 74 2a | .information.set..**replacement* |
| c68e0 | 2a 20 52 65 70 6c 61 63 65 6d 65 6e 74 20 44 4e 53 20 6e 61 6d 65 2e 00 2a 2a 72 65 71 75 69 72 | *.Replacement.DNS.name..**requir |
| c6900 | 65 2a 2a 20 2d 20 52 65 71 75 69 72 65 20 49 50 76 34 20 6e 65 67 6f 74 69 61 74 69 6f 6e 00 2a | e**.-.Require.IPv4.negotiation.* |
| c6920 | 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 52 65 71 75 69 72 65 20 49 50 76 36 20 6e 65 67 6f 74 69 | *require**.-.Require.IPv6.negoti |
| c6940 | 61 74 69 6f 6e 00 2a 2a 72 65 71 75 69 72 65 2a 2a 20 2d 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 | ation.**require**.-.ask.client.f |
| c6960 | 6f 72 20 6d 70 70 65 2c 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 20 64 72 6f 70 20 63 6f 6e 6e | or.mppe,.if.it.rejects.drop.conn |
| c6980 | 65 63 74 69 6f 6e 00 2a 2a 72 65 73 6f 6c 76 65 2d 75 72 69 2a 2a 20 55 20 66 6c 61 67 2e 00 2a | ection.**resolve-uri**.U.flag..* |
| c69a0 | 2a 72 69 67 68 74 2a 2a 00 2a 2a 73 65 72 76 69 63 65 2a 2a 20 53 65 72 76 69 63 65 20 74 79 70 | *right**.**service**.Service.typ |
| c69c0 | 65 2e 20 52 65 71 75 69 72 65 73 20 60 3c 76 61 6c 75 65 3e 60 2e 00 2a 2a 73 65 74 70 63 61 70 | e..Requires.`<value>`..**setpcap |
| c69e0 | 2a 2a 3a 20 43 61 70 61 62 69 6c 69 74 79 20 73 65 74 73 20 28 66 72 6f 6d 20 62 6f 75 6e 64 65 | **:.Capability.sets.(from.bounde |
| c6a00 | 64 20 6f 72 20 69 6e 68 65 72 69 74 65 64 20 73 65 74 29 00 2a 2a 73 68 61 72 65 64 2a 2a 3a 20 | d.or.inherited.set).**shared**:. |
| c6a20 | 4d 75 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 20 | Multiple.clients.share.the.same. |
| c6a40 | 6e 65 74 77 6f 72 6b 2e 20 2a 2a 28 64 65 66 61 75 6c 74 29 2a 2a 00 2a 2a 73 6f 75 72 63 65 2a | network..**(default)**.**source* |
| c6a60 | 2a 20 2d 20 73 70 65 63 69 66 69 65 73 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 74 68 65 20 | *.-.specifies.which.packets.the. |
| c6a80 | 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 20 61 70 70 6c 69 65 73 20 74 6f 20 | NAT.translation.rule.applies.to. |
| c6aa0 | 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 61 63 6b 65 74 73 20 73 6f 75 72 63 65 20 49 50 20 61 | based.on.the.packets.source.IP.a |
| c6ac0 | 64 64 72 65 73 73 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 4f 6e 6c 79 20 | ddress.and/or.source.port..Only. |
| c6ae0 | 6d 61 74 63 68 69 6e 67 20 70 61 63 6b 65 74 73 20 61 72 65 20 63 6f 6e 73 69 64 65 72 65 64 20 | matching.packets.are.considered. |
| c6b00 | 66 6f 72 20 4e 41 54 2e 00 2a 2a 73 79 73 2d 61 64 6d 69 6e 2a 2a 3a 20 41 64 6d 69 6e 69 73 74 | for.NAT..**sys-admin**:.Administ |
| c6b20 | 61 74 69 6f 6e 20 6f 70 65 72 61 74 69 6f 6e 73 20 28 71 75 6f 74 61 63 74 6c 2c 20 6d 6f 75 6e | ation.operations.(quotactl,.moun |
| c6b40 | 74 2c 20 73 65 74 68 6f 73 74 6e 61 6d 65 2c 20 73 65 74 64 6f 6d 61 69 6e 61 6d 65 29 00 2a 2a | t,.sethostname,.setdomainame).** |
| c6b60 | 73 79 73 2d 61 64 6d 69 6e 2a 2a 3a 20 41 64 6d 69 6e 69 73 74 72 61 74 69 6f 6e 20 6f 70 65 72 | sys-admin**:.Administration.oper |
| c6b80 | 61 74 69 6f 6e 73 20 28 71 75 6f 74 61 63 74 6c 2c 20 6d 6f 75 6e 74 2c 20 73 65 74 68 6f 73 74 | ations.(quotactl,.mount,.sethost |
| c6ba0 | 6e 61 6d 65 2c 20 73 65 74 64 6f 6d 61 69 6e 61 6d 65 29 00 2a 2a 73 79 73 2d 74 69 6d 65 2a 2a | name,.setdomainame).**sys-time** |
| c6bc0 | 3a 20 50 65 72 6d 69 73 73 69 6f 6e 20 74 6f 20 73 65 74 20 73 79 73 74 65 6d 20 63 6c 6f 63 6b | :.Permission.to.set.system.clock |
| c6be0 | 00 2a 2a 74 72 61 6e 73 69 74 69 6f 6e 2a 2a 20 2d 20 53 65 6e 64 20 61 6e 64 20 61 63 63 65 70 | .**transition**.-.Send.and.accep |
| c6c00 | 74 20 62 6f 74 68 20 73 74 79 6c 65 73 20 6f 66 20 54 4c 56 73 20 64 75 72 69 6e 67 20 74 72 61 | t.both.styles.of.TLVs.during.tra |
| c6c20 | 6e 73 69 74 69 6f 6e 2e 00 2a 2a 75 70 73 74 72 65 61 6d 3a 2a 2a 20 54 68 65 20 75 70 73 74 72 | nsition..**upstream:**.The.upstr |
| c6c40 | 65 61 6d 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 74 68 65 20 6f 75 74 | eam.network.interface.is.the.out |
| c6c60 | 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 72 65 73 70 6f 6e 73 | going.interface.which.is.respons |
| c6c80 | 69 62 6c 65 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 61 76 61 69 6c 61 | ible.for.communicating.to.availa |
| c6ca0 | 62 6c 65 20 6d 75 6c 74 69 63 61 73 74 20 64 61 74 61 20 73 6f 75 72 63 65 73 2e 20 54 68 65 72 | ble.multicast.data.sources..Ther |
| c6cc0 | 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 6f 6e 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 | e.can.only.be.one.upstream.inter |
| c6ce0 | 66 61 63 65 2e 00 2a 2a 76 61 6c 69 64 61 74 65 2a 2a 20 54 68 65 20 68 69 67 68 65 73 74 20 6d | face..**validate**.The.highest.m |
| c6d00 | 6f 64 65 20 6f 66 20 44 4e 53 53 45 43 20 70 72 6f 63 65 73 73 69 6e 67 2e 20 49 6e 20 74 68 69 | ode.of.DNSSEC.processing..In.thi |
| c6d20 | 73 20 6d 6f 64 65 2c 20 61 6c 6c 20 71 75 65 72 69 65 73 20 77 69 6c 6c 20 62 65 20 76 61 6c 69 | s.mode,.all.queries.will.be.vali |
| c6d40 | 64 61 74 65 64 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 61 6e 73 77 65 72 65 64 20 77 69 74 68 20 | dated.and.will.be.answered.with. |
| c6d60 | 61 20 53 45 52 56 46 41 49 4c 20 69 6e 20 63 61 73 65 20 6f 66 20 62 6f 67 75 73 20 64 61 74 61 | a.SERVFAIL.in.case.of.bogus.data |
| c6d80 | 2c 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 72 65 71 | ,.regardless.of.the.client's.req |
| c6da0 | 75 65 73 74 2e 00 2a 2a 76 6c 61 6e 2a 2a 3a 20 4f 6e 65 20 56 4c 41 4e 20 70 65 72 20 63 6c 69 | uest..**vlan**:.One.VLAN.per.cli |
| c6dc0 | 65 6e 74 2e 00 2a 2a 77 69 64 65 2a 2a 20 2d 20 55 73 65 20 6e 65 77 20 73 74 79 6c 65 20 6f 66 | ent..**wide**.-.Use.new.style.of |
| c6de0 | 20 54 4c 56 73 20 74 6f 20 63 61 72 72 79 20 77 69 64 65 72 20 6d 65 74 72 69 63 2e 00 2a 2a 78 | .TLVs.to.carry.wider.metric..**x |
| c6e00 | 3a 78 3a 78 3a 78 2a 2a 20 2d 20 53 70 65 63 69 66 79 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 | :x:x:x**.-.Specify.interface.ide |
| c6e20 | 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 00 2a 62 67 70 64 2a 20 73 75 70 70 6f 72 74 73 | ntifier.for.IPv6.*bgpd*.supports |
| c6e40 | 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 42 47 50 | .Multiprotocol.Extension.for.BGP |
| c6e60 | 2e 20 53 6f 20 69 66 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 20 73 75 70 70 6f 72 74 73 20 74 | ..So.if.a.remote.peer.supports.t |
| c6e80 | 68 65 20 70 72 6f 74 6f 63 6f 6c 2c 20 2a 62 67 70 64 2a 20 63 61 6e 20 65 78 63 68 61 6e 67 65 | he.protocol,.*bgpd*.can.exchange |
| c6ea0 | 20 49 50 76 36 20 61 6e 64 2f 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 72 6f 75 74 69 6e 67 20 69 | .IPv6.and/or.multicast.routing.i |
| c6ec0 | 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 30 00 30 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2c 20 | nformation..0.0.if.not.defined,. |
| c6ee0 | 77 68 69 63 68 20 6d 65 61 6e 73 20 6e 6f 20 72 65 66 72 65 73 68 69 6e 67 2e 00 30 20 69 66 20 | which.means.no.refreshing..0.if. |
| c6f00 | 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 30 30 30 30 30 30 00 30 30 31 30 31 30 00 30 30 31 31 30 | not.defined..000000.001010.00110 |
| c6f20 | 30 00 30 30 31 31 31 30 00 30 31 30 30 31 30 00 30 31 30 31 30 30 00 30 31 30 31 31 30 00 30 31 | 0.001110.010010.010100.010110.01 |
| c6f40 | 31 30 31 30 00 30 31 31 31 30 30 00 30 31 31 31 31 30 00 30 3a 20 44 69 73 61 62 6c 65 20 44 41 | 1010.011100.011110.0:.Disable.DA |
| c6f60 | 44 00 31 00 31 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 31 2d 74 6f 2d 31 20 4e 41 54 | D.1.1.if.not.defined..1-to-1.NAT |
| c6f80 | 00 31 2e 20 43 72 65 61 74 65 20 61 6e 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 00 31 2e 20 46 | .1..Create.an.event.handler.1..F |
| c6fa0 | 69 72 73 74 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 65 68 74 30 2c | irst.packet.is.received.on.eht0, |
| c6fc0 | 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e | .with.destination.address.192.0. |
| c6fe0 | 32 2e 31 30 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 | 2.100,.protocol.tcp.and.destinat |
| c7000 | 69 6f 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 73 73 75 6d 65 20 73 75 63 68 20 64 65 73 74 69 | ion.port.1122..Assume.such.desti |
| c7020 | 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 6f | nation.address.is.reachable.thro |
| c7040 | 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 2e 00 31 2e 20 46 69 72 73 74 20 70 61 63 | ugh.interface.eth1..1..First.pac |
| c7060 | 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 65 74 68 30 2c 20 77 69 74 68 20 64 65 | ket.is.received.on.eth0,.with.de |
| c7080 | 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 | stination.address.192.0.2.100,.p |
| c70a0 | 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 | rotocol.tcp.and.destination.port |
| c70c0 | 20 31 31 32 32 2e 20 41 73 73 75 6d 65 20 73 75 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 | .1122..Assume.such.destination.a |
| c70e0 | 64 64 72 65 73 73 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 | ddress.is.reachable.through.inte |
| c7100 | 72 66 61 63 65 20 65 74 68 31 2e 00 31 2e 20 46 69 72 73 74 6c 79 2c 20 61 20 70 61 63 6b 65 74 | rface.eth1..1..Firstly,.a.packet |
| c7120 | 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 65 74 68 30 2c 20 77 69 74 68 20 64 65 73 74 69 | .is.received.on.eth0,.with.desti |
| c7140 | 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 30 30 2c 20 70 72 6f 74 | nation.address.192.0.2.100,.prot |
| c7160 | 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 31 31 | ocol.tcp.and.destination.port.11 |
| c7180 | 32 32 2e 20 41 73 73 75 6d 65 20 73 75 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 | 22..Assume.such.destination.addr |
| c71a0 | 65 73 73 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 | ess.is.reachable.through.interfa |
| c71c0 | 63 65 20 65 74 68 31 2e 00 31 2e 20 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 54 43 50 20 63 | ce.eth1..1..Generate.a.new.TCP.c |
| c71e0 | 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 | onnection.with.destination.port. |
| c7200 | 39 39 39 30 2e 20 41 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 72 79 | 9990..As.shown.next,.a.new.entry |
| c7220 | 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 | .was.added.to.dynamic.firewall.g |
| c7240 | 72 6f 75 70 20 2a 2a 50 4e 5f 30 31 2a 2a 00 31 30 00 31 30 20 2d 20 31 30 20 4d 42 69 74 2f 73 | roup.**PN_01**.10.10.-.10.MBit/s |
| c7260 | 00 31 30 2e 30 2e 30 2e 30 20 74 6f 20 31 30 2e 32 35 35 2e 32 35 35 2e 32 35 35 20 28 43 49 44 | .10.0.0.0.to.10.255.255.255.(CID |
| c7280 | 52 3a 20 31 30 2e 30 2e 30 2e 30 2f 38 29 00 31 30 30 20 2d 20 31 30 30 20 4d 42 69 74 2f 73 00 | R:.10.0.0.0/8).100.-.100.MBit/s. |
| c72a0 | 31 30 30 30 20 2d 20 31 20 47 42 69 74 2f 73 00 31 30 30 30 30 20 2d 20 31 30 20 47 42 69 74 2f | 1000.-.1.GBit/s.10000.-.10.GBit/ |
| c72c0 | 73 00 31 30 30 30 30 30 20 2d 20 31 30 30 20 47 42 69 74 2f 73 00 31 30 30 30 31 30 00 31 30 30 | s.100000.-.100.GBit/s.100010.100 |
| c72e0 | 31 30 30 00 31 30 30 31 31 30 00 31 30 31 31 31 30 00 31 31 00 31 31 39 00 31 32 00 31 32 31 2c | 100.100110.101110.11.119.12.121, |
| c7300 | 20 32 34 39 00 31 33 00 31 34 00 31 35 00 31 36 00 31 37 00 31 37 32 2e 31 36 2e 30 2e 30 20 74 | .249.13.14.15.16.17.172.16.0.0.t |
| c7320 | 6f 20 31 37 32 2e 33 31 2e 32 35 35 2e 32 35 35 20 28 43 49 44 52 3a 20 31 37 32 2e 31 36 2e 30 | o.172.31.255.255.(CIDR:.172.16.0 |
| c7340 | 2e 30 2f 31 32 29 00 31 38 00 31 39 00 31 39 32 2e 31 36 38 2e 30 2e 30 20 74 6f 20 31 39 32 2e | .0/12).18.19.192.168.0.0.to.192. |
| c7360 | 31 36 38 2e 32 35 35 2e 32 35 35 20 28 43 49 44 52 3a 20 31 39 32 2e 31 36 38 2e 30 2e 30 2f 31 | 168.255.255.(CIDR:.192.168.0.0/1 |
| c7380 | 36 29 00 31 3a 20 45 6e 61 62 6c 65 20 44 41 44 20 28 64 65 66 61 75 6c 74 29 00 32 00 32 2e 20 | 6).1:.Enable.DAD.(default).2.2.. |
| c73a0 | 41 64 64 20 72 65 67 65 78 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 00 32 2e 20 47 65 6e 65 72 | Add.regex.to.the.script.2..Gener |
| c73c0 | 61 74 65 20 61 20 6e 65 77 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 64 65 | ate.a.new.TCP.connection.with.de |
| c73e0 | 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 39 39 39 31 2e 20 41 73 20 73 68 6f 77 6e 20 6e 65 | stination.port.9991..As.shown.ne |
| c7400 | 78 74 2c 20 61 20 6e 65 77 20 65 6e 74 72 79 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 64 79 6e | xt,.a.new.entry.was.added.to.dyn |
| c7420 | 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 2a 2a 50 4e 5f 30 32 2a 2a 00 32 2e | amic.firewall.group.**PN_02**.2. |
| c7440 | 20 53 69 6e 63 65 20 74 68 69 73 20 69 73 20 74 68 65 20 66 69 72 73 74 20 70 61 63 6b 65 74 2c | .Since.this.is.the.first.packet, |
| c7460 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 75 73 20 6f 66 20 74 68 69 73 20 63 6f 6e 6e 65 | .connection.status.of.this.conne |
| c7480 | 63 74 69 6f 6e 2c 20 73 6f 20 66 61 72 20 69 73 20 2a 2a 6e 65 77 2a 2a 2e 20 53 6f 20 6e 65 69 | ction,.so.far.is.**new**..So.nei |
| c74a0 | 74 68 65 72 20 72 75 6c 65 20 31 30 20 6e 6f 72 20 32 30 20 61 72 65 20 76 61 6c 69 64 2e 00 32 | ther.rule.10.nor.20.are.valid..2 |
| c74c0 | 30 00 32 31 00 32 32 00 32 33 00 32 35 30 30 20 2d 20 32 2e 35 20 47 42 69 74 2f 73 00 32 35 30 | 0.21.22.23.2500.-.2.5.GBit/s.250 |
| c74e0 | 30 30 20 2d 20 32 35 20 47 42 69 74 2f 73 00 32 35 32 00 32 36 00 32 38 00 32 3a 20 45 6e 61 62 | 00.-.25.GBit/s.252.26.28.2:.Enab |
| c7500 | 6c 65 20 44 41 44 2c 20 61 6e 64 20 64 69 73 61 62 6c 65 20 49 50 76 36 20 6f 70 65 72 61 74 69 | le.DAD,.and.disable.IPv6.operati |
| c7520 | 6f 6e 20 69 66 20 4d 41 43 2d 62 61 73 65 64 20 64 75 70 6c 69 63 61 74 65 20 6c 69 6e 6b 2d 6c | on.if.MAC-based.duplicate.link-l |
| c7540 | 6f 63 61 6c 20 61 64 64 72 65 73 73 20 68 61 73 20 62 65 65 6e 20 66 6f 75 6e 64 2e 00 32 46 41 | ocal.address.has.been.found..2FA |
| c7560 | 20 4f 54 50 20 73 75 70 70 6f 72 74 00 33 00 33 2e 20 41 64 64 20 61 20 66 75 6c 6c 20 70 61 74 | .OTP.support.3.3..Add.a.full.pat |
| c7580 | 68 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 00 33 2e 20 47 65 6e 65 72 61 74 65 20 61 20 6e 65 | h.to.the.script.3..Generate.a.ne |
| c75a0 | 77 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f | w.TCP.connection.with.destinatio |
| c75c0 | 6e 20 70 6f 72 74 20 39 39 39 32 2e 20 41 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 61 20 6e 65 | n.port.9992..As.shown.next,.a.ne |
| c75e0 | 77 20 65 6e 74 72 79 20 77 61 73 20 61 64 64 65 64 20 74 6f 20 64 79 6e 61 6d 69 63 20 66 69 72 | w.entry.was.added.to.dynamic.fir |
| c7600 | 65 77 61 6c 6c 20 67 72 6f 75 70 20 2a 2a 41 4c 4c 4f 57 45 44 2a 2a 00 33 30 00 33 34 00 33 36 | ewall.group.**ALLOWED**.30.34.36 |
| c7620 | 00 33 38 00 34 00 34 2e 20 41 64 64 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 73 | .38.4.4..Add.optional.parameters |
| c7640 | 00 34 2e 20 4f 6e 63 65 20 61 6e 20 61 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 72 20 31 | .4..Once.an.answer.from.server.1 |
| c7660 | 39 32 2e 30 2e 32 2e 31 30 30 20 69 73 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 65 20 64 | 92.0.2.100.is.seen.in.opposite.d |
| c7680 | 69 72 65 63 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 6c 6c 20 | irection,.connection.state.will. |
| c76a0 | 62 65 20 74 72 69 67 67 65 72 65 64 20 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c | be.triggered.to.**established**, |
| c76c0 | 20 73 6f 20 74 68 69 73 20 72 65 70 6c 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e 20 72 75 | .so.this.reply.is.accepted.in.ru |
| c76e0 | 6c 65 20 32 30 2e 00 34 2e 20 4f 6e 63 65 20 61 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 72 76 65 | le.20..4..Once.answer.from.serve |
| c7700 | 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 20 69 73 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f 73 69 74 | r.192.0.2.100.is.seen.in.opposit |
| c7720 | 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 77 69 | e.direction,.connection.state.wi |
| c7740 | 6c 6c 20 62 65 20 74 72 69 67 67 65 72 65 64 20 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 | ll.be.triggered.to.**established |
| c7760 | 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 65 70 6c 79 20 69 73 20 61 63 63 65 70 74 65 64 20 69 6e | **,.so.this.reply.is.accepted.in |
| c7780 | 20 72 75 6c 65 20 31 30 2e 00 34 2e 20 4f 6e 63 65 20 61 6e 73 77 65 72 20 66 72 6f 6d 20 73 65 | .rule.10..4..Once.answer.from.se |
| c77a0 | 72 76 65 72 20 31 39 32 2e 30 2e 32 2e 31 30 30 20 69 73 20 73 65 65 6e 20 69 6e 20 6f 70 70 6f | rver.192.0.2.100.is.seen.in.oppo |
| c77c0 | 73 69 74 65 20 64 69 72 65 63 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 | site.direction,.connection.state |
| c77e0 | 20 77 69 6c 6c 20 62 65 20 74 72 69 67 67 65 72 65 64 20 74 6f 20 2a 2a 65 73 74 61 62 6c 69 73 | .will.be.triggered.to.**establis |
| c7800 | 68 65 64 2a 2a 2c 20 73 6f 20 74 68 69 73 20 72 65 70 6c 79 20 69 73 20 61 63 63 65 70 74 65 64 | hed**,.so.this.reply.is.accepted |
| c7820 | 20 69 6e 20 72 75 6c 65 20 32 30 2e 00 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 20 6d 61 79 | .in.rule.20..40.MHz.channels.may |
| c7840 | 20 73 77 69 74 63 68 20 74 68 65 69 72 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f 6e 64 | .switch.their.primary.and.second |
| c7860 | 61 72 79 20 63 68 61 6e 6e 65 6c 73 20 69 66 20 6e 65 65 64 65 64 20 6f 72 20 63 72 65 61 74 69 | ary.channels.if.needed.or.creati |
| c7880 | 6f 6e 20 6f 66 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 6d 61 79 62 65 20 72 65 6a 65 63 | on.of.40.MHz.channel.maybe.rejec |
| c78a0 | 74 65 64 20 62 61 73 65 64 20 6f 6e 20 6f 76 65 72 6c 61 70 70 69 6e 67 20 42 53 53 65 73 2e 20 | ted.based.on.overlapping.BSSes.. |
| c78c0 | 54 68 65 73 65 20 63 68 61 6e 67 65 73 20 61 72 65 20 64 6f 6e 65 20 61 75 74 6f 6d 61 74 69 63 | These.changes.are.done.automatic |
| c78e0 | 61 6c 6c 79 20 77 68 65 6e 20 68 6f 73 74 61 70 64 20 69 73 20 73 65 74 74 69 6e 67 20 75 70 20 | ally.when.hostapd.is.setting.up. |
| c7900 | 74 68 65 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 2e 00 34 30 30 30 30 20 2d 20 34 30 20 47 | the.40.MHz.channel..40000.-.40.G |
| c7920 | 42 69 74 2f 73 00 34 32 00 34 34 00 34 36 00 35 00 35 20 69 66 20 6e 6f 74 20 64 65 66 69 6e 65 | Bit/s.42.44.46.5.5.if.not.define |
| c7940 | 64 2e 00 35 2e 20 53 65 63 6f 6e 64 20 70 61 63 6b 65 74 20 66 6f 72 20 74 68 69 73 20 63 6f 6e | d..5..Second.packet.for.this.con |
| c7960 | 6e 65 63 74 69 6f 6e 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 | nection.is.received.by.the.route |
| c7980 | 72 2e 20 53 69 6e 63 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 69 73 20 2a 2a 65 | r..Since.connection.state.is.**e |
| c79a0 | 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 74 68 65 6e 20 72 75 6c 65 20 31 30 20 69 73 20 68 69 | stablished**,.then.rule.10.is.hi |
| c79c0 | 74 2c 20 61 6e 64 20 61 20 6e 65 77 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 | t,.and.a.new.entry.in.the.flowta |
| c79e0 | 62 6c 65 20 46 54 30 31 20 69 73 20 61 64 64 65 64 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 | ble.FT01.is.added.for.this.conne |
| c7a00 | 63 74 69 6f 6e 2e 00 35 2e 20 54 68 65 20 73 65 63 6f 6e 64 20 70 61 63 6b 65 74 20 66 6f 72 20 | ction..5..The.second.packet.for. |
| c7a20 | 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 | this.connection.is.received.by.t |
| c7a40 | 68 65 20 72 6f 75 74 65 72 2e 20 53 69 6e 63 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 | he.router..Since.connection.stat |
| c7a60 | 65 20 69 73 20 2a 2a 65 73 74 61 62 6c 69 73 68 65 64 2a 2a 2c 20 74 68 65 6e 20 72 75 6c 65 20 | e.is.**established**,.then.rule. |
| c7a80 | 31 30 20 69 73 20 68 69 74 2c 20 61 6e 64 20 61 20 6e 65 77 20 65 6e 74 72 79 20 69 6e 20 74 68 | 10.is.hit,.and.a.new.entry.in.th |
| c7aa0 | 65 20 66 6c 6f 77 74 61 62 6c 65 20 46 54 30 31 20 69 73 20 61 64 64 65 64 20 66 6f 72 20 74 68 | e.flowtable.FT01.is.added.for.th |
| c7ac0 | 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 35 30 30 30 20 2d 20 35 20 47 42 69 74 2f 73 00 35 | is.connection..5000.-.5.GBit/s.5 |
| c7ae0 | 30 30 30 30 20 2d 20 35 30 20 47 42 69 74 2f 73 00 35 34 00 36 00 36 2e 20 41 6c 6c 20 73 75 62 | 0000.-.50.GBit/s.54.6.6..All.sub |
| c7b00 | 73 65 63 75 65 6e 74 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 6b 69 70 20 74 72 61 64 69 74 | secuent.packets.will.skip.tradit |
| c7b20 | 69 6f 6e 61 6c 20 70 61 74 68 2c 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 64 65 | ional.path,.and.will.be.offloade |
| c7b40 | 64 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a | d.and.will.use.the.**Fast.Path** |
| c7b60 | 2e 00 36 2e 20 41 6c 6c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 63 6b 65 74 73 20 77 | ..6..All.the.following.packets.w |
| c7b80 | 69 6c 6c 20 73 6b 69 70 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 61 74 68 2c 20 77 | ill.skip.the.traditional.path,.w |
| c7ba0 | 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 64 65 64 20 61 6e 64 20 75 73 65 20 74 68 65 20 2a 2a 46 | ill.be.offloaded.and.use.the.**F |
| c7bc0 | 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 2e 20 41 6c 6c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | ast.Path**..6..All.the.following |
| c7be0 | 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 6b 69 70 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 | .packets.will.skip.traditional.p |
| c7c00 | 61 74 68 2c 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 6f 66 66 6c 6f 61 64 65 64 20 61 6e 64 20 77 | ath,.and.will.be.offloaded.and.w |
| c7c20 | 69 6c 6c 20 75 73 65 20 74 68 65 20 2a 2a 46 61 73 74 20 50 61 74 68 2a 2a 2e 00 36 34 35 31 32 | ill.use.the.**Fast.Path**..64512 |
| c7c40 | 20 2f 20 31 30 30 30 20 e2 89 88 20 36 34 20 73 75 62 73 63 72 69 62 65 72 73 20 70 65 72 20 70 | ./.1000.....64.subscribers.per.p |
| c7c60 | 75 62 6c 69 63 20 49 50 00 36 36 00 36 36 25 20 6f 66 20 74 72 61 66 66 69 63 20 69 73 20 72 6f | ublic.IP.66.66%.of.traffic.is.ro |
| c7c80 | 75 74 65 64 20 74 6f 20 65 74 68 30 2c 20 65 74 68 31 20 67 65 74 73 20 33 33 25 20 6f 66 20 74 | uted.to.eth0,.eth1.gets.33%.of.t |
| c7ca0 | 72 61 66 66 69 63 2e 00 36 37 00 36 39 00 36 69 6e 34 20 28 53 49 54 29 00 36 69 6e 34 20 75 73 | raffic..67.69.6in4.(SIT).6in4.us |
| c7cc0 | 65 73 20 74 75 6e 6e 65 6c 69 6e 67 20 74 6f 20 65 6e 63 61 70 73 75 6c 61 74 65 20 49 50 76 36 | es.tunneling.to.encapsulate.IPv6 |
| c7ce0 | 20 74 72 61 66 66 69 63 20 6f 76 65 72 20 49 50 76 34 20 6c 69 6e 6b 73 20 61 73 20 64 65 66 69 | .traffic.over.IPv4.links.as.defi |
| c7d00 | 6e 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 32 31 33 60 2e 20 54 68 65 20 36 69 6e 34 20 74 72 61 | ned.in.:rfc:`4213`..The.6in4.tra |
| c7d20 | 66 66 69 63 20 69 73 20 73 65 6e 74 20 6f 76 65 72 20 49 50 76 34 20 69 6e 73 69 64 65 20 49 50 | ffic.is.sent.over.IPv4.inside.IP |
| c7d40 | 76 34 20 70 61 63 6b 65 74 73 20 77 68 6f 73 65 20 49 50 20 68 65 61 64 65 72 73 20 68 61 76 65 | v4.packets.whose.IP.headers.have |
| c7d60 | 20 74 68 65 20 49 50 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 73 65 74 20 74 6f 20 34 | .the.IP.protocol.number.set.to.4 |
| c7d80 | 31 2e 20 54 68 69 73 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 69 73 20 73 70 65 63 69 | 1..This.protocol.number.is.speci |
| c7da0 | 66 69 63 61 6c 6c 79 20 64 65 73 69 67 6e 61 74 65 64 20 66 6f 72 20 49 50 76 36 20 65 6e 63 61 | fically.designated.for.IPv6.enca |
| c7dc0 | 70 73 75 6c 61 74 69 6f 6e 2c 20 74 68 65 20 49 50 76 34 20 70 61 63 6b 65 74 20 68 65 61 64 65 | psulation,.the.IPv4.packet.heade |
| c7de0 | 72 20 69 73 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 66 6f 6c 6c 6f 77 65 64 20 62 79 20 74 68 65 | r.is.immediately.followed.by.the |
| c7e00 | 20 49 50 76 36 20 70 61 63 6b 65 74 20 62 65 69 6e 67 20 63 61 72 72 69 65 64 2e 20 54 68 65 20 | .IPv6.packet.being.carried..The. |
| c7e20 | 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6f 76 65 72 68 65 61 64 20 69 73 20 74 68 65 20 73 69 | encapsulation.overhead.is.the.si |
| c7e40 | 7a 65 20 6f 66 20 74 68 65 20 49 50 76 34 20 68 65 61 64 65 72 20 6f 66 20 32 30 20 62 79 74 65 | ze.of.the.IPv4.header.of.20.byte |
| c7e60 | 73 2c 20 74 68 65 72 65 66 6f 72 65 20 77 69 74 68 20 61 6e 20 4d 54 55 20 6f 66 20 31 35 30 30 | s,.therefore.with.an.MTU.of.1500 |
| c7e80 | 20 62 79 74 65 73 2c 20 49 50 76 36 20 70 61 63 6b 65 74 73 20 6f 66 20 31 34 38 30 20 62 79 74 | .bytes,.IPv6.packets.of.1480.byt |
| c7ea0 | 65 73 20 63 61 6e 20 62 65 20 73 65 6e 74 20 77 69 74 68 6f 75 74 20 66 72 61 67 6d 65 6e 74 61 | es.can.be.sent.without.fragmenta |
| c7ec0 | 74 69 6f 6e 2e 20 54 68 69 73 20 74 75 6e 6e 65 6c 69 6e 67 20 74 65 63 68 6e 69 71 75 65 20 69 | tion..This.tunneling.technique.i |
| c7ee0 | 73 20 66 72 65 71 75 65 6e 74 6c 79 20 75 73 65 64 20 62 79 20 49 50 76 36 20 74 75 6e 6e 65 6c | s.frequently.used.by.IPv6.tunnel |
| c7f00 | 20 62 72 6f 6b 65 72 73 20 6c 69 6b 65 20 60 48 75 72 72 69 63 61 6e 65 20 45 6c 65 63 74 72 69 | .brokers.like.`Hurricane.Electri |
| c7f20 | 63 60 5f 2e 00 37 00 37 30 00 38 00 38 30 32 2e 31 71 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 | c`_..7.70.8.802.1q.VLAN.interfac |
| c7f40 | 65 73 20 61 72 65 20 72 65 70 72 65 73 65 6e 74 65 64 20 61 73 20 76 69 72 74 75 61 6c 20 73 75 | es.are.represented.as.virtual.su |
| c7f60 | 62 2d 69 6e 74 65 72 66 61 63 65 73 20 69 6e 20 56 79 4f 53 2e 20 54 68 65 20 74 65 72 6d 20 75 | b-interfaces.in.VyOS..The.term.u |
| c7f80 | 73 65 64 20 66 6f 72 20 74 68 69 73 20 69 73 20 60 60 76 69 66 60 60 2e 00 39 00 3a 61 62 62 72 | sed.for.this.is.``vif``..9.:abbr |
| c7fa0 | 3a 60 41 46 49 20 28 41 64 64 72 65 73 73 20 66 61 6d 69 6c 79 20 61 75 74 68 6f 72 69 74 79 20 | :`AFI.(Address.family.authority. |
| c7fc0 | 69 64 65 6e 74 69 66 69 65 72 29 60 20 2d 20 60 60 34 39 60 60 20 54 68 65 20 41 46 49 20 76 61 | identifier)`.-.``49``.The.AFI.va |
| c7fe0 | 6c 75 65 20 34 39 20 69 73 20 77 68 61 74 20 49 53 2d 49 53 20 75 73 65 73 20 66 6f 72 20 70 72 | lue.49.is.what.IS-IS.uses.for.pr |
| c8000 | 69 76 61 74 65 20 61 64 64 72 65 73 73 69 6e 67 2e 00 3a 61 62 62 72 3a 60 41 46 49 20 28 41 64 | ivate.addressing..:abbr:`AFI.(Ad |
| c8020 | 64 72 65 73 73 20 66 61 6d 69 6c 79 20 61 75 74 68 6f 72 69 74 79 20 69 64 65 6e 74 69 66 69 65 | dress.family.authority.identifie |
| c8040 | 72 29 60 20 2d 20 60 60 34 39 60 60 20 54 68 65 20 41 46 49 20 76 61 6c 75 65 20 34 39 20 69 73 | r)`.-.``49``.The.AFI.value.49.is |
| c8060 | 20 77 68 61 74 20 4f 70 65 6e 46 61 62 72 69 63 20 75 73 65 73 20 66 6f 72 20 70 72 69 76 61 74 | .what.OpenFabric.uses.for.privat |
| c8080 | 65 20 61 64 64 72 65 73 73 69 6e 67 2e 00 3a 61 62 62 72 3a 60 41 52 50 20 28 41 64 64 72 65 73 | e.addressing..:abbr:`ARP.(Addres |
| c80a0 | 73 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 63 6f 6d | s.Resolution.Protocol)`.is.a.com |
| c80c0 | 6d 75 6e 69 63 61 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 64 69 73 | munication.protocol.used.for.dis |
| c80e0 | 63 6f 76 65 72 69 6e 67 20 74 68 65 20 6c 69 6e 6b 20 6c 61 79 65 72 20 61 64 64 72 65 73 73 2c | covering.the.link.layer.address, |
| c8100 | 20 73 75 63 68 20 61 73 20 61 20 4d 41 43 20 61 64 64 72 65 73 73 2c 20 61 73 73 6f 63 69 61 74 | .such.as.a.MAC.address,.associat |
| c8120 | 65 64 20 77 69 74 68 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 6e 65 74 20 6c 61 79 65 72 20 61 | ed.with.a.given.internet.layer.a |
| c8140 | 64 64 72 65 73 73 2c 20 74 79 70 69 63 61 6c 6c 79 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 | ddress,.typically.an.IPv4.addres |
| c8160 | 73 2e 20 54 68 69 73 20 6d 61 70 70 69 6e 67 20 69 73 20 61 20 63 72 69 74 69 63 61 6c 20 66 75 | s..This.mapping.is.a.critical.fu |
| c8180 | 6e 63 74 69 6f 6e 20 69 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 70 72 6f 74 6f 63 6f 6c 20 | nction.in.the.Internet.protocol. |
| c81a0 | 73 75 69 74 65 2e 20 41 52 50 20 77 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 31 39 38 32 20 62 | suite..ARP.was.defined.in.1982.b |
| c81c0 | 79 20 3a 72 66 63 3a 60 38 32 36 60 20 77 68 69 63 68 20 69 73 20 49 6e 74 65 72 6e 65 74 20 53 | y.:rfc:`826`.which.is.Internet.S |
| c81e0 | 74 61 6e 64 61 72 64 20 53 54 44 20 33 37 2e 00 3a 61 62 62 72 3a 60 42 46 44 20 28 42 69 64 69 | tandard.STD.37..:abbr:`BFD.(Bidi |
| c8200 | 72 65 63 74 69 6f 6e 61 6c 20 46 6f 72 77 61 72 64 69 6e 67 20 44 65 74 65 63 74 69 6f 6e 29 60 | rectional.Forwarding.Detection)` |
| c8220 | 20 69 73 20 64 65 73 63 72 69 62 65 64 20 61 6e 64 20 65 78 74 65 6e 64 65 64 20 62 79 20 74 68 | .is.described.and.extended.by.th |
| c8240 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 52 46 43 73 3a 20 3a 72 66 63 3a 60 35 38 38 30 60 2c 20 3a | e.following.RFCs:.:rfc:`5880`,.: |
| c8260 | 72 66 63 3a 60 35 38 38 31 60 20 61 6e 64 20 3a 72 66 63 3a 60 35 38 38 33 60 2e 00 3a 61 62 62 | rfc:`5881`.and.:rfc:`5883`..:abb |
| c8280 | 72 3a 60 42 47 50 20 28 42 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 29 | r:`BGP.(Border.Gateway.Protocol) |
| c82a0 | 60 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 45 78 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 | `.is.one.of.the.Exterior.Gateway |
| c82c0 | 20 50 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 74 68 65 20 64 65 20 66 61 63 74 6f 20 73 74 61 6e | .Protocols.and.the.de.facto.stan |
| c82e0 | 64 61 72 64 20 69 6e 74 65 72 64 6f 6d 61 69 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f | dard.interdomain.routing.protoco |
| c8300 | 6c 2e 20 54 68 65 20 6c 61 74 65 73 74 20 42 47 50 20 76 65 72 73 69 6f 6e 20 69 73 20 34 2e 20 | l..The.latest.BGP.version.is.4.. |
| c8320 | 42 47 50 2d 34 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 37 37 31 | BGP-4.is.described.in.:rfc:`1771 |
| c8340 | 60 20 61 6e 64 20 75 70 64 61 74 65 64 20 62 79 20 3a 72 66 63 3a 60 34 32 37 31 60 2e 20 3a 72 | `.and.updated.by.:rfc:`4271`..:r |
| c8360 | 66 63 3a 60 32 38 35 38 60 20 61 64 64 73 20 6d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 73 75 70 | fc:`2858`.adds.multiprotocol.sup |
| c8380 | 70 6f 72 74 20 74 6f 20 42 47 50 2e 00 3a 61 62 62 72 3a 60 43 47 4e 41 54 20 28 43 61 72 72 69 | port.to.BGP..:abbr:`CGNAT.(Carri |
| c83a0 | 65 72 2d 47 72 61 64 65 20 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 | er-Grade.Network.Address.Transla |
| c83c0 | 74 69 6f 6e 29 60 20 2c 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 20 4c 61 72 67 65 2d 53 63 61 | tion)`.,.also.known.as.Large-Sca |
| c83e0 | 6c 65 20 4e 41 54 20 28 4c 53 4e 29 2c 20 69 73 20 61 20 74 79 70 65 20 6f 66 20 6e 65 74 77 6f | le.NAT.(LSN),.is.a.type.of.netwo |
| c8400 | 72 6b 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 75 73 65 64 20 62 79 20 49 | rk.address.translation.used.by.I |
| c8420 | 6e 74 65 72 6e 65 74 20 53 65 72 76 69 63 65 20 50 72 6f 76 69 64 65 72 73 20 28 49 53 50 73 29 | nternet.Service.Providers.(ISPs) |
| c8440 | 20 74 6f 20 65 6e 61 62 6c 65 20 6d 75 6c 74 69 70 6c 65 20 70 72 69 76 61 74 65 20 49 50 20 61 | .to.enable.multiple.private.IP.a |
| c8460 | 64 64 72 65 73 73 65 73 20 74 6f 20 73 68 61 72 65 20 61 20 73 69 6e 67 6c 65 20 70 75 62 6c 69 | ddresses.to.share.a.single.publi |
| c8480 | 63 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 68 65 6c | c.IP.address..This.technique.hel |
| c84a0 | 70 73 20 74 6f 20 63 6f 6e 73 65 72 76 65 20 74 68 65 20 6c 69 6d 69 74 65 64 20 49 50 76 34 20 | ps.to.conserve.the.limited.IPv4. |
| c84c0 | 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 20 54 68 65 20 31 30 30 2e 36 34 2e 30 2e 30 2f 31 30 | address.space..The.100.64.0.0/10 |
| c84e0 | 20 61 64 64 72 65 73 73 20 62 6c 6f 63 6b 20 69 73 20 72 65 73 65 72 76 65 64 20 66 6f 72 20 75 | .address.block.is.reserved.for.u |
| c8500 | 73 65 20 69 6e 20 63 61 72 72 69 65 72 2d 67 72 61 64 65 20 4e 41 54 00 3a 61 62 62 72 3a 60 43 | se.in.carrier-grade.NAT.:abbr:`C |
| c8520 | 4b 4e 20 28 4d 41 43 73 65 63 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 | KN.(MACsec.connectivity.associat |
| c8540 | 69 6f 6e 20 6e 61 6d 65 29 60 20 6b 65 79 00 3a 61 62 62 72 3a 60 44 4d 56 50 4e 20 28 44 79 6e | ion.name)`.key.:abbr:`DMVPN.(Dyn |
| c8560 | 61 6d 69 63 20 4d 75 6c 74 69 70 6f 69 6e 74 20 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 | amic.Multipoint.Virtual.Private. |
| c8580 | 4e 65 74 77 6f 72 6b 29 60 20 69 73 20 61 20 64 79 6e 61 6d 69 63 20 3a 61 62 62 72 3a 60 56 50 | Network)`.is.a.dynamic.:abbr:`VP |
| c85a0 | 4e 20 28 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 74 65 63 | N.(Virtual.Private.Network)`.tec |
| c85c0 | 68 6e 6f 6c 6f 67 79 20 6f 72 69 67 69 6e 61 6c 6c 79 20 64 65 76 65 6c 6f 70 65 64 20 62 79 20 | hnology.originally.developed.by. |
| c85e0 | 43 69 73 63 6f 2e 20 57 68 69 6c 65 20 74 68 65 69 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f | Cisco..While.their.implementatio |
| c8600 | 6e 20 77 61 73 20 73 6f 6d 65 77 68 61 74 20 70 72 6f 70 72 69 65 74 61 72 79 2c 20 74 68 65 20 | n.was.somewhat.proprietary,.the. |
| c8620 | 75 6e 64 65 72 6c 79 69 6e 67 20 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 61 72 65 20 61 63 74 75 | underlying.technologies.are.actu |
| c8640 | 61 6c 6c 79 20 73 74 61 6e 64 61 72 64 73 20 62 61 73 65 64 2e 20 54 68 65 20 74 68 72 65 65 20 | ally.standards.based..The.three. |
| c8660 | 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 61 72 65 3a 00 3a 61 62 62 72 3a 60 44 4e 41 54 20 28 44 | technologies.are:.:abbr:`DNAT.(D |
| c8680 | 65 73 74 69 6e 61 74 69 6f 6e 20 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 | estination.Network.Address.Trans |
| c86a0 | 6c 61 74 69 6f 6e 29 60 20 63 68 61 6e 67 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e | lation)`.changes.the.destination |
| c86c0 | 20 61 64 64 72 65 73 73 20 6f 66 20 70 61 63 6b 65 74 73 20 70 61 73 73 69 6e 67 20 74 68 72 6f | .address.of.packets.passing.thro |
| c86e0 | 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 2c 20 77 68 69 6c 65 20 3a 72 65 66 3a 60 73 6f 75 72 | ugh.the.router,.while.:ref:`sour |
| c8700 | 63 65 2d 6e 61 74 60 20 63 68 61 6e 67 65 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 | ce-nat`.changes.the.source.addre |
| c8720 | 73 73 20 6f 66 20 70 61 63 6b 65 74 73 2e 20 44 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c 79 | ss.of.packets..DNAT.is.typically |
| c8740 | 20 75 73 65 64 20 77 68 65 6e 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 28 70 75 62 6c 69 63 29 20 | .used.when.an.external.(public). |
| c8760 | 68 6f 73 74 20 6e 65 65 64 73 20 74 6f 20 69 6e 69 74 69 61 74 65 20 61 20 73 65 73 73 69 6f 6e | host.needs.to.initiate.a.session |
| c8780 | 20 77 69 74 68 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 6f 73 74 | .with.an.internal.(private).host |
| c87a0 | 2e 20 41 20 63 75 73 74 6f 6d 65 72 20 6e 65 65 64 73 20 74 6f 20 61 63 63 65 73 73 20 61 20 70 | ..A.customer.needs.to.access.a.p |
| c87c0 | 72 69 76 61 74 65 20 73 65 72 76 69 63 65 20 62 65 68 69 6e 64 20 74 68 65 20 72 6f 75 74 65 72 | rivate.service.behind.the.router |
| c87e0 | 73 20 70 75 62 6c 69 63 20 49 50 2e 20 41 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 65 73 74 | s.public.IP..A.connection.is.est |
| c8800 | 61 62 6c 69 73 68 65 64 20 77 69 74 68 20 74 68 65 20 72 6f 75 74 65 72 73 20 70 75 62 6c 69 63 | ablished.with.the.routers.public |
| c8820 | 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 61 20 77 65 6c 6c 20 6b 6e 6f 77 6e 20 70 6f 72 74 | .IP.address.on.a.well.known.port |
| c8840 | 20 61 6e 64 20 74 68 75 73 20 61 6c 6c 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 69 73 20 70 | .and.thus.all.traffic.for.this.p |
| c8860 | 6f 72 74 20 69 73 20 72 65 77 72 69 74 74 65 6e 20 74 6f 20 61 64 64 72 65 73 73 20 74 68 65 20 | ort.is.rewritten.to.address.the. |
| c8880 | 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 6f 73 74 2e 00 3a 61 62 62 72 3a 60 | internal.(private).host..:abbr:` |
| c88a0 | 45 41 50 20 28 45 78 74 65 6e 73 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 50 | EAP.(Extensible.Authentication.P |
| c88c0 | 72 6f 74 6f 63 6f 6c 29 60 20 6f 76 65 72 20 4c 41 4e 20 28 45 41 50 6f 4c 29 20 69 73 20 61 20 | rotocol)`.over.LAN.(EAPoL).is.a. |
| c88e0 | 6e 65 74 77 6f 72 6b 20 70 6f 72 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 72 6f 74 | network.port.authentication.prot |
| c8900 | 6f 63 6f 6c 20 75 73 65 64 20 69 6e 20 49 45 45 45 20 38 30 32 2e 31 58 20 28 50 6f 72 74 20 42 | ocol.used.in.IEEE.802.1X.(Port.B |
| c8920 | 61 73 65 64 20 4e 65 74 77 6f 72 6b 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 20 64 65 76 | ased.Network.Access.Control).dev |
| c8940 | 65 6c 6f 70 65 64 20 74 6f 20 67 69 76 65 20 61 20 67 65 6e 65 72 69 63 20 6e 65 74 77 6f 72 6b | eloped.to.give.a.generic.network |
| c8960 | 20 73 69 67 6e 2d 6f 6e 20 74 6f 20 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 | .sign-on.to.access.network.resou |
| c8980 | 72 63 65 73 2e 00 3a 61 62 62 72 3a 60 45 55 49 2d 36 34 20 28 36 34 2d 42 69 74 20 45 78 74 65 | rces..:abbr:`EUI-64.(64-Bit.Exte |
| c89a0 | 6e 64 65 64 20 55 6e 69 71 75 65 20 49 64 65 6e 74 69 66 69 65 72 29 60 20 61 73 20 73 70 65 63 | nded.Unique.Identifier)`.as.spec |
| c89c0 | 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 32 39 31 60 20 61 6c 6c 6f 77 73 20 61 20 68 6f | ified.in.:rfc:`4291`.allows.a.ho |
| c89e0 | 73 74 20 74 6f 20 61 73 73 69 67 6e 20 69 74 65 73 6c 66 20 61 20 75 6e 69 71 75 65 20 36 34 2d | st.to.assign.iteslf.a.unique.64- |
| c8a00 | 42 69 74 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 3a 61 62 62 72 3a 60 47 45 4e 45 56 45 20 | Bit.IPv6.address..:abbr:`GENEVE. |
| c8a20 | 28 47 65 6e 65 72 69 63 20 4e 65 74 77 6f 72 6b 20 56 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 | (Generic.Network.Virtualization. |
| c8a40 | 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 20 73 75 70 70 6f 72 74 73 20 61 6c 6c 20 6f 66 20 | Encapsulation)`.supports.all.of. |
| c8a60 | 74 68 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 6f 66 20 3a 61 62 62 72 3a 60 56 58 4c 41 4e | the.capabilities.of.:abbr:`VXLAN |
| c8a80 | 20 28 56 69 72 74 75 61 6c 20 45 78 74 65 6e 73 69 62 6c 65 20 4c 41 4e 29 60 2c 20 3a 61 62 62 | .(Virtual.Extensible.LAN)`,.:abb |
| c8aa0 | 72 3a 60 4e 56 47 52 45 20 28 4e 65 74 77 6f 72 6b 20 56 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e | r:`NVGRE.(Network.Virtualization |
| c8ac0 | 20 75 73 69 6e 67 20 47 65 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 | .using.Generic.Routing.Encapsula |
| c8ae0 | 74 69 6f 6e 29 60 2c 20 61 6e 64 20 3a 61 62 62 72 3a 60 53 54 54 20 28 53 74 61 74 65 6c 65 73 | tion)`,.and.:abbr:`STT.(Stateles |
| c8b00 | 73 20 54 72 61 6e 73 70 6f 72 74 20 54 75 6e 6e 65 6c 69 6e 67 29 60 20 61 6e 64 20 77 61 73 20 | s.Transport.Tunneling)`.and.was. |
| c8b20 | 64 65 73 69 67 6e 65 64 20 74 6f 20 6f 76 65 72 63 6f 6d 65 20 74 68 65 69 72 20 70 65 72 63 65 | designed.to.overcome.their.perce |
| c8b40 | 69 76 65 64 20 6c 69 6d 69 74 61 74 69 6f 6e 73 2e 20 4d 61 6e 79 20 62 65 6c 69 65 76 65 20 47 | ived.limitations..Many.believe.G |
| c8b60 | 45 4e 45 56 45 20 63 6f 75 6c 64 20 65 76 65 6e 74 75 61 6c 6c 79 20 72 65 70 6c 61 63 65 20 74 | ENEVE.could.eventually.replace.t |
| c8b80 | 68 65 73 65 20 65 61 72 6c 69 65 72 20 66 6f 72 6d 61 74 73 20 65 6e 74 69 72 65 6c 79 2e 00 3a | hese.earlier.formats.entirely..: |
| c8ba0 | 61 62 62 72 3a 60 47 52 45 20 28 47 65 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 | abbr:`GRE.(Generic.Routing.Encap |
| c8bc0 | 73 75 6c 61 74 69 6f 6e 29 60 2c 20 47 52 45 2f 49 50 73 65 63 20 28 6f 72 20 49 50 49 50 2f 49 | sulation)`,.GRE/IPsec.(or.IPIP/I |
| c8be0 | 50 73 65 63 2c 20 53 49 54 2f 49 50 73 65 63 2c 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 73 74 | Psec,.SIT/IPsec,.or.any.other.st |
| c8c00 | 61 74 65 6c 65 73 73 20 74 75 6e 6e 65 6c 20 70 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 49 50 73 | ateless.tunnel.protocol.over.IPs |
| c8c20 | 65 63 29 20 69 73 20 74 68 65 20 75 73 75 61 6c 20 77 61 79 20 74 6f 20 70 72 6f 74 65 63 74 20 | ec).is.the.usual.way.to.protect. |
| c8c40 | 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 73 69 64 65 20 61 20 74 75 6e 6e 65 6c 2e 00 3a 61 62 | the.traffic.inside.a.tunnel..:ab |
| c8c60 | 62 72 3a 60 47 52 4f 20 28 47 65 6e 65 72 69 63 20 72 65 63 65 69 76 65 20 6f 66 66 6c 6f 61 64 | br:`GRO.(Generic.receive.offload |
| c8c80 | 29 60 20 69 73 20 74 68 65 20 63 6f 6d 70 6c 65 6d 65 6e 74 20 74 6f 20 47 53 4f 2e 20 49 64 65 | )`.is.the.complement.to.GSO..Ide |
| c8ca0 | 61 6c 6c 79 20 61 6e 79 20 66 72 61 6d 65 20 61 73 73 65 6d 62 6c 65 64 20 62 79 20 47 52 4f 20 | ally.any.frame.assembled.by.GRO. |
| c8cc0 | 73 68 6f 75 6c 64 20 62 65 20 73 65 67 6d 65 6e 74 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 6e | should.be.segmented.to.create.an |
| c8ce0 | 20 69 64 65 6e 74 69 63 61 6c 20 73 65 71 75 65 6e 63 65 20 6f 66 20 66 72 61 6d 65 73 20 75 73 | .identical.sequence.of.frames.us |
| c8d00 | 69 6e 67 20 47 53 4f 2c 20 61 6e 64 20 61 6e 79 20 73 65 71 75 65 6e 63 65 20 6f 66 20 66 72 61 | ing.GSO,.and.any.sequence.of.fra |
| c8d20 | 6d 65 73 20 73 65 67 6d 65 6e 74 65 64 20 62 79 20 47 53 4f 20 73 68 6f 75 6c 64 20 62 65 20 61 | mes.segmented.by.GSO.should.be.a |
| c8d40 | 62 6c 65 20 74 6f 20 62 65 20 72 65 61 73 73 65 6d 62 6c 65 64 20 62 61 63 6b 20 74 6f 20 74 68 | ble.to.be.reassembled.back.to.th |
| c8d60 | 65 20 6f 72 69 67 69 6e 61 6c 20 62 79 20 47 52 4f 2e 20 54 68 65 20 6f 6e 6c 79 20 65 78 63 65 | e.original.by.GRO..The.only.exce |
| c8d80 | 70 74 69 6f 6e 20 74 6f 20 74 68 69 73 20 69 73 20 49 50 76 34 20 49 44 20 69 6e 20 74 68 65 20 | ption.to.this.is.IPv4.ID.in.the. |
| c8da0 | 63 61 73 65 20 74 68 61 74 20 74 68 65 20 44 46 20 62 69 74 20 69 73 20 73 65 74 20 66 6f 72 20 | case.that.the.DF.bit.is.set.for. |
| c8dc0 | 61 20 67 69 76 65 6e 20 49 50 20 68 65 61 64 65 72 2e 20 49 66 20 74 68 65 20 76 61 6c 75 65 20 | a.given.IP.header..If.the.value. |
| c8de0 | 6f 66 20 74 68 65 20 49 50 76 34 20 49 44 20 69 73 20 6e 6f 74 20 73 65 71 75 65 6e 74 69 61 6c | of.the.IPv4.ID.is.not.sequential |
| c8e00 | 6c 79 20 69 6e 63 72 65 6d 65 6e 74 69 6e 67 20 69 74 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 | ly.incrementing.it.will.be.alter |
| c8e20 | 65 64 20 73 6f 20 74 68 61 74 20 69 74 20 69 73 20 77 68 65 6e 20 61 20 66 72 61 6d 65 20 61 73 | ed.so.that.it.is.when.a.frame.as |
| c8e40 | 73 65 6d 62 6c 65 64 20 76 69 61 20 47 52 4f 20 69 73 20 73 65 67 6d 65 6e 74 65 64 20 76 69 61 | sembled.via.GRO.is.segmented.via |
| c8e60 | 20 47 53 4f 2e 00 3a 61 62 62 72 3a 60 47 53 4f 20 28 47 65 6e 65 72 69 63 20 53 65 67 6d 65 6e | .GSO..:abbr:`GSO.(Generic.Segmen |
| c8e80 | 74 61 74 69 6f 6e 20 4f 66 66 6c 6f 61 64 29 60 20 69 73 20 61 20 70 75 72 65 20 73 6f 66 74 77 | tation.Offload)`.is.a.pure.softw |
| c8ea0 | 61 72 65 20 6f 66 66 6c 6f 61 64 20 74 68 61 74 20 69 73 20 6d 65 61 6e 74 20 74 6f 20 64 65 61 | are.offload.that.is.meant.to.dea |
| c8ec0 | 6c 20 77 69 74 68 20 63 61 73 65 73 20 77 68 65 72 65 20 64 65 76 69 63 65 20 64 72 69 76 65 72 | l.with.cases.where.device.driver |
| c8ee0 | 73 20 63 61 6e 6e 6f 74 20 70 65 72 66 6f 72 6d 20 74 68 65 20 6f 66 66 6c 6f 61 64 73 20 64 65 | s.cannot.perform.the.offloads.de |
| c8f00 | 73 63 72 69 62 65 64 20 61 62 6f 76 65 2e 20 57 68 61 74 20 6f 63 63 75 72 73 20 69 6e 20 47 53 | scribed.above..What.occurs.in.GS |
| c8f20 | 4f 20 69 73 20 74 68 61 74 20 61 20 67 69 76 65 6e 20 73 6b 62 75 66 66 20 77 69 6c 6c 20 68 61 | O.is.that.a.given.skbuff.will.ha |
| c8f40 | 76 65 20 69 74 73 20 64 61 74 61 20 62 72 6f 6b 65 6e 20 6f 75 74 20 6f 76 65 72 20 6d 75 6c 74 | ve.its.data.broken.out.over.mult |
| c8f60 | 69 70 6c 65 20 73 6b 62 75 66 66 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 72 65 73 69 | iple.skbuffs.that.have.been.resi |
| c8f80 | 7a 65 64 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 4d 53 53 20 70 72 6f 76 69 64 65 64 20 76 69 | zed.to.match.the.MSS.provided.vi |
| c8fa0 | 61 20 73 6b 62 5f 73 68 69 6e 66 6f 28 29 2d 3e 67 73 6f 5f 73 69 7a 65 2e 00 3a 61 62 62 72 3a | a.skb_shinfo()->gso_size..:abbr: |
| c8fc0 | 60 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 | `IGMP.(Internet.Group.Management |
| c8fe0 | 20 50 72 6f 74 6f 63 6f 6c 29 60 20 70 72 6f 78 79 20 73 65 6e 64 73 20 49 47 4d 50 20 68 6f 73 | .Protocol)`.proxy.sends.IGMP.hos |
| c9000 | 74 20 6d 65 73 73 61 67 65 73 20 6f 6e 20 62 65 68 61 6c 66 20 6f 66 20 61 20 63 6f 6e 6e 65 63 | t.messages.on.behalf.of.a.connec |
| c9020 | 74 65 64 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 | ted.client..The.configuration.mu |
| c9040 | 73 74 20 64 65 66 69 6e 65 20 6f 6e 65 2c 20 61 6e 64 20 6f 6e 6c 79 20 6f 6e 65 20 75 70 73 74 | st.define.one,.and.only.one.upst |
| c9060 | 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 | ream.interface,.and.one.or.more. |
| c9080 | 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 73 2e 00 3a 61 62 62 72 3a 60 49 50 | downstream.interfaces..:abbr:`IP |
| c90a0 | 53 65 63 20 28 49 50 20 53 65 63 75 72 69 74 79 29 60 20 2d 20 74 6f 6f 20 6d 61 6e 79 20 52 46 | Sec.(IP.Security)`.-.too.many.RF |
| c90c0 | 43 73 20 74 6f 20 6c 69 73 74 2c 20 62 75 74 20 73 74 61 72 74 20 77 69 74 68 20 3a 72 66 63 3a | Cs.to.list,.but.start.with.:rfc: |
| c90e0 | 60 34 33 30 31 60 00 3a 61 62 62 72 3a 60 49 53 2d 49 53 20 28 49 6e 74 65 72 6d 65 64 69 61 74 | `4301`.:abbr:`IS-IS.(Intermediat |
| c9100 | 65 20 53 79 73 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 29 | e.System.to.Intermediate.System) |
| c9120 | 60 20 69 73 20 61 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 | `.is.a.link-state.interior.gatew |
| c9140 | 61 79 20 70 72 6f 74 6f 63 6f 6c 20 28 49 47 50 29 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 | ay.protocol.(IGP).which.is.descr |
| c9160 | 69 62 65 64 20 69 6e 20 49 53 4f 31 30 35 38 39 2c 20 3a 72 66 63 3a 60 31 31 39 35 60 2c 20 3a | ibed.in.ISO10589,.:rfc:`1195`,.: |
| c9180 | 72 66 63 3a 60 35 33 30 38 60 2e 20 49 53 2d 49 53 20 72 75 6e 73 20 74 68 65 20 44 69 6a 6b 73 | rfc:`5308`..IS-IS.runs.the.Dijks |
| c91a0 | 74 72 61 20 73 68 6f 72 74 65 73 74 2d 70 61 74 68 20 66 69 72 73 74 20 28 53 50 46 29 20 61 6c | tra.shortest-path.first.(SPF).al |
| c91c0 | 67 6f 72 69 74 68 6d 20 74 6f 20 63 72 65 61 74 65 20 61 20 64 61 74 61 62 61 73 65 20 6f 66 20 | gorithm.to.create.a.database.of. |
| c91e0 | 74 68 65 20 6e 65 74 77 6f 72 6b e2 80 99 73 20 74 6f 70 6f 6c 6f 67 79 2c 20 61 6e 64 20 66 72 | the.network...s.topology,.and.fr |
| c9200 | 6f 6d 20 74 68 61 74 20 64 61 74 61 62 61 73 65 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 | om.that.database.to.determine.th |
| c9220 | 65 20 62 65 73 74 20 28 74 68 61 74 20 69 73 2c 20 6c 6f 77 65 73 74 20 63 6f 73 74 29 20 70 61 | e.best.(that.is,.lowest.cost).pa |
| c9240 | 74 68 20 74 6f 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 68 65 20 69 6e 74 65 72 6d 65 | th.to.a.destination..The.interme |
| c9260 | 64 69 61 74 65 20 73 79 73 74 65 6d 73 20 28 74 68 65 20 6e 61 6d 65 20 66 6f 72 20 72 6f 75 74 | diate.systems.(the.name.for.rout |
| c9280 | 65 72 73 29 20 65 78 63 68 61 6e 67 65 20 74 6f 70 6f 6c 6f 67 79 20 69 6e 66 6f 72 6d 61 74 69 | ers).exchange.topology.informati |
| c92a0 | 6f 6e 20 77 69 74 68 20 74 68 65 69 72 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 65 6e 63 74 65 64 | on.with.their.directly.conencted |
| c92c0 | 20 6e 65 69 67 68 62 6f 72 73 2e 20 49 53 2d 49 53 20 72 75 6e 73 20 64 69 72 65 63 74 6c 79 20 | .neighbors..IS-IS.runs.directly. |
| c92e0 | 6f 6e 20 74 68 65 20 64 61 74 61 20 6c 69 6e 6b 20 6c 61 79 65 72 20 28 4c 61 79 65 72 20 32 29 | on.the.data.link.layer.(Layer.2) |
| c9300 | 2e 20 49 53 2d 49 53 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 63 61 6c 6c 65 64 20 3a 61 62 | ..IS-IS.addresses.are.called.:ab |
| c9320 | 62 72 3a 60 4e 45 54 73 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 73 29 | br:`NETs.(Network.Entity.Titles) |
| c9340 | 60 20 61 6e 64 20 63 61 6e 20 62 65 20 38 20 74 6f 20 32 30 20 62 79 74 65 73 20 6c 6f 6e 67 2c | `.and.can.be.8.to.20.bytes.long, |
| c9360 | 20 62 75 74 20 61 72 65 20 67 65 6e 65 72 61 6c 6c 79 20 31 30 20 62 79 74 65 73 20 6c 6f 6e 67 | .but.are.generally.10.bytes.long |
| c9380 | 2e 20 54 68 65 20 74 72 65 65 20 64 61 74 61 62 61 73 65 20 74 68 61 74 20 69 73 20 63 72 65 61 | ..The.tree.database.that.is.crea |
| c93a0 | 74 65 64 20 77 69 74 68 20 49 53 2d 49 53 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 | ted.with.IS-IS.is.similar.to.the |
| c93c0 | 20 6f 6e 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 4f 53 50 46 20 69 | .one.that.is.created.with.OSPF.i |
| c93e0 | 6e 20 74 68 61 74 20 74 68 65 20 70 61 74 68 73 20 63 68 6f 73 65 6e 20 73 68 6f 75 6c 64 20 62 | n.that.the.paths.chosen.should.b |
| c9400 | 65 20 73 69 6d 69 6c 61 72 2e 20 43 6f 6d 70 61 72 69 73 6f 6e 73 20 74 6f 20 4f 53 50 46 20 61 | e.similar..Comparisons.to.OSPF.a |
| c9420 | 72 65 20 69 6e 65 76 69 74 61 62 6c 65 20 61 6e 64 20 6f 66 74 65 6e 20 61 72 65 20 72 65 61 73 | re.inevitable.and.often.are.reas |
| c9440 | 6f 6e 61 62 6c 65 20 6f 6e 65 73 20 74 6f 20 6d 61 6b 65 20 69 6e 20 72 65 67 61 72 64 73 20 74 | onable.ones.to.make.in.regards.t |
| c9460 | 6f 20 74 68 65 20 77 61 79 20 61 20 6e 65 74 77 6f 72 6b 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 | o.the.way.a.network.will.respond |
| c9480 | 20 77 69 74 68 20 65 69 74 68 65 72 20 49 47 50 2e 00 3a 61 62 62 72 3a 60 49 53 2d 49 53 20 28 | .with.either.IGP..:abbr:`IS-IS.( |
| c94a0 | 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 69 | Intermediate.System.to.Intermedi |
| c94c0 | 61 74 65 20 53 79 73 74 65 6d 29 60 20 69 73 20 61 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e 74 | ate.System)`.is.a.link-state.int |
| c94e0 | 65 72 69 6f 72 20 67 61 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 20 28 49 47 50 29 20 77 68 69 | erior.gateway.protocol.(IGP).whi |
| c9500 | 63 68 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 49 53 4f 31 30 35 38 39 2c 20 3a 72 66 | ch.is.described.in.ISO10589,.:rf |
| c9520 | 63 3a 60 31 31 39 35 60 2c 20 3a 72 66 63 3a 60 35 33 30 38 60 2e 20 49 53 2d 49 53 20 72 75 6e | c:`1195`,.:rfc:`5308`..IS-IS.run |
| c9540 | 73 20 74 68 65 20 44 69 6a 6b 73 74 72 61 20 73 68 6f 72 74 65 73 74 2d 70 61 74 68 20 66 69 72 | s.the.Dijkstra.shortest-path.fir |
| c9560 | 73 74 20 28 53 50 46 29 20 61 6c 67 6f 72 69 74 68 6d 20 74 6f 20 63 72 65 61 74 65 20 61 20 64 | st.(SPF).algorithm.to.create.a.d |
| c9580 | 61 74 61 62 61 73 65 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b e2 80 99 73 20 74 6f 70 6f 6c | atabase.of.the.network...s.topol |
| c95a0 | 6f 67 79 2c 20 61 6e 64 20 66 72 6f 6d 20 74 68 61 74 20 64 61 74 61 62 61 73 65 20 74 6f 20 64 | ogy,.and.from.that.database.to.d |
| c95c0 | 65 74 65 72 6d 69 6e 65 20 74 68 65 20 62 65 73 74 20 28 74 68 61 74 20 69 73 2c 20 6c 6f 77 65 | etermine.the.best.(that.is,.lowe |
| c95e0 | 73 74 20 63 6f 73 74 29 20 70 61 74 68 20 74 6f 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 | st.cost).path.to.a.destination.. |
| c9600 | 54 68 65 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 73 79 73 74 65 6d 73 20 28 74 68 65 20 6e 61 | The.intermediate.systems.(the.na |
| c9620 | 6d 65 20 66 6f 72 20 72 6f 75 74 65 72 73 29 20 65 78 63 68 61 6e 67 65 20 74 6f 70 6f 6c 6f 67 | me.for.routers).exchange.topolog |
| c9640 | 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 74 68 65 69 72 20 64 69 72 65 63 74 6c | y.information.with.their.directl |
| c9660 | 79 20 63 6f 6e 6e 65 63 74 65 64 20 6e 65 69 67 68 62 6f 72 73 2e 20 49 53 2d 49 53 20 72 75 6e | y.connected.neighbors..IS-IS.run |
| c9680 | 73 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 20 64 61 74 61 20 6c 69 6e 6b 20 6c 61 79 65 | s.directly.on.the.data.link.laye |
| c96a0 | 72 20 28 4c 61 79 65 72 20 32 29 2e 20 49 53 2d 49 53 20 61 64 64 72 65 73 73 65 73 20 61 72 65 | r.(Layer.2)..IS-IS.addresses.are |
| c96c0 | 20 63 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 4e 45 54 73 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 | .called.:abbr:`NETs.(Network.Ent |
| c96e0 | 69 74 79 20 54 69 74 6c 65 73 29 60 20 61 6e 64 20 63 61 6e 20 62 65 20 38 20 74 6f 20 32 30 20 | ity.Titles)`.and.can.be.8.to.20. |
| c9700 | 62 79 74 65 73 20 6c 6f 6e 67 2c 20 62 75 74 20 61 72 65 20 67 65 6e 65 72 61 6c 6c 79 20 31 30 | bytes.long,.but.are.generally.10 |
| c9720 | 20 62 79 74 65 73 20 6c 6f 6e 67 2e 20 54 68 65 20 74 72 65 65 20 64 61 74 61 62 61 73 65 20 74 | .bytes.long..The.tree.database.t |
| c9740 | 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 49 53 2d 49 53 20 69 73 20 73 69 6d | hat.is.created.with.IS-IS.is.sim |
| c9760 | 69 6c 61 72 20 74 6f 20 74 68 65 20 6f 6e 65 20 74 68 61 74 20 69 73 20 63 72 65 61 74 65 64 20 | ilar.to.the.one.that.is.created. |
| c9780 | 77 69 74 68 20 4f 53 50 46 20 69 6e 20 74 68 61 74 20 74 68 65 20 70 61 74 68 73 20 63 68 6f 73 | with.OSPF.in.that.the.paths.chos |
| c97a0 | 65 6e 20 73 68 6f 75 6c 64 20 62 65 20 73 69 6d 69 6c 61 72 2e 20 43 6f 6d 70 61 72 69 73 6f 6e | en.should.be.similar..Comparison |
| c97c0 | 73 20 74 6f 20 4f 53 50 46 20 61 72 65 20 69 6e 65 76 69 74 61 62 6c 65 20 61 6e 64 20 6f 66 74 | s.to.OSPF.are.inevitable.and.oft |
| c97e0 | 65 6e 20 61 72 65 20 72 65 61 73 6f 6e 61 62 6c 65 20 6f 6e 65 73 20 74 6f 20 6d 61 6b 65 20 69 | en.are.reasonable.ones.to.make.i |
| c9800 | 6e 20 72 65 67 61 72 64 73 20 74 6f 20 74 68 65 20 77 61 79 20 61 20 6e 65 74 77 6f 72 6b 20 77 | n.regards.to.the.way.a.network.w |
| c9820 | 69 6c 6c 20 72 65 73 70 6f 6e 64 20 77 69 74 68 20 65 69 74 68 65 72 20 49 47 50 2e 00 3a 61 62 | ill.respond.with.either.IGP..:ab |
| c9840 | 62 72 3a 60 4c 33 56 50 4e 20 56 52 46 73 20 28 20 4c 61 79 65 72 20 33 20 56 69 72 74 75 61 6c | br:`L3VPN.VRFs.(.Layer.3.Virtual |
| c9860 | 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 73 20 29 60 20 62 67 70 64 20 73 75 70 70 6f 72 | .Private.Networks.)`.bgpd.suppor |
| c9880 | 74 73 20 66 6f 72 20 49 50 76 34 20 52 46 43 20 34 33 36 34 20 61 6e 64 20 49 50 76 36 20 52 46 | ts.for.IPv4.RFC.4364.and.IPv6.RF |
| c98a0 | 43 20 34 36 35 39 2e 20 4c 33 56 50 4e 20 72 6f 75 74 65 73 2c 20 61 6e 64 20 74 68 65 69 72 20 | C.4659..L3VPN.routes,.and.their. |
| c98c0 | 61 73 73 6f 63 69 61 74 65 64 20 56 52 46 20 4d 50 4c 53 20 6c 61 62 65 6c 73 2c 20 63 61 6e 20 | associated.VRF.MPLS.labels,.can. |
| c98e0 | 62 65 20 64 69 73 74 72 69 62 75 74 65 64 20 74 6f 20 56 50 4e 20 53 41 46 49 20 6e 65 69 67 68 | be.distributed.to.VPN.SAFI.neigh |
| c9900 | 62 6f 72 73 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 2c 20 69 2e 65 2e 2c 20 6e 6f 6e 20 56 | bors.in.the.default,.i.e.,.non.V |
| c9920 | 52 46 2c 20 42 47 50 20 69 6e 73 74 61 6e 63 65 2e 20 56 52 46 20 4d 50 4c 53 20 6c 61 62 65 6c | RF,.BGP.instance..VRF.MPLS.label |
| c9940 | 73 20 61 72 65 20 72 65 61 63 68 65 64 20 75 73 69 6e 67 20 63 6f 72 65 20 4d 50 4c 53 20 6c 61 | s.are.reached.using.core.MPLS.la |
| c9960 | 62 65 6c 73 20 77 68 69 63 68 20 61 72 65 20 64 69 73 74 72 69 62 75 74 65 64 20 75 73 69 6e 67 | bels.which.are.distributed.using |
| c9980 | 20 4c 44 50 20 6f 72 20 42 47 50 20 6c 61 62 65 6c 65 64 20 75 6e 69 63 61 73 74 2e 20 62 67 70 | .LDP.or.BGP.labeled.unicast..bgp |
| c99a0 | 64 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 69 6e 74 65 72 2d 56 52 46 20 72 6f 75 74 65 20 | d.also.supports.inter-VRF.route. |
| c99c0 | 6c 65 61 6b 69 6e 67 2e 00 3a 61 62 62 72 3a 60 4c 44 50 20 28 4c 61 62 65 6c 20 44 69 73 74 72 | leaking..:abbr:`LDP.(Label.Distr |
| c99e0 | 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 54 43 50 20 62 61 73 65 | ibution.Protocol)`.is.a.TCP.base |
| c9a00 | 64 20 4d 50 4c 53 20 73 69 67 6e 61 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 64 | d.MPLS.signaling.protocol.that.d |
| c9a20 | 69 73 74 72 69 62 75 74 65 73 20 6c 61 62 65 6c 73 20 63 72 65 61 74 69 6e 67 20 4d 50 4c 53 20 | istributes.labels.creating.MPLS. |
| c9a40 | 6c 61 62 65 6c 20 73 77 69 74 63 68 65 64 20 70 61 74 68 73 20 69 6e 20 61 20 64 79 6e 61 6d 69 | label.switched.paths.in.a.dynami |
| c9a60 | 63 20 6d 61 6e 6e 65 72 2e 20 4c 44 50 20 69 73 20 6e 6f 74 20 61 20 72 6f 75 74 69 6e 67 20 70 | c.manner..LDP.is.not.a.routing.p |
| c9a80 | 72 6f 74 6f 63 6f 6c 2c 20 61 73 20 69 74 20 72 65 6c 69 65 73 20 6f 6e 20 6f 74 68 65 72 20 72 | rotocol,.as.it.relies.on.other.r |
| c9aa0 | 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 20 66 6f 72 77 61 72 64 69 6e 67 20 | outing.protocols.for.forwarding. |
| c9ac0 | 64 65 63 69 73 69 6f 6e 73 2e 20 4c 44 50 20 63 61 6e 6e 6f 74 20 62 6f 6f 74 73 74 72 61 70 20 | decisions..LDP.cannot.bootstrap. |
| c9ae0 | 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 65 6c 69 65 73 20 6f 6e 20 | itself,.and.therefore.relies.on. |
| c9b00 | 73 61 69 64 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 20 63 6f 6d 6d 75 | said.routing.protocols.for.commu |
| c9b20 | 6e 69 63 61 74 69 6f 6e 20 77 69 74 68 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 74 68 61 74 | nication.with.other.routers.that |
| c9b40 | 20 75 73 65 20 4c 44 50 2e 00 3a 61 62 62 72 3a 60 4c 4c 44 50 20 28 4c 69 6e 6b 20 4c 61 79 65 | .use.LDP..:abbr:`LLDP.(Link.Laye |
| c9b60 | 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 76 65 6e 64 | r.Discovery.Protocol)`.is.a.vend |
| c9b80 | 6f 72 2d 6e 65 75 74 72 61 6c 20 6c 69 6e 6b 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 20 69 | or-neutral.link.layer.protocol.i |
| c9ba0 | 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 53 75 69 74 65 20 75 73 | n.the.Internet.Protocol.Suite.us |
| c9bc0 | 65 64 20 62 79 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 20 66 6f 72 20 61 64 76 65 72 74 | ed.by.network.devices.for.advert |
| c9be0 | 69 73 69 6e 67 20 74 68 65 69 72 20 69 64 65 6e 74 69 74 79 2c 20 63 61 70 61 62 69 6c 69 74 69 | ising.their.identity,.capabiliti |
| c9c00 | 65 73 2c 20 61 6e 64 20 6e 65 69 67 68 62 6f 72 73 20 6f 6e 20 61 6e 20 49 45 45 45 20 38 30 32 | es,.and.neighbors.on.an.IEEE.802 |
| c9c20 | 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 74 77 6f 72 6b 2c 20 70 72 69 6e 63 69 70 61 6c 6c 79 | .local.area.network,.principally |
| c9c40 | 20 77 69 72 65 64 20 45 74 68 65 72 6e 65 74 2e 20 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 | .wired.Ethernet..The.protocol.is |
| c9c60 | 20 66 6f 72 6d 61 6c 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 62 79 20 74 68 65 20 49 45 45 | .formally.referred.to.by.the.IEE |
| c9c80 | 45 20 61 73 20 53 74 61 74 69 6f 6e 20 61 6e 64 20 4d 65 64 69 61 20 41 63 63 65 73 73 20 43 6f | E.as.Station.and.Media.Access.Co |
| c9ca0 | 6e 74 72 6f 6c 20 43 6f 6e 6e 65 63 74 69 76 69 74 79 20 44 69 73 63 6f 76 65 72 79 20 73 70 65 | ntrol.Connectivity.Discovery.spe |
| c9cc0 | 63 69 66 69 65 64 20 69 6e 20 49 45 45 45 20 38 30 32 2e 31 41 42 20 61 6e 64 20 49 45 45 45 20 | cified.in.IEEE.802.1AB.and.IEEE. |
| c9ce0 | 38 30 32 2e 33 2d 32 30 31 32 20 73 65 63 74 69 6f 6e 20 36 20 63 6c 61 75 73 65 20 37 39 2e 00 | 802.3-2012.section.6.clause.79.. |
| c9d00 | 3a 61 62 62 72 3a 60 4c 52 4f 20 28 4c 61 72 67 65 20 52 65 63 65 69 76 65 20 4f 66 66 6c 6f 61 | :abbr:`LRO.(Large.Receive.Offloa |
| c9d20 | 64 29 60 20 69 73 20 61 20 74 65 63 68 6e 69 71 75 65 20 64 65 73 69 67 6e 65 64 20 74 6f 20 62 | d)`.is.a.technique.designed.to.b |
| c9d40 | 6f 6f 73 74 20 74 68 65 20 65 66 66 69 63 69 65 6e 63 79 20 6f 66 20 68 6f 77 20 79 6f 75 72 20 | oost.the.efficiency.of.how.your. |
| c9d60 | 63 6f 6d 70 75 74 65 72 27 73 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 63 61 72 | computer's.network.interface.car |
| c9d80 | 64 20 28 4e 49 43 29 20 70 72 6f 63 65 73 73 65 73 20 69 6e 63 6f 6d 69 6e 67 20 6e 65 74 77 6f | d.(NIC).processes.incoming.netwo |
| c9da0 | 72 6b 20 74 72 61 66 66 69 63 2e 20 54 79 70 69 63 61 6c 6c 79 2c 20 6e 65 74 77 6f 72 6b 20 64 | rk.traffic..Typically,.network.d |
| c9dc0 | 61 74 61 20 61 72 72 69 76 65 73 20 69 6e 20 73 6d 61 6c 6c 65 72 20 63 68 75 6e 6b 73 20 63 61 | ata.arrives.in.smaller.chunks.ca |
| c9de0 | 6c 6c 65 64 20 70 61 63 6b 65 74 73 2e 20 50 72 6f 63 65 73 73 69 6e 67 20 65 61 63 68 20 70 61 | lled.packets..Processing.each.pa |
| c9e00 | 63 6b 65 74 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 63 6f 6e 73 75 6d 65 73 20 43 50 55 20 28 | cket.individually.consumes.CPU.( |
| c9e20 | 63 65 6e 74 72 61 6c 20 70 72 6f 63 65 73 73 69 6e 67 20 75 6e 69 74 29 20 72 65 73 6f 75 72 63 | central.processing.unit).resourc |
| c9e40 | 65 73 2e 20 4c 6f 74 73 20 6f 66 20 73 6d 61 6c 6c 20 70 61 63 6b 65 74 73 20 63 61 6e 20 6c 65 | es..Lots.of.small.packets.can.le |
| c9e60 | 61 64 20 74 6f 20 61 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 62 6f 74 74 6c 65 6e 65 63 6b 2e 20 | ad.to.a.performance.bottleneck.. |
| c9e80 | 49 6e 73 74 65 61 64 20 6f 66 20 68 61 6e 64 69 6e 67 20 74 68 65 20 43 50 55 20 65 61 63 68 20 | Instead.of.handing.the.CPU.each. |
| c9ea0 | 70 61 63 6b 65 74 20 61 73 20 69 74 20 63 6f 6d 65 73 20 69 6e 2c 20 4c 52 4f 20 69 6e 73 74 72 | packet.as.it.comes.in,.LRO.instr |
| c9ec0 | 75 63 74 73 20 74 68 65 20 4e 49 43 20 74 6f 20 63 6f 6d 62 69 6e 65 20 6d 75 6c 74 69 70 6c 65 | ucts.the.NIC.to.combine.multiple |
| c9ee0 | 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 2c | .incoming.packets.into.a.single, |
| c9f00 | 20 6c 61 72 67 65 72 20 70 61 63 6b 65 74 2e 20 54 68 69 73 20 6c 61 72 67 65 72 20 70 61 63 6b | .larger.packet..This.larger.pack |
| c9f20 | 65 74 20 69 73 20 74 68 65 6e 20 70 61 73 73 65 64 20 74 6f 20 74 68 65 20 43 50 55 20 66 6f 72 | et.is.then.passed.to.the.CPU.for |
| c9f40 | 20 70 72 6f 63 65 73 73 69 6e 67 2e 00 3a 61 62 62 72 3a 60 4d 46 50 20 28 4d 61 6e 61 67 65 6d | .processing..:abbr:`MFP.(Managem |
| c9f60 | 65 6e 74 20 46 72 61 6d 65 20 50 72 6f 74 65 63 74 69 6f 6e 29 60 20 69 73 20 72 65 71 75 69 72 | ent.Frame.Protection)`.is.requir |
| c9f80 | 65 64 20 66 6f 72 20 57 50 41 33 2e 00 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 63 20 | ed.for.WPA3..:abbr:`MKA.(MACsec. |
| c9fa0 | 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 75 73 65 64 | Key.Agreement.protocol)`.is.used |
| c9fc0 | 20 74 6f 20 73 79 6e 63 68 72 6f 6e 69 7a 65 20 6b 65 79 73 20 62 65 74 77 65 65 6e 20 69 6e 64 | .to.synchronize.keys.between.ind |
| c9fe0 | 69 76 69 64 75 61 6c 20 70 65 65 72 73 2e 00 3a 61 62 62 72 3a 60 4d 50 4c 53 20 28 4d 75 6c 74 | ividual.peers..:abbr:`MPLS.(Mult |
| ca000 | 69 2d 50 72 6f 74 6f 63 6f 6c 20 4c 61 62 65 6c 20 53 77 69 74 63 68 69 6e 67 29 60 20 69 73 20 | i-Protocol.Label.Switching)`.is. |
| ca020 | 61 20 70 61 63 6b 65 74 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 72 61 64 69 67 6d 20 77 68 69 | a.packet.forwarding.paradigm.whi |
| ca040 | 63 68 20 64 69 66 66 65 72 73 20 66 72 6f 6d 20 72 65 67 75 6c 61 72 20 49 50 20 66 6f 72 77 61 | ch.differs.from.regular.IP.forwa |
| ca060 | 72 64 69 6e 67 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 20 62 | rding..Instead.of.IP.addresses.b |
| ca080 | 65 69 6e 67 20 75 73 65 64 20 74 6f 20 6d 61 6b 65 20 74 68 65 20 64 65 63 69 73 69 6f 6e 20 6f | eing.used.to.make.the.decision.o |
| ca0a0 | 6e 20 66 69 6e 64 69 6e 67 20 74 68 65 20 65 78 69 74 20 69 6e 74 65 72 66 61 63 65 2c 20 61 20 | n.finding.the.exit.interface,.a. |
| ca0c0 | 72 6f 75 74 65 72 20 77 69 6c 6c 20 69 6e 73 74 65 61 64 20 75 73 65 20 61 6e 20 65 78 61 63 74 | router.will.instead.use.an.exact |
| ca0e0 | 20 6d 61 74 63 68 20 6f 6e 20 61 20 33 32 20 62 69 74 2f 34 20 62 79 74 65 20 68 65 61 64 65 72 | .match.on.a.32.bit/4.byte.header |
| ca100 | 20 63 61 6c 6c 65 64 20 74 68 65 20 4d 50 4c 53 20 6c 61 62 65 6c 2e 20 54 68 69 73 20 6c 61 62 | .called.the.MPLS.label..This.lab |
| ca120 | 65 6c 20 69 73 20 69 6e 73 65 72 74 65 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 65 74 68 65 72 | el.is.inserted.between.the.ether |
| ca140 | 6e 65 74 20 28 6c 61 79 65 72 20 32 29 20 68 65 61 64 65 72 20 61 6e 64 20 74 68 65 20 49 50 20 | net.(layer.2).header.and.the.IP. |
| ca160 | 28 6c 61 79 65 72 20 33 29 20 68 65 61 64 65 72 2e 20 4f 6e 65 20 63 61 6e 20 73 74 61 74 69 63 | (layer.3).header..One.can.static |
| ca180 | 61 6c 6c 79 20 6f 72 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 6c 61 62 65 6c | ally.or.dynamically.assign.label |
| ca1a0 | 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 2c 20 62 75 74 20 77 65 20 77 69 6c 6c 20 66 6f 63 75 73 20 | .allocations,.but.we.will.focus. |
| ca1c0 | 6f 6e 20 64 79 6e 61 6d 69 63 20 61 6c 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 6c 61 62 65 6c 73 20 | on.dynamic.allocation.of.labels. |
| ca1e0 | 75 73 69 6e 67 20 73 6f 6d 65 20 73 6f 72 74 20 6f 66 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 | using.some.sort.of.label.distrib |
| ca200 | 75 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 28 73 75 63 68 20 61 73 20 74 68 65 20 61 70 74 6c | ution.protocol.(such.as.the.aptl |
| ca220 | 79 20 6e 61 6d 65 64 20 4c 61 62 65 6c 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f | y.named.Label.Distribution.Proto |
| ca240 | 63 6f 6c 20 2f 20 4c 44 50 2c 20 52 65 73 6f 75 72 63 65 20 52 65 73 65 72 76 61 74 69 6f 6e 20 | col./.LDP,.Resource.Reservation. |
| ca260 | 50 72 6f 74 6f 63 6f 6c 20 2f 20 52 53 56 50 2c 20 6f 72 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 | Protocol./.RSVP,.or.Segment.Rout |
| ca280 | 69 6e 67 20 74 68 72 6f 75 67 68 20 4f 53 50 46 2f 49 53 49 53 29 2e 20 54 68 65 73 65 20 70 72 | ing.through.OSPF/ISIS)..These.pr |
| ca2a0 | 6f 74 6f 63 6f 6c 73 20 61 6c 6c 6f 77 20 66 6f 72 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f | otocols.allow.for.the.creation.o |
| ca2c0 | 66 20 61 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 2f 75 6e 69 63 61 73 74 20 70 61 74 68 20 | f.a.unidirectional/unicast.path. |
| ca2e0 | 63 61 6c 6c 65 64 20 61 20 6c 61 62 65 6c 65 64 20 73 77 69 74 63 68 65 64 20 70 61 74 68 20 28 | called.a.labeled.switched.path.( |
| ca300 | 69 6e 69 74 69 61 6c 69 7a 65 64 20 61 73 20 4c 53 50 29 20 74 68 72 6f 75 67 68 6f 75 74 20 74 | initialized.as.LSP).throughout.t |
| ca320 | 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 61 74 20 6f 70 65 72 61 74 65 73 20 76 65 72 79 20 6d 75 | he.network.that.operates.very.mu |
| ca340 | 63 68 20 6c 69 6b 65 20 61 20 74 75 6e 6e 65 6c 20 74 68 72 6f 75 67 68 20 74 68 65 20 6e 65 74 | ch.like.a.tunnel.through.the.net |
| ca360 | 77 6f 72 6b 2e 20 41 6e 20 65 61 73 79 20 77 61 79 20 6f 66 20 74 68 69 6e 6b 69 6e 67 20 61 62 | work..An.easy.way.of.thinking.ab |
| ca380 | 6f 75 74 20 68 6f 77 20 61 6e 20 4d 50 4c 53 20 4c 53 50 20 61 63 74 75 61 6c 6c 79 20 66 6f 72 | out.how.an.MPLS.LSP.actually.for |
| ca3a0 | 77 61 72 64 73 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 6f 75 74 20 61 20 6e 65 74 77 6f | wards.traffic.throughout.a.netwo |
| ca3c0 | 72 6b 20 69 73 20 74 6f 20 74 68 69 6e 6b 20 6f 66 20 61 20 47 52 45 20 74 75 6e 6e 65 6c 2e 20 | rk.is.to.think.of.a.GRE.tunnel.. |
| ca3e0 | 54 68 65 79 20 61 72 65 20 6e 6f 74 20 74 68 65 20 73 61 6d 65 20 69 6e 20 68 6f 77 20 74 68 65 | They.are.not.the.same.in.how.the |
| ca400 | 79 20 6f 70 65 72 61 74 65 2c 20 62 75 74 20 74 68 65 79 20 61 72 65 20 74 68 65 20 73 61 6d 65 | y.operate,.but.they.are.the.same |
| ca420 | 20 69 6e 20 68 6f 77 20 74 68 65 79 20 68 61 6e 64 6c 65 20 74 68 65 20 74 75 6e 6e 65 6c 65 64 | .in.how.they.handle.the.tunneled |
| ca440 | 20 70 61 63 6b 65 74 2e 20 49 74 20 77 6f 75 6c 64 20 62 65 20 67 6f 6f 64 20 74 6f 20 74 68 69 | .packet..It.would.be.good.to.thi |
| ca460 | 6e 6b 20 6f 66 20 4d 50 4c 53 20 61 73 20 61 20 74 75 6e 6e 65 6c 69 6e 67 20 74 65 63 68 6e 6f | nk.of.MPLS.as.a.tunneling.techno |
| ca480 | 6c 6f 67 79 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 74 72 61 6e 73 70 6f | logy.that.can.be.used.to.transpo |
| ca4a0 | 72 74 20 6d 61 6e 79 20 64 69 66 66 65 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 70 61 63 6b 65 | rt.many.different.types.of.packe |
| ca4c0 | 74 73 2c 20 74 6f 20 61 69 64 20 69 6e 20 74 72 61 66 66 69 63 20 65 6e 67 69 6e 65 65 72 69 6e | ts,.to.aid.in.traffic.engineerin |
| ca4e0 | 67 20 62 79 20 61 6c 6c 6f 77 69 6e 67 20 6f 6e 65 20 74 6f 20 73 70 65 63 69 66 79 20 70 61 74 | g.by.allowing.one.to.specify.pat |
| ca500 | 68 73 20 74 68 72 6f 75 67 68 6f 75 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 28 75 73 69 6e 67 | hs.throughout.the.network.(using |
| ca520 | 20 52 53 56 50 20 6f 72 20 53 52 29 2c 20 61 6e 64 20 74 6f 20 67 65 6e 65 72 61 6c 6c 79 20 61 | .RSVP.or.SR),.and.to.generally.a |
| ca540 | 6c 6c 6f 77 20 66 6f 72 20 65 61 73 69 65 72 20 69 6e 74 72 61 2f 69 6e 74 65 72 20 6e 65 74 77 | llow.for.easier.intra/inter.netw |
| ca560 | 6f 72 6b 20 74 72 61 6e 73 70 6f 72 74 20 6f 66 20 64 61 74 61 20 70 61 63 6b 65 74 73 2e 00 3a | ork.transport.of.data.packets..: |
| ca580 | 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 | abbr:`NAT.(Network.Address.Trans |
| ca5a0 | 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 20 63 6f 6d 6d 6f 6e 20 6d 65 74 68 6f 64 20 6f 66 20 72 | lation)`.is.a.common.method.of.r |
| ca5c0 | 65 6d 61 70 70 69 6e 67 20 6f 6e 65 20 49 50 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 69 6e | emapping.one.IP.address.space.in |
| ca5e0 | 74 6f 20 61 6e 6f 74 68 65 72 20 62 79 20 6d 6f 64 69 66 79 69 6e 67 20 6e 65 74 77 6f 72 6b 20 | to.another.by.modifying.network. |
| ca600 | 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 49 50 20 68 65 | address.information.in.the.IP.he |
| ca620 | 61 64 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 77 68 69 6c 65 20 74 68 65 79 20 61 72 65 20 69 | ader.of.packets.while.they.are.i |
| ca640 | 6e 20 74 72 61 6e 73 69 74 20 61 63 72 6f 73 73 20 61 20 74 72 61 66 66 69 63 20 72 6f 75 74 69 | n.transit.across.a.traffic.routi |
| ca660 | 6e 67 20 64 65 76 69 63 65 2e 20 54 68 65 20 74 65 63 68 6e 69 71 75 65 20 77 61 73 20 6f 72 69 | ng.device..The.technique.was.ori |
| ca680 | 67 69 6e 61 6c 6c 79 20 75 73 65 64 20 61 73 20 61 20 73 68 6f 72 74 63 75 74 20 74 6f 20 61 76 | ginally.used.as.a.shortcut.to.av |
| ca6a0 | 6f 69 64 20 74 68 65 20 6e 65 65 64 20 74 6f 20 72 65 61 64 64 72 65 73 73 20 65 76 65 72 79 20 | oid.the.need.to.readdress.every. |
| ca6c0 | 68 6f 73 74 20 77 68 65 6e 20 61 20 6e 65 74 77 6f 72 6b 20 77 61 73 20 6d 6f 76 65 64 2e 20 49 | host.when.a.network.was.moved..I |
| ca6e0 | 74 20 68 61 73 20 62 65 63 6f 6d 65 20 61 20 70 6f 70 75 6c 61 72 20 61 6e 64 20 65 73 73 65 6e | t.has.become.a.popular.and.essen |
| ca700 | 74 69 61 6c 20 74 6f 6f 6c 20 69 6e 20 63 6f 6e 73 65 72 76 69 6e 67 20 67 6c 6f 62 61 6c 20 61 | tial.tool.in.conserving.global.a |
| ca720 | 64 64 72 65 73 73 20 73 70 61 63 65 20 69 6e 20 74 68 65 20 66 61 63 65 20 6f 66 20 49 50 76 34 | ddress.space.in.the.face.of.IPv4 |
| ca740 | 20 61 64 64 72 65 73 73 20 65 78 68 61 75 73 74 69 6f 6e 2e 20 4f 6e 65 20 49 6e 74 65 72 6e 65 | .address.exhaustion..One.Interne |
| ca760 | 74 2d 72 6f 75 74 61 62 6c 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 4e 41 54 20 67 | t-routable.IP.address.of.a.NAT.g |
| ca780 | 61 74 65 77 61 79 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 6e 20 65 6e 74 69 72 65 | ateway.can.be.used.for.an.entire |
| ca7a0 | 20 70 72 69 76 61 74 65 20 6e 65 74 77 6f 72 6b 2e 00 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 | .private.network..:abbr:`NAT.(Ne |
| ca7c0 | 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 63 | twork.Address.Translation)`.is.c |
| ca7e0 | 6f 6e 66 69 67 75 72 65 64 20 65 6e 74 69 72 65 6c 79 20 6f 6e 20 61 20 73 65 72 69 65 73 20 6f | onfigured.entirely.on.a.series.o |
| ca800 | 66 20 73 6f 20 63 61 6c 6c 65 64 20 60 72 75 6c 65 73 60 2e 20 52 75 6c 65 73 20 61 72 65 20 6e | f.so.called.`rules`..Rules.are.n |
| ca820 | 75 6d 62 65 72 65 64 20 61 6e 64 20 65 76 61 6c 75 61 74 65 64 20 62 79 20 74 68 65 20 75 6e 64 | umbered.and.evaluated.by.the.und |
| ca840 | 65 72 6c 79 69 6e 67 20 4f 53 20 69 6e 20 6e 75 6d 65 72 69 63 61 6c 20 6f 72 64 65 72 21 20 54 | erlying.OS.in.numerical.order!.T |
| ca860 | 68 65 20 72 75 6c 65 20 6e 75 6d 62 65 72 73 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 73 20 62 | he.rule.numbers.can.be.changes.b |
| ca880 | 79 20 75 74 69 6c 69 7a 69 6e 67 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 6e 61 6d 65 60 | y.utilizing.the.:cfgcmd:`rename` |
| ca8a0 | 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 63 6f 70 79 60 20 63 6f 6d 6d 61 6e 64 73 2e 00 3a 61 | .and.:cfgcmd:`copy`.commands..:a |
| ca8c0 | 62 62 72 3a 60 4e 41 54 36 34 20 28 49 50 76 36 2d 74 6f 2d 49 50 76 34 20 50 72 65 66 69 78 20 | bbr:`NAT64.(IPv6-to-IPv4.Prefix. |
| ca8e0 | 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 20 63 72 69 74 69 63 61 6c 20 63 6f 6d 70 | Translation)`.is.a.critical.comp |
| ca900 | 6f 6e 65 6e 74 20 69 6e 20 6d 6f 64 65 72 6e 20 6e 65 74 77 6f 72 6b 69 6e 67 2c 20 66 61 63 69 | onent.in.modern.networking,.faci |
| ca920 | 6c 69 74 61 74 69 6e 67 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 49 | litating.communication.between.I |
| ca940 | 50 76 36 20 61 6e 64 20 49 50 76 34 20 6e 65 74 77 6f 72 6b 73 2e 20 54 68 69 73 20 64 6f 63 75 | Pv6.and.IPv4.networks..This.docu |
| ca960 | 6d 65 6e 74 61 74 69 6f 6e 20 6f 75 74 6c 69 6e 65 73 20 74 68 65 20 73 65 74 75 70 2c 20 63 6f | mentation.outlines.the.setup,.co |
| ca980 | 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 61 6e 64 20 75 73 61 67 65 20 6f 66 20 74 68 65 20 4e 41 | nfiguration,.and.usage.of.the.NA |
| ca9a0 | 54 36 34 20 66 65 61 74 75 72 65 20 69 6e 20 79 6f 75 72 20 70 72 6f 6a 65 63 74 2e 20 57 68 65 | T64.feature.in.your.project..Whe |
| ca9c0 | 74 68 65 72 20 79 6f 75 20 61 72 65 20 74 72 61 6e 73 69 74 69 6f 6e 69 6e 67 20 74 6f 20 49 50 | ther.you.are.transitioning.to.IP |
| ca9e0 | 76 36 20 6f 72 20 6e 65 65 64 20 74 6f 20 73 65 61 6d 6c 65 73 73 6c 79 20 63 6f 6e 6e 65 63 74 | v6.or.need.to.seamlessly.connect |
| caa00 | 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 64 65 76 69 63 65 73 2e 20 4e 41 54 36 34 20 69 73 | .IPv4.and.IPv6.devices..NAT64.is |
| caa20 | 20 61 20 73 74 61 74 65 66 75 6c 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 | .a.stateful.translation.mechanis |
| caa40 | 6d 20 74 68 61 74 20 74 72 61 6e 73 6c 61 74 65 73 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 | m.that.translates.IPv6.addresses |
| caa60 | 20 74 6f 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 49 50 76 34 20 61 64 64 72 | .to.IPv4.addresses.and.IPv4.addr |
| caa80 | 65 73 73 65 73 20 74 6f 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 20 4e 41 54 36 34 20 69 | esses.to.IPv6.addresses..NAT64.i |
| caaa0 | 73 20 75 73 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 49 50 76 36 2d 6f 6e 6c 79 20 63 6c 69 65 6e | s.used.to.enable.IPv6-only.clien |
| caac0 | 74 73 20 74 6f 20 63 6f 6e 74 61 63 74 20 49 50 76 34 20 73 65 72 76 65 72 73 20 75 73 69 6e 67 | ts.to.contact.IPv4.servers.using |
| caae0 | 20 75 6e 69 63 61 73 74 20 55 44 50 2c 20 54 43 50 2c 20 6f 72 20 49 43 4d 50 2e 00 3a 61 62 62 | .unicast.UDP,.TCP,.or.ICMP..:abb |
| cab00 | 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 20 73 | r:`NET.(Network.Entity.Title)`.s |
| cab20 | 65 6c 65 63 74 6f 72 3a 20 60 60 30 30 60 60 20 4d 75 73 74 20 61 6c 77 61 79 73 20 62 65 20 30 | elector:.``00``.Must.always.be.0 |
| cab40 | 30 2e 20 54 68 69 73 20 73 65 74 74 69 6e 67 20 69 6e 64 69 63 61 74 65 73 20 22 74 68 69 73 20 | 0..This.setting.indicates."this. |
| cab60 | 73 79 73 74 65 6d 22 20 6f 72 20 22 6c 6f 63 61 6c 20 73 79 73 74 65 6d 2e 22 00 3a 61 62 62 72 | system".or."local.system.".:abbr |
| cab80 | 3a 60 4e 48 52 50 20 28 4e 65 78 74 20 48 6f 70 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 6f 74 | :`NHRP.(Next.Hop.Resolution.Prot |
| caba0 | 6f 63 6f 6c 29 60 20 3a 72 66 63 3a 60 32 33 33 32 60 00 3a 61 62 62 72 3a 60 4e 50 54 76 36 20 | ocol)`.:rfc:`2332`.:abbr:`NPTv6. |
| cabc0 | 28 49 50 76 36 2d 74 6f 2d 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 54 72 61 | (IPv6-to-IPv6.Network.Prefix.Tra |
| cabe0 | 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 6e 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 | nslation)`.is.an.address.transla |
| cac00 | 74 69 6f 6e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 6e 65 | tion.technology.based.on.IPv6.ne |
| cac20 | 74 77 6f 72 6b 73 2c 20 75 73 65 64 20 74 6f 20 63 6f 6e 76 65 72 74 20 61 6e 20 49 50 76 36 20 | tworks,.used.to.convert.an.IPv6. |
| cac40 | 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 69 6e 20 61 6e 20 49 50 76 36 20 6d 65 73 73 61 67 | address.prefix.in.an.IPv6.messag |
| cac60 | 65 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 | e.into.another.IPv6.address.pref |
| cac80 | 69 78 2e 20 57 65 20 63 61 6c 6c 20 74 68 69 73 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 | ix..We.call.this.address.transla |
| caca0 | 74 69 6f 6e 20 6d 65 74 68 6f 64 20 4e 41 54 36 36 2e 20 44 65 76 69 63 65 73 20 74 68 61 74 20 | tion.method.NAT66..Devices.that. |
| cacc0 | 73 75 70 70 6f 72 74 20 74 68 65 20 4e 41 54 36 36 20 66 75 6e 63 74 69 6f 6e 20 61 72 65 20 63 | support.the.NAT66.function.are.c |
| cace0 | 61 6c 6c 65 64 20 4e 41 54 36 36 20 64 65 76 69 63 65 73 2c 20 77 68 69 63 68 20 63 61 6e 20 70 | alled.NAT66.devices,.which.can.p |
| cad00 | 72 6f 76 69 64 65 20 4e 41 54 36 36 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 | rovide.NAT66.source.and.destinat |
| cad20 | 69 6f 6e 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 66 75 6e 63 74 69 6f 6e | ion.address.translation.function |
| cad40 | 73 2e 00 3a 61 62 62 72 3a 60 4e 54 50 20 28 4e 65 74 77 6f 72 6b 20 54 69 6d 65 20 50 72 6f 74 | s..:abbr:`NTP.(Network.Time.Prot |
| cad60 | 6f 63 6f 6c 60 29 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 | ocol`).is.a.networking.protocol. |
| cad80 | 66 6f 72 20 63 6c 6f 63 6b 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 62 65 74 77 65 65 | for.clock.synchronization.betwee |
| cada0 | 6e 20 63 6f 6d 70 75 74 65 72 20 73 79 73 74 65 6d 73 20 6f 76 65 72 20 70 61 63 6b 65 74 2d 73 | n.computer.systems.over.packet-s |
| cadc0 | 77 69 74 63 68 65 64 2c 20 76 61 72 69 61 62 6c 65 2d 6c 61 74 65 6e 63 79 20 64 61 74 61 20 6e | witched,.variable-latency.data.n |
| cade0 | 65 74 77 6f 72 6b 73 2e 20 49 6e 20 6f 70 65 72 61 74 69 6f 6e 20 73 69 6e 63 65 20 62 65 66 6f | etworks..In.operation.since.befo |
| cae00 | 72 65 20 31 39 38 35 2c 20 4e 54 50 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 6f 6c 64 65 73 | re.1985,.NTP.is.one.of.the.oldes |
| cae20 | 74 20 49 6e 74 65 72 6e 65 74 20 70 72 6f 74 6f 63 6f 6c 73 20 69 6e 20 63 75 72 72 65 6e 74 20 | t.Internet.protocols.in.current. |
| cae40 | 75 73 65 2e 00 3a 61 62 62 72 3a 60 4f 53 50 46 20 28 4f 70 65 6e 20 53 68 6f 72 74 65 73 74 20 | use..:abbr:`OSPF.(Open.Shortest. |
| cae60 | 50 61 74 68 20 46 69 72 73 74 29 60 20 69 73 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 | Path.First)`.is.a.routing.protoc |
| cae80 | 6f 6c 20 66 6f 72 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 28 49 50 29 20 6e 65 | ol.for.Internet.Protocol.(IP).ne |
| caea0 | 74 77 6f 72 6b 73 2e 20 49 74 20 75 73 65 73 20 61 20 6c 69 6e 6b 20 73 74 61 74 65 20 72 6f 75 | tworks..It.uses.a.link.state.rou |
| caec0 | 74 69 6e 67 20 28 4c 53 52 29 20 61 6c 67 6f 72 69 74 68 6d 20 61 6e 64 20 66 61 6c 6c 73 20 69 | ting.(LSR).algorithm.and.falls.i |
| caee0 | 6e 74 6f 20 74 68 65 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 69 6f 72 20 67 61 74 65 77 61 | nto.the.group.of.interior.gatewa |
| caf00 | 79 20 70 72 6f 74 6f 63 6f 6c 73 20 28 49 47 50 73 29 2c 20 6f 70 65 72 61 74 69 6e 67 20 77 69 | y.protocols.(IGPs),.operating.wi |
| caf20 | 74 68 69 6e 20 61 20 73 69 6e 67 6c 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 | thin.a.single.autonomous.system. |
| caf40 | 28 41 53 29 2e 20 49 74 20 69 73 20 64 65 66 69 6e 65 64 20 61 73 20 4f 53 50 46 20 56 65 72 73 | (AS)..It.is.defined.as.OSPF.Vers |
| caf60 | 69 6f 6e 20 32 20 69 6e 20 3a 72 66 63 3a 60 32 33 32 38 60 20 28 31 39 39 38 29 20 66 6f 72 20 | ion.2.in.:rfc:`2328`.(1998).for. |
| caf80 | 49 50 76 34 2e 20 55 70 64 61 74 65 73 20 66 6f 72 20 49 50 76 36 20 61 72 65 20 73 70 65 63 69 | IPv4..Updates.for.IPv6.are.speci |
| cafa0 | 66 69 65 64 20 61 73 20 4f 53 50 46 20 56 65 72 73 69 6f 6e 20 33 20 69 6e 20 3a 72 66 63 3a 60 | fied.as.OSPF.Version.3.in.:rfc:` |
| cafc0 | 35 33 34 30 60 20 28 32 30 30 38 29 2e 20 4f 53 50 46 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 | 5340`.(2008)..OSPF.supports.the. |
| cafe0 | 3a 61 62 62 72 3a 60 43 49 44 52 20 28 43 6c 61 73 73 6c 65 73 73 20 49 6e 74 65 72 2d 44 6f 6d | :abbr:`CIDR.(Classless.Inter-Dom |
| cb000 | 61 69 6e 20 52 6f 75 74 69 6e 67 29 60 20 61 64 64 72 65 73 73 69 6e 67 20 6d 6f 64 65 6c 2e 00 | ain.Routing)`.addressing.model.. |
| cb020 | 3a 61 62 62 72 3a 60 50 49 4d 20 28 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 | :abbr:`PIM.(Protocol.Independent |
| cb040 | 20 4d 75 6c 74 69 63 61 73 74 29 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | .Multicast)`.must.be.configured. |
| cb060 | 69 6e 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 | in.every.interface.of.every.part |
| cb080 | 69 63 69 70 61 74 69 6e 67 20 72 6f 75 74 65 72 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d | icipating.router..Every.router.m |
| cb0a0 | 75 73 74 20 61 6c 73 6f 20 68 61 76 65 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 | ust.also.have.the.location.of.th |
| cb0c0 | 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 | e.Rendevouz.Point.manually.confi |
| cb0e0 | 67 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 | gured..Then,.unidirectional.shar |
| cb100 | 65 64 20 74 72 65 65 73 20 72 6f 6f 74 65 64 20 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a | ed.trees.rooted.at.the.Rendevouz |
| cb120 | 20 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 | .Point.will.automatically.be.bui |
| cb140 | 6c 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 3a | lt.for.multicast.distribution..: |
| cb160 | 61 62 62 72 3a 60 50 50 50 6f 45 20 28 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 50 72 6f 74 | abbr:`PPPoE.(Point-to-Point.Prot |
| cb180 | 6f 63 6f 6c 20 6f 76 65 72 20 45 74 68 65 72 6e 65 74 29 60 20 69 73 20 61 20 6e 65 74 77 6f 72 | ocol.over.Ethernet)`.is.a.networ |
| cb1a0 | 6b 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6e 67 20 50 50 50 | k.protocol.for.encapsulating.PPP |
| cb1c0 | 20 66 72 61 6d 65 73 20 69 6e 73 69 64 65 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 2e 20 | .frames.inside.Ethernet.frames.. |
| cb1e0 | 49 74 20 61 70 70 65 61 72 65 64 20 69 6e 20 31 39 39 39 2c 20 69 6e 20 74 68 65 20 63 6f 6e 74 | It.appeared.in.1999,.in.the.cont |
| cb200 | 65 78 74 20 6f 66 20 74 68 65 20 62 6f 6f 6d 20 6f 66 20 44 53 4c 20 61 73 20 74 68 65 20 73 6f | ext.of.the.boom.of.DSL.as.the.so |
| cb220 | 6c 75 74 69 6f 6e 20 66 6f 72 20 74 75 6e 6e 65 6c 69 6e 67 20 70 61 63 6b 65 74 73 20 6f 76 65 | lution.for.tunneling.packets.ove |
| cb240 | 72 20 74 68 65 20 44 53 4c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 74 68 65 20 3a 61 62 62 | r.the.DSL.connection.to.the.:abb |
| cb260 | 72 3a 60 49 53 50 73 20 28 49 6e 74 65 72 6e 65 74 20 53 65 72 76 69 63 65 20 50 72 6f 76 69 64 | r:`ISPs.(Internet.Service.Provid |
| cb280 | 65 72 73 29 60 20 49 50 20 6e 65 74 77 6f 72 6b 2c 20 61 6e 64 20 66 72 6f 6d 20 74 68 65 72 65 | ers)`.IP.network,.and.from.there |
| cb2a0 | 20 74 6f 20 74 68 65 20 72 65 73 74 20 6f 66 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2e 20 41 20 | .to.the.rest.of.the.Internet..A. |
| cb2c0 | 32 30 30 35 20 6e 65 74 77 6f 72 6b 69 6e 67 20 62 6f 6f 6b 20 6e 6f 74 65 64 20 74 68 61 74 20 | 2005.networking.book.noted.that. |
| cb2e0 | 22 4d 6f 73 74 20 44 53 4c 20 70 72 6f 76 69 64 65 72 73 20 75 73 65 20 50 50 50 6f 45 2c 20 77 | "Most.DSL.providers.use.PPPoE,.w |
| cb300 | 68 69 63 68 20 70 72 6f 76 69 64 65 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 65 6e | hich.provides.authentication,.en |
| cb320 | 63 72 79 70 74 69 6f 6e 2c 20 61 6e 64 20 63 6f 6d 70 72 65 73 73 69 6f 6e 2e 22 20 54 79 70 69 | cryption,.and.compression.".Typi |
| cb340 | 63 61 6c 20 75 73 65 20 6f 66 20 50 50 50 6f 45 20 69 6e 76 6f 6c 76 65 73 20 6c 65 76 65 72 61 | cal.use.of.PPPoE.involves.levera |
| cb360 | 67 69 6e 67 20 74 68 65 20 50 50 50 20 66 61 63 69 6c 69 74 69 65 73 20 66 6f 72 20 61 75 74 68 | ging.the.PPP.facilities.for.auth |
| cb380 | 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 73 65 72 20 77 69 74 68 20 61 20 75 73 65 72 6e | enticating.the.user.with.a.usern |
| cb3a0 | 61 6d 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 2c 20 70 72 65 64 6f 6d 69 6e 61 74 65 6c 79 20 | ame.and.password,.predominately. |
| cb3c0 | 76 69 61 20 74 68 65 20 50 41 50 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 6c 65 73 73 20 6f 66 | via.the.PAP.protocol.and.less.of |
| cb3e0 | 74 65 6e 20 76 69 61 20 43 48 41 50 2e 00 3a 61 62 62 72 3a 60 52 41 73 20 28 52 6f 75 74 65 72 | ten.via.CHAP..:abbr:`RAs.(Router |
| cb400 | 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 29 60 20 61 72 65 20 64 65 73 63 72 69 62 65 64 20 | .advertisements)`.are.described. |
| cb420 | 69 6e 20 3a 72 66 63 3a 60 34 38 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 36 2e 32 60 2e 20 54 68 | in.:rfc:`4861#section-4.6.2`..Th |
| cb440 | 65 79 20 61 72 65 20 70 61 72 74 20 6f 66 20 77 68 61 74 20 69 73 20 6b 6e 6f 77 6e 20 61 73 20 | ey.are.part.of.what.is.known.as. |
| cb460 | 3a 61 62 62 72 3a 60 53 4c 41 41 43 20 28 53 74 61 74 65 6c 65 73 73 20 41 64 64 72 65 73 73 20 | :abbr:`SLAAC.(Stateless.Address. |
| cb480 | 41 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 29 60 2e 00 3a 61 62 62 72 3a 60 52 49 50 20 | Autoconfiguration)`..:abbr:`RIP. |
| cb4a0 | 28 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 | (Routing.Information.Protocol)`. |
| cb4c0 | 69 73 20 61 20 77 69 64 65 6c 79 20 64 65 70 6c 6f 79 65 64 20 69 6e 74 65 72 69 6f 72 20 67 61 | is.a.widely.deployed.interior.ga |
| cb4e0 | 74 65 77 61 79 20 70 72 6f 74 6f 63 6f 6c 2e 20 52 49 50 20 77 61 73 20 64 65 76 65 6c 6f 70 65 | teway.protocol..RIP.was.develope |
| cb500 | 64 20 69 6e 20 74 68 65 20 31 39 37 30 73 20 61 74 20 58 65 72 6f 78 20 4c 61 62 73 20 61 73 20 | d.in.the.1970s.at.Xerox.Labs.as. |
| cb520 | 70 61 72 74 20 6f 66 20 74 68 65 20 58 4e 53 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c | part.of.the.XNS.routing.protocol |
| cb540 | 2e 20 52 49 50 20 69 73 20 61 20 64 69 73 74 61 6e 63 65 2d 76 65 63 74 6f 72 20 70 72 6f 74 6f | ..RIP.is.a.distance-vector.proto |
| cb560 | 63 6f 6c 20 61 6e 64 20 69 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 42 65 6c 6c 6d 61 6e 2d | col.and.is.based.on.the.Bellman- |
| cb580 | 46 6f 72 64 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 41 73 20 61 20 64 69 73 74 61 6e 63 65 2d 76 | Ford.algorithms..As.a.distance-v |
| cb5a0 | 65 63 74 6f 72 20 70 72 6f 74 6f 63 6f 6c 2c 20 52 49 50 20 72 6f 75 74 65 72 20 73 65 6e 64 20 | ector.protocol,.RIP.router.send. |
| cb5c0 | 75 70 64 61 74 65 73 20 74 6f 20 69 74 73 20 6e 65 69 67 68 62 6f 72 73 20 70 65 72 69 6f 64 69 | updates.to.its.neighbors.periodi |
| cb5e0 | 63 61 6c 6c 79 2c 20 74 68 75 73 20 61 6c 6c 6f 77 69 6e 67 20 74 68 65 20 63 6f 6e 76 65 72 67 | cally,.thus.allowing.the.converg |
| cb600 | 65 6e 63 65 20 74 6f 20 61 20 6b 6e 6f 77 6e 20 74 6f 70 6f 6c 6f 67 79 2e 20 49 6e 20 65 61 63 | ence.to.a.known.topology..In.eac |
| cb620 | 68 20 75 70 64 61 74 65 2c 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 74 6f 20 61 6e 79 20 67 69 | h.update,.the.distance.to.any.gi |
| cb640 | 76 65 6e 20 6e 65 74 77 6f 72 6b 20 77 69 6c 6c 20 62 65 20 62 72 6f 61 64 63 61 73 74 20 74 6f | ven.network.will.be.broadcast.to |
| cb660 | 20 69 74 73 20 6e 65 69 67 68 62 6f 72 69 6e 67 20 72 6f 75 74 65 72 2e 00 3a 61 62 62 72 3a 60 | .its.neighboring.router..:abbr:` |
| cb680 | 52 50 4b 49 20 28 52 65 73 6f 75 72 63 65 20 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 72 61 73 | RPKI.(Resource.Public.Key.Infras |
| cb6a0 | 74 72 75 63 74 75 72 65 29 60 20 69 73 20 61 20 66 72 61 6d 65 77 6f 72 6b 20 3a 61 62 62 72 3a | tructure)`.is.a.framework.:abbr: |
| cb6c0 | 60 50 4b 49 20 28 50 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 72 61 73 74 72 75 63 74 75 72 65 29 | `PKI.(Public.Key.Infrastructure) |
| cb6e0 | 60 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 49 6e 74 65 72 6e 65 | `.designed.to.secure.the.Interne |
| cb700 | 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 2e 20 49 74 20 61 73 73 | t.routing.infrastructure..It.ass |
| cb720 | 6f 63 69 61 74 65 73 20 42 47 50 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 20 | ociates.BGP.route.announcements. |
| cb740 | 77 69 74 68 20 74 68 65 20 63 6f 72 72 65 63 74 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 3a 61 62 | with.the.correct.originating.:ab |
| cb760 | 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 | br:`ASN.(Autonomus.System.Number |
| cb780 | 29 60 20 77 68 69 63 68 20 42 47 50 20 72 6f 75 74 65 72 73 20 63 61 6e 20 74 68 65 6e 20 75 73 | )`.which.BGP.routers.can.then.us |
| cb7a0 | 65 20 74 6f 20 63 68 65 63 6b 20 65 61 63 68 20 72 6f 75 74 65 20 61 67 61 69 6e 73 74 20 74 68 | e.to.check.each.route.against.th |
| cb7c0 | 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 3a 61 62 62 72 3a 60 52 4f 41 20 28 52 6f 75 74 | e.corresponding.:abbr:`ROA.(Rout |
| cb7e0 | 65 20 4f 72 69 67 69 6e 20 41 75 74 68 6f 72 69 73 61 74 69 6f 6e 29 60 20 66 6f 72 20 76 61 6c | e.Origin.Authorisation)`.for.val |
| cb800 | 69 64 69 74 79 2e 20 52 50 4b 49 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 | idity..RPKI.is.described.in.:rfc |
| cb820 | 3a 60 36 34 38 30 60 2e 00 3a 61 62 62 72 3a 60 52 50 4b 49 20 28 52 65 73 6f 75 72 63 65 20 50 | :`6480`..:abbr:`RPKI.(Resource.P |
| cb840 | 75 62 6c 69 63 20 4b 65 79 20 49 6e 66 72 61 73 74 72 75 63 74 75 72 65 29 60 20 69 73 20 61 20 | ublic.Key.Infrastructure)`.is.a. |
| cb860 | 66 72 61 6d 65 77 6f 72 6b 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 | framework.designed.to.secure.the |
| cb880 | 20 49 6e 74 65 72 6e 65 74 20 72 6f 75 74 69 6e 67 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 | .Internet.routing.infrastructure |
| cb8a0 | 2e 20 49 74 20 61 73 73 6f 63 69 61 74 65 73 20 42 47 50 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e | ..It.associates.BGP.route.announ |
| cb8c0 | 63 65 6d 65 6e 74 73 20 77 69 74 68 20 74 68 65 20 63 6f 72 72 65 63 74 20 6f 72 69 67 69 6e 61 | cements.with.the.correct.origina |
| cb8e0 | 74 69 6e 67 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 75 73 20 53 79 73 74 65 | ting.:abbr:`ASN.(Autonomus.Syste |
| cb900 | 6d 20 4e 75 6d 62 65 72 29 60 20 77 68 69 63 68 20 42 47 50 20 72 6f 75 74 65 72 73 20 63 61 6e | m.Number)`.which.BGP.routers.can |
| cb920 | 20 74 68 65 6e 20 75 73 65 20 74 6f 20 63 68 65 63 6b 20 65 61 63 68 20 72 6f 75 74 65 20 61 67 | .then.use.to.check.each.route.ag |
| cb940 | 61 69 6e 73 74 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 3a 61 62 62 72 3a 60 52 | ainst.the.corresponding.:abbr:`R |
| cb960 | 4f 41 20 28 52 6f 75 74 65 20 4f 72 69 67 69 6e 20 41 75 74 68 6f 72 69 73 61 74 69 6f 6e 29 60 | OA.(Route.Origin.Authorisation)` |
| cb980 | 20 66 6f 72 20 76 61 6c 69 64 69 74 79 2e 20 52 50 4b 49 20 69 73 20 64 65 73 63 72 69 62 65 64 | .for.validity..RPKI.is.described |
| cb9a0 | 20 69 6e 20 3a 72 66 63 3a 60 36 34 38 30 60 2e 00 3a 61 62 62 72 3a 60 52 50 53 20 28 52 65 63 | .in.:rfc:`6480`..:abbr:`RPS.(Rec |
| cb9c0 | 65 69 76 65 20 50 61 63 6b 65 74 20 53 74 65 65 72 69 6e 67 29 60 20 69 73 20 6c 6f 67 69 63 61 | eive.Packet.Steering)`.is.logica |
| cb9e0 | 6c 6c 79 20 61 20 73 6f 66 74 77 61 72 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 | lly.a.software.implementation.of |
| cba00 | 20 3a 61 62 62 72 3a 60 52 53 53 20 28 52 65 63 65 69 76 65 20 53 69 64 65 20 53 63 61 6c 69 6e | .:abbr:`RSS.(Receive.Side.Scalin |
| cba20 | 67 29 60 2e 20 42 65 69 6e 67 20 69 6e 20 73 6f 66 74 77 61 72 65 2c 20 69 74 20 69 73 20 6e 65 | g)`..Being.in.software,.it.is.ne |
| cba40 | 63 65 73 73 61 72 69 6c 79 20 63 61 6c 6c 65 64 20 6c 61 74 65 72 20 69 6e 20 74 68 65 20 64 61 | cessarily.called.later.in.the.da |
| cba60 | 74 61 70 61 74 68 2e 20 57 68 65 72 65 61 73 20 52 53 53 20 73 65 6c 65 63 74 73 20 74 68 65 20 | tapath..Whereas.RSS.selects.the. |
| cba80 | 71 75 65 75 65 20 61 6e 64 20 68 65 6e 63 65 20 43 50 55 20 74 68 61 74 20 77 69 6c 6c 20 72 75 | queue.and.hence.CPU.that.will.ru |
| cbaa0 | 6e 20 74 68 65 20 68 61 72 64 77 61 72 65 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 6c 65 72 | n.the.hardware.interrupt.handler |
| cbac0 | 2c 20 52 50 53 20 73 65 6c 65 63 74 73 20 74 68 65 20 43 50 55 20 74 6f 20 70 65 72 66 6f 72 6d | ,.RPS.selects.the.CPU.to.perform |
| cbae0 | 20 70 72 6f 74 6f 63 6f 6c 20 70 72 6f 63 65 73 73 69 6e 67 20 61 62 6f 76 65 20 74 68 65 20 69 | .protocol.processing.above.the.i |
| cbb00 | 6e 74 65 72 72 75 70 74 20 68 61 6e 64 6c 65 72 2e 20 54 68 69 73 20 69 73 20 61 63 63 6f 6d 70 | nterrupt.handler..This.is.accomp |
| cbb20 | 6c 69 73 68 65 64 20 62 79 20 70 6c 61 63 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 6f 6e 20 | lished.by.placing.the.packet.on. |
| cbb40 | 74 68 65 20 64 65 73 69 72 65 64 20 43 50 55 27 73 20 62 61 63 6b 6c 6f 67 20 71 75 65 75 65 20 | the.desired.CPU's.backlog.queue. |
| cbb60 | 61 6e 64 20 77 61 6b 69 6e 67 20 75 70 20 74 68 65 20 43 50 55 20 66 6f 72 20 70 72 6f 63 65 73 | and.waking.up.the.CPU.for.proces |
| cbb80 | 73 69 6e 67 2e 20 52 50 53 20 68 61 73 20 73 6f 6d 65 20 61 64 76 61 6e 74 61 67 65 73 20 6f 76 | sing..RPS.has.some.advantages.ov |
| cbba0 | 65 72 20 52 53 53 3a 00 3a 61 62 62 72 3a 60 53 4c 41 41 43 20 28 53 74 61 74 65 6c 65 73 73 20 | er.RSS:.:abbr:`SLAAC.(Stateless. |
| cbbc0 | 41 64 64 72 65 73 73 20 41 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 29 60 20 3a 72 66 63 | Address.Autoconfiguration)`.:rfc |
| cbbe0 | 3a 60 34 38 36 32 60 2e 20 49 50 76 36 20 68 6f 73 74 73 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 | :`4862`..IPv6.hosts.can.configur |
| cbc00 | 65 20 74 68 65 6d 73 65 6c 76 65 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 77 68 65 6e 20 | e.themselves.automatically.when. |
| cbc20 | 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 6e 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 75 73 69 | connected.to.an.IPv6.network.usi |
| cbc40 | 6e 67 20 74 68 65 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 | ng.the.Neighbor.Discovery.Protoc |
| cbc60 | 6f 6c 20 76 69 61 20 3a 61 62 62 72 3a 60 49 43 4d 50 76 36 20 28 49 6e 74 65 72 6e 65 74 20 43 | ol.via.:abbr:`ICMPv6.(Internet.C |
| cbc80 | 6f 6e 74 72 6f 6c 20 4d 65 73 73 61 67 65 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 | ontrol.Message.Protocol.version. |
| cbca0 | 36 29 60 20 72 6f 75 74 65 72 20 64 69 73 63 6f 76 65 72 79 20 6d 65 73 73 61 67 65 73 2e 20 57 | 6)`.router.discovery.messages..W |
| cbcc0 | 68 65 6e 20 66 69 72 73 74 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b | hen.first.connected.to.a.network |
| cbce0 | 2c 20 61 20 68 6f 73 74 20 73 65 6e 64 73 20 61 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 72 6f 75 74 | ,.a.host.sends.a.link-local.rout |
| cbd00 | 65 72 20 73 6f 6c 69 63 69 74 61 74 69 6f 6e 20 6d 75 6c 74 69 63 61 73 74 20 72 65 71 75 65 73 | er.solicitation.multicast.reques |
| cbd20 | 74 20 66 6f 72 20 69 74 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 | t.for.its.configuration.paramete |
| cbd40 | 72 73 3b 20 72 6f 75 74 65 72 73 20 72 65 73 70 6f 6e 64 20 74 6f 20 73 75 63 68 20 61 20 72 65 | rs;.routers.respond.to.such.a.re |
| cbd60 | 71 75 65 73 74 20 77 69 74 68 20 61 20 72 6f 75 74 65 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e | quest.with.a.router.advertisemen |
| cbd80 | 74 20 70 61 63 6b 65 74 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 73 20 49 6e 74 65 72 6e 65 74 20 | t.packet.that.contains.Internet. |
| cbda0 | 4c 61 79 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 2e 00 | Layer.configuration.parameters.. |
| cbdc0 | 3a 61 62 62 72 3a 60 53 4e 41 54 20 28 53 6f 75 72 63 65 20 4e 65 74 77 6f 72 6b 20 41 64 64 72 | :abbr:`SNAT.(Source.Network.Addr |
| cbde0 | 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 74 68 65 20 6d 6f 73 74 20 63 6f | ess.Translation)`.is.the.most.co |
| cbe00 | 6d 6d 6f 6e 20 66 6f 72 6d 20 6f 66 20 3a 61 62 62 72 3a 60 4e 41 54 20 28 4e 65 74 77 6f 72 6b | mmon.form.of.:abbr:`NAT.(Network |
| cbe20 | 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 61 6e 64 20 69 73 20 74 79 | .Address.Translation)`.and.is.ty |
| cbe40 | 70 69 63 61 6c 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 73 69 6d 70 6c 79 20 61 73 20 4e 41 | pically.referred.to.simply.as.NA |
| cbe60 | 54 2e 20 54 6f 20 62 65 20 6d 6f 72 65 20 63 6f 72 72 65 63 74 2c 20 77 68 61 74 20 6d 6f 73 74 | T..To.be.more.correct,.what.most |
| cbe80 | 20 70 65 6f 70 6c 65 20 72 65 66 65 72 20 74 6f 20 61 73 20 3a 61 62 62 72 3a 60 4e 41 54 20 28 | .people.refer.to.as.:abbr:`NAT.( |
| cbea0 | 4e 65 74 77 6f 72 6b 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 | Network.Address.Translation)`.is |
| cbec0 | 20 61 63 74 75 61 6c 6c 79 20 74 68 65 20 70 72 6f 63 65 73 73 20 6f 66 20 3a 61 62 62 72 3a 60 | .actually.the.process.of.:abbr:` |
| cbee0 | 50 41 54 20 28 50 6f 72 74 20 41 64 64 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 2c | PAT.(Port.Address.Translation)`, |
| cbf00 | 20 6f 72 20 4e 41 54 20 6f 76 65 72 6c 6f 61 64 2e 20 53 4e 41 54 20 69 73 20 74 79 70 69 63 61 | .or.NAT.overload..SNAT.is.typica |
| cbf20 | 6c 6c 79 20 75 73 65 64 20 62 79 20 69 6e 74 65 72 6e 61 6c 20 75 73 65 72 73 2f 70 72 69 76 61 | lly.used.by.internal.users/priva |
| cbf40 | 74 65 20 68 6f 73 74 73 20 74 6f 20 61 63 63 65 73 73 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 | te.hosts.to.access.the.Internet. |
| cbf60 | 2d 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 74 72 61 6e 73 6c 61 74 | -.the.source.address.is.translat |
| cbf80 | 65 64 20 61 6e 64 20 74 68 75 73 20 6b 65 70 74 20 70 72 69 76 61 74 65 2e 00 3a 61 62 62 72 3a | ed.and.thus.kept.private..:abbr: |
| cbfa0 | 60 53 4e 41 54 36 34 20 28 49 50 76 36 2d 74 6f 2d 49 50 76 34 20 53 6f 75 72 63 65 20 41 64 64 | `SNAT64.(IPv6-to-IPv4.Source.Add |
| cbfc0 | 72 65 73 73 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 69 73 20 61 20 73 74 61 74 65 66 75 6c | ress.Translation)`.is.a.stateful |
| cbfe0 | 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 20 74 68 61 74 20 74 72 61 6e | .translation.mechanism.that.tran |
| cc000 | 73 6c 61 74 65 73 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 49 50 76 34 20 61 64 | slates.IPv6.addresses.to.IPv4.ad |
| cc020 | 64 72 65 73 73 65 73 2e 00 3a 61 62 62 72 3a 60 53 4e 4d 50 20 28 53 69 6d 70 6c 65 20 4e 65 74 | dresses..:abbr:`SNMP.(Simple.Net |
| cc040 | 77 6f 72 6b 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 6e | work.Management.Protocol)`.is.an |
| cc060 | 20 49 6e 74 65 72 6e 65 74 20 53 74 61 6e 64 61 72 64 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 | .Internet.Standard.protocol.for. |
| cc080 | 63 6f 6c 6c 65 63 74 69 6e 67 20 61 6e 64 20 6f 72 67 61 6e 69 7a 69 6e 67 20 69 6e 66 6f 72 6d | collecting.and.organizing.inform |
| cc0a0 | 61 74 69 6f 6e 20 61 62 6f 75 74 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 20 6f 6e 20 49 | ation.about.managed.devices.on.I |
| cc0c0 | 50 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 66 6f 72 20 6d 6f 64 69 66 79 69 6e 67 20 74 68 61 | P.networks.and.for.modifying.tha |
| cc0e0 | 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 63 68 61 6e 67 65 20 64 65 76 69 63 65 20 62 | t.information.to.change.device.b |
| cc100 | 65 68 61 76 69 6f 72 2e 20 44 65 76 69 63 65 73 20 74 68 61 74 20 74 79 70 69 63 61 6c 6c 79 20 | ehavior..Devices.that.typically. |
| cc120 | 73 75 70 70 6f 72 74 20 53 4e 4d 50 20 69 6e 63 6c 75 64 65 20 63 61 62 6c 65 20 6d 6f 64 65 6d | support.SNMP.include.cable.modem |
| cc140 | 73 2c 20 72 6f 75 74 65 72 73 2c 20 73 77 69 74 63 68 65 73 2c 20 73 65 72 76 65 72 73 2c 20 77 | s,.routers,.switches,.servers,.w |
| cc160 | 6f 72 6b 73 74 61 74 69 6f 6e 73 2c 20 70 72 69 6e 74 65 72 73 2c 20 61 6e 64 20 6d 6f 72 65 2e | orkstations,.printers,.and.more. |
| cc180 | 00 3a 61 62 62 72 3a 60 53 4e 50 54 76 36 20 28 53 6f 75 72 63 65 20 49 50 76 36 2d 74 6f 2d 49 | .:abbr:`SNPTv6.(Source.IPv6-to-I |
| cc1a0 | 50 76 36 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 54 72 61 6e 73 6c 61 74 69 6f 6e 29 60 | Pv6.Network.Prefix.Translation)` |
| cc1c0 | 20 54 68 65 20 63 6f 6e 76 65 72 73 69 6f 6e 20 66 75 6e 63 74 69 6f 6e 20 69 73 20 6d 61 69 6e | .The.conversion.function.is.main |
| cc1e0 | 6c 79 20 75 73 65 64 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 63 65 6e 61 72 69 | ly.used.in.the.following.scenari |
| cc200 | 6f 73 3a 00 3a 61 62 62 72 3a 60 53 53 48 20 28 53 65 63 75 72 65 20 53 68 65 6c 6c 29 60 20 69 | os:.:abbr:`SSH.(Secure.Shell)`.i |
| cc220 | 73 20 61 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6e 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 | s.a.cryptographic.network.protoc |
| cc240 | 6f 6c 20 66 6f 72 20 6f 70 65 72 61 74 69 6e 67 20 6e 65 74 77 6f 72 6b 20 73 65 72 76 69 63 65 | ol.for.operating.network.service |
| cc260 | 73 20 73 65 63 75 72 65 6c 79 20 6f 76 65 72 20 61 6e 20 75 6e 73 65 63 75 72 65 64 20 6e 65 74 | s.securely.over.an.unsecured.net |
| cc280 | 77 6f 72 6b 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 20 54 43 50 20 70 6f 72 74 20 66 6f 72 20 | work..The.standard.TCP.port.for. |
| cc2a0 | 53 53 48 20 69 73 20 32 32 2e 20 54 68 65 20 62 65 73 74 20 6b 6e 6f 77 6e 20 65 78 61 6d 70 6c | SSH.is.22..The.best.known.exampl |
| cc2c0 | 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 73 20 66 6f 72 20 72 65 6d 6f 74 65 20 6c 6f 67 69 | e.application.is.for.remote.logi |
| cc2e0 | 6e 20 74 6f 20 63 6f 6d 70 75 74 65 72 20 73 79 73 74 65 6d 73 20 62 79 20 75 73 65 72 73 2e 00 | n.to.computer.systems.by.users.. |
| cc300 | 3a 61 62 62 72 3a 60 53 53 54 50 20 28 53 65 63 75 72 65 20 53 6f 63 6b 65 74 20 54 75 6e 6e 65 | :abbr:`SSTP.(Secure.Socket.Tunne |
| cc320 | 6c 69 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 66 6f 72 6d 20 6f 66 20 3a 61 62 | ling.Protocol)`.is.a.form.of.:ab |
| cc340 | 62 72 3a 60 56 50 4e 20 28 56 69 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b | br:`VPN.(Virtual.Private.Network |
| cc360 | 29 60 20 74 75 6e 6e 65 6c 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 61 20 6d 65 63 68 61 6e | )`.tunnel.that.provides.a.mechan |
| cc380 | 69 73 6d 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 50 50 50 20 74 72 61 66 66 69 63 20 74 68 72 | ism.to.transport.PPP.traffic.thr |
| cc3a0 | 6f 75 67 68 20 61 6e 20 53 53 4c 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 2e 20 53 53 4c 2f 54 4c 53 | ough.an.SSL/TLS.channel..SSL/TLS |
| cc3c0 | 20 70 72 6f 76 69 64 65 73 20 74 72 61 6e 73 70 6f 72 74 2d 6c 65 76 65 6c 20 73 65 63 75 72 69 | .provides.transport-level.securi |
| cc3e0 | 74 79 20 77 69 74 68 20 6b 65 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 65 6e 63 72 79 70 74 | ty.with.key.negotiation,.encrypt |
| cc400 | 69 6f 6e 20 61 6e 64 20 74 72 61 66 66 69 63 20 69 6e 74 65 67 72 69 74 79 20 63 68 65 63 6b 69 | ion.and.traffic.integrity.checki |
| cc420 | 6e 67 2e 20 54 68 65 20 75 73 65 20 6f 66 20 53 53 4c 2f 54 4c 53 20 6f 76 65 72 20 54 43 50 20 | ng..The.use.of.SSL/TLS.over.TCP. |
| cc440 | 70 6f 72 74 20 34 34 33 20 61 6c 6c 6f 77 73 20 53 53 54 50 20 74 6f 20 70 61 73 73 20 74 68 72 | port.443.allows.SSTP.to.pass.thr |
| cc460 | 6f 75 67 68 20 76 69 72 74 75 61 6c 6c 79 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 73 20 61 6e 64 | ough.virtually.all.firewalls.and |
| cc480 | 20 70 72 6f 78 79 20 73 65 72 76 65 72 73 20 65 78 63 65 70 74 20 66 6f 72 20 61 75 74 68 65 6e | .proxy.servers.except.for.authen |
| cc4a0 | 74 69 63 61 74 65 64 20 77 65 62 20 70 72 6f 78 69 65 73 2e 00 3a 61 62 62 72 3a 60 53 53 54 50 | ticated.web.proxies..:abbr:`SSTP |
| cc4c0 | 20 28 53 65 63 75 72 65 20 53 6f 63 6b 65 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 6f 74 6f 63 | .(Secure.Socket.Tunneling.Protoc |
| cc4e0 | 6f 6c 29 60 20 69 73 20 61 20 66 6f 72 6d 20 6f 66 20 3a 61 62 62 72 3a 60 56 54 50 20 28 56 69 | ol)`.is.a.form.of.:abbr:`VTP.(Vi |
| cc500 | 72 74 75 61 6c 20 50 72 69 76 61 74 65 20 4e 65 74 77 6f 72 6b 29 60 20 74 75 6e 6e 65 6c 20 74 | rtual.Private.Network)`.tunnel.t |
| cc520 | 68 61 74 20 70 72 6f 76 69 64 65 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 74 72 61 6e | hat.provides.a.mechanism.to.tran |
| cc540 | 73 70 6f 72 74 20 50 50 50 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 61 6e 20 53 53 4c | sport.PPP.traffic.through.an.SSL |
| cc560 | 2f 54 4c 53 20 63 68 61 6e 6e 65 6c 2e 20 53 53 4c 2f 54 4c 53 20 70 72 6f 76 69 64 65 73 20 74 | /TLS.channel..SSL/TLS.provides.t |
| cc580 | 72 61 6e 73 70 6f 72 74 2d 6c 65 76 65 6c 20 73 65 63 75 72 69 74 79 20 77 69 74 68 20 6b 65 79 | ransport-level.security.with.key |
| cc5a0 | 20 6e 65 67 6f 74 69 61 74 69 6f 6e 2c 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 74 72 61 | .negotiation,.encryption.and.tra |
| cc5c0 | 66 66 69 63 20 69 6e 74 65 67 72 69 74 79 20 63 68 65 63 6b 69 6e 67 2e 20 54 68 65 20 75 73 65 | ffic.integrity.checking..The.use |
| cc5e0 | 20 6f 66 20 53 53 4c 2f 54 4c 53 20 6f 76 65 72 20 54 43 50 20 70 6f 72 74 20 34 34 33 20 28 62 | .of.SSL/TLS.over.TCP.port.443.(b |
| cc600 | 79 20 64 65 66 61 75 6c 74 2c 20 70 6f 72 74 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 29 20 | y.default,.port.can.be.changed). |
| cc620 | 61 6c 6c 6f 77 73 20 53 53 54 50 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 76 69 72 74 | allows.SSTP.to.pass.through.virt |
| cc640 | 75 61 6c 6c 79 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 73 20 61 6e 64 20 70 72 6f 78 79 20 73 65 | ually.all.firewalls.and.proxy.se |
| cc660 | 72 76 65 72 73 20 65 78 63 65 70 74 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 77 | rvers.except.for.authenticated.w |
| cc680 | 65 62 20 70 72 6f 78 69 65 73 2e 00 3a 61 62 62 72 3a 60 53 54 50 20 28 53 70 61 6e 6e 69 6e 67 | eb.proxies..:abbr:`STP.(Spanning |
| cc6a0 | 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 70 72 | .Tree.Protocol)`.is.a.network.pr |
| cc6c0 | 6f 74 6f 63 6f 6c 20 74 68 61 74 20 62 75 69 6c 64 73 20 61 20 6c 6f 6f 70 2d 66 72 65 65 20 6c | otocol.that.builds.a.loop-free.l |
| cc6e0 | 6f 67 69 63 61 6c 20 74 6f 70 6f 6c 6f 67 79 20 66 6f 72 20 45 74 68 65 72 6e 65 74 20 6e 65 74 | ogical.topology.for.Ethernet.net |
| cc700 | 77 6f 72 6b 73 2e 20 54 68 65 20 62 61 73 69 63 20 66 75 6e 63 74 69 6f 6e 20 6f 66 20 53 54 50 | works..The.basic.function.of.STP |
| cc720 | 20 69 73 20 74 6f 20 70 72 65 76 65 6e 74 20 62 72 69 64 67 65 20 6c 6f 6f 70 73 20 61 6e 64 20 | .is.to.prevent.bridge.loops.and. |
| cc740 | 74 68 65 20 62 72 6f 61 64 63 61 73 74 20 72 61 64 69 61 74 69 6f 6e 20 74 68 61 74 20 72 65 73 | the.broadcast.radiation.that.res |
| cc760 | 75 6c 74 73 20 66 72 6f 6d 20 74 68 65 6d 2e 20 53 70 61 6e 6e 69 6e 67 20 74 72 65 65 20 61 6c | ults.from.them..Spanning.tree.al |
| cc780 | 73 6f 20 61 6c 6c 6f 77 73 20 61 20 6e 65 74 77 6f 72 6b 20 64 65 73 69 67 6e 20 74 6f 20 69 6e | so.allows.a.network.design.to.in |
| cc7a0 | 63 6c 75 64 65 20 62 61 63 6b 75 70 20 6c 69 6e 6b 73 20 70 72 6f 76 69 64 69 6e 67 20 66 61 75 | clude.backup.links.providing.fau |
| cc7c0 | 6c 74 20 74 6f 6c 65 72 61 6e 63 65 20 69 66 20 61 6e 20 61 63 74 69 76 65 20 6c 69 6e 6b 20 66 | lt.tolerance.if.an.active.link.f |
| cc7e0 | 61 69 6c 73 2e 00 3a 61 62 62 72 3a 60 54 46 54 50 20 28 54 72 69 76 69 61 6c 20 46 69 6c 65 20 | ails..:abbr:`TFTP.(Trivial.File. |
| cc800 | 54 72 61 6e 73 66 65 72 20 50 72 6f 74 6f 63 6f 6c 29 60 20 69 73 20 61 20 73 69 6d 70 6c 65 2c | Transfer.Protocol)`.is.a.simple, |
| cc820 | 20 6c 6f 63 6b 73 74 65 70 20 66 69 6c 65 20 74 72 61 6e 73 66 65 72 20 70 72 6f 74 6f 63 6f 6c | .lockstep.file.transfer.protocol |
| cc840 | 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 61 20 63 6c 69 65 6e 74 20 74 6f 20 67 65 74 20 61 20 | .which.allows.a.client.to.get.a. |
| cc860 | 66 69 6c 65 20 66 72 6f 6d 20 6f 72 20 70 75 74 20 61 20 66 69 6c 65 20 6f 6e 74 6f 20 61 20 72 | file.from.or.put.a.file.onto.a.r |
| cc880 | 65 6d 6f 74 65 20 68 6f 73 74 2e 20 4f 6e 65 20 6f 66 20 69 74 73 20 70 72 69 6d 61 72 79 20 75 | emote.host..One.of.its.primary.u |
| cc8a0 | 73 65 73 20 69 73 20 69 6e 20 74 68 65 20 65 61 72 6c 79 20 73 74 61 67 65 73 20 6f 66 20 6e 6f | ses.is.in.the.early.stages.of.no |
| cc8c0 | 64 65 73 20 62 6f 6f 74 69 6e 67 20 66 72 6f 6d 20 61 20 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 | des.booting.from.a.local.area.ne |
| cc8e0 | 74 77 6f 72 6b 2e 20 54 46 54 50 20 68 61 73 20 62 65 65 6e 20 75 73 65 64 20 66 6f 72 20 74 68 | twork..TFTP.has.been.used.for.th |
| cc900 | 69 73 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 62 65 63 61 75 73 65 20 69 74 20 69 73 20 76 65 72 | is.application.because.it.is.ver |
| cc920 | 79 20 73 69 6d 70 6c 65 20 74 6f 20 69 6d 70 6c 65 6d 65 6e 74 2e 00 3a 61 62 62 72 3a 60 56 4e | y.simple.to.implement..:abbr:`VN |
| cc940 | 49 20 28 56 69 72 74 75 61 6c 20 4e 65 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 29 60 20 | I.(Virtual.Network.Identifier)`. |
| cc960 | 69 73 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 61 20 75 6e 69 71 75 65 20 65 6c | is.an.identifier.for.a.unique.el |
| cc980 | 65 6d 65 6e 74 20 6f 66 20 61 20 76 69 72 74 75 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 20 49 6e 20 | ement.of.a.virtual.network...In. |
| cc9a0 | 6d 61 6e 79 20 73 69 74 75 61 74 69 6f 6e 73 20 74 68 69 73 20 6d 61 79 20 72 65 70 72 65 73 65 | many.situations.this.may.represe |
| cc9c0 | 6e 74 20 61 6e 20 4c 32 20 73 65 67 6d 65 6e 74 2c 20 68 6f 77 65 76 65 72 2c 20 74 68 65 20 63 | nt.an.L2.segment,.however,.the.c |
| cc9e0 | 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 64 65 66 69 6e 65 73 20 74 68 65 20 66 6f 72 77 61 72 64 | ontrol.plane.defines.the.forward |
| cca00 | 69 6e 67 20 73 65 6d 61 6e 74 69 63 73 20 6f 66 20 64 65 63 61 70 73 75 6c 61 74 65 64 20 70 61 | ing.semantics.of.decapsulated.pa |
| cca20 | 63 6b 65 74 73 2e 20 54 68 65 20 56 4e 49 20 4d 41 59 20 62 65 20 75 73 65 64 20 61 73 20 70 61 | ckets..The.VNI.MAY.be.used.as.pa |
| cca40 | 72 74 20 6f 66 20 45 43 4d 50 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 63 69 73 69 6f 6e 73 20 | rt.of.ECMP.forwarding.decisions. |
| cca60 | 6f 72 20 4d 41 59 20 62 65 20 75 73 65 64 20 61 73 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f | or.MAY.be.used.as.a.mechanism.to |
| cca80 | 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 6f 76 65 72 6c 61 70 70 69 6e 67 | .distinguish.between.overlapping |
| ccaa0 | 20 61 64 64 72 65 73 73 20 73 70 61 63 65 73 20 63 6f 6e 74 61 69 6e 65 64 20 69 6e 20 74 68 65 | .address.spaces.contained.in.the |
| ccac0 | 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 20 77 68 65 6e 20 6c 6f 61 64 20 62 | .encapsulated.packet.when.load.b |
| ccae0 | 61 6c 61 6e 63 69 6e 67 20 61 63 72 6f 73 73 20 43 50 55 73 2e 00 3a 61 62 62 72 3a 60 56 52 46 | alancing.across.CPUs..:abbr:`VRF |
| ccb00 | 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 20 46 6f 72 77 61 72 64 69 6e 67 | .(Virtual.Routing.and.Forwarding |
| ccb20 | 29 60 20 64 65 76 69 63 65 73 20 63 6f 6d 62 69 6e 65 64 20 77 69 74 68 20 69 70 20 72 75 6c 65 | )`.devices.combined.with.ip.rule |
| ccb40 | 73 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 | s.provides.the.ability.to.create |
| ccb60 | 20 76 69 72 74 75 61 6c 20 72 6f 75 74 69 6e 67 20 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 20 | .virtual.routing.and.forwarding. |
| ccb80 | 64 6f 6d 61 69 6e 73 20 28 61 6b 61 20 56 52 46 73 2c 20 56 52 46 2d 6c 69 74 65 20 74 6f 20 62 | domains.(aka.VRFs,.VRF-lite.to.b |
| ccba0 | 65 20 73 70 65 63 69 66 69 63 29 20 69 6e 20 74 68 65 20 4c 69 6e 75 78 20 6e 65 74 77 6f 72 6b | e.specific).in.the.Linux.network |
| ccbc0 | 20 73 74 61 63 6b 2e 20 4f 6e 65 20 75 73 65 20 63 61 73 65 20 69 73 20 74 68 65 20 6d 75 6c 74 | .stack..One.use.case.is.the.mult |
| ccbe0 | 69 2d 74 65 6e 61 6e 63 79 20 70 72 6f 62 6c 65 6d 20 77 68 65 72 65 20 65 61 63 68 20 74 65 6e | i-tenancy.problem.where.each.ten |
| ccc00 | 61 6e 74 20 68 61 73 20 74 68 65 69 72 20 6f 77 6e 20 75 6e 69 71 75 65 20 72 6f 75 74 69 6e 67 | ant.has.their.own.unique.routing |
| ccc20 | 20 74 61 62 6c 65 73 20 61 6e 64 20 69 6e 20 74 68 65 20 76 65 72 79 20 6c 65 61 73 74 20 6e 65 | .tables.and.in.the.very.least.ne |
| ccc40 | 65 64 20 64 69 66 66 65 72 65 6e 74 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 73 2e 00 3a | ed.different.default.gateways..: |
| ccc60 | 61 62 62 72 3a 60 56 58 4c 41 4e 20 28 56 69 72 74 75 61 6c 20 45 78 74 65 6e 73 69 62 6c 65 20 | abbr:`VXLAN.(Virtual.Extensible. |
| ccc80 | 4c 41 4e 29 60 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f | LAN)`.is.a.network.virtualizatio |
| ccca0 | 6e 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 68 61 74 20 61 74 74 65 6d 70 74 73 20 74 6f 20 61 64 | n.technology.that.attempts.to.ad |
| cccc0 | 64 72 65 73 73 20 74 68 65 20 73 63 61 6c 61 62 69 6c 69 74 79 20 70 72 6f 62 6c 65 6d 73 20 61 | dress.the.scalability.problems.a |
| ccce0 | 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 6c 61 72 67 65 20 63 6c 6f 75 64 20 63 6f 6d 70 75 | ssociated.with.large.cloud.compu |
| ccd00 | 74 69 6e 67 20 64 65 70 6c 6f 79 6d 65 6e 74 73 2e 20 49 74 20 75 73 65 73 20 61 20 56 4c 41 4e | ting.deployments..It.uses.a.VLAN |
| ccd20 | 2d 6c 69 6b 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 65 63 68 6e 69 71 75 65 20 74 6f | -like.encapsulation.technique.to |
| ccd40 | 20 65 6e 63 61 70 73 75 6c 61 74 65 20 4f 53 49 20 6c 61 79 65 72 20 32 20 45 74 68 65 72 6e 65 | .encapsulate.OSI.layer.2.Etherne |
| ccd60 | 74 20 66 72 61 6d 65 73 20 77 69 74 68 69 6e 20 6c 61 79 65 72 20 34 20 55 44 50 20 64 61 74 61 | t.frames.within.layer.4.UDP.data |
| ccd80 | 67 72 61 6d 73 2c 20 75 73 69 6e 67 20 34 37 38 39 20 61 73 20 74 68 65 20 64 65 66 61 75 6c 74 | grams,.using.4789.as.the.default |
| ccda0 | 20 49 41 4e 41 2d 61 73 73 69 67 6e 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 55 44 50 20 70 | .IANA-assigned.destination.UDP.p |
| ccdc0 | 6f 72 74 20 6e 75 6d 62 65 72 2e 20 56 58 4c 41 4e 20 65 6e 64 70 6f 69 6e 74 73 2c 20 77 68 69 | ort.number..VXLAN.endpoints,.whi |
| ccde0 | 63 68 20 74 65 72 6d 69 6e 61 74 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 61 6e 64 20 6d | ch.terminate.VXLAN.tunnels.and.m |
| cce00 | 61 79 20 62 65 20 65 69 74 68 65 72 20 76 69 72 74 75 61 6c 20 6f 72 20 70 68 79 73 69 63 61 6c | ay.be.either.virtual.or.physical |
| cce20 | 20 73 77 69 74 63 68 20 70 6f 72 74 73 2c 20 61 72 65 20 6b 6e 6f 77 6e 20 61 73 20 3a 61 62 62 | .switch.ports,.are.known.as.:abb |
| cce40 | 72 3a 60 56 54 45 50 73 20 28 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 73 | r:`VTEPs.(VXLAN.tunnel.endpoints |
| cce60 | 29 60 2e 00 3a 61 62 62 72 3a 60 57 41 50 20 28 57 69 72 65 6c 65 73 73 20 41 63 63 65 73 73 2d | )`..:abbr:`WAP.(Wireless.Access- |
| cce80 | 50 6f 69 6e 74 29 60 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 6e 65 74 77 6f 72 6b 20 61 63 | Point)`.mode.provides.network.ac |
| ccea0 | 63 65 73 73 20 74 6f 20 63 6f 6e 6e 65 63 74 69 6e 67 20 73 74 61 74 69 6f 6e 73 20 69 66 20 74 | cess.to.connecting.stations.if.t |
| ccec0 | 68 65 20 70 68 79 73 69 63 61 6c 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 20 61 63 | he.physical.hardware.supports.ac |
| ccee0 | 74 69 6e 67 20 61 73 20 61 20 57 41 50 00 3a 61 62 62 72 3a 60 57 41 50 20 28 57 69 72 65 6c 65 | ting.as.a.WAP.:abbr:`WAP.(Wirele |
| ccf00 | 73 73 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 29 60 20 70 72 6f 76 69 64 65 73 20 6e 65 74 77 6f | ss.Access-Point)`.provides.netwo |
| ccf20 | 72 6b 20 61 63 63 65 73 73 20 74 6f 20 63 6f 6e 6e 65 63 74 69 6e 67 20 73 74 61 74 69 6f 6e 73 | rk.access.to.connecting.stations |
| ccf40 | 20 69 66 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 | .if.the.physical.hardware.suppor |
| ccf60 | 74 73 20 61 63 74 69 6e 67 20 61 73 20 61 20 57 41 50 00 3a 61 62 62 72 3a 60 57 4c 41 4e 20 28 | ts.acting.as.a.WAP.:abbr:`WLAN.( |
| ccf80 | 57 69 72 65 6c 65 73 73 20 4c 41 4e 29 60 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f 76 69 64 65 | Wireless.LAN)`.interface.provide |
| ccfa0 | 20 38 30 32 2e 31 31 20 28 61 2f 62 2f 67 2f 6e 2f 61 63 29 20 77 69 72 65 6c 65 73 73 20 73 75 | .802.11.(a/b/g/n/ac).wireless.su |
| ccfc0 | 70 70 6f 72 74 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 57 | pport.(commonly.referred.to.as.W |
| ccfe0 | 69 2d 46 69 29 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 63 6f 6d 70 61 74 69 62 6c 65 20 68 61 72 | i-Fi).by.means.of.compatible.har |
| cd000 | 64 77 61 72 65 2e 20 49 66 20 79 6f 75 72 20 68 61 72 64 77 61 72 65 20 73 75 70 70 6f 72 74 73 | dware..If.your.hardware.supports |
| cd020 | 20 69 74 2c 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 6c 6f 67 69 | .it,.VyOS.supports.multiple.logi |
| cd040 | 63 61 6c 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 20 70 65 72 20 70 68 79 73 | cal.wireless.interfaces.per.phys |
| cd060 | 69 63 61 6c 20 64 65 76 69 63 65 2e 00 3a 61 62 62 72 3a 60 57 50 41 20 28 57 69 2d 46 69 20 50 | ical.device..:abbr:`WPA.(Wi-Fi.P |
| cd080 | 72 6f 74 65 63 74 65 64 20 41 63 63 65 73 73 29 60 20 61 6e 64 20 57 50 41 32 20 45 6e 74 65 72 | rotected.Access)`.and.WPA2.Enter |
| cd0a0 | 70 72 69 73 65 20 69 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 74 68 20 38 30 32 2e 31 78 | prise.in.combination.with.802.1x |
| cd0c0 | 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 | .based.authentication.can.be.use |
| cd0e0 | 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 75 73 65 72 73 20 6f 72 20 63 6f 6d 70 75 | d.to.authenticate.users.or.compu |
| cd100 | 74 65 72 73 20 69 6e 20 61 20 64 6f 6d 61 69 6e 2e 00 3a 61 62 62 72 3a 60 57 50 41 20 28 57 69 | ters.in.a.domain..:abbr:`WPA.(Wi |
| cd120 | 2d 46 69 20 50 72 6f 74 65 63 74 65 64 20 41 63 63 65 73 73 29 60 2c 20 57 50 41 32 20 45 6e 74 | -Fi.Protected.Access)`,.WPA2.Ent |
| cd140 | 65 72 70 72 69 73 65 20 61 6e 64 20 57 50 41 33 20 45 6e 74 65 72 70 72 69 73 65 20 69 6e 20 63 | erprise.and.WPA3.Enterprise.in.c |
| cd160 | 6f 6d 62 69 6e 61 74 69 6f 6e 20 77 69 74 68 20 38 30 32 2e 31 78 20 62 61 73 65 64 20 61 75 74 | ombination.with.802.1x.based.aut |
| cd180 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 | hentication.can.be.used.to.authe |
| cd1a0 | 6e 74 69 63 61 74 65 20 75 73 65 72 73 20 6f 72 20 63 6f 6d 70 75 74 65 72 73 20 69 6e 20 61 20 | nticate.users.or.computers.in.a. |
| cd1c0 | 64 6f 6d 61 69 6e 2e 00 3a 61 62 62 72 3a 60 6d 47 52 45 20 28 4d 75 6c 74 69 70 6f 69 6e 74 20 | domain..:abbr:`mGRE.(Multipoint. |
| cd1e0 | 47 65 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 29 60 20 | Generic.Routing.Encapsulation)`. |
| cd200 | 3a 72 66 63 3a 60 31 37 30 32 60 00 3a 63 66 67 63 6d 64 3a 60 61 64 76 2d 72 6f 75 74 65 72 20 | :rfc:`1702`.:cfgcmd:`adv-router. |
| cd220 | 3c 41 2e 42 2e 43 2e 44 3e 60 20 e2 80 93 20 72 6f 75 74 65 72 20 69 64 2c 20 77 68 69 63 68 20 | <A.B.C.D>`.....router.id,.which. |
| cd240 | 6c 69 6e 6b 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 6e 65 65 64 20 74 6f 20 62 65 20 72 | link.advertisements.need.to.be.r |
| cd260 | 65 76 69 65 77 65 64 2e 00 3a 63 66 67 63 6d 64 3a 60 73 65 6c 66 2d 6f 72 69 67 69 6e 61 74 65 | eviewed..:cfgcmd:`self-originate |
| cd280 | 60 20 64 69 73 70 6c 61 79 73 20 6f 6e 6c 79 20 73 65 6c 66 2d 6f 72 69 67 69 6e 61 74 65 64 20 | `.displays.only.self-originated. |
| cd2a0 | 4c 53 41 73 20 66 72 6f 6d 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2e 00 3a 63 66 67 | LSAs.from.the.local.router..:cfg |
| cd2c0 | 63 6d 64 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 20 | cmd:`set.service.conntrack-sync. |
| cd2e0 | 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 20 70 65 65 72 20 31 39 32 2e 31 36 38 2e 30 2e 32 35 | interface.eth0.peer.192.168.0.25 |
| cd300 | 30 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 75 | 0`.:code:`set.service.webproxy.u |
| cd320 | 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 73 71 75 69 64 67 75 61 72 64 20 61 75 74 6f 2d 75 70 64 | rl-filtering.squidguard.auto-upd |
| cd340 | 61 74 65 20 75 70 64 61 74 65 2d 68 6f 75 72 20 32 33 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 | ate.update-hour.23`.:code:`set.s |
| cd360 | 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 75 72 6c 2d 66 69 6c 74 65 72 69 6e 67 20 73 71 | ervice.webproxy.url-filtering.sq |
| cd380 | 75 69 64 67 75 61 72 64 20 62 6c 6f 63 6b 2d 63 61 74 65 67 6f 72 79 20 61 64 73 60 00 3a 63 6f | uidguard.block-category.ads`.:co |
| cd3a0 | 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 75 72 6c 2d 66 69 6c | de:`set.service.webproxy.url-fil |
| cd3c0 | 74 65 72 69 6e 67 20 73 71 75 69 64 67 75 61 72 64 20 62 6c 6f 63 6b 2d 63 61 74 65 67 6f 72 79 | tering.squidguard.block-category |
| cd3e0 | 20 6d 61 6c 77 61 72 65 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 | .malware`.:code:`set.service.web |
| cd400 | 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 2d 61 64 64 72 | proxy.whitelist.destination-addr |
| cd420 | 65 73 73 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 60 00 3a 63 6f 64 65 3a 60 73 65 74 20 73 65 72 | ess.192.0.2.0/24`.:code:`set.ser |
| cd440 | 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 20 64 65 73 74 69 6e 61 74 | vice.webproxy.whitelist.destinat |
| cd460 | 69 6f 6e 2d 61 64 64 72 65 73 73 20 31 39 38 2e 35 31 2e 31 30 30 2e 33 33 60 00 3a 63 6f 64 65 | ion-address.198.51.100.33`.:code |
| cd480 | 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 73 74 | :`set.service.webproxy.whitelist |
| cd4a0 | 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 20 31 39 32 2e 31 36 38 2e 31 2e 32 60 00 3a 63 6f | .source-address.192.168.1.2`.:co |
| cd4c0 | 64 65 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 77 65 62 70 72 6f 78 79 20 77 68 69 74 65 6c 69 | de:`set.service.webproxy.whiteli |
| cd4e0 | 73 74 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 | st.source-address.192.168.2.0/24 |
| cd500 | 60 00 3a 64 6f 63 3a 60 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 3c 2f 63 6f 6e 66 69 67 | `.:doc:`Conntrack.Ignore</config |
| cd520 | 75 72 61 74 69 6f 6e 2f 73 79 73 74 65 6d 2f 63 6f 6e 6e 74 72 61 63 6b 3e 60 3a 20 60 60 73 65 | uration/system/conntrack>`:.``se |
| cd540 | 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 69 70 76 34 2e 2e | t.system.conntrack.ignore.ipv4.. |
| cd560 | 2e 60 60 00 3a 64 6f 63 3a 60 43 6f 6e 6e 74 72 61 63 6b 20 49 67 6e 6f 72 65 3c 2f 63 6f 6e 66 | .``.:doc:`Conntrack.Ignore</conf |
| cd580 | 69 67 75 72 61 74 69 6f 6e 2f 73 79 73 74 65 6d 2f 63 6f 6e 6e 74 72 61 63 6b 3e 60 3a 20 60 60 | iguration/system/conntrack>`:.`` |
| cd5a0 | 73 65 74 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 69 70 76 36 | set.system.conntrack.ignore.ipv6 |
| cd5c0 | 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 3c 2f 63 6f 6e | ...``.:doc:`Destination.NAT</con |
| cd5e0 | 66 69 67 75 72 61 74 69 6f 6e 2f 6e 61 74 2f 6e 61 74 34 34 3e 60 3a 20 63 6f 6d 6d 61 6e 64 73 | figuration/nat/nat44>`:.commands |
| cd600 | 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 6e 61 74 20 64 65 73 74 69 6e 61 74 69 | .found.under.``set.nat.destinati |
| cd620 | 6f 6e 20 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 3c 2f | on....``.:doc:`Destination.NAT</ |
| cd640 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 6e 61 74 2f 6e 61 74 34 34 3e 60 3a 20 63 6f 6d 6d 61 | configuration/nat/nat44>`:.comma |
| cd660 | 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 6e 61 74 36 36 20 64 65 73 74 | nds.found.under.``set.nat66.dest |
| cd680 | 69 6e 61 74 69 6f 6e 20 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 50 6f 6c 69 63 79 20 52 6f 75 74 65 | ination....``.:doc:`Policy.Route |
| cd6a0 | 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6f 6c 69 63 79 2f 72 6f 75 74 65 3e 60 3a 20 | </configuration/policy/route>`:. |
| cd6c0 | 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 63 | commands.found.under.``set.polic |
| cd6e0 | 79 20 72 6f 75 74 65 20 2e 2e 2e 60 60 00 3a 64 6f 63 3a 60 50 6f 6c 69 63 79 20 52 6f 75 74 65 | y.route....``.:doc:`Policy.Route |
| cd700 | 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6f 6c 69 63 79 2f 72 6f 75 74 65 3e 60 3a 20 | </configuration/policy/route>`:. |
| cd720 | 63 6f 6d 6d 61 6e 64 73 20 66 6f 75 6e 64 20 75 6e 64 65 72 20 60 60 73 65 74 20 70 6f 6c 69 63 | commands.found.under.``set.polic |
| cd740 | 79 20 72 6f 75 74 65 36 20 2e 2e 2e 60 60 00 3a 6c 61 73 74 70 72 6f 6f 66 72 65 61 64 3a 32 30 | y.route6....``.:lastproofread:20 |
| cd760 | 32 31 2d 30 37 2d 31 32 00 3a 6f 70 63 6d 64 3a 60 67 65 6e 65 72 61 74 65 20 70 6b 69 20 77 69 | 21-07-12.:opcmd:`generate.pki.wi |
| cd780 | 72 65 67 75 61 72 64 20 6b 65 79 2d 70 61 69 72 60 2e 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 | reguard.key-pair`..:ref:`routing |
| cd7a0 | 2d 62 67 70 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 3a 20 60 60 73 65 74 20 | -bgp`.:ref:`routing-bgp`:.``set. |
| cd7c0 | 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 2e 2e | vrf.name.<name>.protocols.bgp... |
| cd7e0 | 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 69 73 69 73 60 00 3a 72 65 66 3a 60 72 6f | .``.:ref:`routing-isis`.:ref:`ro |
| cd800 | 75 74 69 6e 67 2d 69 73 69 73 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d | uting-isis`:.``set.vrf.name.<nam |
| cd820 | 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 69 73 69 73 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f | e>.protocols.isis....``.:ref:`ro |
| cd840 | 75 74 69 6e 67 2d 6f 73 70 66 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 60 3a | uting-ospf`.:ref:`routing-ospf`: |
| cd860 | 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 | .``set.vrf.name.<name>.protocols |
| cd880 | 20 6f 73 70 66 20 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 76 33 | .ospf....``.:ref:`routing-ospfv3 |
| cd8a0 | 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 76 33 60 3a 20 60 60 73 65 74 20 76 | `.:ref:`routing-ospfv3`:.``set.v |
| cd8c0 | 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 6f 73 70 66 76 33 20 | rf.name.<name>.protocols.ospfv3. |
| cd8e0 | 2e 2e 2e 60 60 00 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 73 74 61 74 69 63 60 00 3a 72 65 66 | ...``.:ref:`routing-static`.:ref |
| cd900 | 3a 60 72 6f 75 74 69 6e 67 2d 73 74 61 74 69 63 60 3a 20 60 60 73 65 74 20 76 72 66 20 6e 61 6d | :`routing-static`:.``set.vrf.nam |
| cd920 | 65 20 3c 6e 61 6d 65 3e 20 70 72 6f 74 6f 63 6f 6c 73 20 73 74 61 74 69 63 20 2e 2e 2e 60 60 00 | e.<name>.protocols.static....``. |
| cd940 | 3a 72 66 63 3a 60 32 31 33 31 60 20 73 74 61 74 65 73 3a 20 54 68 65 20 63 6c 69 65 6e 74 20 4d | :rfc:`2131`.states:.The.client.M |
| cd960 | 41 59 20 63 68 6f 6f 73 65 20 74 6f 20 65 78 70 6c 69 63 69 74 6c 79 20 70 72 6f 76 69 64 65 20 | AY.choose.to.explicitly.provide. |
| cd980 | 74 68 65 20 69 64 65 6e 74 69 66 69 65 72 20 74 68 72 6f 75 67 68 20 74 68 65 20 27 63 6c 69 65 | the.identifier.through.the.'clie |
| cd9a0 | 6e 74 20 69 64 65 6e 74 69 66 69 65 72 27 20 6f 70 74 69 6f 6e 2e 20 49 66 20 74 68 65 20 63 6c | nt.identifier'.option..If.the.cl |
| cd9c0 | 69 65 6e 74 20 73 75 70 70 6c 69 65 73 20 61 20 27 63 6c 69 65 6e 74 20 69 64 65 6e 74 69 66 69 | ient.supplies.a.'client.identifi |
| cd9e0 | 65 72 27 2c 20 74 68 65 20 63 6c 69 65 6e 74 20 4d 55 53 54 20 75 73 65 20 74 68 65 20 73 61 6d | er',.the.client.MUST.use.the.sam |
| cda00 | 65 20 27 63 6c 69 65 6e 74 20 69 64 65 6e 74 69 66 69 65 72 27 20 69 6e 20 61 6c 6c 20 73 75 62 | e.'client.identifier'.in.all.sub |
| cda20 | 73 65 71 75 65 6e 74 20 6d 65 73 73 61 67 65 73 2c 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 | sequent.messages,.and.the.server |
| cda40 | 20 4d 55 53 54 20 75 73 65 20 74 68 61 74 20 69 64 65 6e 74 69 66 69 65 72 20 74 6f 20 69 64 65 | .MUST.use.that.identifier.to.ide |
| cda60 | 6e 74 69 66 79 20 74 68 65 20 63 6c 69 65 6e 74 2e 00 3a 72 66 63 3a 60 32 31 33 36 60 20 42 61 | ntify.the.client..:rfc:`2136`.Ba |
| cda80 | 73 65 64 00 3a 72 66 63 3a 60 32 33 32 38 60 2c 20 74 68 65 20 73 75 63 63 65 73 73 6f 72 20 74 | sed.:rfc:`2328`,.the.successor.t |
| cdaa0 | 6f 20 3a 72 66 63 3a 60 31 35 38 33 60 2c 20 73 75 67 67 65 73 74 73 20 61 63 63 6f 72 64 69 6e | o.:rfc:`1583`,.suggests.accordin |
| cdac0 | 67 20 74 6f 20 73 65 63 74 69 6f 6e 20 47 2e 32 20 28 63 68 61 6e 67 65 73 29 20 69 6e 20 73 65 | g.to.section.G.2.(changes).in.se |
| cdae0 | 63 74 69 6f 6e 20 31 36 2e 34 2e 31 20 61 20 63 68 61 6e 67 65 20 74 6f 20 74 68 65 20 70 61 74 | ction.16.4.1.a.change.to.the.pat |
| cdb00 | 68 20 70 72 65 66 65 72 65 6e 63 65 20 61 6c 67 6f 72 69 74 68 6d 20 74 68 61 74 20 70 72 65 76 | h.preference.algorithm.that.prev |
| cdb20 | 65 6e 74 73 20 70 6f 73 73 69 62 6c 65 20 72 6f 75 74 69 6e 67 20 6c 6f 6f 70 73 20 74 68 61 74 | ents.possible.routing.loops.that |
| cdb40 | 20 77 65 72 65 20 70 6f 73 73 69 62 6c 65 20 69 6e 20 74 68 65 20 6f 6c 64 20 76 65 72 73 69 6f | .were.possible.in.the.old.versio |
| cdb60 | 6e 20 6f 66 20 4f 53 50 46 76 32 2e 20 4d 6f 72 65 20 73 70 65 63 69 66 69 63 61 6c 6c 79 20 69 | n.of.OSPFv2..More.specifically.i |
| cdb80 | 74 20 64 65 6d 61 6e 64 73 20 74 68 61 74 20 69 6e 74 65 72 2d 61 72 65 61 20 70 61 74 68 73 20 | t.demands.that.inter-area.paths. |
| cdba0 | 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 61 20 62 61 63 6b 62 6f 6e 65 20 70 61 74 68 20 61 72 65 | and.intra-area.backbone.path.are |
| cdbc0 | 20 6e 6f 77 20 6f 66 20 65 71 75 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 62 75 74 20 73 74 69 | .now.of.equal.preference.but.sti |
| cdbe0 | 6c 6c 20 62 6f 74 68 20 70 72 65 66 65 72 72 65 64 20 74 6f 20 65 78 74 65 72 6e 61 6c 20 70 61 | ll.both.preferred.to.external.pa |
| cdc00 | 74 68 73 2e 00 3a 72 66 63 3a 60 36 35 39 38 60 20 2d 20 49 41 4e 41 2d 52 65 73 65 72 76 65 64 | ths..:rfc:`6598`.-.IANA-Reserved |
| cdc20 | 20 49 50 76 34 20 50 72 65 66 69 78 20 66 6f 72 20 53 68 61 72 65 64 20 41 64 64 72 65 73 73 20 | .IPv4.Prefix.for.Shared.Address. |
| cdc40 | 53 70 61 63 65 00 3a 72 66 63 3a 60 36 38 38 38 60 20 2d 20 52 65 71 75 69 72 65 6d 65 6e 74 73 | Space.:rfc:`6888`.-.Requirements |
| cdc60 | 20 66 6f 72 20 43 47 4e 41 54 00 3a 76 79 74 61 73 6b 3a 60 54 33 36 34 32 60 20 64 65 73 63 72 | .for.CGNAT.:vytask:`T3642`.descr |
| cdc80 | 69 62 65 73 20 61 20 6e 65 77 20 43 4c 49 20 73 75 62 73 79 73 74 65 6d 20 74 68 61 74 20 73 65 | ibes.a.new.CLI.subsystem.that.se |
| cdca0 | 72 76 65 73 20 61 73 20 61 20 22 63 65 72 74 73 74 6f 72 65 22 20 74 6f 20 61 6c 6c 20 73 65 72 | rves.as.a."certstore".to.all.ser |
| cdcc0 | 76 69 63 65 73 20 72 65 71 75 69 72 69 6e 67 20 61 6e 79 20 6b 69 6e 64 20 6f 66 20 65 6e 63 72 | vices.requiring.any.kind.of.encr |
| cdce0 | 79 70 74 69 6f 6e 20 6b 65 79 28 73 29 2e 20 49 6e 20 73 68 6f 72 74 2c 20 70 75 62 6c 69 63 20 | yption.key(s)..In.short,.public. |
| cdd00 | 61 6e 64 20 70 72 69 76 61 74 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 6e 6f 77 | and.private.certificates.are.now |
| cdd20 | 20 73 74 6f 72 65 64 20 69 6e 20 50 4b 43 53 23 38 20 66 6f 72 6d 61 74 20 69 6e 20 74 68 65 20 | .stored.in.PKCS#8.format.in.the. |
| cdd40 | 72 65 67 75 6c 61 72 20 56 79 4f 53 20 43 4c 49 2e 20 4b 65 79 73 20 63 61 6e 20 6e 6f 77 20 62 | regular.VyOS.CLI..Keys.can.now.b |
| cdd60 | 65 20 61 64 64 65 64 2c 20 65 64 69 74 65 64 2c 20 61 6e 64 20 64 65 6c 65 74 65 64 20 75 73 69 | e.added,.edited,.and.deleted.usi |
| cdd80 | 6e 67 20 74 68 65 20 72 65 67 75 6c 61 72 20 73 65 74 2f 65 64 69 74 2f 64 65 6c 65 74 65 20 43 | ng.the.regular.set/edit/delete.C |
| cdda0 | 4c 49 20 63 6f 6d 6d 61 6e 64 73 2e 00 3c 31 2d 36 35 35 33 35 3e 3a 20 4e 75 6d 62 65 72 65 64 | LI.commands..<1-65535>:.Numbered |
| cddc0 | 20 70 6f 72 74 2e 00 3c 61 61 3a 6e 6e 3a 6e 6e 3e 3a 20 45 78 74 65 6e 64 65 64 20 63 6f 6d 6d | .port..<aa:nn:nn>:.Extended.comm |
| cdde0 | 75 6e 69 74 79 20 6c 69 73 74 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c | unity.list.regular.expression..< |
| cde00 | 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 2f 78 3e 3a 20 49 50 76 36 20 70 72 65 66 69 78 20 | h:h:h:h:h:h:h:h/x>:.IPv6.prefix. |
| cde20 | 74 6f 20 6d 61 74 63 68 2e 00 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 2d 3c 68 3a 68 | to.match..<h:h:h:h:h:h:h:h>-<h:h |
| cde40 | 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 3a 20 49 50 76 36 20 72 61 6e 67 65 20 74 6f 20 6d 61 74 | :h:h:h:h:h:h>:.IPv6.range.to.mat |
| cde60 | 63 68 2e 00 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 3a 20 49 50 76 36 20 61 64 64 72 | ch..<h:h:h:h:h:h:h:h>:.IPv6.addr |
| cde80 | 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 3c 6c 69 6e 65 73 3e 00 3c 6e 75 6d 62 65 72 3e 20 6d | ess.to.match..<lines>.<number>.m |
| cdea0 | 75 73 74 20 62 65 20 66 72 6f 6d 20 33 34 20 2d 20 31 37 33 2e 20 46 6f 72 20 38 30 20 4d 48 7a | ust.be.from.34.-.173..For.80.MHz |
| cdec0 | 20 63 68 61 6e 6e 65 6c 73 20 69 74 20 73 68 6f 75 6c 64 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b | .channels.it.should.be.channel.+ |
| cdee0 | 20 36 2e 00 3c 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 20 6f 6e 65 20 6f 66 3a 00 3c 6e 75 | .6..<number>.must.be.one.of:.<nu |
| cdf00 | 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 31 2e 2e 32 33 33 2e 20 46 6f 72 | mber>.must.be.within.1..233..For |
| cdf20 | 20 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 73 20 69 74 20 73 68 6f 75 6c 64 20 62 65 20 63 68 | .80.MHz.channels.it.should.be.ch |
| cdf40 | 61 6e 6e 65 6c 20 2b 20 36 20 61 6e 64 20 66 6f 72 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 | annel.+.6.and.for.160.MHz.channe |
| cdf60 | 6c 73 2c 20 69 74 20 73 68 6f 75 6c 64 20 62 65 20 63 68 61 6e 6e 65 6c 20 2b 20 31 34 2e 00 3c | ls,.it.should.be.channel.+.14..< |
| cdf80 | 6e 75 6d 62 65 72 3e 20 e2 80 93 20 61 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 20 74 68 72 6f | number>.....area.identifier.thro |
| cdfa0 | 75 67 68 20 77 68 69 63 68 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 67 6f 65 73 2e 20 3c | ugh.which.a.virtual.link.goes..< |
| cdfc0 | 41 2e 42 2e 43 2e 44 3e 20 e2 80 93 20 41 42 52 20 72 6f 75 74 65 72 2d 69 64 20 77 69 74 68 20 | A.B.C.D>.....ABR.router-id.with. |
| cdfe0 | 77 68 69 63 68 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 69 73 20 65 73 74 61 62 6c 69 73 | which.a.virtual.link.is.establis |
| ce000 | 68 65 64 2e 20 56 69 72 74 75 61 6c 20 6c 69 6e 6b 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 | hed..Virtual.link.must.be.config |
| ce020 | 75 72 65 64 20 6f 6e 20 62 6f 74 68 20 72 6f 75 74 65 72 73 2e 00 3c 70 6f 72 74 20 6e 61 6d 65 | ured.on.both.routers..<port.name |
| ce040 | 3e 3a 20 4e 61 6d 65 64 20 70 6f 72 74 20 28 61 6e 79 20 6e 61 6d 65 20 69 6e 20 2f 65 74 63 2f | >:.Named.port.(any.name.in./etc/ |
| ce060 | 73 65 72 76 69 63 65 73 2c 20 65 2e 67 2e 2c 20 68 74 74 70 29 2e 00 3c 72 74 20 61 61 3a 6e 6e | services,.e.g.,.http)..<rt.aa:nn |
| ce080 | 3a 6e 6e 3e 3a 20 52 6f 75 74 65 20 54 61 72 67 65 74 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 | :nn>:.Route.Target.regular.expre |
| ce0a0 | 73 73 69 6f 6e 2e 00 3c 73 6f 6f 20 61 61 3a 6e 6e 3a 6e 6e 3e 3a 20 53 69 74 65 20 6f 66 20 4f | ssion..<soo.aa:nn:nn>:.Site.of.O |
| ce0c0 | 72 69 67 69 6e 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e 00 3c 73 74 61 72 74 | rigin.regular.expression..<start |
| ce0e0 | 3e 2d 3c 65 6e 64 3e 3a 20 4e 75 6d 62 65 72 65 64 20 70 6f 72 74 20 72 61 6e 67 65 20 28 65 2e | >-<end>:.Numbered.port.range.(e. |
| ce100 | 67 2e 2c 20 31 30 30 31 2d 31 30 30 35 29 2e 00 3c 78 2e 78 2e 78 2e 78 2f 78 3e 3a 20 53 75 62 | g.,.1001-1005)..<x.x.x.x/x>:.Sub |
| ce120 | 6e 65 74 20 74 6f 20 6d 61 74 63 68 2e 00 3c 78 2e 78 2e 78 2e 78 3e 2d 3c 78 2e 78 2e 78 2e 78 | net.to.match..<x.x.x.x>-<x.x.x.x |
| ce140 | 3e 3a 20 49 50 20 72 61 6e 67 65 20 74 6f 20 6d 61 74 63 68 2e 00 3c 78 2e 78 2e 78 2e 78 3e 3a | >:.IP.range.to.match..<x.x.x.x>: |
| ce160 | 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 41 20 2a 2a 64 6f 6d 61 69 6e | .IP.address.to.match..A.**domain |
| ce180 | 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e | .group**.represents.a.collection |
| ce1a0 | 20 6f 66 20 64 6f 6d 61 69 6e 73 2e 00 41 20 2a 2a 6d 61 63 20 67 72 6f 75 70 2a 2a 20 72 65 70 | .of.domains..A.**mac.group**.rep |
| ce1c0 | 72 65 73 65 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 6d 61 63 20 61 64 64 72 | resents.a.collection.of.mac.addr |
| ce1e0 | 65 73 73 65 73 2e 00 41 20 2a 2a 70 6f 72 74 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 6e | esses..A.**port.group**.represen |
| ce200 | 74 73 20 6f 6e 6c 79 20 70 6f 72 74 20 6e 75 6d 62 65 72 73 2c 20 6e 6f 74 20 74 68 65 20 70 72 | ts.only.port.numbers,.not.the.pr |
| ce220 | 6f 74 6f 63 6f 6c 2e 20 50 6f 72 74 20 67 72 6f 75 70 73 20 63 61 6e 20 62 65 20 72 65 66 65 72 | otocol..Port.groups.can.be.refer |
| ce240 | 65 6e 63 65 64 20 66 6f 72 20 65 69 74 68 65 72 20 54 43 50 20 6f 72 20 55 44 50 2e 20 49 74 20 | enced.for.either.TCP.or.UDP..It. |
| ce260 | 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 68 61 74 20 54 43 50 20 61 6e 64 20 55 44 50 20 | is.recommended.that.TCP.and.UDP. |
| ce280 | 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 61 74 65 64 20 73 65 70 61 72 61 74 65 6c 79 20 74 6f | groups.are.created.separately.to |
| ce2a0 | 20 61 76 6f 69 64 20 61 63 63 69 64 65 6e 74 61 6c 6c 79 20 66 69 6c 74 65 72 69 6e 67 20 75 6e | .avoid.accidentally.filtering.un |
| ce2c0 | 6e 65 63 65 73 73 61 72 79 20 70 6f 72 74 73 2e 20 52 61 6e 67 65 73 20 6f 66 20 70 6f 72 74 73 | necessary.ports..Ranges.of.ports |
| ce2e0 | 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 75 73 69 6e 67 20 60 2d 60 2e 00 | .can.be.specified.by.using.`-`.. |
| ce300 | 41 20 2a 62 69 74 2a 20 69 73 20 77 72 69 74 74 65 6e 20 61 73 20 2a 2a 62 69 74 2a 2a 2c 00 41 | A.*bit*.is.written.as.**bit**,.A |
| ce320 | 20 34 20 73 74 65 70 20 70 6f 72 74 20 6b 6e 6f 63 6b 69 6e 67 20 65 78 61 6d 70 6c 65 20 69 73 | .4.step.port.knocking.example.is |
| ce340 | 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 41 20 3a 61 62 62 72 3a 60 4e 49 53 20 28 4e 65 74 77 6f | .shown.next:.A.:abbr:`NIS.(Netwo |
| ce360 | 72 6b 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 53 65 72 76 69 63 65 29 60 20 64 6f 6d 61 69 6e 20 | rk.Information.Service)`.domain. |
| ce380 | 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 44 48 43 50 76 36 | can.be.set.to.be.used.for.DHCPv6 |
| ce3a0 | 20 63 6c 69 65 6e 74 73 2e 00 41 20 42 47 50 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 64 69 | .clients..A.BGP.confederation.di |
| ce3c0 | 76 69 64 65 73 20 6f 75 72 20 41 53 20 69 6e 74 6f 20 73 75 62 2d 41 53 65 73 20 74 6f 20 72 65 | vides.our.AS.into.sub-ASes.to.re |
| ce3e0 | 64 75 63 65 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 72 65 71 75 69 72 65 64 20 49 42 47 50 | duce.the.number.of.required.IBGP |
| ce400 | 20 70 65 65 72 69 6e 67 73 2e 20 57 69 74 68 69 6e 20 61 20 73 75 62 2d 41 53 20 77 65 20 73 74 | .peerings..Within.a.sub-AS.we.st |
| ce420 | 69 6c 6c 20 72 65 71 75 69 72 65 20 66 75 6c 6c 2d 6d 65 73 68 20 49 42 47 50 20 62 75 74 20 62 | ill.require.full-mesh.IBGP.but.b |
| ce440 | 65 74 77 65 65 6e 20 74 68 65 73 65 20 73 75 62 2d 41 53 65 73 20 77 65 20 75 73 65 20 73 6f 6d | etween.these.sub-ASes.we.use.som |
| ce460 | 65 74 68 69 6e 67 20 74 68 61 74 20 6c 6f 6f 6b 73 20 6c 69 6b 65 20 45 42 47 50 20 62 75 74 20 | ething.that.looks.like.EBGP.but. |
| ce480 | 62 65 68 61 76 65 73 20 6c 69 6b 65 20 49 42 47 50 20 28 63 61 6c 6c 65 64 20 63 6f 6e 66 65 64 | behaves.like.IBGP.(called.confed |
| ce4a0 | 65 72 61 74 69 6f 6e 20 42 47 50 29 2e 20 43 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 6d 65 63 68 | eration.BGP)..Confederation.mech |
| ce4c0 | 61 6e 69 73 6d 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 30 36 35 | anism.is.described.in.:rfc:`5065 |
| ce4e0 | 60 00 41 20 42 47 50 2d 73 70 65 61 6b 69 6e 67 20 72 6f 75 74 65 72 20 6c 69 6b 65 20 56 79 4f | `.A.BGP-speaking.router.like.VyO |
| ce500 | 53 20 63 61 6e 20 72 65 74 72 69 65 76 65 20 52 4f 41 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 | S.can.retrieve.ROA.information.f |
| ce520 | 72 6f 6d 20 52 50 4b 49 20 22 52 65 6c 79 69 6e 67 20 50 61 72 74 79 20 73 6f 66 74 77 61 72 65 | rom.RPKI."Relying.Party.software |
| ce540 | 22 20 28 6f 66 74 65 6e 20 6a 75 73 74 20 63 61 6c 6c 65 64 20 61 6e 20 22 52 50 4b 49 20 73 65 | ".(often.just.called.an."RPKI.se |
| ce560 | 72 76 65 72 22 20 6f 72 20 22 52 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 22 29 20 62 79 20 75 73 | rver".or."RPKI.validator").by.us |
| ce580 | 69 6e 67 20 3a 61 62 62 72 3a 60 52 54 52 20 28 52 50 4b 49 20 74 6f 20 52 6f 75 74 65 72 29 60 | ing.:abbr:`RTR.(RPKI.to.Router)` |
| ce5a0 | 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 6f 70 65 | .protocol..There.are.several.ope |
| ce5c0 | 6e 20 73 6f 75 72 63 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 74 6f 20 63 68 6f 6f | n.source.implementations.to.choo |
| ce5e0 | 73 65 20 66 72 6f 6d 2c 20 73 75 63 68 20 61 73 20 4e 4c 4e 65 74 4c 61 62 73 27 20 52 6f 75 74 | se.from,.such.as.NLNetLabs'.Rout |
| ce600 | 69 6e 61 74 6f 72 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 52 75 73 74 29 2c 20 43 6c 6f 75 64 | inator_.(written.in.Rust),.Cloud |
| ce620 | 66 6c 61 72 65 27 73 20 47 6f 52 54 52 5f 20 61 6e 64 20 4f 63 74 6f 52 50 4b 49 5f 20 28 77 72 | flare's.GoRTR_.and.OctoRPKI_.(wr |
| ce640 | 69 74 74 65 6e 20 69 6e 20 47 6f 29 2c 20 61 6e 64 20 52 49 50 45 20 4e 43 43 27 73 20 52 50 4b | itten.in.Go),.and.RIPE.NCC's.RPK |
| ce660 | 49 20 56 61 6c 69 64 61 74 6f 72 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 4a 61 76 61 29 2e 20 | I.Validator_.(written.in.Java).. |
| ce680 | 54 68 65 20 52 54 52 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e | The.RTR.protocol.is.described.in |
| ce6a0 | 20 3a 72 66 63 3a 60 38 32 31 30 60 2e 00 41 20 42 47 50 2d 73 70 65 61 6b 69 6e 67 20 72 6f 75 | .:rfc:`8210`..A.BGP-speaking.rou |
| ce6c0 | 74 65 72 20 6c 69 6b 65 20 56 79 4f 53 20 63 61 6e 20 72 65 74 72 69 65 76 65 20 52 4f 41 20 69 | ter.like.VyOS.can.retrieve.ROA.i |
| ce6e0 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 52 50 4b 49 20 22 52 65 6c 79 69 6e 67 20 50 61 | nformation.from.RPKI."Relying.Pa |
| ce700 | 72 74 79 20 73 6f 66 74 77 61 72 65 22 20 28 6f 66 74 65 6e 20 6a 75 73 74 20 63 61 6c 6c 65 64 | rty.software".(often.just.called |
| ce720 | 20 61 6e 20 22 52 50 4b 49 20 73 65 72 76 65 72 22 20 6f 72 20 22 52 50 4b 49 20 76 61 6c 69 64 | .an."RPKI.server".or."RPKI.valid |
| ce740 | 61 74 6f 72 22 29 20 62 79 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 52 54 52 20 28 52 50 4b 49 | ator").by.using.:abbr:`RTR.(RPKI |
| ce760 | 20 74 6f 20 52 6f 75 74 65 72 29 60 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 72 65 20 61 72 65 | .to.Router)`.protocol..There.are |
| ce780 | 20 73 65 76 65 72 61 6c 20 6f 70 65 6e 20 73 6f 75 72 63 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 | .several.open.source.implementat |
| ce7a0 | 69 6f 6e 73 20 74 6f 20 63 68 6f 6f 73 65 20 66 72 6f 6d 2c 20 73 75 63 68 20 61 73 20 4e 4c 4e | ions.to.choose.from,.such.as.NLN |
| ce7c0 | 65 74 4c 61 62 73 27 20 52 6f 75 74 69 6e 61 74 6f 72 5f 20 28 77 72 69 74 74 65 6e 20 69 6e 20 | etLabs'.Routinator_.(written.in. |
| ce7e0 | 52 75 73 74 29 2c 20 4f 70 65 6e 42 53 44 27 73 20 72 70 6b 69 2d 63 6c 69 65 6e 74 5f 20 28 77 | Rust),.OpenBSD's.rpki-client_.(w |
| ce800 | 72 69 74 74 65 6e 20 69 6e 20 43 29 2c 20 61 6e 64 20 53 74 61 79 52 54 52 5f 20 28 77 72 69 74 | ritten.in.C),.and.StayRTR_.(writ |
| ce820 | 74 65 6e 20 69 6e 20 47 6f 29 2e 20 54 68 65 20 52 54 52 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 | ten.in.Go)..The.RTR.protocol.is. |
| ce840 | 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 32 31 30 60 2e 00 41 20 42 72 69 64 | described.in.:rfc:`8210`..A.Brid |
| ce860 | 67 65 20 69 73 20 61 20 77 61 79 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 77 6f 20 45 74 68 65 72 | ge.is.a.way.to.connect.two.Ether |
| ce880 | 6e 65 74 20 73 65 67 6d 65 6e 74 73 20 74 6f 67 65 74 68 65 72 20 69 6e 20 61 20 70 72 6f 74 6f | net.segments.together.in.a.proto |
| ce8a0 | 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 77 61 79 2e 20 50 61 63 6b 65 74 73 20 61 72 65 | col.independent.way..Packets.are |
| ce8c0 | 20 66 6f 72 77 61 72 64 65 64 20 62 61 73 65 64 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 61 64 64 | .forwarded.based.on.Ethernet.add |
| ce8e0 | 72 65 73 73 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 28 6c 69 | ress,.rather.than.IP.address.(li |
| ce900 | 6b 65 20 61 20 72 6f 75 74 65 72 29 2e 20 53 69 6e 63 65 20 66 6f 72 77 61 72 64 69 6e 67 20 69 | ke.a.router)..Since.forwarding.i |
| ce920 | 73 20 64 6f 6e 65 20 61 74 20 4c 61 79 65 72 20 32 2c 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 | s.done.at.Layer.2,.all.protocols |
| ce940 | 20 63 61 6e 20 67 6f 20 74 72 61 6e 73 70 61 72 65 6e 74 6c 79 20 74 68 72 6f 75 67 68 20 61 20 | .can.go.transparently.through.a. |
| ce960 | 62 72 69 64 67 65 2e 20 54 68 65 20 4c 69 6e 75 78 20 62 72 69 64 67 65 20 63 6f 64 65 20 69 6d | bridge..The.Linux.bridge.code.im |
| ce980 | 70 6c 65 6d 65 6e 74 73 20 61 20 73 75 62 73 65 74 20 6f 66 20 74 68 65 20 41 4e 53 49 2f 49 45 | plements.a.subset.of.the.ANSI/IE |
| ce9a0 | 45 45 20 38 30 32 2e 31 64 20 73 74 61 6e 64 61 72 64 2e 00 41 20 47 52 45 20 74 75 6e 6e 65 6c | EE.802.1d.standard..A.GRE.tunnel |
| ce9c0 | 20 6f 70 65 72 61 74 65 73 20 61 74 20 6c 61 79 65 72 20 33 20 6f 66 20 74 68 65 20 4f 53 49 20 | .operates.at.layer.3.of.the.OSI. |
| ce9e0 | 6d 6f 64 65 6c 20 61 6e 64 20 69 73 20 72 65 70 72 65 73 65 6e 74 65 64 20 62 79 20 49 50 20 70 | model.and.is.represented.by.IP.p |
| cea00 | 72 6f 74 6f 63 6f 6c 20 34 37 2e 20 54 68 65 20 6d 61 69 6e 20 62 65 6e 65 66 69 74 20 6f 66 20 | rotocol.47..The.main.benefit.of. |
| cea20 | 61 20 47 52 45 20 74 75 6e 6e 65 6c 20 69 73 20 74 68 61 74 20 79 6f 75 20 61 72 65 20 61 62 6c | a.GRE.tunnel.is.that.you.are.abl |
| cea40 | 65 20 74 6f 20 63 61 72 72 79 20 6d 75 6c 74 69 70 6c 65 20 70 72 6f 74 6f 63 6f 6c 73 20 69 6e | e.to.carry.multiple.protocols.in |
| cea60 | 73 69 64 65 20 74 68 65 20 73 61 6d 65 20 74 75 6e 6e 65 6c 2e 20 47 52 45 20 61 6c 73 6f 20 73 | side.the.same.tunnel..GRE.also.s |
| cea80 | 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 75 | upports.multicast.traffic.and.su |
| ceaa0 | 70 70 6f 72 74 73 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 74 68 61 74 20 6c 65 | pports.routing.protocols.that.le |
| ceac0 | 76 65 72 61 67 65 20 6d 75 6c 74 69 63 61 73 74 20 74 6f 20 66 6f 72 6d 20 6e 65 69 67 68 62 6f | verage.multicast.to.form.neighbo |
| ceae0 | 72 20 61 64 6a 61 63 65 6e 63 69 65 73 2e 00 41 20 52 75 6c 65 2d 53 65 74 20 63 61 6e 20 62 65 | r.adjacencies..A.Rule-Set.can.be |
| ceb00 | 20 61 70 70 6c 69 65 64 20 74 6f 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 3a 00 41 20 53 | .applied.to.every.interface:.A.S |
| ceb20 | 4e 54 50 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 | NTP.server.address.can.be.specif |
| ceb40 | 69 65 64 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 41 20 56 52 46 20 64 65 | ied.for.DHCPv6.clients..A.VRF.de |
| ceb60 | 76 69 63 65 20 69 73 20 63 72 65 61 74 65 64 20 77 69 74 68 20 61 6e 20 61 73 73 6f 63 69 61 74 | vice.is.created.with.an.associat |
| ceb80 | 65 64 20 72 6f 75 74 65 20 74 61 62 6c 65 2e 20 4e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 | ed.route.table..Network.interfac |
| ceba0 | 65 73 20 61 72 65 20 74 68 65 6e 20 65 6e 73 6c 61 76 65 64 20 74 6f 20 61 20 56 52 46 20 64 65 | es.are.then.enslaved.to.a.VRF.de |
| cebc0 | 76 69 63 65 2e 00 41 20 56 79 4f 53 20 47 52 45 20 74 75 6e 6e 65 6c 20 63 61 6e 20 63 61 72 72 | vice..A.VyOS.GRE.tunnel.can.carr |
| cebe0 | 79 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 20 61 6e 64 | y.both.IPv4.and.IPv6.traffic.and |
| cec00 | 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 63 72 65 61 74 65 64 20 6f 76 65 72 20 65 69 74 68 65 72 | .can.also.be.created.over.either |
| cec20 | 20 49 50 76 34 20 28 67 72 65 29 20 6f 72 20 49 50 76 36 20 28 69 70 36 67 72 65 29 2e 00 41 20 | .IPv4.(gre).or.IPv6.(ip6gre)..A. |
| cec40 | 56 79 4f 53 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 | VyOS.router.with.two.interfaces. |
| cec60 | 2d 20 65 74 68 30 20 28 57 41 4e 29 20 61 6e 64 20 65 74 68 31 20 28 4c 41 4e 29 20 2d 20 69 73 | -.eth0.(WAN).and.eth1.(LAN).-.is |
| cec80 | 20 72 65 71 75 69 72 65 64 20 74 6f 20 69 6d 70 6c 65 6d 65 6e 74 20 61 20 73 70 6c 69 74 2d 68 | .required.to.implement.a.split-h |
| ceca0 | 6f 72 69 7a 6f 6e 20 44 4e 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 65 78 61 | orizon.DNS.configuration.for.exa |
| cecc0 | 6d 70 6c 65 2e 63 6f 6d 2e 00 41 20 62 61 73 69 63 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | mple.com..A.basic.configuration. |
| cece0 | 72 65 71 75 69 72 65 73 20 61 20 74 75 6e 6e 65 6c 20 73 6f 75 72 63 65 20 28 73 6f 75 72 63 65 | requires.a.tunnel.source.(source |
| ced00 | 2d 61 64 64 72 65 73 73 29 2c 20 61 20 74 75 6e 6e 65 6c 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 | -address),.a.tunnel.destination. |
| ced20 | 28 72 65 6d 6f 74 65 29 2c 20 61 6e 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 20 | (remote),.an.encapsulation.type. |
| ced40 | 28 67 72 65 29 2c 20 61 6e 64 20 61 6e 20 61 64 64 72 65 73 73 20 28 69 70 76 34 2f 69 70 76 36 | (gre),.and.an.address.(ipv4/ipv6 |
| ced60 | 29 2e 20 42 65 6c 6f 77 20 69 73 20 61 20 62 61 73 69 63 20 49 50 76 34 20 6f 6e 6c 79 20 63 6f | )..Below.is.a.basic.IPv4.only.co |
| ced80 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 61 | nfiguration.example.taken.from.a |
| ceda0 | 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 6e 64 20 61 20 43 69 73 63 6f 20 49 4f 53 20 72 6f 75 | .VyOS.router.and.a.Cisco.IOS.rou |
| cedc0 | 74 65 72 2e 20 54 68 65 20 6d 61 69 6e 20 64 69 66 66 65 72 65 6e 63 65 20 62 65 74 77 65 65 6e | ter..The.main.difference.between |
| cede0 | 20 74 68 65 73 65 20 74 77 6f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 69 73 20 74 68 61 | .these.two.configurations.is.tha |
| cee00 | 74 20 56 79 4f 53 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 65 78 70 6c 69 63 69 74 6c 79 20 63 | t.VyOS.requires.you.explicitly.c |
| cee20 | 6f 6e 66 69 67 75 72 65 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 74 79 70 65 2e | onfigure.the.encapsulation.type. |
| cee40 | 20 54 68 65 20 43 69 73 63 6f 20 72 6f 75 74 65 72 20 64 65 66 61 75 6c 74 73 20 74 6f 20 47 52 | .The.Cisco.router.defaults.to.GR |
| cee60 | 45 20 49 50 20 6f 74 68 65 72 77 69 73 65 20 69 74 20 77 6f 75 6c 64 20 68 61 76 65 20 74 6f 20 | E.IP.otherwise.it.would.have.to. |
| cee80 | 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 77 65 6c 6c 2e 00 41 20 62 61 73 69 63 20 69 | be.configured.as.well..A.basic.i |
| ceea0 | 6e 74 72 6f 64 75 63 74 69 6f 6e 20 74 6f 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 | ntroduction.to.zone-based.firewa |
| ceec0 | 6c 6c 73 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 60 68 65 72 65 20 3c 68 74 74 70 73 3a 2f 2f | lls.can.be.found.`here.<https:// |
| ceee0 | 73 75 70 70 6f 72 74 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6b 62 2f 61 72 74 69 63 6c 65 73 2f 61 | support.vyos.io/en/kb/articles/a |
| cef00 | 2d 70 72 69 6d 65 72 2d 74 6f 2d 7a 6f 6e 65 2d 62 61 73 65 64 2d 66 69 72 65 77 61 6c 6c 3e 60 | -primer-to-zone-based-firewall>` |
| cef20 | 5f 2c 20 61 6e 64 20 61 6e 20 65 78 61 6d 70 6c 65 20 61 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 | _,.and.an.example.at.:ref:`examp |
| cef40 | 6c 65 73 2d 7a 6f 6e 65 2d 70 6f 6c 69 63 79 60 2e 00 41 20 62 72 69 64 67 65 20 6e 61 6d 65 64 | les-zone-policy`..A.bridge.named |
| cef60 | 20 60 62 72 31 30 30 60 00 41 20 62 72 69 65 66 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 61 | .`br100`.A.brief.description.wha |
| cef80 | 74 20 74 68 69 73 20 6e 65 74 77 6f 72 6b 20 69 73 20 61 6c 6c 20 61 62 6f 75 74 2e 00 41 20 63 | t.this.network.is.all.about..A.c |
| cefa0 | 6c 61 73 73 20 63 61 6e 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 6d 61 74 63 68 20 66 69 6c | lass.can.have.multiple.match.fil |
| cefc0 | 74 65 72 73 3a 00 41 20 63 6f 6d 6d 6f 6e 20 65 78 61 6d 70 6c 65 20 69 73 20 74 68 65 20 63 61 | ters:.A.common.example.is.the.ca |
| cefe0 | 73 65 20 6f 66 20 73 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 77 68 69 63 68 2c 20 69 6e 20 6f 72 | se.of.some.policies.which,.in.or |
| cf000 | 64 65 72 20 74 6f 20 62 65 20 65 66 66 65 63 74 69 76 65 2c 20 74 68 65 79 20 6e 65 65 64 20 74 | der.to.be.effective,.they.need.t |
| cf020 | 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 | o.be.applied.to.an.interface.tha |
| cf040 | 74 20 69 73 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 77 68 65 72 65 20 74 68 | t.is.directly.connected.where.th |
| cf060 | 65 20 62 6f 74 74 6c 65 6e 65 63 6b 20 69 73 2e 20 49 66 20 79 6f 75 72 20 72 6f 75 74 65 72 20 | e.bottleneck.is..If.your.router. |
| cf080 | 69 73 20 6e 6f 74 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 | is.not.directly.connected.to.the |
| cf0a0 | 20 62 6f 74 74 6c 65 6e 65 63 6b 2c 20 62 75 74 20 73 6f 6d 65 20 68 6f 70 20 62 65 66 6f 72 65 | .bottleneck,.but.some.hop.before |
| cf0c0 | 20 69 74 2c 20 79 6f 75 20 63 61 6e 20 65 6d 75 6c 61 74 65 20 74 68 65 20 62 6f 74 74 6c 65 6e | .it,.you.can.emulate.the.bottlen |
| cf0e0 | 65 63 6b 20 62 79 20 65 6d 62 65 64 64 69 6e 67 20 79 6f 75 72 20 6e 6f 6e 2d 73 68 61 70 69 6e | eck.by.embedding.your.non-shapin |
| cf100 | 67 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 | g.policy.into.a.classful.shaping |
| cf120 | 20 6f 6e 65 20 73 6f 20 74 68 61 74 20 69 74 20 74 61 6b 65 73 20 65 66 66 65 63 74 2e 00 41 20 | .one.so.that.it.takes.effect..A. |
| cf140 | 63 6f 6d 70 6c 65 74 65 20 4c 44 41 50 20 61 75 74 68 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 | complete.LDAP.auth.OpenVPN.confi |
| cf160 | 67 75 72 61 74 69 6f 6e 20 63 6f 75 6c 64 20 6c 6f 6f 6b 20 6c 69 6b 65 20 74 68 65 20 66 6f 6c | guration.could.look.like.the.fol |
| cf180 | 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 41 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | lowing.example:.A.configuration. |
| cf1a0 | 65 78 61 6d 70 6c 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 69 73 20 73 65 63 | example.can.be.found.in.this.sec |
| cf1c0 | 74 69 6f 6e 2e 20 49 6e 20 74 68 69 73 20 73 69 6d 70 6c 69 66 69 65 64 20 73 63 65 6e 61 72 69 | tion..In.this.simplified.scenari |
| cf1e0 | 6f 2c 20 6d 61 69 6e 20 74 68 69 6e 67 73 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 | o,.main.things.to.be.considered. |
| cf200 | 61 72 65 3a 00 41 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 74 74 65 6d 70 74 20 77 69 6c 6c 20 62 | are:.A.connection.attempt.will.b |
| cf220 | 65 20 73 68 6f 77 6e 20 61 73 3a 00 41 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 73 20 61 | e.shown.as:.A.default.route.is.a |
| cf240 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 63 65 20 74 68 65 20 | utomatically.installed.once.the. |
| cf260 | 69 6e 74 65 72 66 61 63 65 20 69 73 20 75 70 2e 20 54 6f 20 63 68 61 6e 67 65 20 74 68 69 73 20 | interface.is.up..To.change.this. |
| cf280 | 62 65 68 61 76 69 6f 72 20 75 73 65 20 74 68 65 20 60 60 6e 6f 2d 64 65 66 61 75 6c 74 2d 72 6f | behavior.use.the.``no-default-ro |
| cf2a0 | 75 74 65 60 60 20 43 4c 49 20 6f 70 74 69 6f 6e 2e 00 41 20 64 65 73 63 72 69 70 74 69 6f 6e 20 | ute``.CLI.option..A.description. |
| cf2c0 | 63 61 6e 20 62 65 20 61 64 64 65 64 20 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 | can.be.added.for.each.and.every. |
| cf2e0 | 75 6e 69 71 75 65 20 72 65 6c 61 79 20 49 44 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 | unique.relay.ID..This.is.useful. |
| cf300 | 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 6d 75 6c 74 69 70 6c 65 20 | to.distinguish.between.multiple. |
| cf320 | 64 69 66 66 65 72 65 6e 74 20 70 6f 72 74 73 2f 61 70 70 6c 69 61 63 74 69 6f 6e 73 2e 00 41 20 | different.ports/appliactions..A. |
| cf340 | 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 66 6f 72 20 65 61 63 | description.can.be.added.for.eac |
| cf360 | 68 20 61 6e 64 20 65 76 65 72 79 20 75 6e 69 71 75 65 20 72 65 6c 61 79 20 49 44 2e 20 54 68 69 | h.and.every.unique.relay.ID..Thi |
| cf380 | 73 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 | s.is.useful.to.distinguish.betwe |
| cf3a0 | 65 6e 20 6d 75 6c 74 69 70 6c 65 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 74 73 2f 61 70 70 6c | en.multiple.different.ports/appl |
| cf3c0 | 69 63 61 74 69 6f 6e 73 2e 00 41 20 64 69 73 61 62 6c 65 64 20 67 72 6f 75 70 20 77 69 6c 6c 20 | ications..A.disabled.group.will. |
| cf3e0 | 62 65 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 56 52 52 50 20 70 72 6f 63 65 73 73 | be.removed.from.the.VRRP.process |
| cf400 | 20 61 6e 64 20 79 6f 75 72 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 6e 6f 74 20 70 61 72 74 69 63 | .and.your.router.will.not.partic |
| cf420 | 69 70 61 74 65 20 69 6e 20 56 52 52 50 20 66 6f 72 20 74 68 61 74 20 56 52 49 44 2e 20 49 74 20 | ipate.in.VRRP.for.that.VRID..It. |
| cf440 | 77 69 6c 6c 20 64 69 73 61 70 70 65 61 72 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 | will.disappear.from.operational. |
| cf460 | 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 20 6f 75 74 70 75 74 2c 20 72 61 74 68 65 72 20 74 68 61 | mode.commands.output,.rather.tha |
| cf480 | 6e 20 65 6e 74 65 72 20 74 68 65 20 62 61 63 6b 75 70 20 73 74 61 74 65 2e 00 41 20 64 6f 6d 61 | n.enter.the.backup.state..A.doma |
| cf4a0 | 69 6e 20 6e 61 6d 65 20 69 73 20 74 68 65 20 6c 61 62 65 6c 20 28 6e 61 6d 65 29 20 61 73 73 69 | in.name.is.the.label.(name).assi |
| cf4c0 | 67 6e 65 64 20 74 6f 20 61 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 69 | gned.to.a.computer.network.and.i |
| cf4e0 | 73 20 74 68 75 73 20 75 6e 69 71 75 65 2e 20 56 79 4f 53 20 61 70 70 65 6e 64 73 20 74 68 65 20 | s.thus.unique..VyOS.appends.the. |
| cf500 | 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 61 73 20 61 20 73 75 66 66 69 78 20 74 6f 20 61 6e 79 20 75 | domain.name.as.a.suffix.to.any.u |
| cf520 | 6e 71 75 61 6c 69 66 69 65 64 20 6e 61 6d 65 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 | nqualified.name..For.example,.if |
| cf540 | 20 79 6f 75 20 73 65 74 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 60 65 78 61 6d 70 6c | .you.set.the.domain.name.`exampl |
| cf560 | 65 2e 63 6f 6d 60 2c 20 61 6e 64 20 79 6f 75 20 77 6f 75 6c 64 20 70 69 6e 67 20 74 68 65 20 75 | e.com`,.and.you.would.ping.the.u |
| cf580 | 6e 71 75 61 6c 69 66 69 65 64 20 6e 61 6d 65 20 6f 66 20 60 63 72 75 78 60 2c 20 74 68 65 6e 20 | nqualified.name.of.`crux`,.then. |
| cf5a0 | 56 79 4f 53 20 71 75 61 6c 69 66 69 65 73 20 74 68 65 20 6e 61 6d 65 20 74 6f 20 60 63 72 75 78 | VyOS.qualifies.the.name.to.`crux |
| cf5c0 | 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 2e 00 41 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 | .example.com`..A.dummy.interface |
| cf5e0 | 20 66 6f 72 20 74 68 65 20 70 72 6f 76 69 64 65 72 2d 61 73 73 69 67 6e 65 64 20 49 50 3b 00 41 | .for.the.provider-assigned.IP;.A |
| cf600 | 20 66 69 72 65 77 61 6c 6c 20 6d 61 72 6b 20 60 60 66 77 6d 61 72 6b 60 60 20 61 6c 6c 6f 77 73 | .firewall.mark.``fwmark``.allows |
| cf620 | 20 75 73 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 70 6f 72 74 73 20 66 6f 72 20 68 69 67 68 2d 61 | .using.multiple.ports.for.high-a |
| cf640 | 76 61 69 6c 61 62 69 6c 69 74 79 20 76 69 72 74 75 61 6c 2d 73 65 72 76 65 72 2e 20 49 74 20 75 | vailability.virtual-server..It.u |
| cf660 | 73 65 73 20 66 77 6d 61 72 6b 20 76 61 6c 75 65 2e 00 41 20 66 75 6c 6c 20 65 78 61 6d 70 6c 65 | ses.fwmark.value..A.full.example |
| cf680 | 20 6f 66 20 61 20 54 75 6e 6e 65 6c 62 72 6f 6b 65 72 2e 6e 65 74 20 63 6f 6e 66 69 67 20 63 61 | .of.a.Tunnelbroker.net.config.ca |
| cf6a0 | 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 20 3a 72 65 66 3a 60 68 65 72 65 20 3c 65 78 61 6d 70 6c | n.be.found.at.:ref:`here.<exampl |
| cf6c0 | 65 73 2d 74 75 6e 6e 65 6c 62 72 6f 6b 65 72 2d 69 70 76 36 3e 60 2e 00 41 20 67 65 6e 65 72 69 | es-tunnelbroker-ipv6>`..A.generi |
| cf6e0 | 63 20 60 3c 6e 61 6d 65 3e 60 20 72 65 66 65 72 65 6e 63 69 6e 67 20 74 68 69 73 20 73 79 6e 63 | c.`<name>`.referencing.this.sync |
| cf700 | 20 73 65 72 76 69 63 65 2e 00 41 20 68 6f 73 74 6e 61 6d 65 20 69 73 20 74 68 65 20 6c 61 62 65 | .service..A.hostname.is.the.labe |
| cf720 | 6c 20 28 6e 61 6d 65 29 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 64 | l.(name).assigned.to.a.network.d |
| cf740 | 65 76 69 63 65 20 28 61 20 68 6f 73 74 29 20 6f 6e 20 61 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 | evice.(a.host).on.a.network.and. |
| cf760 | 69 73 20 75 73 65 64 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 6f 6e 65 20 64 65 76 69 63 | is.used.to.distinguish.one.devic |
| cf780 | 65 20 66 72 6f 6d 20 61 6e 6f 74 68 65 72 20 6f 6e 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f | e.from.another.on.specific.netwo |
| cf7a0 | 72 6b 73 20 6f 72 20 6f 76 65 72 20 74 68 65 20 69 6e 74 65 72 6e 65 74 2e 20 4f 6e 20 74 68 65 | rks.or.over.the.internet..On.the |
| cf7c0 | 20 6f 74 68 65 72 20 68 61 6e 64 20 74 68 69 73 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6e 61 6d | .other.hand.this.will.be.the.nam |
| cf7e0 | 65 20 77 68 69 63 68 20 61 70 70 65 61 72 73 20 6f 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 6c | e.which.appears.on.the.command.l |
| cf800 | 69 6e 65 20 70 72 6f 6d 70 74 2e 00 41 20 68 75 6d 61 6e 20 72 65 61 64 61 62 6c 65 20 64 65 73 | ine.prompt..A.human.readable.des |
| cf820 | 63 72 69 70 74 69 6f 6e 20 77 68 61 74 20 74 68 69 73 20 43 41 20 69 73 20 61 62 6f 75 74 2e 00 | cription.what.this.CA.is.about.. |
| cf840 | 41 20 68 75 6d 61 6e 20 72 65 61 64 61 62 6c 65 20 64 65 73 63 72 69 70 74 69 6f 6e 20 77 68 61 | A.human.readable.description.wha |
| cf860 | 74 20 74 68 69 73 20 63 65 72 74 69 66 69 63 61 74 65 20 69 73 20 61 62 6f 75 74 2e 00 41 20 6c | t.this.certificate.is.about..A.l |
| cf880 | 69 6e 6b 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 66 6f 72 20 75 70 6c 69 6e 6b 20 74 72 61 63 | ink.can.be.setup.for.uplink.trac |
| cf8a0 | 6b 69 6e 67 20 76 69 61 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 | king.via.the.following.example:. |
| cf8c0 | 41 20 6c 6f 6f 6b 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 61 79 73 20 75 | A.lookback.interface.is.always.u |
| cf8e0 | 70 2c 20 74 68 75 73 20 69 74 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 66 6f 72 20 6d 61 6e | p,.thus.it.could.be.used.for.man |
| cf900 | 61 67 65 6d 65 6e 74 20 74 72 61 66 66 69 63 20 6f 72 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 | agement.traffic.or.as.source/des |
| cf920 | 74 69 6e 61 74 69 6f 6e 20 66 6f 72 20 61 6e 64 20 3a 61 62 62 72 3a 60 49 47 50 20 28 49 6e 74 | tination.for.and.:abbr:`IGP.(Int |
| cf940 | 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6c 69 6b 65 20 3a 72 | erior.Gateway.Protocol)`.like.:r |
| cf960 | 65 66 3a 60 72 6f 75 74 69 6e 67 2d 62 67 70 60 20 73 6f 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 | ef:`routing-bgp`.so.your.interna |
| cf980 | 6c 20 42 47 50 20 6c 69 6e 6b 20 69 73 20 6e 6f 74 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 70 | l.BGP.link.is.not.dependent.on.p |
| cf9a0 | 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 73 74 61 74 65 73 20 61 6e 64 20 6d 75 6c 74 69 70 6c 65 | hysical.link.states.and.multiple |
| cf9c0 | 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 68 6f 73 65 6e 20 74 6f 20 74 68 65 20 64 65 73 | .routes.can.be.chosen.to.the.des |
| cf9e0 | 74 69 6e 61 74 69 6f 6e 2e 20 41 20 3a 72 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 72 66 61 63 | tination..A.:ref:`dummy-interfac |
| cfa00 | 65 60 20 49 6e 74 65 72 66 61 63 65 20 73 68 6f 75 6c 64 20 61 6c 77 61 79 73 20 62 65 20 70 72 | e`.Interface.should.always.be.pr |
| cfa20 | 65 66 65 72 72 65 64 20 6f 76 65 72 20 61 20 3a 72 65 66 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e | eferred.over.a.:ref:`loopback-in |
| cfa40 | 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 2e 00 41 20 6c 6f 6f 70 62 61 63 6b 20 69 | terface`.interface..A.loopback.i |
| cfa60 | 6e 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 61 79 73 20 75 70 2c 20 74 68 75 73 20 69 74 20 63 | nterface.is.always.up,.thus.it.c |
| cfa80 | 6f 75 6c 64 20 62 65 20 75 73 65 64 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 6e 74 20 74 72 61 66 | ould.be.used.for.management.traf |
| cfaa0 | 66 69 63 20 6f 72 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6f 72 | fic.or.as.source/destination.for |
| cfac0 | 20 61 6e 64 20 3a 61 62 62 72 3a 60 49 47 50 20 28 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 | .and.:abbr:`IGP.(Interior.Gatewa |
| cfae0 | 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6c 69 6b 65 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d | y.Protocol)`.like.:ref:`routing- |
| cfb00 | 62 67 70 60 20 73 6f 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 42 47 50 20 6c 69 6e 6b 20 69 | bgp`.so.your.internal.BGP.link.i |
| cfb20 | 73 20 6e 6f 74 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b | s.not.dependent.on.physical.link |
| cfb40 | 20 73 74 61 74 65 73 20 61 6e 64 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 73 20 63 61 6e 20 | .states.and.multiple.routes.can. |
| cfb60 | 62 65 20 63 68 6f 73 65 6e 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 41 20 | be.chosen.to.the.destination..A. |
| cfb80 | 3a 72 65 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 72 66 61 63 65 60 20 49 6e 74 65 72 66 61 63 65 | :ref:`dummy-interface`.Interface |
| cfba0 | 20 73 68 6f 75 6c 64 20 61 6c 77 61 79 73 20 62 65 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 72 | .should.always.be.preferred.over |
| cfbc0 | 20 61 20 3a 72 65 66 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 | .a.:ref:`loopback-interface`.int |
| cfbe0 | 65 72 66 61 63 65 2e 00 41 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 20 69 73 20 61 20 6e 65 | erface..A.managed.device.is.a.ne |
| cfc00 | 74 77 6f 72 6b 20 6e 6f 64 65 20 74 68 61 74 20 69 6d 70 6c 65 6d 65 6e 74 73 20 61 6e 20 53 4e | twork.node.that.implements.an.SN |
| cfc20 | 4d 50 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 75 6e 69 64 69 72 65 | MP.interface.that.allows.unidire |
| cfc40 | 63 74 69 6f 6e 61 6c 20 28 72 65 61 64 2d 6f 6e 6c 79 29 20 6f 72 20 62 69 64 69 72 65 63 74 69 | ctional.(read-only).or.bidirecti |
| cfc60 | 6f 6e 61 6c 20 28 72 65 61 64 20 61 6e 64 20 77 72 69 74 65 29 20 61 63 63 65 73 73 20 74 6f 20 | onal.(read.and.write).access.to. |
| cfc80 | 6e 6f 64 65 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 4d 61 6e 61 67 | node-specific.information..Manag |
| cfca0 | 65 64 20 64 65 76 69 63 65 73 20 65 78 63 68 61 6e 67 65 20 6e 6f 64 65 2d 73 70 65 63 69 66 69 | ed.devices.exchange.node-specifi |
| cfcc0 | 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 74 68 65 20 4e 4d 53 73 2e 20 53 6f 6d | c.information.with.the.NMSs..Som |
| cfce0 | 65 74 69 6d 65 73 20 63 61 6c 6c 65 64 20 6e 65 74 77 6f 72 6b 20 65 6c 65 6d 65 6e 74 73 2c 20 | etimes.called.network.elements,. |
| cfd00 | 74 68 65 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 20 63 61 6e 20 62 65 20 61 6e 79 20 74 | the.managed.devices.can.be.any.t |
| cfd20 | 79 70 65 20 6f 66 20 64 65 76 69 63 65 2c 20 69 6e 63 6c 75 64 69 6e 67 2c 20 62 75 74 20 6e 6f | ype.of.device,.including,.but.no |
| cfd40 | 74 20 6c 69 6d 69 74 65 64 20 74 6f 2c 20 72 6f 75 74 65 72 73 2c 20 61 63 63 65 73 73 20 73 65 | t.limited.to,.routers,.access.se |
| cfd60 | 72 76 65 72 73 2c 20 73 77 69 74 63 68 65 73 2c 20 63 61 62 6c 65 20 6d 6f 64 65 6d 73 2c 20 62 | rvers,.switches,.cable.modems,.b |
| cfd80 | 72 69 64 67 65 73 2c 20 68 75 62 73 2c 20 49 50 20 74 65 6c 65 70 68 6f 6e 65 73 2c 20 49 50 20 | ridges,.hubs,.IP.telephones,.IP. |
| cfda0 | 76 69 64 65 6f 20 63 61 6d 65 72 61 73 2c 20 63 6f 6d 70 75 74 65 72 20 68 6f 73 74 73 2c 20 61 | video.cameras,.computer.hosts,.a |
| cfdc0 | 6e 64 20 70 72 69 6e 74 65 72 73 2e 00 41 20 6d 61 74 63 68 20 66 69 6c 74 65 72 20 63 61 6e 20 | nd.printers..A.match.filter.can. |
| cfde0 | 63 6f 6e 74 61 69 6e 20 6d 75 6c 74 69 70 6c 65 20 63 72 69 74 65 72 69 61 20 61 6e 64 20 77 69 | contain.multiple.criteria.and.wi |
| cfe00 | 6c 6c 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 20 69 66 20 61 6c 6c 20 74 68 6f 73 65 20 63 72 | ll.match.traffic.if.all.those.cr |
| cfe20 | 69 74 65 72 69 61 20 61 72 65 20 74 72 75 65 2e 00 41 20 6d 61 74 63 68 20 67 72 6f 75 70 20 63 | iteria.are.true..A.match.group.c |
| cfe40 | 61 6e 20 63 6f 6e 74 61 69 6e 20 6d 75 6c 74 69 70 6c 65 20 63 72 69 74 65 72 69 61 20 61 6e 64 | an.contain.multiple.criteria.and |
| cfe60 | 20 69 6e 68 65 72 69 74 20 74 68 65 6d 20 69 6e 20 74 68 65 20 73 61 6d 65 20 70 6f 6c 69 63 79 | .inherit.them.in.the.same.policy |
| cfe80 | 2e 00 41 20 6d 6f 6e 69 74 6f 72 65 64 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 63 6f 6e 64 69 | ..A.monitored.static.route.condi |
| cfea0 | 74 69 6f 6e 73 20 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 52 49 | tions.the.installation.to.the.RI |
| cfec0 | 42 20 6f 6e 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 72 75 6e 6e 69 6e 67 20 73 74 61 | B.on.the.BFD.session.running.sta |
| cfee0 | 74 65 3a 20 77 68 65 6e 20 42 46 44 20 73 65 73 73 69 6f 6e 20 69 73 20 75 70 20 74 68 65 20 72 | te:.when.BFD.session.is.up.the.r |
| cff00 | 6f 75 74 65 20 69 73 20 69 6e 73 74 61 6c 6c 65 64 20 74 6f 20 52 49 42 2c 20 62 75 74 20 77 68 | oute.is.installed.to.RIB,.but.wh |
| cff20 | 65 6e 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 69 73 20 64 6f 77 6e 20 69 74 20 69 73 | en.the.BFD.session.is.down.it.is |
| cff40 | 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 52 49 42 2e 00 41 20 6e 65 74 77 6f 72 6b | .removed.from.the.RIB..A.network |
| cff60 | 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 74 61 74 69 6f 6e 20 65 78 65 63 75 74 65 73 20 61 70 70 | .management.station.executes.app |
| cff80 | 6c 69 63 61 74 69 6f 6e 73 20 74 68 61 74 20 6d 6f 6e 69 74 6f 72 20 61 6e 64 20 63 6f 6e 74 72 | lications.that.monitor.and.contr |
| cffa0 | 6f 6c 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 2e 20 4e 4d 53 73 20 70 72 6f 76 69 64 65 | ol.managed.devices..NMSs.provide |
| cffc0 | 20 74 68 65 20 62 75 6c 6b 20 6f 66 20 74 68 65 20 70 72 6f 63 65 73 73 69 6e 67 20 61 6e 64 20 | .the.bulk.of.the.processing.and. |
| cffe0 | 6d 65 6d 6f 72 79 20 72 65 73 6f 75 72 63 65 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 6e 65 | memory.resources.required.for.ne |
| d0000 | 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 4f 6e 65 20 6f 72 20 6d 6f 72 65 20 4e 4d | twork.management..One.or.more.NM |
| d0020 | 53 73 20 6d 61 79 20 65 78 69 73 74 20 6f 6e 20 61 6e 79 20 6d 61 6e 61 67 65 64 20 6e 65 74 77 | Ss.may.exist.on.any.managed.netw |
| d0040 | 6f 72 6b 2e 00 41 20 6e 65 77 20 69 6e 74 65 72 66 61 63 65 20 62 65 63 6f 6d 65 73 20 70 72 65 | ork..A.new.interface.becomes.pre |
| d0060 | 73 65 6e 74 20 60 60 50 6f 72 74 2d 63 68 61 6e 6e 65 6c 31 60 60 2c 20 61 6c 6c 20 63 6f 6e 66 | sent.``Port-channel1``,.all.conf |
| d0080 | 69 67 75 72 61 74 69 6f 6e 20 6c 69 6b 65 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 69 6e 74 65 | iguration.like.allowed.VLAN.inte |
| d00a0 | 72 66 61 63 65 73 2c 20 53 54 50 20 77 69 6c 6c 20 68 61 70 70 65 6e 20 68 65 72 65 2e 00 41 20 | rfaces,.STP.will.happen.here..A. |
| d00c0 | 70 61 63 6b 65 74 20 72 61 74 65 20 6c 69 6d 69 74 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 | packet.rate.limit.can.be.set.for |
| d00e0 | 20 61 20 72 75 6c 65 20 74 6f 20 61 70 70 6c 79 20 74 68 65 20 72 75 6c 65 20 74 6f 20 74 72 61 | .a.rule.to.apply.the.rule.to.tra |
| d0100 | 66 66 69 63 20 61 62 6f 76 65 20 6f 72 20 62 65 6c 6f 77 20 61 20 73 70 65 63 69 66 69 65 64 20 | ffic.above.or.below.a.specified. |
| d0120 | 74 68 72 65 73 68 6f 6c 64 2e 20 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 72 61 74 65 | threshold..To.configure.the.rate |
| d0140 | 20 6c 69 6d 69 74 69 6e 67 20 75 73 65 3a 00 41 20 70 61 63 6b 65 74 20 74 68 61 74 20 66 69 6e | .limiting.use:.A.packet.that.fin |
| d0160 | 64 73 20 61 20 6d 61 74 63 68 69 6e 67 20 65 6e 74 72 79 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 | ds.a.matching.entry.in.the.flowt |
| d0180 | 61 62 6c 65 20 28 66 6c 6f 77 74 61 62 6c 65 20 68 69 74 29 20 69 73 20 74 72 61 6e 73 6d 69 74 | able.(flowtable.hit).is.transmit |
| d01a0 | 74 65 64 20 74 6f 20 74 68 65 20 6f 75 74 70 75 74 20 6e 65 74 64 65 76 69 63 65 2c 20 68 65 6e | ted.to.the.output.netdevice,.hen |
| d01c0 | 63 65 2c 20 70 61 63 6b 65 74 73 20 62 79 70 61 73 73 20 74 68 65 20 63 6c 61 73 73 69 63 20 49 | ce,.packets.bypass.the.classic.I |
| d01e0 | 50 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 74 68 20 61 6e 64 20 75 73 65 73 20 74 68 65 20 2a | P.forwarding.path.and.uses.the.* |
| d0200 | 2a 46 61 73 74 20 50 61 74 68 2a 2a 20 28 6f 72 61 6e 67 65 20 63 69 72 63 6c 65 73 20 70 61 74 | *Fast.Path**.(orange.circles.pat |
| d0220 | 68 29 2e 20 54 68 65 20 76 69 73 69 62 6c 65 20 65 66 66 65 63 74 20 69 73 20 74 68 61 74 20 79 | h)..The.visible.effect.is.that.y |
| d0240 | 6f 75 20 64 6f 20 6e 6f 74 20 73 65 65 20 74 68 65 73 65 20 70 61 63 6b 65 74 73 20 66 72 6f 6d | ou.do.not.see.these.packets.from |
| d0260 | 20 61 6e 79 20 6f 66 20 74 68 65 20 4e 65 74 66 69 6c 74 65 72 20 68 6f 6f 6b 73 20 63 6f 6d 69 | .any.of.the.Netfilter.hooks.comi |
| d0280 | 6e 67 20 61 66 74 65 72 20 69 6e 67 72 65 73 73 2e 20 49 6e 20 63 61 73 65 20 74 68 61 74 20 74 | ng.after.ingress..In.case.that.t |
| d02a0 | 68 65 72 65 20 69 73 20 6e 6f 20 6d 61 74 63 68 69 6e 67 20 65 6e 74 72 79 20 69 6e 20 74 68 65 | here.is.no.matching.entry.in.the |
| d02c0 | 20 66 6c 6f 77 74 61 62 6c 65 20 28 66 6c 6f 77 74 61 62 6c 65 20 6d 69 73 73 29 2c 20 74 68 65 | .flowtable.(flowtable.miss),.the |
| d02e0 | 20 70 61 63 6b 65 74 20 66 6f 6c 6c 6f 77 73 20 74 68 65 20 63 6c 61 73 73 69 63 20 49 50 20 66 | .packet.follows.the.classic.IP.f |
| d0300 | 6f 72 77 61 72 64 69 6e 67 20 70 61 74 68 2e 00 41 20 70 65 6e 61 6c 74 79 20 6f 66 20 31 30 30 | orwarding.path..A.penalty.of.100 |
| d0320 | 30 20 69 73 20 61 73 73 65 73 73 65 64 20 65 61 63 68 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 | 0.is.assessed.each.time.the.rout |
| d0340 | 65 20 66 61 69 6c 73 2e 20 57 68 65 6e 20 74 68 65 20 70 65 6e 61 6c 74 69 65 73 20 72 65 61 63 | e.fails..When.the.penalties.reac |
| d0360 | 68 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 74 68 72 65 73 68 6f 6c 64 20 28 73 75 70 70 72 65 | h.a.predefined.threshold.(suppre |
| d0380 | 73 73 2d 76 61 6c 75 65 29 2c 20 74 68 65 20 72 6f 75 74 65 72 20 73 74 6f 70 73 20 61 64 76 65 | ss-value),.the.router.stops.adve |
| d03a0 | 72 74 69 73 69 6e 67 20 74 68 65 20 72 6f 75 74 65 2e 00 41 20 70 68 79 73 69 63 61 6c 20 69 6e | rtising.the.route..A.physical.in |
| d03c0 | 74 65 72 66 61 63 65 20 69 73 20 72 65 71 75 69 72 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 | terface.is.required.to.connect.t |
| d03e0 | 68 69 73 20 4d 41 43 73 65 63 20 69 6e 73 74 61 6e 63 65 20 74 6f 2e 20 54 72 61 66 66 69 63 20 | his.MACsec.instance.to..Traffic. |
| d0400 | 6c 65 61 76 69 6e 67 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 6e 6f 77 20 | leaving.this.interface.will.now. |
| d0420 | 62 65 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2f 65 6e 63 72 79 70 74 65 64 2e 00 41 20 70 6f | be.authenticated/encrypted..A.po |
| d0440 | 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 62 | ol.of.addresses.can.be.defined.b |
| d0460 | 79 20 75 73 69 6e 67 20 61 20 68 79 70 68 65 6e 20 62 65 74 77 65 65 6e 20 74 77 6f 20 49 50 20 | y.using.a.hyphen.between.two.IP. |
| d0480 | 61 64 64 72 65 73 73 65 73 3a 00 41 20 70 6f 72 74 20 63 61 6e 20 62 65 20 73 65 74 20 62 79 20 | addresses:.A.port.can.be.set.by. |
| d04a0 | 6e 75 6d 62 65 72 20 6f 72 20 6e 61 6d 65 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 2f | number.or.name.as.defined.in.``/ |
| d04c0 | 65 74 63 2f 73 65 72 76 69 63 65 73 60 60 2e 00 41 20 70 6f 72 74 20 63 61 6e 20 62 65 20 73 65 | etc/services``..A.port.can.be.se |
| d04e0 | 74 20 77 69 74 68 20 61 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 77 | t.with.a.port.number.or.a.name.w |
| d0500 | 68 69 63 68 20 69 73 20 68 65 72 65 20 64 65 66 69 6e 65 64 3a 20 60 60 2f 65 74 63 2f 73 65 72 | hich.is.here.defined:.``/etc/ser |
| d0520 | 76 69 63 65 73 60 60 2e 00 41 20 71 75 65 72 79 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 72 65 | vices``..A.query.for.which.there |
| d0540 | 20 69 73 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 6c 79 20 6e 6f 20 61 6e 73 77 65 72 20 69 73 | .is.authoritatively.no.answer.is |
| d0560 | 20 63 61 63 68 65 64 20 74 6f 20 71 75 69 63 6b 6c 79 20 64 65 6e 79 20 61 20 72 65 63 6f 72 64 | .cached.to.quickly.deny.a.record |
| d0580 | 27 73 20 65 78 69 73 74 65 6e 63 65 20 6c 61 74 65 72 20 6f 6e 2c 20 77 69 74 68 6f 75 74 20 70 | 's.existence.later.on,.without.p |
| d05a0 | 75 74 74 69 6e 67 20 61 20 68 65 61 76 79 20 6c 6f 61 64 20 6f 6e 20 74 68 65 20 72 65 6d 6f 74 | utting.a.heavy.load.on.the.remot |
| d05c0 | 65 20 73 65 72 76 65 72 2e 20 49 6e 20 70 72 61 63 74 69 63 65 2c 20 63 61 63 68 65 73 20 63 61 | e.server..In.practice,.caches.ca |
| d05e0 | 6e 20 62 65 63 6f 6d 65 20 73 61 74 75 72 61 74 65 64 20 77 69 74 68 20 68 75 6e 64 72 65 64 73 | n.become.saturated.with.hundreds |
| d0600 | 20 6f 66 20 74 68 6f 75 73 61 6e 64 73 20 6f 66 20 68 6f 73 74 73 20 77 68 69 63 68 20 61 72 65 | .of.thousands.of.hosts.which.are |
| d0620 | 20 74 72 69 65 64 20 6f 6e 6c 79 20 6f 6e 63 65 2e 00 41 20 72 65 63 65 69 76 65 64 20 4e 48 52 | .tried.only.once..A.received.NHR |
| d0640 | 50 20 54 72 61 66 66 69 63 20 49 6e 64 69 63 61 74 69 6f 6e 20 77 69 6c 6c 20 74 72 69 67 67 65 | P.Traffic.Indication.will.trigge |
| d0660 | 72 20 74 68 65 20 72 65 73 6f 6c 75 74 69 6f 6e 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 6d 65 | r.the.resolution.and.establishme |
| d0680 | 6e 74 20 6f 66 20 61 20 73 68 6f 72 74 63 75 74 20 72 6f 75 74 65 2e 00 41 20 72 6f 75 74 69 6e | nt.of.a.shortcut.route..A.routin |
| d06a0 | 67 20 74 61 62 6c 65 20 49 44 20 63 61 6e 20 6e 6f 74 20 62 65 20 6d 6f 64 69 66 69 65 64 20 6f | g.table.ID.can.not.be.modified.o |
| d06c0 | 6e 63 65 20 69 74 20 69 73 20 61 73 73 69 67 6e 65 64 2e 20 49 74 20 63 61 6e 20 6f 6e 6c 79 20 | nce.it.is.assigned..It.can.only. |
| d06e0 | 62 65 20 63 68 61 6e 67 65 64 20 62 79 20 64 65 6c 65 74 69 6e 67 20 61 6e 64 20 72 65 2d 61 64 | be.changed.by.deleting.and.re-ad |
| d0700 | 64 69 6e 67 20 74 68 65 20 56 52 46 20 69 6e 73 74 61 6e 63 65 2e 00 41 20 72 75 6c 65 2d 73 65 | ding.the.VRF.instance..A.rule-se |
| d0720 | 74 20 69 73 20 61 20 6e 61 6d 65 64 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 66 69 72 65 77 | t.is.a.named.collection.of.firew |
| d0740 | 61 6c 6c 20 72 75 6c 65 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f | all.rules.that.can.be.applied.to |
| d0760 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 61 20 7a 6f 6e 65 2e 20 45 61 63 68 20 72 75 | .an.interface.or.a.zone..Each.ru |
| d0780 | 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f | le.is.numbered,.has.an.action.to |
| d07a0 | 20 61 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 | .apply.if.the.rule.is.matched,.a |
| d07c0 | 6e 64 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 63 72 | nd.the.ability.to.specify.the.cr |
| d07e0 | 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f | iteria.to.match..Data.packets.go |
| d0800 | 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 | .through.the.rules.from.1.-.9999 |
| d0820 | 39 39 2c 20 61 74 20 74 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f | 99,.at.the.first.match.the.actio |
| d0840 | 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 | n.of.the.rule.will.be.executed.. |
| d0860 | 41 20 72 75 6c 65 2d 73 65 74 20 69 73 20 61 20 6e 61 6d 65 64 20 63 6f 6c 6c 65 63 74 69 6f 6e | A.rule-set.is.a.named.collection |
| d0880 | 20 6f 66 20 72 75 6c 65 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f | .of.rules.that.can.be.applied.to |
| d08a0 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 | .an.interface..Each.rule.is.numb |
| d08c0 | 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 | ered,.has.an.action.to.apply.if. |
| d08e0 | 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 | the.rule.is.matched,.and.the.abi |
| d0900 | 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 | lity.to.specify.the.criteria.to. |
| d0920 | 6d 61 74 63 68 2e 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 | match..Data.packets.go.through.t |
| d0940 | 68 65 20 72 75 6c 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 39 39 2c 20 61 74 20 74 68 65 | he.rules.from.1.-.999999,.at.the |
| d0960 | 20 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 | .first.match.the.action.of.the.r |
| d0980 | 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 2e 00 41 20 73 63 72 69 70 74 20 63 | ule.will.be.executed..A.script.c |
| d09a0 | 61 6e 20 62 65 20 72 75 6e 20 77 68 65 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 73 74 61 74 | an.be.run.when.an.interface.stat |
| d09c0 | 65 20 63 68 61 6e 67 65 20 6f 63 63 75 72 73 2e 20 53 63 72 69 70 74 73 20 61 72 65 20 72 75 6e | e.change.occurs..Scripts.are.run |
| d09e0 | 20 66 72 6f 6d 20 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2c 20 66 6f 72 20 61 20 64 69 66 | .from./config/scripts,.for.a.dif |
| d0a00 | 66 65 72 65 6e 74 20 6c 6f 63 61 74 69 6f 6e 20 73 70 65 63 69 66 79 20 74 68 65 20 66 75 6c 6c | ferent.location.specify.the.full |
| d0a20 | 20 70 61 74 68 3a 00 41 20 73 65 67 6d 65 6e 74 20 49 44 20 74 68 61 74 20 63 6f 6e 74 61 69 6e | .path:.A.segment.ID.that.contain |
| d0a40 | 73 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 63 61 6c 63 75 6c 61 74 65 | s.an.IP.address.prefix.calculate |
| d0a60 | 64 20 62 79 20 61 6e 20 49 47 50 20 69 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 | d.by.an.IGP.in.the.service.provi |
| d0a80 | 64 65 72 20 63 6f 72 65 20 6e 65 74 77 6f 72 6b 2e 20 50 72 65 66 69 78 20 53 49 44 73 20 61 72 | der.core.network..Prefix.SIDs.ar |
| d0aa0 | 65 20 67 6c 6f 62 61 6c 6c 79 20 75 6e 69 71 75 65 2c 20 74 68 69 73 20 76 61 6c 75 65 20 69 6e | e.globally.unique,.this.value.in |
| d0ac0 | 64 65 6e 74 69 66 79 20 69 74 00 41 20 73 65 6e 64 69 6e 67 20 73 74 61 74 69 6f 6e 20 28 63 6f | dentify.it.A.sending.station.(co |
| d0ae0 | 6d 70 75 74 65 72 20 6f 72 20 6e 65 74 77 6f 72 6b 20 73 77 69 74 63 68 29 20 6d 61 79 20 62 65 | mputer.or.network.switch).may.be |
| d0b00 | 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 64 61 74 61 20 66 61 73 74 65 72 20 74 68 61 6e 20 74 | .transmitting.data.faster.than.t |
| d0b20 | 68 65 20 6f 74 68 65 72 20 65 6e 64 20 6f 66 20 74 68 65 20 6c 69 6e 6b 20 63 61 6e 20 61 63 63 | he.other.end.of.the.link.can.acc |
| d0b40 | 65 70 74 20 69 74 2e 20 55 73 69 6e 67 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 2c 20 74 68 65 20 | ept.it..Using.flow.control,.the. |
| d0b60 | 72 65 63 65 69 76 69 6e 67 20 73 74 61 74 69 6f 6e 20 63 61 6e 20 73 69 67 6e 61 6c 20 74 68 65 | receiving.station.can.signal.the |
| d0b80 | 20 73 65 6e 64 65 72 20 72 65 71 75 65 73 74 69 6e 67 20 73 75 73 70 65 6e 73 69 6f 6e 20 6f 66 | .sender.requesting.suspension.of |
| d0ba0 | 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 73 20 75 6e 74 69 6c 20 74 68 65 20 72 65 63 65 69 76 65 | .transmissions.until.the.receive |
| d0bc0 | 72 20 63 61 74 63 68 65 73 20 75 70 2e 00 41 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 6e | r.catches.up..A.shared.network.n |
| d0be0 | 61 6d 65 64 20 60 60 4e 45 54 31 60 60 20 73 65 72 76 65 73 20 73 75 62 6e 65 74 20 60 60 32 30 | amed.``NET1``.serves.subnet.``20 |
| d0c00 | 30 31 3a 64 62 38 3a 3a 2f 36 34 60 60 00 41 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 6e | 01:db8::/64``.A.shared.network.n |
| d0c20 | 61 6d 65 64 20 60 60 50 44 2d 4e 45 54 60 60 20 73 65 72 76 65 73 20 73 75 62 6e 65 74 20 60 60 | amed.``PD-NET``.serves.subnet.`` |
| d0c40 | 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 60 60 2e 00 41 20 73 69 6d 70 6c 65 20 42 47 50 20 63 6f | 2001:db8::/64``..A.simple.BGP.co |
| d0c60 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 76 69 61 20 49 50 76 36 2e 00 41 20 73 69 6d 70 6c 65 20 52 | nfiguration.via.IPv6..A.simple.R |
| d0c80 | 61 6e 64 6f 6d 20 45 61 72 6c 79 20 44 65 74 65 63 74 69 6f 6e 20 28 52 45 44 29 20 70 6f 6c 69 | andom.Early.Detection.(RED).poli |
| d0ca0 | 63 79 20 77 6f 75 6c 64 20 73 74 61 72 74 20 72 61 6e 64 6f 6d 6c 79 20 64 72 6f 70 70 69 6e 67 | cy.would.start.randomly.dropping |
| d0cc0 | 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 61 20 71 75 65 75 65 20 62 65 66 6f 72 65 20 69 74 20 | .packets.from.a.queue.before.it. |
| d0ce0 | 72 65 61 63 68 65 73 20 69 74 73 20 71 75 65 75 65 20 6c 69 6d 69 74 20 74 68 75 73 20 61 76 6f | reaches.its.queue.limit.thus.avo |
| d0d00 | 69 64 69 6e 67 20 63 6f 6e 67 65 73 74 69 6f 6e 2e 20 54 68 61 74 20 69 73 20 67 6f 6f 64 20 66 | iding.congestion..That.is.good.f |
| d0d20 | 6f 72 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 73 20 74 68 65 20 67 72 61 64 75 61 | or.TCP.connections.as.the.gradua |
| d0d40 | 6c 20 64 72 6f 70 70 69 6e 67 20 6f 66 20 70 61 63 6b 65 74 73 20 61 63 74 73 20 61 73 20 61 20 | l.dropping.of.packets.acts.as.a. |
| d0d60 | 73 69 67 6e 61 6c 20 66 6f 72 20 74 68 65 20 73 65 6e 64 65 72 20 74 6f 20 64 65 63 72 65 61 73 | signal.for.the.sender.to.decreas |
| d0d80 | 65 20 69 74 73 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 72 61 74 65 2e 00 41 20 73 69 6d 70 6c | e.its.transmission.rate..A.simpl |
| d0da0 | 65 20 65 42 47 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 41 20 73 69 6d 70 6c 65 20 65 | e.eBGP.configuration:.A.simple.e |
| d0dc0 | 78 61 6d 70 6c 65 20 6f 66 20 53 68 61 70 65 72 20 75 73 69 6e 67 20 70 72 69 6f 72 69 74 69 65 | xample.of.Shaper.using.prioritie |
| d0de0 | 73 2e 00 41 20 73 69 6d 70 6c 65 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 6e 20 46 51 2d 43 6f 44 | s..A.simple.example.of.an.FQ-CoD |
| d0e00 | 65 6c 20 70 6f 6c 69 63 79 20 77 6f 72 6b 69 6e 67 20 69 6e 73 69 64 65 20 61 20 53 68 61 70 65 | el.policy.working.inside.a.Shape |
| d0e20 | 72 20 6f 6e 65 2e 00 41 20 73 69 6d 70 6c 69 66 69 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f 77 | r.one..A.simplified.traffic.flow |
| d0e40 | 20 64 69 61 67 72 61 6d 2c 20 62 61 73 65 64 20 6f 6e 20 4e 65 74 66 69 6c 74 65 72 20 70 61 63 | .diagram,.based.on.Netfilter.pac |
| d0e60 | 6b 65 74 20 66 6c 6f 77 2c 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 69 6e 20 6f 72 64 65 | ket.flow,.is.shown.next,.in.orde |
| d0e80 | 72 20 74 6f 20 68 61 76 65 20 61 20 66 75 6c 6c 20 76 69 65 77 20 61 6e 64 20 75 6e 64 65 72 73 | r.to.have.a.full.view.and.unders |
| d0ea0 | 74 61 6e 64 69 6e 67 20 6f 66 20 68 6f 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 65 | tanding.of.how.packets.are.proce |
| d0ec0 | 73 73 65 64 2c 20 61 6e 64 20 77 68 61 74 20 70 6f 73 73 69 62 6c 65 20 70 61 74 68 73 20 74 72 | ssed,.and.what.possible.paths.tr |
| d0ee0 | 61 66 66 69 63 20 63 61 6e 20 74 61 6b 65 2e 00 41 20 73 69 6d 70 6c 69 66 69 65 64 20 74 72 61 | affic.can.take..A.simplified.tra |
| d0f00 | 66 66 69 63 20 66 6c 6f 77 2c 20 62 61 73 65 64 20 6f 6e 20 4e 65 74 66 69 6c 74 65 72 20 70 61 | ffic.flow,.based.on.Netfilter.pa |
| d0f20 | 63 6b 65 74 20 66 6c 6f 77 2c 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c 20 69 6e 20 6f 72 64 | cket.flow,.is.shown.next,.in.ord |
| d0f40 | 65 72 20 74 6f 20 68 61 76 65 20 61 20 66 75 6c 6c 20 76 69 65 77 20 61 6e 64 20 75 6e 64 65 72 | er.to.have.a.full.view.and.under |
| d0f60 | 73 74 61 6e 64 69 6e 67 20 6f 66 20 68 6f 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 | standing.of.how.packets.are.proc |
| d0f80 | 65 73 73 65 64 2c 20 61 6e 64 20 77 68 61 74 20 70 6f 73 73 69 62 6c 65 20 70 61 74 68 73 20 63 | essed,.and.what.possible.paths.c |
| d0fa0 | 61 6e 20 74 61 6b 65 2e 00 41 20 73 69 6e 67 6c 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f | an.take..A.single.internal.netwo |
| d0fc0 | 72 6b 20 61 6e 64 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 55 73 65 20 74 68 65 | rk.and.external.network..Use.the |
| d0fe0 | 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 61 20 73 69 6e 67 6c | .NAT66.device.to.connect.a.singl |
| d1000 | 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 70 75 62 6c 69 63 20 6e 65 | e.internal.network.and.public.ne |
| d1020 | 74 77 6f 72 6b 2c 20 61 6e 64 20 74 68 65 20 68 6f 73 74 73 20 69 6e 20 74 68 65 20 69 6e 74 65 | twork,.and.the.hosts.in.the.inte |
| d1040 | 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 75 73 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 | rnal.network.use.IPv6.address.pr |
| d1060 | 65 66 69 78 65 73 20 74 68 61 74 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 72 6f 75 74 69 6e 67 | efixes.that.only.support.routing |
| d1080 | 20 77 69 74 68 69 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 61 6e 67 65 2e 20 57 68 65 6e 20 61 20 | .within.the.local.range..When.a. |
| d10a0 | 68 6f 73 74 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 63 63 | host.in.the.internal.network.acc |
| d10c0 | 65 73 73 65 73 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 74 68 65 20 | esses.the.external.network,.the. |
| d10e0 | 73 6f 75 72 63 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 20 69 6e 20 74 68 | source.IPv6.address.prefix.in.th |
| d1100 | 65 20 6d 65 73 73 61 67 65 20 77 69 6c 6c 20 62 65 20 63 6f 6e 76 65 72 74 65 64 20 69 6e 74 6f | e.message.will.be.converted.into |
| d1120 | 20 61 20 67 6c 6f 62 61 6c 20 75 6e 69 63 61 73 74 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 | .a.global.unicast.IPv6.address.p |
| d1140 | 72 65 66 69 78 20 62 79 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 2e 00 41 20 73 74 61 | refix.by.the.NAT66.device..A.sta |
| d1160 | 74 69 6f 6e 20 61 63 74 73 20 61 73 20 61 20 57 69 2d 46 69 20 63 6c 69 65 6e 74 20 61 63 63 65 | tion.acts.as.a.Wi-Fi.client.acce |
| d1180 | 73 73 69 6e 67 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 72 6f 75 67 68 20 61 6e 20 61 76 61 | ssing.the.network.through.an.ava |
| d11a0 | 69 6c 61 62 6c 65 20 57 41 50 00 41 20 73 79 6e 63 20 67 72 6f 75 70 20 61 6c 6c 6f 77 73 20 56 | ilable.WAP.A.sync.group.allows.V |
| d11c0 | 52 52 50 20 67 72 6f 75 70 73 20 74 6f 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 6f 67 65 74 68 65 | RRP.groups.to.transition.togethe |
| d11e0 | 72 2e 00 41 20 74 79 70 69 63 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 69 6e 67 | r..A.typical.configuration.using |
| d1200 | 20 32 20 6e 6f 64 65 73 2e 00 41 20 74 79 70 69 63 61 6c 20 70 72 6f 62 6c 65 6d 20 77 69 74 68 | .2.nodes..A.typical.problem.with |
| d1220 | 20 75 73 69 6e 67 20 4e 41 54 20 61 6e 64 20 68 6f 73 74 69 6e 67 20 70 75 62 6c 69 63 20 73 65 | .using.NAT.and.hosting.public.se |
| d1240 | 72 76 65 72 73 20 69 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 66 6f 72 20 69 6e 74 65 72 6e 61 | rvers.is.the.ability.for.interna |
| d1260 | 6c 20 73 79 73 74 65 6d 73 20 74 6f 20 72 65 61 63 68 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 73 | l.systems.to.reach.an.internal.s |
| d1280 | 65 72 76 65 72 20 75 73 69 6e 67 20 69 74 27 73 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 | erver.using.it's.external.IP.add |
| d12a0 | 72 65 73 73 2e 20 54 68 65 20 73 6f 6c 75 74 69 6f 6e 20 74 6f 20 74 68 69 73 20 69 73 20 75 73 | ress..The.solution.to.this.is.us |
| d12c0 | 75 61 6c 6c 79 20 74 68 65 20 75 73 65 20 6f 66 20 73 70 6c 69 74 2d 44 4e 53 20 74 6f 20 63 6f | ually.the.use.of.split-DNS.to.co |
| d12e0 | 72 72 65 63 74 6c 79 20 70 6f 69 6e 74 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 74 6f 20 74 68 | rrectly.point.host.systems.to.th |
| d1300 | 65 20 69 6e 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 77 68 65 6e 20 72 65 71 75 65 73 74 73 | e.internal.address.when.requests |
| d1320 | 20 61 72 65 20 6d 61 64 65 20 69 6e 74 65 72 6e 61 6c 6c 79 2e 20 42 65 63 61 75 73 65 20 6d 61 | .are.made.internally..Because.ma |
| d1340 | 6e 79 20 73 6d 61 6c 6c 65 72 20 6e 65 74 77 6f 72 6b 73 20 6c 61 63 6b 20 44 4e 53 20 69 6e 66 | ny.smaller.networks.lack.DNS.inf |
| d1360 | 72 61 73 74 72 75 63 74 75 72 65 2c 20 61 20 77 6f 72 6b 2d 61 72 6f 75 6e 64 20 69 73 20 63 6f | rastructure,.a.work-around.is.co |
| d1380 | 6d 6d 6f 6e 6c 79 20 64 65 70 6c 6f 79 65 64 20 74 6f 20 66 61 63 69 6c 69 74 61 74 65 20 74 68 | mmonly.deployed.to.facilitate.th |
| d13a0 | 65 20 74 72 61 66 66 69 63 20 62 79 20 4e 41 54 69 6e 67 20 74 68 65 20 72 65 71 75 65 73 74 20 | e.traffic.by.NATing.the.request. |
| d13c0 | 66 72 6f 6d 20 69 6e 74 65 72 6e 61 6c 20 68 6f 73 74 73 20 74 6f 20 74 68 65 20 73 6f 75 72 63 | from.internal.hosts.to.the.sourc |
| d13e0 | 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 | e.address.of.the.internal.interf |
| d1400 | 61 63 65 20 6f 6e 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2e 00 41 20 75 73 65 72 20 66 72 69 65 | ace.on.the.firewall..A.user.frie |
| d1420 | 6e 64 6c 79 20 61 6c 69 61 73 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 | ndly.alias.for.this.connection.. |
| d1440 | 43 61 6e 20 62 65 20 75 73 65 64 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 76 69 63 | Can.be.used.instead.of.the.devic |
| d1460 | 65 20 6e 61 6d 65 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 69 6e 67 2e 00 41 20 75 73 65 72 20 66 | e.name.when.connecting..A.user.f |
| d1480 | 72 69 65 6e 64 6c 79 20 64 65 73 63 72 69 70 74 69 6f 6e 20 69 64 65 6e 74 69 66 79 69 6e 67 20 | riendly.description.identifying. |
| d14a0 | 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 20 70 65 72 69 70 68 65 72 61 6c 2e 00 41 20 76 61 6c 75 | the.connected.peripheral..A.valu |
| d14c0 | 65 20 6f 66 20 30 20 64 69 73 61 62 6c 65 73 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 2e 20 | e.of.0.disables.ARP.monitoring.. |
| d14e0 | 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 30 2e 00 41 20 76 61 6c 75 65 20 | The.default.value.is.0..A.value. |
| d1500 | 6f 66 20 32 39 36 20 77 6f 72 6b 73 20 77 65 6c 6c 20 6f 6e 20 76 65 72 79 20 73 6c 6f 77 20 6c | of.296.works.well.on.very.slow.l |
| d1520 | 69 6e 6b 73 20 28 34 30 20 62 79 74 65 73 20 66 6f 72 20 54 43 50 2f 49 50 20 68 65 61 64 65 72 | inks.(40.bytes.for.TCP/IP.header |
| d1540 | 20 2b 20 32 35 36 20 62 79 74 65 73 20 6f 66 20 64 61 74 61 29 2e 00 41 20 76 65 72 79 20 73 6d | .+.256.bytes.of.data)..A.very.sm |
| d1560 | 61 6c 6c 20 62 75 66 66 65 72 20 77 69 6c 6c 20 73 6f 6f 6e 20 73 74 61 72 74 20 64 72 6f 70 70 | all.buffer.will.soon.start.dropp |
| d1580 | 69 6e 67 20 70 61 63 6b 65 74 73 2e 00 41 20 7a 6f 6e 65 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 | ing.packets..A.zone.must.be.conf |
| d15a0 | 69 67 75 72 65 64 20 62 65 66 6f 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 73 | igured.before.an.interface.is.as |
| d15c0 | 73 69 67 6e 65 64 20 74 6f 20 69 74 20 61 6e 64 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 63 61 | signed.to.it.and.an.interface.ca |
| d15e0 | 6e 20 62 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 6f 6e 6c 79 20 61 20 73 69 6e 67 6c 65 20 7a | n.be.assigned.to.only.a.single.z |
| d1600 | 6f 6e 65 2e 00 41 43 4d 45 00 41 43 4d 45 20 44 69 72 65 63 74 6f 72 79 20 52 65 73 6f 75 72 63 | one..ACME.ACME.Directory.Resourc |
| d1620 | 65 20 55 52 49 2e 00 41 50 49 00 41 52 50 00 41 62 6f 76 65 20 63 6f 6d 6d 61 6e 64 20 77 69 6c | e.URI..API.ARP.Above.command.wil |
| d1640 | 6c 20 75 73 65 20 60 31 30 2e 30 2e 30 2e 33 60 20 61 73 20 73 6f 75 72 63 65 20 49 50 76 34 20 | l.use.`10.0.0.3`.as.source.IPv4. |
| d1660 | 61 64 64 72 65 73 73 20 66 6f 72 20 61 6c 6c 20 52 41 44 49 55 53 20 71 75 65 72 69 65 73 20 6f | address.for.all.RADIUS.queries.o |
| d1680 | 6e 20 74 68 69 73 20 4e 41 53 2e 00 41 62 6f 76 65 2c 20 63 6f 6d 6d 61 6e 64 20 73 79 6e 74 61 | n.this.NAS..Above,.command.synta |
| d16a0 | 78 20 69 73 6e 20 6e 6f 74 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 64 79 6e 61 6d 69 63 | x.isn.noted.to.configure.dynamic |
| d16c0 | 20 64 6e 73 20 6f 6e 20 61 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 | .dns.on.a.specific.interface..It |
| d16e0 | 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 6f 76 65 72 6c 6f 6f 6b 20 74 68 65 20 61 64 64 | .is.possible.to.overlook.the.add |
| d1700 | 69 74 69 6f 6e 61 6c 20 61 64 64 72 65 73 73 20 6f 70 74 69 6f 6e 2c 20 77 65 62 2c 20 77 68 65 | itional.address.option,.web,.whe |
| d1720 | 6e 20 63 6f 6d 70 6c 65 74 65 69 6e 67 20 74 68 6f 73 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 64 64 | n.completeing.those.commands..dd |
| d1740 | 63 6c 69 65 6e 74 5f 20 68 61 73 20 61 6e 6f 74 68 65 72 20 77 61 79 20 74 6f 20 64 65 74 65 72 | client_.has.another.way.to.deter |
| d1760 | 6d 69 6e 65 20 74 68 65 20 57 41 4e 20 49 50 20 61 64 64 72 65 73 73 2c 20 75 73 69 6e 67 20 61 | mine.the.WAN.IP.address,.using.a |
| d1780 | 20 77 65 62 2d 62 61 73 65 64 20 75 72 6c 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 | .web-based.url.to.determine.the. |
| d17a0 | 65 78 74 65 72 6e 61 6c 20 49 50 2e 20 45 61 63 68 20 6f 66 20 74 68 65 20 63 6f 6d 6d 61 6e 64 | external.IP..Each.of.the.command |
| d17c0 | 73 20 61 62 6f 76 65 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 62 65 20 6d 6f 64 69 66 69 65 64 | s.above.will.need.to.be.modified |
| d17e0 | 20 74 6f 20 75 73 65 20 27 77 65 62 27 20 61 73 20 74 68 65 20 27 69 6e 74 65 72 66 61 63 65 27 | .to.use.'web'.as.the.'interface' |
| d1800 | 20 73 70 65 63 69 66 69 65 64 20 69 66 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 | .specified.if.this.functionality |
| d1820 | 20 69 73 20 74 6f 20 62 65 20 75 74 69 6c 69 7a 65 64 2e 00 41 63 63 65 6c 65 72 61 74 69 6f 6e | .is.to.be.utilized..Acceleration |
| d1840 | 00 41 63 63 65 70 74 20 53 53 48 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 6f 72 20 74 68 65 20 | .Accept.SSH.connections.for.the. |
| d1860 | 67 69 76 65 6e 20 60 3c 64 65 76 69 63 65 3e 60 20 6f 6e 20 54 43 50 20 70 6f 72 74 20 60 3c 70 | given.`<device>`.on.TCP.port.`<p |
| d1880 | 6f 72 74 3e 60 2e 20 41 66 74 65 72 20 73 75 63 63 65 73 73 66 75 6c 6c 20 61 75 74 68 65 6e 74 | ort>`..After.successfull.authent |
| d18a0 | 69 63 61 74 69 6f 6e 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c 20 62 65 20 64 69 72 65 63 74 6c | ication.the.user.will.be.directl |
| d18c0 | 79 20 64 72 6f 70 70 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 20 73 65 72 69 61 | y.dropped.to.the.connected.seria |
| d18e0 | 6c 20 64 65 76 69 63 65 2e 00 41 63 63 65 70 74 20 6f 6e 6c 79 20 63 65 72 74 61 69 6e 20 70 72 | l.device..Accept.only.certain.pr |
| d1900 | 6f 74 6f 63 6f 6c 73 3a 20 59 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 72 65 70 6c 69 63 61 | otocols:.You.may.want.to.replica |
| d1920 | 74 65 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 66 6c 6f 77 73 20 64 65 70 65 6e 64 69 6e 67 20 | te.the.state.of.flows.depending. |
| d1940 | 6f 6e 20 74 68 65 69 72 20 6c 61 79 65 72 20 34 20 70 72 6f 74 6f 63 6f 6c 2e 00 41 63 63 65 70 | on.their.layer.4.protocol..Accep |
| d1960 | 74 20 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 2e 20 42 79 20 | t.peer.interface.identifier..By. |
| d1980 | 64 65 66 61 75 6c 74 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 41 63 63 65 70 74 20 70 | default.is.not.defined..Accept.p |
| d19a0 | 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 2e 20 42 79 20 64 65 66 | eer.interface.identifier..By.def |
| d19c0 | 61 75 6c 74 20 74 68 69 73 20 69 73 20 6e 6f 74 20 64 65 66 69 6e 65 64 2e 00 41 63 63 65 70 74 | ault.this.is.not.defined..Accept |
| d19e0 | 61 62 6c 65 20 72 61 74 65 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 28 65 2e 67 2e 20 31 | able.rate.of.connections.(e.g..1 |
| d1a00 | 2f 6d 69 6e 2c 20 36 30 2f 73 65 63 29 00 41 63 63 65 73 73 20 4c 69 73 74 20 50 6f 6c 69 63 79 | /min,.60/sec).Access.List.Policy |
| d1a20 | 00 41 63 63 65 73 73 20 4c 69 73 74 73 00 41 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 74 61 6b | .Access.Lists.Action.must.be.tak |
| d1a40 | 65 6e 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 2d 20 41 20 63 6f 6e 64 69 74 69 6f 6e 20 74 68 61 | en.immediately.-.A.condition.tha |
| d1a60 | 74 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 72 72 65 63 74 65 64 20 69 6d 6d 65 64 69 61 74 65 6c | t.should.be.corrected.immediatel |
| d1a80 | 79 2c 20 73 75 63 68 20 61 73 20 61 20 63 6f 72 72 75 70 74 65 64 20 73 79 73 74 65 6d 20 64 61 | y,.such.as.a.corrupted.system.da |
| d1aa0 | 74 61 62 61 73 65 2e 00 41 63 74 69 6f 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 72 75 6e | tabase..Action.which.will.be.run |
| d1ac0 | 20 6f 6e 63 65 20 74 68 65 20 63 74 72 6c 2d 61 6c 74 2d 64 65 6c 20 6b 65 79 73 74 72 6f 6b 65 | .once.the.ctrl-alt-del.keystroke |
| d1ae0 | 20 69 73 20 72 65 63 65 69 76 65 64 2e 00 41 63 74 69 6f 6e 73 00 41 63 74 69 76 65 20 44 69 72 | .is.received..Actions.Active.Dir |
| d1b00 | 65 63 74 6f 72 79 00 41 63 74 69 76 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 62 61 63 6b 65 | ectory.Active.health.check.backe |
| d1b20 | 6e 64 20 73 65 72 76 65 72 00 41 64 64 20 4e 54 41 20 28 6e 65 67 61 74 69 76 65 20 74 72 75 73 | nd.server.Add.NTA.(negative.trus |
| d1b40 | 74 20 61 6e 63 68 6f 72 29 20 66 6f 72 20 74 68 69 73 20 64 6f 6d 61 69 6e 2e 20 54 68 69 73 20 | t.anchor).for.this.domain..This. |
| d1b60 | 6d 75 73 74 20 62 65 20 73 65 74 20 69 66 20 74 68 65 20 64 6f 6d 61 69 6e 20 64 6f 65 73 20 6e | must.be.set.if.the.domain.does.n |
| d1b80 | 6f 74 20 73 75 70 70 6f 72 74 20 44 4e 53 53 45 43 2e 00 41 64 64 20 50 6f 77 65 72 20 43 6f 6e | ot.support.DNSSEC..Add.Power.Con |
| d1ba0 | 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 74 6f 20 42 65 61 63 6f 6e 20 61 6e 64 20 50 72 | straint.element.to.Beacon.and.Pr |
| d1bc0 | 6f 62 65 20 52 65 73 70 6f 6e 73 65 20 66 72 61 6d 65 73 2e 00 41 64 64 20 61 20 66 6f 72 77 61 | obe.Response.frames..Add.a.forwa |
| d1be0 | 72 64 69 6e 67 20 72 75 6c 65 20 6d 61 74 63 68 69 6e 67 20 55 44 50 20 70 6f 72 74 20 6f 6e 20 | rding.rule.matching.UDP.port.on. |
| d1c00 | 79 6f 75 72 20 69 6e 74 65 72 6e 65 74 20 72 6f 75 74 65 72 2e 00 41 64 64 20 61 20 68 6f 73 74 | your.internet.router..Add.a.host |
| d1c20 | 20 64 65 76 69 63 65 20 74 6f 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 00 41 64 64 20 61 63 | .device.to.the.container..Add.ac |
| d1c40 | 63 65 73 73 2d 63 6f 6e 74 72 6f 6c 20 64 69 72 65 63 74 69 76 65 20 74 6f 20 61 6c 6c 6f 77 20 | cess-control.directive.to.allow. |
| d1c60 | 6f 72 20 64 65 6e 79 20 75 73 65 72 73 20 61 6e 64 20 67 72 6f 75 70 73 2e 20 44 69 72 65 63 74 | or.deny.users.and.groups..Direct |
| d1c80 | 69 76 65 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 | ives.are.processed.in.the.follow |
| d1ca0 | 69 6e 67 20 6f 72 64 65 72 20 6f 66 20 70 72 65 63 65 64 65 6e 63 65 3a 20 60 60 64 65 6e 79 2d | ing.order.of.precedence:.``deny- |
| d1cc0 | 75 73 65 72 73 60 60 2c 20 60 60 61 6c 6c 6f 77 2d 75 73 65 72 73 60 60 2c 20 60 60 64 65 6e 79 | users``,.``allow-users``,.``deny |
| d1ce0 | 2d 67 72 6f 75 70 73 60 60 20 61 6e 64 20 60 60 61 6c 6c 6f 77 2d 67 72 6f 75 70 73 60 60 2e 00 | -groups``.and.``allow-groups``.. |
| d1d00 | 41 64 64 20 63 75 73 74 6f 6d 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 62 6c 65 73 | Add.custom.environment.variables |
| d1d20 | 2e 20 4d 75 6c 74 69 70 6c 65 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 62 6c 65 73 | ..Multiple.environment.variables |
| d1d40 | 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d | .are.allowed..The.following.comm |
| d1d60 | 61 6e 64 73 20 74 72 61 6e 73 6c 61 74 65 20 74 6f 20 22 2d 65 20 6b 65 79 3d 76 61 6c 75 65 22 | ands.translate.to."-e.key=value" |
| d1d80 | 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 | .when.the.container.is.created.. |
| d1da0 | 41 64 64 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 73 20 66 6f 72 20 72 6f 75 74 69 6e 67 20 60 | Add.default.routes.for.routing.` |
| d1dc0 | 60 74 61 62 6c 65 20 31 30 60 60 20 61 6e 64 20 60 60 74 61 62 6c 65 20 31 31 60 60 00 41 64 64 | `table.10``.and.``table.11``.Add |
| d1de0 | 20 64 65 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a | .description.to.firewall.groups: |
| d1e00 | 00 41 64 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 | .Add.destination.IP.address.of.t |
| d1e20 | 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 | he.connection.to.a.dynamic.addre |
| d1e40 | 73 73 20 67 72 6f 75 70 3a 00 41 64 64 20 6d 65 74 61 64 61 74 61 20 6c 61 62 65 6c 20 66 6f 72 | ss.group:.Add.metadata.label.for |
| d1e60 | 20 74 68 69 73 20 63 6f 6e 74 61 69 6e 65 72 2e 00 41 64 64 20 6d 75 6c 74 69 70 6c 65 20 73 6f | .this.container..Add.multiple.so |
| d1e80 | 75 72 63 65 20 49 50 20 69 6e 20 6f 6e 65 20 72 75 6c 65 20 77 69 74 68 20 73 61 6d 65 20 70 72 | urce.IP.in.one.rule.with.same.pr |
| d1ea0 | 69 6f 72 69 74 79 00 41 64 64 20 6e 65 77 20 70 6f 72 74 20 74 6f 20 53 53 4c 2d 70 6f 72 74 73 | iority.Add.new.port.to.SSL-ports |
| d1ec0 | 20 61 63 6c 2e 20 50 6f 72 74 73 20 69 6e 63 6c 75 64 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 | .acl..Ports.included.by.default. |
| d1ee0 | 69 6e 20 53 53 4c 2d 70 6f 72 74 73 20 61 63 6c 3a 20 34 34 33 00 41 64 64 20 6e 65 77 20 70 6f | in.SSL-ports.acl:.443.Add.new.po |
| d1f00 | 72 74 20 74 6f 20 53 61 66 65 2d 70 6f 72 74 73 20 61 63 6c 2e 20 50 6f 72 74 73 20 69 6e 63 6c | rt.to.Safe-ports.acl..Ports.incl |
| d1f20 | 75 64 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 69 6e 20 53 61 66 65 2d 70 6f 72 74 73 20 61 63 | uded.by.default.in.Safe-ports.ac |
| d1f40 | 6c 3a 20 32 31 2c 20 37 30 2c 20 38 30 2c 20 32 31 30 2c 20 32 38 30 2c 20 34 34 33 2c 20 34 38 | l:.21,.70,.80,.210,.280,.443,.48 |
| d1f60 | 38 2c 20 35 39 31 2c 20 37 37 37 2c 20 38 37 33 2c 20 31 30 32 35 2d 36 35 35 33 35 00 41 64 64 | 8,.591,.777,.873,.1025-65535.Add |
| d1f80 | 20 6f 72 20 72 65 70 6c 61 63 65 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 | .or.replace.BGP.community.attrib |
| d1fa0 | 75 74 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 2d 36 35 35 33 35 | ute.in.format.``<0-65535:0-65535 |
| d1fc0 | 3e 60 60 20 6f 72 20 66 72 6f 6d 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 79 | >``.or.from.well-known.community |
| d1fe0 | 20 6c 69 73 74 00 41 64 64 20 6f 72 20 72 65 70 6c 61 63 65 20 42 47 50 20 6c 61 72 67 65 2d 63 | .list.Add.or.replace.BGP.large-c |
| d2000 | 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 69 6e 20 66 6f 72 6d 61 74 20 60 60 3c | ommunity.attribute.in.format.``< |
| d2020 | 30 2d 34 32 39 34 39 36 37 32 39 35 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3a 30 2d 34 32 39 34 | 0-4294967295:0-4294967295:0-4294 |
| d2040 | 39 36 37 32 39 35 3e 60 60 00 41 64 64 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 6d 61 74 63 68 | 967295>``.Add.policy.route.match |
| d2060 | 69 6e 67 20 56 4c 41 4e 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 65 73 00 41 64 64 20 70 75 | ing.VLAN.source.addresses.Add.pu |
| d2080 | 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 65 72 74 69 66 69 | blic.key.portion.for.the.certifi |
| d20a0 | 63 61 74 65 20 6e 61 6d 65 64 20 60 6e 61 6d 65 60 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c | cate.named.`name`.to.the.VyOS.CL |
| d20c0 | 49 2e 00 41 64 64 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 | I..Add.source.IP.address.of.the. |
| d20e0 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 | connection.to.a.dynamic.address. |
| d2100 | 67 72 6f 75 70 3a 00 41 64 64 20 74 68 65 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 74 | group:.Add.the.CAs.private.key.t |
| d2120 | 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 | o.the.VyOS.CLI..This.should.neve |
| d2140 | 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 2c 20 61 6e 64 20 69 73 20 6f 6e 6c 79 20 | r.leave.the.system,.and.is.only. |
| d2160 | 72 65 71 75 69 72 65 64 20 69 66 20 79 6f 75 20 75 73 65 20 56 79 4f 53 20 61 73 20 79 6f 75 72 | required.if.you.use.VyOS.as.your |
| d2180 | 20 63 65 72 74 69 66 69 63 61 74 65 20 67 65 6e 65 72 61 74 6f 72 20 61 73 20 6d 65 6e 74 69 6f | .certificate.generator.as.mentio |
| d21a0 | 6e 65 64 20 61 62 6f 76 65 2e 00 41 64 64 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 66 72 6f 6d | ned.above..Add.the.commands.from |
| d21c0 | 20 53 6e 69 70 70 65 74 20 69 6e 20 74 68 65 20 57 69 6e 64 6f 77 73 20 73 69 64 65 20 76 69 61 | .Snippet.in.the.Windows.side.via |
| d21e0 | 20 50 6f 77 65 72 53 68 65 6c 6c 2e 20 41 6c 73 6f 20 69 6d 70 6f 72 74 20 74 68 65 20 72 6f 6f | .PowerShell..Also.import.the.roo |
| d2200 | 74 20 43 41 20 63 65 72 74 20 74 6f 20 74 68 65 20 57 69 6e 64 6f 77 73 20 e2 80 9c 54 72 75 73 | t.CA.cert.to.the.Windows....Trus |
| d2220 | 74 65 64 20 52 6f 6f 74 20 43 65 72 74 69 66 69 63 61 74 69 6f 6e 20 41 75 74 68 6f 72 69 74 69 | ted.Root.Certification.Authoriti |
| d2240 | 65 73 e2 80 9d 20 61 6e 64 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 | es....and.establish.the.connecti |
| d2260 | 6f 6e 2e 00 41 64 64 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 | on..Add.the.private.key.portion. |
| d2280 | 6f 66 20 74 68 69 73 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 43 4c 49 2e 20 | of.this.certificate.to.the.CLI.. |
| d22a0 | 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 74 | This.should.never.leave.the.syst |
| d22c0 | 65 6d 20 61 73 20 69 74 20 69 73 20 75 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 74 68 65 20 | em.as.it.is.used.to.decrypt.the. |
| d22e0 | 64 61 74 61 2e 00 41 64 64 20 74 68 65 20 70 75 62 6c 69 63 20 43 41 20 63 65 72 74 69 66 69 63 | data..Add.the.public.CA.certific |
| d2300 | 61 74 65 20 66 6f 72 20 74 68 65 20 43 41 20 6e 61 6d 65 64 20 60 6e 61 6d 65 60 20 74 6f 20 74 | ate.for.the.CA.named.`name`.to.t |
| d2320 | 68 65 20 56 79 4f 53 20 43 4c 49 2e 00 41 64 64 69 6e 67 20 61 20 32 46 41 20 77 69 74 68 20 61 | he.VyOS.CLI..Adding.a.2FA.with.a |
| d2340 | 6e 20 4f 54 50 2d 6b 65 79 00 41 64 64 69 6e 67 20 65 6c 65 6d 65 6e 74 73 20 74 6f 20 44 79 6e | n.OTP-key.Adding.elements.to.Dyn |
| d2360 | 61 6d 69 63 20 46 69 72 65 77 61 6c 6c 20 47 72 6f 75 70 73 00 41 64 64 69 74 69 6f 6e 61 6c 20 | amic.Firewall.Groups.Additional. |
| d2380 | 67 6c 6f 62 61 6c 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 73 65 74 2c 20 69 6e 63 6c 75 | global.parameters.are.set,.inclu |
| d23a0 | 64 69 6e 67 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 63 6f 6e 6e 65 63 74 69 | ding.the.maximum.number.connecti |
| d23c0 | 6f 6e 20 6c 69 6d 69 74 20 6f 66 20 34 30 30 30 20 61 6e 64 20 61 20 6d 69 6e 69 6d 75 6d 20 54 | on.limit.of.4000.and.a.minimum.T |
| d23e0 | 4c 53 20 76 65 72 73 69 6f 6e 20 6f 66 20 31 2e 33 2e 00 41 64 64 69 74 69 6f 6e 61 6c 20 6f 70 | LS.version.of.1.3..Additional.op |
| d2400 | 74 69 6f 6e 20 74 6f 20 72 75 6e 20 54 46 54 50 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 3a | tion.to.run.TFTP.server.in.the.: |
| d2420 | 61 62 62 72 3a 60 56 52 46 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 20 46 | abbr:`VRF.(Virtual.Routing.and.F |
| d2440 | 6f 72 77 61 72 64 69 6e 67 29 60 20 63 6f 6e 74 65 78 74 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 | orwarding)`.context.Additionally |
| d2460 | 20 79 6f 75 20 73 68 6f 75 6c 64 20 6b 65 65 70 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 74 68 | .you.should.keep.in.mind.that.th |
| d2480 | 69 73 20 66 65 61 74 75 72 65 20 66 75 6e 64 61 6d 65 6e 74 61 6c 6c 79 20 64 69 73 61 62 6c 65 | is.feature.fundamentally.disable |
| d24a0 | 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 75 73 65 20 77 69 64 65 6c 79 20 64 65 70 6c | s.the.ability.to.use.widely.depl |
| d24c0 | 6f 79 65 64 20 42 47 50 20 66 65 61 74 75 72 65 73 2e 20 42 47 50 20 75 6e 6e 75 6d 62 65 72 65 | oyed.BGP.features..BGP.unnumbere |
| d24e0 | 64 2c 20 68 6f 73 74 6e 61 6d 65 20 73 75 70 70 6f 72 74 2c 20 41 53 34 2c 20 41 64 64 70 61 74 | d,.hostname.support,.AS4,.Addpat |
| d2500 | 68 2c 20 52 6f 75 74 65 20 52 65 66 72 65 73 68 2c 20 4f 52 46 2c 20 44 79 6e 61 6d 69 63 20 43 | h,.Route.Refresh,.ORF,.Dynamic.C |
| d2520 | 61 70 61 62 69 6c 69 74 69 65 73 2c 20 61 6e 64 20 67 72 61 63 65 66 75 6c 20 72 65 73 74 61 72 | apabilities,.and.graceful.restar |
| d2540 | 74 2e 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 65 61 63 68 20 63 6c 69 65 6e 74 20 6e 65 65 | t..Additionally,.each.client.nee |
| d2560 | 64 73 20 61 20 63 6f 70 79 20 6f 66 20 63 61 20 63 65 72 74 20 61 6e 64 20 69 74 73 20 6f 77 6e | ds.a.copy.of.ca.cert.and.its.own |
| d2580 | 20 63 6c 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 73 2e 20 54 68 65 20 | .client.key.and.cert.files..The. |
| d25a0 | 66 69 6c 65 73 20 61 72 65 20 70 6c 61 69 6e 74 65 78 74 20 73 6f 20 74 68 65 79 20 6d 61 79 20 | files.are.plaintext.so.they.may. |
| d25c0 | 62 65 20 63 6f 70 69 65 64 20 65 69 74 68 65 72 20 6d 61 6e 75 61 6c 6c 79 20 66 72 6f 6d 20 74 | be.copied.either.manually.from.t |
| d25e0 | 68 65 20 43 4c 49 2e 20 43 6c 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 69 6c 65 | he.CLI..Client.key.and.cert.file |
| d2600 | 73 20 73 68 6f 75 6c 64 20 62 65 20 73 69 67 6e 65 64 20 77 69 74 68 20 74 68 65 20 70 72 6f 70 | s.should.be.signed.with.the.prop |
| d2620 | 65 72 20 63 61 20 63 65 72 74 20 61 6e 64 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 74 68 65 20 | er.ca.cert.and.generated.on.the. |
| d2640 | 73 65 72 76 65 72 20 73 69 64 65 2e 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 65 61 63 68 20 | server.side..Additionally,.each. |
| d2660 | 63 6c 69 65 6e 74 20 6e 65 65 64 73 20 61 20 63 6f 70 79 20 6f 66 20 63 61 20 63 65 72 74 20 61 | client.needs.a.copy.of.ca.cert.a |
| d2680 | 6e 64 20 69 74 73 20 6f 77 6e 20 63 6c 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 | nd.its.own.client.key.and.cert.f |
| d26a0 | 69 6c 65 73 2e 20 54 68 65 20 66 69 6c 65 73 20 61 72 65 20 70 6c 61 69 6e 74 65 78 74 20 73 6f | iles..The.files.are.plaintext.so |
| d26c0 | 20 74 68 65 79 20 6d 61 79 20 62 65 20 63 6f 70 69 65 64 20 6d 61 6e 75 61 6c 6c 79 20 66 72 6f | .they.may.be.copied.manually.fro |
| d26e0 | 6d 20 74 68 65 20 43 4c 49 2e 20 43 6c 69 65 6e 74 20 6b 65 79 20 61 6e 64 20 63 65 72 74 20 66 | m.the.CLI..Client.key.and.cert.f |
| d2700 | 69 6c 65 73 20 73 68 6f 75 6c 64 20 62 65 20 73 69 67 6e 65 64 20 77 69 74 68 20 74 68 65 20 70 | iles.should.be.signed.with.the.p |
| d2720 | 72 6f 70 65 72 20 63 61 20 63 65 72 74 20 61 6e 64 20 67 65 6e 65 72 61 74 65 64 20 6f 6e 20 74 | roper.ca.cert.and.generated.on.t |
| d2740 | 68 65 20 73 65 72 76 65 72 20 73 69 64 65 2e 00 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 77 65 | he.server.side..Additionally,.we |
| d2760 | 20 77 61 6e 74 20 74 6f 20 75 73 65 20 56 50 4e 73 20 6f 6e 6c 79 20 6f 6e 20 6f 75 72 20 65 74 | .want.to.use.VPNs.only.on.our.et |
| d2780 | 68 31 20 69 6e 74 65 72 66 61 63 65 20 28 74 68 65 20 65 78 74 65 72 6e 61 6c 20 69 6e 74 65 72 | h1.interface.(the.external.inter |
| d27a0 | 66 61 63 65 20 69 6e 20 74 68 65 20 69 6d 61 67 65 20 61 62 6f 76 65 29 00 41 64 64 72 65 73 73 | face.in.the.image.above).Address |
| d27c0 | 00 41 64 64 72 65 73 73 20 43 6f 6e 76 65 72 73 69 6f 6e 00 41 64 64 72 65 73 73 20 46 61 6d 69 | .Address.Conversion.Address.Fami |
| d27e0 | 6c 69 65 73 00 41 64 64 72 65 73 73 20 47 72 6f 75 70 73 00 41 64 64 72 65 73 73 20 67 72 6f 75 | lies.Address.Groups.Address.grou |
| d2800 | 70 73 20 61 72 65 20 75 73 65 66 75 6c 20 77 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 | ps.are.useful.when.you.need.to.c |
| d2820 | 72 65 61 74 65 20 72 75 6c 65 73 20 74 68 61 74 20 61 70 70 6c 79 20 74 6f 20 73 70 65 63 69 66 | reate.rules.that.apply.to.specif |
| d2840 | 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 | ic.IP.addresses..For.example,.if |
| d2860 | 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 74 68 61 74 20 | .you.want.to.create.a.rule.that. |
| d2880 | 6d 6f 6e 69 74 6f 72 73 20 74 72 61 66 66 69 63 20 67 6f 69 6e 67 20 74 6f 20 6f 72 20 66 72 6f | monitors.traffic.going.to.or.fro |
| d28a0 | 6d 20 61 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 65 73 73 2c 20 79 6f 75 20 63 61 6e | m.a.specific.IP.address,.you.can |
| d28c0 | 20 75 73 65 20 74 68 65 20 67 72 6f 75 70 20 6e 61 6d 65 20 69 6e 73 74 65 61 64 20 6f 66 20 74 | .use.the.group.name.instead.of.t |
| d28e0 | 68 65 20 61 63 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 73 69 6d 70 6c | he.actual.IP.address..This.simpl |
| d2900 | 69 66 69 65 73 20 72 75 6c 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 6d 61 6b 65 73 20 | ifies.rule.management.and.makes. |
| d2920 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 2e | the.configuration.more.flexible. |
| d2940 | 00 41 64 64 72 65 73 73 20 70 6f 6f 6c 20 73 68 61 6c 6c 20 62 65 20 60 60 32 30 30 31 3a 64 62 | .Address.pool.shall.be.``2001:db |
| d2960 | 38 3a 3a 31 30 30 60 60 20 74 68 72 6f 75 67 68 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 39 39 | 8::100``.through.``2001:db8::199 |
| d2980 | 60 60 2e 00 41 64 64 72 65 73 73 20 70 6f 6f 6c 73 00 41 64 64 72 65 73 73 20 74 6f 20 6c 69 73 | ``..Address.pools.Address.to.lis |
| d29a0 | 74 65 6e 20 66 6f 72 20 48 54 54 50 53 20 72 65 71 75 65 73 74 73 00 41 64 64 73 20 72 65 67 69 | ten.for.HTTPS.requests.Adds.regi |
| d29c0 | 73 74 72 79 20 74 6f 20 6c 69 73 74 20 6f 66 20 75 6e 71 75 61 6c 69 66 69 65 64 2d 73 65 61 72 | stry.to.list.of.unqualified-sear |
| d29e0 | 63 68 2d 72 65 67 69 73 74 72 69 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 66 6f 72 20 61 | ch-registries..By.default,.for.a |
| d2a00 | 6e 79 20 69 6d 61 67 65 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 6c 75 64 65 20 74 | ny.image.that.does.not.include.t |
| d2a20 | 68 65 20 72 65 67 69 73 74 72 79 20 69 6e 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 2c 20 56 | he.registry.in.the.image.name,.V |
| d2a40 | 79 4f 53 20 77 69 6c 6c 20 75 73 65 20 64 6f 63 6b 65 72 2e 69 6f 20 61 6e 64 20 71 75 61 79 2e | yOS.will.use.docker.io.and.quay. |
| d2a60 | 69 6f 20 61 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 2e 00 41 64 | io.as.the.container.registry..Ad |
| d2a80 | 64 73 20 72 65 67 69 73 74 72 79 20 74 6f 20 6c 69 73 74 20 6f 66 20 75 6e 71 75 61 6c 69 66 69 | ds.registry.to.list.of.unqualifi |
| d2aa0 | 65 64 2d 73 65 61 72 63 68 2d 72 65 67 69 73 74 72 69 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 | ed-search-registries..By.default |
| d2ac0 | 2c 20 66 6f 72 20 61 6e 79 20 69 6d 61 67 65 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e | ,.for.any.image.that.does.not.in |
| d2ae0 | 63 6c 75 64 65 20 74 68 65 20 72 65 67 69 73 74 72 79 20 69 6e 20 74 68 65 20 69 6d 61 67 65 20 | clude.the.registry.in.the.image. |
| d2b00 | 6e 61 6d 65 2c 20 56 79 6f 73 20 77 69 6c 6c 20 75 73 65 20 64 6f 63 6b 65 72 2e 69 6f 20 61 73 | name,.Vyos.will.use.docker.io.as |
| d2b20 | 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 2e 00 41 64 64 73 20 74 68 | .the.container.registry..Adds.th |
| d2b40 | 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 | e.Power.Constraint.information.e |
| d2b60 | 6c 65 6d 65 6e 74 20 74 6f 20 42 65 61 63 6f 6e 20 61 6e 64 20 50 72 6f 62 65 20 52 65 73 70 6f | lement.to.Beacon.and.Probe.Respo |
| d2b80 | 6e 73 65 20 66 72 61 6d 65 73 2e 00 41 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 44 69 73 74 61 | nse.frames..Administrative.Dista |
| d2ba0 | 6e 63 65 00 41 64 76 61 6e 63 65 64 20 49 6e 74 65 72 66 61 63 65 20 4f 70 74 69 6f 6e 73 00 41 | nce.Advanced.Interface.Options.A |
| d2bc0 | 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 41 64 76 61 6e 63 65 64 20 63 6f 6e 66 69 67 75 | dvanced.Options.Advanced.configu |
| d2be0 | 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 | ration.can.be.used.in.order.to.a |
| d2c00 | 70 70 6c 79 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 2c 20 | pply.source.or.destination.NAT,. |
| d2c20 | 61 6e 64 20 77 69 74 68 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2c 20 62 65 20 61 62 6c | and.within.a.single.rule,.be.abl |
| d2c40 | 65 20 74 6f 20 64 65 66 69 6e 65 20 6d 75 6c 74 69 70 6c 65 20 74 72 61 6e 73 6c 61 74 65 64 20 | e.to.define.multiple.translated. |
| d2c60 | 61 64 64 72 65 73 73 65 73 2c 20 73 6f 20 4e 41 54 20 62 61 6c 61 6e 63 65 73 20 74 68 65 20 74 | addresses,.so.NAT.balances.the.t |
| d2c80 | 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 6d 6f 6e 67 20 74 68 65 6d 2e 00 41 64 76 61 6e 74 61 67 | ranslations.among.them..Advantag |
| d2ca0 | 65 73 20 6f 66 20 43 47 4e 41 54 00 41 64 76 61 6e 74 61 67 65 73 20 6f 66 20 4f 70 65 6e 56 50 | es.of.CGNAT.Advantages.of.OpenVP |
| d2cc0 | 4e 20 61 72 65 3a 00 41 64 76 65 72 74 69 73 65 20 44 4e 53 20 73 65 72 76 65 72 20 70 65 72 20 | N.are:.Advertise.DNS.server.per. |
| d2ce0 | 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 2e 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 36 | https://tools.ietf.org/html/rfc6 |
| d2d00 | 31 30 36 00 41 64 76 65 72 74 69 73 65 6d 65 6e 74 20 49 6e 74 65 72 76 61 6c 20 4f 70 74 69 6f | 106.Advertisement.Interval.Optio |
| d2d20 | 6e 20 28 73 70 65 63 69 66 69 65 64 20 62 79 20 4d 6f 62 69 6c 65 20 49 50 76 36 29 20 69 73 20 | n.(specified.by.Mobile.IPv6).is. |
| d2d40 | 61 6c 77 61 79 73 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 52 6f 75 74 65 72 20 41 64 76 65 72 74 | always.included.in.Router.Advert |
| d2d60 | 69 73 65 6d 65 6e 74 73 20 75 6e 6c 65 73 73 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 | isements.unless.this.option.is.s |
| d2d80 | 65 74 2e 00 41 64 76 65 72 74 69 73 69 6e 67 20 61 20 4e 41 54 36 34 20 50 72 65 66 69 78 00 41 | et..Advertising.a.NAT64.Prefix.A |
| d2da0 | 64 76 65 72 74 69 73 69 6e 67 20 61 20 50 72 65 66 69 78 00 41 66 74 65 72 20 63 6f 6d 6d 69 74 | dvertising.a.Prefix.After.commit |
| d2dc0 | 20 74 68 65 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 73 20 77 69 6c 6c 20 62 65 | .the.plaintext.passwords.will.be |
| d2de0 | 20 68 61 73 68 65 64 20 61 6e 64 20 73 74 6f 72 65 64 20 69 6e 20 79 6f 75 72 20 63 6f 6e 66 69 | .hashed.and.stored.in.your.confi |
| d2e00 | 67 75 72 61 74 69 6f 6e 2e 20 54 68 65 20 72 65 73 75 6c 74 69 6e 67 20 43 4c 49 20 63 6f 6e 66 | guration..The.resulting.CLI.conf |
| d2e20 | 69 67 20 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 41 66 74 65 72 20 63 6f 6d 6d 69 74 74 | ig.will.look.like:.After.committ |
| d2e40 | 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 65 20 63 61 6e 20 76 65 72 | ing.the.configuration.we.can.ver |
| d2e60 | 69 66 79 20 61 6c 6c 20 6c 65 61 6b 65 64 20 72 6f 75 74 65 73 20 61 72 65 20 69 6e 73 74 61 6c | ify.all.leaked.routes.are.instal |
| d2e80 | 6c 65 64 2c 20 61 6e 64 20 74 72 79 20 74 6f 20 49 43 4d 50 20 70 69 6e 67 20 50 43 31 20 66 72 | led,.and.try.to.ICMP.ping.PC1.fr |
| d2ea0 | 6f 6d 20 50 43 33 2e 00 41 66 74 65 72 20 63 6f 6d 70 6c 65 74 69 6e 67 20 74 68 65 20 73 65 72 | om.PC3..After.completing.the.ser |
| d2ec0 | 76 69 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 | vice.configuration.in.configurat |
| d2ee0 | 69 6f 6e 20 6d 6f 64 65 2c 20 74 68 65 20 6d 61 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ion.mode,.the.main.configuration |
| d2f00 | 20 66 69 6c 65 20 73 75 72 69 63 61 74 61 2e 79 61 6d 6c 20 69 73 20 63 72 65 61 74 65 64 2c 20 | .file.suricata.yaml.is.created,. |
| d2f20 | 69 6e 74 6f 20 77 68 69 63 68 20 61 6c 6c 20 73 70 65 63 69 66 69 65 64 20 70 61 72 61 6d 65 74 | into.which.all.specified.paramet |
| d2f40 | 65 72 73 20 61 72 65 20 61 64 64 65 64 2e 20 54 68 65 6e 2c 20 74 6f 20 65 6e 73 75 72 65 20 70 | ers.are.added..Then,.to.ensure.p |
| d2f60 | 72 6f 70 65 72 20 6f 70 65 72 61 74 69 6f 6e 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 3a 6f 70 | roper.operation,.the.command.:op |
| d2f80 | 63 6d 64 3a 60 75 70 64 61 74 65 20 73 75 72 69 63 61 74 61 60 20 6d 75 73 74 20 62 65 20 72 75 | cmd:`update.suricata`.must.be.ru |
| d2fa0 | 6e 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 2c 20 77 61 69 74 69 6e 67 | n.from.operational.mode,.waiting |
| d2fc0 | 20 66 6f 72 20 53 75 72 69 63 61 74 61 20 74 6f 20 75 70 64 61 74 65 20 61 6c 6c 20 69 74 73 20 | .for.Suricata.to.update.all.its. |
| d2fe0 | 72 75 6c 65 73 2c 20 77 68 69 63 68 20 61 72 65 20 75 73 65 64 20 66 6f 72 20 61 6e 61 6c 79 7a | rules,.which.are.used.for.analyz |
| d3000 | 69 6e 67 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 72 65 61 74 73 20 61 6e 64 20 61 74 74 61 | ing.traffic.for.threats.and.atta |
| d3020 | 63 6b 73 2e 00 41 66 74 65 72 20 74 68 65 20 50 4b 49 20 63 65 72 74 73 20 61 72 65 20 61 6c 6c | cks..After.the.PKI.certs.are.all |
| d3040 | 20 73 65 74 20 75 70 20 77 65 20 63 61 6e 20 73 74 61 72 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 | .set.up.we.can.start.configuring |
| d3060 | 20 6f 75 72 20 49 50 53 65 63 2f 49 4b 45 20 70 72 6f 70 6f 73 61 6c 73 20 75 73 65 64 20 66 6f | .our.IPSec/IKE.proposals.used.fo |
| d3080 | 72 20 6b 65 79 2d 65 78 63 68 61 6e 67 65 20 65 6e 64 20 64 61 74 61 20 65 6e 63 72 79 70 74 69 | r.key-exchange.end.data.encrypti |
| d30a0 | 6f 6e 2e 20 54 68 65 20 75 73 65 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 73 20 | on..The.used.encryption.ciphers. |
| d30c0 | 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 61 6c 67 6f 72 69 74 68 6d 73 20 76 61 72 79 20 66 72 | and.integrity.algorithms.vary.fr |
| d30e0 | 6f 6d 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 20 74 6f 20 6f 70 65 72 61 74 69 6e 67 | om.operating.system.to.operating |
| d3100 | 20 73 79 73 74 65 6d 2e 20 54 68 65 20 6f 6e 65 73 20 75 73 65 64 20 69 6e 20 74 68 69 73 20 65 | .system..The.ones.used.in.this.e |
| d3120 | 78 61 6d 70 6c 65 20 61 72 65 20 76 61 6c 69 64 61 74 65 64 20 74 6f 20 77 6f 72 6b 20 6f 6e 20 | xample.are.validated.to.work.on. |
| d3140 | 57 69 6e 64 6f 77 73 20 31 30 2e 00 41 66 74 65 72 20 74 68 65 20 50 4b 49 20 63 65 72 74 73 20 | Windows.10..After.the.PKI.certs. |
| d3160 | 61 72 65 20 61 6c 6c 20 73 65 74 20 75 70 20 77 65 20 63 61 6e 20 73 74 61 72 74 20 63 6f 6e 66 | are.all.set.up.we.can.start.conf |
| d3180 | 69 67 75 72 69 6e 67 20 6f 75 72 20 49 50 53 65 63 2f 49 4b 45 20 70 72 6f 70 6f 73 61 6c 73 20 | iguring.our.IPSec/IKE.proposals. |
| d31a0 | 75 73 65 64 20 66 6f 72 20 6b 65 79 2d 65 78 63 68 61 6e 67 65 20 65 6e 64 20 64 61 74 61 20 65 | used.for.key-exchange.end.data.e |
| d31c0 | 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 65 20 75 73 65 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 | ncryption..The.used.encryption.c |
| d31e0 | 69 70 68 65 72 73 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 61 6c 67 6f 72 69 74 68 6d 73 20 | iphers.and.integrity.algorithms. |
| d3200 | 76 61 72 79 20 66 72 6f 6d 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 20 74 6f 20 6f 70 | vary.from.operating.system.to.op |
| d3220 | 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 2e 20 54 68 65 20 6f 6e 65 73 20 75 73 65 64 20 69 6e | erating.system..The.ones.used.in |
| d3240 | 20 74 68 69 73 20 70 6f 73 74 20 61 72 65 20 76 61 6c 69 64 61 74 65 64 20 74 6f 20 77 6f 72 6b | .this.post.are.validated.to.work |
| d3260 | 20 6f 6e 20 62 6f 74 68 20 57 69 6e 64 6f 77 73 20 31 30 20 61 6e 64 20 69 4f 53 2f 69 50 61 64 | .on.both.Windows.10.and.iOS/iPad |
| d3280 | 4f 53 20 31 34 20 74 6f 20 31 37 2e 00 41 66 74 65 72 20 77 65 20 68 61 76 65 20 69 6d 70 6f 72 | OS.14.to.17..After.we.have.impor |
| d32a0 | 74 65 64 20 74 68 65 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 28 73 29 20 77 65 20 63 61 6e | ted.the.CA.certificate(s).we.can |
| d32c0 | 20 6e 6f 77 20 69 6d 70 6f 72 74 20 61 6e 64 20 61 64 64 20 63 65 72 74 69 66 69 63 61 74 65 73 | .now.import.and.add.certificates |
| d32e0 | 20 75 73 65 64 20 62 79 20 73 65 72 76 69 63 65 73 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 | .used.by.services.on.this.router |
| d3300 | 2e 00 41 66 74 65 72 20 79 6f 75 20 6f 62 74 61 69 6e 20 79 6f 75 72 20 73 65 72 76 65 72 20 63 | ..After.you.obtain.your.server.c |
| d3320 | 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 20 63 61 6e 20 69 6d 70 6f 72 74 20 69 74 20 66 72 6f | ertificate.you.can.import.it.fro |
| d3340 | 6d 20 61 20 66 69 6c 65 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 79 73 74 65 6d | m.a.file.on.the.local.filesystem |
| d3360 | 2c 20 6f 72 20 70 61 73 74 65 20 69 74 20 69 6e 74 6f 20 74 68 65 20 43 4c 49 2e 20 50 6c 65 61 | ,.or.paste.it.into.the.CLI..Plea |
| d3380 | 73 65 20 6e 6f 74 65 20 74 68 61 74 20 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 74 68 65 20 63 | se.note.that.when.entering.the.c |
| d33a0 | 65 72 74 69 66 69 63 61 74 65 20 6d 61 6e 75 61 6c 6c 79 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 | ertificate.manually.you.need.to. |
| d33c0 | 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 | strip.the.``-----BEGIN.KEY-----` |
| d33e0 | 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 | `.and.``-----END.KEY-----``.tags |
| d3400 | 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6f 72 20 6b 65 79 20 6e | ..Also,.the.certificate.or.key.n |
| d3420 | 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 | eeds.to.be.presented.in.a.single |
| d3440 | 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 | .line.without.line.breaks.(``\n` |
| d3460 | 60 29 2e 00 41 66 74 65 72 20 79 6f 75 20 6f 62 74 61 69 6e 65 64 20 79 6f 75 72 20 73 65 72 76 | `)..After.you.obtained.your.serv |
| d3480 | 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 20 63 61 6e 20 69 6d 70 6f 72 74 20 69 74 | er.certificate.you.can.import.it |
| d34a0 | 20 66 72 6f 6d 20 61 20 66 69 6c 65 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 79 | .from.a.file.on.the.local.filesy |
| d34c0 | 73 74 65 6d 2c 20 6f 72 20 70 61 73 74 65 20 69 74 20 69 6e 74 6f 20 74 68 65 20 43 4c 49 2e 20 | stem,.or.paste.it.into.the.CLI.. |
| d34e0 | 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 77 68 65 6e 20 65 6e 74 65 72 69 6e 67 20 74 | Please.note.that.when.entering.t |
| d3500 | 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6d 61 6e 75 61 6c 6c 79 20 79 6f 75 20 6e 65 65 64 | he.certificate.manually.you.need |
| d3520 | 20 74 6f 20 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d | .to.strip.the.``-----BEGIN.KEY-- |
| d3540 | 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 | ---``.and.``-----END.KEY-----``. |
| d3560 | 74 61 67 73 2e 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6f 72 20 6b | tags..Also,.the.certificate.or.k |
| d3580 | 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 | ey.needs.to.be.presented.in.a.si |
| d35a0 | 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 | ngle.line.without.line.breaks.(` |
| d35c0 | 60 5c 6e 60 60 29 2e 00 41 67 65 6e 74 20 2d 20 73 6f 66 74 77 61 72 65 20 77 68 69 63 68 20 72 | `\n``)..Agent.-.software.which.r |
| d35e0 | 75 6e 73 20 6f 6e 20 6d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 00 41 6c 65 72 74 00 41 6c 67 | uns.on.managed.devices.Alert.Alg |
| d3600 | 6f 72 69 74 68 6d 00 41 6c 69 61 73 65 73 00 41 6c 6c 20 44 4e 53 20 72 65 71 75 65 73 74 73 20 | orithm.Aliases.All.DNS.requests. |
| d3620 | 66 6f 72 20 65 78 61 6d 70 6c 65 2e 63 6f 6d 20 6d 75 73 74 20 62 65 20 66 6f 72 77 61 72 64 65 | for.example.com.must.be.forwarde |
| d3640 | 64 20 74 6f 20 61 20 44 4e 53 20 73 65 72 76 65 72 20 61 74 20 31 39 32 2e 30 2e 32 2e 32 35 34 | d.to.a.DNS.server.at.192.0.2.254 |
| d3660 | 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 63 61 66 65 3a 3a 31 00 41 6c 6c 20 53 4e 4d 50 20 4d | .and.2001:db8:cafe::1.All.SNMP.M |
| d3680 | 49 42 73 20 61 72 65 20 6c 6f 63 61 74 65 64 20 69 6e 20 65 61 63 68 20 69 6d 61 67 65 20 6f 66 | IBs.are.located.in.each.image.of |
| d36a0 | 20 56 79 4f 53 20 68 65 72 65 3a 20 60 60 2f 75 73 72 2f 73 68 61 72 65 2f 73 6e 6d 70 2f 6d 69 | .VyOS.here:.``/usr/share/snmp/mi |
| d36c0 | 62 73 2f 60 60 00 41 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 57 57 41 4e 20 63 61 72 64 73 20 68 | bs/``.All.available.WWAN.cards.h |
| d36e0 | 61 76 65 20 61 20 62 75 69 6c 64 20 69 6e 2c 20 72 65 70 72 6f 67 72 61 6d 6d 61 62 6c 65 20 66 | ave.a.build.in,.reprogrammable.f |
| d3700 | 69 72 6d 77 61 72 65 2e 20 4d 6f 73 74 20 6f 66 20 74 68 65 20 76 65 6e 64 6f 72 73 20 70 72 6f | irmware..Most.of.the.vendors.pro |
| d3720 | 76 69 64 65 20 61 20 72 65 67 75 6c 61 72 20 75 70 64 61 74 65 20 74 6f 20 74 68 65 20 66 69 72 | vide.a.regular.update.to.the.fir |
| d3740 | 6d 77 61 72 65 20 75 73 65 64 20 69 6e 20 74 68 65 20 62 61 73 65 62 61 6e 64 20 63 68 69 70 2e | mware.used.in.the.baseband.chip. |
| d3760 | 00 41 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 57 57 41 4e 20 63 61 72 64 73 20 68 61 76 65 20 61 | .All.available.WWAN.cards.have.a |
| d3780 | 20 62 75 69 6c 74 2d 69 6e 2c 20 72 65 70 72 6f 67 72 61 6d 6d 61 62 6c 65 20 66 69 72 6d 77 61 | .built-in,.reprogrammable.firmwa |
| d37a0 | 72 65 2e 20 4d 6f 73 74 20 76 65 6e 64 6f 72 73 20 70 72 6f 76 69 64 65 20 72 65 67 75 6c 61 72 | re..Most.vendors.provide.regular |
| d37c0 | 20 75 70 64 61 74 65 73 20 74 6f 20 66 69 72 6d 77 61 72 65 20 75 73 65 64 20 69 6e 20 74 68 65 | .updates.to.firmware.used.in.the |
| d37e0 | 20 62 61 73 65 62 61 6e 64 20 63 68 69 70 2e 00 41 6c 6c 20 63 65 72 74 69 66 69 63 61 74 65 73 | .baseband.chip..All.certificates |
| d3800 | 20 73 68 6f 75 6c 64 20 62 65 20 73 74 6f 72 65 64 20 6f 6e 20 56 79 4f 53 20 75 6e 64 65 72 20 | .should.be.stored.on.VyOS.under. |
| d3820 | 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 60 60 2e 20 49 66 20 63 65 72 74 69 66 69 63 61 74 65 | ``/config/auth``..If.certificate |
| d3840 | 73 20 61 72 65 20 6e 6f 74 20 73 74 6f 72 65 64 20 69 6e 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 | s.are.not.stored.in.the.``/confi |
| d3860 | 67 60 60 20 64 69 72 65 63 74 6f 72 79 20 74 68 65 79 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 6d | g``.directory.they.will.not.be.m |
| d3880 | 69 67 72 61 74 65 64 20 64 75 72 69 6e 67 20 61 20 73 6f 66 74 77 61 72 65 20 75 70 64 61 74 65 | igrated.during.a.software.update |
| d38a0 | 2e 00 41 6c 6c 20 66 61 63 69 6c 69 74 69 65 73 00 41 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 | ..All.facilities.All.interfaces. |
| d38c0 | 75 73 65 64 20 66 6f 72 20 74 68 65 20 44 48 43 50 20 72 65 6c 61 79 20 6d 75 73 74 20 62 65 20 | used.for.the.DHCP.relay.must.be. |
| d38e0 | 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 75 70 | configured..This.includes.the.up |
| d3900 | 6c 69 6e 6b 20 74 6f 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 2e 00 41 6c 6c 20 69 74 65 | link.to.the.DHCP.server..All.ite |
| d3920 | 6d 73 20 69 6e 20 61 20 73 79 6e 63 20 67 72 6f 75 70 20 73 68 6f 75 6c 64 20 62 65 20 73 69 6d | ms.in.a.sync.group.should.be.sim |
| d3940 | 69 6c 61 72 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 49 66 20 6f 6e 65 20 56 52 52 50 20 67 | ilarly.configured..If.one.VRRP.g |
| d3960 | 72 6f 75 70 20 69 73 20 73 65 74 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 72 65 65 6d | roup.is.set.to.a.different.preem |
| d3980 | 70 74 69 6f 6e 20 64 65 6c 61 79 20 6f 72 20 70 72 69 6f 72 69 74 79 2c 20 69 74 20 77 6f 75 6c | ption.delay.or.priority,.it.woul |
| d39a0 | 64 20 72 65 73 75 6c 74 20 69 6e 20 61 6e 20 65 6e 64 6c 65 73 73 20 74 72 61 6e 73 69 74 69 6f | d.result.in.an.endless.transitio |
| d39c0 | 6e 20 6c 6f 6f 70 2e 00 41 6c 6c 20 6f 74 68 65 72 20 44 4e 53 20 72 65 71 75 65 73 74 73 20 77 | n.loop..All.other.DNS.requests.w |
| d39e0 | 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 | ill.be.forwarded.to.a.different. |
| d3a00 | 73 65 74 20 6f 66 20 44 4e 53 20 73 65 72 76 65 72 73 20 61 74 20 31 39 32 2e 30 2e 32 2e 31 2c | set.of.DNS.servers.at.192.0.2.1, |
| d3a20 | 20 31 39 32 2e 30 2e 32 2e 32 2c 20 32 30 30 31 3a 64 62 38 3a 3a 31 3a 66 66 66 66 20 61 6e 64 | .192.0.2.2,.2001:db8::1:ffff.and |
| d3a40 | 20 32 30 30 31 3a 64 62 38 3a 3a 32 3a 66 66 66 66 00 41 6c 6c 20 72 65 70 6c 79 20 73 69 7a 65 | .2001:db8::2:ffff.All.reply.size |
| d3a60 | 73 20 61 72 65 20 61 63 63 65 70 74 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 41 6c 6c 20 72 | s.are.accepted.by.default..All.r |
| d3a80 | 6f 75 74 65 72 73 20 69 6e 20 74 68 65 20 50 49 4d 20 6e 65 74 77 6f 72 6b 20 6d 75 73 74 20 61 | outers.in.the.PIM.network.must.a |
| d3aa0 | 67 72 65 65 20 6f 6e 20 74 68 65 73 65 20 76 61 6c 75 65 73 2e 00 41 6c 6c 20 73 63 72 69 70 74 | gree.on.these.values..All.script |
| d3ac0 | 73 20 65 78 63 65 63 75 74 65 64 20 74 68 69 73 20 77 61 79 20 61 72 65 20 65 78 65 63 75 74 65 | s.excecuted.this.way.are.execute |
| d3ae0 | 64 20 61 73 20 72 6f 6f 74 20 75 73 65 72 20 2d 20 74 68 69 73 20 6d 61 79 20 62 65 20 64 61 6e | d.as.root.user.-.this.may.be.dan |
| d3b00 | 67 65 72 6f 75 73 2e 20 54 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 63 6f 6d 6d | gerous..Together.with.:ref:`comm |
| d3b20 | 61 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 74 68 69 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 | and-scripting`.this.can.be.used. |
| d3b40 | 66 6f 72 20 61 75 74 6f 6d 61 74 69 6e 67 20 28 72 65 2d 29 63 6f 6e 66 69 67 75 72 61 74 69 6f | for.automating.(re-)configuratio |
| d3b60 | 6e 2e 00 41 6c 6c 20 73 63 72 69 70 74 73 20 65 78 65 63 75 74 65 64 20 74 68 69 73 20 77 61 79 | n..All.scripts.executed.this.way |
| d3b80 | 20 61 72 65 20 65 78 65 63 75 74 65 64 20 61 73 20 72 6f 6f 74 20 75 73 65 72 20 2d 20 74 68 69 | .are.executed.as.root.user.-.thi |
| d3ba0 | 73 20 6d 61 79 20 62 65 20 64 61 6e 67 65 72 6f 75 73 2e 20 54 6f 67 65 74 68 65 72 20 77 69 74 | s.may.be.dangerous..Together.wit |
| d3bc0 | 68 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 74 68 69 73 20 | h.:ref:`command-scripting`.this. |
| d3be0 | 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 6f 6d 61 74 69 6e 67 20 28 72 65 2d 29 | can.be.used.for.automating.(re-) |
| d3c00 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 41 6c 6c 20 74 68 65 73 65 20 72 75 6c 65 73 20 77 | configuration..All.these.rules.w |
| d3c20 | 69 74 68 20 4f 54 43 20 77 69 6c 6c 20 68 65 6c 70 20 74 6f 20 64 65 74 65 63 74 20 61 6e 64 20 | ith.OTC.will.help.to.detect.and. |
| d3c40 | 6d 69 74 69 67 61 74 65 20 72 6f 75 74 65 20 6c 65 61 6b 73 20 61 6e 64 20 68 61 70 70 65 6e 20 | mitigate.route.leaks.and.happen. |
| d3c60 | 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 66 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 73 | automatically.if.local-role.is.s |
| d3c80 | 65 74 2e 00 41 6c 6c 20 74 68 6f 73 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 67 72 6f 75 | et..All.those.protocols.are.grou |
| d3ca0 | 70 65 64 20 75 6e 64 65 72 20 60 60 69 6e 74 65 72 66 61 63 65 73 20 74 75 6e 6e 65 6c 60 60 20 | ped.under.``interfaces.tunnel``. |
| d3cc0 | 69 6e 20 56 79 4f 53 2e 20 4c 65 74 27 73 20 74 61 6b 65 20 61 20 63 6c 6f 73 65 72 20 6c 6f 6f | in.VyOS..Let's.take.a.closer.loo |
| d3ce0 | 6b 20 61 74 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 6f 70 74 69 6f 6e 73 20 63 | k.at.the.protocols.and.options.c |
| d3d00 | 75 72 72 65 6e 74 6c 79 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 56 79 4f 53 2e 00 41 6c 6c 20 | urrently.supported.by.VyOS..All. |
| d3d20 | 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e 20 7a 6f 6e 65 73 20 69 73 20 61 66 66 65 63 74 65 | traffic.between.zones.is.affecte |
| d3d40 | 64 20 62 79 20 65 78 69 73 74 69 6e 67 20 70 6f 6c 69 63 69 65 73 00 41 6c 6c 20 74 72 61 66 66 | d.by.existing.policies.All.traff |
| d3d60 | 69 63 20 74 6f 20 61 6e 64 20 66 72 6f 6d 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 | ic.to.and.from.an.interface.with |
| d3d80 | 69 6e 20 61 20 7a 6f 6e 65 20 69 73 20 70 65 72 6d 69 74 74 65 64 2e 00 41 6c 6c 20 74 75 6e 6e | in.a.zone.is.permitted..All.tunn |
| d3da0 | 65 6c 20 73 65 73 73 69 6f 6e 73 20 63 61 6e 20 62 65 20 63 68 65 63 6b 65 64 20 76 69 61 3a 00 | el.sessions.can.be.checked.via:. |
| d3dc0 | 41 6c 6c 2d 41 63 74 69 76 65 20 4d 75 6c 74 69 68 6f 6d 69 6e 67 20 69 73 20 75 73 65 64 20 66 | All-Active.Multihoming.is.used.f |
| d3de0 | 6f 72 20 72 65 64 75 6e 64 61 6e 63 79 20 61 6e 64 20 6c 6f 61 64 20 73 68 61 72 69 6e 67 2e 20 | or.redundancy.and.load.sharing.. |
| d3e00 | 53 65 72 76 65 72 73 20 61 72 65 20 61 74 74 61 63 68 65 64 20 74 6f 20 74 77 6f 20 6f 72 20 6d | Servers.are.attached.to.two.or.m |
| d3e20 | 6f 72 65 20 50 45 73 20 61 6e 64 20 74 68 65 20 6c 69 6e 6b 73 20 61 72 65 20 62 6f 6e 64 65 64 | ore.PEs.and.the.links.are.bonded |
| d3e40 | 20 28 6c 69 6e 6b 2d 61 67 67 72 65 67 61 74 69 6f 6e 29 2e 20 54 68 69 73 20 67 72 6f 75 70 20 | .(link-aggregation)..This.group. |
| d3e60 | 6f 66 20 73 65 72 76 65 72 20 6c 69 6e 6b 73 20 69 73 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 | of.server.links.is.referred.to.a |
| d3e80 | 73 20 61 6e 20 3a 61 62 62 72 3a 60 45 53 20 28 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 | s.an.:abbr:`ES.(Ethernet.Segment |
| d3ea0 | 29 60 2e 00 41 6c 6c 6f 63 61 74 69 6f 6e 20 63 6c 69 65 6e 74 73 20 69 70 20 61 64 64 72 65 73 | )`..Allocation.clients.ip.addres |
| d3ec0 | 73 65 73 20 62 79 20 52 41 44 49 55 53 00 41 6c 6c 6f 77 20 60 60 73 73 68 60 60 20 64 79 6e 61 | ses.by.RADIUS.Allow.``ssh``.dyna |
| d3ee0 | 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 2e 00 41 6c 6c 6f 77 20 61 63 63 65 73 73 20 74 6f 20 | mic-protection..Allow.access.to. |
| d3f00 | 73 69 74 65 73 20 69 6e 20 61 20 64 6f 6d 61 69 6e 20 77 69 74 68 6f 75 74 20 72 65 74 72 69 65 | sites.in.a.domain.without.retrie |
| d3f20 | 76 69 6e 67 20 74 68 65 6d 20 66 72 6f 6d 20 74 68 65 20 50 72 6f 78 79 20 63 61 63 68 65 2e 20 | ving.them.from.the.Proxy.cache.. |
| d3f40 | 53 70 65 63 69 66 79 69 6e 67 20 22 76 79 6f 73 2e 6e 65 74 22 20 77 69 6c 6c 20 61 6c 6c 6f 77 | Specifying."vyos.net".will.allow |
| d3f60 | 20 61 63 63 65 73 73 20 74 6f 20 76 79 6f 73 2e 6e 65 74 20 62 75 74 20 74 68 65 20 70 61 67 65 | .access.to.vyos.net.but.the.page |
| d3f80 | 73 20 61 63 63 65 73 73 65 64 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 63 61 63 68 65 64 2e 20 49 | s.accessed.will.not.be.cached..I |
| d3fa0 | 74 20 75 73 65 66 75 6c 20 66 6f 72 20 77 6f 72 6b 69 6e 67 20 61 72 6f 75 6e 64 20 70 72 6f 62 | t.useful.for.working.around.prob |
| d3fc0 | 6c 65 6d 73 20 77 69 74 68 20 22 49 66 2d 4d 6f 64 69 66 69 65 64 2d 53 69 6e 63 65 22 20 63 68 | lems.with."If-Modified-Since".ch |
| d3fe0 | 65 63 6b 69 6e 67 20 61 74 20 63 65 72 74 61 69 6e 20 73 69 74 65 73 2e 00 41 6c 6c 6f 77 20 62 | ecking.at.certain.sites..Allow.b |
| d4000 | 67 70 20 74 6f 20 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 65 78 74 65 6e 64 65 64 2d 6e 65 78 | gp.to.negotiate.the.extended-nex |
| d4020 | 74 68 6f 70 20 63 61 70 61 62 69 6c 69 74 79 20 77 69 74 68 20 69 74 e2 80 99 73 20 70 65 65 72 | thop.capability.with.it...s.peer |
| d4040 | 2e 20 49 66 20 79 6f 75 20 61 72 65 20 70 65 65 72 69 6e 67 20 6f 76 65 72 20 61 20 49 50 76 36 | ..If.you.are.peering.over.a.IPv6 |
| d4060 | 20 4c 69 6e 6b 2d 4c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 74 68 65 6e 20 74 68 69 73 20 63 61 | .Link-Local.address.then.this.ca |
| d4080 | 70 61 62 69 6c 69 74 79 20 69 73 20 74 75 72 6e 65 64 20 6f 6e 20 61 75 74 6f 6d 61 74 69 63 61 | pability.is.turned.on.automatica |
| d40a0 | 6c 6c 79 2e 20 49 66 20 79 6f 75 20 61 72 65 20 70 65 65 72 69 6e 67 20 6f 76 65 72 20 61 20 49 | lly..If.you.are.peering.over.a.I |
| d40c0 | 50 76 36 20 47 6c 6f 62 61 6c 20 41 64 64 72 65 73 73 20 74 68 65 6e 20 74 75 72 6e 69 6e 67 20 | Pv6.Global.Address.then.turning. |
| d40e0 | 6f 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 61 6c 6c 6f 77 20 42 47 50 20 74 | on.this.command.will.allow.BGP.t |
| d4100 | 6f 20 69 6e 73 74 61 6c 6c 20 49 50 76 34 20 72 6f 75 74 65 73 20 77 69 74 68 20 49 50 76 36 20 | o.install.IPv4.routes.with.IPv6. |
| d4120 | 6e 65 78 74 68 6f 70 73 20 69 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 68 61 76 65 20 49 50 76 34 | nexthops.if.you.do.not.have.IPv4 |
| d4140 | 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 2e 00 41 6c 6c 6f 77 | .configured.on.interfaces..Allow |
| d4160 | 20 63 72 6f 73 73 2d 6f 72 69 67 69 6e 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 60 3c 6f 72 | .cross-origin.requests.from.`<or |
| d4180 | 69 67 69 6e 3e 60 2e 00 41 6c 6c 6f 77 20 65 78 70 6c 69 63 69 74 20 49 50 76 36 20 61 64 64 72 | igin>`..Allow.explicit.IPv6.addr |
| d41a0 | 65 73 73 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 41 6c 6c 6f 77 20 68 6f 73 | ess.for.the.interface..Allow.hos |
| d41c0 | 74 20 6e 65 74 77 6f 72 6b 69 6e 67 20 69 6e 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 20 54 68 65 | t.networking.in.a.container..The |
| d41e0 | 20 6e 65 74 77 6f 72 6b 20 73 74 61 63 6b 20 6f 66 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 | .network.stack.of.the.container. |
| d4200 | 69 73 20 6e 6f 74 20 69 73 6f 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 68 6f 73 74 20 61 6e | is.not.isolated.from.the.host.an |
| d4220 | 64 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 68 6f 73 74 20 49 50 2e 00 41 6c 6c 6f 77 20 6c 69 | d.will.use.the.host.IP..Allow.li |
| d4240 | 73 74 69 6e 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 63 75 73 74 6f 6d 20 64 6f 6d 61 69 6e 73 20 | sting.additional.custom.domains. |
| d4260 | 74 6f 20 62 65 20 62 72 6f 77 73 65 64 20 28 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 | to.be.browsed.(in.addition.to.th |
| d4280 | 65 20 64 65 66 61 75 6c 74 20 60 60 6c 6f 63 61 6c 60 60 29 20 73 6f 20 74 68 61 74 20 74 68 65 | e.default.``local``).so.that.the |
| d42a0 | 79 20 63 61 6e 20 62 65 20 72 65 66 6c 65 63 74 65 64 2e 00 41 6c 6c 6f 77 20 74 68 69 73 20 42 | y.can.be.reflected..Allow.this.B |
| d42c0 | 46 44 20 70 65 65 72 20 74 6f 20 6e 6f 74 20 62 65 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 | FD.peer.to.not.be.directly.conne |
| d42e0 | 63 74 65 64 00 41 6c 6c 6f 77 65 64 20 76 61 6c 75 65 73 20 66 70 72 20 54 43 50 20 66 6c 61 67 | cted.Allowed.values.fpr.TCP.flag |
| d4300 | 73 3a 20 60 60 53 59 4e 60 60 2c 20 60 60 41 43 4b 60 60 2c 20 60 60 46 49 4e 60 60 2c 20 60 60 | s:.``SYN``,.``ACK``,.``FIN``,.`` |
| d4320 | 52 53 54 60 60 2c 20 60 60 55 52 47 60 60 2c 20 60 60 50 53 48 60 60 2c 20 60 60 41 4c 4c 60 60 | RST``,.``URG``,.``PSH``,.``ALL`` |
| d4340 | 20 57 68 65 6e 20 73 70 65 63 69 66 79 69 6e 67 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 66 | .When.specifying.more.than.one.f |
| d4360 | 6c 61 67 2c 20 66 6c 61 67 73 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6d 6d 61 20 73 65 70 61 72 | lag,.flags.should.be.comma.separ |
| d4380 | 61 74 65 64 2e 20 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 20 74 68 65 20 73 65 6c 65 63 | ated..The.``!``.negate.the.selec |
| d43a0 | 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 41 6c 6c 6f 77 65 64 20 76 61 6c 75 65 73 20 66 70 72 | ted.protocol..Allowed.values.fpr |
| d43c0 | 20 54 43 50 20 66 6c 61 67 73 3a 20 60 60 61 63 6b 60 60 2c 20 60 60 63 77 72 60 60 2c 20 60 60 | .TCP.flags:.``ack``,.``cwr``,.`` |
| d43e0 | 65 63 6e 60 60 2c 20 60 60 66 69 6e 60 60 2c 20 60 60 70 73 68 60 60 2c 20 60 60 72 73 74 60 60 | ecn``,.``fin``,.``psh``,.``rst`` |
| d4400 | 2c 20 60 60 73 79 6e 60 60 20 61 6e 64 20 60 60 75 72 67 60 60 2e 20 4d 75 6c 74 69 70 6c 65 20 | ,.``syn``.and.``urg``..Multiple. |
| d4420 | 76 61 6c 75 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2c 20 61 6e 64 20 66 6f 72 20 69 6e | values.are.supported,.and.for.in |
| d4440 | 76 65 72 74 65 64 20 73 65 6c 65 63 74 69 6f 6e 20 75 73 65 20 60 60 6e 6f 74 60 60 2c 20 61 73 | verted.selection.use.``not``,.as |
| d4460 | 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 41 6c 6c 6f 77 73 20 73 70 | .shown.in.the.example..Allows.sp |
| d4480 | 65 63 69 66 69 63 20 56 4c 41 4e 20 49 44 73 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 | ecific.VLAN.IDs.to.pass.through. |
| d44a0 | 74 68 65 20 62 72 69 64 67 65 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 | the.bridge.member.interface..Thi |
| d44c0 | 73 20 63 61 6e 20 65 69 74 68 65 72 20 62 65 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 56 4c | s.can.either.be.an.individual.VL |
| d44e0 | 41 4e 20 69 64 20 6f 72 20 61 20 72 61 6e 67 65 20 6f 66 20 56 4c 41 4e 20 69 64 73 20 64 65 6c | AN.id.or.a.range.of.VLAN.ids.del |
| d4500 | 69 6d 69 74 65 64 20 62 79 20 61 20 68 79 70 68 65 6e 2e 00 41 6c 6c 6f 77 73 20 74 6f 20 64 65 | imited.by.a.hyphen..Allows.to.de |
| d4520 | 66 69 6e 65 20 55 52 4c 20 70 61 74 68 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 | fine.URL.path.matching.rules.for |
| d4540 | 20 61 20 73 70 65 63 69 66 69 63 20 73 65 72 76 69 63 65 2e 00 41 6c 6c 6f 77 73 20 79 6f 75 20 | .a.specific.service..Allows.you. |
| d4560 | 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 | to.configure.the.next-hop.interf |
| d4580 | 61 63 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 34 20 | ace.for.an.interface-based.IPv4. |
| d45a0 | 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 77 69 6c 6c | static.route..`<interface>`.will |
| d45c0 | 20 62 65 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 | .be.the.next-hop.interface.where |
| d45e0 | 20 74 72 61 66 66 69 63 20 69 73 20 72 6f 75 74 65 64 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e | .traffic.is.routed.for.the.given |
| d4600 | 20 60 3c 73 75 62 6e 65 74 3e 60 2e 00 41 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 | .`<subnet>`..Allows.you.to.confi |
| d4620 | 67 75 72 65 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 | gure.the.next-hop.interface.for. |
| d4640 | 61 6e 20 69 6e 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 36 20 73 74 61 74 69 63 20 72 | an.interface-based.IPv6.static.r |
| d4660 | 6f 75 74 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 77 69 6c 6c 20 62 65 20 74 68 65 20 | oute..`<interface>`.will.be.the. |
| d4680 | 6e 65 78 74 2d 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 72 61 66 66 69 63 | next-hop.interface.where.traffic |
| d46a0 | 20 69 73 20 72 6f 75 74 65 64 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 60 3c 73 75 62 6e 65 | .is.routed.for.the.given.`<subne |
| d46c0 | 74 3e 60 2e 00 41 6c 72 65 61 64 79 20 6c 65 61 72 6e 65 64 20 6b 6e 6f 77 6e 5f 68 6f 73 74 73 | t>`..Already.learned.known_hosts |
| d46e0 | 20 66 69 6c 65 73 20 6f 66 20 63 6c 69 65 6e 74 73 20 6e 65 65 64 20 61 6e 20 75 70 64 61 74 65 | .files.of.clients.need.an.update |
| d4700 | 20 61 73 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 77 69 6c 6c 20 63 68 61 6e 67 65 2e 00 | .as.the.public.key.will.change.. |
| d4720 | 41 6c 73 6f 2c 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 69 73 20 61 6e 20 61 | Also,.**default-action**.is.an.a |
| d4740 | 63 74 69 6f 6e 20 74 68 61 74 20 74 61 6b 65 73 20 70 6c 61 63 65 20 77 68 65 6e 65 76 65 72 20 | ction.that.takes.place.whenever. |
| d4760 | 61 20 70 61 63 6b 65 74 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 72 75 6c 65 | a.packet.does.not.match.any.rule |
| d4780 | 20 69 6e 20 69 74 27 73 20 63 68 61 69 6e 2e 20 46 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c | .in.it's.chain..For.base.chains, |
| d47a0 | 20 70 6f 73 73 69 62 6c 65 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 2a 2a 64 65 66 61 75 6c 74 2d | .possible.options.for.**default- |
| d47c0 | 61 63 74 69 6f 6e 2a 2a 20 61 72 65 20 2a 2a 61 63 63 65 70 74 2a 2a 20 6f 72 20 2a 2a 64 72 6f | action**.are.**accept**.or.**dro |
| d47e0 | 70 2a 2a 2e 00 41 6c 73 6f 2c 20 2a 2a 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 69 73 | p**..Also,.**default-action**.is |
| d4800 | 20 61 6e 20 61 63 74 69 6f 6e 20 74 68 61 74 20 74 61 6b 65 73 20 70 6c 61 63 65 20 77 68 65 6e | .an.action.that.takes.place.when |
| d4820 | 65 76 65 72 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 | ever.a.packet.does.not.match.any |
| d4840 | 20 72 75 6c 65 20 69 6e 20 69 74 73 27 20 63 68 61 69 6e 2e 20 46 6f 72 20 62 61 73 65 20 63 68 | .rule.in.its'.chain..For.base.ch |
| d4860 | 61 69 6e 73 2c 20 70 6f 73 73 69 62 6c 65 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 2a 2a 64 65 66 | ains,.possible.options.for.**def |
| d4880 | 61 75 6c 74 2d 61 63 74 69 6f 6e 2a 2a 20 61 72 65 20 2a 2a 61 63 63 65 70 74 2a 2a 20 6f 72 20 | ault-action**.are.**accept**.or. |
| d48a0 | 2a 2a 64 72 6f 70 2a 2a 2e 00 41 6c 73 6f 2c 20 66 6f 72 20 62 61 63 6b 77 61 72 64 73 20 63 6f | **drop**..Also,.for.backwards.co |
| d48c0 | 6d 70 61 74 69 62 69 6c 69 74 79 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 | mpatibility.this.configuration,. |
| d48e0 | 77 68 69 63 68 20 75 73 65 73 20 67 65 6e 65 72 69 63 20 69 6e 74 65 72 66 61 63 65 20 64 65 66 | which.uses.generic.interface.def |
| d4900 | 69 6e 69 74 69 6f 6e 2c 20 69 73 20 73 74 69 6c 6c 20 76 61 6c 69 64 3a 00 41 6c 73 6f 2c 20 66 | inition,.is.still.valid:.Also,.f |
| d4920 | 6f 72 20 74 68 6f 73 65 20 77 68 6f 20 68 61 76 65 6e 27 74 20 75 70 64 61 74 65 64 20 74 6f 20 | or.those.who.haven't.updated.to. |
| d4940 | 6e 65 77 65 72 20 76 65 72 73 69 6f 6e 2c 20 6c 65 67 61 63 79 20 64 6f 63 75 6d 65 6e 74 61 74 | newer.version,.legacy.documentat |
| d4960 | 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 70 72 65 73 65 6e 74 20 61 6e 64 20 76 61 6c 69 64 20 66 | ion.is.still.present.and.valid.f |
| d4980 | 6f 72 20 61 6c 6c 20 73 61 67 69 74 74 61 20 76 65 72 73 69 6f 6e 20 70 72 69 6f 72 20 74 6f 20 | or.all.sagitta.version.prior.to. |
| d49a0 | 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 3a 00 41 | VyOS.1.4-rolling-202308040557:.A |
| d49c0 | 6c 73 6f 2c 20 69 66 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 | lso,.if.action.is.set.to.``queue |
| d49e0 | 60 60 2c 20 75 73 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 | ``,.use.next.command.to.specify. |
| d4a00 | 74 68 65 20 71 75 65 75 65 20 6f 70 74 69 6f 6e 73 2e 20 50 6f 73 73 69 62 6c 65 20 6f 70 74 69 | the.queue.options..Possible.opti |
| d4a20 | 6f 6e 73 20 61 72 65 20 60 60 62 79 70 61 73 73 60 60 20 61 6e 64 20 60 60 66 61 6e 6f 75 74 60 | ons.are.``bypass``.and.``fanout` |
| d4a40 | 60 3a 00 41 6c 73 6f 2c 20 69 6e 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 | `:.Also,.in.:ref:`destination-na |
| d4a60 | 74 60 2c 20 72 65 64 69 72 65 63 74 69 6f 6e 20 74 6f 20 6c 6f 63 61 6c 68 6f 73 74 20 69 73 20 | t`,.redirection.to.localhost.is. |
| d4a80 | 73 75 70 70 6f 72 74 65 64 2e 20 54 68 65 20 72 65 64 69 72 65 63 74 20 73 74 61 74 65 6d 65 6e | supported..The.redirect.statemen |
| d4aa0 | 74 20 69 73 20 61 20 73 70 65 63 69 61 6c 20 66 6f 72 6d 20 6f 66 20 64 6e 61 74 20 77 68 69 63 | t.is.a.special.form.of.dnat.whic |
| d4ac0 | 68 20 61 6c 77 61 79 73 20 74 72 61 6e 73 6c 61 74 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 | h.always.translates.the.destinat |
| d4ae0 | 69 6f 6e 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 68 6f 73 74 e2 80 99 | ion.address.to.the.local.host... |
| d4b00 | 73 20 6f 6e 65 2e 00 41 6c 73 6f 2c 20 73 70 65 63 69 66 69 63 20 74 69 6d 65 6f 75 74 20 63 61 | s.one..Also,.specific.timeout.ca |
| d4b20 | 6e 20 62 65 20 64 65 66 69 6e 65 64 20 70 65 72 20 72 75 6c 65 2e 20 49 6e 20 63 61 73 65 20 72 | n.be.defined.per.rule..In.case.r |
| d4b40 | 75 6c 65 20 67 65 74 73 20 61 20 68 69 74 2c 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e | ule.gets.a.hit,.source.or.destin |
| d4b60 | 61 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 64 64 65 64 20 | atination.address.will.be.added. |
| d4b80 | 74 6f 20 74 68 65 20 67 72 6f 75 70 2c 20 61 6e 64 20 74 68 69 73 20 65 6c 65 6d 65 6e 74 20 77 | to.the.group,.and.this.element.w |
| d4ba0 | 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 74 69 | ill.remain.in.the.group.until.ti |
| d4bc0 | 6d 65 6f 75 74 20 65 78 70 69 72 65 73 2e 20 49 66 20 6e 6f 20 74 69 6d 65 6f 75 74 20 69 73 20 | meout.expires..If.no.timeout.is. |
| d4be0 | 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 65 6c 65 6d 65 6e 74 20 77 69 6c 6c 20 72 | defined,.then.the.element.will.r |
| d4c00 | 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 6c 20 6e 65 78 74 20 72 65 | emain.in.the.group.until.next.re |
| d4c20 | 62 6f 6f 74 2c 20 6f 72 20 75 6e 74 69 6c 20 61 20 6e 65 77 20 63 6f 6d 6d 69 74 20 74 68 61 74 | boot,.or.until.a.new.commit.that |
| d4c40 | 20 63 68 61 6e 67 65 73 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | .changes.firewall.configuration. |
| d4c60 | 69 73 20 64 6f 6e 65 2e 00 41 6c 73 6f 2c 20 73 70 65 63 69 66 69 63 20 74 69 6d 65 6f 75 74 73 | is.done..Also,.specific.timeouts |
| d4c80 | 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 70 65 72 20 72 75 6c 65 2e 20 49 6e 20 63 61 73 | .can.be.defined.per.rule..In.cas |
| d4ca0 | 65 20 72 75 6c 65 20 67 65 74 73 20 61 20 68 69 74 2c 20 61 20 73 6f 75 72 63 65 20 6f 72 20 64 | e.rule.gets.a.hit,.a.source.or.d |
| d4cc0 | 65 73 74 69 6e 61 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 | estinatination.address.will.be.a |
| d4ce0 | 64 64 65 64 20 74 6f 20 74 68 65 20 67 72 6f 75 70 2c 20 61 6e 64 20 74 68 69 73 20 65 6c 65 6d | dded.to.the.group,.and.this.elem |
| d4d00 | 65 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 | ent.will.remain.in.the.group.unt |
| d4d20 | 69 6c 20 74 68 65 20 74 69 6d 65 6f 75 74 20 65 78 70 69 72 65 73 2e 20 49 66 20 6e 6f 20 74 69 | il.the.timeout.expires..If.no.ti |
| d4d40 | 6d 65 6f 75 74 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 74 68 65 20 65 6c 65 6d 65 | meout.is.defined,.then.the.eleme |
| d4d60 | 6e 74 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 69 6e 20 74 68 65 20 67 72 6f 75 70 20 75 6e 74 69 | nt.will.remain.in.the.group.unti |
| d4d80 | 6c 20 6e 65 78 74 20 72 65 62 6f 6f 74 2c 20 6f 72 20 75 6e 74 69 6c 20 61 20 6e 65 77 20 63 6f | l.next.reboot,.or.until.a.new.co |
| d4da0 | 6d 6d 69 74 20 74 68 61 74 20 63 68 61 6e 67 65 73 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 | mmit.that.changes.firewall.confi |
| d4dc0 | 67 75 72 61 74 69 6f 6e 20 69 73 20 64 6f 6e 65 2e 00 41 6c 74 65 72 6e 61 74 65 20 52 6f 75 74 | guration.is.done..Alternate.Rout |
| d4de0 | 69 6e 67 20 54 61 62 6c 65 73 00 41 6c 74 65 72 6e 61 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 | ing.Tables.Alternate.routing.tab |
| d4e00 | 6c 65 73 20 61 72 65 20 75 73 65 64 20 77 69 74 68 20 70 6f 6c 69 63 79 20 62 61 73 65 64 20 72 | les.are.used.with.policy.based.r |
| d4e20 | 6f 75 74 69 6e 67 20 62 79 20 75 74 69 6c 69 7a 69 6e 67 20 3a 72 65 66 3a 60 76 72 66 60 2e 00 | outing.by.utilizing.:ref:`vrf`.. |
| d4e40 | 41 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 | Alternative.to.multicast,.the.re |
| d4e60 | 6d 6f 74 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 | mote.IPv4.address.of.the.VXLAN.t |
| d4e80 | 75 6e 6e 65 6c 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 72 65 63 74 6c 79 2e 20 4c 65 74 27 73 | unnel.can.be.set.directly..Let's |
| d4ea0 | 20 63 68 61 6e 67 65 20 74 68 65 20 4d 75 6c 74 69 63 61 73 74 20 65 78 61 6d 70 6c 65 20 66 72 | .change.the.Multicast.example.fr |
| d4ec0 | 6f 6d 20 61 62 6f 76 65 3a 00 41 6c 74 65 72 6e 61 74 69 76 65 6c 79 20 74 6f 20 6d 75 6c 74 69 | om.above:.Alternatively.to.multi |
| d4ee0 | 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 | cast,.the.remote.IPv4.address.of |
| d4f00 | 20 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 72 | .the.VXLAN.tunnel.can.be.set.dir |
| d4f20 | 65 63 74 6c 79 2e 20 4c 65 74 27 73 20 63 68 61 6e 67 65 20 74 68 65 20 4d 75 6c 74 69 63 61 73 | ectly..Let's.change.the.Multicas |
| d4f40 | 74 20 65 78 61 6d 70 6c 65 20 66 72 6f 6d 20 61 62 6f 76 65 3a 00 41 6c 77 61 79 73 20 65 78 63 | t.example.from.above:.Always.exc |
| d4f60 | 6c 75 64 65 20 74 68 69 73 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 61 6e 79 20 64 65 66 69 6e | lude.this.address.from.any.defin |
| d4f80 | 65 64 20 72 61 6e 67 65 2e 20 54 68 69 73 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 6e 65 76 65 | ed.range..This.address.will.neve |
| d4fa0 | 72 20 62 65 20 61 73 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 | r.be.assigned.by.the.DHCP.server |
| d4fc0 | 2e 00 41 6e 20 2a 2a 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2a 2a 20 72 65 70 72 65 73 65 | ..An.**interface.group**.represe |
| d4fe0 | 6e 74 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2e 00 | nts.a.collection.of.interfaces.. |
| d5000 | 41 6e 20 41 53 20 69 73 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 67 72 6f 75 70 20 6f 66 20 6f 6e | An.AS.is.a.connected.group.of.on |
| d5020 | 65 20 6f 72 20 6d 6f 72 65 20 49 50 20 70 72 65 66 69 78 65 73 20 72 75 6e 20 62 79 20 6f 6e 65 | e.or.more.IP.prefixes.run.by.one |
| d5040 | 20 6f 72 20 6d 6f 72 65 20 6e 65 74 77 6f 72 6b 20 6f 70 65 72 61 74 6f 72 73 20 77 68 69 63 68 | .or.more.network.operators.which |
| d5060 | 20 68 61 73 20 61 20 53 49 4e 47 4c 45 20 61 6e 64 20 43 4c 45 41 52 4c 59 20 44 45 46 49 4e 45 | .has.a.SINGLE.and.CLEARLY.DEFINE |
| d5080 | 44 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 2e 00 41 6e 20 45 74 68 65 72 6e 65 74 20 53 65 | D.routing.policy..An.Ethernet.Se |
| d50a0 | 67 6d 65 6e 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 62 79 20 73 70 65 63 69 | gment.can.be.configured.by.speci |
| d50c0 | 66 79 69 6e 67 20 61 20 73 79 73 74 65 6d 2d 4d 41 43 20 61 6e 64 20 61 20 6c 6f 63 61 6c 20 64 | fying.a.system-MAC.and.a.local.d |
| d50e0 | 69 73 63 72 69 6d 69 6e 61 74 6f 72 20 6f 72 20 61 20 63 6f 6d 70 6c 65 74 65 20 45 53 49 4e 41 | iscriminator.or.a.complete.ESINA |
| d5100 | 4d 45 20 61 67 61 69 6e 73 74 20 74 68 65 20 62 6f 6e 64 20 69 6e 74 65 72 66 61 63 65 20 6f 6e | ME.against.the.bond.interface.on |
| d5120 | 20 74 68 65 20 50 45 2e 00 41 6e 20 49 50 76 34 20 54 43 50 20 66 69 6c 74 65 72 20 77 69 6c 6c | .the.PE..An.IPv4.TCP.filter.will |
| d5140 | 20 6f 6e 6c 79 20 6d 61 74 63 68 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 61 6e 20 49 50 76 34 | .only.match.packets.with.an.IPv4 |
| d5160 | 20 68 65 61 64 65 72 20 6c 65 6e 67 74 68 20 6f 66 20 32 30 20 62 79 74 65 73 20 28 77 68 69 63 | .header.length.of.20.bytes.(whic |
| d5180 | 68 20 69 73 20 74 68 65 20 6d 61 6a 6f 72 69 74 79 20 6f 66 20 49 50 76 34 20 70 61 63 6b 65 74 | h.is.the.majority.of.IPv4.packet |
| d51a0 | 73 20 61 6e 79 77 61 79 29 2e 00 41 6e 20 53 4e 4d 50 2d 6d 61 6e 61 67 65 64 20 6e 65 74 77 6f | s.anyway)..An.SNMP-managed.netwo |
| d51c0 | 72 6b 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 74 68 72 65 65 20 6b 65 79 20 63 6f 6d 70 6f 6e 65 | rk.consists.of.three.key.compone |
| d51e0 | 6e 74 73 3a 00 41 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 73 70 65 63 69 66 79 69 6e 67 | nts:.An.`<interface>`.specifying |
| d5200 | 20 77 68 69 63 68 20 73 6c 61 76 65 20 69 73 20 74 68 65 20 70 72 69 6d 61 72 79 20 64 65 76 69 | .which.slave.is.the.primary.devi |
| d5220 | 63 65 2e 20 54 68 65 20 73 70 65 63 69 66 69 65 64 20 64 65 76 69 63 65 20 77 69 6c 6c 20 61 6c | ce..The.specified.device.will.al |
| d5240 | 77 61 79 73 20 62 65 20 74 68 65 20 61 63 74 69 76 65 20 73 6c 61 76 65 20 77 68 69 6c 65 20 69 | ways.be.the.active.slave.while.i |
| d5260 | 74 20 69 73 20 61 76 61 69 6c 61 62 6c 65 2e 20 4f 6e 6c 79 20 77 68 65 6e 20 74 68 65 20 70 72 | t.is.available..Only.when.the.pr |
| d5280 | 69 6d 61 72 79 20 69 73 20 6f 66 66 2d 6c 69 6e 65 20 77 69 6c 6c 20 61 6c 74 65 72 6e 61 74 65 | imary.is.off-line.will.alternate |
| d52a0 | 20 64 65 76 69 63 65 73 20 62 65 20 75 73 65 64 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c | .devices.be.used..This.is.useful |
| d52c0 | 20 77 68 65 6e 20 6f 6e 65 20 73 6c 61 76 65 20 69 73 20 70 72 65 66 65 72 72 65 64 20 6f 76 65 | .when.one.slave.is.preferred.ove |
| d52e0 | 72 20 61 6e 6f 74 68 65 72 2c 20 65 2e 67 2e 2c 20 77 68 65 6e 20 6f 6e 65 20 73 6c 61 76 65 20 | r.another,.e.g.,.when.one.slave. |
| d5300 | 68 61 73 20 68 69 67 68 65 72 20 74 68 72 6f 75 67 68 70 75 74 20 74 68 61 6e 20 61 6e 6f 74 68 | has.higher.throughput.than.anoth |
| d5320 | 65 72 2e 00 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 | er..An.additional.layer.of.symme |
| d5340 | 74 72 69 63 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 | tric-key.crypto.can.be.used.on.t |
| d5360 | 6f 70 20 6f 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f 2e 00 41 6e 20 | op.of.the.asymmetric.crypto..An. |
| d5380 | 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 | additional.layer.of.symmetric-ke |
| d53a0 | 79 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 | y.crypto.can.be.used.on.top.of.t |
| d53c0 | 68 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f 2e 20 54 68 69 73 20 63 6f 6d 6d 61 | he.asymmetric.crypto..This.comma |
| d53e0 | 6e 64 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 73 20 66 6f 72 20 79 6f 75 | nd.automatically.creates.for.you |
| d5400 | 20 74 68 65 20 72 65 71 75 69 72 65 64 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 | .the.required.CLI.command.to.ins |
| d5420 | 74 61 6c 6c 20 74 68 69 73 20 50 53 4b 20 66 6f 72 20 61 20 67 69 76 65 6e 20 70 65 65 72 2e 00 | tall.this.PSK.for.a.given.peer.. |
| d5440 | 41 6e 20 61 64 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 | An.additional.layer.of.symmetric |
| d5460 | 2d 6b 65 79 20 63 72 79 70 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f | -key.crypto.can.be.used.on.top.o |
| d5480 | 66 20 74 68 65 20 61 73 79 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f 2e 20 54 68 69 73 20 63 6f | f.the.asymmetric.crypto..This.co |
| d54a0 | 6d 6d 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 73 20 74 68 65 20 | mmand.automatically.creates.the. |
| d54c0 | 72 65 71 75 69 72 65 64 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 | required.CLI.command.to.install. |
| d54e0 | 74 68 69 73 20 50 53 4b 20 66 6f 72 20 61 20 67 69 76 65 6e 20 70 65 65 72 2e 00 41 6e 20 61 64 | this.PSK.for.a.given.peer..An.ad |
| d5500 | 64 69 74 69 6f 6e 61 6c 20 6c 61 79 65 72 20 6f 66 20 73 79 6d 6d 65 74 72 69 63 2d 6b 65 79 20 | ditional.layer.of.symmetric-key. |
| d5520 | 63 72 79 70 74 6f 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 20 74 68 65 | crypto.can.be.used.on.top.of.the |
| d5540 | 20 61 73 79 6d 6d 65 74 72 69 63 20 63 72 79 70 74 6f 2e 20 54 68 69 73 20 69 73 20 6f 70 74 69 | .asymmetric.crypto..This.is.opti |
| d5560 | 6f 6e 61 6c 2e 00 41 6e 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 73 63 68 65 6d | onal..An.advantage.of.this.schem |
| d5580 | 65 20 69 73 20 74 68 61 74 20 79 6f 75 20 67 65 74 20 61 20 72 65 61 6c 20 69 6e 74 65 72 66 61 | e.is.that.you.get.a.real.interfa |
| d55a0 | 63 65 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d | ce.with.its.own.address,.which.m |
| d55c0 | 61 6b 65 73 20 69 74 20 65 61 73 69 65 72 20 74 6f 20 73 65 74 75 70 20 73 74 61 74 69 63 20 72 | akes.it.easier.to.setup.static.r |
| d55e0 | 6f 75 74 65 73 20 6f 72 20 75 73 65 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f | outes.or.use.dynamic.routing.pro |
| d5600 | 74 6f 63 6f 6c 73 20 77 69 74 68 6f 75 74 20 68 61 76 69 6e 67 20 74 6f 20 6d 6f 64 69 66 79 20 | tocols.without.having.to.modify. |
| d5620 | 49 50 73 65 63 20 70 6f 6c 69 63 69 65 73 2e 20 54 68 65 20 6f 74 68 65 72 20 61 64 76 61 6e 74 | IPsec.policies..The.other.advant |
| d5640 | 61 67 65 20 69 73 20 74 68 61 74 20 69 74 20 67 72 65 61 74 6c 79 20 73 69 6d 70 6c 69 66 69 65 | age.is.that.it.greatly.simplifie |
| d5660 | 73 20 72 6f 75 74 65 72 20 74 6f 20 72 6f 75 74 65 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e | s.router.to.router.communication |
| d5680 | 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 74 72 69 63 6b 79 20 77 69 74 68 20 70 6c 61 69 6e | ,.which.can.be.tricky.with.plain |
| d56a0 | 20 49 50 73 65 63 20 62 65 63 61 75 73 65 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6f 75 74 67 | .IPsec.because.the.external.outg |
| d56c0 | 6f 69 6e 67 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 75 73 75 61 6c | oing.address.of.the.router.usual |
| d56e0 | 6c 79 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 74 68 65 20 49 50 73 65 63 20 70 6f 6c 69 63 | ly.doesn't.match.the.IPsec.polic |
| d5700 | 79 20 6f 66 20 61 20 74 79 70 69 63 61 6c 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 73 65 74 75 | y.of.a.typical.site-to-site.setu |
| d5720 | 70 20 61 6e 64 20 79 6f 75 20 77 6f 75 6c 64 20 6e 65 65 64 20 74 6f 20 61 64 64 20 73 70 65 63 | p.and.you.would.need.to.add.spec |
| d5740 | 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 69 74 2c 20 6f 72 20 61 64 6a | ial.configuration.for.it,.or.adj |
| d5760 | 75 73 74 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6f 75 | ust.the.source.address.of.the.ou |
| d5780 | 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 6f 66 20 79 6f 75 72 20 61 70 70 6c 69 63 61 74 69 | tgoing.traffic.of.your.applicati |
| d57a0 | 6f 6e 73 2e 20 47 52 45 2f 49 50 73 65 63 20 68 61 73 20 6e 6f 20 73 75 63 68 20 70 72 6f 62 6c | ons..GRE/IPsec.has.no.such.probl |
| d57c0 | 65 6d 20 61 6e 64 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 74 72 61 6e 73 70 61 72 65 6e 74 | em.and.is.completely.transparent |
| d57e0 | 20 66 6f 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 41 6e 20 61 64 76 61 6e 74 61 67 65 20 | .for.applications..An.advantage. |
| d5800 | 6f 66 20 74 68 69 73 20 73 63 68 65 6d 65 20 69 73 20 74 68 61 74 20 79 6f 75 20 67 65 74 20 61 | of.this.scheme.is.that.you.get.a |
| d5820 | 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 64 | .real.interface.with.its.own.add |
| d5840 | 72 65 73 73 2c 20 77 68 69 63 68 20 6d 61 6b 65 73 20 69 74 20 65 61 73 69 65 72 20 74 6f 20 73 | ress,.which.makes.it.easier.to.s |
| d5860 | 65 74 75 70 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 6f 72 20 75 73 65 20 64 79 6e 61 6d 69 | etup.static.routes.or.use.dynami |
| d5880 | 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 77 69 74 68 6f 75 74 20 68 61 76 69 | c.routing.protocols.without.havi |
| d58a0 | 6e 67 20 74 6f 20 6d 6f 64 69 66 79 20 49 50 73 65 63 20 70 6f 6c 69 63 69 65 73 2e 20 54 68 65 | ng.to.modify.IPsec.policies..The |
| d58c0 | 20 6f 74 68 65 72 20 61 64 76 61 6e 74 61 67 65 20 69 73 20 74 68 61 74 20 69 74 20 67 72 65 61 | .other.advantage.is.that.it.grea |
| d58e0 | 74 6c 79 20 73 69 6d 70 6c 69 66 69 65 73 20 72 6f 75 74 65 72 20 74 6f 20 72 6f 75 74 65 72 20 | tly.simplifies.router.to.router. |
| d5900 | 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 74 72 69 63 | communication,.which.can.be.tric |
| d5920 | 6b 79 20 77 69 74 68 20 70 6c 61 69 6e 20 49 50 73 65 63 20 62 65 63 61 75 73 65 20 74 68 65 20 | ky.with.plain.IPsec.because.the. |
| d5940 | 65 78 74 65 72 6e 61 6c 20 6f 75 74 67 6f 69 6e 67 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 | external.outgoing.address.of.the |
| d5960 | 20 72 6f 75 74 65 72 20 75 73 75 61 6c 6c 79 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 74 68 | .router.usually.doesn't.match.th |
| d5980 | 65 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6f 66 20 74 79 70 69 63 61 6c 20 73 69 74 65 2d 74 | e.IPsec.policy.of.typical.site-t |
| d59a0 | 6f 2d 73 69 74 65 20 73 65 74 75 70 20 61 6e 64 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 61 64 64 | o-site.setup.and.you.need.to.add |
| d59c0 | 20 73 70 65 63 69 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 69 74 2c 20 6f | .special.configuration.for.it,.o |
| d59e0 | 72 20 61 64 6a 75 73 74 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 | r.adjust.the.source.address.for. |
| d5a00 | 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 6f 66 20 79 6f 75 72 20 61 70 70 6c 69 63 61 | outgoing.traffic.of.your.applica |
| d5a20 | 74 69 6f 6e 73 2e 20 47 52 45 2f 49 50 73 65 63 20 68 61 73 20 6e 6f 20 73 75 63 68 20 70 72 6f | tions..GRE/IPsec.has.no.such.pro |
| d5a40 | 62 6c 65 6d 20 61 6e 64 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 74 72 61 6e 73 70 61 72 65 | blem.and.is.completely.transpare |
| d5a60 | 6e 74 20 66 6f 72 20 74 68 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 41 6e 20 61 67 65 6e | nt.for.the.applications..An.agen |
| d5a80 | 74 20 69 73 20 61 20 6e 65 74 77 6f 72 6b 2d 6d 61 6e 61 67 65 6d 65 6e 74 20 73 6f 66 74 77 61 | t.is.a.network-management.softwa |
| d5aa0 | 72 65 20 6d 6f 64 75 6c 65 20 74 68 61 74 20 72 65 73 69 64 65 73 20 6f 6e 20 61 20 6d 61 6e 61 | re.module.that.resides.on.a.mana |
| d5ac0 | 67 65 64 20 64 65 76 69 63 65 2e 20 41 6e 20 61 67 65 6e 74 20 68 61 73 20 6c 6f 63 61 6c 20 6b | ged.device..An.agent.has.local.k |
| d5ae0 | 6e 6f 77 6c 65 64 67 65 20 6f 66 20 6d 61 6e 61 67 65 6d 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 | nowledge.of.management.informati |
| d5b00 | 6f 6e 20 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 74 68 61 74 20 69 6e 66 6f 72 6d 61 74 69 | on.and.translates.that.informati |
| d5b20 | 6f 6e 20 74 6f 20 6f 72 20 66 72 6f 6d 20 61 6e 20 53 4e 4d 50 2d 73 70 65 63 69 66 69 63 20 66 | on.to.or.from.an.SNMP-specific.f |
| d5b40 | 6f 72 6d 2e 00 41 6e 20 61 6c 74 65 72 6e 61 74 65 20 63 6f 6d 6d 61 6e 64 20 63 6f 75 6c 64 20 | orm..An.alternate.command.could. |
| d5b60 | 62 65 20 22 6d 70 6c 73 2d 74 65 20 6f 6e 22 20 28 54 72 61 66 66 69 63 20 45 6e 67 69 6e 65 65 | be."mpls-te.on".(Traffic.Enginee |
| d5b80 | 72 69 6e 67 29 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 | ring).An.arbitrary.netmask.can.b |
| d5ba0 | 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f | e.applied.to.mask.addresses.to.o |
| d5bc0 | 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 | nly.match.against.a.specific.por |
| d5be0 | 74 69 6f 6e 2e 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 | tion..An.arbitrary.netmask.can.b |
| d5c00 | 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f | e.applied.to.mask.addresses.to.o |
| d5c20 | 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 | nly.match.against.a.specific.por |
| d5c40 | 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 | tion..This.is.particularly.usefu |
| d5c60 | 6c 20 77 69 74 68 20 49 50 76 36 20 61 6e 64 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 | l.with.IPv6.and.a.zone-based.fir |
| d5c80 | 65 77 61 6c 6c 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 | ewall.as.rules.will.remain.valid |
| d5ca0 | 20 69 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 | .if.the.IPv6.prefix.changes.and. |
| d5cc0 | 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 | the.host.portion.of.systems.IPv6 |
| d5ce0 | 20 61 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c | .address.is.static.(for.example, |
| d5d00 | 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 | .with.SLAAC.or.`tokenised.IPv6.a |
| d5d20 | 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 | ddresses.<https://datatracker.ie |
| d5d40 | 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 | tf.org/doc/id/draft-chown-6man-t |
| d5d60 | 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 | okenised-ipv6-identifiers-02.txt |
| d5d80 | 3e 60 5f 29 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 | >`_).An.arbitrary.netmask.can.be |
| d5da0 | 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e | .applied.to.mask.addresses.to.on |
| d5dc0 | 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 | ly.match.against.a.specific.port |
| d5de0 | 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c | ion..This.is.particularly.useful |
| d5e00 | 20 77 69 74 68 20 49 50 76 36 20 61 6e 64 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 | .with.IPv6.and.a.zone-based.fire |
| d5e20 | 77 61 6c 6c 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 6c 69 64 20 | wall.as.rules.will.remain.valid. |
| d5e40 | 69 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 20 61 6e 64 20 74 | if.the.IPv6.prefix.changes.and.t |
| d5e60 | 68 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 20 49 50 76 36 20 | he.host.portion.of.systems.IPv6. |
| d5e80 | 61 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 | address.is.static.(for.example,. |
| d5ea0 | 77 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 50 76 36 20 61 64 | with.SLAAC.or.`tokenised.IPv6.ad |
| d5ec0 | 64 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 | dresses.<https://datatracker.iet |
| d5ee0 | 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f | f.org/doc/id/draft-chown-6man-to |
| d5f00 | 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 2d 30 32 2e 74 78 74 3e | kenised-ipv6-identifiers-02.txt> |
| d5f20 | 60 5f 29 2e 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 63 61 6e 20 62 65 | `_)..An.arbitrary.netmask.can.be |
| d5f40 | 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6f 6e | .applied.to.mask.addresses.to.on |
| d5f60 | 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 | ly.match.against.a.specific.port |
| d5f80 | 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 75 73 65 66 75 6c | ion..This.is.particularly.useful |
| d5fa0 | 20 77 69 74 68 20 49 50 76 36 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 | .with.IPv6.as.rules.will.remain. |
| d5fc0 | 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 68 61 6e 67 65 73 | valid.if.the.IPv6.prefix.changes |
| d5fe0 | 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 79 73 74 65 6d 73 | .and.the.host.portion.of.systems |
| d6000 | 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 66 6f 72 20 65 78 61 | .IPv6.address.is.static.(for.exa |
| d6020 | 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e 69 73 65 64 20 49 | mple,.with.SLAAC.or.`tokenised.I |
| d6040 | 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 61 63 6b | Pv6.addresses.<https://datatrack |
| d6060 | 65 72 2e 69 65 74 66 2e 6f 72 67 20 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 68 6f 77 6e 2d | er.ietf.org./doc/id/draft-chown- |
| d6080 | 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 69 65 72 73 2d | 6man-tokenised-ipv6-identifiers- |
| d60a0 | 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e 20 61 72 62 69 74 72 61 72 79 20 6e 65 74 6d 61 73 6b 20 | 02.txt>`_).An.arbitrary.netmask. |
| d60c0 | 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6d 61 73 6b 20 61 64 64 72 65 73 73 65 73 | can.be.applied.to.mask.addresses |
| d60e0 | 20 74 6f 20 6f 6e 6c 79 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 73 70 65 63 69 66 69 | .to.only.match.against.a.specifi |
| d6100 | 63 20 70 6f 72 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 | c.portion..This.is.particularly. |
| d6120 | 75 73 65 66 75 6c 20 77 69 74 68 20 49 50 76 36 20 61 73 20 72 75 6c 65 73 20 77 69 6c 6c 20 72 | useful.with.IPv6.as.rules.will.r |
| d6140 | 65 6d 61 69 6e 20 76 61 6c 69 64 20 69 66 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 | emain.valid.if.the.IPv6.prefix.c |
| d6160 | 68 61 6e 67 65 73 20 61 6e 64 20 74 68 65 20 68 6f 73 74 20 70 6f 72 74 69 6f 6e 20 6f 66 20 73 | hanges.and.the.host.portion.of.s |
| d6180 | 79 73 74 65 6d 73 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 73 74 61 74 69 63 20 28 66 | ystems.IPv6.address.is.static.(f |
| d61a0 | 6f 72 20 65 78 61 6d 70 6c 65 2c 20 77 69 74 68 20 53 4c 41 41 43 20 6f 72 20 60 74 6f 6b 65 6e | or.example,.with.SLAAC.or.`token |
| d61c0 | 69 73 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 | ised.IPv6.addresses.<https://dat |
| d61e0 | 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 69 64 2f 64 72 61 66 74 2d 63 | atracker.ietf.org/doc/id/draft-c |
| d6200 | 68 6f 77 6e 2d 36 6d 61 6e 2d 74 6f 6b 65 6e 69 73 65 64 2d 69 70 76 36 2d 69 64 65 6e 74 69 66 | hown-6man-tokenised-ipv6-identif |
| d6220 | 69 65 72 73 2d 30 32 2e 74 78 74 3e 60 5f 29 00 41 6e 20 62 61 73 69 63 20 69 6e 74 72 6f 64 75 | iers-02.txt>`_).An.basic.introdu |
| d6240 | 63 74 69 6f 6e 20 74 6f 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 63 61 | ction.to.zone-based.firewalls.ca |
| d6260 | 6e 20 62 65 20 66 6f 75 6e 64 20 60 68 65 72 65 20 3c 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f 72 | n.be.found.`here.<https://suppor |
| d6280 | 74 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6b 62 2f 61 72 74 69 63 6c 65 73 2f 61 2d 70 72 69 6d 65 | t.vyos.io/en/kb/articles/a-prime |
| d62a0 | 72 2d 74 6f 2d 7a 6f 6e 65 2d 62 61 73 65 64 2d 66 69 72 65 77 61 6c 6c 3e 60 5f 2c 20 61 6e 64 | r-to-zone-based-firewall>`_,.and |
| d62c0 | 20 61 6e 20 65 78 61 6d 70 6c 65 20 61 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 6c 65 73 2d 7a 6f | .an.example.at.:ref:`examples-zo |
| d62e0 | 6e 65 2d 70 6f 6c 69 63 79 60 2e 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 63 6f 6e 66 | ne-policy`..An.example.of.a.conf |
| d6300 | 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 73 65 6e 64 73 20 60 60 74 65 6c 65 67 72 61 66 60 | iguration.that.sends.``telegraf` |
| d6320 | 60 20 6d 65 74 72 69 63 73 20 74 6f 20 72 65 6d 6f 74 65 20 60 60 49 6e 66 6c 75 78 44 42 20 32 | `.metrics.to.remote.``InfluxDB.2 |
| d6340 | 60 60 00 41 6e 20 65 78 61 6d 70 6c 65 20 6f 66 20 63 72 65 61 74 69 6e 67 20 61 20 56 4c 41 4e | ``.An.example.of.creating.a.VLAN |
| d6360 | 2d 61 77 61 72 65 20 62 72 69 64 67 65 20 69 73 20 61 73 20 66 6f 6c 6c 6f 77 73 3a 00 41 6e 20 | -aware.bridge.is.as.follows:.An. |
| d6380 | 65 78 61 6d 70 6c 65 20 6f 66 20 6b 65 79 20 67 65 6e 65 72 61 74 69 6f 6e 3a 00 41 6e 20 65 78 | example.of.key.generation:.An.ex |
| d63a0 | 61 6d 70 6c 65 20 6f 66 20 74 68 65 20 64 61 74 61 20 63 61 70 74 75 72 65 64 20 62 79 20 61 20 | ample.of.the.data.captured.by.a. |
| d63c0 | 46 52 45 45 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 69 74 68 20 73 71 6c 20 61 63 63 6f 75 | FREERADIUS.server.with.sql.accou |
| d63e0 | 6e 74 69 6e 67 3a 00 41 6e 20 65 78 61 6d 70 6c 65 3a 00 41 6e 20 6f 70 74 69 6f 6e 20 74 68 61 | nting:.An.example:.An.option.tha |
| d6400 | 74 20 74 61 6b 65 73 20 61 20 71 75 6f 74 65 64 20 73 74 72 69 6e 67 20 69 73 20 73 65 74 20 62 | t.takes.a.quoted.string.is.set.b |
| d6420 | 79 20 72 65 70 6c 61 63 69 6e 67 20 61 6c 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 74 65 72 73 | y.replacing.all.quote.characters |
| d6440 | 20 77 69 74 68 20 74 68 65 20 73 74 72 69 6e 67 20 60 60 26 71 75 6f 74 3b 60 60 20 69 6e 73 69 | .with.the.string.``"``.insi |
| d6460 | 64 65 20 74 68 65 20 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 2d 70 61 72 61 6d 65 74 65 72 73 | de.the.static-mapping-parameters |
| d6480 | 20 76 61 6c 75 65 2e 20 54 68 65 20 72 65 73 75 6c 74 69 6e 67 20 6c 69 6e 65 20 69 6e 20 64 68 | .value..The.resulting.line.in.dh |
| d64a0 | 63 70 64 2e 63 6f 6e 66 20 77 69 6c 6c 20 62 65 20 60 60 6f 70 74 69 6f 6e 20 70 78 65 6c 69 6e | cpd.conf.will.be.``option.pxelin |
| d64c0 | 75 78 2e 63 6f 6e 66 69 67 66 69 6c 65 20 22 70 78 65 6c 69 6e 75 78 2e 63 66 67 2f 30 31 2d 30 | ux.configfile."pxelinux.cfg/01-0 |
| d64e0 | 30 2d 31 35 2d 31 37 2d 34 34 2d 32 64 2d 61 61 22 3b 60 60 2e 00 41 6e 61 6c 79 73 69 73 20 6f | 0-15-17-44-2d-aa";``..Analysis.o |
| d6500 | 6e 20 77 68 61 74 20 68 61 70 70 65 6e 73 20 66 6f 72 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 | n.what.happens.for.desired.conne |
| d6520 | 63 74 69 6f 6e 3a 00 41 6e 64 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 | ction:.And.base.chain.for.traffi |
| d6540 | 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 | c.generated.by.the.router.is.``s |
| d6560 | 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 2e 2e 2e 60 60 2c 20 77 | et.firewall.ipv4.output....``,.w |
| d6580 | 68 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c | here.two.sub-chains.are.availabl |
| d65a0 | 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 62 | e:.**filter**.and.**raw**:.And.b |
| d65c0 | 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 | ase.chain.for.traffic.generated. |
| d65e0 | 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 | by.the.router.is.``set.firewall. |
| d6600 | 69 70 76 34 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 41 6e 64 20 62 61 73 | ipv4.output.filter....``.And.bas |
| d6620 | 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 | e.chain.for.traffic.generated.by |
| d6640 | 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 | .the.router.is.``set.firewall.ip |
| d6660 | 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 41 6e 64 20 62 61 73 65 20 | v6.output.filter....``.And.base. |
| d6680 | 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 | chain.for.traffic.generated.by.t |
| d66a0 | 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 | he.router.is.``set.firewall.ipv6 |
| d66c0 | 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 | .output.filter....``,.where.two. |
| d66e0 | 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 | sub-chains.are.available:.**filt |
| d6700 | 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 6e 64 20 63 6f 6e 74 65 6e 74 20 6f 66 | er**.and.**raw**:.And.content.of |
| d6720 | 20 74 68 65 20 73 63 72 69 70 74 3a 00 41 6e 64 20 66 6f 72 20 69 70 76 36 3a 00 41 6e 64 20 66 | .the.script:.And.for.ipv6:.And.f |
| d6740 | 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 73 20 66 72 6f 6d 20 | or.traffic.that.originates.from. |
| d6760 | 74 68 65 20 62 72 69 64 67 65 20 69 74 73 65 6c 66 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 | the.bridge.itself,.the.base.chai |
| d6780 | 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a 2a 2c 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 69 73 | n.is.**output**,.base.command.is |
| d67a0 | 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6f 75 74 70 75 74 20 66 69 | .``set.firewall.bridge.output.fi |
| d67c0 | 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 61 6e 64 20 74 68 65 20 70 61 74 68 20 69 73 3a 00 41 6e 64 | lter....``,.and.the.path.is:.And |
| d67e0 | 20 6e 65 78 74 2c 20 73 6f 6d 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 78 61 6d 70 6c | .next,.some.configuration.exampl |
| d6800 | 65 20 77 68 65 72 65 20 67 72 6f 75 70 73 20 61 72 65 20 75 73 65 64 3a 00 41 6e 64 20 6f 70 2d | e.where.groups.are.used:.And.op- |
| d6820 | 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 3a 00 41 6e 64 20 74 68 65 20 62 61 73 65 20 63 68 61 69 | mode.commands:.And.the.base.chai |
| d6840 | 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 | n.for.traffic.generated.by.the.r |
| d6860 | 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 | outer.is.``set.firewall.ipv4.out |
| d6880 | 70 75 74 20 2e 2e 2e 60 60 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 | put....``,.where.two.sub-chains. |
| d68a0 | 61 72 65 20 61 76 61 69 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a | are.available:.**filter**.and.** |
| d68c0 | 72 61 77 2a 2a 3a 00 41 6e 64 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 | raw**:.And.the.base.chain.for.tr |
| d68e0 | 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 | affic.generated.by.the.router.is |
| d6900 | 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 2e 2e 2e 60 | .``set.firewall.ipv6.output....` |
| d6920 | 60 2c 20 77 68 65 72 65 20 74 77 6f 20 73 75 62 2d 63 68 61 69 6e 73 20 61 72 65 20 61 76 61 69 | `,.where.two.sub-chains.are.avai |
| d6940 | 6c 61 62 6c 65 3a 20 2a 2a 66 69 6c 74 65 72 2a 2a 20 61 6e 64 20 2a 2a 72 61 77 2a 2a 3a 00 41 | lable:.**filter**.and.**raw**:.A |
| d6960 | 6e 64 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 49 50 76 34 20 2a 2a 72 65 73 65 74 2a 2a 20 | nd.the.different.IPv4.**reset**. |
| d6980 | 63 6f 6d 6d 61 6e 64 73 20 61 76 61 69 6c 61 62 6c 65 3a 00 41 6e 64 20 74 68 65 6e 20 68 61 73 | commands.available:.And.then.has |
| d69a0 | 68 20 69 73 20 72 65 64 75 63 65 64 20 6d 6f 64 75 6c 6f 20 73 6c 61 76 65 20 63 6f 75 6e 74 2e | h.is.reduced.modulo.slave.count. |
| d69c0 | 00 41 6e 64 2c 20 74 6f 20 70 72 69 6e 74 20 6f 6e 6c 79 20 62 72 69 64 67 65 20 66 69 72 65 77 | .And,.to.print.only.bridge.firew |
| d69e0 | 61 6c 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 00 41 6e 6f 74 68 65 72 20 74 65 72 6d 20 6f 66 | all.information:.Another.term.of |
| d6a00 | 74 65 6e 20 75 73 65 64 20 66 6f 72 20 44 4e 41 54 20 69 73 20 2a 2a 31 2d 74 6f 2d 31 20 4e 41 | ten.used.for.DNAT.is.**1-to-1.NA |
| d6a20 | 54 2a 2a 2e 20 46 6f 72 20 61 20 31 2d 74 6f 2d 31 20 4e 41 54 20 63 6f 6e 66 69 67 75 72 61 74 | T**..For.a.1-to-1.NAT.configurat |
| d6a40 | 69 6f 6e 2c 20 62 6f 74 68 20 44 4e 41 54 20 61 6e 64 20 53 4e 41 54 20 61 72 65 20 75 73 65 64 | ion,.both.DNAT.and.SNAT.are.used |
| d6a60 | 20 74 6f 20 4e 41 54 20 61 6c 6c 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 61 6e 20 65 78 74 65 | .to.NAT.all.traffic.from.an.exte |
| d6a80 | 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 | rnal.IP.address.to.an.internal.I |
| d6aa0 | 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 76 69 63 65 2d 76 65 72 73 61 2e 00 41 6e 6f 74 68 65 | P.address.and.vice-versa..Anothe |
| d6ac0 | 72 20 74 68 69 6e 67 20 74 6f 20 6b 65 65 70 20 69 6e 20 6d 69 6e 64 20 77 69 74 68 20 4c 44 50 | r.thing.to.keep.in.mind.with.LDP |
| d6ae0 | 20 69 73 20 74 68 61 74 20 6d 75 63 68 20 6c 69 6b 65 20 42 47 50 2c 20 69 74 20 69 73 20 61 20 | .is.that.much.like.BGP,.it.is.a. |
| d6b00 | 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 72 75 6e 73 20 6f 6e 20 74 6f 70 20 6f 66 20 54 43 50 | protocol.that.runs.on.top.of.TCP |
| d6b20 | 2e 20 49 74 20 68 6f 77 65 76 65 72 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 6e 20 61 62 | ..It.however.does.not.have.an.ab |
| d6b40 | 69 6c 69 74 79 20 74 6f 20 64 6f 20 73 6f 6d 65 74 68 69 6e 67 20 6c 69 6b 65 20 61 20 72 65 66 | ility.to.do.something.like.a.ref |
| d6b60 | 72 65 73 68 20 63 61 70 61 62 69 6c 69 74 79 20 6c 69 6b 65 20 42 47 50 73 20 72 6f 75 74 65 20 | resh.capability.like.BGPs.route. |
| d6b80 | 72 65 66 72 65 73 68 20 63 61 70 61 62 69 6c 69 74 79 2e 20 54 68 65 72 65 66 6f 72 65 20 6f 6e | refresh.capability..Therefore.on |
| d6ba0 | 65 20 6d 69 67 68 74 20 68 61 76 65 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 6e 65 69 67 68 62 | e.might.have.to.reset.the.neighb |
| d6bc0 | 6f 72 20 66 6f 72 20 61 20 63 61 70 61 62 69 6c 69 74 79 20 63 68 61 6e 67 65 20 6f 72 20 61 20 | or.for.a.capability.change.or.a. |
| d6be0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 68 61 6e 67 65 20 74 6f 20 77 6f 72 6b 2e 00 41 70 | configuration.change.to.work..Ap |
| d6c00 | 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 28 31 34 2e 32 2b 29 00 41 70 70 6c 65 20 69 4f 53 | ple.iOS/iPadOS.(14.2+).Apple.iOS |
| d6c20 | 2f 69 50 61 64 4f 53 20 65 78 70 65 63 74 73 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 20 | /iPadOS.expects.the.server.name. |
| d6c40 | 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 65 64 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 20 | to.be.also.used.in.the.server's. |
| d6c60 | 63 65 72 74 69 66 69 63 61 74 65 20 63 6f 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 73 | certificate.common.name,.so.it's |
| d6c80 | 20 62 65 73 74 20 74 6f 20 75 73 65 20 74 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 79 | .best.to.use.this.DNS.name.for.y |
| d6ca0 | 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 41 70 70 6c 79 20 61 20 72 6f 75 74 | our.VPN.connection..Apply.a.rout |
| d6cc0 | 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 | e-map.filter.to.routes.for.the.s |
| d6ce0 | 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 41 70 70 6c 79 20 61 20 72 6f 75 74 65 | pecified.protocol..Apply.a.route |
| d6d00 | 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 6f 20 72 6f 75 74 65 73 20 66 6f 72 20 74 68 65 20 73 70 | -map.filter.to.routes.for.the.sp |
| d6d20 | 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 | ecified.protocol..The.following. |
| d6d40 | 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 | protocols.can.be.used:.any,.babe |
| d6d60 | 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 69 73 2c 20 | l,.bgp,.connected,.eigrp,.isis,. |
| d6d80 | 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 | kernel,.ospf,.rip,.static,.table |
| d6da0 | 00 41 70 70 6c 79 20 61 20 72 6f 75 74 65 2d 6d 61 70 20 66 69 6c 74 65 72 20 74 6f 20 72 6f 75 | .Apply.a.route-map.filter.to.rou |
| d6dc0 | 74 65 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 20 | tes.for.the.specified.protocol.. |
| d6de0 | 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 | The.following.protocols.can.be.u |
| d6e00 | 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c | sed:.any,.babel,.bgp,.connected, |
| d6e20 | 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e 67 2c 20 73 74 | .isis,.kernel,.ospfv3,.ripng,.st |
| d6e40 | 61 74 69 63 2c 20 74 61 62 6c 65 00 41 70 70 6c 79 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 79 | atic,.table.Apply.routing.policy |
| d6e60 | 20 74 6f 20 2a 2a 69 6e 62 6f 75 6e 64 2a 2a 20 64 69 72 65 63 74 69 6f 6e 20 6f 66 20 6f 75 74 | .to.**inbound**.direction.of.out |
| d6e80 | 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 00 41 70 70 6c 79 69 6e 67 20 61 20 52 75 6c 65 | .VLAN.interfaces.Applying.a.Rule |
| d6ea0 | 2d 53 65 74 20 74 6f 20 61 20 5a 6f 6e 65 00 41 70 70 6c 79 69 6e 67 20 61 20 52 75 6c 65 2d 53 | -Set.to.a.Zone.Applying.a.Rule-S |
| d6ec0 | 65 74 20 74 6f 20 61 6e 20 49 6e 74 65 72 66 61 63 65 00 41 70 70 6c 79 69 6e 67 20 61 20 74 72 | et.to.an.Interface.Applying.a.tr |
| d6ee0 | 61 66 66 69 63 20 70 6f 6c 69 63 79 00 41 72 65 61 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 | affic.policy.Area.Configuration. |
| d6f00 | 41 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 30 30 30 31 60 60 20 49 53 2d 49 53 20 | Area.identifier:.``0001``.IS-IS. |
| d6f20 | 61 72 65 61 20 6e 75 6d 62 65 72 20 28 6e 75 6d 62 65 72 69 63 61 6c 20 61 72 65 61 20 60 60 31 | area.number.(numberical.area.``1 |
| d6f40 | 60 60 29 00 41 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 30 30 30 31 60 60 20 49 53 | ``).Area.identifier:.``0001``.IS |
| d6f60 | 2d 49 53 20 61 72 65 61 20 6e 75 6d 62 65 72 20 28 6e 75 6d 65 72 69 63 61 6c 20 61 72 65 61 20 | -IS.area.number.(numerical.area. |
| d6f80 | 60 60 31 60 60 29 00 41 72 65 61 20 69 64 65 6e 74 69 66 69 65 72 3a 20 60 60 30 30 30 31 60 60 | ``1``).Area.identifier:.``0001`` |
| d6fa0 | 20 4f 70 65 6e 46 61 62 72 69 63 20 61 72 65 61 20 6e 75 6d 62 65 72 20 28 6e 75 6d 65 72 69 63 | .OpenFabric.area.number.(numeric |
| d6fc0 | 61 6c 20 61 72 65 61 20 60 60 31 60 60 29 00 41 72 67 75 6d 65 6e 74 73 20 77 68 69 63 68 20 77 | al.area.``1``).Arguments.which.w |
| d6fe0 | 69 6c 6c 20 62 65 20 70 61 73 73 65 64 20 74 6f 20 74 68 65 20 65 78 65 63 75 74 61 62 6c 65 2e | ill.be.passed.to.the.executable. |
| d7000 | 00 41 72 69 73 74 61 20 45 4f 53 00 41 72 75 62 61 2f 48 50 00 41 73 20 49 6e 74 65 72 6e 65 74 | .Arista.EOS.Aruba/HP.As.Internet |
| d7020 | 20 77 69 64 65 20 50 4d 54 55 20 64 69 73 63 6f 76 65 72 79 20 72 61 72 65 6c 79 20 77 6f 72 6b | .wide.PMTU.discovery.rarely.work |
| d7040 | 73 2c 20 77 65 20 73 6f 6d 65 74 69 6d 65 73 20 6e 65 65 64 20 74 6f 20 63 6c 61 6d 70 20 6f 75 | s,.we.sometimes.need.to.clamp.ou |
| d7060 | 72 20 54 43 50 20 4d 53 53 20 76 61 6c 75 65 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 76 61 | r.TCP.MSS.value.to.a.specific.va |
| d7080 | 6c 75 65 2e 20 54 68 69 73 20 69 73 20 61 20 66 69 65 6c 64 20 69 6e 20 74 68 65 20 54 43 50 20 | lue..This.is.a.field.in.the.TCP. |
| d70a0 | 6f 70 74 69 6f 6e 73 20 70 61 72 74 20 6f 66 20 61 20 53 59 4e 20 70 61 63 6b 65 74 2e 20 42 79 | options.part.of.a.SYN.packet..By |
| d70c0 | 20 73 65 74 74 69 6e 67 20 74 68 65 20 4d 53 53 20 76 61 6c 75 65 2c 20 79 6f 75 20 61 72 65 20 | .setting.the.MSS.value,.you.are. |
| d70e0 | 74 65 6c 6c 69 6e 67 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 64 65 20 75 6e 65 71 75 69 76 6f | telling.the.remote.side.unequivo |
| d7100 | 63 61 6c 6c 79 20 27 64 6f 20 6e 6f 74 20 74 72 79 20 74 6f 20 73 65 6e 64 20 6d 65 20 70 61 63 | cally.'do.not.try.to.send.me.pac |
| d7120 | 6b 65 74 73 20 62 69 67 67 65 72 20 74 68 61 6e 20 74 68 69 73 20 76 61 6c 75 65 27 2e 00 41 73 | kets.bigger.than.this.value'..As |
| d7140 | 20 53 53 54 50 20 70 72 6f 76 69 64 65 73 20 50 50 50 20 76 69 61 20 61 20 53 53 4c 2f 54 4c 53 | .SSTP.provides.PPP.via.a.SSL/TLS |
| d7160 | 20 63 68 61 6e 6e 65 6c 20 74 68 65 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 70 75 62 6c 69 | .channel.the.use.of.either.publi |
| d7180 | 63 61 6c 6c 79 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 73 20 77 65 6c | cally.signed.certificates.as.wel |
| d71a0 | 6c 20 61 73 20 61 20 70 72 69 76 61 74 65 20 50 4b 49 20 69 73 20 72 65 71 75 69 72 65 64 2e 00 | l.as.a.private.PKI.is.required.. |
| d71c0 | 41 73 20 53 53 54 50 20 70 72 6f 76 69 64 65 73 20 50 50 50 20 76 69 61 20 61 20 53 53 4c 2f 54 | As.SSTP.provides.PPP.via.a.SSL/T |
| d71e0 | 4c 53 20 63 68 61 6e 6e 65 6c 20 74 68 65 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 70 75 62 | LS.channel.the.use.of.either.pub |
| d7200 | 6c 69 63 6c 79 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 70 72 69 | licly.signed.certificates.or.pri |
| d7220 | 76 61 74 65 20 50 4b 49 20 69 73 20 72 65 71 75 69 72 65 64 2e 00 41 73 20 56 79 4f 53 20 69 73 | vate.PKI.is.required..As.VyOS.is |
| d7240 | 20 4c 69 6e 75 78 20 62 61 73 65 64 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 75 73 | .Linux.based.the.default.port.us |
| d7260 | 65 64 20 69 73 20 6e 6f 74 20 75 73 69 6e 67 20 34 37 38 39 20 61 73 20 74 68 65 20 64 65 66 61 | ed.is.not.using.4789.as.the.defa |
| d7280 | 75 6c 74 20 49 41 4e 41 2d 61 73 73 69 67 6e 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 55 44 | ult.IANA-assigned.destination.UD |
| d72a0 | 50 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 49 6e 73 74 65 61 64 20 56 79 4f 53 20 75 73 65 73 | P.port.number..Instead.VyOS.uses |
| d72c0 | 20 74 68 65 20 4c 69 6e 75 78 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 6f 66 20 38 34 37 32 2e | .the.Linux.default.port.of.8472. |
| d72e0 | 00 41 73 20 56 79 4f 53 20 69 73 20 62 61 73 65 64 20 6f 6e 20 4c 69 6e 75 78 20 61 6e 64 20 74 | .As.VyOS.is.based.on.Linux.and.t |
| d7300 | 68 65 72 65 20 77 61 73 20 6e 6f 20 6f 66 66 69 63 69 61 6c 20 49 41 4e 41 20 70 6f 72 74 20 61 | here.was.no.official.IANA.port.a |
| d7320 | 73 73 69 67 6e 65 64 20 66 6f 72 20 56 58 4c 41 4e 2c 20 56 79 4f 53 20 75 73 65 73 20 61 20 64 | ssigned.for.VXLAN,.VyOS.uses.a.d |
| d7340 | 65 66 61 75 6c 74 20 70 6f 72 74 20 6f 66 20 38 34 37 32 2e 20 59 6f 75 20 63 61 6e 20 63 68 61 | efault.port.of.8472..You.can.cha |
| d7360 | 6e 67 65 20 74 68 65 20 70 6f 72 74 20 6f 6e 20 61 20 70 65 72 20 56 58 4c 41 4e 20 69 6e 74 65 | nge.the.port.on.a.per.VXLAN.inte |
| d7380 | 72 66 61 63 65 20 62 61 73 69 73 20 74 6f 20 67 65 74 20 69 74 20 77 6f 72 6b 69 6e 67 20 61 63 | rface.basis.to.get.it.working.ac |
| d73a0 | 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 76 65 6e 64 6f 72 73 2e 00 41 73 20 56 79 4f 53 20 69 | ross.multiple.vendors..As.VyOS.i |
| d73c0 | 73 20 62 61 73 65 64 20 6f 6e 20 4c 69 6e 75 78 20 69 74 20 6c 65 76 65 72 61 67 65 73 20 69 74 | s.based.on.Linux.it.leverages.it |
| d73e0 | 73 20 66 69 72 65 77 61 6c 6c 2e 20 54 68 65 20 4e 65 74 66 69 6c 74 65 72 20 70 72 6f 6a 65 63 | s.firewall..The.Netfilter.projec |
| d7400 | 74 20 63 72 65 61 74 65 64 20 69 70 74 61 62 6c 65 73 20 61 6e 64 20 69 74 73 20 73 75 63 63 65 | t.created.iptables.and.its.succe |
| d7420 | 73 73 6f 72 20 6e 66 74 61 62 6c 65 73 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e | ssor.nftables.for.the.Linux.kern |
| d7440 | 65 6c 20 74 6f 20 77 6f 72 6b 20 64 69 72 65 63 74 6c 79 20 6f 6e 20 70 61 63 6b 65 74 20 64 61 | el.to.work.directly.on.packet.da |
| d7460 | 74 61 20 66 6c 6f 77 73 2e 20 54 68 69 73 20 6e 6f 77 20 65 78 74 65 6e 64 73 20 74 68 65 20 63 | ta.flows..This.now.extends.the.c |
| d7480 | 6f 6e 63 65 70 74 20 6f 66 20 7a 6f 6e 65 2d 62 61 73 65 64 20 73 65 63 75 72 69 74 79 20 74 6f | oncept.of.zone-based.security.to |
| d74a0 | 20 61 6c 6c 6f 77 20 66 6f 72 20 6d 61 6e 69 70 75 6c 61 74 69 6e 67 20 74 68 65 20 64 61 74 61 | .allow.for.manipulating.the.data |
| d74c0 | 20 61 74 20 6d 75 6c 74 69 70 6c 65 20 73 74 61 67 65 73 20 6f 6e 63 65 20 61 63 63 65 70 74 65 | .at.multiple.stages.once.accepte |
| d74e0 | 64 20 62 79 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 74 | d.by.the.network.interface.and.t |
| d7500 | 68 65 20 64 72 69 76 65 72 20 62 65 66 6f 72 65 20 62 65 69 6e 67 20 68 61 6e 64 65 64 20 6f 66 | he.driver.before.being.handed.of |
| d7520 | 66 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 65 2e 67 2e 2c 20 61 20 77 65 | f.to.the.destination.(e.g.,.a.we |
| d7540 | 62 20 73 65 72 76 65 72 20 4f 52 20 61 6e 6f 74 68 65 72 20 64 65 76 69 63 65 29 2e 00 41 73 20 | b.server.OR.another.device)..As. |
| d7560 | 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 51 4d 49 20 69 6e 74 65 72 66 | VyOS.makes.use.of.the.QMI.interf |
| d7580 | 61 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 57 57 41 4e 20 6d 6f 64 65 6d | ace.to.connect.to.the.WWAN.modem |
| d75a0 | 20 63 61 72 64 73 2c 20 61 6c 73 6f 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 63 61 6e 20 62 65 | .cards,.also.the.firmware.can.be |
| d75c0 | 20 72 65 70 72 6f 67 72 61 6d 6d 65 64 2e 00 41 73 20 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 | .reprogrammed..As.VyOS.makes.use |
| d75e0 | 20 6f 66 20 74 68 65 20 51 4d 49 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 63 6f 6e 6e 65 63 74 | .of.the.QMI.interface.to.connect |
| d7600 | 20 74 6f 20 74 68 65 20 57 57 41 4e 20 6d 6f 64 65 6d 20 63 61 72 64 73 2c 20 74 68 65 20 66 69 | .to.the.WWAN.modem.cards,.the.fi |
| d7620 | 72 6d 77 61 72 65 20 63 61 6e 20 62 65 20 72 65 70 72 6f 67 72 61 6d 6d 65 64 2e 00 41 73 20 61 | rmware.can.be.reprogrammed..As.a |
| d7640 | 20 72 65 66 65 72 65 6e 63 65 3a 20 66 6f 72 20 31 30 6d 62 69 74 2f 73 20 6f 6e 20 49 6e 74 65 | .reference:.for.10mbit/s.on.Inte |
| d7660 | 6c 2c 20 79 6f 75 20 6d 69 67 68 74 20 6e 65 65 64 20 61 74 20 6c 65 61 73 74 20 31 30 6b 62 79 | l,.you.might.need.at.least.10kby |
| d7680 | 74 65 20 62 75 66 66 65 72 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 65 61 63 68 20 79 | te.buffer.if.you.want.to.reach.y |
| d76a0 | 6f 75 72 20 63 6f 6e 66 69 67 75 72 65 64 20 72 61 74 65 2e 00 41 73 20 61 20 72 65 73 75 6c 74 | our.configured.rate..As.a.result |
| d76c0 | 2c 20 74 68 65 20 70 72 6f 63 65 73 73 69 6e 67 20 6f 66 20 65 61 63 68 20 70 61 63 6b 65 74 20 | ,.the.processing.of.each.packet. |
| d76e0 | 62 65 63 6f 6d 65 73 20 6d 6f 72 65 20 65 66 66 69 63 69 65 6e 74 2c 20 70 6f 74 65 6e 74 69 61 | becomes.more.efficient,.potentia |
| d7700 | 6c 6c 79 20 6c 65 76 65 72 61 67 69 6e 67 20 68 61 72 64 77 61 72 65 20 65 6e 63 72 79 70 74 69 | lly.leveraging.hardware.encrypti |
| d7720 | 6f 6e 20 6f 66 66 6c 6f 61 64 69 6e 67 20 73 75 70 70 6f 72 74 20 61 76 61 69 6c 61 62 6c 65 20 | on.offloading.support.available. |
| d7740 | 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2e 00 41 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 | in.the.kernel..As.an.alternative |
| d7760 | 20 74 6f 20 61 70 70 6c 79 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 | .to.applying.policy.to.an.interf |
| d7780 | 61 63 65 20 64 69 72 65 63 74 6c 79 2c 20 61 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 | ace.directly,.a.zone-based.firew |
| d77a0 | 61 6c 6c 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 74 6f 20 73 69 6d 70 6c 69 66 79 20 63 | all.can.be.created.to.simplify.c |
| d77c0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 65 6e 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 | onfiguration.when.multiple.inter |
| d77e0 | 66 61 63 65 73 20 62 65 6c 6f 6e 67 20 74 6f 20 74 68 65 20 73 61 6d 65 20 73 65 63 75 72 69 74 | faces.belong.to.the.same.securit |
| d7800 | 79 20 7a 6f 6e 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 61 70 70 6c 79 69 6e 67 20 72 75 6c 65 | y.zone..Instead.of.applying.rule |
| d7820 | 2d 73 65 74 73 20 74 6f 20 69 6e 74 65 72 66 61 63 65 73 2c 20 74 68 65 79 20 61 72 65 20 61 70 | -sets.to.interfaces,.they.are.ap |
| d7840 | 70 6c 69 65 64 20 74 6f 20 73 6f 75 72 63 65 20 7a 6f 6e 65 2d 64 65 73 74 69 6e 61 74 69 6f 6e | plied.to.source.zone-destination |
| d7860 | 20 7a 6f 6e 65 20 70 61 69 72 73 2e 00 41 73 20 61 6e 79 20 6f 74 68 65 72 20 66 69 72 65 77 61 | .zone.pairs..As.any.other.firewa |
| d7880 | 6c 6c 20 67 72 6f 75 70 2c 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 | ll.group,.dynamic.firewall.group |
| d78a0 | 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 | s.can.be.used.in.firewall.rules. |
| d78c0 | 61 73 20 6d 61 74 63 68 69 6e 67 20 6f 70 74 69 6f 6e 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 | as.matching.options..For.example |
| d78e0 | 3a 00 41 73 20 62 6f 74 68 20 4d 69 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 61 6e 64 20 | :.As.both.Microsoft.Windows.and. |
| d7900 | 41 70 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 61 20 | Apple.iOS/iPadOS.only.support.a. |
| d7920 | 63 65 72 74 61 69 6e 20 73 65 74 20 6f 66 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 69 70 68 65 72 | certain.set.of.encryption.cipher |
| d7940 | 73 20 61 6e 64 20 69 6e 74 65 67 72 69 74 79 20 61 6c 67 6f 72 69 74 68 6d 73 20 77 65 20 77 69 | s.and.integrity.algorithms.we.wi |
| d7960 | 6c 6c 20 76 61 6c 69 64 61 74 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 49 4b 45 2f 45 | ll.validate.the.configured.IKE/E |
| d7980 | 53 50 20 70 72 6f 70 6f 73 61 6c 73 20 61 6e 64 20 6f 6e 6c 79 20 6c 69 73 74 20 74 68 65 20 63 | SP.proposals.and.only.list.the.c |
| d79a0 | 6f 6d 70 61 74 69 62 6c 65 20 6f 6e 65 73 20 74 6f 20 74 68 65 20 75 73 65 72 20 e2 80 94 20 69 | ompatible.ones.to.the.user.....i |
| d79c0 | 66 20 6d 75 6c 74 69 70 6c 65 20 61 72 65 20 64 65 66 69 6e 65 64 2e 20 49 66 20 74 68 65 72 65 | f.multiple.are.defined..If.there |
| d79e0 | 20 61 72 65 20 6e 6f 20 6d 61 74 63 68 69 6e 67 20 70 72 6f 70 6f 73 61 6c 73 20 66 6f 75 6e 64 | .are.no.matching.proposals.found |
| d7a00 | 20 e2 80 94 20 77 65 20 63 61 6e 20 6e 6f 74 20 67 65 6e 65 72 61 74 65 20 61 20 70 72 6f 66 69 | .....we.can.not.generate.a.profi |
| d7a20 | 6c 65 20 66 6f 72 20 79 6f 75 2e 00 41 73 20 64 65 73 63 72 69 62 65 64 2c 20 66 69 72 73 74 20 | le.for.you..As.described,.first. |
| d7a40 | 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 61 74 65 64 20 62 79 20 61 6c 6c 20 | packet.will.be.evaluated.by.all. |
| d7a60 | 74 68 65 20 66 69 72 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 6f 20 64 65 73 69 72 65 64 20 63 6f | the.firewall.path,.so.desired.co |
| d7a80 | 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 78 70 6c 69 63 69 74 65 6c 79 20 61 | nnection.should.be.explicitely.a |
| d7aa0 | 63 63 65 70 74 65 64 2e 20 53 61 6d 65 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 62 65 20 74 61 | ccepted..Same.thing.should.be.ta |
| d7ac0 | 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 63 20 69 6e 20 | ken.into.account.for.traffic.in. |
| d7ae0 | 72 65 76 65 72 73 65 20 6f 72 64 65 72 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 20 73 74 61 | reverse.order..In.most.cases.sta |
| d7b00 | 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f | te.policies.are.used.in.order.to |
| d7b20 | 20 61 63 63 65 70 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 6e 20 72 65 76 65 72 73 65 20 70 61 | .accept.connection.in.reverse.pa |
| d7b40 | 74 63 68 2e 00 41 73 20 64 65 73 63 72 69 62 65 64 2c 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 | tch..As.described,.first.packet. |
| d7b60 | 77 69 6c 6c 20 62 65 20 65 76 61 6c 75 61 74 65 64 20 62 79 20 61 6c 6c 20 74 68 65 20 66 69 72 | will.be.evaluated.by.all.the.fir |
| d7b80 | 65 77 61 6c 6c 20 70 61 74 68 2c 20 73 6f 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f | ewall.path,.so.desired.connectio |
| d7ba0 | 6e 20 73 68 6f 75 6c 64 20 62 65 20 65 78 70 6c 69 63 69 74 6c 79 20 61 63 63 65 70 74 65 64 2e | n.should.be.explicitly.accepted. |
| d7bc0 | 20 53 61 6d 65 20 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f | .Same.thing.should.be.taken.into |
| d7be0 | 20 61 63 63 6f 75 6e 74 20 66 6f 72 20 74 72 61 66 66 69 63 20 69 6e 20 72 65 76 65 72 73 65 20 | .account.for.traffic.in.reverse. |
| d7c00 | 6f 72 64 65 72 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 20 73 74 61 74 65 20 70 6f 6c 69 63 | order..In.most.cases.state.polic |
| d7c20 | 69 65 73 20 61 72 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 63 63 65 70 74 20 | ies.are.used.in.order.to.accept. |
| d7c40 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 6e 20 72 65 76 65 72 73 65 20 70 61 74 63 68 2e 00 41 73 20 | connection.in.reverse.patch..As. |
| d7c60 | 64 65 73 63 72 69 62 65 64 2c 20 74 68 65 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 77 69 6c 6c | described,.the.first.packet.will |
| d7c80 | 20 62 65 20 65 76 61 6c 75 61 74 65 64 20 62 79 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 70 61 | .be.evaluated.by.the.firewall.pa |
| d7ca0 | 74 68 2c 20 73 6f 20 61 20 64 65 73 69 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 68 6f 75 | th,.so.a.desired.connection.shou |
| d7cc0 | 6c 64 20 62 65 20 65 78 70 6c 69 63 69 74 6c 79 20 61 63 63 65 70 74 65 64 2e 20 53 61 6d 65 20 | ld.be.explicitly.accepted..Same. |
| d7ce0 | 74 68 69 6e 67 20 73 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 | thing.should.be.taken.into.accou |
| d7d00 | 6e 74 20 66 6f 72 20 74 72 61 66 66 69 63 20 69 6e 20 72 65 76 65 72 73 65 20 6f 72 64 65 72 2e | nt.for.traffic.in.reverse.order. |
| d7d20 | 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 20 73 74 61 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 | .In.most.cases.state.policies.ar |
| d7d40 | 65 20 75 73 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 61 63 63 65 70 74 20 61 20 63 6f 6e 6e | e.used.in.order.to.accept.a.conn |
| d7d60 | 65 63 74 69 6f 6e 20 69 6e 20 74 68 65 20 72 65 76 65 72 73 65 20 70 61 74 68 2e 00 41 73 20 6d | ection.in.the.reverse.path..As.m |
| d7d80 | 6f 72 65 20 61 6e 64 20 6d 6f 72 65 20 72 6f 75 74 65 72 73 20 72 75 6e 20 6f 6e 20 48 79 70 65 | ore.and.more.routers.run.on.Hype |
| d7da0 | 72 76 69 73 6f 72 73 2c 20 65 78 70 65 63 69 61 6c 6c 79 20 77 69 74 68 20 61 20 3a 61 62 62 72 | rvisors,.expecially.with.a.:abbr |
| d7dc0 | 3a 60 4e 4f 53 20 28 4e 65 74 77 6f 72 6b 20 4f 70 65 72 61 74 69 6e 67 20 53 79 73 74 65 6d 29 | :`NOS.(Network.Operating.System) |
| d7de0 | 60 20 61 73 20 56 79 4f 53 2c 20 69 74 20 6d 61 6b 65 73 20 66 65 77 65 72 20 61 6e 64 20 66 65 | `.as.VyOS,.it.makes.fewer.and.fe |
| d7e00 | 77 65 72 20 73 65 6e 73 65 20 74 6f 20 75 73 65 20 73 74 61 74 69 63 20 72 65 73 6f 75 72 63 65 | wer.sense.to.use.static.resource |
| d7e20 | 20 62 69 6e 64 69 6e 67 73 20 6c 69 6b 65 20 60 60 73 6d 70 2d 61 66 66 69 6e 69 74 79 60 60 20 | .bindings.like.``smp-affinity``. |
| d7e40 | 61 73 20 70 72 65 73 65 6e 74 20 69 6e 20 56 79 4f 53 20 31 2e 32 20 61 6e 64 20 65 61 72 6c 69 | as.present.in.VyOS.1.2.and.earli |
| d7e60 | 65 72 20 74 6f 20 70 69 6e 20 63 65 72 74 61 69 6e 20 69 6e 74 65 72 72 75 70 74 20 68 61 6e 64 | er.to.pin.certain.interrupt.hand |
| d7e80 | 6c 65 72 73 20 74 6f 20 73 70 65 63 69 66 69 63 20 43 50 55 73 2e 00 41 73 20 6e 65 74 77 6f 72 | lers.to.specific.CPUs..As.networ |
| d7ea0 | 6b 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6d 6f 64 69 66 69 65 73 20 74 | k.address.translation.modifies.t |
| d7ec0 | 68 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 70 61 63 | he.IP.address.information.in.pac |
| d7ee0 | 6b 65 74 73 2c 20 4e 41 54 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 6d 61 79 20 76 61 | kets,.NAT.implementations.may.va |
| d7f00 | 72 79 20 69 6e 20 74 68 65 69 72 20 73 70 65 63 69 66 69 63 20 62 65 68 61 76 69 6f 72 20 69 6e | ry.in.their.specific.behavior.in |
| d7f20 | 20 76 61 72 69 6f 75 73 20 61 64 64 72 65 73 73 69 6e 67 20 63 61 73 65 73 20 61 6e 64 20 74 68 | .various.addressing.cases.and.th |
| d7f40 | 65 69 72 20 65 66 66 65 63 74 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 2e 20 54 | eir.effect.on.network.traffic..T |
| d7f60 | 68 65 20 73 70 65 63 69 66 69 63 73 20 6f 66 20 4e 41 54 20 62 65 68 61 76 69 6f 72 20 61 72 65 | he.specifics.of.NAT.behavior.are |
| d7f80 | 20 6e 6f 74 20 63 6f 6d 6d 6f 6e 6c 79 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 79 20 76 65 6e 64 | .not.commonly.documented.by.vend |
| d7fa0 | 6f 72 73 20 6f 66 20 65 71 75 69 70 6d 65 6e 74 20 63 6f 6e 74 61 69 6e 69 6e 67 20 4e 41 54 20 | ors.of.equipment.containing.NAT. |
| d7fc0 | 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 2e 00 41 73 20 6f 66 20 56 79 4f 53 20 31 2e 34 2c | implementations..As.of.VyOS.1.4, |
| d7fe0 | 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 63 61 6e 20 75 | .OpenVPN.site-to-site.mode.can.u |
| d8000 | 73 65 20 65 69 74 68 65 72 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 20 6f 72 20 78 2e 35 | se.either.pre-shared.keys.or.x.5 |
| d8020 | 30 39 20 63 65 72 74 69 66 69 63 61 74 65 73 2e 00 41 73 20 70 65 72 20 64 65 66 61 75 6c 74 20 | 09.certificates..As.per.default. |
| d8040 | 61 6e 64 20 69 66 20 6e 6f 74 20 6f 74 68 65 72 77 69 73 65 20 64 65 66 69 6e 65 64 2c 20 6d 73 | and.if.not.otherwise.defined,.ms |
| d8060 | 63 68 61 70 2d 76 32 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e | chap-v2.is.being.used.for.authen |
| d8080 | 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 6d 70 70 65 20 31 32 38 2d 62 69 74 20 28 73 74 61 74 65 | tication.and.mppe.128-bit.(state |
| d80a0 | 6c 65 73 73 29 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 49 66 20 6e 6f 20 67 61 74 65 | less).for.encryption..If.no.gate |
| d80c0 | 77 61 79 2d 61 64 64 72 65 73 73 20 69 73 20 73 65 74 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f | way-address.is.set.within.the.co |
| d80e0 | 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 74 68 65 20 6c 6f 77 65 73 74 20 49 50 20 6f 75 74 20 6f | nfiguration,.the.lowest.IP.out.o |
| d8100 | 66 20 74 68 65 20 2f 32 34 20 63 6c 69 65 6e 74 2d 69 70 2d 70 6f 6f 6c 20 69 73 20 62 65 69 6e | f.the./24.client-ip-pool.is.bein |
| d8120 | 67 20 75 73 65 64 2e 20 46 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 69 6e 20 74 68 65 20 65 78 61 | g.used..For.instance,.in.the.exa |
| d8140 | 6d 70 6c 65 20 62 65 6c 6f 77 20 69 74 20 77 6f 75 6c 64 20 62 65 20 31 39 32 2e 31 36 38 2e 30 | mple.below.it.would.be.192.168.0 |
| d8160 | 2e 31 2e 00 41 73 20 73 61 69 64 20 62 65 66 6f 72 65 2c 20 6f 6e 63 65 20 66 69 72 65 77 61 6c | .1..As.said.before,.once.firewal |
| d8180 | 6c 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 61 74 65 64 2c 20 74 68 65 79 20 63 61 6e 20 62 | l.groups.are.created,.they.can.b |
| d81a0 | 65 20 72 65 66 65 72 65 6e 63 65 64 20 65 69 74 68 65 72 20 69 6e 20 66 69 72 65 77 61 6c 6c 2c | e.referenced.either.in.firewall, |
| d81c0 | 20 6e 61 74 2c 20 6e 61 74 36 36 20 61 6e 64 2f 6f 72 20 70 6f 6c 69 63 79 2d 72 6f 75 74 65 20 | .nat,.nat66.and/or.policy-route. |
| d81e0 | 72 75 6c 65 73 2e 00 41 73 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 61 | rules..As.shown.in.the.example.a |
| d8200 | 62 6f 76 65 2c 20 6f 6e 65 20 6f 66 20 74 68 65 20 70 6f 73 73 69 62 69 6c 69 74 69 65 73 20 74 | bove,.one.of.the.possibilities.t |
| d8220 | 6f 20 6d 61 74 63 68 20 70 61 63 6b 65 74 73 20 69 73 20 62 61 73 65 64 20 6f 6e 20 6d 61 72 6b | o.match.packets.is.based.on.mark |
| d8240 | 73 20 64 6f 6e 65 20 62 79 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2c 20 60 74 68 61 74 20 63 61 | s.done.by.the.firewall,.`that.ca |
| d8260 | 6e 20 67 69 76 65 20 79 6f 75 20 61 20 67 72 65 61 74 20 64 65 61 6c 20 6f 66 20 66 6c 65 78 69 | n.give.you.a.great.deal.of.flexi |
| d8280 | 62 69 6c 69 74 79 60 5f 2e 00 41 73 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 6c 61 73 74 20 63 | bility`_..As.shown.in.the.last.c |
| d82a0 | 6f 6d 6d 61 6e 64 20 6f 66 20 74 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 74 68 65 | ommand.of.the.example.above,.the |
| d82c0 | 20 60 71 75 65 75 65 2d 74 79 70 65 60 20 73 65 74 74 69 6e 67 20 61 6c 6c 6f 77 73 20 74 68 65 | .`queue-type`.setting.allows.the |
| d82e0 | 73 65 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 73 2e 20 59 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c | se.combinations..You.will.be.abl |
| d8300 | 65 20 74 6f 20 75 73 65 20 69 74 20 69 6e 20 6d 61 6e 79 20 70 6f 6c 69 63 69 65 73 2e 00 41 73 | e.to.use.it.in.many.policies..As |
| d8320 | 20 74 68 65 20 65 78 61 6d 70 6c 65 20 69 6d 61 67 65 20 62 65 6c 6f 77 20 73 68 6f 77 73 2c 20 | .the.example.image.below.shows,. |
| d8340 | 74 68 65 20 64 65 76 69 63 65 20 6e 6f 77 20 6e 65 65 64 73 20 72 75 6c 65 73 20 74 6f 20 61 6c | the.device.now.needs.rules.to.al |
| d8360 | 6c 6f 77 2f 62 6c 6f 63 6b 20 74 72 61 66 66 69 63 20 74 6f 20 6f 72 20 66 72 6f 6d 20 74 68 65 | low/block.traffic.to.or.from.the |
| d8380 | 20 73 65 72 76 69 63 65 73 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 20 64 65 76 69 63 65 20 | .services.running.on.the.device. |
| d83a0 | 74 68 61 74 20 68 61 76 65 20 6f 70 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 6e 20 74 68 | that.have.open.connections.on.th |
| d83c0 | 61 74 20 69 6e 74 65 72 66 61 63 65 2e 00 41 73 20 74 68 65 20 65 78 61 6d 70 6c 65 20 69 6d 61 | at.interface..As.the.example.ima |
| d83e0 | 67 65 20 62 65 6c 6f 77 20 73 68 6f 77 73 2c 20 74 68 65 20 64 65 76 69 63 65 20 77 61 73 20 63 | ge.below.shows,.the.device.was.c |
| d8400 | 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 72 75 6c 65 73 20 62 6c 6f 63 6b 69 6e 67 20 69 6e | onfigured.with.rules.blocking.in |
| d8420 | 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 6e 20 65 61 63 | bound.or.outbound.traffic.on.eac |
| d8440 | 68 20 69 6e 74 65 72 66 61 63 65 2e 00 41 73 20 74 68 65 20 6e 61 6d 65 20 69 6d 70 6c 69 65 73 | h.interface..As.the.name.implies |
| d8460 | 2c 20 69 74 27 73 20 49 50 76 34 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 69 6e 20 49 50 76 36 | ,.it's.IPv4.encapsulated.in.IPv6 |
| d8480 | 2c 20 61 73 20 73 69 6d 70 6c 65 20 61 73 20 74 68 61 74 2e 00 41 73 20 77 65 6c 6c 20 61 73 20 | ,.as.simple.as.that..As.well.as. |
| d84a0 | 74 68 65 20 62 65 6c 6f 77 20 74 6f 20 61 6c 6c 6f 77 20 4e 41 54 2d 74 72 61 76 65 72 73 61 6c | the.below.to.allow.NAT-traversal |
| d84c0 | 20 28 77 68 65 6e 20 4e 41 54 20 69 73 20 64 65 74 65 63 74 65 64 20 62 79 20 74 68 65 20 56 50 | .(when.NAT.is.detected.by.the.VP |
| d84e0 | 4e 20 63 6c 69 65 6e 74 2c 20 45 53 50 20 69 73 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 69 6e | N.client,.ESP.is.encapsulated.in |
| d8500 | 20 55 44 50 20 66 6f 72 20 4e 41 54 2d 74 72 61 76 65 72 73 61 6c 29 3a 00 41 73 20 77 69 74 68 | .UDP.for.NAT-traversal):.As.with |
| d8520 | 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 63 61 6e | .other.policies,.Round-Robin.can |
| d8540 | 20 65 6d 62 65 64 5f 20 61 6e 6f 74 68 65 72 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c | .embed_.another.policy.into.a.cl |
| d8560 | 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 | ass.through.the.``queue-type``.s |
| d8580 | 65 74 74 69 6e 67 2e 00 41 73 20 77 69 74 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 | etting..As.with.other.policies,. |
| d85a0 | 53 68 61 70 65 72 20 63 61 6e 20 65 6d 62 65 64 5f 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 | Shaper.can.embed_.other.policies |
| d85c0 | 20 69 6e 74 6f 20 69 74 73 20 63 6c 61 73 73 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 60 | .into.its.classes.through.the.`` |
| d85e0 | 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 74 74 69 6e 67 20 61 6e 64 20 74 68 65 6e 20 63 6f | queue-type``.setting.and.then.co |
| d8600 | 6e 66 69 67 75 72 65 20 74 68 65 69 72 20 70 61 72 61 6d 65 74 65 72 73 2e 00 41 73 20 77 69 74 | nfigure.their.parameters..As.wit |
| d8620 | 68 20 6f 74 68 65 72 20 70 6f 6c 69 63 69 65 73 2c 20 79 6f 75 20 63 61 6e 20 64 65 66 69 6e 65 | h.other.policies,.you.can.define |
| d8640 | 20 64 69 66 66 65 72 65 6e 74 20 74 79 70 65 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 | .different.type.of.matching.rule |
| d8660 | 73 20 66 6f 72 20 79 6f 75 72 20 63 6c 61 73 73 65 73 3a 00 41 73 20 77 69 74 68 20 6f 74 68 65 | s.for.your.classes:.As.with.othe |
| d8680 | 72 20 70 6f 6c 69 63 69 65 73 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 6f 74 68 65 72 | r.policies,.you.can.embed_.other |
| d86a0 | 20 70 6f 6c 69 63 69 65 73 20 69 6e 74 6f 20 74 68 65 20 63 6c 61 73 73 65 73 20 28 61 6e 64 20 | .policies.into.the.classes.(and. |
| d86c0 | 64 65 66 61 75 6c 74 29 20 6f 66 20 79 6f 75 72 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 | default).of.your.Priority.Queue. |
| d86e0 | 70 6f 6c 69 63 79 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 | policy.through.the.``queue-type` |
| d8700 | 60 20 73 65 74 74 69 6e 67 3a 00 41 73 20 79 6f 75 20 63 61 6e 20 73 65 65 20 69 6e 20 74 68 65 | `.setting:.As.you.can.see.in.the |
| d8720 | 20 65 78 61 6d 70 6c 65 20 68 65 72 65 2c 20 79 6f 75 20 63 61 6e 20 61 73 73 69 67 6e 20 74 68 | .example.here,.you.can.assign.th |
| d8740 | 65 20 73 61 6d 65 20 72 75 6c 65 2d 73 65 74 20 74 6f 20 73 65 76 65 72 61 6c 20 69 6e 74 65 72 | e.same.rule-set.to.several.inter |
| d8760 | 66 61 63 65 73 2e 20 41 6e 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 6f 6e 6c 79 20 68 61 76 | faces..An.interface.can.only.hav |
| d8780 | 65 20 6f 6e 65 20 72 75 6c 65 2d 73 65 74 20 70 65 72 20 63 68 61 69 6e 2e 00 41 73 20 79 6f 75 | e.one.rule-set.per.chain..As.you |
| d87a0 | 20 63 61 6e 20 73 65 65 2c 20 4c 65 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 63 6f 6e 66 69 67 | .can.see,.Leaf2.and.Leaf3.config |
| d87c0 | 75 72 61 74 69 6f 6e 20 69 73 20 61 6c 6d 6f 73 74 20 69 64 65 6e 74 69 63 61 6c 2e 20 54 68 65 | uration.is.almost.identical..The |
| d87e0 | 72 65 20 61 72 65 20 6c 6f 74 73 20 6f 66 20 63 6f 6d 6d 61 6e 64 73 20 61 62 6f 76 65 2c 20 49 | re.are.lots.of.commands.above,.I |
| d8800 | 27 6c 6c 20 74 72 79 20 74 6f 20 69 6e 74 6f 20 6d 6f 72 65 20 64 65 74 61 69 6c 20 62 65 6c 6f | 'll.try.to.into.more.detail.belo |
| d8820 | 77 2c 20 63 6f 6d 6d 61 6e 64 20 64 65 73 63 72 69 70 74 69 6f 6e 73 20 61 72 65 20 70 6c 61 63 | w,.command.descriptions.are.plac |
| d8840 | 65 64 20 75 6e 64 65 72 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 62 6f 78 65 73 3a 00 41 73 20 79 | ed.under.the.command.boxes:.As.y |
| d8860 | 6f 75 20 63 61 6e 20 73 65 65 2c 20 74 68 65 20 4c 65 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 | ou.can.see,.the.Leaf2.and.Leaf3. |
| d8880 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 72 65 20 61 6c 6d 6f 73 74 20 69 64 65 6e 74 69 | configurations.are.almost.identi |
| d88a0 | 63 61 6c 2e 20 54 68 65 72 65 20 61 72 65 20 6c 6f 74 73 20 6f 66 20 63 6f 6d 6d 61 6e 64 73 20 | cal..There.are.lots.of.commands. |
| d88c0 | 61 62 6f 76 65 2c 20 49 27 6c 6c 20 74 72 79 20 74 6f 20 67 6f 20 69 6e 74 6f 20 6d 6f 72 65 20 | above,.I'll.try.to.go.into.more. |
| d88e0 | 64 65 74 61 69 6c 20 62 65 6c 6f 77 2e 20 43 6f 6d 6d 61 6e 64 20 64 65 73 63 72 69 70 74 69 6f | detail.below..Command.descriptio |
| d8900 | 6e 73 20 61 72 65 20 70 6c 61 63 65 64 20 75 6e 64 65 72 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 | ns.are.placed.under.the.command. |
| d8920 | 62 6f 78 65 73 3a 00 41 73 73 69 67 6e 20 60 3c 6d 65 6d 62 65 72 3e 60 20 69 6e 74 65 72 66 61 | boxes:.Assign.`<member>`.interfa |
| d8940 | 63 65 20 74 6f 20 62 72 69 64 67 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 41 20 63 6f | ce.to.bridge.`<interface>`..A.co |
| d8960 | 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 65 72 20 77 69 6c 6c 20 68 65 6c 70 20 79 6f 75 20 77 69 | mpletion.helper.will.help.you.wi |
| d8980 | 74 68 20 61 6c 6c 20 61 6c 6c 6f 77 65 64 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 | th.all.allowed.interfaces.which. |
| d89a0 | 63 61 6e 20 62 65 20 62 72 69 64 67 65 64 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 3a 72 | can.be.bridged..This.includes.:r |
| d89c0 | 65 66 3a 60 65 74 68 65 72 6e 65 74 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 62 | ef:`ethernet-interface`,.:ref:`b |
| d89e0 | 6f 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 6c 32 74 70 76 33 2d 69 6e 74 | ond-interface`,.:ref:`l2tpv3-int |
| d8a00 | 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 6f 70 65 6e 76 70 6e 60 2c 20 3a 72 65 66 3a 60 76 | erface`,.:ref:`openvpn`,.:ref:`v |
| d8a20 | 78 6c 61 6e 2d 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 77 69 72 65 6c 65 73 73 2d | xlan-interface`,.:ref:`wireless- |
| d8a40 | 69 6e 74 65 72 66 61 63 65 60 2c 20 3a 72 65 66 3a 60 74 75 6e 6e 65 6c 2d 69 6e 74 65 72 66 61 | interface`,.:ref:`tunnel-interfa |
| d8a60 | 63 65 60 20 61 6e 64 20 3a 72 65 66 3a 60 67 65 6e 65 76 65 2d 69 6e 74 65 72 66 61 63 65 60 2e | ce`.and.:ref:`geneve-interface`. |
| d8a80 | 00 41 73 73 69 67 6e 20 61 20 73 70 65 63 69 66 69 63 20 62 61 63 6b 65 6e 64 20 74 6f 20 61 20 | .Assign.a.specific.backend.to.a. |
| d8aa0 | 72 75 6c 65 00 41 73 73 69 67 6e 20 61 20 73 74 61 74 69 63 20 49 50 20 61 64 64 72 65 73 73 20 | rule.Assign.a.static.IP.address. |
| d8ac0 | 74 6f 20 60 3c 75 73 65 72 3e 60 20 61 63 63 6f 75 6e 74 2e 00 41 73 73 69 67 6e 20 69 6e 74 65 | to.`<user>`.account..Assign.inte |
| d8ae0 | 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 69 6e 74 65 72 66 61 63 65 3e | rface.identified.by.`<interface> |
| d8b00 | 60 20 74 6f 20 56 52 46 20 6e 61 6d 65 64 20 60 3c 6e 61 6d 65 3e 60 2e 00 41 73 73 69 67 6e 20 | `.to.VRF.named.`<name>`..Assign. |
| d8b20 | 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 50 6f 72 74 43 68 61 6e 6e 65 6c | member.interfaces.to.PortChannel |
| d8b40 | 00 41 73 73 69 67 6e 20 73 74 61 74 69 63 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 60 3c 75 | .Assign.static.IP.address.to.`<u |
| d8b60 | 73 65 72 3e 60 20 61 63 63 6f 75 6e 74 2e 00 41 73 73 69 67 6e 20 74 68 65 20 49 50 20 61 64 64 | ser>`.account..Assign.the.IP.add |
| d8b80 | 72 65 73 73 20 74 6f 20 74 68 69 73 20 6d 61 63 68 69 6e 65 20 66 6f 72 20 60 3c 74 69 6d 65 3e | ress.to.this.machine.for.`<time> |
| d8ba0 | 60 20 73 65 63 6f 6e 64 73 2e 00 41 73 73 69 67 6e 20 74 68 65 20 53 53 48 20 70 75 62 6c 69 63 | `.seconds..Assign.the.SSH.public |
| d8bc0 | 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 60 3c 6b 65 79 3e 60 20 69 64 65 6e 74 69 66 69 65 64 20 | .key.portion.`<key>`.identified. |
| d8be0 | 62 79 20 70 65 72 2d 6b 65 79 20 60 3c 69 64 65 6e 74 69 66 69 65 72 3e 60 20 74 6f 20 74 68 65 | by.per-key.`<identifier>`.to.the |
| d8c00 | 20 6c 6f 63 61 6c 20 75 73 65 72 20 60 3c 75 73 65 72 6e 61 6d 65 3e 60 2e 00 41 73 73 6f 63 69 | .local.user.`<username>`..Associ |
| d8c20 | 61 74 65 73 20 74 68 65 20 70 72 65 76 69 6f 75 73 6c 79 20 67 65 6e 65 72 61 74 65 64 20 70 72 | ates.the.previously.generated.pr |
| d8c40 | 69 76 61 74 65 20 6b 65 79 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 57 69 72 65 47 75 61 72 | ivate.key.to.a.specific.WireGuar |
| d8c60 | 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 63 61 6e | d.interface..The.private.key.can |
| d8c80 | 20 62 65 20 67 65 6e 65 72 61 74 65 20 76 69 61 20 74 68 65 20 63 6f 6d 6d 61 6e 64 00 41 73 73 | .be.generate.via.the.command.Ass |
| d8ca0 | 75 72 65 20 74 68 61 74 20 79 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 61 6c 6c | ure.that.your.firewall.rules.all |
| d8cc0 | 6f 77 20 74 68 65 20 74 72 61 66 66 69 63 2c 20 69 6e 20 77 68 69 63 68 20 63 61 73 65 20 79 6f | ow.the.traffic,.in.which.case.yo |
| d8ce0 | 75 20 68 61 76 65 20 61 20 77 6f 72 6b 69 6e 67 20 56 50 4e 20 75 73 69 6e 67 20 57 69 72 65 47 | u.have.a.working.VPN.using.WireG |
| d8d00 | 75 61 72 64 2e 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 31 31 00 | uard..Assured.Forwarding(AF).11. |
| d8d20 | 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 31 32 00 41 73 73 75 72 65 | Assured.Forwarding(AF).12.Assure |
| d8d40 | 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 31 33 00 41 73 73 75 72 65 64 20 46 6f 72 77 | d.Forwarding(AF).13.Assured.Forw |
| d8d60 | 61 72 64 69 6e 67 28 41 46 29 20 32 31 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 | arding(AF).21.Assured.Forwarding |
| d8d80 | 28 41 46 29 20 32 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 32 | (AF).22.Assured.Forwarding(AF).2 |
| d8da0 | 33 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 33 31 00 41 73 73 75 | 3.Assured.Forwarding(AF).31.Assu |
| d8dc0 | 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 33 32 00 41 73 73 75 72 65 64 20 46 6f | red.Forwarding(AF).32.Assured.Fo |
| d8de0 | 72 77 61 72 64 69 6e 67 28 41 46 29 20 33 33 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 | rwarding(AF).33.Assured.Forwardi |
| d8e00 | 6e 67 28 41 46 29 20 34 31 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 | ng(AF).41.Assured.Forwarding(AF) |
| d8e20 | 20 34 32 00 41 73 73 75 72 65 64 20 46 6f 72 77 61 72 64 69 6e 67 28 41 46 29 20 34 33 00 41 74 | .42.Assured.Forwarding(AF).43.At |
| d8e40 | 20 65 76 65 72 79 20 72 6f 75 6e 64 2c 20 74 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 | .every.round,.the.deficit.counte |
| d8e60 | 72 20 61 64 64 73 20 74 68 65 20 71 75 61 6e 74 75 6d 20 73 6f 20 74 68 61 74 20 65 76 65 6e 20 | r.adds.the.quantum.so.that.even. |
| d8e80 | 6c 61 72 67 65 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 68 61 76 65 20 74 68 65 69 72 20 6f 70 | large.packets.will.have.their.op |
| d8ea0 | 70 6f 72 74 75 6e 69 74 79 20 74 6f 20 62 65 20 64 65 71 75 65 75 65 64 2e 00 41 74 20 74 68 65 | portunity.to.be.dequeued..At.the |
| d8ec0 | 20 6d 6f 6d 65 6e 74 20 69 74 20 6e 6f 74 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 6c 6f 6f 6b 20 | .moment.it.not.possible.to.look. |
| d8ee0 | 61 74 20 74 68 65 20 77 68 6f 6c 65 20 66 69 72 65 77 61 6c 6c 20 6c 6f 67 20 77 69 74 68 20 56 | at.the.whole.firewall.log.with.V |
| d8f00 | 79 4f 53 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 2e 20 41 6c 6c 20 6c 6f | yOS.operational.commands..All.lo |
| d8f20 | 67 73 20 77 69 6c 6c 20 73 61 76 65 20 74 6f 20 60 60 2f 76 61 72 2f 6c 6f 67 73 2f 6d 65 73 73 | gs.will.save.to.``/var/logs/mess |
| d8f40 | 61 67 65 73 60 60 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 67 72 65 70 20 27 31 30 2e | ages``..For.example:.``grep.'10. |
| d8f60 | 31 30 2e 30 2e 31 30 27 20 2f 76 61 72 2f 6c 6f 67 2f 6d 65 73 73 61 67 65 73 60 60 00 41 74 20 | 10.0.10'./var/log/messages``.At. |
| d8f80 | 74 68 65 20 74 69 6d 65 20 6f 66 20 74 68 69 73 20 77 72 69 74 69 6e 67 20 74 68 65 20 66 6f 6c | the.time.of.this.writing.the.fol |
| d8fa0 | 6c 6f 77 69 6e 67 20 64 69 73 70 6c 61 79 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 3a 00 41 | lowing.displays.are.supported:.A |
| d8fc0 | 74 20 76 65 72 79 20 6c 6f 77 20 72 61 74 65 73 20 28 62 65 6c 6f 77 20 33 4d 62 69 74 29 2c 20 | t.very.low.rates.(below.3Mbit),. |
| d8fe0 | 62 65 73 69 64 65 73 20 74 75 6e 69 6e 67 20 60 71 75 61 6e 74 75 6d 60 20 28 33 30 30 20 6b 65 | besides.tuning.`quantum`.(300.ke |
| d9000 | 65 70 73 20 62 65 69 6e 67 20 6f 6b 29 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 77 61 6e 74 20 | eps.being.ok).you.may.also.want. |
| d9020 | 74 6f 20 69 6e 63 72 65 61 73 65 20 60 74 61 72 67 65 74 60 20 74 6f 20 73 6f 6d 65 74 68 69 6e | to.increase.`target`.to.somethin |
| d9040 | 67 20 6c 69 6b 65 20 31 35 6d 73 20 61 6e 64 20 69 6e 63 72 65 61 73 65 20 60 69 6e 74 65 72 76 | g.like.15ms.and.increase.`interv |
| d9060 | 61 6c 60 20 74 6f 20 73 6f 6d 65 74 68 69 6e 67 20 61 72 6f 75 6e 64 20 31 35 30 20 6d 73 2e 00 | al`.to.something.around.150.ms.. |
| d9080 | 41 74 74 61 63 68 65 73 20 75 73 65 72 2d 64 65 66 69 6e 65 64 20 6e 65 74 77 6f 72 6b 20 74 6f | Attaches.user-defined.network.to |
| d90a0 | 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 20 4f 6e 6c 79 20 6f 6e 65 20 6e 65 74 77 6f 72 6b 20 6d | .a.container..Only.one.network.m |
| d90c0 | 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 6d 75 73 74 20 61 6c 72 65 61 64 | ust.be.specified.and.must.alread |
| d90e0 | 79 20 65 78 69 73 74 2e 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 41 75 74 68 65 6e 74 69 | y.exist..Authentication.Authenti |
| d9100 | 63 61 74 69 6f 6e 20 28 45 41 50 6f 4c 29 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 41 64 | cation.(EAPoL).Authentication.Ad |
| d9120 | 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 70 | vanced.Options.Authentication.ap |
| d9140 | 70 6c 69 63 61 74 69 6f 6e 20 63 6c 69 65 6e 74 2d 69 64 2e 00 41 75 74 68 65 6e 74 69 63 61 74 | plication.client-id..Authenticat |
| d9160 | 69 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 63 6c 69 65 6e 74 2d 73 65 63 72 65 74 2e 00 41 | ion.application.client-secret..A |
| d9180 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 74 65 6e 61 6e 74 | uthentication.application.tenant |
| d91a0 | 2d 69 64 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 64 6f 6e 65 20 62 79 20 75 73 | -id.Authentication.is.done.by.us |
| d91c0 | 69 6e 67 20 74 68 65 20 60 60 6f 70 65 6e 76 70 6e 2d 61 75 74 68 2d 6c 64 61 70 2e 73 6f 60 60 | ing.the.``openvpn-auth-ldap.so`` |
| d91e0 | 20 70 6c 75 67 69 6e 20 77 68 69 63 68 20 69 73 20 73 68 69 70 70 65 64 20 77 69 74 68 20 65 76 | .plugin.which.is.shipped.with.ev |
| d9200 | 65 72 79 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 2e 20 41 20 64 65 64 69 63 61 74 | ery.VyOS.installation..A.dedicat |
| d9220 | 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 20 69 73 20 72 65 71 75 69 72 65 | ed.configuration.file.is.require |
| d9240 | 64 2e 20 49 74 20 69 73 20 62 65 73 74 20 70 72 61 63 74 69 73 65 20 74 6f 20 73 74 6f 72 65 20 | d..It.is.best.practise.to.store. |
| d9260 | 69 74 20 69 6e 20 60 60 2f 63 6f 6e 66 69 67 60 60 20 74 6f 20 73 75 72 76 69 76 65 20 69 6d 61 | it.in.``/config``.to.survive.ima |
| d9280 | 67 65 20 75 70 64 61 74 65 73 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 67 61 6e 69 | ge.updates.Authentication.organi |
| d92a0 | 7a 61 74 69 6f 6e 20 6e 61 6d 65 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 74 6f 6b 65 6e | zation.name.Authentication.token |
| d92c0 | 00 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 e2 80 93 20 74 6f 20 76 65 72 69 66 79 20 74 68 | .Authentication.....to.verify.th |
| d92e0 | 61 74 20 74 68 65 20 6d 65 73 73 61 67 65 20 69 73 20 66 72 6f 6d 20 61 20 76 61 6c 69 64 20 73 | at.the.message.is.from.a.valid.s |
| d9300 | 6f 75 72 63 65 2e 00 41 75 74 68 6f 72 69 74 61 74 69 76 65 20 7a 6f 6e 65 73 00 41 75 74 68 6f | ource..Authoritative.zones.Autho |
| d9320 | 72 69 7a 61 74 69 6f 6e 20 74 6f 6b 65 6e 00 41 75 74 6f 6d 61 74 69 63 20 56 4c 41 4e 20 43 72 | rization.token.Automatic.VLAN.Cr |
| d9340 | 65 61 74 69 6f 6e 00 41 75 74 6f 6d 61 74 69 63 20 56 4c 41 4e 20 63 72 65 61 74 69 6f 6e 00 41 | eation.Automatic.VLAN.creation.A |
| d9360 | 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 20 42 46 44 20 73 65 73 73 69 6f 6e 20 | utomatically.create.BFD.session. |
| d9380 | 66 6f 72 20 65 61 63 68 20 52 49 50 20 70 65 65 72 20 64 69 73 63 6f 76 65 72 65 64 20 69 6e 20 | for.each.RIP.peer.discovered.in. |
| d93a0 | 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 74 68 65 20 42 46 44 20 73 65 73 | this.interface..When.the.BFD.ses |
| d93c0 | 73 69 6f 6e 20 6d 6f 6e 69 74 6f 72 20 73 69 67 6e 61 6c 69 7a 65 20 74 68 61 74 20 74 68 65 20 | sion.monitor.signalize.that.the. |
| d93e0 | 6c 69 6e 6b 20 69 73 20 64 6f 77 6e 20 74 68 65 20 52 49 50 20 70 65 65 72 20 69 73 20 72 65 6d | link.is.down.the.RIP.peer.is.rem |
| d9400 | 6f 76 65 64 20 61 6e 64 20 61 6c 6c 20 74 68 65 20 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 | oved.and.all.the.learned.routes. |
| d9420 | 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 61 74 20 70 65 65 72 20 61 72 65 20 72 65 | associated.with.that.peer.are.re |
| d9440 | 6d 6f 76 65 64 2e 00 41 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 72 65 62 6f 6f 74 20 73 79 73 74 | moved..Automatically.reboot.syst |
| d9460 | 65 6d 20 6f 6e 20 6b 65 72 6e 65 6c 20 70 61 6e 69 63 20 61 66 74 65 72 20 36 30 20 73 65 63 6f | em.on.kernel.panic.after.60.seco |
| d9480 | 6e 64 73 2e 00 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 73 00 41 76 61 69 6c 61 62 6c | nds..Autonomous.Systems.Availabl |
| d94a0 | 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 70 72 6f 74 6f 63 6f 6c 73 3a 00 41 76 6f 69 64 69 | e.health.check.protocols:.Avoidi |
| d94c0 | 6e 67 20 22 6c 65 61 6b 79 22 20 4e 41 54 00 41 7a 75 72 65 2d 64 61 74 61 2d 65 78 70 6c 6f 72 | ng."leaky".NAT.Azure-data-explor |
| d94e0 | 65 72 00 42 46 44 00 42 46 44 20 53 74 61 74 69 63 20 52 6f 75 74 65 20 4d 6f 6e 69 74 6f 72 69 | er.BFD.BFD.Static.Route.Monitori |
| d9500 | 6e 67 00 42 46 44 20 73 65 6e 64 73 20 6c 6f 74 73 20 6f 66 20 73 6d 61 6c 6c 20 55 44 50 20 70 | ng.BFD.sends.lots.of.small.UDP.p |
| d9520 | 61 63 6b 65 74 73 20 76 65 72 79 20 71 75 69 63 6b 6c 79 20 74 6f 20 65 6e 73 75 72 65 73 20 74 | ackets.very.quickly.to.ensures.t |
| d9540 | 68 61 74 20 74 68 65 20 70 65 65 72 20 69 73 20 73 74 69 6c 6c 20 61 6c 69 76 65 2e 00 42 47 50 | hat.the.peer.is.still.alive..BGP |
| d9560 | 00 42 47 50 20 2d 20 41 53 20 50 61 74 68 20 50 6f 6c 69 63 79 00 42 47 50 20 2d 20 43 6f 6d 6d | .BGP.-.AS.Path.Policy.BGP.-.Comm |
| d9580 | 75 6e 69 74 79 20 4c 69 73 74 00 42 47 50 20 2d 20 45 78 74 65 6e 64 65 64 20 43 6f 6d 6d 75 6e | unity.List.BGP.-.Extended.Commun |
| d95a0 | 69 74 79 20 4c 69 73 74 00 42 47 50 20 2d 20 4c 61 72 67 65 20 43 6f 6d 6d 75 6e 69 74 79 20 4c | ity.List.BGP.-.Large.Community.L |
| d95c0 | 69 73 74 00 42 47 50 20 45 78 61 6d 70 6c 65 00 42 47 50 20 52 6f 75 74 65 72 20 43 6f 6e 66 69 | ist.BGP.Example.BGP.Router.Confi |
| d95e0 | 67 75 72 61 74 69 6f 6e 00 42 47 50 20 53 63 61 6c 69 6e 67 20 43 6f 6e 66 69 67 75 72 61 74 69 | guration.BGP.Scaling.Configurati |
| d9600 | 6f 6e 00 42 47 50 20 61 67 67 72 65 67 61 74 6f 72 20 61 74 74 72 69 62 75 74 65 3a 20 41 53 20 | on.BGP.aggregator.attribute:.AS. |
| d9620 | 6e 75 6d 62 65 72 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 6e 20 61 67 67 72 65 | number.or.IP.address.of.an.aggre |
| d9640 | 67 61 74 69 6f 6e 2e 00 42 47 50 20 61 73 2d 70 61 74 68 20 6c 69 73 74 20 74 6f 20 6d 61 74 63 | gation..BGP.as-path.list.to.matc |
| d9660 | 68 2e 00 42 47 50 20 61 74 6f 6d 69 63 20 61 67 67 72 65 67 61 74 65 20 61 74 74 72 69 62 75 74 | h..BGP.atomic.aggregate.attribut |
| d9680 | 65 2e 00 42 47 50 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 74 6f 20 6d 61 74 63 68 2e 00 | e..BGP.community-list.to.match.. |
| d96a0 | 42 47 50 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 74 6f 20 6d 61 74 63 68 2e | BGP.extended.community.to.match. |
| d96c0 | 00 42 47 50 20 72 6f 6c 65 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 52 46 43 20 3a 72 | .BGP.roles.are.defined.in.RFC.:r |
| d96e0 | 66 63 3a 60 39 32 33 34 60 20 61 6e 64 20 70 72 6f 76 69 64 65 20 61 6e 20 65 61 73 79 20 77 61 | fc:`9234`.and.provide.an.easy.wa |
| d9700 | 79 20 74 6f 20 61 64 64 20 72 6f 75 74 65 20 6c 65 61 6b 20 70 72 65 76 65 6e 74 69 6f 6e 2c 20 | y.to.add.route.leak.prevention,. |
| d9720 | 64 65 74 65 63 74 69 6f 6e 20 61 6e 64 20 6d 69 74 69 67 61 74 69 6f 6e 2e 20 54 68 65 20 6c 6f | detection.and.mitigation..The.lo |
| d9740 | 63 61 6c 20 52 6f 6c 65 20 76 61 6c 75 65 20 69 73 20 6e 65 67 6f 74 69 61 74 65 64 20 77 69 74 | cal.Role.value.is.negotiated.wit |
| d9760 | 68 20 74 68 65 20 6e 65 77 20 42 47 50 20 52 6f 6c 65 20 63 61 70 61 62 69 6c 69 74 79 20 77 68 | h.the.new.BGP.Role.capability.wh |
| d9780 | 69 63 68 20 68 61 73 20 61 20 62 75 69 6c 74 2d 69 6e 20 63 68 65 63 6b 20 6f 66 20 74 68 65 20 | ich.has.a.built-in.check.of.the. |
| d97a0 | 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 76 61 6c 75 65 2e 20 49 6e 20 63 61 73 65 20 6f 66 20 | corresponding.value..In.case.of. |
| d97c0 | 61 20 6d 69 73 6d 61 74 63 68 20 74 68 65 20 6e 65 77 20 4f 50 45 4e 20 52 6f 6c 65 73 20 4d 69 | a.mismatch.the.new.OPEN.Roles.Mi |
| d97e0 | 73 6d 61 74 63 68 20 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 3c 32 2c 20 31 31 3e 20 77 6f 75 6c | smatch.Notification.<2,.11>.woul |
| d9800 | 64 20 62 65 20 73 65 6e 74 2e 20 54 68 65 20 63 6f 72 72 65 63 74 20 52 6f 6c 65 20 70 61 69 72 | d.be.sent..The.correct.Role.pair |
| d9820 | 73 20 61 72 65 3a 00 42 47 50 20 72 6f 75 74 65 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 73 | s.are:.BGP.routers.connected.ins |
| d9840 | 69 64 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 74 68 72 6f 75 67 68 20 42 47 50 20 62 65 6c 6f | ide.the.same.AS.through.BGP.belo |
| d9860 | 6e 67 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 42 47 50 20 73 65 73 73 69 6f 6e 2c 20 6f | ng.to.an.internal.BGP.session,.o |
| d9880 | 72 20 49 42 47 50 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 70 72 65 76 65 6e 74 20 72 6f 75 74 | r.IBGP..In.order.to.prevent.rout |
| d98a0 | 69 6e 67 20 74 61 62 6c 65 20 6c 6f 6f 70 73 2c 20 49 42 47 50 20 73 70 65 61 6b 65 72 20 64 6f | ing.table.loops,.IBGP.speaker.do |
| d98c0 | 65 73 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 49 42 47 50 2d 6c 65 61 72 6e 65 64 20 72 6f | es.not.advertise.IBGP-learned.ro |
| d98e0 | 75 74 65 73 20 74 6f 20 6f 74 68 65 72 20 49 42 47 50 20 73 70 65 61 6b 65 72 20 28 53 70 6c 69 | utes.to.other.IBGP.speaker.(Spli |
| d9900 | 74 20 48 6f 72 69 7a 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 29 2e 20 41 73 20 73 75 63 68 2c 20 49 | t.Horizon.mechanism)..As.such,.I |
| d9920 | 42 47 50 20 72 65 71 75 69 72 65 73 20 61 20 66 75 6c 6c 20 6d 65 73 68 20 6f 66 20 61 6c 6c 20 | BGP.requires.a.full.mesh.of.all. |
| d9940 | 70 65 65 72 73 2e 20 46 6f 72 20 6c 61 72 67 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 69 73 20 | peers..For.large.networks,.this. |
| d9960 | 71 75 69 63 6b 6c 79 20 62 65 63 6f 6d 65 73 20 75 6e 73 63 61 6c 61 62 6c 65 2e 00 42 47 50 20 | quickly.becomes.unscalable..BGP. |
| d9980 | 72 6f 75 74 65 73 20 6d 61 79 20 62 65 20 6c 65 61 6b 65 64 20 28 69 2e 65 2e 20 63 6f 70 69 65 | routes.may.be.leaked.(i.e..copie |
| d99a0 | 64 29 20 62 65 74 77 65 65 6e 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 20 52 49 42 20 61 6e 64 | d).between.a.unicast.VRF.RIB.and |
| d99c0 | 20 74 68 65 20 56 50 4e 20 53 41 46 49 20 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 | .the.VPN.SAFI.RIB.of.the.default |
| d99e0 | 20 56 52 46 20 66 6f 72 20 75 73 65 20 69 6e 20 4d 50 4c 53 2d 62 61 73 65 64 20 4c 33 56 50 4e | .VRF.for.use.in.MPLS-based.L3VPN |
| d9a00 | 73 2e 20 55 6e 69 63 61 73 74 20 72 6f 75 74 65 73 20 6d 61 79 20 61 6c 73 6f 20 62 65 20 6c 65 | s..Unicast.routes.may.also.be.le |
| d9a20 | 61 6b 65 64 20 62 65 74 77 65 65 6e 20 61 6e 79 20 56 52 46 73 20 28 69 6e 63 6c 75 64 69 6e 67 | aked.between.any.VRFs.(including |
| d9a40 | 20 74 68 65 20 75 6e 69 63 61 73 74 20 52 49 42 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 | .the.unicast.RIB.of.the.default. |
| d9a60 | 42 47 50 20 69 6e 73 74 61 6e 63 65 29 2e 20 41 20 73 68 6f 72 74 63 75 74 20 73 79 6e 74 61 78 | BGP.instance)..A.shortcut.syntax |
| d9a80 | 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 73 70 65 63 69 66 79 69 6e | .is.also.available.for.specifyin |
| d9aa0 | 67 20 6c 65 61 6b 69 6e 67 20 66 72 6f 6d 20 6f 6e 65 20 56 52 46 20 74 6f 20 61 6e 6f 74 68 65 | g.leaking.from.one.VRF.to.anothe |
| d9ac0 | 72 20 56 52 46 20 75 73 69 6e 67 20 74 68 65 20 64 65 66 61 75 6c 74 20 69 6e 73 74 61 6e 63 65 | r.VRF.using.the.default.instance |
| d9ae0 | e2 80 99 73 20 56 50 4e 20 52 49 42 20 61 73 20 74 68 65 20 69 6e 74 65 6d 65 64 69 61 72 79 20 | ...s.VPN.RIB.as.the.intemediary. |
| d9b00 | 2e 20 41 20 63 6f 6d 6d 6f 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 56 52 | ..A.common.application.of.the.VR |
| d9b20 | 46 2d 56 52 46 20 66 65 61 74 75 72 65 20 69 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 61 20 63 75 | F-VRF.feature.is.to.connect.a.cu |
| d9b40 | 73 74 6f 6d 65 72 e2 80 99 73 20 70 72 69 76 61 74 65 20 72 6f 75 74 69 6e 67 20 64 6f 6d 61 69 | stomer...s.private.routing.domai |
| d9b60 | 6e 20 74 6f 20 61 20 70 72 6f 76 69 64 65 72 e2 80 99 73 20 56 50 4e 20 73 65 72 76 69 63 65 2e | n.to.a.provider...s.VPN.service. |
| d9b80 | 20 4c 65 61 6b 69 6e 67 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 66 72 6f 6d 20 74 68 65 20 | .Leaking.is.configured.from.the. |
| d9ba0 | 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 20 6f 66 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 56 | point.of.view.of.an.individual.V |
| d9bc0 | 52 46 3a 20 69 6d 70 6f 72 74 20 72 65 66 65 72 73 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 61 6b | RF:.import.refers.to.routes.leak |
| d9be0 | 65 64 20 66 72 6f 6d 20 56 50 4e 20 74 6f 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 2c 20 77 68 | ed.from.VPN.to.a.unicast.VRF,.wh |
| d9c00 | 65 72 65 61 73 20 65 78 70 6f 72 74 20 72 65 66 65 72 73 20 74 6f 20 72 6f 75 74 65 73 20 6c 65 | ereas.export.refers.to.routes.le |
| d9c20 | 61 6b 65 64 20 66 72 6f 6d 20 61 20 75 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 00 | aked.from.a.unicast.VRF.to.VPN.. |
| d9c40 | 42 53 53 20 63 6f 6c 6f 72 69 6e 67 20 68 65 6c 70 73 20 74 6f 20 70 72 65 76 65 6e 74 20 63 68 | BSS.coloring.helps.to.prevent.ch |
| d9c60 | 61 6e 6e 65 6c 20 6a 61 6d 6d 69 6e 67 20 77 68 65 6e 20 6d 75 6c 74 69 70 6c 65 20 41 50 73 20 | annel.jamming.when.multiple.APs. |
| d9c80 | 75 73 65 20 74 68 65 20 73 61 6d 65 20 63 68 61 6e 6e 65 6c 73 2e 00 42 55 4d 20 74 72 61 66 66 | use.the.same.channels..BUM.traff |
| d9ca0 | 69 63 20 69 73 20 72 78 65 64 20 76 69 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 62 79 20 61 6c | ic.is.rxed.via.the.overlay.by.al |
| d9cc0 | 6c 20 50 45 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 73 65 72 76 65 72 20 62 75 74 20 6f | l.PEs.attached.to.a.server.but.o |
| d9ce0 | 6e 6c 79 20 74 68 65 20 44 46 20 63 61 6e 20 66 6f 72 77 61 72 64 20 74 68 65 20 64 65 2d 63 61 | nly.the.DF.can.forward.the.de-ca |
| d9d00 | 70 73 75 6c 61 74 65 64 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 61 63 63 65 73 73 20 70 | psulated.traffic.to.the.access.p |
| d9d20 | 6f 72 74 2e 20 54 6f 20 61 63 63 6f 6d 6d 6f 64 61 74 65 20 74 68 61 74 20 6e 6f 6e 2d 44 46 20 | ort..To.accommodate.that.non-DF. |
| d9d40 | 66 69 6c 74 65 72 73 20 61 72 65 20 69 6e 73 74 61 6c 6c 65 64 20 69 6e 20 74 68 65 20 64 61 74 | filters.are.installed.in.the.dat |
| d9d60 | 61 70 6c 61 6e 65 20 74 6f 20 64 72 6f 70 20 74 68 65 20 74 72 61 66 66 69 63 2e 00 42 61 62 65 | aplane.to.drop.the.traffic..Babe |
| d9d80 | 6c 00 42 61 62 65 6c 20 61 20 64 75 61 6c 20 73 74 61 63 6b 20 70 72 6f 74 6f 63 6f 6c 2e 20 41 | l.Babel.a.dual.stack.protocol..A |
| d9da0 | 20 73 69 6e 67 6c 65 20 42 61 62 65 6c 20 69 6e 73 74 61 6e 63 65 20 69 73 20 61 62 6c 65 20 74 | .single.Babel.instance.is.able.t |
| d9dc0 | 6f 20 70 65 72 66 6f 72 6d 20 72 6f 75 74 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 | o.perform.routing.for.both.IPv4. |
| d9de0 | 61 6e 64 20 49 50 76 36 2e 00 42 61 62 65 6c 20 69 73 20 61 20 6d 6f 64 65 72 6e 20 72 6f 75 74 | and.IPv6..Babel.is.a.modern.rout |
| d9e00 | 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 64 65 73 69 67 6e 65 64 20 74 6f 20 62 65 20 72 6f 62 75 | ing.protocol.designed.to.be.robu |
| d9e20 | 73 74 20 61 6e 64 20 65 66 66 69 63 69 65 6e 74 20 62 6f 74 68 20 69 6e 20 6f 72 64 69 6e 61 72 | st.and.efficient.both.in.ordinar |
| d9e40 | 79 20 77 69 72 65 64 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 69 6e 20 77 69 72 65 6c 65 73 73 | y.wired.networks.and.in.wireless |
| d9e60 | 20 6d 65 73 68 20 6e 65 74 77 6f 72 6b 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 75 | .mesh.networks..By.default,.it.u |
| d9e80 | 73 65 73 20 68 6f 70 2d 63 6f 75 6e 74 20 6f 6e 20 77 69 72 65 64 20 6e 65 74 77 6f 72 6b 73 20 | ses.hop-count.on.wired.networks. |
| d9ea0 | 61 6e 64 20 61 20 76 61 72 69 61 6e 74 20 6f 66 20 45 54 58 20 6f 6e 20 77 69 72 65 6c 65 73 73 | and.a.variant.of.ETX.on.wireless |
| d9ec0 | 20 6c 69 6e 6b 73 2c 20 49 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 | .links,.It.can.be.configured.to. |
| d9ee0 | 74 61 6b 65 20 72 61 64 69 6f 20 64 69 76 65 72 73 69 74 79 20 69 6e 74 6f 20 61 63 63 6f 75 6e | take.radio.diversity.into.accoun |
| d9f00 | 74 20 61 6e 64 20 74 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 6f 6d 70 75 74 65 20 61 | t.and.to.automatically.compute.a |
| d9f20 | 20 6c 69 6e 6b 27 73 20 6c 61 74 65 6e 63 79 20 61 6e 64 20 69 6e 63 6c 75 64 65 20 69 74 20 69 | .link's.latency.and.include.it.i |
| d9f40 | 6e 20 74 68 65 20 6d 65 74 72 69 63 2e 20 49 74 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 20 3a | n.the.metric..It.is.defined.in.: |
| d9f60 | 72 66 63 3a 60 38 39 36 36 60 2e 00 42 61 63 6b 65 6e 64 00 42 61 63 6b 65 6e 64 20 73 65 72 76 | rfc:`8966`..Backend.Backend.serv |
| d9f80 | 69 63 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 63 68 65 63 6b 65 64 20 61 67 61 | ice.certificates.are.checked.aga |
| d9fa0 | 69 6e 73 74 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 73 | inst.the.certificate.authority.s |
| d9fc0 | 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 | pecified.in.the.configuration,.w |
| d9fe0 | 68 69 63 68 20 63 6f 75 6c 64 20 62 65 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 43 41 2e 00 42 61 | hich.could.be.an.internal.CA..Ba |
| da000 | 6c 61 6e 63 65 20 61 6c 67 6f 72 69 74 68 6d 73 3a 00 42 61 6c 61 6e 63 69 6e 67 20 52 75 6c 65 | lance.algorithms:.Balancing.Rule |
| da020 | 73 00 42 61 6c 61 6e 63 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 | s.Balancing.based.on.domain.name |
| da040 | 00 42 61 6c 61 6e 63 69 6e 67 20 77 69 74 68 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 | .Balancing.with.HTTP.health.chec |
| da060 | 6b 73 00 42 61 6e 64 77 69 64 74 68 20 53 68 61 70 69 6e 67 00 42 61 6e 64 77 69 64 74 68 20 53 | ks.Bandwidth.Shaping.Bandwidth.S |
| da080 | 68 61 70 69 6e 67 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 00 42 61 6e 64 77 69 64 74 68 | haping.for.local.users.Bandwidth |
| da0a0 | 20 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 | .rate.limits.can.be.set.for.loca |
| da0c0 | 6c 20 75 73 65 72 73 20 6f 72 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 74 74 72 69 62 75 74 | l.users.or.RADIUS.based.attribut |
| da0e0 | 65 73 2e 00 42 61 6e 64 77 69 64 74 68 20 72 61 74 65 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 | es..Bandwidth.rate.limits.can.be |
| da100 | 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 6c 20 75 73 65 72 73 20 6f 72 20 76 69 61 20 52 41 44 49 | .set.for.local.users.or.via.RADI |
| da120 | 55 53 20 62 61 73 65 64 20 61 74 74 72 69 62 75 74 65 73 2e 00 42 61 6e 64 77 69 64 74 68 20 72 | US.based.attributes..Bandwidth.r |
| da140 | 61 74 65 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 6c 6f 63 61 6c 20 | ate.limits.can.be.set.for.local. |
| da160 | 75 73 65 72 73 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f | users.within.the.configuration.o |
| da180 | 72 20 76 69 61 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 74 74 72 69 62 75 74 65 73 2e 00 42 | r.via.RADIUS.based.attributes..B |
| da1a0 | 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 | ase.chain.for.traffic.towards.th |
| da1c0 | 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 | e.router.is.``set.firewall.ipv4. |
| da1e0 | 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 73 65 20 63 68 61 69 6e 20 66 6f | input.filter....``.Base.chain.fo |
| da200 | 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 | r.traffic.towards.the.router.is. |
| da220 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 | ``set.firewall.ipv6.input.filter |
| da240 | 20 2e 2e 2e 60 60 00 42 61 73 65 20 63 68 61 69 6e 20 69 73 20 66 6f 72 20 74 72 61 66 66 69 63 | ....``.Base.chain.is.for.traffic |
| da260 | 20 74 6f 77 61 72 64 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 | .toward.the.router.is.``set.fire |
| da280 | 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 73 | wall.ipv4.input.filter....``.Bas |
| da2a0 | 65 20 63 68 61 69 6e 20 69 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 20 74 68 | e.chain.is.for.traffic.toward.th |
| da2c0 | 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 | e.router.is.``set.firewall.ipv6. |
| da2e0 | 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 42 61 73 65 6c 69 6e 65 20 44 4d 56 50 | input.filter....``.Baseline.DMVP |
| da300 | 4e 20 74 6f 70 6f 6c 6f 67 79 00 42 61 73 69 63 20 43 6f 6e 63 65 70 74 73 00 42 61 73 69 63 20 | N.topology.Basic.Concepts.Basic. |
| da320 | 63 6f 6d 6d 61 6e 64 73 00 42 61 73 69 63 20 66 69 6c 74 65 72 69 6e 67 20 63 61 6e 20 62 65 20 | commands.Basic.filtering.can.be. |
| da340 | 64 6f 6e 65 20 75 73 69 6e 67 20 61 63 63 65 73 73 2d 6c 69 73 74 20 61 6e 64 20 61 63 63 65 73 | done.using.access-list.and.acces |
| da360 | 73 2d 6c 69 73 74 36 2e 00 42 61 73 69 63 20 66 69 6c 74 65 72 69 6e 67 20 63 6f 75 6c 64 20 61 | s-list6..Basic.filtering.could.a |
| da380 | 6c 73 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 49 50 76 36 20 74 72 61 66 66 69 63 2e 00 | lso.be.applied.to.IPv6.traffic.. |
| da3a0 | 42 61 73 69 63 20 73 65 74 75 70 00 42 65 20 73 75 72 65 20 74 6f 20 73 65 74 20 61 20 73 61 6e | Basic.setup.Be.sure.to.set.a.san |
| da3c0 | 65 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 67 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 | e.default.config.in.the.default. |
| da3e0 | 63 6f 6e 66 69 67 20 66 69 6c 65 2c 20 74 68 69 73 20 77 69 6c 6c 20 62 65 20 6c 6f 61 64 65 64 | config.file,.this.will.be.loaded |
| da400 | 20 69 6e 20 74 68 65 20 63 61 73 65 20 74 68 61 74 20 61 20 75 73 65 72 20 69 73 20 61 75 74 68 | .in.the.case.that.a.user.is.auth |
| da420 | 65 6e 74 69 63 61 74 65 64 20 61 6e 64 20 6e 6f 20 66 69 6c 65 20 69 73 20 66 6f 75 6e 64 20 69 | enticated.and.no.file.is.found.i |
| da440 | 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 64 69 72 65 63 74 6f 72 79 20 6d 61 74 63 68 | n.the.configured.directory.match |
| da460 | 69 6e 67 20 74 68 65 20 75 73 65 72 73 20 75 73 65 72 6e 61 6d 65 2f 67 72 6f 75 70 2e 00 42 65 | ing.the.users.username/group..Be |
| da480 | 61 63 6f 6e 20 50 72 6f 74 65 63 74 69 6f 6e 3a 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 72 61 6d | acon.Protection:.management.fram |
| da4a0 | 65 20 70 72 6f 74 65 63 74 69 6f 6e 20 66 6f 72 20 42 65 61 63 6f 6e 20 66 72 61 6d 65 73 2e 00 | e.protection.for.Beacon.frames.. |
| da4c0 | 42 65 61 6d 66 6f 72 6d 69 6e 67 20 63 61 70 61 62 69 6c 69 74 69 65 73 3a 00 42 65 63 61 75 73 | Beamforming.capabilities:.Becaus |
| da4e0 | 65 20 61 6e 20 61 67 67 72 65 67 61 74 6f 72 20 63 61 6e 6e 6f 74 20 62 65 20 61 63 74 69 76 65 | e.an.aggregator.cannot.be.active |
| da500 | 20 77 69 74 68 6f 75 74 20 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 61 76 61 69 6c 61 62 6c 65 20 | .without.at.least.one.available. |
| da520 | 6c 69 6e 6b 2c 20 73 65 74 74 69 6e 67 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 74 6f 20 30 20 6f | link,.setting.this.option.to.0.o |
| da540 | 72 20 74 6f 20 31 20 68 61 73 20 74 68 65 20 65 78 61 63 74 20 73 61 6d 65 20 65 66 66 65 63 74 | r.to.1.has.the.exact.same.effect |
| da560 | 2e 00 42 65 63 61 75 73 65 20 65 78 69 73 74 69 6e 67 20 73 65 73 73 69 6f 6e 73 20 64 6f 20 6e | ..Because.existing.sessions.do.n |
| da580 | 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 66 61 69 6c 20 6f 76 65 72 20 74 6f 20 61 20 | ot.automatically.fail.over.to.a. |
| da5a0 | 6e 65 77 20 70 61 74 68 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 74 61 62 6c 65 20 63 61 6e 20 | new.path,.the.session.table.can. |
| da5c0 | 62 65 20 66 6c 75 73 68 65 64 20 6f 6e 20 65 61 63 68 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 | be.flushed.on.each.connection.st |
| da5e0 | 61 74 65 20 63 68 61 6e 67 65 3a 00 42 65 66 6f 72 65 20 65 6e 61 62 6c 69 6e 67 20 61 6e 79 20 | ate.change:.Before.enabling.any. |
| da600 | 68 61 72 64 77 61 72 65 20 73 65 67 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 66 6c 6f 61 64 20 61 20 | hardware.segmentation.offload.a. |
| da620 | 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 73 6f 66 74 77 61 72 65 20 6f 66 66 6c 6f 61 64 20 69 | corresponding.software.offload.i |
| da640 | 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 47 53 4f 2e 20 4f 74 68 65 72 77 69 73 65 20 69 74 20 | s.required.in.GSO..Otherwise.it. |
| da660 | 62 65 63 6f 6d 65 73 20 70 6f 73 73 69 62 6c 65 20 66 6f 72 20 61 20 66 72 61 6d 65 20 74 6f 20 | becomes.possible.for.a.frame.to. |
| da680 | 62 65 20 72 65 2d 72 6f 75 74 65 64 20 62 65 74 77 65 65 6e 20 64 65 76 69 63 65 73 20 61 6e 64 | be.re-routed.between.devices.and |
| da6a0 | 20 65 6e 64 20 75 70 20 62 65 69 6e 67 20 75 6e 61 62 6c 65 20 74 6f 20 62 65 20 74 72 61 6e 73 | .end.up.being.unable.to.be.trans |
| da6c0 | 6d 69 74 74 65 64 2e 00 42 65 66 6f 72 65 20 74 65 73 74 69 6e 67 2c 20 77 65 20 63 61 6e 20 63 | mitted..Before.testing,.we.can.c |
| da6e0 | 68 65 63 6b 20 6d 65 6d 62 65 72 73 20 6f 66 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a | heck.members.of.firewall.groups: |
| da700 | 00 42 65 66 6f 72 65 20 74 65 73 74 69 6e 67 2c 20 77 65 20 63 61 6e 20 63 68 65 63 6b 20 74 68 | .Before.testing,.we.can.check.th |
| da720 | 65 20 6d 65 6d 62 65 72 73 20 6f 66 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 3a 00 42 65 | e.members.of.firewall.groups:.Be |
| da740 | 66 6f 72 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 61 20 72 75 6c | fore.you.are.able.to.apply.a.rul |
| da760 | 65 2d 73 65 74 20 74 6f 20 61 20 7a 6f 6e 65 20 79 6f 75 20 68 61 76 65 20 74 6f 20 63 72 65 61 | e-set.to.a.zone.you.have.to.crea |
| da780 | 74 65 20 74 68 65 20 7a 6f 6e 65 73 20 66 69 72 73 74 2e 00 42 65 6c 6f 77 20 61 72 65 20 61 20 | te.the.zones.first..Below.are.a. |
| da7a0 | 6c 69 73 74 20 6f 66 20 72 65 63 6f 72 64 20 74 79 70 65 73 20 61 76 61 69 6c 61 62 6c 65 20 74 | list.of.record.types.available.t |
| da7c0 | 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 69 6e 20 56 79 4f 53 2e 20 53 6f 6d | o.be.configured.within.VyOS..Som |
| da7e0 | 65 20 72 65 63 6f 72 64 73 20 73 75 70 70 6f 72 74 20 73 70 65 63 69 61 6c 20 60 3c 6e 61 6d 65 | e.records.support.special.`<name |
| da800 | 3e 60 20 6b 65 79 77 6f 72 64 73 3a 00 42 65 6c 6f 77 20 66 6c 6f 77 2d 63 68 61 72 74 20 63 6f | >`.keywords:.Below.flow-chart.co |
| da820 | 75 6c 64 20 62 65 20 61 20 71 75 69 63 6b 20 72 65 66 65 72 65 6e 63 65 20 66 6f 72 20 74 68 65 | uld.be.a.quick.reference.for.the |
| da840 | 20 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 20 64 65 70 65 6e 64 | .close-action.combination.depend |
| da860 | 69 6e 67 20 6f 6e 20 68 6f 77 20 74 68 65 20 70 65 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 | ing.on.how.the.peer.is.configure |
| da880 | 64 2e 00 42 65 6c 6f 77 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 74 6f 20 63 6f 6e 66 69 67 | d..Below.is.an.example.to.config |
| da8a0 | 75 72 65 20 61 20 4c 4e 53 3a 00 42 65 73 74 20 65 66 66 6f 72 74 20 74 72 61 66 66 69 63 2c 20 | ure.a.LNS:.Best.effort.traffic,. |
| da8c0 | 64 65 66 61 75 6c 74 00 42 65 74 77 65 65 6e 20 63 6f 6d 70 75 74 65 72 73 2c 20 74 68 65 20 6d | default.Between.computers,.the.m |
| da8e0 | 6f 73 74 20 63 6f 6d 6d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 65 64 20 77 61 | ost.common.configuration.used.wa |
| da900 | 73 20 22 38 4e 31 22 3a 20 65 69 67 68 74 20 62 69 74 20 63 68 61 72 61 63 74 65 72 73 2c 20 77 | s."8N1":.eight.bit.characters,.w |
| da920 | 69 74 68 20 6f 6e 65 20 73 74 61 72 74 20 62 69 74 2c 20 6f 6e 65 20 73 74 6f 70 20 62 69 74 2c | ith.one.start.bit,.one.stop.bit, |
| da940 | 20 61 6e 64 20 6e 6f 20 70 61 72 69 74 79 20 62 69 74 2e 20 54 68 75 73 20 31 30 20 42 61 75 64 | .and.no.parity.bit..Thus.10.Baud |
| da960 | 20 74 69 6d 65 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 73 65 6e 64 20 61 20 73 69 6e 67 6c 65 | .times.are.used.to.send.a.single |
| da980 | 20 63 68 61 72 61 63 74 65 72 2c 20 61 6e 64 20 73 6f 20 64 69 76 69 64 69 6e 67 20 74 68 65 20 | .character,.and.so.dividing.the. |
| da9a0 | 73 69 67 6e 61 6c 6c 69 6e 67 20 62 69 74 2d 72 61 74 65 20 62 79 20 74 65 6e 20 72 65 73 75 6c | signalling.bit-rate.by.ten.resul |
| da9c0 | 74 73 20 69 6e 20 74 68 65 20 6f 76 65 72 61 6c 6c 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 73 | ts.in.the.overall.transmission.s |
| da9e0 | 70 65 65 64 20 69 6e 20 63 68 61 72 61 63 74 65 72 73 20 70 65 72 20 73 65 63 6f 6e 64 2e 20 54 | peed.in.characters.per.second..T |
| daa00 | 68 69 73 20 69 73 20 61 6c 73 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 20 | his.is.also.the.default.setting. |
| daa20 | 69 66 20 6e 6f 6e 65 20 6f 66 20 74 68 6f 73 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 64 65 66 | if.none.of.those.options.are.def |
| daa40 | 69 6e 65 64 2e 00 42 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 4e 41 54 00 42 69 6e 61 72 79 20 76 | ined..Bidirectional.NAT.Binary.v |
| daa60 | 61 6c 75 65 00 42 69 6e 64 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 | alue.Bind.container.network.to.a |
| daa80 | 20 67 69 76 65 6e 20 56 52 46 20 69 6e 73 74 61 6e 63 65 2e 00 42 69 6e 64 20 6c 69 73 74 65 6e | .given.VRF.instance..Bind.listen |
| daaa0 | 65 72 20 74 6f 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 2f 61 64 64 72 65 73 73 | er.to.specific.interface/address |
| daac0 | 2c 20 6d 61 6e 64 61 74 6f 72 79 20 66 6f 72 20 49 50 76 36 00 42 69 6e 64 73 20 65 74 68 31 2e | ,.mandatory.for.IPv6.Binds.eth1. |
| daae0 | 32 34 31 20 61 6e 64 20 76 78 6c 61 6e 32 34 31 20 74 6f 20 65 61 63 68 20 6f 74 68 65 72 20 62 | 241.and.vxlan241.to.each.other.b |
| dab00 | 79 20 6d 61 6b 69 6e 67 20 74 68 65 6d 20 62 6f 74 68 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 | y.making.them.both.member.interf |
| dab20 | 61 63 65 73 20 6f 66 20 74 68 65 20 73 61 6d 65 20 62 72 69 64 67 65 2e 00 42 6c 61 63 6b 68 6f | aces.of.the.same.bridge..Blackho |
| dab40 | 6c 65 00 42 6c 6f 63 6b 20 73 6f 75 72 63 65 20 49 50 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 53 | le.Block.source.IP.in.seconds..S |
| dab60 | 75 62 73 65 71 75 65 6e 74 20 62 6c 6f 63 6b 73 20 69 6e 63 72 65 61 73 65 20 62 79 20 61 20 66 | ubsequent.blocks.increase.by.a.f |
| dab80 | 61 63 74 6f 72 20 6f 66 20 31 2e 35 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 32 30 2e | actor.of.1.5.The.default.is.120. |
| daba0 | 00 42 6c 6f 63 6b 20 73 6f 75 72 63 65 20 49 50 20 77 68 65 6e 20 74 68 65 69 72 20 63 75 6d 75 | .Block.source.IP.when.their.cumu |
| dabc0 | 6c 61 74 69 76 65 20 61 74 74 61 63 6b 20 73 63 6f 72 65 20 65 78 63 65 65 64 73 20 74 68 72 65 | lative.attack.score.exceeds.thre |
| dabe0 | 73 68 6f 6c 64 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 33 30 2e 00 42 6c 6f 63 6b 69 | shold..The.default.is.30..Blocki |
| dac00 | 6e 67 20 63 61 6c 6c 20 77 69 74 68 20 6e 6f 20 74 69 6d 65 6f 75 74 2e 20 53 79 73 74 65 6d 20 | ng.call.with.no.timeout..System. |
| dac20 | 77 69 6c 6c 20 62 65 63 6f 6d 65 20 75 6e 72 65 73 70 6f 6e 73 69 76 65 20 69 66 20 73 63 72 69 | will.become.unresponsive.if.scri |
| dac40 | 70 74 20 64 6f 65 73 20 6e 6f 74 20 72 65 74 75 72 6e 21 00 42 6f 61 72 64 65 72 20 47 61 74 65 | pt.does.not.return!.Boarder.Gate |
| dac60 | 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 28 42 47 50 29 20 6f 72 69 67 69 6e 20 63 6f 64 65 20 74 | way.Protocol.(BGP).origin.code.t |
| dac80 | 6f 20 6d 61 74 63 68 2e 00 42 6f 6e 64 20 2f 20 4c 69 6e 6b 20 41 67 67 72 65 67 61 74 69 6f 6e | o.match..Bond./.Link.Aggregation |
| daca0 | 00 42 6f 6e 64 20 6f 70 74 69 6f 6e 73 00 42 6f 6f 74 20 69 6d 61 67 65 20 6c 65 6e 67 74 68 20 | .Bond.options.Boot.image.length. |
| dacc0 | 69 6e 20 35 31 32 2d 6f 63 74 65 74 20 62 6c 6f 63 6b 73 00 42 6f 6f 74 73 74 72 61 70 20 66 69 | in.512-octet.blocks.Bootstrap.fi |
| dace0 | 6c 65 20 6e 61 6d 65 00 42 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 6d 75 6c 74 69 | le.name.Both.IPv4.and.IPv6.multi |
| dad00 | 63 61 73 74 20 69 73 20 70 6f 73 73 69 62 6c 65 2e 00 42 6f 74 68 20 6c 6f 63 61 6c 20 61 64 6d | cast.is.possible..Both.local.adm |
| dad20 | 69 6e 69 73 74 65 72 65 64 20 61 6e 64 20 72 65 6d 6f 74 65 20 61 64 6d 69 6e 69 73 74 65 72 65 | inistered.and.remote.administere |
| dad40 | 64 20 3a 61 62 62 72 3a 60 52 41 44 49 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 68 65 6e 74 69 | d.:abbr:`RADIUS.(Remote.Authenti |
| dad60 | 63 61 74 69 6f 6e 20 44 69 61 6c 2d 49 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 29 60 20 61 63 | cation.Dial-In.User.Service)`.ac |
| dad80 | 63 6f 75 6e 74 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 42 6f 74 68 20 72 65 70 6c 69 | counts.are.supported..Both.repli |
| dada0 | 65 73 20 61 6e 64 20 72 65 71 75 65 73 74 73 20 74 79 70 65 20 67 72 61 74 75 69 74 6f 75 73 20 | es.and.requests.type.gratuitous. |
| dadc0 | 61 72 70 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 20 74 | arp.will.trigger.the.ARP.table.t |
| dade0 | 6f 20 62 65 20 75 70 64 61 74 65 64 2c 20 69 66 20 74 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 | o.be.updated,.if.this.setting.is |
| dae00 | 20 6f 6e 2e 00 42 72 61 6e 63 68 20 31 27 73 20 72 6f 75 74 65 72 20 6d 69 67 68 74 20 68 61 76 | .on..Branch.1's.router.might.hav |
| dae20 | 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6c 69 6e 65 73 3a 00 42 72 69 64 67 65 00 42 72 | e.the.following.lines:.Bridge.Br |
| dae40 | 69 64 67 65 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 42 72 69 64 | idge.Firewall.Configuration.Brid |
| dae60 | 67 65 20 4f 70 74 69 6f 6e 73 00 42 72 69 64 67 65 20 52 75 6c 65 73 00 42 72 69 64 67 65 20 61 | ge.Options.Bridge.Rules.Bridge.a |
| dae80 | 6e 73 77 65 72 73 20 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 2f 32 | nswers.on.IP.address.192.0.2.1/2 |
| daea0 | 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 66 66 66 66 2f 36 34 00 42 72 69 64 67 65 20 6d | 4.and.2001:db8::ffff/64.Bridge.m |
| daec0 | 61 78 69 6d 75 6d 20 61 67 69 6e 67 20 60 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 | aximum.aging.`<time>`.in.seconds |
| daee0 | 20 28 64 65 66 61 75 6c 74 3a 20 32 30 29 2e 00 42 72 69 64 67 65 3a 00 42 75 72 73 74 20 63 6f | .(default:.20)..Bridge:.Burst.co |
| daf00 | 75 6e 74 00 42 75 73 69 6e 65 73 73 20 55 73 65 72 73 00 42 75 74 20 62 65 66 6f 72 65 20 6c 65 | unt.Business.Users.But.before.le |
| daf20 | 61 72 6e 69 6e 67 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 72 20 70 6f 6c 69 63 79 2c | arning.to.configure.your.policy, |
| daf40 | 20 77 65 20 77 69 6c 6c 20 77 61 72 6e 20 79 6f 75 20 61 62 6f 75 74 20 74 68 65 20 64 69 66 66 | .we.will.warn.you.about.the.diff |
| daf60 | 65 72 65 6e 74 20 75 6e 69 74 73 20 79 6f 75 20 63 61 6e 20 75 73 65 20 61 6e 64 20 61 6c 73 6f | erent.units.you.can.use.and.also |
| daf80 | 20 73 68 6f 77 20 79 6f 75 20 77 68 61 74 20 2a 63 6c 61 73 73 65 73 2a 20 61 72 65 20 61 6e 64 | .show.you.what.*classes*.are.and |
| dafa0 | 20 68 6f 77 20 74 68 65 79 20 77 6f 72 6b 2c 20 61 73 20 73 6f 6d 65 20 70 6f 6c 69 63 69 65 73 | .how.they.work,.as.some.policies |
| dafc0 | 20 6d 61 79 20 72 65 71 75 69 72 65 20 79 6f 75 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 | .may.require.you.to.configure.th |
| dafe0 | 65 6d 2e 00 42 79 20 64 65 66 61 75 6c 74 20 56 52 52 50 20 75 73 65 73 20 6d 75 6c 74 69 63 61 | em..By.default.VRRP.uses.multica |
| db000 | 73 74 20 70 61 63 6b 65 74 73 2e 20 49 66 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 20 64 6f 65 73 | st.packets..If.your.network.does |
| db020 | 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 6d 75 6c 74 69 63 61 73 74 20 66 6f 72 20 77 68 61 74 65 | .not.support.multicast.for.whate |
| db040 | 76 65 72 20 72 65 61 73 6f 6e 2c 20 79 6f 75 20 63 61 6e 20 6d 61 6b 65 20 56 52 52 50 20 75 73 | ver.reason,.you.can.make.VRRP.us |
| db060 | 65 20 75 6e 69 63 61 73 74 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 69 6e 73 74 65 61 64 2e | e.unicast.communication.instead. |
| db080 | 00 42 79 20 64 65 66 61 75 6c 74 20 56 52 52 50 20 75 73 65 73 20 70 72 65 65 6d 70 74 69 6f 6e | .By.default.VRRP.uses.preemption |
| db0a0 | 2e 20 59 6f 75 20 63 61 6e 20 64 69 73 61 62 6c 65 20 69 74 20 77 69 74 68 20 74 68 65 20 22 6e | ..You.can.disable.it.with.the."n |
| db0c0 | 6f 2d 70 72 65 65 6d 70 74 22 20 6f 70 74 69 6f 6e 3a 00 42 79 20 64 65 66 61 75 6c 74 20 60 73 | o-preempt".option:.By.default.`s |
| db0e0 | 74 72 69 63 74 2d 6c 73 61 2d 63 68 65 63 6b 69 6e 67 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 | trict-lsa-checking`.is.configure |
| db100 | 64 20 74 68 65 6e 20 74 68 65 20 68 65 6c 70 65 72 20 77 69 6c 6c 20 61 62 6f 72 74 20 74 68 65 | d.then.the.helper.will.abort.the |
| db120 | 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 77 68 65 6e 20 61 20 4c 53 41 20 63 68 61 | .Graceful.Restart.when.a.LSA.cha |
| db140 | 6e 67 65 20 6f 63 63 75 72 73 20 77 68 69 63 68 20 61 66 66 65 63 74 73 20 74 68 65 20 72 65 73 | nge.occurs.which.affects.the.res |
| db160 | 74 61 72 74 69 6e 67 20 72 6f 75 74 65 72 2e 00 42 79 20 64 65 66 61 75 6c 74 20 74 68 65 20 73 | tarting.router..By.default.the.s |
| db180 | 63 6f 70 65 20 6f 66 20 74 68 65 20 70 6f 72 74 20 62 69 6e 64 69 6e 67 73 20 66 6f 72 20 75 6e | cope.of.the.port.bindings.for.un |
| db1a0 | 62 6f 75 6e 64 20 73 6f 63 6b 65 74 73 20 69 73 20 6c 69 6d 69 74 65 64 20 74 6f 20 74 68 65 20 | bound.sockets.is.limited.to.the. |
| db1c0 | 64 65 66 61 75 6c 74 20 56 52 46 2e 20 54 68 61 74 20 69 73 2c 20 69 74 20 77 69 6c 6c 20 6e 6f | default.VRF..That.is,.it.will.no |
| db1e0 | 74 20 62 65 20 6d 61 74 63 68 65 64 20 62 79 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 6e 67 | t.be.matched.by.packets.arriving |
| db200 | 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 65 6e 73 6c 61 76 65 64 20 74 6f 20 61 20 56 52 46 | .on.interfaces.enslaved.to.a.VRF |
| db220 | 20 61 6e 64 20 70 72 6f 63 65 73 73 65 73 20 6d 61 79 20 62 69 6e 64 20 74 6f 20 74 68 65 20 73 | .and.processes.may.bind.to.the.s |
| db240 | 61 6d 65 20 70 6f 72 74 20 69 66 20 74 68 65 79 20 62 69 6e 64 20 74 6f 20 61 20 56 52 46 2e 00 | ame.port.if.they.bind.to.a.VRF.. |
| db260 | 42 79 20 64 65 66 61 75 6c 74 2c 20 46 52 52 20 77 69 6c 6c 20 62 72 69 6e 67 20 75 70 20 70 65 | By.default,.FRR.will.bring.up.pe |
| db280 | 65 72 69 6e 67 20 77 69 74 68 20 6d 69 6e 69 6d 61 6c 20 63 6f 6d 6d 6f 6e 20 63 61 70 61 62 69 | ering.with.minimal.common.capabi |
| db2a0 | 6c 69 74 79 20 66 6f 72 20 74 68 65 20 62 6f 74 68 20 73 69 64 65 73 2e 20 46 6f 72 20 65 78 61 | lity.for.the.both.sides..For.exa |
| db2c0 | 6d 70 6c 65 2c 20 69 66 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 68 61 73 20 75 6e | mple,.if.the.local.router.has.un |
| db2e0 | 69 63 61 73 74 20 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 20 63 61 70 61 62 69 6c 69 74 69 65 73 | icast.and.multicast.capabilities |
| db300 | 20 61 6e 64 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 20 6f 6e 6c 79 20 68 61 73 20 | .and.the.remote.router.only.has. |
| db320 | 75 6e 69 63 61 73 74 20 63 61 70 61 62 69 6c 69 74 79 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 | unicast.capability.the.local.rou |
| db340 | 74 65 72 20 77 69 6c 6c 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f | ter.will.establish.the.connectio |
| db360 | 6e 20 77 69 74 68 20 75 6e 69 63 61 73 74 20 6f 6e 6c 79 20 63 61 70 61 62 69 6c 69 74 79 2e 20 | n.with.unicast.only.capability.. |
| db380 | 57 68 65 6e 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 63 6f 6d 6d 6f 6e 20 63 61 70 61 62 69 6c | When.there.are.no.common.capabil |
| db3a0 | 69 74 69 65 73 2c 20 46 52 52 20 73 65 6e 64 73 20 55 6e 73 75 70 70 6f 72 74 65 64 20 43 61 70 | ities,.FRR.sends.Unsupported.Cap |
| db3c0 | 61 62 69 6c 69 74 79 20 65 72 72 6f 72 20 61 6e 64 20 74 68 65 6e 20 72 65 73 65 74 73 20 74 68 | ability.error.and.then.resets.th |
| db3e0 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 56 79 4f 53 20 64 | e.connection..By.default,.VyOS.d |
| db400 | 6f 65 73 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 | oes.not.advertise.a.default.rout |
| db420 | 65 20 28 30 2e 30 2e 30 2e 30 2f 30 29 20 65 76 65 6e 20 69 66 20 69 74 20 69 73 20 69 6e 20 72 | e.(0.0.0.0/0).even.if.it.is.in.r |
| db440 | 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 57 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 | outing.table..When.you.want.to.a |
| db460 | 6e 6e 6f 75 6e 63 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 73 20 74 6f 20 74 68 65 20 70 65 | nnounce.default.routes.to.the.pe |
| db480 | 65 72 2c 20 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e 20 55 73 69 6e 67 20 6f 70 74 69 | er,.use.this.command..Using.opti |
| db4a0 | 6f 6e 61 6c 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 72 6f 75 74 65 2d 6d 61 70 | onal.argument.:cfgcmd:`route-map |
| db4c0 | 60 20 79 6f 75 20 63 61 6e 20 69 6e 6a 65 63 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 | `.you.can.inject.the.default.rou |
| db4e0 | 74 65 20 74 6f 20 67 69 76 65 6e 20 6e 65 69 67 68 62 6f 72 20 6f 6e 6c 79 20 69 66 20 74 68 65 | te.to.given.neighbor.only.if.the |
| db500 | 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 61 72 65 | .conditions.in.the.route.map.are |
| db520 | 20 6d 65 74 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 61 20 6e 65 77 20 74 6f 6b 65 6e 20 69 73 | .met..By.default,.a.new.token.is |
| db540 | 20 67 65 6e 65 72 61 74 65 64 20 65 76 65 72 79 20 33 30 20 73 65 63 6f 6e 64 73 20 62 79 20 74 | .generated.every.30.seconds.by.t |
| db560 | 68 65 20 6d 6f 62 69 6c 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 2e 20 49 6e 20 6f 72 64 65 72 20 | he.mobile.application..In.order. |
| db580 | 74 6f 20 63 6f 6d 70 65 6e 73 61 74 65 20 66 6f 72 20 70 6f 73 73 69 62 6c 65 20 74 69 6d 65 2d | to.compensate.for.possible.time- |
| db5a0 | 73 6b 65 77 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 | skew.between.the.client.and.the. |
| db5c0 | 73 65 72 76 65 72 2c 20 61 6e 20 65 78 74 72 61 20 74 6f 6b 65 6e 20 62 65 66 6f 72 65 20 61 6e | server,.an.extra.token.before.an |
| db5e0 | 64 20 61 66 74 65 72 20 74 68 65 20 63 75 72 72 65 6e 74 20 74 69 6d 65 20 69 73 20 61 6c 6c 6f | d.after.the.current.time.is.allo |
| db600 | 77 65 64 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 20 74 69 6d 65 20 73 6b 65 77 | wed..This.allows.for.a.time.skew |
| db620 | 20 6f 66 20 75 70 20 74 6f 20 33 30 20 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 61 75 74 | .of.up.to.30.seconds.between.aut |
| db640 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2e 00 42 | hentication.server.and.client..B |
| db660 | 79 20 64 65 66 61 75 6c 74 2c 20 64 64 63 6c 69 65 6e 74 5f 20 77 69 6c 6c 20 75 70 64 61 74 65 | y.default,.ddclient_.will.update |
| db680 | 20 61 20 64 79 6e 61 6d 69 63 20 64 6e 73 20 72 65 63 6f 72 64 20 75 73 69 6e 67 20 74 68 65 20 | .a.dynamic.dns.record.using.the. |
| db6a0 | 49 50 20 61 64 64 72 65 73 73 20 64 69 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 74 6f 20 | IP.address.directly.attached.to. |
| db6c0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 | the.interface..If.your.VyOS.inst |
| db6e0 | 61 6e 63 65 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 2c 20 79 6f 75 72 20 72 65 63 6f 72 64 20 | ance.is.behind.NAT,.your.record. |
| db700 | 77 69 6c 6c 20 62 65 20 75 70 64 61 74 65 64 20 74 6f 20 70 6f 69 6e 74 20 74 6f 20 79 6f 75 72 | will.be.updated.to.point.to.your |
| db720 | 20 69 6e 74 65 72 6e 61 6c 20 49 50 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 65 6e 61 62 6c 69 | .internal.IP..By.default,.enabli |
| db740 | 6e 67 20 52 50 4b 49 20 64 6f 65 73 20 6e 6f 74 20 63 68 61 6e 67 65 20 62 65 73 74 20 70 61 74 | ng.RPKI.does.not.change.best.pat |
| db760 | 68 20 73 65 6c 65 63 74 69 6f 6e 2e 20 49 6e 20 70 61 72 74 69 63 75 6c 61 72 2c 20 69 6e 76 61 | h.selection..In.particular,.inva |
| db780 | 6c 69 64 20 70 72 65 66 69 78 65 73 20 77 69 6c 6c 20 73 74 69 6c 6c 20 62 65 20 63 6f 6e 73 69 | lid.prefixes.will.still.be.consi |
| db7a0 | 64 65 72 65 64 20 64 75 72 69 6e 67 20 62 65 73 74 20 70 61 74 68 20 73 65 6c 65 63 74 69 6f 6e | dered.during.best.path.selection |
| db7c0 | 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 20 72 6f 75 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e | ..However,.the.router.can.be.con |
| db7e0 | 66 69 67 75 72 65 64 20 74 6f 20 69 67 6e 6f 72 65 20 61 6c 6c 20 69 6e 76 61 6c 69 64 20 70 72 | figured.to.ignore.all.invalid.pr |
| db800 | 65 66 69 78 65 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 66 6f 72 20 73 77 69 74 63 68 65 64 | efixes..By.default,.for.switched |
| db820 | 20 74 72 61 66 66 69 63 2c 20 6f 6e 6c 79 20 74 68 65 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 | .traffic,.only.the.rules.defined |
| db840 | 20 75 6e 64 65 72 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 60 60 20 61 | .under.``set.firewall.bridge``.a |
| db860 | 72 65 20 61 70 70 6c 69 65 64 2e 20 54 68 65 72 65 20 61 72 65 20 74 77 6f 20 67 6c 6f 62 61 6c | re.applied..There.are.two.global |
| db880 | 2d 6f 70 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | -options.that.can.be.configured. |
| db8a0 | 69 6e 20 6f 72 64 65 72 20 74 6f 20 66 6f 72 63 65 20 64 65 65 70 65 72 20 61 6e 61 6c 79 73 69 | in.order.to.force.deeper.analysi |
| db8c0 | 73 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 6f 6e 20 74 68 65 20 49 50 20 6c 61 79 65 72 2e | s.of.the.packet.on.the.IP.layer. |
| db8e0 | 20 54 68 65 73 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 3a 00 42 79 20 64 65 66 61 75 6c 74 2c 20 | .These.options.are:.By.default,. |
| db900 | 69 74 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 20 70 6c 61 6e 6e 65 64 20 61 6e 64 20 75 6e 70 | it.supports.both.planned.and.unp |
| db920 | 6c 61 6e 6e 65 64 20 6f 75 74 61 67 65 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 6c 6f 63 61 | lanned.outages..By.default,.loca |
| db940 | 6c 6c 79 20 61 64 76 65 72 74 69 73 65 64 20 70 72 65 66 69 78 65 73 20 75 73 65 20 74 68 65 20 | lly.advertised.prefixes.use.the. |
| db960 | 69 6d 70 6c 69 63 69 74 2d 6e 75 6c 6c 20 6c 61 62 65 6c 20 74 6f 20 65 6e 63 6f 64 65 20 69 6e | implicit-null.label.to.encode.in |
| db980 | 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 4e 4c 52 49 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 | .the.outgoing.NLRI..By.default,. |
| db9a0 | 6e 67 69 6e 78 20 65 78 70 6f 73 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 41 50 49 20 6f 6e 20 61 | nginx.exposes.the.local.API.on.a |
| db9c0 | 6c 6c 20 76 69 72 74 75 61 6c 20 73 65 72 76 65 72 73 2e 20 55 73 65 20 74 68 69 73 20 74 6f 20 | ll.virtual.servers..Use.this.to. |
| db9e0 | 72 65 73 74 72 69 63 74 20 6e 67 69 6e 78 20 74 6f 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 76 69 | restrict.nginx.to.one.or.more.vi |
| dba00 | 72 74 75 61 6c 20 68 6f 73 74 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 72 65 63 6f 72 64 65 | rtual.hosts..By.default,.recorde |
| dba20 | 64 20 66 6c 6f 77 73 20 77 69 6c 6c 20 62 65 20 73 61 76 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 | d.flows.will.be.saved.internally |
| dba40 | 20 61 6e 64 20 63 61 6e 20 62 65 20 6c 69 73 74 65 64 20 77 69 74 68 20 74 68 65 20 43 4c 49 20 | .and.can.be.listed.with.the.CLI. |
| dba60 | 63 6f 6d 6d 61 6e 64 2e 20 59 6f 75 20 6d 61 79 20 64 69 73 61 62 6c 65 20 75 73 69 6e 67 20 74 | command..You.may.disable.using.t |
| dba80 | 68 65 20 6c 6f 63 61 6c 20 69 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c 65 20 77 69 74 68 20 74 68 | he.local.in-memory.table.with.th |
| dbaa0 | 65 20 63 6f 6d 6d 61 6e 64 3a 00 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 42 47 50 20 70 | e.command:.By.default,.the.BGP.p |
| dbac0 | 72 65 66 69 78 20 69 73 20 61 64 76 65 72 74 69 73 65 64 20 65 76 65 6e 20 69 66 20 69 74 27 73 | refix.is.advertised.even.if.it's |
| dbae0 | 20 6e 6f 74 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | .not.present.in.the.routing.tabl |
| dbb00 | 65 2e 20 54 68 69 73 20 62 65 68 61 76 69 6f 75 72 20 64 69 66 66 65 72 73 20 66 72 6f 6d 20 74 | e..This.behaviour.differs.from.t |
| dbb20 | 68 65 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 20 73 6f 6d 65 20 76 65 6e 64 6f 72 | he.implementation.of.some.vendor |
| dbb40 | 73 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 69 73 20 62 72 69 64 67 69 6e 67 20 69 73 20 | s..By.default,.this.bridging.is. |
| dbb60 | 61 6c 6c 6f 77 65 64 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 77 68 65 6e 20 56 79 4f 53 20 72 | allowed..By.default,.when.VyOS.r |
| dbb80 | 65 63 65 69 76 65 73 20 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 70 61 63 | eceives.an.ICMP.echo.request.pac |
| dbba0 | 6b 65 74 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 69 74 73 65 6c 66 2c 20 69 74 20 77 69 6c 6c | ket.destined.for.itself,.it.will |
| dbbc0 | 20 61 6e 73 77 65 72 20 77 69 74 68 20 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 70 6c 79 2c | .answer.with.an.ICMP.echo.reply, |
| dbbe0 | 20 75 6e 6c 65 73 73 20 79 6f 75 20 61 76 6f 69 64 20 69 74 20 74 68 72 6f 75 67 68 20 69 74 73 | .unless.you.avoid.it.through.its |
| dbc00 | 20 66 69 72 65 77 61 6c 6c 2e 00 42 79 20 64 65 66 61 75 6c 74 2c 20 77 68 65 6e 20 56 79 4f 53 | .firewall..By.default,.when.VyOS |
| dbc20 | 20 72 65 63 65 69 76 65 73 20 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 70 | .receives.an.ICMP.echo.request.p |
| dbc40 | 61 63 6b 65 74 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 69 74 73 65 6c 66 2c 20 69 74 20 77 69 | acket.destined.for.itself,.it.wi |
| dbc60 | 6c 6c 20 61 6e 73 77 65 72 20 77 69 74 68 20 61 6e 20 49 43 4d 50 20 65 63 68 6f 20 72 65 70 6c | ll.answer.with.an.ICMP.echo.repl |
| dbc80 | 79 2c 20 75 6e 6c 65 73 73 20 79 6f 75 20 70 72 65 76 65 6e 74 20 69 74 20 74 68 72 6f 75 67 68 | y,.unless.you.prevent.it.through |
| dbca0 | 20 69 74 73 20 66 69 72 65 77 61 6c 6c 2e 00 42 79 20 75 73 69 6e 67 20 50 73 65 75 64 6f 2d 45 | .its.firewall..By.using.Pseudo-E |
| dbcc0 | 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 65 72 65 20 77 69 6c 6c 20 62 65 | thernet.interfaces.there.will.be |
| dbce0 | 20 6c 65 73 73 20 73 79 73 74 65 6d 20 6f 76 65 72 68 65 61 64 20 63 6f 6d 70 61 72 65 64 20 74 | .less.system.overhead.compared.t |
| dbd00 | 6f 20 72 75 6e 6e 69 6e 67 20 61 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 62 72 69 64 67 69 6e 67 | o.running.a.traditional.bridging |
| dbd20 | 20 61 70 70 72 6f 61 63 68 2e 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 | .approach..Pseudo-Ethernet.inter |
| dbd40 | 66 61 63 65 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 75 73 65 64 20 74 6f 20 77 6f 72 6b 61 72 | faces.can.also.be.used.to.workar |
| dbd60 | 6f 75 6e 64 20 74 68 65 20 67 65 6e 65 72 61 6c 20 6c 69 6d 69 74 20 6f 66 20 34 30 39 36 20 76 | ound.the.general.limit.of.4096.v |
| dbd80 | 69 72 74 75 61 6c 20 4c 41 4e 73 20 28 56 4c 41 4e 73 29 20 70 65 72 20 70 68 79 73 69 63 61 6c | irtual.LANs.(VLANs).per.physical |
| dbda0 | 20 45 74 68 65 72 6e 65 74 20 70 6f 72 74 2c 20 73 69 6e 63 65 20 74 68 61 74 20 6c 69 6d 69 74 | .Ethernet.port,.since.that.limit |
| dbdc0 | 20 69 73 20 77 69 74 68 20 72 65 73 70 65 63 74 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 4d 41 43 | .is.with.respect.to.a.single.MAC |
| dbde0 | 20 61 64 64 72 65 73 73 2e 00 42 79 70 61 73 73 69 6e 67 20 74 68 65 20 77 65 62 70 72 6f 78 79 | .address..Bypassing.the.webproxy |
| dbe00 | 00 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 00 43 41 4b 45 | .CA.(Certificate.Authority).CAKE |
| dbe20 | 00 43 47 4e 41 54 00 43 47 4e 41 54 20 77 6f 72 6b 73 20 62 79 20 70 6c 61 63 69 6e 67 20 61 20 | .CGNAT.CGNAT.works.by.placing.a. |
| dbe40 | 4e 41 54 20 64 65 76 69 63 65 20 77 69 74 68 69 6e 20 74 68 65 20 49 53 50 27 73 20 6e 65 74 77 | NAT.device.within.the.ISP's.netw |
| dbe60 | 6f 72 6b 2e 20 54 68 69 73 20 64 65 76 69 63 65 20 74 72 61 6e 73 6c 61 74 65 73 20 70 72 69 76 | ork..This.device.translates.priv |
| dbe80 | 61 74 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 20 63 75 73 74 6f 6d 65 72 20 6e | ate.IP.addresses.from.customer.n |
| dbea0 | 65 74 77 6f 72 6b 73 20 74 6f 20 61 20 6c 69 6d 69 74 65 64 20 70 6f 6f 6c 20 6f 66 20 70 75 62 | etworks.to.a.limited.pool.of.pub |
| dbec0 | 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 | lic.IP.addresses.assigned.to.the |
| dbee0 | 20 49 53 50 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 6d 61 6e 79 20 63 75 73 74 6f 6d 65 72 73 | .ISP..This.allows.many.customers |
| dbf00 | 20 74 6f 20 73 68 61 72 65 20 61 20 73 6d 61 6c 6c 65 72 20 6e 75 6d 62 65 72 20 6f 66 20 70 75 | .to.share.a.smaller.number.of.pu |
| dbf20 | 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 43 52 49 54 49 43 2f 45 43 50 00 43 61 | blic.IP.addresses..CRITIC/ECP.Ca |
| dbf40 | 6c 6c 20 61 6e 6f 74 68 65 72 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 20 6f 6e 20 6d | ll.another.route-map.policy.on.m |
| dbf60 | 61 74 63 68 2e 00 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 00 43 65 72 | atch..Capability.Negotiation.Cer |
| dbf80 | 74 61 69 6e 20 76 65 6e 64 6f 72 73 20 75 73 65 20 62 72 6f 61 64 63 61 73 74 73 20 74 6f 20 69 | tain.vendors.use.broadcasts.to.i |
| dbfa0 | 64 65 6e 74 69 66 79 20 74 68 65 69 72 20 65 71 75 69 70 6d 65 6e 74 20 77 69 74 68 69 6e 20 6f | dentify.their.equipment.within.o |
| dbfc0 | 6e 65 20 65 74 68 65 72 6e 65 74 20 73 65 67 6d 65 6e 74 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 | ne.ethernet.segment..Unfortunate |
| dbfe0 | 6c 79 20 69 66 20 79 6f 75 20 73 70 6c 69 74 20 79 6f 75 72 20 6e 65 74 77 6f 72 6b 20 77 69 74 | ly.if.you.split.your.network.wit |
| dc000 | 68 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 73 20 79 6f 75 20 6c 6f 6f 73 65 20 74 68 65 20 61 | h.multiple.VLANs.you.loose.the.a |
| dc020 | 62 69 6c 69 74 79 20 6f 66 20 69 64 65 6e 74 69 66 79 69 6e 67 20 79 6f 75 72 20 65 71 75 69 70 | bility.of.identifying.your.equip |
| dc040 | 6d 65 6e 74 2e 00 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 20 28 43 41 29 | ment..Certificate.Authority.(CA) |
| dc060 | 00 43 65 72 74 69 66 69 63 61 74 65 20 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 20 69 6e 20 | .Certificate.revocation.list.in. |
| dc080 | 50 45 4d 20 66 6f 72 6d 61 74 2e 00 43 65 72 74 69 66 69 63 61 74 65 73 00 43 68 61 6e 67 65 20 | PEM.format..Certificates.Change. |
| dc0a0 | 73 79 73 74 65 6d 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 74 6f 20 67 69 76 65 6e 20 | system.keyboard.layout.to.given. |
| dc0c0 | 6c 61 6e 67 75 61 67 65 2e 00 43 68 61 6e 67 65 20 74 68 65 20 64 65 66 61 75 6c 74 2d 61 63 74 | language..Change.the.default-act |
| dc0e0 | 69 6f 6e 20 77 69 74 68 20 74 68 69 73 20 73 65 74 74 69 6e 67 2e 00 43 68 61 6e 67 65 73 20 69 | ion.with.this.setting..Changes.i |
| dc100 | 6e 20 42 47 50 20 70 6f 6c 69 63 69 65 73 20 72 65 71 75 69 72 65 20 74 68 65 20 42 47 50 20 73 | n.BGP.policies.require.the.BGP.s |
| dc120 | 65 73 73 69 6f 6e 20 74 6f 20 62 65 20 63 6c 65 61 72 65 64 2e 20 43 6c 65 61 72 69 6e 67 20 68 | ession.to.be.cleared..Clearing.h |
| dc140 | 61 73 20 61 20 6c 61 72 67 65 20 6e 65 67 61 74 69 76 65 20 69 6d 70 61 63 74 20 6f 6e 20 6e 65 | as.a.large.negative.impact.on.ne |
| dc160 | 74 77 6f 72 6b 20 6f 70 65 72 61 74 69 6f 6e 73 2e 20 53 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 | twork.operations..Soft.reconfigu |
| dc180 | 72 61 74 69 6f 6e 20 65 6e 61 62 6c 65 73 20 79 6f 75 20 74 6f 20 67 65 6e 65 72 61 74 65 20 69 | ration.enables.you.to.generate.i |
| dc1a0 | 6e 62 6f 75 6e 64 20 75 70 64 61 74 65 73 20 66 72 6f 6d 20 61 20 6e 65 69 67 68 62 6f 72 2c 20 | nbound.updates.from.a.neighbor,. |
| dc1c0 | 63 68 61 6e 67 65 20 61 6e 64 20 61 63 74 69 76 61 74 65 20 42 47 50 20 70 6f 6c 69 63 69 65 73 | change.and.activate.BGP.policies |
| dc1e0 | 20 77 69 74 68 6f 75 74 20 63 6c 65 61 72 69 6e 67 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f | .without.clearing.the.BGP.sessio |
| dc200 | 6e 2e 00 43 68 61 6e 67 65 73 20 74 6f 20 74 68 65 20 4e 41 54 20 73 79 73 74 65 6d 20 6f 6e 6c | n..Changes.to.the.NAT.system.onl |
| dc220 | 79 20 61 66 66 65 63 74 20 6e 65 77 6c 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 | y.affect.newly.established.conne |
| dc240 | 63 74 69 6f 6e 73 2e 20 41 6c 72 65 61 64 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e | ctions..Already.established.conn |
| dc260 | 65 63 74 69 6f 6e 73 20 61 72 65 20 6e 6f 74 20 61 66 66 65 63 74 65 64 2e 00 43 68 61 6e 67 69 | ections.are.not.affected..Changi |
| dc280 | 6e 67 20 74 68 65 20 6b 65 79 6d 61 70 20 6f 6e 6c 79 20 68 61 73 20 61 6e 20 65 66 66 65 63 74 | ng.the.keymap.only.has.an.effect |
| dc2a0 | 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c 65 2c 20 75 73 69 6e 67 20 53 53 | .on.the.system.console,.using.SS |
| dc2c0 | 48 20 6f 72 20 53 65 72 69 61 6c 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 | H.or.Serial.remote.access.to.the |
| dc2e0 | 20 64 65 76 69 63 65 20 69 73 20 6e 6f 74 20 61 66 66 65 63 74 65 64 20 61 73 20 74 68 65 20 6b | .device.is.not.affected.as.the.k |
| dc300 | 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 68 65 72 65 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 | eyboard.layout.here.corresponds. |
| dc320 | 74 6f 20 79 6f 75 72 20 61 63 63 65 73 73 20 73 79 73 74 65 6d 2e 00 43 68 61 6e 6e 65 6c 20 6e | to.your.access.system..Channel.n |
| dc340 | 75 6d 62 65 72 20 28 49 45 45 45 20 38 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e 34 47 68 7a 20 | umber.(IEEE.802.11),.for.2.4Ghz. |
| dc360 | 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 | (802.11.b/g/n).channels.range.fr |
| dc380 | 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 30 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e | om.1-14..On.5Ghz.(802.11.a/h/j/n |
| dc3a0 | 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 30 2c 20 33 | /ac).channels.available.are.0,.3 |
| dc3c0 | 34 20 74 6f 20 31 37 33 00 43 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 45 45 20 38 30 | 4.to.173.Channel.number.(IEEE.80 |
| dc3e0 | 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 2f 67 2f 6e 29 | 2.11),.for.2.4Ghz.(802.11.b/g/n) |
| dc400 | 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 2d 31 34 2e 20 4f 6e 20 35 47 | .channels.range.from.1-14..On.5G |
| dc420 | 68 7a 20 28 38 30 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e 2f 61 63 29 20 63 68 61 6e 6e 65 6c 73 20 | hz.(802.11.a/h/j/n/ac).channels. |
| dc440 | 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 30 2c 20 33 34 20 74 6f 20 31 37 33 2e 20 4f 6e 20 36 | available.are.0,.34.to.173..On.6 |
| dc460 | 47 48 7a 20 28 38 30 32 2e 31 31 20 61 78 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 | GHz.(802.11.ax).channels.range.f |
| dc480 | 72 6f 6d 20 31 20 74 6f 20 32 33 33 2e 00 43 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 20 28 49 45 | rom.1.to.233..Channel.number.(IE |
| dc4a0 | 45 45 20 38 30 32 2e 31 31 29 2c 20 66 6f 72 20 32 2e 34 47 68 7a 20 28 38 30 32 2e 31 31 20 62 | EE.802.11),.for.2.4Ghz.(802.11.b |
| dc4c0 | 2f 67 2f 6e 2f 61 78 29 20 63 68 61 6e 6e 65 6c 73 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 2d 31 | /g/n/ax).channels.range.from.1-1 |
| dc4e0 | 34 2e 20 4f 6e 20 35 47 68 7a 20 28 38 30 32 2e 31 31 20 61 2f 68 2f 6a 2f 6e 2f 61 63 29 20 63 | 4..On.5Ghz.(802.11.a/h/j/n/ac).c |
| dc500 | 68 61 6e 6e 65 6c 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 20 30 2c 20 33 34 20 74 6f 20 31 | hannels.available.are.0,.34.to.1 |
| dc520 | 37 37 2e 20 4f 6e 20 36 47 48 7a 20 28 38 30 32 2e 31 31 20 61 78 29 20 63 68 61 6e 6e 65 6c 73 | 77..On.6GHz.(802.11.ax).channels |
| dc540 | 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 32 33 33 2e 00 43 68 65 63 6b 20 69 66 20 74 | .range.from.1.to.233..Check.if.t |
| dc560 | 68 65 20 49 6e 74 65 6c c2 ae 20 51 41 54 20 64 65 76 69 63 65 20 69 73 20 75 70 20 61 6e 64 20 | he.Intel...QAT.device.is.up.and. |
| dc580 | 72 65 61 64 79 20 74 6f 20 64 6f 20 74 68 65 20 6a 6f 62 2e 00 43 68 65 63 6b 20 73 74 61 74 75 | ready.to.do.the.job..Check.statu |
| dc5a0 | 73 00 43 68 65 63 6b 20 74 68 65 20 6d 61 6e 79 20 70 61 72 61 6d 65 74 65 72 73 20 61 76 61 69 | s.Check.the.many.parameters.avai |
| dc5c0 | 6c 61 62 6c 65 20 66 6f 72 20 74 68 65 20 60 73 68 6f 77 20 69 70 76 36 20 72 6f 75 74 65 60 20 | lable.for.the.`show.ipv6.route`. |
| dc5e0 | 63 6f 6d 6d 61 6e 64 3a 00 43 68 65 63 6b 3a 00 43 68 65 63 6b 69 6e 67 20 63 6f 6e 6e 65 63 74 | command:.Check:.Checking.connect |
| dc600 | 69 6f 6e 73 00 43 68 65 63 6b 73 00 43 68 65 63 6b 73 20 66 6f 72 20 74 68 65 20 65 78 69 73 74 | ions.Checks.Checks.for.the.exist |
| dc620 | 65 6e 63 65 20 6f 66 20 74 68 65 20 53 75 72 69 63 61 74 61 20 63 6f 6e 66 69 67 75 72 61 74 69 | ence.of.the.Suricata.configurati |
| dc640 | 6f 6e 20 66 69 6c 65 2c 20 75 70 64 61 74 65 73 20 74 68 65 20 73 65 72 76 69 63 65 2c 20 61 6e | on.file,.updates.the.service,.an |
| dc660 | 64 20 74 68 65 6e 20 72 65 73 74 61 72 74 73 20 69 74 2e 20 49 66 20 74 68 65 20 63 6f 6e 66 69 | d.then.restarts.it..If.the.confi |
| dc680 | 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 20 69 73 20 6e 6f 74 20 66 6f 75 6e 64 2c 20 61 20 6d 65 | guration.file.is.not.found,.a.me |
| dc6a0 | 73 73 61 67 65 20 69 6e 64 69 63 61 74 65 73 20 74 68 61 74 20 53 75 72 69 63 61 74 61 20 69 73 | ssage.indicates.that.Suricata.is |
| dc6c0 | 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 43 68 6f 6f 73 65 20 79 6f 75 72 20 60 60 64 | .not.configured..Choose.your.``d |
| dc6e0 | 69 72 65 63 74 6f 72 79 60 60 20 6c 6f 63 61 74 69 6f 6e 20 63 61 72 65 66 75 6c 6c 79 20 6f 72 | irectory``.location.carefully.or |
| dc700 | 20 79 6f 75 20 77 69 6c 6c 20 6c 6f 6f 73 65 20 74 68 65 20 63 6f 6e 74 65 6e 74 20 6f 6e 20 69 | .you.will.loose.the.content.on.i |
| dc720 | 6d 61 67 65 20 75 70 67 72 61 64 65 73 2e 20 41 6e 79 20 64 69 72 65 63 74 6f 72 79 20 75 6e 64 | mage.upgrades..Any.directory.und |
| dc740 | 65 72 20 60 60 2f 63 6f 6e 66 69 67 60 60 20 69 73 20 73 61 76 65 20 61 74 20 74 68 69 73 20 77 | er.``/config``.is.save.at.this.w |
| dc760 | 69 6c 6c 20 62 65 20 6d 69 67 72 61 74 65 64 2e 00 43 69 73 63 6f 20 43 61 74 61 6c 79 73 74 00 | ill.be.migrated..Cisco.Catalyst. |
| dc780 | 43 69 73 63 6f 20 61 6e 64 20 41 6c 6c 69 65 64 20 54 65 6c 65 73 79 6e 20 63 61 6c 6c 20 69 74 | Cisco.and.Allied.Telesyn.call.it |
| dc7a0 | 20 50 72 69 76 61 74 65 20 56 4c 41 4e 00 43 6c 61 6d 70 20 4d 53 53 20 66 6f 72 20 61 20 73 70 | .Private.VLAN.Clamp.MSS.for.a.sp |
| dc7c0 | 65 63 69 66 69 63 20 49 50 00 43 6c 61 73 73 20 74 72 65 61 74 6d 65 6e 74 00 43 6c 61 73 73 65 | ecific.IP.Class.treatment.Classe |
| dc7e0 | 73 00 43 6c 61 73 73 6c 65 73 73 20 73 74 61 74 69 63 20 72 6f 75 74 65 00 43 6c 65 61 72 20 61 | s.Classless.static.route.Clear.a |
| dc800 | 6c 6c 20 42 47 50 20 65 78 74 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 00 43 6c 69 65 6e 74 00 43 6c | ll.BGP.extcommunities..Client.Cl |
| dc820 | 69 65 6e 74 20 41 64 64 72 65 73 73 20 50 6f 6f 6c 73 00 43 6c 69 65 6e 74 20 41 75 74 68 65 6e | ient.Address.Pools.Client.Authen |
| dc840 | 74 69 63 61 74 69 6f 6e 00 43 6c 69 65 6e 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6c | tication.Client.Configuration.Cl |
| dc860 | 69 65 6e 74 20 49 50 20 50 6f 6f 6c 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 43 6c | ient.IP.Pool.Advanced.Options.Cl |
| dc880 | 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 77 69 6c 6c 20 62 65 20 70 72 6f 76 69 64 | ient.IP.addresses.will.be.provid |
| dc8a0 | 65 64 20 66 72 6f 6d 20 70 6f 6f 6c 20 60 31 39 32 2e 30 2e 32 2e 30 2f 32 35 60 00 43 6c 69 65 | ed.from.pool.`192.0.2.0/25`.Clie |
| dc8c0 | 6e 74 20 53 69 64 65 00 43 6c 69 65 6e 74 20 53 69 64 65 20 3a 00 43 6c 69 65 6e 74 20 63 6f 6e | nt.Side.Client.Side.:.Client.con |
| dc8e0 | 66 69 67 75 72 61 74 69 6f 6e 00 43 6c 69 65 6e 74 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 00 43 6c | figuration.Client.domain.name.Cl |
| dc900 | 69 65 6e 74 20 64 6f 6d 61 69 6e 20 73 65 61 72 63 68 00 43 6c 69 65 6e 74 20 69 73 6f 6c 61 74 | ient.domain.search.Client.isolat |
| dc920 | 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 70 72 65 76 65 6e 74 20 6c 6f 77 2d 6c | ion.can.be.used.to.prevent.low-l |
| dc940 | 65 76 65 6c 20 62 72 69 64 67 69 6e 67 20 6f 66 20 66 72 61 6d 65 73 20 62 65 74 77 65 65 6e 20 | evel.bridging.of.frames.between. |
| dc960 | 61 73 73 6f 63 69 61 74 65 64 20 73 74 61 74 69 6f 6e 73 20 69 6e 20 74 68 65 20 42 53 53 2e 00 | associated.stations.in.the.BSS.. |
| dc980 | 43 6c 69 65 6e 74 3a 00 43 6c 69 65 6e 74 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 | Client:.Clients.are.identified.b |
| dc9a0 | 79 20 74 68 65 20 43 4e 20 66 69 65 6c 64 20 6f 66 20 74 68 65 69 72 20 78 2e 35 30 39 20 63 65 | y.the.CN.field.of.their.x.509.ce |
| dc9c0 | 72 74 69 66 69 63 61 74 65 73 2c 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 74 68 65 20 | rtificates,.in.this.example.the. |
| dc9e0 | 43 4e 20 69 73 20 60 60 63 6c 69 65 6e 74 30 60 60 3a 00 43 6c 69 65 6e 74 73 20 72 65 63 65 69 | CN.is.``client0``:.Clients.recei |
| dca00 | 76 69 6e 67 20 61 64 76 65 72 74 69 73 65 20 6d 65 73 73 61 67 65 73 20 66 72 6f 6d 20 6d 75 6c | ving.advertise.messages.from.mul |
| dca20 | 74 69 70 6c 65 20 73 65 72 76 65 72 73 20 63 68 6f 6f 73 65 20 74 68 65 20 73 65 72 76 65 72 20 | tiple.servers.choose.the.server. |
| dca40 | 77 69 74 68 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 6c 75 | with.the.highest.preference.valu |
| dca60 | 65 2e 20 54 68 65 20 72 61 6e 67 65 20 66 6f 72 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 60 | e..The.range.for.this.value.is.` |
| dca80 | 60 30 2e 2e 2e 32 35 35 60 60 2e 00 43 6c 6f 63 6b 20 64 61 65 6d 6f 6e 00 43 6f 6d 6d 61 6e 64 | `0...255``..Clock.daemon.Command |
| dcaa0 | 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 6c 69 73 74 20 | .completion.can.be.used.to.list. |
| dcac0 | 61 76 61 69 6c 61 62 6c 65 20 74 69 6d 65 20 7a 6f 6e 65 73 2e 20 54 68 65 20 61 64 6a 75 73 74 | available.time.zones..The.adjust |
| dcae0 | 6d 65 6e 74 20 66 6f 72 20 64 61 79 6c 69 67 68 74 20 74 69 6d 65 20 77 69 6c 6c 20 74 61 6b 65 | ment.for.daylight.time.will.take |
| dcb00 | 20 70 6c 61 63 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 61 73 65 64 20 6f 6e 20 74 68 | .place.automatically.based.on.th |
| dcb20 | 65 20 74 69 6d 65 20 6f 66 20 79 65 61 72 2e 00 43 6f 6d 6d 61 6e 64 20 66 6f 72 20 64 69 73 61 | e.time.of.year..Command.for.disa |
| dcb40 | 62 6c 69 6e 67 20 61 20 72 75 6c 65 20 62 75 74 20 6b 65 65 70 20 69 74 20 69 6e 20 74 68 65 20 | bling.a.rule.but.keep.it.in.the. |
| dcb60 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 43 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 70 72 | configuration..Command.should.pr |
| dcb80 | 6f 62 61 62 6c 79 20 62 65 20 65 78 74 65 6e 64 65 64 20 74 6f 20 6c 69 73 74 20 61 6c 73 6f 20 | obably.be.extended.to.list.also. |
| dcba0 | 74 68 65 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 | the.real.interfaces.assigned.to. |
| dcbc0 | 74 68 69 73 20 6f 6e 65 20 56 52 46 20 74 6f 20 67 65 74 20 61 20 62 65 74 74 65 72 20 6f 76 65 | this.one.VRF.to.get.a.better.ove |
| dcbe0 | 72 76 69 65 77 2e 00 43 6f 6d 6d 61 6e 64 20 75 73 65 64 20 74 6f 20 75 70 64 61 74 65 20 47 65 | rview..Command.used.to.update.Ge |
| dcc00 | 6f 49 50 20 64 61 74 61 62 61 73 65 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 73 65 74 73 2e 00 | oIP.database.and.firewall.sets.. |
| dcc20 | 43 6f 6d 6d 61 6e 64 73 00 43 6f 6d 6d 61 6e 64 73 20 75 73 65 64 20 66 6f 72 20 74 68 69 73 20 | Commands.Commands.used.for.this. |
| dcc40 | 74 61 73 6b 20 61 72 65 3a 00 43 6f 6d 6d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 | task.are:.Common.configuration,. |
| dcc60 | 76 61 6c 69 64 20 66 6f 72 20 62 6f 74 68 20 70 72 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f 6e | valid.for.both.primary.and.secon |
| dcc80 | 64 61 72 79 20 6e 6f 64 65 2e 00 43 6f 6d 6d 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 | dary.node..Common.interface.conf |
| dcca0 | 69 67 75 72 61 74 69 6f 6e 00 43 6f 6d 6d 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 00 43 6f 6d 70 | iguration.Common.parameters.Comp |
| dccc0 | 72 65 73 73 69 6f 6e 20 69 73 20 67 65 6e 65 72 61 6c 6c 79 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 | ression.is.generally.not.recomme |
| dcce0 | 6e 64 65 64 2e 20 56 50 4e 20 74 75 6e 6e 65 6c 73 20 77 68 69 63 68 20 75 73 65 20 63 6f 6d 70 | nded..VPN.tunnels.which.use.comp |
| dcd00 | 72 65 73 73 69 6f 6e 20 61 72 65 20 73 75 73 63 65 70 74 69 62 6c 65 20 74 6f 20 74 68 65 20 56 | ression.are.susceptible.to.the.V |
| dcd20 | 4f 52 41 4c 43 45 20 61 74 74 61 63 6b 20 76 65 63 74 6f 72 2e 20 45 6e 61 62 6c 65 20 63 6f 6d | ORALCE.attack.vector..Enable.com |
| dcd40 | 70 72 65 73 73 69 6f 6e 20 69 66 20 6e 65 65 64 65 64 2e 00 43 6f 6e 63 6c 75 73 69 6f 6e 00 43 | pression.if.needed..Conclusion.C |
| dcd60 | 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6e 66 69 | onfederation.Configuration.Confi |
| dcd80 | 64 65 6e 74 69 61 6c 69 74 79 20 e2 80 93 20 45 6e 63 72 79 70 74 69 6f 6e 20 6f 66 20 70 61 63 | dentiality.....Encryption.of.pac |
| dcda0 | 6b 65 74 73 20 74 6f 20 70 72 65 76 65 6e 74 20 73 6e 6f 6f 70 69 6e 67 20 62 79 20 61 6e 20 75 | kets.to.prevent.snooping.by.an.u |
| dcdc0 | 6e 61 75 74 68 6f 72 69 7a 65 64 20 73 6f 75 72 63 65 2e 00 43 6f 6e 66 69 67 20 53 79 6e 63 00 | nauthorized.source..Config.Sync. |
| dcde0 | 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 45 78 61 6d | Configuration.Configuration.Exam |
| dce00 | 70 6c 65 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 45 78 61 6d 70 6c 65 73 00 43 6f 6e 66 69 | ple.Configuration.Examples.Confi |
| dce20 | 67 75 72 61 74 69 6f 6e 20 47 75 69 64 65 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 4f 70 74 | guration.Guide.Configuration.Opt |
| dce40 | 69 6f 6e 73 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 | ions.Configuration.commands.cove |
| dce60 | 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 | red.in.this.section:.Configurati |
| dce80 | 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 74 68 65 20 70 72 69 76 61 74 65 20 61 6e 64 20 | on.commands.for.the.private.and. |
| dcea0 | 70 75 62 6c 69 63 20 6b 65 79 20 77 69 6c 6c 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 6f 6e 20 | public.key.will.be.displayed.on. |
| dcec0 | 74 68 65 20 73 63 72 65 65 6e 20 77 68 69 63 68 20 6e 65 65 64 73 20 74 6f 20 62 65 20 73 65 74 | the.screen.which.needs.to.be.set |
| dcee0 | 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 20 66 69 72 73 74 2e 20 4e 6f 74 65 20 74 68 65 20 63 | .on.the.router.first..Note.the.c |
| dcf00 | 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 28 73 65 74 20 | ommand.with.the.public.key.(set. |
| dcf20 | 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 70 73 65 63 2d 4c 45 46 54 20 70 75 62 6c 69 63 20 6b | pki.key-pair.ipsec-LEFT.public.k |
| dcf40 | 65 79 20 27 4d 49 49 42 49 6a 41 4e 42 67 6b 71 68 2e 2e 2e 27 29 2e 20 54 68 65 6e 20 64 6f 20 | ey.'MIIBIjANBgkqh...')..Then.do. |
| dcf60 | 74 68 65 20 73 61 6d 65 20 6f 6e 20 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 3a | the.same.on.the.opposite.router: |
| dcf80 | 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 77 69 6c 6c 20 64 69 73 | .Configuration.commands.will.dis |
| dcfa0 | 70 6c 61 79 2e 20 4e 6f 74 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 74 68 20 74 68 65 20 | play..Note.the.command.with.the. |
| dcfc0 | 70 75 62 6c 69 63 20 6b 65 79 20 28 73 65 74 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 70 73 | public.key.(set.pki.key-pair.ips |
| dcfe0 | 65 63 2d 4c 45 46 54 20 70 75 62 6c 69 63 20 6b 65 79 20 27 4d 49 49 42 49 6a 41 4e 42 67 6b 71 | ec-LEFT.public.key.'MIIBIjANBgkq |
| dd000 | 68 2e 2e 2e 27 29 2e 20 54 68 65 6e 20 64 6f 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 74 68 65 20 | h...')..Then.do.the.same.on.the. |
| dd020 | 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 | opposite.router:.Configuration.e |
| dd040 | 78 61 6d 70 6c 65 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 73 65 20 | xample:.Configuration.for.these. |
| dd060 | 65 78 70 6f 72 74 65 64 20 72 6f 75 74 65 73 20 6d 75 73 74 2c 20 61 74 20 61 20 6d 69 6e 69 6d | exported.routes.must,.at.a.minim |
| dd080 | 75 6d 2c 20 73 70 65 63 69 66 79 20 74 68 65 73 65 20 74 77 6f 20 70 61 72 61 6d 65 74 65 72 73 | um,.specify.these.two.parameters |
| dd0a0 | 2e 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 | ..Configuration.of.:ref:`routing |
| dd0c0 | 2d 73 74 61 74 69 63 60 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 43 50 | -static`.Configuration.of.a.DHCP |
| dd0e0 | 20 48 41 20 70 61 69 72 3a 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 43 | .HA.pair:.Configuration.of.a.DHC |
| dd100 | 50 20 66 61 69 6c 6f 76 65 72 20 70 61 69 72 00 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 | P.failover.pair.Configuration.of |
| dd120 | 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e 67 20 62 65 74 77 65 65 6e 20 61 20 75 6e 69 63 61 73 74 | .route.leaking.between.a.unicast |
| dd140 | 20 56 52 46 20 52 49 42 20 61 6e 64 20 74 68 65 20 56 50 4e 20 53 41 46 49 20 52 49 42 20 6f 66 | .VRF.RIB.and.the.VPN.SAFI.RIB.of |
| dd160 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 46 20 69 73 20 61 63 63 6f 6d 70 6c 69 73 68 65 64 | .the.default.VRF.is.accomplished |
| dd180 | 20 76 69 61 20 63 6f 6d 6d 61 6e 64 73 20 69 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 | .via.commands.in.the.context.of. |
| dd1a0 | 61 20 56 52 46 20 61 64 64 72 65 73 73 2d 66 61 6d 69 6c 79 2e 00 43 6f 6e 66 69 67 75 72 61 74 | a.VRF.address-family..Configurat |
| dd1c0 | 69 6f 6e 20 6f 66 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 66 69 6c 65 2e 00 43 6f 6e 66 69 67 75 | ion.of.the.logging.file..Configu |
| dd1e0 | 72 61 74 69 6f 6e 20 72 65 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e 20 57 69 74 68 20 74 | ration.resynchronization..With.t |
| dd200 | 68 65 20 63 75 72 72 65 6e 74 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 6f 66 20 60 73 65 | he.current.implementation.of.`se |
| dd220 | 72 76 69 63 65 20 63 6f 6e 66 69 67 2d 73 79 6e 63 60 2c 20 74 68 65 20 73 65 63 6f 6e 64 61 72 | rvice.config-sync`,.the.secondar |
| dd240 | 79 20 6e 6f 64 65 20 6d 75 73 74 20 62 65 20 6f 6e 6c 69 6e 65 2e 00 43 6f 6e 66 69 67 75 72 61 | y.node.must.be.online..Configura |
| dd260 | 74 69 6f 6e 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 28 63 6f 6e 66 69 67 20 73 79 6e | tion.synchronization.(config.syn |
| dd280 | 63 29 20 69 73 20 61 20 66 65 61 74 75 72 65 20 6f 66 20 56 79 4f 53 20 74 68 61 74 20 70 65 72 | c).is.a.feature.of.VyOS.that.per |
| dd2a0 | 6d 69 74 73 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 6f 6e 66 | mits.synchronization.of.the.conf |
| dd2c0 | 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 72 20 74 6f 20 | iguration.of.one.VyOS.router.to. |
| dd2e0 | 61 6e 6f 74 68 65 72 20 69 6e 20 61 20 6e 65 74 77 6f 72 6b 2e 00 43 6f 6e 66 69 67 75 72 65 00 | another.in.a.network..Configure. |
| dd300 | 43 6f 6e 66 69 67 75 72 65 20 3a 61 62 62 72 3a 60 4d 54 55 20 28 4d 61 78 69 6d 75 6d 20 54 72 | Configure.:abbr:`MTU.(Maximum.Tr |
| dd320 | 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 29 60 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 | ansmission.Unit)`.on.given.`<int |
| dd340 | 65 72 66 61 63 65 3e 60 2e 20 49 74 20 69 73 20 74 68 65 20 73 69 7a 65 20 28 69 6e 20 62 79 74 | erface>`..It.is.the.size.(in.byt |
| dd360 | 65 73 29 20 6f 66 20 74 68 65 20 6c 61 72 67 65 73 74 20 65 74 68 65 72 6e 65 74 20 66 72 61 6d | es).of.the.largest.ethernet.fram |
| dd380 | 65 20 73 65 6e 74 20 6f 6e 20 74 68 69 73 20 6c 69 6e 6b 2e 00 43 6f 6e 66 69 67 75 72 65 20 42 | e.sent.on.this.link..Configure.B |
| dd3a0 | 46 44 00 43 6f 6e 66 69 67 75 72 65 20 44 4e 53 20 60 3c 72 65 63 6f 72 64 3e 60 20 77 68 69 63 | FD.Configure.DNS.`<record>`.whic |
| dd3c0 | 68 20 73 68 6f 75 6c 64 20 62 65 20 75 70 64 61 74 65 64 2e 20 54 68 69 73 20 63 61 6e 20 62 65 | h.should.be.updated..This.can.be |
| dd3e0 | 20 73 65 74 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 44 | .set.multiple.times..Configure.D |
| dd400 | 4e 53 20 60 3c 7a 6f 6e 65 3e 60 20 74 6f 20 62 65 20 75 70 64 61 74 65 64 2e 00 43 6f 6e 66 69 | NS.`<zone>`.to.be.updated..Confi |
| dd420 | 67 75 72 65 20 47 45 4e 45 56 45 20 74 75 6e 6e 65 6c 20 66 61 72 20 65 6e 64 2f 72 65 6d 6f 74 | gure.GENEVE.tunnel.far.end/remot |
| dd440 | 65 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 72 61 | e.tunnel.endpoint..Configure.Gra |
| dd460 | 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 3a 72 66 63 3a 60 33 36 32 33 60 20 68 65 6c 70 65 72 | ceful.Restart.:rfc:`3623`.helper |
| dd480 | 20 73 75 70 70 6f 72 74 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 68 65 6c 70 65 72 20 73 75 70 | .support..By.default,.helper.sup |
| dd4a0 | 70 6f 72 74 20 69 73 20 64 69 73 61 62 6c 65 64 20 66 6f 72 20 61 6c 6c 20 6e 65 69 67 68 62 6f | port.is.disabled.for.all.neighbo |
| dd4c0 | 75 72 73 2e 20 54 68 69 73 20 63 6f 6e 66 69 67 20 65 6e 61 62 6c 65 73 2f 64 69 73 61 62 6c 65 | urs..This.config.enables/disable |
| dd4e0 | 73 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 20 | s.helper.support.on.this.router. |
| dd500 | 66 6f 72 20 61 6c 6c 20 6e 65 69 67 68 62 6f 75 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 47 72 | for.all.neighbours..Configure.Gr |
| dd520 | 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 3a 72 66 63 3a 60 33 36 32 33 60 20 72 65 73 74 61 | aceful.Restart.:rfc:`3623`.resta |
| dd540 | 72 74 69 6e 67 20 73 75 70 70 6f 72 74 2e 20 57 68 65 6e 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 | rting.support..When.enabled,.the |
| dd560 | 20 64 65 66 61 75 6c 74 20 67 72 61 63 65 20 70 65 72 69 6f 64 20 69 73 20 31 32 30 20 73 65 63 | .default.grace.period.is.120.sec |
| dd580 | 6f 6e 64 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 49 43 4d 50 20 74 68 72 65 73 68 6f 6c 64 20 70 | onds..Configure.ICMP.threshold.p |
| dd5a0 | 61 72 61 6d 65 74 65 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 49 50 20 61 64 64 72 65 73 73 20 | arameters..Configure.IP.address. |
| dd5c0 | 6f 66 20 74 68 65 20 44 48 43 50 20 60 3c 73 65 72 76 65 72 3e 60 20 77 68 69 63 68 20 77 69 6c | of.the.DHCP.`<server>`.which.wil |
| dd5e0 | 6c 20 68 61 6e 64 6c 65 20 74 68 65 20 72 65 6c 61 79 65 64 20 70 61 63 6b 65 74 73 2e 00 43 6f | l.handle.the.relayed.packets..Co |
| dd600 | 6e 66 69 67 75 72 65 20 52 41 44 49 55 53 20 60 3c 73 65 72 76 65 72 3e 60 20 61 6e 64 20 69 74 | nfigure.RADIUS.`<server>`.and.it |
| dd620 | 73 20 72 65 71 75 69 72 65 64 20 70 6f 72 74 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 | s.required.port.for.authenticati |
| dd640 | 6f 6e 20 72 65 71 75 65 73 74 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 52 41 44 49 55 53 20 60 3c | on.requests..Configure.RADIUS.`< |
| dd660 | 73 65 72 76 65 72 3e 60 20 61 6e 64 20 69 74 73 20 72 65 71 75 69 72 65 64 20 73 68 61 72 65 64 | server>`.and.its.required.shared |
| dd680 | 20 60 3c 73 65 63 72 65 74 3e 60 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 77 69 | .`<secret>`.for.communicating.wi |
| dd6a0 | 74 68 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 43 6f 6e 66 69 67 75 72 65 20 | th.the.RADIUS.server..Configure. |
| dd6c0 | 53 4e 41 54 20 72 75 6c 65 20 28 34 30 29 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 70 61 63 6b 65 | SNAT.rule.(40).to.only.NAT.packe |
| dd6e0 | 74 73 20 77 69 74 68 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 | ts.with.a.destination.address.of |
| dd700 | 20 31 39 32 2e 30 2e 32 2e 31 2e 00 43 6f 6e 66 69 67 75 72 65 20 54 43 50 20 74 68 72 65 73 68 | .192.0.2.1..Configure.TCP.thresh |
| dd720 | 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 00 43 6f 6e 66 69 67 75 72 65 20 55 44 50 20 74 68 72 | old.parameters.Configure.UDP.thr |
| dd740 | 65 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 6d 65 | eshold.parameters.Configure.`<me |
| dd760 | 73 73 61 67 65 3e 60 20 77 68 69 63 68 20 69 73 20 73 68 6f 77 6e 20 61 66 74 65 72 20 75 73 65 | ssage>`.which.is.shown.after.use |
| dd780 | 72 20 68 61 73 20 6c 6f 67 67 65 64 20 69 6e 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 2e 00 43 | r.has.logged.in.to.the.system..C |
| dd7a0 | 6f 6e 66 69 67 75 72 65 20 60 3c 6d 65 73 73 61 67 65 3e 60 20 77 68 69 63 68 20 69 73 20 73 68 | onfigure.`<message>`.which.is.sh |
| dd7c0 | 6f 77 6e 20 64 75 72 69 6e 67 20 53 53 48 20 63 6f 6e 6e 65 63 74 20 61 6e 64 20 62 65 66 6f 72 | own.during.SSH.connect.and.befor |
| dd7e0 | 65 20 61 20 75 73 65 72 20 69 73 20 6c 6f 67 67 65 64 20 69 6e 2e 00 43 6f 6e 66 69 67 75 72 65 | e.a.user.is.logged.in..Configure |
| dd800 | 20 60 3c 70 61 73 73 77 6f 72 64 3e 60 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 | .`<password>`.used.when.authenti |
| dd820 | 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 | cating.the.update.request.for.Dy |
| dd840 | 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 | nDNS.service.identified.by.`<ser |
| dd860 | 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c 70 61 73 73 77 6f 72 | vice-name>`..Configure.`<passwor |
| dd880 | 64 3e 60 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 | d>`.used.when.authenticating.the |
| dd8a0 | 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 | .update.request.for.DynDNS.servi |
| dd8c0 | 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 3e 60 2e 00 43 6f | ce.identified.by.`<service>`..Co |
| dd8e0 | 6e 66 69 67 75 72 65 20 60 3c 75 73 65 72 6e 61 6d 65 3e 60 20 75 73 65 64 20 77 68 65 6e 20 61 | nfigure.`<username>`.used.when.a |
| dd900 | 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 | uthenticating.the.update.request |
| dd920 | 20 66 6f 72 20 44 79 6e 44 4e 53 20 73 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 | .for.DynDNS.service.identified.b |
| dd940 | 79 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 60 3c | y.`<service-name>`..Configure.`< |
| dd960 | 75 73 65 72 6e 61 6d 65 3e 60 20 75 73 65 64 20 77 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 | username>`.used.when.authenticat |
| dd980 | 69 6e 67 20 74 68 65 20 75 70 64 61 74 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 44 79 6e 44 4e | ing.the.update.request.for.DynDN |
| dd9a0 | 53 20 73 65 72 76 69 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 | S.service.identified.by.`<servic |
| dd9c0 | 65 3e 60 2e 20 46 6f 72 20 4e 61 6d 65 63 68 65 61 70 2c 20 73 65 74 20 74 68 65 20 3c 64 6f 6d | e>`..For.Namecheap,.set.the.<dom |
| dd9e0 | 61 69 6e 3e 20 79 6f 75 20 77 69 73 68 20 74 6f 20 75 70 64 61 74 65 2e 00 43 6f 6e 66 69 67 75 | ain>.you.wish.to.update..Configu |
| dda00 | 72 65 20 61 20 55 52 4c 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 73 20 69 6e 66 6f 72 6d 61 74 69 | re.a.URL.that.contains.informati |
| dda20 | 6f 6e 20 61 62 6f 75 74 20 69 6d 61 67 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 73 46 6c | on.about.images..Configure.a.sFl |
| dda40 | 6f 77 20 61 67 65 6e 74 20 61 64 64 72 65 73 73 2e 20 49 74 20 63 61 6e 20 62 65 20 49 50 76 34 | ow.agent.address..It.can.be.IPv4 |
| dda60 | 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 79 6f 75 20 6d 75 73 74 20 73 | .or.IPv6.address,.but.you.must.s |
| dda80 | 65 74 20 74 68 65 20 73 61 6d 65 20 70 72 6f 74 6f 63 6f 6c 2c 20 77 68 69 63 68 20 69 73 20 75 | et.the.same.protocol,.which.is.u |
| ddaa0 | 73 65 64 20 66 6f 72 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 20 61 64 64 72 65 73 73 65 | sed.for.sFlow.collector.addresse |
| ddac0 | 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 75 73 69 6e 67 20 72 6f 75 74 65 72 2d 69 64 20 66 | s..By.default,.using.router-id.f |
| ddae0 | 72 6f 6d 20 42 47 50 20 6f 72 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c 2c 20 6f 72 20 74 68 65 | rom.BGP.or.OSPF.protocol,.or.the |
| ddb00 | 20 70 72 69 6d 61 72 79 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 66 69 72 | .primary.IP.address.from.the.fir |
| ddb20 | 73 74 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 | st.interface..Configure.a.static |
| ddb40 | 20 72 6f 75 74 65 20 66 6f 72 20 3c 73 75 62 6e 65 74 3e 20 75 73 69 6e 67 20 67 61 74 65 77 61 | .route.for.<subnet>.using.gatewa |
| ddb60 | 79 20 3c 61 64 64 72 65 73 73 3e 20 2c 20 75 73 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 | y.<address>.,.use.source.address |
| ddb80 | 20 74 6f 20 69 6e 64 65 6e 74 69 66 79 20 74 68 65 20 70 65 65 72 20 77 68 65 6e 20 69 73 20 6d | .to.indentify.the.peer.when.is.m |
| ddba0 | 75 6c 74 69 2d 68 6f 70 20 73 65 73 73 69 6f 6e 20 61 6e 64 20 74 68 65 20 67 61 74 65 77 61 79 | ulti-hop.session.and.the.gateway |
| ddbc0 | 20 61 64 64 72 65 73 73 20 61 73 20 42 46 44 20 70 65 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e | .address.as.BFD.peer.destination |
| ddbe0 | 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 20 73 74 61 74 69 63 20 72 6f 75 | .address..Configure.a.static.rou |
| ddc00 | 74 65 20 66 6f 72 20 3c 73 75 62 6e 65 74 3e 20 75 73 69 6e 67 20 67 61 74 65 77 61 79 20 3c 61 | te.for.<subnet>.using.gateway.<a |
| ddc20 | 64 64 72 65 73 73 3e 20 61 6e 64 20 75 73 65 20 74 68 65 20 67 61 74 65 77 61 79 20 61 64 64 72 | ddress>.and.use.the.gateway.addr |
| ddc40 | 65 73 73 20 61 73 20 42 46 44 20 70 65 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 | ess.as.BFD.peer.destination.addr |
| ddc60 | 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 4e 65 74 46 6c 6f | ess..Configure.address.of.NetFlo |
| ddc80 | 77 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 4e 65 74 46 6c 6f 77 20 73 65 72 76 65 72 20 61 74 20 60 | w.collector..NetFlow.server.at.` |
| ddca0 | 3c 61 64 64 72 65 73 73 3e 60 20 63 61 6e 20 62 65 20 62 6f 74 68 20 6c 69 73 74 65 6e 69 6e 67 | <address>`.can.be.both.listening |
| ddcc0 | 20 6f 6e 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 43 6f 6e | .on.an.IPv4.or.IPv6.address..Con |
| ddce0 | 66 69 67 75 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f | figure.address.of.sFlow.collecto |
| ddd00 | 72 2e 20 73 46 6c 6f 77 20 73 65 72 76 65 72 20 61 74 20 3c 61 64 64 72 65 73 73 3e 20 63 61 6e | r..sFlow.server.at.<address>.can |
| ddd20 | 20 62 65 20 62 6f 74 68 20 6c 69 73 74 65 6e 69 6e 67 20 6f 6e 20 61 6e 20 49 50 76 34 20 6f 72 | .be.both.listening.on.an.IPv4.or |
| ddd40 | 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 64 64 72 65 73 73 | .IPv6.address..Configure.address |
| ddd60 | 20 6f 66 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 73 46 6c 6f 77 20 73 65 72 76 65 | .of.sFlow.collector..sFlow.serve |
| ddd80 | 72 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 20 63 61 6e 20 62 65 20 61 6e 20 49 50 76 34 20 | r.at.`<address>`.can.be.an.IPv4. |
| ddda0 | 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 2e 20 42 75 74 20 79 6f 75 20 63 61 6e 6e 6f 74 20 | or.IPv6.address..But.you.cannot. |
| dddc0 | 65 78 70 6f 72 74 20 74 6f 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 63 6f 6c | export.to.both.IPv4.and.IPv6.col |
| ddde0 | 6c 65 63 74 6f 72 73 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 21 00 43 6f 6e 66 69 67 | lectors.at.the.same.time!.Config |
| dde00 | 75 72 65 20 61 67 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 20 61 73 73 6f 63 69 61 74 65 64 20 | ure.agent.IP.address.associated. |
| dde20 | 77 69 74 68 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 | with.this.interface..Configure.a |
| dde40 | 67 67 72 65 67 61 74 69 6f 6e 20 64 65 6c 61 79 20 74 69 6d 65 72 20 69 6e 74 65 72 76 61 6c 2e | ggregation.delay.timer.interval. |
| dde60 | 00 43 6f 6e 66 69 67 75 72 65 20 61 6c 65 72 74 20 73 63 72 69 70 74 20 74 68 61 74 20 77 69 6c | .Configure.alert.script.that.wil |
| dde80 | 6c 20 62 65 20 65 78 65 63 75 74 65 64 20 77 68 65 6e 20 61 6e 20 61 74 74 61 63 6b 20 69 73 20 | l.be.executed.when.an.attack.is. |
| ddea0 | 64 65 74 65 63 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 6e 20 61 63 63 6f 75 6e 74 69 6e | detected..Configure.an.accountin |
| ddec0 | 67 20 73 65 72 76 65 72 20 61 6e 64 20 65 6e 61 62 6c 65 20 61 63 63 6f 75 6e 74 69 6e 67 20 77 | g.server.and.enable.accounting.w |
| ddee0 | 69 74 68 3a 00 43 6f 6e 66 69 67 75 72 65 20 61 6e 64 20 65 6e 61 62 6c 65 20 63 6f 6c 6c 65 63 | ith:.Configure.and.enable.collec |
| ddf00 | 74 69 6f 6e 20 6f 66 20 66 6c 6f 77 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 | tion.of.flow.information.for.the |
| ddf20 | 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 69 6e 74 65 72 66 | .interface.identified.by.<interf |
| ddf40 | 61 63 65 3e 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 6e 64 20 65 6e 61 62 6c 65 20 63 6f 6c 6c 65 | ace>..Configure.and.enable.colle |
| ddf60 | 63 74 69 6f 6e 20 6f 66 20 66 6c 6f 77 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 | ction.of.flow.information.for.th |
| ddf80 | 65 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 69 6e 74 65 | e.interface.identified.by.`<inte |
| ddfa0 | 72 66 61 63 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 61 75 74 6f 2d 63 68 65 63 6b 69 6e 67 | rface>`..Configure.auto-checking |
| ddfc0 | 20 66 6f 72 20 6e 65 77 20 69 6d 61 67 65 73 00 43 6f 6e 66 69 67 75 72 65 20 62 61 63 6b 65 6e | .for.new.images.Configure.backen |
| ddfe0 | 64 20 60 3c 6e 61 6d 65 3e 60 20 6d 6f 64 65 20 54 43 50 20 6f 72 20 48 54 54 50 00 43 6f 6e 66 | d.`<name>`.mode.TCP.or.HTTP.Conf |
| de000 | 69 67 75 72 65 20 62 6f 74 68 20 72 6f 75 74 65 72 73 20 28 61 20 61 6e 64 20 62 29 20 66 6f 72 | igure.both.routers.(a.and.b).for |
| de020 | 20 44 48 43 50 76 36 2d 50 44 20 76 69 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 3a 00 | .DHCPv6-PD.via.dummy.interface:. |
| de040 | 43 6f 6e 66 69 67 75 72 65 20 64 69 72 65 63 74 69 6f 6e 20 66 6f 72 20 70 72 6f 63 65 73 73 69 | Configure.direction.for.processi |
| de060 | 6e 67 20 74 72 61 66 66 69 63 2e 00 43 6f 6e 66 69 67 75 72 65 20 65 69 74 68 65 72 20 6f 6e 65 | ng.traffic..Configure.either.one |
| de080 | 20 6f 72 20 74 77 6f 20 73 74 6f 70 20 62 69 74 73 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 | .or.two.stop.bits..This.defaults |
| de0a0 | 20 74 6f 20 6f 6e 65 20 73 74 6f 70 20 62 69 74 73 20 69 66 20 6c 65 66 74 20 75 6e 63 6f 6e 66 | .to.one.stop.bits.if.left.unconf |
| de0c0 | 69 67 75 72 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 65 69 74 68 65 72 20 73 65 76 65 6e 20 6f | igured..Configure.either.seven.o |
| de0e0 | 72 20 65 69 67 68 74 20 64 61 74 61 20 62 69 74 73 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 | r.eight.data.bits..This.defaults |
| de100 | 20 74 6f 20 65 69 67 68 74 20 64 61 74 61 20 62 69 74 73 20 69 66 20 6c 65 66 74 20 75 6e 63 6f | .to.eight.data.bits.if.left.unco |
| de120 | 6e 66 69 67 75 72 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 67 65 6e 65 72 61 6c 20 74 68 72 65 | nfigured..Configure.general.thre |
| de140 | 73 68 6f 6c 64 20 70 61 72 61 6d 65 74 65 72 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 68 6f 77 20 | shold.parameters..Configure.how. |
| de160 | 6c 6f 6e 67 20 61 6e 20 49 50 20 28 61 74 74 61 63 6b 65 72 29 20 73 68 6f 75 6c 64 20 62 65 20 | long.an.IP.(attacker).should.be. |
| de180 | 6b 65 70 74 20 69 6e 20 62 6c 6f 63 6b 65 64 20 73 74 61 74 65 2e 20 44 65 66 61 75 6c 74 20 76 | kept.in.blocked.state..Default.v |
| de1a0 | 61 6c 75 65 20 69 73 20 31 39 30 30 2e 00 43 6f 6e 66 69 67 75 72 65 20 69 6e 64 69 76 69 64 75 | alue.is.1900..Configure.individu |
| de1c0 | 61 6c 20 62 72 69 64 67 65 20 70 6f 72 74 20 60 3c 70 72 69 6f 72 69 74 79 3e 60 2e 00 43 6f 6e | al.bridge.port.`<priority>`..Con |
| de1e0 | 66 69 67 75 72 65 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 77 | figure.interface.`<interface>`.w |
| de200 | 69 74 68 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 | ith.one.or.more.interface.addres |
| de220 | 73 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 69 6e 74 65 72 66 61 63 65 2d 73 70 65 63 69 66 69 | ses..Configure.interface-specifi |
| de240 | 63 20 48 6f 73 74 2f 52 6f 75 74 65 72 20 62 65 68 61 76 69 6f 75 72 2e 20 49 66 20 73 65 74 2c | c.Host/Router.behaviour..If.set, |
| de260 | 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 73 77 69 74 63 68 20 74 6f 20 68 6f | .the.interface.will.switch.to.ho |
| de280 | 73 74 20 6d 6f 64 65 20 61 6e 64 20 49 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 20 77 69 6c 6c | st.mode.and.IPv6.forwarding.will |
| de2a0 | 20 62 65 20 64 69 73 61 62 6c 65 64 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 | .be.disabled.on.this.interface.. |
| de2c0 | 43 6f 6e 66 69 67 75 72 65 20 6c 69 73 74 65 6e 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 6d | Configure.listen.interface.for.m |
| de2e0 | 69 72 72 6f 72 69 6e 67 20 74 72 61 66 66 69 63 2e 00 43 6f 6e 66 69 67 75 72 65 20 6c 6f 63 61 | irroring.traffic..Configure.loca |
| de300 | 6c 20 49 50 76 34 20 61 64 64 72 65 73 73 20 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 73 66 6c | l.IPv4.address.to.listen.for.sfl |
| de320 | 6f 77 2e 00 43 6f 6e 66 69 67 75 72 65 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 63 6c | ow..Configure.maximum.allowed.cl |
| de340 | 6f 63 6b 20 73 6c 6f 70 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 31 38 | ock.slop.in.seconds.(default:.18 |
| de360 | 30 29 00 43 6f 6e 66 69 67 75 72 65 20 6e 65 77 20 53 4e 4d 50 20 75 73 65 72 20 6e 61 6d 65 64 | 0).Configure.new.SNMP.user.named |
| de380 | 20 22 76 79 6f 73 22 20 77 69 74 68 20 70 61 73 73 77 6f 72 64 20 22 76 79 6f 73 31 32 33 34 35 | ."vyos".with.password."vyos12345 |
| de3a0 | 36 37 38 22 00 43 6f 6e 66 69 67 75 72 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 64 64 72 65 73 | 678".Configure.next-hop.`<addres |
| de3c0 | 73 3e 60 20 61 6e 64 20 60 3c 74 61 72 67 65 74 2d 61 64 64 72 65 73 73 3e 60 20 66 6f 72 20 61 | s>`.and.`<target-address>`.for.a |
| de3e0 | 6e 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 20 53 70 65 63 69 66 79 20 74 68 65 | n.IPv4.static.route..Specify.the |
| de400 | 20 74 61 72 67 65 74 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 6f 72 20 68 65 61 6c 74 68 20 | .target.IPv4.address.for.health. |
| de420 | 63 68 65 63 6b 69 6e 67 2e 00 43 6f 6e 66 69 67 75 72 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 | checking..Configure.next-hop.`<a |
| de440 | 64 64 72 65 73 73 3e 60 20 66 6f 72 20 61 6e 20 49 50 76 34 20 73 74 61 74 69 63 20 72 6f 75 74 | ddress>`.for.an.IPv4.static.rout |
| de460 | 65 2e 20 4d 75 6c 74 69 70 6c 65 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 | e..Multiple.static.routes.can.be |
| de480 | 20 63 72 65 61 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 6e 65 78 74 2d 68 6f 70 20 60 3c 61 | .created..Configure.next-hop.`<a |
| de4a0 | 64 64 72 65 73 73 3e 60 20 66 6f 72 20 61 6e 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 | ddress>`.for.an.IPv6.static.rout |
| de4c0 | 65 2e 20 4d 75 6c 74 69 70 6c 65 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 | e..Multiple.static.routes.can.be |
| de4e0 | 20 63 72 65 61 74 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 6e 75 6d 62 65 72 20 6f 66 20 64 69 | .created..Configure.number.of.di |
| de500 | 67 69 74 73 20 74 6f 20 75 73 65 20 66 6f 72 20 74 6f 74 70 20 68 61 73 68 20 28 64 65 66 61 75 | gits.to.use.for.totp.hash.(defau |
| de520 | 6c 74 3a 20 36 29 00 43 6f 6e 66 69 67 75 72 65 20 6f 6e 65 20 6f 66 20 74 68 65 20 70 72 65 64 | lt:.6).Configure.one.of.the.pred |
| de540 | 65 66 69 6e 65 64 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 70 72 6f 66 69 6c | efined.system.performance.profil |
| de560 | 65 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 61 74 74 72 69 62 | es..Configure.one.or.more.attrib |
| de580 | 75 74 65 73 20 74 6f 20 74 68 65 20 67 69 76 65 6e 20 4e 54 50 20 73 65 72 76 65 72 2e 00 43 6f | utes.to.the.given.NTP.server..Co |
| de5a0 | 6e 66 69 67 75 72 65 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 73 65 72 76 65 72 73 20 66 6f 72 20 | nfigure.one.or.more.servers.for. |
| de5c0 | 73 79 6e 63 68 72 6f 6e 69 73 61 74 69 6f 6e 2e 20 53 65 72 76 65 72 20 6e 61 6d 65 20 63 61 6e | synchronisation..Server.name.can |
| de5e0 | 20 62 65 20 65 69 74 68 65 72 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 3a 61 62 62 | .be.either.an.IP.address.or.:abb |
| de600 | 72 3a 60 46 51 44 4e 20 28 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 | r:`FQDN.(Fully.Qualified.Domain. |
| de620 | 4e 61 6d 65 29 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 6f 70 74 69 6f 6e 61 6c 20 54 54 4c 20 76 | Name)`..Configure.optional.TTL.v |
| de640 | 61 6c 75 65 20 6f 6e 20 74 68 65 20 67 69 76 65 6e 20 72 65 73 6f 75 72 63 65 20 72 65 63 6f 72 | alue.on.the.given.resource.recor |
| de660 | 64 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 36 30 30 20 73 65 63 6f 6e 64 73 2e | d..This.defaults.to.600.seconds. |
| de680 | 00 43 6f 6e 66 69 67 75 72 65 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 64 75 | .Configure.physical.interface.du |
| de6a0 | 70 6c 65 78 20 73 65 74 74 69 6e 67 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 68 79 73 69 63 61 6c | plex.setting..Configure.physical |
| de6c0 | 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 65 64 20 73 65 74 74 69 6e 67 2e 00 43 6f 6e 66 69 67 | .interface.speed.setting..Config |
| de6e0 | 75 72 65 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 66 6f 72 20 60 69 6e 74 65 72 66 61 63 | ure.port.mirroring.for.`interfac |
| de700 | 65 60 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 61 6e 64 20 63 6f 70 79 20 74 68 65 20 | e`.inbound.traffic.and.copy.the. |
| de720 | 74 72 61 66 66 69 63 20 74 6f 20 60 6d 6f 6e 69 74 6f 72 2d 69 6e 74 65 72 66 61 63 65 60 00 43 | traffic.to.`monitor-interface`.C |
| de740 | 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 66 6f 72 20 60 69 6e 74 | onfigure.port.mirroring.for.`int |
| de760 | 65 72 66 61 63 65 60 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 61 6e 64 20 63 6f 70 | erface`.outbound.traffic.and.cop |
| de780 | 79 20 74 68 65 20 74 72 61 66 66 69 63 20 74 6f 20 60 6d 6f 6e 69 74 6f 72 2d 69 6e 74 65 72 66 | y.the.traffic.to.`monitor-interf |
| de7a0 | 61 63 65 60 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f 66 20 72 65 | ace`.Configure.port.number.of.re |
| de7c0 | 6d 6f 74 65 20 56 58 4c 41 4e 20 65 6e 64 70 6f 69 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 | mote.VXLAN.endpoint..Configure.p |
| de7e0 | 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 66 6c 6f 77 20 | ort.number.to.be.used.for.sflow. |
| de800 | 63 6f 6e 65 63 74 69 6f 6e 2e 20 44 65 66 61 75 6c 74 20 70 6f 72 74 20 69 73 20 36 33 34 33 2e | conection..Default.port.is.6343. |
| de820 | 00 43 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 62 65 20 75 73 65 | .Configure.port.number.to.be.use |
| de840 | 64 20 66 6f 72 20 73 66 6c 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 44 65 66 61 75 6c 74 20 | d.for.sflow.connection..Default. |
| de860 | 70 6f 72 74 20 69 73 20 36 33 34 33 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 72 6f 74 6f 63 6f 6c | port.is.6343..Configure.protocol |
| de880 | 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 74 6f 20 72 65 6d 6f 74 | .used.for.communication.to.remot |
| de8a0 | 65 20 73 79 73 6c 6f 67 20 68 6f 73 74 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 65 69 74 68 65 | e.syslog.host..This.can.be.eithe |
| de8c0 | 72 20 55 44 50 20 6f 72 20 54 43 50 2e 00 43 6f 6e 66 69 67 75 72 65 20 70 72 6f 78 79 20 70 6f | r.UDP.or.TCP..Configure.proxy.po |
| de8e0 | 72 74 20 69 66 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 6c 69 73 74 65 6e 20 74 6f 20 74 68 65 20 | rt.if.it.does.not.listen.to.the. |
| de900 | 64 65 66 61 75 6c 74 20 70 6f 72 74 20 38 30 2e 00 43 6f 6e 66 69 67 75 72 65 20 72 65 71 75 65 | default.port.80..Configure.reque |
| de920 | 73 74 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 75 73 65 | sts.to.the.backend.server.to.use |
| de940 | 20 53 53 4c 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 61 75 74 68 65 6e 74 69 63 61 74 65 | .SSL.encryption.and.authenticate |
| de960 | 20 62 61 63 6b 65 6e 64 20 61 67 61 69 6e 73 74 20 3c 63 61 2d 63 65 72 74 69 66 69 63 61 74 65 | .backend.against.<ca-certificate |
| de980 | 3e 00 43 6f 6e 66 69 67 75 72 65 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 62 61 63 6b | >.Configure.requests.to.the.back |
| de9a0 | 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 75 73 65 20 53 53 4c 20 65 6e 63 72 79 70 74 69 6f 6e | end.server.to.use.SSL.encryption |
| de9c0 | 20 77 69 74 68 6f 75 74 20 76 61 6c 69 64 61 74 69 6e 67 20 73 65 72 76 65 72 20 63 65 72 74 69 | .without.validating.server.certi |
| de9e0 | 66 69 63 61 74 65 00 43 6f 6e 66 69 67 75 72 65 20 73 46 6c 6f 77 20 61 67 65 6e 74 20 49 50 76 | ficate.Configure.sFlow.agent.IPv |
| dea00 | 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 00 43 6f 6e 66 69 67 75 72 65 20 73 63 68 65 | 4.or.IPv6.address.Configure.sche |
| dea20 | 64 75 6c 65 20 63 6f 75 6e 74 65 72 2d 70 6f 6c 6c 69 6e 67 20 69 6e 20 73 65 63 6f 6e 64 73 20 | dule.counter-polling.in.seconds. |
| dea40 | 28 64 65 66 61 75 6c 74 3a 20 33 30 29 00 43 6f 6e 66 69 67 75 72 65 20 73 65 72 76 69 63 65 20 | (default:.30).Configure.service. |
| dea60 | 60 3c 6e 61 6d 65 3e 60 20 6d 6f 64 65 20 54 43 50 20 6f 72 20 48 54 54 50 00 43 6f 6e 66 69 67 | `<name>`.mode.TCP.or.HTTP.Config |
| dea80 | 75 72 65 20 73 65 72 76 69 63 65 20 60 3c 6e 61 6d 65 3e 60 20 74 6f 20 75 73 65 20 74 68 65 20 | ure.service.`<name>`.to.use.the. |
| deaa0 | 62 61 63 6b 65 6e 64 20 3c 6e 61 6d 65 3e 00 43 6f 6e 66 69 67 75 72 65 20 73 65 73 73 69 6f 6e | backend.<name>.Configure.session |
| deac0 | 20 74 69 6d 65 6f 75 74 20 61 66 74 65 72 20 77 68 69 63 68 20 74 68 65 20 75 73 65 72 20 77 69 | .timeout.after.which.the.user.wi |
| deae0 | 6c 6c 20 62 65 20 6c 6f 67 67 65 64 20 6f 75 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 73 74 65 70 | ll.be.logged.out..Configure.step |
| deb00 | 20 76 61 6c 75 65 20 66 6f 72 20 74 6f 74 70 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 | .value.for.totp.in.seconds.(defa |
| deb20 | 75 6c 74 3a 20 33 30 29 00 43 6f 6e 66 69 67 75 72 65 20 73 79 73 74 65 6d 20 64 6f 6d 61 69 6e | ult:.30).Configure.system.domain |
| deb40 | 20 6e 61 6d 65 2e 20 41 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 6d 75 73 74 20 73 74 61 72 74 20 | .name..A.domain.name.must.start. |
| deb60 | 61 6e 64 20 65 6e 64 20 77 69 74 68 20 61 20 6c 65 74 74 65 72 20 6f 72 20 64 69 67 69 74 2c 20 | and.end.with.a.letter.or.digit,. |
| deb80 | 61 6e 64 20 68 61 76 65 20 61 73 20 69 6e 74 65 72 69 6f 72 20 63 68 61 72 61 63 74 65 72 73 20 | and.have.as.interior.characters. |
| deba0 | 6f 6e 6c 79 20 6c 65 74 74 65 72 73 2c 20 64 69 67 69 74 73 2c 20 6f 72 20 61 20 68 79 70 68 65 | only.letters,.digits,.or.a.hyphe |
| debc0 | 6e 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 41 2d 73 69 64 65 20 72 6f 75 74 65 72 20 66 | n..Configure.the.A-side.router.f |
| debe0 | 6f 72 20 4e 50 54 76 36 20 75 73 69 6e 67 20 74 68 65 20 70 72 65 66 69 78 65 73 20 61 62 6f 76 | or.NPTv6.using.the.prefixes.abov |
| dec00 | 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 42 2d 73 69 64 65 20 72 6f 75 74 65 72 20 66 | e:.Configure.the.B-side.router.f |
| dec20 | 6f 72 20 4e 50 54 76 36 20 75 73 69 6e 67 20 74 68 65 20 70 72 65 66 69 78 65 73 20 61 62 6f 76 | or.NPTv6.using.the.prefixes.abov |
| dec40 | 65 3a 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 44 4e 53 20 60 3c 73 65 72 76 65 72 3e 60 20 | e:.Configure.the.DNS.`<server>`. |
| dec60 | 49 50 2f 46 51 44 4e 20 75 73 65 64 20 77 68 65 6e 20 75 70 64 61 74 69 6e 67 20 74 68 69 73 20 | IP/FQDN.used.when.updating.this. |
| dec80 | 64 79 6e 61 6d 69 63 20 61 73 73 69 67 6e 6d 65 6e 74 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 | dynamic.assignment..Configure.th |
| deca0 | 65 20 48 54 54 50 20 41 50 49 20 73 65 72 76 69 63 65 20 6f 6e 20 52 6f 75 74 65 72 20 42 00 43 | e.HTTP.API.service.on.Router.B.C |
| decc0 | 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6c 69 73 74 65 6e | onfigure.the.IPv4.or.IPv6.listen |
| dece0 | 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 54 46 54 50 20 73 65 72 76 65 72 2e 20 4d 75 6c | .address.of.the.TFTP.server..Mul |
| ded00 | 74 69 70 6c 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 63 61 | tiple.IPv4.and.IPv6.addresses.ca |
| ded20 | 6e 20 62 65 20 67 69 76 65 6e 2e 20 54 68 65 72 65 20 77 69 6c 6c 20 62 65 20 6f 6e 65 20 54 46 | n.be.given..There.will.be.one.TF |
| ded40 | 54 50 20 73 65 72 76 65 72 20 69 6e 73 74 61 6e 63 65 73 20 6c 69 73 74 65 6e 69 6e 67 20 6f 6e | TP.server.instances.listening.on |
| ded60 | 20 65 61 63 68 20 49 50 20 61 64 64 72 65 73 73 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | .each.IP.address..Configure.the. |
| ded80 | 63 6f 6e 66 69 67 2d 73 79 6e 63 20 73 65 72 76 69 63 65 20 6f 6e 20 52 6f 75 74 65 72 20 41 00 | config-sync.service.on.Router.A. |
| deda0 | 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e | Configure.the.connection.trackin |
| dedc0 | 67 20 70 72 6f 74 6f 63 6f 6c 20 68 65 6c 70 65 72 20 6d 6f 64 75 6c 65 73 2e 20 41 6c 6c 20 6d | g.protocol.helper.modules..All.m |
| dede0 | 6f 64 75 6c 65 73 20 61 72 65 20 65 6e 61 62 6c 65 20 62 79 20 64 65 66 61 75 6c 74 2e 00 43 6f | odules.are.enable.by.default..Co |
| dee00 | 6e 66 69 67 75 72 65 20 74 68 65 20 64 69 73 63 72 65 74 65 20 70 6f 72 74 20 75 6e 64 65 72 20 | nfigure.the.discrete.port.under. |
| dee20 | 77 68 69 63 68 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 72 | which.the.RADIUS.server.can.be.r |
| dee40 | 65 61 63 68 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 64 69 73 63 72 65 74 65 20 70 | eached..Configure.the.discrete.p |
| dee60 | 6f 72 74 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 | ort.under.which.the.TACACS.serve |
| dee80 | 72 20 63 61 6e 20 62 65 20 72 65 61 63 68 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | r.can.be.reached..Configure.the. |
| deea0 | 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 68 61 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 66 | load-balancing.haproxy.service.f |
| deec0 | 6f 72 20 48 54 54 50 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 61 64 2d 62 61 6c 61 | or.HTTP..Configure.the.load-bala |
| deee0 | 6e 63 69 6e 67 20 72 65 76 65 72 73 65 2d 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 66 6f 72 20 | ncing.reverse-proxy.service.for. |
| def00 | 48 54 54 50 2e 00 43 6f 6e 66 69 67 75 72 65 20 74 68 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 | HTTP..Configure.the.timestamping |
| def20 | 20 62 65 68 61 76 69 6f 72 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 74 | .behavior.with.the.following.opt |
| def40 | 69 6f 6e 3a 00 43 6f 6e 66 69 67 75 72 65 20 74 69 6d 65 20 64 72 69 66 74 20 69 6e 20 73 65 63 | ion:.Configure.time.drift.in.sec |
| def60 | 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 30 29 00 43 6f 6e 66 69 67 75 72 65 20 74 72 61 66 | onds.(default:.0).Configure.traf |
| def80 | 66 69 63 20 63 61 70 74 75 72 65 20 6d 6f 64 65 2e 00 43 6f 6e 66 69 67 75 72 65 20 75 73 65 72 | fic.capture.mode..Configure.user |
| defa0 | 20 64 65 66 69 6e 65 64 20 3a 61 62 62 72 3a 60 4d 41 43 20 28 4d 65 64 69 61 20 41 63 63 65 73 | .defined.:abbr:`MAC.(Media.Acces |
| defc0 | 73 20 43 6f 6e 74 72 6f 6c 29 60 20 61 64 64 72 65 73 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 | s.Control)`.address.on.given.`<i |
| defe0 | 6e 74 65 72 66 61 63 65 3e 60 2e 00 43 6f 6e 66 69 67 75 72 65 20 77 61 74 65 72 6d 61 72 6b 20 | nterface>`..Configure.watermark. |
| df000 | 77 61 72 6e 69 6e 67 20 67 65 6e 65 72 61 74 69 6f 6e 20 66 6f 72 20 61 6e 20 49 47 4d 50 20 67 | warning.generation.for.an.IGMP.g |
| df020 | 72 6f 75 70 20 6c 69 6d 69 74 2e 20 47 65 6e 65 72 61 74 65 73 20 77 61 72 6e 69 6e 67 20 6f 6e | roup.limit..Generates.warning.on |
| df040 | 63 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 67 72 6f 75 70 20 6c 69 6d 69 74 20 69 73 | ce.the.configured.group.limit.is |
| df060 | 20 72 65 61 63 68 65 64 20 77 68 69 6c 65 20 61 64 64 69 6e 67 20 6e 65 77 20 67 72 6f 75 70 73 | .reached.while.adding.new.groups |
| df080 | 2e 00 43 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 60 3c 69 64 3e | ..Configured.routing.table.`<id> |
| df0a0 | 60 20 69 73 20 75 73 65 64 20 62 79 20 56 52 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 43 6f 6e 66 69 | `.is.used.by.VRF.`<name>`..Confi |
| df0c0 | 67 75 72 65 64 20 76 61 6c 75 65 00 43 6f 6e 66 69 67 75 72 65 73 20 68 61 72 64 77 61 72 65 20 | gured.value.Configures.hardware. |
| df0e0 | 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 3c 69 | timestamping.on.the.interface.<i |
| df100 | 6e 74 65 72 66 61 63 65 3e 2e 20 54 68 65 20 73 70 65 63 69 61 6c 20 76 61 6c 75 65 20 60 61 6c | nterface>..The.special.value.`al |
| df120 | 6c 60 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 70 65 63 69 66 69 65 64 20 74 6f 20 65 6e 61 62 | l`.can.also.be.specified.to.enab |
| df140 | 6c 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 | le.timestamping.on.all.interface |
| df160 | 73 20 74 68 61 74 20 73 75 70 70 6f 72 74 20 69 74 2e 00 43 6f 6e 66 69 67 75 72 65 73 20 74 68 | s.that.support.it..Configures.th |
| df180 | 65 20 42 47 50 20 73 70 65 61 6b 65 72 20 73 6f 20 74 68 61 74 20 69 74 20 6f 6e 6c 79 20 61 63 | e.BGP.speaker.so.that.it.only.ac |
| df1a0 | 63 65 70 74 73 20 69 6e 62 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 2c 20 | cepts.inbound.connections.from,. |
| df1c0 | 62 75 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 69 74 69 61 74 65 20 6f 75 74 62 6f 75 6e 64 20 63 | but.does.not.initiate.outbound.c |
| df1e0 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 | onnections.to.the.peer.or.peer.g |
| df200 | 72 6f 75 70 2e 00 43 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 50 54 50 20 70 6f 72 74 2e 20 42 | roup..Configures.the.PTP.port..B |
| df220 | 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 70 6f 72 74 20 33 31 39 | y.default,.the.standard.port.319 |
| df240 | 20 69 73 20 75 73 65 64 2e 00 43 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 72 69 6e 67 20 62 75 | .is.used..Configures.the.ring.bu |
| df260 | 66 66 65 72 20 73 69 7a 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 43 6f 6e 66 | ffer.size.of.the.interface..Conf |
| df280 | 69 67 75 72 69 6e 67 20 48 54 20 6d 6f 64 65 20 6f 70 74 69 6f 6e 73 20 69 73 20 72 65 71 75 69 | iguring.HT.mode.options.is.requi |
| df2a0 | 72 65 64 20 77 68 65 6e 20 75 73 69 6e 67 20 38 30 32 2e 31 31 6e 20 6f 72 20 38 30 32 2e 31 31 | red.when.using.802.11n.or.802.11 |
| df2c0 | 61 78 20 61 74 20 32 2e 34 47 48 7a 2e 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 49 50 6f 45 20 53 | ax.at.2.4GHz..Configuring.IPoE.S |
| df2e0 | 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 49 50 73 65 63 00 43 6f 6e 66 69 67 75 72 | erver.Configuring.IPsec.Configur |
| df300 | 69 6e 67 20 4c 32 54 50 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 4c 4e 53 20 | ing.L2TP.Server.Configuring.LNS. |
| df320 | 28 4c 32 54 50 20 4e 65 74 77 6f 72 6b 20 53 65 72 76 65 72 29 00 43 6f 6e 66 69 67 75 72 69 6e | (L2TP.Network.Server).Configurin |
| df340 | 67 20 50 50 50 6f 45 20 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 50 50 54 50 20 | g.PPPoE.Server.Configuring.PPTP. |
| df360 | 53 65 72 76 65 72 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 52 41 44 49 55 53 20 61 63 63 6f 75 6e | Server.Configuring.RADIUS.accoun |
| df380 | 74 69 6e 67 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 | ting.Configuring.RADIUS.authenti |
| df3a0 | 63 61 74 69 6f 6e 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 53 53 54 50 20 53 65 72 76 65 72 00 43 | cation.Configuring.SSTP.Server.C |
| df3c0 | 6f 6e 66 69 67 75 72 69 6e 67 20 53 53 54 50 20 63 6c 69 65 6e 74 00 43 6f 6e 66 69 67 75 72 69 | onfiguring.SSTP.client.Configuri |
| df3e0 | 6e 67 20 56 79 4f 53 20 74 6f 20 61 63 74 20 61 73 20 79 6f 75 72 20 49 50 53 65 63 20 61 63 63 | ng.VyOS.to.act.as.your.IPSec.acc |
| df400 | 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 69 73 20 6f 6e 65 20 74 68 69 6e 67 2c 20 62 | ess.concentrator.is.one.thing,.b |
| df420 | 75 74 20 79 6f 75 20 70 72 6f 62 61 62 6c 79 20 6e 65 65 64 20 74 6f 20 73 65 74 75 70 20 79 6f | ut.you.probably.need.to.setup.yo |
| df440 | 75 72 20 63 6c 69 65 6e 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 74 68 65 20 73 65 72 76 | ur.client.connecting.to.the.serv |
| df460 | 65 72 20 73 6f 20 74 68 65 79 20 63 61 6e 20 74 61 6c 6b 20 74 6f 20 74 68 65 20 49 50 53 65 63 | er.so.they.can.talk.to.the.IPSec |
| df480 | 20 67 61 74 65 77 61 79 2e 00 43 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 6c 69 73 74 65 6e 2d 61 | .gateway..Configuring.a.listen-a |
| df4a0 | 64 64 72 65 73 73 20 69 73 20 65 73 73 65 6e 74 69 61 6c 20 66 6f 72 20 74 68 65 20 73 65 72 76 | ddress.is.essential.for.the.serv |
| df4c0 | 69 63 65 20 74 6f 20 77 6f 72 6b 2e 00 43 6f 6e 6e 65 63 74 2f 44 69 73 63 6f 6e 6e 65 63 74 00 | ice.to.work..Connect/Disconnect. |
| df4e0 | 43 6f 6e 6e 65 63 74 65 64 20 63 6c 69 65 6e 74 20 73 68 6f 75 6c 64 20 75 73 65 20 60 3c 61 64 | Connected.client.should.use.`<ad |
| df500 | 64 72 65 73 73 3e 60 20 61 73 20 74 68 65 69 72 20 44 4e 53 20 73 65 72 76 65 72 2e 20 54 68 69 | dress>`.as.their.DNS.server..Thi |
| df520 | 73 20 63 6f 6d 6d 61 6e 64 20 61 63 63 65 70 74 73 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 | s.command.accepts.both.IPv4.and. |
| df540 | 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 20 55 70 20 74 6f 20 74 77 6f 20 6e 61 6d 65 73 65 | IPv6.addresses..Up.to.two.namese |
| df560 | 72 76 65 72 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 49 50 76 34 | rvers.can.be.configured.for.IPv4 |
| df580 | 2c 20 75 70 20 74 6f 20 74 68 72 65 65 20 66 6f 72 20 49 50 76 36 2e 00 43 6f 6e 6e 65 63 74 65 | ,.up.to.three.for.IPv6..Connecte |
| df5a0 | 64 20 63 6c 69 65 6e 74 73 20 73 68 6f 75 6c 64 20 75 73 65 20 60 3c 61 64 64 72 65 73 73 3e 60 | d.clients.should.use.`<address>` |
| df5c0 | 20 61 73 20 74 68 65 69 72 20 44 4e 53 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 63 6f 6d 6d 61 | .as.their.DNS.server..This.comma |
| df5e0 | 6e 64 20 61 63 63 65 70 74 73 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 | nd.accepts.both.IPv4.and.IPv6.ad |
| df600 | 64 72 65 73 73 65 73 2e 20 55 70 20 74 6f 20 74 77 6f 20 6e 61 6d 65 73 65 72 76 65 72 73 20 63 | dresses..Up.to.two.nameservers.c |
| df620 | 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 49 50 76 34 2c 20 75 70 20 74 6f | an.be.configured.for.IPv4,.up.to |
| df640 | 20 74 68 72 65 65 20 66 6f 72 20 49 50 76 36 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 | .three.for.IPv6..Connections.to. |
| df660 | 74 68 65 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f 74 20 | the.RPKI.caching.server.can.not. |
| df680 | 6f 6e 6c 79 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 62 79 20 48 54 54 50 2f 54 4c 53 20 | only.be.established.by.HTTP/TLS. |
| df6a0 | 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 20 73 65 63 75 72 | but.you.can.also.rely.on.a.secur |
| df6c0 | 65 20 53 53 48 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 6f 20 | e.SSH.session.to.the.server..To. |
| df6e0 | 65 6e 61 62 6c 65 20 53 53 48 20 79 6f 75 20 66 69 72 73 74 20 6e 65 65 64 20 74 6f 20 63 72 65 | enable.SSH.you.first.need.to.cre |
| df700 | 61 74 65 20 79 6f 75 72 73 65 6c 73 20 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 | ate.yoursels.an.SSH.client.keypa |
| df720 | 69 72 20 75 73 69 6e 67 20 60 60 67 65 6e 65 72 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b | ir.using.``generate.ssh.client-k |
| df740 | 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f | ey./config/auth/id_rsa_rpki``..O |
| df760 | 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 69 73 20 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 | nce.your.key.is.created.you.can. |
| df780 | 73 65 74 75 70 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e | setup.the.connection..Connection |
| df7a0 | 73 20 74 6f 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e | s.to.the.RPKI.caching.server.can |
| df7c0 | 20 6e 6f 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 62 79 20 48 54 54 50 | .not.only.be.established.by.HTTP |
| df7e0 | 2f 54 4c 53 20 62 75 74 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 20 | /TLS.but.you.can.also.rely.on.a. |
| df800 | 73 65 63 75 72 65 20 53 53 48 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 | secure.SSH.session.to.the.server |
| df820 | 2e 20 54 6f 20 65 6e 61 62 6c 65 20 53 53 48 2c 20 66 69 72 73 74 20 79 6f 75 20 6e 65 65 64 20 | ..To.enable.SSH,.first.you.need. |
| df840 | 74 6f 20 63 72 65 61 74 65 20 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 | to.create.an.SSH.client.keypair. |
| df860 | 75 73 69 6e 67 20 60 60 67 65 6e 65 72 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 2d 6b 65 79 20 | using.``generate.ssh.client-key. |
| df880 | 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e 20 4f 6e 63 65 | /config/auth/id_rsa_rpki``..Once |
| df8a0 | 20 79 6f 75 72 20 6b 65 79 20 69 73 20 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 6e 20 73 65 74 | .your.key.is.created.you.can.set |
| df8c0 | 75 70 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 43 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 | up.the.connection..Connections.t |
| df8e0 | 6f 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 73 65 72 76 65 72 20 63 61 6e 20 6e 6f | o.the.RPKI.caching.server.can.no |
| df900 | 74 20 6f 6e 6c 79 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 62 79 20 54 43 50 20 75 73 69 | t.only.be.established.by.TCP.usi |
| df920 | 6e 67 20 74 68 65 20 52 54 52 20 70 72 6f 74 6f 63 6f 6c 20 62 75 74 20 79 6f 75 20 63 61 6e 20 | ng.the.RTR.protocol.but.you.can. |
| df940 | 61 6c 73 6f 20 72 65 6c 79 20 6f 6e 20 61 20 73 65 63 75 72 65 20 53 53 48 20 73 65 73 73 69 6f | also.rely.on.a.secure.SSH.sessio |
| df960 | 6e 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 70 72 6f 76 69 64 65 73 20 74 | n.to.the.server..This.provides.t |
| df980 | 72 61 6e 73 70 6f 72 74 20 69 6e 74 65 67 72 69 74 79 20 61 6e 64 20 63 6f 6e 66 69 64 65 6e 74 | ransport.integrity.and.confident |
| df9a0 | 69 61 6c 69 74 79 20 61 6e 64 20 69 74 20 69 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 69 66 20 | iality.and.it.is.a.good.idea.if. |
| df9c0 | 79 6f 75 72 20 76 61 6c 69 64 61 74 69 6f 6e 20 73 6f 66 74 77 61 72 65 20 73 75 70 70 6f 72 74 | your.validation.software.support |
| df9e0 | 73 20 69 74 2e 20 20 54 6f 20 65 6e 61 62 6c 65 20 53 53 48 2c 20 66 69 72 73 74 20 79 6f 75 20 | s.it...To.enable.SSH,.first.you. |
| dfa00 | 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 6b 65 79 | need.to.create.an.SSH.client.key |
| dfa20 | 70 61 69 72 20 75 73 69 6e 67 20 60 60 67 65 6e 65 72 61 74 65 20 73 73 68 20 63 6c 69 65 6e 74 | pair.using.``generate.ssh.client |
| dfa40 | 2d 6b 65 79 20 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 2e | -key./config/auth/id_rsa_rpki``. |
| dfa60 | 20 4f 6e 63 65 20 79 6f 75 72 20 6b 65 79 20 69 73 20 63 72 65 61 74 65 64 20 79 6f 75 20 63 61 | .Once.your.key.is.created.you.ca |
| dfa80 | 6e 20 73 65 74 75 70 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 43 6f 6e 6e 74 72 61 63 | n.setup.the.connection..Conntrac |
| dfaa0 | 6b 00 43 6f 6e 6e 74 72 61 63 6b 20 53 79 6e 63 00 43 6f 6e 6e 74 72 61 63 6b 20 53 79 6e 63 20 | k.Conntrack.Sync.Conntrack.Sync. |
| dfac0 | 45 78 61 6d 70 6c 65 00 43 6f 6e 6e 74 72 61 63 6b 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 00 43 | Example.Conntrack.ignore.rules.C |
| dfae0 | 6f 6e 6e 74 72 61 63 6b 20 6c 6f 67 00 43 6f 6e 73 69 64 65 72 61 74 69 6f 6e 73 00 43 6f 6e 73 | onntrack.log.Considerations.Cons |
| dfb00 | 6f 6c 65 00 43 6f 6e 73 6f 6c 65 20 53 65 72 76 65 72 00 43 6f 6e 73 74 72 61 69 6e 20 74 68 65 | ole.Console.Server.Constrain.the |
| dfb20 | 20 6d 65 6d 6f 72 79 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 74 68 65 20 63 6f 6e 74 61 69 6e | .memory.available.to.the.contain |
| dfb40 | 65 72 2e 00 43 6f 6e 74 61 69 6e 65 72 00 43 6f 6e 74 61 69 6e 65 72 20 4e 65 74 77 6f 72 6b 73 | er..Container.Container.Networks |
| dfb60 | 00 43 6f 6e 74 61 69 6e 65 72 20 52 65 67 69 73 74 72 79 00 43 6f 6e 74 72 61 63 6b 20 54 69 6d | .Container.Registry.Contrack.Tim |
| dfb80 | 65 6f 75 74 73 00 43 6f 6e 76 65 72 74 20 74 68 65 20 61 64 64 72 65 73 73 20 70 72 65 66 69 78 | eouts.Convert.the.address.prefix |
| dfba0 | 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 60 66 63 30 30 3a 3a 2f 36 34 60 20 6e 65 74 77 6f 72 6b | .of.a.single.`fc00::/64`.network |
| dfbc0 | 20 74 6f 20 60 66 63 30 31 3a 3a 2f 36 34 60 00 43 6f 6e 76 65 72 74 20 74 68 65 20 61 64 64 72 | .to.`fc01::/64`.Convert.the.addr |
| dfbe0 | 65 73 73 20 70 72 65 66 69 78 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 60 66 63 30 31 3a 3a 2f 36 | ess.prefix.of.a.single.`fc01::/6 |
| dfc00 | 34 60 20 6e 65 74 77 6f 72 6b 20 74 6f 20 60 66 63 30 30 3a 3a 2f 36 34 60 00 43 6f 70 79 20 74 | 4`.network.to.`fc00::/64`.Copy.t |
| dfc20 | 68 65 20 6b 65 79 2c 20 61 73 20 69 74 20 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 6f 6e 20 74 | he.key,.as.it.is.not.stored.on.t |
| dfc40 | 68 65 20 6c 6f 63 61 6c 20 66 69 6c 65 73 79 73 74 65 6d 2e 20 42 65 63 61 75 73 65 20 69 74 20 | he.local.filesystem..Because.it. |
| dfc60 | 69 73 20 61 20 73 79 6d 6d 65 74 72 69 63 20 6b 65 79 2c 20 6f 6e 6c 79 20 79 6f 75 20 61 6e 64 | is.a.symmetric.key,.only.you.and |
| dfc80 | 20 79 6f 75 72 20 70 65 65 72 20 73 68 6f 75 6c 64 20 68 61 76 65 20 6b 6e 6f 77 6c 65 64 67 65 | .your.peer.should.have.knowledge |
| dfca0 | 20 6f 66 20 69 74 73 20 63 6f 6e 74 65 6e 74 2e 20 4d 61 6b 65 20 73 75 72 65 20 79 6f 75 20 64 | .of.its.content..Make.sure.you.d |
| dfcc0 | 69 73 74 72 69 62 75 74 65 20 74 68 65 20 6b 65 79 20 69 6e 20 61 20 73 61 66 65 20 6d 61 6e 6e | istribute.the.key.in.a.safe.mann |
| dfce0 | 65 72 2c 00 43 6f 75 6e 74 72 79 20 63 6f 64 65 20 28 49 53 4f 2f 49 45 43 20 33 31 36 36 2d 31 | er,.Country.code.(ISO/IEC.3166-1 |
| dfd00 | 29 2e 20 55 73 65 64 20 74 6f 20 73 65 74 20 72 65 67 75 6c 61 74 6f 72 79 20 64 6f 6d 61 69 6e | )..Used.to.set.regulatory.domain |
| dfd20 | 2e 20 53 65 74 20 61 73 20 6e 65 65 64 65 64 20 74 6f 20 69 6e 64 69 63 61 74 65 20 63 6f 75 6e | ..Set.as.needed.to.indicate.coun |
| dfd40 | 74 72 79 20 69 6e 20 77 68 69 63 68 20 64 65 76 69 63 65 20 69 73 20 6f 70 65 72 61 74 69 6e 67 | try.in.which.device.is.operating |
| dfd60 | 2e 20 54 68 69 73 20 63 61 6e 20 6c 69 6d 69 74 20 61 76 61 69 6c 61 62 6c 65 20 63 68 61 6e 6e | ..This.can.limit.available.chann |
| dfd80 | 65 6c 73 20 61 6e 64 20 74 72 61 6e 73 6d 69 74 20 70 6f 77 65 72 2e 00 43 6f 75 6e 74 72 79 20 | els.and.transmit.power..Country. |
| dfda0 | 63 6f 64 65 20 28 49 53 4f 2f 49 45 43 20 33 31 36 36 2d 31 29 2e 20 55 73 65 64 20 74 6f 20 73 | code.(ISO/IEC.3166-1)..Used.to.s |
| dfdc0 | 65 74 20 72 65 67 75 6c 61 74 6f 72 79 20 64 6f 6d 61 69 6e 2e 20 53 65 74 20 61 73 20 6e 65 65 | et.regulatory.domain..Set.as.nee |
| dfde0 | 64 65 64 20 74 6f 20 69 6e 64 69 63 61 74 65 20 63 6f 75 6e 74 72 79 20 69 6e 20 77 68 69 63 68 | ded.to.indicate.country.in.which |
| dfe00 | 20 74 68 65 20 62 6f 78 20 69 73 20 6f 70 65 72 61 74 69 6e 67 2e 20 54 68 69 73 20 63 61 6e 20 | .the.box.is.operating..This.can. |
| dfe20 | 6c 69 6d 69 74 20 61 76 61 69 6c 61 62 6c 65 20 63 68 61 6e 6e 65 6c 73 20 61 6e 64 20 74 72 61 | limit.available.channels.and.tra |
| dfe40 | 6e 73 6d 69 74 20 70 6f 77 65 72 2e 00 43 72 65 61 74 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 | nsmit.power..Creat.community-lis |
| dfe60 | 74 20 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 | t.policy.identified.by.name.<tex |
| dfe80 | 74 3e 2e 00 43 72 65 61 74 20 65 78 74 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 | t>..Creat.extcommunity-list.poli |
| dfea0 | 63 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 | cy.identified.by.name.<text>..Cr |
| dfec0 | 65 61 74 65 20 44 48 43 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 20 77 69 74 68 20 61 20 72 | eate.DHCP.address.range.with.a.r |
| dfee0 | 61 6e 67 65 20 69 64 20 6f 66 20 60 3c 6e 3e 60 2e 20 44 48 43 50 20 6c 65 61 73 65 73 20 61 72 | ange.id.of.`<n>`..DHCP.leases.ar |
| dff00 | 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 74 68 69 73 20 70 6f 6f 6c 2e 20 54 68 65 20 70 6f 6f 6c | e.taken.from.this.pool..The.pool |
| dff20 | 20 73 74 61 72 74 73 20 61 74 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 | .starts.at.address.`<address>`.. |
| dff40 | 43 72 65 61 74 65 20 44 48 43 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 20 77 69 74 68 20 61 | Create.DHCP.address.range.with.a |
| dff60 | 20 72 61 6e 67 65 20 69 64 20 6f 66 20 60 3c 6e 3e 60 2e 20 44 48 43 50 20 6c 65 61 73 65 73 20 | .range.id.of.`<n>`..DHCP.leases. |
| dff80 | 61 72 65 20 74 61 6b 65 6e 20 66 72 6f 6d 20 74 68 69 73 20 70 6f 6f 6c 2e 20 54 68 65 20 70 6f | are.taken.from.this.pool..The.po |
| dffa0 | 6f 6c 20 73 74 6f 70 73 20 77 69 74 68 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 72 65 73 73 3e | ol.stops.with.address.`<address> |
| dffc0 | 60 2e 00 43 72 65 61 74 65 20 44 4e 53 20 72 65 63 6f 72 64 20 70 65 72 20 63 6c 69 65 6e 74 20 | `..Create.DNS.record.per.client. |
| dffe0 | 6c 65 61 73 65 2c 20 62 79 20 61 64 64 69 6e 67 20 63 6c 69 65 6e 74 73 20 74 6f 20 2f 65 74 63 | lease,.by.adding.clients.to./etc |
| e0000 | 2f 68 6f 73 74 73 20 66 69 6c 65 2e 20 45 6e 74 72 79 20 77 69 6c 6c 20 68 61 76 65 20 66 6f 72 | /hosts.file..Entry.will.have.for |
| e0020 | 6d 61 74 3a 20 60 3c 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 3e 5f 3c 68 6f 73 | mat:.`<shared-network-name>_<hos |
| e0040 | 74 6e 61 6d 65 3e 2e 3c 64 6f 6d 61 69 6e 2d 6e 61 6d 65 3e 60 00 43 72 65 61 74 65 20 60 3c 75 | tname>.<domain-name>`.Create.`<u |
| e0060 | 73 65 72 3e 60 20 66 6f 72 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f | ser>`.for.local.authentication.o |
| e0080 | 6e 20 74 68 69 73 20 73 79 73 74 65 6d 2e 20 54 68 65 20 75 73 65 72 73 20 70 61 73 73 77 6f 72 | n.this.system..The.users.passwor |
| e00a0 | 64 20 77 69 6c 6c 20 62 65 20 73 65 74 20 74 6f 20 60 3c 70 61 73 73 3e 60 2e 00 43 72 65 61 74 | d.will.be.set.to.`<pass>`..Creat |
| e00c0 | 65 20 60 60 31 37 32 2e 31 38 2e 32 30 31 2e 30 2f 32 34 60 60 20 61 73 20 61 20 73 75 62 6e 65 | e.``172.18.201.0/24``.as.a.subne |
| e00e0 | 74 20 77 69 74 68 69 6e 20 60 60 4e 45 54 31 60 60 20 61 6e 64 20 70 61 73 73 20 61 64 64 72 65 | t.within.``NET1``.and.pass.addre |
| e0100 | 73 73 20 6f 66 20 55 6e 69 66 69 20 63 6f 6e 74 72 6f 6c 6c 65 72 20 61 74 20 60 60 31 37 32 2e | ss.of.Unifi.controller.at.``172. |
| e0120 | 31 36 2e 31 30 30 2e 31 60 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 6f 66 20 74 68 61 74 20 73 75 | 16.100.1``.to.clients.of.that.su |
| e0140 | 62 6e 65 74 2e 00 43 72 65 61 74 65 20 61 20 43 41 20 63 68 61 69 6e 20 61 6e 64 20 6c 65 61 66 | bnet..Create.a.CA.chain.and.leaf |
| e0160 | 20 63 65 72 74 69 66 69 63 61 74 65 73 00 43 72 65 61 74 65 20 61 20 62 61 73 69 63 20 62 72 69 | .certificates.Create.a.basic.bri |
| e0180 | 64 67 65 00 43 72 65 61 74 65 20 61 20 66 69 6c 65 20 6e 61 6d 65 64 20 60 60 56 79 4f 53 2d 31 | dge.Create.a.file.named.``VyOS-1 |
| e01a0 | 2e 33 2e 36 2e 31 2e 34 2e 31 2e 34 34 36 34 31 2e 43 6f 6e 66 69 67 4d 67 6d 74 2d 43 6f 6d 6d | .3.6.1.4.1.44641.ConfigMgmt-Comm |
| e01c0 | 61 6e 64 73 60 60 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 74 65 | ands``.using.the.following.conte |
| e01e0 | 6e 74 3a 00 43 72 65 61 74 65 20 61 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 | nt:.Create.a.load.balancing.rule |
| e0200 | 2c 20 69 74 20 63 61 6e 20 62 65 20 61 20 6e 75 6d 62 65 72 20 62 65 74 77 65 65 6e 20 31 20 61 | ,.it.can.be.a.number.between.1.a |
| e0220 | 6e 64 20 39 39 39 39 3a 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 3a 61 62 62 72 3a 60 43 41 20 | nd.9999:.Create.a.new.:abbr:`CA. |
| e0240 | 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 61 6e 64 20 6f 75 74 | (Certificate.Authority)`.and.out |
| e0260 | 70 75 74 20 74 68 65 20 43 41 73 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 6b | put.the.CAs.public.and.private.k |
| e0280 | 65 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 | ey.on.the.console..Create.a.new. |
| e02a0 | 44 48 43 50 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 20 6e 61 6d 65 64 20 60 3c 64 65 73 63 | DHCP.static.mapping.named.`<desc |
| e02c0 | 72 69 70 74 69 6f 6e 3e 60 20 77 68 69 63 68 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 74 68 65 | ription>`.which.is.valid.for.the |
| e02e0 | 20 68 6f 73 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 69 74 73 20 44 48 43 50 20 75 6e 69 | .host.identified.by.its.DHCP.uni |
| e0300 | 71 75 65 20 69 64 65 6e 74 69 66 69 65 72 20 28 44 55 49 44 29 20 60 3c 69 64 65 6e 74 69 66 69 | que.identifier.(DUID).`<identifi |
| e0320 | 65 72 3e 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 44 48 43 50 20 73 74 61 74 69 63 20 6d | er>`..Create.a.new.DHCP.static.m |
| e0340 | 61 70 70 69 6e 67 20 6e 61 6d 65 64 20 60 3c 64 65 73 63 72 69 70 74 69 6f 6e 3e 60 20 77 68 69 | apping.named.`<description>`.whi |
| e0360 | 63 68 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 74 68 65 20 68 6f 73 74 20 69 64 65 6e 74 69 66 | ch.is.valid.for.the.host.identif |
| e0380 | 69 65 64 20 62 79 20 69 74 73 20 4d 41 43 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 43 72 65 61 | ied.by.its.MAC.`<address>`..Crea |
| e03a0 | 74 65 20 61 20 6e 65 77 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 69 6e 74 65 72 | te.a.new.VLAN.interface.on.inter |
| e03c0 | 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 75 73 69 6e 67 20 74 68 65 20 56 4c 41 | face.`<interface>`.using.the.VLA |
| e03e0 | 4e 20 6e 75 6d 62 65 72 20 70 72 6f 76 69 64 65 64 20 76 69 61 20 60 3c 76 6c 61 6e 2d 69 64 3e | N.number.provided.via.`<vlan-id> |
| e0400 | 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 56 52 46 20 69 6e 73 74 61 6e 63 65 20 77 69 74 | `..Create.a.new.VRF.instance.wit |
| e0420 | 68 20 60 3c 6e 61 6d 65 3e 60 20 61 6e 64 20 60 3c 69 64 3e 60 2e 20 54 68 65 20 6e 61 6d 65 20 | h.`<name>`.and.`<id>`..The.name. |
| e0440 | 69 73 20 75 73 65 64 20 77 68 65 6e 20 70 6c 61 63 69 6e 67 20 69 6e 64 69 76 69 64 75 61 6c 20 | is.used.when.placing.individual. |
| e0460 | 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 6f 20 74 68 65 20 56 52 46 2e 00 43 72 65 61 74 65 20 | interfaces.into.the.VRF..Create. |
| e0480 | 61 20 6e 65 77 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 70 61 69 72 20 61 6e 64 | a.new.public/private.keypair.and |
| e04a0 | 20 6f 75 74 70 75 74 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6f 6e 20 74 68 65 20 63 | .output.the.certificate.on.the.c |
| e04c0 | 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 70 75 62 6c 69 63 2f 70 72 69 76 | onsole..Create.a.new.public/priv |
| e04e0 | 61 74 65 20 6b 65 79 70 61 69 72 20 77 68 69 63 68 20 69 73 20 73 69 67 6e 65 64 20 62 79 20 74 | ate.keypair.which.is.signed.by.t |
| e0500 | 68 65 20 43 41 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 60 63 61 2d 6e 61 6d 65 60 2e 20 54 | he.CA.referenced.by.`ca-name`..T |
| e0520 | 68 65 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 20 69 73 20 74 68 65 6e 20 6f 75 | he.signed.certificate.is.then.ou |
| e0540 | 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 | tput.to.the.console..Create.a.ne |
| e0560 | 77 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2e 20 54 68 65 20 70 | w.self-signed.certificate..The.p |
| e0580 | 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 69 73 20 74 68 65 6e 20 73 68 6f 77 6e 20 6f 6e 20 74 | ublic/private.is.then.shown.on.t |
| e05a0 | 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 73 75 62 6f 72 64 69 | he.console..Create.a.new.subordi |
| e05c0 | 6e 61 74 65 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 | nate.:abbr:`CA.(Certificate.Auth |
| e05e0 | 6f 72 69 74 79 29 60 20 61 6e 64 20 73 69 67 6e 20 69 74 20 75 73 69 6e 67 20 74 68 65 20 70 72 | ority)`.and.sign.it.using.the.pr |
| e0600 | 69 76 61 74 65 20 6b 65 79 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 60 63 61 2d 6e 61 6d 65 | ivate.key.referenced.by.`ca-name |
| e0620 | 60 2e 00 43 72 65 61 74 65 20 61 20 6e 65 77 20 73 75 62 6f 72 64 69 6e 61 74 65 20 3a 61 62 62 | `..Create.a.new.subordinate.:abb |
| e0640 | 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 61 | r:`CA.(Certificate.Authority)`.a |
| e0660 | 6e 64 20 73 69 67 6e 20 69 74 20 75 73 69 6e 67 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 | nd.sign.it.using.the.private.key |
| e0680 | 20 72 65 66 65 72 65 6e 63 65 64 20 62 79 20 60 6e 61 6d 65 60 2e 00 43 72 65 61 74 65 20 61 20 | .referenced.by.`name`..Create.a. |
| e06a0 | 70 65 65 72 20 61 73 20 79 6f 75 20 77 6f 75 6c 64 20 77 68 65 6e 20 79 6f 75 20 73 70 65 63 69 | peer.as.you.would.when.you.speci |
| e06c0 | 66 79 20 61 6e 20 41 53 4e 2c 20 65 78 63 65 70 74 20 74 68 61 74 20 69 66 20 74 68 65 20 70 65 | fy.an.ASN,.except.that.if.the.pe |
| e06e0 | 65 72 73 20 41 53 4e 20 69 73 20 64 69 66 66 65 72 65 6e 74 20 74 68 61 6e 20 6d 69 6e 65 20 61 | ers.ASN.is.different.than.mine.a |
| e0700 | 73 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 | s.specified.under.the.:cfgcmd:`p |
| e0720 | 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 3c 61 73 6e 3e 60 20 63 6f 6d 6d 61 6e 64 20 74 68 65 20 | rotocols.bgp.<asn>`.command.the. |
| e0740 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 65 6e 69 65 64 2e 00 43 72 65 61 74 | connection.will.be.denied..Creat |
| e0760 | 65 20 61 20 70 65 65 72 20 61 73 20 79 6f 75 20 77 6f 75 6c 64 20 77 68 65 6e 20 79 6f 75 20 73 | e.a.peer.as.you.would.when.you.s |
| e0780 | 70 65 63 69 66 79 20 61 6e 20 41 53 4e 2c 20 65 78 63 65 70 74 20 74 68 61 74 20 69 66 20 74 68 | pecify.an.ASN,.except.that.if.th |
| e07a0 | 65 20 70 65 65 72 73 20 41 53 4e 20 69 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 6d 69 6e 65 20 | e.peers.ASN.is.the.same.as.mine. |
| e07c0 | 61 73 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 | as.specified.under.the.:cfgcmd:` |
| e07e0 | 70 72 6f 74 6f 63 6f 6c 73 20 62 67 70 20 3c 61 73 6e 3e 60 20 63 6f 6d 6d 61 6e 64 20 74 68 65 | protocols.bgp.<asn>`.command.the |
| e0800 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 65 6e 69 65 64 2e 00 43 72 65 61 | .connection.will.be.denied..Crea |
| e0820 | 74 65 20 61 20 73 74 61 74 69 63 20 68 6f 73 74 6e 61 6d 65 20 6d 61 70 70 69 6e 67 20 77 68 69 | te.a.static.hostname.mapping.whi |
| e0840 | 63 68 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 72 65 73 6f 6c 76 65 20 74 68 65 20 6e 61 6d 65 20 | ch.will.always.resolve.the.name. |
| e0860 | 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 74 6f 20 49 50 20 61 64 64 72 65 73 73 20 60 3c 61 64 64 | `<hostname>`.to.IP.address.`<add |
| e0880 | 72 65 73 73 3e 60 2e 00 43 72 65 61 74 65 20 61 73 2d 70 61 74 68 2d 70 6f 6c 69 63 79 20 69 64 | ress>`..Create.as-path-policy.id |
| e08a0 | 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c 74 65 78 74 3e 2e 00 43 72 65 61 74 65 20 | entified.by.name.<text>..Create. |
| e08c0 | 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 20 69 6e 20 66 6f 72 77 61 72 64 20 63 68 61 69 6e 2c 20 | firewall.rule.in.forward.chain,. |
| e08e0 | 61 6e 64 20 64 65 66 69 6e 65 20 77 68 69 63 68 20 66 6c 6f 77 74 62 61 6c 65 20 73 68 6f 75 6c | and.define.which.flowtbale.shoul |
| e0900 | 64 20 62 65 20 75 73 65 64 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 61 63 | d.be.used..Only.applicable.if.ac |
| e0920 | 74 69 6f 6e 20 69 73 20 60 60 6f 66 66 6c 6f 61 64 60 60 2e 00 43 72 65 61 74 65 20 66 69 72 65 | tion.is.``offload``..Create.fire |
| e0940 | 77 61 6c 6c 20 72 75 6c 65 20 69 6e 20 66 6f 72 77 61 72 64 20 63 68 61 69 6e 2c 20 61 6e 64 20 | wall.rule.in.forward.chain,.and. |
| e0960 | 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 60 60 6f 66 66 6c 6f 61 64 60 60 2e 00 43 72 65 61 74 | set.action.to.``offload``..Creat |
| e0980 | 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 3a 20 63 72 65 61 74 65 20 61 20 66 69 72 65 77 61 | e.firewall.rule:.create.a.firewa |
| e09a0 | 6c 6c 20 72 75 6c 65 2c 20 73 65 74 74 69 6e 67 20 61 63 74 69 6f 6e 20 74 6f 20 60 60 6f 66 66 | ll.rule,.setting.action.to.``off |
| e09c0 | 6c 6f 61 64 60 60 20 61 6e 64 20 75 73 69 6e 67 20 64 65 73 69 72 65 64 20 66 6c 6f 77 74 61 62 | load``.and.using.desired.flowtab |
| e09e0 | 6c 65 20 66 6f 72 20 60 60 6f 66 66 6c 6f 61 64 2d 74 61 72 67 65 74 60 60 2e 00 43 72 65 61 74 | le.for.``offload-target``..Creat |
| e0a00 | 65 20 66 6c 6f 77 74 61 62 6c 65 3a 20 63 72 65 61 74 65 20 66 6c 6f 77 74 61 62 6c 65 2c 20 77 | e.flowtable:.create.flowtable,.w |
| e0a20 | 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 61 | hich.includes.the.interfaces.tha |
| e0a40 | 74 20 61 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 66 6c | t.are.going.to.be.used.by.the.fl |
| e0a60 | 6f 77 74 61 62 6c 65 2e 00 43 72 65 61 74 65 20 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d | owtable..Create.large-community- |
| e0a80 | 6c 69 73 74 20 70 6f 6c 69 63 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 6e 61 6d 65 20 3c | list.policy.identified.by.name.< |
| e0aa0 | 74 65 78 74 3e 2e 00 43 72 65 61 74 65 20 6e 61 6d 65 64 20 60 3c 61 6c 69 61 73 3e 60 20 66 6f | text>..Create.named.`<alias>`.fo |
| e0ac0 | 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 20 | r.the.configured.static.mapping. |
| e0ae0 | 66 6f 72 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 2e 20 54 68 75 73 20 74 68 65 20 61 64 64 72 65 | for.`<hostname>`..Thus.the.addre |
| e0b00 | 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 79 | ss.configured.as.:cfgcmd:`set.sy |
| e0b20 | 73 74 65 6d 20 73 74 61 74 69 63 2d 68 6f 73 74 2d 6d 61 70 70 69 6e 67 20 68 6f 73 74 2d 6e 61 | stem.static-host-mapping.host-na |
| e0b40 | 6d 65 20 3c 68 6f 73 74 6e 61 6d 65 3e 20 69 6e 65 74 20 3c 61 64 64 72 65 73 73 3e 60 20 63 61 | me.<hostname>.inet.<address>`.ca |
| e0b60 | 6e 20 62 65 20 72 65 61 63 68 65 64 20 76 69 61 20 6d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 73 2e | n.be.reached.via.multiple.names. |
| e0b80 | 00 43 72 65 61 74 65 20 6e 65 77 20 3a 72 66 63 3a 60 32 31 33 36 60 20 44 4e 53 20 75 70 64 61 | .Create.new.:rfc:`2136`.DNS.upda |
| e0ba0 | 74 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 75 70 64 61 | te.configuration.which.will.upda |
| e0bc0 | 74 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 60 3c | te.the.IP.address.assigned.to.`< |
| e0be0 | 69 6e 74 65 72 66 61 63 65 3e 60 20 6f 6e 20 74 68 65 20 73 65 72 76 69 63 65 20 79 6f 75 20 63 | interface>`.on.the.service.you.c |
| e0c00 | 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 | onfigured.under.`<service-name>` |
| e0c20 | 2e 00 43 72 65 61 74 65 20 6e 65 77 20 56 52 46 20 69 6e 73 74 61 6e 63 65 20 77 69 74 68 20 60 | ..Create.new.VRF.instance.with.` |
| e0c40 | 3c 6e 61 6d 65 3e 60 2e 20 54 68 65 20 6e 61 6d 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 70 | <name>`..The.name.is.used.when.p |
| e0c60 | 6c 61 63 69 6e 67 20 69 6e 64 69 76 69 64 75 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 | lacing.individual.interfaces.int |
| e0c80 | 6f 20 74 68 65 20 56 52 46 2e 00 43 72 65 61 74 65 20 6e 65 77 20 64 79 6e 61 6d 69 63 20 44 4e | o.the.VRF..Create.new.dynamic.DN |
| e0ca0 | 53 20 75 70 64 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 68 69 63 68 20 77 69 6c | S.update.configuration.which.wil |
| e0cc0 | 6c 20 75 70 64 61 74 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 64 | l.update.the.IP.address.assigned |
| e0ce0 | 20 74 6f 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 6f 6e 20 74 68 65 20 73 65 72 76 69 63 65 | .to.`<interface>`.on.the.service |
| e0d00 | 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 60 3c 73 65 72 76 69 63 65 2d | .you.configured.under.`<service- |
| e0d20 | 6e 61 6d 65 3e 60 2e 00 43 72 65 61 74 65 20 6e 65 77 20 73 79 73 74 65 6d 20 75 73 65 72 20 77 | name>`..Create.new.system.user.w |
| e0d40 | 69 74 68 20 75 73 65 72 6e 61 6d 65 20 60 3c 6e 61 6d 65 3e 60 20 61 6e 64 20 72 65 61 6c 2d 6e | ith.username.`<name>`.and.real-n |
| e0d60 | 61 6d 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 73 74 72 69 6e 67 3e 60 2e 00 43 72 65 | ame.specified.by.`<string>`..Cre |
| e0d80 | 61 74 65 20 73 65 72 76 69 63 65 20 60 3c 6e 61 6d 65 3e 60 20 74 6f 20 6c 69 73 74 65 6e 20 6f | ate.service.`<name>`.to.listen.o |
| e0da0 | 6e 20 3c 70 6f 72 74 3e 00 43 72 65 61 74 65 73 20 61 20 6e 61 6d 65 64 20 63 6f 6e 74 61 69 6e | n.<port>.Creates.a.named.contain |
| e0dc0 | 65 72 20 6e 65 74 77 6f 72 6b 00 43 72 65 61 74 65 73 20 6c 6f 63 61 6c 20 49 50 6f 45 20 75 73 | er.network.Creates.local.IPoE.us |
| e0de0 | 65 72 20 77 69 74 68 20 75 73 65 72 6e 61 6d 65 3d 2a 2a 3c 69 6e 74 65 72 66 61 63 65 3e 2a 2a | er.with.username=**<interface>** |
| e0e00 | 20 61 6e 64 20 70 61 73 73 77 6f 72 64 3d 2a 2a 3c 4d 41 43 3e 2a 2a 20 28 6d 61 63 2d 61 64 64 | .and.password=**<MAC>**.(mac-add |
| e0e20 | 72 65 73 73 29 00 43 72 65 61 74 65 73 20 73 74 61 74 69 63 20 70 65 65 72 20 6d 61 70 70 69 6e | ress).Creates.static.peer.mappin |
| e0e40 | 67 20 6f 66 20 70 72 6f 74 6f 63 6f 6c 2d 61 64 64 72 65 73 73 20 74 6f 20 3a 61 62 62 72 3a 60 | g.of.protocol-address.to.:abbr:` |
| e0e60 | 4e 42 4d 41 20 28 4e 6f 6e 2d 62 72 6f 61 64 63 61 73 74 20 6d 75 6c 74 69 70 6c 65 2d 61 63 63 | NBMA.(Non-broadcast.multiple-acc |
| e0e80 | 65 73 73 20 6e 65 74 77 6f 72 6b 29 60 20 61 64 64 72 65 73 73 2e 00 43 72 65 61 74 69 6e 67 20 | ess.network)`.address..Creating. |
| e0ea0 | 61 20 62 72 69 64 67 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 76 65 72 79 20 73 69 6d 70 6c | a.bridge.interface.is.very.simpl |
| e0ec0 | 65 2e 20 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 77 69 6c 6c 20 68 61 76 65 | e..In.this.example,.we.will.have |
| e0ee0 | 3a 00 43 72 65 61 74 69 6e 67 20 61 20 66 6c 6f 77 20 74 61 62 6c 65 3a 00 43 72 65 61 74 69 6e | :.Creating.a.flow.table:.Creatin |
| e0f00 | 67 20 61 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 00 43 72 65 61 74 69 6e 67 20 72 75 6c 65 | g.a.traffic.policy.Creating.rule |
| e0f20 | 73 20 66 6f 72 20 75 73 69 6e 67 20 66 6c 6f 77 20 74 61 62 6c 65 73 3a 00 43 72 65 64 65 6e 74 | s.for.using.flow.tables:.Credent |
| e0f40 | 69 61 6c 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 68 65 72 65 20 61 6e 64 20 77 69 6c | ials.can.be.defined.here.and.wil |
| e0f60 | 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 77 68 65 6e 20 61 64 64 69 6e 67 20 61 20 63 6f 6e | l.only.be.used.when.adding.a.con |
| e0f80 | 74 61 69 6e 65 72 20 69 6d 61 67 65 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 2e 00 43 72 69 74 | tainer.image.to.the.system..Crit |
| e0fa0 | 69 63 61 6c 00 43 72 69 74 69 63 61 6c 20 63 6f 6e 64 69 74 69 6f 6e 73 20 2d 20 65 2e 67 2e 20 | ical.Critical.conditions.-.e.g.. |
| e0fc0 | 68 61 72 64 20 64 72 69 76 65 20 65 72 72 6f 72 73 2e 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 | hard.drive.errors..Crystalfontz. |
| e0fe0 | 43 46 41 2d 35 33 33 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 36 33 31 00 43 72 79 | CFA-533.Crystalfontz.CFA-631.Cry |
| e1000 | 73 74 61 6c 66 6f 6e 74 7a 20 43 46 41 2d 36 33 33 00 43 72 79 73 74 61 6c 66 6f 6e 74 7a 20 43 | stalfontz.CFA-633.Crystalfontz.C |
| e1020 | 46 41 2d 36 33 35 00 43 75 72 20 48 6f 70 20 4c 69 6d 69 74 00 43 75 72 72 65 6e 74 6c 79 20 64 | FA-635.Cur.Hop.Limit.Currently.d |
| e1040 | 6f 65 73 20 6e 6f 74 20 64 6f 20 6d 75 63 68 20 61 73 20 63 61 63 68 69 6e 67 20 69 73 20 6e 6f | oes.not.do.much.as.caching.is.no |
| e1060 | 74 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2e 00 43 75 72 72 65 6e 74 6c 79 20 64 79 6e 61 6d 69 63 | t.implemented..Currently.dynamic |
| e1080 | 20 72 6f 75 74 69 6e 67 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 66 6f 72 20 74 68 65 20 66 6f | .routing.is.supported.for.the.fo |
| e10a0 | 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 3a 00 43 75 73 74 6f 6d 20 46 69 6c 65 00 43 | llowing.protocols:.Custom.File.C |
| e10c0 | 75 73 74 6f 6d 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e | ustom.bridge.firewall.chains.can |
| e10e0 | 20 62 65 20 63 72 65 61 74 65 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 | .be.create.with.command.``set.fi |
| e1100 | 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e | rewall.bridge.name.<name>....``. |
| e1120 | 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 | .In.order.to.use.such.custom.cha |
| e1140 | 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 61 63 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 | in,.a.rule.with.action.jump,.and |
| e1160 | 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 20 74 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 | .the.appropiate.target.should.be |
| e1180 | 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d | .defined.in.a.base.chain..Custom |
| e11a0 | 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 | .bridge.firewall.chains.can.be.c |
| e11c0 | 72 65 61 74 65 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | reate.with.command.``set.firewal |
| e11e0 | 6c 20 62 72 69 64 67 65 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f | l.bridge.name.<name>....``..In.o |
| e1200 | 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 | rder.to.use.such.custom.chain,.a |
| e1220 | 20 72 75 6c 65 20 77 69 74 68 20 61 63 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 20 | .rule.with.action.jump,.and.the. |
| e1240 | 61 70 70 72 6f 70 72 69 61 74 65 20 74 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 | appropriate.target.should.be.def |
| e1260 | 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 62 72 69 | ined.in.a.base.chain..Custom.bri |
| e1280 | 64 67 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 | dge.firewall.chains.can.be.creat |
| e12a0 | 65 64 20 77 69 74 68 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 60 60 73 65 74 20 66 69 72 65 77 61 | ed.with.the.command.``set.firewa |
| e12c0 | 6c 6c 20 62 72 69 64 67 65 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 | ll.bridge.name.<name>....``..In. |
| e12e0 | 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 | order.to.use.such.custom.chain,. |
| e1300 | 61 20 72 75 6c 65 20 77 69 74 68 20 61 63 74 69 6f 6e 20 6a 75 6d 70 2c 20 61 6e 64 20 74 68 65 | a.rule.with.action.jump,.and.the |
| e1320 | 20 61 70 70 72 6f 70 72 69 61 74 65 20 74 61 72 67 65 74 20 73 68 6f 75 6c 64 20 62 65 20 64 65 | .appropriate.target.should.be.de |
| e1340 | 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 | fined.in.a.base.chain..Custom.fi |
| e1360 | 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 | rewall.chains.can.be.created,.wi |
| e1380 | 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 | th.commands.``set.firewall.[ipv4 |
| e13a0 | 20 7c 20 69 70 76 36 5d 20 5b 6e 61 6d 65 20 7c 20 69 70 76 36 2d 6e 61 6d 65 5d 20 3c 6e 61 6d | .|.ipv6].[name.|.ipv6-name].<nam |
| e13c0 | 65 3e 20 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 | e>....``..In.order.to.use.such.c |
| e13e0 | 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f | ustom.chain,.a.rule.with.**actio |
| e1400 | 6e 20 6a 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 20 2a 2a 74 | n.jump**,.and.the.appropiate.**t |
| e1420 | 61 72 67 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 | arget**.should.be.defined.in.a.b |
| e1440 | 61 73 65 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e | ase.chain..Custom.firewall.chain |
| e1460 | 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 | s.can.be.created,.with.commands. |
| e1480 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 | ``set.firewall.ipv4.name.<name>. |
| e14a0 | 2e 2e 2e 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 | ...``..In.order.to.use.such.cust |
| e14c0 | 6f 6d 20 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a | om.chain,.a.rule.with.**action.j |
| e14e0 | 75 6d 70 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 | ump**,.and.the.appropiate.**targ |
| e1500 | 65 74 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 | et**.should.be.defined.in.a.base |
| e1520 | 20 63 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 | .chain..Custom.firewall.chains.c |
| e1540 | 61 6e 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 | an.be.created,.with.commands.``s |
| e1560 | 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e | et.firewall.ipv4.name.<name>.... |
| e1580 | 60 60 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 | ``..In.order.to.use.such.custom. |
| e15a0 | 63 68 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 | chain,.a.rule.with.**action.jump |
| e15c0 | 2a 2a 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 2a 2a 74 61 72 67 65 74 | **,.and.the.appropriate.**target |
| e15e0 | 2a 2a 20 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 | **.should.be.defined.in.a.base.c |
| e1600 | 68 61 69 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e | hain..Custom.firewall.chains.can |
| e1620 | 20 62 65 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 | .be.created,.with.commands.``set |
| e1640 | 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 | .firewall.ipv6.name.<name>....`` |
| e1660 | 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 | ..In.order.to.use.such.custom.ch |
| e1680 | 61 69 6e 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a | ain,.a.rule.with.**action.jump** |
| e16a0 | 2c 20 61 6e 64 20 74 68 65 20 61 70 70 72 6f 70 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 | ,.and.the.appropiate.**target**. |
| e16c0 | 73 68 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 | should.be.defined.in.a.base.chai |
| e16e0 | 6e 2e 00 43 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 73 20 63 61 6e 20 62 65 | n..Custom.firewall.chains.can.be |
| e1700 | 20 63 72 65 61 74 65 64 2c 20 77 69 74 68 20 63 6f 6d 6d 61 6e 64 73 20 60 60 73 65 74 20 66 69 | .created,.with.commands.``set.fi |
| e1720 | 72 65 77 61 6c 6c 20 69 70 76 36 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 2e 2e 2e 60 60 2e 20 49 | rewall.ipv6.name.<name>....``..I |
| e1740 | 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 73 75 63 68 20 63 75 73 74 6f 6d 20 63 68 61 69 6e | n.order.to.use.such.custom.chain |
| e1760 | 2c 20 61 20 72 75 6c 65 20 77 69 74 68 20 2a 2a 61 63 74 69 6f 6e 20 6a 75 6d 70 2a 2a 2c 20 61 | ,.a.rule.with.**action.jump**,.a |
| e1780 | 6e 64 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 2a 2a 74 61 72 67 65 74 2a 2a 20 73 68 | nd.the.appropriate.**target**.sh |
| e17a0 | 6f 75 6c 64 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 62 61 73 65 20 63 68 61 69 6e 2e | ould.be.defined.in.a.base.chain. |
| e17c0 | 00 43 75 73 74 6f 6d 20 68 65 61 6c 74 68 2d 63 68 65 63 6b 20 73 63 72 69 70 74 20 61 6c 6c 6f | .Custom.health-check.script.allo |
| e17e0 | 77 73 20 63 68 65 63 6b 69 6e 67 20 72 65 61 6c 2d 73 65 72 76 65 72 20 61 76 61 69 6c 61 62 69 | ws.checking.real-server.availabi |
| e1800 | 6c 69 74 79 00 43 75 73 74 6f 6d 69 7a 65 64 20 69 67 6e 6f 72 65 20 72 75 6c 65 73 2c 20 62 61 | lity.Customized.ignore.rules,.ba |
| e1820 | 73 65 64 20 6f 6e 20 61 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f | sed.on.a.packet.and.flow.selecto |
| e1840 | 72 2e 00 44 43 4f 20 63 61 6e 20 62 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 62 6f 74 68 20 6e | r..DCO.can.be.enabled.for.both.n |
| e1860 | 65 77 20 61 6e 64 20 65 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 6c 73 2c 56 79 4f 53 20 61 64 64 | ew.and.existing.tunnels,VyOS.add |
| e1880 | 73 20 61 6e 20 6f 70 74 69 6f 6e 20 69 6e 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 63 6f 6e 66 69 | s.an.option.in.each.tunnel.confi |
| e18a0 | 67 75 72 61 74 69 6f 6e 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 65 6e 61 62 6c 65 20 74 68 69 | guration.where.we.can.enable.thi |
| e18c0 | 73 20 66 75 6e 63 74 69 6f 6e 20 20 2e 54 68 65 20 63 75 72 72 65 6e 74 20 62 65 73 74 20 70 72 | s.function...The.current.best.pr |
| e18e0 | 61 63 74 69 63 65 20 69 73 20 74 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 74 75 6e 6e 65 6c | actice.is.to.create.a.new.tunnel |
| e1900 | 20 77 69 74 68 20 44 43 4f 20 74 6f 20 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 63 68 61 6e 63 65 | .with.DCO.to.minimize.the.chance |
| e1920 | 20 6f 66 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 65 78 69 73 74 69 6e 67 20 63 6c 69 65 6e | .of.problems.with.existing.clien |
| e1940 | 74 73 2e 00 44 43 4f 20 63 61 6e 20 62 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 62 6f 74 68 20 | ts..DCO.can.be.enabled.for.both. |
| e1960 | 6e 65 77 20 61 6e 64 20 65 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 6c 73 2e 20 56 79 4f 53 20 61 | new.and.existing.tunnels..VyOS.a |
| e1980 | 64 64 73 20 61 6e 20 6f 70 74 69 6f 6e 20 69 6e 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 63 6f 6e | dds.an.option.in.each.tunnel.con |
| e19a0 | 66 69 67 75 72 61 74 69 6f 6e 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 65 6e 61 62 6c 65 20 74 | figuration.where.we.can.enable.t |
| e19c0 | 68 69 73 20 66 75 6e 63 74 69 6f 6e 2e 20 54 68 65 20 63 75 72 72 65 6e 74 20 62 65 73 74 20 70 | his.function..The.current.best.p |
| e19e0 | 72 61 63 74 69 63 65 20 69 73 20 74 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 74 75 6e 6e 65 | ractice.is.to.create.a.new.tunne |
| e1a00 | 6c 20 77 69 74 68 20 44 43 4f 20 74 6f 20 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 63 68 61 6e 63 | l.with.DCO.to.minimize.the.chanc |
| e1a20 | 65 20 6f 66 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 65 78 69 73 74 69 6e 67 20 63 6c 69 65 | e.of.problems.with.existing.clie |
| e1a40 | 6e 74 73 2e 00 44 43 4f 20 73 75 70 70 6f 72 74 20 69 73 20 61 20 70 65 72 2d 74 75 6e 6e 65 6c | nts..DCO.support.is.a.per-tunnel |
| e1a60 | 20 6f 70 74 69 6f 6e 20 61 6e 64 20 69 74 20 69 73 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 | .option.and.it.is.not.automatica |
| e1a80 | 6c 6c 79 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 6e 65 77 20 6f | lly.enabled.by.default.for.new.o |
| e1aa0 | 72 20 75 70 67 72 61 64 65 64 20 74 75 6e 6e 65 6c 73 2e 20 45 78 69 73 74 69 6e 67 20 74 75 6e | r.upgraded.tunnels..Existing.tun |
| e1ac0 | 6e 65 6c 73 20 77 69 6c 6c 20 63 6f 6e 74 69 6e 75 65 20 74 6f 20 66 75 6e 63 74 69 6f 6e 20 61 | nels.will.continue.to.function.a |
| e1ae0 | 73 20 74 68 65 79 20 68 61 76 65 20 69 6e 20 74 68 65 20 70 61 73 74 2e 00 44 44 6f 53 20 50 72 | s.they.have.in.the.past..DDoS.Pr |
| e1b00 | 6f 74 65 63 74 69 6f 6e 00 44 48 20 47 72 6f 75 70 20 31 34 00 44 48 43 50 20 48 69 67 68 20 41 | otection.DH.Group.14.DHCP.High.A |
| e1b20 | 76 61 69 6c 61 62 69 6c 69 74 79 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 65 | vailability.must.be.configured.e |
| e1b40 | 78 70 6c 69 63 69 74 6c 79 20 62 79 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 61 74 65 | xplicitly.by.the.following.state |
| e1b60 | 6d 65 6e 74 73 20 6f 6e 20 62 6f 74 68 20 73 65 72 76 65 72 73 3a 00 44 48 43 50 20 52 65 6c 61 | ments.on.both.servers:.DHCP.Rela |
| e1b80 | 79 00 44 48 43 50 20 53 65 72 76 65 72 00 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 70 61 72 61 | y.DHCP.Server.DHCP.failover.para |
| e1ba0 | 6d 65 74 65 72 73 00 44 48 43 50 20 6c 65 61 73 65 20 72 61 6e 67 65 00 44 48 43 50 20 72 61 6e | meters.DHCP.lease.range.DHCP.ran |
| e1bc0 | 67 65 20 73 70 61 6e 73 20 66 72 6f 6d 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 31 30 60 20 2d | ge.spans.from.`192.168.189.10`.- |
| e1be0 | 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 32 35 30 60 00 44 48 43 50 20 72 65 6c 61 79 20 65 78 | .`192.168.189.250`.DHCP.relay.ex |
| e1c00 | 61 6d 70 6c 65 00 44 48 43 50 20 73 65 72 76 65 72 20 69 73 20 6c 6f 63 61 74 65 64 20 61 74 20 | ample.DHCP.server.is.located.at. |
| e1c20 | 49 50 76 34 20 61 64 64 72 65 73 73 20 31 30 2e 30 2e 31 2e 34 20 6f 6e 20 60 60 65 74 68 32 60 | IPv4.address.10.0.1.4.on.``eth2` |
| e1c40 | 60 2e 00 44 48 43 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 73 20 6d 75 73 74 20 62 65 20 | `..DHCPv6.address.pools.must.be. |
| e1c60 | 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 61 63 74 | configured.for.the.system.to.act |
| e1c80 | 20 61 73 20 61 20 44 48 43 50 76 36 20 73 65 72 76 65 72 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 | .as.a.DHCPv6.server..The.followi |
| e1ca0 | 6e 67 20 65 78 61 6d 70 6c 65 20 64 65 73 63 72 69 62 65 73 20 61 20 63 6f 6d 6d 6f 6e 20 73 63 | ng.example.describes.a.common.sc |
| e1cc0 | 65 6e 61 72 69 6f 2e 00 44 48 43 50 76 36 20 72 65 6c 61 79 20 65 78 61 6d 70 6c 65 00 44 48 43 | enario..DHCPv6.relay.example.DHC |
| e1ce0 | 50 76 36 20 72 65 71 75 65 73 74 73 20 61 72 65 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 | Pv6.requests.are.received.by.the |
| e1d00 | 20 72 6f 75 74 65 72 20 6f 6e 20 60 6c 69 73 74 65 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 60 | .router.on.`listening.interface` |
| e1d20 | 20 60 60 65 74 68 31 60 60 00 44 4d 56 50 4e 00 44 4d 56 50 4e 20 65 78 61 6d 70 6c 65 20 6e 65 | .``eth1``.DMVPN.DMVPN.example.ne |
| e1d40 | 74 77 6f 72 6b 00 44 4d 56 50 4e 20 6e 65 74 77 6f 72 6b 00 44 4d 56 50 4e 20 6f 6e 6c 79 20 61 | twork.DMVPN.network.DMVPN.only.a |
| e1d60 | 75 74 6f 6d 61 74 65 73 20 74 68 65 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 | utomates.the.tunnel.endpoint.dis |
| e1d80 | 63 6f 76 65 72 79 20 61 6e 64 20 73 65 74 75 70 2e 20 41 20 63 6f 6d 70 6c 65 74 65 20 73 6f 6c | covery.and.setup..A.complete.sol |
| e1da0 | 75 74 69 6f 6e 20 61 6c 73 6f 20 69 6e 63 6f 72 70 6f 72 61 74 65 73 20 74 68 65 20 75 73 65 20 | ution.also.incorporates.the.use. |
| e1dc0 | 6f 66 20 61 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2e 20 42 47 50 20 69 73 20 70 61 | of.a.routing.protocol..BGP.is.pa |
| e1de0 | 72 74 69 63 75 6c 61 72 6c 79 20 77 65 6c 6c 20 73 75 69 74 65 64 20 66 6f 72 20 75 73 65 20 77 | rticularly.well.suited.for.use.w |
| e1e00 | 69 74 68 20 44 4d 56 50 4e 2e 00 44 4e 41 54 00 44 4e 41 54 20 69 73 20 74 79 70 69 63 61 6c 6c | ith.DMVPN..DNAT.DNAT.is.typicall |
| e1e20 | 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 20 2a 2a 50 6f 72 74 20 46 6f 72 77 61 72 | y.referred.to.as.a.**Port.Forwar |
| e1e40 | 64 2a 2a 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 56 79 4f 53 20 61 73 20 61 20 4e 41 54 20 72 6f | d**..When.using.VyOS.as.a.NAT.ro |
| e1e60 | 75 74 65 72 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 2c 20 61 20 63 6f 6d 6d 6f 6e 20 63 6f 6e 66 | uter.and.firewall,.a.common.conf |
| e1e80 | 69 67 75 72 61 74 69 6f 6e 20 74 61 73 6b 20 69 73 20 74 6f 20 72 65 64 69 72 65 63 74 20 69 6e | iguration.task.is.to.redirect.in |
| e1ea0 | 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 73 79 73 74 65 6d 20 62 65 68 69 6e | coming.traffic.to.a.system.behin |
| e1ec0 | 64 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2e 00 44 4e 41 54 20 72 75 6c 65 20 31 30 20 72 65 70 | d.the.firewall..DNAT.rule.10.rep |
| e1ee0 | 6c 61 63 65 73 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 | laces.the.destination.address.of |
| e1f00 | 20 61 6e 20 69 6e 62 6f 75 6e 64 20 70 61 63 6b 65 74 20 77 69 74 68 20 31 39 32 2e 30 2e 32 2e | .an.inbound.packet.with.192.0.2. |
| e1f20 | 31 30 00 44 4e 41 54 36 36 00 44 4e 53 20 46 6f 72 77 61 72 64 69 6e 67 00 44 4e 53 20 6e 61 6d | 10.DNAT66.DNS.Forwarding.DNS.nam |
| e1f40 | 65 20 73 65 72 76 65 72 73 00 44 4e 53 20 73 65 61 72 63 68 20 6c 69 73 74 20 74 6f 20 61 64 76 | e.servers.DNS.search.list.to.adv |
| e1f60 | 65 72 74 69 73 65 00 44 4e 53 20 73 65 72 76 65 72 20 49 50 76 34 20 61 64 64 72 65 73 73 00 44 | ertise.DNS.server.IPv4.address.D |
| e1f80 | 4e 53 20 73 65 72 76 65 72 20 69 73 20 6c 6f 63 61 74 65 64 20 61 74 20 60 60 32 30 30 31 3a 64 | NS.server.is.located.at.``2001:d |
| e1fa0 | 62 38 3a 3a 66 66 66 66 60 60 00 44 4e 53 53 4c 00 44 53 43 50 20 76 61 6c 75 65 73 20 61 73 20 | b8::ffff``.DNSSL.DSCP.values.as. |
| e1fc0 | 70 65 72 20 3a 72 66 63 3a 60 32 34 37 34 60 20 61 6e 64 20 3a 72 66 63 3a 60 34 35 39 35 60 3a | per.:rfc:`2474`.and.:rfc:`4595`: |
| e1fe0 | 00 44 53 53 53 2f 43 43 4b 20 4d 6f 64 65 20 69 6e 20 34 30 20 4d 48 7a 2c 20 74 68 69 73 20 73 | .DSSS/CCK.Mode.in.40.MHz,.this.s |
| e2000 | 65 74 73 20 60 60 5b 44 53 53 53 5f 43 43 4b 2d 34 30 5d 60 60 00 44 61 74 61 20 69 73 20 70 72 | ets.``[DSSS_CCK-40]``.Data.is.pr |
| e2020 | 6f 76 69 64 65 64 20 62 79 20 44 42 2d 49 50 2e 63 6f 6d 20 75 6e 64 65 72 20 43 43 2d 42 59 2d | ovided.by.DB-IP.com.under.CC-BY- |
| e2040 | 34 2e 30 20 6c 69 63 65 6e 73 65 2e 20 41 74 74 72 69 62 75 74 69 6f 6e 20 72 65 71 75 69 72 65 | 4.0.license..Attribution.require |
| e2060 | 64 2c 20 70 65 72 6d 69 74 73 20 72 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 73 6f 20 77 65 20 | d,.permits.redistribution.so.we. |
| e2080 | 63 61 6e 20 69 6e 63 6c 75 64 65 20 61 20 64 61 74 61 62 61 73 65 20 69 6e 20 69 6d 61 67 65 73 | can.include.a.database.in.images |
| e20a0 | 28 7e 33 4d 42 20 63 6f 6d 70 72 65 73 73 65 64 29 2e 20 49 6e 63 6c 75 64 65 73 20 63 72 6f 6e | (~3MB.compressed)..Includes.cron |
| e20c0 | 20 73 63 72 69 70 74 20 28 6d 61 6e 75 61 6c 6c 79 20 63 61 6c 6c 61 62 6c 65 20 62 79 20 6f 70 | .script.(manually.callable.by.op |
| e20e0 | 2d 6d 6f 64 65 20 75 70 64 61 74 65 20 67 65 6f 69 70 29 20 74 6f 20 6b 65 65 70 20 64 61 74 61 | -mode.update.geoip).to.keep.data |
| e2100 | 62 61 73 65 20 61 6e 64 20 72 75 6c 65 73 20 75 70 64 61 74 65 64 2e 00 44 65 62 75 67 00 44 65 | base.and.rules.updated..Debug.De |
| e2120 | 62 75 67 2d 6c 65 76 65 6c 20 6d 65 73 73 61 67 65 73 20 2d 20 4d 65 73 73 61 67 65 73 20 74 68 | bug-level.messages.-.Messages.th |
| e2140 | 61 74 20 63 6f 6e 74 61 69 6e 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6e 6f 72 6d 61 6c 6c 79 20 | at.contain.information.normally. |
| e2160 | 6f 66 20 75 73 65 20 6f 6e 6c 79 20 77 68 65 6e 20 64 65 62 75 67 67 69 6e 67 20 61 20 70 72 6f | of.use.only.when.debugging.a.pro |
| e2180 | 67 72 61 6d 2e 00 44 65 66 61 75 6c 74 00 44 65 66 61 75 6c 74 20 31 2e 00 44 65 66 61 75 6c 74 | gram..Default.Default.1..Default |
| e21a0 | 20 47 61 74 65 77 61 79 2f 52 6f 75 74 65 00 44 65 66 61 75 6c 74 20 52 6f 75 74 65 72 20 50 72 | .Gateway/Route.Default.Router.Pr |
| e21c0 | 65 66 65 72 65 6e 63 65 00 44 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d 20 64 6f 6e 27 | eference.Default.behavior.-.don' |
| e21e0 | 74 20 61 73 6b 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 62 75 74 20 61 6c 6c 6f 77 | t.ask.client.for.mppe,.but.allow |
| e2200 | 20 69 74 20 69 66 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 | .it.if.client.wants..Please.note |
| e2220 | 20 74 68 61 74 20 52 41 44 49 55 53 20 6d 61 79 20 6f 76 65 72 72 69 64 65 20 74 68 69 73 20 6f | .that.RADIUS.may.override.this.o |
| e2240 | 70 74 69 6f 6e 20 62 79 20 4d 53 2d 4d 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 | ption.by.MS-MPPE-Encryption-Poli |
| e2260 | 63 79 20 61 74 74 72 69 62 75 74 65 2e 00 44 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 2d | cy.attribute..Default.behavior.- |
| e2280 | 20 64 6f 6e 27 74 20 61 73 6b 20 74 68 65 20 63 6c 69 65 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 | .don't.ask.the.client.for.mppe,. |
| e22a0 | 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 69 66 20 74 68 65 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 | but.allow.it.if.the.client.wants |
| e22c0 | 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 52 41 44 49 55 53 20 6d 61 79 20 6f 76 | ..Please.note.that.RADIUS.may.ov |
| e22e0 | 65 72 72 69 64 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 62 79 20 4d 53 2d 4d 50 50 45 2d 45 6e | erride.this.option.by.MS-MPPE-En |
| e2300 | 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 63 79 20 61 74 74 72 69 62 75 74 65 2e 00 44 65 66 61 75 | cryption-Policy.attribute..Defau |
| e2320 | 6c 74 20 62 65 68 61 76 69 6f 72 20 2d 20 64 6f 6e 27 74 20 61 73 6b 20 74 68 65 20 63 6c 69 65 | lt.behavior.-.don't.ask.the.clie |
| e2340 | 6e 74 20 66 6f 72 20 6d 70 70 65 2c 20 62 75 74 20 61 6c 6c 6f 77 20 69 74 20 69 66 20 74 68 65 | nt.for.mppe,.but.allow.it.if.the |
| e2360 | 20 63 6c 69 65 6e 74 20 77 61 6e 74 73 2e 20 50 6c 65 61 73 65 20 6e 6f 74 65 20 74 68 61 74 20 | .client.wants..Please.note.that. |
| e2380 | 52 41 44 49 55 53 20 6d 61 79 20 6f 76 65 72 72 69 64 65 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 | RADIUS.may.override.this.option. |
| e23a0 | 77 69 74 68 20 74 68 65 20 4d 53 2d 4d 50 50 45 2d 45 6e 63 72 79 70 74 69 6f 6e 2d 50 6f 6c 69 | with.the.MS-MPPE-Encryption-Poli |
| e23c0 | 63 79 20 61 74 74 72 69 62 75 74 65 2e 00 44 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 61 6e | cy.attribute..Default.gateway.an |
| e23e0 | 64 20 44 4e 53 20 73 65 72 76 65 72 20 69 73 20 61 74 20 60 31 39 32 2e 30 2e 32 2e 32 35 34 60 | d.DNS.server.is.at.`192.0.2.254` |
| e2400 | 00 44 65 66 61 75 6c 74 20 69 73 20 30 20 66 6f 72 20 75 6e 6c 69 6d 69 74 65 64 2e 20 46 6f 72 | .Default.is.0.for.unlimited..For |
| e2420 | 20 65 78 61 6d 70 6c 65 2c 20 31 2e 32 35 20 6c 69 6d 69 74 73 20 74 68 65 20 63 6f 6e 74 61 69 | .example,.1.25.limits.the.contai |
| e2440 | 6e 65 72 20 74 6f 20 75 73 65 20 75 70 20 74 6f 20 31 2e 32 35 20 63 6f 72 65 73 20 77 6f 72 74 | ner.to.use.up.to.1.25.cores.wort |
| e2460 | 68 20 6f 66 20 43 50 55 20 74 69 6d 65 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 20 64 65 63 | h.of.CPU.time..This.can.be.a.dec |
| e2480 | 69 6d 61 6c 20 6e 75 6d 62 65 72 20 77 69 74 68 20 75 70 20 74 6f 20 74 68 72 65 65 20 64 65 63 | imal.number.with.up.to.three.dec |
| e24a0 | 69 6d 61 6c 20 70 6c 61 63 65 73 2e 00 44 65 66 61 75 6c 74 20 69 73 20 33 31 30 30 00 44 65 66 | imal.places..Default.is.3100.Def |
| e24c0 | 61 75 6c 74 20 69 73 20 35 31 32 20 4d 42 2e 20 55 73 65 20 30 20 4d 42 20 66 6f 72 20 75 6e 6c | ault.is.512.MB..Use.0.MB.for.unl |
| e24e0 | 69 6d 69 74 65 64 20 6d 65 6d 6f 72 79 2e 00 44 65 66 61 75 6c 74 20 69 73 20 60 60 61 6e 79 2d | imited.memory..Default.is.``any- |
| e2500 | 61 76 61 69 6c 61 62 6c 65 60 60 2e 00 44 65 66 61 75 6c 74 20 69 73 20 60 60 69 63 6d 70 60 60 | available``..Default.is.``icmp`` |
| e2520 | 2e 00 44 65 66 61 75 6c 74 20 69 73 20 74 6f 20 64 65 74 65 63 74 73 20 70 68 79 73 69 63 61 6c | ..Default.is.to.detects.physical |
| e2540 | 20 6c 69 6e 6b 20 73 74 61 74 65 20 63 68 61 6e 67 65 73 2e 00 44 65 66 61 75 6c 74 20 70 6f 72 | .link.state.changes..Default.por |
| e2560 | 74 20 69 73 20 33 31 32 38 2e 00 44 65 66 61 75 6c 74 3a 20 31 00 44 65 66 61 75 6c 74 3a 20 34 | t.is.3128..Default:.1.Default:.4 |
| e2580 | 34 33 00 44 65 66 61 75 6c 74 73 20 74 6f 20 27 75 69 64 27 00 44 65 66 61 75 6c 74 73 20 74 6f | 43.Defaults.to.'uid'.Defaults.to |
| e25a0 | 20 32 32 35 2e 30 2e 30 2e 35 30 2e 00 44 65 66 61 75 6c 74 73 20 74 6f 20 60 60 75 73 60 60 2e | .225.0.0.50..Defaults.to.``us``. |
| e25c0 | 00 44 65 66 69 6e 65 20 43 6f 6e 65 63 74 69 6f 6e 20 54 69 6d 65 6f 75 74 73 00 44 65 66 69 6e | .Define.Conection.Timeouts.Defin |
| e25e0 | 65 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 70 72 65 66 69 78 20 66 6f 72 20 61 20 | e.IPv4.and/or.IPv6.prefix.for.a. |
| e2600 | 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 2e 20 42 6f 74 68 20 49 50 76 34 20 61 6e | given.network.name..Both.IPv4.an |
| e2620 | 64 20 49 50 76 36 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 70 61 72 61 6c 6c 65 6c 2e 00 | d.IPv6.can.be.used.in.parallel.. |
| e2640 | 44 65 66 69 6e 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 70 72 65 66 69 78 20 66 6f 72 20 61 | Define.IPv4.or.IPv6.prefix.for.a |
| e2660 | 20 67 69 76 65 6e 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 2e 20 4f 6e 6c 79 20 6f 6e 65 20 49 50 | .given.network.name..Only.one.IP |
| e2680 | 76 34 20 61 6e 64 20 6f 6e 65 20 49 50 76 36 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 75 73 | v4.and.one.IPv6.prefix.can.be.us |
| e26a0 | 65 64 20 70 65 72 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 2e 00 44 65 66 69 6e 65 20 49 50 76 34 | ed.per.network.name..Define.IPv4 |
| e26c0 | 2f 49 50 76 36 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6d 69 | /IPv6.management.address.transmi |
| e26e0 | 74 74 65 64 20 76 69 61 20 4c 4c 44 50 2e 20 4d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 65 | tted.via.LLDP..Multiple.addresse |
| e2700 | 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 20 4f 6e 6c 79 20 61 64 64 72 65 73 73 65 73 | s.can.be.defined..Only.addresses |
| e2720 | 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 20 77 69 6c 6c 20 62 65 | .connected.to.the.system.will.be |
| e2740 | 20 74 72 61 6e 73 6d 69 74 74 65 64 2e 00 44 65 66 69 6e 65 20 61 20 49 50 76 34 20 6f 72 20 49 | .transmitted..Define.a.IPv4.or.I |
| e2760 | 50 76 36 20 4e 65 74 77 6f 72 6b 20 67 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 49 50 76 34 | Pv6.Network.group..Define.a.IPv4 |
| e2780 | 20 6f 72 20 61 20 49 50 76 36 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 00 44 65 66 69 6e 65 20 | .or.a.IPv6.address.group.Define. |
| e27a0 | 61 20 5a 6f 6e 65 00 44 65 66 69 6e 65 20 61 20 64 69 73 63 72 65 74 65 20 73 6f 75 72 63 65 20 | a.Zone.Define.a.discrete.source. |
| e27c0 | 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 31 30 30 2e 36 34 2e 30 2e 31 20 66 6f 72 20 53 4e 41 | IP.address.of.100.64.0.1.for.SNA |
| e27e0 | 54 20 72 75 6c 65 20 32 30 00 44 65 66 69 6e 65 20 61 20 64 6f 6d 61 69 6e 20 67 72 6f 75 70 2e | T.rule.20.Define.a.domain.group. |
| e2800 | 00 44 65 66 69 6e 65 20 61 20 6d 61 63 20 67 72 6f 75 70 2e 00 44 65 66 69 6e 65 20 61 20 70 6f | .Define.a.mac.group..Define.a.po |
| e2820 | 72 74 20 67 72 6f 75 70 2e 20 41 20 70 6f 72 74 20 6e 61 6d 65 20 63 61 6e 20 62 65 20 61 6e 79 | rt.group..A.port.name.can.be.any |
| e2840 | 20 6e 61 6d 65 20 64 65 66 69 6e 65 64 20 69 6e 20 2f 65 74 63 2f 73 65 72 76 69 63 65 73 2e 20 | .name.defined.in./etc/services.. |
| e2860 | 65 2e 67 2e 3a 20 68 74 74 70 00 44 65 66 69 6e 65 20 61 6c 6c 6f 77 65 64 20 63 69 70 68 65 72 | e.g.:.http.Define.allowed.cipher |
| e2880 | 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 53 53 48 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 41 | s.used.for.the.SSH.connection..A |
| e28a0 | 20 6e 75 6d 62 65 72 20 6f 66 20 61 6c 6c 6f 77 65 64 20 63 69 70 68 65 72 73 20 63 61 6e 20 62 | .number.of.allowed.ciphers.can.b |
| e28c0 | 65 20 73 70 65 63 69 66 69 65 64 2c 20 75 73 65 20 6d 75 6c 74 69 70 6c 65 20 6f 63 63 75 72 72 | e.specified,.use.multiple.occurr |
| e28e0 | 65 6e 63 65 73 20 74 6f 20 61 6c 6c 6f 77 20 6d 75 6c 74 69 70 6c 65 20 63 69 70 68 65 72 73 2e | ences.to.allow.multiple.ciphers. |
| e2900 | 00 44 65 66 69 6e 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 57 69 6c 64 | .Define.an.interface.group..Wild |
| e2920 | 63 61 72 64 20 61 72 65 20 61 63 63 65 70 74 65 64 20 74 6f 6f 2e 00 44 65 66 69 6e 65 20 62 65 | card.are.accepted.too..Define.be |
| e2940 | 68 61 76 69 6f 72 20 66 6f 72 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 66 72 61 6d 65 73 | havior.for.gratuitous.ARP.frames |
| e2960 | 20 77 68 6f 27 73 20 49 50 20 69 73 20 6e 6f 74 20 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 | .who's.IP.is.not.already.present |
| e2980 | 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e 20 49 66 20 63 6f 6e 66 69 67 75 72 65 64 | .in.the.ARP.table..If.configured |
| e29a0 | 20 63 72 65 61 74 65 20 6e 65 77 20 65 6e 74 72 69 65 73 20 69 6e 20 74 68 65 20 41 52 50 20 74 | .create.new.entries.in.the.ARP.t |
| e29c0 | 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 62 65 68 61 76 69 6f 72 20 66 6f 72 20 67 72 61 74 75 69 | able..Define.behavior.for.gratui |
| e29e0 | 74 6f 75 73 20 41 52 50 20 66 72 61 6d 65 73 20 77 68 6f 73 65 20 49 50 20 69 73 20 6e 6f 74 20 | tous.ARP.frames.whose.IP.is.not. |
| e2a00 | 61 6c 72 65 61 64 79 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 | already.present.in.the.ARP.table |
| e2a20 | 2e 20 49 66 20 63 6f 6e 66 69 67 75 72 65 64 20 63 72 65 61 74 65 20 6e 65 77 20 65 6e 74 72 69 | ..If.configured.create.new.entri |
| e2a40 | 65 73 20 69 6e 20 74 68 65 20 41 52 50 20 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 64 69 66 66 | es.in.the.ARP.table..Define.diff |
| e2a60 | 65 72 65 6e 74 20 6d 6f 64 65 73 20 66 6f 72 20 49 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 | erent.modes.for.IP.directed.broa |
| e2a80 | 64 63 61 73 74 20 66 6f 72 77 61 72 64 69 6e 67 20 61 73 20 64 65 73 63 72 69 62 65 64 20 69 6e | dcast.forwarding.as.described.in |
| e2aa0 | 20 3a 72 66 63 3a 60 31 38 31 32 60 20 61 6e 64 20 3a 72 66 63 3a 60 32 36 34 34 60 2e 00 44 65 | .:rfc:`1812`.and.:rfc:`2644`..De |
| e2ac0 | 66 69 6e 65 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 66 6f 72 20 73 65 6e 64 69 6e 67 | fine.different.modes.for.sending |
| e2ae0 | 20 72 65 70 6c 69 65 73 20 69 6e 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 72 65 63 65 69 76 65 64 | .replies.in.response.to.received |
| e2b00 | 20 41 52 50 20 72 65 71 75 65 73 74 73 20 74 68 61 74 20 72 65 73 6f 6c 76 65 20 6c 6f 63 61 6c | .ARP.requests.that.resolve.local |
| e2b20 | 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 73 65 73 3a 00 44 65 66 69 6e 65 20 64 69 66 | .target.IP.addresses:.Define.dif |
| e2b40 | 66 65 72 65 6e 74 20 72 65 73 74 72 69 63 74 69 6f 6e 20 6c 65 76 65 6c 73 20 66 6f 72 20 61 6e | ferent.restriction.levels.for.an |
| e2b60 | 6e 6f 75 6e 63 69 6e 67 20 74 68 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 | nouncing.the.local.source.IP.add |
| e2b80 | 72 65 73 73 20 66 72 6f 6d 20 49 50 20 70 61 63 6b 65 74 73 20 69 6e 20 41 52 50 20 72 65 71 75 | ress.from.IP.packets.in.ARP.requ |
| e2ba0 | 65 73 74 73 20 73 65 6e 74 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 44 65 66 69 6e 65 20 68 | ests.sent.on.interface..Define.h |
| e2bc0 | 6f 77 20 74 6f 20 68 61 6e 64 6c 65 20 6c 65 61 66 2d 73 65 6f 6e 64 73 2e 00 44 65 66 69 6e 65 | ow.to.handle.leaf-seonds..Define |
| e2be0 | 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c 65 20 6c 65 61 70 2d 73 65 63 6f 6e 64 73 2e 00 44 65 66 | .how.to.handle.leap-seconds..Def |
| e2c00 | 69 6e 65 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 62 65 20 75 73 65 64 20 69 6e 20 74 68 65 | ine.interfaces.to.be.used.in.the |
| e2c20 | 20 66 6c 6f 77 74 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 6c 65 6e 67 68 74 20 6f 66 20 65 78 63 | .flowtable..Define.lenght.of.exc |
| e2c40 | 6c 75 64 65 20 70 72 65 66 69 78 20 69 6e 20 60 3c 70 64 2d 70 72 65 66 69 78 3e 60 2e 00 44 65 | lude.prefix.in.`<pd-prefix>`..De |
| e2c60 | 66 69 6e 65 20 6c 65 6e 67 74 68 20 6f 66 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f | fine.length.of.packet.payload.to |
| e2c80 | 20 69 6e 63 6c 75 64 65 20 69 6e 20 6e 65 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e 6c | .include.in.netlink.message..Onl |
| e2ca0 | 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 | y.applicable.if.rule.log.is.enab |
| e2cc0 | 6c 65 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 | le.and.log.group.is.defined..Def |
| e2ce0 | 69 6e 65 20 6c 65 6e 67 74 68 20 6f 66 20 70 61 63 6b 65 74 20 70 61 79 6c 6f 61 64 20 74 6f 20 | ine.length.of.packet.payload.to. |
| e2d00 | 69 6e 63 6c 75 64 65 20 69 6e 20 6e 65 74 6c 69 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e 6c 79 | include.in.netlink.message..Only |
| e2d20 | 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c | .applicable.if.rule.log.is.enabl |
| e2d40 | 65 64 20 61 6e 64 20 74 68 65 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e | ed.and.the.log.group.is.defined. |
| e2d60 | 00 44 65 66 69 6e 65 20 6c 6f 67 20 67 72 6f 75 70 20 74 6f 20 73 65 6e 64 20 6d 65 73 73 61 67 | .Define.log.group.to.send.messag |
| e2d80 | 65 20 74 6f 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f | e.to..Only.applicable.if.rule.lo |
| e2da0 | 67 20 69 73 20 65 6e 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 6c 6f 67 2d 6c 65 76 65 6c 2e 20 4f | g.is.enable..Define.log-level..O |
| e2dc0 | 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e | nly.applicable.if.rule.log.is.en |
| e2de0 | 61 62 6c 65 2e 00 44 65 66 69 6e 65 20 6c 6f 67 2d 6c 65 76 65 6c 2e 20 4f 6e 6c 79 20 61 70 70 | able..Define.log-level..Only.app |
| e2e00 | 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 2e 00 | licable.if.rule.log.is.enabled.. |
| e2e20 | 44 65 66 69 6e 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 | Define.number.of.packets.to.queu |
| e2e40 | 65 20 69 6e 73 69 64 65 20 74 68 65 20 6b 65 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 | e.inside.the.kernel.before.sendi |
| e2e60 | 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 65 72 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 | ng.them.to.userspace..Only.appli |
| e2e80 | 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 20 61 6e 64 20 | cable.if.rule.log.is.enable.and. |
| e2ea0 | 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 6f 70 65 | log.group.is.defined..Define.ope |
| e2ec0 | 72 61 74 69 6f 6e 20 6d 6f 64 65 20 6f 66 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 | ration.mode.of.High.Availability |
| e2ee0 | 20 66 65 61 74 75 72 65 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 66 20 63 6f 6d 6d 61 | .feature..Default.value.if.comma |
| e2f00 | 6e 64 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 69 73 20 60 61 63 74 69 76 65 2d 61 | nd.is.not.specified.is.`active-a |
| e2f20 | 63 74 69 76 65 60 00 44 65 66 69 6e 65 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 70 61 63 6b | ctive`.Define.the.length.of.pack |
| e2f40 | 65 74 20 70 61 79 6c 6f 61 64 20 74 6f 20 69 6e 63 6c 75 64 65 20 69 6e 20 61 20 6e 65 74 6c 69 | et.payload.to.include.in.a.netli |
| e2f60 | 6e 6b 20 6d 65 73 73 61 67 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 62 6c 65 20 69 66 20 72 | nk.message..Only.applicable.if.r |
| e2f80 | 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 | ule.log.is.enabled.and.log.group |
| e2fa0 | 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 74 68 65 20 6c 6f 67 20 67 72 6f 75 | .is.defined..Define.the.log.grou |
| e2fc0 | 70 20 74 6f 20 73 65 6e 64 20 6d 65 73 73 61 67 65 73 20 74 6f 2e 20 4f 6e 6c 79 20 61 70 70 6c | p.to.send.messages.to..Only.appl |
| e2fe0 | 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 2e 00 44 | icable.if.rule.log.is.enabled..D |
| e3000 | 65 66 69 6e 65 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 | efine.the.number.of.packets.to.q |
| e3020 | 75 65 75 65 20 69 6e 73 69 64 65 20 74 68 65 20 6b 65 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 | ueue.inside.the.kernel.before.se |
| e3040 | 6e 64 69 6e 67 20 74 68 65 6d 20 74 6f 20 75 73 65 72 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 | nding.them.to.userspace..Only.ap |
| e3060 | 70 6c 69 63 61 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 | plicable.if.rule.log.is.enabled. |
| e3080 | 61 6e 64 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 | and.log.group.is.defined..Define |
| e30a0 | 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 71 75 65 75 65 20 | .the.number.of.packets.to.queue. |
| e30c0 | 69 6e 73 69 64 65 20 74 68 65 20 6b 65 72 6e 65 6c 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 | inside.the.kernel.before.sending |
| e30e0 | 20 74 68 65 6d 20 74 6f 20 75 73 65 72 73 70 61 63 65 2e 20 4f 6e 6c 79 20 61 70 70 6c 69 63 61 | .them.to.userspace..Only.applica |
| e3100 | 62 6c 65 20 69 66 20 72 75 6c 65 20 6c 6f 67 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 74 | ble.if.rule.log.is.enabled.and.t |
| e3120 | 68 65 20 6c 6f 67 20 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 20 | he.log.group.is.defined..Define. |
| e3140 | 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 74 6f 20 75 70 64 61 74 65 20 74 68 65 20 | the.time.interval.to.update.the. |
| e3160 | 6c 6f 63 61 6c 20 63 61 63 68 65 00 44 65 66 69 6e 65 20 74 68 65 20 7a 6f 6e 65 20 61 73 20 61 | local.cache.Define.the.zone.as.a |
| e3180 | 20 6c 6f 63 61 6c 20 7a 6f 6e 65 2e 20 41 20 6c 6f 63 61 6c 20 7a 6f 6e 65 20 68 61 73 20 6e 6f | .local.zone..A.local.zone.has.no |
| e31a0 | 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 | .interfaces.and.will.be.applied. |
| e31c0 | 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 00 44 65 66 69 6e 65 20 74 79 70 | to.the.router.itself..Define.typ |
| e31e0 | 65 20 6f 66 20 6f 66 66 6c 6f 61 64 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 68 65 20 66 | e.of.offload.to.be.used.by.the.f |
| e3200 | 6c 6f 77 74 61 62 6c 65 3a 20 60 60 68 61 72 64 77 61 72 65 60 60 20 6f 72 20 60 60 73 6f 66 74 | lowtable:.``hardware``.or.``soft |
| e3220 | 77 61 72 65 60 60 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 60 60 73 6f 66 74 77 61 72 65 60 60 | ware``..By.default,.``software`` |
| e3240 | 20 6f 66 66 6c 6f 61 64 20 69 73 20 75 73 65 64 2e 00 44 65 66 69 6e 65 20 75 73 65 64 20 65 74 | .offload.is.used..Define.used.et |
| e3260 | 68 65 72 74 79 70 65 20 6f 66 20 62 72 69 64 67 65 20 69 6e 74 65 72 66 61 63 65 2e 00 44 65 66 | hertype.of.bridge.interface..Def |
| e3280 | 69 6e 65 64 20 74 68 65 20 49 50 76 34 2c 20 49 50 76 36 20 6f 72 20 46 51 44 4e 20 61 6e 64 20 | ined.the.IPv4,.IPv6.or.FQDN.and. |
| e32a0 | 70 6f 72 74 20 6e 75 6d 62 65 72 20 6f 66 20 74 68 65 20 63 61 63 68 69 6e 67 20 52 50 4b 49 20 | port.number.of.the.caching.RPKI. |
| e32c0 | 63 61 63 68 69 6e 67 20 69 6e 73 74 61 6e 63 65 20 77 68 69 63 68 20 69 73 20 75 73 65 64 2e 00 | caching.instance.which.is.used.. |
| e32e0 | 44 65 66 69 6e 65 73 20 61 6c 74 65 72 6e 61 74 65 20 73 6f 75 72 63 65 73 20 66 6f 72 20 6d 75 | Defines.alternate.sources.for.mu |
| e3300 | 6c 74 69 63 61 73 74 69 6e 67 20 61 6e 64 20 49 47 4d 50 20 64 61 74 61 2e 20 54 68 65 20 6e 65 | lticasting.and.IGMP.data..The.ne |
| e3320 | 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 6f 6e 20 74 68 65 20 66 6f 6c | twork.address.must.be.on.the.fol |
| e3340 | 6c 6f 77 69 6e 67 20 66 6f 72 6d 61 74 20 27 61 2e 62 2e 63 2e 64 2f 6e 27 2e 20 42 79 20 64 65 | lowing.format.'a.b.c.d/n'..By.de |
| e3360 | 66 61 75 6c 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 61 63 63 65 70 74 20 64 61 | fault,.the.router.will.accept.da |
| e3380 | 74 61 20 66 72 6f 6d 20 73 6f 75 72 63 65 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 6e 65 74 77 | ta.from.sources.on.the.same.netw |
| e33a0 | 6f 72 6b 20 61 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 | ork.as.configured.on.an.interfac |
| e33c0 | 65 2e 20 49 66 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 63 65 20 6c 69 65 73 20 | e..If.the.multicast.source.lies. |
| e33e0 | 6f 6e 20 61 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 2c 20 6f 6e 65 20 6d 75 73 74 20 64 65 | on.a.remote.network,.one.must.de |
| e3400 | 66 69 6e 65 20 66 72 6f 6d 20 77 68 65 72 65 20 74 72 61 66 66 69 63 20 73 68 6f 75 6c 64 20 62 | fine.from.where.traffic.should.b |
| e3420 | 65 20 61 63 63 65 70 74 65 64 2e 00 44 65 66 69 6e 65 73 20 61 6e 20 6f 66 66 2d 4e 42 4d 41 20 | e.accepted..Defines.an.off-NBMA. |
| e3440 | 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 20 66 6f 72 20 77 68 69 63 68 20 74 68 65 20 47 52 45 | network.prefix.for.which.the.GRE |
| e3460 | 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 61 63 74 20 61 73 20 61 20 67 61 74 65 77 61 79 | .interface.will.act.as.a.gateway |
| e3480 | 2e 20 54 68 69 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 64 65 66 69 6e 69 6e | ..This.an.alternative.to.definin |
| e34a0 | 67 20 6c 6f 63 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 73 68 6f 72 74 63 75 74 | g.local.interfaces.with.shortcut |
| e34c0 | 2d 64 65 73 74 69 6e 61 74 69 6f 6e 20 66 6c 61 67 2e 00 44 65 66 69 6e 65 73 20 62 6c 61 63 6b | -destination.flag..Defines.black |
| e34e0 | 68 6f 6c 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 69 73 20 72 6f 75 74 65 2c 20 72 6f | hole.distance.for.this.route,.ro |
| e3500 | 75 74 65 73 20 77 69 74 68 20 73 6d 61 6c 6c 65 72 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 | utes.with.smaller.administrative |
| e3520 | 20 64 69 73 74 61 6e 63 65 20 61 72 65 20 65 6c 65 63 74 65 64 20 70 72 69 6f 72 20 74 6f 20 74 | .distance.are.elected.prior.to.t |
| e3540 | 68 6f 73 65 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 64 69 73 74 61 6e 63 65 2e 00 44 65 66 | hose.with.a.higher.distance..Def |
| e3560 | 69 6e 65 73 20 6d 69 6e 69 6d 75 6d 20 61 63 63 65 70 74 61 62 6c 65 20 4d 54 55 2e 20 49 66 20 | ines.minimum.acceptable.MTU..If. |
| e3580 | 63 6c 69 65 6e 74 20 77 69 6c 6c 20 74 72 79 20 74 6f 20 6e 65 67 6f 74 69 61 74 65 20 6c 65 73 | client.will.try.to.negotiate.les |
| e35a0 | 73 20 74 68 65 6e 20 73 70 65 63 69 66 69 65 64 20 4d 54 55 20 74 68 65 6e 20 69 74 20 77 69 6c | s.then.specified.MTU.then.it.wil |
| e35c0 | 6c 20 62 65 20 4e 41 4b 65 64 20 6f 72 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 20 69 66 20 72 65 | l.be.NAKed.or.disconnected.if.re |
| e35e0 | 6a 65 63 74 73 20 67 72 65 61 74 65 72 20 4d 54 55 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 | jects.greater.MTU..Default.value |
| e3600 | 20 69 73 20 2a 2a 31 30 30 2a 2a 2e 00 44 65 66 69 6e 65 73 20 6e 65 78 74 2d 68 6f 70 20 64 69 | .is.**100**..Defines.next-hop.di |
| e3620 | 73 74 61 6e 63 65 20 66 6f 72 20 74 68 69 73 20 72 6f 75 74 65 2c 20 72 6f 75 74 65 73 20 77 69 | stance.for.this.route,.routes.wi |
| e3640 | 74 68 20 73 6d 61 6c 6c 65 72 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e | th.smaller.administrative.distan |
| e3660 | 63 65 20 61 72 65 20 65 6c 65 63 74 65 64 20 70 72 69 6f 72 20 74 6f 20 74 68 6f 73 65 20 77 69 | ce.are.elected.prior.to.those.wi |
| e3680 | 74 68 20 61 20 68 69 67 68 65 72 20 64 69 73 74 61 6e 63 65 2e 00 44 65 66 69 6e 65 73 20 70 72 | th.a.higher.distance..Defines.pr |
| e36a0 | 65 66 65 72 72 65 64 20 4d 52 55 2e 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 6e 6f 74 20 64 | eferred.MRU..By.default.is.not.d |
| e36c0 | 65 66 69 6e 65 64 2e 00 44 65 66 69 6e 65 73 20 70 72 6f 74 6f 63 6f 6c 73 20 66 6f 72 20 63 68 | efined..Defines.protocols.for.ch |
| e36e0 | 65 63 6b 69 6e 67 20 41 52 50 2c 20 49 43 4d 50 2c 20 54 43 50 00 44 65 66 69 6e 65 73 20 74 68 | ecking.ARP,.ICMP,.TCP.Defines.th |
| e3700 | 65 20 6d 61 78 69 6d 75 6d 20 60 3c 6e 75 6d 62 65 72 3e 60 20 6f 66 20 75 6e 61 6e 73 77 65 72 | e.maximum.`<number>`.of.unanswer |
| e3720 | 65 64 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 2e 20 55 70 6f 6e 20 72 65 61 63 68 69 6e 67 20 | ed.echo.requests..Upon.reaching. |
| e3740 | 74 68 65 20 76 61 6c 75 65 20 60 3c 6e 75 6d 62 65 72 3e 60 2c 20 74 68 65 20 73 65 73 73 69 6f | the.value.`<number>`,.the.sessio |
| e3760 | 6e 20 77 69 6c 6c 20 62 65 20 72 65 73 65 74 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 | n.will.be.reset..Defines.the.max |
| e3780 | 69 6d 75 6d 20 60 3c 6e 75 6d 62 65 72 3e 60 20 6f 66 20 75 6e 61 6e 73 77 65 72 65 64 20 65 63 | imum.`<number>`.of.unanswered.ec |
| e37a0 | 68 6f 20 72 65 71 75 65 73 74 73 2e 20 55 70 6f 6e 20 72 65 61 63 68 69 6e 67 20 74 68 65 20 76 | ho.requests..Upon.reaching.the.v |
| e37c0 | 61 6c 75 65 20 60 3c 6e 75 6d 62 65 72 3e 60 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 6c | alue.`<number>`,.the.session.wil |
| e37e0 | 6c 20 62 65 20 72 65 73 65 74 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 33 | l.be.reset..Default.value.is.**3 |
| e3800 | 2a 2a 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 61 63 63 65 70 74 61 62 | **..Defines.the.minimum.acceptab |
| e3820 | 6c 65 20 4d 54 55 2e 20 49 66 20 61 20 63 6c 69 65 6e 74 20 74 72 69 65 73 20 74 6f 20 6e 65 67 | le.MTU..If.a.client.tries.to.neg |
| e3840 | 6f 74 69 61 74 65 20 61 6e 20 4d 54 55 20 6c 6f 77 65 72 20 74 68 61 6e 20 74 68 69 73 20 69 74 | otiate.an.MTU.lower.than.this.it |
| e3860 | 20 77 69 6c 6c 20 62 65 20 4e 41 4b 65 64 2c 20 61 6e 64 20 64 69 73 63 6f 6e 6e 65 63 74 65 64 | .will.be.NAKed,.and.disconnected |
| e3880 | 20 69 66 20 69 74 20 72 65 6a 65 63 74 73 20 61 20 67 72 65 61 74 65 72 20 4d 54 55 2e 20 44 65 | .if.it.rejects.a.greater.MTU..De |
| e38a0 | 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 31 30 30 2a 2a 2e 00 44 65 66 69 6e 65 73 20 | fault.value.is.**100**..Defines. |
| e38c0 | 74 68 65 20 72 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 75 73 65 64 20 66 6f 72 20 61 63 74 | the.round-trip.time.used.for.act |
| e38e0 | 69 76 65 20 71 75 65 75 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 28 41 51 4d 29 20 69 6e 20 6d 69 | ive.queue.management.(AQM).in.mi |
| e3900 | 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 | lliseconds..The.default.value.is |
| e3920 | 20 31 30 30 2e 00 44 65 66 69 6e 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 64 65 76 69 | .100..Defines.the.specified.devi |
| e3940 | 63 65 20 61 73 20 61 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c 65 2e 20 41 76 61 69 6c 61 62 6c | ce.as.a.system.console..Availabl |
| e3960 | 65 20 63 6f 6e 73 6f 6c 65 20 64 65 76 69 63 65 73 20 63 61 6e 20 62 65 20 28 73 65 65 20 63 6f | e.console.devices.can.be.(see.co |
| e3980 | 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 65 72 29 3a 00 44 65 66 69 6e 69 6e 67 20 44 79 6e 61 6d | mpletion.helper):.Defining.Dynam |
| e39a0 | 69 63 20 41 64 64 72 65 73 73 20 47 72 6f 75 70 73 00 44 65 66 69 6e 69 6e 67 20 50 65 65 72 73 | ic.Address.Groups.Defining.Peers |
| e39c0 | 00 44 65 6c 65 67 61 74 65 20 70 72 65 66 69 78 65 73 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 | .Delegate.prefixes.from.`<pd-pre |
| e39e0 | 66 69 78 3e 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 | fix>`.to.clients.in.subnet.`<pre |
| e3a00 | 66 69 78 3e 60 2e 20 52 61 6e 67 65 20 69 73 20 64 65 66 69 6e 65 64 20 62 79 20 60 3c 6c 65 6e | fix>`..Range.is.defined.by.`<len |
| e3a20 | 67 68 74 3e 60 20 69 6e 20 62 69 74 73 2c 20 33 32 20 74 6f 20 36 34 2e 00 44 65 6c 65 67 61 74 | ght>`.in.bits,.32.to.64..Delegat |
| e3a40 | 65 20 70 72 65 66 69 78 65 73 20 66 72 6f 6d 20 74 68 65 20 72 61 6e 67 65 20 69 6e 64 69 63 61 | e.prefixes.from.the.range.indica |
| e3a60 | 74 65 64 20 62 79 20 74 68 65 20 73 74 61 72 74 20 61 6e 64 20 73 74 6f 70 20 71 75 61 6c 69 66 | ted.by.the.start.and.stop.qualif |
| e3a80 | 69 65 72 2e 00 44 65 6c 65 74 65 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 6d 61 74 63 | ier..Delete.BGP.communities.matc |
| e3aa0 | 68 69 6e 67 20 74 68 65 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2e 00 44 65 6c 65 74 65 20 | hing.the.community-list..Delete. |
| e3ac0 | 42 47 50 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 6c 61 72 | BGP.communities.matching.the.lar |
| e3ae0 | 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2e 00 44 65 6c 65 74 65 20 4c 6f 67 73 00 44 | ge-community-list..Delete.Logs.D |
| e3b00 | 65 6c 65 74 65 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 | elete.a.particular.container.ima |
| e3b20 | 67 65 20 62 61 73 65 64 20 6f 6e 20 69 74 27 73 20 69 6d 61 67 65 20 49 44 2e 20 59 6f 75 20 63 | ge.based.on.it's.image.ID..You.c |
| e3b40 | 61 6e 20 61 6c 73 6f 20 64 65 6c 65 74 65 20 61 6c 6c 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 | an.also.delete.all.container.ima |
| e3b60 | 67 65 73 20 61 74 20 6f 6e 63 65 2e 00 44 65 6c 65 74 65 20 61 6c 6c 20 42 47 50 20 63 6f 6d 6d | ges.at.once..Delete.all.BGP.comm |
| e3b80 | 75 6e 69 74 69 65 73 00 44 65 6c 65 74 65 20 61 6c 6c 20 42 47 50 20 6c 61 72 67 65 2d 63 6f 6d | unities.Delete.all.BGP.large-com |
| e3ba0 | 6d 75 6e 69 74 69 65 73 00 44 65 6c 65 74 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 66 72 | munities.Delete.default.route.fr |
| e3bc0 | 6f 6d 20 74 68 65 20 73 79 73 74 65 6d 2e 00 44 65 6c 65 74 65 73 20 74 68 65 20 73 70 65 63 69 | om.the.system..Deletes.the.speci |
| e3be0 | 66 69 65 64 20 75 73 65 72 2d 64 65 66 69 6e 65 64 20 66 69 6c 65 20 3c 74 65 78 74 3e 20 69 6e | fied.user-defined.file.<text>.in |
| e3c00 | 20 74 68 65 20 2f 76 61 72 2f 6c 6f 67 2f 75 73 65 72 20 64 69 72 65 63 74 6f 72 79 00 44 65 70 | .the./var/log/user.directory.Dep |
| e3c20 | 65 6e 64 69 6e 67 20 6f 6e 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 2c 20 6e 6f 74 20 61 6c 6c 20 | ending.on.the.location,.not.all. |
| e3c40 | 6f 66 20 74 68 65 73 65 20 63 68 61 6e 6e 65 6c 73 20 6d 61 79 20 62 65 20 61 76 61 69 6c 61 62 | of.these.channels.may.be.availab |
| e3c60 | 6c 65 20 66 6f 72 20 75 73 65 21 00 44 65 73 63 72 69 70 74 69 6f 6e 00 44 65 73 70 69 74 65 20 | le.for.use!.Description.Despite. |
| e3c80 | 74 68 65 20 44 72 6f 70 2d 54 61 69 6c 20 70 6f 6c 69 63 79 20 64 6f 65 73 20 6e 6f 74 20 73 6c | the.Drop-Tail.policy.does.not.sl |
| e3ca0 | 6f 77 20 64 6f 77 6e 20 70 61 63 6b 65 74 73 2c 20 69 66 20 6d 61 6e 79 20 70 61 63 6b 65 74 73 | ow.down.packets,.if.many.packets |
| e3cc0 | 20 61 72 65 20 74 6f 20 62 65 20 73 65 6e 74 2c 20 74 68 65 79 20 63 6f 75 6c 64 20 67 65 74 20 | .are.to.be.sent,.they.could.get. |
| e3ce0 | 64 72 6f 70 70 65 64 20 77 68 65 6e 20 74 72 79 69 6e 67 20 74 6f 20 67 65 74 20 65 6e 71 75 65 | dropped.when.trying.to.get.enque |
| e3d00 | 75 65 64 20 61 74 20 74 68 65 20 74 61 69 6c 2e 20 54 68 69 73 20 63 61 6e 20 68 61 70 70 65 6e | ued.at.the.tail..This.can.happen |
| e3d20 | 20 69 66 20 74 68 65 20 71 75 65 75 65 20 68 61 73 20 73 74 69 6c 6c 20 6e 6f 74 20 62 65 65 6e | .if.the.queue.has.still.not.been |
| e3d40 | 20 61 62 6c 65 20 74 6f 20 72 65 6c 65 61 73 65 20 65 6e 6f 75 67 68 20 70 61 63 6b 65 74 73 20 | .able.to.release.enough.packets. |
| e3d60 | 66 72 6f 6d 20 69 74 73 20 68 65 61 64 2e 00 44 65 73 70 69 74 65 20 74 68 65 20 66 61 63 74 20 | from.its.head..Despite.the.fact. |
| e3d80 | 74 68 61 74 20 41 44 20 69 73 20 61 20 73 75 70 65 72 73 65 74 20 6f 66 20 4c 44 41 50 00 44 65 | that.AD.is.a.superset.of.LDAP.De |
| e3da0 | 73 74 69 6e 61 74 69 6f 6e 20 41 64 64 72 65 73 73 00 44 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 | stination.Address.Destination.NA |
| e3dc0 | 54 00 44 65 73 74 69 6e 61 74 69 6f 6e 20 50 72 65 66 69 78 00 44 65 74 61 69 6c 65 64 20 69 6e | T.Destination.Prefix.Detailed.in |
| e3de0 | 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 22 63 69 73 63 6f 22 20 61 6e 64 20 22 69 62 6d | formation.about."cisco".and."ibm |
| e3e00 | 22 20 6d 6f 64 65 6c 73 20 64 69 66 66 65 72 65 6e 63 65 73 20 63 61 6e 20 62 65 20 66 6f 75 6e | ".models.differences.can.be.foun |
| e3e20 | 64 20 69 6e 20 3a 72 66 63 3a 60 33 35 30 39 60 2e 20 41 20 22 73 68 6f 72 74 63 75 74 22 20 6d | d.in.:rfc:`3509`..A."shortcut".m |
| e3e40 | 6f 64 65 6c 20 61 6c 6c 6f 77 73 20 41 42 52 20 74 6f 20 63 72 65 61 74 65 20 72 6f 75 74 65 73 | odel.allows.ABR.to.create.routes |
| e3e60 | 20 62 65 74 77 65 65 6e 20 61 72 65 61 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 74 6f 70 6f | .between.areas.based.on.the.topo |
| e3e80 | 6c 6f 67 79 20 6f 66 20 74 68 65 20 61 72 65 61 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 | logy.of.the.areas.connected.to.t |
| e3ea0 | 68 69 73 20 72 6f 75 74 65 72 20 62 75 74 20 6e 6f 74 20 75 73 69 6e 67 20 61 20 62 61 63 6b 62 | his.router.but.not.using.a.backb |
| e3ec0 | 6f 6e 65 20 61 72 65 61 20 69 6e 20 63 61 73 65 20 69 66 20 6e 6f 6e 2d 62 61 63 6b 62 6f 6e 65 | one.area.in.case.if.non-backbone |
| e3ee0 | 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 63 68 65 61 70 65 72 2e 20 46 6f 72 20 6d 6f 72 65 | .route.will.be.cheaper..For.more |
| e3f00 | 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 22 73 68 6f 72 74 63 75 74 22 20 6d 6f | .information.about."shortcut".mo |
| e3f20 | 64 65 6c 2c 20 73 65 65 20 3a 74 3a 60 6f 73 70 66 2d 73 68 6f 72 74 63 75 74 2d 61 62 72 2d 30 | del,.see.:t:`ospf-shortcut-abr-0 |
| e3f40 | 32 2e 74 78 74 60 00 44 65 74 65 72 6d 69 6e 65 73 20 68 6f 77 20 6f 70 65 6e 6e 68 72 70 20 64 | 2.txt`.Determines.how.opennhrp.d |
| e3f60 | 61 65 6d 6f 6e 20 73 68 6f 75 6c 64 20 73 6f 66 74 20 73 77 69 74 63 68 20 74 68 65 20 6d 75 6c | aemon.should.soft.switch.the.mul |
| e3f80 | 74 69 63 61 73 74 20 74 72 61 66 66 69 63 2e 20 43 75 72 72 65 6e 74 6c 79 2c 20 6d 75 6c 74 69 | ticast.traffic..Currently,.multi |
| e3fa0 | 63 61 73 74 20 74 72 61 66 66 69 63 20 69 73 20 63 61 70 74 75 72 65 64 20 62 79 20 6f 70 65 6e | cast.traffic.is.captured.by.open |
| e3fc0 | 6e 68 72 70 20 64 61 65 6d 6f 6e 20 75 73 69 6e 67 20 61 20 70 61 63 6b 65 74 20 73 6f 63 6b 65 | nhrp.daemon.using.a.packet.socke |
| e3fe0 | 74 2c 20 61 6e 64 20 72 65 73 65 6e 74 20 62 61 63 6b 20 74 6f 20 70 72 6f 70 65 72 20 64 65 73 | t,.and.resent.back.to.proper.des |
| e4000 | 74 69 6e 61 74 69 6f 6e 73 2e 20 54 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 6d 75 6c 74 69 | tinations..This.means.that.multi |
| e4020 | 63 61 73 74 20 70 61 63 6b 65 74 20 73 65 6e 64 69 6e 67 20 69 73 20 43 50 55 20 69 6e 74 65 6e | cast.packet.sending.is.CPU.inten |
| e4040 | 73 69 76 65 2e 00 44 65 76 69 63 65 20 69 73 20 69 6e 63 61 70 61 62 6c 65 20 6f 66 20 34 30 20 | sive..Device.is.incapable.of.40. |
| e4060 | 4d 48 7a 2c 20 64 6f 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 2e 20 54 68 69 73 20 73 65 74 73 | MHz,.do.not.advertise..This.sets |
| e4080 | 20 60 60 5b 34 30 2d 49 4e 54 4f 4c 45 52 41 4e 54 5d 60 60 00 44 65 76 69 63 65 73 20 65 76 61 | .``[40-INTOLERANT]``.Devices.eva |
| e40a0 | 6c 75 61 74 69 6e 67 20 77 68 65 74 68 65 72 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 | luating.whether.an.IPv4.address. |
| e40c0 | 69 73 20 70 75 62 6c 69 63 20 6d 75 73 74 20 62 65 20 75 70 64 61 74 65 64 20 74 6f 20 72 65 63 | is.public.must.be.updated.to.rec |
| e40e0 | 6f 67 6e 69 7a 65 20 74 68 65 20 6e 65 77 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2e 20 41 6c | ognize.the.new.address.space..Al |
| e4100 | 6c 6f 63 61 74 69 6e 67 20 6d 6f 72 65 20 70 72 69 76 61 74 65 20 49 50 76 34 20 61 64 64 72 65 | locating.more.private.IPv4.addre |
| e4120 | 73 73 20 73 70 61 63 65 20 66 6f 72 20 4e 41 54 20 64 65 76 69 63 65 73 20 6d 69 67 68 74 20 70 | ss.space.for.NAT.devices.might.p |
| e4140 | 72 6f 6c 6f 6e 67 20 74 68 65 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 6f 20 49 50 76 36 2e 00 44 | rolong.the.transition.to.IPv6..D |
| e4160 | 69 66 66 65 72 65 6e 74 20 4e 41 54 20 54 79 70 65 73 00 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 | ifferent.NAT.Types.Diffie-Hellma |
| e4180 | 6e 20 70 61 72 61 6d 65 74 65 72 73 00 44 69 72 65 63 74 69 6f 6e 3a 20 2a 2a 69 6e 2a 2a 20 61 | n.parameters.Direction:.**in**.a |
| e41a0 | 6e 64 20 2a 2a 6f 75 74 2a 2a 2e 20 50 72 6f 74 65 63 74 20 70 75 62 6c 69 63 20 6e 65 74 77 6f | nd.**out**..Protect.public.netwo |
| e41c0 | 72 6b 20 66 72 6f 6d 20 65 78 74 65 72 6e 61 6c 20 61 74 74 61 63 6b 73 2c 20 61 6e 64 20 69 64 | rk.from.external.attacks,.and.id |
| e41e0 | 65 6e 74 69 66 79 20 69 6e 74 65 72 6e 61 6c 20 61 74 74 61 63 6b 73 20 74 6f 77 61 72 64 73 20 | entify.internal.attacks.towards. |
| e4200 | 69 6e 74 65 72 6e 65 74 2e 00 44 69 73 61 62 6c 65 20 28 6c 6f 63 6b 29 20 61 63 63 6f 75 6e 74 | internet..Disable.(lock).account |
| e4220 | 2e 20 55 73 65 72 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 61 62 6c 65 20 74 6f 20 6c 6f 67 20 69 | ..User.will.not.be.able.to.log.i |
| e4240 | 6e 2e 00 44 69 73 61 62 6c 65 20 43 50 55 20 70 6f 77 65 72 20 73 61 76 69 6e 67 20 6d 65 63 68 | n..Disable.CPU.power.saving.mech |
| e4260 | 61 6e 69 73 6d 73 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 20 43 20 73 74 61 74 65 73 2e 00 44 | anisms.also.known.as.C.states..D |
| e4280 | 69 73 61 62 6c 65 20 43 6f 6d 70 72 65 73 73 69 6f 6e 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f | isable.Compression.Control.Proto |
| e42a0 | 63 6f 6c 20 28 43 43 50 29 2e 20 43 43 50 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 | col.(CCP)..CCP.is.enabled.by.def |
| e42c0 | 61 75 6c 74 2e 00 44 69 73 61 62 6c 65 20 4d 4c 44 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 | ault..Disable.MLD.reports.and.qu |
| e42e0 | 65 72 79 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 44 69 73 61 62 6c 65 20 60 3c | ery.on.the.interface..Disable.`< |
| e4300 | 75 73 65 72 3e 60 20 61 63 63 6f 75 6e 74 2e 00 44 69 73 61 62 6c 65 20 61 20 42 46 44 20 70 65 | user>`.account..Disable.a.BFD.pe |
| e4320 | 65 72 00 44 69 73 61 62 6c 65 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 44 69 73 61 62 6c 65 20 | er.Disable.a.container..Disable. |
| e4340 | 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 00 44 69 73 61 62 | a.given.container.registry.Disab |
| e4360 | 6c 65 20 61 6c 6c 20 6f 70 74 69 6f 6e 61 6c 20 43 50 55 20 6d 69 74 69 67 61 74 69 6f 6e 73 2e | le.all.optional.CPU.mitigations. |
| e4380 | 20 54 68 69 73 20 69 6d 70 72 6f 76 65 73 20 73 79 73 74 65 6d 20 70 65 72 66 6f 72 6d 61 6e 63 | .This.improves.system.performanc |
| e43a0 | 65 2c 20 62 75 74 20 69 74 20 6d 61 79 20 61 6c 73 6f 20 65 78 70 6f 73 65 20 75 73 65 72 73 20 | e,.but.it.may.also.expose.users. |
| e43c0 | 74 6f 20 73 65 76 65 72 61 6c 20 43 50 55 20 76 75 6c 6e 65 72 61 62 69 6c 69 74 69 65 73 2e 00 | to.several.CPU.vulnerabilities.. |
| e43e0 | 44 69 73 61 62 6c 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6c 6f 67 67 69 6e 67 20 76 69 61 20 53 | Disable.connection.logging.via.S |
| e4400 | 79 73 6c 6f 67 2e 00 44 69 73 61 62 6c 65 20 63 6f 6e 6e 74 72 61 63 6b 20 6c 6f 6f 73 65 20 74 | yslog..Disable.conntrack.loose.t |
| e4420 | 72 61 63 6b 20 6f 70 74 69 6f 6e 00 44 69 73 61 62 6c 65 20 64 68 63 70 2d 72 65 6c 61 79 20 73 | rack.option.Disable.dhcp-relay.s |
| e4440 | 65 72 76 69 63 65 2e 00 44 69 73 61 62 6c 65 20 64 68 63 70 76 36 2d 72 65 6c 61 79 20 73 65 72 | ervice..Disable.dhcpv6-relay.ser |
| e4460 | 76 69 63 65 2e 00 44 69 73 61 62 6c 65 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e | vice..Disable.given.`<interface> |
| e4480 | 60 2e 20 49 74 20 77 69 6c 6c 20 62 65 20 70 6c 61 63 65 64 20 69 6e 20 61 64 6d 69 6e 69 73 74 | `..It.will.be.placed.in.administ |
| e44a0 | 72 61 74 69 76 65 6c 79 20 64 6f 77 6e 20 28 60 60 41 2f 44 60 60 29 20 73 74 61 74 65 2e 00 44 | ratively.down.(``A/D``).state..D |
| e44c0 | 69 73 61 62 6c 65 20 68 6f 73 74 69 6e 67 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 7a 6f 6e | isable.hosting.authoritative.zon |
| e44e0 | 65 20 66 6f 72 20 60 3c 64 6f 6d 61 69 6e 2d 6e 61 6d 65 3e 60 20 77 69 74 68 6f 75 74 20 64 65 | e.for.`<domain-name>`.without.de |
| e4500 | 6c 65 74 69 6e 67 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 62 | leting.from.configuration..Disab |
| e4520 | 6c 65 20 69 6d 6d 65 64 69 61 74 65 20 73 65 73 73 69 6f 6e 20 72 65 73 65 74 20 69 66 20 70 65 | le.immediate.session.reset.if.pe |
| e4540 | 65 72 27 73 20 63 6f 6e 6e 65 63 74 65 64 20 6c 69 6e 6b 20 67 6f 65 73 20 64 6f 77 6e 2e 00 44 | er's.connected.link.goes.down..D |
| e4560 | 69 73 61 62 6c 65 20 70 61 73 73 77 6f 72 64 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 | isable.password.based.authentica |
| e4580 | 74 69 6f 6e 2e 20 4c 6f 67 69 6e 20 76 69 61 20 53 53 48 20 6b 65 79 73 20 6f 6e 6c 79 2e 20 54 | tion..Login.via.SSH.keys.only..T |
| e45a0 | 68 69 73 20 68 61 72 64 65 6e 73 20 73 65 63 75 72 69 74 79 21 00 44 69 73 61 62 6c 65 20 73 65 | his.hardens.security!.Disable.se |
| e45c0 | 6e 64 69 6e 67 20 61 6e 64 20 72 65 63 65 69 76 69 6e 67 20 50 49 4d 20 63 6f 6e 74 72 6f 6c 20 | nding.and.receiving.PIM.control. |
| e45e0 | 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 44 69 73 61 62 6c | packets.on.the.interface..Disabl |
| e4600 | 65 20 73 70 65 63 69 66 69 63 20 72 65 63 6f 72 64 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 | e.specific.record.without.deleti |
| e4620 | 6e 67 20 69 74 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 62 6c | ng.it.from.configuration..Disabl |
| e4640 | 65 20 74 68 65 20 68 6f 73 74 20 76 61 6c 69 64 61 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 72 65 | e.the.host.validation.through.re |
| e4660 | 76 65 72 73 65 20 44 4e 53 20 6c 6f 6f 6b 75 70 73 20 2d 20 63 61 6e 20 73 70 65 65 64 75 70 20 | verse.DNS.lookups.-.can.speedup. |
| e4680 | 6c 6f 67 69 6e 20 74 69 6d 65 20 77 68 65 6e 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 20 69 | login.time.when.reverse.lookup.i |
| e46a0 | 73 20 6e 6f 74 20 70 6f 73 73 69 62 6c 65 2e 00 44 69 73 61 62 6c 65 20 74 68 65 20 70 65 65 72 | s.not.possible..Disable.the.peer |
| e46c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 44 69 73 61 62 6c 65 20 74 68 69 73 20 49 50 76 34 | .configuration.Disable.this.IPv4 |
| e46e0 | 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 65 6e 74 72 79 2e 00 44 69 73 61 62 6c 65 20 74 68 69 | .static.route.entry..Disable.thi |
| e4700 | 73 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 65 6e 74 72 79 2e 00 44 69 73 61 62 | s.IPv6.static.route.entry..Disab |
| e4720 | 6c 65 20 74 68 69 73 20 73 65 72 76 69 63 65 2e 00 44 69 73 61 62 6c 65 20 74 72 61 6e 73 6d 69 | le.this.service..Disable.transmi |
| e4740 | 74 20 6f 66 20 4c 4c 44 50 20 66 72 61 6d 65 73 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 | t.of.LLDP.frames.on.given.`<inte |
| e4760 | 72 66 61 63 65 3e 60 2e 20 55 73 65 66 75 6c 20 74 6f 20 65 78 63 6c 75 64 65 20 63 65 72 74 61 | rface>`..Useful.to.exclude.certa |
| e4780 | 69 6e 20 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 4c 4c 44 50 20 77 68 65 6e 20 60 60 61 | in.interfaces.from.LLDP.when.``a |
| e47a0 | 6c 6c 60 60 20 68 61 76 65 20 62 65 65 6e 20 65 6e 61 62 6c 65 64 2e 00 44 69 73 61 62 6c 65 64 | ll``.have.been.enabled..Disabled |
| e47c0 | 20 62 79 20 64 65 66 61 75 6c 74 20 2d 20 6e 6f 20 6b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 6c | .by.default.-.no.kernel.module.l |
| e47e0 | 6f 61 64 65 64 2e 00 44 69 73 61 62 6c 65 73 20 63 61 63 68 69 6e 67 20 6f 66 20 70 65 65 72 20 | oaded..Disables.caching.of.peer. |
| e4800 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 66 6f 72 77 61 72 64 65 64 20 4e 48 52 50 20 | information.from.forwarded.NHRP. |
| e4820 | 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 70 6c 79 20 70 61 63 6b 65 74 73 2e 20 54 68 69 73 20 63 | Resolution.Reply.packets..This.c |
| e4840 | 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 72 65 64 75 63 65 20 6d 65 6d 6f 72 79 20 63 6f 6e 73 | an.be.used.to.reduce.memory.cons |
| e4860 | 75 6d 70 74 69 6f 6e 20 6f 6e 20 62 69 67 20 4e 42 4d 41 20 73 75 62 6e 65 74 73 2e 00 44 69 73 | umption.on.big.NBMA.subnets..Dis |
| e4880 | 61 62 6c 65 73 20 66 6c 6f 77 20 69 73 6f 6c 61 74 69 6f 6e 2c 20 61 6c 6c 20 74 72 61 66 66 69 | ables.flow.isolation,.all.traffi |
| e48a0 | 63 20 70 61 73 73 65 73 20 74 68 72 6f 75 67 68 20 61 20 73 69 6e 67 6c 65 20 71 75 65 75 65 2e | c.passes.through.a.single.queue. |
| e48c0 | 00 44 69 73 61 62 6c 65 73 20 69 6e 74 65 72 66 61 63 65 2d 62 61 73 65 64 20 49 50 76 34 20 73 | .Disables.interface-based.IPv4.s |
| e48e0 | 74 61 74 69 63 20 72 6f 75 74 65 2e 00 44 69 73 61 62 6c 65 73 20 69 6e 74 65 72 66 61 63 65 2d | tatic.route..Disables.interface- |
| e4900 | 62 61 73 65 64 20 49 50 76 36 20 73 74 61 74 69 63 20 72 6f 75 74 65 2e 00 44 69 73 61 62 6c 65 | based.IPv6.static.route..Disable |
| e4920 | 73 20 71 75 69 63 6b 6c 65 61 76 65 20 6d 6f 64 65 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 20 | s.quickleave.mode..In.this.mode. |
| e4940 | 74 68 65 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 73 65 6e 64 20 61 20 4c 65 61 76 65 | the.daemon.will.not.send.a.Leave |
| e4960 | 20 49 47 4d 50 20 6d 65 73 73 61 67 65 20 75 70 73 74 72 65 61 6d 20 61 73 20 73 6f 6f 6e 20 61 | .IGMP.message.upstream.as.soon.a |
| e4980 | 73 20 69 74 20 72 65 63 65 69 76 65 73 20 61 20 4c 65 61 76 65 20 6d 65 73 73 61 67 65 20 66 6f | s.it.receives.a.Leave.message.fo |
| e49a0 | 72 20 61 6e 79 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 | r.any.downstream.interface..The. |
| e49c0 | 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 61 73 6b 20 66 6f 72 20 4d 65 6d 62 65 72 73 68 | daemon.will.not.ask.for.Membersh |
| e49e0 | 69 70 20 72 65 70 6f 72 74 73 20 6f 6e 20 74 68 65 20 64 6f 77 6e 73 74 72 65 61 6d 20 69 6e 74 | ip.reports.on.the.downstream.int |
| e4a00 | 65 72 66 61 63 65 73 2c 20 61 6e 64 20 69 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 72 65 63 65 | erfaces,.and.if.a.report.is.rece |
| e4a20 | 69 76 65 64 20 74 68 65 20 67 72 6f 75 70 20 69 73 20 6e 6f 74 20 6a 6f 69 6e 65 64 20 61 67 61 | ived.the.group.is.not.joined.aga |
| e4a40 | 69 6e 20 74 68 65 20 75 70 73 74 72 65 61 6d 2e 00 44 69 73 61 62 6c 65 73 20 77 65 62 20 66 69 | in.the.upstream..Disables.web.fi |
| e4a60 | 6c 74 65 72 69 6e 67 20 77 69 74 68 6f 75 74 20 64 69 73 63 61 72 64 69 6e 67 20 63 6f 6e 66 69 | ltering.without.discarding.confi |
| e4a80 | 67 75 72 61 74 69 6f 6e 2e 00 44 69 73 61 62 6c 65 73 20 77 65 62 20 70 72 6f 78 79 20 74 72 61 | guration..Disables.web.proxy.tra |
| e4aa0 | 6e 73 70 61 72 65 6e 74 20 6d 6f 64 65 20 61 74 20 61 20 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 | nsparent.mode.at.a.listening.add |
| e4ac0 | 72 65 73 73 2e 00 44 69 73 61 62 6c 69 6e 67 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 00 44 | ress..Disabling.Advertisements.D |
| e4ae0 | 69 73 61 62 6c 69 6e 67 20 61 20 56 52 52 50 20 67 72 6f 75 70 00 44 69 73 61 62 6c 69 6e 67 20 | isabling.a.VRRP.group.Disabling. |
| e4b00 | 74 68 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 6f 6e 20 74 68 65 20 6c 69 6e 6b 20 62 79 20 72 65 | the.encryption.on.the.link.by.re |
| e4b20 | 6d 6f 76 69 6e 67 20 60 60 73 65 63 75 72 69 74 79 20 65 6e 63 72 79 70 74 60 60 20 77 69 6c 6c | moving.``security.encrypt``.will |
| e4b40 | 20 73 68 6f 77 20 74 68 65 20 75 6e 65 6e 63 72 79 70 74 65 64 20 62 75 74 20 61 75 74 68 65 6e | .show.the.unencrypted.but.authen |
| e4b60 | 74 69 63 61 74 65 64 20 63 6f 6e 74 65 6e 74 2e 00 44 69 73 61 64 76 61 6e 74 61 67 65 73 20 61 | ticated.content..Disadvantages.a |
| e4b80 | 72 65 3a 00 44 69 73 61 73 73 6f 63 69 61 74 65 20 73 74 61 74 69 6f 6e 73 20 62 61 73 65 64 20 | re:.Disassociate.stations.based. |
| e4ba0 | 6f 6e 20 65 78 63 65 73 73 69 76 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 66 61 69 6c 75 72 | on.excessive.transmission.failur |
| e4bc0 | 65 73 20 6f 72 20 6f 74 68 65 72 20 69 6e 64 69 63 61 74 69 6f 6e 73 20 6f 66 20 63 6f 6e 6e 65 | es.or.other.indications.of.conne |
| e4be0 | 63 74 69 6f 6e 20 6c 6f 73 73 2e 00 44 69 73 70 6c 61 79 20 49 50 76 34 20 72 6f 75 74 69 6e 67 | ction.loss..Display.IPv4.routing |
| e4c00 | 20 74 61 62 6c 65 20 66 6f 72 20 56 52 46 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e | .table.for.VRF.identified.by.`<n |
| e4c20 | 61 6d 65 3e 60 2e 00 44 69 73 70 6c 61 79 20 49 50 76 36 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | ame>`..Display.IPv6.routing.tabl |
| e4c40 | 65 20 66 6f 72 20 56 52 46 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 | e.for.VRF.identified.by.`<name>` |
| e4c60 | 2e 00 44 69 73 70 6c 61 79 20 4c 6f 67 73 00 44 69 73 70 6c 61 79 20 4f 54 50 20 6b 65 79 20 66 | ..Display.Logs.Display.OTP.key.f |
| e4c80 | 6f 72 20 75 73 65 72 00 44 69 73 70 6c 61 79 20 61 6c 6c 20 61 75 74 68 6f 72 69 7a 61 74 69 6f | or.user.Display.all.authorizatio |
| e4ca0 | 6e 20 61 74 74 65 6d 70 74 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 | n.attempts.of.the.specified.imag |
| e4cc0 | 65 00 44 69 73 70 6c 61 79 20 61 6c 6c 20 6b 6e 6f 77 6e 20 41 52 50 20 74 61 62 6c 65 20 65 6e | e.Display.all.known.ARP.table.en |
| e4ce0 | 74 72 69 65 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 6c 79 20 | tries.on.a.given.interface.only. |
| e4d00 | 28 60 65 74 68 31 60 29 3a 00 44 69 73 70 6c 61 79 20 61 6c 6c 20 6b 6e 6f 77 6e 20 41 52 50 20 | (`eth1`):.Display.all.known.ARP. |
| e4d20 | 74 61 62 6c 65 20 65 6e 74 72 69 65 73 20 73 70 61 6e 6e 69 6e 67 20 61 63 72 6f 73 73 20 61 6c | table.entries.spanning.across.al |
| e4d40 | 6c 20 69 6e 74 65 72 66 61 63 65 73 00 44 69 73 70 6c 61 79 20 63 6f 6e 74 65 6e 74 73 20 6f 66 | l.interfaces.Display.contents.of |
| e4d60 | 20 61 20 73 70 65 63 69 66 69 65 64 20 75 73 65 72 2d 64 65 66 69 6e 65 64 20 6c 6f 67 20 66 69 | .a.specified.user-defined.log.fi |
| e4d80 | 6c 65 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 | le.of.the.specified.image.Displa |
| e4da0 | 79 20 63 6f 6e 74 65 6e 74 73 20 6f 66 20 61 6c 6c 20 6d 61 73 74 65 72 20 6c 6f 67 20 66 69 6c | y.contents.of.all.master.log.fil |
| e4dc0 | 65 73 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 | es.of.the.specified.image.Displa |
| e4de0 | 79 20 6c 61 73 74 20 6c 69 6e 65 73 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 20 6c 6f 67 20 6f | y.last.lines.of.the.system.log.o |
| e4e00 | 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 6c 69 | f.the.specified.image.Display.li |
| e4e20 | 73 74 20 6f 66 20 61 6c 6c 20 75 73 65 72 2d 64 65 66 69 6e 65 64 20 6c 6f 67 20 66 69 6c 65 73 | st.of.all.user-defined.log.files |
| e4e40 | 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 00 44 69 73 70 6c 61 79 20 | .of.the.specified.image.Display. |
| e4e60 | 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 67 69 76 65 6e 20 63 61 74 65 67 6f 72 79 20 6f 6e 20 74 | log.files.of.given.category.on.t |
| e4e80 | 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 55 73 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 74 | he.console..Use.tab.completion.t |
| e4ea0 | 6f 20 67 65 74 20 61 20 6c 69 73 74 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 63 61 74 65 67 6f | o.get.a.list.of.available.catego |
| e4ec0 | 72 69 65 73 2e 20 54 68 6f 73 20 63 61 74 65 67 6f 72 69 65 73 20 63 6f 75 6c 64 20 62 65 3a 20 | ries..Thos.categories.could.be:. |
| e4ee0 | 61 6c 6c 2c 20 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 2c 20 63 6c 75 73 74 65 72 2c 20 63 6f 6e | all,.authorization,.cluster,.con |
| e4f00 | 6e 74 72 61 63 6b 2d 73 79 6e 63 2c 20 64 68 63 70 2c 20 64 69 72 65 63 74 6f 72 79 2c 20 64 6e | ntrack-sync,.dhcp,.directory,.dn |
| e4f20 | 73 2c 20 66 69 6c 65 2c 20 66 69 72 65 77 61 6c 6c 2c 20 68 74 74 70 73 2c 20 69 6d 61 67 65 20 | s,.file,.firewall,.https,.image. |
| e4f40 | 6c 6c 64 70 2c 20 6e 61 74 2c 20 6f 70 65 6e 76 70 6e 2c 20 73 6e 6d 70 2c 20 74 61 69 6c 2c 20 | lldp,.nat,.openvpn,.snmp,.tail,. |
| e4f60 | 76 70 6e 2c 20 76 72 72 70 00 44 69 73 70 6c 61 79 20 6c 6f 67 20 66 69 6c 65 73 20 6f 66 20 67 | vpn,.vrrp.Display.log.files.of.g |
| e4f80 | 69 76 65 6e 20 63 61 74 65 67 6f 72 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 55 73 | iven.category.on.the.console..Us |
| e4fa0 | 65 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 6f | e.tab.completion.to.get.a.list.o |
| e4fc0 | 66 20 61 76 61 69 6c 61 62 6c 65 20 63 61 74 65 67 6f 72 69 65 73 2e 20 54 68 6f 73 65 20 63 61 | f.available.categories..Those.ca |
| e4fe0 | 74 65 67 6f 72 69 65 73 20 63 6f 75 6c 64 20 62 65 3a 20 61 6c 6c 2c 20 61 75 74 68 6f 72 69 7a | tegories.could.be:.all,.authoriz |
| e5000 | 61 74 69 6f 6e 2c 20 63 6c 75 73 74 65 72 2c 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2c 20 | ation,.cluster,.conntrack-sync,. |
| e5020 | 64 68 63 70 2c 20 64 69 72 65 63 74 6f 72 79 2c 20 64 6e 73 2c 20 66 69 6c 65 2c 20 66 69 72 65 | dhcp,.directory,.dns,.file,.fire |
| e5040 | 77 61 6c 6c 2c 20 68 74 74 70 73 2c 20 69 6d 61 67 65 20 6c 6c 64 70 2c 20 6e 61 74 2c 20 6f 70 | wall,.https,.image.lldp,.nat,.op |
| e5060 | 65 6e 76 70 6e 2c 20 73 6e 6d 70 2c 20 74 61 69 6c 2c 20 76 70 6e 2c 20 76 72 72 70 00 44 69 73 | envpn,.snmp,.tail,.vpn,.vrrp.Dis |
| e5080 | 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 6e 65 69 67 | plays.information.about.all.neig |
| e50a0 | 68 62 6f 72 73 20 64 69 73 63 6f 76 65 72 65 64 20 76 69 61 20 4c 4c 44 50 2e 00 44 69 73 70 6c | hbors.discovered.via.LLDP..Displ |
| e50c0 | 61 79 73 20 71 75 65 75 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 61 20 50 50 50 6f | ays.queue.information.for.a.PPPo |
| e50e0 | 45 20 69 6e 74 65 72 66 61 63 65 2e 00 44 69 73 70 6c 61 79 73 20 74 68 65 20 72 6f 75 74 65 20 | E.interface..Displays.the.route. |
| e5100 | 70 61 63 6b 65 74 73 20 74 61 6b 65 6e 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 68 6f 73 74 20 | packets.taken.to.a.network.host. |
| e5120 | 75 74 69 6c 69 7a 69 6e 67 20 56 52 46 20 69 6e 73 74 61 6e 63 65 20 69 64 65 6e 74 69 66 69 65 | utilizing.VRF.instance.identifie |
| e5140 | 64 20 62 79 20 60 3c 6e 61 6d 65 3e 60 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 74 68 65 20 49 50 | d.by.`<name>`..When.using.the.IP |
| e5160 | 76 34 20 6f 72 20 49 50 76 36 20 6f 70 74 69 6f 6e 2c 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 | v4.or.IPv6.option,.displays.the. |
| e5180 | 72 6f 75 74 65 20 70 61 63 6b 65 74 73 20 74 61 6b 65 6e 20 74 6f 20 74 68 65 20 67 69 76 65 6e | route.packets.taken.to.the.given |
| e51a0 | 20 68 6f 73 74 73 20 49 50 20 61 64 64 72 65 73 73 20 66 61 6d 69 6c 79 2e 20 54 68 69 73 20 6f | .hosts.IP.address.family..This.o |
| e51c0 | 70 74 69 6f 6e 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 74 68 65 20 68 6f 73 74 20 69 73 | ption.is.useful.when.the.host.is |
| e51e0 | 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 20 68 6f 73 74 6e 61 6d 65 20 72 61 74 68 65 72 20 | .specified.as.a.hostname.rather. |
| e5200 | 74 68 61 6e 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 2e 00 44 6f 20 2a 6e 6f 74 2a 20 6d 61 6e | than.an.IP.address..Do.*not*.man |
| e5220 | 75 61 6c 6c 79 20 65 64 69 74 20 60 2f 65 74 63 2f 68 6f 73 74 73 60 2e 20 54 68 69 73 20 66 69 | ually.edit.`/etc/hosts`..This.fi |
| e5240 | 6c 65 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 72 65 67 65 6e 65 72 | le.will.automatically.be.regener |
| e5260 | 61 74 65 64 20 6f 6e 20 62 6f 6f 74 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 73 65 74 74 69 6e | ated.on.boot.based.on.the.settin |
| e5280 | 67 73 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 | gs.in.this.section,.which.means. |
| e52a0 | 79 6f 75 27 6c 6c 20 6c 6f 73 65 20 61 6c 6c 20 79 6f 75 72 20 6d 61 6e 75 61 6c 20 65 64 69 74 | you'll.lose.all.your.manual.edit |
| e52c0 | 73 2e 20 49 6e 73 74 65 61 64 2c 20 63 6f 6e 66 69 67 75 72 65 20 73 74 61 74 69 63 20 68 6f 73 | s..Instead,.configure.static.hos |
| e52e0 | 74 20 6d 61 70 70 69 6e 67 73 20 61 73 20 66 6f 6c 6c 6f 77 73 2e 00 44 6f 20 6e 6f 74 20 61 6c | t.mappings.as.follows..Do.not.al |
| e5300 | 6c 6f 77 20 49 50 76 34 20 6e 65 78 74 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 74 6f 20 72 65 73 | low.IPv4.nexthop.tracking.to.res |
| e5320 | 6f 6c 76 65 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 20 54 68 69 73 | olve.via.the.default.route..This |
| e5340 | 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 72 2d 56 52 46 | .parameter.is.configured.per-VRF |
| e5360 | 2c 20 73 6f 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 62 | ,.so.the.command.is.also.availab |
| e5380 | 6c 65 20 69 6e 20 74 68 65 20 56 52 46 20 73 75 62 6e 6f 64 65 2e 00 44 6f 20 6e 6f 74 20 61 6c | le.in.the.VRF.subnode..Do.not.al |
| e53a0 | 6c 6f 77 20 49 50 76 36 20 6e 65 78 74 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 74 6f 20 72 65 73 | low.IPv6.nexthop.tracking.to.res |
| e53c0 | 6f 6c 76 65 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 20 54 68 69 73 | olve.via.the.default.route..This |
| e53e0 | 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 70 65 72 2d 56 52 46 | .parameter.is.configured.per-VRF |
| e5400 | 2c 20 73 6f 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 6c 73 6f 20 61 76 61 69 6c 61 62 | ,.so.the.command.is.also.availab |
| e5420 | 6c 65 20 69 6e 20 74 68 65 20 56 52 46 20 73 75 62 6e 6f 64 65 2e 00 44 6f 20 6e 6f 74 20 61 73 | le.in.the.VRF.subnode..Do.not.as |
| e5440 | 73 69 67 6e 20 61 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 | sign.a.link-local.IPv6.address.t |
| e5460 | 6f 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 44 6f 20 6e 6f 74 20 63 6f 6e 66 69 67 75 | o.this.interface..Do.not.configu |
| e5480 | 72 65 20 49 46 42 20 61 73 20 74 68 65 20 66 69 72 73 74 20 73 74 65 70 2e 20 46 69 72 73 74 20 | re.IFB.as.the.first.step..First. |
| e54a0 | 63 72 65 61 74 65 20 65 76 65 72 79 74 68 69 6e 67 20 65 6c 73 65 20 6f 66 20 79 6f 75 72 20 74 | create.everything.else.of.your.t |
| e54c0 | 72 61 66 66 69 63 2d 70 6f 6c 69 63 79 2c 20 61 6e 64 20 74 68 65 6e 20 79 6f 75 20 63 61 6e 20 | raffic-policy,.and.then.you.can. |
| e54e0 | 63 6f 6e 66 69 67 75 72 65 20 49 46 42 2e 20 4f 74 68 65 72 77 69 73 65 20 79 6f 75 20 6d 69 67 | configure.IFB..Otherwise.you.mig |
| e5500 | 68 74 20 67 65 74 20 74 68 65 20 60 60 52 54 4e 45 54 4c 49 4e 4b 20 61 6e 73 77 65 72 3a 20 46 | ht.get.the.``RTNETLINK.answer:.F |
| e5520 | 69 6c 65 20 65 78 69 73 74 73 60 60 20 65 72 72 6f 72 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 | ile.exists``.error,.which.can.be |
| e5540 | 20 73 6f 6c 76 65 64 20 77 69 74 68 20 60 60 73 75 64 6f 20 69 70 20 6c 69 6e 6b 20 64 65 6c 65 | .solved.with.``sudo.ip.link.dele |
| e5560 | 74 65 20 69 66 62 30 60 60 2e 00 44 6f 20 6e 6f 74 20 6c 65 61 76 65 20 69 6e 74 72 6f 73 70 65 | te.ifb0``..Do.not.leave.introspe |
| e5580 | 63 74 69 6f 6e 20 65 6e 61 62 6c 65 64 20 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e 2c 20 69 74 20 | ction.enabled.in.production,.it. |
| e55a0 | 69 73 20 61 20 73 65 63 75 72 69 74 79 20 72 69 73 6b 2e 00 44 6f 20 6e 6f 74 20 73 65 6e 64 20 | is.a.security.risk..Do.not.send. |
| e55c0 | 48 61 72 64 20 52 65 73 65 74 20 43 45 41 53 45 20 4e 6f 74 69 66 69 63 61 74 69 6f 6e 20 66 6f | Hard.Reset.CEASE.Notification.fo |
| e55e0 | 72 20 22 41 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 52 65 73 65 74 22 20 65 76 65 6e 74 73 2e | r."Administrative.Reset".events. |
| e5600 | 20 57 68 65 6e 20 73 65 74 20 61 6e 64 20 47 72 61 63 65 66 75 6c 20 52 65 73 74 61 72 74 20 4e | .When.set.and.Graceful.Restart.N |
| e5620 | 6f 74 69 66 69 63 61 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 74 79 20 69 73 20 65 78 63 68 61 6e | otification.capability.is.exchan |
| e5640 | 67 65 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 70 65 65 72 73 2c 20 47 72 61 63 65 66 75 6c 20 | ged.between.the.peers,.Graceful. |
| e5660 | 52 65 73 74 61 72 74 20 70 72 6f 63 65 64 75 72 65 73 20 61 70 70 6c 79 2c 20 61 6e 64 20 72 6f | Restart.procedures.apply,.and.ro |
| e5680 | 75 74 65 73 20 77 69 6c 6c 20 62 65 20 72 65 74 61 69 6e 65 64 2e 00 44 6f 20 6e 6f 74 20 75 73 | utes.will.be.retained..Do.not.us |
| e56a0 | 65 20 74 68 65 20 6c 6f 63 61 6c 20 60 60 2f 65 74 63 2f 68 6f 73 74 73 60 60 20 66 69 6c 65 20 | e.the.local.``/etc/hosts``.file. |
| e56c0 | 69 6e 20 6e 61 6d 65 20 72 65 73 6f 6c 75 74 69 6f 6e 2e 20 56 79 4f 53 20 44 48 43 50 20 73 65 | in.name.resolution..VyOS.DHCP.se |
| e56e0 | 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 69 73 20 66 69 6c 65 20 74 6f 20 61 64 64 20 72 | rver.will.use.this.file.to.add.r |
| e5700 | 65 73 6f 6c 76 65 72 73 20 74 6f 20 61 73 73 69 67 6e 65 64 20 61 64 64 72 65 73 73 65 73 2e 00 | esolvers.to.assigned.addresses.. |
| e5720 | 44 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 62 65 20 75 73 65 64 20 74 6f 67 65 74 68 65 | Does.not.need.to.be.used.togethe |
| e5740 | 72 20 77 69 74 68 20 70 72 6f 78 79 5f 61 72 70 2e 00 44 6f 6d 61 69 6e 00 44 6f 6d 61 69 6e 20 | r.with.proxy_arp..Domain.Domain. |
| e5760 | 47 72 6f 75 70 73 00 44 6f 6d 61 69 6e 20 4e 61 6d 65 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 28 73 | Groups.Domain.Name.Domain.name(s |
| e5780 | 29 20 66 6f 72 20 77 68 69 63 68 20 74 6f 20 6f 62 74 61 69 6e 20 63 65 72 74 69 66 69 63 61 74 | ).for.which.to.obtain.certificat |
| e57a0 | 65 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 73 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 6c 65 74 74 65 | e.Domain.names.can.include.lette |
| e57c0 | 72 73 2c 20 6e 75 6d 62 65 72 73 2c 20 68 79 70 68 65 6e 73 20 61 6e 64 20 70 65 72 69 6f 64 73 | rs,.numbers,.hyphens.and.periods |
| e57e0 | 20 77 69 74 68 20 61 20 6d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 68 20 6f 66 20 32 35 33 20 63 68 | .with.a.maximum.length.of.253.ch |
| e5800 | 61 72 61 63 74 65 72 73 2e 00 44 6f 6d 61 69 6e 20 6e 61 6d 65 73 20 74 6f 20 61 70 70 6c 79 2c | aracters..Domain.names.to.apply, |
| e5820 | 20 6d 75 6c 74 69 70 6c 65 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 73 20 63 61 6e 20 62 65 20 73 70 | .multiple.domain-names.can.be.sp |
| e5840 | 65 63 69 66 69 65 64 2e 00 44 6f 6d 61 69 6e 20 73 65 61 72 63 68 20 6f 72 64 65 72 00 44 6f 6e | ecified..Domain.search.order.Don |
| e5860 | 27 74 20 62 65 20 61 66 72 61 69 64 20 74 68 61 74 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 72 65 | 't.be.afraid.that.you.need.to.re |
| e5880 | 2d 64 6f 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 4b 65 79 20 74 72 61 6e | -do.your.configuration..Key.tran |
| e58a0 | 73 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 68 61 6e 64 6c 65 64 2c 20 61 73 20 61 6c 77 61 79 73 | sformation.is.handled,.as.always |
| e58c0 | 2c 20 62 79 20 6f 75 72 20 6d 69 67 72 61 74 69 6f 6e 20 73 63 72 69 70 74 73 2c 20 73 6f 20 74 | ,.by.our.migration.scripts,.so.t |
| e58e0 | 68 69 73 20 77 69 6c 6c 20 62 65 20 61 20 73 6d 6f 6f 74 68 20 74 72 61 6e 73 69 74 69 6f 6e 20 | his.will.be.a.smooth.transition. |
| e5900 | 66 6f 72 20 79 6f 75 21 00 44 6f 6e 27 74 20 66 6f 72 67 65 74 2c 20 74 68 65 20 43 49 44 52 20 | for.you!.Don't.forget,.the.CIDR. |
| e5920 | 64 65 63 6c 61 72 65 64 20 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e | declared.in.the.network.statemen |
| e5940 | 74 20 2a 2a 4d 55 53 54 20 65 78 69 73 74 20 69 6e 20 79 6f 75 72 20 72 6f 75 74 69 6e 67 20 74 | t.**MUST.exist.in.your.routing.t |
| e5960 | 61 62 6c 65 20 28 64 79 6e 61 6d 69 63 20 6f 72 20 73 74 61 74 69 63 29 2c 20 74 68 65 20 62 65 | able.(dynamic.or.static),.the.be |
| e5980 | 73 74 20 77 61 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 69 73 20 74 72 75 65 | st.way.to.make.sure.that.is.true |
| e59a0 | 20 69 73 20 63 72 65 61 74 69 6e 67 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 3a 2a 2a 00 44 | .is.creating.a.static.route:**.D |
| e59c0 | 6f 6e 27 74 20 66 6f 72 67 65 74 2c 20 74 68 65 20 43 49 44 52 20 64 65 63 6c 61 72 65 64 20 69 | on't.forget,.the.CIDR.declared.i |
| e59e0 | 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 20 4d 55 53 54 20 2a 2a 65 | n.the.network.statement.MUST.**e |
| e5a00 | 78 69 73 74 20 69 6e 20 79 6f 75 72 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 28 64 79 6e 61 | xist.in.your.routing.table.(dyna |
| e5a20 | 6d 69 63 20 6f 72 20 73 74 61 74 69 63 29 2c 20 74 68 65 20 62 65 73 74 20 77 61 79 20 74 6f 20 | mic.or.static),.the.best.way.to. |
| e5a40 | 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 69 73 20 74 72 75 65 20 69 73 20 63 72 65 61 74 69 | make.sure.that.is.true.is.creati |
| e5a60 | 6e 67 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 3a 2a 2a 00 44 6f 6e 27 74 20 67 65 74 20 63 | ng.a.static.route:**.Don't.get.c |
| e5a80 | 6f 6e 66 75 73 65 64 20 61 62 6f 75 74 20 74 68 65 20 75 73 65 64 20 2f 33 31 20 74 75 6e 6e 65 | onfused.about.the.used./31.tunne |
| e5aa0 | 6c 20 73 75 62 6e 65 74 2e 20 3a 72 66 63 3a 60 33 30 32 31 60 20 67 69 76 65 73 20 79 6f 75 20 | l.subnet..:rfc:`3021`.gives.you. |
| e5ac0 | 61 64 64 69 74 69 6f 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 75 73 69 6e 67 | additional.information.for.using |
| e5ae0 | 20 2f 33 31 20 73 75 62 6e 65 74 73 20 6f 6e 20 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6c | ./31.subnets.on.point-to-point.l |
| e5b00 | 69 6e 6b 73 2e 00 44 6f 77 6e 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 | inks..Download.bandwidth.limit.i |
| e5b20 | 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 2e 00 44 6f 77 6e 6c 6f 61 64 20 | n.kbit/s.for.`<user>`..Download. |
| e5b40 | 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 75 73 | bandwidth.limit.in.kbit/s.for.us |
| e5b60 | 65 72 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 44 | er.on.interface.`<interface>`..D |
| e5b80 | 6f 77 6e 6c 6f 61 64 2f 55 70 64 61 74 65 20 63 6f 6d 70 6c 65 74 65 20 62 6c 61 63 6b 6c 69 73 | ownload/Update.complete.blacklis |
| e5ba0 | 74 00 44 6f 77 6e 6c 6f 61 64 2f 55 70 64 61 74 65 20 70 61 72 74 69 61 6c 20 62 6c 61 63 6b 6c | t.Download/Update.partial.blackl |
| e5bc0 | 69 73 74 2e 00 44 72 6f 70 20 41 53 2d 4e 55 4d 42 45 52 20 66 72 6f 6d 20 74 68 65 20 42 47 50 | ist..Drop.AS-NUMBER.from.the.BGP |
| e5be0 | 20 41 53 20 70 61 74 68 2e 00 44 72 6f 70 20 54 61 69 6c 00 44 72 6f 70 20 72 61 74 65 00 44 72 | .AS.path..Drop.Tail.Drop.rate.Dr |
| e5c00 | 6f 70 70 65 64 20 70 61 63 6b 65 74 73 20 72 65 70 6f 72 74 65 64 20 6f 6e 20 44 52 4f 50 4d 4f | opped.packets.reported.on.DROPMO |
| e5c20 | 4e 20 4e 65 74 6c 69 6e 6b 20 63 68 61 6e 6e 65 6c 20 62 79 20 4c 69 6e 75 78 20 6b 65 72 6e 65 | N.Netlink.channel.by.Linux.kerne |
| e5c40 | 6c 20 61 72 65 20 65 78 70 6f 72 74 65 64 20 76 69 61 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 | l.are.exported.via.the.standard. |
| e5c60 | 73 46 6c 6f 77 20 76 35 20 65 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 72 65 70 6f 72 74 69 6e 67 | sFlow.v5.extension.for.reporting |
| e5c80 | 20 64 72 6f 70 70 65 64 20 70 61 63 6b 65 74 73 00 44 75 61 6c 2d 53 74 61 63 6b 20 49 50 76 34 | .dropped.packets.Dual-Stack.IPv4 |
| e5ca0 | 2f 49 50 76 36 20 70 72 6f 76 69 73 69 6f 6e 69 6e 67 20 77 69 74 68 20 50 72 65 66 69 78 20 44 | /IPv6.provisioning.with.Prefix.D |
| e5cc0 | 65 6c 65 67 61 74 69 6f 6e 00 44 75 65 20 74 6f 20 61 20 72 61 63 65 20 63 6f 6e 64 69 74 69 6f | elegation.Due.to.a.race.conditio |
| e5ce0 | 6e 20 74 68 61 74 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 20 66 61 69 6c 75 72 65 20 64 75 72 | n.that.can.lead.to.a.failure.dur |
| e5d00 | 69 6e 67 20 62 6f 6f 74 20 70 72 6f 63 65 73 73 2c 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 | ing.boot.process,.all.interfaces |
| e5d20 | 20 61 72 65 20 69 6e 69 74 69 61 6c 69 7a 65 64 20 62 65 66 6f 72 65 20 66 69 72 65 77 61 6c 6c | .are.initialized.before.firewall |
| e5d40 | 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 6c 65 61 64 73 20 74 6f 20 61 20 | .is.configured..This.leads.to.a. |
| e5d60 | 73 69 74 75 61 74 69 6f 6e 20 77 68 65 72 65 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 6f 70 | situation.where.the.system.is.op |
| e5d80 | 65 6e 20 74 6f 20 61 6c 6c 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 63 61 6e 20 62 65 20 63 6f | en.to.all.traffic,.and.can.be.co |
| e5da0 | 6e 73 69 64 65 72 65 64 20 61 73 20 61 20 73 65 63 75 72 69 74 79 20 72 69 73 6b 2e 00 44 75 6d | nsidered.as.a.security.risk..Dum |
| e5dc0 | 6d 79 00 44 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 00 44 75 6d 6d 79 20 69 6e 74 65 72 66 61 | my.Dummy.interface.Dummy.interfa |
| e5de0 | 63 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 | ces.can.be.used.as.interfaces.th |
| e5e00 | 61 74 20 61 6c 77 61 79 73 20 73 74 61 79 20 75 70 20 28 69 6e 20 74 68 65 20 73 61 6d 65 20 66 | at.always.stay.up.(in.the.same.f |
| e5e20 | 61 73 68 69 6f 6e 20 74 6f 20 6c 6f 6f 70 62 61 63 6b 73 20 69 6e 20 43 69 73 63 6f 20 49 4f 53 | ashion.to.loopbacks.in.Cisco.IOS |
| e5e40 | 29 2c 20 6f 72 20 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 72 70 6f 73 65 73 2e 00 44 75 70 6c | ),.or.for.testing.purposes..Dupl |
| e5e60 | 69 63 61 74 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 6e 6f 74 20 69 6e 63 6c 75 64 65 64 20 69 | icate.packets.are.not.included.i |
| e5e80 | 6e 20 74 68 65 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2c 20 61 | n.the.packet.loss.calculation,.a |
| e5ea0 | 6c 74 68 6f 75 67 68 20 74 68 65 20 72 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 6f 66 20 74 | lthough.the.round-trip.time.of.t |
| e5ec0 | 68 65 73 65 20 70 61 63 6b 65 74 73 20 69 73 20 75 73 65 64 20 69 6e 20 63 61 6c 63 75 6c 61 74 | hese.packets.is.used.in.calculat |
| e5ee0 | 69 6e 67 20 74 68 65 20 6d 69 6e 69 6d 75 6d 2f 20 61 76 65 72 61 67 65 2f 6d 61 78 69 6d 75 6d | ing.the.minimum/.average/maximum |
| e5f00 | 20 72 6f 75 6e 64 2d 74 72 69 70 20 74 69 6d 65 20 6e 75 6d 62 65 72 73 2e 00 44 75 72 69 6e 67 | .round-trip.time.numbers..During |
| e5f20 | 20 69 6e 69 74 69 61 6c 20 64 65 70 6c 6f 79 6d 65 6e 74 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 | .initial.deployment.we.recommend |
| e5f40 | 20 75 73 69 6e 67 20 74 68 65 20 73 74 61 67 69 6e 67 20 41 50 49 20 6f 66 20 4c 65 74 73 45 6e | .using.the.staging.API.of.LetsEn |
| e5f60 | 63 72 79 70 74 20 74 6f 20 70 72 65 76 65 6e 74 20 61 6e 64 20 62 6c 61 63 6b 6c 69 73 74 69 6e | crypt.to.prevent.and.blacklistin |
| e5f80 | 67 20 6f 66 20 79 6f 75 72 20 73 79 73 74 65 6d 2e 20 54 68 65 20 41 50 49 20 65 6e 64 70 6f 69 | g.of.your.system..The.API.endpoi |
| e5fa0 | 6e 74 20 69 73 20 68 74 74 70 73 3a 2f 2f 61 63 6d 65 2d 73 74 61 67 69 6e 67 2d 76 30 32 2e 61 | nt.is.https://acme-staging-v02.a |
| e5fc0 | 70 69 2e 6c 65 74 73 65 6e 63 72 79 70 74 2e 6f 72 67 2f 64 69 72 65 63 74 6f 72 79 00 44 75 72 | pi.letsencrypt.org/directory.Dur |
| e5fe0 | 69 6e 67 20 70 72 6f 66 69 6c 65 20 69 6d 70 6f 72 74 2c 20 74 68 65 20 75 73 65 72 20 69 73 20 | ing.profile.import,.the.user.is. |
| e6000 | 61 73 6b 65 64 20 74 6f 20 65 6e 74 65 72 20 69 74 73 20 49 50 53 65 63 20 63 72 65 64 65 6e 74 | asked.to.enter.its.IPSec.credent |
| e6020 | 69 61 6c 73 20 28 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 29 20 77 68 69 | ials.(username.and.password).whi |
| e6040 | 63 68 20 69 73 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 6d 6f 62 69 6c 65 2e 00 44 79 6e 61 | ch.is.stored.on.the.mobile..Dyna |
| e6060 | 6d 69 63 20 44 4e 53 00 44 79 6e 61 6d 69 63 20 47 72 6f 75 70 73 00 44 79 6e 61 6d 69 63 20 61 | mic.DNS.Dynamic.Groups.Dynamic.a |
| e6080 | 64 64 72 65 73 73 20 67 72 6f 75 70 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 62 6f 74 | ddress.group.is.supported.by.bot |
| e60a0 | 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 66 61 6d 69 6c 69 65 73 2e 20 43 6f 6d 6d 61 6e | h.IPv4.and.IPv6.families..Comman |
| e60c0 | 64 73 20 75 73 65 64 20 74 6f 20 64 65 66 69 6e 65 20 64 79 6e 61 6d 69 63 20 49 50 76 34 7c 49 | ds.used.to.define.dynamic.IPv4|I |
| e60e0 | 50 76 36 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 73 20 61 72 65 3a 00 44 79 6e 61 6d 69 63 2d | Pv6.address.groups.are:.Dynamic- |
| e6100 | 70 72 6f 74 65 63 74 69 6f 6e 00 45 41 50 6f 4c 20 63 6f 6d 65 73 20 77 69 74 68 20 61 6e 20 69 | protection.EAPoL.comes.with.an.i |
| e6120 | 64 65 6e 74 69 66 79 20 6f 70 74 69 6f 6e 2e 20 57 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 | dentify.option..We.automatically |
| e6140 | 20 75 73 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 61 | .use.the.interface.MAC.address.a |
| e6160 | 73 20 69 64 65 6e 74 69 74 79 20 70 61 72 61 6d 65 74 65 72 2e 00 45 53 50 20 28 45 6e 63 61 70 | s.identity.parameter..ESP.(Encap |
| e6180 | 73 75 6c 61 74 69 6e 67 20 53 65 63 75 72 69 74 79 20 50 61 79 6c 6f 61 64 29 20 41 74 74 72 69 | sulating.Security.Payload).Attri |
| e61a0 | 62 75 74 65 73 00 45 53 50 20 50 68 61 73 65 3a 00 45 53 50 20 69 73 20 75 73 65 64 20 74 6f 20 | butes.ESP.Phase:.ESP.is.used.to. |
| e61c0 | 70 72 6f 76 69 64 65 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 2c 20 64 61 74 61 20 6f 72 | provide.confidentiality,.data.or |
| e61e0 | 69 67 69 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 6c | igin.authentication,.connectionl |
| e6200 | 65 73 73 20 69 6e 74 65 67 72 69 74 79 2c 20 61 6e 20 61 6e 74 69 2d 72 65 70 6c 61 79 20 73 65 | ess.integrity,.an.anti-replay.se |
| e6220 | 72 76 69 63 65 20 28 61 20 66 6f 72 6d 20 6f 66 20 70 61 72 74 69 61 6c 20 73 65 71 75 65 6e 63 | rvice.(a.form.of.partial.sequenc |
| e6240 | 65 20 69 6e 74 65 67 72 69 74 79 29 2c 20 61 6e 64 20 6c 69 6d 69 74 65 64 20 74 72 61 66 66 69 | e.integrity),.and.limited.traffi |
| e6260 | 63 20 66 6c 6f 77 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 2e 20 68 74 74 70 73 3a 2f 2f | c.flow.confidentiality..https:// |
| e6280 | 64 61 74 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 68 74 6d 6c 2f 72 66 | datatracker.ietf.org/doc/html/rf |
| e62a0 | 63 34 33 30 33 00 45 56 50 4e 20 4d 75 6c 74 69 68 6f 6d 69 6e 67 00 45 56 50 4e 2d 4d 48 20 69 | c4303.EVPN.Multihoming.EVPN-MH.i |
| e62c0 | 73 20 69 6e 74 65 6e 64 65 64 20 61 73 20 61 20 72 65 70 6c 61 63 65 6d 65 6e 74 20 66 6f 72 20 | s.intended.as.a.replacement.for. |
| e62e0 | 4d 4c 41 47 20 6f 72 20 41 6e 79 63 61 73 74 20 56 54 45 50 73 2e 20 49 6e 20 6d 75 6c 74 69 68 | MLAG.or.Anycast.VTEPs..In.multih |
| e6300 | 6f 6d 69 6e 67 20 65 61 63 68 20 50 45 20 68 61 73 20 61 6e 20 75 6e 69 71 75 65 20 56 54 45 50 | oming.each.PE.has.an.unique.VTEP |
| e6320 | 20 61 64 64 72 65 73 73 20 77 68 69 63 68 20 72 65 71 75 69 72 65 73 20 74 68 65 20 69 6e 74 72 | .address.which.requires.the.intr |
| e6340 | 6f 64 75 63 74 69 6f 6e 20 6f 66 20 61 20 6e 65 77 20 64 61 74 61 70 6c 61 6e 65 20 63 6f 6e 73 | oduction.of.a.new.dataplane.cons |
| e6360 | 74 72 75 63 74 2c 20 4d 41 43 2d 45 43 4d 50 2e 20 48 65 72 65 20 61 20 4d 41 43 2f 46 44 42 20 | truct,.MAC-ECMP..Here.a.MAC/FDB. |
| e6380 | 65 6e 74 72 79 20 63 61 6e 20 70 6f 69 6e 74 20 74 6f 20 61 20 6c 69 73 74 20 6f 66 20 72 65 6d | entry.can.point.to.a.list.of.rem |
| e63a0 | 6f 74 65 20 50 45 73 2f 56 54 45 50 73 2e 00 45 61 63 68 20 3a 61 62 62 72 3a 60 41 53 20 28 41 | ote.PEs/VTEPs..Each.:abbr:`AS.(A |
| e63c0 | 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 29 60 20 68 61 73 20 61 6e 20 69 64 65 6e 74 69 | utonomous.System)`.has.an.identi |
| e63e0 | 66 79 69 6e 67 20 6e 75 6d 62 65 72 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 69 74 20 | fying.number.associated.with.it. |
| e6400 | 63 61 6c 6c 65 64 20 61 6e 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 | called.an.:abbr:`ASN.(Autonomous |
| e6420 | 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 2e 20 54 68 69 73 20 69 73 20 61 20 74 77 6f 20 | .System.Number)`..This.is.a.two. |
| e6440 | 6f 63 74 65 74 20 76 61 6c 75 65 20 72 61 6e 67 69 6e 67 20 69 6e 20 76 61 6c 75 65 20 66 72 6f | octet.value.ranging.in.value.fro |
| e6460 | 6d 20 31 20 74 6f 20 36 35 35 33 35 2e 20 54 68 65 20 41 53 20 6e 75 6d 62 65 72 73 20 36 34 35 | m.1.to.65535..The.AS.numbers.645 |
| e6480 | 31 32 20 74 68 72 6f 75 67 68 20 36 35 35 33 35 20 61 72 65 20 64 65 66 69 6e 65 64 20 61 73 20 | 12.through.65535.are.defined.as. |
| e64a0 | 70 72 69 76 61 74 65 20 41 53 20 6e 75 6d 62 65 72 73 2e 20 50 72 69 76 61 74 65 20 41 53 20 6e | private.AS.numbers..Private.AS.n |
| e64c0 | 75 6d 62 65 72 73 20 6d 75 73 74 20 6e 6f 74 20 62 65 20 61 64 76 65 72 74 69 73 65 64 20 6f 6e | umbers.must.not.be.advertised.on |
| e64e0 | 20 74 68 65 20 67 6c 6f 62 61 6c 20 49 6e 74 65 72 6e 65 74 2e 20 54 68 65 20 32 2d 62 79 74 65 | .the.global.Internet..The.2-byte |
| e6500 | 20 41 53 20 6e 75 6d 62 65 72 20 72 61 6e 67 65 20 68 61 73 20 62 65 65 6e 20 65 78 68 61 75 73 | .AS.number.range.has.been.exhaus |
| e6520 | 74 65 64 2e 20 34 2d 62 79 74 65 20 41 53 20 6e 75 6d 62 65 72 73 20 61 72 65 20 73 70 65 63 69 | ted..4-byte.AS.numbers.are.speci |
| e6540 | 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 36 37 39 33 60 2c 20 61 6e 64 20 70 72 6f 76 69 64 65 | fied.in.:rfc:`6793`,.and.provide |
| e6560 | 20 61 20 70 6f 6f 6c 20 6f 66 20 34 32 39 34 39 36 37 32 39 36 20 41 53 20 6e 75 6d 62 65 72 73 | .a.pool.of.4294967296.AS.numbers |
| e6580 | 2e 00 45 61 63 68 20 4e 65 74 66 69 6c 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 75 | ..Each.Netfilter.connection.is.u |
| e65a0 | 6e 69 71 75 65 6c 79 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 61 20 28 6c 61 79 65 72 2d 33 | niquely.identified.by.a.(layer-3 |
| e65c0 | 20 70 72 6f 74 6f 63 6f 6c 2c 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 | .protocol,.source.address,.desti |
| e65e0 | 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2c 20 6c 61 79 65 72 2d 34 20 70 72 6f 74 6f 63 6f 6c | nation.address,.layer-4.protocol |
| e6600 | 2c 20 6c 61 79 65 72 2d 34 20 6b 65 79 29 20 74 75 70 6c 65 2e 20 54 68 65 20 6c 61 79 65 72 2d | ,.layer-4.key).tuple..The.layer- |
| e6620 | 34 20 6b 65 79 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 74 72 61 6e 73 70 6f 72 74 20 70 | 4.key.depends.on.the.transport.p |
| e6640 | 72 6f 74 6f 63 6f 6c 3b 20 66 6f 72 20 54 43 50 2f 55 44 50 20 69 74 20 69 73 20 74 68 65 20 70 | rotocol;.for.TCP/UDP.it.is.the.p |
| e6660 | 6f 72 74 20 6e 75 6d 62 65 72 73 2c 20 66 6f 72 20 74 75 6e 6e 65 6c 73 20 69 74 20 63 61 6e 20 | ort.numbers,.for.tunnels.it.can. |
| e6680 | 62 65 20 74 68 65 69 72 20 74 75 6e 6e 65 6c 20 49 44 2c 20 62 75 74 20 6f 74 68 65 72 77 69 73 | be.their.tunnel.ID,.but.otherwis |
| e66a0 | 65 20 69 73 20 6a 75 73 74 20 7a 65 72 6f 2c 20 61 73 20 69 66 20 69 74 20 77 65 72 65 20 6e 6f | e.is.just.zero,.as.if.it.were.no |
| e66c0 | 74 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 75 70 6c 65 2e 20 54 6f 20 62 65 20 61 62 6c 65 20 | t.part.of.the.tuple..To.be.able. |
| e66e0 | 74 6f 20 69 6e 73 70 65 63 74 20 74 68 65 20 54 43 50 20 70 6f 72 74 20 69 6e 20 61 6c 6c 20 63 | to.inspect.the.TCP.port.in.all.c |
| e6700 | 61 73 65 73 2c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 6d 61 6e 64 61 74 6f 72 69 6c | ases,.packets.will.be.mandatoril |
| e6720 | 79 20 64 65 66 72 61 67 6d 65 6e 74 65 64 2e 00 45 61 63 68 20 56 58 4c 41 4e 20 73 65 67 6d 65 | y.defragmented..Each.VXLAN.segme |
| e6740 | 6e 74 20 69 73 20 69 64 65 6e 74 69 66 69 65 64 20 74 68 72 6f 75 67 68 20 61 20 32 34 2d 62 69 | nt.is.identified.through.a.24-bi |
| e6760 | 74 20 73 65 67 6d 65 6e 74 20 49 44 2c 20 74 65 72 6d 65 64 20 74 68 65 20 3a 61 62 62 72 3a 60 | t.segment.ID,.termed.the.:abbr:` |
| e6780 | 56 4e 49 20 28 56 58 4c 41 4e 20 4e 65 74 77 6f 72 6b 20 49 64 65 6e 74 69 66 69 65 72 20 28 6f | VNI.(VXLAN.Network.Identifier.(o |
| e67a0 | 72 20 56 58 4c 41 4e 20 53 65 67 6d 65 6e 74 20 49 44 29 29 60 2c 20 54 68 69 73 20 61 6c 6c 6f | r.VXLAN.Segment.ID))`,.This.allo |
| e67c0 | 77 73 20 75 70 20 74 6f 20 31 36 4d 20 56 58 4c 41 4e 20 73 65 67 6d 65 6e 74 73 20 74 6f 20 63 | ws.up.to.16M.VXLAN.segments.to.c |
| e67e0 | 6f 65 78 69 73 74 20 77 69 74 68 69 6e 20 74 68 65 20 73 61 6d 65 20 61 64 6d 69 6e 69 73 74 72 | oexist.within.the.same.administr |
| e6800 | 61 74 69 76 65 20 64 6f 6d 61 69 6e 2e 00 45 61 63 68 20 62 72 69 64 67 65 20 68 61 73 20 61 20 | ative.domain..Each.bridge.has.a. |
| e6820 | 72 65 6c 61 74 69 76 65 20 70 72 69 6f 72 69 74 79 20 61 6e 64 20 63 6f 73 74 2e 20 45 61 63 68 | relative.priority.and.cost..Each |
| e6840 | 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 | .interface.is.associated.with.a. |
| e6860 | 70 6f 72 74 20 28 6e 75 6d 62 65 72 29 20 69 6e 20 74 68 65 20 53 54 50 20 63 6f 64 65 2e 20 45 | port.(number).in.the.STP.code..E |
| e6880 | 61 63 68 20 68 61 73 20 61 20 70 72 69 6f 72 69 74 79 20 61 6e 64 20 61 20 63 6f 73 74 2c 20 74 | ach.has.a.priority.and.a.cost,.t |
| e68a0 | 68 61 74 20 69 73 20 75 73 65 64 20 74 6f 20 64 65 63 69 64 65 20 77 68 69 63 68 20 69 73 20 74 | hat.is.used.to.decide.which.is.t |
| e68c0 | 68 65 20 73 68 6f 72 74 65 73 74 20 70 61 74 68 20 74 6f 20 66 6f 72 77 61 72 64 20 61 20 70 61 | he.shortest.path.to.forward.a.pa |
| e68e0 | 63 6b 65 74 2e 20 54 68 65 20 6c 6f 77 65 73 74 20 63 6f 73 74 20 70 61 74 68 20 69 73 20 61 6c | cket..The.lowest.cost.path.is.al |
| e6900 | 77 61 79 73 20 75 73 65 64 20 75 6e 6c 65 73 73 20 74 68 65 20 6f 74 68 65 72 20 70 61 74 68 20 | ways.used.unless.the.other.path. |
| e6920 | 69 73 20 64 6f 77 6e 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 62 72 | is.down..If.you.have.multiple.br |
| e6940 | 69 64 67 65 73 20 61 6e 64 20 69 6e 74 65 72 66 61 63 65 73 20 74 68 65 6e 20 79 6f 75 20 6d 61 | idges.and.interfaces.then.you.ma |
| e6960 | 79 20 6e 65 65 64 20 74 6f 20 61 64 6a 75 73 74 20 74 68 65 20 70 72 69 6f 72 69 74 69 65 73 20 | y.need.to.adjust.the.priorities. |
| e6980 | 74 6f 20 61 63 68 69 65 76 65 20 6f 70 74 69 6d 75 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 00 | to.achieve.optimum.performance.. |
| e69a0 | 45 61 63 68 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 20 69 6e 73 74 61 6e 63 65 20 63 61 | Each.broadcast.relay.instance.ca |
| e69c0 | 6e 20 62 65 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 64 69 73 61 62 6c 65 64 20 77 69 74 68 6f | n.be.individually.disabled.witho |
| e69e0 | 75 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6e 6f 64 65 20 | ut.deleting.the.configured.node. |
| e6a00 | 62 79 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 | by.using.the.following.command:. |
| e6a20 | 45 61 63 68 20 63 6c 61 73 73 20 63 61 6e 20 68 61 76 65 20 61 20 67 75 61 72 61 6e 74 65 65 64 | Each.class.can.have.a.guaranteed |
| e6a40 | 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 6f 74 61 6c 20 62 61 6e 64 77 69 64 74 68 20 64 65 66 | .part.of.the.total.bandwidth.def |
| e6a60 | 69 6e 65 64 20 66 6f 72 20 74 68 65 20 77 68 6f 6c 65 20 70 6f 6c 69 63 79 2c 20 73 6f 20 61 6c | ined.for.the.whole.policy,.so.al |
| e6a80 | 6c 20 74 68 6f 73 65 20 73 68 61 72 65 73 20 74 6f 67 65 74 68 65 72 20 73 68 6f 75 6c 64 20 6e | l.those.shares.together.should.n |
| e6aa0 | 6f 74 20 62 65 20 68 69 67 68 65 72 20 74 68 61 6e 20 74 68 65 20 70 6f 6c 69 63 79 27 73 20 77 | ot.be.higher.than.the.policy's.w |
| e6ac0 | 68 6f 6c 65 20 62 61 6e 64 77 69 64 74 68 2e 00 45 61 63 68 20 63 6c 61 73 73 20 69 73 20 61 73 | hole.bandwidth..Each.class.is.as |
| e6ae0 | 73 69 67 6e 65 64 20 61 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 28 74 68 65 20 6e 75 | signed.a.deficit.counter.(the.nu |
| e6b00 | 6d 62 65 72 20 6f 66 20 62 79 74 65 73 20 74 68 61 74 20 61 20 66 6c 6f 77 20 69 73 20 61 6c 6c | mber.of.bytes.that.a.flow.is.all |
| e6b20 | 6f 77 65 64 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 77 68 65 6e 20 69 74 20 69 73 20 69 74 73 20 | owed.to.transmit.when.it.is.its. |
| e6b40 | 74 75 72 6e 29 20 69 6e 69 74 69 61 6c 69 7a 65 64 20 74 6f 20 71 75 61 6e 74 75 6d 2e 20 51 75 | turn).initialized.to.quantum..Qu |
| e6b60 | 61 6e 74 75 6d 20 69 73 20 61 20 70 61 72 61 6d 65 74 65 72 20 79 6f 75 20 63 6f 6e 66 69 67 75 | antum.is.a.parameter.you.configu |
| e6b80 | 72 65 20 77 68 69 63 68 20 61 63 74 73 20 6c 69 6b 65 20 61 20 63 72 65 64 69 74 20 6f 66 20 66 | re.which.acts.like.a.credit.of.f |
| e6ba0 | 69 78 20 62 79 74 65 73 20 74 68 65 20 63 6f 75 6e 74 65 72 20 72 65 63 65 69 76 65 73 20 6f 6e | ix.bytes.the.counter.receives.on |
| e6bc0 | 20 65 61 63 68 20 72 6f 75 6e 64 2e 20 54 68 65 6e 20 74 68 65 20 52 6f 75 6e 64 2d 52 6f 62 69 | .each.round..Then.the.Round-Robi |
| e6be0 | 6e 20 70 6f 6c 69 63 79 20 73 74 61 72 74 73 20 6d 6f 76 69 6e 67 20 69 74 73 20 52 6f 75 6e 64 | n.policy.starts.moving.its.Round |
| e6c00 | 20 52 6f 62 69 6e 20 70 6f 69 6e 74 65 72 20 74 68 72 6f 75 67 68 20 74 68 65 20 71 75 65 75 65 | .Robin.pointer.through.the.queue |
| e6c20 | 73 2e 20 49 66 20 74 68 65 20 64 65 66 69 63 69 74 20 63 6f 75 6e 74 65 72 20 69 73 20 67 72 65 | s..If.the.deficit.counter.is.gre |
| e6c40 | 61 74 65 72 20 74 68 61 6e 20 74 68 65 20 70 61 63 6b 65 74 27 73 20 73 69 7a 65 20 61 74 20 74 | ater.than.the.packet's.size.at.t |
| e6c60 | 68 65 20 68 65 61 64 20 6f 66 20 74 68 65 20 71 75 65 75 65 2c 20 74 68 69 73 20 70 61 63 6b 65 | he.head.of.the.queue,.this.packe |
| e6c80 | 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 61 6e 64 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 | t.will.be.sent.and.the.value.of. |
| e6ca0 | 74 68 65 20 63 6f 75 6e 74 65 72 20 77 69 6c 6c 20 62 65 20 64 65 63 72 65 6d 65 6e 74 65 64 20 | the.counter.will.be.decremented. |
| e6cc0 | 62 79 20 74 68 65 20 70 61 63 6b 65 74 20 73 69 7a 65 2e 20 54 68 65 6e 2c 20 74 68 65 20 73 69 | by.the.packet.size..Then,.the.si |
| e6ce0 | 7a 65 20 6f 66 20 74 68 65 20 6e 65 78 74 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 63 6f | ze.of.the.next.packet.will.be.co |
| e6d00 | 6d 70 61 72 65 64 20 74 6f 20 74 68 65 20 63 6f 75 6e 74 65 72 20 76 61 6c 75 65 20 61 67 61 69 | mpared.to.the.counter.value.agai |
| e6d20 | 6e 2c 20 72 65 70 65 61 74 69 6e 67 20 74 68 65 20 70 72 6f 63 65 73 73 2e 20 4f 6e 63 65 20 74 | n,.repeating.the.process..Once.t |
| e6d40 | 68 65 20 71 75 65 75 65 20 69 73 20 65 6d 70 74 79 20 6f 72 20 74 68 65 20 76 61 6c 75 65 20 6f | he.queue.is.empty.or.the.value.o |
| e6d60 | 66 20 74 68 65 20 63 6f 75 6e 74 65 72 20 69 73 20 69 6e 73 75 66 66 69 63 69 65 6e 74 2c 20 74 | f.the.counter.is.insufficient,.t |
| e6d80 | 68 65 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 69 6e 74 65 72 20 77 69 6c 6c 20 6d 6f 76 65 | he.Round-Robin.pointer.will.move |
| e6da0 | 20 74 6f 20 74 68 65 20 6e 65 78 74 20 71 75 65 75 65 2e 20 49 66 20 74 68 65 20 71 75 65 75 65 | .to.the.next.queue..If.the.queue |
| e6dc0 | 20 69 73 20 65 6d 70 74 79 2c 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 64 65 66 69 | .is.empty,.the.value.of.the.defi |
| e6de0 | 63 69 74 20 63 6f 75 6e 74 65 72 20 69 73 20 72 65 73 65 74 20 74 6f 20 30 2e 00 45 61 63 68 20 | cit.counter.is.reset.to.0..Each. |
| e6e00 | 64 79 6e 61 6d 69 63 20 4e 48 53 20 77 69 6c 6c 20 67 65 74 20 61 20 70 65 65 72 20 65 6e 74 72 | dynamic.NHS.will.get.a.peer.entr |
| e6e20 | 79 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6e 65 74 77 6f 72 6b 20 61 64 | y.with.the.configured.network.ad |
| e6e40 | 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 64 69 73 63 6f 76 65 72 65 64 20 4e 42 4d 41 20 61 64 | dress.and.the.discovered.NBMA.ad |
| e6e60 | 64 72 65 73 73 2e 00 45 61 63 68 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 69 73 20 63 6f 6e 66 | dress..Each.health.check.is.conf |
| e6e80 | 69 67 75 72 65 64 20 69 6e 20 69 74 73 20 6f 77 6e 20 74 65 73 74 2c 20 74 65 73 74 73 20 61 72 | igured.in.its.own.test,.tests.ar |
| e6ea0 | 65 20 6e 75 6d 62 65 72 65 64 20 61 6e 64 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 6e 75 6d 65 | e.numbered.and.processed.in.nume |
| e6ec0 | 72 69 63 20 6f 72 64 65 72 2e 20 46 6f 72 20 6d 75 6c 74 69 20 74 61 72 67 65 74 20 68 65 61 6c | ric.order..For.multi.target.heal |
| e6ee0 | 74 68 20 63 68 65 63 6b 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 74 65 73 74 73 20 63 61 6e 20 62 | th.checking.multiple.tests.can.b |
| e6f00 | 65 20 64 65 66 69 6e 65 64 3a 00 45 61 63 68 20 69 6e 64 69 76 69 64 75 61 6c 20 63 6f 6e 66 69 | e.defined:.Each.individual.confi |
| e6f20 | 67 75 72 65 64 20 63 6f 6e 73 6f 6c 65 2d 73 65 72 76 65 72 20 64 65 76 69 63 65 20 63 61 6e 20 | gured.console-server.device.can. |
| e6f40 | 62 65 20 64 69 72 65 63 74 6c 79 20 65 78 70 6f 73 65 64 20 74 6f 20 74 68 65 20 6f 75 74 73 69 | be.directly.exposed.to.the.outsi |
| e6f60 | 64 65 20 77 6f 72 6c 64 2e 20 41 20 75 73 65 72 20 63 61 6e 20 64 69 72 65 63 74 6c 79 20 63 6f | de.world..A.user.can.directly.co |
| e6f80 | 6e 6e 65 63 74 20 76 69 61 20 53 53 48 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | nnect.via.SSH.to.the.configured. |
| e6fa0 | 70 6f 72 74 2e 00 45 61 63 68 20 6e 6f 64 65 20 28 48 75 62 20 61 6e 64 20 53 70 6f 6b 65 29 20 | port..Each.node.(Hub.and.Spoke). |
| e6fc0 | 75 73 65 73 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 | uses.an.IP.address.from.the.netw |
| e6fe0 | 6f 72 6b 20 31 37 32 2e 31 36 2e 32 35 33 2e 31 32 38 2f 32 39 2e 00 45 61 63 68 20 6f 66 20 74 | ork.172.16.253.128/29..Each.of.t |
| e7000 | 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 61 70 70 | he.install.command.should.be.app |
| e7020 | 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f | lied.to.the.configuration.and.co |
| e7040 | 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 73 69 6e 67 20 75 6e 64 65 72 20 74 68 65 20 6f 70 | mmited.before.using.under.the.op |
| e7060 | 65 6e 63 6f 6e 6e 65 63 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 45 61 63 68 20 73 69 | enconnect.configuration:.Each.si |
| e7080 | 74 65 2d 74 6f 2d 73 69 74 65 20 70 65 65 72 20 68 61 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 | te-to-site.peer.has.the.next.opt |
| e70a0 | 69 6f 6e 73 3a 00 45 61 63 68 20 73 75 62 73 63 72 69 62 65 72 20 77 69 6c 6c 20 62 65 20 61 6c | ions:.Each.subscriber.will.be.al |
| e70c0 | 6c 6f 63 61 74 65 64 20 61 20 6d 61 78 69 6d 75 6d 20 6f 66 20 32 30 30 30 20 70 6f 72 74 73 20 | located.a.maximum.of.2000.ports. |
| e70e0 | 66 72 6f 6d 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 70 6f 6f 6c 2e 00 45 65 6e 61 62 6c 65 73 | from.the.external.pool..Eenables |
| e7100 | 20 74 68 65 20 47 65 6e 65 72 69 63 20 50 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 20 | .the.Generic.Protocol.extension. |
| e7120 | 28 56 58 4c 41 4e 2d 47 50 45 29 2e 20 43 75 72 72 65 6e 74 6c 79 2c 20 74 68 69 73 20 69 73 20 | (VXLAN-GPE)..Currently,.this.is. |
| e7140 | 6f 6e 6c 79 20 73 75 70 70 6f 72 74 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 74 68 65 | only.supported.together.with.the |
| e7160 | 20 65 78 74 65 72 6e 61 6c 20 6b 65 79 77 6f 72 64 2e 00 45 6d 61 69 6c 20 61 64 64 72 65 73 73 | .external.keyword..Email.address |
| e7180 | 20 74 6f 20 61 73 73 6f 63 69 61 74 65 20 77 69 74 68 20 63 65 72 74 69 66 69 63 61 74 65 00 45 | .to.associate.with.certificate.E |
| e71a0 | 6d 61 69 6c 20 75 73 65 64 20 66 6f 72 20 72 65 67 69 73 74 72 61 74 69 6f 6e 20 61 6e 64 20 72 | mail.used.for.registration.and.r |
| e71c0 | 65 63 6f 76 65 72 79 20 63 6f 6e 74 61 63 74 2e 00 45 6d 62 65 64 64 69 6e 67 20 6f 6e 65 20 70 | ecovery.contact..Embedding.one.p |
| e71e0 | 6f 6c 69 63 79 20 69 6e 74 6f 20 61 6e 6f 74 68 65 72 20 6f 6e 65 00 45 6d 65 72 67 65 6e 63 79 | olicy.into.another.one.Emergency |
| e7200 | 00 45 6e 61 62 6c 65 20 3a 61 62 62 72 3a 60 42 4d 50 20 28 42 47 50 20 4d 6f 6e 69 74 6f 72 69 | .Enable.:abbr:`BMP.(BGP.Monitori |
| e7220 | 6e 67 20 50 72 6f 74 6f 63 6f 6c 29 60 20 73 75 70 70 6f 72 74 00 45 6e 61 62 6c 65 20 42 46 44 | ng.Protocol)`.support.Enable.BFD |
| e7240 | 20 66 6f 72 20 49 53 49 53 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e 61 62 6c 65 | .for.ISIS.on.an.interface.Enable |
| e7260 | 20 42 46 44 20 66 6f 72 20 4f 53 50 46 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 45 6e | .BFD.for.OSPF.on.an.interface.En |
| e7280 | 61 62 6c 65 20 42 46 44 20 66 6f 72 20 4f 53 50 46 76 33 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 | able.BFD.for.OSPFv3.on.an.interf |
| e72a0 | 61 63 65 00 45 6e 61 62 6c 65 20 42 46 44 20 69 6e 20 42 47 50 00 45 6e 61 62 6c 65 20 42 46 44 | ace.Enable.BFD.in.BGP.Enable.BFD |
| e72c0 | 20 69 6e 20 49 53 49 53 00 45 6e 61 62 6c 65 20 42 46 44 20 69 6e 20 4f 53 50 46 00 45 6e 61 62 | .in.ISIS.Enable.BFD.in.OSPF.Enab |
| e72e0 | 6c 65 20 42 46 44 20 6f 6e 20 61 20 42 47 50 20 70 65 65 72 20 67 72 6f 75 70 00 45 6e 61 62 6c | le.BFD.on.a.BGP.peer.group.Enabl |
| e7300 | 65 20 42 46 44 20 6f 6e 20 61 20 73 69 6e 67 6c 65 20 42 47 50 20 6e 65 69 67 68 62 6f 72 00 45 | e.BFD.on.a.single.BGP.neighbor.E |
| e7320 | 6e 61 62 6c 65 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | nable.DHCP.failover.configuratio |
| e7340 | 6e 20 66 6f 72 20 74 68 69 73 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 2e 00 45 6e 61 62 6c 65 20 | n.for.this.address.pool..Enable. |
| e7360 | 47 72 61 70 68 51 4c 20 53 63 68 65 6d 61 20 69 6e 74 72 6f 73 70 65 63 74 69 6f 6e 2e 00 45 6e | GraphQL.Schema.introspection..En |
| e7380 | 61 62 6c 65 20 48 54 2d 64 65 6c 61 79 65 64 20 42 6c 6f 63 6b 20 41 63 6b 20 60 60 5b 44 45 4c | able.HT-delayed.Block.Ack.``[DEL |
| e73a0 | 41 59 45 44 2d 42 41 5d 60 60 00 45 6e 61 62 6c 65 20 49 43 4d 50 20 52 6f 75 74 65 72 20 44 69 | AYED-BA]``.Enable.ICMP.Router.Di |
| e73c0 | 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 73 75 70 70 6f 72 74 00 45 6e 61 62 6c 65 20 | scovery.Protocol.support.Enable. |
| e73e0 | 49 47 4d 50 20 61 6e 64 20 4d 4c 44 20 71 75 65 72 69 65 72 2e 00 45 6e 61 62 6c 65 20 49 47 4d | IGMP.and.MLD.querier..Enable.IGM |
| e7400 | 50 20 61 6e 64 20 4d 4c 44 20 73 6e 6f 6f 70 69 6e 67 2e 00 45 6e 61 62 6c 65 20 49 50 20 66 6f | P.and.MLD.snooping..Enable.IP.fo |
| e7420 | 72 77 61 72 64 69 6e 67 20 6f 6e 20 63 6c 69 65 6e 74 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 00 | rwarding.on.client.Enable.IS-IS. |
| e7440 | 45 6e 61 62 6c 65 20 49 53 2d 49 53 20 61 6e 64 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f | Enable.IS-IS.and.IGP-LDP.synchro |
| e7460 | 6e 69 7a 61 74 69 6f 6e 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 20 61 6e 64 20 72 65 64 69 73 74 | nization.Enable.IS-IS.and.redist |
| e7480 | 72 69 62 75 74 65 20 72 6f 75 74 65 73 20 6e 6f 74 20 6e 61 74 69 76 65 6c 79 20 69 6e 20 49 53 | ribute.routes.not.natively.in.IS |
| e74a0 | 2d 49 53 00 45 6e 61 62 6c 65 20 49 53 2d 49 53 20 77 69 74 68 20 53 65 67 6d 65 6e 74 20 52 6f | -IS.Enable.IS-IS.with.Segment.Ro |
| e74c0 | 75 74 69 6e 67 20 28 45 78 70 65 72 69 6d 65 6e 74 61 6c 29 00 45 6e 61 62 6c 65 20 4c 2d 53 49 | uting.(Experimental).Enable.L-SI |
| e74e0 | 47 20 54 58 4f 50 20 70 72 6f 74 65 63 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 74 79 00 45 6e 61 | G.TXOP.protection.capability.Ena |
| e7500 | 62 6c 65 20 4c 44 50 43 20 28 4c 6f 77 20 44 65 6e 73 69 74 79 20 50 61 72 69 74 79 20 43 68 65 | ble.LDPC.(Low.Density.Parity.Che |
| e7520 | 63 6b 29 20 63 6f 64 69 6e 67 20 63 61 70 61 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 44 50 | ck).coding.capability.Enable.LDP |
| e7540 | 43 20 63 6f 64 69 6e 67 20 63 61 70 61 62 69 6c 69 74 79 00 45 6e 61 62 6c 65 20 4c 4c 44 50 20 | C.coding.capability.Enable.LLDP. |
| e7560 | 73 65 72 76 69 63 65 00 45 6e 61 62 6c 65 20 4f 53 50 46 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 | service.Enable.OSPF.Enable.OSPF. |
| e7580 | 61 6e 64 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 3a 00 45 6e 61 | and.IGP-LDP.synchronization:.Ena |
| e75a0 | 62 6c 65 20 4f 53 50 46 20 77 69 74 68 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 28 45 | ble.OSPF.with.Segment.Routing.(E |
| e75c0 | 78 70 65 72 69 6d 65 6e 74 61 6c 29 3a 00 45 6e 61 62 6c 65 20 4f 53 50 46 20 77 69 74 68 20 72 | xperimental):.Enable.OSPF.with.r |
| e75e0 | 6f 75 74 65 20 72 65 64 69 73 74 72 69 62 75 74 69 6f 6e 20 6f 66 20 74 68 65 20 6c 6f 6f 70 62 | oute.redistribution.of.the.loopb |
| e7600 | 61 63 6b 20 61 6e 64 20 64 65 66 61 75 6c 74 20 6f 72 69 67 69 6e 61 74 65 3a 00 45 6e 61 62 6c | ack.and.default.originate:.Enabl |
| e7620 | 65 20 4f 54 50 20 32 46 41 20 66 6f 72 20 75 73 65 72 20 60 75 73 65 72 6e 61 6d 65 60 20 77 69 | e.OTP.2FA.for.user.`username`.wi |
| e7640 | 74 68 20 64 65 66 61 75 6c 74 20 73 65 74 74 69 6e 67 73 2c 20 75 73 69 6e 67 20 74 68 65 20 42 | th.default.settings,.using.the.B |
| e7660 | 41 53 45 33 32 20 65 6e 63 6f 64 65 64 20 32 46 41 2f 4d 46 41 20 6b 65 79 20 73 70 65 63 69 66 | ASE32.encoded.2FA/MFA.key.specif |
| e7680 | 69 65 64 20 62 79 20 60 3c 6b 65 79 3e 60 2e 00 45 6e 61 62 6c 65 20 4f 70 65 6e 46 61 62 72 69 | ied.by.`<key>`..Enable.OpenFabri |
| e76a0 | 63 00 45 6e 61 62 6c 65 20 4f 70 65 6e 56 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 6c 20 4f 66 | c.Enable.OpenVPN.Data.Channel.Of |
| e76c0 | 66 6c 6f 61 64 20 66 65 61 74 75 72 65 20 62 79 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 61 70 70 | fload.feature.by.loading.the.app |
| e76e0 | 72 6f 70 72 69 61 74 65 20 6b 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 2e 00 45 6e 61 62 6c 65 20 50 | ropriate.kernel.module..Enable.P |
| e7700 | 52 45 46 36 34 20 6f 70 74 69 6f 6e 20 61 73 20 6f 75 74 6c 69 6e 65 64 20 69 6e 20 3a 72 66 63 | REF64.option.as.outlined.in.:rfc |
| e7720 | 3a 60 38 37 38 31 60 2e 00 45 6e 61 62 6c 65 20 52 45 53 54 20 41 50 49 00 45 6e 61 62 6c 65 20 | :`8781`..Enable.REST.API.Enable. |
| e7740 | 53 4e 4d 50 00 45 6e 61 62 6c 65 20 53 4e 4d 50 20 71 75 65 72 69 65 73 20 6f 66 20 74 68 65 20 | SNMP.Enable.SNMP.queries.of.the. |
| e7760 | 4c 4c 44 50 20 64 61 74 61 62 61 73 65 00 45 6e 61 62 6c 65 20 53 4e 4d 50 20 73 75 70 70 6f 72 | LLDP.database.Enable.SNMP.suppor |
| e7780 | 74 20 66 6f 72 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 72 6f 75 74 69 6e 67 20 64 61 65 6d | t.for.an.individual.routing.daem |
| e77a0 | 6f 6e 2e 00 45 6e 61 62 6c 65 20 53 54 50 00 45 6e 61 62 6c 65 20 54 46 54 50 20 73 65 72 76 69 | on..Enable.STP.Enable.TFTP.servi |
| e77c0 | 63 65 20 62 79 20 73 70 65 63 69 66 79 69 6e 67 20 74 68 65 20 60 3c 64 69 72 65 63 74 6f 72 79 | ce.by.specifying.the.`<directory |
| e77e0 | 3e 60 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 74 6f 20 73 65 72 76 65 20 66 | >`.which.will.be.used.to.serve.f |
| e7800 | 69 6c 65 73 2e 00 45 6e 61 62 6c 65 20 56 48 54 20 54 58 4f 50 20 50 6f 77 65 72 20 53 61 76 65 | iles..Enable.VHT.TXOP.Power.Save |
| e7820 | 20 4d 6f 64 65 00 45 6e 61 62 6c 65 20 56 4c 41 4e 2d 41 77 61 72 65 20 42 72 69 64 67 65 00 45 | .Mode.Enable.VLAN-Aware.Bridge.E |
| e7840 | 6e 61 62 6c 65 20 61 75 74 6f 6d 61 74 69 63 20 72 65 64 69 72 65 63 74 20 66 72 6f 6d 20 68 74 | nable.automatic.redirect.from.ht |
| e7860 | 74 70 20 74 6f 20 68 74 74 70 73 2e 00 45 6e 61 62 6c 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 | tp.to.https..Enable.creation.of. |
| e7880 | 73 68 6f 72 74 63 75 74 20 72 6f 75 74 65 73 2e 00 45 6e 61 62 6c 65 20 64 69 66 66 65 72 65 6e | shortcut.routes..Enable.differen |
| e78a0 | 74 20 74 79 70 65 73 20 6f 66 20 68 61 72 64 77 61 72 65 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f | t.types.of.hardware.offloading.o |
| e78c0 | 6e 20 74 68 65 20 67 69 76 65 6e 20 4e 49 43 2e 00 45 6e 61 62 6c 65 20 67 69 76 65 6e 20 6c 65 | n.the.given.NIC..Enable.given.le |
| e78e0 | 67 61 63 79 20 70 72 6f 74 6f 63 6f 6c 20 6f 6e 20 74 68 69 73 20 4c 4c 44 50 20 69 6e 73 74 61 | gacy.protocol.on.this.LLDP.insta |
| e7900 | 6e 63 65 2e 20 4c 65 67 61 63 79 20 70 72 6f 74 6f 63 6f 6c 73 20 69 6e 63 6c 75 64 65 3a 00 45 | nce..Legacy.protocols.include:.E |
| e7920 | 6e 61 62 6c 65 20 6c 61 79 65 72 20 37 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 00 | nable.layer.7.HTTP.health.check. |
| e7940 | 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 70 | Enable.logging.for.the.matched.p |
| e7960 | 61 63 6b 65 74 2e 20 49 66 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d | acket..If.this.configuration.com |
| e7980 | 6d 61 6e 64 20 69 73 20 6e 6f 74 20 70 72 65 73 65 6e 74 2c 20 74 68 65 6e 20 6c 6f 67 20 69 73 | mand.is.not.present,.then.log.is |
| e79a0 | 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e 00 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 | .not.enabled..Enable.logging.for |
| e79c0 | 20 74 68 65 20 6d 61 74 63 68 65 64 20 70 61 63 6b 65 74 2e 20 49 66 20 74 68 69 73 20 63 6f 6e | .the.matched.packet..If.this.con |
| e79e0 | 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 70 72 65 73 65 6e | figuration.command.is.not.presen |
| e7a00 | 74 2c 20 74 68 65 6e 20 74 68 65 20 6c 6f 67 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e 00 | t,.then.the.log.is.not.enabled.. |
| e7a20 | 45 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 | Enable.logging.of.IP.address.and |
| e7a40 | 20 70 6f 72 74 73 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 2e 00 45 6e 61 62 6c 65 20 6f 72 20 44 69 | .ports.allocations..Enable.or.Di |
| e7a60 | 73 61 62 6c 65 20 56 79 4f 53 20 74 6f 20 62 65 20 3a 72 66 63 3a 60 31 33 33 37 60 20 63 6f 6e | sable.VyOS.to.be.:rfc:`1337`.con |
| e7a80 | 66 6f 72 6d 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d | form..The.following.system.param |
| e7aa0 | 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 | eter.will.be.altered:.Enable.or. |
| e7ac0 | 44 69 73 61 62 6c 65 20 56 79 4f 53 20 74 6f 20 62 65 20 3a 72 66 63 3a 60 31 33 33 37 60 20 63 | Disable.VyOS.to.be.:rfc:`1337`.c |
| e7ae0 | 6f 6e 66 6f 72 6d 61 6e 74 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 | onformant..The.following.system. |
| e7b00 | 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c | parameter.will.be.altered:.Enabl |
| e7b20 | 65 20 6f 72 20 44 69 73 61 62 6c 65 20 69 66 20 56 79 4f 53 20 75 73 65 20 49 50 76 34 20 54 43 | e.or.Disable.if.VyOS.use.IPv4.TC |
| e7b40 | 50 20 53 59 4e 20 43 6f 6f 6b 69 65 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 | P.SYN.Cookies..The.following.sys |
| e7b60 | 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 | tem.parameter.will.be.altered:.E |
| e7b80 | 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 49 43 4d 50 76 34 20 6f 72 20 49 43 4d 50 76 | nable.or.disable.ICMPv4.or.ICMPv |
| e7ba0 | 36 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 62 65 69 6e 67 20 61 63 63 65 70 74 | 6.redirect.messages.being.accept |
| e7bc0 | 65 64 20 62 79 20 56 79 4f 53 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d | ed.by.VyOS..The.following.system |
| e7be0 | 20 70 61 72 61 6d 65 74 65 72 73 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 | .parameters.will.be.altered:.Ena |
| e7c00 | 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 6d | ble.or.disable.ICMPv4.redirect.m |
| e7c20 | 65 73 73 61 67 65 73 20 62 65 69 6e 67 20 73 65 6e 74 20 62 79 20 56 79 4f 53 20 54 68 65 20 66 | essages.being.sent.by.VyOS.The.f |
| e7c40 | 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 | ollowing.system.parameter.will.b |
| e7c60 | 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 69 66 20 | e.altered:.Enable.or.disable.if. |
| e7c80 | 56 79 4f 53 20 75 73 65 73 20 49 50 76 34 20 54 43 50 20 53 59 4e 20 43 6f 6f 6b 69 65 73 2e 20 | VyOS.uses.IPv4.TCP.SYN.Cookies.. |
| e7ca0 | 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 | The.following.system.parameter.w |
| e7cc0 | 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c | ill.be.altered:.Enable.or.disabl |
| e7ce0 | 65 20 6c 6f 67 67 69 6e 67 20 66 6f 72 20 74 68 65 20 6d 61 74 63 68 65 64 20 70 61 63 6b 65 74 | e.logging.for.the.matched.packet |
| e7d00 | 2e 00 45 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 | ..Enable.or.disable.the.logging. |
| e7d20 | 6f 66 20 6d 61 72 74 69 61 6e 20 49 50 76 34 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 66 6f 6c | of.martian.IPv4.packets..The.fol |
| e7d40 | 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 | lowing.system.parameter.will.be. |
| e7d60 | 61 6c 74 65 72 65 64 3a 00 45 6e 61 62 6c 65 20 6f 73 70 66 20 6f 6e 20 61 6e 20 69 6e 74 65 72 | altered:.Enable.ospf.on.an.inter |
| e7d80 | 66 61 63 65 20 61 6e 64 20 73 65 74 20 61 73 73 6f 63 69 61 74 65 64 20 61 72 65 61 2e 00 45 6e | face.and.set.associated.area..En |
| e7da0 | 61 62 6c 65 20 70 6f 6c 69 63 79 20 66 6f 72 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 6f | able.policy.for.source.validatio |
| e7dc0 | 6e 20 62 79 20 72 65 76 65 72 73 65 64 20 70 61 74 68 2c 20 61 73 20 73 70 65 63 69 66 69 65 64 | n.by.reversed.path,.as.specified |
| e7de0 | 20 69 6e 20 3a 72 66 63 3a 60 33 37 30 34 60 2e 20 43 75 72 72 65 6e 74 20 72 65 63 6f 6d 6d 65 | .in.:rfc:`3704`..Current.recomme |
| e7e00 | 6e 64 65 64 20 70 72 61 63 74 69 63 65 20 69 6e 20 3a 72 66 63 3a 60 33 37 30 34 60 20 69 73 20 | nded.practice.in.:rfc:`3704`.is. |
| e7e20 | 74 6f 20 65 6e 61 62 6c 65 20 73 74 72 69 63 74 20 6d 6f 64 65 20 74 6f 20 70 72 65 76 65 6e 74 | to.enable.strict.mode.to.prevent |
| e7e40 | 20 49 50 20 73 70 6f 6f 66 69 6e 67 20 66 72 6f 6d 20 44 44 6f 73 20 61 74 74 61 63 6b 73 2e 20 | .IP.spoofing.from.DDos.attacks.. |
| e7e60 | 49 66 20 75 73 69 6e 67 20 61 73 79 6d 6d 65 74 72 69 63 20 72 6f 75 74 69 6e 67 20 6f 72 20 6f | If.using.asymmetric.routing.or.o |
| e7e80 | 74 68 65 72 20 63 6f 6d 70 6c 69 63 61 74 65 64 20 72 6f 75 74 69 6e 67 2c 20 74 68 65 6e 20 6c | ther.complicated.routing,.then.l |
| e7ea0 | 6f 6f 73 65 20 6d 6f 64 65 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 45 6e 61 62 6c 65 | oose.mode.is.recommended..Enable |
| e7ec0 | 20 72 65 63 65 69 76 69 6e 67 20 50 50 44 55 20 75 73 69 6e 67 20 53 54 42 43 20 28 53 70 61 63 | .receiving.PPDU.using.STBC.(Spac |
| e7ee0 | 65 20 54 69 6d 65 20 42 6c 6f 63 6b 20 43 6f 64 69 6e 67 29 00 45 6e 61 62 6c 65 20 73 61 6d 70 | e.Time.Block.Coding).Enable.samp |
| e7f00 | 6c 69 6e 67 20 6f 66 20 70 61 63 6b 65 74 73 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 74 | ling.of.packets,.which.will.be.t |
| e7f20 | 72 61 6e 73 6d 69 74 74 65 64 20 74 6f 20 73 46 6c 6f 77 20 63 6f 6c 6c 65 63 74 6f 72 73 2e 00 | ransmitted.to.sFlow.collectors.. |
| e7f40 | 45 6e 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 50 50 44 55 20 75 73 69 6e 67 20 53 54 42 43 20 28 | Enable.sending.PPDU.using.STBC.( |
| e7f60 | 53 70 61 63 65 20 54 69 6d 65 20 42 6c 6f 63 6b 20 43 6f 64 69 6e 67 29 00 45 6e 61 62 6c 65 20 | Space.Time.Block.Coding).Enable. |
| e7f80 | 73 65 6e 64 69 6e 67 20 6f 66 20 43 69 73 63 6f 20 73 74 79 6c 65 20 4e 48 52 50 20 54 72 61 66 | sending.of.Cisco.style.NHRP.Traf |
| e7fa0 | 66 69 63 20 49 6e 64 69 63 61 74 69 6f 6e 20 70 61 63 6b 65 74 73 2e 20 49 66 20 74 68 69 73 20 | fic.Indication.packets..If.this. |
| e7fc0 | 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 6f 70 65 6e 6e 68 72 70 20 64 65 74 65 63 74 73 20 | is.enabled.and.opennhrp.detects. |
| e7fe0 | 61 20 66 6f 72 77 61 72 64 65 64 20 20 70 61 63 6b 65 74 2c 20 69 74 20 77 69 6c 6c 20 73 65 6e | a.forwarded..packet,.it.will.sen |
| e8000 | 64 20 61 20 6d 65 73 73 61 67 65 20 74 6f 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 73 65 6e 64 | d.a.message.to.the.original.send |
| e8020 | 65 72 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 69 6e 73 74 72 75 63 74 69 6e 67 20 69 74 20 | er.of.the.packet.instructing.it. |
| e8040 | 74 6f 20 63 72 65 61 74 65 20 61 20 64 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 | to.create.a.direct.connection.wi |
| e8060 | 74 68 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 62 61 73 69 | th.the.destination..This.is.basi |
| e8080 | 63 61 6c 6c 79 20 61 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 65 71 75 | cally.a.protocol.independent.equ |
| e80a0 | 69 76 61 6c 65 6e 74 20 6f 66 20 49 43 4d 50 20 72 65 64 69 72 65 63 74 2e 00 45 6e 61 62 6c 65 | ivalent.of.ICMP.redirect..Enable |
| e80c0 | 20 73 70 61 6e 6e 69 6e 67 20 74 72 65 65 20 70 72 6f 74 6f 63 6f 6c 2e 20 53 54 50 20 69 73 20 | .spanning.tree.protocol..STP.is. |
| e80e0 | 64 69 73 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 45 6e 61 62 6c 65 20 74 68 65 20 | disabled.by.default..Enable.the. |
| e8100 | 4f 70 61 71 75 65 2d 4c 53 41 20 63 61 70 61 62 69 6c 69 74 79 20 28 72 66 63 32 33 37 30 29 2c | Opaque-LSA.capability.(rfc2370), |
| e8120 | 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 74 72 61 6e 73 70 6f 72 74 20 6c 61 62 65 6c 20 6f 6e | .necessary.to.transport.label.on |
| e8140 | 20 49 47 50 00 45 6e 61 62 6c 65 20 74 68 69 73 20 66 65 61 74 75 72 65 20 63 61 75 73 65 73 20 | .IGP.Enable.this.feature.causes. |
| e8160 | 61 6e 20 69 6e 74 65 72 66 61 63 65 20 72 65 73 65 74 2e 00 45 6e 61 62 6c 65 20 74 72 61 6e 73 | an.interface.reset..Enable.trans |
| e8180 | 6d 69 73 73 69 6f 6e 20 6f 66 20 4c 4c 44 50 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 67 | mission.of.LLDP.information.on.g |
| e81a0 | 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 20 59 6f 75 20 63 61 6e 20 61 6c 73 6f | iven.`<interface>`..You.can.also |
| e81c0 | 20 73 61 79 20 60 60 61 6c 6c 60 60 20 68 65 72 65 20 73 6f 20 4c 4c 44 50 20 69 73 20 74 75 72 | .say.``all``.here.so.LLDP.is.tur |
| e81e0 | 6e 65 64 20 6f 6e 20 6f 6e 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 2e 00 45 6e 61 62 6c | ned.on.on.every.interface..Enabl |
| e8200 | 65 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 62 | ed.on-demand.PPPoE.connections.b |
| e8220 | 72 69 6e 67 20 75 70 20 74 68 65 20 6c 69 6e 6b 20 6f 6e 6c 79 20 77 68 65 6e 20 74 72 61 66 66 | ring.up.the.link.only.when.traff |
| e8240 | 69 63 20 6e 65 65 64 73 20 74 6f 20 70 61 73 73 20 74 68 69 73 20 6c 69 6e 6b 2e 20 20 49 66 20 | ic.needs.to.pass.this.link...If. |
| e8260 | 74 68 65 20 6c 69 6e 6b 20 66 61 69 6c 73 20 66 6f 72 20 61 6e 79 20 72 65 61 73 6f 6e 2c 20 74 | the.link.fails.for.any.reason,.t |
| e8280 | 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 6f 75 67 68 74 20 62 61 63 6b 20 75 70 20 61 75 74 6f 6d | he.link.is.brought.back.up.autom |
| e82a0 | 61 74 69 63 61 6c 6c 79 20 6f 6e 63 65 20 74 72 61 66 66 69 63 20 70 61 73 73 65 73 20 74 68 65 | atically.once.traffic.passes.the |
| e82c0 | 20 69 6e 74 65 72 66 61 63 65 20 61 67 61 69 6e 2e 20 49 66 20 79 6f 75 20 63 6f 6e 66 69 67 75 | .interface.again..If.you.configu |
| e82e0 | 72 65 20 61 6e 20 6f 6e 2d 64 65 6d 61 6e 64 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e | re.an.on-demand.PPPoE.connection |
| e8300 | 2c 20 79 6f 75 20 6d 75 73 74 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 69 64 | ,.you.must.also.configure.the.id |
| e8320 | 6c 65 20 74 69 6d 65 6f 75 74 20 70 65 72 69 6f 64 2c 20 61 66 74 65 72 20 77 68 69 63 68 20 61 | le.timeout.period,.after.which.a |
| e8340 | 6e 20 69 64 6c 65 20 50 50 50 6f 45 20 6c 69 6e 6b 20 77 69 6c 6c 20 62 65 20 64 69 73 63 6f 6e | n.idle.PPPoE.link.will.be.discon |
| e8360 | 6e 65 63 74 65 64 2e 20 41 20 6e 6f 6e 2d 7a 65 72 6f 20 69 64 6c 65 20 74 69 6d 65 6f 75 74 20 | nected..A.non-zero.idle.timeout. |
| e8380 | 77 69 6c 6c 20 6e 65 76 65 72 20 64 69 73 63 6f 6e 6e 65 63 74 20 74 68 65 20 6c 69 6e 6b 20 61 | will.never.disconnect.the.link.a |
| e83a0 | 66 74 65 72 20 69 74 20 66 69 72 73 74 20 63 61 6d 65 20 75 70 2e 00 45 6e 61 62 6c 65 73 20 43 | fter.it.first.came.up..Enables.C |
| e83c0 | 69 73 63 6f 20 73 74 79 6c 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 20 4e 48 52 | isco.style.authentication.on.NHR |
| e83e0 | 50 20 70 61 63 6b 65 74 73 2e 20 54 68 69 73 20 65 6d 62 65 64 73 20 74 68 65 20 73 65 63 72 65 | P.packets..This.embeds.the.secre |
| e8400 | 74 20 70 6c 61 69 6e 74 65 78 74 20 70 61 73 73 77 6f 72 64 20 74 6f 20 74 68 65 20 6f 75 74 67 | t.plaintext.password.to.the.outg |
| e8420 | 6f 69 6e 67 20 4e 48 52 50 20 70 61 63 6b 65 74 73 2e 20 49 6e 63 6f 6d 69 6e 67 20 4e 48 52 50 | oing.NHRP.packets..Incoming.NHRP |
| e8440 | 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 61 72 65 20 64 | .packets.on.this.interface.are.d |
| e8460 | 69 73 63 61 72 64 65 64 20 75 6e 6c 65 73 73 20 74 68 65 20 73 65 63 72 65 74 20 70 61 73 73 77 | iscarded.unless.the.secret.passw |
| e8480 | 6f 72 64 20 69 73 20 70 72 65 73 65 6e 74 2e 20 4d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 68 20 6f | ord.is.present..Maximum.length.o |
| e84a0 | 66 20 74 68 65 20 73 65 63 72 65 74 20 69 73 20 38 20 63 68 61 72 61 63 74 65 72 73 2e 00 45 6e | f.the.secret.is.8.characters..En |
| e84c0 | 61 62 6c 65 73 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 20 75 73 69 6e 67 20 4f | ables.HTTP.health.checks.using.O |
| e84e0 | 50 54 49 4f 4e 20 48 54 54 50 20 72 65 71 75 65 73 74 73 20 61 67 61 69 6e 73 74 20 27 2f 27 20 | PTION.HTTP.requests.against.'/'. |
| e8500 | 61 6e 64 20 65 78 70 65 63 74 69 6e 67 20 61 20 73 75 63 63 65 73 73 66 75 6c 20 72 65 73 70 6f | and.expecting.a.successful.respo |
| e8520 | 6e 73 65 20 63 6f 64 65 20 69 6e 20 74 68 65 20 32 30 30 2d 33 39 39 20 72 61 6e 67 65 2e 00 45 | nse.code.in.the.200-399.range..E |
| e8540 | 6e 61 62 6c 65 73 20 61 6e 20 4d 50 4c 53 20 6c 61 62 65 6c 20 74 6f 20 62 65 20 61 74 74 61 63 | nables.an.MPLS.label.to.be.attac |
| e8560 | 68 65 64 20 74 6f 20 61 20 72 6f 75 74 65 20 65 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 74 68 65 | hed.to.a.route.exported.from.the |
| e8580 | 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 74 6f 20 56 50 4e 2e 20 49 66 20 | .current.unicast.VRF.to.VPN..If. |
| e85a0 | 74 68 65 20 76 61 6c 75 65 20 73 70 65 63 69 66 69 65 64 20 69 73 20 61 75 74 6f 2c 20 74 68 65 | the.value.specified.is.auto,.the |
| e85c0 | 20 6c 61 62 65 6c 20 76 61 6c 75 65 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 | .label.value.is.automatically.as |
| e85e0 | 73 69 67 6e 65 64 20 66 72 6f 6d 20 61 20 70 6f 6f 6c 20 6d 61 69 6e 74 61 69 6e 65 64 2e 00 45 | signed.from.a.pool.maintained..E |
| e8600 | 6e 61 62 6c 65 73 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 70 2d 73 74 61 74 65 20 64 72 | nables.and.configures.p-state.dr |
| e8620 | 69 76 65 72 20 66 6f 72 20 6d 6f 64 65 72 6e 20 41 4d 44 20 52 79 7a 65 6e 20 61 6e 64 20 45 70 | iver.for.modern.AMD.Ryzen.and.Ep |
| e8640 | 79 63 20 43 50 55 73 2e 00 45 6e 61 62 6c 65 73 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 | yc.CPUs..Enables.bandwidth.shapi |
| e8660 | 6e 67 20 76 69 61 20 52 41 44 49 55 53 2e 00 45 6e 61 62 6c 65 73 20 69 6d 70 6f 72 74 20 6f 72 | ng.via.RADIUS..Enables.import.or |
| e8680 | 20 65 78 70 6f 72 74 20 6f 66 20 72 6f 75 74 65 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 | .export.of.routes.between.the.cu |
| e86a0 | 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 61 6e 64 20 56 50 4e 2e 00 45 6e 61 62 6c | rrent.unicast.VRF.and.VPN..Enabl |
| e86c0 | 65 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 50 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f | es.the.Generic.Protocol.extensio |
| e86e0 | 6e 20 28 56 58 4c 41 4e 2d 47 50 45 29 2e 20 43 75 72 72 65 6e 74 6c 79 2c 20 74 68 69 73 20 69 | n.(VXLAN-GPE)..Currently,.this.i |
| e8700 | 73 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 74 | s.only.supported.together.with.t |
| e8720 | 68 65 20 65 78 74 65 72 6e 61 6c 20 6b 65 79 77 6f 72 64 2e 00 45 6e 61 62 6c 65 73 20 74 68 65 | he.external.keyword..Enables.the |
| e8740 | 20 4e 54 50 20 64 61 65 6d 6f 6e 20 50 54 50 20 74 72 61 6e 73 70 6f 72 74 2e 20 54 68 65 20 4e | .NTP.daemon.PTP.transport..The.N |
| e8760 | 54 50 20 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 63 6f 6e | TP.daemon.will.listen.on.the.con |
| e8780 | 66 69 67 75 72 65 64 20 50 54 50 20 70 6f 72 74 2e 20 4e 6f 74 65 20 74 68 61 74 20 6f 6e 65 20 | figured.PTP.port..Note.that.one. |
| e87a0 | 6f 72 20 6d 6f 72 65 20 73 65 72 76 65 72 73 20 6d 75 73 74 20 62 65 20 69 6e 64 69 76 69 64 75 | or.more.servers.must.be.individu |
| e87c0 | 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 50 54 50 20 62 65 66 6f 72 65 20 74 68 65 20 | ally.enabled.for.PTP.before.the. |
| e87e0 | 64 61 65 6d 6f 6e 20 77 69 6c 6c 20 73 79 6e 63 68 72 6f 6e 69 7a 65 20 6f 76 65 72 20 74 68 65 | daemon.will.synchronize.over.the |
| e8800 | 20 74 72 61 6e 73 70 6f 72 74 2e 00 45 6e 61 62 6c 65 73 20 74 68 65 20 65 63 68 6f 20 74 72 61 | .transport..Enables.the.echo.tra |
| e8820 | 6e 73 6d 69 73 73 69 6f 6e 20 6d 6f 64 65 00 45 6e 61 62 6c 65 73 20 74 68 65 20 72 6f 6f 74 20 | nsmission.mode.Enables.the.root. |
| e8840 | 70 61 72 74 69 74 69 6f 6e 20 61 75 74 6f 2d 65 78 74 65 6e 73 69 6f 6e 20 61 6e 64 20 72 65 73 | partition.auto-extension.and.res |
| e8860 | 69 7a 65 73 20 74 6f 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 76 61 69 6c 61 62 6c 65 20 73 70 | izes.to.the.maximum.available.sp |
| e8880 | 61 63 65 20 6f 6e 20 73 79 73 74 65 6d 20 62 6f 6f 74 2e 00 45 6e 61 62 6c 69 6e 67 20 41 64 76 | ace.on.system.boot..Enabling.Adv |
| e88a0 | 65 72 74 69 73 6d 65 6e 74 73 00 45 6e 61 62 6c 69 6e 67 20 4f 70 65 6e 56 50 4e 20 44 43 4f 00 | ertisments.Enabling.OpenVPN.DCO. |
| e88c0 | 45 6e 61 62 6c 69 6e 67 20 53 53 48 20 6f 6e 6c 79 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 74 | Enabling.SSH.only.requires.you.t |
| e88e0 | 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 70 6f 72 74 20 60 60 3c 70 6f 72 74 3e 60 60 20 79 6f | o.specify.the.port.``<port>``.yo |
| e8900 | 75 20 77 61 6e 74 20 53 53 48 20 74 6f 20 6c 69 73 74 65 6e 20 6f 6e 2e 20 42 79 20 64 65 66 61 | u.want.SSH.to.listen.on..By.defa |
| e8920 | 75 6c 74 2c 20 53 53 48 20 72 75 6e 73 20 6f 6e 20 70 6f 72 74 20 32 32 2e 00 45 6e 61 62 6c 69 | ult,.SSH.runs.on.port.22..Enabli |
| e8940 | 6e 67 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 20 69 6e 63 72 65 61 73 65 73 20 74 68 65 20 72 | ng.this.function.increases.the.r |
| e8960 | 69 73 6b 20 6f 66 20 62 61 6e 64 77 69 64 74 68 20 73 61 74 75 72 61 74 69 6f 6e 2e 00 45 6e 66 | isk.of.bandwidth.saturation..Enf |
| e8980 | 6f 72 63 65 20 73 74 72 69 63 74 20 70 61 74 68 20 63 68 65 63 6b 69 6e 67 00 45 6e 66 6f 72 63 | orce.strict.path.checking.Enforc |
| e89a0 | 65 20 73 74 72 69 63 74 20 70 61 74 68 20 63 68 65 63 6b 69 6e 67 2e 00 45 6e 73 6c 61 76 65 20 | e.strict.path.checking..Enslave. |
| e89c0 | 60 3c 6d 65 6d 62 65 72 3e 60 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 62 6f 6e 64 20 60 3c 69 | `<member>`.interface.to.bond.`<i |
| e89e0 | 6e 74 65 72 66 61 63 65 3e 60 2e 00 45 6e 73 75 72 65 20 74 68 61 74 20 77 68 65 6e 20 63 6f 6d | nterface>`..Ensure.that.when.com |
| e8a00 | 70 61 72 69 6e 67 20 72 6f 75 74 65 73 20 77 68 65 72 65 20 62 6f 74 68 20 61 72 65 20 65 71 75 | paring.routes.where.both.are.equ |
| e8a20 | 61 6c 20 6f 6e 20 6d 6f 73 74 20 6d 65 74 72 69 63 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 6c 6f | al.on.most.metrics,.including.lo |
| e8a40 | 63 61 6c 2d 70 72 65 66 2c 20 41 53 5f 50 41 54 48 20 6c 65 6e 67 74 68 2c 20 49 47 50 20 63 6f | cal-pref,.AS_PATH.length,.IGP.co |
| e8a60 | 73 74 2c 20 4d 45 44 2c 20 74 68 61 74 20 74 68 65 20 74 69 65 20 69 73 20 62 72 6f 6b 65 6e 20 | st,.MED,.that.the.tie.is.broken. |
| e8a80 | 62 61 73 65 64 20 6f 6e 20 72 6f 75 74 65 72 2d 49 44 2e 00 45 6e 74 65 72 70 72 69 73 65 20 69 | based.on.router-ID..Enterprise.i |
| e8aa0 | 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 20 75 73 75 61 6c 6c 79 20 73 68 69 70 20 61 20 6b 69 6e 64 | nstallations.usually.ship.a.kind |
| e8ac0 | 20 6f 66 20 64 69 72 65 63 74 6f 72 79 20 73 65 72 76 69 63 65 20 77 68 69 63 68 20 69 73 20 75 | .of.directory.service.which.is.u |
| e8ae0 | 73 65 64 20 74 6f 20 68 61 76 65 20 61 20 73 69 6e 67 6c 65 20 70 61 73 73 77 6f 72 64 20 73 74 | sed.to.have.a.single.password.st |
| e8b00 | 6f 72 65 20 66 6f 72 20 61 6c 6c 20 65 6d 70 6c 6f 79 65 65 73 2e 20 56 79 4f 53 20 61 6e 64 20 | ore.for.all.employees..VyOS.and. |
| e8b20 | 4f 70 65 6e 56 50 4e 20 73 75 70 70 6f 72 74 20 75 73 69 6e 67 20 4c 44 41 50 2f 41 44 20 61 73 | OpenVPN.support.using.LDAP/AD.as |
| e8b40 | 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 61 63 6b 65 6e 64 2e 00 45 72 69 63 73 73 6f 6e 20 63 | .single.user.backend..Ericsson.c |
| e8b60 | 61 6c 6c 20 69 74 20 4d 41 43 2d 46 6f 72 63 65 64 20 46 6f 72 77 61 72 64 69 6e 67 20 28 52 46 | all.it.MAC-Forced.Forwarding.(RF |
| e8b80 | 43 20 44 72 61 66 74 29 00 45 72 72 6f 72 00 45 72 72 6f 72 20 63 6f 6e 64 69 74 69 6f 6e 73 00 | C.Draft).Error.Error.conditions. |
| e8ba0 | 45 73 74 61 62 6c 69 73 68 65 64 20 73 65 73 73 69 6f 6e 73 20 63 61 6e 20 62 65 20 76 69 65 77 | Established.sessions.can.be.view |
| e8bc0 | 65 64 20 75 73 69 6e 67 20 74 68 65 20 2a 2a 73 68 6f 77 20 6c 32 74 70 2d 73 65 72 76 65 72 20 | ed.using.the.**show.l2tp-server. |
| e8be0 | 73 65 73 73 69 6f 6e 73 2a 2a 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 00 45 | sessions**.operational.command.E |
| e8c00 | 74 68 65 72 6e 65 74 00 45 74 68 65 72 6e 65 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 69 73 | thernet.Ethernet.flow.control.is |
| e8c20 | 20 61 20 6d 65 63 68 61 6e 69 73 6d 20 66 6f 72 20 74 65 6d 70 6f 72 61 72 69 6c 79 20 73 74 6f | .a.mechanism.for.temporarily.sto |
| e8c40 | 70 70 69 6e 67 20 74 68 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6f 66 20 64 61 74 61 20 6f | pping.the.transmission.of.data.o |
| e8c60 | 6e 20 45 74 68 65 72 6e 65 74 20 66 61 6d 69 6c 79 20 63 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f | n.Ethernet.family.computer.netwo |
| e8c80 | 72 6b 73 2e 20 54 68 65 20 67 6f 61 6c 20 6f 66 20 74 68 69 73 20 6d 65 63 68 61 6e 69 73 6d 20 | rks..The.goal.of.this.mechanism. |
| e8ca0 | 69 73 20 74 6f 20 65 6e 73 75 72 65 20 7a 65 72 6f 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 69 6e | is.to.ensure.zero.packet.loss.in |
| e8cc0 | 20 74 68 65 20 70 72 65 73 65 6e 63 65 20 6f 66 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 67 65 73 74 | .the.presence.of.network.congest |
| e8ce0 | 69 6f 6e 2e 00 45 74 68 65 72 6e 65 74 20 6f 70 74 69 6f 6e 73 00 45 74 68 65 72 74 79 70 65 20 | ion..Ethernet.options.Ethertype. |
| e8d00 | 60 60 30 78 38 31 30 30 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 60 60 38 30 32 2e 31 71 60 | ``0x8100``.is.used.for.``802.1q` |
| e8d20 | 60 20 61 6e 64 20 65 74 68 65 72 74 79 70 65 20 60 60 30 78 38 38 61 38 60 60 20 69 73 20 75 73 | `.and.ethertype.``0x88a8``.is.us |
| e8d40 | 65 64 20 66 6f 72 20 60 60 38 30 32 2e 31 61 64 60 60 2e 00 45 76 65 6e 74 20 48 61 6e 64 6c 65 | ed.for.``802.1ad``..Event.Handle |
| e8d60 | 72 00 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 53 74 | r.Event.Handler.Configuration.St |
| e8d80 | 65 70 73 00 45 76 65 6e 74 20 48 61 6e 64 6c 65 72 20 54 65 63 68 6e 6f 6c 6f 67 79 20 4f 76 65 | eps.Event.Handler.Technology.Ove |
| e8da0 | 72 76 69 65 77 00 45 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 | rview.Event.handler.allows.you.t |
| e8dc0 | 6f 20 65 78 65 63 75 74 65 20 73 63 72 69 70 74 73 20 77 68 65 6e 20 61 20 73 74 72 69 6e 67 20 | o.execute.scripts.when.a.string. |
| e8de0 | 74 68 61 74 20 6d 61 74 63 68 65 73 20 61 20 72 65 67 65 78 20 6f 72 20 61 20 72 65 67 65 78 20 | that.matches.a.regex.or.a.regex. |
| e8e00 | 77 69 74 68 20 61 20 73 65 72 76 69 63 65 20 6e 61 6d 65 20 61 70 70 65 61 72 73 20 69 6e 20 6a | with.a.service.name.appears.in.j |
| e8e20 | 6f 75 72 6e 61 6c 64 20 6c 6f 67 73 2e 20 59 6f 75 20 63 61 6e 20 70 61 73 73 20 76 61 72 69 61 | ournald.logs..You.can.pass.varia |
| e8e40 | 62 6c 65 73 2c 20 61 72 67 75 6d 65 6e 74 73 2c 20 61 6e 64 20 61 20 66 75 6c 6c 20 6d 61 74 63 | bles,.arguments,.and.a.full.matc |
| e8e60 | 68 69 6e 67 20 73 74 72 69 6e 67 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 2e 00 45 76 65 6e 74 | hing.string.to.the.script..Event |
| e8e80 | 20 68 61 6e 64 6c 65 72 20 73 63 72 69 70 74 00 45 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 74 68 | .handler.script.Event.handler.th |
| e8ea0 | 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 69 6e 74 65 72 66 61 | at.monitors.the.state.of.interfa |
| e8ec0 | 63 65 20 65 74 68 30 2e 00 45 76 65 72 79 20 4e 41 54 20 72 75 6c 65 20 68 61 73 20 61 20 74 72 | ce.eth0..Every.NAT.rule.has.a.tr |
| e8ee0 | 61 6e 73 6c 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 61 | anslation.command.defined..The.a |
| e8f00 | 64 64 72 65 73 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 | ddress.defined.for.the.translati |
| e8f20 | 6f 6e 20 69 73 20 74 68 65 20 61 64 64 72 65 73 73 20 75 73 65 64 20 77 68 65 6e 20 74 68 65 20 | on.is.the.address.used.when.the. |
| e8f40 | 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 70 61 63 6b 65 74 20 | address.information.in.a.packet. |
| e8f60 | 69 73 20 72 65 70 6c 61 63 65 64 2e 00 45 76 65 72 79 20 53 4e 41 54 36 36 20 72 75 6c 65 20 68 | is.replaced..Every.SNAT66.rule.h |
| e8f80 | 61 73 20 61 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 64 | as.a.translation.command.defined |
| e8fa0 | 2e 20 54 68 65 20 70 72 65 66 69 78 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 74 72 61 | ..The.prefix.defined.for.the.tra |
| e8fc0 | 6e 73 6c 61 74 69 6f 6e 20 69 73 20 74 68 65 20 70 72 65 66 69 78 20 75 73 65 64 20 77 68 65 6e | nslation.is.the.prefix.used.when |
| e8fe0 | 20 74 68 65 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 70 61 | .the.address.information.in.a.pa |
| e9000 | 63 6b 65 74 20 69 73 20 72 65 70 6c 61 63 65 64 2e e3 80 81 00 45 76 65 72 79 20 53 53 48 20 6b | cket.is.replaced.....Every.SSH.k |
| e9020 | 65 79 20 63 6f 6d 65 73 20 69 6e 20 74 68 72 65 65 20 70 61 72 74 73 3a 00 45 76 65 72 79 20 53 | ey.comes.in.three.parts:.Every.S |
| e9040 | 53 48 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 72 65 66 65 72 65 6e 63 65 64 | SH.public.key.portion.referenced |
| e9060 | 20 62 79 20 60 3c 69 64 65 6e 74 69 66 69 65 72 3e 60 20 72 65 71 75 69 72 65 73 20 74 68 65 20 | .by.`<identifier>`.requires.the. |
| e9080 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 60 3c 74 79 70 65 3e 60 20 6f 66 | configuration.of.the.`<type>`.of |
| e90a0 | 20 70 75 62 6c 69 63 2d 6b 65 79 20 75 73 65 64 2e 20 54 68 69 73 20 74 79 70 65 20 63 61 6e 20 | .public-key.used..This.type.can. |
| e90c0 | 62 65 20 61 6e 79 20 6f 66 3a 00 45 76 65 72 79 20 55 44 50 20 70 6f 72 74 20 77 68 69 63 68 20 | be.any.of:.Every.UDP.port.which. |
| e90e0 | 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 20 72 65 71 75 69 72 65 73 20 6f 6e 65 20 75 6e 69 | will.be.forward.requires.one.uni |
| e9100 | 71 75 65 20 49 44 2e 20 43 75 72 72 65 6e 74 6c 79 20 77 65 20 73 75 70 70 6f 72 74 20 39 39 20 | que.ID..Currently.we.support.99. |
| e9120 | 49 44 73 21 00 45 76 65 72 79 20 56 69 72 74 75 61 6c 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 | IDs!.Every.Virtual.Ethernet.inte |
| e9140 | 72 66 61 63 65 73 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 61 20 72 65 61 6c 20 45 74 68 65 72 | rfaces.behaves.like.a.real.Ether |
| e9160 | 6e 65 74 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 79 20 63 61 6e 20 68 61 76 65 20 49 50 76 | net.interface..They.can.have.IPv |
| e9180 | 34 2f 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 6f 72 20 | 4/IPv6.addresses.configured,.or. |
| e91a0 | 63 61 6e 20 72 65 71 75 65 73 74 20 61 64 64 72 65 73 73 65 73 20 62 79 20 44 48 43 50 2f 20 44 | can.request.addresses.by.DHCP/.D |
| e91c0 | 48 43 50 76 36 20 61 6e 64 20 61 72 65 20 61 73 73 6f 63 69 61 74 65 64 2f 6d 61 70 70 65 64 20 | HCPv6.and.are.associated/mapped. |
| e91e0 | 77 69 74 68 20 61 20 72 65 61 6c 20 65 74 68 65 72 6e 65 74 20 70 6f 72 74 2e 20 54 68 69 73 20 | with.a.real.ethernet.port..This. |
| e9200 | 61 6c 73 6f 20 6d 61 6b 65 73 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 | also.makes.Pseudo-Ethernet.inter |
| e9220 | 66 61 63 65 73 20 69 6e 74 65 72 65 73 74 69 6e 67 20 66 6f 72 20 74 65 73 74 69 6e 67 20 70 75 | faces.interesting.for.testing.pu |
| e9240 | 72 70 6f 73 65 73 2e 20 41 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 | rposes..A.Pseudo-Ethernet.device |
| e9260 | 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 63 68 61 72 61 63 74 65 72 69 73 74 69 63 73 20 28 73 | .will.inherit.characteristics.(s |
| e9280 | 70 65 65 64 2c 20 64 75 70 6c 65 78 2c 20 2e 2e 2e 29 20 66 72 6f 6d 20 69 74 73 20 70 68 79 73 | peed,.duplex,....).from.its.phys |
| e92a0 | 69 63 61 6c 20 70 61 72 65 6e 74 20 28 74 68 65 20 73 6f 20 63 61 6c 6c 65 64 20 6c 69 6e 6b 29 | ical.parent.(the.so.called.link) |
| e92c0 | 20 69 6e 74 65 72 66 61 63 65 2e 00 45 76 65 72 79 20 57 57 41 4e 20 63 6f 6e 6e 65 63 74 69 6f | .interface..Every.WWAN.connectio |
| e92e0 | 6e 20 72 65 71 75 69 72 65 73 20 61 6e 20 3a 61 62 62 72 3a 60 41 50 4e 20 28 41 63 63 65 73 73 | n.requires.an.:abbr:`APN.(Access |
| e9300 | 20 50 6f 69 6e 74 20 4e 61 6d 65 29 60 20 77 68 69 63 68 20 69 73 20 75 73 65 64 20 62 79 20 74 | .Point.Name)`.which.is.used.by.t |
| e9320 | 68 65 20 63 6c 69 65 6e 74 20 74 6f 20 64 69 61 6c 20 69 6e 74 6f 20 74 68 65 20 49 53 50 73 20 | he.client.to.dial.into.the.ISPs. |
| e9340 | 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 70 61 72 | network..This.is.a.mandatory.par |
| e9360 | 61 6d 65 74 65 72 2e 20 43 6f 6e 74 61 63 74 20 79 6f 75 72 20 53 65 72 76 69 63 65 20 50 72 6f | ameter..Contact.your.Service.Pro |
| e9380 | 76 69 64 65 72 20 66 6f 72 20 63 6f 72 72 65 63 74 20 41 50 4e 2e 00 45 76 65 72 79 20 63 6f 6e | vider.for.correct.APN..Every.con |
| e93a0 | 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 6f 6f 6c 20 77 65 20 63 6f | nection/remote-access.pool.we.co |
| e93c0 | 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 6e 65 65 64 73 20 61 20 70 6f 6f 6c 20 77 68 65 72 65 20 | nfigure.also.needs.a.pool.where. |
| e93e0 | 77 65 20 63 61 6e 20 64 72 61 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 | we.can.draw.our.client.IP.addres |
| e9400 | 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 70 72 6f 76 69 64 65 20 6f 6e 65 20 49 50 76 34 20 61 6e | ses.from..We.provide.one.IPv4.an |
| e9420 | 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 20 63 6c 69 65 6e 74 73 20 | d.IPv6.pool..Authorized.clients. |
| e9440 | 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 72 6f | will.receive.an.IPv4.address.fro |
| e9460 | 6d 20 74 68 65 20 31 39 32 2e 30 2e 32 2e 31 32 38 2f 32 35 20 70 72 65 66 69 78 20 61 6e 64 20 | m.the.192.0.2.128/25.prefix.and. |
| e9480 | 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 32 30 30 31 3a 64 62 | an.IPv6.address.from.the.2001:db |
| e94a0 | 38 3a 32 30 30 30 3a 3a 2f 36 34 20 70 72 65 66 69 78 2e 20 57 65 20 63 61 6e 20 61 6c 73 6f 20 | 8:2000::/64.prefix..We.can.also. |
| e94c0 | 73 65 6e 64 20 73 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 72 73 20 64 6f 77 6e 20 66 | send.some.DNS.nameservers.down.f |
| e94e0 | 6f 72 20 6f 75 72 20 63 6c 69 65 6e 74 73 20 74 6f 20 75 73 65 20 77 69 74 68 20 74 68 65 69 72 | or.our.clients.to.use.with.their |
| e9500 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2f 72 65 | .connection..Every.connection/re |
| e9520 | 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 6f 6f 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 6c | mote-access.pool.we.configure.al |
| e9540 | 73 6f 20 6e 65 65 64 73 20 61 20 70 6f 6f 6c 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 64 72 61 | so.needs.a.pool.where.we.can.dra |
| e9560 | 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 20 | w.our.client.IP.addresses.from.. |
| e9580 | 57 65 20 70 72 6f 76 69 64 65 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 6f 6f | We.provide.one.IPv4.and.IPv6.poo |
| e95a0 | 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 63 65 69 | l..Authorized.clients.will.recei |
| e95c0 | 76 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 31 39 32 2e | ve.an.IPv4.address.from.the.192. |
| e95e0 | 30 2e 32 2e 31 32 38 2f 32 35 20 70 72 65 66 69 78 20 61 6e 64 20 61 6e 20 49 50 76 36 20 61 64 | 0.2.128/25.prefix.and.an.IPv6.ad |
| e9600 | 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 32 30 30 31 3a 64 62 38 3a 32 30 30 30 3a 3a 2f 36 | dress.from.the.2001:db8:2000::/6 |
| e9620 | 34 20 70 72 65 66 69 78 2e 20 57 65 20 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 6f 6d 65 20 | 4.prefix..We.can.also.send.some. |
| e9640 | 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 72 73 20 64 6f 77 6e 20 74 6f 20 6f 75 72 20 63 6c 69 65 | DNS.nameservers.down.to.our.clie |
| e9660 | 6e 74 73 20 75 73 65 64 20 6f 6e 20 74 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 45 76 | nts.used.on.their.connection..Ev |
| e9680 | 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2f 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 70 6f 6f | ery.connection/remote-access.poo |
| e96a0 | 6c 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 61 6c 73 6f 20 6e 65 65 64 73 20 61 20 70 6f 6f 6c | l.we.configure.also.needs.a.pool |
| e96c0 | 20 77 68 65 72 65 20 77 65 20 63 61 6e 20 64 72 61 77 20 6f 75 72 20 63 6c 69 65 6e 74 20 49 50 | .where.we.can.draw.our.client.IP |
| e96e0 | 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 20 57 65 20 70 72 6f 76 69 64 65 20 6f 6e 65 20 | .addresses.from..We.provide.one. |
| e9700 | 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 70 6f 6f 6c 2e 20 41 75 74 68 6f 72 69 7a 65 64 20 63 | IPv4.and.IPv6.pool..Authorized.c |
| e9720 | 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 | lients.will.receive.an.IPv4.addr |
| e9740 | 65 73 73 20 66 72 6f 6d 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 49 50 76 34 20 70 72 65 | ess.from.the.configured.IPv4.pre |
| e9760 | 66 69 78 20 61 6e 64 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 | fix.and.an.IPv6.address.from.the |
| e9780 | 20 49 50 76 36 20 70 72 65 66 69 78 2e 20 57 65 20 63 61 6e 20 61 6c 73 6f 20 73 65 6e 64 20 73 | .IPv6.prefix..We.can.also.send.s |
| e97a0 | 6f 6d 65 20 44 4e 53 20 6e 61 6d 65 73 65 72 76 65 72 73 20 64 6f 77 6e 20 74 6f 20 6f 75 72 20 | ome.DNS.nameservers.down.to.our. |
| e97c0 | 63 6c 69 65 6e 74 73 20 75 73 65 64 20 6f 6e 20 74 68 65 69 72 20 63 6f 6e 6e 65 63 74 69 6f 6e | clients.used.on.their.connection |
| e97e0 | 2e 00 45 78 61 6d 70 6c 65 00 45 78 61 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 | ..Example.Example.Configuration. |
| e9800 | 45 78 61 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 20 57 69 46 69 2d 36 20 61 74 | Example.Configuration:.WiFi-6.at |
| e9820 | 20 32 2e 34 47 48 7a 00 45 78 61 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 20 57 | .2.4GHz.Example.Configuration:.W |
| e9840 | 69 46 69 2d 36 65 20 61 74 20 36 47 48 7a 00 45 78 61 6d 70 6c 65 20 49 50 76 36 20 6f 6e 6c 79 | iFi-6e.at.6GHz.Example.IPv6.only |
| e9860 | 3a 00 45 78 61 6d 70 6c 65 20 4e 65 74 77 6f 72 6b 00 45 78 61 6d 70 6c 65 20 50 61 72 74 69 61 | :.Example.Network.Example.Partia |
| e9880 | 6c 20 43 6f 6e 66 69 67 00 45 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 | l.Config.Example.configuration.f |
| e98a0 | 6f 72 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 73 3a 00 45 78 61 6d 70 6c 65 | or.WireGuard.interfaces:.Example |
| e98c0 | 20 66 6f 72 20 63 68 61 6e 67 69 6e 67 20 72 61 74 65 2d 6c 69 6d 69 74 20 76 69 61 20 52 41 44 | .for.changing.rate-limit.via.RAD |
| e98e0 | 49 55 53 20 43 6f 41 2e 00 45 78 61 6d 70 6c 65 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 69 6e 67 | IUS.CoA..Example.for.configuring |
| e9900 | 20 61 20 73 69 6d 70 6c 65 20 4c 32 54 50 20 6f 76 65 72 20 49 50 73 65 63 20 56 50 4e 20 66 6f | .a.simple.L2TP.over.IPsec.VPN.fo |
| e9920 | 72 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 28 77 6f 72 6b 73 20 77 69 74 68 20 6e 61 74 69 | r.remote.access.(works.with.nati |
| e9940 | 76 65 20 57 69 6e 64 6f 77 73 20 61 6e 64 20 4d 61 63 20 56 50 4e 20 63 6c 69 65 6e 74 73 29 3a | ve.Windows.and.Mac.VPN.clients): |
| e9960 | 00 45 78 61 6d 70 6c 65 20 6f 66 20 72 65 64 69 72 65 63 74 69 6f 6e 3a 00 45 78 61 6d 70 6c 65 | .Example.of.redirection:.Example |
| e9980 | 20 6f 66 20 73 65 74 74 69 6e 67 20 75 70 20 61 20 62 61 73 69 63 20 43 47 4e 41 54 20 63 6f 6e | .of.setting.up.a.basic.CGNAT.con |
| e99a0 | 66 69 67 75 72 61 74 69 6f 6e 3a 20 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 | figuration:.In.the.following.exa |
| e99c0 | 6d 70 6c 65 2c 20 77 65 20 64 65 66 69 6e 65 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 70 6f 6f 6c | mple,.we.define.an.external.pool |
| e99e0 | 20 6e 61 6d 65 64 20 60 65 78 74 2d 31 60 20 77 69 74 68 20 6f 6e 65 20 65 78 74 65 72 6e 61 6c | .named.`ext-1`.with.one.external |
| e9a00 | 20 49 50 20 61 64 64 72 65 73 73 00 45 78 61 6d 70 6c 65 20 73 79 6e 70 72 6f 78 79 00 45 78 61 | .IP.address.Example.synproxy.Exa |
| e9a20 | 6d 70 6c 65 2c 20 66 72 6f 6d 20 72 61 64 69 75 73 2d 73 65 72 76 65 72 20 73 65 6e 64 20 63 6f | mple,.from.radius-server.send.co |
| e9a40 | 6d 6d 61 6e 64 20 66 6f 72 20 64 69 73 63 6f 6e 6e 65 63 74 20 63 6c 69 65 6e 74 20 77 69 74 68 | mmand.for.disconnect.client.with |
| e9a60 | 20 75 73 65 72 6e 61 6d 65 20 74 65 73 74 00 45 78 61 6d 70 6c 65 3a 00 45 78 61 6d 70 6c 65 3a | .username.test.Example:.Example: |
| e9a80 | 20 41 20 68 6f 75 73 65 68 6f 6c 64 20 6d 69 67 68 74 20 6e 65 65 64 20 31 30 30 30 20 70 6f 72 | .A.household.might.need.1000.por |
| e9aa0 | 74 73 20 74 6f 20 65 6e 73 75 72 65 20 73 6d 6f 6f 74 68 20 6f 70 65 72 61 74 69 6f 6e 20 66 6f | ts.to.ensure.smooth.operation.fo |
| e9ac0 | 72 20 6d 75 6c 74 69 70 6c 65 20 64 65 76 69 63 65 73 20 61 6e 64 20 61 70 70 6c 69 63 61 74 69 | r.multiple.devices.and.applicati |
| e9ae0 | 6f 6e 73 2e 00 45 78 61 6d 70 6c 65 3a 20 44 65 6c 65 67 61 74 65 20 61 20 2f 36 34 20 70 72 65 | ons..Example:.Delegate.a./64.pre |
| e9b00 | 66 69 78 20 74 6f 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 38 20 77 68 69 63 68 20 77 69 6c 6c | fix.to.interface.eth8.which.will |
| e9b20 | 20 75 73 65 20 61 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 6f 6e 20 74 68 69 73 20 72 6f 75 | .use.a.local.address.on.this.rou |
| e9b40 | 74 65 72 20 6f 66 20 60 60 3c 70 72 65 66 69 78 3e 3a 3a 66 66 66 66 60 60 2c 20 61 73 20 74 68 | ter.of.``<prefix>::ffff``,.as.th |
| e9b60 | 65 20 61 64 64 72 65 73 73 20 36 35 35 33 34 20 77 69 6c 6c 20 63 6f 72 72 65 73 70 6f 6e 64 20 | e.address.65534.will.correspond. |
| e9b80 | 74 6f 20 60 60 66 66 66 66 60 60 20 69 6e 20 68 65 78 61 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 | to.``ffff``.in.hexadecimal.notat |
| e9ba0 | 69 6f 6e 2e 00 45 78 61 6d 70 6c 65 3a 20 46 6f 72 20 61 6e 20 7e 38 2c 30 30 30 20 68 6f 73 74 | ion..Example:.For.an.~8,000.host |
| e9bc0 | 20 6e 65 74 77 6f 72 6b 20 61 20 73 6f 75 72 63 65 20 4e 41 54 20 70 6f 6f 6c 20 6f 66 20 33 32 | .network.a.source.NAT.pool.of.32 |
| e9be0 | 20 49 50 20 61 64 64 72 65 73 73 65 73 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 45 78 | .IP.addresses.is.recommended..Ex |
| e9c00 | 61 6d 70 6c 65 3a 20 49 66 20 49 44 20 69 73 20 31 20 61 6e 64 20 74 68 65 20 63 6c 69 65 6e 74 | ample:.If.ID.is.1.and.the.client |
| e9c20 | 20 69 73 20 64 65 6c 65 67 61 74 65 64 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 32 30 30 | .is.delegated.an.IPv6.prefix.200 |
| e9c40 | 31 3a 64 62 38 3a 66 66 66 66 3a 3a 2f 34 38 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 63 6f 6d | 1:db8:ffff::/48,.dhcp6c.will.com |
| e9c60 | 62 69 6e 65 20 74 68 65 20 74 77 6f 20 76 61 6c 75 65 73 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c | bine.the.two.values.into.a.singl |
| e9c80 | 65 20 49 50 76 36 20 70 72 65 66 69 78 2c 20 32 30 30 31 3a 64 62 38 3a 66 66 66 66 3a 31 3a 3a | e.IPv6.prefix,.2001:db8:ffff:1:: |
| e9ca0 | 2f 36 34 2c 20 61 6e 64 20 77 69 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 70 72 65 66 | /64,.and.will.configure.the.pref |
| e9cc0 | 69 78 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 00 45 | ix.on.the.specified.interface..E |
| e9ce0 | 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 | xample:.Mirror.the.inbound.traff |
| e9d00 | 69 63 20 6f 66 20 60 62 6f 6e 64 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 | ic.of.`bond1`.port.to.`eth3`.Exa |
| e9d20 | 6d 70 6c 65 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 | mple:.Mirror.the.inbound.traffic |
| e9d40 | 20 6f 66 20 60 62 72 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 | .of.`br1`.port.to.`eth3`.Example |
| e9d60 | 3a 20 4d 69 72 72 6f 72 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 | :.Mirror.the.inbound.traffic.of. |
| e9d80 | 60 65 74 68 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d | `eth1`.port.to.`eth3`.Example:.M |
| e9da0 | 69 72 72 6f 72 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 | irror.the.outbound.traffic.of.`b |
| e9dc0 | 6f 6e 64 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 | ond1`.port.to.`eth3`.Example:.Mi |
| e9de0 | 72 72 6f 72 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 62 72 | rror.the.outbound.traffic.of.`br |
| e9e00 | 31 60 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 4d 69 72 72 6f | 1`.port.to.`eth3`.Example:.Mirro |
| e9e20 | 72 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 20 6f 66 20 60 65 74 68 31 60 | r.the.outbound.traffic.of.`eth1` |
| e9e40 | 20 70 6f 72 74 20 74 6f 20 60 65 74 68 33 60 00 45 78 61 6d 70 6c 65 3a 20 50 72 65 66 69 78 20 | .port.to.`eth3`.Example:.Prefix. |
| e9e60 | 4c 69 73 74 73 00 45 78 61 6d 70 6c 65 3a 20 53 65 74 20 60 65 74 68 30 60 20 6d 65 6d 62 65 72 | Lists.Example:.Set.`eth0`.member |
| e9e80 | 20 70 6f 72 74 20 74 6f 20 62 65 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 34 00 45 78 61 6d 70 | .port.to.be.allowed.VLAN.4.Examp |
| e9ea0 | 6c 65 3a 20 53 65 74 20 60 65 74 68 30 60 20 6d 65 6d 62 65 72 20 70 6f 72 74 20 74 6f 20 62 65 | le:.Set.`eth0`.member.port.to.be |
| e9ec0 | 20 61 6c 6c 6f 77 65 64 20 56 4c 41 4e 20 36 2d 38 00 45 78 61 6d 70 6c 65 3a 20 53 65 74 20 60 | .allowed.VLAN.6-8.Example:.Set.` |
| e9ee0 | 65 74 68 30 60 20 6d 65 6d 62 65 72 20 70 6f 72 74 20 74 6f 20 62 65 20 6e 61 74 69 76 65 20 56 | eth0`.member.port.to.be.native.V |
| e9f00 | 4c 41 4e 20 32 00 45 78 61 6d 70 6c 65 3a 20 74 6f 20 62 65 20 61 70 70 65 6e 64 65 64 20 69 73 | LAN.2.Example:.to.be.appended.is |
| e9f20 | 20 73 65 74 20 74 6f 20 60 60 76 79 6f 73 2e 6e 65 74 60 60 20 61 6e 64 20 74 68 65 20 55 52 4c | .set.to.``vyos.net``.and.the.URL |
| e9f40 | 20 72 65 63 65 69 76 65 64 20 69 73 20 60 60 77 77 77 2f 66 6f 6f 2e 68 74 6d 6c 60 60 2c 20 74 | .received.is.``www/foo.html``,.t |
| e9f60 | 68 65 20 73 79 73 74 65 6d 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 | he.system.will.use.the.generated |
| e9f80 | 2c 20 66 69 6e 61 6c 20 55 52 4c 20 6f 66 20 60 60 77 77 77 2e 76 79 6f 73 2e 6e 65 74 2f 66 6f | ,.final.URL.of.``www.vyos.net/fo |
| e9fa0 | 6f 2e 68 74 6d 6c 60 60 2e 00 45 78 61 6d 70 6c 65 73 00 45 78 61 6d 70 6c 65 73 20 6f 66 20 70 | o.html``..Examples.Examples.of.p |
| e9fc0 | 6f 6c 69 63 69 65 73 20 75 73 61 67 65 3a 00 45 78 61 6d 70 6c 65 73 3a 00 45 78 63 6c 75 64 65 | olicies.usage:.Examples:.Exclude |
| e9fe0 | 20 49 50 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 20 60 60 56 52 52 50 20 70 61 63 6b 65 74 | .IP.addresses.from.``VRRP.packet |
| ea000 | 73 60 60 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 60 60 65 78 63 6c 75 64 65 64 2d 61 64 64 72 | s``..This.option.``excluded-addr |
| ea020 | 65 73 73 60 60 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 73 | ess``.is.used.when.you.want.to.s |
| ea040 | 65 74 20 49 50 76 34 20 2b 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 6f 6e 20 74 68 65 20 | et.IPv4.+.IPv6.addresses.on.the. |
| ea060 | 73 61 6d 65 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 77 68 65 6e 20 75 | same.virtual.interface.or.when.u |
| ea080 | 73 65 64 20 6d 6f 72 65 20 74 68 61 6e 20 32 30 20 49 50 20 61 64 64 72 65 73 73 65 73 2e 00 45 | sed.more.than.20.IP.addresses..E |
| ea0a0 | 78 63 6c 75 64 65 20 60 3c 65 78 63 6c 75 64 65 2d 70 72 65 66 69 78 3e 60 20 66 72 6f 6d 20 60 | xclude.`<exclude-prefix>`.from.` |
| ea0c0 | 3c 70 64 2d 70 72 65 66 69 78 3e 60 2e 00 45 78 63 6c 75 64 65 20 61 64 64 72 65 73 73 00 45 78 | <pd-prefix>`..Exclude.address.Ex |
| ea0e0 | 63 6c 75 64 65 20 74 72 61 66 66 69 63 00 45 78 69 74 20 70 6f 6c 69 63 79 20 6f 6e 20 6d 61 74 | clude.traffic.Exit.policy.on.mat |
| ea100 | 63 68 3a 20 67 6f 20 74 6f 20 6e 65 78 74 20 73 65 71 75 65 6e 63 65 20 6e 75 6d 62 65 72 2e 00 | ch:.go.to.next.sequence.number.. |
| ea120 | 45 78 69 74 20 70 6f 6c 69 63 79 20 6f 6e 20 6d 61 74 63 68 3a 20 67 6f 20 74 6f 20 72 75 6c 65 | Exit.policy.on.match:.go.to.rule |
| ea140 | 20 3c 31 2d 36 35 35 33 35 3e 00 45 78 70 65 64 69 74 65 64 20 66 6f 72 77 61 72 64 69 6e 67 20 | .<1-65535>.Expedited.forwarding. |
| ea160 | 28 45 46 29 00 45 78 70 6c 61 6e 61 74 69 6f 6e 00 45 78 70 6c 69 63 69 74 6c 79 20 64 65 63 6c | (EF).Explanation.Explicitly.decl |
| ea180 | 61 72 65 20 49 44 20 66 6f 72 20 74 68 69 73 20 6d 69 6e 69 6f 6e 20 74 6f 20 75 73 65 20 28 64 | are.ID.for.this.minion.to.use.(d |
| ea1a0 | 65 66 61 75 6c 74 3a 20 68 6f 73 74 6e 61 6d 65 29 00 45 78 74 65 72 6e 61 6c 20 44 48 43 50 76 | efault:.hostname).External.DHCPv |
| ea1c0 | 36 20 73 65 72 76 65 72 20 69 73 20 61 74 20 32 30 30 31 3a 64 62 38 3a 3a 34 00 45 78 74 65 72 | 6.server.is.at.2001:db8::4.Exter |
| ea1e0 | 6e 61 6c 20 52 6f 75 74 65 20 53 75 6d 6d 61 72 69 73 61 74 69 6f 6e 00 45 78 74 65 72 6e 61 6c | nal.Route.Summarisation.External |
| ea200 | 20 61 64 64 72 65 73 73 20 73 65 71 75 65 6e 63 65 73 00 45 78 74 65 72 6e 61 6c 20 61 74 74 61 | .address.sequences.External.atta |
| ea220 | 63 6b 3a 20 61 6e 20 61 74 74 61 63 6b 20 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 65 74 20 | ck:.an.attack.from.the.internet. |
| ea240 | 74 6f 77 61 72 64 73 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 69 73 20 69 64 65 6e 74 69 | towards.an.internal.IP.is.identi |
| ea260 | 66 79 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e | fy..In.this.case,.all.connection |
| ea280 | 73 20 74 6f 77 61 72 64 73 20 73 75 63 68 20 49 50 20 77 69 6c 6c 20 62 65 20 62 6c 6f 63 6b 65 | s.towards.such.IP.will.be.blocke |
| ea2a0 | 64 00 46 51 2d 43 6f 44 65 6c 00 46 51 2d 43 6f 44 65 6c 20 66 69 67 68 74 73 20 62 75 66 66 65 | d.FQ-CoDel.FQ-CoDel.fights.buffe |
| ea2c0 | 72 62 6c 6f 61 74 20 61 6e 64 20 72 65 64 75 63 65 73 20 6c 61 74 65 6e 63 79 20 77 69 74 68 6f | rbloat.and.reduces.latency.witho |
| ea2e0 | 75 74 20 74 68 65 20 6e 65 65 64 20 6f 66 20 63 6f 6d 70 6c 65 78 20 63 6f 6e 66 69 67 75 72 61 | ut.the.need.of.complex.configura |
| ea300 | 74 69 6f 6e 73 2e 20 49 74 20 68 61 73 20 62 65 63 6f 6d 65 20 74 68 65 20 6e 65 77 20 64 65 66 | tions..It.has.become.the.new.def |
| ea320 | 61 75 6c 74 20 51 75 65 75 65 69 6e 67 20 44 69 73 63 69 70 6c 69 6e 65 20 66 6f 72 20 74 68 65 | ault.Queueing.Discipline.for.the |
| ea340 | 20 69 6e 74 65 72 66 61 63 65 73 20 6f 66 20 73 6f 6d 65 20 47 4e 55 2f 4c 69 6e 75 78 20 64 69 | .interfaces.of.some.GNU/Linux.di |
| ea360 | 73 74 72 69 62 75 74 69 6f 6e 73 2e 00 46 51 2d 43 6f 44 65 6c 20 69 73 20 62 61 73 65 64 20 6f | stributions..FQ-CoDel.is.based.o |
| ea380 | 6e 20 61 20 6d 6f 64 69 66 69 65 64 20 44 65 66 69 63 69 74 20 52 6f 75 6e 64 20 52 6f 62 69 6e | n.a.modified.Deficit.Round.Robin |
| ea3a0 | 20 28 44 52 52 5f 29 20 71 75 65 75 65 20 73 63 68 65 64 75 6c 65 72 20 77 69 74 68 20 74 68 65 | .(DRR_).queue.scheduler.with.the |
| ea3c0 | 20 43 6f 44 65 6c 20 41 63 74 69 76 65 20 51 75 65 75 65 20 4d 61 6e 61 67 65 6d 65 6e 74 20 28 | .CoDel.Active.Queue.Management.( |
| ea3e0 | 41 51 4d 29 20 61 6c 67 6f 72 69 74 68 6d 20 6f 70 65 72 61 74 69 6e 67 20 6f 6e 20 65 61 63 68 | AQM).algorithm.operating.on.each |
| ea400 | 20 71 75 65 75 65 2e 00 46 51 2d 43 6f 44 65 6c 20 69 73 20 74 75 6e 65 64 20 74 6f 20 72 75 6e | .queue..FQ-CoDel.is.tuned.to.run |
| ea420 | 20 6f 6b 20 77 69 74 68 20 69 74 73 20 64 65 66 61 75 6c 74 20 70 61 72 61 6d 65 74 65 72 73 20 | .ok.with.its.default.parameters. |
| ea440 | 61 74 20 31 30 47 62 69 74 20 73 70 65 65 64 73 2e 20 49 74 20 6d 69 67 68 74 20 77 6f 72 6b 20 | at.10Gbit.speeds..It.might.work. |
| ea460 | 6f 6b 20 74 6f 6f 20 61 74 20 6f 74 68 65 72 20 73 70 65 65 64 73 20 77 69 74 68 6f 75 74 20 63 | ok.too.at.other.speeds.without.c |
| ea480 | 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 79 74 68 69 6e 67 2c 20 62 75 74 20 68 65 72 65 20 77 65 | onfiguring.anything,.but.here.we |
| ea4a0 | 20 77 69 6c 6c 20 65 78 70 6c 61 69 6e 20 73 6f 6d 65 20 63 61 73 65 73 20 77 68 65 6e 20 79 6f | .will.explain.some.cases.when.yo |
| ea4c0 | 75 20 6d 69 67 68 74 20 77 61 6e 74 20 74 6f 20 74 75 6e 65 20 69 74 73 20 70 61 72 61 6d 65 74 | u.might.want.to.tune.its.paramet |
| ea4e0 | 65 72 73 2e 00 46 51 2d 43 6f 64 65 6c 20 69 73 20 61 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 28 | ers..FQ-Codel.is.a.non-shaping.( |
| ea500 | 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 6e 67 29 20 70 6f 6c 69 63 79 2c 20 73 6f 20 69 74 20 77 | work-conserving).policy,.so.it.w |
| ea520 | 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 66 75 6c 20 69 66 20 79 6f 75 72 20 6f 75 74 67 6f | ill.only.be.useful.if.your.outgo |
| ea540 | 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 | ing.interface.is.really.full..If |
| ea560 | 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 | .it.is.not,.VyOS.will.not.own.th |
| ea580 | 65 20 71 75 65 75 65 20 61 6e 64 20 46 51 2d 43 6f 64 65 6c 20 77 69 6c 6c 20 68 61 76 65 20 6e | e.queue.and.FQ-Codel.will.have.n |
| ea5a0 | 6f 20 65 66 66 65 63 74 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 62 61 6e 64 77 69 64 74 68 20 | o.effect..If.there.is.bandwidth. |
| ea5c0 | 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 | available.on.the.physical.link,. |
| ea5e0 | 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 46 51 2d 43 6f 64 65 6c 20 69 6e 74 6f 20 61 20 63 | you.can.embed_.FQ-Codel.into.a.c |
| ea600 | 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 73 | lassful.shaping.policy.to.make.s |
| ea620 | 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 65 20 71 75 65 75 65 2e 20 49 66 20 79 6f 75 20 61 72 | ure.it.owns.the.queue..If.you.ar |
| ea640 | 65 20 6e 6f 74 20 73 75 72 65 20 69 66 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 65 6d 62 65 64 20 | e.not.sure.if.you.need.to.embed. |
| ea660 | 79 6f 75 72 20 46 51 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 53 68 61 70 | your.FQ-CoDel.policy.into.a.Shap |
| ea680 | 65 72 2c 20 64 6f 20 69 74 2e 00 46 52 52 00 46 52 52 20 6f 66 66 65 72 73 20 6f 6e 6c 79 20 70 | er,.do.it..FRR.FRR.offers.only.p |
| ea6a0 | 61 72 74 69 61 6c 20 73 75 70 70 6f 72 74 20 66 6f 72 20 73 6f 6d 65 20 6f 66 20 74 68 65 20 72 | artial.support.for.some.of.the.r |
| ea6c0 | 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 65 78 74 65 6e 73 69 6f 6e 73 20 74 68 61 74 20 | outing.protocol.extensions.that. |
| ea6e0 | 61 72 65 20 75 73 65 64 20 77 69 74 68 20 4d 50 4c 53 2d 54 45 3b 20 69 74 20 64 6f 65 73 20 6e | are.used.with.MPLS-TE;.it.does.n |
| ea700 | 6f 74 20 73 75 70 70 6f 72 74 20 61 20 63 6f 6d 70 6c 65 74 65 20 52 53 56 50 2d 54 45 20 73 6f | ot.support.a.complete.RSVP-TE.so |
| ea720 | 6c 75 74 69 6f 6e 2e 00 46 52 52 20 73 75 70 70 6f 72 74 73 20 61 20 6e 65 77 20 77 61 79 20 6f | lution..FRR.supports.a.new.way.o |
| ea740 | 66 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 56 4c 41 4e 2d 74 6f 2d 56 4e 49 20 6d 61 70 70 69 6e | f.configuring.VLAN-to-VNI.mappin |
| ea760 | 67 73 20 66 6f 72 20 45 56 50 4e 2d 56 58 4c 41 4e 2c 20 77 68 65 6e 20 77 6f 72 6b 69 6e 67 20 | gs.for.EVPN-VXLAN,.when.working. |
| ea780 | 77 69 74 68 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 2e 20 49 6e 20 74 68 69 73 20 6e | with.the.Linux.kernel..In.this.n |
| ea7a0 | 65 77 20 77 61 79 2c 20 74 68 65 20 6d 61 70 70 69 6e 67 20 6f 66 20 61 20 56 4c 41 4e 20 74 6f | ew.way,.the.mapping.of.a.VLAN.to |
| ea7c0 | 20 61 20 3a 61 62 62 72 3a 60 56 4e 49 20 28 56 58 4c 41 4e 20 4e 65 74 77 6f 72 6b 20 49 64 65 | .a.:abbr:`VNI.(VXLAN.Network.Ide |
| ea7e0 | 6e 74 69 66 69 65 72 20 28 6f 72 20 56 58 4c 41 4e 20 53 65 67 6d 65 6e 74 20 49 44 29 29 60 20 | ntifier.(or.VXLAN.Segment.ID))`. |
| ea800 | 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6e 74 61 69 6e 65 | is.configured.against.a.containe |
| ea820 | 72 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 72 65 66 65 72 | r.VXLAN.interface.which.is.refer |
| ea840 | 72 65 64 20 74 6f 20 61 73 20 61 20 3a 61 62 62 72 3a 60 53 56 44 20 28 53 69 6e 67 6c 65 20 56 | red.to.as.a.:abbr:`SVD.(Single.V |
| ea860 | 58 4c 41 4e 20 64 65 76 69 63 65 29 60 2e 00 46 54 50 20 64 61 65 6d 6f 6e 00 46 61 63 69 6c 69 | XLAN.device)`..FTP.daemon.Facili |
| ea880 | 74 69 65 73 00 46 61 63 69 6c 69 74 69 65 73 20 63 61 6e 20 62 65 20 61 64 6a 75 73 74 65 64 20 | ties.Facilities.can.be.adjusted. |
| ea8a0 | 74 6f 20 6d 65 65 74 20 74 68 65 20 6e 65 65 64 73 20 6f 66 20 74 68 65 20 75 73 65 72 3a 00 46 | to.meet.the.needs.of.the.user:.F |
| ea8c0 | 61 63 69 6c 69 74 79 20 43 6f 64 65 00 46 61 69 6c 6f 76 65 72 00 46 61 69 6c 6f 76 65 72 20 52 | acility.Code.Failover.Failover.R |
| ea8e0 | 6f 75 74 65 73 00 46 61 69 6c 6f 76 65 72 20 6d 65 63 68 61 6e 69 73 6d 20 74 6f 20 75 73 65 20 | outes.Failover.mechanism.to.use. |
| ea900 | 66 6f 72 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 00 46 61 69 6c 6f 76 65 72 20 72 6f 75 | for.conntrack-sync..Failover.rou |
| ea920 | 74 65 73 20 61 72 65 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 72 6f 75 74 | tes.are.manually.configured.rout |
| ea940 | 65 73 2c 20 62 75 74 20 74 68 65 79 20 69 6e 73 74 61 6c 6c 20 74 6f 20 74 68 65 20 72 6f 75 74 | es,.but.they.install.to.the.rout |
| ea960 | 69 6e 67 20 74 61 62 6c 65 20 69 66 20 74 68 65 20 68 65 61 6c 74 68 2d 63 68 65 63 6b 20 74 61 | ing.table.if.the.health-check.ta |
| ea980 | 72 67 65 74 20 69 73 20 61 6c 69 76 65 2e 20 49 66 20 74 68 65 20 74 61 72 67 65 74 20 69 73 20 | rget.is.alive..If.the.target.is. |
| ea9a0 | 6e 6f 74 20 61 6c 69 76 65 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 6d 6f 76 65 64 20 66 | not.alive.the.route.is.removed.f |
| ea9c0 | 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 6e 74 69 6c 20 74 68 65 20 | rom.the.routing.table.until.the. |
| ea9e0 | 74 61 72 67 65 74 20 77 69 6c 6c 20 62 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 46 61 69 6c 6f 76 | target.will.be.available..Failov |
| eaa00 | 65 72 20 72 6f 75 74 65 73 20 61 72 65 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 | er.routes.are.manually.configure |
| eaa20 | 64 20 72 6f 75 74 65 73 2c 20 62 75 74 20 74 68 65 79 20 6f 6e 6c 79 20 69 6e 73 74 61 6c 6c 20 | d.routes,.but.they.only.install. |
| eaa40 | 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 69 66 20 74 68 65 20 68 65 61 6c | to.the.routing.table.if.the.heal |
| eaa60 | 74 68 2d 63 68 65 63 6b 20 74 61 72 67 65 74 20 69 73 20 61 6c 69 76 65 2e 20 49 66 20 74 68 65 | th-check.target.is.alive..If.the |
| eaa80 | 20 74 61 72 67 65 74 20 69 73 20 6e 6f 74 20 61 6c 69 76 65 20 74 68 65 20 72 6f 75 74 65 20 69 | .target.is.not.alive.the.route.i |
| eaaa0 | 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 | s.removed.from.the.routing.table |
| eaac0 | 20 75 6e 74 69 6c 20 74 68 65 20 74 61 72 67 65 74 20 62 65 63 6f 6d 65 73 20 61 76 61 69 6c 61 | .until.the.target.becomes.availa |
| eaae0 | 62 6c 65 2e 00 46 61 69 72 20 51 75 65 75 65 00 46 61 69 72 20 51 75 65 75 65 20 69 73 20 61 20 | ble..Fair.Queue.Fair.Queue.is.a. |
| eab00 | 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 28 77 6f 72 6b 2d 63 6f 6e 73 65 72 76 69 6e 67 29 20 70 6f | non-shaping.(work-conserving).po |
| eab20 | 6c 69 63 79 2c 20 73 6f 20 69 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 75 73 65 66 75 6c 20 | licy,.so.it.will.only.be.useful. |
| eab40 | 69 66 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 | if.your.outgoing.interface.is.re |
| eab60 | 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 79 4f 53 20 77 69 | ally.full..If.it.is.not,.VyOS.wi |
| eab80 | 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 46 61 69 72 20 51 75 | ll.not.own.the.queue.and.Fair.Qu |
| eaba0 | 65 75 65 20 77 69 6c 6c 20 68 61 76 65 20 6e 6f 20 65 66 66 65 63 74 2e 20 49 66 20 74 68 65 72 | eue.will.have.no.effect..If.ther |
| eabc0 | 65 20 69 73 20 62 61 6e 64 77 69 64 74 68 20 61 76 61 69 6c 61 62 6c 65 20 6f 6e 20 74 68 65 20 | e.is.bandwidth.available.on.the. |
| eabe0 | 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 79 6f 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 46 61 | physical.link,.you.can.embed_.Fa |
| eac00 | 69 72 2d 51 75 65 75 65 20 69 6e 74 6f 20 61 20 63 6c 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 | ir-Queue.into.a.classful.shaping |
| eac20 | 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 69 74 20 6f 77 6e 73 20 74 68 65 | .policy.to.make.sure.it.owns.the |
| eac40 | 20 71 75 65 75 65 2e 00 46 61 69 72 20 51 75 65 75 65 20 69 73 20 61 20 77 6f 72 6b 2d 63 6f 6e | .queue..Fair.Queue.is.a.work-con |
| eac60 | 73 65 72 76 69 6e 67 20 73 63 68 65 64 75 6c 65 72 20 77 68 69 63 68 20 73 63 68 65 64 75 6c 65 | serving.scheduler.which.schedule |
| eac80 | 73 20 74 68 65 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 6f 66 20 70 61 63 6b 65 74 73 20 62 61 | s.the.transmission.of.packets.ba |
| eaca0 | 73 65 64 20 6f 6e 20 66 6c 6f 77 73 2c 20 74 68 61 74 20 69 73 2c 20 69 74 20 62 61 6c 61 6e 63 | sed.on.flows,.that.is,.it.balanc |
| eacc0 | 65 73 20 74 72 61 66 66 69 63 20 64 69 73 74 72 69 62 75 74 69 6e 67 20 69 74 20 74 68 72 6f 75 | es.traffic.distributing.it.throu |
| eace0 | 67 68 20 64 69 66 66 65 72 65 6e 74 20 73 75 62 2d 71 75 65 75 65 73 20 69 6e 20 6f 72 64 65 72 | gh.different.sub-queues.in.order |
| ead00 | 20 74 6f 20 65 6e 73 75 72 65 20 66 61 69 72 6e 65 73 73 20 73 6f 20 74 68 61 74 20 65 61 63 68 | .to.ensure.fairness.so.that.each |
| ead20 | 20 66 6c 6f 77 20 69 73 20 61 62 6c 65 20 74 6f 20 73 65 6e 64 20 64 61 74 61 20 69 6e 20 74 75 | .flow.is.able.to.send.data.in.tu |
| ead40 | 72 6e 2c 20 70 72 65 76 65 6e 74 69 6e 67 20 61 6e 79 20 73 69 6e 67 6c 65 20 6f 6e 65 20 66 72 | rn,.preventing.any.single.one.fr |
| ead60 | 6f 6d 20 64 72 6f 77 6e 69 6e 67 20 6f 75 74 20 74 68 65 20 72 65 73 74 2e 00 46 61 73 74 4e 65 | om.drowning.out.the.rest..FastNe |
| ead80 | 74 4d 6f 6e 00 46 61 73 74 4e 65 74 4d 6f 6e 20 69 73 20 61 20 68 69 67 68 2d 70 65 72 66 6f 72 | tMon.FastNetMon.is.a.high-perfor |
| eada0 | 6d 61 6e 63 65 20 44 44 6f 53 20 64 65 74 65 63 74 6f 72 2f 73 65 6e 73 6f 72 20 62 75 69 6c 74 | mance.DDoS.detector/sensor.built |
| eadc0 | 20 6f 6e 20 74 6f 70 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 70 61 63 6b 65 74 20 63 61 70 74 75 | .on.top.of.multiple.packet.captu |
| eade0 | 72 65 20 65 6e 67 69 6e 65 73 3a 20 4e 65 74 46 6c 6f 77 2c 20 49 50 46 49 58 2c 20 73 46 6c 6f | re.engines:.NetFlow,.IPFIX,.sFlo |
| eae00 | 77 2c 20 41 46 5f 50 41 43 4b 45 54 20 28 70 6f 72 74 20 6d 69 72 72 6f 72 29 2e 20 49 74 20 63 | w,.AF_PACKET.(port.mirror)..It.c |
| eae20 | 61 6e 20 64 65 74 65 63 74 20 68 6f 73 74 73 20 69 6e 20 74 68 65 20 64 65 70 6c 6f 79 65 64 20 | an.detect.hosts.in.the.deployed. |
| eae40 | 6e 65 74 77 6f 72 6b 20 73 65 6e 64 69 6e 67 20 6f 72 20 72 65 63 65 69 76 69 6e 67 20 6c 61 72 | network.sending.or.receiving.lar |
| eae60 | 67 65 20 76 6f 6c 75 6d 65 73 20 6f 66 20 74 72 61 66 66 69 63 2c 20 70 61 63 6b 65 74 73 2f 62 | ge.volumes.of.traffic,.packets/b |
| eae80 | 79 74 65 73 2f 66 6c 6f 77 73 20 70 65 72 20 73 65 63 6f 6e 64 20 61 6e 64 20 70 65 72 66 6f 72 | ytes/flows.per.second.and.perfor |
| eaea0 | 6d 20 61 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 61 63 74 69 6f 6e 20 74 6f 20 68 61 6e 64 6c | m.a.configurable.action.to.handl |
| eaec0 | 65 20 74 68 61 74 20 65 76 65 6e 74 2c 20 73 75 63 68 20 61 73 20 63 61 6c 6c 69 6e 67 20 61 20 | e.that.event,.such.as.calling.a. |
| eaee0 | 63 75 73 74 6f 6d 20 73 63 72 69 70 74 2e 00 46 65 61 74 75 72 65 73 20 6f 66 20 74 68 65 20 43 | custom.script..Features.of.the.C |
| eaf00 | 75 72 72 65 6e 74 20 49 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 00 46 69 65 6c 64 00 46 69 6c 65 | urrent.Implementation.Field.File |
| eaf20 | 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 20 63 6f 6e 74 | .identified.by.`<filename>`.cont |
| eaf40 | 61 69 6e 69 6e 67 20 74 68 65 20 54 53 49 47 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b | aining.the.TSIG.authentication.k |
| eaf60 | 65 79 20 66 6f 72 20 52 46 43 32 31 33 36 20 6e 73 75 70 64 61 74 65 20 6f 6e 20 72 65 6d 6f 74 | ey.for.RFC2136.nsupdate.on.remot |
| eaf80 | 65 20 44 4e 53 20 73 65 72 76 65 72 2e 00 46 69 6c 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 | e.DNS.server..File.identified.by |
| eafa0 | 20 60 3c 6b 65 79 66 69 6c 65 3e 60 20 63 6f 6e 74 61 69 6e 69 6e 67 20 74 68 65 20 73 65 63 72 | .`<keyfile>`.containing.the.secr |
| eafc0 | 65 74 20 52 4e 44 43 20 6b 65 79 20 73 68 61 72 65 64 20 77 69 74 68 20 72 65 6d 6f 74 65 20 44 | et.RNDC.key.shared.with.remote.D |
| eafe0 | 4e 53 20 73 65 72 76 65 72 2e 00 46 69 6c 74 65 72 20 54 79 70 65 2d 33 20 73 75 6d 6d 61 72 79 | NS.server..Filter.Type-3.summary |
| eb000 | 2d 4c 53 41 73 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 20 6f | -LSAs.announced.to.other.areas.o |
| eb020 | 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 69 6e 74 72 61 2d 20 61 72 65 61 20 70 61 74 68 73 | riginated.from.intra-.area.paths |
| eb040 | 20 66 72 6f 6d 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 2e 20 54 68 69 73 20 63 6f 6d 6d 61 | .from.specified.area..This.comma |
| eb060 | 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 46 69 6c 74 | nd.makes.sense.in.ABR.only..Filt |
| eb080 | 65 72 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 62 61 73 65 64 20 6f 6e 20 66 61 63 69 | er.syslog.messages.based.on.faci |
| eb0a0 | 6c 69 74 79 20 61 6e 64 20 6c 65 76 65 6c 2e 00 46 69 6c 74 65 72 20 74 72 61 66 66 69 63 20 62 | lity.and.level..Filter.traffic.b |
| eb0c0 | 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 | ased.on.source/destination.addre |
| eb0e0 | 73 73 2e 00 46 69 6c 74 65 72 2d 49 64 3d 32 30 30 30 2f 33 30 30 30 20 28 6d 65 61 6e 73 20 32 | ss..Filter-Id=2000/3000.(means.2 |
| eb100 | 30 30 30 4b 62 69 74 20 64 6f 77 6e 2d 73 74 72 65 61 6d 20 72 61 74 65 20 61 6e 64 20 33 30 30 | 000Kbit.down-stream.rate.and.300 |
| eb120 | 30 4b 62 69 74 20 75 70 2d 73 74 72 65 61 6d 20 72 61 74 65 29 00 46 69 6c 74 65 72 2d 49 64 3d | 0Kbit.up-stream.rate).Filter-Id= |
| eb140 | 35 30 30 30 2f 34 30 30 30 20 28 6d 65 61 6e 73 20 35 30 30 30 4b 62 69 74 20 64 6f 77 6e 2d 73 | 5000/4000.(means.5000Kbit.down-s |
| eb160 | 74 72 65 61 6d 20 72 61 74 65 20 61 6e 64 20 34 30 30 30 4b 62 69 74 20 75 70 2d 73 74 72 65 61 | tream.rate.and.4000Kbit.up-strea |
| eb180 | 6d 20 72 61 74 65 29 20 49 66 20 61 74 74 72 69 62 75 74 65 20 46 69 6c 74 65 72 2d 49 64 20 72 | m.rate).If.attribute.Filter-Id.r |
| eb1a0 | 65 64 65 66 69 6e 65 64 2c 20 72 65 70 6c 61 63 65 20 69 74 20 69 6e 20 52 41 44 49 55 53 20 43 | edefined,.replace.it.in.RADIUS.C |
| eb1c0 | 6f 41 20 72 65 71 75 65 73 74 2e 00 46 69 6c 74 65 72 69 6e 67 00 46 69 6c 74 65 72 69 6e 67 20 | oA.request..Filtering.Filtering. |
| eb1e0 | 69 73 20 75 73 65 64 20 66 6f 72 20 62 6f 74 68 20 69 6e 70 75 74 20 61 6e 64 20 6f 75 74 70 75 | is.used.for.both.input.and.outpu |
| eb200 | 74 20 6f 66 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 4f 6e | t.of.the.routing.information..On |
| eb220 | 63 65 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 64 65 66 69 6e 65 64 2c 20 69 74 20 63 61 6e 20 | ce.filtering.is.defined,.it.can. |
| eb240 | 62 65 20 61 70 70 6c 69 65 64 20 69 6e 20 61 6e 79 20 64 69 72 65 63 74 69 6f 6e 2e 20 56 79 4f | be.applied.in.any.direction..VyO |
| eb260 | 53 20 6d 61 6b 65 73 20 66 69 6c 74 65 72 69 6e 67 20 70 6f 73 73 69 62 6c 65 20 75 73 69 6e 67 | S.makes.filtering.possible.using |
| eb280 | 20 61 63 6c 73 20 61 6e 64 20 70 72 65 66 69 78 20 6c 69 73 74 73 2e 00 46 69 6e 61 6c 6c 79 2c | .acls.and.prefix.lists..Finally, |
| eb2a0 | 20 74 6f 20 61 70 70 6c 79 20 74 68 65 20 70 6f 6c 69 63 79 20 72 6f 75 74 65 20 74 6f 20 69 6e | .to.apply.the.policy.route.to.in |
| eb2c0 | 67 72 65 73 73 20 74 72 61 66 66 69 63 20 6f 6e 20 6f 75 72 20 4c 41 4e 20 69 6e 74 65 72 66 61 | gress.traffic.on.our.LAN.interfa |
| eb2e0 | 63 65 2c 20 77 65 20 75 73 65 3a 00 46 69 72 65 77 61 6c 6c 00 46 69 72 65 77 61 6c 6c 20 2d 20 | ce,.we.use:.Firewall.Firewall.-. |
| eb300 | 49 50 76 34 20 52 75 6c 65 73 00 46 69 72 65 77 61 6c 6c 20 2d 20 49 50 76 36 20 52 75 6c 65 73 | IPv4.Rules.Firewall.-.IPv6.Rules |
| eb320 | 00 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 46 69 72 65 77 61 6c 6c | .Firewall.Configuration.Firewall |
| eb340 | 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 28 44 65 70 72 65 63 61 74 65 64 29 00 46 69 72 65 | .Configuration.(Deprecated).Fire |
| eb360 | 77 61 6c 6c 20 44 65 73 63 72 69 70 74 69 6f 6e 00 46 69 72 65 77 61 6c 6c 20 45 78 63 65 70 74 | wall.Description.Firewall.Except |
| eb380 | 69 6f 6e 73 00 46 69 72 65 77 61 6c 6c 20 4c 6f 67 73 00 46 69 72 65 77 61 6c 6c 20 52 75 6c 65 | ions.Firewall.Logs.Firewall.Rule |
| eb3a0 | 73 00 46 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 | s.Firewall.base.chain.to.configu |
| eb3c0 | 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 | re.firewall.filtering.rules.for. |
| eb3e0 | 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | transit.traffic.is.``set.firewal |
| eb400 | 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 | l.ipv4.forward.filter....``,.whi |
| eb420 | 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 | ch.happens.in.stage.5,.highlight |
| eb440 | 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 69 72 65 77 61 6c 6c 20 62 61 73 65 | ed.with.red.color..Firewall.base |
| eb460 | 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c | .chain.to.configure.firewall.fil |
| eb480 | 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 | tering.rules.for.transit.traffic |
| eb4a0 | 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 | .is.``set.firewall.ipv6.forward. |
| eb4c0 | 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 | filter....``,.which.happens.in.s |
| eb4e0 | 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c | tage.5,.highlighted.with.red.col |
| eb500 | 6f 72 2e 00 46 69 72 65 77 61 6c 6c 20 64 79 6e 61 6d 69 63 20 67 72 6f 75 70 73 20 61 72 65 20 | or..Firewall.dynamic.groups.are. |
| eb520 | 64 69 66 66 65 72 65 6e 74 20 66 72 6f 6d 20 61 6c 6c 20 74 68 65 20 67 72 6f 75 70 73 20 64 65 | different.from.all.the.groups.de |
| eb540 | 66 69 6e 65 64 20 70 72 65 76 69 6f 75 73 6c 79 20 62 65 63 61 75 73 65 2c 20 6e 6f 74 20 6f 6e | fined.previously.because,.not.on |
| eb560 | 6c 79 20 74 68 65 79 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 73 6f 75 72 63 65 2f 64 65 | ly.they.can.be.used.as.source/de |
| eb580 | 73 74 69 6e 61 74 69 6f 6e 20 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 62 75 74 | stination.in.firewall.rules,.but |
| eb5a0 | 20 6d 65 6d 62 65 72 73 20 6f 66 20 74 68 65 73 65 20 67 72 6f 75 70 73 20 61 72 65 20 6e 6f 74 | .members.of.these.groups.are.not |
| eb5c0 | 20 64 65 66 69 6e 65 64 20 73 74 61 74 69 63 61 6c 6c 79 20 75 73 69 6e 67 20 76 79 6f 73 20 63 | .defined.statically.using.vyos.c |
| eb5e0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 00 46 69 | onfiguration..Firewall.groups.Fi |
| eb600 | 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 72 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 63 74 69 | rewall.groups.represent.collecti |
| eb620 | 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 2c 20 70 | ons.of.IP.addresses,.networks,.p |
| eb640 | 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 64 6f 6d 61 69 6e 73 2e 20 | orts,.mac.addresses.or.domains.. |
| eb660 | 4f 6e 63 65 20 63 72 65 61 74 65 64 2c 20 61 20 67 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 | Once.created,.a.group.can.be.ref |
| eb680 | 65 72 65 6e 63 65 64 20 62 79 20 66 69 72 65 77 61 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c | erenced.by.firewall,.nat.and.pol |
| eb6a0 | 69 63 79 20 72 6f 75 74 65 20 72 75 6c 65 73 20 61 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 | icy.route.rules.as.either.a.sour |
| eb6c0 | 63 65 20 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 63 68 65 72 2e 20 4d 65 6d 62 65 | ce.or.destination.matcher..Membe |
| eb6e0 | 72 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 6f 72 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 | rs.can.be.added.or.removed.from. |
| eb700 | 61 20 67 72 6f 75 70 20 77 69 74 68 6f 75 74 20 63 68 61 6e 67 65 73 20 74 6f 2c 20 6f 72 20 74 | a.group.without.changes.to,.or.t |
| eb720 | 68 65 20 6e 65 65 64 20 74 6f 20 72 65 6c 6f 61 64 2c 20 69 6e 64 69 76 69 64 75 61 6c 20 66 69 | he.need.to.reload,.individual.fi |
| eb740 | 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 72 65 | rewall.rules..Firewall.groups.re |
| eb760 | 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 65 73 | present.collections.of.IP.addres |
| eb780 | 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 65 73 | ses,.networks,.ports,.mac.addres |
| eb7a0 | 73 65 73 2c 20 64 6f 6d 61 69 6e 73 20 6f 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 63 65 | ses,.domains.or.interfaces..Once |
| eb7c0 | 20 63 72 65 61 74 65 64 2c 20 61 20 67 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e | .created,.a.group.can.be.referen |
| eb7e0 | 63 65 64 20 62 79 20 66 69 72 65 77 61 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 20 | ced.by.firewall,.nat.and.policy. |
| eb800 | 72 6f 75 74 65 20 72 75 6c 65 73 20 61 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 6f | route.rules.as.either.a.source.o |
| eb820 | 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 63 68 65 72 2c 20 61 6e 64 20 61 73 20 69 6e | r.destination.matcher,.and.as.in |
| eb840 | 62 70 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 6f 66 20 69 6e | bpund/outbound.in.the.case.of.in |
| eb860 | 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 00 46 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 20 72 | terface.group..Firewall.groups.r |
| eb880 | 65 70 72 65 73 65 6e 74 20 63 6f 6c 6c 65 63 74 69 6f 6e 73 20 6f 66 20 49 50 20 61 64 64 72 65 | epresent.collections.of.IP.addre |
| eb8a0 | 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 2c 20 70 6f 72 74 73 2c 20 6d 61 63 20 61 64 64 72 65 | sses,.networks,.ports,.mac.addre |
| eb8c0 | 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 20 6f 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4f 6e 63 | sses,.domains.or.interfaces..Onc |
| eb8e0 | 65 20 63 72 65 61 74 65 64 2c 20 61 20 67 72 6f 75 70 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 | e.created,.a.group.can.be.refere |
| eb900 | 6e 63 65 64 20 62 79 20 66 69 72 65 77 61 6c 6c 2c 20 6e 61 74 20 61 6e 64 20 70 6f 6c 69 63 79 | nced.by.firewall,.nat.and.policy |
| eb920 | 20 72 6f 75 74 65 20 72 75 6c 65 73 20 61 73 20 65 69 74 68 65 72 20 61 20 73 6f 75 72 63 65 20 | .route.rules.as.either.a.source. |
| eb940 | 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 63 68 65 72 2c 20 61 6e 64 2f 6f 72 20 61 | or.destination.matcher,.and/or.a |
| eb960 | 73 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 69 6e 20 74 68 65 20 63 61 73 65 20 6f | s.inbound/outbound.in.the.case.o |
| eb980 | 66 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 00 46 69 72 65 77 61 6c 6c 20 6d 61 72 6b | f.interface.group..Firewall.mark |
| eb9a0 | 2e 20 49 74 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 6c 6f 61 64 62 61 6c 61 6e 63 69 6e 67 20 74 | ..It.possible.to.loadbalancing.t |
| eb9c0 | 72 61 66 66 69 63 20 62 61 73 65 64 20 6f 6e 20 60 60 66 77 6d 61 72 6b 60 60 20 76 61 6c 75 65 | raffic.based.on.``fwmark``.value |
| eb9e0 | 00 46 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 61 70 70 | .Firewall.policy.can.also.be.app |
| eba00 | 6c 69 65 64 20 74 6f 20 74 68 65 20 74 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 | lied.to.the.tunnel.interface.for |
| eba20 | 20 60 6c 6f 63 61 6c 60 2c 20 60 69 6e 60 2c 20 61 6e 64 20 60 6f 75 74 60 20 64 69 72 65 63 74 | .`local`,.`in`,.and.`out`.direct |
| eba40 | 69 6f 6e 73 20 61 6e 64 20 66 75 6e 63 74 69 6f 6e 73 20 69 64 65 6e 74 69 63 61 6c 6c 79 20 74 | ions.and.functions.identically.t |
| eba60 | 6f 20 65 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 46 69 72 65 77 61 6c 6c 20 | o.ethernet.interfaces..Firewall. |
| eba80 | 72 75 6c 65 73 20 61 72 65 20 77 72 69 74 74 65 6e 20 61 73 20 6e 6f 72 6d 61 6c 2c 20 75 73 69 | rules.are.written.as.normal,.usi |
| ebaa0 | 6e 67 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 68 | ng.the.internal.IP.address.as.th |
| ebac0 | 65 20 73 6f 75 72 63 65 20 6f 66 20 6f 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 61 6e 64 20 74 | e.source.of.outbound.rules.and.t |
| ebae0 | 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 66 20 69 6e 62 6f 75 6e 64 20 72 75 6c 65 73 2e | he.destination.of.inbound.rules. |
| ebb00 | 00 46 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 44 65 73 74 69 6e 61 74 69 6f 6e 20 | .Firewall.rules.for.Destination. |
| ebb20 | 4e 41 54 00 46 69 72 65 77 61 6c 6c 2d 4c 65 67 61 63 79 00 46 69 72 6d 77 61 72 65 20 55 70 64 | NAT.Firewall-Legacy.Firmware.Upd |
| ebb40 | 61 74 65 00 46 69 72 73 74 20 68 6f 70 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 61 20 72 6f 75 | ate.First.hop.interface.of.a.rou |
| ebb60 | 74 65 20 74 6f 20 6d 61 74 63 68 2e 00 46 69 72 73 74 20 6f 66 20 61 6c 6c 20 79 6f 75 20 6d 75 | te.to.match..First.of.all.you.mu |
| ebb80 | 73 74 20 63 6f 6e 66 69 67 75 72 65 20 42 47 50 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 | st.configure.BGP.router.with.the |
| ebba0 | 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e | .:abbr:`ASN.(Autonomous.System.N |
| ebbc0 | 75 6d 62 65 72 29 60 2e 20 54 68 65 20 41 53 20 6e 75 6d 62 65 72 20 69 73 20 61 6e 20 69 64 65 | umber)`..The.AS.number.is.an.ide |
| ebbe0 | 6e 74 69 66 69 65 72 20 66 6f 72 20 74 68 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 | ntifier.for.the.autonomous.syste |
| ebc00 | 6d 2e 20 54 68 65 20 42 47 50 20 70 72 6f 74 6f 63 6f 6c 20 75 73 65 73 20 74 68 65 20 41 53 20 | m..The.BGP.protocol.uses.the.AS. |
| ebc20 | 6e 75 6d 62 65 72 20 66 6f 72 20 64 65 74 65 63 74 69 6e 67 20 77 68 65 74 68 65 72 20 74 68 65 | number.for.detecting.whether.the |
| ebc40 | 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 69 6e 74 65 72 6e 61 6c 20 6f 72 20 65 | .BGP.connection.is.internal.or.e |
| ebc60 | 78 74 65 72 6e 61 6c 2e 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 | xternal..VyOS.does.not.have.a.sp |
| ebc80 | 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 42 47 50 20 70 | ecial.command.to.start.the.BGP.p |
| ebca0 | 72 6f 63 65 73 73 2e 20 54 68 65 20 42 47 50 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 | rocess..The.BGP.process.starts.w |
| ebcc0 | 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 6e 65 69 67 68 62 6f 72 20 69 73 20 63 6f 6e 66 69 67 | hen.the.first.neighbor.is.config |
| ebce0 | 75 72 65 64 2e 00 46 69 72 73 74 20 6f 66 20 61 6c 6c 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 63 | ured..First.of.all,.we.need.to.c |
| ebd00 | 72 65 61 74 65 20 61 20 43 41 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 | reate.a.CA.root.certificate.and. |
| ebd20 | 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 | server.certificate.on.the.server |
| ebd40 | 20 73 69 64 65 2e 00 46 69 72 73 74 20 73 63 65 6e 61 72 69 6f 3a 20 61 70 70 6c 79 20 64 65 73 | .side..First.scenario:.apply.des |
| ebd60 | 74 69 6e 61 74 69 6f 6e 20 4e 41 54 20 66 6f 72 20 61 6c 6c 20 48 54 54 50 20 74 72 61 66 66 69 | tination.NAT.for.all.HTTP.traffi |
| ebd80 | 63 20 63 6f 6d 6d 69 6e 67 20 74 68 72 6f 75 67 68 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 | c.comming.through.interface.eth0 |
| ebda0 | 2c 20 61 6e 64 20 75 73 65 72 20 34 20 62 61 63 6b 65 6e 64 73 2e 20 46 69 72 73 74 20 62 61 63 | ,.and.user.4.backends..First.bac |
| ebdc0 | 6b 65 6e 64 20 73 68 6f 75 6c 64 20 72 65 63 65 69 76 65 64 20 33 30 25 20 6f 66 20 74 68 65 20 | kend.should.received.30%.of.the. |
| ebde0 | 72 65 71 75 65 73 74 2c 20 73 65 63 6f 6e 64 20 62 61 63 6b 65 6e 64 20 73 68 6f 75 6c 64 20 67 | request,.second.backend.should.g |
| ebe00 | 65 74 20 32 30 25 2c 20 74 68 69 72 64 20 31 35 25 20 61 6e 64 20 74 68 65 20 66 6f 75 72 74 68 | et.20%,.third.15%.and.the.fourth |
| ebe20 | 20 33 35 25 20 57 65 20 77 69 6c 6c 20 75 73 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 | .35%.We.will.use.source.and.dest |
| ebe40 | 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 66 6f 72 20 68 61 73 68 20 67 65 6e 65 72 61 74 | ination.address.for.hash.generat |
| ebe60 | 69 6f 6e 2e 00 46 69 72 73 74 20 73 74 65 70 73 00 46 69 72 73 74 20 74 68 65 20 4f 54 50 20 6b | ion..First.steps.First.the.OTP.k |
| ebe80 | 65 79 73 20 6d 75 73 74 20 62 65 20 67 65 6e 65 72 61 74 65 64 20 61 6e 64 20 73 65 6e 74 20 74 | eys.must.be.generated.and.sent.t |
| ebea0 | 6f 20 74 68 65 20 75 73 65 72 20 61 6e 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 | o.the.user.and.to.the.configurat |
| ebec0 | 69 6f 6e 3a 00 46 69 72 73 74 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 | ion:.First.we.need.to.specify.th |
| ebee0 | 65 20 62 61 73 69 63 20 73 65 74 74 69 6e 67 73 2e 20 31 31 39 34 2f 55 44 50 20 69 73 20 74 68 | e.basic.settings..1194/UDP.is.th |
| ebf00 | 65 20 64 65 66 61 75 6c 74 2e 20 54 68 65 20 60 60 70 65 72 73 69 73 74 65 6e 74 2d 74 75 6e 6e | e.default..The.``persistent-tunn |
| ebf20 | 65 6c 60 60 20 6f 70 74 69 6f 6e 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2c 20 61 73 20 69 | el``.option.is.recommended,.as.i |
| ebf40 | 74 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 54 55 4e 2f 54 41 50 20 64 65 76 69 63 65 20 66 72 | t.prevents.the.TUN/TAP.device.fr |
| ebf60 | 6f 6d 20 63 6c 6f 73 69 6e 67 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 73 65 74 73 20 | om.closing.on.connection.resets. |
| ebf80 | 6f 72 20 64 61 65 6d 6f 6e 20 72 65 6c 6f 61 64 73 2e 00 46 69 72 73 74 20 77 65 20 6e 65 65 64 | or.daemon.reloads..First.we.need |
| ebfa0 | 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 62 61 73 69 63 20 73 65 74 74 69 6e 67 73 2e 20 | .to.specify.the.basic.settings.. |
| ebfc0 | 31 31 39 34 2f 55 44 50 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 2e 20 54 68 65 20 60 60 70 | 1194/UDP.is.the.default..The.``p |
| ebfe0 | 65 72 73 69 73 74 65 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 6f 70 74 69 6f 6e 20 69 73 20 72 65 63 | ersistent-tunnel``.option.is.rec |
| ec000 | 6f 6d 6d 65 6e 64 65 64 2c 20 69 74 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 54 55 4e 2f 54 41 | ommended,.it.prevents.the.TUN/TA |
| ec020 | 50 20 64 65 76 69 63 65 20 66 72 6f 6d 20 63 6c 6f 73 69 6e 67 20 6f 6e 20 63 6f 6e 6e 65 63 74 | P.device.from.closing.on.connect |
| ec040 | 69 6f 6e 20 72 65 73 65 74 73 20 6f 72 20 64 61 65 6d 6f 6e 20 72 65 6c 6f 61 64 73 2e 00 46 69 | ion.resets.or.daemon.reloads..Fi |
| ec060 | 72 73 74 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 64 65 70 6c 6f 79 20 61 6e 20 52 | rst.you.will.need.to.deploy.an.R |
| ec080 | 50 4b 49 20 76 61 6c 69 64 61 74 6f 72 20 66 6f 72 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 74 | PKI.validator.for.your.routers.t |
| ec0a0 | 6f 20 75 73 65 2e 20 4e 4c 6e 65 74 20 4c 61 62 73 20 70 72 6f 76 69 64 65 73 20 61 20 63 6f 6c | o.use..NLnet.Labs.provides.a.col |
| ec0c0 | 6c 65 63 74 69 6f 6e 20 6f 66 20 73 6f 66 74 77 61 72 65 5f 20 79 6f 75 20 63 61 6e 20 63 6f 6d | lection.of.software_.you.can.com |
| ec0e0 | 70 61 72 65 20 61 6e 64 20 73 65 74 74 6c 65 20 6f 6e 20 6f 6e 65 2e 20 4f 6e 63 65 20 79 6f 75 | pare.and.settle.on.one..Once.you |
| ec100 | 72 20 73 65 72 76 65 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 79 6f 75 20 63 61 6e 20 73 74 61 72 | r.server.is.running.you.can.star |
| ec120 | 74 20 76 61 6c 69 64 61 74 69 6e 67 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 46 69 72 73 | t.validating.announcements..Firs |
| ec140 | 74 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 64 65 70 6c 6f 79 20 61 6e 20 52 50 4b | t.you.will.need.to.deploy.an.RPK |
| ec160 | 49 20 76 61 6c 69 64 61 74 6f 72 20 66 6f 72 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 74 6f 20 | I.validator.for.your.routers.to. |
| ec180 | 75 73 65 2e 20 54 68 65 20 52 49 50 45 20 4e 43 43 20 68 65 6c 70 66 75 6c 6c 79 20 70 72 6f 76 | use..The.RIPE.NCC.helpfully.prov |
| ec1a0 | 69 64 65 20 60 73 6f 6d 65 20 69 6e 73 74 72 75 63 74 69 6f 6e 73 60 5f 20 74 6f 20 67 65 74 20 | ide.`some.instructions`_.to.get. |
| ec1c0 | 79 6f 75 20 73 74 61 72 74 65 64 20 77 69 74 68 20 73 65 76 65 72 61 6c 20 64 69 66 66 65 72 65 | you.started.with.several.differe |
| ec1e0 | 6e 74 20 6f 70 74 69 6f 6e 73 2e 20 20 4f 6e 63 65 20 79 6f 75 72 20 73 65 72 76 65 72 20 69 73 | nt.options...Once.your.server.is |
| ec200 | 20 72 75 6e 6e 69 6e 67 20 79 6f 75 20 63 61 6e 20 73 74 61 72 74 20 76 61 6c 69 64 61 74 69 6e | .running.you.can.start.validatin |
| ec220 | 67 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 46 69 72 73 74 2c 20 61 6c 6c 20 74 72 61 66 | g.announcements..First,.all.traf |
| ec240 | 66 69 63 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 61 | fic.is.received.by.the.router,.a |
| ec260 | 6e 64 20 69 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 69 6e 20 74 68 65 20 2a 2a 70 72 65 72 | nd.it.is.processed.in.the.**prer |
| ec280 | 6f 75 74 69 6e 67 2a 2a 20 73 65 63 74 69 6f 6e 2e 00 46 69 72 73 74 2c 20 6f 6e 20 62 6f 74 68 | outing**.section..First,.on.both |
| ec2a0 | 20 72 6f 75 74 65 72 73 20 72 75 6e 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d | .routers.run.the.operational.com |
| ec2c0 | 6d 61 6e 64 20 22 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 6e 73 74 | mand."generate.pki.key-pair.inst |
| ec2e0 | 61 6c 6c 20 3c 6b 65 79 2d 70 61 69 72 20 6e 61 6d 3e 3e 22 2e 20 59 6f 75 20 6d 61 79 20 63 68 | all.<key-pair.nam>>"..You.may.ch |
| ec300 | 6f 6f 73 65 20 64 69 66 66 65 72 65 6e 74 20 6c 65 6e 67 74 68 20 74 68 61 6e 20 32 30 34 38 20 | oose.different.length.than.2048. |
| ec320 | 6f 66 20 63 6f 75 72 73 65 2e 00 46 69 72 73 74 2c 20 6f 6e 20 62 6f 74 68 20 72 6f 75 74 65 72 | of.course..First,.on.both.router |
| ec340 | 73 20 72 75 6e 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 22 67 | s.run.the.operational.command."g |
| ec360 | 65 6e 65 72 61 74 65 20 70 6b 69 20 6b 65 79 2d 70 61 69 72 20 69 6e 73 74 61 6c 6c 20 3c 6b 65 | enerate.pki.key-pair.install.<ke |
| ec380 | 79 2d 70 61 69 72 20 6e 61 6d 65 3e 22 2e 20 59 6f 75 20 6d 61 79 20 63 68 6f 6f 73 65 20 64 69 | y-pair.name>"..You.may.choose.di |
| ec3a0 | 66 66 65 72 65 6e 74 20 6c 65 6e 67 74 68 20 74 68 61 6e 20 32 30 34 38 20 6f 66 20 63 6f 75 72 | fferent.length.than.2048.of.cour |
| ec3c0 | 73 65 2e 00 46 69 72 73 74 2c 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 73 20 67 65 | se..First,.one.of.the.systems.ge |
| ec3e0 | 6e 65 72 61 74 65 20 74 68 65 20 6b 65 79 20 75 73 69 6e 67 20 74 68 65 20 3a 72 65 66 3a 60 67 | nerate.the.key.using.the.:ref:`g |
| ec400 | 65 6e 65 72 61 74 65 20 70 6b 69 20 6f 70 65 6e 76 70 6e 20 73 68 61 72 65 64 2d 73 65 63 72 65 | enerate.pki.openvpn.shared-secre |
| ec420 | 74 3c 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 3e 60 20 | t<configuration/pki/index:pki>`. |
| ec440 | 63 6f 6d 6d 61 6e 64 2e 20 4f 6e 63 65 20 67 65 6e 65 72 61 74 65 64 2c 20 79 6f 75 20 77 69 6c | command..Once.generated,.you.wil |
| ec460 | 6c 20 6e 65 65 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 6f 6e 20 74 68 | l.need.to.install.this.key.on.th |
| ec480 | 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 2c 20 74 68 65 6e 20 63 6f 70 79 20 61 6e 64 20 69 6e | e.local.system,.then.copy.and.in |
| ec4a0 | 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 | stall.this.key.to.the.remote.rou |
| ec4c0 | 74 65 72 2e 00 46 69 72 73 74 2c 20 77 65 20 63 72 65 61 74 65 20 74 68 65 20 72 6f 6f 74 20 63 | ter..First,.we.create.the.root.c |
| ec4e0 | 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2e 00 46 69 72 73 74 2c 20 79 6f 75 | ertificate.authority..First,.you |
| ec500 | 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 6b 65 79 20 62 79 20 72 75 6e 6e 69 | .need.to.generate.a.key.by.runni |
| ec520 | 6e 67 20 60 60 72 75 6e 20 67 65 6e 65 72 61 74 65 20 70 6b 69 20 6f 70 65 6e 76 70 6e 20 73 68 | ng.``run.generate.pki.openvpn.sh |
| ec540 | 61 72 65 64 2d 73 65 63 72 65 74 20 69 6e 73 74 61 6c 6c 20 3c 6e 61 6d 65 3e 60 60 20 66 72 6f | ared-secret.install.<name>``.fro |
| ec560 | 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 20 59 6f 75 20 63 61 6e 20 75 73 | m.configuration.mode..You.can.us |
| ec580 | 65 20 61 6e 79 20 6e 61 6d 65 2c 20 77 65 20 77 69 6c 6c 20 75 73 65 20 60 60 73 32 73 60 60 2e | e.any.name,.we.will.use.``s2s``. |
| ec5a0 | 00 46 6c 61 73 68 00 46 6c 61 73 68 20 4f 76 65 72 72 69 64 65 00 46 6c 65 78 56 50 4e 20 76 65 | .Flash.Flash.Override.FlexVPN.ve |
| ec5c0 | 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 | ndor.ID.payload.(IKEv2.only),.wh |
| ec5e0 | 69 63 68 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 | ich.is.required.in.order.to.make |
| ec600 | 20 43 69 73 63 6f 20 62 72 61 6e 64 20 64 65 76 69 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 | .Cisco.brand.devices.allow.negot |
| ec620 | 69 61 74 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 | iating.a.local.traffic.selector. |
| ec640 | 28 66 72 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 | (from.strongSwan's.point.of.view |
| ec660 | 29 20 74 68 61 74 20 69 73 20 6e 6f 74 20 74 68 65 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 | ).that.is.not.the.assigned.virtu |
| ec680 | 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 66 20 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 | al.IP.address.if.such.an.address |
| ec6a0 | 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e | .is.requested.by.strongSwan..Sen |
| ec6c0 | 64 69 6e 67 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 | ding.the.Cisco.FlexVPN.vendor.ID |
| ec6e0 | 20 70 72 65 76 65 6e 74 73 20 74 68 65 20 70 65 65 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e | .prevents.the.peer.from.narrowin |
| ec700 | 67 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 27 73 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 | g.the.initiator's.local.traffic. |
| ec720 | 73 65 6c 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c 6f 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e | selector.and.allows.it.to.e.g..n |
| ec740 | 65 67 6f 74 69 61 74 65 20 61 20 54 53 20 6f 66 20 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e | egotiate.a.TS.of.0.0.0.0/0.==.0. |
| ec760 | 30 2e 30 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 | 0.0.0/0.instead..This.has.been.t |
| ec780 | 65 73 74 65 64 20 77 69 74 68 20 61 20 22 74 75 6e 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 | ested.with.a."tunnel.mode.ipsec. |
| ec7a0 | 69 70 76 34 22 20 43 69 73 63 6f 20 74 65 6d 70 6c 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 | ipv4".Cisco.template.but.should. |
| ec7c0 | 61 6c 73 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 45 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b | also.work.for.GRE.encapsulation; |
| ec7e0 | 00 46 6c 6f 77 20 41 63 63 6f 75 6e 74 69 6e 67 00 46 6c 6f 77 20 45 78 70 6f 72 74 00 46 6c 6f | .Flow.Accounting.Flow.Export.Flo |
| ec800 | 77 20 61 6e 64 20 70 61 63 6b 65 74 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 00 46 6c 6f | w.and.packet-based.balancing.Flo |
| ec820 | 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 73 6f 75 72 63 65 2d 64 65 73 74 69 6e 61 | ws.are.defined.by.source-destina |
| ec840 | 74 69 6f 6e 20 68 6f 73 74 20 70 61 69 72 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e | tion.host.pairs..Flows.are.defin |
| ec860 | 65 64 20 62 79 20 74 68 65 20 35 2d 74 75 70 6c 65 2e 20 46 61 69 72 6e 65 73 73 20 69 73 20 61 | ed.by.the.5-tuple..Fairness.is.a |
| ec880 | 70 70 6c 69 65 64 20 66 69 72 73 74 20 6f 76 65 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 | pplied.first.over.destination.ad |
| ec8a0 | 64 72 65 73 73 65 73 2c 20 74 68 65 6e 20 6f 76 65 72 20 69 6e 64 69 76 69 64 75 61 6c 20 66 6c | dresses,.then.over.individual.fl |
| ec8c0 | 6f 77 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 35 2d | ows..Flows.are.defined.by.the.5- |
| ec8e0 | 74 75 70 6c 65 2e 20 46 61 69 72 6e 65 73 73 20 69 73 20 61 70 70 6c 69 65 64 20 66 69 72 73 74 | tuple..Fairness.is.applied.first |
| ec900 | 20 6f 76 65 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 6e 20 6f 76 65 | .over.source.addresses,.then.ove |
| ec920 | 72 20 69 6e 64 69 76 69 64 75 61 6c 20 66 6c 6f 77 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 | r.individual.flows..Flows.are.de |
| ec940 | 66 69 6e 65 64 20 62 79 20 74 68 65 20 65 6e 74 69 72 65 20 35 2d 74 75 70 6c 65 20 28 73 6f 75 | fined.by.the.entire.5-tuple.(sou |
| ec960 | 72 63 65 20 49 50 20 61 64 64 72 65 73 73 2c 20 73 6f 75 72 63 65 20 70 6f 72 74 2c 20 64 65 73 | rce.IP.address,.source.port,.des |
| ec980 | 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e | tination.IP.address,.destination |
| ec9a0 | 20 70 6f 72 74 2c 20 74 72 61 6e 73 70 6f 72 74 20 70 72 6f 74 6f 63 6f 6c 29 2e 00 46 6c 6f 77 | .port,.transport.protocol)..Flow |
| ec9c0 | 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 6f 6e 6c 79 20 62 79 20 64 65 73 74 69 6e 61 74 69 6f | s.are.defined.only.by.destinatio |
| ec9e0 | 6e 20 61 64 64 72 65 73 73 2e 00 46 6c 6f 77 73 20 61 72 65 20 64 65 66 69 6e 65 64 20 6f 6e 6c | n.address..Flows.are.defined.onl |
| eca00 | 79 20 62 79 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 00 46 6c 6f 77 73 20 63 61 6e 20 62 | y.by.source.address..Flows.can.b |
| eca20 | 65 20 65 78 70 6f 72 74 65 64 20 76 69 61 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 70 72 6f | e.exported.via.two.different.pro |
| eca40 | 74 6f 63 6f 6c 73 3a 20 4e 65 74 46 6c 6f 77 20 28 76 65 72 73 69 6f 6e 73 20 35 2c 20 39 20 61 | tocols:.NetFlow.(versions.5,.9.a |
| eca60 | 6e 64 20 31 30 2f 49 50 46 49 58 29 20 61 6e 64 20 73 46 6c 6f 77 2e 20 41 64 64 69 74 69 6f 6e | nd.10/IPFIX).and.sFlow..Addition |
| eca80 | 61 6c 6c 79 2c 20 79 6f 75 20 6d 61 79 20 73 61 76 65 20 66 6c 6f 77 73 20 74 6f 20 61 6e 20 69 | ally,.you.may.save.flows.to.an.i |
| ecaa0 | 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c 65 20 69 6e 74 65 72 6e 61 6c 6c 79 20 69 6e 20 61 20 72 | n-memory.table.internally.in.a.r |
| ecac0 | 6f 75 74 65 72 2e 00 46 6c 6f 77 74 61 62 6c 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 46 | outer..Flowtable.Configuration.F |
| ecae0 | 6c 6f 77 74 61 62 6c 65 73 20 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 64 65 66 69 6e 65 20 | lowtables..allows.you.to.define. |
| ecb00 | 61 20 66 61 73 74 70 61 74 68 20 74 68 72 6f 75 67 68 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 | a.fastpath.through.the.flowtable |
| ecb20 | 20 64 61 74 61 70 61 74 68 2e 20 54 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 73 75 70 70 6f 72 74 | .datapath..The.flowtable.support |
| ecb40 | 73 20 66 6f 72 20 74 68 65 20 6c 61 79 65 72 20 33 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 | s.for.the.layer.3.IPv4.and.IPv6. |
| ecb60 | 61 6e 64 20 74 68 65 20 6c 61 79 65 72 20 34 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 72 6f 74 | and.the.layer.4.TCP.and.UDP.prot |
| ecb80 | 6f 63 6f 6c 73 2e 00 46 6c 6f 77 74 61 62 6c 65 73 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 | ocols..Flowtables.Firewall.Confi |
| ecba0 | 67 75 72 61 74 69 6f 6e 00 46 6c 6f 77 74 61 62 6c 65 73 20 61 6c 6c 6f 77 20 79 6f 75 20 74 6f | guration.Flowtables.allow.you.to |
| ecbc0 | 20 64 65 66 69 6e 65 20 61 20 66 61 73 74 70 61 74 68 20 74 68 72 6f 75 67 68 20 74 68 65 20 66 | .define.a.fastpath.through.the.f |
| ecbe0 | 6c 6f 77 74 61 62 6c 65 20 64 61 74 61 70 61 74 68 2e 20 54 68 65 20 66 6c 6f 77 74 61 62 6c 65 | lowtable.datapath..The.flowtable |
| ecc00 | 20 73 75 70 70 6f 72 74 73 20 66 6f 72 20 74 68 65 20 6c 61 79 65 72 20 33 20 49 50 76 34 20 61 | .supports.for.the.layer.3.IPv4.a |
| ecc20 | 6e 64 20 49 50 76 36 20 61 6e 64 20 74 68 65 20 6c 61 79 65 72 20 34 20 54 43 50 20 61 6e 64 20 | nd.IPv6.and.the.layer.4.TCP.and. |
| ecc40 | 55 44 50 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 46 6c 75 73 68 69 6e 67 20 74 68 65 20 73 65 73 73 | UDP.protocols..Flushing.the.sess |
| ecc60 | 69 6f 6e 20 74 61 62 6c 65 20 77 69 6c 6c 20 63 61 75 73 65 20 6f 74 68 65 72 20 63 6f 6e 6e 65 | ion.table.will.cause.other.conne |
| ecc80 | 63 74 69 6f 6e 73 20 74 6f 20 66 61 6c 6c 20 62 61 63 6b 20 66 72 6f 6d 20 66 6c 6f 77 2d 62 61 | ctions.to.fall.back.from.flow-ba |
| ecca0 | 73 65 64 20 74 6f 20 70 61 63 6b 65 74 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 75 6e | sed.to.packet-based.balancing.un |
| eccc0 | 74 69 6c 20 65 61 63 68 20 66 6c 6f 77 20 69 73 20 72 65 65 73 74 61 62 6c 69 73 68 65 64 2e 00 | til.each.flow.is.reestablished.. |
| ecce0 | 46 6f 6c 6c 6f 77 20 74 68 65 20 53 53 48 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f | Follow.the.SSH.dynamic-protectio |
| ecd00 | 6e 20 6c 6f 67 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 53 53 48 20 73 65 72 76 65 72 20 6c 6f 67 | n.log..Follow.the.SSH.server.log |
| ecd20 | 2e 00 46 6f 6c 6c 6f 77 20 74 68 65 20 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 74 6f 20 67 65 6e | ..Follow.the.instructions.to.gen |
| ecd40 | 65 72 61 74 65 20 43 41 20 63 65 72 74 20 28 69 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | erate.CA.cert.(in.configuration. |
| ecd60 | 6d 6f 64 65 29 3a 00 46 6f 6c 6c 6f 77 20 74 68 65 20 69 6e 73 74 72 75 63 74 69 6f 6e 73 20 74 | mode):.Follow.the.instructions.t |
| ecd80 | 6f 20 67 65 6e 65 72 61 74 65 20 73 65 72 76 65 72 20 63 65 72 74 20 28 69 6e 20 63 6f 6e 66 69 | o.generate.server.cert.(in.confi |
| ecda0 | 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 29 3a 00 46 6f 6c 6c 6f 77 20 74 68 65 20 6c 6f 67 73 20 | guration.mode):.Follow.the.logs. |
| ecdc0 | 66 6f 72 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 73 65 72 76 69 63 65 2e 00 46 6f 72 20 3a | for.mDNS.repeater.service..For.: |
| ecde0 | 72 65 66 3a 60 62 69 64 69 72 65 63 74 69 6f 6e 61 6c 2d 6e 61 74 60 20 61 20 72 75 6c 65 20 66 | ref:`bidirectional-nat`.a.rule.f |
| ece00 | 6f 72 20 62 6f 74 68 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 61 6e 64 20 3a 72 | or.both.:ref:`source-nat`.and.:r |
| ece20 | 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 6e 65 65 64 73 20 74 6f 20 62 65 | ef:`destination-nat`.needs.to.be |
| ece40 | 20 63 72 65 61 74 65 64 2e 00 46 6f 72 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d | .created..For.:ref:`destination- |
| ece60 | 6e 61 74 60 20 72 75 6c 65 73 20 74 68 65 20 70 61 63 6b 65 74 73 20 64 65 73 74 69 6e 61 74 69 | nat`.rules.the.packets.destinati |
| ece80 | 6f 6e 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 62 79 20 74 | on.address.will.be.replaced.by.t |
| ecea0 | 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 20 69 6e 20 74 68 65 20 60 74 72 61 | he.specified.address.in.the.`tra |
| ecec0 | 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 60 20 63 6f 6d 6d 61 6e 64 2e 00 46 6f 72 20 3a | nslation.address`.command..For.: |
| ecee0 | 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 72 75 6c 65 73 20 74 68 65 20 70 61 63 6b 65 | ref:`source-nat`.rules.the.packe |
| ecf00 | 74 73 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 | ts.source.address.will.be.replac |
| ecf20 | 65 64 20 77 69 74 68 20 74 68 65 20 61 64 64 72 65 73 73 20 73 70 65 63 69 66 69 65 64 20 69 6e | ed.with.the.address.specified.in |
| ecf40 | 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 2e 20 41 20 70 6f 72 74 | .the.translation.command..A.port |
| ecf60 | 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 70 65 63 69 66 69 | .translation.can.also.be.specifi |
| ecf80 | 65 64 20 61 6e 64 20 69 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f | ed.and.is.part.of.the.translatio |
| ecfa0 | 6e 20 61 64 64 72 65 73 73 2e 00 46 6f 72 20 45 6e 63 72 79 70 74 69 6f 6e 3a 00 46 6f 72 20 48 | n.address..For.Encryption:.For.H |
| ecfc0 | 61 73 68 69 6e 67 3a 00 46 6f 72 20 49 53 2d 49 53 20 74 6f 70 20 6f 70 65 72 61 74 65 20 63 6f | ashing:.For.IS-IS.top.operate.co |
| ecfe0 | 72 72 65 63 74 6c 79 2c 20 6f 6e 65 20 6d 75 73 74 20 64 6f 20 74 68 65 20 65 71 75 69 76 61 6c | rrectly,.one.must.do.the.equival |
| ed000 | 65 6e 74 20 6f 66 20 61 20 52 6f 75 74 65 72 20 49 44 20 69 6e 20 43 4c 4e 53 2e 20 54 68 69 73 | ent.of.a.Router.ID.in.CLNS..This |
| ed020 | 20 52 6f 75 74 65 72 20 49 44 20 69 73 20 63 61 6c 6c 65 64 20 74 68 65 20 3a 61 62 62 72 3a 60 | .Router.ID.is.called.the.:abbr:` |
| ed040 | 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 2e 20 54 68 69 | NET.(Network.Entity.Title)`..Thi |
| ed060 | 73 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 65 20 66 6f 72 20 65 61 63 68 20 61 6e 64 20 65 76 | s.must.be.unique.for.each.and.ev |
| ed080 | 65 72 79 20 72 6f 75 74 65 72 20 74 68 61 74 20 69 73 20 6f 70 65 72 61 74 69 6e 67 20 69 6e 20 | ery.router.that.is.operating.in. |
| ed0a0 | 49 53 2d 49 53 2e 20 49 74 20 61 6c 73 6f 20 6d 75 73 74 20 6e 6f 74 20 62 65 20 64 75 70 6c 69 | IS-IS..It.also.must.not.be.dupli |
| ed0c0 | 63 61 74 65 64 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 73 61 6d 65 20 69 73 73 75 65 73 20 | cated.otherwise.the.same.issues. |
| ed0e0 | 74 68 61 74 20 6f 63 63 75 72 20 77 69 74 68 69 6e 20 4f 53 50 46 20 77 69 6c 6c 20 6f 63 63 75 | that.occur.within.OSPF.will.occu |
| ed100 | 72 20 77 69 74 68 69 6e 20 49 53 2d 49 53 20 77 68 65 6e 20 69 74 20 63 6f 6d 65 73 20 74 6f 20 | r.within.IS-IS.when.it.comes.to. |
| ed120 | 73 61 69 64 20 64 75 70 6c 69 63 61 74 69 6f 6e 2e 00 46 6f 72 20 49 6e 63 6f 6d 69 6e 67 20 61 | said.duplication..For.Incoming.a |
| ed140 | 6e 64 20 49 6d 70 6f 72 74 20 52 6f 75 74 65 2d 6d 61 70 73 20 69 66 20 77 65 20 72 65 63 65 69 | nd.Import.Route-maps.if.we.recei |
| ed160 | 76 65 20 61 20 76 36 20 67 6c 6f 62 61 6c 20 61 6e 64 20 76 36 20 4c 4c 20 61 64 64 72 65 73 73 | ve.a.v6.global.and.v6.LL.address |
| ed180 | 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 2c 20 74 68 65 6e 20 70 72 65 66 65 72 20 74 6f 20 75 | .for.the.route,.then.prefer.to.u |
| ed1a0 | 73 65 20 74 68 65 20 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 20 61 73 20 74 68 65 20 6e 65 78 | se.the.global.address.as.the.nex |
| ed1c0 | 74 68 6f 70 2e 00 46 6f 72 20 4c 6f 63 61 6c 20 55 73 65 72 73 00 46 6f 72 20 4f 70 65 6e 46 61 | thop..For.Local.Users.For.OpenFa |
| ed1e0 | 62 72 69 63 20 74 6f 20 6f 70 65 72 61 74 65 20 63 6f 72 72 65 63 74 6c 79 2c 20 6f 6e 65 20 6d | bric.to.operate.correctly,.one.m |
| ed200 | 75 73 74 20 64 6f 20 74 68 65 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 61 20 52 6f 75 74 65 | ust.do.the.equivalent.of.a.Route |
| ed220 | 72 20 49 44 20 69 6e 20 43 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 20 4e 65 74 77 6f 72 6b 20 53 | r.ID.in.Connectionless.Network.S |
| ed240 | 65 72 76 69 63 65 20 28 43 4c 4e 53 29 2e 20 54 68 69 73 20 52 6f 75 74 65 72 20 49 44 20 69 73 | ervice.(CLNS)..This.Router.ID.is |
| ed260 | 20 63 61 6c 6c 65 64 20 74 68 65 20 3a 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 | .called.the.:abbr:`NET.(Network. |
| ed280 | 45 6e 74 69 74 79 20 54 69 74 6c 65 29 60 2e 20 54 68 65 20 73 79 73 74 65 6d 20 69 64 65 6e 74 | Entity.Title)`..The.system.ident |
| ed2a0 | 69 66 69 65 72 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 20 | ifier.must.be.unique.within.the. |
| ed2c0 | 6e 65 74 77 6f 72 6b 00 46 6f 72 20 52 41 44 49 55 53 20 75 73 65 72 73 00 46 6f 72 20 55 53 42 | network.For.RADIUS.users.For.USB |
| ed2e0 | 20 70 6f 72 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 72 65 66 6f 72 20 74 | .port.information.please.refor.t |
| ed300 | 6f 3a 20 3a 72 65 66 3a 60 68 61 72 64 77 61 72 65 5f 75 73 62 60 2e 00 46 6f 72 20 61 20 68 65 | o:.:ref:`hardware_usb`..For.a.he |
| ed320 | 61 64 73 74 61 72 74 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 62 65 6c 6f 77 20 65 78 | adstart.you.can.use.the.below.ex |
| ed340 | 61 6d 70 6c 65 20 6f 6e 20 68 6f 77 20 74 6f 20 62 75 69 6c 64 20 61 20 62 6f 6e 64 20 77 69 74 | ample.on.how.to.build.a.bond.wit |
| ed360 | 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 56 79 4f 53 20 74 6f 20 61 20 | h.two.interfaces.from.VyOS.to.a. |
| ed380 | 4a 75 6e 69 70 65 72 20 45 58 20 53 77 69 74 63 68 20 73 79 73 74 65 6d 2e 00 46 6f 72 20 61 20 | Juniper.EX.Switch.system..For.a. |
| ed3a0 | 68 65 61 64 73 74 61 72 74 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 62 65 6c 6f 77 20 | headstart.you.can.use.the.below. |
| ed3c0 | 65 78 61 6d 70 6c 65 20 6f 6e 20 68 6f 77 20 74 6f 20 62 75 69 6c 64 20 61 20 62 6f 6e 64 2c 70 | example.on.how.to.build.a.bond,p |
| ed3e0 | 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 77 69 74 68 20 74 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 | ort-channel.with.two.interfaces. |
| ed400 | 66 72 6f 6d 20 56 79 4f 53 20 74 6f 20 61 20 41 72 75 62 61 2f 48 50 20 32 35 31 30 47 20 73 77 | from.VyOS.to.a.Aruba/HP.2510G.sw |
| ed420 | 69 74 63 68 2e 00 46 6f 72 20 61 20 6c 61 72 67 65 20 61 6d 6f 75 6e 74 20 6f 66 20 70 72 69 76 | itch..For.a.large.amount.of.priv |
| ed440 | 61 74 65 20 6d 61 63 68 69 6e 65 73 20 62 65 68 69 6e 64 20 74 68 65 20 4e 41 54 20 79 6f 75 72 | ate.machines.behind.the.NAT.your |
| ed460 | 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 6d 69 67 68 74 20 74 6f 20 62 65 20 62 69 67 67 65 72 | .address.pool.might.to.be.bigger |
| ed480 | 2e 20 55 73 65 20 61 6e 79 20 61 64 64 72 65 73 73 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 31 | ..Use.any.address.in.the.range.1 |
| ed4a0 | 30 30 2e 36 34 2e 30 2e 31 30 20 2d 20 31 30 30 2e 36 34 2e 30 2e 32 30 20 6f 6e 20 53 4e 41 54 | 00.64.0.10.-.100.64.0.20.on.SNAT |
| ed4c0 | 20 72 75 6c 65 20 34 30 20 77 68 65 6e 20 64 6f 69 6e 67 20 74 68 65 20 74 72 61 6e 73 6c 61 74 | .rule.40.when.doing.the.translat |
| ed4e0 | 69 6f 6e 00 46 6f 72 20 61 20 73 69 6d 70 6c 65 20 68 6f 6d 65 20 6e 65 74 77 6f 72 6b 20 75 73 | ion.For.a.simple.home.network.us |
| ed500 | 69 6e 67 20 6a 75 73 74 20 74 68 65 20 49 53 50 27 73 20 65 71 75 69 70 6d 65 6e 74 2c 20 74 68 | ing.just.the.ISP's.equipment,.th |
| ed520 | 69 73 20 69 73 20 75 73 75 61 6c 6c 79 20 64 65 73 69 72 61 62 6c 65 2e 20 42 75 74 20 69 66 20 | is.is.usually.desirable..But.if. |
| ed540 | 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 75 6e 20 56 79 4f 53 20 61 73 20 79 6f 75 72 20 66 69 72 | you.want.to.run.VyOS.as.your.fir |
| ed560 | 65 77 61 6c 6c 20 61 6e 64 20 72 6f 75 74 65 72 2c 20 74 68 69 73 20 77 69 6c 6c 20 72 65 73 75 | ewall.and.router,.this.will.resu |
| ed580 | 6c 74 20 69 6e 20 68 61 76 69 6e 67 20 61 20 64 6f 75 62 6c 65 20 4e 41 54 20 61 6e 64 20 66 69 | lt.in.having.a.double.NAT.and.fi |
| ed5a0 | 72 65 77 61 6c 6c 20 73 65 74 75 70 2e 20 54 68 69 73 20 72 65 73 75 6c 74 73 20 69 6e 20 61 20 | rewall.setup..This.results.in.a. |
| ed5c0 | 66 65 77 20 65 78 74 72 61 20 6c 61 79 65 72 73 20 6f 66 20 63 6f 6d 70 6c 65 78 69 74 79 2c 20 | few.extra.layers.of.complexity,. |
| ed5e0 | 70 61 72 74 69 63 75 6c 61 72 6c 79 20 69 66 20 79 6f 75 20 75 73 65 20 73 6f 6d 65 20 4e 41 54 | particularly.if.you.use.some.NAT |
| ed600 | 20 6f 72 20 74 75 6e 6e 65 6c 20 66 65 61 74 75 72 65 73 2e 00 46 6f 72 20 63 6f 6e 6e 65 63 74 | .or.tunnel.features..For.connect |
| ed620 | 69 6f 6e 6c 65 73 73 20 70 72 6f 74 6f 63 6f 6c 73 20 61 73 20 6c 69 6b 65 20 49 43 4d 50 20 61 | ionless.protocols.as.like.ICMP.a |
| ed640 | 6e 64 20 55 44 50 2c 20 61 20 66 6c 6f 77 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 63 6f 6d | nd.UDP,.a.flow.is.considered.com |
| ed660 | 70 6c 65 74 65 20 6f 6e 63 65 20 6e 6f 20 6d 6f 72 65 20 70 61 63 6b 65 74 73 20 66 6f 72 20 74 | plete.once.no.more.packets.for.t |
| ed680 | 68 69 73 20 66 6c 6f 77 20 61 70 70 65 61 72 20 61 66 74 65 72 20 63 6f 6e 66 69 67 75 72 61 62 | his.flow.appear.after.configurab |
| ed6a0 | 6c 65 20 74 69 6d 65 6f 75 74 2e 00 46 6f 72 20 65 76 65 72 79 20 63 6c 69 65 6e 74 20 69 6e 20 | le.timeout..For.every.client.in. |
| ed6c0 | 74 68 65 20 6f 70 65 6e 76 70 6e 20 73 65 72 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | the.openvpn.server.configuration |
| ed6e0 | 20 61 20 74 6f 74 70 20 73 65 63 72 65 74 20 69 73 20 63 72 65 61 74 65 64 2e 20 54 6f 20 64 69 | .a.totp.secret.is.created..To.di |
| ed700 | 73 70 6c 61 79 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 6e 66 6f 72 6d 61 | splay.the.authentication.informa |
| ed720 | 74 69 6f 6e 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 46 6f 72 20 65 78 61 6d 70 | tion,.use.the.command:.For.examp |
| ed740 | 6c 65 2c 20 69 66 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 70 6f 6f 72 20 74 69 6d 65 20 73 | le,.if.problems.with.poor.time.s |
| ed760 | 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 61 72 65 20 65 78 70 65 72 69 65 6e 63 65 64 2c 20 | ynchronization.are.experienced,. |
| ed780 | 74 68 65 20 77 69 6e 64 6f 77 20 63 61 6e 20 62 65 20 69 6e 63 72 65 61 73 65 64 20 66 72 6f 6d | the.window.can.be.increased.from |
| ed7a0 | 20 69 74 73 20 64 65 66 61 75 6c 74 20 73 69 7a 65 20 6f 66 20 33 20 70 65 72 6d 69 74 74 65 64 | .its.default.size.of.3.permitted |
| ed7c0 | 20 63 6f 64 65 73 20 28 6f 6e 65 20 70 72 65 76 69 6f 75 73 20 63 6f 64 65 2c 20 74 68 65 20 63 | .codes.(one.previous.code,.the.c |
| ed7e0 | 75 72 72 65 6e 74 20 63 6f 64 65 2c 20 74 68 65 20 6e 65 78 74 20 63 6f 64 65 29 20 74 6f 20 31 | urrent.code,.the.next.code).to.1 |
| ed800 | 37 20 70 65 72 6d 69 74 74 65 64 20 63 6f 64 65 73 20 28 74 68 65 20 38 20 70 72 65 76 69 6f 75 | 7.permitted.codes.(the.8.previou |
| ed820 | 73 20 63 6f 64 65 73 2c 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 6f 64 65 2c 20 61 6e 64 20 74 | s.codes,.the.current.code,.and.t |
| ed840 | 68 65 20 38 20 6e 65 78 74 20 63 6f 64 65 73 29 2e 20 54 68 69 73 20 77 69 6c 6c 20 70 65 72 6d | he.8.next.codes)..This.will.perm |
| ed860 | 69 74 20 66 6f 72 20 61 20 74 69 6d 65 20 73 6b 65 77 20 6f 66 20 75 70 20 74 6f 20 34 20 6d 69 | it.for.a.time.skew.of.up.to.4.mi |
| ed880 | 6e 75 74 65 73 20 62 65 74 77 65 65 6e 20 63 6c 69 65 6e 74 20 61 6e 64 20 73 65 72 76 65 72 2e | nutes.between.client.and.server. |
| ed8a0 | 00 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 46 6f 72 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 | .For.example:.For.firewall.filte |
| ed8c0 | 72 69 6e 67 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 64 6f | ring,.configuration.should.be.do |
| ed8e0 | 6e 65 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 | ne.in.``set.firewall.[ipv4.|.ipv |
| ed900 | 36 5d 20 2e 2e 2e 60 60 00 46 6f 72 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c | 6]....``.For.firewall.filtering, |
| ed920 | 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 63 72 65 61 74 | .firewall.rules.need.to.be.creat |
| ed940 | 65 64 2e 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 | ed..Each.rule.is.numbered,.has.a |
| ed960 | 6e 20 61 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 | n.action.to.apply.if.the.rule.is |
| ed980 | 20 6d 61 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 | .matched,.and.the.ability.to.spe |
| ed9a0 | 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e | cify.multiple.matching.criteria. |
| ed9c0 | 20 44 61 74 61 20 70 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c | .Data.packets.go.through.the.rul |
| ed9e0 | 65 73 20 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 39 39 2c 20 73 6f 20 6f 72 64 65 72 20 69 73 20 | es.from.1.-.999999,.so.order.is. |
| eda00 | 63 72 75 63 69 61 6c 2e 20 41 74 20 74 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 | crucial..At.the.first.match.the. |
| eda20 | 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 | action.of.the.rule.will.be.execu |
| eda40 | 74 65 64 2e 00 46 6f 72 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 2c 20 66 69 72 | ted..For.firewall.filtering,.fir |
| eda60 | 65 77 61 6c 6c 20 72 75 6c 65 73 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 2e | ewall.rules.needs.to.be.created. |
| eda80 | 20 45 61 63 68 20 72 75 6c 65 20 69 73 20 6e 75 6d 62 65 72 65 64 2c 20 68 61 73 20 61 6e 20 61 | .Each.rule.is.numbered,.has.an.a |
| edaa0 | 63 74 69 6f 6e 20 74 6f 20 61 70 70 6c 79 20 69 66 20 74 68 65 20 72 75 6c 65 20 69 73 20 6d 61 | ction.to.apply.if.the.rule.is.ma |
| edac0 | 74 63 68 65 64 2c 20 61 6e 64 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 70 65 63 69 66 | tched,.and.the.ability.to.specif |
| edae0 | 79 20 6d 75 6c 74 69 70 6c 65 20 63 72 69 74 65 72 69 61 20 6d 61 74 63 68 65 72 73 2e 20 44 61 | y.multiple.criteria.matchers..Da |
| edb00 | 74 61 20 70 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 75 6c 65 73 20 | ta.packets.go.through.the.rules. |
| edb20 | 66 72 6f 6d 20 31 20 2d 20 39 39 39 39 39 39 2c 20 73 6f 20 6f 72 64 65 72 20 69 73 20 63 72 75 | from.1.-.999999,.so.order.is.cru |
| edb40 | 63 69 61 6c 2e 20 41 74 20 74 68 65 20 66 69 72 73 74 20 6d 61 74 63 68 20 74 68 65 20 61 63 74 | cial..At.the.first.match.the.act |
| edb60 | 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 62 65 20 65 78 65 63 75 74 65 64 | ion.of.the.rule.will.be.executed |
| edb80 | 2e 00 46 6f 72 20 66 72 61 67 6d 65 6e 74 65 64 20 54 43 50 20 6f 72 20 55 44 50 20 70 61 63 6b | ..For.fragmented.TCP.or.UDP.pack |
| edba0 | 65 74 73 20 61 6e 64 20 61 6c 6c 20 6f 74 68 65 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 | ets.and.all.other.IPv4.and.IPv6. |
| edbc0 | 70 72 6f 74 6f 63 6f 6c 20 74 72 61 66 66 69 63 2c 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 | protocol.traffic,.the.source.and |
| edbe0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 | .destination.port.information.is |
| edc00 | 20 6f 6d 69 74 74 65 64 2e 20 46 6f 72 20 6e 6f 6e 2d 49 50 20 74 72 61 66 66 69 63 2c 20 74 68 | .omitted..For.non-IP.traffic,.th |
| edc20 | 65 20 66 6f 72 6d 75 6c 61 20 69 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 66 6f 72 20 74 68 65 | e.formula.is.the.same.as.for.the |
| edc40 | 20 6c 61 79 65 72 32 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2e 00 46 6f | .layer2.transmit.hash.policy..Fo |
| edc60 | 72 20 67 65 6e 65 72 61 74 69 6e 67 20 61 6e 20 4f 54 50 20 6b 65 79 20 69 6e 20 56 79 4f 53 2c | r.generating.an.OTP.key.in.VyOS, |
| edc80 | 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 28 6f 70 | .you.can.use.the.CLI.command.(op |
| edca0 | 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 29 3a 00 46 6f 72 20 69 6e 62 6f 75 6e 64 20 75 70 64 | erational.mode):.For.inbound.upd |
| edcc0 | 61 74 65 73 20 74 68 65 20 6f 72 64 65 72 20 6f 66 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 3a | ates.the.order.of.preference.is: |
| edce0 | 00 46 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 77 69 74 68 20 3a 63 6f 64 65 3a 60 73 65 74 20 71 | .For.instance,.with.:code:`set.q |
| edd00 | 6f 73 20 70 6f 6c 69 63 79 20 73 68 61 70 65 72 20 4d 59 2d 53 48 41 50 45 52 20 63 6c 61 73 73 | os.policy.shaper.MY-SHAPER.class |
| edd20 | 20 33 30 20 73 65 74 2d 64 73 63 70 20 45 46 60 20 79 6f 75 20 77 6f 75 6c 64 20 62 65 20 6d 6f | .30.set-dscp.EF`.you.would.be.mo |
| edd40 | 64 69 66 79 69 6e 67 20 74 68 65 20 44 53 43 50 20 66 69 65 6c 64 20 76 61 6c 75 65 20 6f 66 20 | difying.the.DSCP.field.value.of. |
| edd60 | 70 61 63 6b 65 74 73 20 69 6e 20 74 68 61 74 20 63 6c 61 73 73 20 74 6f 20 45 78 70 65 64 69 74 | packets.in.that.class.to.Expedit |
| edd80 | 65 20 46 6f 72 77 61 72 64 69 6e 67 2e 00 46 6f 72 20 69 70 76 34 3a 00 46 6f 72 20 6c 61 74 65 | e.Forwarding..For.ipv4:.For.late |
| edda0 | 73 74 20 72 65 6c 65 61 73 65 73 2c 20 72 65 66 65 72 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c | st.releases,.refer.the.`firewall |
| eddc0 | 20 28 69 6e 74 65 72 66 61 63 65 2d 67 72 6f 75 70 73 29 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 | .(interface-groups).<https://doc |
| edde0 | 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f | s.vyos.io/en/latest/configuratio |
| ede00 | 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 23 69 6e 74 65 72 66 61 63 | n/firewall/general.html#interfac |
| ede20 | 65 2d 67 72 6f 75 70 73 3e 60 5f 20 6d 61 69 6e 20 70 61 67 65 20 74 6f 20 63 6f 6e 66 69 67 75 | e-groups>`_.main.page.to.configu |
| ede40 | 72 65 20 7a 6f 6e 65 20 62 61 73 65 64 20 72 75 6c 65 73 2e 20 4e 65 77 20 73 79 6e 74 61 78 20 | re.zone.based.rules..New.syntax. |
| ede60 | 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 68 65 72 65 20 3a 76 79 74 61 73 6b 3a 60 54 35 31 | was.introduced.here.:vytask:`T51 |
| ede80 | 36 30 60 00 46 6f 72 20 6c 61 74 65 73 74 20 72 65 6c 65 61 73 65 73 2c 20 72 65 66 65 72 20 74 | 60`.For.latest.releases,.refer.t |
| edea0 | 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e | he.`firewall.<https://docs.vyos. |
| edec0 | 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 | io/en/latest/configuration/firew |
| edee0 | 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 23 69 6e 74 65 72 66 61 63 65 2d 67 72 6f 75 70 | all/general.html#interface-group |
| edf00 | 73 3e 60 5f 20 6d 61 69 6e 20 70 61 67 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 7a 6f 6e 65 | s>`_.main.page.to.configure.zone |
| edf20 | 20 62 61 73 65 64 20 72 75 6c 65 73 2e 20 4e 65 77 20 73 79 6e 74 61 78 20 77 61 73 20 69 6e 74 | .based.rules..New.syntax.was.int |
| edf40 | 72 6f 64 75 63 65 64 20 68 65 72 65 20 3a 76 79 74 61 73 6b 3a 60 54 35 31 36 30 60 00 46 6f 72 | roduced.here.:vytask:`T5160`.For |
| edf60 | 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 68 6f 77 20 4d 50 4c 53 20 6c 61 | .more.information.on.how.MPLS.la |
| edf80 | 62 65 6c 20 73 77 69 74 63 68 69 6e 67 20 77 6f 72 6b 73 2c 20 70 6c 65 61 73 65 20 67 6f 20 76 | bel.switching.works,.please.go.v |
| edfa0 | 69 73 69 74 20 60 57 69 6b 69 70 65 64 69 61 20 28 4d 50 4c 53 29 60 5f 2e 00 46 6f 72 20 6d 75 | isit.`Wikipedia.(MPLS)`_..For.mu |
| edfc0 | 6c 74 69 20 68 6f 70 20 73 65 73 73 69 6f 6e 73 20 6f 6e 6c 79 2e 20 43 6f 6e 66 69 67 75 72 65 | lti.hop.sessions.only..Configure |
| edfe0 | 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 65 78 70 65 63 74 65 64 20 54 54 4c 20 66 6f 72 20 61 6e | .the.minimum.expected.TTL.for.an |
| ee000 | 20 69 6e 63 6f 6d 69 6e 67 20 42 46 44 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 2e 00 46 6f | .incoming.BFD.control.packet..Fo |
| ee020 | 72 20 6e 65 74 77 6f 72 6b 20 6d 61 69 6e 74 65 6e 61 6e 63 65 2c 20 69 74 27 73 20 61 20 67 6f | r.network.maintenance,.it's.a.go |
| ee040 | 6f 64 20 69 64 65 61 20 74 6f 20 64 69 72 65 63 74 20 75 73 65 72 73 20 74 6f 20 61 20 62 61 63 | od.idea.to.direct.users.to.a.bac |
| ee060 | 6b 75 70 20 73 65 72 76 65 72 20 73 6f 20 74 68 61 74 20 74 68 65 20 70 72 69 6d 61 72 79 20 73 | kup.server.so.that.the.primary.s |
| ee080 | 65 72 76 65 72 20 63 61 6e 20 62 65 20 73 61 66 65 6c 79 20 74 61 6b 65 6e 20 6f 75 74 20 6f 66 | erver.can.be.safely.taken.out.of |
| ee0a0 | 20 73 65 72 76 69 63 65 2e 20 49 74 27 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 73 77 69 74 63 | .service..It's.possible.to.switc |
| ee0c0 | 68 20 79 6f 75 72 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 74 6f 20 6d 61 69 6e 74 65 6e 61 6e | h.your.PPPoE.server.to.maintenan |
| ee0e0 | 63 65 20 6d 6f 64 65 20 77 68 65 72 65 20 69 74 20 6d 61 69 6e 74 61 69 6e 73 20 61 6c 72 65 61 | ce.mode.where.it.maintains.alrea |
| ee100 | 64 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 75 74 20 | dy.established.connections,.but. |
| ee120 | 72 65 66 75 73 65 73 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 74 74 65 6d 70 74 73 2e | refuses.new.connection.attempts. |
| ee140 | 00 46 6f 72 20 6e 65 74 77 6f 72 6b 73 20 63 6f 6e 73 69 73 74 69 6e 67 20 6f 66 20 56 79 4f 53 | .For.networks.consisting.of.VyOS |
| ee160 | 20 61 6e 64 20 6f 74 68 65 72 20 4c 69 6e 75 78 20 73 79 73 74 65 6d 73 20 72 75 6e 6e 69 6e 67 | .and.other.Linux.systems.running |
| ee180 | 20 72 65 6c 61 74 69 76 65 6c 79 20 72 65 63 65 6e 74 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 74 | .relatively.recent.versions.of.t |
| ee1a0 | 68 65 20 63 68 72 6f 6e 79 20 64 61 65 6d 6f 6e 2c 20 4e 54 50 20 70 61 63 6b 65 74 73 20 63 61 | he.chrony.daemon,.NTP.packets.ca |
| ee1c0 | 6e 20 62 65 20 22 74 75 6e 6e 65 6c 65 64 22 20 6f 76 65 72 20 50 54 50 2e 20 4e 54 50 20 6f 76 | n.be."tunneled".over.PTP..NTP.ov |
| ee1e0 | 65 72 20 50 54 50 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 62 65 73 74 20 6f 66 20 62 6f 74 68 | er.PTP.provides.the.best.of.both |
| ee200 | 20 77 6f 72 6c 64 73 2c 20 6c 65 76 65 72 61 67 69 6e 67 20 68 61 72 64 77 61 72 65 20 73 75 70 | .worlds,.leveraging.hardware.sup |
| ee220 | 70 6f 72 74 20 66 6f 72 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 50 54 50 20 70 61 63 6b 65 74 | port.for.timestamping.PTP.packet |
| ee240 | 73 20 77 68 69 6c 65 20 72 65 74 61 69 6e 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 | s.while.retaining.the.configurat |
| ee260 | 69 6f 6e 20 66 6c 65 78 69 62 69 6c 69 74 79 20 61 6e 64 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 | ion.flexibility.and.fault.tolera |
| ee280 | 6e 63 65 20 6f 66 20 4e 54 50 2e 00 46 6f 72 20 6f 70 74 69 6d 61 6c 20 73 63 61 6c 61 62 69 6c | nce.of.NTP..For.optimal.scalabil |
| ee2a0 | 69 74 79 2c 20 4d 75 6c 74 69 63 61 73 74 20 73 68 6f 75 6c 64 6e 27 74 20 62 65 20 75 73 65 64 | ity,.Multicast.shouldn't.be.used |
| ee2c0 | 20 61 74 20 61 6c 6c 2c 20 62 75 74 20 69 6e 73 74 65 61 64 20 75 73 65 20 42 47 50 20 74 6f 20 | .at.all,.but.instead.use.BGP.to. |
| ee2e0 | 73 69 67 6e 61 6c 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 65 64 20 64 65 76 69 63 65 73 20 62 65 74 | signal.all.connected.devices.bet |
| ee300 | 77 65 65 6e 20 6c 65 61 76 65 73 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 2c 20 56 79 4f 53 | ween.leaves..Unfortunately,.VyOS |
| ee320 | 20 64 6f 65 73 20 6e 6f 74 20 79 65 74 20 73 75 70 70 6f 72 74 20 74 68 69 73 2e 00 46 6f 72 20 | .does.not.yet.support.this..For. |
| ee340 | 6f 75 74 62 6f 75 6e 64 20 75 70 64 61 74 65 73 20 74 68 65 20 6f 72 64 65 72 20 6f 66 20 70 72 | outbound.updates.the.order.of.pr |
| ee360 | 65 66 65 72 65 6e 63 65 20 69 73 3a 00 46 6f 72 20 72 65 66 65 72 65 6e 63 65 2c 20 61 20 64 65 | eference.is:.For.reference,.a.de |
| ee380 | 73 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 65 76 65 | scription.can.be.defined.for.eve |
| ee3a0 | 72 79 20 64 65 66 69 6e 65 64 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2e 00 46 6f 72 20 72 65 66 | ry.defined.custom.chain..For.ref |
| ee3c0 | 65 72 65 6e 63 65 2c 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 64 65 66 | erence,.a.description.can.be.def |
| ee3e0 | 69 6e 65 64 20 66 6f 72 20 65 76 65 72 79 20 73 69 6e 67 6c 65 20 72 75 6c 65 2c 20 61 6e 64 20 | ined.for.every.single.rule,.and. |
| ee400 | 66 6f 72 20 65 76 65 72 79 20 64 65 66 69 6e 65 64 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2e 00 | for.every.defined.custom.chain.. |
| ee420 | 46 6f 72 20 73 65 63 75 72 69 74 79 2c 20 74 68 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 | For.security,.the.listen.address |
| ee440 | 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 6f 6e 20 69 6e 74 65 72 6e 61 6c | .should.only.be.used.on.internal |
| ee460 | 2f 74 72 75 73 74 65 64 20 6e 65 74 77 6f 72 6b 73 21 00 46 6f 72 20 73 65 72 69 61 6c 20 76 69 | /trusted.networks!.For.serial.vi |
| ee480 | 61 20 55 53 42 20 70 6f 72 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 72 65 | a.USB.port.information.please.re |
| ee4a0 | 66 6f 72 20 74 6f 3a 20 3a 72 65 66 3a 60 68 61 72 64 77 61 72 65 5f 75 73 62 60 2e 00 46 6f 72 | for.to:.:ref:`hardware_usb`..For |
| ee4c0 | 20 73 69 6d 70 6c 69 63 69 74 79 20 77 65 27 6c 6c 20 61 73 73 75 6d 65 20 74 68 61 74 20 74 68 | .simplicity.we'll.assume.that.th |
| ee4e0 | 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 47 52 45 2c 20 69 74 27 73 20 6e 6f 74 20 68 61 72 64 | e.protocol.is.GRE,.it's.not.hard |
| ee500 | 20 74 6f 20 67 75 65 73 73 20 77 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 | .to.guess.what.needs.to.be.chang |
| ee520 | 65 64 20 74 6f 20 6d 61 6b 65 20 69 74 20 77 6f 72 6b 20 77 69 74 68 20 61 20 64 69 66 66 65 72 | ed.to.make.it.work.with.a.differ |
| ee540 | 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 2e 20 57 65 20 61 73 73 75 6d 65 20 74 68 61 74 20 49 50 73 | ent.protocol..We.assume.that.IPs |
| ee560 | 65 63 20 77 69 6c 6c 20 75 73 65 20 70 72 65 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 61 75 | ec.will.use.pre-shared.secret.au |
| ee580 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 77 69 6c 6c 20 75 73 65 20 41 45 53 31 32 38 | thentication.and.will.use.AES128 |
| ee5a0 | 2f 53 48 41 31 20 66 6f 72 20 74 68 65 20 63 69 70 68 65 72 20 61 6e 64 20 68 61 73 68 2e 20 41 | /SHA1.for.the.cipher.and.hash..A |
| ee5c0 | 64 6a 75 73 74 20 74 68 69 73 20 61 73 20 6e 65 63 65 73 73 61 72 79 2e 00 46 6f 72 20 74 68 65 | djust.this.as.necessary..For.the |
| ee5e0 | 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 36 36 60 20 72 75 6c 65 2c 20 | .:ref:`destination-nat66`.rule,. |
| ee600 | 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 | the.destination.address.of.the.p |
| ee620 | 61 63 6b 65 74 20 69 73 72 65 70 6c 61 63 65 64 20 62 79 20 74 68 65 20 61 64 64 72 65 73 73 20 | acket.isreplaced.by.the.address. |
| ee640 | 63 61 6c 63 75 6c 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 | calculated.from.the.specified.ad |
| ee660 | 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 20 69 6e 20 74 68 65 20 60 74 72 61 6e 73 6c 61 74 | dress.or.prefix.in.the.`translat |
| ee680 | 69 6f 6e 20 61 64 64 72 65 73 73 60 20 63 6f 6d 6d 61 6e 64 00 46 6f 72 20 74 68 65 20 4f 70 65 | ion.address`.command.For.the.Ope |
| ee6a0 | 6e 56 50 4e 20 74 72 61 66 66 69 63 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 | nVPN.traffic.to.pass.through.the |
| ee6c0 | 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 74 65 20 | .WAN.interface,.you.must.create. |
| ee6e0 | 61 20 66 69 72 65 77 61 6c 6c 20 65 78 63 65 70 74 69 6f 6e 2e 00 46 6f 72 20 74 68 65 20 57 69 | a.firewall.exception..For.the.Wi |
| ee700 | 72 65 47 75 61 72 64 20 74 72 61 66 66 69 63 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 | reGuard.traffic.to.pass.through. |
| ee720 | 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 2c 20 79 6f 75 20 6d 75 73 74 20 63 72 65 61 | the.WAN.interface,.you.must.crea |
| ee740 | 74 65 20 61 20 66 69 72 65 77 61 6c 6c 20 65 78 63 65 70 74 69 6f 6e 2e 00 46 6f 72 20 74 68 65 | te.a.firewall.exception..For.the |
| ee760 | 20 61 76 65 72 61 67 65 20 75 73 65 72 20 61 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 20 68 | .average.user.a.serial.console.h |
| ee780 | 61 73 20 6e 6f 20 61 64 76 61 6e 74 61 67 65 20 6f 76 65 72 20 61 20 63 6f 6e 73 6f 6c 65 20 6f | as.no.advantage.over.a.console.o |
| ee7a0 | 66 66 65 72 65 64 20 62 79 20 61 20 64 69 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 6b 65 | ffered.by.a.directly.attached.ke |
| ee7c0 | 79 62 6f 61 72 64 20 61 6e 64 20 73 63 72 65 65 6e 2e 20 53 65 72 69 61 6c 20 63 6f 6e 73 6f 6c | yboard.and.screen..Serial.consol |
| ee7e0 | 65 73 20 61 72 65 20 6d 75 63 68 20 73 6c 6f 77 65 72 2c 20 74 61 6b 69 6e 67 20 75 70 20 74 6f | es.are.much.slower,.taking.up.to |
| ee800 | 20 61 20 73 65 63 6f 6e 64 20 74 6f 20 66 69 6c 6c 20 61 20 38 30 20 63 6f 6c 75 6d 6e 20 62 79 | .a.second.to.fill.a.80.column.by |
| ee820 | 20 32 34 20 6c 69 6e 65 20 73 63 72 65 65 6e 2e 20 53 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 73 | .24.line.screen..Serial.consoles |
| ee840 | 20 67 65 6e 65 72 61 6c 6c 79 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 6e 6f 6e 2d 70 72 6f 70 | .generally.only.support.non-prop |
| ee860 | 6f 72 74 69 6f 6e 61 6c 20 41 53 43 49 49 20 74 65 78 74 2c 20 77 69 74 68 20 6c 69 6d 69 74 65 | ortional.ASCII.text,.with.limite |
| ee880 | 64 20 73 75 70 70 6f 72 74 20 66 6f 72 20 6c 61 6e 67 75 61 67 65 73 20 6f 74 68 65 72 20 74 68 | d.support.for.languages.other.th |
| ee8a0 | 61 6e 20 45 6e 67 6c 69 73 68 2e 00 46 6f 72 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2c | an.English..For.the.destination, |
| ee8c0 | 20 67 72 6f 75 70 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 75 73 65 64 20 69 6e 73 74 65 61 64 | .groups.can.also.be.used.instead |
| ee8e0 | 20 6f 66 20 61 6e 20 61 64 64 72 65 73 73 2e 00 46 6f 72 20 74 68 65 20 69 6e 67 72 65 73 73 20 | .of.an.address..For.the.ingress. |
| ee900 | 74 72 61 66 66 69 63 20 6f 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 72 65 20 69 | traffic.of.an.interface,.there.i |
| ee920 | 73 20 6f 6e 6c 79 20 6f 6e 65 20 70 6f 6c 69 63 79 20 79 6f 75 20 63 61 6e 20 64 69 72 65 63 74 | s.only.one.policy.you.can.direct |
| ee940 | 6c 79 20 61 70 70 6c 79 2c 20 61 20 2a 2a 4c 69 6d 69 74 65 72 2a 2a 20 70 6f 6c 69 63 79 2e 20 | ly.apply,.a.**Limiter**.policy.. |
| ee960 | 59 6f 75 20 63 61 6e 6e 6f 74 20 61 70 70 6c 79 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 | You.cannot.apply.a.shaping.polic |
| ee980 | 79 20 64 69 72 65 63 74 6c 79 20 74 6f 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 66 69 | y.directly.to.the.ingress.traffi |
| ee9a0 | 63 20 6f 66 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 62 65 63 61 75 73 65 20 73 68 61 70 69 | c.of.any.interface.because.shapi |
| ee9c0 | 6e 67 20 6f 6e 6c 79 20 77 6f 72 6b 73 20 66 6f 72 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 | ng.only.works.for.outbound.traff |
| ee9e0 | 69 63 2e 00 46 6f 72 20 74 68 65 20 73 61 6b 65 20 6f 66 20 64 65 6d 6f 6e 73 74 72 61 74 69 6f | ic..For.the.sake.of.demonstratio |
| eea00 | 6e 2c 20 60 65 78 61 6d 70 6c 65 20 23 31 20 69 6e 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 64 | n,.`example.#1.in.the.official.d |
| eea20 | 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 7a 61 62 62 69 78 | ocumentation.<https://www.zabbix |
| eea40 | 2e 63 6f 6d 2f 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2f 63 75 72 72 65 6e 74 2f 6d 61 6e 75 61 | .com/documentation/current/manua |
| eea60 | 6c 2f 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 2f 63 6f 6e 74 61 69 6e 65 72 73 3e 60 5f 20 74 6f | l/.installation/containers>`_.to |
| eea80 | 20 74 68 65 20 64 65 63 6c 61 72 61 74 69 76 65 20 56 79 4f 53 20 43 4c 49 20 73 79 6e 74 61 78 | .the.declarative.VyOS.CLI.syntax |
| eeaa0 | 2e 00 46 6f 72 20 74 68 65 20 73 61 6b 65 20 6f 66 20 64 65 6d 6f 6e 73 74 72 61 74 69 6f 6e 2c | ..For.the.sake.of.demonstration, |
| eeac0 | 20 60 65 78 61 6d 70 6c 65 20 23 31 20 69 6e 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 64 6f 63 | .`example.#1.in.the.official.doc |
| eeae0 | 75 6d 65 6e 74 61 74 69 6f 6e 20 3c 68 74 74 70 73 3a 2f 2f 77 77 77 2e 7a 61 62 62 69 78 2e 63 | umentation.<https://www.zabbix.c |
| eeb00 | 6f 6d 2f 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2f 63 75 72 72 65 6e 74 2f 6d 61 6e 75 61 6c 2f | om/documentation/current/manual/ |
| eeb20 | 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 2f 63 6f 6e 74 61 69 6e 65 72 73 3e 60 5f 20 74 6f 20 74 68 | installation/containers>`_.to.th |
| eeb40 | 65 20 64 65 63 6c 61 72 61 74 69 76 65 20 56 79 4f 53 20 43 4c 49 20 73 79 6e 74 61 78 2e 00 46 | e.declarative.VyOS.CLI.syntax..F |
| eeb60 | 6f 72 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 | or.traffic.destined.to.the.route |
| eeb80 | 72 20 69 74 73 65 6c 66 2c 20 6f 72 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 72 6f | r.itself,.or.that.needs.to.be.ro |
| eeba0 | 75 74 65 64 20 28 61 73 73 75 6d 69 6e 67 20 61 20 6c 61 79 65 72 33 20 62 72 69 64 67 65 20 69 | uted.(assuming.a.layer3.bridge.i |
| eebc0 | 73 20 63 6f 6e 66 69 67 75 72 65 64 29 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 | s.configured),.the.base.chain.is |
| eebe0 | 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 74 68 65 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 | .**input**,.the.base.command.is. |
| eec00 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 69 6e 70 75 74 20 66 69 6c 74 | ``set.firewall.bridge.input.filt |
| eec20 | 65 72 20 2e 2e 2e 60 60 20 61 6e 64 20 74 68 65 20 70 61 74 68 20 69 73 3a 00 46 6f 72 20 74 72 | er....``.and.the.path.is:.For.tr |
| eec40 | 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 | affic.originated.by.the.router,. |
| eec60 | 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 6f 75 74 70 75 74 20 66 69 6c 74 65 72 2a 2a 3a | base.chain.is.**output.filter**: |
| eec80 | 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 6f 75 | .``set.firewall.[ipv4.|.ipv6].ou |
| eeca0 | 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 | tput.filter....``.For.traffic.th |
| eecc0 | 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 69 6e 74 65 72 6e 61 | at.needs.to.be.forwarded.interna |
| eece0 | 6c 6c 79 20 62 79 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 | lly.by.the.bridge,.base.chain.is |
| eed00 | 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 | .is.**forward**,.and.it's.base.c |
| eed20 | 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 | ommand.for.filtering.is.``set.fi |
| eed40 | 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e | rewall.bridge.forward.filter.... |
| eed60 | 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 34 2c 20 68 69 | ``,.which.happens.in.stage.4,.hi |
| eed80 | 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 | ghlighted.with.red.color..For.tr |
| eeda0 | 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 66 6f 72 77 61 72 65 64 20 | affic.that.needs.to.be.forwared. |
| eedc0 | 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 65 20 63 | internally.by.the.bridge,.base.c |
| eede0 | 68 61 69 6e 20 69 73 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 27 73 | hain.is.is.**forward**,.and.it's |
| eee00 | 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 60 | .base.command.for.filtering.is.` |
| eee20 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c | `set.firewall.bridge.forward.fil |
| eee40 | 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 68 61 74 20 6e 65 65 64 73 | ter....``.For.traffic.that.needs |
| eee60 | 20 74 6f 20 62 65 20 66 6f 72 77 61 72 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 62 79 20 74 68 | .to.be.forwared.internally.by.th |
| eee80 | 65 20 62 72 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 69 73 20 2a 2a 66 6f 72 | e.bridge,.base.chain.is.is.**for |
| eeea0 | 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d 61 6e 64 20 66 6f | ward**,.and.it's.base.command.fo |
| eeec0 | 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 | r.filtering.is.``set.firewall.br |
| eeee0 | 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 | idge.forward.filter....``,.which |
| eef00 | 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 34 2c 20 68 69 67 68 6c 69 67 68 74 65 6e | .happens.in.stage.4,.highlighten |
| eef20 | 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 | ed.with.red.color..For.traffic.t |
| eef40 | 68 61 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 73 77 69 74 63 68 65 64 20 69 6e 74 65 72 6e 61 | hat.needs.to.be.switched.interna |
| eef60 | 6c 6c 79 20 62 79 20 74 68 65 20 62 72 69 64 67 65 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 | lly.by.the.bridge,.base.chain.is |
| eef80 | 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2c 20 61 6e 64 20 69 74 27 73 20 62 61 73 65 20 63 6f 6d 6d | .**forward**,.and.it's.base.comm |
| eefa0 | 61 6e 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 | and.for.filtering.is.``set.firew |
| eefc0 | 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c | all.bridge.forward.filter....``, |
| eefe0 | 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 34 2c 20 68 69 67 68 6c | .which.happens.in.stage.4,.highl |
| ef000 | 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 46 6f 72 20 74 72 61 66 66 | ighted.with.red.color..For.traff |
| ef020 | 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 62 61 | ic.towards.the.router.itself,.ba |
| ef040 | 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 69 6e 70 75 74 20 66 69 6c 74 65 72 2a 2a 3a 20 60 60 | se.chain.is.**input.filter**:.`` |
| ef060 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 70 76 34 20 7c 20 69 70 76 36 5d 20 69 6e 70 75 74 | set.firewall.[ipv4.|.ipv6].input |
| ef080 | 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 | .filter....``.For.traffic.toward |
| ef0a0 | 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 | s.the.router.itself,.base.chain. |
| ef0c0 | 69 73 20 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 | is.**input**,.while.traffic.orig |
| ef0e0 | 69 6e 61 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e | inated.by.the.router,.base.chain |
| ef100 | 20 69 73 20 2a 2a 6f 75 74 70 75 74 2a 2a 2e 20 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 | .is.**output**..A.new.simplified |
| ef120 | 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 | .packet.flow.diagram.is.shown.ne |
| ef140 | 78 74 2c 20 77 68 69 63 68 20 73 68 6f 77 73 20 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 | xt,.which.shows.the.path.for.tra |
| ef160 | 66 66 69 63 20 64 65 73 74 69 6e 61 74 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 | ffic.destinated.to.the.router.it |
| ef180 | 73 65 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 | self,.and.traffic.generated.by.t |
| ef1a0 | 68 65 20 72 6f 75 74 65 72 20 28 73 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 | he.router.(starting.from.circle. |
| ef1c0 | 6e 75 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 | number.6):.For.traffic.towards.t |
| ef1e0 | 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 | he.router.itself,.base.chain.is. |
| ef200 | 2a 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 | **input**,.while.traffic.origina |
| ef220 | 74 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 | ted.by.the.router,.base.chain.is |
| ef240 | 20 2a 2a 6f 75 74 70 75 74 2a 2a 2e 20 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 | .**output**..A.new.simplified.pa |
| ef260 | 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 2c | cket.flow.diagram.is.shown.next, |
| ef280 | 20 77 68 69 63 68 20 73 68 6f 77 73 20 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 66 66 69 | .which.shows.the.path.for.traffi |
| ef2a0 | 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2c | c.destined.to.the.router.itself, |
| ef2c0 | 20 61 6e 64 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 20 72 6f | .and.traffic.generated.by.the.ro |
| ef2e0 | 75 74 65 72 20 28 73 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 | uter.(starting.from.circle.numbe |
| ef300 | 72 20 36 29 3a 00 46 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f | r.6):.For.traffic.towards.the.ro |
| ef320 | 75 74 65 72 20 69 74 73 65 6c 66 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a | uter.itself,.the.base.chain.is.* |
| ef340 | 2a 69 6e 70 75 74 2a 2a 2c 20 77 68 69 6c 65 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 | *input**,.while.traffic.originat |
| ef360 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 68 61 73 20 74 68 65 20 62 61 73 65 20 63 68 | ed.by.the.router.has.the.base.ch |
| ef380 | 61 69 6e 20 2a 2a 6f 75 74 70 75 74 2a 2a 2e 20 41 20 6e 65 77 20 73 69 6d 70 6c 69 66 69 65 64 | ain.**output**..A.new.simplified |
| ef3a0 | 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 69 73 20 73 68 6f 77 6e 20 6e 65 | .packet.flow.diagram.is.shown.ne |
| ef3c0 | 78 74 2c 20 77 68 69 63 68 20 73 68 6f 77 73 20 74 68 65 20 70 61 74 68 20 66 6f 72 20 74 72 61 | xt,.which.shows.the.path.for.tra |
| ef3e0 | 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 | ffic.destined.to.the.router.itse |
| ef400 | 6c 66 2c 20 61 6e 64 20 74 72 61 66 66 69 63 20 67 65 6e 65 72 61 74 65 64 20 62 79 20 74 68 65 | lf,.and.traffic.generated.by.the |
| ef420 | 20 72 6f 75 74 65 72 20 28 73 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 63 69 72 63 6c 65 20 6e 75 | .router.(starting.from.circle.nu |
| ef440 | 6d 62 65 72 20 36 29 3a 00 46 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 2c 20 77 68 | mber.6):.For.transit.traffic,.wh |
| ef460 | 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e | ich.is.received.by.the.router.an |
| ef480 | 64 20 66 6f 72 77 61 72 64 65 64 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 | d.forwarded,.base.chain.is.**for |
| ef4a0 | 77 61 72 64 20 66 69 6c 74 65 72 2a 2a 3a 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 5b 69 | ward.filter**:.``set.firewall.[i |
| ef4c0 | 70 76 34 20 7c 20 69 70 76 36 5d 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 | pv4.|.ipv6].forward.filter....`` |
| ef4e0 | 00 46 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 73 20 72 | .For.transit.traffic,.which.is.r |
| ef500 | 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 77 61 72 | eceived.by.the.router.and.forwar |
| ef520 | 64 65 64 2c 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 61 72 64 2a 2a 2e 20 | ded,.base.chain.is.**forward**.. |
| ef540 | 41 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d | A.simplified.packet.flow.diagram |
| ef560 | 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 73 68 6f 77 6e 20 6e 65 | .for.transit.traffic.is.shown.ne |
| ef580 | 78 74 3a 00 46 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 69 | xt:.For.transit.traffic,.which.i |
| ef5a0 | 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 66 6f 72 | s.received.by.the.router.and.for |
| ef5c0 | 77 61 72 64 65 64 2c 20 74 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 69 73 20 2a 2a 66 6f 72 77 | warded,.the.base.chain.is.**forw |
| ef5e0 | 61 72 64 2a 2a 2e 20 41 20 73 69 6d 70 6c 69 66 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 | ard**..A.simplified.packet.flow. |
| ef600 | 64 69 61 67 72 61 6d 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 73 | diagram.for.transit.traffic.is.s |
| ef620 | 68 6f 77 6e 20 6e 65 78 74 3a 00 46 6f 72 20 77 65 62 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 70 | hown.next:.For.web.application.p |
| ef640 | 72 6f 76 69 64 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 69 72 | roviding.information.about.their |
| ef660 | 20 73 74 61 74 65 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 20 63 61 6e 20 62 65 | .state.HTTP.health.checks.can.be |
| ef680 | 20 75 73 65 64 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 69 72 20 61 76 61 69 6c 61 62 | .used.to.determine.their.availab |
| ef6a0 | 69 6c 69 74 79 2e 00 46 6f 72 6d 61 6c 6c 79 2c 20 61 20 76 69 72 74 75 61 6c 20 6c 69 6e 6b 20 | ility..Formally,.a.virtual.link. |
| ef6c0 | 6c 6f 6f 6b 73 20 6c 69 6b 65 20 61 20 70 6f 69 6e 74 2d 74 6f 2d 70 6f 69 6e 74 20 6e 65 74 77 | looks.like.a.point-to-point.netw |
| ef6e0 | 6f 72 6b 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 77 6f 20 41 42 52 20 66 72 6f 6d 20 6f 6e 65 20 | ork.connecting.two.ABR.from.one. |
| ef700 | 61 72 65 61 20 6f 6e 65 20 6f 66 20 77 68 69 63 68 20 70 68 79 73 69 63 61 6c 6c 79 20 63 6f 6e | area.one.of.which.physically.con |
| ef720 | 6e 65 63 74 65 64 20 74 6f 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 54 68 69 73 20 | nected.to.a.backbone.area..This. |
| ef740 | 70 73 65 75 64 6f 2d 6e 65 74 77 6f 72 6b 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 | pseudo-network.is.considered.to. |
| ef760 | 62 65 6c 6f 6e 67 20 74 6f 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 00 46 6f 72 77 61 | belong.to.a.backbone.area..Forwa |
| ef780 | 72 64 20 69 6e 63 6f 6d 69 6e 67 20 44 4e 53 20 71 75 65 72 69 65 73 20 74 6f 20 74 68 65 20 44 | rd.incoming.DNS.queries.to.the.D |
| ef7a0 | 4e 53 20 73 65 72 76 65 72 73 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 65 20 | NS.servers.configured.under.the. |
| ef7c0 | 60 60 73 79 73 74 65 6d 20 6e 61 6d 65 2d 73 65 72 76 65 72 60 60 20 6e 6f 64 65 73 2e 00 46 6f | ``system.name-server``.nodes..Fo |
| ef7e0 | 72 77 61 72 64 20 6d 65 74 68 6f 64 00 46 6f 72 77 61 72 64 20 72 65 63 65 69 76 65 64 20 71 75 | rward.method.Forward.received.qu |
| ef800 | 65 72 69 65 73 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 64 6f 6d 61 69 6e 20 28 73 | eries.for.a.particular.domain.(s |
| ef820 | 70 65 63 69 66 69 65 64 20 76 69 61 20 60 64 6f 6d 61 69 6e 2d 6e 61 6d 65 60 29 20 74 6f 20 61 | pecified.via.`domain-name`).to.a |
| ef840 | 20 67 69 76 65 6e 20 6e 61 6d 65 73 65 72 76 65 72 2e 20 4d 75 6c 74 69 70 6c 65 20 6e 61 6d 65 | .given.nameserver..Multiple.name |
| ef860 | 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 20 59 6f 75 20 63 61 | servers.can.be.specified..You.ca |
| ef880 | 6e 20 75 73 65 20 74 68 69 73 20 66 65 61 74 75 72 65 20 66 6f 72 20 61 20 44 4e 53 20 73 70 6c | n.use.this.feature.for.a.DNS.spl |
| ef8a0 | 69 74 2d 68 6f 72 69 7a 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 46 6f 75 72 20 70 | it-horizon.configuration..Four.p |
| ef8c0 | 6f 6c 69 63 69 65 73 20 66 6f 72 20 72 65 66 6f 72 77 61 72 64 69 6e 67 20 44 48 43 50 20 70 61 | olicies.for.reforwarding.DHCP.pa |
| ef8e0 | 63 6b 65 74 73 20 65 78 69 73 74 3a 00 46 72 6f 6d 20 3a 72 66 63 3a 60 31 39 33 30 60 3a 00 46 | ckets.exist:.From.:rfc:`1930`:.F |
| ef900 | 72 6f 6d 20 61 20 73 65 63 75 72 69 74 79 20 70 65 72 73 70 65 63 74 69 76 65 2c 20 69 74 20 69 | rom.a.security.perspective,.it.i |
| ef920 | 73 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 6c 65 74 20 61 20 74 68 69 72 64 | s.not.recommended.to.let.a.third |
| ef940 | 20 70 61 72 74 79 20 63 72 65 61 74 65 20 61 6e 64 20 73 68 61 72 65 20 74 68 65 20 70 72 69 76 | .party.create.and.share.the.priv |
| ef960 | 61 74 65 20 6b 65 79 20 66 6f 72 20 61 20 73 65 63 75 72 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e | ate.key.for.a.secured.connection |
| ef980 | 2e 20 59 6f 75 20 73 68 6f 75 6c 64 20 63 72 65 61 74 65 20 74 68 65 20 70 72 69 76 61 74 65 20 | ..You.should.create.the.private. |
| ef9a0 | 70 6f 72 74 69 6f 6e 20 6f 6e 20 79 6f 75 72 20 6f 77 6e 20 61 6e 64 20 6f 6e 6c 79 20 68 61 6e | portion.on.your.own.and.only.han |
| ef9c0 | 64 20 6f 75 74 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 2e 20 50 6c 65 61 73 65 20 6b 65 65 | d.out.the.public.key..Please.kee |
| ef9e0 | 70 20 74 68 69 73 20 69 6e 20 6d 69 6e 64 20 77 68 65 6e 20 75 73 69 6e 67 20 74 68 69 73 20 63 | p.this.in.mind.when.using.this.c |
| efa00 | 6f 6e 76 65 6e 69 65 6e 63 65 20 66 65 61 74 75 72 65 2e 00 46 72 6f 6d 20 6d 61 69 6e 20 73 74 | onvenience.feature..From.main.st |
| efa20 | 72 75 63 74 75 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 64 6f 63 3a 60 46 69 72 65 77 61 6c | ructure.defined.in.:doc:`Firewal |
| efa40 | 6c 20 4f 76 65 72 76 69 65 77 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 | l.Overview</configuration/firewa |
| efa60 | 6c 6c 2f 69 6e 64 65 78 3e 60 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 | ll/index>`.in.this.section.you.c |
| efa80 | 61 6e 20 66 69 6e 64 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 6c | an.find.detailed.information.onl |
| efaa0 | 79 20 66 6f 72 20 74 68 65 20 6e 65 78 74 20 70 61 72 74 20 6f 66 20 74 68 65 20 67 65 6e 65 72 | y.for.the.next.part.of.the.gener |
| efac0 | 61 6c 20 73 74 72 75 63 74 75 72 65 3a 00 46 72 6f 6d 20 74 68 65 20 6d 61 69 6e 20 73 74 72 75 | al.structure:.From.the.main.stru |
| efae0 | 63 74 75 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 3a 64 6f 63 3a 60 46 69 72 65 77 61 6c 6c 20 | cture.defined.in.:doc:`Firewall. |
| efb00 | 4f 76 65 72 76 69 65 77 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c | Overview</configuration/firewall |
| efb20 | 2f 69 6e 64 65 78 3e 60 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 20 63 61 6e | /index>`.in.this.section.you.can |
| efb40 | 20 66 69 6e 64 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 6c 79 20 | .find.detailed.information.only. |
| efb60 | 66 6f 72 20 74 68 65 20 6e 65 78 74 20 70 61 72 74 20 6f 66 20 74 68 65 20 67 65 6e 65 72 61 6c | for.the.next.part.of.the.general |
| efb80 | 20 73 74 72 75 63 74 75 72 65 3a 00 46 75 72 74 68 65 72 20 52 65 61 64 69 6e 67 00 46 77 6d 61 | .structure:.Further.Reading.Fwma |
| efba0 | 72 6b 00 47 45 4e 45 56 45 00 47 45 4e 45 56 45 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 | rk.GENEVE.GENEVE.is.designed.to. |
| efbc0 | 73 75 70 70 6f 72 74 20 6e 65 74 77 6f 72 6b 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 | support.network.virtualization.u |
| efbe0 | 73 65 20 63 61 73 65 73 2c 20 77 68 65 72 65 20 74 75 6e 6e 65 6c 73 20 61 72 65 20 74 79 70 69 | se.cases,.where.tunnels.are.typi |
| efc00 | 63 61 6c 6c 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 74 6f 20 61 63 74 20 61 73 20 61 20 62 61 | cally.established.to.act.as.a.ba |
| efc20 | 63 6b 70 6c 61 6e 65 20 62 65 74 77 65 65 6e 20 74 68 65 20 76 69 72 74 75 61 6c 20 73 77 69 74 | ckplane.between.the.virtual.swit |
| efc40 | 63 68 65 73 20 72 65 73 69 64 69 6e 67 20 69 6e 20 68 79 70 65 72 76 69 73 6f 72 73 2c 20 70 68 | ches.residing.in.hypervisors,.ph |
| efc60 | 79 73 69 63 61 6c 20 73 77 69 74 63 68 65 73 2c 20 6f 72 20 6d 69 64 64 6c 65 62 6f 78 65 73 20 | ysical.switches,.or.middleboxes. |
| efc80 | 6f 72 20 6f 74 68 65 72 20 61 70 70 6c 69 61 6e 63 65 73 2e 20 41 6e 20 61 72 62 69 74 72 61 72 | or.other.appliances..An.arbitrar |
| efca0 | 79 20 49 50 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 75 | y.IP.network.can.be.used.as.an.u |
| efcc0 | 6e 64 65 72 6c 61 79 20 61 6c 74 68 6f 75 67 68 20 43 6c 6f 73 20 6e 65 74 77 6f 72 6b 73 20 2d | nderlay.although.Clos.networks.- |
| efce0 | 20 41 20 74 65 63 68 6e 69 71 75 65 20 66 6f 72 20 63 6f 6d 70 6f 73 69 6e 67 20 6e 65 74 77 6f | .A.technique.for.composing.netwo |
| efd00 | 72 6b 20 66 61 62 72 69 63 73 20 6c 61 72 67 65 72 20 74 68 61 6e 20 61 20 73 69 6e 67 6c 65 20 | rk.fabrics.larger.than.a.single. |
| efd20 | 73 77 69 74 63 68 20 77 68 69 6c 65 20 6d 61 69 6e 74 61 69 6e 69 6e 67 20 6e 6f 6e 2d 62 6c 6f | switch.while.maintaining.non-blo |
| efd40 | 63 6b 69 6e 67 20 62 61 6e 64 77 69 64 74 68 20 61 63 72 6f 73 73 20 63 6f 6e 6e 65 63 74 69 6f | cking.bandwidth.across.connectio |
| efd60 | 6e 20 70 6f 69 6e 74 73 2e 20 45 43 4d 50 20 69 73 20 75 73 65 64 20 74 6f 20 64 69 76 69 64 65 | n.points..ECMP.is.used.to.divide |
| efd80 | 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 65 20 6c 69 6e | .traffic.across.the.multiple.lin |
| efda0 | 6b 73 20 61 6e 64 20 73 77 69 74 63 68 65 73 20 74 68 61 74 20 63 6f 6e 73 74 69 74 75 74 65 20 | ks.and.switches.that.constitute. |
| efdc0 | 74 68 65 20 66 61 62 72 69 63 2e 20 53 6f 6d 65 74 69 6d 65 73 20 74 65 72 6d 65 64 20 22 6c 65 | the.fabric..Sometimes.termed."le |
| efde0 | 61 66 20 61 6e 64 20 73 70 69 6e 65 22 20 6f 72 20 22 66 61 74 20 74 72 65 65 22 20 74 6f 70 6f | af.and.spine".or."fat.tree".topo |
| efe00 | 6c 6f 67 69 65 73 2e 00 47 45 4e 45 56 45 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 75 | logies..GENEVE.is.designed.to.su |
| efe20 | 70 70 6f 72 74 20 6e 65 74 77 6f 72 6b 20 76 69 72 74 75 61 6c 69 7a 61 74 69 6f 6e 20 75 73 65 | pport.network.virtualization.use |
| efe40 | 20 63 61 73 65 73 2c 20 77 68 65 72 65 20 74 75 6e 6e 65 6c 73 20 61 72 65 20 74 79 70 69 63 61 | .cases,.where.tunnels.are.typica |
| efe60 | 6c 6c 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 74 6f 20 61 63 74 20 61 73 20 61 20 62 61 63 6b | lly.established.to.act.as.a.back |
| efe80 | 70 6c 61 6e 65 20 62 65 74 77 65 65 6e 20 74 68 65 20 76 69 72 74 75 61 6c 20 73 77 69 74 63 68 | plane.between.the.virtual.switch |
| efea0 | 65 73 20 72 65 73 69 64 69 6e 67 20 69 6e 20 68 79 70 65 72 76 69 73 6f 72 73 2c 20 70 68 79 73 | es.residing.in.hypervisors,.phys |
| efec0 | 69 63 61 6c 20 73 77 69 74 63 68 65 73 2c 20 6f 72 20 6d 69 64 64 6c 65 62 6f 78 65 73 20 6f 72 | ical.switches,.or.middleboxes.or |
| efee0 | 20 6f 74 68 65 72 20 61 70 70 6c 69 61 6e 63 65 73 2e 20 41 6e 20 61 72 62 69 74 72 61 72 79 20 | .other.appliances..An.arbitrary. |
| eff00 | 49 50 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 73 20 61 6e 20 75 6e 64 | IP.network.can.be.used.as.an.und |
| eff20 | 65 72 6c 61 79 20 74 68 72 6f 75 67 68 20 43 6c 6f 73 20 6e 65 74 77 6f 72 6b 73 20 2d 20 41 20 | erlay.through.Clos.networks.-.A. |
| eff40 | 74 65 63 68 6e 69 71 75 65 20 66 6f 72 20 63 6f 6d 70 6f 73 69 6e 67 20 6e 65 74 77 6f 72 6b 20 | technique.for.composing.network. |
| eff60 | 66 61 62 72 69 63 73 20 6c 61 72 67 65 72 20 74 68 61 6e 20 61 20 73 69 6e 67 6c 65 20 73 77 69 | fabrics.larger.than.a.single.swi |
| eff80 | 74 63 68 20 77 68 69 6c 65 20 6d 61 69 6e 74 61 69 6e 69 6e 67 20 6e 6f 6e 2d 62 6c 6f 63 6b 69 | tch.while.maintaining.non-blocki |
| effa0 | 6e 67 20 62 61 6e 64 77 69 64 74 68 20 61 63 72 6f 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 | ng.bandwidth.across.connection.p |
| effc0 | 6f 69 6e 74 73 2e 20 45 43 4d 50 20 69 73 20 75 73 65 64 20 74 6f 20 64 69 76 69 64 65 20 74 72 | oints..ECMP.is.used.to.divide.tr |
| effe0 | 61 66 66 69 63 20 61 63 72 6f 73 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 65 20 6c 69 6e 6b 73 20 | affic.across.the.multiple.links. |
| f0000 | 61 6e 64 20 73 77 69 74 63 68 65 73 20 74 68 61 74 20 63 6f 6e 73 74 69 74 75 74 65 20 74 68 65 | and.switches.that.constitute.the |
| f0020 | 20 66 61 62 72 69 63 2e 20 53 6f 6d 65 74 69 6d 65 73 20 74 65 72 6d 65 64 20 22 6c 65 61 66 20 | .fabric..Sometimes.termed."leaf. |
| f0040 | 61 6e 64 20 73 70 69 6e 65 22 20 6f 72 20 22 66 61 74 20 74 72 65 65 22 20 74 6f 70 6f 6c 6f 67 | and.spine".or."fat.tree".topolog |
| f0060 | 69 65 73 2e 00 47 45 4e 45 56 45 20 6f 70 74 69 6f 6e 73 00 47 52 45 20 69 73 20 61 20 77 65 6c | ies..GENEVE.options.GRE.is.a.wel |
| f0080 | 6c 20 64 65 66 69 6e 65 64 20 73 74 61 6e 64 61 72 64 20 74 68 61 74 20 69 73 20 63 6f 6d 6d 6f | l.defined.standard.that.is.commo |
| f00a0 | 6e 20 69 6e 20 6d 6f 73 74 20 6e 65 74 77 6f 72 6b 73 2e 20 57 68 69 6c 65 20 6e 6f 74 20 69 6e | n.in.most.networks..While.not.in |
| f00c0 | 68 65 72 65 6e 74 6c 79 20 64 69 66 66 69 63 75 6c 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | herently.difficult.to.configure. |
| f00e0 | 74 68 65 72 65 20 61 72 65 20 61 20 63 6f 75 70 6c 65 20 6f 66 20 74 68 69 6e 67 73 20 74 6f 20 | there.are.a.couple.of.things.to. |
| f0100 | 6b 65 65 70 20 69 6e 20 6d 69 6e 64 20 74 6f 20 6d 61 6b 65 20 73 75 72 65 20 74 68 65 20 63 6f | keep.in.mind.to.make.sure.the.co |
| f0120 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 65 72 66 6f 72 6d 73 20 61 73 20 65 78 70 65 63 74 65 64 | nfiguration.performs.as.expected |
| f0140 | 2e 20 41 20 63 6f 6d 6d 6f 6e 20 63 61 75 73 65 20 66 6f 72 20 47 52 45 20 74 75 6e 6e 65 6c 73 | ..A.common.cause.for.GRE.tunnels |
| f0160 | 20 74 6f 20 66 61 69 6c 20 74 6f 20 63 6f 6d 65 20 75 70 20 63 6f 72 72 65 63 74 6c 79 20 69 6e | .to.fail.to.come.up.correctly.in |
| f0180 | 63 6c 75 64 65 20 41 43 4c 20 6f 72 20 46 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 | clude.ACL.or.Firewall.configurat |
| f01a0 | 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 64 69 73 63 61 72 64 69 6e 67 20 49 50 20 70 72 6f 74 | ions.that.are.discarding.IP.prot |
| f01c0 | 6f 63 6f 6c 20 34 37 20 6f 72 20 62 6c 6f 63 6b 69 6e 67 20 79 6f 75 72 20 73 6f 75 72 63 65 2f | ocol.47.or.blocking.your.source/ |
| f01e0 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 74 72 61 66 66 69 63 2e 00 47 52 45 20 69 73 20 61 6c 73 6f | destination.traffic..GRE.is.also |
| f0200 | 20 74 68 65 20 6f 6e 6c 79 20 63 6c 61 73 73 69 63 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 | .the.only.classic.protocol.that. |
| f0220 | 61 6c 6c 6f 77 73 20 63 72 65 61 74 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 74 75 6e 6e 65 6c 73 | allows.creating.multiple.tunnels |
| f0240 | 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 74 69 6e | .with.the.same.source.and.destin |
| f0260 | 61 74 69 6f 6e 20 64 75 65 20 74 6f 20 69 74 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 75 6e | ation.due.to.its.support.for.tun |
| f0280 | 6e 65 6c 20 6b 65 79 73 2e 20 44 65 73 70 69 74 65 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 69 73 | nel.keys..Despite.its.name,.this |
| f02a0 | 20 66 65 61 74 75 72 65 20 68 61 73 20 6e 6f 74 68 69 6e 67 20 74 6f 20 64 6f 20 77 69 74 68 20 | .feature.has.nothing.to.do.with. |
| f02c0 | 73 65 63 75 72 69 74 79 3a 20 69 74 27 73 20 73 69 6d 70 6c 79 20 61 6e 20 69 64 65 6e 74 69 66 | security:.it's.simply.an.identif |
| f02e0 | 69 65 72 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 72 6f 75 74 65 72 73 20 74 6f 20 74 65 6c 6c 20 | ier.that.allows.routers.to.tell. |
| f0300 | 6f 6e 65 20 74 75 6e 6e 65 6c 20 66 72 6f 6d 20 61 6e 6f 74 68 65 72 2e 00 47 52 45 20 69 73 20 | one.tunnel.from.another..GRE.is. |
| f0320 | 6f 66 74 65 6e 20 73 65 65 6e 20 61 73 20 61 20 6f 6e 65 20 73 69 7a 65 20 66 69 74 73 20 61 6c | often.seen.as.a.one.size.fits.al |
| f0340 | 6c 20 73 6f 6c 75 74 69 6f 6e 20 77 68 65 6e 20 69 74 20 63 6f 6d 65 73 20 74 6f 20 63 6c 61 73 | l.solution.when.it.comes.to.clas |
| f0360 | 73 69 63 20 49 50 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2c 20 61 6e 64 20 | sic.IP.tunneling.protocols,.and. |
| f0380 | 66 6f 72 20 61 20 67 6f 6f 64 20 72 65 61 73 6f 6e 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 72 | for.a.good.reason..However,.ther |
| f03a0 | 65 20 61 72 65 20 6d 6f 72 65 20 73 70 65 63 69 61 6c 69 7a 65 64 20 6f 70 74 69 6f 6e 73 2c 20 | e.are.more.specialized.options,. |
| f03c0 | 61 6e 64 20 6d 61 6e 79 20 6f 66 20 74 68 65 6d 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 20 62 | and.many.of.them.are.supported.b |
| f03e0 | 79 20 56 79 4f 53 2e 20 54 68 65 72 65 20 61 72 65 20 61 6c 73 6f 20 72 61 74 68 65 72 20 6f 62 | y.VyOS..There.are.also.rather.ob |
| f0400 | 73 63 75 72 65 20 47 52 45 20 6f 70 74 69 6f 6e 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 | scure.GRE.options.that.can.be.us |
| f0420 | 65 66 75 6c 2e 00 47 52 45 2f 49 50 49 50 2f 53 49 54 20 61 6e 64 20 49 50 73 65 63 20 61 72 65 | eful..GRE/IPIP/SIT.and.IPsec.are |
| f0440 | 20 77 69 64 65 6c 79 20 61 63 63 65 70 74 65 64 20 73 74 61 6e 64 61 72 64 73 2c 20 77 68 69 63 | .widely.accepted.standards,.whic |
| f0460 | 68 20 6d 61 6b 65 20 74 68 69 73 20 73 63 68 65 6d 65 20 65 61 73 79 20 74 6f 20 69 6d 70 6c 65 | h.make.this.scheme.easy.to.imple |
| f0480 | 6d 65 6e 74 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 76 69 72 74 75 61 6c 6c 79 20 | ment.between.VyOS.and.virtually. |
| f04a0 | 61 6e 79 20 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 00 47 52 45 54 41 50 00 47 65 6e 65 61 72 61 | any.other.router..GRETAP.Geneara |
| f04c0 | 74 65 20 61 20 6e 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e 20 | te.a.new.OpenVPN.shared.secret.. |
| f04e0 | 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 73 65 63 72 65 64 20 69 73 20 74 68 65 20 6f 75 74 70 | The.generated.secred.is.the.outp |
| f0500 | 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 61 72 61 74 65 20 61 20 6e | ut.to.the.console..Genearate.a.n |
| f0520 | 65 77 20 4f 70 65 6e 56 50 4e 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e 20 54 68 65 20 67 65 | ew.OpenVPN.shared.secret..The.ge |
| f0540 | 6e 65 72 61 74 65 64 20 73 65 63 72 65 74 20 69 73 20 74 68 65 20 6f 75 74 70 75 74 20 74 6f 20 | nerated.secret.is.the.output.to. |
| f0560 | 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 72 61 6c 00 47 65 6e 65 72 61 6c 20 43 6f 6e | the.console..General.General.Con |
| f0580 | 66 69 67 75 72 61 74 69 6f 6e 00 47 65 6e 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 | figuration.General.commands.for. |
| f05a0 | 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 63 6f 75 6e 74 65 72 20 | firewall.configuration,.counter. |
| f05c0 | 61 6e 64 20 73 74 61 74 69 73 63 69 74 73 3a 00 47 65 6e 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 | and.statiscits:.General.commands |
| f05e0 | 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 63 6f 75 | .for.firewall.configuration,.cou |
| f0600 | 6e 74 65 72 20 61 6e 64 20 73 74 61 74 69 73 74 69 63 73 3a 00 47 65 6e 65 72 61 6c 20 65 78 61 | nter.and.statistics:.General.exa |
| f0620 | 6d 70 6c 65 00 47 65 6e 65 72 61 74 65 20 3a 61 62 62 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 63 | mple.Generate.:abbr:`MKA.(MACsec |
| f0640 | 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 29 60 20 43 41 4b 20 6b 65 | .Key.Agreement.protocol)`.CAK.ke |
| f0660 | 79 20 31 32 38 20 6f 72 20 32 35 36 20 62 69 74 73 2e 00 47 65 6e 65 72 61 74 65 20 3a 61 62 62 | y.128.or.256.bits..Generate.:abb |
| f0680 | 72 3a 60 4d 4b 41 20 28 4d 41 43 73 65 63 20 4b 65 79 20 41 67 72 65 65 6d 65 6e 74 20 70 72 6f | r:`MKA.(MACsec.Key.Agreement.pro |
| f06a0 | 74 6f 63 6f 6c 29 60 20 43 41 4b 20 6b 65 79 2e 00 47 65 6e 65 72 61 74 65 20 4b 65 79 70 61 69 | tocol)`.CAK.key..Generate.Keypai |
| f06c0 | 72 00 47 65 6e 65 72 61 74 65 20 61 20 57 69 72 65 47 75 61 72 64 20 70 72 65 2d 73 68 61 72 65 | r.Generate.a.WireGuard.pre-share |
| f06e0 | 64 20 73 65 63 72 65 74 20 75 73 65 64 20 66 6f 72 20 70 65 65 72 73 20 74 6f 20 63 6f 6d 6d 75 | d.secret.used.for.peers.to.commu |
| f0700 | 6e 69 63 61 74 65 2e 00 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 4f 70 65 6e 56 50 4e 20 73 | nicate..Generate.a.new.OpenVPN.s |
| f0720 | 68 61 72 65 64 20 73 65 63 72 65 74 2e 20 54 68 65 20 67 65 6e 65 72 61 74 65 64 20 73 65 63 72 | hared.secret..The.generated.secr |
| f0740 | 65 74 20 69 73 20 74 68 65 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e | et.is.the.output.to.the.console. |
| f0760 | 00 47 65 6e 65 72 61 74 65 20 61 20 6e 65 77 20 57 69 72 65 47 75 61 72 64 20 70 75 62 6c 69 63 | .Generate.a.new.WireGuard.public |
| f0780 | 2f 70 72 69 76 61 74 65 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 61 6e 64 20 6f 75 74 70 75 74 20 | /private.key.portion.and.output. |
| f07a0 | 74 68 65 20 72 65 73 75 6c 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 47 65 6e 65 72 | the.result.to.the.console..Gener |
| f07c0 | 61 74 65 20 61 20 6e 65 77 20 73 65 74 20 6f 66 20 3a 61 62 62 72 3a 60 44 48 20 28 44 69 66 66 | ate.a.new.set.of.:abbr:`DH.(Diff |
| f07e0 | 69 65 2d 48 65 6c 6c 6d 61 6e 29 60 20 70 61 72 61 6d 65 74 65 72 73 2e 20 54 68 65 20 6b 65 79 | ie-Hellman)`.parameters..The.key |
| f0800 | 20 73 69 7a 65 20 69 73 20 72 65 71 75 65 73 74 65 64 20 62 79 20 74 68 65 20 43 4c 49 20 61 6e | .size.is.requested.by.the.CLI.an |
| f0820 | 64 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 30 34 38 20 62 69 74 2e 00 47 65 6e 65 72 61 74 65 | d.defaults.to.2048.bit..Generate |
| f0840 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 | .the.configuration.mode.commands |
| f0860 | 20 74 6f 20 61 64 64 20 61 20 70 75 62 6c 69 63 20 6b 65 79 20 66 6f 72 20 3a 72 65 66 3a 60 73 | .to.add.a.public.key.for.:ref:`s |
| f0880 | 73 68 5f 6b 65 79 5f 62 61 73 65 64 5f 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 2e 20 60 60 | sh_key_based_authentication`..`` |
| f08a0 | 3c 6c 6f 63 61 74 69 6f 6e 3e 60 60 20 63 61 6e 20 62 65 20 61 20 6c 6f 63 61 6c 20 70 61 74 68 | <location>``.can.be.a.local.path |
| f08c0 | 20 6f 72 20 61 20 55 52 4c 20 70 6f 69 6e 74 69 6e 67 20 61 74 20 61 20 72 65 6d 6f 74 65 20 66 | .or.a.URL.pointing.at.a.remote.f |
| f08e0 | 69 6c 65 2e 00 47 65 6e 65 72 61 74 65 73 20 61 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 | ile..Generates.a.keypair,.which. |
| f0900 | 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 | includes.the.public.and.private. |
| f0920 | 70 61 72 74 73 2c 20 61 6e 64 20 62 75 69 6c 64 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | parts,.and.build.a.configuration |
| f0940 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 68 69 73 20 6b 65 79 20 74 6f 20 | .command.to.install.this.key.to. |
| f0960 | 60 60 69 6e 74 65 72 66 61 63 65 60 60 2e 00 47 65 6e 65 72 61 74 65 73 20 61 20 6b 65 79 70 61 | ``interface``..Generates.a.keypa |
| f0980 | 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 61 6e | ir,.which.includes.the.public.an |
| f09a0 | 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2c 20 61 6e 64 20 62 75 69 6c 64 73 20 61 20 63 6f | d.private.parts,.and.builds.a.co |
| f09c0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 61 6c 6c 20 74 | nfiguration.command.to.install.t |
| f09e0 | 68 69 73 20 6b 65 79 20 74 6f 20 60 60 69 6e 74 65 72 66 61 63 65 60 60 2e 00 47 65 6e 65 72 61 | his.key.to.``interface``..Genera |
| f0a00 | 74 65 73 20 74 68 65 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 | tes.the.keypair,.which.includes. |
| f0a20 | 74 68 65 20 70 75 62 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2e 20 54 68 | the.public.and.private.parts..Th |
| f0a40 | 65 20 6b 65 79 20 69 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 | e.key.is.not.stored.on.the.syste |
| f0a60 | 6d 20 2d 20 6f 6e 6c 79 20 61 20 6b 65 79 70 61 69 72 20 69 73 20 67 65 6e 65 72 61 74 65 64 2e | m.-.only.a.keypair.is.generated. |
| f0a80 | 00 47 65 6e 65 72 69 63 20 52 6f 75 74 69 6e 67 20 45 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 28 | .Generic.Routing.Encapsulation.( |
| f0aa0 | 47 52 45 29 00 47 65 6e 65 76 65 20 48 65 61 64 65 72 3a 00 47 65 74 20 61 20 6c 69 73 74 20 6f | GRE).Geneve.Header:.Get.a.list.o |
| f0ac0 | 66 20 61 6c 6c 20 77 69 72 65 67 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 73 00 47 65 74 20 61 | f.all.wireguard.interfaces.Get.a |
| f0ae0 | 6e 20 6f 76 65 72 76 69 65 77 20 6f 76 65 72 20 74 68 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 63 | n.overview.over.the.encryption.c |
| f0b00 | 6f 75 6e 74 65 72 73 2e 00 47 65 74 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f | ounters..Get.detailed.informatio |
| f0b20 | 6e 20 61 62 6f 75 74 20 4c 4c 44 50 20 6e 65 69 67 68 62 6f 72 73 2e 00 47 65 74 20 74 68 65 20 | n.about.LLDP.neighbors..Get.the. |
| f0b40 | 44 48 43 50 76 36 2d 50 44 20 70 72 65 66 69 78 65 73 20 66 72 6f 6d 20 62 6f 74 68 20 72 6f 75 | DHCPv6-PD.prefixes.from.both.rou |
| f0b60 | 74 65 72 73 3a 00 47 65 74 74 69 6e 67 20 73 74 61 72 74 65 64 00 47 69 76 65 6e 20 74 68 65 20 | ters:.Getting.started.Given.the. |
| f0b80 | 66 61 63 74 20 74 68 61 74 20 6f 70 65 6e 20 44 4e 53 20 72 65 63 75 72 73 6f 72 73 20 63 6f 75 | fact.that.open.DNS.recursors.cou |
| f0ba0 | 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 20 44 44 6f 53 20 61 6d 70 6c 69 66 69 63 61 74 69 6f 6e | ld.be.used.on.DDoS.amplification |
| f0bc0 | 20 61 74 74 61 63 6b 73 2c 20 79 6f 75 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 | .attacks,.you.must.configure.the |
| f0be0 | 20 6e 65 74 77 6f 72 6b 73 20 77 68 69 63 68 20 61 72 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 75 | .networks.which.are.allowed.to.u |
| f0c00 | 73 65 20 74 68 69 73 20 72 65 63 75 72 73 6f 72 2e 20 41 20 6e 65 74 77 6f 72 6b 20 6f 66 20 60 | se.this.recursor..A.network.of.` |
| f0c20 | 60 30 2e 30 2e 30 2e 30 2f 30 60 60 20 6f 72 20 60 60 3a 3a 2f 30 60 60 20 77 6f 75 6c 64 20 61 | `0.0.0.0/0``.or.``::/0``.would.a |
| f0c40 | 6c 6c 6f 77 20 61 6c 6c 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 20 | llow.all.IPv4.and.IPv6.networks. |
| f0c60 | 74 6f 20 71 75 65 72 79 20 74 68 69 73 20 73 65 72 76 65 72 2e 20 54 68 69 73 20 69 73 20 67 65 | to.query.this.server..This.is.ge |
| f0c80 | 6e 65 72 61 6c 6c 79 20 61 20 62 61 64 20 69 64 65 61 2e 00 47 69 76 65 6e 20 74 68 65 20 66 6f | nerally.a.bad.idea..Given.the.fo |
| f0ca0 | 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 77 65 20 68 61 76 65 20 6f 6e 65 20 56 79 4f 53 | llowing.example.we.have.one.VyOS |
| f0cc0 | 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 | .router.acting.as.OpenVPN.server |
| f0ce0 | 20 61 6e 64 20 61 6e 6f 74 68 65 72 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 | .and.another.VyOS.router.acting. |
| f0d00 | 61 73 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 73 65 72 76 65 72 20 61 6c | as.OpenVPN.client..The.server.al |
| f0d20 | 73 6f 20 70 75 73 68 65 73 20 61 20 73 74 61 74 69 63 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 | so.pushes.a.static.client.IP.add |
| f0d40 | 72 65 73 73 20 74 6f 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 52 65 6d 65 | ress.to.the.OpenVPN.client..Reme |
| f0d60 | 6d 62 65 72 2c 20 63 6c 69 65 6e 74 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 75 73 69 | mber,.clients.are.identified.usi |
| f0d80 | 6e 67 20 74 68 65 69 72 20 43 4e 20 61 74 74 72 69 62 75 74 65 20 69 6e 20 74 68 65 20 53 53 4c | ng.their.CN.attribute.in.the.SSL |
| f0da0 | 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 47 69 76 65 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e | .certificate..Given.the.followin |
| f0dc0 | 67 20 65 78 61 6d 70 6c 65 20 77 65 20 68 61 76 65 20 6f 6e 65 20 56 79 4f 53 20 72 6f 75 74 65 | g.example.we.have.one.VyOS.route |
| f0de0 | 72 20 61 63 74 69 6e 67 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 61 6e | r.acting.as.an.OpenVPN.server.an |
| f0e00 | 64 20 61 6e 6f 74 68 65 72 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 63 74 69 6e 67 20 61 73 20 | d.another.VyOS.router.acting.as. |
| f0e20 | 61 6e 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 73 65 72 76 65 72 20 61 6c | an.OpenVPN.client..The.server.al |
| f0e40 | 73 6f 20 70 75 73 68 65 73 20 61 20 73 74 61 74 69 63 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 | so.pushes.a.static.client.IP.add |
| f0e60 | 72 65 73 73 20 74 6f 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 20 52 65 6d 65 | ress.to.the.OpenVPN.client..Reme |
| f0e80 | 6d 62 65 72 2c 20 63 6c 69 65 6e 74 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 75 73 69 | mber,.clients.are.identified.usi |
| f0ea0 | 6e 67 20 74 68 65 69 72 20 43 4e 20 61 74 74 72 69 62 75 74 65 20 69 6e 20 74 68 65 20 53 53 4c | ng.their.CN.attribute.in.the.SSL |
| f0ec0 | 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 47 6c 6f 61 62 61 6c 00 47 6c 6f 62 61 6c 00 47 6c 6f | .certificate..Gloabal.Global.Glo |
| f0ee0 | 62 61 6c 20 41 64 76 61 6e 63 65 64 20 6f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 4f 70 74 69 | bal.Advanced.options.Global.Opti |
| f0f00 | 6f 6e 73 00 47 6c 6f 62 61 6c 20 4f 70 74 69 6f 6e 73 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 | ons.Global.Options.Firewall.Conf |
| f0f20 | 69 67 75 72 61 74 69 6f 6e 00 47 6c 6f 62 61 6c 20 6f 70 74 69 6f 6e 73 00 47 6c 6f 62 61 6c 20 | iguration.Global.options.Global. |
| f0f40 | 70 61 72 61 6d 65 74 65 72 73 00 47 6c 6f 62 61 6c 20 73 65 74 74 69 6e 67 73 00 47 72 61 63 65 | parameters.Global.settings.Grace |
| f0f60 | 66 75 6c 20 52 65 73 74 61 72 74 00 47 72 61 70 68 51 4c 00 47 72 61 74 75 69 74 6f 75 73 20 41 | ful.Restart.GraphQL.Gratuitous.A |
| f0f80 | 52 50 00 47 72 6f 75 70 73 00 47 72 6f 75 70 73 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 75 6e | RP.Groups.Groups.need.to.have.un |
| f0fa0 | 69 71 75 65 20 6e 61 6d 65 73 2e 20 45 76 65 6e 20 74 68 6f 75 67 68 20 73 6f 6d 65 20 63 6f 6e | ique.names..Even.though.some.con |
| f0fc0 | 74 61 69 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6f 74 68 65 72 73 20 63 | tain.IPv4.addresses.and.others.c |
| f0fe0 | 6f 6e 74 61 69 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 79 20 73 74 69 6c | ontain.IPv6.addresses,.they.stil |
| f1000 | 6c 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 75 6e 69 71 75 65 20 6e 61 6d 65 73 2c 20 73 6f 20 | l.need.to.have.unique.names,.so. |
| f1020 | 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 61 70 70 65 6e 64 20 22 2d 76 34 22 20 6f 72 20 | you.may.want.to.append."-v4".or. |
| f1040 | 22 2d 76 36 22 20 74 6f 20 79 6f 75 72 20 67 72 6f 75 70 20 6e 61 6d 65 73 2e 00 48 45 20 28 48 | "-v6".to.your.group.names..HE.(H |
| f1060 | 69 67 68 20 45 66 66 69 63 69 65 6e 63 79 29 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 38 30 | igh.Efficiency).capabilities.(80 |
| f1080 | 32 2e 31 31 61 78 29 00 48 45 20 6f 70 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e | 2.11ax).HE.operating.channel.cen |
| f10a0 | 74 65 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 31 20 28 66 | ter.frequency.-.center.freq.1.(f |
| f10c0 | 6f 72 20 75 73 65 20 77 69 74 68 20 38 30 2c 20 38 30 2b 38 30 20 61 6e 64 20 31 36 30 20 6d 6f | or.use.with.80,.80+80.and.160.mo |
| f10e0 | 64 65 73 29 00 48 45 20 6f 70 65 72 61 74 69 6e 67 20 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 | des).HE.operating.channel.center |
| f1100 | 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 66 72 65 71 20 32 20 28 66 6f 72 20 | .frequency.-.center.freq.2.(for. |
| f1120 | 75 73 65 20 77 69 74 68 20 74 68 65 20 38 30 2b 38 30 20 6d 6f 64 65 29 00 48 50 20 4c 54 34 31 | use.with.the.80+80.mode).HP.LT41 |
| f1140 | 32 30 20 53 6e 61 70 64 72 61 67 6f 6e 20 58 35 20 4c 54 45 00 48 51 27 73 20 72 6f 75 74 65 72 | 20.Snapdragon.X5.LTE.HQ's.router |
| f1160 | 20 72 65 71 75 69 72 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 74 65 70 73 20 74 6f | .requires.the.following.steps.to |
| f1180 | 20 67 65 6e 65 72 61 74 65 20 63 72 79 70 74 6f 20 6d 61 74 65 72 69 61 6c 73 20 66 6f 72 20 74 | .generate.crypto.materials.for.t |
| f11a0 | 68 65 20 42 72 61 6e 63 68 20 31 3a 00 48 54 20 28 48 69 67 68 20 54 68 72 6f 75 67 68 70 75 74 | he.Branch.1:.HT.(High.Throughput |
| f11c0 | 29 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 38 30 32 2e 31 31 6e 29 00 48 54 54 50 20 41 50 | ).capabilities.(802.11n).HTTP.AP |
| f11e0 | 49 00 48 54 54 50 20 62 61 73 65 64 20 73 65 72 76 69 63 65 73 00 48 54 54 50 20 62 61 73 69 63 | I.HTTP.based.services.HTTP.basic |
| f1200 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 75 73 65 72 6e 61 6d 65 00 48 54 54 50 20 62 61 | .authentication.username.HTTP.ba |
| f1220 | 73 69 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 48 54 54 50 20 63 68 65 63 6b 73 00 | sic.authentication..HTTP.checks. |
| f1240 | 48 54 54 50 20 63 6c 69 65 6e 74 00 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 00 48 54 | HTTP.client.HTTP.health.check.HT |
| f1260 | 54 50 2d 41 50 49 00 48 61 69 72 70 69 6e 20 4e 41 54 2f 4e 41 54 20 52 65 66 6c 65 63 74 69 6f | TP-API.Hairpin.NAT/NAT.Reflectio |
| f1280 | 6e 00 48 61 6e 64 20 6f 75 74 20 70 72 65 66 69 78 65 73 20 6f 66 20 73 69 7a 65 20 60 3c 6c 65 | n.Hand.out.prefixes.of.size.`<le |
| f12a0 | 6e 67 74 68 3e 60 20 69 6e 20 62 69 74 73 20 66 72 6f 6d 20 60 3c 70 64 2d 70 72 65 66 69 78 3e | ngth>`.in.bits.from.`<pd-prefix> |
| f12c0 | 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 69 6e 20 73 75 62 6e 65 74 20 60 3c 70 72 65 66 69 78 3e | `.to.clients.in.subnet.`<prefix> |
| f12e0 | 60 20 77 68 65 6e 20 74 68 65 20 72 65 71 75 65 73 74 20 66 6f 72 20 70 72 65 66 69 78 20 64 65 | `.when.the.request.for.prefix.de |
| f1300 | 6c 65 67 61 74 69 6f 6e 2e 00 48 61 6e 64 20 6f 75 74 20 70 72 65 66 69 78 65 73 20 6f 66 20 73 | legation..Hand.out.prefixes.of.s |
| f1320 | 69 7a 65 20 60 3c 6c 65 6e 67 74 68 3e 60 20 74 6f 20 63 6c 69 65 6e 74 73 20 69 6e 20 73 75 62 | ize.`<length>`.to.clients.in.sub |
| f1340 | 6e 65 74 20 60 3c 70 72 65 66 69 78 3e 60 20 77 68 65 6e 20 74 68 65 79 20 72 65 71 75 65 73 74 | net.`<prefix>`.when.they.request |
| f1360 | 20 66 6f 72 20 70 72 65 66 69 78 20 64 65 6c 65 67 61 74 69 6f 6e 2e 00 48 61 6e 64 6c 69 6e 67 | .for.prefix.delegation..Handling |
| f1380 | 20 61 6e 64 20 6d 6f 6e 69 74 6f 72 69 6e 67 00 48 61 70 72 6f 78 79 00 48 61 70 72 6f 78 79 20 | .and.monitoring.Haproxy.Haproxy. |
| f13a0 | 69 73 20 61 20 62 61 6c 61 6e 63 65 72 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 20 74 | is.a.balancer.and.proxy.server.t |
| f13c0 | 68 61 74 20 70 72 6f 76 69 64 65 73 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 2c 20 | hat.provides.high-availability,. |
| f13e0 | 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 61 6e 64 20 70 72 6f 78 79 69 6e 67 20 66 6f 72 20 | load.balancing.and.proxying.for. |
| f1400 | 54 43 50 20 28 6c 65 76 65 6c 20 34 29 20 61 6e 64 20 48 54 54 50 2d 62 61 73 65 64 20 28 6c 65 | TCP.(level.4).and.HTTP-based.(le |
| f1420 | 76 65 6c 20 37 29 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 48 61 72 64 77 61 72 65 20 54 69 | vel.7).applications..Hardware.Ti |
| f1440 | 6d 65 73 74 61 6d 70 69 6e 67 20 6f 66 20 4e 54 50 20 50 61 63 6b 65 74 73 00 48 61 72 64 77 61 | mestamping.of.NTP.Packets.Hardwa |
| f1460 | 72 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 64 65 70 65 6e 64 73 20 6f 6e 20 4e 49 43 20 73 | re.timestamping.depends.on.NIC.s |
| f1480 | 75 70 70 6f 72 74 2e 20 53 6f 6d 65 20 4e 49 43 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 | upport..Some.NICs.can.be.configu |
| f14a0 | 72 65 64 20 74 6f 20 61 70 70 6c 79 20 74 69 6d 65 73 74 61 6d 70 73 20 74 6f 20 61 6e 79 20 69 | red.to.apply.timestamps.to.any.i |
| f14c0 | 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 2c 20 77 68 69 6c 65 20 6f 74 68 65 72 73 20 6f 6e 6c | ncoming.packet,.while.others.onl |
| f14e0 | 79 20 73 75 70 70 6f 72 74 20 61 70 70 6c 79 69 6e 67 20 74 69 6d 65 73 74 61 6d 70 73 20 74 6f | y.support.applying.timestamps.to |
| f1500 | 20 73 70 65 63 69 66 69 63 20 70 72 6f 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 50 54 50 29 2e 00 | .specific.protocols.(e.g..PTP).. |
| f1520 | 48 61 76 69 6e 67 20 63 6f 6e 74 72 6f 6c 20 6f 76 65 72 20 74 68 65 20 6d 61 74 63 68 69 6e 67 | Having.control.over.the.matching |
| f1540 | 20 6f 66 20 49 4e 56 41 4c 49 44 20 73 74 61 74 65 20 74 72 61 66 66 69 63 2c 20 65 2e 67 2e 20 | .of.INVALID.state.traffic,.e.g.. |
| f1560 | 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 73 65 6c 65 63 74 69 76 65 6c 79 20 6c 6f 67 2c 20 | the.ability.to.selectively.log,. |
| f1580 | 69 73 20 61 6e 20 69 6d 70 6f 72 74 61 6e 74 20 74 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 20 | is.an.important.troubleshooting. |
| f15a0 | 74 6f 6f 6c 20 66 6f 72 20 6f 62 73 65 72 76 69 6e 67 20 62 72 6f 6b 65 6e 20 70 72 6f 74 6f 63 | tool.for.observing.broken.protoc |
| f15c0 | 6f 6c 20 62 65 68 61 76 69 6f 72 2e 20 46 6f 72 20 74 68 69 73 20 72 65 61 73 6f 6e 2c 20 56 79 | ol.behavior..For.this.reason,.Vy |
| f15e0 | 4f 53 20 64 6f 65 73 20 6e 6f 74 20 67 6c 6f 62 61 6c 6c 79 20 64 72 6f 70 20 69 6e 76 61 6c 69 | OS.does.not.globally.drop.invali |
| f1600 | 64 20 73 74 61 74 65 20 74 72 61 66 66 69 63 2c 20 69 6e 73 74 65 61 64 20 61 6c 6c 6f 77 69 6e | d.state.traffic,.instead.allowin |
| f1620 | 67 20 74 68 65 20 6f 70 65 72 61 74 6f 72 20 74 6f 20 6d 61 6b 65 20 74 68 65 20 64 65 74 65 72 | g.the.operator.to.make.the.deter |
| f1640 | 6d 69 6e 61 74 69 6f 6e 20 6f 6e 20 68 6f 77 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 68 | mination.on.how.the.traffic.is.h |
| f1660 | 61 6e 64 6c 65 64 2e 00 48 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 73 00 48 65 61 | andled..Health.check.scripts.Hea |
| f1680 | 6c 74 68 20 63 68 65 63 6b 73 00 48 65 61 6c 74 68 20 63 68 65 63 6b 73 20 63 61 6e 20 61 6c 73 | lth.checks.Health.checks.can.als |
| f16a0 | 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 54 43 50 20 6d 6f 64 65 20 62 61 63 | o.be.configured.for.TCP.mode.bac |
| f16c0 | 6b 65 6e 64 73 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 70 72 6f 74 6f 63 6f | kends..You.can.configure.protoco |
| f16e0 | 6c 20 61 77 61 72 65 20 63 68 65 63 6b 73 20 66 6f 72 20 61 20 72 61 6e 67 65 20 6f 66 20 4c 61 | l.aware.checks.for.a.range.of.La |
| f1700 | 79 65 72 20 37 20 70 72 6f 74 6f 63 6f 6c 73 3a 00 48 65 61 6c 74 68 2d 63 68 65 63 6b 00 48 65 | yer.7.protocols:.Health-check.He |
| f1720 | 72 65 20 61 72 65 20 73 6f 6d 65 20 65 78 61 6d 70 6c 65 73 20 66 6f 72 20 61 70 70 6c 79 69 6e | re.are.some.examples.for.applyin |
| f1740 | 67 20 61 20 72 75 6c 65 2d 73 65 74 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 00 48 65 72 | g.a.rule-set.to.an.interface.Her |
| f1760 | 65 20 69 73 20 61 20 73 65 63 6f 6e 64 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 64 75 61 6c 2d | e.is.a.second.example.of.a.dual- |
| f1780 | 73 74 61 63 6b 20 74 75 6e 6e 65 6c 20 6f 76 65 72 20 49 50 76 36 20 62 65 74 77 65 65 6e 20 61 | stack.tunnel.over.IPv6.between.a |
| f17a0 | 20 56 79 4f 53 20 72 6f 75 74 65 72 20 61 6e 64 20 61 20 4c 69 6e 75 78 20 68 6f 73 74 20 75 73 | .VyOS.router.and.a.Linux.host.us |
| f17c0 | 69 6e 67 20 73 79 73 74 65 6d 64 2d 6e 65 74 77 6f 72 6b 64 2e 00 48 65 72 65 20 69 73 20 61 6e | ing.systemd-networkd..Here.is.an |
| f17e0 | 20 65 78 61 6d 70 6c 65 20 3a 61 62 62 72 3a 60 4e 45 54 20 28 4e 65 74 77 6f 72 6b 20 45 6e 74 | .example.:abbr:`NET.(Network.Ent |
| f1800 | 69 74 79 20 54 69 74 6c 65 29 60 20 76 61 6c 75 65 3a 00 48 65 72 65 20 69 73 20 61 6e 20 65 78 | ity.Title)`.value:.Here.is.an.ex |
| f1820 | 61 6d 70 6c 65 20 6f 66 20 73 75 63 68 20 63 6f 6d 6d 61 6e 64 3a 00 48 65 72 65 20 69 73 20 61 | ample.of.such.command:.Here.is.a |
| f1840 | 6e 20 65 78 61 6d 70 6c 65 20 72 6f 75 74 65 2d 6d 61 70 20 74 6f 20 61 70 70 6c 79 20 74 6f 20 | n.example.route-map.to.apply.to. |
| f1860 | 72 6f 75 74 65 73 20 6c 65 61 72 6e 65 64 20 61 74 20 69 6d 70 6f 72 74 2e 20 49 6e 20 74 68 69 | routes.learned.at.import..In.thi |
| f1880 | 73 20 66 69 6c 74 65 72 20 77 65 20 72 65 6a 65 63 74 20 70 72 65 66 69 78 65 73 20 77 69 74 68 | s.filter.we.reject.prefixes.with |
| f18a0 | 20 74 68 65 20 73 74 61 74 65 20 60 69 6e 76 61 6c 69 64 60 2c 20 61 6e 64 20 73 65 74 20 61 20 | .the.state.`invalid`,.and.set.a. |
| f18c0 | 68 69 67 68 65 72 20 60 6c 6f 63 61 6c 2d 70 72 65 66 65 72 65 6e 63 65 60 20 69 66 20 74 68 65 | higher.`local-preference`.if.the |
| f18e0 | 20 70 72 65 66 69 78 20 69 73 20 52 50 4b 49 20 60 76 61 6c 69 64 60 20 72 61 74 68 65 72 20 74 | .prefix.is.RPKI.`valid`.rather.t |
| f1900 | 68 61 6e 20 6d 65 72 65 6c 79 20 60 6e 6f 74 66 6f 75 6e 64 60 2e 00 48 65 72 65 20 69 73 20 61 | han.merely.`notfound`..Here.is.a |
| f1920 | 6e 20 65 78 61 6d 70 6c 65 20 77 65 72 65 20 6d 75 6c 74 69 70 6c 65 20 67 72 6f 75 70 73 20 61 | n.example.were.multiple.groups.a |
| f1940 | 72 65 20 63 72 65 61 74 65 64 3a 00 48 65 72 65 20 69 73 20 74 68 65 20 72 6f 75 74 69 6e 67 20 | re.created:.Here.is.the.routing. |
| f1960 | 74 61 62 6c 65 73 20 73 68 6f 77 69 6e 67 20 74 68 65 20 4d 50 4c 53 20 73 65 67 6d 65 6e 74 20 | tables.showing.the.MPLS.segment. |
| f1980 | 72 6f 75 74 69 6e 67 20 6c 61 62 65 6c 20 6f 70 65 72 61 74 69 6f 6e 73 3a 00 48 65 72 65 20 77 | routing.label.operations:.Here.w |
| f19a0 | 65 20 70 72 6f 76 69 64 65 20 74 77 6f 20 65 78 61 6d 70 6c 65 73 20 6f 6e 20 68 6f 77 20 74 6f | e.provide.two.examples.on.how.to |
| f19c0 | 20 61 70 70 6c 79 20 4e 41 54 20 4c 6f 61 64 20 42 61 6c 61 6e 63 65 2e 00 48 65 72 65 27 73 20 | .apply.NAT.Load.Balance..Here's. |
| f19e0 | 61 6e 20 65 78 74 72 61 63 74 20 6f 66 20 61 20 73 69 6d 70 6c 65 20 31 2d 74 6f 2d 31 20 4e 41 | an.extract.of.a.simple.1-to-1.NA |
| f1a00 | 54 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 74 68 20 6f 6e 65 20 69 6e 74 65 72 6e 61 | T.configuration.with.one.interna |
| f1a20 | 6c 20 61 6e 64 20 6f 6e 65 20 65 78 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 3a 00 48 65 | l.and.one.external.interface:.He |
| f1a40 | 72 65 27 73 20 6f 6e 65 20 65 78 61 6d 70 6c 65 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 20 65 6e | re's.one.example.of.a.network.en |
| f1a60 | 76 69 72 6f 6e 6d 65 6e 74 20 66 6f 72 20 61 6e 20 41 53 50 2e 20 54 68 65 20 41 53 50 20 72 65 | vironment.for.an.ASP..The.ASP.re |
| f1a80 | 71 75 65 73 74 73 20 74 68 61 74 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d | quests.that.all.connections.from |
| f1aa0 | 20 74 68 69 73 20 63 6f 6d 70 61 6e 79 20 73 68 6f 75 6c 64 20 63 6f 6d 65 20 66 72 6f 6d 20 31 | .this.company.should.come.from.1 |
| f1ac0 | 37 32 2e 32 39 2e 34 31 2e 38 39 20 2d 20 61 6e 20 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 | 72.29.41.89.-.an.address.that.is |
| f1ae0 | 20 61 73 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 41 53 50 20 61 6e 64 20 6e 6f 74 20 69 6e 20 | .assigned.by.the.ASP.and.not.in. |
| f1b00 | 75 73 65 20 61 74 20 74 68 65 20 63 75 73 74 6f 6d 65 72 20 73 69 74 65 2e 00 48 65 72 65 27 73 | use.at.the.customer.site..Here's |
| f1b20 | 20 74 68 65 20 49 50 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 70 6f 70 75 6c 61 74 65 | .the.IP.routes.that.are.populate |
| f1b40 | 64 2e 20 4a 75 73 74 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 3a 00 48 65 72 65 27 73 20 74 68 65 | d..Just.the.loopback:.Here's.the |
| f1b60 | 20 49 50 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 70 6f 70 75 6c 61 74 65 64 3a 00 48 | .IP.routes.that.are.populated:.H |
| f1b80 | 65 72 65 27 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 75 70 3a 00 48 65 72 65 27 73 20 74 | ere's.the.neighbors.up:.Here's.t |
| f1ba0 | 68 65 20 72 6f 75 74 65 73 3a 00 48 65 77 6c 65 74 74 2d 50 61 63 6b 61 72 64 20 63 61 6c 6c 20 | he.routes:.Hewlett-Packard.call. |
| f1bc0 | 69 74 20 53 6f 75 72 63 65 2d 50 6f 72 74 20 66 69 6c 74 65 72 69 6e 67 20 6f 72 20 70 6f 72 74 | it.Source-Port.filtering.or.port |
| f1be0 | 2d 69 73 6f 6c 61 74 69 6f 6e 00 48 69 67 68 00 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 | -isolation.High.High.Availabilit |
| f1c00 | 79 00 48 69 67 68 20 61 76 61 69 6c 61 62 69 6c 69 74 79 00 48 6f 6d 65 20 55 73 65 72 73 00 48 | y.High.availability.Home.Users.H |
| f1c20 | 6f 70 20 63 6f 75 6e 74 20 66 69 65 6c 64 20 6f 66 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 52 | op.count.field.of.the.outgoing.R |
| f1c40 | 41 20 70 61 63 6b 65 74 73 00 48 6f 73 74 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 00 48 6f 73 74 20 | A.packets.Host.Information.Host. |
| f1c60 | 6e 61 6d 65 00 48 6f 73 74 20 73 70 65 63 69 66 69 63 20 6d 61 70 70 69 6e 67 20 73 68 61 6c 6c | name.Host.specific.mapping.shall |
| f1c80 | 20 62 65 20 6e 61 6d 65 64 20 60 60 63 6c 69 65 6e 74 31 60 60 00 48 6f 73 74 6e 61 6d 65 00 48 | .be.named.``client1``.Hostname.H |
| f1ca0 | 6f 77 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 | ow.an.IP.address.is.assigned.to. |
| f1cc0 | 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 3a 72 65 66 3a 60 65 74 68 65 72 6e 65 74 2d 69 | an.interface.in.:ref:`ethernet-i |
| f1ce0 | 6e 74 65 72 66 61 63 65 60 2e 20 54 68 69 73 20 73 65 63 74 69 6f 6e 20 73 68 6f 77 73 20 68 6f | nterface`..This.section.shows.ho |
| f1d00 | 77 20 74 6f 20 73 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 20 61 6e 20 49 50 20 61 64 64 72 65 73 | w.to.statically.map.an.IP.addres |
| f1d20 | 73 20 74 6f 20 61 20 68 6f 73 74 6e 61 6d 65 20 66 6f 72 20 6c 6f 63 61 6c 20 28 6d 65 61 6e 69 | s.to.a.hostname.for.local.(meani |
| f1d40 | 6e 67 20 6f 6e 20 74 68 69 73 20 56 79 4f 53 20 69 6e 73 74 61 6e 63 65 29 20 6e 61 6d 65 20 72 | ng.on.this.VyOS.instance).name.r |
| f1d60 | 65 73 6f 6c 75 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 74 68 65 20 56 79 4f 53 20 65 71 75 69 | esolution..This.is.the.VyOS.equi |
| f1d80 | 76 61 6c 65 6e 74 20 74 6f 20 60 2f 65 74 63 2f 68 6f 73 74 73 60 20 66 69 6c 65 20 65 6e 74 72 | valent.to.`/etc/hosts`.file.entr |
| f1da0 | 69 65 73 2e 00 48 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 45 76 65 6e 74 20 48 61 6e 64 | ies..How.to.configure.Event.Hand |
| f1dc0 | 6c 65 72 00 48 6f 77 20 74 6f 20 6d 61 6b 65 20 69 74 20 77 6f 72 6b 00 48 6f 77 65 76 65 72 2c | ler.How.to.make.it.work.However, |
| f1de0 | 20 6e 6f 77 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 6d 61 6b 65 20 49 50 73 65 63 20 77 6f 72 6b | .now.you.need.to.make.IPsec.work |
| f1e00 | 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 6f 6e 20 6f 6e 65 20 73 69 64 | .with.dynamic.address.on.one.sid |
| f1e20 | 65 2e 20 54 68 65 20 74 72 69 63 6b 79 20 70 61 72 74 20 69 73 20 74 68 61 74 20 70 72 65 2d 73 | e..The.tricky.part.is.that.pre-s |
| f1e40 | 68 61 72 65 64 20 73 65 63 72 65 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 6f 65 73 | hared.secret.authentication.does |
| f1e60 | 6e 27 74 20 77 6f 72 6b 20 77 69 74 68 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 2c 20 73 | n't.work.with.dynamic.address,.s |
| f1e80 | 6f 20 77 65 27 6c 6c 20 68 61 76 65 20 74 6f 20 75 73 65 20 52 53 41 20 6b 65 79 73 2e 00 48 6f | o.we'll.have.to.use.RSA.keys..Ho |
| f1ea0 | 77 65 76 65 72 2c 20 73 69 6e 63 65 20 56 79 4f 53 20 31 2e 34 2c 20 69 74 20 69 73 20 70 6f 73 | wever,.since.VyOS.1.4,.it.is.pos |
| f1ec0 | 73 69 62 6c 65 20 74 6f 20 76 65 72 69 66 79 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 | sible.to.verify.self-signed.cert |
| f1ee0 | 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6e 67 65 | ificates.using.certificate.finge |
| f1f00 | 72 70 72 69 6e 74 73 2e 00 48 6f 77 65 76 65 72 2c 20 73 70 6c 69 74 2d 74 75 6e 6e 65 6c 69 6e | rprints..However,.split-tunnelin |
| f1f20 | 67 20 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 62 79 20 73 70 65 63 69 66 79 69 6e 67 20 | g.can.be.achieved.by.specifying. |
| f1f40 | 74 68 65 20 72 65 6d 6f 74 65 20 73 75 62 6e 65 74 73 2e 20 54 68 69 73 20 65 6e 73 75 72 65 73 | the.remote.subnets..This.ensures |
| f1f60 | 20 74 68 61 74 20 6f 6e 6c 79 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 | .that.only.traffic.destined.for. |
| f1f80 | 74 68 65 20 72 65 6d 6f 74 65 20 73 69 74 65 20 69 73 20 73 65 6e 74 20 6f 76 65 72 20 74 68 65 | the.remote.site.is.sent.over.the |
| f1fa0 | 20 74 75 6e 6e 65 6c 2e 20 41 6c 6c 20 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 69 73 20 75 6e | .tunnel..All.other.traffic.is.un |
| f1fc0 | 61 66 66 65 63 74 65 64 2e 00 48 75 61 77 65 69 20 4d 45 39 30 39 73 2d 31 32 30 20 6d 69 6e 69 | affected..Huawei.ME909s-120.mini |
| f1fe0 | 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 48 75 61 77 65 69 20 4d 45 39 30 39 75 2d 35 32 | PCIe.card.(LTE).Huawei.ME909u-52 |
| f2000 | 31 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 48 75 62 00 49 45 45 45 20 38 | 1.miniPCIe.card.(LTE).Hub.IEEE.8 |
| f2020 | 30 32 2e 31 58 2f 4d 41 43 73 65 63 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 | 02.1X/MACsec.pre-shared.key.mode |
| f2040 | 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 4d 41 43 73 65 63 | ..This.allows.configuring.MACsec |
| f2060 | 20 77 69 74 68 20 61 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 75 73 69 6e 67 20 61 20 3a | .with.a.pre-shared.key.using.a.: |
| f2080 | 61 62 62 72 3a 60 43 41 4b 20 28 4d 41 43 73 65 63 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 61 | abbr:`CAK.(MACsec.connectivity.a |
| f20a0 | 73 73 6f 63 69 61 74 69 6f 6e 20 6b 65 79 29 60 20 61 6e 64 20 3a 61 62 62 72 3a 60 43 4b 4e 20 | ssociation.key)`.and.:abbr:`CKN. |
| f20c0 | 28 4d 41 43 73 65 63 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e | (MACsec.connectivity.association |
| f20e0 | 20 6e 61 6d 65 29 60 20 70 61 69 72 2e 00 49 45 45 45 20 38 30 32 2e 31 58 2f 4d 41 43 73 65 63 | .name)`.pair..IEEE.802.1X/MACsec |
| f2100 | 20 72 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 20 77 69 6e 64 6f 77 2e 20 54 68 69 73 20 | .replay.protection.window..This. |
| f2120 | 64 65 74 65 72 6d 69 6e 65 73 20 61 20 77 69 6e 64 6f 77 20 69 6e 20 77 68 69 63 68 20 72 65 70 | determines.a.window.in.which.rep |
| f2140 | 6c 61 79 20 69 73 20 74 6f 6c 65 72 61 74 65 64 2c 20 74 6f 20 61 6c 6c 6f 77 20 72 65 63 65 69 | lay.is.tolerated,.to.allow.recei |
| f2160 | 70 74 20 6f 66 20 66 72 61 6d 65 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 6d 69 73 6f | pt.of.frames.that.have.been.miso |
| f2180 | 72 64 65 72 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 00 49 45 45 45 20 38 30 32 2e | rdered.by.the.network..IEEE.802. |
| f21a0 | 31 61 64 5f 20 77 61 73 20 61 6e 20 45 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 69 6e 67 20 | 1ad_.was.an.Ethernet.networking. |
| f21c0 | 73 74 61 6e 64 61 72 64 20 69 6e 66 6f 72 6d 61 6c 6c 79 20 6b 6e 6f 77 6e 20 61 73 20 51 69 6e | standard.informally.known.as.Qin |
| f21e0 | 51 20 61 73 20 61 6e 20 61 6d 65 6e 64 6d 65 6e 74 20 74 6f 20 49 45 45 45 20 73 74 61 6e 64 61 | Q.as.an.amendment.to.IEEE.standa |
| f2200 | 72 64 20 38 30 32 2e 31 71 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 73 20 64 65 73 | rd.802.1q.VLAN.interfaces.as.des |
| f2220 | 63 72 69 62 65 64 20 61 62 6f 76 65 2e 20 38 30 32 2e 31 61 64 20 77 61 73 20 69 6e 63 6f 72 70 | cribed.above..802.1ad.was.incorp |
| f2240 | 6f 72 61 74 65 64 20 69 6e 74 6f 20 74 68 65 20 62 61 73 65 20 38 30 32 2e 31 71 5f 20 73 74 61 | orated.into.the.base.802.1q_.sta |
| f2260 | 6e 64 61 72 64 20 69 6e 20 32 30 31 31 2e 20 54 68 65 20 74 65 63 68 6e 69 71 75 65 20 69 73 20 | ndard.in.2011..The.technique.is. |
| f2280 | 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 20 70 72 6f 76 69 64 65 72 20 62 72 69 64 67 69 6e 67 2c | also.known.as.provider.bridging, |
| f22a0 | 20 53 74 61 63 6b 65 64 20 56 4c 41 4e 73 2c 20 6f 72 20 73 69 6d 70 6c 79 20 51 69 6e 51 20 6f | .Stacked.VLANs,.or.simply.QinQ.o |
| f22c0 | 72 20 51 2d 69 6e 2d 51 2e 20 22 51 2d 69 6e 2d 51 22 20 63 61 6e 20 66 6f 72 20 73 75 70 70 6f | r.Q-in-Q.."Q-in-Q".can.for.suppo |
| f22e0 | 72 74 65 64 20 64 65 76 69 63 65 73 20 61 70 70 6c 79 20 74 6f 20 43 2d 74 61 67 20 73 74 61 63 | rted.devices.apply.to.C-tag.stac |
| f2300 | 6b 69 6e 67 20 6f 6e 20 43 2d 74 61 67 20 28 45 74 68 65 72 6e 65 74 20 54 79 70 65 20 3d 20 30 | king.on.C-tag.(Ethernet.Type.=.0 |
| f2320 | 78 38 31 30 30 29 2e 00 49 45 45 45 20 38 30 32 2e 31 71 5f 2c 20 6f 66 74 65 6e 20 72 65 66 65 | x8100)..IEEE.802.1q_,.often.refe |
| f2340 | 72 72 65 64 20 74 6f 20 61 73 20 44 6f 74 31 71 2c 20 69 73 20 74 68 65 20 6e 65 74 77 6f 72 6b | rred.to.as.Dot1q,.is.the.network |
| f2360 | 69 6e 67 20 73 74 61 6e 64 61 72 64 20 74 68 61 74 20 73 75 70 70 6f 72 74 73 20 76 69 72 74 75 | ing.standard.that.supports.virtu |
| f2380 | 61 6c 20 4c 41 4e 73 20 28 56 4c 41 4e 73 29 20 6f 6e 20 61 6e 20 49 45 45 45 20 38 30 32 2e 33 | al.LANs.(VLANs).on.an.IEEE.802.3 |
| f23a0 | 20 45 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 20 | .Ethernet.network..The.standard. |
| f23c0 | 64 65 66 69 6e 65 73 20 61 20 73 79 73 74 65 6d 20 6f 66 20 56 4c 41 4e 20 74 61 67 67 69 6e 67 | defines.a.system.of.VLAN.tagging |
| f23e0 | 20 66 6f 72 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 20 61 6e 64 20 74 68 65 20 61 63 63 | .for.Ethernet.frames.and.the.acc |
| f2400 | 6f 6d 70 61 6e 79 69 6e 67 20 70 72 6f 63 65 64 75 72 65 73 20 74 6f 20 62 65 20 75 73 65 64 20 | ompanying.procedures.to.be.used. |
| f2420 | 62 79 20 62 72 69 64 67 65 73 20 61 6e 64 20 73 77 69 74 63 68 65 73 20 69 6e 20 68 61 6e 64 6c | by.bridges.and.switches.in.handl |
| f2440 | 69 6e 67 20 73 75 63 68 20 66 72 61 6d 65 73 2e 20 54 68 65 20 73 74 61 6e 64 61 72 64 20 61 6c | ing.such.frames..The.standard.al |
| f2460 | 73 6f 20 63 6f 6e 74 61 69 6e 73 20 70 72 6f 76 69 73 69 6f 6e 73 20 66 6f 72 20 61 20 71 75 61 | so.contains.provisions.for.a.qua |
| f2480 | 6c 69 74 79 2d 6f 66 2d 73 65 72 76 69 63 65 20 70 72 69 6f 72 69 74 69 7a 61 74 69 6f 6e 20 73 | lity-of-service.prioritization.s |
| f24a0 | 63 68 65 6d 65 20 63 6f 6d 6d 6f 6e 6c 79 20 6b 6e 6f 77 6e 20 61 73 20 49 45 45 45 20 38 30 32 | cheme.commonly.known.as.IEEE.802 |
| f24c0 | 2e 31 70 20 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 47 65 6e 65 72 69 63 20 41 74 74 72 | .1p.and.defines.the.Generic.Attr |
| f24e0 | 69 62 75 74 65 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 2e 00 49 45 54 | ibute.Registration.Protocol..IET |
| f2500 | 46 20 70 75 62 6c 69 73 68 65 64 20 3a 72 66 63 3a 60 36 35 39 38 60 2c 20 64 65 74 61 69 6c 69 | F.published.:rfc:`6598`,.detaili |
| f2520 | 6e 67 20 61 20 73 68 61 72 65 64 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 66 6f 72 20 75 73 | ng.a.shared.address.space.for.us |
| f2540 | 65 20 69 6e 20 49 53 50 20 43 47 4e 20 64 65 70 6c 6f 79 6d 65 6e 74 73 20 74 68 61 74 20 63 61 | e.in.ISP.CGN.deployments.that.ca |
| f2560 | 6e 20 68 61 6e 64 6c 65 20 74 68 65 20 73 61 6d 65 20 6e 65 74 77 6f 72 6b 20 70 72 65 66 69 78 | n.handle.the.same.network.prefix |
| f2580 | 65 73 20 6f 63 63 75 72 72 69 6e 67 20 62 6f 74 68 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 61 6e 64 | es.occurring.both.on.inbound.and |
| f25a0 | 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 73 2e 20 41 52 49 4e 20 72 65 74 75 72 | .outbound.interfaces..ARIN.retur |
| f25c0 | 6e 65 64 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a 60 | ned.address.space.to.the.:abbr:` |
| f25e0 | 49 41 4e 41 20 28 49 6e 74 65 72 6e 65 74 20 41 73 73 69 67 6e 65 64 20 4e 75 6d 62 65 72 73 20 | IANA.(Internet.Assigned.Numbers. |
| f2600 | 41 75 74 68 6f 72 69 74 79 29 60 20 66 6f 72 20 74 68 69 73 20 61 6c 6c 6f 63 61 74 69 6f 6e 2e | Authority)`.for.this.allocation. |
| f2620 | 00 49 47 4d 50 20 2d 20 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e | .IGMP.-.Internet.Group.Managemen |
| f2640 | 74 20 50 72 6f 74 6f 63 6f 6c 29 00 49 47 4d 50 20 50 72 6f 78 79 00 49 4b 45 20 28 49 6e 74 65 | t.Protocol).IGMP.Proxy.IKE.(Inte |
| f2660 | 72 6e 65 74 20 4b 65 79 20 45 78 63 68 61 6e 67 65 29 20 41 74 74 72 69 62 75 74 65 73 00 49 4b | rnet.Key.Exchange).Attributes.IK |
| f2680 | 45 20 50 68 61 73 65 3a 00 49 4b 45 20 70 65 72 66 6f 72 6d 73 20 6d 75 74 75 61 6c 20 61 75 74 | E.Phase:.IKE.performs.mutual.aut |
| f26a0 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 74 77 6f 20 70 61 72 74 69 65 73 20 | hentication.between.two.parties. |
| f26c0 | 61 6e 64 20 65 73 74 61 62 6c 69 73 68 65 73 20 61 6e 20 49 4b 45 20 73 65 63 75 72 69 74 79 20 | and.establishes.an.IKE.security. |
| f26e0 | 61 73 73 6f 63 69 61 74 69 6f 6e 20 28 53 41 29 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 73 | association.(SA).that.includes.s |
| f2700 | 68 61 72 65 64 20 73 65 63 72 65 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 63 61 | hared.secret.information.that.ca |
| f2720 | 6e 20 62 65 20 75 73 65 64 20 74 6f 20 65 66 66 69 63 69 65 6e 74 6c 79 20 65 73 74 61 62 6c 69 | n.be.used.to.efficiently.establi |
| f2740 | 73 68 20 53 41 73 20 66 6f 72 20 45 6e 63 61 70 73 75 6c 61 74 69 6e 67 20 53 65 63 75 72 69 74 | sh.SAs.for.Encapsulating.Securit |
| f2760 | 79 20 50 61 79 6c 6f 61 64 20 28 45 53 50 29 20 6f 72 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f | y.Payload.(ESP).or.Authenticatio |
| f2780 | 6e 20 48 65 61 64 65 72 20 28 41 48 29 20 61 6e 64 20 61 20 73 65 74 20 6f 66 20 63 72 79 70 74 | n.Header.(AH).and.a.set.of.crypt |
| f27a0 | 6f 67 72 61 70 68 69 63 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 73 65 64 20 62 | ographic.algorithms.to.be.used.b |
| f27c0 | 79 20 74 68 65 20 53 41 73 20 74 6f 20 70 72 6f 74 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 | y.the.SAs.to.protect.the.traffic |
| f27e0 | 20 74 68 61 74 20 74 68 65 79 20 63 61 72 72 79 2e 20 68 74 74 70 73 3a 2f 2f 64 61 74 61 74 72 | .that.they.carry..https://datatr |
| f2800 | 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 68 74 6d 6c 2f 72 66 63 35 39 39 36 00 | acker.ietf.org/doc/html/rfc5996. |
| f2820 | 49 4b 45 76 31 00 49 4b 45 76 32 00 49 4b 45 76 32 20 49 50 53 65 63 20 72 6f 61 64 2d 77 61 72 | IKEv1.IKEv2.IKEv2.IPSec.road-war |
| f2840 | 72 69 6f 72 73 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 56 50 4e 00 49 50 00 49 50 20 61 64 | riors.remote-access.VPN.IP.IP.ad |
| f2860 | 64 72 65 73 73 00 49 50 20 61 64 64 72 65 73 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 31 30 30 | dress.IP.address.``192.168.1.100 |
| f2880 | 60 60 20 73 68 61 6c 6c 20 62 65 20 73 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 20 74 6f | ``.shall.be.statically.mapped.to |
| f28a0 | 20 63 6c 69 65 6e 74 20 6e 61 6d 65 64 20 60 60 63 6c 69 65 6e 74 31 60 60 00 49 50 20 61 64 64 | .client.named.``client1``.IP.add |
| f28c0 | 72 65 73 73 20 60 60 31 39 32 2e 31 36 38 2e 32 2e 31 2f 32 34 60 60 00 49 50 20 61 64 64 72 65 | ress.``192.168.2.1/24``.IP.addre |
| f28e0 | 73 73 20 66 6f 72 20 44 48 43 50 20 73 65 72 76 65 72 20 69 64 65 6e 74 69 66 69 65 72 00 49 50 | ss.for.DHCP.server.identifier.IP |
| f2900 | 20 61 64 64 72 65 73 73 20 6f 66 20 4e 54 50 20 73 65 72 76 65 72 00 49 50 20 61 64 64 72 65 73 | .address.of.NTP.server.IP.addres |
| f2920 | 73 20 6f 66 20 50 4f 50 33 20 73 65 72 76 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 53 | s.of.POP3.server.IP.address.of.S |
| f2940 | 4d 54 50 20 73 65 72 76 65 72 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 | MTP.server.IP.address.of.route.t |
| f2960 | 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 | o.match,.based.on.access-list..I |
| f2980 | 50 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 | P.address.of.route.to.match,.bas |
| f29a0 | 65 64 20 6f 6e 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 20 61 64 64 72 65 73 73 20 6f 66 | ed.on.prefix-list..IP.address.of |
| f29c0 | 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 73 70 65 63 69 66 | .route.to.match,.based.on.specif |
| f29e0 | 69 65 64 20 70 72 65 66 69 78 2d 6c 65 6e 67 74 68 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 | ied.prefix-length..Note.that.thi |
| f2a00 | 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 6b 65 72 6e 65 6c 20 72 6f 75 74 65 73 20 | s.can.be.used.for.kernel.routes. |
| f2a20 | 6f 6e 6c 79 2e 20 44 6f 20 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 74 68 65 20 72 6f 75 74 65 73 | only..Do.not.apply.to.the.routes |
| f2a40 | 20 6f 66 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 28 65 | .of.dynamic.routing.protocols.(e |
| f2a60 | 2e 67 2e 20 42 47 50 2c 20 52 49 50 2c 20 4f 53 46 50 29 2c 20 61 73 20 74 68 69 73 20 63 61 6e | .g..BGP,.RIP,.OSFP),.as.this.can |
| f2a80 | 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 73 2e 2e 00 49 50 | .lead.to.unexpected.results...IP |
| f2aa0 | 20 61 64 64 72 65 73 73 20 74 6f 20 65 78 63 6c 75 64 65 20 66 72 6f 6d 20 44 48 43 50 20 6c 65 | .address.to.exclude.from.DHCP.le |
| f2ac0 | 61 73 65 20 72 61 6e 67 65 00 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 6e 65 74 77 6f 72 | ase.range.IP.addresses.or.networ |
| f2ae0 | 6b 73 20 66 6f 72 20 77 68 69 63 68 20 6c 6f 63 61 6c 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 | ks.for.which.local.conntrack.ent |
| f2b00 | 72 69 65 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 73 79 6e 63 65 64 00 49 50 20 6d 61 6e 61 67 | ries.will.not.be.synced.IP.manag |
| f2b20 | 65 6d 65 6e 74 20 61 64 64 72 65 73 73 00 49 50 20 6d 61 73 71 75 65 72 61 64 69 6e 67 20 69 73 | ement.address.IP.masquerading.is |
| f2b40 | 20 61 20 74 65 63 68 6e 69 71 75 65 20 74 68 61 74 20 68 69 64 65 73 20 61 6e 20 65 6e 74 69 72 | .a.technique.that.hides.an.entir |
| f2b60 | 65 20 49 50 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2c 20 75 73 75 61 6c 6c 79 20 63 6f 6e 73 | e.IP.address.space,.usually.cons |
| f2b80 | 69 73 74 69 6e 67 20 6f 66 20 70 72 69 76 61 74 65 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 | isting.of.private.IP.addresses,. |
| f2ba0 | 62 65 68 69 6e 64 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 61 6e | behind.a.single.IP.address.in.an |
| f2bc0 | 6f 74 68 65 72 2c 20 75 73 75 61 6c 6c 79 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 20 73 70 | other,.usually.public.address.sp |
| f2be0 | 61 63 65 2e 20 54 68 65 20 68 69 64 64 65 6e 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 63 68 | ace..The.hidden.addresses.are.ch |
| f2c00 | 61 6e 67 65 64 20 69 6e 74 6f 20 61 20 73 69 6e 67 6c 65 20 28 70 75 62 6c 69 63 29 20 49 50 20 | anged.into.a.single.(public).IP. |
| f2c20 | 61 64 64 72 65 73 73 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 | address.as.the.source.address.of |
| f2c40 | 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 49 50 20 70 61 63 6b 65 74 73 20 73 6f 20 74 68 65 79 | .the.outgoing.IP.packets.so.they |
| f2c60 | 20 61 70 70 65 61 72 20 61 73 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 6e 6f 74 20 66 72 6f 6d 20 | .appear.as.originating.not.from. |
| f2c80 | 74 68 65 20 68 69 64 64 65 6e 20 68 6f 73 74 20 62 75 74 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 | the.hidden.host.but.from.the.rou |
| f2ca0 | 74 69 6e 67 20 64 65 76 69 63 65 20 69 74 73 65 6c 66 2e 20 42 65 63 61 75 73 65 20 6f 66 20 74 | ting.device.itself..Because.of.t |
| f2cc0 | 68 65 20 70 6f 70 75 6c 61 72 69 74 79 20 6f 66 20 74 68 69 73 20 74 65 63 68 6e 69 71 75 65 20 | he.popularity.of.this.technique. |
| f2ce0 | 74 6f 20 63 6f 6e 73 65 72 76 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 73 70 61 63 65 2c 20 | to.conserve.IPv4.address.space,. |
| f2d00 | 74 68 65 20 74 65 72 6d 20 4e 41 54 20 68 61 73 20 62 65 63 6f 6d 65 20 76 69 72 74 75 61 6c 6c | the.term.NAT.has.become.virtuall |
| f2d20 | 79 20 73 79 6e 6f 6e 79 6d 6f 75 73 20 77 69 74 68 20 49 50 20 6d 61 73 71 75 65 72 61 64 69 6e | y.synonymous.with.IP.masqueradin |
| f2d40 | 67 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 | g..IP.next-hop.of.route.to.match |
| f2d60 | 2c 20 62 61 73 65 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 20 6e 65 78 74 2d | ,.based.on.access-list..IP.next- |
| f2d80 | 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 | hop.of.route.to.match,.based.on. |
| f2da0 | 69 70 20 61 64 64 72 65 73 73 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 | ip.address..IP.next-hop.of.route |
| f2dc0 | 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 65 66 69 78 20 6c 65 6e 67 74 | .to.match,.based.on.prefix.lengt |
| f2de0 | 68 2e 00 49 50 20 6e 65 78 74 2d 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 | h..IP.next-hop.of.route.to.match |
| f2e00 | 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 20 6e 65 78 74 2d | ,.based.on.prefix-list..IP.next- |
| f2e20 | 68 6f 70 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 | hop.of.route.to.match,.based.on. |
| f2e40 | 74 79 70 65 2e 00 49 50 20 70 72 65 63 65 64 65 6e 63 65 20 61 73 20 64 65 66 69 6e 65 64 20 69 | type..IP.precedence.as.defined.i |
| f2e60 | 6e 20 3a 72 66 63 3a 60 37 39 31 60 3a 00 49 50 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 | n.:rfc:`791`:.IP.protocol.number |
| f2e80 | 20 35 30 20 28 45 53 50 29 00 49 50 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 6f 66 20 72 6f 75 | .50.(ESP).IP.route.source.of.rou |
| f2ea0 | 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 61 63 63 65 73 73 2d 6c 69 73 | te.to.match,.based.on.access-lis |
| f2ec0 | 74 2e 00 49 50 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d | t..IP.route.source.of.route.to.m |
| f2ee0 | 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 49 50 36 49 | atch,.based.on.prefix-list..IP6I |
| f2f00 | 50 36 00 49 50 49 50 00 49 50 49 50 36 00 49 50 53 65 63 20 49 4b 45 20 61 6e 64 20 45 53 50 00 | P6.IPIP.IPIP6.IPSec.IKE.and.ESP. |
| f2f20 | 49 50 53 65 63 20 49 4b 45 20 61 6e 64 20 45 53 50 20 47 72 6f 75 70 73 3b 00 49 50 53 65 63 20 | IPSec.IKE.and.ESP.Groups;.IPSec. |
| f2f40 | 49 4b 45 76 32 20 52 65 6d 6f 74 65 20 41 63 63 65 73 73 20 56 50 4e 00 49 50 53 65 63 20 49 4b | IKEv2.Remote.Access.VPN.IPSec.IK |
| f2f60 | 45 76 32 20 73 69 74 65 32 73 69 74 65 20 56 50 4e 00 49 50 53 65 63 20 49 4b 45 76 32 20 73 69 | Ev2.site2site.VPN.IPSec.IKEv2.si |
| f2f80 | 74 65 32 73 69 74 65 20 56 50 4e 20 28 73 6f 75 72 63 65 20 2e 2f 64 72 61 77 2e 69 6f 2f 76 70 | te2site.VPN.(source../draw.io/vp |
| f2fa0 | 6e 5f 73 32 73 5f 69 6b 65 76 32 2e 64 72 61 77 69 6f 29 00 49 50 53 65 63 20 56 50 4e 20 54 75 | n_s2s_ikev2.drawio).IPSec.VPN.Tu |
| f2fc0 | 6e 6e 65 6c 73 00 49 50 53 65 63 20 56 50 4e 20 74 75 6e 6e 65 6c 73 2e 00 49 50 53 65 63 3a 00 | nnels.IPSec.VPN.tunnels..IPSec:. |
| f2fe0 | 49 50 6f 45 20 53 65 72 76 65 72 00 49 50 6f 45 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 | IPoE.Server.IPoE.can.be.configur |
| f3000 | 65 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 77 69 | e.on.different.interfaces,.it.wi |
| f3020 | 6c 6c 20 64 65 70 65 6e 64 20 6f 6e 20 65 61 63 68 20 73 70 65 63 69 66 69 63 20 73 69 74 75 61 | ll.depend.on.each.specific.situa |
| f3040 | 74 69 6f 6e 20 77 68 69 63 68 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 70 72 6f 76 69 64 | tion.which.interface.will.provid |
| f3060 | 65 20 49 50 6f 45 20 74 6f 20 63 6c 69 65 6e 74 73 2e 20 54 68 65 20 63 6c 69 65 6e 74 73 20 6d | e.IPoE.to.clients..The.clients.m |
| f3080 | 61 63 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 | ac.address.and.the.incoming.inte |
| f30a0 | 72 66 61 63 65 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 63 6f 6e 74 72 6f 6c 20 70 | rface.is.being.used.as.control.p |
| f30c0 | 61 72 61 6d 65 74 65 72 2c 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 61 20 63 6c 69 65 | arameter,.to.authenticate.a.clie |
| f30e0 | 6e 74 2e 00 49 50 6f 45 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 64 69 | nt..IPoE.can.be.configured.on.di |
| f3100 | 66 66 65 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 77 69 6c 6c 20 64 65 70 65 | fferent.interfaces,.it.will.depe |
| f3120 | 6e 64 20 6f 6e 20 65 61 63 68 20 73 70 65 63 69 66 69 63 20 73 69 74 75 61 74 69 6f 6e 20 77 68 | nd.on.each.specific.situation.wh |
| f3140 | 69 63 68 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 49 50 6f 45 20 | ich.interface.will.provide.IPoE. |
| f3160 | 74 6f 20 63 6c 69 65 6e 74 73 2e 20 54 68 65 20 63 6c 69 65 6e 74 27 73 20 6d 61 63 20 61 64 64 | to.clients..The.client's.mac.add |
| f3180 | 72 65 73 73 20 61 6e 64 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 | ress.and.the.incoming.interface. |
| f31a0 | 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 20 63 6f 6e 74 72 6f 6c 20 70 61 72 61 6d 65 74 | is.being.used.as.control.paramet |
| f31c0 | 65 72 2c 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 61 20 63 6c 69 65 6e 74 2e 00 49 50 | er,.to.authenticate.a.client..IP |
| f31e0 | 6f 45 20 69 73 20 61 20 6d 65 74 68 6f 64 20 6f 66 20 64 65 6c 69 76 65 72 69 6e 67 20 61 6e 20 | oE.is.a.method.of.delivering.an. |
| f3200 | 49 50 20 70 61 79 6c 6f 61 64 20 6f 76 65 72 20 61 6e 20 45 74 68 65 72 6e 65 74 2d 62 61 73 65 | IP.payload.over.an.Ethernet-base |
| f3220 | 64 20 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 20 6f 72 20 61 6e 20 61 63 63 65 73 73 20 6e 65 | d.access.network.or.an.access.ne |
| f3240 | 74 77 6f 72 6b 20 75 73 69 6e 67 20 62 72 69 64 67 65 64 20 45 74 68 65 72 6e 65 74 20 6f 76 65 | twork.using.bridged.Ethernet.ove |
| f3260 | 72 20 41 73 79 6e 63 68 72 6f 6e 6f 75 73 20 54 72 61 6e 73 66 65 72 20 4d 6f 64 65 20 28 41 54 | r.Asynchronous.Transfer.Mode.(AT |
| f3280 | 4d 29 20 77 69 74 68 6f 75 74 20 75 73 69 6e 67 20 50 50 50 6f 45 2e 20 49 74 20 64 69 72 65 63 | M).without.using.PPPoE..It.direc |
| f32a0 | 74 6c 79 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 74 68 65 20 49 50 20 64 61 74 61 67 72 61 6d | tly.encapsulates.the.IP.datagram |
| f32c0 | 73 20 69 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 2c 20 75 73 69 6e 67 20 74 68 65 20 | s.in.Ethernet.frames,.using.the. |
| f32e0 | 73 74 61 6e 64 61 72 64 20 3a 72 66 63 3a 60 38 39 34 60 20 65 6e 63 61 70 73 75 6c 61 74 69 6f | standard.:rfc:`894`.encapsulatio |
| f3300 | 6e 2e 00 49 50 6f 45 20 73 65 72 76 65 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 69 6e | n..IPoE.server.will.listen.on.in |
| f3320 | 74 65 72 66 61 63 65 73 20 65 74 68 31 2e 35 30 20 61 6e 64 20 65 74 68 31 2e 35 31 00 49 50 73 | terfaces.eth1.50.and.eth1.51.IPs |
| f3340 | 65 63 00 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6d 61 74 63 68 69 6e 67 20 47 52 45 00 49 50 76 | ec.IPsec.policy.matching.GRE.IPv |
| f3360 | 34 00 49 50 76 34 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 50 | 4.IPv4.Firewall.Configuration.IP |
| f3380 | 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 6e 65 78 74 20 62 6f 6f 74 73 74 72 61 70 20 73 65 72 | v4.address.of.next.bootstrap.ser |
| f33a0 | 76 65 72 00 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 72 20 6f 6e 20 74 68 | ver.IPv4.address.of.router.on.th |
| f33c0 | 65 20 63 6c 69 65 6e 74 27 73 20 73 75 62 6e 65 74 00 49 50 76 34 20 6f 72 20 49 50 76 36 20 73 | e.client's.subnet.IPv4.or.IPv6.s |
| f33e0 | 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 4e 65 74 46 6c 6f 77 20 70 61 63 6b 65 74 73 | ource.address.of.NetFlow.packets |
| f3400 | 00 49 50 76 34 20 70 65 65 72 69 6e 67 00 49 50 76 34 20 72 65 6c 61 79 00 49 50 76 34 20 72 6f | .IPv4.peering.IPv4.relay.IPv4.ro |
| f3420 | 75 74 65 20 61 6e 64 20 49 50 76 36 20 72 6f 75 74 65 20 70 6f 6c 69 63 69 65 73 20 61 72 65 20 | ute.and.IPv6.route.policies.are. |
| f3440 | 64 65 66 69 6e 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 20 54 68 65 73 65 20 72 | defined.in.this.section..These.r |
| f3460 | 6f 75 74 65 20 70 6f 6c 69 63 69 65 73 20 63 61 6e 20 74 68 65 6e 20 62 65 20 61 73 73 6f 63 69 | oute.policies.can.then.be.associ |
| f3480 | 61 74 65 64 20 74 6f 20 69 6e 74 65 72 66 61 63 65 73 2e 00 49 50 76 34 20 72 6f 75 74 65 20 73 | ated.to.interfaces..IPv4.route.s |
| f34a0 | 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 69 73 | ource:.bgp,.connected,.eigrp,.is |
| f34c0 | 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6e 68 72 70 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 | is,.kernel,.nhrp,.ospf,.rip,.sta |
| f34e0 | 74 69 63 2e 00 49 50 76 34 20 73 65 72 76 65 72 00 49 50 76 34 2f 49 50 76 36 20 72 65 6d 6f 74 | tic..IPv4.server.IPv4/IPv6.remot |
| f3500 | 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 2e 20 41 | e.address.of.the.VXLAN.tunnel..A |
| f3520 | 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d | lternative.to.multicast,.the.rem |
| f3540 | 6f 74 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 73 20 63 61 6e 20 73 65 74 20 64 69 | ote.IPv4/IPv6.address.can.set.di |
| f3560 | 72 65 63 74 6c 79 2e 00 49 50 76 34 2f 49 50 76 36 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 | rectly..IPv4/IPv6.remote.address |
| f3580 | 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 2e 20 41 6e 20 61 6c 74 65 72 6e 61 | .of.the.VXLAN.tunnel..An.alterna |
| f35a0 | 74 69 76 65 20 74 6f 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 65 20 72 65 6d 6f 74 65 20 49 50 | tive.to.multicast,.the.remote.IP |
| f35c0 | 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 73 65 74 20 64 69 72 65 63 | v4/IPv6.address.can.be.set.direc |
| f35e0 | 74 6c 79 2e 00 49 50 76 36 00 49 50 76 36 20 41 63 63 65 73 73 20 4c 69 73 74 00 49 50 76 36 20 | tly..IPv6.IPv6.Access.List.IPv6. |
| f3600 | 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 49 50 76 36 20 44 48 43 50 76 36 2d 50 44 20 | Advanced.Options.IPv6.DHCPv6-PD. |
| f3620 | 45 78 61 6d 70 6c 65 00 49 50 76 36 20 44 4e 53 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 6f | Example.IPv6.DNS.addresses.are.o |
| f3640 | 70 74 69 6f 6e 61 6c 2e 00 49 50 76 36 20 46 69 72 65 77 61 6c 6c 20 43 6f 6e 66 69 67 75 72 61 | ptional..IPv6.Firewall.Configura |
| f3660 | 74 69 6f 6e 00 49 50 76 36 20 4d 75 6c 74 69 63 61 73 74 00 49 50 76 36 20 50 72 65 66 69 78 20 | tion.IPv6.Multicast.IPv6.Prefix. |
| f3680 | 44 65 6c 65 67 61 74 69 6f 6e 00 49 50 76 36 20 50 72 65 66 69 78 20 4c 69 73 74 73 00 49 50 76 | Delegation.IPv6.Prefix.Lists.IPv |
| f36a0 | 36 20 53 4c 41 41 43 20 61 6e 64 20 49 41 2d 50 44 00 49 50 76 36 20 54 43 50 20 66 69 6c 74 65 | 6.SLAAC.and.IA-PD.IPv6.TCP.filte |
| f36c0 | 72 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 49 50 76 36 20 70 61 63 6b 65 74 73 20 | rs.will.only.match.IPv6.packets. |
| f36e0 | 77 69 74 68 20 6e 6f 20 68 65 61 64 65 72 20 65 78 74 65 6e 73 69 6f 6e 2c 20 73 65 65 20 68 74 | with.no.header.extension,.see.ht |
| f3700 | 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 49 50 76 36 | tps://en.wikipedia.org/wiki/IPv6 |
| f3720 | 5f 70 61 63 6b 65 74 23 45 78 74 65 6e 73 69 6f 6e 5f 68 65 61 64 65 72 73 00 49 50 76 36 20 61 | _packet#Extension_headers.IPv6.a |
| f3740 | 64 64 72 65 73 73 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 30 31 60 60 20 73 68 61 6c 6c 20 62 | ddress.``2001:db8::101``.shall.b |
| f3760 | 65 20 73 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 00 49 50 76 36 20 61 64 64 72 65 73 73 | e.statically.mapped.IPv6.address |
| f3780 | 20 6f 66 20 72 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 76 | .of.route.to.match,.based.on.IPv |
| f37a0 | 36 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 | 6.access-list..IPv6.address.of.r |
| f37c0 | 6f 75 74 65 20 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 76 36 20 70 72 65 | oute.to.match,.based.on.IPv6.pre |
| f37e0 | 66 69 78 2d 6c 69 73 74 2e 00 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 72 6f 75 74 65 20 | fix-list..IPv6.address.of.route. |
| f3800 | 74 6f 20 6d 61 74 63 68 2c 20 62 61 73 65 64 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 72 65 | to.match,.based.on.specified.pre |
| f3820 | 66 69 78 2d 6c 65 6e 67 74 68 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 73 20 63 61 6e 20 62 | fix-length..Note.that.this.can.b |
| f3840 | 65 20 75 73 65 64 20 66 6f 72 20 6b 65 72 6e 65 6c 20 72 6f 75 74 65 73 20 6f 6e 6c 79 2e 20 44 | e.used.for.kernel.routes.only..D |
| f3860 | 6f 20 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 74 68 65 20 72 6f 75 74 65 73 20 6f 66 20 64 79 6e | o.not.apply.to.the.routes.of.dyn |
| f3880 | 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 28 65 2e 67 2e 20 42 47 50 | amic.routing.protocols.(e.g..BGP |
| f38a0 | 2c 20 52 49 50 2c 20 4f 53 46 50 29 2c 20 61 73 20 74 68 69 73 20 63 61 6e 20 6c 65 61 64 20 74 | ,.RIP,.OSFP),.as.this.can.lead.t |
| f38c0 | 6f 20 75 6e 65 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 73 2e 2e 00 49 50 76 36 20 63 6c 69 65 | o.unexpected.results...IPv6.clie |
| f38e0 | 6e 74 27 73 20 70 72 65 66 69 78 00 49 50 76 36 20 63 6c 69 65 6e 74 27 73 20 70 72 65 66 69 78 | nt's.prefix.IPv6.client's.prefix |
| f3900 | 20 61 73 73 69 67 6e 6d 65 6e 74 00 49 50 76 36 20 64 65 66 61 75 6c 74 20 63 6c 69 65 6e 74 27 | .assignment.IPv6.default.client' |
| f3920 | 73 20 70 6f 6f 6c 20 61 73 73 69 67 6e 6d 65 6e 74 00 49 50 76 36 20 70 65 65 72 69 6e 67 00 49 | s.pool.assignment.IPv6.peering.I |
| f3940 | 50 76 36 20 70 72 65 66 69 78 20 60 60 32 30 30 31 3a 64 62 38 3a 30 3a 31 30 31 3a 3a 2f 36 34 | Pv6.prefix.``2001:db8:0:101::/64 |
| f3960 | 60 60 20 73 68 61 6c 6c 20 62 65 20 73 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 00 49 50 | ``.shall.be.statically.mapped.IP |
| f3980 | 76 36 20 70 72 65 66 69 78 2e 00 49 50 76 36 20 72 65 6c 61 79 00 49 50 76 36 20 72 6f 75 74 65 | v6.prefix..IPv6.relay.IPv6.route |
| f39a0 | 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 72 70 2c 20 | .source:.bgp,.connected,.eigrp,. |
| f39c0 | 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6e 68 72 70 2c 20 6f 73 70 66 76 33 2c 20 72 69 70 6e | isis,.kernel,.nhrp,.ospfv3,.ripn |
| f39e0 | 67 2c 20 73 74 61 74 69 63 2e 00 49 50 76 36 20 73 65 72 76 65 72 00 49 50 76 36 20 73 75 70 70 | g,.static..IPv6.server.IPv6.supp |
| f3a00 | 6f 72 74 00 49 53 2d 49 53 00 49 53 2d 49 53 20 47 6c 6f 62 61 6c 20 43 6f 6e 66 69 67 75 72 61 | ort.IS-IS.IS-IS.Global.Configura |
| f3a20 | 74 69 6f 6e 00 49 53 2d 49 53 20 53 52 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 53 43 2d | tion.IS-IS.SR.Configuration.ISC- |
| f3a40 | 44 48 43 50 20 4f 70 74 69 6f 6e 20 6e 61 6d 65 00 49 64 65 6e 74 69 74 79 20 42 61 73 65 64 20 | DHCP.Option.name.Identity.Based. |
| f3a60 | 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 66 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 | Configuration.If.**max-threshold |
| f3a80 | 2a 2a 20 69 73 20 73 65 74 20 62 75 74 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 20 69 73 | **.is.set.but.**min-threshold.is |
| f3aa0 | 20 6e 6f 74 2c 20 74 68 65 6e 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 69 73 20 | .not,.then.**min-threshold**.is. |
| f3ac0 | 73 63 61 6c 65 64 20 74 6f 20 35 30 25 20 6f 66 20 2a 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 | scaled.to.50%.of.**max-threshold |
| f3ae0 | 2a 2a 2e 00 49 66 20 3a 63 66 67 63 6d 64 3a 60 73 74 72 69 63 74 60 20 69 73 20 73 65 74 20 74 | **..If.:cfgcmd:`strict`.is.set.t |
| f3b00 | 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 77 6f 6e e2 80 99 74 20 62 65 63 6f 6d 65 20 65 73 | he.BGP.session.won...t.become.es |
| f3b20 | 74 61 62 6c 69 73 68 65 64 20 75 6e 74 69 6c 20 74 68 65 20 42 47 50 20 6e 65 69 67 68 62 6f 72 | tablished.until.the.BGP.neighbor |
| f3b40 | 20 73 65 74 73 20 6c 6f 63 61 6c 20 52 6f 6c 65 20 6f 6e 20 69 74 73 20 73 69 64 65 2e 20 54 68 | .sets.local.Role.on.its.side..Th |
| f3b60 | 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 69 73 20 64 65 | is.configuration.parameter.is.de |
| f3b80 | 66 69 6e 65 64 20 69 6e 20 52 46 43 20 3a 72 66 63 3a 60 39 32 33 34 60 20 61 6e 64 20 69 73 20 | fined.in.RFC.:rfc:`9234`.and.is. |
| f3ba0 | 75 73 65 64 20 74 6f 20 65 6e 66 6f 72 63 65 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e | used.to.enforce.the.correspondin |
| f3bc0 | 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 79 6f 75 72 20 63 6f 75 6e 74 65 72 2d | g.configuration.at.your.counter- |
| f3be0 | 70 61 72 74 73 20 73 69 64 65 2e 00 49 66 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 69 73 | parts.side..If.ARP.monitoring.is |
| f3c00 | 20 75 73 65 64 20 69 6e 20 61 6e 20 65 74 68 65 72 63 68 61 6e 6e 65 6c 20 63 6f 6d 70 61 74 69 | .used.in.an.etherchannel.compati |
| f3c20 | 62 6c 65 20 6d 6f 64 65 20 28 6d 6f 64 65 73 20 72 6f 75 6e 64 2d 72 6f 62 69 6e 20 61 6e 64 20 | ble.mode.(modes.round-robin.and. |
| f3c40 | 78 6f 72 2d 68 61 73 68 29 2c 20 74 68 65 20 73 77 69 74 63 68 20 73 68 6f 75 6c 64 20 62 65 20 | xor-hash),.the.switch.should.be. |
| f3c60 | 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 61 20 6d 6f 64 65 20 74 68 61 74 20 65 76 65 6e 6c 79 | configured.in.a.mode.that.evenly |
| f3c80 | 20 64 69 73 74 72 69 62 75 74 65 73 20 70 61 63 6b 65 74 73 20 61 63 72 6f 73 73 20 61 6c 6c 20 | .distributes.packets.across.all. |
| f3ca0 | 6c 69 6e 6b 73 2e 20 49 66 20 74 68 65 20 73 77 69 74 63 68 20 69 73 20 63 6f 6e 66 69 67 75 72 | links..If.the.switch.is.configur |
| f3cc0 | 65 64 20 74 6f 20 64 69 73 74 72 69 62 75 74 65 20 74 68 65 20 70 61 63 6b 65 74 73 20 69 6e 20 | ed.to.distribute.the.packets.in. |
| f3ce0 | 61 6e 20 58 4f 52 20 66 61 73 68 69 6f 6e 2c 20 61 6c 6c 20 72 65 70 6c 69 65 73 20 66 72 6f 6d | an.XOR.fashion,.all.replies.from |
| f3d00 | 20 74 68 65 20 41 52 50 20 74 61 72 67 65 74 73 20 77 69 6c 6c 20 62 65 20 72 65 63 65 69 76 65 | .the.ARP.targets.will.be.receive |
| f3d20 | 64 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 6c 69 6e 6b 20 77 68 69 63 68 20 63 6f 75 6c 64 20 63 | d.on.the.same.link.which.could.c |
| f3d40 | 61 75 73 65 20 74 68 65 20 6f 74 68 65 72 20 74 65 61 6d 20 6d 65 6d 62 65 72 73 20 74 6f 20 66 | ause.the.other.team.members.to.f |
| f3d60 | 61 69 6c 2e 00 49 66 20 43 41 20 69 73 20 70 72 65 73 65 6e 74 2c 20 74 68 69 73 20 63 65 72 74 | ail..If.CA.is.present,.this.cert |
| f3d80 | 69 66 69 63 61 74 65 20 77 69 6c 6c 20 62 65 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 67 65 6e 65 | ificate.will.be.included.in.gene |
| f3da0 | 72 61 74 65 64 20 43 52 4c 73 00 49 66 20 43 4c 49 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 | rated.CRLs.If.CLI.option.is.not. |
| f3dc0 | 73 70 65 63 69 66 69 65 64 2c 20 74 68 69 73 20 66 65 61 74 75 72 65 20 69 73 20 64 69 73 61 62 | specified,.this.feature.is.disab |
| f3de0 | 6c 65 64 2e 00 49 66 20 50 49 4d 20 68 61 73 20 74 68 65 20 61 20 63 68 6f 69 63 65 20 6f 66 20 | led..If.PIM.has.the.a.choice.of. |
| f3e00 | 45 43 4d 50 20 6e 65 78 74 68 6f 70 73 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 3a | ECMP.nexthops.for.a.particular.: |
| f3e20 | 61 62 62 72 3a 60 52 50 46 20 28 52 65 76 65 72 73 65 20 50 61 74 68 20 46 6f 72 77 61 72 64 69 | abbr:`RPF.(Reverse.Path.Forwardi |
| f3e40 | 6e 67 29 60 2c 20 50 49 4d 20 77 69 6c 6c 20 63 61 75 73 65 20 53 2c 47 20 66 6c 6f 77 73 20 74 | ng)`,.PIM.will.cause.S,G.flows.t |
| f3e60 | 6f 20 62 65 20 73 70 72 65 61 64 20 6f 75 74 20 61 6d 6f 6e 67 73 74 20 74 68 65 20 6e 65 78 74 | o.be.spread.out.amongst.the.next |
| f3e80 | 68 6f 70 73 2e 20 49 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 73 70 65 | hops..If.this.command.is.not.spe |
| f3ea0 | 63 69 66 69 65 64 20 74 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 6e 65 78 74 68 6f 70 20 66 6f | cified.then.the.first.nexthop.fo |
| f3ec0 | 75 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 00 49 66 20 50 49 4d 20 69 73 20 75 73 69 6e | und.will.be.used..If.PIM.is.usin |
| f3ee0 | 67 20 45 43 4d 50 20 61 6e 64 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 67 6f 65 73 20 64 6f 77 | g.ECMP.and.an.interface.goes.dow |
| f3f00 | 6e 2c 20 63 61 75 73 65 20 50 49 4d 20 74 6f 20 72 65 62 61 6c 61 6e 63 65 20 61 6c 6c 20 53 2c | n,.cause.PIM.to.rebalance.all.S, |
| f3f20 | 47 20 66 6c 6f 77 73 20 61 63 72 6f 73 73 20 74 68 65 20 72 65 6d 61 69 6e 69 6e 67 20 6e 65 78 | G.flows.across.the.remaining.nex |
| f3f40 | 74 68 6f 70 73 2e 20 49 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6e 6f 74 20 63 6f | thops..If.this.command.is.not.co |
| f3f60 | 6e 66 69 67 75 72 65 64 20 50 49 4d 20 6f 6e 6c 79 20 6d 6f 64 69 66 69 65 73 20 74 68 6f 73 65 | nfigured.PIM.only.modifies.those |
| f3f80 | 20 53 2c 47 20 66 6c 6f 77 73 20 74 68 61 74 20 77 65 72 65 20 75 73 69 6e 67 20 74 68 65 20 69 | .S,G.flows.that.were.using.the.i |
| f3fa0 | 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 77 65 6e 74 20 64 6f 77 6e 2e 00 49 66 20 60 60 61 6c | nterface.that.went.down..If.``al |
| f3fc0 | 69 61 73 60 60 20 69 73 20 73 65 74 2c 20 69 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 73 | ias``.is.set,.it.can.be.used.ins |
| f3fe0 | 74 65 61 64 20 6f 66 20 74 68 65 20 64 65 76 69 63 65 20 77 68 65 6e 20 63 6f 6e 6e 65 63 74 69 | tead.of.the.device.when.connecti |
| f4000 | 6e 67 2e 00 49 66 20 60 60 61 6c 6c 60 60 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 72 65 6d | ng..If.``all``.is.specified,.rem |
| f4020 | 6f 76 65 20 61 6c 6c 20 41 53 20 6e 75 6d 62 65 72 73 20 66 72 6f 6d 20 74 68 65 20 41 53 5f 50 | ove.all.AS.numbers.from.the.AS_P |
| f4040 | 41 54 48 20 6f 66 20 74 68 65 20 42 47 50 20 70 61 74 68 27 73 20 4e 4c 52 49 2e 00 49 66 20 61 | ATH.of.the.BGP.path's.NLRI..If.a |
| f4060 | 20 6c 6f 63 61 6c 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 69 73 20 69 6e 20 70 6c 61 | .local.firewall.policy.is.in.pla |
| f4080 | 63 65 20 6f 6e 20 79 6f 75 72 20 65 78 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 20 79 6f | ce.on.your.external.interface.yo |
| f40a0 | 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 70 6f 72 74 73 20 62 | u.will.need.to.allow.the.ports.b |
| f40c0 | 65 6c 6f 77 3a 00 49 66 20 61 20 72 65 67 69 73 74 72 79 20 69 73 20 6e 6f 74 20 73 70 65 63 69 | elow:.If.a.registry.is.not.speci |
| f40e0 | 66 69 65 64 2c 20 44 6f 63 6b 65 72 2e 69 6f 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 61 73 20 | fied,.Docker.io.will.be.used.as. |
| f4100 | 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 79 20 75 6e 6c 65 73 73 20 61 6e | the.container.registry.unless.an |
| f4120 | 20 61 6c 74 65 72 6e 61 74 69 76 65 20 72 65 67 69 73 74 72 79 20 69 73 20 73 70 65 63 69 66 69 | .alternative.registry.is.specifi |
| f4140 | 65 64 20 75 73 69 6e 67 20 2a 2a 73 65 74 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 | ed.using.**set.container.registr |
| f4160 | 79 20 3c 6e 61 6d 65 3e 2a 2a 20 6f 72 20 74 68 65 20 72 65 67 69 73 74 72 79 20 69 73 20 69 6e | y.<name>**.or.the.registry.is.in |
| f4180 | 63 6c 75 64 65 64 20 69 6e 20 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 00 49 66 20 61 20 72 65 | cluded.in.the.image.name.If.a.re |
| f41a0 | 73 70 6f 6e 73 65 20 69 73 20 68 65 61 72 64 2c 20 74 68 65 20 6c 65 61 73 65 20 69 73 20 61 62 | sponse.is.heard,.the.lease.is.ab |
| f41c0 | 61 6e 64 6f 6e 65 64 2c 20 61 6e 64 20 74 68 65 20 73 65 72 76 65 72 20 64 6f 65 73 20 6e 6f 74 | andoned,.and.the.server.does.not |
| f41e0 | 20 72 65 73 70 6f 6e 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 20 54 68 65 20 6c 65 61 73 | .respond.to.the.client..The.leas |
| f4200 | 65 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 61 62 61 6e 64 6f 6e 65 64 20 66 6f 72 20 61 20 6d 69 | e.will.remain.abandoned.for.a.mi |
| f4220 | 6e 69 6d 75 6d 20 6f 66 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 20 73 65 63 6f | nimum.of.abandon-lease-time.seco |
| f4240 | 6e 64 73 20 28 64 65 66 61 75 6c 74 73 20 74 6f 20 32 34 20 68 6f 75 72 73 29 2e 00 49 66 20 61 | nds.(defaults.to.24.hours)..If.a |
| f4260 | 20 72 6f 75 74 65 20 68 61 73 20 61 6e 20 4f 52 49 47 49 4e 41 54 4f 52 5f 49 44 20 61 74 74 72 | .route.has.an.ORIGINATOR_ID.attr |
| f4280 | 69 62 75 74 65 20 62 65 63 61 75 73 65 20 69 74 20 68 61 73 20 62 65 65 6e 20 72 65 66 6c 65 63 | ibute.because.it.has.been.reflec |
| f42a0 | 74 65 64 2c 20 74 68 61 74 20 4f 52 49 47 49 4e 41 54 4f 52 5f 49 44 20 77 69 6c 6c 20 62 65 20 | ted,.that.ORIGINATOR_ID.will.be. |
| f42c0 | 75 73 65 64 2e 20 4f 74 68 65 72 77 69 73 65 2c 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6f | used..Otherwise,.the.router-ID.o |
| f42e0 | 66 20 74 68 65 20 70 65 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 61 73 20 72 65 63 65 69 76 65 | f.the.peer.the.route.was.receive |
| f4300 | 64 20 66 72 6f 6d 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 00 49 66 20 61 20 72 75 6c 65 20 69 | d.from.will.be.used..If.a.rule.i |
| f4320 | 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 63 74 69 6f 6e 20 6d 75 73 74 20 62 | s.defined,.then.an.action.must.b |
| f4340 | 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 69 73 20 74 65 6c 6c 73 20 74 68 65 | e.defined.for.it..This.tells.the |
| f4360 | 20 66 69 72 65 77 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f 20 69 66 20 61 6c 6c 20 63 72 69 74 | .firewall.what.to.do.if.all.crit |
| f4380 | 65 72 69 61 20 6d 61 74 63 68 65 72 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 73 75 63 68 20 72 | eria.matchers.defined.for.such.r |
| f43a0 | 75 6c 65 20 64 6f 20 6d 61 74 63 68 2e 00 49 66 20 61 20 72 75 6c 65 20 69 73 20 64 65 66 69 6e | ule.do.match..If.a.rule.is.defin |
| f43c0 | 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e | ed,.then.an.action.must.be.defin |
| f43e0 | 65 64 20 66 6f 72 20 69 74 2e 20 54 68 69 73 20 74 65 6c 6c 73 20 74 68 65 20 66 69 72 65 77 61 | ed.for.it..This.tells.the.firewa |
| f4400 | 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f 20 69 66 20 61 6c 6c 20 6d 61 74 63 68 69 6e 67 20 63 72 | ll.what.to.do.if.all.matching.cr |
| f4420 | 69 74 65 72 65 61 20 69 6e 20 74 68 65 20 72 75 6c 65 20 61 72 65 20 6d 65 74 2e 00 49 66 20 61 | iterea.in.the.rule.are.met..If.a |
| f4440 | 20 72 75 6c 65 20 69 73 20 64 65 66 69 6e 65 64 2c 20 74 68 65 6e 20 61 6e 20 61 63 74 69 6f 6e | .rule.is.defined,.then.an.action |
| f4460 | 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 66 6f 72 20 69 74 2e 20 54 68 69 73 20 74 65 | .must.be.defined.for.it..This.te |
| f4480 | 6c 6c 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 77 68 61 74 20 74 6f 20 64 6f 20 69 66 20 61 | lls.the.firewall.what.to.do.if.a |
| f44a0 | 6c 6c 20 6f 66 20 74 68 65 20 63 72 69 74 65 72 69 61 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 | ll.of.the.criteria.defined.for.t |
| f44c0 | 68 61 74 20 72 75 6c 65 20 6d 61 74 63 68 2e 00 49 66 20 61 20 74 68 65 72 65 20 61 72 65 20 6e | hat.rule.match..If.a.there.are.n |
| f44e0 | 6f 20 66 72 65 65 20 61 64 64 72 65 73 73 65 73 20 62 75 74 20 74 68 65 72 65 20 61 72 65 20 61 | o.free.addresses.but.there.are.a |
| f4500 | 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 20 44 48 43 50 20 | bandoned.IP.addresses,.the.DHCP. |
| f4520 | 73 65 72 76 65 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 63 6c 61 69 6d 20 61 | server.will.attempt.to.reclaim.a |
| f4540 | 6e 20 61 62 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 73 73 20 72 65 67 61 72 64 6c 65 73 | n.abandoned.IP.address.regardles |
| f4560 | 73 20 6f 66 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 73 65 2d | s.of.the.value.of.abandon-lease- |
| f4580 | 74 69 6d 65 2e 00 49 66 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 | time..If.action.is.set.to.``queu |
| f45a0 | 65 60 60 2c 20 75 73 65 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 | e``,.use.next.command.to.specify |
| f45c0 | 20 74 68 65 20 71 75 65 75 65 20 74 61 72 67 65 74 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f | .the.queue.target..Range.is.also |
| f45e0 | 20 73 75 70 70 6f 72 74 65 64 3a 00 49 66 20 61 6e 20 49 53 50 20 64 65 70 6c 6f 79 73 20 61 20 | .supported:.If.an.ISP.deploys.a. |
| f4600 | 3a 61 62 62 72 3a 60 43 47 4e 20 28 43 61 72 72 69 65 72 2d 67 72 61 64 65 20 4e 41 54 29 60 2c | :abbr:`CGN.(Carrier-grade.NAT)`, |
| f4620 | 20 61 6e 64 20 75 73 65 73 20 3a 72 66 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 20 73 70 | .and.uses.:rfc:`1918`.address.sp |
| f4640 | 61 63 65 20 74 6f 20 6e 75 6d 62 65 72 20 63 75 73 74 6f 6d 65 72 20 67 61 74 65 77 61 79 73 2c | ace.to.number.customer.gateways, |
| f4660 | 20 74 68 65 20 72 69 73 6b 20 6f 66 20 61 64 64 72 65 73 73 20 63 6f 6c 6c 69 73 69 6f 6e 2c 20 | .the.risk.of.address.collision,. |
| f4680 | 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 6f 75 74 69 6e 67 20 66 61 69 6c 75 72 65 73 2c 20 | and.therefore.routing.failures,. |
| f46a0 | 61 72 69 73 65 73 20 77 68 65 6e 20 74 68 65 20 63 75 73 74 6f 6d 65 72 20 6e 65 74 77 6f 72 6b | arises.when.the.customer.network |
| f46c0 | 20 61 6c 72 65 61 64 79 20 75 73 65 73 20 61 6e 20 3a 72 66 63 3a 60 31 39 31 38 60 20 61 64 64 | .already.uses.an.:rfc:`1918`.add |
| f46e0 | 72 65 73 73 20 73 70 61 63 65 2e 00 49 66 20 61 6e 20 61 6e 6f 74 68 65 72 20 62 72 69 64 67 65 | ress.space..If.an.another.bridge |
| f4700 | 20 69 6e 20 74 68 65 20 73 70 61 6e 6e 69 6e 67 20 74 72 65 65 20 64 6f 65 73 20 6e 6f 74 20 73 | .in.the.spanning.tree.does.not.s |
| f4720 | 65 6e 64 20 6f 75 74 20 61 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 20 66 6f 72 20 61 20 6c 6f 6e | end.out.a.hello.packet.for.a.lon |
| f4740 | 67 20 70 65 72 69 6f 64 20 6f 66 20 74 69 6d 65 2c 20 69 74 20 69 73 20 61 73 73 75 6d 65 64 20 | g.period.of.time,.it.is.assumed. |
| f4760 | 74 6f 20 62 65 20 64 65 61 64 2e 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 | to.be.dead..If.an.interface.is.a |
| f4780 | 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 | ttached.to.a.non-default.vrf,.wh |
| f47a0 | 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 | en.using.**inbound-interface**,. |
| f47c0 | 74 68 65 20 76 72 66 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 | the.vrf.name.must.be.used..For.e |
| f47e0 | 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 | xample.``set.firewall.ipv4.forwa |
| f4800 | 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 | rd.filter.rule.10.inbound-interf |
| f4820 | 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 | ace.name.MGMT``.If.an.interface. |
| f4840 | 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 | is.attached.to.a.non-default.vrf |
| f4860 | 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 | ,.when.using.**inbound-interface |
| f4880 | 2a 2a 2c 20 74 68 65 20 76 72 66 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 | **,.the.vrf.name.must.be.used..F |
| f48a0 | 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 | or.example.``set.firewall.ipv6.f |
| f48c0 | 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e | orward.filter.rule.10.inbound-in |
| f48e0 | 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 | terface.name.MGMT``.If.an.interf |
| f4900 | 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 | ace.is.attached.to.a.non-default |
| f4920 | 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 | .vrf,.when.using.**inbound-inter |
| f4940 | 66 61 63 65 2a 2a 2c 20 76 72 66 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 | face**,.vrf.name.must.be.used..F |
| f4960 | 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 | or.example.``set.firewall.ipv4.f |
| f4980 | 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e | orward.filter.rule.10.inbound-in |
| f49a0 | 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 | terface.name.MGMT``.If.an.interf |
| f49c0 | 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 | ace.is.attached.to.a.non-default |
| f49e0 | 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 | .vrf,.when.using.**inbound-inter |
| f4a00 | 66 61 63 65 2a 2a 2c 20 76 72 66 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 | face**,.vrf.name.must.be.used..F |
| f4a20 | 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 | or.example.``set.firewall.ipv6.f |
| f4a40 | 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 69 6e 62 6f 75 6e 64 2d 69 6e | orward.filter.rule.10.inbound-in |
| f4a60 | 74 65 72 66 61 63 65 20 6e 61 6d 65 20 4d 47 4d 54 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 | terface.name.MGMT``.If.an.interf |
| f4a80 | 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 | ace.is.attached.to.a.non-default |
| f4aa0 | 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 | .vrf,.when.using.**outbound-inte |
| f4ac0 | 72 66 61 63 65 2a 2a 2c 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 | rface**,.real.interface.name.mus |
| f4ae0 | 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 | t.be.used..For.example.``set.fir |
| f4b00 | 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 | ewall.ipv4.forward.filter.rule.1 |
| f4b20 | 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 | 0.outbound-interface.name.eth0`` |
| f4b40 | 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 | .If.an.interface.is.attached.to. |
| f4b60 | 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a | a.non-default.vrf,.when.using.** |
| f4b80 | 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 72 65 61 6c 20 69 6e 74 65 72 | outbound-interface**,.real.inter |
| f4ba0 | 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d | face.name.must.be.used..For.exam |
| f4bc0 | 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 64 20 | ple.``set.firewall.ipv6.forward. |
| f4be0 | 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 | filter.rule.10.outbound-interfac |
| f4c00 | 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 | e.name.eth0``.If.an.interface.is |
| f4c20 | 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 | .attached.to.a.non-default.vrf,. |
| f4c40 | 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a | when.using.**outbound-interface* |
| f4c60 | 2a 2c 20 74 68 65 20 72 65 61 6c 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 | *,.the.real.interface.name.must. |
| f4c80 | 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 | be.used..For.example.``set.firew |
| f4ca0 | 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 | all.ipv4.forward.filter.rule.10. |
| f4cc0 | 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 | outbound-interface.name.eth0``.I |
| f4ce0 | 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 | f.an.interface.is.attached.to.a. |
| f4d00 | 6e 6f 6e 2d 64 65 66 61 75 6c 74 20 76 72 66 2c 20 77 68 65 6e 20 75 73 69 6e 67 20 2a 2a 6f 75 | non-default.vrf,.when.using.**ou |
| f4d20 | 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 2a 2a 2c 20 74 68 65 20 72 65 61 6c 20 69 6e 74 | tbound-interface**,.the.real.int |
| f4d40 | 65 72 66 61 63 65 20 6e 61 6d 65 20 6d 75 73 74 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 | erface.name.must.be.used..For.ex |
| f4d60 | 61 6d 70 6c 65 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 72 | ample.``set.firewall.ipv6.forwar |
| f4d80 | 64 20 66 69 6c 74 65 72 20 72 75 6c 65 20 31 30 20 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 | d.filter.rule.10.outbound-interf |
| f4da0 | 61 63 65 20 6e 61 6d 65 20 65 74 68 30 60 60 00 49 66 20 63 68 6f 6f 73 69 6e 67 20 61 20 76 61 | ace.name.eth0``.If.choosing.a.va |
| f4dc0 | 6c 75 65 20 62 65 6c 6f 77 20 33 31 20 73 65 63 6f 6e 64 73 20 62 65 20 61 77 61 72 65 20 74 68 | lue.below.31.seconds.be.aware.th |
| f4de0 | 61 74 20 73 6f 6d 65 20 68 61 72 64 77 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f | at.some.hardware.platforms.canno |
| f4e00 | 74 20 73 65 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 68 61 | t.see.data.flowing.in.better.tha |
| f4e20 | 6e 20 33 30 20 73 65 63 6f 6e 64 20 63 68 75 6e 6b 73 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 | n.30.second.chunks..If.configure |
| f4e40 | 64 2c 20 69 6e 63 6f 6d 69 6e 67 20 49 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 | d,.incoming.IP.directed.broadcas |
| f4e60 | 74 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 77 69 6c 6c | t.packets.on.this.interface.will |
| f4e80 | 20 62 65 20 66 6f 72 77 61 72 64 65 64 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 72 65 | .be.forwarded..If.configured,.re |
| f4ea0 | 70 6c 79 20 6f 6e 6c 79 20 69 66 20 74 68 65 20 74 61 72 67 65 74 20 49 50 20 61 64 64 72 65 73 | ply.only.if.the.target.IP.addres |
| f4ec0 | 73 20 69 73 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e | s.is.local.address.configured.on |
| f4ee0 | 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 63 6f 6e 66 | .the.incoming.interface..If.conf |
| f4f00 | 69 67 75 72 65 64 2c 20 74 72 79 20 74 6f 20 61 76 6f 69 64 20 6c 6f 63 61 6c 20 61 64 64 72 65 | igured,.try.to.avoid.local.addre |
| f4f20 | 73 73 65 73 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 69 6e 20 74 68 65 20 74 61 72 67 65 74 27 | sses.that.are.not.in.the.target' |
| f4f40 | 73 20 73 75 62 6e 65 74 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 | s.subnet.for.this.interface..Thi |
| f4f60 | 73 20 6d 6f 64 65 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 74 61 72 67 65 74 20 68 6f 73 | s.mode.is.useful.when.target.hos |
| f4f80 | 74 73 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 | ts.reachable.via.this.interface. |
| f4fa0 | 72 65 71 75 69 72 65 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e | require.the.source.IP.address.in |
| f4fc0 | 20 41 52 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 62 65 20 70 61 72 74 20 6f 66 20 74 68 65 69 | .ARP.requests.to.be.part.of.thei |
| f4fe0 | 72 20 6c 6f 67 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 | r.logical.network.configured.on. |
| f5000 | 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 77 65 | the.receiving.interface..When.we |
| f5020 | 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 72 65 71 75 65 73 74 20 77 65 20 77 69 6c 6c 20 63 68 | .generate.the.request.we.will.ch |
| f5040 | 65 63 6b 20 61 6c 6c 20 6f 75 72 20 73 75 62 6e 65 74 73 20 74 68 61 74 20 69 6e 63 6c 75 64 65 | eck.all.our.subnets.that.include |
| f5060 | 20 74 68 65 20 74 61 72 67 65 74 20 49 50 20 61 6e 64 20 77 69 6c 6c 20 70 72 65 73 65 72 76 65 | .the.target.IP.and.will.preserve |
| f5080 | 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 66 20 69 74 20 69 73 20 66 72 6f | .the.source.address.if.it.is.fro |
| f50a0 | 6d 20 73 75 63 68 20 73 75 62 6e 65 74 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 6e 6f 20 73 75 | m.such.subnet..If.there.is.no.su |
| f50c0 | 63 68 20 73 75 62 6e 65 74 20 77 65 20 73 65 6c 65 63 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 | ch.subnet.we.select.source.addre |
| f50e0 | 73 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 72 75 6c 65 73 20 66 6f 72 20 6c 65 | ss.according.to.the.rules.for.le |
| f5100 | 76 65 6c 20 32 2e 00 49 66 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 56 58 4c 41 4e 20 69 6e 20 61 | vel.2..If.configuring.VXLAN.in.a |
| f5120 | 20 56 79 4f 53 20 76 69 72 74 75 61 6c 20 6d 61 63 68 69 6e 65 2c 20 65 6e 73 75 72 65 20 74 68 | .VyOS.virtual.machine,.ensure.th |
| f5140 | 61 74 20 4d 41 43 20 73 70 6f 6f 66 69 6e 67 20 28 48 79 70 65 72 2d 56 29 20 6f 72 20 46 6f 72 | at.MAC.spoofing.(Hyper-V).or.For |
| f5160 | 67 65 64 20 54 72 61 6e 73 6d 69 74 73 20 28 45 53 58 29 20 61 72 65 20 70 65 72 6d 69 74 74 65 | ged.Transmits.(ESX).are.permitte |
| f5180 | 64 2c 20 6f 74 68 65 72 77 69 73 65 20 66 6f 72 77 61 72 64 65 64 20 66 72 61 6d 65 73 20 6d 61 | d,.otherwise.forwarded.frames.ma |
| f51a0 | 79 20 62 65 20 62 6c 6f 63 6b 65 64 20 62 79 20 74 68 65 20 68 79 70 65 72 76 69 73 6f 72 2e 00 | y.be.blocked.by.the.hypervisor.. |
| f51c0 | 49 66 20 65 69 74 68 65 72 20 69 73 20 73 65 74 20 62 6f 74 68 20 6d 75 73 74 20 62 65 20 73 65 | If.either.is.set.both.must.be.se |
| f51e0 | 74 2e 00 49 66 20 66 6f 72 77 61 72 64 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 64 69 | t..If.forwarding.traffic.to.a.di |
| f5200 | 66 66 65 72 65 6e 74 20 70 6f 72 74 20 74 68 61 6e 20 69 74 20 69 73 20 61 72 72 69 76 69 6e 67 | fferent.port.than.it.is.arriving |
| f5220 | 20 6f 6e 2c 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | .on,.you.may.also.configure.the. |
| f5240 | 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 72 74 20 75 73 69 6e 67 20 60 73 65 74 20 6e 61 74 20 | translation.port.using.`set.nat. |
| f5260 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 72 75 6c 65 20 5b 6e 5d 20 74 72 61 6e 73 6c 61 74 69 6f 6e | destination.rule.[n].translation |
| f5280 | 20 70 6f 72 74 60 2e 00 49 66 20 67 75 61 72 61 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 66 6f | .port`..If.guaranteed.traffic.fo |
| f52a0 | 72 20 61 20 63 6c 61 73 73 20 69 73 20 6d 65 74 20 61 6e 64 20 74 68 65 72 65 20 69 73 20 72 6f | r.a.class.is.met.and.there.is.ro |
| f52c0 | 6f 6d 20 66 6f 72 20 6d 6f 72 65 20 74 72 61 66 66 69 63 2c 20 74 68 65 20 63 65 69 6c 69 6e 67 | om.for.more.traffic,.the.ceiling |
| f52e0 | 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 73 65 74 20 68 6f | .parameter.can.be.used.to.set.ho |
| f5300 | 77 20 6d 75 63 68 20 6d 6f 72 65 20 62 61 6e 64 77 69 64 74 68 20 63 6f 75 6c 64 20 62 65 20 75 | w.much.more.bandwidth.could.be.u |
| f5320 | 73 65 64 2e 20 49 66 20 67 75 61 72 61 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 69 73 20 6d 65 | sed..If.guaranteed.traffic.is.me |
| f5340 | 74 20 61 6e 64 20 74 68 65 72 65 20 61 72 65 20 73 65 76 65 72 61 6c 20 63 6c 61 73 73 65 73 20 | t.and.there.are.several.classes. |
| f5360 | 77 69 6c 6c 69 6e 67 20 74 6f 20 75 73 65 20 74 68 65 69 72 20 63 65 69 6c 69 6e 67 73 2c 20 74 | willing.to.use.their.ceilings,.t |
| f5380 | 68 65 20 70 72 69 6f 72 69 74 79 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 65 73 74 61 62 | he.priority.parameter.will.estab |
| f53a0 | 6c 69 73 68 20 74 68 65 20 6f 72 64 65 72 20 69 6e 20 77 68 69 63 68 20 74 68 61 74 20 61 64 64 | lish.the.order.in.which.that.add |
| f53c0 | 69 74 69 6f 6e 61 6c 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 | itional.traffic.will.be.allocate |
| f53e0 | 64 2e 20 50 72 69 6f 72 69 74 79 20 63 61 6e 20 62 65 20 61 6e 79 20 6e 75 6d 62 65 72 20 66 72 | d..Priority.can.be.any.number.fr |
| f5400 | 6f 6d 20 30 20 74 6f 20 37 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c | om.0.to.7..The.lower.the.number, |
| f5420 | 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 00 49 66 20 69 6e 74 | .the.higher.the.priority..If.int |
| f5440 | 65 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 | erface.were.the.packet.was.recei |
| f5460 | 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 | ved.is.part.of.a.bridge,.then.pa |
| f5480 | 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 | cket.is.processed.at.the.**Bridg |
| f54a0 | 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f 6e 74 61 69 6e 73 20 61 20 76 65 72 20 | e.Layer**,.which.contains.a.ver. |
| f54c0 | 62 61 73 69 63 20 73 65 74 75 70 20 77 68 65 72 65 20 66 6f 72 20 62 72 69 64 67 65 20 66 69 6c | basic.setup.where.for.bridge.fil |
| f54e0 | 74 65 72 69 6e 67 3a 00 49 66 20 69 6e 74 65 72 66 61 63 65 20 77 65 72 65 20 74 68 65 20 70 61 | tering:.If.interface.were.the.pa |
| f5500 | 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 20 6f 66 20 | cket.was.received.isn't.part.of. |
| f5520 | 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 | a.bridge,.then.packet.is.process |
| f5540 | 65 64 20 61 74 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 69 74 27 73 20 | ed.at.the.**IP.Layer**:.If.it's. |
| f5560 | 6e 6f 74 20 64 72 6f 70 70 65 64 2c 20 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 | not.dropped,.then.the.packet.is. |
| f5580 | 73 65 6e 74 20 74 6f 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 2c 20 61 6e 64 20 77 69 6c 6c 20 62 | sent.to.**IP.Layer**,.and.will.b |
| f55a0 | 65 20 70 72 6f 63 65 73 73 65 64 20 62 79 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 20 | e.processed.by.the.**IP.Layer**. |
| f55c0 | 66 69 72 65 77 61 6c 6c 3a 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 72 75 6c 65 73 65 74 2e 20 | firewall:.IPv4.or.IPv6.ruleset.. |
| f55e0 | 43 68 65 63 6b 20 6f 6e 63 65 20 61 67 61 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 67 65 6e 65 72 | Check.once.again.the.:doc:`gener |
| f5600 | 61 6c 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 3c 2f 63 6f 6e 66 69 67 75 72 | al.packet.flow.diagram</configur |
| f5620 | 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 6e 64 65 78 3e 60 20 69 66 20 6e 65 65 64 65 64 | ation/firewall/index>`.if.needed |
| f5640 | 2e 00 49 66 20 69 74 27 73 20 76 69 74 61 6c 20 74 68 61 74 20 74 68 65 20 64 61 65 6d 6f 6e 20 | ..If.it's.vital.that.the.daemon. |
| f5660 | 73 68 6f 75 6c 64 20 61 63 74 20 65 78 61 63 74 6c 79 20 6c 69 6b 65 20 61 20 72 65 61 6c 20 6d | should.act.exactly.like.a.real.m |
| f5680 | 75 6c 74 69 63 61 73 74 20 63 6c 69 65 6e 74 20 6f 6e 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 | ulticast.client.on.the.upstream. |
| f56a0 | 69 6e 74 65 72 66 61 63 65 2c 20 74 68 69 73 20 66 75 6e 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 | interface,.this.function.should. |
| f56c0 | 62 65 20 65 6e 61 62 6c 65 64 2e 00 49 66 20 6b 6e 6f 77 6e 2c 20 74 68 65 20 49 50 20 6f 66 20 | be.enabled..If.known,.the.IP.of. |
| f56e0 | 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 | the.remote.router.can.be.configu |
| f5700 | 72 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 60 72 65 6d 6f 74 65 2d 68 6f 73 74 60 60 20 64 69 | red.using.the.``remote-host``.di |
| f5720 | 72 65 63 74 69 76 65 3b 20 69 66 20 75 6e 6b 6e 6f 77 6e 2c 20 69 74 20 63 61 6e 20 62 65 20 6f | rective;.if.unknown,.it.can.be.o |
| f5740 | 6d 69 74 74 65 64 2e 20 57 65 20 77 69 6c 6c 20 61 73 73 75 6d 65 20 61 20 64 79 6e 61 6d 69 63 | mitted..We.will.assume.a.dynamic |
| f5760 | 20 49 50 20 66 6f 72 20 6f 75 72 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 72 2e 00 49 66 20 6c 6f | .IP.for.our.remote.router..If.lo |
| f5780 | 67 67 69 6e 67 20 74 6f 20 61 20 6c 6f 63 61 6c 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 69 73 | gging.to.a.local.user.account.is |
| f57a0 | 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 61 6c 6c 20 64 65 66 69 6e 65 64 20 6c 6f 67 20 6d 65 73 | .configured,.all.defined.log.mes |
| f57c0 | 73 61 67 65 73 20 61 72 65 20 64 69 73 70 6c 61 79 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 | sages.are.display.on.the.console |
| f57e0 | 20 69 66 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 20 69 73 20 6c 6f 67 67 65 64 20 69 6e 2c | .if.the.local.user.is.logged.in, |
| f5800 | 20 69 66 20 74 68 65 20 75 73 65 72 20 69 73 20 6e 6f 74 20 6c 6f 67 67 65 64 20 69 6e 2c 20 6e | .if.the.user.is.not.logged.in,.n |
| f5820 | 6f 20 6d 65 73 73 61 67 65 73 20 61 72 65 20 62 65 69 6e 67 20 64 69 73 70 6c 61 79 65 64 2e 20 | o.messages.are.being.displayed.. |
| f5840 | 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c | For.an.explanation.on.:ref:`sysl |
| f5860 | 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 | og_facilities`.keywords.and.:ref |
| f5880 | 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 | :`syslog_severity_level`.keyword |
| f58a0 | 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 49 66 20 6d 61 6b 69 6e 67 20 75 73 | s.see.tables.below..If.making.us |
| f58c0 | 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 74 75 6e 6e 65 6c 73 2c 20 4f 70 65 6e 56 50 4e 20 6d | e.of.multiple.tunnels,.OpenVPN.m |
| f58e0 | 75 73 74 20 68 61 76 65 20 61 20 77 61 79 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 | ust.have.a.way.to.distinguish.be |
| f5900 | 74 77 65 65 6e 20 64 69 66 66 65 72 65 6e 74 20 74 75 6e 6e 65 6c 73 20 61 73 69 64 65 20 66 72 | tween.different.tunnels.aside.fr |
| f5920 | 6f 6d 20 74 68 65 20 70 72 65 2d 73 68 61 72 65 64 2d 6b 65 79 2e 20 54 68 69 73 20 69 73 20 65 | om.the.pre-shared-key..This.is.e |
| f5940 | 69 74 68 65 72 20 62 79 20 72 65 66 65 72 65 6e 63 69 6e 67 20 49 50 20 61 64 64 72 65 73 73 20 | ither.by.referencing.IP.address. |
| f5960 | 6f 72 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 4f 6e 65 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f | or.port.number..One.option.is.to |
| f5980 | 20 64 65 64 69 63 61 74 65 20 61 20 70 75 62 6c 69 63 20 49 50 20 74 6f 20 65 61 63 68 20 74 75 | .dedicate.a.public.IP.to.each.tu |
| f59a0 | 6e 6e 65 6c 2e 20 41 6e 6f 74 68 65 72 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 | nnel..Another.option.is.to.dedic |
| f59c0 | 61 74 65 20 61 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c | ate.a.port.number.to.each.tunnel |
| f59e0 | 20 28 65 2e 67 2e 20 31 31 39 35 2c 31 31 39 36 2c 31 31 39 37 2e 2e 2e 29 2e 00 49 66 20 6d 75 | .(e.g..1195,1196,1197...)..If.mu |
| f5a00 | 6c 74 69 2d 70 61 74 68 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 63 68 65 | lti-pathing.is.enabled,.then.che |
| f5a20 | 63 6b 20 77 68 65 74 68 65 72 20 74 68 65 20 72 6f 75 74 65 73 20 6e 6f 74 20 79 65 74 20 64 69 | ck.whether.the.routes.not.yet.di |
| f5a40 | 73 74 69 6e 67 75 69 73 68 65 64 20 69 6e 20 70 72 65 66 65 72 65 6e 63 65 20 6d 61 79 20 62 65 | stinguished.in.preference.may.be |
| f5a60 | 20 63 6f 6e 73 69 64 65 72 65 64 20 65 71 75 61 6c 2e 20 49 66 20 3a 63 66 67 63 6d 64 3a 60 62 | .considered.equal..If.:cfgcmd:`b |
| f5a80 | 67 70 20 62 65 73 74 70 61 74 68 20 61 73 2d 70 61 74 68 20 6d 75 6c 74 69 70 61 74 68 2d 72 65 | gp.bestpath.as-path.multipath-re |
| f5aa0 | 6c 61 78 60 20 69 73 20 73 65 74 2c 20 61 6c 6c 20 73 75 63 68 20 72 6f 75 74 65 73 20 61 72 65 | lax`.is.set,.all.such.routes.are |
| f5ac0 | 20 63 6f 6e 73 69 64 65 72 65 64 20 65 71 75 61 6c 2c 20 6f 74 68 65 72 77 69 73 65 20 72 6f 75 | .considered.equal,.otherwise.rou |
| f5ae0 | 74 65 73 20 72 65 63 65 69 76 65 64 20 76 69 61 20 69 42 47 50 20 77 69 74 68 20 69 64 65 6e 74 | tes.received.via.iBGP.with.ident |
| f5b00 | 69 63 61 6c 20 41 53 5f 50 41 54 48 73 20 6f 72 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 | ical.AS_PATHs.or.routes.received |
| f5b20 | 20 66 72 6f 6d 20 65 42 47 50 20 6e 65 69 67 68 62 6f 75 72 73 20 69 6e 20 74 68 65 20 73 61 6d | .from.eBGP.neighbours.in.the.sam |
| f5b40 | 65 20 41 53 20 61 72 65 20 63 6f 6e 73 69 64 65 72 65 64 20 65 71 75 61 6c 2e 00 49 66 20 6e 6f | e.AS.are.considered.equal..If.no |
| f5b60 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 6e 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 | .connection.to.an.RPKI.cache.ser |
| f5b80 | 76 65 72 20 63 61 6e 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 61 66 74 65 72 20 61 20 70 | ver.can.be.established.after.a.p |
| f5ba0 | 72 65 2d 64 65 66 69 6e 65 64 20 74 69 6d 65 6f 75 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 | re-defined.timeout,.the.router.w |
| f5bc0 | 69 6c 6c 20 70 72 6f 63 65 73 73 20 72 6f 75 74 65 73 20 77 69 74 68 6f 75 74 20 70 72 65 66 69 | ill.process.routes.without.prefi |
| f5be0 | 78 20 6f 72 69 67 69 6e 20 76 61 6c 69 64 61 74 69 6f 6e 2e 20 49 74 20 73 74 69 6c 6c 20 77 69 | x.origin.validation..It.still.wi |
| f5c00 | 6c 6c 20 74 72 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e | ll.try.to.establish.a.connection |
| f5c20 | 20 74 6f 20 61 6e 20 52 50 4b 49 20 63 61 63 68 65 20 73 65 72 76 65 72 20 69 6e 20 74 68 65 20 | .to.an.RPKI.cache.server.in.the. |
| f5c40 | 62 61 63 6b 67 72 6f 75 6e 64 2e 00 49 66 20 6e 6f 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 69 73 | background..If.no.destination.is |
| f5c60 | 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 72 75 6c 65 20 77 69 6c 6c 20 6d 61 74 63 68 20 6f | .specified.the.rule.will.match.o |
| f5c80 | 6e 20 61 6e 79 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f | n.any.destination.address.and.po |
| f5ca0 | 72 74 2e 00 49 66 20 6e 6f 20 69 70 20 70 72 65 66 69 78 20 6c 69 73 74 20 69 73 20 73 70 65 63 | rt..If.no.ip.prefix.list.is.spec |
| f5cc0 | 69 66 69 65 64 2c 20 69 74 20 61 63 74 73 20 61 73 20 70 65 72 6d 69 74 2e 20 49 66 20 69 70 20 | ified,.it.acts.as.permit..If.ip. |
| f5ce0 | 70 72 65 66 69 78 20 6c 69 73 74 20 69 73 20 64 65 66 69 6e 65 64 2c 20 61 6e 64 20 6e 6f 20 6d | prefix.list.is.defined,.and.no.m |
| f5d00 | 61 74 63 68 20 69 73 20 66 6f 75 6e 64 2c 20 64 65 66 61 75 6c 74 20 64 65 6e 79 20 69 73 20 61 | atch.is.found,.default.deny.is.a |
| f5d20 | 70 70 6c 69 65 64 2e 00 49 66 20 6e 6f 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 | pplied..If.no.option.is.specifie |
| f5d40 | 64 2c 20 74 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 60 61 6c 6c 60 2e 00 49 66 20 6e 6f | d,.this.defaults.to.`all`..If.no |
| f5d60 | 74 20 73 65 74 20 28 64 65 66 61 75 6c 74 29 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 68 61 | t.set.(default).allows.you.to.ha |
| f5d80 | 76 65 20 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 6f | ve.multiple.network.interfaces.o |
| f5da0 | 6e 20 74 68 65 20 73 61 6d 65 20 73 75 62 6e 65 74 2c 20 61 6e 64 20 68 61 76 65 20 74 68 65 20 | n.the.same.subnet,.and.have.the. |
| f5dc0 | 41 52 50 73 20 66 6f 72 20 65 61 63 68 20 69 6e 74 65 72 66 61 63 65 20 62 65 20 61 6e 73 77 65 | ARPs.for.each.interface.be.answe |
| f5de0 | 72 65 64 20 62 61 73 65 64 20 6f 6e 20 77 68 65 74 68 65 72 20 6f 72 20 6e 6f 74 20 74 68 65 20 | red.based.on.whether.or.not.the. |
| f5e00 | 6b 65 72 6e 65 6c 20 77 6f 75 6c 64 20 72 6f 75 74 65 20 61 20 70 61 63 6b 65 74 20 66 72 6f 6d | kernel.would.route.a.packet.from |
| f5e20 | 20 74 68 65 20 41 52 50 27 64 20 49 50 20 6f 75 74 20 74 68 61 74 20 69 6e 74 65 72 66 61 63 65 | .the.ARP'd.IP.out.that.interface |
| f5e40 | 20 28 74 68 65 72 65 66 6f 72 65 20 79 6f 75 20 6d 75 73 74 20 75 73 65 20 73 6f 75 72 63 65 20 | .(therefore.you.must.use.source. |
| f5e60 | 62 61 73 65 64 20 72 6f 75 74 69 6e 67 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 29 2e | based.routing.for.this.to.work). |
| f5e80 | 00 49 66 20 6f 70 74 69 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 70 61 72 61 6d 65 74 65 72 20 69 | .If.optional.profile.parameter.i |
| f5ea0 | 73 20 75 73 65 64 2c 20 73 65 6c 65 63 74 20 61 20 42 46 44 20 70 72 6f 66 69 6c 65 20 66 6f 72 | s.used,.select.a.BFD.profile.for |
| f5ec0 | 20 74 68 65 20 42 46 44 20 73 65 73 73 69 6f 6e 73 20 63 72 65 61 74 65 64 20 76 69 61 20 74 68 | .the.BFD.sessions.created.via.th |
| f5ee0 | 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 73 65 74 20 74 68 65 20 6b 65 72 6e 65 6c 20 | is.interface..If.set.the.kernel. |
| f5f00 | 63 61 6e 20 72 65 73 70 6f 6e 64 20 74 6f 20 61 72 70 20 72 65 71 75 65 73 74 73 20 77 69 74 68 | can.respond.to.arp.requests.with |
| f5f20 | 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 | .addresses.from.other.interfaces |
| f5f40 | 2e 20 54 68 69 73 20 6d 61 79 20 73 65 65 6d 20 77 72 6f 6e 67 20 62 75 74 20 69 74 20 75 73 75 | ..This.may.seem.wrong.but.it.usu |
| f5f60 | 61 6c 6c 79 20 6d 61 6b 65 73 20 73 65 6e 73 65 2c 20 62 65 63 61 75 73 65 20 69 74 20 69 6e 63 | ally.makes.sense,.because.it.inc |
| f5f80 | 72 65 61 73 65 73 20 74 68 65 20 63 68 61 6e 63 65 20 6f 66 20 73 75 63 63 65 73 73 66 75 6c 20 | reases.the.chance.of.successful. |
| f5fa0 | 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 2e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 | communication..IP.addresses.are. |
| f5fc0 | 6f 77 6e 65 64 20 62 79 20 74 68 65 20 63 6f 6d 70 6c 65 74 65 20 68 6f 73 74 20 6f 6e 20 4c 69 | owned.by.the.complete.host.on.Li |
| f5fe0 | 6e 75 78 2c 20 6e 6f 74 20 62 79 20 70 61 72 74 69 63 75 6c 61 72 20 69 6e 74 65 72 66 61 63 65 | nux,.not.by.particular.interface |
| f6000 | 73 2e 20 4f 6e 6c 79 20 66 6f 72 20 6d 6f 72 65 20 63 6f 6d 70 6c 65 78 20 73 65 74 75 70 73 20 | s..Only.for.more.complex.setups. |
| f6020 | 6c 69 6b 65 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 2c 20 64 6f 65 73 20 74 68 69 73 20 62 | like.load-balancing,.does.this.b |
| f6040 | 65 68 61 76 69 6f 75 72 20 63 61 75 73 65 20 70 72 6f 62 6c 65 6d 73 2e 00 49 66 20 73 65 74 20 | ehaviour.cause.problems..If.set. |
| f6060 | 74 6f 20 61 6e 20 65 6d 70 74 79 20 73 74 72 69 6e 67 2c 20 74 68 65 20 6c 61 62 65 6c 20 77 69 | to.an.empty.string,.the.label.wi |
| f6080 | 6c 6c 20 6e 6f 74 20 62 65 20 61 64 64 65 64 2e 20 54 68 69 73 20 69 73 20 4e 4f 54 20 72 65 63 | ll.not.be.added..This.is.NOT.rec |
| f60a0 | 6f 6d 6d 65 6e 64 65 64 2c 20 61 73 20 69 74 20 6d 61 6b 65 73 20 69 74 20 69 6d 70 6f 73 73 69 | ommended,.as.it.makes.it.impossi |
| f60c0 | 62 6c 65 20 74 6f 20 64 69 66 66 65 72 65 6e 74 69 61 74 65 20 62 65 74 77 65 65 6e 20 6d 75 6c | ble.to.differentiate.between.mul |
| f60e0 | 74 69 70 6c 65 20 6d 65 74 72 69 63 73 2e 00 49 66 20 73 65 74 20 74 6f 20 65 6e 61 62 6c 65 2c | tiple.metrics..If.set.to.enable, |
| f6100 | 20 6f 70 65 6e 76 70 6e 2d 6f 74 70 20 77 69 6c 6c 20 65 78 70 65 63 74 20 70 61 73 73 77 6f 72 | .openvpn-otp.will.expect.passwor |
| f6120 | 64 20 61 73 20 72 65 73 75 6c 74 20 6f 66 20 63 68 61 6c 6c 65 6e 67 65 2f 20 72 65 73 70 6f 6e | d.as.result.of.challenge/.respon |
| f6140 | 73 65 20 70 72 6f 74 6f 63 6f 6c 2e 00 49 66 20 73 65 74 2c 20 49 50 76 34 20 64 69 72 65 63 74 | se.protocol..If.set,.IPv4.direct |
| f6160 | 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 69 6e 67 20 77 69 6c 6c 20 62 65 20 | ed.broadcast.forwarding.will.be. |
| f6180 | 63 6f 6d 70 6c 65 74 65 6c 79 20 64 69 73 61 62 6c 65 64 20 72 65 67 61 72 64 6c 65 73 73 20 6f | completely.disabled.regardless.o |
| f61a0 | 66 20 77 68 65 74 68 65 72 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 64 69 72 65 63 74 65 64 | f.whether.per-interface.directed |
| f61c0 | 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 72 64 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 | .broadcast.forwarding.is.enabled |
| f61e0 | 20 6f 72 20 6e 6f 74 2e 00 49 66 20 73 65 74 2c 20 74 68 65 20 64 6f 6d 61 69 6e 20 70 61 72 74 | .or.not..If.set,.the.domain.part |
| f6200 | 20 6f 66 20 74 68 65 20 68 6f 73 74 6e 61 6d 65 20 69 73 20 61 6c 77 61 79 73 20 73 65 6e 74 2c | .of.the.hostname.is.always.sent, |
| f6220 | 20 65 76 65 6e 20 77 69 74 68 69 6e 20 74 68 65 20 73 61 6d 65 20 64 6f 6d 61 69 6e 20 61 73 20 | .even.within.the.same.domain.as. |
| f6240 | 74 68 65 20 72 65 63 65 69 76 69 6e 67 20 73 79 73 74 65 6d 2e 00 49 66 20 73 65 74 2c 20 74 68 | the.receiving.system..If.set,.th |
| f6260 | 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 65 6e 64 20 70 65 72 | e.router.will.no.longer.send.per |
| f6280 | 69 6f 64 69 63 20 72 6f 75 74 65 72 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 61 6e 64 20 | iodic.router.advertisements.and. |
| f62a0 | 77 69 6c 6c 20 6e 6f 74 20 72 65 73 70 6f 6e 64 20 74 6f 20 72 6f 75 74 65 72 20 73 6f 6c 69 63 | will.not.respond.to.router.solic |
| f62c0 | 69 74 61 74 69 6f 6e 73 2e 00 49 66 20 73 75 66 66 69 78 20 69 73 20 6f 6d 69 74 74 65 64 2c 20 | itations..If.suffix.is.omitted,. |
| f62e0 | 6d 69 6e 75 74 65 73 20 61 72 65 20 69 6d 70 6c 69 65 64 2e 00 49 66 20 74 68 65 20 3a 63 66 67 | minutes.are.implied..If.the.:cfg |
| f6300 | 63 6d 64 3a 60 6e 6f 2d 70 72 65 70 65 6e 64 60 20 61 74 74 72 69 62 75 74 65 20 69 73 20 73 70 | cmd:`no-prepend`.attribute.is.sp |
| f6320 | 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 74 68 65 20 73 75 70 70 6c 69 65 64 20 6c 6f 63 61 6c | ecified,.then.the.supplied.local |
| f6340 | 2d 61 73 20 69 73 20 6e 6f 74 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 72 65 63 65 | -as.is.not.prepended.to.the.rece |
| f6360 | 69 76 65 64 20 41 53 5f 50 41 54 48 2e 00 49 66 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 | ived.AS_PATH..If.the.:cfgcmd:`re |
| f6380 | 70 6c 61 63 65 2d 61 73 60 20 61 74 74 72 69 62 75 74 65 20 69 73 20 73 70 65 63 69 66 69 65 64 | place-as`.attribute.is.specified |
| f63a0 | 2c 20 74 68 65 6e 20 6f 6e 6c 79 20 74 68 65 20 73 75 70 70 6c 69 65 64 20 6c 6f 63 61 6c 2d 61 | ,.then.only.the.supplied.local-a |
| f63c0 | 73 20 69 73 20 70 72 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 41 53 5f 50 41 54 48 20 77 68 | s.is.prepended.to.the.AS_PATH.wh |
| f63e0 | 65 6e 20 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 6c 6f 63 61 6c 2d 72 6f 75 74 65 20 75 70 64 61 | en.transmitting.local-route.upda |
| f6400 | 74 65 73 20 74 6f 20 74 68 69 73 20 70 65 65 72 2e 00 49 66 20 74 68 65 20 41 52 50 20 74 61 62 | tes.to.this.peer..If.the.ARP.tab |
| f6420 | 6c 65 20 61 6c 72 65 61 64 79 20 63 6f 6e 74 61 69 6e 73 20 74 68 65 20 49 50 20 61 64 64 72 65 | le.already.contains.the.IP.addre |
| f6440 | 73 73 20 6f 66 20 74 68 65 20 67 72 61 74 75 69 74 6f 75 73 20 61 72 70 20 66 72 61 6d 65 2c 20 | ss.of.the.gratuitous.arp.frame,. |
| f6460 | 74 68 65 20 61 72 70 20 74 61 62 6c 65 20 77 69 6c 6c 20 62 65 20 75 70 64 61 74 65 64 20 72 65 | the.arp.table.will.be.updated.re |
| f6480 | 67 61 72 64 6c 65 73 73 20 69 66 20 74 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 20 6f 6e 20 6f | gardless.if.this.setting.is.on.o |
| f64a0 | 72 20 6f 66 66 2e 00 49 66 20 74 68 65 20 41 53 2d 50 61 74 68 20 66 6f 72 20 74 68 65 20 72 6f | r.off..If.the.AS-Path.for.the.ro |
| f64c0 | 75 74 65 20 68 61 73 20 61 20 70 72 69 76 61 74 65 20 41 53 4e 20 62 65 74 77 65 65 6e 20 70 75 | ute.has.a.private.ASN.between.pu |
| f64e0 | 62 6c 69 63 20 41 53 4e 73 2c 20 69 74 20 69 73 20 61 73 73 75 6d 65 64 20 74 68 61 74 20 74 68 | blic.ASNs,.it.is.assumed.that.th |
| f6500 | 69 73 20 69 73 20 61 20 64 65 73 69 67 6e 20 63 68 6f 69 63 65 2c 20 61 6e 64 20 74 68 65 20 70 | is.is.a.design.choice,.and.the.p |
| f6520 | 72 69 76 61 74 65 20 41 53 4e 20 69 73 20 6e 6f 74 20 72 65 6d 6f 76 65 64 2e 00 49 66 20 74 68 | rivate.ASN.is.not.removed..If.th |
| f6540 | 65 20 41 53 2d 50 61 74 68 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 6f 6e 6c 79 | e.AS-Path.for.the.route.has.only |
| f6560 | 20 70 72 69 76 61 74 65 20 41 53 4e 73 2c 20 74 68 65 20 70 72 69 76 61 74 65 20 41 53 4e 73 20 | .private.ASNs,.the.private.ASNs. |
| f6580 | 61 72 65 20 72 65 6d 6f 76 65 64 2e 00 49 66 20 74 68 65 20 49 50 20 70 72 65 66 69 78 20 6d 61 | are.removed..If.the.IP.prefix.ma |
| f65a0 | 73 6b 20 69 73 20 70 72 65 73 65 6e 74 2c 20 69 74 20 64 69 72 65 63 74 73 20 6f 70 65 6e 6e 68 | sk.is.present,.it.directs.opennh |
| f65c0 | 72 70 20 74 6f 20 75 73 65 20 74 68 69 73 20 70 65 65 72 20 61 73 20 61 20 6e 65 78 74 20 68 6f | rp.to.use.this.peer.as.a.next.ho |
| f65e0 | 70 20 73 65 72 76 65 72 20 77 68 65 6e 20 73 65 6e 64 69 6e 67 20 52 65 73 6f 6c 75 74 69 6f 6e | p.server.when.sending.Resolution |
| f6600 | 20 52 65 71 75 65 73 74 73 20 6d 61 74 63 68 69 6e 67 20 74 68 69 73 20 73 75 62 6e 65 74 2e 00 | .Requests.matching.this.subnet.. |
| f6620 | 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 | If.the.RADIUS.server.sends.the.a |
| f6640 | 74 74 72 69 62 75 74 65 20 60 60 44 65 6c 65 67 61 74 65 64 2d 49 50 76 36 2d 50 72 65 66 69 78 | ttribute.``Delegated-IPv6-Prefix |
| f6660 | 2d 50 6f 6f 6c 60 60 2c 20 49 50 76 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 65 66 69 78 20 77 | -Pool``,.IPv6.delegation.pefix.w |
| f6680 | 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e | ill.be.allocated.from.a.predefin |
| f66a0 | 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 64 65 6c 65 67 61 74 65 60 60 20 77 68 6f 73 65 20 | ed.IPv6.pool.``delegate``.whose. |
| f66c0 | 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e | name.equals.the.attribute.value. |
| f66e0 | 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 | .If.the.RADIUS.server.sends.the. |
| f6700 | 61 74 74 72 69 62 75 74 65 20 60 60 44 65 6c 65 67 61 74 65 64 2d 49 50 76 36 2d 50 72 65 66 69 | attribute.``Delegated-IPv6-Prefi |
| f6720 | 78 2d 50 6f 6f 6c 60 60 2c 20 61 6e 20 49 50 76 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 | x-Pool``,.an.IPv6.delegation.pre |
| f6740 | 66 69 78 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 | fix.will.be.allocated.from.a.pre |
| f6760 | 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 64 65 6c 65 67 61 74 65 60 60 20 77 | defined.IPv6.pool.``delegate``.w |
| f6780 | 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 | hose.name.equals.the.attribute.v |
| f67a0 | 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 | alue..If.the.RADIUS.server.sends |
| f67c0 | 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 | .the.attribute.``Framed-IP-Addre |
| f67e0 | 73 73 60 60 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 | ss``.then.this.IP.address.will.b |
| f6800 | 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 | e.allocated.to.the.client.and.th |
| f6820 | 65 20 6f 70 74 69 6f 6e 20 60 60 64 65 66 61 75 6c 74 2d 70 6f 6f 6c 60 60 20 77 69 74 68 69 6e | e.option.``default-pool``.within |
| f6840 | 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 69 73 20 62 65 69 6e 67 20 69 67 6e 6f 72 65 64 | .the.CLI.config.is.being.ignored |
| f6860 | 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 | ..If.the.RADIUS.server.sends.the |
| f6880 | 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 | .attribute.``Framed-IP-Address`` |
| f68a0 | 20 74 68 65 6e 20 74 68 69 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c | .then.this.IP.address.will.be.al |
| f68c0 | 6c 6f 63 61 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 | located.to.the.client.and.the.op |
| f68e0 | 74 69 6f 6e 20 60 60 64 65 66 61 75 6c 74 2d 70 6f 6f 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 | tion.``default-pool``.within.the |
| f6900 | 20 43 4c 49 20 63 6f 6e 66 69 67 20 77 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 | .CLI.config.will.be.ignored..If. |
| f6920 | 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 | the.RADIUS.server.sends.the.attr |
| f6940 | 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e | ibute.``Framed-IP-Address``.then |
| f6960 | 20 74 68 69 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 | .this.IP.address.will.be.allocat |
| f6980 | 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 | ed.to.the.client.and.the.option. |
| f69a0 | 60 60 64 65 66 61 75 6c 74 2d 70 6f 6f 6c 60 60 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 | ``default-pool``.within.the.CLI. |
| f69c0 | 63 6f 6e 66 69 67 20 77 69 6c 6c 20 62 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 | config.will.being.ignored..If.th |
| f69e0 | 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 | e.RADIUS.server.sends.the.attrib |
| f6a00 | 75 74 65 20 60 60 46 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 60 60 20 74 68 65 6e 20 74 | ute.``Framed-IP-Address``.then.t |
| f6a20 | 68 69 73 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 | his.IP.address.will.be.allocated |
| f6a40 | 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 70 | .to.the.client.and.the.option.ip |
| f6a60 | 2d 70 6f 6f 6c 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 20 69 73 20 62 | -pool.within.the.CLI.config.is.b |
| f6a80 | 65 69 6e 67 20 69 67 6e 6f 72 65 64 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 | eing.ignored..If.the.RADIUS.serv |
| f6aa0 | 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d | er.sends.the.attribute.``Framed- |
| f6ac0 | 50 6f 6f 6c 60 60 2c 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 | Pool``,.IP.address.will.be.alloc |
| f6ae0 | 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 20 70 6f 6f 6c 20 77 | ated.from.a.predefined.IP.pool.w |
| f6b00 | 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 | hose.name.equals.the.attribute.v |
| f6b20 | 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 | alue..If.the.RADIUS.server.sends |
| f6b40 | 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 46 72 61 6d 65 64 2d 50 6f 6f 6c 60 60 2c 20 | .the.attribute.``Framed-Pool``,. |
| f6b60 | 74 68 65 6e 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f | then.the.IP.address.will.be.allo |
| f6b80 | 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 20 70 6f 6f 6c 20 | cated.from.a.predefined.IP.pool. |
| f6ba0 | 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 | whose.name.equals.the.attribute. |
| f6bc0 | 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 | value..If.the.RADIUS.server.send |
| f6be0 | 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 53 74 61 74 65 66 75 6c 2d 49 50 76 36 2d | s.the.attribute.``Stateful-IPv6- |
| f6c00 | 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 60 2c 20 49 50 76 36 20 61 64 64 72 65 73 73 20 77 69 6c | Address-Pool``,.IPv6.address.wil |
| f6c20 | 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 | l.be.allocated.from.a.predefined |
| f6c40 | 20 49 50 76 36 20 70 6f 6f 6c 20 60 60 70 72 65 66 69 78 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 | .IPv6.pool.``prefix``.whose.name |
| f6c60 | 20 65 71 75 61 6c 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 | .equals.the.attribute.value..If. |
| f6c80 | 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 73 65 6e 64 73 20 74 68 65 20 61 74 74 72 | the.RADIUS.server.sends.the.attr |
| f6ca0 | 69 62 75 74 65 20 60 60 53 74 61 74 65 66 75 6c 2d 49 50 76 36 2d 41 64 64 72 65 73 73 2d 50 6f | ibute.``Stateful-IPv6-Address-Po |
| f6cc0 | 6f 6c 60 60 2c 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 20 61 | ol``,.the.IPv6.address.will.be.a |
| f6ce0 | 6c 6c 6f 63 61 74 65 64 20 66 72 6f 6d 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 49 50 76 36 20 | llocated.from.a.predefined.IPv6. |
| f6d00 | 70 6f 6f 6c 20 60 60 70 72 65 66 69 78 60 60 20 77 68 6f 73 65 20 6e 61 6d 65 20 65 71 75 61 6c | pool.``prefix``.whose.name.equal |
| f6d20 | 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 76 61 6c 75 65 2e 00 49 66 20 74 68 65 20 52 41 | s.the.attribute.value..If.the.RA |
| f6d40 | 44 49 55 53 20 73 65 72 76 65 72 20 75 73 65 73 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 | DIUS.server.uses.the.attribute.` |
| f6d60 | 60 4e 41 53 2d 50 6f 72 74 2d 49 64 60 60 2c 20 70 70 70 20 74 75 6e 6e 65 6c 73 20 77 69 6c 6c | `NAS-Port-Id``,.ppp.tunnels.will |
| f6d80 | 20 62 65 20 72 65 6e 61 6d 65 64 2e 00 49 66 20 74 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 | .be.renamed..If.the.average.queu |
| f6da0 | 65 20 73 69 7a 65 20 69 73 20 6c 6f 77 65 72 20 74 68 61 6e 20 74 68 65 20 2a 2a 6d 69 6e 2d 74 | e.size.is.lower.than.the.**min-t |
| f6dc0 | 68 72 65 73 68 6f 6c 64 2a 2a 2c 20 61 6e 20 61 72 72 69 76 69 6e 67 20 70 61 63 6b 65 74 20 77 | hreshold**,.an.arriving.packet.w |
| f6de0 | 69 6c 6c 20 62 65 20 70 6c 61 63 65 64 20 69 6e 20 74 68 65 20 71 75 65 75 65 2e 00 49 66 20 74 | ill.be.placed.in.the.queue..If.t |
| f6e00 | 68 65 20 63 75 72 72 65 6e 74 20 71 75 65 75 65 20 73 69 7a 65 20 69 73 20 6c 61 72 67 65 72 20 | he.current.queue.size.is.larger. |
| f6e20 | 74 68 61 6e 20 2a 2a 71 75 65 75 65 2d 6c 69 6d 69 74 2a 2a 2c 20 74 68 65 6e 20 70 61 63 6b 65 | than.**queue-limit**,.then.packe |
| f6e40 | 74 73 20 77 69 6c 6c 20 62 65 20 64 72 6f 70 70 65 64 2e 20 54 68 65 20 61 76 65 72 61 67 65 20 | ts.will.be.dropped..The.average. |
| f6e60 | 71 75 65 75 65 20 73 69 7a 65 20 64 65 70 65 6e 64 73 20 6f 6e 20 69 74 73 20 66 6f 72 6d 65 72 | queue.size.depends.on.its.former |
| f6e80 | 20 61 76 65 72 61 67 65 20 73 69 7a 65 20 61 6e 64 20 69 74 73 20 63 75 72 72 65 6e 74 20 6f 6e | .average.size.and.its.current.on |
| f6ea0 | 65 2e 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 | e..If.the.interface.where.the.pa |
| f6ec0 | 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 | cket.was.received.is.part.of.a.b |
| f6ee0 | 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 | ridge,.then.packetis.processed.a |
| f6f00 | 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f | t.the.**Bridge.Layer**,.which.co |
| f6f20 | 6e 74 61 69 6e 73 20 61 20 62 61 73 69 63 20 73 65 74 75 70 20 66 6f 72 20 62 72 69 64 67 65 20 | ntains.a.basic.setup.for.bridge. |
| f6f40 | 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 | filtering:.If.the.interface.wher |
| f6f60 | 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 20 70 61 72 | e.the.packet.was.received.is.par |
| f6f80 | 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 | t.of.a.bridge,.then.the.packet.i |
| f6fa0 | 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 | s.processed.at.the.**Bridge.Laye |
| f6fc0 | 72 2a 2a 2c 20 77 68 69 63 68 20 63 6f 6e 74 61 69 6e 73 20 61 20 62 61 73 69 63 20 73 65 74 75 | r**,.which.contains.a.basic.setu |
| f6fe0 | 70 20 66 6f 72 20 62 72 69 64 67 65 20 66 69 6c 74 65 72 69 6e 67 3a 00 49 66 20 74 68 65 20 69 | p.for.bridge.filtering:.If.the.i |
| f7000 | 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 | nterface.where.the.packet.was.re |
| f7020 | 63 65 69 76 65 64 20 69 73 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e | ceived.is.part.of.a.bridge,.then |
| f7040 | 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 | .the.packet.is.processed.at.the. |
| f7060 | 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 | **Bridge.Layer**:.If.the.interfa |
| f7080 | 63 65 20 77 68 65 72 65 20 74 68 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 | ce.where.the.packet.was.received |
| f70a0 | 20 69 73 6e 27 74 20 70 61 72 74 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 | .isn't.part.of.a.bridge,.then.pa |
| f70c0 | 63 6b 65 74 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 50 20 4c 61 | cket.is.processed.at.the.**IP.La |
| f70e0 | 79 65 72 2a 2a 3a 00 49 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 | yer**:.If.the.interface.where.th |
| f7100 | 65 20 70 61 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 20 69 73 6e 27 74 20 70 61 72 74 | e.packet.was.received.isn't.part |
| f7120 | 20 6f 66 20 61 20 62 72 69 64 67 65 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 69 73 20 70 72 6f 63 | .of.a.bridge,.then.packetis.proc |
| f7140 | 65 73 73 65 64 20 61 74 20 74 68 65 20 2a 2a 49 50 20 4c 61 79 65 72 2a 2a 3a 00 49 66 20 74 68 | essed.at.the.**IP.Layer**:.If.th |
| f7160 | 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 49 50 76 36 20 74 68 65 6e 20 74 68 65 20 73 6f 75 72 | e.protocol.is.IPv6.then.the.sour |
| f7180 | 63 65 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 20 61 72 65 | ce.and.destination.addresses.are |
| f71a0 | 20 66 69 72 73 74 20 68 61 73 68 65 64 20 75 73 69 6e 67 20 69 70 76 36 5f 61 64 64 72 5f 68 61 | .first.hashed.using.ipv6_addr_ha |
| f71c0 | 73 68 2e 00 49 66 20 74 68 65 20 73 74 61 74 69 63 61 6c 6c 79 20 6d 61 70 70 65 64 20 70 65 65 | sh..If.the.statically.mapped.pee |
| f71e0 | 72 20 69 73 20 72 75 6e 6e 69 6e 67 20 43 69 73 63 6f 20 49 4f 53 2c 20 73 70 65 63 69 66 79 20 | r.is.running.Cisco.IOS,.specify. |
| f7200 | 74 68 65 20 63 69 73 63 6f 20 6b 65 79 77 6f 72 64 2e 20 49 74 20 69 73 20 75 73 65 64 20 74 6f | the.cisco.keyword..It.is.used.to |
| f7220 | 20 66 69 78 20 73 74 61 74 69 63 61 6c 6c 79 20 74 68 65 20 52 65 67 69 73 74 72 61 74 69 6f 6e | .fix.statically.the.Registration |
| f7240 | 20 52 65 71 75 65 73 74 20 49 44 20 73 6f 20 74 68 61 74 20 61 20 6d 61 74 63 68 69 6e 67 20 50 | .Request.ID.so.that.a.matching.P |
| f7260 | 75 72 67 65 20 52 65 71 75 65 73 74 20 63 61 6e 20 62 65 20 73 65 6e 74 20 69 66 20 4e 42 4d 41 | urge.Request.can.be.sent.if.NBMA |
| f7280 | 20 61 64 64 72 65 73 73 20 68 61 73 20 63 68 61 6e 67 65 64 2e 20 54 68 69 73 20 69 73 20 74 6f | .address.has.changed..This.is.to |
| f72a0 | 20 77 6f 72 6b 20 61 72 6f 75 6e 64 20 62 72 6f 6b 65 6e 20 49 4f 53 20 77 68 69 63 68 20 72 65 | .work.around.broken.IOS.which.re |
| f72c0 | 71 75 69 72 65 73 20 50 75 72 67 65 20 52 65 71 75 65 73 74 20 49 44 20 74 6f 20 6d 61 74 63 68 | quires.Purge.Request.ID.to.match |
| f72e0 | 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 75 65 | .the.original.Registration.Reque |
| f7300 | 73 74 20 49 44 2e 00 49 66 20 74 68 65 20 73 79 73 74 65 6d 20 64 65 74 65 63 74 73 20 61 6e 20 | st.ID..If.the.system.detects.an. |
| f7320 | 75 6e 63 6f 6e 66 69 67 75 72 65 64 20 77 69 72 65 6c 65 73 73 20 64 65 76 69 63 65 2c 20 69 74 | unconfigured.wireless.device,.it |
| f7340 | 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 64 64 65 64 20 74 68 65 | .will.be.automatically.added.the |
| f7360 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 72 65 65 2c 20 73 70 65 63 69 66 79 69 6e 67 20 | .configuration.tree,.specifying. |
| f7380 | 61 6e 79 20 64 65 74 65 63 74 65 64 20 73 65 74 74 69 6e 67 73 20 28 66 6f 72 20 65 78 61 6d 70 | any.detected.settings.(for.examp |
| f73a0 | 6c 65 2c 20 69 74 73 20 4d 41 43 20 61 64 64 72 65 73 73 29 20 61 6e 64 20 63 6f 6e 66 69 67 75 | le,.its.MAC.address).and.configu |
| f73c0 | 72 65 64 20 74 6f 20 72 75 6e 20 69 6e 20 6d 6f 6e 69 74 6f 72 20 6d 6f 64 65 2e 00 49 66 20 74 | red.to.run.in.monitor.mode..If.t |
| f73e0 | 68 65 20 74 61 62 6c 65 20 69 73 20 65 6d 70 74 79 20 61 6e 64 20 79 6f 75 20 68 61 76 65 20 61 | he.table.is.empty.and.you.have.a |
| f7400 | 20 77 61 72 6e 69 6e 67 20 6d 65 73 73 61 67 65 2c 20 69 74 20 6d 65 61 6e 73 20 63 6f 6e 6e 74 | .warning.message,.it.means.connt |
| f7420 | 72 61 63 6b 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 2e 20 54 6f 20 65 6e 61 62 6c 65 20 63 | rack.is.not.enabled..To.enable.c |
| f7440 | 6f 6e 6e 74 72 61 63 6b 2c 20 6a 75 73 74 20 63 72 65 61 74 65 20 61 20 4e 41 54 20 6f 72 20 61 | onntrack,.just.create.a.NAT.or.a |
| f7460 | 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 2e 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 66 69 72 | .firewall.rule..:cfgcmd:`set.fir |
| f7480 | 65 77 61 6c 6c 20 73 74 61 74 65 2d 70 6f 6c 69 63 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 61 | ewall.state-policy.established.a |
| f74a0 | 63 74 69 6f 6e 20 61 63 63 65 70 74 60 00 49 66 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 66 72 | ction.accept`.If.there.are.no.fr |
| f74c0 | 65 65 20 61 64 64 72 65 73 73 65 73 20 62 75 74 20 74 68 65 72 65 20 61 72 65 20 61 62 61 6e 64 | ee.addresses.but.there.are.aband |
| f74e0 | 6f 6e 65 64 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 74 68 65 20 44 48 43 50 20 73 65 72 76 | oned.IP.addresses,.the.DHCP.serv |
| f7500 | 65 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 63 6c 61 69 6d 20 61 6e 20 61 62 | er.will.attempt.to.reclaim.an.ab |
| f7520 | 61 6e 64 6f 6e 65 64 20 49 50 20 61 64 64 72 65 73 73 20 72 65 67 61 72 64 6c 65 73 73 20 6f 66 | andoned.IP.address.regardless.of |
| f7540 | 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 61 62 61 6e 64 6f 6e 2d 6c 65 61 73 65 2d 74 69 6d 65 | .the.value.of.abandon-lease-time |
| f7560 | 2e 00 49 66 20 74 68 65 72 65 20 69 73 20 53 4e 41 54 20 72 75 6c 65 73 20 6f 6e 20 65 74 68 31 | ..If.there.is.SNAT.rules.on.eth1 |
| f7580 | 2c 20 6e 65 65 64 20 74 6f 20 61 64 64 20 65 78 63 6c 75 64 65 20 72 75 6c 65 00 49 66 20 74 68 | ,.need.to.add.exclude.rule.If.th |
| f75a0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 69 6e 76 6f 6b 65 64 20 66 72 6f 6d 20 63 6f 6e 66 69 | is.command.is.invoked.from.confi |
| f75c0 | 67 75 72 65 20 6d 6f 64 65 20 77 69 74 68 20 74 68 65 20 60 60 72 75 6e 60 60 20 70 72 65 66 69 | gure.mode.with.the.``run``.prefi |
| f75e0 | 78 20 74 68 65 20 6b 65 79 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 | x.the.key.is.automatically.insta |
| f7600 | 6c 6c 65 64 20 74 6f 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 69 6e 74 65 72 66 61 63 | lled.to.the.appropriate.interfac |
| f7620 | 65 3a 00 49 66 20 74 68 69 73 20 69 73 20 73 65 74 20 74 68 65 20 72 65 6c 61 79 20 61 67 65 6e | e:.If.this.is.set.the.relay.agen |
| f7640 | 74 20 77 69 6c 6c 20 69 6e 73 65 72 74 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 49 44 2e 20 | t.will.insert.the.interface.ID.. |
| f7660 | 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 | This.option.is.set.automatically |
| f7680 | 20 69 66 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 6c 69 73 74 65 6e 69 6e 67 20 69 6e 74 65 | .if.more.than.one.listening.inte |
| f76a0 | 72 66 61 63 65 73 20 61 72 65 20 69 6e 20 75 73 65 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f | rfaces.are.in.use..If.this.optio |
| f76c0 | 6e 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 74 68 65 20 61 6c 72 65 61 64 79 2d 73 | n.is.enabled,.then.the.already-s |
| f76e0 | 65 6c 65 63 74 65 64 20 63 68 65 63 6b 2c 20 77 68 65 72 65 20 61 6c 72 65 61 64 79 20 73 65 6c | elected.check,.where.already.sel |
| f7700 | 65 63 74 65 64 20 65 42 47 50 20 72 6f 75 74 65 73 20 61 72 65 20 70 72 65 66 65 72 72 65 64 2c | ected.eBGP.routes.are.preferred, |
| f7720 | 20 69 73 20 73 6b 69 70 70 65 64 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 67 | .is.skipped..If.this.option.is.g |
| f7740 | 69 76 65 6e 2c 20 6f 6e 6c 79 20 53 53 54 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 | iven,.only.SSTP.connections.to.t |
| f7760 | 68 65 20 73 70 65 63 69 66 69 65 64 20 68 6f 73 74 20 61 6e 64 20 77 69 74 68 20 74 68 65 20 73 | he.specified.host.and.with.the.s |
| f7780 | 61 6d 65 20 54 4c 53 20 53 4e 49 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 77 65 64 2e 00 49 66 20 | ame.TLS.SNI.will.be.allowed..If. |
| f77a0 | 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 | this.option.is.specified.and.is. |
| f77c0 | 67 72 65 61 74 65 72 20 74 68 61 6e 20 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 20 6d 6f 64 | greater.than.0,.then.the.PPP.mod |
| f77e0 | 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 20 4c 43 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 20 | ule.will.send.LCP.echo.requests. |
| f7800 | 65 76 65 72 79 20 60 3c 69 6e 74 65 72 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 | every.`<interval>`.seconds..Defa |
| f7820 | 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 33 30 2a 2a 2e 00 49 66 20 74 68 69 73 20 6f 70 74 | ult.value.is.**30**..If.this.opt |
| f7840 | 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 69 73 20 67 72 65 61 74 65 72 20 | ion.is.specified.and.is.greater. |
| f7860 | 74 68 61 6e 20 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 20 6d 6f 64 75 6c 65 20 77 69 6c 6c | than.0,.then.the.PPP.module.will |
| f7880 | 20 73 65 6e 64 20 4c 43 50 20 70 69 6e 67 73 20 6f 66 20 74 68 65 20 65 63 68 6f 20 72 65 71 75 | .send.LCP.pings.of.the.echo.requ |
| f78a0 | 65 73 74 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 76 61 6c 3e 60 20 73 65 63 6f 6e 64 73 2e 00 | est.every.`<interval>`.seconds.. |
| f78c0 | 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 6e 64 20 | If.this.option.is.specified.and. |
| f78e0 | 69 73 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 30 2c 20 74 68 65 6e 20 74 68 65 20 50 50 50 20 | is.greater.than.0,.then.the.PPP. |
| f7900 | 6d 6f 64 75 6c 65 20 77 69 6c 6c 20 73 65 6e 64 20 4c 43 50 20 70 69 6e 67 73 20 6f 66 20 74 68 | module.will.send.LCP.pings.of.th |
| f7920 | 65 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 65 76 65 72 79 20 60 3c 69 6e 74 65 72 76 61 6c 3e | e.echo.request.every.`<interval> |
| f7940 | 60 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 33 30 | `.seconds..Default.value.is.**30 |
| f7960 | 2a 2a 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 6e 73 65 74 20 28 64 65 66 | **..If.this.option.is.unset.(def |
| f7980 | 61 75 6c 74 29 2c 20 69 6e 63 6f 6d 69 6e 67 20 49 50 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 | ault),.incoming.IP.directed.broa |
| f79a0 | 64 63 61 73 74 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 66 6f 72 77 61 72 | dcast.packets.will.not.be.forwar |
| f79c0 | 64 65 64 2e 00 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 6e 73 65 74 20 28 64 65 | ded..If.this.option.is.unset.(de |
| f79e0 | 66 61 75 6c 74 29 2c 20 72 65 70 6c 79 20 66 6f 72 20 61 6e 79 20 6c 6f 63 61 6c 20 74 61 72 67 | fault),.reply.for.any.local.targ |
| f7a00 | 65 74 20 49 50 20 61 64 64 72 65 73 73 2c 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 79 | et.IP.address,.configured.on.any |
| f7a20 | 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 74 68 69 73 20 70 61 72 61 6d 65 74 65 72 20 69 73 | .interface..If.this.parameter.is |
| f7a40 | 20 6e 6f 74 20 73 65 74 20 6f 72 20 30 2c 20 61 6e 20 6f 6e 2d 64 65 6d 61 6e 64 20 6c 69 6e 6b | .not.set.or.0,.an.on-demand.link |
| f7a60 | 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 74 61 6b 65 6e 20 64 6f 77 6e 20 77 68 65 6e 20 69 74 20 | .will.not.be.taken.down.when.it. |
| f7a80 | 69 73 20 69 64 6c 65 20 61 6e 64 20 61 66 74 65 72 20 74 68 65 20 69 6e 69 74 69 61 6c 20 65 73 | is.idle.and.after.the.initial.es |
| f7aa0 | 74 61 62 6c 69 73 68 6d 65 6e 74 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 49 | tablishment.of.the.connection..I |
| f7ac0 | 74 20 77 69 6c 6c 20 73 74 61 79 20 75 70 20 66 6f 72 65 76 65 72 2e 00 49 66 20 74 68 69 73 20 | t.will.stay.up.forever..If.this. |
| f7ae0 | 70 61 72 61 6d 65 74 65 72 20 69 73 20 6e 6f 74 20 73 65 74 2c 20 74 68 65 20 64 65 66 61 75 6c | parameter.is.not.set,.the.defaul |
| f7b00 | 74 20 68 6f 6c 64 6f 66 66 20 74 69 6d 65 20 69 73 20 33 30 20 73 65 63 6f 6e 64 73 2e 00 49 66 | t.holdoff.time.is.30.seconds..If |
| f7b20 | 20 75 6e 73 65 74 2c 20 69 6e 63 6f 6d 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 | .unset,.incoming.connections.to. |
| f7b40 | 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6e | the.RADIUS.server.will.use.the.n |
| f7b60 | 65 61 72 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 70 6f 69 6e 74 69 6e | earest.interface.address.pointin |
| f7b80 | 67 20 74 6f 77 61 72 64 73 20 74 68 65 20 73 65 72 76 65 72 20 2d 20 6d 61 6b 69 6e 67 20 69 74 | g.towards.the.server.-.making.it |
| f7ba0 | 20 65 72 72 6f 72 20 70 72 6f 6e 65 20 6f 6e 20 65 2e 67 2e 20 4f 53 50 46 20 6e 65 74 77 6f 72 | .error.prone.on.e.g..OSPF.networ |
| f7bc0 | 6b 73 20 77 68 65 6e 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 20 61 6e 64 20 61 20 62 61 63 6b 75 | ks.when.a.link.fails.and.a.backu |
| f7be0 | 70 20 72 6f 75 74 65 20 69 73 20 74 61 6b 65 6e 2e 00 49 66 20 75 6e 73 65 74 2c 20 69 6e 63 6f | p.route.is.taken..If.unset,.inco |
| f7c00 | 6d 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 54 41 43 41 43 53 20 73 | ming.connections.to.the.TACACS.s |
| f7c20 | 65 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6e 65 61 72 65 73 74 20 69 6e 74 65 72 | erver.will.use.the.nearest.inter |
| f7c40 | 66 61 63 65 20 61 64 64 72 65 73 73 20 70 6f 69 6e 74 69 6e 67 20 74 6f 77 61 72 64 73 20 74 68 | face.address.pointing.towards.th |
| f7c60 | 65 20 73 65 72 76 65 72 20 2d 20 6d 61 6b 69 6e 67 20 69 74 20 65 72 72 6f 72 20 70 72 6f 6e 65 | e.server.-.making.it.error.prone |
| f7c80 | 20 6f 6e 20 65 2e 67 2e 20 4f 53 50 46 20 6e 65 74 77 6f 72 6b 73 20 77 68 65 6e 20 61 20 6c 69 | .on.e.g..OSPF.networks.when.a.li |
| f7ca0 | 6e 6b 20 66 61 69 6c 73 20 61 6e 64 20 61 20 62 61 63 6b 75 70 20 72 6f 75 74 65 20 69 73 20 74 | nk.fails.and.a.backup.route.is.t |
| f7cc0 | 61 6b 65 6e 2e 00 49 66 20 79 6f 75 20 61 70 70 6c 79 20 61 20 70 61 72 61 6d 65 74 65 72 20 74 | aken..If.you.apply.a.parameter.t |
| f7ce0 | 6f 20 61 6e 20 69 6e 64 69 76 69 64 75 61 6c 20 6e 65 69 67 68 62 6f 72 20 49 50 20 61 64 64 72 | o.an.individual.neighbor.IP.addr |
| f7d00 | 65 73 73 2c 20 79 6f 75 20 6f 76 65 72 72 69 64 65 20 74 68 65 20 61 63 74 69 6f 6e 20 64 65 66 | ess,.you.override.the.action.def |
| f7d20 | 69 6e 65 64 20 66 6f 72 20 61 20 70 65 65 72 20 67 72 6f 75 70 20 74 68 61 74 20 69 6e 63 6c 75 | ined.for.a.peer.group.that.inclu |
| f7d40 | 64 65 73 20 74 68 61 74 20 49 50 20 61 64 64 72 65 73 73 2e 00 49 66 20 79 6f 75 20 61 72 65 20 | des.that.IP.address..If.you.are. |
| f7d60 | 61 20 68 61 63 6b 65 72 20 6f 72 20 77 61 6e 74 20 74 6f 20 74 72 79 20 6f 6e 20 79 6f 75 72 20 | a.hacker.or.want.to.try.on.your. |
| f7d80 | 6f 77 6e 20 77 65 20 73 75 70 70 6f 72 74 20 70 61 73 73 69 6e 67 20 72 61 77 20 4f 70 65 6e 56 | own.we.support.passing.raw.OpenV |
| f7da0 | 50 4e 20 6f 70 74 69 6f 6e 73 20 74 6f 20 4f 70 65 6e 56 50 4e 2e 00 49 66 20 79 6f 75 20 61 72 | PN.options.to.OpenVPN..If.you.ar |
| f7dc0 | 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 20 56 52 46 20 66 6f 72 20 6d 61 6e 61 67 65 6d 65 | e.configuring.a.VRF.for.manageme |
| f7de0 | 6e 74 20 70 75 72 70 6f 73 65 73 2c 20 74 68 65 72 65 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 | nt.purposes,.there.is.currently. |
| f7e00 | 6e 6f 20 77 61 79 20 74 6f 20 66 6f 72 63 65 20 73 79 73 74 65 6d 20 44 4e 53 20 74 72 61 66 66 | no.way.to.force.system.DNS.traff |
| f7e20 | 69 63 20 76 69 61 20 61 20 73 70 65 63 69 66 69 63 20 56 52 46 2e 00 49 66 20 79 6f 75 20 61 72 | ic.via.a.specific.VRF..If.you.ar |
| f7e40 | 65 20 6e 65 77 20 74 6f 20 74 68 65 73 65 20 72 6f 75 74 69 6e 67 20 73 65 63 75 72 69 74 79 20 | e.new.to.these.routing.security. |
| f7e60 | 74 65 63 68 6e 6f 6c 6f 67 69 65 73 20 74 68 65 6e 20 74 68 65 72 65 20 69 73 20 61 6e 20 60 65 | technologies.then.there.is.an.`e |
| f7e80 | 78 63 65 6c 6c 65 6e 74 20 67 75 69 64 65 20 74 6f 20 52 50 4b 49 60 5f 20 62 79 20 4e 4c 6e 65 | xcellent.guide.to.RPKI`_.by.NLne |
| f7ea0 | 74 20 4c 61 62 73 20 77 68 69 63 68 20 77 69 6c 6c 20 67 65 74 20 79 6f 75 20 75 70 20 74 6f 20 | t.Labs.which.will.get.you.up.to. |
| f7ec0 | 73 70 65 65 64 20 76 65 72 79 20 71 75 69 63 6b 6c 79 2e 20 54 68 65 69 72 20 64 6f 63 75 6d 65 | speed.very.quickly..Their.docume |
| f7ee0 | 6e 74 61 74 69 6f 6e 20 65 78 70 6c 61 69 6e 73 20 65 76 65 72 79 74 68 69 6e 67 20 66 72 6f 6d | ntation.explains.everything.from |
| f7f00 | 20 77 68 61 74 20 52 50 4b 49 20 69 73 20 74 6f 20 64 65 70 6c 6f 79 69 6e 67 20 69 74 20 69 6e | .what.RPKI.is.to.deploying.it.in |
| f7f20 | 20 70 72 6f 64 75 63 74 69 6f 6e 2e 20 49 74 20 61 6c 73 6f 20 68 61 73 20 73 6f 6d 65 20 60 68 | .production..It.also.has.some.`h |
| f7f40 | 65 6c 70 20 61 6e 64 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 67 75 69 64 61 6e 63 65 60 5f 20 69 | elp.and.operational.guidance`_.i |
| f7f60 | 6e 63 6c 75 64 69 6e 67 20 22 57 68 61 74 20 63 61 6e 20 49 20 64 6f 20 61 62 6f 75 74 20 6d 79 | ncluding."What.can.I.do.about.my |
| f7f80 | 20 72 6f 75 74 65 20 68 61 76 69 6e 67 20 61 6e 20 49 6e 76 61 6c 69 64 20 73 74 61 74 65 3f 22 | .route.having.an.Invalid.state?" |
| f7fa0 | 00 49 66 20 79 6f 75 20 61 72 65 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 74 68 65 20 | .If.you.are.responsible.for.the. |
| f7fc0 | 67 6c 6f 62 61 6c 20 61 64 64 72 65 73 73 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 79 6f 75 | global.addresses.assigned.to.you |
| f7fe0 | 72 20 6e 65 74 77 6f 72 6b 2c 20 70 6c 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 | r.network,.please.make.sure.that |
| f8000 | 20 79 6f 75 72 20 70 72 65 66 69 78 65 73 20 68 61 76 65 20 52 4f 41 73 20 61 73 73 6f 63 69 61 | .your.prefixes.have.ROAs.associa |
| f8020 | 74 65 64 20 77 69 74 68 20 74 68 65 6d 20 74 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 60 6e 6f | ted.with.them.to.avoid.being.`no |
| f8040 | 74 66 6f 75 6e 64 60 20 62 79 20 52 50 4b 49 2e 20 46 6f 72 20 6d 6f 73 74 20 41 53 4e 73 20 74 | tfound`.by.RPKI..For.most.ASNs.t |
| f8060 | 68 69 73 20 77 69 6c 6c 20 69 6e 76 6f 6c 76 65 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 | his.will.involve.publishing.ROAs |
| f8080 | 20 76 69 61 20 79 6f 75 72 20 3a 61 62 62 72 3a 60 52 49 52 20 28 52 65 67 69 6f 6e 61 6c 20 49 | .via.your.:abbr:`RIR.(Regional.I |
| f80a0 | 6e 74 65 72 6e 65 74 20 52 65 67 69 73 74 72 79 29 60 20 28 52 49 50 45 20 4e 43 43 2c 20 41 50 | nternet.Registry)`.(RIPE.NCC,.AP |
| f80c0 | 4e 49 43 2c 20 41 52 49 4e 2c 20 4c 41 43 4e 49 43 20 6f 72 20 41 46 52 49 4e 49 43 29 2c 20 61 | NIC,.ARIN,.LACNIC.or.AFRINIC),.a |
| f80e0 | 6e 64 20 69 73 20 73 6f 6d 65 74 68 69 6e 67 20 79 6f 75 20 61 72 65 20 65 6e 63 6f 75 72 61 67 | nd.is.something.you.are.encourag |
| f8100 | 65 64 20 74 6f 20 64 6f 20 77 68 65 6e 65 76 65 72 20 79 6f 75 20 70 6c 61 6e 20 74 6f 20 61 6e | ed.to.do.whenever.you.plan.to.an |
| f8120 | 6e 6f 75 6e 63 65 20 61 64 64 72 65 73 73 65 73 20 69 6e 74 6f 20 74 68 65 20 44 46 5a 2e 00 49 | nounce.addresses.into.the.DFZ..I |
| f8140 | 66 20 79 6f 75 20 61 72 65 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 74 68 65 20 67 6c | f.you.are.responsible.for.the.gl |
| f8160 | 6f 62 61 6c 20 61 64 64 72 65 73 73 65 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 79 6f 75 72 20 | obal.addresses.assigned.to.your. |
| f8180 | 6e 65 74 77 6f 72 6b 2c 20 70 6c 65 61 73 65 20 6d 61 6b 65 20 73 75 72 65 20 74 68 61 74 20 79 | network,.please.make.sure.that.y |
| f81a0 | 6f 75 72 20 70 72 65 66 69 78 65 73 20 68 61 76 65 20 52 4f 41 73 20 61 73 73 6f 63 69 61 74 65 | our.prefixes.have.ROAs.associate |
| f81c0 | 64 20 77 69 74 68 20 74 68 65 6d 20 74 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 60 6e 6f 74 66 | d.with.them.to.avoid.being.`notf |
| f81e0 | 6f 75 6e 64 60 20 62 79 20 52 50 4b 49 2e 20 46 6f 72 20 6d 6f 73 74 20 41 53 4e 73 20 74 68 69 | ound`.by.RPKI..For.most.ASNs.thi |
| f8200 | 73 20 77 69 6c 6c 20 69 6e 76 6f 6c 76 65 20 70 75 62 6c 69 73 68 69 6e 67 20 52 4f 41 73 20 76 | s.will.involve.publishing.ROAs.v |
| f8220 | 69 61 20 79 6f 75 72 20 3a 61 62 62 72 3a 60 52 49 52 20 28 52 65 67 69 6f 6e 61 6c 20 49 6e 74 | ia.your.:abbr:`RIR.(Regional.Int |
| f8240 | 65 72 6e 65 74 20 52 65 67 69 73 74 72 79 29 60 20 28 52 49 50 45 20 4e 43 43 2c 20 41 50 4e 49 | ernet.Registry)`.(RIPE.NCC,.APNI |
| f8260 | 43 2c 20 41 52 49 4e 2c 20 4c 41 43 4e 49 43 2c 20 6f 72 20 41 46 52 49 4e 49 43 29 2c 20 61 6e | C,.ARIN,.LACNIC,.or.AFRINIC),.an |
| f8280 | 64 20 69 73 20 73 6f 6d 65 74 68 69 6e 67 20 79 6f 75 20 61 72 65 20 65 6e 63 6f 75 72 61 67 65 | d.is.something.you.are.encourage |
| f82a0 | 64 20 74 6f 20 64 6f 20 77 68 65 6e 65 76 65 72 20 79 6f 75 20 70 6c 61 6e 20 74 6f 20 61 6e 6e | d.to.do.whenever.you.plan.to.ann |
| f82c0 | 6f 75 6e 63 65 20 61 64 64 72 65 73 73 65 73 20 69 6e 74 6f 20 74 68 65 20 44 46 5a 2e 00 49 66 | ounce.addresses.into.the.DFZ..If |
| f82e0 | 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 46 51 2d 43 6f 44 65 6c 20 65 6d 62 65 64 64 65 64 | .you.are.using.FQ-CoDel.embedded |
| f8300 | 20 69 6e 74 6f 20 53 68 61 70 65 72 5f 20 61 6e 64 20 79 6f 75 20 68 61 76 65 20 6c 61 72 67 65 | .into.Shaper_.and.you.have.large |
| f8320 | 20 72 61 74 65 73 20 28 31 30 30 4d 62 69 74 20 61 6e 64 20 61 62 6f 76 65 29 2c 20 79 6f 75 20 | .rates.(100Mbit.and.above),.you. |
| f8340 | 6d 61 79 20 63 6f 6e 73 69 64 65 72 20 69 6e 63 72 65 61 73 69 6e 67 20 60 71 75 61 6e 74 75 6d | may.consider.increasing.`quantum |
| f8360 | 60 20 74 6f 20 38 30 30 30 20 6f 72 20 68 69 67 68 65 72 20 73 6f 20 74 68 61 74 20 74 68 65 20 | `.to.8000.or.higher.so.that.the. |
| f8380 | 73 63 68 65 64 75 6c 65 72 20 73 61 76 65 73 20 43 50 55 2e 00 49 66 20 79 6f 75 20 61 72 65 20 | scheduler.saves.CPU..If.you.are. |
| f83a0 | 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 49 47 50 2c 20 61 6c 77 61 79 73 20 74 68 65 20 63 6c | using.OSPF.as.IGP,.always.the.cl |
| f83c0 | 6f 73 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 | osest.interface.connected.to.the |
| f83e0 | 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 75 73 65 64 2e 20 57 69 74 68 20 56 79 4f | .RADIUS.server.is.used..With.VyO |
| f8400 | 53 20 31 2e 32 20 79 6f 75 20 63 61 6e 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 | S.1.2.you.can.bind.all.outgoing. |
| f8420 | 52 41 44 49 55 53 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 | RADIUS.requests.to.a.single.sour |
| f8440 | 63 65 20 49 50 20 65 2e 67 2e 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 | ce.IP.e.g..the.loopback.interfac |
| f8460 | 65 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 49 47 50 2c | e..If.you.are.using.OSPF.as.IGP, |
| f8480 | 20 61 6c 77 61 79 73 20 74 68 65 20 63 6c 6f 73 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 63 6f | .always.the.closest.interface.co |
| f84a0 | 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 73 20 | nnected.to.the.RADIUS.server.is. |
| f84c0 | 75 73 65 64 2e 20 59 6f 75 20 63 61 6e 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 | used..You.can.bind.all.outgoing. |
| f84e0 | 52 41 44 49 55 53 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 | RADIUS.requests.to.a.single.sour |
| f8500 | 63 65 20 49 50 20 65 2e 67 2e 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 | ce.IP.e.g..the.loopback.interfac |
| f8520 | 65 2e 00 49 66 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 4f 53 50 46 20 61 73 20 79 6f 75 72 | e..If.you.are.using.OSPF.as.your |
| f8540 | 20 49 47 50 2c 20 75 73 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 6e 65 63 74 65 | .IGP,.use.the.interface.connecte |
| f8560 | 64 20 63 6c 6f 73 65 73 74 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 | d.closest.to.the.RADIUS.server.. |
| f8580 | 59 6f 75 20 63 61 6e 20 62 69 6e 64 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 52 41 44 49 55 53 | You.can.bind.all.outgoing.RADIUS |
| f85a0 | 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 20 73 69 6e 67 6c 65 20 73 6f 75 72 63 65 20 49 50 20 | .requests.to.a.single.source.IP. |
| f85c0 | 65 2e 67 2e 20 74 68 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 | e.g..the.loopback.interface..If. |
| f85e0 | 79 6f 75 20 63 68 61 6e 67 65 20 74 68 65 20 64 65 66 61 75 6c 74 20 65 6e 63 72 79 70 74 69 6f | you.change.the.default.encryptio |
| f8600 | 6e 20 61 6e 64 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 2c 20 62 65 20 73 75 72 | n.and.hashing.algorithms,.be.sur |
| f8620 | 65 20 74 68 61 74 20 74 68 65 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 65 6e 64 73 | e.that.the.local.and.remote.ends |
| f8640 | 20 68 61 76 65 20 6d 61 74 63 68 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2c 20 6f | .have.matching.configurations,.o |
| f8660 | 74 68 65 72 77 69 73 65 20 74 68 65 20 74 75 6e 6e 65 6c 20 77 69 6c 6c 20 6e 6f 74 20 63 6f 6d | therwise.the.tunnel.will.not.com |
| f8680 | 65 20 75 70 2e 00 49 66 20 79 6f 75 20 63 68 6f 6f 73 65 20 61 6e 79 20 61 73 20 74 68 65 20 6f | e.up..If.you.choose.any.as.the.o |
| f86a0 | 70 74 69 6f 6e 20 74 68 61 74 20 77 69 6c 6c 20 63 61 75 73 65 20 61 6c 6c 20 70 72 6f 74 6f 63 | ption.that.will.cause.all.protoc |
| f86c0 | 6f 6c 73 20 74 68 61 74 20 61 72 65 20 73 65 6e 64 69 6e 67 20 72 6f 75 74 65 73 20 74 6f 20 7a | ols.that.are.sending.routes.to.z |
| f86e0 | 65 62 72 61 2e 00 49 66 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 61 20 63 6c 61 73 73 20 66 | ebra..If.you.configure.a.class.f |
| f8700 | 6f 72 20 2a 2a 56 6f 49 50 20 74 72 61 66 66 69 63 2a 2a 2c 20 64 6f 6e 27 74 20 67 69 76 65 20 | or.**VoIP.traffic**,.don't.give. |
| f8720 | 69 74 20 61 6e 79 20 2a 63 65 69 6c 69 6e 67 2a 2c 20 6f 74 68 65 72 77 69 73 65 20 6e 65 77 20 | it.any.*ceiling*,.otherwise.new. |
| f8740 | 56 6f 49 50 20 63 61 6c 6c 73 20 63 6f 75 6c 64 20 73 74 61 72 74 20 77 68 65 6e 20 74 68 65 20 | VoIP.calls.could.start.when.the. |
| f8760 | 6c 69 6e 6b 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 61 6e 64 20 67 65 74 20 73 75 64 64 65 6e | link.is.available.and.get.sudden |
| f8780 | 6c 79 20 64 72 6f 70 70 65 64 20 77 68 65 6e 20 6f 74 68 65 72 20 63 6c 61 73 73 65 73 20 73 74 | ly.dropped.when.other.classes.st |
| f87a0 | 61 72 74 20 75 73 69 6e 67 20 74 68 65 69 72 20 61 73 73 69 67 6e 65 64 20 2a 62 61 6e 64 77 69 | art.using.their.assigned.*bandwi |
| f87c0 | 64 74 68 2a 20 73 68 61 72 65 2e 00 49 66 20 79 6f 75 20 65 6e 61 62 6c 65 20 74 68 69 73 2c 20 | dth*.share..If.you.enable.this,. |
| f87e0 | 79 6f 75 20 77 69 6c 6c 20 70 72 6f 62 61 62 6c 79 20 77 61 6e 74 20 74 6f 20 73 65 74 20 64 69 | you.will.probably.want.to.set.di |
| f8800 | 76 65 72 73 69 74 79 2d 66 61 63 74 6f 72 20 61 6e 64 20 63 68 61 6e 6e 65 6c 20 62 65 6c 6f 77 | versity-factor.and.channel.below |
| f8820 | 2e 00 49 66 20 79 6f 75 20 65 6e 74 65 72 20 61 20 76 61 6c 75 65 20 73 6d 61 6c 6c 65 72 20 74 | ..If.you.enter.a.value.smaller.t |
| f8840 | 68 61 6e 20 36 30 20 73 65 63 6f 6e 64 73 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 74 68 69 | han.60.seconds.be.aware.that.thi |
| f8860 | 73 20 63 61 6e 20 61 6e 64 20 77 69 6c 6c 20 61 66 66 65 63 74 20 63 6f 6e 76 65 72 67 65 6e 63 | s.can.and.will.affect.convergenc |
| f8880 | 65 20 61 74 20 73 63 61 6c 65 2e 00 49 66 20 79 6f 75 20 66 65 65 6c 20 62 65 74 74 65 72 20 66 | e.at.scale..If.you.feel.better.f |
| f88a0 | 6f 72 77 61 72 64 69 6e 67 20 61 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 65 71 | orwarding.all.authentication.req |
| f88c0 | 75 65 73 74 73 20 74 6f 20 79 6f 75 72 20 65 6e 74 65 72 70 72 69 73 65 73 20 52 41 44 49 55 53 | uests.to.your.enterprises.RADIUS |
| f88e0 | 20 73 65 72 76 65 72 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 62 65 6c 6f 77 2e | .server,.use.the.commands.below. |
| f8900 | 00 49 66 20 79 6f 75 20 68 61 70 70 65 6e 20 74 6f 20 72 75 6e 20 74 68 69 73 20 69 6e 20 61 20 | .If.you.happen.to.run.this.in.a. |
| f8920 | 76 69 72 74 75 61 6c 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 6c 69 6b 65 20 62 79 20 45 56 45 2d | virtual.environment.like.by.EVE- |
| f8940 | 4e 47 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 65 6e 73 75 72 65 20 79 6f 75 72 20 56 79 4f 53 20 | NG.you.need.to.ensure.your.VyOS. |
| f8960 | 4e 49 43 20 69 73 20 73 65 74 20 74 6f 20 75 73 65 20 74 68 65 20 65 31 30 30 30 20 64 72 69 76 | NIC.is.set.to.use.the.e1000.driv |
| f8980 | 65 72 2e 20 55 73 69 6e 67 20 74 68 65 20 64 65 66 61 75 6c 74 20 60 60 76 69 72 74 69 6f 2d 6e | er..Using.the.default.``virtio-n |
| f89a0 | 65 74 2d 70 63 69 60 60 20 6f 72 20 74 68 65 20 60 60 76 6d 78 6e 65 74 33 60 60 20 64 72 69 76 | et-pci``.or.the.``vmxnet3``.driv |
| f89c0 | 65 72 20 77 69 6c 6c 20 6e 6f 74 20 77 6f 72 6b 2e 20 49 43 4d 50 20 6d 65 73 73 61 67 65 73 20 | er.will.not.work..ICMP.messages. |
| f89e0 | 77 69 6c 6c 20 6e 6f 74 20 62 65 20 70 72 6f 70 65 72 6c 79 20 70 72 6f 63 65 73 73 65 64 2e 20 | will.not.be.properly.processed.. |
| f8a00 | 54 68 65 79 20 61 72 65 20 76 69 73 69 62 6c 65 20 6f 6e 20 74 68 65 20 76 69 72 74 75 61 6c 20 | They.are.visible.on.the.virtual. |
| f8a20 | 77 69 72 65 20 62 75 74 20 77 69 6c 6c 20 6e 6f 74 20 6d 61 6b 65 20 69 74 20 66 75 6c 6c 79 20 | wire.but.will.not.make.it.fully. |
| f8a40 | 75 70 20 74 68 65 20 6e 65 74 77 6f 72 6b 69 6e 67 20 73 74 61 63 6b 2e 00 49 66 20 79 6f 75 20 | up.the.networking.stack..If.you. |
| f8a60 | 68 61 70 70 65 6e 20 74 6f 20 75 73 65 20 53 6f 6c 61 72 57 69 6e 64 73 20 4f 72 69 6f 6e 20 61 | happen.to.use.SolarWinds.Orion.a |
| f8a80 | 73 20 4e 4d 53 20 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 75 73 65 20 74 68 65 20 44 65 76 69 63 | s.NMS.you.can.also.use.the.Devic |
| f8aa0 | 65 20 54 65 6d 70 6c 61 74 65 73 20 4d 61 6e 61 67 65 6d 65 6e 74 2e 20 41 20 74 65 6d 70 6c 61 | e.Templates.Management..A.templa |
| f8ac0 | 74 65 20 66 6f 72 20 56 79 4f 53 20 63 61 6e 20 62 65 20 65 61 73 69 6c 79 20 69 6d 70 6f 72 74 | te.for.VyOS.can.be.easily.import |
| f8ae0 | 65 64 2e 00 49 66 20 79 6f 75 20 68 61 70 70 65 6e 65 64 20 74 6f 20 75 73 65 20 61 20 43 69 73 | ed..If.you.happened.to.use.a.Cis |
| f8b00 | 63 6f 20 4e 4d 2d 31 36 41 20 2d 20 53 69 78 74 65 65 6e 20 50 6f 72 74 20 41 73 79 6e 63 20 4e | co.NM-16A.-.Sixteen.Port.Async.N |
| f8b20 | 65 74 77 6f 72 6b 20 4d 6f 64 75 6c 65 20 6f 72 20 4e 4d 2d 33 32 41 20 2d 20 54 68 69 72 74 79 | etwork.Module.or.NM-32A.-.Thirty |
| f8b40 | 2d 74 77 6f 20 50 6f 72 74 20 41 73 79 6e 63 20 4e 65 74 77 6f 72 6b 20 4d 6f 64 75 6c 65 20 2d | -two.Port.Async.Network.Module.- |
| f8b60 | 20 74 68 69 73 20 69 73 20 79 6f 75 72 20 56 79 4f 53 20 72 65 70 6c 61 63 65 6d 65 6e 74 2e 00 | .this.is.your.VyOS.replacement.. |
| f8b80 | 49 66 20 79 6f 75 20 68 61 76 65 20 61 20 6c 6f 74 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2c | If.you.have.a.lot.of.interfaces, |
| f8ba0 | 20 61 6e 64 2f 6f 72 20 61 20 6c 6f 74 20 6f 66 20 73 75 62 6e 65 74 73 2c 20 74 68 65 6e 20 65 | .and/or.a.lot.of.subnets,.then.e |
| f8bc0 | 6e 61 62 6c 69 6e 67 20 4f 53 50 46 20 76 69 61 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 | nabling.OSPF.via.this.command.ma |
| f8be0 | 79 20 72 65 73 75 6c 74 20 69 6e 20 61 20 73 6c 69 67 68 74 20 70 65 72 66 6f 72 6d 61 6e 63 65 | y.result.in.a.slight.performance |
| f8c00 | 20 69 6d 70 72 6f 76 65 6d 65 6e 74 2e 00 49 66 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 | .improvement..If.you.have.config |
| f8c20 | 75 72 65 64 20 74 68 65 20 60 49 4e 53 49 44 45 2d 4f 55 54 60 20 70 6f 6c 69 63 79 2c 20 79 6f | ured.the.`INSIDE-OUT`.policy,.yo |
| f8c40 | 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 61 64 64 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 | u.will.need.to.add.additional.ru |
| f8c60 | 6c 65 73 20 74 6f 20 70 65 72 6d 69 74 20 69 6e 62 6f 75 6e 64 20 4e 41 54 20 74 72 61 66 66 69 | les.to.permit.inbound.NAT.traffi |
| f8c80 | 63 2e 00 49 66 20 79 6f 75 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 65 | c..If.you.have.multiple.addresse |
| f8ca0 | 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 69 6e 74 | s.configured.on.a.particular.int |
| f8cc0 | 65 72 66 61 63 65 20 61 6e 64 20 77 6f 75 6c 64 20 6c 69 6b 65 20 50 49 4d 20 74 6f 20 75 73 65 | erface.and.would.like.PIM.to.use |
| f8ce0 | 20 61 20 73 70 65 63 69 66 69 63 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 61 73 73 6f 63 | .a.specific.source.address.assoc |
| f8d00 | 69 61 74 65 64 20 77 69 74 68 20 74 68 61 74 20 69 6e 74 65 72 66 61 63 65 2e 00 49 66 20 79 6f | iated.with.that.interface..If.yo |
| f8d20 | 75 20 6e 65 65 64 20 74 6f 20 73 61 6d 70 6c 65 20 61 6c 73 6f 20 65 67 72 65 73 73 20 74 72 61 | u.need.to.sample.also.egress.tra |
| f8d40 | 66 66 69 63 2c 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | ffic,.you.may.want.to.configure. |
| f8d60 | 65 67 72 65 73 73 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 3a 00 49 66 20 79 6f 75 20 6f | egress.flow-accounting:.If.you.o |
| f8d80 | 6e 6c 79 20 77 61 6e 74 20 74 6f 20 63 68 65 63 6b 20 69 66 20 74 68 65 20 75 73 65 72 20 61 63 | nly.want.to.check.if.the.user.ac |
| f8da0 | 63 6f 75 6e 74 20 69 73 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 63 61 6e 20 61 75 74 68 65 6e 74 | count.is.enabled.and.can.authent |
| f8dc0 | 69 63 61 74 65 20 28 61 67 61 69 6e 73 74 20 74 68 65 20 70 72 69 6d 61 72 79 20 67 72 6f 75 70 | icate.(against.the.primary.group |
| f8de0 | 29 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 6e 69 70 70 65 64 20 69 73 20 73 75 66 66 69 | ).the.following.snipped.is.suffi |
| f8e00 | 63 69 65 6e 74 3a 00 49 66 20 79 6f 75 20 73 65 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 55 | cient:.If.you.set.a.custom.RADIU |
| f8e20 | 53 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 6f | S.attribute.you.must.define.it.o |
| f8e40 | 6e 20 62 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 61 74 20 52 41 44 49 55 53 20 73 65 | n.both.dictionaries.at.RADIUS.se |
| f8e60 | 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2c 20 77 68 69 63 68 20 69 73 20 74 68 65 20 76 79 | rver.and.client,.which.is.the.vy |
| f8e80 | 6f 73 20 72 6f 75 74 65 72 20 69 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 2e 00 49 66 20 79 6f 75 | os.router.in.our.example..If.you |
| f8ea0 | 20 73 65 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 20 79 | .set.a.custom.RADIUS.attribute.y |
| f8ec0 | 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 6f 6e 20 62 6f 74 68 20 64 69 63 74 69 6f | ou.must.define.it.on.both.dictio |
| f8ee0 | 6e 61 72 69 65 73 20 61 74 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 | naries.at.RADIUS.server.and.clie |
| f8f00 | 6e 74 2e 00 49 66 20 79 6f 75 20 73 65 74 20 61 20 63 75 73 74 6f 6d 20 52 41 44 49 55 53 20 61 | nt..If.you.set.a.custom.RADIUS.a |
| f8f20 | 74 74 72 69 62 75 74 65 20 79 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 69 74 20 6f 6e 20 62 | ttribute.you.must.define.it.on.b |
| f8f40 | 6f 74 68 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 6f 6e 20 74 68 65 20 52 41 44 49 55 53 20 73 | oth.dictionaries.on.the.RADIUS.s |
| f8f60 | 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2e 00 49 66 20 79 6f 75 20 73 70 65 63 69 66 79 | erver.and.client..If.you.specify |
| f8f80 | 20 61 20 73 65 72 76 65 72 20 74 6f 20 62 65 20 63 68 65 63 6b 65 64 20 62 75 74 20 64 6f 20 6e | .a.server.to.be.checked.but.do.n |
| f8fa0 | 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 61 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 20 62 61 73 69 63 | ot.configure.a.protocol,.a.basic |
| f8fc0 | 20 54 43 50 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 77 69 6c 6c 20 62 65 20 61 74 74 65 6d 70 | .TCP.health.check.will.be.attemp |
| f8fe0 | 74 65 64 2e 20 41 20 73 65 72 76 65 72 20 73 68 61 6c 6c 20 62 65 20 64 65 65 6d 65 64 20 6f 6e | ted..A.server.shall.be.deemed.on |
| f9000 | 6c 69 6e 65 20 69 66 20 69 74 20 72 65 73 70 6f 6e 73 65 73 20 74 6f 20 61 20 63 6f 6e 6e 65 63 | line.if.it.responses.to.a.connec |
| f9020 | 74 69 6f 6e 20 61 74 74 65 6d 70 74 20 77 69 74 68 20 61 20 76 61 6c 69 64 20 60 60 53 59 4e 2f | tion.attempt.with.a.valid.``SYN/ |
| f9040 | 41 43 4b 60 60 20 70 61 63 6b 65 74 2e 00 49 66 20 79 6f 75 20 75 73 65 20 55 53 42 20 74 6f 20 | ACK``.packet..If.you.use.USB.to. |
| f9060 | 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 73 20 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6e 67 | serial.converters.for.connecting |
| f9080 | 20 74 6f 20 79 6f 75 72 20 56 79 4f 53 20 61 70 70 6c 69 61 6e 63 65 20 70 6c 65 61 73 65 20 6e | .to.your.VyOS.appliance.please.n |
| f90a0 | 6f 74 65 20 74 68 61 74 20 6d 6f 73 74 20 6f 66 20 74 68 65 6d 20 75 73 65 20 73 6f 66 74 77 61 | ote.that.most.of.them.use.softwa |
| f90c0 | 72 65 20 65 6d 75 6c 61 74 69 6f 6e 20 77 69 74 68 6f 75 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f | re.emulation.without.flow.contro |
| f90e0 | 6c 2e 20 54 68 69 73 20 6d 65 61 6e 73 20 79 6f 75 20 73 68 6f 75 6c 64 20 73 74 61 72 74 20 77 | l..This.means.you.should.start.w |
| f9100 | 69 74 68 20 61 20 63 6f 6d 6d 6f 6e 20 62 61 75 64 20 72 61 74 65 20 28 6d 6f 73 74 20 6c 69 6b | ith.a.common.baud.rate.(most.lik |
| f9120 | 65 6c 79 20 39 36 30 30 20 62 61 75 64 29 20 61 73 20 6f 74 68 65 72 77 69 73 65 20 79 6f 75 20 | ely.9600.baud).as.otherwise.you. |
| f9140 | 70 72 6f 62 61 62 6c 79 20 63 61 6e 20 6e 6f 74 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 | probably.can.not.connect.to.the. |
| f9160 | 64 65 76 69 63 65 20 75 73 69 6e 67 20 68 69 67 68 20 73 70 65 65 64 20 62 61 75 64 20 72 61 74 | device.using.high.speed.baud.rat |
| f9180 | 65 73 20 61 73 20 79 6f 75 72 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 20 73 69 6d 70 | es.as.your.serial.converter.simp |
| f91a0 | 6c 79 20 63 61 6e 20 6e 6f 74 20 70 72 6f 63 65 73 73 20 74 68 69 73 20 64 61 74 61 20 72 61 74 | ly.can.not.process.this.data.rat |
| f91c0 | 65 2e 00 49 66 20 79 6f 75 20 75 73 65 20 61 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 | e..If.you.use.a.self-signed.cert |
| f91e0 | 69 66 69 63 61 74 65 2c 20 64 6f 20 6e 6f 74 20 66 6f 72 67 65 74 20 74 6f 20 69 6e 73 74 61 6c | ificate,.do.not.forget.to.instal |
| f9200 | 6c 20 43 41 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 69 64 65 2e 00 49 66 20 79 6f 75 20 | l.CA.on.the.client.side..If.you. |
| f9220 | 77 61 6e 74 20 74 6f 20 63 68 61 6e 67 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 | want.to.change.the.maximum.numbe |
| f9240 | 72 20 6f 66 20 66 6c 6f 77 73 2c 20 77 68 69 63 68 20 61 72 65 20 74 72 61 63 6b 69 6e 67 20 73 | r.of.flows,.which.are.tracking.s |
| f9260 | 69 6d 75 6c 74 61 6e 65 6f 75 73 6c 79 2c 20 79 6f 75 20 6d 61 79 20 64 6f 20 74 68 69 73 20 77 | imultaneously,.you.may.do.this.w |
| f9280 | 69 74 68 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 28 64 65 66 61 75 6c 74 20 38 31 39 32 29 2e | ith.this.command.(default.8192). |
| f92a0 | 00 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 69 73 61 62 6c 65 20 61 20 72 75 6c 65 20 62 | .If.you.want.to.disable.a.rule.b |
| f92c0 | 75 74 20 6c 65 74 20 69 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 | ut.let.it.in.the.configuration.. |
| f92e0 | 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 68 61 76 65 20 61 64 6d 69 6e 20 75 73 65 72 73 20 | If.you.want.to.have.admin.users. |
| f9300 | 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 76 69 61 20 52 41 44 49 55 53 20 69 74 20 69 73 | to.authenticate.via.RADIUS.it.is |
| f9320 | 20 65 73 73 65 6e 74 69 61 6c 20 74 6f 20 73 65 6e 74 20 74 68 65 20 60 60 43 69 73 63 6f 2d 41 | .essential.to.sent.the.``Cisco-A |
| f9340 | 56 2d 50 61 69 72 20 73 68 65 6c 6c 3a 70 72 69 76 2d 6c 76 6c 3d 31 35 60 60 20 61 74 74 72 69 | V-Pair.shell:priv-lvl=15``.attri |
| f9360 | 62 75 74 65 2e 20 57 69 74 68 6f 75 74 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 79 6f 75 20 | bute..Without.the.attribute.you. |
| f9380 | 77 69 6c 6c 20 6f 6e 6c 79 20 67 65 74 20 72 65 67 75 6c 61 72 2c 20 6e 6f 6e 20 70 72 69 76 69 | will.only.get.regular,.non.privi |
| f93a0 | 6c 65 67 75 65 64 2c 20 73 79 73 74 65 6d 20 75 73 65 72 73 2e 00 49 66 20 79 6f 75 20 77 61 6e | legued,.system.users..If.you.wan |
| f93c0 | 74 20 74 6f 20 75 73 65 20 65 78 69 73 74 69 6e 67 20 62 6c 61 63 6b 6c 69 73 74 73 20 79 6f 75 | t.to.use.existing.blacklists.you |
| f93e0 | 20 68 61 76 65 20 74 6f 20 63 72 65 61 74 65 2f 64 6f 77 6e 6c 6f 61 64 20 61 20 64 61 74 61 62 | .have.to.create/download.a.datab |
| f9400 | 61 73 65 20 66 69 72 73 74 2e 20 4f 74 68 65 72 77 69 73 65 20 79 6f 75 20 77 69 6c 6c 20 6e 6f | ase.first..Otherwise.you.will.no |
| f9420 | 74 20 62 65 20 61 62 6c 65 20 74 6f 20 63 6f 6d 6d 69 74 20 74 68 65 20 63 6f 6e 66 69 67 20 63 | t.be.able.to.commit.the.config.c |
| f9440 | 68 61 6e 67 65 73 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 20 79 6f 75 72 20 72 6f 75 74 65 72 20 | hanges..If.you.want.your.router. |
| f9460 | 74 6f 20 66 6f 72 77 61 72 64 20 44 48 43 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 61 6e 20 65 | to.forward.DHCP.requests.to.an.e |
| f9480 | 78 74 65 72 6e 61 6c 20 44 48 43 50 20 73 65 72 76 65 72 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 | xternal.DHCP.server.you.can.conf |
| f94a0 | 69 67 75 72 65 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 61 63 74 20 61 73 20 61 20 44 48 43 | igure.the.system.to.act.as.a.DHC |
| f94c0 | 50 20 72 65 6c 61 79 20 61 67 65 6e 74 2e 20 54 68 65 20 44 48 43 50 20 72 65 6c 61 79 20 61 67 | P.relay.agent..The.DHCP.relay.ag |
| f94e0 | 65 6e 74 20 77 6f 72 6b 73 20 77 69 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 | ent.works.with.IPv4.and.IPv6.add |
| f9500 | 72 65 73 73 65 73 2e 00 49 66 20 79 6f 75 20 77 61 6e 74 2c 20 6e 65 65 64 2c 20 61 6e 64 20 73 | resses..If.you.want,.need,.and.s |
| f9520 | 68 6f 75 6c 64 20 75 73 65 20 6d 6f 72 65 20 61 64 76 61 6e 63 65 64 20 65 6e 63 72 79 70 74 69 | hould.use.more.advanced.encrypti |
| f9540 | 6f 6e 20 63 69 70 68 65 72 73 20 28 64 65 66 61 75 6c 74 20 69 73 20 73 74 69 6c 6c 20 33 44 45 | on.ciphers.(default.is.still.3DE |
| f9560 | 53 29 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 70 72 6f 76 69 73 69 6f 6e 20 79 6f 75 72 20 64 65 | S).you.need.to.provision.your.de |
| f9580 | 76 69 63 65 20 75 73 69 6e 67 20 61 20 73 6f 2d 63 61 6c 6c 65 64 20 22 44 65 76 69 63 65 20 50 | vice.using.a.so-called."Device.P |
| f95a0 | 72 6f 66 69 6c 65 22 2e 20 41 20 70 72 6f 66 69 6c 65 20 69 73 20 61 20 73 69 6d 70 6c 65 20 74 | rofile"..A.profile.is.a.simple.t |
| f95c0 | 65 78 74 20 66 69 6c 65 20 63 6f 6e 74 61 69 6e 69 6e 67 20 58 4d 4c 20 6e 6f 64 65 73 20 77 69 | ext.file.containing.XML.nodes.wi |
| f95e0 | 74 68 20 61 20 60 60 2e 6d 6f 62 69 6c 65 63 6f 6e 66 69 67 60 60 20 66 69 6c 65 20 65 78 74 65 | th.a.``.mobileconfig``.file.exte |
| f9600 | 6e 73 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 73 65 6e 74 20 61 6e 64 20 6f 70 65 6e 65 | nsion.that.can.be.sent.and.opene |
| f9620 | 64 20 6f 6e 20 61 6e 79 20 64 65 76 69 63 65 20 66 72 6f 6d 20 61 6e 20 45 2d 4d 61 69 6c 2e 00 | d.on.any.device.from.an.E-Mail.. |
| f9640 | 49 66 20 79 6f 75 27 72 65 20 6d 61 6b 69 6e 67 20 75 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 | If.you're.making.use.of.multiple |
| f9660 | 20 74 75 6e 6e 65 6c 73 2c 20 4f 70 65 6e 56 50 4e 20 6d 75 73 74 20 68 61 76 65 20 61 20 77 61 | .tunnels,.OpenVPN.must.have.a.wa |
| f9680 | 79 20 74 6f 20 64 69 73 74 69 6e 67 75 69 73 68 20 62 65 74 77 65 65 6e 20 64 69 66 66 65 72 65 | y.to.distinguish.between.differe |
| f96a0 | 6e 74 20 74 75 6e 6e 65 6c 73 20 61 73 69 64 65 20 66 72 6f 6d 20 74 68 65 20 70 72 65 2d 73 68 | nt.tunnels.aside.from.the.pre-sh |
| f96c0 | 61 72 65 64 2d 6b 65 79 2e 20 54 68 69 73 20 69 73 20 64 6f 6e 65 20 65 69 74 68 65 72 20 62 79 | ared-key..This.is.done.either.by |
| f96e0 | 20 72 65 66 65 72 65 6e 63 69 6e 67 20 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 70 6f 72 | .referencing.IP.addresses.or.por |
| f9700 | 74 20 6e 75 6d 62 65 72 73 2e 20 4f 6e 65 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 | t.numbers..One.option.is.to.dedi |
| f9720 | 63 61 74 65 20 61 20 70 75 62 6c 69 63 20 49 50 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 2e | cate.a.public.IP.to.each.tunnel. |
| f9740 | 20 41 6e 6f 74 68 65 72 20 6f 70 74 69 6f 6e 20 69 73 20 74 6f 20 64 65 64 69 63 61 74 65 20 61 | .Another.option.is.to.dedicate.a |
| f9760 | 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 74 6f 20 65 61 63 68 20 74 75 6e 6e 65 6c 20 28 65 2e 67 | .port.number.to.each.tunnel.(e.g |
| f9780 | 2e 20 31 31 39 35 2c 31 31 39 36 2c 31 31 39 37 2e 2e 2e 29 2e 00 49 66 20 79 6f 75 27 76 65 20 | ..1195,1196,1197...)..If.you've. |
| f97a0 | 63 6f 6d 70 6c 65 74 65 64 20 61 6c 6c 20 74 68 65 20 61 62 6f 76 65 20 73 74 65 70 73 20 79 6f | completed.all.the.above.steps.yo |
| f97c0 | 75 20 6e 6f 20 64 6f 75 62 74 20 77 61 6e 74 20 74 6f 20 73 65 65 20 69 66 20 69 74 27 73 20 61 | u.no.doubt.want.to.see.if.it's.a |
| f97e0 | 6c 6c 20 77 6f 72 6b 69 6e 67 2e 00 49 67 6e 6f 72 65 20 41 53 5f 50 41 54 48 20 6c 65 6e 67 74 | ll.working..Ignore.AS_PATH.lengt |
| f9800 | 68 20 77 68 65 6e 20 73 65 6c 65 63 74 69 6e 67 20 61 20 72 6f 75 74 65 00 49 67 6e 6f 72 65 20 | h.when.selecting.a.route.Ignore. |
| f9820 | 56 52 52 50 20 6d 61 69 6e 20 69 6e 74 65 72 66 61 63 65 20 66 61 75 6c 74 73 00 49 6d 61 67 65 | VRRP.main.interface.faults.Image |
| f9840 | 20 74 68 61 6e 6b 66 75 6c 6c 79 20 62 6f 72 72 6f 77 65 64 20 66 72 6f 6d 20 68 74 74 70 73 3a | .thankfully.borrowed.from.https: |
| f9860 | 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 46 69 6c 65 3a 53 4e 4d | //en.wikipedia.org/wiki/File:SNM |
| f9880 | 50 5f 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 5f 70 72 69 6e 63 69 70 6c 65 73 5f 64 69 61 67 72 | P_communication_principles_diagr |
| f98a0 | 61 6d 2e 50 4e 47 20 77 68 69 63 68 20 69 73 20 75 6e 64 65 72 20 74 68 65 20 47 4e 55 20 46 72 | am.PNG.which.is.under.the.GNU.Fr |
| f98c0 | 65 65 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 4c 69 63 65 6e 73 65 00 49 6d 61 67 69 6e 65 | ee.Documentation.License.Imagine |
| f98e0 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 00 49 6d 6d 65 64 69 61 74 | .the.following.topology.Immediat |
| f9900 | 65 00 49 6d 70 6c 65 6d 65 6e 74 65 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 3a 72 66 63 | e.Implemented.the.following.:rfc |
| f9920 | 3a 60 36 38 38 38 60 20 20 72 65 71 75 69 72 65 6d 65 6e 74 73 3a 00 49 6d 70 6f 72 74 20 66 69 | :`6888`..requirements:.Import.fi |
| f9940 | 6c 65 73 20 74 6f 20 50 4b 49 20 66 6f 72 6d 61 74 00 49 6d 70 6f 72 74 20 74 68 65 20 43 41 73 | les.to.PKI.format.Import.the.CAs |
| f9960 | 20 70 72 69 76 61 74 65 20 6b 65 79 20 70 6f 72 74 69 6f 6e 20 74 6f 20 74 68 65 20 43 4c 49 2e | .private.key.portion.to.the.CLI. |
| f9980 | 20 54 68 69 73 20 73 68 6f 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 | .This.should.never.leave.the.sys |
| f99a0 | 74 65 6d 20 61 73 20 69 74 20 69 73 20 75 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 74 68 65 | tem.as.it.is.used.to.decrypt.the |
| f99c0 | 20 64 61 74 61 2e 20 54 68 65 20 6b 65 79 20 69 73 20 72 65 71 75 69 72 65 64 20 69 66 20 79 6f | .data..The.key.is.required.if.yo |
| f99e0 | 75 20 75 73 65 20 56 79 4f 53 20 61 73 20 79 6f 75 72 20 63 65 72 74 69 66 69 63 61 74 65 20 67 | u.use.VyOS.as.your.certificate.g |
| f9a00 | 65 6e 65 72 61 74 6f 72 2e 00 49 6d 70 6f 72 74 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 73 68 61 | enerator..Import.the.OpenVPN.sha |
| f9a20 | 72 65 64 20 73 65 63 72 65 74 20 73 74 6f 72 65 64 20 69 6e 20 66 69 6c 65 20 74 6f 20 74 68 65 | red.secret.stored.in.file.to.the |
| f9a40 | 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d 70 6f 72 74 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 | .VyOS.CLI..Import.the.certificat |
| f9a60 | 65 20 66 72 6f 6d 20 74 68 65 20 66 69 6c 65 20 74 6f 20 56 79 4f 53 20 43 4c 49 2e 00 49 6d 70 | e.from.the.file.to.VyOS.CLI..Imp |
| f9a80 | 6f 72 74 20 74 68 65 20 70 72 69 76 61 74 65 20 6b 65 79 20 6f 66 20 74 68 65 20 63 65 72 74 69 | ort.the.private.key.of.the.certi |
| f9aa0 | 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2e 20 54 68 69 73 20 73 68 6f | ficate.to.the.VyOS.CLI..This.sho |
| f9ac0 | 75 6c 64 20 6e 65 76 65 72 20 6c 65 61 76 65 20 74 68 65 20 73 79 73 74 65 6d 20 61 73 20 69 74 | uld.never.leave.the.system.as.it |
| f9ae0 | 20 69 73 20 75 73 65 64 20 74 6f 20 64 65 63 72 79 70 74 20 74 68 65 20 64 61 74 61 2e 00 49 6d | .is.used.to.decrypt.the.data..Im |
| f9b00 | 70 6f 72 74 20 74 68 65 20 70 75 62 6c 69 63 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 | port.the.public.CA.certificate.f |
| f9b20 | 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 66 69 6c 65 20 74 6f 20 56 79 4f 53 20 43 4c 49 | rom.the.defined.file.to.VyOS.CLI |
| f9b40 | 2e 00 49 6d 70 6f 72 74 65 64 20 70 72 65 66 69 78 65 73 20 64 75 72 69 6e 67 20 74 68 65 20 76 | ..Imported.prefixes.during.the.v |
| f9b60 | 61 6c 69 64 61 74 69 6f 6e 20 6d 61 79 20 68 61 76 65 20 76 61 6c 75 65 73 3a 00 49 6e 20 3a 72 | alidation.may.have.values:.In.:r |
| f9b80 | 66 63 3a 60 33 30 36 39 60 20 69 74 20 69 73 20 63 61 6c 6c 65 64 20 56 4c 41 4e 20 41 67 67 72 | fc:`3069`.it.is.called.VLAN.Aggr |
| f9ba0 | 65 67 61 74 69 6f 6e 00 49 6e 20 3a 76 79 74 61 73 6b 3a 60 54 32 31 39 39 60 20 74 68 65 20 73 | egation.In.:vytask:`T2199`.the.s |
| f9bc0 | 79 6e 74 61 78 20 6f 66 20 74 68 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | yntax.of.the.zone.configuration. |
| f9be0 | 77 61 73 20 63 68 61 6e 67 65 64 2e 20 54 68 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 | was.changed..The.zone.configurat |
| f9c00 | 69 6f 6e 20 6d 6f 76 65 64 20 66 72 6f 6d 20 60 60 7a 6f 6e 65 2d 70 6f 6c 69 63 79 20 7a 6f 6e | ion.moved.from.``zone-policy.zon |
| f9c20 | 65 20 3c 6e 61 6d 65 3e 60 60 20 74 6f 20 60 60 66 69 72 65 77 61 6c 6c 20 7a 6f 6e 65 20 3c 6e | e.<name>``.to.``firewall.zone.<n |
| f9c40 | 61 6d 65 3e 60 60 2e 00 49 6e 20 45 74 68 65 72 6e 65 74 20 62 72 69 64 67 69 6e 67 20 63 6f 6e | ame>``..In.Ethernet.bridging.con |
| f9c60 | 66 69 67 75 72 61 74 69 6f 6e 73 2c 20 4f 70 65 6e 56 50 4e 27 73 20 73 65 72 76 65 72 20 6d 6f | figurations,.OpenVPN's.server.mo |
| f9c80 | 64 65 20 63 61 6e 20 62 65 20 73 65 74 20 61 73 20 61 20 27 62 72 69 64 67 65 27 20 77 68 65 72 | de.can.be.set.as.a.'bridge'.wher |
| f9ca0 | 65 20 74 68 65 20 56 50 4e 20 74 75 6e 6e 65 6c 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 65 6e | e.the.VPN.tunnel.encapsulates.en |
| f9cc0 | 74 69 72 65 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 20 28 75 70 20 74 6f 20 31 35 31 34 | tire.Ethernet.frames.(up.to.1514 |
| f9ce0 | 20 62 79 74 65 73 29 20 69 6e 73 74 65 61 64 20 6f 66 20 6a 75 73 74 20 49 50 20 70 61 63 6b 65 | .bytes).instead.of.just.IP.packe |
| f9d00 | 74 73 20 28 75 70 20 74 6f 20 31 35 30 30 20 62 79 74 65 73 29 2e 20 54 68 69 73 20 73 65 74 75 | ts.(up.to.1500.bytes)..This.setu |
| f9d20 | 70 20 61 6c 6c 6f 77 73 20 63 6c 69 65 6e 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 61 79 | p.allows.clients.to.transmit.Lay |
| f9d40 | 65 72 20 32 20 66 72 61 6d 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 4f 70 65 6e 56 50 4e 20 | er.2.frames.through.the.OpenVPN. |
| f9d60 | 74 75 6e 6e 65 6c 2e 20 42 65 6c 6f 77 2c 20 77 65 20 6f 75 74 6c 69 6e 65 20 61 20 62 61 73 69 | tunnel..Below,.we.outline.a.basi |
| f9d80 | 63 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 3a | c.configuration.to.achieve.this: |
| f9da0 | 00 49 6e 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 20 36 20 | .In.Internet.Protocol.Version.6. |
| f9dc0 | 28 49 50 76 36 29 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 20 66 75 6e 63 74 69 6f 6e 61 6c 69 | (IPv6).networks,.the.functionali |
| f9de0 | 74 79 20 6f 66 20 41 52 50 20 69 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 20 4e 65 69 | ty.of.ARP.is.provided.by.the.Nei |
| f9e00 | 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 28 4e 44 50 29 2e 00 | ghbor.Discovery.Protocol.(NDP).. |
| f9e20 | 49 6e 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 77 65 20 64 6f 20 6e 6f 74 20 64 65 66 69 | In.Priority.Queue.we.do.not.defi |
| f9e40 | 6e 65 20 63 6c 61 73 65 73 20 77 69 74 68 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 73 20 63 6c 61 | ne.clases.with.a.meaningless.cla |
| f9e60 | 73 73 20 49 44 20 6e 75 6d 62 65 72 20 62 75 74 20 77 69 74 68 20 61 20 63 6c 61 73 73 20 70 72 | ss.ID.number.but.with.a.class.pr |
| f9e80 | 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 20 28 31 2d 37 29 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 | iority.number.(1-7)..The.lower.t |
| f9ea0 | 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 | he.number,.the.higher.the.priori |
| f9ec0 | 74 79 2e 00 49 6e 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 77 65 20 64 6f 20 6e 6f 74 20 | ty..In.Priority.Queue.we.do.not. |
| f9ee0 | 64 65 66 69 6e 65 20 63 6c 61 73 73 65 73 20 77 69 74 68 20 61 20 6d 65 61 6e 69 6e 67 6c 65 73 | define.classes.with.a.meaningles |
| f9f00 | 73 20 63 6c 61 73 73 20 49 44 20 6e 75 6d 62 65 72 20 62 75 74 20 77 69 74 68 20 61 20 63 6c 61 | s.class.ID.number.but.with.a.cla |
| f9f20 | 73 73 20 70 72 69 6f 72 69 74 79 20 6e 75 6d 62 65 72 20 28 31 2d 37 29 2e 20 54 68 65 20 6c 6f | ss.priority.number.(1-7)..The.lo |
| f9f40 | 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 | wer.the.number,.the.higher.the.p |
| f9f60 | 72 69 6f 72 69 74 79 2e 00 49 6e 20 56 79 4f 53 20 74 68 65 20 74 65 72 6d 73 20 60 60 76 69 66 | riority..In.VyOS.the.terms.``vif |
| f9f80 | 2d 73 60 60 20 61 6e 64 20 60 60 76 69 66 2d 63 60 60 20 73 74 61 6e 64 20 66 6f 72 20 74 68 65 | -s``.and.``vif-c``.stand.for.the |
| f9fa0 | 20 65 74 68 65 72 74 79 70 65 20 74 61 67 73 20 74 68 61 74 20 61 72 65 20 75 73 65 64 2e 00 49 | .ethertype.tags.that.are.used..I |
| f9fc0 | 6e 20 56 79 4f 53 2c 20 38 30 32 2e 31 31 61 78 20 69 73 20 6f 6e 6c 79 20 69 6d 70 6c 65 6d 65 | n.VyOS,.802.11ax.is.only.impleme |
| f9fe0 | 6e 74 65 64 20 66 6f 72 20 32 2e 34 47 48 7a 20 61 6e 64 20 36 47 48 7a 2e 00 49 6e 20 56 79 4f | nted.for.2.4GHz.and.6GHz..In.VyO |
| fa000 | 53 2c 20 38 30 32 2e 31 31 61 78 20 69 73 20 6f 6e 6c 79 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 | S,.802.11ax.is.only.implemented. |
| fa020 | 66 6f 72 20 36 47 48 7a 20 61 73 20 6f 66 20 79 65 74 2e 00 49 6e 20 56 79 4f 53 2c 20 45 53 50 | for.6GHz.as.of.yet..In.VyOS,.ESP |
| fa040 | 20 61 74 74 72 69 62 75 74 65 73 20 61 72 65 20 73 70 65 63 69 66 69 65 64 20 74 68 72 6f 75 67 | .attributes.are.specified.throug |
| fa060 | 68 20 45 53 50 20 67 72 6f 75 70 73 2e 20 4d 75 6c 74 69 70 6c 65 20 70 72 6f 70 6f 73 61 6c 73 | h.ESP.groups..Multiple.proposals |
| fa080 | 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 67 72 | .can.be.specified.in.a.single.gr |
| fa0a0 | 6f 75 70 2e 00 49 6e 20 56 79 4f 53 2c 20 49 4b 45 20 61 74 74 72 69 62 75 74 65 73 20 61 72 65 | oup..In.VyOS,.IKE.attributes.are |
| fa0c0 | 20 73 70 65 63 69 66 69 65 64 20 74 68 72 6f 75 67 68 20 49 4b 45 20 67 72 6f 75 70 73 2e 20 4d | .specified.through.IKE.groups..M |
| fa0e0 | 75 6c 74 69 70 6c 65 20 70 72 6f 70 6f 73 61 6c 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 | ultiple.proposals.can.be.specifi |
| fa100 | 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 67 72 6f 75 70 2e 00 49 6e 20 56 79 4f 53 2c 20 61 | ed.in.a.single.group..In.VyOS,.a |
| fa120 | 20 63 6c 61 73 73 20 69 73 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 61 20 6e 75 6d 62 65 72 | .class.is.identified.by.a.number |
| fa140 | 20 79 6f 75 20 63 61 6e 20 63 68 6f 6f 73 65 20 77 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 | .you.can.choose.when.configuring |
| fa160 | 20 69 74 2e 00 49 6e 20 61 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c | .it..In.a.minimal.configuration, |
| fa180 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6d 75 73 74 20 62 65 20 70 72 6f 76 69 64 65 64 3a | .the.following.must.be.provided: |
| fa1a0 | 00 49 6e 20 61 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 68 65 61 64 65 72 20 63 6f 6e 74 65 | .In.a.multiple.VLAN.header.conte |
| fa1c0 | 78 74 2c 20 6f 75 74 20 6f 66 20 63 6f 6e 76 65 6e 69 65 6e 63 65 20 74 68 65 20 74 65 72 6d 20 | xt,.out.of.convenience.the.term. |
| fa1e0 | 22 56 4c 41 4e 20 74 61 67 22 20 6f 72 20 6a 75 73 74 20 22 74 61 67 22 20 66 6f 72 20 73 68 6f | "VLAN.tag".or.just."tag".for.sho |
| fa200 | 72 74 20 69 73 20 6f 66 74 65 6e 20 75 73 65 64 20 69 6e 20 70 6c 61 63 65 20 6f 66 20 22 38 30 | rt.is.often.used.in.place.of."80 |
| fa220 | 32 2e 31 71 5f 20 56 4c 41 4e 20 68 65 61 64 65 72 22 2e 20 51 69 6e 51 20 61 6c 6c 6f 77 73 20 | 2.1q_.VLAN.header"..QinQ.allows. |
| fa240 | 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 74 61 67 73 20 69 6e 20 61 6e 20 45 74 68 65 72 6e 65 | multiple.VLAN.tags.in.an.Etherne |
| fa260 | 74 20 66 72 61 6d 65 3b 20 74 6f 67 65 74 68 65 72 20 74 68 65 73 65 20 74 61 67 73 20 63 6f 6e | t.frame;.together.these.tags.con |
| fa280 | 73 74 69 74 75 74 65 20 61 20 74 61 67 20 73 74 61 63 6b 2e 20 57 68 65 6e 20 75 73 65 64 20 69 | stitute.a.tag.stack..When.used.i |
| fa2a0 | 6e 20 74 68 65 20 63 6f 6e 74 65 78 74 20 6f 66 20 61 6e 20 45 74 68 65 72 6e 65 74 20 66 72 61 | n.the.context.of.an.Ethernet.fra |
| fa2c0 | 6d 65 2c 20 61 20 51 69 6e 51 20 66 72 61 6d 65 20 69 73 20 61 20 66 72 61 6d 65 20 74 68 61 74 | me,.a.QinQ.frame.is.a.frame.that |
| fa2e0 | 20 68 61 73 20 32 20 56 4c 41 4e 20 38 30 32 2e 31 71 5f 20 68 65 61 64 65 72 73 20 28 64 6f 75 | .has.2.VLAN.802.1q_.headers.(dou |
| fa300 | 62 6c 65 2d 74 61 67 67 65 64 29 2e 00 49 6e 20 61 20 6e 75 74 73 68 65 6c 6c 2c 20 74 68 65 20 | ble-tagged)..In.a.nutshell,.the. |
| fa320 | 63 75 72 72 65 6e 74 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 70 72 6f 76 69 64 65 73 20 | current.implementation.provides. |
| fa340 | 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 66 65 61 74 75 72 65 73 3a 00 49 6e 20 61 64 64 69 74 | the.following.features:.In.addit |
| fa360 | 69 6f 6e 20 74 6f 20 3a 61 62 62 72 3a 60 52 41 44 49 55 53 20 28 52 65 6d 6f 74 65 20 41 75 74 | ion.to.:abbr:`RADIUS.(Remote.Aut |
| fa380 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 69 61 6c 2d 49 6e 20 55 73 65 72 20 53 65 72 76 69 63 65 | hentication.Dial-In.User.Service |
| fa3a0 | 29 60 2c 20 3a 61 62 62 72 3a 60 54 41 43 41 43 53 20 28 54 65 72 6d 69 6e 61 6c 20 41 63 63 65 | )`,.:abbr:`TACACS.(Terminal.Acce |
| fa3c0 | 73 73 20 43 6f 6e 74 72 6f 6c 6c 65 72 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 20 53 79 73 | ss.Controller.Access.Control.Sys |
| fa3e0 | 74 65 6d 29 60 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 6c 61 72 67 65 | tem)`.can.also.be.found.in.large |
| fa400 | 20 64 65 70 6c 6f 79 6d 65 6e 74 73 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 64 69 73 | .deployments..In.addition.to.dis |
| fa420 | 70 6c 61 79 69 6e 67 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 | playing.flow.accounting.informat |
| fa440 | 69 6f 6e 20 6c 6f 63 61 6c 6c 79 2c 20 6f 6e 65 20 63 61 6e 20 61 6c 73 6f 20 65 78 70 6f 72 74 | ion.locally,.one.can.also.export |
| fa460 | 65 64 20 74 68 65 6d 20 74 6f 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 73 65 72 76 65 72 2e 00 | ed.them.to.a.collection.server.. |
| fa480 | 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 | In.addition.to.the.command.above |
| fa4a0 | 2c 20 74 68 65 20 6f 75 74 70 75 74 20 69 73 20 69 6e 20 61 20 66 6f 72 6d 61 74 20 77 68 69 63 | ,.the.output.is.in.a.format.whic |
| fa4c0 | 68 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 64 69 72 65 63 74 6c 79 20 69 6d 70 6f 72 74 | h.can.be.used.to.directly.import |
| fa4e0 | 20 74 68 65 20 6b 65 79 20 69 6e 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 62 79 20 73 69 | .the.key.into.the.VyOS.CLI.by.si |
| fa500 | 6d 70 6c 79 20 63 6f 70 79 2d 70 61 73 74 69 6e 67 20 74 68 65 20 6f 75 74 70 75 74 20 66 72 6f | mply.copy-pasting.the.output.fro |
| fa520 | 6d 20 6f 70 2d 6d 6f 64 65 20 69 6e 74 6f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 | m.op-mode.into.configuration.mod |
| fa540 | 65 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 77 65 20 73 65 74 75 70 20 49 50 76 36 20 3a 61 62 | e..In.addition.we.setup.IPv6.:ab |
| fa560 | 62 72 3a 60 52 41 20 28 52 6f 75 74 65 72 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 29 60 20 | br:`RA.(Router.Advertisements)`. |
| fa580 | 74 6f 20 6d 61 6b 65 20 74 68 65 20 70 72 65 66 69 78 20 6b 6e 6f 77 6e 20 6f 6e 20 74 68 65 20 | to.make.the.prefix.known.on.the. |
| fa5a0 | 65 74 68 30 20 6c 69 6e 6b 2e 00 49 6e 20 61 64 64 69 74 69 6f 6e 20 79 6f 75 20 63 61 6e 20 61 | eth0.link..In.addition.you.can.a |
| fa5c0 | 6c 73 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 77 68 6f 6c 65 20 73 65 72 76 69 63 65 20 77 69 | lso.disable.the.whole.service.wi |
| fa5e0 | 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 74 6f 20 72 65 6d 6f 76 65 20 69 74 20 66 72 6f 6d | thout.the.need.to.remove.it.from |
| fa600 | 20 74 68 65 20 63 75 72 72 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 6e 20 61 | .the.current.configuration..In.a |
| fa620 | 64 64 69 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 73 70 65 63 69 66 69 79 20 74 68 65 20 49 50 | ddition.you.will.specifiy.the.IP |
| fa640 | 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 20 | .address.or.FQDN.for.the.client. |
| fa660 | 77 68 65 72 65 20 69 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 20 54 68 65 20 61 64 | where.it.will.connect.to..The.ad |
| fa680 | 64 72 65 73 73 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 75 70 20 74 | dress.parameter.can.be.used.up.t |
| fa6a0 | 6f 20 74 77 6f 20 74 69 6d 65 73 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 61 73 73 69 67 | o.two.times.and.is.used.to.assig |
| fa6c0 | 6e 20 74 68 65 20 63 6c 69 65 6e 74 73 20 73 70 65 63 69 66 69 63 20 49 50 76 34 20 28 2f 33 32 | n.the.clients.specific.IPv4.(/32 |
| fa6e0 | 29 20 6f 72 20 49 50 76 36 20 28 2f 31 32 38 29 20 61 64 64 72 65 73 73 2e 00 49 6e 20 61 64 64 | ).or.IPv6.(/128).address..In.add |
| fa700 | 69 74 69 6f 6e 20 79 6f 75 20 77 69 6c 6c 20 73 70 65 63 69 66 79 20 74 68 65 20 49 50 20 61 64 | ition.you.will.specify.the.IP.ad |
| fa720 | 64 72 65 73 73 20 6f 72 20 46 51 44 4e 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 20 77 68 65 | dress.or.FQDN.for.the.client.whe |
| fa740 | 72 65 20 69 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 20 54 68 65 20 61 64 64 72 65 | re.it.will.connect.to..The.addre |
| fa760 | 73 73 20 70 61 72 61 6d 65 74 65 72 20 63 61 6e 20 62 65 20 75 73 65 64 20 75 70 20 74 6f 20 74 | ss.parameter.can.be.used.up.to.t |
| fa780 | 77 6f 20 74 69 6d 65 73 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 61 73 73 69 67 6e 20 74 | wo.times.and.is.used.to.assign.t |
| fa7a0 | 68 65 20 63 6c 69 65 6e 74 73 20 73 70 65 63 69 66 69 63 20 49 50 76 34 20 28 2f 33 32 29 20 6f | he.clients.specific.IPv4.(/32).o |
| fa7c0 | 72 20 49 50 76 36 20 28 2f 31 32 38 29 20 61 64 64 72 65 73 73 2e 00 49 6e 20 61 64 64 69 74 69 | r.IPv6.(/128).address..In.additi |
| fa7e0 | 6f 6e 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 6d 61 6e 79 20 6f 74 68 65 72 20 70 | on,.you.can.specify.many.other.p |
| fa800 | 61 72 61 6d 65 74 65 72 73 20 74 6f 20 67 65 74 20 42 47 50 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | arameters.to.get.BGP.information |
| fa820 | 3a 00 49 6e 20 61 6e 20 2a 2a 61 64 64 72 65 73 73 20 67 72 6f 75 70 2a 2a 20 61 20 73 69 6e 67 | :.In.an.**address.group**.a.sing |
| fa840 | 6c 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 | le.IP.address.or.IP.address.rang |
| fa860 | 65 20 69 73 20 64 65 66 69 6e 65 64 2e 00 49 6e 20 61 6e 20 2a 2a 61 64 64 72 65 73 73 20 67 72 | e.is.defined..In.an.**address.gr |
| fa880 | 6f 75 70 2a 2a 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 49 50 20 | oup**.a.single.IP.address.or.IP. |
| fa8a0 | 61 64 64 72 65 73 73 20 72 61 6e 67 65 73 20 61 72 65 20 64 65 66 69 6e 65 64 2e 00 49 6e 20 62 | address.ranges.are.defined..In.b |
| fa8c0 | 6f 74 68 20 63 61 73 65 73 2c 20 77 65 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f | oth.cases,.we.will.use.the.follo |
| fa8e0 | 77 69 6e 67 20 73 65 74 74 69 6e 67 73 3a 00 49 6e 20 63 61 73 65 20 6f 66 20 70 65 65 72 2d 70 | wing.settings:.In.case.of.peer-p |
| fa900 | 65 65 72 20 72 65 6c 61 74 69 6f 6e 73 68 69 70 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 72 | eer.relationship.routes.can.be.r |
| fa920 | 65 63 65 69 76 65 64 20 6f 6e 6c 79 20 69 66 20 4f 54 43 20 76 61 6c 75 65 20 69 73 20 65 71 75 | eceived.only.if.OTC.value.is.equ |
| fa940 | 61 6c 20 74 6f 20 79 6f 75 72 20 6e 65 69 67 68 62 6f 72 20 41 53 20 6e 75 6d 62 65 72 2e 00 49 | al.to.your.neighbor.AS.number..I |
| fa960 | 6e 20 63 61 73 65 2c 20 69 66 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 61 74 63 68 20 73 6f 6d | n.case,.if.you.need.to.catch.som |
| fa980 | 65 20 6c 6f 67 73 20 66 72 6f 6d 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 64 61 65 6d | e.logs.from.flow-accounting.daem |
| fa9a0 | 6f 6e 2c 20 79 6f 75 20 6d 61 79 20 63 6f 6e 66 69 67 75 72 65 20 6c 6f 67 67 69 6e 67 20 66 61 | on,.you.may.configure.logging.fa |
| fa9c0 | 63 69 6c 69 74 79 3a 00 49 6e 20 63 6f 6e 74 72 61 73 74 20 74 6f 20 73 69 6d 70 6c 65 20 52 45 | cility:.In.contrast.to.simple.RE |
| fa9e0 | 44 2c 20 56 79 4f 53 27 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 75 73 65 73 20 61 20 47 65 | D,.VyOS'.Random-Detect.uses.a.Ge |
| faa00 | 6e 65 72 61 6c 69 7a 65 64 20 52 61 6e 64 6f 6d 20 45 61 72 6c 79 20 44 65 74 65 63 74 20 70 6f | neralized.Random.Early.Detect.po |
| faa20 | 6c 69 63 79 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 64 69 66 66 65 72 65 6e 74 20 76 69 72 | licy.that.provides.different.vir |
| faa40 | 74 75 61 6c 20 71 75 65 75 65 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 49 50 20 50 72 65 63 | tual.queues.based.on.the.IP.Prec |
| faa60 | 65 64 65 6e 63 65 20 76 61 6c 75 65 20 73 6f 20 74 68 61 74 20 73 6f 6d 65 20 76 69 72 74 75 61 | edence.value.so.that.some.virtua |
| faa80 | 6c 20 71 75 65 75 65 73 20 63 61 6e 20 64 72 6f 70 20 6d 6f 72 65 20 70 61 63 6b 65 74 73 20 74 | l.queues.can.drop.more.packets.t |
| faaa0 | 68 61 6e 20 6f 74 68 65 72 73 2e 00 49 6e 20 66 61 69 6c 6f 76 65 72 20 6d 6f 64 65 2c 20 6f 6e | han.others..In.failover.mode,.on |
| faac0 | 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 73 65 74 20 74 6f 20 62 65 20 74 68 65 20 70 72 69 | e.interface.is.set.to.be.the.pri |
| faae0 | 6d 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 | mary.interface.and.other.interfa |
| fab00 | 63 65 73 20 61 72 65 20 73 65 63 6f 6e 64 61 72 79 20 6f 72 20 73 70 61 72 65 2e 20 49 6e 73 74 | ces.are.secondary.or.spare..Inst |
| fab20 | 65 61 64 20 6f 66 20 62 61 6c 61 6e 63 69 6e 67 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 | ead.of.balancing.traffic.across. |
| fab40 | 61 6c 6c 20 68 65 61 6c 74 68 79 20 69 6e 74 65 72 66 61 63 65 73 2c 20 6f 6e 6c 79 20 74 68 65 | all.healthy.interfaces,.only.the |
| fab60 | 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 75 73 65 64 20 61 6e 64 20 69 | .primary.interface.is.used.and.i |
| fab80 | 6e 20 63 61 73 65 20 6f 66 20 66 61 69 6c 75 72 65 2c 20 61 20 73 65 63 6f 6e 64 61 72 79 20 69 | n.case.of.failure,.a.secondary.i |
| faba0 | 6e 74 65 72 66 61 63 65 20 73 65 6c 65 63 74 65 64 20 66 72 6f 6d 20 74 68 65 20 70 6f 6f 6c 20 | nterface.selected.from.the.pool. |
| fabc0 | 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 74 61 6b 65 73 20 6f 76 | of.available.interfaces.takes.ov |
| fabe0 | 65 72 2e 20 54 68 65 20 70 72 69 6d 61 72 79 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 73 65 6c | er..The.primary.interface.is.sel |
| fac00 | 65 63 74 65 64 20 62 61 73 65 64 20 6f 6e 20 69 74 73 20 77 65 69 67 68 74 20 61 6e 64 20 68 65 | ected.based.on.its.weight.and.he |
| fac20 | 61 6c 74 68 2c 20 6f 74 68 65 72 73 20 62 65 63 6f 6d 65 20 73 65 63 6f 6e 64 61 72 79 20 69 6e | alth,.others.become.secondary.in |
| fac40 | 74 65 72 66 61 63 65 73 2e 20 53 65 63 6f 6e 64 61 72 79 20 69 6e 74 65 72 66 61 63 65 73 20 74 | terfaces..Secondary.interfaces.t |
| fac60 | 6f 20 74 61 6b 65 20 6f 76 65 72 20 61 20 66 61 69 6c 65 64 20 70 72 69 6d 61 72 79 20 69 6e 74 | o.take.over.a.failed.primary.int |
| fac80 | 65 72 66 61 63 65 20 61 72 65 20 63 68 6f 73 65 6e 20 66 72 6f 6d 20 74 68 65 20 6c 6f 61 64 20 | erface.are.chosen.from.the.load. |
| faca0 | 62 61 6c 61 6e 63 65 72 27 73 20 69 6e 74 65 72 66 61 63 65 20 70 6f 6f 6c 2c 20 64 65 70 65 6e | balancer's.interface.pool,.depen |
| facc0 | 64 69 6e 67 20 6f 6e 20 74 68 65 69 72 20 77 65 69 67 68 74 20 61 6e 64 20 68 65 61 6c 74 68 2e | ding.on.their.weight.and.health. |
| face0 | 20 49 6e 74 65 72 66 61 63 65 20 72 6f 6c 65 73 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 73 65 6c | .Interface.roles.can.also.be.sel |
| fad00 | 65 63 74 65 64 20 62 61 73 65 64 20 6f 6e 20 72 75 6c 65 20 6f 72 64 65 72 20 62 79 20 69 6e 63 | ected.based.on.rule.order.by.inc |
| fad20 | 6c 75 64 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 20 62 61 6c 61 6e 63 69 6e 67 20 72 | luding.interfaces.in.balancing.r |
| fad40 | 75 6c 65 73 20 61 6e 64 20 6f 72 64 65 72 69 6e 67 20 74 68 6f 73 65 20 72 75 6c 65 73 20 61 63 | ules.and.ordering.those.rules.ac |
| fad60 | 63 6f 72 64 69 6e 67 6c 79 2e 20 54 6f 20 70 75 74 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e | cordingly..To.put.the.load.balan |
| fad80 | 63 65 72 20 69 6e 20 66 61 69 6c 6f 76 65 72 20 6d 6f 64 65 2c 20 63 72 65 61 74 65 20 61 20 66 | cer.in.failover.mode,.create.a.f |
| fada0 | 61 69 6c 6f 76 65 72 20 72 75 6c 65 3a 00 49 6e 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 | ailover.rule:.In.firewall.bridge |
| fadc0 | 20 72 75 6c 65 73 2c 20 74 68 65 20 61 63 74 69 6f 6e 20 63 61 6e 20 62 65 3a 00 49 6e 20 67 65 | .rules,.the.action.can.be:.In.ge |
| fade0 | 6e 65 72 61 6c 2c 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c 20 72 65 71 75 69 72 65 73 20 61 20 | neral,.OSPF.protocol.requires.a. |
| fae00 | 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 28 61 72 65 61 20 30 29 20 74 6f 20 62 65 20 63 6f 68 | backbone.area.(area.0).to.be.coh |
| fae20 | 65 72 65 6e 74 20 61 6e 64 20 66 75 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 2e 20 49 2e 65 2e 20 | erent.and.fully.connected..I.e.. |
| fae40 | 61 6e 79 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 72 6f 75 74 65 72 20 6d 75 73 74 20 68 61 | any.backbone.area.router.must.ha |
| fae60 | 76 65 20 61 20 72 6f 75 74 65 20 74 6f 20 61 6e 79 20 6f 74 68 65 72 20 62 61 63 6b 62 6f 6e 65 | ve.a.route.to.any.other.backbone |
| fae80 | 20 61 72 65 61 20 72 6f 75 74 65 72 2e 20 4d 6f 72 65 6f 76 65 72 2c 20 65 76 65 72 79 20 41 42 | .area.router..Moreover,.every.AB |
| faea0 | 52 20 6d 75 73 74 20 68 61 76 65 20 61 20 6c 69 6e 6b 20 74 6f 20 62 61 63 6b 62 6f 6e 65 20 61 | R.must.have.a.link.to.backbone.a |
| faec0 | 72 65 61 2e 20 48 6f 77 65 76 65 72 2c 20 69 74 20 69 73 20 6e 6f 74 20 61 6c 77 61 79 73 20 70 | rea..However,.it.is.not.always.p |
| faee0 | 6f 73 73 69 62 6c 65 20 74 6f 20 68 61 76 65 20 61 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 | ossible.to.have.a.physical.link. |
| faf00 | 74 6f 20 61 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 | to.a.backbone.area..In.this.case |
| faf20 | 20 62 65 74 77 65 65 6e 20 74 77 6f 20 41 42 52 20 28 6f 6e 65 20 6f 66 20 74 68 65 6d 20 68 61 | .between.two.ABR.(one.of.them.ha |
| faf40 | 73 20 61 20 6c 69 6e 6b 20 74 6f 20 74 68 65 20 62 61 63 6b 62 6f 6e 65 20 61 72 65 61 29 20 69 | s.a.link.to.the.backbone.area).i |
| faf60 | 6e 20 74 68 65 20 61 72 65 61 20 28 6e 6f 74 20 73 74 75 62 20 61 72 65 61 29 20 61 20 76 69 72 | n.the.area.(not.stub.area).a.vir |
| faf80 | 74 75 61 6c 20 6c 69 6e 6b 20 69 73 20 6f 72 67 61 6e 69 7a 65 64 2e 00 49 6e 20 6c 61 72 67 65 | tual.link.is.organized..In.large |
| fafa0 | 20 64 65 70 6c 6f 79 6d 65 6e 74 73 20 69 74 20 69 73 20 6e 6f 74 20 72 65 61 73 6f 6e 61 62 6c | .deployments.it.is.not.reasonabl |
| fafc0 | 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 65 61 63 68 20 75 73 65 72 20 69 6e 64 69 76 69 64 | e.to.configure.each.user.individ |
| fafe0 | 75 61 6c 6c 79 20 6f 6e 20 65 76 65 72 79 20 73 79 73 74 65 6d 2e 20 56 79 4f 53 20 73 75 70 70 | ually.on.every.system..VyOS.supp |
| fb000 | 6f 72 74 73 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 52 41 44 49 55 53 20 28 52 65 6d 6f 74 65 | orts.using.:abbr:`RADIUS.(Remote |
| fb020 | 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 44 69 61 6c 2d 49 6e 20 55 73 65 72 20 53 65 72 | .Authentication.Dial-In.User.Ser |
| fb040 | 76 69 63 65 29 60 20 73 65 72 76 65 72 73 20 61 73 20 62 61 63 6b 65 6e 64 20 66 6f 72 20 75 73 | vice)`.servers.as.backend.for.us |
| fb060 | 65 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 | er.authentication..In.order.for. |
| fb080 | 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 62 | flow.accounting.information.to.b |
| fb0a0 | 65 20 63 6f 6c 6c 65 63 74 65 64 20 61 6e 64 20 64 69 73 70 6c 61 79 65 64 20 66 6f 72 20 61 6e | e.collected.and.displayed.for.an |
| fb0c0 | 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6d 75 73 74 20 62 | .interface,.the.interface.must.b |
| fb0e0 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 | e.configured.for.flow.accounting |
| fb100 | 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 74 68 65 20 70 72 69 6d 61 72 79 20 61 6e 64 20 74 | ..In.order.for.the.primary.and.t |
| fb120 | 68 65 20 73 65 63 6f 6e 64 61 72 79 20 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 6b 65 65 70 | he.secondary.DHCP.server.to.keep |
| fb140 | 20 74 68 65 69 72 20 6c 65 61 73 65 20 74 61 62 6c 65 73 20 69 6e 20 73 79 6e 63 2c 20 74 68 65 | .their.lease.tables.in.sync,.the |
| fb160 | 79 20 6d 75 73 74 20 62 65 20 61 62 6c 65 20 74 6f 20 72 65 61 63 68 20 65 61 63 68 20 6f 74 68 | y.must.be.able.to.reach.each.oth |
| fb180 | 65 72 20 6f 6e 20 54 43 50 20 70 6f 72 74 20 36 34 37 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 | er.on.TCP.port.647..If.you.have. |
| fb1a0 | 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 69 6e 20 65 66 66 65 63 74 2c 20 61 64 6a 75 73 74 | firewall.rules.in.effect,.adjust |
| fb1c0 | 20 74 68 65 6d 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 00 49 6e 20 6f 72 64 65 72 20 66 6f 72 20 | .them.accordingly..In.order.for. |
| fb1e0 | 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 75 73 65 20 61 6e 64 20 63 6f 6d 70 6c 65 74 65 20 75 | the.system.to.use.and.complete.u |
| fb200 | 6e 71 75 61 6c 69 66 69 65 64 20 68 6f 73 74 20 6e 61 6d 65 73 2c 20 61 20 6c 69 73 74 20 63 61 | nqualified.host.names,.a.list.ca |
| fb220 | 6e 20 62 65 20 64 65 66 69 6e 65 64 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 | n.be.defined.which.will.be.used. |
| fb240 | 66 6f 72 20 64 6f 6d 61 69 6e 20 73 65 61 72 63 68 65 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f | for.domain.searches..In.order.to |
| fb260 | 20 61 6c 6c 6f 77 20 66 6f 72 20 4c 44 50 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 | .allow.for.LDP.on.the.local.rout |
| fb280 | 65 72 20 74 6f 20 65 78 63 68 61 6e 67 65 20 6c 61 62 65 6c 20 61 64 76 65 72 74 69 73 65 6d 65 | er.to.exchange.label.advertiseme |
| fb2a0 | 6e 74 73 20 77 69 74 68 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 2c 20 61 20 54 43 50 20 73 65 | nts.with.other.routers,.a.TCP.se |
| fb2c0 | 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 62 65 74 77 65 65 | ssion.will.be.established.betwee |
| fb2e0 | 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 69 73 63 6f 76 65 72 65 64 20 61 6e 64 20 73 | n.automatically.discovered.and.s |
| fb300 | 74 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 72 6f 75 74 65 72 73 2e 20 4c 44 50 20 | tatically.assigned.routers..LDP. |
| fb320 | 77 69 6c 6c 20 74 72 79 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 54 43 50 20 73 65 73 73 | will.try.to.establish.a.TCP.sess |
| fb340 | 69 6f 6e 20 74 6f 20 74 68 65 20 2a 2a 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 73 73 2a 2a | ion.to.the.**transport.address** |
| fb360 | 20 6f 66 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 2e 20 54 68 65 72 65 66 6f 72 65 20 66 6f 72 | .of.other.routers..Therefore.for |
| fb380 | 20 4c 44 50 20 74 6f 20 66 75 6e 63 74 69 6f 6e 20 70 72 6f 70 65 72 6c 79 20 70 6c 65 61 73 65 | .LDP.to.function.properly.please |
| fb3a0 | 20 6d 61 6b 65 20 73 75 72 65 20 74 68 65 20 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 73 73 | .make.sure.the.transport.address |
| fb3c0 | 20 69 73 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 61 | .is.shown.in.the.routing.table.a |
| fb3e0 | 6e 64 20 72 65 61 63 68 61 62 6c 65 20 74 6f 20 74 72 61 66 66 69 63 20 61 74 20 61 6c 6c 20 74 | nd.reachable.to.traffic.at.all.t |
| fb400 | 69 6d 65 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d 6f | imes..In.order.to.control.and.mo |
| fb420 | 64 69 66 79 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 69 73 | dify.routing.information.that.is |
| fb440 | 20 65 78 63 68 61 6e 67 65 64 20 62 65 74 77 65 65 6e 20 70 65 65 72 73 20 79 6f 75 20 63 61 6e | .exchanged.between.peers.you.can |
| fb460 | 20 75 73 65 20 72 6f 75 74 65 2d 6d 61 70 2c 20 66 69 6c 74 65 72 2d 6c 69 73 74 2c 20 70 72 65 | .use.route-map,.filter-list,.pre |
| fb480 | 66 69 78 2d 6c 69 73 74 2c 20 64 69 73 74 72 69 62 75 74 65 2d 6c 69 73 74 2e 00 49 6e 20 6f 72 | fix-list,.distribute-list..In.or |
| fb4a0 | 64 65 72 20 74 6f 20 64 65 66 69 6e 65 20 77 68 69 63 68 20 74 72 61 66 66 69 63 20 67 6f 65 73 | der.to.define.which.traffic.goes |
| fb4c0 | 20 69 6e 74 6f 20 77 68 69 63 68 20 63 6c 61 73 73 2c 20 79 6f 75 20 64 65 66 69 6e 65 20 66 69 | .into.which.class,.you.define.fi |
| fb4e0 | 6c 74 65 72 73 20 28 74 68 61 74 20 69 73 2c 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 63 72 69 | lters.(that.is,.the.matching.cri |
| fb500 | 74 65 72 69 61 29 2e 20 50 61 63 6b 65 74 73 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 65 73 65 | teria)..Packets.go.through.these |
| fb520 | 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 73 20 28 61 73 20 69 6e 20 74 68 65 20 72 75 6c 65 73 | .matching.rules.(as.in.the.rules |
| fb540 | 20 6f 66 20 61 20 66 69 72 65 77 61 6c 6c 29 20 61 6e 64 2c 20 69 66 20 61 20 70 61 63 6b 65 74 | .of.a.firewall).and,.if.a.packet |
| fb560 | 20 6d 61 74 63 68 65 73 20 74 68 65 20 66 69 6c 74 65 72 2c 20 69 74 20 69 73 20 61 73 73 69 67 | .matches.the.filter,.it.is.assig |
| fb580 | 6e 65 64 20 74 6f 20 74 68 61 74 20 63 6c 61 73 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 68 | ned.to.that.class..In.order.to.h |
| fb5a0 | 61 76 65 20 56 79 4f 53 20 54 72 61 66 66 69 63 20 43 6f 6e 74 72 6f 6c 20 77 6f 72 6b 69 6e 67 | ave.VyOS.Traffic.Control.working |
| fb5c0 | 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 66 6f 6c 6c 6f 77 20 32 20 73 74 65 70 73 3a 00 49 6e 20 | .you.need.to.follow.2.steps:.In. |
| fb5e0 | 6f 72 64 65 72 20 74 6f 20 68 61 76 65 20 66 75 6c 6c 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d | order.to.have.full.control.and.m |
| fb600 | 61 6b 65 20 75 73 65 20 6f 66 20 6d 75 6c 74 69 70 6c 65 20 73 74 61 74 69 63 20 70 75 62 6c 69 | ake.use.of.multiple.static.publi |
| fb620 | 63 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 79 6f 75 72 20 56 79 4f 53 20 77 69 6c 6c 20 68 | c.IP.addresses,.your.VyOS.will.h |
| fb640 | 61 76 65 20 74 6f 20 69 6e 69 74 69 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 | ave.to.initiate.the.PPPoE.connec |
| fb660 | 74 69 6f 6e 20 61 6e 64 20 63 6f 6e 74 72 6f 6c 20 69 74 2e 20 49 6e 20 6f 72 64 65 72 20 66 6f | tion.and.control.it..In.order.fo |
| fb680 | 72 20 74 68 69 73 20 6d 65 74 68 6f 64 20 74 6f 20 77 6f 72 6b 2c 20 79 6f 75 20 77 69 6c 6c 20 | r.this.method.to.work,.you.will. |
| fb6a0 | 68 61 76 65 20 74 6f 20 66 69 67 75 72 65 20 6f 75 74 20 68 6f 77 20 74 6f 20 6d 61 6b 65 20 79 | have.to.figure.out.how.to.make.y |
| fb6c0 | 6f 75 72 20 44 53 4c 20 4d 6f 64 65 6d 2f 52 6f 75 74 65 72 20 73 77 69 74 63 68 20 69 6e 74 6f | our.DSL.Modem/Router.switch.into |
| fb6e0 | 20 61 20 42 72 69 64 67 65 64 20 4d 6f 64 65 20 73 6f 20 69 74 20 6f 6e 6c 79 20 61 63 74 73 20 | .a.Bridged.Mode.so.it.only.acts. |
| fb700 | 61 73 20 61 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 64 65 76 69 63 65 20 74 6f 20 63 | as.a.DSL.Transceiver.device.to.c |
| fb720 | 6f 6e 6e 65 63 74 20 62 65 74 77 65 65 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 6c 69 6e 6b | onnect.between.the.Ethernet.link |
| fb740 | 20 6f 66 20 79 6f 75 72 20 56 79 4f 53 20 61 6e 64 20 74 68 65 20 70 68 6f 6e 65 20 63 61 62 6c | .of.your.VyOS.and.the.phone.cabl |
| fb760 | 65 2e 20 4f 6e 63 65 20 79 6f 75 72 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 69 73 20 | e..Once.your.DSL.Transceiver.is. |
| fb780 | 69 6e 20 42 72 69 64 67 65 20 4d 6f 64 65 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 67 65 74 20 6e | in.Bridge.Mode,.you.should.get.n |
| fb7a0 | 6f 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 69 74 2e 20 50 6c 65 61 73 65 20 6d 61 6b | o.IP.address.from.it..Please.mak |
| fb7c0 | 65 20 73 75 72 65 20 79 6f 75 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 45 74 68 65 72 6e | e.sure.you.connect.to.the.Ethern |
| fb7e0 | 65 74 20 50 6f 72 74 20 31 20 69 66 20 79 6f 75 72 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 | et.Port.1.if.your.DSL.Transceive |
| fb800 | 72 20 68 61 73 20 61 20 73 77 69 74 63 68 2c 20 61 73 20 73 6f 6d 65 20 6f 66 20 74 68 65 6d 20 | r.has.a.switch,.as.some.of.them. |
| fb820 | 6f 6e 6c 79 20 77 6f 72 6b 20 74 68 69 73 20 77 61 79 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 | only.work.this.way..In.order.to. |
| fb840 | 6d 61 70 20 73 70 65 63 69 66 69 63 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 73 | map.specific.IPv6.addresses.to.s |
| fb860 | 70 65 63 69 66 69 63 20 68 6f 73 74 73 20 73 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 63 61 | pecific.hosts.static.mappings.ca |
| fb880 | 6e 20 62 65 20 63 72 65 61 74 65 64 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d | n.be.created..The.following.exam |
| fb8a0 | 70 6c 65 20 65 78 70 6c 61 69 6e 73 20 74 68 65 20 70 72 6f 63 65 73 73 2e 00 49 6e 20 6f 72 64 | ple.explains.the.process..In.ord |
| fb8c0 | 65 72 20 74 6f 20 6d 69 6e 69 6d 69 7a 65 20 74 68 65 20 66 6c 6f 6f 64 69 6e 67 20 6f 66 20 41 | er.to.minimize.the.flooding.of.A |
| fb8e0 | 52 50 20 61 6e 64 20 4e 44 20 6d 65 73 73 61 67 65 73 20 69 6e 20 74 68 65 20 56 58 4c 41 4e 20 | RP.and.ND.messages.in.the.VXLAN. |
| fb900 | 6e 65 74 77 6f 72 6b 2c 20 45 56 50 4e 20 69 6e 63 6c 75 64 65 73 20 70 72 6f 76 69 73 69 6f 6e | network,.EVPN.includes.provision |
| fb920 | 73 20 3a 72 66 63 3a 60 37 34 33 32 23 73 65 63 74 69 6f 6e 2d 31 30 60 20 74 68 61 74 20 61 6c | s.:rfc:`7432#section-10`.that.al |
| fb940 | 6c 6f 77 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 56 54 45 50 73 20 74 6f 20 73 75 70 70 72 | low.participating.VTEPs.to.suppr |
| fb960 | 65 73 73 20 73 75 63 68 20 6d 65 73 73 61 67 65 73 20 69 6e 20 63 61 73 65 20 74 68 65 79 20 6b | ess.such.messages.in.case.they.k |
| fb980 | 6e 6f 77 20 74 68 65 20 4d 41 43 2d 49 50 20 62 69 6e 64 69 6e 67 20 61 6e 64 20 63 61 6e 20 72 | now.the.MAC-IP.binding.and.can.r |
| fb9a0 | 65 70 6c 79 20 6f 6e 20 62 65 68 61 6c 66 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 68 6f 73 | eply.on.behalf.of.the.remote.hos |
| fb9c0 | 74 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 73 65 70 61 72 61 74 65 20 74 72 61 66 66 69 63 2c | t..In.order.to.separate.traffic, |
| fb9e0 | 20 46 61 69 72 20 51 75 65 75 65 20 75 73 65 73 20 61 20 63 6c 61 73 73 69 66 69 65 72 20 62 61 | .Fair.Queue.uses.a.classifier.ba |
| fba00 | 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 | sed.on.source.address,.destinati |
| fba20 | 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 54 68 65 20 | on.address.and.source.port..The. |
| fba40 | 61 6c 67 6f 72 69 74 68 6d 20 65 6e 71 75 65 75 65 73 20 70 61 63 6b 65 74 73 20 74 6f 20 68 61 | algorithm.enqueues.packets.to.ha |
| fba60 | 73 68 20 62 75 63 6b 65 74 73 20 62 61 73 65 64 20 6f 6e 20 74 68 6f 73 65 20 74 72 65 65 20 70 | sh.buckets.based.on.those.tree.p |
| fba80 | 61 72 61 6d 65 74 65 72 73 2e 20 45 61 63 68 20 6f 66 20 74 68 65 73 65 20 62 75 63 6b 65 74 73 | arameters..Each.of.these.buckets |
| fbaa0 | 20 73 68 6f 75 6c 64 20 72 65 70 72 65 73 65 6e 74 20 61 20 75 6e 69 71 75 65 20 66 6c 6f 77 2e | .should.represent.a.unique.flow. |
| fbac0 | 20 42 65 63 61 75 73 65 20 6d 75 6c 74 69 70 6c 65 20 66 6c 6f 77 73 20 6d 61 79 20 67 65 74 20 | .Because.multiple.flows.may.get. |
| fbae0 | 68 61 73 68 65 64 20 74 6f 20 74 68 65 20 73 61 6d 65 20 62 75 63 6b 65 74 2c 20 74 68 65 20 68 | hashed.to.the.same.bucket,.the.h |
| fbb00 | 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 70 65 72 74 75 72 62 65 64 20 61 74 | ashing.algorithm.is.perturbed.at |
| fbb20 | 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 69 6e 74 65 72 76 61 6c 73 20 73 6f 20 74 68 61 74 20 | .configurable.intervals.so.that. |
| fbb40 | 74 68 65 20 75 6e 66 61 69 72 6e 65 73 73 20 6c 61 73 74 73 20 6f 6e 6c 79 20 66 6f 72 20 61 20 | the.unfairness.lasts.only.for.a. |
| fbb60 | 73 68 6f 72 74 20 77 68 69 6c 65 2e 20 50 65 72 74 75 72 62 61 74 69 6f 6e 20 6d 61 79 20 68 6f | short.while..Perturbation.may.ho |
| fbb80 | 77 65 76 65 72 20 63 61 75 73 65 20 73 6f 6d 65 20 69 6e 61 64 76 65 72 74 65 6e 74 20 70 61 63 | wever.cause.some.inadvertent.pac |
| fbba0 | 6b 65 74 20 72 65 6f 72 64 65 72 69 6e 67 20 74 6f 20 6f 63 63 75 72 2e 20 41 6e 20 61 64 76 69 | ket.reordering.to.occur..An.advi |
| fbbc0 | 73 61 62 6c 65 20 76 61 6c 75 65 20 63 6f 75 6c 64 20 62 65 20 31 30 20 73 65 63 6f 6e 64 73 2e | sable.value.could.be.10.seconds. |
| fbbe0 | 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 50 49 4d 2c 20 69 74 20 69 73 20 6e 65 63 65 | .In.order.to.use.PIM,.it.is.nece |
| fbc00 | 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 3a 61 62 62 72 3a 60 52 50 20 28 | ssary.to.configure.a.:abbr:`RP.( |
| fbc20 | 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 60 20 66 6f 72 20 6a 6f 69 6e 20 6d 65 73 73 | Rendezvous.Point)`.for.join.mess |
| fbc40 | 61 67 65 73 20 74 6f 20 62 65 20 73 65 6e 74 20 74 6f 2e 20 43 75 72 72 65 6e 74 6c 79 20 74 68 | ages.to.be.sent.to..Currently.th |
| fbc60 | 65 20 6f 6e 6c 79 20 6d 65 74 68 6f 64 6f 6c 6f 67 79 20 74 6f 20 64 6f 20 74 68 69 73 20 69 73 | e.only.methodology.to.do.this.is |
| fbc80 | 20 76 69 61 20 73 74 61 74 69 63 20 72 65 6e 64 65 7a 76 6f 75 73 20 70 6f 69 6e 74 20 63 6f 6d | .via.static.rendezvous.point.com |
| fbca0 | 6d 61 6e 64 73 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 54 53 4f 2f 4c 52 4f 20 77 | mands..In.order.to.use.TSO/LRO.w |
| fbcc0 | 69 74 68 20 56 4d 58 4e 45 54 33 20 61 64 61 70 74 65 72 73 2c 20 74 68 65 20 53 47 20 6f 66 66 | ith.VMXNET3.adapters,.the.SG.off |
| fbce0 | 6c 6f 61 64 69 6e 67 20 6f 70 74 69 6f 6e 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 65 6e 61 62 | loading.option.must.also.be.enab |
| fbd00 | 6c 65 64 2e 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 54 53 4f 2f 4c 52 4f 20 77 69 74 | led..In.order.to.use.TSO/LRO.wit |
| fbd20 | 68 20 56 4d 58 4e 45 54 33 20 61 64 61 74 65 72 73 20 6f 6e 65 20 6d 75 73 74 20 61 6c 73 6f 20 | h.VMXNET3.adaters.one.must.also. |
| fbd40 | 65 6e 61 62 6c 65 20 74 68 65 20 53 47 20 6f 66 66 6c 6f 61 64 69 6e 67 20 6f 70 74 69 6f 6e 2e | enable.the.SG.offloading.option. |
| fbd60 | 00 49 6e 20 6f 72 64 65 72 20 74 6f 20 75 73 65 20 66 6c 6f 77 74 61 62 6c 65 73 2c 20 74 68 65 | .In.order.to.use.flowtables,.the |
| fbd80 | 20 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6e 65 65 64 65 64 20 69 6e | .minimal.configuration.needed.in |
| fbda0 | 63 6c 75 64 65 73 3a 00 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 20 69 74 20 61 6c 6c 6f 77 73 | cludes:.In.other.words.it.allows |
| fbdc0 | 20 63 6f 6e 74 72 6f 6c 20 6f 66 20 77 68 69 63 68 20 63 61 72 64 73 20 28 75 73 75 61 6c 6c 79 | .control.of.which.cards.(usually |
| fbde0 | 20 31 29 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 74 6f 20 61 6e 20 61 72 70 20 72 65 71 75 65 | .1).will.respond.to.an.arp.reque |
| fbe00 | 73 74 2e 00 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 2c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 | st..In.other.words,.connection.t |
| fbe20 | 72 61 63 6b 69 6e 67 20 68 61 73 20 61 6c 72 65 61 64 79 20 6f 62 73 65 72 76 65 64 20 74 68 65 | racking.has.already.observed.the |
| fbe40 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 20 63 6c 6f 73 65 64 20 61 6e 64 20 68 61 73 20 74 72 | .connection.be.closed.and.has.tr |
| fbe60 | 61 6e 73 69 74 69 6f 6e 20 74 68 65 20 66 6c 6f 77 20 74 6f 20 49 4e 56 41 4c 49 44 20 74 6f 20 | ansition.the.flow.to.INVALID.to. |
| fbe80 | 70 72 65 76 65 6e 74 20 61 74 74 61 63 6b 73 20 66 72 6f 6d 20 61 74 74 65 6d 70 74 69 6e 67 20 | prevent.attacks.from.attempting. |
| fbea0 | 74 6f 20 72 65 75 73 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 49 6e 20 6f 75 72 20 | to.reuse.the.connection..In.our. |
| fbec0 | 65 78 61 6d 70 6c 65 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 20 69 73 20 | example.the.certificate.name.is. |
| fbee0 | 63 61 6c 6c 65 64 20 76 79 6f 73 3a 00 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 | called.vyos:.In.our.example,.we. |
| fbf00 | 75 73 65 64 20 74 68 65 20 6b 65 79 20 6e 61 6d 65 20 60 60 6f 70 65 6e 76 70 6e 2d 31 60 60 20 | used.the.key.name.``openvpn-1``. |
| fbf20 | 77 68 69 63 68 20 77 65 20 77 69 6c 6c 20 72 65 66 65 72 65 6e 63 65 20 69 6e 20 6f 75 72 20 63 | which.we.will.reference.in.our.c |
| fbf40 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 2c 20 77 65 | onfiguration..In.our.example,.we |
| fbf60 | 20 77 69 6c 6c 20 62 65 20 66 6f 72 77 61 72 64 69 6e 67 20 77 65 62 20 73 65 72 76 65 72 20 74 | .will.be.forwarding.web.server.t |
| fbf80 | 72 61 66 66 69 63 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 77 65 62 20 73 65 72 76 65 72 | raffic.to.an.internal.web.server |
| fbfa0 | 20 6f 6e 20 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 20 48 54 54 50 20 74 72 61 66 66 69 63 20 | .on.192.168.0.100..HTTP.traffic. |
| fbfc0 | 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 74 68 65 20 54 43 50 20 70 72 6f 74 6f 63 6f 6c 20 6f 6e | makes.use.of.the.TCP.protocol.on |
| fbfe0 | 20 70 6f 72 74 20 38 30 2e 20 46 6f 72 20 6f 74 68 65 72 20 63 6f 6d 6d 6f 6e 20 70 6f 72 74 20 | .port.80..For.other.common.port. |
| fc000 | 6e 75 6d 62 65 72 73 2c 20 73 65 65 3a 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 | numbers,.see:.https://en.wikiped |
| fc020 | 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 4c 69 73 74 5f 6f 66 5f 54 43 50 5f 61 6e 64 5f 55 44 50 5f | ia.org/wiki/List_of_TCP_and_UDP_ |
| fc040 | 70 6f 72 74 5f 6e 75 6d 62 65 72 73 00 49 6e 20 70 72 69 6e 63 69 70 6c 65 2c 20 76 61 6c 75 65 | port_numbers.In.principle,.value |
| fc060 | 73 20 6d 75 73 74 20 62 65 20 3a 63 6f 64 65 3a 60 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 60 20 | s.must.be.:code:`min-threshold`. |
| fc080 | 3c 20 3a 63 6f 64 65 3a 60 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 60 20 3c 20 3a 63 6f 64 65 3a | <.:code:`max-threshold`.<.:code: |
| fc0a0 | 60 71 75 65 75 65 2d 6c 69 6d 69 74 60 2e 00 49 6e 20 73 68 6f 72 74 2c 20 44 4d 56 50 4e 20 70 | `queue-limit`..In.short,.DMVPN.p |
| fc0c0 | 72 6f 76 69 64 65 73 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 79 20 66 6f 72 20 63 72 65 61 74 | rovides.the.capability.for.creat |
| fc0e0 | 69 6e 67 20 61 20 64 79 6e 61 6d 69 63 2d 6d 65 73 68 20 56 50 4e 20 6e 65 74 77 6f 72 6b 20 77 | ing.a.dynamic-mesh.VPN.network.w |
| fc100 | 69 74 68 6f 75 74 20 68 61 76 69 6e 67 20 74 6f 20 70 72 65 2d 63 6f 6e 66 69 67 75 72 65 20 28 | ithout.having.to.pre-configure.( |
| fc120 | 73 74 61 74 69 63 29 20 61 6c 6c 20 70 6f 73 73 69 62 6c 65 20 74 75 6e 6e 65 6c 20 65 6e 64 2d | static).all.possible.tunnel.end- |
| fc140 | 70 6f 69 6e 74 20 70 65 65 72 73 2e 00 49 6e 20 73 6f 6d 65 20 63 61 73 65 20 77 68 65 72 65 20 | point.peers..In.some.case.where. |
| fc160 | 77 65 20 6e 65 65 64 20 74 6f 20 68 61 76 65 20 61 6e 20 6f 72 67 61 6e 69 7a 61 74 69 6f 6e 20 | we.need.to.have.an.organization. |
| fc180 | 6f 66 20 6f 75 72 20 6d 61 74 63 68 69 6e 67 20 73 65 6c 65 63 74 69 6f 6e 2c 20 69 6e 20 6f 72 | of.our.matching.selection,.in.or |
| fc1a0 | 64 65 72 20 74 6f 20 62 65 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 20 61 6e 64 20 6f 72 67 61 | der.to.be.more.flexible.and.orga |
| fc1c0 | 6e 69 7a 65 20 77 69 74 68 20 6f 75 72 20 66 69 6c 74 65 72 20 64 65 66 69 6e 69 74 69 6f 6e 2e | nize.with.our.filter.definition. |
| fc1e0 | 20 57 65 20 63 61 6e 20 61 70 70 6c 79 20 74 72 61 66 66 69 63 20 6d 61 74 63 68 20 67 72 6f 75 | .We.can.apply.traffic.match.grou |
| fc200 | 70 73 2c 20 61 6c 6c 6f 77 69 6e 67 20 75 73 20 74 6f 20 63 72 65 61 74 65 20 64 69 73 74 69 6e | ps,.allowing.us.to.create.distin |
| fc220 | 63 74 20 66 69 6c 74 65 72 20 67 72 6f 75 70 73 20 77 69 74 68 69 6e 20 6f 75 72 20 70 6f 6c 69 | ct.filter.groups.within.our.poli |
| fc240 | 63 79 20 61 6e 64 20 64 65 66 69 6e 65 20 76 61 72 69 6f 75 73 20 70 61 72 61 6d 65 74 65 72 73 | cy.and.define.various.parameters |
| fc260 | 20 66 6f 72 20 65 61 63 68 20 67 72 6f 75 70 3a 00 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 20 69 | .for.each.group:.In.some.cases.i |
| fc280 | 74 20 6d 61 79 20 62 65 20 6d 6f 72 65 20 63 6f 6e 76 65 6e 69 65 6e 74 20 74 6f 20 65 6e 61 62 | t.may.be.more.convenient.to.enab |
| fc2a0 | 6c 65 20 4f 53 50 46 20 6f 6e 20 61 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 2f 73 75 62 6e 65 | le.OSPF.on.a.per.interface/subne |
| fc2c0 | 74 20 62 61 73 69 73 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 70 72 6f 74 6f 63 6f 6c 73 20 6f | t.basis.:cfgcmd:`set.protocols.o |
| fc2e0 | 73 70 66 20 69 6e 74 65 72 66 61 63 65 20 3c 69 6e 74 65 72 66 61 63 65 3e 20 61 72 65 61 20 3c | spf.interface.<interface>.area.< |
| fc300 | 78 2e 78 2e 78 2e 78 20 7c 20 78 3e 60 00 49 6e 20 74 68 65 20 3a 72 65 66 3a 60 63 72 65 61 74 | x.x.x.x.|.x>`.In.the.:ref:`creat |
| fc320 | 69 6e 67 5f 61 5f 74 72 61 66 66 69 63 5f 70 6f 6c 69 63 79 60 20 73 65 63 74 69 6f 6e 20 79 6f | ing_a_traffic_policy`.section.yo |
| fc340 | 75 20 77 69 6c 6c 20 73 65 65 20 74 68 61 74 20 73 6f 6d 65 20 6f 66 20 74 68 65 20 70 6f 6c 69 | u.will.see.that.some.of.the.poli |
| fc360 | 63 69 65 73 20 75 73 65 20 2a 63 6c 61 73 73 65 73 2a 2e 20 54 68 6f 73 65 20 70 6f 6c 69 63 69 | cies.use.*classes*..Those.polici |
| fc380 | 65 73 20 6c 65 74 20 79 6f 75 20 64 69 73 74 72 69 62 75 74 65 20 74 72 61 66 66 69 63 20 69 6e | es.let.you.distribute.traffic.in |
| fc3a0 | 74 6f 20 64 69 66 66 65 72 65 6e 74 20 63 6c 61 73 73 65 73 20 61 63 63 6f 72 64 69 6e 67 20 74 | to.different.classes.according.t |
| fc3c0 | 6f 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 63 61 6e 20 63 | o.different.parameters.you.can.c |
| fc3e0 | 68 6f 6f 73 65 2e 20 53 6f 2c 20 61 20 63 6c 61 73 73 20 69 73 20 6a 75 73 74 20 61 20 73 70 65 | hoose..So,.a.class.is.just.a.spe |
| fc400 | 63 69 66 69 63 20 74 79 70 65 20 6f 66 20 74 72 61 66 66 69 63 20 79 6f 75 20 73 65 6c 65 63 74 | cific.type.of.traffic.you.select |
| fc420 | 2e 00 49 6e 20 74 68 65 20 56 79 4f 53 20 43 4c 49 2c 20 61 20 6b 65 79 20 70 6f 69 6e 74 20 6f | ..In.the.VyOS.CLI,.a.key.point.o |
| fc440 | 66 74 65 6e 20 6f 76 65 72 6c 6f 6f 6b 65 64 20 69 73 20 74 68 61 74 20 72 61 74 68 65 72 20 74 | ften.overlooked.is.that.rather.t |
| fc460 | 68 61 6e 20 62 65 69 6e 67 20 63 6f 6e 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 | han.being.configured.using.the.` |
| fc480 | 73 65 74 20 76 70 6e 60 20 73 74 61 6e 7a 61 2c 20 4f 70 65 6e 56 50 4e 20 69 73 20 63 6f 6e 66 | set.vpn`.stanza,.OpenVPN.is.conf |
| fc4a0 | 69 67 75 72 65 64 20 61 73 20 61 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 75 73 | igured.as.a.network.interface.us |
| fc4c0 | 69 6e 67 20 60 73 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 6f 70 65 6e 76 70 6e 60 2e 00 49 6e | ing.`set.interfaces.openvpn`..In |
| fc4e0 | 20 74 68 65 20 61 62 6f 76 65 20 65 78 61 6d 70 6c 65 2c 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 | .the.above.example,.an.external. |
| fc500 | 49 50 20 6f 66 20 31 39 32 2e 30 2e 32 2e 32 20 69 73 20 61 73 73 75 6d 65 64 2e 00 49 6e 20 74 | IP.of.192.0.2.2.is.assumed..In.t |
| fc520 | 68 65 20 61 67 65 20 6f 66 20 76 65 72 79 20 66 61 73 74 20 6e 65 74 77 6f 72 6b 73 2c 20 61 20 | he.age.of.very.fast.networks,.a. |
| fc540 | 73 65 63 6f 6e 64 20 6f 66 20 75 6e 72 65 61 63 68 61 62 69 6c 69 74 79 20 6d 61 79 20 65 71 75 | second.of.unreachability.may.equ |
| fc560 | 61 6c 20 6d 69 6c 6c 69 6f 6e 73 20 6f 66 20 6c 6f 73 74 20 70 61 63 6b 65 74 73 2e 20 54 68 65 | al.millions.of.lost.packets..The |
| fc580 | 20 69 64 65 61 20 62 65 68 69 6e 64 20 42 46 44 20 69 73 20 74 6f 20 64 65 74 65 63 74 20 76 65 | .idea.behind.BFD.is.to.detect.ve |
| fc5a0 | 72 79 20 71 75 69 63 6b 6c 79 20 77 68 65 6e 20 61 20 70 65 65 72 20 69 73 20 64 6f 77 6e 20 61 | ry.quickly.when.a.peer.is.down.a |
| fc5c0 | 6e 64 20 74 61 6b 65 20 61 63 74 69 6f 6e 20 65 78 74 72 65 6d 65 6c 79 20 66 61 73 74 2e 00 49 | nd.take.action.extremely.fast..I |
| fc5e0 | 6e 20 74 68 65 20 63 61 73 65 20 6f 66 20 4c 32 54 50 76 33 2c 20 74 68 65 20 66 65 61 74 75 72 | n.the.case.of.L2TPv3,.the.featur |
| fc600 | 65 73 20 6c 6f 73 74 20 61 72 65 20 74 65 6c 65 74 72 61 66 66 69 63 20 65 6e 67 69 6e 65 65 72 | es.lost.are.teletraffic.engineer |
| fc620 | 69 6e 67 20 66 65 61 74 75 72 65 73 20 63 6f 6e 73 69 64 65 72 65 64 20 69 6d 70 6f 72 74 61 6e | ing.features.considered.importan |
| fc640 | 74 20 69 6e 20 4d 50 4c 53 2e 20 48 6f 77 65 76 65 72 2c 20 74 68 65 72 65 20 69 73 20 6e 6f 20 | t.in.MPLS..However,.there.is.no. |
| fc660 | 72 65 61 73 6f 6e 20 74 68 65 73 65 20 66 65 61 74 75 72 65 73 20 63 6f 75 6c 64 20 6e 6f 74 20 | reason.these.features.could.not. |
| fc680 | 62 65 20 72 65 2d 65 6e 67 69 6e 65 65 72 65 64 20 69 6e 20 6f 72 20 6f 6e 20 74 6f 70 20 6f 66 | be.re-engineered.in.or.on.top.of |
| fc6a0 | 20 4c 32 54 50 76 33 20 69 6e 20 6c 61 74 65 72 20 70 72 6f 64 75 63 74 73 2e 00 49 6e 20 74 68 | .L2TPv3.in.later.products..In.th |
| fc6c0 | 65 20 63 61 73 65 20 74 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 69 73 | e.case.the.average.queue.size.is |
| fc6e0 | 20 62 65 74 77 65 65 6e 20 2a 2a 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 20 61 6e 64 20 2a | .between.**min-threshold**.and.* |
| fc700 | 2a 6d 61 78 2d 74 68 72 65 73 68 6f 6c 64 2a 2a 2c 20 74 68 65 6e 20 61 6e 20 61 72 72 69 76 69 | *max-threshold**,.then.an.arrivi |
| fc720 | 6e 67 20 70 61 63 6b 65 74 20 77 6f 75 6c 64 20 62 65 20 65 69 74 68 65 72 20 64 72 6f 70 70 65 | ng.packet.would.be.either.droppe |
| fc740 | 64 20 6f 72 20 70 6c 61 63 65 64 20 69 6e 20 74 68 65 20 71 75 65 75 65 2c 20 69 74 20 77 69 6c | d.or.placed.in.the.queue,.it.wil |
| fc760 | 6c 20 64 65 70 65 6e 64 20 6f 6e 20 74 68 65 20 64 65 66 69 6e 65 64 20 2a 2a 6d 61 72 6b 2d 70 | l.depend.on.the.defined.**mark-p |
| fc780 | 72 6f 62 61 62 69 6c 69 74 79 2a 2a 2e 00 49 6e 20 74 68 65 20 63 61 73 65 20 79 6f 75 20 77 61 | robability**..In.the.case.you.wa |
| fc7a0 | 6e 74 20 74 6f 20 61 70 70 6c 79 20 73 6f 6d 65 20 6b 69 6e 64 20 6f 66 20 2a 2a 73 68 61 70 69 | nt.to.apply.some.kind.of.**shapi |
| fc7c0 | 6e 67 2a 2a 20 74 6f 20 79 6f 75 72 20 2a 2a 69 6e 62 6f 75 6e 64 2a 2a 20 74 72 61 66 66 69 63 | ng**.to.your.**inbound**.traffic |
| fc7e0 | 2c 20 63 68 65 63 6b 20 74 68 65 20 69 6e 67 72 65 73 73 2d 73 68 61 70 69 6e 67 5f 20 73 65 63 | ,.check.the.ingress-shaping_.sec |
| fc800 | 74 69 6f 6e 2e 00 49 6e 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 2c 20 77 65 20 73 | tion..In.the.command.above,.we.s |
| fc820 | 65 74 20 74 68 65 20 74 79 70 65 20 6f 66 20 70 6f 6c 69 63 79 20 77 65 20 61 72 65 20 67 6f 69 | et.the.type.of.policy.we.are.goi |
| fc840 | 6e 67 20 74 6f 20 77 6f 72 6b 20 77 69 74 68 20 61 6e 64 20 74 68 65 20 6e 61 6d 65 20 77 65 20 | ng.to.work.with.and.the.name.we. |
| fc860 | 63 68 6f 6f 73 65 20 66 6f 72 20 69 74 3b 20 61 20 63 6c 61 73 73 20 28 73 6f 20 74 68 61 74 20 | choose.for.it;.a.class.(so.that. |
| fc880 | 77 65 20 63 61 6e 20 64 69 66 66 65 72 65 6e 74 69 61 74 65 20 73 6f 6d 65 20 74 72 61 66 66 69 | we.can.differentiate.some.traffi |
| fc8a0 | 63 29 20 61 6e 64 20 61 6e 20 69 64 65 6e 74 69 66 69 61 62 6c 65 20 6e 75 6d 62 65 72 20 66 6f | c).and.an.identifiable.number.fo |
| fc8c0 | 72 20 74 68 61 74 20 63 6c 61 73 73 3b 20 74 68 65 6e 20 77 65 20 63 6f 6e 66 69 67 75 72 65 20 | r.that.class;.then.we.configure. |
| fc8e0 | 61 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 20 28 6f 72 20 66 69 6c 74 65 72 29 20 61 6e 64 20 | a.matching.rule.(or.filter).and. |
| fc900 | 61 20 6e 61 6d 65 20 66 6f 72 20 69 74 2e 00 49 6e 20 74 68 65 20 65 6e 64 2c 20 61 6e 20 58 4d | a.name.for.it..In.the.end,.an.XM |
| fc920 | 4c 20 73 74 72 75 63 74 75 72 65 20 69 73 20 67 65 6e 65 72 61 74 65 64 20 77 68 69 63 68 20 63 | L.structure.is.generated.which.c |
| fc940 | 61 6e 20 62 65 20 73 61 76 65 64 20 61 73 20 60 60 76 79 6f 73 2e 6d 6f 62 69 6c 65 63 6f 6e 66 | an.be.saved.as.``vyos.mobileconf |
| fc960 | 69 67 60 60 20 61 6e 64 20 73 65 6e 74 20 74 6f 20 74 68 65 20 64 65 76 69 63 65 20 62 79 20 45 | ig``.and.sent.to.the.device.by.E |
| fc980 | 2d 4d 61 69 6c 20 77 68 65 72 65 20 69 74 20 6c 61 74 65 72 20 63 61 6e 20 62 65 20 69 6d 70 6f | -Mail.where.it.later.can.be.impo |
| fc9a0 | 72 74 65 64 2e 00 49 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 2c 20 74 68 65 20 | rted..In.the.example.above,.the. |
| fc9c0 | 66 69 72 73 74 20 34 39 39 20 73 65 73 73 69 6f 6e 73 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 6f | first.499.sessions.connect.witho |
| fc9e0 | 75 74 20 64 65 6c 61 79 2e 20 50 41 44 4f 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 64 | ut.delay..PADO.packets.will.be.d |
| fca00 | 65 6c 61 79 65 64 20 35 30 20 6d 73 20 66 6f 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 66 72 6f 6d | elayed.50.ms.for.connection.from |
| fca20 | 20 35 30 30 20 74 6f 20 39 39 39 2c 20 74 68 69 73 20 74 72 69 63 6b 20 61 6c 6c 6f 77 73 20 6f | .500.to.999,.this.trick.allows.o |
| fca40 | 74 68 65 72 20 50 50 50 6f 45 20 73 65 72 76 65 72 73 20 73 65 6e 64 20 50 41 44 4f 20 66 61 73 | ther.PPPoE.servers.send.PADO.fas |
| fca60 | 74 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 | ter.and.clients.will.connect.to. |
| fca80 | 6f 74 68 65 72 20 73 65 72 76 65 72 73 2e 20 4c 61 73 74 20 63 6f 6d 6d 61 6e 64 20 73 61 79 73 | other.servers..Last.command.says |
| fcaa0 | 20 74 68 61 74 20 74 68 69 73 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 63 61 6e 20 73 65 72 76 | .that.this.PPPoE.server.can.serv |
| fcac0 | 65 20 6f 6e 6c 79 20 33 30 30 30 20 63 6c 69 65 6e 74 73 2e 00 49 6e 20 74 68 65 20 65 78 61 6d | e.only.3000.clients..In.the.exam |
| fcae0 | 70 6c 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 51 75 69 63 6b 20 53 74 61 72 74 20 63 6f 6e | ple.used.for.the.Quick.Start.con |
| fcb00 | 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 2c 20 77 65 20 64 65 6d 6f 6e 73 74 72 61 74 65 | figuration.above,.we.demonstrate |
| fcb20 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 49 6e | .the.following.configuration:.In |
| fcb40 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 77 65 20 63 61 6e 20 73 65 | .the.following.example.we.can.se |
| fcb60 | 65 20 61 20 62 61 73 69 63 20 6d 75 6c 74 69 63 61 73 74 20 73 65 74 75 70 3a 00 49 6e 20 74 68 | e.a.basic.multicast.setup:.In.th |
| fcb80 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 62 6f 74 68 20 60 55 73 65 72 31 | e.following.example,.both.`User1 |
| fcba0 | 60 20 61 6e 64 20 60 55 73 65 72 32 60 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 53 53 | `.and.`User2`.will.be.able.to.SS |
| fcbc0 | 48 20 69 6e 74 6f 20 56 79 4f 53 20 61 73 20 75 73 65 72 20 60 60 76 79 6f 73 60 60 20 75 73 69 | H.into.VyOS.as.user.``vyos``.usi |
| fcbe0 | 6e 67 20 74 68 65 69 72 20 76 65 72 79 20 6f 77 6e 20 6b 65 79 73 2e 20 60 55 73 65 72 31 60 20 | ng.their.very.own.keys..`User1`. |
| fcc00 | 69 73 20 72 65 73 74 72 69 63 74 65 64 20 74 6f 20 6f 6e 6c 79 20 62 65 20 61 62 6c 65 20 74 6f | is.restricted.to.only.be.able.to |
| fcc20 | 20 63 6f 6e 6e 65 63 74 20 66 72 6f 6d 20 61 20 73 69 6e 67 6c 65 20 49 50 20 61 64 64 72 65 73 | .connect.from.a.single.IP.addres |
| fcc40 | 73 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 20 69 66 20 70 61 73 73 77 6f 72 64 20 62 61 73 65 20 | s..In.addition.if.password.base. |
| fcc60 | 6c 6f 67 69 6e 20 69 73 20 77 61 6e 74 65 64 20 66 6f 72 20 74 68 65 20 60 60 76 79 6f 73 60 60 | login.is.wanted.for.the.``vyos`` |
| fcc80 | 20 75 73 65 72 20 61 20 32 46 41 2f 4d 46 41 20 6b 65 79 63 6f 64 65 20 69 73 20 72 65 71 75 69 | .user.a.2FA/MFA.keycode.is.requi |
| fcca0 | 72 65 64 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 70 61 73 73 77 6f 72 64 2e | red.in.addition.to.the.password. |
| fccc0 | 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 74 68 65 20 49 | .In.the.following.example,.the.I |
| fcce0 | 50 73 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 20 63 6c 69 65 6e 74 73 20 61 72 65 20 64 65 | Ps.for.the.remote.clients.are.de |
| fcd00 | 66 69 6e 65 64 20 69 6e 20 74 68 65 20 70 65 65 72 73 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 | fined.in.the.peers..This.allows. |
| fcd20 | 74 68 65 20 70 65 65 72 73 20 74 6f 20 69 6e 74 65 72 61 63 74 20 77 69 74 68 20 6f 6e 65 20 61 | the.peers.to.interact.with.one.a |
| fcd40 | 6e 6f 74 68 65 72 2e 20 49 6e 20 63 6f 6d 70 61 72 69 73 6f 6e 20 74 6f 20 74 68 65 20 73 69 74 | nother..In.comparison.to.the.sit |
| fcd60 | 65 2d 74 6f 2d 73 69 74 65 20 65 78 61 6d 70 6c 65 20 74 68 65 20 60 60 70 65 72 73 69 73 74 65 | e-to-site.example.the.``persiste |
| fcd80 | 6e 74 2d 6b 65 65 70 61 6c 69 76 65 60 60 20 66 6c 61 67 20 69 73 20 73 65 74 20 74 6f 20 31 35 | nt-keepalive``.flag.is.set.to.15 |
| fcda0 | 20 73 65 63 6f 6e 64 73 20 74 6f 20 61 73 73 75 72 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f | .seconds.to.assure.the.connectio |
| fcdc0 | 6e 20 69 73 20 6b 65 70 74 20 61 6c 69 76 65 2e 20 54 68 69 73 20 69 73 20 6d 61 69 6e 6c 79 20 | n.is.kept.alive..This.is.mainly. |
| fcde0 | 72 65 6c 65 76 61 6e 74 20 69 66 20 6f 6e 65 20 6f 66 20 74 68 65 20 70 65 65 72 73 20 69 73 20 | relevant.if.one.of.the.peers.is. |
| fce00 | 62 65 68 69 6e 64 20 4e 41 54 20 61 6e 64 20 63 61 6e 27 74 20 62 65 20 63 6f 6e 6e 65 63 74 65 | behind.NAT.and.can't.be.connecte |
| fce20 | 64 20 74 6f 20 69 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6c 6f 73 74 2e 20 | d.to.if.the.connection.is.lost.. |
| fce40 | 54 6f 20 62 65 20 65 66 66 65 63 74 69 76 65 20 74 68 69 73 20 76 61 6c 75 65 20 6e 65 65 64 73 | To.be.effective.this.value.needs |
| fce60 | 20 74 6f 20 62 65 20 6c 6f 77 65 72 20 74 68 61 6e 20 74 68 65 20 55 44 50 20 74 69 6d 65 6f 75 | .to.be.lower.than.the.UDP.timeou |
| fce80 | 74 2e 00 49 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 2c 20 77 68 65 | t..In.the.following.example,.whe |
| fcea0 | 6e 20 56 4c 41 4e 39 20 74 72 61 6e 73 69 74 69 6f 6e 73 2c 20 56 4c 41 4e 32 30 20 77 69 6c 6c | n.VLAN9.transitions,.VLAN20.will |
| fcec0 | 20 61 6c 73 6f 20 74 72 61 6e 73 69 74 69 6f 6e 3a 00 49 6e 20 74 68 65 20 66 75 74 75 72 65 20 | .also.transition:.In.the.future. |
| fcee0 | 74 68 69 73 20 69 73 20 65 78 70 65 63 74 65 64 20 74 6f 20 62 65 20 61 20 76 65 72 79 20 75 73 | this.is.expected.to.be.a.very.us |
| fcf00 | 65 66 75 6c 20 70 72 6f 74 6f 63 6f 6c 20 28 74 68 6f 75 67 68 20 74 68 65 72 65 20 61 72 65 20 | eful.protocol.(though.there.are. |
| fcf20 | 60 6f 74 68 65 72 20 70 72 6f 70 6f 73 61 6c 73 60 5f 29 2e 00 49 6e 20 74 68 65 20 6e 65 78 74 | `other.proposals`_)..In.the.next |
| fcf40 | 20 65 78 61 6d 70 6c 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 6f | .example.all.traffic.destined.to |
| fcf60 | 20 60 60 32 30 33 2e 30 2e 31 31 33 2e 31 60 60 20 61 6e 64 20 70 6f 72 74 20 60 60 38 32 38 30 | .``203.0.113.1``.and.port.``8280 |
| fcf80 | 60 60 20 70 72 6f 74 6f 63 6f 6c 20 54 43 50 20 69 73 20 62 61 6c 61 6e 63 65 64 20 62 65 74 77 | ``.protocol.TCP.is.balanced.betw |
| fcfa0 | 65 65 6e 20 32 20 72 65 61 6c 20 73 65 72 76 65 72 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 31 60 | een.2.real.servers.``192.0.2.11` |
| fcfc0 | 60 20 61 6e 64 20 60 60 31 39 32 2e 30 2e 32 2e 31 32 60 60 20 74 6f 20 70 6f 72 74 20 60 60 38 | `.and.``192.0.2.12``.to.port.``8 |
| fcfe0 | 30 60 60 00 49 6e 20 74 68 65 20 70 61 73 74 20 28 56 79 4f 53 20 31 2e 31 29 20 75 73 65 64 20 | 0``.In.the.past.(VyOS.1.1).used. |
| fd000 | 61 20 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 | a.gateway-address.configured.und |
| fd020 | 65 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 72 65 65 20 28 3a 63 66 67 63 6d 64 3a 60 73 65 74 | er.the.system.tree.(:cfgcmd:`set |
| fd040 | 20 73 79 73 74 65 6d 20 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 3c 61 64 64 72 65 73 73 | .system.gateway-address.<address |
| fd060 | 3e 60 29 2c 20 74 68 69 73 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 | >`),.this.is.no.longer.supported |
| fd080 | 20 61 6e 64 20 65 78 69 73 74 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 61 72 65 | .and.existing.configurations.are |
| fd0a0 | 20 6d 69 67 72 61 74 65 64 20 74 6f 20 74 68 65 20 6e 65 77 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 | .migrated.to.the.new.CLI.command |
| fd0c0 | 2e 00 49 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 72 65 65 2c 20 61 6c 6c 20 68 61 72 64 | ..In.this.command.tree,.all.hard |
| fd0e0 | 77 61 72 65 20 61 63 63 65 6c 65 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 77 69 6c 6c 20 62 | ware.acceleration.options.will.b |
| fd100 | 65 20 68 61 6e 64 6c 65 64 2e 20 41 74 20 74 68 65 20 6d 6f 6d 65 6e 74 20 6f 6e 6c 79 20 60 49 | e.handled..At.the.moment.only.`I |
| fd120 | 6e 74 65 6c c2 ae 20 51 41 54 60 5f 20 69 73 20 73 75 70 70 6f 72 74 65 64 00 49 6e 20 74 68 69 | ntel...QAT`_.is.supported.In.thi |
| fd140 | 73 20 65 78 61 6d 70 6c 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 64 65 73 74 69 6e 65 64 20 74 | s.example.all.traffic.destined.t |
| fd160 | 6f 20 70 6f 72 74 73 20 22 38 30 2c 20 32 32 32 32 2c 20 38 38 38 38 22 20 70 72 6f 74 6f 63 6f | o.ports."80,.2222,.8888".protoco |
| fd180 | 6c 20 54 43 50 20 6d 61 72 6b 73 20 74 6f 20 66 77 6d 61 72 6b 20 22 31 31 31 22 20 61 6e 64 20 | l.TCP.marks.to.fwmark."111".and. |
| fd1a0 | 62 61 6c 61 6e 63 65 64 20 62 65 74 77 65 65 6e 20 32 20 72 65 61 6c 20 73 65 72 76 65 72 73 2e | balanced.between.2.real.servers. |
| fd1c0 | 20 50 6f 72 74 20 22 30 22 20 69 73 20 72 65 71 75 69 72 65 64 20 69 66 20 6d 75 6c 74 69 70 6c | .Port."0".is.required.if.multipl |
| fd1e0 | 65 20 70 6f 72 74 73 20 61 72 65 20 75 73 65 64 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c | e.ports.are.used..In.this.exampl |
| fd200 | 65 20 69 6d 61 67 65 2c 20 61 20 73 69 6d 70 6c 69 66 65 64 20 74 72 61 66 66 69 63 20 66 6c 6f | e.image,.a.simplifed.traffic.flo |
| fd220 | 77 20 69 73 20 73 68 6f 77 6e 20 74 6f 20 68 65 6c 70 20 70 72 6f 76 69 64 65 20 63 6f 6e 74 65 | w.is.shown.to.help.provide.conte |
| fd240 | 78 74 20 74 6f 20 74 68 65 20 74 65 72 6d 73 20 6f 66 20 60 66 6f 72 77 61 72 64 60 2c 20 60 69 | xt.to.the.terms.of.`forward`,.`i |
| fd260 | 6e 70 75 74 60 2c 20 61 6e 64 20 60 6f 75 74 70 75 74 60 20 66 6f 72 20 74 68 65 20 6e 65 77 20 | nput`,.and.`output`.for.the.new. |
| fd280 | 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 66 6f 72 6d 61 74 2e 00 49 6e 20 74 68 69 73 20 65 78 61 | firewall.CLI.format..In.this.exa |
| fd2a0 | 6d 70 6c 65 20 77 65 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 6d 6f 73 74 20 63 6f 6d 70 6c 69 | mple.we.will.use.the.most.compli |
| fd2c0 | 63 61 74 65 64 20 63 61 73 65 3a 20 61 20 73 65 74 75 70 20 77 68 65 72 65 20 65 61 63 68 20 63 | cated.case:.a.setup.where.each.c |
| fd2e0 | 6c 69 65 6e 74 20 69 73 20 61 20 72 6f 75 74 65 72 20 74 68 61 74 20 68 61 73 20 69 74 73 20 6f | lient.is.a.router.that.has.its.o |
| fd300 | 77 6e 20 73 75 62 6e 65 74 20 28 74 68 69 6e 6b 20 48 51 20 61 6e 64 20 62 72 61 6e 63 68 20 6f | wn.subnet.(think.HQ.and.branch.o |
| fd320 | 66 66 69 63 65 73 29 2c 20 73 69 6e 63 65 20 73 69 6d 70 6c 65 72 20 73 65 74 75 70 73 20 61 72 | ffices),.since.simpler.setups.ar |
| fd340 | 65 20 73 75 62 73 65 74 73 20 6f 66 20 69 74 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 | e.subsets.of.it..In.this.example |
| fd360 | 2c 20 73 6f 6d 65 20 2a 4f 70 65 6e 4e 49 43 2a 20 73 65 72 76 65 72 73 20 61 72 65 20 75 73 65 | ,.some.*OpenNIC*.servers.are.use |
| fd380 | 64 2c 20 74 77 6f 20 49 50 76 34 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 74 77 6f 20 49 50 | d,.two.IPv4.addresses.and.two.IP |
| fd3a0 | 76 36 20 61 64 64 72 65 73 73 65 73 3a 00 49 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 | v6.addresses:.In.this.example,.w |
| fd3c0 | 65 20 63 61 6e 20 6f 62 73 65 72 76 65 20 74 68 61 74 20 64 69 66 66 65 72 65 6e 74 20 44 53 43 | e.can.observe.that.different.DSC |
| fd3e0 | 50 20 63 72 69 74 65 72 69 61 20 61 72 65 20 64 65 66 69 6e 65 64 20 62 61 73 65 64 20 6f 6e 20 | P.criteria.are.defined.based.on. |
| fd400 | 6f 75 72 20 51 6f 53 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 74 68 69 6e 20 74 68 65 | our.QoS.configuration.within.the |
| fd420 | 20 73 61 6d 65 20 70 6f 6c 69 63 79 20 67 72 6f 75 70 2e 00 49 6e 20 74 68 69 73 20 65 78 61 6d | .same.policy.group..In.this.exam |
| fd440 | 70 6c 65 2c 20 77 65 20 75 73 65 20 2a 2a 6d 61 73 71 75 65 72 61 64 65 2a 2a 20 61 73 20 74 68 | ple,.we.use.**masquerade**.as.th |
| fd460 | 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 69 6e 73 74 65 61 64 20 6f 66 | e.translation.address.instead.of |
| fd480 | 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 2a 2a 6d 61 73 71 75 65 72 61 64 65 | .an.IP.address..The.**masquerade |
| fd4a0 | 2a 2a 20 74 61 72 67 65 74 20 69 73 20 65 66 66 65 63 74 69 76 65 6c 79 20 61 6e 20 61 6c 69 61 | **.target.is.effectively.an.alia |
| fd4c0 | 73 20 74 6f 20 73 61 79 20 22 75 73 65 20 77 68 61 74 65 76 65 72 20 49 50 20 61 64 64 72 65 73 | s.to.say."use.whatever.IP.addres |
| fd4e0 | 73 20 69 73 20 6f 6e 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 22 2c | s.is.on.the.outgoing.interface", |
| fd500 | 20 72 61 74 68 65 72 20 74 68 61 6e 20 61 20 73 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 67 | .rather.than.a.statically.config |
| fd520 | 75 72 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 | ured.IP.address..This.is.useful. |
| fd540 | 69 66 20 79 6f 75 20 75 73 65 20 44 48 43 50 20 66 6f 72 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e | if.you.use.DHCP.for.your.outgoin |
| fd560 | 67 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 77 68 61 74 | g.interface.and.do.not.know.what |
| fd580 | 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 2e 00 49 | .the.external.address.will.be..I |
| fd5a0 | 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 2c 20 77 65 20 77 69 6c 6c 20 62 65 20 75 73 69 6e 67 | n.this.example,.we.will.be.using |
| fd5c0 | 20 74 68 65 20 65 78 61 6d 70 6c 65 20 51 75 69 63 6b 20 53 74 61 72 74 20 63 6f 6e 66 69 67 75 | .the.example.Quick.Start.configu |
| fd5e0 | 72 61 74 69 6f 6e 20 61 62 6f 76 65 20 61 73 20 61 20 73 74 61 72 74 69 6e 67 20 70 6f 69 6e 74 | ration.above.as.a.starting.point |
| fd600 | 2e 00 49 6e 20 74 68 69 73 20 6d 65 74 68 6f 64 2c 20 74 68 65 20 44 53 4c 20 4d 6f 64 65 6d 2f | ..In.this.method,.the.DSL.Modem/ |
| fd620 | 52 6f 75 74 65 72 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 74 68 65 20 49 53 50 20 66 6f 72 20 79 | Router.connects.to.the.ISP.for.y |
| fd640 | 6f 75 20 77 69 74 68 20 79 6f 75 72 20 63 72 65 64 65 6e 74 69 61 6c 73 20 70 72 65 70 72 6f 67 | ou.with.your.credentials.preprog |
| fd660 | 72 61 6d 6d 65 64 20 69 6e 74 6f 20 74 68 65 20 64 65 76 69 63 65 2e 20 54 68 69 73 20 67 69 76 | rammed.into.the.device..This.giv |
| fd680 | 65 73 20 79 6f 75 20 61 6e 20 3a 72 66 63 3a 60 31 39 31 38 60 20 61 64 64 72 65 73 73 2c 20 73 | es.you.an.:rfc:`1918`.address,.s |
| fd6a0 | 75 63 68 20 61 73 20 60 60 31 39 32 2e 31 36 38 2e 31 2e 30 2f 32 34 60 60 20 62 79 20 64 65 66 | uch.as.``192.168.1.0/24``.by.def |
| fd6c0 | 61 75 6c 74 2e 00 49 6e 20 74 68 69 73 20 73 63 65 6e 61 72 69 6f 3a 00 49 6e 20 74 68 69 73 20 | ault..In.this.scenario:.In.this. |
| fd6e0 | 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 | section.there's.useful.informati |
| fd700 | 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | on.of.all.firewall.configuration |
| fd720 | 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 | .that.can.be.done.regarding.IPv4 |
| fd740 | 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 | ,.and.appropiate.op-mode.command |
| fd760 | 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 | s..Configuration.commands.covere |
| fd780 | 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 | d.in.this.section:.In.this.secti |
| fd7a0 | 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 | on.there's.useful.information.of |
| fd7c0 | 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 | .all.firewall.configuration.that |
| fd7e0 | 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 34 2c 20 61 6e 64 | .can.be.done.regarding.IPv4,.and |
| fd800 | 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 | .appropriate.op-mode.commands..C |
| fd820 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e | onfiguration.commands.covered.in |
| fd840 | 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 | .this.section:.In.this.section.t |
| fd860 | 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c | here's.useful.information.of.all |
| fd880 | 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e | .firewall.configuration.that.can |
| fd8a0 | 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 36 2c 20 61 6e 64 20 61 70 70 | .be.done.regarding.IPv6,.and.app |
| fd8c0 | 72 6f 70 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 | ropiate.op-mode.commands..Config |
| fd8e0 | 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 | uration.commands.covered.in.this |
| fd900 | 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 | .section:.In.this.section.there' |
| fd920 | 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 | s.useful.information.of.all.fire |
| fd940 | 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 | wall.configuration.that.can.be.d |
| fd960 | 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 49 50 76 36 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 | one.regarding.IPv6,.and.appropri |
| fd980 | 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 | ate.op-mode.commands..Configurat |
| fd9a0 | 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 | ion.commands.covered.in.this.sec |
| fd9c0 | 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 | tion:.In.this.section.there's.us |
| fd9e0 | 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c | eful.information.of.all.firewall |
| fda00 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 | .configuration.that.can.be.done. |
| fda20 | 72 65 67 61 72 64 69 6e 67 20 62 72 69 64 67 65 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 74 65 | regarding.bridge,.and.appropiate |
| fda40 | 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e | .op-mode.commands..Configuration |
| fda60 | 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f | .commands.covered.in.this.sectio |
| fda80 | 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 | n:.In.this.section.there's.usefu |
| fdaa0 | 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f | l.information.of.all.firewall.co |
| fdac0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 | nfiguration.that.can.be.done.reg |
| fdae0 | 61 72 64 69 6e 67 20 62 72 69 64 67 65 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f | arding.bridge,.and.appropriate.o |
| fdb00 | 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 | p-mode.commands..Configuration.c |
| fdb20 | 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a | ommands.covered.in.this.section: |
| fdb40 | 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 | .In.this.section.there's.useful. |
| fdb60 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 | information.of.all.firewall.conf |
| fdb80 | 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 | iguration.that.can.be.done.regar |
| fdba0 | 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 73 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 | ding.flowtables.In.this.section. |
| fdbc0 | 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c | there's.useful.information.of.al |
| fdbe0 | 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 | l.firewall.configuration.that.ca |
| fdc00 | 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 73 2e 00 | n.be.done.regarding.flowtables.. |
| fdc20 | 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 | In.this.section.there's.useful.i |
| fdc40 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 | nformation.of.all.firewall.confi |
| fdc60 | 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 69 73 20 6e 65 65 64 65 64 20 66 6f 72 20 7a 6f 6e 65 | guration.that.is.needed.for.zone |
| fdc80 | 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 | -based.firewall..Configuration.c |
| fdca0 | 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a | ommands.covered.in.this.section: |
| fdcc0 | 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 | .In.this.section.there's.useful. |
| fdce0 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 | information.on.all.firewall.conf |
| fdd00 | 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 | iguration.that.can.be.done.regar |
| fdd20 | 64 69 6e 67 20 49 50 76 34 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f | ding.IPv4,.and.appropriate.op-mo |
| fdd40 | 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 | de.commands..Configuration.comma |
| fdd60 | 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 | nds.covered.in.this.section:.In. |
| fdd80 | 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f | this.section.there's.useful.info |
| fdda0 | 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 | rmation.on.all.firewall.configur |
| fddc0 | 61 74 69 6f 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 | ation.that.can.be.done.regarding |
| fdde0 | 20 49 50 76 36 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 | .IPv6,.and.appropriate.op-mode.c |
| fde00 | 6f 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 | ommands..Configuration.commands. |
| fde20 | 63 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 | covered.in.this.section:.In.this |
| fde40 | 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 | .section.there's.useful.informat |
| fde60 | 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ion.on.all.firewall.configuratio |
| fde80 | 6e 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 62 72 69 | n.that.can.be.done.regarding.bri |
| fdea0 | 64 67 65 73 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 6f 70 2d 6d 6f 64 65 20 63 6f | dges,.and.appropriate.op-mode.co |
| fdec0 | 6d 6d 61 6e 64 73 2e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 | mmands..Configuration.commands.c |
| fdee0 | 6f 76 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 | overed.in.this.section:.In.this. |
| fdf00 | 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 | section.there's.useful.informati |
| fdf20 | 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | on.on.all.firewall.configuration |
| fdf40 | 20 74 68 61 74 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 72 65 67 61 72 64 69 6e 67 20 66 6c 6f 77 | .that.can.be.done.regarding.flow |
| fdf60 | 74 61 62 6c 65 73 2e 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 | tables..In.this.section.there's. |
| fdf80 | 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 61 6c 6c 20 66 69 72 65 77 61 | useful.information.on.all.firewa |
| fdfa0 | 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 68 61 74 20 69 73 20 6e 65 65 64 65 64 20 | ll.configuration.that.is.needed. |
| fdfc0 | 66 6f 72 20 74 68 65 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 2e 20 43 6f 6e | for.the.zone-based.firewall..Con |
| fdfe0 | 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 63 6f 76 65 72 65 64 20 69 6e 20 74 | figuration.commands.covered.in.t |
| fe000 | 68 69 73 20 73 65 63 74 69 6f 6e 3a 00 49 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 20 79 6f 75 | his.section:.In.this.section.you |
| fe020 | 20 63 61 6e 20 66 69 6e 64 20 61 6c 6c 20 75 73 65 66 75 6c 20 66 69 72 65 77 61 6c 6c 20 6f 70 | .can.find.all.useful.firewall.op |
| fe040 | 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 00 49 6e 20 74 72 61 6e 73 70 61 72 65 6e 74 20 70 | -mode.commands..In.transparent.p |
| fe060 | 72 6f 78 79 20 6d 6f 64 65 2c 20 61 6c 6c 20 74 72 61 66 66 69 63 20 61 72 72 69 76 69 6e 67 20 | roxy.mode,.all.traffic.arriving. |
| fe080 | 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 65 20 | on.port.80.and.destined.for.the. |
| fe0a0 | 49 6e 74 65 72 6e 65 74 20 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 66 6f 72 77 61 72 | Internet.is.automatically.forwar |
| fe0c0 | 64 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 70 72 6f 78 79 2e 20 54 68 69 73 20 61 6c 6c 6f | ded.through.the.proxy..This.allo |
| fe0e0 | 77 73 20 69 6d 6d 65 64 69 61 74 65 20 70 72 6f 78 79 20 66 6f 72 77 61 72 64 69 6e 67 20 77 69 | ws.immediate.proxy.forwarding.wi |
| fe100 | 74 68 6f 75 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 63 6c 69 65 6e 74 20 62 72 6f 77 73 65 72 | thout.configuring.client.browser |
| fe120 | 73 2e 00 49 6e 20 74 79 70 69 63 61 6c 20 75 73 65 73 20 6f 66 20 53 4e 4d 50 2c 20 6f 6e 65 20 | s..In.typical.uses.of.SNMP,.one. |
| fe140 | 6f 72 20 6d 6f 72 65 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 63 6f 6d 70 75 74 65 72 73 | or.more.administrative.computers |
| fe160 | 20 63 61 6c 6c 65 64 20 6d 61 6e 61 67 65 72 73 20 68 61 76 65 20 74 68 65 20 74 61 73 6b 20 6f | .called.managers.have.the.task.o |
| fe180 | 66 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 6f 72 20 6d 61 6e 61 67 69 6e 67 20 61 20 67 72 6f 75 70 | f.monitoring.or.managing.a.group |
| fe1a0 | 20 6f 66 20 68 6f 73 74 73 20 6f 72 20 64 65 76 69 63 65 73 20 6f 6e 20 61 20 63 6f 6d 70 75 74 | .of.hosts.or.devices.on.a.comput |
| fe1c0 | 65 72 20 6e 65 74 77 6f 72 6b 2e 20 45 61 63 68 20 6d 61 6e 61 67 65 64 20 73 79 73 74 65 6d 20 | er.network..Each.managed.system. |
| fe1e0 | 65 78 65 63 75 74 65 73 20 61 20 73 6f 66 74 77 61 72 65 20 63 6f 6d 70 6f 6e 65 6e 74 20 63 61 | executes.a.software.component.ca |
| fe200 | 6c 6c 65 64 20 61 6e 20 61 67 65 6e 74 20 77 68 69 63 68 20 72 65 70 6f 72 74 73 20 69 6e 66 6f | lled.an.agent.which.reports.info |
| fe220 | 72 6d 61 74 69 6f 6e 20 76 69 61 20 53 4e 4d 50 20 74 6f 20 74 68 65 20 6d 61 6e 61 67 65 72 2e | rmation.via.SNMP.to.the.manager. |
| fe240 | 00 49 6e 20 7a 6f 6e 65 2d 62 61 73 65 64 20 70 6f 6c 69 63 79 2c 20 69 6e 74 65 72 66 61 63 65 | .In.zone-based.policy,.interface |
| fe260 | 73 20 61 72 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 7a 6f 6e 65 73 2c 20 61 6e 64 20 69 6e 73 | s.are.assigned.to.zones,.and.ins |
| fe280 | 70 65 63 74 69 6f 6e 20 70 6f 6c 69 63 79 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 72 61 | pection.policy.is.applied.to.tra |
| fe2a0 | 66 66 69 63 20 6d 6f 76 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 20 7a 6f 6e 65 73 20 61 6e | ffic.moving.between.the.zones.an |
| fe2c0 | 64 20 61 63 74 65 64 20 6f 6e 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 66 69 72 65 77 61 6c 6c | d.acted.on.according.to.firewall |
| fe2e0 | 20 72 75 6c 65 73 2e 20 41 20 5a 6f 6e 65 20 69 73 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 | .rules..A.Zone.is.a.group.of.int |
| fe300 | 65 72 66 61 63 65 73 20 74 68 61 74 20 68 61 76 65 20 73 69 6d 69 6c 61 72 20 66 75 6e 63 74 69 | erfaces.that.have.similar.functi |
| fe320 | 6f 6e 73 20 6f 72 20 66 65 61 74 75 72 65 73 2e 20 49 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 | ons.or.features..It.establishes. |
| fe340 | 74 68 65 20 73 65 63 75 72 69 74 79 20 62 6f 72 64 65 72 73 20 6f 66 20 61 20 6e 65 74 77 6f 72 | the.security.borders.of.a.networ |
| fe360 | 6b 2e 20 41 20 7a 6f 6e 65 20 64 65 66 69 6e 65 73 20 61 20 62 6f 75 6e 64 61 72 79 20 77 68 65 | k..A.zone.defines.a.boundary.whe |
| fe380 | 72 65 20 74 72 61 66 66 69 63 20 69 73 20 73 75 62 6a 65 63 74 65 64 20 74 6f 20 70 6f 6c 69 63 | re.traffic.is.subjected.to.polic |
| fe3a0 | 79 20 72 65 73 74 72 69 63 74 69 6f 6e 73 20 61 73 20 69 74 20 63 72 6f 73 73 65 73 20 74 6f 20 | y.restrictions.as.it.crosses.to. |
| fe3c0 | 61 6e 6f 74 68 65 72 20 72 65 67 69 6f 6e 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 00 49 6e 20 | another.region.of.a.network..In. |
| fe3e0 | 7a 6f 6e 65 2d 62 61 73 65 64 20 70 6f 6c 69 63 79 2c 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 | zone-based.policy,.interfaces.ar |
| fe400 | 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 7a 6f 6e 65 73 2c 20 61 6e 64 20 69 6e 73 70 65 63 74 | e.assigned.to.zones,.and.inspect |
| fe420 | 69 6f 6e 20 70 6f 6c 69 63 79 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 72 61 66 66 69 63 | ion.policy.is.applied.to.traffic |
| fe440 | 20 6d 6f 76 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 20 7a 6f 6e 65 73 20 61 6e 64 20 61 63 | .moving.between.the.zones.and.ac |
| fe460 | 74 65 64 20 6f 6e 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 72 75 6c | ted.on.according.to.firewall.rul |
| fe480 | 65 73 2e 20 41 20 7a 6f 6e 65 20 69 73 20 61 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 66 61 | es..A.zone.is.a.group.of.interfa |
| fe4a0 | 63 65 73 20 74 68 61 74 20 68 61 76 65 20 73 69 6d 69 6c 61 72 20 66 75 6e 63 74 69 6f 6e 73 20 | ces.that.have.similar.functions. |
| fe4c0 | 6f 72 20 66 65 61 74 75 72 65 73 2e 20 49 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 | or.features..It.establishes.the. |
| fe4e0 | 73 65 63 75 72 69 74 79 20 62 6f 72 64 65 72 73 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 20 41 | security.borders.of.a.network..A |
| fe500 | 20 7a 6f 6e 65 20 64 65 66 69 6e 65 73 20 61 20 62 6f 75 6e 64 61 72 79 20 77 68 65 72 65 20 74 | .zone.defines.a.boundary.where.t |
| fe520 | 72 61 66 66 69 63 20 69 73 20 73 75 62 6a 65 63 74 65 64 20 74 6f 20 70 6f 6c 69 63 79 20 72 65 | raffic.is.subjected.to.policy.re |
| fe540 | 73 74 72 69 63 74 69 6f 6e 73 20 61 73 20 69 74 20 63 72 6f 73 73 65 73 20 74 6f 20 61 6e 6f 74 | strictions.as.it.crosses.to.anot |
| fe560 | 68 65 72 20 72 65 67 69 6f 6e 20 6f 66 20 61 20 6e 65 74 77 6f 72 6b 2e 00 49 6e 62 6f 75 6e 64 | her.region.of.a.network..Inbound |
| fe580 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 61 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 | .connections.to.a.WAN.interface. |
| fe5a0 | 63 61 6e 20 62 65 20 69 6d 70 72 6f 70 65 72 6c 79 20 68 61 6e 64 6c 65 64 20 77 68 65 6e 20 74 | can.be.improperly.handled.when.t |
| fe5c0 | 68 65 20 72 65 70 6c 79 20 69 73 20 73 65 6e 74 20 62 61 63 6b 20 74 6f 20 74 68 65 20 63 6c 69 | he.reply.is.sent.back.to.the.cli |
| fe5e0 | 65 6e 74 2e 00 49 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 20 69 73 20 72 65 63 65 69 76 65 | ent..Incoming.traffic.is.receive |
| fe600 | 64 20 62 79 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 6c 61 76 65 2e 20 49 66 20 74 68 65 20 72 | d.by.the.current.slave..If.the.r |
| fe620 | 65 63 65 69 76 69 6e 67 20 73 6c 61 76 65 20 66 61 69 6c 73 2c 20 61 6e 6f 74 68 65 72 20 73 6c | eceiving.slave.fails,.another.sl |
| fe640 | 61 76 65 20 74 61 6b 65 73 20 6f 76 65 72 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f | ave.takes.over.the.MAC.address.o |
| fe660 | 66 20 74 68 65 20 66 61 69 6c 65 64 20 72 65 63 65 69 76 69 6e 67 20 73 6c 61 76 65 2e 00 49 6e | f.the.failed.receiving.slave..In |
| fe680 | 63 72 65 61 73 65 20 4d 61 78 69 6d 75 6d 20 4d 50 44 55 20 6c 65 6e 67 74 68 20 74 6f 20 37 39 | crease.Maximum.MPDU.length.to.79 |
| fe6a0 | 39 31 20 6f 72 20 31 31 34 35 34 20 6f 63 74 65 74 73 20 28 64 65 66 61 75 6c 74 20 33 38 39 35 | 91.or.11454.octets.(default.3895 |
| fe6c0 | 20 6f 63 74 65 74 73 29 00 49 6e 64 69 63 61 74 69 6f 6e 00 49 6e 64 69 76 69 64 75 61 6c 20 43 | .octets).Indication.Individual.C |
| fe6e0 | 6c 69 65 6e 74 20 53 75 62 6e 65 74 00 49 6e 66 6f 72 6d 20 63 6c 69 65 6e 74 20 74 68 61 74 20 | lient.Subnet.Inform.client.that. |
| fe700 | 74 68 65 20 44 4e 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 61 74 20 60 | the.DNS.server.can.be.found.at.` |
| fe720 | 3c 61 64 64 72 65 73 73 3e 60 2e 00 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 67 61 74 68 65 72 65 64 | <address>`..Information.gathered |
| fe740 | 20 77 69 74 68 20 4c 4c 44 50 20 69 73 20 73 74 6f 72 65 64 20 69 6e 20 74 68 65 20 64 65 76 69 | .with.LLDP.is.stored.in.the.devi |
| fe760 | 63 65 20 61 73 20 61 20 3a 61 62 62 72 3a 60 4d 49 42 20 28 4d 61 6e 61 67 65 6d 65 6e 74 20 49 | ce.as.a.:abbr:`MIB.(Management.I |
| fe780 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 44 61 74 61 62 61 73 65 29 60 20 61 6e 64 20 63 61 6e 20 62 65 | nformation.Database)`.and.can.be |
| fe7a0 | 20 71 75 65 72 69 65 64 20 77 69 74 68 20 3a 61 62 62 72 3a 60 53 4e 4d 50 20 28 53 69 6d 70 6c | .queried.with.:abbr:`SNMP.(Simpl |
| fe7c0 | 65 20 4e 65 74 77 6f 72 6b 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 | e.Network.Management.Protocol)`. |
| fe7e0 | 61 73 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 39 32 32 60 2e 20 54 68 65 | as.specified.in.:rfc:`2922`..The |
| fe800 | 20 74 6f 70 6f 6c 6f 67 79 20 6f 66 20 61 6e 20 4c 4c 44 50 2d 65 6e 61 62 6c 65 64 20 6e 65 74 | .topology.of.an.LLDP-enabled.net |
| fe820 | 77 6f 72 6b 20 63 61 6e 20 62 65 20 64 69 73 63 6f 76 65 72 65 64 20 62 79 20 63 72 61 77 6c 69 | work.can.be.discovered.by.crawli |
| fe840 | 6e 67 20 74 68 65 20 68 6f 73 74 73 20 61 6e 64 20 71 75 65 72 79 69 6e 67 20 74 68 69 73 20 64 | ng.the.hosts.and.querying.this.d |
| fe860 | 61 74 61 62 61 73 65 2e 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 6d 61 79 20 62 65 | atabase..Information.that.may.be |
| fe880 | 20 72 65 74 72 69 65 76 65 64 20 69 6e 63 6c 75 64 65 3a 00 49 6e 66 6f 72 6d 61 74 69 6f 6e 61 | .retrieved.include:.Informationa |
| fe8a0 | 6c 00 49 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 20 6d 65 73 73 61 67 65 73 00 49 6e 70 75 74 20 66 | l.Informational.messages.Input.f |
| fe8c0 | 72 6f 6d 20 60 65 74 68 30 60 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 00 49 6e 73 | rom.`eth0`.network.interface.Ins |
| fe8e0 | 70 65 63 74 20 6c 6f 67 73 3a 00 49 6e 73 74 61 6c 6c 20 74 68 65 20 63 6c 69 65 6e 74 20 73 6f | pect.logs:.Install.the.client.so |
| fe900 | 66 74 77 61 72 65 20 76 69 61 20 61 70 74 20 61 6e 64 20 65 78 65 63 75 74 65 20 70 70 74 70 73 | ftware.via.apt.and.execute.pptps |
| fe920 | 65 74 75 70 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 | etup.to.generate.the.configurati |
| fe940 | 6f 6e 2e 00 49 6e 73 74 65 61 64 20 6f 66 20 61 20 6e 75 6d 65 72 69 63 61 6c 20 4d 53 53 20 76 | on..Instead.of.a.numerical.MSS.v |
| fe960 | 61 6c 75 65 20 60 63 6c 61 6d 70 2d 6d 73 73 2d 74 6f 2d 70 6d 74 75 60 20 63 61 6e 20 62 65 20 | alue.`clamp-mss-to-pmtu`.can.be. |
| fe980 | 75 73 65 64 20 74 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 73 65 74 20 74 68 65 20 70 72 | used.to.automatically.set.the.pr |
| fe9a0 | 6f 70 65 72 20 76 61 6c 75 65 2e 00 49 6e 73 74 65 61 64 20 6f 66 20 70 61 73 73 77 6f 72 64 20 | oper.value..Instead.of.password. |
| fe9c0 | 6f 6e 6c 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 32 46 41 20 70 61 73 73 77 6f 72 | only.authentication,.2FA.passwor |
| fe9e0 | 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 2b 20 4f 54 50 20 6b 65 79 20 63 61 6e 20 62 | d.authentication.+.OTP.key.can.b |
| fea00 | 65 20 75 73 65 64 2e 20 41 6c 74 65 72 6e 61 74 69 76 65 6c 79 2c 20 4f 54 50 20 61 75 74 68 65 | e.used..Alternatively,.OTP.authe |
| fea20 | 6e 74 69 63 61 74 69 6f 6e 20 6f 6e 6c 79 2c 20 77 69 74 68 6f 75 74 20 61 20 70 61 73 73 77 6f | ntication.only,.without.a.passwo |
| fea40 | 72 64 2c 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 61 6e 20 | rd,.can.be.used..To.do.this,.an. |
| fea60 | 4f 54 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 61 64 64 65 64 20 | OTP.configuration.must.be.added. |
| fea80 | 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 3a 00 49 6e 73 74 | to.the.configuration.above:.Inst |
| feaa0 | 65 61 64 20 6f 66 20 73 65 6e 64 69 6e 67 20 74 68 65 20 72 65 61 6c 20 73 79 73 74 65 6d 20 68 | ead.of.sending.the.real.system.h |
| feac0 | 6f 73 74 6e 61 6d 65 20 74 6f 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 2c 20 6f 76 65 72 | ostname.to.the.DHCP.server,.over |
| feae0 | 77 72 69 74 65 20 74 68 65 20 68 6f 73 74 2d 6e 61 6d 65 20 77 69 74 68 20 74 68 69 73 20 67 69 | write.the.host-name.with.this.gi |
| feb00 | 76 65 6e 2d 76 61 6c 75 65 2e 00 49 6e 73 74 65 61 64 2c 20 6d 65 6d 62 65 72 73 20 6f 66 20 74 | ven-value..Instead,.members.of.t |
| feb20 | 68 65 73 65 20 67 72 6f 75 70 73 20 61 72 65 20 61 64 64 65 64 20 64 79 6e 61 6d 69 63 61 6c 6c | hese.groups.are.added.dynamicall |
| feb40 | 79 20 75 73 69 6e 67 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2e 00 49 6e 74 65 67 72 69 74 | y.using.firewall.rules..Integrit |
| feb60 | 79 20 e2 80 93 20 4d 65 73 73 61 67 65 20 69 6e 74 65 67 72 69 74 79 20 74 6f 20 65 6e 73 75 72 | y.....Message.integrity.to.ensur |
| feb80 | 65 20 74 68 61 74 20 61 20 70 61 63 6b 65 74 20 68 61 73 20 6e 6f 74 20 62 65 65 6e 20 74 61 6d | e.that.a.packet.has.not.been.tam |
| feba0 | 70 65 72 65 64 20 77 68 69 6c 65 20 69 6e 20 74 72 61 6e 73 69 74 20 69 6e 63 6c 75 64 69 6e 67 | pered.while.in.transit.including |
| febc0 | 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 70 61 63 6b 65 74 20 72 65 70 6c 61 79 20 70 72 6f 74 65 | .an.optional.packet.replay.prote |
| febe0 | 63 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 2e 00 49 6e 74 65 6c 20 41 58 32 30 30 00 49 6e 74 | ction.mechanism..Intel.AX200.Int |
| fec00 | 65 6c c2 ae 20 51 41 54 00 49 6e 74 65 72 63 6f 6e 6e 65 63 74 20 74 68 65 20 67 6c 6f 62 61 6c | el...QAT.Interconnect.the.global |
| fec20 | 20 56 52 46 20 77 69 74 68 20 76 72 66 20 22 72 65 64 22 20 75 73 69 6e 67 20 74 68 65 20 76 65 | .VRF.with.vrf."red".using.the.ve |
| fec40 | 74 68 31 30 20 3c 2d 3e 20 76 65 74 68 20 31 31 20 70 61 69 72 00 49 6e 74 65 72 66 61 63 65 20 | th10.<->.veth.11.pair.Interface. |
| fec60 | 2a 2a 65 74 68 30 2a 2a 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 75 70 73 74 | **eth0**.used.to.connect.to.upst |
| fec80 | 72 65 61 6d 2e 00 49 6e 74 65 72 66 61 63 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 6e | ream..Interface.Configuration.In |
| feca0 | 74 65 72 66 61 63 65 20 47 72 6f 75 70 73 00 49 6e 74 65 72 66 61 63 65 20 52 6f 75 74 65 73 00 | terface.Groups.Interface.Routes. |
| fecc0 | 49 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 20 4c 41 4e 20 69 73 20 62 65 68 69 6e 64 20 4e | Interface.`eth1`.LAN.is.behind.N |
| fece0 | 41 54 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 73 75 62 73 63 72 69 62 65 20 60 31 30 2e 30 2e | AT..In.order.to.subscribe.`10.0. |
| fed00 | 30 2e 30 2f 32 33 60 20 73 75 62 6e 65 74 20 6d 75 6c 74 69 63 61 73 74 20 77 68 69 63 68 20 69 | 0.0/23`.subnet.multicast.which.i |
| fed20 | 73 20 69 6e 20 60 65 74 68 30 60 20 57 41 4e 20 77 65 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 | s.in.`eth0`.WAN.we.need.to.confi |
| fed40 | 67 75 72 65 20 69 67 6d 70 2d 70 72 6f 78 79 2e 00 49 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 | gure.igmp-proxy..Interface.confi |
| fed60 | 67 75 72 61 74 69 6f 6e 00 49 6e 74 65 72 66 61 63 65 20 66 6f 72 20 44 48 43 50 20 52 65 6c 61 | guration.Interface.for.DHCP.Rela |
| fed80 | 79 20 41 67 65 6e 74 20 74 6f 20 66 6f 72 77 61 72 64 20 72 65 71 75 65 73 74 73 20 6f 75 74 2e | y.Agent.to.forward.requests.out. |
| feda0 | 00 49 6e 74 65 72 66 61 63 65 20 66 6f 72 20 44 48 43 50 20 52 65 6c 61 79 20 41 67 65 6e 74 20 | .Interface.for.DHCP.Relay.Agent. |
| fedc0 | 74 6f 20 6c 69 73 74 65 6e 20 66 6f 72 20 72 65 71 75 65 73 74 73 2e 00 49 6e 74 65 72 66 61 63 | to.listen.for.requests..Interfac |
| fede0 | 65 20 73 70 65 63 69 66 69 63 20 63 6f 6d 6d 61 6e 64 73 00 49 6e 74 65 72 66 61 63 65 20 74 6f | e.specific.commands.Interface.to |
| fee00 | 20 75 73 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 | .use.for.syncing.conntrack.entri |
| fee20 | 65 73 2e 00 49 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 66 6f 72 20 56 58 4c 41 4e 20 75 6e 64 | es..Interface.used.for.VXLAN.und |
| fee40 | 65 72 6c 61 79 2e 20 54 68 69 73 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 77 68 65 6e 20 75 73 | erlay..This.is.mandatory.when.us |
| fee60 | 69 6e 67 20 56 58 4c 41 4e 20 76 69 61 20 61 20 6d 75 6c 74 69 63 61 73 74 20 6e 65 74 77 6f 72 | ing.VXLAN.via.a.multicast.networ |
| fee80 | 6b 2e 20 56 58 4c 41 4e 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 65 6e 74 | k..VXLAN.traffic.will.always.ent |
| feea0 | 65 72 20 61 6e 64 20 65 78 69 74 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 49 6e 74 65 | er.and.exit.this.interface..Inte |
| feec0 | 72 66 61 63 65 20 77 65 69 67 68 74 00 49 6e 74 65 72 66 61 63 65 73 00 49 6e 74 65 72 66 61 63 | rface.weight.Interfaces.Interfac |
| feee0 | 65 73 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 49 6e 74 65 72 66 61 63 65 73 20 74 68 61 74 | es.Configuration.Interfaces.that |
| fef00 | 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 74 68 65 20 44 48 43 50 20 72 65 6c 61 79 20 70 | .participate.in.the.DHCP.relay.p |
| fef20 | 72 6f 63 65 73 73 2e 20 49 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 2c | rocess..If.this.command.is.used, |
| fef40 | 20 61 74 20 6c 65 61 73 74 20 74 77 6f 20 65 6e 74 72 69 65 73 20 6f 66 20 69 74 20 61 72 65 20 | .at.least.two.entries.of.it.are. |
| fef60 | 72 65 71 75 69 72 65 64 3a 20 6f 6e 65 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 | required:.one.for.the.interface. |
| fef80 | 74 68 61 74 20 63 61 70 74 75 72 65 73 20 74 68 65 20 64 68 63 70 2d 72 65 71 75 65 73 74 73 2c | that.captures.the.dhcp-requests, |
| fefa0 | 20 61 6e 64 20 6f 6e 65 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 6f | .and.one.for.the.interface.to.fo |
| fefc0 | 72 77 61 72 64 20 73 75 63 68 20 72 65 71 75 65 73 74 73 2e 20 41 20 77 61 72 6e 69 6e 67 20 6d | rward.such.requests..A.warning.m |
| fefe0 | 65 73 73 61 67 65 20 77 69 6c 6c 20 62 65 20 73 68 6f 77 6e 20 69 66 20 74 68 69 73 20 63 6f 6d | essage.will.be.shown.if.this.com |
| ff000 | 6d 61 6e 64 20 69 73 20 75 73 65 64 2c 20 73 69 6e 63 65 20 6e 65 77 20 69 6d 70 6c 65 6d 65 6e | mand.is.used,.since.new.implemen |
| ff020 | 74 61 74 69 6f 6e 73 20 73 68 6f 75 6c 64 20 75 73 65 20 60 60 6c 69 73 74 65 6e 2d 69 6e 74 65 | tations.should.use.``listen-inte |
| ff040 | 72 66 61 63 65 60 60 20 61 6e 64 20 60 60 75 70 73 74 72 65 61 6d 2d 69 6e 74 65 72 66 61 63 65 | rface``.and.``upstream-interface |
| ff060 | 60 60 2e 00 49 6e 74 65 72 66 61 63 65 73 20 77 68 6f 73 65 20 44 48 43 50 20 63 6c 69 65 6e 74 | ``..Interfaces.whose.DHCP.client |
| ff080 | 20 6e 61 6d 65 73 65 72 76 65 72 73 20 74 6f 20 66 6f 72 77 61 72 64 20 72 65 71 75 65 73 74 73 | .nameservers.to.forward.requests |
| ff0a0 | 20 74 6f 2e 00 49 6e 74 65 72 66 61 63 65 73 2c 20 74 68 65 69 72 20 77 65 69 67 68 74 20 61 6e | .to..Interfaces,.their.weight.an |
| ff0c0 | 64 20 74 68 65 20 74 79 70 65 20 6f 66 20 74 72 61 66 66 69 63 20 74 6f 20 62 65 20 62 61 6c 61 | d.the.type.of.traffic.to.be.bala |
| ff0e0 | 6e 63 65 64 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 6e 75 6d 62 65 72 65 64 20 62 61 6c | nced.are.defined.in.numbered.bal |
| ff100 | 61 6e 63 69 6e 67 20 72 75 6c 65 20 73 65 74 73 2e 20 54 68 65 20 72 75 6c 65 20 73 65 74 73 20 | ancing.rule.sets..The.rule.sets. |
| ff120 | 61 72 65 20 65 78 65 63 75 74 65 64 20 69 6e 20 6e 75 6d 65 72 69 63 61 6c 20 6f 72 64 65 72 20 | are.executed.in.numerical.order. |
| ff140 | 61 67 61 69 6e 73 74 20 6f 75 74 67 6f 69 6e 67 20 70 61 63 6b 65 74 73 2e 20 49 6e 20 63 61 73 | against.outgoing.packets..In.cas |
| ff160 | 65 20 6f 66 20 61 20 6d 61 74 63 68 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 | e.of.a.match.the.packet.is.sent. |
| ff180 | 74 68 72 6f 75 67 68 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 73 70 65 63 69 66 69 65 64 20 69 | through.an.interface.specified.i |
| ff1a0 | 6e 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 2e 20 49 66 20 61 20 70 61 63 6b 65 74 | n.the.matching.rule..If.a.packet |
| ff1c0 | 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 20 61 6e 79 20 72 75 6c 65 20 69 74 20 69 73 20 73 65 | .doesn't.match.any.rule.it.is.se |
| ff1e0 | 6e 74 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 73 79 73 74 65 6d 20 72 6f 75 74 69 6e 67 20 74 | nt.by.using.the.system.routing.t |
| ff200 | 61 62 6c 65 2e 20 52 75 6c 65 20 6e 75 6d 62 65 72 73 20 63 61 6e 27 74 20 62 65 20 63 68 61 6e | able..Rule.numbers.can't.be.chan |
| ff220 | 67 65 64 2e 00 49 6e 74 65 72 6e 61 6c 20 61 74 74 61 63 6b 3a 20 61 6e 20 61 74 74 61 63 6b 20 | ged..Internal.attack:.an.attack. |
| ff240 | 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 28 67 65 6e 65 72 | from.the.internal.network.(gener |
| ff260 | 61 74 65 64 20 62 79 20 61 20 63 75 73 74 6f 6d 65 72 29 20 74 6f 77 61 72 64 73 20 74 68 65 20 | ated.by.a.customer).towards.the. |
| ff280 | 69 6e 74 65 72 6e 65 74 20 69 73 20 69 64 65 6e 74 69 66 79 2e 20 49 6e 20 74 68 69 73 20 63 61 | internet.is.identify..In.this.ca |
| ff2a0 | 73 65 2c 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 69 73 20 70 61 | se,.all.connections.from.this.pa |
| ff2c0 | 72 74 69 63 75 6c 61 72 20 49 50 2f 43 75 73 74 6f 6d 65 72 20 77 69 6c 6c 20 62 65 20 62 6c 6f | rticular.IP/Customer.will.be.blo |
| ff2e0 | 63 6b 65 64 2e 00 49 6e 74 65 72 6e 61 6c 6c 79 2c 20 69 6e 20 66 6c 6f 77 2d 61 63 63 6f 75 6e | cked..Internally,.in.flow-accoun |
| ff300 | 74 69 6e 67 20 70 72 6f 63 65 73 73 65 73 20 65 78 69 73 74 20 61 20 62 75 66 66 65 72 20 66 6f | ting.processes.exist.a.buffer.fo |
| ff320 | 72 20 64 61 74 61 20 65 78 63 68 61 6e 67 69 6e 67 20 62 65 74 77 65 65 6e 20 63 6f 72 65 20 70 | r.data.exchanging.between.core.p |
| ff340 | 72 6f 63 65 73 73 20 61 6e 64 20 70 6c 75 67 69 6e 73 20 28 65 61 63 68 20 65 78 70 6f 72 74 20 | rocess.and.plugins.(each.export. |
| ff360 | 74 61 72 67 65 74 20 69 73 20 61 20 73 65 70 61 72 61 74 65 64 20 70 6c 75 67 69 6e 29 2e 20 49 | target.is.a.separated.plugin)..I |
| ff380 | 66 20 79 6f 75 20 68 61 76 65 20 68 69 67 68 20 74 72 61 66 66 69 63 20 6c 65 76 65 6c 73 20 6f | f.you.have.high.traffic.levels.o |
| ff3a0 | 72 20 6e 6f 74 65 64 20 73 6f 6d 65 20 70 72 6f 62 6c 65 6d 73 20 77 69 74 68 20 6d 69 73 73 65 | r.noted.some.problems.with.misse |
| ff3c0 | 64 20 72 65 63 6f 72 64 73 20 6f 72 20 73 74 6f 70 70 69 6e 67 20 65 78 70 6f 72 74 69 6e 67 2c | d.records.or.stopping.exporting, |
| ff3e0 | 20 79 6f 75 20 6d 61 79 20 74 72 79 20 74 6f 20 69 6e 63 72 65 61 73 65 20 61 20 64 65 66 61 75 | .you.may.try.to.increase.a.defau |
| ff400 | 6c 74 20 62 75 66 66 65 72 20 73 69 7a 65 20 28 31 30 20 4d 69 42 29 20 77 69 74 68 20 74 68 65 | lt.buffer.size.(10.MiB).with.the |
| ff420 | 20 6e 65 78 74 20 63 6f 6d 6d 61 6e 64 3a 00 49 6e 74 65 72 6e 65 74 20 4b 65 79 20 45 78 63 68 | .next.command:.Internet.Key.Exch |
| ff440 | 61 6e 67 65 20 76 65 72 73 69 6f 6e 20 32 20 28 49 4b 45 76 32 29 20 69 73 20 61 20 74 75 6e 6e | ange.version.2.(IKEv2).is.a.tunn |
| ff460 | 65 6c 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2c 20 62 61 73 65 64 20 6f 6e 20 49 50 73 65 63 2c 20 | eling.protocol,.based.on.IPsec,. |
| ff480 | 74 68 61 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 61 20 73 65 63 75 72 65 20 56 50 4e 20 63 6f | that.establishes.a.secure.VPN.co |
| ff4a0 | 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 50 4e 20 64 65 76 69 63 65 73 2c | mmunication.between.VPN.devices, |
| ff4c0 | 20 20 61 6e 64 20 64 65 66 69 6e 65 73 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 61 6e 64 20 61 75 | ..and.defines.negotiation.and.au |
| ff4e0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 65 73 20 66 6f 72 20 49 50 73 65 63 | thentication.processes.for.IPsec |
| ff500 | 20 73 65 63 75 72 69 74 79 20 61 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 73 29 2e 20 49 74 | .security.associations.(SAs)..It |
| ff520 | 20 69 73 20 6f 66 74 65 6e 20 6b 6e 6f 77 6e 20 61 73 20 49 4b 45 76 32 2f 49 50 53 65 63 20 6f | .is.often.known.as.IKEv2/IPSec.o |
| ff540 | 72 20 49 50 53 65 63 20 49 4b 45 76 32 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 20 e2 80 94 20 | r.IPSec.IKEv2.remote-access..... |
| ff560 | 6f 72 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 73 20 61 73 20 6f 74 68 65 72 73 20 63 61 6c 6c 20 | or.road-warriors.as.others.call. |
| ff580 | 69 74 2e 00 49 6e 74 65 72 6e 65 74 20 4b 65 79 20 45 78 63 68 61 6e 67 65 20 76 65 72 73 69 6f | it..Internet.Key.Exchange.versio |
| ff5a0 | 6e 20 32 2c 20 49 4b 45 76 32 20 66 6f 72 20 73 68 6f 72 74 2c 20 69 73 20 61 20 72 65 71 75 65 | n.2,.IKEv2.for.short,.is.a.reque |
| ff5c0 | 73 74 2f 72 65 73 70 6f 6e 73 65 20 70 72 6f 74 6f 63 6f 6c 20 64 65 76 65 6c 6f 70 65 64 20 62 | st/response.protocol.developed.b |
| ff5e0 | 79 20 62 6f 74 68 20 43 69 73 63 6f 20 61 6e 64 20 4d 69 63 72 6f 73 6f 66 74 2e 20 49 74 20 69 | y.both.Cisco.and.Microsoft..It.i |
| ff600 | 73 20 75 73 65 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 6e 64 20 73 65 63 75 72 65 20 49 | s.used.to.establish.and.secure.I |
| ff620 | 50 76 34 2f 49 50 76 36 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 65 20 69 74 20 61 20 73 69 | Pv4/IPv6.connections,.be.it.a.si |
| ff640 | 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 4e 20 6f 72 20 66 72 6f 6d 20 61 20 72 6f 61 64 2d 77 61 | te-to-site.VPN.or.from.a.road-wa |
| ff660 | 72 72 69 6f 72 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 61 20 68 75 62 20 73 69 74 65 2e 20 | rrior.connecting.to.a.hub.site.. |
| ff680 | 49 4b 45 76 32 2c 20 77 68 65 6e 20 72 75 6e 20 69 6e 20 70 6f 69 6e 74 2d 74 6f 2d 6d 75 6c 74 | IKEv2,.when.run.in.point-to-mult |
| ff6a0 | 69 70 6f 69 6e 74 2c 20 6f 72 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 73 2f 72 6f 61 64 2d 77 61 | ipoint,.or.remote-access/road-wa |
| ff6c0 | 72 72 69 6f 72 20 6d 6f 64 65 2c 20 73 65 63 75 72 65 73 20 74 68 65 20 73 65 72 76 65 72 2d 73 | rrior.mode,.secures.the.server-s |
| ff6e0 | 69 64 65 20 77 69 74 68 20 61 6e 6f 74 68 65 72 20 6c 61 79 65 72 20 62 79 20 75 73 69 6e 67 20 | ide.with.another.layer.by.using. |
| ff700 | 61 6e 20 78 35 30 39 20 73 69 67 6e 65 64 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 | an.x509.signed.server.certificat |
| ff720 | 65 2e 00 49 6e 74 65 72 6e 65 74 77 6f 72 6b 20 43 6f 6e 74 72 6f 6c 00 49 6e 74 65 72 76 61 6c | e..Internetwork.Control.Interval |
| ff740 | 00 49 6e 74 65 72 76 61 6c 20 28 69 6e 20 73 65 63 6f 6e 64 73 29 20 66 6f 72 20 73 65 6e 64 69 | .Interval.(in.seconds).for.sendi |
| ff760 | 6e 67 20 6d 61 72 6b 20 6d 65 73 73 61 67 65 73 20 74 6f 20 74 68 65 20 73 79 73 6c 6f 67 20 69 | ng.mark.messages.to.the.syslog.i |
| ff780 | 6e 70 75 74 20 74 6f 20 69 6e 64 69 63 61 74 65 20 74 68 61 74 20 74 68 65 20 6c 6f 67 67 69 6e | nput.to.indicate.that.the.loggin |
| ff7a0 | 67 20 73 79 73 74 65 6d 20 69 73 20 66 75 6e 63 74 69 6f 6e 69 6e 67 2e 00 49 6e 74 65 72 76 61 | g.system.is.functioning..Interva |
| ff7c0 | 6c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 00 49 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 | l.in.milliseconds.Interval.in.mi |
| ff7e0 | 6e 75 74 65 73 20 62 65 74 77 65 65 6e 20 75 70 64 61 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 | nutes.between.updates.(default:. |
| ff800 | 36 30 29 00 49 6e 74 72 6f 64 75 63 69 6e 67 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 | 60).Introducing.route.reflectors |
| ff820 | 20 72 65 6d 6f 76 65 73 20 74 68 65 20 6e 65 65 64 20 66 6f 72 20 74 68 65 20 66 75 6c 6c 2d 6d | .removes.the.need.for.the.full-m |
| ff840 | 65 73 68 2e 20 57 68 65 6e 20 79 6f 75 20 63 6f 6e 66 69 67 75 72 65 20 61 20 72 6f 75 74 65 20 | esh..When.you.configure.a.route. |
| ff860 | 72 65 66 6c 65 63 74 6f 72 20 79 6f 75 20 68 61 76 65 20 74 6f 20 74 65 6c 6c 20 74 68 65 20 72 | reflector.you.have.to.tell.the.r |
| ff880 | 6f 75 74 65 72 20 77 68 65 74 68 65 72 20 74 68 65 20 6f 74 68 65 72 20 49 42 47 50 20 72 6f 75 | outer.whether.the.other.IBGP.rou |
| ff8a0 | 74 65 72 20 69 73 20 61 20 63 6c 69 65 6e 74 20 6f 72 20 6e 6f 6e 2d 63 6c 69 65 6e 74 2e 20 41 | ter.is.a.client.or.non-client..A |
| ff8c0 | 20 63 6c 69 65 6e 74 20 69 73 20 61 6e 20 49 42 47 50 20 72 6f 75 74 65 72 20 74 68 61 74 20 74 | .client.is.an.IBGP.router.that.t |
| ff8e0 | 68 65 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 77 69 6c 6c 20 e2 80 9c 72 65 66 6c 65 | he.route.reflector.will....refle |
| ff900 | 63 74 e2 80 9d 20 72 6f 75 74 65 73 20 74 6f 2c 20 74 68 65 20 6e 6f 6e 2d 63 6c 69 65 6e 74 20 | ct....routes.to,.the.non-client. |
| ff920 | 69 73 20 6a 75 73 74 20 61 20 72 65 67 75 6c 61 72 20 49 42 47 50 20 6e 65 69 67 68 62 6f 72 2e | is.just.a.regular.IBGP.neighbor. |
| ff940 | 20 52 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 64 | .Route.reflectors.mechanism.is.d |
| ff960 | 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 34 34 35 36 60 20 61 6e 64 20 75 70 64 61 | escribed.in.:rfc:`4456`.and.upda |
| ff980 | 74 65 64 20 62 79 20 3a 72 66 63 3a 60 37 36 30 36 60 2e 00 49 6e 74 72 75 73 69 6f 6e 20 44 65 | ted.by.:rfc:`7606`..Intrusion.De |
| ff9a0 | 74 65 63 74 69 6f 6e 20 28 49 44 53 29 3a 20 41 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 6b 20 | tection.(IDS):.Analyzes.network. |
| ff9c0 | 74 72 61 66 66 69 63 20 61 6e 64 20 64 65 74 65 63 74 73 20 73 75 73 70 69 63 69 6f 75 73 20 61 | traffic.and.detects.suspicious.a |
| ff9e0 | 63 74 69 76 69 74 69 65 73 2c 20 61 74 74 61 63 6b 73 2c 20 61 6e 64 20 6d 61 6c 69 63 69 6f 75 | ctivities,.attacks,.and.maliciou |
| ffa00 | 73 20 74 72 61 66 66 69 63 2e 20 49 6e 74 72 75 73 69 6f 6e 20 50 72 65 76 65 6e 74 69 6f 6e 20 | s.traffic..Intrusion.Prevention. |
| ffa20 | 28 49 50 53 29 3a 20 42 6c 6f 63 6b 73 20 6f 72 20 6d 6f 64 69 66 69 65 73 20 73 75 73 70 69 63 | (IPS):.Blocks.or.modifies.suspic |
| ffa40 | 69 6f 75 73 20 74 72 61 66 66 69 63 20 69 6e 20 72 65 61 6c 2d 74 69 6d 65 2c 20 70 72 65 76 65 | ious.traffic.in.real-time,.preve |
| ffa60 | 6e 74 69 6e 67 20 61 74 74 61 63 6b 73 20 62 65 66 6f 72 65 20 74 68 65 79 20 70 65 6e 65 74 72 | nting.attacks.before.they.penetr |
| ffa80 | 61 74 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 4e 65 74 77 6f 72 6b 20 53 65 63 75 72 69 74 | ate.the.network..Network.Securit |
| ffaa0 | 79 20 4d 6f 6e 69 74 6f 72 69 6e 67 20 28 4e 53 4d 29 3a 20 43 6f 6c 6c 65 63 74 73 20 61 6e 64 | y.Monitoring.(NSM):.Collects.and |
| ffac0 | 20 61 6e 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 6b 20 64 61 74 61 20 74 6f 20 64 65 74 65 63 74 | .analyzes.network.data.to.detect |
| ffae0 | 20 61 6e 6f 6d 61 6c 69 65 73 20 61 6e 64 20 69 64 65 6e 74 69 66 79 20 74 68 72 65 61 74 73 2e | .anomalies.and.identify.threats. |
| ffb00 | 20 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 53 75 70 70 6f 72 74 3a 20 53 75 72 69 63 61 74 | .Multi-Protocol.Support:.Suricat |
| ffb20 | 61 20 73 75 70 70 6f 72 74 73 20 61 6e 61 6c 79 73 69 73 20 6f 66 20 76 61 72 69 6f 75 73 20 6e | a.supports.analysis.of.various.n |
| ffb40 | 65 74 77 6f 72 6b 20 70 72 6f 74 6f 63 6f 6c 73 20 73 75 63 68 20 61 73 20 48 54 54 50 2c 20 46 | etwork.protocols.such.as.HTTP,.F |
| ffb60 | 54 50 2c 20 53 4d 42 2c 20 61 6e 64 20 6d 61 6e 79 20 6f 74 68 65 72 73 2e 20 49 6e 20 63 6f 6e | TP,.SMB,.and.many.others..In.con |
| ffb80 | 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2c 20 74 68 65 20 63 6f 6d 6d 61 6e 64 73 20 61 72 | figuration.mode,.the.commands.ar |
| ffba0 | 65 20 61 73 20 66 6f 6c 6c 6f 77 73 3a 00 49 74 20 64 69 73 61 62 6c 65 73 20 74 72 61 6e 73 70 | e.as.follows:.It.disables.transp |
| ffbc0 | 61 72 65 6e 74 20 68 75 67 65 20 70 61 67 65 73 2c 20 61 6e 64 20 61 75 74 6f 6d 61 74 69 63 20 | arent.huge.pages,.and.automatic. |
| ffbe0 | 4e 55 4d 41 20 62 61 6c 61 6e 63 69 6e 67 2e 20 49 74 20 61 6c 73 6f 20 75 73 65 73 20 63 70 75 | NUMA.balancing..It.also.uses.cpu |
| ffc00 | 70 6f 77 65 72 20 74 6f 20 73 65 74 20 74 68 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 63 70 75 | power.to.set.the.performance.cpu |
| ffc20 | 66 72 65 71 20 67 6f 76 65 72 6e 6f 72 2c 20 61 6e 64 20 72 65 71 75 65 73 74 73 20 61 20 63 70 | freq.governor,.and.requests.a.cp |
| ffc40 | 75 5f 64 6d 61 5f 6c 61 74 65 6e 63 79 20 76 61 6c 75 65 20 6f 66 20 31 2e 20 49 74 20 61 6c 73 | u_dma_latency.value.of.1..It.als |
| ffc60 | 6f 20 73 65 74 73 20 62 75 73 79 5f 72 65 61 64 20 61 6e 64 20 62 75 73 79 5f 70 6f 6c 6c 20 74 | o.sets.busy_read.and.busy_poll.t |
| ffc80 | 69 6d 65 73 20 74 6f 20 35 30 20 75 73 2c 20 61 6e 64 20 74 63 70 5f 66 61 73 74 6f 70 65 6e 20 | imes.to.50.us,.and.tcp_fastopen. |
| ffca0 | 74 6f 20 33 2e 00 49 74 20 65 6e 61 62 6c 65 73 20 74 72 61 6e 73 70 61 72 65 6e 74 20 68 75 67 | to.3..It.enables.transparent.hug |
| ffcc0 | 65 20 70 61 67 65 73 2c 20 61 6e 64 20 75 73 65 73 20 63 70 75 70 6f 77 65 72 20 74 6f 20 73 65 | e.pages,.and.uses.cpupower.to.se |
| ffce0 | 74 20 74 68 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 63 70 75 66 72 65 71 20 67 6f 76 65 72 6e | t.the.performance.cpufreq.govern |
| ffd00 | 6f 72 2e 20 49 74 20 61 6c 73 6f 20 73 65 74 73 20 60 60 6b 65 72 6e 65 6c 2e 73 63 68 65 64 5f | or..It.also.sets.``kernel.sched_ |
| ffd20 | 6d 69 6e 5f 67 72 61 6e 75 6c 61 72 69 74 79 5f 6e 73 60 60 20 74 6f 20 31 30 20 75 73 2c 20 60 | min_granularity_ns``.to.10.us,.` |
| ffd40 | 60 6b 65 72 6e 65 6c 2e 73 63 68 65 64 5f 77 61 6b 65 75 70 5f 67 72 61 6e 75 6c 61 72 69 74 79 | `kernel.sched_wakeup_granularity |
| ffd60 | 5f 6e 73 60 60 20 74 6f 20 31 35 20 75 73 73 2c 20 61 6e 64 20 60 60 76 6d 2e 64 69 72 74 79 5f | _ns``.to.15.uss,.and.``vm.dirty_ |
| ffd80 | 72 61 74 69 6f 60 60 20 74 6f 20 34 30 25 2e 00 49 74 20 67 65 6e 65 72 61 74 65 73 20 74 68 65 | ratio``.to.40%..It.generates.the |
| ffda0 | 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 | .keypair,.which.includes.the.pub |
| ffdc0 | 6c 69 63 20 61 6e 64 20 70 72 69 76 61 74 65 20 70 61 72 74 73 2e 20 54 68 65 20 6b 65 79 20 69 | lic.and.private.parts..The.key.i |
| ffde0 | 73 20 6e 6f 74 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 2d 20 6f 6e 6c | s.not.stored.on.the.system.-.onl |
| ffe00 | 79 20 61 20 6b 65 79 70 61 69 72 20 69 73 20 67 65 6e 65 72 61 74 65 64 2e 00 49 74 20 68 61 6e | y.a.keypair.is.generated..It.han |
| ffe20 | 64 73 20 6f 75 74 20 70 72 65 66 69 78 65 73 20 60 60 32 30 30 31 3a 64 62 38 3a 30 3a 31 30 3a | ds.out.prefixes.``2001:db8:0:10: |
| ffe40 | 3a 2f 36 34 60 60 20 74 68 72 6f 75 67 68 20 60 60 32 30 30 31 3a 64 62 38 3a 30 3a 31 66 3a 3a | :/64``.through.``2001:db8:0:1f:: |
| ffe60 | 2f 36 34 60 60 2e 00 49 74 20 68 65 6c 70 73 20 74 6f 20 73 75 70 70 6f 72 74 20 61 73 20 48 45 | /64``..It.helps.to.support.as.HE |
| ffe80 | 4c 50 45 52 20 6f 6e 6c 79 20 66 6f 72 20 70 6c 61 6e 6e 65 64 20 72 65 73 74 61 72 74 73 2e 00 | LPER.only.for.planned.restarts.. |
| ffea0 | 49 74 20 68 65 6c 70 73 20 74 6f 20 74 68 69 6e 6b 20 6f 66 20 74 68 65 20 73 79 6e 74 61 78 20 | It.helps.to.think.of.the.syntax. |
| ffec0 | 61 73 3a 20 28 73 65 65 20 62 65 6c 6f 77 29 2e 20 54 68 65 20 27 72 75 6c 65 2d 73 65 74 27 20 | as:.(see.below)..The.'rule-set'. |
| ffee0 | 73 68 6f 75 6c 64 20 62 65 20 77 72 69 74 74 65 6e 20 66 72 6f 6d 20 74 68 65 20 70 65 72 73 70 | should.be.written.from.the.persp |
| fff00 | 65 63 74 69 76 65 20 6f 66 3a 20 2a 53 6f 75 72 63 65 20 5a 6f 6e 65 2a 2d 74 6f 2d 3e 2a 44 65 | ective.of:.*Source.Zone*-to->*De |
| fff20 | 73 74 69 6e 61 74 69 6f 6e 20 5a 6f 6e 65 2a 00 49 74 20 69 73 20 63 6f 6d 70 61 74 69 62 6c 65 | stination.Zone*.It.is.compatible |
| fff40 | 20 77 69 74 68 20 43 69 73 63 6f 20 28 52 29 20 41 6e 79 43 6f 6e 6e 65 63 74 20 28 52 29 20 63 | .with.Cisco.(R).AnyConnect.(R).c |
| fff60 | 6c 69 65 6e 74 73 2e 00 49 74 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 60 60 65 74 68 | lients..It.is.connected.to.``eth |
| fff80 | 31 60 60 00 49 74 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 60 60 65 74 68 31 60 60 2e | 1``.It.is.connected.to.``eth1``. |
| fffa0 | 00 49 74 20 69 73 20 68 69 67 68 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 | .It.is.highly.recommended.to.use |
| fffc0 | 20 53 53 48 20 6b 65 79 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 42 79 20 64 65 66 61 | .SSH.key.authentication..By.defa |
| fffe0 | 75 6c 74 20 74 68 65 72 65 20 69 73 20 6f 6e 6c 79 20 6f 6e 65 20 75 73 65 72 20 28 60 60 76 79 | ult.there.is.only.one.user.(``vy |
| 100000 | 6f 73 60 60 29 2c 20 61 6e 64 20 79 6f 75 20 63 61 6e 20 61 73 73 69 67 6e 20 61 6e 79 20 6e 75 | os``),.and.you.can.assign.any.nu |
| 100020 | 6d 62 65 72 20 6f 66 20 6b 65 79 73 20 74 6f 20 74 68 61 74 20 75 73 65 72 2e 20 59 6f 75 20 63 | mber.of.keys.to.that.user..You.c |
| 100040 | 61 6e 20 67 65 6e 65 72 61 74 65 20 61 20 73 73 68 20 6b 65 79 20 77 69 74 68 20 74 68 65 20 60 | an.generate.a.ssh.key.with.the.` |
| 100060 | 60 73 73 68 2d 6b 65 79 67 65 6e 60 60 20 63 6f 6d 6d 61 6e 64 20 6f 6e 20 79 6f 75 72 20 6c 6f | `ssh-keygen``.command.on.your.lo |
| 100080 | 63 61 6c 20 6d 61 63 68 69 6e 65 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 28 62 79 20 64 65 66 61 | cal.machine,.which.will.(by.defa |
| 1000a0 | 75 6c 74 29 20 73 61 76 65 20 69 74 20 61 73 20 60 60 7e 2f 2e 73 73 68 2f 69 64 5f 72 73 61 2e | ult).save.it.as.``~/.ssh/id_rsa. |
| 1000c0 | 70 75 62 60 60 2e 00 49 74 20 69 73 20 68 69 67 68 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 | pub``..It.is.highly.recommended. |
| 1000e0 | 74 6f 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 62 6f 74 68 | to.use.the.same.address.for.both |
| 100100 | 20 74 68 65 20 4c 44 50 20 72 6f 75 74 65 72 2d 69 64 20 61 6e 64 20 74 68 65 20 64 69 73 63 6f | .the.LDP.router-id.and.the.disco |
| 100120 | 76 65 72 79 20 74 72 61 6e 73 70 6f 72 74 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 66 6f 72 20 | very.transport.address,.but.for. |
| 100140 | 56 79 4f 53 20 4d 50 4c 53 20 4c 44 50 20 74 6f 20 77 6f 72 6b 20 62 6f 74 68 20 70 61 72 61 6d | VyOS.MPLS.LDP.to.work.both.param |
| 100160 | 65 74 65 72 73 20 6d 75 73 74 20 62 65 20 65 78 70 6c 69 63 69 74 6c 79 20 73 65 74 20 69 6e 20 | eters.must.be.explicitly.set.in. |
| 100180 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 49 74 20 69 73 20 69 6d 70 6f 72 74 61 | the.configuration..It.is.importa |
| 1001a0 | 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 77 68 65 6e 20 63 72 65 61 74 69 6e 67 20 66 69 | nt.to.note.that.when.creating.fi |
| 1001c0 | 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 74 68 61 74 20 74 68 65 20 44 4e 41 54 20 74 72 61 6e 73 | rewall.rules.that.the.DNAT.trans |
| 1001e0 | 6c 61 74 69 6f 6e 20 6f 63 63 75 72 73 20 2a 2a 62 65 66 6f 72 65 2a 2a 20 74 72 61 66 66 69 63 | lation.occurs.**before**.traffic |
| 100200 | 20 74 72 61 76 65 72 73 65 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2e 20 49 6e 20 6f 74 68 65 | .traverses.the.firewall..In.othe |
| 100220 | 72 20 77 6f 72 64 73 2c 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 | r.words,.the.destination.address |
| 100240 | 20 68 61 73 20 61 6c 72 65 61 64 79 20 62 65 65 6e 20 74 72 61 6e 73 6c 61 74 65 64 20 74 6f 20 | .has.already.been.translated.to. |
| 100260 | 31 39 32 2e 31 36 38 2e 30 2e 31 30 30 2e 00 49 74 20 69 73 20 69 6d 70 6f 72 74 61 6e 74 20 74 | 192.168.0.100..It.is.important.t |
| 100280 | 6f 20 6e 6f 74 65 20 74 68 61 74 20 77 68 65 6e 20 63 72 65 61 74 69 6e 67 20 66 69 72 65 77 61 | o.note.that.when.creating.firewa |
| 1002a0 | 6c 6c 20 72 75 6c 65 73 2c 20 74 68 65 20 44 4e 41 54 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 6f | ll.rules,.the.DNAT.translation.o |
| 1002c0 | 63 63 75 72 73 20 2a 2a 62 65 66 6f 72 65 2a 2a 20 74 72 61 66 66 69 63 20 74 72 61 76 65 72 73 | ccurs.**before**.traffic.travers |
| 1002e0 | 65 73 20 74 68 65 20 66 69 72 65 77 61 6c 6c 2e 20 49 6e 20 6f 74 68 65 72 20 77 6f 72 64 73 2c | es.the.firewall..In.other.words, |
| 100300 | 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 20 68 61 73 20 61 6c 72 | .the.destination.address.has.alr |
| 100320 | 65 61 64 79 20 62 65 65 6e 20 74 72 61 6e 73 6c 61 74 65 64 20 74 6f 20 31 39 32 2e 31 36 38 2e | eady.been.translated.to.192.168. |
| 100340 | 30 2e 31 30 30 2e 00 49 74 20 69 73 20 6e 6f 74 20 73 75 66 66 69 63 69 65 6e 74 20 74 6f 20 6f | 0.100..It.is.not.sufficient.to.o |
| 100360 | 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 61 20 4c 33 56 50 4e 20 56 52 46 73 20 62 75 74 20 4c | nly.configure.a.L3VPN.VRFs.but.L |
| 100380 | 33 56 50 4e 20 56 52 46 73 20 6d 75 73 74 20 62 65 20 6d 61 69 6e 74 61 69 6e 65 64 2c 20 74 6f | 3VPN.VRFs.must.be.maintained,.to |
| 1003a0 | 6f 2e 46 6f 72 20 4c 33 56 50 4e 20 56 52 46 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 74 68 65 20 | o.For.L3VPN.VRF.maintenance.the. |
| 1003c0 | 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 61 | following.operational.commands.a |
| 1003e0 | 72 65 20 69 6e 20 70 6c 61 63 65 2e 00 49 74 20 69 73 20 6e 6f 74 20 73 75 66 66 69 63 69 65 6e | re.in.place..It.is.not.sufficien |
| 100400 | 74 20 74 6f 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 61 20 56 52 46 20 62 75 74 20 56 52 | t.to.only.configure.a.VRF.but.VR |
| 100420 | 46 73 20 6d 75 73 74 20 62 65 20 6d 61 69 6e 74 61 69 6e 65 64 2c 20 74 6f 6f 2e 20 46 6f 72 20 | Fs.must.be.maintained,.too..For. |
| 100440 | 56 52 46 20 6d 61 69 6e 74 65 6e 61 6e 63 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 | VRF.maintenance.the.following.op |
| 100460 | 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 69 6e 20 70 6c 61 63 65 2e | erational.commands.are.in.place. |
| 100480 | 00 49 74 20 69 73 20 6e 6f 74 20 76 61 6c 69 64 20 74 6f 20 75 73 65 20 74 68 65 20 60 76 69 66 | .It.is.not.valid.to.use.the.`vif |
| 1004a0 | 20 31 60 20 6f 70 74 69 6f 6e 20 66 6f 72 20 56 4c 41 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 | .1`.option.for.VLAN.aware.bridge |
| 1004c0 | 73 20 62 65 63 61 75 73 65 20 56 4c 41 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 73 20 61 73 73 | s.because.VLAN.aware.bridges.ass |
| 1004e0 | 75 6d 65 20 74 68 61 74 20 61 6c 6c 20 75 6e 6c 61 62 65 6c 65 64 20 70 61 63 6b 65 74 73 20 62 | ume.that.all.unlabeled.packets.b |
| 100500 | 65 6c 6f 6e 67 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 4c 41 4e 20 31 20 6d 65 6d 62 | elong.to.the.default.VLAN.1.memb |
| 100520 | 65 72 20 61 6e 64 20 74 68 61 74 20 74 68 65 20 56 4c 41 4e 20 49 44 20 6f 66 20 74 68 65 20 62 | er.and.that.the.VLAN.ID.of.the.b |
| 100540 | 72 69 64 67 65 27 73 20 70 61 72 65 6e 74 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 6c 77 61 | ridge's.parent.interface.is.alwa |
| 100560 | 79 73 20 31 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 65 6e 68 61 6e 63 65 20 61 | ys.1.It.is.possible.to.enhance.a |
| 100580 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 65 63 75 72 69 74 79 20 62 79 20 75 73 69 6e 67 20 | uthentication.security.by.using. |
| 1005a0 | 74 68 65 20 3a 61 62 62 72 3a 60 32 46 41 20 28 54 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 | the.:abbr:`2FA.(Two-factor.authe |
| 1005c0 | 6e 74 69 63 61 74 69 6f 6e 29 60 2f 3a 61 62 62 72 3a 60 4d 46 41 20 28 4d 75 6c 74 69 2d 66 61 | ntication)`/:abbr:`MFA.(Multi-fa |
| 1005e0 | 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 60 20 66 65 61 74 75 72 65 20 74 6f | ctor.authentication)`.feature.to |
| 100600 | 67 65 74 68 65 72 20 77 69 74 68 20 3a 61 62 62 72 3a 60 4f 54 50 20 28 4f 6e 65 2d 54 69 6d 65 | gether.with.:abbr:`OTP.(One-Time |
| 100620 | 2d 50 61 64 29 60 20 6f 6e 20 56 79 4f 53 2e 20 3a 61 62 62 72 3a 60 32 46 41 20 28 54 77 6f 2d | -Pad)`.on.VyOS..:abbr:`2FA.(Two- |
| 100640 | 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 60 2f 3a 61 62 62 72 3a 60 4d | factor.authentication)`/:abbr:`M |
| 100660 | 46 41 20 28 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 29 | FA.(Multi-factor.authentication) |
| 100680 | 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 20 70 65 | `.is.configured.independently.pe |
| 1006a0 | 72 20 65 61 63 68 20 75 73 65 72 2e 20 49 66 20 61 6e 20 4f 54 50 20 6b 65 79 20 69 73 20 63 6f | r.each.user..If.an.OTP.key.is.co |
| 1006c0 | 6e 66 69 67 75 72 65 64 20 66 6f 72 20 61 20 75 73 65 72 2c 20 32 46 41 2f 4d 46 41 20 69 73 20 | nfigured.for.a.user,.2FA/MFA.is. |
| 1006e0 | 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 74 68 61 74 20 70 | automatically.enabled.for.that.p |
| 100700 | 61 72 74 69 63 75 6c 61 72 20 75 73 65 72 2e 20 49 66 20 61 20 75 73 65 72 20 64 6f 65 73 20 6e | articular.user..If.a.user.does.n |
| 100720 | 6f 74 20 68 61 76 65 20 61 6e 20 4f 54 50 20 6b 65 79 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 74 | ot.have.an.OTP.key.configured,.t |
| 100740 | 68 65 72 65 20 69 73 20 6e 6f 20 32 46 41 2f 4d 46 41 20 63 68 65 63 6b 20 66 6f 72 20 74 68 61 | here.is.no.2FA/MFA.check.for.tha |
| 100760 | 74 20 75 73 65 72 2e 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 70 65 72 6d 69 74 | t.user..It.is.possible.to.permit |
| 100780 | 20 42 47 50 20 69 6e 73 74 61 6c 6c 20 56 50 4e 20 70 72 65 66 69 78 65 73 20 77 69 74 68 6f 75 | .BGP.install.VPN.prefixes.withou |
| 1007a0 | 74 20 74 72 61 6e 73 70 6f 72 74 20 6c 61 62 65 6c 73 2e 20 54 68 69 73 20 63 6f 6e 66 69 67 75 | t.transport.labels..This.configu |
| 1007c0 | 72 61 74 69 6f 6e 20 77 69 6c 6c 20 69 6e 73 74 61 6c 6c 20 56 50 4e 20 70 72 65 66 69 78 65 73 | ration.will.install.VPN.prefixes |
| 1007e0 | 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 61 6e 20 65 2d 62 67 70 20 73 65 73 73 69 6f | .originated.from.an.e-bgp.sessio |
| 100800 | 6e 2c 20 61 6e 64 20 77 69 74 68 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 64 69 72 65 63 74 6c | n,.and.with.the.next-hop.directl |
| 100820 | 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 73 | y.connected..It.is.possible.to.s |
| 100840 | 70 65 63 69 66 79 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 66 6f 72 20 69 70 76 36 20 70 | pecify.a.static.route.for.ipv6.p |
| 100860 | 72 65 66 69 78 65 73 20 75 73 69 6e 67 20 61 6e 20 53 52 76 36 20 73 65 67 6d 65 6e 74 73 20 69 | refixes.using.an.SRv6.segments.i |
| 100880 | 6e 73 74 72 75 63 74 69 6f 6e 2e 20 54 68 65 20 60 2f 60 20 73 65 70 61 72 61 74 6f 72 20 63 61 | nstruction..The.`/`.separator.ca |
| 1008a0 | 6e 20 62 65 20 75 73 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 73 65 | n.be.used.to.specify.multiple.se |
| 1008c0 | 67 6d 65 6e 74 20 69 6e 73 74 72 75 63 74 69 6f 6e 73 2e 00 49 74 20 69 73 20 70 6f 73 73 69 62 | gment.instructions..It.is.possib |
| 1008e0 | 6c 65 20 74 6f 20 75 73 65 20 65 69 74 68 65 72 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 55 6e | le.to.use.either.Multicast.or.Un |
| 100900 | 69 63 61 73 74 20 74 6f 20 73 79 6e 63 20 63 6f 6e 6e 74 72 61 63 6b 20 74 72 61 66 66 69 63 2e | icast.to.sync.conntrack.traffic. |
| 100920 | 20 4d 6f 73 74 20 65 78 61 6d 70 6c 65 73 20 62 65 6c 6f 77 20 73 68 6f 77 20 4d 75 6c 74 69 63 | .Most.examples.below.show.Multic |
| 100940 | 61 73 74 2c 20 62 75 74 20 75 6e 69 63 61 73 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 | ast,.but.unicast.can.be.specifie |
| 100960 | 64 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 22 70 65 65 72 22 20 6b 65 79 77 6f 72 6b 20 61 66 | d.by.using.the."peer".keywork.af |
| 100980 | 74 65 72 20 74 68 65 20 73 70 65 63 69 66 69 63 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 61 73 | ter.the.specificed.interface,.as |
| 1009a0 | 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a 00 49 74 20 69 73 | .in.the.following.example:.It.is |
| 1009c0 | 20 70 6f 73 73 69 62 6c 65 20 74 6f 20 75 73 65 20 65 69 74 68 65 72 20 4d 75 6c 74 69 63 61 73 | .possible.to.use.either.Multicas |
| 1009e0 | 74 20 6f 72 20 55 6e 69 63 61 73 74 20 74 6f 20 73 79 6e 63 20 63 6f 6e 6e 74 72 61 63 6b 20 74 | t.or.Unicast.to.sync.conntrack.t |
| 100a00 | 72 61 66 66 69 63 2e 20 4d 6f 73 74 20 65 78 61 6d 70 6c 65 73 20 62 65 6c 6f 77 20 73 68 6f 77 | raffic..Most.examples.below.show |
| 100a20 | 20 4d 75 6c 74 69 63 61 73 74 2c 20 62 75 74 20 75 6e 69 63 61 73 74 20 63 61 6e 20 62 65 20 73 | .Multicast,.but.unicast.can.be.s |
| 100a40 | 70 65 63 69 66 69 65 64 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 22 70 65 65 72 22 20 6b 65 79 | pecified.by.using.the."peer".key |
| 100a60 | 77 6f 72 6b 20 61 66 74 65 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 | work.after.the.specified.interfa |
| 100a80 | 63 65 2c 20 61 73 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 3a | ce,.as.in.the.following.example: |
| 100aa0 | 00 49 74 20 69 73 20 76 65 72 79 20 65 61 73 79 20 74 6f 20 6d 69 73 63 6f 6e 66 69 67 75 72 65 | .It.is.very.easy.to.misconfigure |
| 100ac0 | 20 6d 75 6c 74 69 63 61 73 74 20 72 65 70 65 61 74 69 6e 67 20 69 66 20 79 6f 75 20 68 61 76 65 | .multicast.repeating.if.you.have |
| 100ae0 | 20 6d 75 6c 74 69 70 6c 65 20 4e 48 53 65 73 2e 00 49 74 20 75 73 65 73 20 61 20 73 69 6e 67 6c | .multiple.NHSes..It.uses.a.singl |
| 100b00 | 65 20 54 43 50 20 6f 72 20 55 44 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 64 6f 65 73 | e.TCP.or.UDP.connection.and.does |
| 100b20 | 20 6e 6f 74 20 72 65 6c 79 20 6f 6e 20 70 61 63 6b 65 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 | .not.rely.on.packet.source.addre |
| 100b40 | 73 73 65 73 2c 20 73 6f 20 69 74 20 77 69 6c 6c 20 77 6f 72 6b 20 65 76 65 6e 20 74 68 72 6f 75 | sses,.so.it.will.work.even.throu |
| 100b60 | 67 68 20 61 20 64 6f 75 62 6c 65 20 4e 41 54 3a 20 70 65 72 66 65 63 74 20 66 6f 72 20 70 75 62 | gh.a.double.NAT:.perfect.for.pub |
| 100b80 | 6c 69 63 20 68 6f 74 73 70 6f 74 73 20 61 6e 64 20 73 75 63 68 00 49 74 20 75 73 65 73 20 61 20 | lic.hotspots.and.such.It.uses.a. |
| 100ba0 | 73 74 6f 63 68 61 73 74 69 63 20 6d 6f 64 65 6c 20 74 6f 20 63 6c 61 73 73 69 66 79 20 69 6e 63 | stochastic.model.to.classify.inc |
| 100bc0 | 6f 6d 69 6e 67 20 70 61 63 6b 65 74 73 20 69 6e 74 6f 20 64 69 66 66 65 72 65 6e 74 20 66 6c 6f | oming.packets.into.different.flo |
| 100be0 | 77 73 20 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 61 20 66 61 69 72 | ws.and.is.used.to.provide.a.fair |
| 100c00 | 20 73 68 61 72 65 20 6f 66 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 20 74 6f 20 61 6c 6c 20 74 | .share.of.the.bandwidth.to.all.t |
| 100c20 | 68 65 20 66 6c 6f 77 73 20 75 73 69 6e 67 20 74 68 65 20 71 75 65 75 65 2e 20 45 61 63 68 20 66 | he.flows.using.the.queue..Each.f |
| 100c40 | 6c 6f 77 20 69 73 20 6d 61 6e 61 67 65 64 20 62 79 20 74 68 65 20 43 6f 44 65 6c 20 71 75 65 75 | low.is.managed.by.the.CoDel.queu |
| 100c60 | 69 6e 67 20 20 64 69 73 63 69 70 6c 69 6e 65 2e 20 52 65 6f 72 64 65 72 69 6e 67 20 77 69 74 68 | ing..discipline..Reordering.with |
| 100c80 | 69 6e 20 61 20 66 6c 6f 77 20 69 73 20 61 76 6f 69 64 65 64 20 73 69 6e 63 65 20 43 6f 64 65 6c | in.a.flow.is.avoided.since.Codel |
| 100ca0 | 20 69 6e 74 65 72 6e 61 6c 6c 79 20 75 73 65 73 20 61 20 46 49 46 4f 20 71 75 65 75 65 2e 00 49 | .internally.uses.a.FIFO.queue..I |
| 100cc0 | 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d 62 69 6e 65 64 20 77 69 74 68 20 74 68 65 20 64 65 6c 65 | t.will.be.combined.with.the.dele |
| 100ce0 | 67 61 74 65 64 20 70 72 65 66 69 78 20 61 6e 64 20 74 68 65 20 73 6c 61 2d 69 64 20 74 6f 20 66 | gated.prefix.and.the.sla-id.to.f |
| 100d00 | 6f 72 6d 20 61 20 63 6f 6d 70 6c 65 74 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 | orm.a.complete.interface.address |
| 100d20 | 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 74 6f 20 75 73 65 20 74 68 65 20 45 55 49 2d | ..The.default.is.to.use.the.EUI- |
| 100d40 | 36 34 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 49 74 27 | 64.address.of.the.interface..It' |
| 100d60 | 73 20 65 61 73 79 20 74 6f 20 73 65 74 75 70 20 61 6e 64 20 6f 66 66 65 72 73 20 76 65 72 79 20 | s.easy.to.setup.and.offers.very. |
| 100d80 | 66 6c 65 78 69 62 6c 65 20 73 70 6c 69 74 20 74 75 6e 6e 65 6c 69 6e 67 00 49 74 27 73 20 6e 6f | flexible.split.tunneling.It's.no |
| 100da0 | 74 20 6c 69 6b 65 6c 79 20 74 68 61 74 20 61 6e 79 6f 6e 65 20 77 69 6c 6c 20 6e 65 65 64 20 69 | t.likely.that.anyone.will.need.i |
| 100dc0 | 74 20 61 6e 79 20 74 69 6d 65 20 73 6f 6f 6e 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 65 78 69 | t.any.time.soon,.but.it.does.exi |
| 100de0 | 73 74 2e 00 49 74 27 73 20 73 6c 6f 77 65 72 20 74 68 61 6e 20 49 50 73 65 63 20 64 75 65 20 74 | st..It's.slower.than.IPsec.due.t |
| 100e00 | 6f 20 68 69 67 68 65 72 20 70 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 68 65 61 64 20 61 6e 64 20 74 | o.higher.protocol.overhead.and.t |
| 100e20 | 68 65 20 66 61 63 74 20 69 74 20 72 75 6e 73 20 69 6e 20 75 73 65 72 20 6d 6f 64 65 20 77 68 69 | he.fact.it.runs.in.user.mode.whi |
| 100e40 | 6c 65 20 49 50 73 65 63 2c 20 6f 6e 20 4c 69 6e 75 78 2c 20 69 73 20 69 6e 20 6b 65 72 6e 65 6c | le.IPsec,.on.Linux,.is.in.kernel |
| 100e60 | 20 6d 6f 64 65 00 49 74 27 73 20 74 69 6d 65 20 74 6f 20 63 68 65 63 6b 20 63 6f 6e 6e 74 72 61 | .mode.It's.time.to.check.conntra |
| 100e80 | 63 6b 20 74 61 62 6c 65 2c 20 74 6f 20 73 65 65 20 69 66 20 61 6e 79 20 63 6f 6e 6e 65 63 74 69 | ck.table,.to.see.if.any.connecti |
| 100ea0 | 6f 6e 20 77 61 73 20 61 63 63 65 70 74 65 64 2c 20 61 6e 64 20 69 66 20 77 61 73 20 70 72 6f 70 | on.was.accepted,.and.if.was.prop |
| 100ec0 | 65 72 6c 79 20 6f 66 66 6c 6f 61 64 65 64 00 49 74 27 73 20 74 69 6d 65 20 74 6f 20 63 68 65 63 | erly.offloaded.It's.time.to.chec |
| 100ee0 | 6b 20 74 68 65 20 63 6f 6e 6e 74 72 61 63 6b 20 74 61 62 6c 65 2c 20 74 6f 20 73 65 65 20 69 66 | k.the.conntrack.table,.to.see.if |
| 100f00 | 20 61 6e 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 77 65 72 65 20 61 63 63 65 70 74 65 64 2c 20 | .any.connections.were.accepted,. |
| 100f20 | 61 6e 64 20 69 66 20 69 74 20 77 61 73 20 70 72 6f 70 65 72 6c 79 20 6f 66 66 6c 6f 61 64 65 64 | and.if.it.was.properly.offloaded |
| 100f40 | 00 4a 6f 69 6e 20 61 20 67 69 76 65 6e 20 56 52 46 2e 20 54 68 69 73 20 77 69 6c 6c 20 6f 70 65 | .Join.a.given.VRF..This.will.ope |
| 100f60 | 6e 20 61 20 6e 65 77 20 73 75 62 73 68 65 6c 6c 20 77 69 74 68 69 6e 20 74 68 65 20 73 70 65 63 | n.a.new.subshell.within.the.spec |
| 100f80 | 69 66 69 65 64 20 56 52 46 2e 00 4a 75 6d 70 20 74 6f 20 61 20 64 69 66 66 65 72 65 6e 74 20 72 | ified.VRF..Jump.to.a.different.r |
| 100fa0 | 75 6c 65 20 69 6e 20 74 68 69 73 20 72 6f 75 74 65 2d 6d 61 70 20 6f 6e 20 61 20 6d 61 74 63 68 | ule.in.this.route-map.on.a.match |
| 100fc0 | 2e 00 4a 75 6e 69 70 65 72 20 45 58 20 53 77 69 74 63 68 00 4b 65 72 6e 65 6c 00 4b 65 72 6e 65 | ..Juniper.EX.Switch.Kernel.Kerne |
| 100fe0 | 6c 20 50 61 72 61 6d 65 74 65 72 73 3a 20 6b 65 72 6e 65 6c 2e 6d 73 67 6d 61 78 2c 20 6b 65 72 | l.Parameters:.kernel.msgmax,.ker |
| 101000 | 6e 65 6c 2e 6d 73 67 6d 6e 62 2c 20 6b 65 72 6e 65 6c 2e 6d 73 67 6d 6e 69 2c 20 6b 65 72 6e 65 | nel.msgmnb,.kernel.msgmni,.kerne |
| 101020 | 6c 2e 73 65 6d 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 61 6c 6c 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d | l.sem,.kernel.shmall,.kernel.shm |
| 101040 | 6d 61 78 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 6d 6e 69 2c 20 6b 65 72 6e 65 6c 2e 73 68 6d 5f 72 | max,.kernel.shmmni,.kernel.shm_r |
| 101060 | 6d 69 64 5f 66 6f 72 63 65 64 00 4b 65 72 6e 65 6c 20 6d 65 73 73 61 67 65 73 00 4b 65 79 20 42 | mid_forced.Kernel.messages.Key.B |
| 101080 | 61 73 65 64 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 4b 65 79 20 47 65 6e 65 72 61 74 69 | ased.Authentication.Key.Generati |
| 1010a0 | 6f 6e 00 4b 65 79 20 4d 61 6e 61 67 65 6d 65 6e 74 00 4b 65 79 20 50 61 72 61 6d 65 74 65 72 73 | on.Key.Management.Key.Parameters |
| 1010c0 | 3a 00 4b 65 79 20 50 6f 69 6e 74 73 3a 00 4b 65 79 20 65 78 63 68 61 6e 67 65 20 61 6e 64 20 70 | :.Key.Points:.Key.exchange.and.p |
| 1010e0 | 61 79 6c 6f 61 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 20 64 6f 6e 65 20 75 73 69 6e 67 20 | ayload.encryption.is.done.using. |
| 101100 | 49 4b 45 20 61 6e 64 20 45 53 50 20 70 72 6f 70 6f 73 61 6c 73 20 61 73 20 6b 6e 6f 77 6e 20 66 | IKE.and.ESP.proposals.as.known.f |
| 101120 | 72 6f 6d 20 49 4b 45 76 31 20 62 75 74 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 | rom.IKEv1.but.the.connections.ar |
| 101140 | 65 20 66 61 73 74 65 72 20 74 6f 20 65 73 74 61 62 6c 69 73 68 2c 20 6d 6f 72 65 20 72 65 6c 69 | e.faster.to.establish,.more.reli |
| 101160 | 61 62 6c 65 2c 20 61 6e 64 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 20 72 6f 61 6d 69 6e 67 20 66 | able,.and.also.support.roaming.f |
| 101180 | 72 6f 6d 20 49 50 20 74 6f 20 49 50 20 28 63 61 6c 6c 65 64 20 4d 4f 42 49 4b 45 20 77 68 69 63 | rom.IP.to.IP.(called.MOBIKE.whic |
| 1011a0 | 68 20 6d 61 6b 65 73 20 73 75 72 65 20 79 6f 75 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 6f 65 | h.makes.sure.your.connection.doe |
| 1011c0 | 73 20 6e 6f 74 20 64 72 6f 70 20 77 68 65 6e 20 63 68 61 6e 67 69 6e 67 20 6e 65 74 77 6f 72 6b | s.not.drop.when.changing.network |
| 1011e0 | 73 20 66 72 6f 6d 20 65 2e 67 2e 20 57 49 46 49 20 74 6f 20 4c 54 45 20 61 6e 64 20 62 61 63 6b | s.from.e.g..WIFI.to.LTE.and.back |
| 101200 | 29 2e 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 | )..Authentication.can.be.achieve |
| 101220 | 64 20 77 69 74 68 20 58 2e 35 30 39 20 63 65 72 74 69 66 69 63 61 74 65 73 2e 00 4b 65 79 20 65 | d.with.X.509.certificates..Key.e |
| 101240 | 78 63 68 61 6e 67 65 20 61 6e 64 20 70 61 79 6c 6f 61 64 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 | xchange.and.payload.encryption.i |
| 101260 | 73 20 73 74 69 6c 6c 20 64 6f 6e 65 20 75 73 69 6e 67 20 49 4b 45 20 61 6e 64 20 45 53 50 20 70 | s.still.done.using.IKE.and.ESP.p |
| 101280 | 72 6f 70 6f 73 61 6c 73 20 61 73 20 6b 6e 6f 77 6e 20 66 72 6f 6d 20 49 4b 45 76 31 20 62 75 74 | roposals.as.known.from.IKEv1.but |
| 1012a0 | 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 66 61 73 74 65 72 20 74 6f 20 65 | .the.connections.are.faster.to.e |
| 1012c0 | 73 74 61 62 6c 69 73 68 2c 20 6d 6f 72 65 20 72 65 6c 69 61 62 6c 65 2c 20 61 6e 64 20 61 6c 73 | stablish,.more.reliable,.and.als |
| 1012e0 | 6f 20 73 75 70 70 6f 72 74 20 72 6f 61 6d 69 6e 67 20 66 72 6f 6d 20 49 50 20 74 6f 20 49 50 20 | o.support.roaming.from.IP.to.IP. |
| 101300 | 28 63 61 6c 6c 65 64 20 4d 4f 42 49 4b 45 20 77 68 69 63 68 20 6d 61 6b 65 73 20 73 75 72 65 20 | (called.MOBIKE.which.makes.sure. |
| 101320 | 79 6f 75 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 6f 65 73 20 6e 6f 74 20 64 72 6f 70 20 77 68 | your.connection.does.not.drop.wh |
| 101340 | 65 6e 20 63 68 61 6e 67 69 6e 67 20 6e 65 74 77 6f 72 6b 73 20 66 72 6f 6d 20 65 2e 67 2e 20 57 | en.changing.networks.from.e.g..W |
| 101360 | 49 46 49 20 74 6f 20 4c 54 45 20 61 6e 64 20 62 61 63 6b 29 2e 00 4b 65 79 20 75 73 61 67 65 20 | IFI.to.LTE.and.back)..Key.usage. |
| 101380 | 28 43 4c 49 29 00 4b 65 79 62 6f 61 72 64 20 4c 61 79 6f 75 74 00 4b 65 79 70 61 69 72 73 00 4b | (CLI).Keyboard.Layout.Keypairs.K |
| 1013a0 | 65 79 77 6f 72 64 00 4b 6e 6f 77 6e 20 69 73 73 75 65 73 00 4c 32 54 50 00 4c 32 54 50 20 6f 76 | eyword.Known.issues.L2TP.L2TP.ov |
| 1013c0 | 65 72 20 49 50 73 65 63 00 4c 32 54 50 76 33 00 4c 32 54 50 76 33 20 63 61 6e 20 62 65 20 72 65 | er.IPsec.L2TPv3.L2TPv3.can.be.re |
| 1013e0 | 67 61 72 64 65 64 20 61 73 20 62 65 69 6e 67 20 74 6f 20 4d 50 4c 53 20 77 68 61 74 20 49 50 20 | garded.as.being.to.MPLS.what.IP. |
| 101400 | 69 73 20 74 6f 20 41 54 4d 3a 20 61 20 73 69 6d 70 6c 69 66 69 65 64 20 76 65 72 73 69 6f 6e 20 | is.to.ATM:.a.simplified.version. |
| 101420 | 6f 66 20 74 68 65 20 73 61 6d 65 20 63 6f 6e 63 65 70 74 2c 20 77 69 74 68 20 6d 75 63 68 20 6f | of.the.same.concept,.with.much.o |
| 101440 | 66 20 74 68 65 20 73 61 6d 65 20 62 65 6e 65 66 69 74 20 61 63 68 69 65 76 65 64 20 61 74 20 61 | f.the.same.benefit.achieved.at.a |
| 101460 | 20 66 72 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 65 66 66 6f 72 74 2c 20 61 74 20 74 68 65 20 | .fraction.of.the.effort,.at.the. |
| 101480 | 63 6f 73 74 20 6f 66 20 6c 6f 73 69 6e 67 20 73 6f 6d 65 20 74 65 63 68 6e 69 63 61 6c 20 66 65 | cost.of.losing.some.technical.fe |
| 1014a0 | 61 74 75 72 65 73 20 63 6f 6e 73 69 64 65 72 65 64 20 6c 65 73 73 20 69 6d 70 6f 72 74 61 6e 74 | atures.considered.less.important |
| 1014c0 | 20 69 6e 20 74 68 65 20 6d 61 72 6b 65 74 2e 00 4c 32 54 50 76 33 20 69 73 20 64 65 73 63 72 69 | .in.the.market..L2TPv3.is.descri |
| 1014e0 | 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 39 32 31 60 2e 00 4c 32 54 50 76 33 20 69 73 20 64 65 | bed.in.:rfc:`3921`..L2TPv3.is.de |
| 101500 | 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 39 33 31 60 2e 00 4c 32 54 50 76 33 20 6f | scribed.in.:rfc:`3931`..L2TPv3.o |
| 101520 | 70 74 69 6f 6e 73 00 4c 32 54 50 76 33 3a 00 4c 33 56 50 4e 20 56 52 46 73 00 4c 44 41 50 00 4c | ptions.L2TPv3:.L3VPN.VRFs.LDAP.L |
| 101540 | 44 41 50 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 2e 20 44 65 66 61 75 6c 74 73 20 74 | DAP.protocol.version..Defaults.t |
| 101560 | 6f 20 33 20 69 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 2e 00 4c 44 41 50 20 73 65 61 72 63 | o.3.if.not.specified..LDAP.searc |
| 101580 | 68 20 66 69 6c 74 65 72 20 74 6f 20 6c 6f 63 61 74 65 20 74 68 65 20 75 73 65 72 20 44 4e 2e 20 | h.filter.to.locate.the.user.DN.. |
| 1015a0 | 52 65 71 75 69 72 65 64 20 69 66 20 74 68 65 20 75 73 65 72 73 20 61 72 65 20 69 6e 20 61 20 68 | Required.if.the.users.are.in.a.h |
| 1015c0 | 69 65 72 61 72 63 68 79 20 62 65 6c 6f 77 20 74 68 65 20 62 61 73 65 20 44 4e 2c 20 6f 72 20 69 | ierarchy.below.the.base.DN,.or.i |
| 1015e0 | 66 20 74 68 65 20 6c 6f 67 69 6e 20 6e 61 6d 65 20 69 73 20 6e 6f 74 20 77 68 61 74 20 62 75 69 | f.the.login.name.is.not.what.bui |
| 101600 | 6c 64 73 20 74 68 65 20 75 73 65 72 20 73 70 65 63 69 66 69 63 20 70 61 72 74 20 6f 66 20 74 68 | lds.the.user.specific.part.of.th |
| 101620 | 65 20 75 73 65 72 73 20 44 4e 2e 00 4c 4c 44 50 00 4c 4c 44 50 20 70 65 72 66 6f 72 6d 73 20 66 | e.users.DN..LLDP.LLDP.performs.f |
| 101640 | 75 6e 63 74 69 6f 6e 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 73 65 76 65 72 61 6c 20 70 72 6f 70 | unctions.similar.to.several.prop |
| 101660 | 72 69 65 74 61 72 79 20 70 72 6f 74 6f 63 6f 6c 73 2c 20 73 75 63 68 20 61 73 20 3a 61 62 62 72 | rietary.protocols,.such.as.:abbr |
| 101680 | 3a 60 43 44 50 20 28 43 69 73 63 6f 20 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 | :`CDP.(Cisco.Discovery.Protocol) |
| 1016a0 | 60 2c 20 3a 61 62 62 72 3a 60 46 44 50 20 28 46 6f 75 6e 64 72 79 20 44 69 73 63 6f 76 65 72 79 | `,.:abbr:`FDP.(Foundry.Discovery |
| 1016c0 | 20 50 72 6f 74 6f 63 6f 6c 29 60 2c 20 3a 61 62 62 72 3a 60 4e 44 50 20 28 4e 6f 72 74 65 6c 20 | .Protocol)`,.:abbr:`NDP.(Nortel. |
| 1016e0 | 44 69 73 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 29 60 20 61 6e 64 20 3a 61 62 62 72 3a 60 | Discovery.Protocol)`.and.:abbr:` |
| 101700 | 4c 4c 54 44 20 28 4c 69 6e 6b 20 4c 61 79 65 72 20 54 6f 70 6f 6c 6f 67 79 20 44 69 73 63 6f 76 | LLTD.(Link.Layer.Topology.Discov |
| 101720 | 65 72 79 29 60 2e 00 4c 4e 53 20 28 4c 32 54 50 20 4e 65 74 77 6f 72 6b 20 53 65 72 76 65 72 29 | ery)`..LNS.(L2TP.Network.Server) |
| 101740 | 00 4c 4e 53 20 61 72 65 20 6f 66 74 65 6e 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 | .LNS.are.often.used.to.connect.t |
| 101760 | 6f 20 61 20 4c 41 43 20 28 4c 32 54 50 20 41 63 63 65 73 73 20 43 6f 6e 63 65 6e 74 72 61 74 6f | o.a.LAC.(L2TP.Access.Concentrato |
| 101780 | 72 29 2e 00 4c 61 62 65 6c 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 00 | r)..Label.Distribution.Protocol. |
| 1017a0 | 4c 61 62 65 6c 20 74 6f 20 75 73 65 20 66 6f 72 20 74 68 65 20 6d 65 74 72 69 63 20 6e 61 6d 65 | Label.to.use.for.the.metric.name |
| 1017c0 | 20 77 68 65 6e 20 73 65 6e 64 69 6e 67 20 6d 65 74 72 69 63 73 2e 00 4c 61 73 74 6c 79 2c 20 77 | .when.sending.metrics..Lastly,.w |
| 1017e0 | 65 20 63 61 6e 20 63 72 65 61 74 65 20 74 68 65 20 6c 65 61 66 20 63 65 72 74 69 66 69 63 61 74 | e.can.create.the.leaf.certificat |
| 101800 | 65 73 20 74 68 61 74 20 64 65 76 69 63 65 73 20 61 6e 64 20 75 73 65 72 73 20 77 69 6c 6c 20 75 | es.that.devices.and.users.will.u |
| 101820 | 74 69 6c 69 73 65 2e 00 4c 61 79 65 72 20 32 20 54 75 6e 6e 65 6c 6c 69 6e 67 20 50 72 6f 74 6f | tilise..Layer.2.Tunnelling.Proto |
| 101840 | 63 6f 6c 20 56 65 72 73 69 6f 6e 20 33 20 69 73 20 61 6e 20 49 45 54 46 20 73 74 61 6e 64 61 72 | col.Version.3.is.an.IETF.standar |
| 101860 | 64 20 72 65 6c 61 74 65 64 20 74 6f 20 4c 32 54 50 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 | d.related.to.L2TP.that.can.be.us |
| 101880 | 65 64 20 61 73 20 61 6e 20 61 6c 74 65 72 6e 61 74 69 76 65 20 70 72 6f 74 6f 63 6f 6c 20 74 6f | ed.as.an.alternative.protocol.to |
| 1018a0 | 20 3a 72 65 66 3a 60 6d 70 6c 73 60 20 66 6f 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6f | .:ref:`mpls`.for.encapsulation.o |
| 1018c0 | 66 20 6d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 4c 61 79 65 72 20 32 20 63 6f 6d 6d 75 6e 69 63 | f.multiprotocol.Layer.2.communic |
| 1018e0 | 61 74 69 6f 6e 73 20 74 72 61 66 66 69 63 20 6f 76 65 72 20 49 50 20 6e 65 74 77 6f 72 6b 73 2e | ations.traffic.over.IP.networks. |
| 101900 | 20 4c 69 6b 65 20 4c 32 54 50 2c 20 4c 32 54 50 76 33 20 70 72 6f 76 69 64 65 73 20 61 20 70 73 | .Like.L2TP,.L2TPv3.provides.a.ps |
| 101920 | 65 75 64 6f 2d 77 69 72 65 20 73 65 72 76 69 63 65 20 62 75 74 20 69 73 20 73 63 61 6c 65 64 20 | eudo-wire.service.but.is.scaled. |
| 101940 | 74 6f 20 66 69 74 20 63 61 72 72 69 65 72 20 72 65 71 75 69 72 65 6d 65 6e 74 73 2e 00 4c 65 61 | to.fit.carrier.requirements..Lea |
| 101960 | 73 65 20 74 69 6d 65 20 77 69 6c 6c 20 62 65 20 6c 65 66 74 20 61 74 20 74 68 65 20 64 65 66 61 | se.time.will.be.left.at.the.defa |
| 101980 | 75 6c 74 20 76 61 6c 75 65 20 77 68 69 63 68 20 69 73 20 32 34 20 68 6f 75 72 73 00 4c 65 61 73 | ult.value.which.is.24.hours.Leas |
| 1019a0 | 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 38 | e.timeout.in.seconds.(default:.8 |
| 1019c0 | 36 34 30 30 29 00 4c 65 67 61 63 79 20 46 69 72 65 77 61 6c 6c 00 4c 65 74 20 53 4e 4d 50 20 64 | 6400).Legacy.Firewall.Let.SNMP.d |
| 1019e0 | 61 65 6d 6f 6e 20 6c 69 73 74 65 6e 20 6f 6e 6c 79 20 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 | aemon.listen.only.on.IP.address. |
| 101a00 | 31 39 32 2e 30 2e 32 2e 31 00 4c 65 74 27 73 20 61 73 73 75 6d 65 20 50 43 34 20 6f 6e 20 4c 65 | 192.0.2.1.Let's.assume.PC4.on.Le |
| 101a20 | 61 66 32 20 77 61 6e 74 73 20 74 6f 20 70 69 6e 67 20 50 43 35 20 6f 6e 20 4c 65 61 66 33 2e 20 | af2.wants.to.ping.PC5.on.Leaf3.. |
| 101a40 | 49 6e 73 74 65 61 64 20 6f 66 20 73 65 74 74 69 6e 67 20 4c 65 61 66 33 20 61 73 20 6f 75 72 20 | Instead.of.setting.Leaf3.as.our. |
| 101a60 | 72 65 6d 6f 74 65 20 65 6e 64 20 6d 61 6e 75 61 6c 6c 79 2c 20 4c 65 61 66 32 20 65 6e 63 61 70 | remote.end.manually,.Leaf2.encap |
| 101a80 | 73 75 6c 61 74 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 6e 74 6f 20 61 20 55 44 50 2d 70 61 | sulates.the.packet.into.a.UDP-pa |
| 101aa0 | 63 6b 65 74 20 61 6e 64 20 73 65 6e 64 73 20 69 74 20 74 6f 20 69 74 73 20 64 65 73 69 67 6e 61 | cket.and.sends.it.to.its.designa |
| 101ac0 | 74 65 64 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 20 76 69 61 20 53 70 69 6e 65 31 | ted.multicast-address.via.Spine1 |
| 101ae0 | 2e 20 57 68 65 6e 20 53 70 69 6e 65 31 20 72 65 63 65 69 76 65 73 20 74 68 69 73 20 70 61 63 6b | ..When.Spine1.receives.this.pack |
| 101b00 | 65 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 20 74 6f 20 61 6c 6c 20 6f 74 68 65 72 20 6c | et.it.forwards.it.to.all.other.l |
| 101b20 | 65 61 76 65 73 20 77 68 6f 20 68 61 73 20 6a 6f 69 6e 65 64 20 74 68 65 20 73 61 6d 65 20 6d 75 | eaves.who.has.joined.the.same.mu |
| 101b40 | 6c 74 69 63 61 73 74 2d 67 72 6f 75 70 2c 20 69 6e 20 74 68 69 73 20 63 61 73 65 20 4c 65 61 66 | lticast-group,.in.this.case.Leaf |
| 101b60 | 33 2e 20 57 68 65 6e 20 4c 65 61 66 33 20 72 65 63 65 69 76 65 73 20 74 68 65 20 70 61 63 6b 65 | 3..When.Leaf3.receives.the.packe |
| 101b80 | 74 20 69 74 20 66 6f 72 77 61 72 64 73 20 69 74 2c 20 77 68 69 6c 65 20 61 74 20 74 68 65 20 73 | t.it.forwards.it,.while.at.the.s |
| 101ba0 | 61 6d 65 20 74 69 6d 65 20 6c 65 61 72 6e 69 6e 67 20 74 68 61 74 20 50 43 34 20 69 73 20 72 65 | ame.time.learning.that.PC4.is.re |
| 101bc0 | 61 63 68 61 62 6c 65 20 62 65 68 69 6e 64 20 4c 65 61 66 32 2c 20 62 65 63 61 75 73 65 20 74 68 | achable.behind.Leaf2,.because.th |
| 101be0 | 65 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 70 61 63 6b 65 74 20 68 61 64 20 4c 65 61 66 32 27 | e.encapsulated.packet.had.Leaf2' |
| 101c00 | 73 20 49 50 20 61 64 64 72 65 73 73 20 73 65 74 20 61 73 20 73 6f 75 72 63 65 20 49 50 2e 00 4c | s.IP.address.set.as.source.IP..L |
| 101c20 | 65 74 27 73 20 61 73 73 75 6d 65 20 50 43 34 20 6f 6e 20 4c 65 61 66 32 20 77 61 6e 74 73 20 74 | et's.assume.PC4.on.Leaf2.wants.t |
| 101c40 | 6f 20 70 69 6e 67 20 50 43 35 20 6f 6e 20 4c 65 61 66 33 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 | o.ping.PC5.on.Leaf3..Instead.of. |
| 101c60 | 73 65 74 74 69 6e 67 20 4c 65 61 66 33 20 61 73 20 6f 75 72 20 72 65 6d 6f 74 65 20 65 6e 64 20 | setting.Leaf3.as.our.remote.end. |
| 101c80 | 6d 61 6e 75 61 6c 6c 79 2c 20 4c 65 61 66 32 20 65 6e 63 61 70 73 75 6c 61 74 65 73 20 74 68 65 | manually,.Leaf2.encapsulates.the |
| 101ca0 | 20 70 61 63 6b 65 74 20 69 6e 74 6f 20 61 20 55 44 50 2d 70 61 63 6b 65 74 20 61 6e 64 20 73 65 | .packet.into.a.UDP-packet.and.se |
| 101cc0 | 6e 64 73 20 69 74 20 74 6f 20 69 74 73 27 20 64 65 73 69 67 6e 61 74 65 64 20 6d 75 6c 74 69 63 | nds.it.to.its'.designated.multic |
| 101ce0 | 61 73 74 2d 61 64 64 72 65 73 73 20 76 69 61 20 53 70 69 6e 65 31 2e 20 57 68 65 6e 20 53 70 69 | ast-address.via.Spine1..When.Spi |
| 101d00 | 6e 65 31 20 72 65 63 65 69 76 65 73 20 74 68 69 73 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 | ne1.receives.this.packet.it.forw |
| 101d20 | 61 72 64 73 20 69 74 20 74 6f 20 61 6c 6c 20 6f 74 68 65 72 20 6c 65 61 76 65 73 20 77 68 6f 20 | ards.it.to.all.other.leaves.who. |
| 101d40 | 68 61 73 20 6a 6f 69 6e 65 64 20 74 68 65 20 73 61 6d 65 20 6d 75 6c 74 69 63 61 73 74 2d 67 72 | has.joined.the.same.multicast-gr |
| 101d60 | 6f 75 70 2c 20 69 6e 20 74 68 69 73 20 63 61 73 65 20 4c 65 61 66 33 2e 20 57 68 65 6e 20 4c 65 | oup,.in.this.case.Leaf3..When.Le |
| 101d80 | 61 66 33 20 72 65 63 65 69 76 65 73 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 20 66 6f 72 77 61 | af3.receives.the.packet.it.forwa |
| 101da0 | 72 64 73 20 69 74 2c 20 77 68 69 6c 65 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 6c | rds.it,.while.at.the.same.time.l |
| 101dc0 | 65 61 72 6e 69 6e 67 20 74 68 61 74 20 50 43 34 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 62 65 | earning.that.PC4.is.reachable.be |
| 101de0 | 68 69 6e 64 20 4c 65 61 66 32 2c 20 62 65 63 61 75 73 65 20 74 68 65 20 65 6e 63 61 70 73 75 6c | hind.Leaf2,.because.the.encapsul |
| 101e00 | 61 74 65 64 20 70 61 63 6b 65 74 20 68 61 64 20 4c 65 61 66 32 27 73 20 49 50 20 61 64 64 72 65 | ated.packet.had.Leaf2's.IP.addre |
| 101e20 | 73 73 20 73 65 74 20 61 73 20 73 6f 75 72 63 65 20 49 50 2e 00 4c 65 74 27 73 20 61 73 73 75 6d | ss.set.as.source.IP..Let's.assum |
| 101e40 | 65 20 77 65 20 68 61 76 65 20 74 77 6f 20 44 48 43 50 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 | e.we.have.two.DHCP.WAN.interface |
| 101e60 | 73 20 61 6e 64 20 6f 6e 65 20 4c 41 4e 20 28 65 74 68 32 29 3a 00 4c 65 74 27 73 20 62 75 69 6c | s.and.one.LAN.(eth2):.Let's.buil |
| 101e80 | 64 20 61 20 73 69 6d 70 6c 65 20 56 50 4e 20 62 65 74 77 65 65 6e 20 32 20 49 6e 74 65 6c c2 ae | d.a.simple.VPN.between.2.Intel.. |
| 101ea0 | 20 51 41 54 20 72 65 61 64 79 20 64 65 76 69 63 65 73 2e 00 4c 65 74 27 73 20 65 78 70 61 6e 64 | .QAT.ready.devices..Let's.expand |
| 101ec0 | 20 74 68 65 20 65 78 61 6d 70 6c 65 20 66 72 6f 6d 20 61 62 6f 76 65 20 61 6e 64 20 61 64 64 20 | .the.example.from.above.and.add. |
| 101ee0 | 77 65 69 67 68 74 20 74 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 65 20 62 61 | weight.to.the.interfaces..The.ba |
| 101f00 | 6e 64 77 69 64 74 68 20 66 72 6f 6d 20 65 74 68 30 20 69 73 20 6c 61 72 67 65 72 20 74 68 61 6e | ndwidth.from.eth0.is.larger.than |
| 101f20 | 20 65 74 68 31 2e 20 50 65 72 20 64 65 66 61 75 6c 74 2c 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 | .eth1..Per.default,.outbound.tra |
| 101f40 | 66 66 69 63 20 69 73 20 64 69 73 74 72 69 62 75 74 65 64 20 72 61 6e 64 6f 6d 6c 79 20 61 63 72 | ffic.is.distributed.randomly.acr |
| 101f60 | 6f 73 73 20 61 76 61 69 6c 61 62 6c 65 20 69 6e 74 65 72 66 61 63 65 73 2e 20 57 65 69 67 68 74 | oss.available.interfaces..Weight |
| 101f80 | 73 20 63 61 6e 20 62 65 20 61 73 73 69 67 6e 65 64 20 74 6f 20 69 6e 74 65 72 66 61 63 65 73 20 | s.can.be.assigned.to.interfaces. |
| 101fa0 | 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 74 68 65 20 62 61 6c 61 6e 63 69 6e 67 2e 00 4c 65 74 73 | to.influence.the.balancing..Lets |
| 101fc0 | 20 61 73 73 75 6d 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 3a 00 | .assume.the.following.topology:. |
| 101fe0 | 4c 65 76 65 6c 20 34 20 62 61 6c 61 6e 63 69 6e 67 00 4c 69 66 65 74 69 6d 65 20 61 73 73 6f 63 | Level.4.balancing.Lifetime.assoc |
| 102000 | 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 72 20 69 6e | iated.with.the.default.router.in |
| 102020 | 20 75 6e 69 74 73 20 6f 66 20 73 65 63 6f 6e 64 73 00 4c 69 66 65 74 69 6d 65 20 69 6e 20 64 61 | .units.of.seconds.Lifetime.in.da |
| 102040 | 79 73 3b 20 64 65 66 61 75 6c 74 20 69 73 20 33 36 35 00 4c 69 66 65 74 69 6d 65 20 69 73 20 64 | ys;.default.is.365.Lifetime.is.d |
| 102060 | 65 63 72 65 6d 65 6e 74 65 64 20 62 79 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f | ecremented.by.the.number.of.seco |
| 102080 | 6e 64 73 20 73 69 6e 63 65 20 74 68 65 20 6c 61 73 74 20 52 41 20 2d 20 75 73 65 20 69 6e 20 63 | nds.since.the.last.RA.-.use.in.c |
| 1020a0 | 6f 6e 6a 75 6e 63 74 69 6f 6e 20 77 69 74 68 20 61 20 44 48 43 50 76 36 2d 50 44 20 70 72 65 66 | onjunction.with.a.DHCPv6-PD.pref |
| 1020c0 | 69 78 00 4c 69 6b 65 20 6f 6e 20 4d 69 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 2c 20 41 70 | ix.Like.on.Microsoft.Windows,.Ap |
| 1020e0 | 70 6c 65 20 69 4f 53 2f 69 50 61 64 4f 53 20 6f 75 74 20 6f 66 20 74 68 65 20 62 6f 78 20 64 6f | ple.iOS/iPadOS.out.of.the.box.do |
| 102100 | 65 73 20 6e 6f 74 20 65 78 70 6f 73 65 20 61 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 56 50 4e 20 | es.not.expose.all.available.VPN. |
| 102120 | 6f 70 74 69 6f 6e 73 20 76 69 61 20 74 68 65 20 64 65 76 69 63 65 20 47 55 49 2e 00 4c 69 6d 69 | options.via.the.device.GUI..Limi |
| 102140 | 74 20 61 6c 6c 6f 77 65 64 20 63 69 70 68 65 72 20 61 6c 67 6f 72 69 74 68 6d 73 20 75 73 65 64 | t.allowed.cipher.algorithms.used |
| 102160 | 20 64 75 72 69 6e 67 20 53 53 4c 2f 54 4c 53 20 68 61 6e 64 73 68 61 6b 65 00 4c 69 6d 69 74 20 | .during.SSL/TLS.handshake.Limit. |
| 102180 | 6c 6f 67 69 6e 73 20 74 6f 20 60 3c 6c 69 6d 69 74 3e 60 20 70 65 72 20 65 76 65 72 79 20 60 60 | logins.to.`<limit>`.per.every.`` |
| 1021a0 | 72 61 74 65 2d 74 69 6d 65 60 60 20 73 65 63 6f 6e 64 73 2e 20 52 61 74 65 20 6c 69 6d 69 74 20 | rate-time``.seconds..Rate.limit. |
| 1021c0 | 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 20 61 6e 64 20 31 30 20 61 74 74 65 6d 70 74 | must.be.between.1.and.10.attempt |
| 1021e0 | 73 2e 00 4c 69 6d 69 74 20 6c 6f 67 69 6e 73 20 74 6f 20 60 60 72 61 74 65 2d 6c 69 6d 69 74 60 | s..Limit.logins.to.``rate-limit` |
| 102200 | 60 20 61 74 74 65 6d 70 73 20 70 65 72 20 65 76 65 72 79 20 60 3c 73 65 63 6f 6e 64 73 3e 60 2e | `.attemps.per.every.`<seconds>`. |
| 102220 | 20 52 61 74 65 20 74 69 6d 65 20 6d 75 73 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 35 20 61 6e | .Rate.time.must.be.between.15.an |
| 102240 | 64 20 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 4c 69 6d 69 74 20 6d 61 78 69 6d 75 6d 20 6e 75 6d | d.600.seconds..Limit.maximum.num |
| 102260 | 62 65 72 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 4c 69 6d 69 74 65 72 00 4c 69 6d 69 74 | ber.of.connections.Limiter.Limit |
| 102280 | 65 72 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 6f 73 65 20 70 6f 6c 69 63 69 65 73 20 74 68 61 74 | er.is.one.of.those.policies.that |
| 1022a0 | 20 75 73 65 73 20 63 6c 61 73 73 65 73 5f 20 28 49 6e 67 72 65 73 73 20 71 64 69 73 63 20 69 73 | .uses.classes_.(Ingress.qdisc.is |
| 1022c0 | 20 61 63 74 75 61 6c 6c 79 20 61 20 63 6c 61 73 73 6c 65 73 73 20 70 6f 6c 69 63 79 20 62 75 74 | .actually.a.classless.policy.but |
| 1022e0 | 20 66 69 6c 74 65 72 73 20 64 6f 20 77 6f 72 6b 20 69 6e 20 69 74 29 2e 00 4c 69 6d 69 74 73 00 | .filters.do.work.in.it)..Limits. |
| 102300 | 4c 69 6e 65 20 70 72 69 6e 74 65 72 20 73 75 62 73 79 73 74 65 6d 00 4c 69 6e 6b 20 4d 54 55 20 | Line.printer.subsystem.Link.MTU. |
| 102320 | 76 61 6c 75 65 20 70 6c 61 63 65 64 20 69 6e 20 52 41 73 2c 20 65 78 63 6c 75 64 65 64 20 69 6e | value.placed.in.RAs,.excluded.in |
| 102340 | 20 52 41 73 20 69 66 20 75 6e 73 65 74 00 4c 69 6e 6b 20 4d 54 55 20 76 61 6c 75 65 20 70 6c 61 | .RAs.if.unset.Link.MTU.value.pla |
| 102360 | 63 65 64 20 69 6e 20 52 41 73 2c 20 65 78 6c 75 64 65 64 20 69 6e 20 52 41 73 20 69 66 20 75 6e | ced.in.RAs,.exluded.in.RAs.if.un |
| 102380 | 73 65 74 00 4c 69 6e 6b 20 61 67 67 72 65 67 61 74 69 6f 6e 00 4c 69 6e 75 78 20 6e 65 74 66 69 | set.Link.aggregation.Linux.netfi |
| 1023a0 | 6c 74 65 72 20 77 69 6c 6c 20 6e 6f 74 20 4e 41 54 20 74 72 61 66 66 69 63 20 6d 61 72 6b 65 64 | lter.will.not.NAT.traffic.marked |
| 1023c0 | 20 61 73 20 49 4e 56 41 4c 49 44 2e 20 54 68 69 73 20 6f 66 74 65 6e 20 63 6f 6e 66 75 73 65 73 | .as.INVALID..This.often.confuses |
| 1023e0 | 20 70 65 6f 70 6c 65 20 69 6e 74 6f 20 74 68 69 6e 6b 69 6e 67 20 74 68 61 74 20 4c 69 6e 75 78 | .people.into.thinking.that.Linux |
| 102400 | 20 28 6f 72 20 73 70 65 63 69 66 69 63 61 6c 6c 79 20 56 79 4f 53 29 20 68 61 73 20 61 20 62 72 | .(or.specifically.VyOS).has.a.br |
| 102420 | 6f 6b 65 6e 20 4e 41 54 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 62 65 63 61 75 73 65 20 | oken.NAT.implementation.because. |
| 102440 | 6e 6f 6e 2d 4e 41 54 65 64 20 74 72 61 66 66 69 63 20 69 73 20 73 65 65 6e 20 6c 65 61 76 69 6e | non-NATed.traffic.is.seen.leavin |
| 102460 | 67 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 69 73 | g.an.external.interface..This.is |
| 102480 | 20 61 63 74 75 61 6c 6c 79 20 77 6f 72 6b 69 6e 67 20 61 73 20 69 6e 74 65 6e 64 65 64 2c 20 61 | .actually.working.as.intended,.a |
| 1024a0 | 6e 64 20 61 20 70 61 63 6b 65 74 20 63 61 70 74 75 72 65 20 6f 66 20 74 68 65 20 22 6c 65 61 6b | nd.a.packet.capture.of.the."leak |
| 1024c0 | 79 22 20 74 72 61 66 66 69 63 20 73 68 6f 75 6c 64 20 72 65 76 65 61 6c 20 74 68 61 74 20 74 68 | y".traffic.should.reveal.that.th |
| 1024e0 | 65 20 74 72 61 66 66 69 63 20 69 73 20 65 69 74 68 65 72 20 61 6e 20 61 64 64 69 74 69 6f 6e 61 | e.traffic.is.either.an.additiona |
| 102500 | 6c 20 54 43 50 20 22 52 53 54 22 2c 20 22 46 49 4e 2c 41 43 4b 22 2c 20 6f 72 20 22 52 53 54 2c | l.TCP."RST",."FIN,ACK",.or."RST, |
| 102520 | 41 43 4b 22 20 73 65 6e 74 20 62 79 20 63 6c 69 65 6e 74 20 73 79 73 74 65 6d 73 20 61 66 74 65 | ACK".sent.by.client.systems.afte |
| 102540 | 72 20 4c 69 6e 75 78 20 6e 65 74 66 69 6c 74 65 72 20 63 6f 6e 73 69 64 65 72 73 20 74 68 65 20 | r.Linux.netfilter.considers.the. |
| 102560 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 63 6c 6f 73 65 64 2e 20 54 68 65 20 6d 6f 73 74 20 63 6f 6d 6d | connection.closed..The.most.comm |
| 102580 | 6f 6e 20 69 73 20 74 68 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 54 43 50 20 52 53 54 20 73 6f 6d | on.is.the.additional.TCP.RST.som |
| 1025a0 | 65 20 68 6f 73 74 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 73 65 6e 64 20 61 66 74 65 | e.host.implementations.send.afte |
| 1025c0 | 72 20 74 65 72 6d 69 6e 61 74 69 6e 67 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 77 68 69 63 | r.terminating.a.connection.(whic |
| 1025e0 | 68 20 69 73 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 2d 73 70 65 63 69 66 69 63 29 2e 00 4c | h.is.implementation-specific)..L |
| 102600 | 69 73 74 20 61 6c 6c 20 4d 41 43 73 65 63 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4c 69 73 74 20 | ist.all.MACsec.interfaces..List. |
| 102620 | 6f 66 20 66 61 63 69 6c 69 74 69 65 73 20 75 73 65 64 20 62 79 20 73 79 73 6c 6f 67 2e 20 4d 6f | of.facilities.used.by.syslog..Mo |
| 102640 | 73 74 20 66 61 63 69 6c 69 74 69 65 73 20 6e 61 6d 65 73 20 61 72 65 20 73 65 6c 66 20 65 78 70 | st.facilities.names.are.self.exp |
| 102660 | 6c 61 6e 61 74 6f 72 79 2e 20 46 61 63 69 6c 69 74 69 65 73 20 6c 6f 63 61 6c 30 20 2d 20 6c 6f | lanatory..Facilities.local0.-.lo |
| 102680 | 63 61 6c 37 20 63 6f 6d 6d 6f 6e 20 75 73 61 67 65 20 69 73 20 66 2e 65 2e 20 61 73 20 6e 65 74 | cal7.common.usage.is.f.e..as.net |
| 1026a0 | 77 6f 72 6b 20 6c 6f 67 73 20 66 61 63 69 6c 69 74 69 65 73 20 66 6f 72 20 6e 6f 64 65 73 20 61 | work.logs.facilities.for.nodes.a |
| 1026c0 | 6e 64 20 6e 65 74 77 6f 72 6b 20 65 71 75 69 70 6d 65 6e 74 2e 20 47 65 6e 65 72 61 6c 6c 79 20 | nd.network.equipment..Generally. |
| 1026e0 | 69 74 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 73 69 74 75 61 74 69 6f 6e 20 68 6f 77 20 | it.depends.on.the.situation.how. |
| 102700 | 74 6f 20 63 6c 61 73 73 69 66 79 20 6c 6f 67 73 20 61 6e 64 20 70 75 74 20 74 68 65 6d 20 74 6f | to.classify.logs.and.put.them.to |
| 102720 | 20 66 61 63 69 6c 69 74 69 65 73 2e 20 53 65 65 20 66 61 63 69 6c 69 74 69 65 73 20 6d 6f 72 65 | .facilities..See.facilities.more |
| 102740 | 20 61 73 20 61 20 74 6f 6f 6c 20 72 61 74 68 65 72 20 74 68 61 6e 20 61 20 64 69 72 65 63 74 69 | .as.a.tool.rather.than.a.directi |
| 102760 | 76 65 20 74 6f 20 66 6f 6c 6c 6f 77 2e 00 4c 69 73 74 20 6f 66 20 6e 65 74 77 6f 72 6b 73 20 6f | ve.to.follow..List.of.networks.o |
| 102780 | 72 20 63 6c 69 65 6e 74 20 61 64 64 72 65 73 73 65 73 20 70 65 72 6d 69 74 74 65 64 20 74 6f 20 | r.client.addresses.permitted.to. |
| 1027a0 | 63 6f 6e 74 61 63 74 20 74 68 69 73 20 4e 54 50 20 73 65 72 76 65 72 2e 00 4c 69 73 74 20 6f 66 | contact.this.NTP.server..List.of |
| 1027c0 | 20 73 75 70 70 6f 72 74 65 64 20 4d 41 43 73 3a 20 60 60 68 6d 61 63 2d 6d 64 35 60 60 2c 20 60 | .supported.MACs:.``hmac-md5``,.` |
| 1027e0 | 60 68 6d 61 63 2d 6d 64 35 2d 39 36 60 60 2c 20 60 60 68 6d 61 63 2d 72 69 70 65 6d 64 31 36 30 | `hmac-md5-96``,.``hmac-ripemd160 |
| 102800 | 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 31 2d 39 | ``,.``hmac-sha1``,.``hmac-sha1-9 |
| 102820 | 36 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 32 35 36 60 60 2c 20 60 60 68 6d 61 63 2d 73 | 6``,.``hmac-sha2-256``,.``hmac-s |
| 102840 | 68 61 32 2d 35 31 32 60 60 2c 20 60 60 75 6d 61 63 2d 36 34 40 6f 70 65 6e 73 73 68 2e 63 6f 6d | ha2-512``,.``umac-64@openssh.com |
| 102860 | 60 60 2c 20 60 60 75 6d 61 63 2d 31 32 38 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 | ``,.``umac-128@openssh.com``,.`` |
| 102880 | 68 6d 61 63 2d 6d 64 35 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 6d | hmac-md5-etm@openssh.com``,.``hm |
| 1028a0 | 61 63 2d 6d 64 35 2d 39 36 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 68 | ac-md5-96-etm@openssh.com``,.``h |
| 1028c0 | 6d 61 63 2d 72 69 70 65 6d 64 31 36 30 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c | mac-ripemd160-etm@openssh.com``, |
| 1028e0 | 20 60 60 68 6d 61 63 2d 73 68 61 31 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 | .``hmac-sha1-etm@openssh.com``,. |
| 102900 | 60 60 68 6d 61 63 2d 73 68 61 31 2d 39 36 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 | ``hmac-sha1-96-etm@openssh.com`` |
| 102920 | 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 32 35 36 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f | ,.``hmac-sha2-256-etm@openssh.co |
| 102940 | 6d 60 60 2c 20 60 60 68 6d 61 63 2d 73 68 61 32 2d 35 31 32 2d 65 74 6d 40 6f 70 65 6e 73 73 68 | m``,.``hmac-sha2-512-etm@openssh |
| 102960 | 2e 63 6f 6d 60 60 2c 20 60 60 75 6d 61 63 2d 36 34 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f | .com``,.``umac-64-etm@openssh.co |
| 102980 | 6d 60 60 2c 20 60 60 75 6d 61 63 2d 31 32 38 2d 65 74 6d 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 | m``,.``umac-128-etm@openssh.com` |
| 1029a0 | 60 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 61 6c 67 6f 72 69 74 68 6d 73 3a 20 | `.List.of.supported.algorithms:. |
| 1029c0 | 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 2d 73 68 61 31 60 60 2c 20 | ``diffie-hellman-group1-sha1``,. |
| 1029e0 | 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 34 2d 73 68 61 31 60 60 2c | ``diffie-hellman-group14-sha1``, |
| 102a00 | 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 34 2d 73 68 61 32 35 36 | .``diffie-hellman-group14-sha256 |
| 102a20 | 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 36 2d 73 68 61 | ``,.``diffie-hellman-group16-sha |
| 102a40 | 35 31 32 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 38 2d | 512``,.``diffie-hellman-group18- |
| 102a60 | 73 68 61 35 31 32 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 6e 2d 67 72 6f 75 70 | sha512``,.``diffie-hellman-group |
| 102a80 | 2d 65 78 63 68 61 6e 67 65 2d 73 68 61 31 60 60 2c 20 60 60 64 69 66 66 69 65 2d 68 65 6c 6c 6d | -exchange-sha1``,.``diffie-hellm |
| 102aa0 | 61 6e 2d 67 72 6f 75 70 2d 65 78 63 68 61 6e 67 65 2d 73 68 61 32 35 36 60 60 2c 20 60 60 65 63 | an-group-exchange-sha256``,.``ec |
| 102ac0 | 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 60 60 2c 20 60 60 65 63 64 68 2d 73 68 61 32 2d | dh-sha2-nistp256``,.``ecdh-sha2- |
| 102ae0 | 6e 69 73 74 70 33 38 34 60 60 2c 20 60 60 65 63 64 68 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 | nistp384``,.``ecdh-sha2-nistp521 |
| 102b00 | 60 60 2c 20 60 60 63 75 72 76 65 32 35 35 31 39 2d 73 68 61 32 35 36 60 60 20 61 6e 64 20 60 60 | ``,.``curve25519-sha256``.and.`` |
| 102b20 | 63 75 72 76 65 32 35 35 31 39 2d 73 68 61 32 35 36 40 6c 69 62 73 73 68 2e 6f 72 67 60 60 2e 00 | curve25519-sha256@libssh.org``.. |
| 102b40 | 4c 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 61 6c 67 6f 72 69 74 68 6d 73 3a 20 60 60 | List.of.supported.algorithms:.`` |
| 102b60 | 73 73 68 2d 65 64 32 35 35 31 39 60 60 2c 20 60 60 73 73 68 2d 65 64 32 35 35 31 39 2d 63 65 72 | ssh-ed25519``,.``ssh-ed25519-cer |
| 102b80 | 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 73 73 68 2d 65 64 | t-v01@openssh.com``,.``sk-ssh-ed |
| 102ba0 | 32 35 35 31 39 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 73 73 68 2d 65 64 | 25519@openssh.com``,.``sk-ssh-ed |
| 102bc0 | 32 35 35 31 39 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 | 25519-cert-v01@openssh.com``,.`` |
| 102be0 | 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 60 60 2c 20 60 60 65 63 64 73 61 2d 73 | ecdsa-sha2-nistp256``,.``ecdsa-s |
| 102c00 | 68 61 32 2d 6e 69 73 74 70 32 35 36 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f | ha2-nistp256-cert-v01@openssh.co |
| 102c20 | 6d 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 60 60 2c 20 60 60 | m``,.``ecdsa-sha2-nistp384``,.`` |
| 102c40 | 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 33 38 34 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 | ecdsa-sha2-nistp384-cert-v01@ope |
| 102c60 | 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 | nssh.com``,.``ecdsa-sha2-nistp52 |
| 102c80 | 31 60 60 2c 20 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 2d 63 65 72 74 2d | 1``,.``ecdsa-sha2-nistp521-cert- |
| 102ca0 | 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d 65 63 64 73 61 2d 73 68 | v01@openssh.com``,.``sk-ecdsa-sh |
| 102cc0 | 61 32 2d 6e 69 73 74 70 32 35 36 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 6b 2d | a2-nistp256@openssh.com``,.``sk- |
| 102ce0 | 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 | ecdsa-sha2-nistp256-cert-v01@ope |
| 102d00 | 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 77 65 62 61 75 74 68 6e 2d 73 6b 2d 65 63 64 73 61 2d | nssh.com``,.``webauthn-sk-ecdsa- |
| 102d20 | 73 68 61 32 2d 6e 69 73 74 70 32 35 36 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 | sha2-nistp256@openssh.com``,.``s |
| 102d40 | 73 68 2d 64 73 73 60 60 2c 20 60 60 73 73 68 2d 64 73 73 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 | sh-dss``,.``ssh-dss-cert-v01@ope |
| 102d60 | 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 73 73 68 2d 72 73 61 60 60 2c 20 60 60 73 73 68 2d 72 | nssh.com``,.``ssh-rsa``,.``ssh-r |
| 102d80 | 73 61 2d 63 65 72 74 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 72 73 61 | sa-cert-v01@openssh.com``,.``rsa |
| 102da0 | 2d 73 68 61 32 2d 32 35 36 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 32 35 36 2d 63 65 72 74 | -sha2-256``,.``rsa-sha2-256-cert |
| 102dc0 | 2d 76 30 31 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 35 | -v01@openssh.com``,.``rsa-sha2-5 |
| 102de0 | 31 32 60 60 2c 20 60 60 72 73 61 2d 73 68 61 32 2d 35 31 32 2d 63 65 72 74 2d 76 30 31 40 6f 70 | 12``,.``rsa-sha2-512-cert-v01@op |
| 102e00 | 65 6e 73 73 68 2e 63 6f 6d 60 60 00 4c 69 73 74 20 6f 66 20 73 75 70 70 6f 72 74 65 64 20 63 69 | enssh.com``.List.of.supported.ci |
| 102e20 | 70 68 65 72 73 3a 20 60 60 33 64 65 73 2d 63 62 63 60 60 2c 20 60 60 61 65 73 31 32 38 2d 63 62 | phers:.``3des-cbc``,.``aes128-cb |
| 102e40 | 63 60 60 2c 20 60 60 61 65 73 31 39 32 2d 63 62 63 60 60 2c 20 60 60 61 65 73 32 35 36 2d 63 62 | c``,.``aes192-cbc``,.``aes256-cb |
| 102e60 | 63 60 60 2c 20 60 60 61 65 73 31 32 38 2d 63 74 72 60 60 2c 20 60 60 61 65 73 31 39 32 2d 63 74 | c``,.``aes128-ctr``,.``aes192-ct |
| 102e80 | 72 60 60 2c 20 60 60 61 65 73 32 35 36 2d 63 74 72 60 60 2c 20 60 60 61 72 63 66 6f 75 72 31 32 | r``,.``aes256-ctr``,.``arcfour12 |
| 102ea0 | 38 60 60 2c 20 60 60 61 72 63 66 6f 75 72 32 35 36 60 60 2c 20 60 60 61 72 63 66 6f 75 72 60 60 | 8``,.``arcfour256``,.``arcfour`` |
| 102ec0 | 2c 20 60 60 62 6c 6f 77 66 69 73 68 2d 63 62 63 60 60 2c 20 60 60 63 61 73 74 31 32 38 2d 63 62 | ,.``blowfish-cbc``,.``cast128-cb |
| 102ee0 | 63 60 60 00 4c 69 73 74 20 6f 66 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 | c``.List.of.well-known.communiti |
| 102f00 | 65 73 00 4c 69 73 74 65 6e 20 66 6f 72 20 44 48 43 50 20 72 65 71 75 65 73 74 73 20 6f 6e 20 69 | es.Listen.for.DHCP.requests.on.i |
| 102f20 | 6e 74 65 72 66 61 63 65 20 60 60 65 74 68 31 60 60 2e 00 4c 69 73 74 73 20 56 52 46 73 20 74 68 | nterface.``eth1``..Lists.VRFs.th |
| 102f40 | 61 74 20 68 61 76 65 20 62 65 65 6e 20 63 72 65 61 74 65 64 00 4c 6f 61 64 20 42 61 6c 61 6e 63 | at.have.been.created.Load.Balanc |
| 102f60 | 65 00 4c 6f 61 64 20 42 61 6c 61 6e 63 69 6e 67 00 4c 6f 61 64 20 74 68 65 20 63 6f 6e 74 61 69 | e.Load.Balancing.Load.the.contai |
| 102f80 | 6e 65 72 20 69 6d 61 67 65 20 69 6e 20 6f 70 2d 6d 6f 64 65 2e 00 4c 6f 61 64 2d 62 61 6c 61 6e | ner.image.in.op-mode..Load-balan |
| 102fa0 | 63 69 6e 67 00 4c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 | cing.Load-balancing.algorithms.t |
| 102fc0 | 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 64 69 73 74 72 69 62 75 74 65 64 20 72 65 71 75 65 73 | o.be.used.for.distributed.reques |
| 102fe0 | 74 73 20 61 6d 6f 6e 67 20 74 68 65 20 61 76 61 69 6c 61 62 6c 65 20 73 65 72 76 65 72 73 00 4c | ts.among.the.available.servers.L |
| 103000 | 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 6f 20 62 65 20 75 | oad-balancing.algorithms.to.be.u |
| 103020 | 73 65 64 20 66 6f 72 20 64 69 73 74 72 69 62 75 74 69 6e 64 20 72 65 71 75 65 73 74 73 20 61 6d | sed.for.distributind.requests.am |
| 103040 | 6f 6e 67 20 74 68 65 20 76 61 69 6c 61 62 6c 65 20 73 65 72 76 65 72 73 00 4c 6f 61 64 2d 62 61 | ong.the.vailable.servers.Load-ba |
| 103060 | 6c 61 6e 63 69 6e 67 20 73 63 68 65 64 75 6c 65 20 61 6c 67 6f 72 69 74 68 6d 3a 00 4c 6f 63 61 | lancing.schedule.algorithm:.Loca |
| 103080 | 6c 00 4c 6f 63 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 2d 20 41 6e 6e 6f 74 61 74 65 | l.Local.Configuration.-.Annotate |
| 1030a0 | 64 3a 00 4c 6f 63 61 6c 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 4c 6f 63 61 6c 20 49 50 | d:.Local.Configuration:.Local.IP |
| 1030c0 | 20 60 3c 61 64 64 72 65 73 73 3e 60 20 75 73 65 64 20 77 68 65 6e 20 63 6f 6d 6d 75 6e 69 63 61 | .`<address>`.used.when.communica |
| 1030e0 | 74 69 6e 67 20 74 6f 20 74 68 65 20 48 41 20 70 65 65 72 2e 00 4c 6f 63 61 6c 20 49 50 20 60 3c | ting.to.the.HA.peer..Local.IP.`< |
| 103100 | 61 64 64 72 65 73 73 3e 60 20 75 73 65 64 20 77 68 65 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e | address>`.used.when.communicatin |
| 103120 | 67 20 74 6f 20 74 68 65 20 66 61 69 6c 6f 76 65 72 20 70 65 65 72 2e 00 4c 6f 63 61 6c 20 49 50 | g.to.the.failover.peer..Local.IP |
| 103140 | 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 6c 69 73 74 65 6e 20 6f 6e 00 4c 6f 63 61 6c 20 49 50 | .addresses.to.listen.on.Local.IP |
| 103160 | 76 34 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 73 65 72 76 69 63 65 20 74 6f 20 6c 69 73 74 | v4.addresses.for.service.to.list |
| 103180 | 65 6e 20 6f 6e 2e 00 4c 6f 63 61 6c 20 52 6f 75 74 65 20 49 50 76 34 00 4c 6f 63 61 6c 20 52 6f | en.on..Local.Route.IPv4.Local.Ro |
| 1031a0 | 75 74 65 20 49 50 76 36 00 4c 6f 63 61 6c 20 52 6f 75 74 65 20 50 6f 6c 69 63 79 00 4c 6f 63 61 | ute.IPv6.Local.Route.Policy.Loca |
| 1031c0 | 6c 20 55 73 65 72 20 41 63 63 6f 75 6e 74 00 4c 6f 63 61 6c 20 70 61 74 68 20 74 68 61 74 20 69 | l.User.Account.Local.path.that.i |
| 1031e0 | 6e 63 6c 75 64 65 73 20 74 68 65 20 6b 6e 6f 77 6e 20 68 6f 73 74 73 20 66 69 6c 65 2e 00 4c 6f | ncludes.the.known.hosts.file..Lo |
| 103200 | 63 61 6c 20 70 61 74 68 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 72 69 76 61 | cal.path.that.includes.the.priva |
| 103220 | 74 65 20 6b 65 79 20 66 69 6c 65 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 2e 00 4c 6f 63 61 6c | te.key.file.of.the.router..Local |
| 103240 | 20 70 61 74 68 20 74 68 61 74 20 69 6e 63 6c 75 64 65 73 20 74 68 65 20 70 75 62 6c 69 63 20 6b | .path.that.includes.the.public.k |
| 103260 | 65 79 20 66 69 6c 65 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 2e 00 4c 6f 63 61 6c 20 72 6f 75 | ey.file.of.the.router..Local.rou |
| 103280 | 74 65 00 4c 6f 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 20 74 6f 20 73 65 72 69 61 6c 20 70 6f 72 | te.Locally.connect.to.serial.por |
| 1032a0 | 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 64 65 76 69 63 65 3e 60 2e 00 4c 6f 63 61 | t.identified.by.`<device>`..Loca |
| 1032c0 | 6c 6c 79 20 73 69 67 6e 69 66 69 63 61 6e 74 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 | lly.significant.administrative.d |
| 1032e0 | 69 73 74 61 6e 63 65 2e 00 4c 6f 67 20 61 6c 65 72 74 00 4c 6f 67 20 61 75 64 69 74 00 4c 6f 67 | istance..Log.alert.Log.audit.Log |
| 103300 | 20 63 68 61 6e 67 65 73 20 69 6e 20 61 64 6a 61 63 65 6e 63 79 20 73 74 61 74 65 2e 00 4c 6f 67 | .changes.in.adjacency.state..Log |
| 103320 | 20 65 76 65 72 79 74 68 69 6e 67 00 4c 6f 67 20 6d 65 73 73 61 67 65 73 20 66 72 6f 6d 20 61 20 | .everything.Log.messages.from.a. |
| 103340 | 73 70 65 63 69 66 69 65 64 20 69 6d 61 67 65 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 79 65 64 | specified.image.can.be.displayed |
| 103360 | 20 6f 6e 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 44 65 74 61 69 6c 73 20 6f 66 20 61 6c 6c 6f | .on.the.console..Details.of.allo |
| 103380 | 77 65 64 20 70 61 72 61 6d 65 74 65 72 73 3a 00 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 | wed.parameters:.Log.syslog.messa |
| 1033a0 | 67 65 73 20 74 6f 20 60 60 2f 64 65 76 2f 63 6f 6e 73 6f 6c 65 60 60 2c 20 66 6f 72 20 61 6e 20 | ges.to.``/dev/console``,.for.an. |
| 1033c0 | 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 | explanation.on.:ref:`syslog_faci |
| 1033e0 | 6c 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f | lities`.keywords.and.:ref:`syslo |
| 103400 | 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 | g_severity_level`.keywords.see.t |
| 103420 | 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 4c 6f 67 20 73 79 73 6c 6f 67 20 6d 65 73 73 61 67 65 73 | ables.below..Log.syslog.messages |
| 103440 | 20 74 6f 20 66 69 6c 65 20 73 70 65 63 69 66 69 65 64 20 76 69 61 20 60 3c 66 69 6c 65 6e 61 6d | .to.file.specified.via.`<filenam |
| 103460 | 65 3e 60 2c 20 66 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a | e>`,.for.an.explanation.on.:ref: |
| 103480 | 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 6b 65 79 77 6f 72 64 73 20 61 6e 64 | `syslog_facilities`.keywords.and |
| 1034a0 | 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 20 6b 65 | .:ref:`syslog_severity_level`.ke |
| 1034c0 | 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 6c 6f 77 2e 00 4c 6f 67 20 73 79 73 | ywords.see.tables.below..Log.sys |
| 1034e0 | 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 74 6f 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 73 70 65 63 | log.messages.to.remote.host.spec |
| 103500 | 69 66 69 65 64 20 62 79 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 20 54 68 65 20 61 64 64 72 65 73 | ified.by.`<address>`..The.addres |
| 103520 | 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 65 69 74 68 65 72 20 46 51 44 | s.can.be.specified.by.either.FQD |
| 103540 | 4e 20 6f 72 20 49 50 20 61 64 64 72 65 73 73 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 | N.or.IP.address..For.an.explanat |
| 103560 | 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 | ion.on.:ref:`syslog_facilities`. |
| 103580 | 6b 65 79 77 6f 72 64 73 20 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 | keywords.and.:ref:`syslog_severi |
| 1035a0 | 74 79 5f 6c 65 76 65 6c 60 20 6b 65 79 77 6f 72 64 73 20 73 65 65 20 74 61 62 6c 65 73 20 62 65 | ty_level`.keywords.see.tables.be |
| 1035c0 | 6c 6f 77 2e 00 4c 6f 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 | low..Log.the.connection.tracking |
| 1035e0 | 20 65 76 65 6e 74 73 20 70 65 72 20 70 72 6f 74 6f 63 6f 6c 2e 00 4c 6f 67 20 74 68 65 20 63 6f | .events.per.protocol..Log.the.co |
| 103600 | 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 65 76 65 6e 74 73 20 70 65 72 20 74 79 70 | nnection.tracking.events.per.typ |
| 103620 | 65 2e 00 4c 6f 67 67 69 6e 67 00 4c 6f 67 67 69 6e 67 20 63 61 6e 20 62 65 20 65 6e 61 62 6c 65 | e..Logging.Logging.can.be.enable |
| 103640 | 20 66 6f 72 20 65 76 65 72 79 20 73 69 6e 67 6c 65 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 2e | .for.every.single.firewall.rule. |
| 103660 | 20 49 66 20 65 6e 61 62 6c 65 64 2c 20 6f 74 68 65 72 20 6c 6f 67 20 6f 70 74 69 6f 6e 73 20 63 | .If.enabled,.other.log.options.c |
| 103680 | 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 4c 6f 67 67 69 6e 67 20 74 6f 20 61 20 72 65 6d 6f | an.be.defined..Logging.to.a.remo |
| 1036a0 | 74 65 20 68 6f 73 74 20 6c 65 61 76 65 73 20 74 68 65 20 6c 6f 63 61 6c 20 6c 6f 67 67 69 6e 67 | te.host.leaves.the.local.logging |
| 1036c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 6e 74 61 63 74 2c 20 69 74 20 63 61 6e 20 62 65 | .configuration.intact,.it.can.be |
| 1036e0 | 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 70 61 72 61 6c 6c 65 6c 20 74 6f 20 61 20 63 75 73 | .configured.in.parallel.to.a.cus |
| 103700 | 74 6f 6d 20 66 69 6c 65 20 6f 72 20 63 6f 6e 73 6f 6c 65 20 6c 6f 67 67 69 6e 67 2e 20 59 6f 75 | tom.file.or.console.logging..You |
| 103720 | 20 63 61 6e 20 6c 6f 67 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 68 6f 73 74 73 20 61 74 20 74 68 | .can.log.to.multiple.hosts.at.th |
| 103740 | 65 20 73 61 6d 65 20 74 69 6d 65 2c 20 75 73 69 6e 67 20 65 69 74 68 65 72 20 54 43 50 20 6f 72 | e.same.time,.using.either.TCP.or |
| 103760 | 20 55 44 50 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 73 65 6e 64 69 6e 67 20 74 68 65 | .UDP..The.default.is.sending.the |
| 103780 | 20 6d 65 73 73 61 67 65 73 20 76 69 61 20 70 6f 72 74 20 35 31 34 2f 55 44 50 2e 00 4c 6f 67 69 | .messages.via.port.514/UDP..Logi |
| 1037a0 | 6e 20 42 61 6e 6e 65 72 00 4c 6f 67 69 6e 20 6c 69 6d 69 74 73 00 4c 6f 67 69 6e 2f 55 73 65 72 | n.Banner.Login.limits.Login/User |
| 1037c0 | 20 4d 61 6e 61 67 65 6d 65 6e 74 00 4c 6f 6b 69 00 4c 6f 6f 70 20 46 72 65 65 20 41 6c 74 65 72 | .Management.Loki.Loop.Free.Alter |
| 1037e0 | 6e 61 74 65 20 28 4c 46 41 29 00 4c 6f 6f 70 62 61 63 6b 00 4c 6f 6f 70 62 61 63 6b 73 20 6f 63 | nate.(LFA).Loopback.Loopbacks.oc |
| 103800 | 63 75 72 73 20 61 74 20 74 68 65 20 49 50 20 6c 65 76 65 6c 20 74 68 65 20 73 61 6d 65 20 77 61 | curs.at.the.IP.level.the.same.wa |
| 103820 | 79 20 61 73 20 66 6f 72 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 2c 20 65 74 68 65 72 | y.as.for.other.interfaces,.ether |
| 103840 | 6e 65 74 20 66 72 61 6d 65 73 20 61 72 65 20 6e 6f 74 20 66 6f 72 77 61 72 64 65 64 20 62 65 74 | net.frames.are.not.forwarded.bet |
| 103860 | 77 65 65 6e 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2e | ween.Pseudo-Ethernet.interfaces. |
| 103880 | 00 4c 6f 77 00 4d 41 43 20 47 72 6f 75 70 73 00 4d 41 43 20 61 64 64 72 65 73 73 20 61 67 69 6e | .Low.MAC.Groups.MAC.address.agin |
| 1038a0 | 67 20 60 3c 74 69 6d 65 60 3e 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 | g.`<time`>.in.seconds.(default:. |
| 1038c0 | 33 30 30 29 2e 00 4d 41 43 2f 50 48 59 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 4d 41 43 56 4c 41 | 300)..MAC/PHY.information.MACVLA |
| 1038e0 | 4e 20 2d 20 50 73 65 75 64 6f 20 45 74 68 65 72 6e 65 74 00 4d 41 43 73 65 63 00 4d 41 43 73 65 | N.-.Pseudo.Ethernet.MACsec.MACse |
| 103900 | 63 20 69 73 20 61 6e 20 49 45 45 45 20 73 74 61 6e 64 61 72 64 20 28 49 45 45 45 20 38 30 32 2e | c.is.an.IEEE.standard.(IEEE.802. |
| 103920 | 31 41 45 29 20 66 6f 72 20 4d 41 43 20 73 65 63 75 72 69 74 79 2c 20 69 6e 74 72 6f 64 75 63 65 | 1AE).for.MAC.security,.introduce |
| 103940 | 64 20 69 6e 20 32 30 30 36 2e 20 49 74 20 64 65 66 69 6e 65 73 20 61 20 77 61 79 20 74 6f 20 65 | d.in.2006..It.defines.a.way.to.e |
| 103960 | 73 74 61 62 6c 69 73 68 20 61 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 | stablish.a.protocol.independent. |
| 103980 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 74 77 6f 20 68 6f 73 74 73 20 77 69 74 | connection.between.two.hosts.wit |
| 1039a0 | 68 20 64 61 74 61 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 2c 20 61 75 74 68 65 6e 74 69 | h.data.confidentiality,.authenti |
| 1039c0 | 63 69 74 79 20 61 6e 64 2f 6f 72 20 69 6e 74 65 67 72 69 74 79 2c 20 75 73 69 6e 67 20 47 43 4d | city.and/or.integrity,.using.GCM |
| 1039e0 | 2d 41 45 53 2d 31 32 38 2e 20 4d 41 43 73 65 63 20 6f 70 65 72 61 74 65 73 20 6f 6e 20 74 68 65 | -AES-128..MACsec.operates.on.the |
| 103a00 | 20 45 74 68 65 72 6e 65 74 20 6c 61 79 65 72 20 61 6e 64 20 61 73 20 73 75 63 68 20 69 73 20 61 | .Ethernet.layer.and.as.such.is.a |
| 103a20 | 20 6c 61 79 65 72 20 32 20 70 72 6f 74 6f 63 6f 6c 2c 20 77 68 69 63 68 20 6d 65 61 6e 73 20 69 | .layer.2.protocol,.which.means.i |
| 103a40 | 74 27 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 72 61 66 66 69 63 20 77 | t's.designed.to.secure.traffic.w |
| 103a60 | 69 74 68 69 6e 20 61 20 6c 61 79 65 72 20 32 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 63 6c 75 64 69 | ithin.a.layer.2.network,.includi |
| 103a80 | 6e 67 20 44 48 43 50 20 6f 72 20 41 52 50 20 72 65 71 75 65 73 74 73 2e 20 49 74 20 64 6f 65 73 | ng.DHCP.or.ARP.requests..It.does |
| 103aa0 | 20 6e 6f 74 20 63 6f 6d 70 65 74 65 20 77 69 74 68 20 6f 74 68 65 72 20 73 65 63 75 72 69 74 79 | .not.compete.with.other.security |
| 103ac0 | 20 73 6f 6c 75 74 69 6f 6e 73 20 73 75 63 68 20 61 73 20 49 50 73 65 63 20 28 6c 61 79 65 72 20 | .solutions.such.as.IPsec.(layer. |
| 103ae0 | 33 29 20 6f 72 20 54 4c 53 20 28 6c 61 79 65 72 20 34 29 2c 20 61 73 20 61 6c 6c 20 74 68 6f 73 | 3).or.TLS.(layer.4),.as.all.thos |
| 103b00 | 65 20 73 6f 6c 75 74 69 6f 6e 73 20 61 72 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 69 72 20 6f | e.solutions.are.used.for.their.o |
| 103b20 | 77 6e 20 73 70 65 63 69 66 69 63 20 75 73 65 20 63 61 73 65 73 2e 00 4d 41 43 73 65 63 20 69 73 | wn.specific.use.cases..MACsec.is |
| 103b40 | 20 61 6e 20 69 6e 74 65 72 65 73 74 69 6e 67 20 61 6c 74 65 72 6e 61 74 69 76 65 20 74 6f 20 65 | .an.interesting.alternative.to.e |
| 103b60 | 78 69 73 74 69 6e 67 20 74 75 6e 6e 65 6c 69 6e 67 20 73 6f 6c 75 74 69 6f 6e 73 20 74 68 61 74 | xisting.tunneling.solutions.that |
| 103b80 | 20 70 72 6f 74 65 63 74 73 20 6c 61 79 65 72 20 32 20 62 79 20 70 65 72 66 6f 72 6d 69 6e 67 20 | .protects.layer.2.by.performing. |
| 103ba0 | 69 6e 74 65 67 72 69 74 79 2c 20 6f 72 69 67 69 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | integrity,.origin.authentication |
| 103bc0 | 2c 20 61 6e 64 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 54 68 65 | ,.and.optionally.encryption..The |
| 103be0 | 20 74 79 70 69 63 61 6c 20 75 73 65 20 63 61 73 65 20 69 73 20 74 6f 20 75 73 65 20 4d 41 43 73 | .typical.use.case.is.to.use.MACs |
| 103c00 | 65 63 20 62 65 74 77 65 65 6e 20 68 6f 73 74 73 20 61 6e 64 20 61 63 63 65 73 73 20 73 77 69 74 | ec.between.hosts.and.access.swit |
| 103c20 | 63 68 65 73 2c 20 62 65 74 77 65 65 6e 20 74 77 6f 20 68 6f 73 74 73 2c 20 6f 72 20 62 65 74 77 | ches,.between.two.hosts,.or.betw |
| 103c40 | 65 65 6e 20 74 77 6f 20 73 77 69 74 63 68 65 73 2e 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c | een.two.switches..in.this.exampl |
| 103c60 | 65 20 62 65 6c 6f 77 2c 20 77 65 20 75 73 65 20 56 58 4c 41 4e 20 61 6e 64 20 4d 41 43 73 65 63 | e.below,.we.use.VXLAN.and.MACsec |
| 103c80 | 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 74 75 6e 6e 65 6c 2e 00 4d 41 43 73 65 63 20 6f 6e | .to.secure.the.tunnel..MACsec.on |
| 103ca0 | 6c 79 20 70 72 6f 76 69 64 65 73 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 79 20 64 65 | ly.provides.authentication.by.de |
| 103cc0 | 66 61 75 6c 74 2c 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 20 6f 70 74 69 6f 6e 61 6c 2e 20 54 | fault,.encryption.is.optional..T |
| 103ce0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 65 6e 61 62 6c 65 20 65 6e 63 72 79 70 74 69 | his.command.will.enable.encrypti |
| 103d00 | 6f 6e 20 66 6f 72 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 70 61 63 6b 65 74 73 2e 00 4d 41 43 | on.for.all.outgoing.packets..MAC |
| 103d20 | 73 65 63 20 6f 70 74 69 6f 6e 73 00 4d 41 43 73 65 63 20 6f 76 65 72 20 77 61 6e 00 4d 44 49 20 | sec.options.MACsec.over.wan.MDI. |
| 103d40 | 70 6f 77 65 72 00 4d 46 41 20 54 4f 54 50 20 6f 70 74 69 6f 6e 73 00 4d 46 41 2f 32 46 41 20 61 | power.MFA.TOTP.options.MFA/2FA.a |
| 103d60 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 75 73 69 6e 67 20 4f 54 50 20 28 6f 6e 65 20 74 69 6d | uthentication.using.OTP.(one.tim |
| 103d80 | 65 20 70 61 73 73 77 6f 72 64 73 29 00 4d 50 4c 53 00 4d 50 4c 53 20 73 75 70 70 6f 72 74 20 69 | e.passwords).MPLS.MPLS.support.i |
| 103da0 | 6e 20 56 79 4f 53 20 69 73 20 6e 6f 74 20 66 69 6e 69 73 68 65 64 20 79 65 74 2c 20 61 6e 64 20 | n.VyOS.is.not.finished.yet,.and. |
| 103dc0 | 74 68 65 72 65 66 6f 72 65 20 69 74 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 6c | therefore.its.functionality.is.l |
| 103de0 | 69 6d 69 74 65 64 2e 20 43 75 72 72 65 6e 74 6c 79 20 74 68 65 72 65 20 69 73 20 6e 6f 20 73 75 | imited..Currently.there.is.no.su |
| 103e00 | 70 70 6f 72 74 20 66 6f 72 20 4d 50 4c 53 20 65 6e 61 62 6c 65 64 20 56 50 4e 20 73 65 72 76 69 | pport.for.MPLS.enabled.VPN.servi |
| 103e20 | 63 65 73 20 73 75 63 68 20 61 73 20 4c 32 56 50 4e 73 20 61 6e 64 20 6d 56 50 4e 73 2e 20 52 53 | ces.such.as.L2VPNs.and.mVPNs..RS |
| 103e40 | 56 50 20 73 75 70 70 6f 72 74 20 69 73 20 61 6c 73 6f 20 6e 6f 74 20 70 72 65 73 65 6e 74 20 61 | VP.support.is.also.not.present.a |
| 103e60 | 73 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 72 6f 75 74 69 6e 67 20 73 74 61 63 6b 20 28 | s.the.underlying.routing.stack.( |
| 103e80 | 46 52 52 29 20 64 6f 65 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 6e 74 20 69 74 2e 20 43 75 72 72 | FRR).does.not.implement.it..Curr |
| 103ea0 | 65 6e 74 6c 79 20 56 79 4f 53 20 69 6d 70 6c 65 6d 65 6e 74 73 20 4c 44 50 20 61 73 20 64 65 73 | ently.VyOS.implements.LDP.as.des |
| 103ec0 | 63 72 69 62 65 64 20 69 6e 20 52 46 43 20 35 30 33 36 3b 20 6f 74 68 65 72 20 4c 44 50 20 73 74 | cribed.in.RFC.5036;.other.LDP.st |
| 103ee0 | 61 6e 64 61 72 64 20 61 72 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 6e 65 73 3a 20 52 | andard.are.the.following.ones:.R |
| 103f00 | 46 43 20 36 37 32 30 2c 20 52 46 43 20 36 36 36 37 2c 20 52 46 43 20 35 39 31 39 2c 20 52 46 43 | FC.6720,.RFC.6667,.RFC.5919,.RFC |
| 103f20 | 20 35 35 36 31 2c 20 52 46 43 20 37 35 35 32 2c 20 52 46 43 20 34 34 34 37 2e 20 42 65 63 61 75 | .5561,.RFC.7552,.RFC.4447..Becau |
| 103f40 | 73 65 20 4d 50 4c 53 20 69 73 20 61 6c 72 65 61 64 79 20 61 76 61 69 6c 61 62 6c 65 20 28 46 52 | se.MPLS.is.already.available.(FR |
| 103f60 | 52 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 52 46 43 20 33 30 33 31 29 2e 00 4d 53 53 20 76 | R.also.supports.RFC.3031)..MSS.v |
| 103f80 | 61 6c 75 65 20 3d 20 4d 54 55 20 2d 20 32 30 20 28 49 50 20 68 65 61 64 65 72 29 20 2d 20 32 30 | alue.=.MTU.-.20.(IP.header).-.20 |
| 103fa0 | 20 28 54 43 50 20 68 65 61 64 65 72 29 2c 20 72 65 73 75 6c 74 69 6e 67 20 69 6e 20 31 34 35 32 | .(TCP.header),.resulting.in.1452 |
| 103fc0 | 20 62 79 74 65 73 20 6f 6e 20 61 20 31 34 39 32 20 62 79 74 65 20 4d 54 55 2e 00 4d 53 53 20 76 | .bytes.on.a.1492.byte.MTU..MSS.v |
| 103fe0 | 61 6c 75 65 20 3d 20 4d 54 55 20 2d 20 34 30 20 28 49 50 76 36 20 68 65 61 64 65 72 29 20 2d 20 | alue.=.MTU.-.40.(IPv6.header).-. |
| 104000 | 32 30 20 28 54 43 50 20 68 65 61 64 65 72 29 2c 20 72 65 73 75 6c 74 69 6e 67 20 69 6e 20 31 34 | 20.(TCP.header),.resulting.in.14 |
| 104020 | 33 32 20 62 79 74 65 73 20 6f 6e 20 61 20 31 34 39 32 20 62 79 74 65 20 4d 54 55 2e 00 4d 54 55 | 32.bytes.on.a.1492.byte.MTU..MTU |
| 104040 | 00 4d 61 69 6c 20 73 79 73 74 65 6d 00 4d 61 69 6e 20 6e 6f 74 65 73 20 72 65 67 61 72 64 69 6e | .Mail.system.Main.notes.regardin |
| 104060 | 67 20 74 68 69 73 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 61 6e 64 20 74 65 72 6d 69 6e 6f 6c 6f | g.this.packet.flow.and.terminolo |
| 104080 | 67 79 20 75 73 65 64 20 69 6e 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 3a 00 4d 61 69 6e 20 73 | gy.used.in.VyOS.firewall:.Main.s |
| 1040a0 | 74 72 75 63 74 75 72 65 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 63 6c 69 20 69 73 20 73 68 | tructure.VyOS.firewall.cli.is.sh |
| 1040c0 | 6f 77 6e 20 6e 65 78 74 3a 00 4d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 69 73 20 73 68 6f 77 | own.next:.Main.structure.is.show |
| 1040e0 | 6e 20 6e 65 78 74 3a 00 4d 61 69 6e 74 65 6e 61 6e 63 65 20 6d 6f 64 65 00 4d 61 6b 65 20 63 6f | n.next:.Maintenance.mode.Make.co |
| 104100 | 6e 66 69 67 2d 73 79 6e 63 20 72 65 6c 65 76 61 6e 74 20 63 68 61 6e 67 65 73 20 74 6f 20 52 6f | nfig-sync.relevant.changes.to.Ro |
| 104120 | 75 74 65 72 20 41 27 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4d 61 6b 65 20 73 75 72 65 | uter.A's.configuration.Make.sure |
| 104140 | 20 63 6f 6e 6e 74 72 61 63 6b 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 72 75 6e 6e 69 6e 67 | .conntrack.is.enabled.by.running |
| 104160 | 20 61 6e 64 20 73 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 | .and.show.connection.tracking.ta |
| 104180 | 62 6c 65 2e 00 4d 61 6e 61 67 65 20 69 6e 74 65 72 6e 61 6c 20 71 75 65 75 65 20 73 69 7a 65 2c | ble..Manage.internal.queue.size, |
| 1041a0 | 20 64 65 66 61 75 6c 74 20 73 69 7a 65 20 69 73 20 34 30 39 36 20 65 76 65 6e 74 73 2e 00 4d 61 | .default.size.is.4096.events..Ma |
| 1041c0 | 6e 61 67 65 20 6c 6f 67 20 6c 65 76 65 6c 00 4d 61 6e 61 67 65 64 20 64 65 76 69 63 65 73 00 4d | nage.log.level.Managed.devices.M |
| 1041e0 | 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 6f 74 65 63 74 69 6f 6e 20 28 4d 46 50 29 | anagement.Frame.Protection.(MFP) |
| 104200 | 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 49 45 45 45 20 38 30 32 2e 31 31 77 00 4d 61 6e 64 61 | .according.to.IEEE.802.11w.Manda |
| 104220 | 74 6f 72 79 20 53 65 74 74 69 6e 67 73 00 4d 61 6e 75 61 6c 20 4e 65 69 67 68 62 6f 72 20 43 6f | tory.Settings.Manual.Neighbor.Co |
| 104240 | 6e 66 69 67 75 72 61 74 69 6f 6e 00 4d 61 6e 75 61 6c 6c 79 20 74 72 69 67 67 65 72 20 63 65 72 | nfiguration.Manually.trigger.cer |
| 104260 | 74 69 66 69 63 61 74 65 20 72 65 6e 65 77 61 6c 2e 20 54 68 69 73 20 77 69 6c 6c 20 62 65 20 64 | tificate.renewal..This.will.be.d |
| 104280 | 6f 6e 65 20 74 77 69 63 65 20 61 20 64 61 79 2e 00 4d 61 70 73 20 74 68 65 20 56 4e 49 20 74 6f | one.twice.a.day..Maps.the.VNI.to |
| 1042a0 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 56 4c 41 4e 20 69 64 2e 20 54 68 65 20 56 4c 41 4e | .the.specified.VLAN.id..The.VLAN |
| 1042c0 | 20 63 61 6e 20 74 68 65 6e 20 62 65 20 63 6f 6e 73 75 6d 65 64 20 62 79 20 61 20 62 72 69 64 67 | .can.then.be.consumed.by.a.bridg |
| 1042e0 | 65 2e 00 4d 61 72 6b 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 73 20 6f 66 66 6c 69 6e 65 | e..Mark.RADIUS.server.as.offline |
| 104300 | 20 66 6f 72 20 74 68 69 73 20 67 69 76 65 6e 20 60 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f | .for.this.given.`<time>`.in.seco |
| 104320 | 6e 64 73 2e 00 4d 61 72 6b 20 74 68 65 20 43 41 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 61 73 | nds..Mark.the.CAs.private.key.as |
| 104340 | 20 70 61 73 73 77 6f 72 64 20 70 72 6f 74 65 63 74 65 64 2e 20 55 73 65 72 20 69 73 20 61 73 6b | .password.protected..User.is.ask |
| 104360 | 65 64 20 66 6f 72 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 77 68 65 6e 20 74 68 65 20 6b 65 79 | ed.for.the.password.when.the.key |
| 104380 | 20 69 73 20 72 65 66 65 72 65 6e 63 65 64 2e 00 4d 61 72 6b 20 74 68 65 20 70 72 69 76 61 74 65 | .is.referenced..Mark.the.private |
| 1043a0 | 20 6b 65 79 20 61 73 20 70 61 73 73 77 6f 72 64 20 70 72 6f 74 65 63 74 65 64 2e 20 55 73 65 72 | .key.as.password.protected..User |
| 1043c0 | 20 69 73 20 61 73 6b 65 64 20 66 6f 72 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 77 68 65 6e 20 | .is.asked.for.the.password.when. |
| 1043e0 | 74 68 65 20 6b 65 79 20 69 73 20 72 65 66 65 72 65 6e 63 65 64 2e 00 4d 61 74 63 68 20 42 47 50 | the.key.is.referenced..Match.BGP |
| 104400 | 20 6c 61 72 67 65 20 63 6f 6d 6d 75 6e 69 74 69 65 73 2e 00 4d 61 74 63 68 20 49 50 20 61 64 64 | .large.communities..Match.IP.add |
| 104420 | 72 65 73 73 65 73 20 62 61 73 65 64 20 6f 6e 20 69 74 73 20 67 65 6f 6c 6f 63 61 74 69 6f 6e 2e | resses.based.on.its.geolocation. |
| 104440 | 20 4d 6f 72 65 20 69 6e 66 6f 3a 20 60 67 65 6f 69 70 20 6d 61 74 63 68 69 6e 67 20 3c 68 74 74 | .More.info:.`geoip.matching.<htt |
| 104460 | 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 | ps://wiki.nftables.org/wiki-nfta |
| 104480 | 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 47 65 6f 49 50 5f 6d 61 74 63 68 69 6e 67 3e 60 5f | bles/index.php/GeoIP_matching>`_ |
| 1044a0 | 2e 00 4d 61 74 63 68 20 49 50 20 61 64 64 72 65 73 73 65 73 20 62 61 73 65 64 20 6f 6e 20 69 74 | ..Match.IP.addresses.based.on.it |
| 1044c0 | 73 20 67 65 6f 6c 6f 63 61 74 69 6f 6e 2e 20 4d 6f 72 65 20 69 6e 66 6f 3a 20 60 67 65 6f 69 70 | s.geolocation..More.info:.`geoip |
| 1044e0 | 20 6d 61 74 63 68 69 6e 67 20 3c 68 74 74 70 73 3a 2f 2f 77 69 6b 69 2e 6e 66 74 61 62 6c 65 73 | .matching.<https://wiki.nftables |
| 104500 | 2e 6f 72 67 2f 77 69 6b 69 2d 6e 66 74 61 62 6c 65 73 2f 69 6e 64 65 78 2e 70 68 70 2f 47 65 6f | .org/wiki-nftables/index.php/Geo |
| 104520 | 49 50 5f 6d 61 74 63 68 69 6e 67 3e 60 5f 2e 20 55 73 65 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 | IP_matching>`_..Use.inverse-matc |
| 104540 | 68 20 74 6f 20 6d 61 74 63 68 20 61 6e 79 74 68 69 6e 67 20 65 78 63 65 70 74 20 74 68 65 20 67 | h.to.match.anything.except.the.g |
| 104560 | 69 76 65 6e 20 63 6f 75 6e 74 72 79 2d 63 6f 64 65 73 2e 00 4d 61 74 63 68 20 52 50 4b 49 20 76 | iven.country-codes..Match.RPKI.v |
| 104580 | 61 6c 69 64 61 74 69 6f 6e 20 72 65 73 75 6c 74 2e 00 4d 61 74 63 68 20 61 20 70 72 6f 74 6f 63 | alidation.result..Match.a.protoc |
| 1045a0 | 6f 6c 20 63 72 69 74 65 72 69 61 2e 20 41 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 6f | ol.criteria..A.protocol.number.o |
| 1045c0 | 72 20 61 20 6e 61 6d 65 20 77 68 69 63 68 20 69 73 20 64 65 66 69 6e 65 64 20 69 6e 3a 20 60 60 | r.a.name.which.is.defined.in:.`` |
| 1045e0 | 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c 73 60 60 2e 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 | /etc/protocols``..Special.names. |
| 104600 | 61 72 65 20 60 60 61 6c 6c 60 60 20 66 6f 72 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e | are.``all``.for.all.protocols.an |
| 104620 | 64 20 60 60 74 63 70 5f 75 64 70 60 60 20 66 6f 72 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 | d.``tcp_udp``.for.tcp.and.udp.ba |
| 104640 | 73 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 73 20 74 | sed.packets..The.``!``.negates.t |
| 104660 | 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 4d 61 74 63 68 20 61 20 70 72 | he.selected.protocol..Match.a.pr |
| 104680 | 6f 74 6f 63 6f 6c 20 63 72 69 74 65 72 69 61 2e 20 41 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d 62 | otocol.criteria..A.protocol.numb |
| 1046a0 | 65 72 20 6f 72 20 61 20 6e 61 6d 65 20 77 68 69 63 68 20 69 73 20 68 65 72 65 20 64 65 66 69 6e | er.or.a.name.which.is.here.defin |
| 1046c0 | 65 64 3a 20 60 60 2f 65 74 63 2f 70 72 6f 74 6f 63 6f 6c 73 60 60 2e 20 53 70 65 63 69 61 6c 20 | ed:.``/etc/protocols``..Special. |
| 1046e0 | 6e 61 6d 65 73 20 61 72 65 20 60 60 61 6c 6c 60 60 20 66 6f 72 20 61 6c 6c 20 70 72 6f 74 6f 63 | names.are.``all``.for.all.protoc |
| 104700 | 6f 6c 73 20 61 6e 64 20 60 60 74 63 70 5f 75 64 70 60 60 20 66 6f 72 20 74 63 70 20 61 6e 64 20 | ols.and.``tcp_udp``.for.tcp.and. |
| 104720 | 75 64 70 20 62 61 73 65 64 20 70 61 63 6b 65 74 73 2e 20 54 68 65 20 60 60 21 60 60 20 6e 65 67 | udp.based.packets..The.``!``.neg |
| 104740 | 61 74 65 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 4d 61 74 63 68 | ate.the.selected.protocol..Match |
| 104760 | 20 61 67 61 69 6e 73 74 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 61 20 70 61 63 6b 65 74 2e 00 | .against.the.state.of.a.packet.. |
| 104780 | 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 56 4c 41 4e 20 69 64 65 6e 74 69 66 69 65 72 2e 20 | Match.based.on.VLAN.identifier.. |
| 1047a0 | 52 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 | Range.is.also.supported..Match.b |
| 1047c0 | 61 73 65 64 20 6f 6e 20 56 4c 41 4e 20 70 72 69 6f 72 69 74 79 20 28 50 72 69 6f 72 69 74 79 20 | ased.on.VLAN.priority.(Priority. |
| 1047e0 | 43 6f 64 65 20 50 6f 69 6e 74 20 2d 20 50 43 50 29 2e 20 52 61 6e 67 65 20 69 73 20 61 6c 73 6f | Code.Point.-.PCP)..Range.is.also |
| 104800 | 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 | .supported..Match.based.on.conne |
| 104820 | 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 | ction.mark..Match.based.on.conne |
| 104840 | 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 68 65 6c 70 65 72 20 6d | ction.tracking.protocol.helper.m |
| 104860 | 6f 64 75 6c 65 20 74 6f 20 73 65 63 75 72 65 20 75 73 65 20 6f 66 20 74 68 61 74 20 68 65 6c 70 | odule.to.secure.use.of.that.help |
| 104880 | 65 72 20 6d 6f 64 75 6c 65 2e 20 53 65 65 20 62 65 6c 6f 77 20 66 6f 72 20 70 6f 73 73 69 62 6c | er.module..See.below.for.possibl |
| 1048a0 | 65 20 63 6f 6d 70 6c 65 74 69 6f 6e 73 20 60 3c 6d 6f 64 75 6c 65 3e 60 2e 00 4d 61 74 63 68 20 | e.completions.`<module>`..Match. |
| 1048c0 | 62 61 73 65 64 20 6f 6e 20 64 73 63 70 20 76 61 6c 75 65 20 63 72 69 74 65 72 69 61 2e 20 4d 75 | based.on.dscp.value.criteria..Mu |
| 1048e0 | 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 66 72 6f 6d 20 30 20 74 6f 20 36 33 20 61 6e 64 20 72 | ltiple.values.from.0.to.63.and.r |
| 104900 | 61 6e 67 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 | anges.are.supported..Match.based |
| 104920 | 20 6f 6e 20 64 73 63 70 20 76 61 6c 75 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 66 | .on.dscp.value..Match.based.on.f |
| 104940 | 72 61 67 6d 65 6e 74 20 63 72 69 74 65 72 69 61 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | ragment.criteria..Match.based.on |
| 104960 | 20 66 72 61 67 6d 65 6e 74 61 74 69 6f 6e 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 | .fragmentation..Match.based.on.i |
| 104980 | 63 6d 70 20 63 6f 64 65 20 61 6e 64 20 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | cmp.code.and.type..Match.based.o |
| 1049a0 | 6e 20 69 63 6d 70 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 | n.icmp.type-name.criteria..Use.t |
| 1049c0 | 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a | ab.for.information.about.what.** |
| 1049e0 | 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 | type-name**.criteria.are.support |
| 104a00 | 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 20 74 79 70 65 2d 6e 61 6d | ed..Match.based.on.icmp.type-nam |
| 104a20 | 65 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 | e..Use.tab.for.information.about |
| 104a40 | 20 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 | .what.**type-name**.criteria.are |
| 104a60 | 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 76 | .supported..Match.based.on.icmpv |
| 104a80 | 36 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 62 20 66 6f | 6.type-name.criteria..Use.tab.fo |
| 104aa0 | 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 2a 2a 74 79 70 65 2d | r.information.about.what.**type- |
| 104ac0 | 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d | name**.criteria.are.supported..M |
| 104ae0 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 2e 20 | atch.based.on.icmpv6.type-name.. |
| 104b00 | 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 | Use.tab.for.information.about.wh |
| 104b20 | 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 | at.**type-name**.criteria.are.su |
| 104b40 | 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 63 6d | pported..Match.based.on.icmp|icm |
| 104b60 | 70 76 36 20 63 6f 64 65 20 61 6e 64 20 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f | pv6.code.and.type..Match.based.o |
| 104b80 | 6e 20 69 63 6d 70 7c 69 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 | n.icmp|icmpv6.type-name.criteria |
| 104ba0 | 2e 20 55 73 65 20 74 61 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 | ..Use.tab.for.information.about. |
| 104bc0 | 77 68 61 74 20 2a 2a 74 79 70 65 2d 6e 61 6d 65 2a 2a 20 63 72 69 74 65 72 69 61 20 61 72 65 20 | what.**type-name**.criteria.are. |
| 104be0 | 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 63 6d 70 7c 69 | supported..Match.based.on.icmp|i |
| 104c00 | 63 6d 70 76 36 20 74 79 70 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 2e 20 55 73 65 20 74 61 | cmpv6.type-name.criteria..Use.ta |
| 104c20 | 62 20 66 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 77 68 61 74 20 74 79 70 | b.for.information.about.what.typ |
| 104c40 | 65 2d 6e 61 6d 65 20 63 72 69 74 65 72 69 61 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 4d | e-name.criteria.are.supported..M |
| 104c60 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 | atch.based.on.inbound.interface. |
| 104c80 | 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 | group..Prepending.character.``!` |
| 104ca0 | 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 | `.for.inverted.matching.criteria |
| 104cc0 | 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 | .is.also.supportd..For.example.` |
| 104ce0 | 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 | `!IFACE_GROUP``.Match.based.on.i |
| 104d00 | 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 | nbound.interface.group..Prependi |
| 104d20 | 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 | ng.character.``!``.for.inverted. |
| 104d40 | 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 | matching.criteria.is.also.suppor |
| 104d60 | 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 | ted..For.example.``!IFACE_GROUP` |
| 104d80 | 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 | `.Match.based.on.inbound.interfa |
| 104da0 | 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 | ce..Wilcard.``*``.can.be.used..F |
| 104dc0 | 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 00 4d 61 74 63 68 20 62 61 73 65 | or.example:.``eth2*``.Match.base |
| 104de0 | 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 | d.on.inbound.interface..Wilcard. |
| 104e00 | 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 | ``*``.can.be.used..For.example:. |
| 104e20 | 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 | ``eth2*``..Prepending.character. |
| 104e40 | 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 | ``!``.for.inverted.matching.crit |
| 104e60 | 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 | eria.is.also.supportd..For.examp |
| 104e80 | 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f | le.``!eth2``.Match.based.on.inbo |
| 104ea0 | 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 63 61 | und.interface..Wildcard.``*``.ca |
| 104ec0 | 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 | n.be.used..For.example:.``eth2*` |
| 104ee0 | 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f | `..Prepending.character.``!``.fo |
| 104f00 | 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 | r.inverted.matching.criteria.is. |
| 104f20 | 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 | also.supported..For.example.``!e |
| 104f40 | 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 | th2``.Match.based.on.inbound.int |
| 104f60 | 65 72 66 61 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 | erface..Wildcard.``*``.can.be.us |
| 104f80 | 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 | ed..For.example:.``eth2*``..Prep |
| 104fa0 | 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e | ending.the.character.``!``.to.in |
| 104fc0 | 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c | vert.the.criteria.to.match.is.al |
| 104fe0 | 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 | so.supported..For.example.``!eth |
| 105000 | 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f | 2``.Match.based.on.inbound/outbo |
| 105020 | 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e | und.interface..Wilcard.``*``.can |
| 105040 | 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 | .be.used..For.example:.``eth2*`` |
| 105060 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 70 73 65 63 20 63 72 69 74 65 72 69 61 2e 00 | .Match.based.on.ipsec.criteria.. |
| 105080 | 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 69 70 73 65 63 2e 00 4d 61 74 63 68 20 62 61 73 65 | Match.based.on.ipsec..Match.base |
| 1050a0 | 64 20 6f 6e 20 6e 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 75 73 2e 00 4d 61 74 63 | d.on.nat.connection.status..Matc |
| 1050c0 | 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 | h.based.on.outbound.interface.gr |
| 1050e0 | 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 | oup..Prepending.character.``!``. |
| 105100 | 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 | for.inverted.matching.criteria.i |
| 105120 | 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 | s.also.supportd..For.example.``! |
| 105140 | 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 | IFACE_GROUP``.Match.based.on.out |
| 105160 | 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e | bound.interface.group..Prependin |
| 105180 | 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d | g.character.``!``.for.inverted.m |
| 1051a0 | 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 | atching.criteria.is.also.support |
| 1051c0 | 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 | ed..For.example.``!IFACE_GROUP`` |
| 1051e0 | 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 | .Match.based.on.outbound.interfa |
| 105200 | 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 | ce.group..Prepending.the.charact |
| 105220 | 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 | er.``!``.to.invert.the.criteria. |
| 105240 | 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 | to.match.is.also.supported..For. |
| 105260 | 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 4d 61 74 63 68 20 62 | example.``!IFACE_GROUP``.Match.b |
| 105280 | 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 | ased.on.outbound.interface..Wilc |
| 1052a0 | 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 | ard.``*``.can.be.used..For.examp |
| 1052c0 | 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 | le:.``eth2*``.Match.based.on.out |
| 1052e0 | 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 2e 20 57 69 6c 63 61 72 64 20 60 60 2a 60 60 20 63 | bound.interface..Wilcard.``*``.c |
| 105300 | 61 6e 20 62 65 20 75 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a | an.be.used..For.example:.``eth2* |
| 105320 | 60 60 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 | ``..Prepending.character.``!``.f |
| 105340 | 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 | or.inverted.matching.criteria.is |
| 105360 | 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 | .also.supportd..For.example.``!e |
| 105380 | 74 68 32 60 60 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e | th2``.Match.based.on.outbound.in |
| 1053a0 | 74 65 72 66 61 63 65 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 | terface..Wildcard.``*``.can.be.u |
| 1053c0 | 73 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 | sed..For.example:.``eth2*``..Pre |
| 1053e0 | 70 65 6e 64 69 6e 67 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 | pending.character.``!``.for.inve |
| 105400 | 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 69 73 20 61 6c 73 6f 20 73 | rted.matching.criteria.is.also.s |
| 105420 | 75 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 | upported..For.example.``!eth2``. |
| 105440 | 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 | Match.based.on.outbound.interfac |
| 105460 | 65 2e 20 57 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 63 61 6e 20 62 65 20 75 73 65 64 2e 20 46 | e..Wildcard.``*``.can.be.used..F |
| 105480 | 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 60 65 74 68 32 2a 60 60 2e 20 50 72 65 70 65 6e 64 69 6e | or.example:.``eth2*``..Prependin |
| 1054a0 | 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 | g.the.character.``!``.to.invert. |
| 1054c0 | 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 | the.criteria.to.match.is.also.su |
| 1054e0 | 70 70 6f 72 74 65 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 65 74 68 32 60 60 00 4d | pported..For.example.``!eth2``.M |
| 105500 | 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 70 61 63 6b 65 74 20 6c 65 6e 67 74 68 20 63 72 69 74 | atch.based.on.packet.length.crit |
| 105520 | 65 72 69 61 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 66 72 6f 6d 20 31 20 74 6f 20 | eria..Multiple.values.from.1.to. |
| 105540 | 36 35 35 33 35 20 61 6e 64 20 72 61 6e 67 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 2e 00 | 65535.and.ranges.are.supported.. |
| 105560 | 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 70 61 63 6b 65 74 20 74 79 70 65 20 63 72 69 74 65 | Match.based.on.packet.type.crite |
| 105580 | 72 69 61 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 6e 75 6d | ria..Match.based.on.protocol.num |
| 1055a0 | 62 65 72 20 6f 72 20 6e 61 6d 65 20 61 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 2f 65 74 63 | ber.or.name.as.defined.in.``/etc |
| 1055c0 | 2f 70 72 6f 74 6f 63 6f 6c 73 60 60 2e 20 53 70 65 63 69 61 6c 20 6e 61 6d 65 73 20 61 72 65 20 | /protocols``..Special.names.are. |
| 1055e0 | 60 60 61 6c 6c 60 60 20 66 6f 72 20 61 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 61 6e 64 20 60 60 | ``all``.for.all.protocols.and.`` |
| 105600 | 74 63 70 5f 75 64 70 60 60 20 66 6f 72 20 74 63 70 20 61 6e 64 20 75 64 70 20 62 61 73 65 64 20 | tcp_udp``.for.tcp.and.udp.based. |
| 105620 | 70 61 63 6b 65 74 73 2e 20 54 68 65 20 60 60 21 60 60 20 6e 65 67 61 74 65 73 20 74 68 65 20 73 | packets..The.``!``.negates.the.s |
| 105640 | 65 6c 65 63 74 65 64 20 70 72 6f 74 6f 63 6f 6c 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e | elected.protocol..Match.based.on |
| 105660 | 20 72 65 63 65 6e 74 6c 79 20 73 65 65 6e 20 73 6f 75 72 63 65 73 2e 00 4d 61 74 63 68 20 62 61 | .recently.seen.sources..Match.ba |
| 105680 | 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 6f 6e | sed.on.source.and/or.destination |
| 1056a0 | 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 | .address..This.is.similar.to.the |
| 1056c0 | 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 20 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 | .network.groups.part,.but.here.y |
| 1056e0 | 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 6e 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 | ou.are.able.to.negate.the.matchi |
| 105700 | 6e 67 20 61 64 64 72 65 73 73 65 73 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 | ng.addresses..Match.based.on.the |
| 105720 | 20 45 74 68 65 72 6e 65 74 20 74 79 70 65 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 77 68 65 | .Ethernet.type.of.the.packet.whe |
| 105740 | 6e 20 69 74 20 69 73 20 56 4c 41 4e 20 74 61 67 67 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 | n.it.is.VLAN.tagged..Match.based |
| 105760 | 20 6f 6e 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 74 79 70 65 20 6f 66 20 74 68 65 20 70 61 63 | .on.the.Ethernet.type.of.the.pac |
| 105780 | 6b 65 74 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 | ket..Match.based.on.the.inbound. |
| 1057a0 | 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 | interface.group..Prepending.the. |
| 1057c0 | 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 | character.``!``.to.invert.the.cr |
| 1057e0 | 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 | iteria.to.match.is.also.supporte |
| 105800 | 64 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 21 49 46 41 43 45 5f 47 52 4f 55 50 60 60 00 | d..For.example.``!IFACE_GROUP``. |
| 105820 | 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 76 65 72 61 | Match.based.on.the.maximum.avera |
| 105840 | 67 65 20 72 61 74 65 2c 20 73 70 65 63 69 66 69 65 64 20 61 73 20 2a 2a 69 6e 74 65 67 65 72 2f | ge.rate,.specified.as.**integer/ |
| 105860 | 75 6e 69 74 2a 2a 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 2a 2a 35 2f 6d 69 6e 75 74 65 73 2a | unit**..For.example.**5/minutes* |
| 105880 | 2a 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d | *.Match.based.on.the.maximum.num |
| 1058a0 | 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 61 6c 6c 6f 77 20 69 6e 20 65 78 63 65 73 | ber.of.packets.to.allow.in.exces |
| 1058c0 | 73 20 6f 66 20 72 61 74 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 61 | s.of.rate..Match.based.on.the.pa |
| 1058e0 | 63 6b 65 74 20 6c 65 6e 67 74 68 2e 20 4d 75 6c 74 69 70 6c 65 20 76 61 6c 75 65 73 20 66 72 6f | cket.length..Multiple.values.fro |
| 105900 | 6d 20 31 20 74 6f 20 36 35 35 33 35 20 61 6e 64 20 72 61 6e 67 65 73 20 61 72 65 20 73 75 70 70 | m.1.to.65535.and.ranges.are.supp |
| 105920 | 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 70 61 63 6b 65 74 | orted..Match.based.on.the.packet |
| 105940 | 20 74 79 70 65 2e 00 4d 61 74 63 68 20 62 61 73 65 64 20 6f 6e 20 76 6c 61 6e 20 49 44 2e 20 52 | .type..Match.based.on.vlan.ID..R |
| 105960 | 61 6e 67 65 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 | ange.is.also.supported..Match.ba |
| 105980 | 73 65 64 20 6f 6e 20 76 6c 61 6e 20 70 72 69 6f 72 69 74 79 28 70 63 70 29 2e 20 52 61 6e 67 65 | sed.on.vlan.priority(pcp)..Range |
| 1059a0 | 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 4d 61 74 63 68 20 62 61 73 65 73 20 | .is.also.supported..Match.bases. |
| 1059c0 | 6f 6e 20 72 65 63 65 6e 74 6c 79 20 73 65 65 6e 20 73 6f 75 72 63 65 73 2e 00 4d 61 74 63 68 20 | on.recently.seen.sources..Match. |
| 1059e0 | 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 | criteria.based.on.connection.mar |
| 105a00 | 6b 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 6e 61 74 20 63 | k..Match.criteria.based.on.nat.c |
| 105a20 | 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 75 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 | onnection.status..Match.criteria |
| 105a40 | 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 | .based.on.source.and/or.destinat |
| 105a60 | 69 6f 6e 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 | ion.address..This.is.similar.to. |
| 105a80 | 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 20 70 61 72 74 2c 20 62 75 74 20 68 65 72 | the.network.groups.part,.but.her |
| 105aa0 | 65 20 79 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 6e 65 67 61 74 65 20 74 68 65 20 6d 61 74 | e.you.are.able.to.negate.the.mat |
| 105ac0 | 63 68 69 6e 67 20 61 64 64 72 65 73 73 65 73 2e 00 4d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 | ching.addresses..Match.criteria. |
| 105ae0 | 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 61 6e 64 2f 6f 72 20 64 65 73 74 69 6e 61 74 69 | based.on.source.and/or.destinati |
| 105b00 | 6f 6e 20 6d 61 63 2d 61 64 64 72 65 73 73 2e 00 4d 61 74 63 68 20 64 6f 6d 61 69 6e 20 6e 61 6d | on.mac-address..Match.domain.nam |
| 105b20 | 65 00 4d 61 74 63 68 20 66 69 72 65 77 61 6c 6c 20 6d 61 72 6b 20 76 61 6c 75 65 00 4d 61 74 63 | e.Match.firewall.mark.value.Matc |
| 105b40 | 68 20 68 6f 70 2d 6c 69 6d 69 74 20 70 61 72 61 6d 65 74 65 72 2c 20 77 68 65 72 65 20 27 65 71 | h.hop-limit.parameter,.where.'eq |
| 105b60 | 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b 20 27 67 74 27 20 73 74 61 6e 64 | '.stands.for.'equal';.'gt'.stand |
| 105b80 | 73 20 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 | s.for.'greater.than',.and.'lt'.s |
| 105ba0 | 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 2e 00 4d 61 74 63 68 20 6c 6f 63 | tands.for.'less.than'..Match.loc |
| 105bc0 | 61 6c 20 70 72 65 66 65 72 65 6e 63 65 2e 00 4d 61 74 63 68 20 72 6f 75 74 65 20 6d 65 74 72 69 | al.preference..Match.route.metri |
| 105be0 | 63 2e 00 4d 61 74 63 68 20 74 68 65 20 68 6f 70 2d 6c 69 6d 69 74 20 70 61 72 61 6d 65 74 65 72 | c..Match.the.hop-limit.parameter |
| 105c00 | 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b | ,.where.'eq'.stands.for.'equal'; |
| 105c20 | 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c | .'gt'.stands.for.'greater.than', |
| 105c40 | 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 | .and.'lt'.stands.for.'less.than' |
| 105c60 | 2e 00 4d 61 74 63 68 20 74 68 65 20 74 69 6d 65 20 74 6f 20 6c 69 76 65 20 70 61 72 61 6d 65 74 | ..Match.the.time.to.live.paramet |
| 105c80 | 65 72 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c | er,.where.'eq'.stands.for.'equal |
| 105ca0 | 27 3b 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e | ';.'gt'.stands.for.'greater.than |
| 105cc0 | 27 2c 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 | ',.and.'lt'.stands.for.'less.tha |
| 105ce0 | 6e 27 2e 00 4d 61 74 63 68 20 74 69 6d 65 20 74 6f 20 6c 69 76 65 20 70 61 72 61 6d 65 74 65 72 | n'..Match.time.to.live.parameter |
| 105d00 | 2c 20 77 68 65 72 65 20 27 65 71 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 65 71 75 61 6c 27 3b | ,.where.'eq'.stands.for.'equal'; |
| 105d20 | 20 27 67 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 67 72 65 61 74 65 72 20 74 68 61 6e 27 2c | .'gt'.stands.for.'greater.than', |
| 105d40 | 20 61 6e 64 20 27 6c 74 27 20 73 74 61 6e 64 73 20 66 6f 72 20 27 6c 65 73 73 20 74 68 61 6e 27 | .and.'lt'.stands.for.'less.than' |
| 105d60 | 2e 00 4d 61 74 63 68 20 77 68 65 6e 20 27 63 6f 75 6e 74 27 20 61 6d 6f 75 6e 74 20 6f 66 20 63 | ..Match.when.'count'.amount.of.c |
| 105d80 | 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 73 65 65 6e 20 77 69 74 68 69 6e 20 27 74 69 6d 65 | onnections.are.seen.within.'time |
| 105da0 | 27 2e 20 54 68 65 73 65 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 63 61 6e 20 62 | '..These.matching.criteria.can.b |
| 105dc0 | 65 20 75 73 65 64 20 74 6f 20 62 6c 6f 63 6b 20 62 72 75 74 65 2d 66 6f 72 63 65 20 61 74 74 65 | e.used.to.block.brute-force.atte |
| 105de0 | 6d 70 74 73 2e 00 4d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 00 4d 61 74 63 68 69 6e 67 | mpts..Matching.criteria.Matching |
| 105e00 | 20 74 72 61 66 66 69 63 00 4d 61 78 69 6d 75 6d 20 41 2d 4d 53 44 55 20 6c 65 6e 67 74 68 20 33 | .traffic.Maximum.A-MSDU.length.3 |
| 105e20 | 38 33 39 20 28 64 65 66 61 75 6c 74 29 20 6f 72 20 37 39 33 35 20 6f 63 74 65 74 73 00 4d 61 78 | 839.(default).or.7935.octets.Max |
| 105e40 | 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 20 28 4d 54 55 29 20 28 64 65 | imum.Transmission.Unit.(MTU).(de |
| 105e60 | 66 61 75 6c 74 3a 20 2a 2a 31 34 33 36 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 | fault:.**1436**).Maximum.Transmi |
| 105e80 | 73 73 69 6f 6e 20 55 6e 69 74 20 28 4d 54 55 29 20 28 64 65 66 61 75 6c 74 3a 20 2a 2a 31 34 39 | ssion.Unit.(MTU).(default:.**149 |
| 105ea0 | 32 2a 2a 29 00 4d 61 78 69 6d 75 6d 20 54 72 61 6e 73 6d 69 73 73 69 6f 6e 20 55 6e 69 74 20 28 | 2**).Maximum.Transmission.Unit.( |
| 105ec0 | 4d 54 55 29 20 28 64 65 66 61 75 6c 74 3a 20 2a 2a 31 35 30 30 2a 2a 29 00 4d 61 78 69 6d 75 6d | MTU).(default:.**1500**).Maximum |
| 105ee0 | 20 61 63 63 65 70 74 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 61 74 65 20 28 65 2e 67 2e 20 | .accepted.connection.rate.(e.g.. |
| 105f00 | 31 2f 6d 69 6e 2c 20 36 30 2f 73 65 63 29 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 | 1/min,.60/sec).Maximum.number.of |
| 105f20 | 20 44 4e 53 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 2e 20 31 20 6d 69 6c 6c 69 6f 6e 20 70 65 | .DNS.cache.entries..1.million.pe |
| 105f40 | 72 20 43 50 55 20 63 6f 72 65 20 77 69 6c 6c 20 67 65 6e 65 72 61 6c 6c 79 20 73 75 66 66 69 63 | r.CPU.core.will.generally.suffic |
| 105f60 | 65 20 66 6f 72 20 6d 6f 73 74 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 4d 61 78 69 6d 75 | e.for.most.installations..Maximu |
| 105f80 | 6d 20 6e 75 6d 62 65 72 20 6f 66 20 49 50 76 34 20 6e 61 6d 65 73 65 72 76 65 72 73 00 4d 61 78 | m.number.of.IPv4.nameservers.Max |
| 105fa0 | 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 70 72 6f | imum.number.of.authenticator.pro |
| 105fc0 | 63 65 73 73 65 73 20 74 6f 20 73 70 61 77 6e 2e 20 49 66 20 79 6f 75 20 73 74 61 72 74 20 74 6f | cesses.to.spawn..If.you.start.to |
| 105fe0 | 6f 20 66 65 77 20 53 71 75 69 64 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 77 61 69 74 20 66 6f | o.few.Squid.will.have.to.wait.fo |
| 106000 | 72 20 74 68 65 6d 20 74 6f 20 70 72 6f 63 65 73 73 20 61 20 62 61 63 6b 6c 6f 67 20 6f 66 20 63 | r.them.to.process.a.backlog.of.c |
| 106020 | 72 65 64 65 6e 74 69 61 6c 20 76 65 72 69 66 69 63 61 74 69 6f 6e 73 2c 20 73 6c 6f 77 69 6e 67 | redential.verifications,.slowing |
| 106040 | 20 69 74 20 64 6f 77 6e 2e 20 57 68 65 6e 20 70 61 73 73 77 6f 72 64 20 76 65 72 69 66 69 63 61 | .it.down..When.password.verifica |
| 106060 | 74 69 6f 6e 73 20 61 72 65 20 64 6f 6e 65 20 76 69 61 20 61 20 28 73 6c 6f 77 29 20 6e 65 74 77 | tions.are.done.via.a.(slow).netw |
| 106080 | 6f 72 6b 20 79 6f 75 20 61 72 65 20 6c 69 6b 65 6c 79 20 74 6f 20 6e 65 65 64 20 6c 6f 74 73 20 | ork.you.are.likely.to.need.lots. |
| 1060a0 | 6f 66 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 20 70 72 6f 63 65 73 73 65 73 2e 00 4d 61 78 69 | of.authenticator.processes..Maxi |
| 1060c0 | 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 63 6f 6e 63 75 72 72 65 6e 74 20 73 65 73 73 69 6f 6e | mum.number.of.concurrent.session |
| 1060e0 | 20 73 74 61 72 74 20 61 74 74 65 6d 70 74 73 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f | .start.attempts.Maximum.number.o |
| 106100 | 66 20 73 74 61 74 69 6f 6e 73 20 61 6c 6c 6f 77 65 64 20 69 6e 20 73 74 61 74 69 6f 6e 20 74 61 | f.stations.allowed.in.station.ta |
| 106120 | 62 6c 65 2e 20 4e 65 77 20 73 74 61 74 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 72 65 6a 65 63 74 | ble..New.stations.will.be.reject |
| 106140 | 65 64 20 61 66 74 65 72 20 74 68 65 20 73 74 61 74 69 6f 6e 20 74 61 62 6c 65 20 69 73 20 66 75 | ed.after.the.station.table.is.fu |
| 106160 | 6c 6c 2e 20 49 45 45 45 20 38 30 32 2e 31 31 20 68 61 73 20 61 20 6c 69 6d 69 74 20 6f 66 20 32 | ll..IEEE.802.11.has.a.limit.of.2 |
| 106180 | 30 30 37 20 64 69 66 66 65 72 65 6e 74 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 49 44 73 2c 20 73 | 007.different.association.IDs,.s |
| 1061a0 | 6f 20 74 68 69 73 20 6e 75 6d 62 65 72 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 6c 61 72 67 | o.this.number.should.not.be.larg |
| 1061c0 | 65 72 20 74 68 61 6e 20 74 68 61 74 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 | er.than.that..Maximum.number.of. |
| 1061e0 | 74 69 6d 65 73 20 61 6e 20 65 78 70 69 72 65 64 20 72 65 63 6f 72 64 e2 80 99 73 20 54 54 4c 20 | times.an.expired.record...s.TTL. |
| 106200 | 69 73 20 65 78 74 65 6e 64 65 64 20 62 79 20 33 30 73 20 77 68 65 6e 20 73 65 72 76 69 6e 67 20 | is.extended.by.30s.when.serving. |
| 106220 | 73 74 61 6c 65 2e 20 45 78 74 65 6e 73 69 6f 6e 20 6f 6e 6c 79 20 6f 63 63 75 72 73 20 69 66 20 | stale..Extension.only.occurs.if. |
| 106240 | 61 20 72 65 63 6f 72 64 20 63 61 6e 6e 6f 74 20 62 65 20 72 65 66 72 65 73 68 65 64 2e 20 41 20 | a.record.cannot.be.refreshed..A. |
| 106260 | 76 61 6c 75 65 20 6f 66 20 30 20 6d 65 61 6e 73 20 74 68 65 20 53 65 72 76 65 20 53 74 61 6c 65 | value.of.0.means.the.Serve.Stale |
| 106280 | 20 6d 65 63 68 61 6e 69 73 6d 20 69 73 20 6e 6f 74 20 75 73 65 64 2e 20 54 6f 20 61 6c 6c 6f 77 | .mechanism.is.not.used..To.allow |
| 1062a0 | 20 72 65 63 6f 72 64 73 20 62 65 63 6f 6d 69 6e 67 20 73 74 61 6c 65 20 74 6f 20 62 65 20 73 65 | .records.becoming.stale.to.be.se |
| 1062c0 | 72 76 65 64 20 66 6f 72 20 61 6e 20 68 6f 75 72 2c 20 75 73 65 20 61 20 76 61 6c 75 65 20 6f 66 | rved.for.an.hour,.use.a.value.of |
| 1062e0 | 20 31 32 30 2e 00 4d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 74 72 69 65 73 20 74 6f | .120..Maximum.number.of.tries.to |
| 106300 | 20 73 65 6e 64 20 41 63 63 65 73 73 2d 52 65 71 75 65 73 74 2f 41 63 63 6f 75 6e 74 69 6e 67 2d | .send.Access-Request/Accounting- |
| 106320 | 52 65 71 75 65 73 74 20 71 75 65 72 69 65 73 00 4d 65 64 69 75 6d 00 4d 65 6d 62 65 72 20 49 6e | Request.queries.Medium.Member.In |
| 106340 | 74 65 72 66 61 63 65 73 00 4d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 60 65 74 68 31 | terfaces.Member.interfaces.`eth1 |
| 106360 | 60 20 61 6e 64 20 56 4c 41 4e 20 31 30 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 32 | `.and.VLAN.10.on.interface.`eth2 |
| 106380 | 60 00 4d 65 73 73 61 67 65 73 20 67 65 6e 65 72 61 74 65 64 20 69 6e 74 65 72 6e 61 6c 6c 79 20 | `.Messages.generated.internally. |
| 1063a0 | 62 79 20 73 79 73 6c 6f 67 64 00 4d 65 74 72 69 73 20 76 65 72 73 69 6f 6e 2c 20 74 68 65 20 64 | by.syslogd.Metris.version,.the.d |
| 1063c0 | 65 66 61 75 6c 74 20 69 73 20 60 60 32 60 60 00 4d 69 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 | efault.is.``2``.Microsoft.Window |
| 1063e0 | 73 20 28 31 30 2b 29 00 4d 69 63 72 6f 73 6f 66 74 20 57 69 6e 64 6f 77 73 20 65 78 70 65 63 74 | s.(10+).Microsoft.Windows.expect |
| 106400 | 73 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 6c 73 6f 20 75 73 65 | s.the.server.name.to.be.also.use |
| 106420 | 64 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 20 63 65 72 74 69 66 69 63 61 74 65 20 63 6f | d.in.the.server's.certificate.co |
| 106440 | 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 73 20 62 65 73 74 20 74 6f 20 75 73 65 20 74 | mmon.name,.so.it's.best.to.use.t |
| 106460 | 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 79 6f 75 72 20 56 50 4e 20 63 6f 6e 6e 65 63 | his.DNS.name.for.your.VPN.connec |
| 106480 | 74 69 6f 6e 2e 00 4d 69 6e 20 61 6e 64 20 6d 61 78 20 69 6e 74 65 72 76 61 6c 73 20 62 65 74 77 | tion..Min.and.max.intervals.betw |
| 1064a0 | 65 65 6e 20 75 6e 73 6f 6c 69 63 69 74 65 64 20 6d 75 6c 74 69 63 61 73 74 20 52 41 73 00 4d 69 | een.unsolicited.multicast.RAs.Mi |
| 1064c0 | 6e 69 6d 75 6d 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 20 69 73 20 70 72 6f 76 69 64 | nimum.firewall.ruleset.is.provid |
| 1064e0 | 65 64 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 73 6f 6d 65 20 66 69 6c 74 65 72 69 6e | ed,.which.includes.some.filterin |
| 106500 | 67 20 72 75 6c 65 73 2c 20 61 6e 64 20 61 70 70 72 6f 70 72 69 61 74 65 20 72 75 6c 65 73 20 66 | g.rules,.and.appropriate.rules.f |
| 106520 | 6f 72 20 75 73 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 20 6f 66 66 6c 6f 61 64 20 63 61 70 61 62 | or.using.flowtable.offload.capab |
| 106540 | 69 6c 69 74 69 65 73 2e 00 4d 69 6e 75 6d 75 6d 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 | ilities..Minumum.firewall.rulese |
| 106560 | 74 20 69 73 20 70 72 6f 76 69 64 65 64 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 73 20 73 6f | t.is.provided,.which.includes.so |
| 106580 | 6d 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 2c 20 61 6e 64 20 61 70 70 72 6f 70 69 61 | me.filtering.rules,.and.appropia |
| 1065a0 | 74 65 20 72 75 6c 65 73 20 66 6f 72 20 75 73 69 6e 67 20 66 6c 6f 77 74 61 62 6c 65 20 6f 66 66 | te.rules.for.using.flowtable.off |
| 1065c0 | 6c 6f 61 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 6a 6f | load.capabilities..Modify.the.jo |
| 1065e0 | 69 6e 2f 70 72 75 6e 65 20 69 6e 74 65 72 76 61 6c 20 74 68 61 74 20 50 49 4d 20 75 73 65 73 20 | in/prune.interval.that.PIM.uses. |
| 106600 | 74 6f 20 74 68 65 20 6e 65 77 20 76 61 6c 75 65 2e 20 54 69 6d 65 20 69 73 20 73 70 65 63 69 66 | to.the.new.value..Time.is.specif |
| 106620 | 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 4d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 20 | ied.in.seconds..Modify.the.time. |
| 106640 | 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 20 61 20 53 2c 47 20 66 6c 6f 77 20 66 72 6f 6d 20 31 2d | out.value.for.a.S,G.flow.from.1- |
| 106660 | 36 35 35 33 35 20 73 65 63 6f 6e 64 73 20 61 74 20 3a 61 62 62 72 3a 60 52 50 20 28 52 65 6e 64 | 65535.seconds.at.:abbr:`RP.(Rend |
| 106680 | 65 7a 76 6f 75 73 20 50 6f 69 6e 74 29 60 2e 20 54 68 65 20 6e 6f 72 6d 61 6c 20 6b 65 65 70 61 | ezvous.Point)`..The.normal.keepa |
| 1066a0 | 6c 69 76 65 20 70 65 72 69 6f 64 20 66 6f 72 20 74 68 65 20 4b 41 54 28 53 2c 47 29 20 64 65 66 | live.period.for.the.KAT(S,G).def |
| 1066c0 | 61 75 6c 74 73 20 74 6f 20 32 31 30 20 73 65 63 6f 6e 64 73 2e 20 48 6f 77 65 76 65 72 2c 20 61 | aults.to.210.seconds..However,.a |
| 1066e0 | 74 20 74 68 65 20 3a 61 62 62 72 3a 60 52 50 20 28 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e | t.the.:abbr:`RP.(Rendezvous.Poin |
| 106700 | 74 29 60 2c 20 74 68 65 20 6b 65 65 70 61 6c 69 76 65 20 70 65 72 69 6f 64 20 6d 75 73 74 20 62 | t)`,.the.keepalive.period.must.b |
| 106720 | 65 20 61 74 20 6c 65 61 73 74 20 74 68 65 20 52 65 67 69 73 74 65 72 5f 53 75 70 70 72 65 73 73 | e.at.least.the.Register_Suppress |
| 106740 | 69 6f 6e 5f 54 69 6d 65 2c 20 6f 72 20 74 68 65 20 52 50 20 6d 61 79 20 74 69 6d 65 20 6f 75 74 | ion_Time,.or.the.RP.may.time.out |
| 106760 | 20 74 68 65 20 28 53 2c 47 29 20 73 74 61 74 65 20 62 65 66 6f 72 65 20 74 68 65 20 6e 65 78 74 | .the.(S,G).state.before.the.next |
| 106780 | 20 4e 75 6c 6c 2d 52 65 67 69 73 74 65 72 20 61 72 72 69 76 65 73 2e 20 54 68 75 73 2c 20 74 68 | .Null-Register.arrives..Thus,.th |
| 1067a0 | 65 20 4b 41 54 28 53 2c 47 29 20 69 73 20 73 65 74 20 74 6f 20 6d 61 78 28 4b 65 65 70 61 6c 69 | e.KAT(S,G).is.set.to.max(Keepali |
| 1067c0 | 76 65 5f 50 65 72 69 6f 64 2c 20 52 50 5f 4b 65 65 70 61 6c 69 76 65 5f 50 65 72 69 6f 64 29 20 | ve_Period,.RP_Keepalive_Period). |
| 1067e0 | 77 68 65 6e 20 61 20 52 65 67 69 73 74 65 72 2d 53 74 6f 70 20 69 73 20 73 65 6e 74 2e 00 4d 6f | when.a.Register-Stop.is.sent..Mo |
| 106800 | 64 69 66 79 20 74 68 65 20 74 69 6d 65 20 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 20 61 20 53 2c | dify.the.time.out.value.for.a.S, |
| 106820 | 47 20 66 6c 6f 77 20 66 72 6f 6d 20 31 2d 36 35 35 33 35 20 73 65 63 6f 6e 64 73 2e 20 49 66 20 | G.flow.from.1-65535.seconds..If. |
| 106840 | 63 68 6f 6f 73 69 6e 67 20 61 20 76 61 6c 75 65 20 62 65 6c 6f 77 20 33 31 20 73 65 63 6f 6e 64 | choosing.a.value.below.31.second |
| 106860 | 73 20 62 65 20 61 77 61 72 65 20 74 68 61 74 20 73 6f 6d 65 20 68 61 72 64 77 61 72 65 20 70 6c | s.be.aware.that.some.hardware.pl |
| 106880 | 61 74 66 6f 72 6d 73 20 63 61 6e 6e 6f 74 20 73 65 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 20 | atforms.cannot.see.data.flowing. |
| 1068a0 | 69 6e 20 62 65 74 74 65 72 20 74 68 61 6e 20 33 30 20 73 65 63 6f 6e 64 20 63 68 75 6e 6b 73 2e | in.better.than.30.second.chunks. |
| 1068c0 | 00 4d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 20 74 68 61 74 20 70 69 6d 20 77 69 6c 6c 20 72 | .Modify.the.time.that.pim.will.r |
| 1068e0 | 65 67 69 73 74 65 72 20 73 75 70 70 72 65 73 73 20 61 20 46 48 52 20 77 69 6c 6c 20 73 65 6e 64 | egister.suppress.a.FHR.will.send |
| 106900 | 20 72 65 67 69 73 74 65 72 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 6b | .register.notifications.to.the.k |
| 106920 | 65 72 6e 65 6c 2e 00 4d 6f 6e 69 74 6f 72 20 6d 6f 64 65 20 6c 65 74 73 20 74 68 65 20 73 79 73 | ernel..Monitor.mode.lets.the.sys |
| 106940 | 74 65 6d 20 70 61 73 73 69 76 65 6c 79 20 6d 6f 6e 69 74 6f 72 20 77 69 72 65 6c 65 73 73 20 74 | tem.passively.monitor.wireless.t |
| 106960 | 72 61 66 66 69 63 00 4d 6f 6e 69 74 6f 72 2c 20 74 68 65 20 73 79 73 74 65 6d 20 70 61 73 73 69 | raffic.Monitor,.the.system.passi |
| 106980 | 76 65 6c 79 20 6d 6f 6e 69 74 6f 72 73 20 61 6e 79 20 6b 69 6e 64 20 6f 66 20 77 69 72 65 6c 65 | vely.monitors.any.kind.of.wirele |
| 1069a0 | 73 73 20 74 72 61 66 66 69 63 00 4d 6f 6e 69 74 6f 72 69 6e 67 00 4d 6f 6e 69 74 6f 72 69 6e 67 | ss.traffic.Monitoring.Monitoring |
| 1069c0 | 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 77 69 74 68 20 60 60 74 65 6c 65 67 72 61 66 60 60 | .functionality.with.``telegraf`` |
| 1069e0 | 20 61 6e 64 20 60 60 49 6e 66 6c 75 78 44 42 20 32 60 60 20 69 73 20 70 72 6f 76 69 64 65 64 2e | .and.``InfluxDB.2``.is.provided. |
| 106a00 | 20 54 65 6c 65 67 72 61 66 20 69 73 20 74 68 65 20 6f 70 65 6e 20 73 6f 75 72 63 65 20 73 65 72 | .Telegraf.is.the.open.source.ser |
| 106a20 | 76 65 72 20 61 67 65 6e 74 20 74 6f 20 68 65 6c 70 20 79 6f 75 20 63 6f 6c 6c 65 63 74 20 6d 65 | ver.agent.to.help.you.collect.me |
| 106a40 | 74 72 69 63 73 2c 20 65 76 65 6e 74 73 20 61 6e 64 20 6c 6f 67 73 20 66 72 6f 6d 20 79 6f 75 72 | trics,.events.and.logs.from.your |
| 106a60 | 20 72 6f 75 74 65 72 73 2e 00 4d 6f 72 65 20 64 65 74 61 69 6c 73 20 61 62 6f 75 74 20 74 68 65 | .routers..More.details.about.the |
| 106a80 | 20 49 50 73 65 63 20 61 6e 64 20 56 54 49 20 69 73 73 75 65 20 61 6e 64 20 6f 70 74 69 6f 6e 20 | .IPsec.and.VTI.issue.and.option. |
| 106aa0 | 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 20 68 74 74 70 73 3a | disable-route-autoinstall.https: |
| 106ac0 | 2f 2f 62 6c 6f 67 2e 76 79 6f 73 2e 69 6f 2f 76 79 6f 73 2d 31 2d 64 6f 74 2d 32 2d 30 2d 64 65 | //blog.vyos.io/vyos-1-dot-2-0-de |
| 106ae0 | 76 65 6c 6f 70 6d 65 6e 74 2d 6e 65 77 73 2d 69 6e 2d 6a 75 6c 79 00 4d 6f 73 74 20 6f 70 65 72 | velopment-news-in-july.Most.oper |
| 106b00 | 61 74 69 6e 67 20 73 79 73 74 65 6d 73 20 69 6e 63 6c 75 64 65 20 6e 61 74 69 76 65 20 63 6c 69 | ating.systems.include.native.cli |
| 106b20 | 65 6e 74 20 73 75 70 70 6f 72 74 20 66 6f 72 20 49 50 73 65 63 20 49 4b 45 76 32 20 56 50 4e 20 | ent.support.for.IPsec.IKEv2.VPN. |
| 106b40 | 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 61 6e 64 20 6f 74 68 65 72 73 20 74 79 70 69 63 61 6c 6c | connections,.and.others.typicall |
| 106b60 | 79 20 68 61 76 65 20 61 6e 20 61 70 70 20 6f 72 20 61 64 64 2d 6f 6e 20 70 61 63 6b 61 67 65 20 | y.have.an.app.or.add-on.package. |
| 106b80 | 77 68 69 63 68 20 61 64 64 73 20 74 68 65 20 63 61 70 61 62 69 6c 69 74 79 2e 20 54 68 69 73 20 | which.adds.the.capability..This. |
| 106ba0 | 73 65 63 74 69 6f 6e 20 63 6f 76 65 72 73 20 49 50 73 65 63 20 49 4b 45 76 32 20 63 6c 69 65 6e | section.covers.IPsec.IKEv2.clien |
| 106bc0 | 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 57 69 6e 64 6f 77 73 20 31 30 2e 00 | t.configuration.for.Windows.10.. |
| 106be0 | 4d 6f 75 6e 74 20 61 20 76 6f 6c 75 6d 65 20 69 6e 74 6f 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 | Mount.a.volume.into.the.containe |
| 106c00 | 72 00 4d 75 6c 74 69 00 4d 75 6c 74 69 2d 63 6c 69 65 6e 74 20 73 65 72 76 65 72 20 69 73 20 74 | r.Multi.Multi-client.server.is.t |
| 106c20 | 68 65 20 6d 6f 73 74 20 70 6f 70 75 6c 61 72 20 4f 70 65 6e 56 50 4e 20 6d 6f 64 65 20 6f 6e 20 | he.most.popular.OpenVPN.mode.on. |
| 106c40 | 72 6f 75 74 65 72 73 2e 20 49 74 20 61 6c 77 61 79 73 20 75 73 65 73 20 78 2e 35 30 39 20 61 75 | routers..It.always.uses.x.509.au |
| 106c60 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 72 65 71 75 69 | thentication.and.therefore.requi |
| 106c80 | 72 65 73 20 61 20 50 4b 49 20 73 65 74 75 70 2e 20 52 65 66 65 72 20 74 68 69 73 20 74 6f 70 69 | res.a.PKI.setup..Refer.this.topi |
| 106ca0 | 63 20 3a 72 65 66 3a 60 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 6b 69 2f 69 6e 64 65 78 3a | c.:ref:`configuration/pki/index: |
| 106cc0 | 70 6b 69 60 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 43 41 20 63 65 72 74 69 66 69 63 61 74 | pki`.to.generate.a.CA.certificat |
| 106ce0 | 65 2c 20 61 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 20 61 6e 64 20 6b 65 79 2c | e,.a.server.certificate.and.key, |
| 106d00 | 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 72 65 76 6f 63 61 74 69 6f 6e 20 6c 69 73 74 2c 20 | .a.certificate.revocation.list,. |
| 106d20 | 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 6b 65 79 20 65 78 63 68 61 6e 67 65 20 70 61 | a.Diffie-Hellman.key.exchange.pa |
| 106d40 | 72 61 6d 65 74 65 72 73 20 66 69 6c 65 2e 20 59 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 63 | rameters.file..You.do.not.need.c |
| 106d60 | 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 6e 64 20 6b 65 79 73 20 66 6f 72 20 | lient.certificates.and.keys.for. |
| 106d80 | 74 68 65 20 73 65 72 76 65 72 20 73 65 74 75 70 2e 00 4d 75 6c 74 69 2d 63 6c 69 65 6e 74 20 73 | the.server.setup..Multi-client.s |
| 106da0 | 65 72 76 65 72 20 69 73 20 74 68 65 20 6d 6f 73 74 20 70 6f 70 75 6c 61 72 20 4f 70 65 6e 56 50 | erver.is.the.most.popular.OpenVP |
| 106dc0 | 4e 20 6d 6f 64 65 20 6f 6e 20 72 6f 75 74 65 72 73 2e 20 49 74 20 61 6c 77 61 79 73 20 75 73 65 | N.mode.on.routers..It.always.use |
| 106de0 | 73 20 78 2e 35 30 39 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 74 68 65 72 65 | s.x.509.authentication.and.there |
| 106e00 | 66 6f 72 65 20 72 65 71 75 69 72 65 73 20 61 20 50 4b 49 20 73 65 74 75 70 2e 20 52 65 66 65 72 | fore.requires.a.PKI.setup..Refer |
| 106e20 | 20 74 68 69 73 20 74 6f 70 69 63 20 3a 72 65 66 3a 60 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f | .this.topic.:ref:`configuration/ |
| 106e40 | 70 6b 69 2f 69 6e 64 65 78 3a 70 6b 69 60 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 43 41 20 | pki/index:pki`.to.generate.a.CA. |
| 106e60 | 63 65 72 74 69 66 69 63 61 74 65 2c 20 61 20 73 65 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 | certificate,.a.server.certificat |
| 106e80 | 65 20 61 6e 64 20 6b 65 79 2c 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 72 65 76 6f 63 61 74 | e.and.key,.a.certificate.revocat |
| 106ea0 | 69 6f 6e 20 6c 69 73 74 2c 20 61 6e 64 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 6b | ion.list,.and.a.Diffie-Hellman.k |
| 106ec0 | 65 79 20 65 78 63 68 61 6e 67 65 20 70 61 72 61 6d 65 74 65 72 73 20 66 69 6c 65 2e 20 59 6f 75 | ey.exchange.parameters.file..You |
| 106ee0 | 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 73 | .do.not.need.client.certificates |
| 106f00 | 20 61 6e 64 20 6b 65 79 73 20 66 6f 72 20 74 68 65 20 73 65 72 76 65 72 20 73 65 74 75 70 2e 00 | .and.keys.for.the.server.setup.. |
| 106f20 | 4d 75 6c 74 69 2d 66 61 63 74 6f 72 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 4d 75 6c 74 | Multi-factor.Authentication.Mult |
| 106f40 | 69 2d 68 6f 6d 65 64 2e 20 49 6e 20 61 20 6d 75 6c 74 69 2d 68 6f 6d 65 64 20 6e 65 74 77 6f 72 | i-homed..In.a.multi-homed.networ |
| 106f60 | 6b 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 2c 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 | k.environment,.the.NAT66.device. |
| 106f80 | 63 6f 6e 6e 65 63 74 73 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 | connects.to.an.internal.network. |
| 106fa0 | 61 6e 64 20 73 69 6d 75 6c 74 61 6e 65 6f 75 73 6c 79 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 64 | and.simultaneously.connects.to.d |
| 106fc0 | 69 66 66 65 72 65 6e 74 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 73 2e 20 41 64 64 72 | ifferent.external.networks..Addr |
| 106fe0 | 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 | ess.translation.can.be.configure |
| 107000 | 64 20 6f 6e 20 65 61 63 68 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 69 64 65 20 | d.on.each.external.network.side. |
| 107020 | 69 6e 74 65 72 66 61 63 65 20 6f 66 20 74 68 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 74 6f | interface.of.the.NAT66.device.to |
| 107040 | 20 63 6f 6e 76 65 72 74 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f | .convert.the.same.internal.netwo |
| 107060 | 72 6b 20 61 64 64 72 65 73 73 20 69 6e 74 6f 20 64 69 66 66 65 72 65 6e 74 20 65 78 74 65 72 6e | rk.address.into.different.extern |
| 107080 | 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 65 73 2c 20 61 6e 64 20 72 65 61 6c 69 7a | al.network.addresses,.and.realiz |
| 1070a0 | 65 20 74 68 65 20 6d 61 70 70 69 6e 67 20 6f 66 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 6e | e.the.mapping.of.the.same.intern |
| 1070c0 | 61 6c 20 61 64 64 72 65 73 73 20 74 6f 20 6d 75 6c 74 69 70 6c 65 20 65 78 74 65 72 6e 61 6c 20 | al.address.to.multiple.external. |
| 1070e0 | 61 64 64 72 65 73 73 65 73 2e 00 4d 75 6c 74 69 3a 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 | addresses..Multi:.can.be.specifi |
| 107100 | 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 4d 75 6c 74 69 63 61 73 74 00 4d 75 6c | ed.multiple.times..Multicast.Mul |
| 107120 | 74 69 63 61 73 74 20 44 4e 53 20 75 73 65 73 20 74 68 65 20 32 32 34 2e 30 2e 30 2e 32 35 31 20 | ticast.DNS.uses.the.224.0.0.251. |
| 107140 | 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 69 73 20 22 61 64 6d 69 6e 69 73 74 72 61 74 69 76 | address,.which.is."administrativ |
| 107160 | 65 6c 79 20 73 63 6f 70 65 64 22 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 6c 65 61 76 65 20 74 | ely.scoped".and.does.not.leave.t |
| 107180 | 68 65 20 73 75 62 6e 65 74 2e 20 49 74 20 72 65 74 72 61 6e 73 6d 69 74 73 20 6d 44 4e 53 20 70 | he.subnet..It.retransmits.mDNS.p |
| 1071a0 | 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6f 74 68 | ackets.from.one.interface.to.oth |
| 1071c0 | 65 72 20 69 6e 74 65 72 66 61 63 65 73 2e 20 54 68 69 73 20 65 6e 61 62 6c 65 73 20 73 75 70 70 | er.interfaces..This.enables.supp |
| 1071e0 | 6f 72 74 20 66 6f 72 20 65 2e 67 2e 20 41 70 70 6c 65 20 41 69 72 70 6c 61 79 20 64 65 76 69 63 | ort.for.e.g..Apple.Airplay.devic |
| 107200 | 65 73 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 73 2e 00 4d 75 6c 74 69 63 | es.across.multiple.VLANs..Multic |
| 107220 | 61 73 74 20 44 4e 53 20 75 73 65 73 20 74 68 65 20 72 65 73 65 72 76 65 64 20 61 64 64 72 65 73 | ast.DNS.uses.the.reserved.addres |
| 107240 | 73 20 60 60 32 32 34 2e 30 2e 30 2e 32 35 31 60 60 2c 20 77 68 69 63 68 20 69 73 20 60 22 61 64 | s.``224.0.0.251``,.which.is.`"ad |
| 107260 | 6d 69 6e 69 73 74 72 61 74 69 76 65 6c 79 20 73 63 6f 70 65 64 22 60 20 61 6e 64 20 64 6f 65 73 | ministratively.scoped"`.and.does |
| 107280 | 20 6e 6f 74 20 6c 65 61 76 65 20 74 68 65 20 73 75 62 6e 65 74 2e 20 6d 44 4e 53 20 72 65 70 65 | .not.leave.the.subnet..mDNS.repe |
| 1072a0 | 61 74 65 72 20 72 65 74 72 61 6e 73 6d 69 74 73 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 | ater.retransmits.mDNS.packets.fr |
| 1072c0 | 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6f 74 68 65 72 20 69 6e 74 65 72 66 | om.one.interface.to.other.interf |
| 1072e0 | 61 63 65 73 2e 20 54 68 69 73 20 65 6e 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 64 | aces..This.enables.support.for.d |
| 107300 | 65 76 69 63 65 73 20 75 73 69 6e 67 20 6d 44 4e 53 20 64 69 73 63 6f 76 65 72 79 20 28 6c 69 6b | evices.using.mDNS.discovery.(lik |
| 107320 | 65 20 6e 65 74 77 6f 72 6b 20 70 72 69 6e 74 65 72 73 2c 20 41 70 70 6c 65 20 41 69 72 70 6c 61 | e.network.printers,.Apple.Airpla |
| 107340 | 79 2c 20 43 68 72 6f 6d 65 63 61 73 74 2c 20 76 61 72 69 6f 75 73 20 49 50 20 62 61 73 65 64 20 | y,.Chromecast,.various.IP.based. |
| 107360 | 68 6f 6d 65 2d 61 75 74 6f 6d 61 74 69 6f 6e 20 64 65 76 69 63 65 73 20 65 74 63 29 20 61 63 72 | home-automation.devices.etc).acr |
| 107380 | 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 73 2e 00 4d 75 6c 74 69 63 61 73 74 20 56 58 | oss.multiple.VLANs..Multicast.VX |
| 1073a0 | 4c 41 4e 00 4d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 61 64 64 72 65 73 73 20 66 6f 72 20 | LAN.Multicast.group.address.for. |
| 1073c0 | 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 63 | VXLAN.interface..VXLAN.tunnels.c |
| 1073e0 | 61 6e 20 62 65 20 62 75 69 6c 74 20 65 69 74 68 65 72 20 76 69 61 20 4d 75 6c 74 69 63 61 73 74 | an.be.built.either.via.Multicast |
| 107400 | 20 6f 72 20 76 69 61 20 55 6e 69 63 61 73 74 2e 00 4d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 | .or.via.Unicast..Multicast.group |
| 107420 | 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 | .address.for.the.VXLAN.interface |
| 107440 | 2e 20 56 58 4c 41 4e 20 74 75 6e 6e 65 6c 73 20 63 61 6e 20 62 65 20 62 75 69 6c 74 20 65 69 74 | ..VXLAN.tunnels.can.be.built.eit |
| 107460 | 68 65 72 20 76 69 61 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 76 69 61 20 55 6e 69 63 61 73 74 | her.via.Multicast.or.via.Unicast |
| 107480 | 2e 00 4d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 74 6f 20 75 73 65 20 66 6f 72 20 73 79 6e | ..Multicast.group.to.use.for.syn |
| 1074a0 | 63 69 6e 67 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 2e 00 4d 75 6c 74 69 63 61 73 | cing.conntrack.entries..Multicas |
| 1074c0 | 74 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 74 61 6c 6b 20 49 47 4d 50 20 74 6f 20 74 68 | t.receivers.will.talk.IGMP.to.th |
| 1074e0 | 65 69 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2c 20 73 6f 2c 20 62 65 73 69 64 65 73 20 68 61 | eir.local.router,.so,.besides.ha |
| 107500 | 76 69 6e 67 20 50 49 4d 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 72 6f 75 | ving.PIM.configured.in.every.rou |
| 107520 | 74 65 72 2c 20 49 47 4d 50 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 | ter,.IGMP.must.also.be.configure |
| 107540 | 64 20 69 6e 20 61 6e 79 20 72 6f 75 74 65 72 20 77 68 65 72 65 20 74 68 65 72 65 20 63 6f 75 6c | d.in.any.router.where.there.coul |
| 107560 | 64 20 62 65 20 61 20 6d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 20 6c 6f 63 61 6c 6c | d.be.a.multicast.receiver.locall |
| 107580 | 79 20 63 6f 6e 6e 65 63 74 65 64 2e 00 4d 75 6c 74 69 63 61 73 74 20 72 65 63 65 69 76 65 72 73 | y.connected..Multicast.receivers |
| 1075a0 | 20 77 69 6c 6c 20 74 61 6c 6b 20 4d 4c 44 20 74 6f 20 74 68 65 69 72 20 6c 6f 63 61 6c 20 72 6f | .will.talk.MLD.to.their.local.ro |
| 1075c0 | 75 74 65 72 2c 20 73 6f 2c 20 62 65 73 69 64 65 73 20 68 61 76 69 6e 67 20 50 49 4d 76 36 20 63 | uter,.so,.besides.having.PIMv6.c |
| 1075e0 | 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 65 76 65 72 79 20 72 6f 75 74 65 72 2c 20 4d 4c 44 20 6d | onfigured.in.every.router,.MLD.m |
| 107600 | 75 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 61 6e 79 20 72 6f | ust.also.be.configured.in.any.ro |
| 107620 | 75 74 65 72 20 77 68 65 72 65 20 74 68 65 72 65 20 63 6f 75 6c 64 20 62 65 20 61 20 6d 75 6c 74 | uter.where.there.could.be.a.mult |
| 107640 | 69 63 61 73 74 20 72 65 63 65 69 76 65 72 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 6e 65 63 74 65 64 | icast.receiver.locally.connected |
| 107660 | 2e 00 4d 75 6c 74 69 63 61 73 74 2d 72 6f 75 74 69 6e 67 20 69 73 20 72 65 71 75 69 72 65 64 20 | ..Multicast-routing.is.required. |
| 107680 | 66 6f 72 20 74 68 65 20 6c 65 61 76 65 73 20 74 6f 20 66 6f 72 77 61 72 64 20 74 72 61 66 66 69 | for.the.leaves.to.forward.traffi |
| 1076a0 | 63 20 62 65 74 77 65 65 6e 20 65 61 63 68 20 6f 74 68 65 72 20 69 6e 20 61 20 6d 6f 72 65 20 73 | c.between.each.other.in.a.more.s |
| 1076c0 | 63 61 6c 61 62 6c 65 20 77 61 79 2e 20 54 68 69 73 20 61 6c 73 6f 20 72 65 71 75 69 72 65 73 20 | calable.way..This.also.requires. |
| 1076e0 | 50 49 4d 20 74 6f 20 62 65 20 65 6e 61 62 6c 65 64 20 74 6f 77 61 72 64 73 20 74 68 65 20 6c 65 | PIM.to.be.enabled.towards.the.le |
| 107700 | 61 76 65 73 20 73 6f 20 74 68 61 74 20 74 68 65 20 53 70 69 6e 65 20 63 61 6e 20 6c 65 61 72 6e | aves.so.that.the.Spine.can.learn |
| 107720 | 20 77 68 61 74 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 73 20 65 61 63 68 20 4c 65 61 66 | .what.multicast.groups.each.Leaf |
| 107740 | 20 65 78 70 65 63 74 73 20 74 72 61 66 66 69 63 20 66 72 6f 6d 2e 00 4d 75 6c 74 69 70 6c 65 20 | .expects.traffic.from..Multiple. |
| 107760 | 44 4e 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 2e 00 4d 75 6c 74 | DNS.servers.can.be.defined..Mult |
| 107780 | 69 70 6c 65 20 52 50 4b 49 20 63 61 63 68 69 6e 67 20 69 6e 73 74 61 6e 63 65 73 20 63 61 6e 20 | iple.RPKI.caching.instances.can. |
| 1077a0 | 62 65 20 73 75 70 70 6c 69 65 64 20 61 6e 64 20 74 68 65 79 20 6e 65 65 64 20 61 20 70 72 65 66 | be.supplied.and.they.need.a.pref |
| 1077c0 | 65 72 65 6e 63 65 20 69 6e 20 77 68 69 63 68 20 74 68 65 69 72 20 72 65 73 75 6c 74 20 73 65 74 | erence.in.which.their.result.set |
| 1077e0 | 73 20 61 72 65 20 75 73 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 55 70 6c 69 6e 6b 73 00 4d 75 6c | s.are.used..Multiple.Uplinks.Mul |
| 107800 | 74 69 70 6c 65 20 56 4c 41 4e 20 74 6f 20 56 4e 49 20 6d 61 70 70 69 6e 67 73 20 63 61 6e 20 62 | tiple.VLAN.to.VNI.mappings.can.b |
| 107820 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 20 73 61 6d 65 20 53 56 | e.configured.against.the.same.SV |
| 107840 | 44 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 20 73 69 67 6e 69 66 69 63 61 6e 74 | D..This.allows.for.a.significant |
| 107860 | 20 73 63 61 6c 69 6e 67 20 6f 66 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 56 4e 49 73 20 73 | .scaling.of.the.number.of.VNIs.s |
| 107880 | 69 6e 63 65 20 61 20 73 65 70 61 72 61 74 65 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 | ince.a.separate.VXLAN.interface. |
| 1078a0 | 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 65 61 63 68 20 56 | is.no.longer.required.for.each.V |
| 1078c0 | 4e 49 2e 00 4d 75 6c 74 69 70 6c 65 20 61 6c 69 61 73 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 | NI..Multiple.aliases.can.be.spec |
| 1078e0 | 69 66 69 65 64 20 70 65 72 20 68 6f 73 74 2d 6e 61 6d 65 2e 00 4d 75 6c 74 69 70 6c 65 20 61 6c | ified.per.host-name..Multiple.al |
| 107900 | 69 61 73 65 73 20 63 61 6e 20 70 65 20 73 70 65 63 69 66 69 65 64 20 70 65 72 20 68 6f 73 74 2d | iases.can.pe.specified.per.host- |
| 107920 | 6e 61 6d 65 2e 00 4d 75 6c 74 69 70 6c 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 73 | name..Multiple.destination.ports |
| 107940 | 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 2d 73 65 70 | .can.be.specified.as.a.comma-sep |
| 107960 | 61 72 61 74 65 64 20 6c 69 73 74 2e 20 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 63 61 6e 20 | arated.list..The.whole.list.can. |
| 107980 | 61 6c 73 6f 20 62 65 20 22 6e 65 67 61 74 65 64 22 20 75 73 69 6e 67 20 27 21 27 2e 20 46 6f 72 | also.be."negated".using.'!'..For |
| 1079a0 | 20 65 78 61 6d 70 6c 65 3a 20 27 21 32 32 2c 74 65 6c 6e 65 74 2c 68 74 74 70 2c 31 32 33 2c 31 | .example:.'!22,telnet,http,123,1 |
| 1079c0 | 30 30 31 2d 31 30 30 35 27 00 4d 75 6c 74 69 70 6c 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 | 001-1005'.Multiple.destination.p |
| 1079e0 | 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 20 63 6f 6d 6d 61 | orts.can.be.specified.as.a.comma |
| 107a00 | 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 2e 20 54 68 65 20 77 68 6f 6c 65 20 6c 69 73 74 20 | -separated.list..The.whole.list. |
| 107a20 | 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 6e 65 67 61 74 65 64 22 20 75 73 69 6e 67 20 27 21 27 2e | can.also.be."negated".using.'!'. |
| 107a40 | 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 20 60 21 32 32 2c 74 65 6c 6e 65 74 2c 68 74 74 70 2c 31 | .For.example:.`!22,telnet,http,1 |
| 107a60 | 32 33 2c 31 30 30 31 2d 31 30 30 35 60 60 00 4d 75 6c 74 69 70 6c 65 20 65 78 74 65 72 6e 61 6c | 23,1001-1005``.Multiple.external |
| 107a80 | 20 61 64 64 72 65 73 73 65 73 00 4d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 6d | .addresses.Multiple.interfaces.m |
| 107aa0 | 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 | ay.be.specified..Multiple.networ |
| 107ac0 | 6b 73 2f 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 63 6f | ks/client.IP.addresses.can.be.co |
| 107ae0 | 6e 66 69 67 75 72 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 | nfigured..Multiple.servers.can.b |
| 107b00 | 65 20 73 70 65 63 69 66 69 65 64 2e 00 4d 75 6c 74 69 70 6c 65 20 73 65 72 76 69 63 65 73 20 63 | e.specified..Multiple.services.c |
| 107b20 | 61 6e 20 62 65 20 75 73 65 64 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 2e 20 4a 75 73 74 20 73 | an.be.used.per.interface..Just.s |
| 107b40 | 70 65 63 69 66 79 20 61 73 20 6d 61 6e 79 20 73 65 72 76 69 63 65 73 20 70 65 72 20 69 6e 74 65 | pecify.as.many.services.per.inte |
| 107b60 | 72 66 61 63 65 20 61 73 20 79 6f 75 20 6c 69 6b 65 21 00 4d 75 6c 74 69 70 6c 65 20 73 6f 75 72 | rface.as.you.like!.Multiple.sour |
| 107b80 | 63 65 20 70 6f 72 74 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 61 20 63 | ce.ports.can.be.specified.as.a.c |
| 107ba0 | 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 2e 20 54 68 65 20 77 68 6f 6c 65 20 6c | omma-separated.list..The.whole.l |
| 107bc0 | 69 73 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 22 6e 65 67 61 74 65 64 22 20 75 73 69 6e 67 20 | ist.can.also.be."negated".using. |
| 107be0 | 60 60 21 60 60 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 4d 75 6c 74 69 70 6c 65 20 74 61 72 | ``!``..For.example:.Multiple.tar |
| 107c00 | 67 65 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 | get.IP.addresses.can.be.specifie |
| 107c20 | 64 2e 20 41 74 20 6c 65 61 73 74 20 6f 6e 65 20 49 50 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 | d..At.least.one.IP.address.must. |
| 107c40 | 62 65 20 67 69 76 65 6e 20 66 6f 72 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 74 6f 20 66 | be.given.for.ARP.monitoring.to.f |
| 107c60 | 75 6e 63 74 69 6f 6e 2e 00 4d 75 6c 74 69 70 6c 65 20 75 73 65 72 73 20 63 61 6e 20 63 6f 6e 6e | unction..Multiple.users.can.conn |
| 107c80 | 65 63 74 20 74 6f 20 74 68 65 20 73 61 6d 65 20 73 65 72 69 61 6c 20 64 65 76 69 63 65 20 62 75 | ect.to.the.same.serial.device.bu |
| 107ca0 | 74 20 6f 6e 6c 79 20 6f 6e 65 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 77 72 69 74 65 20 74 | t.only.one.is.allowed.to.write.t |
| 107cc0 | 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 70 6f 72 74 2e 00 4d 75 6c 74 69 70 72 6f 74 6f 63 6f | o.the.console.port..Multiprotoco |
| 107ce0 | 6c 20 65 78 74 65 6e 73 69 6f 6e 73 20 65 6e 61 62 6c 65 20 42 47 50 20 74 6f 20 63 61 72 72 79 | l.extensions.enable.BGP.to.carry |
| 107d00 | 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 6d 75 6c 74 69 70 6c | .routing.information.for.multipl |
| 107d20 | 65 20 6e 65 74 77 6f 72 6b 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 42 47 50 20 73 | e.network.layer.protocols..BGP.s |
| 107d40 | 75 70 70 6f 72 74 73 20 61 6e 20 41 64 64 72 65 73 73 20 46 61 6d 69 6c 79 20 49 64 65 6e 74 69 | upports.an.Address.Family.Identi |
| 107d60 | 66 69 65 72 20 28 41 46 49 29 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 4e 00 | fier.(AFI).for.IPv4.and.IPv6..N. |
| 107d80 | 4e 41 54 00 4e 41 54 20 28 73 70 65 63 69 66 69 63 61 6c 6c 79 2c 20 53 6f 75 72 63 65 20 4e 41 | NAT.NAT.(specifically,.Source.NA |
| 107da0 | 54 29 3b 00 4e 41 54 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4e 41 54 20 4c 6f 61 64 20 42 | T);.NAT.Configuration.NAT.Load.B |
| 107dc0 | 61 6c 61 6e 63 65 00 4e 41 54 20 4c 6f 61 64 20 42 61 6c 61 6e 63 65 20 75 73 65 73 20 61 6e 20 | alance.NAT.Load.Balance.uses.an. |
| 107de0 | 61 6c 67 6f 72 69 74 68 6d 20 74 68 61 74 20 67 65 6e 65 72 61 74 65 73 20 61 20 68 61 73 68 20 | algorithm.that.generates.a.hash. |
| 107e00 | 61 6e 64 20 62 61 73 65 64 20 6f 6e 20 69 74 2c 20 74 68 65 6e 20 69 74 20 61 70 70 6c 69 65 73 | and.based.on.it,.then.it.applies |
| 107e20 | 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 20 74 72 61 6e 73 6c 61 74 69 6f 6e 2e 20 54 68 69 73 | .corresponding.translation..This |
| 107e40 | 20 68 61 73 68 20 63 61 6e 20 62 65 20 67 65 6e 65 72 61 74 65 64 20 72 61 6e 64 6f 6d 6c 79 2c | .hash.can.be.generated.randomly, |
| 107e60 | 20 6f 72 20 63 61 6e 20 75 73 65 20 64 61 74 61 20 66 72 6f 6d 20 74 68 65 20 69 70 20 68 65 61 | .or.can.use.data.from.the.ip.hea |
| 107e80 | 64 65 72 3a 20 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 69 6f 6e | der:.source-address,.destination |
| 107ea0 | 2d 61 64 64 72 65 73 73 2c 20 73 6f 75 72 63 65 2d 70 6f 72 74 20 61 6e 64 2f 6f 72 20 64 65 73 | -address,.source-port.and/or.des |
| 107ec0 | 74 69 6e 61 74 69 6f 6e 2d 70 6f 72 74 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 69 74 20 77 69 | tination-port..By.default,.it.wi |
| 107ee0 | 6c 6c 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 20 72 61 6e 64 6f 6d 6c 79 2e 00 4e | ll.generate.the.hash.randomly..N |
| 107f00 | 41 54 20 52 75 6c 65 73 65 74 00 4e 41 54 20 62 65 66 6f 72 65 20 56 50 4e 00 4e 41 54 20 62 65 | AT.Ruleset.NAT.before.VPN.NAT.be |
| 107f20 | 66 6f 72 65 20 56 50 4e 20 54 6f 70 6f 6c 6f 67 79 00 4e 41 54 2c 20 52 6f 75 74 69 6e 67 2c 20 | fore.VPN.Topology.NAT,.Routing,. |
| 107f40 | 46 69 72 65 77 61 6c 6c 20 49 6e 74 65 72 61 63 74 69 6f 6e 00 4e 41 54 34 34 00 4e 41 54 36 34 | Firewall.Interaction.NAT44.NAT64 |
| 107f60 | 00 4e 41 54 36 34 20 63 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 4e 41 54 | .NAT64.client.configuration:.NAT |
| 107f80 | 36 34 20 70 72 65 66 69 78 20 6d 61 73 6b 20 6d 75 73 74 20 62 65 20 6f 6e 65 20 6f 66 3a 20 2f | 64.prefix.mask.must.be.one.of:./ |
| 107fa0 | 33 32 2c 20 2f 34 30 2c 20 2f 34 38 2c 20 2f 35 36 2c 20 2f 36 34 20 6f 72 20 39 36 2e 00 4e 41 | 32,./40,./48,./56,./64.or.96..NA |
| 107fc0 | 54 36 34 20 73 65 72 76 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 4e 41 54 36 36 28 | T64.server.configuration:.NAT66( |
| 107fe0 | 4e 50 54 76 36 29 00 4e 48 52 50 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 64 79 6e 61 6d 69 63 | NPTv6).NHRP.provides.the.dynamic |
| 108000 | 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 63 6f 76 65 72 79 20 6d 65 63 68 61 | .tunnel.endpoint.discovery.mecha |
| 108020 | 6e 69 73 6d 20 28 65 6e 64 70 6f 69 6e 74 20 72 65 67 69 73 74 72 61 74 69 6f 6e 2c 20 61 6e 64 | nism.(endpoint.registration,.and |
| 108040 | 20 65 6e 64 70 6f 69 6e 74 20 64 69 73 63 6f 76 65 72 79 2f 6c 6f 6f 6b 75 70 29 2c 20 6d 47 52 | .endpoint.discovery/lookup),.mGR |
| 108060 | 45 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 74 75 6e 6e 65 6c 20 65 6e 63 61 70 73 75 6c 61 74 | E.provides.the.tunnel.encapsulat |
| 108080 | 69 6f 6e 20 69 74 73 65 6c 66 2c 20 61 6e 64 20 74 68 65 20 49 50 53 65 63 20 70 72 6f 74 6f 63 | ion.itself,.and.the.IPSec.protoc |
| 1080a0 | 6f 6c 73 20 68 61 6e 64 6c 65 20 74 68 65 20 6b 65 79 20 65 78 63 68 61 6e 67 65 2c 20 61 6e 64 | ols.handle.the.key.exchange,.and |
| 1080c0 | 20 63 72 79 70 74 6f 20 6d 65 63 68 61 6e 69 73 6d 2e 00 4e 54 50 00 4e 54 50 20 69 73 20 69 6e | .crypto.mechanism..NTP.NTP.is.in |
| 1080e0 | 74 65 6e 64 65 64 20 74 6f 20 73 79 6e 63 68 72 6f 6e 69 7a 65 20 61 6c 6c 20 70 61 72 74 69 63 | tended.to.synchronize.all.partic |
| 108100 | 69 70 61 74 69 6e 67 20 63 6f 6d 70 75 74 65 72 73 20 74 6f 20 77 69 74 68 69 6e 20 61 20 66 65 | ipating.computers.to.within.a.fe |
| 108120 | 77 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 6f 66 20 3a 61 62 62 72 3a 60 55 54 43 20 28 43 6f | w.milliseconds.of.:abbr:`UTC.(Co |
| 108140 | 6f 72 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 29 60 2e 20 49 74 20 75 | ordinated.Universal.Time)`..It.u |
| 108160 | 73 65 73 20 74 68 65 20 69 6e 74 65 72 73 65 63 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 2c 20 | ses.the.intersection.algorithm,. |
| 108180 | 61 20 6d 6f 64 69 66 69 65 64 20 76 65 72 73 69 6f 6e 20 6f 66 20 4d 61 72 7a 75 6c 6c 6f 27 73 | a.modified.version.of.Marzullo's |
| 1081a0 | 20 61 6c 67 6f 72 69 74 68 6d 2c 20 74 6f 20 73 65 6c 65 63 74 20 61 63 63 75 72 61 74 65 20 74 | .algorithm,.to.select.accurate.t |
| 1081c0 | 69 6d 65 20 73 65 72 76 65 72 73 20 61 6e 64 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 6d | ime.servers.and.is.designed.to.m |
| 1081e0 | 69 74 69 67 61 74 65 20 74 68 65 20 65 66 66 65 63 74 73 20 6f 66 20 76 61 72 69 61 62 6c 65 20 | itigate.the.effects.of.variable. |
| 108200 | 6e 65 74 77 6f 72 6b 20 6c 61 74 65 6e 63 79 2e 20 4e 54 50 20 63 61 6e 20 75 73 75 61 6c 6c 79 | network.latency..NTP.can.usually |
| 108220 | 20 6d 61 69 6e 74 61 69 6e 20 74 69 6d 65 20 74 6f 20 77 69 74 68 69 6e 20 74 65 6e 73 20 6f 66 | .maintain.time.to.within.tens.of |
| 108240 | 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 6f 76 65 72 20 74 68 65 20 70 75 62 6c 69 63 20 49 6e | .milliseconds.over.the.public.In |
| 108260 | 74 65 72 6e 65 74 2c 20 61 6e 64 20 63 61 6e 20 61 63 68 69 65 76 65 20 62 65 74 74 65 72 20 74 | ternet,.and.can.achieve.better.t |
| 108280 | 68 61 6e 20 6f 6e 65 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 20 61 63 63 75 72 61 63 79 20 69 6e 20 | han.one.millisecond.accuracy.in. |
| 1082a0 | 6c 6f 63 61 6c 20 61 72 65 61 20 6e 65 74 77 6f 72 6b 73 20 75 6e 64 65 72 20 69 64 65 61 6c 20 | local.area.networks.under.ideal. |
| 1082c0 | 63 6f 6e 64 69 74 69 6f 6e 73 2e 20 41 73 79 6d 6d 65 74 72 69 63 20 72 6f 75 74 65 73 20 61 6e | conditions..Asymmetric.routes.an |
| 1082e0 | 64 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 67 65 73 74 69 6f 6e 20 63 61 6e 20 63 61 75 73 65 20 65 | d.network.congestion.can.cause.e |
| 108300 | 72 72 6f 72 73 20 6f 66 20 31 30 30 20 6d 73 20 6f 72 20 6d 6f 72 65 2e 00 4e 54 50 20 70 72 6f | rrors.of.100.ms.or.more..NTP.pro |
| 108320 | 63 65 73 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 6f 6e 20 74 68 65 20 73 70 65 | cess.will.only.listen.on.the.spe |
| 108340 | 63 69 66 69 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 6f 75 20 6d 75 73 74 20 73 70 65 63 | cified.IP.address..You.must.spec |
| 108360 | 69 66 79 20 74 68 65 20 60 3c 61 64 64 72 65 73 73 3e 60 20 61 6e 64 20 6f 70 74 69 6f 6e 61 6c | ify.the.`<address>`.and.optional |
| 108380 | 6c 79 20 74 68 65 20 70 65 72 6d 69 74 74 65 64 20 63 6c 69 65 6e 74 73 2e 20 4d 75 6c 74 69 70 | ly.the.permitted.clients..Multip |
| 1083a0 | 6c 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 | le.listen.addresses.can.be.confi |
| 1083c0 | 67 75 72 65 64 2e 00 4e 54 50 20 70 72 6f 63 65 73 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 6c 69 73 | gured..NTP.process.will.only.lis |
| 1083e0 | 74 65 6e 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 49 50 20 61 64 64 72 65 73 73 2e | ten.on.the.specified.IP.address. |
| 108400 | 20 59 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 74 68 65 20 60 3c 61 64 64 72 65 73 73 3e | .You.must.specify.the.`<address> |
| 108420 | 60 20 61 6e 64 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 74 68 65 20 70 65 72 6d 69 74 74 65 64 20 63 | `.and.optionally.the.permitted.c |
| 108440 | 6c 69 65 6e 74 73 2e 20 4d 75 6c 74 69 70 6c 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 65 | lients..Multiple.listen.addresse |
| 108460 | 73 20 66 6f 72 20 73 61 6d 65 20 49 50 20 66 61 6d 69 6c 79 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 | s.for.same.IP.family.is.no.longe |
| 108480 | 72 20 73 75 70 70 6f 72 74 65 64 2e 20 4f 6e 6c 79 20 6f 6e 65 20 49 50 76 34 20 61 6e 64 20 6f | r.supported..Only.one.IPv4.and.o |
| 1084a0 | 6e 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 | ne.IPv6.address.can.be.configure |
| 1084c0 | 64 2c 20 75 73 69 6e 67 20 73 65 70 61 72 61 74 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 65 | d,.using.separate.commands.for.e |
| 1084e0 | 61 63 68 2e 00 4e 54 50 20 73 75 62 73 79 73 74 65 6d 00 4e 54 50 20 73 75 70 70 6c 69 65 73 20 | ach..NTP.subsystem.NTP.supplies. |
| 108500 | 61 20 77 61 72 6e 69 6e 67 20 6f 66 20 61 6e 79 20 69 6d 70 65 6e 64 69 6e 67 20 6c 65 61 70 20 | a.warning.of.any.impending.leap. |
| 108520 | 73 65 63 6f 6e 64 20 61 64 6a 75 73 74 6d 65 6e 74 2c 20 62 75 74 20 6e 6f 20 69 6e 66 6f 72 6d | second.adjustment,.but.no.inform |
| 108540 | 61 74 69 6f 6e 20 61 62 6f 75 74 20 6c 6f 63 61 6c 20 74 69 6d 65 20 7a 6f 6e 65 73 20 6f 72 20 | ation.about.local.time.zones.or. |
| 108560 | 64 61 79 6c 69 67 68 74 20 73 61 76 69 6e 67 20 74 69 6d 65 20 69 73 20 74 72 61 6e 73 6d 69 74 | daylight.saving.time.is.transmit |
| 108580 | 74 65 64 2e 00 4e 61 6d 65 20 53 65 72 76 65 72 00 4e 61 6d 65 20 6f 66 20 69 6e 73 74 61 6c 6c | ted..Name.Server.Name.of.install |
| 1085a0 | 65 64 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 63 65 72 74 69 66 69 | ed.certificate.authority.certifi |
| 1085c0 | 63 61 74 65 2e 00 4e 61 6d 65 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 73 65 72 76 65 72 20 63 | cate..Name.of.installed.server.c |
| 1085e0 | 65 72 74 69 66 69 63 61 74 65 2e 00 4e 61 6d 65 20 6f 66 20 73 74 61 74 69 63 20 6d 61 70 70 69 | ertificate..Name.of.static.mappi |
| 108600 | 6e 67 00 4e 61 6d 65 20 6f 66 20 74 68 65 20 73 69 6e 67 6c 65 20 74 61 62 6c 65 20 4f 6e 6c 79 | ng.Name.of.the.single.table.Only |
| 108620 | 20 69 66 20 73 65 74 20 67 72 6f 75 70 2d 6d 65 74 72 69 63 73 20 73 69 6e 67 6c 65 2d 74 61 62 | .if.set.group-metrics.single-tab |
| 108640 | 6c 65 2e 00 4e 61 6d 65 20 6f 72 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 66 20 54 46 54 50 | le..Name.or.IPv4.address.of.TFTP |
| 108660 | 20 73 65 72 76 65 72 00 4e 65 74 42 49 4f 53 20 6f 76 65 72 20 54 43 50 2f 49 50 20 6e 61 6d 65 | .server.NetBIOS.over.TCP/IP.name |
| 108680 | 20 73 65 72 76 65 72 00 4e 65 74 46 6c 6f 77 00 4e 65 74 46 6c 6f 77 20 2f 20 49 50 46 49 58 00 | .server.NetFlow.NetFlow./.IPFIX. |
| 1086a0 | 4e 65 74 46 6c 6f 77 20 65 6e 67 69 6e 65 2d 69 64 20 77 68 69 63 68 20 77 69 6c 6c 20 61 70 70 | NetFlow.engine-id.which.will.app |
| 1086c0 | 65 61 72 20 69 6e 20 4e 65 74 46 6c 6f 77 20 64 61 74 61 2e 20 54 68 65 20 72 61 6e 67 65 20 69 | ear.in.NetFlow.data..The.range.i |
| 1086e0 | 73 20 30 20 74 6f 20 32 35 35 2e 00 4e 65 74 46 6c 6f 77 20 69 73 20 61 20 66 65 61 74 75 72 65 | s.0.to.255..NetFlow.is.a.feature |
| 108700 | 20 74 68 61 74 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 6f 6e 20 43 69 73 63 6f 20 72 6f | .that.was.introduced.on.Cisco.ro |
| 108720 | 75 74 65 72 73 20 61 72 6f 75 6e 64 20 31 39 39 36 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 | uters.around.1996.that.provides. |
| 108740 | 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 63 6f 6c 6c 65 63 74 20 49 50 20 6e 65 74 77 6f 72 | the.ability.to.collect.IP.networ |
| 108760 | 6b 20 74 72 61 66 66 69 63 20 61 73 20 69 74 20 65 6e 74 65 72 73 20 6f 72 20 65 78 69 74 73 20 | k.traffic.as.it.enters.or.exits. |
| 108780 | 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 42 79 20 61 6e 61 6c 79 7a 69 6e 67 20 74 68 65 20 64 | an.interface..By.analyzing.the.d |
| 1087a0 | 61 74 61 20 70 72 6f 76 69 64 65 64 20 62 79 20 4e 65 74 46 6c 6f 77 2c 20 61 20 6e 65 74 77 6f | ata.provided.by.NetFlow,.a.netwo |
| 1087c0 | 72 6b 20 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 20 63 61 6e 20 64 65 74 65 72 6d 69 6e 65 20 74 | rk.administrator.can.determine.t |
| 1087e0 | 68 69 6e 67 73 20 73 75 63 68 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 6e 64 20 64 65 73 | hings.such.as.the.source.and.des |
| 108800 | 74 69 6e 61 74 69 6f 6e 20 6f 66 20 74 72 61 66 66 69 63 2c 20 63 6c 61 73 73 20 6f 66 20 73 65 | tination.of.traffic,.class.of.se |
| 108820 | 72 76 69 63 65 2c 20 61 6e 64 20 74 68 65 20 63 61 75 73 65 73 20 6f 66 20 63 6f 6e 67 65 73 74 | rvice,.and.the.causes.of.congest |
| 108840 | 69 6f 6e 2e 20 41 20 74 79 70 69 63 61 6c 20 66 6c 6f 77 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 73 | ion..A.typical.flow.monitoring.s |
| 108860 | 65 74 75 70 20 28 75 73 69 6e 67 20 4e 65 74 46 6c 6f 77 29 20 63 6f 6e 73 69 73 74 73 20 6f 66 | etup.(using.NetFlow).consists.of |
| 108880 | 20 74 68 72 65 65 20 6d 61 69 6e 20 63 6f 6d 70 6f 6e 65 6e 74 73 3a 00 4e 65 74 46 6c 6f 77 20 | .three.main.components:.NetFlow. |
| 1088a0 | 69 73 20 75 73 75 61 6c 6c 79 20 65 6e 61 62 6c 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 6e 74 65 | is.usually.enabled.on.a.per-inte |
| 1088c0 | 72 66 61 63 65 20 62 61 73 69 73 20 74 6f 20 6c 69 6d 69 74 20 6c 6f 61 64 20 6f 6e 20 74 68 65 | rface.basis.to.limit.load.on.the |
| 1088e0 | 20 72 6f 75 74 65 72 20 63 6f 6d 70 6f 6e 65 6e 74 73 20 69 6e 76 6f 6c 76 65 64 20 69 6e 20 4e | .router.components.involved.in.N |
| 108900 | 65 74 46 6c 6f 77 2c 20 6f 72 20 74 6f 20 6c 69 6d 69 74 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f | etFlow,.or.to.limit.the.amount.o |
| 108920 | 66 20 4e 65 74 46 6c 6f 77 20 72 65 63 6f 72 64 73 20 65 78 70 6f 72 74 65 64 2e 00 4e 65 74 46 | f.NetFlow.records.exported..NetF |
| 108940 | 6c 6f 77 20 76 35 20 65 78 61 6d 70 6c 65 3a 00 4e 65 74 66 69 6c 74 65 72 20 62 61 73 65 64 00 | low.v5.example:.Netfilter.based. |
| 108960 | 4e 65 74 6d 61 73 6b 20 67 72 65 61 74 65 72 20 74 68 61 6e 20 6c 65 6e 67 74 68 2e 00 4e 65 74 | Netmask.greater.than.length..Net |
| 108980 | 6d 61 73 6b 20 6c 65 73 73 20 74 68 61 6e 20 6c 65 6e 67 74 68 00 4e 65 74 77 6f 72 6b 20 41 64 | mask.less.than.length.Network.Ad |
| 1089a0 | 76 65 72 74 69 73 65 6d 65 6e 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4e 65 74 77 6f 72 | vertisement.Configuration.Networ |
| 1089c0 | 6b 20 43 6f 6e 74 72 6f 6c 00 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 00 4e 65 74 77 6f | k.Control.Network.Emulator.Netwo |
| 1089e0 | 72 6b 20 47 72 6f 75 70 73 00 4e 65 74 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 45 6e | rk.Groups.Network.ID.(SSID).``En |
| 108a00 | 74 65 72 70 72 69 73 65 2d 54 45 53 54 60 60 00 4e 65 74 77 6f 72 6b 20 49 44 20 28 53 53 49 44 | terprise-TEST``.Network.ID.(SSID |
| 108a20 | 29 20 60 60 54 45 53 54 60 60 00 4e 65 74 77 6f 72 6b 20 49 44 20 28 53 53 49 44 29 20 60 60 74 | ).``TEST``.Network.ID.(SSID).``t |
| 108a40 | 65 73 74 2e 61 78 60 60 00 4e 65 74 77 6f 72 6b 20 54 6f 70 6f 6c 6f 67 79 20 44 69 61 67 72 61 | est.ax``.Network.Topology.Diagra |
| 108a60 | 6d 00 4e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 74 61 74 69 6f 6e 20 28 4e 4d | m.Network.management.station.(NM |
| 108a80 | 53 29 20 2d 20 73 6f 66 74 77 61 72 65 20 77 68 69 63 68 20 72 75 6e 73 20 6f 6e 20 74 68 65 20 | S).-.software.which.runs.on.the. |
| 108aa0 | 6d 61 6e 61 67 65 72 00 4e 65 74 77 6f 72 6b 20 6e 65 77 73 20 73 75 62 73 79 73 74 65 6d 00 4e | manager.Network.news.subsystem.N |
| 108ac0 | 65 74 77 6f 72 6b 20 74 6f 20 62 65 20 70 72 6f 74 65 63 74 65 64 3a 20 31 39 32 2e 30 2e 32 2e | etwork.to.be.protected:.192.0.2. |
| 108ae0 | 30 2f 32 34 20 28 70 75 62 6c 69 63 20 49 50 73 20 75 73 65 20 62 79 20 63 75 73 74 6f 6d 65 72 | 0/24.(public.IPs.use.by.customer |
| 108b00 | 73 29 00 4e 65 74 77 6f 72 6b 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 71 75 65 72 79 20 74 68 69 | s).Networks.allowed.to.query.thi |
| 108b20 | 73 20 73 65 72 76 65 72 00 4e 65 77 20 75 73 65 72 20 77 69 6c 6c 20 75 73 65 20 53 48 41 2f 41 | s.server.New.user.will.use.SHA/A |
| 108b40 | 45 53 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 70 72 69 76 61 63 | ES.for.authentication.and.privac |
| 108b60 | 79 00 4e 65 78 74 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 69 67 | y.Next.it.is.necessary.to.config |
| 108b80 | 75 72 65 20 32 46 41 20 66 6f 72 20 4f 70 65 6e 43 6f 6e 6e 65 63 74 3a 00 4e 65 78 74 2d 68 6f | ure.2FA.for.OpenConnect:.Next-ho |
| 108ba0 | 70 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 00 4e 65 78 74 68 6f | p.interface.for.the.route.Nextho |
| 108bc0 | 70 20 49 50 20 61 64 64 72 65 73 73 2e 00 4e 65 78 74 68 6f 70 20 49 50 76 36 20 61 64 64 72 65 | p.IP.address..Nexthop.IPv6.addre |
| 108be0 | 73 73 20 74 6f 20 6d 61 74 63 68 2e 00 4e 65 78 74 68 6f 70 20 49 50 76 36 20 61 64 64 72 65 73 | ss.to.match..Nexthop.IPv6.addres |
| 108c00 | 73 2e 00 4e 65 78 74 68 6f 70 20 54 72 61 63 6b 69 6e 67 00 4e 65 78 74 68 6f 70 20 74 72 61 63 | s..Nexthop.Tracking.Nexthop.trac |
| 108c20 | 6b 69 6e 67 20 72 65 73 6f 6c 76 65 20 6e 65 78 74 68 6f 70 73 20 76 69 61 20 74 68 65 20 64 65 | king.resolve.nexthops.via.the.de |
| 108c40 | 66 61 75 6c 74 20 72 6f 75 74 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 54 68 69 73 20 69 73 20 | fault.route.by.default..This.is. |
| 108c60 | 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 61 20 74 72 61 64 69 74 69 | enabled.by.default.for.a.traditi |
| 108c80 | 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 6f 66 20 46 52 52 20 77 68 69 63 68 20 77 65 20 75 73 65 | onal.profile.of.FRR.which.we.use |
| 108ca0 | 2e 20 49 74 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 61 62 6c 65 64 20 69 66 20 79 6f 75 20 | ..It.and.can.be.disabled.if.you. |
| 108cc0 | 64 6f 20 6e 6f 74 20 77 61 6e 27 74 20 74 6f 20 65 2e 67 2e 20 61 6c 6c 6f 77 20 42 47 50 20 74 | do.not.wan't.to.e.g..allow.BGP.t |
| 108ce0 | 6f 20 70 65 65 72 20 61 63 72 6f 73 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e | o.peer.across.the.default.route. |
| 108d00 | 00 4e 65 78 74 68 6f 70 20 74 72 61 63 6b 69 6e 67 20 72 65 73 6f 6c 76 65 20 6e 65 78 74 68 6f | .Nexthop.tracking.resolve.nextho |
| 108d20 | 70 73 20 76 69 61 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 62 79 20 64 65 66 61 | ps.via.the.default.route.by.defa |
| 108d40 | 75 6c 74 2e 20 54 68 69 73 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 | ult..This.is.enabled.by.default. |
| 108d60 | 66 6f 72 20 61 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 70 72 6f 66 69 6c 65 20 6f 66 20 46 52 52 | for.a.traditional.profile.of.FRR |
| 108d80 | 20 77 68 69 63 68 20 77 65 20 75 73 65 2e 20 49 74 20 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 | .which.we.use..It.and.can.be.dis |
| 108da0 | 61 62 6c 65 64 20 69 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 77 61 6e 74 20 74 6f 20 65 2e 67 2e | abled.if.you.do.not.want.to.e.g. |
| 108dc0 | 20 61 6c 6c 6f 77 20 42 47 50 20 74 6f 20 70 65 65 72 20 61 63 72 6f 73 73 20 74 68 65 20 64 65 | .allow.BGP.to.peer.across.the.de |
| 108de0 | 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4e 6f 20 52 4f 41 20 65 78 69 73 74 73 20 77 68 69 63 68 | fault.route..No.ROA.exists.which |
| 108e00 | 20 63 6f 76 65 72 73 20 74 68 61 74 20 70 72 65 66 69 78 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 | .covers.that.prefix..Unfortunate |
| 108e20 | 6c 79 20 74 68 69 73 20 69 73 20 74 68 65 20 63 61 73 65 20 66 6f 72 20 61 62 6f 75 74 20 34 30 | ly.this.is.the.case.for.about.40 |
| 108e40 | 25 2d 35 30 25 20 6f 66 20 74 68 65 20 70 72 65 66 69 78 65 73 20 77 68 69 63 68 20 77 65 72 65 | %-50%.of.the.prefixes.which.were |
| 108e60 | 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a 60 44 46 5a 20 28 64 65 | .announced.to.the.:abbr:`DFZ.(de |
| 108e80 | 66 61 75 6c 74 2d 66 72 65 65 20 7a 6f 6e 65 29 60 20 61 74 20 74 68 65 20 73 74 61 72 74 20 6f | fault-free.zone)`.at.the.start.o |
| 108ea0 | 66 20 32 30 32 34 2e 00 4e 6f 20 52 4f 41 20 65 78 69 73 74 73 20 77 68 69 63 68 20 63 6f 76 65 | f.2024..No.ROA.exists.which.cove |
| 108ec0 | 72 73 20 74 68 61 74 20 70 72 65 66 69 78 2e 20 55 6e 66 6f 72 74 75 6e 61 74 65 6c 79 20 74 68 | rs.that.prefix..Unfortunately.th |
| 108ee0 | 69 73 20 69 73 20 74 68 65 20 63 61 73 65 20 66 6f 72 20 61 62 6f 75 74 20 38 30 25 20 6f 66 20 | is.is.the.case.for.about.80%.of. |
| 108f00 | 74 68 65 20 49 50 76 34 20 70 72 65 66 69 78 65 73 20 77 68 69 63 68 20 77 65 72 65 20 61 6e 6e | the.IPv4.prefixes.which.were.ann |
| 108f20 | 6f 75 6e 63 65 64 20 74 6f 20 74 68 65 20 3a 61 62 62 72 3a 60 44 46 5a 20 28 64 65 66 61 75 6c | ounced.to.the.:abbr:`DFZ.(defaul |
| 108f40 | 74 2d 66 72 65 65 20 7a 6f 6e 65 29 60 20 61 74 20 74 68 65 20 73 74 61 72 74 20 6f 66 20 32 30 | t-free.zone)`.at.the.start.of.20 |
| 108f60 | 32 30 00 4e 6f 20 56 4c 41 4e 20 74 61 67 67 69 6e 67 20 72 65 71 75 69 72 65 64 20 62 79 20 79 | 20.No.VLAN.tagging.required.by.y |
| 108f80 | 6f 75 72 20 49 53 50 2e 00 4e 6f 20 72 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 73 73 65 64 20 | our.ISP..No.route.is.suppressed. |
| 108fa0 | 69 6e 64 65 66 69 6e 69 74 65 6c 79 2e 20 4d 61 78 69 6d 75 6d 2d 73 75 70 70 72 65 73 73 2d 74 | indefinitely..Maximum-suppress-t |
| 108fc0 | 69 6d 65 20 64 65 66 69 6e 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 74 69 6d 65 20 61 20 72 | ime.defines.the.maximum.time.a.r |
| 108fe0 | 6f 75 74 65 20 63 61 6e 20 62 65 20 73 75 70 70 72 65 73 73 65 64 20 62 65 66 6f 72 65 20 69 74 | oute.can.be.suppressed.before.it |
| 109000 | 20 69 73 20 72 65 2d 61 64 76 65 72 74 69 73 65 64 2e 00 4e 6f 20 73 75 70 70 6f 72 74 20 66 6f | .is.re-advertised..No.support.fo |
| 109020 | 72 20 53 52 4c 42 00 4e 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 62 69 6e 64 69 6e 67 20 53 49 | r.SRLB.No.support.for.binding.SI |
| 109040 | 44 00 4e 6f 20 73 75 70 70 6f 72 74 20 66 6f 72 20 6c 65 76 65 6c 20 72 65 64 69 73 74 72 69 62 | D.No.support.for.level.redistrib |
| 109060 | 75 74 69 6f 6e 20 28 4c 31 20 74 6f 20 4c 32 20 6f 72 20 4c 32 20 74 6f 20 4c 31 29 00 4e 6f 6e | ution.(L1.to.L2.or.L2.to.L1).Non |
| 109080 | 2d 74 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 69 6e 67 20 72 65 71 75 69 72 65 73 20 74 | -transparent.proxying.requires.t |
| 1090a0 | 68 61 74 20 74 68 65 20 63 6c 69 65 6e 74 20 62 72 6f 77 73 65 72 73 20 62 65 20 63 6f 6e 66 69 | hat.the.client.browsers.be.confi |
| 1090c0 | 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 70 72 6f 78 79 20 73 65 74 74 69 6e 67 73 20 62 65 | gured.with.the.proxy.settings.be |
| 1090e0 | 66 6f 72 65 20 72 65 71 75 65 73 74 73 20 61 72 65 20 72 65 64 69 72 65 63 74 65 64 2e 20 54 68 | fore.requests.are.redirected..Th |
| 109100 | 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 69 73 20 74 68 61 74 20 74 68 65 20 | e.advantage.of.this.is.that.the. |
| 109120 | 63 6c 69 65 6e 74 20 77 65 62 20 62 72 6f 77 73 65 72 20 63 61 6e 20 64 65 74 65 63 74 20 74 68 | client.web.browser.can.detect.th |
| 109140 | 61 74 20 61 20 70 72 6f 78 79 20 69 73 20 69 6e 20 75 73 65 20 61 6e 64 20 63 61 6e 20 62 65 68 | at.a.proxy.is.in.use.and.can.beh |
| 109160 | 61 76 65 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 2c 20 77 65 | ave.accordingly..In.addition,.we |
| 109180 | 62 2d 74 72 61 6e 73 6d 69 74 74 65 64 20 6d 61 6c 77 61 72 65 20 63 61 6e 20 73 6f 6d 65 74 69 | b-transmitted.malware.can.someti |
| 1091a0 | 6d 65 73 20 62 65 20 62 6c 6f 63 6b 65 64 20 62 79 20 61 20 6e 6f 6e 2d 74 72 61 6e 73 70 61 72 | mes.be.blocked.by.a.non-transpar |
| 1091c0 | 65 6e 74 20 77 65 62 20 70 72 6f 78 79 2c 20 73 69 6e 63 65 20 74 68 65 79 20 61 72 65 20 6e 6f | ent.web.proxy,.since.they.are.no |
| 1091e0 | 74 20 61 77 61 72 65 20 6f 66 20 74 68 65 20 70 72 6f 78 79 20 73 65 74 74 69 6e 67 73 2e 00 4e | t.aware.of.the.proxy.settings..N |
| 109200 | 6f 6e 65 20 6f 66 20 74 68 65 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65 6d 73 20 68 61 76 | one.of.the.operating.systems.hav |
| 109220 | 65 20 63 6c 69 65 6e 74 20 73 6f 66 74 77 61 72 65 20 69 6e 73 74 61 6c 6c 65 64 20 62 79 20 64 | e.client.software.installed.by.d |
| 109240 | 65 66 61 75 6c 74 00 4e 6f 72 6d 61 6c 20 62 75 74 20 73 69 67 6e 69 66 69 63 61 6e 74 20 63 6f | efault.Normal.but.significant.co |
| 109260 | 6e 64 69 74 69 6f 6e 73 20 2d 20 63 6f 6e 64 69 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 6e | nditions.-.conditions.that.are.n |
| 109280 | 6f 74 20 65 72 72 6f 72 20 63 6f 6e 64 69 74 69 6f 6e 73 2c 20 62 75 74 20 74 68 61 74 20 6d 61 | ot.error.conditions,.but.that.ma |
| 1092a0 | 79 20 72 65 71 75 69 72 65 20 73 70 65 63 69 61 6c 20 68 61 6e 64 6c 69 6e 67 2e 00 4e 6f 74 20 | y.require.special.handling..Not. |
| 1092c0 | 61 6c 6c 20 3a 72 66 63 3a 60 36 38 38 38 60 20 72 65 71 75 69 72 65 6d 65 6e 74 73 20 61 72 65 | all.:rfc:`6888`.requirements.are |
| 1092e0 | 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 69 6e 20 43 47 4e 41 54 2e 00 4e 6f 74 20 61 6c 6c 20 74 | .implemented.in.CGNAT..Not.all.t |
| 109300 | 72 61 6e 73 6d 69 74 20 70 6f 6c 69 63 69 65 73 20 6d 61 79 20 62 65 20 38 30 32 2e 33 61 64 20 | ransmit.policies.may.be.802.3ad. |
| 109320 | 63 6f 6d 70 6c 69 61 6e 74 2c 20 70 61 72 74 69 63 75 6c 61 72 6c 79 20 69 6e 20 72 65 67 61 72 | compliant,.particularly.in.regar |
| 109340 | 64 73 20 74 6f 20 74 68 65 20 70 61 63 6b 65 74 20 6d 69 73 6f 72 64 65 72 69 6e 67 20 72 65 71 | ds.to.the.packet.misordering.req |
| 109360 | 75 69 72 65 6d 65 6e 74 73 20 6f 66 20 73 65 63 74 69 6f 6e 20 34 33 2e 32 2e 34 20 6f 66 20 74 | uirements.of.section.43.2.4.of.t |
| 109380 | 68 65 20 38 30 32 2e 33 61 64 20 73 74 61 6e 64 61 72 64 2e 00 4e 6f 74 65 20 74 68 61 74 20 64 | he.802.3ad.standard..Note.that.d |
| 1093a0 | 65 6c 65 74 69 6e 67 20 74 68 65 20 6c 6f 67 20 66 69 6c 65 20 64 6f 65 73 20 6e 6f 74 20 73 74 | eleting.the.log.file.does.not.st |
| 1093c0 | 6f 70 20 74 68 65 20 73 79 73 74 65 6d 20 66 72 6f 6d 20 6c 6f 67 67 69 6e 67 20 65 76 65 6e 74 | op.the.system.from.logging.event |
| 1093e0 | 73 2e 20 49 66 20 79 6f 75 20 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 68 69 6c 65 | s..If.you.use.this.command.while |
| 109400 | 20 74 68 65 20 73 79 73 74 65 6d 20 69 73 20 6c 6f 67 67 69 6e 67 20 65 76 65 6e 74 73 2c 20 6f | .the.system.is.logging.events,.o |
| 109420 | 6c 64 20 6c 6f 67 20 65 76 65 6e 74 73 20 77 69 6c 6c 20 62 65 20 64 65 6c 65 74 65 64 2c 20 62 | ld.log.events.will.be.deleted,.b |
| 109440 | 75 74 20 65 76 65 6e 74 73 20 61 66 74 65 72 20 74 68 65 20 64 65 6c 65 74 65 20 6f 70 65 72 61 | ut.events.after.the.delete.opera |
| 109460 | 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 72 65 63 6f 72 64 65 64 20 69 6e 20 74 68 65 20 6e 65 77 | tion.will.be.recorded.in.the.new |
| 109480 | 20 66 69 6c 65 2e 20 54 6f 20 64 65 6c 65 74 65 20 74 68 65 20 66 69 6c 65 20 61 6c 74 6f 67 65 | .file..To.delete.the.file.altoge |
| 1094a0 | 74 68 65 72 2c 20 66 69 72 73 74 20 64 65 6c 65 74 65 20 6c 6f 67 67 69 6e 67 20 74 6f 20 74 68 | ther,.first.delete.logging.to.th |
| 1094c0 | 65 20 66 69 6c 65 20 75 73 69 6e 67 20 73 79 73 74 65 6d 20 73 79 73 6c 6f 67 20 3a 72 65 66 3a | e.file.using.system.syslog.:ref: |
| 1094e0 | 60 63 75 73 74 6f 6d 2d 66 69 6c 65 60 20 63 6f 6d 6d 61 6e 64 2c 20 61 6e 64 20 74 68 65 6e 20 | `custom-file`.command,.and.then. |
| 109500 | 64 65 6c 65 74 65 20 74 68 65 20 66 69 6c 65 2e 00 4e 6f 74 65 20 74 68 65 20 63 6f 6d 6d 61 6e | delete.the.file..Note.the.comman |
| 109520 | 64 20 77 69 74 68 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 28 73 65 74 20 70 6b 69 20 6b | d.with.the.public.key.(set.pki.k |
| 109540 | 65 79 2d 70 61 69 72 20 69 70 73 65 63 2d 52 49 47 48 54 20 70 75 62 6c 69 63 20 6b 65 79 20 27 | ey-pair.ipsec-RIGHT.public.key.' |
| 109560 | 46 41 41 4f 43 41 51 38 41 4d 49 49 2e 2e 2e 27 29 2e 00 4e 6f 74 65 3a 20 63 65 72 74 69 66 69 | FAAOCAQ8AMII...')..Note:.certifi |
| 109580 | 63 61 74 65 20 6e 61 6d 65 73 20 64 6f 6e 27 74 20 6d 61 74 74 65 72 2c 20 77 65 20 75 73 65 20 | cate.names.don't.matter,.we.use. |
| 1095a0 | 27 6f 70 65 6e 76 70 6e 2d 6c 6f 63 61 6c 27 20 61 6e 64 20 27 6f 70 65 6e 76 70 6e 2d 72 65 6d | 'openvpn-local'.and.'openvpn-rem |
| 1095c0 | 6f 74 65 27 20 62 75 74 20 74 68 65 79 20 63 61 6e 20 62 65 20 61 72 62 69 74 72 61 72 79 2e 00 | ote'.but.they.can.be.arbitrary.. |
| 1095e0 | 4e 6f 74 69 63 65 00 4e 6f 77 20 63 6f 6e 66 69 67 75 72 65 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 | Notice.Now.configure.conntrack-s |
| 109600 | 79 6e 63 20 73 65 72 76 69 63 65 20 6f 6e 20 60 60 72 6f 75 74 65 72 31 60 60 20 2a 2a 61 6e 64 | ync.service.on.``router1``.**and |
| 109620 | 2a 2a 20 60 60 72 6f 75 74 65 72 32 60 60 00 4e 6f 77 20 74 68 65 20 6e 6f 74 65 64 20 70 75 62 | **.``router2``.Now.the.noted.pub |
| 109640 | 6c 69 63 20 6b 65 79 73 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 74 65 72 65 64 20 6f 6e 20 74 68 | lic.keys.should.be.entered.on.th |
| 109660 | 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 73 2e 00 4e 6f 77 20 74 68 65 20 75 73 65 72 | e.opposite.routers..Now.the.user |
| 109680 | 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 68 72 6f 75 67 68 20 73 73 68 20 74 6f 20 74 68 65 20 | .can.connect.through.ssh.to.the. |
| 1096a0 | 72 6f 75 74 65 72 20 28 61 73 73 75 6d 69 6e 67 20 73 73 68 20 69 73 20 63 6f 6e 66 69 67 75 72 | router.(assuming.ssh.is.configur |
| 1096c0 | 65 64 29 2e 00 4e 6f 77 20 75 73 65 72 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 68 72 6f 75 67 | ed)..Now.user.can.connect.throug |
| 1096e0 | 68 20 73 73 68 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 28 61 73 73 75 6d 69 6e 67 20 73 73 | h.ssh.to.the.router.(assuming.ss |
| 109700 | 68 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 29 2e 00 4e 6f 77 20 77 65 20 61 64 64 20 74 68 65 | h.is.configured)..Now.we.add.the |
| 109720 | 20 6f 70 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 63 6f 70 65 2c 20 61 64 61 70 74 20 74 6f 20 79 | .option.to.the.scope,.adapt.to.y |
| 109740 | 6f 75 72 20 73 65 74 75 70 00 4e 6f 77 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 | our.setup.Now.we.need.to.specify |
| 109760 | 20 74 68 65 20 73 65 72 76 65 72 20 6e 65 74 77 6f 72 6b 20 73 65 74 74 69 6e 67 73 2e 20 49 6e | .the.server.network.settings..In |
| 109780 | 20 61 6c 6c 20 63 61 73 65 73 20 77 65 20 6e 65 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 | .all.cases.we.need.to.specify.th |
| 1097a0 | 65 20 73 75 62 6e 65 74 20 66 6f 72 20 63 6c 69 65 6e 74 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f | e.subnet.for.client.tunnel.endpo |
| 1097c0 | 69 6e 74 73 2e 20 53 69 6e 63 65 20 77 65 20 77 61 6e 74 20 63 6c 69 65 6e 74 73 20 74 6f 20 61 | ints..Since.we.want.clients.to.a |
| 1097e0 | 63 63 65 73 73 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b 20 62 65 68 69 6e 64 20 | ccess.a.specific.network.behind. |
| 109800 | 6f 75 72 20 72 6f 75 74 65 72 2c 20 77 65 20 77 69 6c 6c 20 75 73 65 20 61 20 70 75 73 68 2d 72 | our.router,.we.will.use.a.push-r |
| 109820 | 6f 75 74 65 20 6f 70 74 69 6f 6e 20 66 6f 72 20 69 6e 73 74 61 6c 6c 69 6e 67 20 74 68 61 74 20 | oute.option.for.installing.that. |
| 109840 | 72 6f 75 74 65 20 6f 6e 20 63 6c 69 65 6e 74 73 2e 00 4e 6f 77 20 77 68 65 6e 20 63 6f 6e 6e 65 | route.on.clients..Now.when.conne |
| 109860 | 63 74 69 6e 67 20 74 68 65 20 75 73 65 72 20 77 69 6c 6c 20 66 69 72 73 74 20 62 65 20 61 73 6b | cting.the.user.will.first.be.ask |
| 109880 | 65 64 20 66 6f 72 20 74 68 65 20 70 61 73 73 77 6f 72 64 20 61 6e 64 20 74 68 65 6e 20 74 68 65 | ed.for.the.password.and.then.the |
| 1098a0 | 20 4f 54 50 20 6b 65 79 2e 00 4e 6f 77 20 79 6f 75 20 61 72 65 20 72 65 61 64 79 20 74 6f 20 73 | .OTP.key..Now.you.are.ready.to.s |
| 1098c0 | 65 74 75 70 20 49 50 73 65 63 2e 20 54 68 65 20 6b 65 79 20 70 6f 69 6e 74 73 3a 00 4e 6f 77 20 | etup.IPsec..The.key.points:.Now. |
| 1098e0 | 79 6f 75 20 61 72 65 20 72 65 61 64 79 20 74 6f 20 73 65 74 75 70 20 49 50 73 65 63 2e 20 59 6f | you.are.ready.to.setup.IPsec..Yo |
| 109900 | 75 27 6c 6c 20 6e 65 65 64 20 74 6f 20 75 73 65 20 61 6e 20 49 44 20 69 6e 73 74 65 61 64 20 6f | u'll.need.to.use.an.ID.instead.o |
| 109920 | 66 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 70 65 65 72 2e 00 4e 75 6d 62 65 72 20 6f | f.address.for.the.peer..Number.o |
| 109940 | 66 20 61 6e 74 65 6e 6e 61 73 20 6f 6e 20 74 68 69 73 20 63 61 72 64 00 4e 75 6d 62 65 72 20 6f | f.antennas.on.this.card.Number.o |
| 109960 | 66 20 62 69 74 73 20 6f 66 20 63 6c 69 65 6e 74 20 49 50 76 34 20 61 64 64 72 65 73 73 20 74 6f | f.bits.of.client.IPv4.address.to |
| 109980 | 20 70 61 73 73 20 77 68 65 6e 20 73 65 6e 64 69 6e 67 20 45 44 4e 53 20 43 6c 69 65 6e 74 20 53 | .pass.when.sending.EDNS.Client.S |
| 1099a0 | 75 62 6e 65 74 20 61 64 64 72 65 73 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 4e 75 6d 62 65 | ubnet.address.information..Numbe |
| 1099c0 | 72 20 6f 66 20 6c 69 6e 65 73 20 74 6f 20 62 65 20 64 69 73 70 6c 61 79 65 64 2c 20 64 65 66 61 | r.of.lines.to.be.displayed,.defa |
| 1099e0 | 75 6c 74 20 31 30 00 4f 53 50 46 00 4f 53 50 46 20 53 52 20 20 43 6f 6e 66 69 67 75 72 61 74 69 | ult.10.OSPF.OSPF.SR..Configurati |
| 109a00 | 6f 6e 00 4f 53 50 46 20 69 73 20 61 20 77 69 64 65 6c 79 20 75 73 65 64 20 49 47 50 20 69 6e 20 | on.OSPF.is.a.widely.used.IGP.in. |
| 109a20 | 6c 61 72 67 65 20 65 6e 74 65 72 70 72 69 73 65 20 6e 65 74 77 6f 72 6b 73 2e 00 4f 53 50 46 20 | large.enterprise.networks..OSPF. |
| 109a40 | 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 73 20 6e 6f 72 6d 61 6c 6c 79 20 64 69 73 63 6f 76 65 | routing.devices.normally.discove |
| 109a60 | 72 20 74 68 65 69 72 20 6e 65 69 67 68 62 6f 72 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 62 79 | r.their.neighbors.dynamically.by |
| 109a80 | 20 6c 69 73 74 65 6e 69 6e 67 20 74 6f 20 74 68 65 20 62 72 6f 61 64 63 61 73 74 20 6f 72 20 6d | .listening.to.the.broadcast.or.m |
| 109aa0 | 75 6c 74 69 63 61 73 74 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 6f 6e 20 74 68 65 20 6e 65 | ulticast.hello.packets.on.the.ne |
| 109ac0 | 74 77 6f 72 6b 2e 20 42 65 63 61 75 73 65 20 61 6e 20 4e 42 4d 41 20 6e 65 74 77 6f 72 6b 20 64 | twork..Because.an.NBMA.network.d |
| 109ae0 | 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 62 72 6f 61 64 63 61 73 74 20 28 6f 72 20 6d 75 | oes.not.support.broadcast.(or.mu |
| 109b00 | 6c 74 69 63 61 73 74 29 2c 20 74 68 65 20 64 65 76 69 63 65 20 63 61 6e 6e 6f 74 20 64 69 73 63 | lticast),.the.device.cannot.disc |
| 109b20 | 6f 76 65 72 20 69 74 73 20 6e 65 69 67 68 62 6f 72 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 2c 20 | over.its.neighbors.dynamically,. |
| 109b40 | 73 6f 20 79 6f 75 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 61 6c 6c 20 74 68 65 20 6e 65 | so.you.must.configure.all.the.ne |
| 109b60 | 69 67 68 62 6f 72 73 20 73 74 61 74 69 63 61 6c 6c 79 2e 00 4f 53 50 46 76 32 20 28 49 50 76 34 | ighbors.statically..OSPFv2.(IPv4 |
| 109b80 | 29 00 4f 53 50 46 76 33 20 28 49 50 76 36 29 00 4f 54 50 2d 6b 65 79 20 67 65 6e 65 72 61 74 69 | ).OSPFv3.(IPv6).OTP-key.generati |
| 109ba0 | 6f 6e 00 4f 66 66 6c 6f 61 64 69 6e 67 00 4f 66 66 73 65 74 20 6f 66 20 74 68 65 20 63 6c 69 65 | on.Offloading.Offset.of.the.clie |
| 109bc0 | 6e 74 27 73 20 73 75 62 6e 65 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 66 72 6f 6d 20 43 6f 6f 72 | nt's.subnet.in.seconds.from.Coor |
| 109be0 | 64 69 6e 61 74 65 64 20 55 6e 69 76 65 72 73 61 6c 20 54 69 6d 65 20 28 55 54 43 29 00 4f 66 74 | dinated.Universal.Time.(UTC).Oft |
| 109c00 | 65 6e 20 77 65 20 6e 65 65 64 20 74 6f 20 65 6d 62 65 64 20 6f 6e 65 20 70 6f 6c 69 63 79 20 69 | en.we.need.to.embed.one.policy.i |
| 109c20 | 6e 74 6f 20 61 6e 6f 74 68 65 72 20 6f 6e 65 2e 20 49 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 | nto.another.one..It.is.possible. |
| 109c40 | 74 6f 20 64 6f 20 73 6f 20 6f 6e 20 63 6c 61 73 73 66 75 6c 20 70 6f 6c 69 63 69 65 73 2c 20 62 | to.do.so.on.classful.policies,.b |
| 109c60 | 79 20 61 74 74 61 63 68 69 6e 67 20 61 20 6e 65 77 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 | y.attaching.a.new.policy.into.a. |
| 109c80 | 63 6c 61 73 73 2e 20 46 6f 72 20 69 6e 73 74 61 6e 63 65 2c 20 79 6f 75 20 6d 69 67 68 74 20 77 | class..For.instance,.you.might.w |
| 109ca0 | 61 6e 74 20 74 6f 20 61 70 70 6c 79 20 64 69 66 66 65 72 65 6e 74 20 70 6f 6c 69 63 69 65 73 20 | ant.to.apply.different.policies. |
| 109cc0 | 74 6f 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 63 6c 61 73 73 65 73 20 6f 66 20 61 20 52 6f | to.the.different.classes.of.a.Ro |
| 109ce0 | 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c 69 63 79 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 | und-Robin.policy.you.have.config |
| 109d00 | 75 72 65 64 2e 00 4f 66 74 65 6e 20 79 6f 75 20 77 69 6c 6c 20 61 6c 73 6f 20 68 61 76 65 20 74 | ured..Often.you.will.also.have.t |
| 109d20 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 72 20 2a 64 65 66 61 75 6c 74 2a 20 74 72 61 66 66 | o.configure.your.*default*.traff |
| 109d40 | 69 63 20 69 6e 20 74 68 65 20 73 61 6d 65 20 77 61 79 20 79 6f 75 20 64 6f 20 77 69 74 68 20 61 | ic.in.the.same.way.you.do.with.a |
| 109d60 | 20 63 6c 61 73 73 2e 20 2a 44 65 66 61 75 6c 74 2a 20 63 61 6e 20 62 65 20 63 6f 6e 73 69 64 65 | .class..*Default*.can.be.conside |
| 109d80 | 72 65 64 20 61 20 63 6c 61 73 73 20 61 73 20 69 74 20 62 65 68 61 76 65 73 20 6c 69 6b 65 20 74 | red.a.class.as.it.behaves.like.t |
| 109da0 | 68 61 74 2e 20 49 74 20 63 6f 6e 74 61 69 6e 73 20 61 6e 79 20 74 72 61 66 66 69 63 20 74 68 61 | hat..It.contains.any.traffic.tha |
| 109dc0 | 74 20 64 69 64 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 6f 66 20 74 68 65 20 64 65 66 69 6e | t.did.not.match.any.of.the.defin |
| 109de0 | 65 64 20 63 6c 61 73 73 65 73 2c 20 73 6f 20 69 74 20 69 73 20 6c 69 6b 65 20 61 6e 20 6f 70 65 | ed.classes,.so.it.is.like.an.ope |
| 109e00 | 6e 20 63 6c 61 73 73 2c 20 61 20 63 6c 61 73 73 20 77 69 74 68 6f 75 74 20 6d 61 74 63 68 69 6e | n.class,.a.class.without.matchin |
| 109e20 | 67 20 66 69 6c 74 65 72 73 2e 00 4f 6e 20 61 63 74 69 76 65 20 72 6f 75 74 65 72 20 72 75 6e 3a | g.filters..On.active.router.run: |
| 109e40 | 00 4f 6e 20 62 6f 74 68 20 73 69 64 65 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 | .On.both.sides,.you.need.to.gene |
| 109e60 | 72 61 74 65 20 61 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2c 20 | rate.a.self-signed.certificate,. |
| 109e80 | 70 72 65 66 65 72 72 61 62 6c 79 20 75 73 69 6e 67 20 74 68 65 20 22 65 63 22 20 28 65 6c 6c 69 | preferrably.using.the."ec".(elli |
| 109ea0 | 70 74 69 63 20 63 75 72 76 65 29 20 74 79 70 65 2e 20 59 6f 75 20 63 61 6e 20 67 65 6e 65 72 61 | ptic.curve).type..You.can.genera |
| 109ec0 | 74 65 20 74 68 65 6d 20 62 79 20 65 78 65 63 75 74 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 60 60 72 | te.them.by.executing.command.``r |
| 109ee0 | 75 6e 20 67 65 6e 65 72 61 74 65 20 70 6b 69 20 63 65 72 74 69 66 69 63 61 74 65 20 73 65 6c 66 | un.generate.pki.certificate.self |
| 109f00 | 2d 73 69 67 6e 65 64 20 69 6e 73 74 61 6c 6c 20 3c 6e 61 6d 65 3e 60 60 20 69 6e 20 74 68 65 20 | -signed.install.<name>``.in.the. |
| 109f20 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 20 4f 6e 63 65 20 74 68 65 20 63 6f 6d | configuration.mode..Once.the.com |
| 109f40 | 6d 61 6e 64 20 69 73 20 63 6f 6d 70 6c 65 74 65 2c 20 69 74 20 77 69 6c 6c 20 61 64 64 20 74 68 | mand.is.complete,.it.will.add.th |
| 109f60 | 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 | e.certificate.to.the.configurati |
| 109f80 | 6f 6e 20 73 65 73 73 69 6f 6e 2c 20 74 6f 20 74 68 65 20 60 60 70 6b 69 60 60 20 73 75 62 74 72 | on.session,.to.the.``pki``.subtr |
| 109fa0 | 65 65 2e 20 59 6f 75 20 63 61 6e 20 74 68 65 6e 20 72 65 76 69 65 77 20 74 68 65 20 70 72 6f 70 | ee..You.can.then.review.the.prop |
| 109fc0 | 6f 73 65 64 20 63 68 61 6e 67 65 73 20 61 6e 64 20 63 6f 6d 6d 69 74 20 74 68 65 6d 2e 00 4f 6e | osed.changes.and.commit.them..On |
| 109fe0 | 20 6c 6f 77 20 72 61 74 65 73 20 28 62 65 6c 6f 77 20 34 30 4d 62 69 74 29 20 79 6f 75 20 6d 61 | .low.rates.(below.40Mbit).you.ma |
| 10a000 | 79 20 77 61 6e 74 20 74 6f 20 74 75 6e 65 20 60 71 75 61 6e 74 75 6d 60 20 64 6f 77 6e 20 74 6f | y.want.to.tune.`quantum`.down.to |
| 10a020 | 20 73 6f 6d 65 74 68 69 6e 67 20 6c 69 6b 65 20 33 30 30 20 62 79 74 65 73 2e 00 4f 6e 20 6d 6f | .something.like.300.bytes..On.mo |
| 10a040 | 73 74 20 73 63 65 6e 61 72 69 6f 73 2c 20 74 68 65 72 65 27 73 20 6e 6f 20 6e 65 65 64 20 74 6f | st.scenarios,.there's.no.need.to |
| 10a060 | 20 63 68 61 6e 67 65 20 73 70 65 63 69 66 69 63 20 70 61 72 61 6d 65 74 65 72 73 2c 20 61 6e 64 | .change.specific.parameters,.and |
| 10a080 | 20 75 73 69 6e 67 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 | .using.default.configuration.is. |
| 10a0a0 | 65 6e 6f 75 67 68 2e 20 42 75 74 20 74 68 65 72 65 20 61 72 65 20 63 61 73 65 73 20 77 65 72 65 | enough..But.there.are.cases.were |
| 10a0c0 | 20 65 78 74 72 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 6e 65 65 64 65 64 2e 00 | .extra.configuration.is.needed.. |
| 10a0e0 | 4f 6e 20 73 74 61 6e 64 62 79 20 72 6f 75 74 65 72 20 72 75 6e 3a 00 4f 6e 20 73 79 73 74 65 6d | On.standby.router.run:.On.system |
| 10a100 | 73 20 77 69 74 68 20 6d 75 6c 74 69 70 6c 65 20 72 65 64 75 6e 64 61 6e 74 20 75 70 6c 69 6e 6b | s.with.multiple.redundant.uplink |
| 10a120 | 73 20 61 6e 64 20 72 6f 75 74 65 73 2c 20 69 74 27 73 20 61 20 67 6f 6f 64 20 69 64 65 61 20 74 | s.and.routes,.it's.a.good.idea.t |
| 10a140 | 6f 20 75 73 65 20 61 20 64 65 64 69 63 61 74 65 64 20 61 64 64 72 65 73 73 20 66 6f 72 20 6d 61 | o.use.a.dedicated.address.for.ma |
| 10a160 | 6e 61 67 65 6d 65 6e 74 20 61 6e 64 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f | nagement.and.dynamic.routing.pro |
| 10a180 | 74 6f 63 6f 6c 73 2e 20 48 6f 77 65 76 65 72 2c 20 61 73 73 69 67 6e 69 6e 67 20 74 68 61 74 20 | tocols..However,.assigning.that. |
| 10a1a0 | 61 64 64 72 65 73 73 20 74 6f 20 61 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 20 69 73 20 72 69 | address.to.a.physical.link.is.ri |
| 10a1c0 | 73 6b 79 3a 20 69 66 20 74 68 61 74 20 6c 69 6e 6b 20 67 6f 65 73 20 64 6f 77 6e 2c 20 74 68 61 | sky:.if.that.link.goes.down,.tha |
| 10a1e0 | 74 20 61 64 64 72 65 73 73 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 69 6e 61 63 63 65 73 73 69 62 | t.address.will.become.inaccessib |
| 10a200 | 6c 65 2e 20 41 20 63 6f 6d 6d 6f 6e 20 73 6f 6c 75 74 69 6f 6e 20 69 73 20 74 6f 20 61 73 73 69 | le..A.common.solution.is.to.assi |
| 10a220 | 67 6e 20 74 68 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 6c | gn.the.management.address.to.a.l |
| 10a240 | 6f 6f 70 62 61 63 6b 20 6f 72 20 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 | oopback.or.a.dummy.interface.and |
| 10a260 | 20 61 64 76 65 72 74 69 73 65 20 74 68 61 74 20 61 64 64 72 65 73 73 20 76 69 61 20 61 6c 6c 20 | .advertise.that.address.via.all. |
| 10a280 | 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 73 2c 20 73 6f 20 74 68 61 74 20 69 74 27 73 20 72 65 61 | physical.links,.so.that.it's.rea |
| 10a2a0 | 63 68 61 62 6c 65 20 74 68 72 6f 75 67 68 20 61 6e 79 20 6f 66 20 74 68 65 6d 2e 20 53 69 6e 63 | chable.through.any.of.them..Sinc |
| 10a2c0 | 65 20 69 6e 20 4c 69 6e 75 78 2d 62 61 73 65 64 20 73 79 73 74 65 6d 73 2c 20 74 68 65 72 65 20 | e.in.Linux-based.systems,.there. |
| 10a2e0 | 63 61 6e 20 62 65 20 6f 6e 6c 79 20 6f 6e 65 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 | can.be.only.one.loopback.interfa |
| 10a300 | 63 65 2c 20 69 74 27 73 20 62 65 74 74 65 72 20 74 6f 20 75 73 65 20 61 20 64 75 6d 6d 79 20 69 | ce,.it's.better.to.use.a.dummy.i |
| 10a320 | 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 68 61 74 20 70 75 72 70 6f 73 65 2c 20 73 69 6e 63 65 | nterface.for.that.purpose,.since |
| 10a340 | 20 74 68 65 79 20 63 61 6e 20 62 65 20 61 64 64 65 64 2c 20 72 65 6d 6f 76 65 64 2c 20 61 6e 64 | .they.can.be.added,.removed,.and |
| 10a360 | 20 74 61 6b 65 6e 20 75 70 20 61 6e 64 20 64 6f 77 6e 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 | .taken.up.and.down.independently |
| 10a380 | 2e 00 4f 6e 20 74 68 65 20 4c 45 46 54 20 28 73 74 61 74 69 63 20 61 64 64 72 65 73 73 29 3a 00 | ..On.the.LEFT.(static.address):. |
| 10a3a0 | 4f 6e 20 74 68 65 20 4c 45 46 54 3a 00 4f 6e 20 74 68 65 20 52 49 47 48 54 20 28 64 79 6e 61 6d | On.the.LEFT:.On.the.RIGHT.(dynam |
| 10a3c0 | 69 63 20 61 64 64 72 65 73 73 29 3a 00 4f 6e 20 74 68 65 20 52 49 47 48 54 2c 20 73 65 74 75 70 | ic.address):.On.the.RIGHT,.setup |
| 10a3e0 | 20 62 79 20 61 6e 61 6c 6f 67 79 20 61 6e 64 20 73 77 61 70 20 6c 6f 63 61 6c 20 61 6e 64 20 72 | .by.analogy.and.swap.local.and.r |
| 10a400 | 65 6d 6f 74 65 20 61 64 64 72 65 73 73 65 73 2e 00 4f 6e 20 74 68 65 20 52 49 47 48 54 3a 00 4f | emote.addresses..On.the.RIGHT:.O |
| 10a420 | 6e 20 74 68 65 20 61 63 74 69 76 65 20 72 6f 75 74 65 72 2c 20 79 6f 75 20 73 68 6f 75 6c 64 20 | n.the.active.router,.you.should. |
| 10a440 | 68 61 76 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 69 6e 74 65 72 6e 61 6c | have.information.in.the.internal |
| 10a460 | 2d 63 61 63 68 65 20 6f 66 20 63 6f 6e 6e 74 72 61 63 6b 2d 73 79 6e 63 2e 20 54 68 65 20 73 61 | -cache.of.conntrack-sync..The.sa |
| 10a480 | 6d 65 20 63 75 72 72 65 6e 74 20 61 63 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6e 75 | me.current.active.connections.nu |
| 10a4a0 | 6d 62 65 72 20 73 68 6f 75 6c 64 20 62 65 20 73 68 6f 77 6e 20 69 6e 20 74 68 65 20 65 78 74 65 | mber.should.be.shown.in.the.exte |
| 10a4c0 | 72 6e 61 6c 2d 63 61 63 68 65 20 6f 66 20 74 68 65 20 73 74 61 6e 64 62 79 20 72 6f 75 74 65 72 | rnal-cache.of.the.standby.router |
| 10a4e0 | 00 4f 6e 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 73 65 | .On.the.initiator,.we.need.to.se |
| 10a500 | 74 20 74 68 65 20 72 65 6d 6f 74 65 2d 69 64 20 6f 70 74 69 6f 6e 20 73 6f 20 74 68 61 74 20 69 | t.the.remote-id.option.so.that.i |
| 10a520 | 74 20 63 61 6e 20 69 64 65 6e 74 69 66 79 20 49 4b 45 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 | t.can.identify.IKE.traffic.from. |
| 10a540 | 74 68 65 20 72 65 73 70 6f 6e 64 65 72 20 63 6f 72 72 65 63 74 6c 79 2e 00 4f 6e 20 74 68 65 20 | the.responder.correctly..On.the. |
| 10a560 | 69 6e 69 74 69 61 74 6f 72 2c 20 77 65 20 73 65 74 20 74 68 65 20 70 65 65 72 20 61 64 64 72 65 | initiator,.we.set.the.peer.addre |
| 10a580 | 73 73 20 74 6f 20 69 74 73 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 6f 6e | ss.to.its.public.address,.but.on |
| 10a5a0 | 20 74 68 65 20 72 65 73 70 6f 6e 64 65 72 20 77 65 20 6f 6e 6c 79 20 73 65 74 20 74 68 65 20 69 | .the.responder.we.only.set.the.i |
| 10a5c0 | 64 2e 00 4f 6e 20 74 68 65 20 6c 61 73 74 20 68 6f 70 20 72 6f 75 74 65 72 20 69 66 20 69 74 20 | d..On.the.last.hop.router.if.it. |
| 10a5e0 | 69 73 20 64 65 73 69 72 65 64 20 74 6f 20 6e 6f 74 20 73 77 69 74 63 68 20 6f 76 65 72 20 74 6f | is.desired.to.not.switch.over.to |
| 10a600 | 20 74 68 65 20 53 50 54 20 74 72 65 65 20 63 6f 6e 66 69 67 75 72 65 20 74 68 69 73 20 63 6f 6d | .the.SPT.tree.configure.this.com |
| 10a620 | 6d 61 6e 64 2e 00 4f 6e 20 74 68 65 20 72 65 73 70 6f 6e 64 65 72 2c 20 77 65 20 6e 65 65 64 20 | mand..On.the.responder,.we.need. |
| 10a640 | 74 6f 20 73 65 74 20 74 68 65 20 6c 6f 63 61 6c 20 69 64 20 73 6f 20 74 68 61 74 20 69 6e 69 74 | to.set.the.local.id.so.that.init |
| 10a660 | 69 61 74 6f 72 20 63 61 6e 20 6b 6e 6f 77 20 77 68 6f 27 73 20 74 61 6c 6b 69 6e 67 20 74 6f 20 | iator.can.know.who's.talking.to. |
| 10a680 | 69 74 20 66 6f 72 20 74 68 65 20 70 6f 69 6e 74 20 23 33 20 74 6f 20 77 6f 72 6b 2e 00 4f 6e 63 | it.for.the.point.#3.to.work..Onc |
| 10a6a0 | 65 20 61 20 63 6c 61 73 73 20 68 61 73 20 61 20 66 69 6c 74 65 72 20 63 6f 6e 66 69 67 75 72 65 | e.a.class.has.a.filter.configure |
| 10a6c0 | 64 2c 20 79 6f 75 20 77 69 6c 6c 20 61 6c 73 6f 20 68 61 76 65 20 74 6f 20 64 65 66 69 6e 65 20 | d,.you.will.also.have.to.define. |
| 10a6e0 | 77 68 61 74 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 6f 20 77 69 74 68 20 74 68 65 20 74 72 61 | what.you.want.to.do.with.the.tra |
| 10a700 | 66 66 69 63 20 6f 66 20 74 68 61 74 20 63 6c 61 73 73 2c 20 77 68 61 74 20 73 70 65 63 69 66 69 | ffic.of.that.class,.what.specifi |
| 10a720 | 63 20 54 72 61 66 66 69 63 2d 43 6f 6e 74 72 6f 6c 20 74 72 65 61 74 6d 65 6e 74 20 79 6f 75 20 | c.Traffic-Control.treatment.you. |
| 10a740 | 77 61 6e 74 20 74 6f 20 67 69 76 65 20 69 74 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 64 | want.to.give.it..You.will.have.d |
| 10a760 | 69 66 66 65 72 65 6e 74 20 70 6f 73 73 69 62 69 6c 69 74 69 65 73 20 64 65 70 65 6e 64 69 6e 67 | ifferent.possibilities.depending |
| 10a780 | 20 6f 6e 20 74 68 65 20 54 72 61 66 66 69 63 20 50 6f 6c 69 63 79 20 79 6f 75 20 61 72 65 20 63 | .on.the.Traffic.Policy.you.are.c |
| 10a7a0 | 6f 6e 66 69 67 75 72 69 6e 67 2e 00 4f 6e 63 65 20 61 20 6e 65 69 67 68 62 6f 72 20 68 61 73 20 | onfiguring..Once.a.neighbor.has. |
| 10a7c0 | 62 65 65 6e 20 66 6f 75 6e 64 2c 20 74 68 65 20 65 6e 74 72 79 20 69 73 20 63 6f 6e 73 69 64 65 | been.found,.the.entry.is.conside |
| 10a7e0 | 72 65 64 20 74 6f 20 62 65 20 76 61 6c 69 64 20 66 6f 72 20 61 74 20 6c 65 61 73 74 20 66 6f 72 | red.to.be.valid.for.at.least.for |
| 10a800 | 20 74 68 69 73 20 73 70 65 63 69 66 69 63 20 74 69 6d 65 2e 20 41 6e 20 65 6e 74 72 79 27 73 20 | .this.specific.time..An.entry's. |
| 10a820 | 76 61 6c 69 64 69 74 79 20 77 69 6c 6c 20 62 65 20 65 78 74 65 6e 64 65 64 20 69 66 20 69 74 20 | validity.will.be.extended.if.it. |
| 10a840 | 72 65 63 65 69 76 65 73 20 70 6f 73 69 74 69 76 65 20 66 65 65 64 62 61 63 6b 20 66 72 6f 6d 20 | receives.positive.feedback.from. |
| 10a860 | 68 69 67 68 65 72 20 6c 65 76 65 6c 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 4f 6e 63 65 20 61 20 72 | higher.level.protocols..Once.a.r |
| 10a880 | 6f 75 74 65 20 69 73 20 61 73 73 65 73 73 65 64 20 61 20 70 65 6e 61 6c 74 79 2c 20 74 68 65 20 | oute.is.assessed.a.penalty,.the. |
| 10a8a0 | 70 65 6e 61 6c 74 79 20 69 73 20 64 65 63 72 65 61 73 65 64 20 62 79 20 68 61 6c 66 20 65 61 63 | penalty.is.decreased.by.half.eac |
| 10a8c0 | 68 20 74 69 6d 65 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 | h.time.a.predefined.amount.of.ti |
| 10a8e0 | 6d 65 20 65 6c 61 70 73 65 73 20 28 68 61 6c 66 2d 6c 69 66 65 2d 74 69 6d 65 29 2e 20 57 68 65 | me.elapses.(half-life-time)..Whe |
| 10a900 | 6e 20 74 68 65 20 61 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 69 65 73 20 66 61 6c 6c | n.the.accumulated.penalties.fall |
| 10a920 | 20 62 65 6c 6f 77 20 61 20 70 72 65 64 65 66 69 6e 65 64 20 74 68 72 65 73 68 6f 6c 64 20 28 72 | .below.a.predefined.threshold.(r |
| 10a940 | 65 75 73 65 2d 76 61 6c 75 65 29 2c 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 75 6e 73 75 70 70 | euse-value),.the.route.is.unsupp |
| 10a960 | 72 65 73 73 65 64 20 61 6e 64 20 61 64 64 65 64 20 62 61 63 6b 20 69 6e 74 6f 20 74 68 65 20 42 | ressed.and.added.back.into.the.B |
| 10a980 | 47 50 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 4f 6e 63 65 20 61 20 74 72 61 66 66 69 63 | GP.routing.table..Once.a.traffic |
| 10a9a0 | 2d 70 6f 6c 69 63 79 20 69 73 20 63 72 65 61 74 65 64 2c 20 79 6f 75 20 63 61 6e 20 61 70 70 6c | -policy.is.created,.you.can.appl |
| 10a9c0 | 79 20 69 74 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 3a 00 4f 6e 63 65 20 61 20 75 73 65 | y.it.to.an.interface:.Once.a.use |
| 10a9e0 | 72 20 68 61 73 20 32 46 41 2f 4f 54 50 20 63 6f 6e 66 69 67 75 72 65 64 20 61 67 61 69 6e 73 74 | r.has.2FA/OTP.configured.against |
| 10aa00 | 20 74 68 65 69 72 20 61 63 63 6f 75 6e 74 2c 20 74 68 65 79 20 6d 75 73 74 20 6c 6f 67 69 6e 20 | .their.account,.they.must.login. |
| 10aa20 | 75 73 69 6e 67 20 74 68 65 69 72 20 70 61 73 73 77 6f 72 64 20 77 69 74 68 20 74 68 65 20 4f 54 | using.their.password.with.the.OT |
| 10aa40 | 50 20 63 6f 64 65 20 61 70 70 65 6e 64 65 64 20 74 6f 20 69 74 2e 20 46 6f 72 20 65 78 61 6d 70 | P.code.appended.to.it..For.examp |
| 10aa60 | 6c 65 3a 20 49 66 20 74 68 65 20 75 73 65 72 73 20 70 61 73 73 77 6f 72 64 20 69 73 20 76 79 6f | le:.If.the.users.password.is.vyo |
| 10aa80 | 73 72 6f 63 6b 73 20 61 6e 64 20 74 68 65 20 4f 54 50 20 63 6f 64 65 20 69 73 20 38 31 37 34 35 | srocks.and.the.OTP.code.is.81745 |
| 10aaa0 | 34 20 74 68 65 6e 20 74 68 65 79 20 77 6f 75 6c 64 20 65 6e 74 65 72 20 74 68 65 69 72 20 70 61 | 4.then.they.would.enter.their.pa |
| 10aac0 | 73 73 77 6f 72 64 20 61 73 20 76 79 6f 73 72 6f 63 6b 73 38 31 37 34 35 34 00 4f 6e 63 65 20 63 | ssword.as.vyosrocks817454.Once.c |
| 10aae0 | 72 65 61 74 65 64 20 69 6e 20 74 68 65 20 73 79 73 74 65 6d 2c 20 50 73 65 75 64 6f 2d 45 74 68 | reated.in.the.system,.Pseudo-Eth |
| 10ab00 | 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 72 65 66 65 72 65 6e 63 | ernet.interfaces.can.be.referenc |
| 10ab20 | 65 64 20 69 6e 20 74 68 65 20 65 78 61 63 74 20 73 61 6d 65 20 77 61 79 20 61 73 20 6f 74 68 65 | ed.in.the.exact.same.way.as.othe |
| 10ab40 | 72 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2e 20 4e 6f 74 65 73 20 61 62 6f | r.Ethernet.interfaces..Notes.abo |
| 10ab60 | 75 74 20 75 73 69 6e 67 20 50 73 65 75 64 6f 2d 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 | ut.using.Pseudo-.Ethernet.interf |
| 10ab80 | 61 63 65 73 3a 00 4f 6e 63 65 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 | aces:.Once.dynamic.firewall.grou |
| 10aba0 | 70 73 20 61 72 65 20 64 65 66 69 6e 65 64 2c 20 74 68 65 79 20 73 68 6f 75 6c 64 20 62 65 20 75 | ps.are.defined,.they.should.be.u |
| 10abc0 | 73 65 64 20 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 69 6e 20 6f 72 64 65 72 20 74 | sed.in.firewall.rules.in.order.t |
| 10abe0 | 6f 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 61 64 64 20 65 6c 65 6d 65 6e 74 73 20 74 6f 20 69 74 | o.dynamically.add.elements.to.it |
| 10ac00 | 2e 00 4f 6e 63 65 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 73 20 63 6f 6e 66 69 67 | ..Once.flow.accounting.is.config |
| 10ac20 | 75 72 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 73 20 69 74 20 70 72 6f 76 69 64 65 | ured.on.an.interfaces.it.provide |
| 10ac40 | 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 64 69 73 70 6c 61 79 20 63 61 70 74 75 72 65 | s.the.ability.to.display.capture |
| 10ac60 | 64 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f | d.network.traffic.information.fo |
| 10ac80 | 72 20 61 6c 6c 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 00 4f 6e 63 | r.all.configured.interfaces..Onc |
| 10aca0 | 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 69 73 20 63 6f 6d 70 6c 65 74 65 64 2c 20 69 74 20 77 | e.the.command.is.completed,.it.w |
| 10acc0 | 69 6c 6c 20 61 64 64 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 63 | ill.add.the.certificate.to.the.c |
| 10ace0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 65 73 73 69 6f 6e 2c 20 74 6f 20 74 68 65 20 70 6b 69 | onfiguration.session,.to.the.pki |
| 10ad00 | 20 73 75 62 74 72 65 65 2e 20 59 6f 75 20 63 61 6e 20 74 68 65 6e 20 72 65 76 69 65 77 20 74 68 | .subtree..You.can.then.review.th |
| 10ad20 | 65 20 70 72 6f 70 6f 73 65 64 20 63 68 61 6e 67 65 73 20 61 6e 64 20 63 6f 6d 6d 69 74 20 74 68 | e.proposed.changes.and.commit.th |
| 10ad40 | 65 6d 2e 00 4f 6e 63 65 20 74 68 65 20 66 69 72 73 74 20 70 61 63 6b 65 74 20 6f 66 20 74 68 65 | em..Once.the.first.packet.of.the |
| 10ad60 | 20 66 6c 6f 77 20 73 75 63 63 65 73 73 66 75 6c 6c 79 20 67 6f 65 73 20 74 68 72 6f 75 67 68 20 | .flow.successfully.goes.through. |
| 10ad80 | 74 68 65 20 49 50 20 66 6f 72 77 61 72 64 69 6e 67 20 70 61 74 68 20 28 62 6c 61 63 6b 20 63 69 | the.IP.forwarding.path.(black.ci |
| 10ada0 | 72 63 6c 65 73 20 70 61 74 68 29 2c 20 66 72 6f 6d 20 74 68 65 20 73 65 63 6f 6e 64 20 70 61 63 | rcles.path),.from.the.second.pac |
| 10adc0 | 6b 65 74 20 6f 6e 2c 20 79 6f 75 20 6d 69 67 68 74 20 64 65 63 69 64 65 20 74 6f 20 6f 66 66 6c | ket.on,.you.might.decide.to.offl |
| 10ade0 | 6f 61 64 20 74 68 65 20 66 6c 6f 77 20 74 6f 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 20 74 68 | oad.the.flow.to.the.flowtable.th |
| 10ae00 | 72 6f 75 67 68 20 79 6f 75 72 20 72 75 6c 65 73 65 74 2e 20 54 68 65 20 66 6c 6f 77 74 61 62 6c | rough.your.ruleset..The.flowtabl |
| 10ae20 | 65 20 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 20 70 72 6f 76 69 64 65 73 20 61 20 72 75 6c 65 | e.infrastructure.provides.a.rule |
| 10ae40 | 20 61 63 74 69 6f 6e 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 73 70 65 63 69 | .action.that.allows.you.to.speci |
| 10ae60 | 66 79 20 77 68 65 6e 20 74 6f 20 61 64 64 20 61 20 66 6c 6f 77 20 74 6f 20 74 68 65 20 66 6c 6f | fy.when.to.add.a.flow.to.the.flo |
| 10ae80 | 77 74 61 62 6c 65 20 28 4f 6e 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 69 6e 67 2c 20 72 65 | wtable.(On.forward.filtering,.re |
| 10aea0 | 64 20 63 69 72 63 6c 65 20 6e 75 6d 62 65 72 20 36 29 00 4f 6e 63 65 20 74 68 65 20 6c 6f 63 61 | d.circle.number.6).Once.the.loca |
| 10aec0 | 6c 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 20 60 60 73 65 74 20 73 65 72 76 69 63 65 20 | l.tunnel.endpoint.``set.service. |
| 10aee0 | 70 70 70 6f 65 2d 73 65 72 76 65 72 20 67 61 74 65 77 61 79 2d 61 64 64 72 65 73 73 20 27 31 30 | pppoe-server.gateway-address.'10 |
| 10af00 | 2e 31 2e 31 2e 32 27 60 60 20 68 61 73 20 62 65 65 6e 20 64 65 66 69 6e 65 64 2c 20 74 68 65 20 | .1.1.2'``.has.been.defined,.the. |
| 10af20 | 63 6c 69 65 6e 74 20 49 50 20 70 6f 6f 6c 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 64 65 66 | client.IP.pool.can.be.either.def |
| 10af40 | 69 6e 65 64 20 61 73 20 61 20 72 61 6e 67 65 20 6f 72 20 61 73 20 73 75 62 6e 65 74 20 75 73 69 | ined.as.a.range.or.as.subnet.usi |
| 10af60 | 6e 67 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2e 20 49 66 20 74 68 65 20 43 49 44 52 20 6e 6f | ng.CIDR.notation..If.the.CIDR.no |
| 10af80 | 74 61 74 69 6f 6e 20 69 73 20 75 73 65 64 2c 20 6d 75 6c 74 69 70 6c 65 20 73 75 62 6e 65 74 73 | tation.is.used,.multiple.subnets |
| 10afa0 | 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 68 69 63 68 20 61 72 65 20 75 73 65 64 20 73 65 71 | .can.be.setup.which.are.used.seq |
| 10afc0 | 75 65 6e 74 69 61 6c 6c 79 2e 00 4f 6e 63 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 72 75 6c | uentially..Once.the.matching.rul |
| 10afe0 | 65 73 20 61 72 65 20 73 65 74 20 66 6f 72 20 61 20 63 6c 61 73 73 2c 20 79 6f 75 20 63 61 6e 20 | es.are.set.for.a.class,.you.can. |
| 10b000 | 73 74 61 72 74 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 68 6f 77 20 79 6f 75 20 77 61 6e 74 20 6d | start.configuring.how.you.want.m |
| 10b020 | 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 62 65 68 61 76 65 2e 00 4f 6e 63 65 20 | atching.traffic.to.behave..Once. |
| 10b040 | 74 68 65 20 75 73 65 72 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 2c 20 74 68 65 20 75 73 65 72 20 | the.user.is.connected,.the.user. |
| 10b060 | 73 65 73 73 69 6f 6e 20 69 73 20 75 73 69 6e 67 20 74 68 65 20 73 65 74 20 6c 69 6d 69 74 73 20 | session.is.using.the.set.limits. |
| 10b080 | 61 6e 64 20 63 61 6e 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 76 69 61 20 27 73 68 6f 77 20 70 | and.can.be.displayed.via.'show.p |
| 10b0a0 | 70 70 6f 65 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 27 2e 00 4f 6e 63 65 20 74 68 65 20 | ppoe-server.sessions'..Once.the. |
| 10b0c0 | 75 73 65 72 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 2c 20 74 68 65 20 75 73 65 72 20 73 65 73 73 | user.is.connected,.the.user.sess |
| 10b0e0 | 69 6f 6e 20 69 73 20 75 73 69 6e 67 20 74 68 65 20 73 65 74 20 6c 69 6d 69 74 73 20 61 6e 64 20 | ion.is.using.the.set.limits.and. |
| 10b100 | 63 61 6e 20 62 65 20 64 69 73 70 6c 61 79 65 64 20 76 69 61 20 60 60 73 68 6f 77 20 70 70 70 6f | can.be.displayed.via.``show.pppo |
| 10b120 | 65 2d 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 60 60 2e 00 4f 6e 63 65 20 79 6f 75 20 63 6f | e-server.sessions``..Once.you.co |
| 10b140 | 6d 6d 69 74 20 74 68 65 20 61 62 6f 76 65 20 63 68 61 6e 67 65 73 20 79 6f 75 20 63 61 6e 20 63 | mmit.the.above.changes.you.can.c |
| 10b160 | 72 65 61 74 65 20 61 20 63 6f 6e 66 69 67 20 66 69 6c 65 20 69 6e 20 74 68 65 20 2f 63 6f 6e 66 | reate.a.config.file.in.the./conf |
| 10b180 | 69 67 2f 61 75 74 68 2f 6f 63 73 65 72 76 2f 63 6f 6e 66 69 67 2d 70 65 72 2d 75 73 65 72 20 64 | ig/auth/ocserv/config-per-user.d |
| 10b1a0 | 69 72 65 63 74 6f 72 79 20 74 68 61 74 20 6d 61 74 63 68 65 73 20 61 20 75 73 65 72 6e 61 6d 65 | irectory.that.matches.a.username |
| 10b1c0 | 20 6f 66 20 61 20 75 73 65 72 20 79 6f 75 20 68 61 76 65 20 63 72 65 61 74 65 64 20 65 2e 67 2e | .of.a.user.you.have.created.e.g. |
| 10b1e0 | 20 22 74 73 74 22 2e 20 4e 6f 77 20 77 68 65 6e 20 6c 6f 67 67 69 6e 67 20 69 6e 20 77 69 74 68 | ."tst"..Now.when.logging.in.with |
| 10b200 | 20 74 68 65 20 22 74 73 74 22 20 75 73 65 72 20 74 68 65 20 63 6f 6e 66 69 67 20 6f 70 74 69 6f | .the."tst".user.the.config.optio |
| 10b220 | 6e 73 20 79 6f 75 20 73 65 74 20 69 6e 20 74 68 69 73 20 66 69 6c 65 20 77 69 6c 6c 20 62 65 20 | ns.you.set.in.this.file.will.be. |
| 10b240 | 6c 6f 61 64 65 64 2e 00 4f 6e 63 65 20 79 6f 75 20 68 61 76 65 20 61 6e 20 45 74 68 65 72 6e 65 | loaded..Once.you.have.an.Etherne |
| 10b260 | 74 20 64 65 76 69 63 65 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 2e 65 2e 20 60 65 74 68 30 60 2c | t.device.connected,.i.e..`eth0`, |
| 10b280 | 20 74 68 65 6e 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 69 74 20 74 6f 20 6f 70 | .then.you.can.configure.it.to.op |
| 10b2a0 | 65 6e 20 74 68 65 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 66 6f 72 20 79 6f 75 20 61 6e 64 | en.the.PPPoE.session.for.you.and |
| 10b2c0 | 20 79 6f 75 72 20 44 53 4c 20 54 72 61 6e 73 63 65 69 76 65 72 20 28 4d 6f 64 65 6d 2f 52 6f 75 | .your.DSL.Transceiver.(Modem/Rou |
| 10b2e0 | 74 65 72 29 20 6a 75 73 74 20 61 63 74 73 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 79 6f 75 72 | ter).just.acts.to.translate.your |
| 10b300 | 20 6d 65 73 73 61 67 65 73 20 69 6e 20 61 20 77 61 79 20 74 68 61 74 20 76 44 53 4c 2f 61 44 53 | .messages.in.a.way.that.vDSL/aDS |
| 10b320 | 4c 20 75 6e 64 65 72 73 74 61 6e 64 73 2e 00 4f 6e 63 65 20 79 6f 75 20 68 61 76 65 20 73 65 74 | L.understands..Once.you.have.set |
| 10b340 | 75 70 20 79 6f 75 72 20 53 53 54 50 20 73 65 72 76 65 72 20 74 68 65 72 65 20 63 6f 6d 65 73 20 | up.your.SSTP.server.there.comes. |
| 10b360 | 74 68 65 20 74 69 6d 65 20 74 6f 20 64 6f 20 73 6f 6d 65 20 62 61 73 69 63 20 74 65 73 74 69 6e | the.time.to.do.some.basic.testin |
| 10b380 | 67 2e 20 54 68 65 20 4c 69 6e 75 78 20 63 6c 69 65 6e 74 20 75 73 65 64 20 66 6f 72 20 74 65 73 | g..The.Linux.client.used.for.tes |
| 10b3a0 | 74 69 6e 67 20 69 73 20 63 61 6c 6c 65 64 20 73 73 74 70 63 5f 2e 20 73 73 74 70 63 5f 20 72 65 | ting.is.called.sstpc_..sstpc_.re |
| 10b3c0 | 71 75 69 72 65 73 20 61 20 50 50 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 70 65 65 72 20 | quires.a.PPP.configuration/peer. |
| 10b3e0 | 66 69 6c 65 2e 00 4f 6e 63 65 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 61 72 65 20 63 6f 6e 66 | file..Once.your.routers.are.conf |
| 10b400 | 69 67 75 72 65 64 20 74 6f 20 72 65 6a 65 63 74 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 20 70 72 | igured.to.reject.RPKI-invalid.pr |
| 10b420 | 65 66 69 78 65 73 2c 20 79 6f 75 20 63 61 6e 20 74 65 73 74 20 77 68 65 74 68 65 72 20 74 68 65 | efixes,.you.can.test.whether.the |
| 10b440 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 77 6f 72 6b 69 6e 67 20 63 6f 72 72 65 63 | .configuration.is.working.correc |
| 10b460 | 74 6c 79 20 75 73 69 6e 67 20 43 6c 6f 75 64 66 6c 61 72 65 27 73 20 74 65 73 74 5f 20 77 65 62 | tly.using.Cloudflare's.test_.web |
| 10b480 | 73 69 74 65 2e 20 4b 65 65 70 20 69 6e 20 6d 69 6e 64 20 74 68 61 74 20 69 6e 20 6f 72 64 65 72 | site..Keep.in.mind.that.in.order |
| 10b4a0 | 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 68 | .for.this.to.work,.you.need.to.h |
| 10b4c0 | 61 76 65 20 6e 6f 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 73 20 6f 72 20 61 6e 79 74 68 69 6e | ave.no.default.routes.or.anythin |
| 10b4e0 | 67 20 65 6c 73 65 20 74 68 61 74 20 77 6f 75 6c 64 20 73 74 69 6c 6c 20 73 65 6e 64 20 74 72 61 | g.else.that.would.still.send.tra |
| 10b500 | 66 66 69 63 20 74 6f 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 20 64 65 73 74 69 6e 61 74 69 6f 6e | ffic.to.RPKI-invalid.destination |
| 10b520 | 73 2e 00 4f 6e 63 65 20 79 6f 75 72 20 72 6f 75 74 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 | s..Once.your.routers.are.configu |
| 10b540 | 72 65 64 20 74 6f 20 72 65 6a 65 63 74 20 52 50 4b 49 2d 69 6e 76 61 6c 69 64 20 70 72 65 66 69 | red.to.reject.RPKI-invalid.prefi |
| 10b560 | 78 65 73 2c 20 79 6f 75 20 63 61 6e 20 74 65 73 74 20 77 68 65 74 68 65 72 20 74 68 65 20 63 6f | xes,.you.can.test.whether.the.co |
| 10b580 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 77 6f 72 6b 69 6e 67 20 63 6f 72 72 65 63 74 6c 79 | nfiguration.is.working.correctly |
| 10b5a0 | 20 75 73 69 6e 67 20 74 68 65 20 60 52 49 50 45 20 4c 61 62 73 20 52 50 4b 49 20 54 65 73 74 60 | .using.the.`RIPE.Labs.RPKI.Test` |
| 10b5c0 | 5f 20 65 78 70 65 72 69 6d 65 6e 74 61 6c 20 74 6f 6f 6c 2e 00 4f 6e 65 20 54 79 70 65 2d 33 20 | _.experimental.tool..One.Type-3. |
| 10b5e0 | 73 75 6d 6d 61 72 79 2d 4c 53 41 20 77 69 74 68 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 20 3c 45 | summary-LSA.with.routing.info.<E |
| 10b600 | 2e 46 2e 47 2e 48 2f 4d 3e 20 69 73 20 61 6e 6e 6f 75 6e 63 65 64 20 69 6e 74 6f 20 62 61 63 6b | .F.G.H/M>.is.announced.into.back |
| 10b620 | 62 6f 6e 65 20 61 72 65 61 20 69 66 20 64 65 66 69 6e 65 64 20 61 72 65 61 20 63 6f 6e 74 61 69 | bone.area.if.defined.area.contai |
| 10b640 | 6e 73 20 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 69 6e 74 72 61 2d 61 72 65 61 20 6e 65 74 77 6f | ns.at.least.one.intra-area.netwo |
| 10b660 | 72 6b 20 28 69 2e 65 2e 20 64 65 73 63 72 69 62 65 64 20 77 69 74 68 20 72 6f 75 74 65 72 2d 4c | rk.(i.e..described.with.router-L |
| 10b680 | 53 41 20 6f 72 20 6e 65 74 77 6f 72 6b 2d 4c 53 41 29 20 66 72 6f 6d 20 72 61 6e 67 65 20 3c 41 | SA.or.network-LSA).from.range.<A |
| 10b6a0 | 2e 42 2e 43 2e 44 2f 4d 3e 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 | .B.C.D/M>..This.command.makes.se |
| 10b6c0 | 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 4f 6e 65 20 69 6d 70 6c 69 63 69 74 20 65 6e | nse.in.ABR.only..One.implicit.en |
| 10b6e0 | 76 69 72 6f 6e 6d 65 6e 74 20 65 78 69 73 74 73 2e 00 4f 6e 65 20 6f 66 20 74 68 65 20 69 6d 70 | vironment.exists..One.of.the.imp |
| 10b700 | 6f 72 74 61 6e 74 20 66 65 61 74 75 72 65 73 20 62 75 69 6c 74 20 6f 6e 20 74 6f 70 20 6f 66 20 | ortant.features.built.on.top.of. |
| 10b720 | 74 68 65 20 4e 65 74 66 69 6c 74 65 72 20 66 72 61 6d 65 77 6f 72 6b 20 69 73 20 63 6f 6e 6e 65 | the.Netfilter.framework.is.conne |
| 10b740 | 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 2e 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b | ction.tracking..Connection.track |
| 10b760 | 69 6e 67 20 61 6c 6c 6f 77 73 20 74 68 65 20 6b 65 72 6e 65 6c 20 74 6f 20 6b 65 65 70 20 74 72 | ing.allows.the.kernel.to.keep.tr |
| 10b780 | 61 63 6b 20 6f 66 20 61 6c 6c 20 6c 6f 67 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 6e 65 | ack.of.all.logical.network.conne |
| 10b7a0 | 63 74 69 6f 6e 73 20 6f 72 20 73 65 73 73 69 6f 6e 73 2c 20 61 6e 64 20 74 68 65 72 65 62 79 20 | ctions.or.sessions,.and.thereby. |
| 10b7c0 | 72 65 6c 61 74 65 20 61 6c 6c 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 73 20 77 68 69 63 68 20 | relate.all.of.the.packets.which. |
| 10b7e0 | 6d 61 79 20 6d 61 6b 65 20 75 70 20 74 68 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4e 41 54 | may.make.up.that.connection..NAT |
| 10b800 | 20 72 65 6c 69 65 73 20 6f 6e 20 74 68 69 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 74 | .relies.on.this.information.to.t |
| 10b820 | 72 61 6e 73 6c 61 74 65 20 61 6c 6c 20 72 65 6c 61 74 65 64 20 70 61 63 6b 65 74 73 20 69 6e 20 | ranslate.all.related.packets.in. |
| 10b840 | 74 68 65 20 73 61 6d 65 20 77 61 79 2c 20 61 6e 64 20 69 70 74 61 62 6c 65 73 20 63 61 6e 20 75 | the.same.way,.and.iptables.can.u |
| 10b860 | 73 65 20 74 68 69 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 61 63 74 20 61 73 20 61 20 | se.this.information.to.act.as.a. |
| 10b880 | 73 74 61 74 65 66 75 6c 20 66 69 72 65 77 61 6c 6c 2e 00 4f 6e 65 20 6f 66 20 74 68 65 20 75 73 | stateful.firewall..One.of.the.us |
| 10b8a0 | 65 73 20 6f 66 20 46 61 69 72 20 51 75 65 75 65 20 6d 69 67 68 74 20 62 65 20 74 68 65 20 6d 69 | es.of.Fair.Queue.might.be.the.mi |
| 10b8c0 | 74 69 67 61 74 69 6f 6e 20 6f 66 20 44 65 6e 69 61 6c 20 6f 66 20 53 65 72 76 69 63 65 20 61 74 | tigation.of.Denial.of.Service.at |
| 10b8e0 | 74 61 63 6b 73 2e 00 4f 6e 6c 79 20 38 30 32 2e 31 51 2d 74 61 67 67 65 64 20 70 61 63 6b 65 74 | tacks..Only.802.1Q-tagged.packet |
| 10b900 | 73 20 61 72 65 20 61 63 63 65 70 74 65 64 20 6f 6e 20 45 74 68 65 72 6e 65 74 20 76 69 66 73 2e | s.are.accepted.on.Ethernet.vifs. |
| 10b920 | 00 4f 6e 6c 79 20 56 52 52 50 20 69 73 20 73 75 70 70 6f 72 74 65 64 2e 20 52 65 71 75 69 72 65 | .Only.VRRP.is.supported..Require |
| 10b940 | 64 20 6f 70 74 69 6f 6e 2e 00 4f 6e 6c 79 20 61 6c 6c 6f 77 20 63 65 72 74 61 69 6e 20 49 50 20 | d.option..Only.allow.certain.IP. |
| 10b960 | 61 64 64 72 65 73 73 65 73 20 6f 72 20 70 72 65 66 69 78 65 73 20 74 6f 20 61 63 63 65 73 73 20 | addresses.or.prefixes.to.access. |
| 10b980 | 74 68 65 20 68 74 74 70 73 20 77 65 62 73 65 72 76 65 72 2e 00 4f 6e 6c 79 20 69 6e 20 74 68 65 | the.https.webserver..Only.in.the |
| 10b9a0 | 20 73 6f 75 72 63 65 20 63 72 69 74 65 72 69 61 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 | .source.criteria,.you.can.specif |
| 10b9c0 | 79 20 61 20 6d 61 63 2d 61 64 64 72 65 73 73 2e 00 4f 6e 6c 79 20 6f 6e 65 20 53 52 47 42 20 61 | y.a.mac-address..Only.one.SRGB.a |
| 10b9e0 | 6e 64 20 64 65 66 61 75 6c 74 20 53 50 46 20 41 6c 67 6f 72 69 74 68 6d 20 69 73 20 73 75 70 70 | nd.default.SPF.Algorithm.is.supp |
| 10ba00 | 6f 72 74 65 64 00 4f 6e 6c 79 20 72 65 71 75 65 73 74 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 | orted.Only.request.an.address.fr |
| 10ba20 | 6f 6d 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 62 75 74 20 64 6f 20 6e 6f 74 20 72 65 | om.the.DHCP.server.but.do.not.re |
| 10ba40 | 71 75 65 73 74 20 61 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 2e 00 4f 6e 6c 79 20 72 65 | quest.a.default.gateway..Only.re |
| 10ba60 | 71 75 65 73 74 20 61 6e 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 50 50 50 6f 45 20 | quest.an.address.from.the.PPPoE. |
| 10ba80 | 73 65 72 76 65 72 20 62 75 74 20 64 6f 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 6e 79 20 64 65 | server.but.do.not.install.any.de |
| 10baa0 | 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 4f 6e 6c 79 20 72 65 71 75 65 73 74 20 61 6e 20 61 64 64 | fault.route..Only.request.an.add |
| 10bac0 | 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 53 53 54 50 20 73 65 72 76 65 72 20 62 75 74 20 64 6f | ress.from.the.SSTP.server.but.do |
| 10bae0 | 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 6e 79 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 2e 00 | .not.install.any.default.route.. |
| 10bb00 | 4f 6e 6c 79 20 74 68 65 20 74 79 70 65 20 28 60 60 73 73 68 2d 72 73 61 60 60 29 20 61 6e 64 20 | Only.the.type.(``ssh-rsa``).and. |
| 10bb20 | 74 68 65 20 6b 65 79 20 28 60 60 41 41 41 42 33 4e 2e 2e 2e 60 60 29 20 61 72 65 20 75 73 65 64 | the.key.(``AAAB3N...``).are.used |
| 10bb40 | 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 6b 65 79 20 77 69 6c 6c 20 75 73 75 61 6c 6c 79 | ..Note.that.the.key.will.usually |
| 10bb60 | 20 62 65 20 73 65 76 65 72 61 6c 20 68 75 6e 64 72 65 64 20 63 68 61 72 61 63 74 65 72 73 20 6c | .be.several.hundred.characters.l |
| 10bb80 | 6f 6e 67 2c 20 61 6e 64 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 63 6f 70 79 20 61 | ong,.and.you.will.need.to.copy.a |
| 10bba0 | 6e 64 20 70 61 73 74 65 20 69 74 2e 20 53 6f 6d 65 20 74 65 72 6d 69 6e 61 6c 20 65 6d 75 6c 61 | nd.paste.it..Some.terminal.emula |
| 10bbc0 | 74 6f 72 73 20 6d 61 79 20 61 63 63 69 64 65 6e 74 61 6c 6c 79 20 73 70 6c 69 74 20 74 68 69 73 | tors.may.accidentally.split.this |
| 10bbe0 | 20 6f 76 65 72 20 73 65 76 65 72 61 6c 20 6c 69 6e 65 73 2e 20 42 65 20 61 74 74 65 6e 74 69 76 | .over.several.lines..Be.attentiv |
| 10bc00 | 65 20 77 68 65 6e 20 79 6f 75 20 70 61 73 74 65 20 69 74 20 74 68 61 74 20 69 74 20 6f 6e 6c 79 | e.when.you.paste.it.that.it.only |
| 10bc20 | 20 70 61 73 74 65 73 20 61 73 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 2e 20 54 68 65 20 74 68 | .pastes.as.a.single.line..The.th |
| 10bc40 | 69 72 64 20 70 61 72 74 20 69 73 20 73 69 6d 70 6c 79 20 61 6e 20 69 64 65 6e 74 69 66 69 65 72 | ird.part.is.simply.an.identifier |
| 10bc60 | 2c 20 61 6e 64 20 69 73 20 66 6f 72 20 79 6f 75 72 20 6f 77 6e 20 72 65 66 65 72 65 6e 63 65 2e | ,.and.is.for.your.own.reference. |
| 10bc80 | 00 4f 6e 6c 79 20 77 6f 72 6b 73 20 77 69 74 68 20 61 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 | .Only.works.with.a.VXLAN.device. |
| 10bca0 | 77 69 74 68 20 65 78 74 65 72 6e 61 6c 20 66 6c 61 67 20 73 65 74 2e 00 4f 70 2d 6d 6f 64 65 20 | with.external.flag.set..Op-mode. |
| 10bcc0 | 63 68 65 63 6b 20 76 69 72 74 75 61 6c 2d 73 65 72 76 65 72 20 73 74 61 74 75 73 00 4f 70 65 6e | check.virtual-server.status.Open |
| 10bce0 | 43 6f 6e 6e 65 63 74 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 | Connect.OpenConnect.can.be.confi |
| 10bd00 | 67 75 72 65 64 20 74 6f 20 73 65 6e 64 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 | gured.to.send.accounting.informa |
| 10bd20 | 74 69 6f 6e 20 74 6f 20 61 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 74 6f 20 63 61 70 74 75 | tion.to.a.RADIUS.server.to.captu |
| 10bd40 | 72 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 64 61 74 61 20 73 75 63 68 20 61 73 20 74 69 6d | re.user.session.data.such.as.tim |
| 10bd60 | 65 20 6f 66 20 63 6f 6e 6e 65 63 74 2f 64 69 73 63 6f 6e 6e 65 63 74 2c 20 64 61 74 61 20 74 72 | e.of.connect/disconnect,.data.tr |
| 10bd80 | 61 6e 73 66 65 72 72 65 64 2c 20 61 6e 64 20 73 6f 20 6f 6e 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 | ansferred,.and.so.on..OpenConnec |
| 10bda0 | 74 20 73 65 72 76 65 72 20 6d 61 74 63 68 65 73 20 74 68 65 20 66 69 6c 65 6e 61 6d 65 20 69 6e | t.server.matches.the.filename.in |
| 10bdc0 | 20 61 20 63 61 73 65 20 73 65 6e 73 69 74 69 76 65 20 6d 61 6e 6e 65 72 2c 20 6d 61 6b 65 20 73 | .a.case.sensitive.manner,.make.s |
| 10bde0 | 75 72 65 20 74 68 65 20 75 73 65 72 6e 61 6d 65 2f 67 72 6f 75 70 20 6e 61 6d 65 20 79 6f 75 20 | ure.the.username/group.name.you. |
| 10be00 | 63 6f 6e 66 69 67 75 72 65 20 6d 61 74 63 68 65 73 20 74 68 65 20 66 69 6c 65 6e 61 6d 65 20 65 | configure.matches.the.filename.e |
| 10be20 | 78 61 63 74 6c 79 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 73 75 70 70 6f 72 74 73 20 61 20 73 | xactly..OpenConnect.supports.a.s |
| 10be40 | 75 62 73 65 74 20 6f 66 20 69 74 27 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 | ubset.of.it's.configuration.opti |
| 10be60 | 6f 6e 73 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 6f 6e 20 61 20 70 65 72 20 75 73 65 72 2f | ons.to.be.applied.on.a.per.user/ |
| 10be80 | 67 72 6f 75 70 20 62 61 73 69 73 2c 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 | group.basis,.for.configuration.p |
| 10bea0 | 75 72 70 6f 73 65 73 20 77 65 20 72 65 66 65 72 20 74 6f 20 74 68 69 73 20 66 75 6e 63 74 69 6f | urposes.we.refer.to.this.functio |
| 10bec0 | 6e 61 6c 69 74 79 20 61 73 20 22 49 64 65 6e 74 69 74 79 20 62 61 73 65 64 20 63 6f 6e 66 69 67 | nality.as."Identity.based.config |
| 10bee0 | 22 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 60 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 53 65 | "..The.following.`OpenConnect.Se |
| 10bf00 | 72 76 65 72 20 4d 61 6e 75 61 6c 20 3c 68 74 74 70 73 3a 2f 2f 6f 63 73 65 72 76 2e 67 69 74 6c | rver.Manual.<https://ocserv.gitl |
| 10bf20 | 61 62 2e 69 6f 2f 77 77 77 2f 6d 61 6e 75 61 6c 2e 68 74 6d 6c 23 3a 7e 3a 74 65 78 74 3d 43 6f | ab.io/www/manual.html#:~:text=Co |
| 10bf40 | 6e 66 69 67 75 72 61 74 69 6f 6e 25 32 30 66 69 6c 65 73 25 32 30 74 68 61 74 25 20 32 30 77 69 | nfiguration%20files%20that%.20wi |
| 10bf60 | 6c 6c 25 32 30 62 65 25 32 30 61 70 70 6c 69 65 64 25 32 30 70 65 72 25 32 30 75 73 65 72 25 32 | ll%20be%20applied%20per%20user%2 |
| 10bf80 | 30 63 6f 6e 6e 65 63 74 69 6f 6e 25 32 30 6f 72 25 30 41 25 32 33 25 32 30 70 65 72 25 32 30 67 | 0connection%20or%0A%23%20per%20g |
| 10bfa0 | 72 6f 75 70 3e 60 5f 20 6f 75 74 6c 69 6e 65 73 20 74 68 65 20 73 65 74 20 6f 66 20 63 6f 6e 66 | roup>`_.outlines.the.set.of.conf |
| 10bfc0 | 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 61 6c 6c 6f 77 | iguration.options.that.are.allow |
| 10bfe0 | 65 64 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 6c 65 76 65 72 61 67 65 64 20 74 6f 20 61 70 70 | ed..This.can.be.leveraged.to.app |
| 10c000 | 6c 79 20 64 69 66 66 65 72 65 6e 74 20 73 65 74 73 20 6f 66 20 63 6f 6e 66 69 67 73 20 74 6f 20 | ly.different.sets.of.configs.to. |
| 10c020 | 64 69 66 66 65 72 65 6e 74 20 75 73 65 72 73 20 6f 72 20 67 72 6f 75 70 73 20 6f 66 20 75 73 65 | different.users.or.groups.of.use |
| 10c040 | 72 73 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 74 2d 63 6f 6d 70 61 74 69 62 6c 65 20 73 65 72 76 65 | rs..OpenConnect-compatible.serve |
| 10c060 | 72 20 66 65 61 74 75 72 65 20 68 61 73 20 62 65 65 6e 20 61 76 61 69 6c 61 62 6c 65 20 73 69 6e | r.feature.has.been.available.sin |
| 10c080 | 63 65 20 45 71 75 75 6c 65 75 73 20 28 31 2e 33 29 2e 20 4f 70 65 6e 63 6f 6e 6e 65 63 74 20 56 | ce.Equuleus.(1.3)..Openconnect.V |
| 10c0a0 | 50 4e 20 73 75 70 70 6f 72 74 73 20 53 53 4c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 6e 64 20 6f | PN.supports.SSL.connection.and.o |
| 10c0c0 | 66 66 65 72 73 20 66 75 6c 6c 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 73 73 2e 20 53 53 4c 20 56 | ffers.full.network.access..SSL.V |
| 10c0e0 | 50 4e 20 6e 65 74 77 6f 72 6b 20 65 78 74 65 6e 73 69 6f 6e 20 63 6f 6e 6e 65 63 74 73 20 74 68 | PN.network.extension.connects.th |
| 10c100 | 65 20 65 6e 64 2d 75 73 65 72 20 73 79 73 74 65 6d 20 74 6f 20 74 68 65 20 63 6f 72 70 6f 72 61 | e.end-user.system.to.the.corpora |
| 10c120 | 74 65 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 73 20 | te.network.with.access.controls. |
| 10c140 | 62 61 73 65 64 20 6f 6e 6c 79 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 6c 61 79 65 72 20 69 6e 66 6f | based.only.on.network.layer.info |
| 10c160 | 72 6d 61 74 69 6f 6e 2c 20 73 75 63 68 20 61 73 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 | rmation,.such.as.destination.IP. |
| 10c180 | 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 6e 75 6d 62 65 72 2e 20 53 6f 2c 20 69 74 20 | address.and.port.number..So,.it. |
| 10c1a0 | 70 72 6f 76 69 64 65 73 20 73 61 66 65 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 20 66 6f 72 20 | provides.safe.communication.for. |
| 10c1c0 | 61 6c 6c 20 74 79 70 65 73 20 6f 66 20 64 65 76 69 63 65 20 74 72 61 66 66 69 63 20 61 63 72 6f | all.types.of.device.traffic.acro |
| 10c1e0 | 73 73 20 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 70 72 69 76 61 74 65 20 6e | ss.public.networks.and.private.n |
| 10c200 | 65 74 77 6f 72 6b 73 2c 20 61 6c 73 6f 20 65 6e 63 72 79 70 74 73 20 74 68 65 20 74 72 61 66 66 | etworks,.also.encrypts.the.traff |
| 10c220 | 69 63 20 77 69 74 68 20 53 53 4c 20 70 72 6f 74 6f 63 6f 6c 2e 00 4f 70 65 6e 43 6f 6e 6e 65 63 | ic.with.SSL.protocol..OpenConnec |
| 10c240 | 74 2d 63 6f 6d 70 61 74 69 62 6c 65 20 73 65 72 76 65 72 20 66 65 61 74 75 72 65 20 69 73 20 61 | t-compatible.server.feature.is.a |
| 10c260 | 76 61 69 6c 61 62 6c 65 20 66 72 6f 6d 20 74 68 69 73 20 72 65 6c 65 61 73 65 2e 20 4f 70 65 6e | vailable.from.this.release..Open |
| 10c280 | 63 6f 6e 6e 65 63 74 20 56 50 4e 20 73 75 70 70 6f 72 74 73 20 53 53 4c 20 63 6f 6e 6e 65 63 74 | connect.VPN.supports.SSL.connect |
| 10c2a0 | 69 6f 6e 20 61 6e 64 20 6f 66 66 65 72 73 20 66 75 6c 6c 20 6e 65 74 77 6f 72 6b 20 61 63 63 65 | ion.and.offers.full.network.acce |
| 10c2c0 | 73 73 2e 20 53 53 4c 20 56 50 4e 20 6e 65 74 77 6f 72 6b 20 65 78 74 65 6e 73 69 6f 6e 20 63 6f | ss..SSL.VPN.network.extension.co |
| 10c2e0 | 6e 6e 65 63 74 73 20 74 68 65 20 65 6e 64 2d 75 73 65 72 20 73 79 73 74 65 6d 20 74 6f 20 74 68 | nnects.the.end-user.system.to.th |
| 10c300 | 65 20 63 6f 72 70 6f 72 61 74 65 20 6e 65 74 77 6f 72 6b 20 77 69 74 68 20 61 63 63 65 73 73 20 | e.corporate.network.with.access. |
| 10c320 | 63 6f 6e 74 72 6f 6c 73 20 62 61 73 65 64 20 6f 6e 6c 79 20 6f 6e 20 6e 65 74 77 6f 72 6b 20 6c | controls.based.only.on.network.l |
| 10c340 | 61 79 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 73 75 63 68 20 61 73 20 64 65 73 74 69 6e | ayer.information,.such.as.destin |
| 10c360 | 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 6e 75 6d 62 65 72 | ation.IP.address.and.port.number |
| 10c380 | 2e 20 53 6f 2c 20 69 74 20 70 72 6f 76 69 64 65 73 20 73 61 66 65 20 63 6f 6d 6d 75 6e 69 63 61 | ..So,.it.provides.safe.communica |
| 10c3a0 | 74 69 6f 6e 20 66 6f 72 20 61 6c 6c 20 74 79 70 65 73 20 6f 66 20 64 65 76 69 63 65 20 74 72 61 | tion.for.all.types.of.device.tra |
| 10c3c0 | 66 66 69 63 20 61 63 72 6f 73 73 20 70 75 62 6c 69 63 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 | ffic.across.public.networks.and. |
| 10c3e0 | 70 72 69 76 61 74 65 20 6e 65 74 77 6f 72 6b 73 2c 20 61 6c 73 6f 20 65 6e 63 72 79 70 74 73 20 | private.networks,.also.encrypts. |
| 10c400 | 74 68 65 20 74 72 61 66 66 69 63 20 77 69 74 68 20 53 53 4c 20 70 72 6f 74 6f 63 6f 6c 2e 00 4f | the.traffic.with.SSL.protocol..O |
| 10c420 | 70 65 6e 46 61 62 72 69 63 00 4f 70 65 6e 46 61 62 72 69 63 20 47 6c 6f 62 61 6c 20 43 6f 6e 66 | penFabric.OpenFabric.Global.Conf |
| 10c440 | 69 67 75 72 61 74 69 6f 6e 00 4f 70 65 6e 46 61 62 72 69 63 20 61 20 64 75 61 6c 20 73 74 61 63 | iguration.OpenFabric.a.dual.stac |
| 10c460 | 6b 20 70 72 6f 74 6f 63 6f 6c 2e 20 41 20 73 69 6e 67 6c 65 20 4f 70 65 6e 46 61 62 72 69 63 20 | k.protocol..A.single.OpenFabric. |
| 10c480 | 69 6e 73 74 61 6e 63 65 20 69 73 20 61 62 6c 65 20 74 6f 20 70 65 72 66 6f 72 6d 20 72 6f 75 74 | instance.is.able.to.perform.rout |
| 10c4a0 | 69 6e 67 20 66 6f 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 4f 70 65 6e | ing.for.both.IPv4.and.IPv6..Open |
| 10c4c0 | 46 61 62 72 69 63 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 60 64 72 61 66 74 2d 77 68 69 74 | Fabric,.specified.in.`draft-whit |
| 10c4e0 | 65 2d 6f 70 65 6e 66 61 62 72 69 63 2d 30 36 2e 74 78 74 20 3c 68 74 74 70 73 3a 2f 2f 64 61 74 | e-openfabric-06.txt.<https://dat |
| 10c500 | 61 74 72 61 63 6b 65 72 2e 69 65 74 66 2e 6f 72 67 2f 64 6f 63 2f 68 74 6d 6c 2f 64 72 61 66 74 | atracker.ietf.org/doc/html/draft |
| 10c520 | 2d 77 68 69 74 65 2d 6f 70 65 6e 66 61 62 72 69 63 2d 30 36 3e 60 5f 2c 20 69 73 20 61 20 72 6f | -white-openfabric-06>`_,.is.a.ro |
| 10c540 | 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 64 65 72 69 76 65 64 20 66 72 6f 6d 20 49 53 2d 49 | uting.protocol.derived.from.IS-I |
| 10c560 | 53 2c 20 70 72 6f 76 69 64 69 6e 67 20 6c 69 6e 6b 2d 73 74 61 74 65 20 72 6f 75 74 69 6e 67 20 | S,.providing.link-state.routing. |
| 10c580 | 77 69 74 68 20 65 66 66 69 63 69 65 6e 74 20 66 6c 6f 6f 64 69 6e 67 20 66 6f 72 20 74 6f 70 6f | with.efficient.flooding.for.topo |
| 10c5a0 | 6c 6f 67 69 65 73 20 6c 69 6b 65 20 73 70 69 6e 65 2d 6c 65 61 66 20 6e 65 74 77 6f 72 6b 73 2e | logies.like.spine-leaf.networks. |
| 10c5c0 | 00 4f 70 65 6e 56 50 4e 00 4f 70 65 6e 56 50 4e 20 2a 2a 77 69 6c 6c 20 6e 6f 74 2a 2a 20 61 75 | .OpenVPN.OpenVPN.**will.not**.au |
| 10c5e0 | 74 6f 6d 61 74 69 63 61 6c 6c 79 20 63 72 65 61 74 65 20 72 6f 75 74 65 73 20 69 6e 20 74 68 65 | tomatically.create.routes.in.the |
| 10c600 | 20 6b 65 72 6e 65 6c 20 66 6f 72 20 63 6c 69 65 6e 74 20 73 75 62 6e 65 74 73 20 77 68 65 6e 20 | .kernel.for.client.subnets.when. |
| 10c620 | 74 68 65 79 20 63 6f 6e 6e 65 63 74 20 61 6e 64 20 77 69 6c 6c 20 6f 6e 6c 79 20 75 73 65 20 63 | they.connect.and.will.only.use.c |
| 10c640 | 6c 69 65 6e 74 2d 73 75 62 6e 65 74 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 69 6e 74 65 72 6e 61 | lient-subnet.association.interna |
| 10c660 | 6c 6c 79 2c 20 73 6f 20 77 65 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 6f 75 74 | lly,.so.we.need.to.create.a.rout |
| 10c680 | 65 20 74 6f 20 74 68 65 20 31 30 2e 32 33 2e 30 2e 30 2f 32 30 20 6e 65 74 77 6f 72 6b 20 6f 75 | e.to.the.10.23.0.0/20.network.ou |
| 10c6a0 | 72 73 65 6c 76 65 73 3a 00 4f 70 65 6e 56 50 4e 20 44 43 4f 20 69 73 20 6e 6f 74 20 61 20 66 75 | rselves:.OpenVPN.DCO.is.not.a.fu |
| 10c6c0 | 6c 6c 79 20 73 75 70 70 6f 72 74 65 64 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 2c 20 61 | lly.supported.OpenVPN.feature,.a |
| 10c6e0 | 6e 64 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 63 6f 6e 73 69 64 65 72 65 64 20 65 78 70 65 72 | nd.is.currently.considered.exper |
| 10c700 | 69 6d 65 6e 74 61 6c 2e 20 46 75 72 74 68 65 72 6d 6f 72 65 2c 20 74 68 65 72 65 20 61 72 65 20 | imental..Furthermore,.there.are. |
| 10c720 | 63 65 72 74 61 69 6e 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 73 20 61 6e 64 20 75 73 65 | certain.OpenVPN.features.and.use |
| 10c740 | 20 63 61 73 65 73 20 74 68 61 74 20 72 65 6d 61 69 6e 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 | .cases.that.remain.incompatible. |
| 10c760 | 77 69 74 68 20 44 43 4f 2e 20 54 6f 20 67 65 74 20 61 20 63 6f 6d 70 72 65 68 65 6e 73 69 76 65 | with.DCO..To.get.a.comprehensive |
| 10c780 | 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 74 68 65 20 6c 69 6d 69 74 61 74 69 6f 6e | .understanding.of.the.limitation |
| 10c7a0 | 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 44 43 4f 2c 20 72 65 66 65 72 20 74 6f 20 | s.associated.with.DCO,.refer.to. |
| 10c7c0 | 74 68 65 20 6c 69 73 74 20 6f 66 20 6b 6e 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 69 6e | the.list.of.known.limitations.in |
| 10c7e0 | 20 74 68 65 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2e 00 4f 70 65 6e 56 50 4e 20 44 43 4f 20 | .the.documentation..OpenVPN.DCO. |
| 10c800 | 69 73 20 6e 6f 74 20 66 75 6c 6c 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 73 20 73 75 70 | is.not.full.OpenVPN.features.sup |
| 10c820 | 70 6f 72 74 65 64 20 2c 20 69 73 20 63 75 72 72 65 6e 74 6c 79 20 63 6f 6e 73 69 64 65 72 65 64 | ported.,.is.currently.considered |
| 10c840 | 20 65 78 70 65 72 69 6d 65 6e 74 61 6c 2e 20 46 75 72 74 68 65 72 6d 6f 72 65 2c 20 74 68 65 72 | .experimental..Furthermore,.ther |
| 10c860 | 65 20 61 72 65 20 63 65 72 74 61 69 6e 20 4f 70 65 6e 56 50 4e 20 66 65 61 74 75 72 65 73 20 61 | e.are.certain.OpenVPN.features.a |
| 10c880 | 6e 64 20 75 73 65 20 63 61 73 65 73 20 74 68 61 74 20 72 65 6d 61 69 6e 20 69 6e 63 6f 6d 70 61 | nd.use.cases.that.remain.incompa |
| 10c8a0 | 74 69 62 6c 65 20 77 69 74 68 20 44 43 4f 2e 20 54 6f 20 67 65 74 20 61 20 63 6f 6d 70 72 65 68 | tible.with.DCO..To.get.a.compreh |
| 10c8c0 | 65 6e 73 69 76 65 20 75 6e 64 65 72 73 74 61 6e 64 69 6e 67 20 6f 66 20 74 68 65 20 6c 69 6d 69 | ensive.understanding.of.the.limi |
| 10c8e0 | 74 61 74 69 6f 6e 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 44 43 4f 2c 20 72 65 66 | tations.associated.with.DCO,.ref |
| 10c900 | 65 72 20 74 6f 20 74 68 65 20 6c 69 73 74 20 6f 66 20 6b 6e 6f 77 6e 20 6c 69 6d 69 74 61 74 69 | er.to.the.list.of.known.limitati |
| 10c920 | 6f 6e 73 20 69 6e 20 74 68 65 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2e 00 4f 70 65 6e 56 50 | ons.in.the.documentation..OpenVP |
| 10c940 | 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 6c 20 4f 66 66 6c 6f 61 64 20 28 44 43 4f 29 00 4f 70 65 | N.Data.Channel.Offload.(DCO).Ope |
| 10c960 | 6e 56 50 4e 20 44 61 74 61 20 43 68 61 6e 6e 65 6c 20 4f 66 66 6c 6f 61 64 20 28 44 43 4f 29 20 | nVPN.Data.Channel.Offload.(DCO). |
| 10c980 | 65 6e 61 62 6c 65 73 20 73 69 67 6e 69 66 69 63 61 6e 74 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 | enables.significant.performance. |
| 10c9a0 | 65 6e 68 61 6e 63 65 6d 65 6e 74 20 69 6e 20 65 6e 63 72 79 70 74 65 64 20 4f 70 65 6e 56 50 4e | enhancement.in.encrypted.OpenVPN |
| 10c9c0 | 20 64 61 74 61 20 70 72 6f 63 65 73 73 69 6e 67 2e 20 42 79 20 6d 69 6e 69 6d 69 7a 69 6e 67 20 | .data.processing..By.minimizing. |
| 10c9e0 | 63 6f 6e 74 65 78 74 20 73 77 69 74 63 68 69 6e 67 20 66 6f 72 20 65 61 63 68 20 70 61 63 6b 65 | context.switching.for.each.packe |
| 10ca00 | 74 2c 20 44 43 4f 20 65 66 66 65 63 74 69 76 65 6c 79 20 72 65 64 75 63 65 73 20 6f 76 65 72 68 | t,.DCO.effectively.reduces.overh |
| 10ca20 | 65 61 64 2e 20 54 68 69 73 20 6f 70 74 69 6d 69 7a 61 74 69 6f 6e 20 69 73 20 61 63 68 69 65 76 | ead..This.optimization.is.achiev |
| 10ca40 | 65 64 20 62 79 20 6b 65 65 70 69 6e 67 20 6d 6f 73 74 20 64 61 74 61 20 68 61 6e 64 6c 69 6e 67 | ed.by.keeping.most.data.handling |
| 10ca60 | 20 74 61 73 6b 73 20 77 69 74 68 69 6e 20 74 68 65 20 6b 65 72 6e 65 6c 2c 20 61 76 6f 69 64 69 | .tasks.within.the.kernel,.avoidi |
| 10ca80 | 6e 67 20 66 72 65 71 75 65 6e 74 20 73 77 69 74 63 68 65 73 20 62 65 74 77 65 65 6e 20 6b 65 72 | ng.frequent.switches.between.ker |
| 10caa0 | 6e 65 6c 20 61 6e 64 20 75 73 65 72 20 73 70 61 63 65 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f | nel.and.user.space.for.encryptio |
| 10cac0 | 6e 20 61 6e 64 20 70 61 63 6b 65 74 20 68 61 6e 64 6c 69 6e 67 2e 00 4f 70 65 6e 56 50 4e 20 4c | n.and.packet.handling..OpenVPN.L |
| 10cae0 | 6f 67 73 00 4f 70 65 6e 56 50 4e 20 61 6c 6c 6f 77 73 20 66 6f 72 20 65 69 74 68 65 72 20 54 43 | ogs.OpenVPN.allows.for.either.TC |
| 10cb00 | 50 20 6f 72 20 55 44 50 2e 20 55 44 50 20 77 69 6c 6c 20 70 72 6f 76 69 64 65 20 74 68 65 20 6c | P.or.UDP..UDP.will.provide.the.l |
| 10cb20 | 6f 77 65 73 74 20 6c 61 74 65 6e 63 79 2c 20 77 68 69 6c 65 20 54 43 50 20 77 69 6c 6c 20 77 6f | owest.latency,.while.TCP.will.wo |
| 10cb40 | 72 6b 20 62 65 74 74 65 72 20 66 6f 72 20 6c 6f 73 73 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 3b | rk.better.for.lossy.connections; |
| 10cb60 | 20 67 65 6e 65 72 61 6c 6c 79 20 55 44 50 20 69 73 20 70 72 65 66 65 72 72 65 64 20 77 68 65 6e | .generally.UDP.is.preferred.when |
| 10cb80 | 20 70 6f 73 73 69 62 6c 65 2e 00 4f 70 65 6e 56 50 4e 20 69 73 20 70 6f 70 75 6c 61 72 20 66 6f | .possible..OpenVPN.is.popular.fo |
| 10cba0 | 72 20 63 6c 69 65 6e 74 2d 73 65 72 76 65 72 20 73 65 74 75 70 73 2c 20 62 75 74 20 69 74 73 20 | r.client-server.setups,.but.its. |
| 10cbc0 | 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 72 65 6d 61 69 6e 73 20 61 20 72 65 6c 61 | site-to-site.mode.remains.a.rela |
| 10cbe0 | 74 69 76 65 6c 79 20 6f 62 73 63 75 72 65 20 66 65 61 74 75 72 65 2c 20 61 6e 64 20 6d 61 6e 79 | tively.obscure.feature,.and.many |
| 10cc00 | 20 72 6f 75 74 65 72 20 61 70 70 6c 69 61 6e 63 65 73 20 73 74 69 6c 6c 20 64 6f 6e 27 74 20 73 | .router.appliances.still.don't.s |
| 10cc20 | 75 70 70 6f 72 74 20 69 74 2e 20 48 6f 77 65 76 65 72 2c 20 69 74 27 73 20 76 65 72 79 20 75 73 | upport.it..However,.it's.very.us |
| 10cc40 | 65 66 75 6c 20 66 6f 72 20 71 75 69 63 6b 6c 79 20 73 65 74 74 69 6e 67 20 75 70 20 74 75 6e 6e | eful.for.quickly.setting.up.tunn |
| 10cc60 | 65 6c 73 20 62 65 74 77 65 65 6e 20 72 6f 75 74 65 72 73 2e 00 4f 70 65 6e 56 50 4e 20 73 74 61 | els.between.routers..OpenVPN.sta |
| 10cc80 | 74 75 73 20 63 61 6e 20 62 65 20 76 65 72 69 66 69 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 73 | tus.can.be.verified.using.the.`s |
| 10cca0 | 68 6f 77 20 6f 70 65 6e 76 70 6e 60 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 | how.openvpn`.operational.command |
| 10ccc0 | 73 2e 20 53 65 65 20 74 68 65 20 62 75 69 6c 74 2d 69 6e 20 68 65 6c 70 20 66 6f 72 20 61 20 63 | s..See.the.built-in.help.for.a.c |
| 10cce0 | 6f 6d 70 6c 65 74 65 20 6c 69 73 74 20 6f 66 20 6f 70 74 69 6f 6e 73 2e 00 4f 70 65 6e 63 6f 6e | omplete.list.of.options..Opencon |
| 10cd00 | 6e 65 63 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 65 72 61 74 69 6e 67 20 4d 6f 64 | nect.Configuration.Operating.Mod |
| 10cd20 | 65 73 00 4f 70 65 72 61 74 69 6f 6e 00 4f 70 65 72 61 74 69 6f 6e 20 43 6f 6d 6d 61 6e 64 73 00 | es.Operation.Operation.Commands. |
| 10cd40 | 4f 70 65 72 61 74 69 6f 6e 20 4d 6f 64 65 00 4f 70 65 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 | Operation.Mode.Operation.command |
| 10cd60 | 73 00 4f 70 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 6f 66 20 77 69 72 65 6c 65 73 73 20 72 61 64 | s.Operation.mode.of.wireless.rad |
| 10cd80 | 69 6f 2e 00 4f 70 65 72 61 74 69 6f 6e 2d 6d 6f 64 65 00 4f 70 65 72 61 74 69 6f 6e 2d 6d 6f 64 | io..Operation-mode.Operation-mod |
| 10cda0 | 65 20 46 69 72 65 77 61 6c 6c 00 4f 70 65 72 61 74 69 6f 6e 61 6c 20 43 6f 6d 6d 61 6e 64 73 00 | e.Firewall.Operational.Commands. |
| 10cdc0 | 4f 70 65 72 61 74 69 6f 6e 61 6c 20 4d 6f 64 65 20 43 6f 6d 6d 61 6e 64 73 00 4f 70 65 72 61 74 | Operational.Mode.Commands.Operat |
| 10cde0 | 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 00 4f 70 74 69 6f 6e 00 4f 70 74 69 6f 6e 20 34 33 20 | ional.commands.Option.Option.43. |
| 10ce00 | 66 6f 72 20 55 6e 69 46 49 00 4f 70 74 69 6f 6e 20 64 65 73 63 72 69 70 74 69 6f 6e 00 4f 70 74 | for.UniFI.Option.description.Opt |
| 10ce20 | 69 6f 6e 20 6e 75 6d 62 65 72 00 4f 70 74 69 6f 6e 20 73 70 65 63 69 66 79 69 6e 67 20 74 68 65 | ion.number.Option.specifying.the |
| 10ce40 | 20 72 61 74 65 20 69 6e 20 77 68 69 63 68 20 77 65 27 6c 6c 20 61 73 6b 20 6f 75 72 20 6c 69 6e | .rate.in.which.we'll.ask.our.lin |
| 10ce60 | 6b 20 70 61 72 74 6e 65 72 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 20 70 61 63 | k.partner.to.transmit.LACPDU.pac |
| 10ce80 | 6b 65 74 73 20 69 6e 20 38 30 32 2e 33 61 64 20 6d 6f 64 65 2e 00 4f 70 74 69 6f 6e 20 74 6f 20 | kets.in.802.3ad.mode..Option.to. |
| 10cea0 | 64 69 73 61 62 6c 65 20 72 75 6c 65 2e 00 4f 70 74 69 6f 6e 20 74 6f 20 65 6e 61 62 6c 65 20 6f | disable.rule..Option.to.enable.o |
| 10cec0 | 72 20 64 69 73 61 62 6c 65 20 6c 6f 67 20 6d 61 74 63 68 69 6e 67 20 72 75 6c 65 2e 00 4f 70 74 | r.disable.log.matching.rule..Opt |
| 10cee0 | 69 6f 6e 20 74 6f 20 6c 6f 67 20 70 61 63 6b 65 74 73 20 68 69 74 74 69 6e 67 20 64 65 66 61 75 | ion.to.log.packets.hitting.defau |
| 10cf00 | 6c 74 2d 61 63 74 69 6f 6e 2e 00 4f 70 74 69 6f 6e 61 6c 00 4f 70 74 69 6f 6e 61 6c 20 43 6f 6e | lt-action..Optional.Optional.Con |
| 10cf20 | 66 69 67 75 72 61 74 69 6f 6e 00 4f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 20 70 72 | figuration.Optional.parameter.pr |
| 10cf40 | 65 66 69 78 2d 6c 69 73 74 20 63 61 6e 20 62 65 20 75 73 65 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 | efix-list.can.be.use.to.control. |
| 10cf60 | 77 68 69 63 68 20 67 72 6f 75 70 73 20 74 6f 20 73 77 69 74 63 68 20 6f 72 20 6e 6f 74 20 73 77 | which.groups.to.switch.or.not.sw |
| 10cf80 | 69 74 63 68 2e 20 49 66 20 61 20 67 72 6f 75 70 20 69 73 20 50 45 52 4d 49 54 20 61 73 20 70 65 | itch..If.a.group.is.PERMIT.as.pe |
| 10cfa0 | 72 20 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 2c 20 74 68 65 6e 20 74 68 65 20 53 50 54 20 | r.the.prefix-list,.then.the.SPT. |
| 10cfc0 | 73 77 69 74 63 68 6f 76 65 72 20 64 6f 65 73 20 6e 6f 74 20 68 61 70 70 65 6e 20 66 6f 72 20 69 | switchover.does.not.happen.for.i |
| 10cfe0 | 74 20 61 6e 64 20 69 66 20 69 74 20 69 73 20 44 45 4e 59 2c 20 74 68 65 6e 20 74 68 65 20 53 50 | t.and.if.it.is.DENY,.then.the.SP |
| 10d000 | 54 20 73 77 69 74 63 68 6f 76 65 72 20 68 61 70 70 65 6e 73 2e 00 4f 70 74 69 6f 6e 61 6c 2c 20 | T.switchover.happens..Optional,. |
| 10d020 | 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 65 6e 61 62 6c 65 20 75 70 6c 6f 61 64 73 2c 20 65 | if.you.want.to.enable.uploads,.e |
| 10d040 | 6c 73 65 20 54 46 54 50 20 73 65 72 76 65 72 20 77 69 6c 6c 20 61 63 74 20 61 73 20 61 20 72 65 | lse.TFTP.server.will.act.as.a.re |
| 10d060 | 61 64 2d 6f 6e 6c 79 20 73 65 72 76 65 72 2e 00 4f 70 74 69 6f 6e 61 6c 2f 64 65 66 61 75 6c 74 | ad-only.server..Optional/default |
| 10d080 | 20 73 65 74 74 69 6e 67 73 00 4f 70 74 69 6f 6e 61 6c 6c 79 20 73 65 74 20 61 20 73 70 65 63 69 | .settings.Optionally.set.a.speci |
| 10d0a0 | 66 69 63 20 73 74 61 74 69 63 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 | fic.static.IPv4.or.IPv6.address. |
| 10d0c0 | 66 6f 72 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2e 20 54 68 69 73 20 61 64 64 72 65 73 73 20 | for.the.container..This.address. |
| 10d0e0 | 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 74 68 65 20 6e 61 6d 65 64 20 6e 65 74 77 6f 72 6b | must.be.within.the.named.network |
| 10d100 | 20 70 72 65 66 69 78 2e 00 4f 70 74 69 6f 6e 73 00 4f 70 74 69 6f 6e 73 20 28 47 6c 6f 62 61 6c | .prefix..Options.Options.(Global |
| 10d120 | 20 49 50 73 65 63 20 73 65 74 74 69 6e 67 73 29 20 41 74 74 72 69 62 75 74 65 73 00 4f 70 74 69 | .IPsec.settings).Attributes.Opti |
| 10d140 | 6f 6e 73 20 75 73 65 64 20 66 6f 72 20 71 75 65 75 65 20 74 61 72 67 65 74 2e 20 41 63 74 69 6f | ons.used.for.queue.target..Actio |
| 10d160 | 6e 20 71 75 65 75 65 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 74 6f 20 75 73 65 20 74 | n.queue.must.be.defined.to.use.t |
| 10d180 | 68 69 73 20 73 65 74 74 69 6e 67 00 4f 72 20 2a 2a 62 69 6e 61 72 79 2a 2a 20 70 72 65 66 69 78 | his.setting.Or.**binary**.prefix |
| 10d1a0 | 65 73 2e 00 4f 72 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 66 74 70 2c 20 60 64 65 6c 65 74 65 | es..Or,.for.example.ftp,.`delete |
| 10d1c0 | 20 73 79 73 74 65 6d 20 63 6f 6e 6e 74 72 61 63 6b 20 6d 6f 64 75 6c 65 73 20 66 74 70 60 2e 00 | .system.conntrack.modules.ftp`.. |
| 10d1e0 | 4f 72 64 65 72 20 63 6f 6e 6e 74 72 61 63 6b 64 20 74 6f 20 72 65 71 75 65 73 74 20 61 20 63 6f | Order.conntrackd.to.request.a.co |
| 10d200 | 6d 70 6c 65 74 65 20 63 6f 6e 6e 74 72 61 63 6b 20 74 61 62 6c 65 20 72 65 73 79 6e 63 20 61 67 | mplete.conntrack.table.resync.ag |
| 10d220 | 61 69 6e 73 74 20 74 68 65 20 6f 74 68 65 72 20 6e 6f 64 65 20 61 74 20 73 74 61 72 74 75 70 2e | ainst.the.other.node.at.startup. |
| 10d240 | 00 4f 72 69 67 69 6e 61 74 65 20 61 6e 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 28 74 79 70 65 2d | .Originate.an.AS-External.(type- |
| 10d260 | 35 29 20 4c 53 41 20 64 65 73 63 72 69 62 69 6e 67 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 | 5).LSA.describing.a.default.rout |
| 10d280 | 65 20 69 6e 74 6f 20 61 6c 6c 20 65 78 74 65 72 6e 61 6c 2d 72 6f 75 74 69 6e 67 20 63 61 70 61 | e.into.all.external-routing.capa |
| 10d2a0 | 62 6c 65 20 61 72 65 61 73 2c 20 6f 66 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6d 65 74 72 | ble.areas,.of.the.specified.metr |
| 10d2c0 | 69 63 20 61 6e 64 20 6d 65 74 72 69 63 20 74 79 70 65 2e 20 49 66 20 74 68 65 20 3a 63 66 67 63 | ic.and.metric.type..If.the.:cfgc |
| 10d2e0 | 6d 64 3a 60 61 6c 77 61 79 73 60 20 6b 65 79 77 6f 72 64 20 69 73 20 67 69 76 65 6e 20 74 68 65 | md:`always`.keyword.is.given.the |
| 10d300 | 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 61 6c 77 61 79 73 20 61 64 76 65 72 74 69 73 | n.the.default.is.always.advertis |
| 10d320 | 65 64 2c 20 65 76 65 6e 20 77 68 65 6e 20 74 68 65 72 65 20 69 73 20 6e 6f 20 64 65 66 61 75 6c | ed,.even.when.there.is.no.defaul |
| 10d340 | 74 20 70 72 65 73 65 6e 74 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 | t.present.in.the.routing.table.. |
| 10d360 | 54 68 65 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 72 6f 75 74 65 2d 6d 61 70 60 | The.argument.:cfgcmd:`route-map` |
| 10d380 | 20 73 70 65 63 69 66 69 65 73 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 74 68 65 20 64 65 66 61 | .specifies.to.advertise.the.defa |
| 10d3a0 | 75 6c 74 20 72 6f 75 74 65 20 69 66 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 69 73 20 73 61 | ult.route.if.the.route.map.is.sa |
| 10d3c0 | 74 69 73 66 69 65 64 2e 00 4f 74 68 65 72 20 61 74 74 72 69 62 75 74 65 73 20 63 61 6e 20 62 65 | tisfied..Other.attributes.can.be |
| 10d3e0 | 20 75 73 65 64 2c 20 62 75 74 20 74 68 65 79 20 68 61 76 65 20 74 6f 20 62 65 20 69 6e 20 6f 6e | .used,.but.they.have.to.be.in.on |
| 10d400 | 65 20 6f 66 20 74 68 65 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 69 6e 20 2a 2f 75 73 72 2f 73 | e.of.the.dictionaries.in.*/usr/s |
| 10d420 | 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2a 2e 00 4f 75 72 20 63 6f 6e 66 | hare/accel-ppp/radius*..Our.conf |
| 10d440 | 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 20 77 6f 75 6c 64 20 62 65 3a 00 4f 75 72 | iguration.commands.would.be:.Our |
| 10d460 | 20 72 65 6d 6f 74 65 20 65 6e 64 20 6f 66 20 74 68 65 20 74 75 6e 6e 65 6c 20 66 6f 72 20 70 65 | .remote.end.of.the.tunnel.for.pe |
| 10d480 | 65 72 20 60 74 6f 2d 77 67 30 32 60 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 61 74 20 31 39 32 | er.`to-wg02`.is.reachable.at.192 |
| 10d4a0 | 2e 30 2e 32 2e 31 20 70 6f 72 74 20 35 31 38 32 30 00 4f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 | .0.2.1.port.51820.Outbound.traff |
| 10d4c0 | 69 63 20 63 61 6e 20 62 65 20 62 61 6c 61 6e 63 65 64 20 62 65 74 77 65 65 6e 20 74 77 6f 20 6f | ic.can.be.balanced.between.two.o |
| 10d4e0 | 72 20 6d 6f 72 65 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 73 2e 20 49 66 20 61 | r.more.outbound.interfaces..If.a |
| 10d500 | 20 70 61 74 68 20 66 61 69 6c 73 2c 20 74 72 61 66 66 69 63 20 69 73 20 62 61 6c 61 6e 63 65 64 | .path.fails,.traffic.is.balanced |
| 10d520 | 20 61 63 72 6f 73 73 20 74 68 65 20 72 65 6d 61 69 6e 69 6e 67 20 68 65 61 6c 74 68 79 20 70 61 | .across.the.remaining.healthy.pa |
| 10d540 | 74 68 73 2c 20 61 20 72 65 63 6f 76 65 72 65 64 20 70 61 74 68 20 69 73 20 61 75 74 6f 6d 61 74 | ths,.a.recovered.path.is.automat |
| 10d560 | 69 63 61 6c 6c 79 20 61 64 64 65 64 20 62 61 63 6b 20 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 | ically.added.back.to.the.routing |
| 10d580 | 20 74 61 62 6c 65 20 61 6e 64 20 75 73 65 64 20 62 79 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 | .table.and.used.by.the.load.bala |
| 10d5a0 | 6e 63 65 72 2e 20 54 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 61 75 74 6f 6d 61 74 69 | ncer..The.load.balancer.automati |
| 10d5c0 | 63 61 6c 6c 79 20 61 64 64 73 20 72 6f 75 74 65 73 20 66 6f 72 20 65 61 63 68 20 70 61 74 68 20 | cally.adds.routes.for.each.path. |
| 10d5e0 | 74 6f 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 61 6e 64 20 62 61 6c 61 6e 63 65 | to.the.routing.table.and.balance |
| 10d600 | 73 20 74 72 61 66 66 69 63 20 61 63 72 6f 73 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | s.traffic.across.the.configured. |
| 10d620 | 69 6e 74 65 72 66 61 63 65 73 2c 20 64 65 74 65 72 6d 69 6e 65 64 20 62 79 20 69 6e 74 65 72 66 | interfaces,.determined.by.interf |
| 10d640 | 61 63 65 20 68 65 61 6c 74 68 20 61 6e 64 20 77 65 69 67 68 74 2e 00 4f 75 74 67 6f 69 6e 67 20 | ace.health.and.weight..Outgoing. |
| 10d660 | 74 72 61 66 66 69 63 20 69 73 20 62 61 6c 61 6e 63 65 64 20 69 6e 20 61 20 66 6c 6f 77 2d 62 61 | traffic.is.balanced.in.a.flow-ba |
| 10d680 | 73 65 64 20 6d 61 6e 6e 65 72 2e 20 41 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e | sed.manner..A.connection.trackin |
| 10d6a0 | 67 20 74 61 62 6c 65 20 69 73 20 75 73 65 64 20 74 6f 20 74 72 61 63 6b 20 66 6c 6f 77 73 20 62 | g.table.is.used.to.track.flows.b |
| 10d6c0 | 79 20 74 68 65 69 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 20 64 65 73 74 69 6e 61 74 | y.their.source.address,.destinat |
| 10d6e0 | 69 6f 6e 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 2e 20 45 61 63 68 20 66 6c 6f 77 20 | ion.address.and.port..Each.flow. |
| 10d700 | 69 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 61 63 63 6f | is.assigned.to.an.interface.acco |
| 10d720 | 72 64 69 6e 67 20 74 6f 20 74 68 65 20 64 65 66 69 6e 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 72 | rding.to.the.defined.balancing.r |
| 10d740 | 75 6c 65 73 20 61 6e 64 20 73 75 62 73 65 71 75 65 6e 74 20 70 61 63 6b 65 74 73 20 61 72 65 20 | ules.and.subsequent.packets.are. |
| 10d760 | 73 65 6e 74 20 74 68 72 6f 75 67 68 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 2e | sent.through.the.same.interface. |
| 10d780 | 20 54 68 69 73 20 68 61 73 20 74 68 65 20 61 64 76 61 6e 74 61 67 65 20 74 68 61 74 20 70 61 63 | .This.has.the.advantage.that.pac |
| 10d7a0 | 6b 65 74 73 20 61 6c 77 61 79 73 20 61 72 72 69 76 65 20 69 6e 20 6f 72 64 65 72 20 69 66 20 6c | kets.always.arrive.in.order.if.l |
| 10d7c0 | 69 6e 6b 73 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 73 70 65 65 64 73 20 61 72 65 20 69 | inks.with.different.speeds.are.i |
| 10d7e0 | 6e 20 75 73 65 2e 00 4f 75 74 70 75 74 20 66 72 6f 6d 20 60 65 74 68 30 60 20 6e 65 74 77 6f 72 | n.use..Output.from.`eth0`.networ |
| 10d800 | 6b 20 69 6e 74 65 72 66 61 63 65 00 4f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 50 72 6f 6d 65 74 | k.interface.Output.plugin.Promet |
| 10d820 | 68 65 75 73 20 63 6c 69 65 6e 74 00 4f 76 65 72 20 49 50 00 4f 76 65 72 20 49 50 53 65 63 2c 20 | heus.client.Over.IP.Over.IPSec,. |
| 10d840 | 4c 32 20 56 50 4e 20 28 62 72 69 64 67 65 29 00 4f 76 65 72 20 55 44 50 00 4f 76 65 72 72 69 64 | L2.VPN.(bridge).Over.UDP.Overrid |
| 10d860 | 65 20 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 27 73 20 6e 61 6d 65 2d 73 65 72 76 65 72 20 77 | e.static-mapping's.name-server.w |
| 10d880 | 69 74 68 20 61 20 63 75 73 74 6f 6d 20 6f 6e 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 73 65 | ith.a.custom.one.that.will.be.se |
| 10d8a0 | 6e 74 20 6f 6e 6c 79 20 74 6f 20 74 68 69 73 20 68 6f 73 74 2e 00 4f 76 65 72 72 69 64 65 20 74 | nt.only.to.this.host..Override.t |
| 10d8c0 | 68 65 20 64 65 66 61 75 6c 74 20 63 6f 6d 6d 61 6e 64 20 66 72 6f 6d 20 74 68 65 20 69 6d 61 67 | he.default.command.from.the.imag |
| 10d8e0 | 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 4f 76 65 72 72 69 64 65 20 74 68 65 20 | e.for.a.container..Override.the. |
| 10d900 | 64 65 66 61 75 6c 74 20 65 6e 74 72 79 70 6f 69 6e 74 20 66 72 6f 6d 20 74 68 65 20 69 6d 61 67 | default.entrypoint.from.the.imag |
| 10d920 | 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 4f 76 65 72 76 69 65 77 00 4f 76 65 72 | e.for.a.container..Overview.Over |
| 10d940 | 76 69 65 77 20 61 6e 64 20 62 61 73 69 63 20 63 6f 6e 63 65 70 74 73 00 4f 76 65 72 76 69 65 77 | view.and.basic.concepts.Overview |
| 10d960 | 20 6f 66 20 64 65 66 69 6e 65 64 20 67 72 6f 75 70 73 2e 20 59 6f 75 20 73 65 65 20 74 68 65 20 | .of.defined.groups..You.see.the. |
| 10d980 | 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 6e 61 6d 65 2c 20 74 79 70 65 2c 20 72 65 66 65 72 | firewall.group.name,.type,.refer |
| 10d9a0 | 65 6e 63 65 73 20 28 77 68 65 72 65 20 74 68 65 20 67 72 6f 75 70 20 69 73 20 75 73 65 64 29 2c | ences.(where.the.group.is.used), |
| 10d9c0 | 20 6d 65 6d 62 65 72 73 2c 20 74 69 6d 65 6f 75 74 20 61 6e 64 20 65 78 70 69 72 61 74 69 6f 6e | .members,.timeout.and.expiration |
| 10d9e0 | 20 28 6c 61 73 74 20 74 77 6f 20 6f 6e 6c 79 20 70 72 65 73 65 6e 74 20 69 6e 20 64 79 6e 61 6d | .(last.two.only.present.in.dynam |
| 10da00 | 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 29 2e 00 4f 76 65 72 76 69 65 77 20 6f 66 | ic.firewall.groups)..Overview.of |
| 10da20 | 20 64 65 66 69 6e 65 64 20 67 72 6f 75 70 73 2e 20 59 6f 75 20 73 65 65 20 74 68 65 20 74 79 70 | .defined.groups..You.see.the.typ |
| 10da40 | 65 2c 20 74 68 65 20 6d 65 6d 62 65 72 73 2c 20 61 6e 64 20 77 68 65 72 65 20 74 68 65 20 67 72 | e,.the.members,.and.where.the.gr |
| 10da60 | 6f 75 70 20 69 73 20 75 73 65 64 2e 00 4f 76 65 72 77 72 69 74 65 73 20 74 68 65 20 6c 6f 63 61 | oup.is.used..Overwrites.the.loca |
| 10da80 | 6c 20 73 79 73 74 65 6d 20 68 6f 73 74 20 6e 61 6d 65 20 75 73 65 64 20 69 6e 20 73 79 73 6c 6f | l.system.host.name.used.in.syslo |
| 10daa0 | 67 73 2e 00 50 42 52 20 6d 75 6c 74 69 70 6c 65 20 75 70 6c 69 6e 6b 73 00 50 43 31 20 69 73 20 | gs..PBR.multiple.uplinks.PC1.is. |
| 10dac0 | 69 6e 20 74 68 65 20 60 60 64 65 66 61 75 6c 74 60 60 20 56 52 46 20 61 6e 64 20 61 63 74 69 6e | in.the.``default``.VRF.and.actin |
| 10dae0 | 67 20 61 73 20 65 2e 67 2e 20 61 20 22 66 69 6c 65 73 65 72 76 65 72 22 00 50 43 32 20 69 73 20 | g.as.e.g..a."fileserver".PC2.is. |
| 10db00 | 69 6e 20 56 52 46 20 60 60 62 6c 75 65 60 60 20 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 76 | in.VRF.``blue``.which.is.the.dev |
| 10db20 | 65 6c 6f 70 6d 65 6e 74 20 64 65 70 61 72 74 6d 65 6e 74 00 50 43 33 20 61 6e 64 20 50 43 34 20 | elopment.department.PC3.and.PC4. |
| 10db40 | 61 72 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 62 72 69 64 67 65 20 64 65 76 69 63 65 | are.connected.to.a.bridge.device |
| 10db60 | 20 6f 6e 20 72 6f 75 74 65 72 20 60 60 52 31 60 60 20 77 68 69 63 68 20 69 73 20 69 6e 20 56 52 | .on.router.``R1``.which.is.in.VR |
| 10db80 | 46 20 60 60 72 65 64 60 60 2e 20 53 61 79 20 74 68 69 73 20 69 73 20 74 68 65 20 48 52 20 64 65 | F.``red``..Say.this.is.the.HR.de |
| 10dba0 | 70 61 72 74 6d 65 6e 74 2e 00 50 43 34 20 68 61 73 20 49 50 20 31 30 2e 30 2e 30 2e 34 2f 32 34 | partment..PC4.has.IP.10.0.0.4/24 |
| 10dbc0 | 20 61 6e 64 20 50 43 35 20 68 61 73 20 49 50 20 31 30 2e 30 2e 30 2e 35 2f 32 34 2c 20 73 6f 20 | .and.PC5.has.IP.10.0.0.5/24,.so. |
| 10dbe0 | 74 68 65 79 20 62 65 6c 69 65 76 65 20 74 68 65 79 20 61 72 65 20 69 6e 20 74 68 65 20 73 61 6d | they.believe.they.are.in.the.sam |
| 10dc00 | 65 20 62 72 6f 61 64 63 61 73 74 20 64 6f 6d 61 69 6e 2e 00 50 43 35 20 72 65 63 65 69 76 65 73 | e.broadcast.domain..PC5.receives |
| 10dc20 | 20 74 68 65 20 70 69 6e 67 20 65 63 68 6f 2c 20 72 65 73 70 6f 6e 64 73 20 77 69 74 68 20 61 6e | .the.ping.echo,.responds.with.an |
| 10dc40 | 20 65 63 68 6f 20 72 65 70 6c 79 20 74 68 61 74 20 4c 65 61 66 33 20 72 65 63 65 69 76 65 73 20 | .echo.reply.that.Leaf3.receives. |
| 10dc60 | 61 6e 64 20 74 68 69 73 20 74 69 6d 65 20 66 6f 72 77 61 72 64 73 20 74 6f 20 4c 65 61 66 32 27 | and.this.time.forwards.to.Leaf2' |
| 10dc80 | 73 20 75 6e 69 63 61 73 74 20 61 64 64 72 65 73 73 20 64 69 72 65 63 74 6c 79 20 62 65 63 61 75 | s.unicast.address.directly.becau |
| 10dca0 | 73 65 20 69 74 20 6c 65 61 72 6e 65 64 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 50 43 | se.it.learned.the.location.of.PC |
| 10dcc0 | 34 20 61 62 6f 76 65 2e 20 57 68 65 6e 20 4c 65 61 66 32 20 72 65 63 65 69 76 65 73 20 74 68 65 | 4.above..When.Leaf2.receives.the |
| 10dce0 | 20 65 63 68 6f 20 72 65 70 6c 79 20 66 72 6f 6d 20 50 43 35 20 69 74 20 73 65 65 73 20 74 68 61 | .echo.reply.from.PC5.it.sees.tha |
| 10dd00 | 74 20 69 74 20 63 61 6d 65 20 66 72 6f 6d 20 4c 65 61 66 33 20 61 6e 64 20 73 6f 20 72 65 6d 65 | t.it.came.from.Leaf3.and.so.reme |
| 10dd20 | 6d 62 65 72 73 20 74 68 61 74 20 50 43 35 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 | mbers.that.PC5.is.reachable.via. |
| 10dd40 | 4c 65 61 66 33 2e 00 50 49 4d 20 28 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 | Leaf3..PIM.(Protocol.Independent |
| 10dd60 | 20 4d 75 6c 74 69 63 61 73 74 29 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 | .Multicast).must.be.configured.i |
| 10dd80 | 6e 20 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 69 | n.every.interface.of.every.parti |
| 10dda0 | 63 69 70 61 74 69 6e 67 20 72 6f 75 74 65 72 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d 75 | cipating.router..Every.router.mu |
| 10ddc0 | 73 74 20 61 6c 73 6f 20 68 61 76 65 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 | st.also.have.the.location.of.the |
| 10dde0 | 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 | .Rendevouz.Point.manually.config |
| 10de00 | 75 72 65 64 2e 20 54 68 65 6e 2c 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 | ured..Then,.unidirectional.share |
| 10de20 | 64 20 74 72 65 65 73 20 72 6f 6f 74 65 64 20 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 | d.trees.rooted.at.the.Rendevouz. |
| 10de40 | 50 6f 69 6e 74 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 6c | Point.will.automatically.be.buil |
| 10de60 | 74 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 50 49 | t.for.multicast.distribution..PI |
| 10de80 | 4d 20 61 6e 64 20 49 47 4d 50 00 50 49 4d 20 e2 80 93 20 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 | M.and.IGMP.PIM.....Protocol.Inde |
| 10dea0 | 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 00 50 49 4d 2d 53 4d 20 2d 20 50 49 4d 20 53 | pendent.Multicast.PIM-SM.-.PIM.S |
| 10dec0 | 70 61 72 73 65 20 4d 6f 64 65 00 50 49 4d 36 20 2d 20 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 | parse.Mode.PIM6.-.Protocol.Indep |
| 10dee0 | 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 20 66 6f 72 20 49 50 76 36 00 50 49 4d 76 36 20 | endent.Multicast.for.IPv6.PIMv6. |
| 10df00 | 28 50 72 6f 74 6f 63 6f 6c 20 49 6e 64 65 70 65 6e 64 65 6e 74 20 4d 75 6c 74 69 63 61 73 74 20 | (Protocol.Independent.Multicast. |
| 10df20 | 66 6f 72 20 49 50 76 36 29 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 | for.IPv6).must.be.configured.in. |
| 10df40 | 65 76 65 72 79 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 65 76 65 72 79 20 70 61 72 74 69 63 69 | every.interface.of.every.partici |
| 10df60 | 70 61 74 69 6e 67 20 72 6f 75 74 65 72 2e 20 45 76 65 72 79 20 72 6f 75 74 65 72 20 6d 75 73 74 | pating.router..Every.router.must |
| 10df80 | 20 61 6c 73 6f 20 68 61 76 65 20 74 68 65 20 6c 6f 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 52 | .also.have.the.location.of.the.R |
| 10dfa0 | 65 6e 64 65 76 6f 75 7a 20 50 6f 69 6e 74 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 | endevouz.Point.manually.configur |
| 10dfc0 | 65 64 2e 20 54 68 65 6e 2c 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 73 68 61 72 65 64 20 | ed..Then,.unidirectional.shared. |
| 10dfe0 | 74 72 65 65 73 20 72 6f 6f 74 65 64 20 61 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f | trees.rooted.at.the.Rendevouz.Po |
| 10e000 | 69 6e 74 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 62 75 69 6c 74 20 | int.will.automatically.be.built. |
| 10e020 | 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 64 69 73 74 72 69 62 75 74 69 6f 6e 2e 00 50 4b 49 00 | for.multicast.distribution..PKI. |
| 10e040 | 50 50 44 55 00 50 50 50 20 41 64 76 61 6e 63 65 64 20 4f 70 74 69 6f 6e 73 00 50 50 50 20 53 65 | PPDU.PPP.Advanced.Options.PPP.Se |
| 10e060 | 74 74 69 6e 67 73 00 50 50 50 6f 45 00 50 50 50 6f 45 20 53 65 72 76 65 72 00 50 50 50 6f 45 20 | ttings.PPPoE.PPPoE.Server.PPPoE. |
| 10e080 | 6f 70 74 69 6f 6e 73 00 50 50 54 50 2d 53 65 72 76 65 72 00 50 54 50 20 54 72 61 6e 73 70 6f 72 | options.PPTP-Server.PTP.Transpor |
| 10e0a0 | 74 20 6f 66 20 4e 54 50 20 50 61 63 6b 65 74 73 00 50 61 63 6b 65 74 20 4d 6f 64 69 66 69 63 61 | t.of.NTP.Packets.Packet.Modifica |
| 10e0c0 | 74 69 6f 6e 73 00 50 61 63 6b 65 74 2d 62 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 63 61 6e | tions.Packet-based.balancing.can |
| 10e0e0 | 20 6c 65 61 64 20 74 6f 20 61 20 62 65 74 74 65 72 20 62 61 6c 61 6e 63 65 20 61 63 72 6f 73 73 | .lead.to.a.better.balance.across |
| 10e100 | 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 65 6e 20 6f 75 74 20 6f 66 20 6f 72 64 65 72 20 70 61 | .interfaces.when.out.of.order.pa |
| 10e120 | 63 6b 65 74 73 20 61 72 65 20 6e 6f 20 69 73 73 75 65 2e 20 50 65 72 2d 70 61 63 6b 65 74 2d 62 | ckets.are.no.issue..Per-packet-b |
| 10e140 | 61 73 65 64 20 62 61 6c 61 6e 63 69 6e 67 20 63 61 6e 20 62 65 20 73 65 74 20 66 6f 72 20 61 20 | ased.balancing.can.be.set.for.a. |
| 10e160 | 62 61 6c 61 6e 63 69 6e 67 20 72 75 6c 65 20 77 69 74 68 3a 00 50 61 72 61 6d 65 74 65 72 73 20 | balancing.rule.with:.Parameters. |
| 10e180 | 62 65 67 69 6e 6e 69 6e 67 20 77 69 74 68 20 66 73 2e 6d 71 75 65 75 65 2e 2a 00 50 61 72 61 6d | beginning.with.fs.mqueue.*.Param |
| 10e1a0 | 65 74 65 72 73 20 62 65 67 69 6e 6e 69 6e 67 20 77 69 74 68 20 6e 65 74 2e 2a 20 28 6f 6e 6c 79 | eters.beginning.with.net.*.(only |
| 10e1c0 | 20 69 66 20 75 73 65 72 2d 64 65 66 69 6e 65 64 20 6e 65 74 77 6f 72 6b 20 69 73 20 75 73 65 64 | .if.user-defined.network.is.used |
| 10e1e0 | 29 00 50 61 72 74 69 63 75 6c 61 72 6c 79 20 6c 61 72 67 65 20 6e 65 74 77 6f 72 6b 73 20 6d 61 | ).Particularly.large.networks.ma |
| 10e200 | 79 20 77 69 73 68 20 74 6f 20 72 75 6e 20 74 68 65 69 72 20 6f 77 6e 20 52 50 4b 49 20 63 65 72 | y.wish.to.run.their.own.RPKI.cer |
| 10e220 | 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 61 6e 64 20 70 75 62 6c 69 63 61 74 69 | tificate.authority.and.publicati |
| 10e240 | 6f 6e 20 73 65 72 76 65 72 20 69 6e 73 74 65 61 64 20 6f 66 20 70 75 62 6c 69 73 68 69 6e 67 20 | on.server.instead.of.publishing. |
| 10e260 | 52 4f 41 73 20 76 69 61 20 74 68 65 69 72 20 52 49 52 2e 20 54 68 69 73 20 69 73 20 61 20 73 75 | ROAs.via.their.RIR..This.is.a.su |
| 10e280 | 62 6a 65 63 74 20 66 61 72 20 62 65 79 6f 6e 64 20 74 68 65 20 73 63 6f 70 65 20 6f 66 20 56 79 | bject.far.beyond.the.scope.of.Vy |
| 10e2a0 | 4f 53 27 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 2e 20 43 6f 6e 73 69 64 65 72 20 72 65 61 64 | OS'.documentation..Consider.read |
| 10e2c0 | 69 6e 67 20 61 62 6f 75 74 20 4b 72 69 6c 6c 5f 20 69 66 20 74 68 69 73 20 69 73 20 61 20 72 61 | ing.about.Krill_.if.this.is.a.ra |
| 10e2e0 | 62 62 69 74 20 68 6f 6c 65 20 79 6f 75 20 6e 65 65 64 20 6f 72 20 65 73 70 65 63 69 61 6c 6c 79 | bbit.hole.you.need.or.especially |
| 10e300 | 20 77 61 6e 74 20 74 6f 20 64 69 76 65 20 64 6f 77 6e 2e 00 50 61 73 73 20 61 64 64 72 65 73 73 | .want.to.dive.down..Pass.address |
| 10e320 | 20 6f 66 20 55 6e 69 66 69 20 63 6f 6e 74 72 6f 6c 6c 65 72 20 61 74 20 60 60 31 37 32 2e 31 36 | .of.Unifi.controller.at.``172.16 |
| 10e340 | 2e 31 30 30 2e 31 60 60 20 74 6f 20 61 6c 6c 20 63 6c 69 65 6e 74 73 20 6f 66 20 60 60 4e 45 54 | .100.1``.to.all.clients.of.``NET |
| 10e360 | 31 60 60 00 50 61 74 68 20 60 3c 63 6f 73 74 3e 60 20 76 61 6c 75 65 20 66 6f 72 20 53 70 61 6e | 1``.Path.`<cost>`.value.for.Span |
| 10e380 | 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 2e 20 45 61 63 68 20 69 6e 74 65 72 66 61 | ning.Tree.Protocol..Each.interfa |
| 10e3a0 | 63 65 20 69 6e 20 61 20 62 72 69 64 67 65 20 63 6f 75 6c 64 20 68 61 76 65 20 61 20 64 69 66 66 | ce.in.a.bridge.could.have.a.diff |
| 10e3c0 | 65 72 65 6e 74 20 73 70 65 65 64 20 61 6e 64 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 75 73 | erent.speed.and.this.value.is.us |
| 10e3e0 | 65 64 20 77 68 65 6e 20 64 65 63 69 64 69 6e 67 20 77 68 69 63 68 20 6c 69 6e 6b 20 74 6f 20 75 | ed.when.deciding.which.link.to.u |
| 10e400 | 73 65 2e 20 46 61 73 74 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 73 68 6f 75 6c 64 20 68 61 76 | se..Faster.interfaces.should.hav |
| 10e420 | 65 20 6c 6f 77 65 72 20 63 6f 73 74 73 2e 00 50 61 74 68 20 74 6f 20 60 3c 66 69 6c 65 3e 60 20 | e.lower.costs..Path.to.`<file>`. |
| 10e440 | 70 6f 69 6e 74 69 6e 67 20 74 6f 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 | pointing.to.the.certificate.auth |
| 10e460 | 6f 72 69 74 79 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 50 61 74 68 20 74 6f 20 60 3c 66 69 6c | ority.certificate..Path.to.`<fil |
| 10e480 | 65 3e 60 20 70 6f 69 6e 74 69 6e 67 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 73 20 63 65 72 74 | e>`.pointing.to.the.servers.cert |
| 10e4a0 | 69 66 69 63 61 74 65 20 28 70 75 62 6c 69 63 20 70 6f 72 74 69 6f 6e 29 2e 00 50 65 65 72 20 2d | ificate.(public.portion)..Peer.- |
| 10e4c0 | 20 50 65 65 72 00 50 65 65 72 20 47 72 6f 75 70 73 00 50 65 65 72 20 49 50 20 61 64 64 72 65 73 | .Peer.Peer.Groups.Peer.IP.addres |
| 10e4e0 | 73 20 74 6f 20 6d 61 74 63 68 2e 00 50 65 65 72 20 50 61 72 61 6d 65 74 65 72 73 00 50 65 65 72 | s.to.match..Peer.Parameters.Peer |
| 10e500 | 20 67 72 6f 75 70 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 68 65 6c 70 20 69 6d 70 72 6f 76 65 | .groups.are.used.to.help.improve |
| 10e520 | 20 73 63 61 6c 69 6e 67 20 62 79 20 67 65 6e 65 72 61 74 69 6e 67 20 74 68 65 20 73 61 6d 65 20 | .scaling.by.generating.the.same. |
| 10e540 | 75 70 64 61 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 61 6c 6c 20 6d 65 6d 62 65 72 | update.information.to.all.member |
| 10e560 | 73 20 6f 66 20 61 20 70 65 65 72 20 67 72 6f 75 70 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 69 | s.of.a.peer.group..Note.that.thi |
| 10e580 | 73 20 6d 65 61 6e 73 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 73 20 67 65 6e 65 72 61 74 65 | s.means.that.the.routes.generate |
| 10e5a0 | 64 20 62 79 20 61 20 6d 65 6d 62 65 72 20 6f 66 20 61 20 70 65 65 72 20 67 72 6f 75 70 20 77 69 | d.by.a.member.of.a.peer.group.wi |
| 10e5c0 | 6c 6c 20 62 65 20 73 65 6e 74 20 62 61 63 6b 20 74 6f 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 | ll.be.sent.back.to.that.originat |
| 10e5e0 | 69 6e 67 20 70 65 65 72 20 77 69 74 68 20 74 68 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 | ing.peer.with.the.originator.ide |
| 10e600 | 6e 74 69 66 69 65 72 20 61 74 74 72 69 62 75 74 65 20 73 65 74 20 74 6f 20 69 6e 64 69 63 61 74 | ntifier.attribute.set.to.indicat |
| 10e620 | 65 64 20 74 68 65 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 70 65 65 72 2e 20 41 6c 6c 20 70 65 65 | ed.the.originating.peer..All.pee |
| 10e640 | 72 73 20 6e 6f 74 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 73 70 65 63 69 66 69 | rs.not.associated.with.a.specifi |
| 10e660 | 63 20 70 65 65 72 20 67 72 6f 75 70 20 61 72 65 20 74 72 65 61 74 65 64 20 61 73 20 62 65 6c 6f | c.peer.group.are.treated.as.belo |
| 10e680 | 6e 67 69 6e 67 20 74 6f 20 61 20 64 65 66 61 75 6c 74 20 70 65 65 72 20 67 72 6f 75 70 2c 20 61 | nging.to.a.default.peer.group,.a |
| 10e6a0 | 6e 64 20 77 69 6c 6c 20 73 68 61 72 65 20 75 70 64 61 74 65 73 2e 00 50 65 65 72 20 74 6f 20 73 | nd.will.share.updates..Peer.to.s |
| 10e6c0 | 65 6e 64 20 75 6e 69 63 61 73 74 20 55 44 50 20 63 6f 6e 6e 74 72 61 63 6b 20 73 79 6e 63 20 65 | end.unicast.UDP.conntrack.sync.e |
| 10e6e0 | 6e 74 69 72 65 73 20 74 6f 2c 20 69 66 20 6e 6f 74 20 75 73 69 6e 67 20 4d 75 6c 74 69 63 61 73 | ntires.to,.if.not.using.Multicas |
| 10e700 | 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 61 62 6f 76 65 20 61 62 6f 76 65 | t.configuration.from.above.above |
| 10e720 | 2e 00 50 65 65 72 73 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 50 65 72 20 64 65 66 61 75 6c | ..Peers.Configuration.Per.defaul |
| 10e740 | 74 20 56 79 4f 53 73 20 68 61 73 20 6d 69 6e 69 6d 61 6c 20 73 79 73 6c 6f 67 20 6c 6f 67 67 69 | t.VyOSs.has.minimal.syslog.loggi |
| 10e760 | 6e 67 20 65 6e 61 62 6c 65 64 20 77 68 69 63 68 20 69 73 20 73 74 6f 72 65 64 20 61 6e 64 20 72 | ng.enabled.which.is.stored.and.r |
| 10e780 | 6f 74 61 74 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 45 72 72 6f 72 73 20 77 69 6c 6c 20 62 65 20 61 | otated.locally..Errors.will.be.a |
| 10e7a0 | 6c 77 61 79 73 20 6c 6f 67 67 65 64 20 74 6f 20 61 20 6c 6f 63 61 6c 20 66 69 6c 65 2c 20 77 68 | lways.logged.to.a.local.file,.wh |
| 10e7c0 | 69 63 68 20 69 6e 63 6c 75 64 65 73 20 60 6c 6f 63 61 6c 37 60 20 65 72 72 6f 72 20 6d 65 73 73 | ich.includes.`local7`.error.mess |
| 10e7e0 | 61 67 65 73 2c 20 65 6d 65 72 67 65 6e 63 79 20 6d 65 73 73 61 67 65 73 20 77 69 6c 6c 20 62 65 | ages,.emergency.messages.will.be |
| 10e800 | 20 73 65 6e 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2c 20 74 6f 6f 2e 00 50 65 72 20 64 | .sent.to.the.console,.too..Per.d |
| 10e820 | 65 66 61 75 6c 74 20 65 76 65 72 79 20 70 61 63 6b 65 74 20 69 73 20 73 61 6d 70 6c 65 64 20 28 | efault.every.packet.is.sampled.( |
| 10e840 | 74 68 61 74 20 69 73 2c 20 74 68 65 20 73 61 6d 70 6c 69 6e 67 20 72 61 74 65 20 69 73 20 31 29 | that.is,.the.sampling.rate.is.1) |
| 10e860 | 2e 00 50 65 72 20 64 65 66 61 75 6c 74 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f 6e 20 69 | ..Per.default.the.user.session.i |
| 10e880 | 73 20 62 65 69 6e 67 20 72 65 70 6c 61 63 65 64 20 69 66 20 61 20 73 65 63 6f 6e 64 20 61 75 74 | s.being.replaced.if.a.second.aut |
| 10e8a0 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 72 65 71 75 65 73 74 20 73 75 63 63 65 65 64 73 2e 20 53 75 | hentication.request.succeeds..Su |
| 10e8c0 | 63 68 20 73 65 73 73 69 6f 6e 20 72 65 71 75 65 73 74 73 20 63 61 6e 20 62 65 20 65 69 74 68 65 | ch.session.requests.can.be.eithe |
| 10e8e0 | 72 20 64 65 6e 69 65 64 20 6f 72 20 61 6c 6c 6f 77 65 64 20 65 6e 74 69 72 65 6c 79 2c 20 77 68 | r.denied.or.allowed.entirely,.wh |
| 10e900 | 69 63 68 20 77 6f 75 6c 64 20 61 6c 6c 6f 77 20 6d 75 6c 74 69 70 6c 65 20 73 65 73 73 69 6f 6e | ich.would.allow.multiple.session |
| 10e920 | 73 20 66 6f 72 20 61 20 75 73 65 72 20 69 6e 20 74 68 65 20 6c 61 74 74 65 72 20 63 61 73 65 2e | s.for.a.user.in.the.latter.case. |
| 10e940 | 20 49 66 20 69 74 20 69 73 20 64 65 6e 69 65 64 2c 20 74 68 65 20 73 65 63 6f 6e 64 20 73 65 73 | .If.it.is.denied,.the.second.ses |
| 10e960 | 73 69 6f 6e 20 69 73 20 62 65 69 6e 67 20 72 65 6a 65 63 74 65 64 20 65 76 65 6e 20 69 66 20 74 | sion.is.being.rejected.even.if.t |
| 10e980 | 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 75 63 63 65 65 64 73 2c 20 74 68 65 20 | he.authentication.succeeds,.the. |
| 10e9a0 | 75 73 65 72 20 68 61 73 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 69 74 73 20 66 69 72 73 74 20 | user.has.to.terminate.its.first. |
| 10e9c0 | 73 65 73 73 69 6f 6e 20 61 6e 64 20 63 61 6e 20 74 68 65 6e 20 61 75 74 68 65 6e 74 69 63 61 74 | session.and.can.then.authenticat |
| 10e9e0 | 69 6f 6e 20 61 67 61 69 6e 2e 00 50 65 72 20 64 65 66 61 75 6c 74 2c 20 69 6e 74 65 72 66 61 63 | ion.again..Per.default,.interfac |
| 10ea00 | 65 73 20 75 73 65 64 20 69 6e 20 61 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 70 6f 6f 6c | es.used.in.a.load.balancing.pool |
| 10ea20 | 20 72 65 70 6c 61 63 65 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 20 6f 66 20 65 61 63 68 20 6f | .replace.the.source.IP.of.each.o |
| 10ea40 | 75 74 67 6f 69 6e 67 20 70 61 63 6b 65 74 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 61 64 64 72 | utgoing.packet.with.its.own.addr |
| 10ea60 | 65 73 73 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 72 65 70 6c 69 65 73 20 61 72 72 69 76 | ess.to.ensure.that.replies.arriv |
| 10ea80 | 65 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 77 6f | e.on.the.same.interface..This.wo |
| 10eaa0 | 72 6b 73 20 74 68 72 6f 75 67 68 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 67 65 6e 65 72 61 | rks.through.automatically.genera |
| 10eac0 | 74 65 64 20 73 6f 75 72 63 65 20 4e 41 54 20 28 53 4e 41 54 29 20 72 75 6c 65 73 2c 20 74 68 65 | ted.source.NAT.(SNAT).rules,.the |
| 10eae0 | 73 65 20 72 75 6c 65 73 20 61 72 65 20 6f 6e 6c 79 20 61 70 70 6c 69 65 64 20 74 6f 20 62 61 6c | se.rules.are.only.applied.to.bal |
| 10eb00 | 61 6e 63 65 64 20 74 72 61 66 66 69 63 2e 20 49 6e 20 63 61 73 65 73 20 77 68 65 72 65 20 74 68 | anced.traffic..In.cases.where.th |
| 10eb20 | 69 73 20 62 65 68 61 76 69 6f 75 72 20 69 73 20 6e 6f 74 20 64 65 73 69 72 65 64 2c 20 74 68 65 | is.behaviour.is.not.desired,.the |
| 10eb40 | 20 61 75 74 6f 6d 61 74 69 63 20 67 65 6e 65 72 61 74 69 6f 6e 20 6f 66 20 53 4e 41 54 20 72 75 | .automatic.generation.of.SNAT.ru |
| 10eb60 | 6c 65 73 20 63 61 6e 20 62 65 20 64 69 73 61 62 6c 65 64 3a 00 50 65 72 66 6f 72 6d 20 4e 41 54 | les.can.be.disabled:.Perform.NAT |
| 10eb80 | 20 6c 6f 6f 6b 75 70 20 62 65 66 6f 72 65 20 61 70 70 6c 79 69 6e 67 20 66 6c 6f 77 2d 69 73 6f | .lookup.before.applying.flow-iso |
| 10eba0 | 6c 61 74 69 6f 6e 20 72 75 6c 65 73 2e 00 50 65 72 66 6f 72 6d 61 6e 63 65 00 50 65 72 69 6f 64 | lation.rules..Performance.Period |
| 10ebc0 | 69 63 61 6c 6c 79 2c 20 61 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 20 69 73 20 73 65 6e 74 20 6f | ically,.a.hello.packet.is.sent.o |
| 10ebe0 | 75 74 20 62 79 20 74 68 65 20 52 6f 6f 74 20 42 72 69 64 67 65 20 61 6e 64 20 74 68 65 20 44 65 | ut.by.the.Root.Bridge.and.the.De |
| 10ec00 | 73 69 67 6e 61 74 65 64 20 42 72 69 64 67 65 73 2e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 | signated.Bridges..Hello.packets. |
| 10ec20 | 61 72 65 20 75 73 65 64 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 69 6e 66 6f 72 6d 61 74 | are.used.to.communicate.informat |
| 10ec40 | 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 74 6f 70 6f 6c 6f 67 79 20 74 68 72 6f 75 67 68 6f 75 | ion.about.the.topology.throughou |
| 10ec60 | 74 20 74 68 65 20 65 6e 74 69 72 65 20 42 72 69 64 67 65 64 20 4c 6f 63 61 6c 20 41 72 65 61 20 | t.the.entire.Bridged.Local.Area. |
| 10ec80 | 4e 65 74 77 6f 72 6b 2e 00 50 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 69 6e 74 | Network..Ping.command.can.be.int |
| 10eca0 | 65 72 72 75 70 74 65 64 20 61 74 20 61 6e 79 20 67 69 76 65 6e 20 74 69 6d 65 20 75 73 69 6e 67 | errupted.at.any.given.time.using |
| 10ecc0 | 20 60 60 3c 43 74 72 6c 3e 2b 63 60 60 2e 20 41 20 62 72 69 65 66 20 73 74 61 74 69 73 74 69 63 | .``<Ctrl>+c``..A.brief.statistic |
| 10ece0 | 20 69 73 20 73 68 6f 77 6e 20 61 66 74 65 72 77 61 72 64 73 2e 00 50 69 6e 67 20 75 73 65 73 20 | .is.shown.afterwards..Ping.uses. |
| 10ed00 | 49 43 4d 50 20 70 72 6f 74 6f 63 6f 6c 27 73 20 6d 61 6e 64 61 74 6f 72 79 20 45 43 48 4f 5f 52 | ICMP.protocol's.mandatory.ECHO_R |
| 10ed20 | 45 51 55 45 53 54 20 64 61 74 61 67 72 61 6d 20 74 6f 20 65 6c 69 63 69 74 20 61 6e 20 49 43 4d | EQUEST.datagram.to.elicit.an.ICM |
| 10ed40 | 50 20 45 43 48 4f 5f 52 45 53 50 4f 4e 53 45 20 66 72 6f 6d 20 61 20 68 6f 73 74 20 6f 72 20 67 | P.ECHO_RESPONSE.from.a.host.or.g |
| 10ed60 | 61 74 65 77 61 79 2e 20 45 43 48 4f 5f 52 45 51 55 45 53 54 20 64 61 74 61 67 72 61 6d 73 20 28 | ateway..ECHO_REQUEST.datagrams.( |
| 10ed80 | 70 69 6e 67 73 29 20 77 69 6c 6c 20 68 61 76 65 20 61 6e 20 49 50 20 61 6e 64 20 49 43 4d 50 20 | pings).will.have.an.IP.and.ICMP. |
| 10eda0 | 68 65 61 64 65 72 2c 20 66 6f 6c 6c 6f 77 65 64 20 62 79 20 22 73 74 72 75 63 74 20 74 69 6d 65 | header,.followed.by."struct.time |
| 10edc0 | 76 61 6c 22 20 61 6e 64 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 6e 75 6d 62 65 72 20 6f 66 20 | val".and.an.arbitrary.number.of. |
| 10ede0 | 70 61 64 20 62 79 74 65 73 20 75 73 65 64 20 74 6f 20 66 69 6c 6c 20 6f 75 74 20 74 68 65 20 70 | pad.bytes.used.to.fill.out.the.p |
| 10ee00 | 61 63 6b 65 74 2e 00 50 69 6e 67 69 6e 67 20 28 49 50 76 36 29 20 74 68 65 20 6f 74 68 65 72 20 | acket..Pinging.(IPv6).the.other. |
| 10ee20 | 68 6f 73 74 20 61 6e 64 20 69 6e 74 65 72 63 65 70 74 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 | host.and.intercepting.the.traffi |
| 10ee40 | 63 20 69 6e 20 60 60 65 74 68 31 60 60 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 74 68 65 20 | c.in.``eth1``.will.show.you.the. |
| 10ee60 | 63 6f 6e 74 65 6e 74 20 69 73 20 65 6e 63 72 79 70 74 65 64 2e 00 50 6c 61 63 65 20 69 6e 74 65 | content.is.encrypted..Place.inte |
| 10ee80 | 72 66 61 63 65 20 69 6e 20 67 69 76 65 6e 20 56 52 46 20 69 6e 73 74 61 6e 63 65 2e 00 50 6c 61 | rface.in.given.VRF.instance..Pla |
| 10eea0 | 79 20 61 6e 20 61 75 64 69 62 6c 65 20 62 65 65 70 20 74 6f 20 74 68 65 20 73 79 73 74 65 6d 20 | y.an.audible.beep.to.the.system. |
| 10eec0 | 73 70 65 61 6b 65 72 20 77 68 65 6e 20 73 79 73 74 65 6d 20 69 73 20 72 65 61 64 79 2e 00 50 6c | speaker.when.system.is.ready..Pl |
| 10eee0 | 65 61 73 65 20 62 65 20 61 77 61 72 65 2c 20 64 75 65 20 74 6f 20 61 6e 20 75 70 73 74 72 65 61 | ease.be.aware,.due.to.an.upstrea |
| 10ef00 | 6d 20 62 75 67 2c 20 63 6f 6e 66 69 67 20 63 68 61 6e 67 65 73 2f 63 6f 6d 6d 69 74 73 20 77 69 | m.bug,.config.changes/commits.wi |
| 10ef20 | 6c 6c 20 72 65 73 74 61 72 74 20 74 68 65 20 70 70 70 20 64 61 65 6d 6f 6e 20 61 6e 64 20 77 69 | ll.restart.the.ppp.daemon.and.wi |
| 10ef40 | 6c 6c 20 72 65 73 65 74 20 65 78 69 73 74 69 6e 67 20 49 50 6f 45 20 73 65 73 73 69 6f 6e 73 2c | ll.reset.existing.IPoE.sessions, |
| 10ef60 | 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 20 65 66 66 65 63 74 69 76 65 2e 00 50 | .in.order.to.become.effective..P |
| 10ef80 | 6c 65 61 73 65 20 62 65 20 61 77 61 72 65 2c 20 64 75 65 20 74 6f 20 61 6e 20 75 70 73 74 72 65 | lease.be.aware,.due.to.an.upstre |
| 10efa0 | 61 6d 20 62 75 67 2c 20 63 6f 6e 66 69 67 20 63 68 61 6e 67 65 73 2f 63 6f 6d 6d 69 74 73 20 77 | am.bug,.config.changes/commits.w |
| 10efc0 | 69 6c 6c 20 72 65 73 74 61 72 74 20 74 68 65 20 70 70 70 20 64 61 65 6d 6f 6e 20 61 6e 64 20 77 | ill.restart.the.ppp.daemon.and.w |
| 10efe0 | 69 6c 6c 20 72 65 73 65 74 20 65 78 69 73 74 69 6e 67 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 | ill.reset.existing.PPPoE.connect |
| 10f000 | 69 6f 6e 73 20 66 72 6f 6d 20 63 6f 6e 6e 65 63 74 65 64 20 75 73 65 72 73 2c 20 69 6e 20 6f 72 | ions.from.connected.users,.in.or |
| 10f020 | 64 65 72 20 74 6f 20 62 65 63 6f 6d 65 20 65 66 66 65 63 74 69 76 65 2e 00 50 6c 65 61 73 65 20 | der.to.become.effective..Please. |
| 10f040 | 72 65 66 65 72 20 74 6f 20 74 68 65 20 3a 72 65 66 3a 60 69 70 73 65 63 60 20 64 6f 63 75 6d 65 | refer.to.the.:ref:`ipsec`.docume |
| 10f060 | 6e 74 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 49 50 53 65 63 | ntation.for.the.individual.IPSec |
| 10f080 | 20 72 65 6c 61 74 65 64 20 6f 70 74 69 6f 6e 73 2e 00 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 | .related.options..Please.refer.t |
| 10f0a0 | 6f 20 74 68 65 20 3a 72 65 66 3a 60 74 75 6e 6e 65 6c 2d 69 6e 74 65 72 66 61 63 65 60 20 64 6f | o.the.:ref:`tunnel-interface`.do |
| 10f0c0 | 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 74 | cumentation.for.the.individual.t |
| 10f0e0 | 75 6e 6e 65 6c 20 72 65 6c 61 74 65 64 20 6f 70 74 69 6f 6e 73 2e 00 50 6c 65 61 73 65 20 73 65 | unnel.related.options..Please.se |
| 10f100 | 65 20 74 68 65 20 3a 72 65 66 3a 60 64 68 63 70 2d 64 6e 73 2d 71 75 69 63 6b 2d 73 74 61 72 74 | e.the.:ref:`dhcp-dns-quick-start |
| 10f120 | 60 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 20 61 20 6c | `.configuration..Please.take.a.l |
| 10f140 | 6f 6f 6b 20 61 74 20 74 68 65 20 3a 72 65 66 3a 60 76 79 6f 73 61 70 69 60 20 70 61 67 65 20 66 | ook.at.the.:ref:`vyosapi`.page.f |
| 10f160 | 6f 72 20 61 6e 20 64 65 74 61 69 6c 65 64 20 68 6f 77 2d 74 6f 2e 00 50 6c 65 61 73 65 20 74 61 | or.an.detailed.how-to..Please.ta |
| 10f180 | 6b 65 20 61 20 6c 6f 6f 6b 20 61 74 20 74 68 65 20 43 6f 6e 74 72 69 62 75 74 69 6e 67 20 47 75 | ke.a.look.at.the.Contributing.Gu |
| 10f1a0 | 69 64 65 20 66 6f 72 20 6f 75 72 20 3a 72 65 66 3a 60 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 60 | ide.for.our.:ref:`documentation` |
| 10f1c0 | 2e 00 50 6c 65 61 73 65 20 74 61 6b 65 20 61 20 6c 6f 6f 6b 20 69 6e 20 74 68 65 20 41 75 74 6f | ..Please.take.a.look.in.the.Auto |
| 10f1e0 | 6d 61 74 69 6f 6e 20 73 65 63 74 69 6f 6e 20 74 6f 20 66 69 6e 64 20 73 6f 6d 65 20 75 73 65 66 | mation.section.to.find.some.usef |
| 10f200 | 75 6c 6c 20 45 78 61 6d 70 6c 65 73 2e 00 50 6c 65 61 73 65 2c 20 72 65 66 65 72 20 74 6f 20 61 | ull.Examples..Please,.refer.to.a |
| 10f220 | 70 70 72 6f 70 69 61 74 65 20 73 65 63 74 69 6f 6e 20 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 | ppropiate.section.for.more.infor |
| 10f240 | 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 | mation.about.firewall.configurat |
| 10f260 | 69 6f 6e 3a 00 50 6c 65 61 73 65 2c 20 72 65 66 65 72 20 74 6f 20 61 70 70 72 6f 70 72 69 61 74 | ion:.Please,.refer.to.appropriat |
| 10f280 | 65 20 73 65 63 74 69 6f 6e 20 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 | e.section.for.more.information.a |
| 10f2a0 | 62 6f 75 74 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 50 6f 6c | bout.firewall.configuration:.Pol |
| 10f2c0 | 69 63 69 65 73 20 61 72 65 20 75 73 65 64 20 66 6f 72 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 | icies.are.used.for.filtering.and |
| 10f2e0 | 20 74 72 61 66 66 69 63 20 6d 61 6e 61 67 65 6d 65 6e 74 2e 20 57 69 74 68 20 70 6f 6c 69 63 69 | .traffic.management..With.polici |
| 10f300 | 65 73 2c 20 6e 65 74 77 6f 72 6b 20 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 73 20 63 6f 75 6c 64 | es,.network.administrators.could |
| 10f320 | 20 66 69 6c 74 65 72 20 61 6e 64 20 74 72 65 61 74 20 74 72 61 66 66 69 63 20 61 63 63 6f 72 64 | .filter.and.treat.traffic.accord |
| 10f340 | 69 6e 67 20 74 6f 20 74 68 65 69 72 20 6e 65 65 64 73 2e 00 50 6f 6c 69 63 69 65 73 20 66 6f 72 | ing.to.their.needs..Policies.for |
| 10f360 | 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 | .local.traffic.are.defined.in.th |
| 10f380 | 69 73 20 73 65 63 74 69 6f 6e 2e 00 50 6f 6c 69 63 69 65 73 2c 20 69 6e 20 56 79 4f 53 2c 20 61 | is.section..Policies,.in.VyOS,.a |
| 10f3a0 | 72 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 75 73 69 6e 67 20 46 52 52 20 66 69 6c 74 65 72 69 | re.implemented.using.FRR.filteri |
| 10f3c0 | 6e 67 20 61 6e 64 20 72 6f 75 74 65 20 6d 61 70 73 2e 20 44 65 74 61 69 6c 65 64 20 69 6e 66 6f | ng.and.route.maps..Detailed.info |
| 10f3e0 | 72 6d 61 74 69 6f 6e 20 6f 66 20 46 52 52 20 63 6f 75 6c 64 20 62 65 20 66 6f 75 6e 64 20 69 6e | rmation.of.FRR.could.be.found.in |
| 10f400 | 20 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 66 72 72 6f 75 74 69 6e 67 2e 6f 72 67 2f 00 50 6f 6c 69 | .http://docs.frrouting.org/.Poli |
| 10f420 | 63 79 00 50 6f 6c 69 63 79 20 53 65 63 74 69 6f 6e 73 00 50 6f 6c 69 63 79 20 66 6f 72 20 63 68 | cy.Policy.Sections.Policy.for.ch |
| 10f440 | 65 63 6b 69 6e 67 20 74 61 72 67 65 74 73 00 50 6f 6c 69 63 79 20 74 6f 20 74 72 61 63 6b 20 70 | ecking.targets.Policy.to.track.p |
| 10f460 | 72 65 76 69 6f 75 73 6c 79 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e | reviously.established.connection |
| 10f480 | 73 2e 00 50 6f 6c 69 63 79 2d 42 61 73 65 64 20 52 6f 75 74 69 6e 67 20 77 69 74 68 20 6d 75 6c | s..Policy-Based.Routing.with.mul |
| 10f4a0 | 74 69 70 6c 65 20 49 53 50 20 75 70 6c 69 6e 6b 73 20 28 73 6f 75 72 63 65 20 2e 2f 64 72 61 77 | tiple.ISP.uplinks.(source../draw |
| 10f4c0 | 2e 69 6f 2f 70 62 72 5f 65 78 61 6d 70 6c 65 5f 31 2e 64 72 61 77 69 6f 29 00 50 6f 72 74 20 47 | .io/pbr_example_1.drawio).Port.G |
| 10f4e0 | 72 6f 75 70 73 00 50 6f 72 74 20 4d 69 72 72 6f 72 20 28 53 50 41 4e 29 00 50 6f 72 74 20 63 61 | roups.Port.Mirror.(SPAN).Port.ca |
| 10f500 | 6c 63 75 6c 61 74 69 6f 6e 00 50 6f 72 74 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f | lculation.Port.for.Dynamic.Autho |
| 10f520 | 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 6f | rization.Extension.server.(DM/Co |
| 10f540 | 41 29 00 50 6f 72 74 20 67 72 6f 75 70 73 20 61 72 65 20 75 73 65 66 75 6c 20 77 68 65 6e 20 79 | A).Port.groups.are.useful.when.y |
| 10f560 | 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 72 75 6c 65 73 20 74 68 61 74 20 61 70 70 | ou.need.to.create.rules.that.app |
| 10f580 | 6c 79 20 74 6f 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 73 2e 20 46 6f 72 20 65 78 61 6d 70 6c | ly.to.specific.ports..For.exampl |
| 10f5a0 | 65 2c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 | e,.if.you.want.to.create.a.rule. |
| 10f5c0 | 74 68 61 74 20 6d 6f 6e 69 74 6f 72 73 20 74 72 61 66 66 69 63 20 64 69 72 65 63 74 65 64 20 74 | that.monitors.traffic.directed.t |
| 10f5e0 | 6f 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 20 6f 72 20 67 72 6f 75 70 20 6f 66 20 70 6f | o.a.specific.port.or.group.of.po |
| 10f600 | 72 74 73 2c 20 79 6f 75 20 63 61 6e 20 75 73 65 20 74 68 65 20 67 72 6f 75 70 20 6e 61 6d 65 20 | rts,.you.can.use.the.group.name. |
| 10f620 | 69 6e 73 74 65 61 64 20 6f 66 20 74 68 65 20 61 63 74 75 61 6c 20 70 6f 72 74 2e 20 54 68 69 73 | instead.of.the.actual.port..This |
| 10f640 | 20 61 6c 73 6f 20 73 69 6d 70 6c 69 66 69 65 73 20 72 75 6c 65 20 6d 61 6e 61 67 65 6d 65 6e 74 | .also.simplifies.rule.management |
| 10f660 | 20 61 6e 64 20 6d 61 6b 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 72 | .and.makes.the.configuration.mor |
| 10f680 | 65 20 66 6c 65 78 69 62 6c 65 2e 00 50 6f 72 74 20 6b 6e 6f 63 6b 69 6e 67 20 65 78 61 6d 70 6c | e.flexible..Port.knocking.exampl |
| 10f6a0 | 65 00 50 6f 72 74 20 6e 61 6d 65 20 61 6e 64 20 64 65 73 63 72 69 70 74 69 6f 6e 00 50 6f 72 74 | e.Port.name.and.description.Port |
| 10f6c0 | 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 64 65 66 61 | .number.used.by.connection,.defa |
| 10f6e0 | 75 6c 74 20 69 73 20 60 60 39 32 37 33 60 60 00 50 6f 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 | ult.is.``9273``.Port.number.used |
| 10f700 | 20 62 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 50 6f 72 74 20 74 6f 20 6c 69 73 74 65 6e 20 66 | .by.connection..Port.to.listen.f |
| 10f720 | 6f 72 20 48 54 54 50 53 20 72 65 71 75 65 73 74 73 3b 20 64 65 66 61 75 6c 74 20 34 34 33 00 50 | or.HTTPS.requests;.default.443.P |
| 10f740 | 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 77 68 69 63 68 20 61 72 65 | ortions.of.the.network.which.are |
| 10f760 | 20 56 4c 41 4e 2d 61 77 61 72 65 20 28 69 2e 65 2e 2c 20 49 45 45 45 20 38 30 32 2e 31 71 5f 20 | .VLAN-aware.(i.e.,.IEEE.802.1q_. |
| 10f780 | 63 6f 6e 66 6f 72 6d 61 6e 74 29 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 56 4c 41 4e 20 74 61 67 | conformant).can.include.VLAN.tag |
| 10f7a0 | 73 2e 20 57 68 65 6e 20 61 20 66 72 61 6d 65 20 65 6e 74 65 72 73 20 74 68 65 20 56 4c 41 4e 2d | s..When.a.frame.enters.the.VLAN- |
| 10f7c0 | 61 77 61 72 65 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 61 20 | aware.portion.of.the.network,.a. |
| 10f7e0 | 74 61 67 20 69 73 20 61 64 64 65 64 20 74 6f 20 72 65 70 72 65 73 65 6e 74 20 74 68 65 20 56 4c | tag.is.added.to.represent.the.VL |
| 10f800 | 41 4e 20 6d 65 6d 62 65 72 73 68 69 70 2e 20 45 61 63 68 20 66 72 61 6d 65 20 6d 75 73 74 20 62 | AN.membership..Each.frame.must.b |
| 10f820 | 65 20 64 69 73 74 69 6e 67 75 69 73 68 61 62 6c 65 20 61 73 20 62 65 69 6e 67 20 77 69 74 68 69 | e.distinguishable.as.being.withi |
| 10f840 | 6e 20 65 78 61 63 74 6c 79 20 6f 6e 65 20 56 4c 41 4e 2e 20 41 20 66 72 61 6d 65 20 69 6e 20 74 | n.exactly.one.VLAN..A.frame.in.t |
| 10f860 | 68 65 20 56 4c 41 4e 2d 61 77 61 72 65 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 6e 65 74 | he.VLAN-aware.portion.of.the.net |
| 10f880 | 77 6f 72 6b 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 63 6f 6e 74 61 69 6e 20 61 20 56 4c 41 | work.that.does.not.contain.a.VLA |
| 10f8a0 | 4e 20 74 61 67 20 69 73 20 61 73 73 75 6d 65 64 20 74 6f 20 62 65 20 66 6c 6f 77 69 6e 67 20 6f | N.tag.is.assumed.to.be.flowing.o |
| 10f8c0 | 6e 20 74 68 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 2e 00 50 72 65 2d 73 68 61 72 65 64 20 6b 65 | n.the.native.VLAN..Pre-shared.ke |
| 10f8e0 | 79 73 00 50 72 65 63 65 64 65 6e 63 65 00 50 72 65 65 6d 70 74 69 6f 6e 00 50 72 65 66 65 72 20 | ys.Precedence.Preemption.Prefer. |
| 10f900 | 61 20 73 70 65 63 69 66 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 72 6f 75 74 | a.specific.routing.protocol.rout |
| 10f920 | 65 73 20 6f 76 65 72 20 61 6e 6f 74 68 65 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c | es.over.another.routing.protocol |
| 10f940 | 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 72 6f 75 74 65 72 2e 00 50 72 65 | .running.on.the.same.router..Pre |
| 10f960 | 66 65 72 20 68 69 67 68 65 72 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 72 6f 75 74 | fer.higher.local.preference.rout |
| 10f980 | 65 73 20 74 6f 20 6c 6f 77 65 72 2e 00 50 72 65 66 65 72 20 68 69 67 68 65 72 20 6c 6f 63 61 6c | es.to.lower..Prefer.higher.local |
| 10f9a0 | 20 77 65 69 67 68 74 20 72 6f 75 74 65 73 20 74 6f 20 6c 6f 77 65 72 20 72 6f 75 74 65 73 2e 00 | .weight.routes.to.lower.routes.. |
| 10f9c0 | 50 72 65 66 65 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 73 20 28 73 74 61 74 69 63 73 2c 20 61 67 | Prefer.local.routes.(statics,.ag |
| 10f9e0 | 67 72 65 67 61 74 65 73 2c 20 72 65 64 69 73 74 72 69 62 75 74 65 64 29 20 74 6f 20 72 65 63 65 | gregates,.redistributed).to.rece |
| 10fa00 | 69 76 65 64 20 72 6f 75 74 65 73 2e 00 50 72 65 66 65 72 20 73 68 6f 72 74 65 73 74 20 68 6f 70 | ived.routes..Prefer.shortest.hop |
| 10fa20 | 2d 63 6f 75 6e 74 20 41 53 5f 50 41 54 48 73 2e 00 50 72 65 66 65 72 20 74 68 65 20 6c 6f 77 65 | -count.AS_PATHs..Prefer.the.lowe |
| 10fa40 | 73 74 20 6f 72 69 67 69 6e 20 74 79 70 65 20 72 6f 75 74 65 2e 20 54 68 61 74 20 69 73 2c 20 70 | st.origin.type.route..That.is,.p |
| 10fa60 | 72 65 66 65 72 20 49 47 50 20 6f 72 69 67 69 6e 20 72 6f 75 74 65 73 20 74 6f 20 45 47 50 2c 20 | refer.IGP.origin.routes.to.EGP,. |
| 10fa80 | 74 6f 20 49 6e 63 6f 6d 70 6c 65 74 65 20 72 6f 75 74 65 73 2e 00 50 72 65 66 65 72 20 74 68 65 | to.Incomplete.routes..Prefer.the |
| 10faa0 | 20 72 6f 75 74 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 61 6e 20 65 78 74 65 72 6e 61 6c | .route.received.from.an.external |
| 10fac0 | 2c 20 65 42 47 50 20 70 65 65 72 20 6f 76 65 72 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 | ,.eBGP.peer.over.routes.received |
| 10fae0 | 20 66 72 6f 6d 20 6f 74 68 65 72 20 74 79 70 65 73 20 6f 66 20 70 65 65 72 73 2e 00 50 72 65 66 | .from.other.types.of.peers..Pref |
| 10fb00 | 65 72 20 74 68 65 20 72 6f 75 74 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 65 20 70 | er.the.route.received.from.the.p |
| 10fb20 | 65 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 68 65 72 20 74 72 61 6e 73 70 6f 72 74 20 6c 61 | eer.with.the.higher.transport.la |
| 10fb40 | 79 65 72 20 61 64 64 72 65 73 73 2c 20 61 73 20 61 20 6c 61 73 74 2d 72 65 73 6f 72 74 20 74 69 | yer.address,.as.a.last-resort.ti |
| 10fb60 | 65 2d 62 72 65 61 6b 65 72 2e 00 50 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 69 74 68 | e-breaker..Prefer.the.route.with |
| 10fb80 | 20 74 68 65 20 6c 6f 77 65 72 20 49 47 50 20 63 6f 73 74 2e 00 50 72 65 66 65 72 20 74 68 65 20 | .the.lower.IGP.cost..Prefer.the. |
| 10fba0 | 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 6f 77 65 73 74 20 60 72 6f 75 74 65 72 2d 49 44 | route.with.the.lowest.`router-ID |
| 10fbc0 | 60 2e 20 49 66 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 61 6e 20 60 4f 52 49 47 49 4e 41 54 | `..If.the.route.has.an.`ORIGINAT |
| 10fbe0 | 4f 52 5f 49 44 60 20 61 74 74 72 69 62 75 74 65 2c 20 74 68 72 6f 75 67 68 20 69 42 47 50 20 72 | OR_ID`.attribute,.through.iBGP.r |
| 10fc00 | 65 66 6c 65 63 74 69 6f 6e 2c 20 74 68 65 6e 20 74 68 61 74 20 72 6f 75 74 65 72 20 49 44 20 69 | eflection,.then.that.router.ID.i |
| 10fc20 | 73 20 75 73 65 64 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 60 72 6f 75 74 65 72 2d 49 44 | s.used,.otherwise.the.`router-ID |
| 10fc40 | 60 20 6f 66 20 74 68 65 20 70 65 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 61 73 20 72 65 63 65 | `.of.the.peer.the.route.was.rece |
| 10fc60 | 69 76 65 64 20 66 72 6f 6d 20 69 73 20 75 73 65 64 2e 00 50 72 65 66 65 72 65 6e 63 65 20 61 73 | ived.from.is.used..Preference.as |
| 10fc80 | 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 72 | sociated.with.the.default.router |
| 10fca0 | 00 50 72 65 66 69 78 20 43 6f 6e 76 65 72 73 69 6f 6e 00 50 72 65 66 69 78 20 44 65 6c 65 67 61 | .Prefix.Conversion.Prefix.Delega |
| 10fcc0 | 74 69 6f 6e 00 50 72 65 66 69 78 20 4c 69 73 74 20 50 6f 6c 69 63 79 00 50 72 65 66 69 78 20 4c | tion.Prefix.List.Policy.Prefix.L |
| 10fce0 | 69 73 74 73 00 50 72 65 66 69 78 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 66 6f 72 20 | ists.Prefix.can.not.be.used.for. |
| 10fd00 | 6f 6e 2d 6c 69 6e 6b 20 64 65 74 65 72 6d 69 6e 61 74 69 6f 6e 00 50 72 65 66 69 78 20 63 61 6e | on-link.determination.Prefix.can |
| 10fd20 | 20 6e 6f 74 20 62 65 20 75 73 65 64 20 66 6f 72 20 73 74 61 74 65 6c 65 73 73 20 61 64 64 72 65 | .not.be.used.for.stateless.addre |
| 10fd40 | 73 73 20 61 75 74 6f 2d 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 50 72 65 66 69 78 20 66 69 6c | ss.auto-configuration.Prefix.fil |
| 10fd60 | 74 65 72 69 6e 67 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 6e 67 20 70 72 65 66 69 78 2d | tering.can.be.done.using.prefix- |
| 10fd80 | 6c 69 73 74 20 61 6e 64 20 70 72 65 66 69 78 2d 6c 69 73 74 36 2e 00 50 72 65 66 69 78 20 6c 65 | list.and.prefix-list6..Prefix.le |
| 10fda0 | 6e 67 74 68 20 69 6e 20 69 6e 74 65 72 66 61 63 65 20 6d 75 73 74 20 62 65 20 65 71 75 61 6c 20 | ngth.in.interface.must.be.equal. |
| 10fdc0 | 6f 72 20 62 69 67 67 65 72 20 28 69 2e 65 2e 20 73 6d 61 6c 6c 65 72 20 6e 65 74 77 6f 72 6b 29 | or.bigger.(i.e..smaller.network) |
| 10fde0 | 20 74 68 61 6e 20 70 72 65 66 69 78 20 6c 65 6e 67 74 68 20 69 6e 20 6e 65 74 77 6f 72 6b 20 73 | .than.prefix.length.in.network.s |
| 10fe00 | 74 61 74 65 6d 65 6e 74 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 73 74 61 74 65 6d 65 6e 74 20 | tatement..For.example.statement. |
| 10fe20 | 61 62 6f 76 65 20 64 6f 65 73 6e 27 74 20 65 6e 61 62 6c 65 20 6f 73 70 66 20 6f 6e 20 69 6e 74 | above.doesn't.enable.ospf.on.int |
| 10fe40 | 65 72 66 61 63 65 20 77 69 74 68 20 61 64 64 72 65 73 73 20 31 39 32 2e 31 36 38 2e 31 2e 31 2f | erface.with.address.192.168.1.1/ |
| 10fe60 | 32 33 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 | 23,.but.it.does.on.interface.wit |
| 10fe80 | 68 20 61 64 64 72 65 73 73 20 31 39 32 2e 31 36 38 2e 31 2e 31 32 39 2f 32 35 2e 00 50 72 65 66 | h.address.192.168.1.129/25..Pref |
| 10fea0 | 69 78 20 6c 69 73 74 73 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 6d 6f 73 74 20 70 6f 77 65 72 | ix.lists.provides.the.most.power |
| 10fec0 | 66 75 6c 20 70 72 65 66 69 78 20 62 61 73 65 64 20 66 69 6c 74 65 72 69 6e 67 20 6d 65 63 68 61 | ful.prefix.based.filtering.mecha |
| 10fee0 | 6e 69 73 6d 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 61 63 63 65 73 73 2d 6c 69 73 74 | nism..In.addition.to.access-list |
| 10ff00 | 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2c 20 69 70 20 70 72 65 66 69 78 2d 6c 69 73 74 20 68 | .functionality,.ip.prefix-list.h |
| 10ff20 | 61 73 20 70 72 65 66 69 78 20 6c 65 6e 67 74 68 20 72 61 6e 67 65 20 73 70 65 63 69 66 69 63 61 | as.prefix.length.range.specifica |
| 10ff40 | 74 69 6f 6e 2e 00 50 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 2e 00 50 | tion..Prefix.to.match.against..P |
| 10ff60 | 72 65 66 69 78 65 73 00 50 72 65 70 65 6e 64 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 6c 61 73 | refixes.Prepend.the.existing.las |
| 10ff80 | 74 20 41 53 20 6e 75 6d 62 65 72 20 28 74 68 65 20 6c 65 66 74 6d 6f 73 74 20 41 53 4e 29 20 74 | t.AS.number.(the.leftmost.ASN).t |
| 10ffa0 | 6f 20 74 68 65 20 41 53 5f 50 41 54 48 2e 00 50 72 65 70 65 6e 64 20 74 68 65 20 67 69 76 65 6e | o.the.AS_PATH..Prepend.the.given |
| 10ffc0 | 20 73 74 72 69 6e 67 20 6f 66 20 41 53 20 6e 75 6d 62 65 72 73 20 74 6f 20 74 68 65 20 41 53 5f | .string.of.AS.numbers.to.the.AS_ |
| 10ffe0 | 50 41 54 48 20 6f 66 20 74 68 65 20 42 47 50 20 70 61 74 68 27 73 20 4e 4c 52 49 2e 00 50 72 69 | PATH.of.the.BGP.path's.NLRI..Pri |
| 110000 | 6e 63 69 70 6c 65 20 6f 66 20 53 4e 4d 50 20 43 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 00 50 72 69 | nciple.of.SNMP.Communication.Pri |
| 110020 | 6e 74 20 61 20 73 75 6d 6d 61 72 79 20 6f 66 20 6e 65 69 67 68 62 6f 72 20 63 6f 6e 6e 65 63 74 | nt.a.summary.of.neighbor.connect |
| 110040 | 69 6f 6e 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 41 46 49 2f 53 41 46 49 20 | ions.for.the.specified.AFI/SAFI. |
| 110060 | 63 6f 6d 62 69 6e 61 74 69 6f 6e 2e 00 50 72 69 6e 74 20 61 63 74 69 76 65 20 49 50 56 34 20 6f | combination..Print.active.IPV4.o |
| 110080 | 72 20 49 50 56 36 20 72 6f 75 74 65 73 20 61 64 76 65 72 74 69 73 65 64 20 76 69 61 20 74 68 65 | r.IPV6.routes.advertised.via.the |
| 1100a0 | 20 56 50 4e 20 53 41 46 49 2e 00 50 72 69 6e 74 20 6f 75 74 20 74 68 65 20 6c 69 73 74 20 6f 66 | .VPN.SAFI..Print.out.the.list.of |
| 1100c0 | 20 65 78 69 73 74 69 6e 67 20 63 72 79 70 74 6f 20 70 6f 6c 69 63 69 65 73 00 50 72 69 6e 74 20 | .existing.crypto.policies.Print. |
| 1100e0 | 6f 75 74 20 74 68 65 20 6c 69 73 74 20 6f 66 20 65 78 69 73 74 69 6e 67 20 69 6e 2d 6b 65 72 6e | out.the.list.of.existing.in-kern |
| 110100 | 65 6c 20 63 72 79 70 74 6f 20 73 74 61 74 65 00 50 72 69 6f 72 69 74 79 00 50 72 69 6f 72 69 74 | el.crypto.state.Priority.Priorit |
| 110120 | 79 20 51 75 65 75 65 00 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 2c 20 61 73 20 6f 74 68 65 72 | y.Queue.Priority.Queue,.as.other |
| 110140 | 20 6e 6f 6e 2d 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 69 65 73 2c 20 69 73 20 6f 6e 6c 79 20 75 | .non-shaping.policies,.is.only.u |
| 110160 | 73 65 66 75 6c 20 69 66 20 79 6f 75 72 20 6f 75 74 67 6f 69 6e 67 20 69 6e 74 65 72 66 61 63 65 | seful.if.your.outgoing.interface |
| 110180 | 20 69 73 20 72 65 61 6c 6c 79 20 66 75 6c 6c 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 2c 20 56 | .is.really.full..If.it.is.not,.V |
| 1101a0 | 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 6f 77 6e 20 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 50 | yOS.will.not.own.the.queue.and.P |
| 1101c0 | 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 77 69 6c 6c 20 68 61 76 65 20 6e 6f 20 65 66 66 65 63 | riority.Queue.will.have.no.effec |
| 1101e0 | 74 2e 20 49 66 20 74 68 65 72 65 20 69 73 20 62 61 6e 64 77 69 64 74 68 20 61 76 61 69 6c 61 62 | t..If.there.is.bandwidth.availab |
| 110200 | 6c 65 20 6f 6e 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 6c 69 6e 6b 2c 20 79 6f 75 20 63 61 6e | le.on.the.physical.link,.you.can |
| 110220 | 20 65 6d 62 65 64 5f 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 6e 74 6f 20 61 20 63 6c | .embed_.Priority.Queue.into.a.cl |
| 110240 | 61 73 73 66 75 6c 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 6d 61 6b 65 20 73 75 | assful.shaping.policy.to.make.su |
| 110260 | 72 65 20 69 74 20 6f 77 6e 73 20 74 68 65 20 71 75 65 75 65 2e 20 49 6e 20 74 68 61 74 20 63 61 | re.it.owns.the.queue..In.that.ca |
| 110280 | 73 65 20 70 61 63 6b 65 74 73 20 63 61 6e 20 62 65 20 70 72 69 6f 72 69 74 69 7a 65 64 20 62 61 | se.packets.can.be.prioritized.ba |
| 1102a0 | 73 65 64 20 6f 6e 20 44 53 43 50 2e 00 50 72 69 76 61 74 65 20 56 4c 41 4e 20 70 72 6f 78 79 20 | sed.on.DSCP..Private.VLAN.proxy. |
| 1102c0 | 61 72 70 2e 20 42 61 73 69 63 61 6c 6c 79 20 61 6c 6c 6f 77 20 70 72 6f 78 79 20 61 72 70 20 72 | arp..Basically.allow.proxy.arp.r |
| 1102e0 | 65 70 6c 69 65 73 20 62 61 63 6b 20 74 6f 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 | eplies.back.to.the.same.interfac |
| 110300 | 65 20 28 66 72 6f 6d 20 77 68 69 63 68 20 74 68 65 20 41 52 50 20 72 65 71 75 65 73 74 2f 73 6f | e.(from.which.the.ARP.request/so |
| 110320 | 6c 69 63 69 74 61 74 69 6f 6e 20 77 61 73 20 72 65 63 65 69 76 65 64 29 2e 00 50 72 6f 66 69 6c | licitation.was.received)..Profil |
| 110340 | 65 20 67 65 6e 65 72 61 74 69 6f 6e 20 68 61 70 70 65 6e 73 20 66 72 6f 6d 20 74 68 65 20 6f 70 | e.generation.happens.from.the.op |
| 110360 | 65 72 61 74 69 6f 6e 61 6c 20 6c 65 76 65 6c 20 61 6e 64 20 69 73 20 61 73 20 73 69 6d 70 6c 65 | erational.level.and.is.as.simple |
| 110380 | 20 61 73 20 69 73 73 75 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e | .as.issuing.the.following.comman |
| 1103a0 | 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 70 72 6f 66 69 6c 65 20 74 6f 20 63 6f 6e 6e 65 63 74 | d.to.create.a.profile.to.connect |
| 1103c0 | 20 74 6f 20 74 68 65 20 49 4b 45 76 32 20 61 63 63 65 73 73 20 73 65 72 76 65 72 20 61 74 20 60 | .to.the.IKEv2.access.server.at.` |
| 1103e0 | 60 76 70 6e 2e 76 79 6f 73 2e 6e 65 74 60 60 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 75 | `vpn.vyos.net``.with.the.configu |
| 110400 | 72 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 60 60 72 77 60 60 20 72 65 6d 6f 74 65 2d 61 63 63 | ration.for.the.``rw``.remote-acc |
| 110420 | 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 67 72 6f 75 70 2e 00 50 72 6f 6d 65 74 68 65 75 73 | ess.connection.group..Prometheus |
| 110440 | 2d 63 6c 69 65 6e 74 00 50 72 6f 74 65 63 74 73 20 68 6f 73 74 20 66 72 6f 6d 20 62 72 75 74 65 | -client.Protects.host.from.brute |
| 110460 | 2d 66 6f 72 63 65 20 61 74 74 61 63 6b 73 20 61 67 61 69 6e 73 74 20 53 53 48 2e 20 4c 6f 67 20 | -force.attacks.against.SSH..Log. |
| 110480 | 6d 65 73 73 61 67 65 73 20 61 72 65 20 70 61 72 73 65 64 2c 20 6c 69 6e 65 2d 62 79 2d 6c 69 6e | messages.are.parsed,.line-by-lin |
| 1104a0 | 65 2c 20 66 6f 72 20 72 65 63 6f 67 6e 69 7a 65 64 20 70 61 74 74 65 72 6e 73 2e 20 49 66 20 61 | e,.for.recognized.patterns..If.a |
| 1104c0 | 6e 20 61 74 74 61 63 6b 2c 20 73 75 63 68 20 61 73 20 73 65 76 65 72 61 6c 20 6c 6f 67 69 6e 20 | n.attack,.such.as.several.login. |
| 1104e0 | 66 61 69 6c 75 72 65 73 20 77 69 74 68 69 6e 20 61 20 66 65 77 20 73 65 63 6f 6e 64 73 2c 20 69 | failures.within.a.few.seconds,.i |
| 110500 | 73 20 64 65 74 65 63 74 65 64 2c 20 74 68 65 20 6f 66 66 65 6e 64 69 6e 67 20 49 50 20 69 73 20 | s.detected,.the.offending.IP.is. |
| 110520 | 62 6c 6f 63 6b 65 64 2e 20 4f 66 66 65 6e 64 65 72 73 20 61 72 65 20 75 6e 62 6c 6f 63 6b 65 64 | blocked..Offenders.are.unblocked |
| 110540 | 20 61 66 74 65 72 20 61 20 73 65 74 20 69 6e 74 65 72 76 61 6c 2e 00 50 72 6f 74 6f 63 6f 6c 20 | .after.a.set.interval..Protocol. |
| 110560 | 66 6f 72 20 77 68 69 63 68 20 65 78 70 65 63 74 20 65 6e 74 72 69 65 73 20 6e 65 65 64 20 74 6f | for.which.expect.entries.need.to |
| 110580 | 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 64 2e 00 50 72 6f 74 6f 63 6f 6c 73 00 50 72 6f 74 | .be.synchronized..Protocols.Prot |
| 1105a0 | 6f 63 6f 6c 73 20 61 72 65 3a 20 74 63 70 2c 20 73 63 74 70 2c 20 64 63 63 70 2c 20 75 64 70 2c | ocols.are:.tcp,.sctp,.dccp,.udp, |
| 1105c0 | 20 69 63 6d 70 20 61 6e 64 20 69 70 76 36 2d 69 63 6d 70 2e 00 50 72 6f 76 69 64 65 20 54 46 54 | .icmp.and.ipv6-icmp..Provide.TFT |
| 1105e0 | 50 20 73 65 72 76 65 72 20 6c 69 73 74 65 6e 69 6e 67 20 6f 6e 20 62 6f 74 68 20 49 50 76 34 20 | P.server.listening.on.both.IPv4. |
| 110600 | 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 60 60 31 39 32 2e 30 2e 32 2e 31 60 60 | and.IPv6.addresses.``192.0.2.1`` |
| 110620 | 20 61 6e 64 20 60 60 32 30 30 31 3a 64 62 38 3a 3a 31 60 60 20 73 65 72 76 69 6e 67 20 74 68 65 | .and.``2001:db8::1``.serving.the |
| 110640 | 20 63 6f 6e 74 65 6e 74 20 66 72 6f 6d 20 60 60 2f 63 6f 6e 66 69 67 2f 74 66 74 70 62 6f 6f 74 | .content.from.``/config/tftpboot |
| 110660 | 60 60 2e 20 55 70 6c 6f 61 64 69 6e 67 20 76 69 61 20 54 46 54 50 20 74 6f 20 74 68 69 73 20 73 | ``..Uploading.via.TFTP.to.this.s |
| 110680 | 65 72 76 65 72 20 69 73 20 64 69 73 61 62 6c 65 64 2e 00 50 72 6f 76 69 64 65 20 61 20 49 50 76 | erver.is.disabled..Provide.a.IPv |
| 1106a0 | 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 | 4.or.IPv6.address.group.descript |
| 1106c0 | 69 6f 6e 00 50 72 6f 76 69 64 65 20 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 6f | ion.Provide.a.IPv4.or.IPv6.netwo |
| 1106e0 | 72 6b 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 | rk.group.description..Provide.a. |
| 110700 | 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 65 61 63 68 20 72 75 6c 65 2e 00 50 72 6f 76 69 | description.for.each.rule..Provi |
| 110720 | 64 65 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 74 68 65 20 66 6c 6f 77 20 74 61 62 | de.a.description.to.the.flow.tab |
| 110740 | 6c 65 2e 00 50 72 6f 76 69 64 65 20 61 20 64 6f 6d 61 69 6e 20 67 72 6f 75 70 20 64 65 73 63 72 | le..Provide.a.domain.group.descr |
| 110760 | 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 6d 61 63 20 67 72 6f 75 70 20 64 65 73 63 | iption..Provide.a.mac.group.desc |
| 110780 | 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 70 6f 72 74 20 67 72 6f 75 70 20 64 65 | ription..Provide.a.port.group.de |
| 1107a0 | 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 72 75 6c 65 2d 73 65 74 20 64 65 | scription..Provide.a.rule-set.de |
| 1107c0 | 73 63 72 69 70 74 69 6f 6e 20 74 6f 20 61 20 63 75 73 74 6f 6d 20 66 69 72 65 77 61 6c 6c 20 63 | scription.to.a.custom.firewall.c |
| 1107e0 | 68 61 69 6e 2e 00 50 72 6f 76 69 64 65 20 61 20 72 75 6c 65 2d 73 65 74 20 64 65 73 63 72 69 70 | hain..Provide.a.rule-set.descrip |
| 110800 | 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 20 61 6e 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 | tion..Provide.an.IPv4.or.IPv6.ne |
| 110820 | 74 77 6f 72 6b 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 50 72 6f 76 69 64 65 | twork.group.description..Provide |
| 110840 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 67 72 6f 75 70 20 64 65 73 63 72 69 70 74 69 6f 6e 00 | .an.interface.group.description. |
| 110860 | 50 72 6f 76 69 64 65 72 20 2d 20 43 75 73 74 6f 6d 65 72 00 50 72 6f 76 69 64 65 73 20 61 20 62 | Provider.-.Customer.Provides.a.b |
| 110880 | 61 63 6b 62 6f 6e 65 20 61 72 65 61 20 63 6f 68 65 72 65 6e 63 65 20 62 79 20 76 69 72 74 75 61 | ackbone.area.coherence.by.virtua |
| 1108a0 | 6c 20 6c 69 6e 6b 20 65 73 74 61 62 6c 69 73 68 6d 65 6e 74 2e 00 50 72 6f 76 69 64 65 73 20 61 | l.link.establishment..Provides.a |
| 1108c0 | 20 70 65 72 2d 64 65 76 69 63 65 20 63 6f 6e 74 72 6f 6c 20 74 6f 20 65 6e 61 62 6c 65 2f 64 69 | .per-device.control.to.enable/di |
| 1108e0 | 73 61 62 6c 65 20 74 68 65 20 74 68 72 65 61 64 65 64 20 6d 6f 64 65 20 66 6f 72 20 61 6c 6c 20 | sable.the.threaded.mode.for.all. |
| 110900 | 74 68 65 20 4e 41 50 49 20 69 6e 73 74 61 6e 63 65 73 20 6f 66 20 74 68 65 20 67 69 76 65 6e 20 | the.NAPI.instances.of.the.given. |
| 110920 | 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 2c 20 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 | network.device,.without.the.need |
| 110940 | 20 66 6f 72 20 61 20 64 65 76 69 63 65 20 75 70 2f 64 6f 77 6e 2e 00 50 72 6f 78 79 20 61 75 74 | .for.a.device.up/down..Proxy.aut |
| 110960 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 74 68 6f 64 2c 20 63 75 72 72 65 6e 74 6c 79 20 6f 6e | hentication.method,.currently.on |
| 110980 | 6c 79 20 4c 44 41 50 20 69 73 20 73 75 70 70 6f 72 74 65 64 2e 00 50 73 65 75 64 6f 20 45 74 68 | ly.LDAP.is.supported..Pseudo.Eth |
| 1109a0 | 65 72 6e 65 74 2f 4d 41 43 56 4c 41 4e 20 6f 70 74 69 6f 6e 73 00 50 73 65 75 64 6f 2d 45 74 68 | ernet/MACVLAN.options.Pseudo-Eth |
| 1109c0 | 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 6e 6f 74 20 62 65 20 72 65 61 63 | ernet.interfaces.can.not.be.reac |
| 1109e0 | 68 65 64 20 66 72 6f 6d 20 79 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 68 6f 73 74 2e 20 54 68 69 | hed.from.your.internal.host..Thi |
| 110a00 | 73 20 6d 65 61 6e 73 20 74 68 61 74 20 79 6f 75 20 63 61 6e 20 6e 6f 74 20 74 72 79 20 74 6f 20 | s.means.that.you.can.not.try.to. |
| 110a20 | 70 69 6e 67 20 61 20 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 | ping.a.Pseudo-Ethernet.interface |
| 110a40 | 20 66 72 6f 6d 20 74 68 65 20 68 6f 73 74 20 73 79 73 74 65 6d 20 6f 6e 20 77 68 69 63 68 20 69 | .from.the.host.system.on.which.i |
| 110a60 | 74 20 69 73 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 70 69 6e 67 20 77 69 6c 6c 20 62 65 20 6c | t.is.defined..The.ping.will.be.l |
| 110a80 | 6f 73 74 2e 00 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 20 | ost..Pseudo-Ethernet.interfaces. |
| 110aa0 | 6d 61 79 20 6e 6f 74 20 77 6f 72 6b 20 69 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 77 68 69 | may.not.work.in.environments.whi |
| 110ac0 | 63 68 20 65 78 70 65 63 74 20 61 20 3a 61 62 62 72 3a 60 4e 49 43 20 28 4e 65 74 77 6f 72 6b 20 | ch.expect.a.:abbr:`NIC.(Network. |
| 110ae0 | 49 6e 74 65 72 66 61 63 65 20 43 61 72 64 29 60 20 74 6f 20 6f 6e 6c 79 20 68 61 76 65 20 61 20 | Interface.Card)`.to.only.have.a. |
| 110b00 | 73 69 6e 67 6c 65 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 61 70 70 6c 69 65 73 20 74 6f 3a | single.address..This.applies.to: |
| 110b20 | 20 2d 20 56 4d 77 61 72 65 20 6d 61 63 68 69 6e 65 73 20 75 73 69 6e 67 20 64 65 66 61 75 6c 74 | .-.VMware.machines.using.default |
| 110b40 | 20 73 65 74 74 69 6e 67 73 20 2d 20 4e 65 74 77 6f 72 6b 20 73 77 69 74 63 68 65 73 20 77 69 74 | .settings.-.Network.switches.wit |
| 110b60 | 68 20 73 65 63 75 72 69 74 79 20 73 65 74 74 69 6e 67 73 20 61 6c 6c 6f 77 69 6e 67 20 6f 6e 6c | h.security.settings.allowing.onl |
| 110b80 | 79 20 61 20 73 69 6e 67 6c 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 2d 20 78 44 53 4c 20 6d 6f | y.a.single.MAC.address.-.xDSL.mo |
| 110ba0 | 64 65 6d 73 20 74 68 61 74 20 74 72 79 20 74 6f 20 6c 65 61 72 6e 20 74 68 65 20 4d 41 43 20 61 | dems.that.try.to.learn.the.MAC.a |
| 110bc0 | 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 4e 49 43 00 50 73 65 75 64 6f 2d 45 74 68 65 72 6e 65 | ddress.of.the.NIC.Pseudo-Etherne |
| 110be0 | 74 20 6f 72 20 4d 41 43 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 73 | t.or.MACVLAN.interfaces.can.be.s |
| 110c00 | 65 65 6e 20 61 73 20 73 75 62 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 72 65 67 75 6c 61 72 20 | een.as.subinterfaces.to.regular. |
| 110c20 | 65 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2e 20 45 61 63 68 20 61 6e 64 20 65 76 | ethernet.interfaces..Each.and.ev |
| 110c40 | 65 72 79 20 73 75 62 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 72 65 61 74 65 64 20 61 20 64 69 | ery.subinterface.is.created.a.di |
| 110c60 | 66 66 65 72 65 6e 74 20 6d 65 64 69 61 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 20 28 4d 41 | fferent.media.access.control.(MA |
| 110c80 | 43 29 20 61 64 64 72 65 73 73 2c 20 66 6f 72 20 61 20 73 69 6e 67 6c 65 20 70 68 79 73 69 63 61 | C).address,.for.a.single.physica |
| 110ca0 | 6c 20 45 74 68 65 72 6e 65 74 20 70 6f 72 74 2e 20 50 73 65 75 64 6f 2d 20 45 74 68 65 72 6e 65 | l.Ethernet.port..Pseudo-.Etherne |
| 110cc0 | 74 20 69 6e 74 65 72 66 61 63 65 73 20 68 61 76 65 20 6d 6f 73 74 20 6f 66 20 74 68 65 69 72 20 | t.interfaces.have.most.of.their. |
| 110ce0 | 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 6e 20 76 69 72 74 75 61 6c 69 7a 65 64 20 65 6e 76 69 72 | application.in.virtualized.envir |
| 110d00 | 6f 6e 6d 65 6e 74 73 2c 00 50 75 62 6c 69 73 68 20 61 20 70 6f 72 74 20 66 6f 72 20 74 68 65 20 | onments,.Publish.a.port.for.the. |
| 110d20 | 63 6f 6e 74 61 69 6e 65 72 2e 00 50 75 6c 6c 20 61 20 6e 65 77 20 69 6d 61 67 65 20 66 6f 72 20 | container..Pull.a.new.image.for. |
| 110d40 | 63 6f 6e 74 61 69 6e 65 72 00 51 69 6e 51 20 28 38 30 32 2e 31 61 64 29 00 51 6f 53 00 51 75 65 | container.QinQ.(802.1ad).QoS.Que |
| 110d60 | 75 65 20 73 69 7a 65 20 66 6f 72 20 6c 69 73 74 65 6e 69 6e 67 20 74 6f 20 6c 6f 63 61 6c 20 63 | ue.size.for.listening.to.local.c |
| 110d80 | 6f 6e 6e 74 72 61 63 6b 20 65 76 65 6e 74 73 20 69 6e 20 4d 42 2e 00 51 75 65 75 65 20 73 69 7a | onntrack.events.in.MB..Queue.siz |
| 110da0 | 65 20 66 6f 72 20 73 79 6e 63 69 6e 67 20 63 6f 6e 6e 74 72 61 63 6b 20 65 6e 74 72 69 65 73 20 | e.for.syncing.conntrack.entries. |
| 110dc0 | 69 6e 20 4d 42 2e 00 51 75 6f 74 65 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 73 69 64 65 | in.MB..Quotes.can.be.used.inside |
| 110de0 | 20 70 61 72 61 6d 65 74 65 72 20 76 61 6c 75 65 73 20 62 79 20 72 65 70 6c 61 63 69 6e 67 20 61 | .parameter.values.by.replacing.a |
| 110e00 | 6c 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 74 65 72 73 20 77 69 74 68 20 74 68 65 20 73 74 72 | ll.quote.characters.with.the.str |
| 110e20 | 69 6e 67 20 60 60 26 71 75 6f 74 3b 60 60 2e 20 54 68 65 79 20 77 69 6c 6c 20 62 65 20 72 65 70 | ing.``"``..They.will.be.rep |
| 110e40 | 6c 61 63 65 64 20 77 69 74 68 20 6c 69 74 65 72 61 6c 20 71 75 6f 74 65 20 63 68 61 72 61 63 74 | laced.with.literal.quote.charact |
| 110e60 | 65 72 73 20 77 68 65 6e 20 67 65 6e 65 72 61 74 69 6e 67 20 64 68 63 70 64 2e 63 6f 6e 66 2e 00 | ers.when.generating.dhcpd.conf.. |
| 110e80 | 52 31 20 68 61 73 20 31 39 32 2e 30 2e 32 2e 31 2f 32 34 20 26 20 32 30 30 31 3a 64 62 38 3a 3a | R1.has.192.0.2.1/24.&.2001:db8:: |
| 110ea0 | 31 2f 36 34 00 52 31 20 69 73 20 6d 61 6e 61 67 65 64 20 74 68 72 6f 75 67 68 20 61 6e 20 6f 75 | 1/64.R1.is.managed.through.an.ou |
| 110ec0 | 74 2d 6f 66 2d 62 61 6e 64 20 6e 65 74 77 6f 72 6b 20 74 68 61 74 20 72 65 73 69 64 65 73 20 69 | t-of-band.network.that.resides.i |
| 110ee0 | 6e 20 56 52 46 20 60 60 6d 67 6d 74 60 60 00 52 31 3a 00 52 32 20 68 61 73 20 31 39 32 2e 30 2e | n.VRF.``mgmt``.R1:.R2.has.192.0. |
| 110f00 | 32 2e 32 2f 32 34 20 26 20 32 30 30 31 3a 64 62 38 3a 3a 32 2f 36 34 00 52 32 3a 00 52 41 44 49 | 2.2/24.&.2001:db8::2/64.R2:.RADI |
| 110f20 | 55 53 00 52 41 44 49 55 53 20 53 65 74 75 70 00 52 41 44 49 55 53 20 61 64 76 61 6e 63 65 64 20 | US.RADIUS.Setup.RADIUS.advanced. |
| 110f40 | 66 65 61 74 75 72 65 73 00 52 41 44 49 55 53 20 61 64 76 61 6e 63 65 64 20 6f 70 74 69 6f 6e 73 | features.RADIUS.advanced.options |
| 110f60 | 00 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 00 52 41 44 49 55 53 20 62 61 | .RADIUS.authentication.RADIUS.ba |
| 110f80 | 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 61 74 74 72 69 62 75 74 65 00 52 41 44 49 55 53 | ndwidth.shaping.attribute.RADIUS |
| 110fa0 | 20 70 72 6f 76 69 64 65 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 69 6e 20 74 68 | .provides.the.IP.addresses.in.th |
| 110fc0 | 65 20 65 78 61 6d 70 6c 65 20 61 62 6f 76 65 20 76 69 61 20 46 72 61 6d 65 64 2d 49 50 2d 41 64 | e.example.above.via.Framed-IP-Ad |
| 110fe0 | 64 72 65 73 73 2e 00 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 74 20 60 60 31 39 32 2e 31 36 | dress..RADIUS.server.at.``192.16 |
| 111000 | 38 2e 33 2e 31 30 60 60 20 77 69 74 68 20 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 60 60 56 79 | 8.3.10``.with.shared-secret.``Vy |
| 111020 | 4f 53 50 61 73 73 77 6f 72 64 60 60 00 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 63 6f 75 6c | OSPassword``.RADIUS.servers.coul |
| 111040 | 64 20 62 65 20 68 61 72 64 65 6e 65 64 20 62 79 20 6f 6e 6c 79 20 61 6c 6c 6f 77 69 6e 67 20 63 | d.be.hardened.by.only.allowing.c |
| 111060 | 65 72 74 61 69 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 2e 20 | ertain.IP.addresses.to.connect.. |
| 111080 | 41 73 20 6f 66 20 74 68 69 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 | As.of.this.the.source.address.of |
| 1110a0 | 20 65 61 63 68 20 52 41 44 49 55 53 20 71 75 65 72 79 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 | .each.RADIUS.query.can.be.config |
| 1110c0 | 75 72 65 64 2e 00 52 41 44 49 55 53 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 00 52 45 51 20 | ured..RADIUS.source.address.REQ. |
| 1110e0 | 32 3a 20 41 20 43 47 4e 20 6d 75 73 74 20 68 61 76 65 20 61 20 64 65 66 61 75 6c 74 20 22 49 50 | 2:.A.CGN.must.have.a.default."IP |
| 111100 | 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 69 6e 67 22 20 62 65 68 61 76 69 6f 72 20 6f 66 20 22 50 | .address.pooling".behavior.of."P |
| 111120 | 61 69 72 65 64 22 2e 20 43 47 4e 20 6d 75 73 74 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 65 78 | aired"..CGN.must.use.the.same.ex |
| 111140 | 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 6d 61 70 70 69 6e 67 20 66 6f 72 20 61 6c | ternal.IP.address.mapping.for.al |
| 111160 | 6c 20 73 65 73 73 69 6f 6e 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 73 | l.sessions.associated.with.the.s |
| 111180 | 61 6d 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 2c 20 62 65 20 74 68 65 79 | ame.internal.IP.address,.be.they |
| 1111a0 | 20 54 43 50 2c 20 55 44 50 2c 20 49 43 4d 50 2c 20 73 6f 6d 65 74 68 69 6e 67 20 65 6c 73 65 2c | .TCP,.UDP,.ICMP,.something.else, |
| 1111c0 | 20 6f 72 20 61 20 6d 69 78 20 6f 66 20 64 69 66 66 65 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 73 | .or.a.mix.of.different.protocols |
| 1111e0 | 2e 00 52 45 51 20 33 3a 20 54 68 65 20 43 47 4e 20 66 75 6e 63 74 69 6f 6e 20 73 68 6f 75 6c 64 | ..REQ.3:.The.CGN.function.should |
| 111200 | 20 6e 6f 74 20 68 61 76 65 20 61 6e 79 20 6c 69 6d 69 74 61 74 69 6f 6e 73 20 6f 6e 20 74 68 65 | .not.have.any.limitations.on.the |
| 111220 | 20 73 69 7a 65 20 6f 72 20 74 68 65 20 63 6f 6e 74 69 67 75 69 74 79 20 6f 66 20 74 68 65 20 65 | .size.or.the.contiguity.of.the.e |
| 111240 | 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 2e 00 52 45 51 20 34 3a 20 41 20 43 | xternal.address.pool..REQ.4:.A.C |
| 111260 | 47 4e 20 6d 75 73 74 20 73 75 70 70 6f 72 74 20 6c 69 6d 69 74 69 6e 67 20 74 68 65 20 6e 75 6d | GN.must.support.limiting.the.num |
| 111280 | 62 65 72 20 6f 66 20 65 78 74 65 72 6e 61 6c 20 70 6f 72 74 73 20 28 6f 72 2c 20 65 71 75 69 76 | ber.of.external.ports.(or,.equiv |
| 1112a0 | 61 6c 65 6e 74 6c 79 2c 20 22 69 64 65 6e 74 69 66 69 65 72 73 22 20 66 6f 72 20 49 43 4d 50 29 | alently,."identifiers".for.ICMP) |
| 1112c0 | 20 74 68 61 74 20 61 72 65 20 61 73 73 69 67 6e 65 64 20 70 65 72 20 73 75 62 73 63 72 69 62 65 | .that.are.assigned.per.subscribe |
| 1112e0 | 72 00 52 45 53 54 00 52 46 43 20 33 37 36 38 20 63 72 65 61 74 65 73 20 61 20 76 69 72 74 75 61 | r.REST.RFC.3768.creates.a.virtua |
| 111300 | 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 70 70 6c | l.interface..If.you.want.to.appl |
| 111320 | 79 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 20 72 75 6c 65 20 74 6f 20 74 68 | y.the.destination.NAT.rule.to.th |
| 111340 | 65 20 74 72 61 66 66 69 63 20 73 65 6e 74 20 74 6f 20 74 68 65 20 76 69 72 74 75 61 6c 20 4d 41 | e.traffic.sent.to.the.virtual.MA |
| 111360 | 43 2c 20 73 65 74 20 74 68 65 20 63 72 65 61 74 65 64 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 | C,.set.the.created.virtual.inter |
| 111380 | 66 61 63 65 20 61 73 20 60 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 2e 00 52 46 43 | face.as.`inbound-interface`..RFC |
| 1113a0 | 20 33 37 36 38 20 64 65 66 69 6e 65 73 20 61 20 76 69 72 74 75 61 6c 20 4d 41 43 20 61 64 64 72 | .3768.defines.a.virtual.MAC.addr |
| 1113c0 | 65 73 73 20 74 6f 20 65 61 63 68 20 56 52 52 50 20 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 2e | ess.to.each.VRRP.virtual.router. |
| 1113e0 | 20 54 68 69 73 20 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 20 4d 41 43 20 61 64 64 72 65 73 73 | .This.virtual.router.MAC.address |
| 111400 | 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 69 6e 20 61 | .will.be.used.as.the.source.in.a |
| 111420 | 6c 6c 20 70 65 72 69 6f 64 69 63 20 56 52 52 50 20 6d 65 73 73 61 67 65 73 20 73 65 6e 74 20 62 | ll.periodic.VRRP.messages.sent.b |
| 111440 | 79 20 74 68 65 20 61 63 74 69 76 65 20 6e 6f 64 65 2e 20 57 68 65 6e 20 74 68 65 20 72 66 63 33 | y.the.active.node..When.the.rfc3 |
| 111460 | 37 36 38 2d 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 2c | 768-compatibility.option.is.set, |
| 111480 | 20 61 20 6e 65 77 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 72 65 61 74 65 64 | .a.new.VRRP.interface.is.created |
| 1114a0 | 2c 20 74 6f 20 77 68 69 63 68 20 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 | ,.to.which.the.MAC.address.and.t |
| 1114c0 | 68 65 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 61 75 74 6f 6d 61 74 | he.virtual.IP.address.is.automat |
| 1114e0 | 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 2e 00 52 46 43 20 38 36 38 20 74 69 6d 65 20 73 65 | ically.assigned..RFC.868.time.se |
| 111500 | 72 76 65 72 20 49 50 76 34 20 61 64 64 72 65 73 73 00 52 49 50 00 52 49 50 76 31 20 61 73 20 64 | rver.IPv4.address.RIP.RIPv1.as.d |
| 111520 | 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 30 35 38 60 00 52 49 50 76 32 20 61 73 | escribed.in.:rfc:`1058`.RIPv2.as |
| 111540 | 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 34 35 33 60 00 52 50 4b 49 00 52 | .described.in.:rfc:`2453`.RPKI.R |
| 111560 | 53 2d 53 65 72 76 65 72 20 2d 20 52 53 2d 43 6c 69 65 6e 74 00 52 53 41 20 63 61 6e 20 62 65 20 | S-Server.-.RS-Client.RSA.can.be. |
| 111580 | 75 73 65 64 20 66 6f 72 20 73 65 72 76 69 63 65 73 20 73 75 63 68 20 61 73 20 6b 65 79 20 65 78 | used.for.services.such.as.key.ex |
| 1115a0 | 63 68 61 6e 67 65 73 20 61 6e 64 20 66 6f 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 70 75 72 70 6f | changes.and.for.encryption.purpo |
| 1115c0 | 73 65 73 2e 20 54 6f 20 6d 61 6b 65 20 49 50 53 65 63 20 77 6f 72 6b 20 77 69 74 68 20 64 79 6e | ses..To.make.IPSec.work.with.dyn |
| 1115e0 | 61 6d 69 63 20 61 64 64 72 65 73 73 20 6f 6e 20 6f 6e 65 2f 62 6f 74 68 20 73 69 64 65 73 2c 20 | amic.address.on.one/both.sides,. |
| 111600 | 77 65 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 75 73 65 20 52 53 41 20 6b 65 79 73 20 66 6f 72 | we.will.have.to.use.RSA.keys.for |
| 111620 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 65 79 20 61 72 65 20 76 65 72 79 20 66 | .authentication..They.are.very.f |
| 111640 | 61 73 74 20 61 6e 64 20 65 61 73 79 20 74 6f 20 73 65 74 75 70 2e 00 52 53 41 2d 4b 65 79 73 00 | ast.and.easy.to.setup..RSA-Keys. |
| 111660 | 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 00 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 63 6f 75 6c | Random-Detect.Random-Detect.coul |
| 111680 | 64 20 62 65 20 75 73 65 66 75 6c 20 66 6f 72 20 68 65 61 76 79 20 74 72 61 66 66 69 63 2e 20 4f | d.be.useful.for.heavy.traffic..O |
| 1116a0 | 6e 65 20 75 73 65 20 6f 66 20 74 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 6d 69 67 68 74 20 62 | ne.use.of.this.algorithm.might.b |
| 1116c0 | 65 20 74 6f 20 70 72 65 76 65 6e 74 20 61 20 62 61 63 6b 62 6f 6e 65 20 6f 76 65 72 6c 6f 61 64 | e.to.prevent.a.backbone.overload |
| 1116e0 | 2e 20 42 75 74 20 6f 6e 6c 79 20 66 6f 72 20 54 43 50 20 28 62 65 63 61 75 73 65 20 64 72 6f 70 | ..But.only.for.TCP.(because.drop |
| 111700 | 70 65 64 20 70 61 63 6b 65 74 73 20 63 6f 75 6c 64 20 62 65 20 72 65 74 72 61 6e 73 6d 69 74 74 | ped.packets.could.be.retransmitt |
| 111720 | 65 64 29 2c 20 6e 6f 74 20 66 6f 72 20 55 44 50 2e 00 52 61 6e 67 65 20 69 73 20 31 20 74 6f 20 | ed),.not.for.UDP..Range.is.1.to. |
| 111740 | 32 35 35 2c 20 64 65 66 61 75 6c 74 20 69 73 20 31 2e 00 52 61 6e 67 65 20 69 73 20 31 20 74 6f | 255,.default.is.1..Range.is.1.to |
| 111760 | 20 33 30 30 2c 20 64 65 66 61 75 6c 74 20 69 73 20 31 30 2e 00 52 61 74 65 20 43 6f 6e 74 72 6f | .300,.default.is.10..Rate.Contro |
| 111780 | 6c 00 52 61 74 65 20 6c 69 6d 69 74 00 52 61 74 65 20 6c 69 6d 69 74 20 74 68 65 20 64 6f 77 6e | l.Rate.limit.Rate.limit.the.down |
| 1117a0 | 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 60 3c 75 73 65 72 3e 60 20 74 6f 20 60 | load.bandwidth.for.`<user>`.to.` |
| 1117c0 | 3c 62 61 6e 64 77 69 64 74 68 3e 60 20 6b 62 69 74 2f 73 2e 00 52 61 74 65 20 6c 69 6d 69 74 20 | <bandwidth>`.kbit/s..Rate.limit. |
| 1117e0 | 74 68 65 20 75 70 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 60 3c 75 73 65 72 3e | the.upload.bandwidth.for.`<user> |
| 111800 | 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 64 74 68 3e 60 20 6b 62 69 74 2f 73 00 52 61 74 65 20 6c | `.to.`<bandwidth>`.kbit/s.Rate.l |
| 111820 | 69 6d 69 74 20 74 68 65 20 75 70 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 60 3c | imit.the.upload.bandwidth.for.`< |
| 111840 | 75 73 65 72 3e 60 20 74 6f 20 60 3c 62 61 6e 64 77 69 64 74 68 3e 60 20 6b 62 69 74 2f 73 2e 00 | user>`.to.`<bandwidth>`.kbit/s.. |
| 111860 | 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 69 73 20 61 20 43 50 55 2d 66 72 69 65 6e 64 6c 79 20 70 | Rate-Control.is.a.CPU-friendly.p |
| 111880 | 6f 6c 69 63 79 2e 20 59 6f 75 20 6d 69 67 68 74 20 63 6f 6e 73 69 64 65 72 20 75 73 69 6e 67 20 | olicy..You.might.consider.using. |
| 1118a0 | 69 74 20 77 68 65 6e 20 79 6f 75 20 6a 75 73 74 20 73 69 6d 70 6c 79 20 77 61 6e 74 20 74 6f 20 | it.when.you.just.simply.want.to. |
| 1118c0 | 73 6c 6f 77 20 74 72 61 66 66 69 63 20 64 6f 77 6e 2e 00 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 | slow.traffic.down..Rate-Control. |
| 1118e0 | 69 73 20 61 20 63 6c 61 73 73 6c 65 73 73 20 70 6f 6c 69 63 79 20 74 68 61 74 20 6c 69 6d 69 74 | is.a.classless.policy.that.limit |
| 111900 | 73 20 74 68 65 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 74 6f 20 61 20 73 65 74 20 72 61 74 65 2e | s.the.packet.flow.to.a.set.rate. |
| 111920 | 20 49 74 20 69 73 20 61 20 70 75 72 65 20 73 68 61 70 65 72 2c 20 69 74 20 64 6f 65 73 20 6e 6f | .It.is.a.pure.shaper,.it.does.no |
| 111940 | 74 20 73 63 68 65 64 75 6c 65 20 74 72 61 66 66 69 63 2e 20 54 72 61 66 66 69 63 20 69 73 20 66 | t.schedule.traffic..Traffic.is.f |
| 111960 | 69 6c 74 65 72 65 64 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 65 78 70 65 6e 64 69 74 75 72 65 | iltered.based.on.the.expenditure |
| 111980 | 20 6f 66 20 74 6f 6b 65 6e 73 2e 20 54 6f 6b 65 6e 73 20 72 6f 75 67 68 6c 79 20 63 6f 72 72 65 | .of.tokens..Tokens.roughly.corre |
| 1119a0 | 73 70 6f 6e 64 20 74 6f 20 62 79 74 65 73 2e 00 52 61 77 20 50 61 72 61 6d 65 74 65 72 73 00 52 | spond.to.bytes..Raw.Parameters.R |
| 1119c0 | 61 77 20 70 61 72 61 6d 65 74 65 72 73 20 63 61 6e 20 62 65 20 70 61 73 73 65 64 20 74 6f 20 73 | aw.parameters.can.be.passed.to.s |
| 1119e0 | 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 2c 20 73 75 62 6e 65 74 20 61 6e 64 20 73 | hared-network-name,.subnet.and.s |
| 111a00 | 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 3a 00 52 65 2d 67 65 6e 65 72 61 74 65 64 20 61 20 6b 6e | tatic-mapping:.Re-generated.a.kn |
| 111a20 | 6f 77 6e 20 70 75 62 2f 70 72 69 76 61 74 65 20 6b 65 79 66 69 6c 65 20 77 68 69 63 68 20 63 61 | own.pub/private.keyfile.which.ca |
| 111a40 | 6e 20 62 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 6f 74 68 65 72 20 73 65 | n.be.used.to.connect.to.other.se |
| 111a60 | 72 76 69 63 65 73 20 28 65 2e 67 2e 20 52 50 4b 49 20 63 61 63 68 65 29 2e 00 52 65 2d 67 65 6e | rvices.(e.g..RPKI.cache)..Re-gen |
| 111a80 | 65 72 61 74 65 64 20 74 68 65 20 70 75 62 6c 69 63 2f 70 72 69 76 61 74 65 20 6b 65 79 70 6f 72 | erated.the.public/private.keypor |
| 111aa0 | 74 69 6f 6e 20 77 68 69 63 68 20 53 53 48 20 75 73 65 73 20 74 6f 20 73 65 63 75 72 65 20 63 6f | tion.which.SSH.uses.to.secure.co |
| 111ac0 | 6e 6e 65 63 74 69 6f 6e 73 2e 00 52 65 61 63 68 61 62 6c 65 20 54 69 6d 65 00 52 65 61 6c 20 73 | nnections..Reachable.Time.Real.s |
| 111ae0 | 65 72 76 65 72 00 52 65 61 6c 20 73 65 72 76 65 72 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 | erver.Real.server.IP.address.and |
| 111b00 | 20 70 6f 72 74 00 52 65 61 6c 20 73 65 72 76 65 72 20 69 73 20 61 75 74 6f 2d 65 78 63 6c 75 64 | .port.Real.server.is.auto-exclud |
| 111b20 | 65 64 20 69 66 20 70 6f 72 74 20 63 68 65 63 6b 20 77 69 74 68 20 74 68 69 73 20 73 65 72 76 65 | ed.if.port.check.with.this.serve |
| 111b40 | 72 20 66 61 69 6c 2e 00 52 65 63 65 69 76 65 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 63 6f 6e | r.fail..Receive.traffic.from.con |
| 111b60 | 6e 65 63 74 69 6f 6e 73 20 63 72 65 61 74 65 64 20 62 79 20 74 68 65 20 73 65 72 76 65 72 20 69 | nections.created.by.the.server.i |
| 111b80 | 73 20 61 6c 73 6f 20 62 61 6c 61 6e 63 65 64 2e 20 57 68 65 6e 20 74 68 65 20 6c 6f 63 61 6c 20 | s.also.balanced..When.the.local. |
| 111ba0 | 73 79 73 74 65 6d 20 73 65 6e 64 73 20 61 6e 20 41 52 50 20 52 65 71 75 65 73 74 20 74 68 65 20 | system.sends.an.ARP.Request.the. |
| 111bc0 | 62 6f 6e 64 69 6e 67 20 64 72 69 76 65 72 20 63 6f 70 69 65 73 20 61 6e 64 20 73 61 76 65 73 20 | bonding.driver.copies.and.saves. |
| 111be0 | 74 68 65 20 70 65 65 72 27 73 20 49 50 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 | the.peer's.IP.information.from.t |
| 111c00 | 68 65 20 41 52 50 20 70 61 63 6b 65 74 2e 20 57 68 65 6e 20 74 68 65 20 41 52 50 20 52 65 70 6c | he.ARP.packet..When.the.ARP.Repl |
| 111c20 | 79 20 61 72 72 69 76 65 73 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 2c 20 69 74 73 20 68 61 72 | y.arrives.from.the.peer,.its.har |
| 111c40 | 64 77 61 72 65 20 61 64 64 72 65 73 73 20 69 73 20 72 65 74 72 69 65 76 65 64 20 61 6e 64 20 74 | dware.address.is.retrieved.and.t |
| 111c60 | 68 65 20 62 6f 6e 64 69 6e 67 20 64 72 69 76 65 72 20 69 6e 69 74 69 61 74 65 73 20 61 6e 20 41 | he.bonding.driver.initiates.an.A |
| 111c80 | 52 50 20 72 65 70 6c 79 20 74 6f 20 74 68 69 73 20 70 65 65 72 20 61 73 73 69 67 6e 69 6e 67 20 | RP.reply.to.this.peer.assigning. |
| 111ca0 | 69 74 20 74 6f 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 | it.to.one.of.the.slaves.in.the.b |
| 111cc0 | 6f 6e 64 2e 20 41 20 70 72 6f 62 6c 65 6d 61 74 69 63 20 6f 75 74 63 6f 6d 65 20 6f 66 20 75 73 | ond..A.problematic.outcome.of.us |
| 111ce0 | 69 6e 67 20 41 52 50 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 66 6f 72 20 62 61 6c 61 6e 63 69 6e | ing.ARP.negotiation.for.balancin |
| 111d00 | 67 20 69 73 20 74 68 61 74 20 65 61 63 68 20 74 69 6d 65 20 74 68 61 74 20 61 6e 20 41 52 50 20 | g.is.that.each.time.that.an.ARP. |
| 111d20 | 72 65 71 75 65 73 74 20 69 73 20 62 72 6f 61 64 63 61 73 74 20 69 74 20 75 73 65 73 20 74 68 65 | request.is.broadcast.it.uses.the |
| 111d40 | 20 68 61 72 64 77 61 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 6f 6e 64 2e 20 48 | .hardware.address.of.the.bond..H |
| 111d60 | 65 6e 63 65 2c 20 70 65 65 72 73 20 6c 65 61 72 6e 20 74 68 65 20 68 61 72 64 77 61 72 65 20 61 | ence,.peers.learn.the.hardware.a |
| 111d80 | 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 62 6f 6e 64 20 61 6e 64 20 74 68 65 20 62 61 6c 61 6e | ddress.of.the.bond.and.the.balan |
| 111da0 | 63 69 6e 67 20 6f 66 20 72 65 63 65 69 76 65 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 61 70 73 65 | cing.of.receive.traffic.collapse |
| 111dc0 | 73 20 74 6f 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 6c 61 76 65 2e 20 54 68 69 73 20 69 73 20 | s.to.the.current.slave..This.is. |
| 111de0 | 68 61 6e 64 6c 65 64 20 62 79 20 73 65 6e 64 69 6e 67 20 75 70 64 61 74 65 73 20 28 41 52 50 20 | handled.by.sending.updates.(ARP. |
| 111e00 | 52 65 70 6c 69 65 73 29 20 74 6f 20 61 6c 6c 20 74 68 65 20 70 65 65 72 73 20 77 69 74 68 20 74 | Replies).to.all.the.peers.with.t |
| 111e20 | 68 65 69 72 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 20 61 73 73 69 67 6e 65 64 20 68 61 72 64 77 | heir.individually.assigned.hardw |
| 111e40 | 61 72 65 20 61 64 64 72 65 73 73 20 73 75 63 68 20 74 68 61 74 20 74 68 65 20 74 72 61 66 66 69 | are.address.such.that.the.traffi |
| 111e60 | 63 20 69 73 20 72 65 64 69 73 74 72 69 62 75 74 65 64 2e 20 52 65 63 65 69 76 65 20 74 72 61 66 | c.is.redistributed..Receive.traf |
| 111e80 | 66 69 63 20 69 73 20 61 6c 73 6f 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 77 68 65 6e 20 61 | fic.is.also.redistributed.when.a |
| 111ea0 | 20 6e 65 77 20 73 6c 61 76 65 20 69 73 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 62 6f 6e 64 20 | .new.slave.is.added.to.the.bond. |
| 111ec0 | 61 6e 64 20 77 68 65 6e 20 61 6e 20 69 6e 61 63 74 69 76 65 20 73 6c 61 76 65 20 69 73 20 72 65 | and.when.an.inactive.slave.is.re |
| 111ee0 | 2d 61 63 74 69 76 61 74 65 64 2e 20 54 68 65 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 69 73 20 | -activated..The.receive.load.is. |
| 111f00 | 64 69 73 74 72 69 62 75 74 65 64 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 20 28 72 6f 75 6e 64 20 | distributed.sequentially.(round. |
| 111f20 | 72 6f 62 69 6e 29 20 61 6d 6f 6e 67 20 74 68 65 20 67 72 6f 75 70 20 6f 66 20 68 69 67 68 65 73 | robin).among.the.group.of.highes |
| 111f40 | 74 20 73 70 65 65 64 20 73 6c 61 76 65 73 20 69 6e 20 74 68 65 20 62 6f 6e 64 2e 00 52 65 63 65 | t.speed.slaves.in.the.bond..Rece |
| 111f60 | 69 76 65 64 20 52 41 44 49 55 53 20 61 74 74 72 69 62 75 74 65 73 20 68 61 76 65 20 61 20 68 69 | ived.RADIUS.attributes.have.a.hi |
| 111f80 | 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 74 68 61 6e 20 70 61 72 61 6d 65 74 65 72 73 20 64 65 | gher.priority.than.parameters.de |
| 111fa0 | 66 69 6e 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 | fined.within.the.CLI.configurati |
| 111fc0 | 6f 6e 2c 20 72 65 66 65 72 20 74 6f 20 74 68 65 20 65 78 70 6c 61 6e 61 74 69 6f 6e 20 62 65 6c | on,.refer.to.the.explanation.bel |
| 111fe0 | 6f 77 2e 00 52 65 63 6f 6d 6d 65 6e 64 65 64 20 66 6f 72 20 6c 61 72 67 65 72 20 69 6e 73 74 61 | ow..Recommended.for.larger.insta |
| 112000 | 6c 6c 61 74 69 6f 6e 73 2e 00 52 65 63 6f 72 64 20 74 79 70 65 73 00 52 65 64 69 72 65 63 74 20 | llations..Record.types.Redirect. |
| 112020 | 48 54 54 50 20 74 6f 20 48 54 54 50 53 00 52 65 64 69 72 65 63 74 20 4d 69 63 72 6f 73 6f 66 74 | HTTP.to.HTTPS.Redirect.Microsoft |
| 112040 | 20 52 44 50 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 28 | .RDP.traffic.from.the.internal.( |
| 112060 | 4c 41 4e 2c 20 70 72 69 76 61 74 65 29 20 6e 65 74 77 6f 72 6b 20 76 69 61 20 3a 72 65 66 3a 60 | LAN,.private).network.via.:ref:` |
| 112080 | 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 69 6e 20 72 75 6c 65 20 31 31 30 20 74 6f 20 | destination-nat`.in.rule.110.to. |
| 1120a0 | 74 68 65 20 69 6e 74 65 72 6e 61 6c 2c 20 70 72 69 76 61 74 65 20 68 6f 73 74 20 31 39 32 2e 30 | the.internal,.private.host.192.0 |
| 1120c0 | 2e 32 2e 34 30 2e 20 57 65 20 61 6c 73 6f 20 6e 65 65 64 20 61 20 3a 72 65 66 3a 60 73 6f 75 72 | .2.40..We.also.need.a.:ref:`sour |
| 1120e0 | 63 65 2d 6e 61 74 60 20 72 75 6c 65 20 31 31 30 20 66 6f 72 20 74 68 65 20 72 65 76 65 72 73 65 | ce-nat`.rule.110.for.the.reverse |
| 112100 | 20 70 61 74 68 20 6f 66 20 74 68 65 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 69 6e 74 65 72 6e | .path.of.the.traffic..The.intern |
| 112120 | 61 6c 20 6e 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 20 69 73 20 72 65 61 63 68 | al.network.192.0.2.0/24.is.reach |
| 112140 | 61 62 6c 65 20 76 69 61 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 30 2e 31 30 60 2e 00 52 65 | able.via.interface.`eth0.10`..Re |
| 112160 | 64 69 72 65 63 74 20 4d 69 63 72 6f 73 6f 66 74 20 52 44 50 20 74 72 61 66 66 69 63 20 66 72 6f | direct.Microsoft.RDP.traffic.fro |
| 112180 | 6d 20 74 68 65 20 6f 75 74 73 69 64 65 20 28 57 41 4e 2c 20 65 78 74 65 72 6e 61 6c 29 20 77 6f | m.the.outside.(WAN,.external).wo |
| 1121a0 | 72 6c 64 20 76 69 61 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 69 | rld.via.:ref:`destination-nat`.i |
| 1121c0 | 6e 20 72 75 6c 65 20 31 30 30 20 74 6f 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 2c 20 70 72 69 76 | n.rule.100.to.the.internal,.priv |
| 1121e0 | 61 74 65 20 68 6f 73 74 20 31 39 32 2e 30 2e 32 2e 34 30 2e 00 52 65 64 69 72 65 63 74 20 55 52 | ate.host.192.0.2.40..Redirect.UR |
| 112200 | 4c 20 74 6f 20 61 20 6e 65 77 20 6c 6f 63 61 74 69 6f 6e 00 52 65 64 69 73 74 72 69 62 75 74 69 | L.to.a.new.location.Redistributi |
| 112220 | 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 65 64 75 6e 64 61 6e 63 79 20 61 6e 64 20 | on.Configuration.Redundancy.and. |
| 112240 | 6c 6f 61 64 20 73 68 61 72 69 6e 67 2e 20 54 68 65 72 65 20 61 72 65 20 6d 75 6c 74 69 70 6c 65 | load.sharing..There.are.multiple |
| 112260 | 20 4e 41 54 36 36 20 64 65 76 69 63 65 73 20 61 74 20 74 68 65 20 65 64 67 65 20 6f 66 20 61 6e | .NAT66.devices.at.the.edge.of.an |
| 112280 | 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 20 74 6f 20 61 6e 6f 74 68 65 72 20 49 50 76 36 20 6e 65 | .IPv6.network.to.another.IPv6.ne |
| 1122a0 | 74 77 6f 72 6b 2e 20 54 68 65 20 70 61 74 68 20 74 68 72 6f 75 67 68 20 74 68 65 20 4e 41 54 36 | twork..The.path.through.the.NAT6 |
| 1122c0 | 36 20 64 65 76 69 63 65 20 74 6f 20 61 6e 6f 74 68 65 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b | 6.device.to.another.IPv6.network |
| 1122e0 | 20 66 6f 72 6d 73 20 61 6e 20 65 71 75 69 76 61 6c 65 6e 74 20 72 6f 75 74 65 2c 20 61 6e 64 20 | .forms.an.equivalent.route,.and. |
| 112300 | 74 72 61 66 66 69 63 20 63 61 6e 20 62 65 20 6c 6f 61 64 2d 73 68 61 72 65 64 20 6f 6e 20 74 68 | traffic.can.be.load-shared.on.th |
| 112320 | 65 73 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 73 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c | ese.NAT66.devices..In.this.case, |
| 112340 | 20 79 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 61 6d 65 20 73 6f 75 72 | .you.can.configure.the.same.sour |
| 112360 | 63 65 20 61 64 64 72 65 73 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 72 75 6c 65 73 20 6f 6e 20 | ce.address.translation.rules.on. |
| 112380 | 74 68 65 73 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 73 2c 20 73 6f 20 74 68 61 74 20 61 6e 79 | these.NAT66.devices,.so.that.any |
| 1123a0 | 20 4e 41 54 36 36 20 64 65 76 69 63 65 20 63 61 6e 20 68 61 6e 64 6c 65 20 49 50 76 36 20 74 72 | .NAT66.device.can.handle.IPv6.tr |
| 1123c0 | 61 66 66 69 63 20 62 65 74 77 65 65 6e 20 64 69 66 66 65 72 65 6e 74 20 73 69 74 65 73 2e 00 52 | affic.between.different.sites..R |
| 1123e0 | 65 67 69 73 74 65 72 20 44 4e 53 20 72 65 63 6f 72 64 20 60 60 65 78 61 6d 70 6c 65 2e 76 79 6f | egister.DNS.record.``example.vyo |
| 112400 | 73 2e 69 6f 60 60 20 6f 6e 20 44 4e 53 20 73 65 72 76 65 72 20 60 60 6e 73 31 2e 76 79 6f 73 2e | s.io``.on.DNS.server.``ns1.vyos. |
| 112420 | 69 6f 60 60 00 52 65 67 75 6c 61 72 20 56 4c 41 4e 73 20 28 38 30 32 2e 31 71 29 00 52 65 67 75 | io``.Regular.VLANs.(802.1q).Regu |
| 112440 | 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 | lar.expression.to.match.against. |
| 112460 | 61 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2e 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 | a.community-list..Regular.expres |
| 112480 | 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 20 6c 61 72 67 65 20 63 6f | sion.to.match.against.a.large.co |
| 1124a0 | 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2e 00 52 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e | mmunity.list..Regular.expression |
| 1124c0 | 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 6e 20 41 53 20 70 61 74 68 2e 20 46 6f | .to.match.against.an.AS.path..Fo |
| 1124e0 | 72 20 65 78 61 6d 70 6c 65 20 22 36 34 35 30 31 20 36 34 35 30 32 22 2e 00 52 65 67 75 6c 61 72 | r.example."64501.64502"..Regular |
| 112500 | 20 65 78 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 61 6e 20 | .expression.to.match.against.an. |
| 112520 | 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2c 20 77 68 65 72 65 20 74 | extended.community.list,.where.t |
| 112540 | 65 78 74 20 63 6f 75 6c 64 20 62 65 3a 00 52 65 6a 65 63 74 20 44 48 43 50 20 6c 65 61 73 65 73 | ext.could.be:.Reject.DHCP.leases |
| 112560 | 20 66 72 6f 6d 20 61 20 67 69 76 65 6e 20 61 64 64 72 65 73 73 20 6f 72 20 72 61 6e 67 65 2e 20 | .from.a.given.address.or.range.. |
| 112580 | 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 61 20 6d 6f 64 65 6d 20 67 69 76 65 | This.is.useful.when.a.modem.give |
| 1125a0 | 73 20 61 20 6c 6f 63 61 6c 20 49 50 20 77 68 65 6e 20 66 69 72 73 74 20 73 74 61 72 74 69 6e 67 | s.a.local.IP.when.first.starting |
| 1125c0 | 2e 00 52 65 6d 65 6d 62 65 72 20 73 6f 75 72 63 65 20 49 50 20 69 6e 20 73 65 63 6f 6e 64 73 20 | ..Remember.source.IP.in.seconds. |
| 1125e0 | 62 65 66 6f 72 65 20 72 65 73 65 74 20 74 68 65 69 72 20 73 63 6f 72 65 2e 20 54 68 65 20 64 65 | before.reset.their.score..The.de |
| 112600 | 66 61 75 6c 74 20 69 73 20 31 38 30 30 2e 00 52 65 6d 6f 74 65 20 41 63 63 65 73 73 00 52 65 6d | fault.is.1800..Remote.Access.Rem |
| 112620 | 6f 74 65 20 41 63 63 65 73 73 20 22 52 6f 61 64 57 61 72 72 69 6f 72 22 20 45 78 61 6d 70 6c 65 | ote.Access."RoadWarrior".Example |
| 112640 | 00 52 65 6d 6f 74 65 20 41 63 63 65 73 73 20 22 52 6f 61 64 57 61 72 72 69 6f 72 22 20 63 6c 69 | .Remote.Access."RoadWarrior".cli |
| 112660 | 65 6e 74 73 00 52 65 6d 6f 74 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 2d 20 41 6e 6e 6f | ents.Remote.Configuration.-.Anno |
| 112680 | 74 61 74 65 64 3a 00 52 65 6d 6f 74 65 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 52 65 6d | tated:.Remote.Configuration:.Rem |
| 1126a0 | 6f 74 65 20 48 6f 73 74 00 52 65 6d 6f 74 65 20 4c 6f 6b 69 20 70 6f 72 74 00 52 65 6d 6f 74 65 | ote.Host.Remote.Loki.port.Remote |
| 1126c0 | 20 4c 6f 6b 69 20 75 72 6c 00 52 65 6d 6f 74 65 20 55 52 4c 00 52 65 6d 6f 74 65 20 55 52 4c 20 | .Loki.url.Remote.URL.Remote.URL. |
| 1126e0 | 74 6f 20 53 70 6c 75 6e 6b 20 63 6f 6c 6c 65 63 74 6f 72 00 52 65 6d 6f 74 65 20 55 52 4c 2e 00 | to.Splunk.collector.Remote.URL.. |
| 112700 | 52 65 6d 6f 74 65 20 60 60 49 6e 66 6c 75 78 44 42 60 60 20 62 75 63 6b 65 74 20 6e 61 6d 65 00 | Remote.``InfluxDB``.bucket.name. |
| 112720 | 52 65 6d 6f 74 65 20 64 61 74 61 62 61 73 65 20 6e 61 6d 65 2e 00 52 65 6d 6f 74 65 20 70 65 65 | Remote.database.name..Remote.pee |
| 112740 | 72 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 73 65 63 6f 6e 64 20 44 | r.IP.`<address>`.of.the.second.D |
| 112760 | 48 43 50 20 73 65 72 76 65 72 20 69 6e 20 74 68 69 73 20 48 41 20 63 6c 75 73 74 65 72 2e 00 52 | HCP.server.in.this.HA.cluster..R |
| 112780 | 65 6d 6f 74 65 20 70 65 65 72 20 49 50 20 60 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 | emote.peer.IP.`<address>`.of.the |
| 1127a0 | 20 73 65 63 6f 6e 64 20 44 48 43 50 20 73 65 72 76 65 72 20 69 6e 20 74 68 69 73 20 66 61 69 6c | .second.DHCP.server.in.this.fail |
| 1127c0 | 6f 76 65 72 20 63 6c 75 73 74 65 72 2e 00 52 65 6d 6f 74 65 20 70 6f 72 74 00 52 65 6d 6f 74 65 | over.cluster..Remote.port.Remote |
| 1127e0 | 20 74 72 61 6e 73 6d 69 73 73 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 77 69 6c 6c 20 62 65 20 6d | .transmission.interval.will.be.m |
| 112800 | 75 6c 74 69 70 6c 69 65 64 20 62 79 20 74 68 69 73 20 76 61 6c 75 65 00 52 65 6e 61 6d 69 6e 67 | ultiplied.by.this.value.Renaming |
| 112820 | 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 72 66 61 63 65 73 20 62 79 20 52 41 44 49 55 53 00 52 65 | .clients.interfaces.by.RADIUS.Re |
| 112840 | 70 65 61 74 20 74 68 65 20 70 72 6f 63 65 64 75 72 65 20 6f 6e 20 74 68 65 20 6f 74 68 65 72 20 | peat.the.procedure.on.the.other. |
| 112860 | 72 6f 75 74 65 72 2e 00 52 65 70 6c 61 79 20 70 72 6f 74 65 63 74 69 6f 6e 00 52 65 71 75 65 73 | router..Replay.protection.Reques |
| 112880 | 74 20 6f 6e 6c 79 20 61 20 74 65 6d 70 6f 72 61 72 79 20 61 64 64 72 65 73 73 20 61 6e 64 20 6e | t.only.a.temporary.address.and.n |
| 1128a0 | 6f 74 20 66 6f 72 6d 20 61 6e 20 49 41 5f 4e 41 20 28 49 64 65 6e 74 69 74 79 20 41 73 73 6f 63 | ot.form.an.IA_NA.(Identity.Assoc |
| 1128c0 | 69 61 74 69 6f 6e 20 66 6f 72 20 4e 6f 6e 2d 74 65 6d 70 6f 72 61 72 79 20 41 64 64 72 65 73 73 | iation.for.Non-temporary.Address |
| 1128e0 | 65 73 29 20 70 61 72 74 6e 65 72 73 68 69 70 2e 00 52 65 71 75 65 73 74 73 20 61 72 65 20 66 6f | es).partnership..Requests.are.fo |
| 112900 | 72 77 61 72 64 65 64 20 74 68 72 6f 75 67 68 20 60 60 65 74 68 32 60 60 20 61 73 20 74 68 65 20 | rwarded.through.``eth2``.as.the. |
| 112920 | 60 75 70 73 74 72 65 61 6d 20 69 6e 74 65 72 66 61 63 65 60 00 52 65 71 75 69 72 65 20 74 68 65 | `upstream.interface`.Require.the |
| 112940 | 20 70 65 65 72 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 69 74 73 65 6c 66 20 75 73 69 | .peer.to.authenticate.itself.usi |
| 112960 | 6e 67 20 6f 6e 65 20 6f 66 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c | ng.one.of.the.following.protocol |
| 112980 | 73 3a 20 70 61 70 2c 20 63 68 61 70 2c 20 6d 73 63 68 61 70 2c 20 6d 73 63 68 61 70 2d 76 32 2e | s:.pap,.chap,.mschap,.mschap-v2. |
| 1129a0 | 00 52 65 71 75 69 72 65 6d 65 6e 74 73 00 52 65 71 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 65 6e | .Requirements.Requirements.to.en |
| 1129c0 | 61 62 6c 65 20 73 79 6e 70 72 6f 78 79 3a 00 52 65 71 75 69 72 65 6d 65 6e 74 73 3a 00 52 65 73 | able.synproxy:.Requirements:.Res |
| 1129e0 | 65 72 76 65 64 20 50 6f 72 74 73 3a 20 41 73 73 75 6d 65 20 31 30 32 34 20 70 6f 72 74 73 20 61 | erved.Ports:.Assume.1024.ports.a |
| 112a00 | 72 65 20 72 65 73 65 72 76 65 64 20 66 6f 72 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 73 65 72 76 69 | re.reserved.for.well-known.servi |
| 112a20 | 63 65 73 20 61 6e 64 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 70 75 72 70 6f 73 65 73 2e | ces.and.administrative.purposes. |
| 112a40 | 00 52 65 73 65 74 00 52 65 73 65 74 20 4f 70 65 6e 56 50 4e 00 52 65 73 65 74 20 61 6c 6c 20 73 | .Reset.Reset.OpenVPN.Reset.all.s |
| 112a60 | 69 74 65 2d 74 6f 2d 73 69 74 65 20 49 50 53 65 63 20 56 50 4e 20 73 65 73 73 69 6f 6e 73 2e 20 | ite-to-site.IPSec.VPN.sessions.. |
| 112a80 | 49 74 20 74 65 72 6d 69 6e 61 74 65 73 20 61 6c 6c 20 61 63 74 69 76 65 20 63 68 69 6c 64 5f 73 | It.terminates.all.active.child_s |
| 112aa0 | 61 20 61 6e 64 20 72 65 69 6e 69 74 69 61 74 65 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | a.and.reinitiates.the.connection |
| 112ac0 | 2e 00 52 65 73 65 74 20 61 6c 6c 20 74 75 6e 6e 65 6c 73 20 66 6f 72 20 61 20 67 69 76 65 6e 20 | ..Reset.all.tunnels.for.a.given. |
| 112ae0 | 70 65 65 72 2c 20 63 61 6e 20 73 70 65 63 69 66 79 20 74 75 6e 6e 65 6c 20 6f 72 20 76 74 69 20 | peer,.can.specify.tunnel.or.vti. |
| 112b00 | 69 6e 74 65 72 66 61 63 65 2e 20 49 74 20 74 65 72 6d 69 6e 61 74 65 73 20 61 20 73 70 65 63 69 | interface..It.terminates.a.speci |
| 112b20 | 66 69 63 20 63 68 69 6c 64 5f 73 61 20 61 6e 64 20 72 65 69 6e 69 74 69 61 74 65 73 20 74 68 65 | fic.child_sa.and.reinitiates.the |
| 112b40 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 52 65 73 65 74 20 63 6f 6d 6d 61 6e 64 73 00 52 65 73 65 | .connection..Reset.commands.Rese |
| 112b60 | 74 73 20 74 68 65 20 6c 6f 63 61 6c 20 44 4e 53 20 66 6f 72 77 61 72 64 69 6e 67 20 63 61 63 68 | ts.the.local.DNS.forwarding.cach |
| 112b80 | 65 20 64 61 74 61 62 61 73 65 2e 20 59 6f 75 20 63 61 6e 20 72 65 73 65 74 20 74 68 65 20 63 61 | e.database..You.can.reset.the.ca |
| 112ba0 | 63 68 65 20 66 6f 72 20 61 6c 6c 20 65 6e 74 72 69 65 73 20 6f 72 20 6f 6e 6c 79 20 66 6f 72 20 | che.for.all.entries.or.only.for. |
| 112bc0 | 65 6e 74 72 69 65 73 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2e 00 52 65 | entries.to.a.specific.domain..Re |
| 112be0 | 73 74 61 72 74 00 52 65 73 74 61 72 74 20 44 48 43 50 20 72 65 6c 61 79 20 73 65 72 76 69 63 65 | start.Restart.DHCP.relay.service |
| 112c00 | 00 52 65 73 74 61 72 74 20 44 48 43 50 76 36 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6d 6d 65 | .Restart.DHCPv6.relay.agent.imme |
| 112c20 | 64 69 61 74 65 6c 79 2e 00 52 65 73 74 61 72 74 20 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 69 6e | diately..Restart.a.given.contain |
| 112c40 | 65 72 00 52 65 73 74 61 72 74 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 73 65 72 76 69 63 65 | er.Restart.mDNS.repeater.service |
| 112c60 | 2e 00 52 65 73 74 61 72 74 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 00 52 65 73 74 61 72 | ..Restart.the.DHCP.server.Restar |
| 112c80 | 74 20 74 68 65 20 49 47 4d 50 20 70 72 6f 78 79 20 70 72 6f 63 65 73 73 2e 00 52 65 73 74 61 72 | t.the.IGMP.proxy.process..Restar |
| 112ca0 | 74 20 74 68 65 20 49 50 73 65 63 20 56 50 4e 20 70 72 6f 63 65 73 73 20 61 6e 64 20 72 65 2d 65 | t.the.IPsec.VPN.process.and.re-e |
| 112cc0 | 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 52 65 73 74 61 | stablishes.the.connection..Resta |
| 112ce0 | 72 74 20 74 68 65 20 53 53 48 20 64 61 65 6d 6f 6e 20 70 72 6f 63 65 73 73 2c 20 74 68 65 20 63 | rt.the.SSH.daemon.process,.the.c |
| 112d00 | 75 72 72 65 6e 74 20 73 65 73 73 69 6f 6e 20 69 73 20 6e 6f 74 20 61 66 66 65 63 74 65 64 2c 20 | urrent.session.is.not.affected,. |
| 112d20 | 6f 6e 6c 79 20 74 68 65 20 62 61 63 6b 67 72 6f 75 6e 64 20 64 61 65 6d 6f 6e 20 69 73 20 72 65 | only.the.background.daemon.is.re |
| 112d40 | 73 74 61 72 74 65 64 2e 00 52 65 73 74 61 72 74 73 20 74 68 65 20 44 4e 53 20 72 65 63 75 72 73 | started..Restarts.the.DNS.recurs |
| 112d60 | 6f 72 20 70 72 6f 63 65 73 73 2e 20 54 68 69 73 20 61 6c 73 6f 20 69 6e 76 61 6c 69 64 61 74 65 | or.process..This.also.invalidate |
| 112d80 | 73 20 74 68 65 20 6c 6f 63 61 6c 20 44 4e 53 20 66 6f 72 77 61 72 64 69 6e 67 20 63 61 63 68 65 | s.the.local.DNS.forwarding.cache |
| 112da0 | 2e 00 52 65 73 74 61 72 74 73 20 74 68 65 20 73 65 72 76 69 63 65 2e 20 49 74 20 63 68 65 63 6b | ..Restarts.the.service..It.check |
| 112dc0 | 73 20 69 66 20 74 68 65 20 53 75 72 69 63 61 74 61 20 73 65 72 76 69 63 65 20 69 73 20 61 63 74 | s.if.the.Suricata.service.is.act |
| 112de0 | 69 76 65 20 62 65 66 6f 72 65 20 61 74 74 65 6d 70 74 69 6e 67 20 74 6f 20 72 65 73 74 61 72 74 | ive.before.attempting.to.restart |
| 112e00 | 20 69 74 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 20 61 63 74 69 76 65 2c 20 61 20 6d 65 73 73 | .it..If.it.is.not.active,.a.mess |
| 112e20 | 61 67 65 20 69 6e 64 69 63 61 74 65 73 20 74 68 61 74 20 74 68 65 20 73 65 72 76 69 63 65 20 69 | age.indicates.that.the.service.i |
| 112e40 | 73 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 | s.not.configured..This.command.i |
| 112e60 | 73 20 75 73 65 64 20 77 68 65 6e 20 61 64 64 69 6e 67 20 6e 65 77 20 72 75 6c 65 73 20 6d 61 6e | s.used.when.adding.new.rules.man |
| 112e80 | 75 61 6c 6c 79 2e 00 52 65 73 75 6c 74 69 6e 67 20 69 6e 00 52 65 73 75 6c 74 73 20 69 6e 3a 00 | ually..Resulting.in.Results.in:. |
| 112ea0 | 52 65 74 72 61 6e 73 6d 69 74 20 54 69 6d 65 72 00 52 65 74 72 69 65 76 65 20 63 75 72 72 65 6e | Retransmit.Timer.Retrieve.curren |
| 112ec0 | 74 20 73 74 61 74 69 73 74 69 63 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b | t.statistics.of.connection.track |
| 112ee0 | 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 00 52 65 74 72 69 65 76 65 20 63 75 72 72 65 6e 74 20 | ing.subsystem..Retrieve.current. |
| 112f00 | 73 74 61 74 75 73 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 75 | status.of.connection.tracking.su |
| 112f20 | 62 73 79 73 74 65 6d 2e 00 52 65 74 72 69 65 76 65 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 | bsystem..Retrieve.public.key.por |
| 112f40 | 74 69 6f 6e 20 66 72 6f 6d 20 63 6f 6e 66 69 67 75 72 65 64 20 57 49 72 65 47 75 61 72 64 20 69 | tion.from.configured.WIreGuard.i |
| 112f60 | 6e 74 65 72 66 61 63 65 2e 00 52 65 76 65 72 73 65 2d 70 72 6f 78 79 00 52 6f 75 6e 64 20 52 6f | nterface..Reverse-proxy.Round.Ro |
| 112f80 | 62 69 6e 00 52 6f 75 74 65 20 41 67 67 72 65 67 61 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 | bin.Route.Aggregation.Configurat |
| 112fa0 | 69 6f 6e 00 52 6f 75 74 65 20 44 61 6d 70 65 6e 69 6e 67 00 52 6f 75 74 65 20 46 69 6c 74 65 72 | ion.Route.Dampening.Route.Filter |
| 112fc0 | 69 6e 67 00 52 6f 75 74 65 20 46 69 6c 74 65 72 69 6e 67 20 43 6f 6e 66 69 67 75 72 61 74 69 6f | ing.Route.Filtering.Configuratio |
| 112fe0 | 6e 00 52 6f 75 74 65 20 4d 61 70 00 52 6f 75 74 65 20 4d 61 70 20 50 6f 6c 69 63 79 00 52 6f 75 | n.Route.Map.Route.Map.Policy.Rou |
| 113000 | 74 65 20 52 65 64 69 73 74 72 69 62 75 74 69 6f 6e 00 52 6f 75 74 65 20 52 65 66 6c 65 63 74 6f | te.Redistribution.Route.Reflecto |
| 113020 | 72 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f 75 74 65 20 53 65 6c 65 63 74 69 6f 6e 00 | r.Configuration.Route.Selection. |
| 113040 | 52 6f 75 74 65 20 53 65 6c 65 63 74 69 6f 6e 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 52 6f | Route.Selection.Configuration.Ro |
| 113060 | 75 74 65 20 61 6e 64 20 52 6f 75 74 65 36 20 50 6f 6c 69 63 79 00 52 6f 75 74 65 20 64 61 6d 70 | ute.and.Route6.Policy.Route.damp |
| 113080 | 65 6e 69 6e 67 20 77 69 63 68 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 34 | ening.wich.described.in.:rfc:`24 |
| 1130a0 | 33 39 60 20 65 6e 61 62 6c 65 73 20 79 6f 75 20 74 6f 20 69 64 65 6e 74 69 66 79 20 72 6f 75 74 | 39`.enables.you.to.identify.rout |
| 1130c0 | 65 73 20 74 68 61 74 20 72 65 70 65 61 74 65 64 6c 79 20 66 61 69 6c 20 61 6e 64 20 72 65 74 75 | es.that.repeatedly.fail.and.retu |
| 1130e0 | 72 6e 2e 20 49 66 20 72 6f 75 74 65 20 64 61 6d 70 65 6e 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 | rn..If.route.dampening.is.enable |
| 113100 | 64 2c 20 61 6e 20 75 6e 73 74 61 62 6c 65 20 72 6f 75 74 65 20 61 63 63 75 6d 75 6c 61 74 65 73 | d,.an.unstable.route.accumulates |
| 113120 | 20 70 65 6e 61 6c 74 69 65 73 20 65 61 63 68 20 74 69 6d 65 20 74 68 65 20 72 6f 75 74 65 20 66 | .penalties.each.time.the.route.f |
| 113140 | 61 69 6c 73 20 61 6e 64 20 72 65 74 75 72 6e 73 2e 20 49 66 20 74 68 65 20 61 63 63 75 6d 75 6c | ails.and.returns..If.the.accumul |
| 113160 | 61 74 65 64 20 70 65 6e 61 6c 74 69 65 73 20 65 78 63 65 65 64 20 61 20 74 68 72 65 73 68 6f 6c | ated.penalties.exceed.a.threshol |
| 113180 | 64 2c 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 61 64 76 65 72 74 | d,.the.route.is.no.longer.advert |
| 1131a0 | 69 73 65 64 2e 20 54 68 69 73 20 69 73 20 72 6f 75 74 65 20 73 75 70 70 72 65 73 73 69 6f 6e 2e | ised..This.is.route.suppression. |
| 1131c0 | 20 52 6f 75 74 65 73 20 74 68 61 74 20 68 61 76 65 20 62 65 65 6e 20 73 75 70 70 72 65 73 73 65 | .Routes.that.have.been.suppresse |
| 1131e0 | 64 20 61 72 65 20 72 65 2d 65 6e 74 65 72 65 64 20 69 6e 74 6f 20 74 68 65 20 72 6f 75 74 69 6e | d.are.re-entered.into.the.routin |
| 113200 | 67 20 74 61 62 6c 65 20 6f 6e 6c 79 20 77 68 65 6e 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 | g.table.only.when.the.amount.of. |
| 113220 | 74 68 65 69 72 20 70 65 6e 61 6c 74 79 20 66 61 6c 6c 73 20 62 65 6c 6f 77 20 61 20 74 68 72 65 | their.penalty.falls.below.a.thre |
| 113240 | 73 68 6f 6c 64 2e 00 52 6f 75 74 65 20 66 69 6c 74 65 72 20 63 61 6e 20 62 65 20 61 70 70 6c 69 | shold..Route.filter.can.be.appli |
| 113260 | 65 64 20 75 73 69 6e 67 20 61 20 72 6f 75 74 65 2d 6d 61 70 3a 00 52 6f 75 74 65 20 6d 61 70 20 | ed.using.a.route-map:.Route.map. |
| 113280 | 69 73 20 61 20 70 6f 77 65 72 66 75 6c 6c 20 63 6f 6d 6d 61 6e 64 2c 20 74 68 61 74 20 67 69 76 | is.a.powerfull.command,.that.giv |
| 1132a0 | 65 73 20 6e 65 74 77 6f 72 6b 20 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 73 20 61 20 76 65 72 79 | es.network.administrators.a.very |
| 1132c0 | 20 75 73 65 66 75 6c 20 61 6e 64 20 66 6c 65 78 69 62 6c 65 20 74 6f 6f 6c 20 66 6f 72 20 74 72 | .useful.and.flexible.tool.for.tr |
| 1132e0 | 61 66 66 69 63 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 2e 00 52 6f 75 74 65 20 6d 61 70 73 20 63 | affic.manipulation..Route.maps.c |
| 113300 | 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 6d 61 74 63 68 20 61 20 73 70 65 63 | an.be.configured.to.match.a.spec |
| 113320 | 69 66 69 63 20 52 50 4b 49 20 76 61 6c 69 64 61 74 69 6f 6e 20 73 74 61 74 65 2e 20 54 68 69 73 | ific.RPKI.validation.state..This |
| 113340 | 20 61 6c 6c 6f 77 73 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 6c 6f 63 61 6c 20 70 6f | .allows.the.creation.of.local.po |
| 113360 | 6c 69 63 69 65 73 2c 20 77 68 69 63 68 20 68 61 6e 64 6c 65 20 42 47 50 20 72 6f 75 74 65 73 20 | licies,.which.handle.BGP.routes. |
| 113380 | 62 61 73 65 64 20 6f 6e 20 74 68 65 20 6f 75 74 63 6f 6d 65 20 6f 66 20 74 68 65 20 50 72 65 66 | based.on.the.outcome.of.the.Pref |
| 1133a0 | 69 78 20 4f 72 69 67 69 6e 20 56 61 6c 69 64 61 74 69 6f 6e 2e 00 52 6f 75 74 65 20 6d 65 74 72 | ix.Origin.Validation..Route.metr |
| 1133c0 | 69 63 00 52 6f 75 74 65 20 74 61 67 20 74 6f 20 6d 61 74 63 68 2e 00 52 6f 75 74 65 72 20 41 64 | ic.Route.tag.to.match..Router.Ad |
| 1133e0 | 76 65 72 74 69 73 65 6d 65 6e 74 73 00 52 6f 75 74 65 72 20 4c 69 66 65 74 69 6d 65 00 52 6f 75 | vertisements.Router.Lifetime.Rou |
| 113400 | 74 65 72 20 72 65 63 65 69 76 65 73 20 44 48 43 50 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 | ter.receives.DHCP.client.request |
| 113420 | 73 20 6f 6e 20 60 60 65 74 68 31 60 60 20 61 6e 64 20 72 65 6c 61 79 73 20 74 68 65 6d 20 74 6f | s.on.``eth1``.and.relays.them.to |
| 113440 | 20 74 68 65 20 73 65 72 76 65 72 20 61 74 20 31 30 2e 30 2e 31 2e 34 20 6f 6e 20 60 60 65 74 68 | .the.server.at.10.0.1.4.on.``eth |
| 113460 | 32 60 60 2e 00 52 6f 75 74 65 73 20 65 78 70 6f 72 74 65 64 20 66 72 6f 6d 20 61 20 75 6e 69 63 | 2``..Routes.exported.from.a.unic |
| 113480 | 61 73 74 20 56 52 46 20 74 6f 20 74 68 65 20 56 50 4e 20 52 49 42 20 6d 75 73 74 20 62 65 20 61 | ast.VRF.to.the.VPN.RIB.must.be.a |
| 1134a0 | 75 67 6d 65 6e 74 65 64 20 62 79 20 74 77 6f 20 70 61 72 61 6d 65 74 65 72 73 3a 00 52 6f 75 74 | ugmented.by.two.parameters:.Rout |
| 1134c0 | 65 73 20 6f 6e 20 4e 6f 64 65 20 32 3a 00 52 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 73 65 | es.on.Node.2:.Routes.that.are.se |
| 1134e0 | 6e 74 20 66 72 6f 6d 20 70 72 6f 76 69 64 65 72 2c 20 72 73 2d 73 65 72 76 65 72 2c 20 6f 72 20 | nt.from.provider,.rs-server,.or. |
| 113500 | 74 68 65 20 70 65 65 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 28 6f 72 20 69 66 20 72 65 63 65 69 | the.peer.local-role.(or.if.recei |
| 113520 | 76 65 64 20 62 79 20 63 75 73 74 6f 6d 65 72 2c 20 72 73 2d 63 6c 69 65 6e 74 2c 20 6f 72 20 74 | ved.by.customer,.rs-client,.or.t |
| 113540 | 68 65 20 70 65 65 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 29 20 77 69 6c 6c 20 62 65 20 6d 61 72 6b | he.peer.local-role).will.be.mark |
| 113560 | 65 64 20 77 69 74 68 20 61 20 6e 65 77 20 4f 6e 6c 79 20 74 6f 20 43 75 73 74 6f 6d 65 72 20 28 | ed.with.a.new.Only.to.Customer.( |
| 113580 | 4f 54 43 29 20 61 74 74 72 69 62 75 74 65 2e 00 52 6f 75 74 65 73 20 77 69 74 68 20 61 20 64 69 | OTC).attribute..Routes.with.a.di |
| 1135a0 | 73 74 61 6e 63 65 20 6f 66 20 32 35 35 20 61 72 65 20 65 66 66 65 63 74 69 76 65 6c 79 20 64 69 | stance.of.255.are.effectively.di |
| 1135c0 | 73 61 62 6c 65 64 20 61 6e 64 20 6e 6f 74 20 69 6e 73 74 61 6c 6c 65 64 20 69 6e 74 6f 20 74 68 | sabled.and.not.installed.into.th |
| 1135e0 | 65 20 6b 65 72 6e 65 6c 2e 00 52 6f 75 74 65 73 20 77 69 74 68 20 74 68 69 73 20 61 74 74 72 69 | e.kernel..Routes.with.this.attri |
| 113600 | 62 75 74 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 6e 74 20 74 6f 20 79 6f 75 72 20 6e 65 | bute.can.only.be.sent.to.your.ne |
| 113620 | 69 67 68 62 6f 72 20 69 66 20 79 6f 75 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 70 72 6f | ighbor.if.your.local-role.is.pro |
| 113640 | 76 69 64 65 72 20 6f 72 20 72 73 2d 73 65 72 76 65 72 2e 20 52 6f 75 74 65 73 20 77 69 74 68 20 | vider.or.rs-server..Routes.with. |
| 113660 | 74 68 69 73 20 61 74 74 72 69 62 75 74 65 20 63 61 6e 20 62 65 20 72 65 63 65 69 76 65 64 20 6f | this.attribute.can.be.received.o |
| 113680 | 6e 6c 79 20 69 66 20 79 6f 75 72 20 6c 6f 63 61 6c 2d 72 6f 6c 65 20 69 73 20 63 75 73 74 6f 6d | nly.if.your.local-role.is.custom |
| 1136a0 | 65 72 20 6f 72 20 72 73 2d 63 6c 69 65 6e 74 2e 00 52 6f 75 74 69 6e 65 00 52 6f 75 74 69 6e 67 | er.or.rs-client..Routine.Routing |
| 1136c0 | 00 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 75 73 65 | .Routing.tables.that.will.be.use |
| 1136e0 | 64 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 61 72 65 3a 00 52 75 6c 65 20 31 30 20 6d | d.in.this.example.are:.Rule.10.m |
| 113700 | 61 74 63 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 74 68 65 20 64 6f 6d 61 69 6e 20 | atches.requests.with.the.domain. |
| 113720 | 6e 61 6d 65 20 60 60 6e 6f 64 65 31 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 20 66 6f 72 77 61 | name.``node1.example.com``.forwa |
| 113740 | 72 64 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 61 70 69 2d 30 31 60 60 | rds.to.the.backend.``bk-api-01`` |
| 113760 | 00 52 75 6c 65 20 31 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 74 | .Rule.10.matches.requests.with.t |
| 113780 | 68 65 20 65 78 61 63 74 20 55 52 4c 20 70 61 74 68 20 60 60 2f 2e 77 65 6c 6c 2d 6b 6e 6f 77 6e | he.exact.URL.path.``/.well-known |
| 1137a0 | 2f 78 78 78 60 60 20 61 6e 64 20 72 65 64 69 72 65 63 74 73 20 74 6f 20 6c 6f 63 61 74 69 6f 6e | /xxx``.and.redirects.to.location |
| 1137c0 | 20 60 60 2f 63 65 72 74 73 2f 60 60 2e 00 52 75 6c 65 20 31 31 30 20 69 73 20 68 69 74 2c 20 73 | .``/certs/``..Rule.110.is.hit,.s |
| 1137e0 | 6f 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 61 63 63 65 70 74 65 64 2e 00 52 75 6c 65 20 32 | o.connection.is.accepted..Rule.2 |
| 113800 | 30 20 6d 61 74 63 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 55 52 4c 20 70 61 74 68 | 0.matches.requests.with.URL.path |
| 113820 | 73 20 65 6e 64 69 6e 67 20 69 6e 20 60 60 2f 6d 61 69 6c 60 60 20 6f 72 20 65 78 61 63 74 20 70 | s.ending.in.``/mail``.or.exact.p |
| 113840 | 61 74 68 20 60 60 2f 65 6d 61 69 6c 2f 62 61 72 60 60 20 72 65 64 69 72 65 63 74 20 74 6f 20 6c | ath.``/email/bar``.redirect.to.l |
| 113860 | 6f 63 61 74 69 6f 6e 20 60 60 2f 70 6f 73 74 66 69 78 2f 60 60 2e 00 52 75 6c 65 20 32 30 20 6d | ocation.``/postfix/``..Rule.20.m |
| 113880 | 61 74 63 68 65 73 20 72 65 71 75 65 73 74 73 20 77 69 74 68 20 74 68 65 20 64 6f 6d 61 69 6e 20 | atches.requests.with.the.domain. |
| 1138a0 | 6e 61 6d 65 20 60 60 6e 6f 64 65 32 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 20 66 6f 72 77 61 | name.``node2.example.com``.forwa |
| 1138c0 | 72 64 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 61 70 69 2d 30 32 60 60 | rds.to.the.backend.``bk-api-02`` |
| 1138e0 | 00 52 75 6c 65 20 53 74 61 74 75 73 00 52 75 6c 65 2d 53 65 74 73 00 52 75 6c 65 2d 73 65 74 20 | .Rule.Status.Rule-Sets.Rule-set. |
| 113900 | 6f 76 65 72 76 69 65 77 00 52 75 6c 65 73 00 52 75 6c 65 73 20 61 6c 6c 6f 77 20 74 6f 20 63 6f | overview.Rules.Rules.allow.to.co |
| 113920 | 6e 74 72 6f 6c 20 61 6e 64 20 72 6f 75 74 65 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 | ntrol.and.route.incoming.traffic |
| 113940 | 20 74 6f 20 73 70 65 63 69 66 69 63 20 62 61 63 6b 65 6e 64 20 62 61 73 65 64 20 6f 6e 20 70 72 | .to.specific.backend.based.on.pr |
| 113960 | 65 64 65 66 69 6e 65 64 20 63 6f 6e 64 69 74 69 6f 6e 73 2e 20 52 75 6c 65 73 20 61 6c 6c 6f 77 | edefined.conditions..Rules.allow |
| 113980 | 20 74 6f 20 64 65 66 69 6e 65 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 6e 64 | .to.define.matching.criteria.and |
| 1139a0 | 20 70 65 72 66 6f 72 6d 20 61 63 74 69 6f 6e 20 61 63 63 6f 72 64 69 6e 67 6c 79 2e 00 52 75 6c | .perform.action.accordingly..Rul |
| 1139c0 | 65 73 20 77 69 6c 6c 20 62 65 20 63 72 65 61 74 65 64 20 66 6f 72 20 62 6f 74 68 20 3a 72 65 66 | es.will.be.created.for.both.:ref |
| 1139e0 | 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 74 69 6e 61 74 | :`source-nat`.and.:ref:`destinat |
| 113a00 | 69 6f 6e 2d 6e 61 74 60 2e 00 52 75 6e 6e 69 6e 67 20 42 65 68 69 6e 64 20 4e 41 54 00 53 4e 41 | ion-nat`..Running.Behind.NAT.SNA |
| 113a20 | 54 00 53 4e 41 54 36 34 00 53 4e 41 54 36 36 00 53 4e 4d 50 00 53 4e 4d 50 20 45 78 74 65 6e 73 | T.SNAT64.SNAT66.SNMP.SNMP.Extens |
| 113a40 | 69 6f 6e 73 00 53 4e 4d 50 20 50 72 6f 74 6f 63 6f 6c 20 56 65 72 73 69 6f 6e 73 00 53 4e 4d 50 | ions.SNMP.Protocol.Versions.SNMP |
| 113a60 | 20 63 61 6e 20 77 6f 72 6b 20 73 79 6e 63 68 72 6f 6e 6f 75 73 6c 79 20 6f 72 20 61 73 79 6e 63 | .can.work.synchronously.or.async |
| 113a80 | 68 72 6f 6e 6f 75 73 6c 79 2e 20 49 6e 20 73 79 6e 63 68 72 6f 6e 6f 75 73 20 63 6f 6d 6d 75 6e | hronously..In.synchronous.commun |
| 113aa0 | 69 63 61 74 69 6f 6e 2c 20 74 68 65 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 73 79 73 74 65 6d 20 71 | ication,.the.monitoring.system.q |
| 113ac0 | 75 65 72 69 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 2e 20 | ueries.the.router.periodically.. |
| 113ae0 | 49 6e 20 61 73 79 6e 63 68 72 6f 6e 6f 75 73 2c 20 74 68 65 20 72 6f 75 74 65 72 20 73 65 6e 64 | In.asynchronous,.the.router.send |
| 113b00 | 73 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 22 74 72 61 70 22 20 28 74 68 | s.notification.to.the."trap".(th |
| 113b20 | 65 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 68 6f 73 74 29 2e 00 53 4e 4d 50 20 69 73 20 61 20 63 6f | e.monitoring.host)..SNMP.is.a.co |
| 113b40 | 6d 70 6f 6e 65 6e 74 20 6f 66 20 74 68 65 20 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c | mponent.of.the.Internet.Protocol |
| 113b60 | 20 53 75 69 74 65 20 61 73 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 65 20 49 6e 74 65 72 6e 65 | .Suite.as.defined.by.the.Interne |
| 113b80 | 74 20 45 6e 67 69 6e 65 65 72 69 6e 67 20 54 61 73 6b 20 46 6f 72 63 65 20 28 49 45 54 46 29 2e | t.Engineering.Task.Force.(IETF). |
| 113ba0 | 20 49 74 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 61 20 73 65 74 20 6f 66 20 73 74 61 6e 64 61 72 | .It.consists.of.a.set.of.standar |
| 113bc0 | 64 73 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 2c 20 69 6e 63 6c 75 | ds.for.network.management,.inclu |
| 113be0 | 64 69 6e 67 20 61 6e 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 6c 61 79 65 72 20 70 72 6f 74 6f 63 | ding.an.application.layer.protoc |
| 113c00 | 6f 6c 2c 20 61 20 64 61 74 61 62 61 73 65 20 73 63 68 65 6d 61 2c 20 61 6e 64 20 61 20 73 65 74 | ol,.a.database.schema,.and.a.set |
| 113c20 | 20 6f 66 20 64 61 74 61 20 6f 62 6a 65 63 74 73 2e 00 53 4e 4d 50 20 69 73 20 77 69 64 65 6c 79 | .of.data.objects..SNMP.is.widely |
| 113c40 | 20 75 73 65 64 20 69 6e 20 6e 65 74 77 6f 72 6b 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 6f 72 20 | .used.in.network.management.for. |
| 113c60 | 6e 65 74 77 6f 72 6b 20 6d 6f 6e 69 74 6f 72 69 6e 67 2e 20 53 4e 4d 50 20 65 78 70 6f 73 65 73 | network.monitoring..SNMP.exposes |
| 113c80 | 20 6d 61 6e 61 67 65 6d 65 6e 74 20 64 61 74 61 20 69 6e 20 74 68 65 20 66 6f 72 6d 20 6f 66 20 | .management.data.in.the.form.of. |
| 113ca0 | 76 61 72 69 61 62 6c 65 73 20 6f 6e 20 74 68 65 20 6d 61 6e 61 67 65 64 20 73 79 73 74 65 6d 73 | variables.on.the.managed.systems |
| 113cc0 | 20 6f 72 67 61 6e 69 7a 65 64 20 69 6e 20 61 20 6d 61 6e 61 67 65 6d 65 6e 74 20 69 6e 66 6f 72 | .organized.in.a.management.infor |
| 113ce0 | 6d 61 74 69 6f 6e 20 62 61 73 65 20 28 4d 49 42 5f 29 20 77 68 69 63 68 20 64 65 73 63 72 69 62 | mation.base.(MIB_).which.describ |
| 113d00 | 65 20 74 68 65 20 73 79 73 74 65 6d 20 73 74 61 74 75 73 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 | e.the.system.status.and.configur |
| 113d20 | 61 74 69 6f 6e 2e 20 54 68 65 73 65 20 76 61 72 69 61 62 6c 65 73 20 63 61 6e 20 74 68 65 6e 20 | ation..These.variables.can.then. |
| 113d40 | 62 65 20 72 65 6d 6f 74 65 6c 79 20 71 75 65 72 69 65 64 20 28 61 6e 64 2c 20 69 6e 20 73 6f 6d | be.remotely.queried.(and,.in.som |
| 113d60 | 65 20 63 69 72 63 75 6d 73 74 61 6e 63 65 73 2c 20 6d 61 6e 69 70 75 6c 61 74 65 64 29 20 62 79 | e.circumstances,.manipulated).by |
| 113d80 | 20 6d 61 6e 61 67 69 6e 67 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 53 4e 4d 50 76 32 00 53 | .managing.applications..SNMPv2.S |
| 113da0 | 4e 4d 50 76 32 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 61 6e 79 20 61 75 74 68 65 | NMPv2.does.not.support.any.authe |
| 113dc0 | 6e 74 69 63 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 73 2c 20 6f 74 68 65 72 20 74 68 61 6e | ntication.mechanisms,.other.than |
| 113de0 | 20 63 6c 69 65 6e 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2c 20 73 6f 20 79 6f 75 20 73 | .client.source.address,.so.you.s |
| 113e00 | 68 6f 75 6c 64 20 73 70 65 63 69 66 79 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 63 6c 69 65 6e | hould.specify.addresses.of.clien |
| 113e20 | 74 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 6d 6f 6e 69 74 6f 72 20 74 68 65 20 72 6f 75 74 65 72 | ts.allowed.to.monitor.the.router |
| 113e40 | 2e 20 4e 6f 74 65 20 74 68 61 74 20 53 4e 4d 50 76 32 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 | ..Note.that.SNMPv2.also.supports |
| 113e60 | 20 6e 6f 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6e 64 20 61 6c 77 61 79 73 20 73 65 6e 64 73 20 | .no.encryption.and.always.sends. |
| 113e80 | 64 61 74 61 20 69 6e 20 70 6c 61 69 6e 20 74 65 78 74 2e 00 53 4e 4d 50 76 32 20 69 73 20 74 68 | data.in.plain.text..SNMPv2.is.th |
| 113ea0 | 65 20 6f 72 69 67 69 6e 61 6c 20 61 6e 64 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 6c 79 20 75 73 65 | e.original.and.most.commonly.use |
| 113ec0 | 64 20 76 65 72 73 69 6f 6e 2e 20 46 6f 72 20 61 75 74 68 6f 72 69 7a 69 6e 67 20 63 6c 69 65 6e | d.version..For.authorizing.clien |
| 113ee0 | 74 73 2c 20 53 4e 4d 50 20 75 73 65 73 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 63 6f 6d | ts,.SNMP.uses.the.concept.of.com |
| 113f00 | 6d 75 6e 69 74 69 65 73 2e 20 43 6f 6d 6d 75 6e 69 74 69 65 73 20 6d 61 79 20 68 61 76 65 20 61 | munities..Communities.may.have.a |
| 113f20 | 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 73 65 74 20 74 6f 20 72 65 61 64 20 6f 6e 6c 79 20 28 74 | uthorization.set.to.read.only.(t |
| 113f40 | 68 69 73 20 69 73 20 6d 6f 73 74 20 63 6f 6d 6d 6f 6e 29 20 6f 72 20 74 6f 20 72 65 61 64 20 61 | his.is.most.common).or.to.read.a |
| 113f60 | 6e 64 20 77 72 69 74 65 20 28 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 61 63 74 | nd.write.(this.option.is.not.act |
| 113f80 | 69 76 65 6c 79 20 75 73 65 64 20 69 6e 20 56 79 4f 53 29 2e 00 53 4e 4d 50 76 33 00 53 4e 4d 50 | ively.used.in.VyOS)..SNMPv3.SNMP |
| 113fa0 | 76 33 20 28 76 65 72 73 69 6f 6e 20 33 20 6f 66 20 74 68 65 20 53 4e 4d 50 20 70 72 6f 74 6f 63 | v3.(version.3.of.the.SNMP.protoc |
| 113fc0 | 6f 6c 29 20 69 6e 74 72 6f 64 75 63 65 64 20 61 20 77 68 6f 6c 65 20 73 6c 65 77 20 6f 66 20 6e | ol).introduced.a.whole.slew.of.n |
| 113fe0 | 65 77 20 73 65 63 75 72 69 74 79 20 72 65 6c 61 74 65 64 20 66 65 61 74 75 72 65 73 20 74 68 61 | ew.security.related.features.tha |
| 114000 | 74 20 68 61 76 65 20 62 65 65 6e 20 6d 69 73 73 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 70 72 65 | t.have.been.missing.from.the.pre |
| 114020 | 76 69 6f 75 73 20 76 65 72 73 69 6f 6e 73 2e 20 53 65 63 75 72 69 74 79 20 77 61 73 20 6f 6e 65 | vious.versions..Security.was.one |
| 114040 | 20 6f 66 20 74 68 65 20 62 69 67 67 65 73 74 20 77 65 61 6b 6e 65 73 73 20 6f 66 20 53 4e 4d 50 | .of.the.biggest.weakness.of.SNMP |
| 114060 | 20 75 6e 74 69 6c 20 76 33 2e 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 6e 20 53 4e 4d | .until.v3..Authentication.in.SNM |
| 114080 | 50 20 56 65 72 73 69 6f 6e 73 20 31 20 61 6e 64 20 32 20 61 6d 6f 75 6e 74 73 20 74 6f 20 6e 6f | P.Versions.1.and.2.amounts.to.no |
| 1140a0 | 74 68 69 6e 67 20 6d 6f 72 65 20 74 68 61 6e 20 61 20 70 61 73 73 77 6f 72 64 20 28 63 6f 6d 6d | thing.more.than.a.password.(comm |
| 1140c0 | 75 6e 69 74 79 20 73 74 72 69 6e 67 29 20 73 65 6e 74 20 69 6e 20 63 6c 65 61 72 20 74 65 78 74 | unity.string).sent.in.clear.text |
| 1140e0 | 20 62 65 74 77 65 65 6e 20 61 20 6d 61 6e 61 67 65 72 20 61 6e 64 20 61 67 65 6e 74 2e 20 45 61 | .between.a.manager.and.agent..Ea |
| 114100 | 63 68 20 53 4e 4d 50 76 33 20 6d 65 73 73 61 67 65 20 63 6f 6e 74 61 69 6e 73 20 73 65 63 75 72 | ch.SNMPv3.message.contains.secur |
| 114120 | 69 74 79 20 70 61 72 61 6d 65 74 65 72 73 20 77 68 69 63 68 20 61 72 65 20 65 6e 63 6f 64 65 64 | ity.parameters.which.are.encoded |
| 114140 | 20 61 73 20 61 6e 20 6f 63 74 65 74 20 73 74 72 69 6e 67 2e 20 54 68 65 20 6d 65 61 6e 69 6e 67 | .as.an.octet.string..The.meaning |
| 114160 | 20 6f 66 20 74 68 65 73 65 20 73 65 63 75 72 69 74 79 20 70 61 72 61 6d 65 74 65 72 73 20 64 65 | .of.these.security.parameters.de |
| 114180 | 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 73 65 63 75 72 69 74 79 20 6d 6f 64 65 6c 20 62 65 69 6e | pends.on.the.security.model.bein |
| 1141a0 | 67 20 75 73 65 64 2e 00 53 50 41 4e 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 63 61 6e 20 | g.used..SPAN.port.mirroring.can. |
| 1141c0 | 63 6f 70 79 20 74 68 65 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 | copy.the.inbound/outbound.traffi |
| 1141e0 | 63 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 | c.of.the.interface.to.the.specif |
| 114200 | 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 75 73 75 61 6c 6c 79 20 74 68 65 20 69 6e 74 65 72 | ied.interface,.usually.the.inter |
| 114220 | 66 61 63 65 20 63 61 6e 20 62 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 73 6f 6d 65 20 73 70 | face.can.be.connected.to.some.sp |
| 114240 | 65 63 69 61 6c 20 65 71 75 69 70 6d 65 6e 74 2c 20 73 75 63 68 20 61 73 20 61 20 62 65 68 61 76 | ecial.equipment,.such.as.a.behav |
| 114260 | 69 6f 72 20 63 6f 6e 74 72 6f 6c 20 73 79 73 74 65 6d 2c 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 | ior.control.system,.intrusion.de |
| 114280 | 74 65 63 74 69 6f 6e 20 73 79 73 74 65 6d 20 6f 72 20 74 72 61 66 66 69 63 20 63 6f 6c 6c 65 63 | tection.system.or.traffic.collec |
| 1142a0 | 74 6f 72 2c 20 61 6e 64 20 63 61 6e 20 63 6f 70 79 20 61 6c 6c 20 72 65 6c 61 74 65 64 20 74 72 | tor,.and.can.copy.all.related.tr |
| 1142c0 | 61 66 66 69 63 20 66 72 6f 6d 20 74 68 69 73 20 70 6f 72 74 2e 20 54 68 65 20 62 65 6e 65 66 69 | affic.from.this.port..The.benefi |
| 1142e0 | 74 20 6f 66 20 6d 69 72 72 6f 72 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 20 74 68 | t.of.mirroring.the.traffic.is.th |
| 114300 | 61 74 20 74 68 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 73 20 69 73 6f 6c 61 74 65 64 20 66 | at.the.application.is.isolated.f |
| 114320 | 72 6f 6d 20 74 68 65 20 73 6f 75 72 63 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 6f 20 61 70 | rom.the.source.traffic.and.so.ap |
| 114340 | 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 69 6e 67 20 64 6f 65 73 20 6e 6f 74 20 61 66 | plication.processing.does.not.af |
| 114360 | 66 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 70 | fect.the.traffic.or.the.system.p |
| 114380 | 65 72 66 6f 72 6d 61 6e 63 65 2e 00 53 50 41 4e 20 70 6f 72 74 20 6d 69 72 72 6f 72 69 6e 67 20 | erformance..SPAN.port.mirroring. |
| 1143a0 | 63 61 6e 20 63 6f 70 79 20 74 68 65 20 69 6e 62 6f 75 6e 64 2f 6f 75 74 62 6f 75 6e 64 20 74 72 | can.copy.the.inbound/outbound.tr |
| 1143c0 | 61 66 66 69 63 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 74 68 65 20 73 70 | affic.of.the.interface.to.the.sp |
| 1143e0 | 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c 20 75 73 75 61 6c 6c 79 20 74 68 65 20 69 | ecified.interface,.usually.the.i |
| 114400 | 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 73 6f 6d | nterface.can.be.connected.to.som |
| 114420 | 65 20 73 70 65 63 69 61 6c 20 65 71 75 69 70 6d 65 6e 74 2c 20 73 75 63 68 20 61 73 20 62 65 68 | e.special.equipment,.such.as.beh |
| 114440 | 61 76 69 6f 72 20 63 6f 6e 74 72 6f 6c 20 73 79 73 74 65 6d 2c 20 69 6e 74 72 75 73 69 6f 6e 20 | avior.control.system,.intrusion. |
| 114460 | 64 65 74 65 63 74 69 6f 6e 20 73 79 73 74 65 6d 20 61 6e 64 20 74 72 61 66 66 69 63 20 63 6f 6c | detection.system.and.traffic.col |
| 114480 | 6c 65 63 74 6f 72 2c 20 61 6e 64 20 63 61 6e 20 63 6f 70 79 20 61 6c 6c 20 72 65 6c 61 74 65 64 | lector,.and.can.copy.all.related |
| 1144a0 | 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 74 68 69 73 20 70 6f 72 74 2e 20 54 68 65 20 62 65 6e | .traffic.from.this.port..The.ben |
| 1144c0 | 65 66 69 74 20 6f 66 20 6d 69 72 72 6f 72 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 69 73 | efit.of.mirroring.the.traffic.is |
| 1144e0 | 20 74 68 61 74 20 74 68 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 69 73 20 69 73 6f 6c 61 74 65 | .that.the.application.is.isolate |
| 114500 | 64 20 66 72 6f 6d 20 74 68 65 20 73 6f 75 72 63 65 20 74 72 61 66 66 69 63 20 61 6e 64 20 73 6f | d.from.the.source.traffic.and.so |
| 114520 | 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 70 72 6f 63 65 73 73 69 6e 67 20 64 6f 65 73 20 6e 6f 74 | .application.processing.does.not |
| 114540 | 20 61 66 66 65 63 74 20 74 68 65 20 74 72 61 66 66 69 63 20 6f 72 20 74 68 65 20 73 79 73 74 65 | .affect.the.traffic.or.the.syste |
| 114560 | 6d 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 00 53 53 48 00 53 53 48 20 3a 72 65 66 3a 60 73 73 68 | m.performance..SSH.SSH.:ref:`ssh |
| 114580 | 5f 6b 65 79 5f 62 61 73 65 64 5f 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 00 53 53 48 20 3a | _key_based_authentication`.SSH.: |
| 1145a0 | 72 65 66 3a 60 73 73 68 5f 6f 70 65 72 61 74 69 6f 6e 60 00 53 53 48 20 63 6c 69 65 6e 74 00 53 | ref:`ssh_operation`.SSH.client.S |
| 1145c0 | 53 48 20 70 72 6f 76 69 64 65 73 20 61 20 73 65 63 75 72 65 20 63 68 61 6e 6e 65 6c 20 6f 76 65 | SH.provides.a.secure.channel.ove |
| 1145e0 | 72 20 61 6e 20 75 6e 73 65 63 75 72 65 64 20 6e 65 74 77 6f 72 6b 20 69 6e 20 61 20 63 6c 69 65 | r.an.unsecured.network.in.a.clie |
| 114600 | 6e 74 2d 73 65 72 76 65 72 20 61 72 63 68 69 74 65 63 74 75 72 65 2c 20 63 6f 6e 6e 65 63 74 69 | nt-server.architecture,.connecti |
| 114620 | 6e 67 20 61 6e 20 53 53 48 20 63 6c 69 65 6e 74 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 77 69 74 | ng.an.SSH.client.application.wit |
| 114640 | 68 20 61 6e 20 53 53 48 20 73 65 72 76 65 72 2e 20 43 6f 6d 6d 6f 6e 20 61 70 70 6c 69 63 61 74 | h.an.SSH.server..Common.applicat |
| 114660 | 69 6f 6e 73 20 69 6e 63 6c 75 64 65 20 72 65 6d 6f 74 65 20 63 6f 6d 6d 61 6e 64 2d 6c 69 6e 65 | ions.include.remote.command-line |
| 114680 | 20 6c 6f 67 69 6e 20 61 6e 64 20 72 65 6d 6f 74 65 20 63 6f 6d 6d 61 6e 64 20 65 78 65 63 75 74 | .login.and.remote.command.execut |
| 1146a0 | 69 6f 6e 2c 20 62 75 74 20 61 6e 79 20 6e 65 74 77 6f 72 6b 20 73 65 72 76 69 63 65 20 63 61 6e | ion,.but.any.network.service.can |
| 1146c0 | 20 62 65 20 73 65 63 75 72 65 64 20 77 69 74 68 20 53 53 48 2e 20 54 68 65 20 70 72 6f 74 6f 63 | .be.secured.with.SSH..The.protoc |
| 1146e0 | 6f 6c 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 20 64 69 73 74 69 6e 67 75 69 73 68 65 73 20 62 | ol.specification.distinguishes.b |
| 114700 | 65 74 77 65 65 6e 20 74 77 6f 20 6d 61 6a 6f 72 20 76 65 72 73 69 6f 6e 73 2c 20 72 65 66 65 72 | etween.two.major.versions,.refer |
| 114720 | 72 65 64 20 74 6f 20 61 73 20 53 53 48 2d 31 20 61 6e 64 20 53 53 48 2d 32 2e 00 53 53 48 20 75 | red.to.as.SSH-1.and.SSH-2..SSH.u |
| 114740 | 73 65 72 6e 61 6d 65 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 6e 20 53 53 48 20 63 6f 6e 6e | sername.to.establish.an.SSH.conn |
| 114760 | 65 63 74 69 6f 6e 20 74 6f 20 74 68 65 20 63 61 63 68 65 20 73 65 72 76 65 72 2e 00 53 53 48 20 | ection.to.the.cache.server..SSH. |
| 114780 | 77 61 73 20 64 65 73 69 67 6e 65 64 20 61 73 20 61 20 72 65 70 6c 61 63 65 6d 65 6e 74 20 66 6f | was.designed.as.a.replacement.fo |
| 1147a0 | 72 20 54 65 6c 6e 65 74 20 61 6e 64 20 66 6f 72 20 75 6e 73 65 63 75 72 65 64 20 72 65 6d 6f 74 | r.Telnet.and.for.unsecured.remot |
| 1147c0 | 65 20 73 68 65 6c 6c 20 70 72 6f 74 6f 63 6f 6c 73 20 73 75 63 68 20 61 73 20 74 68 65 20 42 65 | e.shell.protocols.such.as.the.Be |
| 1147e0 | 72 6b 65 6c 65 79 20 72 6c 6f 67 69 6e 2c 20 72 73 68 2c 20 61 6e 64 20 72 65 78 65 63 20 70 72 | rkeley.rlogin,.rsh,.and.rexec.pr |
| 114800 | 6f 74 6f 63 6f 6c 73 2e 20 54 68 6f 73 65 20 70 72 6f 74 6f 63 6f 6c 73 20 73 65 6e 64 20 69 6e | otocols..Those.protocols.send.in |
| 114820 | 66 6f 72 6d 61 74 69 6f 6e 2c 20 6e 6f 74 61 62 6c 79 20 70 61 73 73 77 6f 72 64 73 2c 20 69 6e | formation,.notably.passwords,.in |
| 114840 | 20 70 6c 61 69 6e 74 65 78 74 2c 20 72 65 6e 64 65 72 69 6e 67 20 74 68 65 6d 20 73 75 73 63 65 | .plaintext,.rendering.them.susce |
| 114860 | 70 74 69 62 6c 65 20 74 6f 20 69 6e 74 65 72 63 65 70 74 69 6f 6e 20 61 6e 64 20 64 69 73 63 6c | ptible.to.interception.and.discl |
| 114880 | 6f 73 75 72 65 20 75 73 69 6e 67 20 70 61 63 6b 65 74 20 61 6e 61 6c 79 73 69 73 2e 20 54 68 65 | osure.using.packet.analysis..The |
| 1148a0 | 20 65 6e 63 72 79 70 74 69 6f 6e 20 75 73 65 64 20 62 79 20 53 53 48 20 69 73 20 69 6e 74 65 6e | .encryption.used.by.SSH.is.inten |
| 1148c0 | 64 65 64 20 74 6f 20 70 72 6f 76 69 64 65 20 63 6f 6e 66 69 64 65 6e 74 69 61 6c 69 74 79 20 61 | ded.to.provide.confidentiality.a |
| 1148e0 | 6e 64 20 69 6e 74 65 67 72 69 74 79 20 6f 66 20 64 61 74 61 20 6f 76 65 72 20 61 6e 20 75 6e 73 | nd.integrity.of.data.over.an.uns |
| 114900 | 65 63 75 72 65 64 20 6e 65 74 77 6f 72 6b 2c 20 73 75 63 68 20 61 73 20 74 68 65 20 49 6e 74 65 | ecured.network,.such.as.the.Inte |
| 114920 | 72 6e 65 74 2e 00 53 53 49 44 20 74 6f 20 62 65 20 75 73 65 64 20 69 6e 20 49 45 45 45 20 38 30 | rnet..SSID.to.be.used.in.IEEE.80 |
| 114940 | 32 2e 31 31 20 6d 61 6e 61 67 65 6d 65 6e 74 20 66 72 61 6d 65 73 00 53 53 4c 20 42 72 69 64 67 | 2.11.management.frames.SSL.Bridg |
| 114960 | 69 6e 67 00 53 53 4c 20 43 65 72 74 69 66 69 63 61 74 65 73 00 53 53 4c 20 43 65 72 74 69 66 69 | ing.SSL.Certificates.SSL.Certifi |
| 114980 | 63 61 74 65 73 20 67 65 6e 65 72 61 74 69 6f 6e 00 53 53 4c 20 6d 61 74 63 68 20 53 65 72 76 65 | cates.generation.SSL.match.Serve |
| 1149a0 | 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 74 69 6f 6e 20 28 53 4e 49 29 20 6f 70 74 69 6f 6e 3a 00 | r.Name.Indication.(SNI).option:. |
| 1149c0 | 53 53 54 50 20 43 6c 69 65 6e 74 00 53 53 54 50 20 43 6c 69 65 6e 74 20 4f 70 74 69 6f 6e 73 00 | SSTP.Client.SSTP.Client.Options. |
| 1149e0 | 53 53 54 50 20 53 65 72 76 65 72 00 53 53 54 50 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f | SSTP.Server.SSTP.is.available.fo |
| 114a00 | 72 20 4c 69 6e 75 78 2c 20 42 53 44 2c 20 61 6e 64 20 57 69 6e 64 6f 77 73 2e 00 53 53 54 50 20 | r.Linux,.BSD,.and.Windows..SSTP. |
| 114a20 | 72 65 6d 6f 74 65 20 73 65 72 76 65 72 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 20 43 61 6e | remote.server.to.connect.to..Can |
| 114a40 | 20 62 65 20 65 69 74 68 65 72 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e | .be.either.an.IP.address.or.FQDN |
| 114a60 | 2e 00 53 54 50 20 50 61 72 61 6d 65 74 65 72 00 53 61 6c 74 2d 4d 69 6e 69 6f 6e 00 53 61 6c 74 | ..STP.Parameter.Salt-Minion.Salt |
| 114a80 | 53 74 61 63 6b 5f 20 69 73 20 50 79 74 68 6f 6e 2d 62 61 73 65 64 2c 20 6f 70 65 6e 2d 73 6f 75 | Stack_.is.Python-based,.open-sou |
| 114aa0 | 72 63 65 20 73 6f 66 74 77 61 72 65 20 66 6f 72 20 65 76 65 6e 74 2d 64 72 69 76 65 6e 20 49 54 | rce.software.for.event-driven.IT |
| 114ac0 | 20 61 75 74 6f 6d 61 74 69 6f 6e 2c 20 72 65 6d 6f 74 65 20 74 61 73 6b 20 65 78 65 63 75 74 69 | .automation,.remote.task.executi |
| 114ae0 | 6f 6e 2c 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 61 6e 61 67 65 6d 65 6e 74 | on,.and.configuration.management |
| 114b00 | 2e 20 53 75 70 70 6f 72 74 69 6e 67 20 74 68 65 20 22 69 6e 66 72 61 73 74 72 75 63 74 75 72 65 | ..Supporting.the."infrastructure |
| 114b20 | 20 61 73 20 63 6f 64 65 22 20 61 70 70 72 6f 61 63 68 20 74 6f 20 64 61 74 61 20 63 65 6e 74 65 | .as.code".approach.to.data.cente |
| 114b40 | 72 20 73 79 73 74 65 6d 20 61 6e 64 20 6e 65 74 77 6f 72 6b 20 64 65 70 6c 6f 79 6d 65 6e 74 20 | r.system.and.network.deployment. |
| 114b60 | 61 6e 64 20 6d 61 6e 61 67 65 6d 65 6e 74 2c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 75 | and.management,.configuration.au |
| 114b80 | 74 6f 6d 61 74 69 6f 6e 2c 20 53 65 63 4f 70 73 20 6f 72 63 68 65 73 74 72 61 74 69 6f 6e 2c 20 | tomation,.SecOps.orchestration,. |
| 114ba0 | 76 75 6c 6e 65 72 61 62 69 6c 69 74 79 20 72 65 6d 65 64 69 61 74 69 6f 6e 2c 20 61 6e 64 20 68 | vulnerability.remediation,.and.h |
| 114bc0 | 79 62 72 69 64 20 63 6c 6f 75 64 20 63 6f 6e 74 72 6f 6c 2e 00 53 61 6d 65 20 61 73 20 65 78 70 | ybrid.cloud.control..Same.as.exp |
| 114be0 | 6f 72 74 2d 6c 69 73 74 2c 20 62 75 74 20 69 74 20 61 70 70 6c 69 65 73 20 74 6f 20 70 61 74 68 | ort-list,.but.it.applies.to.path |
| 114c00 | 73 20 61 6e 6e 6f 75 6e 63 65 64 20 69 6e 74 6f 20 73 70 65 63 69 66 69 65 64 20 61 72 65 61 20 | s.announced.into.specified.area. |
| 114c20 | 61 73 20 54 79 70 65 2d 33 20 73 75 6d 6d 61 72 79 2d 4c 53 41 73 2e 20 54 68 69 73 20 63 6f 6d | as.Type-3.summary-LSAs..This.com |
| 114c40 | 6d 61 6e 64 20 6d 61 6b 65 73 20 73 65 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 53 61 | mand.makes.sense.in.ABR.only..Sa |
| 114c60 | 6d 65 20 73 70 65 63 69 66 69 63 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 74 68 | me.specific.matching.criteria.th |
| 114c80 | 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c | at.can.be.used.in.bridge.firewal |
| 114ca0 | 6c 20 61 72 65 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 3a | l.are.described.in.this.section: |
| 114cc0 | 00 53 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 53 56 44 20 77 69 74 | .Sample.configuration.of.SVD.wit |
| 114ce0 | 68 20 56 4c 41 4e 20 74 6f 20 56 4e 49 20 6d 61 70 70 69 6e 67 73 20 69 73 20 73 68 6f 77 6e 20 | h.VLAN.to.VNI.mappings.is.shown. |
| 114d00 | 62 65 6c 6f 77 2e 00 53 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 73 | below..Sample.configuration.to.s |
| 114d20 | 65 74 75 70 20 4c 44 50 20 6f 6e 20 56 79 4f 53 00 53 63 61 6e 6e 69 6e 67 20 69 73 20 6e 6f 74 | etup.LDP.on.VyOS.Scanning.is.not |
| 114d40 | 20 73 75 70 70 6f 72 74 65 64 20 6f 6e 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 64 72 69 76 65 | .supported.on.all.wireless.drive |
| 114d60 | 72 73 20 61 6e 64 20 77 69 72 65 6c 65 73 73 20 68 61 72 64 77 61 72 65 2e 20 52 65 66 65 72 20 | rs.and.wireless.hardware..Refer. |
| 114d80 | 74 6f 20 79 6f 75 72 20 64 72 69 76 65 72 20 61 6e 64 20 77 69 72 65 6c 65 73 73 20 68 61 72 64 | to.your.driver.and.wireless.hard |
| 114da0 | 77 61 72 65 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 66 75 72 74 68 65 72 20 64 | ware.documentation.for.further.d |
| 114dc0 | 65 74 61 69 6c 73 2e 00 53 63 72 69 70 74 20 65 78 65 63 75 74 69 6f 6e 00 53 63 72 69 70 74 20 | etails..Script.execution.Script. |
| 114de0 | 74 6f 20 72 75 6e 20 62 65 66 6f 72 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 | to.run.before.session.interface. |
| 114e00 | 63 6f 6d 65 73 20 75 70 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 62 65 66 6f 72 65 20 74 68 | comes.up.Script.to.run.before.th |
| 114e20 | 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6d 65 73 20 75 70 00 53 63 72 | e.session.interface.comes.up.Scr |
| 114e40 | 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 | ipt.to.run.when.session.interfac |
| 114e60 | 65 20 63 68 61 6e 67 65 64 20 62 79 20 52 41 44 49 55 53 20 43 6f 41 20 68 61 6e 64 6c 69 6e 67 | e.changed.by.RADIUS.CoA.handling |
| 114e80 | 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 | .Script.to.run.when.session.inte |
| 114ea0 | 72 66 61 63 65 20 67 6f 69 6e 67 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 63 72 69 70 74 20 | rface.going.to.terminate.Script. |
| 114ec0 | 74 6f 20 72 75 6e 20 77 68 65 6e 20 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 | to.run.when.session.interface.is |
| 114ee0 | 20 63 6f 6d 70 6c 65 74 65 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 61 6e 64 20 73 74 61 72 74 | .completely.configured.and.start |
| 114f00 | 65 64 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f | ed.Script.to.run.when.the.sessio |
| 114f20 | 6e 20 69 6e 74 65 72 66 61 63 65 20 61 62 6f 75 74 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 | n.interface.about.to.terminate.S |
| 114f40 | 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e | cript.to.run.when.the.session.in |
| 114f60 | 74 65 72 66 61 63 65 20 69 73 20 61 62 6f 75 74 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 00 53 63 | terface.is.about.to.terminate.Sc |
| 114f80 | 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 6e 74 | ript.to.run.when.the.session.int |
| 114fa0 | 65 72 66 61 63 65 20 69 73 20 63 68 61 6e 67 65 64 20 62 79 20 52 41 44 49 55 53 20 43 6f 41 20 | erface.is.changed.by.RADIUS.CoA. |
| 114fc0 | 68 61 6e 64 6c 69 6e 67 00 53 63 72 69 70 74 20 74 6f 20 72 75 6e 20 77 68 65 6e 20 74 68 65 20 | handling.Script.to.run.when.the. |
| 114fe0 | 73 65 73 73 69 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6d 70 6c 65 74 65 6c 79 20 | session.interface.is.completely. |
| 115000 | 63 6f 6e 66 69 67 75 72 65 64 20 61 6e 64 20 73 74 61 72 74 65 64 00 53 63 72 69 70 74 69 6e 67 | configured.and.started.Scripting |
| 115020 | 00 53 65 63 6f 6e 64 20 73 63 65 6e 61 72 69 6f 3a 20 61 70 70 6c 79 20 73 6f 75 72 63 65 20 4e | .Second.scenario:.apply.source.N |
| 115040 | 41 54 20 66 6f 72 20 61 6c 6c 20 6f 75 74 67 6f 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 | AT.for.all.outgoing.connections. |
| 115060 | 66 72 6f 6d 20 4c 41 4e 20 31 30 2e 30 2e 30 2e 30 2f 38 2c 20 75 73 69 6e 67 20 33 20 70 75 62 | from.LAN.10.0.0.0/8,.using.3.pub |
| 115080 | 6c 69 63 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 65 71 75 61 6c 20 64 69 73 74 72 69 62 75 | lic.addresses.and.equal.distribu |
| 1150a0 | 74 69 6f 6e 2e 20 57 65 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 68 61 73 68 20 | tion..We.will.generate.the.hash. |
| 1150c0 | 72 61 6e 64 6f 6d 6c 79 2e 00 53 65 63 6f 6e 64 6c 79 2c 20 77 65 20 63 72 65 61 74 65 20 74 68 | randomly..Secondly,.we.create.th |
| 1150e0 | 65 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f | e.intermediary.certificate.autho |
| 115100 | 72 69 74 69 65 73 2c 20 77 68 69 63 68 20 61 72 65 20 75 73 65 64 20 74 6f 20 73 69 67 6e 20 74 | rities,.which.are.used.to.sign.t |
| 115120 | 68 65 20 6c 65 61 66 20 63 65 72 74 69 66 69 63 61 74 65 73 2e 00 53 65 63 72 65 74 20 66 6f 72 | he.leaf.certificates..Secret.for |
| 115140 | 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e | .Dynamic.Authorization.Extension |
| 115160 | 20 73 65 72 76 65 72 20 28 44 4d 2f 43 6f 41 29 00 53 65 63 75 72 69 74 79 00 53 65 63 75 72 69 | .server.(DM/CoA).Security.Securi |
| 115180 | 74 79 2f 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 00 53 65 65 20 3a | ty/authentication.messages.See.: |
| 1151a0 | 72 66 63 3a 60 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 31 60 20 66 6f 72 20 64 65 74 61 69 | rfc:`7761#section-4.1`.for.detai |
| 1151c0 | 6c 73 2e 00 53 65 65 20 62 65 6c 6f 77 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 | ls..See.below.the.different.para |
| 1151e0 | 6d 65 74 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 74 68 65 20 49 50 76 34 20 2a 2a | meters.available.for.the.IPv4.** |
| 115200 | 73 68 6f 77 2a 2a 20 63 6f 6d 6d 61 6e 64 3a 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 00 | show**.command:.Segment.Routing. |
| 115220 | 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 28 53 52 29 20 69 73 20 61 20 6e 65 74 77 6f 72 | Segment.Routing.(SR).is.a.networ |
| 115240 | 6b 20 61 72 63 68 69 74 65 63 74 75 72 65 20 74 68 61 74 20 69 73 20 73 69 6d 69 6c 61 72 20 74 | k.architecture.that.is.similar.t |
| 115260 | 6f 20 73 6f 75 72 63 65 2d 72 6f 75 74 69 6e 67 20 2e 20 49 6e 20 74 68 69 73 20 61 72 63 68 69 | o.source-routing...In.this.archi |
| 115280 | 74 65 63 74 75 72 65 2c 20 74 68 65 20 69 6e 67 72 65 73 73 20 72 6f 75 74 65 72 20 61 64 64 73 | tecture,.the.ingress.router.adds |
| 1152a0 | 20 61 20 6c 69 73 74 20 6f 66 20 73 65 67 6d 65 6e 74 73 2c 20 6b 6e 6f 77 6e 20 61 73 20 53 49 | .a.list.of.segments,.known.as.SI |
| 1152c0 | 44 73 2c 20 74 6f 20 74 68 65 20 70 61 63 6b 65 74 20 61 73 20 69 74 20 65 6e 74 65 72 73 20 74 | Ds,.to.the.packet.as.it.enters.t |
| 1152e0 | 68 65 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 73 65 20 73 65 67 6d 65 6e 74 73 20 72 65 70 72 65 | he.network..These.segments.repre |
| 115300 | 73 65 6e 74 20 64 69 66 66 65 72 65 6e 74 20 70 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 65 20 6e | sent.different.portions.of.the.n |
| 115320 | 65 74 77 6f 72 6b 20 70 61 74 68 20 74 68 61 74 20 74 68 65 20 70 61 63 6b 65 74 20 77 69 6c 6c | etwork.path.that.the.packet.will |
| 115340 | 20 74 61 6b 65 2e 00 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 63 61 6e 20 62 65 20 61 70 | .take..Segment.Routing.can.be.ap |
| 115360 | 70 6c 69 65 64 20 74 6f 20 61 6e 20 65 78 69 73 74 69 6e 67 20 4d 50 4c 53 2d 62 61 73 65 64 20 | plied.to.an.existing.MPLS-based. |
| 115380 | 64 61 74 61 20 70 6c 61 6e 65 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 20 63 6f 6e 74 72 6f 6c | data.plane.and.defines.a.control |
| 1153a0 | 20 70 6c 61 6e 65 20 6e 65 74 77 6f 72 6b 20 61 72 63 68 69 74 65 63 74 75 72 65 2e 20 49 6e 20 | .plane.network.architecture..In. |
| 1153c0 | 4d 50 4c 53 20 6e 65 74 77 6f 72 6b 73 2c 20 73 65 67 6d 65 6e 74 73 20 61 72 65 20 65 6e 63 6f | MPLS.networks,.segments.are.enco |
| 1153e0 | 64 65 64 20 61 73 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 6e 64 20 61 72 65 20 61 64 64 65 64 | ded.as.MPLS.labels.and.are.added |
| 115400 | 20 61 74 20 74 68 65 20 69 6e 67 72 65 73 73 20 72 6f 75 74 65 72 2e 20 54 68 65 73 65 20 4d 50 | .at.the.ingress.router..These.MP |
| 115420 | 4c 53 20 6c 61 62 65 6c 73 20 61 72 65 20 74 68 65 6e 20 65 78 63 68 61 6e 67 65 64 20 61 6e 64 | LS.labels.are.then.exchanged.and |
| 115440 | 20 70 6f 70 75 6c 61 74 65 64 20 62 79 20 49 6e 74 65 72 69 6f 72 20 47 61 74 65 77 61 79 20 50 | .populated.by.Interior.Gateway.P |
| 115460 | 72 6f 74 6f 63 6f 6c 73 20 28 49 47 50 73 29 20 6c 69 6b 65 20 49 53 2d 49 53 20 6f 72 20 4f 53 | rotocols.(IGPs).like.IS-IS.or.OS |
| 115480 | 50 46 20 77 68 69 63 68 20 61 72 65 20 72 75 6e 6e 69 6e 67 20 6f 6e 20 6d 6f 73 74 20 49 53 50 | PF.which.are.running.on.most.ISP |
| 1154a0 | 73 2e 00 53 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 28 53 52 29 20 69 73 20 75 73 65 64 20 | s..Segment.routing.(SR).is.used. |
| 1154c0 | 62 79 20 74 68 65 20 49 47 50 20 70 72 6f 74 6f 63 6f 6c 73 20 74 6f 20 69 6e 74 65 72 63 6f 6e | by.the.IGP.protocols.to.intercon |
| 1154e0 | 6e 65 63 74 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 2c 20 62 65 6c 6f 77 20 63 6f 6e 66 | nect.network.devices,.below.conf |
| 115500 | 69 67 75 72 61 74 69 6f 6e 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 65 6e 61 62 6c 65 20 53 52 | iguration.shows.how.to.enable.SR |
| 115520 | 20 6f 6e 20 49 53 2d 49 53 3a 00 53 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e 67 20 28 53 52 29 20 | .on.IS-IS:.Segment.routing.(SR). |
| 115540 | 69 73 20 75 73 65 64 20 62 79 20 74 68 65 20 49 47 50 20 70 72 6f 74 6f 63 6f 6c 73 20 74 6f 20 | is.used.by.the.IGP.protocols.to. |
| 115560 | 69 6e 74 65 72 63 6f 6e 6e 65 63 74 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 2c 20 62 65 | interconnect.network.devices,.be |
| 115580 | 6c 6f 77 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 65 | low.configuration.shows.how.to.e |
| 1155a0 | 6e 61 62 6c 65 20 53 52 20 6f 6e 20 4f 53 50 46 3a 00 53 65 67 6d 65 6e 74 20 72 6f 75 74 69 6e | nable.SR.on.OSPF:.Segment.routin |
| 1155c0 | 67 20 64 65 66 69 6e 65 73 20 61 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 6e 65 74 77 6f 72 | g.defines.a.control.plane.networ |
| 1155e0 | 6b 20 61 72 63 68 69 74 65 63 74 75 72 65 20 61 6e 64 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 | k.architecture.and.can.be.applie |
| 115600 | 64 20 74 6f 20 61 6e 20 65 78 69 73 74 69 6e 67 20 4d 50 4c 53 20 62 61 73 65 64 20 64 61 74 61 | d.to.an.existing.MPLS.based.data |
| 115620 | 70 6c 61 6e 65 2e 20 49 6e 20 74 68 65 20 4d 50 4c 53 20 6e 65 74 77 6f 72 6b 73 2c 20 73 65 67 | plane..In.the.MPLS.networks,.seg |
| 115640 | 6d 65 6e 74 73 20 61 72 65 20 65 6e 63 6f 64 65 64 20 61 73 20 4d 50 4c 53 20 6c 61 62 65 6c 73 | ments.are.encoded.as.MPLS.labels |
| 115660 | 20 61 6e 64 20 61 72 65 20 69 6d 70 6f 73 65 64 20 61 74 20 74 68 65 20 69 6e 67 72 65 73 73 20 | .and.are.imposed.at.the.ingress. |
| 115680 | 72 6f 75 74 65 72 2e 20 4d 50 4c 53 20 6c 61 62 65 6c 73 20 61 72 65 20 65 78 63 68 61 6e 67 65 | router..MPLS.labels.are.exchange |
| 1156a0 | 64 20 61 6e 64 20 70 6f 70 75 6c 61 74 65 64 20 62 79 20 49 47 50 73 20 6c 69 6b 65 20 49 53 2d | d.and.populated.by.IGPs.like.IS- |
| 1156c0 | 49 53 2e 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 61 73 20 70 65 72 20 52 46 43 38 36 36 | IS.Segment.Routing.as.per.RFC866 |
| 1156e0 | 37 20 66 6f 72 20 4d 50 4c 53 20 64 61 74 61 70 6c 61 6e 65 2e 20 49 74 20 73 75 70 70 6f 72 74 | 7.for.MPLS.dataplane..It.support |
| 115700 | 73 20 49 50 76 34 2c 20 49 50 76 36 20 61 6e 64 20 45 43 4d 50 20 61 6e 64 20 68 61 73 20 62 65 | s.IPv4,.IPv6.and.ECMP.and.has.be |
| 115720 | 65 6e 20 74 65 73 74 65 64 20 61 67 61 69 6e 73 74 20 43 69 73 63 6f 20 26 20 4a 75 6e 69 70 65 | en.tested.against.Cisco.&.Junipe |
| 115740 | 72 20 72 6f 75 74 65 72 73 2e 68 6f 77 65 76 65 72 2c 74 68 69 73 20 64 65 70 6c 6f 79 6d 65 6e | r.routers.however,this.deploymen |
| 115760 | 74 20 69 73 20 73 74 69 6c 6c 20 45 58 50 45 52 49 4d 45 4e 54 41 4c 20 66 6f 72 20 46 52 52 2e | t.is.still.EXPERIMENTAL.for.FRR. |
| 115780 | 00 53 65 6c 65 63 74 20 54 4c 53 20 76 65 72 73 69 6f 6e 20 75 73 65 64 2e 00 53 65 6c 65 63 74 | .Select.TLS.version.used..Select |
| 1157a0 | 20 63 69 70 68 65 72 20 73 75 69 74 65 20 75 73 65 64 20 66 6f 72 20 63 72 79 70 74 6f 67 72 61 | .cipher.suite.used.for.cryptogra |
| 1157c0 | 70 68 69 63 20 6f 70 65 72 61 74 69 6f 6e 73 2e 20 54 68 69 73 20 73 65 74 74 69 6e 67 20 69 73 | phic.operations..This.setting.is |
| 1157e0 | 20 6d 61 6e 64 61 74 6f 72 79 2e 00 53 65 6c 65 63 74 20 68 6f 77 20 6c 61 62 65 6c 73 20 61 72 | .mandatory..Select.how.labels.ar |
| 115800 | 65 20 61 6c 6c 6f 63 61 74 65 64 20 69 6e 20 74 68 65 20 67 69 76 65 6e 20 56 52 46 2e 20 42 79 | e.allocated.in.the.given.VRF..By |
| 115820 | 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 70 65 72 2d 76 72 66 20 6d 6f 64 65 20 69 73 20 73 65 | .default,.the.per-vrf.mode.is.se |
| 115840 | 6c 65 63 74 65 64 2c 20 61 6e 64 20 6f 6e 65 20 6c 61 62 65 6c 20 69 73 20 75 73 65 64 20 66 6f | lected,.and.one.label.is.used.fo |
| 115860 | 72 20 61 6c 6c 20 70 72 65 66 69 78 65 73 20 66 72 6f 6d 20 74 68 65 20 56 52 46 2e 20 54 68 65 | r.all.prefixes.from.the.VRF..The |
| 115880 | 20 70 65 72 2d 6e 65 78 74 68 6f 70 20 77 69 6c 6c 20 75 73 65 20 61 20 75 6e 69 71 75 65 20 6c | .per-nexthop.will.use.a.unique.l |
| 1158a0 | 61 62 65 6c 20 66 6f 72 20 61 6c 6c 20 70 72 65 66 69 78 65 73 20 74 68 61 74 20 61 72 65 20 72 | abel.for.all.prefixes.that.are.r |
| 1158c0 | 65 61 63 68 61 62 6c 65 20 76 69 61 20 74 68 65 20 73 61 6d 65 20 6e 65 78 74 68 6f 70 2e 00 53 | eachable.via.the.same.nexthop..S |
| 1158e0 | 65 6c 66 20 53 69 67 6e 65 64 20 43 41 00 53 65 6e 64 20 61 20 50 72 6f 78 79 20 50 72 6f 74 6f | elf.Signed.CA.Send.a.Proxy.Proto |
| 115900 | 63 6f 6c 20 76 65 72 73 69 6f 6e 20 31 20 68 65 61 64 65 72 20 28 74 65 78 74 20 66 6f 72 6d 61 | col.version.1.header.(text.forma |
| 115920 | 74 29 00 53 65 6e 64 20 61 20 50 72 6f 78 79 20 50 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e | t).Send.a.Proxy.Protocol.version |
| 115940 | 20 32 20 68 65 61 64 65 72 20 28 62 69 6e 61 72 79 20 66 6f 72 6d 61 74 29 00 53 65 6e 64 20 61 | .2.header.(binary.format).Send.a |
| 115960 | 6c 6c 20 44 4e 53 20 71 75 65 72 69 65 73 20 74 6f 20 74 68 65 20 49 50 76 34 2f 49 50 76 36 20 | ll.DNS.queries.to.the.IPv4/IPv6. |
| 115980 | 44 4e 53 20 73 65 72 76 65 72 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 72 20 60 3c 61 64 64 | DNS.server.specified.under.`<add |
| 1159a0 | 72 65 73 73 3e 60 20 6f 6e 20 6f 70 74 69 6f 6e 61 6c 20 70 6f 72 74 20 73 70 65 63 69 66 69 65 | ress>`.on.optional.port.specifie |
| 1159c0 | 64 20 75 6e 64 65 72 20 60 3c 70 6f 72 74 3e 60 2e 20 54 68 65 20 70 6f 72 74 20 64 65 66 61 75 | d.under.`<port>`..The.port.defau |
| 1159e0 | 6c 74 73 20 74 6f 20 35 33 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c | lts.to.53..You.can.configure.mul |
| 115a00 | 74 69 70 6c 65 20 6e 61 6d 65 73 65 72 76 65 72 73 20 68 65 72 65 2e 00 53 65 6e 64 20 65 6d 70 | tiple.nameservers.here..Send.emp |
| 115a20 | 74 79 20 53 53 49 44 20 69 6e 20 62 65 61 63 6f 6e 73 20 61 6e 64 20 69 67 6e 6f 72 65 20 70 72 | ty.SSID.in.beacons.and.ignore.pr |
| 115a40 | 6f 62 65 20 72 65 71 75 65 73 74 20 66 72 61 6d 65 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 73 | obe.request.frames.that.do.not.s |
| 115a60 | 70 65 63 69 66 79 20 66 75 6c 6c 20 53 53 49 44 2c 20 69 2e 65 2e 2c 20 72 65 71 75 69 72 65 20 | pecify.full.SSID,.i.e.,.require. |
| 115a80 | 73 74 61 74 69 6f 6e 73 20 74 6f 20 6b 6e 6f 77 20 53 53 49 44 2e 00 53 65 6e 64 20 65 6d 70 74 | stations.to.know.SSID..Send.empt |
| 115aa0 | 79 20 53 53 49 44 20 69 6e 20 62 65 61 63 6f 6e 73 20 61 6e 64 20 69 67 6e 6f 72 65 20 70 72 6f | y.SSID.in.beacons.and.ignore.pro |
| 115ac0 | 62 65 20 72 65 71 75 65 73 74 20 66 72 61 6d 65 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 73 70 | be.request.frames.that.do.not.sp |
| 115ae0 | 65 63 69 66 79 20 66 75 6c 6c 20 53 53 49 44 2c 20 69 2e 65 2e 2c 20 72 65 71 75 69 72 65 20 73 | ecify.full.SSID,.i.e.,.require.s |
| 115b00 | 74 61 74 69 6f 6e 73 20 74 6f 20 6b 6e 6f 77 20 74 68 65 20 53 53 49 44 2e 00 53 65 6e 74 20 74 | tations.to.know.the.SSID..Sent.t |
| 115b20 | 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 28 4c 41 43 29 20 69 6e 20 74 68 65 20 48 6f 73 74 2d 4e | o.the.client.(LAC).in.the.Host-N |
| 115b40 | 61 6d 65 20 61 74 74 72 69 62 75 74 65 00 53 65 72 69 61 6c 20 43 6f 6e 73 6f 6c 65 00 53 65 72 | ame.attribute.Serial.Console.Ser |
| 115b60 | 69 61 6c 20 69 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 61 6e 79 20 69 6e 74 65 72 66 | ial.interfaces.can.be.any.interf |
| 115b80 | 61 63 65 20 77 68 69 63 68 20 69 73 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 | ace.which.is.directly.connected. |
| 115ba0 | 74 6f 20 74 68 65 20 43 50 55 20 6f 72 20 63 68 69 70 73 65 74 20 28 6d 6f 73 74 6c 79 20 6b 6e | to.the.CPU.or.chipset.(mostly.kn |
| 115bc0 | 6f 77 6e 20 61 73 20 61 20 74 74 79 53 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 4c 69 6e 75 78 | own.as.a.ttyS.interface.in.Linux |
| 115be0 | 29 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 55 53 42 20 74 6f 20 73 65 72 69 61 6c 20 63 6f 6e | ).or.any.other.USB.to.serial.con |
| 115c00 | 76 65 72 74 65 72 20 28 50 72 6f 6c 69 66 69 63 20 50 4c 32 33 30 33 20 6f 72 20 46 54 44 49 20 | verter.(Prolific.PL2303.or.FTDI. |
| 115c20 | 46 54 32 33 32 2f 46 54 34 32 33 32 20 62 61 73 65 64 20 63 68 69 70 73 29 2e 00 53 65 72 76 65 | FT232/FT4232.based.chips)..Serve |
| 115c40 | 72 00 53 65 72 76 65 72 20 43 65 72 74 69 66 69 63 61 74 65 00 53 65 72 76 65 72 20 43 6f 6e 66 | r.Server.Certificate.Server.Conf |
| 115c60 | 69 67 75 72 61 74 69 6f 6e 00 53 65 72 76 65 72 20 53 69 64 65 00 53 65 72 76 65 72 20 53 69 64 | iguration.Server.Side.Server.Sid |
| 115c80 | 65 3a 00 53 65 72 76 65 72 20 62 72 69 64 67 65 00 53 65 72 76 65 72 20 63 6f 6e 66 69 67 75 72 | e:.Server.bridge.Server.configur |
| 115ca0 | 61 74 69 6f 6e 00 53 65 72 76 65 72 20 6e 61 6d 65 73 20 66 6f 72 20 76 69 72 74 75 61 6c 20 68 | ation.Server.names.for.virtual.h |
| 115cc0 | 6f 73 74 73 20 69 74 20 63 61 6e 20 62 65 20 65 78 61 63 74 2c 20 77 69 6c 64 63 61 72 64 20 6f | osts.it.can.be.exact,.wildcard.o |
| 115ce0 | 72 20 72 65 67 65 78 2e 00 53 65 72 76 65 72 3a 00 53 65 72 76 69 63 65 00 53 65 72 76 69 63 65 | r.regex..Server:.Service.Service |
| 115d00 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f | .configuration.is.responsible.fo |
| 115d20 | 72 20 62 69 6e 64 69 6e 67 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 2c 20 77 68 | r.binding.to.a.specific.port,.wh |
| 115d40 | 69 6c 65 20 74 68 65 20 62 61 63 6b 65 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 65 | ile.the.backend.configuration.de |
| 115d60 | 74 65 72 6d 69 6e 65 73 20 74 68 65 20 74 79 70 65 20 6f 66 20 6c 6f 61 64 20 62 61 6c 61 6e 63 | termines.the.type.of.load.balanc |
| 115d80 | 69 6e 67 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | ing.to.be.applied.and.specifies. |
| 115da0 | 74 68 65 20 72 65 61 6c 20 73 65 72 76 65 72 73 20 74 6f 20 62 65 20 75 74 69 6c 69 7a 65 64 2e | the.real.servers.to.be.utilized. |
| 115dc0 | 00 53 65 74 20 42 46 44 20 70 65 65 72 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 49 50 | .Set.BFD.peer.IPv4.address.or.IP |
| 115de0 | 76 36 20 61 64 64 72 65 73 73 00 53 65 74 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 | v6.address.Set.BGP.community-lis |
| 115e00 | 74 20 74 6f 20 65 78 61 63 74 6c 79 20 6d 61 74 63 68 2e 00 53 65 74 20 42 47 50 20 6c 6f 63 61 | t.to.exactly.match..Set.BGP.loca |
| 115e20 | 6c 20 70 72 65 66 65 72 65 6e 63 65 20 61 74 74 72 69 62 75 74 65 2e 00 53 65 74 20 42 47 50 20 | l.preference.attribute..Set.BGP. |
| 115e40 | 6f 72 69 67 69 6e 20 63 6f 64 65 2e 00 53 65 74 20 42 47 50 20 6f 72 69 67 69 6e 61 74 6f 72 20 | origin.code..Set.BGP.originator. |
| 115e60 | 49 44 20 61 74 74 72 69 62 75 74 65 2e 00 53 65 74 20 42 47 50 20 77 65 69 67 68 74 20 61 74 74 | ID.attribute..Set.BGP.weight.att |
| 115e80 | 72 69 62 75 74 65 00 53 65 74 20 44 4e 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c 79 20 | ribute.Set.DNAT.rule.20.to.only. |
| 115ea0 | 4e 41 54 20 55 44 50 20 70 61 63 6b 65 74 73 00 53 65 74 20 49 50 20 66 72 61 67 6d 65 6e 74 20 | NAT.UDP.packets.Set.IP.fragment. |
| 115ec0 | 6d 61 74 63 68 2c 20 77 68 65 72 65 3a 00 53 65 74 20 49 50 53 65 63 20 69 6e 62 6f 75 6e 64 20 | match,.where:.Set.IPSec.inbound. |
| 115ee0 | 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 73 2c 20 77 68 65 72 65 3a 00 53 65 74 20 4f 53 50 46 | match.criterias,.where:.Set.OSPF |
| 115f00 | 20 65 78 74 65 72 6e 61 6c 20 6d 65 74 72 69 63 2d 74 79 70 65 2e 00 53 65 74 20 53 4e 41 54 20 | .external.metric-type..Set.SNAT. |
| 115f20 | 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 54 43 50 20 61 6e 64 20 55 44 50 20 | rule.20.to.only.NAT.TCP.and.UDP. |
| 115f40 | 70 61 63 6b 65 74 73 00 53 65 74 20 53 4e 41 54 20 72 75 6c 65 20 32 30 20 74 6f 20 6f 6e 6c 79 | packets.Set.SNAT.rule.20.to.only |
| 115f60 | 20 4e 41 54 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 31 | .NAT.packets.arriving.from.the.1 |
| 115f80 | 39 32 2e 30 2e 32 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 00 53 65 74 20 53 4e 41 54 20 72 75 6c | 92.0.2.0/24.network.Set.SNAT.rul |
| 115fa0 | 65 20 33 30 20 74 6f 20 6f 6e 6c 79 20 4e 41 54 20 70 61 63 6b 65 74 73 20 61 72 72 69 76 69 6e | e.30.to.only.NAT.packets.arrivin |
| 115fc0 | 67 20 66 72 6f 6d 20 74 68 65 20 32 30 33 2e 30 2e 31 31 33 2e 30 2f 32 34 20 6e 65 74 77 6f 72 | g.from.the.203.0.113.0/24.networ |
| 115fe0 | 6b 20 77 69 74 68 20 61 20 73 6f 75 72 63 65 20 70 6f 72 74 20 6f 66 20 38 30 20 61 6e 64 20 34 | k.with.a.source.port.of.80.and.4 |
| 116000 | 34 33 00 53 65 74 20 53 53 4c 20 63 65 72 74 65 66 69 63 61 74 65 20 3c 6e 61 6d 65 3e 20 66 6f | 43.Set.SSL.certeficate.<name>.fo |
| 116020 | 72 20 73 65 72 76 69 63 65 20 3c 6e 61 6d 65 3e 00 53 65 74 20 53 53 4c 20 63 65 72 74 69 66 69 | r.service.<name>.Set.SSL.certifi |
| 116040 | 63 61 74 65 20 3c 6e 61 6d 65 3e 20 66 6f 72 20 73 65 72 76 69 63 65 20 3c 6e 61 6d 65 3e 00 53 | cate.<name>.for.service.<name>.S |
| 116060 | 65 74 20 54 43 50 2d 4d 53 53 20 28 6d 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 | et.TCP-MSS.(maximum.segment.size |
| 116080 | 29 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 00 53 65 74 20 54 54 4c 20 74 6f 20 | ).for.the.connection.Set.TTL.to. |
| 1160a0 | 33 30 30 20 73 65 63 6f 6e 64 73 00 53 65 74 20 56 69 72 74 75 61 6c 20 54 75 6e 6e 65 6c 20 49 | 300.seconds.Set.Virtual.Tunnel.I |
| 1160c0 | 6e 74 65 72 66 61 63 65 00 53 65 74 20 61 20 63 6f 6e 74 61 69 6e 65 72 20 64 65 73 63 72 69 70 | nterface.Set.a.container.descrip |
| 1160e0 | 74 69 6f 6e 00 53 65 74 20 61 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 73 | tion.Set.a.description.for.the.s |
| 116100 | 68 61 70 65 72 2e 00 53 65 74 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f 72 20 | haper..Set.a.destination.and/or. |
| 116120 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 20 66 | source.address..Accepted.input.f |
| 116140 | 6f 72 20 69 70 76 34 3a 00 53 65 74 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f | or.ipv4:.Set.a.destination.and/o |
| 116160 | 72 20 73 6f 75 72 63 65 20 70 6f 72 74 2e 20 41 63 63 65 70 74 65 64 20 69 6e 70 75 74 3a 00 53 | r.source.port..Accepted.input:.S |
| 116180 | 65 74 20 61 20 68 75 6d 61 6e 20 72 65 61 64 61 62 6c 65 2c 20 64 65 73 63 72 69 70 74 69 76 65 | et.a.human.readable,.descriptive |
| 1161a0 | 20 61 6c 69 61 73 20 66 6f 72 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 41 6c 69 61 | .alias.for.this.connection..Alia |
| 1161c0 | 73 20 69 73 20 75 73 65 64 20 62 79 20 65 2e 67 2e 20 74 68 65 20 3a 6f 70 63 6d 64 3a 60 73 68 | s.is.used.by.e.g..the.:opcmd:`sh |
| 1161e0 | 6f 77 20 69 6e 74 65 72 66 61 63 65 73 60 20 63 6f 6d 6d 61 6e 64 20 6f 72 20 53 4e 4d 50 20 62 | ow.interfaces`.command.or.SNMP.b |
| 116200 | 61 73 65 64 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 74 6f 6f 6c 73 2e 00 53 65 74 20 61 20 6c 69 6d | ased.monitoring.tools..Set.a.lim |
| 116220 | 69 74 20 6f 6e 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 63 6f 6e 63 | it.on.the.maximum.number.of.conc |
| 116240 | 75 72 72 65 6e 74 20 6c 6f 67 67 65 64 2d 69 6e 20 75 73 65 72 73 20 6f 6e 20 74 68 65 20 73 79 | urrent.logged-in.users.on.the.sy |
| 116260 | 73 74 65 6d 2e 00 53 65 74 20 61 20 6d 65 61 6e 69 6e 67 66 75 6c 20 64 65 73 63 72 69 70 74 69 | stem..Set.a.meaningful.descripti |
| 116280 | 6f 6e 2e 00 53 65 74 20 61 20 6e 61 6d 65 64 20 61 70 69 20 6b 65 79 2e 20 45 76 65 72 79 20 6b | on..Set.a.named.api.key..Every.k |
| 1162a0 | 65 79 20 68 61 73 20 74 68 65 20 73 61 6d 65 2c 20 66 75 6c 6c 20 70 65 72 6d 69 73 73 69 6f 6e | ey.has.the.same,.full.permission |
| 1162c0 | 73 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 65 74 20 61 20 72 75 6c 65 20 64 65 73 63 | s.on.the.system..Set.a.rule.desc |
| 1162e0 | 72 69 70 74 69 6f 6e 2e 00 53 65 74 20 61 20 73 70 65 63 69 66 69 63 20 63 6f 6e 6e 65 63 74 69 | ription..Set.a.specific.connecti |
| 116300 | 6f 6e 20 6d 61 72 6b 2e 00 53 65 74 20 61 20 73 70 65 63 69 66 69 63 20 70 61 63 6b 65 74 20 6d | on.mark..Set.a.specific.packet.m |
| 116320 | 61 72 6b 20 76 61 6c 75 65 2e 00 53 65 74 20 61 20 73 70 65 63 69 66 69 63 20 70 61 63 6b 65 74 | ark.value..Set.a.specific.packet |
| 116340 | 20 6d 61 72 6b 2e 00 53 65 74 20 61 20 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 20 6f 66 20 44 | .mark..Set.a.specific.value.of.D |
| 116360 | 69 66 66 65 72 65 6e 74 69 61 74 65 64 20 53 65 72 76 69 63 65 73 20 43 6f 64 65 70 6f 69 6e 74 | ifferentiated.Services.Codepoint |
| 116380 | 20 28 44 53 43 50 29 2e 00 53 65 74 20 61 63 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 6f 75 74 | .(DSCP)..Set.action.for.the.rout |
| 1163a0 | 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 | e-map.policy..Set.action.to.take |
| 1163c0 | 20 6f 6e 20 65 6e 74 72 69 65 73 20 6d 61 74 63 68 69 6e 67 20 74 68 69 73 20 72 75 6c 65 2e 00 | .on.entries.matching.this.rule.. |
| 1163e0 | 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 41 20 28 41 64 64 72 65 73 73 29 60 20 72 65 63 6f 72 | Set.an.:abbr:`A.(Address)`.recor |
| 116400 | 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 61 6e 64 20 60 60 61 6e 79 60 60 20 6b 65 | d..Supports.``@``.and.``any``.ke |
| 116420 | 79 77 6f 72 64 73 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 41 41 41 41 20 28 49 50 76 36 | ywords..Set.an.:abbr:`AAAA.(IPv6 |
| 116440 | 20 41 64 64 72 65 73 73 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 | .Address)`.record..Supports.``@` |
| 116460 | 60 20 61 6e 64 20 60 60 61 6e 79 60 60 20 6b 65 79 77 6f 72 64 73 2e 00 53 65 74 20 61 6e 20 3a | `.and.``any``.keywords..Set.an.: |
| 116480 | 61 62 62 72 3a 60 43 4e 41 4d 45 20 28 43 61 6e 6f 6e 69 63 61 6c 20 6e 61 6d 65 29 60 20 72 65 | abbr:`CNAME.(Canonical.name)`.re |
| 1164a0 | 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 | cord..Supports.``@``.keyword..Se |
| 1164c0 | 74 20 61 6e 20 3a 61 62 62 72 3a 60 4e 41 50 54 52 20 28 4e 61 6d 69 6e 67 20 61 75 74 68 6f 72 | t.an.:abbr:`NAPTR.(Naming.author |
| 1164e0 | 69 74 79 20 70 6f 69 6e 74 65 72 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 | ity.pointer)`.record..Supports.` |
| 116500 | 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 20 4e 41 50 54 52 20 72 65 63 6f 72 64 73 20 73 75 70 70 | `@``.keyword..NAPTR.records.supp |
| 116520 | 6f 72 74 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6f 70 74 69 6f 6e 73 3a 00 53 65 74 20 61 | ort.the.following.options:.Set.a |
| 116540 | 6e 20 3a 61 62 62 72 3a 60 4e 53 20 28 4e 61 6d 65 73 65 72 76 65 72 29 60 20 72 65 63 6f 72 64 | n.:abbr:`NS.(Nameserver)`.record |
| 116560 | 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 50 54 52 20 28 50 6f 69 6e 74 65 72 20 72 65 63 | ..Set.an.:abbr:`PTR.(Pointer.rec |
| 116580 | 6f 72 64 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 20 6b 65 79 | ord)`.record..Supports.``@``.key |
| 1165a0 | 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 53 50 46 20 28 53 65 6e 64 65 72 20 | word..Set.an.:abbr:`SPF.(Sender. |
| 1165c0 | 70 6f 6c 69 63 79 20 66 72 61 6d 65 77 6f 72 6b 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f | policy.framework)`.record..Suppo |
| 1165e0 | 72 74 73 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a | rts.``@``.keyword..Set.an.:abbr: |
| 116600 | 60 53 52 56 20 28 53 65 72 76 69 63 65 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 | `SRV.(Service)`.record..Supports |
| 116620 | 20 60 60 40 60 60 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 3a 61 62 62 72 3a 60 54 58 | .``@``.keyword..Set.an.:abbr:`TX |
| 116640 | 54 20 28 54 65 78 74 29 60 20 72 65 63 6f 72 64 2e 20 53 75 70 70 6f 72 74 73 20 60 60 40 60 60 | T.(Text)`.record..Supports.``@`` |
| 116660 | 20 6b 65 79 77 6f 72 64 2e 00 53 65 74 20 61 6e 20 41 50 49 2d 4b 45 59 20 69 73 20 74 68 65 20 | .keyword..Set.an.API-KEY.is.the. |
| 116680 | 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 77 | minimal.configuration.to.get.a.w |
| 1166a0 | 6f 72 6b 69 6e 67 20 41 50 49 20 45 6e 64 70 6f 69 6e 74 2e 00 53 65 74 20 61 6e 20 65 78 74 65 | orking.API.Endpoint..Set.an.exte |
| 1166c0 | 72 6e 61 6c 20 70 6f 72 74 2d 72 61 6e 67 65 20 66 6f 72 20 74 68 65 20 65 78 74 65 72 6e 61 6c | rnal.port-range.for.the.external |
| 1166e0 | 20 70 6f 6f 6c 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 61 6e 67 65 20 69 73 20 31 30 32 34 | .pool,.the.default.range.is.1024 |
| 116700 | 2d 36 35 35 33 35 2e 20 4d 75 6c 74 69 70 6c 65 20 65 6e 74 72 69 65 73 20 63 61 6e 20 62 65 20 | -65535..Multiple.entries.can.be. |
| 116720 | 61 64 64 65 64 20 74 6f 20 74 68 65 20 73 61 6d 65 20 70 6f 6f 6c 2e 00 53 65 74 20 61 75 74 68 | added.to.the.same.pool..Set.auth |
| 116740 | 65 6e 74 69 63 61 74 69 6f 6e 20 62 61 63 6b 65 6e 64 2e 20 54 68 65 20 63 6f 6e 66 69 67 75 72 | entication.backend..The.configur |
| 116760 | 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 61 63 6b 65 6e 64 20 69 73 20 75 73 65 | ed.authentication.backend.is.use |
| 116780 | 64 20 66 6f 72 20 61 6c 6c 20 71 75 65 72 69 65 73 2e 00 53 65 74 20 63 6f 6e 6e 65 63 74 69 6f | d.for.all.queries..Set.connectio |
| 1167a0 | 6e 20 6d 61 72 6b 20 76 61 6c 75 65 2e 00 53 65 74 20 63 6f 6e 74 61 69 6e 65 72 20 63 61 70 61 | n.mark.value..Set.container.capa |
| 1167c0 | 62 69 6c 69 74 69 65 73 20 6f 72 20 70 65 72 6d 69 73 73 69 6f 6e 73 2e 00 53 65 74 20 63 6f 6e | bilities.or.permissions..Set.con |
| 1167e0 | 74 61 69 6e 65 72 20 73 79 73 63 74 6c 20 76 61 6c 75 65 73 2e 00 53 65 74 20 63 75 73 74 6f 6d | tainer.sysctl.values..Set.custom |
| 116800 | 20 48 54 54 50 20 68 65 61 64 65 72 73 20 74 6f 20 62 65 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 | .HTTP.headers.to.be.included.in. |
| 116820 | 61 6c 6c 20 72 65 73 70 6f 6e 73 65 73 00 53 65 74 20 63 75 73 74 6f 6d 20 48 54 54 50 20 68 65 | all.responses.Set.custom.HTTP.he |
| 116840 | 61 64 65 72 73 20 74 6f 20 62 65 20 69 6e 63 6c 75 64 65 64 20 69 6e 20 61 6c 6c 20 72 65 73 70 | aders.to.be.included.in.all.resp |
| 116860 | 6f 6e 73 65 73 20 75 73 69 6e 67 20 74 68 65 20 62 61 63 6b 65 6e 64 00 53 65 74 20 64 65 6c 61 | onses.using.the.backend.Set.dela |
| 116880 | 79 20 62 65 74 77 65 65 6e 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 6d 65 73 73 61 67 65 | y.between.gratuitous.ARP.message |
| 1168a0 | 73 20 73 65 6e 74 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 53 65 74 20 64 65 6c 61 | s.sent.on.an.interface..Set.dela |
| 1168c0 | 79 20 66 6f 72 20 73 65 63 6f 6e 64 20 73 65 74 20 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 | y.for.second.set.of.gratuitous.A |
| 1168e0 | 52 50 73 20 61 66 74 65 72 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 6f 20 4d 41 53 54 45 52 2e 00 | RPs.after.transition.to.MASTER.. |
| 116900 | 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 60 3c 74 65 78 74 3e 60 20 66 6f 72 20 64 79 6e | Set.description.`<text>`.for.dyn |
| 116920 | 61 6d 69 63 20 44 4e 53 20 73 65 72 76 69 63 65 20 62 65 69 6e 67 20 63 6f 6e 66 69 67 75 72 65 | amic.DNS.service.being.configure |
| 116940 | 64 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 61 73 2d 70 61 74 68 2d 6c | d..Set.description.for.as-path-l |
| 116960 | 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 | ist.policy..Set.description.for. |
| 116980 | 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 | community-list.policy..Set.descr |
| 1169a0 | 69 70 74 69 6f 6e 20 66 6f 72 20 65 78 74 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c | iption.for.extcommunity-list.pol |
| 1169c0 | 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 6c 61 72 67 65 2d 63 | icy..Set.description.for.large-c |
| 1169e0 | 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 | ommunity-list.policy..Set.descri |
| 116a00 | 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c 65 20 69 6e 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 | ption.for.rule.in.IPv6.prefix-li |
| 116a20 | 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 72 75 6c 65 20 69 6e 20 | st..Set.description.for.rule.in. |
| 116a40 | 74 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e | the.prefix-list..Set.description |
| 116a60 | 20 66 6f 72 20 72 75 6c 65 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 | .for.rule..Set.description.for.t |
| 116a80 | 68 65 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 | he.IPv6.access.list..Set.descrip |
| 116aa0 | 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f | tion.for.the.IPv6.prefix-list.po |
| 116ac0 | 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 61 63 | licy..Set.description.for.the.ac |
| 116ae0 | 63 65 73 73 20 6c 69 73 74 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 | cess.list..Set.description.for.t |
| 116b00 | 68 65 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 | he.prefix-list.policy..Set.descr |
| 116b20 | 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2e | iption.for.the.route-map.policy. |
| 116b40 | 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 72 75 6c 65 20 69 6e | .Set.description.for.the.rule.in |
| 116b60 | 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2e 00 53 65 74 20 64 65 73 63 72 | .the.route-map.policy..Set.descr |
| 116b80 | 69 70 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 | iption.of.the.peer.or.peer.group |
| 116ba0 | 2e 00 53 65 74 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 53 65 74 20 64 65 73 74 69 6e 61 74 69 | ..Set.description..Set.destinati |
| 116bc0 | 6f 6e 20 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 2e 00 53 | on.address.or.prefix.to.match..S |
| 116be0 | 65 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 | et.destination.routing.protocol. |
| 116c00 | 6d 65 74 72 69 63 2e 20 41 64 64 20 6f 72 20 73 75 62 74 72 61 63 74 20 6d 65 74 72 69 63 2c 20 | metric..Add.or.subtract.metric,. |
| 116c20 | 6f 72 20 73 65 74 20 6d 65 74 72 69 63 20 76 61 6c 75 65 2e 00 53 65 74 20 65 74 68 31 20 74 6f | or.set.metric.value..Set.eth1.to |
| 116c40 | 20 62 65 20 74 68 65 20 6c 69 73 74 65 6e 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 | .be.the.listening.interface.for. |
| 116c60 | 74 68 65 20 44 48 43 50 76 36 20 72 65 6c 61 79 2e 00 53 65 74 20 65 78 65 63 75 74 69 6f 6e 20 | the.DHCPv6.relay..Set.execution. |
| 116c80 | 74 69 6d 65 20 69 6e 20 63 6f 6d 6d 6f 6e 20 63 72 6f 6e 5f 20 74 69 6d 65 20 66 6f 72 6d 61 74 | time.in.common.cron_.time.format |
| 116ca0 | 2e 20 41 20 63 72 6f 6e 20 60 3c 73 70 65 63 3e 60 20 6f 66 20 60 60 33 30 20 2a 2f 36 20 2a 20 | ..A.cron.`<spec>`.of.``30.*/6.*. |
| 116cc0 | 2a 20 2a 60 60 20 77 6f 75 6c 64 20 65 78 65 63 75 74 65 20 74 68 65 20 60 3c 74 61 73 6b 3e 60 | *.*``.would.execute.the.`<task>` |
| 116ce0 | 20 61 74 20 6d 69 6e 75 74 65 20 33 30 20 70 61 73 74 20 65 76 65 72 79 20 36 74 68 20 68 6f 75 | .at.minute.30.past.every.6th.hou |
| 116d00 | 72 2e 00 53 65 74 20 65 78 74 63 6f 6d 6d 75 6e 69 74 79 20 62 61 6e 64 77 69 64 74 68 00 53 65 | r..Set.extcommunity.bandwidth.Se |
| 116d20 | 74 20 65 78 74 65 72 6e 61 6c 20 73 6f 75 72 63 65 20 70 6f 72 74 20 6c 69 6d 69 74 73 20 74 68 | t.external.source.port.limits.th |
| 116d40 | 61 74 20 77 69 6c 6c 20 62 65 20 61 6c 6c 6f 63 61 74 65 64 20 74 6f 20 65 61 63 68 20 73 75 62 | at.will.be.allocated.to.each.sub |
| 116d60 | 73 63 72 69 62 65 72 20 69 6e 64 69 76 69 64 75 61 6c 6c 79 2e 20 54 68 65 20 64 65 66 61 75 6c | scriber.individually..The.defaul |
| 116d80 | 74 20 76 61 6c 75 65 20 69 73 20 32 30 30 30 2e 00 53 65 74 20 68 6f 70 20 6c 69 6d 69 74 20 76 | t.value.is.2000..Set.hop.limit.v |
| 116da0 | 61 6c 75 65 2e 00 53 65 74 20 69 66 20 61 6e 74 65 6e 6e 61 20 70 61 74 74 65 72 6e 20 64 6f 65 | alue..Set.if.antenna.pattern.doe |
| 116dc0 | 73 20 6e 6f 74 20 63 68 61 6e 67 65 20 64 75 72 69 6e 67 20 74 68 65 20 6c 69 66 65 74 69 6d 65 | s.not.change.during.the.lifetime |
| 116de0 | 20 6f 66 20 61 6e 20 61 73 73 6f 63 69 61 74 69 6f 6e 00 53 65 74 20 69 6e 62 6f 75 6e 64 20 69 | .of.an.association.Set.inbound.i |
| 116e00 | 6e 74 65 72 66 61 63 65 20 74 6f 20 6d 61 74 63 68 2e 00 53 65 74 20 69 6e 74 65 72 66 61 63 65 | nterface.to.match..Set.interface |
| 116e20 | 73 20 74 6f 20 61 20 7a 6f 6e 65 2e 20 41 20 7a 6f 6e 65 20 63 61 6e 20 68 61 76 65 20 6d 75 6c | s.to.a.zone..A.zone.can.have.mul |
| 116e40 | 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 2e 20 42 75 74 20 61 6e 20 69 6e 74 65 72 66 61 | tiple.interfaces..But.an.interfa |
| 116e60 | 63 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 61 20 6d 65 6d 62 65 72 20 69 6e 20 6f 6e 65 20 7a | ce.can.only.be.a.member.in.one.z |
| 116e80 | 6f 6e 65 2e 00 53 65 74 20 6c 6f 63 61 6c 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 41 75 74 6f 6e | one..Set.local.:abbr:`ASN.(Auton |
| 116ea0 | 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 74 68 61 74 20 74 68 69 73 20 | omous.System.Number)`.that.this. |
| 116ec0 | 72 6f 75 74 65 72 20 72 65 70 72 65 73 65 6e 74 73 2e 20 54 68 69 73 20 69 73 20 61 20 61 20 6d | router.represents..This.is.a.a.m |
| 116ee0 | 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 21 00 53 65 74 20 6c 6f 63 61 6c 20 61 75 74 6f 6e | andatory.option!.Set.local.auton |
| 116f00 | 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 6e 75 6d 62 65 72 20 74 68 61 74 20 74 68 69 73 20 72 6f | omous.system.number.that.this.ro |
| 116f20 | 75 74 65 72 20 72 65 70 72 65 73 65 6e 74 73 2e 20 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 | uter.represents..This.is.a.manda |
| 116f40 | 74 6f 72 79 20 6f 70 74 69 6f 6e 21 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 | tory.option!.Set.match.criteria. |
| 116f60 | 62 61 73 65 64 20 6f 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 61 72 6b 2e 00 53 65 74 20 6d 61 | based.on.connection.mark..Set.ma |
| 116f80 | 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 64 65 73 74 69 6e 61 74 69 6f | tch.criteria.based.on.destinatio |
| 116fa0 | 6e 20 70 6f 72 74 2c 20 77 68 65 72 65 20 3c 6d 61 74 63 68 5f 63 72 69 74 65 72 69 61 3e 20 63 | n.port,.where.<match_criteria>.c |
| 116fc0 | 6f 75 6c 64 20 62 65 3a 00 53 65 74 20 6d 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 | ould.be:.Set.match.criteria.base |
| 116fe0 | 64 20 6f 6e 20 73 65 73 73 69 6f 6e 20 73 74 61 74 65 2e 00 53 65 74 20 6d 61 74 63 68 20 63 72 | d.on.session.state..Set.match.cr |
| 117000 | 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e | iteria.based.on.source.or.destin |
| 117020 | 61 74 69 6f 6e 20 67 72 6f 75 70 73 2c 20 77 68 65 72 65 20 3c 74 65 78 74 3e 20 77 6f 75 6c 64 | ation.groups,.where.<text>.would |
| 117040 | 20 62 65 20 74 68 65 20 67 72 6f 75 70 20 6e 61 6d 65 2f 69 64 65 6e 74 69 66 69 65 72 2e 20 50 | .be.the.group.name/identifier..P |
| 117060 | 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 27 21 27 20 66 6f 72 20 69 6e 76 65 72 74 65 | repend.character.'!'.for.inverte |
| 117080 | 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 53 65 74 20 6d 61 74 63 68 20 63 | d.matching.criteria..Set.match.c |
| 1170a0 | 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 | riteria.based.on.source.or.desti |
| 1170c0 | 6e 61 74 69 6f 6e 20 69 70 76 34 7c 69 70 76 36 20 61 64 64 72 65 73 73 2c 20 77 68 65 72 65 20 | nation.ipv4|ipv6.address,.where. |
| 1170e0 | 3c 6d 61 74 63 68 5f 63 72 69 74 65 72 69 61 3e 20 63 6f 75 6c 64 20 62 65 3a 00 53 65 74 20 6d | <match_criteria>.could.be:.Set.m |
| 117100 | 61 74 63 68 20 63 72 69 74 65 72 69 61 20 62 61 73 65 64 20 6f 6e 20 74 63 70 20 66 6c 61 67 73 | atch.criteria.based.on.tcp.flags |
| 117120 | 2e 20 41 6c 6c 6f 77 65 64 20 76 61 6c 75 65 73 20 66 6f 72 20 54 43 50 20 66 6c 61 67 73 3a 20 | ..Allowed.values.for.TCP.flags:. |
| 117140 | 53 59 4e 20 41 43 4b 20 46 49 4e 20 52 53 54 20 55 52 47 20 50 53 48 20 41 4c 4c 2e 20 57 68 65 | SYN.ACK.FIN.RST.URG.PSH.ALL..Whe |
| 117160 | 6e 20 73 70 65 63 69 66 79 69 6e 67 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 66 6c 61 67 2c | n.specifying.more.than.one.flag, |
| 117180 | 20 66 6c 61 67 73 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6d 6d 61 2d 73 65 70 61 72 61 74 65 64 | .flags.should.be.comma-separated |
| 1171a0 | 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 20 3a 20 76 61 6c 75 65 20 6f 66 20 27 53 59 4e 2c 21 41 | ..For.example.:.value.of.'SYN,!A |
| 1171c0 | 43 4b 2c 21 46 49 4e 2c 21 52 53 54 27 20 77 69 6c 6c 20 6f 6e 6c 79 20 6d 61 74 63 68 20 70 61 | CK,!FIN,!RST'.will.only.match.pa |
| 1171e0 | 63 6b 65 74 73 20 77 69 74 68 20 74 68 65 20 53 59 4e 20 66 6c 61 67 20 73 65 74 2c 20 61 6e 64 | ckets.with.the.SYN.flag.set,.and |
| 117200 | 20 74 68 65 20 41 43 4b 2c 20 46 49 4e 20 61 6e 64 20 52 53 54 20 66 6c 61 67 73 20 75 6e 73 65 | .the.ACK,.FIN.and.RST.flags.unse |
| 117220 | 74 2e 00 53 65 74 20 6d 61 78 69 6d 75 6d 20 60 3c 73 69 7a 65 3e 60 20 6f 66 20 44 48 43 50 20 | t..Set.maximum.`<size>`.of.DHCP. |
| 117240 | 70 61 63 6b 65 74 73 20 69 6e 63 6c 75 64 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e 74 20 69 6e | packets.including.relay.agent.in |
| 117260 | 66 6f 72 6d 61 74 69 6f 6e 2e 20 49 66 20 61 20 44 48 43 50 20 70 61 63 6b 65 74 20 73 69 7a 65 | formation..If.a.DHCP.packet.size |
| 117280 | 20 73 75 72 70 61 73 73 65 73 20 74 68 69 73 20 76 61 6c 75 65 20 69 74 20 77 69 6c 6c 20 62 65 | .surpasses.this.value.it.will.be |
| 1172a0 | 20 66 6f 72 77 61 72 64 65 64 20 77 69 74 68 6f 75 74 20 61 70 70 65 6e 64 69 6e 67 20 72 65 6c | .forwarded.without.appending.rel |
| 1172c0 | 61 79 20 61 67 65 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 52 61 6e 67 65 20 36 34 2e 2e | ay.agent.information..Range.64.. |
| 1172e0 | 2e 31 34 30 30 2c 20 64 65 66 61 75 6c 74 20 35 37 36 2e 00 53 65 74 20 6d 61 78 69 6d 75 6d 20 | .1400,.default.576..Set.maximum. |
| 117300 | 61 76 65 72 61 67 65 20 6d 61 74 63 68 69 6e 67 20 72 61 74 65 2e 20 46 6f 72 6d 61 74 20 66 6f | average.matching.rate..Format.fo |
| 117320 | 72 20 72 61 74 65 3a 20 69 6e 74 65 67 65 72 2f 74 69 6d 65 5f 75 6e 69 74 2c 20 77 68 65 72 65 | r.rate:.integer/time_unit,.where |
| 117340 | 20 74 69 6d 65 5f 75 6e 69 74 20 63 6f 75 6c 64 20 62 65 20 61 6e 79 20 6f 6e 65 20 6f 66 20 73 | .time_unit.could.be.any.one.of.s |
| 117360 | 65 63 6f 6e 64 2c 20 6d 69 6e 75 74 65 2c 20 68 6f 75 72 20 6f 72 20 64 61 79 2e 46 6f 72 20 65 | econd,.minute,.hour.or.day.For.e |
| 117380 | 78 61 6d 70 6c 65 20 31 2f 73 65 63 6f 6e 64 20 69 6d 70 6c 69 65 73 20 72 75 6c 65 20 74 6f 20 | xample.1/second.implies.rule.to. |
| 1173a0 | 62 65 20 6d 61 74 63 68 65 64 20 61 74 20 61 6e 20 61 76 65 72 61 67 65 20 6f 66 20 6f 6e 63 65 | be.matched.at.an.average.of.once |
| 1173c0 | 20 70 65 72 20 73 65 63 6f 6e 64 2e 00 53 65 74 20 6d 61 78 69 6d 75 6d 20 68 6f 70 20 63 6f 75 | .per.second..Set.maximum.hop.cou |
| 1173e0 | 6e 74 20 62 65 66 6f 72 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2c | nt.before.packets.are.discarded, |
| 117400 | 20 64 65 66 61 75 6c 74 3a 20 31 30 00 53 65 74 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 | .default:.10.Set.maximum.number. |
| 117420 | 6f 66 20 70 61 63 6b 65 74 73 20 74 6f 20 61 6c 6f 77 20 69 6e 20 65 78 63 65 73 73 20 6f 66 20 | of.packets.to.alow.in.excess.of. |
| 117440 | 72 61 74 65 2e 00 53 65 74 20 6d 69 6e 69 6d 75 6d 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 | rate..Set.minimum.time.interval. |
| 117460 | 66 6f 72 20 72 65 66 72 65 73 68 69 6e 67 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 20 77 | for.refreshing.gratuitous.ARPs.w |
| 117480 | 68 69 6c 65 20 4d 41 53 54 45 52 2e 00 53 65 74 20 6d 6f 64 65 20 66 6f 72 20 49 50 73 65 63 20 | hile.MASTER..Set.mode.for.IPsec. |
| 1174a0 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 | authentication.between.VyOS.and. |
| 1174c0 | 4c 32 54 50 20 63 6c 69 65 6e 74 73 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 67 72 61 74 | L2TP.clients..Set.number.of.grat |
| 1174e0 | 75 69 74 6f 75 73 20 41 52 50 20 6d 65 73 73 61 67 65 73 20 74 6f 20 73 65 6e 64 20 61 74 20 61 | uitous.ARP.messages.to.send.at.a |
| 117500 | 20 74 69 6d 65 20 61 66 74 65 72 20 74 72 61 6e 73 69 74 69 6f 6e 20 74 6f 20 4d 41 53 54 45 52 | .time.after.transition.to.MASTER |
| 117520 | 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 6d | ..Set.number.of.gratuitous.ARP.m |
| 117540 | 65 73 73 61 67 65 73 20 74 6f 20 73 65 6e 64 20 61 74 20 61 20 74 69 6d 65 20 77 68 69 6c 65 20 | essages.to.send.at.a.time.while. |
| 117560 | 4d 41 53 54 45 52 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f | MASTER..Set.number.of.seconds.fo |
| 117580 | 72 20 48 65 6c 6c 6f 20 49 6e 74 65 72 76 61 6c 20 74 69 6d 65 72 20 76 61 6c 75 65 2e 20 53 65 | r.Hello.Interval.timer.value..Se |
| 1175a0 | 74 74 69 6e 67 20 74 68 69 73 20 76 61 6c 75 65 2c 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 20 77 | tting.this.value,.Hello.packet.w |
| 1175c0 | 69 6c 6c 20 62 65 20 73 65 6e 74 20 65 76 65 72 79 20 74 69 6d 65 72 20 76 61 6c 75 65 20 73 65 | ill.be.sent.every.timer.value.se |
| 1175e0 | 63 6f 6e 64 73 20 6f 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 | conds.on.the.specified.interface |
| 117600 | 2e 20 54 68 69 73 20 76 61 6c 75 65 20 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 6d 65 20 66 6f | ..This.value.must.be.the.same.fo |
| 117620 | 72 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 63 6f 6d 6d | r.all.routers.attached.to.a.comm |
| 117640 | 6f 6e 20 6e 65 74 77 6f 72 6b 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 | on.network..The.default.value.is |
| 117660 | 20 31 30 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 | .10.seconds..The.interval.range. |
| 117680 | 69 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 53 65 74 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 | is.1.to.65535..Set.number.of.sec |
| 1176a0 | 6f 6e 64 73 20 66 6f 72 20 72 6f 75 74 65 72 20 44 65 61 64 20 49 6e 74 65 72 76 61 6c 20 74 69 | onds.for.router.Dead.Interval.ti |
| 1176c0 | 6d 65 72 20 76 61 6c 75 65 20 75 73 65 64 20 66 6f 72 20 57 61 69 74 20 54 69 6d 65 72 20 61 6e | mer.value.used.for.Wait.Timer.an |
| 1176e0 | 64 20 49 6e 61 63 74 69 76 69 74 79 20 54 69 6d 65 72 2e 20 54 68 69 73 20 76 61 6c 75 65 20 6d | d.Inactivity.Timer..This.value.m |
| 117700 | 75 73 74 20 62 65 20 74 68 65 20 73 61 6d 65 20 66 6f 72 20 61 6c 6c 20 72 6f 75 74 65 72 73 20 | ust.be.the.same.for.all.routers. |
| 117720 | 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 63 6f 6d 6d 6f 6e 20 6e 65 74 77 6f 72 6b 2e 20 54 68 | attached.to.a.common.network..Th |
| 117740 | 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 34 30 20 73 65 63 6f 6e 64 73 2e 20 54 | e.default.value.is.40.seconds..T |
| 117760 | 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 2e | he.interval.range.is.1.to.65535. |
| 117780 | 00 53 65 74 20 70 61 63 6b 65 74 20 6d 6f 64 69 66 69 63 61 74 69 6f 6e 73 3a 20 45 78 70 6c 69 | .Set.packet.modifications:.Expli |
| 1177a0 | 63 69 74 6c 79 20 73 65 74 20 54 43 50 20 4d 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 | citly.set.TCP.Maximum.segment.si |
| 1177c0 | 7a 65 20 76 61 6c 75 65 2e 00 53 65 74 20 70 61 63 6b 65 74 20 6d 6f 64 69 66 69 63 61 74 69 6f | ze.value..Set.packet.modificatio |
| 1177e0 | 6e 73 3a 20 50 61 63 6b 65 74 20 44 69 66 66 65 72 65 6e 74 69 61 74 65 64 20 53 65 72 76 69 63 | ns:.Packet.Differentiated.Servic |
| 117800 | 65 73 20 43 6f 64 65 70 6f 69 6e 74 20 28 44 53 43 50 29 00 53 65 74 20 70 61 72 61 6d 65 74 65 | es.Codepoint.(DSCP).Set.paramete |
| 117820 | 72 73 20 66 6f 72 20 6d 61 74 63 68 69 6e 67 20 72 65 63 65 6e 74 6c 79 20 73 65 65 6e 20 73 6f | rs.for.matching.recently.seen.so |
| 117840 | 75 72 63 65 73 2e 20 54 68 69 73 20 6d 61 74 63 68 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 | urces..This.match.could.be.used. |
| 117860 | 62 79 20 73 65 65 74 69 6e 67 20 63 6f 75 6e 74 20 28 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 | by.seeting.count.(source.address |
| 117880 | 20 73 65 65 6e 20 6d 6f 72 65 20 74 68 61 6e 20 3c 31 2d 32 35 35 3e 20 74 69 6d 65 73 29 20 61 | .seen.more.than.<1-255>.times).a |
| 1178a0 | 6e 64 2f 6f 72 20 74 69 6d 65 20 28 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 73 65 65 6e 20 | nd/or.time.(source.address.seen. |
| 1178c0 | 69 6e 20 74 68 65 20 6c 61 73 74 20 3c 30 2d 34 32 39 34 39 36 37 32 39 35 3e 20 73 65 63 6f 6e | in.the.last.<0-4294967295>.secon |
| 1178e0 | 64 73 29 2e 00 53 65 74 20 70 72 65 64 65 66 69 6e 65 64 20 73 68 61 72 65 64 20 73 65 63 72 65 | ds)..Set.predefined.shared.secre |
| 117900 | 74 20 70 68 72 61 73 65 2e 00 53 65 74 20 70 72 65 66 69 78 65 73 20 74 6f 20 74 61 62 6c 65 2e | t.phrase..Set.prefixes.to.table. |
| 117920 | 00 53 65 74 20 70 72 6f 78 79 20 66 6f 72 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 | .Set.proxy.for.all.connections.i |
| 117940 | 6e 69 74 69 61 74 65 64 20 62 79 20 56 79 4f 53 2c 20 69 6e 63 6c 75 64 69 6e 67 20 48 54 54 50 | nitiated.by.VyOS,.including.HTTP |
| 117960 | 2c 20 48 54 54 50 53 2c 20 61 6e 64 20 46 54 50 20 28 61 6e 6f 6e 79 6d 6f 75 73 20 66 74 70 29 | ,.HTTPS,.and.FTP.(anonymous.ftp) |
| 117980 | 2e 00 53 65 74 20 72 6f 75 74 65 20 74 61 72 67 65 74 20 76 61 6c 75 65 20 69 6e 20 66 6f 72 6d | ..Set.route.target.value.in.form |
| 1179a0 | 61 74 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 20 6f 72 | at.``<0-65535:0-4294967295>``.or |
| 1179c0 | 20 60 60 3c 49 50 3a 30 2d 36 35 35 33 35 3e 60 60 2e 00 53 65 74 20 72 6f 75 74 69 6e 67 20 74 | .``<IP:0-65535>``..Set.routing.t |
| 1179e0 | 61 62 6c 65 20 74 6f 20 66 6f 72 77 61 72 64 20 70 61 63 6b 65 74 20 74 6f 2e 00 53 65 74 20 72 | able.to.forward.packet.to..Set.r |
| 117a00 | 75 6c 65 20 61 63 74 69 6f 6e 20 74 6f 20 64 72 6f 70 2e 00 53 65 74 20 73 65 72 76 69 63 65 20 | ule.action.to.drop..Set.service. |
| 117a20 | 74 6f 20 62 69 6e 64 20 6f 6e 20 49 50 20 61 64 64 72 65 73 73 2c 20 62 79 20 64 65 66 61 75 6c | to.bind.on.IP.address,.by.defaul |
| 117a40 | 74 20 6c 69 73 74 65 6e 20 6f 6e 20 61 6e 79 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 00 53 65 | t.listen.on.any.IPv4.and.IPv6.Se |
| 117a60 | 74 20 73 69 74 65 20 6f 66 20 6f 72 69 67 69 6e 20 76 61 6c 75 65 20 69 6e 20 66 6f 72 6d 61 74 | t.site.of.origin.value.in.format |
| 117a80 | 20 60 60 3c 30 2d 36 35 35 33 35 3a 30 2d 34 32 39 34 39 36 37 32 39 35 3e 60 60 20 6f 72 20 60 | .``<0-65535:0-4294967295>``.or.` |
| 117aa0 | 60 3c 49 50 3a 30 2d 36 35 35 33 35 3e 60 60 2e 00 53 65 74 20 73 6f 6d 65 20 61 74 74 72 69 62 | `<IP:0-65535>``..Set.some.attrib |
| 117ac0 | 75 74 65 73 20 28 6c 69 6b 65 20 41 53 20 50 41 54 48 20 6f 72 20 43 6f 6d 6d 75 6e 69 74 79 20 | utes.(like.AS.PATH.or.Community. |
| 117ae0 | 76 61 6c 75 65 29 20 74 6f 20 61 64 76 65 72 74 69 73 65 64 20 72 6f 75 74 65 73 20 74 6f 20 6e | value).to.advertised.routes.to.n |
| 117b00 | 65 69 67 68 62 6f 72 73 2e 00 53 65 74 20 73 6f 6d 65 20 6d 65 74 72 69 63 20 74 6f 20 72 6f 75 | eighbors..Set.some.metric.to.rou |
| 117b20 | 74 65 73 20 6c 65 61 72 6e 65 64 20 66 72 6f 6d 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 | tes.learned.from.a.particular.ne |
| 117b40 | 69 67 68 62 6f 72 2e 00 53 65 74 20 73 6f 75 72 63 65 20 49 50 2f 49 50 76 36 20 61 64 64 72 65 | ighbor..Set.source.IP/IPv6.addre |
| 117b60 | 73 73 20 66 6f 72 20 72 6f 75 74 65 2e 00 53 65 74 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 | ss.for.route..Set.source.address |
| 117b80 | 20 6f 72 20 70 72 65 66 69 78 20 74 6f 20 6d 61 74 63 68 2e 00 53 65 74 20 73 6f 75 72 63 65 2d | .or.prefix.to.match..Set.source- |
| 117ba0 | 61 64 64 72 65 73 73 20 74 6f 20 79 6f 75 72 20 6c 6f 63 61 6c 20 49 50 20 28 4c 41 4e 29 2e 00 | address.to.your.local.IP.(LAN).. |
| 117bc0 | 53 65 74 20 74 61 67 20 76 61 6c 75 65 20 66 6f 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 | Set.tag.value.for.routing.protoc |
| 117be0 | 6f 6c 2e 00 53 65 74 20 74 68 65 20 22 72 65 63 75 72 73 69 6f 6e 20 64 65 73 69 72 65 64 22 20 | ol..Set.the."recursion.desired". |
| 117c00 | 62 69 74 20 69 6e 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 | bit.in.requests.to.the.upstream. |
| 117c20 | 6e 61 6d 65 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 44 52 20 28 44 | nameserver..Set.the.:abbr:`DR.(D |
| 117c40 | 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 29 60 20 50 72 69 6f 72 69 74 79 20 66 6f 72 20 | esignated.Router)`.Priority.for. |
| 117c60 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 | the.interface..This.command.is.u |
| 117c80 | 73 65 66 75 6c 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 75 73 65 72 20 74 6f 20 69 6e 66 6c 75 | seful.to.allow.the.user.to.influ |
| 117ca0 | 65 6e 63 65 20 77 68 61 74 20 6e 6f 64 65 20 62 65 63 6f 6d 65 73 20 74 68 65 20 44 52 20 66 6f | ence.what.node.becomes.the.DR.fo |
| 117cc0 | 72 20 61 20 4c 41 4e 20 73 65 67 6d 65 6e 74 2e 00 53 65 74 20 74 68 65 20 3a 61 62 62 72 3a 60 | r.a.LAN.segment..Set.the.:abbr:` |
| 117ce0 | 4d 52 55 20 28 4d 61 78 69 6d 75 6d 20 52 65 63 65 69 76 65 20 55 6e 69 74 29 60 20 74 6f 20 60 | MRU.(Maximum.Receive.Unit)`.to.` |
| 117d00 | 6d 72 75 60 2e 20 50 50 50 64 20 77 69 6c 6c 20 61 73 6b 20 74 68 65 20 70 65 65 72 20 74 6f 20 | mru`..PPPd.will.ask.the.peer.to. |
| 117d20 | 73 65 6e 64 20 70 61 63 6b 65 74 73 20 6f 66 20 6e 6f 20 6d 6f 72 65 20 74 68 61 6e 20 60 6d 72 | send.packets.of.no.more.than.`mr |
| 117d40 | 75 60 20 62 79 74 65 73 2e 20 54 68 65 20 76 61 6c 75 65 20 6f 66 20 60 6d 72 75 60 20 6d 75 73 | u`.bytes..The.value.of.`mru`.mus |
| 117d60 | 74 20 62 65 20 62 65 74 77 65 65 6e 20 31 32 38 20 61 6e 64 20 31 36 33 38 34 2e 00 53 65 74 20 | t.be.between.128.and.16384..Set. |
| 117d80 | 74 68 65 20 3a 61 62 62 72 3a 60 54 54 4c 20 28 54 69 6d 65 2d 74 6f 2d 6c 69 76 65 29 60 20 66 | the.:abbr:`TTL.(Time-to-live)`.f |
| 117da0 | 6f 72 20 74 68 65 20 72 65 63 6f 72 64 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 44 65 66 61 75 6c | or.the.record.in.seconds..Defaul |
| 117dc0 | 74 20 69 73 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 65 20 42 47 50 20 6e 65 | t.is.300.seconds..Set.the.BGP.ne |
| 117de0 | 78 74 68 6f 70 20 61 64 64 72 65 73 73 20 74 6f 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 | xthop.address.to.the.address.of. |
| 117e00 | 74 68 65 20 70 65 65 72 2e 20 46 6f 72 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 20 72 6f 75 74 65 2d | the.peer..For.an.incoming.route- |
| 117e20 | 6d 61 70 20 74 68 69 73 20 6d 65 61 6e 73 20 74 68 65 20 69 70 20 61 64 64 72 65 73 73 20 6f 66 | map.this.means.the.ip.address.of |
| 117e40 | 20 6f 75 72 20 70 65 65 72 20 69 73 20 75 73 65 64 2e 20 46 6f 72 20 61 6e 20 6f 75 74 67 6f 69 | .our.peer.is.used..For.an.outgoi |
| 117e60 | 6e 67 20 72 6f 75 74 65 2d 6d 61 70 20 74 68 69 73 20 6d 65 61 6e 73 20 74 68 65 20 69 70 20 61 | ng.route-map.this.means.the.ip.a |
| 117e80 | 64 64 72 65 73 73 20 6f 66 20 6f 75 72 20 73 65 6c 66 20 69 73 20 75 73 65 64 20 74 6f 20 65 73 | ddress.of.our.self.is.used.to.es |
| 117ea0 | 74 61 62 6c 69 73 68 20 74 68 65 20 70 65 65 72 69 6e 67 20 77 69 74 68 20 6f 75 72 20 6e 65 69 | tablish.the.peering.with.our.nei |
| 117ec0 | 67 68 62 6f 72 2e 00 53 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 | ghbor..Set.the.IP.address.of.the |
| 117ee0 | 20 6c 6f 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 | .local.interface.to.be.used.for. |
| 117f00 | 74 68 65 20 74 75 6e 6e 65 6c 2e 00 53 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f | the.tunnel..Set.the.IP.address.o |
| 117f20 | 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 49 74 20 6d 61 79 20 62 65 20 73 70 65 | f.the.remote.peer..It.may.be.spe |
| 117f40 | 63 69 66 69 65 64 20 61 73 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 | cified.as.an.IPv4.address.or.an. |
| 117f60 | 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 53 65 74 20 74 68 65 20 49 50 76 34 20 73 6f 75 72 63 | IPv6.address..Set.the.IPv4.sourc |
| 117f80 | 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 6d 6f 64 65 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | e.validation.mode..The.following |
| 117fa0 | 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 | .system.parameter.will.be.altere |
| 117fc0 | 64 3a 00 53 65 74 20 74 68 65 20 4d 4c 44 20 6c 61 73 74 20 6d 65 6d 62 65 72 20 71 75 65 72 79 | d:.Set.the.MLD.last.member.query |
| 117fe0 | 20 63 6f 75 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 2e 00 | .count..The.default.value.is.2.. |
| 118000 | 53 65 74 20 74 68 65 20 4d 4c 44 20 6c 61 73 74 20 6d 65 6d 62 65 72 20 71 75 65 72 79 20 69 6e | Set.the.MLD.last.member.query.in |
| 118020 | 74 65 72 76 61 6c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 28 31 30 30 2d 36 35 35 33 | terval.in.milliseconds.(100-6553 |
| 118040 | 35 30 30 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 20 | 500)..The.default.value.is.1000. |
| 118060 | 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 65 20 4d 4c 44 20 71 75 65 72 79 20 | milliseconds..Set.the.MLD.query. |
| 118080 | 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 | response.timeout.in.milliseconds |
| 1180a0 | 20 28 31 30 30 2d 36 35 35 33 35 30 30 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 | .(100-6553500)..The.default.valu |
| 1180c0 | 65 20 69 73 20 31 30 30 30 30 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 00 53 65 74 20 74 68 65 | e.is.10000.milliseconds..Set.the |
| 1180e0 | 20 4d 4c 44 20 76 65 72 73 69 6f 6e 20 75 73 65 64 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 | .MLD.version.used.on.this.interf |
| 118100 | 61 63 65 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 32 2e 00 53 65 74 | ace..The.default.value.is.2..Set |
| 118120 | 20 74 68 65 20 4d 61 78 69 6d 75 6d 20 53 74 61 63 6b 20 44 65 70 74 68 20 73 75 70 70 6f 72 74 | .the.Maximum.Stack.Depth.support |
| 118140 | 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 2e 20 54 68 65 20 76 61 6c 75 65 20 64 65 70 65 | ed.by.the.router..The.value.depe |
| 118160 | 6e 64 20 6f 66 20 74 68 65 20 4d 50 4c 53 20 64 61 74 61 70 6c 61 6e 65 2e 00 53 65 74 20 74 68 | nd.of.the.MPLS.dataplane..Set.th |
| 118180 | 65 20 50 49 4d 20 68 65 6c 6c 6f 20 61 6e 64 20 68 6f 6c 64 20 69 6e 74 65 72 76 61 6c 20 66 6f | e.PIM.hello.and.hold.interval.fo |
| 1181a0 | 72 20 61 20 69 6e 74 65 72 66 61 63 65 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 | r.a.interface..Set.the.Segment.R |
| 1181c0 | 6f 75 74 69 6e 67 20 47 6c 6f 62 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 61 62 | outing.Global.Block.i.e..the.lab |
| 1181e0 | 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c | el.range.used.by.MPLS.to.store.l |
| 118200 | 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 | abel.in.the.MPLS.FIB.for.Prefix. |
| 118220 | 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 | SID..Note.that.the.block.size.ma |
| 118240 | 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d | y.not.exceed.65535..Set.the.Segm |
| 118260 | 65 6e 74 20 52 6f 75 74 69 6e 67 20 47 6c 6f 62 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 | ent.Routing.Global.Block.i.e..th |
| 118280 | 65 20 6c 6f 77 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 | e.low.label.range.used.by.MPLS.t |
| 1182a0 | 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f | o.store.label.in.the.MPLS.FIB.fo |
| 1182c0 | 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 | r.Prefix.SID..Note.that.the.bloc |
| 1182e0 | 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e 00 53 65 74 | k.size.may.not.exceed.65535..Set |
| 118300 | 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b | .the.Segment.Routing.Local.Block |
| 118320 | 20 69 2e 65 2e 20 74 68 65 20 6c 61 62 65 6c 20 72 61 6e 67 65 20 75 73 65 64 20 62 79 20 4d 50 | .i.e..the.label.range.used.by.MP |
| 118340 | 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 | LS.to.store.label.in.the.MPLS.FI |
| 118360 | 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 | B.for.Prefix.SID..Note.that.the. |
| 118380 | 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 65 78 63 65 65 64 20 36 35 35 33 35 2e | block.size.may.not.exceed.65535. |
| 1183a0 | 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 61 6c 20 42 6c 6f 63 6b 2c 20 54 68 65 | Segment.Routing.Local.Block,.The |
| 1183c0 | 20 6e 65 67 61 74 69 76 65 20 63 6f 6d 6d 61 6e 64 20 61 6c 77 61 79 73 20 75 6e 73 65 74 73 20 | .negative.command.always.unsets. |
| 1183e0 | 62 6f 74 68 2e 00 53 65 74 20 74 68 65 20 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f | both..Set.the.Segment.Routing.Lo |
| 118400 | 63 61 6c 20 42 6c 6f 63 6b 20 69 2e 65 2e 20 74 68 65 20 6c 6f 77 20 6c 61 62 65 6c 20 72 61 6e | cal.Block.i.e..the.low.label.ran |
| 118420 | 67 65 20 75 73 65 64 20 62 79 20 4d 50 4c 53 20 74 6f 20 73 74 6f 72 65 20 6c 61 62 65 6c 20 69 | ge.used.by.MPLS.to.store.label.i |
| 118440 | 6e 20 74 68 65 20 4d 50 4c 53 20 46 49 42 20 66 6f 72 20 50 72 65 66 69 78 20 53 49 44 2e 20 4e | n.the.MPLS.FIB.for.Prefix.SID..N |
| 118460 | 6f 74 65 20 74 68 61 74 20 74 68 65 20 62 6c 6f 63 6b 20 73 69 7a 65 20 6d 61 79 20 6e 6f 74 20 | ote.that.the.block.size.may.not. |
| 118480 | 65 78 63 65 65 64 20 36 35 35 33 35 2e 53 65 67 6d 65 6e 74 20 52 6f 75 74 69 6e 67 20 4c 6f 63 | exceed.65535.Segment.Routing.Loc |
| 1184a0 | 61 6c 20 42 6c 6f 63 6b 2c 20 54 68 65 20 6e 65 67 61 74 69 76 65 20 63 6f 6d 6d 61 6e 64 20 61 | al.Block,.The.negative.command.a |
| 1184c0 | 6c 77 61 79 73 20 75 6e 73 65 74 73 20 62 6f 74 68 2e 00 53 65 74 20 74 68 65 20 54 43 50 2d 4d | lways.unsets.both..Set.the.TCP-M |
| 1184e0 | 53 53 20 28 54 43 50 20 6d 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f | SS.(TCP.maximum.segment.size).fo |
| 118500 | 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 53 65 74 20 74 68 65 20 54 43 50 2d 4d 53 | r.the.connection..Set.the.TCP-MS |
| 118520 | 53 20 28 6d 61 78 69 6d 75 6d 20 73 65 67 6d 65 6e 74 20 73 69 7a 65 29 20 66 6f 72 20 74 68 65 | S.(maximum.segment.size).for.the |
| 118540 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 00 53 65 74 20 74 68 65 20 54 54 4c 20 28 54 69 6d 65 20 74 6f | .connection.Set.the.TTL.(Time.to |
| 118560 | 20 4c 69 76 65 29 20 76 61 6c 75 65 2e 00 53 65 74 20 74 68 65 20 55 73 65 72 20 49 44 20 6f 72 | .Live).value..Set.the.User.ID.or |
| 118580 | 20 47 72 6f 75 70 20 49 44 20 6f 66 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 00 53 65 74 20 74 | .Group.ID.of.the.container.Set.t |
| 1185a0 | 68 65 20 60 60 73 73 68 64 60 60 20 6c 6f 67 20 6c 65 76 65 6c 2e 20 54 68 65 20 64 65 66 61 75 | he.``sshd``.log.level..The.defau |
| 1185c0 | 6c 74 20 69 73 20 60 60 69 6e 66 6f 60 60 2e 00 53 65 74 20 74 68 65 20 61 64 64 72 65 73 73 20 | lt.is.``info``..Set.the.address. |
| 1185e0 | 6f 66 20 74 68 65 20 62 61 63 6b 65 6e 64 20 70 6f 72 74 00 53 65 74 20 74 68 65 20 61 64 64 72 | of.the.backend.port.Set.the.addr |
| 118600 | 65 73 73 20 6f 66 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 20 74 6f 20 77 68 69 | ess.of.the.backend.server.to.whi |
| 118620 | 63 68 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 | ch.the.incoming.traffic.will.be. |
| 118640 | 66 6f 72 77 61 72 64 65 64 00 53 65 74 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | forwarded.Set.the.authentication |
| 118660 | 20 74 79 70 65 20 66 6f 72 20 47 72 61 70 68 51 4c 2c 20 64 65 66 61 75 6c 74 20 6f 70 74 69 6f | .type.for.GraphQL,.default.optio |
| 118680 | 6e 20 69 73 20 6b 65 79 2e 20 41 76 61 69 6c 61 62 6c 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 3a | n.is.key..Available.options.are: |
| 1186a0 | 00 53 65 74 20 74 68 65 20 62 79 74 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 4a 57 54 20 | .Set.the.byte.length.of.the.JWT. |
| 1186c0 | 73 65 63 72 65 74 2e 20 44 65 66 61 75 6c 74 20 69 73 20 33 32 2e 00 53 65 74 20 74 68 65 20 63 | secret..Default.is.32..Set.the.c |
| 1186e0 | 6f 6d 6d 61 6e 64 20 61 72 67 75 6d 65 6e 74 73 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 72 | ommand.arguments.for.a.container |
| 118700 | 2e 00 53 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 52 50 20 76 65 72 73 69 6f 6e 20 74 | ..Set.the.default.VRRP.version.t |
| 118720 | 6f 20 75 73 65 2e 20 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 2c 20 62 75 74 20 49 | o.use..This.defaults.to.2,.but.I |
| 118740 | 50 76 36 20 69 6e 73 74 61 6e 63 65 73 20 77 69 6c 6c 20 61 6c 77 61 79 73 20 75 73 65 20 76 65 | Pv6.instances.will.always.use.ve |
| 118760 | 72 73 69 6f 6e 20 33 2e 00 53 65 74 20 74 68 65 20 64 65 76 69 63 65 27 73 20 74 72 61 6e 73 6d | rsion.3..Set.the.device's.transm |
| 118780 | 69 74 20 28 54 58 29 20 6b 65 79 2e 20 54 68 69 73 20 6b 65 79 20 6d 75 73 74 20 62 65 20 61 20 | it.(TX).key..This.key.must.be.a. |
| 1187a0 | 68 65 78 20 73 74 72 69 6e 67 20 74 68 61 74 20 69 73 20 31 36 2d 62 79 74 65 73 20 28 47 43 4d | hex.string.that.is.16-bytes.(GCM |
| 1187c0 | 2d 41 45 53 2d 31 32 38 29 20 6f 72 20 33 32 2d 62 79 74 65 73 20 28 47 43 4d 2d 41 45 53 2d 32 | -AES-128).or.32-bytes.(GCM-AES-2 |
| 1187e0 | 35 36 29 2e 00 53 65 74 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 64 65 | 56)..Set.the.distance.for.the.de |
| 118800 | 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 73 65 6e 74 20 62 79 20 74 68 65 20 44 48 43 50 20 73 | fault.gateway.sent.by.the.DHCP.s |
| 118820 | 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 68 65 20 | erver..Set.the.distance.for.the. |
| 118840 | 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 73 65 6e 74 20 62 79 20 74 68 65 20 50 50 50 6f | default.gateway.sent.by.the.PPPo |
| 118860 | 45 20 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 74 | E.server..Set.the.distance.for.t |
| 118880 | 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 73 65 6e 74 20 62 79 20 74 68 65 20 53 | he.default.gateway.sent.by.the.S |
| 1188a0 | 53 54 50 20 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 65 6e 63 61 70 73 75 6c 61 74 69 6f | STP.server..Set.the.encapsulatio |
| 1188c0 | 6e 20 74 79 70 65 20 6f 66 20 74 68 65 20 74 75 6e 6e 65 6c 2e 20 56 61 6c 69 64 20 76 61 6c 75 | n.type.of.the.tunnel..Valid.valu |
| 1188e0 | 65 73 20 66 6f 72 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 61 72 65 3a 20 75 64 70 2c 20 69 | es.for.encapsulation.are:.udp,.i |
| 118900 | 70 2e 00 53 65 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 20 61 6e | p..Set.the.global.setting.for.an |
| 118920 | 20 65 73 74 61 62 6c 69 73 68 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 53 65 74 20 74 68 65 | .established.connection..Set.the |
| 118940 | 20 67 6c 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 20 69 6e 76 61 6c 69 64 20 70 61 63 6b | .global.setting.for.invalid.pack |
| 118960 | 65 74 73 2e 00 53 65 74 20 74 68 65 20 67 6c 6f 62 61 6c 20 73 65 74 74 69 6e 67 20 66 6f 72 20 | ets..Set.the.global.setting.for. |
| 118980 | 72 65 6c 61 74 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 53 65 74 20 74 68 65 20 68 6f 73 | related.connections..Set.the.hos |
| 1189a0 | 74 20 6e 61 6d 65 20 66 6f 72 20 61 20 63 6f 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 74 68 65 20 | t.name.for.a.container..Set.the. |
| 1189c0 | 6c 69 66 65 74 69 6d 65 20 66 6f 72 20 4a 57 54 20 74 6f 6b 65 6e 73 20 69 6e 20 73 65 63 6f 6e | lifetime.for.JWT.tokens.in.secon |
| 1189e0 | 64 73 2e 20 44 65 66 61 75 6c 74 20 69 73 20 33 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 53 65 74 | ds..Default.is.3600.seconds..Set |
| 118a00 | 20 74 68 65 20 6c 69 73 74 65 6e 20 70 6f 72 74 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 41 50 | .the.listen.port.of.the.local.AP |
| 118a20 | 49 2c 20 74 68 69 73 20 68 61 73 20 6e 6f 20 65 66 66 65 63 74 20 6f 6e 20 74 68 65 20 77 65 62 | I,.this.has.no.effect.on.the.web |
| 118a40 | 73 65 72 76 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 70 6f 72 74 20 38 30 38 30 | server..The.default.is.port.8080 |
| 118a60 | 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 68 6f 70 20 60 3c 63 6f 75 6e 74 3e 60 20 62 | .Set.the.maximum.hop.`<count>`.b |
| 118a80 | 65 66 6f 72 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 69 73 63 61 72 64 65 64 2e 20 52 61 6e | efore.packets.are.discarded..Ran |
| 118aa0 | 67 65 20 30 2e 2e 2e 32 35 35 2c 20 64 65 66 61 75 6c 74 20 31 30 2e 00 53 65 74 20 74 68 65 20 | ge.0...255,.default.10..Set.the. |
| 118ac0 | 6d 61 78 69 6d 75 6d 20 6c 65 6e 67 74 68 20 6f 66 20 41 2d 4d 50 44 55 20 70 72 65 2d 45 4f 46 | maximum.length.of.A-MPDU.pre-EOF |
| 118ae0 | 20 70 61 64 64 69 6e 67 20 74 68 61 74 20 74 68 65 20 73 74 61 74 69 6f 6e 20 63 61 6e 20 72 65 | .padding.that.the.station.can.re |
| 118b00 | 63 65 69 76 65 00 53 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 | ceive.Set.the.maximum.number.of. |
| 118b20 | 54 43 50 20 68 61 6c 66 2d 6f 70 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 53 65 74 20 74 | TCP.half-open.connections..Set.t |
| 118b40 | 68 65 20 6d 61 78 69 6d 75 6d 20 72 65 71 75 65 73 74 20 62 6f 64 79 20 73 69 7a 65 20 69 6e 20 | he.maximum.request.body.size.in. |
| 118b60 | 6d 65 67 61 62 79 74 65 73 2e 20 44 65 66 61 75 6c 74 20 69 73 20 31 4d 42 2e 00 53 65 74 20 74 | megabytes..Default.is.1MB..Set.t |
| 118b80 | 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 53 53 4c 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 | he.name.of.the.SSL.:abbr:`CA.(Ce |
| 118ba0 | 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 29 60 20 50 4b 49 20 65 6e 74 72 79 20 | rtificate.Authority)`.PKI.entry. |
| 118bc0 | 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 | used.for.authentication.of.the.r |
| 118be0 | 65 6d 6f 74 65 20 73 69 64 65 2e 20 49 66 20 61 6e 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 43 | emote.side..If.an.intermediate.C |
| 118c00 | 41 20 63 65 72 74 69 66 69 63 61 74 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e | A.certificate.is.specified,.then |
| 118c20 | 20 61 6c 6c 20 70 61 72 65 6e 74 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 73 20 74 68 61 74 | .all.parent.CA.certificates.that |
| 118c40 | 20 65 78 69 73 74 20 69 6e 20 74 68 65 20 50 4b 49 2c 20 73 75 63 68 20 61 73 20 74 68 65 20 72 | .exist.in.the.PKI,.such.as.the.r |
| 118c60 | 6f 6f 74 20 43 41 20 6f 72 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 6e 74 65 72 6d 65 64 69 61 74 | oot.CA.or.additional.intermediat |
| 118c80 | 65 20 43 41 73 2c 20 77 69 6c 6c 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 62 65 20 75 73 65 | e.CAs,.will.automatically.be.use |
| 118ca0 | 64 20 64 75 72 69 6e 67 20 63 65 72 74 69 66 69 63 61 74 65 20 76 61 6c 69 64 61 74 69 6f 6e 20 | d.during.certificate.validation. |
| 118cc0 | 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 66 75 6c 6c 20 63 68 61 69 6e 20 6f 66 | to.ensure.that.the.full.chain.of |
| 118ce0 | 20 74 72 75 73 74 20 69 73 20 61 76 61 69 6c 61 62 6c 65 2e 00 53 65 74 20 74 68 65 20 6e 61 6d | .trust.is.available..Set.the.nam |
| 118d00 | 65 20 6f 66 20 74 68 65 20 78 35 30 39 20 63 6c 69 65 6e 74 20 6b 65 79 70 61 69 72 20 75 73 65 | e.of.the.x509.client.keypair.use |
| 118d20 | 64 20 74 6f 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 61 67 61 69 6e 73 74 20 74 68 65 20 38 30 | d.to.authenticate.against.the.80 |
| 118d40 | 32 2e 31 78 20 73 79 73 74 65 6d 2e 20 41 6c 6c 20 70 61 72 65 6e 74 20 43 41 20 63 65 72 74 69 | 2.1x.system..All.parent.CA.certi |
| 118d60 | 66 69 63 61 74 65 73 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 | ficates.of.the.client.certificat |
| 118d80 | 65 2c 20 73 75 63 68 20 61 73 20 69 6e 74 65 72 6d 65 64 69 61 74 65 20 61 6e 64 20 72 6f 6f 74 | e,.such.as.intermediate.and.root |
| 118da0 | 20 43 41 73 2c 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 | .CAs,.will.be.sent.as.part.of.th |
| 118dc0 | 65 20 45 41 50 2d 54 4c 53 20 68 61 6e 64 73 68 61 6b 65 2e 00 53 65 74 20 74 68 65 20 6e 61 74 | e.EAP-TLS.handshake..Set.the.nat |
| 118de0 | 69 76 65 20 56 4c 41 4e 20 49 44 20 66 6c 61 67 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 | ive.VLAN.ID.flag.of.the.interfac |
| 118e00 | 65 2e 20 57 68 65 6e 20 61 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 74 68 6f 75 74 20 61 20 | e..When.a.data.packet.without.a. |
| 118e20 | 56 4c 41 4e 20 74 61 67 20 65 6e 74 65 72 73 20 74 68 65 20 70 6f 72 74 2c 20 74 68 65 20 64 61 | VLAN.tag.enters.the.port,.the.da |
| 118e40 | 74 61 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 66 6f 72 63 65 64 20 74 6f 20 61 64 64 20 | ta.packet.will.be.forced.to.add. |
| 118e60 | 61 20 74 61 67 20 6f 66 20 61 20 73 70 65 63 69 66 69 63 20 76 6c 61 6e 20 69 64 2e 20 57 68 65 | a.tag.of.a.specific.vlan.id..Whe |
| 118e80 | 6e 20 74 68 65 20 76 6c 61 6e 20 69 64 20 66 6c 61 67 20 66 6c 6f 77 73 20 6f 75 74 2c 20 74 68 | n.the.vlan.id.flag.flows.out,.th |
| 118ea0 | 65 20 74 61 67 20 6f 66 20 74 68 65 20 76 6c 61 6e 20 69 64 20 77 69 6c 6c 20 62 65 20 73 74 72 | e.tag.of.the.vlan.id.will.be.str |
| 118ec0 | 69 70 70 65 64 00 53 65 74 20 74 68 65 20 6e 61 74 69 76 65 20 56 4c 41 4e 20 49 44 20 66 6c 61 | ipped.Set.the.native.VLAN.ID.fla |
| 118ee0 | 67 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 57 68 65 6e 20 61 20 64 61 74 61 20 | g.of.the.interface..When.a.data. |
| 118f00 | 70 61 63 6b 65 74 20 77 69 74 68 6f 75 74 20 61 20 56 4c 41 4e 20 74 61 67 20 65 6e 74 65 72 73 | packet.without.a.VLAN.tag.enters |
| 118f20 | 20 74 68 65 20 70 6f 72 74 2c 20 74 68 65 20 64 61 74 61 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 | .the.port,.the.data.packet.will. |
| 118f40 | 68 61 76 65 20 61 20 73 70 65 63 69 66 69 63 20 76 6c 61 6e 20 69 64 20 61 64 64 65 64 20 74 6f | have.a.specific.vlan.id.added.to |
| 118f60 | 20 69 74 2e 20 57 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 66 6c 6f 77 73 20 6f 75 74 2c 20 | .it..When.the.packet.flows.out,. |
| 118f80 | 74 68 65 20 6e 61 74 69 76 65 20 76 6c 61 6e 20 74 61 67 20 77 69 6c 6c 20 62 65 20 73 74 72 69 | the.native.vlan.tag.will.be.stri |
| 118fa0 | 70 70 65 64 2e 00 53 65 74 20 74 68 65 20 6e 65 78 74 2d 68 6f 70 20 61 73 20 75 6e 63 68 61 6e | pped..Set.the.next-hop.as.unchan |
| 118fc0 | 67 65 64 2e 20 50 61 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 2d 6d 61 70 20 | ged..Pass.through.the.route-map. |
| 118fe0 | 77 69 74 68 6f 75 74 20 63 68 61 6e 67 69 6e 67 20 69 74 73 20 76 61 6c 75 65 00 53 65 74 20 74 | without.changing.its.value.Set.t |
| 119000 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 54 43 50 20 6d 61 78 69 6d 75 6d 20 72 65 74 72 61 6e 73 | he.number.of.TCP.maximum.retrans |
| 119020 | 6d 69 74 20 61 74 74 65 6d 70 74 73 2e 00 53 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 | mit.attempts..Set.the.number.of. |
| 119040 | 68 65 61 6c 74 68 20 63 68 65 63 6b 20 66 61 69 6c 75 72 65 73 20 62 65 66 6f 72 65 20 61 6e 20 | health.check.failures.before.an. |
| 119060 | 69 6e 74 65 72 66 61 63 65 20 69 73 20 6d 61 72 6b 65 64 20 61 73 20 75 6e 61 76 61 69 6c 61 62 | interface.is.marked.as.unavailab |
| 119080 | 6c 65 2c 20 72 61 6e 67 65 20 66 6f 72 20 6e 75 6d 62 65 72 20 69 73 20 31 20 74 6f 20 31 30 2c | le,.range.for.number.is.1.to.10, |
| 1190a0 | 20 64 65 66 61 75 6c 74 20 31 2e 20 4f 72 20 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 | .default.1..Or.set.the.number.of |
| 1190c0 | 20 73 75 63 63 65 73 73 66 75 6c 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 20 62 65 66 6f 72 65 | .successful.health.checks.before |
| 1190e0 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 61 64 64 65 64 20 62 61 63 6b 20 74 6f 20 74 | .an.interface.is.added.back.to.t |
| 119100 | 68 65 20 69 6e 74 65 72 66 61 63 65 20 70 6f 6f 6c 2c 20 72 61 6e 67 65 20 66 6f 72 20 6e 75 6d | he.interface.pool,.range.for.num |
| 119120 | 62 65 72 20 69 73 20 31 20 74 6f 20 31 30 2c 20 64 65 66 61 75 6c 74 20 31 2e 00 53 65 74 20 74 | ber.is.1.to.10,.default.1..Set.t |
| 119140 | 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 | he.number.of.seconds.the.router. |
| 119160 | 77 61 69 74 73 20 75 6e 74 69 6c 20 72 65 74 72 79 69 6e 67 20 74 6f 20 63 6f 6e 6e 65 63 74 20 | waits.until.retrying.to.connect. |
| 119180 | 74 6f 20 74 68 65 20 63 61 63 68 65 20 73 65 72 76 65 72 2e 00 53 65 74 20 74 68 65 20 6e 75 6d | to.the.cache.server..Set.the.num |
| 1191a0 | 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 77 61 69 74 73 20 | ber.of.seconds.the.router.waits. |
| 1191c0 | 75 6e 74 69 6c 20 74 68 65 20 72 6f 75 74 65 72 20 65 78 70 69 72 65 73 20 74 68 65 20 63 61 63 | until.the.router.expires.the.cac |
| 1191e0 | 68 65 2e 00 53 65 74 20 74 68 65 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 74 68 69 73 20 70 75 62 | he..Set.the.options.for.this.pub |
| 119200 | 6c 69 63 20 6b 65 79 2e 20 53 65 65 20 74 68 65 20 73 73 68 20 60 60 61 75 74 68 6f 72 69 7a 65 | lic.key..See.the.ssh.``authorize |
| 119220 | 64 5f 6b 65 79 73 60 60 20 6d 61 6e 20 70 61 67 65 20 66 6f 72 20 64 65 74 61 69 6c 73 20 6f 66 | d_keys``.man.page.for.details.of |
| 119240 | 20 77 68 61 74 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 68 65 72 65 2e 20 54 6f 20 70 | .what.you.can.specify.here..To.p |
| 119260 | 6c 61 63 65 20 61 20 60 60 22 60 60 20 63 68 61 72 61 63 74 65 72 20 69 6e 20 74 68 65 20 6f 70 | lace.a.``"``.character.in.the.op |
| 119280 | 74 69 6f 6e 73 20 66 69 65 6c 64 2c 20 75 73 65 20 60 60 26 71 75 6f 74 3b 60 60 2c 20 66 6f 72 | tions.field,.use.``"``,.for |
| 1192a0 | 20 65 78 61 6d 70 6c 65 20 60 60 66 72 6f 6d 3d 26 71 75 6f 74 3b 31 30 2e 30 2e 30 2e 30 2f 32 | .example.``from="10.0.0.0/2 |
| 1192c0 | 34 26 71 75 6f 74 3b 60 60 20 74 6f 20 72 65 73 74 72 69 63 74 20 77 68 65 72 65 20 74 68 65 20 | 4"``.to.restrict.where.the. |
| 1192e0 | 75 73 65 72 20 6d 61 79 20 63 6f 6e 6e 65 63 74 20 66 72 6f 6d 20 77 68 65 6e 20 75 73 69 6e 67 | user.may.connect.from.when.using |
| 119300 | 20 74 68 69 73 20 6b 65 79 2e 00 53 65 74 20 74 68 65 20 70 61 72 69 74 79 20 6f 70 74 69 6f 6e | .this.key..Set.the.parity.option |
| 119320 | 20 66 6f 72 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 20 49 66 20 75 6e 73 65 74 20 74 68 69 73 20 | .for.the.console..If.unset.this. |
| 119340 | 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 74 6f 20 6e 6f 6e 65 2e 00 53 65 74 20 74 68 65 20 70 65 | will.default.to.none..Set.the.pe |
| 119360 | 65 72 27 73 20 4d 41 43 20 61 64 64 72 65 73 73 00 53 65 74 20 74 68 65 20 70 65 65 72 27 73 20 | er's.MAC.address.Set.the.peer's. |
| 119380 | 6b 65 79 20 75 73 65 64 20 74 6f 20 72 65 63 65 69 76 65 20 28 52 58 29 20 74 72 61 66 66 69 63 | key.used.to.receive.(RX).traffic |
| 1193a0 | 00 53 65 74 20 74 68 65 20 70 65 65 72 2d 73 65 73 73 69 6f 6e 2d 69 64 2c 20 77 68 69 63 68 20 | .Set.the.peer-session-id,.which. |
| 1193c0 | 69 73 20 61 20 33 32 2d 62 69 74 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 20 61 73 73 69 67 6e | is.a.32-bit.integer.value.assign |
| 1193e0 | 65 64 20 74 6f 20 74 68 65 20 73 65 73 73 69 6f 6e 20 62 79 20 74 68 65 20 70 65 65 72 2e 20 54 | ed.to.the.session.by.the.peer..T |
| 119400 | 68 65 20 76 61 6c 75 65 20 75 73 65 64 20 6d 75 73 74 20 6d 61 74 63 68 20 74 68 65 20 73 65 73 | he.value.used.must.match.the.ses |
| 119420 | 73 69 6f 6e 5f 69 64 20 76 61 6c 75 65 20 62 65 69 6e 67 20 75 73 65 64 20 61 74 20 74 68 65 20 | sion_id.value.being.used.at.the. |
| 119440 | 70 65 65 72 2e 00 53 65 74 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 65 78 74 65 72 6e 61 6c 20 | peer..Set.the.range.of.external. |
| 119460 | 49 50 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e | IP.addresses.for.the.CGNAT.pool. |
| 119480 | 00 53 65 74 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 | .Set.the.range.of.external.IP.ad |
| 1194a0 | 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 20 54 68 65 20 | dresses.for.the.CGNAT.pool..The. |
| 1194c0 | 73 65 71 75 65 6e 63 65 20 69 73 20 6f 70 74 69 6f 6e 61 6c 3b 20 69 66 20 73 65 74 2c 20 61 20 | sequence.is.optional;.if.set,.a. |
| 1194e0 | 6c 6f 77 65 72 20 76 61 6c 75 65 20 6d 65 61 6e 73 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 | lower.value.means.higher.priorit |
| 119500 | 79 2e 00 53 65 74 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 | y..Set.the.range.of.internal.IP. |
| 119520 | 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 68 65 20 43 47 4e 41 54 20 70 6f 6f 6c 2e 00 53 65 | addresses.for.the.CGNAT.pool..Se |
| 119540 | 74 20 74 68 65 20 72 65 73 74 61 72 74 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 63 6f | t.the.restart.behavior.of.the.co |
| 119560 | 6e 74 61 69 6e 65 72 2e 00 53 65 74 20 74 68 65 20 72 6f 75 74 65 20 6d 65 74 72 69 63 2e 20 57 | ntainer..Set.the.route.metric..W |
| 119580 | 68 65 6e 20 75 73 65 64 20 77 69 74 68 20 42 47 50 2c 20 73 65 74 20 74 68 65 20 42 47 50 20 61 | hen.used.with.BGP,.set.the.BGP.a |
| 1195a0 | 74 74 72 69 62 75 74 65 20 4d 45 44 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 76 61 6c 75 65 | ttribute.MED.to.a.specific.value |
| 1195c0 | 2e 20 55 73 65 20 60 60 2b 2f 2d 60 60 20 74 6f 20 61 64 64 20 6f 72 20 73 75 62 74 72 61 63 74 | ..Use.``+/-``.to.add.or.subtract |
| 1195e0 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 76 61 6c 75 65 20 74 6f 2f 66 72 6f 6d 20 74 68 65 | .the.specified.value.to/from.the |
| 119600 | 20 65 78 69 73 74 69 6e 67 2f 4d 45 44 2e 20 55 73 65 20 60 60 72 74 74 60 60 20 74 6f 20 73 65 | .existing/MED..Use.``rtt``.to.se |
| 119620 | 74 20 74 68 65 20 4d 45 44 20 74 6f 20 74 68 65 20 72 6f 75 6e 64 20 74 72 69 70 20 74 69 6d 65 | t.the.MED.to.the.round.trip.time |
| 119640 | 20 6f 72 20 60 60 2b 72 74 74 2f 2d 72 74 74 60 60 20 74 6f 20 61 64 64 2f 73 75 62 74 72 61 63 | .or.``+rtt/-rtt``.to.add/subtrac |
| 119660 | 74 20 74 68 65 20 72 6f 75 6e 64 20 74 72 69 70 20 74 69 6d 65 20 74 6f 2f 66 72 6f 6d 20 74 68 | t.the.round.trip.time.to/from.th |
| 119680 | 65 20 4d 45 44 2e 00 53 65 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 74 6f 20 | e.MED..Set.the.routing.table.to. |
| 1196a0 | 66 6f 72 77 61 72 64 20 70 61 63 6b 65 74 20 77 69 74 68 2e 00 53 65 74 20 74 68 65 20 72 75 6c | forward.packet.with..Set.the.rul |
| 1196c0 | 65 20 66 6f 72 20 74 68 65 20 73 6f 75 72 63 65 20 70 6f 6f 6c 2e 00 53 65 74 20 74 68 65 20 72 | e.for.the.source.pool..Set.the.r |
| 1196e0 | 75 6c 65 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 6f 6c 2e 00 53 65 | ule.for.the.translation.pool..Se |
| 119700 | 74 20 74 68 65 20 73 65 73 73 69 6f 6e 20 69 64 2c 20 77 68 69 63 68 20 69 73 20 61 20 33 32 2d | t.the.session.id,.which.is.a.32- |
| 119720 | 62 69 74 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 2e 20 55 6e 69 71 75 65 6c 79 20 69 64 65 6e | bit.integer.value..Uniquely.iden |
| 119740 | 74 69 66 69 65 73 20 74 68 65 20 73 65 73 73 69 6f 6e 20 62 65 69 6e 67 20 63 72 65 61 74 65 64 | tifies.the.session.being.created |
| 119760 | 2e 20 54 68 65 20 76 61 6c 75 65 20 75 73 65 64 20 6d 75 73 74 20 6d 61 74 63 68 20 74 68 65 20 | ..The.value.used.must.match.the. |
| 119780 | 70 65 65 72 5f 73 65 73 73 69 6f 6e 5f 69 64 20 76 61 6c 75 65 20 62 65 69 6e 67 20 75 73 65 64 | peer_session_id.value.being.used |
| 1197a0 | 20 61 74 20 74 68 65 20 70 65 65 72 2e 00 53 65 74 20 74 68 65 20 73 68 61 70 65 72 20 62 61 6e | .at.the.peer..Set.the.shaper.ban |
| 1197c0 | 64 77 69 64 74 68 2c 20 65 69 74 68 65 72 20 61 73 20 61 6e 20 65 78 70 6c 69 63 69 74 20 62 69 | dwidth,.either.as.an.explicit.bi |
| 1197e0 | 74 72 61 74 65 20 6f 72 20 61 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 74 68 65 20 69 6e 74 | trate.or.a.percentage.of.the.int |
| 119800 | 65 72 66 61 63 65 20 62 61 6e 64 77 69 64 74 68 2e 00 53 65 74 20 74 68 65 20 73 69 7a 65 20 6f | erface.bandwidth..Set.the.size.o |
| 119820 | 66 20 74 68 65 20 68 61 73 68 20 74 61 62 6c 65 2e 20 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e | f.the.hash.table..The.connection |
| 119840 | 20 74 72 61 63 6b 69 6e 67 20 68 61 73 68 20 74 61 62 6c 65 20 6d 61 6b 65 73 20 73 65 61 72 63 | .tracking.hash.table.makes.searc |
| 119860 | 68 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 | hing.the.connection.tracking.tab |
| 119880 | 6c 65 20 66 61 73 74 65 72 2e 20 54 68 65 20 68 61 73 68 20 74 61 62 6c 65 20 75 73 65 73 20 e2 | le.faster..The.hash.table.uses.. |
| 1198a0 | 80 9c 62 75 63 6b 65 74 73 e2 80 9d 20 74 6f 20 72 65 63 6f 72 64 20 65 6e 74 72 69 65 73 20 69 | ..buckets....to.record.entries.i |
| 1198c0 | 6e 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 62 6c 65 2e | n.the.connection.tracking.table. |
| 1198e0 | 00 53 65 74 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 20 6f 66 20 66 6f 72 77 61 72 64 65 64 20 | .Set.the.source.IP.of.forwarded. |
| 119900 | 70 61 63 6b 65 74 73 2c 20 6f 74 68 65 72 77 69 73 65 20 6f 72 69 67 69 6e 61 6c 20 73 65 6e 64 | packets,.otherwise.original.send |
| 119920 | 65 72 73 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 2e 00 53 65 74 20 74 68 65 20 74 69 6d | ers.address.is.used..Set.the.tim |
| 119940 | 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f | eout.in.seconds.for.a.protocol.o |
| 119960 | 72 20 73 74 61 74 65 20 69 6e 20 61 20 63 75 73 74 6f 6d 20 72 75 6c 65 2e 00 53 65 74 20 74 68 | r.state.in.a.custom.rule..Set.th |
| 119980 | 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f | e.timeout.in.seconds.for.a.proto |
| 1199a0 | 63 6f 6c 20 6f 72 20 73 74 61 74 65 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 6f 75 74 20 69 6e | col.or.state..Set.the.timeout.in |
| 1199c0 | 20 73 65 63 6f 75 6e 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f 72 20 73 74 61 74 | .secounds.for.a.protocol.or.stat |
| 1199e0 | 65 20 69 6e 20 61 20 63 75 73 74 6f 6d 20 72 75 6c 65 2e 00 53 65 74 20 74 68 65 20 74 69 6d 65 | e.in.a.custom.rule..Set.the.time |
| 119a00 | 6f 75 74 20 69 6e 20 73 65 63 6f 75 6e 64 73 20 66 6f 72 20 61 20 70 72 6f 74 6f 63 6f 6c 20 6f | out.in.secounds.for.a.protocol.o |
| 119a20 | 72 20 73 74 61 74 65 2e 00 53 65 74 20 74 68 65 20 74 75 6e 6e 65 6c 20 69 64 2c 20 77 68 69 63 | r.state..Set.the.tunnel.id,.whic |
| 119a40 | 68 20 69 73 20 61 20 33 32 2d 62 69 74 20 69 6e 74 65 67 65 72 20 76 61 6c 75 65 2e 20 55 6e 69 | h.is.a.32-bit.integer.value..Uni |
| 119a60 | 71 75 65 6c 79 20 69 64 65 6e 74 69 66 69 65 73 20 74 68 65 20 74 75 6e 6e 65 6c 20 69 6e 74 6f | quely.identifies.the.tunnel.into |
| 119a80 | 20 77 68 69 63 68 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 63 72 65 61 74 | .which.the.session.will.be.creat |
| 119aa0 | 65 64 2e 00 53 65 74 20 74 68 65 20 77 69 6e 64 6f 77 20 73 63 61 6c 65 20 66 61 63 74 6f 72 20 | ed..Set.the.window.scale.factor. |
| 119ac0 | 66 6f 72 20 54 43 50 20 77 69 6e 64 6f 77 20 73 63 61 6c 69 6e 67 00 53 65 74 20 77 69 6e 64 6f | for.TCP.window.scaling.Set.windo |
| 119ae0 | 77 20 6f 66 20 63 6f 6e 63 75 72 72 65 6e 74 6c 79 20 76 61 6c 69 64 20 63 6f 64 65 73 2e 00 53 | w.of.concurrently.valid.codes..S |
| 119b00 | 65 74 73 20 74 68 65 20 48 54 54 50 20 6d 65 74 68 6f 64 20 74 6f 20 62 65 20 75 73 65 64 2c 20 | ets.the.HTTP.method.to.be.used,. |
| 119b20 | 63 61 6e 20 62 65 20 65 69 74 68 65 72 3a 20 6f 70 74 69 6f 6e 2c 20 67 65 74 2c 20 70 6f 73 74 | can.be.either:.option,.get,.post |
| 119b40 | 2c 20 70 75 74 00 53 65 74 73 20 74 68 65 20 65 6e 64 70 6f 69 6e 74 20 74 6f 20 62 65 20 75 73 | ,.put.Sets.the.endpoint.to.be.us |
| 119b60 | 65 64 20 66 6f 72 20 68 65 61 6c 74 68 20 63 68 65 63 6b 73 00 53 65 74 73 20 74 68 65 20 65 78 | ed.for.health.checks.Sets.the.ex |
| 119b80 | 70 65 63 74 65 64 20 72 65 73 75 6c 74 20 63 6f 6e 64 69 74 69 6f 6e 20 66 6f 72 20 63 6f 6e 73 | pected.result.condition.for.cons |
| 119ba0 | 69 64 65 72 69 6e 67 20 61 20 73 65 72 76 65 72 20 68 65 61 6c 74 68 79 2e 00 53 65 74 73 20 74 | idering.a.server.healthy..Sets.t |
| 119bc0 | 68 65 20 65 78 70 65 63 74 65 64 20 72 65 73 75 6c 74 20 63 6f 6e 64 69 74 69 6f 6e 20 66 6f 72 | he.expected.result.condition.for |
| 119be0 | 20 63 6f 6e 73 69 64 65 72 69 6e 67 20 61 20 73 65 72 76 65 72 20 68 65 61 6c 74 68 79 2e 20 53 | .considering.a.server.healthy..S |
| 119c00 | 6f 6d 65 20 70 6f 73 73 69 62 6c 65 20 65 78 61 6d 70 6c 65 73 20 61 72 65 3a 00 53 65 74 73 20 | ome.possible.examples.are:.Sets. |
| 119c20 | 74 68 65 20 69 6d 61 67 65 20 6e 61 6d 65 20 69 6e 20 74 68 65 20 68 75 62 20 72 65 67 69 73 74 | the.image.name.in.the.hub.regist |
| 119c40 | 72 79 00 53 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6c 69 73 74 65 6e 20 | ry.Sets.the.interface.to.listen. |
| 119c60 | 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 70 61 63 6b 65 74 73 20 6f 6e 2e 20 43 6f 75 6c 64 20 | for.multicast.packets.on..Could. |
| 119c80 | 62 65 20 61 20 6c 6f 6f 70 62 61 63 6b 2c 20 6e 6f 74 20 79 65 74 20 74 65 73 74 65 64 2e 00 53 | be.a.loopback,.not.yet.tested..S |
| 119ca0 | 65 74 73 20 74 68 65 20 6c 69 73 74 65 6e 69 6e 67 20 70 6f 72 74 20 66 6f 72 20 61 20 6c 69 73 | ets.the.listening.port.for.a.lis |
| 119cc0 | 74 65 6e 69 6e 67 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 6f 76 65 72 72 69 64 65 73 20 74 | tening.address..This.overrides.t |
| 119ce0 | 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 6f 66 20 33 31 32 38 20 6f 6e 20 74 68 65 20 73 | he.default.port.of.3128.on.the.s |
| 119d00 | 70 65 63 69 66 69 63 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 2e 00 53 65 74 73 20 74 68 65 | pecific.listen.address..Sets.the |
| 119d20 | 20 75 6e 69 71 75 65 20 69 64 20 66 6f 72 20 74 68 69 73 20 76 78 6c 61 6e 2d 69 6e 74 65 72 66 | .unique.id.for.this.vxlan-interf |
| 119d40 | 61 63 65 2e 20 4e 6f 74 20 73 75 72 65 20 68 6f 77 20 69 74 20 63 6f 72 72 65 6c 61 74 65 73 20 | ace..Not.sure.how.it.correlates. |
| 119d60 | 77 69 74 68 20 6d 75 6c 74 69 63 61 73 74 2d 61 64 64 72 65 73 73 2e 00 53 65 74 74 69 6e 67 20 | with.multicast-address..Setting. |
| 119d80 | 52 45 53 54 20 41 50 49 20 61 6e 64 20 61 6e 20 41 50 49 2d 4b 45 59 20 69 73 20 74 68 65 20 6d | REST.API.and.an.API-KEY.is.the.m |
| 119da0 | 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 77 6f | inimal.configuration.to.get.a.wo |
| 119dc0 | 72 6b 69 6e 67 20 41 50 49 20 45 6e 64 70 6f 69 6e 74 2e 00 53 65 74 74 69 6e 67 20 56 52 52 50 | rking.API.Endpoint..Setting.VRRP |
| 119de0 | 20 67 72 6f 75 70 20 70 72 69 6f 72 69 74 79 00 53 65 74 74 69 6e 67 20 6e 61 6d 65 00 53 65 74 | .group.priority.Setting.name.Set |
| 119e00 | 74 69 6e 67 20 74 68 69 73 20 75 70 20 6f 6e 20 41 57 53 20 77 69 6c 6c 20 72 65 71 75 69 72 65 | ting.this.up.on.AWS.will.require |
| 119e20 | 20 61 20 22 43 75 73 74 6f 6d 20 50 72 6f 74 6f 63 6f 6c 20 52 75 6c 65 22 20 66 6f 72 20 70 72 | .a."Custom.Protocol.Rule".for.pr |
| 119e40 | 6f 74 6f 63 6f 6c 20 6e 75 6d 62 65 72 20 22 34 37 22 20 28 47 52 45 29 20 41 6c 6c 6f 77 20 52 | otocol.number."47".(GRE).Allow.R |
| 119e60 | 75 6c 65 20 69 6e 20 54 57 4f 20 70 6c 61 63 65 73 2e 20 46 69 72 73 74 6c 79 20 6f 6e 20 74 68 | ule.in.TWO.places..Firstly.on.th |
| 119e80 | 65 20 56 50 43 20 4e 65 74 77 6f 72 6b 20 41 43 4c 2c 20 61 6e 64 20 73 65 63 6f 6e 64 6c 79 20 | e.VPC.Network.ACL,.and.secondly. |
| 119ea0 | 6f 6e 20 74 68 65 20 73 65 63 75 72 69 74 79 20 67 72 6f 75 70 20 6e 65 74 77 6f 72 6b 20 41 43 | on.the.security.group.network.AC |
| 119ec0 | 4c 20 61 74 74 61 63 68 65 64 20 74 6f 20 74 68 65 20 45 43 32 20 69 6e 73 74 61 6e 63 65 2e 20 | L.attached.to.the.EC2.instance.. |
| 119ee0 | 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 64 20 61 73 20 77 6f 72 6b 69 6e 67 20 | This.has.been.tested.as.working. |
| 119f00 | 66 6f 72 20 74 68 65 20 6f 66 66 69 63 69 61 6c 20 41 4d 49 20 69 6d 61 67 65 20 6f 6e 20 74 68 | for.the.official.AMI.image.on.th |
| 119f20 | 65 20 41 57 53 20 4d 61 72 6b 65 74 70 6c 61 63 65 2e 20 28 4c 6f 63 61 74 65 20 74 68 65 20 63 | e.AWS.Marketplace..(Locate.the.c |
| 119f40 | 6f 72 72 65 63 74 20 56 50 43 20 61 6e 64 20 73 65 63 75 72 69 74 79 20 67 72 6f 75 70 20 62 79 | orrect.VPC.and.security.group.by |
| 119f60 | 20 6e 61 76 69 67 61 74 69 6e 67 20 74 68 72 6f 75 67 68 20 74 68 65 20 64 65 74 61 69 6c 73 20 | .navigating.through.the.details. |
| 119f80 | 70 61 6e 65 20 62 65 6c 6f 77 20 79 6f 75 72 20 45 43 32 20 69 6e 73 74 61 6e 63 65 20 69 6e 20 | pane.below.your.EC2.instance.in. |
| 119fa0 | 74 68 65 20 41 57 53 20 63 6f 6e 73 6f 6c 65 29 2e 00 53 65 74 74 69 6e 67 20 75 70 20 49 50 53 | the.AWS.console)..Setting.up.IPS |
| 119fc0 | 65 63 3a 00 53 65 74 74 69 6e 67 20 75 70 20 4f 70 65 6e 56 50 4e 00 53 65 74 74 69 6e 67 20 75 | ec:.Setting.up.OpenVPN.Setting.u |
| 119fe0 | 70 20 61 20 66 75 6c 6c 2d 62 6c 6f 77 6e 20 50 4b 49 20 77 69 74 68 20 61 20 43 41 20 63 65 72 | p.a.full-blown.PKI.with.a.CA.cer |
| 11a000 | 74 69 66 69 63 61 74 65 20 77 6f 75 6c 64 20 61 72 67 75 61 62 6c 79 20 64 65 66 65 61 74 20 74 | tificate.would.arguably.defeat.t |
| 11a020 | 68 65 20 70 75 72 70 6f 73 65 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e 56 | he.purpose.of.site-to-site.OpenV |
| 11a040 | 50 4e 2c 20 73 69 6e 63 65 20 69 74 73 20 6d 61 69 6e 20 67 6f 61 6c 20 69 73 20 73 75 70 70 6f | PN,.since.its.main.goal.is.suppo |
| 11a060 | 73 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 69 6d 70 6c 69 63 69 | sed.to.be.configuration.simplici |
| 11a080 | 74 79 2c 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 73 65 72 76 65 72 20 73 65 74 75 70 73 20 74 68 | ty,.compared.to.server.setups.th |
| 11a0a0 | 61 74 20 6e 65 65 64 20 74 6f 20 73 75 70 70 6f 72 74 20 6d 75 6c 74 69 70 6c 65 20 63 6c 69 65 | at.need.to.support.multiple.clie |
| 11a0c0 | 6e 74 73 2e 00 53 65 74 74 69 6e 67 20 75 70 20 63 65 72 74 69 66 69 63 61 74 65 73 00 53 65 74 | nts..Setting.up.certificates.Set |
| 11a0e0 | 74 69 6e 67 20 75 70 20 63 65 72 74 69 66 69 63 61 74 65 73 3a 00 53 65 74 74 69 6e 67 20 75 70 | ting.up.certificates:.Setting.up |
| 11a100 | 20 74 75 6e 6e 65 6c 3a 00 53 65 74 74 69 6e 67 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 63 6f 6d | .tunnel:.Setting.will.only.becom |
| 11a120 | 65 20 61 63 74 69 76 65 20 77 69 74 68 20 74 68 65 20 6e 65 78 74 20 72 65 62 6f 6f 74 21 00 53 | e.active.with.the.next.reboot!.S |
| 11a140 | 65 74 75 70 20 44 48 43 50 20 48 41 20 66 6f 72 20 6e 65 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 | etup.DHCP.HA.for.network.192.0.2 |
| 11a160 | 2e 30 2f 32 34 00 53 65 74 75 70 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 66 6f 72 20 6e 65 | .0/24.Setup.DHCP.failover.for.ne |
| 11a180 | 74 77 6f 72 6b 20 31 39 32 2e 30 2e 32 2e 30 2f 32 34 00 53 65 74 75 70 20 65 6e 63 72 79 70 74 | twork.192.0.2.0/24.Setup.encrypt |
| 11a1a0 | 65 64 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 67 69 76 65 6e 20 75 73 65 72 6e 61 6d 65 2e 20 | ed.password.for.given.username.. |
| 11a1c0 | 54 68 69 73 20 69 73 20 75 73 65 66 75 6c 20 66 6f 72 20 74 72 61 6e 73 66 65 72 72 69 6e 67 20 | This.is.useful.for.transferring. |
| 11a1e0 | 61 20 68 61 73 68 65 64 20 70 61 73 73 77 6f 72 64 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 74 6f | a.hashed.password.from.system.to |
| 11a200 | 20 73 79 73 74 65 6d 2e 00 53 65 74 75 70 20 74 68 65 20 60 3c 74 69 6d 65 6f 75 74 3e 60 20 69 | .system..Setup.the.`<timeout>`.i |
| 11a220 | 6e 20 73 65 63 6f 6e 64 73 20 77 68 65 6e 20 71 75 65 72 79 69 6e 67 20 74 68 65 20 52 41 44 49 | n.seconds.when.querying.the.RADI |
| 11a240 | 55 53 20 73 65 72 76 65 72 2e 00 53 65 74 75 70 20 74 68 65 20 60 3c 74 69 6d 65 6f 75 74 3e 60 | US.server..Setup.the.`<timeout>` |
| 11a260 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 77 68 65 6e 20 71 75 65 72 79 69 6e 67 20 74 68 65 20 54 41 | .in.seconds.when.querying.the.TA |
| 11a280 | 43 41 43 53 20 73 65 72 76 65 72 2e 00 53 65 74 75 70 20 74 68 65 20 64 79 6e 61 6d 69 63 20 44 | CACS.server..Setup.the.dynamic.D |
| 11a2a0 | 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f 63 69 61 | NS.hostname.`<hostname>`.associa |
| 11a2c0 | 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 64 65 | ted.with.the.DynDNS.provider.ide |
| 11a2e0 | 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 2e 00 53 65 74 | ntified.by.`<service-name>`..Set |
| 11a300 | 75 70 20 74 68 65 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 6f | up.the.dynamic.DNS.hostname.`<ho |
| 11a320 | 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 6e | stname>`.associated.with.the.Dyn |
| 11a340 | 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 | DNS.provider.identified.by.`<ser |
| 11a360 | 76 69 63 65 3e 60 20 77 68 65 6e 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 61 64 | vice>`.when.the.IP.address.on.ad |
| 11a380 | 64 72 65 73 73 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 68 61 6e 67 65 73 2e 00 53 65 74 | dress.`<interface>`.changes..Set |
| 11a3a0 | 75 70 20 74 68 65 20 64 79 6e 61 6d 69 63 20 44 4e 53 20 68 6f 73 74 6e 61 6d 65 20 60 3c 68 6f | up.the.dynamic.DNS.hostname.`<ho |
| 11a3c0 | 73 74 6e 61 6d 65 3e 60 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 44 79 6e | stname>`.associated.with.the.Dyn |
| 11a3e0 | 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 60 3c 73 65 72 | DNS.provider.identified.by.`<ser |
| 11a400 | 76 69 63 65 3e 60 20 77 68 65 6e 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 69 6e | vice>`.when.the.IP.address.on.in |
| 11a420 | 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 68 61 6e 67 65 73 2e 00 53 | terface.`<interface>`.changes..S |
| 11a440 | 65 76 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 75 74 69 6c 69 7a 65 20 63 55 52 4c 20 74 6f 20 | everal.commands.utilize.cURL.to. |
| 11a460 | 69 6e 69 74 69 61 74 65 20 74 72 61 6e 73 66 65 72 73 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 68 | initiate.transfers..Configure.th |
| 11a480 | 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 49 50 76 34 2f 49 50 76 36 20 61 64 64 72 65 73 73 | e.local.source.IPv4/IPv6.address |
| 11a4a0 | 20 75 73 65 64 20 66 6f 72 20 61 6c 6c 20 63 55 52 4c 20 6f 70 65 72 61 74 69 6f 6e 73 2e 00 53 | .used.for.all.cURL.operations..S |
| 11a4c0 | 65 76 65 72 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 75 74 69 6c 69 7a 65 20 63 75 72 6c 20 74 6f 20 | everal.commands.utilize.curl.to. |
| 11a4e0 | 69 6e 69 74 69 61 74 65 20 74 72 61 6e 73 66 65 72 73 2e 20 43 6f 6e 66 69 67 75 72 65 20 74 68 | initiate.transfers..Configure.th |
| 11a500 | 65 20 6c 6f 63 61 6c 20 73 6f 75 72 63 65 20 69 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 66 6f | e.local.source.interface.used.fo |
| 11a520 | 72 20 61 6c 6c 20 43 55 52 4c 20 6f 70 65 72 61 74 69 6f 6e 73 2e 00 53 65 76 65 72 69 74 79 00 | r.all.CURL.operations..Severity. |
| 11a540 | 53 65 76 65 72 69 74 79 20 4c 65 76 65 6c 00 53 68 61 70 65 72 00 53 68 6f 72 74 20 47 49 20 63 | Severity.Level.Shaper.Short.GI.c |
| 11a560 | 61 70 61 62 69 6c 69 74 69 65 73 00 53 68 6f 72 74 20 47 49 20 63 61 70 61 62 69 6c 69 74 69 65 | apabilities.Short.GI.capabilitie |
| 11a580 | 73 20 66 6f 72 20 32 30 20 61 6e 64 20 34 30 20 4d 48 7a 00 53 68 6f 72 74 20 62 75 72 73 74 73 | s.for.20.and.40.MHz.Short.bursts |
| 11a5a0 | 20 63 61 6e 20 62 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 65 78 63 65 65 64 20 74 68 65 20 6c 69 | .can.be.allowed.to.exceed.the.li |
| 11a5c0 | 6d 69 74 2e 20 4f 6e 20 63 72 65 61 74 69 6f 6e 2c 20 74 68 65 20 52 61 74 65 2d 43 6f 6e 74 72 | mit..On.creation,.the.Rate-Contr |
| 11a5e0 | 6f 6c 20 74 72 61 66 66 69 63 20 69 73 20 73 74 6f 63 6b 65 64 20 77 69 74 68 20 74 6f 6b 65 6e | ol.traffic.is.stocked.with.token |
| 11a600 | 73 20 77 68 69 63 68 20 63 6f 72 72 65 73 70 6f 6e 64 20 74 6f 20 74 68 65 20 61 6d 6f 75 6e 74 | s.which.correspond.to.the.amount |
| 11a620 | 20 6f 66 20 74 72 61 66 66 69 63 20 74 68 61 74 20 63 61 6e 20 62 65 20 62 75 72 73 74 20 69 6e | .of.traffic.that.can.be.burst.in |
| 11a640 | 20 6f 6e 65 20 67 6f 2e 20 54 6f 6b 65 6e 73 20 61 72 72 69 76 65 20 61 74 20 61 20 73 74 65 61 | .one.go..Tokens.arrive.at.a.stea |
| 11a660 | 64 79 20 72 61 74 65 2c 20 75 6e 74 69 6c 20 74 68 65 20 62 75 63 6b 65 74 20 69 73 20 66 75 6c | dy.rate,.until.the.bucket.is.ful |
| 11a680 | 6c 2e 00 53 68 6f 72 74 63 75 74 20 73 79 6e 74 61 78 20 66 6f 72 20 73 70 65 63 69 66 79 69 6e | l..Shortcut.syntax.for.specifyin |
| 11a6a0 | 67 20 61 75 74 6f 6d 61 74 69 63 20 6c 65 61 6b 69 6e 67 20 66 72 6f 6d 20 76 72 66 20 56 52 46 | g.automatic.leaking.from.vrf.VRF |
| 11a6c0 | 4e 41 4d 45 20 74 6f 20 74 68 65 20 63 75 72 72 65 6e 74 20 56 52 46 20 75 73 69 6e 67 20 74 68 | NAME.to.the.current.VRF.using.th |
| 11a6e0 | 65 20 56 50 4e 20 52 49 42 20 61 73 20 69 6e 74 65 72 6d 65 64 69 61 72 79 2e 20 54 68 65 20 52 | e.VPN.RIB.as.intermediary..The.R |
| 11a700 | 44 20 61 6e 64 20 52 54 20 61 72 65 20 61 75 74 6f 20 64 65 72 69 76 65 64 20 61 6e 64 20 73 68 | D.and.RT.are.auto.derived.and.sh |
| 11a720 | 6f 75 6c 64 20 6e 6f 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 65 78 70 6c 69 63 69 74 6c 79 | ould.not.be.specified.explicitly |
| 11a740 | 20 66 6f 72 20 65 69 74 68 65 72 20 74 68 65 20 73 6f 75 72 63 65 20 6f 72 20 64 65 73 74 69 6e | .for.either.the.source.or.destin |
| 11a760 | 61 74 69 6f 6e 20 56 52 46 e2 80 99 73 2e 00 53 68 6f 77 00 53 68 6f 77 20 43 47 4e 41 54 20 61 | ation.VRF...s..Show.Show.CGNAT.a |
| 11a780 | 6c 6c 6f 63 61 74 69 6f 6e 73 00 53 68 6f 77 20 44 48 43 50 20 73 65 72 76 65 72 20 64 61 65 6d | llocations.Show.DHCP.server.daem |
| 11a7a0 | 6f 6e 20 6c 6f 67 20 66 69 6c 65 00 53 68 6f 77 20 44 48 43 50 76 36 20 73 65 72 76 65 72 20 64 | on.log.file.Show.DHCPv6.server.d |
| 11a7c0 | 61 65 6d 6f 6e 20 6c 6f 67 20 66 69 6c 65 00 53 68 6f 77 20 46 69 72 65 77 61 6c 6c 20 6c 6f 67 | aemon.log.file.Show.Firewall.log |
| 11a7e0 | 00 53 68 6f 77 20 4c 4c 44 50 20 6e 65 69 67 68 62 6f 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 76 | .Show.LLDP.neighbors.connected.v |
| 11a800 | 69 61 20 69 6e 74 65 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 | ia.interface.`<interface>`..Show |
| 11a820 | 20 53 53 48 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 20 6c 6f 67 2e 00 53 68 6f | .SSH.dynamic-protection.log..Sho |
| 11a840 | 77 20 53 53 48 20 73 65 72 76 65 72 20 6c 6f 67 2e 00 53 68 6f 77 20 53 53 48 20 73 65 72 76 65 | w.SSH.server.log..Show.SSH.serve |
| 11a860 | 72 20 70 75 62 6c 69 63 20 6b 65 79 20 66 69 6e 67 65 72 70 72 69 6e 74 73 2c 20 69 6e 63 6c 75 | r.public.key.fingerprints,.inclu |
| 11a880 | 64 69 6e 67 20 61 20 76 69 73 75 61 6c 20 41 53 43 49 49 20 61 72 74 20 72 65 70 72 65 73 65 6e | ding.a.visual.ASCII.art.represen |
| 11a8a0 | 74 61 74 69 6f 6e 2e 00 53 68 6f 77 20 53 53 48 20 73 65 72 76 65 72 20 70 75 62 6c 69 63 20 6b | tation..Show.SSH.server.public.k |
| 11a8c0 | 65 79 20 66 69 6e 67 65 72 70 72 69 6e 74 73 2e 00 53 68 6f 77 20 57 41 4e 20 6c 6f 61 64 20 62 | ey.fingerprints..Show.WAN.load.b |
| 11a8e0 | 61 6c 61 6e 63 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 63 6c 75 64 69 6e 67 20 74 65 | alancer.information.including.te |
| 11a900 | 73 74 20 74 79 70 65 73 20 61 6e 64 20 74 61 72 67 65 74 73 2e 20 41 20 63 68 61 72 61 63 74 65 | st.types.and.targets..A.characte |
| 11a920 | 72 20 61 74 20 74 68 65 20 73 74 61 72 74 20 6f 66 20 65 61 63 68 20 6c 69 6e 65 20 64 65 70 69 | r.at.the.start.of.each.line.depi |
| 11a940 | 63 74 73 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 74 68 65 20 74 65 73 74 00 53 68 6f 77 20 57 | cts.the.state.of.the.test.Show.W |
| 11a960 | 57 41 4e 20 6d 6f 64 75 6c 65 20 49 4d 45 49 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c | WAN.module.IMEI..Show.WWAN.modul |
| 11a980 | 65 20 49 4d 53 49 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 4d 53 49 53 44 4e 2e | e.IMSI..Show.WWAN.module.MSISDN. |
| 11a9a0 | 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 53 49 4d 20 63 61 72 64 20 69 6e 66 6f 72 | .Show.WWAN.module.SIM.card.infor |
| 11a9c0 | 6d 61 74 69 6f 6e 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 66 69 72 6d 77 61 72 | mation..Show.WWAN.module.firmwar |
| 11a9e0 | 65 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 68 61 72 64 77 61 72 65 20 63 61 70 | e..Show.WWAN.module.hardware.cap |
| 11aa00 | 61 62 69 6c 69 74 69 65 73 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 68 61 72 64 | abilities..Show.WWAN.module.hard |
| 11aa20 | 77 61 72 65 20 72 65 76 69 73 69 6f 6e 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 | ware.revision..Show.WWAN.module. |
| 11aa40 | 6d 6f 64 65 6c 2e 00 53 68 6f 77 20 57 57 41 4e 20 6d 6f 64 75 6c 65 20 73 69 67 6e 61 6c 20 73 | model..Show.WWAN.module.signal.s |
| 11aa60 | 74 72 65 6e 67 74 68 2e 00 53 68 6f 77 20 61 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 | trength..Show.a.detailed.informa |
| 11aa80 | 74 69 6f 6e 20 6f 66 20 61 6c 6c 20 61 63 74 69 76 65 20 49 50 73 65 63 20 53 65 63 75 72 69 74 | tion.of.all.active.IPsec.Securit |
| 11aaa0 | 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 20 69 6e 20 76 65 72 62 6f 73 65 20 66 | y.Associations.(SA).in.verbose.f |
| 11aac0 | 6f 72 6d 61 74 2e 00 53 68 6f 77 20 61 20 6c 69 73 74 20 61 76 61 69 6c 61 62 6c 65 20 63 6f 6e | ormat..Show.a.list.available.con |
| 11aae0 | 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 6b 73 00 53 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 20 69 | tainer.networks.Show.a.list.of.i |
| 11ab00 | 6e 73 74 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 43 41 20 28 43 65 72 74 69 66 69 63 61 74 65 20 | nstalled.:abbr:`CA.(Certificate. |
| 11ab20 | 41 75 74 68 6f 72 69 74 79 29 60 20 63 65 72 74 69 66 69 63 61 74 65 73 2e 00 53 68 6f 77 20 61 | Authority)`.certificates..Show.a |
| 11ab40 | 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 3a 61 62 62 72 3a 60 43 52 4c 73 20 28 | .list.of.installed.:abbr:`CRLs.( |
| 11ab60 | 43 65 72 74 69 66 69 63 61 74 65 20 52 65 76 6f 63 61 74 69 6f 6e 20 4c 69 73 74 29 60 2e 00 53 | Certificate.Revocation.List)`..S |
| 11ab80 | 68 6f 77 20 61 20 6c 69 73 74 20 6f 66 20 69 6e 73 74 61 6c 6c 65 64 20 63 65 72 74 69 66 69 63 | how.a.list.of.installed.certific |
| 11aba0 | 61 74 65 73 00 53 68 6f 77 20 61 64 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 61 6c 6c 6f 63 | ates.Show.address.and.port.alloc |
| 11abc0 | 61 74 69 6f 6e 73 00 53 68 6f 77 20 61 6c 6c 20 42 46 44 20 70 65 65 72 73 00 53 68 6f 77 20 61 | ations.Show.all.BFD.peers.Show.a |
| 11abe0 | 6c 6c 20 61 63 74 69 76 65 20 49 50 73 65 63 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 | ll.active.IPsec.Security.Associa |
| 11ac00 | 74 69 6f 6e 73 20 28 53 41 29 00 53 68 6f 77 20 61 6c 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 20 | tions.(SA).Show.all.allocations. |
| 11ac20 | 66 6f 72 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 00 53 68 6f 77 20 | for.an.external.IP.address.Show. |
| 11ac40 | 61 6c 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 73 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 | all.allocations.for.an.internal. |
| 11ac60 | 49 50 20 61 64 64 72 65 73 73 00 53 68 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 63 | IP.address.Show.all.currently.ac |
| 11ac80 | 74 69 76 65 20 49 4b 45 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 | tive.IKE.Security.Associations.( |
| 11aca0 | 53 41 29 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 70 65 65 72 2e 00 53 68 6f 77 20 61 6c | SA).for.a.specific.peer..Show.al |
| 11acc0 | 6c 20 63 75 72 72 65 6e 74 6c 79 20 61 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 72 69 74 79 20 | l.currently.active.IKE.Security. |
| 11ace0 | 41 73 73 6f 63 69 61 74 69 6f 6e 73 20 28 53 41 29 20 74 68 61 74 20 61 72 65 20 75 73 69 6e 67 | Associations.(SA).that.are.using |
| 11ad00 | 20 4e 41 54 20 54 72 61 76 65 72 73 61 6c 2e 00 53 68 6f 77 20 61 6c 6c 20 63 75 72 72 65 6e 74 | .NAT.Traversal..Show.all.current |
| 11ad20 | 6c 79 20 61 63 74 69 76 65 20 49 4b 45 20 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 | ly.active.IKE.Security.Associati |
| 11ad40 | 6f 6e 73 2e 00 53 68 6f 77 20 61 6c 6c 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 70 72 65 | ons..Show.all.the.configured.pre |
| 11ad60 | 2d 73 68 61 72 65 64 20 73 65 63 72 65 74 20 6b 65 79 73 2e 00 53 68 6f 77 20 61 76 61 69 6c 61 | -shared.secret.keys..Show.availa |
| 11ad80 | 62 6c 65 20 6f 66 66 6c 6f 61 64 69 6e 67 20 66 75 6e 63 74 69 6f 6e 73 20 6f 6e 20 67 69 76 65 | ble.offloading.functions.on.give |
| 11ada0 | 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 62 69 6e 64 65 64 20 71 61 74 20 | n.`<interface>`.Show.binded.qat. |
| 11adc0 | 64 65 76 69 63 65 20 69 6e 74 65 72 72 75 70 74 73 20 74 6f 20 63 65 72 74 61 69 6e 20 63 6f 72 | device.interrupts.to.certain.cor |
| 11ade0 | 65 2e 00 53 68 6f 77 20 62 72 69 64 67 65 20 60 3c 6e 61 6d 65 3e 60 20 66 64 62 20 64 69 73 70 | e..Show.bridge.`<name>`.fdb.disp |
| 11ae00 | 6c 61 79 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 66 6f 72 77 61 72 64 69 6e 67 20 74 61 62 6c | lays.the.current.forwarding.tabl |
| 11ae20 | 65 3a 00 53 68 6f 77 20 62 72 69 64 67 65 20 60 3c 6e 61 6d 65 3e 60 20 6d 64 62 20 64 69 73 70 | e:.Show.bridge.`<name>`.mdb.disp |
| 11ae40 | 6c 61 79 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 | lays.the.current.multicast.group |
| 11ae60 | 20 6d 65 6d 62 65 72 73 68 69 70 20 74 61 62 6c 65 2e 54 68 65 20 74 61 62 6c 65 20 69 73 20 70 | .membership.table.The.table.is.p |
| 11ae80 | 6f 70 75 6c 61 74 65 64 20 62 79 20 49 47 4d 50 20 61 6e 64 20 4d 4c 44 20 73 6e 6f 6f 70 69 6e | opulated.by.IGMP.and.MLD.snoopin |
| 11aea0 | 67 20 69 6e 20 74 68 65 20 62 72 69 64 67 65 20 64 72 69 76 65 72 20 61 75 74 6f 6d 61 74 69 63 | g.in.the.bridge.driver.automatic |
| 11aec0 | 61 6c 6c 79 2e 00 53 68 6f 77 20 62 72 69 65 66 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f 72 | ally..Show.brief.interface.infor |
| 11aee0 | 6d 61 74 69 6f 6e 2e 00 53 68 6f 77 20 63 6f 6d 6d 61 6e 64 73 00 53 68 6f 77 20 63 6f 6e 66 69 | mation..Show.commands.Show.confi |
| 11af00 | 67 75 72 65 64 20 73 65 72 69 61 6c 20 70 6f 72 74 73 20 61 6e 64 20 74 68 65 69 72 20 72 65 73 | gured.serial.ports.and.their.res |
| 11af20 | 70 65 63 74 69 76 65 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e | pective.interface.configuration. |
| 11af40 | 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 61 74 61 20 6f 66 20 6c 6f 61 64 20 62 61 | .Show.connection.data.of.load.ba |
| 11af60 | 6c 61 6e 63 65 64 20 74 72 61 66 66 69 63 3a 00 53 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | lanced.traffic:.Show.connection. |
| 11af80 | 73 79 6e 63 69 6e 67 20 65 78 74 65 72 6e 61 6c 20 63 61 63 68 65 20 65 6e 74 72 69 65 73 00 53 | syncing.external.cache.entries.S |
| 11afa0 | 68 6f 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 79 6e 63 69 6e 67 20 69 6e 74 65 72 6e 61 6c 20 | how.connection.syncing.internal. |
| 11afc0 | 63 61 63 68 65 20 65 6e 74 72 69 65 73 00 53 68 6f 77 20 63 75 72 72 65 6e 74 6c 79 20 63 6f 6e | cache.entries.Show.currently.con |
| 11afe0 | 6e 65 63 74 65 64 20 75 73 65 72 73 2e 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f | nected.users..Show.detailed.info |
| 11b000 | 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 6c 65 61 72 6e 65 64 20 53 65 67 6d 65 6e | rmation.about.all.learned.Segmen |
| 11b020 | 74 20 52 6f 75 74 69 6e 67 20 4e 6f 64 65 73 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e | t.Routing.Nodes.Show.detailed.in |
| 11b040 | 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 70 72 65 66 69 78 2d 73 69 64 20 61 6e 64 20 6c | formation.about.prefix-sid.and.l |
| 11b060 | 61 62 65 6c 20 6c 65 61 72 6e 65 64 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 | abel.learned.Show.detailed.infor |
| 11b080 | 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 75 6e 64 65 72 6c 61 79 69 6e 67 20 70 68 79 | mation.about.the.underlaying.phy |
| 11b0a0 | 73 69 63 61 6c 20 6c 69 6e 6b 73 20 6f 6e 20 67 69 76 65 6e 20 62 6f 6e 64 20 60 3c 69 6e 74 65 | sical.links.on.given.bond.`<inte |
| 11b0c0 | 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 20 64 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 | rface>`..Show.detailed.informati |
| 11b0e0 | 6f 6e 20 6f 6e 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 64 | on.on.given.`<interface>`.Show.d |
| 11b100 | 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 74 68 65 20 67 69 76 65 6e | etailed.information.on.the.given |
| 11b120 | 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 60 6c 6f 60 2e 00 53 68 6f 77 20 64 | .loopback.interface.`lo`..Show.d |
| 11b140 | 65 74 61 69 6c 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 73 75 6d 6d 61 72 79 20 6f 6e 20 67 | etailed.information.summary.on.g |
| 11b160 | 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 00 53 68 6f 77 20 64 65 74 61 69 6c 73 20 | iven.`<interface>`.Show.details. |
| 11b180 | 6f 66 20 61 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 | of.all.available.VPN.connections |
| 11b1a0 | 00 53 68 6f 77 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f | .Show.flow.accounting.informatio |
| 11b1c0 | 6e 20 66 6f 72 20 67 69 76 65 6e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 66 6f 72 20 61 20 | n.for.given.`<interface>`.for.a. |
| 11b1e0 | 73 70 65 63 69 66 69 63 20 68 6f 73 74 20 6f 6e 6c 79 2e 00 53 68 6f 77 20 66 6c 6f 77 20 61 63 | specific.host.only..Show.flow.ac |
| 11b200 | 63 6f 75 6e 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 67 69 76 65 6e 20 60 | counting.information.for.given.` |
| 11b220 | 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 68 6f 77 20 67 65 6e 65 72 61 6c 20 69 6e 66 6f 72 | <interface>`..Show.general.infor |
| 11b240 | 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 73 70 65 63 69 66 69 63 20 57 69 72 65 47 75 61 72 64 20 | mation.about.specific.WireGuard. |
| 11b260 | 69 6e 74 65 72 66 61 63 65 00 53 68 6f 77 20 69 6e 66 6f 20 61 62 6f 75 74 20 74 68 65 20 57 69 | interface.Show.info.about.the.Wi |
| 11b280 | 72 65 67 75 61 72 64 20 73 65 72 76 69 63 65 2e 20 49 74 20 61 6c 73 6f 20 73 68 6f 77 73 20 74 | reguard.service..It.also.shows.t |
| 11b2a0 | 68 65 20 6c 61 74 65 73 74 20 68 61 6e 64 73 68 61 6b 65 2e 00 53 68 6f 77 20 69 6e 66 6f 72 6d | he.latest.handshake..Show.inform |
| 11b2c0 | 61 74 69 6f 6e 20 61 62 6f 75 74 20 70 68 79 73 69 63 61 6c 20 60 3c 69 6e 74 65 72 66 61 63 65 | ation.about.physical.`<interface |
| 11b2e0 | 3e 60 00 53 68 6f 77 20 6c 69 73 74 20 6f 66 20 49 50 73 20 63 75 72 72 65 6e 74 6c 79 20 62 6c | >`.Show.list.of.IPs.currently.bl |
| 11b300 | 6f 63 6b 65 64 20 62 79 20 53 53 48 20 64 79 6e 61 6d 69 63 2d 70 72 6f 74 65 63 74 69 6f 6e 2e | ocked.by.SSH.dynamic-protection. |
| 11b320 | 00 53 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 49 50 73 65 63 00 53 68 6f 77 20 6c 6f 67 73 20 66 | .Show.logs.for.IPsec.Show.logs.f |
| 11b340 | 6f 72 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 73 65 72 76 69 63 65 2e 00 53 68 6f 77 20 6c | or.mDNS.repeater.service..Show.l |
| 11b360 | 6f 67 73 20 66 72 6f 6d 20 61 20 67 69 76 65 6e 20 63 6f 6e 74 61 69 6e 65 72 00 53 68 6f 77 20 | ogs.from.a.given.container.Show. |
| 11b380 | 6c 6f 67 73 20 66 72 6f 6d 20 61 6c 6c 20 44 48 43 50 20 63 6c 69 65 6e 74 20 70 72 6f 63 65 73 | logs.from.all.DHCP.client.proces |
| 11b3a0 | 73 65 73 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 61 6c 6c 20 44 48 43 50 76 36 20 63 | ses..Show.logs.from.all.DHCPv6.c |
| 11b3c0 | 6c 69 65 6e 74 20 70 72 6f 63 65 73 73 65 73 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 | lient.processes..Show.logs.from. |
| 11b3e0 | 73 70 65 63 69 66 69 63 20 60 69 6e 74 65 72 66 61 63 65 60 20 44 48 43 50 20 63 6c 69 65 6e 74 | specific.`interface`.DHCP.client |
| 11b400 | 20 70 72 6f 63 65 73 73 2e 00 53 68 6f 77 20 6c 6f 67 73 20 66 72 6f 6d 20 73 70 65 63 69 66 69 | .process..Show.logs.from.specifi |
| 11b420 | 63 20 60 69 6e 74 65 72 66 61 63 65 60 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 20 70 72 6f 63 | c.`interface`.DHCPv6.client.proc |
| 11b440 | 65 73 73 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 73 | ess..Show.only.information.for.s |
| 11b460 | 70 65 63 69 66 69 65 64 20 43 65 72 74 69 66 69 63 61 74 65 20 41 75 74 68 6f 72 69 74 79 2e 00 | pecified.Certificate.Authority.. |
| 11b480 | 53 68 6f 77 20 6f 6e 6c 79 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 73 70 65 63 69 66 | Show.only.information.for.specif |
| 11b4a0 | 69 65 64 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 53 68 6f 77 20 6f 6e 6c 79 20 6c 65 61 73 65 | ied.certificate..Show.only.lease |
| 11b4c0 | 73 20 69 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 6f 6f 6c 2e 00 53 68 6f 77 20 6f 6e | s.in.the.specified.pool..Show.on |
| 11b4e0 | 6c 79 20 6c 65 61 73 65 73 20 77 69 74 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 73 74 61 | ly.leases.with.the.specified.sta |
| 11b500 | 74 65 2e 20 50 6f 73 73 69 62 6c 65 20 73 74 61 74 65 73 3a 20 61 62 61 6e 64 6f 6e 65 64 2c 20 | te..Possible.states:.abandoned,. |
| 11b520 | 61 63 74 69 76 65 2c 20 61 6c 6c 2c 20 62 61 63 6b 75 70 2c 20 65 78 70 69 72 65 64 2c 20 66 72 | active,.all,.backup,.expired,.fr |
| 11b540 | 65 65 2c 20 72 65 6c 65 61 73 65 64 2c 20 72 65 73 65 74 20 28 64 65 66 61 75 6c 74 20 3d 20 61 | ee,.released,.reset.(default.=.a |
| 11b560 | 63 74 69 76 65 29 00 53 68 6f 77 20 6f 6e 6c 79 20 6c 65 61 73 65 73 20 77 69 74 68 20 74 68 65 | ctive).Show.only.leases.with.the |
| 11b580 | 20 73 70 65 63 69 66 69 65 64 20 73 74 61 74 65 2e 20 50 6f 73 73 69 62 6c 65 20 73 74 61 74 65 | .specified.state..Possible.state |
| 11b5a0 | 73 3a 20 61 6c 6c 2c 20 61 63 74 69 76 65 2c 20 66 72 65 65 2c 20 65 78 70 69 72 65 64 2c 20 72 | s:.all,.active,.free,.expired,.r |
| 11b5c0 | 65 6c 65 61 73 65 64 2c 20 61 62 61 6e 64 6f 6e 65 64 2c 20 72 65 73 65 74 2c 20 62 61 63 6b 75 | eleased,.abandoned,.reset,.backu |
| 11b5e0 | 70 20 28 64 65 66 61 75 6c 74 20 3d 20 61 63 74 69 76 65 29 00 53 68 6f 77 20 72 6f 75 74 69 6e | p.(default.=.active).Show.routin |
| 11b600 | 67 20 74 61 62 6c 65 20 65 6e 74 72 79 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f | g.table.entry.for.the.default.ro |
| 11b620 | 75 74 65 2e 00 53 68 6f 77 20 73 70 65 63 69 66 69 63 20 4d 41 43 73 65 63 20 69 6e 74 65 72 66 | ute..Show.specific.MACsec.interf |
| 11b640 | 61 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 53 68 6f 77 20 73 74 61 74 75 73 20 6f 66 20 6e | ace.information.Show.status.of.n |
| 11b660 | 65 77 20 73 65 74 75 70 3a 00 53 68 6f 77 20 73 74 61 74 75 73 65 73 20 6f 66 20 61 6c 6c 20 61 | ew.setup:.Show.statuses.of.all.a |
| 11b680 | 63 74 69 76 65 20 6c 65 61 73 65 73 20 67 72 61 6e 74 65 64 20 62 79 20 6c 6f 63 61 6c 20 28 74 | ctive.leases.granted.by.local.(t |
| 11b6a0 | 68 69 73 20 73 65 72 76 65 72 29 20 6f 72 20 72 65 6d 6f 74 65 20 28 66 61 69 6c 6f 76 65 72 20 | his.server).or.remote.(failover. |
| 11b6c0 | 73 65 72 76 65 72 29 3a 00 53 68 6f 77 20 73 74 61 74 75 73 65 73 20 6f 66 20 61 6c 6c 20 61 63 | server):.Show.statuses.of.all.ac |
| 11b6e0 | 74 69 76 65 20 6c 65 61 73 65 73 3a 00 53 68 6f 77 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 | tive.leases:.Show.the.DHCP.serve |
| 11b700 | 72 20 73 74 61 74 69 73 74 69 63 73 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 | r.statistics.for.the.specified.p |
| 11b720 | 6f 6f 6c 2e 00 53 68 6f 77 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 73 74 61 74 69 73 | ool..Show.the.DHCP.server.statis |
| 11b740 | 74 69 63 73 3a 00 53 68 6f 77 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 73 65 72 76 65 72 20 6c 6f | tics:.Show.the.console.server.lo |
| 11b760 | 67 2e 00 53 68 6f 77 20 74 68 65 20 64 65 74 61 69 6c 65 64 20 73 74 61 74 75 73 20 69 6e 66 6f | g..Show.the.detailed.status.info |
| 11b780 | 72 6d 61 74 69 6f 6e 20 6f 66 20 49 4b 45 20 63 68 61 72 6f 6e 20 70 72 6f 63 65 73 73 2e 00 53 | rmation.of.IKE.charon.process..S |
| 11b7a0 | 68 6f 77 20 74 68 65 20 66 75 6c 6c 20 63 6f 6e 66 69 67 20 75 70 6c 6f 61 64 65 64 20 74 6f 20 | how.the.full.config.uploaded.to. |
| 11b7c0 | 74 68 65 20 51 41 54 20 64 65 76 69 63 65 2e 00 53 68 6f 77 20 74 68 65 20 6c 69 73 74 20 6f 66 | the.QAT.device..Show.the.list.of |
| 11b7e0 | 20 61 6c 6c 20 61 63 74 69 76 65 20 63 6f 6e 74 61 69 6e 65 72 73 2e 00 53 68 6f 77 20 74 68 65 | .all.active.containers..Show.the |
| 11b800 | 20 6c 6f 63 61 6c 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 61 67 65 73 2e 00 53 68 6f 77 20 74 68 | .local.container.images..Show.th |
| 11b820 | 65 20 6c 6f 67 73 20 6f 66 20 61 20 73 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 | e.logs.of.a.specific.Rule-Set..S |
| 11b840 | 68 6f 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 3b 20 73 68 | how.the.logs.of.all.firewall;.sh |
| 11b860 | 6f 77 20 61 6c 6c 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 73 68 6f | ow.all.bridge.firewall.logs;.sho |
| 11b880 | 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 66 6f 72 77 61 72 64 20 68 6f 6f 6b 3b 20 73 68 6f | w.all.logs.for.forward.hook;.sho |
| 11b8a0 | 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 66 6f 72 77 61 72 64 20 68 6f 6f 6b 20 61 6e 64 20 | w.all.logs.for.forward.hook.and. |
| 11b8c0 | 70 72 69 6f 72 69 74 79 20 66 69 6c 74 65 72 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 | priority.filter;.show.all.logs.f |
| 11b8e0 | 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 3b 20 73 68 6f 77 | or.particular.custom.chain;.show |
| 11b900 | 20 6c 6f 67 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f | .logs.for.specific.Rule-Set..Sho |
| 11b920 | 77 20 74 68 65 20 6c 6f 67 73 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 | w.the.logs.of.all.firewall;.show |
| 11b940 | 20 61 6c 6c 20 69 70 76 34 20 66 69 72 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c | .all.ipv4.firewall.logs;.show.al |
| 11b960 | 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 3b 20 73 68 6f 77 | l.logs.for.particular.hook;.show |
| 11b980 | 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 20 61 6e | .all.logs.for.particular.hook.an |
| 11b9a0 | 64 20 70 72 69 6f 72 69 74 79 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 | d.priority;.show.all.logs.for.pa |
| 11b9c0 | 72 74 69 63 75 6c 61 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 | rticular.custom.chain;.show.logs |
| 11b9e0 | 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 | .for.specific.Rule-Set..Show.the |
| 11ba00 | 20 6c 6f 67 73 20 6f 66 20 61 6c 6c 20 66 69 72 65 77 61 6c 6c 3b 20 73 68 6f 77 20 61 6c 6c 20 | .logs.of.all.firewall;.show.all. |
| 11ba20 | 69 70 76 36 20 66 69 72 65 77 61 6c 6c 20 6c 6f 67 73 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 | ipv6.firewall.logs;.show.all.log |
| 11ba40 | 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 3b 20 73 68 6f 77 20 61 6c 6c 20 | s.for.particular.hook;.show.all. |
| 11ba60 | 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 6c 61 72 20 68 6f 6f 6b 20 61 6e 64 20 70 72 69 | logs.for.particular.hook.and.pri |
| 11ba80 | 6f 72 69 74 79 3b 20 73 68 6f 77 20 61 6c 6c 20 6c 6f 67 73 20 66 6f 72 20 70 61 72 74 69 63 75 | ority;.show.all.logs.for.particu |
| 11baa0 | 6c 61 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 3b 20 73 68 6f 77 20 6c 6f 67 73 20 66 6f 72 20 | lar.custom.chain;.show.logs.for. |
| 11bac0 | 73 70 65 63 69 66 69 63 20 52 75 6c 65 2d 53 65 74 2e 00 53 68 6f 77 20 74 68 65 20 72 6f 75 74 | specific.Rule-Set..Show.the.rout |
| 11bae0 | 65 00 53 68 6f 77 20 74 68 65 20 73 74 61 74 75 73 20 6f 66 20 72 75 6e 6e 69 6e 67 20 49 50 73 | e.Show.the.status.of.running.IPs |
| 11bb00 | 65 63 20 70 72 6f 63 65 73 73 20 61 6e 64 20 70 72 6f 63 65 73 73 20 49 44 2e 00 53 68 6f 77 20 | ec.process.and.process.ID..Show. |
| 11bb20 | 74 72 61 6e 73 63 65 69 76 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 70 6c 75 | transceiver.information.from.plu |
| 11bb40 | 67 69 6e 20 6d 6f 64 75 6c 65 73 2c 20 65 2e 67 20 53 46 50 2b 2c 20 51 53 46 50 00 53 68 6f 77 | gin.modules,.e.g.SFP+,.QSFP.Show |
| 11bb60 | 69 6e 67 20 42 46 44 20 6d 6f 6e 69 74 6f 72 65 64 20 73 74 61 74 69 63 20 72 6f 75 74 65 73 00 | ing.BFD.monitored.static.routes. |
| 11bb80 | 53 68 6f 77 73 20 73 74 61 74 75 73 20 6f 66 20 61 6c 6c 20 61 73 73 69 67 6e 65 64 20 6c 65 61 | Shows.status.of.all.assigned.lea |
| 11bba0 | 73 65 73 3a 00 53 69 64 65 20 41 3a 00 53 69 64 65 20 42 3a 00 53 69 65 72 72 61 20 57 69 72 65 | ses:.Side.A:.Side.B:.Sierra.Wire |
| 11bbc0 | 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 33 30 34 20 6d 69 6e 69 50 43 49 65 20 63 61 | less.AirPrime.MC7304.miniPCIe.ca |
| 11bbe0 | 72 64 20 28 4c 54 45 29 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d | rd.(LTE).Sierra.Wireless.AirPrim |
| 11bc00 | 65 20 4d 43 37 34 33 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 65 | e.MC7430.miniPCIe.card.(LTE).Sie |
| 11bc20 | 72 72 61 20 57 69 72 65 6c 65 73 73 20 41 69 72 50 72 69 6d 65 20 4d 43 37 34 35 35 20 6d 69 6e | rra.Wireless.AirPrime.MC7455.min |
| 11bc40 | 69 50 43 49 65 20 63 61 72 64 20 28 4c 54 45 29 00 53 69 65 72 72 61 20 57 69 72 65 6c 65 73 73 | iPCIe.card.(LTE).Sierra.Wireless |
| 11bc60 | 20 41 69 72 50 72 69 6d 65 20 4d 43 37 37 31 30 20 6d 69 6e 69 50 43 49 65 20 63 61 72 64 20 28 | .AirPrime.MC7710.miniPCIe.card.( |
| 11bc80 | 4c 54 45 29 00 53 69 6d 69 6c 61 72 20 63 6f 6d 62 69 6e 61 74 69 6f 6e 73 20 61 72 65 20 61 70 | LTE).Similar.combinations.are.ap |
| 11bca0 | 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 74 68 65 20 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 | plicable.for.the.dead-peer-detec |
| 11bcc0 | 74 69 6f 6e 2e 00 53 69 6d 69 6c 61 72 6c 79 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 | tion..Similarly.traffic.received |
| 11bce0 | 20 66 72 6f 6d 20 45 53 20 70 65 65 72 73 20 76 69 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 63 | .from.ES.peers.via.the.overlay.c |
| 11bd00 | 61 6e 6e 6f 74 20 62 65 20 66 6f 72 77 61 72 64 65 64 20 74 6f 20 74 68 65 20 73 65 72 76 65 72 | annot.be.forwarded.to.the.server |
| 11bd20 | 2e 20 54 68 69 73 20 69 73 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 2d 66 69 6c 74 65 72 69 6e | ..This.is.split-horizon-filterin |
| 11bd40 | 67 20 77 69 74 68 20 6c 6f 63 61 6c 20 62 69 61 73 2e 00 53 69 6d 70 6c 65 20 42 61 62 65 6c 20 | g.with.local.bias..Simple.Babel. |
| 11bd60 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 69 6e 67 20 32 20 6e 6f 64 65 73 20 61 6e 64 20 | configuration.using.2.nodes.and. |
| 11bd80 | 72 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 63 6f 6e 6e 65 63 74 65 64 20 69 6e 74 65 72 66 61 | redistributing.connected.interfa |
| 11bda0 | 63 65 73 2e 00 53 69 6d 70 6c 65 20 52 49 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 75 73 | ces..Simple.RIP.configuration.us |
| 11bdc0 | 69 6e 67 20 32 20 6e 6f 64 65 73 20 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 63 | ing.2.nodes.and.redistributing.c |
| 11bde0 | 6f 6e 6e 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 73 2e 00 53 69 6d 70 6c 65 20 73 65 74 75 | onnected.interfaces..Simple.setu |
| 11be00 | 70 20 77 69 74 68 20 6f 6e 65 20 75 73 65 72 20 61 64 64 65 64 20 61 6e 64 20 70 61 73 73 77 6f | p.with.one.user.added.and.passwo |
| 11be20 | 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 3a 00 53 69 6d 70 6c 65 20 74 65 78 74 20 70 | rd.authentication:.Simple.text.p |
| 11be40 | 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 69 6e 73 65 63 75 | assword.authentication.is.insecu |
| 11be60 | 72 65 20 61 6e 64 20 64 65 70 72 65 63 61 74 65 64 20 69 6e 20 66 61 76 6f 75 72 20 6f 66 20 4d | re.and.deprecated.in.favour.of.M |
| 11be80 | 44 35 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 53 69 6e 63 65 20 62 6f | D5.HMAC.authentication..Since.bo |
| 11bea0 | 74 68 20 72 6f 75 74 65 72 73 20 64 6f 20 6e 6f 74 20 6b 6e 6f 77 20 74 68 65 69 72 20 65 66 66 | th.routers.do.not.know.their.eff |
| 11bec0 | 65 63 74 69 76 65 20 70 75 62 6c 69 63 20 61 64 64 72 65 73 73 65 73 2c 20 77 65 20 73 65 74 20 | ective.public.addresses,.we.set. |
| 11bee0 | 74 68 65 20 6c 6f 63 61 6c 2d 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 65 65 72 20 74 6f | the.local-address.of.the.peer.to |
| 11bf00 | 20 22 61 6e 79 22 2e 00 53 69 6e 63 65 20 62 72 69 64 67 65 73 20 6f 70 65 72 61 74 65 73 20 61 | ."any"..Since.bridges.operates.a |
| 11bf20 | 74 20 6c 61 79 65 72 20 32 2c 20 62 6f 74 68 20 6d 61 74 63 68 65 72 73 20 66 6f 72 20 49 50 76 | t.layer.2,.both.matchers.for.IPv |
| 11bf40 | 34 20 61 6e 64 20 49 50 76 36 20 61 72 65 20 73 75 70 70 6f 72 74 65 64 20 69 6e 20 62 72 69 64 | 4.and.IPv6.are.supported.in.brid |
| 11bf60 | 67 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 53 61 6d 65 20 | ge.firewall.configuration..Same. |
| 11bf80 | 61 70 70 6c 69 65 73 20 66 6f 72 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2e 00 53 69 6e | applies.for.firewall.groups..Sin |
| 11bfa0 | 63 65 20 62 72 69 64 67 65 73 20 6f 70 65 72 61 74 73 20 61 74 20 6c 61 79 65 72 20 32 2c 20 62 | ce.bridges.operats.at.layer.2,.b |
| 11bfc0 | 6f 74 68 20 6d 61 74 63 68 65 72 73 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 | oth.matchers.for.IPv4.and.IPv6.a |
| 11bfe0 | 72 65 20 73 75 70 70 6f 72 74 65 64 20 69 6e 20 62 72 69 64 67 65 20 66 69 72 65 77 61 6c 6c 20 | re.supported.in.bridge.firewall. |
| 11c000 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 53 61 6d 65 20 61 70 70 6c 69 65 73 20 74 6f 20 66 | configuration..Same.applies.to.f |
| 11c020 | 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2e 00 53 69 6e 63 65 20 69 74 27 73 20 61 20 48 51 20 | irewall.groups..Since.it's.a.HQ. |
| 11c040 | 61 6e 64 20 62 72 61 6e 63 68 20 6f 66 66 69 63 65 73 20 73 65 74 75 70 2c 20 77 65 20 77 69 6c | and.branch.offices.setup,.we.wil |
| 11c060 | 6c 20 77 61 6e 74 20 61 6c 6c 20 63 6c 69 65 6e 74 73 20 74 6f 20 68 61 76 65 20 66 69 78 65 64 | l.want.all.clients.to.have.fixed |
| 11c080 | 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 77 65 20 77 69 6c 6c 20 72 6f 75 74 65 20 74 72 61 | .addresses.and.we.will.route.tra |
| 11c0a0 | 66 66 69 63 20 74 6f 20 73 70 65 63 69 66 69 63 20 73 75 62 6e 65 74 73 20 74 68 72 6f 75 67 68 | ffic.to.specific.subnets.through |
| 11c0c0 | 20 74 68 65 6d 2e 20 57 65 20 6e 65 65 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 | .them..We.need.configuration.for |
| 11c0e0 | 20 65 61 63 68 20 63 6c 69 65 6e 74 20 74 6f 20 61 63 68 69 65 76 65 20 74 68 69 73 2e 00 53 69 | .each.client.to.achieve.this..Si |
| 11c100 | 6e 63 65 20 69 74 27 73 20 61 20 48 51 20 77 69 74 68 20 62 72 61 6e 63 68 20 6f 66 66 69 63 65 | nce.it's.a.HQ.with.branch.office |
| 11c120 | 73 20 73 65 74 75 70 2c 20 77 65 20 77 69 6c 6c 20 77 61 6e 74 20 61 6c 6c 20 63 6c 69 65 6e 74 | s.setup,.we.will.want.all.client |
| 11c140 | 73 20 74 6f 20 68 61 76 65 20 66 69 78 65 64 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 77 65 | s.to.have.fixed.addresses.and.we |
| 11c160 | 20 77 69 6c 6c 20 72 6f 75 74 65 20 74 72 61 66 66 69 63 20 74 6f 20 73 70 65 63 69 66 69 63 20 | .will.route.traffic.to.specific. |
| 11c180 | 73 75 62 6e 65 74 73 20 74 68 72 6f 75 67 68 20 74 68 65 6d 2e 20 57 65 20 6e 65 65 64 20 63 6f | subnets.through.them..We.need.co |
| 11c1a0 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 6f 72 20 65 61 63 68 20 63 6c 69 65 6e 74 20 74 6f 20 61 | nfiguration.for.each.client.to.a |
| 11c1c0 | 63 68 69 65 76 65 20 74 68 69 73 2e 00 53 69 6e 63 65 20 74 68 65 20 52 41 44 49 55 53 20 73 65 | chieve.this..Since.the.RADIUS.se |
| 11c1e0 | 72 76 65 72 20 77 6f 75 6c 64 20 62 65 20 61 20 73 69 6e 67 6c 65 20 70 6f 69 6e 74 20 6f 66 20 | rver.would.be.a.single.point.of. |
| 11c200 | 66 61 69 6c 75 72 65 2c 20 6d 75 6c 74 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 | failure,.multiple.RADIUS.servers |
| 11c220 | 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 73 | .can.be.setup.and.will.be.used.s |
| 11c240 | 75 62 73 65 71 75 65 6e 74 69 61 6c 6c 79 2e 00 53 69 6e 63 65 20 74 68 65 20 52 41 44 49 55 53 | ubsequentially..Since.the.RADIUS |
| 11c260 | 20 73 65 72 76 65 72 20 77 6f 75 6c 64 20 62 65 20 61 20 73 69 6e 67 6c 65 20 70 6f 69 6e 74 20 | .server.would.be.a.single.point. |
| 11c280 | 6f 66 20 66 61 69 6c 75 72 65 2c 20 6d 75 6c 74 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 | of.failure,.multiple.RADIUS.serv |
| 11c2a0 | 65 72 73 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 75 73 65 | ers.can.be.setup.and.will.be.use |
| 11c2c0 | 64 20 73 75 62 73 65 71 75 65 6e 74 69 61 6c 6c 79 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 3a 00 | d.subsequentially..For.example:. |
| 11c2e0 | 53 69 6e 63 65 20 74 68 65 20 6d 44 4e 53 20 70 72 6f 74 6f 63 6f 6c 20 73 65 6e 64 73 20 74 68 | Since.the.mDNS.protocol.sends.th |
| 11c300 | 65 20 3a 61 62 62 72 3a 60 41 41 28 41 75 74 68 6f 72 69 74 61 74 69 76 65 20 41 6e 73 77 65 72 | e.:abbr:`AA(Authoritative.Answer |
| 11c320 | 29 60 20 72 65 63 6f 72 64 73 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 73 65 6c 66 2c | )`.records.in.the.packet.itself, |
| 11c340 | 20 74 68 65 20 72 65 70 65 61 74 65 72 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 66 | .the.repeater.does.not.need.to.f |
| 11c360 | 6f 72 67 65 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 49 6e 73 74 65 61 64 | orge.the.source.address..Instead |
| 11c380 | 2c 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 6f 66 20 74 68 65 20 69 | ,.the.source.address.is.of.the.i |
| 11c3a0 | 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 72 65 70 65 61 74 73 20 74 68 65 20 70 61 63 6b 65 74 | nterface.that.repeats.the.packet |
| 11c3c0 | 2e 00 53 69 6e 63 65 20 74 68 65 20 6d 44 4e 53 20 70 72 6f 74 6f 63 6f 6c 20 73 65 6e 64 73 20 | ..Since.the.mDNS.protocol.sends. |
| 11c3e0 | 74 68 65 20 41 41 20 72 65 63 6f 72 64 73 20 69 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 74 73 | the.AA.records.in.the.packet.its |
| 11c400 | 65 6c 66 2c 20 74 68 65 20 72 65 70 65 61 74 65 72 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 | elf,.the.repeater.does.not.need. |
| 11c420 | 74 6f 20 66 6f 72 67 65 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 49 6e 73 | to.forge.the.source.address..Ins |
| 11c440 | 74 65 61 64 2c 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 6f 66 20 74 | tead,.the.source.address.is.of.t |
| 11c460 | 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 72 65 70 65 61 74 73 20 74 68 65 20 70 61 | he.interface.that.repeats.the.pa |
| 11c480 | 63 6b 65 74 2e 00 53 69 6e 63 65 20 77 65 20 61 72 65 20 61 6e 61 6c 79 7a 69 6e 67 20 61 74 74 | cket..Since.we.are.analyzing.att |
| 11c4a0 | 61 63 6b 73 20 74 6f 20 61 6e 64 20 66 72 6f 6d 20 6f 75 72 20 69 6e 74 65 72 6e 61 6c 20 6e 65 | acks.to.and.from.our.internal.ne |
| 11c4c0 | 74 77 6f 72 6b 2c 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 61 74 74 61 63 6b 73 20 63 61 6e 20 | twork,.two.types.of.attacks.can. |
| 11c4e0 | 62 65 20 69 64 65 6e 74 69 66 69 65 64 2c 20 61 6e 64 20 64 69 66 66 65 72 65 6e 74 20 61 63 74 | be.identified,.and.different.act |
| 11c500 | 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 65 64 3a 00 53 69 6e 63 65 20 77 65 20 61 72 65 20 61 6e | ions.are.needed:.Since.we.are.an |
| 11c520 | 61 6c 79 7a 69 6e 67 20 61 74 74 61 63 6b 73 20 74 6f 20 61 6e 64 20 66 72 6f 6d 20 6f 75 72 20 | alyzing.attacks.to.and.from.our. |
| 11c540 | 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 61 | internal.network,.two.types.of.a |
| 11c560 | 74 74 61 63 6b 73 20 63 61 6e 20 62 65 20 69 64 65 6e 74 69 66 69 65 64 2c 20 61 6e 64 20 64 69 | ttacks.can.be.identified,.and.di |
| 11c580 | 66 66 65 72 65 6e 74 73 20 61 63 74 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 65 64 3a 00 53 69 6e | fferents.actions.are.needed:.Sin |
| 11c5a0 | 67 6c 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 28 53 56 44 29 00 53 69 6e 67 6c 65 20 65 78 | gle.VXLAN.device.(SVD).Single.ex |
| 11c5c0 | 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 00 53 69 74 65 20 74 6f 20 53 69 74 65 20 56 50 4e 00 | ternal.address.Site.to.Site.VPN. |
| 11c5e0 | 53 69 74 65 2d 74 6f 2d 53 69 74 65 00 53 69 74 65 2d 74 6f 2d 73 69 74 65 20 6d 6f 64 65 20 70 | Site-to-Site.Site-to-site.mode.p |
| 11c600 | 72 6f 76 69 64 65 73 20 61 20 77 61 79 20 74 6f 20 61 64 64 20 72 65 6d 6f 74 65 20 70 65 65 72 | rovides.a.way.to.add.remote.peer |
| 11c620 | 73 2c 20 77 68 69 63 68 20 63 6f 75 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 | s,.which.could.be.configured.to. |
| 11c640 | 65 78 63 68 61 6e 67 65 20 65 6e 63 72 79 70 74 65 64 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 62 | exchange.encrypted.information.b |
| 11c660 | 65 74 77 65 65 6e 20 74 68 65 6d 20 61 6e 64 20 56 79 4f 53 20 69 74 73 65 6c 66 20 6f 72 20 63 | etween.them.and.VyOS.itself.or.c |
| 11c680 | 6f 6e 6e 65 63 74 65 64 2f 72 6f 75 74 65 64 20 6e 65 74 77 6f 72 6b 73 2e 00 53 69 74 65 2d 74 | onnected/routed.networks..Site-t |
| 11c6a0 | 6f 2d 73 69 74 65 20 6d 6f 64 65 20 73 75 70 70 6f 72 74 73 20 78 2e 35 30 39 20 62 75 74 20 64 | o-site.mode.supports.x.509.but.d |
| 11c6c0 | 6f 65 73 6e 27 74 20 72 65 71 75 69 72 65 20 69 74 20 61 6e 64 20 63 61 6e 20 61 6c 73 6f 20 77 | oesn't.require.it.and.can.also.w |
| 11c6e0 | 6f 72 6b 20 77 69 74 68 20 73 74 61 74 69 63 20 6b 65 79 73 2c 20 77 68 69 63 68 20 69 73 20 73 | ork.with.static.keys,.which.is.s |
| 11c700 | 69 6d 70 6c 65 72 20 69 6e 20 6d 61 6e 79 20 63 61 73 65 73 2e 20 49 6e 20 74 68 69 73 20 65 78 | impler.in.many.cases..In.this.ex |
| 11c720 | 61 6d 70 6c 65 2c 20 77 65 27 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 61 20 73 69 6d 70 6c 65 20 | ample,.we'll.configure.a.simple. |
| 11c740 | 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e 56 50 4e 20 74 75 6e 6e 65 6c 20 75 73 69 6e | site-to-site.OpenVPN.tunnel.usin |
| 11c760 | 67 20 61 20 32 30 34 38 2d 62 69 74 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 2e 00 53 69 7a | g.a.2048-bit.pre-shared.key..Siz |
| 11c780 | 65 20 6f 66 20 74 68 65 20 52 53 41 20 6b 65 79 2e 00 53 6c 61 76 65 20 73 65 6c 65 63 74 69 6f | e.of.the.RSA.key..Slave.selectio |
| 11c7a0 | 6e 20 66 6f 72 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 69 73 20 64 6f 6e 65 20 61 | n.for.outgoing.traffic.is.done.a |
| 11c7c0 | 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 74 72 61 6e 73 6d 69 74 20 68 61 73 68 20 70 6f | ccording.to.the.transmit.hash.po |
| 11c7e0 | 6c 69 63 79 2c 20 77 68 69 63 68 20 6d 61 79 20 62 65 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 | licy,.which.may.be.changed.from. |
| 11c800 | 74 68 65 20 64 65 66 61 75 6c 74 20 73 69 6d 70 6c 65 20 58 4f 52 20 70 6f 6c 69 63 79 20 76 69 | the.default.simple.XOR.policy.vi |
| 11c820 | 61 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 68 61 73 68 2d 70 6f 6c 69 63 79 60 20 6f 70 74 69 | a.the.:cfgcmd:`hash-policy`.opti |
| 11c840 | 6f 6e 2c 20 64 6f 63 75 6d 65 6e 74 65 64 20 62 65 6c 6f 77 2e 00 53 6f 20 69 6e 20 6f 75 72 20 | on,.documented.below..So.in.our. |
| 11c860 | 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2c 20 77 65 20 77 61 6e 74 20 74 6f 20 61 6c 6c 6f | firewall.policy,.we.want.to.allo |
| 11c880 | 77 20 74 72 61 66 66 69 63 20 63 6f 6d 69 6e 67 20 69 6e 20 6f 6e 20 74 68 65 20 6f 75 74 73 69 | w.traffic.coming.in.on.the.outsi |
| 11c8a0 | 64 65 20 69 6e 74 65 72 66 61 63 65 2c 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 54 43 50 20 70 | de.interface,.destined.for.TCP.p |
| 11c8c0 | 6f 72 74 20 38 30 20 61 6e 64 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 31 39 32 | ort.80.and.the.IP.address.of.192 |
| 11c8e0 | 2e 31 36 38 2e 30 2e 31 30 30 2e 00 53 6f 20 69 6e 20 6f 75 72 20 66 69 72 65 77 61 6c 6c 20 72 | .168.0.100..So.in.our.firewall.r |
| 11c900 | 75 6c 65 73 65 74 2c 20 77 65 20 77 61 6e 74 20 74 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 69 63 | uleset,.we.want.to.allow.traffic |
| 11c920 | 20 77 68 69 63 68 20 70 72 65 76 69 6f 75 73 6c 79 20 6d 61 74 63 68 65 64 20 61 20 64 65 73 74 | .which.previously.matched.a.dest |
| 11c940 | 69 6e 61 74 69 6f 6e 20 6e 61 74 20 72 75 6c 65 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 61 76 | ination.nat.rule..In.order.to.av |
| 11c960 | 6f 69 64 20 63 72 65 61 74 69 6e 67 20 6d 61 6e 79 20 72 75 6c 65 73 2c 20 6f 6e 65 20 66 6f 72 | oid.creating.many.rules,.one.for |
| 11c980 | 20 65 61 63 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6e 61 74 20 72 75 6c 65 2c 20 77 65 20 63 | .each.destination.nat.rule,.we.c |
| 11c9a0 | 61 6e 20 61 63 63 65 70 74 20 61 6c 6c 20 2a 2a 27 64 6e 61 74 27 2a 2a 20 63 6f 6e 6e 65 63 74 | an.accept.all.**'dnat'**.connect |
| 11c9c0 | 69 6f 6e 73 20 77 69 74 68 20 6f 6e 65 20 73 69 6d 70 6c 65 20 72 75 6c 65 2c 20 75 73 69 6e 67 | ions.with.one.simple.rule,.using |
| 11c9e0 | 20 60 60 63 6f 6e 6e 65 63 74 69 6f 6e 2d 73 74 61 74 75 73 60 60 20 6d 61 74 63 68 65 72 3a 00 | .``connection-status``.matcher:. |
| 11ca00 | 53 6f 2c 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6e 65 65 64 65 | So,.firewall.configuration.neede |
| 11ca20 | 64 20 66 6f 72 20 74 68 69 73 20 73 65 74 75 70 3a 00 53 6f 6c 61 72 57 69 6e 64 73 00 53 6f 6d | d.for.this.setup:.SolarWinds.Som |
| 11ca40 | 65 20 49 53 50 73 20 62 79 20 64 65 66 61 75 6c 74 20 6f 6e 6c 79 20 64 65 6c 65 67 61 74 65 20 | e.ISPs.by.default.only.delegate. |
| 11ca60 | 61 20 2f 36 34 20 70 72 65 66 69 78 2e 20 54 6f 20 72 65 71 75 65 73 74 20 66 6f 72 20 61 20 73 | a./64.prefix..To.request.for.a.s |
| 11ca80 | 70 65 63 69 66 69 63 20 70 72 65 66 69 78 20 73 69 7a 65 20 75 73 65 20 74 68 69 73 20 6f 70 74 | pecific.prefix.size.use.this.opt |
| 11caa0 | 69 6f 6e 20 74 6f 20 72 65 71 75 65 73 74 20 66 6f 72 20 61 20 62 69 67 67 65 72 20 64 65 6c 65 | ion.to.request.for.a.bigger.dele |
| 11cac0 | 67 61 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 70 64 20 60 3c 69 64 3e 60 2e 20 54 68 69 73 20 | gation.for.this.pd.`<id>`..This. |
| 11cae0 | 76 61 6c 75 65 20 69 73 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 33 32 20 2d 20 | value.is.in.the.range.from.32.-. |
| 11cb00 | 36 34 20 73 6f 20 79 6f 75 20 63 6f 75 6c 64 20 72 65 71 75 65 73 74 20 75 70 20 74 6f 20 61 20 | 64.so.you.could.request.up.to.a. |
| 11cb20 | 2f 33 32 20 70 72 65 66 69 78 20 28 69 66 20 79 6f 75 72 20 49 53 50 20 61 6c 6c 6f 77 73 20 74 | /32.prefix.(if.your.ISP.allows.t |
| 11cb40 | 68 69 73 29 20 64 6f 77 6e 20 74 6f 20 61 20 2f 36 34 20 64 65 6c 65 67 61 74 69 6f 6e 2e 00 53 | his).down.to.a./64.delegation..S |
| 11cb60 | 6f 6d 65 20 49 54 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 72 65 71 75 69 72 65 20 74 68 65 20 | ome.IT.environments.require.the. |
| 11cb80 | 75 73 65 20 6f 66 20 61 20 70 72 6f 78 79 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 | use.of.a.proxy.to.connect.to.the |
| 11cba0 | 20 49 6e 74 65 72 6e 65 74 2e 20 57 69 74 68 6f 75 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 | .Internet..Without.this.configur |
| 11cbc0 | 61 74 69 6f 6e 20 56 79 4f 53 20 75 70 64 61 74 65 73 20 63 6f 75 6c 64 20 6e 6f 74 20 62 65 20 | ation.VyOS.updates.could.not.be. |
| 11cbe0 | 69 6e 73 74 61 6c 6c 65 64 20 64 69 72 65 63 74 6c 79 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 | installed.directly.by.using.the. |
| 11cc00 | 3a 6f 70 63 6d 64 3a 60 61 64 64 20 73 79 73 74 65 6d 20 69 6d 61 67 65 60 20 63 6f 6d 6d 61 6e | :opcmd:`add.system.image`.comman |
| 11cc20 | 64 20 28 3a 72 65 66 3a 60 75 70 64 61 74 65 5f 76 79 6f 73 60 29 2e 00 53 6f 6d 65 20 52 41 44 | d.(:ref:`update_vyos`)..Some.RAD |
| 11cc40 | 49 55 53 20 73 65 76 65 72 73 20 75 73 65 20 61 6e 20 61 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c | IUS.severs.use.an.access.control |
| 11cc60 | 20 6c 69 73 74 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 6f 72 20 64 65 6e 69 65 73 20 71 75 65 | .list.which.allows.or.denies.que |
| 11cc80 | 72 69 65 73 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 6f 20 61 64 64 20 79 6f 75 72 20 56 79 4f 53 | ries,.make.sure.to.add.your.VyOS |
| 11cca0 | 20 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 61 6c 6c 6f 77 65 64 20 63 6c 69 65 6e 74 20 6c 69 | .router.to.the.allowed.client.li |
| 11ccc0 | 73 74 2e 00 53 6f 6d 65 20 52 41 44 49 55 53 5f 20 73 65 76 65 72 73 20 75 73 65 20 61 6e 20 61 | st..Some.RADIUS_.severs.use.an.a |
| 11cce0 | 63 63 65 73 73 20 63 6f 6e 74 72 6f 6c 20 6c 69 73 74 20 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 | ccess.control.list.which.allows. |
| 11cd00 | 6f 72 20 64 65 6e 69 65 73 20 71 75 65 72 69 65 73 2c 20 6d 61 6b 65 20 73 75 72 65 20 74 6f 20 | or.denies.queries,.make.sure.to. |
| 11cd20 | 61 64 64 20 79 6f 75 72 20 56 79 4f 53 20 72 6f 75 74 65 72 20 74 6f 20 74 68 65 20 61 6c 6c 6f | add.your.VyOS.router.to.the.allo |
| 11cd40 | 77 65 64 20 63 6c 69 65 6e 74 20 6c 69 73 74 2e 00 53 6f 6d 65 20 61 70 70 6c 69 63 61 74 69 6f | wed.client.list..Some.applicatio |
| 11cd60 | 6e 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 73 20 28 41 53 50 73 29 20 6f 70 65 72 61 | n.service.providers.(ASPs).opera |
| 11cd80 | 74 65 20 61 20 56 50 4e 20 67 61 74 65 77 61 79 20 74 6f 20 70 72 6f 76 69 64 65 20 61 63 63 65 | te.a.VPN.gateway.to.provide.acce |
| 11cda0 | 73 73 20 74 6f 20 74 68 65 69 72 20 69 6e 74 65 72 6e 61 6c 20 72 65 73 6f 75 72 63 65 73 2c 20 | ss.to.their.internal.resources,. |
| 11cdc0 | 61 6e 64 20 72 65 71 75 69 72 65 20 74 68 61 74 20 61 20 63 6f 6e 6e 65 63 74 69 6e 67 20 6f 72 | and.require.that.a.connecting.or |
| 11cde0 | 67 61 6e 69 73 61 74 69 6f 6e 20 74 72 61 6e 73 6c 61 74 65 20 61 6c 6c 20 74 72 61 66 66 69 63 | ganisation.translate.all.traffic |
| 11ce00 | 20 74 6f 20 74 68 65 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 20 6e 65 74 77 6f 72 6b | .to.the.service.provider.network |
| 11ce20 | 20 74 6f 20 61 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 70 72 6f 76 69 64 65 64 20 62 79 | .to.a.source.address.provided.by |
| 11ce40 | 20 74 68 65 20 41 53 50 2e 00 53 6f 6d 65 20 63 6f 6e 74 61 69 6e 65 72 20 72 65 67 69 73 74 72 | .the.ASP..Some.container.registr |
| 11ce60 | 69 65 73 20 72 65 71 75 69 72 65 20 63 72 65 64 65 6e 74 69 61 6c 73 20 74 6f 20 62 65 20 75 73 | ies.require.credentials.to.be.us |
| 11ce80 | 65 64 2e 00 53 6f 6d 65 20 66 69 72 65 77 61 6c 6c 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 67 | ed..Some.firewall.settings.are.g |
| 11cea0 | 6c 6f 62 61 6c 20 61 6e 64 20 68 61 76 65 20 61 6e 20 61 66 66 65 63 74 20 6f 6e 20 74 68 65 20 | lobal.and.have.an.affect.on.the. |
| 11cec0 | 77 68 6f 6c 65 20 73 79 73 74 65 6d 2e 00 53 6f 6d 65 20 66 69 72 65 77 61 6c 6c 20 73 65 74 74 | whole.system..Some.firewall.sett |
| 11cee0 | 69 6e 67 73 20 61 72 65 20 67 6c 6f 62 61 6c 20 61 6e 64 20 68 61 76 65 20 61 6e 20 61 66 66 65 | ings.are.global.and.have.an.affe |
| 11cf00 | 63 74 20 6f 6e 20 74 68 65 20 77 68 6f 6c 65 20 73 79 73 74 65 6d 2e 20 49 6e 20 74 68 69 73 20 | ct.on.the.whole.system..In.this. |
| 11cf20 | 73 65 63 74 69 6f 6e 20 74 68 65 72 65 27 73 20 75 73 65 66 75 6c 20 69 6e 66 6f 72 6d 61 74 69 | section.there's.useful.informati |
| 11cf40 | 6f 6e 20 61 62 6f 75 74 20 74 68 65 73 65 20 67 6c 6f 62 61 6c 2d 6f 70 74 69 6f 6e 73 20 74 68 | on.about.these.global-options.th |
| 11cf60 | 61 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 75 73 69 6e 67 20 76 79 6f 73 20 | at.can.be.configured.using.vyos. |
| 11cf80 | 63 6c 69 2e 00 53 6f 6d 65 20 70 6f 6c 69 63 69 65 73 20 61 6c 72 65 61 64 79 20 69 6e 63 6c 75 | cli..Some.policies.already.inclu |
| 11cfa0 | 64 65 20 6f 74 68 65 72 20 65 6d 62 65 64 64 65 64 20 70 6f 6c 69 63 69 65 73 20 69 6e 73 69 64 | de.other.embedded.policies.insid |
| 11cfc0 | 65 2e 20 54 68 61 74 20 69 73 20 74 68 65 20 63 61 73 65 20 6f 66 20 53 68 61 70 65 72 5f 3a 20 | e..That.is.the.case.of.Shaper_:. |
| 11cfe0 | 65 61 63 68 20 6f 66 20 69 74 73 20 63 6c 61 73 73 65 73 20 75 73 65 20 66 61 69 72 2d 71 75 65 | each.of.its.classes.use.fair-que |
| 11d000 | 75 65 20 75 6e 6c 65 73 73 20 79 6f 75 20 63 68 61 6e 67 65 20 69 74 2e 00 53 6f 6d 65 20 70 6f | ue.unless.you.change.it..Some.po |
| 11d020 | 6c 69 63 69 65 73 20 63 61 6e 20 62 65 20 63 6f 6d 62 69 6e 65 64 2c 20 79 6f 75 20 77 69 6c 6c | licies.can.be.combined,.you.will |
| 11d040 | 20 62 65 20 61 62 6c 65 20 74 6f 20 65 6d 62 65 64 5f 20 61 20 64 69 66 66 65 72 65 6e 74 20 70 | .be.able.to.embed_.a.different.p |
| 11d060 | 6f 6c 69 63 79 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 20 | olicy.that.will.be.applied.to.a. |
| 11d080 | 63 6c 61 73 73 20 6f 66 20 74 68 65 20 6d 61 69 6e 20 70 6f 6c 69 63 79 2e 00 53 6f 6d 65 20 70 | class.of.the.main.policy..Some.p |
| 11d0a0 | 6f 73 73 69 62 6c 65 20 65 78 61 6d 70 6c 65 73 20 61 72 65 3a 00 53 6f 6d 65 20 70 72 6f 78 79 | ossible.examples.are:.Some.proxy |
| 11d0c0 | 73 20 72 65 71 75 69 72 65 2f 73 75 70 70 6f 72 74 20 74 68 65 20 22 62 61 73 69 63 22 20 48 54 | s.require/support.the."basic".HT |
| 11d0e0 | 54 50 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 63 68 65 6d 65 20 61 73 20 70 65 72 20 | TP.authentication.scheme.as.per. |
| 11d100 | 3a 72 66 63 3a 60 37 36 31 37 60 2c 20 74 68 75 73 20 61 20 70 61 73 73 77 6f 72 64 20 63 61 6e | :rfc:`7617`,.thus.a.password.can |
| 11d120 | 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 53 6f 6d 65 20 70 72 6f 78 79 73 20 72 65 71 75 | .be.configured..Some.proxys.requ |
| 11d140 | 69 72 65 2f 73 75 70 70 6f 72 74 20 74 68 65 20 22 62 61 73 69 63 22 20 48 54 54 50 20 61 75 74 | ire/support.the."basic".HTTP.aut |
| 11d160 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 63 68 65 6d 65 20 61 73 20 70 65 72 20 3a 72 66 63 3a 60 | hentication.scheme.as.per.:rfc:` |
| 11d180 | 37 36 31 37 60 2c 20 74 68 75 73 20 61 20 75 73 65 72 6e 61 6d 65 20 63 61 6e 20 62 65 20 63 6f | 7617`,.thus.a.username.can.be.co |
| 11d1a0 | 6e 66 69 67 75 72 65 64 2e 00 53 6f 6d 65 20 72 65 63 65 6e 74 20 49 53 50 73 20 72 65 71 75 69 | nfigured..Some.recent.ISPs.requi |
| 11d1c0 | 72 65 20 79 6f 75 20 74 6f 20 62 75 69 6c 64 20 74 68 65 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 | re.you.to.build.the.PPPoE.connec |
| 11d1e0 | 74 69 6f 6e 20 74 68 72 6f 75 67 68 20 61 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 2e 20 4f | tion.through.a.VLAN.interface..O |
| 11d200 | 6e 65 20 6f 66 20 74 68 6f 73 65 20 49 53 50 73 20 69 73 20 65 2e 67 2e 20 44 65 75 74 73 63 68 | ne.of.those.ISPs.is.e.g..Deutsch |
| 11d220 | 65 20 54 65 6c 65 6b 6f 6d 20 69 6e 20 47 65 72 6d 61 6e 79 2e 20 56 79 4f 53 20 63 61 6e 20 65 | e.Telekom.in.Germany..VyOS.can.e |
| 11d240 | 61 73 69 6c 79 20 63 72 65 61 74 65 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 74 68 72 | asily.create.a.PPPoE.session.thr |
| 11d260 | 6f 75 67 68 20 61 6e 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 56 4c 41 4e 20 69 6e 74 65 72 66 | ough.an.encapsulated.VLAN.interf |
| 11d280 | 61 63 65 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ace..The.following.configuration |
| 11d2a0 | 20 77 69 6c 6c 20 72 75 6e 20 79 6f 75 72 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | .will.run.your.PPPoE.connection. |
| 11d2c0 | 74 68 72 6f 75 67 68 20 56 4c 41 4e 37 20 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 66 61 75 | through.VLAN7.which.is.the.defau |
| 11d2e0 | 6c 74 20 56 4c 41 4e 20 66 6f 72 20 44 65 75 74 73 63 68 65 20 54 65 6c 65 6b 6f 6d 3a 00 53 6f | lt.VLAN.for.Deutsche.Telekom:.So |
| 11d300 | 6d 65 20 73 65 72 76 69 63 65 73 20 64 6f 6e 27 74 20 77 6f 72 6b 20 63 6f 72 72 65 63 74 6c 79 | me.services.don't.work.correctly |
| 11d320 | 20 77 68 65 6e 20 62 65 69 6e 67 20 68 61 6e 64 6c 65 64 20 76 69 61 20 61 20 77 65 62 20 70 72 | .when.being.handled.via.a.web.pr |
| 11d340 | 6f 78 79 2e 20 53 6f 20 73 6f 6d 65 74 69 6d 65 73 20 69 74 20 69 73 20 75 73 65 66 75 6c 20 74 | oxy..So.sometimes.it.is.useful.t |
| 11d360 | 6f 20 62 79 70 61 73 73 20 61 20 74 72 61 6e 73 70 61 72 65 6e 74 20 70 72 6f 78 79 3a 00 53 6f | o.bypass.a.transparent.proxy:.So |
| 11d380 | 6d 65 20 75 73 65 72 73 20 74 65 6e 64 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 65 69 72 20 6d | me.users.tend.to.connect.their.m |
| 11d3a0 | 6f 62 69 6c 65 20 64 65 76 69 63 65 73 20 75 73 69 6e 67 20 57 69 72 65 47 75 61 72 64 20 74 6f | obile.devices.using.WireGuard.to |
| 11d3c0 | 20 74 68 65 69 72 20 56 79 4f 53 20 72 6f 75 74 65 72 2e 20 54 6f 20 65 61 73 65 20 64 65 70 6c | .their.VyOS.router..To.ease.depl |
| 11d3e0 | 6f 79 6d 65 6e 74 20 6f 6e 65 20 63 61 6e 20 67 65 6e 65 72 61 74 65 20 61 20 22 70 65 72 20 6d | oyment.one.can.generate.a."per.m |
| 11d400 | 6f 62 69 6c 65 22 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 56 79 | obile".configuration.from.the.Vy |
| 11d420 | 4f 53 20 43 4c 49 2e 00 53 6f 6d 65 74 69 6d 65 73 20 6f 70 74 69 6f 6e 20 6c 69 6e 65 73 20 69 | OS.CLI..Sometimes.option.lines.i |
| 11d440 | 6e 20 74 68 65 20 67 65 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 | n.the.generated.OpenVPN.configur |
| 11d460 | 61 74 69 6f 6e 20 72 65 71 75 69 72 65 20 71 75 6f 74 65 73 2e 20 54 68 69 73 20 69 73 20 64 6f | ation.require.quotes..This.is.do |
| 11d480 | 6e 65 20 74 68 72 6f 75 67 68 20 61 20 68 61 63 6b 20 6f 6e 20 6f 75 72 20 63 6f 6e 66 69 67 20 | ne.through.a.hack.on.our.config. |
| 11d4a0 | 67 65 6e 65 72 61 74 6f 72 2e 20 59 6f 75 20 63 61 6e 20 70 61 73 73 20 71 75 6f 74 65 73 20 75 | generator..You.can.pass.quotes.u |
| 11d4c0 | 73 69 6e 67 20 74 68 65 20 60 60 26 71 75 6f 74 3b 60 60 20 73 74 61 74 65 6d 65 6e 74 2e 00 53 | sing.the.``"``.statement..S |
| 11d4e0 | 6f 72 74 20 74 68 65 20 6f 75 74 70 75 74 20 62 79 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 | ort.the.output.by.the.specified. |
| 11d500 | 6b 65 79 2e 20 50 6f 73 73 69 62 6c 65 20 6b 65 79 73 3a 20 65 78 70 69 72 65 73 2c 20 69 61 69 | key..Possible.keys:.expires,.iai |
| 11d520 | 64 5f 64 75 69 64 2c 20 69 70 2c 20 6c 61 73 74 5f 63 6f 6d 6d 2c 20 70 6f 6f 6c 2c 20 72 65 6d | d_duid,.ip,.last_comm,.pool,.rem |
| 11d540 | 61 69 6e 69 6e 67 2c 20 73 74 61 74 65 2c 20 74 79 70 65 20 28 64 65 66 61 75 6c 74 20 3d 20 69 | aining,.state,.type.(default.=.i |
| 11d560 | 70 29 00 53 6f 72 74 20 74 68 65 20 6f 75 74 70 75 74 20 62 79 20 74 68 65 20 73 70 65 63 69 66 | p).Sort.the.output.by.the.specif |
| 11d580 | 69 65 64 20 6b 65 79 2e 20 50 6f 73 73 69 62 6c 65 20 6b 65 79 73 3a 20 69 70 2c 20 68 61 72 64 | ied.key..Possible.keys:.ip,.hard |
| 11d5a0 | 77 61 72 65 5f 61 64 64 72 65 73 73 2c 20 73 74 61 74 65 2c 20 73 74 61 72 74 2c 20 65 6e 64 2c | ware_address,.state,.start,.end, |
| 11d5c0 | 20 72 65 6d 61 69 6e 69 6e 67 2c 20 70 6f 6f 6c 2c 20 68 6f 73 74 6e 61 6d 65 20 28 64 65 66 61 | .remaining,.pool,.hostname.(defa |
| 11d5e0 | 75 6c 74 20 3d 20 69 70 29 00 53 6f 75 72 63 65 20 41 64 64 72 65 73 73 00 53 6f 75 72 63 65 20 | ult.=.ip).Source.Address.Source. |
| 11d600 | 49 50 20 61 64 64 72 65 73 73 20 75 73 65 64 20 66 6f 72 20 56 58 4c 41 4e 20 75 6e 64 65 72 6c | IP.address.used.for.VXLAN.underl |
| 11d620 | 61 79 2e 20 54 68 69 73 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 77 68 65 6e 20 75 73 69 6e 67 | ay..This.is.mandatory.when.using |
| 11d640 | 20 56 58 4c 41 4e 20 76 69 61 20 4c 32 56 50 4e 2f 45 56 50 4e 2e 00 53 6f 75 72 63 65 20 49 50 | .VXLAN.via.L2VPN/EVPN..Source.IP |
| 11d660 | 76 34 20 61 64 64 72 65 73 73 20 75 73 65 64 20 69 6e 20 61 6c 6c 20 52 41 44 49 55 53 20 73 65 | v4.address.used.in.all.RADIUS.se |
| 11d680 | 72 76 65 72 20 71 75 65 69 72 65 73 2e 00 53 6f 75 72 63 65 20 4e 41 54 20 72 75 6c 65 73 00 53 | rver.queires..Source.NAT.rules.S |
| 11d6a0 | 6f 75 72 63 65 20 50 72 65 66 69 78 00 53 6f 75 72 63 65 20 61 6c 6c 20 63 6f 6e 6e 65 63 74 69 | ource.Prefix.Source.all.connecti |
| 11d6c0 | 6f 6e 73 20 74 6f 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 73 20 66 72 6f 6d 20 67 | ons.to.the.RADIUS.servers.from.g |
| 11d6e0 | 69 76 65 6e 20 56 52 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 53 6f 75 72 63 65 20 61 6c 6c 20 63 6f | iven.VRF.`<name>`..Source.all.co |
| 11d700 | 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 73 20 | nnections.to.the.TACACS.servers. |
| 11d720 | 66 72 6f 6d 20 67 69 76 65 6e 20 56 52 46 20 60 3c 6e 61 6d 65 3e 60 2e 00 53 6f 75 72 63 65 20 | from.given.VRF.`<name>`..Source. |
| 11d740 | 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 6d 61 74 63 68 2e 00 53 6f 75 72 63 65 20 74 75 6e 6e 65 6c | protocol.to.match..Source.tunnel |
| 11d760 | 20 66 72 6f 6d 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 00 53 6f 75 72 63 65 20 74 75 6e | .from.dummy.interface.Source.tun |
| 11d780 | 6e 65 6c 20 66 72 6f 6d 20 6c 6f 6f 70 62 61 63 6b 73 00 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 | nel.from.loopbacks.Spanning.Tree |
| 11d7a0 | 20 50 72 6f 74 6f 63 6f 6c 20 66 6f 72 77 61 72 64 69 6e 67 20 60 3c 64 65 6c 61 79 3e 60 20 69 | .Protocol.forwarding.`<delay>`.i |
| 11d7c0 | 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 61 75 6c 74 3a 20 31 35 29 2e 00 53 70 61 6e 6e 69 6e | n.seconds.(default:.15)..Spannin |
| 11d7e0 | 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c 20 68 65 6c 6c 6f 20 61 64 76 65 72 74 69 73 65 6d | g.Tree.Protocol.hello.advertisem |
| 11d800 | 65 6e 74 20 60 3c 69 6e 74 65 72 76 61 6c 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 64 65 66 | ent.`<interval>`.in.seconds.(def |
| 11d820 | 61 75 6c 74 3a 20 32 29 2e 00 53 70 61 6e 6e 69 6e 67 20 54 72 65 65 20 50 72 6f 74 6f 63 6f 6c | ault:.2)..Spanning.Tree.Protocol |
| 11d840 | 20 69 73 20 6e 6f 74 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 20 69 6e 20 56 79 | .is.not.enabled.by.default.in.Vy |
| 11d860 | 4f 53 2e 20 3a 72 65 66 3a 60 73 74 70 60 20 63 61 6e 20 62 65 20 65 61 73 69 6c 79 20 65 6e 61 | OS..:ref:`stp`.can.be.easily.ena |
| 11d880 | 62 6c 65 64 20 69 66 20 6e 65 65 64 65 64 2e 00 53 70 61 74 69 61 6c 20 4d 75 6c 74 69 70 6c 65 | bled.if.needed..Spatial.Multiple |
| 11d8a0 | 78 69 6e 67 20 50 6f 77 65 72 20 53 61 76 65 20 28 53 4d 50 53 29 20 73 65 74 74 69 6e 67 73 00 | xing.Power.Save.(SMPS).settings. |
| 11d8c0 | 53 70 65 63 66 79 69 6e 67 20 6e 68 73 20 6d 61 6b 65 73 20 61 6c 6c 20 6d 75 6c 74 69 63 61 73 | Specfying.nhs.makes.all.multicas |
| 11d8e0 | 74 20 70 61 63 6b 65 74 73 20 74 6f 20 62 65 20 72 65 70 65 61 74 65 64 20 74 6f 20 65 61 63 68 | t.packets.to.be.repeated.to.each |
| 11d900 | 20 73 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 6e 65 78 74 20 68 6f 70 2e | .statically.configured.next.hop. |
| 11d920 | 00 53 70 65 63 69 66 69 65 73 20 3a 61 62 62 72 3a 60 4d 50 50 45 20 28 4d 69 63 72 6f 73 6f 66 | .Specifies.:abbr:`MPPE.(Microsof |
| 11d940 | 74 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 45 6e 63 72 79 70 74 69 6f 6e 29 60 20 6e 65 | t.Point-to-Point.Encryption)`.ne |
| 11d960 | 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 | gotiation.preference..Specifies. |
| 11d980 | 3a 61 62 62 72 3a 60 4d 50 50 45 20 28 4d 69 63 72 6f 73 6f 66 74 20 50 6f 69 6e 74 2d 74 6f 2d | :abbr:`MPPE.(Microsoft.Point-to- |
| 11d9a0 | 50 6f 69 6e 74 20 45 6e 63 72 79 70 74 69 6f 6e 29 60 20 6e 65 67 6f 74 69 6f 61 74 69 6f 6e 20 | Point.Encryption)`.negotioation. |
| 11d9c0 | 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 69 66 69 65 73 20 49 50 20 61 64 64 72 65 73 73 | preference..Specifies.IP.address |
| 11d9e0 | 20 66 6f 72 20 44 79 6e 61 6d 69 63 20 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e | .for.Dynamic.Authorization.Exten |
| 11da00 | 73 69 6f 6e 20 73 65 72 76 65 72 20 28 44 4d 2f 43 6f 41 29 00 53 70 65 63 69 66 69 65 73 20 49 | sion.server.(DM/CoA).Specifies.I |
| 11da20 | 50 76 34 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 65 2e 00 53 70 65 63 | Pv4.negotiation.preference..Spec |
| 11da40 | 69 66 69 65 73 20 49 50 76 36 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 70 72 65 66 65 72 65 6e 63 | ifies.IPv6.negotiation.preferenc |
| 11da60 | 65 2e 00 53 70 65 63 69 66 69 65 73 20 53 65 72 76 69 63 65 2d 4e 61 6d 65 20 74 6f 20 72 65 73 | e..Specifies.Service-Name.to.res |
| 11da80 | 70 6f 6e 64 2e 20 49 66 20 61 62 73 65 6e 74 20 61 6e 79 20 53 65 72 76 69 63 65 2d 4e 61 6d 65 | pond..If.absent.any.Service-Name |
| 11daa0 | 20 69 73 20 61 63 63 65 70 74 61 62 6c 65 20 61 6e 64 20 63 6c 69 65 6e 74 e2 80 99 73 20 53 65 | .is.acceptable.and.client...s.Se |
| 11dac0 | 72 76 69 63 65 2d 4e 61 6d 65 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 62 61 63 6b 2e 20 41 6c | rvice-Name.will.be.sent.back..Al |
| 11dae0 | 73 6f 20 70 6f 73 73 69 62 6c 65 20 73 65 74 20 6d 75 6c 74 69 70 6c 65 20 73 65 72 76 69 63 65 | so.possible.set.multiple.service |
| 11db00 | 2d 6e 61 6d 65 73 3a 20 60 73 6e 31 2c 73 6e 32 2c 73 6e 33 60 00 53 70 65 63 69 66 69 65 73 20 | -names:.`sn1,sn2,sn3`.Specifies. |
| 11db20 | 61 64 64 72 65 73 73 20 74 6f 20 62 65 20 75 73 65 64 20 61 73 20 73 65 72 76 65 72 20 69 70 20 | address.to.be.used.as.server.ip. |
| 11db40 | 61 64 64 72 65 73 73 20 69 66 20 72 61 64 69 75 73 20 63 61 6e 20 61 73 73 69 67 6e 20 6f 6e 6c | address.if.radius.can.assign.onl |
| 11db60 | 79 20 63 6c 69 65 6e 74 20 61 64 64 72 65 73 73 2e 20 49 6e 20 73 75 63 68 20 63 61 73 65 20 69 | y.client.address..In.such.case.i |
| 11db80 | 66 20 63 6c 69 65 6e 74 20 61 64 64 72 65 73 73 20 69 73 20 6d 61 74 63 68 65 64 20 6e 65 74 77 | f.client.address.is.matched.netw |
| 11dba0 | 6f 72 6b 20 61 6e 64 20 6d 61 73 6b 20 74 68 65 6e 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 | ork.and.mask.then.specified.addr |
| 11dbc0 | 65 73 73 20 61 6e 64 20 6d 61 73 6b 20 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 20 59 6f 75 20 63 | ess.and.mask.will.be.used..You.c |
| 11dbe0 | 61 6e 20 73 70 65 63 69 66 79 20 6d 75 6c 74 69 70 6c 65 20 73 75 63 68 20 6f 70 74 69 6f 6e 73 | an.specify.multiple.such.options |
| 11dc00 | 2e 00 53 70 65 63 69 66 69 65 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 72 6f 75 74 65 2d 6d 61 | ..Specifies.an.optional.route-ma |
| 11dc20 | 70 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 72 6f 75 74 65 73 20 69 6d 70 6f 72 74 | p.to.be.applied.to.routes.import |
| 11dc40 | 65 64 20 6f 72 20 65 78 70 6f 72 74 65 64 20 62 65 74 77 65 65 6e 20 74 68 65 20 63 75 72 72 65 | ed.or.exported.between.the.curre |
| 11dc60 | 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 61 6e 64 20 56 50 4e 2e 00 53 70 65 63 69 66 69 65 | nt.unicast.VRF.and.VPN..Specifie |
| 11dc80 | 73 20 61 6e 20 75 70 73 74 72 65 61 6d 20 6e 65 74 77 6f 72 6b 20 60 3c 69 6e 74 65 72 66 61 63 | s.an.upstream.network.`<interfac |
| 11dca0 | 65 3e 60 20 66 72 6f 6d 20 77 68 69 63 68 20 72 65 70 6c 69 65 73 20 66 72 6f 6d 20 60 3c 73 65 | e>`.from.which.replies.from.`<se |
| 11dcc0 | 72 76 65 72 3e 60 20 61 6e 64 20 6f 74 68 65 72 20 72 65 6c 61 79 20 61 67 65 6e 74 73 20 77 69 | rver>`.and.other.relay.agents.wi |
| 11dce0 | 6c 6c 20 62 65 20 61 63 63 65 70 74 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 66 69 78 65 64 20 | ll.be.accepted..Specifies.fixed. |
| 11dd00 | 6f 72 20 72 61 6e 64 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 | or.random.interface.identifier.f |
| 11dd20 | 6f 72 20 49 50 76 36 2e 20 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 | or.IPv6..By.default.is.fixed..Sp |
| 11dd40 | 65 63 69 66 69 65 73 20 68 6f 77 20 6c 6f 6e 67 20 73 71 75 69 64 20 61 73 73 75 6d 65 73 20 61 | ecifies.how.long.squid.assumes.a |
| 11dd60 | 6e 20 65 78 74 65 72 6e 61 6c 6c 79 20 76 61 6c 69 64 61 74 65 64 20 75 73 65 72 6e 61 6d 65 3a | n.externally.validated.username: |
| 11dd80 | 70 61 73 73 77 6f 72 64 20 70 61 69 72 20 69 73 20 76 61 6c 69 64 20 66 6f 72 20 2d 20 69 6e 20 | password.pair.is.valid.for.-.in. |
| 11dda0 | 6f 74 68 65 72 20 77 6f 72 64 73 20 68 6f 77 20 6f 66 74 65 6e 20 74 68 65 20 68 65 6c 70 65 72 | other.words.how.often.the.helper |
| 11ddc0 | 20 70 72 6f 67 72 61 6d 20 69 73 20 63 61 6c 6c 65 64 20 66 6f 72 20 74 68 61 74 20 75 73 65 72 | .program.is.called.for.that.user |
| 11dde0 | 2e 20 53 65 74 20 74 68 69 73 20 6c 6f 77 20 74 6f 20 66 6f 72 63 65 20 72 65 76 61 6c 69 64 61 | ..Set.this.low.to.force.revalida |
| 11de00 | 74 69 6f 6e 20 77 69 74 68 20 73 68 6f 72 74 20 6c 69 76 65 64 20 70 61 73 73 77 6f 72 64 73 2e | tion.with.short.lived.passwords. |
| 11de20 | 00 53 70 65 63 69 66 69 65 73 20 69 66 20 61 20 66 69 78 65 64 20 6f 72 20 72 61 6e 64 6f 6d 20 | .Specifies.if.a.fixed.or.random. |
| 11de40 | 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 69 73 20 75 73 65 64 20 66 6f 72 | interface.identifier.is.used.for |
| 11de60 | 20 49 50 76 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 | .IPv6..The.default.is.fixed..Spe |
| 11de80 | 63 69 66 69 65 73 20 69 66 20 75 6e 6b 6e 6f 77 6e 20 73 6f 75 72 63 65 20 6c 69 6e 6b 20 6c 61 | cifies.if.unknown.source.link.la |
| 11dea0 | 79 65 72 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 | yer.addresses.and.IP.addresses.a |
| 11dec0 | 72 65 20 65 6e 74 65 72 65 64 20 69 6e 74 6f 20 74 68 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 | re.entered.into.the.VXLAN.device |
| 11dee0 | 20 66 6f 72 77 61 72 64 69 6e 67 20 64 61 74 61 62 61 73 65 2e 00 53 70 65 63 69 66 69 65 73 20 | .forwarding.database..Specifies. |
| 11df00 | 6e 75 6d 62 65 72 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 63 61 63 68 65 2e 20 54 | number.of.interfaces.to.cache..T |
| 11df20 | 68 69 73 20 70 72 65 76 65 6e 74 73 20 69 6e 74 65 72 66 61 63 65 73 20 66 72 6f 6d 20 62 65 69 | his.prevents.interfaces.from.bei |
| 11df40 | 6e 67 20 72 65 6d 6f 76 65 64 20 6f 6e 63 65 20 74 68 65 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e | ng.removed.once.the.correspondin |
| 11df60 | 67 20 73 65 73 73 69 6f 6e 20 69 73 20 64 65 73 74 72 6f 79 65 64 2e 20 49 6e 73 74 65 61 64 2c | g.session.is.destroyed..Instead, |
| 11df80 | 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 63 61 63 68 65 64 20 66 6f 72 20 6c 61 74 65 72 | .interfaces.are.cached.for.later |
| 11dfa0 | 20 75 73 65 20 69 6e 20 6e 65 77 20 73 65 73 73 69 6f 6e 73 2e 20 54 68 69 73 20 73 68 6f 75 6c | .use.in.new.sessions..This.shoul |
| 11dfc0 | 64 20 72 65 64 75 63 65 20 74 68 65 20 6b 65 72 6e 65 6c 2d 6c 65 76 65 6c 20 69 6e 74 65 72 66 | d.reduce.the.kernel-level.interf |
| 11dfe0 | 61 63 65 20 63 72 65 61 74 69 6f 6e 2f 64 65 6c 65 74 69 6f 6e 20 72 61 74 65 2e 20 44 65 66 61 | ace.creation/deletion.rate..Defa |
| 11e000 | 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 6e 75 | ult.value.is.**0**..Specifies.nu |
| 11e020 | 6d 62 65 72 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 63 61 | mber.of.interfaces.to.keep.in.ca |
| 11e040 | 63 68 65 2e 20 49 74 20 6d 65 61 6e 73 20 74 68 61 74 20 64 6f 6e e2 80 99 74 20 64 65 73 74 72 | che..It.means.that.don...t.destr |
| 11e060 | 6f 79 20 69 6e 74 65 72 66 61 63 65 20 61 66 74 65 72 20 63 6f 72 72 65 73 70 6f 6e 64 69 6e 67 | oy.interface.after.corresponding |
| 11e080 | 20 73 65 73 73 69 6f 6e 20 69 73 20 64 65 73 74 72 6f 79 65 64 2c 20 69 6e 73 74 65 61 64 20 70 | .session.is.destroyed,.instead.p |
| 11e0a0 | 6c 61 63 65 20 69 74 20 74 6f 20 63 61 63 68 65 20 61 6e 64 20 75 73 65 20 69 74 20 6c 61 74 65 | lace.it.to.cache.and.use.it.late |
| 11e0c0 | 72 20 66 6f 72 20 6e 65 77 20 73 65 73 73 69 6f 6e 73 20 72 65 70 65 61 74 65 64 6c 79 2e 20 54 | r.for.new.sessions.repeatedly..T |
| 11e0e0 | 68 69 73 20 73 68 6f 75 6c 64 20 72 65 64 75 63 65 20 6b 65 72 6e 65 6c 2d 6c 65 76 65 6c 20 69 | his.should.reduce.kernel-level.i |
| 11e100 | 6e 74 65 72 66 61 63 65 20 63 72 65 61 74 69 6f 6e 2f 64 65 6c 65 74 69 6f 6e 20 72 61 74 65 20 | nterface.creation/deletion.rate. |
| 11e120 | 6c 61 63 6b 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 2a 2a 30 2a 2a 2e 00 53 70 | lack..Default.value.is.**0**..Sp |
| 11e140 | 65 63 69 66 69 65 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 70 6f 6c 69 63 | ecifies.one.of.the.bonding.polic |
| 11e160 | 69 65 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 38 30 32 2e 33 61 64 2e 20 50 6f 73 | ies..The.default.is.802.3ad..Pos |
| 11e180 | 73 69 62 6c 65 20 76 61 6c 75 65 73 20 61 72 65 3a 00 53 70 65 63 69 66 69 65 73 20 70 65 65 72 | sible.values.are:.Specifies.peer |
| 11e1a0 | 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 76 36 2e 20 | .interface.identifier.for.IPv6.. |
| 11e1c0 | 42 79 20 64 65 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 70 | By.default.is.fixed..Specifies.p |
| 11e1e0 | 72 6f 78 79 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 69 6e 67 20 61 64 64 72 65 73 73 2e 20 | roxy.service.listening.address.. |
| 11e200 | 54 68 65 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 69 73 20 74 68 65 20 49 50 20 61 64 64 | The.listen.address.is.the.IP.add |
| 11e220 | 72 65 73 73 20 6f 6e 20 77 68 69 63 68 20 74 68 65 20 77 65 62 20 70 72 6f 78 79 20 73 65 72 76 | ress.on.which.the.web.proxy.serv |
| 11e240 | 69 63 65 20 6c 69 73 74 65 6e 73 20 66 6f 72 20 63 6c 69 65 6e 74 20 72 65 71 75 65 73 74 73 2e | ice.listens.for.client.requests. |
| 11e260 | 00 53 70 65 63 69 66 69 65 73 20 72 65 6c 61 79 20 61 67 65 6e 74 20 49 50 20 61 64 64 72 65 00 | .Specifies.relay.agent.IP.addre. |
| 11e280 | 53 70 65 63 69 66 69 65 73 20 73 69 6e 67 6c 65 20 60 3c 67 61 74 65 77 61 79 3e 60 20 49 50 20 | Specifies.single.`<gateway>`.IP. |
| 11e2a0 | 61 64 64 72 65 73 73 20 74 6f 20 62 65 20 75 73 65 64 20 61 73 20 6c 6f 63 61 6c 20 61 64 64 72 | address.to.be.used.as.local.addr |
| 11e2c0 | 65 73 73 20 6f 66 20 50 50 50 20 69 6e 74 65 72 66 61 63 65 73 2e 00 53 70 65 63 69 66 69 65 73 | ess.of.PPP.interfaces..Specifies |
| 11e2e0 | 20 74 68 61 74 20 74 68 65 20 3a 61 62 62 72 3a 60 4e 42 4d 41 20 28 4e 6f 6e 2d 62 72 6f 61 64 | .that.the.:abbr:`NBMA.(Non-broad |
| 11e300 | 63 61 73 74 20 6d 75 6c 74 69 70 6c 65 2d 61 63 63 65 73 73 20 6e 65 74 77 6f 72 6b 29 60 20 61 | cast.multiple-access.network)`.a |
| 11e320 | 64 64 72 65 73 73 65 73 20 6f 66 20 74 68 65 20 6e 65 78 74 20 68 6f 70 20 73 65 72 76 65 72 73 | ddresses.of.the.next.hop.servers |
| 11e340 | 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 | .are.defined.in.the.domain.name. |
| 11e360 | 6e 62 6d 61 2d 64 6f 6d 61 69 6e 2d 6e 61 6d 65 2e 20 46 6f 72 20 65 61 63 68 20 41 20 72 65 63 | nbma-domain-name..For.each.A.rec |
| 11e380 | 6f 72 64 20 6f 70 65 6e 6e 68 72 70 20 63 72 65 61 74 65 73 20 61 20 64 79 6e 61 6d 69 63 20 4e | ord.opennhrp.creates.a.dynamic.N |
| 11e3a0 | 48 53 20 65 6e 74 72 79 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 41 52 50 20 6c 69 6e 6b | HS.entry..Specifies.the.ARP.link |
| 11e3c0 | 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 60 3c 74 69 6d 65 3e 60 20 69 6e 20 73 65 63 6f 6e 64 73 2e | .monitoring.`<time>`.in.seconds. |
| 11e3e0 | 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 75 | .Specifies.the.IP.addresses.to.u |
| 11e400 | 73 65 20 61 73 20 41 52 50 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 70 65 65 72 73 20 77 68 65 6e 20 | se.as.ARP.monitoring.peers.when. |
| 11e420 | 3a 63 66 67 63 6d 64 3a 60 61 72 70 2d 6d 6f 6e 69 74 6f 72 20 69 6e 74 65 72 76 61 6c 60 20 6f | :cfgcmd:`arp-monitor.interval`.o |
| 11e440 | 70 74 69 6f 6e 20 69 73 20 3e 20 30 2e 20 54 68 65 73 65 20 61 72 65 20 74 68 65 20 74 61 72 67 | ption.is.>.0..These.are.the.targ |
| 11e460 | 65 74 73 20 6f 66 20 74 68 65 20 41 52 50 20 72 65 71 75 65 73 74 20 73 65 6e 74 20 74 6f 20 64 | ets.of.the.ARP.request.sent.to.d |
| 11e480 | 65 74 65 72 6d 69 6e 65 20 74 68 65 20 68 65 61 6c 74 68 20 6f 66 20 74 68 65 20 6c 69 6e 6b 20 | etermine.the.health.of.the.link. |
| 11e4a0 | 74 6f 20 74 68 65 20 74 61 72 67 65 74 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 61 76 | to.the.targets..Specifies.the.av |
| 11e4c0 | 61 69 6c 61 62 6c 65 20 3a 61 62 62 72 3a 60 4d 41 43 20 28 4d 65 73 73 61 67 65 20 41 75 74 68 | ailable.:abbr:`MAC.(Message.Auth |
| 11e4e0 | 65 6e 74 69 63 61 74 69 6f 6e 20 43 6f 64 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 54 68 | entication.Code)`.algorithms..Th |
| 11e500 | 65 20 4d 41 43 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 75 73 65 64 20 69 6e 20 70 72 6f 74 6f | e.MAC.algorithm.is.used.in.proto |
| 11e520 | 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 20 66 6f 72 20 64 61 74 61 20 69 6e 74 65 67 72 69 74 79 | col.version.2.for.data.integrity |
| 11e540 | 20 70 72 6f 74 65 63 74 69 6f 6e 2e 20 4d 75 6c 74 69 70 6c 65 20 61 6c 67 6f 72 69 74 68 6d 73 | .protection..Multiple.algorithms |
| 11e560 | 20 63 61 6e 20 62 65 20 70 72 6f 76 69 64 65 64 20 62 79 20 75 73 69 6e 67 20 6d 75 6c 74 69 70 | .can.be.provided.by.using.multip |
| 11e580 | 6c 65 20 63 6f 6d 6d 61 6e 64 73 2c 20 64 65 66 69 6e 69 6e 67 20 6f 6e 65 20 61 6c 67 6f 72 69 | le.commands,.defining.one.algori |
| 11e5a0 | 74 68 6d 20 70 65 72 20 63 6f 6d 6d 61 6e 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 61 | thm.per.command..Specifies.the.a |
| 11e5c0 | 76 61 69 6c 61 62 6c 65 20 3a 61 62 62 72 3a 60 4d 41 43 20 28 4d 65 73 73 61 67 65 20 41 75 74 | vailable.:abbr:`MAC.(Message.Aut |
| 11e5e0 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 43 6f 64 65 29 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 20 54 | hentication.Code)`.algorithms..T |
| 11e600 | 68 65 20 4d 41 43 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 75 73 65 64 20 69 6e 20 70 72 6f 74 | he.MAC.algorithm.is.used.in.prot |
| 11e620 | 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 32 20 66 6f 72 20 64 61 74 61 20 69 6e 74 65 67 72 69 74 | ocol.version.2.for.data.integrit |
| 11e640 | 79 20 70 72 6f 74 65 63 74 69 6f 6e 2e 20 4d 75 6c 74 69 70 6c 65 20 61 6c 67 6f 72 69 74 68 6d | y.protection..Multiple.algorithm |
| 11e660 | 73 20 63 61 6e 20 62 65 20 70 72 6f 76 69 64 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 | s.can.be.provided..Specifies.the |
| 11e680 | 20 62 61 73 65 20 44 4e 20 75 6e 64 65 72 20 77 68 69 63 68 20 74 68 65 20 75 73 65 72 73 20 61 | .base.DN.under.which.the.users.a |
| 11e6a0 | 72 65 20 6c 6f 63 61 74 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 63 6c 69 65 6e 74 | re.located..Specifies.the.client |
| 11e6c0 | 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 6d 6f 64 65 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 | .connectivity.mode..Specifies.th |
| 11e6e0 | 65 20 63 6c 69 65 6e 74 73 20 73 75 62 6e 65 74 20 6d 61 73 6b 20 61 73 20 70 65 72 20 52 46 43 | e.clients.subnet.mask.as.per.RFC |
| 11e700 | 20 39 35 30 2e 20 49 66 20 75 6e 73 65 74 2c 20 73 75 62 6e 65 74 20 64 65 63 6c 61 72 61 74 69 | .950..If.unset,.subnet.declarati |
| 11e720 | 6f 6e 20 69 73 20 75 73 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 68 6f 6c 64 69 6e | on.is.used..Specifies.the.holdin |
| 11e740 | 67 20 74 69 6d 65 20 66 6f 72 20 4e 48 52 50 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 | g.time.for.NHRP.Registration.Req |
| 11e760 | 75 65 73 74 73 20 61 6e 64 20 52 65 73 6f 6c 75 74 69 6f 6e 20 52 65 70 6c 69 65 73 20 73 65 6e | uests.and.Resolution.Replies.sen |
| 11e780 | 74 20 66 72 6f 6d 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 73 68 6f 72 74 63 75 | t.from.this.interface.or.shortcu |
| 11e7a0 | 74 2d 74 61 72 67 65 74 2e 20 54 68 65 20 68 6f 6c 64 74 69 6d 65 20 69 73 20 73 70 65 63 69 66 | t-target..The.holdtime.is.specif |
| 11e7c0 | 69 65 64 20 69 6e 20 73 65 63 6f 6e 64 73 20 61 6e 64 20 64 65 66 61 75 6c 74 73 20 74 6f 20 74 | ied.in.seconds.and.defaults.to.t |
| 11e7e0 | 77 6f 20 68 6f 75 72 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 69 6e 74 65 72 76 61 6c | wo.hours..Specifies.the.interval |
| 11e800 | 20 61 74 20 77 68 69 63 68 20 4e 65 74 66 6c 6f 77 20 64 61 74 61 20 77 69 6c 6c 20 62 65 20 73 | .at.which.Netflow.data.will.be.s |
| 11e820 | 65 6e 74 20 74 6f 20 61 20 63 6f 6c 6c 65 63 74 6f 72 2e 20 41 73 20 70 65 72 20 64 65 66 61 75 | ent.to.a.collector..As.per.defau |
| 11e840 | 6c 74 2c 20 4e 65 74 66 6c 6f 77 20 64 61 74 61 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 65 76 | lt,.Netflow.data.will.be.sent.ev |
| 11e860 | 65 72 79 20 36 30 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 61 | ery.60.seconds..Specifies.the.ma |
| 11e880 | 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 20 61 20 72 65 70 6c 79 20 62 6f 64 79 20 69 6e 20 4b 42 | ximum.size.of.a.reply.body.in.KB |
| 11e8a0 | 2c 20 75 73 65 64 20 74 6f 20 6c 69 6d 69 74 20 74 68 65 20 72 65 70 6c 79 20 73 69 7a 65 2e 00 | ,.used.to.limit.the.reply.size.. |
| 11e8c0 | 53 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 | Specifies.the.minimum.number.of. |
| 11e8e0 | 6c 69 6e 6b 73 20 74 68 61 74 20 6d 75 73 74 20 62 65 20 61 63 74 69 76 65 20 62 65 66 6f 72 65 | links.that.must.be.active.before |
| 11e900 | 20 61 73 73 65 72 74 69 6e 67 20 63 61 72 72 69 65 72 2e 20 49 74 20 69 73 20 73 69 6d 69 6c 61 | .asserting.carrier..It.is.simila |
| 11e920 | 72 20 74 6f 20 74 68 65 20 43 69 73 63 6f 20 45 74 68 65 72 43 68 61 6e 6e 65 6c 20 6d 69 6e 2d | r.to.the.Cisco.EtherChannel.min- |
| 11e940 | 6c 69 6e 6b 73 20 66 65 61 74 75 72 65 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 73 65 74 74 69 | links.feature..This.allows.setti |
| 11e960 | 6e 67 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 6d 65 6d 62 65 72 20 | ng.the.minimum.number.of.member. |
| 11e980 | 70 6f 72 74 73 20 74 68 61 74 20 6d 75 73 74 20 62 65 20 75 70 20 28 6c 69 6e 6b 2d 75 70 20 73 | ports.that.must.be.up.(link-up.s |
| 11e9a0 | 74 61 74 65 29 20 62 65 66 6f 72 65 20 6d 61 72 6b 69 6e 67 20 74 68 65 20 62 6f 6e 64 20 64 65 | tate).before.marking.the.bond.de |
| 11e9c0 | 76 69 63 65 20 61 73 20 75 70 20 28 63 61 72 72 69 65 72 20 6f 6e 29 2e 20 54 68 69 73 20 69 73 | vice.as.up.(carrier.on)..This.is |
| 11e9e0 | 20 75 73 65 66 75 6c 20 66 6f 72 20 73 69 74 75 61 74 69 6f 6e 73 20 77 68 65 72 65 20 68 69 67 | .useful.for.situations.where.hig |
| 11ea00 | 68 65 72 20 6c 65 76 65 6c 20 73 65 72 76 69 63 65 73 20 73 75 63 68 20 61 73 20 63 6c 75 73 74 | her.level.services.such.as.clust |
| 11ea20 | 65 72 69 6e 67 20 77 61 6e 74 20 74 6f 20 65 6e 73 75 72 65 20 61 20 6d 69 6e 69 6d 75 6d 20 6e | ering.want.to.ensure.a.minimum.n |
| 11ea40 | 75 6d 62 65 72 20 6f 66 20 6c 6f 77 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6e 6b 73 20 61 72 65 | umber.of.low.bandwidth.links.are |
| 11ea60 | 20 61 63 74 69 76 65 20 62 65 66 6f 72 65 20 73 77 69 74 63 68 6f 76 65 72 2e 00 53 70 65 63 69 | .active.before.switchover..Speci |
| 11ea80 | 66 69 65 73 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 44 4e 20 61 74 74 72 69 62 75 74 | fies.the.name.of.the.DN.attribut |
| 11eaa0 | 65 20 74 68 61 74 20 63 6f 6e 74 61 69 6e 73 20 74 68 65 20 75 73 65 72 6e 61 6d 65 2f 6c 6f 67 | e.that.contains.the.username/log |
| 11eac0 | 69 6e 2e 20 43 6f 6d 62 69 6e 65 64 20 77 69 74 68 20 74 68 65 20 62 61 73 65 20 44 4e 20 74 6f | in..Combined.with.the.base.DN.to |
| 11eae0 | 20 63 6f 6e 73 74 72 75 63 74 20 74 68 65 20 75 73 65 72 73 20 44 4e 20 77 68 65 6e 20 6e 6f 20 | .construct.the.users.DN.when.no. |
| 11eb00 | 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 69 73 20 73 70 65 63 69 66 69 65 64 20 28 60 66 69 6c | search.filter.is.specified.(`fil |
| 11eb20 | 74 65 72 2d 65 78 70 72 65 73 73 69 6f 6e 60 29 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 | ter-expression`)..Specifies.the. |
| 11eb40 | 70 65 65 72 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 72 20 66 6f 72 20 49 50 | peer.interface.identifier.for.IP |
| 11eb60 | 76 36 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 66 69 78 65 64 2e 00 53 70 65 63 69 66 | v6..The.default.is.fixed..Specif |
| 11eb80 | 69 65 73 20 74 68 65 20 70 68 79 73 69 63 61 6c 20 60 3c 65 74 68 58 3e 60 20 45 74 68 65 72 6e | ies.the.physical.`<ethX>`.Ethern |
| 11eba0 | 65 74 20 69 6e 74 65 72 66 61 63 65 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 61 20 50 | et.interface.associated.with.a.P |
| 11ebc0 | 73 65 75 64 6f 20 45 74 68 65 72 6e 65 74 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 53 70 | seudo.Ethernet.`<interface>`..Sp |
| 11ebe0 | 65 63 69 66 69 65 73 20 74 68 65 20 70 6f 72 74 20 60 3c 70 6f 72 74 3e 60 20 74 68 61 74 20 74 | ecifies.the.port.`<port>`.that.t |
| 11ec00 | 68 65 20 53 53 54 50 20 70 6f 72 74 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e 20 28 64 65 66 | he.SSTP.port.will.listen.on.(def |
| 11ec20 | 61 75 6c 74 20 34 34 33 29 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 70 72 6f 74 65 63 74 | ault.443)..Specifies.the.protect |
| 11ec40 | 69 6f 6e 20 73 63 6f 70 65 20 28 61 6b 61 20 72 65 61 6c 6d 20 6e 61 6d 65 29 20 77 68 69 63 68 | ion.scope.(aka.realm.name).which |
| 11ec60 | 20 69 73 20 74 6f 20 62 65 20 72 65 70 6f 72 74 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 | .is.to.be.reported.to.the.client |
| 11ec80 | 20 66 6f 72 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 73 63 68 65 6d 65 2e 20 | .for.the.authentication.scheme.. |
| 11eca0 | 49 74 20 69 73 20 63 6f 6d 6d 6f 6e 6c 79 20 70 61 72 74 20 6f 66 20 74 68 65 20 74 65 78 74 20 | It.is.commonly.part.of.the.text. |
| 11ecc0 | 74 68 65 20 75 73 65 72 20 77 69 6c 6c 20 73 65 65 20 77 68 65 6e 20 70 72 6f 6d 70 74 65 64 20 | the.user.will.see.when.prompted. |
| 11ece0 | 66 6f 72 20 74 68 65 69 72 20 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 70 61 73 73 77 6f 72 64 2e | for.their.username.and.password. |
| 11ed00 | 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 20 64 69 73 74 69 6e 67 75 69 73 68 | .Specifies.the.route.distinguish |
| 11ed20 | 65 72 20 74 6f 20 62 65 20 61 64 64 65 64 20 74 6f 20 61 20 72 6f 75 74 65 20 65 78 70 6f 72 74 | er.to.be.added.to.a.route.export |
| 11ed40 | 65 64 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 | ed.from.the.current.unicast.VRF. |
| 11ed60 | 74 6f 20 56 50 4e 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 2d 74 61 72 67 | to.VPN..Specifies.the.route-targ |
| 11ed80 | 65 74 20 6c 69 73 74 20 74 6f 20 62 65 20 61 74 74 61 63 68 65 64 20 74 6f 20 61 20 72 6f 75 74 | et.list.to.be.attached.to.a.rout |
| 11eda0 | 65 20 28 65 78 70 6f 72 74 29 20 6f 72 20 74 68 65 20 72 6f 75 74 65 2d 74 61 72 67 65 74 20 6c | e.(export).or.the.route-target.l |
| 11edc0 | 69 73 74 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 28 69 6d 70 6f 72 74 29 20 77 68 | ist.to.match.against.(import).wh |
| 11ede0 | 65 6e 20 65 78 70 6f 72 74 69 6e 67 2f 69 6d 70 6f 72 74 69 6e 67 20 62 65 74 77 65 65 6e 20 74 | en.exporting/importing.between.t |
| 11ee00 | 68 65 20 63 75 72 72 65 6e 74 20 75 6e 69 63 61 73 74 20 56 52 46 20 61 6e 64 20 56 50 4e 2e 54 | he.current.unicast.VRF.and.VPN.T |
| 11ee20 | 68 65 20 52 54 4c 49 53 54 20 69 73 20 61 20 73 70 61 63 65 2d 73 65 70 61 72 61 74 65 64 20 6c | he.RTLIST.is.a.space-separated.l |
| 11ee40 | 69 73 74 20 6f 66 20 72 6f 75 74 65 2d 74 61 72 67 65 74 73 2c 20 77 68 69 63 68 20 61 72 65 20 | ist.of.route-targets,.which.are. |
| 11ee60 | 42 47 50 20 65 78 74 65 6e 64 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 76 61 6c 75 65 73 20 61 73 | BGP.extended.community.values.as |
| 11ee80 | 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 45 78 74 65 6e 64 65 64 20 43 6f 6d 6d 75 6e 69 74 69 | .described.in.Extended.Communiti |
| 11eea0 | 65 73 20 41 74 74 72 69 62 75 74 65 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 73 69 67 6e | es.Attribute..Specifies.the.sign |
| 11eec0 | 61 74 75 72 65 20 61 6c 67 6f 72 69 74 68 6d 73 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 63 | ature.algorithms.that.will.be.ac |
| 11eee0 | 63 65 70 74 65 64 20 66 6f 72 20 70 75 62 6c 69 63 20 6b 65 79 20 61 75 74 68 65 6e 74 69 63 61 | cepted.for.public.key.authentica |
| 11ef00 | 74 69 6f 6e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f | tion.Specifies.the.vendor.dictio |
| 11ef20 | 6e 61 72 79 2c 20 54 68 69 73 20 64 69 63 74 69 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 | nary,.This.dictionary.needs.to.b |
| 11ef40 | 65 20 70 72 65 73 65 6e 74 20 69 6e 20 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 | e.present.in./usr/share/accel-pp |
| 11ef60 | 70 2f 72 61 64 69 75 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 76 65 6e 64 6f 72 20 64 | p/radius..Specifies.the.vendor.d |
| 11ef80 | 69 63 74 69 6f 6e 61 72 79 2c 20 64 69 63 74 69 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 | ictionary,.dictionary.needs.to.b |
| 11efa0 | 65 20 69 6e 20 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 | e.in./usr/share/accel-ppp/radius |
| 11efc0 | 2e 00 53 70 65 63 69 66 69 65 73 20 74 68 65 20 76 65 6e 64 6f 72 20 64 69 63 74 69 6f 6e 61 72 | ..Specifies.the.vendor.dictionar |
| 11efe0 | 79 2e 20 54 68 69 73 20 64 69 63 74 69 6f 6e 61 72 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 | y..This.dictionary.needs.to.be.p |
| 11f000 | 72 65 73 65 6e 74 20 69 6e 20 2f 75 73 72 2f 73 68 61 72 65 2f 61 63 63 65 6c 2d 70 70 70 2f 72 | resent.in./usr/share/accel-ppp/r |
| 11f020 | 61 64 69 75 73 2e 00 53 70 65 63 69 66 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f | adius..Specifies.timeout.in.seco |
| 11f040 | 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 74 | nds.to.wait.for.any.peer.activit |
| 11f060 | 79 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 73 70 65 63 69 66 69 65 64 20 69 | y..If.this.option.is.specified.i |
| 11f080 | 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 61 70 74 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e | t.turns.on.adaptive.lcp.echo.fun |
| 11f0a0 | 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e 64 20 22 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 | ctionality.and."lcp-echo-failure |
| 11f0c0 | 22 20 69 73 20 6e 6f 74 20 75 73 65 64 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 | ".is.not.used..Default.value.is. |
| 11f0e0 | 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f | **0**..Specifies.timeout.in.seco |
| 11f100 | 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 74 69 76 69 74 | nds.to.wait.for.any.peer.activit |
| 11f120 | 79 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 73 70 65 63 69 66 69 65 64 20 69 74 20 74 | y..If.this.option.specified.it.t |
| 11f140 | 75 72 6e 73 20 6f 6e 20 61 64 61 70 74 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 75 6e 63 74 69 | urns.on.adaptive.lcp.echo.functi |
| 11f160 | 6f 6e 61 6c 69 74 79 20 61 6e 64 20 22 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 72 65 22 20 69 | onality.and."lcp-echo-failure".i |
| 11f180 | 73 20 6e 6f 74 20 75 73 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 74 69 6d 65 6f 75 74 20 69 6e | s.not.used..Specifies.timeout.in |
| 11f1a0 | 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 6e 79 20 70 65 65 72 20 61 63 | .seconds.to.wait.for.any.peer.ac |
| 11f1c0 | 74 69 76 69 74 79 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 73 70 65 63 69 66 69 65 64 | tivity..If.this.option.specified |
| 11f1e0 | 20 69 74 20 74 75 72 6e 73 20 6f 6e 20 61 64 61 70 74 69 76 65 20 6c 63 70 20 65 63 68 6f 20 66 | .it.turns.on.adaptive.lcp.echo.f |
| 11f200 | 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 6e 64 20 22 6c 63 70 2d 65 63 68 6f 2d 66 61 69 6c 75 | unctionality.and."lcp-echo-failu |
| 11f220 | 72 65 22 20 69 73 20 6e 6f 74 20 75 73 65 64 2e 20 44 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 | re".is.not.used..Default.value.i |
| 11f240 | 73 20 2a 2a 30 2a 2a 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 20 61 6e 20 65 78 | s.**0**..Specifies.whether.an.ex |
| 11f260 | 74 65 72 6e 61 6c 20 63 6f 6e 74 72 6f 6c 20 70 6c 61 6e 65 20 28 65 2e 67 2e 20 42 47 50 20 4c | ternal.control.plane.(e.g..BGP.L |
| 11f280 | 32 56 50 4e 2f 45 56 50 4e 29 20 6f 72 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 46 44 42 20 73 | 2VPN/EVPN).or.the.internal.FDB.s |
| 11f2a0 | 68 6f 75 6c 64 20 62 65 20 75 73 65 64 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 | hould.be.used..Specifies.whether |
| 11f2c0 | 20 74 68 65 20 56 58 4c 41 4e 20 64 65 76 69 63 65 20 69 73 20 63 61 70 61 62 6c 65 20 6f 66 20 | .the.VXLAN.device.is.capable.of. |
| 11f2e0 | 76 6e 69 20 66 69 6c 74 65 72 69 6e 67 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 65 74 68 65 72 | vni.filtering..Specifies.whether |
| 11f300 | 20 74 68 69 73 20 4e 53 53 41 20 62 6f 72 64 65 72 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 75 6e | .this.NSSA.border.router.will.un |
| 11f320 | 63 6f 6e 64 69 74 69 6f 6e 61 6c 6c 79 20 74 72 61 6e 73 6c 61 74 65 20 54 79 70 65 2d 37 20 4c | conditionally.translate.Type-7.L |
| 11f340 | 53 41 73 20 69 6e 74 6f 20 54 79 70 65 2d 35 20 4c 53 41 73 2e 20 57 68 65 6e 20 72 6f 6c 65 20 | SAs.into.Type-5.LSAs..When.role. |
| 11f360 | 69 73 20 41 6c 77 61 79 73 2c 20 54 79 70 65 2d 37 20 4c 53 41 73 20 61 72 65 20 74 72 61 6e 73 | is.Always,.Type-7.LSAs.are.trans |
| 11f380 | 6c 61 74 65 64 20 69 6e 74 6f 20 54 79 70 65 2d 35 20 4c 53 41 73 20 72 65 67 61 72 64 6c 65 73 | lated.into.Type-5.LSAs.regardles |
| 11f3a0 | 73 20 6f 66 20 74 68 65 20 74 72 61 6e 73 6c 61 74 6f 72 20 73 74 61 74 65 20 6f 66 20 6f 74 68 | s.of.the.translator.state.of.oth |
| 11f3c0 | 65 72 20 4e 53 53 41 20 62 6f 72 64 65 72 20 72 6f 75 74 65 72 73 2e 20 57 68 65 6e 20 72 6f 6c | er.NSSA.border.routers..When.rol |
| 11f3e0 | 65 20 69 73 20 43 61 6e 64 69 64 61 74 65 2c 20 74 68 69 73 20 72 6f 75 74 65 72 20 70 61 72 74 | e.is.Candidate,.this.router.part |
| 11f400 | 69 63 69 70 61 74 65 73 20 69 6e 20 74 68 65 20 74 72 61 6e 73 6c 61 74 6f 72 20 65 6c 65 63 74 | icipates.in.the.translator.elect |
| 11f420 | 69 6f 6e 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 69 66 20 69 74 20 77 69 6c 6c 20 70 65 72 66 | ion.to.determine.if.it.will.perf |
| 11f440 | 6f 72 6d 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 64 75 74 69 65 73 2e 20 57 68 65 | orm.the.translations.duties..Whe |
| 11f460 | 6e 20 72 6f 6c 65 20 69 73 20 4e 65 76 65 72 2c 20 74 68 69 73 20 72 6f 75 74 65 72 20 77 69 6c | n.role.is.Never,.this.router.wil |
| 11f480 | 6c 20 6e 65 76 65 72 20 74 72 61 6e 73 6c 61 74 65 20 54 79 70 65 2d 37 20 4c 53 41 73 20 69 6e | l.never.translate.Type-7.LSAs.in |
| 11f4a0 | 74 6f 20 54 79 70 65 2d 35 20 4c 53 41 73 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 69 63 68 20 | to.Type-5.LSAs..Specifies.which. |
| 11f4c0 | 52 41 44 49 55 53 20 73 65 72 76 65 72 20 61 74 74 72 69 62 75 74 65 20 63 6f 6e 74 61 69 6e 73 | RADIUS.server.attribute.contains |
| 11f4e0 | 20 74 68 65 20 72 61 74 65 20 6c 69 6d 69 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 65 | .the.rate.limit.information..The |
| 11f500 | 20 64 65 66 61 75 6c 74 20 61 74 74 72 69 62 75 74 65 20 69 73 20 60 46 69 6c 74 65 72 2d 49 64 | .default.attribute.is.`Filter-Id |
| 11f520 | 60 2e 00 53 70 65 63 69 66 69 65 73 20 77 68 69 63 68 20 52 41 44 49 55 53 20 73 65 72 76 65 72 | `..Specifies.which.RADIUS.server |
| 11f540 | 20 61 74 74 72 69 62 75 74 65 20 63 6f 6e 74 61 69 6e 73 20 74 68 65 20 72 61 74 65 20 6c 69 6d | .attribute.contains.the.rate.lim |
| 11f560 | 69 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 61 74 74 72 | it.information..The.default.attr |
| 11f580 | 69 62 75 74 65 20 69 73 20 60 60 46 69 6c 74 65 72 2d 49 64 60 60 2e 00 53 70 65 63 69 66 79 20 | ibute.is.``Filter-Id``..Specify. |
| 11f5a0 | 44 48 43 50 76 34 20 72 65 6c 61 79 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 20 70 61 73 73 20 | DHCPv4.relay.IP.address.to.pass. |
| 11f5c0 | 72 65 71 75 65 73 74 73 20 74 6f 2e 20 49 66 20 73 70 65 63 69 66 69 65 64 20 67 69 61 64 64 72 | requests.to..If.specified.giaddr |
| 11f5e0 | 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 53 70 65 63 69 66 79 20 49 50 76 34 20 61 6e | .is.also.needed..Specify.IPv4.an |
| 11f600 | 64 2f 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 | d/or.IPv6.networks.that.should.b |
| 11f620 | 65 20 70 72 6f 74 65 63 74 65 64 2f 6d 6f 6e 69 74 6f 72 65 64 2e 00 53 70 65 63 69 66 79 20 49 | e.protected/monitored..Specify.I |
| 11f640 | 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 6e 65 74 77 6f 72 6b 73 20 77 68 69 63 68 20 61 | Pv4.and/or.IPv6.networks.which.a |
| 11f660 | 72 65 20 67 6f 69 6e 67 20 74 6f 20 62 65 20 65 78 63 6c 75 64 65 64 2e 00 53 70 65 63 69 66 79 | re.going.to.be.excluded..Specify |
| 11f680 | 20 49 50 76 34 2f 49 50 76 36 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 6f 66 20 53 53 48 | .IPv4/IPv6.listen.address.of.SSH |
| 11f6a0 | 20 73 65 72 76 65 72 2e 20 4d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 | .server..Multiple.addresses.can. |
| 11f6c0 | 62 65 20 64 65 66 69 6e 65 64 2e 00 53 70 65 63 69 66 79 20 61 20 3a 61 62 62 72 3a 60 53 49 50 | be.defined..Specify.a.:abbr:`SIP |
| 11f6e0 | 20 28 53 65 73 73 69 6f 6e 20 49 6e 69 74 69 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 29 60 20 | .(Session.Initiation.Protocol)`. |
| 11f700 | 73 65 72 76 65 72 20 62 79 20 49 50 76 36 20 61 64 64 72 65 73 73 20 6f 66 20 46 75 6c 6c 79 20 | server.by.IPv6.address.of.Fully. |
| 11f720 | 51 75 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 20 66 6f 72 20 61 6c 6c 20 44 48 | Qualified.Domain.Name.for.all.DH |
| 11f740 | 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 79 20 61 20 46 75 6c 6c 79 20 51 75 | CPv6.clients..Specify.a.Fully.Qu |
| 11f760 | 61 6c 69 66 69 65 64 20 44 6f 6d 61 69 6e 20 4e 61 6d 65 20 61 73 20 73 6f 75 72 63 65 2f 64 65 | alified.Domain.Name.as.source/de |
| 11f780 | 73 74 69 6e 61 74 69 6f 6e 20 6d 61 74 63 68 65 72 2e 20 45 6e 73 75 72 65 20 72 6f 75 74 65 72 | stination.matcher..Ensure.router |
| 11f7a0 | 20 69 73 20 61 62 6c 65 20 74 6f 20 72 65 73 6f 6c 76 65 20 73 75 63 68 20 64 6e 73 20 71 75 65 | .is.able.to.resolve.such.dns.que |
| 11f7c0 | 72 79 2e 00 53 70 65 63 69 66 79 20 61 20 46 75 6c 6c 79 20 51 75 61 6c 69 66 69 65 64 20 44 6f | ry..Specify.a.Fully.Qualified.Do |
| 11f7e0 | 6d 61 69 6e 20 4e 61 6d 65 20 61 73 20 73 6f 75 72 63 65 2f 64 65 73 74 69 6e 61 74 69 6f 6e 20 | main.Name.as.source/destination. |
| 11f800 | 74 6f 20 6d 61 74 63 68 2e 20 45 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 72 | to.match..Ensure.that.the.router |
| 11f820 | 20 69 73 20 61 62 6c 65 20 74 6f 20 72 65 73 6f 6c 76 65 20 74 68 69 73 20 64 6e 73 20 71 75 65 | .is.able.to.resolve.this.dns.que |
| 11f840 | 72 79 2e 00 53 70 65 63 69 66 79 20 61 20 4e 49 53 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 | ry..Specify.a.NIS.server.address |
| 11f860 | 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c 69 65 6e 74 73 2e 00 53 70 65 63 69 66 79 20 61 20 4e | .for.DHCPv6.clients..Specify.a.N |
| 11f880 | 49 53 2b 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 20 66 6f 72 20 44 48 43 50 76 36 20 63 6c | IS+.server.address.for.DHCPv6.cl |
| 11f8a0 | 69 65 6e 74 73 2e 00 53 70 65 63 69 66 79 20 61 20 72 61 6e 67 65 20 6f 66 20 67 72 6f 75 70 20 | ients..Specify.a.range.of.group. |
| 11f8c0 | 61 64 64 72 65 73 73 65 73 20 76 69 61 20 61 20 70 72 65 66 69 78 2d 6c 69 73 74 20 74 68 61 74 | addresses.via.a.prefix-list.that |
| 11f8e0 | 20 66 6f 72 63 65 73 20 50 49 4d 20 74 6f 20 6e 65 76 65 72 20 64 6f 20 3a 61 62 62 72 3a 60 53 | .forces.PIM.to.never.do.:abbr:`S |
| 11f900 | 53 4d 20 28 53 6f 75 72 63 65 2d 53 70 65 63 69 66 69 63 20 4d 75 6c 74 69 63 61 73 74 29 60 20 | SM.(Source-Specific.Multicast)`. |
| 11f920 | 6f 76 65 72 2e 00 53 70 65 63 69 66 79 20 61 62 73 6f 6c 75 74 65 20 60 3c 70 61 74 68 3e 60 20 | over..Specify.absolute.`<path>`. |
| 11f940 | 74 6f 20 73 63 72 69 70 74 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 72 75 6e 20 77 68 65 6e | to.script.which.will.be.run.when |
| 11f960 | 20 60 3c 74 61 73 6b 3e 60 20 69 73 20 65 78 65 63 75 74 65 64 2e 00 53 70 65 63 69 66 79 20 61 | .`<task>`.is.executed..Specify.a |
| 11f980 | 6c 6c 6f 77 65 64 20 3a 61 62 62 72 3a 60 4b 45 58 20 28 4b 65 79 20 45 78 63 68 61 6e 67 65 29 | llowed.:abbr:`KEX.(Key.Exchange) |
| 11f9a0 | 60 20 61 6c 67 6f 72 69 74 68 6d 73 2e 00 53 70 65 63 69 66 79 20 61 6e 20 61 6c 74 65 72 6e 61 | `.algorithms..Specify.an.alterna |
| 11f9c0 | 74 65 20 41 53 20 66 6f 72 20 74 68 69 73 20 42 47 50 20 70 72 6f 63 65 73 73 20 77 68 65 6e 20 | te.AS.for.this.BGP.process.when. |
| 11f9e0 | 69 6e 74 65 72 61 63 74 69 6e 67 20 77 69 74 68 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 | interacting.with.the.specified.p |
| 11fa00 | 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f 75 70 2e 20 57 69 74 68 20 6e 6f 20 6d 6f 64 69 66 | eer.or.peer.group..With.no.modif |
| 11fa20 | 69 65 72 73 2c 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 2d 61 73 20 69 73 20 | iers,.the.specified.local-as.is. |
| 11fa40 | 70 72 65 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 72 65 63 65 69 76 65 64 20 41 53 5f 50 41 54 | prepended.to.the.received.AS_PAT |
| 11fa60 | 48 20 77 68 65 6e 20 72 65 63 65 69 76 69 6e 67 20 72 6f 75 74 69 6e 67 20 75 70 64 61 74 65 73 | H.when.receiving.routing.updates |
| 11fa80 | 20 66 72 6f 6d 20 74 68 65 20 70 65 65 72 2c 20 61 6e 64 20 70 72 65 70 65 6e 64 65 64 20 74 6f | .from.the.peer,.and.prepended.to |
| 11faa0 | 20 74 68 65 20 6f 75 74 67 6f 69 6e 67 20 41 53 5f 50 41 54 48 20 28 61 66 74 65 72 20 74 68 65 | .the.outgoing.AS_PATH.(after.the |
| 11fac0 | 20 70 72 6f 63 65 73 73 20 6c 6f 63 61 6c 20 41 53 29 20 77 68 65 6e 20 74 72 61 6e 73 6d 69 74 | .process.local.AS).when.transmit |
| 11fae0 | 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 73 20 74 6f 20 74 68 65 20 70 65 65 72 2e 00 53 | ting.local.routes.to.the.peer..S |
| 11fb00 | 70 65 63 69 66 79 20 61 6e 20 61 6c 74 65 72 6e 61 74 65 20 54 43 50 20 70 6f 72 74 20 77 68 65 | pecify.an.alternate.TCP.port.whe |
| 11fb20 | 72 65 20 74 68 65 20 6c 64 61 70 20 73 65 72 76 65 72 20 69 73 20 6c 69 73 74 65 6e 69 6e 67 20 | re.the.ldap.server.is.listening. |
| 11fb40 | 69 66 20 6f 74 68 65 72 20 74 68 61 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 4c 44 41 50 20 70 | if.other.than.the.default.LDAP.p |
| 11fb60 | 6f 72 74 20 33 38 39 2e 00 53 70 65 63 69 66 79 20 66 61 63 69 6c 69 74 79 20 61 6e 64 20 6c 65 | ort.389..Specify.facility.and.le |
| 11fb80 | 76 65 6c 20 66 6f 72 20 6c 6f 67 67 69 6e 67 2e 20 46 6f 72 20 61 6e 20 65 78 70 6c 61 6e 61 74 | vel.for.logging..For.an.explanat |
| 11fba0 | 69 6f 6e 20 6f 6e 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 66 61 63 69 6c 69 74 69 65 73 60 20 | ion.on.:ref:`syslog_facilities`. |
| 11fbc0 | 61 6e 64 20 3a 72 65 66 3a 60 73 79 73 6c 6f 67 5f 73 65 76 65 72 69 74 79 5f 6c 65 76 65 6c 60 | and.:ref:`syslog_severity_level` |
| 11fbe0 | 20 73 65 65 20 74 61 62 6c 65 73 20 69 6e 20 73 79 73 6c 6f 67 20 63 6f 6e 66 69 67 75 72 61 74 | .see.tables.in.syslog.configurat |
| 11fc00 | 69 6f 6e 20 73 65 63 74 69 6f 6e 2e 00 53 70 65 63 69 66 79 20 69 6e 74 65 72 76 61 6c 20 69 6e | ion.section..Specify.interval.in |
| 11fc20 | 20 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 62 65 74 77 65 65 6e 20 44 79 6e 61 6d 69 63 | .seconds.to.wait.between.Dynamic |
| 11fc40 | 20 44 4e 53 20 75 70 64 61 74 65 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 20 33 30 | .DNS.updates..The.default.is..30 |
| 11fc60 | 30 20 73 65 63 6f 6e 64 73 2e 00 53 70 65 63 69 66 79 20 6c 6f 63 61 6c 20 72 61 6e 67 65 20 6f | 0.seconds..Specify.local.range.o |
| 11fc80 | 66 20 69 70 20 61 64 64 72 65 73 73 20 74 6f 20 67 69 76 65 20 74 6f 20 64 68 63 70 20 63 6c 69 | f.ip.address.to.give.to.dhcp.cli |
| 11fca0 | 65 6e 74 73 2e 20 46 69 72 73 74 20 49 50 20 69 6e 20 72 61 6e 67 65 20 69 73 20 72 6f 75 74 65 | ents..First.IP.in.range.is.route |
| 11fcc0 | 72 20 49 50 2e 20 49 66 20 79 6f 75 20 6e 65 65 64 20 6d 6f 72 65 20 63 75 73 74 6f 6d 69 7a 61 | r.IP..If.you.need.more.customiza |
| 11fce0 | 74 69 6f 6e 20 75 73 65 20 60 63 6c 69 65 6e 74 2d 69 70 2d 70 6f 6f 6c 60 00 53 70 65 63 69 66 | tion.use.`client-ip-pool`.Specif |
| 11fd00 | 79 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 3a 61 62 62 72 3a 60 56 52 46 20 28 56 69 72 74 75 61 | y.name.of.the.:abbr:`VRF.(Virtua |
| 11fd20 | 6c 20 52 6f 75 74 69 6e 67 20 61 6e 64 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 69 6e 73 74 61 | l.Routing.and.Forwarding)`.insta |
| 11fd40 | 6e 63 65 2e 00 53 70 65 63 69 66 79 20 6e 65 78 74 68 6f 70 20 6f 6e 20 74 68 65 20 70 61 74 68 | nce..Specify.nexthop.on.the.path |
| 11fd60 | 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 2c 20 60 60 69 70 76 34 2d 61 64 64 72 | .to.the.destination,.``ipv4-addr |
| 11fd80 | 65 73 73 60 60 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 60 60 64 68 63 70 60 60 00 53 70 65 | ess``.can.be.set.to.``dhcp``.Spe |
| 11fda0 | 63 69 66 79 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 69 6e 74 6f 20 74 68 65 20 72 6f 75 74 69 | cify.static.route.into.the.routi |
| 11fdc0 | 6e 67 20 74 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 61 6c 6c 20 6e 6f 6e 20 6c 6f 63 61 6c 20 74 | ng.table.sending.all.non.local.t |
| 11fde0 | 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 6e 65 78 74 68 6f 70 20 61 64 64 72 65 73 73 20 60 3c | raffic.to.the.nexthop.address.`< |
| 11fe00 | 61 64 64 72 65 73 73 3e 60 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 49 50 20 60 3c 61 64 64 72 | address>`..Specify.the.IP.`<addr |
| 11fe20 | 65 73 73 3e 60 20 6f 66 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 75 73 65 72 20 | ess>`.of.the.RADIUS.server.user. |
| 11fe40 | 77 69 74 68 20 74 68 65 20 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 67 69 76 65 6e | with.the.pre-shared-secret.given |
| 11fe60 | 20 69 6e 20 60 3c 73 65 63 72 65 74 3e 60 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 49 50 20 60 | .in.`<secret>`..Specify.the.IP.` |
| 11fe80 | 3c 61 64 64 72 65 73 73 3e 60 20 6f 66 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 72 20 | <address>`.of.the.TACACS.server. |
| 11fea0 | 75 73 65 72 20 77 69 74 68 20 74 68 65 20 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 | user.with.the.pre-shared-secret. |
| 11fec0 | 67 69 76 65 6e 20 69 6e 20 60 3c 73 65 63 72 65 74 3e 60 2e 00 53 70 65 63 69 66 79 20 74 68 65 | given.in.`<secret>`..Specify.the |
| 11fee0 | 20 49 50 76 34 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 74 6f 20 75 73 65 20 66 6f 72 20 | .IPv4.source.address.to.use.for. |
| 11ff00 | 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 74 68 69 73 20 6e 65 69 67 68 62 6f 72 | the.BGP.session.to.this.neighbor |
| 11ff20 | 2c 20 6d 61 79 20 62 65 20 73 70 65 63 69 66 69 65 64 20 61 73 20 65 69 74 68 65 72 20 61 6e 20 | ,.may.be.specified.as.either.an. |
| 11ff40 | 49 50 76 34 20 61 64 64 72 65 73 73 20 64 69 72 65 63 74 6c 79 20 6f 72 20 61 73 20 61 6e 20 69 | IPv4.address.directly.or.as.an.i |
| 11ff60 | 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 4c 44 41 50 20 | nterface.name..Specify.the.LDAP. |
| 11ff80 | 73 65 72 76 65 72 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 2e 00 53 70 65 63 69 66 79 20 74 68 | server.to.connect.to..Specify.th |
| 11ffa0 | 65 20 61 64 64 72 65 73 73 2c 20 41 50 49 20 6b 65 79 2c 20 74 69 6d 65 6f 75 74 20 61 6e 64 20 | e.address,.API.key,.timeout.and. |
| 11ffc0 | 70 6f 72 74 20 6f 66 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 72 6f 75 74 65 72 2e 20 59 6f | port.of.the.secondary.router..Yo |
| 11ffe0 | 75 20 6e 65 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 20 74 | u.need.to.enable.and.configure.t |
| 120000 | 68 65 20 48 54 54 50 20 41 50 49 20 73 65 72 76 69 63 65 20 6f 6e 20 74 68 65 20 73 65 63 6f 6e | he.HTTP.API.service.on.the.secon |
| 120020 | 64 61 72 79 20 72 6f 75 74 65 72 20 66 6f 72 20 63 6f 6e 66 69 67 20 73 79 6e 63 20 74 6f 20 6f | dary.router.for.config.sync.to.o |
| 120040 | 70 65 72 61 74 65 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 69 64 65 6e 74 69 66 69 65 72 20 76 | perate..Specify.the.identifier.v |
| 120060 | 61 6c 75 65 20 6f 66 20 74 68 65 20 73 69 74 65 2d 6c 65 76 65 6c 20 61 67 67 72 65 67 61 74 6f | alue.of.the.site-level.aggregato |
| 120080 | 72 20 28 53 4c 41 29 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 49 44 20 6d 75 73 | r.(SLA).on.the.interface..ID.mus |
| 1200a0 | 74 20 62 65 20 61 20 64 65 63 69 6d 61 6c 20 6e 75 6d 62 65 72 20 67 72 65 61 74 65 72 20 74 68 | t.be.a.decimal.number.greater.th |
| 1200c0 | 65 6e 20 30 20 77 68 69 63 68 20 66 69 74 73 20 69 6e 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 | en.0.which.fits.in.the.length.of |
| 1200e0 | 20 53 4c 41 20 49 44 73 20 28 73 65 65 20 62 65 6c 6f 77 29 2e 00 53 70 65 63 69 66 79 20 74 68 | .SLA.IDs.(see.below)..Specify.th |
| 120100 | 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 20 75 73 65 64 20 6c 6f 63 61 6c 6c 79 | e.interface.address.used.locally |
| 120120 | 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 20 74 68 65 20 70 72 65 66 | .on.the.interface.where.the.pref |
| 120140 | 69 78 20 68 61 73 20 62 65 65 6e 20 64 65 6c 65 67 61 74 65 64 20 74 6f 2e 20 49 44 20 6d 75 73 | ix.has.been.delegated.to..ID.mus |
| 120160 | 74 20 62 65 20 61 20 64 65 63 69 6d 61 6c 20 69 6e 74 65 67 65 72 2e 00 53 70 65 63 69 66 79 20 | t.be.a.decimal.integer..Specify. |
| 120180 | 74 68 65 20 6d 69 6e 69 6d 75 6d 20 72 65 71 75 69 72 65 64 20 54 4c 53 20 76 65 72 73 69 6f 6e | the.minimum.required.TLS.version |
| 1201a0 | 20 31 2e 32 20 6f 72 20 31 2e 33 00 53 70 65 63 69 66 79 20 74 68 65 20 70 6c 61 69 6e 74 65 78 | .1.2.or.1.3.Specify.the.plaintex |
| 1201c0 | 74 20 70 61 73 73 77 6f 72 64 20 75 73 65 72 20 62 79 20 75 73 65 72 20 60 3c 6e 61 6d 65 3e 60 | t.password.user.by.user.`<name>` |
| 1201e0 | 20 6f 6e 20 74 68 69 73 20 73 79 73 74 65 6d 2e 20 54 68 65 20 70 6c 61 69 6e 74 65 78 74 20 70 | .on.this.system..The.plaintext.p |
| 120200 | 61 73 73 77 6f 72 64 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 74 72 | assword.will.be.automatically.tr |
| 120220 | 61 6e 73 66 65 72 72 65 64 20 69 6e 74 6f 20 61 20 73 65 63 75 72 65 20 68 61 73 68 65 64 20 70 | ansferred.into.a.secure.hashed.p |
| 120240 | 61 73 73 77 6f 72 64 20 61 6e 64 20 6e 6f 74 20 73 61 76 65 64 20 61 6e 79 77 68 65 72 65 20 69 | assword.and.not.saved.anywhere.i |
| 120260 | 6e 20 70 6c 61 69 6e 74 65 78 74 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 70 6f 72 74 20 75 73 | n.plaintext..Specify.the.port.us |
| 120280 | 65 64 20 6f 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 69 73 | ed.on.which.the.proxy.service.is |
| 1202a0 | 20 6c 69 73 74 65 6e 69 6e 67 20 66 6f 72 20 72 65 71 75 65 73 74 73 2e 20 54 68 69 73 20 70 6f | .listening.for.requests..This.po |
| 1202c0 | 72 74 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 75 73 65 64 20 66 6f 72 20 | rt.is.the.default.port.used.for. |
| 1202e0 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6c 69 73 74 65 6e 2d 61 64 64 72 65 73 73 2e 00 53 70 | the.specified.listen-address..Sp |
| 120300 | 65 63 69 66 79 20 74 68 65 20 73 65 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 | ecify.the.section.of.the.configu |
| 120320 | 72 61 74 69 6f 6e 20 74 6f 20 73 79 6e 63 68 72 6f 6e 69 7a 65 2e 20 49 66 20 6d 6f 72 65 20 74 | ration.to.synchronize..If.more.t |
| 120340 | 68 61 6e 20 6f 6e 65 20 73 65 63 74 69 6f 6e 20 69 73 20 74 6f 20 62 65 20 73 79 6e 63 68 72 6f | han.one.section.is.to.be.synchro |
| 120360 | 6e 69 7a 65 64 2c 20 72 65 70 65 61 74 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 64 64 | nized,.repeat.the.command.to.add |
| 120380 | 20 61 64 64 69 74 69 6f 6e 61 6c 20 73 65 63 74 69 6f 6e 73 20 61 73 20 72 65 71 75 69 72 65 64 | .additional.sections.as.required |
| 1203a0 | 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 73 79 73 74 65 6d 73 20 60 3c 74 69 6d 65 7a 6f 6e 65 | ..Specify.the.systems.`<timezone |
| 1203c0 | 3e 60 20 61 73 20 74 68 65 20 52 65 67 69 6f 6e 2f 4c 6f 63 61 74 69 6f 6e 20 74 68 61 74 20 62 | >`.as.the.Region/Location.that.b |
| 1203e0 | 65 73 74 20 64 65 66 69 6e 65 73 20 79 6f 75 72 20 6c 6f 63 61 74 69 6f 6e 2e 20 46 6f 72 20 65 | est.defines.your.location..For.e |
| 120400 | 78 61 6d 70 6c 65 2c 20 73 70 65 63 69 66 79 69 6e 67 20 55 53 2f 50 61 63 69 66 69 63 20 73 65 | xample,.specifying.US/Pacific.se |
| 120420 | 74 73 20 74 68 65 20 74 69 6d 65 20 7a 6f 6e 65 20 74 6f 20 55 53 20 50 61 63 69 66 69 63 20 74 | ts.the.time.zone.to.US.Pacific.t |
| 120440 | 69 6d 65 2e 00 53 70 65 63 69 66 79 20 74 68 65 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 77 | ime..Specify.the.time.interval.w |
| 120460 | 68 65 6e 20 60 3c 74 61 73 6b 3e 60 20 73 68 6f 75 6c 64 20 62 65 20 65 78 65 63 75 74 65 64 2e | hen.`<task>`.should.be.executed. |
| 120480 | 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 69 73 20 73 70 65 63 69 66 69 65 64 20 61 73 20 6e 75 | .The.interval.is.specified.as.nu |
| 1204a0 | 6d 62 65 72 20 77 69 74 68 20 6f 6e 65 20 6f 66 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 | mber.with.one.of.the.following.s |
| 1204c0 | 75 66 66 69 78 65 73 3a 00 53 70 65 63 69 66 79 20 74 69 6d 65 6f 75 74 20 2f 20 75 70 64 61 74 | uffixes:.Specify.timeout./.updat |
| 1204e0 | 65 20 69 6e 74 65 72 76 61 6c 20 74 6f 20 63 68 65 63 6b 20 69 66 20 49 50 20 61 64 64 72 65 73 | e.interval.to.check.if.IP.addres |
| 120500 | 73 20 63 68 61 6e 67 65 64 2e 00 53 70 65 63 69 66 79 20 74 69 6d 65 6f 75 74 20 69 6e 74 65 72 | s.changed..Specify.timeout.inter |
| 120520 | 76 61 6c 20 66 6f 72 20 6b 65 65 70 61 6c 69 76 65 20 6d 65 73 73 61 67 65 20 69 6e 20 73 65 63 | val.for.keepalive.message.in.sec |
| 120540 | 6f 6e 64 73 2e 00 53 70 65 63 69 66 79 20 77 68 65 72 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 | onds..Specify.where.interface.is |
| 120560 | 20 73 68 61 72 65 64 20 62 79 20 6d 75 6c 74 69 70 6c 65 20 75 73 65 72 73 20 6f 72 20 69 74 20 | .shared.by.multiple.users.or.it. |
| 120580 | 69 73 20 76 6c 61 6e 2d 70 65 72 2d 75 73 65 72 2e 00 53 70 69 6e 65 31 20 69 73 20 61 20 43 69 | is.vlan-per-user..Spine1.is.a.Ci |
| 1205a0 | 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 72 20 72 75 6e 6e 69 6e 67 20 76 65 72 73 69 6f 6e 20 31 | sco.IOS.router.running.version.1 |
| 1205c0 | 35 2e 34 2c 20 4c 65 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 61 72 65 20 65 61 63 68 20 56 79 | 5.4,.Leaf2.and.Leaf3.are.each.Vy |
| 1205e0 | 4f 53 20 72 6f 75 74 65 72 73 20 72 75 6e 6e 69 6e 67 20 31 2e 32 2e 00 53 70 69 6e 65 31 20 69 | OS.routers.running.1.2..Spine1.i |
| 120600 | 73 20 61 20 43 69 73 63 6f 20 49 4f 53 20 72 6f 75 74 65 72 20 72 75 6e 6e 69 6e 67 20 76 65 72 | s.a.Cisco.IOS.router.running.ver |
| 120620 | 73 69 6f 6e 20 31 35 2e 34 2c 20 4c 65 61 66 32 20 61 6e 64 20 4c 65 61 66 33 20 69 73 20 65 61 | sion.15.4,.Leaf2.and.Leaf3.is.ea |
| 120640 | 63 68 20 61 20 56 79 4f 53 20 72 6f 75 74 65 72 20 72 75 6e 6e 69 6e 67 20 31 2e 32 2e 00 53 70 | ch.a.VyOS.router.running.1.2..Sp |
| 120660 | 6c 75 6e 6b 00 53 70 6f 6b 65 00 53 71 75 69 64 5f 20 69 73 20 61 20 63 61 63 68 69 6e 67 20 61 | lunk.Spoke.Squid_.is.a.caching.a |
| 120680 | 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 20 48 54 54 50 20 77 65 62 20 70 72 6f 78 79 2e 20 49 74 | nd.forwarding.HTTP.web.proxy..It |
| 1206a0 | 20 68 61 73 20 61 20 77 69 64 65 20 76 61 72 69 65 74 79 20 6f 66 20 75 73 65 73 2c 20 69 6e 63 | .has.a.wide.variety.of.uses,.inc |
| 1206c0 | 6c 75 64 69 6e 67 20 73 70 65 65 64 69 6e 67 20 75 70 20 61 20 77 65 62 20 73 65 72 76 65 72 20 | luding.speeding.up.a.web.server. |
| 1206e0 | 62 79 20 63 61 63 68 69 6e 67 20 72 65 70 65 61 74 65 64 20 72 65 71 75 65 73 74 73 2c 20 63 61 | by.caching.repeated.requests,.ca |
| 120700 | 63 68 69 6e 67 20 77 65 62 2c 20 44 4e 53 20 61 6e 64 20 6f 74 68 65 72 20 63 6f 6d 70 75 74 65 | ching.web,.DNS.and.other.compute |
| 120720 | 72 20 6e 65 74 77 6f 72 6b 20 6c 6f 6f 6b 75 70 73 20 66 6f 72 20 61 20 67 72 6f 75 70 20 6f 66 | r.network.lookups.for.a.group.of |
| 120740 | 20 70 65 6f 70 6c 65 20 73 68 61 72 69 6e 67 20 6e 65 74 77 6f 72 6b 20 72 65 73 6f 75 72 63 65 | .people.sharing.network.resource |
| 120760 | 73 2c 20 61 6e 64 20 61 69 64 69 6e 67 20 73 65 63 75 72 69 74 79 20 62 79 20 66 69 6c 74 65 72 | s,.and.aiding.security.by.filter |
| 120780 | 69 6e 67 20 74 72 61 66 66 69 63 2e 20 41 6c 74 68 6f 75 67 68 20 70 72 69 6d 61 72 69 6c 79 20 | ing.traffic..Although.primarily. |
| 1207a0 | 75 73 65 64 20 66 6f 72 20 48 54 54 50 20 61 6e 64 20 46 54 50 2c 20 53 71 75 69 64 20 69 6e 63 | used.for.HTTP.and.FTP,.Squid.inc |
| 1207c0 | 6c 75 64 65 73 20 6c 69 6d 69 74 65 64 20 73 75 70 70 6f 72 74 20 66 6f 72 20 73 65 76 65 72 61 | ludes.limited.support.for.severa |
| 1207e0 | 6c 20 6f 74 68 65 72 20 70 72 6f 74 6f 63 6f 6c 73 20 69 6e 63 6c 75 64 69 6e 67 20 49 6e 74 65 | l.other.protocols.including.Inte |
| 120800 | 72 6e 65 74 20 47 6f 70 68 65 72 2c 20 53 53 4c 2c 5b 36 5d 20 54 4c 53 20 61 6e 64 20 48 54 54 | rnet.Gopher,.SSL,[6].TLS.and.HTT |
| 120820 | 50 53 2e 20 53 71 75 69 64 20 64 6f 65 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 20 74 68 65 20 53 | PS..Squid.does.not.support.the.S |
| 120840 | 4f 43 4b 53 20 70 72 6f 74 6f 63 6f 6c 2e 00 53 74 61 72 74 20 57 65 62 73 65 72 76 65 72 20 69 | OCKS.protocol..Start.Webserver.i |
| 120860 | 6e 20 67 69 76 65 6e 20 20 56 52 46 2e 00 53 74 61 72 74 20 57 65 62 73 65 72 76 65 72 20 69 6e | n.given..VRF..Start.Webserver.in |
| 120880 | 20 67 69 76 65 6e 20 56 52 46 2e 00 53 74 61 72 74 20 62 79 20 63 68 65 63 6b 69 6e 67 20 66 6f | .given.VRF..Start.by.checking.fo |
| 1208a0 | 72 20 49 50 53 65 63 20 53 41 73 20 28 53 65 63 75 72 69 74 79 20 41 73 73 6f 63 69 61 74 69 6f | r.IPSec.SAs.(Security.Associatio |
| 1208c0 | 6e 73 29 20 77 69 74 68 3a 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 2a 2a 56 79 4f 53 2d 31 | ns).with:.Starting.from.**VyOS-1 |
| 1208e0 | 2e 35 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 34 31 30 30 36 30 30 30 37 2a 2a 2c 20 74 68 65 20 66 | .5-rolling-202410060007**,.the.f |
| 120900 | 69 72 65 77 61 6c 6c 20 63 61 6e 20 6d 6f 64 69 66 79 20 70 61 63 6b 65 74 73 20 62 65 66 6f 72 | irewall.can.modify.packets.befor |
| 120920 | 65 20 74 68 65 79 20 61 72 65 20 73 65 6e 74 20 6f 75 74 2e 20 54 68 69 73 20 66 65 61 75 72 65 | e.they.are.sent.out..This.feaure |
| 120940 | 20 70 72 6f 76 69 64 65 73 20 6d 6f 72 65 20 66 6c 65 78 69 62 69 6c 69 74 79 20 69 6e 20 70 61 | .provides.more.flexibility.in.pa |
| 120960 | 63 6b 65 74 20 68 61 6e 64 6c 69 6e 67 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f | cket.handling..Starting.from.VyO |
| 120980 | 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 | S.1.4-rolling-202308040557,.a.ne |
| 1209a0 | 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e | w.firewall.structure.can.be.foun |
| 1209c0 | 64 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 54 68 65 | d.on.all.VyOS.installations..The |
| 1209e0 | 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 | .Zone.based.firewall.was.removed |
| 120a00 | 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 | .in.that.version,.but.re.introdu |
| 120a20 | 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 | ced.in.VyOS.1.4.and.1.5..All.ver |
| 120a40 | 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 76 | sions.built.after.2023-10-22.hav |
| 120a60 | 65 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f | e.this.feature..Documentation.fo |
| 120a80 | 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 | r.most.of.the.new.firewall.CLI.c |
| 120aa0 | 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 | an.be.found.in.the.`firewall.<ht |
| 120ac0 | 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e | tps://docs.vyos.io/en/latest/con |
| 120ae0 | 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c | figuration/firewall/general.html |
| 120b00 | 3e 60 5f 20 63 68 61 70 74 65 72 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 | >`_.chapter..Starting.from.VyOS. |
| 120b20 | 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 | 1.4-rolling-202308040557,.a.new. |
| 120b40 | 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 | firewall.structure.can.be.found. |
| 120b60 | 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 5a | on.all.VyOS.installations..The.Z |
| 120b80 | 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 | one.based.firewall.was.removed.i |
| 120ba0 | 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 | n.that.version,.but.re.introduce |
| 120bc0 | 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 | d.in.VyOS.1.4.and.1.5..All.versi |
| 120be0 | 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 76 65 20 | ons.built.after.2023-10-22.have. |
| 120c00 | 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 | this.feature..Documentation.for. |
| 120c20 | 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e | most.of.the.new.firewall.CLI.can |
| 120c40 | 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 | .be.found.in.the.`firewall.<http |
| 120c60 | 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 | s://docs.vyos.io/en/latest/confi |
| 120c80 | 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 | guration/firewall/general.html>` |
| 120ca0 | 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 | _.chapter..The.legacy.firewall.i |
| 120cc0 | 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 | s.still.available.for.versions.b |
| 120ce0 | 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 | efore.1.4-rolling-202308040557.a |
| 120d00 | 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 | nd.can.be.found.in.the.:doc:`leg |
| 120d20 | 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e | acy.firewall.configuration.</con |
| 120d40 | 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 | figuration/firewall/general-lega |
| 120d60 | 63 79 3e 60 20 63 68 61 70 74 65 72 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 | cy>`.chapter..Starting.from.VyOS |
| 120d80 | 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 | .1.4-rolling-202308040557,.a.new |
| 120da0 | 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 | .firewall.structure.can.be.found |
| 120dc0 | 20 6f 6e 20 61 6c 6c 20 56 79 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 5a 6f 6e 65 | .on.all.VyOS.installations..Zone |
| 120de0 | 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 | .based.firewall.was.removed.in.t |
| 120e00 | 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f 64 75 63 65 64 20 69 | hat.version,.but.re.introduced.i |
| 120e20 | 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 65 72 73 69 6f 6e 73 | n.VyOS.1.4.and.1.5..All.versions |
| 120e40 | 20 62 75 69 6c 74 20 61 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 61 73 20 74 68 69 73 | .built.after.2023-10-22.has.this |
| 120e60 | 20 66 65 61 74 75 72 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 | .feature..Documentation.for.most |
| 120e80 | 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 | .of.the.new.firewall.CLI.can.be. |
| 120ea0 | 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f | found.in.the.`firewall.<https:// |
| 120ec0 | 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 | docs.vyos.io/en/latest/configura |
| 120ee0 | 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 | tion/firewall/general.html>`_.ch |
| 120f00 | 61 70 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 | apter..The.legacy.firewall.is.st |
| 120f20 | 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 | ill.available.for.versions.befor |
| 120f40 | 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 | e.1.4-rolling-202308040557.and.c |
| 120f60 | 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 6c 65 67 61 63 79 20 | an.be.found.in.the.:doc:`legacy. |
| 120f80 | 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 | firewall.configuration.</configu |
| 120fa0 | 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 67 61 63 79 3e 60 | ration/firewall/general-legacy>` |
| 120fc0 | 20 63 68 61 70 74 65 72 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 | .chapter..Starting.from.VyOS.1.4 |
| 120fe0 | 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 | -rolling-202308040557,.a.new.fir |
| 121000 | 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 | ewall.structure.can.be.found.on. |
| 121020 | 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 61 74 69 6f 6e 73 2c 20 61 6e 64 20 7a 6f 6e 65 20 | all.vyos.instalations,.and.zone. |
| 121040 | 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 69 73 20 6e 6f 20 6c 6f 6e 67 65 72 20 73 75 70 70 | based.firewall.is.no.longer.supp |
| 121060 | 6f 72 74 65 64 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d 6f 73 74 20 6f 66 | orted..Documentation.for.most.of |
| 121080 | 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 63 61 6e 20 62 65 20 66 6f 75 | .the.new.firewall.CLI.can.be.fou |
| 1210a0 | 6e 64 20 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 | nd.in.the.`firewall.<https://doc |
| 1210c0 | 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f | s.vyos.io/en/latest/configuratio |
| 1210e0 | 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d 6c 3e 60 5f 20 63 68 61 70 74 | n/firewall/general.html>`_.chapt |
| 121100 | 65 72 2e 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 69 73 20 73 74 69 6c 6c | er..The.legacy.firewall.is.still |
| 121120 | 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 62 65 66 6f 72 65 20 31 | .available.for.versions.before.1 |
| 121140 | 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 20 61 6e 64 20 63 61 6e 20 | .4-rolling-202308040557.and.can. |
| 121160 | 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a 72 65 66 3a 60 66 69 72 65 77 61 6c 6c 2d 6c | be.found.in.the.:ref:`firewall-l |
| 121180 | 65 67 61 63 79 60 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 65 78 61 6d 70 6c 65 73 20 69 6e 20 | egacy`.chapter..The.examples.in. |
| 1211a0 | 74 68 69 73 20 73 65 63 74 69 6f 6e 20 75 73 65 20 74 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 | this.section.use.the.legacy.fire |
| 1211c0 | 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f 6d 6d 61 6e 64 73 2c 20 73 69 6e | wall.configuration.commands,.sin |
| 1211e0 | 63 65 20 74 68 69 73 20 66 65 61 74 75 72 65 20 68 61 73 20 62 65 65 6e 20 72 65 6d 6f 76 65 64 | ce.this.feature.has.been.removed |
| 121200 | 20 69 6e 20 65 61 72 6c 69 65 72 20 72 65 6c 65 61 73 65 73 2e 00 53 74 61 72 74 69 6e 67 20 66 | .in.earlier.releases..Starting.f |
| 121220 | 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 | rom.VyOS.1.4-rolling-20230804055 |
| 121240 | 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 | 7,.a.new.firewall.structure.can. |
| 121260 | 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 61 74 69 6f 6e | be.found.on.all.vyos.instalation |
| 121280 | 73 2e 20 5a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 77 61 73 20 72 65 6d 6f 76 | s..Zone.based.firewall.was.remov |
| 1212a0 | 65 64 20 69 6e 20 74 68 61 74 20 76 65 72 73 69 6f 6e 2c 20 62 75 74 20 72 65 20 69 6e 74 72 6f | ed.in.that.version,.but.re.intro |
| 1212c0 | 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 20 61 6e 64 20 31 2e 35 2e 20 41 6c 6c 20 76 | duced.in.VyOS.1.4.and.1.5..All.v |
| 1212e0 | 65 72 73 69 6f 6e 73 20 62 75 69 6c 74 20 61 66 74 65 72 20 32 30 32 33 2d 31 30 2d 32 32 20 68 | ersions.built.after.2023-10-22.h |
| 121300 | 61 73 20 74 68 69 73 20 66 65 61 74 75 72 65 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 | as.this.feature..Documentation.f |
| 121320 | 6f 72 20 6d 6f 73 74 20 6f 66 20 74 68 65 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 | or.most.of.the.new.firewall.CLI. |
| 121340 | 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 60 66 69 72 65 77 61 6c 6c 20 3c 68 | can.be.found.in.the.`firewall.<h |
| 121360 | 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 76 79 6f 73 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f | ttps://docs.vyos.io/en/latest/co |
| 121380 | 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2e 68 74 6d | nfiguration/firewall/general.htm |
| 1213a0 | 6c 3e 60 5f 20 63 68 61 70 74 65 72 2e 20 54 68 65 20 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c | l>`_.chapter..The.legacy.firewal |
| 1213c0 | 6c 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 76 65 72 73 69 6f 6e | l.is.still.available.for.version |
| 1213e0 | 73 20 62 65 66 6f 72 65 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 | s.before.1.4-rolling-20230804055 |
| 121400 | 37 20 61 6e 64 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 69 6e 20 74 68 65 20 3a 64 6f 63 3a 60 | 7.and.can.be.found.in.the.:doc:` |
| 121420 | 6c 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f | legacy.firewall.configuration.</ |
| 121440 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c | configuration/firewall/general-l |
| 121460 | 65 67 61 63 79 3e 60 20 63 68 61 70 74 65 72 2e 00 53 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 | egacy>`.chapter..Starting.from.V |
| 121480 | 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 | yOS.1.4-rolling-202308040557,.a. |
| 1214a0 | 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f | new.firewall.structure.can.be.fo |
| 1214c0 | 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 00 53 | und.on.all.vyos.installations..S |
| 1214e0 | 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 34 2d 72 6f 6c 6c 69 6e 67 2d 32 30 | tarting.from.VyOS.1.4-rolling-20 |
| 121500 | 32 33 30 38 30 34 30 35 35 37 2c 20 61 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 73 74 72 75 63 | 2308040557,.a.new.firewall.struc |
| 121520 | 74 75 72 65 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 6f 6e 20 61 6c 6c 20 76 79 6f 73 20 69 6e | ture.can.be.found.on.all.vyos.in |
| 121540 | 73 74 61 6c 6c 61 74 69 6f 6e 73 2e 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 66 6f 72 20 6d | stallations..Documentation.for.m |
| 121560 | 6f 73 74 20 6e 65 77 20 66 69 72 65 77 61 6c 6c 20 63 6c 69 20 63 61 6e 20 62 65 20 66 6f 75 6e | ost.new.firewall.cli.can.be.foun |
| 121580 | 64 20 68 65 72 65 3a 00 53 74 61 72 74 69 6e 67 20 6f 66 20 77 69 74 68 20 56 79 4f 53 20 31 2e | d.here:.Starting.of.with.VyOS.1. |
| 1215a0 | 33 20 28 65 71 75 75 6c 65 75 73 29 20 77 65 20 61 64 64 65 64 20 73 75 70 70 6f 72 74 20 66 6f | 3.(equuleus).we.added.support.fo |
| 1215c0 | 72 20 72 75 6e 6e 69 6e 67 20 56 79 4f 53 20 61 73 20 61 6e 20 4f 75 74 2d 6f 66 2d 42 61 6e 64 | r.running.VyOS.as.an.Out-of-Band |
| 1215e0 | 20 4d 61 6e 61 67 65 6d 65 6e 74 20 64 65 76 69 63 65 20 77 68 69 63 68 20 70 72 6f 76 69 64 65 | .Management.device.which.provide |
| 121600 | 73 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 53 53 48 20 | s.remote.access.by.means.of.SSH. |
| 121620 | 74 6f 20 64 69 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 73 65 72 69 61 6c 20 69 6e 74 65 | to.directly.attached.serial.inte |
| 121640 | 72 66 61 63 65 73 2e 00 53 74 61 72 74 69 6e 67 20 77 69 74 68 20 56 79 4f 53 20 31 2e 32 20 61 | rfaces..Starting.with.VyOS.1.2.a |
| 121660 | 20 3a 61 62 62 72 3a 60 6d 44 4e 53 20 28 4d 75 6c 74 69 63 61 73 74 20 44 4e 53 29 60 20 72 65 | .:abbr:`mDNS.(Multicast.DNS)`.re |
| 121680 | 70 65 61 74 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 69 73 20 70 72 6f 76 69 64 65 64 | peater.functionality.is.provided |
| 1216a0 | 2e 20 41 64 64 69 74 69 6f 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 | ..Additional.information.can.be. |
| 1216c0 | 6f 62 74 61 69 6e 65 64 20 66 72 6f 6d 20 68 74 74 70 73 3a 2f 2f 65 6e 2e 77 69 6b 69 70 65 64 | obtained.from.https://en.wikiped |
| 1216e0 | 69 61 2e 6f 72 67 2f 77 69 6b 69 2f 4d 75 6c 74 69 63 61 73 74 5f 44 4e 53 2e 00 53 74 61 74 69 | ia.org/wiki/Multicast_DNS..Stati |
| 121700 | 63 00 53 74 61 74 69 63 20 3a 61 62 62 72 3a 60 53 41 4b 20 28 53 65 63 75 72 65 20 41 75 74 68 | c.Static.:abbr:`SAK.(Secure.Auth |
| 121720 | 65 6e 74 69 63 61 74 69 6f 6e 20 4b 65 79 29 60 20 6d 6f 64 65 20 63 61 6e 20 62 65 20 63 6f 6e | entication.Key)`.mode.can.be.con |
| 121740 | 66 69 67 75 72 65 64 20 6d 61 6e 75 61 6c 6c 79 20 6f 6e 20 65 61 63 68 20 64 65 76 69 63 65 20 | figured.manually.on.each.device. |
| 121760 | 77 69 73 68 69 6e 67 20 74 6f 20 75 73 65 20 4d 41 43 73 65 63 2e 20 4b 65 79 73 20 6d 75 73 74 | wishing.to.use.MACsec..Keys.must |
| 121780 | 20 62 65 20 73 65 74 20 73 74 61 74 69 63 61 6c 6c 79 20 6f 6e 20 61 6c 6c 20 64 65 76 69 63 65 | .be.set.statically.on.all.device |
| 1217a0 | 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 66 6c 6f 77 20 70 72 6f 70 65 72 6c 79 2e 20 | s.for.traffic.to.flow.properly.. |
| 1217c0 | 4b 65 79 20 72 6f 74 61 74 69 6f 6e 20 69 73 20 64 65 70 65 6e 64 65 6e 74 20 6f 6e 20 74 68 65 | Key.rotation.is.dependent.on.the |
| 1217e0 | 20 61 64 6d 69 6e 69 73 74 72 61 74 6f 72 20 75 70 64 61 74 69 6e 67 20 61 6c 6c 20 6b 65 79 73 | .administrator.updating.all.keys |
| 121800 | 20 6d 61 6e 75 61 6c 6c 79 20 61 63 72 6f 73 73 20 63 6f 6e 6e 65 63 74 65 64 20 64 65 76 69 63 | .manually.across.connected.devic |
| 121820 | 65 73 2e 20 53 74 61 74 69 63 20 53 41 4b 20 6d 6f 64 65 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 | es..Static.SAK.mode.can.not.be.u |
| 121840 | 73 65 64 20 77 69 74 68 20 4d 4b 41 2e 00 53 74 61 74 69 63 20 44 48 43 50 20 49 50 20 61 64 64 | sed.with.MKA..Static.DHCP.IP.add |
| 121860 | 72 65 73 73 20 61 73 73 69 67 6e 20 74 6f 20 68 6f 73 74 20 69 64 65 6e 74 69 66 69 65 64 20 62 | ress.assign.to.host.identified.b |
| 121880 | 79 20 60 3c 64 65 73 63 72 69 70 74 69 6f 6e 3e 60 2e 20 49 50 20 61 64 64 72 65 73 73 20 6d 75 | y.`<description>`..IP.address.mu |
| 1218a0 | 73 74 20 62 65 20 69 6e 73 69 64 65 20 74 68 65 20 60 3c 73 75 62 6e 65 74 3e 60 20 77 68 69 63 | st.be.inside.the.`<subnet>`.whic |
| 1218c0 | 68 20 69 73 20 64 65 66 69 6e 65 64 20 62 75 74 20 63 61 6e 20 62 65 20 6f 75 74 73 69 64 65 20 | h.is.defined.but.can.be.outside. |
| 1218e0 | 74 68 65 20 64 79 6e 61 6d 69 63 20 72 61 6e 67 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 3a | the.dynamic.range.created.with.: |
| 121900 | 63 66 67 63 6d 64 3a 60 73 65 74 20 73 65 72 76 69 63 65 20 64 68 63 70 2d 73 65 72 76 65 72 20 | cfgcmd:`set.service.dhcp-server. |
| 121920 | 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 20 3c 6e 61 6d 65 3e 20 73 75 62 6e 65 | shared-network-name.<name>.subne |
| 121940 | 74 20 3c 73 75 62 6e 65 74 3e 20 72 61 6e 67 65 20 3c 6e 3e 60 2e 20 49 66 20 6e 6f 20 69 70 2d | t.<subnet>.range.<n>`..If.no.ip- |
| 121960 | 61 64 64 72 65 73 73 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 61 6e 20 49 50 20 66 72 6f 6d | address.is.specified,.an.IP.from |
| 121980 | 20 74 68 65 20 64 79 6e 61 6d 69 63 20 70 6f 6f 6c 20 69 73 20 75 73 65 64 2e 00 53 74 61 74 69 | .the.dynamic.pool.is.used..Stati |
| 1219a0 | 63 20 48 6f 73 74 6e 61 6d 65 20 4d 61 70 70 69 6e 67 00 53 74 61 74 69 63 20 4b 65 79 73 00 53 | c.Hostname.Mapping.Static.Keys.S |
| 1219c0 | 74 61 74 69 63 20 52 6f 75 74 65 73 00 53 74 61 74 69 63 20 52 6f 75 74 69 6e 67 20 6f 72 20 6f | tatic.Routes.Static.Routing.or.o |
| 1219e0 | 74 68 65 72 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 | ther.dynamic.routing.protocols.c |
| 121a00 | 61 6e 20 62 65 20 75 73 65 64 20 6f 76 65 72 20 74 68 65 20 76 74 75 6e 20 69 6e 74 65 72 66 61 | an.be.used.over.the.vtun.interfa |
| 121a20 | 63 65 00 53 74 61 74 69 63 20 52 6f 75 74 69 6e 67 3a 00 53 74 61 74 69 63 20 6d 61 70 70 69 6e | ce.Static.Routing:.Static.mappin |
| 121a40 | 67 73 00 53 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 61 72 65 6e 27 74 20 73 68 6f 77 6e 2e | gs.Static.mappings.aren't.shown. |
| 121a60 | 20 54 6f 20 73 68 6f 77 20 61 6c 6c 20 73 74 61 74 65 73 2c 20 75 73 65 20 60 60 73 68 6f 77 20 | .To.show.all.states,.use.``show. |
| 121a80 | 64 68 63 70 20 73 65 72 76 65 72 20 6c 65 61 73 65 73 20 73 74 61 74 65 20 61 6c 6c 60 60 2e 00 | dhcp.server.leases.state.all``.. |
| 121aa0 | 53 74 61 74 69 63 20 72 6f 75 74 65 73 20 61 72 65 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e 66 69 | Static.routes.are.manually.confi |
| 121ac0 | 67 75 72 65 64 20 72 6f 75 74 65 73 2c 20 77 68 69 63 68 2c 20 69 6e 20 67 65 6e 65 72 61 6c 2c | gured.routes,.which,.in.general, |
| 121ae0 | 20 63 61 6e 6e 6f 74 20 62 65 20 75 70 64 61 74 65 64 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 66 | .cannot.be.updated.dynamically.f |
| 121b00 | 72 6f 6d 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 56 79 4f 53 20 6c 65 61 72 6e 73 20 61 62 6f 75 | rom.information.VyOS.learns.abou |
| 121b20 | 74 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f 67 79 20 66 72 6f 6d 20 6f 74 68 65 | t.the.network.topology.from.othe |
| 121b40 | 72 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 | r.routing.protocols..However,.if |
| 121b60 | 20 61 20 6c 69 6e 6b 20 66 61 69 6c 73 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 72 | .a.link.fails,.the.router.will.r |
| 121b80 | 65 6d 6f 76 65 20 72 6f 75 74 65 73 2c 20 69 6e 63 6c 75 64 69 6e 67 20 73 74 61 74 69 63 20 72 | emove.routes,.including.static.r |
| 121ba0 | 6f 75 74 65 73 2c 20 66 72 6f 6d 20 74 68 65 20 3a 61 62 62 72 3a 60 52 49 50 42 20 28 52 6f 75 | outes,.from.the.:abbr:`RIPB.(Rou |
| 121bc0 | 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 42 61 73 65 29 60 20 74 68 61 74 20 75 73 65 | ting.Information.Base)`.that.use |
| 121be0 | 64 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 72 65 61 63 68 20 74 68 65 20 6e 65 | d.this.interface.to.reach.the.ne |
| 121c00 | 78 74 20 68 6f 70 2e 20 49 6e 20 67 65 6e 65 72 61 6c 2c 20 73 74 61 74 69 63 20 72 6f 75 74 65 | xt.hop..In.general,.static.route |
| 121c20 | 73 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 62 65 20 75 73 65 64 20 66 6f 72 20 76 65 72 79 20 73 | s.should.only.be.used.for.very.s |
| 121c40 | 69 6d 70 6c 65 20 6e 65 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f 67 69 65 73 2c 20 6f 72 20 74 6f 20 | imple.network.topologies,.or.to. |
| 121c60 | 6f 76 65 72 72 69 64 65 20 74 68 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 61 20 64 79 6e 61 6d | override.the.behavior.of.a.dynam |
| 121c80 | 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 66 6f 72 20 61 20 73 6d 61 6c 6c 20 | ic.routing.protocol.for.a.small. |
| 121ca0 | 6e 75 6d 62 65 72 20 6f 66 20 72 6f 75 74 65 73 2e 20 54 68 65 20 63 6f 6c 6c 65 63 74 69 6f 6e | number.of.routes..The.collection |
| 121cc0 | 20 6f 66 20 61 6c 6c 20 72 6f 75 74 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 68 61 73 20 6c 65 | .of.all.routes.the.router.has.le |
| 121ce0 | 61 72 6e 65 64 20 66 72 6f 6d 20 69 74 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 72 20 | arned.from.its.configuration.or. |
| 121d00 | 66 72 6f 6d 20 69 74 73 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f | from.its.dynamic.routing.protoco |
| 121d20 | 6c 73 20 69 73 20 73 74 6f 72 65 64 20 69 6e 20 74 68 65 20 52 49 42 2e 20 55 6e 69 63 61 73 74 | ls.is.stored.in.the.RIB..Unicast |
| 121d40 | 20 72 6f 75 74 65 73 20 61 72 65 20 64 69 72 65 63 74 6c 79 20 75 73 65 64 20 74 6f 20 64 65 74 | .routes.are.directly.used.to.det |
| 121d60 | 65 72 6d 69 6e 65 20 74 68 65 20 66 6f 72 77 61 72 64 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 | ermine.the.forwarding.table.used |
| 121d80 | 20 66 6f 72 20 75 6e 69 63 61 73 74 20 70 61 63 6b 65 74 20 66 6f 72 77 61 72 64 69 6e 67 2e 00 | .for.unicast.packet.forwarding.. |
| 121da0 | 53 74 61 74 69 63 20 72 6f 75 74 65 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 | Static.routes.can.be.configured. |
| 121dc0 | 72 65 66 65 72 65 6e 63 69 6e 67 20 74 68 65 20 74 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 | referencing.the.tunnel.interface |
| 121de0 | 3b 20 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 | ;.for.example,.the.local.router. |
| 121e00 | 77 69 6c 6c 20 75 73 65 20 61 20 6e 65 74 77 6f 72 6b 20 6f 66 20 31 30 2e 30 2e 30 2e 30 2f 31 | will.use.a.network.of.10.0.0.0/1 |
| 121e20 | 36 2c 20 77 68 69 6c 65 20 74 68 65 20 72 65 6d 6f 74 65 20 68 61 73 20 61 20 6e 65 74 77 6f 72 | 6,.while.the.remote.has.a.networ |
| 121e40 | 6b 20 6f 66 20 31 30 2e 31 2e 30 2e 30 2f 31 36 3a 00 53 74 61 74 69 6f 6e 20 6d 6f 64 65 20 61 | k.of.10.1.0.0/16:.Station.mode.a |
| 121e60 | 63 74 73 20 61 73 20 61 20 57 69 2d 46 69 20 63 6c 69 65 6e 74 20 61 63 63 65 73 73 69 6e 67 20 | cts.as.a.Wi-Fi.client.accessing. |
| 121e80 | 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 72 6f 75 67 68 20 61 6e 20 61 76 61 69 6c 61 62 6c 65 | the.network.through.an.available |
| 121ea0 | 20 57 41 50 00 53 74 61 74 69 6f 6e 20 73 75 70 70 6f 72 74 73 20 72 65 63 65 69 76 69 6e 67 20 | .WAP.Station.supports.receiving. |
| 121ec0 | 56 48 54 20 76 61 72 69 61 6e 74 20 48 54 20 43 6f 6e 74 72 6f 6c 20 66 69 65 6c 64 00 53 74 61 | VHT.variant.HT.Control.field.Sta |
| 121ee0 | 74 75 73 00 53 74 69 63 6b 79 20 43 6f 6e 6e 65 63 74 69 6f 6e 73 00 53 74 6f 72 61 67 65 20 6f | tus.Sticky.Connections.Storage.o |
| 121f00 | 66 20 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 75 73 65 73 20 6d 65 6d 6f 72 79 2e 20 49 66 20 | f.route.updates.uses.memory..If. |
| 121f20 | 79 6f 75 20 65 6e 61 62 6c 65 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | you.enable.soft.reconfiguration. |
| 121f40 | 69 6e 62 6f 75 6e 64 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 6e 65 69 67 68 62 6f 72 73 2c 20 | inbound.for.multiple.neighbors,. |
| 121f60 | 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 6d 65 6d 6f 72 79 20 75 73 65 64 20 63 61 6e 20 62 65 | the.amount.of.memory.used.can.be |
| 121f80 | 63 6f 6d 65 20 73 69 67 6e 69 66 69 63 61 6e 74 2e 00 53 75 66 66 69 78 65 73 00 53 75 6d 6d 61 | come.significant..Suffixes.Summa |
| 121fa0 | 72 69 73 61 74 69 6f 6e 20 73 74 61 72 74 73 20 6f 6e 6c 79 20 61 66 74 65 72 20 74 68 69 73 20 | risation.starts.only.after.this. |
| 121fc0 | 64 65 6c 61 79 20 74 69 6d 65 72 20 65 78 70 69 72 79 2e 00 53 75 70 70 6f 72 74 65 64 20 4d 6f | delay.timer.expiry..Supported.Mo |
| 121fe0 | 64 75 6c 65 73 00 53 75 70 70 6f 72 74 65 64 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 73 65 | dules.Supported.channel.width.se |
| 122000 | 74 2e 00 53 75 70 70 6f 72 74 65 64 20 64 61 65 6d 6f 6e 73 3a 00 53 75 70 70 6f 72 74 65 64 20 | t..Supported.daemons:.Supported. |
| 122020 | 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 73 3a 00 53 75 70 70 6f 72 74 65 64 20 72 65 6d 6f 74 | interface.types:.Supported.remot |
| 122040 | 65 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 46 54 50 2c 20 46 54 50 53 2c 20 48 54 54 50 2c | e.protocols.are.FTP,.FTPS,.HTTP, |
| 122060 | 20 48 54 54 50 53 2c 20 53 43 50 2f 53 46 54 50 20 61 6e 64 20 54 46 54 50 2e 00 53 75 70 70 6f | .HTTPS,.SCP/SFTP.and.TFTP..Suppo |
| 122080 | 72 74 65 64 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 52 49 50 20 61 72 65 3a 00 53 75 70 70 6f 72 | rted.versions.of.RIP.are:.Suppor |
| 1220a0 | 74 73 20 61 73 20 48 45 4c 50 45 52 20 66 6f 72 20 63 6f 6e 66 69 67 75 72 65 64 20 67 72 61 63 | ts.as.HELPER.for.configured.grac |
| 1220c0 | 65 20 70 65 72 69 6f 64 2e 00 53 75 70 70 6f 73 65 20 74 68 65 20 4c 45 46 54 20 72 6f 75 74 65 | e.period..Suppose.the.LEFT.route |
| 1220e0 | 72 20 68 61 73 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 31 39 32 2e 30 2e 32 2e 31 | r.has.external.address.192.0.2.1 |
| 122100 | 30 20 6f 6e 20 69 74 73 20 65 74 68 30 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 74 68 65 | 0.on.its.eth0.interface,.and.the |
| 122120 | 20 52 49 47 48 54 20 72 6f 75 74 65 72 20 69 73 20 32 30 33 2e 30 2e 31 31 33 2e 34 35 00 53 75 | .RIGHT.router.is.203.0.113.45.Su |
| 122140 | 70 70 6f 73 65 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 75 73 65 20 31 30 2e 32 33 2e 31 2e 30 2f | ppose.you.want.to.use.10.23.1.0/ |
| 122160 | 32 34 20 6e 65 74 77 6f 72 6b 20 66 6f 72 20 63 6c 69 65 6e 74 20 74 75 6e 6e 65 6c 20 65 6e 64 | 24.network.for.client.tunnel.end |
| 122180 | 70 6f 69 6e 74 73 20 61 6e 64 20 61 6c 6c 20 63 6c 69 65 6e 74 20 73 75 62 6e 65 74 73 20 62 65 | points.and.all.client.subnets.be |
| 1221a0 | 6c 6f 6e 67 20 74 6f 20 31 30 2e 32 33 2e 30 2e 30 2f 32 30 2e 20 41 6c 6c 20 63 6c 69 65 6e 74 | long.to.10.23.0.0/20..All.client |
| 1221c0 | 73 20 6e 65 65 64 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 31 39 32 2e 31 36 38 2e 30 2e 30 | s.need.access.to.the.192.168.0.0 |
| 1221e0 | 2f 31 36 20 6e 65 74 77 6f 72 6b 2e 00 53 75 70 70 72 65 73 73 20 73 65 6e 64 69 6e 67 20 43 61 | /16.network..Suppress.sending.Ca |
| 122200 | 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 61 73 20 4f 50 45 4e 20 6d 65 73 | pability.Negotiation.as.OPEN.mes |
| 122220 | 73 61 67 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 74 68 65 20 70 | sage.optional.parameter.to.the.p |
| 122240 | 65 65 72 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6f 6e 6c 79 20 61 66 66 65 63 74 73 20 74 | eer..This.command.only.affects.t |
| 122260 | 68 65 20 70 65 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 74 68 65 72 20 74 68 61 6e | he.peer.is.configured.other.than |
| 122280 | 20 49 50 76 34 20 75 6e 69 63 61 73 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 53 75 72 | .IPv4.unicast.configuration..Sur |
| 1222a0 | 69 63 61 74 61 20 46 65 61 74 75 72 65 73 00 53 75 72 69 63 61 74 61 20 61 6e 64 20 56 79 4f 53 | icata.Features.Suricata.and.VyOS |
| 1222c0 | 20 61 72 65 20 70 6f 77 65 72 66 75 6c 20 74 6f 6f 6c 73 20 66 6f 72 20 65 6e 73 75 72 69 6e 67 | .are.powerful.tools.for.ensuring |
| 1222e0 | 20 6e 65 74 77 6f 72 6b 20 73 65 63 75 72 69 74 79 20 61 6e 64 20 74 72 61 66 66 69 63 20 6d 61 | .network.security.and.traffic.ma |
| 122300 | 6e 61 67 65 6d 65 6e 74 2e 20 53 75 72 69 63 61 74 61 20 69 73 20 61 6e 20 6f 70 65 6e 2d 73 6f | nagement..Suricata.is.an.open-so |
| 122320 | 75 72 63 65 20 69 6e 74 72 75 73 69 6f 6e 20 64 65 74 65 63 74 69 6f 6e 20 61 6e 64 20 70 72 65 | urce.intrusion.detection.and.pre |
| 122340 | 76 65 6e 74 69 6f 6e 20 73 79 73 74 65 6d 20 28 49 44 53 2f 49 50 53 29 20 74 68 61 74 20 61 6e | vention.system.(IDS/IPS).that.an |
| 122360 | 61 6c 79 7a 65 73 20 6e 65 74 77 6f 72 6b 20 70 61 63 6b 65 74 73 20 69 6e 20 72 65 61 6c 2d 74 | alyzes.network.packets.in.real-t |
| 122380 | 69 6d 65 2e 00 53 79 6e 61 6d 69 63 20 69 6e 73 74 72 75 63 74 73 20 74 6f 20 66 6f 72 77 61 72 | ime..Synamic.instructs.to.forwar |
| 1223a0 | 64 20 74 6f 20 61 6c 6c 20 70 65 65 72 73 20 77 68 69 63 68 20 77 65 20 68 61 76 65 20 61 20 64 | d.to.all.peers.which.we.have.a.d |
| 1223c0 | 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 74 68 2e 20 41 6c 74 65 72 6e 61 74 69 | irect.connection.with..Alternati |
| 1223e0 | 76 65 6c 79 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 | vely,.you.can.specify.the.direct |
| 122400 | 69 76 65 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 20 66 6f 72 20 65 61 63 68 20 70 72 6f 74 | ive.multiple.times.for.each.prot |
| 122420 | 6f 63 6f 6c 2d 61 64 64 72 65 73 73 20 74 68 65 20 6d 75 6c 74 69 63 61 73 74 20 74 72 61 66 66 | ocol-address.the.multicast.traff |
| 122440 | 69 63 20 73 68 6f 75 6c 64 20 62 65 20 73 65 6e 74 20 74 6f 2e 00 53 79 6e 63 20 67 72 6f 75 70 | ic.should.be.sent.to..Sync.group |
| 122460 | 73 00 53 79 6e 63 68 72 6f 6e 69 7a 65 20 74 68 65 20 74 69 6d 65 2d 7a 6f 6e 65 20 61 6e 64 20 | s.Synchronize.the.time-zone.and. |
| 122480 | 4f 53 50 46 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 52 6f 75 74 65 72 20 41 | OSPF.configuration.from.Router.A |
| 1224a0 | 20 74 6f 20 52 6f 75 74 65 72 20 42 00 53 79 6e 70 72 6f 78 79 00 53 79 6e 70 72 6f 78 79 20 63 | .to.Router.B.Synproxy.Synproxy.c |
| 1224c0 | 6f 6e 6e 65 63 74 69 6f 6e 73 00 53 79 6e 70 72 6f 78 79 20 72 65 6c 69 65 73 20 6f 6e 20 73 79 | onnections.Synproxy.relies.on.sy |
| 1224e0 | 6e 63 6f 6f 6b 69 65 73 20 61 6e 64 20 54 43 50 20 74 69 6d 65 73 74 61 6d 70 73 2c 20 65 6e 73 | ncookies.and.TCP.timestamps,.ens |
| 122500 | 75 72 65 20 74 68 65 73 65 20 61 72 65 20 65 6e 61 62 6c 65 64 00 53 79 6e 74 61 78 20 68 61 73 | ure.these.are.enabled.Syntax.has |
| 122520 | 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 56 79 4f 53 20 31 2e 32 20 28 63 72 75 78 29 20 61 6e | .changed.from.VyOS.1.2.(crux).an |
| 122540 | 64 20 69 74 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6d 69 67 72 61 | d.it.will.be.automatically.migra |
| 122560 | 74 65 64 20 64 75 72 69 6e 67 20 61 6e 20 75 70 67 72 61 64 65 2e 00 53 79 73 63 74 6c 00 53 79 | ted.during.an.upgrade..Sysctl.Sy |
| 122580 | 73 6c 6f 67 00 53 79 73 6c 6f 67 20 73 75 70 70 6f 72 74 73 20 6c 6f 67 67 69 6e 67 20 74 6f 20 | slog.Syslog.supports.logging.to. |
| 1225a0 | 6d 75 6c 74 69 70 6c 65 20 74 61 72 67 65 74 73 2c 20 74 68 6f 73 65 20 74 61 72 67 65 74 73 20 | multiple.targets,.those.targets. |
| 1225c0 | 63 6f 75 6c 64 20 62 65 20 61 20 70 6c 61 69 6e 20 66 69 6c 65 20 6f 6e 20 79 6f 75 72 20 56 79 | could.be.a.plain.file.on.your.Vy |
| 1225e0 | 4f 53 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 69 74 73 65 6c 66 2c 20 61 20 73 65 72 69 61 6c | OS.installation.itself,.a.serial |
| 122600 | 20 63 6f 6e 73 6f 6c 65 20 6f 72 20 61 20 72 65 6d 6f 74 65 20 73 79 73 6c 6f 67 20 73 65 72 76 | .console.or.a.remote.syslog.serv |
| 122620 | 65 72 20 77 68 69 63 68 20 69 73 20 72 65 61 63 68 65 64 20 76 69 61 20 3a 61 62 62 72 3a 60 49 | er.which.is.reached.via.:abbr:`I |
| 122640 | 50 20 28 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 29 60 20 55 44 50 2f 54 43 50 2e 00 | P.(Internet.Protocol)`.UDP/TCP.. |
| 122660 | 53 79 73 6c 6f 67 20 75 73 65 73 20 6c 6f 67 72 6f 74 61 74 65 20 74 6f 20 72 6f 74 61 74 65 20 | Syslog.uses.logrotate.to.rotate. |
| 122680 | 6c 6f 67 66 69 6c 65 73 20 61 66 74 65 72 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 67 69 76 65 73 | logfiles.after.a.number.of.gives |
| 1226a0 | 20 62 79 74 65 73 2e 20 57 65 20 6b 65 65 70 20 61 73 20 6d 61 6e 79 20 61 73 20 60 3c 6e 75 6d | .bytes..We.keep.as.many.as.`<num |
| 1226c0 | 62 65 72 3e 60 20 72 6f 74 61 74 65 64 20 66 69 6c 65 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 | ber>`.rotated.file.before.they.a |
| 1226e0 | 72 65 20 64 65 6c 65 74 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 79 73 6c 6f 67 | re.deleted.on.the.system..Syslog |
| 122700 | 20 75 73 65 73 20 6c 6f 67 72 6f 74 61 74 65 20 74 6f 20 72 6f 74 61 74 65 20 6c 6f 67 69 6c 65 | .uses.logrotate.to.rotate.logile |
| 122720 | 73 20 61 66 74 65 72 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 67 69 76 65 73 20 62 79 74 65 73 2e | s.after.a.number.of.gives.bytes. |
| 122740 | 20 57 65 20 6b 65 65 70 20 61 73 20 6d 61 6e 79 20 61 73 20 60 3c 6e 75 6d 62 65 72 3e 60 20 72 | .We.keep.as.many.as.`<number>`.r |
| 122760 | 6f 74 61 74 65 64 20 66 69 6c 65 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 | otated.file.before.they.are.dele |
| 122780 | 74 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 53 79 73 6c 6f 67 20 77 69 6c 6c 20 77 | ted.on.the.system..Syslog.will.w |
| 1227a0 | 72 69 74 65 20 60 3c 73 69 7a 65 3e 60 20 6b 69 6c 6f 62 79 74 65 73 20 69 6e 74 6f 20 74 68 65 | rite.`<size>`.kilobytes.into.the |
| 1227c0 | 20 66 69 6c 65 20 73 70 65 63 69 66 69 65 64 20 62 79 20 60 3c 66 69 6c 65 6e 61 6d 65 3e 60 2e | .file.specified.by.`<filename>`. |
| 1227e0 | 20 41 66 74 65 72 20 74 68 69 73 20 6c 69 6d 69 74 20 68 61 73 20 62 65 65 6e 20 72 65 61 63 68 | .After.this.limit.has.been.reach |
| 122800 | 65 64 2c 20 74 68 65 20 63 75 73 74 6f 6d 20 66 69 6c 65 20 69 73 20 22 72 6f 74 61 74 65 64 22 | ed,.the.custom.file.is."rotated" |
| 122820 | 20 62 79 20 6c 6f 67 72 6f 74 61 74 65 20 61 6e 64 20 61 20 6e 65 77 20 63 75 73 74 6f 6d 20 66 | .by.logrotate.and.a.new.custom.f |
| 122840 | 69 6c 65 20 69 73 20 63 72 65 61 74 65 64 2e 00 53 79 73 74 65 6d 00 53 79 73 74 65 6d 20 44 4e | ile.is.created..System.System.DN |
| 122860 | 53 00 53 79 73 74 65 6d 20 44 69 73 70 6c 61 79 20 28 4c 43 44 29 00 53 79 73 74 65 6d 20 4e 61 | S.System.Display.(LCD).System.Na |
| 122880 | 6d 65 20 61 6e 64 20 44 65 73 63 72 69 70 74 69 6f 6e 00 53 79 73 74 65 6d 20 50 72 6f 78 79 00 | me.and.Description.System.Proxy. |
| 1228a0 | 53 79 73 74 65 6d 20 57 69 64 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 53 79 73 74 65 6d | System.Wide.configuration.System |
| 1228c0 | 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 28 73 77 69 74 63 68 69 6e 67 2c 20 72 6f 75 74 69 6e | .capabilities.(switching,.routin |
| 1228e0 | 67 2c 20 65 74 63 2e 29 00 53 79 73 74 65 6d 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 6f | g,.etc.).System.configuration.co |
| 122900 | 6d 6d 61 6e 64 73 00 53 79 73 74 65 6d 20 64 61 65 6d 6f 6e 73 00 53 79 73 74 65 6d 20 69 64 65 | mmands.System.daemons.System.ide |
| 122920 | 6e 74 69 66 69 65 72 3a 20 60 60 31 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 20 2d 20 66 6f | ntifier:.``1921.6800.1002``.-.fo |
| 122940 | 72 20 73 79 73 74 65 6d 20 69 64 65 6e 74 69 66 69 65 72 73 20 77 65 20 72 65 63 6f 6d 6d 65 6e | r.system.identifiers.we.recommen |
| 122960 | 64 20 74 6f 20 75 73 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 4d 41 43 20 61 64 64 72 65 | d.to.use.IP.address.or.MAC.addre |
| 122980 | 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 65 20 77 61 79 | ss.of.the.router.itself..The.way |
| 1229a0 | 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 20 74 68 69 73 20 69 73 20 74 6f 20 6b 65 65 70 20 61 6c | .to.construct.this.is.to.keep.al |
| 1229c0 | 6c 20 6f 66 20 74 68 65 20 7a 65 72 6f 65 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 49 50 | l.of.the.zeroes.of.the.router.IP |
| 1229e0 | 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 74 68 65 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 65 | .address,.and.then.change.the.pe |
| 122a00 | 72 69 6f 64 73 20 66 72 6f 6d 20 62 65 69 6e 67 20 65 76 65 72 79 20 74 68 72 65 65 20 6e 75 6d | riods.from.being.every.three.num |
| 122a20 | 62 65 72 73 20 74 6f 20 65 76 65 72 79 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 2e 20 54 68 65 20 | bers.to.every.four.numbers..The. |
| 122a40 | 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 20 6c 69 73 74 65 64 20 68 65 72 65 20 69 73 20 60 | address.that.is.listed.here.is.` |
| 122a60 | 60 31 39 32 2e 31 36 38 2e 31 2e 32 60 60 2c 20 77 68 69 63 68 20 69 66 20 65 78 70 61 6e 64 65 | `192.168.1.2``,.which.if.expande |
| 122a80 | 64 20 77 69 6c 6c 20 74 75 72 6e 20 69 6e 74 6f 20 60 60 31 39 32 2e 31 36 38 2e 30 30 31 2e 30 | d.will.turn.into.``192.168.001.0 |
| 122aa0 | 30 32 60 60 2e 20 54 68 65 6e 20 61 6c 6c 20 6f 6e 65 20 68 61 73 20 74 6f 20 64 6f 20 69 73 20 | 02``..Then.all.one.has.to.do.is. |
| 122ac0 | 6d 6f 76 65 20 74 68 65 20 64 6f 74 73 20 74 6f 20 68 61 76 65 20 66 6f 75 72 20 6e 75 6d 62 65 | move.the.dots.to.have.four.numbe |
| 122ae0 | 72 73 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 72 65 65 2e 20 54 68 69 73 20 67 69 76 65 73 20 | rs.instead.of.three..This.gives. |
| 122b00 | 75 73 20 60 60 31 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 2e 00 53 79 73 74 65 6d 20 69 64 | us.``1921.6800.1002``..System.id |
| 122b20 | 65 6e 74 69 66 69 65 72 3a 20 60 60 31 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 20 2d 20 66 | entifier:.``1921.6800.1002``.-.f |
| 122b40 | 6f 72 20 73 79 73 74 65 6d 20 69 64 65 74 69 66 69 65 72 73 20 77 65 20 72 65 63 6f 6d 6d 65 6e | or.system.idetifiers.we.recommen |
| 122b60 | 64 20 74 6f 20 75 73 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 4d 41 43 20 61 64 64 72 65 | d.to.use.IP.address.or.MAC.addre |
| 122b80 | 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 54 68 65 20 77 61 79 | ss.of.the.router.itself..The.way |
| 122ba0 | 20 74 6f 20 63 6f 6e 73 74 72 75 63 74 20 74 68 69 73 20 69 73 20 74 6f 20 6b 65 65 70 20 61 6c | .to.construct.this.is.to.keep.al |
| 122bc0 | 6c 20 6f 66 20 74 68 65 20 7a 65 72 6f 65 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 20 49 50 | l.of.the.zeroes.of.the.router.IP |
| 122be0 | 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 74 68 65 6e 20 63 68 61 6e 67 65 20 74 68 65 20 70 65 | .address,.and.then.change.the.pe |
| 122c00 | 72 69 6f 64 73 20 66 72 6f 6d 20 62 65 69 6e 67 20 65 76 65 72 79 20 74 68 72 65 65 20 6e 75 6d | riods.from.being.every.three.num |
| 122c20 | 62 65 72 73 20 74 6f 20 65 76 65 72 79 20 66 6f 75 72 20 6e 75 6d 62 65 72 73 2e 20 54 68 65 20 | bers.to.every.four.numbers..The. |
| 122c40 | 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 20 6c 69 73 74 65 64 20 68 65 72 65 20 69 73 20 60 | address.that.is.listed.here.is.` |
| 122c60 | 60 31 39 32 2e 31 36 38 2e 31 2e 32 60 60 2c 20 77 68 69 63 68 20 69 66 20 65 78 70 61 6e 64 65 | `192.168.1.2``,.which.if.expande |
| 122c80 | 64 20 77 69 6c 6c 20 74 75 72 6e 20 69 6e 74 6f 20 60 60 31 39 32 2e 31 36 38 2e 30 30 31 2e 30 | d.will.turn.into.``192.168.001.0 |
| 122ca0 | 30 32 60 60 2e 20 54 68 65 6e 20 61 6c 6c 20 6f 6e 65 20 68 61 73 20 74 6f 20 64 6f 20 69 73 20 | 02``..Then.all.one.has.to.do.is. |
| 122cc0 | 6d 6f 76 65 20 74 68 65 20 64 6f 74 73 20 74 6f 20 68 61 76 65 20 66 6f 75 72 20 6e 75 6d 62 65 | move.the.dots.to.have.four.numbe |
| 122ce0 | 72 73 20 69 6e 73 74 65 61 64 20 6f 66 20 74 68 72 65 65 2e 20 54 68 69 73 20 67 69 76 65 73 20 | rs.instead.of.three..This.gives. |
| 122d00 | 75 73 20 60 60 31 39 32 31 2e 36 38 30 30 2e 31 30 30 32 60 60 2e 00 53 79 73 74 65 6d 20 69 73 | us.``1921.6800.1002``..System.is |
| 122d20 | 20 75 6e 75 73 61 62 6c 65 20 2d 20 61 20 70 61 6e 69 63 20 63 6f 6e 64 69 74 69 6f 6e 00 54 41 | .unusable.-.a.panic.condition.TA |
| 122d40 | 43 41 43 53 20 45 78 61 6d 70 6c 65 00 54 41 43 41 43 53 20 69 73 20 64 65 66 69 6e 65 64 20 69 | CACS.Example.TACACS.is.defined.i |
| 122d60 | 6e 20 3a 72 66 63 3a 60 38 39 30 37 60 2e 00 54 41 43 41 43 53 20 73 65 72 76 65 72 73 20 63 6f | n.:rfc:`8907`..TACACS.servers.co |
| 122d80 | 75 6c 64 20 62 65 20 68 61 72 64 65 6e 65 64 20 62 79 20 6f 6e 6c 79 20 61 6c 6c 6f 77 69 6e 67 | uld.be.hardened.by.only.allowing |
| 122da0 | 20 63 65 72 74 61 69 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 | .certain.IP.addresses.to.connect |
| 122dc0 | 2e 20 41 73 20 6f 66 20 74 68 69 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 | ..As.of.this.the.source.address. |
| 122de0 | 6f 66 20 65 61 63 68 20 54 41 43 41 43 53 20 71 75 65 72 79 20 63 61 6e 20 62 65 20 63 6f 6e 66 | of.each.TACACS.query.can.be.conf |
| 122e00 | 69 67 75 72 65 64 2e 00 54 41 43 41 43 53 2b 00 54 42 44 00 54 43 50 20 26 20 55 44 50 20 73 65 | igured..TACACS+.TBD.TCP.&.UDP.se |
| 122e20 | 72 76 69 63 65 73 20 72 75 6e 6e 69 6e 67 20 69 6e 20 74 68 65 20 64 65 66 61 75 6c 74 20 56 52 | rvices.running.in.the.default.VR |
| 122e40 | 46 20 63 6f 6e 74 65 78 74 20 28 69 65 2e 2c 20 6e 6f 74 20 62 6f 75 6e 64 20 74 6f 20 61 6e 79 | F.context.(ie.,.not.bound.to.any |
| 122e60 | 20 56 52 46 20 64 65 76 69 63 65 29 20 63 61 6e 20 77 6f 72 6b 20 61 63 72 6f 73 73 20 61 6c 6c | .VRF.device).can.work.across.all |
| 122e80 | 20 56 52 46 20 64 6f 6d 61 69 6e 73 20 62 79 20 65 6e 61 62 6c 69 6e 67 20 74 68 69 73 20 6f 70 | .VRF.domains.by.enabling.this.op |
| 122ea0 | 74 69 6f 6e 2e 00 54 43 50 20 63 68 65 63 6b 73 00 54 46 54 50 20 53 65 72 76 65 72 00 54 61 67 | tion..TCP.checks.TFTP.Server.Tag |
| 122ec0 | 20 69 73 20 74 68 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 2e 20 49 66 20 74 | .is.the.optional.parameter..If.t |
| 122ee0 | 61 67 20 63 6f 6e 66 69 67 75 72 65 64 20 53 75 6d 6d 61 72 79 20 72 6f 75 74 65 20 77 69 6c 6c | ag.configured.Summary.route.will |
| 122f00 | 20 62 65 20 6f 72 69 67 69 6e 61 74 65 64 20 77 69 74 68 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | .be.originated.with.the.configur |
| 122f20 | 65 64 20 74 61 67 2e 00 54 61 73 6b 20 53 63 68 65 64 75 6c 65 72 00 54 65 6c 65 67 72 61 66 00 | ed.tag..Task.Scheduler.Telegraf. |
| 122f40 | 54 65 6c 65 67 72 61 66 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 73 65 6e 64 20 6c 6f 67 | Telegraf.can.be.used.to.send.log |
| 122f60 | 73 20 74 6f 20 4c 6f 6b 69 20 75 73 69 6e 67 20 74 61 67 73 20 61 73 20 6c 61 62 65 6c 73 2e 00 | s.to.Loki.using.tags.as.labels.. |
| 122f80 | 54 65 6c 65 67 72 61 66 20 6f 75 74 70 75 74 20 70 6c 75 67 69 6e 20 61 7a 75 72 65 2d 64 61 74 | Telegraf.output.plugin.azure-dat |
| 122fa0 | 61 2d 65 78 70 6c 6f 72 65 72 5f 00 54 65 6c 65 67 72 61 66 20 6f 75 74 70 75 74 20 70 6c 75 67 | a-explorer_.Telegraf.output.plug |
| 122fc0 | 69 6e 20 70 72 6f 6d 65 74 68 65 75 73 2d 63 6c 69 65 6e 74 5f 00 54 65 6c 65 67 72 61 66 20 6f | in.prometheus-client_.Telegraf.o |
| 122fe0 | 75 74 70 75 74 20 70 6c 75 67 69 6e 20 73 70 6c 75 6e 6b 5f 2e 20 48 54 54 50 20 45 76 65 6e 74 | utput.plugin.splunk_..HTTP.Event |
| 123000 | 20 43 6f 6c 6c 65 63 74 6f 72 2e 00 54 65 6c 6c 20 50 49 4d 20 74 68 61 74 20 77 65 20 77 6f 75 | .Collector..Tell.PIM.that.we.wou |
| 123020 | 6c 64 20 6e 6f 74 20 6c 69 6b 65 20 74 6f 20 75 73 65 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 | ld.not.like.to.use.this.interfac |
| 123040 | 65 20 74 6f 20 70 72 6f 63 65 73 73 20 62 6f 6f 74 73 74 72 61 70 20 6d 65 73 73 61 67 65 73 2e | e.to.process.bootstrap.messages. |
| 123060 | 00 54 65 6c 6c 20 50 49 4d 20 74 68 61 74 20 77 65 20 77 6f 75 6c 64 20 6e 6f 74 20 6c 69 6b 65 | .Tell.PIM.that.we.would.not.like |
| 123080 | 20 74 6f 20 75 73 65 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 72 6f 63 65 73 | .to.use.this.interface.to.proces |
| 1230a0 | 73 20 75 6e 69 63 61 73 74 20 62 6f 6f 74 73 74 72 61 70 20 6d 65 73 73 61 67 65 73 2e 00 54 65 | s.unicast.bootstrap.messages..Te |
| 1230c0 | 6c 6c 20 68 6f 73 74 73 20 74 6f 20 75 73 65 20 74 68 65 20 61 64 6d 69 6e 69 73 74 65 72 65 64 | ll.hosts.to.use.the.administered |
| 1230e0 | 20 28 73 74 61 74 65 66 75 6c 29 20 70 72 6f 74 6f 63 6f 6c 20 28 69 2e 65 2e 20 44 48 43 50 29 | .(stateful).protocol.(i.e..DHCP) |
| 123100 | 20 66 6f 72 20 61 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 6f 74 68 65 72 20 | .for.autoconfiguration.of.other. |
| 123120 | 28 6e 6f 6e 2d 61 64 64 72 65 73 73 29 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 54 65 6c 6c 20 68 | (non-address).information.Tell.h |
| 123140 | 6f 73 74 73 20 74 6f 20 75 73 65 20 74 68 65 20 61 64 6d 69 6e 69 73 74 65 72 65 64 20 73 74 61 | osts.to.use.the.administered.sta |
| 123160 | 74 65 66 75 6c 20 70 72 6f 74 6f 63 6f 6c 20 28 69 2e 65 2e 20 44 48 43 50 29 20 66 6f 72 20 61 | teful.protocol.(i.e..DHCP).for.a |
| 123180 | 75 74 6f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 00 54 65 6c 6c 20 74 68 65 20 41 50 20 74 68 61 | utoconfiguration.Tell.the.AP.tha |
| 1231a0 | 74 20 61 6e 74 65 6e 6e 61 20 70 6f 73 69 74 69 6f 6e 73 20 61 72 65 20 66 69 78 65 64 20 61 6e | t.antenna.positions.are.fixed.an |
| 1231c0 | 64 20 77 69 6c 6c 20 6e 6f 74 20 63 68 61 6e 67 65 20 64 75 72 69 6e 67 20 74 68 65 20 6c 69 66 | d.will.not.change.during.the.lif |
| 1231e0 | 65 74 69 6d 65 20 6f 66 20 61 6e 20 61 73 73 6f 63 69 61 74 69 6f 6e 2e 00 54 65 6d 70 6f 72 61 | etime.of.an.association..Tempora |
| 123200 | 72 79 20 64 69 73 61 62 6c 65 20 74 68 69 73 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 54 | ry.disable.this.RADIUS.server..T |
| 123220 | 65 6d 70 6f 72 61 72 79 20 64 69 73 61 62 6c 65 20 74 68 69 73 20 52 41 44 49 55 53 20 73 65 72 | emporary.disable.this.RADIUS.ser |
| 123240 | 76 65 72 2e 20 49 74 20 77 6f 6e 27 74 20 62 65 20 71 75 65 72 69 65 64 2e 00 54 65 6d 70 6f 72 | ver..It.won't.be.queried..Tempor |
| 123260 | 61 72 79 20 64 69 73 61 62 6c 65 20 74 68 69 73 20 54 41 43 41 43 53 20 73 65 72 76 65 72 2e 20 | ary.disable.this.TACACS.server.. |
| 123280 | 49 74 20 77 6f 6e 27 74 20 62 65 20 71 75 65 72 69 65 64 2e 00 54 65 72 6d 69 6e 61 74 65 20 53 | It.won't.be.queried..Terminate.S |
| 1232a0 | 53 4c 00 54 65 73 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 | SL.Test.connecting.given.connect |
| 1232c0 | 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 | ion-oriented.interface..`<interf |
| 1232e0 | 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 70 70 70 6f 65 30 60 60 20 61 73 20 74 68 65 20 65 | ace>`.can.be.``pppoe0``.as.the.e |
| 123300 | 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f | xample..Test.connecting.given.co |
| 123320 | 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 | nnection-oriented.interface..`<i |
| 123340 | 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 73 73 74 70 63 30 60 60 20 61 73 20 | nterface>`.can.be.``sstpc0``.as. |
| 123360 | 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 64 69 73 63 6f 6e 6e 65 63 74 69 6e 67 20 | the.example..Test.disconnecting. |
| 123380 | 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 64 20 69 6e 74 65 72 66 | given.connection-oriented.interf |
| 1233a0 | 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 65 20 60 60 70 70 70 6f | ace..`<interface>`.can.be.``pppo |
| 1233c0 | 65 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 74 20 64 69 73 63 6f 6e | e0``.as.the.example..Test.discon |
| 1233e0 | 6e 65 63 74 69 6e 67 20 67 69 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 6f 72 69 65 6e 74 65 | necting.given.connection-oriente |
| 123400 | 64 20 69 6e 74 65 72 66 61 63 65 2e 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 20 63 61 6e 20 62 | d.interface..`<interface>`.can.b |
| 123420 | 65 20 60 60 73 73 74 70 63 30 60 60 20 61 73 20 74 68 65 20 65 78 61 6d 70 6c 65 2e 00 54 65 73 | e.``sstpc0``.as.the.example..Tes |
| 123440 | 74 20 66 72 6f 6d 20 74 68 65 20 49 50 76 36 20 6f 6e 6c 79 20 63 6c 69 65 6e 74 3a 00 54 65 73 | t.from.the.IPv6.only.client:.Tes |
| 123460 | 74 69 6e 67 20 53 53 54 50 00 54 65 73 74 69 6e 67 20 61 6e 64 20 56 61 6c 69 64 61 74 69 6f 6e | ting.SSTP.Testing.and.Validation |
| 123480 | 00 54 68 61 6e 6b 73 20 74 6f 20 74 68 69 73 20 64 69 73 63 6f 76 65 72 79 2c 20 61 6e 79 20 73 | .Thanks.to.this.discovery,.any.s |
| 1234a0 | 75 62 73 65 71 75 65 6e 74 20 74 72 61 66 66 69 63 20 62 65 74 77 65 65 6e 20 50 43 34 20 61 6e | ubsequent.traffic.between.PC4.an |
| 1234c0 | 64 20 50 43 35 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 75 73 69 6e 67 20 74 68 65 20 6d 75 6c 74 | d.PC5.will.not.be.using.the.mult |
| 1234e0 | 69 63 61 73 74 2d 61 64 64 72 65 73 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 6c 65 61 76 65 73 | icast-address.between.the.leaves |
| 123500 | 20 61 73 20 74 68 65 79 20 62 6f 74 68 20 6b 6e 6f 77 20 62 65 68 69 6e 64 20 77 68 69 63 68 20 | .as.they.both.know.behind.which. |
| 123520 | 4c 65 61 66 20 74 68 65 20 50 43 73 20 61 72 65 20 63 6f 6e 6e 65 63 74 65 64 2e 20 54 68 69 73 | Leaf.the.PCs.are.connected..This |
| 123540 | 20 73 61 76 65 73 20 74 72 61 66 66 69 63 20 61 73 20 6c 65 73 73 20 6d 75 6c 74 69 63 61 73 74 | .saves.traffic.as.less.multicast |
| 123560 | 20 70 61 63 6b 65 74 73 20 73 65 6e 74 20 72 65 64 75 63 65 73 20 74 68 65 20 6c 6f 61 64 20 6f | .packets.sent.reduces.the.load.o |
| 123580 | 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 77 68 69 63 68 20 69 6d 70 72 6f 76 65 73 20 73 63 | n.the.network,.which.improves.sc |
| 1235a0 | 61 6c 61 62 69 6c 69 74 79 20 77 68 65 6e 20 6d 6f 72 65 20 6c 65 61 76 65 73 20 61 72 65 20 61 | alability.when.more.leaves.are.a |
| 1235c0 | 64 64 65 64 2e 00 54 68 61 74 20 69 73 20 68 6f 77 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 | dded..That.is.how.it.is.possible |
| 1235e0 | 20 74 6f 20 64 6f 20 74 68 65 20 73 6f 2d 63 61 6c 6c 65 64 20 22 69 6e 67 72 65 73 73 20 73 68 | .to.do.the.so-called."ingress.sh |
| 123600 | 61 70 69 6e 67 22 2e 00 54 68 61 74 20 6c 6f 6f 6b 73 20 67 6f 6f 64 20 2d 20 77 65 20 64 65 66 | aping"..That.looks.good.-.we.def |
| 123620 | 69 6e 65 64 20 32 20 74 75 6e 6e 65 6c 73 20 61 6e 64 20 74 68 65 79 27 72 65 20 62 6f 74 68 20 | ined.2.tunnels.and.they're.both. |
| 123640 | 75 70 20 61 6e 64 20 72 75 6e 6e 69 6e 67 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 41 53 4e 20 28 | up.and.running..The.:abbr:`ASN.( |
| 123660 | 41 75 74 6f 6e 6f 6d 6f 75 73 20 53 79 73 74 65 6d 20 4e 75 6d 62 65 72 29 60 20 69 73 20 6f 6e | Autonomous.System.Number)`.is.on |
| 123680 | 65 20 6f 66 20 74 68 65 20 65 73 73 65 6e 74 69 61 6c 20 65 6c 65 6d 65 6e 74 73 20 6f 66 20 42 | e.of.the.essential.elements.of.B |
| 1236a0 | 47 50 2e 20 42 47 50 20 69 73 20 61 20 64 69 73 74 61 6e 63 65 20 76 65 63 74 6f 72 20 72 6f 75 | GP..BGP.is.a.distance.vector.rou |
| 1236c0 | 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 2c 20 61 6e 64 20 74 68 65 20 41 53 2d 50 61 74 68 20 66 | ting.protocol,.and.the.AS-Path.f |
| 1236e0 | 72 61 6d 65 77 6f 72 6b 20 70 72 6f 76 69 64 65 73 20 64 69 73 74 61 6e 63 65 20 76 65 63 74 6f | ramework.provides.distance.vecto |
| 123700 | 72 20 6d 65 74 72 69 63 20 61 6e 64 20 6c 6f 6f 70 20 64 65 74 65 63 74 69 6f 6e 20 74 6f 20 42 | r.metric.and.loop.detection.to.B |
| 123720 | 47 50 2e 00 54 68 65 20 3a 61 62 62 72 3a 60 44 4e 50 54 76 36 20 28 44 65 73 74 69 6e 61 74 69 | GP..The.:abbr:`DNPTv6.(Destinati |
| 123740 | 6f 6e 20 49 50 76 36 2d 74 6f 2d 49 50 76 36 20 4e 65 74 77 6f 72 6b 20 50 72 65 66 69 78 20 54 | on.IPv6-to-IPv6.Network.Prefix.T |
| 123760 | 72 61 6e 73 6c 61 74 69 6f 6e 29 60 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 | ranslation)`.destination.address |
| 123780 | 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 66 75 6e 63 74 69 6f 6e 20 69 73 20 75 73 65 64 20 69 6e | .translation.function.is.used.in |
| 1237a0 | 20 73 63 65 6e 61 72 69 6f 73 20 77 68 65 72 65 20 74 68 65 20 73 65 72 76 65 72 20 69 6e 20 74 | .scenarios.where.the.server.in.t |
| 1237c0 | 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 70 72 6f 76 69 64 65 73 20 73 65 72 | he.internal.network.provides.ser |
| 1237e0 | 76 69 63 65 73 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 2c 20 73 | vices.to.the.external.network,.s |
| 123800 | 75 63 68 20 61 73 20 70 72 6f 76 69 64 69 6e 67 20 57 65 62 20 73 65 72 76 69 63 65 73 20 6f 72 | uch.as.providing.Web.services.or |
| 123820 | 20 46 54 50 20 73 65 72 76 69 63 65 73 20 74 6f 20 74 68 65 20 65 78 74 65 72 6e 61 6c 20 6e 65 | .FTP.services.to.the.external.ne |
| 123840 | 74 77 6f 72 6b 2e 20 42 79 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 74 68 65 20 6d 61 70 70 69 6e | twork..By.configuring.the.mappin |
| 123860 | 67 20 72 65 6c 61 74 69 6f 6e 73 68 69 70 20 62 65 74 77 65 65 6e 20 74 68 65 20 69 6e 74 65 72 | g.relationship.between.the.inter |
| 123880 | 6e 61 6c 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 65 78 74 65 72 | nal.server.address.and.the.exter |
| 1238a0 | 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 20 6f 6e 20 74 68 65 20 65 78 74 65 72 | nal.network.address.on.the.exter |
| 1238c0 | 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 73 69 64 65 20 69 6e 74 65 72 66 61 63 65 20 6f 66 20 74 68 | nal.network.side.interface.of.th |
| 1238e0 | 65 20 4e 41 54 36 36 20 64 65 76 69 63 65 2c 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b | e.NAT66.device,.external.network |
| 123900 | 20 75 73 65 72 73 20 63 61 6e 20 61 63 63 65 73 73 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 6e | .users.can.access.the.internal.n |
| 123920 | 65 74 77 6f 72 6b 20 73 65 72 76 65 72 20 74 68 72 6f 75 67 68 20 74 68 65 20 64 65 73 69 67 6e | etwork.server.through.the.design |
| 123940 | 61 74 65 64 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 61 64 64 72 65 73 73 2e 00 54 | ated.external.network.address..T |
| 123960 | 68 65 20 3a 61 62 62 72 3a 60 4d 50 4c 53 20 28 4d 75 6c 74 69 2d 50 72 6f 74 6f 63 6f 6c 20 4c | he.:abbr:`MPLS.(Multi-Protocol.L |
| 123980 | 61 62 65 6c 20 53 77 69 74 63 68 69 6e 67 29 60 20 61 72 63 68 69 74 65 63 74 75 72 65 20 64 6f | abel.Switching)`.architecture.do |
| 1239a0 | 65 73 20 6e 6f 74 20 61 73 73 75 6d 65 20 61 20 73 69 6e 67 6c 65 20 70 72 6f 74 6f 63 6f 6c 20 | es.not.assume.a.single.protocol. |
| 1239c0 | 74 6f 20 63 72 65 61 74 65 20 4d 50 4c 53 20 70 61 74 68 73 2e 20 56 79 4f 53 20 73 75 70 70 6f | to.create.MPLS.paths..VyOS.suppo |
| 1239e0 | 72 74 73 20 74 68 65 20 4c 61 62 65 6c 20 44 69 73 74 72 69 62 75 74 69 6f 6e 20 50 72 6f 74 6f | rts.the.Label.Distribution.Proto |
| 123a00 | 63 6f 6c 20 28 4c 44 50 29 20 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 62 79 20 46 52 52 2c | col.(LDP).as.implemented.by.FRR, |
| 123a20 | 20 62 61 73 65 64 20 6f 6e 20 3a 72 66 63 3a 60 35 30 33 36 60 2e 00 54 68 65 20 3a 61 62 62 72 | .based.on.:rfc:`5036`..The.:abbr |
| 123a40 | 3a 60 57 4c 41 4e 20 28 57 69 72 65 6c 65 73 73 20 4c 41 4e 29 60 20 69 6e 74 65 72 66 61 63 65 | :`WLAN.(Wireless.LAN)`.interface |
| 123a60 | 20 70 72 6f 76 69 64 65 73 20 38 30 32 2e 31 31 20 28 61 2f 62 2f 67 2f 6e 2f 61 63 29 20 77 69 | .provides.802.11.(a/b/g/n/ac).wi |
| 123a80 | 72 65 6c 65 73 73 20 73 75 70 70 6f 72 74 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 | reless.support.(commonly.referre |
| 123aa0 | 64 20 74 6f 20 61 73 20 57 69 2d 46 69 29 20 62 79 20 6d 65 61 6e 73 20 6f 66 20 63 6f 6d 70 61 | d.to.as.Wi-Fi).by.means.of.compa |
| 123ac0 | 74 69 62 6c 65 20 68 61 72 64 77 61 72 65 2e 20 49 66 20 79 6f 75 72 20 68 61 72 64 77 61 72 65 | tible.hardware..If.your.hardware |
| 123ae0 | 20 73 75 70 70 6f 72 74 73 20 69 74 2c 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 | .supports.it,.VyOS.supports.mult |
| 123b00 | 69 70 6c 65 20 6c 6f 67 69 63 61 6c 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 | iple.logical.wireless.interfaces |
| 123b20 | 20 70 65 72 20 70 68 79 73 69 63 61 6c 20 64 65 76 69 63 65 2e 00 54 68 65 20 3a 72 65 66 3a 60 | .per.physical.device..The.:ref:` |
| 123b40 | 73 6f 75 72 63 65 2d 6e 61 74 36 36 60 20 72 75 6c 65 20 72 65 70 6c 61 63 65 73 20 74 68 65 20 | source-nat66`.rule.replaces.the. |
| 123b60 | 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 70 61 63 6b 65 74 20 61 6e 64 | source.address.of.the.packet.and |
| 123b80 | 20 63 61 6c 63 75 6c 61 74 65 73 20 74 68 65 20 63 6f 6e 76 65 72 74 65 64 20 61 64 64 72 65 73 | .calculates.the.converted.addres |
| 123ba0 | 73 20 75 73 69 6e 67 20 74 68 65 20 70 72 65 66 69 78 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 | s.using.the.prefix.specified.in. |
| 123bc0 | 74 68 65 20 72 75 6c 65 2e 00 54 68 65 20 41 52 50 20 6d 6f 6e 69 74 6f 72 20 77 6f 72 6b 73 20 | the.rule..The.ARP.monitor.works. |
| 123be0 | 62 79 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 63 68 65 63 6b 69 6e 67 20 74 68 65 20 73 6c 61 | by.periodically.checking.the.sla |
| 123c00 | 76 65 20 64 65 76 69 63 65 73 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 74 68 65 72 20 | ve.devices.to.determine.whether. |
| 123c20 | 74 68 65 79 20 68 61 76 65 20 73 65 6e 74 20 6f 72 20 72 65 63 65 69 76 65 64 20 74 72 61 66 66 | they.have.sent.or.received.traff |
| 123c40 | 69 63 20 72 65 63 65 6e 74 6c 79 20 28 74 68 65 20 70 72 65 63 69 73 65 20 63 72 69 74 65 72 69 | ic.recently.(the.precise.criteri |
| 123c60 | 61 20 64 65 70 65 6e 64 73 20 75 70 6f 6e 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 6d 6f 64 65 2c | a.depends.upon.the.bonding.mode, |
| 123c80 | 20 61 6e 64 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 74 68 65 20 73 6c 61 76 65 29 2e 20 52 65 | .and.the.state.of.the.slave)..Re |
| 123ca0 | 67 75 6c 61 72 20 74 72 61 66 66 69 63 20 69 73 20 67 65 6e 65 72 61 74 65 64 20 76 69 61 20 41 | gular.traffic.is.generated.via.A |
| 123cc0 | 52 50 20 70 72 6f 62 65 73 20 69 73 73 75 65 64 20 66 6f 72 20 74 68 65 20 61 64 64 72 65 73 73 | RP.probes.issued.for.the.address |
| 123ce0 | 65 73 20 73 70 65 63 69 66 69 65 64 20 62 79 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 61 72 70 | es.specified.by.the.:cfgcmd:`arp |
| 123d00 | 2d 6d 6f 6e 69 74 6f 72 20 74 61 72 67 65 74 60 20 6f 70 74 69 6f 6e 2e 00 54 68 65 20 41 53 50 | -monitor.target`.option..The.ASP |
| 123d20 | 20 68 61 73 20 64 6f 63 75 6d 65 6e 74 65 64 20 74 68 65 69 72 20 49 50 53 65 63 20 72 65 71 75 | .has.documented.their.IPSec.requ |
| 123d40 | 69 72 65 6d 65 6e 74 73 3a 00 54 68 65 20 42 47 50 20 72 6f 75 74 65 72 20 63 61 6e 20 63 6f 6e | irements:.The.BGP.router.can.con |
| 123d60 | 6e 65 63 74 20 74 6f 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 52 50 4b 49 20 63 61 63 68 65 20 73 | nect.to.one.or.more.RPKI.cache.s |
| 123d80 | 65 72 76 65 72 73 20 74 6f 20 72 65 63 65 69 76 65 20 76 61 6c 69 64 61 74 65 64 20 70 72 65 66 | ervers.to.receive.validated.pref |
| 123da0 | 69 78 20 74 6f 20 6f 72 69 67 69 6e 20 41 53 20 6d 61 70 70 69 6e 67 73 2e 20 41 64 76 61 6e 63 | ix.to.origin.AS.mappings..Advanc |
| 123dc0 | 65 64 20 66 61 69 6c 6f 76 65 72 20 63 61 6e 20 62 65 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 62 | ed.failover.can.be.implemented.b |
| 123de0 | 79 20 73 65 72 76 65 72 20 73 6f 63 6b 65 74 73 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 | y.server.sockets.with.different. |
| 123e00 | 70 72 65 66 65 72 65 6e 63 65 20 76 61 6c 75 65 73 2e 00 54 68 65 20 43 4c 49 20 63 6f 6e 66 69 | preference.values..The.CLI.confi |
| 123e20 | 67 75 72 61 74 69 6f 6e 20 69 73 20 73 61 6d 65 20 61 73 20 6d 65 6e 74 69 6f 6e 65 64 20 69 6e | guration.is.same.as.mentioned.in |
| 123e40 | 20 61 62 6f 76 65 20 61 72 74 69 63 6c 65 73 2e 20 54 68 65 20 6f 6e 6c 79 20 64 69 66 66 65 72 | .above.articles..The.only.differ |
| 123e60 | 65 6e 63 65 20 69 73 2c 20 74 68 61 74 20 65 61 63 68 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f | ence.is,.that.each.routing.proto |
| 123e80 | 63 6f 6c 20 75 73 65 64 2c 20 6d 75 73 74 20 62 65 20 70 72 65 66 69 78 65 64 20 77 69 74 68 20 | col.used,.must.be.prefixed.with. |
| 123ea0 | 74 68 65 20 60 76 72 66 20 6e 61 6d 65 20 3c 6e 61 6d 65 3e 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 | the.`vrf.name.<name>`.command..T |
| 123ec0 | 68 65 20 43 4c 4e 53 20 61 64 64 72 65 73 73 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 74 68 65 20 | he.CLNS.address.consists.of.the. |
| 123ee0 | 66 6f 6c 6c 6f 77 69 6e 67 20 70 61 72 74 73 3a 00 54 68 65 20 44 46 20 70 72 65 66 65 72 65 6e | following.parts:.The.DF.preferen |
| 123f00 | 63 65 20 69 73 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 20 70 65 72 2d 45 53 2e 00 54 68 65 20 44 | ce.is.configurable.per-ES..The.D |
| 123f20 | 48 43 50 20 75 6e 69 71 75 65 20 69 64 65 6e 74 69 66 69 65 72 20 28 44 55 49 44 29 20 69 73 20 | HCP.unique.identifier.(DUID).is. |
| 123f40 | 75 73 65 64 20 62 79 20 61 20 63 6c 69 65 6e 74 20 74 6f 20 67 65 74 20 61 6e 20 49 50 20 61 64 | used.by.a.client.to.get.an.IP.ad |
| 123f60 | 64 72 65 73 73 20 66 72 6f 6d 20 61 20 44 48 43 50 76 36 20 73 65 72 76 65 72 2e 20 49 74 20 68 | dress.from.a.DHCPv6.server..It.h |
| 123f80 | 61 73 20 61 20 32 2d 62 79 74 65 20 44 55 49 44 20 74 79 70 65 20 66 69 65 6c 64 2c 20 61 6e 64 | as.a.2-byte.DUID.type.field,.and |
| 123fa0 | 20 61 20 76 61 72 69 61 62 6c 65 2d 6c 65 6e 67 74 68 20 69 64 65 6e 74 69 66 69 65 72 20 66 69 | .a.variable-length.identifier.fi |
| 123fc0 | 65 6c 64 20 75 70 20 74 6f 20 31 32 38 20 62 79 74 65 73 2e 20 49 74 73 20 61 63 74 75 61 6c 20 | eld.up.to.128.bytes..Its.actual. |
| 123fe0 | 6c 65 6e 67 74 68 20 64 65 70 65 6e 64 73 20 6f 6e 20 69 74 73 20 74 79 70 65 2e 20 54 68 65 20 | length.depends.on.its.type..The. |
| 124000 | 73 65 72 76 65 72 20 63 6f 6d 70 61 72 65 73 20 74 68 65 20 44 55 49 44 20 77 69 74 68 20 69 74 | server.compares.the.DUID.with.it |
| 124020 | 73 20 64 61 74 61 62 61 73 65 20 61 6e 64 20 64 65 6c 69 76 65 72 73 20 63 6f 6e 66 69 67 75 72 | s.database.and.delivers.configur |
| 124040 | 61 74 69 6f 6e 20 64 61 74 61 20 28 61 64 64 72 65 73 73 2c 20 6c 65 61 73 65 20 74 69 6d 65 73 | ation.data.(address,.lease.times |
| 124060 | 2c 20 44 4e 53 20 73 65 72 76 65 72 73 2c 20 65 74 63 2e 29 20 74 6f 20 74 68 65 20 63 6c 69 65 | ,.DNS.servers,.etc.).to.the.clie |
| 124080 | 6e 74 2e 00 54 68 65 20 44 4e 20 61 6e 64 20 70 61 73 73 77 6f 72 64 20 74 6f 20 62 69 6e 64 20 | nt..The.DN.and.password.to.bind. |
| 1240a0 | 61 73 20 77 68 69 6c 65 20 70 65 72 66 6f 72 6d 69 6e 67 20 73 65 61 72 63 68 65 73 2e 00 54 68 | as.while.performing.searches..Th |
| 1240c0 | 65 20 44 4e 20 61 6e 64 20 70 61 73 73 77 6f 72 64 20 74 6f 20 62 69 6e 64 20 61 73 20 77 68 69 | e.DN.and.password.to.bind.as.whi |
| 1240e0 | 6c 65 20 70 65 72 66 6f 72 6d 69 6e 67 20 73 65 61 72 63 68 65 73 2e 20 41 73 20 74 68 65 20 70 | le.performing.searches..As.the.p |
| 124100 | 61 73 73 77 6f 72 64 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 69 6e 74 65 64 20 69 6e 20 70 | assword.needs.to.be.printed.in.p |
| 124120 | 6c 61 69 6e 20 74 65 78 74 20 69 6e 20 79 6f 75 72 20 53 71 75 69 64 20 63 6f 6e 66 69 67 75 72 | lain.text.in.your.Squid.configur |
| 124140 | 61 74 69 6f 6e 20 69 74 20 69 73 20 73 74 72 6f 6e 67 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 | ation.it.is.strongly.recommended |
| 124160 | 20 74 6f 20 75 73 65 20 61 20 61 63 63 6f 75 6e 74 20 77 69 74 68 20 6d 69 6e 69 6d 61 6c 20 61 | .to.use.a.account.with.minimal.a |
| 124180 | 73 73 6f 63 69 61 74 65 64 20 70 72 69 76 69 6c 65 67 65 73 2e 20 54 68 69 73 20 74 6f 20 6c 69 | ssociated.privileges..This.to.li |
| 1241a0 | 6d 69 74 20 74 68 65 20 64 61 6d 61 67 65 20 69 6e 20 63 61 73 65 20 73 6f 6d 65 6f 6e 65 20 63 | mit.the.damage.in.case.someone.c |
| 1241c0 | 6f 75 6c 64 20 67 65 74 20 68 6f 6c 64 20 6f 66 20 61 20 63 6f 70 79 20 6f 66 20 79 6f 75 72 20 | ould.get.hold.of.a.copy.of.your. |
| 1241e0 | 53 71 75 69 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 69 6c 65 2e 00 54 68 65 20 46 51 | Squid.configuration.file..The.FQ |
| 124200 | 2d 43 6f 44 65 6c 20 70 6f 6c 69 63 79 20 64 69 73 74 72 69 62 75 74 65 73 20 74 68 65 20 74 72 | -CoDel.policy.distributes.the.tr |
| 124220 | 61 66 66 69 63 20 69 6e 74 6f 20 31 30 32 34 20 46 49 46 4f 20 71 75 65 75 65 73 20 61 6e 64 20 | affic.into.1024.FIFO.queues.and. |
| 124240 | 74 72 69 65 73 20 74 6f 20 70 72 6f 76 69 64 65 20 67 6f 6f 64 20 73 65 72 76 69 63 65 20 62 65 | tries.to.provide.good.service.be |
| 124260 | 74 77 65 65 6e 20 61 6c 6c 20 6f 66 20 74 68 65 6d 2e 20 49 74 20 61 6c 73 6f 20 74 72 69 65 73 | tween.all.of.them..It.also.tries |
| 124280 | 20 74 6f 20 6b 65 65 70 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 61 6c 6c 20 74 68 65 20 71 | .to.keep.the.length.of.all.the.q |
| 1242a0 | 75 65 75 65 73 20 73 68 6f 72 74 2e 00 54 68 65 20 48 54 54 50 20 73 65 72 76 69 63 65 20 6c 69 | ueues.short..The.HTTP.service.li |
| 1242c0 | 73 74 65 6e 20 6f 6e 20 54 43 50 20 70 6f 72 74 20 38 30 2e 00 54 68 65 20 49 50 20 61 64 64 72 | sten.on.TCP.port.80..The.IP.addr |
| 1242e0 | 65 73 73 20 6f 66 20 74 68 65 20 69 6e 74 65 72 6e 61 6c 20 73 79 73 74 65 6d 20 77 65 20 77 69 | ess.of.the.internal.system.we.wi |
| 124300 | 73 68 20 74 6f 20 66 6f 72 77 61 72 64 20 74 72 61 66 66 69 63 20 74 6f 2e 00 54 68 65 20 49 6e | sh.to.forward.traffic.to..The.In |
| 124320 | 74 65 6c 20 41 58 32 30 30 20 63 61 72 64 20 64 6f 65 73 20 6e 6f 74 20 77 6f 72 6b 20 6f 75 74 | tel.AX200.card.does.not.work.out |
| 124340 | 20 6f 66 20 74 68 65 20 62 6f 78 20 69 6e 20 41 50 20 6d 6f 64 65 2c 20 73 65 65 20 68 74 74 70 | .of.the.box.in.AP.mode,.see.http |
| 124360 | 73 3a 2f 2f 75 6e 69 78 2e 73 74 61 63 6b 65 78 63 68 61 6e 67 65 2e 63 6f 6d 2f 71 75 65 73 74 | s://unix.stackexchange.com/quest |
| 124380 | 69 6f 6e 73 2f 35 39 38 32 37 35 2f 69 6e 74 65 6c 2d 61 78 32 30 30 2d 61 70 2d 6d 6f 64 65 2e | ions/598275/intel-ax200-ap-mode. |
| 1243a0 | 20 59 6f 75 20 63 61 6e 20 73 74 69 6c 6c 20 70 75 74 20 74 68 69 73 20 63 61 72 64 20 69 6e 74 | .You.can.still.put.this.card.int |
| 1243c0 | 6f 20 41 50 20 6d 6f 64 65 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f | o.AP.mode.using.the.following.co |
| 1243e0 | 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 65 20 4f 49 44 20 60 60 2e 31 2e 33 2e 36 2e 31 2e | nfiguration:.The.OID.``.1.3.6.1. |
| 124400 | 34 2e 31 2e 38 30 37 32 2e 31 2e 33 2e 32 2e 33 2e 31 2e 31 2e 34 2e 31 31 36 2e 31 30 31 2e 31 | 4.1.8072.1.3.2.3.1.1.4.116.101.1 |
| 124420 | 31 35 2e 31 31 36 60 60 2c 20 6f 6e 63 65 20 63 61 6c 6c 65 64 2c 20 77 69 6c 6c 20 63 6f 6e 74 | 15.116``,.once.called,.will.cont |
| 124440 | 61 69 6e 20 74 68 65 20 6f 75 74 70 75 74 20 6f 66 20 74 68 65 20 65 78 74 65 6e 73 69 6f 6e 2e | ain.the.output.of.the.extension. |
| 124460 | 00 54 68 65 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 20 54 75 6e 6e 65 6c 69 6e 67 20 50 72 | .The.Point-to-Point.Tunneling.Pr |
| 124480 | 6f 74 6f 63 6f 6c 20 28 50 50 54 50 5f 29 20 68 61 73 20 62 65 65 6e 20 69 6d 70 6c 65 6d 65 6e | otocol.(PPTP_).has.been.implemen |
| 1244a0 | 74 65 64 20 69 6e 20 56 79 4f 53 20 6f 6e 6c 79 20 66 6f 72 20 62 61 63 6b 77 61 72 64 73 20 63 | ted.in.VyOS.only.for.backwards.c |
| 1244c0 | 6f 6d 70 61 74 69 62 69 6c 69 74 79 2e 20 50 50 54 50 20 68 61 73 20 6d 61 6e 79 20 77 65 6c 6c | ompatibility..PPTP.has.many.well |
| 1244e0 | 20 6b 6e 6f 77 6e 20 73 65 63 75 72 69 74 79 20 69 73 73 75 65 73 20 61 6e 64 20 79 6f 75 20 73 | .known.security.issues.and.you.s |
| 124500 | 68 6f 75 6c 64 20 75 73 65 20 6f 6e 65 20 6f 66 20 74 68 65 20 6d 61 6e 79 20 6f 74 68 65 72 20 | hould.use.one.of.the.many.other. |
| 124520 | 6e 65 77 20 56 50 4e 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 2e 00 54 68 65 20 50 6f 77 | new.VPN.implementations..The.Pow |
| 124540 | 65 72 44 4e 53 20 72 65 63 75 72 73 6f 72 20 68 61 73 20 35 20 64 69 66 66 65 72 65 6e 74 20 6c | erDNS.recursor.has.5.different.l |
| 124560 | 65 76 65 6c 73 20 6f 66 20 44 4e 53 53 45 43 20 70 72 6f 63 65 73 73 69 6e 67 2c 20 77 68 69 63 | evels.of.DNSSEC.processing,.whic |
| 124580 | 68 20 63 61 6e 20 62 65 20 73 65 74 20 77 69 74 68 20 74 68 65 20 64 6e 73 73 65 63 20 73 65 74 | h.can.be.set.with.the.dnssec.set |
| 1245a0 | 74 69 6e 67 2e 20 49 6e 20 6f 72 64 65 72 20 66 72 6f 6d 20 6c 65 61 73 74 20 74 6f 20 6d 6f 73 | ting..In.order.from.least.to.mos |
| 1245c0 | 74 20 70 72 6f 63 65 73 73 69 6e 67 2c 20 74 68 65 73 65 20 61 72 65 3a 00 54 68 65 20 50 72 65 | t.processing,.these.are:.The.Pre |
| 1245e0 | 63 69 73 69 6f 6e 20 54 69 6d 65 20 50 72 6f 74 6f 63 6f 6c 20 28 49 45 45 45 20 31 35 38 38 29 | cision.Time.Protocol.(IEEE.1588) |
| 124600 | 20 69 73 20 61 20 6c 6f 63 61 6c 20 6e 65 74 77 6f 72 6b 20 74 69 6d 65 20 73 79 6e 63 68 72 6f | .is.a.local.network.time.synchro |
| 124620 | 6e 69 7a 61 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 | nization.protocol.that.provides. |
| 124640 | 68 69 67 68 20 70 72 65 63 69 73 69 6f 6e 20 74 69 6d 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 | high.precision.time.synchronizat |
| 124660 | 69 6f 6e 20 62 79 20 6c 65 76 65 72 61 67 69 6e 67 20 68 61 72 64 77 61 72 65 20 63 6c 6f 63 6b | ion.by.leveraging.hardware.clock |
| 124680 | 73 20 69 6e 20 4e 49 43 73 20 61 6e 64 20 6f 74 68 65 72 20 6e 65 74 77 6f 72 6b 20 65 6c 65 6d | s.in.NICs.and.other.network.elem |
| 1246a0 | 65 6e 74 73 2e 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 63 75 72 72 65 6e 74 6c 79 20 73 75 | ents..VyOS.does.not.currently.su |
| 1246c0 | 70 70 6f 72 74 20 73 74 61 6e 64 61 72 64 73 2d 62 61 73 65 64 20 50 54 50 2c 20 77 68 69 63 68 | pport.standards-based.PTP,.which |
| 1246e0 | 20 63 61 6e 20 62 65 20 64 65 70 6c 6f 79 65 64 20 69 6e 64 65 70 65 6e 64 65 6e 74 6c 79 20 6f | .can.be.deployed.independently.o |
| 124700 | 66 20 4e 54 50 2e 00 54 68 65 20 50 72 69 6f 72 69 74 79 20 51 75 65 75 65 20 69 73 20 61 20 63 | f.NTP..The.Priority.Queue.is.a.c |
| 124720 | 6c 61 73 73 66 75 6c 20 73 63 68 65 64 75 6c 69 6e 67 20 70 6f 6c 69 63 79 2e 20 49 74 20 64 6f | lassful.scheduling.policy..It.do |
| 124740 | 65 73 20 6e 6f 74 20 64 65 6c 61 79 20 70 61 63 6b 65 74 73 20 28 50 72 69 6f 72 69 74 79 20 51 | es.not.delay.packets.(Priority.Q |
| 124760 | 75 65 75 65 20 69 73 20 6e 6f 74 20 61 20 73 68 61 70 69 6e 67 20 70 6f 6c 69 63 79 29 2c 20 69 | ueue.is.not.a.shaping.policy),.i |
| 124780 | 74 20 73 69 6d 70 6c 79 20 64 65 71 75 65 75 65 73 20 70 61 63 6b 65 74 73 20 61 63 63 6f 72 64 | t.simply.dequeues.packets.accord |
| 1247a0 | 69 6e 67 20 74 6f 20 74 68 65 69 72 20 70 72 69 6f 72 69 74 79 2e 00 54 68 65 20 52 41 44 49 55 | ing.to.their.priority..The.RADIU |
| 1247c0 | 53 20 61 63 63 6f 75 6e 74 69 6e 67 20 66 65 61 74 75 72 65 20 6d 75 73 74 20 62 65 20 75 73 65 | S.accounting.feature.must.be.use |
| 1247e0 | 64 20 77 69 74 68 20 74 68 65 20 4f 70 65 6e 43 6f 6e 6e 65 63 74 20 61 75 74 68 65 6e 74 69 63 | d.with.the.OpenConnect.authentic |
| 124800 | 61 74 69 6f 6e 20 6d 6f 64 65 20 52 41 44 49 55 53 2e 20 49 74 20 63 61 6e 6e 6f 74 20 62 65 20 | ation.mode.RADIUS..It.cannot.be. |
| 124820 | 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 | used.with.local.authentication.. |
| 124840 | 59 6f 75 20 6d 75 73 74 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 4f 70 65 6e 43 6f 6e 6e 65 | You.must.configure.the.OpenConne |
| 124860 | 63 74 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 74 6f 20 22 72 61 64 69 75 | ct.authentication.mode.to."radiu |
| 124880 | 73 22 2e 00 54 68 65 20 52 41 44 49 55 53 20 64 69 63 74 69 6f 6e 61 72 69 65 73 20 69 6e 20 56 | s"..The.RADIUS.dictionaries.in.V |
| 1248a0 | 79 4f 53 20 61 72 65 20 6c 6f 63 61 74 65 64 20 61 74 20 60 60 2f 75 73 72 2f 73 68 61 72 65 2f | yOS.are.located.at.``/usr/share/ |
| 1248c0 | 61 63 63 65 6c 2d 70 70 70 2f 72 61 64 69 75 73 2f 60 60 00 54 68 65 20 53 52 20 73 65 67 6d 65 | accel-ppp/radius/``.The.SR.segme |
| 1248e0 | 6e 74 73 20 61 72 65 20 70 6f 72 74 69 6f 6e 73 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 | nts.are.portions.of.the.network. |
| 124900 | 70 61 74 68 20 74 61 6b 65 6e 20 62 79 20 74 68 65 20 70 61 63 6b 65 74 2c 20 61 6e 64 20 61 72 | path.taken.by.the.packet,.and.ar |
| 124920 | 65 20 63 61 6c 6c 65 64 20 53 49 44 73 2e 20 41 74 20 65 61 63 68 20 6e 6f 64 65 2c 20 74 68 65 | e.called.SIDs..At.each.node,.the |
| 124940 | 20 66 69 72 73 74 20 53 49 44 20 6f 66 20 74 68 65 20 6c 69 73 74 20 69 73 20 72 65 61 64 2c 20 | .first.SID.of.the.list.is.read,. |
| 124960 | 65 78 65 63 75 74 65 64 20 61 73 20 61 20 66 6f 72 77 61 72 64 69 6e 67 20 66 75 6e 63 74 69 6f | executed.as.a.forwarding.functio |
| 124980 | 6e 2c 20 61 6e 64 20 6d 61 79 20 62 65 20 70 6f 70 70 65 64 20 74 6f 20 6c 65 74 20 74 68 65 20 | n,.and.may.be.popped.to.let.the. |
| 1249a0 | 6e 65 78 74 20 6e 6f 64 65 20 72 65 61 64 20 74 68 65 20 6e 65 78 74 20 53 49 44 20 6f 66 20 74 | next.node.read.the.next.SID.of.t |
| 1249c0 | 68 65 20 6c 69 73 74 2e 20 54 68 65 20 53 49 44 20 6c 69 73 74 20 63 6f 6d 70 6c 65 74 65 6c 79 | he.list..The.SID.list.completely |
| 1249e0 | 20 64 65 74 65 72 6d 69 6e 65 73 20 74 68 65 20 70 61 74 68 20 77 68 65 72 65 20 74 68 65 20 70 | .determines.the.path.where.the.p |
| 124a00 | 61 63 6b 65 74 20 69 73 20 66 6f 72 77 61 72 64 65 64 2e 00 54 68 65 20 53 68 61 70 65 72 20 70 | acket.is.forwarded..The.Shaper.p |
| 124a20 | 6f 6c 69 63 79 20 64 6f 65 73 20 6e 6f 74 20 67 75 61 72 61 6e 74 65 65 20 61 20 6c 6f 77 20 64 | olicy.does.not.guarantee.a.low.d |
| 124a40 | 65 6c 61 79 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 67 75 61 72 61 6e 74 65 65 20 62 61 6e 64 | elay,.but.it.does.guarantee.band |
| 124a60 | 77 69 64 74 68 20 74 6f 20 64 69 66 66 65 72 65 6e 74 20 74 72 61 66 66 69 63 20 63 6c 61 73 73 | width.to.different.traffic.class |
| 124a80 | 65 73 20 61 6e 64 20 61 6c 73 6f 20 6c 65 74 73 20 79 6f 75 20 64 65 63 69 64 65 20 68 6f 77 20 | es.and.also.lets.you.decide.how. |
| 124aa0 | 74 6f 20 61 6c 6c 6f 63 61 74 65 20 6d 6f 72 65 20 74 72 61 66 66 69 63 20 6f 6e 63 65 20 74 68 | to.allocate.more.traffic.once.th |
| 124ac0 | 65 20 67 75 61 72 61 6e 74 65 65 73 20 61 72 65 20 6d 65 74 2e 00 54 68 65 20 55 44 50 20 70 6f | e.guarantees.are.met..The.UDP.po |
| 124ae0 | 72 74 20 6e 75 6d 62 65 72 20 75 73 65 64 20 62 79 20 79 6f 75 72 20 61 70 6c 6c 69 63 61 74 69 | rt.number.used.by.your.apllicati |
| 124b00 | 6f 6e 2e 20 49 74 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 66 6f 72 20 74 68 69 73 20 6b 69 6e | on..It.is.mandatory.for.this.kin |
| 124b20 | 64 20 6f 66 20 6f 70 65 72 61 74 69 6f 6e 2e 00 54 68 65 20 55 44 50 20 70 6f 72 74 20 6e 75 6d | d.of.operation..The.UDP.port.num |
| 124b40 | 62 65 72 20 75 73 65 64 20 62 79 20 79 6f 75 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 2e 20 49 74 | ber.used.by.your.application..It |
| 124b60 | 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 20 66 6f 72 20 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 6f | .is.mandatory.for.this.kind.of.o |
| 124b80 | 70 65 72 61 74 69 6f 6e 2e 00 54 68 65 20 56 58 4c 41 4e 20 73 70 65 63 69 66 69 63 61 74 69 6f | peration..The.VXLAN.specificatio |
| 124ba0 | 6e 20 77 61 73 20 6f 72 69 67 69 6e 61 6c 6c 79 20 63 72 65 61 74 65 64 20 62 79 20 56 4d 77 61 | n.was.originally.created.by.VMwa |
| 124bc0 | 72 65 2c 20 41 72 69 73 74 61 20 4e 65 74 77 6f 72 6b 73 20 61 6e 64 20 43 69 73 63 6f 2e 20 4f | re,.Arista.Networks.and.Cisco..O |
| 124be0 | 74 68 65 72 20 62 61 63 6b 65 72 73 20 6f 66 20 74 68 65 20 56 58 4c 41 4e 20 74 65 63 68 6e 6f | ther.backers.of.the.VXLAN.techno |
| 124c00 | 6c 6f 67 79 20 69 6e 63 6c 75 64 65 20 48 75 61 77 65 69 2c 20 42 72 6f 61 64 63 6f 6d 2c 20 43 | logy.include.Huawei,.Broadcom,.C |
| 124c20 | 69 74 72 69 78 2c 20 50 69 63 61 38 2c 20 42 69 67 20 53 77 69 74 63 68 20 4e 65 74 77 6f 72 6b | itrix,.Pica8,.Big.Switch.Network |
| 124c40 | 73 2c 20 43 75 6d 75 6c 75 73 20 4e 65 74 77 6f 72 6b 73 2c 20 44 65 6c 6c 20 45 4d 43 2c 20 45 | s,.Cumulus.Networks,.Dell.EMC,.E |
| 124c60 | 72 69 63 73 73 6f 6e 2c 20 4d 65 6c 6c 61 6e 6f 78 2c 20 46 72 65 65 42 53 44 2c 20 4f 70 65 6e | ricsson,.Mellanox,.FreeBSD,.Open |
| 124c80 | 42 53 44 2c 20 52 65 64 20 48 61 74 2c 20 4a 6f 79 65 6e 74 2c 20 61 6e 64 20 4a 75 6e 69 70 65 | BSD,.Red.Hat,.Joyent,.and.Junipe |
| 124ca0 | 72 20 4e 65 74 77 6f 72 6b 73 2e 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 | r.Networks..The.VyOS.DNS.forward |
| 124cc0 | 65 72 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 68 6f 73 | er.can.also.be.configured.to.hos |
| 124ce0 | 74 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 72 65 63 6f 72 64 73 20 66 6f 72 20 61 20 64 6f | t.authoritative.records.for.a.do |
| 124d00 | 6d 61 69 6e 2e 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 64 6f 65 | main..The.VyOS.DNS.forwarder.doe |
| 124d20 | 73 20 6e 6f 74 20 72 65 71 75 69 72 65 20 61 6e 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 | s.not.require.an.upstream.DNS.se |
| 124d40 | 72 76 65 72 2e 20 49 74 20 63 61 6e 20 73 65 72 76 65 20 61 73 20 61 20 66 75 6c 6c 20 72 65 63 | rver..It.can.serve.as.a.full.rec |
| 124d60 | 75 72 73 69 76 65 20 44 4e 53 20 73 65 72 76 65 72 20 2d 20 62 75 74 20 69 74 20 63 61 6e 20 61 | ursive.DNS.server.-.but.it.can.a |
| 124d80 | 6c 73 6f 20 66 6f 72 77 61 72 64 20 71 75 65 72 69 65 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 61 | lso.forward.queries.to.configura |
| 124da0 | 62 6c 65 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 73 2e 20 42 79 20 6e 6f 74 | ble.upstream.DNS.servers..By.not |
| 124dc0 | 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 79 20 75 70 73 74 72 65 61 6d 20 44 4e 53 20 73 65 | .configuring.any.upstream.DNS.se |
| 124de0 | 72 76 65 72 73 20 79 6f 75 20 61 6c 73 6f 20 61 76 6f 69 64 20 62 65 69 6e 67 20 74 72 61 63 6b | rvers.you.also.avoid.being.track |
| 124e00 | 65 64 20 62 79 20 74 68 65 20 70 72 6f 76 69 64 65 72 20 6f 66 20 79 6f 75 72 20 75 70 73 74 72 | ed.by.the.provider.of.your.upstr |
| 124e20 | 65 61 6d 20 44 4e 53 20 73 65 72 76 65 72 2e 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 | eam.DNS.server..The.VyOS.DNS.for |
| 124e40 | 77 61 72 64 65 72 20 77 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 65 70 74 20 6c 6f 6f 6b 75 70 20 72 | warder.will.only.accept.lookup.r |
| 124e60 | 65 71 75 65 73 74 73 20 66 72 6f 6d 20 74 68 65 20 4c 41 4e 20 73 75 62 6e 65 74 73 20 2d 20 31 | equests.from.the.LAN.subnets.-.1 |
| 124e80 | 39 32 2e 31 36 38 2e 31 2e 30 2f 32 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 3a 3a 2f 36 34 00 | 92.168.1.0/24.and.2001:db8::/64. |
| 124ea0 | 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6f 6e 6c 79 | The.VyOS.DNS.forwarder.will.only |
| 124ec0 | 20 6c 69 73 74 65 6e 20 66 6f 72 20 72 65 71 75 65 73 74 73 20 6f 6e 20 74 68 65 20 65 74 68 31 | .listen.for.requests.on.the.eth1 |
| 124ee0 | 20 28 4c 41 4e 29 20 69 6e 74 65 72 66 61 63 65 20 61 64 64 72 65 73 73 65 73 20 2d 20 31 39 32 | .(LAN).interface.addresses.-.192 |
| 124f00 | 2e 31 36 38 2e 31 2e 32 35 34 20 66 6f 72 20 49 50 76 34 20 61 6e 64 20 32 30 30 31 3a 64 62 38 | .168.1.254.for.IPv4.and.2001:db8 |
| 124f20 | 3a 3a 66 66 66 66 20 66 6f 72 20 49 50 76 36 00 54 68 65 20 56 79 4f 53 20 44 4e 53 20 66 6f 72 | ::ffff.for.IPv6.The.VyOS.DNS.for |
| 124f40 | 77 61 72 64 65 72 20 77 69 6c 6c 20 70 61 73 73 20 72 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 73 | warder.will.pass.reverse.lookups |
| 124f60 | 20 66 6f 72 20 20 31 30 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 38 2e 31 39 32 2e 69 | .for..10.in-addr.arpa,.168.192.i |
| 124f80 | 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 2d 33 31 2e 31 37 32 2e 69 6e 2d 61 64 64 72 2e 61 | n-addr.arpa,.16-31.172.in-addr.a |
| 124fa0 | 72 70 61 20 7a 6f 6e 65 73 20 74 6f 20 75 70 73 74 72 65 61 6d 20 73 65 72 76 65 72 2e 00 54 68 | rpa.zones.to.upstream.server..Th |
| 124fc0 | 65 20 56 79 4f 53 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 20 63 61 6e 20 61 6c 73 6f 20 62 65 | e.VyOS.PKI.subsystem.can.also.be |
| 124fe0 | 20 75 73 65 64 20 74 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 72 65 74 72 69 65 76 65 20 | .used.to.automatically.retrieve. |
| 125000 | 43 65 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 74 68 65 20 3a 61 62 62 72 3a 60 41 43 | Certificates.using.the.:abbr:`AC |
| 125020 | 4d 45 20 28 41 75 74 6f 6d 61 74 69 63 20 43 65 72 74 69 66 69 63 61 74 65 20 4d 61 6e 61 67 65 | ME.(Automatic.Certificate.Manage |
| 125040 | 6d 65 6e 74 20 45 6e 76 69 72 6f 6e 6d 65 6e 74 29 60 20 70 72 6f 74 6f 63 6f 6c 2e 00 54 68 65 | ment.Environment)`.protocol..The |
| 125060 | 20 56 79 4f 53 20 63 6f 6e 74 61 69 6e 65 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 69 | .VyOS.container.implementation.i |
| 125080 | 73 20 62 61 73 65 64 20 6f 6e 20 60 50 6f 64 6d 61 6e 20 3c 68 74 74 70 73 3a 2f 2f 70 6f 64 6d | s.based.on.`Podman.<https://podm |
| 1250a0 | 61 6e 2e 69 6f 2f 3e 60 5f 20 61 73 20 61 20 64 65 61 6d 6f 6e 6c 65 73 73 20 63 6f 6e 74 61 69 | an.io/>`_.as.a.deamonless.contai |
| 1250c0 | 6e 65 72 20 65 6e 67 69 6e 65 2e 00 54 68 65 20 56 79 4f 53 20 63 6f 6e 74 61 69 6e 65 72 20 69 | ner.engine..The.VyOS.container.i |
| 1250e0 | 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 20 69 73 20 62 61 73 65 64 20 6f 6e 20 60 50 6f 64 6d 61 | mplementation.is.based.on.`Podma |
| 125100 | 6e 3c 68 74 74 70 73 3a 2f 2f 70 6f 64 6d 61 6e 2e 69 6f 2f 3e 60 20 61 73 20 61 20 64 65 61 6d | n<https://podman.io/>`.as.a.deam |
| 125120 | 6f 6e 6c 65 73 73 20 63 6f 6e 74 61 69 6e 65 72 20 65 6e 67 69 6e 65 2e 00 54 68 65 20 57 41 50 | onless.container.engine..The.WAP |
| 125140 | 20 69 6e 20 74 68 69 73 20 65 78 61 6d 70 6c 65 20 68 61 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 | .in.this.example.has.the.followi |
| 125160 | 6e 67 20 63 68 61 72 61 63 74 65 72 69 73 74 69 63 73 3a 00 54 68 65 20 57 69 72 65 6c 65 73 73 | ng.characteristics:.The.Wireless |
| 125180 | 20 57 69 64 65 2d 41 72 65 61 2d 4e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 70 72 6f | .Wide-Area-Network.interface.pro |
| 1251a0 | 76 69 64 65 73 20 61 63 63 65 73 73 20 28 74 68 72 6f 75 67 68 20 61 20 77 69 72 65 6c 65 73 73 | vides.access.(through.a.wireless |
| 1251c0 | 20 6d 6f 64 65 6d 2f 77 77 61 6e 29 20 74 6f 20 77 69 72 65 6c 65 73 73 20 6e 65 74 77 6f 72 6b | .modem/wwan).to.wireless.network |
| 1251e0 | 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 76 61 72 69 6f 75 73 20 63 65 6c 6c 75 6c 61 72 20 70 | s.provided.by.various.cellular.p |
| 125200 | 72 6f 76 69 64 65 72 73 2e 00 54 68 65 20 60 60 43 44 60 60 2d 62 69 74 20 69 73 20 68 6f 6e 6f | roviders..The.``CD``-bit.is.hono |
| 125220 | 72 65 64 20 63 6f 72 72 65 63 74 6c 79 20 66 6f 72 20 70 72 6f 63 65 73 73 20 61 6e 64 20 76 61 | red.correctly.for.process.and.va |
| 125240 | 6c 69 64 61 74 65 2e 20 46 6f 72 20 6c 6f 67 2d 66 61 69 6c 2c 20 66 61 69 6c 75 72 65 73 20 77 | lidate..For.log-fail,.failures.w |
| 125260 | 69 6c 6c 20 62 65 20 6c 6f 67 67 65 64 20 74 6f 6f 2e 00 54 68 65 20 60 60 61 64 64 72 65 73 73 | ill.be.logged.too..The.``address |
| 125280 | 60 60 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 65 69 74 68 65 72 20 6f 6e 20 74 | ``.can.be.configured.either.on.t |
| 1252a0 | 68 65 20 56 52 52 50 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 6f 6e 20 6e 6f 74 20 56 52 52 50 | he.VRRP.interface.or.on.not.VRRP |
| 1252c0 | 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 60 60 61 64 64 72 65 73 73 60 60 20 70 61 72 61 | .interface..The.``address``.para |
| 1252e0 | 6d 65 74 65 72 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 61 6e 20 49 50 76 34 20 6f 72 20 49 | meter.can.be.either.an.IPv4.or.I |
| 125300 | 50 76 36 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 79 6f 75 20 63 61 6e 20 6e 6f 74 20 6d 69 78 | Pv6.address,.but.you.can.not.mix |
| 125320 | 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 69 6e 20 74 68 65 20 73 61 6d 65 20 67 72 6f 75 70 | .IPv4.and.IPv6.in.the.same.group |
| 125340 | 2c 20 61 6e 64 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 67 72 6f 75 70 73 | ,.and.will.need.to.create.groups |
| 125360 | 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 56 52 49 44 73 20 73 70 65 63 69 61 6c 6c 79 20 | .with.different.VRIDs.specially. |
| 125380 | 66 6f 72 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 20 49 66 20 79 6f 75 20 77 61 6e 74 20 74 | for.IPv4.and.IPv6..If.you.want.t |
| 1253a0 | 6f 20 75 73 65 20 49 50 76 34 20 2b 20 49 50 76 36 20 61 64 64 72 65 73 73 20 79 6f 75 20 63 61 | o.use.IPv4.+.IPv6.address.you.ca |
| 1253c0 | 6e 20 75 73 65 20 6f 70 74 69 6f 6e 20 60 60 65 78 63 6c 75 64 65 64 2d 61 64 64 72 65 73 73 60 | n.use.option.``excluded-address` |
| 1253e0 | 60 00 54 68 65 20 60 60 62 6b 2d 62 72 69 64 67 65 2d 73 73 6c 60 60 20 62 61 63 6b 65 6e 64 20 | `.The.``bk-bridge-ssl``.backend. |
| 125400 | 63 6f 6e 6e 65 63 74 73 20 74 6f 20 73 72 30 31 20 73 65 72 76 65 72 20 6f 6e 20 70 6f 72 74 20 | connects.to.sr01.server.on.port. |
| 125420 | 34 34 33 20 76 69 61 20 48 54 54 50 53 20 61 6e 64 20 63 68 65 63 6b 73 20 62 61 63 6b 65 6e 64 | 443.via.HTTPS.and.checks.backend |
| 125440 | 20 73 65 72 76 65 72 20 68 61 73 20 61 20 76 61 6c 69 64 20 63 65 72 74 69 66 69 63 61 74 65 20 | .server.has.a.valid.certificate. |
| 125460 | 74 72 75 73 74 65 64 20 62 79 20 43 41 20 60 60 63 61 63 65 72 74 60 60 00 54 68 65 20 60 60 68 | trusted.by.CA.``cacert``.The.``h |
| 125480 | 74 74 70 60 60 20 73 65 72 76 69 63 65 20 69 73 20 6c 65 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 | ttp``.service.is.lestens.on.port |
| 1254a0 | 20 38 30 20 61 6e 64 20 66 6f 72 63 65 20 72 65 64 69 72 65 63 74 73 20 66 72 6f 6d 20 48 54 54 | .80.and.force.redirects.from.HTT |
| 1254c0 | 50 20 74 6f 20 48 54 54 50 53 2e 00 54 68 65 20 60 60 68 74 74 70 60 60 20 73 65 72 76 69 63 65 | P.to.HTTPS..The.``http``.service |
| 1254e0 | 20 69 73 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 38 30 20 61 6e 64 20 66 6f 72 63 65 | .is.listens.on.port.80.and.force |
| 125500 | 20 72 65 64 69 72 65 63 74 73 20 66 72 6f 6d 20 48 54 54 50 20 74 6f 20 48 54 54 50 53 2e 00 54 | .redirects.from.HTTP.to.HTTPS..T |
| 125520 | 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 | he.``https``.service.listens.on. |
| 125540 | 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 62 72 69 64 67 | port.443.with.backend.``bk-bridg |
| 125560 | 65 2d 73 73 6c 60 60 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 2e | e-ssl``.to.handle.HTTPS.traffic. |
| 125580 | 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 72 | .It.uses.certificate.named.``cer |
| 1255a0 | 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f 6e 2e 00 54 68 65 20 60 60 68 | t``.for.SSL.termination..The.``h |
| 1255c0 | 74 74 70 73 60 60 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 | ttps``.service.listens.on.port.4 |
| 1255e0 | 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e 64 20 60 60 62 6b 2d 64 65 66 61 75 6c 74 60 60 20 74 | 43.with.backend.``bk-default``.t |
| 125600 | 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 | o.handle.HTTPS.traffic..It.uses. |
| 125620 | 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 | certificate.named.``cert``.for.S |
| 125640 | 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f 6e 2e 00 54 68 65 20 60 60 68 74 74 70 73 60 60 20 73 65 | SL.termination..The.``https``.se |
| 125660 | 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f 72 74 20 34 34 33 20 77 69 74 68 20 62 | rvice.listens.on.port.443.with.b |
| 125680 | 61 63 6b 65 6e 64 20 60 60 62 6b 2d 64 65 66 61 75 6c 74 60 60 20 74 6f 20 68 61 6e 64 6c 65 20 | ackend.``bk-default``.to.handle. |
| 1256a0 | 48 54 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 73 20 63 65 72 74 69 66 69 63 61 | HTTPS.traffic..It.uses.certifica |
| 1256c0 | 74 65 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 20 53 53 4c 20 74 65 72 6d 69 6e | te.named.``cert``.for.SSL.termin |
| 1256e0 | 61 74 69 6f 6e 2e 20 48 53 54 53 20 68 65 61 64 65 72 20 69 73 20 73 65 74 20 77 69 74 68 20 61 | ation..HSTS.header.is.set.with.a |
| 125700 | 20 31 2d 79 65 61 72 20 65 78 70 69 72 79 2c 20 74 6f 20 74 65 6c 6c 20 62 72 6f 77 73 65 72 73 | .1-year.expiry,.to.tell.browsers |
| 125720 | 20 74 6f 20 61 6c 77 61 79 73 20 75 73 65 20 53 53 4c 20 66 6f 72 20 73 69 74 65 2e 00 54 68 65 | .to.always.use.SSL.for.site..The |
| 125740 | 20 60 60 68 74 74 70 73 60 60 20 73 65 72 76 69 63 65 20 6c 69 73 74 65 6e 73 20 6f 6e 20 70 6f | .``https``.service.listens.on.po |
| 125760 | 72 74 20 34 34 33 20 77 69 74 68 20 62 61 63 6b 65 6e 64 20 60 62 6b 2d 64 65 66 61 75 6c 74 60 | rt.443.with.backend.`bk-default` |
| 125780 | 20 74 6f 20 68 61 6e 64 6c 65 20 48 54 54 50 53 20 74 72 61 66 66 69 63 2e 20 49 74 20 75 73 65 | .to.handle.HTTPS.traffic..It.use |
| 1257a0 | 73 20 63 65 72 74 69 66 69 63 61 74 65 20 6e 61 6d 65 64 20 60 60 63 65 72 74 60 60 20 66 6f 72 | s.certificate.named.``cert``.for |
| 1257c0 | 20 53 53 4c 20 74 65 72 6d 69 6e 61 74 69 6f 6e 2e 00 54 68 65 20 60 60 70 65 72 73 69 73 74 65 | .SSL.termination..The.``persiste |
| 1257e0 | 6e 74 2d 74 75 6e 6e 65 6c 60 60 20 64 69 72 65 63 74 69 76 65 20 77 69 6c 6c 20 61 6c 6c 6f 77 | nt-tunnel``.directive.will.allow |
| 125800 | 20 75 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 75 6e 6e 65 6c 2d 72 65 6c 61 74 65 64 20 | .us.to.configure.tunnel-related. |
| 125820 | 61 74 74 72 69 62 75 74 65 73 2c 20 73 75 63 68 20 61 73 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c | attributes,.such.as.firewall.pol |
| 125840 | 69 63 79 20 61 73 20 77 65 20 77 6f 75 6c 64 20 6f 6e 20 61 6e 79 20 6e 6f 72 6d 61 6c 20 6e 65 | icy.as.we.would.on.any.normal.ne |
| 125860 | 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 60 60 73 6f 75 72 63 65 2d 61 64 | twork.interface..The.``source-ad |
| 125880 | 64 72 65 73 73 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 6f 6e | dress``.must.be.configured.on.on |
| 1258a0 | 65 20 6f 66 20 56 79 4f 53 20 69 6e 74 65 72 66 61 63 65 2e 20 42 65 73 74 20 70 72 61 63 74 69 | e.of.VyOS.interface..Best.practi |
| 1258c0 | 63 65 20 77 6f 75 6c 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 64 75 6d 6d 79 20 | ce.would.be.a.loopback.or.dummy. |
| 1258e0 | 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 60 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 | interface..The.``source-address` |
| 125900 | 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 74 68 61 74 20 6f 66 20 | `.must.be.configured.to.that.of. |
| 125920 | 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 20 42 65 73 74 20 70 72 61 63 74 69 63 65 20 77 6f 75 6c | an.interface..Best.practice.woul |
| 125940 | 64 20 62 65 20 61 20 6c 6f 6f 70 62 61 63 6b 20 6f 72 20 64 75 6d 6d 79 20 69 6e 74 65 72 66 61 | d.be.a.loopback.or.dummy.interfa |
| 125960 | 63 65 2e 00 54 68 65 20 60 73 68 6f 77 20 62 72 69 64 67 65 60 20 6f 70 65 72 61 74 69 6f 6e 61 | ce..The.`show.bridge`.operationa |
| 125980 | 6c 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 64 69 73 70 6c 61 79 | l.command.can.be.used.to.display |
| 1259a0 | 20 63 6f 6e 66 69 67 75 72 65 64 20 62 72 69 64 67 65 73 3a 00 54 68 65 20 61 62 6f 76 65 20 64 | .configured.bridges:.The.above.d |
| 1259c0 | 69 72 65 63 74 6f 72 79 20 61 6e 64 20 64 65 66 61 75 6c 74 2d 63 6f 6e 66 69 67 20 6d 75 73 74 | irectory.and.default-config.must |
| 1259e0 | 20 62 65 20 61 20 63 68 69 6c 64 20 64 69 72 65 63 74 6f 72 79 20 6f 66 20 2f 63 6f 6e 66 69 67 | .be.a.child.directory.of./config |
| 125a00 | 2f 61 75 74 68 2c 20 73 69 6e 63 65 20 66 69 6c 65 73 20 6f 75 74 73 69 64 65 20 74 68 69 73 20 | /auth,.since.files.outside.this. |
| 125a20 | 64 69 72 65 63 74 6f 72 79 20 61 72 65 20 6e 6f 74 20 70 65 72 73 69 73 74 65 64 20 61 66 74 65 | directory.are.not.persisted.afte |
| 125a40 | 72 20 61 6e 20 69 6d 61 67 65 20 75 70 67 72 61 64 65 2e 00 54 68 65 20 61 63 74 69 6f 6e 20 63 | r.an.image.upgrade..The.action.c |
| 125a60 | 61 6e 20 62 65 20 3a 00 54 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 52 6f 75 74 65 72 20 42 20 | an.be.:.The.address.of.Router.B. |
| 125a80 | 69 73 20 31 30 2e 30 2e 32 30 2e 31 31 32 20 61 6e 64 20 74 68 65 20 70 6f 72 74 20 75 73 65 64 | is.10.0.20.112.and.the.port.used |
| 125aa0 | 20 69 73 20 38 34 34 33 00 54 68 65 20 61 64 64 72 65 73 73 20 74 68 65 20 73 65 72 76 65 72 20 | .is.8443.The.address.the.server. |
| 125ac0 | 6c 69 73 74 65 6e 73 20 74 6f 20 64 75 72 69 6e 67 20 68 74 74 70 2d 30 31 20 63 68 61 6c 6c 65 | listens.to.during.http-01.challe |
| 125ae0 | 6e 67 65 00 54 68 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 74 68 69 73 20 69 73 20 74 68 61 | nge.The.advantage.of.this.is.tha |
| 125b00 | 74 20 74 68 65 20 72 6f 75 74 65 2d 73 65 6c 65 63 74 69 6f 6e 20 28 61 74 20 74 68 69 73 20 70 | t.the.route-selection.(at.this.p |
| 125b20 | 6f 69 6e 74 29 20 77 69 6c 6c 20 62 65 20 6d 6f 72 65 20 64 65 74 65 72 6d 69 6e 69 73 74 69 63 | oint).will.be.more.deterministic |
| 125b40 | 2e 20 54 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 65 20 69 73 20 74 68 61 74 20 61 20 66 65 77 | ..The.disadvantage.is.that.a.few |
| 125b60 | 20 6f 72 20 65 76 65 6e 20 6f 6e 65 20 6c 6f 77 65 73 74 2d 49 44 20 72 6f 75 74 65 72 20 6d 61 | .or.even.one.lowest-ID.router.ma |
| 125b80 | 79 20 61 74 74 72 61 63 74 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 6f 74 68 65 72 77 69 | y.attract.all.traffic.to.otherwi |
| 125ba0 | 73 65 2d 65 71 75 61 6c 20 70 61 74 68 73 20 62 65 63 61 75 73 65 20 6f 66 20 74 68 69 73 20 63 | se-equal.paths.because.of.this.c |
| 125bc0 | 68 65 63 6b 2e 20 49 74 20 6d 61 79 20 69 6e 63 72 65 61 73 65 20 74 68 65 20 70 6f 73 73 69 62 | heck..It.may.increase.the.possib |
| 125be0 | 69 6c 69 74 79 20 6f 66 20 4d 45 44 20 6f 72 20 49 47 50 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 2c | ility.of.MED.or.IGP.oscillation, |
| 125c00 | 20 75 6e 6c 65 73 73 20 6f 74 68 65 72 20 6d 65 61 73 75 72 65 73 20 77 65 72 65 20 74 61 6b 65 | .unless.other.measures.were.take |
| 125c20 | 6e 20 74 6f 20 61 76 6f 69 64 20 74 68 65 73 65 2e 20 54 68 65 20 65 78 61 63 74 20 62 65 68 61 | n.to.avoid.these..The.exact.beha |
| 125c40 | 76 69 6f 75 72 20 77 69 6c 6c 20 62 65 20 73 65 6e 73 69 74 69 76 65 20 74 6f 20 74 68 65 20 69 | viour.will.be.sensitive.to.the.i |
| 125c60 | 42 47 50 20 61 6e 64 20 72 65 66 6c 65 63 74 69 6f 6e 20 74 6f 70 6f 6c 6f 67 79 2e 00 54 68 65 | BGP.and.reflection.topology..The |
| 125c80 | 20 61 6c 6c 6f 63 61 74 65 64 20 61 64 64 72 65 73 73 20 62 6c 6f 63 6b 20 69 73 20 31 30 30 2e | .allocated.address.block.is.100. |
| 125ca0 | 36 34 2e 30 2e 30 2f 31 30 2e 00 54 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 44 75 70 6c 69 63 61 | 64.0.0/10..The.amount.of.Duplica |
| 125cc0 | 74 65 20 41 64 64 72 65 73 73 20 44 65 74 65 63 74 69 6f 6e 20 70 72 6f 62 65 73 20 74 6f 20 73 | te.Address.Detection.probes.to.s |
| 125ce0 | 65 6e 64 2e 00 54 68 65 20 61 74 74 72 69 62 75 74 65 73 20 3a 63 66 67 63 6d 64 3a 60 70 72 65 | end..The.attributes.:cfgcmd:`pre |
| 125d00 | 66 69 78 2d 6c 69 73 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 64 69 73 74 72 69 62 75 74 | fix-list`.and.:cfgcmd:`distribut |
| 125d20 | 65 2d 6c 69 73 74 60 20 61 72 65 20 6d 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 73 69 76 65 2c 20 | e-list`.are.mutually.exclusive,. |
| 125d40 | 61 6e 64 20 6f 6e 6c 79 20 6f 6e 65 20 63 6f 6d 6d 61 6e 64 20 28 64 69 73 74 72 69 62 75 74 65 | and.only.one.command.(distribute |
| 125d60 | 2d 6c 69 73 74 20 6f 72 20 70 72 65 66 69 78 2d 6c 69 73 74 29 20 63 61 6e 20 62 65 20 61 70 70 | -list.or.prefix-list).can.be.app |
| 125d80 | 6c 69 65 64 20 74 6f 20 65 61 63 68 20 69 6e 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e 64 | lied.to.each.inbound.or.outbound |
| 125da0 | 20 64 69 72 65 63 74 69 6f 6e 20 66 6f 72 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 69 67 | .direction.for.a.particular.neig |
| 125dc0 | 68 62 6f 72 2e 00 54 68 65 20 61 76 61 69 6c 61 62 6c 65 20 6d 6f 64 65 73 20 61 72 65 3a 00 54 | hbor..The.available.modes.are:.T |
| 125de0 | 68 65 20 61 76 61 69 6c 61 62 6c 65 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 3c 6d 61 74 63 68 3e | he.available.options.for.<match> |
| 125e00 | 20 61 72 65 3a 00 54 68 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 | .are:.The.base.chain.for.traffic |
| 125e20 | 20 74 6f 77 61 72 64 73 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 | .towards.the.router.is.``set.fir |
| 125e40 | 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 54 68 | ewall.ipv4.input.filter....``.Th |
| 125e60 | 65 20 62 61 73 65 20 63 68 61 69 6e 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 77 61 72 64 73 | e.base.chain.for.traffic.towards |
| 125e80 | 20 74 68 65 20 72 6f 75 74 65 72 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 | .the.router.is.``set.firewall.ip |
| 125ea0 | 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 00 54 68 65 20 62 61 73 65 20 66 | v6.input.filter....``.The.base.f |
| 125ec0 | 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 6c 74 65 | irewall.chain.to.configure.filte |
| 125ee0 | 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 | ring.rules.for.transit.traffic.i |
| 125f00 | 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 | s.``set.firewall.ipv4.forward.fi |
| 125f20 | 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 | lter....``,.which.happens.in.sta |
| 125f40 | 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 69 6e 20 74 68 65 20 63 6f 6c 6f 72 20 72 | ge.5,.highlighted.in.the.color.r |
| 125f60 | 65 64 2e 00 54 68 65 20 62 61 73 65 20 66 69 72 65 77 61 6c 6c 20 63 68 61 69 6e 20 74 6f 20 63 | ed..The.base.firewall.chain.to.c |
| 125f80 | 6f 6e 66 69 67 75 72 65 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 | onfigure.filtering.rules.for.tra |
| 125fa0 | 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | nsit.traffic.is.``set.firewall.i |
| 125fc0 | 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 | pv6.forward.filter....``,.which. |
| 125fe0 | 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 | happens.in.stage.5,.highlighted. |
| 126000 | 69 6e 20 74 68 65 20 63 6f 6c 6f 72 20 72 65 64 2e 00 54 68 65 20 62 65 6c 6f 77 20 72 65 66 65 | in.the.color.red..The.below.refe |
| 126020 | 72 65 6e 63 65 64 20 49 50 20 61 64 64 72 65 73 73 20 60 31 39 32 2e 30 2e 32 2e 31 60 20 69 73 | renced.IP.address.`192.0.2.1`.is |
| 126040 | 20 75 73 65 64 20 61 73 20 65 78 61 6d 70 6c 65 20 61 64 64 72 65 73 73 20 72 65 70 72 65 73 65 | .used.as.example.address.represe |
| 126060 | 6e 74 69 6e 67 20 61 20 67 6c 6f 62 61 6c 20 75 6e 69 63 61 73 74 20 61 64 64 72 65 73 73 20 75 | nting.a.global.unicast.address.u |
| 126080 | 6e 64 65 72 20 77 68 69 63 68 20 74 68 65 20 48 55 42 20 63 61 6e 20 62 65 20 63 6f 6e 74 61 63 | nder.which.the.HUB.can.be.contac |
| 1260a0 | 74 65 64 20 62 79 20 65 61 63 68 20 61 6e 64 20 65 76 65 72 79 20 69 6e 64 69 76 69 64 75 61 6c | ted.by.each.and.every.individual |
| 1260c0 | 20 73 70 6f 6b 65 2e 00 54 68 65 20 62 6f 6e 64 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 70 72 | .spoke..The.bonding.interface.pr |
| 1260e0 | 6f 76 69 64 65 73 20 61 20 6d 65 74 68 6f 64 20 66 6f 72 20 61 67 67 72 65 67 61 74 69 6e 67 20 | ovides.a.method.for.aggregating. |
| 126100 | 6d 75 6c 74 69 70 6c 65 20 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 74 6f | multiple.network.interfaces.into |
| 126120 | 20 61 20 73 69 6e 67 6c 65 20 6c 6f 67 69 63 61 6c 20 22 62 6f 6e 64 65 64 22 20 69 6e 74 65 72 | .a.single.logical."bonded".inter |
| 126140 | 66 61 63 65 2c 20 6f 72 20 4c 41 47 2c 20 6f 72 20 65 74 68 65 72 2d 63 68 61 6e 6e 65 6c 2c 20 | face,.or.LAG,.or.ether-channel,. |
| 126160 | 6f 72 20 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 2e 20 54 68 65 20 62 65 68 61 76 69 6f 72 20 6f 66 | or.port-channel..The.behavior.of |
| 126180 | 20 74 68 65 20 62 6f 6e 64 65 64 20 69 6e 74 65 72 66 61 63 65 73 20 64 65 70 65 6e 64 73 20 75 | .the.bonded.interfaces.depends.u |
| 1261a0 | 70 6f 6e 20 74 68 65 20 6d 6f 64 65 3b 20 67 65 6e 65 72 61 6c 6c 79 20 73 70 65 61 6b 69 6e 67 | pon.the.mode;.generally.speaking |
| 1261c0 | 2c 20 6d 6f 64 65 73 20 70 72 6f 76 69 64 65 20 65 69 74 68 65 72 20 68 6f 74 20 73 74 61 6e 64 | ,.modes.provide.either.hot.stand |
| 1261e0 | 62 79 20 6f 72 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 73 65 72 76 69 63 65 73 2e 20 41 | by.or.load.balancing.services..A |
| 126200 | 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 6c 69 6e 6b 20 69 6e 74 65 67 72 69 74 79 20 6d 6f 6e 69 | dditionally,.link.integrity.moni |
| 126220 | 74 6f 72 69 6e 67 20 6d 61 79 20 62 65 20 70 65 72 66 6f 72 6d 65 64 2e 00 54 68 65 20 63 61 73 | toring.may.be.performed..The.cas |
| 126240 | 65 20 6f 66 20 69 6e 67 72 65 73 73 20 73 68 61 70 69 6e 67 00 54 68 65 20 63 68 72 6f 6e 79 20 | e.of.ingress.shaping.The.chrony. |
| 126260 | 64 61 65 6d 6f 6e 20 6f 6e 20 56 79 4f 53 20 63 61 6e 20 6c 65 76 65 72 61 67 65 20 4e 49 43 20 | daemon.on.VyOS.can.leverage.NIC. |
| 126280 | 68 61 72 64 77 61 72 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 74 6f 20 72 65 63 6f 72 64 20 | hardware.capabilities.to.record. |
| 1262a0 | 74 68 65 20 65 78 61 63 74 20 74 69 6d 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 72 65 63 65 69 | the.exact.time.packets.are.recei |
| 1262c0 | 76 65 64 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2c 20 61 73 20 77 65 6c 6c 20 61 73 | ved.on.the.interface,.as.well.as |
| 1262e0 | 20 77 68 65 6e 20 70 61 63 6b 65 74 73 20 77 65 72 65 20 61 63 74 75 61 6c 6c 79 20 74 72 61 6e | .when.packets.were.actually.tran |
| 126300 | 73 6d 69 74 74 65 64 2e 20 54 68 69 73 20 70 72 6f 76 69 64 65 73 20 69 6d 70 72 6f 76 65 64 20 | smitted..This.provides.improved. |
| 126320 | 61 63 63 75 72 61 63 79 20 61 6e 64 20 73 74 61 62 69 6c 69 74 79 20 77 68 65 6e 20 74 68 65 20 | accuracy.and.stability.when.the. |
| 126340 | 73 79 73 74 65 6d 20 69 73 20 75 6e 64 65 72 20 6c 6f 61 64 2c 20 61 73 20 71 75 65 75 69 6e 67 | system.is.under.load,.as.queuing |
| 126360 | 20 61 6e 64 20 4f 53 20 63 6f 6e 74 65 78 74 20 73 77 69 74 63 68 69 6e 67 20 63 61 6e 20 69 6e | .and.OS.context.switching.can.in |
| 126380 | 74 72 6f 64 75 63 65 20 61 20 76 61 72 69 61 62 6c 65 20 64 65 6c 61 79 20 62 65 74 77 65 65 6e | troduce.a.variable.delay.between |
| 1263a0 | 20 77 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 | .when.the.packet.is.received.on. |
| 1263c0 | 74 68 65 20 6e 65 74 77 6f 72 6b 20 61 6e 64 20 77 68 65 6e 20 69 74 20 69 73 20 61 63 74 75 61 | the.network.and.when.it.is.actua |
| 1263e0 | 6c 6c 79 20 70 72 6f 63 65 73 73 65 64 20 62 79 20 74 68 65 20 4e 54 50 20 64 61 65 6d 6f 6e 2e | lly.processed.by.the.NTP.daemon. |
| 126400 | 00 54 68 65 20 63 6c 69 65 6e 74 27 73 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 70 | .The.client's.interface.can.be.p |
| 126420 | 75 74 20 69 6e 74 6f 20 61 20 56 52 46 20 63 6f 6e 74 65 78 74 20 76 69 61 20 61 20 52 41 44 49 | ut.into.a.VRF.context.via.a.RADI |
| 126440 | 55 53 20 41 63 63 65 73 73 2d 41 63 63 65 70 74 20 70 61 63 6b 65 74 2c 20 6f 72 20 63 68 61 6e | US.Access-Accept.packet,.or.chan |
| 126460 | 67 65 64 20 76 69 61 20 52 41 44 49 55 53 20 43 6f 41 2e 20 60 60 41 63 63 65 6c 2d 56 52 46 2d | ged.via.RADIUS.CoA..``Accel-VRF- |
| 126480 | 4e 61 6d 65 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 73 65 20 70 75 72 70 6f 73 65 | Name``.is.used.for.these.purpose |
| 1264a0 | 73 2e 20 54 68 69 73 20 69 73 20 61 20 63 75 73 74 6f 6d 20 60 41 43 43 45 4c 2d 50 50 50 20 61 | s..This.is.a.custom.`ACCEL-PPP.a |
| 1264c0 | 74 74 72 69 62 75 74 65 60 5f 2e 20 44 65 66 69 6e 65 20 69 74 20 69 6e 20 79 6f 75 72 20 52 41 | ttribute`_..Define.it.in.your.RA |
| 1264e0 | 44 49 55 53 20 73 65 72 76 65 72 2e 00 54 68 65 20 63 6c 69 65 6e 74 2c 20 6f 6e 63 65 20 73 75 | DIUS.server..The.client,.once.su |
| 126500 | 63 63 65 73 73 66 75 6c 6c 79 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2c 20 77 69 6c 6c 20 72 | ccessfully.authenticated,.will.r |
| 126520 | 65 63 65 69 76 65 20 61 6e 20 49 50 76 34 20 61 6e 64 20 61 6e 20 49 50 76 36 20 2f 36 34 20 61 | eceive.an.IPv4.and.an.IPv6./64.a |
| 126540 | 64 64 72 65 73 73 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e | ddress.to.terminate.the.PPPoE.en |
| 126560 | 64 70 6f 69 6e 74 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 69 64 65 20 61 6e 64 20 61 20 | dpoint.on.the.client.side.and.a. |
| 126580 | 2f 35 36 20 73 75 62 6e 65 74 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 72 | /56.subnet.for.the.clients.inter |
| 1265a0 | 6e 61 6c 20 75 73 65 2e 00 54 68 65 20 63 6c 69 65 6e 74 2c 20 6f 6e 63 65 20 73 75 63 63 65 73 | nal.use..The.client,.once.succes |
| 1265c0 | 73 66 75 6c 6c 79 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2c 20 77 69 6c 6c 20 72 65 63 65 69 | sfully.authenticated,.will.recei |
| 1265e0 | 76 65 20 61 6e 20 49 50 76 34 20 61 6e 64 20 61 6e 20 49 50 76 36 20 2f 36 34 20 61 64 64 72 65 | ve.an.IPv4.and.an.IPv6./64.addre |
| 126600 | 73 73 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 70 70 70 6f 65 20 65 6e 64 70 6f 69 | ss.to.terminate.the.pppoe.endpoi |
| 126620 | 6e 74 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 69 64 65 20 61 6e 64 20 61 20 2f 35 36 20 | nt.on.the.client.side.and.a./56. |
| 126640 | 73 75 62 6e 65 74 20 66 6f 72 20 74 68 65 20 63 6c 69 65 6e 74 73 20 69 6e 74 65 72 6e 61 6c 20 | subnet.for.the.clients.internal. |
| 126660 | 75 73 65 2e 00 54 68 65 20 63 6c 69 65 6e 74 73 20 3a 61 62 62 72 3a 60 43 50 45 20 28 43 75 73 | use..The.clients.:abbr:`CPE.(Cus |
| 126680 | 74 6f 6d 65 72 20 50 72 65 6d 69 73 65 73 20 45 71 75 69 70 6d 65 6e 74 29 60 20 63 61 6e 20 6e | tomer.Premises.Equipment)`.can.n |
| 1266a0 | 6f 77 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 76 69 61 20 49 50 76 34 20 6f 72 20 49 50 76 36 2e | ow.communicate.via.IPv4.or.IPv6. |
| 1266c0 | 20 41 6c 6c 20 64 65 76 69 63 65 73 20 62 65 68 69 6e 64 20 60 60 32 30 30 31 3a 64 62 38 3a 3a | .All.devices.behind.``2001:db8:: |
| 1266e0 | 61 30 30 3a 32 37 66 66 3a 66 65 32 66 3a 64 38 30 36 2f 36 34 60 60 20 63 61 6e 20 75 73 65 20 | a00:27ff:fe2f:d806/64``.can.use. |
| 126700 | 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 20 60 60 32 30 30 31 3a 64 62 38 3a 31 3a 3a 2f 35 36 | addresses.from.``2001:db8:1::/56 |
| 126720 | 60 60 20 61 6e 64 20 63 61 6e 20 67 6c 6f 62 61 6c 6c 79 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 | ``.and.can.globally.communicate. |
| 126740 | 77 69 74 68 6f 75 74 20 74 68 65 20 6e 65 65 64 20 6f 66 20 61 6e 79 20 4e 41 54 20 72 75 6c 65 | without.the.need.of.any.NAT.rule |
| 126760 | 73 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 3a 6f 70 63 6d 64 3a 60 73 68 6f 77 20 69 6e 74 65 | s..The.command.:opcmd:`show.inte |
| 126780 | 72 66 61 63 65 73 20 77 69 72 65 67 75 61 72 64 20 77 67 30 31 20 70 75 62 6c 69 63 2d 6b 65 79 | rfaces.wireguard.wg01.public-key |
| 1267a0 | 60 20 77 69 6c 6c 20 74 68 65 6e 20 73 68 6f 77 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 2c | `.will.then.show.the.public.key, |
| 1267c0 | 20 77 68 69 63 68 20 6e 65 65 64 73 20 74 6f 20 62 65 20 73 68 61 72 65 64 20 77 69 74 68 20 74 | .which.needs.to.be.shared.with.t |
| 1267e0 | 68 65 20 70 65 65 72 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 67 65 6e 65 72 61 | he.peer..The.command.also.genera |
| 126800 | 74 65 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 6e 69 70 70 65 64 20 77 68 69 63 | tes.a.configuration.snipped.whic |
| 126820 | 68 20 63 61 6e 20 62 65 20 63 6f 70 79 2f 70 61 73 74 65 64 20 69 6e 74 6f 20 74 68 65 20 56 79 | h.can.be.copy/pasted.into.the.Vy |
| 126840 | 4f 53 20 43 4c 49 20 69 66 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 75 70 70 6c 69 65 64 20 60 | OS.CLI.if.needed..The.supplied.` |
| 126860 | 60 3c 6e 61 6d 65 3e 60 60 20 6f 6e 20 74 68 65 20 43 4c 49 20 77 69 6c 6c 20 62 65 63 6f 6d 65 | `<name>``.on.the.CLI.will.become |
| 126880 | 20 74 68 65 20 70 65 65 72 20 6e 61 6d 65 20 69 6e 20 74 68 65 20 73 6e 69 70 70 65 74 2e 00 54 | .the.peer.name.in.the.snippet..T |
| 1268a0 | 68 65 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 67 65 6e 65 72 61 74 65 73 20 61 20 63 6f 6e 66 | he.command.also.generates.a.conf |
| 1268c0 | 69 67 75 72 61 74 69 6f 6e 20 73 6e 69 70 70 65 74 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 63 | iguration.snippet.which.can.be.c |
| 1268e0 | 6f 70 79 2f 70 61 73 74 65 64 20 69 6e 74 6f 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 69 66 20 | opy/pasted.into.the.VyOS.CLI.if. |
| 126900 | 6e 65 65 64 65 64 2e 20 54 68 65 20 73 75 70 70 6c 69 65 64 20 60 60 3c 6e 61 6d 65 3e 60 60 20 | needed..The.supplied.``<name>``. |
| 126920 | 6f 6e 20 74 68 65 20 43 4c 49 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 74 68 65 20 70 65 65 72 20 | on.the.CLI.will.become.the.peer. |
| 126940 | 6e 61 6d 65 20 69 6e 20 74 68 65 20 73 6e 69 70 70 65 74 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 | name.in.the.snippet..The.command |
| 126960 | 20 62 65 6c 6f 77 20 65 6e 61 62 6c 65 73 20 69 74 2c 20 61 73 73 75 6d 69 6e 67 20 74 68 65 20 | .below.enables.it,.assuming.the. |
| 126980 | 52 41 44 49 55 53 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 68 61 73 20 62 65 65 6e 20 73 65 74 75 70 | RADIUS.connection.has.been.setup |
| 1269a0 | 20 61 6e 64 20 69 73 20 77 6f 72 6b 69 6e 67 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 64 69 73 | .and.is.working..The.command.dis |
| 1269c0 | 70 6c 61 79 73 20 63 75 72 72 65 6e 74 20 52 49 50 20 73 74 61 74 75 73 2e 20 49 74 20 69 6e 63 | plays.current.RIP.status..It.inc |
| 1269e0 | 6c 75 64 65 73 20 52 49 50 20 74 69 6d 65 72 2c 20 66 69 6c 74 65 72 69 6e 67 2c 20 76 65 72 73 | ludes.RIP.timer,.filtering,.vers |
| 126a00 | 69 6f 6e 2c 20 52 49 50 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 52 | ion,.RIP.enabled.interface.and.R |
| 126a20 | 49 50 20 70 65 65 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 | IP.peer.information..The.command |
| 126a40 | 20 70 6f 6e 20 54 45 53 54 55 4e 4e 45 4c 20 65 73 74 61 62 6c 69 73 68 65 73 20 74 68 65 20 50 | .pon.TESTUNNEL.establishes.the.P |
| 126a60 | 50 54 50 20 74 75 6e 6e 65 6c 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 73 79 73 74 65 6d 2e | PTP.tunnel.to.the.remote.system. |
| 126a80 | 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 20 22 2d 2d 63 70 | .The.command.translates.to."--cp |
| 126aa0 | 75 73 3d 3c 6e 75 6d 3e 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 69 73 20 | us=<num>".when.the.container.is. |
| 126ac0 | 63 72 65 61 74 65 64 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 6c 61 74 65 73 20 | created..The.command.translates. |
| 126ae0 | 74 6f 20 22 2d 2d 6e 65 74 20 68 6f 73 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e | to."--net.host".when.the.contain |
| 126b00 | 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 54 68 65 20 63 6f 6d 6d 61 6e 64 20 74 72 61 6e 73 | er.is.created..The.command.trans |
| 126b20 | 6c 61 74 65 73 20 74 6f 20 22 2d 2d 70 69 64 20 68 6f 73 74 22 20 77 68 65 6e 20 74 68 65 20 63 | lates.to."--pid.host".when.the.c |
| 126b40 | 6f 6e 74 61 69 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 2e 00 54 68 65 20 63 6f 6d 70 75 74 65 | ontainer.is.created..The.compute |
| 126b60 | 72 73 20 6f 6e 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 20 63 61 6e 20 75 73 | rs.on.an.internal.network.can.us |
| 126b80 | 65 20 61 6e 79 20 6f 66 20 74 68 65 20 61 64 64 72 65 73 73 65 73 20 73 65 74 20 61 73 69 64 65 | e.any.of.the.addresses.set.aside |
| 126ba0 | 20 62 79 20 74 68 65 20 3a 61 62 62 72 3a 60 49 41 4e 41 20 28 49 6e 74 65 72 6e 65 74 20 41 73 | .by.the.:abbr:`IANA.(Internet.As |
| 126bc0 | 73 69 67 6e 65 64 20 4e 75 6d 62 65 72 73 20 41 75 74 68 6f 72 69 74 79 29 60 20 66 6f 72 20 70 | signed.Numbers.Authority)`.for.p |
| 126be0 | 72 69 76 61 74 65 20 61 64 64 72 65 73 73 69 6e 67 20 28 73 65 65 20 3a 72 66 63 3a 60 31 39 31 | rivate.addressing.(see.:rfc:`191 |
| 126c00 | 38 60 29 2e 20 54 68 65 73 65 20 72 65 73 65 72 76 65 64 20 49 50 20 61 64 64 72 65 73 73 65 73 | 8`)..These.reserved.IP.addresses |
| 126c20 | 20 61 72 65 20 6e 6f 74 20 69 6e 20 75 73 65 20 6f 6e 20 74 68 65 20 49 6e 74 65 72 6e 65 74 2c | .are.not.in.use.on.the.Internet, |
| 126c40 | 20 73 6f 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 6d 61 63 68 69 6e 65 20 77 69 6c 6c 20 6e 6f 74 | .so.an.external.machine.will.not |
| 126c60 | 20 64 69 72 65 63 74 6c 79 20 72 6f 75 74 65 20 74 6f 20 74 68 65 6d 2e 20 54 68 65 20 66 6f 6c | .directly.route.to.them..The.fol |
| 126c80 | 6c 6f 77 69 6e 67 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 72 65 73 65 72 76 65 64 20 66 6f | lowing.addresses.are.reserved.fo |
| 126ca0 | 72 20 70 72 69 76 61 74 65 20 75 73 65 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | r.private.use:.The.configuration |
| 126cc0 | 20 77 69 6c 6c 20 6c 6f 6f 6b 20 61 73 20 66 6f 6c 6c 6f 77 73 3a 00 54 68 65 20 63 6f 6e 66 69 | .will.look.as.follows:.The.confi |
| 126ce0 | 67 75 72 61 74 69 6f 6e 73 20 61 62 6f 76 65 20 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 74 6f 20 | gurations.above.will.default.to. |
| 126d00 | 75 73 69 6e 67 20 32 35 36 2d 62 69 74 20 41 45 53 20 69 6e 20 47 43 4d 20 6d 6f 64 65 20 66 6f | using.256-bit.AES.in.GCM.mode.fo |
| 126d20 | 72 20 65 6e 63 72 79 70 74 69 6f 6e 20 28 69 66 20 62 6f 74 68 20 73 69 64 65 73 20 73 75 70 70 | r.encryption.(if.both.sides.supp |
| 126d40 | 6f 72 74 20 4e 43 50 29 20 61 6e 64 20 53 48 41 2d 31 20 66 6f 72 20 48 4d 41 43 20 61 75 74 68 | ort.NCP).and.SHA-1.for.HMAC.auth |
| 126d60 | 65 6e 74 69 63 61 74 69 6f 6e 2e 20 53 48 41 2d 31 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 | entication..SHA-1.is.considered. |
| 126d80 | 77 65 61 6b 2c 20 62 75 74 20 6f 74 68 65 72 20 68 61 73 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 | weak,.but.other.hashing.algorith |
| 126da0 | 6d 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2c 20 61 73 20 61 72 65 20 65 6e 63 72 79 70 74 | ms.are.available,.as.are.encrypt |
| 126dc0 | 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 73 3a 00 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ion.algorithms:.The.configuratio |
| 126de0 | 6e 73 20 61 62 6f 76 65 20 77 69 6c 6c 20 64 65 66 61 75 6c 74 20 74 6f 20 75 73 69 6e 67 20 32 | ns.above.will.default.to.using.2 |
| 126e00 | 35 36 2d 62 69 74 20 41 45 53 20 69 6e 20 47 43 4d 20 6d 6f 64 65 20 66 6f 72 20 65 6e 63 72 79 | 56-bit.AES.in.GCM.mode.for.encry |
| 126e20 | 70 74 69 6f 6e 20 28 69 66 20 62 6f 74 68 20 73 69 64 65 73 20 73 75 70 70 6f 72 74 20 64 61 74 | ption.(if.both.sides.support.dat |
| 126e40 | 61 20 63 69 70 68 65 72 20 6e 65 67 6f 74 69 61 74 69 6f 6e 29 20 61 6e 64 20 53 48 41 2d 31 20 | a.cipher.negotiation).and.SHA-1. |
| 126e60 | 66 6f 72 20 48 4d 41 43 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 53 48 41 2d 31 20 69 | for.HMAC.authentication..SHA-1.i |
| 126e80 | 73 20 63 6f 6e 73 69 64 65 72 65 64 20 77 65 61 6b 2c 20 62 75 74 20 6f 74 68 65 72 20 68 61 73 | s.considered.weak,.but.other.has |
| 126ea0 | 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2c 20 61 | hing.algorithms.are.available,.a |
| 126ec0 | 73 20 61 72 65 20 65 6e 63 72 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 73 3a 00 54 68 65 | s.are.encryption.algorithms:.The |
| 126ee0 | 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 20 68 6f 77 65 76 65 72 20 69 73 20 63 6f 6d | .connection.state.however.is.com |
| 126f00 | 70 6c 65 74 65 6c 79 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 6f 66 20 61 6e 79 20 75 70 70 65 72 | pletely.independent.of.any.upper |
| 126f20 | 2d 6c 65 76 65 6c 20 73 74 61 74 65 2c 20 73 75 63 68 20 61 73 20 54 43 50 27 73 20 6f 72 20 53 | -level.state,.such.as.TCP's.or.S |
| 126f40 | 43 54 50 27 73 20 73 74 61 74 65 2e 20 50 61 72 74 20 6f 66 20 74 68 65 20 72 65 61 73 6f 6e 20 | CTP's.state..Part.of.the.reason. |
| 126f60 | 66 6f 72 20 74 68 69 73 20 69 73 20 74 68 61 74 20 77 68 65 6e 20 6d 65 72 65 6c 79 20 66 6f 72 | for.this.is.that.when.merely.for |
| 126f80 | 77 61 72 64 69 6e 67 20 70 61 63 6b 65 74 73 2c 20 69 2e 65 2e 20 6e 6f 20 6c 6f 63 61 6c 20 64 | warding.packets,.i.e..no.local.d |
| 126fa0 | 65 6c 69 76 65 72 79 2c 20 74 68 65 20 54 43 50 20 65 6e 67 69 6e 65 20 6d 61 79 20 6e 6f 74 20 | elivery,.the.TCP.engine.may.not. |
| 126fc0 | 6e 65 63 65 73 73 61 72 69 6c 79 20 62 65 20 69 6e 76 6f 6b 65 64 20 61 74 20 61 6c 6c 2e 20 45 | necessarily.be.invoked.at.all..E |
| 126fe0 | 76 65 6e 20 63 6f 6e 6e 65 63 74 69 6f 6e 6c 65 73 73 2d 6d 6f 64 65 20 74 72 61 6e 73 6d 69 73 | ven.connectionless-mode.transmis |
| 127000 | 73 69 6f 6e 73 20 73 75 63 68 20 61 73 20 55 44 50 2c 20 49 50 73 65 63 20 28 41 48 2f 45 53 50 | sions.such.as.UDP,.IPsec.(AH/ESP |
| 127020 | 29 2c 20 47 52 45 20 61 6e 64 20 6f 74 68 65 72 20 74 75 6e 6e 65 6c 69 6e 67 20 70 72 6f 74 6f | ),.GRE.and.other.tunneling.proto |
| 127040 | 63 6f 6c 73 20 68 61 76 65 2c 20 61 74 20 6c 65 61 73 74 2c 20 61 20 70 73 65 75 64 6f 20 63 6f | cols.have,.at.least,.a.pseudo.co |
| 127060 | 6e 6e 65 63 74 69 6f 6e 20 73 74 61 74 65 2e 20 54 68 65 20 68 65 75 72 69 73 74 69 63 20 66 6f | nnection.state..The.heuristic.fo |
| 127080 | 72 20 73 75 63 68 20 70 72 6f 74 6f 63 6f 6c 73 20 69 73 20 6f 66 74 65 6e 20 62 61 73 65 64 20 | r.such.protocols.is.often.based. |
| 1270a0 | 75 70 6f 6e 20 61 20 70 72 65 73 65 74 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 20 66 6f 72 20 | upon.a.preset.timeout.value.for. |
| 1270c0 | 69 6e 61 63 74 69 76 69 74 79 2c 20 61 66 74 65 72 20 77 68 6f 73 65 20 65 78 70 69 72 61 74 69 | inactivity,.after.whose.expirati |
| 1270e0 | 6f 6e 20 61 20 4e 65 74 66 69 6c 74 65 72 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 64 72 6f | on.a.Netfilter.connection.is.dro |
| 127100 | 70 70 65 64 2e 00 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 65 78 | pped..The.connection.tracking.ex |
| 127120 | 70 65 63 74 20 74 61 62 6c 65 20 63 6f 6e 74 61 69 6e 73 20 6f 6e 65 20 65 6e 74 72 79 20 66 6f | pect.table.contains.one.entry.fo |
| 127140 | 72 20 65 61 63 68 20 65 78 70 65 63 74 65 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 72 65 6c 61 74 | r.each.expected.connection.relat |
| 127160 | 65 64 20 74 6f 20 61 6e 20 65 78 69 73 74 69 6e 67 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 54 68 | ed.to.an.existing.connection..Th |
| 127180 | 65 73 65 20 61 72 65 20 67 65 6e 65 72 61 6c 6c 79 20 75 73 65 64 20 62 79 20 e2 80 9c 63 6f 6e | ese.are.generally.used.by....con |
| 1271a0 | 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 68 65 6c 70 65 72 e2 80 9d 20 6d 6f 64 75 6c | nection.tracking.helper....modul |
| 1271c0 | 65 73 20 73 75 63 68 20 61 73 20 46 54 50 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 73 69 7a 65 | es.such.as.FTP..The.default.size |
| 1271e0 | 20 6f 66 20 74 68 65 20 65 78 70 65 63 74 20 74 61 62 6c 65 20 69 73 20 32 30 34 38 20 65 6e 74 | .of.the.expect.table.is.2048.ent |
| 127200 | 72 69 65 73 2e 00 54 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 74 61 | ries..The.connection.tracking.ta |
| 127220 | 62 6c 65 20 63 6f 6e 74 61 69 6e 73 20 6f 6e 65 20 65 6e 74 72 79 20 66 6f 72 20 65 61 63 68 20 | ble.contains.one.entry.for.each. |
| 127240 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 62 65 69 6e 67 20 74 72 61 63 6b 65 64 20 62 79 20 74 68 65 20 | connection.being.tracked.by.the. |
| 127260 | 73 79 73 74 65 6d 2e 00 54 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 61 6e 64 20 74 68 65 20 68 6f | system..The.container.and.the.ho |
| 127280 | 73 74 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 20 70 72 6f 63 65 73 73 20 6e 61 6d 65 73 70 | st.share.the.same.process.namesp |
| 1272a0 | 61 63 65 2e 20 54 68 69 73 20 6d 65 61 6e 73 20 74 68 61 74 20 70 72 6f 63 65 73 73 65 73 20 72 | ace..This.means.that.processes.r |
| 1272c0 | 75 6e 6e 69 6e 67 20 6f 6e 20 74 68 65 20 68 6f 73 74 20 61 72 65 20 76 69 73 69 62 6c 65 20 69 | unning.on.the.host.are.visible.i |
| 1272e0 | 6e 73 69 64 65 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 2c 20 61 6e 64 20 70 72 6f 63 65 73 73 | nside.the.container,.and.process |
| 127300 | 65 73 20 69 6e 73 69 64 65 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 61 72 65 20 76 69 73 69 | es.inside.the.container.are.visi |
| 127320 | 62 6c 65 20 6f 6e 20 74 68 65 20 68 6f 73 74 2e 00 54 68 65 20 63 75 72 72 65 6e 74 20 61 74 74 | ble.on.the.host..The.current.att |
| 127340 | 72 69 62 75 74 65 20 27 46 69 6c 74 65 72 2d 49 64 27 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 | ribute.'Filter-Id'.is.being.used |
| 127360 | 20 61 73 20 64 65 66 61 75 6c 74 20 61 6e 64 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 69 74 | .as.default.and.can.be.setup.wit |
| 127380 | 68 69 6e 20 52 41 44 49 55 53 3a 00 54 68 65 20 63 75 72 72 65 6e 74 20 61 74 74 72 69 62 75 74 | hin.RADIUS:.The.current.attribut |
| 1273a0 | 65 20 60 60 46 69 6c 74 65 72 2d 49 64 60 60 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 | e.``Filter-Id``.is.being.used.as |
| 1273c0 | 20 64 65 66 61 75 6c 74 20 61 6e 64 20 63 61 6e 20 62 65 20 73 65 74 75 70 20 77 69 74 68 69 6e | .default.and.can.be.setup.within |
| 1273e0 | 20 52 41 44 49 55 53 3a 00 54 68 65 20 63 75 72 72 65 6e 74 20 70 72 6f 74 6f 63 6f 6c 20 69 73 | .RADIUS:.The.current.protocol.is |
| 127400 | 20 76 65 72 73 69 6f 6e 20 34 20 28 4e 54 50 76 34 29 2c 20 77 68 69 63 68 20 69 73 20 61 20 70 | .version.4.(NTPv4),.which.is.a.p |
| 127420 | 72 6f 70 6f 73 65 64 20 73 74 61 6e 64 61 72 64 20 61 73 20 64 6f 63 75 6d 65 6e 74 65 64 20 69 | roposed.standard.as.documented.i |
| 127440 | 6e 20 3a 72 66 63 3a 60 35 39 30 35 60 2e 20 49 74 20 69 73 20 62 61 63 6b 77 61 72 64 20 63 6f | n.:rfc:`5905`..It.is.backward.co |
| 127460 | 6d 70 61 74 69 62 6c 65 20 77 69 74 68 20 76 65 72 73 69 6f 6e 20 33 2c 20 73 70 65 63 69 66 69 | mpatible.with.version.3,.specifi |
| 127480 | 65 64 20 69 6e 20 3a 72 66 63 3a 60 31 33 30 35 60 2e 00 54 68 65 20 64 61 65 6d 6f 6e 20 64 6f | ed.in.:rfc:`1305`..The.daemon.do |
| 1274a0 | 75 62 6c 65 73 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 6e 65 74 6c 69 6e 6b 20 65 76 | ubles.the.size.of.the.netlink.ev |
| 1274c0 | 65 6e 74 20 73 6f 63 6b 65 74 20 62 75 66 66 65 72 20 73 69 7a 65 20 69 66 20 69 74 20 64 65 74 | ent.socket.buffer.size.if.it.det |
| 1274e0 | 65 63 74 73 20 6e 65 74 6c 69 6e 6b 20 65 76 65 6e 74 20 6d 65 73 73 61 67 65 20 64 72 6f 70 70 | ects.netlink.event.message.dropp |
| 127500 | 69 6e 67 2e 20 54 68 69 73 20 63 6c 61 75 73 65 20 73 65 74 73 20 74 68 65 20 6d 61 78 69 6d 75 | ing..This.clause.sets.the.maximu |
| 127520 | 6d 20 62 75 66 66 65 72 20 73 69 7a 65 20 67 72 6f 77 74 68 20 74 68 61 74 20 63 61 6e 20 62 65 | m.buffer.size.growth.that.can.be |
| 127540 | 20 72 65 61 63 68 65 64 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 52 41 44 49 55 53 20 61 74 74 | .reached..The.default.RADIUS.att |
| 127560 | 72 69 62 75 74 65 20 66 6f 72 20 72 61 74 65 20 6c 69 6d 69 74 69 6e 67 20 69 73 20 60 60 46 69 | ribute.for.rate.limiting.is.``Fi |
| 127580 | 6c 74 65 72 2d 49 64 60 60 2c 20 62 75 74 20 79 6f 75 20 6d 61 79 20 61 6c 73 6f 20 72 65 64 65 | lter-Id``,.but.you.may.also.rede |
| 1275a0 | 66 69 6e 65 20 69 74 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 56 79 4f 53 20 75 73 65 72 20 61 | fine.it..The.default.VyOS.user.a |
| 1275c0 | 63 63 6f 75 6e 74 20 28 60 76 79 6f 73 60 29 2c 20 61 73 20 77 65 6c 6c 20 61 73 20 6e 65 77 6c | ccount.(`vyos`),.as.well.as.newl |
| 1275e0 | 79 20 63 72 65 61 74 65 64 20 75 73 65 72 20 61 63 63 6f 75 6e 74 73 2c 20 68 61 76 65 20 61 6c | y.created.user.accounts,.have.al |
| 127600 | 6c 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | l.capabilities.to.configure.the. |
| 127620 | 73 79 73 74 65 6d 2e 20 41 6c 6c 20 61 63 63 6f 75 6e 74 73 20 68 61 76 65 20 73 75 64 6f 20 63 | system..All.accounts.have.sudo.c |
| 127640 | 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e 64 20 74 68 65 72 65 66 6f 72 65 20 63 61 6e 20 6f 70 | apabilities.and.therefore.can.op |
| 127660 | 65 72 61 74 65 20 61 73 20 72 6f 6f 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 68 65 | erate.as.root.on.the.system..The |
| 127680 | 20 64 65 66 61 75 6c 74 20 68 6f 73 74 6e 61 6d 65 20 75 73 65 64 20 69 73 20 60 76 79 6f 73 60 | .default.hostname.used.is.`vyos` |
| 1276a0 | 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 34 39 32 2e 00 54 68 65 20 64 65 66 61 75 | ..The.default.is.1492..The.defau |
| 1276c0 | 6c 74 20 69 73 20 60 60 38 30 32 2e 31 71 60 60 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 6c 65 | lt.is.``802.1q``..The.default.le |
| 1276e0 | 61 73 65 20 74 69 6d 65 20 66 6f 72 20 44 48 43 50 76 36 20 6c 65 61 73 65 73 20 69 73 20 32 34 | ase.time.for.DHCPv6.leases.is.24 |
| 127700 | 20 68 6f 75 72 73 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 63 68 61 6e 67 65 64 20 62 79 20 73 | .hours..This.can.be.changed.by.s |
| 127720 | 75 70 70 6c 79 69 6e 67 20 61 20 60 60 64 65 66 61 75 6c 74 2d 74 69 6d 65 60 60 2c 20 60 60 6d | upplying.a.``default-time``,.``m |
| 127740 | 61 78 69 6d 75 6d 2d 74 69 6d 65 60 60 20 61 6e 64 20 60 60 6d 69 6e 69 6d 75 6d 2d 74 69 6d 65 | aximum-time``.and.``minimum-time |
| 127760 | 60 60 2e 20 41 6c 6c 20 76 61 6c 75 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 73 75 70 70 6c 69 | ``..All.values.need.to.be.suppli |
| 127780 | 65 64 20 69 6e 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 70 6f 72 74 20 | ed.in.seconds..The.default.port. |
| 1277a0 | 75 64 70 20 69 73 20 73 65 74 20 74 6f 20 38 34 37 32 2e 20 49 74 20 63 61 6e 20 62 65 20 63 68 | udp.is.set.to.8472..It.can.be.ch |
| 1277c0 | 61 6e 67 65 64 20 77 69 74 68 20 60 60 73 65 74 20 69 6e 74 65 72 66 61 63 65 20 76 78 6c 61 6e | anged.with.``set.interface.vxlan |
| 1277e0 | 20 3c 76 78 6c 61 6e 4e 3e 20 70 6f 72 74 20 3c 70 6f 72 74 3e 60 60 00 54 68 65 20 64 65 66 61 | .<vxlanN>.port.<port>``.The.defa |
| 127800 | 75 6c 74 20 74 69 6d 65 20 69 73 20 36 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 | ult.time.is.60.seconds..The.defa |
| 127820 | 75 6c 74 20 76 61 6c 75 65 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f 20 36 34 2e 00 54 68 65 | ult.value.corresponds.to.64..The |
| 127840 | 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 30 2e 20 54 68 69 73 20 77 69 6c 6c 20 63 | .default.value.is.0..This.will.c |
| 127860 | 61 75 73 65 20 74 68 65 20 63 61 72 72 69 65 72 20 74 6f 20 62 65 20 61 73 73 65 72 74 65 64 20 | ause.the.carrier.to.be.asserted. |
| 127880 | 28 66 6f 72 20 38 30 32 2e 33 61 64 20 6d 6f 64 65 29 20 77 68 65 6e 65 76 65 72 20 74 68 65 72 | (for.802.3ad.mode).whenever.ther |
| 1278a0 | 65 20 69 73 20 61 6e 20 61 63 74 69 76 65 20 61 67 67 72 65 67 61 74 6f 72 2c 20 72 65 67 61 72 | e.is.an.active.aggregator,.regar |
| 1278c0 | 64 6c 65 73 73 20 6f 66 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 | dless.of.the.number.of.available |
| 1278e0 | 20 6c 69 6e 6b 73 20 69 6e 20 74 68 61 74 20 61 67 67 72 65 67 61 74 6f 72 2e 00 54 68 65 20 64 | .links.in.that.aggregator..The.d |
| 127900 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 20 70 61 63 6b 65 74 73 2e 00 54 68 65 20 64 | efault.value.is.3.packets..The.d |
| 127920 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 2e 00 54 68 65 20 64 65 66 61 75 6c 74 20 76 | efault.value.is.3..The.default.v |
| 127940 | 61 6c 75 65 20 69 73 20 33 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 6c 74 | alue.is.300.seconds..The.default |
| 127960 | 20 76 61 6c 75 65 20 69 73 20 36 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 66 61 75 | .value.is.600.seconds..The.defau |
| 127980 | 6c 74 20 76 61 6c 75 65 20 69 73 20 37 32 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 65 20 64 65 | lt.value.is.7200.seconds..The.de |
| 1279a0 | 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 38 36 34 30 30 20 73 65 63 6f 6e 64 73 20 77 68 69 | fault.value.is.86400.seconds.whi |
| 1279c0 | 63 68 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f 20 6f 6e 65 20 64 61 79 2e 00 54 68 65 20 64 | ch.corresponds.to.one.day..The.d |
| 1279e0 | 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 73 6c 6f 77 2e 00 54 68 65 20 64 65 66 61 75 6c | efault.value.is.slow..The.defaul |
| 127a00 | 74 20 76 61 6c 75 65 73 20 66 6f 72 20 74 68 65 20 6d 69 6e 69 6d 75 6d 2d 74 68 72 65 73 68 6f | t.values.for.the.minimum-thresho |
| 127a20 | 6c 64 20 64 65 70 65 6e 64 20 6f 6e 20 49 50 20 70 72 65 63 65 64 65 6e 63 65 3a 00 54 68 65 20 | ld.depend.on.IP.precedence:.The. |
| 127a40 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 75 73 65 64 20 66 6f 72 20 63 72 65 61 74 69 | destination.port.used.for.creati |
| 127a60 | 6e 67 20 61 20 56 58 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 4c 69 6e 75 78 20 64 65 | ng.a.VXLAN.interface.in.Linux.de |
| 127a80 | 66 61 75 6c 74 73 20 74 6f 20 69 74 73 20 70 72 65 2d 73 74 61 6e 64 61 72 64 20 76 61 6c 75 65 | faults.to.its.pre-standard.value |
| 127aa0 | 20 6f 66 20 38 34 37 32 20 74 6f 20 70 72 65 73 65 72 76 65 20 62 61 63 6b 77 61 72 64 20 63 6f | .of.8472.to.preserve.backward.co |
| 127ac0 | 6d 70 61 74 69 62 69 6c 69 74 79 2e 20 41 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 69 72 | mpatibility..A.configuration.dir |
| 127ae0 | 65 63 74 69 76 65 20 74 6f 20 73 75 70 70 6f 72 74 20 61 20 75 73 65 72 2d 73 70 65 63 69 66 69 | ective.to.support.a.user-specifi |
| 127b00 | 65 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 74 6f 20 6f 76 65 72 72 69 64 65 20 | ed.destination.port.to.override. |
| 127b20 | 74 68 61 74 20 62 65 68 61 76 69 6f 72 20 69 73 20 61 76 61 69 6c 61 62 6c 65 20 75 73 69 6e 67 | that.behavior.is.available.using |
| 127b40 | 20 74 68 65 20 61 62 6f 76 65 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 65 20 64 65 76 69 63 65 20 63 | .the.above.command..The.device.c |
| 127b60 | 61 6e 20 6f 6e 6c 79 20 72 65 63 65 69 76 65 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 56 4e 49 | an.only.receive.packets.with.VNI |
| 127b80 | 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 74 68 65 20 56 4e 49 20 66 69 6c 74 65 72 69 6e | s.configured.in.the.VNI.filterin |
| 127ba0 | 67 20 74 61 62 6c 65 2e 00 54 68 65 20 64 69 61 6c 6f 67 75 65 20 62 65 74 77 65 65 6e 20 48 41 | g.table..The.dialogue.between.HA |
| 127bc0 | 20 70 61 72 74 6e 65 72 73 20 69 73 20 6e 65 69 74 68 65 72 20 65 6e 63 72 79 70 74 65 64 20 6e | .partners.is.neither.encrypted.n |
| 127be0 | 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2e 20 53 69 6e 63 65 20 6d 6f 73 74 20 44 48 43 | or.authenticated..Since.most.DHC |
| 127c00 | 50 20 73 65 72 76 65 72 73 20 65 78 69 73 74 20 77 69 74 68 69 6e 20 61 6e 20 6f 72 67 61 6e 69 | P.servers.exist.within.an.organi |
| 127c20 | 73 61 74 69 6f 6e 27 73 20 6f 77 6e 20 73 65 63 75 72 65 20 49 6e 74 72 61 6e 65 74 2c 20 74 68 | sation's.own.secure.Intranet,.th |
| 127c40 | 69 73 20 77 6f 75 6c 64 20 62 65 20 61 6e 20 75 6e 6e 65 63 65 73 73 61 72 79 20 6f 76 65 72 68 | is.would.be.an.unnecessary.overh |
| 127c60 | 65 61 64 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 68 61 76 65 20 44 48 43 50 20 48 | ead..However,.if.you.have.DHCP.H |
| 127c80 | 41 20 70 65 65 72 73 20 77 68 6f 73 65 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 | A.peers.whose.communications.tra |
| 127ca0 | 76 65 72 73 65 20 69 6e 73 65 63 75 72 65 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 6e 20 77 65 | verse.insecure.networks,.then.we |
| 127cc0 | 20 72 65 63 6f 6d 6d 65 6e 64 20 74 68 61 74 20 79 6f 75 20 63 6f 6e 73 69 64 65 72 20 74 68 65 | .recommend.that.you.consider.the |
| 127ce0 | 20 75 73 65 20 6f 66 20 56 50 4e 20 74 75 6e 6e 65 6c 69 6e 67 20 62 65 74 77 65 65 6e 20 74 68 | .use.of.VPN.tunneling.between.th |
| 127d00 | 65 6d 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 48 41 20 70 61 72 74 6e 65 72 | em.to.ensure.that.the.HA.partner |
| 127d20 | 73 68 69 70 20 69 73 20 69 6d 6d 75 6e 65 20 74 6f 20 64 69 73 72 75 70 74 69 6f 6e 20 28 61 63 | ship.is.immune.to.disruption.(ac |
| 127d40 | 63 69 64 65 6e 74 61 6c 20 6f 72 20 6f 74 68 65 72 77 69 73 65 29 20 76 69 61 20 74 68 69 72 64 | cidental.or.otherwise).via.third |
| 127d60 | 20 70 61 72 74 69 65 73 2e 00 54 68 65 20 64 69 61 6c 6f 67 75 65 20 62 65 74 77 65 65 6e 20 66 | .parties..The.dialogue.between.f |
| 127d80 | 61 69 6c 6f 76 65 72 20 70 61 72 74 6e 65 72 73 20 69 73 20 6e 65 69 74 68 65 72 20 65 6e 63 72 | ailover.partners.is.neither.encr |
| 127da0 | 79 70 74 65 64 20 6e 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2e 20 53 69 6e 63 65 20 6d | ypted.nor.authenticated..Since.m |
| 127dc0 | 6f 73 74 20 44 48 43 50 20 73 65 72 76 65 72 73 20 65 78 69 73 74 20 77 69 74 68 69 6e 20 61 6e | ost.DHCP.servers.exist.within.an |
| 127de0 | 20 6f 72 67 61 6e 69 73 61 74 69 6f 6e 27 73 20 6f 77 6e 20 73 65 63 75 72 65 20 49 6e 74 72 61 | .organisation's.own.secure.Intra |
| 127e00 | 6e 65 74 2c 20 74 68 69 73 20 77 6f 75 6c 64 20 62 65 20 61 6e 20 75 6e 6e 65 63 65 73 73 61 72 | net,.this.would.be.an.unnecessar |
| 127e20 | 79 20 6f 76 65 72 68 65 61 64 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 68 61 76 65 | y.overhead..However,.if.you.have |
| 127e40 | 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 70 65 65 72 73 20 77 68 6f 73 65 20 63 6f 6d 6d 75 | .DHCP.failover.peers.whose.commu |
| 127e60 | 6e 69 63 61 74 69 6f 6e 73 20 74 72 61 76 65 72 73 65 20 69 6e 73 65 63 75 72 65 20 6e 65 74 77 | nications.traverse.insecure.netw |
| 127e80 | 6f 72 6b 73 2c 20 74 68 65 6e 20 77 65 20 72 65 63 6f 6d 6d 65 6e 64 20 74 68 61 74 20 79 6f 75 | orks,.then.we.recommend.that.you |
| 127ea0 | 20 63 6f 6e 73 69 64 65 72 20 74 68 65 20 75 73 65 20 6f 66 20 56 50 4e 20 74 75 6e 6e 65 6c 69 | .consider.the.use.of.VPN.tunneli |
| 127ec0 | 6e 67 20 62 65 74 77 65 65 6e 20 74 68 65 6d 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 | ng.between.them.to.ensure.that.t |
| 127ee0 | 68 65 20 66 61 69 6c 6f 76 65 72 20 70 61 72 74 6e 65 72 73 68 69 70 20 69 73 20 69 6d 6d 75 6e | he.failover.partnership.is.immun |
| 127f00 | 65 20 74 6f 20 64 69 73 72 75 70 74 69 6f 6e 20 28 61 63 63 69 64 65 6e 74 61 6c 20 6f 72 20 6f | e.to.disruption.(accidental.or.o |
| 127f20 | 74 68 65 72 77 69 73 65 29 20 76 69 61 20 74 68 69 72 64 20 70 61 72 74 69 65 73 2e 00 54 68 65 | therwise).via.third.parties..The |
| 127f40 | 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 70 61 72 61 6d 65 74 65 72 20 73 68 6f 75 6c 64 20 62 65 | .domain-name.parameter.should.be |
| 127f60 | 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 61 70 | .the.domain.name.that.will.be.ap |
| 127f80 | 70 65 6e 64 65 64 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 27 73 20 68 6f 73 74 6e 61 6d 65 20 | pended.to.the.client's.hostname. |
| 127fa0 | 74 6f 20 66 6f 72 6d 20 61 20 66 75 6c 6c 79 2d 71 75 61 6c 69 66 69 65 64 20 64 6f 6d 61 69 6e | to.form.a.fully-qualified.domain |
| 127fc0 | 2d 6e 61 6d 65 20 28 46 51 44 4e 29 20 28 44 48 43 50 20 4f 70 74 69 6f 6e 20 30 31 35 29 2e 00 | -name.(FQDN).(DHCP.Option.015).. |
| 127fe0 | 54 68 65 20 64 6f 6d 61 69 6e 2d 6e 61 6d 65 20 70 61 72 61 6d 65 74 65 72 20 73 68 6f 75 6c 64 | The.domain-name.parameter.should |
| 128000 | 20 62 65 20 74 68 65 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 75 73 65 64 20 77 68 65 6e 20 63 6f | .be.the.domain.name.used.when.co |
| 128020 | 6d 70 6c 65 74 69 6e 67 20 44 4e 53 20 72 65 71 75 65 73 74 20 77 68 65 72 65 20 6e 6f 20 66 75 | mpleting.DNS.request.where.no.fu |
| 128040 | 6c 6c 20 46 51 44 4e 20 69 73 20 70 61 73 73 65 64 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 | ll.FQDN.is.passed..This.option.c |
| 128060 | 61 6e 20 62 65 20 67 69 76 65 6e 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 20 69 66 20 79 6f | an.be.given.multiple.times.if.yo |
| 128080 | 75 20 6e 65 65 64 20 6d 75 6c 74 69 70 6c 65 20 73 65 61 72 63 68 20 64 6f 6d 61 69 6e 73 20 28 | u.need.multiple.search.domains.( |
| 1280a0 | 44 48 43 50 20 4f 70 74 69 6f 6e 20 31 31 39 29 2e 00 54 68 65 20 64 75 6d 6d 79 20 69 6e 74 65 | DHCP.Option.119)..The.dummy.inte |
| 1280c0 | 72 66 61 63 65 20 61 6c 6c 6f 77 73 20 75 73 20 74 6f 20 68 61 76 65 20 61 6e 20 65 71 75 69 76 | rface.allows.us.to.have.an.equiv |
| 1280e0 | 61 6c 65 6e 74 20 6f 66 20 74 68 65 20 43 69 73 63 6f 20 49 4f 53 20 4c 6f 6f 70 62 61 63 6b 20 | alent.of.the.Cisco.IOS.Loopback. |
| 128100 | 69 6e 74 65 72 66 61 63 65 20 2d 20 61 20 72 6f 75 74 65 72 2d 69 6e 74 65 72 6e 61 6c 20 69 6e | interface.-.a.router-internal.in |
| 128120 | 74 65 72 66 61 63 65 20 77 65 20 63 61 6e 20 75 73 65 20 66 6f 72 20 49 50 20 61 64 64 72 65 73 | terface.we.can.use.for.IP.addres |
| 128140 | 73 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 6d 75 73 74 20 6b 6e 6f 77 20 61 62 6f 75 74 2c 20 | ses.the.router.must.know.about,. |
| 128160 | 62 75 74 20 77 68 69 63 68 20 61 72 65 20 6e 6f 74 20 61 63 74 75 61 6c 6c 79 20 61 73 73 69 67 | but.which.are.not.actually.assig |
| 128180 | 6e 65 64 20 74 6f 20 61 20 72 65 61 6c 20 6e 65 74 77 6f 72 6b 2e 00 54 68 65 20 64 75 6d 6d 79 | ned.to.a.real.network..The.dummy |
| 1281a0 | 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 72 65 61 6c 6c 79 20 61 20 6c 69 74 74 6c 65 20 65 78 | .interface.is.really.a.little.ex |
| 1281c0 | 6f 74 69 63 2c 20 62 75 74 20 72 61 74 68 65 72 20 75 73 65 66 75 6c 20 6e 65 76 65 72 74 68 65 | otic,.but.rather.useful.neverthe |
| 1281e0 | 6c 65 73 73 2e 20 44 75 6d 6d 79 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 6d 75 63 68 20 | less..Dummy.interfaces.are.much. |
| 128200 | 6c 69 6b 65 20 74 68 65 20 3a 72 65 66 3a 60 6c 6f 6f 70 62 61 63 6b 2d 69 6e 74 65 72 66 61 63 | like.the.:ref:`loopback-interfac |
| 128220 | 65 60 20 69 6e 74 65 72 66 61 63 65 2c 20 65 78 63 65 70 74 20 79 6f 75 20 63 61 6e 20 68 61 76 | e`.interface,.except.you.can.hav |
| 128240 | 65 20 61 73 20 6d 61 6e 79 20 61 73 20 79 6f 75 20 77 61 6e 74 2e 00 54 68 65 20 65 6d 62 65 64 | e.as.many.as.you.want..The.embed |
| 128260 | 64 65 64 20 53 71 75 69 64 20 70 72 6f 78 79 20 63 61 6e 20 75 73 65 20 4c 44 41 50 20 74 6f 20 | ded.Squid.proxy.can.use.LDAP.to. |
| 128280 | 61 75 74 68 65 6e 74 69 63 61 74 65 20 75 73 65 72 73 20 61 67 61 69 6e 73 74 20 61 20 63 6f 6d | authenticate.users.against.a.com |
| 1282a0 | 70 61 6e 79 20 77 69 64 65 20 64 69 72 65 63 74 6f 72 79 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 | pany.wide.directory..The.followi |
| 1282c0 | 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 61 6e 20 65 78 61 6d 70 6c 65 20 6f | ng.configuration.is.an.example.o |
| 1282e0 | 66 20 68 6f 77 20 74 6f 20 75 73 65 20 41 63 74 69 76 65 20 44 69 72 65 63 74 6f 72 79 20 61 73 | f.how.to.use.Active.Directory.as |
| 128300 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 61 63 6b 65 6e 64 2e 20 51 75 65 72 69 65 73 | .authentication.backend..Queries |
| 128320 | 20 61 72 65 20 64 6f 6e 65 20 76 69 61 20 4c 44 41 50 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 | .are.done.via.LDAP..The.example. |
| 128340 | 61 62 6f 76 65 20 75 73 65 73 20 31 39 32 2e 30 2e 32 2e 32 20 61 73 20 65 78 74 65 72 6e 61 6c | above.uses.192.0.2.2.as.external |
| 128360 | 20 49 50 20 61 64 64 72 65 73 73 2e 20 41 20 4c 41 43 20 6e 6f 72 6d 61 6c 6c 79 20 72 65 71 75 | .IP.address..A.LAC.normally.requ |
| 128380 | 69 72 65 73 20 61 6e 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 2c | ires.an.authentication.password, |
| 1283a0 | 20 77 68 69 63 68 20 69 73 20 73 65 74 20 69 6e 20 74 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e | .which.is.set.in.the.example.con |
| 1283c0 | 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 60 60 6c 6e 73 20 73 68 61 72 65 64 2d 73 65 63 72 65 | figuration.to.``lns.shared-secre |
| 1283e0 | 74 20 27 73 65 63 72 65 74 27 60 60 2e 20 54 68 69 73 20 73 65 74 75 70 20 72 65 71 75 69 72 65 | t.'secret'``..This.setup.require |
| 128400 | 73 20 74 68 65 20 43 6f 6d 70 72 65 73 73 69 6f 6e 20 43 6f 6e 74 72 6f 6c 20 50 72 6f 74 6f 63 | s.the.Compression.Control.Protoc |
| 128420 | 6f 6c 20 28 43 43 50 29 20 62 65 69 6e 67 20 64 69 73 61 62 6c 65 64 2c 20 74 68 65 20 63 6f 6d | ol.(CCP).being.disabled,.the.com |
| 128440 | 6d 61 6e 64 20 60 60 73 65 74 20 76 70 6e 20 6c 32 74 70 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 | mand.``set.vpn.l2tp.remote-acces |
| 128460 | 73 20 63 63 70 2d 64 69 73 61 62 6c 65 60 60 20 61 63 63 6f 6d 70 6c 69 73 68 65 73 20 74 68 61 | s.ccp-disable``.accomplishes.tha |
| 128480 | 74 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 63 6f 76 65 72 73 20 61 20 64 75 | t..The.example.below.covers.a.du |
| 1284a0 | 61 6c 2d 73 74 61 63 6b 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 76 69 61 20 70 70 70 6f 65 | al-stack.configuration.via.pppoe |
| 1284c0 | 2d 73 65 72 76 65 72 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 63 6f 76 65 72 | -server..The.example.below.cover |
| 1284e0 | 73 20 61 20 64 75 61 6c 2d 73 74 61 63 6b 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 | s.a.dual-stack.configuration..Th |
| 128500 | 65 20 65 78 61 6d 70 6c 65 20 62 65 6c 6f 77 20 75 73 65 73 20 41 43 4e 20 61 73 20 61 63 63 65 | e.example.below.uses.ACN.as.acce |
| 128520 | 73 73 2d 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 6e 61 6d 65 2c 20 61 73 73 69 67 6e 73 20 61 6e | ss-concentrator.name,.assigns.an |
| 128540 | 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 70 6f 6f 6c 20 31 30 2e 31 2e 31 2e 31 30 | .address.from.the.pool.10.1.1.10 |
| 128560 | 30 2d 31 31 31 2c 20 74 65 72 6d 69 6e 61 74 65 73 20 61 74 20 74 68 65 20 6c 6f 63 61 6c 20 65 | 0-111,.terminates.at.the.local.e |
| 128580 | 6e 64 70 6f 69 6e 74 20 31 30 2e 31 2e 31 2e 31 20 61 6e 64 20 73 65 72 76 65 73 20 72 65 71 75 | ndpoint.10.1.1.1.and.serves.requ |
| 1285a0 | 65 73 74 73 20 6f 6e 6c 79 20 6f 6e 20 65 74 68 31 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 63 | ests.only.on.eth1..The.example.c |
| 1285c0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 62 65 6c 6f 77 20 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 | onfiguration.below.will.assign.a |
| 1285e0 | 6e 20 49 50 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 | n.IP.to.the.client.on.the.incomi |
| 128600 | 6e 67 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 31 20 77 69 74 68 20 74 68 65 20 63 6c 69 65 6e | ng.interface.eth1.with.the.clien |
| 128620 | 74 20 6d 61 63 20 61 64 64 72 65 73 73 20 30 30 3a 35 30 3a 37 39 3a 36 36 3a 36 38 3a 30 30 2e | t.mac.address.00:50:79:66:68:00. |
| 128640 | 20 4f 74 68 65 72 20 44 48 43 50 20 64 69 73 63 6f 76 65 72 79 20 72 65 71 75 65 73 74 73 20 77 | .Other.DHCP.discovery.requests.w |
| 128660 | 69 6c 6c 20 62 65 20 69 67 6e 6f 72 65 64 2c 20 75 6e 6c 65 73 73 20 74 68 65 20 63 6c 69 65 6e | ill.be.ignored,.unless.the.clien |
| 128680 | 74 20 6d 61 63 20 68 61 73 20 62 65 65 6e 20 65 6e 61 62 6c 65 64 20 69 6e 20 74 68 65 20 63 6f | t.mac.has.been.enabled.in.the.co |
| 1286a0 | 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 | nfiguration..The.example.configu |
| 1286c0 | 72 61 74 69 6f 6e 20 62 65 6c 6f 77 20 77 69 6c 6c 20 61 73 73 69 67 6e 20 61 6e 20 49 50 20 74 | ration.below.will.assign.an.IP.t |
| 1286e0 | 6f 20 74 68 65 20 63 6c 69 65 6e 74 20 6f 6e 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 69 6e 74 | o.the.client.on.the.incoming.int |
| 128700 | 65 72 66 61 63 65 20 65 74 68 32 20 77 69 74 68 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 | erface.eth2.with.the.client.mac. |
| 128720 | 61 64 64 72 65 73 73 20 30 38 3a 30 30 3a 32 37 3a 32 66 3a 64 38 3a 30 36 2e 20 4f 74 68 65 72 | address.08:00:27:2f:d8:06..Other |
| 128740 | 20 44 48 43 50 20 64 69 73 63 6f 76 65 72 79 20 72 65 71 75 65 73 74 73 20 77 69 6c 6c 20 62 65 | .DHCP.discovery.requests.will.be |
| 128760 | 20 69 67 6e 6f 72 65 64 2c 20 75 6e 6c 65 73 73 20 74 68 65 20 63 6c 69 65 6e 74 20 6d 61 63 20 | .ignored,.unless.the.client.mac. |
| 128780 | 68 61 73 20 62 65 65 6e 20 65 6e 61 62 6c 65 64 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | has.been.enabled.in.the.configur |
| 1287a0 | 61 74 69 6f 6e 2e 00 54 68 65 20 65 78 61 6d 70 6c 65 20 63 72 65 61 74 65 73 20 61 20 77 69 72 | ation..The.example.creates.a.wir |
| 1287c0 | 65 6c 65 73 73 20 73 74 61 74 69 6f 6e 20 28 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 | eless.station.(commonly.referred |
| 1287e0 | 20 74 6f 20 61 73 20 57 69 2d 46 69 20 63 6c 69 65 6e 74 29 20 74 68 61 74 20 61 63 63 65 73 73 | .to.as.Wi-Fi.client).that.access |
| 128800 | 65 73 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 41 50 20 64 | es.the.network.through.the.WAP.d |
| 128820 | 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 61 62 6f 76 65 20 65 78 61 6d 70 6c 65 2e 20 54 68 65 | efined.in.the.above.example..The |
| 128840 | 20 64 65 66 61 75 6c 74 20 70 68 79 73 69 63 61 6c 20 64 65 76 69 63 65 20 28 60 60 70 68 79 30 | .default.physical.device.(``phy0 |
| 128860 | 60 60 29 20 69 73 20 75 73 65 64 2e 00 54 68 65 20 65 78 74 65 72 6e 61 6c 20 49 50 20 61 64 64 | ``).is.used..The.external.IP.add |
| 128880 | 72 65 73 73 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 20 74 6f 00 54 68 65 20 66 69 72 65 77 61 6c | ress.to.translate.to.The.firewal |
| 1288a0 | 6c 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 67 72 6f 75 70 | l.supports.the.creation.of.group |
| 1288c0 | 73 20 66 6f 72 20 61 64 64 72 65 73 73 65 73 2c 20 64 6f 6d 61 69 6e 73 2c 20 69 6e 74 65 72 66 | s.for.addresses,.domains,.interf |
| 1288e0 | 61 63 65 73 2c 20 6d 61 63 2d 61 64 64 72 65 73 73 65 73 2c 20 6e 65 74 77 6f 72 6b 73 20 61 6e | aces,.mac-addresses,.networks.an |
| 128900 | 64 20 70 6f 72 74 20 67 72 6f 75 70 73 2e 20 54 68 69 73 20 67 72 6f 75 70 73 20 63 61 6e 20 62 | d.port.groups..This.groups.can.b |
| 128920 | 65 20 75 73 65 64 20 6c 61 74 65 72 20 69 6e 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 65 74 | e.used.later.in.firewall.ruleset |
| 128940 | 20 61 73 20 64 65 73 69 72 65 64 2e 00 54 68 65 20 66 69 72 65 77 61 6c 6c 20 73 75 70 70 6f 72 | .as.desired..The.firewall.suppor |
| 128960 | 74 73 20 74 68 65 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 67 72 6f 75 70 73 20 66 6f 72 20 70 6f | ts.the.creation.of.groups.for.po |
| 128980 | 72 74 73 2c 20 61 64 64 72 65 73 73 65 73 2c 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 20 28 69 6d | rts,.addresses,.and.networks.(im |
| 1289a0 | 70 6c 65 6d 65 6e 74 65 64 20 75 73 69 6e 67 20 6e 65 74 66 69 6c 74 65 72 20 69 70 73 65 74 29 | plemented.using.netfilter.ipset) |
| 1289c0 | 20 61 6e 64 20 74 68 65 20 6f 70 74 69 6f 6e 20 6f 66 20 69 6e 74 65 72 66 61 63 65 20 6f 72 20 | .and.the.option.of.interface.or. |
| 1289e0 | 7a 6f 6e 65 20 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 2e 00 54 68 65 20 | zone.based.firewall.policy..The. |
| 128a00 | 66 69 72 73 74 20 49 50 20 69 6e 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 6e 65 74 77 6f 72 | first.IP.in.the.container.networ |
| 128a20 | 6b 20 69 73 20 72 65 73 65 72 76 65 64 20 62 79 20 74 68 65 20 65 6e 67 69 6e 65 20 61 6e 64 20 | k.is.reserved.by.the.engine.and. |
| 128a40 | 63 61 6e 6e 6f 74 20 62 65 20 75 73 65 64 00 54 68 65 20 66 69 72 73 74 20 61 64 64 72 65 73 73 | cannot.be.used.The.first.address |
| 128a60 | 20 6f 66 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 20 60 60 63 6c 69 65 6e 74 2d 73 75 62 6e 65 | .of.the.parameter.``client-subne |
| 128a80 | 74 60 60 2c 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 61 73 20 74 68 65 20 64 65 66 61 75 6c 74 | t``,.will.be.used.as.the.default |
| 128aa0 | 20 67 61 74 65 77 61 79 2e 20 43 6f 6e 6e 65 63 74 65 64 20 73 65 73 73 69 6f 6e 73 20 63 61 6e | .gateway..Connected.sessions.can |
| 128ac0 | 20 62 65 20 63 68 65 63 6b 65 64 20 76 69 61 20 74 68 65 20 60 60 73 68 6f 77 20 69 70 6f 65 2d | .be.checked.via.the.``show.ipoe- |
| 128ae0 | 73 65 72 76 65 72 20 73 65 73 73 69 6f 6e 73 60 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 65 20 66 | server.sessions``.command..The.f |
| 128b00 | 69 72 73 74 20 61 6e 64 20 61 72 67 75 61 62 6c 79 20 63 6c 65 61 6e 65 72 20 6f 70 74 69 6f 6e | irst.and.arguably.cleaner.option |
| 128b20 | 20 69 73 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 6d 61 | .is.to.make.your.IPsec.policy.ma |
| 128b40 | 74 63 68 20 47 52 45 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e 20 65 78 74 65 72 6e 61 6c | tch.GRE.packets.between.external |
| 128b60 | 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 79 6f 75 72 20 72 6f 75 74 65 72 73 2e 20 54 68 69 73 | .addresses.of.your.routers..This |
| 128b80 | 20 69 73 20 74 68 65 20 62 65 73 74 20 6f 70 74 69 6f 6e 20 69 66 20 62 6f 74 68 20 72 6f 75 74 | .is.the.best.option.if.both.rout |
| 128ba0 | 65 72 73 20 68 61 76 65 20 73 74 61 74 69 63 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 | ers.have.static.external.address |
| 128bc0 | 65 73 2e 00 54 68 65 20 66 69 72 73 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 6d 65 63 68 61 | es..The.first.flow.control.mecha |
| 128be0 | 6e 69 73 6d 2c 20 74 68 65 20 70 61 75 73 65 20 66 72 61 6d 65 2c 20 77 61 73 20 64 65 66 69 6e | nism,.the.pause.frame,.was.defin |
| 128c00 | 65 64 20 62 79 20 74 68 65 20 49 45 45 45 20 38 30 32 2e 33 78 20 73 74 61 6e 64 61 72 64 2e 00 | ed.by.the.IEEE.802.3x.standard.. |
| 128c20 | 54 68 65 20 66 69 72 73 74 20 69 70 20 61 64 64 72 65 73 73 20 69 73 20 74 68 65 20 52 50 27 73 | The.first.ip.address.is.the.RP's |
| 128c40 | 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 73 65 63 6f 6e 64 20 76 61 6c 75 65 20 69 73 | .address.and.the.second.value.is |
| 128c60 | 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 70 72 65 66 69 78 20 6f 66 20 67 72 6f 75 70 20 72 61 | .the.matching.prefix.of.group.ra |
| 128c80 | 6e 67 65 73 20 63 6f 76 65 72 65 64 2e 00 54 68 65 20 66 69 72 73 74 20 72 65 67 69 73 74 72 61 | nges.covered..The.first.registra |
| 128ca0 | 74 69 6f 6e 20 72 65 71 75 65 73 74 20 69 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 70 72 6f 74 | tion.request.is.sent.to.the.prot |
| 128cc0 | 6f 63 6f 6c 20 62 72 6f 61 64 63 61 73 74 20 61 64 64 72 65 73 73 2c 20 61 6e 64 20 74 68 65 20 | ocol.broadcast.address,.and.the. |
| 128ce0 | 73 65 72 76 65 72 27 73 20 72 65 61 6c 20 70 72 6f 74 6f 63 6f 6c 20 61 64 64 72 65 73 73 20 69 | server's.real.protocol.address.i |
| 128d00 | 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 64 65 74 65 63 74 65 64 20 66 72 6f 6d 20 74 68 65 20 | s.dynamically.detected.from.the. |
| 128d20 | 66 69 72 73 74 20 72 65 67 69 73 74 72 61 74 69 6f 6e 20 72 65 70 6c 79 2e 00 54 68 65 20 66 6f | first.registration.reply..The.fo |
| 128d40 | 6c 6c 6f 77 69 6e 67 20 50 50 50 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 73 74 73 20 | llowing.PPP.configuration.tests. |
| 128d60 | 4d 53 43 48 41 50 2d 76 32 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 60 72 65 63 65 69 76 | MSCHAP-v2:.The.following.`receiv |
| 128d80 | 65 2d 66 69 6c 74 65 72 60 20 6d 6f 64 65 73 20 63 61 6e 20 62 65 20 73 65 6c 65 63 74 65 64 3a | e-filter`.modes.can.be.selected: |
| 128da0 | 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 | .The.following.command.can.be.us |
| 128dc0 | 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 4f 54 50 20 6b 65 79 20 61 73 20 77 65 | ed.to.generate.the.OTP.key.as.we |
| 128de0 | 6c 6c 20 61 73 20 74 68 65 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 66 69 67 | ll.as.the.CLI.commands.to.config |
| 128e00 | 75 72 65 20 74 68 65 6d 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 20 | ure.them:.The.following.command. |
| 128e20 | 75 73 65 73 20 74 68 65 20 65 78 70 6c 69 63 69 74 2d 6e 75 6c 6c 20 6c 61 62 65 6c 20 76 61 6c | uses.the.explicit-null.label.val |
| 128e40 | 75 65 20 66 6f 72 20 61 6c 6c 20 74 68 65 20 42 47 50 20 69 6e 73 74 61 6e 63 65 73 2e 00 54 68 | ue.for.all.the.BGP.instances..Th |
| 128e60 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 6c 65 74 20 79 6f 75 20 63 68 65 | e.following.commands.let.you.che |
| 128e80 | 63 6b 20 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 | ck.tunnel.status..The.following. |
| 128ea0 | 63 6f 6d 6d 61 6e 64 73 20 6c 65 74 20 79 6f 75 20 72 65 73 65 74 20 4f 70 65 6e 56 50 4e 2e 00 | commands.let.you.reset.OpenVPN.. |
| 128ec0 | 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 74 72 61 6e 73 6c 61 74 65 | The.following.commands.translate |
| 128ee0 | 20 74 6f 20 22 2d 2d 6e 65 74 20 68 6f 73 74 22 20 77 68 65 6e 20 74 68 65 20 63 6f 6e 74 61 69 | .to."--net.host".when.the.contai |
| 128f00 | 6e 65 72 20 69 73 20 63 72 65 61 74 65 64 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d | ner.is.created.The.following.com |
| 128f20 | 6d 61 6e 64 73 20 77 6f 75 6c 64 20 62 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 74 20 6f | mands.would.be.required.to.set.o |
| 128f40 | 70 74 69 6f 6e 73 20 66 6f 72 20 61 20 67 69 76 65 6e 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 | ptions.for.a.given.dynamic.routi |
| 128f60 | 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 69 6e 73 69 64 65 20 61 20 67 69 76 65 6e 20 76 72 66 3a 00 | ng.protocol.inside.a.given.vrf:. |
| 128f80 | 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 64 65 6d 6f | The.following.configuration.demo |
| 128fa0 | 6e 73 74 72 61 74 65 73 20 68 6f 77 20 74 6f 20 75 73 65 20 56 79 4f 53 20 74 6f 20 61 63 68 69 | nstrates.how.to.use.VyOS.to.achi |
| 128fc0 | 65 76 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 | eve.load.balancing.based.on.the. |
| 128fe0 | 64 6f 6d 61 69 6e 20 6e 61 6d 65 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 | domain.name..The.following.confi |
| 129000 | 67 75 72 61 74 69 6f 6e 20 65 78 70 6c 69 63 69 74 6c 79 20 6a 6f 69 6e 73 20 6d 75 6c 74 69 63 | guration.explicitly.joins.multic |
| 129020 | 61 73 74 20 67 72 6f 75 70 20 60 66 66 31 35 3a 3a 31 32 33 34 60 20 6f 6e 20 69 6e 74 65 72 66 | ast.group.`ff15::1234`.on.interf |
| 129040 | 61 63 65 20 60 65 74 68 31 60 20 61 6e 64 20 73 6f 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d | ace.`eth1`.and.source-specific.m |
| 129060 | 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 60 66 66 31 35 3a 3a 35 36 37 38 60 20 77 69 74 68 | ulticast.group.`ff15::5678`.with |
| 129080 | 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 60 32 30 30 31 3a 64 62 38 3a 3a 31 60 20 6f 6e | .source.address.`2001:db8::1`.on |
| 1290a0 | 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 | .interface.`eth1`:.The.following |
| 1290c0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 6e 20 56 79 4f 53 20 61 70 70 6c 69 65 73 20 74 | .configuration.on.VyOS.applies.t |
| 1290e0 | 6f 20 61 6c 6c 20 66 6f 6c 6c 6f 77 69 6e 67 20 33 72 64 20 70 61 72 74 79 20 76 65 6e 64 6f 72 | o.all.following.3rd.party.vendor |
| 129100 | 73 2e 20 49 74 20 63 72 65 61 74 65 73 20 61 20 62 6f 6e 64 20 77 69 74 68 20 74 77 6f 20 6c 69 | s..It.creates.a.bond.with.two.li |
| 129120 | 6e 6b 73 20 61 6e 64 20 56 4c 41 4e 20 31 30 2c 20 31 30 30 20 6f 6e 20 74 68 65 20 62 6f 6e 64 | nks.and.VLAN.10,.100.on.the.bond |
| 129140 | 65 64 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 20 61 20 70 65 72 20 56 49 46 20 49 50 76 | ed.interfaces.with.a.per.VIF.IPv |
| 129160 | 34 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 | 4.address..The.following.configu |
| 129180 | 72 61 74 69 6f 6e 20 72 65 76 65 72 73 65 2d 70 72 6f 78 79 20 74 65 72 6d 69 6e 61 74 65 20 53 | ration.reverse-proxy.terminate.S |
| 1291a0 | 53 4c 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | SL..The.following.configuration. |
| 1291c0 | 74 65 72 6d 69 6e 61 74 65 73 20 53 53 4c 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2e 00 54 68 | terminates.SSL.on.the.router..Th |
| 1291e0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 65 72 6d 69 6e | e.following.configuration.termin |
| 129200 | 61 74 65 73 20 69 6e 63 6f 6d 69 6e 67 20 48 54 54 50 53 20 74 72 61 66 66 69 63 20 6f 6e 20 74 | ates.incoming.HTTPS.traffic.on.t |
| 129220 | 68 65 20 72 6f 75 74 65 72 2c 20 74 68 65 6e 20 72 65 2d 65 6e 63 72 79 70 74 73 20 74 68 65 20 | he.router,.then.re-encrypts.the. |
| 129240 | 74 72 61 66 66 69 63 20 61 6e 64 20 73 65 6e 64 73 20 74 6f 20 74 68 65 20 62 61 63 6b 65 6e 64 | traffic.and.sends.to.the.backend |
| 129260 | 20 73 65 72 76 65 72 20 76 69 61 20 48 54 54 50 53 2e 20 54 68 69 73 20 69 73 20 75 73 65 66 75 | .server.via.HTTPS..This.is.usefu |
| 129280 | 6c 20 69 66 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 | l.if.encryption.is.required.for. |
| 1292a0 | 62 6f 74 68 20 6c 65 67 73 2c 20 62 75 74 20 79 6f 75 20 64 6f 20 6e 6f 74 20 77 61 6e 74 20 74 | both.legs,.but.you.do.not.want.t |
| 1292c0 | 6f 20 69 6e 73 74 61 6c 6c 20 70 75 62 6c 69 63 6c 79 20 74 72 75 73 74 65 64 20 63 65 72 74 69 | o.install.publicly.trusted.certi |
| 1292e0 | 66 69 63 61 74 65 73 20 6f 6e 20 65 61 63 68 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 2e 00 | ficates.on.each.backend.server.. |
| 129300 | 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c | The.following.configuration.will |
| 129320 | 20 61 73 73 69 67 6e 20 61 20 2f 36 34 20 70 72 65 66 69 78 20 6f 75 74 20 6f 66 20 61 20 2f 35 | .assign.a./64.prefix.out.of.a./5 |
| 129340 | 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 74 6f 20 65 74 68 30 2e 20 54 68 65 20 49 50 76 36 20 61 | 6.delegation.to.eth0..The.IPv6.a |
| 129360 | 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 65 74 68 30 20 77 69 6c 6c 20 62 65 20 | ddress.assigned.to.eth0.will.be. |
| 129380 | 3c 70 72 65 66 69 78 3e 3a 3a 66 66 66 66 2f 36 34 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 | <prefix>::ffff/64..If.you.do.not |
| 1293a0 | 20 6b 6e 6f 77 20 74 68 65 20 70 72 65 66 69 78 20 73 69 7a 65 20 64 65 6c 65 67 61 74 65 64 20 | .know.the.prefix.size.delegated. |
| 1293c0 | 74 6f 20 79 6f 75 2c 20 73 74 61 72 74 20 77 69 74 68 20 73 6c 61 2d 6c 65 6e 20 30 2e 00 54 68 | to.you,.start.with.sla-len.0..Th |
| 1293e0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 73 | e.following.configuration.will.s |
| 129400 | 65 74 75 70 20 61 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 73 6f 75 72 63 65 20 66 72 6f 6d | etup.a.PPPoE.session.source.from |
| 129420 | 20 65 74 68 31 20 61 6e 64 20 61 73 73 69 67 6e 20 61 20 2f 36 34 20 70 72 65 66 69 78 20 6f 75 | .eth1.and.assign.a./64.prefix.ou |
| 129440 | 74 20 6f 66 20 61 20 2f 35 36 20 64 65 6c 65 67 61 74 69 6f 6e 20 28 72 65 71 75 65 73 74 65 64 | t.of.a./56.delegation.(requested |
| 129460 | 20 66 72 6f 6d 20 74 68 65 20 49 53 50 29 20 74 6f 20 65 74 68 30 2e 20 54 68 65 20 49 50 76 36 | .from.the.ISP).to.eth0..The.IPv6 |
| 129480 | 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 65 74 68 30 20 77 69 6c 6c 20 62 | .address.assigned.to.eth0.will.b |
| 1294a0 | 65 20 3c 70 72 65 66 69 78 3e 3a 3a 31 2f 36 34 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 | e.<prefix>::1/64..If.you.do.not. |
| 1294c0 | 6b 6e 6f 77 20 74 68 65 20 70 72 65 66 69 78 20 73 69 7a 65 20 64 65 6c 65 67 61 74 65 64 20 74 | know.the.prefix.size.delegated.t |
| 1294e0 | 6f 20 79 6f 75 2c 20 73 74 61 72 74 20 77 69 74 68 20 73 6c 61 2d 6c 65 6e 20 30 2e 00 54 68 65 | o.you,.start.with.sla-len.0..The |
| 129500 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 61 6c 6c 6f 77 73 20 56 79 4f 53 20 74 | .following.example.allows.VyOS.t |
| 129520 | 6f 20 75 73 65 20 3a 61 62 62 72 3a 60 50 42 52 20 28 50 6f 6c 69 63 79 2d 42 61 73 65 64 20 52 | o.use.:abbr:`PBR.(Policy-Based.R |
| 129540 | 6f 75 74 69 6e 67 29 60 20 66 6f 72 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 6f 72 69 67 | outing)`.for.traffic,.which.orig |
| 129560 | 69 6e 61 74 65 64 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 54 | inated.from.the.router.itself..T |
| 129580 | 68 61 74 20 73 6f 6c 75 74 69 6f 6e 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 49 53 50 27 73 20 | hat.solution.for.multiple.ISP's. |
| 1295a0 | 61 6e 64 20 56 79 4f 53 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 66 72 6f | and.VyOS.router.will.respond.fro |
| 1295c0 | 6d 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 74 68 65 20 70 61 | m.the.same.interface.that.the.pa |
| 1295e0 | 63 6b 65 74 20 77 61 73 20 72 65 63 65 69 76 65 64 2e 20 41 6c 73 6f 2c 20 69 74 20 75 73 65 64 | cket.was.received..Also,.it.used |
| 129600 | 2c 20 69 66 20 77 65 20 77 61 6e 74 20 74 68 61 74 20 6f 6e 65 20 56 50 4e 20 74 75 6e 6e 65 6c | ,.if.we.want.that.one.VPN.tunnel |
| 129620 | 20 74 6f 20 62 65 20 74 68 72 6f 75 67 68 20 6f 6e 65 20 70 72 6f 76 69 64 65 72 2c 20 61 6e 64 | .to.be.through.one.provider,.and |
| 129640 | 20 74 68 65 20 73 65 63 6f 6e 64 20 74 68 72 6f 75 67 68 20 61 6e 6f 74 68 65 72 2e 00 54 68 65 | .the.second.through.another..The |
| 129660 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 63 72 65 61 74 65 73 20 61 20 57 41 50 | .following.example.creates.a.WAP |
| 129680 | 2e 20 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 6d 75 6c 74 69 70 6c 65 20 57 41 50 20 | ..When.configuring.multiple.WAP. |
| 1296a0 | 69 6e 74 65 72 66 61 63 65 73 2c 20 79 6f 75 20 6d 75 73 74 20 73 70 65 63 69 66 79 20 75 6e 69 | interfaces,.you.must.specify.uni |
| 1296c0 | 71 75 65 20 49 50 20 61 64 64 72 65 73 73 65 73 2c 20 63 68 61 6e 6e 65 6c 73 2c 20 4e 65 74 77 | que.IP.addresses,.channels,.Netw |
| 1296e0 | 6f 72 6b 20 49 44 73 20 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 | ork.IDs.commonly.referred.to.as. |
| 129700 | 3a 61 62 62 72 3a 60 53 53 49 44 20 28 53 65 72 76 69 63 65 20 53 65 74 20 49 64 65 6e 74 69 66 | :abbr:`SSID.(Service.Set.Identif |
| 129720 | 69 65 72 29 60 2c 20 61 6e 64 20 4d 41 43 20 61 64 64 72 65 73 73 65 73 2e 00 54 68 65 20 66 6f | ier)`,.and.MAC.addresses..The.fo |
| 129740 | 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 69 73 20 62 61 73 65 64 20 6f 6e 20 61 20 53 69 | llowing.example.is.based.on.a.Si |
| 129760 | 65 72 72 61 20 57 69 72 65 6c 65 73 73 20 4d 43 37 37 31 30 20 6d 69 6e 69 50 43 49 65 20 63 61 | erra.Wireless.MC7710.miniPCIe.ca |
| 129780 | 72 64 20 28 6f 6e 6c 79 20 74 68 65 20 66 6f 72 6d 20 66 61 63 74 6f 72 20 69 6e 20 72 65 61 6c | rd.(only.the.form.factor.in.real |
| 1297a0 | 69 74 79 20 69 74 20 72 75 6e 73 20 55 42 53 29 20 61 6e 64 20 44 65 75 74 73 63 68 65 20 54 65 | ity.it.runs.UBS).and.Deutsche.Te |
| 1297c0 | 6c 65 6b 6f 6d 20 61 73 20 49 53 50 2e 20 54 68 65 20 63 61 72 64 20 69 73 20 61 73 73 65 6d 62 | lekom.as.ISP..The.card.is.assemb |
| 1297e0 | 6c 65 64 20 69 6e 74 6f 20 61 20 3a 72 65 66 3a 60 70 63 2d 65 6e 67 69 6e 65 73 2d 61 70 75 34 | led.into.a.:ref:`pc-engines-apu4 |
| 129800 | 60 2e 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 74 6f 70 6f 6c 6f 67 | `..The.following.example.topolog |
| 129820 | 79 20 77 61 73 20 62 75 69 6c 74 20 75 73 69 6e 67 20 45 56 45 2d 4e 47 2e 00 54 68 65 20 66 6f | y.was.built.using.EVE-NG..The.fo |
| 129840 | 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 77 69 6c 6c 20 73 68 6f 77 20 68 6f 77 20 56 79 | llowing.example.will.show.how.Vy |
| 129860 | 4f 53 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 72 65 64 69 72 65 63 74 20 77 65 62 20 74 | OS.can.be.used.to.redirect.web.t |
| 129880 | 72 61 66 66 69 63 20 74 6f 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 74 72 61 6e 73 70 61 72 65 6e | raffic.to.an.external.transparen |
| 1298a0 | 74 20 70 72 6f 78 79 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 73 20 | t.proxy:.The.following.examples. |
| 1298c0 | 73 68 6f 77 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 4e 41 54 36 34 20 6f 6e 20 61 | show.how.to.configure.NAT64.on.a |
| 1298e0 | 20 56 79 4f 53 20 72 6f 75 74 65 72 2e 20 54 68 65 20 31 39 32 2e 30 2e 32 2e 31 30 20 61 64 64 | .VyOS.router..The.192.0.2.10.add |
| 129900 | 72 65 73 73 20 69 73 20 75 73 65 64 20 61 73 20 74 68 65 20 49 50 76 34 20 61 64 64 72 65 73 73 | ress.is.used.as.the.IPv4.address |
| 129920 | 20 66 6f 72 20 74 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 70 6f 6f 6c 2e 00 54 68 65 20 66 | .for.the.translation.pool..The.f |
| 129940 | 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 73 20 77 69 6c 6c 20 73 68 6f 77 20 76 61 6c 69 | ollowing.examples.will.show.vali |
| 129960 | 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 66 6f 72 20 57 69 46 69 2d 36 20 28 32 2e 34 | d.configurations.for.WiFi-6.(2.4 |
| 129980 | 47 48 7a 29 20 61 6e 64 20 57 69 46 69 2d 36 65 20 28 36 47 48 7a 29 20 41 63 63 65 73 73 2d 50 | GHz).and.WiFi-6e.(6GHz).Access-P |
| 1299a0 | 6f 69 6e 74 73 20 77 69 74 68 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 68 61 72 61 63 74 | oints.with.the.following.charact |
| 1299c0 | 65 72 69 73 74 69 63 73 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 68 61 72 64 77 61 72 65 | eristics:.The.following.hardware |
| 1299e0 | 20 6d 6f 64 75 6c 65 73 20 68 61 76 65 20 62 65 65 6e 20 74 65 73 74 65 64 20 73 75 63 63 65 73 | .modules.have.been.tested.succes |
| 129a00 | 73 66 75 6c 6c 79 20 69 6e 20 61 6e 20 3a 72 65 66 3a 60 70 63 2d 65 6e 67 69 6e 65 73 2d 61 70 | sfully.in.an.:ref:`pc-engines-ap |
| 129a20 | 75 34 60 20 62 6f 61 72 64 3a 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 69 73 20 74 68 65 20 | u4`.board:.The.following.is.the. |
| 129a40 | 63 6f 6e 66 69 67 20 66 6f 72 20 74 68 65 20 69 50 68 6f 6e 65 20 70 65 65 72 20 61 62 6f 76 65 | config.for.the.iPhone.peer.above |
| 129a60 | 2e 20 49 74 27 73 20 69 6d 70 6f 72 74 61 6e 74 20 74 6f 20 6e 6f 74 65 20 74 68 61 74 20 74 68 | ..It's.important.to.note.that.th |
| 129a80 | 65 20 60 60 41 6c 6c 6f 77 65 64 49 50 73 60 60 20 77 69 6c 64 63 61 72 64 20 73 65 74 74 69 6e | e.``AllowedIPs``.wildcard.settin |
| 129aa0 | 67 20 64 69 72 65 63 74 73 20 61 6c 6c 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 74 72 61 66 | g.directs.all.IPv4.and.IPv6.traf |
| 129ac0 | 66 69 63 20 74 68 72 6f 75 67 68 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 54 68 65 20 | fic.through.the.connection..The. |
| 129ae0 | 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a | following.protocols.can.be.used: |
| 129b00 | 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 65 69 67 | .any,.babel,.bgp,.connected,.eig |
| 129b20 | 72 70 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 | rp,.isis,.kernel,.ospf,.rip,.sta |
| 129b40 | 74 69 63 2c 20 74 61 62 6c 65 00 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 70 72 6f 74 6f 63 6f | tic,.table.The.following.protoco |
| 129b60 | 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 3a 20 61 6e 79 2c 20 62 61 62 65 6c 2c 20 62 67 70 2c | ls.can.be.used:.any,.babel,.bgp, |
| 129b80 | 20 63 6f 6e 6e 65 63 74 65 64 2c 20 69 73 69 73 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 76 33 | .connected,.isis,.kernel,.ospfv3 |
| 129ba0 | 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 00 54 68 65 20 66 6f 6c 6c 6f | ,.ripng,.static,.table.The.follo |
| 129bc0 | 77 69 6e 67 20 73 74 72 75 63 74 75 72 65 20 72 65 73 70 72 65 73 65 6e 74 20 74 68 65 20 63 6c | wing.structure.respresent.the.cl |
| 129be0 | 69 20 73 74 72 75 63 74 75 72 65 2e 00 54 68 65 20 66 6f 72 6d 75 6c 61 20 66 6f 72 20 75 6e 66 | i.structure..The.formula.for.unf |
| 129c00 | 72 61 67 6d 65 6e 74 65 64 20 54 43 50 20 61 6e 64 20 55 44 50 20 70 61 63 6b 65 74 73 20 69 73 | ragmented.TCP.and.UDP.packets.is |
| 129c20 | 00 54 68 65 20 66 6f 72 77 61 72 64 69 6e 67 20 64 65 6c 61 79 20 74 69 6d 65 20 69 73 20 74 68 | .The.forwarding.delay.time.is.th |
| 129c40 | 65 20 74 69 6d 65 20 73 70 65 6e 74 20 69 6e 20 65 61 63 68 20 6f 66 20 74 68 65 20 6c 69 73 74 | e.time.spent.in.each.of.the.list |
| 129c60 | 65 6e 69 6e 67 20 61 6e 64 20 6c 65 61 72 6e 69 6e 67 20 73 74 61 74 65 73 20 62 65 66 6f 72 65 | ening.and.learning.states.before |
| 129c80 | 20 74 68 65 20 46 6f 72 77 61 72 64 69 6e 67 20 73 74 61 74 65 20 69 73 20 65 6e 74 65 72 65 64 | .the.Forwarding.state.is.entered |
| 129ca0 | 2e 20 54 68 69 73 20 64 65 6c 61 79 20 69 73 20 73 6f 20 74 68 61 74 20 77 68 65 6e 20 61 20 6e | ..This.delay.is.so.that.when.a.n |
| 129cc0 | 65 77 20 62 72 69 64 67 65 20 63 6f 6d 65 73 20 6f 6e 74 6f 20 61 20 62 75 73 79 20 6e 65 74 77 | ew.bridge.comes.onto.a.busy.netw |
| 129ce0 | 6f 72 6b 20 69 74 20 6c 6f 6f 6b 73 20 61 74 20 73 6f 6d 65 20 74 72 61 66 66 69 63 20 62 65 66 | ork.it.looks.at.some.traffic.bef |
| 129d00 | 6f 72 65 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 2e 00 54 68 65 20 67 65 6e 65 72 61 74 65 64 | ore.participating..The.generated |
| 129d20 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 54 | .configuration.will.look.like:.T |
| 129d40 | 68 65 20 67 65 6e 65 72 61 74 65 64 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 74 68 65 6e | he.generated.parameters.are.then |
| 129d60 | 20 6f 75 74 70 75 74 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 2e 00 54 68 65 20 67 65 6e 65 | .output.to.the.console..The.gene |
| 129d80 | 72 69 63 20 6e 61 6d 65 20 6f 66 20 51 75 61 6c 69 74 79 20 6f 66 20 53 65 72 76 69 63 65 20 6f | ric.name.of.Quality.of.Service.o |
| 129da0 | 72 20 54 72 61 66 66 69 63 20 43 6f 6e 74 72 6f 6c 20 69 6e 76 6f 6c 76 65 73 20 74 68 69 6e 67 | r.Traffic.Control.involves.thing |
| 129dc0 | 73 20 6c 69 6b 65 20 73 68 61 70 69 6e 67 20 74 72 61 66 66 69 63 2c 20 73 63 68 65 64 75 6c 69 | s.like.shaping.traffic,.scheduli |
| 129de0 | 6e 67 20 6f 72 20 64 72 6f 70 70 69 6e 67 20 70 61 63 6b 65 74 73 2c 20 77 68 69 63 68 20 61 72 | ng.or.dropping.packets,.which.ar |
| 129e00 | 65 20 74 68 65 20 6b 69 6e 64 20 6f 66 20 74 68 69 6e 67 73 20 79 6f 75 20 6d 61 79 20 77 61 6e | e.the.kind.of.things.you.may.wan |
| 129e20 | 74 20 74 6f 20 70 6c 61 79 20 77 69 74 68 20 77 68 65 6e 20 79 6f 75 20 68 61 76 65 2c 20 66 6f | t.to.play.with.when.you.have,.fo |
| 129e40 | 72 20 69 6e 73 74 61 6e 63 65 2c 20 61 20 62 61 6e 64 77 69 64 74 68 20 62 6f 74 74 6c 65 6e 65 | r.instance,.a.bandwidth.bottlene |
| 129e60 | 63 6b 20 69 6e 20 61 20 6c 69 6e 6b 20 61 6e 64 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 73 6f 6d | ck.in.a.link.and.you.want.to.som |
| 129e80 | 65 68 6f 77 20 70 72 69 6f 72 69 74 69 7a 65 20 73 6f 6d 65 20 74 79 70 65 20 6f 66 20 74 72 61 | ehow.prioritize.some.type.of.tra |
| 129ea0 | 66 66 69 63 20 6f 76 65 72 20 61 6e 6f 74 68 65 72 2e 00 54 68 65 20 68 61 73 68 20 74 79 70 65 | ffic.over.another..The.hash.type |
| 129ec0 | 20 75 73 65 64 20 77 68 65 6e 20 64 69 73 63 6f 76 65 72 69 6e 67 20 66 69 6c 65 20 6f 6e 20 6d | .used.when.discovering.file.on.m |
| 129ee0 | 61 73 74 65 72 20 73 65 72 76 65 72 20 28 64 65 66 61 75 6c 74 3a 20 73 68 61 32 35 36 29 00 54 | aster.server.(default:.sha256).T |
| 129f00 | 68 65 20 68 65 61 6c 74 68 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 70 61 74 68 | he.health.of.interfaces.and.path |
| 129f20 | 73 20 61 73 73 69 67 6e 65 64 20 74 6f 20 74 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 20 | s.assigned.to.the.load.balancer. |
| 129f40 | 69 73 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 63 68 65 63 6b 65 64 20 62 79 20 73 65 6e 64 69 | is.periodically.checked.by.sendi |
| 129f60 | 6e 67 20 49 43 4d 50 20 70 61 63 6b 65 74 73 20 28 70 69 6e 67 29 20 74 6f 20 72 65 6d 6f 74 65 | ng.ICMP.packets.(ping).to.remote |
| 129f80 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 2c 20 61 20 54 54 4c 20 74 65 73 74 20 6f 72 20 74 68 65 | .destinations,.a.TTL.test.or.the |
| 129fa0 | 20 65 78 65 63 75 74 69 6f 6e 20 6f 66 20 61 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 | .execution.of.a.user.defined.scr |
| 129fc0 | 69 70 74 2e 20 49 66 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 66 61 69 6c 73 20 74 68 65 20 68 | ipt..If.an.interface.fails.the.h |
| 129fe0 | 65 61 6c 74 68 20 63 68 65 63 6b 20 69 74 20 69 73 20 72 65 6d 6f 76 65 64 20 66 72 6f 6d 20 74 | ealth.check.it.is.removed.from.t |
| 12a000 | 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 72 27 73 20 70 6f 6f 6c 20 6f 66 20 69 6e 74 65 72 | he.load.balancer's.pool.of.inter |
| 12a020 | 66 61 63 65 73 2e 20 54 6f 20 65 6e 61 62 6c 65 20 68 65 61 6c 74 68 20 63 68 65 63 6b 69 6e 67 | faces..To.enable.health.checking |
| 12a040 | 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 3a 00 54 68 65 20 68 65 6c 6c 6f 2d 6d 75 6c | .for.an.interface:.The.hello-mul |
| 12a060 | 74 69 70 6c 69 65 72 20 73 70 65 63 69 66 69 65 73 20 68 6f 77 20 6d 61 6e 79 20 48 65 6c 6c 6f | tiplier.specifies.how.many.Hello |
| 12a080 | 73 20 74 6f 20 73 65 6e 64 20 70 65 72 20 73 65 63 6f 6e 64 2c 20 66 72 6f 6d 20 31 20 28 65 76 | s.to.send.per.second,.from.1.(ev |
| 12a0a0 | 65 72 79 20 73 65 63 6f 6e 64 29 20 74 6f 20 31 30 20 28 65 76 65 72 79 20 31 30 30 6d 73 29 2e | ery.second).to.10.(every.100ms). |
| 12a0c0 | 20 54 68 75 73 20 6f 6e 65 20 63 61 6e 20 68 61 76 65 20 31 73 20 63 6f 6e 76 65 72 67 65 6e 63 | .Thus.one.can.have.1s.convergenc |
| 12a0e0 | 65 20 74 69 6d 65 20 66 6f 72 20 4f 53 50 46 2e 20 49 66 20 74 68 69 73 20 66 6f 72 6d 20 69 73 | e.time.for.OSPF..If.this.form.is |
| 12a100 | 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 65 6e 20 74 68 65 20 68 65 6c 6c 6f 2d 69 6e 74 65 72 | .specified,.then.the.hello-inter |
| 12a120 | 76 61 6c 20 61 64 76 65 72 74 69 73 65 64 20 69 6e 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 | val.advertised.in.Hello.packets. |
| 12a140 | 69 73 20 73 65 74 20 74 6f 20 30 20 61 6e 64 20 74 68 65 20 68 65 6c 6c 6f 2d 69 6e 74 65 72 76 | is.set.to.0.and.the.hello-interv |
| 12a160 | 61 6c 20 6f 6e 20 72 65 63 65 69 76 65 64 20 48 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 69 73 20 | al.on.received.Hello.packets.is. |
| 12a180 | 6e 6f 74 20 63 68 65 63 6b 65 64 2c 20 74 68 75 73 20 74 68 65 20 68 65 6c 6c 6f 2d 6d 75 6c 74 | not.checked,.thus.the.hello-mult |
| 12a1a0 | 69 70 6c 69 65 72 20 6e 65 65 64 20 4e 4f 54 20 62 65 20 74 68 65 20 73 61 6d 65 20 61 63 72 6f | iplier.need.NOT.be.the.same.acro |
| 12a1c0 | 73 73 20 6d 75 6c 74 69 70 6c 65 20 72 6f 75 74 65 72 73 20 6f 6e 20 61 20 63 6f 6d 6d 6f 6e 20 | ss.multiple.routers.on.a.common. |
| 12a1e0 | 6c 69 6e 6b 2e 00 54 68 65 20 68 6f 73 74 6e 61 6d 65 20 63 61 6e 20 62 65 20 75 70 20 74 6f 20 | link..The.hostname.can.be.up.to. |
| 12a200 | 36 33 20 63 68 61 72 61 63 74 65 72 73 2e 20 41 20 68 6f 73 74 6e 61 6d 65 20 6d 75 73 74 20 73 | 63.characters..A.hostname.must.s |
| 12a220 | 74 61 72 74 20 61 6e 64 20 65 6e 64 20 77 69 74 68 20 61 20 6c 65 74 74 65 72 20 6f 72 20 64 69 | tart.and.end.with.a.letter.or.di |
| 12a240 | 67 69 74 2c 20 61 6e 64 20 68 61 76 65 20 61 73 20 69 6e 74 65 72 69 6f 72 20 63 68 61 72 61 63 | git,.and.have.as.interior.charac |
| 12a260 | 74 65 72 73 20 6f 6e 6c 79 20 6c 65 74 74 65 72 73 2c 20 64 69 67 69 74 73 2c 20 6f 72 20 61 20 | ters.only.letters,.digits,.or.a. |
| 12a280 | 68 79 70 68 65 6e 2e 00 54 68 65 20 68 6f 73 74 6e 61 6d 65 20 6f 72 20 49 50 20 61 64 64 72 65 | hyphen..The.hostname.or.IP.addre |
| 12a2a0 | 73 73 20 6f 66 20 74 68 65 20 6d 61 73 74 65 72 00 54 68 65 20 69 64 65 6e 74 69 66 69 65 72 20 | ss.of.the.master.The.identifier. |
| 12a2c0 | 69 73 20 74 68 65 20 64 65 76 69 63 65 27 73 20 44 55 49 44 3a 20 63 6f 6c 6f 6e 2d 73 65 70 61 | is.the.device's.DUID:.colon-sepa |
| 12a2e0 | 72 61 74 65 64 20 68 65 78 20 6c 69 73 74 20 28 61 73 20 75 73 65 64 20 62 79 20 69 73 63 2d 64 | rated.hex.list.(as.used.by.isc-d |
| 12a300 | 68 63 70 20 6f 70 74 69 6f 6e 20 64 68 63 70 76 36 2e 63 6c 69 65 6e 74 2d 69 64 29 2e 20 49 66 | hcp.option.dhcpv6.client-id)..If |
| 12a320 | 20 74 68 65 20 64 65 76 69 63 65 20 61 6c 72 65 61 64 79 20 68 61 73 20 61 20 64 79 6e 61 6d 69 | .the.device.already.has.a.dynami |
| 12a340 | 63 20 6c 65 61 73 65 20 66 72 6f 6d 20 74 68 65 20 44 48 43 50 76 36 20 73 65 72 76 65 72 2c 20 | c.lease.from.the.DHCPv6.server,. |
| 12a360 | 69 74 73 20 44 55 49 44 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 77 69 74 68 20 60 60 73 68 6f | its.DUID.can.be.found.with.``sho |
| 12a380 | 77 20 73 65 72 76 69 63 65 20 64 68 63 70 76 36 20 73 65 72 76 65 72 20 6c 65 61 73 65 73 60 60 | w.service.dhcpv6.server.leases`` |
| 12a3a0 | 2e 20 54 68 65 20 44 55 49 44 20 62 65 67 69 6e 73 20 61 74 20 74 68 65 20 35 74 68 20 6f 63 74 | ..The.DUID.begins.at.the.5th.oct |
| 12a3c0 | 65 74 20 28 61 66 74 65 72 20 74 68 65 20 34 74 68 20 63 6f 6c 6f 6e 29 20 6f 66 20 49 41 49 44 | et.(after.the.4th.colon).of.IAID |
| 12a3e0 | 5f 44 55 49 44 2e 00 54 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 73 70 6f 6b 65 20 63 6f 6e 66 | _DUID..The.individual.spoke.conf |
| 12a400 | 69 67 75 72 61 74 69 6f 6e 73 20 6f 6e 6c 79 20 64 69 66 66 65 72 20 69 6e 20 74 68 65 20 6c 6f | igurations.only.differ.in.the.lo |
| 12a420 | 63 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 6f 6e 20 74 68 65 20 60 60 74 75 6e 31 30 60 60 20 | cal.IP.address.on.the.``tun10``. |
| 12a440 | 69 6e 74 65 72 66 61 63 65 2e 20 53 65 65 20 74 68 65 20 61 62 6f 76 65 20 64 69 61 67 72 61 6d | interface..See.the.above.diagram |
| 12a460 | 20 66 6f 72 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 | .for.the.individual.IP.addresses |
| 12a480 | 2e 00 54 68 65 20 69 6e 6e 65 72 20 74 61 67 20 69 73 20 74 68 65 20 74 61 67 20 77 68 69 63 68 | ..The.inner.tag.is.the.tag.which |
| 12a4a0 | 20 69 73 20 63 6c 6f 73 65 73 74 20 74 6f 20 74 68 65 20 70 61 79 6c 6f 61 64 20 70 6f 72 74 69 | .is.closest.to.the.payload.porti |
| 12a4c0 | 6f 6e 20 6f 66 20 74 68 65 20 66 72 61 6d 65 2e 20 49 74 20 69 73 20 6f 66 66 69 63 69 61 6c 6c | on.of.the.frame..It.is.officiall |
| 12a4e0 | 79 20 63 61 6c 6c 65 64 20 43 2d 54 41 47 20 28 63 75 73 74 6f 6d 65 72 20 74 61 67 2c 20 77 69 | y.called.C-TAG.(customer.tag,.wi |
| 12a500 | 74 68 20 65 74 68 65 72 74 79 70 65 20 30 78 38 31 30 30 29 2e 20 54 68 65 20 6f 75 74 65 72 20 | th.ethertype.0x8100)..The.outer. |
| 12a520 | 74 61 67 20 69 73 20 74 68 65 20 6f 6e 65 20 63 6c 6f 73 65 72 2f 63 6c 6f 73 65 73 74 20 74 6f | tag.is.the.one.closer/closest.to |
| 12a540 | 20 74 68 65 20 45 74 68 65 72 6e 65 74 20 68 65 61 64 65 72 2c 20 69 74 73 20 6e 61 6d 65 20 69 | .the.Ethernet.header,.its.name.i |
| 12a560 | 73 20 53 2d 54 41 47 20 28 73 65 72 76 69 63 65 20 74 61 67 20 77 69 74 68 20 45 74 68 65 72 6e | s.S-TAG.(service.tag.with.Ethern |
| 12a580 | 65 74 20 54 79 70 65 20 3d 20 30 78 38 38 61 38 29 2e 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 | et.Type.=.0x88a8)..The.interface |
| 12a5a0 | 20 74 68 61 74 20 77 69 6c 6c 20 62 65 20 6d 6f 6e 69 74 6f 72 65 64 20 62 79 20 74 68 65 20 53 | .that.will.be.monitored.by.the.S |
| 12a5c0 | 75 72 69 63 61 74 61 20 73 65 72 76 69 63 65 2e 00 54 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 | uricata.service..The.interface.t |
| 12a5e0 | 72 61 66 66 69 63 20 77 69 6c 6c 20 62 65 20 63 6f 6d 69 6e 67 20 69 6e 20 6f 6e 3b 00 54 68 65 | raffic.will.be.coming.in.on;.The |
| 12a600 | 20 69 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 74 6f 20 72 65 63 65 69 76 65 20 61 6e 64 20 72 | .interface.used.to.receive.and.r |
| 12a620 | 65 6c 61 79 20 69 6e 64 69 76 69 64 75 61 6c 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 | elay.individual.broadcast.packet |
| 12a640 | 73 2e 20 49 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 72 65 63 65 69 76 65 2f 72 65 6c 61 79 20 | s..If.you.want.to.receive/relay. |
| 12a660 | 70 61 63 6b 65 74 73 20 6f 6e 20 62 6f 74 68 20 60 65 74 68 31 60 20 61 6e 64 20 60 65 74 68 32 | packets.on.both.`eth1`.and.`eth2 |
| 12a680 | 60 20 62 6f 74 68 20 69 6e 74 65 72 66 61 63 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 61 64 64 | `.both.interfaces.need.to.be.add |
| 12a6a0 | 65 64 2e 00 54 68 65 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 77 65 | ed..The.internal.IP.addresses.we |
| 12a6c0 | 20 77 61 6e 74 20 74 6f 20 74 72 61 6e 73 6c 61 74 65 00 54 68 65 20 69 6e 76 65 72 73 65 20 63 | .want.to.translate.The.inverse.c |
| 12a6e0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 68 61 73 20 74 6f 20 62 65 20 61 70 70 6c 69 65 64 20 74 | onfiguration.has.to.be.applied.t |
| 12a700 | 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 00 54 68 65 20 6c 61 72 67 65 73 74 20 4d | o.the.remote.side..The.largest.M |
| 12a720 | 54 55 20 73 69 7a 65 20 79 6f 75 20 63 61 6e 20 75 73 65 20 77 69 74 68 20 44 53 4c 20 69 73 20 | TU.size.you.can.use.with.DSL.is. |
| 12a740 | 31 34 39 32 20 64 75 65 20 74 6f 20 50 50 50 6f 45 20 6f 76 65 72 68 65 61 64 2e 20 49 66 20 79 | 1492.due.to.PPPoE.overhead..If.y |
| 12a760 | 6f 75 20 61 72 65 20 73 77 69 74 63 68 69 6e 67 20 66 72 6f 6d 20 61 20 44 48 43 50 20 62 61 73 | ou.are.switching.from.a.DHCP.bas |
| 12a780 | 65 64 20 49 53 50 20 6c 69 6b 65 20 63 61 62 6c 65 20 74 68 65 6e 20 62 65 20 61 77 61 72 65 20 | ed.ISP.like.cable.then.be.aware. |
| 12a7a0 | 74 68 61 74 20 74 68 69 6e 67 73 20 6c 69 6b 65 20 56 50 4e 20 6c 69 6e 6b 73 20 6d 61 79 20 6e | that.things.like.VPN.links.may.n |
| 12a7c0 | 65 65 64 20 74 6f 20 68 61 76 65 20 74 68 65 69 72 20 4d 54 55 20 73 69 7a 65 73 20 61 64 6a 75 | eed.to.have.their.MTU.sizes.adju |
| 12a7e0 | 73 74 65 64 20 74 6f 20 77 6f 72 6b 20 77 69 74 68 69 6e 20 74 68 69 73 20 6c 69 6d 69 74 2e 00 | sted.to.work.within.this.limit.. |
| 12a800 | 54 68 65 20 6c 61 73 74 20 73 74 65 70 20 69 73 20 74 6f 20 64 65 66 69 6e 65 20 61 6e 20 69 6e | The.last.step.is.to.define.an.in |
| 12a820 | 74 65 72 66 61 63 65 20 72 6f 75 74 65 20 66 6f 72 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 | terface.route.for.192.168.2.0/24 |
| 12a840 | 20 74 6f 20 67 65 74 20 74 68 72 6f 75 67 68 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 6e | .to.get.through.the.WireGuard.in |
| 12a860 | 74 65 72 66 61 63 65 20 60 77 67 30 31 60 2e 20 4d 75 6c 74 69 70 6c 65 20 49 50 73 20 6f 72 20 | terface.`wg01`..Multiple.IPs.or. |
| 12a880 | 6e 65 74 77 6f 72 6b 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 6e 64 20 72 6f 75 74 | networks.can.be.defined.and.rout |
| 12a8a0 | 65 64 2e 20 54 68 65 20 6c 61 73 74 20 63 68 65 63 6b 20 69 73 20 61 6c 6c 6f 77 65 64 2d 69 70 | ed..The.last.check.is.allowed-ip |
| 12a8c0 | 73 20 77 68 69 63 68 20 65 69 74 68 65 72 20 70 72 65 76 65 6e 74 73 20 6f 72 20 61 6c 6c 6f 77 | s.which.either.prevents.or.allow |
| 12a8e0 | 73 20 74 68 65 20 74 72 61 66 66 69 63 2e 00 54 68 65 20 6c 65 67 61 63 79 20 61 6e 64 20 7a 6f | s.the.traffic..The.legacy.and.zo |
| 12a900 | 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | ne-based.firewall.configuration. |
| 12a920 | 6f 70 74 69 6f 6e 73 20 69 73 20 6e 6f 74 20 6c 6f 6e 67 65 72 20 73 75 70 70 6f 72 74 65 64 2e | options.is.not.longer.supported. |
| 12a940 | 20 54 68 65 79 20 61 72 65 20 68 65 72 65 20 66 6f 72 20 72 65 66 65 72 65 6e 63 65 20 70 75 72 | .They.are.here.for.reference.pur |
| 12a960 | 70 6f 73 65 73 20 6f 6e 6c 79 2e 00 54 68 65 20 6c 69 6d 69 74 65 72 20 70 65 72 66 6f 72 6d 73 | poses.only..The.limiter.performs |
| 12a980 | 20 62 61 73 69 63 20 69 6e 67 72 65 73 73 20 70 6f 6c 69 63 69 6e 67 20 6f 66 20 74 72 61 66 66 | .basic.ingress.policing.of.traff |
| 12a9a0 | 69 63 20 66 6c 6f 77 73 2e 20 4d 75 6c 74 69 70 6c 65 20 63 6c 61 73 73 65 73 20 6f 66 20 74 72 | ic.flows..Multiple.classes.of.tr |
| 12a9c0 | 61 66 66 69 63 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 6e 64 20 74 72 61 66 66 69 63 | affic.can.be.defined.and.traffic |
| 12a9e0 | 20 6c 69 6d 69 74 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 65 61 63 68 20 63 | .limits.can.be.applied.to.each.c |
| 12aa00 | 6c 61 73 73 2e 20 41 6c 74 68 6f 75 67 68 20 74 68 65 20 70 6f 6c 69 63 65 72 20 75 73 65 73 20 | lass..Although.the.policer.uses. |
| 12aa20 | 61 20 74 6f 6b 65 6e 20 62 75 63 6b 65 74 20 6d 65 63 68 61 6e 69 73 6d 20 69 6e 74 65 72 6e 61 | a.token.bucket.mechanism.interna |
| 12aa40 | 6c 6c 79 2c 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 74 68 65 20 63 61 70 61 62 69 | lly,.it.does.not.have.the.capabi |
| 12aa60 | 6c 69 74 79 20 74 6f 20 64 65 6c 61 79 20 61 20 70 61 63 6b 65 74 20 61 73 20 61 20 73 68 61 70 | lity.to.delay.a.packet.as.a.shap |
| 12aa80 | 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 20 64 6f 65 73 2e 20 54 72 61 66 66 69 63 20 65 78 63 65 | ing.mechanism.does..Traffic.exce |
| 12aaa0 | 65 64 69 6e 67 20 74 68 65 20 64 65 66 69 6e 65 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 | eding.the.defined.bandwidth.limi |
| 12aac0 | 74 73 20 69 73 20 64 69 72 65 63 74 6c 79 20 64 72 6f 70 70 65 64 2e 20 41 20 6d 61 78 69 6d 75 | ts.is.directly.dropped..A.maximu |
| 12aae0 | 6d 20 61 6c 6c 6f 77 65 64 20 62 75 72 73 74 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 | m.allowed.burst.can.be.configure |
| 12ab00 | 64 20 74 6f 6f 2e 00 54 68 65 20 6c 69 6e 6b 20 62 61 6e 64 77 69 64 74 68 20 65 78 74 65 6e 64 | d.too..The.link.bandwidth.extend |
| 12ab20 | 65 64 20 63 6f 6d 6d 75 6e 69 74 79 20 69 73 20 65 6e 63 6f 64 65 64 20 61 73 20 6e 6f 6e 2d 74 | ed.community.is.encoded.as.non-t |
| 12ab40 | 72 61 6e 73 69 74 69 76 65 00 54 68 65 20 6c 6f 63 61 6c 20 49 50 76 34 20 6f 72 20 49 50 76 36 | ransitive.The.local.IPv4.or.IPv6 |
| 12ab60 | 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 69 6e 64 20 74 68 65 20 44 4e 53 20 66 6f 72 77 61 | .addresses.to.bind.the.DNS.forwa |
| 12ab80 | 72 64 65 72 20 74 6f 2e 20 54 68 65 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 6c 69 73 74 | rder.to..The.forwarder.will.list |
| 12aba0 | 65 6e 20 6f 6e 20 74 68 69 73 20 61 64 64 72 65 73 73 20 66 6f 72 20 69 6e 63 6f 6d 69 6e 67 20 | en.on.this.address.for.incoming. |
| 12abc0 | 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 68 65 20 6c 6f 63 61 6c 20 49 50 76 34 20 6f 72 20 49 | connections..The.local.IPv4.or.I |
| 12abe0 | 50 76 36 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 75 73 65 20 61 73 20 61 20 73 6f 75 72 63 65 | Pv6.addresses.to.use.as.a.source |
| 12ac00 | 20 61 64 64 72 65 73 73 20 66 6f 72 20 73 65 6e 64 69 6e 67 20 71 75 65 72 69 65 73 2e 20 54 68 | .address.for.sending.queries..Th |
| 12ac20 | 65 20 66 6f 72 77 61 72 64 65 72 20 77 69 6c 6c 20 73 65 6e 64 20 66 6f 72 77 61 72 64 65 64 20 | e.forwarder.will.send.forwarded. |
| 12ac40 | 6f 75 74 62 6f 75 6e 64 20 44 4e 53 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 74 68 69 73 20 | outbound.DNS.requests.from.this. |
| 12ac60 | 61 64 64 72 65 73 73 2e 00 54 68 65 20 6c 6f 63 61 6c 20 73 69 74 65 20 77 69 6c 6c 20 68 61 76 | address..The.local.site.will.hav |
| 12ac80 | 65 20 61 20 73 75 62 6e 65 74 20 6f 66 20 31 30 2e 30 2e 30 2e 30 2f 31 36 2e 00 54 68 65 20 6c | e.a.subnet.of.10.0.0.0/16..The.l |
| 12aca0 | 6f 6f 70 62 61 63 6b 20 6e 65 74 77 6f 72 6b 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 | oopback.networking.interface.is. |
| 12acc0 | 61 20 76 69 72 74 75 61 6c 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 20 69 6d 70 6c 65 6d 65 | a.virtual.network.device.impleme |
| 12ace0 | 6e 74 65 64 20 65 6e 74 69 72 65 6c 79 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 41 6c 6c 20 74 | nted.entirely.in.software..All.t |
| 12ad00 | 72 61 66 66 69 63 20 73 65 6e 74 20 74 6f 20 69 74 20 22 6c 6f 6f 70 73 20 62 61 63 6b 22 20 61 | raffic.sent.to.it."loops.back".a |
| 12ad20 | 6e 64 20 6a 75 73 74 20 74 61 72 67 65 74 73 20 73 65 72 76 69 63 65 73 20 6f 6e 20 79 6f 75 72 | nd.just.targets.services.on.your |
| 12ad40 | 20 6c 6f 63 61 6c 20 6d 61 63 68 69 6e 65 2e 00 54 68 65 20 6d 61 69 6e 20 62 65 6e 65 66 69 74 | .local.machine..The.main.benefit |
| 12ad60 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f | .to.configuration.synchronizatio |
| 12ad80 | 6e 20 69 73 20 74 68 61 74 20 69 74 20 65 6c 69 6d 69 6e 61 74 65 73 20 68 61 76 69 6e 67 20 74 | n.is.that.it.eliminates.having.t |
| 12ada0 | 6f 20 6d 61 6e 75 61 6c 6c 79 20 72 65 70 6c 69 63 61 74 65 20 63 6f 6e 66 69 67 75 72 61 74 69 | o.manually.replicate.configurati |
| 12adc0 | 6f 6e 20 63 68 61 6e 67 65 73 20 6d 61 64 65 20 6f 6e 20 74 68 65 20 70 72 69 6d 61 72 79 20 72 | on.changes.made.on.the.primary.r |
| 12ade0 | 6f 75 74 65 72 20 74 6f 20 74 68 65 20 73 65 63 6f 6e 64 61 72 79 20 28 72 65 70 6c 69 63 61 29 | outer.to.the.secondary.(replica) |
| 12ae00 | 20 72 6f 75 74 65 72 2e 00 54 68 65 20 6d 61 69 6e 20 70 6f 69 6e 74 73 20 72 65 67 61 72 64 69 | .router..The.main.points.regardi |
| 12ae20 | 6e 67 20 74 68 69 73 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 61 6e 64 20 74 65 72 6d 69 6e 6f 6c | ng.this.packet.flow.and.terminol |
| 12ae40 | 6f 67 79 20 75 73 65 64 20 69 6e 20 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 61 72 65 20 63 6f | ogy.used.in.VyOS.firewall.are.co |
| 12ae60 | 76 65 72 65 64 20 62 65 6c 6f 77 3a 00 54 68 65 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 | vered.below:.The.main.structure. |
| 12ae80 | 56 79 4f 53 20 66 69 72 65 77 61 6c 6c 20 63 6c 69 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a | VyOS.firewall.cli.is.shown.next: |
| 12aea0 | 00 54 68 65 20 6d 61 69 6e 20 73 74 72 75 63 74 75 72 65 20 6f 66 20 74 68 65 20 56 79 4f 53 20 | .The.main.structure.of.the.VyOS. |
| 12aec0 | 66 69 72 65 77 61 6c 6c 20 43 4c 49 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 54 68 65 20 | firewall.CLI.is.shown.next:.The. |
| 12aee0 | 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 74 61 72 67 65 74 73 20 74 68 61 74 20 63 | maximum.number.of.targets.that.c |
| 12af00 | 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 73 20 31 36 2e 20 54 68 65 20 64 65 66 61 75 | an.be.specified.is.16..The.defau |
| 12af20 | 6c 74 20 76 61 6c 75 65 20 69 73 20 6e 6f 20 49 50 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 6d | lt.value.is.no.IP.address..The.m |
| 12af40 | 65 61 6e 69 6e 67 20 6f 66 20 74 68 65 20 43 6c 61 73 73 20 49 44 20 69 73 20 6e 6f 74 20 74 68 | eaning.of.the.Class.ID.is.not.th |
| 12af60 | 65 20 73 61 6d 65 20 66 6f 72 20 65 76 65 72 79 20 74 79 70 65 20 6f 66 20 70 6f 6c 69 63 79 2e | e.same.for.every.type.of.policy. |
| 12af80 | 20 4e 6f 72 6d 61 6c 6c 79 20 70 6f 6c 69 63 69 65 73 20 6a 75 73 74 20 6e 65 65 64 20 61 20 6d | .Normally.policies.just.need.a.m |
| 12afa0 | 65 61 6e 69 6e 67 6c 65 73 73 20 6e 75 6d 62 65 72 20 74 6f 20 69 64 65 6e 74 69 66 79 20 61 20 | eaningless.number.to.identify.a. |
| 12afc0 | 63 6c 61 73 73 20 28 43 6c 61 73 73 20 49 44 29 2c 20 62 75 74 20 74 68 61 74 20 64 6f 65 73 20 | class.(Class.ID),.but.that.does. |
| 12afe0 | 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 65 76 65 72 79 20 70 6f 6c 69 63 79 2e 20 54 68 65 20 6e | not.apply.to.every.policy..The.n |
| 12b000 | 75 6d 62 65 72 20 6f 66 20 61 20 63 6c 61 73 73 20 69 6e 20 61 20 50 72 69 6f 72 69 74 79 20 51 | umber.of.a.class.in.a.Priority.Q |
| 12b020 | 75 65 75 65 20 69 74 20 64 6f 65 73 20 6e 6f 74 20 6f 6e 6c 79 20 69 64 65 6e 74 69 66 79 20 69 | ueue.it.does.not.only.identify.i |
| 12b040 | 74 2c 20 69 74 20 61 6c 73 6f 20 64 65 66 69 6e 65 73 20 69 74 73 20 70 72 69 6f 72 69 74 79 2e | t,.it.also.defines.its.priority. |
| 12b060 | 00 54 68 65 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 20 60 65 74 68 31 60 20 69 73 20 | .The.member.interface.`eth1`.is. |
| 12b080 | 61 20 74 72 75 6e 6b 20 74 68 61 74 20 61 6c 6c 6f 77 73 20 56 4c 41 4e 20 31 30 20 74 6f 20 70 | a.trunk.that.allows.VLAN.10.to.p |
| 12b0a0 | 61 73 73 00 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 | ass.The.metric.range.is.1.to.167 |
| 12b0c0 | 37 37 32 31 35 20 28 4d 61 78 20 76 61 6c 75 65 20 64 65 70 65 6e 64 20 69 66 20 6d 65 74 72 69 | 77215.(Max.value.depend.if.metri |
| 12b0e0 | 63 20 73 75 70 70 6f 72 74 20 6e 61 72 72 6f 77 20 6f 72 20 77 69 64 65 20 76 61 6c 75 65 29 2e | c.support.narrow.or.wide.value). |
| 12b100 | 00 54 68 65 20 6d 69 6e 69 6d 61 6c 20 65 63 68 6f 20 72 65 63 65 69 76 65 20 74 72 61 6e 73 6d | .The.minimal.echo.receive.transm |
| 12b120 | 69 73 73 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 74 68 61 74 20 74 68 69 73 20 73 79 73 74 65 6d | ission.interval.that.this.system |
| 12b140 | 20 69 73 20 63 61 70 61 62 6c 65 20 6f 66 20 68 61 6e 64 6c 69 6e 67 00 54 68 65 20 6d 6f 73 74 | .is.capable.of.handling.The.most |
| 12b160 | 20 76 69 73 69 62 6c 65 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 6f 66 20 74 68 65 20 70 72 6f 74 | .visible.application.of.the.prot |
| 12b180 | 6f 63 6f 6c 20 69 73 20 66 6f 72 20 61 63 63 65 73 73 20 74 6f 20 73 68 65 6c 6c 20 61 63 63 6f | ocol.is.for.access.to.shell.acco |
| 12b1a0 | 75 6e 74 73 20 6f 6e 20 55 6e 69 78 2d 6c 69 6b 65 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 | unts.on.Unix-like.operating.syst |
| 12b1c0 | 65 6d 73 2c 20 62 75 74 20 69 74 20 73 65 65 73 20 73 6f 6d 65 20 6c 69 6d 69 74 65 64 20 75 73 | ems,.but.it.sees.some.limited.us |
| 12b1e0 | 65 20 6f 6e 20 57 69 6e 64 6f 77 73 20 61 73 20 77 65 6c 6c 2e 20 49 6e 20 32 30 31 35 2c 20 4d | e.on.Windows.as.well..In.2015,.M |
| 12b200 | 69 63 72 6f 73 6f 66 74 20 61 6e 6e 6f 75 6e 63 65 64 20 74 68 61 74 20 74 68 65 79 20 77 6f 75 | icrosoft.announced.that.they.wou |
| 12b220 | 6c 64 20 69 6e 63 6c 75 64 65 20 6e 61 74 69 76 65 20 73 75 70 70 6f 72 74 20 66 6f 72 20 53 53 | ld.include.native.support.for.SS |
| 12b240 | 48 20 69 6e 20 61 20 66 75 74 75 72 65 20 72 65 6c 65 61 73 65 2e 00 54 68 65 20 6d 75 6c 74 69 | H.in.a.future.release..The.multi |
| 12b260 | 63 61 73 74 2d 67 72 6f 75 70 20 75 73 65 64 20 62 79 20 61 6c 6c 20 6c 65 61 76 65 73 20 66 6f | cast-group.used.by.all.leaves.fo |
| 12b280 | 72 20 74 68 69 73 20 76 6c 61 6e 20 65 78 74 65 6e 73 69 6f 6e 2e 20 48 61 73 20 74 6f 20 62 65 | r.this.vlan.extension..Has.to.be |
| 12b2a0 | 20 74 68 65 20 73 61 6d 65 20 6f 6e 20 61 6c 6c 20 6c 65 61 76 65 73 20 74 68 61 74 20 68 61 73 | .the.same.on.all.leaves.that.has |
| 12b2c0 | 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 | .this.interface..The.name.of.the |
| 12b2e0 | 20 73 65 72 76 69 63 65 20 63 61 6e 20 62 65 20 64 69 66 66 65 72 65 6e 74 2c 20 69 6e 20 74 68 | .service.can.be.different,.in.th |
| 12b300 | 69 73 20 65 78 61 6d 70 6c 65 20 69 74 20 69 73 20 6f 6e 6c 79 20 66 6f 72 20 63 6f 6e 76 65 6e | is.example.it.is.only.for.conven |
| 12b320 | 69 65 6e 63 65 2e 00 54 68 65 20 6e 65 74 6d 61 73 6b 20 6f 72 20 64 6f 6d 61 69 6e 20 74 68 61 | ience..The.netmask.or.domain.tha |
| 12b340 | 74 20 45 44 4e 53 20 43 6c 69 65 6e 74 20 53 75 62 6e 65 74 20 73 68 6f 75 6c 64 20 62 65 20 65 | t.EDNS.Client.Subnet.should.be.e |
| 12b360 | 6e 61 62 6c 65 64 20 66 6f 72 20 69 6e 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 2e 00 | nabled.for.in.outgoing.queries.. |
| 12b380 | 54 68 65 20 6e 65 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f 67 79 20 69 73 20 64 65 63 6c 61 72 65 64 | The.network.topology.is.declared |
| 12b3a0 | 20 62 79 20 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 | .by.shared-network-name.and.the. |
| 12b3c0 | 73 75 62 6e 65 74 20 64 65 63 6c 61 72 61 74 69 6f 6e 73 2e 20 54 68 65 20 44 48 43 50 20 73 65 | subnet.declarations..The.DHCP.se |
| 12b3e0 | 72 76 69 63 65 20 63 61 6e 20 73 65 72 76 65 20 6d 75 6c 74 69 70 6c 65 20 73 68 61 72 65 64 20 | rvice.can.serve.multiple.shared. |
| 12b400 | 6e 65 74 77 6f 72 6b 73 2c 20 77 69 74 68 20 65 61 63 68 20 73 68 61 72 65 64 20 6e 65 74 77 6f | networks,.with.each.shared.netwo |
| 12b420 | 72 6b 20 68 61 76 69 6e 67 20 31 20 6f 72 20 6d 6f 72 65 20 73 75 62 6e 65 74 73 2e 20 45 61 63 | rk.having.1.or.more.subnets..Eac |
| 12b440 | 68 20 73 75 62 6e 65 74 20 6d 75 73 74 20 62 65 20 70 72 65 73 65 6e 74 20 6f 6e 20 61 6e 20 69 | h.subnet.must.be.present.on.an.i |
| 12b460 | 6e 74 65 72 66 61 63 65 2e 20 41 20 72 61 6e 67 65 20 63 61 6e 20 62 65 20 64 65 63 6c 61 72 65 | nterface..A.range.can.be.declare |
| 12b480 | 64 20 69 6e 73 69 64 65 20 61 20 73 75 62 6e 65 74 20 74 6f 20 64 65 66 69 6e 65 20 61 20 70 6f | d.inside.a.subnet.to.define.a.po |
| 12b4a0 | 6f 6c 20 6f 66 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 65 73 2e 20 4d 75 6c 74 69 70 6c | ol.of.dynamic.addresses..Multipl |
| 12b4c0 | 65 20 72 61 6e 67 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 6e 64 20 63 61 6e 20 | e.ranges.can.be.defined.and.can. |
| 12b4e0 | 63 6f 6e 74 61 69 6e 20 68 6f 6c 65 73 2e 20 53 74 61 74 69 63 20 6d 61 70 70 69 6e 67 73 20 63 | contain.holes..Static.mappings.c |
| 12b500 | 61 6e 20 62 65 20 73 65 74 20 74 6f 20 61 73 73 69 67 6e 20 22 73 74 61 74 69 63 22 20 61 64 64 | an.be.set.to.assign."static".add |
| 12b520 | 72 65 73 73 65 73 20 74 6f 20 63 6c 69 65 6e 74 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 69 72 | resses.to.clients.based.on.their |
| 12b540 | 20 4d 41 43 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 6e 65 78 74 20 65 78 61 6d 70 6c 65 20 69 | .MAC.address..The.next.example.i |
| 12b560 | 73 20 61 20 73 69 6d 70 6c 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 63 6f 6e 6e | s.a.simple.configuration.of.conn |
| 12b580 | 74 72 61 63 6b 2d 73 79 6e 63 2e 00 54 68 65 20 6e 65 78 74 20 73 74 65 70 20 69 73 20 74 6f 20 | track-sync..The.next.step.is.to. |
| 12b5a0 | 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 72 20 6c 6f 63 61 6c 20 73 69 64 65 20 61 73 20 77 65 6c | configure.your.local.side.as.wel |
| 12b5c0 | 6c 20 61 73 20 74 68 65 20 70 6f 6c 69 63 79 20 62 61 73 65 64 20 74 72 75 73 74 65 64 20 64 65 | l.as.the.policy.based.trusted.de |
| 12b5e0 | 73 74 69 6e 61 74 69 6f 6e 20 61 64 64 72 65 73 73 65 73 2e 20 49 66 20 79 6f 75 20 6f 6e 6c 79 | stination.addresses..If.you.only |
| 12b600 | 20 69 6e 69 74 69 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 2c 20 74 68 65 20 6c 69 73 74 | .initiate.a.connection,.the.list |
| 12b620 | 65 6e 20 70 6f 72 74 20 61 6e 64 20 61 64 64 72 65 73 73 2f 70 6f 72 74 20 69 73 20 6f 70 74 69 | en.port.and.address/port.is.opti |
| 12b640 | 6f 6e 61 6c 3b 20 68 6f 77 65 76 65 72 2c 20 69 66 20 79 6f 75 20 61 63 74 20 6c 69 6b 65 20 61 | onal;.however,.if.you.act.like.a |
| 12b660 | 20 73 65 72 76 65 72 20 61 6e 64 20 65 6e 64 70 6f 69 6e 74 73 20 69 6e 69 74 69 61 74 65 20 74 | .server.and.endpoints.initiate.t |
| 12b680 | 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 79 6f 75 72 20 73 79 73 74 65 6d 2c 20 79 | he.connections.to.your.system,.y |
| 12b6a0 | 6f 75 20 6e 65 65 64 20 74 6f 20 64 65 66 69 6e 65 20 61 20 70 6f 72 74 20 79 6f 75 72 20 63 6c | ou.need.to.define.a.port.your.cl |
| 12b6c0 | 69 65 6e 74 73 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f 2c 20 6f 74 68 65 72 77 69 73 65 20 | ients.can.connect.to,.otherwise. |
| 12b6e0 | 74 68 65 20 70 6f 72 74 20 69 73 20 72 61 6e 64 6f 6d 6c 79 20 63 68 6f 73 65 6e 20 61 6e 64 20 | the.port.is.randomly.chosen.and. |
| 12b700 | 6d 61 79 20 6d 61 6b 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 64 69 66 66 69 63 75 6c 74 20 77 69 | may.make.connection.difficult.wi |
| 12b720 | 74 68 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 2c 20 73 69 6e 63 65 20 74 68 65 20 70 6f 72 | th.firewall.rules,.since.the.por |
| 12b740 | 74 20 6d 61 79 20 62 65 20 64 69 66 66 65 72 65 6e 74 20 65 61 63 68 20 74 69 6d 65 20 74 68 65 | t.may.be.different.each.time.the |
| 12b760 | 20 73 79 73 74 65 6d 20 69 73 20 72 65 62 6f 6f 74 65 64 2e 00 54 68 65 20 6e 6f 74 65 64 20 70 | .system.is.rebooted..The.noted.p |
| 12b780 | 75 62 6c 69 63 20 6b 65 79 73 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 74 65 72 65 64 20 6f 6e 20 | ublic.keys.should.be.entered.on. |
| 12b7a0 | 74 68 65 20 6f 70 70 6f 73 69 74 65 20 72 6f 75 74 65 72 73 2e 00 54 68 65 20 6e 75 6d 62 65 72 | the.opposite.routers..The.number |
| 12b7c0 | 20 6f 66 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 74 6f 20 77 61 69 74 20 66 6f 72 20 61 20 72 | .of.milliseconds.to.wait.for.a.r |
| 12b7e0 | 65 6d 6f 74 65 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 20 73 65 72 76 65 72 20 74 6f 20 72 65 | emote.authoritative.server.to.re |
| 12b800 | 73 70 6f 6e 64 20 62 65 66 6f 72 65 20 74 69 6d 69 6e 67 20 6f 75 74 20 61 6e 64 20 72 65 73 70 | spond.before.timing.out.and.resp |
| 12b820 | 6f 6e 64 69 6e 67 20 77 69 74 68 20 53 45 52 56 46 41 49 4c 2e 00 54 68 65 20 6e 75 6d 62 65 72 | onding.with.SERVFAIL..The.number |
| 12b840 | 20 70 61 72 61 6d 65 74 65 72 20 28 31 2d 31 30 29 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 | .parameter.(1-10).configures.the |
| 12b860 | 20 61 6d 6f 75 6e 74 20 6f 66 20 61 63 63 65 70 74 65 64 20 6f 63 63 75 72 65 6e 63 65 73 20 6f | .amount.of.accepted.occurences.o |
| 12b880 | 66 20 74 68 65 20 73 79 73 74 65 6d 20 41 53 20 6e 75 6d 62 65 72 20 69 6e 20 41 53 20 70 61 74 | f.the.system.AS.number.in.AS.pat |
| 12b8a0 | 68 2e 00 54 68 65 20 6f 66 66 69 63 69 61 6c 20 70 6f 72 74 20 66 6f 72 20 4f 70 65 6e 56 50 4e | h..The.official.port.for.OpenVPN |
| 12b8c0 | 20 69 73 20 31 31 39 34 2c 20 77 68 69 63 68 20 77 65 20 72 65 73 65 72 76 65 20 66 6f 72 20 63 | .is.1194,.which.we.reserve.for.c |
| 12b8e0 | 6c 69 65 6e 74 20 56 50 4e 3b 20 77 65 20 77 69 6c 6c 20 75 73 65 20 31 31 39 35 20 66 6f 72 20 | lient.VPN;.we.will.use.1195.for. |
| 12b900 | 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 4e 2e 00 54 68 65 20 6f 6e 6c 79 20 73 74 61 67 65 | site-to-site.VPN..The.only.stage |
| 12b920 | 73 20 56 79 4f 53 20 77 69 6c 6c 20 70 72 6f 63 65 73 73 20 61 73 20 70 61 72 74 20 6f 66 20 74 | s.VyOS.will.process.as.part.of.t |
| 12b940 | 68 65 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 74 68 65 | he.firewall.configuration.is.the |
| 12b960 | 20 60 66 6f 72 77 61 72 64 60 20 28 46 34 20 73 74 61 67 65 29 2c 20 60 69 6e 70 75 74 60 20 28 | .`forward`.(F4.stage),.`input`.( |
| 12b980 | 4c 34 20 73 74 61 67 65 29 2c 20 61 6e 64 20 60 6f 75 74 70 75 74 60 20 28 4c 35 20 73 74 61 67 | L4.stage),.and.`output`.(L5.stag |
| 12b9a0 | 65 29 2e 20 41 6c 6c 20 74 68 65 20 6f 74 68 65 72 20 73 74 61 67 65 73 20 61 6e 64 20 73 74 65 | e)..All.the.other.stages.and.ste |
| 12b9c0 | 70 73 20 61 72 65 20 66 6f 72 20 72 65 66 65 72 65 6e 63 65 20 61 6e 64 20 63 61 6e 74 20 62 65 | ps.are.for.reference.and.cant.be |
| 12b9e0 | 20 6d 61 6e 69 70 75 6c 61 74 65 64 20 74 68 72 6f 75 67 68 20 56 79 4f 53 2e 00 54 68 65 20 6f | .manipulated.through.VyOS..The.o |
| 12ba00 | 70 74 69 6f 6e 61 6c 20 60 64 69 73 61 62 6c 65 60 20 6f 70 74 69 6f 6e 20 61 6c 6c 6f 77 73 20 | ptional.`disable`.option.allows. |
| 12ba20 | 74 6f 20 65 78 63 6c 75 64 65 20 69 6e 74 65 72 66 61 63 65 20 66 72 6f 6d 20 70 61 73 73 69 76 | to.exclude.interface.from.passiv |
| 12ba40 | 65 20 73 74 61 74 65 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 69 66 | e.state..This.command.is.used.if |
| 12ba60 | 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 70 61 73 73 69 76 65 2d 69 6e | .the.command.:cfgcmd:`passive-in |
| 12ba80 | 74 65 72 66 61 63 65 20 64 65 66 61 75 6c 74 60 20 77 61 73 20 63 6f 6e 66 69 67 75 72 65 64 2e | terface.default`.was.configured. |
| 12baa0 | 00 54 68 65 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 20 72 65 67 69 73 74 65 72 | .The.optional.parameter.register |
| 12bac0 | 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 52 65 67 69 73 74 72 61 74 69 6f 6e 20 52 65 71 | .specifies.that.Registration.Req |
| 12bae0 | 75 65 73 74 20 73 68 6f 75 6c 64 20 62 65 20 73 65 6e 74 20 74 6f 20 74 68 69 73 20 70 65 65 72 | uest.should.be.sent.to.this.peer |
| 12bb00 | 20 6f 6e 20 73 74 61 72 74 75 70 2e 00 54 68 65 20 6f 72 69 67 69 6e 61 6c 20 38 30 32 2e 31 71 | .on.startup..The.original.802.1q |
| 12bb20 | 5f 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 20 61 6c 6c 6f 77 73 20 61 20 73 69 6e 67 6c 65 20 | _.specification.allows.a.single. |
| 12bb40 | 56 69 72 74 75 61 6c 20 4c 6f 63 61 6c 20 41 72 65 61 20 4e 65 74 77 6f 72 6b 20 28 56 4c 41 4e | Virtual.Local.Area.Network.(VLAN |
| 12bb60 | 29 20 68 65 61 64 65 72 20 74 6f 20 62 65 20 69 6e 73 65 72 74 65 64 20 69 6e 74 6f 20 61 6e 20 | ).header.to.be.inserted.into.an. |
| 12bb80 | 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 2e 20 51 69 6e 51 20 61 6c 6c 6f 77 73 20 6d 75 6c 74 | Ethernet.frame..QinQ.allows.mult |
| 12bba0 | 69 70 6c 65 20 56 4c 41 4e 20 74 61 67 73 20 74 6f 20 62 65 20 69 6e 73 65 72 74 65 64 20 69 6e | iple.VLAN.tags.to.be.inserted.in |
| 12bbc0 | 74 6f 20 61 20 73 69 6e 67 6c 65 20 66 72 61 6d 65 2c 20 61 6e 20 65 73 73 65 6e 74 69 61 6c 20 | to.a.single.frame,.an.essential. |
| 12bbe0 | 63 61 70 61 62 69 6c 69 74 79 20 66 6f 72 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 4d 65 74 72 | capability.for.implementing.Metr |
| 12bc00 | 6f 20 45 74 68 65 72 6e 65 74 20 6e 65 74 77 6f 72 6b 20 74 6f 70 6f 6c 6f 67 69 65 73 2e 20 4a | o.Ethernet.network.topologies..J |
| 12bc20 | 75 73 74 20 61 73 20 51 69 6e 51 20 65 78 74 65 6e 64 73 20 38 30 32 2e 31 51 2c 20 51 69 6e 51 | ust.as.QinQ.extends.802.1Q,.QinQ |
| 12bc40 | 20 69 74 73 65 6c 66 20 69 73 20 65 78 74 65 6e 64 65 64 20 62 79 20 6f 74 68 65 72 20 4d 65 74 | .itself.is.extended.by.other.Met |
| 12bc60 | 72 6f 20 45 74 68 65 72 6e 65 74 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 54 68 65 20 6f 75 74 67 6f | ro.Ethernet.protocols..The.outgo |
| 12bc80 | 69 6e 67 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 65 72 66 6f 72 6d 20 74 68 65 20 74 72 61 | ing.interface.to.perform.the.tra |
| 12bca0 | 6e 73 6c 61 74 69 6f 6e 20 6f 6e 00 54 68 65 20 70 65 65 72 20 6e 61 6d 65 20 6d 75 73 74 20 62 | nslation.on.The.peer.name.must.b |
| 12bcc0 | 65 20 61 6e 20 61 6c 70 68 61 6e 75 6d 65 72 69 63 20 61 6e 64 20 63 61 6e 20 68 61 76 65 20 68 | e.an.alphanumeric.and.can.have.h |
| 12bce0 | 79 70 65 6e 20 6f 72 20 75 6e 64 65 72 73 63 6f 72 65 20 61 73 20 73 70 65 63 69 61 6c 20 63 68 | ypen.or.underscore.as.special.ch |
| 12bd00 | 61 72 61 63 74 65 72 73 2e 20 49 74 20 69 73 20 70 75 72 65 6c 79 20 69 6e 66 6f 72 6d 61 74 69 | aracters..It.is.purely.informati |
| 12bd20 | 6f 6e 61 6c 2e 00 54 68 65 20 70 65 65 72 20 6e 61 6d 65 73 20 52 49 47 48 54 20 61 6e 64 20 4c | onal..The.peer.names.RIGHT.and.L |
| 12bd40 | 45 46 54 20 61 72 65 20 75 73 65 64 20 61 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 20 74 65 | EFT.are.used.as.informational.te |
| 12bd60 | 78 74 2e 00 54 68 65 20 70 65 65 72 20 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 6f 72 69 74 79 | xt..The.peer.with.lower.priority |
| 12bd80 | 20 77 69 6c 6c 20 62 65 63 6f 6d 65 20 74 68 65 20 6b 65 79 20 73 65 72 76 65 72 20 61 6e 64 20 | .will.become.the.key.server.and. |
| 12bda0 | 73 74 61 72 74 20 64 69 73 74 72 69 62 75 74 69 6e 67 20 53 41 4b 73 2e 00 54 68 65 20 70 69 6e | start.distributing.SAKs..The.pin |
| 12bdc0 | 67 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 74 65 73 74 20 77 68 65 74 68 65 | g.command.is.used.to.test.whethe |
| 12bde0 | 72 20 61 20 6e 65 74 77 6f 72 6b 20 68 6f 73 74 20 69 73 20 72 65 61 63 68 61 62 6c 65 20 6f 72 | r.a.network.host.is.reachable.or |
| 12be00 | 20 6e 6f 74 2e 00 54 68 65 20 70 6f 70 75 6c 61 72 20 55 6e 69 78 2f 4c 69 6e 75 78 20 60 60 64 | .not..The.popular.Unix/Linux.``d |
| 12be20 | 69 67 60 60 20 74 6f 6f 6c 20 73 65 74 73 20 74 68 65 20 41 44 2d 62 69 74 20 69 6e 20 74 68 65 | ig``.tool.sets.the.AD-bit.in.the |
| 12be40 | 20 71 75 65 72 79 2e 20 54 68 69 73 20 6d 69 67 68 74 20 6c 65 61 64 20 74 6f 20 75 6e 65 78 70 | .query..This.might.lead.to.unexp |
| 12be60 | 65 63 74 65 64 20 71 75 65 72 79 20 72 65 73 75 6c 74 73 20 77 68 65 6e 20 74 65 73 74 69 6e 67 | ected.query.results.when.testing |
| 12be80 | 2e 20 53 65 74 20 60 60 2b 6e 6f 61 64 60 60 20 6f 6e 20 74 68 65 20 60 60 64 69 67 60 60 20 63 | ..Set.``+noad``.on.the.``dig``.c |
| 12bea0 | 6f 6d 6d 61 6e 64 20 6c 69 6e 65 20 77 68 65 6e 20 74 68 69 73 20 69 73 20 74 68 65 20 63 61 73 | ommand.line.when.this.is.the.cas |
| 12bec0 | 65 2e 00 54 68 65 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 20 69 73 20 64 65 | e..The.pre-shared.key.mode.is.de |
| 12bee0 | 70 72 65 63 61 74 65 64 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 66 72 6f | precated.and.will.be.removed.fro |
| 12bf00 | 6d 20 66 75 74 75 72 65 20 4f 70 65 6e 56 50 4e 20 76 65 72 73 69 6f 6e 73 2c 20 73 6f 20 56 79 | m.future.OpenVPN.versions,.so.Vy |
| 12bf20 | 4f 53 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 72 65 6d 6f 76 65 20 73 75 70 70 6f 72 74 20 66 | OS.will.have.to.remove.support.f |
| 12bf40 | 6f 72 20 74 68 61 74 20 6f 70 74 69 6f 6e 20 61 73 20 77 65 6c 6c 2e 20 54 68 65 20 72 65 61 73 | or.that.option.as.well..The.reas |
| 12bf60 | 6f 6e 20 69 73 20 74 68 61 74 20 75 73 69 6e 67 20 70 72 65 2d 73 68 61 72 65 64 20 6b 65 79 73 | on.is.that.using.pre-shared.keys |
| 12bf80 | 20 69 73 20 73 69 67 6e 69 66 69 63 61 6e 74 6c 79 20 6c 65 73 73 20 73 65 63 75 72 65 20 74 68 | .is.significantly.less.secure.th |
| 12bfa0 | 61 6e 20 75 73 69 6e 67 20 54 4c 53 2e 00 54 68 65 20 70 72 65 66 69 78 20 61 6e 64 20 41 53 4e | an.using.TLS..The.prefix.and.ASN |
| 12bfc0 | 20 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 64 20 69 74 20 6d 61 74 63 68 20 61 20 73 69 67 6e | .that.originated.it.match.a.sign |
| 12bfe0 | 65 64 20 52 4f 41 2e 20 54 68 65 73 65 20 61 72 65 20 70 72 6f 62 61 62 6c 79 20 74 72 75 73 74 | ed.ROA..These.are.probably.trust |
| 12c000 | 77 6f 72 74 68 79 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 73 2e 00 54 68 65 20 | worthy.route.announcements..The. |
| 12c020 | 70 72 65 66 69 78 20 6f 72 20 70 72 65 66 69 78 20 6c 65 6e 67 74 68 20 61 6e 64 20 41 53 4e 20 | prefix.or.prefix.length.and.ASN. |
| 12c040 | 74 68 61 74 20 6f 72 69 67 69 6e 61 74 65 64 20 69 74 20 64 6f 65 73 6e 27 74 20 6d 61 74 63 68 | that.originated.it.doesn't.match |
| 12c060 | 20 61 6e 79 20 65 78 69 73 74 69 6e 67 20 52 4f 41 2e 20 54 68 69 73 20 63 6f 75 6c 64 20 62 65 | .any.existing.ROA..This.could.be |
| 12c080 | 20 74 68 65 20 72 65 73 75 6c 74 20 6f 66 20 61 20 70 72 65 66 69 78 20 68 69 6a 61 63 6b 2c 20 | .the.result.of.a.prefix.hijack,. |
| 12c0a0 | 6f 72 20 6d 65 72 65 6c 79 20 61 20 6d 69 73 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 62 75 | or.merely.a.misconfiguration,.bu |
| 12c0c0 | 74 20 73 68 6f 75 6c 64 20 70 72 6f 62 61 62 6c 79 20 62 65 20 74 72 65 61 74 65 64 20 61 73 20 | t.should.probably.be.treated.as. |
| 12c0e0 | 75 6e 74 72 75 73 74 77 6f 72 74 68 79 20 72 6f 75 74 65 20 61 6e 6e 6f 75 6e 63 65 6d 65 6e 74 | untrustworthy.route.announcement |
| 12c100 | 73 2e 00 54 68 65 20 70 72 69 6d 61 72 79 20 44 48 43 50 20 73 65 72 76 65 72 20 75 73 65 73 20 | s..The.primary.DHCP.server.uses. |
| 12c120 | 61 64 64 72 65 73 73 20 60 31 39 32 2e 31 36 38 2e 31 38 39 2e 32 35 32 60 00 54 68 65 20 70 72 | address.`192.168.189.252`.The.pr |
| 12c140 | 69 6d 61 72 79 20 61 6e 64 20 73 65 63 6f 6e 64 61 72 79 20 73 74 61 74 65 6d 65 6e 74 73 20 64 | imary.and.secondary.statements.d |
| 12c160 | 65 74 65 72 6d 69 6e 65 73 20 77 68 65 74 68 65 72 20 74 68 65 20 73 65 72 76 65 72 20 69 73 20 | etermines.whether.the.server.is. |
| 12c180 | 70 72 69 6d 61 72 79 20 6f 72 20 73 65 63 6f 6e 64 61 72 79 2e 00 54 68 65 20 70 72 69 6d 61 72 | primary.or.secondary..The.primar |
| 12c1a0 | 79 20 6f 70 74 69 6f 6e 20 69 73 20 6f 6e 6c 79 20 76 61 6c 69 64 20 66 6f 72 20 61 63 74 69 76 | y.option.is.only.valid.for.activ |
| 12c1c0 | 65 2d 62 61 63 6b 75 70 2c 20 74 72 61 6e 73 6d 69 74 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 2c | e-backup,.transmit-load-balance, |
| 12c1e0 | 20 61 6e 64 20 61 64 61 70 74 69 76 65 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 6d 6f 64 65 2e | .and.adaptive-load-balance.mode. |
| 12c200 | 00 54 68 65 20 70 72 69 6f 72 69 74 79 20 6d 75 73 74 20 62 65 20 61 6e 20 69 6e 74 65 67 65 72 | .The.priority.must.be.an.integer |
| 12c220 | 20 6e 75 6d 62 65 72 20 66 72 6f 6d 20 31 20 74 6f 20 32 35 35 2e 20 48 69 67 68 65 72 20 70 72 | .number.from.1.to.255..Higher.pr |
| 12c240 | 69 6f 72 69 74 79 20 76 61 6c 75 65 20 69 6e 63 72 65 61 73 65 73 20 72 6f 75 74 65 72 27 73 20 | iority.value.increases.router's. |
| 12c260 | 70 72 65 63 65 64 65 6e 63 65 20 69 6e 20 74 68 65 20 6d 61 73 74 65 72 20 65 6c 65 63 74 69 6f | precedence.in.the.master.electio |
| 12c280 | 6e 73 2e 00 54 68 65 20 70 72 6f 63 65 64 75 72 65 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 3a | ns..The.procedure.to.specify.a.: |
| 12c2a0 | 61 62 62 72 3a 60 4e 49 53 2b 20 28 4e 65 74 77 6f 72 6b 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 | abbr:`NIS+.(Network.Information. |
| 12c2c0 | 53 65 72 76 69 63 65 20 50 6c 75 73 29 60 20 64 6f 6d 61 69 6e 20 69 73 20 73 69 6d 69 6c 61 72 | Service.Plus)`.domain.is.similar |
| 12c2e0 | 20 74 6f 20 74 68 65 20 4e 49 53 20 64 6f 6d 61 69 6e 20 6f 6e 65 3a 00 54 68 65 20 70 72 6f 6d | .to.the.NIS.domain.one:.The.prom |
| 12c300 | 70 74 20 69 73 20 61 64 6a 75 73 74 65 64 20 74 6f 20 72 65 66 6c 65 63 74 20 74 68 69 73 20 63 | pt.is.adjusted.to.reflect.this.c |
| 12c320 | 68 61 6e 67 65 20 69 6e 20 62 6f 74 68 20 63 6f 6e 66 69 67 20 61 6e 64 20 6f 70 2d 6d 6f 64 65 | hange.in.both.config.and.op-mode |
| 12c340 | 2e 00 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 70 6f 72 74 20 77 65 20 77 69 73 68 20 | ..The.protocol.and.port.we.wish. |
| 12c360 | 74 6f 20 66 6f 72 77 61 72 64 3b 00 54 68 65 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 75 73 75 61 | to.forward;.The.protocol.is.usua |
| 12c380 | 6c 6c 79 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 74 65 72 6d 73 20 6f 66 20 61 20 63 6c 69 65 | lly.described.in.terms.of.a.clie |
| 12c3a0 | 6e 74 2d 73 65 72 76 65 72 20 6d 6f 64 65 6c 2c 20 62 75 74 20 63 61 6e 20 61 73 20 65 61 73 69 | nt-server.model,.but.can.as.easi |
| 12c3c0 | 6c 79 20 62 65 20 75 73 65 64 20 69 6e 20 70 65 65 72 2d 74 6f 2d 70 65 65 72 20 72 65 6c 61 74 | ly.be.used.in.peer-to-peer.relat |
| 12c3e0 | 69 6f 6e 73 68 69 70 73 20 77 68 65 72 65 20 62 6f 74 68 20 70 65 65 72 73 20 63 6f 6e 73 69 64 | ionships.where.both.peers.consid |
| 12c400 | 65 72 20 74 68 65 20 6f 74 68 65 72 20 74 6f 20 62 65 20 61 20 70 6f 74 65 6e 74 69 61 6c 20 74 | er.the.other.to.be.a.potential.t |
| 12c420 | 69 6d 65 20 73 6f 75 72 63 65 2e 20 49 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 73 65 6e 64 | ime.source..Implementations.send |
| 12c440 | 20 61 6e 64 20 72 65 63 65 69 76 65 20 74 69 6d 65 73 74 61 6d 70 73 20 75 73 69 6e 67 20 3a 61 | .and.receive.timestamps.using.:a |
| 12c460 | 62 62 72 3a 60 55 44 50 20 28 55 73 65 72 20 44 61 74 61 67 72 61 6d 20 50 72 6f 74 6f 63 6f 6c | bbr:`UDP.(User.Datagram.Protocol |
| 12c480 | 29 60 20 6f 6e 20 70 6f 72 74 20 6e 75 6d 62 65 72 20 31 32 33 2e 00 54 68 65 20 70 72 6f 74 6f | )`.on.port.number.123..The.proto |
| 12c4a0 | 63 6f 6c 20 6f 76 65 72 68 65 61 64 20 6f 66 20 4c 32 54 50 76 33 20 69 73 20 61 6c 73 6f 20 73 | col.overhead.of.L2TPv3.is.also.s |
| 12c4c0 | 69 67 6e 69 66 69 63 61 6e 74 6c 79 20 62 69 67 67 65 72 20 74 68 61 6e 20 4d 50 4c 53 2e 00 54 | ignificantly.bigger.than.MPLS..T |
| 12c4e0 | 68 65 20 70 72 6f 78 79 20 73 65 72 76 69 63 65 20 69 6e 20 56 79 4f 53 20 69 73 20 62 61 73 65 | he.proxy.service.in.VyOS.is.base |
| 12c500 | 64 20 6f 6e 20 53 71 75 69 64 5f 20 61 6e 64 20 73 6f 6d 65 20 72 65 6c 61 74 65 64 20 6d 6f 64 | d.on.Squid_.and.some.related.mod |
| 12c520 | 75 6c 65 73 2e 00 54 68 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 | ules..The.public.IP.address.of.t |
| 12c540 | 68 65 20 6c 6f 63 61 6c 20 73 69 64 65 20 6f 66 20 74 68 65 20 56 50 4e 20 77 69 6c 6c 20 62 65 | he.local.side.of.the.VPN.will.be |
| 12c560 | 20 31 39 38 2e 35 31 2e 31 30 30 2e 31 30 2e 00 54 68 65 20 70 75 62 6c 69 63 20 49 50 20 61 64 | .198.51.100.10..The.public.IP.ad |
| 12c580 | 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 65 6d 6f 74 65 20 73 69 64 65 20 6f 66 20 74 68 65 20 | dress.of.the.remote.side.of.the. |
| 12c5a0 | 56 50 4e 20 77 69 6c 6c 20 62 65 20 32 30 33 2e 30 2e 31 31 33 2e 31 31 2e 00 54 68 65 20 72 61 | VPN.will.be.203.0.113.11..The.ra |
| 12c5c0 | 74 65 2d 6c 69 6d 69 74 20 69 73 20 73 65 74 20 69 6e 20 6b 62 69 74 2f 73 65 63 2e 00 54 68 65 | te-limit.is.set.in.kbit/sec..The |
| 12c5e0 | 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 20 6d 61 74 63 68 65 73 20 69 66 20 61 | .regular.expression.matches.if.a |
| 12c600 | 6e 64 20 6f 6e 6c 79 20 69 66 20 74 68 65 20 65 6e 74 69 72 65 20 73 74 72 69 6e 67 20 6d 61 74 | nd.only.if.the.entire.string.mat |
| 12c620 | 63 68 65 73 20 74 68 65 20 70 61 74 74 65 72 6e 2e 00 54 68 65 20 72 65 6d 6f 74 65 20 70 65 65 | ches.the.pattern..The.remote.pee |
| 12c640 | 72 20 60 74 6f 2d 77 67 30 32 60 20 75 73 65 73 20 58 4d 72 6c 50 79 6b 61 78 68 64 41 41 69 53 | r.`to-wg02`.uses.XMrlPykaxhdAAiS |
| 12c660 | 6a 68 74 50 6c 76 69 33 30 4e 56 6b 76 4c 51 6c 69 51 75 4b 50 37 41 49 37 43 79 49 3d 20 61 73 | jhtPlvi30NVkvLQliQuKP7AI7CyI=.as |
| 12c680 | 20 69 74 73 20 70 75 62 6c 69 63 20 6b 65 79 20 70 6f 72 74 69 6f 6e 00 54 68 65 20 72 65 6d 6f | .its.public.key.portion.The.remo |
| 12c6a0 | 74 65 20 73 69 74 65 20 77 69 6c 6c 20 68 61 76 65 20 61 20 73 75 62 6e 65 74 20 6f 66 20 31 30 | te.site.will.have.a.subnet.of.10 |
| 12c6c0 | 2e 31 2e 30 2e 30 2f 31 36 2e 00 54 68 65 20 72 65 6d 6f 74 65 20 75 73 65 72 20 77 69 6c 6c 20 | .1.0.0/16..The.remote.user.will. |
| 12c6e0 | 75 73 65 20 74 68 65 20 6f 70 65 6e 63 6f 6e 6e 65 63 74 20 63 6c 69 65 6e 74 20 74 6f 20 63 6f | use.the.openconnect.client.to.co |
| 12c700 | 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 61 6e 64 20 77 69 6c 6c 20 72 65 63 | nnect.to.the.router.and.will.rec |
| 12c720 | 65 69 76 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 61 20 56 50 4e 20 70 6f | eive.an.IP.address.from.a.VPN.po |
| 12c740 | 6f 6c 2c 20 61 6c 6c 6f 77 69 6e 67 20 66 75 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 | ol,.allowing.full.access.to.the. |
| 12c760 | 6e 65 74 77 6f 72 6b 2e 00 54 68 65 20 72 65 71 75 65 73 74 6f 72 20 6e 65 74 6d 61 73 6b 20 66 | network..The.requestor.netmask.f |
| 12c780 | 6f 72 20 77 68 69 63 68 20 74 68 65 20 72 65 71 75 65 73 74 6f 72 20 49 50 20 41 64 64 72 65 73 | or.which.the.requestor.IP.Addres |
| 12c7a0 | 73 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 61 73 20 74 68 65 20 45 44 4e 53 20 43 6c 69 | s.should.be.used.as.the.EDNS.Cli |
| 12c7c0 | 65 6e 74 20 53 75 62 6e 65 74 20 66 6f 72 20 6f 75 74 67 6f 69 6e 67 20 71 75 65 72 69 65 73 2e | ent.Subnet.for.outgoing.queries. |
| 12c7e0 | 00 54 68 65 20 72 65 71 75 69 72 65 64 20 63 6f 6e 66 69 67 20 66 69 6c 65 20 6d 61 79 20 6c 6f | .The.required.config.file.may.lo |
| 12c800 | 6f 6b 20 6c 69 6b 65 20 74 68 69 73 3a 00 54 68 65 20 72 65 71 75 69 72 65 64 20 63 6f 6e 66 69 | ok.like.this:.The.required.confi |
| 12c820 | 67 75 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 62 72 6f 6b 65 6e 20 64 6f 77 6e 20 69 6e 74 6f | guration.can.be.broken.down.into |
| 12c840 | 20 34 20 6d 61 6a 6f 72 20 70 69 65 63 65 73 3a 00 54 68 65 20 72 65 73 75 6c 74 69 6e 67 20 63 | .4.major.pieces:.The.resulting.c |
| 12c860 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 6c 6f 6f 6b 20 6c 69 6b 65 3a 00 54 68 65 | onfiguration.will.look.like:.The |
| 12c880 | 20 72 6f 6f 74 20 63 61 75 73 65 20 6f 66 20 74 68 65 20 70 72 6f 62 6c 65 6d 20 69 73 20 74 68 | .root.cause.of.the.problem.is.th |
| 12c8a0 | 61 74 20 66 6f 72 20 56 54 49 20 74 75 6e 6e 65 6c 73 20 74 6f 20 77 6f 72 6b 2c 20 74 68 65 69 | at.for.VTI.tunnels.to.work,.thei |
| 12c8c0 | 72 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 73 20 68 61 76 65 20 74 6f 20 62 65 20 73 | r.traffic.selectors.have.to.be.s |
| 12c8e0 | 65 74 20 74 6f 20 30 2e 30 2e 30 2e 30 2f 30 20 66 6f 72 20 74 72 61 66 66 69 63 20 74 6f 20 6d | et.to.0.0.0.0/0.for.traffic.to.m |
| 12c900 | 61 74 63 68 20 74 68 65 20 74 75 6e 6e 65 6c 2c 20 65 76 65 6e 20 74 68 6f 75 67 68 20 61 63 74 | atch.the.tunnel,.even.though.act |
| 12c920 | 75 61 6c 20 72 6f 75 74 69 6e 67 20 64 65 63 69 73 69 6f 6e 20 69 73 20 6d 61 64 65 20 61 63 63 | ual.routing.decision.is.made.acc |
| 12c940 | 6f 72 64 69 6e 67 20 74 6f 20 6e 65 74 66 69 6c 74 65 72 20 6d 61 72 6b 73 2e 20 55 6e 6c 65 73 | ording.to.netfilter.marks..Unles |
| 12c960 | 73 20 72 6f 75 74 65 20 69 6e 73 65 72 74 69 6f 6e 20 69 73 20 64 69 73 61 62 6c 65 64 20 65 6e | s.route.insertion.is.disabled.en |
| 12c980 | 74 69 72 65 6c 79 2c 20 53 74 72 6f 6e 67 53 57 41 4e 20 74 68 75 73 20 6d 69 73 74 61 6b 65 6e | tirely,.StrongSWAN.thus.mistaken |
| 12c9a0 | 6c 79 20 69 6e 73 65 72 74 73 20 61 20 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 74 68 72 6f 75 | ly.inserts.a.default.route.throu |
| 12c9c0 | 67 68 20 74 68 65 20 56 54 49 20 70 65 65 72 20 61 64 64 72 65 73 73 2c 20 77 68 69 63 68 20 6d | gh.the.VTI.peer.address,.which.m |
| 12c9e0 | 61 6b 65 73 20 61 6c 6c 20 74 72 61 66 66 69 63 20 72 6f 75 74 65 64 20 74 6f 20 6e 6f 77 68 65 | akes.all.traffic.routed.to.nowhe |
| 12ca00 | 72 65 2e 00 54 68 65 20 72 6f 75 6e 64 2d 72 6f 62 69 6e 20 70 6f 6c 69 63 79 20 69 73 20 61 20 | re..The.round-robin.policy.is.a. |
| 12ca20 | 63 6c 61 73 73 66 75 6c 20 73 63 68 65 64 75 6c 65 72 20 74 68 61 74 20 64 69 76 69 64 65 73 20 | classful.scheduler.that.divides. |
| 12ca40 | 74 72 61 66 66 69 63 20 69 6e 20 64 69 66 66 65 72 65 6e 74 20 63 6c 61 73 73 65 73 5f 20 79 6f | traffic.in.different.classes_.yo |
| 12ca60 | 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 28 75 70 20 74 6f 20 34 30 39 36 29 2e 20 59 6f | u.can.configure.(up.to.4096)..Yo |
| 12ca80 | 75 20 63 61 6e 20 65 6d 62 65 64 5f 20 61 20 6e 65 77 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 65 | u.can.embed_.a.new.policy.into.e |
| 12caa0 | 61 63 68 20 6f 66 20 74 68 6f 73 65 20 63 6c 61 73 73 65 73 20 28 64 65 66 61 75 6c 74 20 69 6e | ach.of.those.classes.(default.in |
| 12cac0 | 63 6c 75 64 65 64 29 2e 00 54 68 65 20 72 6f 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 20 70 72 6f | cluded)..The.route.selection.pro |
| 12cae0 | 63 65 73 73 20 75 73 65 64 20 62 79 20 46 52 52 27 73 20 42 47 50 20 69 6d 70 6c 65 6d 65 6e 74 | cess.used.by.FRR's.BGP.implement |
| 12cb00 | 61 74 69 6f 6e 20 75 73 65 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 64 65 63 69 73 69 6f | ation.uses.the.following.decisio |
| 12cb20 | 6e 20 63 72 69 74 65 72 69 6f 6e 2c 20 73 74 61 72 74 69 6e 67 20 61 74 20 74 68 65 20 74 6f 70 | n.criterion,.starting.at.the.top |
| 12cb40 | 20 6f 66 20 74 68 65 20 6c 69 73 74 20 61 6e 64 20 67 6f 69 6e 67 20 74 6f 77 61 72 64 73 20 74 | .of.the.list.and.going.towards.t |
| 12cb60 | 68 65 20 62 6f 74 74 6f 6d 20 75 6e 74 69 6c 20 6f 6e 65 20 6f 66 20 74 68 65 20 66 61 63 74 6f | he.bottom.until.one.of.the.facto |
| 12cb80 | 72 73 20 63 61 6e 20 62 65 20 75 73 65 64 2e 00 54 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 | rs.can.be.used..The.route.with.t |
| 12cba0 | 68 65 20 73 68 6f 72 74 65 73 74 20 63 6c 75 73 74 65 72 2d 6c 69 73 74 20 6c 65 6e 67 74 68 20 | he.shortest.cluster-list.length. |
| 12cbc0 | 69 73 20 75 73 65 64 2e 20 54 68 65 20 63 6c 75 73 74 65 72 2d 6c 69 73 74 20 72 65 66 6c 65 63 | is.used..The.cluster-list.reflec |
| 12cbe0 | 74 73 20 74 68 65 20 69 42 47 50 20 72 65 66 6c 65 63 74 69 6f 6e 20 70 61 74 68 20 74 68 65 20 | ts.the.iBGP.reflection.path.the. |
| 12cc00 | 72 6f 75 74 65 20 68 61 73 20 74 61 6b 65 6e 2e 00 54 68 65 20 72 6f 75 74 65 72 20 61 75 74 6f | route.has.taken..The.router.auto |
| 12cc20 | 6d 61 74 69 63 61 6c 6c 79 20 75 70 64 61 74 65 73 20 6c 69 6e 6b 2d 73 74 61 74 65 20 69 6e 66 | matically.updates.link-state.inf |
| 12cc40 | 6f 72 6d 61 74 69 6f 6e 20 77 69 74 68 20 69 74 73 20 6e 65 69 67 68 62 6f 72 73 2e 20 4f 6e 6c | ormation.with.its.neighbors..Onl |
| 12cc60 | 79 20 61 6e 20 6f 62 73 6f 6c 65 74 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 75 70 64 | y.an.obsolete.information.is.upd |
| 12cc80 | 61 74 65 64 20 77 68 69 63 68 20 61 67 65 20 68 61 73 20 65 78 63 65 65 64 65 64 20 61 20 73 70 | ated.which.age.has.exceeded.a.sp |
| 12cca0 | 65 63 69 66 69 63 20 74 68 72 65 73 68 6f 6c 64 2e 20 54 68 69 73 20 70 61 72 61 6d 65 74 65 72 | ecific.threshold..This.parameter |
| 12ccc0 | 20 63 68 61 6e 67 65 73 20 61 20 74 68 72 65 73 68 6f 6c 64 20 76 61 6c 75 65 2c 20 77 68 69 63 | .changes.a.threshold.value,.whic |
| 12cce0 | 68 20 62 79 20 64 65 66 61 75 6c 74 20 69 73 20 31 38 30 30 20 73 65 63 6f 6e 64 73 20 28 68 61 | h.by.default.is.1800.seconds.(ha |
| 12cd00 | 6c 66 20 61 6e 20 68 6f 75 72 29 2e 20 54 68 65 20 76 61 6c 75 65 20 69 73 20 61 70 70 6c 69 65 | lf.an.hour)..The.value.is.applie |
| 12cd20 | 64 20 74 6f 20 74 68 65 20 77 68 6f 6c 65 20 4f 53 50 46 20 72 6f 75 74 65 72 2e 20 54 68 65 20 | d.to.the.whole.OSPF.router..The. |
| 12cd40 | 74 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 31 30 20 74 6f 20 31 38 30 30 2e 00 54 68 65 20 72 | timer.range.is.10.to.1800..The.r |
| 12cd60 | 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 64 69 73 63 61 72 64 20 44 48 43 50 20 70 61 63 6b 61 67 | outer.should.discard.DHCP.packag |
| 12cd80 | 65 73 20 61 6c 72 65 61 64 79 20 63 6f 6e 74 61 69 6e 69 6e 67 20 72 65 6c 61 79 20 61 67 65 6e | es.already.containing.relay.agen |
| 12cda0 | 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 6f 6e 6c | t.information.to.ensure.that.onl |
| 12cdc0 | 79 20 72 65 71 75 65 73 74 73 20 66 72 6f 6d 20 44 48 43 50 20 63 6c 69 65 6e 74 73 20 61 72 65 | y.requests.from.DHCP.clients.are |
| 12cde0 | 20 66 6f 72 77 61 72 64 65 64 2e 00 54 68 65 20 73 46 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 | .forwarded..The.sFlow.accounting |
| 12ce00 | 20 62 61 73 65 64 20 6f 6e 20 68 73 66 6c 6f 77 64 20 68 74 74 70 73 3a 2f 2f 73 66 6c 6f 77 2e | .based.on.hsflowd.https://sflow. |
| 12ce20 | 6e 65 74 2f 00 54 68 65 20 73 61 6d 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 | net/.The.same.configuration.opti |
| 12ce40 | 6f 6e 73 20 61 70 70 6c 79 20 77 68 65 6e 20 49 64 65 6e 74 69 74 79 20 62 61 73 65 64 20 63 6f | ons.apply.when.Identity.based.co |
| 12ce60 | 6e 66 69 67 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 67 72 6f 75 70 20 6d 6f 64 65 | nfig.is.configured.in.group.mode |
| 12ce80 | 20 65 78 63 65 70 74 20 74 68 61 74 20 67 72 6f 75 70 20 6d 6f 64 65 20 63 61 6e 20 6f 6e 6c 79 | .except.that.group.mode.can.only |
| 12cea0 | 20 62 65 20 75 73 65 64 20 77 69 74 68 20 52 41 44 49 55 53 20 61 75 74 68 65 6e 74 69 63 61 74 | .be.used.with.RADIUS.authenticat |
| 12cec0 | 69 6f 6e 2e 00 54 68 65 20 73 63 68 65 6d 65 20 61 62 6f 76 65 20 64 6f 65 73 6e 27 74 20 77 6f | ion..The.scheme.above.doesn't.wo |
| 12cee0 | 72 6b 20 77 68 65 6e 20 6f 6e 65 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 73 20 68 61 73 20 61 | rk.when.one.of.the.routers.has.a |
| 12cf00 | 20 64 79 6e 61 6d 69 63 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 20 74 68 6f 75 67 68 | .dynamic.external.address.though |
| 12cf20 | 2e 20 54 68 65 20 63 6c 61 73 73 69 63 20 77 6f 72 6b 61 72 6f 75 6e 64 20 66 6f 72 20 74 68 69 | ..The.classic.workaround.for.thi |
| 12cf40 | 73 20 69 73 20 74 6f 20 73 65 74 75 70 20 61 6e 20 61 64 64 72 65 73 73 20 6f 6e 20 61 20 6c 6f | s.is.to.setup.an.address.on.a.lo |
| 12cf60 | 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 75 73 65 20 69 74 20 61 73 20 61 | opback.interface.and.use.it.as.a |
| 12cf80 | 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 66 6f 72 20 74 68 65 20 47 52 45 20 74 75 6e 6e | .source.address.for.the.GRE.tunn |
| 12cfa0 | 65 6c 2c 20 74 68 65 6e 20 73 65 74 75 70 20 61 6e 20 49 50 73 65 63 20 70 6f 6c 69 63 79 20 74 | el,.then.setup.an.IPsec.policy.t |
| 12cfc0 | 6f 20 6d 61 74 63 68 20 74 68 6f 73 65 20 6c 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 73 73 65 73 | o.match.those.loopback.addresses |
| 12cfe0 | 2e 00 54 68 65 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 63 61 6e 20 63 6f 6e 74 61 69 6e 20 | ..The.search.filter.can.contain. |
| 12d000 | 75 70 20 74 6f 20 31 35 20 6f 63 63 75 72 72 65 6e 63 65 73 20 6f 66 20 25 73 20 77 68 69 63 68 | up.to.15.occurrences.of.%s.which |
| 12d020 | 20 77 69 6c 6c 20 62 65 20 72 65 70 6c 61 63 65 64 20 62 79 20 74 68 65 20 75 73 65 72 6e 61 6d | .will.be.replaced.by.the.usernam |
| 12d040 | 65 2c 20 61 73 20 69 6e 20 22 75 69 64 3d 25 73 22 20 66 6f 72 20 3a 72 66 63 3a 60 32 30 33 37 | e,.as.in."uid=%s".for.:rfc:`2037 |
| 12d060 | 60 20 64 69 72 65 63 74 6f 72 69 65 73 2e 20 46 6f 72 20 61 20 64 65 74 61 69 6c 65 64 20 64 65 | `.directories..For.a.detailed.de |
| 12d080 | 73 63 72 69 70 74 69 6f 6e 20 6f 66 20 4c 44 41 50 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 | scription.of.LDAP.search.filter. |
| 12d0a0 | 73 79 6e 74 61 78 20 73 65 65 20 3a 72 66 63 3a 60 32 32 35 34 60 2e 00 54 68 65 20 73 65 63 6f | syntax.see.:rfc:`2254`..The.seco |
| 12d0c0 | 6e 64 61 72 79 20 44 48 43 50 20 73 65 72 76 65 72 20 75 73 65 73 20 61 64 64 72 65 73 73 20 60 | ndary.DHCP.server.uses.address.` |
| 12d0e0 | 31 39 32 2e 31 36 38 2e 31 38 39 2e 32 35 33 60 00 54 68 65 20 73 65 63 75 72 69 74 79 20 61 70 | 192.168.189.253`.The.security.ap |
| 12d100 | 70 72 6f 61 63 68 20 69 6e 20 53 4e 4d 50 76 33 20 74 61 72 67 65 74 73 3a 00 54 68 65 20 73 65 | proach.in.SNMPv3.targets:.The.se |
| 12d120 | 71 75 65 6e 63 65 20 60 60 5e 45 63 3f 60 60 20 74 72 61 6e 73 6c 61 74 65 73 20 74 6f 3a 20 60 | quence.``^Ec?``.translates.to:.` |
| 12d140 | 60 43 74 72 6c 2b 45 20 63 20 3f 60 60 2e 20 54 6f 20 71 75 69 74 20 74 68 65 20 73 65 73 73 69 | `Ctrl+E.c.?``..To.quit.the.sessi |
| 12d160 | 6f 6e 20 75 73 65 3a 20 60 60 43 74 72 6c 2b 45 20 63 20 2e 60 60 00 54 68 65 20 73 65 74 75 70 | on.use:.``Ctrl+E.c..``.The.setup |
| 12d180 | 20 69 73 20 74 68 69 73 3a 20 4c 65 61 66 32 20 2d 20 53 70 69 6e 65 31 20 2d 20 4c 65 61 66 33 | .is.this:.Leaf2.-.Spine1.-.Leaf3 |
| 12d1a0 | 00 54 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 6f 6e 2d 64 69 73 6b 20 50 72 6f 78 79 20 63 | .The.size.of.the.on-disk.Proxy.c |
| 12d1c0 | 61 63 68 65 20 69 73 20 75 73 65 72 20 63 6f 6e 66 69 67 75 72 61 62 6c 65 2e 20 54 68 65 20 50 | ache.is.user.configurable..The.P |
| 12d1e0 | 72 6f 78 69 65 73 20 64 65 66 61 75 6c 74 20 63 61 63 68 65 2d 73 69 7a 65 20 69 73 20 63 6f 6e | roxies.default.cache-size.is.con |
| 12d200 | 66 69 67 75 72 65 64 20 74 6f 20 31 30 30 20 4d 42 2e 00 54 68 65 20 73 70 65 65 64 20 28 62 61 | figured.to.100.MB..The.speed.(ba |
| 12d220 | 75 64 72 61 74 65 29 20 6f 66 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 64 65 76 69 63 65 2e 20 53 | udrate).of.the.console.device..S |
| 12d240 | 75 70 70 6f 72 74 65 64 20 76 61 6c 75 65 73 20 61 72 65 3a 00 54 68 65 20 73 74 61 6e 64 61 72 | upported.values.are:.The.standar |
| 12d260 | 64 20 77 61 73 20 64 65 76 65 6c 6f 70 65 64 20 62 79 20 49 45 45 45 20 38 30 32 2e 31 2c 20 61 | d.was.developed.by.IEEE.802.1,.a |
| 12d280 | 20 77 6f 72 6b 69 6e 67 20 67 72 6f 75 70 20 6f 66 20 74 68 65 20 49 45 45 45 20 38 30 32 20 73 | .working.group.of.the.IEEE.802.s |
| 12d2a0 | 74 61 6e 64 61 72 64 73 20 63 6f 6d 6d 69 74 74 65 65 2c 20 61 6e 64 20 63 6f 6e 74 69 6e 75 65 | tandards.committee,.and.continue |
| 12d2c0 | 73 20 74 6f 20 62 65 20 61 63 74 69 76 65 6c 79 20 72 65 76 69 73 65 64 2e 20 4f 6e 65 20 6f 66 | s.to.be.actively.revised..One.of |
| 12d2e0 | 20 74 68 65 20 6e 6f 74 61 62 6c 65 20 72 65 76 69 73 69 6f 6e 73 20 69 73 20 38 30 32 2e 31 51 | .the.notable.revisions.is.802.1Q |
| 12d300 | 2d 32 30 31 34 20 77 68 69 63 68 20 69 6e 63 6f 72 70 6f 72 61 74 65 64 20 49 45 45 45 20 38 30 | -2014.which.incorporated.IEEE.80 |
| 12d320 | 32 2e 31 61 71 20 28 53 68 6f 72 74 65 73 74 20 50 61 74 68 20 42 72 69 64 67 69 6e 67 29 20 61 | 2.1aq.(Shortest.Path.Bridging).a |
| 12d340 | 6e 64 20 6d 75 63 68 20 6f 66 20 74 68 65 20 49 45 45 45 20 38 30 32 2e 31 64 20 73 74 61 6e 64 | nd.much.of.the.IEEE.802.1d.stand |
| 12d360 | 61 72 64 2e 00 54 68 65 20 73 75 62 73 65 74 20 6f 66 20 70 6f 73 73 69 62 6c 65 20 70 61 72 61 | ard..The.subset.of.possible.para |
| 12d380 | 6d 65 74 65 72 73 20 61 72 65 3a 00 54 68 65 20 73 75 70 70 6f 72 74 65 64 20 76 61 6c 75 65 73 | meters.are:.The.supported.values |
| 12d3a0 | 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 | .for.a.specific.interface.can.be |
| 12d3c0 | 20 6f 62 74 61 69 6e 65 64 20 77 69 74 68 3a 20 60 65 74 68 74 6f 6f 6c 20 2d 67 20 3c 69 6e 74 | .obtained.with:.`ethtool.-g.<int |
| 12d3e0 | 65 72 66 61 63 65 3e 60 00 54 68 65 20 73 79 73 2d 6d 61 63 20 61 6e 64 20 6c 6f 63 61 6c 20 64 | erface>`.The.sys-mac.and.local.d |
| 12d400 | 69 73 63 72 69 6d 69 6e 61 74 6f 72 20 61 72 65 20 75 73 65 64 20 66 6f 72 20 67 65 6e 65 72 61 | iscriminator.are.used.for.genera |
| 12d420 | 74 69 6e 67 20 61 20 31 30 2d 62 79 74 65 2c 20 54 79 70 65 2d 33 20 45 74 68 65 72 6e 65 74 20 | ting.a.10-byte,.Type-3.Ethernet. |
| 12d440 | 53 65 67 6d 65 6e 74 20 49 44 2e 20 45 53 49 4e 41 4d 45 20 69 73 20 61 20 31 30 2d 62 79 74 65 | Segment.ID..ESINAME.is.a.10-byte |
| 12d460 | 2c 20 54 79 70 65 2d 30 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 49 44 20 2d 20 22 | ,.Type-0.Ethernet.Segment.ID.-." |
| 12d480 | 30 30 3a 41 41 3a 42 42 3a 43 43 3a 44 44 3a 45 45 3a 46 46 3a 47 47 3a 48 48 3a 49 49 22 2e 00 | 00:AA:BB:CC:DD:EE:FF:GG:HH:II".. |
| 12d4a0 | 54 68 65 20 73 79 73 74 65 6d 20 4c 43 44 20 3a 61 62 62 72 3a 60 4c 43 44 20 28 4c 69 71 75 69 | The.system.LCD.:abbr:`LCD.(Liqui |
| 12d4c0 | 64 2d 63 72 79 73 74 61 6c 20 64 69 73 70 6c 61 79 29 60 20 6f 70 74 69 6f 6e 20 69 73 20 66 6f | d-crystal.display)`.option.is.fo |
| 12d4e0 | 72 20 75 73 65 72 73 20 72 75 6e 6e 69 6e 67 20 56 79 4f 53 20 6f 6e 20 68 61 72 64 77 61 72 65 | r.users.running.VyOS.on.hardware |
| 12d500 | 20 74 68 61 74 20 66 65 61 74 75 72 65 73 20 61 6e 20 4c 43 44 20 64 69 73 70 6c 61 79 2e 20 54 | .that.features.an.LCD.display..T |
| 12d520 | 68 69 73 20 69 73 20 74 79 70 69 63 61 6c 6c 79 20 61 20 73 6d 61 6c 6c 20 64 69 73 70 6c 61 79 | his.is.typically.a.small.display |
| 12d540 | 20 62 75 69 6c 74 20 69 6e 20 61 6e 20 31 39 20 69 6e 63 68 20 72 61 63 6b 2d 6d 6f 75 6e 74 61 | .built.in.an.19.inch.rack-mounta |
| 12d560 | 62 6c 65 20 61 70 70 6c 69 61 6e 63 65 2e 20 54 68 6f 73 65 20 64 69 73 70 6c 61 79 73 20 61 72 | ble.appliance..Those.displays.ar |
| 12d580 | 65 20 75 73 65 64 20 74 6f 20 73 68 6f 77 20 72 75 6e 74 69 6d 65 20 64 61 74 61 2e 00 54 68 65 | e.used.to.show.runtime.data..The |
| 12d5a0 | 20 73 79 73 74 65 6d 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 61 74 74 65 6d 70 74 | .system.is.configured.to.attempt |
| 12d5c0 | 20 64 6f 6d 61 69 6e 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 69 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 | .domain.completion.in.the.follow |
| 12d5e0 | 69 6e 67 20 6f 72 64 65 72 3a 20 76 79 6f 73 2e 69 6f 20 28 66 69 72 73 74 29 2c 20 76 79 6f 73 | ing.order:.vyos.io.(first),.vyos |
| 12d600 | 2e 6e 65 74 20 28 73 65 63 6f 6e 64 29 20 61 6e 64 20 76 79 6f 73 2e 6e 65 74 77 6f 72 6b 20 28 | .net.(second).and.vyos.network.( |
| 12d620 | 6c 61 73 74 29 3a 00 54 68 65 20 74 61 62 6c 65 20 63 6f 6e 73 69 73 74 73 20 6f 66 20 66 6f 6c | last):.The.table.consists.of.fol |
| 12d640 | 6c 6f 77 69 6e 67 20 64 61 74 61 3a 00 54 68 65 20 74 61 73 6b 20 73 63 68 65 64 75 6c 65 72 20 | lowing.data:.The.task.scheduler. |
| 12d660 | 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 65 78 65 63 75 74 65 20 74 61 73 6b 73 20 6f 6e 20 61 | allows.you.to.execute.tasks.on.a |
| 12d680 | 20 67 69 76 65 6e 20 73 63 68 65 64 75 6c 65 2e 20 49 74 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 | .given.schedule..It.makes.use.of |
| 12d6a0 | 20 55 4e 49 58 20 63 72 6f 6e 5f 2e 00 54 68 65 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 | .UNIX.cron_..The.translation.add |
| 12d6c0 | 72 65 73 73 20 6d 75 73 74 20 62 65 20 73 65 74 20 74 6f 20 6f 6e 65 20 6f 66 20 74 68 65 20 61 | ress.must.be.set.to.one.of.the.a |
| 12d6e0 | 76 61 69 6c 61 62 6c 65 20 61 64 64 72 65 73 73 65 73 20 6f 6e 20 74 68 65 20 63 6f 6e 66 69 67 | vailable.addresses.on.the.config |
| 12d700 | 75 72 65 64 20 60 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 20 6f 72 20 69 74 20 | ured.`outbound-interface`.or.it. |
| 12d720 | 6d 75 73 74 20 62 65 20 73 65 74 20 74 6f 20 60 6d 61 73 71 75 65 72 61 64 65 60 20 77 68 69 63 | must.be.set.to.`masquerade`.whic |
| 12d740 | 68 20 77 69 6c 6c 20 75 73 65 20 74 68 65 20 70 72 69 6d 61 72 79 20 49 50 20 61 64 64 72 65 73 | h.will.use.the.primary.IP.addres |
| 12d760 | 73 20 6f 66 20 74 68 65 20 60 6f 75 74 62 6f 75 6e 64 2d 69 6e 74 65 72 66 61 63 65 60 20 61 73 | s.of.the.`outbound-interface`.as |
| 12d780 | 20 69 74 73 20 74 72 61 6e 73 6c 61 74 69 6f 6e 20 61 64 64 72 65 73 73 2e 00 54 68 65 20 74 75 | .its.translation.address..The.tu |
| 12d7a0 | 6e 6e 65 6c 20 77 69 6c 6c 20 75 73 65 20 31 30 2e 32 35 35 2e 31 2e 31 20 66 6f 72 20 74 68 65 | nnel.will.use.10.255.1.1.for.the |
| 12d7c0 | 20 6c 6f 63 61 6c 20 49 50 20 61 6e 64 20 31 30 2e 32 35 35 2e 31 2e 32 20 66 6f 72 20 74 68 65 | .local.IP.and.10.255.1.2.for.the |
| 12d7e0 | 20 72 65 6d 6f 74 65 2e 00 54 68 65 20 74 79 70 65 20 63 61 6e 20 62 65 20 74 68 65 20 66 6f 6c | .remote..The.type.can.be.the.fol |
| 12d800 | 6c 6f 77 69 6e 67 3a 20 61 73 62 72 2d 73 75 6d 6d 61 72 79 2c 20 65 78 74 65 72 6e 61 6c 2c 20 | lowing:.asbr-summary,.external,. |
| 12d820 | 6e 65 74 77 6f 72 6b 2c 20 6e 73 73 61 2d 65 78 74 65 72 6e 61 6c 2c 20 6f 70 61 71 75 65 2d 61 | network,.nssa-external,.opaque-a |
| 12d840 | 72 65 61 2c 20 6f 70 61 71 75 65 2d 61 73 2c 20 6f 70 61 71 75 65 2d 6c 69 6e 6b 2c 20 72 6f 75 | rea,.opaque-as,.opaque-link,.rou |
| 12d860 | 74 65 72 2c 20 73 75 6d 6d 61 72 79 2e 00 54 68 65 20 75 6c 74 69 6d 61 74 65 20 67 6f 61 6c 20 | ter,.summary..The.ultimate.goal. |
| 12d880 | 6f 66 20 63 6c 61 73 73 69 66 79 69 6e 67 20 74 72 61 66 66 69 63 20 69 73 20 74 6f 20 67 69 76 | of.classifying.traffic.is.to.giv |
| 12d8a0 | 65 20 65 61 63 68 20 63 6c 61 73 73 20 61 20 64 69 66 66 65 72 65 6e 74 20 74 72 65 61 74 6d 65 | e.each.class.a.different.treatme |
| 12d8c0 | 6e 74 2e 00 54 68 65 20 75 73 65 20 6f 66 20 49 50 6f 45 20 61 64 64 72 65 73 73 65 73 20 74 68 | nt..The.use.of.IPoE.addresses.th |
| 12d8e0 | 65 20 64 69 73 61 64 76 61 6e 74 61 67 65 20 74 68 61 74 20 50 50 50 20 69 73 20 75 6e 73 75 69 | e.disadvantage.that.PPP.is.unsui |
| 12d900 | 74 65 64 20 66 6f 72 20 6d 75 6c 74 69 63 61 73 74 20 64 65 6c 69 76 65 72 79 20 74 6f 20 6d 75 | ted.for.multicast.delivery.to.mu |
| 12d920 | 6c 74 69 70 6c 65 20 75 73 65 72 73 2e 20 54 79 70 69 63 61 6c 6c 79 2c 20 49 50 6f 45 20 75 73 | ltiple.users..Typically,.IPoE.us |
| 12d940 | 65 73 20 44 79 6e 61 6d 69 63 20 48 6f 73 74 20 43 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 50 72 | es.Dynamic.Host.Configuration.Pr |
| 12d960 | 6f 74 6f 63 6f 6c 20 61 6e 64 20 45 78 74 65 6e 73 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 | otocol.and.Extensible.Authentica |
| 12d980 | 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 74 6f 20 70 72 6f 76 69 64 65 20 74 68 65 20 73 61 6d | tion.Protocol.to.provide.the.sam |
| 12d9a0 | 65 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 61 73 20 50 50 50 6f 45 2c 20 62 75 74 20 69 6e | e.functionality.as.PPPoE,.but.in |
| 12d9c0 | 20 61 20 6c 65 73 73 20 72 6f 62 75 73 74 20 6d 61 6e 6e 65 72 2e 00 54 68 65 20 76 61 6c 75 65 | .a.less.robust.manner..The.value |
| 12d9e0 | 20 6f 66 20 74 68 65 20 61 74 74 72 69 62 75 74 65 20 60 60 4e 41 53 2d 50 6f 72 74 2d 49 64 60 | .of.the.attribute.``NAS-Port-Id` |
| 12da00 | 60 20 6d 75 73 74 20 62 65 20 6c 65 73 73 20 74 68 61 6e 20 31 36 20 63 68 61 72 61 63 74 65 72 | `.must.be.less.than.16.character |
| 12da20 | 73 2c 20 6f 74 68 65 72 77 69 73 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 6f 6e 27 74 | s,.otherwise.the.interface.won't |
| 12da40 | 20 62 65 20 72 65 6e 61 6d 65 64 2e 00 54 68 65 20 76 65 6e 64 6f 72 2d 63 6c 61 73 73 2d 69 64 | .be.renamed..The.vendor-class-id |
| 12da60 | 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 72 65 71 75 65 73 74 20 61 | .option.can.be.used.to.request.a |
| 12da80 | 20 73 70 65 63 69 66 69 63 20 63 6c 61 73 73 20 6f 66 20 76 65 6e 64 6f 72 20 6f 70 74 69 6f 6e | .specific.class.of.vendor.option |
| 12daa0 | 73 20 66 72 6f 6d 20 74 68 65 20 73 65 72 76 65 72 2e 00 54 68 65 20 76 65 74 68 20 64 65 76 69 | s.from.the.server..The.veth.devi |
| 12dac0 | 63 65 73 20 61 72 65 20 76 69 72 74 75 61 6c 20 45 74 68 65 72 6e 65 74 20 64 65 76 69 63 65 73 | ces.are.virtual.Ethernet.devices |
| 12dae0 | 2e 20 54 68 65 79 20 63 61 6e 20 61 63 74 20 61 73 20 74 75 6e 6e 65 6c 73 20 62 65 74 77 65 65 | ..They.can.act.as.tunnels.betwee |
| 12db00 | 6e 20 6e 65 74 77 6f 72 6b 20 6e 61 6d 65 73 70 61 63 65 73 20 74 6f 20 63 72 65 61 74 65 20 61 | n.network.namespaces.to.create.a |
| 12db20 | 20 62 72 69 64 67 65 20 74 6f 20 61 20 70 68 79 73 69 63 61 6c 20 6e 65 74 77 6f 72 6b 20 64 65 | .bridge.to.a.physical.network.de |
| 12db40 | 76 69 63 65 20 69 6e 20 61 6e 6f 74 68 65 72 20 6e 61 6d 65 73 70 61 63 65 20 6f 72 20 56 52 46 | vice.in.another.namespace.or.VRF |
| 12db60 | 2c 20 62 75 74 20 63 61 6e 20 61 6c 73 6f 20 62 65 20 75 73 65 64 20 61 73 20 73 74 61 6e 64 61 | ,.but.can.also.be.used.as.standa |
| 12db80 | 6c 6f 6e 65 20 6e 65 74 77 6f 72 6b 20 64 65 76 69 63 65 73 2e 00 54 68 65 20 77 65 6c 6c 20 6b | lone.network.devices..The.well.k |
| 12dba0 | 6e 6f 77 6e 20 4e 41 54 36 34 20 70 72 65 66 69 78 20 69 73 20 60 60 36 34 3a 66 66 39 62 3a 3a | nown.NAT64.prefix.is.``64:ff9b:: |
| 12dbc0 | 2f 39 36 60 60 00 54 68 65 20 77 69 6e 64 6f 77 20 73 69 7a 65 20 6d 75 73 74 20 62 65 20 62 65 | /96``.The.window.size.must.be.be |
| 12dbe0 | 74 77 65 65 6e 20 31 20 61 6e 64 20 32 31 2e 00 54 68 65 20 77 69 72 65 6c 65 73 73 20 63 6c 69 | tween.1.and.21..The.wireless.cli |
| 12dc00 | 65 6e 74 20 28 73 75 70 70 6c 69 63 61 6e 74 29 20 61 75 74 68 65 6e 74 69 63 61 74 65 73 20 61 | ent.(supplicant).authenticates.a |
| 12dc20 | 67 61 69 6e 73 74 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 28 61 75 74 68 65 6e | gainst.the.RADIUS.server.(authen |
| 12dc40 | 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 29 20 75 73 69 6e 67 20 61 6e 20 3a 61 62 62 72 3a | tication.server).using.an.:abbr: |
| 12dc60 | 60 45 41 50 20 28 45 78 74 65 6e 73 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | `EAP.(Extensible.Authentication. |
| 12dc80 | 50 72 6f 74 6f 63 6f 6c 29 60 20 20 6d 65 74 68 6f 64 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e | Protocol)`..method.configured.on |
| 12dca0 | 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 54 68 65 20 57 41 50 20 28 61 6c 73 | .the.RADIUS.server..The.WAP.(als |
| 12dcc0 | 6f 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 29 20 | o.referred.to.as.authenticator). |
| 12dce0 | 72 6f 6c 65 20 69 73 20 74 6f 20 73 65 6e 64 20 61 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 | role.is.to.send.all.authenticati |
| 12dd00 | 6f 6e 20 6d 65 73 73 61 67 65 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 73 75 70 70 6c 69 63 61 | on.messages.between.the.supplica |
| 12dd20 | 6e 74 20 61 6e 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 | nt.and.the.configured.authentica |
| 12dd40 | 74 69 6f 6e 20 73 65 72 76 65 72 2c 20 74 68 75 73 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 | tion.server,.thus.the.RADIUS.ser |
| 12dd60 | 76 65 72 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 | ver.is.responsible.for.authentic |
| 12dd80 | 61 74 69 6e 67 20 74 68 65 20 75 73 65 72 73 2e 00 54 68 65 20 77 69 72 65 6c 65 73 73 20 63 6c | ating.the.users..The.wireless.cl |
| 12dda0 | 69 65 6e 74 20 28 73 75 70 70 6c 69 63 61 6e 74 29 20 61 75 74 68 65 6e 74 69 63 61 74 65 73 20 | ient.(supplicant).authenticates. |
| 12ddc0 | 61 67 61 69 6e 73 74 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 28 61 75 74 68 65 | against.the.RADIUS.server.(authe |
| 12dde0 | 6e 74 69 63 61 74 69 6f 6e 20 73 65 72 76 65 72 29 20 75 73 69 6e 67 20 61 6e 20 3a 61 62 62 72 | ntication.server).using.an.:abbr |
| 12de00 | 3a 60 45 41 50 20 28 45 78 74 65 6e 73 69 62 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | :`EAP.(Extensible.Authentication |
| 12de20 | 20 50 72 6f 74 6f 63 6f 6c 29 60 20 6d 65 74 68 6f 64 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e | .Protocol)`.method.configured.on |
| 12de40 | 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 54 68 65 20 57 41 50 20 28 61 6c 73 | .the.RADIUS.server..The.WAP.(als |
| 12de60 | 6f 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 61 75 74 68 65 6e 74 69 63 61 74 6f 72 29 20 | o.referred.to.as.authenticator). |
| 12de80 | 72 6f 6c 65 20 69 73 20 74 6f 20 73 65 6e 64 20 61 6c 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 | role.is.to.send.all.authenticati |
| 12dea0 | 6f 6e 20 6d 65 73 73 61 67 65 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 73 75 70 70 6c 69 63 61 | on.messages.between.the.supplica |
| 12dec0 | 6e 74 20 61 6e 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 75 74 68 65 6e 74 69 63 61 | nt.and.the.configured.authentica |
| 12dee0 | 74 69 6f 6e 20 73 65 72 76 65 72 2c 20 74 68 75 73 20 74 68 65 20 52 41 44 49 55 53 20 73 65 72 | tion.server,.thus.the.RADIUS.ser |
| 12df00 | 76 65 72 20 69 73 20 72 65 73 70 6f 6e 73 69 62 6c 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 | ver.is.responsible.for.authentic |
| 12df20 | 61 74 69 6e 67 20 74 68 65 20 75 73 65 72 73 2e 00 54 68 65 20 77 72 69 74 69 6e 67 20 6f 66 20 | ating.the.users..The.writing.of. |
| 12df40 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 65 63 6f 6e 64 61 | the.configuration.to.the.seconda |
| 12df60 | 72 79 20 72 6f 75 74 65 72 20 69 73 20 70 65 72 66 6f 72 6d 65 64 20 74 68 72 6f 75 67 68 20 74 | ry.router.is.performed.through.t |
| 12df80 | 68 65 20 56 79 4f 53 20 48 54 54 50 20 41 50 49 2e 20 54 68 65 20 75 73 65 72 20 63 61 6e 20 73 | he.VyOS.HTTP.API..The.user.can.s |
| 12dfa0 | 70 65 63 69 66 79 20 77 68 69 63 68 20 70 6f 72 74 69 6f 6e 28 73 29 20 6f 66 20 74 68 65 20 63 | pecify.which.portion(s).of.the.c |
| 12dfc0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 73 79 6e 63 68 72 6f 6e 69 7a 65 | onfiguration.will.be.synchronize |
| 12dfe0 | 64 20 61 6e 64 20 74 68 65 20 6d 6f 64 65 20 74 6f 20 75 73 65 20 2d 20 77 68 65 74 68 65 72 20 | d.and.the.mode.to.use.-.whether. |
| 12e000 | 74 6f 20 72 65 70 6c 61 63 65 20 6f 72 20 61 64 64 2e 00 54 68 65 6e 20 61 20 63 6f 72 72 65 73 | to.replace.or.add..Then.a.corres |
| 12e020 | 70 6f 6e 64 69 6e 67 20 53 4e 41 54 20 72 75 6c 65 20 69 73 20 63 72 65 61 74 65 64 20 74 6f 20 | ponding.SNAT.rule.is.created.to. |
| 12e040 | 4e 41 54 20 6f 75 74 67 6f 69 6e 67 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 65 20 69 6e 74 | NAT.outgoing.traffic.for.the.int |
| 12e060 | 65 72 6e 61 6c 20 49 50 20 74 6f 20 61 20 72 65 73 65 72 76 65 64 20 65 78 74 65 72 6e 61 6c 20 | ernal.IP.to.a.reserved.external. |
| 12e080 | 49 50 2e 20 54 68 69 73 20 64 65 64 69 63 61 74 65 73 20 61 6e 20 65 78 74 65 72 6e 61 6c 20 49 | IP..This.dedicates.an.external.I |
| 12e0a0 | 50 20 61 64 64 72 65 73 73 20 74 6f 20 61 6e 20 69 6e 74 65 72 6e 61 6c 20 49 50 20 61 64 64 72 | P.address.to.an.internal.IP.addr |
| 12e0c0 | 65 73 73 20 61 6e 64 20 69 73 20 75 73 65 66 75 6c 20 66 6f 72 20 70 72 6f 74 6f 63 6f 6c 73 20 | ess.and.is.useful.for.protocols. |
| 12e0e0 | 77 68 69 63 68 20 64 6f 6e 27 74 20 68 61 76 65 20 74 68 65 20 6e 6f 74 69 6f 6e 20 6f 66 20 70 | which.don't.have.the.notion.of.p |
| 12e100 | 6f 72 74 73 2c 20 73 75 63 68 20 61 73 20 47 52 45 2e 00 54 68 65 6e 20 77 65 20 6e 65 65 64 20 | orts,.such.as.GRE..Then.we.need. |
| 12e120 | 74 6f 20 67 65 6e 65 72 61 74 65 2c 20 61 64 64 20 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 65 | to.generate,.add.and.specify.the |
| 12e140 | 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6d 61 74 65 | .names.of.the.cryptographic.mate |
| 12e160 | 72 69 61 6c 73 2e 20 45 61 63 68 20 6f 66 20 74 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 | rials..Each.of.the.install.comma |
| 12e180 | 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 | nd.should.be.applied.to.the.conf |
| 12e1a0 | 69 67 75 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 73 | iguration.and.commited.before.us |
| 12e1c0 | 69 6e 67 20 75 6e 64 65 72 20 74 68 65 20 6f 70 65 6e 76 70 6e 20 69 6e 74 65 72 66 61 63 65 20 | ing.under.the.openvpn.interface. |
| 12e1e0 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 6e 20 77 65 20 6e 65 65 64 20 74 6f 20 67 | configuration..Then.we.need.to.g |
| 12e200 | 65 6e 65 72 61 74 65 2c 20 61 64 64 20 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 65 20 6e 61 6d | enerate,.add.and.specify.the.nam |
| 12e220 | 65 73 20 6f 66 20 74 68 65 20 63 72 79 70 74 6f 67 72 61 70 68 69 63 20 6d 61 74 65 72 69 61 6c | es.of.the.cryptographic.material |
| 12e240 | 73 2e 20 45 61 63 68 20 6f 66 20 74 68 65 20 69 6e 73 74 61 6c 6c 20 63 6f 6d 6d 61 6e 64 73 20 | s..Each.of.the.install.commands. |
| 12e260 | 73 68 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 | should.be.applied.to.the.configu |
| 12e280 | 72 61 74 69 6f 6e 20 61 6e 64 20 63 6f 6d 6d 69 74 65 64 20 62 65 66 6f 72 65 20 75 73 69 6e 67 | ration.and.commited.before.using |
| 12e2a0 | 20 75 6e 64 65 72 20 74 68 65 20 6f 70 65 6e 76 70 6e 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e | .under.the.openvpn.interface.con |
| 12e2c0 | 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 69 6e 73 | figuration..Then.you.need.to.ins |
| 12e2e0 | 74 61 6c 6c 20 74 68 65 20 6b 65 79 20 6f 6e 20 74 68 65 20 72 65 6d 6f 74 65 20 72 6f 75 74 65 | tall.the.key.on.the.remote.route |
| 12e300 | 72 3a 00 54 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 65 74 20 74 68 65 20 6b 65 79 20 | r:.Then.you.need.to.set.the.key. |
| 12e320 | 69 6e 20 79 6f 75 72 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 63 65 20 73 65 74 74 69 6e | in.your.OpenVPN.interface.settin |
| 12e340 | 67 73 3a 00 54 68 65 6e 2c 20 46 61 73 74 4e 65 74 4d 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 | gs:.Then,.FastNetMon.configurati |
| 12e360 | 6f 6e 3a 00 54 68 65 72 65 20 61 72 65 20 33 20 64 65 66 61 75 6c 74 20 4e 54 50 20 73 65 72 76 | on:.There.are.3.default.NTP.serv |
| 12e380 | 65 72 20 73 65 74 2e 20 59 6f 75 20 61 72 65 20 61 62 6c 65 20 74 6f 20 63 68 61 6e 67 65 20 74 | er.set..You.are.able.to.change.t |
| 12e3a0 | 68 65 6d 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 | hem..There.are.a.lot.of.matching |
| 12e3c0 | 20 63 72 69 74 65 72 69 61 20 61 67 61 69 6e 73 74 20 77 68 69 63 68 20 74 68 65 20 70 61 63 6b | .criteria.against.which.the.pack |
| 12e3e0 | 61 67 65 20 63 61 6e 20 62 65 20 74 65 73 74 65 64 2e 00 54 68 65 72 65 20 61 72 65 20 61 20 6c | age.can.be.tested..There.are.a.l |
| 12e400 | 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 61 67 61 69 6e 73 74 20 | ot.of.matching.criteria.against. |
| 12e420 | 77 68 69 63 68 20 74 68 65 20 70 61 63 6b 65 74 20 63 61 6e 20 62 65 20 74 65 73 74 65 64 2e 00 | which.the.packet.can.be.tested.. |
| 12e440 | 54 68 65 72 65 20 61 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 | There.are.a.lot.of.matching.crit |
| 12e460 | 65 72 69 61 20 61 67 61 69 6e 73 74 20 77 68 69 63 68 20 74 68 65 20 70 61 63 6b 65 74 20 63 61 | eria.against.which.the.packet.ca |
| 12e480 | 6e 20 62 65 20 74 65 73 74 65 64 2e 20 50 6c 65 61 73 65 20 72 65 66 65 72 20 74 6f 20 3a 64 6f | n.be.tested..Please.refer.to.:do |
| 12e4a0 | 63 3a 60 49 50 76 34 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f | c:`IPv4</configuration/firewall/ |
| 12e4c0 | 69 70 76 34 3e 60 20 61 6e 64 20 3a 64 6f 63 3a 60 49 50 76 36 3c 2f 63 6f 6e 66 69 67 75 72 61 | ipv4>`.and.:doc:`IPv6</configura |
| 12e4e0 | 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 69 70 76 36 3e 60 20 6d 61 74 63 68 69 6e 67 20 63 72 | tion/firewall/ipv6>`.matching.cr |
| 12e500 | 69 74 65 72 69 61 20 66 6f 72 20 6d 6f 72 65 20 64 65 74 61 69 6c 73 2e 00 54 68 65 72 65 20 61 | iteria.for.more.details..There.a |
| 12e520 | 72 65 20 61 20 6c 6f 74 20 6f 66 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 6f 70 | re.a.lot.of.matching.criteria.op |
| 12e540 | 74 69 6f 6e 73 20 61 76 61 69 6c 61 62 6c 65 2c 20 62 6f 74 68 20 66 6f 72 20 60 60 70 6f 6c 69 | tions.available,.both.for.``poli |
| 12e560 | 63 79 20 72 6f 75 74 65 60 60 20 61 6e 64 20 60 60 70 6f 6c 69 63 79 20 72 6f 75 74 65 36 60 60 | cy.route``.and.``policy.route6`` |
| 12e580 | 2e 20 54 68 65 73 65 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 6c 69 73 74 65 64 20 69 6e 20 74 68 | ..These.options.are.listed.in.th |
| 12e5a0 | 69 73 20 73 65 63 74 69 6f 6e 2e 00 54 68 65 72 65 20 61 72 65 20 64 69 66 66 65 72 65 6e 74 20 | is.section..There.are.different. |
| 12e5c0 | 70 61 72 61 6d 65 74 65 72 73 20 66 6f 72 20 67 65 74 74 69 6e 67 20 70 72 65 66 69 78 2d 6c 69 | parameters.for.getting.prefix-li |
| 12e5e0 | 73 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 00 54 68 65 72 65 20 61 72 65 20 6c 69 6d 69 74 73 | st.information:.There.are.limits |
| 12e600 | 20 6f 6e 20 77 68 69 63 68 20 63 68 61 6e 6e 65 6c 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 | .on.which.channels.can.be.used.w |
| 12e620 | 69 74 68 20 48 54 34 30 2d 20 61 6e 64 20 48 54 34 30 2b 2e 20 46 6f 6c 6c 6f 77 69 6e 67 20 74 | ith.HT40-.and.HT40+..Following.t |
| 12e640 | 61 62 6c 65 20 73 68 6f 77 73 20 74 68 65 20 63 68 61 6e 6e 65 6c 73 20 74 68 61 74 20 6d 61 79 | able.shows.the.channels.that.may |
| 12e660 | 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 48 54 34 30 2d 20 61 6e 64 20 48 54 34 30 | .be.available.for.HT40-.and.HT40 |
| 12e680 | 2b 20 75 73 65 20 70 65 72 20 49 45 45 45 20 38 30 32 2e 31 31 6e 20 41 6e 6e 65 78 20 4a 3a 00 | +.use.per.IEEE.802.11n.Annex.J:. |
| 12e6a0 | 54 68 65 72 65 20 61 72 65 20 6d 61 6e 79 20 70 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 77 69 | There.are.many.parameters.you.wi |
| 12e6c0 | 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 75 73 65 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 | ll.be.able.to.use.in.order.to.ma |
| 12e6e0 | 74 63 68 20 74 68 65 20 74 72 61 66 66 69 63 20 79 6f 75 20 77 61 6e 74 20 66 6f 72 20 61 20 63 | tch.the.traffic.you.want.for.a.c |
| 12e700 | 6c 61 73 73 3a 00 54 68 65 72 65 20 61 72 65 20 6d 75 6c 74 69 70 6c 65 20 76 65 72 73 69 6f 6e | lass:.There.are.multiple.version |
| 12e720 | 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 74 68 65 20 4e 65 74 46 6c 6f 77 20 64 61 74 61 | s.available.for.the.NetFlow.data |
| 12e740 | 2e 20 54 68 65 20 60 3c 76 65 72 73 69 6f 6e 3e 60 20 75 73 65 64 20 69 6e 20 74 68 65 20 65 78 | ..The.`<version>`.used.in.the.ex |
| 12e760 | 70 6f 72 74 65 64 20 66 6c 6f 77 20 64 61 74 61 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 | ported.flow.data.can.be.configur |
| 12e780 | 65 64 20 68 65 72 65 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 76 65 72 73 69 6f 6e 73 20 | ed.here..The.following.versions. |
| 12e7a0 | 61 72 65 20 73 75 70 70 6f 72 74 65 64 3a 00 54 68 65 72 65 20 61 72 65 20 72 61 74 65 2d 6c 69 | are.supported:.There.are.rate-li |
| 12e7c0 | 6d 69 74 65 64 20 61 6e 64 20 6e 6f 6e 20 72 61 74 65 2d 6c 69 6d 69 74 65 64 20 75 73 65 72 73 | mited.and.non.rate-limited.users |
| 12e7e0 | 20 28 4d 41 43 73 29 00 54 68 65 72 65 20 61 72 65 20 73 6f 6d 65 20 73 63 65 6e 61 72 69 6f 73 | .(MACs).There.are.some.scenarios |
| 12e800 | 20 77 68 65 72 65 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 73 20 61 72 65 20 75 73 65 66 75 | .where.serial.consoles.are.usefu |
| 12e820 | 6c 2e 20 53 79 73 74 65 6d 20 61 64 6d 69 6e 69 73 74 72 61 74 69 6f 6e 20 6f 66 20 72 65 6d 6f | l..System.administration.of.remo |
| 12e840 | 74 65 20 63 6f 6d 70 75 74 65 72 73 20 69 73 20 75 73 75 61 6c 6c 79 20 64 6f 6e 65 20 75 73 69 | te.computers.is.usually.done.usi |
| 12e860 | 6e 67 20 3a 72 65 66 3a 60 73 73 68 60 2c 20 62 75 74 20 74 68 65 72 65 20 61 72 65 20 74 69 6d | ng.:ref:`ssh`,.but.there.are.tim |
| 12e880 | 65 73 20 77 68 65 6e 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 63 6f 6e 73 6f 6c 65 20 69 73 | es.when.access.to.the.console.is |
| 12e8a0 | 20 74 68 65 20 6f 6e 6c 79 20 77 61 79 20 74 6f 20 64 69 61 67 6e 6f 73 65 20 61 6e 64 20 63 6f | .the.only.way.to.diagnose.and.co |
| 12e8c0 | 72 72 65 63 74 20 73 6f 66 74 77 61 72 65 20 66 61 69 6c 75 72 65 73 2e 20 4d 61 6a 6f 72 20 75 | rrect.software.failures..Major.u |
| 12e8e0 | 70 67 72 61 64 65 73 20 74 6f 20 74 68 65 20 69 6e 73 74 61 6c 6c 65 64 20 64 69 73 74 72 69 62 | pgrades.to.the.installed.distrib |
| 12e900 | 75 74 69 6f 6e 20 6d 61 79 20 61 6c 73 6f 20 72 65 71 75 69 72 65 20 63 6f 6e 73 6f 6c 65 20 61 | ution.may.also.require.console.a |
| 12e920 | 63 63 65 73 73 2e 00 54 68 65 72 65 20 61 72 65 20 74 68 72 65 65 20 6d 6f 64 65 73 20 6f 66 20 | ccess..There.are.three.modes.of. |
| 12e940 | 6f 70 65 72 61 74 69 6f 6e 20 66 6f 72 20 61 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 | operation.for.a.wireless.interfa |
| 12e960 | 63 65 3a 00 54 68 65 72 65 20 61 72 65 20 74 77 6f 20 74 79 70 65 73 20 6f 66 20 4e 65 74 77 6f | ce:.There.are.two.types.of.Netwo |
| 12e980 | 72 6b 20 41 64 6d 69 6e 73 20 77 68 6f 20 64 65 61 6c 20 77 69 74 68 20 42 47 50 2c 20 74 68 6f | rk.Admins.who.deal.with.BGP,.tho |
| 12e9a0 | 73 65 20 77 68 6f 20 68 61 76 65 20 63 72 65 61 74 65 64 20 61 6e 20 69 6e 74 65 72 6e 61 74 69 | se.who.have.created.an.internati |
| 12e9c0 | 6f 6e 61 6c 20 69 6e 63 69 64 65 6e 74 20 61 6e 64 2f 6f 72 20 6f 75 74 61 67 65 2c 20 61 6e 64 | onal.incident.and/or.outage,.and |
| 12e9e0 | 20 74 68 6f 73 65 20 77 68 6f 20 61 72 65 20 6c 79 69 6e 67 00 54 68 65 72 65 20 61 72 65 20 74 | .those.who.are.lying.There.are.t |
| 12ea00 | 77 6f 20 77 61 79 73 20 74 68 61 74 20 68 65 6c 70 20 75 73 20 74 6f 20 6d 69 74 69 67 61 74 65 | wo.ways.that.help.us.to.mitigate |
| 12ea20 | 20 74 68 65 20 42 47 50 73 20 66 75 6c 6c 2d 6d 65 73 68 20 72 65 71 75 69 72 65 6d 65 6e 74 20 | .the.BGPs.full-mesh.requirement. |
| 12ea40 | 69 6e 20 61 20 6e 65 74 77 6f 72 6b 3a 00 54 68 65 72 65 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 | in.a.network:.There.can.only.be. |
| 12ea60 | 6f 6e 65 20 6c 6f 6f 70 62 61 63 6b 20 60 60 6c 6f 60 60 20 69 6e 74 65 72 66 61 63 65 20 6f 6e | one.loopback.``lo``.interface.on |
| 12ea80 | 20 74 68 65 20 73 79 73 74 65 6d 2e 20 49 66 20 79 6f 75 20 6e 65 65 64 20 6d 75 6c 74 69 70 6c | .the.system..If.you.need.multipl |
| 12eaa0 | 65 20 69 6e 74 65 72 66 61 63 65 73 2c 20 70 6c 65 61 73 65 20 75 73 65 20 74 68 65 20 3a 72 65 | e.interfaces,.please.use.the.:re |
| 12eac0 | 66 3a 60 64 75 6d 6d 79 2d 69 6e 74 65 72 66 61 63 65 60 20 69 6e 74 65 72 66 61 63 65 20 74 79 | f:`dummy-interface`.interface.ty |
| 12eae0 | 70 65 2e 00 54 68 65 72 65 20 63 6f 75 6c 64 20 62 65 20 61 20 77 69 64 65 20 72 61 6e 67 65 20 | pe..There.could.be.a.wide.range. |
| 12eb00 | 6f 66 20 72 6f 75 74 69 6e 67 20 70 6f 6c 69 63 69 65 73 2e 20 53 6f 6d 65 20 65 78 61 6d 70 6c | of.routing.policies..Some.exampl |
| 12eb20 | 65 73 20 61 72 65 20 6c 69 73 74 65 64 20 62 65 6c 6f 77 3a 00 54 68 65 72 65 20 69 73 20 61 20 | es.are.listed.below:.There.is.a. |
| 12eb40 | 76 65 72 79 20 6e 69 63 65 20 70 69 63 74 75 72 65 2f 65 78 70 6c 61 6e 61 74 69 6f 6e 20 69 6e | very.nice.picture/explanation.in |
| 12eb60 | 20 74 68 65 20 56 79 61 74 74 61 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 77 68 69 63 68 20 | .the.Vyatta.documentation.which. |
| 12eb80 | 73 68 6f 75 6c 64 20 62 65 20 72 65 77 72 69 74 74 65 6e 20 68 65 72 65 2e 00 54 68 65 72 65 20 | should.be.rewritten.here..There. |
| 12eba0 | 69 73 20 61 6c 73 6f 20 61 20 47 52 45 20 6f 76 65 72 20 49 50 76 36 20 65 6e 63 61 70 73 75 6c | is.also.a.GRE.over.IPv6.encapsul |
| 12ebc0 | 61 74 69 6f 6e 20 61 76 61 69 6c 61 62 6c 65 2c 20 69 74 20 69 73 20 63 61 6c 6c 65 64 3a 20 60 | ation.available,.it.is.called:.` |
| 12ebe0 | 60 69 70 36 67 72 65 60 60 2e 00 54 68 65 72 65 20 69 73 20 61 6e 20 65 6e 74 69 72 65 20 63 68 | `ip6gre``..There.is.an.entire.ch |
| 12ec00 | 61 70 74 65 72 20 61 62 6f 75 74 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 3a | apter.about.how.to.configure.a.: |
| 12ec20 | 72 65 66 3a 60 76 72 66 60 2c 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 74 68 69 73 20 66 6f 72 | ref:`vrf`,.please.check.this.for |
| 12ec40 | 20 61 64 64 69 74 69 6f 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 54 68 65 72 65 27 73 | .additional.information..There's |
| 12ec60 | 20 61 20 76 61 72 69 65 74 79 20 6f 66 20 63 6c 69 65 6e 74 20 47 55 49 20 66 72 6f 6e 74 65 6e | .a.variety.of.client.GUI.fronten |
| 12ec80 | 64 73 20 66 6f 72 20 61 6e 79 20 70 6c 61 74 66 6f 72 6d 00 54 68 65 73 65 20 61 72 65 20 74 68 | ds.for.any.platform.These.are.th |
| 12eca0 | 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 61 20 62 61 73 69 63 20 73 65 74 75 70 2e 00 54 68 | e.commands.for.a.basic.setup..Th |
| 12ecc0 | 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 61 6c 6c 6f 77 20 74 68 65 20 56 4c 41 4e 31 30 20 61 6e | ese.commands.allow.the.VLAN10.an |
| 12ece0 | 64 20 56 4c 41 4e 31 31 20 68 6f 73 74 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 | d.VLAN11.hosts.to.communicate.wi |
| 12ed00 | 74 68 20 65 61 63 68 20 6f 74 68 65 72 20 75 73 69 6e 67 20 74 68 65 20 6d 61 69 6e 20 72 6f 75 | th.each.other.using.the.main.rou |
| 12ed20 | 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 63 72 65 61 74 | ting.table..These.commands.creat |
| 12ed40 | 65 20 61 20 66 6c 65 78 69 62 6c 65 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 63 6f 6e 66 69 | e.a.flexible.interface.for.confi |
| 12ed60 | 67 75 72 69 6e 67 20 74 68 65 20 53 75 72 69 63 61 74 61 20 73 65 72 76 69 63 65 2c 20 61 6c 6c | guring.the.Suricata.service,.all |
| 12ed80 | 6f 77 69 6e 67 20 75 73 65 72 73 20 74 6f 20 73 70 65 63 69 66 79 20 61 64 64 72 65 73 73 65 73 | owing.users.to.specify.addresses |
| 12eda0 | 2c 20 70 6f 72 74 73 2c 20 61 6e 64 20 6c 6f 67 67 69 6e 67 20 70 61 72 61 6d 65 74 65 72 73 2e | ,.ports,.and.logging.parameters. |
| 12edc0 | 00 54 68 65 73 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 6e 6f 74 20 6d 61 6e 64 | .These.configuration.is.not.mand |
| 12ede0 | 61 74 6f 72 79 20 61 6e 64 20 69 6e 20 6d 6f 73 74 20 63 61 73 65 73 20 74 68 65 72 65 27 73 20 | atory.and.in.most.cases.there's. |
| 12ee00 | 6e 6f 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 74 2e 20 42 75 74 20 69 66 20 | no.need.to.configure.it..But.if. |
| 12ee20 | 6e 65 63 65 73 73 61 72 79 2c 20 47 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 63 61 6e 20 62 65 | necessary,.Gratuitous.ARP.can.be |
| 12ee40 | 20 63 6f 6e 66 69 67 75 72 65 64 20 69 6e 20 60 60 67 6c 6f 62 61 6c 2d 70 61 72 61 6d 65 74 65 | .configured.in.``global-paramete |
| 12ee60 | 72 73 60 60 20 61 6e 64 2f 6f 72 20 69 6e 20 60 60 67 72 6f 75 70 60 60 20 73 65 63 74 69 6f 6e | rs``.and/or.in.``group``.section |
| 12ee80 | 2e 00 54 68 65 73 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 70 61 73 73 65 64 20 61 73 | ..These.parameters.are.passed.as |
| 12eea0 | 2d 69 73 20 74 6f 20 69 73 63 2d 64 68 63 70 27 73 20 64 68 63 70 64 2e 63 6f 6e 66 20 75 6e 64 | -is.to.isc-dhcp's.dhcpd.conf.und |
| 12eec0 | 65 72 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6e 6f 64 65 20 74 68 65 79 20 61 | er.the.configuration.node.they.a |
| 12eee0 | 72 65 20 64 65 66 69 6e 65 64 20 69 6e 2e 20 54 68 65 79 20 61 72 65 20 6e 6f 74 20 76 61 6c 69 | re.defined.in..They.are.not.vali |
| 12ef00 | 64 61 74 65 64 20 73 6f 20 61 6e 20 65 72 72 6f 72 20 69 6e 20 74 68 65 20 72 61 77 20 70 61 72 | dated.so.an.error.in.the.raw.par |
| 12ef20 | 61 6d 65 74 65 72 73 20 77 6f 6e 27 74 20 62 65 20 63 61 75 67 68 74 20 62 79 20 76 79 6f 73 27 | ameters.won't.be.caught.by.vyos' |
| 12ef40 | 73 20 73 63 72 69 70 74 73 20 61 6e 64 20 77 69 6c 6c 20 63 61 75 73 65 20 64 68 63 70 64 20 74 | s.scripts.and.will.cause.dhcpd.t |
| 12ef60 | 6f 20 66 61 69 6c 20 74 6f 20 73 74 61 72 74 2e 20 41 6c 77 61 79 73 20 76 65 72 69 66 79 20 74 | o.fail.to.start..Always.verify.t |
| 12ef80 | 68 61 74 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 63 6f 72 72 65 63 74 20 62 | hat.the.parameters.are.correct.b |
| 12efa0 | 65 66 6f 72 65 20 63 6f 6d 6d 69 74 74 69 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 | efore.committing.the.configurati |
| 12efc0 | 6f 6e 2e 20 52 65 66 65 72 20 74 6f 20 69 73 63 2d 64 68 63 70 27 73 20 64 68 63 70 64 2e 63 6f | on..Refer.to.isc-dhcp's.dhcpd.co |
| 12efe0 | 6e 66 20 6d 61 6e 75 61 6c 20 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 3a 20 | nf.manual.for.more.information:. |
| 12f000 | 68 74 74 70 73 3a 2f 2f 6b 62 2e 69 73 63 2e 6f 72 67 2f 64 6f 63 73 2f 69 73 63 2d 64 68 63 70 | https://kb.isc.org/docs/isc-dhcp |
| 12f020 | 2d 34 34 2d 6d 61 6e 75 61 6c 2d 70 61 67 65 73 2d 64 68 63 70 64 63 6f 6e 66 00 54 68 65 73 65 | -44-manual-pages-dhcpdconf.These |
| 12f040 | 20 70 61 72 61 6d 65 74 65 72 73 20 6e 65 65 64 20 74 6f 20 62 65 20 70 61 72 74 20 6f 66 20 74 | .parameters.need.to.be.part.of.t |
| 12f060 | 68 65 20 44 48 43 50 20 67 6c 6f 62 61 6c 20 6f 70 74 69 6f 6e 73 2e 20 54 68 65 79 20 73 74 61 | he.DHCP.global.options..They.sta |
| 12f080 | 79 20 75 6e 63 68 61 6e 67 65 64 2e 00 54 68 65 79 20 63 61 6e 20 62 65 20 2a 2a 64 65 63 69 6d | y.unchanged..They.can.be.**decim |
| 12f0a0 | 61 6c 2a 2a 20 70 72 65 66 69 78 65 73 2e 00 54 68 69 6e 67 73 20 74 6f 20 62 65 20 63 6f 6e 73 | al**.prefixes..Things.to.be.cons |
| 12f0c0 | 69 64 65 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 74 75 70 3a 00 54 68 69 6e 67 73 20 74 6f 20 | idered.in.this.setup:.Things.to. |
| 12f0e0 | 62 65 20 63 6f 6e 73 69 64 72 65 64 20 69 6e 20 74 68 69 73 20 73 65 74 75 70 3a 00 54 68 69 73 | be.considred.in.this.setup:.This |
| 12f100 | 20 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 | .address.must.be.the.address.of. |
| 12f120 | 61 20 6c 6f 63 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 20 6d 61 79 20 62 65 20 73 70 65 | a.local.interface..It.may.be.spe |
| 12f140 | 63 69 66 69 65 64 20 61 73 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 | cified.as.an.IPv4.address.or.an. |
| 12f160 | 49 50 76 36 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 69 73 20 | IPv6.address..This.algorithm.is. |
| 12f180 | 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c 69 61 6e 74 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 | 802.3ad.compliant..This.algorith |
| 12f1a0 | 6d 20 69 73 20 6e 6f 74 20 66 75 6c 6c 79 20 38 30 32 2e 33 61 64 20 63 6f 6d 70 6c 69 61 6e 74 | m.is.not.fully.802.3ad.compliant |
| 12f1c0 | 2e 20 41 20 73 69 6e 67 6c 65 20 54 43 50 20 6f 72 20 55 44 50 20 63 6f 6e 76 65 72 73 61 74 69 | ..A.single.TCP.or.UDP.conversati |
| 12f1e0 | 6f 6e 20 63 6f 6e 74 61 69 6e 69 6e 67 20 62 6f 74 68 20 66 72 61 67 6d 65 6e 74 65 64 20 61 6e | on.containing.both.fragmented.an |
| 12f200 | 64 20 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 65 65 20 | d.unfragmented.packets.will.see. |
| 12f220 | 70 61 63 6b 65 74 73 20 73 74 72 69 70 65 64 20 61 63 72 6f 73 73 20 74 77 6f 20 69 6e 74 65 72 | packets.striped.across.two.inter |
| 12f240 | 66 61 63 65 73 2e 20 54 68 69 73 20 6d 61 79 20 72 65 73 75 6c 74 20 69 6e 20 6f 75 74 20 6f 66 | faces..This.may.result.in.out.of |
| 12f260 | 20 6f 72 64 65 72 20 64 65 6c 69 76 65 72 79 2e 20 4d 6f 73 74 20 74 72 61 66 66 69 63 20 74 79 | .order.delivery..Most.traffic.ty |
| 12f280 | 70 65 73 20 77 69 6c 6c 20 6e 6f 74 20 6d 65 65 74 20 74 68 65 73 65 20 63 72 69 74 65 72 69 61 | pes.will.not.meet.these.criteria |
| 12f2a0 | 2c 20 61 73 20 54 43 50 20 72 61 72 65 6c 79 20 66 72 61 67 6d 65 6e 74 73 20 74 72 61 66 66 69 | ,.as.TCP.rarely.fragments.traffi |
| 12f2c0 | 63 2c 20 61 6e 64 20 6d 6f 73 74 20 55 44 50 20 74 72 61 66 66 69 63 20 69 73 20 6e 6f 74 20 69 | c,.and.most.UDP.traffic.is.not.i |
| 12f2e0 | 6e 76 6f 6c 76 65 64 20 69 6e 20 65 78 74 65 6e 64 65 64 20 63 6f 6e 76 65 72 73 61 74 69 6f 6e | nvolved.in.extended.conversation |
| 12f300 | 73 2e 20 4f 74 68 65 72 20 69 6d 70 6c 65 6d 65 6e 74 61 74 69 6f 6e 73 20 6f 66 20 38 30 32 2e | s..Other.implementations.of.802. |
| 12f320 | 33 61 64 20 6d 61 79 20 6f 72 20 6d 61 79 20 6e 6f 74 20 74 6f 6c 65 72 61 74 65 20 74 68 69 73 | 3ad.may.or.may.not.tolerate.this |
| 12f340 | 20 6e 6f 6e 63 6f 6d 70 6c 69 61 6e 63 65 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 77 | .noncompliance..This.algorithm.w |
| 12f360 | 69 6c 6c 20 70 6c 61 63 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 70 61 72 74 69 | ill.place.all.traffic.to.a.parti |
| 12f380 | 63 75 6c 61 72 20 6e 65 74 77 6f 72 6b 20 70 65 65 72 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 73 | cular.network.peer.on.the.same.s |
| 12f3a0 | 6c 61 76 65 2e 00 54 68 69 73 20 61 6c 67 6f 72 69 74 68 6d 20 77 69 6c 6c 20 70 6c 61 63 65 20 | lave..This.algorithm.will.place. |
| 12f3c0 | 61 6c 6c 20 74 72 61 66 66 69 63 20 74 6f 20 61 20 70 61 72 74 69 63 75 6c 61 72 20 6e 65 74 77 | all.traffic.to.a.particular.netw |
| 12f3e0 | 6f 72 6b 20 70 65 65 72 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 73 6c 61 76 65 2e 20 46 6f 72 20 | ork.peer.on.the.same.slave..For. |
| 12f400 | 6e 6f 6e 2d 49 50 20 74 72 61 66 66 69 63 2c 20 74 68 65 20 66 6f 72 6d 75 6c 61 20 69 73 20 74 | non-IP.traffic,.the.formula.is.t |
| 12f420 | 68 65 20 73 61 6d 65 20 61 73 20 66 6f 72 20 74 68 65 20 6c 61 79 65 72 32 20 74 72 61 6e 73 6d | he.same.as.for.the.layer2.transm |
| 12f440 | 69 74 20 68 61 73 68 20 70 6f 6c 69 63 79 2e 00 54 68 69 73 20 61 6c 6c 6f 77 73 20 61 76 6f 69 | it.hash.policy..This.allows.avoi |
| 12f460 | 64 69 6e 67 20 74 68 65 20 74 69 6d 65 72 73 20 64 65 66 69 6e 65 64 20 69 6e 20 42 47 50 20 61 | ding.the.timers.defined.in.BGP.a |
| 12f480 | 6e 64 20 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c 20 74 6f 20 65 78 70 69 72 65 73 2e 00 54 68 69 | nd.OSPF.protocol.to.expires..Thi |
| 12f4a0 | 73 20 61 6c 6c 6f 77 73 20 74 68 65 20 6f 70 65 72 61 74 6f 72 20 74 6f 20 63 6f 6e 74 72 6f 6c | s.allows.the.operator.to.control |
| 12f4c0 | 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 6f 70 65 6e 20 66 69 6c 65 20 64 65 73 63 72 69 70 | .the.number.of.open.file.descrip |
| 12f4e0 | 74 6f 72 73 20 65 61 63 68 20 64 61 65 6d 6f 6e 20 69 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 73 | tors.each.daemon.is.allowed.to.s |
| 12f500 | 74 61 72 74 20 77 69 74 68 2e 20 49 66 20 74 68 65 20 6f 70 65 72 61 74 6f 72 20 70 6c 61 6e 73 | tart.with..If.the.operator.plans |
| 12f520 | 20 74 6f 20 72 75 6e 20 62 67 70 20 77 69 74 68 20 73 65 76 65 72 61 6c 20 74 68 6f 75 73 61 6e | .to.run.bgp.with.several.thousan |
| 12f540 | 64 73 20 6f 66 20 70 65 65 72 73 20 74 68 65 6e 20 74 68 69 73 20 69 73 20 77 68 65 72 65 20 77 | ds.of.peers.then.this.is.where.w |
| 12f560 | 65 20 77 6f 75 6c 64 20 6d 6f 64 69 66 79 20 46 52 52 20 74 6f 20 61 6c 6c 6f 77 20 74 68 69 73 | e.would.modify.FRR.to.allow.this |
| 12f580 | 20 74 6f 20 68 61 70 70 65 6e 2e 00 54 68 69 73 20 61 6c 73 6f 20 77 6f 72 6b 73 20 66 6f 72 20 | .to.happen..This.also.works.for. |
| 12f5a0 | 72 65 76 65 72 73 65 2d 6c 6f 6f 6b 75 70 20 7a 6f 6e 65 73 20 28 60 60 31 38 2e 31 37 32 2e 69 | reverse-lookup.zones.(``18.172.i |
| 12f5c0 | 6e 2d 61 64 64 72 2e 61 72 70 61 60 60 29 2e 00 54 68 69 73 20 61 72 74 69 63 6c 65 20 74 6f 75 | n-addr.arpa``)..This.article.tou |
| 12f5e0 | 63 68 65 73 20 6f 6e 20 27 63 6c 61 73 73 69 63 27 20 49 50 20 74 75 6e 6e 65 6c 69 6e 67 20 70 | ches.on.'classic'.IP.tunneling.p |
| 12f600 | 72 6f 74 6f 63 6f 6c 73 2e 00 54 68 69 73 20 62 6c 75 65 70 72 69 6e 74 20 75 73 65 73 20 56 79 | rotocols..This.blueprint.uses.Vy |
| 12f620 | 4f 53 20 61 73 20 74 68 65 20 44 4d 56 50 4e 20 48 75 62 20 61 6e 64 20 43 69 73 63 6f 20 28 37 | OS.as.the.DMVPN.Hub.and.Cisco.(7 |
| 12f640 | 32 30 36 56 58 52 29 20 61 6e 64 20 56 79 4f 53 20 61 73 20 6d 75 6c 74 69 70 6c 65 20 73 70 6f | 206VXR).and.VyOS.as.multiple.spo |
| 12f660 | 6b 65 20 73 69 74 65 73 2e 20 54 68 65 20 6c 61 62 20 77 61 73 20 62 75 69 6c 64 20 75 73 69 6e | ke.sites..The.lab.was.build.usin |
| 12f680 | 67 20 3a 61 62 62 72 3a 60 45 56 45 2d 4e 47 20 28 45 6d 75 6c 61 74 65 64 20 56 69 72 74 75 61 | g.:abbr:`EVE-NG.(Emulated.Virtua |
| 12f6a0 | 6c 20 45 6e 76 69 72 6f 6e 6d 65 6e 74 20 4e 47 29 60 2e 00 54 68 69 73 20 62 6c 75 65 70 72 69 | l.Environment.NG)`..This.bluepri |
| 12f6c0 | 6e 74 20 75 73 65 73 20 56 79 4f 53 20 61 73 20 74 68 65 20 44 4d 56 50 4e 20 48 75 62 20 61 6e | nt.uses.VyOS.as.the.DMVPN.Hub.an |
| 12f6e0 | 64 20 43 69 73 63 6f 20 28 37 32 30 36 56 58 52 29 20 61 6e 64 20 56 79 4f 53 20 61 73 20 6d 75 | d.Cisco.(7206VXR).and.VyOS.as.mu |
| 12f700 | 6c 74 69 70 6c 65 20 73 70 6f 6b 65 20 73 69 74 65 73 2e 20 54 68 65 20 6c 61 62 20 77 61 73 20 | ltiple.spoke.sites..The.lab.was. |
| 12f720 | 62 75 69 6c 74 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 45 56 45 2d 4e 47 20 28 45 6d 75 6c 61 | built.using.:abbr:`EVE-NG.(Emula |
| 12f740 | 74 65 64 20 56 69 72 74 75 61 6c 20 45 6e 76 69 72 6f 6e 6d 65 6e 74 20 4e 47 29 60 2e 00 54 68 | ted.Virtual.Environment.NG)`..Th |
| 12f760 | 69 73 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 72 6d 65 64 20 75 73 69 6e 67 20 74 68 65 20 60 60 | is.can.be.confirmed.using.the.`` |
| 12f780 | 73 68 6f 77 20 69 70 20 72 6f 75 74 65 20 74 61 62 6c 65 20 31 30 30 60 60 20 6f 70 65 72 61 74 | show.ip.route.table.100``.operat |
| 12f7a0 | 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 | ional.command..This.can.only.be. |
| 12f7c0 | 64 6f 6e 65 20 69 66 20 61 6c 6c 20 79 6f 75 72 20 75 73 65 72 73 20 61 72 65 20 6c 6f 63 61 74 | done.if.all.your.users.are.locat |
| 12f7e0 | 65 64 20 64 69 72 65 63 74 6c 79 20 75 6e 64 65 72 20 74 68 65 20 73 61 6d 65 20 70 6f 73 69 74 | ed.directly.under.the.same.posit |
| 12f800 | 69 6f 6e 20 69 6e 20 74 68 65 20 4c 44 41 50 20 74 72 65 65 20 61 6e 64 20 74 68 65 20 6c 6f 67 | ion.in.the.LDAP.tree.and.the.log |
| 12f820 | 69 6e 20 6e 61 6d 65 20 69 73 20 75 73 65 64 20 66 6f 72 20 6e 61 6d 69 6e 67 20 65 61 63 68 20 | in.name.is.used.for.naming.each. |
| 12f840 | 75 73 65 72 20 6f 62 6a 65 63 74 2e 20 49 66 20 79 6f 75 72 20 4c 44 41 50 20 74 72 65 65 20 64 | user.object..If.your.LDAP.tree.d |
| 12f860 | 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 73 65 20 63 72 69 74 65 72 69 61 73 20 6f 72 | oes.not.match.these.criterias.or |
| 12f880 | 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 66 69 6c 74 65 72 20 77 68 6f 20 61 72 65 20 76 | .if.you.want.to.filter.who.are.v |
| 12f8a0 | 61 6c 69 64 20 75 73 65 72 73 20 74 68 65 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 75 73 65 20 | alid.users.then.you.need.to.use. |
| 12f8c0 | 61 20 73 65 61 72 63 68 20 66 69 6c 74 65 72 20 74 6f 20 73 65 61 72 63 68 20 66 6f 72 20 79 6f | a.search.filter.to.search.for.yo |
| 12f8e0 | 75 72 20 75 73 65 72 73 20 44 4e 20 28 60 66 69 6c 74 65 72 2d 65 78 70 72 65 73 73 69 6f 6e 60 | ur.users.DN.(`filter-expression` |
| 12f900 | 29 2e 00 54 68 69 73 20 63 68 61 70 65 74 65 72 20 64 65 73 63 72 69 62 65 73 20 68 6f 77 20 74 | )..This.chapeter.describes.how.t |
| 12f920 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 6b 65 72 6e 65 6c 20 70 61 72 61 6d 65 74 65 72 73 20 61 74 | o.configure.kernel.parameters.at |
| 12f940 | 20 72 75 6e 74 69 6d 65 2e 00 54 68 69 73 20 63 68 61 70 74 65 72 20 64 65 73 63 72 69 62 65 20 | .runtime..This.chapter.describe. |
| 12f960 | 74 68 65 20 70 6f 73 73 69 62 69 6c 69 74 69 65 73 20 6f 66 20 61 64 76 61 6e 63 65 64 20 73 79 | the.possibilities.of.advanced.sy |
| 12f980 | 73 74 65 6d 20 62 65 68 61 76 69 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 64 20 73 65 74 73 20 | stem.behavior..This.commad.sets. |
| 12f9a0 | 6e 65 74 77 6f 72 6b 20 65 6e 74 69 74 79 20 74 69 74 6c 65 20 28 4e 45 54 29 20 70 72 6f 76 69 | network.entity.title.(NET).provi |
| 12f9c0 | 64 65 64 20 69 6e 20 49 53 4f 20 66 6f 72 6d 61 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | ded.in.ISO.format..This.command. |
| 12f9e0 | 61 63 63 65 70 74 20 69 6e 63 6f 6d 69 6e 67 20 72 6f 75 74 65 73 20 77 69 74 68 20 41 53 20 70 | accept.incoming.routes.with.AS.p |
| 12fa00 | 61 74 68 20 63 6f 6e 74 61 69 6e 69 6e 67 20 41 53 20 6e 75 6d 62 65 72 20 77 69 74 68 20 74 68 | ath.containing.AS.number.with.th |
| 12fa20 | 65 20 73 61 6d 65 20 76 61 6c 75 65 20 61 73 20 74 68 65 20 63 75 72 72 65 6e 74 20 73 79 73 74 | e.same.value.as.the.current.syst |
| 12fa40 | 65 6d 20 41 53 2e 20 54 68 69 73 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 79 6f 75 20 77 61 6e | em.AS..This.is.used.when.you.wan |
| 12fa60 | 74 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 6e 75 6d 62 65 72 20 69 6e 20 79 | t.to.use.the.same.AS.number.in.y |
| 12fa80 | 6f 75 72 20 73 69 74 65 73 2c 20 62 75 74 20 79 6f 75 20 63 61 6e e2 80 99 74 20 63 6f 6e 6e 65 | our.sites,.but.you.can...t.conne |
| 12faa0 | 63 74 20 74 68 65 6d 20 64 69 72 65 63 74 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 | ct.them.directly..This.command.a |
| 12fac0 | 6c 6c 6f 77 20 6f 76 65 72 72 69 64 65 20 74 68 65 20 72 65 73 75 6c 74 20 6f 66 20 43 61 70 61 | llow.override.the.result.of.Capa |
| 12fae0 | 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 77 69 74 68 20 6c 6f 63 61 6c 20 63 6f | bility.Negotiation.with.local.co |
| 12fb00 | 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 49 67 6e 6f 72 65 20 72 65 6d 6f 74 65 20 70 65 65 72 e2 | nfiguration..Ignore.remote.peer. |
| 12fb20 | 80 99 73 20 63 61 70 61 62 69 6c 69 74 79 20 76 61 6c 75 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | ..s.capability.value..This.comma |
| 12fb40 | 6e 64 20 61 6c 6c 6f 77 73 20 70 65 65 72 69 6e 67 73 20 62 65 74 77 65 65 6e 20 64 69 72 65 63 | nd.allows.peerings.between.direc |
| 12fb60 | 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 65 42 47 50 20 70 65 65 72 73 20 75 73 69 6e 67 20 6c | tly.connected.eBGP.peers.using.l |
| 12fb80 | 6f 6f 70 62 61 63 6b 20 61 64 64 72 65 73 73 65 73 20 77 69 74 68 6f 75 74 20 61 64 6a 75 73 74 | oopback.addresses.without.adjust |
| 12fba0 | 69 6e 67 20 74 68 65 20 64 65 66 61 75 6c 74 20 54 54 4c 20 6f 66 20 31 2e 00 54 68 69 73 20 63 | ing.the.default.TTL.of.1..This.c |
| 12fbc0 | 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 73 65 73 73 69 6f 6e 73 20 74 6f 20 62 65 20 65 73 74 | ommand.allows.sessions.to.be.est |
| 12fbe0 | 61 62 6c 69 73 68 65 64 20 77 69 74 68 20 65 42 47 50 20 6e 65 69 67 68 62 6f 72 73 20 77 68 65 | ablished.with.eBGP.neighbors.whe |
| 12fc00 | 6e 20 74 68 65 79 20 61 72 65 20 6d 75 6c 74 69 70 6c 65 20 68 6f 70 73 20 61 77 61 79 2e 20 57 | n.they.are.multiple.hops.away..W |
| 12fc20 | 68 65 6e 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 69 73 20 6e 6f 74 20 64 69 72 65 63 74 6c 79 | hen.the.neighbor.is.not.directly |
| 12fc40 | 20 63 6f 6e 6e 65 63 74 65 64 20 61 6e 64 20 74 68 69 73 20 6b 6e 6f 62 20 69 73 20 6e 6f 74 20 | .connected.and.this.knob.is.not. |
| 12fc60 | 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 65 73 | enabled,.the.session.will.not.es |
| 12fc80 | 74 61 62 6c 69 73 68 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 70 73 20 72 61 6e 67 | tablish..The.number.of.hops.rang |
| 12fca0 | 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6d | e.is.1.to.255..This.command.is.m |
| 12fcc0 | 75 74 75 61 6c 6c 79 20 65 78 63 6c 75 73 69 76 65 20 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 | utually.exclusive.with.:cfgcmd:` |
| 12fce0 | 74 74 6c 2d 73 65 63 75 72 69 74 79 20 68 6f 70 73 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ttl-security.hops`..This.command |
| 12fd00 | 20 61 6c 6c 6f 77 73 20 74 68 65 20 72 6f 75 74 65 72 20 74 6f 20 70 72 65 66 65 72 20 72 6f 75 | .allows.the.router.to.prefer.rou |
| 12fd20 | 74 65 20 74 6f 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 20 6c 65 61 72 6e 65 64 20 76 | te.to.specified.prefix.learned.v |
| 12fd40 | 69 61 20 49 47 50 20 74 68 72 6f 75 67 68 20 62 61 63 6b 64 6f 6f 72 20 6c 69 6e 6b 20 69 6e 73 | ia.IGP.through.backdoor.link.ins |
| 12fd60 | 74 65 61 64 20 6f 66 20 61 20 72 6f 75 74 65 20 74 6f 20 74 68 65 20 73 61 6d 65 20 70 72 65 66 | tead.of.a.route.to.the.same.pref |
| 12fd80 | 69 78 20 6c 65 61 72 6e 65 64 20 76 69 61 20 45 42 47 50 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | ix.learned.via.EBGP..This.comman |
| 12fda0 | 64 20 61 6c 6c 6f 77 73 20 74 6f 20 6c 6f 67 20 63 68 61 6e 67 65 73 20 69 6e 20 61 64 6a 61 63 | d.allows.to.log.changes.in.adjac |
| 12fdc0 | 65 6e 63 79 2e 20 57 69 74 68 20 74 68 65 20 6f 70 74 69 6f 6e 61 6c 20 3a 63 66 67 63 6d 64 3a | ency..With.the.optional.:cfgcmd: |
| 12fde0 | 60 64 65 74 61 69 6c 60 20 61 72 67 75 6d 65 6e 74 2c 20 61 6c 6c 20 63 68 61 6e 67 65 73 20 69 | `detail`.argument,.all.changes.i |
| 12fe00 | 6e 20 61 64 6a 61 63 65 6e 63 79 20 73 74 61 74 75 73 20 61 72 65 20 73 68 6f 77 6e 2e 20 57 69 | n.adjacency.status.are.shown..Wi |
| 12fe20 | 74 68 6f 75 74 20 3a 63 66 67 63 6d 64 3a 60 64 65 74 61 69 6c 60 2c 20 6f 6e 6c 79 20 63 68 61 | thout.:cfgcmd:`detail`,.only.cha |
| 12fe40 | 6e 67 65 73 20 74 6f 20 66 75 6c 6c 20 6f 72 20 72 65 67 72 65 73 73 69 6f 6e 73 20 61 72 65 20 | nges.to.full.or.regressions.are. |
| 12fe60 | 73 68 6f 77 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 73 70 | shown..This.command.allows.to.sp |
| 12fe80 | 65 63 69 66 79 20 74 68 65 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 74 79 70 65 20 66 6f 72 20 | ecify.the.distribution.type.for. |
| 12fea0 | 74 68 65 20 6e 65 74 77 6f 72 6b 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 74 68 69 73 20 69 6e | the.network.connected.to.this.in |
| 12fec0 | 74 65 72 66 61 63 65 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 | terface:.This.command.allows.to. |
| 12fee0 | 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 | use.route.map.to.filter.redistri |
| 12ff00 | 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f | buted.routes.from.given.route.so |
| 12ff20 | 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c | urce..There.are.five.modes.avail |
| 12ff40 | 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e | able.for.route.source:.bgp,.conn |
| 12ff60 | 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 6e 67 2c 20 73 74 61 74 69 63 2e 00 54 68 | ected,.kernel,.ripng,.static..Th |
| 12ff80 | 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d | is.command.allows.to.use.route.m |
| 12ffa0 | 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 | ap.to.filter.redistributed.route |
| 12ffc0 | 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 | s.from.the.given.route.source..T |
| 12ffe0 | 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f | here.are.five.modes.available.fo |
| 130000 | 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 | r.route.source:.bgp,.connected,. |
| 130020 | 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | kernel,.ospf,.static..This.comma |
| 130040 | 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 | nd.allows.to.use.route.map.to.fi |
| 130060 | 6c 74 65 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 | lter.redistributed.routes.from.t |
| 130080 | 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 | he.given.route.source..There.are |
| 1300a0 | 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 | .five.modes.available.for.route. |
| 1300c0 | 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 | source:.bgp,.connected,.kernel,. |
| 1300e0 | 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 | rip,.static..This.command.allows |
| 130100 | 20 74 6f 20 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 | .to.use.route.map.to.filter.redi |
| 130120 | 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 | stributed.routes.from.the.given. |
| 130140 | 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 | route.source..There.are.six.mode |
| 130160 | 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 | s.available.for.route.source:.bg |
| 130180 | 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c | p,.connected,.kernel,.ospf,.rip, |
| 1301a0 | 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 6f 20 | .static..This.command.allows.to. |
| 1301c0 | 75 73 65 20 72 6f 75 74 65 20 6d 61 70 20 74 6f 20 66 69 6c 74 65 72 20 72 65 64 69 73 74 72 69 | use.route.map.to.filter.redistri |
| 1301e0 | 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 | buted.routes..There.are.six.mode |
| 130200 | 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 6f | s.available.for.route.source:.co |
| 130220 | 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 | nnected,.kernel,.ospf,.rip,.stat |
| 130240 | 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 | ic,.table..This.command.allows.y |
| 130260 | 6f 75 20 61 70 70 6c 79 20 61 63 63 65 73 73 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 | ou.apply.access.lists.to.a.chose |
| 130280 | 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 | n.interface.to.filter.the.Babel. |
| 1302a0 | 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 | routes..This.command.allows.you. |
| 1302c0 | 61 70 70 6c 79 20 61 63 63 65 73 73 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 69 | apply.access.lists.to.a.chosen.i |
| 1302e0 | 6e 74 65 72 66 61 63 65 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 2e | nterface.to.filter.the.RIP.path. |
| 130300 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 70 | .This.command.allows.you.apply.p |
| 130320 | 72 65 66 69 78 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 | refix.lists.to.a.chosen.interfac |
| 130340 | 65 20 74 6f 20 66 69 6c 74 65 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 2e 00 54 68 | e.to.filter.the.Babel.routes..Th |
| 130360 | 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 61 70 70 6c 79 20 70 72 65 66 | is.command.allows.you.apply.pref |
| 130380 | 69 78 20 6c 69 73 74 73 20 74 6f 20 61 20 63 68 6f 73 65 6e 20 69 6e 74 65 72 66 61 63 65 20 74 | ix.lists.to.a.chosen.interface.t |
| 1303a0 | 6f 20 66 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 2e 00 54 68 69 73 20 63 6f 6d 6d | o.filter.the.RIP.path..This.comm |
| 1303c0 | 61 6e 64 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 6f 20 73 65 6c 65 63 74 20 61 20 73 70 65 63 69 | and.allows.you.to.select.a.speci |
| 1303e0 | 66 69 63 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 77 68 65 6e 20 79 6f 75 | fic.access.concentrator.when.you |
| 130400 | 20 6b 6e 6f 77 20 74 68 65 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 60 | .know.the.access.concentrators.` |
| 130420 | 3c 6e 61 6d 65 3e 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 72 6f | <name>`..This.command.applies.ro |
| 130440 | 75 74 65 2d 6d 61 70 20 74 6f 20 73 65 6c 65 63 74 69 76 65 6c 79 20 75 6e 73 75 70 70 72 65 73 | ute-map.to.selectively.unsuppres |
| 130460 | 73 20 70 72 65 66 69 78 65 73 20 73 75 70 70 72 65 73 73 65 64 20 62 79 20 73 75 6d 6d 61 72 69 | s.prefixes.suppressed.by.summari |
| 130480 | 73 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 | sation..This.command.applies.the |
| 1304a0 | 20 41 53 20 70 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 20 66 69 6c 74 65 72 73 20 6e 61 6d | .AS.path.access.list.filters.nam |
| 1304c0 | 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 | ed.in.<name>.to.the.specified.BG |
| 1304e0 | 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 69 | P.neighbor.to.restrict.the.routi |
| 130500 | 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 61 | ng.information.that.BGP.learns.a |
| 130520 | 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 73 65 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 | nd/or.advertises..The.arguments. |
| 130540 | 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d | :cfgcmd:`export`.and.:cfgcmd:`im |
| 130560 | 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 | port`.specify.the.direction.in.w |
| 130580 | 68 69 63 68 20 74 68 65 20 41 53 20 70 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 72 65 | hich.the.AS.path.access.list.are |
| 1305a0 | 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 | .applied..This.command.applies.t |
| 1305c0 | 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 20 66 69 6c 74 65 72 73 20 6e 61 6d 65 64 20 69 6e 20 | he.access.list.filters.named.in. |
| 1305e0 | 3c 6e 75 6d 62 65 72 3e 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 | <number>.to.the.specified.BGP.ne |
| 130600 | 69 67 68 62 6f 72 20 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 | ighbor.to.restrict.the.routing.i |
| 130620 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 61 6e 64 2f 6f | nformation.that.BGP.learns.and/o |
| 130640 | 72 20 61 64 76 65 72 74 69 73 65 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 | r.advertises..The.arguments.:cfg |
| 130660 | 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 | cmd:`export`.and.:cfgcmd:`import |
| 130680 | 60 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 | `.specify.the.direction.in.which |
| 1306a0 | 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 | .the.access.list.are.applied..Th |
| 1306c0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 70 6c 69 65 73 20 74 68 65 20 70 72 66 65 66 69 78 20 6c | is.command.applies.the.prfefix.l |
| 1306e0 | 69 73 74 20 66 69 6c 74 65 72 73 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 61 6d 65 3e 20 74 6f 20 74 | ist.filters.named.in.<name>.to.t |
| 130700 | 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 72 65 73 | he.specified.BGP.neighbor.to.res |
| 130720 | 74 72 69 63 74 20 74 68 65 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 | trict.the.routing.information.th |
| 130740 | 61 74 20 42 47 50 20 6c 65 61 72 6e 73 20 61 6e 64 2f 6f 72 20 61 64 76 65 72 74 69 73 65 73 2e | at.BGP.learns.and/or.advertises. |
| 130760 | 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 6d 64 3a 60 65 78 70 6f 72 74 60 20 | .The.arguments.:cfgcmd:`export`. |
| 130780 | 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 20 73 70 65 63 69 66 79 20 74 68 65 | and.:cfgcmd:`import`.specify.the |
| 1307a0 | 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 70 72 65 66 69 78 20 6c | .direction.in.which.the.prefix.l |
| 1307c0 | 69 73 74 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 70 | ist.are.applied..This.command.ap |
| 1307e0 | 70 6c 69 65 73 20 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 6e 61 6d 65 64 20 69 6e 20 3c 6e 61 | plies.the.route.map.named.in.<na |
| 130800 | 6d 65 3e 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 6e 65 69 67 68 62 6f | me>.to.the.specified.BGP.neighbo |
| 130820 | 72 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 61 6e 64 20 6d 6f 64 69 66 79 20 72 6f 75 74 69 6e 67 20 | r.to.control.and.modify.routing. |
| 130840 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 68 61 74 20 69 73 20 65 78 63 68 61 6e 67 65 64 20 62 65 | information.that.is.exchanged.be |
| 130860 | 74 77 65 65 6e 20 70 65 65 72 73 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 3a 63 66 67 63 | tween.peers..The.arguments.:cfgc |
| 130880 | 6d 64 3a 60 65 78 70 6f 72 74 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 69 6d 70 6f 72 74 60 | md:`export`.and.:cfgcmd:`import` |
| 1308a0 | 20 73 70 65 63 69 66 79 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 68 20 | .specify.the.direction.in.which. |
| 1308c0 | 74 68 65 20 72 6f 75 74 65 20 6d 61 70 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 54 68 69 73 20 | the.route.map.are.applied..This. |
| 1308e0 | 63 6f 6d 6d 61 6e 64 20 62 69 6e 64 20 73 70 65 63 69 66 69 63 20 70 65 65 72 20 74 6f 20 70 65 | command.bind.specific.peer.to.pe |
| 130900 | 65 72 20 67 72 6f 75 70 20 77 69 74 68 20 61 20 67 69 76 65 6e 20 6e 61 6d 65 2e 00 54 68 69 73 | er.group.with.a.given.name..This |
| 130920 | 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 74 | .command.can.be.used.to.filter.t |
| 130940 | 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 20 75 73 69 6e 67 20 61 63 63 65 73 73 20 6c 69 73 | he.Babel.routes.using.access.lis |
| 130960 | 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 3a 60 6f 75 | ts..:cfgcmd:`in`.and.:cfgcmd:`ou |
| 130980 | 74 60 20 74 68 69 73 20 69 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 77 68 69 63 | t`.this.is.the.direction.in.whic |
| 1309a0 | 68 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 65 64 2e 00 | h.the.access.lists.are.applied.. |
| 1309c0 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 | This.command.can.be.used.to.filt |
| 1309e0 | 65 72 20 74 68 65 20 42 61 62 65 6c 20 72 6f 75 74 65 73 20 75 73 69 6e 67 20 70 72 65 66 69 78 | er.the.Babel.routes.using.prefix |
| 130a00 | 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 | .lists..:cfgcmd:`in`.and.:cfgcmd |
| 130a20 | 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 | :`out`.this.is.the.direction.in. |
| 130a40 | 77 68 69 63 68 20 74 68 65 20 70 72 65 66 69 78 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 | which.the.prefix.lists.are.appli |
| 130a60 | 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 | ed..This.command.can.be.used.to. |
| 130a80 | 66 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 20 75 73 69 6e 67 20 61 63 63 65 73 73 | filter.the.RIP.path.using.access |
| 130aa0 | 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 | .lists..:cfgcmd:`in`.and.:cfgcmd |
| 130ac0 | 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 | :`out`.this.is.the.direction.in. |
| 130ae0 | 77 68 69 63 68 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 | which.the.access.lists.are.appli |
| 130b00 | 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 | ed..This.command.can.be.used.to. |
| 130b20 | 66 69 6c 74 65 72 20 74 68 65 20 52 49 50 20 70 61 74 68 20 75 73 69 6e 67 20 70 72 65 66 69 78 | filter.the.RIP.path.using.prefix |
| 130b40 | 20 6c 69 73 74 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 61 6e 64 20 3a 63 66 67 63 6d 64 | .lists..:cfgcmd:`in`.and.:cfgcmd |
| 130b60 | 3a 60 6f 75 74 60 20 74 68 69 73 20 69 73 20 74 68 65 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 | :`out`.this.is.the.direction.in. |
| 130b80 | 77 68 69 63 68 20 74 68 65 20 70 72 65 66 69 78 20 6c 69 73 74 73 20 61 72 65 20 61 70 70 6c 69 | which.the.prefix.lists.are.appli |
| 130ba0 | 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 | ed..This.command.can.be.used.wit |
| 130bc0 | 68 20 70 72 65 76 69 6f 75 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 73 20 64 65 66 61 75 | h.previous.command.to.sets.defau |
| 130be0 | 6c 74 20 52 49 50 20 64 69 73 74 61 6e 63 65 20 74 6f 20 73 70 65 63 69 66 69 65 64 20 76 61 6c | lt.RIP.distance.to.specified.val |
| 130c00 | 75 65 20 77 68 65 6e 20 74 68 65 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 | ue.when.the.route.source.IP.addr |
| 130c20 | 65 73 73 20 6d 61 74 63 68 65 73 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 | ess.matches.the.specified.prefix |
| 130c40 | 20 61 6e 64 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 63 63 65 73 73 2d 6c 69 73 74 2e 00 | .and.the.specified.access-list.. |
| 130c60 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c | This.command.change.distance.val |
| 130c80 | 75 65 20 6f 66 20 42 47 50 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 65 | ue.of.BGP..The.arguments.are.the |
| 130ca0 | 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 6f | .distance.values.for.external.ro |
| 130cc0 | 75 74 65 73 2c 20 69 6e 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 20 61 6e 64 20 6c 6f 63 61 6c 20 | utes,.internal.routes.and.local. |
| 130ce0 | 72 6f 75 74 65 73 20 72 65 73 70 65 63 74 69 76 65 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 | routes.respectively..The.distanc |
| 130d00 | 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | e.range.is.1.to.255..This.comman |
| 130d20 | 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 20 | d.change.distance.value.of.OSPF. |
| 130d40 | 67 6c 6f 62 61 6c 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 | globally..The.distance.range.is. |
| 130d60 | 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 | 1.to.255..This.command.change.di |
| 130d80 | 73 74 61 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 2e 20 54 68 65 20 61 72 67 75 6d 65 | stance.value.of.OSPF..The.argume |
| 130da0 | 6e 74 73 20 61 72 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 73 20 66 6f 72 20 | nts.are.the.distance.values.for. |
| 130dc0 | 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 2c 20 69 6e 74 65 72 2d 61 72 65 61 20 72 6f 75 74 | external.routes,.inter-area.rout |
| 130de0 | 65 73 20 61 6e 64 20 69 6e 74 72 61 2d 61 72 65 61 20 72 6f 75 74 65 73 20 72 65 73 70 65 63 74 | es.and.intra-area.routes.respect |
| 130e00 | 69 76 65 6c 79 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 | ively..The.distance.range.is.1.t |
| 130e20 | 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 | o.255..This.command.change.dista |
| 130e40 | 6e 63 65 20 76 61 6c 75 65 20 6f 66 20 4f 53 50 46 76 33 20 67 6c 6f 62 61 6c 6c 79 2e 20 54 68 | nce.value.of.OSPFv3.globally..Th |
| 130e60 | 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 | e.distance.range.is.1.to.255..Th |
| 130e80 | 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 | is.command.change.distance.value |
| 130ea0 | 20 6f 66 20 4f 53 50 46 76 33 2e 20 54 68 65 20 61 72 67 75 6d 65 6e 74 73 20 61 72 65 20 74 68 | .of.OSPFv3..The.arguments.are.th |
| 130ec0 | 65 20 64 69 73 74 61 6e 63 65 20 76 61 6c 75 65 73 20 66 6f 72 20 65 78 74 65 72 6e 61 6c 20 72 | e.distance.values.for.external.r |
| 130ee0 | 6f 75 74 65 73 2c 20 69 6e 74 65 72 2d 61 72 65 61 20 72 6f 75 74 65 73 20 61 6e 64 20 69 6e 74 | outes,.inter-area.routes.and.int |
| 130f00 | 72 61 2d 61 72 65 61 20 72 6f 75 74 65 73 20 72 65 73 70 65 63 74 69 76 65 6c 79 2e 20 54 68 65 | ra-area.routes.respectively..The |
| 130f20 | 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 | .distance.range.is.1.to.255..Thi |
| 130f40 | 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 20 74 68 65 20 64 69 73 74 61 6e 63 65 20 76 61 | s.command.change.the.distance.va |
| 130f60 | 6c 75 65 20 6f 66 20 52 49 50 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 20 72 61 6e 67 65 20 69 | lue.of.RIP..The.distance.range.i |
| 130f80 | 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 6e 67 65 73 | s.1.to.255..This.command.changes |
| 130fa0 | 20 74 68 65 20 65 42 47 50 20 62 65 68 61 76 69 6f 72 20 6f 66 20 46 52 52 2e 20 42 79 20 64 65 | .the.eBGP.behavior.of.FRR..By.de |
| 130fc0 | 66 61 75 6c 74 20 46 52 52 20 65 6e 61 62 6c 65 73 20 3a 72 66 63 3a 60 38 32 31 32 60 20 66 75 | fault.FRR.enables.:rfc:`8212`.fu |
| 130fe0 | 6e 63 74 69 6f 6e 61 6c 69 74 79 20 77 68 69 63 68 20 61 66 66 65 63 74 73 20 68 6f 77 20 65 42 | nctionality.which.affects.how.eB |
| 131000 | 47 50 20 72 6f 75 74 65 73 20 61 72 65 20 61 64 76 65 72 74 69 73 65 64 2c 20 6e 61 6d 65 6c 79 | GP.routes.are.advertised,.namely |
| 131020 | 20 6e 6f 20 72 6f 75 74 65 73 20 61 72 65 20 61 64 76 65 72 74 69 73 65 64 20 61 63 72 6f 73 73 | .no.routes.are.advertised.across |
| 131040 | 20 65 42 47 50 20 73 65 73 73 69 6f 6e 73 20 77 69 74 68 6f 75 74 20 73 6f 6d 65 20 73 6f 72 74 | .eBGP.sessions.without.some.sort |
| 131060 | 20 6f 66 20 65 67 72 65 73 73 20 72 6f 75 74 65 2d 6d 61 70 2f 70 6f 6c 69 63 79 20 69 6e 20 70 | .of.egress.route-map/policy.in.p |
| 131080 | 6c 61 63 65 2e 20 49 6e 20 56 79 4f 53 20 68 6f 77 65 76 65 72 20 77 65 20 68 61 76 65 20 74 68 | lace..In.VyOS.however.we.have.th |
| 1310a0 | 69 73 20 52 46 43 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 64 69 73 61 62 6c 65 64 20 62 79 | is.RFC.functionality.disabled.by |
| 1310c0 | 20 64 65 66 61 75 6c 74 20 73 6f 20 74 68 61 74 20 77 65 20 63 61 6e 20 70 72 65 73 65 72 76 65 | .default.so.that.we.can.preserve |
| 1310e0 | 20 62 61 63 6b 77 61 72 64 73 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 77 69 74 68 20 6f 6c | .backwards.compatibility.with.ol |
| 131100 | 64 65 72 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 56 79 4f 53 2e 20 57 69 74 68 20 74 68 69 73 20 | der.versions.of.VyOS..With.this. |
| 131120 | 6f 70 74 69 6f 6e 20 6f 6e 65 20 63 61 6e 20 65 6e 61 62 6c 65 20 3a 72 66 63 3a 60 38 32 31 32 | option.one.can.enable.:rfc:`8212 |
| 131140 | 60 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 74 6f 20 6f 70 65 72 61 74 65 2e 00 54 68 69 73 | `.functionality.to.operate..This |
| 131160 | 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 70 61 64 64 69 6e 67 20 6f 6e 20 68 | .command.configures.padding.on.h |
| 131180 | 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 74 6f 20 61 63 63 6f 6d 6d 6f 64 61 74 65 20 61 73 79 6d | ello.packets.to.accommodate.asym |
| 1311a0 | 6d 65 74 72 69 63 61 6c 20 6d 61 78 69 6d 75 6d 20 74 72 61 6e 73 66 65 72 20 75 6e 69 74 73 20 | metrical.maximum.transfer.units. |
| 1311c0 | 28 4d 54 55 73 29 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 68 6f 73 74 73 20 61 73 20 64 | (MTUs).from.different.hosts.as.d |
| 1311e0 | 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 31 39 60 2e 20 54 68 69 73 20 68 65 | escribed.in.:rfc:`3719`..This.he |
| 131200 | 6c 70 73 20 74 6f 20 70 72 65 76 65 6e 74 20 61 20 70 72 65 6d 61 74 75 72 65 20 61 64 6a 61 63 | lps.to.prevent.a.premature.adjac |
| 131220 | 65 6e 63 79 20 55 70 20 73 74 61 74 65 20 77 68 65 6e 20 6f 6e 65 20 72 6f 75 74 69 6e 67 20 64 | ency.Up.state.when.one.routing.d |
| 131240 | 65 76 69 63 65 73 20 4d 54 55 20 64 6f 65 73 20 6e 6f 74 20 6d 65 65 74 20 74 68 65 20 72 65 71 | evices.MTU.does.not.meet.the.req |
| 131260 | 75 69 72 65 6d 65 6e 74 73 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 61 64 6a 61 63 | uirements.to.establish.the.adjac |
| 131280 | 65 6e 63 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 | ency..This.command.configures.th |
| 1312a0 | 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f 72 20 61 20 | e.authentication.password.for.a. |
| 1312c0 | 72 6f 75 74 69 6e 67 20 64 6f 6d 61 69 6e 2c 20 61 73 20 63 6c 65 61 72 20 74 65 78 74 20 6f 72 | routing.domain,.as.clear.text.or |
| 1312e0 | 20 6d 64 35 20 6f 6e 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e 66 69 67 75 72 65 | .md5.one..This.command.configure |
| 131300 | 73 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 64 20 66 6f | s.the.authentication.password.fo |
| 131320 | 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f | r.the.interface..This.command.co |
| 131340 | 6e 66 69 67 75 72 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 20 67 65 6e | nfigures.the.maximum.size.of.gen |
| 131360 | 65 72 61 74 65 64 20 3a 61 62 62 72 3a 60 4c 53 50 73 20 28 4c 69 6e 6b 20 53 74 61 74 65 20 50 | erated.:abbr:`LSPs.(Link.State.P |
| 131380 | 44 55 73 29 60 2c 20 69 6e 20 62 79 74 65 73 2e 20 54 68 65 20 73 69 7a 65 20 72 61 6e 67 65 20 | DUs)`,.in.bytes..The.size.range. |
| 1313a0 | 69 73 20 31 32 38 20 74 6f 20 34 33 35 32 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 6f 6e | is.128.to.4352..This.command.con |
| 1313c0 | 66 69 67 75 72 65 73 20 74 68 65 20 70 61 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 74 68 69 | figures.the.passive.mode.for.thi |
| 1313e0 | 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 | s.interface..This.command.create |
| 131400 | 73 20 61 20 6e 65 77 20 6e 65 69 67 68 62 6f 72 20 77 68 6f 73 65 20 72 65 6d 6f 74 65 2d 61 73 | s.a.new.neighbor.whose.remote-as |
| 131420 | 20 69 73 20 3c 6e 61 73 6e 3e 2e 20 54 68 65 20 6e 65 69 67 68 62 6f 72 20 61 64 64 72 65 73 73 | .is.<nasn>..The.neighbor.address |
| 131440 | 20 63 61 6e 20 62 65 20 61 6e 20 49 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 49 50 | .can.be.an.IPv4.address.or.an.IP |
| 131460 | 76 36 20 61 64 64 72 65 73 73 20 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 75 73 | v6.address.or.an.interface.to.us |
| 131480 | 65 20 66 6f 72 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 54 68 65 20 63 6f 6d 6d 61 6e | e.for.the.connection..The.comman |
| 1314a0 | 64 20 69 73 20 61 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 70 65 65 72 20 61 6e 64 20 70 65 65 | d.is.applicable.for.peer.and.pee |
| 1314c0 | 72 20 67 72 6f 75 70 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 | r.group..This.command.creates.a. |
| 1314e0 | 6e 65 77 20 72 6f 75 74 65 2d 6d 61 70 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 65 64 | new.route-map.policy,.identified |
| 131500 | 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 | .by.<text>..This.command.creates |
| 131520 | 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 49 50 76 36 20 61 63 63 65 73 73 20 6c | .a.new.rule.in.the.IPv6.access.l |
| 131540 | 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 | ist.and.defines.an.action..This. |
| 131560 | 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 68 | command.creates.a.new.rule.in.th |
| 131580 | 65 20 49 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 | e.IPv6.prefix-list.and.defines.a |
| 1315a0 | 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 61 | n.action..This.command.creates.a |
| 1315c0 | 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 61 63 63 65 73 73 20 6c 69 73 74 20 61 6e 64 | .new.rule.in.the.access.list.and |
| 1315e0 | 20 64 65 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | .defines.an.action..This.command |
| 131600 | 20 63 72 65 61 74 65 73 20 61 20 6e 65 77 20 72 75 6c 65 20 69 6e 20 74 68 65 20 70 72 65 66 69 | .creates.a.new.rule.in.the.prefi |
| 131620 | 78 2d 6c 69 73 74 20 61 6e 64 20 64 65 66 69 6e 65 73 20 61 6e 20 61 63 74 69 6f 6e 2e 00 54 68 | x-list.and.defines.an.action..Th |
| 131640 | 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 49 50 76 36 20 | is.command.creates.the.new.IPv6. |
| 131660 | 61 63 63 65 73 73 20 6c 69 73 74 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 | access.list,.identified.by.<text |
| 131680 | 3e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 49 | >.This.command.creates.the.new.I |
| 1316a0 | 50 76 36 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 63 79 2c 20 69 64 65 6e 74 69 66 69 | Pv6.prefix-list.policy,.identifi |
| 1316c0 | 65 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 72 65 61 74 | ed.by.<text>..This.command.creat |
| 1316e0 | 65 73 20 74 68 65 20 6e 65 77 20 61 63 63 65 73 73 20 6c 69 73 74 20 70 6f 6c 69 63 79 2c 20 77 | es.the.new.access.list.policy,.w |
| 131700 | 68 65 72 65 20 3c 61 63 6c 5f 6e 75 6d 62 65 72 3e 20 6d 75 73 74 20 62 65 20 61 20 6e 75 6d 62 | here.<acl_number>.must.be.a.numb |
| 131720 | 65 72 20 66 72 6f 6d 20 31 20 74 6f 20 32 36 39 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | er.from.1.to.2699..This.command. |
| 131740 | 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 77 20 70 72 65 66 69 78 2d 6c 69 73 74 20 70 6f 6c 69 | creates.the.new.prefix-list.poli |
| 131760 | 63 79 2c 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 3c 74 65 78 74 3e 2e 00 54 68 69 73 20 63 | cy,.identified.by.<text>..This.c |
| 131780 | 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 61 20 6e 65 77 20 70 65 65 72 20 67 72 6f 75 70 2e | ommand.defines.a.new.peer.group. |
| 1317a0 | 20 59 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 74 6f 20 74 68 65 20 67 72 6f 75 70 20 74 68 | .You.can.specify.to.the.group.th |
| 1317c0 | 65 20 73 61 6d 65 20 70 61 72 61 6d 65 74 65 72 73 20 74 68 61 74 20 79 6f 75 20 63 61 6e 20 73 | e.same.parameters.that.you.can.s |
| 1317e0 | 70 65 63 69 66 79 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 6e 65 69 67 68 62 6f 72 73 2e 00 54 | pecify.for.specific.neighbors..T |
| 131800 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 6d 61 74 63 68 69 6e 67 20 70 61 72 | his.command.defines.matching.par |
| 131820 | 61 6d 65 74 65 72 73 20 66 6f 72 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 20 72 75 6c | ameters.for.IPv6.access.list.rul |
| 131840 | 65 2e 20 4d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 20 63 6f 75 6c 64 20 62 65 20 61 70 | e..Matching.criteria.could.be.ap |
| 131860 | 70 6c 69 65 64 20 74 6f 20 73 6f 75 72 63 65 20 70 61 72 61 6d 65 74 65 72 73 3a 00 54 68 69 73 | plied.to.source.parameters:.This |
| 131880 | 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 6d 61 74 63 68 69 6e 67 20 70 61 72 61 6d 65 | .command.defines.matching.parame |
| 1318a0 | 74 65 72 73 20 66 6f 72 20 61 63 63 65 73 73 20 6c 69 73 74 20 72 75 6c 65 2e 20 4d 61 74 63 68 | ters.for.access.list.rule..Match |
| 1318c0 | 69 6e 67 20 63 72 69 74 65 72 69 61 20 63 6f 75 6c 64 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f | ing.criteria.could.be.applied.to |
| 1318e0 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 6f 72 20 73 6f 75 72 63 65 20 70 61 72 61 6d 65 74 65 72 | .destination.or.source.parameter |
| 131900 | 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 49 53 2d 49 | s:.This.command.defines.the.IS-I |
| 131920 | 53 20 72 6f 75 74 65 72 20 62 65 68 61 76 69 6f 72 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | S.router.behavior:.This.command. |
| 131940 | 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 79 20 | defines.the.accumulated.penalty. |
| 131960 | 61 6d 6f 75 6e 74 20 61 74 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 72 65 2d | amount.at.which.the.route.is.re- |
| 131980 | 61 64 76 65 72 74 69 73 65 64 2e 20 54 68 65 20 70 65 6e 61 6c 74 79 20 72 61 6e 67 65 20 69 73 | advertised..The.penalty.range.is |
| 1319a0 | 20 31 20 74 6f 20 32 30 30 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 | .1.to.20000..This.command.define |
| 1319c0 | 73 20 74 68 65 20 61 63 63 75 6d 75 6c 61 74 65 64 20 70 65 6e 61 6c 74 79 20 61 6d 6f 75 6e 74 | s.the.accumulated.penalty.amount |
| 1319e0 | 20 61 74 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 73 73 65 | .at.which.the.route.is.suppresse |
| 131a00 | 64 2e 20 54 68 65 20 70 65 6e 61 6c 74 79 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 30 30 | d..The.penalty.range.is.1.to.200 |
| 131a20 | 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 6d 6f | 00..This.command.defines.the.amo |
| 131a40 | 75 6e 74 20 6f 66 20 74 69 6d 65 20 69 6e 20 6d 69 6e 75 74 65 73 20 61 66 74 65 72 20 77 68 69 | unt.of.time.in.minutes.after.whi |
| 131a60 | 63 68 20 61 20 70 65 6e 61 6c 74 79 20 69 73 20 72 65 64 75 63 65 64 20 62 79 20 68 61 6c 66 2e | ch.a.penalty.is.reduced.by.half. |
| 131a80 | 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 31 30 20 74 6f 20 34 35 20 6d 69 6e | .The.timer.range.is.10.to.45.min |
| 131aa0 | 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 73 20 74 68 65 20 6d | utes..This.command.defines.the.m |
| 131ac0 | 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 72 61 6c 6c 65 6c 20 72 6f 75 74 65 73 | aximum.number.of.parallel.routes |
| 131ae0 | 20 74 68 61 74 20 74 68 65 20 42 47 50 20 63 61 6e 20 73 75 70 70 6f 72 74 2e 20 49 6e 20 6f 72 | .that.the.BGP.can.support..In.or |
| 131b00 | 64 65 72 20 66 6f 72 20 42 47 50 20 74 6f 20 75 73 65 20 74 68 65 20 73 65 63 6f 6e 64 20 70 61 | der.for.BGP.to.use.the.second.pa |
| 131b20 | 74 68 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 61 74 74 72 69 62 75 74 65 73 20 68 61 76 | th,.the.following.attributes.hav |
| 131b40 | 65 20 74 6f 20 6d 61 74 63 68 3a 20 57 65 69 67 68 74 2c 20 4c 6f 63 61 6c 20 50 72 65 66 65 72 | e.to.match:.Weight,.Local.Prefer |
| 131b60 | 65 6e 63 65 2c 20 41 53 20 50 61 74 68 20 28 62 6f 74 68 20 41 53 20 6e 75 6d 62 65 72 20 61 6e | ence,.AS.Path.(both.AS.number.an |
| 131b80 | 64 20 41 53 20 70 61 74 68 20 6c 65 6e 67 74 68 29 2c 20 4f 72 69 67 69 6e 20 63 6f 64 65 2c 20 | d.AS.path.length),.Origin.code,. |
| 131ba0 | 4d 45 44 2c 20 49 47 50 20 6d 65 74 72 69 63 2e 20 41 6c 73 6f 2c 20 74 68 65 20 6e 65 78 74 20 | MED,.IGP.metric..Also,.the.next. |
| 131bc0 | 68 6f 70 20 61 64 64 72 65 73 73 20 66 6f 72 20 65 61 63 68 20 70 61 74 68 20 6d 75 73 74 20 62 | hop.address.for.each.path.must.b |
| 131be0 | 65 20 64 69 66 66 65 72 65 6e 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 65 66 69 6e 65 | e.different..This.command.define |
| 131c00 | 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 74 69 6d 65 20 69 6e 20 6d 69 6e 75 74 65 73 20 74 68 | s.the.maximum.time.in.minutes.th |
| 131c20 | 61 74 20 61 20 72 6f 75 74 65 20 69 73 20 73 75 70 70 72 65 73 73 65 64 2e 20 54 68 65 20 74 69 | at.a.route.is.suppressed..The.ti |
| 131c40 | 6d 65 72 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 20 6d 69 6e 75 74 65 73 2e 00 54 | mer.range.is.1.to.255.minutes..T |
| 131c60 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 20 74 68 65 20 70 65 65 72 20 6f 72 20 | his.command.disable.the.peer.or. |
| 131c80 | 70 65 65 72 20 67 72 6f 75 70 2e 20 54 6f 20 72 65 65 6e 61 62 6c 65 20 74 68 65 20 70 65 65 72 | peer.group..To.reenable.the.peer |
| 131ca0 | 20 75 73 65 20 74 68 65 20 64 65 6c 65 74 65 20 66 6f 72 6d 20 6f 66 20 74 68 69 73 20 63 6f 6d | .use.the.delete.form.of.this.com |
| 131cc0 | 6d 61 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 49 47 50 2d | mand..This.command.disables.IGP- |
| 131ce0 | 4c 44 50 20 73 79 6e 63 20 66 6f 72 20 74 68 69 73 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 | LDP.sync.for.this.specific.inter |
| 131d00 | 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 54 68 72 65 | face..This.command.disables.Thre |
| 131d20 | 65 2d 57 61 79 20 48 61 6e 64 73 68 61 6b 65 20 66 6f 72 20 50 32 50 20 61 64 6a 61 63 65 6e 63 | e-Way.Handshake.for.P2P.adjacenc |
| 131d40 | 69 65 73 20 77 68 69 63 68 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 33 30 | ies.which.described.in.:rfc:`530 |
| 131d60 | 33 60 2e 20 54 68 72 65 65 2d 57 61 79 20 48 61 6e 64 73 68 61 6b 65 20 69 73 20 65 6e 61 62 6c | 3`..Three-Way.Handshake.is.enabl |
| 131d80 | 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 | ed.by.default..This.command.disa |
| 131da0 | 62 6c 65 73 20 63 68 65 63 6b 20 6f 66 20 74 68 65 20 4d 54 55 20 76 61 6c 75 65 20 69 6e 20 74 | bles.check.of.the.MTU.value.in.t |
| 131dc0 | 68 65 20 4f 53 50 46 20 44 42 44 20 70 61 63 6b 65 74 73 2e 20 54 68 75 73 2c 20 75 73 65 20 6f | he.OSPF.DBD.packets..Thus,.use.o |
| 131de0 | 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 6c 6f 77 73 20 74 68 65 20 4f 53 50 46 20 61 | f.this.command.allows.the.OSPF.a |
| 131e00 | 64 6a 61 63 65 6e 63 79 20 74 6f 20 72 65 61 63 68 20 74 68 65 20 46 55 4c 4c 20 73 74 61 74 65 | djacency.to.reach.the.FULL.state |
| 131e20 | 20 65 76 65 6e 20 74 68 6f 75 67 68 20 74 68 65 72 65 20 69 73 20 61 6e 20 69 6e 74 65 72 66 61 | .even.though.there.is.an.interfa |
| 131e40 | 63 65 20 4d 54 55 20 6d 69 73 6d 61 74 63 68 20 62 65 74 77 65 65 6e 20 74 77 6f 20 4f 53 50 46 | ce.MTU.mismatch.between.two.OSPF |
| 131e60 | 20 72 6f 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 | .routers..This.command.disables. |
| 131e80 | 69 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 72 6f 75 74 65 20 | it..This.command.disables.route. |
| 131ea0 | 72 65 66 6c 65 63 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 | reflection.between.route.reflect |
| 131ec0 | 6f 72 20 63 6c 69 65 6e 74 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 74 68 65 20 63 6c 69 65 | or.clients..By.default,.the.clie |
| 131ee0 | 6e 74 73 20 6f 66 20 61 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 61 72 65 20 6e 6f 74 | nts.of.a.route.reflector.are.not |
| 131f00 | 20 72 65 71 75 69 72 65 64 20 74 6f 20 62 65 20 66 75 6c 6c 79 20 6d 65 73 68 65 64 20 61 6e 64 | .required.to.be.fully.meshed.and |
| 131f20 | 20 74 68 65 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 61 20 63 6c 69 65 6e 74 20 61 72 65 20 72 65 | .the.routes.from.a.client.are.re |
| 131f40 | 66 6c 65 63 74 65 64 20 74 6f 20 6f 74 68 65 72 20 63 6c 69 65 6e 74 73 2e 20 48 6f 77 65 76 65 | flected.to.other.clients..Howeve |
| 131f60 | 72 2c 20 69 66 20 74 68 65 20 63 6c 69 65 6e 74 73 20 61 72 65 20 66 75 6c 6c 79 20 6d 65 73 68 | r,.if.the.clients.are.fully.mesh |
| 131f80 | 65 64 2c 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 69 6f 6e 20 69 73 20 6e 6f 74 20 72 65 71 75 | ed,.route.reflection.is.not.requ |
| 131fa0 | 69 72 65 64 2e 20 49 6e 20 74 68 69 73 20 63 61 73 65 2c 20 75 73 65 20 74 68 65 20 3a 63 66 67 | ired..In.this.case,.use.the.:cfg |
| 131fc0 | 63 6d 64 3a 60 6e 6f 2d 63 6c 69 65 6e 74 2d 74 6f 2d 63 6c 69 65 6e 74 2d 72 65 66 6c 65 63 74 | cmd:`no-client-to-client-reflect |
| 131fe0 | 69 6f 6e 60 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 63 6c 69 65 6e 74 2d 74 | ion`.command.to.disable.client-t |
| 132000 | 6f 2d 63 6c 69 65 6e 74 20 72 65 66 6c 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | o-client.reflection..This.comman |
| 132020 | 64 20 64 69 73 61 62 6c 65 73 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 74 68 65 20 | d.disables.split-horizon.on.the. |
| 132040 | 69 6e 74 65 72 66 61 63 65 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 56 79 4f 53 20 64 6f 65 73 | interface..By.default,.VyOS.does |
| 132060 | 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 20 52 49 50 20 72 6f 75 74 65 73 20 6f 75 74 20 74 68 | .not.advertise.RIP.routes.out.th |
| 132080 | 65 20 69 6e 74 65 72 66 61 63 65 20 6f 76 65 72 20 77 68 69 63 68 20 74 68 65 79 20 77 65 72 65 | e.interface.over.which.they.were |
| 1320a0 | 20 6c 65 61 72 6e 65 64 20 28 73 70 6c 69 74 20 68 6f 72 69 7a 6f 6e 29 2e 33 00 54 68 69 73 20 | .learned.(split.horizon).3.This. |
| 1320c0 | 63 6f 6d 6d 61 6e 64 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 6c 6f 61 64 20 73 68 61 72 69 6e | command.disables.the.load.sharin |
| 1320e0 | 67 20 61 63 72 6f 73 73 20 6d 75 6c 74 69 70 6c 65 20 4c 46 41 20 62 61 63 6b 75 70 73 2e 00 54 | g.across.multiple.LFA.backups..T |
| 132100 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 64 61 6d 70 65 6e 65 | his.command.displays.BGP.dampene |
| 132120 | 64 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 | d.routes..This.command.displays. |
| 132140 | 42 47 50 20 72 65 63 65 69 76 65 64 2d 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 61 63 63 | BGP.received-routes.that.are.acc |
| 132160 | 65 70 74 65 64 20 61 66 74 65 72 20 66 69 6c 74 65 72 69 6e 67 2e 00 54 68 69 73 20 63 6f 6d 6d | epted.after.filtering..This.comm |
| 132180 | 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 6f 75 74 65 73 20 61 64 76 65 72 74 69 73 | and.displays.BGP.routes.advertis |
| 1321a0 | 65 64 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | ed.to.a.neighbor..This.command.d |
| 1321c0 | 69 73 70 6c 61 79 73 20 42 47 50 20 72 6f 75 74 65 73 20 61 6c 6c 6f 77 65 64 20 62 79 20 74 68 | isplays.BGP.routes.allowed.by.th |
| 1321e0 | 65 20 73 70 65 63 69 66 69 65 64 20 41 53 20 50 61 74 68 20 61 63 63 65 73 73 20 6c 69 73 74 2e | e.specified.AS.Path.access.list. |
| 132200 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 42 47 50 20 72 6f 75 74 65 | .This.command.displays.BGP.route |
| 132220 | 73 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 66 72 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 64 | s.originating.from.the.specified |
| 132240 | 20 42 47 50 20 6e 65 69 67 68 62 6f 72 20 62 65 66 6f 72 65 20 69 6e 62 6f 75 6e 64 20 70 6f 6c | .BGP.neighbor.before.inbound.pol |
| 132260 | 69 63 79 20 69 73 20 61 70 70 6c 69 65 64 2e 20 54 6f 20 75 73 65 20 74 68 69 73 20 63 6f 6d 6d | icy.is.applied..To.use.this.comm |
| 132280 | 61 6e 64 20 69 6e 62 6f 75 6e 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | and.inbound.soft.reconfiguration |
| 1322a0 | 20 6d 75 73 74 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | .must.be.enabled..This.command.d |
| 1322c0 | 69 73 70 6c 61 79 73 20 4c 53 41 73 20 69 6e 20 4d 61 78 41 67 65 20 6c 69 73 74 2e 00 54 68 69 | isplays.LSAs.in.MaxAge.list..Thi |
| 1322e0 | 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 52 49 50 20 72 6f 75 74 65 73 2e 00 54 | s.command.displays.RIP.routes..T |
| 132300 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 61 20 64 61 74 61 62 61 73 65 20 | his.command.displays.a.database. |
| 132320 | 63 6f 6e 74 65 6e 74 73 20 66 6f 72 20 61 20 73 70 65 63 69 66 69 63 20 6c 69 6e 6b 20 61 64 76 | contents.for.a.specific.link.adv |
| 132340 | 65 72 74 69 73 65 6d 65 6e 74 20 74 79 70 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 | ertisement.type..This.command.di |
| 132360 | 73 70 6c 61 79 73 20 61 20 73 75 6d 6d 61 72 79 20 74 61 62 6c 65 20 77 69 74 68 20 61 20 64 61 | splays.a.summary.table.with.a.da |
| 132380 | 74 61 62 61 73 65 20 63 6f 6e 74 65 6e 74 73 20 28 4c 53 41 29 2e 00 54 68 69 73 20 63 6f 6d 6d | tabase.contents.(LSA)..This.comm |
| 1323a0 | 61 6e 64 20 64 69 73 70 6c 61 79 73 20 61 20 74 61 62 6c 65 20 6f 66 20 70 61 74 68 73 20 74 6f | and.displays.a.table.of.paths.to |
| 1323c0 | 20 61 72 65 61 20 62 6f 75 6e 64 61 72 79 20 61 6e 64 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 | .area.boundary.and.autonomous.sy |
| 1323e0 | 73 74 65 6d 20 62 6f 75 6e 64 61 72 79 20 72 6f 75 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d | stem.boundary.routers..This.comm |
| 132400 | 61 6e 64 20 64 69 73 70 6c 61 79 73 20 61 6c 6c 20 65 6e 74 72 69 65 73 20 69 6e 20 42 47 50 20 | and.displays.all.entries.in.BGP. |
| 132420 | 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 | routing.table..This.command.disp |
| 132440 | 6c 61 79 73 20 64 61 6d 70 65 6e 65 64 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 | lays.dampened.routes.received.fr |
| 132460 | 6f 6d 20 42 47 50 20 6e 65 69 67 68 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 | om.BGP.neighbor..This.command.di |
| 132480 | 73 70 6c 61 79 73 20 65 78 74 65 72 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 72 65 64 69 | splays.external.information.redi |
| 1324a0 | 73 74 72 69 62 75 74 65 64 20 69 6e 74 6f 20 4f 53 50 46 76 33 00 54 68 69 73 20 63 6f 6d 6d 61 | stributed.into.OSPFv3.This.comma |
| 1324c0 | 6e 64 20 64 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 42 47 | nd.displays.information.about.BG |
| 1324e0 | 50 20 72 6f 75 74 65 73 20 77 68 6f 73 65 20 41 53 20 70 61 74 68 20 6d 61 74 63 68 65 73 20 74 | P.routes.whose.AS.path.matches.t |
| 132500 | 68 65 20 73 70 65 63 69 66 69 65 64 20 72 65 67 75 6c 61 72 20 65 78 70 72 65 73 73 69 6f 6e 2e | he.specified.regular.expression. |
| 132520 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 | .This.command.displays.informati |
| 132540 | 6f 6e 20 61 62 6f 75 74 20 66 6c 61 70 70 69 6e 67 20 42 47 50 20 72 6f 75 74 65 73 2e 00 54 68 | on.about.flapping.BGP.routes..Th |
| 132560 | 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 | is.command.displays.information. |
| 132580 | 61 62 6f 75 74 20 74 68 65 20 70 61 72 74 69 63 75 6c 61 72 20 65 6e 74 72 79 20 69 6e 20 74 68 | about.the.particular.entry.in.th |
| 1325a0 | 65 20 42 47 50 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | e.BGP.routing.table..This.comman |
| 1325c0 | 64 20 64 69 73 70 6c 61 79 73 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 65 20 70 65 72 6d 69 | d.displays.routes.that.are.permi |
| 1325e0 | 74 74 65 64 20 62 79 20 74 68 65 20 42 47 50 20 63 6f 6d 6d 75 6e 69 74 79 20 6c 69 73 74 2e 00 | tted.by.the.BGP.community.list.. |
| 132600 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 72 6f 75 74 65 73 20 74 68 61 | This.command.displays.routes.tha |
| 132620 | 74 20 62 65 6c 6f 6e 67 20 74 6f 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 63 6f 6d 6d 75 6e | t.belong.to.specified.BGP.commun |
| 132640 | 69 74 69 65 73 2e 20 56 61 6c 69 64 20 76 61 6c 75 65 20 69 73 20 61 20 63 6f 6d 6d 75 6e 69 74 | ities..Valid.value.is.a.communit |
| 132660 | 79 20 6e 75 6d 62 65 72 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 | y.number.in.the.range.from.1.to. |
| 132680 | 34 32 39 34 39 36 37 32 30 30 2c 20 6f 72 20 41 41 3a 4e 4e 20 28 61 75 74 6f 6e 6f 6d 6f 75 73 | 4294967200,.or.AA:NN.(autonomous |
| 1326a0 | 20 73 79 73 74 65 6d 2d 63 6f 6d 6d 75 6e 69 74 79 20 6e 75 6d 62 65 72 2f 32 2d 62 79 74 65 20 | .system-community.number/2-byte. |
| 1326c0 | 6e 75 6d 62 65 72 29 2c 20 6e 6f 2d 65 78 70 6f 72 74 2c 20 6c 6f 63 61 6c 2d 61 73 2c 20 6f 72 | number),.no-export,.local-as,.or |
| 1326e0 | 20 6e 6f 2d 61 64 76 65 72 74 69 73 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 | .no-advertise..This.command.disp |
| 132700 | 6c 61 79 73 20 72 6f 75 74 65 73 20 77 69 74 68 20 63 6c 61 73 73 6c 65 73 73 20 69 6e 74 65 72 | lays.routes.with.classless.inter |
| 132720 | 64 6f 6d 61 69 6e 20 72 6f 75 74 69 6e 67 20 28 43 49 44 52 29 2e 00 54 68 69 73 20 63 6f 6d 6d | domain.routing.(CIDR)..This.comm |
| 132740 | 61 6e 64 20 64 69 73 70 6c 61 79 73 20 73 74 61 74 65 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 | and.displays.state.and.configura |
| 132760 | 74 69 6f 6e 20 6f 66 20 4f 53 50 46 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 | tion.of.OSPF.the.specified.inter |
| 132780 | 66 61 63 65 2c 20 6f 72 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 66 20 6e 6f 20 69 6e | face,.or.all.interfaces.if.no.in |
| 1327a0 | 74 65 72 66 61 63 65 20 69 73 20 67 69 76 65 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 | terface.is.given..This.command.d |
| 1327c0 | 69 73 70 6c 61 79 73 20 73 74 61 74 65 20 61 6e 64 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | isplays.state.and.configuration. |
| 1327e0 | 6f 66 20 4f 53 50 46 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2c | of.OSPF.the.specified.interface, |
| 132800 | 20 6f 72 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 69 66 20 6e 6f 20 69 6e 74 65 72 66 61 | .or.all.interfaces.if.no.interfa |
| 132820 | 63 65 20 69 73 20 67 69 76 65 6e 2e 20 57 68 69 74 68 20 74 68 65 20 61 72 67 75 6d 65 6e 74 20 | ce.is.given..Whith.the.argument. |
| 132840 | 3a 63 66 67 63 6d 64 3a 60 70 72 65 66 69 78 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 | :cfgcmd:`prefix`.this.command.sh |
| 132860 | 6f 77 73 20 63 6f 6e 6e 65 63 74 65 64 20 70 72 65 66 69 78 65 73 20 74 6f 20 61 64 76 65 72 74 | ows.connected.prefixes.to.advert |
| 132880 | 69 73 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 4f | ise..This.command.displays.the.O |
| 1328a0 | 53 50 46 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2c 20 61 73 20 64 65 74 65 72 6d 69 6e 65 64 | SPF.routing.table,.as.determined |
| 1328c0 | 20 62 79 20 74 68 65 20 6d 6f 73 74 20 72 65 63 65 6e 74 20 53 50 46 20 63 61 6c 63 75 6c 61 74 | .by.the.most.recent.SPF.calculat |
| 1328e0 | 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 4f | ion..This.command.displays.the.O |
| 132900 | 53 50 46 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2c 20 61 73 20 64 65 74 65 72 6d 69 6e 65 64 | SPF.routing.table,.as.determined |
| 132920 | 20 62 79 20 74 68 65 20 6d 6f 73 74 20 72 65 63 65 6e 74 20 53 50 46 20 63 61 6c 63 75 6c 61 74 | .by.the.most.recent.SPF.calculat |
| 132940 | 69 6f 6e 2e 20 57 69 74 68 20 74 68 65 20 6f 70 74 69 6f 6e 61 6c 20 3a 63 66 67 63 6d 64 3a 60 | ion..With.the.optional.:cfgcmd:` |
| 132960 | 64 65 74 61 69 6c 60 20 61 72 67 75 6d 65 6e 74 2c 20 65 61 63 68 20 72 6f 75 74 65 20 69 74 65 | detail`.argument,.each.route.ite |
| 132980 | 6d 27 73 20 61 64 76 65 72 74 69 73 65 72 20 72 6f 75 74 65 72 20 61 6e 64 20 6e 65 74 77 6f 72 | m's.advertiser.router.and.networ |
| 1329a0 | 6b 20 61 74 74 72 69 62 75 74 65 20 77 69 6c 6c 20 62 65 20 73 68 6f 77 6e 2e 00 54 68 69 73 20 | k.attribute.will.be.shown..This. |
| 1329c0 | 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 20 44 52 | command.displays.the.neighbor.DR |
| 1329e0 | 20 63 68 6f 69 63 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | .choice.information..This.comman |
| 132a00 | 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 69 6e 66 6f 72 6d 61 | d.displays.the.neighbors.informa |
| 132a20 | 74 69 6f 6e 20 69 6e 20 61 20 64 65 74 61 69 6c 65 64 20 66 6f 72 6d 20 66 6f 72 20 61 20 6e 65 | tion.in.a.detailed.form.for.a.ne |
| 132a40 | 69 67 68 62 6f 72 20 77 68 6f 73 65 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 73 70 65 63 69 | ighbor.whose.IP.address.is.speci |
| 132a60 | 66 69 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 | fied..This.command.displays.the. |
| 132a80 | 6e 65 69 67 68 62 6f 72 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 61 20 64 65 74 61 69 | neighbors.information.in.a.detai |
| 132aa0 | 6c 65 64 20 66 6f 72 6d 2c 20 6e 6f 74 20 6a 75 73 74 20 61 20 73 75 6d 6d 61 72 79 20 74 61 62 | led.form,.not.just.a.summary.tab |
| 132ac0 | 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 | le..This.command.displays.the.ne |
| 132ae0 | 69 67 68 62 6f 72 73 20 73 74 61 74 75 73 20 66 6f 72 20 61 20 6e 65 69 67 68 62 6f 72 20 6f 6e | ighbors.status.for.a.neighbor.on |
| 132b00 | 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 | .the.specified.interface..This.c |
| 132b20 | 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 6e 65 69 67 68 62 6f 72 73 20 73 74 | ommand.displays.the.neighbors.st |
| 132b40 | 61 74 75 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 64 69 73 70 6c 61 79 73 20 74 68 65 20 | atus..This.command.displays.the. |
| 132b60 | 73 74 61 74 75 73 20 6f 66 20 61 6c 6c 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 | status.of.all.BGP.connections..T |
| 132b80 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 20 6e 65 69 67 68 | his.command.enable.logging.neigh |
| 132ba0 | 62 6f 72 20 75 70 2f 64 6f 77 6e 20 63 68 61 6e 67 65 73 20 61 6e 64 20 72 65 73 65 74 20 72 65 | bor.up/down.changes.and.reset.re |
| 132bc0 | 61 73 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 2f 64 69 73 61 62 6c | ason..This.command.enable/disabl |
| 132be0 | 65 73 20 73 75 6d 6d 61 72 69 73 61 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 63 6f 6e 66 69 67 75 | es.summarisation.for.the.configu |
| 132c00 | 72 65 64 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | red.address.range..This.command. |
| 132c20 | 65 6e 61 62 6c 65 73 20 3a 61 62 62 72 3a 60 42 46 44 20 28 42 69 64 69 72 65 63 74 69 6f 6e 61 | enables.:abbr:`BFD.(Bidirectiona |
| 132c40 | 6c 20 46 6f 72 77 61 72 64 69 6e 67 20 44 65 74 65 63 74 69 6f 6e 29 60 20 6f 6e 20 74 68 69 73 | l.Forwarding.Detection)`.on.this |
| 132c60 | 20 4f 53 50 46 20 6c 69 6e 6b 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | .OSPF.link.interface..This.comma |
| 132c80 | 6e 64 20 65 6e 61 62 6c 65 73 20 3a 72 66 63 3a 60 36 32 33 32 60 20 70 75 72 67 65 20 6f 72 69 | nd.enables.:rfc:`6232`.purge.ori |
| 132ca0 | 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d | ginator.identification..This.com |
| 132cc0 | 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 3a 72 66 63 3a 60 36 32 33 32 60 20 70 75 72 67 65 20 6f | mand.enables.:rfc:`6232`.purge.o |
| 132ce0 | 72 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 2e 20 45 6e 61 62 6c 65 | riginator.identification..Enable |
| 132d00 | 20 70 75 72 67 65 20 6f 72 69 67 69 6e 61 74 6f 72 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e | .purge.originator.identification |
| 132d20 | 20 28 50 4f 49 29 20 62 79 20 61 64 64 69 6e 67 20 74 68 65 20 74 79 70 65 2c 20 6c 65 6e 67 74 | .(POI).by.adding.the.type,.lengt |
| 132d40 | 68 20 61 6e 64 20 76 61 6c 75 65 20 28 54 4c 56 29 20 77 69 74 68 20 74 68 65 20 49 6e 74 65 72 | h.and.value.(TLV).with.the.Inter |
| 132d60 | 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 28 49 53 29 20 69 64 65 6e 74 69 66 69 63 61 74 69 | mediate.System.(IS).identificati |
| 132d80 | 6f 6e 20 74 6f 20 74 68 65 20 4c 53 50 73 20 74 68 61 74 20 64 6f 20 6e 6f 74 20 63 6f 6e 74 61 | on.to.the.LSPs.that.do.not.conta |
| 132da0 | 69 6e 20 50 4f 49 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 20 49 66 20 61 6e 20 49 53 20 67 65 6e | in.POI.information..If.an.IS.gen |
| 132dc0 | 65 72 61 74 65 73 20 61 20 70 75 72 67 65 2c 20 56 79 4f 53 20 61 64 64 73 20 74 68 69 73 20 54 | erates.a.purge,.VyOS.adds.this.T |
| 132de0 | 4c 56 20 77 69 74 68 20 74 68 65 20 73 79 73 74 65 6d 20 49 44 20 6f 66 20 74 68 65 20 49 53 20 | LV.with.the.system.ID.of.the.IS. |
| 132e00 | 74 6f 20 74 68 65 20 70 75 72 67 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c | to.the.purge..This.command.enabl |
| 132e20 | 65 73 20 49 50 20 66 61 73 74 20 72 65 2d 72 6f 75 74 69 6e 67 20 74 68 61 74 20 69 73 20 70 61 | es.IP.fast.re-routing.that.is.pa |
| 132e40 | 72 74 20 6f 66 20 3a 72 66 63 3a 60 35 32 38 36 60 2e 20 53 70 65 63 69 66 69 63 61 6c 6c 79 20 | rt.of.:rfc:`5286`..Specifically. |
| 132e60 | 74 68 69 73 20 69 73 20 61 20 70 72 65 66 69 78 20 6c 69 73 74 20 77 68 69 63 68 20 72 65 66 65 | this.is.a.prefix.list.which.refe |
| 132e80 | 72 65 6e 63 65 73 20 61 20 70 72 65 66 69 78 20 69 6e 20 77 68 69 63 68 20 77 69 6c 6c 20 73 65 | rences.a.prefix.in.which.will.se |
| 132ea0 | 6c 65 63 74 20 65 6c 69 67 69 62 6c 65 20 50 51 20 6e 6f 64 65 73 20 66 6f 72 20 72 65 6d 6f 74 | lect.eligible.PQ.nodes.for.remot |
| 132ec0 | 65 20 4c 46 41 20 62 61 63 6b 75 70 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 | e.LFA.backups..This.command.enab |
| 132ee0 | 6c 65 73 20 49 53 2d 49 53 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 | les.IS-IS.on.this.interface,.and |
| 132f00 | 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 64 6a 61 63 65 6e 63 79 20 74 6f 20 6f 63 63 75 72 2e 20 | .allows.for.adjacency.to.occur.. |
| 132f20 | 4e 6f 74 65 20 74 68 61 74 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 49 53 2d 49 53 20 69 6e 73 74 | Note.that.the.name.of.IS-IS.inst |
| 132f40 | 61 6e 63 65 20 6d 75 73 74 20 62 65 20 74 68 65 20 73 61 6d 65 20 61 73 20 74 68 65 20 6f 6e 65 | ance.must.be.the.same.as.the.one |
| 132f60 | 20 75 73 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 53 2d 49 53 20 70 72 6f | .used.to.configure.the.IS-IS.pro |
| 132f80 | 63 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 4f 70 65 6e 46 | cess..This.command.enables.OpenF |
| 132fa0 | 61 62 72 69 63 20 69 6e 73 74 61 6e 63 65 20 77 69 74 68 20 3c 4e 41 4d 45 3e 20 6f 6e 20 74 68 | abric.instance.with.<NAME>.on.th |
| 132fc0 | 69 73 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6e 64 20 61 6c 6c 6f 77 73 20 66 6f 72 20 61 64 6a | is.interface,.and.allows.for.adj |
| 132fe0 | 61 63 65 6e 63 79 20 74 6f 20 6f 63 63 75 72 20 66 6f 72 20 61 64 64 72 65 73 73 20 66 61 6d 69 | acency.to.occur.for.address.fami |
| 133000 | 6c 79 20 28 49 50 76 34 20 6f 72 20 49 50 76 36 20 6f 72 20 62 6f 74 68 29 2e 00 54 68 69 73 20 | ly.(IPv4.or.IPv6.or.both)..This. |
| 133020 | 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 52 49 50 20 61 6e 64 20 73 65 74 73 20 74 68 65 | command.enables.RIP.and.sets.the |
| 133040 | 20 52 49 50 20 65 6e 61 62 6c 65 20 69 6e 74 65 72 66 61 63 65 20 62 79 20 4e 45 54 57 4f 52 4b | .RIP.enable.interface.by.NETWORK |
| 133060 | 2e 20 54 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 68 61 76 65 20 61 64 64 72 | ..The.interfaces.which.have.addr |
| 133080 | 65 73 73 65 73 20 6d 61 74 63 68 69 6e 67 20 77 69 74 68 20 4e 45 54 57 4f 52 4b 20 61 72 65 20 | esses.matching.with.NETWORK.are. |
| 1330a0 | 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 70 6f | enabled..This.command.enables.po |
| 1330c0 | 69 73 6f 6e 2d 72 65 76 65 72 73 65 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 49 | ison-reverse.on.the.interface..I |
| 1330e0 | 66 20 62 6f 74 68 20 70 6f 69 73 6f 6e 20 72 65 76 65 72 73 65 20 61 6e 64 20 73 70 6c 69 74 20 | f.both.poison.reverse.and.split. |
| 133100 | 68 6f 72 69 7a 6f 6e 20 61 72 65 20 65 6e 61 62 6c 65 64 2c 20 74 68 65 6e 20 56 79 4f 53 20 61 | horizon.are.enabled,.then.VyOS.a |
| 133120 | 64 76 65 72 74 69 73 65 73 20 74 68 65 20 6c 65 61 72 6e 65 64 20 72 6f 75 74 65 73 20 61 73 20 | dvertises.the.learned.routes.as. |
| 133140 | 75 6e 72 65 61 63 68 61 62 6c 65 20 6f 76 65 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 6f | unreachable.over.the.interface.o |
| 133160 | 6e 20 77 68 69 63 68 20 74 68 65 20 72 6f 75 74 65 20 77 61 73 20 6c 65 61 72 6e 65 64 2e 00 54 | n.which.the.route.was.learned..T |
| 133180 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 72 6f 75 74 69 6e 67 20 75 73 69 6e | his.command.enables.routing.usin |
| 1331a0 | 67 20 72 61 64 69 6f 20 66 72 65 71 75 65 6e 63 79 20 64 69 76 65 72 73 69 74 79 2e 20 54 68 69 | g.radio.frequency.diversity..Thi |
| 1331c0 | 73 20 69 73 20 68 69 67 68 6c 79 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 69 6e 20 6e 65 74 77 6f | s.is.highly.recommended.in.netwo |
| 1331e0 | 72 6b 73 20 77 69 74 68 20 6d 61 6e 79 20 77 69 72 65 6c 65 73 73 20 6e 6f 64 65 73 2e 00 54 68 | rks.with.many.wireless.nodes..Th |
| 133200 | 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 73 65 6e 64 69 6e 67 20 74 69 6d 65 73 | is.command.enables.sending.times |
| 133220 | 74 61 6d 70 73 20 77 69 74 68 20 65 61 63 68 20 48 65 6c 6c 6f 20 61 6e 64 20 49 48 55 20 6d 65 | tamps.with.each.Hello.and.IHU.me |
| 133240 | 73 73 61 67 65 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 6f 6d 70 75 74 65 20 52 54 54 20 76 61 | ssage.in.order.to.compute.RTT.va |
| 133260 | 6c 75 65 73 2e 20 49 74 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 65 6e 61 62 6c | lues..It.is.recommended.to.enabl |
| 133280 | 65 20 74 69 6d 65 73 74 61 6d 70 73 20 6f 6e 20 74 75 6e 6e 65 6c 20 69 6e 74 65 72 66 61 63 65 | e.timestamps.on.tunnel.interface |
| 1332a0 | 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 73 75 70 70 6f 72 74 20 | s..This.command.enables.support. |
| 1332c0 | 66 6f 72 20 64 79 6e 61 6d 69 63 20 68 6f 73 74 6e 61 6d 65 20 54 4c 56 2e 20 44 79 6e 61 6d 69 | for.dynamic.hostname.TLV..Dynami |
| 1332e0 | 63 20 68 6f 73 74 6e 61 6d 65 20 6d 61 70 70 69 6e 67 20 64 65 74 65 72 6d 69 6e 65 64 20 61 73 | c.hostname.mapping.determined.as |
| 133300 | 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 37 36 33 60 2c 20 44 79 6e 61 6d | .described.in.:rfc:`2763`,.Dynam |
| 133320 | 69 63 20 48 6f 73 74 6e 61 6d 65 20 45 78 63 68 61 6e 67 65 20 4d 65 63 68 61 6e 69 73 6d 20 66 | ic.Hostname.Exchange.Mechanism.f |
| 133340 | 6f 72 20 49 53 2d 49 53 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 | or.IS-IS..This.command.enables.t |
| 133360 | 68 65 20 49 50 76 34 20 66 69 72 65 77 61 6c 6c 20 66 6f 72 20 62 72 69 64 67 65 64 20 74 72 61 | he.IPv4.firewall.for.bridged.tra |
| 133380 | 66 66 69 63 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 73 20 69 73 20 75 73 65 64 2c 20 74 | ffic..If.this.options.is.used,.t |
| 1333a0 | 68 65 6e 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 61 6c 73 6f 20 62 65 20 70 61 72 73 65 64 20 62 | hen.packet.will.also.be.parsed.b |
| 1333c0 | 79 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 77 61 6c | y.rules.defined.in.``set.firewal |
| 1333e0 | 6c 20 69 70 76 34 20 2e 2e 2e 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 62 6c 65 | l.ipv4....``.This.command.enable |
| 133400 | 73 20 74 68 65 20 49 50 76 36 20 66 69 72 65 77 61 6c 6c 20 66 6f 72 20 62 72 69 64 67 65 64 20 | s.the.IPv6.firewall.for.bridged. |
| 133420 | 74 72 61 66 66 69 63 2e 20 49 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 73 20 69 73 20 75 73 65 64 | traffic..If.this.options.is.used |
| 133440 | 2c 20 74 68 65 6e 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 61 6c 73 6f 20 62 65 20 70 61 72 73 65 | ,.then.packet.will.also.be.parse |
| 133460 | 64 20 62 79 20 72 75 6c 65 73 20 64 65 66 69 6e 65 64 20 69 6e 20 60 60 73 65 74 20 66 69 72 65 | d.by.rules.defined.in.``set.fire |
| 133480 | 77 61 6c 6c 20 69 70 76 36 20 2e 2e 2e 60 60 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 6e 61 | wall.ipv6....``.This.command.ena |
| 1334a0 | 62 6c 65 73 20 74 68 65 20 4f 52 46 20 63 61 70 61 62 69 6c 69 74 79 20 28 64 65 73 63 72 69 62 | bles.the.ORF.capability.(describ |
| 1334c0 | 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 32 39 31 60 29 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c 20 | ed.in.:rfc:`5291`).on.the.local. |
| 1334e0 | 72 6f 75 74 65 72 2c 20 61 6e 64 20 65 6e 61 62 6c 65 73 20 4f 52 46 20 63 61 70 61 62 69 6c 69 | router,.and.enables.ORF.capabili |
| 133500 | 74 79 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 | ty.advertisement.to.the.specifie |
| 133520 | 64 20 42 47 50 20 70 65 65 72 2e 20 54 68 65 20 3a 63 66 67 63 6d 64 3a 60 72 65 63 65 69 76 65 | d.BGP.peer..The.:cfgcmd:`receive |
| 133540 | 60 20 6b 65 79 77 6f 72 64 20 63 6f 6e 66 69 67 75 72 65 73 20 61 20 72 6f 75 74 65 72 20 74 6f | `.keyword.configures.a.router.to |
| 133560 | 20 61 64 76 65 72 74 69 73 65 20 4f 52 46 20 72 65 63 65 69 76 65 20 63 61 70 61 62 69 6c 69 74 | .advertise.ORF.receive.capabilit |
| 133580 | 69 65 73 2e 20 54 68 65 20 3a 63 66 67 63 6d 64 3a 60 73 65 6e 64 60 20 6b 65 79 77 6f 72 64 20 | ies..The.:cfgcmd:`send`.keyword. |
| 1335a0 | 63 6f 6e 66 69 67 75 72 65 73 20 61 20 72 6f 75 74 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 | configures.a.router.to.advertise |
| 1335c0 | 20 4f 52 46 20 73 65 6e 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 54 6f 20 61 64 76 65 72 | .ORF.send.capabilities..To.adver |
| 1335e0 | 74 69 73 65 20 61 20 66 69 6c 74 65 72 20 66 72 6f 6d 20 61 20 73 65 6e 64 65 72 2c 20 79 6f 75 | tise.a.filter.from.a.sender,.you |
| 133600 | 20 6d 75 73 74 20 63 72 65 61 74 65 20 61 6e 20 49 50 20 70 72 65 66 69 78 20 6c 69 73 74 20 66 | .must.create.an.IP.prefix.list.f |
| 133620 | 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 42 47 50 20 70 65 65 72 20 61 70 70 6c 69 65 | or.the.specified.BGP.peer.applie |
| 133640 | 64 20 69 6e 20 69 6e 62 6f 75 6e 64 20 64 65 72 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d | d.in.inbound.derection..This.com |
| 133660 | 6d 61 6e 64 20 65 6e 61 62 6c 65 73 20 74 68 65 20 70 61 73 73 69 76 65 20 6d 6f 64 65 20 66 6f | mand.enables.the.passive.mode.fo |
| 133680 | 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 65 | r.this.interface..This.command.e |
| 1336a0 | 6e 66 6f 72 63 65 73 20 47 65 6e 65 72 61 6c 69 7a 65 64 20 54 54 4c 20 53 65 63 75 72 69 74 79 | nforces.Generalized.TTL.Security |
| 1336c0 | 20 4d 65 63 68 61 6e 69 73 6d 20 28 47 54 53 4d 29 2c 20 61 73 20 73 70 65 63 69 66 69 65 64 20 | .Mechanism.(GTSM),.as.specified. |
| 1336e0 | 69 6e 20 3a 72 66 63 3a 60 35 30 38 32 60 2e 20 57 69 74 68 20 74 68 69 73 20 63 6f 6d 6d 61 6e | in.:rfc:`5082`..With.this.comman |
| 133700 | 64 2c 20 6f 6e 6c 79 20 6e 65 69 67 68 62 6f 72 73 20 74 68 61 74 20 61 72 65 20 73 70 65 63 69 | d,.only.neighbors.that.are.speci |
| 133720 | 66 69 65 64 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 70 73 20 61 77 61 79 20 77 69 6c 6c 20 62 65 | fied.number.of.hops.away.will.be |
| 133740 | 20 61 6c 6c 6f 77 65 64 20 74 6f 20 62 65 63 6f 6d 65 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 | .allowed.to.become.neighbors..Th |
| 133760 | 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 70 73 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 | e.number.of.hops.range.is.1.to.2 |
| 133780 | 35 34 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6d 75 74 75 61 6c 6c 79 20 65 78 63 | 54..This.command.is.mutually.exc |
| 1337a0 | 6c 75 73 69 76 65 20 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 65 62 67 70 2d 6d 75 6c 74 69 68 | lusive.with.:cfgcmd:`ebgp-multih |
| 1337c0 | 6f 70 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 63 65 73 20 73 74 72 69 63 74 6c | op`..This.command.forces.strictl |
| 1337e0 | 79 20 63 6f 6d 70 61 72 65 20 72 65 6d 6f 74 65 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 6e | y.compare.remote.capabilities.an |
| 133800 | 64 20 6c 6f 63 61 6c 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 49 66 20 63 61 70 61 62 69 6c | d.local.capabilities..If.capabil |
| 133820 | 69 74 69 65 73 20 61 72 65 20 64 69 66 66 65 72 65 6e 74 2c 20 73 65 6e 64 20 55 6e 73 75 70 70 | ities.are.different,.send.Unsupp |
| 133840 | 6f 72 74 65 64 20 43 61 70 61 62 69 6c 69 74 79 20 65 72 72 6f 72 20 74 68 65 6e 20 72 65 73 65 | orted.Capability.error.then.rese |
| 133860 | 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 63 65 | t.connection..This.command.force |
| 133880 | 73 20 74 68 65 20 42 47 50 20 73 70 65 61 6b 65 72 20 74 6f 20 72 65 70 6f 72 74 20 69 74 73 65 | s.the.BGP.speaker.to.report.itse |
| 1338a0 | 6c 66 20 61 73 20 74 68 65 20 6e 65 78 74 20 68 6f 70 20 66 6f 72 20 61 6e 20 61 64 76 65 72 74 | lf.as.the.next.hop.for.an.advert |
| 1338c0 | 69 73 65 64 20 72 6f 75 74 65 20 69 74 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 61 20 6e 65 | ised.route.it.advertised.to.a.ne |
| 1338e0 | 69 67 68 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 65 6e 65 72 61 74 65 20 61 20 | ighbor..This.command.generate.a. |
| 133900 | 64 65 66 61 75 6c 74 20 72 6f 75 74 65 20 69 6e 74 6f 20 74 68 65 20 52 49 50 2e 00 54 68 69 73 | default.route.into.the.RIP..This |
| 133920 | 20 63 6f 6d 6d 61 6e 64 20 67 69 76 65 73 20 61 20 62 72 69 65 66 20 73 74 61 74 75 73 20 6f 76 | .command.gives.a.brief.status.ov |
| 133940 | 65 72 76 69 65 77 20 6f 66 20 61 20 73 70 65 63 69 66 69 65 64 20 77 69 72 65 6c 65 73 73 20 69 | erview.of.a.specified.wireless.i |
| 133960 | 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 | nterface..The.wireless.interface |
| 133980 | 20 69 64 65 6e 74 69 66 69 65 72 20 63 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 6e 30 | .identifier.can.range.from.wlan0 |
| 1339a0 | 20 74 6f 20 77 6c 61 6e 39 39 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 67 6f 65 73 20 68 | .to.wlan999..This.command.goes.h |
| 1339c0 | 61 6e 64 20 69 6e 20 68 61 6e 64 20 77 69 74 68 20 74 68 65 20 6c 69 73 74 65 6e 20 72 61 6e 67 | and.in.hand.with.the.listen.rang |
| 1339e0 | 65 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 69 6d 69 74 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 | e.command.to.limit.the.amount.of |
| 133a00 | 20 42 47 50 20 6e 65 69 67 68 62 6f 72 73 20 74 68 61 74 20 61 72 65 20 61 6c 6c 6f 77 65 64 20 | .BGP.neighbors.that.are.allowed. |
| 133a20 | 74 6f 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2e 20 | to.connect.to.the.local.router.. |
| 133a40 | 54 68 65 20 6c 69 6d 69 74 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 35 30 30 30 2e 00 54 68 | The.limit.range.is.1.to.5000..Th |
| 133a60 | 69 73 20 63 6f 6d 6d 61 6e 64 20 67 6f 74 20 61 64 64 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 | is.command.got.added.in.VyOS.1.4 |
| 133a80 | 20 61 6e 64 20 69 6e 76 65 72 74 73 20 74 68 65 20 6c 6f 67 69 63 20 66 72 6f 6d 20 74 68 65 20 | .and.inverts.the.logic.from.the. |
| 133aa0 | 6f 6c 64 20 60 60 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 60 60 20 43 4c 49 20 6f 70 74 69 6f 6e | old.``default-route``.CLI.option |
| 133ac0 | 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 73 74 65 61 64 20 6f 66 20 73 75 6d 6d 61 72 | ..This.command.instead.of.summar |
| 133ae0 | 69 7a 69 6e 67 20 69 6e 74 72 61 20 61 72 65 61 20 70 61 74 68 73 20 66 69 6c 74 65 72 20 74 68 | izing.intra.area.paths.filter.th |
| 133b00 | 65 6d 20 2d 20 69 2e 65 2e 20 69 6e 74 72 61 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 | em.-.i.e..intra.area.paths.from. |
| 133b20 | 74 68 69 73 20 72 61 6e 67 65 20 61 72 65 20 6e 6f 74 20 61 64 76 65 72 74 69 73 65 64 20 69 6e | this.range.are.not.advertised.in |
| 133b40 | 74 6f 20 6f 74 68 65 72 20 61 72 65 61 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b | to.other.areas..This.command.mak |
| 133b60 | 65 73 20 73 65 6e 73 65 20 69 6e 20 41 42 52 20 6f 6e 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | es.sense.in.ABR.only..This.comma |
| 133b80 | 6e 64 20 69 73 20 61 6c 73 6f 20 75 73 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 4f 53 | nd.is.also.used.to.enable.the.OS |
| 133ba0 | 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 61 72 65 61 20 6e 75 6d 62 65 72 20 63 61 6e 20 | PF.process..The.area.number.can. |
| 133bc0 | 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e | be.specified.in.decimal.notation |
| 133be0 | 20 69 6e 20 74 68 65 20 72 61 6e 67 65 20 66 72 6f 6d 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 | .in.the.range.from.0.to.42949672 |
| 133c00 | 39 35 2e 20 4f 72 20 69 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 6f | 95..Or.it.can.be.specified.in.do |
| 133c20 | 74 74 65 64 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 73 69 6d 69 6c 61 72 20 74 6f | tted.decimal.notation.similar.to |
| 133c40 | 20 69 70 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c | .ip.address..This.command.is.onl |
| 133c60 | 79 20 61 6c 6c 6f 77 65 64 20 66 6f 72 20 65 42 47 50 20 70 65 65 72 73 2e 00 54 68 69 73 20 63 | y.allowed.for.eBGP.peers..This.c |
| 133c80 | 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c 79 20 61 6c 6c 6f 77 65 64 20 66 6f 72 20 65 42 47 50 20 | ommand.is.only.allowed.for.eBGP. |
| 133ca0 | 70 65 65 72 73 2e 20 49 74 20 69 73 20 6e 6f 74 20 61 70 70 6c 69 63 61 62 6c 65 20 66 6f 72 20 | peers..It.is.not.applicable.for. |
| 133cc0 | 70 65 65 72 20 67 72 6f 75 70 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 6f 6e 6c | peer.groups..This.command.is.onl |
| 133ce0 | 79 20 75 73 65 66 75 6c 20 61 74 20 73 63 61 6c 65 20 77 68 65 6e 20 79 6f 75 20 63 61 6e 20 70 | y.useful.at.scale.when.you.can.p |
| 133d00 | 6f 73 73 69 62 6c 79 20 68 61 76 65 20 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 20 6f 66 20 50 | ossibly.have.a.large.number.of.P |
| 133d20 | 49 4d 20 63 6f 6e 74 72 6f 6c 20 70 61 63 6b 65 74 73 20 66 6c 6f 77 69 6e 67 2e 00 54 68 69 73 | IM.control.packets.flowing..This |
| 133d40 | 20 63 6f 6d 6d 61 6e 64 20 69 73 20 73 70 65 63 69 66 69 63 20 74 6f 20 46 52 52 20 61 6e 64 20 | .command.is.specific.to.FRR.and. |
| 133d60 | 56 79 4f 53 2e 20 54 68 65 20 72 6f 75 74 65 20 63 6f 6d 6d 61 6e 64 20 6d 61 6b 65 73 20 61 20 | VyOS..The.route.command.makes.a. |
| 133d80 | 73 74 61 74 69 63 20 72 6f 75 74 65 20 6f 6e 6c 79 20 69 6e 73 69 64 65 20 52 49 50 2e 20 54 68 | static.route.only.inside.RIP..Th |
| 133da0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 62 | is.command.should.be.used.only.b |
| 133dc0 | 79 20 61 64 76 61 6e 63 65 64 20 75 73 65 72 73 20 77 68 6f 20 61 72 65 20 70 61 72 74 69 63 75 | y.advanced.users.who.are.particu |
| 133de0 | 6c 61 72 6c 79 20 6b 6e 6f 77 6c 65 64 67 65 61 62 6c 65 20 61 62 6f 75 74 20 74 68 65 20 52 49 | larly.knowledgeable.about.the.RI |
| 133e00 | 50 20 70 72 6f 74 6f 63 6f 6c 2e 20 49 6e 20 6d 6f 73 74 20 63 61 73 65 73 2c 20 77 65 20 72 65 | P.protocol..In.most.cases,.we.re |
| 133e20 | 63 6f 6d 6d 65 6e 64 20 63 72 65 61 74 69 6e 67 20 61 20 73 74 61 74 69 63 20 72 6f 75 74 65 20 | commend.creating.a.static.route. |
| 133e40 | 69 6e 20 56 79 4f 53 20 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 69 6e 67 20 69 74 20 69 6e | in.VyOS.and.redistributing.it.in |
| 133e60 | 20 52 49 50 20 75 73 69 6e 67 20 3a 63 66 67 63 6d 64 3a 60 72 65 64 69 73 74 72 69 62 75 74 65 | .RIP.using.:cfgcmd:`redistribute |
| 133e80 | 20 73 74 61 74 69 63 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 66 | .static`..This.command.is.used.f |
| 133ea0 | 6f 72 20 61 64 76 65 72 74 69 73 69 6e 67 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 6e 65 74 77 | or.advertising.IPv4.or.IPv6.netw |
| 133ec0 | 6f 72 6b 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 | orks..This.command.is.used.to.re |
| 133ee0 | 74 72 69 65 76 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 57 41 50 20 77 69 74 | trieve.information.about.WAP.wit |
| 133f00 | 68 69 6e 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 79 6f 75 72 20 77 69 72 65 6c 65 73 73 20 69 | hin.the.range.of.your.wireless.i |
| 133f20 | 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 75 73 65 66 75 6c | nterface..This.command.is.useful |
| 133f40 | 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 20 63 6f 6e 66 69 67 75 72 | .on.wireless.interfaces.configur |
| 133f60 | 65 64 20 69 6e 20 73 74 61 74 69 6f 6e 20 6d 6f 64 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ed.in.station.mode..This.command |
| 133f80 | 20 69 73 20 75 73 65 66 75 6c 20 69 66 20 6f 6e 65 20 64 65 73 69 72 65 73 20 74 6f 20 6c 6f 6f | .is.useful.if.one.desires.to.loo |
| 133fa0 | 73 65 6e 20 74 68 65 20 72 65 71 75 69 72 65 6d 65 6e 74 20 66 6f 72 20 42 47 50 20 74 6f 20 68 | sen.the.requirement.for.BGP.to.h |
| 133fc0 | 61 76 65 20 73 74 72 69 63 74 6c 79 20 64 65 66 69 6e 65 64 20 6e 65 69 67 68 62 6f 72 73 2e 20 | ave.strictly.defined.neighbors.. |
| 133fe0 | 53 70 65 63 69 66 69 63 61 6c 6c 79 20 77 68 61 74 20 69 73 20 61 6c 6c 6f 77 65 64 20 69 73 20 | Specifically.what.is.allowed.is. |
| 134000 | 66 6f 72 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f 20 6c 69 73 74 65 6e 20 74 | for.the.local.router.to.listen.t |
| 134020 | 6f 20 61 20 72 61 6e 67 65 20 6f 66 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 | o.a.range.of.IPv4.or.IPv6.addres |
| 134040 | 73 65 73 20 64 65 66 69 6e 65 64 20 62 79 20 61 20 70 72 65 66 69 78 20 61 6e 64 20 74 6f 20 61 | ses.defined.by.a.prefix.and.to.a |
| 134060 | 63 63 65 70 74 20 42 47 50 20 6f 70 65 6e 20 6d 65 73 73 61 67 65 73 2e 20 57 68 65 6e 20 61 20 | ccept.BGP.open.messages..When.a. |
| 134080 | 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 28 61 6e 64 20 73 75 62 73 65 71 75 65 6e 74 6c 79 | TCP.connection.(and.subsequently |
| 1340a0 | 20 61 20 42 47 50 20 6f 70 65 6e 20 6d 65 73 73 61 67 65 29 20 66 72 6f 6d 20 77 69 74 68 69 6e | .a.BGP.open.message).from.within |
| 1340c0 | 20 74 68 69 73 20 72 61 6e 67 65 20 74 72 69 65 73 20 74 6f 20 63 6f 6e 6e 65 63 74 20 74 68 65 | .this.range.tries.to.connect.the |
| 1340e0 | 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 68 65 6e 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 | .local.router.then.the.local.rou |
| 134100 | 74 65 72 20 77 69 6c 6c 20 72 65 73 70 6f 6e 64 20 61 6e 64 20 63 6f 6e 6e 65 63 74 20 77 69 74 | ter.will.respond.and.connect.wit |
| 134120 | 68 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 74 68 61 74 20 61 72 65 20 64 65 66 69 6e 65 | h.the.parameters.that.are.define |
| 134140 | 64 20 77 69 74 68 69 6e 20 74 68 65 20 70 65 65 72 20 67 72 6f 75 70 2e 20 4f 6e 65 20 6d 75 73 | d.within.the.peer.group..One.mus |
| 134160 | 74 20 64 65 66 69 6e 65 20 61 20 70 65 65 72 2d 67 72 6f 75 70 20 66 6f 72 20 65 61 63 68 20 72 | t.define.a.peer-group.for.each.r |
| 134180 | 61 6e 67 65 20 74 68 61 74 20 69 73 20 6c 69 73 74 65 64 2e 20 49 66 20 6e 6f 20 70 65 65 72 2d | ange.that.is.listed..If.no.peer- |
| 1341a0 | 67 72 6f 75 70 20 69 73 20 64 65 66 69 6e 65 64 20 74 68 65 6e 20 61 6e 20 65 72 72 6f 72 20 77 | group.is.defined.then.an.error.w |
| 1341c0 | 69 6c 6c 20 6b 65 65 70 20 79 6f 75 20 66 72 6f 6d 20 63 6f 6d 6d 69 74 74 69 6e 67 20 74 68 65 | ill.keep.you.from.committing.the |
| 1341e0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6d 6f 64 | .configuration..This.command.mod |
| 134200 | 69 66 69 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 28 68 6f 70 20 63 6f | ifies.the.default.metric.(hop.co |
| 134220 | 75 6e 74 29 20 76 61 6c 75 65 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 | unt).value.for.redistributed.rou |
| 134240 | 74 65 73 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 | tes..The.metric.range.is.1.to.16 |
| 134260 | 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 2e 20 54 68 69 73 20 63 | ..The.default.value.is.1..This.c |
| 134280 | 6f 6d 6d 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 61 66 66 65 63 74 20 63 6f 6e 6e 65 63 74 65 64 | ommand.does.not.affect.connected |
| 1342a0 | 20 72 6f 75 74 65 20 65 76 65 6e 20 69 66 20 69 74 20 69 73 20 72 65 64 69 73 74 72 69 62 75 74 | .route.even.if.it.is.redistribut |
| 1342c0 | 65 64 20 62 79 20 3a 63 66 67 63 6d 64 3a 60 72 65 64 69 73 74 72 69 62 75 74 65 20 63 6f 6e 6e | ed.by.:cfgcmd:`redistribute.conn |
| 1342e0 | 65 63 74 65 64 60 2e 20 54 6f 20 6d 6f 64 69 66 79 20 63 6f 6e 6e 65 63 74 65 64 20 72 6f 75 74 | ected`..To.modify.connected.rout |
| 134300 | 65 73 20 6d 65 74 72 69 63 20 76 61 6c 75 65 2c 20 70 6c 65 61 73 65 20 75 73 65 20 3a 63 66 67 | es.metric.value,.please.use.:cfg |
| 134320 | 63 6d 64 3a 60 72 65 64 69 73 74 72 69 62 75 74 65 20 63 6f 6e 6e 65 63 74 65 64 20 6d 65 74 72 | cmd:`redistribute.connected.metr |
| 134340 | 69 63 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 6f 76 65 72 72 69 64 65 20 41 53 20 6e 75 | ic`..This.command.override.AS.nu |
| 134360 | 6d 62 65 72 20 6f 66 20 74 68 65 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 72 6f 75 74 65 72 20 77 | mber.of.the.originating.router.w |
| 134380 | 69 74 68 20 74 68 65 20 6c 6f 63 61 6c 20 41 53 20 6e 75 6d 62 65 72 2e 00 54 68 69 73 20 63 6f | ith.the.local.AS.number..This.co |
| 1343a0 | 6d 6d 61 6e 64 20 70 72 65 76 65 6e 74 73 20 66 72 6f 6d 20 73 65 6e 64 69 6e 67 20 62 61 63 6b | mmand.prevents.from.sending.back |
| 1343c0 | 20 70 72 65 66 69 78 65 73 20 6c 65 61 72 6e 65 64 20 66 72 6f 6d 20 74 68 65 20 6e 65 69 67 68 | .prefixes.learned.from.the.neigh |
| 1343e0 | 62 6f 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 70 72 6f 76 69 64 65 73 20 74 6f 20 63 6f | bor..This.command.provides.to.co |
| 134400 | 6d 70 61 72 65 20 64 69 66 66 65 72 65 6e 74 20 4d 45 44 20 76 61 6c 75 65 73 20 74 68 61 74 20 | mpare.different.MED.values.that. |
| 134420 | 61 64 76 65 72 74 69 73 65 64 20 62 79 20 6e 65 69 67 68 62 6f 75 72 73 20 69 6e 20 74 68 65 20 | advertised.by.neighbours.in.the. |
| 134440 | 73 61 6d 65 20 41 53 20 66 6f 72 20 72 6f 75 74 65 73 20 73 65 6c 65 63 74 69 6f 6e 2e 20 57 68 | same.AS.for.routes.selection..Wh |
| 134460 | 65 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 65 6e 61 62 6c 65 64 2c 20 72 6f 75 74 | en.this.command.is.enabled,.rout |
| 134480 | 65 73 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 | es.from.the.same.autonomous.syst |
| 1344a0 | 65 6d 20 61 72 65 20 67 72 6f 75 70 65 64 20 74 6f 67 65 74 68 65 72 2c 20 61 6e 64 20 74 68 65 | em.are.grouped.together,.and.the |
| 1344c0 | 20 62 65 73 74 20 65 6e 74 72 69 65 73 20 6f 66 20 65 61 63 68 20 67 72 6f 75 70 20 61 72 65 20 | .best.entries.of.each.group.are. |
| 1344e0 | 63 6f 6d 70 61 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 70 72 6f 76 69 64 65 73 20 | compared..This.command.provides. |
| 134500 | 74 6f 20 63 6f 6d 70 61 72 65 20 74 68 65 20 4d 45 44 20 6f 6e 20 72 6f 75 74 65 73 2c 20 65 76 | to.compare.the.MED.on.routes,.ev |
| 134520 | 65 6e 20 77 68 65 6e 20 74 68 65 79 20 77 65 72 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 | en.when.they.were.received.from. |
| 134540 | 64 69 66 66 65 72 65 6e 74 20 6e 65 69 67 68 62 6f 75 72 69 6e 67 20 41 53 65 73 2e 20 53 65 74 | different.neighbouring.ASes..Set |
| 134560 | 74 69 6e 67 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 6d 61 6b 65 73 20 74 68 65 20 6f 72 64 65 72 | ting.this.option.makes.the.order |
| 134580 | 20 6f 66 20 70 72 65 66 65 72 65 6e 63 65 20 6f 66 20 72 6f 75 74 65 73 20 6d 6f 72 65 20 64 65 | .of.preference.of.routes.more.de |
| 1345a0 | 66 69 6e 65 64 2c 20 61 6e 64 20 73 68 6f 75 6c 64 20 65 6c 69 6d 69 6e 61 74 65 20 4d 45 44 20 | fined,.and.should.eliminate.MED. |
| 1345c0 | 69 6e 64 75 63 65 64 20 6f 73 63 69 6c 6c 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | induced.oscillations..This.comma |
| 1345e0 | 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 | nd.redistributes.routing.informa |
| 134600 | 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 | tion.from.the.given.route.source |
| 134620 | 20 69 6e 74 6f 20 74 68 65 20 49 53 49 53 20 64 61 74 61 62 61 73 65 20 61 73 20 4c 65 76 65 6c | .into.the.ISIS.database.as.Level |
| 134640 | 2d 31 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c | -1..There.are.six.modes.availabl |
| 134660 | 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 | e.for.route.source:.bgp,.connect |
| 134680 | 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 | ed,.kernel,.ospf,.rip,.static..T |
| 1346a0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e | his.command.redistributes.routin |
| 1346c0 | 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 | g.information.from.the.given.rou |
| 1346e0 | 74 65 20 73 6f 75 72 63 65 20 69 6e 74 6f 20 74 68 65 20 49 53 49 53 20 64 61 74 61 62 61 73 65 | te.source.into.the.ISIS.database |
| 134700 | 20 61 73 20 4c 65 76 65 6c 2d 32 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 | .as.Level-2..There.are.six.modes |
| 134720 | 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 | .available.for.route.source:.bgp |
| 134740 | 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 | ,.connected,.kernel,.ospf,.rip,. |
| 134760 | 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 | static..This.command.redistribut |
| 134780 | 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 | es.routing.information.from.the. |
| 1347a0 | 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 69 6e 74 6f 20 74 68 65 20 52 49 50 20 | given.route.source.into.the.RIP. |
| 1347c0 | 74 61 62 6c 65 73 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 | tables..There.are.five.modes.ava |
| 1347e0 | 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f | ilable.for.route.source:.bgp,.co |
| 134800 | 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 73 74 61 74 69 63 2e 00 54 | nnected,.kernel,.ospf,.static..T |
| 134820 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e | his.command.redistributes.routin |
| 134840 | 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 | g.information.from.the.given.rou |
| 134860 | 74 65 20 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 42 47 50 20 70 72 6f 63 65 73 73 2e 20 54 68 | te.source.to.the.BGP.process..Th |
| 134880 | 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 | ere.are.six.modes.available.for. |
| 1348a0 | 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c | route.source:.connected,.kernel, |
| 1348c0 | 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c 20 74 61 62 6c 65 2e 00 54 68 69 73 20 | .ospf,.rip,.static,.table..This. |
| 1348e0 | 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e | command.redistributes.routing.in |
| 134900 | 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 | formation.from.the.given.route.s |
| 134920 | 6f 75 72 63 65 20 74 6f 20 74 68 65 20 42 61 62 65 6c 20 70 72 6f 63 65 73 73 2e 00 54 68 69 73 | ource.to.the.Babel.process..This |
| 134940 | 20 63 6f 6d 6d 61 6e 64 20 72 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 | .command.redistributes.routing.i |
| 134960 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 | nformation.from.the.given.route. |
| 134980 | 73 6f 75 72 63 65 20 74 6f 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 72 | source.to.the.OSPF.process..Ther |
| 1349a0 | 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 | e.are.five.modes.available.for.r |
| 1349c0 | 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 | oute.source:.bgp,.connected,.ker |
| 1349e0 | 6e 65 6c 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 | nel,.rip,.static..This.command.r |
| 134a00 | 65 64 69 73 74 72 69 62 75 74 65 73 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e | edistributes.routing.information |
| 134a20 | 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 20 74 6f 20 | .from.the.given.route.source.to. |
| 134a40 | 74 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 | the.OSPFv3.process..There.are.fi |
| 134a60 | 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 | ve.modes.available.for.route.sou |
| 134a80 | 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 | rce:.bgp,.connected,.kernel,.rip |
| 134aa0 | 6e 67 2c 20 73 74 61 74 69 63 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 6d 6f 76 65 73 | ng,.static..This.command.removes |
| 134ac0 | 20 74 68 65 20 70 72 69 76 61 74 65 20 41 53 4e 20 6f 66 20 72 6f 75 74 65 73 20 74 68 61 74 20 | .the.private.ASN.of.routes.that. |
| 134ae0 | 61 72 65 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 | are.advertised.to.the.configured |
| 134b00 | 20 70 65 65 72 2e 20 49 74 20 72 65 6d 6f 76 65 73 20 6f 6e 6c 79 20 70 72 69 76 61 74 65 20 41 | .peer..It.removes.only.private.A |
| 134b20 | 53 4e 73 20 6f 6e 20 72 6f 75 74 65 73 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 45 42 47 50 | SNs.on.routes.advertised.to.EBGP |
| 134b40 | 20 70 65 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 73 20 42 47 50 20 | .peers..This.command.resets.BGP. |
| 134b60 | 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 6e 65 69 | connections.to.the.specified.nei |
| 134b80 | 67 68 62 6f 72 20 49 50 20 61 64 64 72 65 73 73 2e 20 57 69 74 68 20 61 72 67 75 6d 65 6e 74 20 | ghbor.IP.address..With.argument. |
| 134ba0 | 3a 63 66 67 63 6d 64 3a 60 73 6f 66 74 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e 69 74 | :cfgcmd:`soft`.this.command.init |
| 134bc0 | 69 61 74 65 73 20 61 20 73 6f 66 74 20 72 65 73 65 74 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f | iates.a.soft.reset..If.you.do.no |
| 134be0 | 74 20 73 70 65 63 69 66 79 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 6f 72 20 3a 63 | t.specify.the.:cfgcmd:`in`.or.:c |
| 134c00 | 66 67 63 6d 64 3a 60 6f 75 74 60 20 6f 70 74 69 6f 6e 73 2c 20 62 6f 74 68 20 69 6e 62 6f 75 6e | fgcmd:`out`.options,.both.inboun |
| 134c20 | 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 | d.and.outbound.soft.reconfigurat |
| 134c40 | 69 6f 6e 20 61 72 65 20 74 72 69 67 67 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | ion.are.triggered..This.command. |
| 134c60 | 72 65 73 65 74 73 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 73 70 | resets.BGP.connections.to.the.sp |
| 134c80 | 65 63 69 66 69 65 64 20 70 65 65 72 20 67 72 6f 75 70 2e 20 57 69 74 68 20 61 72 67 75 6d 65 6e | ecified.peer.group..With.argumen |
| 134ca0 | 74 20 3a 63 66 67 63 6d 64 3a 60 73 6f 66 74 60 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 6e | t.:cfgcmd:`soft`.this.command.in |
| 134cc0 | 69 74 69 61 74 65 73 20 61 20 73 6f 66 74 20 72 65 73 65 74 2e 20 49 66 20 79 6f 75 20 64 6f 20 | itiates.a.soft.reset..If.you.do. |
| 134ce0 | 6e 6f 74 20 73 70 65 63 69 66 79 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 69 6e 60 20 6f 72 20 | not.specify.the.:cfgcmd:`in`.or. |
| 134d00 | 3a 63 66 67 63 6d 64 3a 60 6f 75 74 60 20 6f 70 74 69 6f 6e 73 2c 20 62 6f 74 68 20 69 6e 62 6f | :cfgcmd:`out`.options,.both.inbo |
| 134d20 | 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 | und.and.outbound.soft.reconfigur |
| 134d40 | 61 74 69 6f 6e 20 61 72 65 20 74 72 69 67 67 65 72 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | ation.are.triggered..This.comman |
| 134d60 | 64 20 72 65 73 65 74 73 20 61 6c 6c 20 42 47 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f 66 20 | d.resets.all.BGP.connections.of. |
| 134d80 | 67 69 76 65 6e 20 72 6f 75 74 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 72 65 73 65 74 | given.router..This.command.reset |
| 134da0 | 73 20 61 6c 6c 20 65 78 74 65 72 6e 61 6c 20 42 47 50 20 70 65 65 72 73 20 6f 66 20 67 69 76 65 | s.all.external.BGP.peers.of.give |
| 134dc0 | 6e 20 72 6f 75 74 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 6c 65 63 74 73 20 41 | n.router..This.command.selects.A |
| 134de0 | 42 52 20 6d 6f 64 65 6c 2e 20 4f 53 50 46 20 72 6f 75 74 65 72 20 73 75 70 70 6f 72 74 73 20 66 | BR.model..OSPF.router.supports.f |
| 134e00 | 6f 75 72 20 41 42 52 20 6d 6f 64 65 6c 73 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 | our.ABR.models:.This.command.set |
| 134e20 | 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 66 6f 72 20 63 69 72 63 75 69 74 2e 00 54 68 69 | .default.metric.for.circuit..Thi |
| 134e40 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 20 74 68 65 20 63 68 61 6e 6e 65 6c 20 6e 75 6d 62 65 72 | s.command.set.the.channel.number |
| 134e60 | 20 74 68 61 74 20 64 69 76 65 72 73 69 74 79 20 72 6f 75 74 69 6e 67 20 75 73 65 73 20 66 6f 72 | .that.diversity.routing.uses.for |
| 134e80 | 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 28 73 65 65 20 64 69 76 65 72 73 69 74 79 20 6f | .this.interface.(see.diversity.o |
| 134ea0 | 70 74 69 6f 6e 20 61 62 6f 76 65 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 | ption.above)..This.command.sets. |
| 134ec0 | 41 54 54 20 62 69 74 20 74 6f 20 31 20 69 6e 20 4c 65 76 65 6c 31 20 4c 53 50 73 2e 20 49 74 20 | ATT.bit.to.1.in.Level1.LSPs..It. |
| 134ee0 | 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 37 38 37 60 2e 00 54 68 69 | is.described.in.:rfc:`3787`..Thi |
| 134f00 | 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 43 6f 6d 70 6c 65 74 65 20 53 65 71 75 65 6e 63 65 | s.command.sets.Complete.Sequence |
| 134f20 | 20 4e 75 6d 62 65 72 20 50 61 63 6b 65 74 73 20 28 43 53 4e 50 29 20 69 6e 74 65 72 76 61 6c 20 | .Number.Packets.(CSNP).interval. |
| 134f40 | 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 | in.seconds..The.interval.range.i |
| 134f60 | 73 20 31 20 74 6f 20 36 30 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 | s.1.to.600..This.command.sets.LS |
| 134f80 | 50 20 6d 61 78 69 6d 75 6d 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 | P.maximum.LSP.lifetime.in.second |
| 134fa0 | 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 33 35 30 20 74 6f 20 | s..The.interval.range.is.350.to. |
| 134fc0 | 36 35 35 33 35 2e 20 4c 53 50 73 20 72 65 6d 61 69 6e 20 69 6e 20 61 20 64 61 74 61 62 61 73 65 | 65535..LSPs.remain.in.a.database |
| 134fe0 | 20 66 6f 72 20 31 32 30 30 20 73 65 63 6f 6e 64 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 66 | .for.1200.seconds.by.default..If |
| 135000 | 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 72 65 66 72 65 73 68 65 64 20 62 79 20 74 68 61 74 20 | .they.are.not.refreshed.by.that. |
| 135020 | 74 69 6d 65 2c 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 2e 20 59 6f 75 20 63 61 6e 20 | time,.they.are.deleted..You.can. |
| 135040 | 63 68 61 6e 67 65 20 74 68 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 | change.the.LSP.refresh.interval. |
| 135060 | 6f 72 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 2e 20 54 68 65 20 4c 53 50 20 72 65 66 | or.the.LSP.lifetime..The.LSP.ref |
| 135080 | 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 73 68 6f 75 6c 64 20 62 65 20 6c 65 73 73 20 74 68 61 | resh.interval.should.be.less.tha |
| 1350a0 | 6e 20 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 20 6f 72 20 65 6c 73 65 20 4c 53 50 73 20 | n.the.LSP.lifetime.or.else.LSPs. |
| 1350c0 | 77 69 6c 6c 20 74 69 6d 65 20 6f 75 74 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 72 65 | will.time.out.before.they.are.re |
| 1350e0 | 66 72 65 73 68 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 6d | freshed..This.command.sets.LSP.m |
| 135100 | 61 78 69 6d 75 6d 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 | aximum.LSP.lifetime.in.seconds.. |
| 135120 | 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 33 36 30 20 74 6f 20 36 35 35 | The.interval.range.is.360.to.655 |
| 135140 | 33 35 2e 20 4c 53 50 73 20 72 65 6d 61 69 6e 20 69 6e 20 61 20 64 61 74 61 62 61 73 65 20 66 6f | 35..LSPs.remain.in.a.database.fo |
| 135160 | 72 20 31 32 30 30 20 73 65 63 6f 6e 64 73 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 66 20 74 68 | r.1200.seconds.by.default..If.th |
| 135180 | 65 79 20 61 72 65 20 6e 6f 74 20 72 65 66 72 65 73 68 65 64 20 62 79 20 74 68 61 74 20 74 69 6d | ey.are.not.refreshed.by.that.tim |
| 1351a0 | 65 2c 20 74 68 65 79 20 61 72 65 20 64 65 6c 65 74 65 64 2e 20 59 6f 75 20 63 61 6e 20 63 68 61 | e,.they.are.deleted..You.can.cha |
| 1351c0 | 6e 67 65 20 74 68 65 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 6f 72 20 | nge.the.LSP.refresh.interval.or. |
| 1351e0 | 74 68 65 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 2e 20 54 68 65 20 4c 53 50 20 72 65 66 72 65 73 | the.LSP.lifetime..The.LSP.refres |
| 135200 | 68 20 69 6e 74 65 72 76 61 6c 20 73 68 6f 75 6c 64 20 62 65 20 6c 65 73 73 20 74 68 61 6e 20 74 | h.interval.should.be.less.than.t |
| 135220 | 68 65 20 4c 53 50 20 6c 69 66 65 74 69 6d 65 20 6f 72 20 65 6c 73 65 20 4c 53 50 73 20 77 69 6c | he.LSP.lifetime.or.else.LSPs.wil |
| 135240 | 6c 20 74 69 6d 65 20 6f 75 74 20 62 65 66 6f 72 65 20 74 68 65 79 20 61 72 65 20 72 65 66 72 65 | l.time.out.before.they.are.refre |
| 135260 | 73 68 65 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 72 65 66 72 | shed..This.command.sets.LSP.refr |
| 135280 | 65 73 68 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 49 53 2d 49 53 20 67 | esh.interval.in.seconds..IS-IS.g |
| 1352a0 | 65 6e 65 72 61 74 65 73 20 4c 53 50 73 20 77 68 65 6e 20 74 68 65 20 73 74 61 74 65 20 6f 66 20 | enerates.LSPs.when.the.state.of. |
| 1352c0 | 61 20 6c 69 6e 6b 20 63 68 61 6e 67 65 73 2e 20 48 6f 77 65 76 65 72 2c 20 74 6f 20 65 6e 73 75 | a.link.changes..However,.to.ensu |
| 1352e0 | 72 65 20 74 68 61 74 20 72 6f 75 74 69 6e 67 20 64 61 74 61 62 61 73 65 73 20 6f 6e 20 61 6c 6c | re.that.routing.databases.on.all |
| 135300 | 20 72 6f 75 74 65 72 73 20 72 65 6d 61 69 6e 20 63 6f 6e 76 65 72 67 65 64 2c 20 4c 53 50 73 20 | .routers.remain.converged,.LSPs. |
| 135320 | 69 6e 20 73 74 61 62 6c 65 20 6e 65 74 77 6f 72 6b 73 20 61 72 65 20 67 65 6e 65 72 61 74 65 64 | in.stable.networks.are.generated |
| 135340 | 20 6f 6e 20 61 20 72 65 67 75 6c 61 72 20 62 61 73 69 73 20 65 76 65 6e 20 74 68 6f 75 67 68 20 | .on.a.regular.basis.even.though. |
| 135360 | 74 68 65 72 65 20 68 61 73 20 62 65 65 6e 20 6e 6f 20 63 68 61 6e 67 65 20 74 6f 20 74 68 65 20 | there.has.been.no.change.to.the. |
| 135380 | 73 74 61 74 65 20 6f 66 20 74 68 65 20 6c 69 6e 6b 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c | state.of.the.links..The.interval |
| 1353a0 | 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 32 33 35 2e 20 54 68 65 20 64 65 66 61 75 6c | .range.is.1.to.65235..The.defaul |
| 1353c0 | 74 20 76 61 6c 75 65 20 69 73 20 39 30 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d | t.value.is.900.seconds..This.com |
| 1353e0 | 6d 61 6e 64 20 73 65 74 73 20 4c 53 50 20 72 65 66 72 65 73 68 20 69 6e 74 65 72 76 61 6c 20 69 | mand.sets.LSP.refresh.interval.i |
| 135400 | 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 | n.seconds..The.interval.range.is |
| 135420 | 20 31 20 74 6f 20 36 35 32 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 4f | .1.to.65235..This.command.sets.O |
| 135440 | 53 50 46 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 20 74 6f 20 61 20 73 69 6d 70 | SPF.authentication.key.to.a.simp |
| 135460 | 6c 65 20 70 61 73 73 77 6f 72 64 2e 20 41 66 74 65 72 20 73 65 74 74 69 6e 67 2c 20 61 6c 6c 20 | le.password..After.setting,.all. |
| 135480 | 4f 53 50 46 20 70 61 63 6b 65 74 73 20 61 72 65 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 2e 20 | OSPF.packets.are.authenticated.. |
| 1354a0 | 4b 65 79 20 68 61 73 20 6c 65 6e 67 74 68 20 75 70 20 74 6f 20 38 20 63 68 61 72 73 2e 00 54 68 | Key.has.length.up.to.8.chars..Th |
| 1354c0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 50 53 4e 50 20 69 6e 74 65 72 76 61 6c 20 69 6e | is.command.sets.PSNP.interval.in |
| 1354e0 | 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 | .seconds..The.interval.range.is. |
| 135500 | 30 20 74 6f 20 31 32 37 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 50 61 72 74 | 0.to.127..This.command.sets.Part |
| 135520 | 69 61 6c 20 53 65 71 75 65 6e 63 65 20 4e 75 6d 62 65 72 20 50 61 63 6b 65 74 73 20 28 50 53 4e | ial.Sequence.Number.Packets.(PSN |
| 135540 | 50 29 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 | P).interval.in.seconds..The.inte |
| 135560 | 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d | rval.range.is.1.to.120..This.com |
| 135580 | 6d 61 6e 64 20 73 65 74 73 20 52 6f 75 74 65 72 20 50 72 69 6f 72 69 74 79 20 69 6e 74 65 67 65 | mand.sets.Router.Priority.intege |
| 1355a0 | 72 20 76 61 6c 75 65 2e 20 54 68 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 | r.value..The.router.with.the.hig |
| 1355c0 | 68 65 73 74 20 70 72 69 6f 72 69 74 79 20 77 69 6c 6c 20 62 65 20 6d 6f 72 65 20 65 6c 69 67 69 | hest.priority.will.be.more.eligi |
| 1355e0 | 62 6c 65 20 74 6f 20 62 65 63 6f 6d 65 20 44 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 2e | ble.to.become.Designated.Router. |
| 135600 | 20 53 65 74 74 69 6e 67 20 74 68 65 20 76 61 6c 75 65 20 74 6f 20 30 2c 20 6d 61 6b 65 73 20 74 | .Setting.the.value.to.0,.makes.t |
| 135620 | 68 65 20 72 6f 75 74 65 72 20 69 6e 65 6c 69 67 69 62 6c 65 20 74 6f 20 62 65 63 6f 6d 65 20 44 | he.router.ineligible.to.become.D |
| 135640 | 65 73 69 67 6e 61 74 65 64 20 52 6f 75 74 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 | esignated.Router..The.default.va |
| 135660 | 6c 75 65 20 69 73 20 31 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 | lue.is.1..The.interval.range.is. |
| 135680 | 30 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 61 20 73 74 | 0.to.255..This.command.sets.a.st |
| 1356a0 | 61 74 69 63 20 74 69 65 72 20 6e 75 6d 62 65 72 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 61 73 | atic.tier.number.to.advertise.as |
| 1356c0 | 20 6c 6f 63 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 66 61 62 72 69 63 2e 00 54 68 69 73 20 63 6f | .location.in.the.fabric..This.co |
| 1356e0 | 6d 6d 61 6e 64 20 73 65 74 73 20 64 65 66 61 75 6c 74 20 52 49 50 20 64 69 73 74 61 6e 63 65 20 | mmand.sets.default.RIP.distance. |
| 135700 | 74 6f 20 61 20 73 70 65 63 69 66 69 65 64 20 76 61 6c 75 65 20 77 68 65 6e 20 74 68 65 20 72 6f | to.a.specified.value.when.the.ro |
| 135720 | 75 74 65 73 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 6d 61 74 63 68 65 73 20 74 | utes.source.IP.address.matches.t |
| 135740 | 68 65 20 73 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | he.specified.prefix..This.comman |
| 135760 | 64 20 73 65 74 73 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 66 6f 72 20 63 69 72 63 75 69 | d.sets.default.metric.for.circui |
| 135780 | 74 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 | t..The.metric.range.is.1.to.1677 |
| 1357a0 | 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 68 65 6c 6c 6f 20 69 6e | 7215..This.command.sets.hello.in |
| 1357c0 | 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 | terval.in.seconds.on.a.given.int |
| 1357e0 | 65 72 66 61 63 65 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 30 30 2e 00 54 | erface..The.range.is.1.to.600..T |
| 135800 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 20 | his.command.sets.hello.interval. |
| 135820 | 69 6e 20 73 65 63 6f 6e 64 73 20 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 65 2e | in.seconds.on.a.given.interface. |
| 135840 | 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 30 30 2e 20 48 65 6c 6c 6f 20 70 61 | .The.range.is.1.to.600..Hello.pa |
| 135860 | 63 6b 65 74 73 20 61 72 65 20 75 73 65 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 6e 64 20 | ckets.are.used.to.establish.and. |
| 135880 | 6d 61 69 6e 74 61 69 6e 20 61 64 6a 61 63 65 6e 63 79 20 62 65 74 77 65 65 6e 20 4f 70 65 6e 46 | maintain.adjacency.between.OpenF |
| 1358a0 | 61 62 72 69 63 20 6e 65 69 67 68 62 6f 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 | abric.neighbors..This.command.se |
| 1358c0 | 74 73 20 6c 69 6e 6b 20 63 6f 73 74 20 66 6f 72 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 | ts.link.cost.for.the.specified.i |
| 1358e0 | 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 63 6f 73 74 20 76 61 6c 75 65 20 69 73 20 73 65 74 20 | nterface..The.cost.value.is.set. |
| 135900 | 74 6f 20 72 6f 75 74 65 72 2d 4c 53 41 e2 80 99 73 20 6d 65 74 72 69 63 20 66 69 65 6c 64 20 61 | to.router-LSA...s.metric.field.a |
| 135920 | 6e 64 20 75 73 65 64 20 66 6f 72 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 54 68 65 | nd.used.for.SPF.calculation..The |
| 135940 | 20 63 6f 73 74 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 | .cost.range.is.1.to.65535..This. |
| 135960 | 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 61 74 | command.sets.minimum.interval.at |
| 135980 | 20 77 68 69 63 68 20 6c 69 6e 6b 2d 73 74 61 74 65 20 70 61 63 6b 65 74 73 20 28 4c 53 50 73 29 | .which.link-state.packets.(LSPs) |
| 1359a0 | 20 61 72 65 20 67 65 6e 65 72 61 74 65 64 2e 20 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e | .are.generated..The.interval.ran |
| 1359c0 | 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 | ge.is.1.to.120..This.command.set |
| 1359e0 | 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 62 65 74 77 65 65 6e 20 63 6f 6e 73 65 | s.minimum.interval.between.conse |
| 135a00 | 63 75 74 69 76 65 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 20 69 6e 20 73 65 63 6f 6e | cutive.SPF.calculations.in.secon |
| 135a20 | 64 73 2e 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 | ds.The.interval.range.is.1.to.12 |
| 135a40 | 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 6e 69 6d 75 6d 20 69 6e 74 | 0..This.command.sets.minimum.int |
| 135a60 | 65 72 76 61 6c 20 62 65 74 77 65 65 6e 20 63 6f 6e 73 65 63 75 74 69 76 65 20 73 68 6f 72 74 65 | erval.between.consecutive.shorte |
| 135a80 | 73 74 20 70 61 74 68 20 66 69 72 73 74 20 28 53 50 46 29 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 | st.path.first.(SPF).calculations |
| 135aa0 | 20 69 6e 20 73 65 63 6f 6e 64 73 2e 54 68 65 20 69 6e 74 65 72 76 61 6c 20 72 61 6e 67 65 20 69 | .in.seconds.The.interval.range.i |
| 135ac0 | 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6d 69 | s.1.to.120..This.command.sets.mi |
| 135ae0 | 6e 69 6d 75 6d 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 | nimum.interval.in.seconds.betwee |
| 135b00 | 6e 20 72 65 67 65 6e 65 72 61 74 69 6e 67 20 73 61 6d 65 20 4c 53 50 2e 20 54 68 65 20 69 6e 74 | n.regenerating.same.LSP..The.int |
| 135b20 | 65 72 76 61 6c 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 32 30 2e 00 54 68 69 73 20 63 6f | erval.range.is.1.to.120..This.co |
| 135b40 | 6d 6d 61 6e 64 20 73 65 74 73 20 6d 75 6c 74 69 70 6c 69 65 72 20 66 6f 72 20 68 65 6c 6c 6f 20 | mmand.sets.multiplier.for.hello. |
| 135b60 | 68 6f 6c 64 69 6e 67 20 74 69 6d 65 20 6f 6e 20 61 20 67 69 76 65 6e 20 69 6e 74 65 72 66 61 63 | holding.time.on.a.given.interfac |
| 135b80 | 65 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 32 20 74 6f 20 31 30 30 2e 00 54 68 69 73 20 63 | e..The.range.is.2.to.100..This.c |
| 135ba0 | 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e 65 74 77 6f 72 6b 20 65 6e 74 69 74 79 20 74 69 74 6c 65 | ommand.sets.network.entity.title |
| 135bc0 | 20 28 4e 45 54 29 20 70 72 6f 76 69 64 65 64 20 69 6e 20 49 53 4f 20 66 6f 72 6d 61 74 2e 00 54 | .(NET).provided.in.ISO.format..T |
| 135be0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e | his.command.sets.number.of.secon |
| 135c00 | 64 73 20 66 6f 72 20 49 6e 66 54 72 61 6e 73 44 65 6c 61 79 20 76 61 6c 75 65 2e 20 49 74 20 61 | ds.for.InfTransDelay.value..It.a |
| 135c20 | 6c 6c 6f 77 73 20 74 6f 20 73 65 74 20 61 6e 64 20 61 64 6a 75 73 74 20 66 6f 72 20 65 61 63 68 | llows.to.set.and.adjust.for.each |
| 135c40 | 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 64 65 6c 61 79 20 69 6e 74 65 72 76 61 6c 20 62 65 | .interface.the.delay.interval.be |
| 135c60 | 66 6f 72 65 20 73 74 61 72 74 69 6e 67 20 74 68 65 20 73 79 6e 63 68 72 6f 6e 69 7a 69 6e 67 20 | fore.starting.the.synchronizing. |
| 135c80 | 70 72 6f 63 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 27 73 20 64 61 74 61 62 61 73 65 | process.of.the.router's.database |
| 135ca0 | 20 77 69 74 68 20 61 6c 6c 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | .with.all.neighbors..The.default |
| 135cc0 | 20 76 61 6c 75 65 20 69 73 20 31 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 | .value.is.1.seconds..The.interva |
| 135ce0 | 6c 20 72 61 6e 67 65 20 69 73 20 33 20 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d | l.range.is.3.to.65535..This.comm |
| 135d00 | 61 6e 64 20 73 65 74 73 20 6e 75 6d 62 65 72 20 6f 66 20 73 65 63 6f 6e 64 73 20 66 6f 72 20 52 | and.sets.number.of.seconds.for.R |
| 135d20 | 78 6d 74 49 6e 74 65 72 76 61 6c 20 74 69 6d 65 72 20 76 61 6c 75 65 2e 20 54 68 69 73 20 76 61 | xmtInterval.timer.value..This.va |
| 135d40 | 6c 75 65 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 72 65 74 72 61 6e 73 6d 69 74 74 69 6e 67 20 | lue.is.used.when.retransmitting. |
| 135d60 | 44 61 74 61 62 61 73 65 20 44 65 73 63 72 69 70 74 69 6f 6e 20 61 6e 64 20 4c 69 6e 6b 20 53 74 | Database.Description.and.Link.St |
| 135d80 | 61 74 65 20 52 65 71 75 65 73 74 20 70 61 63 6b 65 74 73 20 69 66 20 61 63 6b 6e 6f 77 6c 65 64 | ate.Request.packets.if.acknowled |
| 135da0 | 67 65 20 77 61 73 20 6e 6f 74 20 72 65 63 65 69 76 65 64 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | ge.was.not.received..The.default |
| 135dc0 | 20 76 61 6c 75 65 20 69 73 20 35 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 69 6e 74 65 72 76 61 | .value.is.5.seconds..The.interva |
| 135de0 | 6c 20 72 61 6e 67 65 20 69 73 20 33 20 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d | l.range.is.3.to.65535..This.comm |
| 135e00 | 61 6e 64 20 73 65 74 73 20 6f 6c 64 2d 73 74 79 6c 65 20 28 49 53 4f 20 31 30 35 38 39 29 20 6f | and.sets.old-style.(ISO.10589).o |
| 135e20 | 72 20 6e 65 77 20 73 74 79 6c 65 20 70 61 63 6b 65 74 20 66 6f 72 6d 61 74 73 3a 00 54 68 69 73 | r.new.style.packet.formats:.This |
| 135e40 | 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 74 68 65 72 20 63 6f 6e 66 65 64 65 72 61 74 69 6f | .command.sets.other.confederatio |
| 135e60 | 6e 73 20 3c 6e 73 75 62 61 73 6e 3e 20 61 73 20 6d 65 6d 62 65 72 73 20 6f 66 20 61 75 74 6f 6e | ns.<nsubasn>.as.members.of.auton |
| 135e80 | 6f 6d 6f 75 73 20 73 79 73 74 65 6d 20 73 70 65 63 69 66 69 65 64 20 62 79 20 3a 63 66 67 63 6d | omous.system.specified.by.:cfgcm |
| 135ea0 | 64 3a 60 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 69 64 65 6e 74 69 66 69 65 72 20 3c 61 73 6e | d:`confederation.identifier.<asn |
| 135ec0 | 3e 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 6f 76 65 72 6c 6f 61 64 20 62 | >`..This.command.sets.overload.b |
| 135ee0 | 69 74 20 74 6f 20 61 76 6f 69 64 20 61 6e 79 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 | it.to.avoid.any.transit.traffic. |
| 135f00 | 74 68 72 6f 75 67 68 20 74 68 69 73 20 72 6f 75 74 65 72 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | through.this.router..This.comman |
| 135f20 | 64 20 73 65 74 73 20 6f 76 65 72 6c 6f 61 64 20 62 69 74 20 74 6f 20 61 76 6f 69 64 20 61 6e 79 | d.sets.overload.bit.to.avoid.any |
| 135f40 | 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 74 68 72 6f 75 67 68 20 74 68 69 73 20 72 6f | .transit.traffic.through.this.ro |
| 135f60 | 75 74 65 72 2e 20 49 74 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 33 | uter..It.is.described.in.:rfc:`3 |
| 135f80 | 37 38 37 60 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 70 72 69 6f 72 69 74 79 | 787`..This.command.sets.priority |
| 135fa0 | 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 3a 61 62 62 72 3a 60 44 49 | .for.the.interface.for.:abbr:`DI |
| 135fc0 | 53 20 28 44 65 73 69 67 6e 61 74 65 64 20 49 6e 74 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 | S.(Designated.Intermediate.Syste |
| 135fe0 | 6d 29 60 20 65 6c 65 63 74 69 6f 6e 2e 20 54 68 65 20 70 72 69 6f 72 69 74 79 20 72 61 6e 67 65 | m)`.election..The.priority.range |
| 136000 | 20 69 73 20 30 20 74 6f 20 31 32 37 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 | .is.0.to.127..This.command.sets. |
| 136020 | 74 68 65 20 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 20 64 69 73 74 61 6e 63 65 20 66 6f 72 20 | the.administrative.distance.for. |
| 136040 | 61 20 70 61 72 74 69 63 75 6c 61 72 20 72 6f 75 74 65 2e 20 54 68 65 20 64 69 73 74 61 6e 63 65 | a.particular.route..The.distance |
| 136060 | 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 32 35 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | .range.is.1.to.255..This.command |
| 136080 | 20 73 65 74 73 20 74 68 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 73 73 77 6f 72 | .sets.the.authentication.passwor |
| 1360a0 | 64 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e | d.for.the.interface..This.comman |
| 1360c0 | 64 20 73 65 74 73 20 74 68 65 20 63 6f 73 74 20 6f 66 20 64 65 66 61 75 6c 74 2d 73 75 6d 6d 61 | d.sets.the.cost.of.default-summa |
| 1360e0 | 72 79 20 4c 53 41 73 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 73 74 75 62 62 79 20 61 72 65 61 | ry.LSAs.announced.to.stubby.area |
| 136100 | 73 2e 20 54 68 65 20 63 6f 73 74 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 | s..The.cost.range.is.0.to.167772 |
| 136120 | 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 64 65 66 61 75 6c | 15..This.command.sets.the.defaul |
| 136140 | 74 20 63 6f 73 74 20 6f 66 20 4c 53 41 73 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 4e 53 53 41 | t.cost.of.LSAs.announced.to.NSSA |
| 136160 | 20 61 72 65 61 73 2e 20 54 68 65 20 63 6f 73 74 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 | .areas..The.cost.range.is.0.to.1 |
| 136180 | 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 | 6777215..This.command.sets.the.i |
| 1361a0 | 6e 69 74 69 61 6c 20 64 65 6c 61 79 2c 20 74 68 65 20 69 6e 69 74 69 61 6c 2d 68 6f 6c 64 74 69 | nitial.delay,.the.initial-holdti |
| 1361c0 | 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 2d 68 6f 6c 64 74 69 6d 65 20 62 65 74 77 | me.and.the.maximum-holdtime.betw |
| 1361e0 | 65 65 6e 20 77 68 65 6e 20 53 50 46 20 69 73 20 63 61 6c 63 75 6c 61 74 65 64 20 61 6e 64 20 74 | een.when.SPF.is.calculated.and.t |
| 136200 | 68 65 20 65 76 65 6e 74 20 77 68 69 63 68 20 74 72 69 67 67 65 72 65 64 20 74 68 65 20 63 61 6c | he.event.which.triggered.the.cal |
| 136220 | 63 75 6c 61 74 69 6f 6e 2e 20 54 68 65 20 74 69 6d 65 73 20 61 72 65 20 73 70 65 63 69 66 69 65 | culation..The.times.are.specifie |
| 136240 | 64 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 61 6e 64 20 6d 75 73 74 20 62 65 20 69 6e | d.in.milliseconds.and.must.be.in |
| 136260 | 20 74 68 65 20 72 61 6e 67 65 20 6f 66 20 30 20 74 6f 20 36 30 30 30 30 30 20 6d 69 6c 6c 69 73 | .the.range.of.0.to.600000.millis |
| 136280 | 65 63 6f 6e 64 73 2e 20 3a 63 66 67 63 6d 64 3a 60 64 65 6c 61 79 60 20 73 65 74 73 20 74 68 65 | econds..:cfgcmd:`delay`.sets.the |
| 1362a0 | 20 69 6e 69 74 69 61 6c 20 53 50 46 20 73 63 68 65 64 75 6c 65 20 64 65 6c 61 79 20 69 6e 20 6d | .initial.SPF.schedule.delay.in.m |
| 1362c0 | 69 6c 6c 69 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 | illiseconds..The.default.value.i |
| 1362e0 | 73 20 32 30 30 20 6d 73 2e 20 3a 63 66 67 63 6d 64 3a 60 69 6e 69 74 69 61 6c 2d 68 6f 6c 64 74 | s.200.ms..:cfgcmd:`initial-holdt |
| 136300 | 69 6d 65 60 20 73 65 74 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 68 6f 6c 64 20 74 69 6d 65 20 | ime`.sets.the.minimum.hold.time. |
| 136320 | 62 65 74 77 65 65 6e 20 74 77 6f 20 63 6f 6e 73 65 63 75 74 69 76 65 20 53 50 46 20 63 61 6c 63 | between.two.consecutive.SPF.calc |
| 136340 | 75 6c 61 74 69 6f 6e 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 | ulations..The.default.value.is.1 |
| 136360 | 30 30 30 20 6d 73 2e 20 3a 63 66 67 63 6d 64 3a 60 6d 61 78 2d 68 6f 6c 64 74 69 6d 65 60 20 73 | 000.ms..:cfgcmd:`max-holdtime`.s |
| 136380 | 65 74 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 77 61 69 74 20 74 69 6d 65 20 62 65 74 77 65 65 | ets.the.maximum.wait.time.betwee |
| 1363a0 | 6e 20 74 77 6f 20 63 6f 6e 73 65 63 75 74 69 76 65 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f | n.two.consecutive.SPF.calculatio |
| 1363c0 | 6e 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 30 30 30 30 20 6d | ns..The.default.value.is.10000.m |
| 1363e0 | 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 | s..This.command.sets.the.interfa |
| 136400 | 63 65 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 63 6f 73 74 20 63 61 6c 63 75 6c 61 74 69 6f | ce.bandwidth.for.cost.calculatio |
| 136420 | 6e 73 2c 20 77 68 65 72 65 20 62 61 6e 64 77 69 64 74 68 20 63 61 6e 20 62 65 20 69 6e 20 72 61 | ns,.where.bandwidth.can.be.in.ra |
| 136440 | 6e 67 65 20 66 72 6f 6d 20 31 20 74 6f 20 31 30 30 30 30 30 2c 20 73 70 65 63 69 66 69 65 64 20 | nge.from.1.to.100000,.specified. |
| 136460 | 69 6e 20 4d 62 69 74 73 2f 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 | in.Mbits/s..This.command.sets.th |
| 136480 | 65 20 69 6e 74 65 72 66 61 63 65 20 74 79 70 65 3a 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | e.interface.type:.This.command.s |
| 1364a0 | 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 52 49 50 20 4d 44 35 20 61 | ets.the.interface.with.RIP.MD5.a |
| 1364c0 | 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f | uthentication..This.command.also |
| 1364e0 | 20 73 65 74 73 20 4d 44 35 20 4b 65 79 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 73 | .sets.MD5.Key..The.key.must.be.s |
| 136500 | 68 6f 72 74 65 72 20 74 68 61 6e 20 31 36 20 63 68 61 72 61 63 74 65 72 73 2e 00 54 68 69 73 20 | horter.than.16.characters..This. |
| 136520 | 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 | command.sets.the.interface.with. |
| 136540 | 52 49 50 20 73 69 6d 70 6c 65 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 | RIP.simple.password.authenticati |
| 136560 | 6f 6e 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 73 65 74 73 20 61 75 74 68 65 | on..This.command.also.sets.authe |
| 136580 | 6e 74 69 63 61 74 69 6f 6e 20 73 74 72 69 6e 67 2e 20 54 68 65 20 73 74 72 69 6e 67 20 6d 75 73 | ntication.string..The.string.mus |
| 1365a0 | 74 20 62 65 20 73 68 6f 72 74 65 72 20 74 68 61 6e 20 31 36 20 63 68 61 72 61 63 74 65 72 73 2e | t.be.shorter.than.16.characters. |
| 1365c0 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 69 63 | .This.command.sets.the.multiplic |
| 1365e0 | 61 74 69 76 65 20 66 61 63 74 6f 72 20 75 73 65 64 20 66 6f 72 20 64 69 76 65 72 73 69 74 79 20 | ative.factor.used.for.diversity. |
| 136600 | 72 6f 75 74 69 6e 67 2c 20 69 6e 20 75 6e 69 74 73 20 6f 66 20 31 2f 32 35 36 3b 20 6c 6f 77 65 | routing,.in.units.of.1/256;.lowe |
| 136620 | 72 20 76 61 6c 75 65 73 20 63 61 75 73 65 20 64 69 76 65 72 73 69 74 79 20 74 6f 20 70 6c 61 79 | r.values.cause.diversity.to.play |
| 136640 | 20 61 20 6d 6f 72 65 20 69 6d 70 6f 72 74 61 6e 74 20 72 6f 6c 65 20 69 6e 20 72 6f 75 74 65 20 | .a.more.important.role.in.route. |
| 136660 | 73 65 6c 65 63 74 69 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 74 20 32 35 36 2c 20 77 | selection..The.default.it.256,.w |
| 136680 | 68 69 63 68 20 6d 65 61 6e 73 20 74 68 61 74 20 64 69 76 65 72 73 69 74 79 20 70 6c 61 79 73 20 | hich.means.that.diversity.plays. |
| 1366a0 | 6e 6f 20 72 6f 6c 65 20 69 6e 20 72 6f 75 74 65 20 73 65 6c 65 63 74 69 6f 6e 3b 20 79 6f 75 20 | no.role.in.route.selection;.you. |
| 1366c0 | 77 69 6c 6c 20 70 72 6f 62 61 62 6c 79 20 77 61 6e 74 20 74 6f 20 73 65 74 20 74 68 61 74 20 74 | will.probably.want.to.set.that.t |
| 1366e0 | 6f 20 31 32 38 20 6f 72 20 6c 65 73 73 20 6f 6e 20 6e 6f 64 65 73 20 77 69 74 68 20 6d 75 6c 74 | o.128.or.less.on.nodes.with.mult |
| 136700 | 69 70 6c 65 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 72 61 64 69 6f 73 2e 00 54 68 69 73 20 63 6f | iple.independent.radios..This.co |
| 136720 | 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 72 65 66 65 72 65 6e 63 65 20 62 61 6e 64 77 69 64 | mmand.sets.the.reference.bandwid |
| 136740 | 74 68 20 66 6f 72 20 63 6f 73 74 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 2c 20 77 68 65 72 65 20 | th.for.cost.calculations,.where. |
| 136760 | 62 61 6e 64 77 69 64 74 68 20 63 61 6e 20 62 65 20 69 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 31 | bandwidth.can.be.in.range.from.1 |
| 136780 | 20 74 6f 20 34 32 39 34 39 36 37 2c 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 4d 62 69 74 73 2f | .to.4294967,.specified.in.Mbits/ |
| 1367a0 | 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 30 30 4d 62 69 74 2f 73 20 28 69 2e 65 | s..The.default.is.100Mbit/s.(i.e |
| 1367c0 | 2e 20 61 20 6c 69 6e 6b 20 6f 66 20 62 61 6e 64 77 69 64 74 68 20 31 30 30 4d 62 69 74 2f 73 20 | ..a.link.of.bandwidth.100Mbit/s. |
| 1367e0 | 6f 72 20 68 69 67 68 65 72 20 77 69 6c 6c 20 68 61 76 65 20 61 20 63 6f 73 74 20 6f 66 20 31 2e | or.higher.will.have.a.cost.of.1. |
| 136800 | 20 43 6f 73 74 20 6f 66 20 6c 6f 77 65 72 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6e 6b 73 20 77 | .Cost.of.lower.bandwidth.links.w |
| 136820 | 69 6c 6c 20 62 65 20 73 63 61 6c 65 64 20 77 69 74 68 20 72 65 66 65 72 65 6e 63 65 20 74 6f 20 | ill.be.scaled.with.reference.to. |
| 136840 | 74 68 69 73 20 63 6f 73 74 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 | this.cost)..This.command.sets.th |
| 136860 | 65 20 72 6f 75 74 65 72 2d 49 44 20 6f 66 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e | e.router-ID.of.the.OSPF.process. |
| 136880 | 20 54 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6d 61 79 20 62 65 20 61 6e 20 49 50 20 61 64 64 72 | .The.router-ID.may.be.an.IP.addr |
| 1368a0 | 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 75 74 20 6e 65 65 64 20 6e 6f 74 20 | ess.of.the.router,.but.need.not. |
| 1368c0 | 62 65 20 e2 80 93 20 69 74 20 63 61 6e 20 62 65 20 61 6e 79 20 61 72 62 69 74 72 61 72 79 20 33 | be.....it.can.be.any.arbitrary.3 |
| 1368e0 | 32 62 69 74 20 6e 75 6d 62 65 72 2e 20 48 6f 77 65 76 65 72 20 69 74 20 4d 55 53 54 20 62 65 20 | 2bit.number..However.it.MUST.be. |
| 136900 | 75 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 20 65 6e 74 69 72 65 20 4f 53 50 46 20 64 6f | unique.within.the.entire.OSPF.do |
| 136920 | 6d 61 69 6e 20 74 6f 20 74 68 65 20 4f 53 50 46 20 73 70 65 61 6b 65 72 20 e2 80 93 20 62 61 64 | main.to.the.OSPF.speaker.....bad |
| 136940 | 20 74 68 69 6e 67 73 20 77 69 6c 6c 20 68 61 70 70 65 6e 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 | .things.will.happen.if.multiple. |
| 136960 | 4f 53 50 46 20 73 70 65 61 6b 65 72 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 | OSPF.speakers.are.configured.wit |
| 136980 | 68 20 74 68 65 20 73 61 6d 65 20 72 6f 75 74 65 72 2d 49 44 21 00 54 68 69 73 20 63 6f 6d 6d 61 | h.the.same.router-ID!.This.comma |
| 1369a0 | 6e 64 20 73 65 74 73 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6f 66 20 74 68 65 20 4f 53 50 | nd.sets.the.router-ID.of.the.OSP |
| 1369c0 | 46 76 33 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 72 6f 75 74 65 72 2d 49 44 20 6d 61 79 20 62 | Fv3.process..The.router-ID.may.b |
| 1369e0 | 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 6f 75 74 65 72 2c 20 62 | e.an.IP.address.of.the.router,.b |
| 136a00 | 75 74 20 6e 65 65 64 20 6e 6f 74 20 62 65 20 e2 80 93 20 69 74 20 63 61 6e 20 62 65 20 61 6e 79 | ut.need.not.be.....it.can.be.any |
| 136a20 | 20 61 72 62 69 74 72 61 72 79 20 33 32 62 69 74 20 6e 75 6d 62 65 72 2e 20 48 6f 77 65 76 65 72 | .arbitrary.32bit.number..However |
| 136a40 | 20 69 74 20 4d 55 53 54 20 62 65 20 75 6e 69 71 75 65 20 77 69 74 68 69 6e 20 74 68 65 20 65 6e | .it.MUST.be.unique.within.the.en |
| 136a60 | 74 69 72 65 20 4f 53 50 46 76 33 20 64 6f 6d 61 69 6e 20 74 6f 20 74 68 65 20 4f 53 50 46 76 33 | tire.OSPFv3.domain.to.the.OSPFv3 |
| 136a80 | 20 73 70 65 61 6b 65 72 20 e2 80 93 20 62 61 64 20 74 68 69 6e 67 73 20 77 69 6c 6c 20 68 61 70 | .speaker.....bad.things.will.hap |
| 136aa0 | 70 65 6e 20 69 66 20 6d 75 6c 74 69 70 6c 65 20 4f 53 50 46 76 33 20 73 70 65 61 6b 65 72 73 20 | pen.if.multiple.OSPFv3.speakers. |
| 136ac0 | 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 73 61 6d 65 20 72 6f 75 | are.configured.with.the.same.rou |
| 136ae0 | 74 65 72 2d 49 44 21 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 65 74 73 20 74 68 65 20 73 70 | ter-ID!.This.command.sets.the.sp |
| 136b00 | 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 70 61 73 73 69 76 65 20 6d 6f 64 | ecified.interface.to.passive.mod |
| 136b20 | 65 2e 20 4f 6e 20 70 61 73 73 69 76 65 20 6d 6f 64 65 20 69 6e 74 65 72 66 61 63 65 2c 20 61 6c | e..On.passive.mode.interface,.al |
| 136b40 | 6c 20 72 65 63 65 69 76 69 6e 67 20 70 61 63 6b 65 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 | l.receiving.packets.are.processe |
| 136b60 | 64 20 61 73 20 6e 6f 72 6d 61 6c 20 61 6e 64 20 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 73 65 | d.as.normal.and.VyOS.does.not.se |
| 136b80 | 6e 64 20 65 69 74 68 65 72 20 6d 75 6c 74 69 63 61 73 74 20 6f 72 20 75 6e 69 63 61 73 74 20 52 | nd.either.multicast.or.unicast.R |
| 136ba0 | 49 50 20 70 61 63 6b 65 74 73 20 65 78 63 65 70 74 20 74 6f 20 52 49 50 20 6e 65 69 67 68 62 6f | IP.packets.except.to.RIP.neighbo |
| 136bc0 | 72 73 20 73 70 65 63 69 66 69 65 64 20 77 69 74 68 20 6e 65 69 67 68 62 6f 72 20 63 6f 6d 6d 61 | rs.specified.with.neighbor.comma |
| 136be0 | 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 75 6c 64 20 4e 4f 54 20 62 65 20 73 | nd..This.command.should.NOT.be.s |
| 136c00 | 65 74 20 6e 6f 72 6d 61 6c 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 68 6f 77 73 20 | et.normally..This.command.shows. |
| 136c20 | 62 6f 74 68 20 73 74 61 74 75 73 20 61 6e 64 20 73 74 61 74 69 73 74 69 63 73 20 6f 6e 20 74 68 | both.status.and.statistics.on.th |
| 136c40 | 65 20 73 70 65 63 69 66 69 65 64 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 2e 20 | e.specified.wireless.interface.. |
| 136c60 | 54 68 65 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 69 64 65 6e 74 69 66 69 65 | The.wireless.interface.identifie |
| 136c80 | 72 20 63 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 6e 30 20 74 6f 20 77 6c 61 6e 39 39 | r.can.range.from.wlan0.to.wlan99 |
| 136ca0 | 39 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 42 47 50 20 | 9..This.command.specifies.a.BGP. |
| 136cc0 | 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 69 64 65 6e 74 69 66 69 65 72 2e 20 3c 61 73 6e 3e 20 | confederation.identifier..<asn>. |
| 136ce0 | 69 73 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 74 68 65 20 61 75 74 6f 6e 6f 6d 6f 75 73 20 | is.the.number.of.the.autonomous. |
| 136d00 | 73 79 73 74 65 6d 20 74 68 61 74 20 69 6e 74 65 72 6e 61 6c 6c 79 20 69 6e 63 6c 75 64 65 73 20 | system.that.internally.includes. |
| 136d20 | 6d 75 6c 74 69 70 6c 65 20 73 75 62 2d 61 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 73 20 | multiple.sub-autonomous.systems. |
| 136d40 | 28 61 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | (a.confederation)..This.command. |
| 136d60 | 73 70 65 63 69 66 69 65 73 20 61 20 42 61 62 65 6c 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 | specifies.a.Babel.enabled.interf |
| 136d80 | 61 63 65 20 62 79 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2e 20 42 6f 74 68 20 74 68 65 20 | ace.by.interface.name..Both.the. |
| 136da0 | 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 65 63 65 69 76 69 6e 67 20 6f 66 20 42 61 62 65 6c 20 70 | sending.and.receiving.of.Babel.p |
| 136dc0 | 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 65 6e 61 62 6c 65 64 20 6f 6e 20 74 68 65 20 69 6e | ackets.will.be.enabled.on.the.in |
| 136de0 | 74 65 72 66 61 63 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e | terface.specified.in.this.comman |
| 136e00 | 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 4d 44 35 20 | d..This.command.specifies.a.MD5. |
| 136e20 | 70 61 73 73 77 6f 72 64 20 74 6f 20 62 65 20 75 73 65 64 20 77 69 74 68 20 74 68 65 20 74 63 70 | password.to.be.used.with.the.tcp |
| 136e40 | 20 73 6f 63 6b 65 74 20 74 68 61 74 20 69 73 20 62 65 69 6e 67 20 75 73 65 64 20 74 6f 20 63 6f | .socket.that.is.being.used.to.co |
| 136e60 | 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 00 54 68 69 73 20 63 | nnect.to.the.remote.peer..This.c |
| 136e80 | 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 52 49 50 20 65 6e 61 62 6c 65 64 20 69 | ommand.specifies.a.RIP.enabled.i |
| 136ea0 | 6e 74 65 72 66 61 63 65 20 62 79 20 69 6e 74 65 72 66 61 63 65 20 6e 61 6d 65 2e 20 42 6f 74 68 | nterface.by.interface.name..Both |
| 136ec0 | 20 74 68 65 20 73 65 6e 64 69 6e 67 20 61 6e 64 20 72 65 63 65 69 76 69 6e 67 20 6f 66 20 52 49 | .the.sending.and.receiving.of.RI |
| 136ee0 | 50 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 65 6e 61 62 6c 65 64 20 6f 6e 20 74 68 65 | P.packets.will.be.enabled.on.the |
| 136f00 | 20 70 6f 72 74 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2e | .port.specified.in.this.command. |
| 136f20 | 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 52 49 50 20 6e 65 | .This.command.specifies.a.RIP.ne |
| 136f40 | 69 67 68 62 6f 72 2e 20 57 68 65 6e 20 61 20 6e 65 69 67 68 62 6f 72 20 64 6f 65 73 6e e2 80 99 | ighbor..When.a.neighbor.doesn... |
| 136f60 | 74 20 75 6e 64 65 72 73 74 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 2c 20 74 68 69 73 20 63 6f 6d | t.understand.multicast,.this.com |
| 136f80 | 6d 61 6e 64 20 69 73 20 75 73 65 64 20 74 6f 20 73 70 65 63 69 66 79 20 6e 65 69 67 68 62 6f 72 | mand.is.used.to.specify.neighbor |
| 136fa0 | 73 2e 20 49 6e 20 73 6f 6d 65 20 63 61 73 65 73 2c 20 6e 6f 74 20 61 6c 6c 20 72 6f 75 74 65 72 | s..In.some.cases,.not.all.router |
| 136fc0 | 73 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 75 6e 64 65 72 73 74 61 6e 64 20 6d 75 6c | s.will.be.able.to.understand.mul |
| 136fe0 | 74 69 63 61 73 74 69 6e 67 2c 20 77 68 65 72 65 20 70 61 63 6b 65 74 73 20 61 72 65 20 73 65 6e | ticasting,.where.packets.are.sen |
| 137000 | 74 20 74 6f 20 61 20 6e 65 74 77 6f 72 6b 20 6f 72 20 61 20 67 72 6f 75 70 20 6f 66 20 61 64 64 | t.to.a.network.or.a.group.of.add |
| 137020 | 72 65 73 73 65 73 2e 20 49 6e 20 61 20 73 69 74 75 61 74 69 6f 6e 20 77 68 65 72 65 20 61 20 6e | resses..In.a.situation.where.a.n |
| 137040 | 65 69 67 68 62 6f 72 20 63 61 6e 6e 6f 74 20 70 72 6f 63 65 73 73 20 6d 75 6c 74 69 63 61 73 74 | eighbor.cannot.process.multicast |
| 137060 | 20 70 61 63 6b 65 74 73 2c 20 69 74 20 69 73 20 6e 65 63 65 73 73 61 72 79 20 74 6f 20 65 73 74 | .packets,.it.is.necessary.to.est |
| 137080 | 61 62 6c 69 73 68 20 61 20 64 69 72 65 63 74 20 6c 69 6e 6b 20 62 65 74 77 65 65 6e 20 72 6f 75 | ablish.a.direct.link.between.rou |
| 1370a0 | 74 65 72 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 20 64 | ters..This.command.specifies.a.d |
| 1370c0 | 65 66 61 75 6c 74 20 77 65 69 67 68 74 20 76 61 6c 75 65 20 66 6f 72 20 74 68 65 20 6e 65 69 67 | efault.weight.value.for.the.neig |
| 1370e0 | 68 62 6f 72 e2 80 99 73 20 72 6f 75 74 65 73 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 72 61 6e 67 | hbor...s.routes..The.number.rang |
| 137100 | 65 20 69 73 20 31 20 74 6f 20 36 35 35 33 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 | e.is.1.to.65535..This.command.sp |
| 137120 | 65 63 69 66 69 65 73 20 61 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 72 65 66 | ecifies.a.maximum.number.of.pref |
| 137140 | 69 78 65 73 20 77 65 20 63 61 6e 20 72 65 63 65 69 76 65 20 66 72 6f 6d 20 61 20 67 69 76 65 6e | ixes.we.can.receive.from.a.given |
| 137160 | 20 70 65 65 72 2e 20 49 66 20 74 68 69 73 20 6e 75 6d 62 65 72 20 69 73 20 65 78 63 65 65 64 65 | .peer..If.this.number.is.exceede |
| 137180 | 64 2c 20 74 68 65 20 42 47 50 20 73 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 64 65 73 74 72 | d,.the.BGP.session.will.be.destr |
| 1371a0 | 6f 79 65 64 2e 20 54 68 65 20 6e 75 6d 62 65 72 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 34 | oyed..The.number.range.is.1.to.4 |
| 1371c0 | 32 39 34 39 36 37 32 39 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 | 294967295..This.command.specifie |
| 1371e0 | 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 61 73 20 70 61 73 73 69 76 65 20 62 79 20 64 | s.all.interfaces.as.passive.by.d |
| 137200 | 65 66 61 75 6c 74 2e 20 42 65 63 61 75 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 68 61 | efault..Because.this.command.cha |
| 137220 | 6e 67 65 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6c 6f 67 69 63 20 74 6f 20 | nges.the.configuration.logic.to. |
| 137240 | 61 20 64 65 66 61 75 6c 74 20 70 61 73 73 69 76 65 3b 20 74 68 65 72 65 66 6f 72 65 2c 20 69 6e | a.default.passive;.therefore,.in |
| 137260 | 74 65 72 66 61 63 65 73 20 77 68 65 72 65 20 72 6f 75 74 65 72 20 61 64 6a 61 63 65 6e 63 69 65 | terfaces.where.router.adjacencie |
| 137280 | 73 20 61 72 65 20 65 78 70 65 63 74 65 64 20 6e 65 65 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 | s.are.expected.need.to.be.config |
| 1372a0 | 75 72 65 64 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 61 73 73 69 76 65 2d 69 | ured.with.the.:cfgcmd:`passive-i |
| 1372c0 | 6e 74 65 72 66 61 63 65 2d 65 78 63 6c 75 64 65 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 68 69 73 20 | nterface-exclude`.command..This. |
| 1372e0 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 | command.specifies.all.interfaces |
| 137300 | 20 74 6f 20 70 61 73 73 69 76 65 20 6d 6f 64 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | .to.passive.mode..This.command.s |
| 137320 | 70 65 63 69 66 69 65 73 20 61 6e 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 61 6e | pecifies.an.aggregate.address.an |
| 137340 | 64 20 70 72 6f 76 69 64 65 73 20 74 68 61 74 20 6c 6f 6e 67 65 72 2d 70 72 65 66 69 78 65 73 20 | d.provides.that.longer-prefixes. |
| 137360 | 69 6e 73 69 64 65 20 6f 66 20 74 68 65 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 20 | inside.of.the.aggregate.address. |
| 137380 | 61 72 65 20 73 75 70 70 72 65 73 73 65 64 20 62 65 66 6f 72 65 20 73 65 6e 64 69 6e 67 20 42 47 | are.suppressed.before.sending.BG |
| 1373a0 | 50 20 75 70 64 61 74 65 73 20 6f 75 74 20 74 6f 20 70 65 65 72 73 2e 00 54 68 69 73 20 63 6f 6d | P.updates.out.to.peers..This.com |
| 1373c0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 | mand.specifies.an.aggregate.addr |
| 1373e0 | 65 73 73 20 77 69 74 68 20 61 20 6d 61 74 68 65 6d 61 74 69 63 61 6c 20 73 65 74 20 6f 66 20 61 | ess.with.a.mathematical.set.of.a |
| 137400 | 75 74 6f 6e 6f 6d 6f 75 73 20 73 79 73 74 65 6d 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | utonomous.systems..This.command. |
| 137420 | 73 75 6d 6d 61 72 69 7a 65 73 20 74 68 65 20 41 53 5f 50 41 54 48 20 61 74 74 72 69 62 75 74 65 | summarizes.the.AS_PATH.attribute |
| 137440 | 73 20 6f 66 20 61 6c 6c 20 74 68 65 20 69 6e 64 69 76 69 64 75 61 6c 20 72 6f 75 74 65 73 2e 00 | s.of.all.the.individual.routes.. |
| 137460 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 6e 20 61 67 67 72 65 67 | This.command.specifies.an.aggreg |
| 137480 | 61 74 65 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 61 6c 73 | ate.address..The.router.will.als |
| 1374a0 | 6f 20 61 6e 6e 6f 75 6e 63 65 20 6c 6f 6e 67 65 72 2d 70 72 65 66 69 78 65 73 20 69 6e 73 69 64 | o.announce.longer-prefixes.insid |
| 1374c0 | 65 20 6f 66 20 74 68 65 20 61 67 67 72 65 67 61 74 65 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 | e.of.the.aggregate.address..This |
| 1374e0 | 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 61 74 74 72 69 62 75 74 65 73 20 74 6f | .command.specifies.attributes.to |
| 137500 | 20 62 65 20 6c 65 66 74 20 75 6e 63 68 61 6e 67 65 64 20 66 6f 72 20 61 64 76 65 72 74 69 73 65 | .be.left.unchanged.for.advertise |
| 137520 | 6d 65 6e 74 73 20 73 65 6e 74 20 74 6f 20 61 20 70 65 65 72 20 6f 72 20 70 65 65 72 20 67 72 6f | ments.sent.to.a.peer.or.peer.gro |
| 137540 | 75 70 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 63 69 72 63 75 | up..This.command.specifies.circu |
| 137560 | 69 74 20 74 79 70 65 20 66 6f 72 20 69 6e 74 65 72 66 61 63 65 3a 00 54 68 69 73 20 63 6f 6d 6d | it.type.for.interface:.This.comm |
| 137580 | 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 63 6c 75 73 74 65 72 20 49 44 20 77 68 69 63 68 20 69 | and.specifies.cluster.ID.which.i |
| 1375a0 | 64 65 6e 74 69 66 69 65 73 20 61 20 63 6f 6c 6c 65 63 74 69 6f 6e 20 6f 66 20 72 6f 75 74 65 20 | dentifies.a.collection.of.route. |
| 1375c0 | 72 65 66 6c 65 63 74 6f 72 73 20 61 6e 64 20 74 68 65 69 72 20 63 6c 69 65 6e 74 73 2c 20 61 6e | reflectors.and.their.clients,.an |
| 1375e0 | 64 20 69 73 20 75 73 65 64 20 62 79 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 73 20 74 6f | d.is.used.by.route.reflectors.to |
| 137600 | 20 61 76 6f 69 64 20 6c 6f 6f 70 69 6e 67 2e 20 42 79 20 64 65 66 61 75 6c 74 20 63 6c 75 73 74 | .avoid.looping..By.default.clust |
| 137620 | 65 72 20 49 44 20 69 73 20 73 65 74 20 74 6f 20 74 68 65 20 42 47 50 20 72 6f 75 74 65 72 20 69 | er.ID.is.set.to.the.BGP.router.i |
| 137640 | 64 20 76 61 6c 75 65 2c 20 62 75 74 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 61 6e 20 61 72 | d.value,.but.can.be.set.to.an.ar |
| 137660 | 62 69 74 72 61 72 79 20 33 32 2d 62 69 74 20 76 61 6c 75 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 | bitrary.32-bit.value..This.comma |
| 137680 | 6e 64 20 73 70 65 63 69 66 69 65 73 20 68 6f 6c 64 2d 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 | nd.specifies.hold-time.in.second |
| 1376a0 | 73 2e 20 54 68 65 20 74 69 6d 65 72 20 72 61 6e 67 65 20 69 73 20 34 20 74 6f 20 36 35 35 33 35 | s..The.timer.range.is.4.to.65535 |
| 1376c0 | 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 38 30 20 73 65 63 6f 6e | ..The.default.value.is.180.secon |
| 1376e0 | 64 2e 20 49 66 20 79 6f 75 20 73 65 74 20 76 61 6c 75 65 20 74 6f 20 30 20 56 79 4f 53 20 77 69 | d..If.you.set.value.to.0.VyOS.wi |
| 137700 | 6c 6c 20 6e 6f 74 20 68 6f 6c 64 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | ll.not.hold.routes..This.command |
| 137720 | 20 73 70 65 63 69 66 69 65 73 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 70 61 73 73 69 76 65 2e | .specifies.interface.as.passive. |
| 137740 | 20 50 61 73 73 69 76 65 20 69 6e 74 65 72 66 61 63 65 20 61 64 76 65 72 74 69 73 65 73 20 69 74 | .Passive.interface.advertises.it |
| 137760 | 73 20 61 64 64 72 65 73 73 2c 20 62 75 74 20 64 6f 65 73 20 6e 6f 74 20 72 75 6e 20 74 68 65 20 | s.address,.but.does.not.run.the. |
| 137780 | 4f 53 50 46 20 70 72 6f 74 6f 63 6f 6c 20 28 61 64 6a 61 63 65 6e 63 69 65 73 20 61 72 65 20 6e | OSPF.protocol.(adjacencies.are.n |
| 1377a0 | 6f 74 20 66 6f 72 6d 65 64 20 61 6e 64 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 73 20 61 72 65 20 | ot.formed.and.hello.packets.are. |
| 1377c0 | 6e 6f 74 20 67 65 6e 65 72 61 74 65 64 29 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | not.generated)..This.command.spe |
| 1377e0 | 63 69 66 69 65 73 20 6b 65 65 70 2d 61 6c 69 76 65 20 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 | cifies.keep-alive.time.in.second |
| 137800 | 73 2e 20 54 68 65 20 74 69 6d 65 72 20 63 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 34 20 74 6f | s..The.timer.can.range.from.4.to |
| 137820 | 20 36 35 35 33 35 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 30 20 | .65535..The.default.value.is.60. |
| 137840 | 73 65 63 6f 6e 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d | second..This.command.specifies.m |
| 137860 | 65 74 72 69 63 20 28 4d 45 44 29 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f | etric.(MED).for.redistributed.ro |
| 137880 | 75 74 65 73 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 34 | utes..The.metric.range.is.0.to.4 |
| 1378a0 | 32 39 34 39 36 37 32 39 35 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d 6f 64 65 73 20 61 | 294967295..There.are.six.modes.a |
| 1378c0 | 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 63 6f 6e 6e 65 | vailable.for.route.source:.conne |
| 1378e0 | 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2c | cted,.kernel,.ospf,.rip,.static, |
| 137900 | 20 74 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d | .table..This.command.specifies.m |
| 137920 | 65 74 72 69 63 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 | etric.for.redistributed.routes.f |
| 137940 | 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 | rom.the.given.route.source..Ther |
| 137960 | 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 | e.are.five.modes.available.for.r |
| 137980 | 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 | oute.source:.bgp,.connected,.ker |
| 1379a0 | 6e 65 6c 2c 20 6f 73 70 66 2c 20 73 74 61 74 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 | nel,.ospf,.static..The.metric.ra |
| 1379c0 | 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | nge.is.1.to.16..This.command.spe |
| 1379e0 | 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 | cifies.metric.for.redistributed. |
| 137a00 | 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 | routes.from.the.given.route.sour |
| 137a20 | 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 66 69 76 65 20 6d 6f 64 65 73 20 61 76 61 69 6c 61 62 | ce..There.are.five.modes.availab |
| 137a40 | 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a 20 62 67 70 2c 20 63 6f 6e 6e 65 63 | le.for.route.source:.bgp,.connec |
| 137a60 | 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 72 69 70 2c 20 73 74 61 74 69 63 2e 20 54 68 65 20 6d 65 | ted,.kernel,.rip,.static..The.me |
| 137a80 | 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 31 20 74 6f 20 31 36 37 37 37 32 31 34 2e 00 54 68 69 | tric.range.is.1.to.16777214..Thi |
| 137aa0 | 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6d 65 74 72 69 63 20 66 6f 72 20 72 | s.command.specifies.metric.for.r |
| 137ac0 | 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 20 66 72 6f 6d 20 74 68 65 20 67 69 76 | edistributed.routes.from.the.giv |
| 137ae0 | 65 6e 20 72 6f 75 74 65 20 73 6f 75 72 63 65 2e 20 54 68 65 72 65 20 61 72 65 20 73 69 78 20 6d | en.route.source..There.are.six.m |
| 137b00 | 6f 64 65 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 20 73 6f 75 72 63 65 3a | odes.available.for.route.source: |
| 137b20 | 20 62 67 70 2c 20 63 6f 6e 6e 65 63 74 65 64 2c 20 6b 65 72 6e 65 6c 2c 20 6f 73 70 66 2c 20 72 | .bgp,.connected,.kernel,.ospf,.r |
| 137b40 | 69 70 2c 20 73 74 61 74 69 63 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 | ip,.static..The.metric.range.is. |
| 137b60 | 31 20 74 6f 20 31 36 37 37 37 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 | 1.to.16777215..This.command.spec |
| 137b80 | 69 66 69 65 73 20 6d 65 74 72 69 63 20 74 79 70 65 20 66 6f 72 20 72 65 64 69 73 74 72 69 62 75 | ifies.metric.type.for.redistribu |
| 137ba0 | 74 65 64 20 72 6f 75 74 65 73 2e 20 44 69 66 66 65 72 65 6e 63 65 20 62 65 74 77 65 65 6e 20 74 | ted.routes..Difference.between.t |
| 137bc0 | 77 6f 20 6d 65 74 72 69 63 20 74 79 70 65 73 20 74 68 61 74 20 6d 65 74 72 69 63 20 74 79 70 65 | wo.metric.types.that.metric.type |
| 137be0 | 20 31 20 69 73 20 61 20 6d 65 74 72 69 63 20 77 68 69 63 68 20 69 73 20 22 63 6f 6d 6d 65 6e 73 | .1.is.a.metric.which.is."commens |
| 137c00 | 75 72 61 62 6c 65 22 20 77 69 74 68 20 69 6e 6e 65 72 20 4f 53 50 46 20 6c 69 6e 6b 73 2e 20 57 | urable".with.inner.OSPF.links..W |
| 137c20 | 68 65 6e 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 61 20 6d 65 74 72 69 63 20 74 6f 20 74 68 65 20 | hen.calculating.a.metric.to.the. |
| 137c40 | 65 78 74 65 72 6e 61 6c 20 64 65 73 74 69 6e 61 74 69 6f 6e 2c 20 74 68 65 20 66 75 6c 6c 20 70 | external.destination,.the.full.p |
| 137c60 | 61 74 68 20 6d 65 74 72 69 63 20 69 73 20 63 61 6c 63 75 6c 61 74 65 64 20 61 73 20 61 20 6d 65 | ath.metric.is.calculated.as.a.me |
| 137c80 | 74 72 69 63 20 73 75 6d 20 70 61 74 68 20 6f 66 20 61 20 72 6f 75 74 65 72 20 77 68 69 63 68 20 | tric.sum.path.of.a.router.which. |
| 137ca0 | 68 61 64 20 61 64 76 65 72 74 69 73 65 64 20 74 68 69 73 20 6c 69 6e 6b 20 70 6c 75 73 20 74 68 | had.advertised.this.link.plus.th |
| 137cc0 | 65 20 6c 69 6e 6b 20 6d 65 74 72 69 63 2e 20 54 68 75 73 2c 20 61 20 72 6f 75 74 65 20 77 69 74 | e.link.metric..Thus,.a.route.wit |
| 137ce0 | 68 20 74 68 65 20 6c 65 61 73 74 20 73 75 6d 6d 61 72 79 20 6d 65 74 72 69 63 20 77 69 6c 6c 20 | h.the.least.summary.metric.will. |
| 137d00 | 62 65 20 73 65 6c 65 63 74 65 64 2e 20 49 66 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 20 69 73 | be.selected..If.external.link.is |
| 137d20 | 20 61 64 76 65 72 74 69 73 65 64 20 77 69 74 68 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 20 74 | .advertised.with.metric.type.2.t |
| 137d40 | 68 65 20 70 61 74 68 20 69 73 20 73 65 6c 65 63 74 65 64 20 77 68 69 63 68 20 6c 69 65 73 20 74 | he.path.is.selected.which.lies.t |
| 137d60 | 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 69 63 68 20 61 64 76 65 72 74 69 73 | hrough.the.router.which.advertis |
| 137d80 | 65 64 20 74 68 69 73 20 6c 69 6e 6b 20 77 69 74 68 20 74 68 65 20 6c 65 61 73 74 20 6d 65 74 72 | ed.this.link.with.the.least.metr |
| 137da0 | 69 63 20 64 65 73 70 69 74 65 20 6f 66 20 74 68 65 20 66 61 63 74 20 74 68 61 74 20 69 6e 74 65 | ic.despite.of.the.fact.that.inte |
| 137dc0 | 72 6e 61 6c 20 70 61 74 68 20 74 6f 20 74 68 69 73 20 72 6f 75 74 65 72 20 69 73 20 6c 6f 6e 67 | rnal.path.to.this.router.is.long |
| 137de0 | 65 72 20 28 77 69 74 68 20 6d 6f 72 65 20 63 6f 73 74 29 2e 20 48 6f 77 65 76 65 72 2c 20 69 66 | er.(with.more.cost)..However,.if |
| 137e00 | 20 74 77 6f 20 72 6f 75 74 65 72 73 20 61 64 76 65 72 74 69 73 65 64 20 61 6e 20 65 78 74 65 72 | .two.routers.advertised.an.exter |
| 137e20 | 6e 61 6c 20 6c 69 6e 6b 20 61 6e 64 20 77 69 74 68 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 20 | nal.link.and.with.metric.type.2. |
| 137e40 | 74 68 65 20 70 72 65 66 65 72 65 6e 63 65 20 69 73 20 67 69 76 65 6e 20 74 6f 20 74 68 65 20 70 | the.preference.is.given.to.the.p |
| 137e60 | 61 74 68 20 77 68 69 63 68 20 6c 69 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 | ath.which.lies.through.the.route |
| 137e80 | 72 20 77 69 74 68 20 61 20 73 68 6f 72 74 65 72 20 69 6e 74 65 72 6e 61 6c 20 70 61 74 68 2e 20 | r.with.a.shorter.internal.path.. |
| 137ea0 | 49 66 20 74 77 6f 20 64 69 66 66 65 72 65 6e 74 20 72 6f 75 74 65 72 73 20 61 64 76 65 72 74 69 | If.two.different.routers.adverti |
| 137ec0 | 73 65 64 20 74 77 6f 20 6c 69 6e 6b 73 20 74 6f 20 74 68 65 20 73 61 6d 65 20 65 78 74 65 72 6e | sed.two.links.to.the.same.extern |
| 137ee0 | 61 6c 20 64 65 73 74 69 6d 61 74 69 6f 6e 20 62 75 74 20 77 69 74 68 20 64 69 66 66 65 72 65 6e | al.destimation.but.with.differen |
| 137f00 | 74 20 6d 65 74 72 69 63 20 74 79 70 65 2c 20 6d 65 74 72 69 63 20 74 79 70 65 20 31 20 69 73 20 | t.metric.type,.metric.type.1.is. |
| 137f20 | 70 72 65 66 65 72 72 65 64 2e 20 49 66 20 74 79 70 65 20 6f 66 20 61 20 6d 65 74 72 69 63 20 6c | preferred..If.type.of.a.metric.l |
| 137f40 | 65 66 74 20 75 6e 64 65 66 69 6e 65 64 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 63 6f | eft.undefined.the.router.will.co |
| 137f60 | 6e 73 69 64 65 72 20 74 68 65 73 65 20 65 78 74 65 72 6e 61 6c 20 6c 69 6e 6b 73 20 74 6f 20 68 | nsider.these.external.links.to.h |
| 137f80 | 61 76 65 20 61 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 74 79 70 65 20 32 2e 00 54 68 69 | ave.a.default.metric.type.2..Thi |
| 137fa0 | 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 6e 65 74 77 6f 72 6b 20 74 79 70 65 | s.command.specifies.network.type |
| 137fc0 | 20 74 6f 20 50 6f 69 6e 74 2d 74 6f 2d 50 6f 69 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 | .to.Point-to-Point..The.default. |
| 137fe0 | 6e 65 74 77 6f 72 6b 20 74 79 70 65 20 69 73 20 62 72 6f 61 64 63 61 73 74 2e 00 54 68 69 73 20 | network.type.is.broadcast..This. |
| 138000 | 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 42 47 50 20 63 6f 6e 73 69 | command.specifies.that.BGP.consi |
| 138020 | 64 65 72 73 20 74 68 65 20 4d 45 44 20 77 68 65 6e 20 63 6f 6d 70 61 72 69 6e 67 20 72 6f 75 74 | ders.the.MED.when.comparing.rout |
| 138040 | 65 73 20 6f 72 69 67 69 6e 61 74 65 64 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 73 75 62 | es.originated.from.different.sub |
| 138060 | 2d 41 53 73 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 65 64 65 72 61 74 69 6f 6e 20 74 6f | -ASs.within.the.confederation.to |
| 138080 | 20 77 68 69 63 68 20 74 68 69 73 20 42 47 50 20 73 70 65 61 6b 65 72 20 62 65 6c 6f 6e 67 73 2e | .which.this.BGP.speaker.belongs. |
| 1380a0 | 20 54 68 65 20 64 65 66 61 75 6c 74 20 73 74 61 74 65 2c 20 77 68 65 72 65 20 74 68 65 20 4d 45 | .The.default.state,.where.the.ME |
| 1380c0 | 44 20 61 74 74 72 69 62 75 74 65 20 69 73 20 6e 6f 74 20 63 6f 6e 73 69 64 65 72 65 64 2e 00 54 | D.attribute.is.not.considered..T |
| 1380e0 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 42 47 50 20 64 | his.command.specifies.that.BGP.d |
| 138100 | 65 63 69 73 69 6f 6e 20 70 72 6f 63 65 73 73 20 73 68 6f 75 6c 64 20 63 6f 6e 73 69 64 65 72 20 | ecision.process.should.consider. |
| 138120 | 70 61 74 68 73 20 6f 66 20 65 71 75 61 6c 20 41 53 5f 50 41 54 48 20 6c 65 6e 67 74 68 20 63 61 | paths.of.equal.AS_PATH.length.ca |
| 138140 | 6e 64 69 64 61 74 65 73 20 66 6f 72 20 6d 75 6c 74 69 70 61 74 68 20 63 6f 6d 70 75 74 61 74 69 | ndidates.for.multipath.computati |
| 138160 | 6f 6e 2e 20 57 69 74 68 6f 75 74 20 74 68 65 20 6b 6e 6f 62 2c 20 74 68 65 20 65 6e 74 69 72 65 | on..Without.the.knob,.the.entire |
| 138180 | 20 41 53 5f 50 41 54 48 20 6d 75 73 74 20 6d 61 74 63 68 20 66 6f 72 20 6d 75 6c 74 69 70 61 74 | .AS_PATH.must.match.for.multipat |
| 1381a0 | 68 20 63 6f 6d 70 75 74 61 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 | h.computation..This.command.spec |
| 1381c0 | 69 66 69 65 73 20 74 68 61 74 20 61 20 72 6f 75 74 65 20 77 69 74 68 20 61 20 4d 45 44 20 69 73 | ifies.that.a.route.with.a.MED.is |
| 1381e0 | 20 61 6c 77 61 79 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f 20 62 65 20 62 65 74 74 65 72 20 | .always.considered.to.be.better. |
| 138200 | 74 68 61 6e 20 61 20 72 6f 75 74 65 20 77 69 74 68 6f 75 74 20 61 20 4d 45 44 20 62 79 20 63 61 | than.a.route.without.a.MED.by.ca |
| 138220 | 75 73 69 6e 67 20 74 68 65 20 6d 69 73 73 69 6e 67 20 4d 45 44 20 61 74 74 72 69 62 75 74 65 20 | using.the.missing.MED.attribute. |
| 138240 | 74 6f 20 68 61 76 65 20 61 20 76 61 6c 75 65 20 6f 66 20 69 6e 66 69 6e 69 74 79 2e 20 54 68 65 | to.have.a.value.of.infinity..The |
| 138260 | 20 64 65 66 61 75 6c 74 20 73 74 61 74 65 2c 20 77 68 65 72 65 20 74 68 65 20 6d 69 73 73 69 6e | .default.state,.where.the.missin |
| 138280 | 67 20 4d 45 44 20 61 74 74 72 69 62 75 74 65 20 69 73 20 63 6f 6e 73 69 64 65 72 65 64 20 74 6f | g.MED.attribute.is.considered.to |
| 1382a0 | 20 68 61 76 65 20 61 20 76 61 6c 75 65 20 6f 66 20 7a 65 72 6f 2e 00 54 68 69 73 20 63 6f 6d 6d | .have.a.value.of.zero..This.comm |
| 1382c0 | 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 20 72 6f 75 74 65 20 75 70 64 61 74 65 73 | and.specifies.that.route.updates |
| 1382e0 | 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 69 73 20 6e 65 69 67 68 62 6f 72 20 77 69 6c | .received.from.this.neighbor.wil |
| 138300 | 6c 20 62 65 20 73 74 6f 72 65 64 20 75 6e 6d 6f 64 69 66 69 65 64 2c 20 72 65 67 61 72 64 6c 65 | l.be.stored.unmodified,.regardle |
| 138320 | 73 73 20 6f 66 20 74 68 65 20 69 6e 62 6f 75 6e 64 20 70 6f 6c 69 63 79 2e 20 57 68 65 6e 20 69 | ss.of.the.inbound.policy..When.i |
| 138340 | 6e 62 6f 75 6e 64 20 73 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 65 | nbound.soft.reconfiguration.is.e |
| 138360 | 6e 61 62 6c 65 64 2c 20 74 68 65 20 73 74 6f 72 65 64 20 75 70 64 61 74 65 73 20 61 72 65 20 70 | nabled,.the.stored.updates.are.p |
| 138380 | 72 6f 63 65 73 73 65 64 20 62 79 20 74 68 65 20 6e 65 77 20 70 6f 6c 69 63 79 20 63 6f 6e 66 69 | rocessed.by.the.new.policy.confi |
| 1383a0 | 67 75 72 61 74 69 6f 6e 20 74 6f 20 63 72 65 61 74 65 20 6e 65 77 20 69 6e 62 6f 75 6e 64 20 75 | guration.to.create.new.inbound.u |
| 1383c0 | 70 64 61 74 65 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 | pdates..This.command.specifies.t |
| 1383e0 | 68 61 74 20 73 69 6d 70 6c 65 20 70 61 73 73 77 6f 72 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 | hat.simple.password.authenticati |
| 138400 | 6f 6e 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 20 67 69 76 65 6e 20 | on.should.be.used.for.the.given. |
| 138420 | 61 72 65 61 2e 20 54 68 65 20 70 61 73 73 77 6f 72 64 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 | area..The.password.must.also.be. |
| 138440 | 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 62 61 | configured.on.a.per-interface.ba |
| 138460 | 73 69 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 61 74 | sis..This.command.specifies.that |
| 138480 | 20 74 68 65 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 72 69 62 75 74 65 20 73 68 6f 75 6c 64 20 | .the.community.attribute.should. |
| 1384a0 | 6e 6f 74 20 62 65 20 73 65 6e 74 20 69 6e 20 72 6f 75 74 65 20 75 70 64 61 74 65 73 20 74 6f 20 | not.be.sent.in.route.updates.to. |
| 1384c0 | 61 20 70 65 65 72 2e 20 42 79 20 64 65 66 61 75 6c 74 20 63 6f 6d 6d 75 6e 69 74 79 20 61 74 74 | a.peer..By.default.community.att |
| 1384e0 | 72 69 62 75 74 65 20 69 73 20 73 65 6e 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | ribute.is.sent..This.command.spe |
| 138500 | 63 69 66 69 65 73 20 74 68 61 74 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 63 6f 6e 66 65 64 | cifies.that.the.length.of.confed |
| 138520 | 65 72 61 74 69 6f 6e 20 70 61 74 68 20 73 65 74 73 20 61 6e 64 20 73 65 71 75 65 6e 63 65 73 20 | eration.path.sets.and.sequences. |
| 138540 | 73 68 6f 75 6c 64 20 62 65 20 74 61 6b 65 6e 20 69 6e 74 6f 20 61 63 63 6f 75 6e 74 20 64 75 72 | should.be.taken.into.account.dur |
| 138560 | 69 6e 67 20 74 68 65 20 42 47 50 20 62 65 73 74 20 70 61 74 68 20 64 65 63 69 73 69 6f 6e 20 70 | ing.the.BGP.best.path.decision.p |
| 138580 | 72 6f 63 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 | rocess..This.command.specifies.t |
| 1385a0 | 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 6e 65 69 67 68 62 6f 72 69 6e 67 | he.IP.address.of.the.neighboring |
| 1385c0 | 20 64 65 76 69 63 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | .device..This.command.specifies. |
| 1385e0 | 74 68 65 20 4f 53 50 46 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 28 73 29 2e 20 49 | the.OSPF.enabled.interface(s)..I |
| 138600 | 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 68 61 73 20 61 6e 20 61 64 64 72 65 73 73 20 66 | f.the.interface.has.an.address.f |
| 138620 | 72 6f 6d 20 64 65 66 69 6e 65 64 20 72 61 6e 67 65 20 74 68 65 6e 20 74 68 65 20 63 6f 6d 6d 61 | rom.defined.range.then.the.comma |
| 138640 | 6e 64 20 65 6e 61 62 6c 65 73 20 4f 53 50 46 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 | nd.enables.OSPF.on.this.interfac |
| 138660 | 65 20 73 6f 20 72 6f 75 74 65 72 20 63 61 6e 20 70 72 6f 76 69 64 65 20 6e 65 74 77 6f 72 6b 20 | e.so.router.can.provide.network. |
| 138680 | 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 6f 74 68 65 72 20 6f 73 70 66 20 72 6f | information.to.the.other.ospf.ro |
| 1386a0 | 75 74 65 72 73 20 76 69 61 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 63 | uters.via.this.interface..This.c |
| 1386c0 | 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 4f 53 50 46 76 33 20 65 6e 61 62 | ommand.specifies.the.OSPFv3.enab |
| 1386e0 | 6c 65 64 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 61 | led.interface..This.command.is.a |
| 138700 | 6c 73 6f 20 75 73 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 | lso.used.to.enable.the.OSPF.proc |
| 138720 | 65 73 73 2e 20 54 68 65 20 61 72 65 61 20 6e 75 6d 62 65 72 20 63 61 6e 20 62 65 20 73 70 65 63 | ess..The.area.number.can.be.spec |
| 138740 | 69 66 69 65 64 20 69 6e 20 64 65 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 69 6e 20 74 68 65 | ified.in.decimal.notation.in.the |
| 138760 | 20 72 61 6e 67 65 20 66 72 6f 6d 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 20 4f 72 20 | .range.from.0.to.4294967295..Or. |
| 138780 | 69 74 20 63 61 6e 20 62 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 20 64 6f 74 74 65 64 20 64 65 | it.can.be.specified.in.dotted.de |
| 1387a0 | 63 69 6d 61 6c 20 6e 6f 74 61 74 69 6f 6e 20 73 69 6d 69 6c 61 72 20 74 6f 20 69 70 20 61 64 64 | cimal.notation.similar.to.ip.add |
| 1387c0 | 72 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 | ress..This.command.specifies.the |
| 1387e0 | 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 4e 53 53 41 20 54 6f 74 61 6c 6c 79 20 53 74 75 62 20 | .area.to.be.a.NSSA.Totally.Stub. |
| 138800 | 41 72 65 61 2e 20 41 42 52 73 20 66 6f 72 20 73 75 63 68 20 61 6e 20 61 72 65 61 20 64 6f 20 6e | Area..ABRs.for.such.an.area.do.n |
| 138820 | 6f 74 20 6e 65 65 64 20 74 6f 20 70 61 73 73 20 4e 65 74 77 6f 72 6b 2d 53 75 6d 6d 61 72 79 20 | ot.need.to.pass.Network-Summary. |
| 138840 | 28 74 79 70 65 2d 33 29 20 4c 53 41 73 20 28 65 78 63 65 70 74 20 74 68 65 20 64 65 66 61 75 6c | (type-3).LSAs.(except.the.defaul |
| 138860 | 74 20 73 75 6d 6d 61 72 79 20 72 6f 75 74 65 29 2c 20 41 53 42 52 2d 53 75 6d 6d 61 72 79 20 4c | t.summary.route),.ASBR-Summary.L |
| 138880 | 53 41 73 20 28 74 79 70 65 2d 34 29 20 61 6e 64 20 41 53 2d 45 78 74 65 72 6e 61 6c 20 4c 53 41 | SAs.(type-4).and.AS-External.LSA |
| 1388a0 | 73 20 28 74 79 70 65 2d 35 29 20 69 6e 74 6f 20 74 68 65 20 61 72 65 61 2e 20 42 75 74 20 54 79 | s.(type-5).into.the.area..But.Ty |
| 1388c0 | 70 65 2d 37 20 4c 53 41 73 20 74 68 61 74 20 63 6f 6e 76 65 72 74 20 74 6f 20 54 79 70 65 2d 35 | pe-7.LSAs.that.convert.to.Type-5 |
| 1388e0 | 20 61 74 20 74 68 65 20 4e 53 53 41 20 41 42 52 20 61 72 65 20 61 6c 6c 6f 77 65 64 2e 00 54 68 | .at.the.NSSA.ABR.are.allowed..Th |
| 138900 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 6f | is.command.specifies.the.area.to |
| 138920 | 20 62 65 20 61 20 4e 6f 74 20 53 6f 20 53 74 75 62 62 79 20 41 72 65 61 2e 20 45 78 74 65 72 6e | .be.a.Not.So.Stubby.Area..Extern |
| 138940 | 61 6c 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 69 6d 70 6f 72 74 | al.routing.information.is.import |
| 138960 | 65 64 20 69 6e 74 6f 20 61 6e 20 4e 53 53 41 20 69 6e 20 54 79 70 65 2d 37 20 4c 53 41 73 2e 20 | ed.into.an.NSSA.in.Type-7.LSAs.. |
| 138980 | 54 79 70 65 2d 37 20 4c 53 41 73 20 61 72 65 20 73 69 6d 69 6c 61 72 20 74 6f 20 54 79 70 65 2d | Type-7.LSAs.are.similar.to.Type- |
| 1389a0 | 35 20 41 53 2d 65 78 74 65 72 6e 61 6c 20 4c 53 41 73 2c 20 65 78 63 65 70 74 20 74 68 61 74 20 | 5.AS-external.LSAs,.except.that. |
| 1389c0 | 74 68 65 79 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 66 6c 6f 6f 64 65 64 20 69 6e 74 6f 20 74 68 | they.can.only.be.flooded.into.th |
| 1389e0 | 65 20 4e 53 53 41 2e 20 49 6e 20 6f 72 64 65 72 20 74 6f 20 66 75 72 74 68 65 72 20 70 72 6f 70 | e.NSSA..In.order.to.further.prop |
| 138a00 | 61 67 61 74 65 20 74 68 65 20 4e 53 53 41 20 65 78 74 65 72 6e 61 6c 20 69 6e 66 6f 72 6d 61 74 | agate.the.NSSA.external.informat |
| 138a20 | 69 6f 6e 2c 20 74 68 65 20 54 79 70 65 2d 37 20 4c 53 41 20 6d 75 73 74 20 62 65 20 74 72 61 6e | ion,.the.Type-7.LSA.must.be.tran |
| 138a40 | 73 6c 61 74 65 64 20 74 6f 20 61 20 54 79 70 65 2d 35 20 41 53 2d 65 78 74 65 72 6e 61 6c 2d 4c | slated.to.a.Type-5.AS-external-L |
| 138a60 | 53 41 20 62 79 20 74 68 65 20 4e 53 53 41 20 41 42 52 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | SA.by.the.NSSA.ABR..This.command |
| 138a80 | 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 53 74 75 62 | .specifies.the.area.to.be.a.Stub |
| 138aa0 | 20 41 72 65 61 2e 20 54 68 61 74 20 69 73 2c 20 61 6e 20 61 72 65 61 20 77 68 65 72 65 20 6e 6f | .Area..That.is,.an.area.where.no |
| 138ac0 | 20 72 6f 75 74 65 72 20 6f 72 69 67 69 6e 61 74 65 73 20 72 6f 75 74 65 73 20 65 78 74 65 72 6e | .router.originates.routes.extern |
| 138ae0 | 61 6c 20 74 6f 20 4f 53 50 46 20 61 6e 64 20 68 65 6e 63 65 20 61 6e 20 61 72 65 61 20 77 68 65 | al.to.OSPF.and.hence.an.area.whe |
| 138b00 | 72 65 20 61 6c 6c 20 65 78 74 65 72 6e 61 6c 20 72 6f 75 74 65 73 20 61 72 65 20 76 69 61 20 74 | re.all.external.routes.are.via.t |
| 138b20 | 68 65 20 41 42 52 28 73 29 2e 20 48 65 6e 63 65 2c 20 41 42 52 73 20 66 6f 72 20 73 75 63 68 20 | he.ABR(s)..Hence,.ABRs.for.such. |
| 138b40 | 61 6e 20 61 72 65 61 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 74 6f 20 70 61 73 73 20 41 53 2d 45 | an.area.do.not.need.to.pass.AS-E |
| 138b60 | 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 28 74 79 70 65 2d 35 29 20 6f 72 20 41 53 42 52 2d 53 75 | xternal.LSAs.(type-5).or.ASBR-Su |
| 138b80 | 6d 6d 61 72 79 20 4c 53 41 73 20 28 74 79 70 65 2d 34 29 20 69 6e 74 6f 20 74 68 65 20 61 72 65 | mmary.LSAs.(type-4).into.the.are |
| 138ba0 | 61 2e 20 54 68 65 79 20 6e 65 65 64 20 6f 6e 6c 79 20 70 61 73 73 20 4e 65 74 77 6f 72 6b 2d 53 | a..They.need.only.pass.Network-S |
| 138bc0 | 75 6d 6d 61 72 79 20 28 74 79 70 65 2d 33 29 20 4c 53 41 73 20 69 6e 74 6f 20 73 75 63 68 20 61 | ummary.(type-3).LSAs.into.such.a |
| 138be0 | 6e 20 61 72 65 61 2c 20 61 6c 6f 6e 67 20 77 69 74 68 20 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 | n.area,.along.with.a.default-rou |
| 138c00 | 74 65 20 73 75 6d 6d 61 72 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 | te.summary..This.command.specifi |
| 138c20 | 65 73 20 74 68 65 20 61 72 65 61 20 74 6f 20 62 65 20 61 20 54 6f 74 61 6c 6c 79 20 53 74 75 62 | es.the.area.to.be.a.Totally.Stub |
| 138c40 | 20 41 72 65 61 2e 20 49 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 73 74 75 62 20 61 72 65 61 20 | .Area..In.addition.to.stub.area. |
| 138c60 | 6c 69 6d 69 74 61 74 69 6f 6e 73 20 74 68 69 73 20 61 72 65 61 20 74 79 70 65 20 70 72 65 76 65 | limitations.this.area.type.preve |
| 138c80 | 6e 74 73 20 61 6e 20 41 42 52 20 66 72 6f 6d 20 69 6e 6a 65 63 74 69 6e 67 20 4e 65 74 77 6f 72 | nts.an.ABR.from.injecting.Networ |
| 138ca0 | 6b 2d 53 75 6d 6d 61 72 79 20 28 74 79 70 65 2d 33 29 20 4c 53 41 73 20 69 6e 74 6f 20 74 68 65 | k-Summary.(type-3).LSAs.into.the |
| 138cc0 | 20 73 70 65 63 69 66 69 65 64 20 73 74 75 62 20 61 72 65 61 2e 20 4f 6e 6c 79 20 64 65 66 61 75 | .specified.stub.area..Only.defau |
| 138ce0 | 6c 74 20 73 75 6d 6d 61 72 79 20 72 6f 75 74 65 20 69 73 20 61 6c 6c 6f 77 65 64 2e 00 54 68 69 | lt.summary.route.is.allowed..Thi |
| 138d00 | 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 62 61 73 65 20 72 65 63 | s.command.specifies.the.base.rec |
| 138d20 | 65 69 76 65 20 63 6f 73 74 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 46 6f | eive.cost.for.this.interface..Fo |
| 138d40 | 72 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2c 20 69 74 20 73 70 65 63 69 66 | r.wireless.interfaces,.it.specif |
| 138d60 | 69 65 73 20 74 68 65 20 6d 75 6c 74 69 70 6c 69 65 72 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 70 | ies.the.multiplier.used.for.comp |
| 138d80 | 75 74 69 6e 67 20 74 68 65 20 45 54 58 20 72 65 63 65 70 74 69 6f 6e 20 63 6f 73 74 20 28 64 65 | uting.the.ETX.reception.cost.(de |
| 138da0 | 66 61 75 6c 74 20 32 35 36 29 3b 20 66 6f 72 20 77 69 72 65 64 20 69 6e 74 65 72 66 61 63 65 73 | fault.256);.for.wired.interfaces |
| 138dc0 | 2c 20 69 74 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 63 6f 73 74 20 74 68 61 74 20 77 69 6c | ,.it.specifies.the.cost.that.wil |
| 138de0 | 6c 20 62 65 20 61 64 76 65 72 74 69 73 65 64 20 74 6f 20 6e 65 69 67 68 62 6f 75 72 73 2e 00 54 | l.be.advertised.to.neighbours..T |
| 138e00 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 64 65 63 61 79 20 | his.command.specifies.the.decay. |
| 138e20 | 66 61 63 74 6f 72 20 66 6f 72 20 74 68 65 20 65 78 70 6f 6e 65 6e 74 69 61 6c 20 6d 6f 76 69 6e | factor.for.the.exponential.movin |
| 138e40 | 67 20 61 76 65 72 61 67 65 20 6f 66 20 52 54 54 20 73 61 6d 70 6c 65 73 2c 20 69 6e 20 75 6e 69 | g.average.of.RTT.samples,.in.uni |
| 138e60 | 74 73 20 6f 66 20 31 2f 32 35 36 2e 20 48 69 67 68 65 72 20 76 61 6c 75 65 73 20 64 69 73 63 61 | ts.of.1/256..Higher.values.disca |
| 138e80 | 72 64 20 6f 6c 64 20 73 61 6d 70 6c 65 73 20 66 61 73 74 65 72 2e 20 54 68 65 20 64 65 66 61 75 | rd.old.samples.faster..The.defau |
| 138ea0 | 6c 74 20 69 73 20 34 32 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 | lt.is.42..This.command.specifies |
| 138ec0 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 76 61 | .the.default.local.preference.va |
| 138ee0 | 6c 75 65 2e 20 54 68 65 20 6c 6f 63 61 6c 20 70 72 65 66 65 72 65 6e 63 65 20 72 61 6e 67 65 20 | lue..The.local.preference.range. |
| 138f00 | 69 73 20 30 20 74 6f 20 34 32 39 34 39 36 37 32 39 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 | is.0.to.4294967295..This.command |
| 138f20 | 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 64 65 66 61 75 6c 74 20 6d 65 74 72 69 63 20 76 61 | .specifies.the.default.metric.va |
| 138f40 | 6c 75 65 20 6f 66 20 72 65 64 69 73 74 72 69 62 75 74 65 64 20 72 6f 75 74 65 73 2e 20 54 68 65 | lue.of.redistributed.routes..The |
| 138f60 | 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 32 31 34 2e 00 | .metric.range.is.0.to.16777214.. |
| 138f80 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 67 61 72 62 61 | This.command.specifies.the.garba |
| 138fa0 | 67 65 2d 63 6f 6c 6c 65 63 74 69 6f 6e 20 74 69 6d 65 72 2e 20 55 70 6f 6e 20 65 78 70 69 72 61 | ge-collection.timer..Upon.expira |
| 138fc0 | 74 69 6f 6e 20 6f 66 20 74 68 65 20 67 61 72 62 61 67 65 2d 63 6f 6c 6c 65 63 74 69 6f 6e 20 74 | tion.of.the.garbage-collection.t |
| 138fe0 | 69 6d 65 72 2c 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 66 69 6e 61 6c 6c 79 20 72 65 6d 6f 76 | imer,.the.route.is.finally.remov |
| 139000 | 65 64 20 66 72 6f 6d 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 2e 20 54 68 65 20 74 | ed.from.the.routing.table..The.t |
| 139020 | 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 6f 20 32 31 34 37 34 38 33 36 34 37 2e 20 54 68 | ime.range.is.5.to.2147483647..Th |
| 139040 | 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 32 30 20 73 65 63 6f 6e 64 73 2e 00 | e.default.value.is.120.seconds.. |
| 139060 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 67 69 76 65 6e | This.command.specifies.the.given |
| 139080 | 20 6e 65 69 67 68 62 6f 72 20 61 73 20 72 6f 75 74 65 20 72 65 66 6c 65 63 74 6f 72 20 63 6c 69 | .neighbor.as.route.reflector.cli |
| 1390a0 | 65 6e 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 | ent..This.command.specifies.the. |
| 1390c0 | 6c 65 6e 67 74 68 20 6f 66 20 74 69 6d 65 2c 20 69 6e 20 73 65 63 6f 6e 64 73 2c 20 62 65 66 6f | length.of.time,.in.seconds,.befo |
| 1390e0 | 72 65 20 74 68 65 20 72 6f 75 74 69 6e 67 20 64 65 76 69 63 65 20 73 65 6e 64 73 20 68 65 6c 6c | re.the.routing.device.sends.hell |
| 139100 | 6f 20 70 61 63 6b 65 74 73 20 6f 75 74 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 62 | o.packets.out.of.the.interface.b |
| 139120 | 65 66 6f 72 65 20 69 74 20 65 73 74 61 62 6c 69 73 68 65 73 20 61 64 6a 61 63 65 6e 63 79 20 77 | efore.it.establishes.adjacency.w |
| 139140 | 69 74 68 20 61 20 6e 65 69 67 68 62 6f 72 2e 20 54 68 65 20 72 61 6e 67 65 20 69 73 20 31 20 74 | ith.a.neighbor..The.range.is.1.t |
| 139160 | 6f 20 36 35 35 33 35 20 73 65 63 6f 6e 64 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c | o.65535.seconds..The.default.val |
| 139180 | 75 65 20 69 73 20 36 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | ue.is.60.seconds..This.command.s |
| 1391a0 | 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 52 54 54 2c 20 69 6e 20 6d 69 6c | pecifies.the.maximum.RTT,.in.mil |
| 1391c0 | 6c 69 73 65 63 6f 6e 64 73 2c 20 61 62 6f 76 65 20 77 68 69 63 68 20 77 65 20 64 6f 6e 27 74 20 | liseconds,.above.which.we.don't. |
| 1391e0 | 69 6e 63 72 65 61 73 65 20 74 68 65 20 63 6f 73 74 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 72 | increase.the.cost.to.a.neighbour |
| 139200 | 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 31 32 30 20 6d 73 2e 00 54 68 69 73 20 63 6f | ..The.default.is.120.ms..This.co |
| 139220 | 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 63 6f 73 74 | mmand.specifies.the.maximum.cost |
| 139240 | 20 61 64 64 65 64 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 72 20 62 65 63 61 75 73 65 20 6f 66 | .added.to.a.neighbour.because.of |
| 139260 | 20 52 54 54 2c 20 69 2e 65 2e 20 77 68 65 6e 20 74 68 65 20 52 54 54 20 69 73 20 68 69 67 68 65 | .RTT,.i.e..when.the.RTT.is.highe |
| 139280 | 72 20 6f 72 20 65 71 75 61 6c 20 74 68 61 6e 20 72 74 74 2d 6d 61 78 2e 20 54 68 65 20 64 65 66 | r.or.equal.than.rtt-max..The.def |
| 1392a0 | 61 75 6c 74 20 69 73 20 31 35 30 2e 20 53 65 74 74 69 6e 67 20 69 74 20 74 6f 20 30 20 65 66 66 | ault.is.150..Setting.it.to.0.eff |
| 1392c0 | 65 63 74 69 76 65 6c 79 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 52 | ectively.disables.the.use.of.a.R |
| 1392e0 | 54 54 2d 62 61 73 65 64 20 63 6f 73 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 | TT-based.cost..This.command.spec |
| 139300 | 69 66 69 65 73 20 74 68 65 20 6d 69 6e 69 6d 75 6d 20 52 54 54 2c 20 69 6e 20 6d 69 6c 6c 69 73 | ifies.the.minimum.RTT,.in.millis |
| 139320 | 65 63 6f 6e 64 73 2c 20 73 74 61 72 74 69 6e 67 20 66 72 6f 6d 20 77 68 69 63 68 20 77 65 20 69 | econds,.starting.from.which.we.i |
| 139340 | 6e 63 72 65 61 73 65 20 74 68 65 20 63 6f 73 74 20 74 6f 20 61 20 6e 65 69 67 68 62 6f 75 72 2e | ncrease.the.cost.to.a.neighbour. |
| 139360 | 20 54 68 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 63 6f 73 74 20 69 73 20 6c 69 6e 65 61 72 20 69 | .The.additional.cost.is.linear.i |
| 139380 | 6e 20 28 72 74 74 20 2d 20 72 74 74 2d 6d 69 6e 29 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 | n.(rtt.-.rtt-min)..The.default.i |
| 1393a0 | 73 20 31 30 20 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 | s.10.ms..This.command.specifies. |
| 1393c0 | 74 68 65 20 6d 69 6e 69 6d 75 6d 20 72 6f 75 74 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 | the.minimum.route.advertisement. |
| 1393e0 | 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 74 68 65 20 70 65 65 72 2e 20 54 68 65 20 69 6e 74 65 72 | interval.for.the.peer..The.inter |
| 139400 | 76 61 6c 20 76 61 6c 75 65 20 69 73 20 30 20 74 6f 20 36 30 30 20 73 65 63 6f 6e 64 73 2c 20 77 | val.value.is.0.to.600.seconds,.w |
| 139420 | 69 74 68 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 20 69 6e | ith.the.default.advertisement.in |
| 139440 | 74 65 72 76 61 6c 20 62 65 69 6e 67 20 30 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 | terval.being.0..This.command.spe |
| 139460 | 63 69 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 72 20 70 72 69 6f 72 69 74 79 20 76 61 6c 75 65 | cifies.the.router.priority.value |
| 139480 | 20 6f 66 20 74 68 65 20 6e 6f 6e 62 72 6f 61 64 63 61 73 74 20 6e 65 69 67 68 62 6f 72 20 61 73 | .of.the.nonbroadcast.neighbor.as |
| 1394a0 | 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 73 70 65 | sociated.with.the.IP.address.spe |
| 1394c0 | 63 69 66 69 65 64 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 30 2e 20 54 68 69 73 20 6b | cified..The.default.is.0..This.k |
| 1394e0 | 65 79 77 6f 72 64 20 64 6f 65 73 20 6e 6f 74 20 61 70 70 6c 79 20 74 6f 20 70 6f 69 6e 74 2d 74 | eyword.does.not.apply.to.point-t |
| 139500 | 6f 2d 6d 75 6c 74 69 70 6f 69 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 54 68 69 73 20 63 6f | o-multipoint.interfaces..This.co |
| 139520 | 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 72 6f 75 74 65 72 2d 49 44 2e 20 49 | mmand.specifies.the.router-ID..I |
| 139540 | 66 20 72 6f 75 74 65 72 20 49 44 20 69 73 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 69 74 20 | f.router.ID.is.not.specified.it. |
| 139560 | 77 69 6c 6c 20 75 73 65 20 74 68 65 20 68 69 67 68 65 73 74 20 69 6e 74 65 72 66 61 63 65 20 49 | will.use.the.highest.interface.I |
| 139580 | 50 20 61 64 64 72 65 73 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 | P.address..This.command.specifie |
| 1395a0 | 73 20 74 68 65 20 74 69 6d 65 20 63 6f 6e 73 74 61 6e 74 2c 20 69 6e 20 73 65 63 6f 6e 64 73 2c | s.the.time.constant,.in.seconds, |
| 1395c0 | 20 6f 66 20 74 68 65 20 73 6d 6f 6f 74 68 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 20 75 73 65 64 | .of.the.smoothing.algorithm.used |
| 1395e0 | 20 66 6f 72 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 68 79 73 74 65 72 65 73 69 73 2e 20 4c 61 | .for.implementing.hysteresis..La |
| 139600 | 72 67 65 72 20 76 61 6c 75 65 73 20 72 65 64 75 63 65 20 72 6f 75 74 65 20 6f 73 63 69 6c 6c 61 | rger.values.reduce.route.oscilla |
| 139620 | 74 69 6f 6e 20 61 74 20 74 68 65 20 63 6f 73 74 20 6f 66 20 76 65 72 79 20 73 6c 69 67 68 74 6c | tion.at.the.cost.of.very.slightl |
| 139640 | 79 20 69 6e 63 72 65 61 73 69 6e 67 20 63 6f 6e 76 65 72 67 65 6e 63 65 20 74 69 6d 65 2e 20 54 | y.increasing.convergence.time..T |
| 139660 | 68 65 20 76 61 6c 75 65 20 30 20 64 69 73 61 62 6c 65 73 20 68 79 73 74 65 72 65 73 69 73 2c 20 | he.value.0.disables.hysteresis,. |
| 139680 | 61 6e 64 20 69 73 20 73 75 69 74 61 62 6c 65 20 66 6f 72 20 77 69 72 65 64 20 6e 65 74 77 6f 72 | and.is.suitable.for.wired.networ |
| 1396a0 | 6b 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 34 20 73 2e 00 54 68 69 73 20 63 6f 6d | ks..The.default.is.4.s..This.com |
| 1396c0 | 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 | mand.specifies.the.time.in.milli |
| 1396e0 | 73 65 63 6f 6e 64 73 20 61 66 74 65 72 20 77 68 69 63 68 20 61 6e 20 27 69 6d 70 6f 72 74 61 6e | seconds.after.which.an.'importan |
| 139700 | 74 27 20 72 65 71 75 65 73 74 20 6f 72 20 75 70 64 61 74 65 20 77 69 6c 6c 20 62 65 20 72 65 73 | t'.request.or.update.will.be.res |
| 139720 | 65 6e 74 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 32 30 30 30 20 6d 73 2e 00 54 68 69 | ent..The.default.is.2000.ms..Thi |
| 139740 | 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 69 6e 20 | s.command.specifies.the.time.in. |
| 139760 | 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 74 77 6f 20 73 63 68 65 64 75 6c | milliseconds.between.two.schedul |
| 139780 | 65 64 20 68 65 6c 6c 6f 73 2e 20 4f 6e 20 77 69 72 65 64 20 6c 69 6e 6b 73 2c 20 42 61 62 65 6c | ed.hellos..On.wired.links,.Babel |
| 1397a0 | 20 6e 6f 74 69 63 65 73 20 61 20 6c 69 6e 6b 20 66 61 69 6c 75 72 65 20 77 69 74 68 69 6e 20 74 | .notices.a.link.failure.within.t |
| 1397c0 | 77 6f 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c 73 3b 20 6f 6e 20 77 69 72 65 6c 65 73 73 20 | wo.hello.intervals;.on.wireless. |
| 1397e0 | 6c 69 6e 6b 73 2c 20 74 68 65 20 6c 69 6e 6b 20 71 75 61 6c 69 74 79 20 76 61 6c 75 65 20 69 73 | links,.the.link.quality.value.is |
| 139800 | 20 72 65 65 73 74 69 6d 61 74 65 64 20 61 74 20 65 76 65 72 79 20 68 65 6c 6c 6f 20 69 6e 74 65 | .reestimated.at.every.hello.inte |
| 139820 | 72 76 61 6c 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 34 30 30 30 20 6d 73 2e 00 54 68 | rval..The.default.is.4000.ms..Th |
| 139840 | 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 69 6d 65 20 69 6e | is.command.specifies.the.time.in |
| 139860 | 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 74 77 6f 20 73 63 68 65 64 75 | .milliseconds.between.two.schedu |
| 139880 | 6c 65 64 20 75 70 64 61 74 65 73 2e 20 53 69 6e 63 65 20 42 61 62 65 6c 20 6d 61 6b 65 73 20 65 | led.updates..Since.Babel.makes.e |
| 1398a0 | 78 74 65 6e 73 69 76 65 20 75 73 65 20 6f 66 20 74 72 69 67 67 65 72 65 64 20 75 70 64 61 74 65 | xtensive.use.of.triggered.update |
| 1398c0 | 73 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 73 65 74 20 74 6f 20 66 61 69 72 6c 79 20 68 69 67 | s,.this.can.be.set.to.fairly.hig |
| 1398e0 | 68 20 76 61 6c 75 65 73 20 6f 6e 20 6c 69 6e 6b 73 20 77 69 74 68 20 6c 69 74 74 6c 65 20 70 61 | h.values.on.links.with.little.pa |
| 139900 | 63 6b 65 74 20 6c 6f 73 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 32 30 30 30 30 20 | cket.loss..The.default.is.20000. |
| 139920 | 6d 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 74 | ms..This.command.specifies.the.t |
| 139940 | 69 6d 65 6f 75 74 20 74 69 6d 65 72 2e 20 55 70 6f 6e 20 65 78 70 69 72 61 74 69 6f 6e 20 6f 66 | imeout.timer..Upon.expiration.of |
| 139960 | 20 74 68 65 20 74 69 6d 65 6f 75 74 2c 20 74 68 65 20 72 6f 75 74 65 20 69 73 20 6e 6f 20 6c 6f | .the.timeout,.the.route.is.no.lo |
| 139980 | 6e 67 65 72 20 76 61 6c 69 64 3b 20 68 6f 77 65 76 65 72 2c 20 69 74 20 69 73 20 72 65 74 61 69 | nger.valid;.however,.it.is.retai |
| 1399a0 | 6e 65 64 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 61 20 73 | ned.in.the.routing.table.for.a.s |
| 1399c0 | 68 6f 72 74 20 74 69 6d 65 20 73 6f 20 74 68 61 74 20 6e 65 69 67 68 62 6f 72 73 20 63 61 6e 20 | hort.time.so.that.neighbors.can. |
| 1399e0 | 62 65 20 6e 6f 74 69 66 69 65 64 20 74 68 61 74 20 74 68 65 20 72 6f 75 74 65 20 68 61 73 20 62 | be.notified.that.the.route.has.b |
| 139a00 | 65 65 6e 20 64 72 6f 70 70 65 64 2e 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 | een.dropped..The.time.range.is.5 |
| 139a20 | 20 74 6f 20 32 31 34 37 34 38 33 36 34 37 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 | .to.2147483647..The.default.valu |
| 139a40 | 65 20 69 73 20 31 38 30 20 73 65 63 6f 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 | e.is.180.seconds..This.command.s |
| 139a60 | 70 65 63 69 66 69 65 73 20 74 68 65 20 75 70 64 61 74 65 20 74 69 6d 65 72 2e 20 45 76 65 72 79 | pecifies.the.update.timer..Every |
| 139a80 | 20 75 70 64 61 74 65 20 74 69 6d 65 72 20 73 65 63 6f 6e 64 73 2c 20 74 68 65 20 52 49 50 20 70 | .update.timer.seconds,.the.RIP.p |
| 139aa0 | 72 6f 63 65 73 73 20 69 73 20 61 77 61 6b 65 6e 65 64 20 74 6f 20 73 65 6e 64 20 61 6e 20 75 6e | rocess.is.awakened.to.send.an.un |
| 139ac0 | 73 6f 6c 69 63 69 74 65 64 20 72 65 73 70 6f 6e 73 65 20 6d 65 73 73 61 67 65 20 63 6f 6e 74 61 | solicited.response.message.conta |
| 139ae0 | 69 6e 69 6e 67 20 74 68 65 20 63 6f 6d 70 6c 65 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 | ining.the.complete.routing.table |
| 139b00 | 20 74 6f 20 61 6c 6c 20 6e 65 69 67 68 62 6f 72 69 6e 67 20 52 49 50 20 72 6f 75 74 65 72 73 2e | .to.all.neighboring.RIP.routers. |
| 139b20 | 20 54 68 65 20 74 69 6d 65 20 72 61 6e 67 65 20 69 73 20 35 20 74 6f 20 32 31 34 37 34 38 33 36 | .The.time.range.is.5.to.21474836 |
| 139b40 | 34 37 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 30 20 73 65 63 6f | 47..The.default.value.is.30.seco |
| 139b60 | 6e 64 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 69 65 73 20 77 68 65 74 | nds..This.command.specifies.whet |
| 139b80 | 68 65 72 20 74 6f 20 70 65 72 66 6f 72 6d 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 6f 6e 20 | her.to.perform.split-horizon.on. |
| 139ba0 | 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 20 53 70 65 63 69 66 79 69 6e 67 20 6e 6f 20 62 61 62 | the.interface..Specifying.no.bab |
| 139bc0 | 65 6c 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 69 73 20 61 6c 77 61 79 73 20 63 6f 72 72 65 | el.split-horizon.is.always.corre |
| 139be0 | 63 74 2c 20 77 68 69 6c 65 20 62 61 62 65 6c 20 73 70 6c 69 74 2d 68 6f 72 69 7a 6f 6e 20 69 73 | ct,.while.babel.split-horizon.is |
| 139c00 | 20 61 6e 20 6f 70 74 69 6d 69 73 61 74 69 6f 6e 20 74 68 61 74 20 73 68 6f 75 6c 64 20 6f 6e 6c | .an.optimisation.that.should.onl |
| 139c20 | 79 20 62 65 20 75 73 65 64 20 6f 6e 20 73 79 6d 6d 65 74 72 69 63 20 61 6e 64 20 74 72 61 6e 73 | y.be.used.on.symmetric.and.trans |
| 139c40 | 69 74 69 76 65 20 28 77 69 72 65 64 29 20 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 63 6f 6d | itive.(wired).networks..This.com |
| 139c60 | 6d 61 6e 64 20 73 70 65 63 69 66 79 20 74 68 61 74 20 4f 53 50 46 20 70 61 63 6b 65 74 73 20 6d | mand.specify.that.OSPF.packets.m |
| 139c80 | 75 73 74 20 62 65 20 61 75 74 68 65 6e 74 69 63 61 74 65 64 20 77 69 74 68 20 4d 44 35 20 48 4d | ust.be.authenticated.with.MD5.HM |
| 139ca0 | 41 43 73 20 77 69 74 68 69 6e 20 74 68 65 20 67 69 76 65 6e 20 61 72 65 61 2e 20 4b 65 79 69 6e | ACs.within.the.given.area..Keyin |
| 139cc0 | 67 20 6d 61 74 65 72 69 61 6c 20 6d 75 73 74 20 61 6c 73 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 | g.material.must.also.be.configur |
| 139ce0 | 65 64 20 6f 6e 20 61 20 70 65 72 2d 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 00 54 68 69 | ed.on.a.per-interface.basis..Thi |
| 139d00 | 73 20 63 6f 6d 6d 61 6e 64 20 73 70 65 63 69 66 79 73 20 74 68 61 74 20 4d 44 35 20 48 4d 41 43 | s.command.specifys.that.MD5.HMAC |
| 139d20 | 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 75 73 65 64 20 6f 6e 20 | .authentication.must.be.used.on. |
| 139d40 | 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 49 74 20 73 65 74 73 20 4f 53 50 46 20 61 75 74 | this.interface..It.sets.OSPF.aut |
| 139d60 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 6b 65 79 20 74 6f 20 61 20 63 72 79 70 74 6f 67 72 61 70 68 | hentication.key.to.a.cryptograph |
| 139d80 | 69 63 20 70 61 73 73 77 6f 72 64 2e 20 4b 65 79 2d 69 64 20 69 64 65 6e 74 69 66 69 65 73 20 73 | ic.password..Key-id.identifies.s |
| 139da0 | 65 63 72 65 74 20 6b 65 79 20 75 73 65 64 20 74 6f 20 63 72 65 61 74 65 20 74 68 65 20 6d 65 73 | ecret.key.used.to.create.the.mes |
| 139dc0 | 73 61 67 65 20 64 69 67 65 73 74 2e 20 54 68 69 73 20 49 44 20 69 73 20 70 61 72 74 20 6f 66 20 | sage.digest..This.ID.is.part.of. |
| 139de0 | 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 6d 75 73 74 20 62 65 20 63 6f 6e 73 69 73 74 | the.protocol.and.must.be.consist |
| 139e00 | 65 6e 74 20 61 63 72 6f 73 73 20 72 6f 75 74 65 72 73 20 6f 6e 20 61 20 6c 69 6e 6b 2e 20 54 68 | ent.across.routers.on.a.link..Th |
| 139e20 | 65 20 6b 65 79 20 63 61 6e 20 62 65 20 6c 6f 6e 67 20 75 70 20 74 6f 20 31 36 20 63 68 61 72 73 | e.key.can.be.long.up.to.16.chars |
| 139e40 | 20 28 6c 61 72 67 65 72 20 73 74 72 69 6e 67 73 20 77 69 6c 6c 20 62 65 20 74 72 75 6e 63 61 74 | .(larger.strings.will.be.truncat |
| 139e60 | 65 64 29 2c 20 61 6e 64 20 69 73 20 61 73 73 6f 63 69 61 74 65 64 20 77 69 74 68 20 74 68 65 20 | ed),.and.is.associated.with.the. |
| 139e80 | 67 69 76 65 6e 20 6b 65 79 2d 69 64 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 6d 6d 61 | given.key-id..This.command.summa |
| 139ea0 | 72 69 7a 65 73 20 69 6e 74 72 61 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 70 65 63 | rizes.intra.area.paths.from.spec |
| 139ec0 | 69 66 69 65 64 20 61 72 65 61 20 69 6e 74 6f 20 6f 6e 65 20 54 79 70 65 2d 33 20 49 6e 74 65 72 | ified.area.into.one.Type-3.Inter |
| 139ee0 | 2d 41 72 65 61 20 50 72 65 66 69 78 20 4c 53 41 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f 74 | -Area.Prefix.LSA.announced.to.ot |
| 139f00 | 68 65 72 20 61 72 65 61 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 | her.areas..This.command.can.be.u |
| 139f20 | 73 65 64 20 6f 6e 6c 79 20 69 6e 20 41 42 52 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 73 75 | sed.only.in.ABR..This.command.su |
| 139f40 | 6d 6d 61 72 69 7a 65 73 20 69 6e 74 72 61 20 61 72 65 61 20 70 61 74 68 73 20 66 72 6f 6d 20 73 | mmarizes.intra.area.paths.from.s |
| 139f60 | 70 65 63 69 66 69 65 64 20 61 72 65 61 20 69 6e 74 6f 20 6f 6e 65 20 73 75 6d 6d 61 72 79 2d 4c | pecified.area.into.one.summary-L |
| 139f80 | 53 41 20 28 54 79 70 65 2d 33 29 20 61 6e 6e 6f 75 6e 63 65 64 20 74 6f 20 6f 74 68 65 72 20 61 | SA.(Type-3).announced.to.other.a |
| 139fa0 | 72 65 61 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 63 61 6e 20 62 65 20 75 73 65 64 20 6f | reas..This.command.can.be.used.o |
| 139fc0 | 6e 6c 79 20 69 6e 20 41 42 52 20 61 6e 64 20 4f 4e 4c 59 20 72 6f 75 74 65 72 2d 4c 53 41 73 20 | nly.in.ABR.and.ONLY.router-LSAs. |
| 139fe0 | 28 54 79 70 65 2d 31 29 20 61 6e 64 20 6e 65 74 77 6f 72 6b 2d 4c 53 41 73 20 28 54 79 70 65 2d | (Type-1).and.network-LSAs.(Type- |
| 13a000 | 32 29 20 28 69 2e 65 2e 20 4c 53 41 73 20 77 69 74 68 20 73 63 6f 70 65 20 61 72 65 61 29 20 63 | 2).(i.e..LSAs.with.scope.area).c |
| 13a020 | 61 6e 20 62 65 20 73 75 6d 6d 61 72 69 7a 65 64 2e 20 41 53 2d 65 78 74 65 72 6e 61 6c 2d 4c 53 | an.be.summarized..AS-external-LS |
| 13a040 | 41 73 20 28 54 79 70 65 2d 35 29 20 63 61 6e e2 80 99 74 20 62 65 20 73 75 6d 6d 61 72 69 7a 65 | As.(Type-5).can...t.be.summarize |
| 13a060 | 64 20 2d 20 74 68 65 69 72 20 73 63 6f 70 65 20 69 73 20 41 53 2e 20 54 68 65 20 6f 70 74 69 6f | d.-.their.scope.is.AS..The.optio |
| 13a080 | 6e 61 6c 20 61 72 67 75 6d 65 6e 74 20 3a 63 66 67 63 6d 64 3a 60 63 6f 73 74 60 20 73 70 65 63 | nal.argument.:cfgcmd:`cost`.spec |
| 13a0a0 | 69 66 69 65 73 20 74 68 65 20 61 67 67 72 65 67 61 74 65 64 20 6c 69 6e 6b 20 6d 65 74 72 69 63 | ifies.the.aggregated.link.metric |
| 13a0c0 | 2e 20 54 68 65 20 6d 65 74 72 69 63 20 72 61 6e 67 65 20 69 73 20 30 20 74 6f 20 31 36 37 37 37 | ..The.metric.range.is.0.to.16777 |
| 13a0e0 | 32 31 35 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 73 75 72 65 20 6e 6f 74 20 | 215..This.command.to.ensure.not. |
| 13a100 | 61 64 76 65 72 74 69 73 65 20 74 68 65 20 73 75 6d 6d 61 72 79 20 6c 73 61 20 66 6f 72 20 74 68 | advertise.the.summary.lsa.for.th |
| 13a120 | 65 20 6d 61 74 63 68 65 64 20 65 78 74 65 72 6e 61 6c 20 4c 53 41 73 2e 00 54 68 69 73 20 63 6f | e.matched.external.LSAs..This.co |
| 13a140 | 6d 6d 61 6e 64 20 75 73 65 73 20 74 6f 20 63 6c 65 61 72 20 42 47 50 20 72 6f 75 74 65 20 64 61 | mmand.uses.to.clear.BGP.route.da |
| 13a160 | 6d 70 65 6e 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6e 64 20 74 6f 20 75 6e 73 75 70 | mpening.information.and.to.unsup |
| 13a180 | 70 72 65 73 73 20 73 75 70 70 72 65 73 73 65 64 20 72 6f 75 74 65 73 2e 00 54 68 69 73 20 63 6f | press.suppressed.routes..This.co |
| 13a1a0 | 6d 6d 61 6e 64 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e 34 | mmand.was.introduced.in.VyOS.1.4 |
| 13a1c0 | 20 2d 20 69 74 20 77 61 73 20 70 72 65 76 69 6f 75 73 6c 79 20 63 61 6c 6c 65 64 3a 20 60 60 73 | .-.it.was.previously.called:.``s |
| 13a1e0 | 65 74 20 66 69 72 65 77 61 6c 6c 20 6f 70 74 69 6f 6e 73 20 69 6e 74 65 72 66 61 63 65 20 3c 6e | et.firewall.options.interface.<n |
| 13a200 | 61 6d 65 3e 20 61 64 6a 75 73 74 2d 6d 73 73 20 3c 76 61 6c 75 65 3e 60 60 00 54 68 69 73 20 63 | ame>.adjust-mss.<value>``.This.c |
| 13a220 | 6f 6d 6d 61 6e 64 20 77 61 73 20 69 6e 74 72 6f 64 75 63 65 64 20 69 6e 20 56 79 4f 53 20 31 2e | ommand.was.introduced.in.VyOS.1. |
| 13a240 | 34 20 2d 20 69 74 20 77 61 73 20 70 72 65 76 69 6f 75 73 6c 79 20 63 61 6c 6c 65 64 3a 20 60 60 | 4.-.it.was.previously.called:.`` |
| 13a260 | 73 65 74 20 66 69 72 65 77 61 6c 6c 20 6f 70 74 69 6f 6e 73 20 69 6e 74 65 72 66 61 63 65 20 3c | set.firewall.options.interface.< |
| 13a280 | 6e 61 6d 65 3e 20 61 64 6a 75 73 74 2d 6d 73 73 36 20 3c 76 61 6c 75 65 3e 60 60 00 54 68 69 73 | name>.adjust-mss6.<value>``.This |
| 13a2a0 | 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 68 61 6e 67 65 20 74 68 65 20 68 6f 6c 64 20 64 6f | .command.will.change.the.hold.do |
| 13a2c0 | 77 6e 20 76 61 6c 75 65 20 66 6f 72 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 | wn.value.for.IGP-LDP.synchroniza |
| 13a2e0 | 74 69 6f 6e 20 64 75 72 69 6e 67 20 63 6f 6e 76 65 72 67 65 6e 63 65 2f 69 6e 74 65 72 66 61 63 | tion.during.convergence/interfac |
| 13a300 | 65 20 66 6c 61 70 20 65 76 65 6e 74 73 2c 20 62 75 74 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 | e.flap.events,.but.for.this.inte |
| 13a320 | 72 66 61 63 65 20 6f 6e 6c 79 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 68 | rface.only..This.command.will.ch |
| 13a340 | 61 6e 67 65 20 74 68 65 20 68 6f 6c 64 20 64 6f 77 6e 20 76 61 6c 75 65 20 67 6c 6f 62 61 6c 6c | ange.the.hold.down.value.globall |
| 13a360 | 79 20 66 6f 72 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 64 75 | y.for.IGP-LDP.synchronization.du |
| 13a380 | 72 69 6e 67 20 63 6f 6e 76 65 72 67 65 6e 63 65 2f 69 6e 74 65 72 66 61 63 65 20 66 6c 61 70 20 | ring.convergence/interface.flap. |
| 13a3a0 | 65 76 65 6e 74 73 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 63 6f 6e 66 69 67 | events..This.command.will.config |
| 13a3c0 | 75 72 65 20 61 20 74 69 65 2d 62 72 65 61 6b 65 72 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 6c | ure.a.tie-breaker.for.multiple.l |
| 13a3e0 | 6f 63 61 6c 20 4c 46 41 20 62 61 63 6b 75 70 73 2e 20 54 68 65 20 6c 6f 77 65 72 20 69 6e 64 65 | ocal.LFA.backups..The.lower.inde |
| 13a400 | 78 20 6e 75 6d 62 65 72 73 20 77 69 6c 6c 20 62 65 20 70 72 6f 63 65 73 73 65 64 20 66 69 72 73 | x.numbers.will.be.processed.firs |
| 13a420 | 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 65 6e 61 62 6c 65 20 49 47 50 2d | t..This.command.will.enable.IGP- |
| 13a440 | 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 67 6c 6f 62 61 6c 6c 79 20 66 6f 72 | LDP.synchronization.globally.for |
| 13a460 | 20 49 53 49 53 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 73 20 66 6f 72 20 4c 44 50 20 74 6f 20 | .ISIS..This.requires.for.LDP.to. |
| 13a480 | 62 65 20 66 75 6e 63 74 69 6f 6e 61 6c 2e 20 54 68 69 73 20 69 73 20 64 65 73 63 72 69 62 65 64 | be.functional..This.is.described |
| 13a4a0 | 20 69 6e 20 3a 72 66 63 3a 60 35 34 34 33 60 2e 20 42 79 20 64 65 66 61 75 6c 74 20 61 6c 6c 20 | .in.:rfc:`5443`..By.default.all. |
| 13a4c0 | 69 6e 74 65 72 66 61 63 65 73 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 69 6e 20 49 53 2d 49 53 20 | interfaces.operational.in.IS-IS. |
| 13a4e0 | 61 72 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e | are.enabled.for.synchronization. |
| 13a500 | 20 4c 6f 6f 70 62 61 63 6b 73 20 61 72 65 20 65 78 65 6d 70 74 2e 00 54 68 69 73 20 63 6f 6d 6d | .Loopbacks.are.exempt..This.comm |
| 13a520 | 61 6e 64 20 77 69 6c 6c 20 65 6e 61 62 6c 65 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e | and.will.enable.IGP-LDP.synchron |
| 13a540 | 69 7a 61 74 69 6f 6e 20 67 6c 6f 62 61 6c 6c 79 20 66 6f 72 20 4f 53 50 46 2e 20 54 68 69 73 20 | ization.globally.for.OSPF..This. |
| 13a560 | 72 65 71 75 69 72 65 73 20 66 6f 72 20 4c 44 50 20 74 6f 20 62 65 20 66 75 6e 63 74 69 6f 6e 61 | requires.for.LDP.to.be.functiona |
| 13a580 | 6c 2e 20 54 68 69 73 20 69 73 20 64 65 73 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 35 34 | l..This.is.described.in.:rfc:`54 |
| 13a5a0 | 34 33 60 2e 20 42 79 20 64 65 66 61 75 6c 74 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 20 6f | 43`..By.default.all.interfaces.o |
| 13a5c0 | 70 65 72 61 74 69 6f 6e 61 6c 20 69 6e 20 4f 53 50 46 20 61 72 65 20 65 6e 61 62 6c 65 64 20 66 | perational.in.OSPF.are.enabled.f |
| 13a5e0 | 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 2e 20 4c 6f 6f 70 62 61 63 6b 73 20 61 72 | or.synchronization..Loopbacks.ar |
| 13a600 | 65 20 65 78 65 6d 70 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 65 6e 65 | e.exempt..This.command.will.gene |
| 13a620 | 72 61 74 65 20 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 20 69 6e 20 4c 31 20 64 61 74 61 62 | rate.a.default-route.in.L1.datab |
| 13a640 | 61 73 65 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 65 6e 65 72 61 74 65 20 | ase..This.command.will.generate. |
| 13a660 | 61 20 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 20 69 6e 20 4c 32 20 64 61 74 61 62 61 73 65 2e 00 | a.default-route.in.L2.database.. |
| 13a680 | 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 76 69 | This.command.will.give.an.overvi |
| 13a6a0 | 65 77 20 6f 66 20 61 20 72 75 6c 65 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d 73 65 | ew.of.a.rule.in.a.single.rule-se |
| 13a6c0 | 74 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 65 20 61 6e 20 6f 76 65 72 | t.This.command.will.give.an.over |
| 13a6e0 | 76 69 65 77 20 6f 66 20 61 20 72 75 6c 65 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 2d | view.of.a.rule.in.a.single.rule- |
| 13a700 | 73 65 74 2c 20 70 6c 75 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 64 65 66 61 75 6c | set,.plus.information.for.defaul |
| 13a720 | 74 20 61 63 74 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 69 76 65 | t.action..This.command.will.give |
| 13a740 | 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 72 75 6c 65 20 69 6e 20 61 20 73 69 6e 67 | .an.overview.of.a.rule.in.a.sing |
| 13a760 | 6c 65 20 72 75 6c 65 2d 73 65 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 67 | le.rule-set..This.command.will.g |
| 13a780 | 69 76 65 20 61 6e 20 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 73 69 6e 67 6c 65 20 72 75 6c 65 | ive.an.overview.of.a.single.rule |
| 13a7a0 | 2d 73 65 74 2e 00 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 6c 69 6d 69 74 20 4c 46 | -set..This.command.will.limit.LF |
| 13a7c0 | 41 20 62 61 63 6b 75 70 20 63 6f 6d 70 75 74 61 74 69 6f 6e 20 75 70 20 74 6f 20 74 68 65 20 73 | A.backup.computation.up.to.the.s |
| 13a7e0 | 70 65 63 69 66 69 65 64 20 70 72 65 66 69 78 20 70 72 69 6f 72 69 74 79 2e 00 54 68 69 73 20 63 | pecified.prefix.priority..This.c |
| 13a800 | 6f 6d 6d 61 6e 64 20 77 6f 75 6c 64 20 61 6c 6c 6f 77 20 74 68 65 20 64 79 6e 61 6d 69 63 20 75 | ommand.would.allow.the.dynamic.u |
| 13a820 | 70 64 61 74 65 20 6f 66 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 6f 76 65 72 20 61 6e 20 65 73 | pdate.of.capabilities.over.an.es |
| 13a840 | 74 61 62 6c 69 73 68 65 64 20 42 47 50 20 73 65 73 73 69 6f 6e 2e 00 54 68 69 73 20 63 6f 6d 6d | tablished.BGP.session..This.comm |
| 13a860 | 61 6e 64 73 20 63 72 65 61 74 65 73 20 61 20 62 72 69 64 67 65 20 74 68 61 74 20 69 73 20 75 73 | ands.creates.a.bridge.that.is.us |
| 13a880 | 65 64 20 74 6f 20 62 69 6e 64 20 74 72 61 66 66 69 63 20 6f 6e 20 65 74 68 31 20 76 6c 61 6e 20 | ed.to.bind.traffic.on.eth1.vlan. |
| 13a8a0 | 32 34 31 20 77 69 74 68 20 74 68 65 20 76 78 6c 61 6e 32 34 31 2d 69 6e 74 65 72 66 61 63 65 2e | 241.with.the.vxlan241-interface. |
| 13a8c0 | 20 54 68 65 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 6e 6f 74 20 72 65 71 75 69 72 65 64 2e | .The.IP.address.is.not.required. |
| 13a8e0 | 20 49 74 20 6d 61 79 20 68 6f 77 65 76 65 72 20 62 65 20 75 73 65 64 20 61 73 20 61 20 64 65 66 | .It.may.however.be.used.as.a.def |
| 13a900 | 61 75 6c 74 20 67 61 74 65 77 61 79 20 66 6f 72 20 65 61 63 68 20 4c 65 61 66 20 77 68 69 63 68 | ault.gateway.for.each.Leaf.which |
| 13a920 | 20 61 6c 6c 6f 77 73 20 64 65 76 69 63 65 73 20 6f 6e 20 74 68 65 20 76 6c 61 6e 20 74 6f 20 72 | .allows.devices.on.the.vlan.to.r |
| 13a940 | 65 61 63 68 20 6f 74 68 65 72 20 73 75 62 6e 65 74 73 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 | each.other.subnets..This.require |
| 13a960 | 73 20 74 68 61 74 20 74 68 65 20 73 75 62 6e 65 74 73 20 61 72 65 20 72 65 64 69 73 74 72 69 62 | s.that.the.subnets.are.redistrib |
| 13a980 | 75 74 65 64 20 62 79 20 4f 53 50 46 20 73 6f 20 74 68 61 74 20 74 68 65 20 53 70 69 6e 65 20 77 | uted.by.OSPF.so.that.the.Spine.w |
| 13a9a0 | 69 6c 6c 20 6c 65 61 72 6e 20 68 6f 77 20 74 6f 20 72 65 61 63 68 20 69 74 2e 20 54 6f 20 64 6f | ill.learn.how.to.reach.it..To.do |
| 13a9c0 | 20 74 68 69 73 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 68 61 6e 67 65 20 74 68 65 20 4f 53 50 | .this.you.need.to.change.the.OSP |
| 13a9e0 | 46 20 6e 65 74 77 6f 72 6b 20 66 72 6f 6d 20 27 31 30 2e 30 2e 30 2e 30 2f 38 27 20 74 6f 20 27 | F.network.from.'10.0.0.0/8'.to.' |
| 13aa00 | 30 2e 30 2e 30 2e 30 2f 30 27 20 74 6f 20 61 6c 6c 6f 77 20 31 37 32 2e 31 36 2f 31 32 2d 6e 65 | 0.0.0.0/0'.to.allow.172.16/12-ne |
| 13aa20 | 74 77 6f 72 6b 73 20 74 6f 20 62 65 20 61 64 76 65 72 74 69 73 65 64 2e 00 54 68 69 73 20 63 6f | tworks.to.be.advertised..This.co |
| 13aa40 | 6d 6d 61 6e 64 73 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 46 69 6e 69 74 65 20 53 74 61 74 | mmands.specifies.the.Finite.Stat |
| 13aa60 | 65 20 4d 61 63 68 69 6e 65 20 28 46 53 4d 29 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 63 6f 6e 74 | e.Machine.(FSM).intended.to.cont |
| 13aa80 | 72 6f 6c 20 74 68 65 20 74 69 6d 69 6e 67 20 6f 66 20 74 68 65 20 65 78 65 63 75 74 69 6f 6e 20 | rol.the.timing.of.the.execution. |
| 13aaa0 | 6f 66 20 53 50 46 20 63 61 6c 63 75 6c 61 74 69 6f 6e 73 20 69 6e 20 72 65 73 70 6f 6e 73 65 20 | of.SPF.calculations.in.response. |
| 13aac0 | 74 6f 20 49 47 50 20 65 76 65 6e 74 73 2e 20 54 68 65 20 70 72 6f 63 65 73 73 20 64 65 73 63 72 | to.IGP.events..The.process.descr |
| 13aae0 | 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 38 34 30 35 60 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 | ibed.in.:rfc:`8405`..This.config |
| 13ab00 | 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c 65 73 20 48 54 54 50 20 68 65 61 6c 74 68 20 63 68 65 63 | uration.enables.HTTP.health.chec |
| 13ab20 | 6b 73 20 6f 6e 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 73 2e 00 54 68 69 73 20 63 6f 6e 66 | ks.on.backend.servers..This.conf |
| 13ab40 | 69 67 75 72 61 74 69 6f 6e 20 65 6e 61 62 6c 65 73 20 74 68 65 20 54 43 50 20 72 65 76 65 72 73 | iguration.enables.the.TCP.revers |
| 13ab60 | 65 20 70 72 6f 78 79 20 66 6f 72 20 74 68 65 20 22 6d 79 2d 74 63 70 2d 61 70 69 22 20 73 65 72 | e.proxy.for.the."my-tcp-api".ser |
| 13ab80 | 76 69 63 65 2e 20 49 6e 63 6f 6d 69 6e 67 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 6f | vice..Incoming.TCP.connections.o |
| 13aba0 | 6e 20 70 6f 72 74 20 38 38 38 38 20 77 69 6c 6c 20 62 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 65 | n.port.8888.will.be.load.balance |
| 13abc0 | 64 20 61 63 72 6f 73 73 20 74 68 65 20 62 61 63 6b 65 6e 64 20 73 65 72 76 65 72 73 20 28 73 72 | d.across.the.backend.servers.(sr |
| 13abe0 | 76 30 31 20 61 6e 64 20 73 72 76 30 32 29 20 75 73 69 6e 67 20 74 68 65 20 72 6f 75 6e 64 2d 72 | v01.and.srv02).using.the.round-r |
| 13ac00 | 6f 62 69 6e 20 6c 6f 61 64 2d 62 61 6c 61 6e 63 69 6e 67 20 61 6c 67 6f 72 69 74 68 6d 2e 00 54 | obin.load-balancing.algorithm..T |
| 13ac20 | 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 67 65 6e 65 72 61 74 65 73 20 26 20 69 6e | his.configuration.generates.&.in |
| 13ac40 | 73 74 61 6c 6c 73 20 69 6e 74 6f 20 74 68 65 20 56 79 4f 53 20 50 4b 49 20 73 79 73 74 65 6d 20 | stalls.into.the.VyOS.PKI.system. |
| 13ac60 | 61 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 2c 20 61 6c | a.root.certificate.authority,.al |
| 13ac80 | 6f 6e 67 73 69 64 65 20 74 77 6f 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 63 65 72 74 69 66 69 | ongside.two.intermediary.certifi |
| 13aca0 | 63 61 74 65 20 61 75 74 68 6f 72 69 74 69 65 73 20 66 6f 72 20 63 6c 69 65 6e 74 20 26 20 73 65 | cate.authorities.for.client.&.se |
| 13acc0 | 72 76 65 72 20 63 65 72 74 69 66 69 63 61 74 65 73 2e 20 54 68 65 73 65 20 43 41 73 20 61 72 65 | rver.certificates..These.CAs.are |
| 13ace0 | 20 74 68 65 6e 20 75 73 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 73 65 72 76 65 72 20 | .then.used.to.generate.a.server. |
| 13ad00 | 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 72 2c 20 61 6e 64 20 | certificate.for.the.router,.and. |
| 13ad20 | 61 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 20 66 6f 72 20 61 20 75 73 65 72 2e | a.client.certificate.for.a.user. |
| 13ad40 | 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6c 69 73 74 65 6e 20 6f 6e 20 70 6f | .This.configuration.listen.on.po |
| 13ad60 | 72 74 20 38 30 20 61 6e 64 20 72 65 64 69 72 65 63 74 20 69 6e 63 6f 6d 69 6e 67 20 72 65 71 75 | rt.80.and.redirect.incoming.requ |
| 13ad80 | 65 73 74 73 20 74 6f 20 48 54 54 50 53 3a 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | ests.to.HTTPS:.This.configuratio |
| 13ada0 | 6e 20 6d 6f 64 69 66 69 65 73 20 74 68 65 20 62 65 68 61 76 69 6f 72 20 6f 66 20 74 68 65 20 6e | n.modifies.the.behavior.of.the.n |
| 13adc0 | 65 74 77 6f 72 6b 20 73 74 61 74 65 6d 65 6e 74 2e 20 49 66 20 79 6f 75 20 68 61 76 65 20 74 68 | etwork.statement..If.you.have.th |
| 13ade0 | 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 74 68 65 20 75 6e 64 65 72 6c 79 69 6e 67 20 6e 65 74 | is.configured.the.underlying.net |
| 13ae00 | 77 6f 72 6b 20 6d 75 73 74 20 65 78 69 73 74 20 69 6e 20 74 68 65 20 72 6f 75 74 69 6e 67 20 74 | work.must.exist.in.the.routing.t |
| 13ae20 | 61 62 6c 65 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 | able..This.configuration.paramet |
| 13ae40 | 65 72 20 69 73 20 72 65 71 75 69 72 65 64 20 61 6e 64 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 | er.is.required.and.must.be.uniqu |
| 13ae60 | 65 20 74 6f 20 65 61 63 68 20 73 75 62 6e 65 74 2e 20 49 74 20 69 73 20 72 65 71 75 69 72 65 64 | e.to.each.subnet..It.is.required |
| 13ae80 | 20 74 6f 20 6d 61 70 20 73 75 62 6e 65 74 73 20 74 6f 20 6c 65 61 73 65 20 66 69 6c 65 20 65 6e | .to.map.subnets.to.lease.file.en |
| 13aea0 | 74 72 69 65 73 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 | tries..This.configuration.parame |
| 13aec0 | 74 65 72 20 6c 65 74 73 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 74 6f 20 6c 69 73 74 | ter.lets.the.DHCP.server.to.list |
| 13aee0 | 65 6e 20 66 6f 72 20 44 48 43 50 20 72 65 71 75 65 73 74 73 20 73 65 6e 74 20 74 6f 20 74 68 65 | en.for.DHCP.requests.sent.to.the |
| 13af00 | 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 2c 20 69 74 20 69 73 20 6f 6e 6c 79 20 72 | .specified.address,.it.is.only.r |
| 13af20 | 65 61 6c 69 73 74 69 63 61 6c 6c 79 20 75 73 65 66 75 6c 20 66 6f 72 20 61 20 73 65 72 76 65 72 | ealistically.useful.for.a.server |
| 13af40 | 20 77 68 6f 73 65 20 6f 6e 6c 79 20 63 6c 69 65 6e 74 73 20 61 72 65 20 72 65 61 63 68 65 64 20 | .whose.only.clients.are.reached. |
| 13af60 | 76 69 61 20 75 6e 69 63 61 73 74 73 2c 20 73 75 63 68 20 61 73 20 76 69 61 20 44 48 43 50 20 72 | via.unicasts,.such.as.via.DHCP.r |
| 13af80 | 65 6c 61 79 20 61 67 65 6e 74 73 2e 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | elay.agents..This.configuration. |
| 13afa0 | 70 61 72 61 6d 65 74 65 72 20 6c 65 74 73 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 20 76 65 6e | parameter.lets.you.specify.a.ven |
| 13afc0 | 64 6f 72 2d 6f 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 | dor-option.for.the.entire.shared |
| 13afe0 | 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 | .network.definition..All.subnets |
| 13b000 | 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | .will.inherit.this.configuration |
| 13b020 | 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 | .item.if.not.specified.locally.. |
| 13b040 | 41 6e 20 65 78 61 6d 70 6c 65 20 66 6f 72 20 55 62 69 71 75 69 74 69 20 69 73 20 73 68 6f 77 6e | An.example.for.Ubiquiti.is.shown |
| 13b060 | 20 62 65 6c 6f 77 3a 00 54 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d | .below:.This.configuration.param |
| 13b080 | 65 74 65 72 20 6c 65 74 73 20 79 6f 75 20 73 70 65 63 69 66 79 20 61 20 76 65 6e 64 6f 72 2d 6f | eter.lets.you.specify.a.vendor-o |
| 13b0a0 | 70 74 69 6f 6e 20 66 6f 72 20 74 68 65 20 73 75 62 6e 65 74 20 73 70 65 63 69 66 69 65 64 20 77 | ption.for.the.subnet.specified.w |
| 13b0c0 | 69 74 68 69 6e 20 74 68 65 20 73 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 74 | ithin.the.shared.network.definit |
| 13b0e0 | 69 6f 6e 2e 20 41 6e 20 65 78 61 6d 70 6c 65 20 66 6f 72 20 55 62 69 71 75 69 74 69 20 69 73 20 | ion..An.example.for.Ubiquiti.is. |
| 13b100 | 73 68 6f 77 6e 20 62 65 6c 6f 77 3a 00 54 68 69 73 20 63 6f 75 6c 64 20 62 65 20 68 65 6c 70 66 | shown.below:.This.could.be.helpf |
| 13b120 | 75 6c 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 74 65 73 74 20 68 6f 77 20 61 6e 20 61 70 | ul.if.you.want.to.test.how.an.ap |
| 13b140 | 70 6c 69 63 61 74 69 6f 6e 20 62 65 68 61 76 65 73 20 75 6e 64 65 72 20 63 65 72 74 61 69 6e 20 | plication.behaves.under.certain. |
| 13b160 | 6e 65 74 77 6f 72 6b 20 63 6f 6e 64 69 74 69 6f 6e 73 2e 00 54 68 69 73 20 63 72 65 61 74 65 73 | network.conditions..This.creates |
| 13b180 | 20 61 20 72 6f 75 74 65 20 70 6f 6c 69 63 79 20 63 61 6c 6c 65 64 20 46 49 4c 54 45 52 2d 57 45 | .a.route.policy.called.FILTER-WE |
| 13b1a0 | 42 20 77 69 74 68 20 6f 6e 65 20 72 75 6c 65 20 74 6f 20 73 65 74 20 74 68 65 20 72 6f 75 74 69 | B.with.one.rule.to.set.the.routi |
| 13b1c0 | 6e 67 20 74 61 62 6c 65 20 66 6f 72 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 28 54 | ng.table.for.matching.traffic.(T |
| 13b1e0 | 43 50 20 70 6f 72 74 20 38 30 29 20 74 6f 20 74 61 62 6c 65 20 49 44 20 31 30 30 20 69 6e 73 74 | CP.port.80).to.table.ID.100.inst |
| 13b200 | 65 61 64 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 | ead.of.the.default.routing.table |
| 13b220 | 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 31 30 30 30 30 2e 00 54 68 69 73 20 64 | ..This.defaults.to.10000..This.d |
| 13b240 | 65 66 61 75 6c 74 73 20 74 6f 20 31 38 31 32 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 | efaults.to.1812..This.defaults.t |
| 13b260 | 6f 20 32 30 30 37 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 33 30 20 73 65 63 6f | o.2007..This.defaults.to.30.seco |
| 13b280 | 6e 64 73 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 33 30 30 20 73 65 63 6f 6e 64 | nds..This.defaults.to.300.second |
| 13b2a0 | 73 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 34 39 2e 00 54 68 69 73 20 64 65 66 | s..This.defaults.to.49..This.def |
| 13b2c0 | 61 75 6c 74 73 20 74 6f 20 35 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 55 44 50 | aults.to.5..This.defaults.to.UDP |
| 13b2e0 | 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 62 6f 74 68 20 31 2e 32 20 61 6e 64 20 31 | .This.defaults.to.both.1.2.and.1 |
| 13b300 | 2e 33 2e 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 68 74 74 70 73 3a 2f 2f 61 63 6d | .3..This.defaults.to.https://acm |
| 13b320 | 65 2d 76 30 32 2e 61 70 69 2e 6c 65 74 73 65 6e 63 72 79 70 74 2e 6f 72 67 2f 64 69 72 65 63 74 | e-v02.api.letsencrypt.org/direct |
| 13b340 | 6f 72 79 00 54 68 69 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 70 68 79 30 2e 00 54 68 69 73 20 | ory.This.defaults.to.phy0..This. |
| 13b360 | 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 64 72 69 76 65 72 20 63 61 70 61 62 69 6c 69 74 69 | depends.on.the.driver.capabiliti |
| 13b380 | 65 73 20 61 6e 64 20 6d 61 79 20 6e 6f 74 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 77 69 74 68 | es.and.may.not.be.available.with |
| 13b3a0 | 20 61 6c 6c 20 64 72 69 76 65 72 73 2e 00 54 68 69 73 20 64 69 61 62 6c 65 20 74 68 65 20 65 78 | .all.drivers..This.diable.the.ex |
| 13b3c0 | 74 65 72 6e 61 6c 20 63 61 63 68 65 20 61 6e 64 20 64 69 72 65 63 74 6c 79 20 69 6e 6a 65 63 74 | ternal.cache.and.directly.inject |
| 13b3e0 | 73 20 74 68 65 20 66 6c 6f 77 2d 73 74 61 74 65 73 20 69 6e 74 6f 20 74 68 65 20 69 6e 2d 6b 65 | s.the.flow-states.into.the.in-ke |
| 13b400 | 72 6e 65 6c 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 54 72 61 63 6b 69 6e 67 20 53 79 73 74 65 6d 20 | rnel.Connection.Tracking.System. |
| 13b420 | 6f 66 20 74 68 65 20 62 61 63 6b 75 70 20 66 69 72 65 77 61 6c 6c 2e 00 54 68 69 73 20 64 69 61 | of.the.backup.firewall..This.dia |
| 13b440 | 67 72 61 6d 20 63 6f 72 72 65 73 70 6f 6e 64 73 20 77 69 74 68 20 74 68 65 20 65 78 61 6d 70 6c | gram.corresponds.with.the.exampl |
| 13b460 | 65 20 73 69 74 65 20 74 6f 20 73 69 74 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 62 65 6c | e.site.to.site.configuration.bel |
| 13b480 | 6f 77 2e 00 54 68 69 73 20 65 6e 61 62 6c 65 73 20 3a 72 66 63 3a 60 33 31 33 37 60 20 73 75 70 | ow..This.enables.:rfc:`3137`.sup |
| 13b4a0 | 70 6f 72 74 2c 20 77 68 65 72 65 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 20 64 65 73 | port,.where.the.OSPF.process.des |
| 13b4c0 | 63 72 69 62 65 73 20 69 74 73 20 74 72 61 6e 73 69 74 20 6c 69 6e 6b 73 20 69 6e 20 69 74 73 20 | cribes.its.transit.links.in.its. |
| 13b4e0 | 72 6f 75 74 65 72 2d 4c 53 41 20 61 73 20 68 61 76 69 6e 67 20 69 6e 66 69 6e 69 74 65 20 64 69 | router-LSA.as.having.infinite.di |
| 13b500 | 73 74 61 6e 63 65 20 73 6f 20 74 68 61 74 20 6f 74 68 65 72 20 72 6f 75 74 65 72 73 20 77 69 6c | stance.so.that.other.routers.wil |
| 13b520 | 6c 20 61 76 6f 69 64 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 74 72 61 6e 73 69 74 20 70 61 74 68 | l.avoid.calculating.transit.path |
| 13b540 | 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 20 77 68 69 6c 65 20 73 74 69 6c 6c | s.through.the.router.while.still |
| 13b560 | 20 62 65 69 6e 67 20 61 62 6c 65 20 74 6f 20 72 65 61 63 68 20 6e 65 74 77 6f 72 6b 73 20 74 68 | .being.able.to.reach.networks.th |
| 13b580 | 72 6f 75 67 68 20 74 68 65 20 72 6f 75 74 65 72 2e 00 54 68 69 73 20 65 6e 61 62 6c 65 73 20 74 | rough.the.router..This.enables.t |
| 13b5a0 | 68 65 20 67 72 65 65 6e 66 69 65 6c 64 20 6f 70 74 69 6f 6e 20 77 68 69 63 68 20 73 65 74 73 20 | he.greenfield.option.which.sets. |
| 13b5c0 | 74 68 65 20 60 60 5b 47 46 5d 60 60 20 6f 70 74 69 6f 6e 00 54 68 69 73 20 65 73 74 61 62 6c 69 | the.``[GF]``.option.This.establi |
| 13b5e0 | 73 68 65 73 20 6f 75 72 20 50 6f 72 74 20 46 6f 72 77 61 72 64 20 72 75 6c 65 2c 20 62 75 74 20 | shes.our.Port.Forward.rule,.but. |
| 13b600 | 69 66 20 77 65 20 63 72 65 61 74 65 64 20 61 20 66 69 72 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 | if.we.created.a.firewall.policy. |
| 13b620 | 69 74 20 77 69 6c 6c 20 6c 69 6b 65 6c 79 20 62 6c 6f 63 6b 20 74 68 65 20 74 72 61 66 66 69 63 | it.will.likely.block.the.traffic |
| 13b640 | 2e 00 54 68 69 73 20 65 78 61 6d 70 6c 65 20 63 72 65 61 74 65 73 20 61 6e 20 49 50 76 34 20 70 | ..This.example.creates.an.IPv4.p |
| 13b660 | 72 65 66 69 78 2d 6c 69 73 74 20 6e 61 6d 65 64 20 50 4c 34 2d 45 58 41 4d 50 4c 45 2d 4e 41 4d | refix-list.named.PL4-EXAMPLE-NAM |
| 13b680 | 45 2c 20 64 65 66 69 6e 65 73 20 33 20 72 75 6c 65 73 20 65 61 63 68 20 77 69 74 68 20 31 20 70 | E,.defines.3.rules.each.with.1.p |
| 13b6a0 | 72 65 66 69 78 2c 20 61 6e 64 20 6d 61 74 63 68 65 73 20 6c 65 20 28 6c 65 73 73 20 74 68 61 6e | refix,.and.matches.le.(less.than |
| 13b6c0 | 2f 65 71 75 61 6c 20 74 6f 29 20 2f 33 32 2e 00 54 68 69 73 20 65 78 61 6d 70 6c 65 20 73 68 6f | /equal.to)./32..This.example.sho |
| 13b6e0 | 77 73 20 68 6f 77 20 74 6f 20 74 61 72 67 65 74 20 61 6e 20 4d 53 53 20 63 6c 61 6d 70 20 28 69 | ws.how.to.target.an.MSS.clamp.(i |
| 13b700 | 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 20 74 6f 20 31 33 36 30 20 62 79 74 65 73 29 20 74 6f 20 | n.our.example.to.1360.bytes).to. |
| 13b720 | 61 20 73 70 65 63 69 66 69 63 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 2e 00 54 68 69 73 20 | a.specific.destination.IP..This. |
| 13b740 | 65 78 61 6d 70 6c 65 20 75 73 65 73 20 43 41 43 65 72 74 20 61 73 20 63 65 72 74 69 66 69 63 61 | example.uses.CACert.as.certifica |
| 13b760 | 74 65 20 61 75 74 68 6f 72 69 74 79 2e 00 54 68 69 73 20 66 65 61 74 75 72 65 20 63 6c 6f 73 65 | te.authority..This.feature.close |
| 13b780 | 6c 79 20 77 6f 72 6b 73 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 3a 72 65 66 3a 60 70 6b 69 | ly.works.together.with.:ref:`pki |
| 13b7a0 | 60 20 73 75 62 73 79 73 74 65 6d 20 61 73 20 79 6f 75 20 72 65 71 75 69 72 65 64 20 61 20 78 35 | `.subsystem.as.you.required.a.x5 |
| 13b7c0 | 30 39 20 63 65 72 74 69 66 69 63 61 74 65 2e 00 54 68 69 73 20 66 65 61 74 75 72 65 20 73 65 72 | 09.certificate..This.feature.ser |
| 13b7e0 | 76 65 73 20 74 68 65 20 70 75 72 70 6f 73 65 20 6f 66 20 74 68 69 67 68 74 65 6e 69 6e 67 20 74 | ves.the.purpose.of.thightening.t |
| 13b800 | 68 65 20 70 61 63 6b 65 74 20 76 61 6c 69 64 61 74 69 6f 6e 20 72 65 71 75 69 72 65 6d 65 6e 74 | he.packet.validation.requirement |
| 13b820 | 73 20 74 6f 20 61 76 6f 69 64 20 72 65 63 65 69 76 69 6e 67 20 42 46 44 20 63 6f 6e 74 72 6f 6c | s.to.avoid.receiving.BFD.control |
| 13b840 | 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f 74 68 65 72 20 73 65 73 73 69 6f 6e 73 2e 00 54 68 | .packets.from.other.sessions..Th |
| 13b860 | 69 73 20 66 65 61 74 75 72 65 20 73 75 6d 6d 61 72 69 73 65 73 20 6f 72 69 67 69 6e 61 74 65 64 | is.feature.summarises.originated |
| 13b880 | 20 65 78 74 65 72 6e 61 6c 20 4c 53 41 73 20 28 54 79 70 65 2d 35 20 61 6e 64 20 54 79 70 65 2d | .external.LSAs.(Type-5.and.Type- |
| 13b8a0 | 37 29 2e 20 53 75 6d 6d 61 72 79 20 52 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 6f 72 69 67 69 6e | 7)..Summary.Route.will.be.origin |
| 13b8c0 | 61 74 65 64 20 6f 6e 2d 62 65 68 61 6c 66 20 6f 66 20 61 6c 6c 20 6d 61 74 63 68 65 64 20 65 78 | ated.on-behalf.of.all.matched.ex |
| 13b8e0 | 74 65 72 6e 61 6c 20 4c 53 41 73 2e 00 54 68 69 73 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 | ternal.LSAs..This.functionality. |
| 13b900 | 69 73 20 63 6f 6e 74 72 6f 6c 6c 65 64 20 62 79 20 61 64 64 69 6e 67 20 74 68 65 20 66 6f 6c 6c | is.controlled.by.adding.the.foll |
| 13b920 | 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 68 69 73 20 66 75 6e 63 74 69 | owing.configuration:.This.functi |
| 13b940 | 6f 6e 73 20 66 6f 72 20 62 6f 74 68 20 69 6e 64 69 76 69 64 75 61 6c 20 61 64 64 72 65 73 73 65 | ons.for.both.individual.addresse |
| 13b960 | 73 20 61 6e 64 20 61 64 64 72 65 73 73 20 67 72 6f 75 70 73 2e 00 54 68 69 73 20 67 69 76 65 73 | s.and.address.groups..This.gives |
| 13b980 | 20 75 73 20 49 47 50 2d 4c 44 50 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 66 6f 72 20 | .us.IGP-LDP.synchronization.for. |
| 13b9a0 | 61 6c 6c 20 6e 6f 6e 2d 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 77 69 74 68 | all.non-loopback.interfaces.with |
| 13b9c0 | 20 61 20 68 6f 6c 64 64 6f 77 6e 20 74 69 6d 65 72 20 6f 66 20 7a 65 72 6f 20 73 65 63 6f 6e 64 | .a.holddown.timer.of.zero.second |
| 13b9e0 | 73 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 4d 50 4c 53 20 73 65 67 6d 65 6e 74 20 72 6f | s:.This.gives.us.MPLS.segment.ro |
| 13ba00 | 75 74 69 6e 67 20 65 6e 61 62 6c 65 64 20 61 6e 64 20 6c 61 62 65 6c 73 20 66 6f 72 20 66 61 72 | uting.enabled.and.labels.for.far |
| 13ba20 | 20 65 6e 64 20 6c 6f 6f 70 62 61 63 6b 73 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 74 68 | .end.loopbacks:.This.gives.us.th |
| 13ba40 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6e 65 69 67 68 62 6f 72 73 68 69 70 73 2c 20 4c 65 76 65 6c | e.following.neighborships,.Level |
| 13ba60 | 20 31 20 61 6e 64 20 4c 65 76 65 6c 20 32 3a 00 54 68 69 73 20 67 69 76 65 73 20 75 73 20 74 68 | .1.and.Level.2:.This.gives.us.th |
| 13ba80 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 6e 65 69 67 68 62 6f 72 73 68 69 70 73 3a 00 54 68 69 73 20 | e.following.neighborships:.This. |
| 13baa0 | 69 6e 73 74 72 75 63 74 73 20 6f 70 65 6e 6e 68 72 70 20 74 6f 20 72 65 70 6c 79 20 77 69 74 68 | instructs.opennhrp.to.reply.with |
| 13bac0 | 20 61 75 74 68 6f 72 61 74 69 76 65 20 61 6e 73 77 65 72 73 20 6f 6e 20 4e 48 52 50 20 52 65 73 | .authorative.answers.on.NHRP.Res |
| 13bae0 | 6f 6c 75 74 69 6f 6e 20 52 65 71 75 65 73 74 73 20 64 65 73 74 69 6e 69 65 64 20 74 6f 20 61 64 | olution.Requests.destinied.to.ad |
| 13bb00 | 64 72 65 73 73 65 73 20 69 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 20 28 69 6e 73 74 65 | dresses.in.this.interface.(inste |
| 13bb20 | 61 64 20 6f 66 20 66 6f 72 77 61 72 64 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 73 29 2e 20 54 | ad.of.forwarding.the.packets)..T |
| 13bb40 | 68 69 73 20 65 66 66 65 63 74 69 76 65 6c 79 20 61 6c 6c 6f 77 73 20 74 68 65 20 63 72 65 61 74 | his.effectively.allows.the.creat |
| 13bb60 | 69 6f 6e 20 6f 66 20 73 68 6f 72 74 63 75 74 20 72 6f 75 74 65 73 20 74 6f 20 73 75 62 6e 65 74 | ion.of.shortcut.routes.to.subnet |
| 13bb80 | 73 20 6c 6f 63 61 74 65 64 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 54 68 69 73 | s.located.on.the.interface..This |
| 13bba0 | 20 69 73 20 61 20 63 6f 6d 6d 6f 6e 20 73 63 65 6e 61 72 69 6f 20 77 68 65 72 65 20 62 6f 74 68 | .is.a.common.scenario.where.both |
| 13bbc0 | 20 3a 72 65 66 3a 60 73 6f 75 72 63 65 2d 6e 61 74 60 20 61 6e 64 20 3a 72 65 66 3a 60 64 65 73 | .:ref:`source-nat`.and.:ref:`des |
| 13bbe0 | 74 69 6e 61 74 69 6f 6e 2d 6e 61 74 60 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 61 74 20 | tination-nat`.are.configured.at. |
| 13bc00 | 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2e 20 49 74 27 73 20 63 6f 6d 6d 6f 6e 6c 79 20 75 73 65 | the.same.time..It's.commonly.use |
| 13bc20 | 64 20 77 68 65 6e 20 69 6e 74 65 72 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 68 6f 73 74 73 20 | d.when.internal.(private).hosts. |
| 13bc40 | 6e 65 65 64 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 | need.to.establish.a.connection.w |
| 13bc60 | 69 74 68 20 65 78 74 65 72 6e 61 6c 20 72 65 73 6f 75 72 63 65 73 20 61 6e 64 20 65 78 74 65 72 | ith.external.resources.and.exter |
| 13bc80 | 6e 61 6c 20 73 79 73 74 65 6d 73 20 6e 65 65 64 20 74 6f 20 61 63 63 65 73 73 20 69 6e 74 65 72 | nal.systems.need.to.access.inter |
| 13bca0 | 6e 61 6c 20 28 70 72 69 76 61 74 65 29 20 72 65 73 6f 75 72 63 65 73 2e 00 54 68 69 73 20 69 73 | nal.(private).resources..This.is |
| 13bcc0 | 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 | .a.configuration.parameter.for.t |
| 13bce0 | 68 65 20 60 3c 73 75 62 6e 65 74 3e 60 2c 20 73 61 79 69 6e 67 20 74 68 61 74 20 61 73 20 70 61 | he.`<subnet>`,.saying.that.as.pa |
| 13bd00 | 72 74 20 6f 66 20 74 68 65 20 72 65 73 70 6f 6e 73 65 2c 20 74 65 6c 6c 20 74 68 65 20 63 6c 69 | rt.of.the.response,.tell.the.cli |
| 13bd20 | 65 6e 74 20 74 68 61 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 67 61 74 65 77 61 79 20 63 61 6e | ent.that.the.default.gateway.can |
| 13bd40 | 20 62 65 20 72 65 61 63 68 65 64 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 54 68 69 73 | .be.reached.at.`<address>`..This |
| 13bd60 | 20 69 73 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f | .is.a.configuration.parameter.fo |
| 13bd80 | 72 20 74 68 65 20 73 75 62 6e 65 74 2c 20 73 61 79 69 6e 67 20 74 68 61 74 20 61 73 20 70 61 72 | r.the.subnet,.saying.that.as.par |
| 13bda0 | 74 20 6f 66 20 74 68 65 20 72 65 73 70 6f 6e 73 65 2c 20 74 65 6c 6c 20 74 68 65 20 63 6c 69 65 | t.of.the.response,.tell.the.clie |
| 13bdc0 | 6e 74 20 74 68 61 74 20 74 68 65 20 44 4e 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 66 6f | nt.that.the.DNS.server.can.be.fo |
| 13bde0 | 75 6e 64 20 61 74 20 60 3c 61 64 64 72 65 73 73 3e 60 2e 00 54 68 69 73 20 69 73 20 61 20 6d 61 | und.at.`<address>`..This.is.a.ma |
| 13be00 | 6e 64 61 74 6f 72 79 20 63 6f 6d 6d 61 6e 64 2e 20 53 65 74 73 20 72 65 67 75 6c 61 72 20 65 78 | ndatory.command..Sets.regular.ex |
| 13be20 | 70 72 65 73 73 69 6f 6e 20 74 6f 20 6d 61 74 63 68 20 61 67 61 69 6e 73 74 20 6c 6f 67 20 73 74 | pression.to.match.against.log.st |
| 13be40 | 72 69 6e 67 20 6d 65 73 73 61 67 65 2e 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 | ring.message..This.is.a.mandator |
| 13be60 | 79 20 63 6f 6d 6d 61 6e 64 2e 20 53 65 74 73 20 74 68 65 20 66 75 6c 6c 20 70 61 74 68 20 74 6f | y.command..Sets.the.full.path.to |
| 13be80 | 20 74 68 65 20 73 63 72 69 70 74 2e 20 54 68 65 20 73 63 72 69 70 74 20 66 69 6c 65 20 6d 75 73 | .the.script..The.script.file.mus |
| 13bea0 | 74 20 62 65 20 65 78 65 63 75 74 61 62 6c 65 2e 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 | t.be.executable..This.is.a.manda |
| 13bec0 | 74 6f 72 79 20 6f 70 74 69 6f 6e 00 54 68 69 73 20 69 73 20 61 20 6d 61 6e 64 61 74 6f 72 79 20 | tory.option.This.is.a.mandatory. |
| 13bee0 | 73 65 74 74 69 6e 67 2e 00 54 68 69 73 20 69 73 20 61 63 68 69 65 76 65 64 20 62 79 20 75 73 69 | setting..This.is.achieved.by.usi |
| 13bf00 | 6e 67 20 74 68 65 20 66 69 72 73 74 20 74 68 72 65 65 20 62 69 74 73 20 6f 66 20 74 68 65 20 54 | ng.the.first.three.bits.of.the.T |
| 13bf20 | 6f 53 20 28 54 79 70 65 20 6f 66 20 53 65 72 76 69 63 65 29 20 66 69 65 6c 64 20 74 6f 20 63 61 | oS.(Type.of.Service).field.to.ca |
| 13bf40 | 74 65 67 6f 72 69 7a 65 20 64 61 74 61 20 73 74 72 65 61 6d 73 20 61 6e 64 2c 20 69 6e 20 61 63 | tegorize.data.streams.and,.in.ac |
| 13bf60 | 63 6f 72 64 61 6e 63 65 20 77 69 74 68 20 74 68 65 20 64 65 66 69 6e 65 64 20 70 72 65 63 65 64 | cordance.with.the.defined.preced |
| 13bf80 | 65 6e 63 65 20 70 61 72 61 6d 65 74 65 72 73 2c 20 61 20 64 65 63 69 73 69 6f 6e 20 69 73 20 6d | ence.parameters,.a.decision.is.m |
| 13bfa0 | 61 64 65 2e 00 54 68 69 73 20 69 73 20 61 6c 73 6f 20 6b 6e 6f 77 6e 20 61 73 20 74 68 65 20 48 | ade..This.is.also.known.as.the.H |
| 13bfc0 | 55 42 73 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 46 51 44 4e 2e 00 54 68 69 73 20 69 73 20 | UBs.IP.address.or.FQDN..This.is. |
| 13bfe0 | 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 20 62 65 63 61 75 73 65 20 74 68 65 20 | an.optional.command.because.the. |
| 13c000 | 65 76 65 6e 74 20 68 61 6e 64 6c 65 72 20 77 69 6c 6c 20 62 65 20 61 75 74 6f 6d 61 74 69 63 61 | event.handler.will.be.automatica |
| 13c020 | 6c 6c 79 20 63 72 65 61 74 65 64 20 61 66 74 65 72 20 61 6e 79 20 6f 66 20 74 68 65 20 6e 65 78 | lly.created.after.any.of.the.nex |
| 13c040 | 74 20 63 6f 6d 6d 61 6e 64 73 2e 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 | t.commands..This.is.an.optional. |
| 13c060 | 63 6f 6d 6d 61 6e 64 2e 20 41 64 64 73 20 61 72 67 75 6d 65 6e 74 73 20 74 6f 20 74 68 65 20 73 | command..Adds.arguments.to.the.s |
| 13c080 | 63 72 69 70 74 2e 20 41 72 67 75 6d 65 6e 74 73 20 6d 75 73 74 20 62 65 20 73 65 70 61 72 61 74 | cript..Arguments.must.be.separat |
| 13c0a0 | 65 64 20 62 79 20 73 70 61 63 65 73 2e 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 | ed.by.spaces..This.is.an.optiona |
| 13c0c0 | 6c 20 63 6f 6d 6d 61 6e 64 2e 20 41 64 64 73 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 61 6e 64 20 | l.command..Adds.environment.and. |
| 13c0e0 | 69 74 73 20 76 61 6c 75 65 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 2e 20 55 73 65 20 73 65 70 | its.value.to.the.script..Use.sep |
| 13c100 | 61 72 61 74 65 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 20 65 61 63 68 20 65 6e 76 69 72 6f 6e 6d | arate.commands.for.each.environm |
| 13c120 | 65 6e 74 2e 00 54 68 69 73 20 69 73 20 61 6e 20 6f 70 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 | ent..This.is.an.optional.command |
| 13c140 | 2e 20 46 69 6c 74 65 72 73 20 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 62 79 20 73 79 73 6c 6f 67 | ..Filters.log.messages.by.syslog |
| 13c160 | 2d 69 64 65 6e 74 69 66 69 65 72 2e 00 54 68 69 73 20 69 73 20 64 6f 6e 65 20 74 6f 20 73 75 70 | -identifier..This.is.done.to.sup |
| 13c180 | 70 6f 72 74 20 28 65 74 68 65 72 6e 65 74 29 20 73 77 69 74 63 68 20 66 65 61 74 75 72 65 73 2c | port.(ethernet).switch.features, |
| 13c1a0 | 20 6c 69 6b 65 20 3a 72 66 63 3a 60 33 30 36 39 60 2c 20 77 68 65 72 65 20 74 68 65 20 69 6e 64 | .like.:rfc:`3069`,.where.the.ind |
| 13c1c0 | 69 76 69 64 75 61 6c 20 70 6f 72 74 73 20 61 72 65 20 4e 4f 54 20 61 6c 6c 6f 77 65 64 20 74 6f | ividual.ports.are.NOT.allowed.to |
| 13c1e0 | 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 65 61 63 68 20 6f 74 68 65 72 2c 20 62 75 | .communicate.with.each.other,.bu |
| 13c200 | 74 20 74 68 65 79 20 61 72 65 20 61 6c 6c 6f 77 65 64 20 74 6f 20 74 61 6c 6b 20 74 6f 20 74 68 | t.they.are.allowed.to.talk.to.th |
| 13c220 | 65 20 75 70 73 74 72 65 61 6d 20 72 6f 75 74 65 72 2e 20 41 73 20 64 65 73 63 72 69 62 65 64 20 | e.upstream.router..As.described. |
| 13c240 | 69 6e 20 3a 72 66 63 3a 60 33 30 36 39 60 2c 20 69 74 20 69 73 20 70 6f 73 73 69 62 6c 65 20 74 | in.:rfc:`3069`,.it.is.possible.t |
| 13c260 | 6f 20 61 6c 6c 6f 77 20 74 68 65 73 65 20 68 6f 73 74 73 20 74 6f 20 63 6f 6d 6d 75 6e 69 63 61 | o.allow.these.hosts.to.communica |
| 13c280 | 74 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 72 6f 75 74 65 72 20 62 | te.through.the.upstream.router.b |
| 13c2a0 | 79 20 70 72 6f 78 79 5f 61 72 70 27 69 6e 67 2e 00 54 68 69 73 20 69 73 20 65 73 70 65 63 69 61 | y.proxy_arp'ing..This.is.especia |
| 13c2c0 | 6c 6c 79 20 75 73 65 66 75 6c 20 66 6f 72 20 74 68 65 20 75 70 73 74 72 65 61 6d 20 69 6e 74 65 | lly.useful.for.the.upstream.inte |
| 13c2e0 | 72 66 61 63 65 2c 20 73 69 6e 63 65 20 74 68 65 20 73 6f 75 72 63 65 20 66 6f 72 20 6d 75 6c 74 | rface,.since.the.source.for.mult |
| 13c300 | 69 63 61 73 74 20 74 72 61 66 66 69 63 20 69 73 20 6f 66 74 65 6e 20 66 72 6f 6d 20 61 20 72 65 | icast.traffic.is.often.from.a.re |
| 13c320 | 6d 6f 74 65 20 6c 6f 63 61 74 69 6f 6e 2e 00 54 68 69 73 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 | mote.location..This.is.one.of.th |
| 13c340 | 65 20 73 69 6d 70 6c 65 73 74 20 74 79 70 65 73 20 6f 66 20 74 75 6e 6e 65 6c 73 2c 20 61 73 20 | e.simplest.types.of.tunnels,.as. |
| 13c360 | 64 65 66 69 6e 65 64 20 62 79 20 3a 72 66 63 3a 60 32 30 30 33 60 2e 20 49 74 20 74 61 6b 65 73 | defined.by.:rfc:`2003`..It.takes |
| 13c380 | 20 61 6e 20 49 50 76 34 20 70 61 63 6b 65 74 20 61 6e 64 20 73 65 6e 64 73 20 69 74 20 61 73 20 | .an.IPv4.packet.and.sends.it.as. |
| 13c3a0 | 61 20 70 61 79 6c 6f 61 64 20 6f 66 20 61 6e 6f 74 68 65 72 20 49 50 76 34 20 70 61 63 6b 65 74 | a.payload.of.another.IPv4.packet |
| 13c3c0 | 2e 20 46 6f 72 20 74 68 69 73 20 72 65 61 73 6f 6e 2c 20 74 68 65 72 65 20 61 72 65 20 6e 6f 20 | ..For.this.reason,.there.are.no. |
| 13c3e0 | 6f 74 68 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 70 74 69 6f 6e 73 20 66 6f 72 20 | other.configuration.options.for. |
| 13c400 | 74 68 69 73 20 6b 69 6e 64 20 6f 66 20 74 75 6e 6e 65 6c 2e 00 54 68 69 73 20 69 73 20 6f 70 74 | this.kind.of.tunnel..This.is.opt |
| 13c420 | 69 6f 6e 61 6c 2e 00 54 68 69 73 20 69 73 20 73 69 6d 69 6c 61 72 20 74 6f 20 74 68 65 20 6e 65 | ional..This.is.similar.to.the.ne |
| 13c440 | 74 77 6f 72 6b 20 67 72 6f 75 70 73 20 70 61 72 74 2c 20 62 75 74 20 68 65 72 65 20 79 6f 75 20 | twork.groups.part,.but.here.you. |
| 13c460 | 61 72 65 20 61 62 6c 65 20 74 6f 20 6e 65 67 61 74 65 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 | are.able.to.negate.the.matching. |
| 13c480 | 61 64 64 72 65 73 73 65 73 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 49 50 76 36 20 63 6f 75 6e | addresses..This.is.the.IPv6.coun |
| 13c4a0 | 74 65 72 70 61 72 74 20 6f 66 20 49 50 49 50 2e 20 49 27 6d 20 6e 6f 74 20 61 77 61 72 65 20 6f | terpart.of.IPIP..I'm.not.aware.o |
| 13c4c0 | 66 20 61 6e 20 52 46 43 20 74 68 61 74 20 64 65 66 69 6e 65 73 20 74 68 69 73 20 65 6e 63 61 70 | f.an.RFC.that.defines.this.encap |
| 13c4e0 | 73 75 6c 61 74 69 6f 6e 20 73 70 65 63 69 66 69 63 61 6c 6c 79 2c 20 62 75 74 20 69 74 27 73 20 | sulation.specifically,.but.it's. |
| 13c500 | 61 20 6e 61 74 75 72 61 6c 20 73 70 65 63 69 66 69 63 20 63 61 73 65 20 6f 66 20 49 50 76 36 20 | a.natural.specific.case.of.IPv6. |
| 13c520 | 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6d 65 63 68 61 6e 69 73 6d 73 20 64 65 73 63 72 69 62 | encapsulation.mechanisms.describ |
| 13c540 | 65 64 20 69 6e 20 3a 72 66 63 3a 32 34 37 33 60 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 4c 41 | ed.in.:rfc:2473`..This.is.the.LA |
| 13c560 | 4e 20 65 78 74 65 6e 73 69 6f 6e 20 75 73 65 20 63 61 73 65 2e 20 54 68 65 20 65 74 68 30 20 70 | N.extension.use.case..The.eth0.p |
| 13c580 | 6f 72 74 20 6f 66 20 74 68 65 20 64 69 73 74 61 6e 74 20 56 50 4e 20 70 65 65 72 73 20 77 69 6c | ort.of.the.distant.VPN.peers.wil |
| 13c5a0 | 6c 20 62 65 20 64 69 72 65 63 74 6c 79 20 63 6f 6e 6e 65 63 74 65 64 20 6c 69 6b 65 20 69 66 20 | l.be.directly.connected.like.if. |
| 13c5c0 | 74 68 65 72 65 20 77 61 73 20 61 20 73 77 69 74 63 68 20 62 65 74 77 65 65 6e 20 74 68 65 6d 2e | there.was.a.switch.between.them. |
| 13c5e0 | 00 54 68 69 73 20 69 73 20 74 68 65 20 4c 43 44 20 6d 6f 64 65 6c 20 75 73 65 64 20 69 6e 20 79 | .This.is.the.LCD.model.used.in.y |
| 13c600 | 6f 75 72 20 73 79 73 74 65 6d 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | our.system..This.is.the.configur |
| 13c620 | 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 65 6e 74 69 72 65 20 73 | ation.parameter.for.the.entire.s |
| 13c640 | 68 61 72 65 64 20 6e 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 | hared.network.definition..All.su |
| 13c660 | 62 6e 65 74 73 20 77 69 6c 6c 20 69 6e 68 65 72 69 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 | bnets.will.inherit.this.configur |
| 13c680 | 61 74 69 6f 6e 20 69 74 65 6d 20 69 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 | ation.item.if.not.specified.loca |
| 13c6a0 | 6c 6c 79 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 | lly..This.is.the.configuration.p |
| 13c6c0 | 61 72 61 6d 65 74 65 72 20 66 6f 72 20 74 68 65 20 65 6e 74 69 72 65 20 73 68 61 72 65 64 20 6e | arameter.for.the.entire.shared.n |
| 13c6e0 | 65 74 77 6f 72 6b 20 64 65 66 69 6e 69 74 69 6f 6e 2e 20 41 6c 6c 20 73 75 62 6e 65 74 73 20 77 | etwork.definition..All.subnets.w |
| 13c700 | 69 6c 6c 20 69 6e 68 65 72 69 74 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 | ill.inherit.this.configuration.i |
| 13c720 | 74 65 6d 20 69 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 6c 6f 63 61 6c 6c 79 2e 20 4d 75 | tem.if.not.specified.locally..Mu |
| 13c740 | 6c 74 69 70 6c 65 20 44 4e 53 20 73 65 72 76 65 72 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 | ltiple.DNS.servers.can.be.define |
| 13c760 | 64 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 65 71 75 69 76 61 6c 65 6e 74 20 6f 66 20 74 68 65 | d..This.is.the.equivalent.of.the |
| 13c780 | 20 68 6f 73 74 20 62 6c 6f 63 6b 20 69 6e 20 64 68 63 70 64 2e 63 6f 6e 66 20 6f 66 20 69 73 63 | .host.block.in.dhcpd.conf.of.isc |
| 13c7a0 | 2d 64 68 63 70 64 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 | -dhcpd..This.is.the.name.of.the. |
| 13c7c0 | 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 6e 65 | physical.interface.used.to.conne |
| 13c7e0 | 63 74 20 74 6f 20 79 6f 75 72 20 4c 43 44 20 64 69 73 70 6c 61 79 2e 20 54 61 62 20 63 6f 6d 70 | ct.to.your.LCD.display..Tab.comp |
| 13c800 | 6c 65 74 69 6f 6e 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 61 6e 64 20 69 74 20 77 69 6c 6c 20 | letion.is.supported.and.it.will. |
| 13c820 | 6c 69 73 74 20 79 6f 75 20 61 6c 6c 20 61 76 61 69 6c 61 62 6c 65 20 73 65 72 69 61 6c 20 69 6e | list.you.all.available.serial.in |
| 13c840 | 74 65 72 66 61 63 65 2e 00 54 68 69 73 20 69 73 20 74 68 65 20 70 6f 6c 69 63 79 20 74 68 61 74 | terface..This.is.the.policy.that |
| 13c860 | 20 72 65 71 75 69 65 72 65 73 20 74 68 65 20 6c 6f 77 65 73 74 20 72 65 73 6f 75 72 63 65 73 20 | .requieres.the.lowest.resources. |
| 13c880 | 66 6f 72 20 74 68 65 20 73 61 6d 65 20 61 6d 6f 75 6e 74 20 6f 66 20 74 72 61 66 66 69 63 2e 20 | for.the.same.amount.of.traffic.. |
| 13c8a0 | 42 75 74 20 2a 2a 76 65 72 79 20 6c 69 6b 65 6c 79 20 79 6f 75 20 64 6f 20 6e 6f 74 20 6e 65 65 | But.**very.likely.you.do.not.nee |
| 13c8c0 | 64 20 69 74 20 61 73 20 79 6f 75 20 63 61 6e 6e 6f 74 20 67 65 74 20 6d 75 63 68 20 66 72 6f 6d | d.it.as.you.cannot.get.much.from |
| 13c8e0 | 20 69 74 2e 20 53 6f 6d 65 74 69 6d 65 73 20 69 74 20 69 73 20 75 73 65 64 20 6a 75 73 74 20 74 | .it..Sometimes.it.is.used.just.t |
| 13c900 | 6f 20 65 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 2e 2a 2a 00 54 68 69 73 20 69 73 20 74 68 65 20 | o.enable.logging.**.This.is.the. |
| 13c920 | 70 6f 6c 69 63 79 20 74 68 61 74 20 72 65 71 75 69 72 65 73 20 74 68 65 20 6c 6f 77 65 73 74 20 | policy.that.requires.the.lowest. |
| 13c940 | 72 65 73 6f 75 72 63 65 73 20 66 6f 72 20 74 68 65 20 73 61 6d 65 20 61 6d 6f 75 6e 74 20 6f 66 | resources.for.the.same.amount.of |
| 13c960 | 20 74 72 61 66 66 69 63 2e 20 42 75 74 20 2a 2a 76 65 72 79 20 6c 69 6b 65 6c 79 20 79 6f 75 20 | .traffic..But.**very.likely.you. |
| 13c980 | 64 6f 20 6e 6f 74 20 6e 65 65 64 20 69 74 20 61 73 20 79 6f 75 20 63 61 6e 6e 6f 74 20 67 65 74 | do.not.need.it.as.you.cannot.get |
| 13c9a0 | 20 6d 75 63 68 20 66 72 6f 6d 20 69 74 2e 20 53 6f 6d 65 74 69 6d 65 73 20 69 74 20 69 73 20 75 | .much.from.it..Sometimes.it.is.u |
| 13c9c0 | 73 65 64 20 6a 75 73 74 20 74 6f 20 65 6e 61 62 6c 65 20 6c 6f 67 67 69 6e 67 2e 2a 2a 00 54 68 | sed.just.to.enable.logging.**.Th |
| 13c9e0 | 69 73 20 69 73 20 75 73 65 66 75 6c 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 6e 20 63 6f | is.is.useful,.for.example,.in.co |
| 13ca00 | 6d 62 69 6e 61 74 69 6f 6e 20 77 69 74 68 20 68 6f 73 74 66 69 6c 65 20 75 70 64 61 74 65 2e 00 | mbination.with.hostfile.update.. |
| 13ca20 | 54 68 69 73 20 69 73 20 77 68 65 72 65 20 22 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 72 65 6c | This.is.where."UDP.broadcast.rel |
| 13ca40 | 61 79 22 20 63 6f 6d 65 73 20 69 6e 74 6f 20 70 6c 61 79 21 20 49 74 20 77 69 6c 6c 20 66 6f 72 | ay".comes.into.play!.It.will.for |
| 13ca60 | 77 61 72 64 20 72 65 63 65 69 76 65 64 20 62 72 6f 61 64 63 61 73 74 73 20 74 6f 20 6f 74 68 65 | ward.received.broadcasts.to.othe |
| 13ca80 | 72 20 63 6f 6e 66 69 67 75 72 65 64 20 6e 65 74 77 6f 72 6b 73 2e 00 54 68 69 73 20 6d 61 6b 65 | r.configured.networks..This.make |
| 13caa0 | 73 20 74 68 65 20 73 65 72 76 65 72 20 61 75 74 68 6f 72 69 74 61 74 69 76 65 6c 79 20 6e 6f 74 | s.the.server.authoritatively.not |
| 13cac0 | 20 61 77 61 72 65 20 6f 66 3a 20 31 30 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 38 2e | .aware.of:.10.in-addr.arpa,.168. |
| 13cae0 | 31 39 32 2e 69 6e 2d 61 64 64 72 2e 61 72 70 61 2c 20 31 36 2d 33 31 2e 31 37 32 2e 69 6e 2d 61 | 192.in-addr.arpa,.16-31.172.in-a |
| 13cb00 | 64 64 72 2e 61 72 70 61 2c 20 77 68 69 63 68 20 65 6e 61 62 6c 69 6e 67 20 75 70 73 74 72 65 61 | ddr.arpa,.which.enabling.upstrea |
| 13cb20 | 6d 20 44 4e 53 20 73 65 72 76 65 72 28 73 29 20 74 6f 20 62 65 20 75 73 65 64 20 66 6f 72 20 72 | m.DNS.server(s).to.be.used.for.r |
| 13cb40 | 65 76 65 72 73 65 20 6c 6f 6f 6b 75 70 73 20 6f 66 20 74 68 65 73 65 20 7a 6f 6e 65 73 2e 00 54 | everse.lookups.of.these.zones..T |
| 13cb60 | 68 69 73 20 6d 65 74 68 6f 64 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 64 69 73 61 62 6c 65 | his.method.automatically.disable |
| 13cb80 | 73 20 49 50 76 36 20 74 72 61 66 66 69 63 20 66 6f 72 77 61 72 64 69 6e 67 20 6f 6e 20 74 68 65 | s.IPv6.traffic.forwarding.on.the |
| 13cba0 | 20 69 6e 74 65 72 66 61 63 65 20 69 6e 20 71 75 65 73 74 69 6f 6e 2e 00 54 68 69 73 20 6d 6f 64 | .interface.in.question..This.mod |
| 13cbc0 | 65 20 70 72 6f 76 69 64 65 73 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 00 54 68 69 73 | e.provides.fault.tolerance..This |
| 13cbe0 | 20 6d 6f 64 65 20 70 72 6f 76 69 64 65 73 20 66 61 75 6c 74 20 74 6f 6c 65 72 61 6e 63 65 2e 20 | .mode.provides.fault.tolerance.. |
| 13cc00 | 54 68 65 20 3a 63 66 67 63 6d 64 3a 60 70 72 69 6d 61 72 79 60 20 6f 70 74 69 6f 6e 2c 20 64 6f | The.:cfgcmd:`primary`.option,.do |
| 13cc20 | 63 75 6d 65 6e 74 65 64 20 62 65 6c 6f 77 2c 20 61 66 66 65 63 74 73 20 74 68 65 20 62 65 68 61 | cumented.below,.affects.the.beha |
| 13cc40 | 76 69 6f 72 20 6f 66 20 74 68 69 73 20 6d 6f 64 65 2e 00 54 68 69 73 20 6d 6f 64 65 20 70 72 6f | vior.of.this.mode..This.mode.pro |
| 13cc60 | 76 69 64 65 73 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 61 6e 64 20 66 61 75 6c 74 20 74 | vides.load.balancing.and.fault.t |
| 13cc80 | 6f 6c 65 72 61 6e 63 65 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 61 64 64 73 20 50 6f 77 65 72 | olerance..This.option.adds.Power |
| 13cca0 | 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 77 68 65 6e 20 61 70 70 6c 69 63 61 | .Constraint.element.when.applica |
| 13ccc0 | 62 6c 65 20 61 6e 64 20 43 6f 75 6e 74 72 79 20 65 6c 65 6d 65 6e 74 20 69 73 20 61 64 64 65 64 | ble.and.Country.element.is.added |
| 13cce0 | 2e 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 69 73 20 72 65 | ..Power.Constraint.element.is.re |
| 13cd00 | 71 75 69 72 65 64 20 62 79 20 54 72 61 6e 73 6d 69 74 20 50 6f 77 65 72 20 43 6f 6e 74 72 6f 6c | quired.by.Transmit.Power.Control |
| 13cd20 | 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 61 64 64 73 20 74 68 65 20 50 6f 77 65 72 20 43 6f 6e | ..This.option.adds.the.Power.Con |
| 13cd40 | 73 74 72 61 69 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 20 77 68 65 6e | straint.information.element.when |
| 13cd60 | 20 61 70 70 6c 69 63 61 62 6c 65 20 61 6e 64 20 74 68 65 20 43 6f 75 6e 74 72 79 20 69 6e 66 6f | .applicable.and.the.Country.info |
| 13cd80 | 72 6d 61 74 69 6f 6e 20 65 6c 65 6d 65 6e 74 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 | rmation.element.is.configured..T |
| 13cda0 | 68 65 20 50 6f 77 65 72 20 43 6f 6e 73 74 72 61 69 6e 74 20 65 6c 65 6d 65 6e 74 20 69 73 20 72 | he.Power.Constraint.element.is.r |
| 13cdc0 | 65 71 75 69 72 65 64 20 62 79 20 54 72 61 6e 73 6d 69 74 20 50 6f 77 65 72 20 43 6f 6e 74 72 6f | equired.by.Transmit.Power.Contro |
| 13cde0 | 6c 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 61 6c 6c 6f 77 20 74 6f 20 73 70 65 63 69 66 69 65 | l..This.option.allow.to.specifie |
| 13ce00 | 73 20 74 68 65 20 38 30 32 2e 33 61 64 20 73 79 73 74 65 6d 20 4d 41 43 20 61 64 64 72 65 73 73 | s.the.802.3ad.system.MAC.address |
| 13ce20 | 2e 59 6f 75 20 63 61 6e 20 73 65 74 20 61 20 72 61 6e 64 6f 6d 20 6d 61 63 2d 61 64 64 72 65 73 | .You.can.set.a.random.mac-addres |
| 13ce40 | 73 20 74 68 61 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 66 6f 72 20 74 68 65 73 65 20 4c 41 43 | s.that.can.be.used.for.these.LAC |
| 13ce60 | 50 44 55 20 65 78 63 68 61 6e 67 65 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 | PDU.exchanges..This.option.can.b |
| 13ce80 | 65 20 73 70 65 63 69 66 69 65 64 20 6d 75 6c 74 69 70 6c 65 20 74 69 6d 65 73 2e 00 54 68 69 73 | e.specified.multiple.times..This |
| 13cea0 | 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 73 75 70 70 6c 69 65 64 20 6d 75 6c 74 69 70 6c 65 | .option.can.be.supplied.multiple |
| 13cec0 | 20 74 69 6d 65 73 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 6d 61 6e 64 61 74 6f 72 79 | .times..This.option.is.mandatory |
| 13cee0 | 20 69 6e 20 41 63 63 65 73 73 2d 50 6f 69 6e 74 20 6d 6f 64 65 2e 00 54 68 69 73 20 6f 70 74 69 | .in.Access-Point.mode..This.opti |
| 13cf00 | 6f 6e 20 69 73 20 72 65 71 75 69 72 65 64 20 77 68 65 6e 20 72 75 6e 6e 69 6e 67 20 61 20 44 4d | on.is.required.when.running.a.DM |
| 13cf20 | 56 50 4e 20 73 70 6f 6b 65 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 62 | VPN.spoke..This.option.is.used.b |
| 13cf40 | 79 20 73 6f 6d 65 20 44 48 43 50 20 63 6c 69 65 6e 74 73 20 61 73 20 61 20 77 61 79 20 66 6f 72 | y.some.DHCP.clients.as.a.way.for |
| 13cf60 | 20 75 73 65 72 73 20 74 6f 20 73 70 65 63 69 66 79 20 69 64 65 6e 74 69 66 79 69 6e 67 20 69 6e | .users.to.specify.identifying.in |
| 13cf80 | 66 6f 72 6d 61 74 69 6f 6e 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 2e 20 54 68 69 73 20 63 61 | formation.to.the.client..This.ca |
| 13cfa0 | 6e 20 62 65 20 75 73 65 64 20 69 6e 20 61 20 73 69 6d 69 6c 61 72 20 77 61 79 20 74 6f 20 74 68 | n.be.used.in.a.similar.way.to.th |
| 13cfc0 | 65 20 76 65 6e 64 6f 72 2d 63 6c 61 73 73 2d 69 64 65 6e 74 69 66 69 65 72 20 6f 70 74 69 6f 6e | e.vendor-class-identifier.option |
| 13cfe0 | 2c 20 62 75 74 20 74 68 65 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 6f 70 74 69 6f 6e 20 69 73 | ,.but.the.value.of.the.option.is |
| 13d000 | 20 73 70 65 63 69 66 69 65 64 20 62 79 20 74 68 65 20 75 73 65 72 2c 20 6e 6f 74 20 74 68 65 20 | .specified.by.the.user,.not.the. |
| 13d020 | 76 65 6e 64 6f 72 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 62 79 20 73 | vendor..This.option.is.used.by.s |
| 13d040 | 6f 6d 65 20 44 48 43 50 20 63 6c 69 65 6e 74 73 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 | ome.DHCP.clients.to.identify.the |
| 13d060 | 20 76 65 6e 64 6f 72 20 74 79 70 65 20 61 6e 64 20 70 6f 73 73 69 62 6c 79 20 74 68 65 20 63 6f | .vendor.type.and.possibly.the.co |
| 13d080 | 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 20 61 20 44 48 43 50 20 63 6c 69 65 6e 74 2e 20 54 68 | nfiguration.of.a.DHCP.client..Th |
| 13d0a0 | 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 61 20 73 74 72 69 6e 67 20 6f 66 20 62 79 74 | e.information.is.a.string.of.byt |
| 13d0c0 | 65 73 20 77 68 6f 73 65 20 63 6f 6e 74 65 6e 74 73 20 61 72 65 20 73 70 65 63 69 66 69 63 20 74 | es.whose.contents.are.specific.t |
| 13d0e0 | 6f 20 74 68 65 20 76 65 6e 64 6f 72 20 61 6e 64 20 61 72 65 20 6e 6f 74 20 73 70 65 63 69 66 69 | o.the.vendor.and.are.not.specifi |
| 13d100 | 65 64 20 69 6e 20 61 20 73 74 61 6e 64 61 72 64 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 6d 75 | ed.in.a.standard..This.option.mu |
| 13d120 | 73 74 20 62 65 20 75 73 65 64 20 77 69 74 68 20 60 60 74 69 6d 65 6f 75 74 60 60 20 6f 70 74 69 | st.be.used.with.``timeout``.opti |
| 13d140 | 6f 6e 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 6f 6e 6c 79 20 61 66 66 65 63 74 73 20 38 30 32 | on..This.option.only.affects.802 |
| 13d160 | 2e 33 61 64 20 6d 6f 64 65 2e 00 54 68 69 73 20 6f 70 74 69 6f 6e 20 72 65 71 75 69 72 65 73 20 | .3ad.mode..This.option.requires. |
| 13d180 | 3a 61 62 62 72 3a 60 4d 46 50 20 28 4d 61 6e 61 67 65 6d 65 6e 74 20 46 72 61 6d 65 20 50 72 6f | :abbr:`MFP.(Management.Frame.Pro |
| 13d1a0 | 74 65 63 74 69 6f 6e 29 60 20 74 6f 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 54 68 69 73 20 6f 70 | tection)`.to.be.enabled..This.op |
| 13d1c0 | 74 69 6f 6e 20 73 70 65 63 69 66 69 65 73 20 61 20 64 65 6c 61 79 20 69 6e 20 73 65 63 6f 6e 64 | tion.specifies.a.delay.in.second |
| 13d1e0 | 73 20 62 65 66 6f 72 65 20 76 72 72 70 20 69 6e 73 74 61 6e 63 65 73 20 73 74 61 72 74 20 75 70 | s.before.vrrp.instances.start.up |
| 13d200 | 20 61 66 74 65 72 20 6b 65 65 70 61 6c 69 76 65 64 20 73 74 61 72 74 73 2e 00 54 68 69 73 20 6f | .after.keepalived.starts..This.o |
| 13d220 | 70 74 69 6f 6e 20 77 61 73 20 63 61 6c 6c 65 64 20 2d 2d 6e 63 70 2d 63 69 70 68 65 72 73 20 69 | ption.was.called.--ncp-ciphers.i |
| 13d240 | 6e 20 4f 70 65 6e 56 50 4e 20 32 2e 34 20 62 75 74 20 68 61 73 20 62 65 65 6e 20 72 65 6e 61 6d | n.OpenVPN.2.4.but.has.been.renam |
| 13d260 | 65 64 20 74 6f 20 2d 2d 64 61 74 61 2d 63 69 70 68 65 72 73 20 69 6e 20 4f 70 65 6e 56 50 4e 20 | ed.to.--data-ciphers.in.OpenVPN. |
| 13d280 | 32 2e 35 20 74 6f 20 6d 6f 72 65 20 61 63 63 75 72 61 74 65 6c 79 20 72 65 66 6c 65 63 74 20 69 | 2.5.to.more.accurately.reflect.i |
| 13d2a0 | 74 73 20 6d 65 61 6e 69 6e 67 2e 20 54 68 65 20 66 69 72 73 74 20 63 69 70 68 65 72 20 69 6e 20 | ts.meaning..The.first.cipher.in. |
| 13d2c0 | 74 68 61 74 20 6c 69 73 74 20 74 68 61 74 20 69 73 20 61 6c 73 6f 20 69 6e 20 74 68 65 20 63 6c | that.list.that.is.also.in.the.cl |
| 13d2e0 | 69 65 6e 74 27 73 20 2d 2d 64 61 74 61 2d 63 69 70 68 65 72 73 20 6c 69 73 74 20 69 73 20 63 68 | ient's.--data-ciphers.list.is.ch |
| 13d300 | 6f 73 65 6e 2e 20 49 66 20 6e 6f 20 63 6f 6d 6d 6f 6e 20 63 69 70 68 65 72 20 69 73 20 66 6f 75 | osen..If.no.common.cipher.is.fou |
| 13d320 | 6e 64 20 74 68 65 20 63 6c 69 65 6e 74 20 69 73 20 72 65 6a 65 63 74 65 64 2e 00 54 68 69 73 20 | nd.the.client.is.rejected..This. |
| 13d340 | 6f 70 74 69 6f 6e 73 20 64 65 66 61 75 6c 74 73 20 74 6f 20 32 30 34 38 00 54 68 69 73 20 70 61 | options.defaults.to.2048.This.pa |
| 13d360 | 72 61 6d 65 74 65 72 20 61 6c 6c 6f 77 73 20 74 6f 20 22 73 68 6f 72 74 63 75 74 22 20 72 6f 75 | rameter.allows.to."shortcut".rou |
| 13d380 | 74 65 73 20 28 6e 6f 6e 2d 62 61 63 6b 62 6f 6e 65 29 20 66 6f 72 20 69 6e 74 65 72 2d 61 72 65 | tes.(non-backbone).for.inter-are |
| 13d3a0 | 61 20 72 6f 75 74 65 73 2e 20 54 68 65 72 65 20 61 72 65 20 74 68 72 65 65 20 6d 6f 64 65 73 20 | a.routes..There.are.three.modes. |
| 13d3c0 | 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 72 6f 75 74 65 73 20 73 68 6f 72 74 63 75 74 74 69 6e | available.for.routes.shortcuttin |
| 13d3e0 | 67 3a 00 54 68 69 73 20 70 6f 6c 69 63 79 20 69 73 20 69 6e 74 65 6e 64 65 64 20 74 6f 20 70 72 | g:.This.policy.is.intended.to.pr |
| 13d400 | 6f 76 69 64 65 20 61 20 6d 6f 72 65 20 62 61 6c 61 6e 63 65 64 20 64 69 73 74 72 69 62 75 74 69 | ovide.a.more.balanced.distributi |
| 13d420 | 6f 6e 20 6f 66 20 74 72 61 66 66 69 63 20 74 68 61 6e 20 6c 61 79 65 72 32 20 61 6c 6f 6e 65 2c | on.of.traffic.than.layer2.alone, |
| 13d440 | 20 65 73 70 65 63 69 61 6c 6c 79 20 69 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 77 68 65 72 | .especially.in.environments.wher |
| 13d460 | 65 20 61 20 6c 61 79 65 72 33 20 67 61 74 65 77 61 79 20 64 65 76 69 63 65 20 69 73 20 72 65 71 | e.a.layer3.gateway.device.is.req |
| 13d480 | 75 69 72 65 64 20 74 6f 20 72 65 61 63 68 20 6d 6f 73 74 20 64 65 73 74 69 6e 61 74 69 6f 6e 73 | uired.to.reach.most.destinations |
| 13d4a0 | 2e 00 54 68 69 73 20 70 72 6f 6d 70 74 65 64 20 73 6f 6d 65 20 49 53 50 73 20 74 6f 20 64 65 76 | ..This.prompted.some.ISPs.to.dev |
| 13d4c0 | 65 6c 6f 70 20 61 20 70 6f 6c 69 63 79 20 77 69 74 68 69 6e 20 74 68 65 20 3a 61 62 62 72 3a 60 | elop.a.policy.within.the.:abbr:` |
| 13d4e0 | 41 52 49 4e 20 28 41 6d 65 72 69 63 61 6e 20 52 65 67 69 73 74 72 79 20 66 6f 72 20 49 6e 74 65 | ARIN.(American.Registry.for.Inte |
| 13d500 | 72 6e 65 74 20 4e 75 6d 62 65 72 73 29 60 20 74 6f 20 61 6c 6c 6f 63 61 74 65 20 6e 65 77 20 70 | rnet.Numbers)`.to.allocate.new.p |
| 13d520 | 72 69 76 61 74 65 20 61 64 64 72 65 73 73 20 73 70 61 63 65 20 66 6f 72 20 43 47 4e 73 2c 20 62 | rivate.address.space.for.CGNs,.b |
| 13d540 | 75 74 20 41 52 49 4e 20 64 65 66 65 72 72 65 64 20 74 6f 20 74 68 65 20 49 45 54 46 20 62 65 66 | ut.ARIN.deferred.to.the.IETF.bef |
| 13d560 | 6f 72 65 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 74 68 65 20 70 6f 6c 69 63 79 20 69 6e 64 69 | ore.implementing.the.policy.indi |
| 13d580 | 63 61 74 69 6e 67 20 74 68 61 74 20 74 68 65 20 6d 61 74 74 65 72 20 77 61 73 20 6e 6f 74 20 61 | cating.that.the.matter.was.not.a |
| 13d5a0 | 20 74 79 70 69 63 61 6c 20 61 6c 6c 6f 63 61 74 69 6f 6e 20 69 73 73 75 65 20 62 75 74 20 61 20 | .typical.allocation.issue.but.a. |
| 13d5c0 | 72 65 73 65 72 76 61 74 69 6f 6e 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 66 6f 72 20 74 65 63 | reservation.of.addresses.for.tec |
| 13d5e0 | 68 6e 69 63 61 6c 20 70 75 72 70 6f 73 65 73 20 28 70 65 72 20 3a 72 66 63 3a 60 32 38 36 30 60 | hnical.purposes.(per.:rfc:`2860` |
| 13d600 | 29 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 64 20 73 65 74 74 69 6e 67 20 64 65 66 69 6e 65 73 | )..This.required.setting.defines |
| 13d620 | 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 72 75 6c 65 2e | .the.action.of.the.current.rule. |
| 13d640 | 20 49 66 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 | .If.action.is.set.to.``jump``,.t |
| 13d660 | 68 65 6e 20 60 60 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 | hen.``jump-target``.is.also.need |
| 13d680 | 65 64 2e 00 54 68 69 73 20 72 65 71 75 69 72 65 64 20 73 65 74 74 69 6e 67 20 64 65 66 69 6e 65 | ed..This.required.setting.define |
| 13d6a0 | 73 20 74 68 65 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 72 75 6c 65 | s.the.action.of.the.current.rule |
| 13d6c0 | 2e 20 49 66 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 6a 75 6d 70 2c 20 74 68 65 6e | ..If.action.is.set.to.jump,.then |
| 13d6e0 | 20 6a 75 6d 70 2d 74 61 72 67 65 74 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 | .jump-target.is.also.needed..Thi |
| 13d700 | 73 20 72 65 71 75 69 72 65 64 20 73 65 74 74 69 6e 67 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 | s.required.setting.defines.the.a |
| 13d720 | 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 63 75 72 72 65 6e 74 20 72 75 6c 65 2e 20 49 66 20 74 68 | ction.of.the.current.rule..If.th |
| 13d740 | 65 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 6a 75 6d 70 2c 20 74 68 65 6e 20 61 20 | e.action.is.set.to.jump,.then.a. |
| 13d760 | 6a 75 6d 70 2d 74 61 72 67 65 74 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 | jump-target.is.also.needed..This |
| 13d780 | 20 72 65 71 75 69 72 65 73 20 74 77 6f 20 66 69 6c 65 73 2c 20 6f 6e 65 20 74 6f 20 63 72 65 61 | .requires.two.files,.one.to.crea |
| 13d7a0 | 74 65 20 74 68 65 20 64 65 76 69 63 65 20 28 58 58 58 2e 6e 65 74 64 65 76 29 20 61 6e 64 20 6f | te.the.device.(XXX.netdev).and.o |
| 13d7c0 | 6e 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 6f 6e 20 74 | ne.to.configure.the.network.on.t |
| 13d7e0 | 68 65 20 64 65 76 69 63 65 20 28 58 58 58 2e 6e 65 74 77 6f 72 6b 29 00 54 68 69 73 20 72 65 73 | he.device.(XXX.network).This.res |
| 13d800 | 75 6c 74 73 20 69 6e 20 74 68 65 20 61 63 74 69 76 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ults.in.the.active.configuration |
| 13d820 | 3a 00 54 68 69 73 20 73 61 79 73 20 74 68 61 74 20 74 68 69 73 20 64 65 76 69 63 65 20 69 73 20 | :.This.says.that.this.device.is. |
| 13d840 | 74 68 65 20 6f 6e 6c 79 20 44 48 43 50 20 73 65 72 76 65 72 20 66 6f 72 20 74 68 69 73 20 6e 65 | the.only.DHCP.server.for.this.ne |
| 13d860 | 74 77 6f 72 6b 2e 20 49 66 20 6f 74 68 65 72 20 64 65 76 69 63 65 73 20 61 72 65 20 74 72 79 69 | twork..If.other.devices.are.tryi |
| 13d880 | 6e 67 20 74 6f 20 6f 66 66 65 72 20 44 48 43 50 20 6c 65 61 73 65 73 2c 20 74 68 69 73 20 6d 61 | ng.to.offer.DHCP.leases,.this.ma |
| 13d8a0 | 63 68 69 6e 65 20 77 69 6c 6c 20 73 65 6e 64 20 27 44 48 43 50 4e 41 4b 27 20 74 6f 20 61 6e 79 | chine.will.send.'DHCPNAK'.to.any |
| 13d8c0 | 20 64 65 76 69 63 65 20 74 72 79 69 6e 67 20 74 6f 20 72 65 71 75 65 73 74 20 61 6e 20 49 50 20 | .device.trying.to.request.an.IP. |
| 13d8e0 | 61 64 64 72 65 73 73 20 74 68 61 74 20 69 73 20 6e 6f 74 20 76 61 6c 69 64 20 66 6f 72 20 74 68 | address.that.is.not.valid.for.th |
| 13d900 | 69 73 20 6e 65 74 77 6f 72 6b 2e 00 54 68 69 73 20 73 65 63 74 69 6f 6e 20 64 65 73 63 72 69 62 | is.network..This.section.describ |
| 13d920 | 65 73 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 44 4e 53 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d | es.configuring.DNS.on.the.system |
| 13d940 | 2c 20 6e 61 6d 65 6c 79 3a 00 54 68 69 73 20 73 65 63 74 69 6f 6e 20 64 65 73 63 72 69 62 65 73 | ,.namely:.This.section.describes |
| 13d960 | 20 74 68 65 20 73 79 73 74 65 6d 27 73 20 68 6f 73 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 | .the.system's.host.information.a |
| 13d980 | 6e 64 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 6d 2c 20 69 74 20 63 6f 76 | nd.how.to.configure.them,.it.cov |
| 13d9a0 | 65 72 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 69 63 73 3a 00 54 68 69 73 20 73 | ers.the.following.topics:.This.s |
| 13d9c0 | 65 63 74 69 6f 6e 20 6e 65 65 64 73 20 69 6d 70 72 6f 76 65 6d 65 6e 74 73 2c 20 65 78 61 6d 70 | ection.needs.improvements,.examp |
| 13d9e0 | 6c 65 73 20 61 6e 64 20 65 78 70 6c 61 6e 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 73 65 74 20 74 | les.and.explanations..This.set.t |
| 13da00 | 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 | he.default.action.of.the.rule-se |
| 13da20 | 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 6d 61 74 63 68 65 64 20 61 20 70 61 63 6b 65 74 20 63 72 | t.if.no.rule.matched.a.packet.cr |
| 13da40 | 69 74 65 72 69 61 2e 20 49 66 20 64 65 66 61 63 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 | iteria..If.defacult-action.is.se |
| 13da60 | 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 | t.to.``jump``,.then.``default-ju |
| 13da80 | 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 00 54 68 69 73 | mp-target``.is.also.needed..This |
| 13daa0 | 20 73 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 | .set.the.default.action.of.the.r |
| 13dac0 | 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f 20 72 75 6c 65 20 6d 61 74 63 68 65 64 20 61 20 70 61 63 | ule-set.if.no.rule.matched.a.pac |
| 13dae0 | 6b 65 74 20 63 72 69 74 65 72 69 61 2e 20 49 66 20 64 65 66 61 63 75 6c 74 2d 61 63 74 69 6f 6e | ket.criteria..If.defacult-action |
| 13db00 | 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e 20 60 60 64 65 66 61 | .is.set.to.``jump``,.then.``defa |
| 13db20 | 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 | ult-jump-target``.is.also.needed |
| 13db40 | 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 6e 73 2c 20 64 65 66 | ..Note.that.for.base.chains,.def |
| 13db60 | 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 65 20 73 65 74 20 74 6f 20 60 | ault.action.can.only.be.set.to.` |
| 13db80 | 60 61 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 | `accept``.or.``drop``,.while.on. |
| 13dba0 | 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 6d 6f 72 65 20 61 63 74 69 6f 6e 73 20 61 72 65 20 61 | custom.chain,.more.actions.are.a |
| 13dbc0 | 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 | vailable..This.set.the.default.a |
| 13dbe0 | 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 20 6e 6f 20 72 75 6c 65 | ction.of.the.rule-set.if.no.rule |
| 13dc00 | 20 6d 61 74 63 68 65 64 20 61 20 70 61 63 6b 65 74 20 63 72 69 74 65 72 69 61 2e 20 49 66 20 64 | .matched.a.packet.criteria..If.d |
| 13dc20 | 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 | efault-action.is.set.to.``jump`` |
| 13dc40 | 2c 20 74 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 | ,.then.``default-jump-target``.i |
| 13dc60 | 73 20 61 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 | s.also.needed..Note.that.for.bas |
| 13dc80 | 65 20 63 68 61 69 6e 73 2c 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c | e.chains,.default.action.can.onl |
| 13dca0 | 79 20 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 | y.be.set.to.``accept``.or.``drop |
| 13dcc0 | 60 60 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2c 20 6d 6f 72 65 20 | ``,.while.on.custom.chain,.more. |
| 13dce0 | 61 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 73 | actions.are.available..This.sets |
| 13dd00 | 20 74 68 65 20 61 63 63 65 70 74 65 64 20 63 69 70 68 65 72 73 20 74 6f 20 75 73 65 20 77 68 65 | .the.accepted.ciphers.to.use.whe |
| 13dd20 | 6e 20 76 65 72 73 69 6f 6e 20 3d 3e 20 32 2e 34 2e 30 20 61 6e 64 20 4e 43 50 20 69 73 20 65 6e | n.version.=>.2.4.0.and.NCP.is.en |
| 13dd40 | 61 62 6c 65 64 20 28 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 29 2e 20 44 65 | abled.(which.is.the.default)..De |
| 13dd60 | 66 61 75 6c 74 20 4e 43 50 20 63 69 70 68 65 72 20 66 6f 72 20 76 65 72 73 69 6f 6e 73 20 3e 3d | fault.NCP.cipher.for.versions.>= |
| 13dd80 | 20 32 2e 34 2e 30 20 69 73 20 61 65 73 32 35 36 67 63 6d 2e 20 54 68 65 20 66 69 72 73 74 20 63 | .2.4.0.is.aes256gcm..The.first.c |
| 13dda0 | 69 70 68 65 72 20 69 6e 20 74 68 69 73 20 6c 69 73 74 20 69 73 20 77 68 61 74 20 73 65 72 76 65 | ipher.in.this.list.is.what.serve |
| 13ddc0 | 72 20 70 75 73 68 65 73 20 74 6f 20 63 6c 69 65 6e 74 73 2e 00 54 68 69 73 20 73 65 74 73 20 74 | r.pushes.to.clients..This.sets.t |
| 13dde0 | 68 65 20 63 69 70 68 65 72 20 77 68 65 6e 20 4e 43 50 20 28 4e 65 67 6f 74 69 61 62 6c 65 20 43 | he.cipher.when.NCP.(Negotiable.C |
| 13de00 | 72 79 70 74 6f 20 50 61 72 61 6d 65 74 65 72 73 29 20 69 73 20 64 69 73 61 62 6c 65 64 20 6f 72 | rypto.Parameters).is.disabled.or |
| 13de20 | 20 4f 70 65 6e 56 50 4e 20 76 65 72 73 69 6f 6e 20 3c 20 32 2e 34 2e 30 2e 00 54 68 69 73 20 73 | .OpenVPN.version.<.2.4.0..This.s |
| 13de40 | 65 74 73 20 74 68 65 20 63 69 70 68 65 72 20 77 68 65 6e 20 4e 43 50 20 28 4e 65 67 6f 74 69 61 | ets.the.cipher.when.NCP.(Negotia |
| 13de60 | 62 6c 65 20 43 72 79 70 74 6f 20 50 61 72 61 6d 65 74 65 72 73 29 20 69 73 20 64 69 73 61 62 6c | ble.Crypto.Parameters).is.disabl |
| 13de80 | 65 64 20 6f 72 20 4f 70 65 6e 56 50 4e 20 76 65 72 73 69 6f 6e 20 3c 20 32 2e 34 2e 30 2e 20 54 | ed.or.OpenVPN.version.<.2.4.0..T |
| 13dea0 | 68 69 73 20 6f 70 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 61 6e | his.option.should.not.be.used.an |
| 13dec0 | 79 20 6c 6f 6e 67 65 72 20 69 6e 20 54 4c 53 20 6d 6f 64 65 20 61 6e 64 20 73 74 69 6c 6c 20 65 | y.longer.in.TLS.mode.and.still.e |
| 13dee0 | 78 69 73 74 73 20 66 6f 72 20 63 6f 6d 70 61 74 69 62 69 6c 69 74 79 20 77 69 74 68 20 6f 6c 64 | xists.for.compatibility.with.old |
| 13df00 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 65 20 64 | .configurations..This.sets.the.d |
| 13df20 | 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 20 69 66 | efault.action.of.the.rule-set.if |
| 13df40 | 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 61 6e 79 20 6f 66 20 | .a.packet.does.not.match.any.of. |
| 13df60 | 74 68 65 20 72 75 6c 65 73 20 69 6e 20 74 68 61 74 20 63 68 61 69 6e 2e 20 49 66 20 64 65 66 61 | the.rules.in.that.chain..If.defa |
| 13df80 | 75 6c 74 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 | ult-action.is.set.to.``jump``,.t |
| 13dfa0 | 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 | hen.``default-jump-target``.is.a |
| 13dfc0 | 6c 73 6f 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 | lso.needed..Note.that.for.base.c |
| 13dfe0 | 68 61 69 6e 73 2c 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 62 | hains,.default.action.can.only.b |
| 13e000 | 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 2c | e.set.to.``accept``.or.``drop``, |
| 13e020 | 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 20 6d 6f 72 65 20 61 63 74 | .while.on.custom.chains.more.act |
| 13e040 | 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 73 20 74 68 | ions.are.available..This.sets.th |
| 13e060 | 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 66 20 74 68 65 20 72 75 6c 65 2d 73 65 74 | e.default.action.of.the.rule-set |
| 13e080 | 20 69 66 20 61 20 70 61 63 6b 65 74 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 20 | .if.a.packet.does.not.match.the. |
| 13e0a0 | 63 72 69 74 65 72 69 61 20 6f 66 20 61 6e 79 20 72 75 6c 65 2e 20 49 66 20 64 65 66 61 75 6c 74 | criteria.of.any.rule..If.default |
| 13e0c0 | 2d 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2c 20 74 68 65 6e | -action.is.set.to.``jump``,.then |
| 13e0e0 | 20 60 60 64 65 66 61 75 6c 74 2d 6a 75 6d 70 2d 74 61 72 67 65 74 60 60 20 69 73 20 61 6c 73 6f | .``default-jump-target``.is.also |
| 13e100 | 20 6e 65 65 64 65 64 2e 20 4e 6f 74 65 20 74 68 61 74 20 66 6f 72 20 62 61 73 65 20 63 68 61 69 | .needed..Note.that.for.base.chai |
| 13e120 | 6e 73 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 63 61 6e 20 6f 6e 6c 79 20 | ns,.the.default.action.can.only. |
| 13e140 | 62 65 20 73 65 74 20 74 6f 20 60 60 61 63 63 65 70 74 60 60 20 6f 72 20 60 60 64 72 6f 70 60 60 | be.set.to.``accept``.or.``drop`` |
| 13e160 | 2c 20 77 68 69 6c 65 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2c 20 6d 6f 72 65 20 61 | ,.while.on.custom.chains,.more.a |
| 13e180 | 63 74 69 6f 6e 73 20 61 72 65 20 61 76 61 69 6c 61 62 6c 65 2e 00 54 68 69 73 20 73 65 74 74 69 | ctions.are.available..This.setti |
| 13e1a0 | 6e 67 20 63 6f 6e 66 69 67 75 72 65 73 20 53 70 61 63 69 61 6c 20 53 74 72 65 61 6d 20 61 6e 64 | ng.configures.Spacial.Stream.and |
| 13e1c0 | 20 4d 6f 64 75 6c 61 74 69 6f 6e 20 43 6f 64 69 6e 67 20 53 63 68 65 6d 65 20 73 65 74 74 69 6e | .Modulation.Coding.Scheme.settin |
| 13e1e0 | 67 73 20 66 6f 72 20 48 45 20 6d 6f 64 65 20 28 48 45 2d 4d 43 53 29 2e 20 49 74 20 69 73 20 75 | gs.for.HE.mode.(HE-MCS)..It.is.u |
| 13e200 | 73 75 61 6c 6c 79 20 6e 6f 74 20 6e 65 65 64 65 64 20 74 6f 20 73 65 74 20 74 68 69 73 20 65 78 | sually.not.needed.to.set.this.ex |
| 13e220 | 70 6c 69 63 69 74 6c 79 2c 20 62 75 74 20 69 74 20 6d 69 67 68 74 20 68 65 6c 70 20 77 69 74 68 | plicitly,.but.it.might.help.with |
| 13e240 | 20 73 6f 6d 65 20 57 69 46 69 20 61 64 61 70 74 65 72 73 2e 00 54 68 69 73 20 73 65 74 74 69 6e | .some.WiFi.adapters..This.settin |
| 13e260 | 67 20 64 65 66 61 75 6c 74 73 20 74 6f 20 31 35 30 30 20 61 6e 64 20 69 73 20 76 61 6c 69 64 20 | g.defaults.to.1500.and.is.valid. |
| 13e280 | 62 65 74 77 65 65 6e 20 31 30 20 61 6e 64 20 36 30 30 30 30 2e 00 54 68 69 73 20 73 65 74 74 69 | between.10.and.60000..This.setti |
| 13e2a0 | 6e 67 20 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 74 68 65 20 72 65 73 70 6f 6e 73 | ng.enable.or.disable.the.respons |
| 13e2c0 | 65 20 6f 66 20 69 63 6d 70 20 62 72 6f 61 64 63 61 73 74 20 6d 65 73 73 61 67 65 73 2e 20 54 68 | e.of.icmp.broadcast.messages..Th |
| 13e2e0 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c | e.following.system.parameter.wil |
| 13e300 | 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 65 6e 61 62 6c | l.be.altered:.This.setting.enabl |
| 13e320 | 65 73 20 6f 72 20 64 69 73 61 62 6c 65 73 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 74 6f 20 69 | es.or.disables.the.response.to.i |
| 13e340 | 63 6d 70 20 62 72 6f 61 64 63 61 73 74 20 6d 65 73 73 61 67 65 73 2e 20 54 68 65 20 66 6f 6c 6c | cmp.broadcast.messages..The.foll |
| 13e360 | 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 | owing.system.parameter.will.be.a |
| 13e380 | 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 74 74 69 6e 67 20 68 61 6e 64 6c 65 20 69 66 20 56 | ltered:.This.setting.handle.if.V |
| 13e3a0 | 79 4f 53 20 61 63 63 65 70 74 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 61 20 73 6f 75 72 63 65 | yOS.accept.packets.with.a.source |
| 13e3c0 | 20 72 6f 75 74 65 20 6f 70 74 69 6f 6e 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 | .route.option..The.following.sys |
| 13e3e0 | 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 | tem.parameter.will.be.altered:.T |
| 13e400 | 68 69 73 20 73 65 74 74 69 6e 67 20 68 61 6e 64 6c 65 73 20 69 66 20 56 79 4f 53 20 61 63 63 65 | his.setting.handles.if.VyOS.acce |
| 13e420 | 70 74 73 20 70 61 63 6b 65 74 73 20 77 69 74 68 20 61 20 73 6f 75 72 63 65 20 72 6f 75 74 65 20 | pts.packets.with.a.source.route. |
| 13e440 | 6f 70 74 69 6f 6e 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 | option..The.following.system.par |
| 13e460 | 61 6d 65 74 65 72 73 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 54 68 69 73 20 73 65 | ameters.will.be.altered:.This.se |
| 13e480 | 74 74 69 6e 67 2c 20 77 68 69 63 68 20 64 65 66 61 75 6c 74 73 20 74 6f 20 33 36 30 30 20 73 65 | tting,.which.defaults.to.3600.se |
| 13e4a0 | 63 6f 6e 64 73 2c 20 70 75 74 73 20 61 20 6d 61 78 69 6d 75 6d 20 6f 6e 20 74 68 65 20 61 6d 6f | conds,.puts.a.maximum.on.the.amo |
| 13e4c0 | 75 6e 74 20 6f 66 20 74 69 6d 65 20 6e 65 67 61 74 69 76 65 20 65 6e 74 72 69 65 73 20 61 72 65 | unt.of.time.negative.entries.are |
| 13e4e0 | 20 63 61 63 68 65 64 2e 00 54 68 69 73 20 73 65 74 75 70 20 77 69 6c 6c 20 6d 61 6b 65 20 74 68 | .cached..This.setup.will.make.th |
| 13e500 | 65 20 56 52 52 50 20 70 72 6f 63 65 73 73 20 65 78 65 63 75 74 65 20 74 68 65 20 60 60 2f 63 6f | e.VRRP.process.execute.the.``/co |
| 13e520 | 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 76 72 72 70 2d 63 68 65 63 6b 2e 73 68 20 73 63 72 69 70 | nfig/scripts/vrrp-check.sh.scrip |
| 13e540 | 74 60 60 20 65 76 65 72 79 20 36 30 20 73 65 63 6f 6e 64 73 2c 20 61 6e 64 20 74 72 61 6e 73 69 | t``.every.60.seconds,.and.transi |
| 13e560 | 74 69 6f 6e 20 74 68 65 20 67 72 6f 75 70 20 74 6f 20 74 68 65 20 66 61 75 6c 74 20 73 74 61 74 | tion.the.group.to.the.fault.stat |
| 13e580 | 65 20 69 66 20 69 74 20 66 61 69 6c 73 20 28 69 2e 65 2e 20 65 78 69 74 73 20 77 69 74 68 20 6e | e.if.it.fails.(i.e..exits.with.n |
| 13e5a0 | 6f 6e 2d 7a 65 72 6f 20 73 74 61 74 75 73 29 20 74 68 72 65 65 20 74 69 6d 65 73 3a 00 54 68 69 | on-zero.status).three.times:.Thi |
| 13e5c0 | 73 20 73 70 65 63 69 66 69 65 73 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 43 50 55 20 72 65 | s.specifies.the.number.of.CPU.re |
| 13e5e0 | 73 6f 75 72 63 65 73 20 74 68 65 20 63 6f 6e 74 61 69 6e 65 72 20 63 61 6e 20 75 73 65 2e 00 54 | sources.the.container.can.use..T |
| 13e600 | 68 69 73 20 73 74 61 67 65 20 69 6e 63 6c 75 64 65 73 3a 00 54 68 69 73 20 73 74 61 74 65 6d 65 | his.stage.includes:.This.stateme |
| 13e620 | 6e 74 20 73 70 65 63 69 66 69 65 73 20 64 68 63 70 36 63 20 74 6f 20 6f 6e 6c 79 20 65 78 63 68 | nt.specifies.dhcp6c.to.only.exch |
| 13e640 | 61 6e 67 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 61 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ange.informational.configuration |
| 13e660 | 20 70 61 72 61 6d 65 74 65 72 73 20 77 69 74 68 20 73 65 72 76 65 72 73 2e 20 41 20 6c 69 73 74 | .parameters.with.servers..A.list |
| 13e680 | 20 6f 66 20 44 4e 53 20 73 65 72 76 65 72 20 61 64 64 72 65 73 73 65 73 20 69 73 20 61 6e 20 65 | .of.DNS.server.addresses.is.an.e |
| 13e6a0 | 78 61 6d 70 6c 65 20 6f 66 20 73 75 63 68 20 70 61 72 61 6d 65 74 65 72 73 2e 20 54 68 69 73 20 | xample.of.such.parameters..This. |
| 13e6c0 | 73 74 61 74 65 6d 65 6e 74 20 69 73 20 75 73 65 66 75 6c 20 77 68 65 6e 20 74 68 65 20 63 6c 69 | statement.is.useful.when.the.cli |
| 13e6e0 | 65 6e 74 20 64 6f 65 73 20 6e 6f 74 20 6e 65 65 64 20 73 74 61 74 65 66 75 6c 20 63 6f 6e 66 69 | ent.does.not.need.stateful.confi |
| 13e700 | 67 75 72 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 20 73 75 63 68 20 61 73 20 49 50 76 36 | guration.parameters.such.as.IPv6 |
| 13e720 | 20 61 64 64 72 65 73 73 65 73 20 6f 72 20 70 72 65 66 69 78 65 73 2e 00 54 68 69 73 20 73 75 70 | .addresses.or.prefixes..This.sup |
| 13e740 | 70 6f 72 74 20 6d 61 79 20 62 65 20 65 6e 61 62 6c 65 64 20 61 64 6d 69 6e 69 73 74 72 61 74 69 | port.may.be.enabled.administrati |
| 13e760 | 76 65 6c 79 20 28 61 6e 64 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 29 20 77 69 74 68 20 74 68 65 | vely.(and.indefinitely).with.the |
| 13e780 | 20 3a 63 66 67 63 6d 64 3a 60 61 64 6d 69 6e 69 73 74 72 61 74 69 76 65 60 20 63 6f 6d 6d 61 6e | .:cfgcmd:`administrative`.comman |
| 13e7a0 | 64 2e 20 49 74 20 6d 61 79 20 61 6c 73 6f 20 62 65 20 65 6e 61 62 6c 65 64 20 63 6f 6e 64 69 74 | d..It.may.also.be.enabled.condit |
| 13e7c0 | 69 6f 6e 61 6c 6c 79 2e 20 43 6f 6e 64 69 74 69 6f 6e 61 6c 20 65 6e 61 62 6c 69 6e 67 20 6f 66 | ionally..Conditional.enabling.of |
| 13e7e0 | 20 6d 61 78 2d 6d 65 74 72 69 63 20 72 6f 75 74 65 72 2d 6c 73 61 73 20 63 61 6e 20 62 65 20 66 | .max-metric.router-lsas.can.be.f |
| 13e800 | 6f 72 20 61 20 70 65 72 69 6f 64 20 6f 66 20 73 65 63 6f 6e 64 73 20 61 66 74 65 72 20 73 74 61 | or.a.period.of.seconds.after.sta |
| 13e820 | 72 74 75 70 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 6f 6e 2d 73 74 61 72 74 75 | rtup.with.the.:cfgcmd:`on-startu |
| 13e840 | 70 20 3c 73 65 63 6f 6e 64 73 3e 60 20 63 6f 6d 6d 61 6e 64 20 61 6e 64 2f 6f 72 20 66 6f 72 20 | p.<seconds>`.command.and/or.for. |
| 13e860 | 61 20 70 65 72 69 6f 64 20 6f 66 20 73 65 63 6f 6e 64 73 20 70 72 69 6f 72 20 74 6f 20 73 68 75 | a.period.of.seconds.prior.to.shu |
| 13e880 | 74 64 6f 77 6e 20 77 69 74 68 20 74 68 65 20 3a 63 66 67 63 6d 64 3a 60 6f 6e 2d 73 68 75 74 64 | tdown.with.the.:cfgcmd:`on-shutd |
| 13e8a0 | 6f 77 6e 20 3c 73 65 63 6f 6e 64 73 3e 60 20 63 6f 6d 6d 61 6e 64 2e 20 54 68 65 20 74 69 6d 65 | own.<seconds>`.command..The.time |
| 13e8c0 | 20 72 61 6e 67 65 20 69 73 20 35 20 74 6f 20 38 36 34 30 30 2e 00 54 68 69 73 20 74 65 63 68 6e | .range.is.5.to.86400..This.techn |
| 13e8e0 | 69 71 75 65 20 69 73 20 63 6f 6d 6d 6f 6e 6c 79 20 72 65 66 65 72 72 65 64 20 74 6f 20 61 73 20 | ique.is.commonly.referred.to.as. |
| 13e900 | 4e 41 54 20 52 65 66 6c 65 63 74 69 6f 6e 20 6f 72 20 48 61 69 72 70 69 6e 20 4e 41 54 2e 00 54 | NAT.Reflection.or.Hairpin.NAT..T |
| 13e920 | 68 69 73 20 74 65 63 68 6e 6f 6c 6f 67 79 20 69 73 20 6b 6e 6f 77 6e 20 62 79 20 64 69 66 66 65 | his.technology.is.known.by.diffe |
| 13e940 | 72 65 6e 74 20 6e 61 6d 65 73 3a 00 54 68 69 73 20 74 68 65 20 73 69 6d 70 6c 65 73 74 20 71 75 | rent.names:.This.the.simplest.qu |
| 13e960 | 65 75 65 20 70 6f 73 73 69 62 6c 65 20 79 6f 75 20 63 61 6e 20 61 70 70 6c 79 20 74 6f 20 79 6f | eue.possible.you.can.apply.to.yo |
| 13e980 | 75 72 20 74 72 61 66 66 69 63 2e 20 54 72 61 66 66 69 63 20 6d 75 73 74 20 67 6f 20 74 68 72 6f | ur.traffic..Traffic.must.go.thro |
| 13e9a0 | 75 67 68 20 61 20 66 69 6e 69 74 65 20 71 75 65 75 65 20 62 65 66 6f 72 65 20 69 74 20 69 73 20 | ugh.a.finite.queue.before.it.is. |
| 13e9c0 | 61 63 74 75 61 6c 6c 79 20 73 65 6e 74 2e 20 59 6f 75 20 6d 75 73 74 20 64 65 66 69 6e 65 20 68 | actually.sent..You.must.define.h |
| 13e9e0 | 6f 77 20 6d 61 6e 79 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 71 75 65 75 65 20 63 61 6e 20 63 | ow.many.packets.that.queue.can.c |
| 13ea00 | 6f 6e 74 61 69 6e 2e 00 54 68 69 73 20 74 6f 70 6f 6c 6f 67 79 20 77 61 73 20 62 75 69 6c 74 20 | ontain..This.topology.was.built. |
| 13ea20 | 75 73 69 6e 67 20 47 4e 53 33 2e 00 54 68 69 73 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 66 6f | using.GNS3..This.will.add.the.fo |
| 13ea40 | 6c 6c 6f 77 69 6e 67 20 6f 70 74 69 6f 6e 20 74 6f 20 74 68 65 20 4b 65 72 6e 65 6c 20 63 6f 6d | llowing.option.to.the.Kernel.com |
| 13ea60 | 6d 61 6e 64 6c 69 6e 65 3a 00 54 68 69 73 20 77 69 6c 6c 20 61 64 64 20 74 68 65 20 66 6f 6c 6c | mandline:.This.will.add.the.foll |
| 13ea80 | 6f 77 69 6e 67 20 74 77 6f 20 6f 70 74 69 6f 6e 73 20 74 6f 20 74 68 65 20 4b 65 72 6e 65 6c 20 | owing.two.options.to.the.Kernel. |
| 13eaa0 | 63 6f 6d 6d 61 6e 64 6c 69 6e 65 3a 00 54 68 69 73 20 77 69 6c 6c 20 62 65 20 74 68 65 20 6d 6f | commandline:.This.will.be.the.mo |
| 13eac0 | 73 74 20 77 69 64 65 6c 79 20 75 73 65 64 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 61 20 72 6f | st.widely.used.interface.on.a.ro |
| 13eae0 | 75 74 65 72 20 63 61 72 72 79 69 6e 67 20 74 72 61 66 66 69 63 20 74 6f 20 74 68 65 20 72 65 61 | uter.carrying.traffic.to.the.rea |
| 13eb00 | 6c 20 77 6f 72 6c 64 2e 00 54 68 69 73 20 77 69 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 61 20 73 | l.world..This.will.configure.a.s |
| 13eb20 | 74 61 74 69 63 20 41 52 50 20 65 6e 74 72 79 20 61 6c 77 61 79 73 20 72 65 73 6f 6c 76 69 6e 67 | tatic.ARP.entry.always.resolving |
| 13eb40 | 20 60 3c 61 64 64 72 65 73 73 3e 60 20 74 6f 20 60 3c 6d 61 63 3e 60 20 66 6f 72 20 69 6e 74 65 | .`<address>`.to.`<mac>`.for.inte |
| 13eb60 | 72 66 61 63 65 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 54 68 69 73 20 77 69 6c 6c 20 6d | rface.`<interface>`..This.will.m |
| 13eb80 | 61 74 63 68 20 54 43 50 20 74 72 61 66 66 69 63 20 77 69 74 68 20 73 6f 75 72 63 65 20 70 6f 72 | atch.TCP.traffic.with.source.por |
| 13eba0 | 74 20 38 30 2e 00 54 68 69 73 20 77 69 6c 6c 20 72 65 6e 64 65 72 20 74 68 65 20 66 6f 6c 6c 6f | t.80..This.will.render.the.follo |
| 13ebc0 | 77 69 6e 67 20 64 64 63 6c 69 65 6e 74 5f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 65 6e 74 | wing.ddclient_.configuration.ent |
| 13ebe0 | 72 79 3a 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 | ry:.This.will.show.you.a.basic.f |
| 13ec00 | 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 | irewall.overview.This.will.show. |
| 13ec20 | 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 66 | you.a.basic.firewall.overview,.f |
| 13ec40 | 6f 72 20 61 6c 6c 20 72 75 6c 65 2d 73 65 74 73 2c 20 61 6e 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 | or.all.rule-sets,.and.not.only.f |
| 13ec60 | 6f 72 20 69 70 76 34 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 | or.ipv4.This.will.show.you.a.bas |
| 13ec80 | 69 63 20 66 69 72 65 77 61 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 66 6f 72 20 61 6c 6c 20 72 75 | ic.firewall.overview,.for.all.ru |
| 13eca0 | 6c 65 2d 73 65 74 73 2c 20 61 6e 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 6f 72 20 69 70 76 36 00 54 | le-sets,.and.not.only.for.ipv6.T |
| 13ecc0 | 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 66 69 72 65 77 61 | his.will.show.you.a.basic.firewa |
| 13ece0 | 6c 6c 20 6f 76 65 72 76 69 65 77 2c 20 66 6f 72 20 61 6c 6c 20 72 75 6c 65 73 65 74 2c 20 61 6e | ll.overview,.for.all.ruleset,.an |
| 13ed00 | 64 20 6e 6f 74 20 6f 6e 6c 79 20 66 6f 72 20 69 70 76 34 00 54 68 69 73 20 77 69 6c 6c 20 73 68 | d.not.only.for.ipv4.This.will.sh |
| 13ed20 | 6f 77 20 79 6f 75 20 61 20 62 61 73 69 63 20 73 75 6d 6d 61 72 79 20 6f 66 20 61 20 70 61 72 74 | ow.you.a.basic.summary.of.a.part |
| 13ed40 | 69 63 75 6c 61 72 20 7a 6f 6e 65 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 | icular.zone..This.will.show.you. |
| 13ed60 | 61 20 62 61 73 69 63 20 73 75 6d 6d 61 72 79 20 6f 66 20 74 68 65 20 7a 6f 6e 65 20 63 6f 6e 66 | a.basic.summary.of.the.zone.conf |
| 13ed80 | 69 67 75 72 61 74 69 6f 6e 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 | iguration..This.will.show.you.a. |
| 13eda0 | 62 61 73 69 63 20 73 75 6d 6d 61 72 79 20 6f 66 20 7a 6f 6e 65 73 20 63 6f 6e 66 69 67 75 72 61 | basic.summary.of.zones.configura |
| 13edc0 | 74 69 6f 6e 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 72 75 6c 65 2d | tion..This.will.show.you.a.rule- |
| 13ede0 | 73 65 74 20 73 74 61 74 69 73 74 69 63 20 73 69 6e 63 65 20 74 68 65 20 6c 61 73 74 20 62 6f 6f | set.statistic.since.the.last.boo |
| 13ee00 | 74 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 73 74 61 74 69 73 74 69 | t..This.will.show.you.a.statisti |
| 13ee20 | 63 20 6f 66 20 61 6c 6c 20 72 75 6c 65 2d 73 65 74 73 20 73 69 6e 63 65 20 74 68 65 20 6c 61 73 | c.of.all.rule-sets.since.the.las |
| 13ee40 | 74 20 62 6f 6f 74 2e 00 54 68 69 73 20 77 69 6c 6c 20 73 68 6f 77 20 79 6f 75 20 61 20 73 75 6d | t.boot..This.will.show.you.a.sum |
| 13ee60 | 6d 61 72 79 20 6f 66 20 72 75 6c 65 2d 73 65 74 73 20 61 6e 64 20 67 72 6f 75 70 73 00 54 68 69 | mary.of.rule-sets.and.groups.Thi |
| 13ee80 | 73 20 77 6f 72 6b 61 72 6f 75 6e 64 20 6c 65 74 73 20 79 6f 75 20 61 70 70 6c 79 20 61 20 73 68 | s.workaround.lets.you.apply.a.sh |
| 13eea0 | 61 70 69 6e 67 20 70 6f 6c 69 63 79 20 74 6f 20 74 68 65 20 69 6e 67 72 65 73 73 20 74 72 61 66 | aping.policy.to.the.ingress.traf |
| 13eec0 | 66 69 63 20 62 79 20 66 69 72 73 74 20 72 65 64 69 72 65 63 74 69 6e 67 20 69 74 20 74 6f 20 61 | fic.by.first.redirecting.it.to.a |
| 13eee0 | 6e 20 69 6e 2d 62 65 74 77 65 65 6e 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 61 63 65 20 28 | n.in-between.virtual.interface.( |
| 13ef00 | 60 49 6e 74 65 72 6d 65 64 69 61 74 65 20 46 75 6e 63 74 69 6f 6e 61 6c 20 42 6c 6f 63 6b 60 5f | `Intermediate.Functional.Block`_ |
| 13ef20 | 29 2e 20 54 68 65 72 65 2c 20 69 6e 20 74 68 61 74 20 76 69 72 74 75 61 6c 20 69 6e 74 65 72 66 | )..There,.in.that.virtual.interf |
| 13ef40 | 61 63 65 2c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 20 61 | ace,.you.will.be.able.to.apply.a |
| 13ef60 | 6e 79 20 6f 66 20 74 68 65 20 70 6f 6c 69 63 69 65 73 20 74 68 61 74 20 77 6f 72 6b 20 66 6f 72 | ny.of.the.policies.that.work.for |
| 13ef80 | 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 2c 20 66 6f 72 20 69 6e 73 74 61 6e 63 65 2c | .outbound.traffic,.for.instance, |
| 13efa0 | 20 61 20 73 68 61 70 69 6e 67 20 6f 6e 65 2e 00 54 68 69 73 20 77 6f 75 6c 64 20 67 65 6e 65 72 | .a.shaping.one..This.would.gener |
| 13efc0 | 61 74 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a | ate.the.following.configuration: |
| 13efe0 | 00 54 68 72 65 65 20 73 69 67 6e 69 66 69 63 61 6e 74 20 76 65 72 73 69 6f 6e 73 20 6f 66 20 53 | .Three.significant.versions.of.S |
| 13f000 | 4e 4d 50 20 68 61 76 65 20 62 65 65 6e 20 64 65 76 65 6c 6f 70 65 64 20 61 6e 64 20 64 65 70 6c | NMP.have.been.developed.and.depl |
| 13f020 | 6f 79 65 64 2e 20 53 4e 4d 50 76 31 20 69 73 20 74 68 65 20 6f 72 69 67 69 6e 61 6c 20 76 65 72 | oyed..SNMPv1.is.the.original.ver |
| 13f040 | 73 69 6f 6e 20 6f 66 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 2e 20 4d 6f 72 65 20 72 65 63 65 6e | sion.of.the.protocol..More.recen |
| 13f060 | 74 20 76 65 72 73 69 6f 6e 73 2c 20 53 4e 4d 50 76 32 63 20 61 6e 64 20 53 4e 4d 50 76 33 2c 20 | t.versions,.SNMPv2c.and.SNMPv3,. |
| 13f080 | 66 65 61 74 75 72 65 20 69 6d 70 72 6f 76 65 6d 65 6e 74 73 20 69 6e 20 70 65 72 66 6f 72 6d 61 | feature.improvements.in.performa |
| 13f0a0 | 6e 63 65 2c 20 66 6c 65 78 69 62 69 6c 69 74 79 20 61 6e 64 20 73 65 63 75 72 69 74 79 2e 00 54 | nce,.flexibility.and.security..T |
| 13f0c0 | 69 6d 65 20 5a 6f 6e 65 00 54 69 6d 65 20 5a 6f 6e 65 20 73 65 74 74 69 6e 67 20 69 73 20 76 65 | ime.Zone.Time.Zone.setting.is.ve |
| 13f0e0 | 72 79 20 69 6d 70 6f 72 74 61 6e 74 20 61 73 20 65 2e 67 20 61 6c 6c 20 79 6f 75 72 20 6c 6f 67 | ry.important.as.e.g.all.your.log |
| 13f100 | 66 69 6c 65 20 65 6e 74 72 69 65 73 20 77 69 6c 6c 20 62 65 20 62 61 73 65 64 20 6f 6e 20 74 68 | file.entries.will.be.based.on.th |
| 13f120 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 7a 6f 6e 65 2e 20 57 69 74 68 6f 75 74 20 70 72 6f 70 65 | e.configured.zone..Without.prope |
| 13f140 | 72 20 74 69 6d 65 20 7a 6f 6e 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 74 20 77 69 6c | r.time.zone.configuration.it.wil |
| 13f160 | 6c 20 62 65 20 76 65 72 79 20 64 69 66 66 69 63 75 6c 74 20 74 6f 20 63 6f 6d 70 61 72 65 20 6c | l.be.very.difficult.to.compare.l |
| 13f180 | 6f 67 66 69 6c 65 73 20 66 72 6f 6d 20 64 69 66 66 65 72 65 6e 74 20 73 79 73 74 65 6d 73 2e 00 | ogfiles.from.different.systems.. |
| 13f1a0 | 54 69 6d 65 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 20 62 65 74 77 65 65 6e 20 72 65 74 | Time.in.milliseconds.between.ret |
| 13f1c0 | 72 61 6e 73 6d 69 74 74 65 64 20 4e 65 69 67 68 62 6f 72 20 53 6f 6c 69 63 69 74 61 74 69 6f 6e | ransmitted.Neighbor.Solicitation |
| 13f1e0 | 20 6d 65 73 73 61 67 65 73 00 54 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 74 | .messages.Time.in.seconds.that.t |
| 13f200 | 68 65 20 70 72 65 66 69 78 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 70 72 65 66 65 72 72 65 64 20 | he.prefix.will.remain.preferred. |
| 13f220 | 28 64 65 66 61 75 6c 74 20 34 20 68 6f 75 72 73 29 00 54 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 | (default.4.hours).Time.in.second |
| 13f240 | 73 20 74 68 61 74 20 74 68 65 20 70 72 65 66 69 78 20 77 69 6c 6c 20 72 65 6d 61 69 6e 20 76 61 | s.that.the.prefix.will.remain.va |
| 13f260 | 6c 69 64 20 28 64 65 66 61 75 6c 74 3a 20 33 30 20 64 61 79 73 29 00 54 69 6d 65 20 69 6e 20 73 | lid.(default:.30.days).Time.in.s |
| 13f280 | 65 63 6f 6e 64 73 20 74 68 61 74 20 74 68 65 20 70 72 65 66 69 78 20 77 69 6c 6c 20 72 65 6d 61 | econds.that.the.prefix.will.rema |
| 13f2a0 | 69 6e 20 76 61 6c 69 64 20 28 64 65 66 61 75 6c 74 3a 20 36 35 35 32 38 20 73 65 63 6f 6e 64 73 | in.valid.(default:.65528.seconds |
| 13f2c0 | 29 00 54 69 6d 65 20 69 73 20 69 6e 20 6d 69 6e 75 74 65 73 20 61 6e 64 20 64 65 66 61 75 6c 74 | ).Time.is.in.minutes.and.default |
| 13f2e0 | 73 20 74 6f 20 36 30 2e 00 54 69 6d 65 20 74 6f 20 6d 61 74 63 68 20 74 68 65 20 64 65 66 69 6e | s.to.60..Time.to.match.the.defin |
| 13f300 | 65 64 20 72 75 6c 65 2e 00 54 69 6d 65 2c 20 69 6e 20 6d 69 6c 6c 69 73 65 63 6f 6e 64 73 2c 20 | ed.rule..Time,.in.milliseconds,. |
| 13f320 | 74 68 61 74 20 61 20 6e 6f 64 65 20 61 73 73 75 6d 65 73 20 61 20 6e 65 69 67 68 62 6f 72 20 69 | that.a.node.assumes.a.neighbor.i |
| 13f340 | 73 20 72 65 61 63 68 61 62 6c 65 20 61 66 74 65 72 20 68 61 76 69 6e 67 20 72 65 63 65 69 76 65 | s.reachable.after.having.receive |
| 13f360 | 64 20 61 20 72 65 61 63 68 61 62 69 6c 69 74 79 20 63 6f 6e 66 69 72 6d 61 74 69 6f 6e 00 54 69 | d.a.reachability.confirmation.Ti |
| 13f380 | 6d 65 6f 75 74 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 75 73 69 6e 67 20 73 65 63 6f 6e | meout.can.be.defined.using.secon |
| 13f3a0 | 64 73 2c 20 6d 69 6e 75 74 65 73 2c 20 68 6f 75 72 73 20 6f 72 20 64 61 79 73 3a 00 54 69 6d 65 | ds,.minutes,.hours.or.days:.Time |
| 13f3c0 | 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 73 00 54 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e 64 | out.in.seconds.Timeout.in.second |
| 13f3e0 | 73 20 62 65 74 77 65 65 6e 20 68 65 61 6c 74 68 20 74 61 72 67 65 74 20 63 68 65 63 6b 73 2e 00 | s.between.health.target.checks.. |
| 13f400 | 54 69 6d 65 6f 75 74 20 74 6f 20 77 61 69 74 20 72 65 70 6c 79 20 66 6f 72 20 49 6e 74 65 72 69 | Timeout.to.wait.reply.for.Interi |
| 13f420 | 6d 2d 55 70 64 61 74 65 20 70 61 63 6b 65 74 73 2e 20 28 64 65 66 61 75 6c 74 20 33 20 73 65 63 | m-Update.packets..(default.3.sec |
| 13f440 | 6f 6e 64 73 29 00 54 69 6d 65 6f 75 74 20 74 6f 20 77 61 69 74 20 72 65 73 70 6f 6e 73 65 20 66 | onds).Timeout.to.wait.response.f |
| 13f460 | 72 6f 6d 20 73 65 72 76 65 72 20 28 73 65 63 6f 6e 64 73 29 00 54 69 6d 65 72 73 00 54 6f 20 61 | rom.server.(seconds).Timers.To.a |
| 13f480 | 63 74 69 76 61 74 65 20 74 68 65 20 56 4c 41 4e 20 61 77 61 72 65 20 62 72 69 64 67 65 2c 20 79 | ctivate.the.VLAN.aware.bridge,.y |
| 13f4a0 | 6f 75 20 6d 75 73 74 20 61 63 74 69 76 61 74 65 20 74 68 69 73 20 73 65 74 74 69 6e 67 20 74 6f | ou.must.activate.this.setting.to |
| 13f4c0 | 20 75 73 65 20 56 4c 41 4e 20 73 65 74 74 69 6e 67 73 20 66 6f 72 20 74 68 65 20 62 72 69 64 67 | .use.VLAN.settings.for.the.bridg |
| 13f4e0 | 65 00 54 6f 20 61 6c 6c 6f 77 20 56 50 4e 2d 63 6c 69 65 6e 74 73 20 61 63 63 65 73 73 20 76 69 | e.To.allow.VPN-clients.access.vi |
| 13f500 | 61 20 79 6f 75 72 20 65 78 74 65 72 6e 61 6c 20 61 64 64 72 65 73 73 2c 20 61 20 4e 41 54 20 72 | a.your.external.address,.a.NAT.r |
| 13f520 | 75 6c 65 20 69 73 20 72 65 71 75 69 72 65 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 6c 69 73 74 69 6e | ule.is.required:.To.allow.listin |
| 13f540 | 67 20 61 64 64 69 74 69 6f 6e 61 6c 20 63 75 73 74 6f 6d 20 64 6f 6d 61 69 6e 2c 20 66 6f 72 20 | g.additional.custom.domain,.for. |
| 13f560 | 65 78 61 6d 70 6c 65 20 60 60 6f 70 65 6e 74 68 72 65 61 64 2e 74 68 72 65 61 64 2e 68 6f 6d 65 | example.``openthread.thread.home |
| 13f580 | 2e 61 72 70 61 60 60 2c 20 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 72 65 66 6c 65 63 74 65 | .arpa``,.so.that.it.can.reflecte |
| 13f5a0 | 64 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 64 65 66 61 75 6c 74 20 60 60 6c | d.in.addition.to.the.default.``l |
| 13f5c0 | 6f 63 61 6c 60 60 2c 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e | ocal``,.use.the.following.comman |
| 13f5e0 | 64 3a 00 54 6f 20 61 6c 6c 6f 77 20 6f 6e 6c 79 20 73 70 65 63 69 66 69 63 20 73 65 72 76 69 63 | d:.To.allow.only.specific.servic |
| 13f600 | 65 73 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 60 60 5f 61 69 72 70 6c 61 79 2e 5f 74 63 70 60 | es,.for.example.``_airplay._tcp` |
| 13f620 | 60 20 6f 72 20 60 60 5f 69 70 70 2e 5f 74 63 70 60 60 2c 20 28 69 6e 73 74 65 61 64 20 6f 66 20 | `.or.``_ipp._tcp``,.(instead.of. |
| 13f640 | 61 6c 6c 20 73 65 72 76 69 63 65 73 29 20 74 6f 20 62 65 20 72 65 2d 62 72 6f 61 64 63 61 73 74 | all.services).to.be.re-broadcast |
| 13f660 | 65 64 2c 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 54 | ed,.use.the.following.command:.T |
| 13f680 | 6f 20 61 6c 6c 6f 77 20 74 72 61 66 66 69 63 20 74 6f 20 70 61 73 73 20 74 68 72 6f 75 67 68 20 | o.allow.traffic.to.pass.through. |
| 13f6a0 | 74 6f 20 63 6c 69 65 6e 74 73 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 74 68 65 20 | to.clients,.you.need.to.add.the. |
| 13f6c0 | 66 6f 6c 6c 6f 77 69 6e 67 20 72 75 6c 65 73 2e 20 28 69 66 20 79 6f 75 20 75 73 65 64 20 74 68 | following.rules..(if.you.used.th |
| 13f6e0 | 65 20 64 65 66 61 75 6c 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 74 68 65 20 74 | e.default.configuration.at.the.t |
| 13f700 | 6f 70 20 6f 66 20 74 68 69 73 20 70 61 67 65 29 00 54 6f 20 61 70 70 6c 79 20 74 68 69 73 20 70 | op.of.this.page).To.apply.this.p |
| 13f720 | 6f 6c 69 63 79 20 74 6f 20 74 68 65 20 63 6f 72 72 65 63 74 20 69 6e 74 65 72 66 61 63 65 2c 20 | olicy.to.the.correct.interface,. |
| 13f740 | 63 6f 6e 66 69 67 75 72 65 20 69 74 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 68 | configure.it.on.the.interface.th |
| 13f760 | 65 20 69 6e 62 6f 75 6e 64 20 6c 6f 63 61 6c 20 68 6f 73 74 20 77 69 6c 6c 20 73 65 6e 64 20 74 | e.inbound.local.host.will.send.t |
| 13f780 | 68 72 6f 75 67 68 20 74 6f 20 72 65 61 63 68 20 6f 75 72 20 64 65 73 74 69 6e 65 64 20 74 61 72 | hrough.to.reach.our.destined.tar |
| 13f7a0 | 67 65 74 20 68 6f 73 74 20 28 69 6e 20 6f 75 72 20 65 78 61 6d 70 6c 65 20 65 74 68 31 29 2e 00 | get.host.(in.our.example.eth1).. |
| 13f7c0 | 54 6f 20 61 75 74 6f 20 75 70 64 61 74 65 20 74 68 65 20 62 6c 61 63 6b 6c 69 73 74 20 66 69 6c | To.auto.update.the.blacklist.fil |
| 13f7e0 | 65 73 00 54 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 73 73 69 67 6e 20 74 68 65 20 63 | es.To.automatically.assign.the.c |
| 13f800 | 6c 69 65 6e 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 73 20 74 75 6e 6e 65 6c 20 65 6e | lient.an.IP.address.as.tunnel.en |
| 13f820 | 64 70 6f 69 6e 74 2c 20 61 20 63 6c 69 65 6e 74 20 49 50 20 70 6f 6f 6c 20 69 73 20 6e 65 65 64 | dpoint,.a.client.IP.pool.is.need |
| 13f840 | 65 64 2e 20 54 68 65 20 73 6f 75 72 63 65 20 63 61 6e 20 62 65 20 65 69 74 68 65 72 20 52 41 44 | ed..The.source.can.be.either.RAD |
| 13f860 | 49 55 53 20 6f 72 20 61 20 6c 6f 63 61 6c 20 73 75 62 6e 65 74 20 6f 72 20 49 50 20 72 61 6e 67 | IUS.or.a.local.subnet.or.IP.rang |
| 13f880 | 65 20 64 65 66 69 6e 69 74 69 6f 6e 2e 00 54 6f 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 61 | e.definition..To.automatically.a |
| 13f8a0 | 73 73 69 67 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 61 | ssign.the.client.an.IP.address.a |
| 13f8c0 | 73 20 74 75 6e 6e 65 6c 20 65 6e 64 70 6f 69 6e 74 2c 20 61 20 63 6c 69 65 6e 74 20 49 50 20 70 | s.tunnel.endpoint,.a.client.IP.p |
| 13f8e0 | 6f 6f 6c 20 69 73 20 6e 65 65 64 65 64 2e 20 54 68 65 20 73 6f 75 72 63 65 20 63 61 6e 20 62 65 | ool.is.needed..The.source.can.be |
| 13f900 | 20 65 69 74 68 65 72 20 52 41 44 49 55 53 20 6f 72 20 61 20 6e 61 6d 65 64 20 70 6f 6f 6c 2e 20 | .either.RADIUS.or.a.named.pool.. |
| 13f920 | 54 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 20 6d | There.is.possibility.to.create.m |
| 13f940 | 75 6c 74 69 70 6c 65 20 6e 61 6d 65 64 20 70 6f 6f 6c 73 2e 20 45 61 63 68 20 6e 61 6d 65 64 20 | ultiple.named.pools..Each.named. |
| 13f960 | 70 6f 6f 6c 20 63 61 6e 20 69 6e 63 6c 75 64 65 20 6f 6e 6c 79 20 6f 6e 65 20 61 64 64 72 65 73 | pool.can.include.only.one.addres |
| 13f980 | 73 20 72 61 6e 67 65 2e 20 54 6f 20 75 73 65 20 6d 75 6c 74 69 70 6c 65 20 61 64 64 72 65 73 73 | s.range..To.use.multiple.address |
| 13f9a0 | 20 72 61 6e 67 65 73 20 63 6f 6e 66 69 67 75 72 65 20 60 60 6e 65 78 74 2d 70 6f 6f 6c 60 60 20 | .ranges.configure.``next-pool``. |
| 13f9c0 | 6f 70 74 69 6f 6e 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 61 | option..To.be.used.only.when.``a |
| 13f9e0 | 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 | ction``.is.set.to.``jump``..Use. |
| 13fa00 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 | this.command.to.specify.jump.tar |
| 13fa20 | 67 65 74 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 64 65 66 61 | get..To.be.used.only.when.``defa |
| 13fa40 | 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e | ult-action``.is.set.to.``jump``. |
| 13fa60 | 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d | .Use.this.command.to.specify.jum |
| 13fa80 | 70 20 74 61 72 67 65 74 20 66 6f 72 20 64 65 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 65 | p.target.for.default.rule..To.be |
| 13faa0 | 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 64 65 66 61 75 6c 74 2d 61 63 74 69 6f 6e | .used.only.when.``default-action |
| 13fac0 | 60 60 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 | ``.is.set.to.``jump``..Use.this. |
| 13fae0 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 6a 75 6d 70 20 74 61 72 67 | command.to.specify.the.jump.targ |
| 13fb00 | 65 74 20 66 6f 72 20 74 68 65 20 64 65 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 65 20 75 | et.for.the.default.rule..To.be.u |
| 13fb20 | 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 60 60 64 65 66 75 6c 74 2d 61 63 74 69 6f 6e 60 60 20 | sed.only.when.``defult-action``. |
| 13fb40 | 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d | is.set.to.``jump``..Use.this.com |
| 13fb60 | 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 61 72 67 65 74 20 66 6f 72 20 | mand.to.specify.jump.target.for. |
| 13fb80 | 64 65 66 61 75 6c 74 20 72 75 6c 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 | default.rule..To.be.used.only.wh |
| 13fba0 | 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 | en.action.is.set.to.``jump``..Us |
| 13fbc0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 | e.this.command.to.specify.jump.t |
| 13fbe0 | 61 72 67 65 74 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 | arget..To.be.used.only.when.acti |
| 13fc00 | 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 6a 75 6d 70 60 60 2e 20 55 73 65 20 74 68 69 73 20 | on.is.set.to.``jump``..Use.this. |
| 13fc20 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 6a 75 6d 70 20 74 61 72 67 | command.to.specify.the.jump.targ |
| 13fc40 | 65 74 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 | et..To.be.used.only.when.action. |
| 13fc60 | 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f | is.set.to.``queue``..Use.this.co |
| 13fc80 | 6d 6d 61 6e 64 20 74 6f 20 64 69 73 74 72 69 62 75 74 65 20 70 61 63 6b 65 74 73 20 62 65 74 77 | mmand.to.distribute.packets.betw |
| 13fca0 | 65 65 6e 20 73 65 76 65 72 61 6c 20 71 75 65 75 65 73 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f | een.several.queues..To.be.used.o |
| 13fcc0 | 6e 6c 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 | nly.when.action.is.set.to.``queu |
| 13fce0 | 65 60 60 2e 20 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 65 74 20 70 61 63 | e``..Use.this.command.to.let.pac |
| 13fd00 | 6b 65 74 20 67 6f 20 74 68 72 6f 75 67 68 20 66 69 72 65 77 61 6c 6c 20 77 68 65 6e 20 6e 6f 20 | ket.go.through.firewall.when.no. |
| 13fd20 | 75 73 65 72 73 70 61 63 65 20 73 6f 66 74 77 61 72 65 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 | userspace.software.is.connected. |
| 13fd40 | 74 6f 20 74 68 65 20 71 75 65 75 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 | to.the.queue..To.be.used.only.wh |
| 13fd60 | 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 | en.action.is.set.to.``queue``..U |
| 13fd80 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 65 74 20 74 68 65 20 70 61 63 6b 65 | se.this.command.to.let.the.packe |
| 13fda0 | 74 20 67 6f 20 74 68 72 6f 75 67 68 20 66 69 72 65 77 61 6c 6c 20 77 68 65 6e 20 6e 6f 20 75 73 | t.go.through.firewall.when.no.us |
| 13fdc0 | 65 72 73 70 61 63 65 20 73 6f 66 74 77 61 72 65 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f | erspace.software.is.connected.to |
| 13fde0 | 20 74 68 65 20 71 75 65 75 65 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 6e | .the.queue..To.be.used.only.when |
| 13fe00 | 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 65 | .action.is.set.to.``queue``..Use |
| 13fe20 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 71 75 65 75 65 20 74 | .this.command.to.specify.queue.t |
| 13fe40 | 61 72 67 65 74 20 74 6f 20 75 73 65 2e 20 51 75 65 75 65 20 72 61 6e 67 65 20 69 73 20 61 6c 73 | arget.to.use..Queue.range.is.als |
| 13fe60 | 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 68 65 | o.supported..To.be.used.only.whe |
| 13fe80 | 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 60 60 71 75 65 75 65 60 60 2e 20 55 73 | n.action.is.set.to.``queue``..Us |
| 13fea0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 74 68 65 20 71 75 | e.this.command.to.specify.the.qu |
| 13fec0 | 65 75 65 20 74 61 72 67 65 74 20 74 6f 20 75 73 65 2e 20 51 75 65 75 65 20 72 61 6e 67 65 20 69 | eue.target.to.use..Queue.range.i |
| 13fee0 | 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 54 6f 20 62 65 20 75 73 65 64 20 6f 6e 6c | s.also.supported..To.be.used.onl |
| 13ff00 | 79 20 77 68 65 6e 20 61 63 74 69 6f 6e 20 69 73 20 73 65 74 20 74 6f 20 6a 75 6d 70 2e 20 55 73 | y.when.action.is.set.to.jump..Us |
| 13ff20 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 6a 75 6d 70 20 74 | e.this.command.to.specify.jump.t |
| 13ff40 | 61 72 67 65 74 2e 00 54 6f 20 62 79 70 61 73 73 20 74 68 65 20 70 72 6f 78 79 20 66 6f 72 20 65 | arget..To.bypass.the.proxy.for.e |
| 13ff60 | 76 65 72 79 20 72 65 71 75 65 73 74 20 74 68 61 74 20 69 73 20 63 6f 6d 69 6e 67 20 66 72 6f 6d | very.request.that.is.coming.from |
| 13ff80 | 20 61 20 73 70 65 63 69 66 69 63 20 73 6f 75 72 63 65 3a 00 54 6f 20 62 79 70 61 73 73 20 74 68 | .a.specific.source:.To.bypass.th |
| 13ffa0 | 65 20 70 72 6f 78 79 20 66 6f 72 20 65 76 65 72 79 20 72 65 71 75 65 73 74 20 74 68 61 74 20 69 | e.proxy.for.every.request.that.i |
| 13ffc0 | 73 20 64 69 72 65 63 74 65 64 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 64 65 73 74 69 6e 61 | s.directed.to.a.specific.destina |
| 13ffe0 | 74 69 6f 6e 3a 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 49 50 76 36 20 61 73 73 69 67 6e 6d 65 | tion:.To.configure.IPv6.assignme |
| 140000 | 6e 74 73 20 66 6f 72 20 63 6c 69 65 6e 74 73 2c 20 74 77 6f 20 6f 70 74 69 6f 6e 73 20 6e 65 65 | nts.for.clients,.two.options.nee |
| 140020 | 64 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 41 20 67 6c 6f 62 61 6c 20 70 72 65 | d.to.be.configured..A.global.pre |
| 140040 | 66 69 78 20 77 68 69 63 68 20 69 73 20 74 65 72 6d 69 6e 61 74 65 64 20 6f 6e 20 74 68 65 20 63 | fix.which.is.terminated.on.the.c |
| 140060 | 6c 69 65 6e 74 73 20 63 70 65 20 61 6e 64 20 61 20 64 65 6c 65 67 61 74 65 64 20 70 72 65 66 69 | lients.cpe.and.a.delegated.prefi |
| 140080 | 78 2c 20 74 68 65 20 63 6c 69 65 6e 74 20 63 61 6e 20 75 73 65 20 66 6f 72 20 64 65 76 69 63 65 | x,.the.client.can.use.for.device |
| 1400a0 | 73 20 72 6f 75 74 65 64 20 76 69 61 20 74 68 65 20 63 6c 69 65 6e 74 73 20 63 70 65 2e 00 54 6f | s.routed.via.the.clients.cpe..To |
| 1400c0 | 20 63 6f 6e 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 68 20 74 68 65 20 3a 64 6f 63 3a 60 6c | .configure.VyOS.with.the.:doc:`l |
| 1400e0 | 65 67 61 63 79 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 | egacy.firewall.configuration.</c |
| 140100 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 65 6e 65 72 61 6c 2d 6c 65 | onfiguration/firewall/general-le |
| 140120 | 67 61 63 79 3e 60 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 68 20 74 68 | gacy>`.To.configure.VyOS.with.th |
| 140140 | 65 20 3a 64 6f 63 3a 60 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 | e.:doc:`zone-based.firewall.conf |
| 140160 | 69 67 75 72 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 | iguration.</configuration/firewa |
| 140180 | 6c 6c 2f 7a 6f 6e 65 3e 60 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 56 79 4f 53 20 77 69 74 68 | ll/zone>`.To.configure.VyOS.with |
| 1401a0 | 20 74 68 65 20 6e 65 77 20 3a 64 6f 63 3a 60 66 69 72 65 77 61 6c 6c 20 63 6f 6e 66 69 67 75 72 | .the.new.:doc:`firewall.configur |
| 1401c0 | 61 74 69 6f 6e 20 3c 2f 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2f 66 69 72 65 77 61 6c 6c 2f 67 | ation.</configuration/firewall/g |
| 1401e0 | 65 6e 65 72 61 6c 3e 60 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 62 6c 6f 63 6b 69 6e 67 20 61 | eneral>`.To.configure.blocking.a |
| 140200 | 64 64 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | dd.the.following.to.the.configur |
| 140220 | 61 74 69 6f 6e 00 54 6f 20 63 6f 6e 66 69 67 75 72 65 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 | ation.To.configure.site-to-site. |
| 140240 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 61 64 64 20 70 65 65 72 73 | connection.you.need.to.add.peers |
| 140260 | 20 77 69 74 68 20 74 68 65 20 60 60 73 65 74 20 76 70 6e 20 69 70 73 65 63 20 73 69 74 65 2d 74 | .with.the.``set.vpn.ipsec.site-t |
| 140280 | 6f 2d 73 69 74 65 20 70 65 65 72 20 3c 6e 61 6d 65 3e 60 60 20 63 6f 6d 6d 61 6e 64 2e 00 54 6f | o-site.peer.<name>``.command..To |
| 1402a0 | 20 63 6f 6e 66 69 67 75 72 65 20 73 79 73 6c 6f 67 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 | .configure.syslog,.you.need.to.s |
| 1402c0 | 77 69 74 63 68 20 69 6e 74 6f 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 6f 64 65 2e 00 54 | witch.into.configuration.mode..T |
| 1402e0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 79 6f 75 72 20 4c 43 44 20 64 69 73 70 6c 61 79 20 79 6f 75 | o.configure.your.LCD.display.you |
| 140300 | 20 6d 75 73 74 20 66 69 72 73 74 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 75 73 65 64 20 68 61 | .must.first.identify.the.used.ha |
| 140320 | 72 64 77 61 72 65 2c 20 61 6e 64 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 6f 66 20 74 68 65 20 | rdware,.and.connectivity.of.the. |
| 140340 | 64 69 73 70 6c 61 79 20 74 6f 20 79 6f 75 72 20 73 79 73 74 65 6d 2e 20 54 68 69 73 20 63 61 6e | display.to.your.system..This.can |
| 140360 | 20 62 65 20 61 6e 79 20 73 65 72 69 61 6c 20 70 6f 72 74 20 28 60 74 74 79 53 78 78 60 29 20 6f | .be.any.serial.port.(`ttySxx`).o |
| 140380 | 72 20 73 65 72 69 61 6c 20 76 69 61 20 55 53 42 20 6f 72 20 65 76 65 6e 20 6f 6c 64 20 70 61 72 | r.serial.via.USB.or.even.old.par |
| 1403a0 | 61 6c 6c 65 6c 20 70 6f 72 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 54 6f 20 63 72 65 61 74 65 | allel.port.interfaces..To.create |
| 1403c0 | 20 56 4c 41 4e 73 20 70 65 72 20 75 73 65 72 20 64 75 72 69 6e 67 20 72 75 6e 74 69 6d 65 2c 20 | .VLANs.per.user.during.runtime,. |
| 1403e0 | 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 65 74 74 69 6e 67 73 20 61 72 65 20 72 65 71 75 69 | the.following.settings.are.requi |
| 140400 | 72 65 64 20 6f 6e 20 61 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 20 62 61 73 69 73 2e 20 56 4c | red.on.a.per.interface.basis..VL |
| 140420 | 41 4e 20 49 44 20 61 6e 64 20 56 4c 41 4e 20 72 61 6e 67 65 20 63 61 6e 20 62 65 20 70 72 65 73 | AN.ID.and.VLAN.range.can.be.pres |
| 140440 | 65 6e 74 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 74 20 74 68 65 20 | ent.in.the.configuration.at.the. |
| 140460 | 73 61 6d 65 20 74 69 6d 65 2e 00 54 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 69 6e 65 20 | same.time..To.create.a.new.line. |
| 140480 | 69 6e 20 79 6f 75 72 20 6c 6f 67 69 6e 20 6d 65 73 73 61 67 65 20 79 6f 75 20 6e 65 65 64 20 74 | in.your.login.message.you.need.t |
| 1404a0 | 6f 20 65 73 63 61 70 65 20 74 68 65 20 6e 65 77 20 6c 69 6e 65 20 63 68 61 72 61 63 74 65 72 20 | o.escape.the.new.line.character. |
| 1404c0 | 62 79 20 75 73 69 6e 67 20 60 60 5c 5c 6e 60 60 2e 00 54 6f 20 63 72 65 61 74 65 20 6d 6f 72 65 | by.using.``\\n``..To.create.more |
| 1404e0 | 20 74 68 61 6e 20 6f 6e 65 20 74 75 6e 6e 65 6c 2c 20 75 73 65 20 64 69 73 74 69 6e 63 74 20 55 | .than.one.tunnel,.use.distinct.U |
| 140500 | 44 50 20 70 6f 72 74 73 2e 00 54 6f 20 63 72 65 61 74 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c | DP.ports..To.create.routing.tabl |
| 140520 | 65 20 31 30 30 20 61 6e 64 20 61 64 64 20 61 20 6e 65 77 20 64 65 66 61 75 6c 74 20 67 61 74 65 | e.100.and.add.a.new.default.gate |
| 140540 | 77 61 79 20 74 6f 20 62 65 20 75 73 65 64 20 62 79 20 74 72 61 66 66 69 63 20 6d 61 74 63 68 69 | way.to.be.used.by.traffic.matchi |
| 140560 | 6e 67 20 6f 75 72 20 72 6f 75 74 65 20 70 6f 6c 69 63 79 3a 00 54 6f 20 64 65 66 69 6e 65 20 61 | ng.our.route.policy:.To.define.a |
| 140580 | 20 7a 6f 6e 65 20 73 65 74 75 70 20 65 69 74 68 65 72 20 6f 6e 65 20 77 69 74 68 20 69 6e 74 65 | .zone.setup.either.one.with.inte |
| 1405a0 | 72 66 61 63 65 73 20 6f 72 20 61 20 6c 6f 63 61 6c 20 7a 6f 6e 65 2e 00 54 6f 20 64 69 73 61 62 | rfaces.or.a.local.zone..To.disab |
| 1405c0 | 6c 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 73 20 77 69 74 68 6f 75 74 20 64 65 6c 65 74 69 | le.advertisements.without.deleti |
| 1405e0 | 6e 67 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 54 6f 20 64 69 73 70 6c 61 79 | ng.the.configuration:.To.display |
| 140600 | 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 4f 54 50 20 75 73 65 72 20 6b 65 79 2c 20 75 73 | .the.configured.OTP.user.key,.us |
| 140620 | 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 64 69 73 70 6c 61 79 20 74 68 65 20 63 6f | e.the.command:.To.display.the.co |
| 140640 | 6e 66 69 67 75 72 65 64 20 4f 54 50 20 75 73 65 72 20 73 65 74 74 69 6e 67 73 2c 20 75 73 65 20 | nfigured.OTP.user.settings,.use. |
| 140660 | 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 65 6e 61 62 6c 65 20 4d 4c 44 20 72 65 70 6f 72 | the.command:.To.enable.MLD.repor |
| 140680 | 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 73 20 60 65 74 68 30 | ts.and.query.on.interfaces.`eth0 |
| 1406a0 | 60 20 61 6e 64 20 60 65 74 68 31 60 3a 00 54 6f 20 65 6e 61 62 6c 65 20 52 41 44 49 55 53 20 62 | `.and.`eth1`:.To.enable.RADIUS.b |
| 1406c0 | 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 74 68 65 20 61 75 74 68 65 6e 74 | ased.authentication,.the.authent |
| 1406e0 | 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 68 61 6e 67 65 64 | ication.mode.needs.to.be.changed |
| 140700 | 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 72 65 76 69 | .within.the.configuration..Previ |
| 140720 | 6f 75 73 20 73 65 74 74 69 6e 67 73 20 6c 69 6b 65 20 74 68 65 20 6c 6f 63 61 6c 20 75 73 65 72 | ous.settings.like.the.local.user |
| 140740 | 73 20 73 74 69 6c 6c 20 65 78 69 73 74 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 | s.still.exist.within.the.configu |
| 140760 | 72 61 74 69 6f 6e 2c 20 68 6f 77 65 76 65 72 20 74 68 65 79 20 61 72 65 20 6e 6f 74 20 75 73 65 | ration,.however.they.are.not.use |
| 140780 | 64 20 69 66 20 74 68 65 20 6d 6f 64 65 20 68 61 73 20 62 65 65 6e 20 63 68 61 6e 67 65 64 20 66 | d.if.the.mode.has.been.changed.f |
| 1407a0 | 72 6f 6d 20 6c 6f 63 61 6c 20 74 6f 20 72 61 64 69 75 73 2e 20 4f 6e 63 65 20 63 68 61 6e 67 65 | rom.local.to.radius..Once.change |
| 1407c0 | 64 20 62 61 63 6b 20 74 6f 20 6c 6f 63 61 6c 2c 20 69 74 20 77 69 6c 6c 20 75 73 65 20 61 6c 6c | d.back.to.local,.it.will.use.all |
| 1407e0 | 20 6c 6f 63 61 6c 20 61 63 63 6f 75 6e 74 73 20 61 67 61 69 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 | .local.accounts.again..To.enable |
| 140800 | 20 52 41 44 49 55 53 20 62 61 73 65 64 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 74 68 | .RADIUS.based.authentication,.th |
| 140820 | 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 6e 65 65 64 73 20 74 6f 20 62 | e.authentication.mode.needs.to.b |
| 140840 | 65 20 63 68 61 6e 67 65 64 20 77 69 74 68 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 | e.changed.within.the.configurati |
| 140860 | 6f 6e 2e 20 50 72 65 76 69 6f 75 73 20 73 65 74 74 69 6e 67 73 20 6c 69 6b 65 20 74 68 65 20 6c | on..Previous.settings.like.the.l |
| 140880 | 6f 63 61 6c 20 75 73 65 72 73 2c 20 73 74 69 6c 6c 20 65 78 69 73 74 73 20 77 69 74 68 69 6e 20 | ocal.users,.still.exists.within. |
| 1408a0 | 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 68 6f 77 65 76 65 72 20 74 68 65 79 20 | the.configuration,.however.they. |
| 1408c0 | 61 72 65 20 6e 6f 74 20 75 73 65 64 20 69 66 20 74 68 65 20 6d 6f 64 65 20 68 61 73 20 62 65 65 | are.not.used.if.the.mode.has.bee |
| 1408e0 | 6e 20 63 68 61 6e 67 65 64 20 66 72 6f 6d 20 6c 6f 63 61 6c 20 74 6f 20 72 61 64 69 75 73 2e 20 | n.changed.from.local.to.radius.. |
| 140900 | 4f 6e 63 65 20 63 68 61 6e 67 65 64 20 62 61 63 6b 20 74 6f 20 6c 6f 63 61 6c 2c 20 69 74 20 77 | Once.changed.back.to.local,.it.w |
| 140920 | 69 6c 6c 20 75 73 65 20 61 6c 6c 20 6c 6f 63 61 6c 20 61 63 63 6f 75 6e 74 73 20 61 67 61 69 6e | ill.use.all.local.accounts.again |
| 140940 | 2e 00 54 6f 20 65 6e 61 62 6c 65 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 | ..To.enable.bandwidth.shaping.vi |
| 140960 | 61 20 52 41 44 49 55 53 2c 20 74 68 65 20 6f 70 74 69 6f 6e 20 72 61 74 65 2d 6c 69 6d 69 74 20 | a.RADIUS,.the.option.rate-limit. |
| 140980 | 6e 65 65 64 73 20 74 6f 20 62 65 20 65 6e 61 62 6c 65 64 2e 00 54 6f 20 65 6e 61 62 6c 65 20 64 | needs.to.be.enabled..To.enable.d |
| 1409a0 | 65 62 75 67 20 6d 65 73 73 61 67 65 73 2e 20 41 76 61 69 6c 61 62 6c 65 20 76 69 61 20 3a 6f 70 | ebug.messages..Available.via.:op |
| 1409c0 | 63 6d 64 3a 60 73 68 6f 77 20 6c 6f 67 60 20 6f 72 20 3a 6f 70 63 6d 64 3a 60 6d 6f 6e 69 74 6f | cmd:`show.log`.or.:opcmd:`monito |
| 1409e0 | 72 20 6c 6f 67 60 00 54 6f 20 65 6e 61 62 6c 65 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 79 | r.log`.To.enable.mDNS.repeater.y |
| 140a00 | 6f 75 20 6e 65 65 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 74 20 6c 65 61 73 74 20 74 77 | ou.need.to.configure.at.least.tw |
| 140a20 | 6f 20 69 6e 74 65 72 66 61 63 65 73 20 73 6f 20 74 68 61 74 20 61 6c 6c 20 69 6e 63 6f 6d 69 6e | o.interfaces.so.that.all.incomin |
| 140a40 | 67 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6f 6e 65 20 69 6e 74 65 72 66 61 63 | g.mDNS.packets.from.one.interfac |
| 140a60 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 68 65 72 65 20 63 61 6e 20 62 65 20 72 65 2d 62 72 6f 61 | e.configured.here.can.be.re-broa |
| 140a80 | 64 63 61 73 74 65 64 20 74 6f 20 61 6e 79 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 28 73 | dcasted.to.any.other.interface(s |
| 140aa0 | 29 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e | ).configured.under.this.section. |
| 140ac0 | 00 54 6f 20 65 6e 61 62 6c 65 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 79 6f 75 20 6e 65 65 | .To.enable.mDNS.repeater.you.nee |
| 140ae0 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 74 20 6c 65 61 73 74 20 74 77 6f 20 69 6e 74 65 | d.to.configure.at.least.two.inte |
| 140b00 | 72 66 61 63 65 73 2e 20 54 6f 20 72 65 2d 62 72 6f 61 64 63 61 73 74 20 61 6c 6c 20 69 6e 63 6f | rfaces..To.re-broadcast.all.inco |
| 140b20 | 6d 69 6e 67 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 61 6e 79 20 69 6e 74 65 72 | ming.mDNS.packets.from.any.inter |
| 140b40 | 66 61 63 65 20 63 6f 6e 66 69 67 75 72 65 64 20 68 65 72 65 20 74 6f 20 61 6e 79 20 6f 74 68 65 | face.configured.here.to.any.othe |
| 140b60 | 72 20 69 6e 74 65 72 66 61 63 65 20 63 6f 6e 66 69 67 75 72 65 64 20 75 6e 64 65 72 20 74 68 69 | r.interface.configured.under.thi |
| 140b80 | 73 20 73 65 63 74 69 6f 6e 2e 00 54 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 48 54 54 50 20 73 65 | s.section..To.enable.the.HTTP.se |
| 140ba0 | 63 75 72 69 74 79 20 68 65 61 64 65 72 73 20 69 6e 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 | curity.headers.in.the.configurat |
| 140bc0 | 69 6f 6e 20 66 69 6c 65 2c 20 75 73 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 3a 00 54 6f 20 65 6e | ion.file,.use.the.command:.To.en |
| 140be0 | 61 62 6c 65 2f 64 69 73 61 62 6c 65 20 68 65 6c 70 65 72 20 73 75 70 70 6f 72 74 20 66 6f 72 20 | able/disable.helper.support.for. |
| 140c00 | 61 20 73 70 65 63 69 66 69 63 20 6e 65 69 67 68 62 6f 75 72 2c 20 74 68 65 20 72 6f 75 74 65 72 | a.specific.neighbour,.the.router |
| 140c20 | 2d 69 64 20 28 41 2e 42 2e 43 2e 44 29 20 68 61 73 20 74 6f 20 62 65 20 73 70 65 63 69 66 69 65 | -id.(A.B.C.D).has.to.be.specifie |
| 140c40 | 64 2e 00 54 6f 20 65 78 63 6c 75 64 65 20 74 72 61 66 66 69 63 20 66 72 6f 6d 20 6c 6f 61 64 20 | d..To.exclude.traffic.from.load. |
| 140c60 | 62 61 6c 61 6e 63 69 6e 67 2c 20 74 72 61 66 66 69 63 20 6d 61 74 63 68 69 6e 67 20 61 6e 20 65 | balancing,.traffic.matching.an.e |
| 140c80 | 78 63 6c 75 64 65 20 72 75 6c 65 20 69 73 20 6e 6f 74 20 62 61 6c 61 6e 63 65 64 20 62 75 74 20 | xclude.rule.is.not.balanced.but. |
| 140ca0 | 72 6f 75 74 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 73 79 73 74 65 6d 20 72 6f 75 74 69 6e | routed.through.the.system.routin |
| 140cc0 | 67 20 74 61 62 6c 65 20 69 6e 73 74 65 61 64 3a 00 54 6f 20 65 78 70 6c 61 69 6e 20 74 68 65 20 | g.table.instead:.To.explain.the. |
| 140ce0 | 75 73 61 67 65 20 6f 66 20 4c 4e 53 20 66 6f 6c 6c 6f 77 20 6f 75 72 20 62 6c 75 65 70 72 69 6e | usage.of.LNS.follow.our.blueprin |
| 140d00 | 74 20 3a 72 65 66 3a 60 65 78 61 6d 70 6c 65 73 2d 6c 61 63 2d 6c 6e 73 60 2e 00 54 6f 20 65 78 | t.:ref:`examples-lac-lns`..To.ex |
| 140d20 | 74 65 6e 64 20 53 4e 4d 50 20 61 67 65 6e 74 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2c 20 63 | tend.SNMP.agent.functionality,.c |
| 140d40 | 75 73 74 6f 6d 20 73 63 72 69 70 74 73 20 63 61 6e 20 62 65 20 65 78 65 63 75 74 65 64 20 65 76 | ustom.scripts.can.be.executed.ev |
| 140d60 | 65 72 79 20 74 69 6d 65 20 74 68 65 20 61 67 65 6e 74 20 69 73 20 62 65 69 6e 67 20 63 61 6c 6c | ery.time.the.agent.is.being.call |
| 140d80 | 65 64 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 62 79 20 75 73 69 6e | ed..This.can.be.achieved.by.usin |
| 140da0 | 67 20 60 60 61 72 62 69 74 72 61 72 79 20 65 78 74 65 6e 73 69 6f 6e 63 6f 6d 6d 61 6e 64 73 60 | g.``arbitrary.extensioncommands` |
| 140dc0 | 60 2e 20 54 68 65 20 66 69 72 73 74 20 73 74 65 70 20 69 73 20 74 6f 20 63 72 65 61 74 65 20 61 | `..The.first.step.is.to.create.a |
| 140de0 | 20 66 75 6e 63 74 69 6f 6e 61 6c 20 73 63 72 69 70 74 20 6f 66 20 63 6f 75 72 73 65 2c 20 74 68 | .functional.script.of.course,.th |
| 140e00 | 65 6e 20 75 70 6c 6f 61 64 20 69 74 20 74 6f 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 6e | en.upload.it.to.your.VyOS.instan |
| 140e20 | 63 65 20 76 69 61 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 60 60 73 63 70 20 79 6f 75 72 5f 73 63 | ce.via.the.command.``scp.your_sc |
| 140e40 | 72 69 70 74 2e 73 68 20 76 79 6f 73 40 79 6f 75 72 5f 72 6f 75 74 65 72 3a 2f 63 6f 6e 66 69 67 | ript.sh.vyos@your_router:/config |
| 140e60 | 2f 75 73 65 72 2d 64 61 74 61 60 60 2e 20 4f 6e 63 65 20 74 68 65 20 73 63 72 69 70 74 20 69 73 | /user-data``..Once.the.script.is |
| 140e80 | 20 75 70 6c 6f 61 64 65 64 2c 20 69 74 20 6e 65 65 64 73 20 74 6f 20 62 65 20 63 6f 6e 66 69 67 | .uploaded,.it.needs.to.be.config |
| 140ea0 | 75 72 65 64 20 76 69 61 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 62 65 6c 6f 77 2e 00 54 6f 20 66 | ured.via.the.command.below..To.f |
| 140ec0 | 6f 72 77 61 72 64 20 61 6c 6c 20 62 72 6f 61 64 63 61 73 74 20 70 61 63 6b 65 74 73 20 72 65 63 | orward.all.broadcast.packets.rec |
| 140ee0 | 65 69 76 65 64 20 6f 6e 20 60 55 44 50 20 70 6f 72 74 20 31 39 30 30 60 20 6f 6e 20 60 65 74 68 | eived.on.`UDP.port.1900`.on.`eth |
| 140f00 | 33 60 2c 20 60 65 74 68 34 60 20 6f 72 20 60 65 74 68 35 60 20 74 6f 20 61 6c 6c 20 6f 74 68 65 | 3`,.`eth4`.or.`eth5`.to.all.othe |
| 140f20 | 72 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 | r.interfaces.in.this.configurati |
| 140f40 | 6f 6e 2e 00 54 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 43 41 2c 20 74 68 65 20 73 65 72 76 | on..To.generate.the.CA,.the.serv |
| 140f60 | 65 72 20 70 72 69 76 61 74 65 20 6b 65 79 20 61 6e 64 20 63 65 72 74 69 66 69 63 61 74 65 73 20 | er.private.key.and.certificates. |
| 140f80 | 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 20 75 73 | the.following.commands.can.be.us |
| 140fa0 | 65 64 2e 00 54 6f 20 67 65 74 20 69 74 20 74 6f 20 77 6f 72 6b 20 61 73 20 61 6e 20 61 63 63 65 | ed..To.get.it.to.work.as.an.acce |
| 140fc0 | 73 73 20 70 6f 69 6e 74 20 77 69 74 68 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | ss.point.with.this.configuration |
| 140fe0 | 20 79 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 74 6f 20 73 65 74 20 75 70 20 61 20 44 48 43 50 20 | .you.will.need.to.set.up.a.DHCP. |
| 141000 | 73 65 72 76 65 72 20 74 6f 20 77 6f 72 6b 20 77 69 74 68 20 74 68 61 74 20 6e 65 74 77 6f 72 6b | server.to.work.with.that.network |
| 141020 | 2e 20 59 6f 75 20 63 61 6e 20 2d 20 6f 66 20 63 6f 75 72 73 65 20 2d 20 61 6c 73 6f 20 62 72 69 | ..You.can.-.of.course.-.also.bri |
| 141040 | 64 67 65 20 74 68 65 20 57 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 | dge.the.Wireless.interface.with. |
| 141060 | 61 6e 79 20 63 6f 6e 66 69 67 75 72 65 64 20 62 72 69 64 67 65 20 28 3a 72 65 66 3a 60 62 72 69 | any.configured.bridge.(:ref:`bri |
| 141080 | 64 67 65 2d 69 6e 74 65 72 66 61 63 65 60 29 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 00 54 | dge-interface`).on.the.system..T |
| 1410a0 | 6f 20 68 61 6e 64 20 6f 75 74 20 69 6e 64 69 76 69 64 75 61 6c 20 70 72 65 66 69 78 65 73 20 74 | o.hand.out.individual.prefixes.t |
| 1410c0 | 6f 20 79 6f 75 72 20 63 6c 69 65 6e 74 73 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6e | o.your.clients.the.following.con |
| 1410e0 | 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 75 73 65 64 3a 00 54 6f 20 69 6d 70 6f 72 74 20 69 74 | figuration.is.used:.To.import.it |
| 141100 | 20 66 72 6f 6d 20 74 68 65 20 66 69 6c 65 73 79 73 74 65 6d 20 75 73 65 3a 00 54 6f 20 6b 6e 6f | .from.the.filesystem.use:.To.kno |
| 141120 | 77 20 6d 6f 72 65 20 61 62 6f 75 74 20 73 63 72 69 70 74 69 6e 67 2c 20 63 68 65 63 6b 20 74 68 | w.more.about.scripting,.check.th |
| 141140 | 65 20 3a 72 65 66 3a 60 63 6f 6d 6d 61 6e 64 2d 73 63 72 69 70 74 69 6e 67 60 20 73 65 63 74 69 | e.:ref:`command-scripting`.secti |
| 141160 | 6f 6e 2e 00 54 6f 20 6c 69 73 74 65 6e 20 6f 6e 20 62 6f 74 68 20 60 65 74 68 30 60 20 61 6e 64 | on..To.listen.on.both.`eth0`.and |
| 141180 | 20 60 65 74 68 31 60 20 6d 44 4e 53 20 70 61 63 6b 65 74 73 20 61 6e 64 20 61 6c 73 6f 20 72 65 | .`eth1`.mDNS.packets.and.also.re |
| 1411a0 | 70 65 61 74 20 70 61 63 6b 65 74 73 20 72 65 63 65 69 76 65 64 20 6f 6e 20 60 65 74 68 30 60 20 | peat.packets.received.on.`eth0`. |
| 1411c0 | 74 6f 20 60 65 74 68 31 60 20 28 61 6e 64 20 76 69 63 65 2d 76 65 72 73 61 29 20 75 73 65 20 74 | to.`eth1`.(and.vice-versa).use.t |
| 1411e0 | 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 3a 00 54 6f 20 6d 61 6e 69 70 75 | he.following.commands:.To.manipu |
| 141200 | 6c 61 74 65 20 6f 72 20 64 69 73 70 6c 61 79 20 41 52 50 5f 20 74 61 62 6c 65 20 65 6e 74 72 69 | late.or.display.ARP_.table.entri |
| 141220 | 65 73 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 61 72 65 20 69 | es,.the.following.commands.are.i |
| 141240 | 6d 70 6c 65 6d 65 6e 74 65 64 2e 00 54 6f 20 70 65 72 66 6f 72 6d 20 61 20 67 72 61 63 65 66 75 | mplemented..To.perform.a.gracefu |
| 141260 | 6c 20 73 68 75 74 64 6f 77 6e 2c 20 74 68 65 20 46 52 52 20 60 60 67 72 61 63 65 66 75 6c 2d 72 | l.shutdown,.the.FRR.``graceful-r |
| 141280 | 65 73 74 61 72 74 20 70 72 65 70 61 72 65 20 69 70 20 6f 73 70 66 60 60 20 45 58 45 43 2d 6c 65 | estart.prepare.ip.ospf``.EXEC-le |
| 1412a0 | 76 65 6c 20 63 6f 6d 6d 61 6e 64 20 6e 65 65 64 73 20 74 6f 20 62 65 20 69 73 73 75 65 64 20 62 | vel.command.needs.to.be.issued.b |
| 1412c0 | 65 66 6f 72 65 20 72 65 73 74 61 72 74 69 6e 67 20 74 68 65 20 6f 73 70 66 64 20 64 61 65 6d 6f | efore.restarting.the.ospfd.daemo |
| 1412e0 | 6e 2e 00 54 6f 20 70 72 65 76 65 6e 74 20 69 73 73 75 65 73 20 77 69 74 68 20 64 69 76 65 72 67 | n..To.prevent.issues.with.diverg |
| 141300 | 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 62 65 74 77 65 65 6e 20 74 68 65 20 70 | ent.configurations.between.the.p |
| 141320 | 61 69 72 20 6f 66 20 72 6f 75 74 65 72 73 2c 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 | air.of.routers,.synchronization. |
| 141340 | 69 73 20 73 74 72 69 63 74 6c 79 20 75 6e 69 64 69 72 65 63 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 | is.strictly.unidirectional.from. |
| 141360 | 70 72 69 6d 61 72 79 20 74 6f 20 72 65 70 6c 69 63 61 2e 20 42 6f 74 68 20 72 6f 75 74 65 72 73 | primary.to.replica..Both.routers |
| 141380 | 20 73 68 6f 75 6c 64 20 62 65 20 6f 6e 6c 69 6e 65 20 61 6e 64 20 72 75 6e 20 74 68 65 20 73 61 | .should.be.online.and.run.the.sa |
| 1413a0 | 6d 65 20 76 65 72 73 69 6f 6e 20 6f 66 20 56 79 4f 53 2e 00 54 6f 20 72 65 71 75 65 73 74 20 61 | me.version.of.VyOS..To.request.a |
| 1413c0 | 20 2f 35 36 20 70 72 65 66 69 78 20 66 72 6f 6d 20 79 6f 75 72 20 49 53 50 20 75 73 65 3a 00 54 | ./56.prefix.from.your.ISP.use:.T |
| 1413e0 | 6f 20 72 65 73 74 61 72 74 20 74 68 65 20 44 48 43 50 76 36 20 73 65 72 76 65 72 00 54 6f 20 73 | o.restart.the.DHCPv6.server.To.s |
| 141400 | 65 74 75 70 20 53 4e 41 54 2c 20 77 65 20 6e 65 65 64 20 74 6f 20 6b 6e 6f 77 3a 00 54 6f 20 73 | etup.SNAT,.we.need.to.know:.To.s |
| 141420 | 65 74 75 70 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4e 41 54 20 72 75 6c 65 20 77 65 20 6e | etup.a.destination.NAT.rule.we.n |
| 141440 | 65 65 64 20 74 6f 20 67 61 74 68 65 72 3a 00 54 6f 20 75 70 64 61 74 65 20 74 68 65 20 66 69 72 | eed.to.gather:.To.update.the.fir |
| 141460 | 6d 77 61 72 65 2c 20 56 79 4f 53 20 61 6c 73 6f 20 73 68 69 70 73 20 74 68 65 20 60 71 6d 69 2d | mware,.VyOS.also.ships.the.`qmi- |
| 141480 | 66 69 72 6d 77 61 72 65 2d 75 70 64 61 74 65 60 20 62 69 6e 61 72 79 2e 20 54 6f 20 75 70 67 72 | firmware-update`.binary..To.upgr |
| 1414a0 | 61 64 65 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 6f 66 20 61 6e 20 65 2e 67 2e 20 53 69 65 72 | ade.the.firmware.of.an.e.g..Sier |
| 1414c0 | 72 61 20 57 69 72 65 6c 65 73 73 20 4d 43 37 37 31 30 20 6d 6f 64 75 6c 65 20 74 6f 20 74 68 65 | ra.Wireless.MC7710.module.to.the |
| 1414e0 | 20 66 69 72 6d 77 61 72 65 20 70 72 6f 76 69 64 65 64 20 69 6e 20 74 68 65 20 66 69 6c 65 20 60 | .firmware.provided.in.the.file.` |
| 141500 | 60 39 39 39 39 39 39 39 5f 39 39 39 39 39 39 39 5f 39 32 30 30 5f 30 33 2e 30 35 2e 31 34 2e 30 | `9999999_9999999_9200_03.05.14.0 |
| 141520 | 30 5f 30 30 5f 67 65 6e 65 72 69 63 5f 30 30 30 2e 30 30 30 5f 30 30 31 5f 53 50 4b 47 5f 4d 43 | 0_00_generic_000.000_001_SPKG_MC |
| 141540 | 2e 63 77 65 60 60 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 | .cwe``.use.the.following.command |
| 141560 | 3a 00 54 6f 20 75 73 65 20 61 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 66 6f 72 20 61 75 74 | :.To.use.a.RADIUS.server.for.aut |
| 141580 | 68 65 6e 74 69 63 61 74 69 6f 6e 20 61 6e 64 20 62 61 6e 64 77 69 64 74 68 2d 73 68 61 70 69 6e | hentication.and.bandwidth-shapin |
| 1415a0 | 67 2c 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 65 78 61 6d 70 6c 65 20 63 6f 6e 66 69 67 75 | g,.the.following.example.configu |
| 1415c0 | 72 61 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 73 65 64 2e 00 54 6f 20 75 73 65 20 61 20 72 61 64 | ration.can.be.used..To.use.a.rad |
| 1415e0 | 69 75 73 20 73 65 72 76 65 72 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 77 69 74 63 68 20 74 | ius.server,.you.need.to.switch.t |
| 141600 | 6f 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 20 52 41 44 49 55 53 20 61 6e 64 | o.authentication.mode.RADIUS.and |
| 141620 | 20 74 68 65 6e 20 63 6f 6e 66 69 67 75 72 65 20 69 74 2e 00 54 6f 20 75 73 65 20 73 75 63 68 20 | .then.configure.it..To.use.such. |
| 141640 | 61 20 73 65 72 76 69 63 65 2c 20 6f 6e 65 20 6d 75 73 74 20 64 65 66 69 6e 65 20 61 20 6c 6f 67 | a.service,.one.must.define.a.log |
| 141660 | 69 6e 2c 20 70 61 73 73 77 6f 72 64 2c 20 6f 6e 65 20 6f 72 20 6d 75 6c 74 69 70 6c 65 20 68 6f | in,.password,.one.or.multiple.ho |
| 141680 | 73 74 6e 61 6d 65 73 2c 20 70 72 6f 74 6f 63 6f 6c 20 61 6e 64 20 73 65 72 76 65 72 2e 00 54 6f | stnames,.protocol.and.server..To |
| 1416a0 | 20 75 73 65 20 74 68 65 20 53 61 6c 74 2d 4d 69 6e 69 6f 6e 2c 20 61 20 72 75 6e 6e 69 6e 67 20 | .use.the.Salt-Minion,.a.running. |
| 1416c0 | 53 61 6c 74 2d 4d 61 73 74 65 72 20 69 73 20 72 65 71 75 69 72 65 64 2e 20 59 6f 75 20 63 61 6e | Salt-Master.is.required..You.can |
| 1416e0 | 20 66 69 6e 64 20 6d 6f 72 65 20 69 6e 20 74 68 65 20 60 53 61 6c 74 20 50 6f 6a 65 63 74 20 44 | .find.more.in.the.`Salt.Poject.D |
| 141700 | 6f 63 75 6d 65 6e 74 61 69 6f 6e 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 73 61 6c 74 70 72 | ocumentaion.<https://docs.saltpr |
| 141720 | 6f 6a 65 63 74 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 74 65 6e 74 73 2e 68 74 6d 6c | oject.io/en/latest/contents.html |
| 141740 | 3e 60 5f 00 54 6f 20 75 73 65 20 74 68 65 20 53 61 6c 74 2d 4d 69 6e 69 6f 6e 2c 20 61 20 72 75 | >`_.To.use.the.Salt-Minion,.a.ru |
| 141760 | 6e 6e 69 6e 67 20 53 61 6c 74 2d 4d 61 73 74 65 72 20 69 73 20 72 65 71 75 69 72 65 64 2e 20 59 | nning.Salt-Master.is.required..Y |
| 141780 | 6f 75 20 63 61 6e 20 66 69 6e 64 20 6d 6f 72 65 20 69 6e 20 74 68 65 20 60 53 61 6c 74 20 50 72 | ou.can.find.more.in.the.`Salt.Pr |
| 1417a0 | 6f 6a 65 63 74 20 44 6f 63 75 6d 65 6e 74 61 74 69 6f 6e 20 3c 68 74 74 70 73 3a 2f 2f 64 6f 63 | oject.Documentation.<https://doc |
| 1417c0 | 73 2e 73 61 6c 74 70 72 6f 6a 65 63 74 2e 69 6f 2f 65 6e 2f 6c 61 74 65 73 74 2f 63 6f 6e 74 65 | s.saltproject.io/en/latest/conte |
| 1417e0 | 6e 74 73 2e 68 74 6d 6c 3e 60 5f 00 54 6f 20 75 73 65 20 74 68 69 73 20 66 75 6c 6c 20 63 6f 6e | nts.html>`_.To.use.this.full.con |
| 141800 | 66 69 67 75 72 61 74 69 6f 6e 20 77 65 20 61 73 75 6d 65 20 61 20 70 75 62 6c 69 63 20 61 63 63 | figuration.we.asume.a.public.acc |
| 141820 | 65 73 73 69 62 6c 65 20 68 6f 73 74 6e 61 6d 65 2e 00 54 6f 70 6f 6c 6f 67 79 3a 00 54 6f 70 6f | essible.hostname..Topology:.Topo |
| 141840 | 6c 6f 67 79 3a 20 50 43 34 20 2d 20 4c 65 61 66 32 20 2d 20 53 70 69 6e 65 31 20 2d 20 4c 65 61 | logy:.PC4.-.Leaf2.-.Spine1.-.Lea |
| 141860 | 66 33 20 2d 20 50 43 35 00 54 6f 74 61 6c 20 50 6f 72 74 73 3a 20 36 35 35 33 36 20 28 30 20 74 | f3.-.PC5.Total.Ports:.65536.(0.t |
| 141880 | 6f 20 36 35 35 33 35 29 00 54 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 00 54 72 61 63 6b 00 54 72 | o.65535).Toubleshooting.Track.Tr |
| 1418a0 | 61 63 6b 20 6f 70 74 69 6f 6e 20 74 6f 20 74 72 61 63 6b 20 6e 6f 6e 20 56 52 52 50 20 69 6e 74 | ack.option.to.track.non.VRRP.int |
| 1418c0 | 65 72 66 61 63 65 20 73 74 61 74 65 73 2e 20 56 52 52 50 20 63 68 61 6e 67 65 73 20 73 74 61 74 | erface.states..VRRP.changes.stat |
| 1418e0 | 75 73 20 74 6f 20 60 60 46 41 55 4c 54 60 60 20 69 66 20 6f 6e 65 20 6f 66 20 74 68 65 20 74 72 | us.to.``FAULT``.if.one.of.the.tr |
| 141900 | 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 69 6e 20 73 74 61 74 65 20 60 60 64 6f 77 6e 60 60 | ack.interfaces.in.state.``down`` |
| 141920 | 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 20 42 47 50 20 64 69 64 20 6e 6f 74 20 68 61 76 65 20 74 | ..Traditional.BGP.did.not.have.t |
| 141940 | 68 65 20 66 65 61 74 75 72 65 20 74 6f 20 64 65 74 65 63 74 20 61 20 72 65 6d 6f 74 65 20 70 65 | he.feature.to.detect.a.remote.pe |
| 141960 | 65 72 27 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 2c 20 65 2e 67 2e 20 77 68 65 74 68 65 72 20 | er's.capabilities,.e.g..whether. |
| 141980 | 69 74 20 63 61 6e 20 68 61 6e 64 6c 65 20 70 72 65 66 69 78 20 74 79 70 65 73 20 6f 74 68 65 72 | it.can.handle.prefix.types.other |
| 1419a0 | 20 74 68 61 6e 20 49 50 76 34 20 75 6e 69 63 61 73 74 20 72 6f 75 74 65 73 2e 20 54 68 69 73 20 | .than.IPv4.unicast.routes..This. |
| 1419c0 | 77 61 73 20 61 20 62 69 67 20 70 72 6f 62 6c 65 6d 20 75 73 69 6e 67 20 4d 75 6c 74 69 70 72 6f | was.a.big.problem.using.Multipro |
| 1419e0 | 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 6f 6e 20 66 6f 72 20 42 47 50 20 69 6e 20 61 6e 20 6f 70 | tocol.Extension.for.BGP.in.an.op |
| 141a00 | 65 72 61 74 69 6f 6e 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 3a 72 66 63 3a 60 32 38 34 32 60 20 61 | erational.network..:rfc:`2842`.a |
| 141a20 | 64 6f 70 74 65 64 20 61 20 66 65 61 74 75 72 65 20 63 61 6c 6c 65 64 20 43 61 70 61 62 69 6c 69 | dopted.a.feature.called.Capabili |
| 141a40 | 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 2a 62 67 70 64 2a 20 75 73 65 20 74 68 69 73 20 | ty.Negotiation..*bgpd*.use.this. |
| 141a60 | 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 74 6f 20 64 65 74 65 63 74 | Capability.Negotiation.to.detect |
| 141a80 | 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 27 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e | .the.remote.peer's.capabilities. |
| 141aa0 | 20 49 66 20 61 20 70 65 65 72 20 69 73 20 6f 6e 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 61 73 | .If.a.peer.is.only.configured.as |
| 141ac0 | 20 61 6e 20 49 50 76 34 20 75 6e 69 63 61 73 74 20 6e 65 69 67 68 62 6f 72 2c 20 2a 62 67 70 64 | .an.IPv4.unicast.neighbor,.*bgpd |
| 141ae0 | 2a 20 64 6f 65 73 20 6e 6f 74 20 73 65 6e 64 20 74 68 65 73 65 20 43 61 70 61 62 69 6c 69 74 79 | *.does.not.send.these.Capability |
| 141b00 | 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 70 61 63 6b 65 74 73 20 28 61 74 20 6c 65 61 73 74 20 6e | .Negotiation.packets.(at.least.n |
| 141b20 | 6f 74 20 75 6e 6c 65 73 73 20 6f 74 68 65 72 20 6f 70 74 69 6f 6e 61 6c 20 42 47 50 20 66 65 61 | ot.unless.other.optional.BGP.fea |
| 141b40 | 74 75 72 65 73 20 72 65 71 75 69 72 65 20 63 61 70 61 62 69 6c 69 74 79 20 6e 65 67 6f 74 69 61 | tures.require.capability.negotia |
| 141b60 | 74 69 6f 6e 29 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 6c 79 20 66 69 72 65 77 61 6c 6c 73 20 77 | tion)..Traditionally.firewalls.w |
| 141b80 | 65 65 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 74 68 65 20 63 6f 6e 63 65 70 74 | eere.configured.with.the.concept |
| 141ba0 | 20 6f 66 20 64 61 74 61 20 67 6f 69 6e 67 20 69 6e 20 61 6e 64 20 6f 75 74 20 6f 66 20 61 6e 20 | .of.data.going.in.and.out.of.an. |
| 141bc0 | 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 72 6f 75 74 65 72 20 6a 75 73 74 20 6c 69 73 74 65 | interface..The.router.just.liste |
| 141be0 | 6e 65 64 20 74 6f 20 74 68 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 20 74 68 72 6f 75 67 68 20 | ned.to.the.data.flowing.through. |
| 141c00 | 61 6e 64 20 72 65 73 70 6f 6e 64 69 6e 67 20 61 73 20 72 65 71 75 69 72 65 64 20 69 66 20 69 74 | and.responding.as.required.if.it |
| 141c20 | 20 77 61 73 20 64 69 72 65 63 74 65 64 20 61 74 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 | .was.directed.at.the.router.itse |
| 141c40 | 6c 66 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 6c 79 20 68 61 72 64 77 61 72 65 20 72 6f 75 74 65 | lf..Traditionally.hardware.route |
| 141c60 | 72 73 20 69 6d 70 6c 65 6d 65 6e 74 20 49 50 73 65 63 20 65 78 63 6c 75 73 69 76 65 6c 79 20 64 | rs.implement.IPsec.exclusively.d |
| 141c80 | 75 65 20 74 6f 20 72 65 6c 61 74 69 76 65 20 65 61 73 65 20 6f 66 20 69 6d 70 6c 65 6d 65 6e 74 | ue.to.relative.ease.of.implement |
| 141ca0 | 69 6e 67 20 69 74 20 69 6e 20 68 61 72 64 77 61 72 65 20 61 6e 64 20 69 6e 73 75 66 66 69 63 69 | ing.it.in.hardware.and.insuffici |
| 141cc0 | 65 6e 74 20 43 50 55 20 70 6f 77 65 72 20 66 6f 72 20 64 6f 69 6e 67 20 65 6e 63 72 79 70 74 69 | ent.CPU.power.for.doing.encrypti |
| 141ce0 | 6f 6e 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 53 69 6e 63 65 20 56 79 4f 53 20 69 73 20 61 20 | on.in.software..Since.VyOS.is.a. |
| 141d00 | 73 6f 66 74 77 61 72 65 20 72 6f 75 74 65 72 2c 20 74 68 69 73 20 69 73 20 6c 65 73 73 20 6f 66 | software.router,.this.is.less.of |
| 141d20 | 20 61 20 63 6f 6e 63 65 72 6e 2e 20 4f 70 65 6e 56 50 4e 20 68 61 73 20 62 65 65 6e 20 77 69 64 | .a.concern..OpenVPN.has.been.wid |
| 141d40 | 65 6c 79 20 75 73 65 64 20 6f 6e 20 55 4e 49 58 20 70 6c 61 74 66 6f 72 6d 20 66 6f 72 20 61 20 | ely.used.on.UNIX.platform.for.a. |
| 141d60 | 6c 6f 6e 67 20 74 69 6d 65 20 61 6e 64 20 69 73 20 61 20 70 6f 70 75 6c 61 72 20 6f 70 74 69 6f | long.time.and.is.a.popular.optio |
| 141d80 | 6e 20 66 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 65 73 73 20 56 50 4e 2c 20 74 68 6f 75 67 68 20 | n.for.remote.access.VPN,.though. |
| 141da0 | 69 74 27 73 20 61 6c 73 6f 20 63 61 70 61 62 6c 65 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 69 74 | it's.also.capable.of.site-to-sit |
| 141dc0 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 72 61 64 69 74 69 6f 6e 61 6c 6c 79 20 68 61 72 | e.connections..Traditionally.har |
| 141de0 | 64 77 61 72 65 20 72 6f 75 74 65 72 73 20 69 6d 70 6c 65 6d 65 6e 74 20 49 50 73 65 63 20 65 78 | dware.routers.implement.IPsec.ex |
| 141e00 | 63 6c 75 73 69 76 65 6c 79 20 64 75 65 20 74 6f 20 72 65 6c 61 74 69 76 65 20 65 61 73 65 20 6f | clusively.due.to.relative.ease.o |
| 141e20 | 66 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 69 74 20 69 6e 20 68 61 72 64 77 61 72 65 20 61 6e | f.implementing.it.in.hardware.an |
| 141e40 | 64 20 69 6e 73 75 66 66 69 63 69 65 6e 74 20 43 50 55 20 70 6f 77 65 72 20 66 6f 72 20 64 6f 69 | d.insufficient.CPU.power.for.doi |
| 141e60 | 6e 67 20 65 6e 63 72 79 70 74 69 6f 6e 20 69 6e 20 73 6f 66 74 77 61 72 65 2e 20 53 69 6e 63 65 | ng.encryption.in.software..Since |
| 141e80 | 20 56 79 4f 53 20 69 73 20 61 20 73 6f 66 74 77 61 72 65 20 72 6f 75 74 65 72 2c 20 74 68 69 73 | .VyOS.is.a.software.router,.this |
| 141ea0 | 20 69 73 20 6c 65 73 73 20 6f 66 20 61 20 63 6f 6e 63 65 72 6e 2e 20 4f 70 65 6e 56 50 4e 20 68 | .is.less.of.a.concern..OpenVPN.h |
| 141ec0 | 61 73 20 62 65 65 6e 20 77 69 64 65 6c 79 20 75 73 65 64 20 6f 6e 20 74 68 65 20 55 4e 49 58 20 | as.been.widely.used.on.the.UNIX. |
| 141ee0 | 70 6c 61 74 66 6f 72 6d 20 66 6f 72 20 61 20 6c 6f 6e 67 20 74 69 6d 65 20 61 6e 64 20 69 73 20 | platform.for.a.long.time.and.is. |
| 141f00 | 61 20 70 6f 70 75 6c 61 72 20 6f 70 74 69 6f 6e 20 66 6f 72 20 72 65 6d 6f 74 65 20 61 63 63 65 | a.popular.option.for.remote.acce |
| 141f20 | 73 73 20 56 50 4e 2c 20 74 68 6f 75 67 68 20 69 74 27 73 20 61 6c 73 6f 20 63 61 70 61 62 6c 65 | ss.VPN,.though.it's.also.capable |
| 141f40 | 20 6f 66 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 00 54 72 | .of.site-to-site.connections..Tr |
| 141f60 | 61 66 66 69 63 20 46 69 6c 74 65 72 73 00 54 72 61 66 66 69 63 20 46 69 6c 74 65 72 73 20 61 72 | affic.Filters.Traffic.Filters.ar |
| 141f80 | 65 20 75 73 65 64 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 77 68 69 63 68 20 70 61 63 6b 65 74 73 20 | e.used.to.control.which.packets. |
| 141fa0 | 77 69 6c 6c 20 68 61 76 65 20 74 68 65 20 64 65 66 69 6e 65 64 20 4e 41 54 20 72 75 6c 65 73 20 | will.have.the.defined.NAT.rules. |
| 141fc0 | 61 70 70 6c 69 65 64 2e 20 46 69 76 65 20 64 69 66 66 65 72 65 6e 74 20 66 69 6c 74 65 72 73 20 | applied..Five.different.filters. |
| 141fe0 | 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 77 69 74 68 69 6e 20 61 20 4e 41 54 20 72 75 6c 65 | can.be.applied.within.a.NAT.rule |
| 142000 | 2e 00 54 72 61 66 66 69 63 20 4d 61 74 63 68 20 47 72 6f 75 70 00 54 72 61 66 66 69 63 20 50 6f | ..Traffic.Match.Group.Traffic.Po |
| 142020 | 6c 69 63 79 00 54 72 61 66 66 69 63 20 63 61 6e 6e 6f 74 20 66 6c 6f 77 20 62 65 74 77 65 65 6e | licy.Traffic.cannot.flow.between |
| 142040 | 20 61 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 6e 79 | .a.zone.member.interface.and.any |
| 142060 | 20 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 69 73 20 6e 6f 74 20 61 20 7a 6f 6e 65 20 6d 65 | .interface.that.is.not.a.zone.me |
| 142080 | 6d 62 65 72 2e 00 54 72 61 66 66 69 63 20 63 61 6e 6e 6f 74 20 66 6c 6f 77 20 62 65 74 77 65 65 | mber..Traffic.cannot.flow.betwee |
| 1420a0 | 6e 20 7a 6f 6e 65 20 6d 65 6d 62 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 6e 79 20 | n.zone.member.interface.and.any. |
| 1420c0 | 69 6e 74 65 72 66 61 63 65 20 74 68 61 74 20 69 73 20 6e 6f 74 20 61 20 7a 6f 6e 65 20 6d 65 6d | interface.that.is.not.a.zone.mem |
| 1420e0 | 62 65 72 2e 00 54 72 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 74 20 73 6f 75 72 | ber..Traffic.from.multicast.sour |
| 142100 | 63 65 73 20 77 69 6c 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f | ces.will.go.to.the.Rendezvous.Po |
| 142120 | 69 6e 74 2c 20 61 6e 64 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 70 75 6c 6c 20 69 74 20 | int,.and.receivers.will.pull.it. |
| 142140 | 66 72 6f 6d 20 61 20 73 68 61 72 65 64 20 74 72 65 65 20 75 73 69 6e 67 20 3a 61 62 62 72 3a 60 | from.a.shared.tree.using.:abbr:` |
| 142160 | 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 | IGMP.(Internet.Group.Management. |
| 142180 | 50 72 6f 74 6f 63 6f 6c 29 60 2e 00 54 72 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 6c 74 69 63 61 | Protocol)`..Traffic.from.multica |
| 1421a0 | 73 74 20 73 6f 75 72 63 65 73 20 77 69 6c 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 65 6e 64 65 7a | st.sources.will.go.to.the.Rendez |
| 1421c0 | 76 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e 64 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 70 | vous.Point,.and.receivers.will.p |
| 1421e0 | 75 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 73 68 61 72 65 64 20 74 72 65 65 20 75 73 69 6e 67 20 | ull.it.from.a.shared.tree.using. |
| 142200 | 49 47 4d 50 20 28 49 6e 74 65 72 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 | IGMP.(Internet.Group.Management. |
| 142220 | 50 72 6f 74 6f 63 6f 6c 29 2e 00 54 72 61 66 66 69 63 20 66 72 6f 6d 20 6d 75 6c 74 69 63 61 73 | Protocol)..Traffic.from.multicas |
| 142240 | 74 20 73 6f 75 72 63 65 73 20 77 69 6c 6c 20 67 6f 20 74 6f 20 74 68 65 20 52 65 6e 64 65 7a 76 | t.sources.will.go.to.the.Rendezv |
| 142260 | 6f 75 73 20 50 6f 69 6e 74 2c 20 61 6e 64 20 72 65 63 65 69 76 65 72 73 20 77 69 6c 6c 20 70 75 | ous.Point,.and.receivers.will.pu |
| 142280 | 6c 6c 20 69 74 20 66 72 6f 6d 20 61 20 73 68 61 72 65 64 20 74 72 65 65 20 75 73 69 6e 67 20 4d | ll.it.from.a.shared.tree.using.M |
| 1422a0 | 4c 44 20 28 4d 75 6c 74 69 63 61 73 74 20 4c 69 73 74 65 6e 65 72 20 44 69 73 63 6f 76 65 72 79 | LD.(Multicast.Listener.Discovery |
| 1422c0 | 29 2e 00 54 72 61 66 66 69 63 20 6d 75 73 74 20 62 65 20 73 79 6d 6d 65 74 72 69 63 00 54 72 61 | )..Traffic.must.be.symmetric.Tra |
| 1422e0 | 66 66 69 63 20 77 68 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f | ffic.which.is.received.by.the.ro |
| 142300 | 75 74 65 72 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 6d 65 | uter.on.an.interface.which.is.me |
| 142320 | 6d 62 65 72 20 6f 66 20 61 20 62 72 69 64 67 65 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 6f 6e | mber.of.a.bridge.is.processed.on |
| 142340 | 20 74 68 65 20 2a 2a 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2e 20 41 20 73 69 6d 70 6c 69 66 | .the.**Bridge.Layer**..A.simplif |
| 142360 | 69 65 64 20 70 61 63 6b 65 74 20 66 6c 6f 77 20 64 69 61 67 72 61 6d 20 66 6f 72 20 74 68 69 73 | ied.packet.flow.diagram.for.this |
| 142380 | 20 6c 61 79 65 72 20 69 73 20 73 68 6f 77 6e 20 6e 65 78 74 3a 00 54 72 61 66 66 69 63 20 77 68 | .layer.is.shown.next:.Traffic.wh |
| 1423a0 | 69 63 68 20 69 73 20 72 65 63 65 69 76 65 64 20 62 79 20 74 68 65 20 72 6f 75 74 65 72 20 6f 6e | ich.is.received.by.the.router.on |
| 1423c0 | 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 68 69 63 68 20 69 73 20 6d 65 6d 62 65 72 20 6f 66 | .an.interface.which.is.member.of |
| 1423e0 | 20 61 20 62 72 69 64 67 65 20 69 73 20 70 72 6f 63 65 73 73 65 64 20 6f 6e 20 74 68 65 20 2a 2a | .a.bridge.is.processed.on.the.** |
| 142400 | 42 72 69 64 67 65 20 4c 61 79 65 72 2a 2a 2e 20 42 65 66 6f 72 65 20 74 68 65 20 62 72 69 64 67 | Bridge.Layer**..Before.the.bridg |
| 142420 | 65 20 64 65 63 69 73 69 6f 6e 20 69 73 20 6d 61 64 65 2c 20 61 6c 6c 20 70 61 63 6b 65 74 73 20 | e.decision.is.made,.all.packets. |
| 142440 | 61 72 65 20 61 6e 61 6c 79 7a 65 64 20 61 74 20 2a 2a 50 72 65 72 6f 75 74 69 6e 67 2a 2a 2e 20 | are.analyzed.at.**Prerouting**.. |
| 142460 | 46 69 72 73 74 20 66 69 6c 74 65 72 73 20 63 61 6e 20 62 65 20 61 70 70 6c 69 65 64 20 68 65 72 | First.filters.can.be.applied.her |
| 142480 | 65 2c 20 61 6e 64 20 61 6c 73 6f 20 72 75 6c 65 73 20 66 6f 72 20 69 67 6e 6f 72 69 6e 67 20 63 | e,.and.also.rules.for.ignoring.c |
| 1424a0 | 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 73 74 65 6d 20 63 61 6e 20 62 65 | onnection.tracking.system.can.be |
| 1424c0 | 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 65 20 72 65 6c 65 76 61 6e 74 20 63 6f 6e 66 69 67 | .configured..The.relevant.config |
| 1424e0 | 75 72 61 74 69 6f 6e 20 74 68 61 74 20 61 63 74 73 20 69 6e 20 2a 2a 70 72 65 72 6f 75 74 69 6e | uration.that.acts.in.**preroutin |
| 142500 | 67 2a 2a 20 69 73 3a 00 54 72 61 6e 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 00 54 72 61 6e 73 | g**.is:.Transition.scripts.Trans |
| 142520 | 69 74 69 6f 6e 20 73 63 72 69 70 74 73 20 63 61 6e 20 68 65 6c 70 20 79 6f 75 20 69 6d 70 6c 65 | ition.scripts.can.help.you.imple |
| 142540 | 6d 65 6e 74 20 76 61 72 69 6f 75 73 20 66 69 78 75 70 73 2c 20 73 75 63 68 20 61 73 20 73 74 61 | ment.various.fixups,.such.as.sta |
| 142560 | 72 74 69 6e 67 20 61 6e 64 20 73 74 6f 70 70 69 6e 67 20 73 65 72 76 69 63 65 73 2c 20 6f 72 20 | rting.and.stopping.services,.or. |
| 142580 | 65 76 65 6e 20 6d 6f 64 69 66 79 69 6e 67 20 74 68 65 20 56 79 4f 53 20 63 6f 6e 66 69 67 20 6f | even.modifying.the.VyOS.config.o |
| 1425a0 | 6e 20 56 52 52 50 20 74 72 61 6e 73 69 74 69 6f 6e 2e 20 54 68 69 73 20 73 65 74 75 70 20 77 69 | n.VRRP.transition..This.setup.wi |
| 1425c0 | 6c 6c 20 6d 61 6b 65 20 74 68 65 20 56 52 52 50 20 70 72 6f 63 65 73 73 20 65 78 65 63 75 74 65 | ll.make.the.VRRP.process.execute |
| 1425e0 | 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 76 72 72 70 2d 66 61 69 6c | .the.``/config/scripts/vrrp-fail |
| 142600 | 2e 73 68 60 60 20 77 69 74 68 20 61 72 67 75 6d 65 6e 74 20 60 60 46 6f 6f 60 60 20 77 68 65 6e | .sh``.with.argument.``Foo``.when |
| 142620 | 20 56 52 52 50 20 66 61 69 6c 73 2c 20 61 6e 64 20 74 68 65 20 60 60 2f 63 6f 6e 66 69 67 2f 73 | .VRRP.fails,.and.the.``/config/s |
| 142640 | 63 72 69 70 74 73 2f 76 72 72 70 2d 6d 61 73 74 65 72 2e 73 68 60 60 20 77 68 65 6e 20 74 68 65 | cripts/vrrp-master.sh``.when.the |
| 142660 | 20 72 6f 75 74 65 72 20 62 65 63 6f 6d 65 73 20 74 68 65 20 6d 61 73 74 65 72 3a 00 54 72 61 6e | .router.becomes.the.master:.Tran |
| 142680 | 73 70 61 72 65 6e 74 20 50 72 6f 78 79 00 54 72 6f 75 62 6c 65 73 68 6f 6f 74 69 6e 67 00 54 75 | sparent.Proxy.Troubleshooting.Tu |
| 1426a0 | 6e 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 00 54 75 6e 6e 65 6c 00 54 75 6e 6e 65 6c 20 6b 65 79 73 | ning.commands.Tunnel.Tunnel.keys |
| 1426c0 | 00 54 75 6e 6e 65 6c 20 70 61 73 73 77 6f 72 64 20 75 73 65 64 20 74 6f 20 61 75 74 68 65 6e 74 | .Tunnel.password.used.to.authent |
| 1426e0 | 69 63 61 74 65 20 74 68 65 20 63 6c 69 65 6e 74 20 28 4c 41 43 29 00 54 75 72 6e 20 6f 6e 20 66 | icate.the.client.(LAC).Turn.on.f |
| 142700 | 6c 6f 77 2d 62 61 73 65 64 20 74 69 6d 65 73 74 61 6d 70 20 65 78 74 65 6e 73 69 6f 6e 2e 00 54 | low-based.timestamp.extension..T |
| 142720 | 77 6f 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 76 61 72 69 61 62 6c 65 73 20 61 72 65 20 61 76 61 | wo.environment.variables.are.ava |
| 142740 | 69 6c 61 62 6c 65 3a 00 54 77 6f 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 67 6f 69 6e 67 | ilable:.Two.interfaces.are.going |
| 142760 | 20 74 6f 20 62 65 20 75 73 65 64 20 69 6e 20 74 68 65 20 66 6c 6f 77 74 61 62 6c 65 73 3a 20 65 | .to.be.used.in.the.flowtables:.e |
| 142780 | 74 68 30 20 61 6e 64 20 65 74 68 31 00 54 77 6f 20 6e 65 77 20 66 69 6c 65 73 20 60 60 2f 63 6f | th0.and.eth1.Two.new.files.``/co |
| 1427a0 | 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 60 60 20 61 6e 64 20 60 60 2f 63 | nfig/auth/id_rsa_rpki``.and.``/c |
| 1427c0 | 6f 6e 66 69 67 2f 61 75 74 68 2f 69 64 5f 72 73 61 5f 72 70 6b 69 2e 70 75 62 60 60 20 77 69 6c | onfig/auth/id_rsa_rpki.pub``.wil |
| 1427e0 | 6c 20 62 65 20 63 72 65 61 74 65 64 2e 00 54 77 6f 20 6f 70 74 69 6f 6e 73 20 61 72 65 20 61 76 | l.be.created..Two.options.are.av |
| 142800 | 61 69 6c 61 62 6c 65 20 66 6f 72 20 60 6d 6f 64 65 60 3a 20 65 69 74 68 65 72 20 60 6c 6f 61 64 | ailable.for.`mode`:.either.`load |
| 142820 | 60 20 61 6e 64 20 72 65 70 6c 61 63 65 20 6f 72 20 60 73 65 74 60 20 74 68 65 20 63 6f 6e 66 69 | `.and.replace.or.`set`.the.confi |
| 142840 | 67 75 72 61 74 69 6f 6e 20 73 65 63 74 69 6f 6e 2e 00 54 77 6f 20 72 6f 75 74 65 72 73 20 63 6f | guration.section..Two.routers.co |
| 142860 | 6e 6e 65 63 74 65 64 20 62 6f 74 68 20 76 69 61 20 65 74 68 31 20 74 68 72 6f 75 67 68 20 61 6e | nnected.both.via.eth1.through.an |
| 142880 | 20 75 6e 74 72 75 73 74 65 64 20 73 77 69 74 63 68 00 54 79 70 65 20 6f 66 20 6d 65 74 72 69 63 | .untrusted.switch.Type.of.metric |
| 1428a0 | 73 20 67 72 6f 75 70 69 6e 67 20 77 68 65 6e 20 70 75 73 68 20 74 6f 20 41 7a 75 72 65 20 44 61 | s.grouping.when.push.to.Azure.Da |
| 1428c0 | 74 61 20 45 78 70 6c 6f 72 65 72 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 60 60 74 61 | ta.Explorer..The.default.is.``ta |
| 1428e0 | 62 6c 65 2d 70 65 72 2d 6d 65 74 72 69 63 60 60 2e 00 54 79 70 65 2d 31 20 28 45 41 44 2d 70 65 | ble-per-metric``..Type-1.(EAD-pe |
| 142900 | 72 2d 45 53 20 61 6e 64 20 45 41 44 2d 70 65 72 2d 45 56 49 29 20 72 6f 75 74 65 73 20 61 72 65 | r-ES.and.EAD-per-EVI).routes.are |
| 142920 | 20 75 73 65 64 20 74 6f 20 61 64 76 65 72 74 69 73 65 20 74 68 65 20 6c 6f 63 61 6c 6c 79 20 61 | .used.to.advertise.the.locally.a |
| 142940 | 74 74 61 63 68 65 64 20 45 53 73 20 61 6e 64 20 74 6f 20 6c 65 61 72 6e 20 6f 66 66 20 72 65 6d | ttached.ESs.and.to.learn.off.rem |
| 142960 | 6f 74 65 20 45 53 73 20 69 6e 20 74 68 65 20 6e 65 74 77 6f 72 6b 2e 20 4c 6f 63 61 6c 20 54 79 | ote.ESs.in.the.network..Local.Ty |
| 142980 | 70 65 2d 32 2f 4d 41 43 2d 49 50 20 72 6f 75 74 65 73 20 61 72 65 20 61 6c 73 6f 20 61 64 76 65 | pe-2/MAC-IP.routes.are.also.adve |
| 1429a0 | 72 74 69 73 65 64 20 77 69 74 68 20 61 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 45 53 49 20 61 6c | rtised.with.a.destination.ESI.al |
| 1429c0 | 6c 6f 77 69 6e 67 20 66 6f 72 20 4d 41 43 2d 49 50 20 73 79 6e 63 69 6e 67 20 62 65 74 77 65 65 | lowing.for.MAC-IP.syncing.betwee |
| 1429e0 | 6e 20 45 74 68 65 72 6e 65 74 20 53 65 67 6d 65 6e 74 20 70 65 65 72 73 2e 20 52 65 66 65 72 65 | n.Ethernet.Segment.peers..Refere |
| 142a00 | 6e 63 65 3a 20 52 46 43 20 37 34 33 32 2c 20 52 46 43 20 38 33 36 35 00 54 79 70 65 2d 34 20 28 | nce:.RFC.7432,.RFC.8365.Type-4.( |
| 142a20 | 45 53 52 29 20 72 6f 75 74 65 73 20 61 72 65 20 75 73 65 64 20 66 6f 72 20 44 65 73 69 67 6e 61 | ESR).routes.are.used.for.Designa |
| 142a40 | 74 65 64 20 46 6f 72 77 61 72 64 65 72 20 28 44 46 29 20 65 6c 65 63 74 69 6f 6e 2e 20 44 46 73 | ted.Forwarder.(DF).election..DFs |
| 142a60 | 20 66 6f 72 77 61 72 64 20 42 55 4d 20 74 72 61 66 66 69 63 20 72 65 63 65 69 76 65 64 20 76 69 | .forward.BUM.traffic.received.vi |
| 142a80 | 61 20 74 68 65 20 6f 76 65 72 6c 61 79 20 6e 65 74 77 6f 72 6b 2e 20 54 68 69 73 20 69 6d 70 6c | a.the.overlay.network..This.impl |
| 142aa0 | 65 6d 65 6e 74 61 74 69 6f 6e 20 75 73 65 73 20 61 20 70 72 65 66 65 72 65 6e 63 65 20 62 61 73 | ementation.uses.a.preference.bas |
| 142ac0 | 65 64 20 44 46 20 65 6c 65 63 74 69 6f 6e 20 73 70 65 63 69 66 69 65 64 20 62 79 20 64 72 61 66 | ed.DF.election.specified.by.draf |
| 142ae0 | 74 2d 69 65 74 66 2d 62 65 73 73 2d 65 76 70 6e 2d 70 72 65 66 2d 64 66 2e 00 54 79 70 69 63 61 | t-ietf-bess-evpn-pref-df..Typica |
| 142b00 | 6c 6c 79 2c 20 61 20 31 2d 74 6f 2d 31 20 4e 41 54 20 72 75 6c 65 20 6f 6d 69 74 73 20 74 68 65 | lly,.a.1-to-1.NAT.rule.omits.the |
| 142b20 | 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 20 28 61 6c 6c 20 70 6f 72 74 73 29 20 61 6e | .destination.port.(all.ports).an |
| 142b40 | 64 20 72 65 70 6c 61 63 65 73 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 77 69 74 68 20 65 69 74 | d.replaces.the.protocol.with.eit |
| 142b60 | 68 65 72 20 2a 2a 61 6c 6c 2a 2a 20 6f 72 20 2a 2a 69 70 2a 2a 2e 00 55 44 50 20 42 72 6f 61 64 | her.**all**.or.**ip**..UDP.Broad |
| 142b80 | 63 61 73 74 20 52 65 6c 61 79 00 55 44 50 20 6d 6f 64 65 20 77 6f 72 6b 73 20 62 65 74 74 65 72 | cast.Relay.UDP.mode.works.better |
| 142ba0 | 20 77 69 74 68 20 4e 41 54 3a 00 55 44 50 20 70 6f 72 74 20 31 37 30 31 20 66 6f 72 20 49 50 73 | .with.NAT:.UDP.port.1701.for.IPs |
| 142bc0 | 65 63 00 55 44 50 20 70 6f 72 74 20 34 35 30 30 20 28 4e 41 54 2d 54 29 00 55 44 50 20 70 6f 72 | ec.UDP.port.4500.(NAT-T).UDP.por |
| 142be0 | 74 20 35 30 30 20 28 49 4b 45 29 00 55 52 4c 20 46 69 6c 74 65 72 69 6e 67 20 69 73 20 70 72 6f | t.500.(IKE).URL.Filtering.is.pro |
| 142c00 | 76 69 64 65 64 20 62 79 20 53 71 75 69 64 47 75 61 72 64 5f 2e 00 55 52 4c 20 66 69 6c 74 65 72 | vided.by.SquidGuard_..URL.filter |
| 142c20 | 69 6e 67 00 55 52 4c 20 77 69 74 68 20 73 69 67 6e 61 74 75 72 65 20 6f 66 20 6d 61 73 74 65 72 | ing.URL.with.signature.of.master |
| 142c40 | 20 66 6f 72 20 61 75 74 68 20 72 65 70 6c 79 20 76 65 72 69 66 69 63 61 74 69 6f 6e 00 55 53 42 | .for.auth.reply.verification.USB |
| 142c60 | 20 74 6f 20 73 65 72 69 61 6c 20 63 6f 6e 76 65 72 74 65 72 73 20 77 69 6c 6c 20 68 61 6e 64 6c | .to.serial.converters.will.handl |
| 142c80 | 65 20 6d 6f 73 74 20 6f 66 20 74 68 65 69 72 20 77 6f 72 6b 20 69 6e 20 73 6f 66 74 77 61 72 65 | e.most.of.their.work.in.software |
| 142ca0 | 20 73 6f 20 79 6f 75 20 73 68 6f 75 6c 64 20 62 65 20 63 61 72 65 66 75 6c 6c 20 77 69 74 68 20 | .so.you.should.be.carefull.with. |
| 142cc0 | 74 68 65 20 73 65 6c 65 63 74 65 64 20 62 61 75 64 72 61 74 65 20 61 73 20 73 6f 6d 65 20 74 69 | the.selected.baudrate.as.some.ti |
| 142ce0 | 6d 65 73 20 74 68 65 79 20 63 61 6e 27 74 20 63 6f 70 65 20 77 69 74 68 20 74 68 65 20 65 78 70 | mes.they.can't.cope.with.the.exp |
| 142d00 | 65 63 74 65 64 20 73 70 65 65 64 2e 00 55 55 43 50 20 73 75 62 73 79 73 74 65 6d 00 55 6e 64 65 | ected.speed..UUCP.subsystem.Unde |
| 142d20 | 72 20 73 6f 6d 65 20 63 69 72 63 75 6d 73 74 61 6e 63 65 73 2c 20 4c 52 4f 20 69 73 20 6b 6e 6f | r.some.circumstances,.LRO.is.kno |
| 142d40 | 77 6e 20 74 6f 20 6d 6f 64 69 66 79 20 74 68 65 20 70 61 63 6b 65 74 20 68 65 61 64 65 72 73 20 | wn.to.modify.the.packet.headers. |
| 142d60 | 6f 66 20 66 6f 72 77 61 72 64 65 64 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 62 72 65 61 | of.forwarded.traffic,.which.brea |
| 142d80 | 6b 73 20 74 68 65 20 65 6e 64 2d 74 6f 2d 65 6e 64 20 70 72 69 6e 63 69 70 6c 65 20 6f 66 20 63 | ks.the.end-to-end.principle.of.c |
| 142da0 | 6f 6d 70 75 74 65 72 20 6e 65 74 77 6f 72 6b 69 6e 67 2e 20 4c 52 4f 20 69 73 20 61 6c 73 6f 20 | omputer.networking..LRO.is.also. |
| 142dc0 | 6f 6e 6c 79 20 61 62 6c 65 20 74 6f 20 6f 66 66 6c 6f 61 64 20 54 43 50 20 73 65 67 6d 65 6e 74 | only.able.to.offload.TCP.segment |
| 142de0 | 73 20 65 6e 63 61 70 73 75 6c 61 74 65 64 20 69 6e 20 49 50 76 34 20 70 61 63 6b 65 74 73 2e 20 | s.encapsulated.in.IPv4.packets.. |
| 142e00 | 44 75 65 20 74 6f 20 74 68 65 73 65 20 6c 69 6d 69 74 61 74 69 6f 6e 73 2c 20 69 74 20 69 73 20 | Due.to.these.limitations,.it.is. |
| 142e20 | 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 75 73 65 20 47 52 4f 20 28 47 65 6e 65 72 69 63 20 | recommended.to.use.GRO.(Generic. |
| 142e40 | 52 65 63 65 69 76 65 20 4f 66 66 6c 6f 61 64 29 20 77 68 65 72 65 20 70 6f 73 73 69 62 6c 65 2e | Receive.Offload).where.possible. |
| 142e60 | 20 4d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 6f 6e 20 74 68 65 20 6c 69 6d 69 74 61 74 | .More.information.on.the.limitat |
| 142e80 | 69 6f 6e 73 20 6f 66 20 4c 52 4f 20 63 61 6e 20 62 65 20 66 6f 75 6e 64 20 68 65 72 65 3a 20 68 | ions.of.LRO.can.be.found.here:.h |
| 142ea0 | 74 74 70 73 3a 2f 2f 6c 77 6e 2e 6e 65 74 2f 41 72 74 69 63 6c 65 73 2f 33 35 38 39 31 30 2f 00 | ttps://lwn.net/Articles/358910/. |
| 142ec0 | 55 6e 69 63 61 73 74 00 55 6e 69 63 61 73 74 20 56 52 52 50 00 55 6e 69 63 61 73 74 20 56 58 4c | Unicast.Unicast.VRRP.Unicast.VXL |
| 142ee0 | 41 4e 00 55 6e 69 74 20 6f 66 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 73 20 4d 42 2e 00 55 | AN.Unit.of.this.command.is.MB..U |
| 142f00 | 6e 69 74 73 00 55 6e 74 69 6c 20 56 79 4f 53 20 31 2e 34 2c 20 74 68 65 20 6f 6e 6c 79 20 6f 70 | nits.Until.VyOS.1.4,.the.only.op |
| 142f20 | 74 69 6f 6e 20 66 6f 72 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 4f 70 65 6e 56 50 4e 20 77 69 | tion.for.site-to-site.OpenVPN.wi |
| 142f40 | 74 68 6f 75 74 20 50 4b 49 20 77 61 73 20 74 6f 20 75 73 65 20 70 72 65 2d 73 68 61 72 65 64 20 | thout.PKI.was.to.use.pre-shared. |
| 142f60 | 6b 65 79 73 2e 20 54 68 61 74 20 6f 70 74 69 6f 6e 20 69 73 20 73 74 69 6c 6c 20 61 76 61 69 6c | keys..That.option.is.still.avail |
| 142f80 | 61 62 6c 65 20 62 75 74 20 69 74 20 69 73 20 64 65 70 72 65 63 61 74 65 64 20 61 6e 64 20 77 69 | able.but.it.is.deprecated.and.wi |
| 142fa0 | 6c 6c 20 62 65 20 72 65 6d 6f 76 65 64 20 69 6e 20 74 68 65 20 66 75 74 75 72 65 2e 20 48 6f 77 | ll.be.removed.in.the.future..How |
| 142fc0 | 65 76 65 72 2c 20 69 66 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 73 65 74 20 75 70 20 61 20 74 75 | ever,.if.you.need.to.set.up.a.tu |
| 142fe0 | 6e 6e 65 6c 20 74 6f 20 61 6e 20 6f 6c 64 65 72 20 56 79 4f 53 20 76 65 72 73 69 6f 6e 20 6f 72 | nnel.to.an.older.VyOS.version.or |
| 143000 | 20 61 20 73 79 73 74 65 6d 20 77 69 74 68 20 6f 6c 64 65 72 20 4f 70 65 6e 56 50 4e 2c 20 79 6f | .a.system.with.older.OpenVPN,.yo |
| 143020 | 75 20 6e 65 65 64 20 74 6f 20 73 74 69 6c 6c 20 6e 65 65 64 20 74 6f 20 6b 6e 6f 77 20 68 6f 77 | u.need.to.still.need.to.know.how |
| 143040 | 20 74 6f 20 75 73 65 20 69 74 2e 00 55 70 20 74 6f 20 73 65 76 65 6e 20 71 75 65 75 65 73 20 2d | .to.use.it..Up.to.seven.queues.- |
| 143060 | 64 65 66 69 6e 65 64 20 61 73 20 63 6c 61 73 73 65 73 5f 20 77 69 74 68 20 64 69 66 66 65 72 65 | defined.as.classes_.with.differe |
| 143080 | 6e 74 20 70 72 69 6f 72 69 74 69 65 73 2d 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 | nt.priorities-.can.be.configured |
| 1430a0 | 2e 20 50 61 63 6b 65 74 73 20 61 72 65 20 70 6c 61 63 65 64 20 69 6e 74 6f 20 71 75 65 75 65 73 | ..Packets.are.placed.into.queues |
| 1430c0 | 20 62 61 73 65 64 20 6f 6e 20 61 73 73 6f 63 69 61 74 65 64 20 6d 61 74 63 68 20 63 72 69 74 65 | .based.on.associated.match.crite |
| 1430e0 | 72 69 61 2e 20 50 61 63 6b 65 74 73 20 61 72 65 20 74 72 61 6e 73 6d 69 74 74 65 64 20 66 72 6f | ria..Packets.are.transmitted.fro |
| 143100 | 6d 20 74 68 65 20 71 75 65 75 65 73 20 69 6e 20 70 72 69 6f 72 69 74 79 20 6f 72 64 65 72 2e 20 | m.the.queues.in.priority.order.. |
| 143120 | 49 66 20 63 6c 61 73 73 65 73 20 77 69 74 68 20 61 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 | If.classes.with.a.higher.priorit |
| 143140 | 79 20 61 72 65 20 62 65 69 6e 67 20 66 69 6c 6c 65 64 20 77 69 74 68 20 70 61 63 6b 65 74 73 20 | y.are.being.filled.with.packets. |
| 143160 | 63 6f 6e 74 69 6e 75 6f 75 73 6c 79 2c 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 6c 6f 77 65 72 | continuously,.packets.from.lower |
| 143180 | 20 70 72 69 6f 72 69 74 79 20 63 6c 61 73 73 65 73 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 74 | .priority.classes.will.only.be.t |
| 1431a0 | 72 61 6e 73 6d 69 74 74 65 64 20 61 66 74 65 72 20 74 72 61 66 66 69 63 20 76 6f 6c 75 6d 65 20 | ransmitted.after.traffic.volume. |
| 1431c0 | 66 72 6f 6d 20 68 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 63 6c 61 73 73 65 73 20 64 65 63 | from.higher.priority.classes.dec |
| 1431e0 | 72 65 61 73 65 73 2e 00 55 70 64 61 74 65 00 55 70 64 61 74 65 20 63 6f 6e 74 61 69 6e 65 72 20 | reases..Update.Update.container. |
| 143200 | 69 6d 61 67 65 00 55 70 64 61 74 65 20 67 65 6f 69 70 20 64 61 74 61 62 61 73 65 00 55 70 64 61 | image.Update.geoip.database.Upda |
| 143220 | 74 65 73 00 55 70 64 61 74 65 73 20 66 72 6f 6d 20 74 68 65 20 52 50 4b 49 20 63 61 63 68 65 20 | tes.Updates.from.the.RPKI.cache. |
| 143240 | 73 65 72 76 65 72 73 20 61 72 65 20 64 69 72 65 63 74 6c 79 20 61 70 70 6c 69 65 64 20 61 6e 64 | servers.are.directly.applied.and |
| 143260 | 20 70 61 74 68 20 73 65 6c 65 63 74 69 6f 6e 20 69 73 20 75 70 64 61 74 65 64 20 61 63 63 6f 72 | .path.selection.is.updated.accor |
| 143280 | 64 69 6e 67 6c 79 2e 20 28 53 6f 66 74 20 72 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 | dingly..(Soft.reconfiguration.mu |
| 1432a0 | 73 74 20 62 65 20 65 6e 61 62 6c 65 64 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 29 2e | st.be.enabled.for.this.to.work). |
| 1432c0 | 00 55 70 6c 69 6e 6b 2f 43 6f 72 65 20 74 72 61 63 6b 69 6e 67 2e 00 55 70 6c 6f 61 64 20 62 61 | .Uplink/Core.tracking..Upload.ba |
| 1432e0 | 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 6b 62 69 74 2f 73 20 66 6f 72 20 60 3c 75 73 | ndwidth.limit.in.kbit/s.for.`<us |
| 143300 | 65 72 3e 60 2e 00 55 70 6c 6f 61 64 20 62 61 6e 64 77 69 64 74 68 20 6c 69 6d 69 74 20 69 6e 20 | er>`..Upload.bandwidth.limit.in. |
| 143320 | 6b 62 69 74 2f 73 20 66 6f 72 20 66 6f 72 20 75 73 65 72 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 | kbit/s.for.for.user.on.interface |
| 143340 | 20 60 3c 69 6e 74 65 72 66 61 63 65 3e 60 2e 00 55 70 6f 6e 20 72 65 63 65 70 74 69 6f 6e 20 6f | .`<interface>`..Upon.reception.o |
| 143360 | 66 20 61 6e 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 2c 20 77 68 65 6e 20 61 20 72 65 73 | f.an.incoming.packet,.when.a.res |
| 143380 | 70 6f 6e 73 65 20 69 73 20 73 65 6e 74 2c 20 69 74 20 6d 69 67 68 74 20 62 65 20 64 65 73 69 72 | ponse.is.sent,.it.might.be.desir |
| 1433a0 | 65 64 20 74 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 69 74 20 6c 65 61 76 65 73 20 66 72 6f 6d | ed.to.ensure.that.it.leaves.from |
| 1433c0 | 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 74 68 65 20 69 6e 62 6f 75 | .the.same.interface.as.the.inbou |
| 1433e0 | 6e 64 20 6f 6e 65 2e 20 54 68 69 73 20 63 61 6e 20 62 65 20 61 63 68 69 65 76 65 64 20 62 79 20 | nd.one..This.can.be.achieved.by. |
| 143400 | 65 6e 61 62 6c 69 6e 67 20 73 74 69 63 6b 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 20 74 | enabling.sticky.connections.in.t |
| 143420 | 68 65 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a 00 55 70 6f 6e 20 73 68 75 74 64 6f 77 6e | he.load.balancing:.Upon.shutdown |
| 143440 | 2c 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 77 69 6c 6c 20 64 65 70 72 65 63 61 74 65 20 74 68 65 | ,.this.option.will.deprecate.the |
| 143460 | 20 70 72 65 66 69 78 20 62 79 20 61 6e 6e 6f 75 6e 63 69 6e 67 20 69 74 20 69 6e 20 74 68 65 20 | .prefix.by.announcing.it.in.the. |
| 143480 | 73 68 75 74 64 6f 77 6e 20 52 41 00 55 73 61 62 6c 65 20 50 6f 72 74 73 20 2f 20 50 6f 72 74 73 | shutdown.RA.Usable.Ports./.Ports |
| 1434a0 | 20 70 65 72 20 53 75 62 73 63 72 69 62 65 72 00 55 73 61 62 6c 65 20 50 6f 72 74 73 3a 20 36 35 | .per.Subscriber.Usable.Ports:.65 |
| 1434c0 | 35 33 36 20 2d 20 31 30 32 34 20 3d 20 36 34 35 31 32 00 55 73 65 20 38 30 32 2e 31 31 61 78 20 | 536.-.1024.=.64512.Use.802.11ax. |
| 1434e0 | 70 72 6f 74 6f 63 6f 6c 00 55 73 65 20 38 30 32 2e 31 31 6e 20 70 72 6f 74 6f 63 6f 6c 00 55 73 | protocol.Use.802.11n.protocol.Us |
| 143500 | 65 20 3a 61 62 62 72 3a 60 44 48 20 28 44 69 66 66 69 65 e2 80 93 48 65 6c 6c 6d 61 6e 29 60 20 | e.:abbr:`DH.(Diffie...Hellman)`. |
| 143520 | 70 61 72 61 6d 65 74 65 72 73 20 66 72 6f 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 2e 20 4d | parameters.from.PKI.subsystem..M |
| 143540 | 75 73 74 20 62 65 20 61 74 20 6c 65 61 73 74 20 32 30 34 38 20 62 69 74 73 20 69 6e 20 6c 65 6e | ust.be.at.least.2048.bits.in.len |
| 143560 | 67 74 68 2e 00 55 73 65 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 50 4b 49 | gth..Use.CA.certificate.from.PKI |
| 143580 | 20 73 75 62 73 79 73 74 65 6d 00 55 73 65 20 44 79 6e 44 4e 53 20 61 73 20 79 6f 75 72 20 70 72 | .subsystem.Use.DynDNS.as.your.pr |
| 1435a0 | 65 66 65 72 72 65 64 20 70 72 6f 76 69 64 65 72 3a 00 55 73 65 20 49 50 20 66 69 72 65 77 61 6c | eferred.provider:.Use.IP.firewal |
| 1435c0 | 6c 00 55 73 65 20 54 4c 53 20 62 75 74 20 73 6b 69 70 20 68 6f 73 74 20 76 61 6c 69 64 61 74 69 | l.Use.TLS.but.skip.host.validati |
| 1435e0 | 6f 6e 00 55 73 65 20 54 4c 53 20 65 6e 63 72 79 70 74 69 6f 6e 2e 00 55 73 65 20 60 3c 73 75 62 | on.Use.TLS.encryption..Use.`<sub |
| 143600 | 6e 65 74 3e 60 20 61 73 20 74 68 65 20 49 50 20 70 6f 6f 6c 20 66 6f 72 20 61 6c 6c 20 63 6f 6e | net>`.as.the.IP.pool.for.all.con |
| 143620 | 6e 65 63 74 69 6e 67 20 63 6c 69 65 6e 74 73 2e 00 55 73 65 20 60 60 73 68 6f 77 20 6c 6f 67 20 | necting.clients..Use.``show.log. |
| 143640 | 7c 20 73 74 72 69 70 2d 70 72 69 76 61 74 65 60 60 20 69 66 20 79 6f 75 20 77 61 6e 74 20 74 6f | |.strip-private``.if.you.want.to |
| 143660 | 20 68 69 64 65 20 70 72 69 76 61 74 65 20 64 61 74 61 20 77 68 65 6e 20 73 68 61 72 69 6e 67 20 | .hide.private.data.when.sharing. |
| 143680 | 79 6f 75 72 20 6c 6f 67 73 2e 00 55 73 65 20 60 64 65 6c 65 74 65 20 73 79 73 74 65 6d 20 63 6f | your.logs..Use.`delete.system.co |
| 1436a0 | 6e 6e 74 72 61 63 6b 20 6d 6f 64 75 6c 65 73 60 20 74 6f 20 64 65 61 63 74 69 76 65 20 61 6c 6c | nntrack.modules`.to.deactive.all |
| 1436c0 | 20 6d 6f 64 75 6c 65 73 2e 00 55 73 65 20 61 20 70 65 72 73 69 73 74 65 6e 74 20 4c 44 41 50 20 | .modules..Use.a.persistent.LDAP. |
| 1436e0 | 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4e 6f 72 6d 61 6c 6c 79 20 74 68 65 20 4c 44 41 50 20 63 6f | connection..Normally.the.LDAP.co |
| 143700 | 6e 6e 65 63 74 69 6f 6e 20 69 73 20 6f 6e 6c 79 20 6f 70 65 6e 20 77 68 69 6c 65 20 76 61 6c 69 | nnection.is.only.open.while.vali |
| 143720 | 64 61 74 69 6e 67 20 61 20 75 73 65 72 6e 61 6d 65 20 74 6f 20 70 72 65 73 65 72 76 65 20 72 65 | dating.a.username.to.preserve.re |
| 143740 | 73 6f 75 72 63 65 73 20 61 74 20 74 68 65 20 4c 44 41 50 20 73 65 72 76 65 72 2e 20 54 68 69 73 | sources.at.the.LDAP.server..This |
| 143760 | 20 6f 70 74 69 6f 6e 20 63 61 75 73 65 73 20 74 68 65 20 4c 44 41 50 20 63 6f 6e 6e 65 63 74 69 | .option.causes.the.LDAP.connecti |
| 143780 | 6f 6e 20 74 6f 20 62 65 20 6b 65 70 74 20 6f 70 65 6e 2c 20 61 6c 6c 6f 77 69 6e 67 20 69 74 20 | on.to.be.kept.open,.allowing.it. |
| 1437a0 | 74 6f 20 62 65 20 72 65 75 73 65 64 20 66 6f 72 20 66 75 72 74 68 65 72 20 75 73 65 72 20 76 61 | to.be.reused.for.further.user.va |
| 1437c0 | 6c 69 64 61 74 69 6f 6e 73 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 | lidations..Use.a.specific.addres |
| 1437e0 | 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 | s-group..Prepend.character.``!`` |
| 143800 | 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e | .for.inverted.matching.criteria. |
| 143820 | 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 | .Use.a.specific.address-group..P |
| 143840 | 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f | repending.the.character.``!``.to |
| 143860 | 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 | .invert.the.criteria.to.match.is |
| 143880 | 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 | .also.supported..Use.a.specific. |
| 1438a0 | 64 6f 6d 61 69 6e 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 | domain-group..Prepend.character. |
| 1438c0 | 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 | ``!``.for.inverted.matching.crit |
| 1438e0 | 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 64 6f 6d 61 69 6e 2d 67 72 6f 75 | eria..Use.a.specific.domain-grou |
| 143900 | 70 2e 20 50 72 65 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 | p..Prepending.the.character.``!` |
| 143920 | 60 20 74 6f 20 69 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 | `.to.invert.the.criteria.to.matc |
| 143940 | 68 20 69 73 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 | h.is.also.supported..Use.a.speci |
| 143960 | 66 69 63 20 64 79 6e 61 6d 69 63 2d 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 | fic.dynamic-address-group..Prepe |
| 143980 | 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 | nd.character.``!``.for.inverted. |
| 1439a0 | 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 | matching.criteria..Use.a.specifi |
| 1439c0 | 63 20 64 79 6e 61 6d 69 63 2d 61 64 64 72 65 73 73 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 | c.dynamic-address-group..Prepend |
| 1439e0 | 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 | ing.the.character.``!``.to.inver |
| 143a00 | 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 | t.the.criteria.to.match.is.also. |
| 143a20 | 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 6d 61 63 2d 67 72 | supported..Use.a.specific.mac-gr |
| 143a40 | 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 6f 72 | oup..Prepend.character.``!``.for |
| 143a60 | 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 73 65 | .inverted.matching.criteria..Use |
| 143a80 | 20 61 20 73 70 65 63 69 66 69 63 20 6d 61 63 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 69 6e | .a.specific.mac-group..Prependin |
| 143aa0 | 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 6e 76 65 72 74 20 | g.the.character.``!``.to.invert. |
| 143ac0 | 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 6c 73 6f 20 73 75 | the.criteria.to.match.is.also.su |
| 143ae0 | 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b 2d | pported..Use.a.specific.network- |
| 143b00 | 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 66 | group..Prepend.character.``!``.f |
| 143b20 | 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 2e 00 55 | or.inverted.matching.criteria..U |
| 143b40 | 73 65 20 61 20 73 70 65 63 69 66 69 63 20 6e 65 74 77 6f 72 6b 2d 67 72 6f 75 70 2e 20 50 72 65 | se.a.specific.network-group..Pre |
| 143b60 | 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 | pending.the.character.``!``.to.i |
| 143b80 | 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 | nvert.the.criteria.to.match.is.a |
| 143ba0 | 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 70 6f | lso.supported..Use.a.specific.po |
| 143bc0 | 72 74 2d 67 72 6f 75 70 2e 20 50 72 65 70 65 6e 64 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 | rt-group..Prepend.character.``!` |
| 143be0 | 60 20 66 6f 72 20 69 6e 76 65 72 74 65 64 20 6d 61 74 63 68 69 6e 67 20 63 72 69 74 65 72 69 61 | `.for.inverted.matching.criteria |
| 143c00 | 2e 00 55 73 65 20 61 20 73 70 65 63 69 66 69 63 20 70 6f 72 74 2d 67 72 6f 75 70 2e 20 50 72 65 | ..Use.a.specific.port-group..Pre |
| 143c20 | 70 65 6e 64 69 6e 67 20 74 68 65 20 63 68 61 72 61 63 74 65 72 20 60 60 21 60 60 20 74 6f 20 69 | pending.the.character.``!``.to.i |
| 143c40 | 6e 76 65 72 74 20 74 68 65 20 63 72 69 74 65 72 69 61 20 74 6f 20 6d 61 74 63 68 20 69 73 20 61 | nvert.the.criteria.to.match.is.a |
| 143c60 | 6c 73 6f 20 73 75 70 70 6f 72 74 65 64 2e 00 55 73 65 20 61 63 74 69 76 65 2d 61 63 74 69 76 65 | lso.supported..Use.active-active |
| 143c80 | 20 48 41 20 6d 6f 64 65 2e 00 55 73 65 20 61 64 64 72 65 73 73 20 60 6d 61 73 71 75 65 72 61 64 | .HA.mode..Use.address.`masquerad |
| 143ca0 | 65 60 20 28 74 68 65 20 69 6e 74 65 72 66 61 63 65 73 20 70 72 69 6d 61 72 79 20 61 64 64 72 65 | e`.(the.interfaces.primary.addre |
| 143cc0 | 73 73 29 20 6f 6e 20 72 75 6c 65 20 33 30 00 55 73 65 20 61 6e 20 61 75 74 6f 6d 61 74 69 63 61 | ss).on.rule.30.Use.an.automatica |
| 143ce0 | 6c 6c 79 20 67 65 6e 65 72 61 74 65 64 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 | lly.generated.self-signed.certif |
| 143d00 | 69 63 61 74 65 00 55 73 65 20 61 6e 79 20 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 2c 20 63 6f 6e | icate.Use.any.local.address,.con |
| 143d20 | 66 69 67 75 72 65 64 20 6f 6e 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 69 66 20 74 68 69 73 | figured.on.any.interface.if.this |
| 143d40 | 20 69 73 20 6e 6f 74 20 73 65 74 2e 00 55 73 65 20 61 75 74 68 20 6b 65 79 20 66 69 6c 65 20 61 | .is.not.set..Use.auth.key.file.a |
| 143d60 | 74 20 60 60 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 6d 79 2e 6b 65 79 60 60 00 55 73 65 20 63 65 | t.``/config/auth/my.key``.Use.ce |
| 143d80 | 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 50 4b 49 20 73 75 62 73 79 73 74 65 6d 00 55 73 65 | rtificate.from.PKI.subsystem.Use |
| 143da0 | 20 63 6f 6e 66 69 67 75 72 65 64 20 60 3c 75 72 6c 3e 60 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 | .configured.`<url>`.to.determine |
| 143dc0 | 20 79 6f 75 72 20 49 50 20 61 64 64 72 65 73 73 2e 20 64 64 63 6c 69 65 6e 74 5f 20 77 69 6c 6c | .your.IP.address..ddclient_.will |
| 143de0 | 20 6c 6f 61 64 20 60 3c 75 72 6c 3e 60 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 65 78 74 72 61 | .load.`<url>`.and.tries.to.extra |
| 143e00 | 63 74 20 79 6f 75 72 20 49 50 20 61 64 64 72 65 73 73 20 66 72 6f 6d 20 74 68 65 20 72 65 73 70 | ct.your.IP.address.from.the.resp |
| 143e20 | 6f 6e 73 65 2e 00 55 73 65 20 64 65 53 45 43 20 28 64 65 64 79 6e 2e 69 6f 29 20 61 73 20 79 6f | onse..Use.deSEC.(dedyn.io).as.yo |
| 143e40 | 75 72 20 70 72 65 66 65 72 72 65 64 20 70 72 6f 76 69 64 65 72 3a 00 55 73 65 20 69 6e 76 65 72 | ur.preferred.provider:.Use.inver |
| 143e60 | 73 65 2d 6d 61 74 63 68 20 74 6f 20 6d 61 74 63 68 20 61 6e 79 74 68 69 6e 67 20 65 78 63 65 70 | se-match.to.match.anything.excep |
| 143e80 | 74 20 74 68 65 20 67 69 76 65 6e 20 63 6f 75 6e 74 72 79 2d 63 6f 64 65 73 2e 00 55 73 65 20 6c | t.the.given.country-codes..Use.l |
| 143ea0 | 6f 63 61 6c 20 73 6f 63 6b 65 74 20 66 6f 72 20 41 50 49 00 55 73 65 20 6c 6f 63 61 6c 20 75 73 | ocal.socket.for.API.Use.local.us |
| 143ec0 | 65 72 20 60 66 6f 6f 60 20 77 69 74 68 20 70 61 73 73 77 6f 72 64 20 60 62 61 72 60 00 55 73 65 | er.`foo`.with.password.`bar`.Use |
| 143ee0 | 20 74 61 62 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 74 6f 20 67 65 74 20 61 20 6c 69 73 74 20 6f 66 | .tab.completion.to.get.a.list.of |
| 143f00 | 20 63 61 74 65 67 6f 72 69 65 73 2e 00 55 73 65 20 74 68 65 20 51 52 20 63 6f 64 65 20 74 6f 20 | .categories..Use.the.QR.code.to. |
| 143f20 | 61 64 64 20 74 68 65 20 75 73 65 72 20 61 63 63 6f 75 6e 74 20 69 6e 20 47 6f 6f 67 6c 65 20 61 | add.the.user.account.in.Google.a |
| 143f40 | 75 74 68 65 6e 74 69 63 61 74 6f 72 20 61 70 70 6c 69 63 61 74 69 6f 6e 20 61 6e 64 20 6f 6e 20 | uthenticator.application.and.on. |
| 143f60 | 63 6c 69 65 6e 74 20 73 69 64 65 2c 20 75 73 65 20 74 68 65 20 4f 54 50 20 6e 75 6d 62 65 72 20 | client.side,.use.the.OTP.number. |
| 143f80 | 61 73 20 70 61 73 73 77 6f 72 64 2e 00 55 73 65 20 74 68 65 20 61 64 64 72 65 73 73 20 6f 66 20 | as.password..Use.the.address.of. |
| 143fa0 | 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 74 68 65 20 6c | the.specified.interface.on.the.l |
| 143fc0 | 6f 63 61 6c 20 6d 61 63 68 69 6e 65 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 | ocal.machine.as.the.source.addre |
| 143fe0 | 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 65 20 66 6f | ss.of.the.connection..Use.the.fo |
| 144000 | 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 20 74 6f 20 62 75 69 6c 64 20 61 20 6e 61 74 36 | llowing.topology.to.build.a.nat6 |
| 144020 | 36 20 62 61 73 65 64 20 69 73 6f 6c 61 74 65 64 20 6e 65 74 77 6f 72 6b 20 62 65 74 77 65 65 6e | 6.based.isolated.network.between |
| 144040 | 20 69 6e 74 65 72 6e 61 6c 20 61 6e 64 20 65 78 74 65 72 6e 61 6c 20 6e 65 74 77 6f 72 6b 73 20 | .internal.and.external.networks. |
| 144060 | 28 64 79 6e 61 6d 69 63 20 70 72 65 66 69 78 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 | (dynamic.prefix.is.not.supported |
| 144080 | 29 3a 00 55 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 74 6f 70 6f 6c 6f 67 79 20 74 6f | ):.Use.the.following.topology.to |
| 1440a0 | 20 74 72 61 6e 73 6c 61 74 65 20 69 6e 74 65 72 6e 61 6c 20 75 73 65 72 20 6c 6f 63 61 6c 20 61 | .translate.internal.user.local.a |
| 1440c0 | 64 64 72 65 73 73 65 73 20 28 60 60 66 63 3a 3a 2f 37 60 60 29 20 74 6f 20 44 48 43 50 76 36 2d | ddresses.(``fc::/7``).to.DHCPv6- |
| 1440e0 | 50 44 20 70 72 6f 76 69 64 65 64 20 70 72 65 66 69 78 65 73 20 66 72 6f 6d 20 61 6e 20 49 53 50 | PD.provided.prefixes.from.an.ISP |
| 144100 | 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 56 79 4f 53 20 48 41 20 70 61 69 72 2e 00 55 73 | .connected.to.a.VyOS.HA.pair..Us |
| 144120 | 65 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 61 64 64 72 65 73 73 20 6f 6e 20 74 68 65 20 6c | e.the.specified.address.on.the.l |
| 144140 | 6f 63 61 6c 20 6d 61 63 68 69 6e 65 20 61 73 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 | ocal.machine.as.the.source.addre |
| 144160 | 73 73 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 4f 6e 6c 79 20 75 73 65 66 75 | ss.of.the.connection..Only.usefu |
| 144180 | 6c 20 6f 6e 20 73 79 73 74 65 6d 73 20 77 69 74 68 20 6d 6f 72 65 20 74 68 61 6e 20 6f 6e 65 20 | l.on.systems.with.more.than.one. |
| 1441a0 | 61 64 64 72 65 73 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 69 66 20 79 | address..Use.these.commands.if.y |
| 1441c0 | 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 20 74 68 65 20 64 69 73 63 6f 76 65 | ou.would.like.to.set.the.discove |
| 1441e0 | 72 79 20 68 65 6c 6c 6f 20 61 6e 64 20 68 6f 6c 64 20 74 69 6d 65 20 70 61 72 61 6d 65 74 65 72 | ry.hello.and.hold.time.parameter |
| 144200 | 73 20 66 6f 72 20 74 68 65 20 74 61 72 67 65 74 65 64 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 73 | s.for.the.targeted.LDP.neighbors |
| 144220 | 2e 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 69 66 20 79 6f 75 20 77 6f 75 6c | ..Use.these.commands.if.you.woul |
| 144240 | 64 20 6c 69 6b 65 20 74 6f 20 73 65 74 20 74 68 65 20 64 69 73 63 6f 76 65 72 79 20 68 65 6c 6c | d.like.to.set.the.discovery.hell |
| 144260 | 6f 20 61 6e 64 20 68 6f 6c 64 20 74 69 6d 65 20 70 61 72 61 6d 65 74 65 72 73 2e 00 55 73 65 20 | o.and.hold.time.parameters..Use. |
| 144280 | 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 61 6c 73 6f 20 75 73 65 20 49 50 76 34 2c | these.commands.to.also.use.IPv4, |
| 1442a0 | 20 6f 72 20 49 50 76 36 20 66 69 72 65 77 61 6c 6c 20 72 75 6c 65 73 20 66 6f 72 20 62 72 69 64 | .or.IPv6.firewall.rules.for.brid |
| 1442c0 | 67 65 64 20 74 72 61 66 66 69 63 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 74 | ged.traffic.Use.these.commands.t |
| 1442e0 | 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 65 78 70 6f 72 74 69 6e 67 20 6f 66 20 66 6f 72 77 61 | o.control.the.exporting.of.forwa |
| 144300 | 72 64 69 6e 67 20 65 71 75 69 76 61 6c 65 6e 63 65 20 63 6c 61 73 73 65 73 20 28 46 45 43 73 29 | rding.equivalence.classes.(FECs) |
| 144320 | 20 66 6f 72 20 4c 44 50 20 74 6f 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 69 73 20 77 6f 75 6c | .for.LDP.to.neighbors..This.woul |
| 144340 | 64 20 62 65 20 75 73 65 66 75 6c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 6f 6e 20 6f 6e 6c 79 20 | d.be.useful.for.example.on.only. |
| 144360 | 61 6e 6e 6f 75 6e 63 69 6e 67 20 74 68 65 20 6c 61 62 65 6c 65 64 20 72 6f 75 74 65 73 20 74 68 | announcing.the.labeled.routes.th |
| 144380 | 61 74 20 61 72 65 20 6e 65 65 64 65 64 20 61 6e 64 20 6e 6f 74 20 6f 6e 65 73 20 74 68 61 74 20 | at.are.needed.and.not.ones.that. |
| 1443a0 | 61 72 65 20 6e 6f 74 20 6e 65 65 64 65 64 2c 20 73 75 63 68 20 61 73 20 61 6e 6e 6f 75 6e 63 69 | are.not.needed,.such.as.announci |
| 1443c0 | 6e 67 20 6c 6f 6f 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 6e 6f 20 6f 74 | ng.loopback.interfaces.and.no.ot |
| 1443e0 | 68 65 72 73 2e 00 55 73 65 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 73 20 74 6f 20 63 6f 6e 74 | hers..Use.these.commands.to.cont |
| 144400 | 72 6f 6c 20 74 68 65 20 69 6d 70 6f 72 74 69 6e 67 20 6f 66 20 66 6f 72 77 61 72 64 69 6e 67 20 | rol.the.importing.of.forwarding. |
| 144420 | 65 71 75 69 76 61 6c 65 6e 63 65 20 63 6c 61 73 73 65 73 20 28 46 45 43 73 29 20 66 6f 72 20 4c | equivalence.classes.(FECs).for.L |
| 144440 | 44 50 20 66 72 6f 6d 20 6e 65 69 67 68 62 6f 72 73 2e 20 54 68 69 73 20 77 6f 75 6c 64 20 62 65 | DP.from.neighbors..This.would.be |
| 144460 | 20 75 73 65 66 75 6c 20 66 6f 72 20 65 78 61 6d 70 6c 65 20 6f 6e 20 6f 6e 6c 79 20 61 63 63 65 | .useful.for.example.on.only.acce |
| 144480 | 70 74 69 6e 67 20 74 68 65 20 6c 61 62 65 6c 65 64 20 72 6f 75 74 65 73 20 74 68 61 74 20 61 72 | pting.the.labeled.routes.that.ar |
| 1444a0 | 65 20 6e 65 65 64 65 64 20 61 6e 64 20 6e 6f 74 20 6f 6e 65 73 20 74 68 61 74 20 61 72 65 20 6e | e.needed.and.not.ones.that.are.n |
| 1444c0 | 6f 74 20 6e 65 65 64 65 64 2c 20 73 75 63 68 20 61 73 20 61 63 63 65 70 74 69 6e 67 20 6c 6f 6f | ot.needed,.such.as.accepting.loo |
| 1444e0 | 70 62 61 63 6b 20 69 6e 74 65 72 66 61 63 65 73 20 61 6e 64 20 72 65 6a 65 63 74 69 6e 67 20 61 | pback.interfaces.and.rejecting.a |
| 144500 | 6c 6c 20 6f 74 68 65 72 73 2e 00 55 73 65 20 74 68 69 73 20 50 49 4d 20 63 6f 6d 6d 61 6e 64 20 | ll.others..Use.this.PIM.command. |
| 144520 | 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 73 65 74 | in.the.selected.interface.to.set |
| 144540 | 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 28 31 2d 34 32 39 34 39 36 37 32 39 35 29 20 79 6f 75 | .the.priority.(1-4294967295).you |
| 144560 | 20 77 61 6e 74 20 74 6f 20 69 6e 66 6c 75 65 6e 63 65 20 69 6e 20 74 68 65 20 65 6c 65 63 74 69 | .want.to.influence.in.the.electi |
| 144580 | 6f 6e 20 6f 66 20 61 20 6e 6f 64 65 20 74 6f 20 62 65 63 6f 6d 65 20 74 68 65 20 44 65 73 69 67 | on.of.a.node.to.become.the.Desig |
| 1445a0 | 6e 61 74 65 64 20 52 6f 75 74 65 72 20 66 6f 72 20 61 20 4c 41 4e 20 73 65 67 6d 65 6e 74 2e 20 | nated.Router.for.a.LAN.segment.. |
| 1445c0 | 54 68 65 20 64 65 66 61 75 6c 74 20 70 72 69 6f 72 69 74 79 20 69 73 20 31 2c 20 73 65 74 20 61 | The.default.priority.is.1,.set.a |
| 1445e0 | 20 20 68 69 67 68 65 72 20 76 61 6c 75 65 20 74 6f 20 67 69 76 65 20 74 68 65 20 72 6f 75 74 65 | ..higher.value.to.give.the.route |
| 144600 | 72 20 6d 6f 72 65 20 70 72 65 66 65 72 65 6e 63 65 20 69 6e 20 74 68 65 20 44 52 20 65 6c 65 63 | r.more.preference.in.the.DR.elec |
| 144620 | 74 69 6f 6e 20 70 72 6f 63 65 73 73 2e 00 55 73 65 20 74 68 69 73 20 50 49 4d 20 63 6f 6d 6d 61 | tion.process..Use.this.PIM.comma |
| 144640 | 6e 64 20 74 6f 20 6d 6f 64 69 66 79 20 74 68 65 20 74 69 6d 65 20 6f 75 74 20 76 61 6c 75 65 20 | nd.to.modify.the.time.out.value. |
| 144660 | 28 33 31 2d 36 30 30 30 30 20 73 65 63 6f 6e 64 73 29 20 66 6f 72 20 61 6e 20 60 28 53 2c 47 29 | (31-60000.seconds).for.an.`(S,G) |
| 144680 | 20 3c 68 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 2e 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 | .<https://tools.ietf.org/html/rf |
| 1446a0 | 63 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 31 3e 60 5f 20 66 6c 6f 77 2e 20 33 31 20 73 65 | c7761#section-4.1>`_.flow..31.se |
| 1446c0 | 63 6f 6e 64 73 20 69 73 20 63 68 6f 73 65 6e 20 66 6f 72 20 61 20 6c 6f 77 65 72 20 62 6f 75 6e | conds.is.chosen.for.a.lower.boun |
| 1446e0 | 64 20 61 73 20 73 6f 6d 65 20 68 61 72 64 77 61 72 65 20 70 6c 61 74 66 6f 72 6d 73 20 63 61 6e | d.as.some.hardware.platforms.can |
| 144700 | 6e 6f 74 20 73 65 65 20 64 61 74 61 20 66 6c 6f 77 69 6e 67 20 69 6e 20 62 65 74 74 65 72 20 74 | not.see.data.flowing.in.better.t |
| 144720 | 68 61 6e 20 33 30 20 73 65 63 6f 6e 64 73 20 63 68 75 6e 6b 73 2e 00 55 73 65 20 74 68 69 73 20 | han.30.seconds.chunks..Use.this. |
| 144740 | 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 | comand.to.set.the.IPv6.address.p |
| 144760 | 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 20 77 69 | ool.from.which.a.PPPoE.client.wi |
| 144780 | 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 | ll.get.an.IPv6.prefix.of.your.de |
| 1447a0 | 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 | fined.length.(mask).to.terminate |
| 1447c0 | 20 74 68 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 | .the.PPPoE.endpoint.at.their.sid |
| 1447e0 | 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 | e..The.mask.length.can.be.set.fr |
| 144800 | 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 | om.48.to.128.bit.long,.the.defau |
| 144820 | 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 | lt.value.is.64..Use.this.comand. |
| 144840 | 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f | to.set.the.IPv6.address.pool.fro |
| 144860 | 6d 20 77 68 69 63 68 20 61 6e 20 49 50 6f 45 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 | m.which.an.IPoE.client.will.get. |
| 144880 | 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c | an.IPv6.prefix.of.your.defined.l |
| 1448a0 | 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 49 50 | ength.(mask).to.terminate.the.IP |
| 1448c0 | 6f 45 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d | oE.endpoint.at.their.side..The.m |
| 1448e0 | 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f | ask.length.can.be.set.from.48.to |
| 144900 | 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 | .128.bit.long,.the.default.value |
| 144920 | 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 | .is.64..Use.this.comand.to.set.t |
| 144940 | 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 | he.IPv6.address.pool.from.which. |
| 144960 | 61 6e 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 | an.PPPoE.client.will.get.an.IPv6 |
| 144980 | 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 | .prefix.of.your.defined.length.( |
| 1449a0 | 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 50 50 50 6f 45 20 65 6e 64 | mask).to.terminate.the.PPPoE.end |
| 1449c0 | 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 | point.at.their.side..The.mask.le |
| 1449e0 | 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 | ngth.can.be.set.from.48.to.128.b |
| 144a00 | 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 | it.long,.the.default.value.is.64 |
| 144a20 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 | ..Use.this.comand.to.set.the.IPv |
| 144a40 | 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 50 50 54 | 6.address.pool.from.which.an.PPT |
| 144a60 | 50 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 | P.client.will.get.an.IPv6.prefix |
| 144a80 | 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 | .of.your.defined.length.(mask).t |
| 144aa0 | 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 50 50 54 50 20 65 6e 64 70 6f 69 6e 74 20 61 74 | o.terminate.the.PPTP.endpoint.at |
| 144ac0 | 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e | .their.side..The.mask.length.can |
| 144ae0 | 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c | .be.set.from.48.to.128.bit.long, |
| 144b00 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 | .the.default.value.is.64..Use.th |
| 144b20 | 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 | is.comand.to.set.the.IPv6.addres |
| 144b40 | 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 53 53 54 50 20 63 6c 69 65 6e 74 | s.pool.from.which.an.SSTP.client |
| 144b60 | 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 | .will.get.an.IPv6.prefix.of.your |
| 144b80 | 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e | .defined.length.(mask).to.termin |
| 144ba0 | 61 74 65 20 74 68 65 20 53 53 54 50 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 | ate.the.SSTP.endpoint.at.their.s |
| 144bc0 | 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 | ide..The.mask.length.can.be.set. |
| 144be0 | 62 65 74 77 65 65 6e 20 34 38 20 61 6e 64 20 31 32 38 20 62 69 74 73 20 6c 6f 6e 67 2c 20 74 68 | between.48.and.128.bits.long,.th |
| 144c00 | 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 | e.default.value.is.64..Use.this. |
| 144c20 | 63 6f 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 | comand.to.set.the.IPv6.address.p |
| 144c40 | 6f 6f 6c 20 66 72 6f 6d 20 77 68 69 63 68 20 61 6e 20 53 53 54 50 20 63 6c 69 65 6e 74 20 77 69 | ool.from.which.an.SSTP.client.wi |
| 144c60 | 6c 6c 20 67 65 74 20 61 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 | ll.get.an.IPv6.prefix.of.your.de |
| 144c80 | 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 | fined.length.(mask).to.terminate |
| 144ca0 | 20 74 68 65 20 53 53 54 50 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 | .the.SSTP.endpoint.at.their.side |
| 144cc0 | 2e 20 54 68 65 20 6d 61 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f | ..The.mask.length.can.be.set.fro |
| 144ce0 | 6d 20 34 38 20 74 6f 20 31 32 38 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c | m.48.to.128.bit.long,.the.defaul |
| 144d00 | 74 20 76 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 | t.value.is.64..Use.this.comand.t |
| 144d20 | 6f 20 73 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d | o.set.the.IPv6.address.pool.from |
| 144d40 | 20 77 68 69 63 68 20 61 6e 20 6c 32 74 70 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 | .which.an.l2tp.client.will.get.a |
| 144d60 | 6e 20 49 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 | n.IPv6.prefix.of.your.defined.le |
| 144d80 | 6e 67 74 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 6c 32 74 | ngth.(mask).to.terminate.the.l2t |
| 144da0 | 70 20 65 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 | p.endpoint.at.their.side..The.ma |
| 144dc0 | 73 6b 20 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 62 65 74 77 65 65 6e 20 34 38 20 | sk.length.can.be.set.between.48. |
| 144de0 | 61 6e 64 20 31 32 38 20 62 69 74 73 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 | and.128.bits.long,.the.default.v |
| 144e00 | 61 6c 75 65 20 69 73 20 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 61 6e 64 20 74 6f 20 73 | alue.is.64..Use.this.comand.to.s |
| 144e20 | 65 74 20 74 68 65 20 49 50 76 36 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 66 72 6f 6d 20 77 68 | et.the.IPv6.address.pool.from.wh |
| 144e40 | 69 63 68 20 61 6e 20 6c 32 74 70 20 63 6c 69 65 6e 74 20 77 69 6c 6c 20 67 65 74 20 61 6e 20 49 | ich.an.l2tp.client.will.get.an.I |
| 144e60 | 50 76 36 20 70 72 65 66 69 78 20 6f 66 20 79 6f 75 72 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 | Pv6.prefix.of.your.defined.lengt |
| 144e80 | 68 20 28 6d 61 73 6b 29 20 74 6f 20 74 65 72 6d 69 6e 61 74 65 20 74 68 65 20 6c 32 74 70 20 65 | h.(mask).to.terminate.the.l2tp.e |
| 144ea0 | 6e 64 70 6f 69 6e 74 20 61 74 20 74 68 65 69 72 20 73 69 64 65 2e 20 54 68 65 20 6d 61 73 6b 20 | ndpoint.at.their.side..The.mask. |
| 144ec0 | 6c 65 6e 67 74 68 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 34 38 20 74 6f 20 31 32 38 | length.can.be.set.from.48.to.128 |
| 144ee0 | 20 62 69 74 20 6c 6f 6e 67 2c 20 74 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 | .bit.long,.the.default.value.is. |
| 144f00 | 36 34 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 65 76 65 72 79 20 70 | 64..Use.this.command.for.every.p |
| 144f20 | 6f 6f 6c 20 6f 66 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 79 6f 75 20 77 | ool.of.client.IP.addresses.you.w |
| 144f40 | 61 6e 74 20 74 6f 20 64 65 66 69 6e 65 2e 20 54 68 65 20 61 64 64 72 65 73 73 65 73 20 6f 66 20 | ant.to.define..The.addresses.of. |
| 144f60 | 74 68 69 73 20 70 6f 6f 6c 20 77 69 6c 6c 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 | this.pool.will.be.given.to.PPPoE |
| 144f80 | 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 20 6d 75 73 74 20 75 73 65 20 43 49 44 52 20 6e 6f 74 61 | .clients..You.must.use.CIDR.nota |
| 144fa0 | 74 69 6f 6e 20 61 6e 64 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 | tion.and.it.must.be.within.a./24 |
| 144fc0 | 20 73 75 62 6e 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 65 76 | .subnet..Use.this.command.for.ev |
| 144fe0 | 65 72 79 20 70 6f 6f 6c 20 6f 66 20 63 6c 69 65 6e 74 20 49 50 20 61 64 64 72 65 73 73 65 73 20 | ery.pool.of.client.IP.addresses. |
| 145000 | 79 6f 75 20 77 61 6e 74 20 74 6f 20 64 65 66 69 6e 65 2e 20 54 68 65 20 61 64 64 72 65 73 73 65 | you.want.to.define..The.addresse |
| 145020 | 73 20 6f 66 20 74 68 69 73 20 70 6f 6f 6c 20 77 69 6c 6c 20 62 65 20 67 69 76 65 6e 20 74 6f 20 | s.of.this.pool.will.be.given.to. |
| 145040 | 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 20 6d 75 73 74 20 75 73 65 20 43 49 44 52 | PPPoE.clients..You.must.use.CIDR |
| 145060 | 20 6e 6f 74 61 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 | .notation..Use.this.command.if.y |
| 145080 | 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 66 6f 72 20 74 68 65 20 72 6f 75 74 65 72 20 74 6f 20 | ou.would.like.for.the.router.to. |
| 1450a0 | 61 64 76 65 72 74 69 73 65 20 46 45 43 73 20 77 69 74 68 20 61 20 6c 61 62 65 6c 20 6f 66 20 30 | advertise.FECs.with.a.label.of.0 |
| 1450c0 | 20 66 6f 72 20 65 78 70 6c 69 63 69 74 20 6e 75 6c 6c 20 6f 70 65 72 61 74 69 6f 6e 73 2e 00 55 | .for.explicit.null.operations..U |
| 1450e0 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b | se.this.command.if.you.would.lik |
| 145100 | 65 20 74 6f 20 63 6f 6e 74 72 6f 6c 20 74 68 65 20 6c 6f 63 61 6c 20 46 45 43 20 61 6c 6c 6f 63 | e.to.control.the.local.FEC.alloc |
| 145120 | 61 74 69 6f 6e 73 20 66 6f 72 20 4c 44 50 2e 20 41 20 67 6f 6f 64 20 65 78 61 6d 70 6c 65 20 77 | ations.for.LDP..A.good.example.w |
| 145140 | 6f 75 6c 64 20 62 65 20 66 6f 72 20 79 6f 75 72 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 74 6f | ould.be.for.your.local.router.to |
| 145160 | 20 6e 6f 74 20 61 6c 6c 6f 63 61 74 65 20 61 20 6c 61 62 65 6c 20 66 6f 72 20 65 76 65 72 79 74 | .not.allocate.a.label.for.everyt |
| 145180 | 68 69 6e 67 2e 20 4a 75 73 74 20 61 20 6c 61 62 65 6c 20 66 6f 72 20 77 68 61 74 20 69 74 27 73 | hing..Just.a.label.for.what.it's |
| 1451a0 | 20 75 73 65 66 75 6c 2e 20 41 20 67 6f 6f 64 20 65 78 61 6d 70 6c 65 20 77 6f 75 6c 64 20 62 65 | .useful..A.good.example.would.be |
| 1451c0 | 20 6a 75 73 74 20 61 20 6c 6f 6f 70 62 61 63 6b 20 6c 61 62 65 6c 2e 00 55 73 65 20 74 68 69 73 | .just.a.loopback.label..Use.this |
| 1451e0 | 20 63 6f 6d 6d 61 6e 64 20 69 66 20 79 6f 75 20 77 6f 75 6c 64 20 6c 69 6b 65 20 74 6f 20 73 65 | .command.if.you.would.like.to.se |
| 145200 | 74 20 74 68 65 20 54 43 50 20 73 65 73 73 69 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 69 6e 74 65 | t.the.TCP.session.hold.time.inte |
| 145220 | 72 76 61 6c 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 | rvals..Use.this.command.to.allow |
| 145240 | 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 | .the.selected.interface.to.join. |
| 145260 | 61 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 6d | a.multicast.group.defining.the.m |
| 145280 | 75 6c 74 69 63 61 73 74 20 61 64 64 72 65 73 73 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 6a 6f 69 | ulticast.address.you.want.to.joi |
| 1452a0 | 6e 20 61 6e 64 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 74 6f 6f 2e | n.and.the.source.IP.address.too. |
| 1452c0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 61 6c 6c 6f 77 20 74 68 65 20 73 | .Use.this.command.to.allow.the.s |
| 1452e0 | 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 6a 6f 69 6e 20 61 20 6d 75 6c 74 | elected.interface.to.join.a.mult |
| 145300 | 69 63 61 73 74 20 67 72 6f 75 70 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | icast.group..Use.this.command.to |
| 145320 | 20 61 6c 6c 6f 77 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 6f | .allow.the.selected.interface.to |
| 145340 | 20 6a 6f 69 6e 20 61 20 73 6f 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 | .join.a.source-specific.multicas |
| 145360 | 74 20 67 72 6f 75 70 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 | t.group..Use.this.command.to.che |
| 145380 | 63 6b 20 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 73 70 65 63 69 66 69 63 20 74 6f 20 61 6e 20 69 | ck.log.messages.specific.to.an.i |
| 1453a0 | 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 | nterface..Use.this.command.to.ch |
| 1453c0 | 65 63 6b 20 6c 6f 67 20 6d 65 73 73 61 67 65 73 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 20 65 | eck.log.messages.which.include.e |
| 1453e0 | 6e 74 72 69 65 73 20 66 6f 72 20 73 75 63 63 65 73 73 66 75 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e | ntries.for.successful.connection |
| 145400 | 73 20 61 73 20 77 65 6c 6c 20 61 73 20 66 61 69 6c 75 72 65 73 20 61 6e 64 20 65 72 72 6f 72 73 | s.as.well.as.failures.and.errors |
| 145420 | 20 72 65 6c 61 74 65 64 20 74 6f 20 61 6c 6c 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 63 | .related.to.all.OpenVPN.interfac |
| 145440 | 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 74 68 | es..Use.this.command.to.check.th |
| 145460 | 65 20 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 | e.tunnel.status.for.OpenVPN.clie |
| 145480 | 6e 74 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | nt.interfaces..Use.this.command. |
| 1454a0 | 74 6f 20 63 68 65 63 6b 20 74 68 65 20 74 75 6e 6e 65 6c 20 73 74 61 74 75 73 20 66 6f 72 20 4f | to.check.the.tunnel.status.for.O |
| 1454c0 | 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 | penVPN.server.interfaces..Use.th |
| 1454e0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 74 75 6e 6e 65 6c 20 73 | is.command.to.check.the.tunnel.s |
| 145500 | 74 61 74 75 73 20 66 6f 72 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 69 | tatus.for.OpenVPN.site-to-site.i |
| 145520 | 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 | nterfaces..Use.this.command.to.c |
| 145540 | 6c 65 61 72 20 42 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f 63 6f 6c 20 73 74 61 | lear.Border.Gateway.Protocol.sta |
| 145560 | 74 69 73 74 69 63 73 20 6f 72 20 73 74 61 74 75 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | tistics.or.status..Use.this.comm |
| 145580 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 | and.to.configure.DHCPv6.Prefix.D |
| 1455a0 | 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 49 50 6f 45 2e 20 59 6f 75 | elegation.(RFC3633).on.IPoE..You |
| 1455c0 | 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c | .will.have.to.set.your.IPv6.pool |
| 1455e0 | 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f | .and.the.length.of.the.delegatio |
| 145600 | 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 | n.prefix..From.the.defined.IPv6. |
| 145620 | 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 | pool.you.will.be.handing.out.net |
| 145640 | 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c | works.of.the.defined.length.(del |
| 145660 | 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 | egation-prefix)..The.length.of.t |
| 145680 | 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 | he.delegation.prefix.can.be.set. |
| 1456a0 | 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 | from.32.to.64.bit.long..Use.this |
| 1456c0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 | .command.to.configure.DHCPv6.Pre |
| 1456e0 | 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 50 50 50 6f | fix.Delegation.(RFC3633).on.PPPo |
| 145700 | 45 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 | E..You.will.have.to.set.your.IPv |
| 145720 | 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c | 6.pool.and.the.length.of.the.del |
| 145740 | 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 | egation.prefix..From.the.defined |
| 145760 | 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f | .IPv6.pool.you.will.be.handing.o |
| 145780 | 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 | ut.networks.of.the.defined.lengt |
| 1457a0 | 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 | h.(delegation-prefix)..The.lengt |
| 1457c0 | 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 | h.of.the.delegation.prefix.can.b |
| 1457e0 | 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 | e.set.from.32.to.64.bit.long..Us |
| 145800 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 | e.this.command.to.configure.DHCP |
| 145820 | 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f | v6.Prefix.Delegation.(RFC3633).o |
| 145840 | 6e 20 50 50 54 50 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 | n.PPTP..You.will.have.to.set.you |
| 145860 | 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 | r.IPv6.pool.and.the.length.of.th |
| 145880 | 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 | e.delegation.prefix..From.the.de |
| 1458a0 | 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 | fined.IPv6.pool.you.will.be.hand |
| 1458c0 | 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 | ing.out.networks.of.the.defined. |
| 1458e0 | 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 | length.(delegation-prefix)..The. |
| 145900 | 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 | length.of.the.delegation.prefix. |
| 145920 | 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e | can.be.set.from.32.to.64.bit.lon |
| 145940 | 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 | g..Use.this.command.to.configure |
| 145960 | 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 | .DHCPv6.Prefix.Delegation.(RFC36 |
| 145980 | 33 33 29 20 6f 6e 20 53 53 54 50 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 | 33).on.SSTP..You.will.have.to.se |
| 1459a0 | 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 | t.your.IPv6.pool.and.the.length. |
| 1459c0 | 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 | of.the.delegation.prefix..From.t |
| 1459e0 | 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 | he.defined.IPv6.pool.you.will.be |
| 145a00 | 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 | .handing.out.networks.of.the.def |
| 145a20 | 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e | ined.length.(delegation-prefix). |
| 145a40 | 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 | .The.length.of.the.delegation.pr |
| 145a60 | 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 62 65 74 77 65 65 6e 20 33 32 20 61 6e 64 20 36 | efix.can.be.set.between.32.and.6 |
| 145a80 | 34 20 62 69 74 73 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | 4.bits.long..Use.this.command.to |
| 145aa0 | 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 | .configure.DHCPv6.Prefix.Delegat |
| 145ac0 | 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 53 53 54 50 2e 20 59 6f 75 20 77 69 6c 6c 20 | ion.(RFC3633).on.SSTP..You.will. |
| 145ae0 | 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 61 6e 64 20 74 | have.to.set.your.IPv6.pool.and.t |
| 145b00 | 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 | he.length.of.the.delegation.pref |
| 145b20 | 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 6f 6f 6c 20 79 | ix..From.the.defined.IPv6.pool.y |
| 145b40 | 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 6f 72 6b 73 20 | ou.will.be.handing.out.networks. |
| 145b60 | 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 67 61 74 69 6f | of.the.defined.length.(delegatio |
| 145b80 | 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c | n-prefix)..The.length.of.the.del |
| 145ba0 | 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 74 20 66 72 6f 6d 20 33 | egation.prefix.can.be.set.from.3 |
| 145bc0 | 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | 2.to.64.bit.long..Use.this.comma |
| 145be0 | 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 66 69 78 20 44 65 | nd.to.configure.DHCPv6.Prefix.De |
| 145c00 | 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 6c 32 74 70 2e 20 59 6f 75 20 | legation.(RFC3633).on.l2tp..You. |
| 145c20 | 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f 6f 6c 20 | will.have.to.set.your.IPv6.pool. |
| 145c40 | 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e | and.the.length.of.the.delegation |
| 145c60 | 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 36 20 70 | .prefix..From.the.defined.IPv6.p |
| 145c80 | 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e 65 74 77 | ool.you.will.be.handing.out.netw |
| 145ca0 | 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 65 6c 65 | orks.of.the.defined.length.(dele |
| 145cc0 | 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 | gation-prefix)..The.length.of.th |
| 145ce0 | 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 62 65 74 77 65 | e.delegation.prefix.can.be.betwe |
| 145d00 | 65 6e 20 33 32 20 61 6e 64 20 36 34 20 62 69 74 73 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 69 73 | en.32.and.64.bits.long..Use.this |
| 145d20 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 36 20 50 72 65 | .command.to.configure.DHCPv6.Pre |
| 145d40 | 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 20 6f 6e 20 6c 32 74 70 | fix.Delegation.(RFC3633).on.l2tp |
| 145d60 | 2e 20 59 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 | ..You.will.have.to.set.your.IPv6 |
| 145d80 | 20 70 6f 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 | .pool.and.the.length.of.the.dele |
| 145da0 | 67 61 74 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 | gation.prefix..From.the.defined. |
| 145dc0 | 49 50 76 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 | IPv6.pool.you.will.be.handing.ou |
| 145de0 | 74 20 6e 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 | t.networks.of.the.defined.length |
| 145e00 | 20 28 64 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 | .(delegation-prefix)..The.length |
| 145e20 | 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 | .of.the.delegation.prefix.can.be |
| 145e40 | 20 73 65 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 | .set.from.32.to.64.bit.long..Use |
| 145e60 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 48 43 50 76 | .this.command.to.configure.DHCPv |
| 145e80 | 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 28 52 46 43 33 36 33 33 29 2e 20 59 | 6.Prefix.Delegation.(RFC3633)..Y |
| 145ea0 | 6f 75 20 77 69 6c 6c 20 68 61 76 65 20 74 6f 20 73 65 74 20 79 6f 75 72 20 49 50 76 36 20 70 6f | ou.will.have.to.set.your.IPv6.po |
| 145ec0 | 6f 6c 20 61 6e 64 20 74 68 65 20 6c 65 6e 67 74 68 20 6f 66 20 74 68 65 20 64 65 6c 65 67 61 74 | ol.and.the.length.of.the.delegat |
| 145ee0 | 69 6f 6e 20 70 72 65 66 69 78 2e 20 46 72 6f 6d 20 74 68 65 20 64 65 66 69 6e 65 64 20 49 50 76 | ion.prefix..From.the.defined.IPv |
| 145f00 | 36 20 70 6f 6f 6c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 68 61 6e 64 69 6e 67 20 6f 75 74 20 6e | 6.pool.you.will.be.handing.out.n |
| 145f20 | 65 74 77 6f 72 6b 73 20 6f 66 20 74 68 65 20 64 65 66 69 6e 65 64 20 6c 65 6e 67 74 68 20 28 64 | etworks.of.the.defined.length.(d |
| 145f40 | 65 6c 65 67 61 74 69 6f 6e 2d 70 72 65 66 69 78 29 2e 20 54 68 65 20 6c 65 6e 67 74 68 20 6f 66 | elegation-prefix)..The.length.of |
| 145f60 | 20 74 68 65 20 64 65 6c 65 67 61 74 69 6f 6e 20 70 72 65 66 69 78 20 63 61 6e 20 62 65 20 73 65 | .the.delegation.prefix.can.be.se |
| 145f80 | 74 20 66 72 6f 6d 20 33 32 20 74 6f 20 36 34 20 62 69 74 20 6c 6f 6e 67 2e 00 55 73 65 20 74 68 | t.from.32.to.64.bit.long..Use.th |
| 145fa0 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 44 79 6e 61 6d 69 63 20 | is.command.to.configure.Dynamic. |
| 145fc0 | 41 75 74 68 6f 72 69 7a 61 74 69 6f 6e 20 45 78 74 65 6e 73 69 6f 6e 73 20 74 6f 20 52 41 44 49 | Authorization.Extensions.to.RADI |
| 145fe0 | 55 53 20 73 6f 20 74 68 61 74 20 79 6f 75 20 63 61 6e 20 72 65 6d 6f 74 65 6c 79 20 64 69 73 63 | US.so.that.you.can.remotely.disc |
| 146000 | 6f 6e 6e 65 63 74 20 73 65 73 73 69 6f 6e 73 20 61 6e 64 20 63 68 61 6e 67 65 20 73 6f 6d 65 20 | onnect.sessions.and.change.some. |
| 146020 | 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 2e 00 55 73 65 20 74 | authentication.parameters..Use.t |
| 146040 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 22 62 6c 61 63 | his.command.to.configure.a."blac |
| 146060 | 6b 2d 68 6f 6c 65 22 20 72 6f 75 74 65 20 6f 6e 20 74 68 65 20 72 6f 75 74 65 72 2e 20 41 20 62 | k-hole".route.on.the.router..A.b |
| 146080 | 6c 61 63 6b 2d 68 6f 6c 65 20 72 6f 75 74 65 20 69 73 20 61 20 72 6f 75 74 65 20 66 6f 72 20 77 | lack-hole.route.is.a.route.for.w |
| 1460a0 | 68 69 63 68 20 74 68 65 20 73 79 73 74 65 6d 20 73 69 6c 65 6e 74 6c 79 20 64 69 73 63 61 72 64 | hich.the.system.silently.discard |
| 1460c0 | 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 61 72 65 20 6d 61 74 63 68 65 64 2e 20 54 68 69 73 20 | .packets.that.are.matched..This. |
| 1460e0 | 70 72 65 76 65 6e 74 73 20 6e 65 74 77 6f 72 6b 73 20 6c 65 61 6b 69 6e 67 20 6f 75 74 20 70 75 | prevents.networks.leaking.out.pu |
| 146100 | 62 6c 69 63 20 69 6e 74 65 72 66 61 63 65 73 2c 20 62 75 74 20 69 74 20 64 6f 65 73 20 6e 6f 74 | blic.interfaces,.but.it.does.not |
| 146120 | 20 70 72 65 76 65 6e 74 20 74 68 65 6d 20 66 72 6f 6d 20 62 65 69 6e 67 20 75 73 65 64 20 61 73 | .prevent.them.from.being.used.as |
| 146140 | 20 61 20 6d 6f 72 65 20 73 70 65 63 69 66 69 63 20 72 6f 75 74 65 20 69 6e 73 69 64 65 20 79 6f | .a.more.specific.route.inside.yo |
| 146160 | 75 72 20 6e 65 74 77 6f 72 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | ur.network..Use.this.command.to. |
| 146180 | 63 6f 6e 66 69 67 75 72 65 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c | configure.a.Network.Emulator.pol |
| 1461a0 | 69 63 79 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 66 69 | icy.defining.its.name.and.the.fi |
| 1461c0 | 78 65 64 20 61 6d 6f 75 6e 74 20 6f 66 20 74 69 6d 65 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 | xed.amount.of.time.you.want.to.a |
| 1461e0 | 64 64 20 74 6f 20 61 6c 6c 20 70 61 63 6b 65 74 20 67 6f 69 6e 67 20 6f 75 74 20 6f 66 20 74 68 | dd.to.all.packet.going.out.of.th |
| 146200 | 65 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 6c 61 74 65 6e 63 79 20 77 69 6c 6c 20 62 65 | e.interface..The.latency.will.be |
| 146220 | 20 61 64 64 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 54 6f 6b 65 6e 20 42 75 63 6b 65 74 20 | .added.through.the.Token.Bucket. |
| 146240 | 46 69 6c 74 65 72 20 71 64 69 73 63 2e 20 49 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 74 61 6b 65 20 | Filter.qdisc..It.will.only.take. |
| 146260 | 65 66 66 65 63 74 20 69 66 20 79 6f 75 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 74 | effect.if.you.have.configured.it |
| 146280 | 73 20 62 61 6e 64 77 69 64 74 68 20 74 6f 6f 2e 20 59 6f 75 20 63 61 6e 20 75 73 65 20 73 65 63 | s.bandwidth.too..You.can.use.sec |
| 1462a0 | 73 2c 20 6d 73 20 61 6e 64 20 75 73 2e 20 44 65 66 61 75 6c 74 3a 20 35 30 6d 73 2e 00 55 73 65 | s,.ms.and.us..Default:.50ms..Use |
| 1462c0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 50 72 69 | .this.command.to.configure.a.Pri |
| 1462e0 | 6f 72 69 74 79 20 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 | ority.Queue.policy,.set.its.name |
| 146300 | 2c 20 73 65 74 20 61 20 63 6c 61 73 73 20 77 69 74 68 20 61 20 70 72 69 6f 72 69 74 79 20 66 72 | ,.set.a.class.with.a.priority.fr |
| 146320 | 6f 6d 20 31 20 74 6f 20 37 20 61 6e 64 20 64 65 66 69 6e 65 20 61 20 68 61 72 64 20 6c 69 6d 69 | om.1.to.7.and.define.a.hard.limi |
| 146340 | 74 20 6f 6e 20 74 68 65 20 72 65 61 6c 20 71 75 65 75 65 20 73 69 7a 65 2e 20 57 68 65 6e 20 74 | t.on.the.real.queue.size..When.t |
| 146360 | 68 69 73 20 6c 69 6d 69 74 20 69 73 20 72 65 61 63 68 65 64 2c 20 6e 65 77 20 70 61 63 6b 65 74 | his.limit.is.reached,.new.packet |
| 146380 | 73 20 61 72 65 20 64 72 6f 70 70 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | s.are.dropped..Use.this.command. |
| 1463a0 | 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c | to.configure.a.Random-Detect.pol |
| 1463c0 | 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 6e 61 6d 65 20 | icy.and.set.its.name,.then.name. |
| 1463e0 | 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 | the.IP.Precedence.for.the.virtua |
| 146400 | 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 | l.queue.you.are.configuring.and. |
| 146420 | 77 68 61 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 73 69 7a 65 20 6f 66 20 69 74 73 20 71 75 65 | what.the.maximum.size.of.its.que |
| 146440 | 75 65 20 77 69 6c 6c 20 62 65 20 28 66 72 6f 6d 20 31 20 74 6f 20 31 2d 34 32 39 34 39 36 37 32 | ue.will.be.(from.1.to.1-42949672 |
| 146460 | 39 35 20 70 61 63 6b 65 74 73 29 2e 20 50 61 63 6b 65 74 73 20 61 72 65 20 64 72 6f 70 70 65 64 | 95.packets)..Packets.are.dropped |
| 146480 | 20 77 68 65 6e 20 74 68 65 20 63 75 72 72 65 6e 74 20 71 75 65 75 65 20 6c 65 6e 67 74 68 20 72 | .when.the.current.queue.length.r |
| 1464a0 | 65 61 63 68 65 73 20 74 68 69 73 20 76 61 6c 75 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | eaches.this.value..Use.this.comm |
| 1464c0 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 | and.to.configure.a.Random-Detect |
| 1464e0 | 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 | .policy.and.set.its.name,.then.s |
| 146500 | 74 61 74 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 | tate.the.IP.Precedence.for.the.v |
| 146520 | 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 | irtual.queue.you.are.configuring |
| 146540 | 20 61 6e 64 20 77 68 61 74 20 69 74 73 20 6d 61 72 6b 20 28 64 72 6f 70 29 20 70 72 6f 62 61 62 | .and.what.its.mark.(drop).probab |
| 146560 | 69 6c 69 74 79 20 77 69 6c 6c 20 62 65 2e 20 53 65 74 20 74 68 65 20 70 72 6f 62 61 62 69 6c 69 | ility.will.be..Set.the.probabili |
| 146580 | 74 79 20 62 79 20 67 69 76 69 6e 67 20 74 68 65 20 4e 20 76 61 6c 75 65 20 6f 66 20 74 68 65 20 | ty.by.giving.the.N.value.of.the. |
| 1465a0 | 66 72 61 63 74 69 6f 6e 20 31 2f 4e 20 28 64 65 66 61 75 6c 74 3a 20 31 30 29 2e 00 55 73 65 20 | fraction.1/N.(default:.10)..Use. |
| 1465c0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 | this.command.to.configure.a.Rand |
| 1465e0 | 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d | om-Detect.policy.and.set.its.nam |
| 146600 | 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 | e,.then.state.the.IP.Precedence. |
| 146620 | 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f | for.the.virtual.queue.you.are.co |
| 146640 | 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 69 74 73 20 6d 61 78 69 6d 75 6d 20 74 | nfiguring.and.what.its.maximum.t |
| 146660 | 68 72 65 73 68 6f 6c 64 20 66 6f 72 20 72 61 6e 64 6f 6d 20 64 65 74 65 63 74 69 6f 6e 20 77 69 | hreshold.for.random.detection.wi |
| 146680 | 6c 6c 20 62 65 20 28 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 36 20 70 61 63 6b 65 74 73 2c 20 64 | ll.be.(from.0.to.4096.packets,.d |
| 1466a0 | 65 66 61 75 6c 74 3a 20 31 38 29 2e 20 41 74 20 74 68 69 73 20 73 69 7a 65 2c 20 74 68 65 20 6d | efault:.18)..At.this.size,.the.m |
| 1466c0 | 61 72 6b 69 6e 67 20 28 64 72 6f 70 29 20 70 72 6f 62 61 62 69 6c 69 74 79 20 69 73 20 6d 61 78 | arking.(drop).probability.is.max |
| 1466e0 | 69 6d 61 6c 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | imal..Use.this.command.to.config |
| 146700 | 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 | ure.a.Random-Detect.policy.and.s |
| 146720 | 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 | et.its.name,.then.state.the.IP.P |
| 146740 | 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 | recedence.for.the.virtual.queue. |
| 146760 | 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 61 6e 64 20 77 68 61 74 20 69 74 73 | you.are.configuring.and.what.its |
| 146780 | 20 6d 69 6e 69 6d 75 6d 20 74 68 72 65 73 68 6f 6c 64 20 66 6f 72 20 72 61 6e 64 6f 6d 20 64 65 | .minimum.threshold.for.random.de |
| 1467a0 | 74 65 63 74 69 6f 6e 20 77 69 6c 6c 20 62 65 20 28 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 36 20 | tection.will.be.(from.0.to.4096. |
| 1467c0 | 70 61 63 6b 65 74 73 29 2e 20 20 49 66 20 74 68 69 73 20 76 61 6c 75 65 20 69 73 20 65 78 63 65 | packets)...If.this.value.is.exce |
| 1467e0 | 65 64 65 64 2c 20 70 61 63 6b 65 74 73 20 73 74 61 72 74 20 62 65 69 6e 67 20 65 6c 69 67 69 62 | eded,.packets.start.being.eligib |
| 146800 | 6c 65 20 66 6f 72 20 62 65 69 6e 67 20 64 72 6f 70 70 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 | le.for.being.dropped..Use.this.c |
| 146820 | 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 | ommand.to.configure.a.Random-Det |
| 146840 | 65 63 74 20 70 6f 6c 69 63 79 20 61 6e 64 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 74 68 65 | ect.policy.and.set.its.name,.the |
| 146860 | 6e 20 73 74 61 74 65 20 74 68 65 20 49 50 20 50 72 65 63 65 64 65 6e 63 65 20 66 6f 72 20 74 68 | n.state.the.IP.Precedence.for.th |
| 146880 | 65 20 76 69 72 74 75 61 6c 20 71 75 65 75 65 20 79 6f 75 20 61 72 65 20 63 6f 6e 66 69 67 75 72 | e.virtual.queue.you.are.configur |
| 1468a0 | 69 6e 67 20 61 6e 64 20 77 68 61 74 20 74 68 65 20 73 69 7a 65 20 6f 66 20 69 74 73 20 61 76 65 | ing.and.what.the.size.of.its.ave |
| 1468c0 | 72 61 67 65 2d 70 61 63 6b 65 74 20 73 68 6f 75 6c 64 20 62 65 20 28 69 6e 20 62 79 74 65 73 2c | rage-packet.should.be.(in.bytes, |
| 1468e0 | 20 64 65 66 61 75 6c 74 3a 20 31 30 32 34 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | .default:.1024)..Use.this.comman |
| 146900 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 | d.to.configure.a.Random-Detect.p |
| 146920 | 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 73 65 74 20 74 68 65 20 | olicy,.set.its.name.and.set.the. |
| 146940 | 61 76 61 69 6c 61 62 6c 65 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 74 68 69 73 20 70 6f 6c | available.bandwidth.for.this.pol |
| 146960 | 69 63 79 2e 20 49 74 20 69 73 20 75 73 65 64 20 66 6f 72 20 63 61 6c 63 75 6c 61 74 69 6e 67 20 | icy..It.is.used.for.calculating. |
| 146980 | 74 68 65 20 61 76 65 72 61 67 65 20 71 75 65 75 65 20 73 69 7a 65 20 61 66 74 65 72 20 73 6f 6d | the.average.queue.size.after.som |
| 1469a0 | 65 20 69 64 6c 65 20 74 69 6d 65 2e 20 49 74 20 73 68 6f 75 6c 64 20 62 65 20 73 65 74 20 74 6f | e.idle.time..It.should.be.set.to |
| 1469c0 | 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 20 6f 66 20 79 6f 75 72 20 69 6e 74 65 72 66 61 63 65 | .the.bandwidth.of.your.interface |
| 1469e0 | 2e 20 52 61 6e 64 6f 6d 20 44 65 74 65 63 74 20 69 73 20 6e 6f 74 20 61 20 73 68 61 70 69 6e 67 | ..Random.Detect.is.not.a.shaping |
| 146a00 | 20 70 6f 6c 69 63 79 2c 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 6e 6f 74 20 73 | .policy,.this.command.will.not.s |
| 146a20 | 68 61 70 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | hape..Use.this.command.to.config |
| 146a40 | 75 72 65 20 61 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 | ure.a.Rate-Control.policy,.set.i |
| 146a60 | 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 6d 6f 75 6e 74 20 6f | ts.name.and.the.maximum.amount.o |
| 146a80 | 66 20 74 69 6d 65 20 61 20 70 61 63 6b 65 74 20 63 61 6e 20 62 65 20 71 75 65 75 65 64 20 28 64 | f.time.a.packet.can.be.queued.(d |
| 146aa0 | 65 66 61 75 6c 74 3a 20 35 30 20 6d 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | efault:.50.ms)..Use.this.command |
| 146ac0 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 74 65 2d 43 6f 6e 74 72 6f 6c 20 70 6f 6c | .to.configure.a.Rate-Control.pol |
| 146ae0 | 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 72 61 74 65 20 6c | icy,.set.its.name.and.the.rate.l |
| 146b00 | 69 6d 69 74 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 68 61 76 65 2e 00 55 73 65 20 74 68 69 73 20 | imit.you.want.to.have..Use.this. |
| 146b20 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 52 61 74 65 2d 43 6f 6e 74 | command.to.configure.a.Rate-Cont |
| 146b40 | 72 6f 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 | rol.policy,.set.its.name.and.the |
| 146b60 | 20 73 69 7a 65 20 6f 66 20 74 68 65 20 62 75 63 6b 65 74 20 69 6e 20 62 79 74 65 73 20 77 68 69 | .size.of.the.bucket.in.bytes.whi |
| 146b80 | 63 68 20 77 69 6c 6c 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 62 75 72 73 74 2e 00 | ch.will.be.available.for.burst.. |
| 146ba0 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 | Use.this.command.to.configure.a. |
| 146bc0 | 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 | Round-Robin.policy,.set.its.name |
| 146be0 | 2c 20 73 65 74 20 61 20 63 6c 61 73 73 20 49 44 2c 20 61 6e 64 20 74 68 65 20 71 75 61 6e 74 75 | ,.set.a.class.ID,.and.the.quantu |
| 146c00 | 6d 20 66 6f 72 20 74 68 61 74 20 63 6c 61 73 73 2e 20 54 68 65 20 64 65 66 69 63 69 74 20 63 6f | m.for.that.class..The.deficit.co |
| 146c20 | 75 6e 74 65 72 20 77 69 6c 6c 20 61 64 64 20 74 68 61 74 20 76 61 6c 75 65 20 65 61 63 68 20 72 | unter.will.add.that.value.each.r |
| 146c40 | 6f 75 6e 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 | ound..Use.this.command.to.config |
| 146c60 | 75 72 65 20 61 20 52 6f 75 6e 64 2d 52 6f 62 69 6e 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 | ure.a.Round-Robin.policy,.set.it |
| 146c80 | 73 20 6e 61 6d 65 2c 20 73 65 74 20 61 20 63 6c 61 73 73 20 49 44 2c 20 61 6e 64 20 74 68 65 20 | s.name,.set.a.class.ID,.and.the. |
| 146ca0 | 71 75 65 75 65 20 73 69 7a 65 20 69 6e 20 70 61 63 6b 65 74 73 2e 00 55 73 65 20 74 68 69 73 20 | queue.size.in.packets..Use.this. |
| 146cc0 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f | command.to.configure.a.Shaper.po |
| 146ce0 | 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d | licy,.set.its.name.and.the.maxim |
| 146d00 | 75 6d 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 20 61 6c 6c 20 63 6f 6d 62 69 6e 65 64 20 74 72 | um.bandwidth.for.all.combined.tr |
| 146d20 | 61 66 66 69 63 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 | affic..Use.this.command.to.confi |
| 146d40 | 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 | gure.a.Shaper.policy,.set.its.na |
| 146d60 | 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 67 | me,.define.a.class.and.set.the.g |
| 146d80 | 75 61 72 61 6e 74 65 65 64 20 74 72 61 66 66 69 63 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 61 6c | uaranteed.traffic.you.want.to.al |
| 146da0 | 6c 6f 63 61 74 65 20 74 6f 20 74 68 61 74 20 63 6c 61 73 73 2e 00 55 73 65 20 74 68 69 73 20 63 | locate.to.that.class..Use.this.c |
| 146dc0 | 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c | ommand.to.configure.a.Shaper.pol |
| 146de0 | 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 | icy,.set.its.name,.define.a.clas |
| 146e00 | 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 73 70 65 65 64 20 70 6f 73 73 | s.and.set.the.maximum.speed.poss |
| 146e20 | 69 62 6c 65 20 66 6f 72 20 74 68 69 73 20 63 6c 61 73 73 2e 20 54 68 65 20 64 65 66 61 75 6c 74 | ible.for.this.class..The.default |
| 146e40 | 20 63 65 69 6c 69 6e 67 20 76 61 6c 75 65 20 69 73 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 20 | .ceiling.value.is.the.bandwidth. |
| 146e60 | 76 61 6c 75 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 | value..Use.this.command.to.confi |
| 146e80 | 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 | gure.a.Shaper.policy,.set.its.na |
| 146ea0 | 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 70 | me,.define.a.class.and.set.the.p |
| 146ec0 | 72 69 6f 72 69 74 79 20 66 6f 72 20 75 73 61 67 65 20 6f 66 20 61 76 61 69 6c 61 62 6c 65 20 62 | riority.for.usage.of.available.b |
| 146ee0 | 61 6e 64 77 69 64 74 68 20 6f 6e 63 65 20 67 75 61 72 61 6e 74 65 65 73 20 68 61 76 65 20 62 65 | andwidth.once.guarantees.have.be |
| 146f00 | 65 6e 20 6d 65 74 2e 20 54 68 65 20 6c 6f 77 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 6e | en.met..The.lower.the.priority.n |
| 146f20 | 75 6d 62 65 72 2c 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2e 20 | umber,.the.higher.the.priority.. |
| 146f40 | 54 68 65 20 64 65 66 61 75 6c 74 20 70 72 69 6f 72 69 74 79 20 76 61 6c 75 65 20 69 73 20 30 2c | The.default.priority.value.is.0, |
| 146f60 | 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 79 2e 00 55 73 65 20 74 68 69 73 20 | .the.highest.priority..Use.this. |
| 146f80 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 53 68 61 70 65 72 20 70 6f | command.to.configure.a.Shaper.po |
| 146fa0 | 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 64 65 66 69 6e 65 20 61 20 63 6c 61 | licy,.set.its.name,.define.a.cla |
| 146fc0 | 73 73 20 61 6e 64 20 73 65 74 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 60 74 6f 63 6b | ss.and.set.the.size.of.the.`tock |
| 146fe0 | 65 6e 20 62 75 63 6b 65 74 60 5f 20 69 6e 20 62 79 74 65 73 2c 20 77 68 69 63 68 20 77 69 6c 6c | en.bucket`_.in.bytes,.which.will |
| 147000 | 20 62 65 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 62 65 20 73 65 6e 74 20 61 74 20 63 65 69 6c | .be.available.to.be.sent.at.ceil |
| 147020 | 69 6e 67 20 73 70 65 65 64 20 28 64 65 66 61 75 6c 74 3a 20 31 35 4b 62 29 2e 00 55 73 65 20 74 | ing.speed.(default:.15Kb)..Use.t |
| 147040 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 64 61 74 61 2d | his.command.to.configure.a.data- |
| 147060 | 72 61 74 65 20 6c 69 6d 69 74 20 74 6f 20 50 50 50 4f 6f 45 20 63 6c 69 65 6e 74 73 20 66 6f 72 | rate.limit.to.PPPOoE.clients.for |
| 147080 | 20 74 72 61 66 66 69 63 20 64 6f 77 6e 6c 6f 61 64 20 6f 72 20 75 70 6c 6f 61 64 2e 20 54 68 65 | .traffic.download.or.upload..The |
| 1470a0 | 20 72 61 74 65 2d 6c 69 6d 69 74 20 69 73 20 73 65 74 20 69 6e 20 6b 62 69 74 2f 73 65 63 2e 00 | .rate-limit.is.set.in.kbit/sec.. |
| 1470c0 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 | Use.this.command.to.configure.a. |
| 1470e0 | 64 72 6f 70 2d 74 61 69 6c 20 70 6f 6c 69 63 79 20 28 50 46 49 46 4f 29 2e 20 43 68 6f 6f 73 65 | drop-tail.policy.(PFIFO)..Choose |
| 147100 | 20 61 20 75 6e 69 71 75 65 20 6e 61 6d 65 20 66 6f 72 20 74 68 69 73 20 70 6f 6c 69 63 79 20 61 | .a.unique.name.for.this.policy.a |
| 147120 | 6e 64 20 74 68 65 20 73 69 7a 65 20 6f 66 20 74 68 65 20 71 75 65 75 65 20 62 79 20 73 65 74 74 | nd.the.size.of.the.queue.by.sett |
| 147140 | 69 6e 67 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 69 74 20 63 61 6e | ing.the.number.of.packets.it.can |
| 147160 | 20 63 6f 6e 74 61 69 6e 20 28 6d 61 78 69 6d 75 6d 20 34 32 39 34 39 36 37 32 39 35 29 2e 00 55 | .contain.(maximum.4294967295)..U |
| 147180 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 73 | se.this.command.to.configure.a.s |
| 1471a0 | 70 65 63 69 66 69 63 20 73 65 73 73 69 6f 6e 20 68 6f 6c 64 20 74 69 6d 65 20 66 6f 72 20 4c 44 | pecific.session.hold.time.for.LD |
| 1471c0 | 50 20 70 65 65 72 73 2e 20 53 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 74 | P.peers..Set.the.IP.address.of.t |
| 1471e0 | 68 65 20 4c 44 50 20 70 65 65 72 20 61 6e 64 20 61 20 73 65 73 73 69 6f 6e 20 68 6f 6c 64 20 74 | he.LDP.peer.and.a.session.hold.t |
| 147200 | 69 6d 65 20 74 68 61 74 20 73 68 6f 75 6c 64 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f | ime.that.should.be.configured.fo |
| 147220 | 72 20 69 74 2e 20 59 6f 75 20 6d 61 79 20 68 61 76 65 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 | r.it..You.may.have.to.reset.the. |
| 147240 | 6e 65 69 67 68 62 6f 72 20 66 6f 72 20 74 68 69 73 20 74 6f 20 77 6f 72 6b 2e 00 55 73 65 20 74 | neighbor.for.this.to.work..Use.t |
| 147260 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 | his.command.to.configure.an.Ingr |
| 147280 | 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 20 61 | ess.Policer,.defining.its.name.a |
| 1472a0 | 6e 64 20 74 68 65 20 62 75 72 73 74 20 73 69 7a 65 20 69 6e 20 62 79 74 65 73 20 28 64 65 66 61 | nd.the.burst.size.in.bytes.(defa |
| 1472c0 | 75 6c 74 3a 20 31 35 29 20 66 6f 72 20 69 74 73 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 2e | ult:.15).for.its.default.policy. |
| 1472e0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 | .Use.this.command.to.configure.a |
| 147300 | 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 | n.Ingress.Policer,.defining.its. |
| 147320 | 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 62 61 6e | name.and.the.maximum.allowed.ban |
| 147340 | 64 77 69 64 74 68 20 66 6f 72 20 69 74 73 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 2e 00 55 | dwidth.for.its.default.policy..U |
| 147360 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 | se.this.command.to.configure.an. |
| 147380 | 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 | Ingress.Policer,.defining.its.na |
| 1473a0 | 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 20 | me,.a.class.identifier.(1-4090). |
| 1473c0 | 61 6e 64 20 74 68 65 20 62 75 72 73 74 20 73 69 7a 65 20 69 6e 20 62 79 74 65 73 20 66 6f 72 20 | and.the.burst.size.in.bytes.for. |
| 1473e0 | 74 68 69 73 20 63 6c 61 73 73 20 28 64 65 66 61 75 6c 74 3a 20 31 35 29 2e 00 55 73 65 20 74 68 | this.class.(default:.15)..Use.th |
| 147400 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 | is.command.to.configure.an.Ingre |
| 147420 | 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 | ss.Policer,.defining.its.name,.a |
| 147440 | 20 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 20 61 6e 64 20 74 | .class.identifier.(1-4090).and.t |
| 147460 | 68 65 20 6d 61 78 69 6d 75 6d 20 61 6c 6c 6f 77 65 64 20 62 61 6e 64 77 69 64 74 68 20 66 6f 72 | he.maximum.allowed.bandwidth.for |
| 147480 | 20 74 68 69 73 20 63 6c 61 73 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | .this.class..Use.this.command.to |
| 1474a0 | 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 | .configure.an.Ingress.Policer,.d |
| 1474c0 | 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 | efining.its.name,.a.class.identi |
| 1474e0 | 66 69 65 72 20 28 31 2d 34 30 39 30 29 2c 20 61 20 63 6c 61 73 73 20 6d 61 74 63 68 69 6e 67 20 | fier.(1-4090),.a.class.matching. |
| 147500 | 72 75 6c 65 20 6e 61 6d 65 20 61 6e 64 20 69 74 73 20 64 65 73 63 72 69 70 74 69 6f 6e 2e 00 55 | rule.name.and.its.description..U |
| 147520 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 | se.this.command.to.configure.an. |
| 147540 | 49 6e 67 72 65 73 73 20 50 6f 6c 69 63 65 72 2c 20 64 65 66 69 6e 69 6e 67 20 69 74 73 20 6e 61 | Ingress.Policer,.defining.its.na |
| 147560 | 6d 65 2c 20 61 20 63 6c 61 73 73 20 69 64 65 6e 74 69 66 69 65 72 20 28 31 2d 34 30 39 30 29 2c | me,.a.class.identifier.(1-4090), |
| 147580 | 20 61 6e 64 20 74 68 65 20 70 72 69 6f 72 69 74 79 20 28 30 2d 32 30 2c 20 64 65 66 61 75 6c 74 | .and.the.priority.(0-20,.default |
| 1475a0 | 20 32 30 29 20 69 6e 20 77 68 69 63 68 20 74 68 65 20 72 75 6c 65 20 69 73 20 65 76 61 6c 75 61 | .20).in.which.the.rule.is.evalua |
| 1475c0 | 74 65 64 20 28 74 68 65 20 6c 6f 77 65 72 20 74 68 65 20 6e 75 6d 62 65 72 2c 20 74 68 65 20 68 | ted.(the.lower.the.number,.the.h |
| 1475e0 | 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f | igher.the.priority)..Use.this.co |
| 147600 | 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 | mmand.to.configure.an.fq-codel.p |
| 147620 | 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 | olicy,.set.its.name.and.the.maxi |
| 147640 | 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 62 79 74 65 73 20 28 64 65 66 61 75 6c 74 3a 20 31 35 | mum.number.of.bytes.(default:.15 |
| 147660 | 31 34 29 20 74 6f 20 62 65 20 64 65 71 75 65 75 65 64 20 66 72 6f 6d 20 61 20 71 75 65 75 65 20 | 14).to.be.dequeued.from.a.queue. |
| 147680 | 61 74 20 6f 6e 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e | at.once..Use.this.command.to.con |
| 1476a0 | 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 | figure.an.fq-codel.policy,.set.i |
| 1476c0 | 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 73 75 62 2d 71 75 | ts.name.and.the.number.of.sub-qu |
| 1476e0 | 65 75 65 73 20 28 64 65 66 61 75 6c 74 3a 20 31 30 32 34 29 20 69 6e 74 6f 20 77 68 69 63 68 20 | eues.(default:.1024).into.which. |
| 147700 | 70 61 63 6b 65 74 73 20 61 72 65 20 63 6c 61 73 73 69 66 69 65 64 2e 00 55 73 65 20 74 68 69 73 | packets.are.classified..Use.this |
| 147720 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 | .command.to.configure.an.fq-code |
| 147740 | 6c 20 70 6f 6c 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 74 | l.policy,.set.its.name.and.the.t |
| 147760 | 69 6d 65 20 70 65 72 69 6f 64 20 75 73 65 64 20 62 79 20 74 68 65 20 63 6f 6e 74 72 6f 6c 20 6c | ime.period.used.by.the.control.l |
| 147780 | 6f 6f 70 20 6f 66 20 43 6f 44 65 6c 20 74 6f 20 64 65 74 65 63 74 20 77 68 65 6e 20 61 20 70 65 | oop.of.CoDel.to.detect.when.a.pe |
| 1477a0 | 72 73 69 73 74 65 6e 74 20 71 75 65 75 65 20 69 73 20 64 65 76 65 6c 6f 70 69 6e 67 2c 20 65 6e | rsistent.queue.is.developing,.en |
| 1477c0 | 73 75 72 69 6e 67 20 74 68 61 74 20 74 68 65 20 6d 65 61 73 75 72 65 64 20 6d 69 6e 69 6d 75 6d | suring.that.the.measured.minimum |
| 1477e0 | 20 64 65 6c 61 79 20 64 6f 65 73 20 6e 6f 74 20 62 65 63 6f 6d 65 20 74 6f 6f 20 73 74 61 6c 65 | .delay.does.not.become.too.stale |
| 147800 | 20 28 64 65 66 61 75 6c 74 3a 20 31 30 30 6d 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | .(default:.100ms)..Use.this.comm |
| 147820 | 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c | and.to.configure.an.fq-codel.pol |
| 147840 | 69 63 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 61 20 | icy,.set.its.name,.and.define.a. |
| 147860 | 68 61 72 64 20 6c 69 6d 69 74 20 6f 6e 20 74 68 65 20 72 65 61 6c 20 71 75 65 75 65 20 73 69 7a | hard.limit.on.the.real.queue.siz |
| 147880 | 65 2e 20 57 68 65 6e 20 74 68 69 73 20 6c 69 6d 69 74 20 69 73 20 72 65 61 63 68 65 64 2c 20 6e | e..When.this.limit.is.reached,.n |
| 1478a0 | 65 77 20 70 61 63 6b 65 74 73 20 61 72 65 20 64 72 6f 70 70 65 64 20 28 64 65 66 61 75 6c 74 3a | ew.packets.are.dropped.(default: |
| 1478c0 | 20 31 30 32 34 30 20 70 61 63 6b 65 74 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | .10240.packets)..Use.this.comman |
| 1478e0 | 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 20 66 71 2d 63 6f 64 65 6c 20 70 6f 6c 69 63 | d.to.configure.an.fq-codel.polic |
| 147900 | 79 2c 20 73 65 74 20 69 74 73 20 6e 61 6d 65 2c 20 61 6e 64 20 64 65 66 69 6e 65 20 74 68 65 20 | y,.set.its.name,.and.define.the. |
| 147920 | 61 63 63 65 70 74 61 62 6c 65 20 6d 69 6e 69 6d 75 6d 20 73 74 61 6e 64 69 6e 67 2f 70 65 72 73 | acceptable.minimum.standing/pers |
| 147940 | 69 73 74 65 6e 74 20 71 75 65 75 65 20 64 65 6c 61 79 2e 20 54 68 69 73 20 6d 69 6e 69 6d 75 6d | istent.queue.delay..This.minimum |
| 147960 | 20 64 65 6c 61 79 20 69 73 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 20 74 72 61 63 6b 69 6e 67 | .delay.is.identified.by.tracking |
| 147980 | 20 74 68 65 20 6c 6f 63 61 6c 20 6d 69 6e 69 6d 75 6d 20 71 75 65 75 65 20 64 65 6c 61 79 20 74 | .the.local.minimum.queue.delay.t |
| 1479a0 | 68 61 74 20 70 61 63 6b 65 74 73 20 65 78 70 65 72 69 65 6e 63 65 20 28 64 65 66 61 75 6c 74 3a | hat.packets.experience.(default: |
| 1479c0 | 20 35 6d 73 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 | .5ms)..Use.this.command.to.confi |
| 1479e0 | 67 75 72 65 20 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 49 47 4d 50 20 73 6f 20 74 | gure.an.interface.with.IGMP.so.t |
| 147a00 | 68 61 74 20 50 49 4d 20 63 61 6e 20 72 65 63 65 69 76 65 20 49 47 4d 50 20 72 65 70 6f 72 74 73 | hat.PIM.can.receive.IGMP.reports |
| 147a20 | 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 | .and.query.on.the.selected.inter |
| 147a40 | 66 61 63 65 2e 20 42 79 20 64 65 66 61 75 6c 74 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 33 20 | face..By.default.IGMP.version.3. |
| 147a60 | 77 69 6c 6c 20 62 65 20 75 73 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | will.be.used..Use.this.command.t |
| 147a80 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 66 6f 72 20 4c | o.configure.authentication.for.L |
| 147aa0 | 44 50 20 70 65 65 72 73 2e 20 53 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 | DP.peers..Set.the.IP.address.of. |
| 147ac0 | 74 68 65 20 4c 44 50 20 70 65 65 72 20 61 6e 64 20 61 20 70 61 73 73 77 6f 72 64 20 74 68 61 74 | the.LDP.peer.and.a.password.that |
| 147ae0 | 20 73 68 6f 75 6c 64 20 62 65 20 73 68 61 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 62 65 | .should.be.shared.in.order.to.be |
| 147b00 | 63 6f 6d 65 20 6e 65 69 67 68 62 6f 72 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | come.neighbors..Use.this.command |
| 147b20 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e | .to.configure.in.the.selected.in |
| 147b40 | 74 65 72 66 61 63 65 20 74 68 65 20 49 47 4d 50 20 68 6f 73 74 20 71 75 65 72 79 20 69 6e 74 65 | terface.the.IGMP.host.query.inte |
| 147b60 | 72 76 61 6c 20 28 31 2d 31 38 30 30 29 20 69 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 50 49 | rval.(1-1800).in.seconds.that.PI |
| 147b80 | 4d 20 77 69 6c 6c 20 75 73 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | M.will.use..Use.this.command.to. |
| 147ba0 | 63 6f 6e 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 | configure.in.the.selected.interf |
| 147bc0 | 61 63 65 20 74 68 65 20 49 47 4d 50 20 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 | ace.the.IGMP.query.response.time |
| 147be0 | 6f 75 74 20 76 61 6c 75 65 20 28 31 30 2d 32 35 30 29 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 | out.value.(10-250).in.decisecond |
| 147c00 | 73 2e 20 49 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 | s..If.a.report.is.not.returned.i |
| 147c20 | 6e 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 74 69 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 | n.the.specified.time,.it.will.be |
| 147c40 | 20 61 73 73 75 6d 65 64 20 74 68 65 20 28 53 2c 47 29 20 6f 72 20 28 2a 2c 47 29 20 73 74 61 74 | .assumed.the.(S,G).or.(*,G).stat |
| 147c60 | 65 20 3a 72 66 63 3a 60 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 31 60 20 68 61 73 20 74 69 | e.:rfc:`7761#section-4.1`.has.ti |
| 147c80 | 6d 65 64 20 6f 75 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e | med.out..Use.this.command.to.con |
| 147ca0 | 66 69 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 | figure.in.the.selected.interface |
| 147cc0 | 20 74 68 65 20 49 47 4d 50 20 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 | .the.IGMP.query.response.timeout |
| 147ce0 | 20 76 61 6c 75 65 20 28 31 30 2d 32 35 30 29 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 | .value.(10-250).in.deciseconds.. |
| 147d00 | 49 66 20 61 20 72 65 70 6f 72 74 20 69 73 20 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 | If.a.report.is.not.returned.in.t |
| 147d20 | 68 65 20 73 70 65 63 69 66 69 65 64 20 74 69 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 | he.specified.time,.it.will.be.as |
| 147d40 | 73 75 6d 65 64 20 74 68 65 20 28 53 2c 47 29 20 6f 72 20 28 5c 2a 2c 47 29 20 73 74 61 74 65 20 | sumed.the.(S,G).or.(\*,G).state. |
| 147d60 | 3a 72 66 63 3a 60 37 37 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 31 60 20 68 61 73 20 74 69 6d 65 | :rfc:`7761#section-4.1`.has.time |
| 147d80 | 64 20 6f 75 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 | d.out..Use.this.command.to.confi |
| 147da0 | 67 75 72 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 | gure.in.the.selected.interface.t |
| 147dc0 | 68 65 20 49 47 4d 50 20 71 75 65 72 79 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 6f 75 74 20 76 | he.IGMP.query.response.timeout.v |
| 147de0 | 61 6c 75 65 20 28 31 30 2d 32 35 30 29 20 69 6e 20 64 65 63 69 73 65 63 6f 6e 64 73 2e 20 49 66 | alue.(10-250).in.deciseconds..If |
| 147e00 | 20 61 20 72 65 70 6f 72 74 20 69 73 20 6e 6f 74 20 72 65 74 75 72 6e 65 64 20 69 6e 20 74 68 65 | .a.report.is.not.returned.in.the |
| 147e20 | 20 73 70 65 63 69 66 69 65 64 20 74 69 6d 65 2c 20 69 74 20 77 69 6c 6c 20 62 65 20 61 73 73 75 | .specified.time,.it.will.be.assu |
| 147e40 | 6d 65 64 20 74 68 65 20 60 28 53 2c 47 29 20 6f 72 20 28 2a 2c 47 29 20 73 74 61 74 65 20 3c 68 | med.the.`(S,G).or.(*,G).state.<h |
| 147e60 | 74 74 70 73 3a 2f 2f 74 6f 6f 6c 73 2e 69 65 74 66 2e 6f 72 67 2f 68 74 6d 6c 2f 72 66 63 37 37 | ttps://tools.ietf.org/html/rfc77 |
| 147e80 | 36 31 23 73 65 63 74 69 6f 6e 2d 34 2e 31 3e 60 5f 20 68 61 73 20 74 69 6d 65 64 20 6f 75 74 2e | 61#section-4.1>`_.has.timed.out. |
| 147ea0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 | .Use.this.command.to.configure.i |
| 147ec0 | 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 4d 4c 44 | n.the.selected.interface.the.MLD |
| 147ee0 | 20 68 6f 73 74 20 71 75 65 72 79 20 69 6e 74 65 72 76 61 6c 20 28 31 2d 36 35 35 33 35 29 20 69 | .host.query.interval.(1-65535).i |
| 147f00 | 6e 20 73 65 63 6f 6e 64 73 20 74 68 61 74 20 50 49 4d 20 77 69 6c 6c 20 75 73 65 2e 20 54 68 65 | n.seconds.that.PIM.will.use..The |
| 147f20 | 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 31 32 35 20 73 65 63 6f 6e 64 73 2e 00 55 | .default.value.is.125.seconds..U |
| 147f40 | 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 | se.this.command.to.configure.the |
| 147f60 | 20 20 73 61 6d 70 6c 69 6e 67 20 72 61 74 65 20 66 6f 72 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 | ..sampling.rate.for.flow.account |
| 147f80 | 69 6e 67 2e 20 54 68 65 20 73 79 73 74 65 6d 20 73 61 6d 70 6c 65 73 20 6f 6e 65 20 69 6e 20 65 | ing..The.system.samples.one.in.e |
| 147fa0 | 76 65 72 79 20 60 3c 72 61 74 65 3e 60 20 70 61 63 6b 65 74 73 2c 20 77 68 65 72 65 20 60 3c 72 | very.`<rate>`.packets,.where.`<r |
| 147fc0 | 61 74 65 3e 60 20 69 73 20 74 68 65 20 76 61 6c 75 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f | ate>`.is.the.value.configured.fo |
| 147fe0 | 72 20 74 68 65 20 73 61 6d 70 6c 69 6e 67 2d 72 61 74 65 20 6f 70 74 69 6f 6e 2e 20 54 68 65 20 | r.the.sampling-rate.option..The. |
| 148000 | 61 64 76 61 6e 74 61 67 65 20 6f 66 20 73 61 6d 70 6c 69 6e 67 20 65 76 65 72 79 20 6e 20 70 61 | advantage.of.sampling.every.n.pa |
| 148020 | 63 6b 65 74 73 2c 20 77 68 65 72 65 20 6e 20 3e 20 31 2c 20 61 6c 6c 6f 77 73 20 79 6f 75 20 74 | ckets,.where.n.>.1,.allows.you.t |
| 148040 | 6f 20 64 65 63 72 65 61 73 65 20 74 68 65 20 61 6d 6f 75 6e 74 20 6f 66 20 70 72 6f 63 65 73 73 | o.decrease.the.amount.of.process |
| 148060 | 69 6e 67 20 72 65 73 6f 75 72 63 65 73 20 72 65 71 75 69 72 65 64 20 66 6f 72 20 66 6c 6f 77 20 | ing.resources.required.for.flow. |
| 148080 | 61 63 63 6f 75 6e 74 69 6e 67 2e 20 54 68 65 20 64 69 73 61 64 76 61 6e 74 61 67 65 20 6f 66 20 | accounting..The.disadvantage.of. |
| 1480a0 | 6e 6f 74 20 73 61 6d 70 6c 69 6e 67 20 65 76 65 72 79 20 70 61 63 6b 65 74 20 69 73 20 74 68 61 | not.sampling.every.packet.is.tha |
| 1480c0 | 74 20 74 68 65 20 73 74 61 74 69 73 74 69 63 73 20 70 72 6f 64 75 63 65 64 20 61 72 65 20 65 73 | t.the.statistics.produced.are.es |
| 1480e0 | 74 69 6d 61 74 65 73 20 6f 66 20 61 63 74 75 61 6c 20 64 61 74 61 20 66 6c 6f 77 73 2e 00 55 73 | timates.of.actual.data.flows..Us |
| 148100 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 | e.this.command.to.configure.the. |
| 148120 | 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 73 68 61 72 65 64 20 73 65 63 72 65 74 | IP.address.and.the.shared.secret |
| 148140 | 20 6b 65 79 20 6f 66 20 79 6f 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 20 20 59 6f 75 | .key.of.your.RADIUS.server...You |
| 148160 | 20 63 61 6e 20 68 61 76 65 20 6d 75 6c 74 69 70 6c 65 20 52 41 44 49 55 53 20 73 65 72 76 65 72 | .can.have.multiple.RADIUS.server |
| 148180 | 73 20 63 6f 6e 66 69 67 75 72 65 64 20 69 66 20 79 6f 75 20 77 69 73 68 20 74 6f 20 61 63 68 69 | s.configured.if.you.wish.to.achi |
| 1481a0 | 65 76 65 20 72 65 64 75 6e 64 61 6e 63 79 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | eve.redundancy..Use.this.command |
| 1481c0 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 75 73 65 | .to.configure.the.IP.address.use |
| 1481e0 | 64 20 61 73 20 74 68 65 20 4c 44 50 20 72 6f 75 74 65 72 2d 69 64 20 6f 66 20 74 68 65 20 6c 6f | d.as.the.LDP.router-id.of.the.lo |
| 148200 | 63 61 6c 20 64 65 76 69 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | cal.device..Use.this.command.to. |
| 148220 | 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 50 49 4d 20 68 65 6c 6c 6f 20 69 6e 74 65 72 76 61 6c | configure.the.PIM.hello.interval |
| 148240 | 20 69 6e 20 73 65 63 6f 6e 64 73 20 28 31 2d 31 38 30 29 20 66 6f 72 20 74 68 65 20 73 65 6c 65 | .in.seconds.(1-180).for.the.sele |
| 148260 | 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | cted.interface..Use.this.command |
| 148280 | 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 62 75 72 73 74 20 73 69 7a 65 20 6f 66 20 | .to.configure.the.burst.size.of. |
| 1482a0 | 74 68 65 20 74 72 61 66 66 69 63 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f | the.traffic.in.a.Network.Emulato |
| 1482c0 | 72 20 70 6f 6c 69 63 79 2e 20 44 65 66 69 6e 65 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 | r.policy..Define.the.name.of.the |
| 1482e0 | 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 20 61 6e 64 20 69 74 73 | .Network.Emulator.policy.and.its |
| 148300 | 20 74 72 61 66 66 69 63 20 62 75 72 73 74 20 73 69 7a 65 20 28 69 74 20 77 69 6c 6c 20 62 65 20 | .traffic.burst.size.(it.will.be. |
| 148320 | 63 6f 6e 66 69 67 75 72 65 64 20 74 68 72 6f 75 67 68 20 74 68 65 20 54 6f 6b 65 6e 20 42 75 63 | configured.through.the.Token.Buc |
| 148340 | 6b 65 74 20 46 69 6c 74 65 72 20 71 64 69 73 63 29 2e 20 44 65 66 61 75 6c 74 3a 31 35 6b 62 2e | ket.Filter.qdisc)..Default:15kb. |
| 148360 | 20 49 74 20 77 69 6c 6c 20 6f 6e 6c 79 20 74 61 6b 65 20 65 66 66 65 63 74 20 69 66 20 79 6f 75 | .It.will.only.take.effect.if.you |
| 148380 | 20 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 69 74 73 20 62 61 6e 64 77 69 64 74 68 20 74 | .have.configured.its.bandwidth.t |
| 1483a0 | 6f 6f 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 | oo..Use.this.command.to.configur |
| 1483c0 | 65 20 74 68 65 20 6c 6f 63 61 6c 20 67 61 74 65 77 61 79 20 49 50 20 61 64 64 72 65 73 73 2e 00 | e.the.local.gateway.IP.address.. |
| 1483e0 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 | Use.this.command.to.configure.th |
| 148400 | 65 20 6d 61 78 69 6d 75 6d 20 72 61 74 65 20 61 74 20 77 68 69 63 68 20 74 72 61 66 66 69 63 20 | e.maximum.rate.at.which.traffic. |
| 148420 | 77 69 6c 6c 20 62 65 20 73 68 61 70 65 64 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c | will.be.shaped.in.a.Network.Emul |
| 148440 | 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 44 65 66 69 6e 65 20 74 68 65 20 6e 61 6d 65 20 6f 66 20 | ator.policy..Define.the.name.of. |
| 148460 | 74 68 65 20 70 6f 6c 69 63 79 20 61 6e 64 20 74 68 65 20 72 61 74 65 2e 00 55 73 65 20 74 68 69 | the.policy.and.the.rate..Use.thi |
| 148480 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 73 61 6d 70 6c | s.command.to.configure.the.sampl |
| 1484a0 | 69 6e 67 20 72 61 74 65 20 66 6f 72 20 73 46 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 28 64 | ing.rate.for.sFlow.accounting.(d |
| 1484c0 | 65 66 61 75 6c 74 3a 20 31 30 30 30 29 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | efault:.1000).Use.this.command.t |
| 1484e0 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 75 73 65 72 6e 61 6d 65 20 61 6e 64 20 74 68 65 | o.configure.the.username.and.the |
| 148500 | 20 70 61 73 73 77 6f 72 64 20 6f 66 20 61 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 | .password.of.a.locally.configure |
| 148520 | 64 20 75 73 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 6f 6e 74 | d.user..Use.this.command.to.cont |
| 148540 | 72 6f 6c 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 65 71 75 61 6c 20 | rol.the.maximum.number.of.equal. |
| 148560 | 63 6f 73 74 20 70 61 74 68 73 20 74 6f 20 72 65 61 63 68 20 61 20 73 70 65 63 69 66 69 63 20 64 | cost.paths.to.reach.a.specific.d |
| 148580 | 65 73 74 69 6e 61 74 69 6f 6e 2e 20 54 68 65 20 75 70 70 65 72 20 6c 69 6d 69 74 20 6d 61 79 20 | estination..The.upper.limit.may. |
| 1485a0 | 64 69 66 66 65 72 20 69 66 20 79 6f 75 20 63 68 61 6e 67 65 20 74 68 65 20 76 61 6c 75 65 20 6f | differ.if.you.change.the.value.o |
| 1485c0 | 66 20 4d 55 4c 54 49 50 41 54 48 5f 4e 55 4d 20 64 75 72 69 6e 67 20 63 6f 6d 70 69 6c 61 74 69 | f.MULTIPATH_NUM.during.compilati |
| 1485e0 | 6f 6e 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 69 73 20 4d 55 4c 54 49 50 41 54 48 5f 4e 55 4d | on..The.default.is.MULTIPATH_NUM |
| 148600 | 20 28 36 34 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 72 65 61 74 | .(64)..Use.this.command.to.creat |
| 148620 | 65 20 61 20 46 61 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 79 20 61 6e 64 20 67 69 76 65 20 69 | e.a.Fair-Queue.policy.and.give.i |
| 148640 | 74 20 61 20 6e 61 6d 65 2e 20 49 74 20 69 73 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 6f | t.a.name..It.is.based.on.the.Sto |
| 148660 | 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 51 75 65 75 65 69 6e 67 20 61 6e 64 20 63 61 | chastic.Fairness.Queueing.and.ca |
| 148680 | 6e 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 6f 75 74 62 6f 75 6e 64 20 74 72 61 66 66 69 63 | n.be.applied.to.outbound.traffic |
| 1486a0 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 49 50 73 | ..Use.this.command.to.define.IPs |
| 1486c0 | 65 63 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | ec.interface..Use.this.command.t |
| 1486e0 | 6f 20 64 65 66 69 6e 65 20 61 20 46 61 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 62 61 | o.define.a.Fair-Queue.policy,.ba |
| 148700 | 73 65 64 20 6f 6e 20 74 68 65 20 53 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 51 | sed.on.the.Stochastic.Fairness.Q |
| 148720 | 75 65 75 65 69 6e 67 2c 20 61 6e 64 20 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 6d | ueueing,.and.set.the.number.of.m |
| 148740 | 61 78 69 6d 75 6d 20 70 61 63 6b 65 74 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 77 61 69 74 20 69 | aximum.packets.allowed.to.wait.i |
| 148760 | 6e 20 74 68 65 20 71 75 65 75 65 2e 20 41 6e 79 20 6f 74 68 65 72 20 70 61 63 6b 65 74 20 77 69 | n.the.queue..Any.other.packet.wi |
| 148780 | 6c 6c 20 62 65 20 64 72 6f 70 70 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | ll.be.dropped..Use.this.command. |
| 1487a0 | 74 6f 20 64 65 66 69 6e 65 20 61 20 46 61 69 72 2d 51 75 65 75 65 20 70 6f 6c 69 63 79 2c 20 62 | to.define.a.Fair-Queue.policy,.b |
| 1487c0 | 61 73 65 64 20 6f 6e 20 74 68 65 20 53 74 6f 63 68 61 73 74 69 63 20 46 61 69 72 6e 65 73 73 20 | ased.on.the.Stochastic.Fairness. |
| 1487e0 | 51 75 65 75 65 69 6e 67 2c 20 61 6e 64 20 73 65 74 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 | Queueing,.and.set.the.number.of. |
| 148800 | 73 65 63 6f 6e 64 73 20 61 74 20 77 68 69 63 68 20 61 20 6e 65 77 20 71 75 65 75 65 20 61 6c 67 | seconds.at.which.a.new.queue.alg |
| 148820 | 6f 72 69 74 68 6d 20 70 65 72 74 75 72 62 61 74 69 6f 6e 20 77 69 6c 6c 20 6f 63 63 75 72 20 28 | orithm.perturbation.will.occur.( |
| 148840 | 6d 61 78 69 6d 75 6d 20 34 32 39 34 39 36 37 32 39 35 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f | maximum.4294967295)..Use.this.co |
| 148860 | 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 64 65 66 61 75 6c 74 20 49 50 76 36 20 61 64 64 | mmand.to.define.default.IPv6.add |
| 148880 | 72 65 73 73 20 70 6f 6f 6c 20 6e 61 6d 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | ress.pool.name..Use.this.command |
| 1488a0 | 20 74 6f 20 64 65 66 69 6e 65 20 64 65 66 61 75 6c 74 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 | .to.define.default.address.pool. |
| 1488c0 | 6e 61 6d 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 | name..Use.this.command.to.define |
| 1488e0 | 20 64 6f 6d 61 69 6e 73 2c 20 6f 6e 65 20 61 74 20 61 20 74 69 6d 65 2c 20 73 6f 20 74 68 61 74 | .domains,.one.at.a.time,.so.that |
| 148900 | 20 74 68 65 20 73 79 73 74 65 6d 20 75 73 65 73 20 74 68 65 6d 20 74 6f 20 63 6f 6d 70 6c 65 74 | .the.system.uses.them.to.complet |
| 148920 | 65 20 75 6e 71 75 61 6c 69 66 69 65 64 20 68 6f 73 74 20 6e 61 6d 65 73 2e 20 4d 61 78 69 6d 75 | e.unqualified.host.names..Maximu |
| 148940 | 6d 3a 20 36 20 65 6e 74 72 69 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | m:.6.entries..Use.this.command.t |
| 148960 | 6f 20 64 65 66 69 6e 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 | o.define.in.the.selected.interfa |
| 148980 | 63 65 20 77 68 65 74 68 65 72 20 79 6f 75 20 63 68 6f 6f 73 65 20 49 47 4d 50 20 76 65 72 73 69 | ce.whether.you.choose.IGMP.versi |
| 1489a0 | 6f 6e 20 32 20 6f 72 20 33 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 | on.2.or.3..Use.this.command.to.d |
| 1489c0 | 65 66 69 6e 65 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 | efine.in.the.selected.interface. |
| 1489e0 | 77 68 65 74 68 65 72 20 79 6f 75 20 63 68 6f 6f 73 65 20 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 | whether.you.choose.IGMP.version. |
| 148a00 | 32 20 6f 72 20 33 2e 20 54 68 65 20 64 65 66 61 75 6c 74 20 76 61 6c 75 65 20 69 73 20 33 2e 00 | 2.or.3..The.default.value.is.3.. |
| 148a20 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 49 | Use.this.command.to.define.the.I |
| 148a40 | 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 50 | P.address.range.to.be.given.to.P |
| 148a60 | 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e | PPoE.clients..If.notation.``x.x. |
| 148a80 | 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e | x.x-x.x.x.x``,.it.must.be.within |
| 148aa0 | 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 | .a./24.subnet..If.notation.``x.x |
| 148ac0 | 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 | .x.x/x``.is.used.there.is.possib |
| 148ae0 | 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 | ility.to.set.host/netmask..Use.t |
| 148b00 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 | his.command.to.define.the.first. |
| 148b20 | 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 | IP.address.of.a.pool.of.addresse |
| 148b40 | 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 49 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 | s.to.be.given.to.IPoE.clients..I |
| 148b60 | 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 | f.notation.``x.x.x.x-x.x.x.x``,. |
| 148b80 | 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 | it.must.be.within.a./24.subnet.. |
| 148ba0 | 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 | If.notation.``x.x.x.x/x``.is.use |
| 148bc0 | 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f | d.there.is.possibility.to.set.ho |
| 148be0 | 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | st/netmask..Use.this.command.to. |
| 148c00 | 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 | define.the.first.IP.address.of.a |
| 148c20 | 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 | .pool.of.addresses.to.be.given.t |
| 148c40 | 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 | o.PPPoE.clients..It.must.be.with |
| 148c60 | 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | in.a./24.subnet..Use.this.comman |
| 148c80 | 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 | d.to.define.the.first.IP.address |
| 148ca0 | 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 | .of.a.pool.of.addresses.to.be.gi |
| 148cc0 | 76 65 6e 20 74 6f 20 50 50 54 50 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e | ven.to.PPTP.clients..If.notation |
| 148ce0 | 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 | .``x.x.x.x-x.x.x.x``,.it.must.be |
| 148d00 | 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f | .within.a./24.subnet..If.notatio |
| 148d20 | 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 | n.``x.x.x.x/x``.is.used.there.is |
| 148d40 | 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b | .possibility.to.set.host/netmask |
| 148d60 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 | ..Use.this.command.to.define.the |
| 148d80 | 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 | .first.IP.address.of.a.pool.of.a |
| 148da0 | 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 53 53 54 50 20 63 6c 69 | ddresses.to.be.given.to.SSTP.cli |
| 148dc0 | 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e | ents..If.notation.``x.x.x.x-x.x. |
| 148de0 | 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 | x.x``,.it.must.be.within.a./24.s |
| 148e00 | 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 | ubnet..If.notation.``x.x.x.x/x`` |
| 148e20 | 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f | .is.used.there.is.possibility.to |
| 148e40 | 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | .set.host/netmask..Use.this.comm |
| 148e60 | 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 | and.to.define.the.first.IP.addre |
| 148e80 | 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 | ss.of.a.pool.of.addresses.to.be. |
| 148ea0 | 67 69 76 65 6e 20 74 6f 20 6c 32 74 70 20 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 | given.to.l2tp.clients..If.notati |
| 148ec0 | 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 | on.``x.x.x.x-x.x.x.x``,.it.must. |
| 148ee0 | 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 | be.within.a./24.subnet..If.notat |
| 148f00 | 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 | ion.``x.x.x.x/x``.is.used.there. |
| 148f20 | 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 | is.possibility.to.set.host/netma |
| 148f40 | 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 | sk..Use.this.command.to.define.t |
| 148f60 | 68 65 20 66 69 72 73 74 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 | he.first.IP.address.of.a.pool.of |
| 148f80 | 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 65 20 67 69 76 65 6e 20 74 6f 20 70 70 70 6f 65 20 | .addresses.to.be.given.to.pppoe. |
| 148fa0 | 63 6c 69 65 6e 74 73 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2d 78 | clients..If.notation.``x.x.x.x-x |
| 148fc0 | 2e 78 2e 78 2e 78 60 60 2c 20 69 74 20 6d 75 73 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 | .x.x.x``,.it.must.be.within.a./2 |
| 148fe0 | 34 20 73 75 62 6e 65 74 2e 20 49 66 20 6e 6f 74 61 74 69 6f 6e 20 60 60 78 2e 78 2e 78 2e 78 2f | 4.subnet..If.notation.``x.x.x.x/ |
| 149000 | 78 60 60 20 69 73 20 75 73 65 64 20 74 68 65 72 65 20 69 73 20 70 6f 73 73 69 62 69 6c 69 74 79 | x``.is.used.there.is.possibility |
| 149020 | 20 74 6f 20 73 65 74 20 68 6f 73 74 2f 6e 65 74 6d 61 73 6b 2e 00 55 73 65 20 74 68 69 73 20 63 | .to.set.host/netmask..Use.this.c |
| 149040 | 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 74 | ommand.to.define.the.interface.t |
| 149060 | 68 65 20 50 50 50 6f 45 20 73 65 72 76 65 72 20 77 69 6c 6c 20 75 73 65 20 74 6f 20 6c 69 73 74 | he.PPPoE.server.will.use.to.list |
| 149080 | 65 6e 20 66 6f 72 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 00 55 73 65 20 74 68 69 73 20 63 | en.for.PPPoE.clients..Use.this.c |
| 1490a0 | 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 6c 61 73 74 20 49 50 20 61 64 64 | ommand.to.define.the.last.IP.add |
| 1490c0 | 72 65 73 73 20 6f 66 20 61 20 70 6f 6f 6c 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 74 6f 20 62 | ress.of.a.pool.of.addresses.to.b |
| 1490e0 | 65 20 67 69 76 65 6e 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 20 49 74 20 6d 75 73 | e.given.to.PPPoE.clients..It.mus |
| 149100 | 74 20 62 65 20 77 69 74 68 69 6e 20 61 20 2f 32 34 20 73 75 62 6e 65 74 2e 00 55 73 65 20 74 68 | t.be.within.a./24.subnet..Use.th |
| 149120 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 6c 65 6e 67 74 68 20 | is.command.to.define.the.length. |
| 149140 | 6f 66 20 74 68 65 20 71 75 65 75 65 20 6f 66 20 79 6f 75 72 20 4e 65 74 77 6f 72 6b 20 45 6d 75 | of.the.queue.of.your.Network.Emu |
| 149160 | 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d | lator.policy..Set.the.policy.nam |
| 149180 | 65 20 61 6e 64 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b | e.and.the.maximum.number.of.pack |
| 1491a0 | 65 74 73 20 28 31 2d 34 32 39 34 39 36 37 32 39 35 29 20 74 68 65 20 71 75 65 75 65 20 6d 61 79 | ets.(1-4294967295).the.queue.may |
| 1491c0 | 20 68 6f 6c 64 20 71 75 65 75 65 64 20 61 74 20 61 20 74 69 6d 65 2e 00 55 73 65 20 74 68 69 73 | .hold.queued.at.a.time..Use.this |
| 1491e0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e | .command.to.define.the.maximum.n |
| 149200 | 75 6d 62 65 72 20 6f 66 20 65 6e 74 72 69 65 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 74 68 65 20 | umber.of.entries.to.keep.in.the. |
| 149220 | 41 52 50 20 63 61 63 68 65 20 28 31 30 32 34 2c 20 32 30 34 38 2c 20 34 30 39 36 2c 20 38 31 39 | ARP.cache.(1024,.2048,.4096,.819 |
| 149240 | 32 2c 20 31 36 33 38 34 2c 20 33 32 37 36 38 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | 2,.16384,.32768)..Use.this.comma |
| 149260 | 6e 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 6d 61 78 69 6d 75 6d 20 6e 75 6d 62 65 72 20 | nd.to.define.the.maximum.number. |
| 149280 | 6f 66 20 65 6e 74 72 69 65 73 20 74 6f 20 6b 65 65 70 20 69 6e 20 74 68 65 20 4e 65 69 67 68 62 | of.entries.to.keep.in.the.Neighb |
| 1492a0 | 6f 72 20 63 61 63 68 65 20 28 31 30 32 34 2c 20 32 30 34 38 2c 20 34 30 39 36 2c 20 38 31 39 32 | or.cache.(1024,.2048,.4096,.8192 |
| 1492c0 | 2c 20 31 36 33 38 34 2c 20 33 32 37 36 38 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | ,.16384,.32768)..Use.this.comman |
| 1492e0 | 64 20 74 6f 20 64 65 66 69 6e 65 20 74 68 65 20 6e 65 78 74 20 61 64 64 72 65 73 73 20 70 6f 6f | d.to.define.the.next.address.poo |
| 149300 | 6c 20 6e 61 6d 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 65 66 69 | l.name..Use.this.command.to.defi |
| 149320 | 6e 65 20 77 68 65 74 68 65 72 20 79 6f 75 72 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 20 77 69 | ne.whether.your.PPPoE.clients.wi |
| 149340 | 6c 6c 20 6c 6f 63 61 6c 6c 79 20 61 75 74 68 65 6e 74 69 63 61 74 65 20 69 6e 20 79 6f 75 72 20 | ll.locally.authenticate.in.your. |
| 149360 | 56 79 4f 53 20 73 79 73 74 65 6d 20 6f 72 20 69 6e 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e | VyOS.system.or.in.RADIUS.server. |
| 149380 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 72 65 63 74 20 61 6e 20 69 | .Use.this.command.to.direct.an.i |
| 1493a0 | 6e 74 65 72 66 61 63 65 20 74 6f 20 6e 6f 74 20 64 65 74 65 63 74 20 61 6e 79 20 70 68 79 73 69 | nterface.to.not.detect.any.physi |
| 1493c0 | 63 61 6c 20 73 74 61 74 65 20 63 68 61 6e 67 65 73 20 6f 6e 20 61 20 6c 69 6e 6b 2c 20 66 6f 72 | cal.state.changes.on.a.link,.for |
| 1493e0 | 20 65 78 61 6d 70 6c 65 2c 20 77 68 65 6e 20 74 68 65 20 63 61 62 6c 65 20 69 73 20 75 6e 70 6c | .example,.when.the.cable.is.unpl |
| 149400 | 75 67 67 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 | ugged..Use.this.command.to.disab |
| 149420 | 6c 65 20 49 50 76 34 20 64 69 72 65 63 74 65 64 20 62 72 6f 61 64 63 61 73 74 20 66 6f 72 77 61 | le.IPv4.directed.broadcast.forwa |
| 149440 | 72 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 | rding.on.all.interfaces..Use.thi |
| 149460 | 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 49 50 76 34 20 66 6f 72 77 61 72 | s.command.to.disable.IPv4.forwar |
| 149480 | 64 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 | ding.on.all.interfaces..Use.this |
| 1494a0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 49 50 76 36 20 66 6f 72 77 61 72 64 | .command.to.disable.IPv6.forward |
| 1494c0 | 69 6e 67 20 6f 6e 20 61 6c 6c 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 | ing.on.all.interfaces..Use.this. |
| 1494e0 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c 65 20 49 50 76 36 20 6f 70 65 72 61 74 69 6f | command.to.disable.IPv6.operatio |
| 149500 | 6e 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 6e 20 44 75 70 6c 69 63 61 74 65 20 41 64 | n.on.interface.when.Duplicate.Ad |
| 149520 | 64 72 65 73 73 20 44 65 74 65 63 74 69 6f 6e 20 66 61 69 6c 73 20 6f 6e 20 4c 69 6e 6b 2d 4c 6f | dress.Detection.fails.on.Link-Lo |
| 149540 | 63 61 6c 20 61 64 64 72 65 73 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f | cal.address..Use.this.command.to |
| 149560 | 20 64 69 73 61 62 6c 65 20 74 68 65 20 67 65 6e 65 72 61 74 69 6f 6e 20 6f 66 20 45 74 68 65 72 | .disable.the.generation.of.Ether |
| 149580 | 6e 65 74 20 66 6c 6f 77 20 63 6f 6e 74 72 6f 6c 20 28 70 61 75 73 65 20 66 72 61 6d 65 73 29 2e | net.flow.control.(pause.frames). |
| 1495a0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 6e 6f 69 | .Use.this.command.to.emulate.noi |
| 1495c0 | 73 65 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e | se.in.a.Network.Emulator.policy. |
| 1495e0 | 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 65 72 | .Set.the.policy.name.and.the.per |
| 149600 | 63 65 6e 74 61 67 65 20 6f 66 20 63 6f 72 72 75 70 74 65 64 20 70 61 63 6b 65 74 73 20 79 6f 75 | centage.of.corrupted.packets.you |
| 149620 | 20 77 61 6e 74 2e 20 41 20 72 61 6e 64 6f 6d 20 65 72 72 6f 72 20 77 69 6c 6c 20 62 65 20 69 6e | .want..A.random.error.will.be.in |
| 149640 | 74 72 6f 64 75 63 65 64 20 69 6e 20 61 20 72 61 6e 64 6f 6d 20 70 6f 73 69 74 69 6f 6e 20 66 6f | troduced.in.a.random.position.fo |
| 149660 | 72 20 74 68 65 20 63 68 6f 73 65 6e 20 70 65 72 63 65 6e 74 20 6f 66 20 70 61 63 6b 65 74 73 2e | r.the.chosen.percent.of.packets. |
| 149680 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 70 61 63 | .Use.this.command.to.emulate.pac |
| 1496a0 | 6b 65 74 2d 6c 6f 73 73 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 6e 20 61 20 4e 65 74 77 6f 72 6b | ket-loss.conditions.in.a.Network |
| 1496c0 | 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 65 20 70 6f 6c 69 63 79 | .Emulator.policy..Set.the.policy |
| 1496e0 | 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 20 6f 66 20 6c 6f 73 73 | .name.and.the.percentage.of.loss |
| 149700 | 20 70 61 63 6b 65 74 73 20 79 6f 75 72 20 74 72 61 66 66 69 63 20 77 69 6c 6c 20 73 75 66 66 65 | .packets.your.traffic.will.suffe |
| 149720 | 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6d 75 6c 61 74 65 20 70 | r..Use.this.command.to.emulate.p |
| 149740 | 61 63 6b 65 74 2d 72 65 6f 72 64 65 72 69 6e 67 20 63 6f 6e 64 69 74 69 6f 6e 73 20 69 6e 20 61 | acket-reordering.conditions.in.a |
| 149760 | 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 2e 20 53 65 74 20 74 68 | .Network.Emulator.policy..Set.th |
| 149780 | 65 20 70 6f 6c 69 63 79 20 6e 61 6d 65 20 61 6e 64 20 74 68 65 20 70 65 72 63 65 6e 74 61 67 65 | e.policy.name.and.the.percentage |
| 1497a0 | 20 6f 66 20 72 65 6f 72 64 65 72 65 64 20 70 61 63 6b 65 74 73 20 79 6f 75 72 20 74 72 61 66 66 | .of.reordered.packets.your.traff |
| 1497c0 | 69 63 20 77 69 6c 6c 20 73 75 66 66 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | ic.will.suffer..Use.this.command |
| 1497e0 | 20 74 6f 20 65 6e 61 62 6c 65 20 4c 44 50 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 | .to.enable.LDP.on.the.interface. |
| 149800 | 79 6f 75 20 64 65 66 69 6e 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | you.define..Use.this.command.to. |
| 149820 | 65 6e 61 62 6c 65 20 4d 50 4c 53 20 70 72 6f 63 65 73 73 69 6e 67 20 6f 6e 20 74 68 65 20 69 6e | enable.MPLS.processing.on.the.in |
| 149840 | 74 65 72 66 61 63 65 20 79 6f 75 20 64 65 66 69 6e 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | terface.you.define..Use.this.com |
| 149860 | 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 50 49 4d 20 69 6e 20 74 68 65 20 73 65 6c 65 63 74 | mand.to.enable.PIM.in.the.select |
| 149880 | 65 64 20 69 6e 74 65 72 66 61 63 65 20 73 6f 20 74 68 61 74 20 69 74 20 63 61 6e 20 63 6f 6d 6d | ed.interface.so.that.it.can.comm |
| 1498a0 | 75 6e 69 63 61 74 65 20 77 69 74 68 20 50 49 4d 20 6e 65 69 67 68 62 6f 72 73 2e 00 55 73 65 20 | unicate.with.PIM.neighbors..Use. |
| 1498c0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 50 49 4d 76 36 20 69 6e 20 | this.command.to.enable.PIMv6.in. |
| 1498e0 | 74 68 65 20 73 65 6c 65 63 74 65 64 20 69 6e 74 65 72 66 61 63 65 20 73 6f 20 74 68 61 74 20 69 | the.selected.interface.so.that.i |
| 149900 | 74 20 63 61 6e 20 63 6f 6d 6d 75 6e 69 63 61 74 65 20 77 69 74 68 20 50 49 4d 76 36 20 6e 65 69 | t.can.communicate.with.PIMv6.nei |
| 149920 | 67 68 62 6f 72 73 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e 64 20 61 6c 73 6f 20 65 6e 61 62 6c 65 | ghbors..This.command.also.enable |
| 149940 | 73 20 4d 4c 44 20 72 65 70 6f 72 74 73 20 61 6e 64 20 71 75 65 72 79 20 6f 6e 20 74 68 65 20 69 | s.MLD.reports.and.query.on.the.i |
| 149960 | 6e 74 65 72 66 61 63 65 20 75 6e 6c 65 73 73 20 3a 63 66 67 63 6d 64 3a 60 6d 6c 64 20 64 69 73 | nterface.unless.:cfgcmd:`mld.dis |
| 149980 | 61 62 6c 65 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f | able`.is.configured..Use.this.co |
| 1499a0 | 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 61 63 71 75 69 73 69 74 69 6f 6e 20 6f 66 20 49 | mmand.to.enable.acquisition.of.I |
| 1499c0 | 50 76 36 20 61 64 64 72 65 73 73 20 75 73 69 6e 67 20 73 74 61 74 65 6c 65 73 73 20 61 75 74 6f | Pv6.address.using.stateless.auto |
| 1499e0 | 63 6f 6e 66 69 67 20 28 53 4c 41 41 43 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | config.(SLAAC)..Use.this.command |
| 149a00 | 20 74 6f 20 65 6e 61 62 6c 65 20 62 61 6e 64 77 69 64 74 68 20 73 68 61 70 69 6e 67 20 76 69 61 | .to.enable.bandwidth.shaping.via |
| 149a20 | 20 52 41 44 49 55 53 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 | .RADIUS..Use.this.command.to.ena |
| 149a40 | 62 6c 65 20 70 72 6f 78 79 20 41 64 64 72 65 73 73 20 52 65 73 6f 6c 75 74 69 6f 6e 20 50 72 6f | ble.proxy.Address.Resolution.Pro |
| 149a60 | 74 6f 63 6f 6c 20 28 41 52 50 29 20 6f 6e 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 2e 20 50 | tocol.(ARP).on.this.interface..P |
| 149a80 | 72 6f 78 79 20 41 52 50 20 61 6c 6c 6f 77 73 20 61 6e 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 | roxy.ARP.allows.an.Ethernet.inte |
| 149aa0 | 72 66 61 63 65 20 74 6f 20 72 65 73 70 6f 6e 64 20 77 69 74 68 20 69 74 73 20 6f 77 6e 20 3a 61 | rface.to.respond.with.its.own.:a |
| 149ac0 | 62 62 72 3a 60 4d 41 43 20 28 4d 65 64 69 61 20 41 63 63 65 73 73 20 43 6f 6e 74 72 6f 6c 29 60 | bbr:`MAC.(Media.Access.Control)` |
| 149ae0 | 20 61 64 64 72 65 73 73 20 74 6f 20 41 52 50 20 72 65 71 75 65 73 74 73 20 66 6f 72 20 64 65 73 | .address.to.ARP.requests.for.des |
| 149b00 | 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 72 65 73 73 65 73 20 6f 6e 20 73 75 62 6e 65 74 73 | tination.IP.addresses.on.subnets |
| 149b20 | 20 61 74 74 61 63 68 65 64 20 74 6f 20 6f 74 68 65 72 20 69 6e 74 65 72 66 61 63 65 73 20 6f 6e | .attached.to.other.interfaces.on |
| 149b40 | 20 74 68 65 20 73 79 73 74 65 6d 2e 20 53 75 62 73 65 71 75 65 6e 74 20 70 61 63 6b 65 74 73 20 | .the.system..Subsequent.packets. |
| 149b60 | 73 65 6e 74 20 74 6f 20 74 68 6f 73 65 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 49 50 20 61 64 64 | sent.to.those.destination.IP.add |
| 149b80 | 72 65 73 73 65 73 20 61 72 65 20 66 6f 72 77 61 72 64 65 64 20 61 70 70 72 6f 70 72 69 61 74 65 | resses.are.forwarded.appropriate |
| 149ba0 | 6c 79 20 62 79 20 74 68 65 20 73 79 73 74 65 6d 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | ly.by.the.system..Use.this.comma |
| 149bc0 | 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 61 72 67 65 74 65 64 20 4c 44 50 20 73 65 73 73 69 6f | nd.to.enable.targeted.LDP.sessio |
| 149be0 | 6e 73 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 2e 20 54 68 65 20 72 6f 75 74 | ns.to.the.local.router..The.rout |
| 149c00 | 65 72 20 77 69 6c 6c 20 74 68 65 6e 20 72 65 73 70 6f 6e 64 20 74 6f 20 61 6e 79 20 73 65 73 73 | er.will.then.respond.to.any.sess |
| 149c20 | 69 6f 6e 73 20 74 68 61 74 20 61 72 65 20 74 72 79 69 6e 67 20 74 6f 20 63 6f 6e 6e 65 63 74 20 | ions.that.are.trying.to.connect. |
| 149c40 | 74 6f 20 69 74 20 74 68 61 74 20 61 72 65 20 6e 6f 74 20 61 20 6c 69 6e 6b 20 6c 6f 63 61 6c 20 | to.it.that.are.not.a.link.local. |
| 149c60 | 74 79 70 65 20 6f 66 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 | type.of.TCP.connection..Use.this |
| 149c80 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 64 65 6c 61 79 20 6f 66 20 | .command.to.enable.the.delay.of. |
| 149ca0 | 50 41 44 4f 20 28 50 50 50 6f 45 20 41 63 74 69 76 65 20 44 69 73 63 6f 76 65 72 79 20 4f 66 66 | PADO.(PPPoE.Active.Discovery.Off |
| 149cc0 | 65 72 29 20 70 61 63 6b 65 74 73 2c 20 77 68 69 63 68 20 63 61 6e 20 62 65 20 75 73 65 64 20 61 | er).packets,.which.can.be.used.a |
| 149ce0 | 73 20 61 20 73 65 73 73 69 6f 6e 20 62 61 6c 61 6e 63 69 6e 67 20 6d 65 63 68 61 6e 69 73 6d 20 | s.a.session.balancing.mechanism. |
| 149d00 | 77 69 74 68 20 6f 74 68 65 72 20 50 50 50 6f 45 20 73 65 72 76 65 72 73 2e 00 55 73 65 20 74 68 | with.other.PPPoE.servers..Use.th |
| 149d20 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 63 61 6c 20 72 | is.command.to.enable.the.local.r |
| 149d40 | 6f 75 74 65 72 20 74 6f 20 74 72 79 20 61 6e 64 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 20 61 20 | outer.to.try.and.connect.with.a. |
| 149d60 | 74 61 72 67 65 74 65 64 20 4c 44 50 20 73 65 73 73 69 6f 6e 20 74 6f 20 61 6e 6f 74 68 65 72 20 | targeted.LDP.session.to.another. |
| 149d80 | 72 6f 75 74 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 | router..Use.this.command.to.enab |
| 149da0 | 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 | le.the.logging.of.the.default.ac |
| 149dc0 | 74 69 6f 6e 20 6f 6e 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 73 2e 00 55 73 65 20 74 68 69 73 20 | tion.on.custom.chains..Use.this. |
| 149de0 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 | command.to.enable.the.logging.of |
| 149e00 | 20 74 68 65 20 64 65 66 61 75 6c 74 20 61 63 74 69 6f 6e 20 6f 6e 20 74 68 65 20 73 70 65 63 69 | .the.default.action.on.the.speci |
| 149e20 | 66 69 65 64 20 63 68 61 69 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | fied.chain..Use.this.command.to. |
| 149e40 | 65 6e 61 62 6c 65 20 74 68 65 20 6c 6f 67 67 69 6e 67 20 6f 66 20 74 68 65 20 64 65 66 61 75 6c | enable.the.logging.of.the.defaul |
| 149e60 | 74 20 61 63 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 65 6e | t.action..Use.this.command.to.en |
| 149e80 | 61 62 6c 65 2c 20 64 69 73 61 62 6c 65 2c 20 6f 72 20 73 70 65 63 69 66 79 20 68 6f 70 20 63 6f | able,.disable,.or.specify.hop.co |
| 149ea0 | 75 6e 74 20 66 6f 72 20 54 54 4c 20 73 65 63 75 72 69 74 79 20 66 6f 72 20 4c 44 50 20 70 65 65 | unt.for.TTL.security.for.LDP.pee |
| 149ec0 | 72 73 2e 20 42 79 20 64 65 66 61 75 6c 74 20 74 68 65 20 76 61 6c 75 65 20 69 73 20 73 65 74 20 | rs..By.default.the.value.is.set. |
| 149ee0 | 74 6f 20 32 35 35 20 28 6f 72 20 6d 61 78 20 54 54 4c 29 2e 00 55 73 65 20 74 68 69 73 20 63 6f | to.255.(or.max.TTL)..Use.this.co |
| 149f00 | 6d 6d 61 6e 64 20 74 6f 20 66 6c 75 73 68 20 74 68 65 20 6b 65 72 6e 65 6c 20 49 50 76 36 20 72 | mmand.to.flush.the.kernel.IPv6.r |
| 149f20 | 6f 75 74 65 20 63 61 63 68 65 2e 20 41 6e 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 64 | oute.cache..An.address.can.be.ad |
| 149f40 | 64 65 64 20 74 6f 20 66 6c 75 73 68 20 69 74 20 6f 6e 6c 79 20 66 6f 72 20 74 68 61 74 20 72 6f | ded.to.flush.it.only.for.that.ro |
| 149f60 | 75 74 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 61 6e 20 | ute..Use.this.command.to.get.an. |
| 149f80 | 6f 76 65 72 76 69 65 77 20 6f 66 20 61 20 7a 6f 6e 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d | overview.of.a.zone..Use.this.com |
| 149fa0 | 6d 61 6e 64 20 74 6f 20 67 65 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 4f 53 | mand.to.get.information.about.OS |
| 149fc0 | 50 46 76 33 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 67 65 74 20 69 6e | PFv3..Use.this.command.to.get.in |
| 149fe0 | 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 74 68 65 20 52 49 50 4e 47 20 70 72 6f 74 6f 63 | formation.about.the.RIPNG.protoc |
| 14a000 | 6f 6c 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 6e 73 74 72 75 63 74 20 | ol.Use.this.command.to.instruct. |
| 14a020 | 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 65 73 74 61 62 6c 69 73 68 20 61 20 50 50 50 6f 45 20 | the.system.to.establish.a.PPPoE. |
| 14a040 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 6f 6e 63 65 20 74 72 | connection.automatically.once.tr |
| 14a060 | 61 66 66 69 63 20 70 61 73 73 65 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 69 6e 74 65 72 66 61 | affic.passes.through.the.interfa |
| 14a080 | 63 65 2e 20 41 20 64 69 73 61 62 6c 65 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 63 6f 6e 6e 65 63 74 | ce..A.disabled.on-demand.connect |
| 14a0a0 | 69 6f 6e 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 20 61 74 20 62 6f 6f 74 20 74 69 6d 65 20 | ion.is.established.at.boot.time. |
| 14a0c0 | 61 6e 64 20 72 65 6d 61 69 6e 73 20 75 70 2e 20 49 66 20 74 68 65 20 6c 69 6e 6b 20 66 61 69 6c | and.remains.up..If.the.link.fail |
| 14a0e0 | 73 20 66 6f 72 20 61 6e 79 20 72 65 61 73 6f 6e 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 | s.for.any.reason,.the.link.is.br |
| 14a100 | 6f 75 67 68 74 20 62 61 63 6b 20 75 70 20 69 6d 6d 65 64 69 61 74 65 6c 79 2e 00 55 73 65 20 74 | ought.back.up.immediately..Use.t |
| 14a120 | 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 69 6e 6b 20 74 68 65 20 50 50 50 6f 45 20 63 6f | his.command.to.link.the.PPPoE.co |
| 14a140 | 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 | nnection.to.a.physical.interface |
| 14a160 | 2e 20 45 61 63 68 20 50 50 50 6f 45 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6d 75 73 74 20 62 65 20 | ..Each.PPPoE.connection.must.be. |
| 14a180 | 65 73 74 61 62 6c 69 73 68 65 64 20 6f 76 65 72 20 61 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 | established.over.a.physical.inte |
| 14a1a0 | 72 66 61 63 65 2e 20 49 6e 74 65 72 66 61 63 65 73 20 63 61 6e 20 62 65 20 72 65 67 75 6c 61 72 | rface..Interfaces.can.be.regular |
| 14a1c0 | 20 45 74 68 65 72 6e 65 74 20 69 6e 74 65 72 66 61 63 65 73 2c 20 56 49 46 73 20 6f 72 20 62 6f | .Ethernet.interfaces,.VIFs.or.bo |
| 14a1e0 | 6e 64 69 6e 67 20 69 6e 74 65 72 66 61 63 65 73 2f 56 49 46 73 2e 00 55 73 65 20 74 68 69 73 20 | nding.interfaces/VIFs..Use.this. |
| 14a200 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 | command.to.locally.check.the.act |
| 14a220 | 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 49 50 6f 45 20 73 65 72 76 65 72 2e | ive.sessions.in.the.IPoE.server. |
| 14a240 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 65 | .Use.this.command.to.locally.che |
| 14a260 | 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 50 50 | ck.the.active.sessions.in.the.PP |
| 14a280 | 50 6f 45 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | PoE.server..Use.this.command.to. |
| 14a2a0 | 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 76 65 20 73 65 73 73 69 6f 6e | locally.check.the.active.session |
| 14a2c0 | 73 20 69 6e 20 74 68 65 20 50 50 54 50 20 73 65 72 76 65 72 2e 00 55 73 65 20 74 68 69 73 20 63 | s.in.the.PPTP.server..Use.this.c |
| 14a2e0 | 6f 6d 6d 61 6e 64 20 74 6f 20 6c 6f 63 61 6c 6c 79 20 63 68 65 63 6b 20 74 68 65 20 61 63 74 69 | ommand.to.locally.check.the.acti |
| 14a300 | 76 65 20 73 65 73 73 69 6f 6e 73 20 69 6e 20 74 68 65 20 53 53 54 50 20 73 65 72 76 65 72 2e 00 | ve.sessions.in.the.SSTP.server.. |
| 14a320 | 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 63 6f 6e | Use.this.command.to.manually.con |
| 14a340 | 66 69 67 75 72 65 20 61 20 52 65 6e 64 65 7a 76 6f 75 73 20 50 6f 69 6e 74 20 66 6f 72 20 50 49 | figure.a.Rendezvous.Point.for.PI |
| 14a360 | 4d 20 73 6f 20 74 68 61 74 20 6a 6f 69 6e 20 6d 65 73 73 61 67 65 73 20 63 61 6e 20 62 65 20 73 | M.so.that.join.messages.can.be.s |
| 14a380 | 65 6e 74 20 74 68 65 72 65 2e 20 53 65 74 20 74 68 65 20 52 65 6e 64 65 76 6f 75 7a 20 50 6f 69 | ent.there..Set.the.Rendevouz.Poi |
| 14a3a0 | 6e 74 20 61 64 64 72 65 73 73 20 61 6e 64 20 74 68 65 20 6d 61 74 63 68 69 6e 67 20 70 72 65 66 | nt.address.and.the.matching.pref |
| 14a3c0 | 69 78 20 6f 66 20 67 72 6f 75 70 20 72 61 6e 67 65 73 20 63 6f 76 65 72 65 64 2e 20 54 68 65 73 | ix.of.group.ranges.covered..Thes |
| 14a3e0 | 65 20 76 61 6c 75 65 73 20 6d 75 73 74 20 62 65 20 73 68 61 72 65 64 20 77 69 74 68 20 65 76 65 | e.values.must.be.shared.with.eve |
| 14a400 | 72 79 20 72 6f 75 74 65 72 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 69 6e 20 74 68 65 20 50 | ry.router.participating.in.the.P |
| 14a420 | 49 4d 20 6e 65 74 77 6f 72 6b 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | IM.network..Use.this.command.to. |
| 14a440 | 6e 6f 74 20 69 6e 73 74 61 6c 6c 20 61 64 76 65 72 74 69 73 65 64 20 44 4e 53 20 6e 61 6d 65 73 | not.install.advertised.DNS.names |
| 14a460 | 65 72 76 65 72 73 20 69 6e 74 6f 20 74 68 65 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 2e 00 55 73 | ervers.into.the.local.system..Us |
| 14a480 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 70 72 65 66 65 72 20 49 50 76 34 20 66 6f | e.this.command.to.prefer.IPv4.fo |
| 14a4a0 | 72 20 54 43 50 20 70 65 65 72 20 74 72 61 6e 73 70 6f 72 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | r.TCP.peer.transport.connection. |
| 14a4c0 | 66 6f 72 20 4c 44 50 20 77 68 65 6e 20 62 6f 74 68 20 61 6e 20 49 50 76 34 20 61 6e 64 20 49 50 | for.LDP.when.both.an.IPv4.and.IP |
| 14a4e0 | 76 36 20 4c 44 50 20 61 64 64 72 65 73 73 20 61 72 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e | v6.LDP.address.are.configured.on |
| 14a500 | 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f | .the.same.interface..Use.this.co |
| 14a520 | 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 49 50 76 36 20 4e 65 69 67 68 62 6f 72 20 44 69 73 | mmand.to.reset.IPv6.Neighbor.Dis |
| 14a540 | 63 6f 76 65 72 79 20 50 72 6f 74 6f 63 6f 6c 20 63 61 63 68 65 20 66 6f 72 20 61 6e 20 61 64 64 | covery.Protocol.cache.for.an.add |
| 14a560 | 72 65 73 73 20 6f 72 20 69 6e 74 65 72 66 61 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d | ress.or.interface..Use.this.comm |
| 14a580 | 61 6e 64 20 74 6f 20 72 65 73 65 74 20 61 6e 20 4c 44 50 20 6e 65 69 67 68 62 6f 72 2f 54 43 50 | and.to.reset.an.LDP.neighbor/TCP |
| 14a5a0 | 20 73 65 73 73 69 6f 6e 20 74 68 61 74 20 69 73 20 65 73 74 61 62 6c 69 73 68 65 64 00 55 73 65 | .session.that.is.established.Use |
| 14a5c0 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 74 68 65 20 4f 70 65 6e 56 | .this.command.to.reset.the.OpenV |
| 14a5e0 | 50 4e 20 70 72 6f 63 65 73 73 20 6f 6e 20 61 20 73 70 65 63 69 66 69 63 20 69 6e 74 65 72 66 61 | PN.process.on.a.specific.interfa |
| 14a600 | 63 65 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 65 74 20 74 68 | ce..Use.this.command.to.reset.th |
| 14a620 | 65 20 73 70 65 63 69 66 69 65 64 20 4f 70 65 6e 56 50 4e 20 63 6c 69 65 6e 74 2e 00 55 73 65 20 | e.specified.OpenVPN.client..Use. |
| 14a640 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 72 65 73 74 72 69 63 74 20 74 68 65 20 50 50 50 | this.command.to.restrict.the.PPP |
| 14a660 | 6f 45 20 73 65 73 73 69 6f 6e 20 6f 6e 20 61 20 67 69 76 65 6e 20 61 63 63 65 73 73 20 63 6f 6e | oE.session.on.a.given.access.con |
| 14a680 | 63 65 6e 74 72 61 74 6f 72 2e 20 4e 6f 72 6d 61 6c 6c 79 2c 20 61 20 68 6f 73 74 20 73 65 6e 64 | centrator..Normally,.a.host.send |
| 14a6a0 | 73 20 61 20 50 50 50 6f 45 20 69 6e 69 74 69 61 74 69 6f 6e 20 70 61 63 6b 65 74 20 74 6f 20 73 | s.a.PPPoE.initiation.packet.to.s |
| 14a6c0 | 74 61 72 74 20 74 68 65 20 50 50 50 6f 45 20 64 69 73 63 6f 76 65 72 79 20 70 72 6f 63 65 73 73 | tart.the.PPPoE.discovery.process |
| 14a6e0 | 2c 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f | ,.a.number.of.access.concentrato |
| 14a700 | 72 73 20 72 65 73 70 6f 6e 64 20 77 69 74 68 20 6f 66 66 65 72 20 70 61 63 6b 65 74 73 20 61 6e | rs.respond.with.offer.packets.an |
| 14a720 | 64 20 74 68 65 20 68 6f 73 74 20 73 65 6c 65 63 74 73 20 6f 6e 65 20 6f 66 20 74 68 65 20 72 65 | d.the.host.selects.one.of.the.re |
| 14a740 | 73 70 6f 6e 64 69 6e 67 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 74 6f | sponding.access.concentrators.to |
| 14a760 | 20 73 65 72 76 65 20 74 68 69 73 20 73 65 73 73 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f | .serve.this.session..Use.this.co |
| 14a780 | 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 4c 44 50 20 69 6e 74 65 72 66 61 63 65 20 69 6e 66 6f 72 | mmand.to.see.LDP.interface.infor |
| 14a7a0 | 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 4c | mation.Use.this.command.to.see.L |
| 14a7c0 | 44 50 20 6e 65 69 67 68 62 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 73 | DP.neighbor.information.Use.this |
| 14a7e0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 64 65 74 61 69 6c 65 64 20 4c 44 50 20 6e 65 69 | .command.to.see.detailed.LDP.nei |
| 14a800 | 67 68 62 6f 72 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 | ghbor.information.Use.this.comma |
| 14a820 | 6e 64 20 74 6f 20 73 65 65 20 64 69 73 63 6f 76 65 72 79 20 68 65 6c 6c 6f 20 69 6e 66 6f 72 6d | nd.to.see.discovery.hello.inform |
| 14a840 | 61 74 69 6f 6e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 65 20 74 68 | ation.Use.this.command.to.see.th |
| 14a860 | 65 20 4c 61 62 65 6c 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 42 61 73 65 2e 00 55 73 65 20 74 68 | e.Label.Information.Base..Use.th |
| 14a880 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 61 20 6e 61 6d 65 20 66 6f 72 20 74 68 69 | is.command.to.set.a.name.for.thi |
| 14a8a0 | 73 20 50 50 50 6f 45 2d 73 65 72 76 65 72 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 | s.PPPoE-server.access.concentrat |
| 14a8c0 | 6f 72 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 72 65 2d 64 | or..Use.this.command.to.set.re-d |
| 14a8e0 | 69 61 6c 20 64 65 6c 61 79 20 74 69 6d 65 20 74 6f 20 62 65 20 75 73 65 64 20 77 69 74 68 20 70 | ial.delay.time.to.be.used.with.p |
| 14a900 | 65 72 73 69 73 74 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 73 2e 20 57 68 65 6e 20 74 68 65 20 | ersist.PPPoE.sessions..When.the. |
| 14a920 | 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 20 69 73 20 74 65 72 6d 69 6e 61 74 65 64 20 62 79 20 70 | PPPoE.session.is.terminated.by.p |
| 14a940 | 65 65 72 2c 20 61 6e 64 20 6f 6e 2d 64 65 6d 61 6e 64 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 | eer,.and.on-demand.option.is.not |
| 14a960 | 20 73 65 74 2c 20 74 68 65 20 72 6f 75 74 65 72 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f | .set,.the.router.will.attempt.to |
| 14a980 | 20 72 65 2d 65 73 74 61 62 6c 69 73 68 20 74 68 65 20 50 50 50 6f 45 20 6c 69 6e 6b 2e 00 55 73 | .re-establish.the.PPPoE.link..Us |
| 14a9a0 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 20 61 64 64 | e.this.command.to.set.the.IP.add |
| 14a9c0 | 72 65 73 73 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 65 6e 64 70 6f 69 6e 74 20 6f 66 20 61 20 | ress.of.the.local.endpoint.of.a. |
| 14a9e0 | 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 20 73 65 74 20 | PPPoE.session..If.it.is.not.set. |
| 14aa00 | 69 74 20 77 69 6c 6c 20 62 65 20 6e 65 67 6f 74 69 61 74 65 64 2e 00 55 73 65 20 74 68 69 73 20 | it.will.be.negotiated..Use.this. |
| 14aa20 | 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 66 | command.to.set.the.IP.address.of |
| 14aa40 | 20 74 68 65 20 72 65 6d 6f 74 65 20 65 6e 64 70 6f 69 6e 74 20 6f 66 20 61 20 50 50 50 6f 45 20 | .the.remote.endpoint.of.a.PPPoE. |
| 14aa60 | 73 65 73 73 69 6f 6e 2e 20 49 66 20 69 74 20 69 73 20 6e 6f 74 20 73 65 74 20 69 74 20 77 69 6c | session..If.it.is.not.set.it.wil |
| 14aa80 | 6c 20 62 65 20 6e 65 67 6f 74 69 61 74 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | l.be.negotiated..Use.this.comman |
| 14aaa0 | 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 | d.to.set.the.IPv4.or.IPv6.addres |
| 14aac0 | 73 20 6f 66 20 65 76 65 72 79 20 44 6f 6d 61 6e 20 4e 61 6d 65 20 53 65 72 76 65 72 20 79 6f 75 | s.of.every.Doman.Name.Server.you |
| 14aae0 | 20 77 61 6e 74 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 2e 20 54 68 65 79 20 77 69 6c 6c 20 62 65 | .want.to.configure..They.will.be |
| 14ab00 | 20 70 72 6f 70 61 67 61 74 65 64 20 74 6f 20 50 50 50 6f 45 20 63 6c 69 65 6e 74 73 2e 00 55 73 | .propagated.to.PPPoE.clients..Us |
| 14ab20 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 49 50 76 34 20 6f | e.this.command.to.set.the.IPv4.o |
| 14ab40 | 72 20 49 50 76 36 20 74 72 61 6e 73 70 6f 72 74 2d 61 64 64 72 65 73 73 20 75 73 65 64 20 62 79 | r.IPv6.transport-address.used.by |
| 14ab60 | 20 4c 44 50 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 | .LDP..Use.this.command.to.set.th |
| 14ab80 | 65 20 69 64 6c 65 20 74 69 6d 65 6f 75 74 20 69 6e 74 65 72 76 61 6c 20 74 6f 20 62 65 20 75 73 | e.idle.timeout.interval.to.be.us |
| 14aba0 | 65 64 20 77 69 74 68 20 6f 6e 2d 64 65 6d 61 6e 64 20 50 50 50 6f 45 20 73 65 73 73 69 6f 6e 73 | ed.with.on-demand.PPPoE.sessions |
| 14abc0 | 2e 20 57 68 65 6e 20 61 6e 20 6f 6e 2d 64 65 6d 61 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 | ..When.an.on-demand.connection.i |
| 14abe0 | 73 20 65 73 74 61 62 6c 69 73 68 65 64 2c 20 74 68 65 20 6c 69 6e 6b 20 69 73 20 62 72 6f 75 67 | s.established,.the.link.is.broug |
| 14ac00 | 68 74 20 75 70 20 6f 6e 6c 79 20 77 68 65 6e 20 74 72 61 66 66 69 63 20 69 73 20 73 65 6e 74 20 | ht.up.only.when.traffic.is.sent. |
| 14ac20 | 61 6e 64 20 69 73 20 64 69 73 61 62 6c 65 64 20 77 68 65 6e 20 74 68 65 20 6c 69 6e 6b 20 69 73 | and.is.disabled.when.the.link.is |
| 14ac40 | 20 69 64 6c 65 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 76 61 6c 20 73 70 65 63 69 66 69 65 64 | .idle.for.the.interval.specified |
| 14ac60 | 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 70 61 | ..Use.this.command.to.set.the.pa |
| 14ac80 | 73 73 77 6f 72 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 77 69 74 68 20 61 | ssword.for.authenticating.with.a |
| 14aca0 | 20 72 65 6d 6f 74 65 20 50 50 50 6f 45 20 65 6e 64 70 6f 69 6e 74 2e 20 41 75 74 68 65 6e 74 69 | .remote.PPPoE.endpoint..Authenti |
| 14acc0 | 63 61 74 69 6f 6e 20 69 73 20 6f 70 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 74 68 65 20 73 79 73 74 | cation.is.optional.from.the.syst |
| 14ace0 | 65 6d 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 20 62 75 74 20 6d 6f 73 74 20 73 65 72 76 | em's.point.of.view.but.most.serv |
| 14ad00 | 69 63 65 20 70 72 6f 76 69 64 65 72 73 20 72 65 71 75 69 72 65 20 69 74 2e 00 55 73 65 20 74 68 | ice.providers.require.it..Use.th |
| 14ad20 | 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 74 61 72 67 65 74 20 74 6f 20 | is.command.to.set.the.target.to. |
| 14ad40 | 75 73 65 2e 20 41 63 74 69 6f 6e 20 71 75 65 75 65 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 | use..Action.queue.must.be.define |
| 14ad60 | 64 20 74 6f 20 75 73 65 20 74 68 69 73 20 73 65 74 74 69 6e 67 00 55 73 65 20 74 68 69 73 20 63 | d.to.use.this.setting.Use.this.c |
| 14ad80 | 6f 6d 6d 61 6e 64 20 74 6f 20 73 65 74 20 74 68 65 20 75 73 65 72 6e 61 6d 65 20 66 6f 72 20 61 | ommand.to.set.the.username.for.a |
| 14ada0 | 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 77 69 74 68 20 61 20 72 65 6d 6f 74 65 20 50 50 50 6f | uthenticating.with.a.remote.PPPo |
| 14adc0 | 45 20 65 6e 64 70 6f 69 6e 74 2e 20 41 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 6f 70 | E.endpoint..Authentication.is.op |
| 14ade0 | 74 69 6f 6e 61 6c 20 66 72 6f 6d 20 74 68 65 20 73 79 73 74 65 6d 27 73 20 70 6f 69 6e 74 20 6f | tional.from.the.system's.point.o |
| 14ae00 | 66 20 76 69 65 77 20 62 75 74 20 6d 6f 73 74 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 64 65 72 | f.view.but.most.service.provider |
| 14ae20 | 73 20 72 65 71 75 69 72 65 20 69 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 | s.require.it..Use.this.command.t |
| 14ae40 | 6f 20 73 68 6f 77 20 49 50 76 36 20 42 6f 72 64 65 72 20 47 61 74 65 77 61 79 20 50 72 6f 74 6f | o.show.IPv6.Border.Gateway.Proto |
| 14ae60 | 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e | col.information..Use.this.comman |
| 14ae80 | 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 4e 65 69 67 68 62 6f 72 20 44 69 73 63 6f 76 65 72 | d.to.show.IPv6.Neighbor.Discover |
| 14aea0 | 79 20 50 72 6f 74 6f 63 6f 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2e 00 55 73 65 20 74 68 69 73 | y.Protocol.information..Use.this |
| 14aec0 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 20 66 6f 72 77 61 72 64 69 6e 67 | .command.to.show.IPv6.forwarding |
| 14aee0 | 20 73 74 61 74 75 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f | .status..Use.this.command.to.sho |
| 14af00 | 77 20 49 50 76 36 20 6d 75 6c 74 69 63 61 73 74 20 67 72 6f 75 70 20 6d 65 6d 62 65 72 73 68 69 | w.IPv6.multicast.group.membershi |
| 14af20 | 70 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 49 50 76 36 | p..Use.this.command.to.show.IPv6 |
| 14af40 | 20 72 6f 75 74 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f | .routes..Use.this.command.to.sho |
| 14af60 | 77 20 61 6c 6c 20 49 50 76 36 20 61 63 63 65 73 73 20 6c 69 73 74 73 00 55 73 65 20 74 68 69 73 | w.all.IPv6.access.lists.Use.this |
| 14af80 | 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 61 6c 6c 20 49 50 76 36 20 70 72 65 66 69 78 | .command.to.show.all.IPv6.prefix |
| 14afa0 | 20 6c 69 73 74 73 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 68 6f 77 20 | .lists.Use.this.command.to.show. |
| 14afc0 | 74 68 65 20 73 74 61 74 75 73 20 6f 66 20 74 68 65 20 52 49 50 4e 47 20 70 72 6f 74 6f 63 6f 6c | the.status.of.the.RIPNG.protocol |
| 14afe0 | 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 44 | .Use.this.command.to.specify.a.D |
| 14b000 | 4e 53 20 73 65 72 76 65 72 20 66 6f 72 20 74 68 65 20 73 79 73 74 65 6d 20 74 6f 20 62 65 20 75 | NS.server.for.the.system.to.be.u |
| 14b020 | 73 65 64 20 66 6f 72 20 44 4e 53 20 6c 6f 6f 6b 75 70 73 2e 20 4d 6f 72 65 20 74 68 61 6e 20 6f | sed.for.DNS.lookups..More.than.o |
| 14b040 | 6e 65 20 44 4e 53 20 73 65 72 76 65 72 20 63 61 6e 20 62 65 20 61 64 64 65 64 2c 20 63 6f 6e 66 | ne.DNS.server.can.be.added,.conf |
| 14b060 | 69 67 75 72 69 6e 67 20 6f 6e 65 20 61 74 20 61 20 74 69 6d 65 2e 20 42 6f 74 68 20 49 50 76 34 | iguring.one.at.a.time..Both.IPv4 |
| 14b080 | 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 20 61 72 65 20 73 75 70 70 6f 72 74 65 | .and.IPv6.addresses.are.supporte |
| 14b0a0 | 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 70 65 63 69 66 79 20 61 | d..Use.this.command.to.specify.a |
| 14b0c0 | 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 74 6f 20 62 65 20 61 70 70 65 6e 64 65 64 20 74 6f 20 64 | .domain.name.to.be.appended.to.d |
| 14b0e0 | 6f 6d 61 69 6e 2d 6e 61 6d 65 73 20 77 69 74 68 69 6e 20 55 52 4c 73 20 74 68 61 74 20 64 6f 20 | omain-names.within.URLs.that.do. |
| 14b100 | 6e 6f 74 20 69 6e 63 6c 75 64 65 20 61 20 64 6f 74 20 60 60 2e 60 60 20 74 68 65 20 64 6f 6d 61 | not.include.a.dot.``.``.the.doma |
| 14b120 | 69 6e 20 69 73 20 61 70 70 65 6e 64 65 64 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 | in.is.appended..Use.this.command |
| 14b140 | 20 74 6f 20 73 70 65 63 69 66 79 20 61 20 73 65 72 76 69 63 65 20 6e 61 6d 65 20 62 79 20 77 68 | .to.specify.a.service.name.by.wh |
| 14b160 | 69 63 68 20 74 68 65 20 6c 6f 63 61 6c 20 50 50 50 6f 45 20 69 6e 74 65 72 66 61 63 65 20 63 61 | ich.the.local.PPPoE.interface.ca |
| 14b180 | 6e 20 73 65 6c 65 63 74 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 73 20 74 6f | n.select.access.concentrators.to |
| 14b1a0 | 20 63 6f 6e 6e 65 63 74 20 77 69 74 68 2e 20 49 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 | .connect.with..It.will.connect.t |
| 14b1c0 | 6f 20 61 6e 79 20 61 63 63 65 73 73 20 63 6f 6e 63 65 6e 74 72 61 74 6f 72 20 69 66 20 6e 6f 74 | o.any.access.concentrator.if.not |
| 14b1e0 | 20 73 65 74 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 20 4c 61 | .set..Use.this.command.to.use.La |
| 14b200 | 79 65 72 20 34 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 49 50 76 34 20 45 43 4d 50 20 | yer.4.information.for.IPv4.ECMP. |
| 14b220 | 68 61 73 68 69 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 | hashing..Use.this.command.to.use |
| 14b240 | 20 61 20 43 69 73 63 6f 20 6e 6f 6e 2d 63 6f 6d 70 6c 69 61 6e 74 20 66 6f 72 6d 61 74 20 74 6f | .a.Cisco.non-compliant.format.to |
| 14b260 | 20 73 65 6e 64 20 61 6e 64 20 69 6e 74 65 72 70 72 65 74 20 74 68 65 20 44 75 61 6c 2d 53 74 61 | .send.and.interpret.the.Dual-Sta |
| 14b280 | 63 6b 20 63 61 70 61 62 69 6c 69 74 79 20 54 4c 56 20 66 6f 72 20 49 50 76 36 20 4c 44 50 20 63 | ck.capability.TLV.for.IPv6.LDP.c |
| 14b2a0 | 6f 6d 6d 75 6e 69 63 61 74 69 6f 6e 73 2e 20 54 68 69 73 20 69 73 20 72 65 6c 61 74 65 64 20 74 | ommunications..This.is.related.t |
| 14b2c0 | 6f 20 3a 72 66 63 3a 60 37 35 35 32 60 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 | o.:rfc:`7552`..Use.this.command. |
| 14b2e0 | 74 6f 20 75 73 65 20 6f 72 64 65 72 65 64 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 6f | to.use.ordered.label.distributio |
| 14b300 | 6e 20 63 6f 6e 74 72 6f 6c 20 6d 6f 64 65 2e 20 46 52 52 20 62 79 20 64 65 66 61 75 6c 74 20 75 | n.control.mode..FRR.by.default.u |
| 14b320 | 73 65 73 20 69 6e 64 65 70 65 6e 64 65 6e 74 20 6c 61 62 65 6c 20 64 69 73 74 72 69 62 75 74 69 | ses.independent.label.distributi |
| 14b340 | 6f 6e 20 63 6f 6e 74 72 6f 6c 20 6d 6f 64 65 20 66 6f 72 20 6c 61 62 65 6c 20 64 69 73 74 72 69 | on.control.mode.for.label.distri |
| 14b360 | 62 75 74 69 6f 6e 2e 20 20 54 68 69 73 20 69 73 20 72 65 6c 61 74 65 64 20 74 6f 20 3a 72 66 63 | bution...This.is.related.to.:rfc |
| 14b380 | 3a 60 35 30 33 36 60 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 75 73 65 | :`5036`..Use.this.command.to.use |
| 14b3a0 | 72 20 4c 61 79 65 72 20 34 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 45 43 4d 50 20 68 | r.Layer.4.information.for.ECMP.h |
| 14b3c0 | 61 73 68 69 6e 67 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 | ashing..Use.this.command.to.view |
| 14b3e0 | 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 73 74 61 74 75 73 20 61 6e 64 20 64 65 74 61 69 6c 73 20 | .operational.status.and.details. |
| 14b400 | 77 69 72 65 6c 65 73 73 2d 73 70 65 63 69 66 69 63 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 | wireless-specific.information.ab |
| 14b420 | 6f 75 74 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 73 2e 00 55 73 65 | out.all.wireless.interfaces..Use |
| 14b440 | 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 6f 70 65 72 61 74 69 6f 6e 61 | .this.command.to.view.operationa |
| 14b460 | 6c 20 73 74 61 74 75 73 20 61 6e 64 20 77 69 72 65 6c 65 73 73 2d 73 70 65 63 69 66 69 63 20 69 | l.status.and.wireless-specific.i |
| 14b480 | 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 62 6f 75 74 20 61 6c 6c 20 77 69 72 65 6c 65 73 73 20 69 6e | nformation.about.all.wireless.in |
| 14b4a0 | 74 65 72 66 61 63 65 73 2e 00 55 73 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 | terfaces..Use.this.command.to.vi |
| 14b4c0 | 65 77 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 71 75 65 75 65 20 69 6e 66 6f | ew.wireless.interface.queue.info |
| 14b4e0 | 72 6d 61 74 69 6f 6e 2e 20 54 68 65 20 77 69 72 65 6c 65 73 73 20 69 6e 74 65 72 66 61 63 65 20 | rmation..The.wireless.interface. |
| 14b500 | 69 64 65 6e 74 69 66 69 65 72 20 63 61 6e 20 72 61 6e 67 65 20 66 72 6f 6d 20 77 6c 61 6e 30 20 | identifier.can.range.from.wlan0. |
| 14b520 | 74 6f 20 77 6c 61 6e 39 39 39 2e 00 55 73 65 64 20 66 6f 72 20 74 72 6f 75 62 6c 65 73 68 6f 6f | to.wlan999..Used.for.troubleshoo |
| 14b540 | 74 69 6e 67 2e 00 55 73 65 64 20 74 6f 20 62 6c 6f 63 6b 20 61 20 73 70 65 63 69 66 69 63 20 6d | ting..Used.to.block.a.specific.m |
| 14b560 | 69 6d 65 2d 74 79 70 65 2e 00 55 73 65 64 20 74 6f 20 62 6c 6f 63 6b 20 73 70 65 63 69 66 69 63 | ime-type..Used.to.block.specific |
| 14b580 | 20 64 6f 6d 61 69 6e 73 20 62 79 20 74 68 65 20 50 72 6f 78 79 2e 20 53 70 65 63 69 66 79 69 6e | .domains.by.the.Proxy..Specifyin |
| 14b5a0 | 67 20 22 76 79 6f 73 2e 6e 65 74 22 20 77 69 6c 6c 20 62 6c 6f 63 6b 20 61 6c 6c 20 61 63 63 65 | g."vyos.net".will.block.all.acce |
| 14b5c0 | 73 73 20 74 6f 20 76 79 6f 73 2e 6e 65 74 2c 20 61 6e 64 20 73 70 65 63 69 66 79 69 6e 67 20 22 | ss.to.vyos.net,.and.specifying." |
| 14b5e0 | 2e 78 78 78 22 20 77 69 6c 6c 20 62 6c 6f 63 6b 20 61 6c 6c 20 61 63 63 65 73 73 20 74 6f 20 55 | .xxx".will.block.all.access.to.U |
| 14b600 | 52 4c 73 20 68 61 76 69 6e 67 20 61 6e 20 55 52 4c 20 65 6e 64 69 6e 67 20 6f 6e 20 2e 78 78 78 | RLs.having.an.URL.ending.on..xxx |
| 14b620 | 2e 00 55 73 65 72 20 69 6e 74 65 72 66 61 63 65 20 63 61 6e 20 62 65 20 70 75 74 20 74 6f 20 56 | ..User.interface.can.be.put.to.V |
| 14b640 | 52 46 20 63 6f 6e 74 65 78 74 20 76 69 61 20 52 41 44 49 55 53 20 41 63 63 65 73 73 2d 41 63 63 | RF.context.via.RADIUS.Access-Acc |
| 14b660 | 65 70 74 20 70 61 63 6b 65 74 2c 20 6f 72 20 63 68 61 6e 67 65 20 69 74 20 76 69 61 20 52 41 44 | ept.packet,.or.change.it.via.RAD |
| 14b680 | 49 55 53 20 43 6f 41 2e 20 60 60 41 63 63 65 6c 2d 56 52 46 2d 4e 61 6d 65 60 60 20 69 73 20 75 | IUS.CoA..``Accel-VRF-Name``.is.u |
| 14b6a0 | 73 65 64 20 66 72 6f 6d 20 74 68 65 73 65 20 70 75 72 70 6f 73 65 73 2e 20 49 74 20 69 73 20 63 | sed.from.these.purposes..It.is.c |
| 14b6c0 | 75 73 74 6f 6d 20 60 41 43 43 45 4c 2d 50 50 50 20 61 74 74 72 69 62 75 74 65 60 5f 2e 20 44 65 | ustom.`ACCEL-PPP.attribute`_..De |
| 14b6e0 | 66 69 6e 65 20 69 74 20 69 6e 20 79 6f 75 72 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 55 | fine.it.in.your.RADIUS.server..U |
| 14b700 | 73 65 72 2d 6c 65 76 65 6c 20 6d 65 73 73 61 67 65 73 00 55 73 69 6e 67 20 27 73 6f 66 74 2d 72 | ser-level.messages.Using.'soft-r |
| 14b720 | 65 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 27 20 77 65 20 67 65 74 20 74 68 65 20 70 6f 6c 69 63 | econfiguration'.we.get.the.polic |
| 14b740 | 79 20 75 70 64 61 74 65 20 77 69 74 68 6f 75 74 20 62 6f 75 6e 63 69 6e 67 20 74 68 65 20 6e 65 | y.update.without.bouncing.the.ne |
| 14b760 | 69 67 68 62 6f 72 2e 00 55 73 69 6e 67 20 2a 2a 6f 70 65 6e 76 70 6e 2d 6f 70 74 69 6f 6e 20 2d | ighbor..Using.**openvpn-option.- |
| 14b780 | 72 65 6e 65 67 2d 73 65 63 2a 2a 20 63 61 6e 20 62 65 20 74 72 69 63 6b 79 2e 20 54 68 69 73 20 | reneg-sec**.can.be.tricky..This. |
| 14b7a0 | 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 6e 65 67 6f 74 69 61 74 65 20 64 61 | option.is.used.to.renegotiate.da |
| 14b7c0 | 74 61 20 63 68 61 6e 6e 65 6c 20 61 66 74 65 72 20 6e 20 73 65 63 6f 6e 64 73 2e 20 57 68 65 6e | ta.channel.after.n.seconds..When |
| 14b7e0 | 20 75 73 65 64 20 61 74 20 62 6f 74 68 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 65 6e 74 2c | .used.at.both.server.and.client, |
| 14b800 | 20 74 68 65 20 6c 6f 77 65 72 20 76 61 6c 75 65 20 77 69 6c 6c 20 74 72 69 67 67 65 72 20 74 68 | .the.lower.value.will.trigger.th |
| 14b820 | 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 49 66 20 79 6f 75 20 73 65 74 20 69 74 20 74 | e.renegotiation..If.you.set.it.t |
| 14b840 | 6f 20 30 20 6f 6e 20 6f 6e 65 20 73 69 64 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f | o.0.on.one.side.of.the.connectio |
| 14b860 | 6e 20 28 74 6f 20 64 69 73 61 62 6c 65 20 69 74 29 2c 20 74 68 65 20 63 68 6f 73 65 6e 20 76 61 | n.(to.disable.it),.the.chosen.va |
| 14b880 | 6c 75 65 20 6f 6e 20 74 68 65 20 6f 74 68 65 72 20 73 69 64 65 20 77 69 6c 6c 20 64 65 74 65 72 | lue.on.the.other.side.will.deter |
| 14b8a0 | 6d 69 6e 65 20 77 68 65 6e 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 20 77 69 6c 6c | mine.when.the.renegotiation.will |
| 14b8c0 | 20 6f 63 63 75 72 2e 00 55 73 69 6e 67 20 2a 2a 6f 70 65 6e 76 70 6e 2d 6f 70 74 69 6f 6e 20 2d | .occur..Using.**openvpn-option.- |
| 14b8e0 | 72 65 6e 65 67 2d 73 65 63 2a 2a 20 63 61 6e 20 62 65 20 74 72 69 63 6b 79 2e 20 54 68 69 73 20 | reneg-sec**.can.be.tricky..This. |
| 14b900 | 6f 70 74 69 6f 6e 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 6e 65 67 6f 74 69 61 74 65 20 64 61 | option.is.used.to.renegotiate.da |
| 14b920 | 74 61 20 63 68 61 6e 6e 65 6c 20 61 66 74 65 72 20 6e 20 73 65 63 6f 6e 64 73 2e 20 57 68 65 6e | ta.channel.after.n.seconds..When |
| 14b940 | 20 75 73 65 64 20 6f 6e 20 62 6f 74 68 20 74 68 65 20 73 65 72 76 65 72 20 61 6e 64 20 63 6c 69 | .used.on.both.the.server.and.cli |
| 14b960 | 65 6e 74 2c 20 74 68 65 20 6c 6f 77 65 72 20 76 61 6c 75 65 20 77 69 6c 6c 20 74 72 69 67 67 65 | ent,.the.lower.value.will.trigge |
| 14b980 | 72 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 49 66 20 79 6f 75 20 73 65 74 20 | r.the.renegotiation..If.you.set. |
| 14b9a0 | 69 74 20 74 6f 20 30 20 6f 6e 20 6f 6e 65 20 73 69 64 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 | it.to.0.on.one.side.of.the.conne |
| 14b9c0 | 63 74 69 6f 6e 20 28 74 6f 20 64 69 73 61 62 6c 65 20 69 74 29 2c 20 74 68 65 20 63 68 6f 73 65 | ction.(to.disable.it),.the.chose |
| 14b9e0 | 6e 20 76 61 6c 75 65 20 6f 6e 20 74 68 65 20 6f 74 68 65 72 20 73 69 64 65 20 77 69 6c 6c 20 64 | n.value.on.the.other.side.will.d |
| 14ba00 | 65 74 65 72 6d 69 6e 65 20 77 68 65 6e 20 74 68 65 20 72 65 6e 65 67 6f 74 69 61 74 69 6f 6e 20 | etermine.when.the.renegotiation. |
| 14ba20 | 77 69 6c 6c 20 6f 63 63 75 72 2e 00 55 73 69 6e 67 20 42 47 50 20 63 6f 6e 66 65 64 65 72 61 74 | will.occur..Using.BGP.confederat |
| 14ba40 | 69 6f 6e 00 55 73 69 6e 67 20 42 47 50 20 72 6f 75 74 65 2d 72 65 66 6c 65 63 74 6f 72 73 00 55 | ion.Using.BGP.route-reflectors.U |
| 14ba60 | 73 69 6e 67 20 44 79 6e 61 6d 69 63 20 46 69 72 65 77 61 6c 6c 20 47 72 6f 75 70 73 00 55 73 69 | sing.Dynamic.Firewall.Groups.Usi |
| 14ba80 | 6e 67 20 4e 65 74 46 6c 6f 77 20 6f 6e 20 72 6f 75 74 65 72 73 20 77 69 74 68 20 68 69 67 68 20 | ng.NetFlow.on.routers.with.high. |
| 14baa0 | 74 72 61 66 66 69 63 20 6c 65 76 65 6c 73 20 6d 61 79 20 6c 65 61 64 20 74 6f 20 68 69 67 68 20 | traffic.levels.may.lead.to.high. |
| 14bac0 | 43 50 55 20 75 73 61 67 65 20 61 6e 64 20 6d 61 79 20 61 66 66 65 63 74 20 74 68 65 20 72 6f 75 | CPU.usage.and.may.affect.the.rou |
| 14bae0 | 74 65 72 27 73 20 70 65 72 66 6f 72 6d 61 6e 63 65 2e 20 49 6e 20 73 75 63 68 20 63 61 73 65 73 | ter's.performance..In.such.cases |
| 14bb00 | 2c 20 63 6f 6e 73 69 64 65 72 20 75 73 69 6e 67 20 73 46 6c 6f 77 20 69 6e 73 74 65 61 64 2e 00 | ,.consider.using.sFlow.instead.. |
| 14bb20 | 55 73 69 6e 67 20 56 4c 41 4e 20 61 77 61 72 65 20 42 72 69 64 67 65 00 55 73 69 6e 67 20 61 64 | Using.VLAN.aware.Bridge.Using.ad |
| 14bb40 | 64 72 65 73 73 20 61 6e 64 20 70 6f 72 74 20 67 72 6f 75 70 73 20 61 6c 6c 6f 77 73 20 79 6f 75 | dress.and.port.groups.allows.you |
| 14bb60 | 20 74 6f 20 6d 61 6b 65 20 79 6f 75 72 20 53 75 72 69 63 61 74 61 20 63 6f 6e 66 69 67 75 72 61 | .to.make.your.Suricata.configura |
| 14bb80 | 74 69 6f 6e 20 6d 6f 72 65 20 66 6c 65 78 69 62 6c 65 20 61 6e 64 20 6d 61 6e 61 67 65 61 62 6c | tion.more.flexible.and.manageabl |
| 14bba0 | 65 2e 20 49 6e 73 74 65 61 64 20 6f 66 20 73 70 65 63 69 66 79 69 6e 67 20 49 50 20 61 64 64 72 | e..Instead.of.specifying.IP.addr |
| 14bbc0 | 65 73 73 65 73 20 61 6e 64 20 70 6f 72 74 73 20 64 69 72 65 63 74 6c 79 20 69 6e 20 65 61 63 68 | esses.and.ports.directly.in.each |
| 14bbe0 | 20 72 75 6c 65 2c 20 79 6f 75 20 63 61 6e 20 64 65 66 69 6e 65 20 74 68 65 6d 20 6f 6e 63 65 20 | .rule,.you.can.define.them.once. |
| 14bc00 | 69 6e 20 74 68 65 20 76 61 72 73 20 73 65 63 74 69 6f 6e 20 61 6e 64 20 74 68 65 6e 20 72 65 66 | in.the.vars.section.and.then.ref |
| 14bc20 | 65 72 65 6e 63 65 20 74 68 65 6d 20 62 79 20 67 72 6f 75 70 20 6e 61 6d 65 73 2e 20 54 68 69 73 | erence.them.by.group.names..This |
| 14bc40 | 20 69 73 20 65 73 70 65 63 69 61 6c 6c 79 20 75 73 65 66 75 6c 20 69 6e 20 6c 61 72 67 65 20 6e | .is.especially.useful.in.large.n |
| 14bc60 | 65 74 77 6f 72 6b 73 20 61 6e 64 20 63 6f 6d 70 6c 65 78 20 63 6f 6e 66 69 67 75 72 61 74 69 6f | etworks.and.complex.configuratio |
| 14bc80 | 6e 73 20 77 68 65 72 65 20 6d 75 6c 74 69 70 6c 65 20 49 50 20 61 64 64 72 65 73 73 65 73 20 61 | ns.where.multiple.IP.addresses.a |
| 14bca0 | 6e 64 20 70 6f 72 74 73 20 6e 65 65 64 20 74 6f 20 62 65 20 6d 6f 6e 69 74 6f 72 65 64 2e 00 55 | nd.ports.need.to.be.monitored..U |
| 14bcc0 | 73 69 6e 67 20 64 79 6e 61 6d 69 63 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 73 2c 20 77 65 | sing.dynamic.firewall.groups,.we |
| 14bce0 | 20 63 61 6e 20 73 65 63 75 72 65 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 | .can.secure.access.to.the.router |
| 14bd00 | 2c 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 64 65 76 69 63 65 20 69 66 20 6e 65 65 64 65 64 2c | ,.or.any.other.device.if.needed, |
| 14bd20 | 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 74 65 63 68 6e 69 71 75 65 20 6f 66 20 70 6f 72 74 20 | .by.using.the.technique.of.port. |
| 14bd40 | 6b 6e 6f 63 6b 69 6e 67 2e 00 55 73 69 6e 67 20 6f 75 72 20 64 6f 63 75 6d 65 6e 74 61 74 69 6f | knocking..Using.our.documentatio |
| 14bd60 | 6e 20 63 68 61 70 74 65 72 20 2d 20 3a 72 65 66 3a 60 70 6b 69 60 20 67 65 6e 65 72 61 74 65 20 | n.chapter.-.:ref:`pki`.generate. |
| 14bd80 | 61 6e 64 20 69 6e 73 74 61 6c 6c 20 43 41 20 61 6e 64 20 53 65 72 76 65 72 20 63 65 72 74 69 66 | and.install.CA.and.Server.certif |
| 14bda0 | 69 63 61 74 65 00 55 73 69 6e 67 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 20 6d 6f 64 65 20 63 | icate.Using.the.operation.mode.c |
| 14bdc0 | 6f 6d 6d 61 6e 64 20 74 6f 20 76 69 65 77 20 42 72 69 64 67 65 20 49 6e 66 6f 72 6d 61 74 69 6f | ommand.to.view.Bridge.Informatio |
| 14bde0 | 6e 00 55 73 69 6e 67 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2c 20 79 6f 75 20 77 69 6c 6c 20 63 | n.Using.this.command,.you.will.c |
| 14be00 | 72 65 61 74 65 20 61 20 6e 65 77 20 63 6c 69 65 6e 74 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | reate.a.new.client.configuration |
| 14be20 | 20 77 68 69 63 68 20 63 61 6e 20 63 6f 6e 6e 65 63 74 20 74 6f 20 60 60 69 6e 74 65 72 66 61 63 | .which.can.connect.to.``interfac |
| 14be40 | 65 60 60 20 6f 6e 20 74 68 69 73 20 72 6f 75 74 65 72 2e 20 54 68 65 20 70 75 62 6c 69 63 20 6b | e``.on.this.router..The.public.k |
| 14be60 | 65 79 20 66 72 6f 6d 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 69 6e 74 65 72 66 61 63 65 20 | ey.from.the.specified.interface. |
| 14be80 | 69 73 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 65 78 74 72 61 63 74 65 64 20 61 6e 64 20 65 | is.automatically.extracted.and.e |
| 14bea0 | 6d 62 65 64 64 65 64 20 69 6e 74 6f 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 | mbedded.into.the.configuration.. |
| 14bec0 | 55 73 75 61 6c 6c 79 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 75 73 | Usually.this.configuration.is.us |
| 14bee0 | 65 64 20 69 6e 20 50 45 73 20 28 50 72 6f 76 69 64 65 72 20 45 64 67 65 29 20 74 6f 20 72 65 70 | ed.in.PEs.(Provider.Edge).to.rep |
| 14bf00 | 6c 61 63 65 20 74 68 65 20 69 6e 63 6f 6d 69 6e 67 20 63 75 73 74 6f 6d 65 72 20 41 53 20 6e 75 | lace.the.incoming.customer.AS.nu |
| 14bf20 | 6d 62 65 72 20 73 6f 20 74 68 65 20 63 6f 6e 6e 65 63 74 65 64 20 43 45 20 28 20 43 75 73 74 6f | mber.so.the.connected.CE.(.Custo |
| 14bf40 | 6d 65 72 20 45 64 67 65 29 20 63 61 6e 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 41 53 20 6e 75 | mer.Edge).can.use.the.same.AS.nu |
| 14bf60 | 6d 62 65 72 20 61 73 20 74 68 65 20 6f 74 68 65 72 20 63 75 73 74 6f 6d 65 72 20 73 69 74 65 73 | mber.as.the.other.customer.sites |
| 14bf80 | 2e 20 54 68 69 73 20 61 6c 6c 6f 77 73 20 63 75 73 74 6f 6d 65 72 73 20 6f 66 20 74 68 65 20 70 | ..This.allows.customers.of.the.p |
| 14bfa0 | 72 6f 76 69 64 65 72 20 6e 65 74 77 6f 72 6b 20 74 6f 20 75 73 65 20 74 68 65 20 73 61 6d 65 20 | rovider.network.to.use.the.same. |
| 14bfc0 | 41 53 20 6e 75 6d 62 65 72 20 61 63 72 6f 73 73 20 74 68 65 69 72 20 73 69 74 65 73 2e 00 56 48 | AS.number.across.their.sites..VH |
| 14bfe0 | 54 20 28 56 65 72 79 20 48 69 67 68 20 54 68 72 6f 75 67 68 70 75 74 29 20 63 61 70 61 62 69 6c | T.(Very.High.Throughput).capabil |
| 14c000 | 69 74 69 65 73 20 28 38 30 32 2e 31 31 61 63 29 00 56 48 54 20 6c 69 6e 6b 20 61 64 61 70 74 61 | ities.(802.11ac).VHT.link.adapta |
| 14c020 | 74 69 6f 6e 20 63 61 70 61 62 69 6c 69 74 69 65 73 00 56 48 54 20 6f 70 65 72 61 74 69 6e 67 20 | tion.capabilities.VHT.operating. |
| 14c040 | 63 68 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 | channel.center.frequency.-.cente |
| 14c060 | 72 20 66 72 65 71 20 31 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 20 38 30 2c 20 38 30 2b 38 30 | r.freq.1.(for.use.with.80,.80+80 |
| 14c080 | 20 61 6e 64 20 31 36 30 20 6d 6f 64 65 73 29 00 56 48 54 20 6f 70 65 72 61 74 69 6e 67 20 63 68 | .and.160.modes).VHT.operating.ch |
| 14c0a0 | 61 6e 6e 65 6c 20 63 65 6e 74 65 72 20 66 72 65 71 75 65 6e 63 79 20 2d 20 63 65 6e 74 65 72 20 | annel.center.frequency.-.center. |
| 14c0c0 | 66 72 65 71 20 32 20 28 66 6f 72 20 75 73 65 20 77 69 74 68 20 74 68 65 20 38 30 2b 38 30 20 6d | freq.2.(for.use.with.the.80+80.m |
| 14c0e0 | 6f 64 65 29 00 56 4c 41 4e 00 56 4c 41 4e 20 31 30 20 6f 6e 20 6d 65 6d 62 65 72 20 69 6e 74 65 | ode).VLAN.VLAN.10.on.member.inte |
| 14c100 | 72 66 61 63 65 20 60 65 74 68 32 60 20 28 41 43 43 45 53 53 20 6d 6f 64 65 29 00 56 4c 41 4e 20 | rface.`eth2`.(ACCESS.mode).VLAN. |
| 14c120 | 45 78 61 6d 70 6c 65 00 56 4c 41 4e 20 4f 70 74 69 6f 6e 73 00 56 4c 41 4e 20 6d 6f 6e 69 74 6f | Example.VLAN.Options.VLAN.monito |
| 14c140 | 72 20 66 6f 72 20 61 75 74 6f 6d 61 74 69 63 20 63 72 65 61 74 69 6f 6e 20 6f 66 20 56 4c 41 4e | r.for.automatic.creation.of.VLAN |
| 14c160 | 20 69 6e 74 65 72 66 61 63 65 73 20 66 6f 72 20 73 70 65 63 69 66 69 63 20 75 73 65 72 20 6f 6e | .interfaces.for.specific.user.on |
| 14c180 | 20 73 70 65 63 69 66 69 63 20 3c 69 6e 74 65 72 66 61 63 65 3e 00 56 4c 41 4e 20 6e 61 6d 65 00 | .specific.<interface>.VLAN.name. |
| 14c1a0 | 56 4c 41 4e 27 73 20 63 61 6e 20 62 65 20 63 72 65 61 74 65 64 20 62 79 20 41 63 63 65 6c 2d 70 | VLAN's.can.be.created.by.Accel-p |
| 14c1c0 | 70 70 20 6f 6e 20 74 68 65 20 66 6c 79 20 76 69 61 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 4b | pp.on.the.fly.via.the.use.of.a.K |
| 14c1e0 | 65 72 6e 65 6c 20 6d 6f 64 75 6c 65 20 6e 61 6d 65 64 20 60 60 76 6c 61 6e 5f 6d 6f 6e 60 60 2c | ernel.module.named.``vlan_mon``, |
| 14c200 | 20 77 68 69 63 68 20 69 73 20 6d 6f 6e 69 74 6f 72 69 6e 67 20 69 6e 63 6f 6d 69 6e 67 20 76 6c | .which.is.monitoring.incoming.vl |
| 14c220 | 61 6e 73 20 61 6e 64 20 63 72 65 61 74 65 73 20 74 68 65 20 6e 65 63 65 73 73 61 72 79 20 56 4c | ans.and.creates.the.necessary.VL |
| 14c240 | 41 4e 20 69 66 20 72 65 71 75 69 72 65 64 20 61 6e 64 20 61 6c 6c 6f 77 65 64 2e 20 56 79 4f 53 | AN.if.required.and.allowed..VyOS |
| 14c260 | 20 73 75 70 70 6f 72 74 73 20 74 68 65 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 56 4c 41 4e | .supports.the.use.of.either.VLAN |
| 14c280 | 20 49 44 27 73 20 6f 72 20 65 6e 74 69 72 65 20 72 61 6e 67 65 73 2c 20 62 6f 74 68 20 76 61 6c | .ID's.or.entire.ranges,.both.val |
| 14c2a0 | 75 65 73 20 63 61 6e 20 62 65 20 64 65 66 69 6e 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 | ues.can.be.defined.at.the.same.t |
| 14c2c0 | 69 6d 65 20 66 6f 72 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 56 4c 41 4e 27 73 20 63 61 6e | ime.for.an.interface..VLAN's.can |
| 14c2e0 | 20 62 65 20 63 72 65 61 74 65 64 20 62 79 20 41 63 63 65 6c 2d 70 70 70 20 6f 6e 20 74 68 65 20 | .be.created.by.Accel-ppp.on.the. |
| 14c300 | 66 6c 79 20 76 69 61 20 74 68 65 20 75 73 65 20 6f 66 20 61 20 4b 65 72 6e 65 6c 20 6d 6f 64 75 | fly.via.the.use.of.a.Kernel.modu |
| 14c320 | 6c 65 20 6e 61 6d 65 64 20 60 76 6c 61 6e 5f 6d 6f 6e 60 2c 20 77 68 69 63 68 20 69 73 20 6d 6f | le.named.`vlan_mon`,.which.is.mo |
| 14c340 | 6e 69 74 6f 72 69 6e 67 20 69 6e 63 6f 6d 69 6e 67 20 76 6c 61 6e 73 20 61 6e 64 20 63 72 65 61 | nitoring.incoming.vlans.and.crea |
| 14c360 | 74 65 73 20 74 68 65 20 6e 65 63 65 73 73 61 72 79 20 56 4c 41 4e 20 69 66 20 72 65 71 75 69 72 | tes.the.necessary.VLAN.if.requir |
| 14c380 | 65 64 20 61 6e 64 20 61 6c 6c 6f 77 65 64 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 68 | ed.and.allowed..VyOS.supports.th |
| 14c3a0 | 65 20 75 73 65 20 6f 66 20 65 69 74 68 65 72 20 56 4c 41 4e 20 49 44 27 73 20 6f 72 20 65 6e 74 | e.use.of.either.VLAN.ID's.or.ent |
| 14c3c0 | 69 72 65 20 72 61 6e 67 65 73 2c 20 62 6f 74 68 20 76 61 6c 75 65 73 20 63 61 6e 20 62 65 20 64 | ire.ranges,.both.values.can.be.d |
| 14c3e0 | 65 66 69 6e 65 64 20 61 74 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 20 66 6f 72 20 61 6e 20 69 | efined.at.the.same.time.for.an.i |
| 14c400 | 6e 74 65 72 66 61 63 65 2e 00 56 4d 77 61 72 65 20 75 73 65 72 73 20 73 68 6f 75 6c 64 20 65 6e | nterface..VMware.users.should.en |
| 14c420 | 73 75 72 65 20 74 68 61 74 20 61 20 56 4d 58 4e 45 54 33 20 61 64 61 70 74 65 72 20 69 73 20 75 | sure.that.a.VMXNET3.adapter.is.u |
| 14c440 | 73 65 64 2e 20 45 31 30 30 30 20 61 64 61 70 74 65 72 73 20 68 61 76 65 20 6b 6e 6f 77 6e 20 69 | sed..E1000.adapters.have.known.i |
| 14c460 | 73 73 75 65 73 20 77 69 74 68 20 47 52 45 20 70 72 6f 63 65 73 73 69 6e 67 2e 00 56 50 4e 00 56 | ssues.with.GRE.processing..VPN.V |
| 14c480 | 50 4e 2d 63 6c 69 65 6e 74 73 20 77 69 6c 6c 20 72 65 71 75 65 73 74 20 63 6f 6e 66 69 67 75 72 | PN-clients.will.request.configur |
| 14c4a0 | 61 74 69 6f 6e 20 70 61 72 61 6d 65 74 65 72 73 2c 20 6f 70 74 69 6f 6e 61 6c 6c 79 20 79 6f 75 | ation.parameters,.optionally.you |
| 14c4c0 | 20 63 61 6e 20 44 4e 53 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 | .can.DNS.parameter.to.the.client |
| 14c4e0 | 2e 00 56 52 46 00 56 52 46 20 52 6f 75 74 65 20 4c 65 61 6b 69 6e 67 00 56 52 46 20 61 6e 64 20 | ..VRF.VRF.Route.Leaking.VRF.and. |
| 14c500 | 4e 41 54 00 56 52 46 20 62 6c 75 65 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 00 56 52 46 20 64 | NAT.VRF.blue.routing.table.VRF.d |
| 14c520 | 65 66 61 75 6c 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 00 56 52 46 20 72 65 64 20 72 6f 75 | efault.routing.table.VRF.red.rou |
| 14c540 | 74 69 6e 67 20 74 61 62 6c 65 00 56 52 46 20 72 6f 75 74 65 20 6c 65 61 6b 69 6e 67 00 56 52 46 | ting.table.VRF.route.leaking.VRF |
| 14c560 | 20 74 6f 70 6f 6c 6f 67 79 20 65 78 61 6d 70 6c 65 00 56 52 52 50 20 28 56 69 72 74 75 61 6c 20 | .topology.example.VRRP.(Virtual. |
| 14c580 | 52 6f 75 74 65 72 20 52 65 64 75 6e 64 61 6e 63 79 20 50 72 6f 74 6f 63 6f 6c 29 20 70 72 6f 76 | Router.Redundancy.Protocol).prov |
| 14c5a0 | 69 64 65 73 20 61 63 74 69 76 65 2f 62 61 63 6b 75 70 20 72 65 64 75 6e 64 61 6e 63 79 20 66 6f | ides.active/backup.redundancy.fo |
| 14c5c0 | 72 20 72 6f 75 74 65 72 73 2e 20 45 76 65 72 79 20 56 52 52 50 20 72 6f 75 74 65 72 20 68 61 73 | r.routers..Every.VRRP.router.has |
| 14c5e0 | 20 61 20 70 68 79 73 69 63 61 6c 20 49 50 2f 49 50 76 36 20 61 64 64 72 65 73 73 2c 20 61 6e 64 | .a.physical.IP/IPv6.address,.and |
| 14c600 | 20 61 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 2e 20 4f 6e 20 73 74 61 72 74 75 70 2c 20 | .a.virtual.address..On.startup,. |
| 14c620 | 72 6f 75 74 65 72 73 20 65 6c 65 63 74 20 74 68 65 20 6d 61 73 74 65 72 2c 20 61 6e 64 20 74 68 | routers.elect.the.master,.and.th |
| 14c640 | 65 20 72 6f 75 74 65 72 20 77 69 74 68 20 74 68 65 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 | e.router.with.the.highest.priori |
| 14c660 | 74 79 20 62 65 63 6f 6d 65 73 20 74 68 65 20 6d 61 73 74 65 72 20 61 6e 64 20 61 73 73 69 67 6e | ty.becomes.the.master.and.assign |
| 14c680 | 73 20 74 68 65 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 20 74 6f 20 69 74 73 20 69 6e 74 | s.the.virtual.address.to.its.int |
| 14c6a0 | 65 72 66 61 63 65 2e 20 41 6c 6c 20 72 6f 75 74 65 72 73 20 77 69 74 68 20 6c 6f 77 65 72 20 70 | erface..All.routers.with.lower.p |
| 14c6c0 | 72 69 6f 72 69 74 69 65 73 20 62 65 63 6f 6d 65 20 62 61 63 6b 75 70 20 72 6f 75 74 65 72 73 2e | riorities.become.backup.routers. |
| 14c6e0 | 20 54 68 65 20 6d 61 73 74 65 72 20 74 68 65 6e 20 73 74 61 72 74 73 20 73 65 6e 64 69 6e 67 20 | .The.master.then.starts.sending. |
| 14c700 | 6b 65 65 70 61 6c 69 76 65 20 70 61 63 6b 65 74 73 20 74 6f 20 6e 6f 74 69 66 79 20 6f 74 68 65 | keepalive.packets.to.notify.othe |
| 14c720 | 72 20 72 6f 75 74 65 72 73 20 74 68 61 74 20 69 74 27 73 20 61 76 61 69 6c 61 62 6c 65 2e 20 49 | r.routers.that.it's.available..I |
| 14c740 | 66 20 74 68 65 20 6d 61 73 74 65 72 20 66 61 69 6c 73 20 61 6e 64 20 73 74 6f 70 73 20 73 65 6e | f.the.master.fails.and.stops.sen |
| 14c760 | 64 69 6e 67 20 6b 65 65 70 61 6c 69 76 65 20 70 61 63 6b 65 74 73 2c 20 74 68 65 20 72 6f 75 74 | ding.keepalive.packets,.the.rout |
| 14c780 | 65 72 20 77 69 74 68 20 74 68 65 20 6e 65 78 74 20 68 69 67 68 65 73 74 20 70 72 69 6f 72 69 74 | er.with.the.next.highest.priorit |
| 14c7a0 | 79 20 62 65 63 6f 6d 65 73 20 74 68 65 20 6e 65 77 20 6d 61 73 74 65 72 20 61 6e 64 20 74 61 6b | y.becomes.the.new.master.and.tak |
| 14c7c0 | 65 73 20 6f 76 65 72 20 74 68 65 20 76 69 72 74 75 61 6c 20 61 64 64 72 65 73 73 2e 00 56 52 52 | es.over.the.virtual.address..VRR |
| 14c7e0 | 50 20 63 61 6e 20 75 73 65 20 74 77 6f 20 6d 6f 64 65 73 3a 20 70 72 65 65 6d 70 74 69 76 65 20 | P.can.use.two.modes:.preemptive. |
| 14c800 | 61 6e 64 20 6e 6f 6e 2d 70 72 65 65 6d 70 74 69 76 65 2e 20 49 6e 20 74 68 65 20 70 72 65 65 6d | and.non-preemptive..In.the.preem |
| 14c820 | 70 74 69 76 65 20 6d 6f 64 65 2c 20 69 66 20 61 20 72 6f 75 74 65 72 20 77 69 74 68 20 61 20 68 | ptive.mode,.if.a.router.with.a.h |
| 14c840 | 69 67 68 65 72 20 70 72 69 6f 72 69 74 79 20 66 61 69 6c 73 20 61 6e 64 20 74 68 65 6e 20 63 6f | igher.priority.fails.and.then.co |
| 14c860 | 6d 65 73 20 62 61 63 6b 2c 20 72 6f 75 74 65 72 73 20 77 69 74 68 20 6c 6f 77 65 72 20 70 72 69 | mes.back,.routers.with.lower.pri |
| 14c880 | 6f 72 69 74 79 20 77 69 6c 6c 20 67 69 76 65 20 75 70 20 74 68 65 69 72 20 6d 61 73 74 65 72 20 | ority.will.give.up.their.master. |
| 14c8a0 | 73 74 61 74 75 73 2e 20 49 6e 20 6e 6f 6e 2d 70 72 65 65 6d 70 74 69 76 65 20 6d 6f 64 65 2c 20 | status..In.non-preemptive.mode,. |
| 14c8c0 | 74 68 65 20 6e 65 77 6c 79 20 65 6c 65 63 74 65 64 20 6d 61 73 74 65 72 20 77 69 6c 6c 20 6b 65 | the.newly.elected.master.will.ke |
| 14c8e0 | 65 70 20 74 68 65 20 6d 61 73 74 65 72 20 73 74 61 74 75 73 20 61 6e 64 20 74 68 65 20 76 69 72 | ep.the.master.status.and.the.vir |
| 14c900 | 74 75 61 6c 20 61 64 64 72 65 73 73 20 69 6e 64 65 66 69 6e 69 74 65 6c 79 2e 00 56 52 52 50 20 | tual.address.indefinitely..VRRP. |
| 14c920 | 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 63 61 6e 20 62 65 20 65 78 74 65 6e 64 65 64 20 77 69 | functionality.can.be.extended.wi |
| 14c940 | 74 68 20 73 63 72 69 70 74 73 2e 20 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 74 77 6f 20 6b 69 | th.scripts..VyOS.supports.two.ki |
| 14c960 | 6e 64 73 20 6f 66 20 73 63 72 69 70 74 73 3a 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 | nds.of.scripts:.health.check.scr |
| 14c980 | 69 70 74 73 20 61 6e 64 20 74 72 61 6e 73 69 74 69 6f 6e 20 73 63 72 69 70 74 73 2e 20 48 65 61 | ipts.and.transition.scripts..Hea |
| 14c9a0 | 6c 74 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 73 20 65 78 65 63 75 74 65 20 63 75 73 74 6f 6d | lth.check.scripts.execute.custom |
| 14c9c0 | 20 63 68 65 63 6b 73 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 6d 61 73 74 65 | .checks.in.addition.to.the.maste |
| 14c9e0 | 72 20 72 6f 75 74 65 72 20 72 65 61 63 68 61 62 69 6c 69 74 79 2e 20 54 72 61 6e 73 69 74 69 6f | r.router.reachability..Transitio |
| 14ca00 | 6e 20 73 63 72 69 70 74 73 20 61 72 65 20 65 78 65 63 75 74 65 64 20 77 68 65 6e 20 56 52 52 50 | n.scripts.are.executed.when.VRRP |
| 14ca20 | 20 73 74 61 74 65 20 63 68 61 6e 67 65 73 20 66 72 6f 6d 20 6d 61 73 74 65 72 20 74 6f 20 62 61 | .state.changes.from.master.to.ba |
| 14ca40 | 63 6b 75 70 20 6f 72 20 66 61 75 6c 74 20 61 6e 64 20 76 69 63 65 20 76 65 72 73 61 20 61 6e 64 | ckup.or.fault.and.vice.versa.and |
| 14ca60 | 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c | .can.be.used.to.enable.or.disabl |
| 14ca80 | 65 20 63 65 72 74 61 69 6e 20 73 65 72 76 69 63 65 73 2c 20 66 6f 72 20 65 78 61 6d 70 6c 65 2e | e.certain.services,.for.example. |
| 14caa0 | 00 56 52 52 50 20 67 72 6f 75 70 73 20 61 72 65 20 63 72 65 61 74 65 64 20 77 69 74 68 20 74 68 | .VRRP.groups.are.created.with.th |
| 14cac0 | 65 20 60 60 73 65 74 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 20 76 72 72 70 20 67 | e.``set.high-availability.vrrp.g |
| 14cae0 | 72 6f 75 70 20 24 47 52 4f 55 50 5f 4e 41 4d 45 60 60 20 63 6f 6d 6d 61 6e 64 73 2e 20 54 68 65 | roup.$GROUP_NAME``.commands..The |
| 14cb00 | 20 72 65 71 75 69 72 65 64 20 70 61 72 61 6d 65 74 65 72 73 20 61 72 65 20 69 6e 74 65 72 66 61 | .required.parameters.are.interfa |
| 14cb20 | 63 65 2c 20 76 72 69 64 2c 20 61 6e 64 20 61 64 64 72 65 73 73 2e 00 56 52 52 50 20 6b 65 65 70 | ce,.vrid,.and.address..VRRP.keep |
| 14cb40 | 61 6c 69 76 65 20 70 61 63 6b 65 74 73 20 75 73 65 20 6d 75 6c 74 69 63 61 73 74 2c 20 61 6e 64 | alive.packets.use.multicast,.and |
| 14cb60 | 20 56 52 52 50 20 73 65 74 75 70 73 20 61 72 65 20 6c 69 6d 69 74 65 64 20 74 6f 20 61 20 73 69 | .VRRP.setups.are.limited.to.a.si |
| 14cb80 | 6e 67 6c 65 20 64 61 74 61 6c 69 6e 6b 20 6c 61 79 65 72 20 73 65 67 6d 65 6e 74 2e 20 59 6f 75 | ngle.datalink.layer.segment..You |
| 14cba0 | 20 63 61 6e 20 73 65 74 75 70 20 6d 75 6c 74 69 70 6c 65 20 56 52 52 50 20 67 72 6f 75 70 73 20 | .can.setup.multiple.VRRP.groups. |
| 14cbc0 | 28 61 6c 73 6f 20 63 61 6c 6c 65 64 20 76 69 72 74 75 61 6c 20 72 6f 75 74 65 72 73 29 2e 20 56 | (also.called.virtual.routers)..V |
| 14cbe0 | 69 72 74 75 61 6c 20 72 6f 75 74 65 72 73 20 61 72 65 20 69 64 65 6e 74 69 66 69 65 64 20 62 79 | irtual.routers.are.identified.by |
| 14cc00 | 20 61 20 56 52 49 44 20 28 56 69 72 74 75 61 6c 20 52 6f 75 74 65 72 20 49 44 65 6e 74 69 66 69 | .a.VRID.(Virtual.Router.IDentifi |
| 14cc20 | 65 72 29 2e 20 49 66 20 79 6f 75 20 73 65 74 75 70 20 6d 75 6c 74 69 70 6c 65 20 67 72 6f 75 70 | er)..If.you.setup.multiple.group |
| 14cc40 | 73 20 6f 6e 20 74 68 65 20 73 61 6d 65 20 69 6e 74 65 72 66 61 63 65 2c 20 74 68 65 69 72 20 56 | s.on.the.same.interface,.their.V |
| 14cc60 | 52 49 44 73 20 6d 75 73 74 20 62 65 20 75 6e 69 71 75 65 20 69 66 20 74 68 65 79 20 75 73 65 20 | RIDs.must.be.unique.if.they.use. |
| 14cc80 | 74 68 65 20 73 61 6d 65 20 61 64 64 72 65 73 73 20 66 61 6d 69 6c 79 2c 20 62 75 74 20 69 74 27 | the.same.address.family,.but.it' |
| 14cca0 | 73 20 70 6f 73 73 69 62 6c 65 20 28 65 76 65 6e 20 69 66 20 6e 6f 74 20 72 65 63 6f 6d 6d 65 6e | s.possible.(even.if.not.recommen |
| 14ccc0 | 64 65 64 20 66 6f 72 20 72 65 61 64 61 62 69 6c 69 74 79 20 72 65 61 73 6f 6e 73 29 20 74 6f 20 | ded.for.readability.reasons).to. |
| 14cce0 | 75 73 65 20 64 75 70 6c 69 63 61 74 65 20 56 52 49 44 73 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 | use.duplicate.VRIDs.on.different |
| 14cd00 | 20 69 6e 74 65 72 66 61 63 65 73 2e 00 56 52 52 50 20 70 72 69 6f 72 69 74 79 20 63 61 6e 20 62 | .interfaces..VRRP.priority.can.b |
| 14cd20 | 65 20 73 65 74 20 77 69 74 68 20 60 60 70 72 69 6f 72 69 74 79 60 60 20 6f 70 74 69 6f 6e 3a 00 | e.set.with.``priority``.option:. |
| 14cd40 | 56 54 49 20 2d 20 56 69 72 74 75 61 6c 20 54 75 6e 6e 65 6c 20 49 6e 74 65 72 66 61 63 65 00 56 | VTI.-.Virtual.Tunnel.Interface.V |
| 14cd60 | 58 4c 41 4e 00 56 58 4c 41 4e 20 69 73 20 61 6e 20 65 76 6f 6c 75 74 69 6f 6e 20 6f 66 20 65 66 | XLAN.VXLAN.is.an.evolution.of.ef |
| 14cd80 | 66 6f 72 74 73 20 74 6f 20 73 74 61 6e 64 61 72 64 69 7a 65 20 61 6e 20 6f 76 65 72 6c 61 79 20 | forts.to.standardize.an.overlay. |
| 14cda0 | 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 70 72 6f 74 6f 63 6f 6c 2e 20 49 74 20 69 6e 63 72 65 | encapsulation.protocol..It.incre |
| 14cdc0 | 61 73 65 73 20 74 68 65 20 73 63 61 6c 61 62 69 6c 69 74 79 20 75 70 20 74 6f 20 31 36 20 6d 69 | ases.the.scalability.up.to.16.mi |
| 14cde0 | 6c 6c 69 6f 6e 20 6c 6f 67 69 63 61 6c 20 6e 65 74 77 6f 72 6b 73 20 61 6e 64 20 61 6c 6c 6f 77 | llion.logical.networks.and.allow |
| 14ce00 | 73 20 66 6f 72 20 6c 61 79 65 72 20 32 20 61 64 6a 61 63 65 6e 63 79 20 61 63 72 6f 73 73 20 49 | s.for.layer.2.adjacency.across.I |
| 14ce20 | 50 20 6e 65 74 77 6f 72 6b 73 2e 20 4d 75 6c 74 69 63 61 73 74 20 6f 72 20 75 6e 69 63 61 73 74 | P.networks..Multicast.or.unicast |
| 14ce40 | 20 77 69 74 68 20 68 65 61 64 2d 65 6e 64 20 72 65 70 6c 69 63 61 74 69 6f 6e 20 28 48 45 52 29 | .with.head-end.replication.(HER) |
| 14ce60 | 20 69 73 20 75 73 65 64 20 74 6f 20 66 6c 6f 6f 64 20 62 72 6f 61 64 63 61 73 74 2c 20 75 6e 6b | .is.used.to.flood.broadcast,.unk |
| 14ce80 | 6e 6f 77 6e 20 75 6e 69 63 61 73 74 2c 20 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 20 28 42 55 4d | nown.unicast,.and.multicast.(BUM |
| 14cea0 | 29 20 74 72 61 66 66 69 63 2e 00 56 58 4c 41 4e 20 73 70 65 63 69 66 69 63 20 6f 70 74 69 6f 6e | ).traffic..VXLAN.specific.option |
| 14cec0 | 73 00 56 58 4c 41 4e 20 77 61 73 20 6f 66 66 69 63 69 61 6c 6c 79 20 64 6f 63 75 6d 65 6e 74 65 | s.VXLAN.was.officially.documente |
| 14cee0 | 64 20 62 79 20 74 68 65 20 49 45 54 46 20 69 6e 20 3a 72 66 63 3a 60 37 33 34 38 60 2e 00 56 61 | d.by.the.IETF.in.:rfc:`7348`..Va |
| 14cf00 | 6c 69 64 20 76 61 6c 75 65 73 20 61 72 65 20 30 2e 2e 32 35 35 2e 00 56 61 6c 69 64 20 76 61 6c | lid.values.are.0..255..Valid.val |
| 14cf20 | 75 65 73 20 61 72 65 20 31 2e 2e 36 33 00 56 61 6c 75 65 00 56 61 6c 75 65 20 74 6f 20 73 65 6e | ues.are.1..63.Value.Value.to.sen |
| 14cf40 | 64 20 74 6f 20 52 41 44 49 55 53 20 73 65 72 76 65 72 20 69 6e 20 4e 41 53 2d 49 50 2d 41 64 64 | d.to.RADIUS.server.in.NAS-IP-Add |
| 14cf60 | 72 65 73 73 20 61 74 74 72 69 62 75 74 65 20 61 6e 64 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 | ress.attribute.and.to.be.matched |
| 14cf80 | 20 69 6e 20 44 4d 2f 43 6f 41 20 72 65 71 75 65 73 74 73 2e 20 41 6c 73 6f 20 44 4d 2f 43 6f 41 | .in.DM/CoA.requests..Also.DM/CoA |
| 14cfa0 | 20 73 65 72 76 65 72 20 77 69 6c 6c 20 62 69 6e 64 20 74 6f 20 74 68 61 74 20 61 64 64 72 65 73 | .server.will.bind.to.that.addres |
| 14cfc0 | 73 2e 00 56 61 6c 75 65 20 74 6f 20 73 65 6e 64 20 74 6f 20 52 41 44 49 55 53 20 73 65 72 76 65 | s..Value.to.send.to.RADIUS.serve |
| 14cfe0 | 72 20 69 6e 20 4e 41 53 2d 49 64 65 6e 74 69 66 69 65 72 20 61 74 74 72 69 62 75 74 65 20 61 6e | r.in.NAS-Identifier.attribute.an |
| 14d000 | 64 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 20 69 6e 20 44 4d 2f 43 6f 41 20 72 65 71 75 65 73 | d.to.be.matched.in.DM/CoA.reques |
| 14d020 | 74 73 2e 00 56 65 72 69 66 69 63 61 74 69 6f 6e 00 56 65 72 69 66 69 63 61 74 69 6f 6e 3a 00 56 | ts..Verification.Verification:.V |
| 14d040 | 65 72 69 66 79 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 63 68 61 6e 67 65 73 20 68 61 76 65 | erify.configuration.changes.have |
| 14d060 | 20 62 65 65 6e 20 72 65 70 6c 69 63 61 74 65 64 20 74 6f 20 52 6f 75 74 65 72 20 42 00 56 65 72 | .been.replicated.to.Router.B.Ver |
| 14d080 | 69 66 79 20 74 68 61 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 61 72 65 20 68 69 74 74 69 6e 67 | ify.that.connections.are.hitting |
| 14d0a0 | 20 74 68 65 20 72 75 6c 65 20 6f 6e 20 62 6f 74 68 20 73 69 64 65 73 3a 00 56 65 72 73 69 6f 6e | .the.rule.on.both.sides:.Version |
| 14d0c0 | 00 56 69 72 74 75 61 6c 20 45 74 68 65 72 6e 65 74 00 56 69 72 74 75 61 6c 20 53 65 72 76 65 72 | .Virtual.Ethernet.Virtual.Server |
| 14d0e0 | 20 61 6c 6c 6f 77 73 20 74 6f 20 4c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 74 72 61 66 66 69 63 20 | .allows.to.Load-balance.traffic. |
| 14d100 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 3a 70 6f 72 74 | destination.virtual-address:port |
| 14d120 | 20 62 65 74 77 65 65 6e 20 73 65 76 65 72 61 6c 20 72 65 61 6c 20 73 65 72 76 65 72 73 2e 00 56 | .between.several.real.servers..V |
| 14d140 | 69 72 74 75 61 6c 2d 73 65 72 76 65 72 00 56 69 72 74 75 61 6c 2d 73 65 72 76 65 72 20 63 61 6e | irtual-server.Virtual-server.can |
| 14d160 | 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 77 69 74 68 20 56 52 52 50 20 76 69 72 74 75 61 6c | .be.configured.with.VRRP.virtual |
| 14d180 | 20 61 64 64 72 65 73 73 20 6f 72 20 77 69 74 68 6f 75 74 20 56 52 52 50 2e 00 56 6f 6c 75 6d 65 | .address.or.without.VRRP..Volume |
| 14d1a0 | 20 69 73 20 65 69 74 68 65 72 20 6d 6f 75 6e 74 65 64 20 61 73 20 72 77 20 28 72 65 61 64 2d 77 | .is.either.mounted.as.rw.(read-w |
| 14d1c0 | 72 69 74 65 20 2d 20 64 65 66 61 75 6c 74 29 20 6f 72 20 72 6f 20 28 72 65 61 64 2d 6f 6e 6c 79 | rite.-.default).or.ro.(read-only |
| 14d1e0 | 29 00 56 79 4f 53 20 31 2e 31 20 73 75 70 70 6f 72 74 65 64 20 6c 6f 67 69 6e 20 61 73 20 75 73 | ).VyOS.1.1.supported.login.as.us |
| 14d200 | 65 72 20 60 60 72 6f 6f 74 60 60 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 72 65 6d 6f 76 | er.``root``..This.has.been.remov |
| 14d220 | 65 64 20 64 75 65 20 74 6f 20 74 69 67 68 74 65 72 20 73 65 63 75 72 69 74 79 20 69 6e 20 56 79 | ed.due.to.tighter.security.in.Vy |
| 14d240 | 4f 53 20 31 2e 32 2e 00 56 79 4f 53 20 31 2e 33 20 28 65 71 75 75 6c 65 75 73 29 20 73 75 70 70 | OS.1.2..VyOS.1.3.(equuleus).supp |
| 14d260 | 6f 72 74 73 20 44 48 43 50 76 36 2d 50 44 20 28 3a 72 66 63 3a 60 33 36 33 33 60 29 2e 20 44 48 | orts.DHCPv6-PD.(:rfc:`3633`)..DH |
| 14d280 | 43 50 76 36 20 50 72 65 66 69 78 20 44 65 6c 65 67 61 74 69 6f 6e 20 69 73 20 73 75 70 70 6f 72 | CPv6.Prefix.Delegation.is.suppor |
| 14d2a0 | 74 65 64 20 62 79 20 6d 6f 73 74 20 49 53 50 73 20 77 68 6f 20 70 72 6f 76 69 64 65 20 6e 61 74 | ted.by.most.ISPs.who.provide.nat |
| 14d2c0 | 69 76 65 20 49 50 76 36 20 66 6f 72 20 63 6f 6e 73 75 6d 65 72 73 20 6f 6e 20 66 69 78 65 64 20 | ive.IPv6.for.consumers.on.fixed. |
| 14d2e0 | 6e 65 74 77 6f 72 6b 73 2e 00 56 79 4f 53 20 31 2e 34 20 28 73 61 67 69 74 74 61 29 20 69 6e 74 | networks..VyOS.1.4.(sagitta).int |
| 14d300 | 72 6f 64 75 63 65 64 20 64 79 6e 61 6d 69 63 20 72 6f 75 74 69 6e 67 20 73 75 70 70 6f 72 74 20 | roduced.dynamic.routing.support. |
| 14d320 | 66 6f 72 20 56 52 46 73 2e 00 56 79 4f 53 20 31 2e 34 20 63 68 61 6e 67 65 64 20 74 68 65 20 77 | for.VRFs..VyOS.1.4.changed.the.w |
| 14d340 | 61 79 20 69 6e 20 68 6f 77 20 65 6e 63 72 79 70 74 69 6f 6e 20 6b 65 79 73 20 6f 72 20 63 65 72 | ay.in.how.encryption.keys.or.cer |
| 14d360 | 74 69 66 69 63 61 74 65 73 20 61 72 65 20 73 74 6f 72 65 64 20 6f 6e 20 74 68 65 20 73 79 73 74 | tificates.are.stored.on.the.syst |
| 14d380 | 65 6d 2e 20 49 6e 20 74 68 65 20 70 72 65 20 56 79 4f 53 20 31 2e 34 20 65 72 61 2c 20 63 65 72 | em..In.the.pre.VyOS.1.4.era,.cer |
| 14d3a0 | 74 69 66 69 63 61 74 65 73 20 67 6f 74 20 73 74 6f 72 65 64 20 75 6e 64 65 72 20 2f 63 6f 6e 66 | tificates.got.stored.under./conf |
| 14d3c0 | 69 67 20 61 6e 64 20 65 76 65 72 79 20 73 65 72 76 69 63 65 20 72 65 66 65 72 65 6e 63 65 64 20 | ig.and.every.service.referenced. |
| 14d3e0 | 61 20 66 69 6c 65 2e 20 54 68 61 74 20 6d 61 64 65 20 63 6f 70 79 69 6e 67 20 61 20 72 75 6e 6e | a.file..That.made.copying.a.runn |
| 14d400 | 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f 6d 20 73 79 73 74 65 6d 20 41 20 | ing.configuration.from.system.A. |
| 14d420 | 74 6f 20 73 79 73 74 65 6d 20 42 20 61 20 62 69 74 20 68 61 72 64 65 72 2c 20 61 73 20 79 6f 75 | to.system.B.a.bit.harder,.as.you |
| 14d440 | 20 68 61 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 66 69 6c 65 73 20 61 6e 64 20 74 68 65 69 72 | .had.to.copy.the.files.and.their |
| 14d460 | 20 70 65 72 6d 69 73 73 69 6f 6e 73 20 62 79 20 68 61 6e 64 2e 00 56 79 4f 53 20 31 2e 34 20 63 | .permissions.by.hand..VyOS.1.4.c |
| 14d480 | 68 61 6e 67 65 64 20 74 68 65 20 77 61 79 20 69 6e 20 68 6f 77 20 65 6e 63 72 79 74 69 6f 6e 20 | hanged.the.way.in.how.encrytion. |
| 14d4a0 | 6b 65 79 73 20 6f 72 20 63 65 72 74 69 66 69 63 61 74 65 73 20 61 72 65 20 73 74 6f 72 65 64 20 | keys.or.certificates.are.stored. |
| 14d4c0 | 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 2e 20 49 6e 20 74 68 65 20 70 72 65 20 56 79 4f 53 20 31 | on.the.system..In.the.pre.VyOS.1 |
| 14d4e0 | 2e 34 20 65 72 61 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 67 6f 74 20 73 74 6f 72 65 64 20 | .4.era,.certificates.got.stored. |
| 14d500 | 75 6e 64 65 72 20 2f 63 6f 6e 66 69 67 20 61 6e 64 20 65 76 65 72 79 20 73 65 72 76 69 63 65 20 | under./config.and.every.service. |
| 14d520 | 72 65 66 65 72 65 6e 63 65 64 20 61 20 66 69 6c 65 2e 20 54 68 61 74 20 6d 61 64 65 20 63 6f 70 | referenced.a.file..That.made.cop |
| 14d540 | 79 69 6e 67 20 61 20 72 75 6e 6e 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 66 72 6f | ying.a.running.configuration.fro |
| 14d560 | 6d 20 73 79 73 74 65 6d 20 41 20 74 6f 20 73 79 73 74 65 6d 20 42 20 61 20 62 69 74 20 68 61 72 | m.system.A.to.system.B.a.bit.har |
| 14d580 | 64 65 72 2c 20 61 73 20 79 6f 75 20 68 61 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 66 69 6c 65 | der,.as.you.had.to.copy.the.file |
| 14d5a0 | 73 20 61 6e 64 20 74 68 65 69 72 20 70 65 72 6d 69 73 73 69 6f 6e 73 20 62 79 20 68 61 6e 64 2e | s.and.their.permissions.by.hand. |
| 14d5c0 | 00 56 79 4f 53 20 31 2e 34 20 75 73 65 73 20 63 68 72 6f 6e 79 20 69 6e 73 74 65 61 64 20 6f 66 | .VyOS.1.4.uses.chrony.instead.of |
| 14d5e0 | 20 6e 74 70 64 20 28 73 65 65 20 3a 76 79 74 61 73 6b 3a 60 54 33 30 30 38 60 29 20 77 68 69 63 | .ntpd.(see.:vytask:`T3008`).whic |
| 14d600 | 68 20 77 69 6c 6c 20 6e 6f 20 6c 6f 6e 67 65 72 20 61 63 63 65 70 74 20 61 6e 6f 6e 79 6d 6f 75 | h.will.no.longer.accept.anonymou |
| 14d620 | 73 20 4e 54 50 20 72 65 71 75 65 73 74 73 20 61 73 20 69 6e 20 56 79 4f 53 20 31 2e 33 2e 20 41 | s.NTP.requests.as.in.VyOS.1.3..A |
| 14d640 | 6c 6c 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 73 20 77 69 6c 6c 20 62 65 20 6d 69 67 72 61 74 | ll.configurations.will.be.migrat |
| 14d660 | 65 64 20 74 6f 20 6b 65 65 70 20 74 68 65 20 61 6e 6f 6e 79 6d 6f 75 73 20 66 75 6e 63 74 69 6f | ed.to.keep.the.anonymous.functio |
| 14d680 | 6e 61 6c 69 74 79 2e 20 46 6f 72 20 6e 65 77 20 73 65 74 75 70 73 20 69 66 20 79 6f 75 20 68 61 | nality..For.new.setups.if.you.ha |
| 14d6a0 | 76 65 20 63 6c 69 65 6e 74 73 20 75 73 69 6e 67 20 79 6f 75 72 20 56 79 4f 53 20 69 6e 73 74 61 | ve.clients.using.your.VyOS.insta |
| 14d6c0 | 6c 6c 61 74 69 6f 6e 20 61 73 20 4e 54 50 20 73 65 72 76 65 72 2c 20 79 6f 75 20 6d 75 73 74 20 | llation.as.NTP.server,.you.must. |
| 14d6e0 | 73 70 65 63 69 66 79 20 74 68 65 20 60 61 6c 6c 6f 77 2d 63 6c 69 65 6e 74 60 20 64 69 72 65 63 | specify.the.`allow-client`.direc |
| 14d700 | 74 69 76 65 2e 00 56 79 4f 53 20 41 72 69 73 74 61 20 45 4f 53 20 73 65 74 75 70 00 56 79 4f 53 | tive..VyOS.Arista.EOS.setup.VyOS |
| 14d720 | 20 45 53 50 20 67 72 6f 75 70 20 68 61 73 20 74 68 65 20 6e 65 78 74 20 6f 70 74 69 6f 6e 73 3a | .ESP.group.has.the.next.options: |
| 14d740 | 00 56 79 4f 53 20 46 69 65 6c 64 00 56 79 4f 53 20 49 4b 45 20 67 72 6f 75 70 20 68 61 73 20 74 | .VyOS.Field.VyOS.IKE.group.has.t |
| 14d760 | 68 65 20 6e 65 78 74 20 6f 70 74 69 6f 6e 73 3a 00 56 79 4f 53 20 4d 49 42 73 00 56 79 4f 53 20 | he.next.options:.VyOS.MIBs.VyOS. |
| 14d780 | 4e 41 54 36 36 20 44 48 43 50 76 36 20 75 73 69 6e 67 20 61 20 64 75 6d 6d 79 20 69 6e 74 65 72 | NAT66.DHCPv6.using.a.dummy.inter |
| 14d7a0 | 66 61 63 65 00 56 79 4f 53 20 4e 41 54 36 36 20 53 69 6d 70 6c 65 20 43 6f 6e 66 69 67 75 72 65 | face.VyOS.NAT66.Simple.Configure |
| 14d7c0 | 00 56 79 4f 53 20 4e 65 74 77 6f 72 6b 20 45 6d 75 6c 61 74 6f 72 20 70 6f 6c 69 63 79 20 65 6d | .VyOS.Network.Emulator.policy.em |
| 14d7e0 | 75 6c 61 74 65 73 20 74 68 65 20 63 6f 6e 64 69 74 69 6f 6e 73 20 79 6f 75 20 63 61 6e 20 73 75 | ulates.the.conditions.you.can.su |
| 14d800 | 66 66 65 72 20 69 6e 20 61 20 72 65 61 6c 20 6e 65 74 77 6f 72 6b 2e 20 59 6f 75 20 77 69 6c 6c | ffer.in.a.real.network..You.will |
| 14d820 | 20 62 65 20 61 62 6c 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 69 6e 67 73 20 6c 69 6b | .be.able.to.configure.things.lik |
| 14d840 | 65 20 72 61 74 65 2c 20 62 75 72 73 74 2c 20 64 65 6c 61 79 2c 20 70 61 63 6b 65 74 20 6c 6f 73 | e.rate,.burst,.delay,.packet.los |
| 14d860 | 73 2c 20 70 61 63 6b 65 74 20 63 6f 72 72 75 70 74 69 6f 6e 20 6f 72 20 70 61 63 6b 65 74 20 72 | s,.packet.corruption.or.packet.r |
| 14d880 | 65 6f 72 64 65 72 69 6e 67 2e 00 56 79 4f 53 20 4f 70 74 69 6f 6e 00 56 79 4f 53 20 50 6f 6c 69 | eordering..VyOS.Option.VyOS.Poli |
| 14d8a0 | 63 79 2d 42 61 73 65 64 20 52 6f 75 74 69 6e 67 20 28 50 42 52 29 20 77 6f 72 6b 73 20 62 79 20 | cy-Based.Routing.(PBR).works.by. |
| 14d8c0 | 6d 61 74 63 68 69 6e 67 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 72 61 6e 67 65 | matching.source.IP.address.range |
| 14d8e0 | 73 20 61 6e 64 20 66 6f 72 77 61 72 64 69 6e 67 20 74 68 65 20 74 72 61 66 66 69 63 20 75 73 69 | s.and.forwarding.the.traffic.usi |
| 14d900 | 6e 67 20 64 69 66 66 65 72 65 6e 74 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 2e 00 56 79 4f | ng.different.routing.tables..VyO |
| 14d920 | 53 20 53 4e 4d 50 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 | S.SNMP.supports.both.IPv4.and.IP |
| 14d940 | 76 36 2e 00 56 79 4f 53 20 61 6c 73 6f 20 63 6f 6d 65 73 20 77 69 74 68 20 61 20 62 75 69 6c 64 | v6..VyOS.also.comes.with.a.build |
| 14d960 | 20 69 6e 20 53 53 54 50 20 73 65 72 76 65 72 2c 20 73 65 65 20 3a 72 65 66 3a 60 73 73 74 70 60 | .in.SSTP.server,.see.:ref:`sstp` |
| 14d980 | 2e 00 56 79 4f 53 20 61 6c 73 6f 20 70 72 6f 76 69 64 65 73 20 44 48 43 50 76 36 20 73 65 72 76 | ..VyOS.also.provides.DHCPv6.serv |
| 14d9a0 | 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 77 68 69 63 68 20 69 73 20 64 65 73 63 72 69 | er.functionality.which.is.descri |
| 14d9c0 | 62 65 64 20 69 6e 20 74 68 69 73 20 73 65 63 74 69 6f 6e 2e 00 56 79 4f 53 20 61 6c 73 6f 20 73 | bed.in.this.section..VyOS.also.s |
| 14d9e0 | 75 70 70 6f 72 74 73 20 28 63 75 72 72 65 6e 74 6c 79 29 20 74 77 6f 20 64 69 66 66 65 72 65 6e | upports.(currently).two.differen |
| 14da00 | 74 20 6d 6f 64 65 73 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2c 20 6c 6f 63 61 6c | t.modes.of.authentication,.local |
| 14da20 | 20 61 6e 64 20 52 41 44 49 55 53 2e 20 54 6f 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 6c 6f 63 | .and.RADIUS..To.create.a.new.loc |
| 14da40 | 61 6c 20 75 73 65 72 20 6e 61 6d 65 64 20 60 60 76 79 6f 73 60 60 20 77 69 74 68 20 70 61 73 73 | al.user.named.``vyos``.with.pass |
| 14da60 | 77 6f 72 64 20 60 60 76 79 6f 73 60 60 20 75 73 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 | word.``vyos``.use.the.following. |
| 14da80 | 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f 53 20 61 6c 73 6f 20 73 75 70 70 6f 72 74 73 20 74 77 6f | commands..VyOS.also.supports.two |
| 14daa0 | 20 64 69 66 66 65 72 65 6e 74 20 6d 6f 64 65 73 20 6f 66 20 61 75 74 68 65 6e 74 69 63 61 74 69 | .different.modes.of.authenticati |
| 14dac0 | 6f 6e 2c 20 6c 6f 63 61 6c 20 61 6e 64 20 52 41 44 49 55 53 2e 20 54 6f 20 63 72 65 61 74 65 20 | on,.local.and.RADIUS..To.create. |
| 14dae0 | 61 20 6e 65 77 20 6c 6f 63 61 6c 20 75 73 65 72 20 6e 61 6d 65 64 20 22 76 79 6f 73 22 20 77 69 | a.new.local.user.named."vyos".wi |
| 14db00 | 74 68 20 61 20 70 61 73 73 77 6f 72 64 20 6f 66 20 22 76 79 6f 73 22 20 75 73 65 20 74 68 65 20 | th.a.password.of."vyos".use.the. |
| 14db20 | 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f 53 20 63 61 6e 20 61 6c 73 | following.commands..VyOS.can.als |
| 14db40 | 6f 20 72 75 6e 20 69 6e 20 44 4d 56 50 4e 20 73 70 6f 6b 65 20 6d 6f 64 65 2e 00 56 79 4f 53 20 | o.run.in.DMVPN.spoke.mode..VyOS. |
| 14db60 | 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 75 72 65 64 20 74 6f 20 74 72 61 63 6b 20 63 6f 6e 6e 65 | can.be.configured.to.track.conne |
| 14db80 | 63 74 69 6f 6e 73 20 75 73 69 6e 67 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 | ctions.using.the.connection.trac |
| 14dba0 | 6b 69 6e 67 20 73 75 62 73 79 73 74 65 6d 2e 20 43 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b | king.subsystem..Connection.track |
| 14dbc0 | 69 6e 67 20 62 65 63 6f 6d 65 73 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6f 6e 63 65 20 65 69 74 | ing.becomes.operational.once.eit |
| 14dbe0 | 68 65 72 20 73 74 61 74 65 66 75 6c 20 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 20 69 73 20 | her.stateful.firewall.or.NAT.is. |
| 14dc00 | 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 61 63 | configured..VyOS.can.not.only.ac |
| 14dc20 | 74 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6f 72 20 | t.as.an.OpenVPN.site-to-site.or. |
| 14dc40 | 73 65 72 76 65 72 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 20 62 75 74 20 | server.for.multiple.clients.but. |
| 14dc60 | 79 6f 75 20 63 61 6e 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 79 20 56 79 4f 53 20 | you.can.also.configure.any.VyOS. |
| 14dc80 | 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 | OpenVPN.interface.as.an.OpenVPN. |
| 14dca0 | 63 6c 69 65 6e 74 20 74 68 61 74 20 63 6f 6e 6e 65 63 74 73 20 74 6f 20 61 20 56 79 4f 53 20 4f | client.that.connects.to.a.VyOS.O |
| 14dcc0 | 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 4f 70 65 6e 56 | penVPN.server.or.any.other.OpenV |
| 14dce0 | 50 4e 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 63 61 6e 20 6e 6f 74 20 6f 6e 6c 79 20 61 63 74 | PN.server..VyOS.can.not.only.act |
| 14dd00 | 20 61 73 20 61 6e 20 4f 70 65 6e 56 50 4e 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 6f 72 20 73 | .as.an.OpenVPN.site-to-site.or.s |
| 14dd20 | 65 72 76 65 72 20 66 6f 72 20 6d 75 6c 74 69 70 6c 65 20 63 6c 69 65 6e 74 73 2e 20 59 6f 75 20 | erver.for.multiple.clients..You. |
| 14dd40 | 63 61 6e 20 69 6e 64 65 65 64 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 6e 79 20 56 79 | can.indeed.also.configure.any.Vy |
| 14dd60 | 4f 53 20 4f 70 65 6e 56 50 4e 20 69 6e 74 65 72 66 61 63 65 20 61 73 20 61 6e 20 4f 70 65 6e 56 | OS.OpenVPN.interface.as.an.OpenV |
| 14dd80 | 50 4e 20 63 6c 69 65 6e 74 20 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 61 20 56 79 4f 53 20 4f | PN.client.connecting.to.a.VyOS.O |
| 14dda0 | 70 65 6e 56 50 4e 20 73 65 72 76 65 72 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 4f 70 65 6e 56 | penVPN.server.or.any.other.OpenV |
| 14ddc0 | 50 4e 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 64 65 66 61 75 6c 74 20 77 69 6c 6c 20 62 65 20 | PN.server..VyOS.default.will.be. |
| 14dde0 | 60 61 75 74 6f 60 2e 00 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 | `auto`..VyOS.does.not.have.a.spe |
| 14de00 | 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 42 61 62 65 6c 20 | cial.command.to.start.the.Babel. |
| 14de20 | 70 72 6f 63 65 73 73 2e 20 54 68 65 20 42 61 62 65 6c 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 | process..The.Babel.process.start |
| 14de40 | 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 42 61 62 65 6c 20 65 6e 61 62 6c 65 64 20 69 | s.when.the.first.Babel.enabled.i |
| 14de60 | 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 64 6f 65 | nterface.is.configured..VyOS.doe |
| 14de80 | 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 | s.not.have.a.special.command.to. |
| 14dea0 | 73 74 61 72 74 20 74 68 65 20 4f 53 50 46 20 70 72 6f 63 65 73 73 2e 20 54 68 65 20 4f 53 50 46 | start.the.OSPF.process..The.OSPF |
| 14dec0 | 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 6f | .process.starts.when.the.first.o |
| 14dee0 | 73 70 66 20 65 6e 61 62 6c 65 64 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 63 6f 6e 66 69 67 75 | spf.enabled.interface.is.configu |
| 14df00 | 72 65 64 2e 00 56 79 4f 53 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 20 73 70 65 63 69 61 | red..VyOS.does.not.have.a.specia |
| 14df20 | 6c 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 73 74 61 72 74 20 74 68 65 20 4f 53 50 46 76 33 20 70 72 | l.command.to.start.the.OSPFv3.pr |
| 14df40 | 6f 63 65 73 73 2e 20 54 68 65 20 4f 53 50 46 76 33 20 70 72 6f 63 65 73 73 20 73 74 61 72 74 73 | ocess..The.OSPFv3.process.starts |
| 14df60 | 20 77 68 65 6e 20 74 68 65 20 66 69 72 73 74 20 6f 73 70 66 20 65 6e 61 62 6c 65 64 20 69 6e 74 | .when.the.first.ospf.enabled.int |
| 14df80 | 65 72 66 61 63 65 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 00 56 79 4f 53 20 66 61 63 69 6c | erface.is.configured..VyOS.facil |
| 14dfa0 | 69 74 61 74 65 73 20 49 50 20 4d 75 6c 74 69 63 61 73 74 20 62 79 20 73 75 70 70 6f 72 74 69 6e | itates.IP.Multicast.by.supportin |
| 14dfc0 | 67 20 2a 2a 50 49 4d 20 53 70 61 72 73 65 20 4d 6f 64 65 2a 2a 2c 20 2a 2a 49 47 4d 50 2a 2a 20 | g.**PIM.Sparse.Mode**,.**IGMP**. |
| 14dfe0 | 61 6e 64 20 2a 2a 49 47 4d 50 2d 50 72 6f 78 79 2a 2a 2e 00 56 79 4f 53 20 66 61 63 69 6c 69 74 | and.**IGMP-Proxy**..VyOS.facilit |
| 14e000 | 61 74 65 73 20 49 50 76 36 20 4d 75 6c 74 69 63 61 73 74 20 62 79 20 73 75 70 70 6f 72 74 69 6e | ates.IPv6.Multicast.by.supportin |
| 14e020 | 67 20 2a 2a 50 49 4d 76 36 2a 2a 20 61 6e 64 20 2a 2a 4d 4c 44 2a 2a 2e 00 56 79 4f 53 20 69 6e | g.**PIMv6**.and.**MLD**..VyOS.in |
| 14e040 | 63 6c 75 64 65 73 20 74 68 65 20 46 61 73 74 4e 65 74 4d 6f 6e 20 43 6f 6d 6d 75 6e 69 74 79 20 | cludes.the.FastNetMon.Community. |
| 14e060 | 45 64 69 74 69 6f 6e 2e 00 56 79 4f 53 20 69 73 20 61 62 6c 65 20 74 6f 20 75 70 64 61 74 65 20 | Edition..VyOS.is.able.to.update. |
| 14e080 | 61 20 72 65 6d 6f 74 65 20 44 4e 53 20 72 65 63 6f 72 64 20 77 68 65 6e 20 61 6e 20 69 6e 74 65 | a.remote.DNS.record.when.an.inte |
| 14e0a0 | 72 66 61 63 65 20 67 65 74 73 20 61 20 6e 65 77 20 49 50 20 61 64 64 72 65 73 73 2e 20 49 6e 20 | rface.gets.a.new.IP.address..In. |
| 14e0c0 | 6f 72 64 65 72 20 74 6f 20 64 6f 20 73 6f 2c 20 56 79 4f 53 20 69 6e 63 6c 75 64 65 73 20 64 64 | order.to.do.so,.VyOS.includes.dd |
| 14e0e0 | 63 6c 69 65 6e 74 5f 2c 20 61 20 50 65 72 6c 20 73 63 72 69 70 74 20 77 72 69 74 74 65 6e 20 66 | client_,.a.Perl.script.written.f |
| 14e100 | 6f 72 20 74 68 69 73 20 6f 6e 6c 79 20 6f 6e 65 20 70 75 72 70 6f 73 65 2e 00 56 79 4f 53 20 69 | or.this.only.one.purpose..VyOS.i |
| 14e120 | 73 20 61 6c 73 6f 20 61 62 6c 65 20 74 6f 20 75 73 65 20 61 6e 79 20 73 65 72 76 69 63 65 20 72 | s.also.able.to.use.any.service.r |
| 14e140 | 65 6c 79 69 6e 67 20 6f 6e 20 70 72 6f 74 6f 63 6f 6c 73 20 73 75 70 70 6f 72 74 65 64 20 62 79 | elying.on.protocols.supported.by |
| 14e160 | 20 64 64 63 6c 69 65 6e 74 2e 00 56 79 4f 53 20 69 74 73 65 6c 66 20 73 75 70 70 6f 72 74 73 20 | .ddclient..VyOS.itself.supports. |
| 14e180 | 53 4e 4d 50 76 32 5f 20 28 76 65 72 73 69 6f 6e 20 32 29 20 61 6e 64 20 53 4e 4d 50 76 33 5f 20 | SNMPv2_.(version.2).and.SNMPv3_. |
| 14e1a0 | 28 76 65 72 73 69 6f 6e 20 33 29 20 77 68 65 72 65 20 74 68 65 20 6c 61 74 65 72 20 69 73 20 72 | (version.3).where.the.later.is.r |
| 14e1c0 | 65 63 6f 6d 6d 65 6e 64 65 64 20 62 65 63 61 75 73 65 20 6f 66 20 69 6d 70 72 6f 76 65 64 20 73 | ecommended.because.of.improved.s |
| 14e1e0 | 65 63 75 72 69 74 79 20 28 6f 70 74 69 6f 6e 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | ecurity.(optional.authentication |
| 14e200 | 20 61 6e 64 20 65 6e 63 72 79 70 74 69 6f 6e 29 2e 00 56 79 4f 53 20 6c 65 74 73 20 79 6f 75 20 | .and.encryption)..VyOS.lets.you. |
| 14e220 | 63 6f 6e 74 72 6f 6c 20 74 72 61 66 66 69 63 20 69 6e 20 6d 61 6e 79 20 64 69 66 66 65 72 65 6e | control.traffic.in.many.differen |
| 14e240 | 74 20 77 61 79 73 2c 20 68 65 72 65 20 77 65 20 77 69 6c 6c 20 63 6f 76 65 72 20 65 76 65 72 79 | t.ways,.here.we.will.cover.every |
| 14e260 | 20 70 6f 73 73 69 62 69 6c 69 74 79 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 | .possibility..You.can.configure. |
| 14e280 | 61 73 20 6d 61 6e 79 20 70 6f 6c 69 63 69 65 73 20 61 73 20 79 6f 75 20 77 61 6e 74 2c 20 62 75 | as.many.policies.as.you.want,.bu |
| 14e2a0 | 74 20 79 6f 75 20 77 69 6c 6c 20 6f 6e 6c 79 20 62 65 20 61 62 6c 65 20 74 6f 20 61 70 70 6c 79 | t.you.will.only.be.able.to.apply |
| 14e2c0 | 20 6f 6e 65 20 70 6f 6c 69 63 79 20 70 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 64 69 | .one.policy.per.interface.and.di |
| 14e2e0 | 72 65 63 74 69 6f 6e 20 28 69 6e 62 6f 75 6e 64 20 6f 72 20 6f 75 74 62 6f 75 6e 64 29 2e 00 56 | rection.(inbound.or.outbound)..V |
| 14e300 | 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 3a 61 62 62 72 3a 60 46 52 52 20 28 46 72 65 | yOS.makes.use.of.:abbr:`FRR.(Fre |
| 14e320 | 65 20 52 61 6e 67 65 20 52 6f 75 74 69 6e 67 29 60 20 61 6e 64 20 77 65 20 77 6f 75 6c 64 20 6c | e.Range.Routing)`.and.we.would.l |
| 14e340 | 69 6b 65 20 74 6f 20 74 68 61 6e 6b 20 74 68 65 6d 20 66 6f 72 20 74 68 65 69 72 20 65 66 66 6f | ike.to.thank.them.for.their.effo |
| 14e360 | 72 74 21 00 56 79 4f 53 20 6d 61 6b 65 73 20 75 73 65 20 6f 66 20 4c 69 6e 75 78 20 60 6e 65 74 | rt!.VyOS.makes.use.of.Linux.`net |
| 14e380 | 66 69 6c 74 65 72 20 3c 68 74 74 70 73 3a 2f 2f 6e 65 74 66 69 6c 74 65 72 2e 6f 72 67 2f 3e 60 | filter.<https://netfilter.org/>` |
| 14e3a0 | 5f 20 66 6f 72 20 70 61 63 6b 65 74 20 66 69 6c 74 65 72 69 6e 67 2e 00 56 79 4f 53 20 6e 6f 74 | _.for.packet.filtering..VyOS.not |
| 14e3c0 | 20 6f 6e 6c 79 20 63 61 6e 20 6e 6f 77 20 6d 61 6e 61 67 65 20 63 65 72 74 69 66 69 63 61 74 65 | .only.can.now.manage.certificate |
| 14e3e0 | 73 20 69 73 73 75 65 64 20 62 79 20 33 72 64 20 70 61 72 74 79 20 43 65 72 74 69 66 69 63 61 74 | s.issued.by.3rd.party.Certificat |
| 14e400 | 65 20 41 75 74 68 6f 72 69 74 69 65 73 2c 20 69 74 20 63 61 6e 20 61 6c 73 6f 20 61 63 74 20 61 | e.Authorities,.it.can.also.act.a |
| 14e420 | 73 20 61 20 43 41 20 6f 6e 20 69 74 73 20 6f 77 6e 2e 20 59 6f 75 20 63 61 6e 20 63 72 65 61 74 | s.a.CA.on.its.own..You.can.creat |
| 14e440 | 65 20 79 6f 75 72 20 6f 77 6e 20 72 6f 6f 74 20 43 41 20 61 6e 64 20 73 69 67 6e 20 6b 65 79 73 | e.your.own.root.CA.and.sign.keys |
| 14e460 | 20 77 69 74 68 20 69 74 20 62 79 20 6d 61 6b 69 6e 67 20 75 73 65 20 6f 66 20 73 6f 6d 65 20 73 | .with.it.by.making.use.of.some.s |
| 14e480 | 69 6d 70 6c 65 20 6f 70 2d 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 2e 00 56 79 4f 53 20 6e 6f 77 | imple.op-mode.commands..VyOS.now |
| 14e4a0 | 20 61 6c 73 6f 20 68 61 73 20 74 68 65 20 61 62 69 6c 69 74 79 20 74 6f 20 63 72 65 61 74 65 20 | .also.has.the.ability.to.create. |
| 14e4c0 | 43 41 73 2c 20 6b 65 79 73 2c 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 61 6e 64 20 6f 74 | CAs,.keys,.Diffie-Hellman.and.ot |
| 14e4e0 | 68 65 72 20 6b 65 79 70 61 69 72 73 20 66 72 6f 6d 20 61 6e 20 65 61 73 79 20 74 6f 20 61 63 63 | her.keypairs.from.an.easy.to.acc |
| 14e500 | 65 73 73 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6c 65 76 65 6c 20 63 6f 6d 6d 61 6e 64 2e 00 56 | ess.operational.level.command..V |
| 14e520 | 79 4f 53 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 20 63 6f 6d 6d 61 6e 64 73 20 61 72 | yOS.operational.mode.commands.ar |
| 14e540 | 65 20 6e 6f 74 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 67 65 6e 65 72 61 74 | e.not.only.available.for.generat |
| 14e560 | 69 6e 67 20 6b 65 79 73 20 62 75 74 20 61 6c 73 6f 20 74 6f 20 64 69 73 70 6c 61 79 20 74 68 65 | ing.keys.but.also.to.display.the |
| 14e580 | 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 20 61 6e 20 48 54 54 50 20 41 50 49 2e 20 59 6f 75 | m..VyOS.provide.an.HTTP.API..You |
| 14e5a0 | 20 63 61 6e 20 75 73 65 20 69 74 20 74 6f 20 65 78 65 63 75 74 65 20 6f 70 2d 6d 6f 64 65 20 63 | .can.use.it.to.execute.op-mode.c |
| 14e5c0 | 6f 6d 6d 61 6e 64 73 2c 20 75 70 64 61 74 65 20 56 79 4f 53 2c 20 73 65 74 20 6f 72 20 64 65 6c | ommands,.update.VyOS,.set.or.del |
| 14e5e0 | 65 74 65 20 63 6f 6e 66 69 67 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 44 4e 53 20 69 6e | ete.config..VyOS.provides.DNS.in |
| 14e600 | 66 72 61 73 74 72 75 63 74 75 72 65 20 66 6f 72 20 73 6d 61 6c 6c 20 6e 65 74 77 6f 72 6b 73 2e | frastructure.for.small.networks. |
| 14e620 | 20 49 74 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 62 65 20 6c 69 67 68 74 77 65 69 67 68 | .It.is.designed.to.be.lightweigh |
| 14e640 | 74 20 61 6e 64 20 68 61 76 65 20 61 20 73 6d 61 6c 6c 20 66 6f 6f 74 70 72 69 6e 74 2c 20 73 75 | t.and.have.a.small.footprint,.su |
| 14e660 | 69 74 61 62 6c 65 20 66 6f 72 20 72 65 73 6f 75 72 63 65 20 63 6f 6e 73 74 72 61 69 6e 65 64 20 | itable.for.resource.constrained. |
| 14e680 | 72 6f 75 74 65 72 73 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 73 2e 20 46 6f 72 20 74 68 69 73 20 | routers.and.firewalls..For.this. |
| 14e6a0 | 77 65 20 75 74 69 6c 69 7a 65 20 50 6f 77 65 72 44 4e 53 20 72 65 63 75 72 73 6f 72 2e 00 56 79 | we.utilize.PowerDNS.recursor..Vy |
| 14e6c0 | 4f 53 20 70 72 6f 76 69 64 65 73 20 48 69 67 68 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 73 75 | OS.provides.High.Availability.su |
| 14e6e0 | 70 70 6f 72 74 20 66 6f 72 20 44 48 43 50 20 73 65 72 76 65 72 2e 20 44 48 43 50 20 48 69 67 68 | pport.for.DHCP.server..DHCP.High |
| 14e700 | 20 41 76 61 69 6c 61 62 69 6c 69 74 79 20 63 61 6e 20 61 63 74 20 69 6e 20 74 77 6f 20 64 69 66 | .Availability.can.act.in.two.dif |
| 14e720 | 66 65 72 65 6e 74 20 6d 6f 64 65 73 3a 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 61 20 63 6f | ferent.modes:.VyOS.provides.a.co |
| 14e740 | 6d 6d 61 6e 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 | mmand.to.generate.a.connection.p |
| 14e760 | 72 6f 66 69 6c 65 20 75 73 65 64 20 62 79 20 57 69 6e 64 6f 77 73 20 63 6c 69 65 6e 74 73 20 74 | rofile.used.by.Windows.clients.t |
| 14e780 | 68 61 74 20 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 22 72 77 22 20 63 6f 6e | hat.will.connect.to.the."rw".con |
| 14e7a0 | 6e 65 63 74 69 6f 6e 20 6f 6e 20 6f 75 72 20 56 79 4f 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 | nection.on.our.VyOS.server..VyOS |
| 14e7c0 | 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 6c | .provides.policies.commands.excl |
| 14e7e0 | 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 6e | usively.for.BGP.traffic.filterin |
| 14e800 | 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 61 73 2d 70 61 74 68 2d 6c 69 | g.and.manipulation:.**as-path-li |
| 14e820 | 73 74 2a 2a 20 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 | st**.is.one.of.them..VyOS.provid |
| 14e840 | 65 73 20 70 6f 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 | es.policies.commands.exclusively |
| 14e860 | 20 66 6f 72 20 42 47 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d | .for.BGP.traffic.filtering.and.m |
| 14e880 | 61 6e 69 70 75 6c 61 74 69 6f 6e 3a 20 2a 2a 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 | anipulation:.**community-list**. |
| 14e8a0 | 69 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f | is.one.of.them..VyOS.provides.po |
| 14e8c0 | 6c 69 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 | licies.commands.exclusively.for. |
| 14e8e0 | 42 47 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 | BGP.traffic.filtering.and.manipu |
| 14e900 | 6c 61 74 69 6f 6e 3a 20 2a 2a 65 78 74 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 73 | lation:.**extcommunity-list**.is |
| 14e920 | 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 70 6f 6c 69 | .one.of.them..VyOS.provides.poli |
| 14e940 | 63 69 65 73 20 63 6f 6d 6d 61 6e 64 73 20 65 78 63 6c 75 73 69 76 65 6c 79 20 66 6f 72 20 42 47 | cies.commands.exclusively.for.BG |
| 14e960 | 50 20 74 72 61 66 66 69 63 20 66 69 6c 74 65 72 69 6e 67 20 61 6e 64 20 6d 61 6e 69 70 75 6c 61 | P.traffic.filtering.and.manipula |
| 14e980 | 74 69 6f 6e 3a 20 2a 2a 6c 61 72 67 65 2d 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 2a 2a 20 69 | tion:.**large-community-list**.i |
| 14e9a0 | 73 20 6f 6e 65 20 6f 66 20 74 68 65 6d 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 73 6f 6d | s.one.of.them..VyOS.provides.som |
| 14e9c0 | 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 63 6f 6d 6d 61 6e 64 73 20 6f 6e 20 4f 70 65 6e 56 50 | e.operational.commands.on.OpenVP |
| 14e9e0 | 4e 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 65 73 20 73 75 70 70 6f 72 74 20 66 6f 72 20 44 48 43 | N..VyOS.provides.support.for.DHC |
| 14ea00 | 50 20 66 61 69 6c 6f 76 65 72 2e 20 44 48 43 50 20 66 61 69 6c 6f 76 65 72 20 6d 75 73 74 20 62 | P.failover..DHCP.failover.must.b |
| 14ea20 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 65 78 70 6c 69 63 69 74 6c 79 20 62 79 20 74 68 65 20 66 | e.configured.explicitly.by.the.f |
| 14ea40 | 6f 6c 6c 6f 77 69 6e 67 20 73 74 61 74 65 6d 65 6e 74 73 2e 00 56 79 4f 53 20 70 72 6f 76 69 64 | ollowing.statements..VyOS.provid |
| 14ea60 | 65 73 20 74 68 69 73 20 75 74 69 6c 69 74 79 20 74 6f 20 69 6d 70 6f 72 74 20 65 78 69 73 74 69 | es.this.utility.to.import.existi |
| 14ea80 | 6e 67 20 63 65 72 74 69 66 69 63 61 74 65 73 2f 6b 65 79 20 66 69 6c 65 73 20 64 69 72 65 63 74 | ng.certificates/key.files.direct |
| 14eaa0 | 6c 79 20 69 6e 74 6f 20 50 4b 49 20 66 72 6f 6d 20 6f 70 2d 6d 6f 64 65 2e 20 50 72 65 76 69 6f | ly.into.PKI.from.op-mode..Previo |
| 14eac0 | 75 73 20 74 6f 20 56 79 4f 53 20 31 2e 34 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 77 65 72 | us.to.VyOS.1.4,.certificates.wer |
| 14eae0 | 65 20 73 74 6f 72 65 64 20 75 6e 64 65 72 20 74 68 65 20 2f 63 6f 6e 66 69 67 20 66 6f 6c 64 65 | e.stored.under.the./config.folde |
| 14eb00 | 72 20 70 65 72 6d 61 6e 65 6e 74 6c 79 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 72 65 74 61 69 6e | r.permanently.and.will.be.retain |
| 14eb20 | 65 64 20 70 6f 73 74 20 75 70 67 72 61 64 65 2e 00 56 79 4f 53 20 72 65 76 65 72 73 65 2d 70 72 | ed.post.upgrade..VyOS.reverse-pr |
| 14eb40 | 6f 78 79 20 69 73 20 62 61 6c 61 6e 63 65 72 20 61 6e 64 20 70 72 6f 78 79 20 73 65 72 76 65 72 | oxy.is.balancer.and.proxy.server |
| 14eb60 | 20 74 68 61 74 20 70 72 6f 76 69 64 65 73 20 68 69 67 68 2d 61 76 61 69 6c 61 62 69 6c 69 74 79 | .that.provides.high-availability |
| 14eb80 | 2c 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 20 61 6e 64 20 70 72 6f 78 79 69 6e 67 20 66 6f | ,.load.balancing.and.proxying.fo |
| 14eba0 | 72 20 54 43 50 20 28 6c 65 76 65 6c 20 34 29 20 61 6e 64 20 48 54 54 50 2d 62 61 73 65 64 20 28 | r.TCP.(level.4).and.HTTP-based.( |
| 14ebc0 | 6c 65 76 65 6c 20 37 29 20 61 70 70 6c 69 63 61 74 69 6f 6e 73 2e 00 56 79 4f 53 20 73 75 70 70 | level.7).applications..VyOS.supp |
| 14ebe0 | 6f 72 74 73 20 3a 61 62 62 72 3a 60 50 49 4d 2d 53 4d 20 28 50 49 4d 20 53 70 61 72 73 65 20 4d | orts.:abbr:`PIM-SM.(PIM.Sparse.M |
| 14ec00 | 6f 64 65 29 60 20 61 73 20 77 65 6c 6c 20 61 73 20 3a 61 62 62 72 3a 60 49 47 4d 50 20 28 49 6e | ode)`.as.well.as.:abbr:`IGMP.(In |
| 14ec20 | 74 65 72 6e 65 74 20 47 72 6f 75 70 20 4d 61 6e 61 67 65 6d 65 6e 74 20 50 72 6f 74 6f 63 6f 6c | ternet.Group.Management.Protocol |
| 14ec40 | 29 60 20 76 32 20 61 6e 64 20 76 33 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 20 | )`.v2.and.v3.VyOS.supports.both. |
| 14ec60 | 49 47 4d 50 20 76 65 72 73 69 6f 6e 20 32 20 61 6e 64 20 76 65 72 73 69 6f 6e 20 33 20 28 77 68 | IGMP.version.2.and.version.3.(wh |
| 14ec80 | 69 63 68 20 61 6c 6c 6f 77 73 20 73 6f 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 | ich.allows.source-specific.multi |
| 14eca0 | 63 61 73 74 29 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 62 6f 74 68 20 4d 4c 44 20 76 65 | cast)..VyOS.supports.both.MLD.ve |
| 14ecc0 | 72 73 69 6f 6e 20 31 20 61 6e 64 20 76 65 72 73 69 6f 6e 20 32 20 28 77 68 69 63 68 20 61 6c 6c | rsion.1.and.version.2.(which.all |
| 14ece0 | 6f 77 73 20 73 6f 75 72 63 65 2d 73 70 65 63 69 66 69 63 20 6d 75 6c 74 69 63 61 73 74 29 2e 00 | ows.source-specific.multicast).. |
| 14ed00 | 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 66 6f | VyOS.supports.flow-accounting.fo |
| 14ed20 | 72 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 2e 20 54 68 | r.both.IPv4.and.IPv6.traffic..Th |
| 14ed40 | 65 20 73 79 73 74 65 6d 20 61 63 74 73 20 61 73 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 | e.system.acts.as.a.flow.exporter |
| 14ed60 | 2c 20 61 6e 64 20 79 6f 75 20 61 72 65 20 66 72 65 65 20 74 6f 20 75 73 65 20 69 74 20 77 69 74 | ,.and.you.are.free.to.use.it.wit |
| 14ed80 | 68 20 61 6e 79 20 63 6f 6d 70 61 74 69 62 6c 65 20 63 6f 6c 6c 65 63 74 6f 72 2e 00 56 79 4f 53 | h.any.compatible.collector..VyOS |
| 14eda0 | 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e 74 69 63 | .supports.multi-factor.authentic |
| 14edc0 | 61 74 69 6f 6e 20 28 4d 46 41 29 20 6f 72 20 74 77 6f 2d 66 61 63 74 6f 72 20 61 75 74 68 65 6e | ation.(MFA).or.two-factor.authen |
| 14ede0 | 74 69 63 61 74 69 6f 6e 20 75 73 69 6e 67 20 54 69 6d 65 2d 62 61 73 65 64 20 4f 6e 65 2d 54 69 | tication.using.Time-based.One-Ti |
| 14ee00 | 6d 65 20 50 61 73 73 77 6f 72 64 20 28 54 4f 54 50 29 2e 20 43 6f 6d 70 61 74 69 62 6c 65 20 77 | me.Password.(TOTP)..Compatible.w |
| 14ee20 | 69 74 68 20 47 6f 6f 67 6c 65 20 41 75 74 68 65 6e 74 69 63 61 74 6f 72 20 73 6f 66 74 77 61 72 | ith.Google.Authenticator.softwar |
| 14ee40 | 65 20 74 6f 6b 65 6e 2c 20 6f 74 68 65 72 20 73 6f 66 74 77 61 72 65 20 74 6f 6b 65 6e 73 2e 00 | e.token,.other.software.tokens.. |
| 14ee60 | 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 49 4b 45 76 32 20 72 65 6d | VyOS.supports.multiple.IKEv2.rem |
| 14ee80 | 6f 74 65 2d 61 63 63 65 73 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 20 45 76 65 72 79 20 63 6f | ote-access.connections..Every.co |
| 14eea0 | 6e 6e 65 63 74 69 6f 6e 20 63 61 6e 20 68 61 76 65 20 69 74 73 20 64 65 64 69 63 61 74 65 64 20 | nnection.can.have.its.dedicated. |
| 14eec0 | 49 4b 45 2f 45 53 50 20 63 69 70 68 65 72 73 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 | IKE/ESP.ciphers,.certificates.or |
| 14eee0 | 20 6c 6f 63 61 6c 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 66 6f 72 20 65 2e 67 2e 20 69 | .local.listen.address.for.e.g..i |
| 14ef00 | 6e 62 6f 75 6e 64 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 2e 00 56 79 4f 53 20 73 75 70 70 | nbound.load.balancing..VyOS.supp |
| 14ef20 | 6f 72 74 73 20 6d 75 6c 74 69 70 6c 65 20 49 4b 45 76 32 20 72 65 6d 6f 74 65 2d 61 63 63 65 73 | orts.multiple.IKEv2.remote-acces |
| 14ef40 | 73 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2e 20 45 76 65 72 79 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 | s.connections..Every.connection. |
| 14ef60 | 63 61 6e 20 68 61 76 65 20 69 74 73 20 6f 77 6e 20 64 65 64 69 63 61 74 65 64 20 49 4b 45 2f 45 | can.have.its.own.dedicated.IKE/E |
| 14ef80 | 53 50 20 63 69 70 68 65 72 73 2c 20 63 65 72 74 69 66 69 63 61 74 65 73 20 6f 72 20 6c 6f 63 61 | SP.ciphers,.certificates.or.loca |
| 14efa0 | 6c 20 6c 69 73 74 65 6e 20 61 64 64 72 65 73 73 20 66 6f 72 20 65 2e 67 2e 20 69 6e 62 6f 75 6e | l.listen.address.for.e.g..inboun |
| 14efc0 | 64 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 2e 00 56 79 4f 53 20 73 75 70 70 6f 72 74 73 20 | d.load.balancing..VyOS.supports. |
| 14efe0 | 6f 6e 6c 69 6e 65 20 63 68 65 63 6b 69 6e 67 20 66 6f 72 20 75 70 64 61 74 65 73 00 56 79 4f 53 | online.checking.for.updates.VyOS |
| 14f000 | 20 73 75 70 70 6f 72 74 73 20 73 46 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 20 66 6f 72 20 62 | .supports.sFlow.accounting.for.b |
| 14f020 | 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 74 72 61 66 66 69 63 2e 20 54 68 65 20 73 | oth.IPv4.and.IPv6.traffic..The.s |
| 14f040 | 79 73 74 65 6d 20 61 63 74 73 20 61 73 20 61 20 66 6c 6f 77 20 65 78 70 6f 72 74 65 72 2c 20 61 | ystem.acts.as.a.flow.exporter,.a |
| 14f060 | 6e 64 20 79 6f 75 20 61 72 65 20 66 72 65 65 20 74 6f 20 75 73 65 20 69 74 20 77 69 74 68 20 61 | nd.you.are.free.to.use.it.with.a |
| 14f080 | 6e 79 20 63 6f 6d 70 61 74 69 62 6c 65 20 63 6f 6c 6c 65 63 74 6f 72 2e 00 56 79 4f 53 20 73 75 | ny.compatible.collector..VyOS.su |
| 14f0a0 | 70 70 6f 72 74 73 20 73 65 74 74 69 6e 67 20 74 69 6d 65 6f 75 74 73 20 66 6f 72 20 63 6f 6e 6e | pports.setting.timeouts.for.conn |
| 14f0c0 | 65 63 74 69 6f 6e 73 20 61 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 63 6f 6e 6e 65 63 74 | ections.according.to.the.connect |
| 14f0e0 | 69 6f 6e 20 74 79 70 65 2e 20 59 6f 75 20 63 61 6e 20 73 65 74 20 74 69 6d 65 6f 75 74 20 76 61 | ion.type..You.can.set.timeout.va |
| 14f100 | 6c 75 65 73 20 66 6f 72 20 67 65 6e 65 72 69 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 66 6f | lues.for.generic.connections,.fo |
| 14f120 | 72 20 49 43 4d 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 55 44 50 20 63 6f 6e 6e 65 63 74 69 | r.ICMP.connections,.UDP.connecti |
| 14f140 | 6f 6e 73 2c 20 6f 72 20 66 6f 72 20 54 43 50 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 69 6e 20 61 | ons,.or.for.TCP.connections.in.a |
| 14f160 | 20 6e 75 6d 62 65 72 20 6f 66 20 64 69 66 66 65 72 65 6e 74 20 73 74 61 74 65 73 2e 00 56 79 4f | .number.of.different.states..VyO |
| 14f180 | 53 20 73 75 70 70 6f 72 74 73 20 73 65 74 74 69 6e 67 20 75 70 20 50 50 50 6f 45 20 69 6e 20 74 | S.supports.setting.up.PPPoE.in.t |
| 14f1a0 | 77 6f 20 64 69 66 66 65 72 65 6e 74 20 77 61 79 73 20 74 6f 20 61 20 50 50 50 6f 45 20 69 6e 74 | wo.different.ways.to.a.PPPoE.int |
| 14f1c0 | 65 72 6e 65 74 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 54 68 69 73 20 69 73 20 62 65 63 61 75 73 | ernet.connection..This.is.becaus |
| 14f1e0 | 65 20 6d 6f 73 74 20 49 53 50 73 20 70 72 6f 76 69 64 65 20 61 20 6d 6f 64 65 6d 20 74 68 61 74 | e.most.ISPs.provide.a.modem.that |
| 14f200 | 20 69 73 20 61 6c 73 6f 20 61 20 77 69 72 65 6c 65 73 73 20 72 6f 75 74 65 72 2e 00 56 79 4f 53 | .is.also.a.wireless.router..VyOS |
| 14f220 | 20 75 73 65 73 20 49 53 43 20 44 48 43 50 20 73 65 72 76 65 72 20 66 6f 72 20 62 6f 74 68 20 49 | .uses.ISC.DHCP.server.for.both.I |
| 14f240 | 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e 6d 65 6e 74 2e | Pv4.and.IPv6.address.assignment. |
| 14f260 | 00 56 79 4f 53 20 75 73 65 73 20 4b 65 61 20 44 48 43 50 20 73 65 72 76 65 72 20 66 6f 72 20 62 | .VyOS.uses.Kea.DHCP.server.for.b |
| 14f280 | 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 20 61 64 64 72 65 73 73 20 61 73 73 69 67 6e | oth.IPv4.and.IPv6.address.assign |
| 14f2a0 | 6d 65 6e 74 2e 00 56 79 4f 53 20 75 73 65 73 20 5b 46 52 52 6f 75 74 69 6e 67 5d 28 68 74 74 70 | ment..VyOS.uses.[FRRouting](http |
| 14f2c0 | 73 3a 2f 2f 66 72 72 6f 75 74 69 6e 67 2e 6f 72 67 2f 29 20 61 73 20 74 68 65 20 63 6f 6e 74 72 | s://frrouting.org/).as.the.contr |
| 14f2e0 | 6f 6c 20 70 6c 61 6e 65 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 61 6e 64 20 73 74 61 74 69 63 20 | ol.plane.for.dynamic.and.static. |
| 14f300 | 72 6f 75 74 69 6e 67 2e 20 54 68 65 20 72 6f 75 74 69 6e 67 20 64 61 65 6d 6f 6e 20 62 65 68 61 | routing..The.routing.daemon.beha |
| 14f320 | 76 69 6f 72 20 63 61 6e 20 62 65 20 61 64 6a 75 73 74 65 64 20 64 75 72 69 6e 67 20 72 75 6e 74 | vior.can.be.adjusted.during.runt |
| 14f340 | 69 6d 65 2c 20 62 75 74 20 72 65 71 75 69 72 65 20 65 69 74 68 65 72 20 61 20 72 65 73 74 61 72 | ime,.but.require.either.a.restar |
| 14f360 | 74 20 6f 66 20 74 68 65 20 72 6f 75 74 69 6e 67 20 64 61 65 6d 6f 6e 2c 20 6f 72 20 61 20 72 65 | t.of.the.routing.daemon,.or.a.re |
| 14f380 | 62 6f 6f 74 20 6f 66 20 74 68 65 20 73 79 73 74 65 6d 2e 00 56 79 4f 53 20 75 73 65 73 20 74 68 | boot.of.the.system..VyOS.uses.th |
| 14f3a0 | 65 20 60 69 6e 74 65 72 66 61 63 65 73 20 77 77 61 6e 60 20 73 75 62 73 79 73 74 65 6d 20 66 6f | e.`interfaces.wwan`.subsystem.fo |
| 14f3c0 | 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 56 79 4f 53 20 75 73 65 73 20 74 68 65 20 60 | r.configuration..VyOS.uses.the.` |
| 14f3e0 | 6d 69 72 72 6f 72 60 20 6f 70 74 69 6f 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 70 6f 72 74 | mirror`.option.to.configure.port |
| 14f400 | 20 6d 69 72 72 6f 72 69 6e 67 2e 20 54 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 | .mirroring..The.configuration.is |
| 14f420 | 20 64 69 76 69 64 65 64 20 69 6e 74 6f 20 32 20 64 69 66 66 65 72 65 6e 74 20 64 69 72 65 63 74 | .divided.into.2.different.direct |
| 14f440 | 69 6f 6e 73 2e 20 44 65 73 74 69 6e 61 74 69 6f 6e 20 70 6f 72 74 73 20 73 68 6f 75 6c 64 20 62 | ions..Destination.ports.should.b |
| 14f460 | 65 20 63 6f 6e 66 69 67 75 72 65 64 20 66 6f 72 20 64 69 66 66 65 72 65 6e 74 20 74 72 61 66 66 | e.configured.for.different.traff |
| 14f480 | 69 63 20 64 69 72 65 63 74 69 6f 6e 73 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 60 61 63 | ic.directions..VyOS.utilizes.`ac |
| 14f4a0 | 63 65 6c 2d 70 70 70 60 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 3a 61 62 62 72 3a 60 49 50 6f 45 | cel-ppp`_.to.provide.:abbr:`IPoE |
| 14f4c0 | 20 28 49 6e 74 65 72 6e 65 74 20 50 72 6f 74 6f 63 6f 6c 20 6f 76 65 72 20 45 74 68 65 72 6e 65 | .(Internet.Protocol.over.Etherne |
| 14f4e0 | 74 29 60 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 63 61 6e | t)`.server.functionality..It.can |
| 14f500 | 20 62 65 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 | .be.used.with.local.authenticati |
| 14f520 | 6f 6e 20 28 6d 61 63 2d 61 64 64 72 65 73 73 29 20 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 | on.(mac-address).or.a.connected. |
| 14f540 | 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 75 74 69 6c 69 7a 65 73 20 60 61 63 | RADIUS.server..VyOS.utilizes.`ac |
| 14f560 | 63 65 6c 2d 70 70 70 60 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 50 50 50 6f 45 20 73 65 72 76 65 | cel-ppp`_.to.provide.PPPoE.serve |
| 14f580 | 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 | r.functionality..It.can.be.used. |
| 14f5a0 | 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 61 20 63 | with.local.authentication.or.a.c |
| 14f5c0 | 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 56 79 4f 53 20 75 74 69 | onnected.RADIUS.server..VyOS.uti |
| 14f5e0 | 6c 69 7a 65 73 20 61 63 63 65 6c 2d 70 70 70 5f 20 74 6f 20 70 72 6f 76 69 64 65 20 4c 32 54 50 | lizes.accel-ppp_.to.provide.L2TP |
| 14f600 | 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 49 74 20 63 61 6e 20 62 65 | .server.functionality..It.can.be |
| 14f620 | 20 75 73 65 64 20 77 69 74 68 20 6c 6f 63 61 6c 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 | .used.with.local.authentication. |
| 14f640 | 6f 72 20 61 20 63 6f 6e 6e 65 63 74 65 64 20 52 41 44 49 55 53 20 73 65 72 76 65 72 2e 00 56 79 | or.a.connected.RADIUS.server..Vy |
| 14f660 | 4f 53 20 75 74 69 6c 69 7a 65 73 20 61 63 63 65 6c 2d 70 70 70 5f 20 74 6f 20 70 72 6f 76 69 64 | OS.utilizes.accel-ppp_.to.provid |
| 14f680 | 65 20 53 53 54 50 20 73 65 72 76 65 72 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 2e 20 57 65 20 | e.SSTP.server.functionality..We. |
| 14f6a0 | 73 75 70 70 6f 72 74 20 62 6f 74 68 20 6c 6f 63 61 6c 20 61 6e 64 20 52 41 44 49 55 53 20 61 75 | support.both.local.and.RADIUS.au |
| 14f6c0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 57 41 4e 20 4c 6f 61 64 20 42 61 6c 61 63 69 6e 67 20 | thentication..WAN.Load.Balacing. |
| 14f6e0 | 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 77 68 65 6e 20 64 79 6e 61 6d 69 63 20 | should.not.be.used.when.dynamic. |
| 14f700 | 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 69 73 20 75 73 65 64 2f 6e 65 65 64 65 64 2e | routing.protocol.is.used/needed. |
| 14f720 | 20 54 68 69 73 20 66 65 61 74 75 72 65 20 63 72 65 61 74 65 73 20 63 75 73 74 6f 6d 69 7a 65 64 | .This.feature.creates.customized |
| 14f740 | 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 20 61 6e 64 20 66 69 72 65 77 61 6c 6c 20 72 75 6c | .routing.tables.and.firewall.rul |
| 14f760 | 65 73 2c 20 74 68 61 74 20 6d 61 6b 65 73 20 69 74 20 69 6e 63 6f 6d 70 61 74 69 62 6c 65 20 74 | es,.that.makes.it.incompatible.t |
| 14f780 | 6f 20 75 73 65 20 77 69 74 68 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 41 | o.use.with.routing.protocols..WA |
| 14f7a0 | 4e 20 69 6e 74 65 72 66 61 63 65 20 6f 6e 20 60 65 74 68 31 60 00 57 41 4e 20 6c 6f 61 64 20 62 | N.interface.on.`eth1`.WAN.load.b |
| 14f7c0 | 61 6c 61 6e 63 69 6e 67 00 57 4c 41 4e 2f 57 49 46 49 20 2d 20 57 69 72 65 6c 65 73 73 20 4c 41 | alancing.WLAN/WIFI.-.Wireless.LA |
| 14f7e0 | 4e 00 57 4d 4d 2d 50 53 20 55 6e 73 63 68 65 64 75 6c 65 64 20 41 75 74 6f 6d 61 74 69 63 20 50 | N.WMM-PS.Unscheduled.Automatic.P |
| 14f800 | 6f 77 65 72 20 53 61 76 65 20 44 65 6c 69 76 65 72 79 20 5b 55 2d 41 50 53 44 5d 00 57 50 41 20 | ower.Save.Delivery.[U-APSD].WPA. |
| 14f820 | 70 61 73 73 70 68 72 61 73 65 20 60 60 31 32 33 34 35 36 37 38 60 60 00 57 50 41 20 70 61 73 73 | passphrase.``12345678``.WPA.pass |
| 14f840 | 70 68 72 61 73 65 20 60 60 73 75 70 65 72 2d 64 6f 6f 70 65 72 2d 73 65 63 75 72 65 2d 70 61 73 | phrase.``super-dooper-secure-pas |
| 14f860 | 73 70 68 72 61 73 65 60 60 00 57 57 41 4e 20 2d 20 57 69 72 65 6c 65 73 73 20 57 69 64 65 2d 41 | sphrase``.WWAN.-.Wireless.Wide-A |
| 14f880 | 72 65 61 2d 4e 65 74 77 6f 72 6b 00 57 61 72 6e 69 6e 67 00 57 61 72 6e 69 6e 67 20 63 6f 6e 64 | rea-Network.Warning.Warning.cond |
| 14f8a0 | 69 74 69 6f 6e 73 00 57 65 20 61 73 73 75 6d 65 20 74 68 61 74 20 74 68 65 20 4c 45 46 54 20 72 | itions.We.assume.that.the.LEFT.r |
| 14f8c0 | 6f 75 74 65 72 20 68 61 73 20 73 74 61 74 69 63 20 31 39 32 2e 30 2e 32 2e 31 30 20 61 64 64 72 | outer.has.static.192.0.2.10.addr |
| 14f8e0 | 65 73 73 20 6f 6e 20 65 74 68 30 2c 20 61 6e 64 20 74 68 65 20 52 49 47 48 54 20 72 6f 75 74 65 | ess.on.eth0,.and.the.RIGHT.route |
| 14f900 | 72 20 68 61 73 20 61 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 20 6f 6e 20 65 74 68 30 2e | r.has.a.dynamic.address.on.eth0. |
| 14f920 | 00 57 65 20 63 61 6e 20 61 6c 73 6f 20 63 72 65 61 74 65 20 74 68 65 20 63 65 72 74 69 66 69 63 | .We.can.also.create.the.certific |
| 14f940 | 61 74 65 73 20 75 73 69 6e 67 20 43 65 72 62 6f 72 74 20 77 68 69 63 68 20 69 73 20 61 6e 20 65 | ates.using.Cerbort.which.is.an.e |
| 14f960 | 61 73 79 2d 74 6f 2d 75 73 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 66 65 74 63 68 65 73 20 61 | asy-to-use.client.that.fetches.a |
| 14f980 | 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 4c 65 74 27 73 20 45 6e 63 72 79 70 74 20 | .certificate.from.Let's.Encrypt. |
| 14f9a0 | 61 6e 20 6f 70 65 6e 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 69 74 79 20 6c 61 | an.open.certificate.authority.la |
| 14f9c0 | 75 6e 63 68 65 64 20 62 79 20 74 68 65 20 45 46 46 2c 20 4d 6f 7a 69 6c 6c 61 2c 20 61 6e 64 20 | unched.by.the.EFF,.Mozilla,.and. |
| 14f9e0 | 6f 74 68 65 72 73 20 61 6e 64 20 64 65 70 6c 6f 79 73 20 69 74 20 74 6f 20 61 20 77 65 62 20 73 | others.and.deploys.it.to.a.web.s |
| 14fa00 | 65 72 76 65 72 2e 00 57 65 20 63 61 6e 20 61 6c 73 6f 20 63 72 65 61 74 65 20 74 68 65 20 63 65 | erver..We.can.also.create.the.ce |
| 14fa20 | 72 74 69 66 69 63 61 74 65 73 20 75 73 69 6e 67 20 43 65 72 74 62 6f 74 20 77 68 69 63 68 20 69 | rtificates.using.Certbot.which.i |
| 14fa40 | 73 20 61 6e 20 65 61 73 79 2d 74 6f 2d 75 73 65 20 63 6c 69 65 6e 74 20 74 68 61 74 20 66 65 74 | s.an.easy-to-use.client.that.fet |
| 14fa60 | 63 68 65 73 20 61 20 63 65 72 74 69 66 69 63 61 74 65 20 66 72 6f 6d 20 4c 65 74 27 73 20 45 6e | ches.a.certificate.from.Let's.En |
| 14fa80 | 63 72 79 70 74 20 61 6e 20 6f 70 65 6e 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 | crypt.an.open.certificate.author |
| 14faa0 | 69 74 79 20 6c 61 75 6e 63 68 65 64 20 62 79 20 74 68 65 20 45 46 46 2c 20 4d 6f 7a 69 6c 6c 61 | ity.launched.by.the.EFF,.Mozilla |
| 14fac0 | 2c 20 61 6e 64 20 6f 74 68 65 72 73 20 61 6e 64 20 64 65 70 6c 6f 79 73 20 69 74 20 74 6f 20 61 | ,.and.others.and.deploys.it.to.a |
| 14fae0 | 20 77 65 62 20 73 65 72 76 65 72 2e 00 57 65 20 63 61 6e 20 62 75 69 6c 64 20 72 6f 75 74 65 2d | .web.server..We.can.build.route- |
| 14fb00 | 6d 61 70 73 20 66 6f 72 20 69 6d 70 6f 72 74 20 62 61 73 65 64 20 6f 6e 20 74 68 65 73 65 20 73 | maps.for.import.based.on.these.s |
| 14fb20 | 74 61 74 65 73 2e 20 48 65 72 65 20 69 73 20 61 20 73 69 6d 70 6c 65 20 52 50 4b 49 20 63 6f 6e | tates..Here.is.a.simple.RPKI.con |
| 14fb40 | 66 69 67 75 72 61 74 69 6f 6e 2c 20 77 68 65 72 65 20 60 72 6f 75 74 69 6e 61 74 6f 72 60 20 69 | figuration,.where.`routinator`.i |
| 14fb60 | 73 20 74 68 65 20 52 50 4b 49 2d 76 61 6c 69 64 61 74 69 6e 67 20 22 63 61 63 68 65 22 20 73 65 | s.the.RPKI-validating."cache".se |
| 14fb80 | 72 76 65 72 20 77 69 74 68 20 69 70 20 60 31 39 32 2e 30 2e 32 2e 31 60 3a 00 57 65 20 63 61 6e | rver.with.ip.`192.0.2.1`:.We.can |
| 14fba0 | 27 74 20 73 75 70 70 6f 72 74 20 61 6c 6c 20 64 69 73 70 6c 61 79 73 20 66 72 6f 6d 20 74 68 65 | 't.support.all.displays.from.the |
| 14fbc0 | 20 62 65 67 69 6e 6e 69 6e 67 2e 20 49 66 20 79 6f 75 72 20 64 69 73 70 6c 61 79 20 74 79 70 65 | .beginning..If.your.display.type |
| 14fbe0 | 20 69 73 20 6d 69 73 73 69 6e 67 2c 20 70 6c 65 61 73 65 20 63 72 65 61 74 65 20 61 20 66 65 61 | .is.missing,.please.create.a.fea |
| 14fc00 | 74 75 72 65 20 72 65 71 75 65 73 74 20 76 69 61 20 50 68 61 62 72 69 63 61 74 6f 72 5f 2e 00 57 | ture.request.via.Phabricator_..W |
| 14fc20 | 65 20 63 6f 6e 66 69 67 75 72 65 20 61 20 6e 65 77 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6e 61 6d | e.configure.a.new.connection.nam |
| 14fc40 | 65 64 20 60 60 72 77 60 60 20 66 6f 72 20 72 6f 61 64 2d 77 61 72 72 69 6f 72 2c 20 74 68 61 74 | ed.``rw``.for.road-warrior,.that |
| 14fc60 | 20 69 64 65 6e 74 69 66 69 65 73 20 69 74 73 65 6c 66 20 61 73 20 60 60 31 39 32 2e 30 2e 32 2e | .identifies.itself.as.``192.0.2. |
| 14fc80 | 31 60 60 20 74 6f 20 74 68 65 20 63 6c 69 65 6e 74 73 20 61 6e 64 20 75 73 65 73 20 74 68 65 20 | 1``.to.the.clients.and.uses.the. |
| 14fca0 | 60 60 76 79 6f 73 60 60 20 63 65 72 74 69 66 69 63 61 74 65 20 73 69 67 6e 65 64 20 62 79 20 74 | ``vyos``.certificate.signed.by.t |
| 14fcc0 | 68 65 20 60 43 41 63 65 72 74 5f 43 6c 61 73 73 33 5f 52 6f 6f 74 60 60 20 69 6e 74 65 72 6d 65 | he.`CAcert_Class3_Root``.interme |
| 14fce0 | 64 69 61 74 65 20 43 41 2e 20 57 65 20 73 65 6c 65 63 74 20 6f 75 72 20 70 72 65 76 69 6f 75 73 | diate.CA..We.select.our.previous |
| 14fd00 | 6c 79 20 73 70 65 63 69 66 69 65 64 20 49 4b 45 2f 45 53 50 20 67 72 6f 75 70 73 20 61 6e 64 20 | ly.specified.IKE/ESP.groups.and. |
| 14fd20 | 61 6c 73 6f 20 6c 69 6e 6b 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 70 6f 6f 6c 20 74 6f | also.link.the.IP.address.pool.to |
| 14fd40 | 20 64 72 61 77 20 61 64 64 72 65 73 73 65 73 20 66 72 6f 6d 2e 00 57 65 20 63 6f 75 6c 64 20 65 | .draw.addresses.from..We.could.e |
| 14fd60 | 78 70 61 6e 64 20 6f 6e 20 74 68 69 73 20 61 6e 64 20 61 6c 73 6f 20 64 65 6e 79 20 6c 69 6e 6b | xpand.on.this.and.also.deny.link |
| 14fd80 | 20 6c 6f 63 61 6c 20 61 6e 64 20 6d 75 6c 74 69 63 61 73 74 20 69 6e 20 74 68 65 20 72 75 6c 65 | .local.and.multicast.in.the.rule |
| 14fda0 | 20 32 30 20 61 63 74 69 6f 6e 20 64 65 6e 79 2e 00 57 65 20 64 6f 20 6e 6f 74 20 68 61 76 65 20 | .20.action.deny..We.do.not.have. |
| 14fdc0 | 43 4c 49 20 6e 6f 64 65 73 20 66 6f 72 20 65 76 65 72 79 20 73 69 6e 67 6c 65 20 4f 70 65 6e 56 | CLI.nodes.for.every.single.OpenV |
| 14fde0 | 50 4e 20 6f 70 74 69 6f 6e 2e 20 49 66 20 61 6e 20 6f 70 74 69 6f 6e 20 69 73 20 6d 69 73 73 69 | PN.option..If.an.option.is.missi |
| 14fe00 | 6e 67 2c 20 61 20 66 65 61 74 75 72 65 20 72 65 71 75 65 73 74 20 73 68 6f 75 6c 64 20 62 65 20 | ng,.a.feature.request.should.be. |
| 14fe20 | 6f 70 65 6e 65 64 20 61 74 20 50 68 61 62 72 69 63 61 74 6f 72 5f 20 73 6f 20 61 6c 6c 20 75 73 | opened.at.Phabricator_.so.all.us |
| 14fe40 | 65 72 73 20 63 61 6e 20 62 65 6e 65 66 69 74 20 66 72 6f 6d 20 69 74 20 28 73 65 65 20 3a 72 65 | ers.can.benefit.from.it.(see.:re |
| 14fe60 | 66 3a 60 69 73 73 75 65 73 5f 66 65 61 74 75 72 65 73 60 29 2e 00 57 65 20 64 6f 6e 27 74 20 72 | f:`issues_features`)..We.don't.r |
| 14fe80 | 65 63 6f 6d 65 6e 64 20 74 6f 20 75 73 65 20 61 72 67 75 6d 65 6e 74 73 2e 20 55 73 69 6e 67 20 | ecomend.to.use.arguments..Using. |
| 14fea0 | 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 20 69 73 20 6d 6f 72 65 20 70 72 65 66 66 65 72 65 62 6c 65 | environments.is.more.preffereble |
| 14fec0 | 2e 00 57 65 20 67 65 6e 65 72 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 70 72 6f 66 69 | ..We.generate.a.connection.profi |
| 14fee0 | 6c 65 20 75 73 65 64 20 62 79 20 57 69 6e 64 6f 77 73 20 63 6c 69 65 6e 74 73 20 74 68 61 74 20 | le.used.by.Windows.clients.that. |
| 14ff00 | 77 69 6c 6c 20 63 6f 6e 6e 65 63 74 20 74 6f 20 74 68 65 20 22 72 77 22 20 63 6f 6e 6e 65 63 74 | will.connect.to.the."rw".connect |
| 14ff20 | 69 6f 6e 20 6f 6e 20 6f 75 72 20 56 79 4f 53 20 73 65 72 76 65 72 20 6f 6e 20 74 68 65 20 56 50 | ion.on.our.VyOS.server.on.the.VP |
| 14ff40 | 4e 20 73 65 72 76 65 72 73 20 49 50 20 61 64 64 72 65 73 73 2f 66 71 64 6e 20 60 76 70 6e 2e 76 | N.servers.IP.address/fqdn.`vpn.v |
| 14ff60 | 79 6f 73 2e 6e 65 74 60 2e 00 57 65 20 6c 69 73 74 65 6e 20 6f 6e 20 70 6f 72 74 20 35 31 38 32 | yos.net`..We.listen.on.port.5182 |
| 14ff80 | 30 00 57 65 20 6e 65 65 64 20 74 6f 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 63 65 72 74 69 66 | 0.We.need.to.generate.the.certif |
| 14ffa0 | 69 63 61 74 65 20 77 68 69 63 68 20 61 75 74 68 65 6e 74 69 63 61 74 65 73 20 75 73 65 72 73 20 | icate.which.authenticates.users. |
| 14ffc0 | 77 68 6f 20 61 74 74 65 6d 70 74 20 74 6f 20 61 63 63 65 73 73 20 74 68 65 20 6e 65 74 77 6f 72 | who.attempt.to.access.the.networ |
| 14ffe0 | 6b 20 72 65 73 6f 75 72 63 65 20 74 68 72 6f 75 67 68 20 74 68 65 20 53 53 4c 20 56 50 4e 20 74 | k.resource.through.the.SSL.VPN.t |
| 150000 | 75 6e 6e 65 6c 73 2e 20 54 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 20 77 | unnels..The.following.commands.w |
| 150020 | 69 6c 6c 20 63 72 65 61 74 65 20 61 20 73 65 6c 66 20 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 | ill.create.a.self.signed.certifi |
| 150040 | 63 61 74 65 73 20 61 6e 64 20 77 69 6c 6c 20 62 65 20 73 74 6f 72 65 64 20 69 6e 20 63 6f 6e 66 | cates.and.will.be.stored.in.conf |
| 150060 | 69 67 75 72 61 74 69 6f 6e 3a 00 57 65 20 6e 6f 77 20 75 74 69 6c 69 7a 65 20 60 74 75 6e 65 64 | iguration:.We.now.utilize.`tuned |
| 150080 | 60 20 66 6f 72 20 64 79 6e 61 6d 69 63 20 72 65 73 6f 75 72 63 65 20 62 61 6c 61 6e 63 69 6e 67 | `.for.dynamic.resource.balancing |
| 1500a0 | 20 62 61 73 65 64 20 6f 6e 20 70 72 6f 66 69 6c 65 73 2e 00 57 65 20 6f 6e 6c 79 20 61 6c 6c 6f | .based.on.profiles..We.only.allo |
| 1500c0 | 77 20 74 68 65 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 20 73 75 62 6e 65 74 20 74 6f 20 74 | w.the.192.168.2.0/24.subnet.to.t |
| 1500e0 | 72 61 76 65 6c 20 6f 76 65 72 20 74 68 65 20 74 75 6e 6e 65 6c 00 57 65 20 6f 6e 6c 79 20 6e 65 | ravel.over.the.tunnel.We.only.ne |
| 150100 | 65 64 20 61 20 73 69 6e 67 6c 65 20 73 74 65 70 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 | ed.a.single.step.for.this.interf |
| 150120 | 61 63 65 3a 00 57 65 20 72 6f 75 74 65 20 61 6c 6c 20 74 72 61 66 66 69 63 20 66 6f 72 20 74 68 | ace:.We.route.all.traffic.for.th |
| 150140 | 65 20 31 39 32 2e 31 36 38 2e 32 2e 30 2f 32 34 20 6e 65 74 77 6f 72 6b 20 74 6f 20 69 6e 74 65 | e.192.168.2.0/24.network.to.inte |
| 150160 | 72 66 61 63 65 20 60 77 67 30 31 60 00 57 65 20 75 73 65 20 61 20 76 6f 6e 74 61 69 6e 65 72 20 | rface.`wg01`.We.use.a.vontainer. |
| 150180 | 70 72 6f 76 69 64 69 6e 67 20 74 68 65 20 54 41 43 41 43 53 20 73 65 72 76 65 20 72 69 6e 20 74 | providing.the.TACACS.serve.rin.t |
| 1501a0 | 68 69 73 20 65 78 61 6d 70 6c 65 2e 00 57 65 20 77 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 65 70 74 | his.example..We.will.only.accept |
| 1501c0 | 20 74 72 61 66 66 69 63 20 63 6f 6d 69 6e 67 20 66 72 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 65 | .traffic.coming.from.interface.e |
| 1501e0 | 74 68 30 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f | th0,.protocol.tcp.and.destinatio |
| 150200 | 6e 20 70 6f 72 74 20 31 31 32 32 2e 20 41 6c 6c 20 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 74 | n.port.1122..All.other.traffic.t |
| 150220 | 72 65 73 70 61 73 73 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 | respassing.the.router.should.be. |
| 150240 | 62 6c 6f 63 6b 65 64 2e 00 57 65 20 77 69 6c 6c 20 6f 6e 6c 79 20 61 63 63 65 70 74 20 74 72 61 | blocked..We.will.only.accept.tra |
| 150260 | 66 66 69 63 20 63 6f 6d 6d 69 6e 67 20 66 72 6f 6d 20 69 6e 74 65 72 66 61 63 65 20 65 74 68 30 | ffic.comming.from.interface.eth0 |
| 150280 | 2c 20 70 72 6f 74 6f 63 6f 6c 20 74 63 70 20 61 6e 64 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 70 | ,.protocol.tcp.and.destination.p |
| 1502a0 | 6f 72 74 20 31 31 32 32 2e 20 41 6c 6c 20 6f 74 68 65 72 20 74 72 61 66 66 69 63 20 74 72 61 73 | ort.1122..All.other.traffic.tras |
| 1502c0 | 70 61 73 73 69 6e 67 20 74 68 65 20 72 6f 75 74 65 72 20 73 68 6f 75 6c 64 20 62 65 20 62 6c 6f | passing.the.router.should.be.blo |
| 1502e0 | 63 6b 65 64 2e 00 57 65 27 6c 6c 20 63 6f 6e 66 69 67 75 72 65 20 4f 70 65 6e 56 50 4e 20 75 73 | cked..We'll.configure.OpenVPN.us |
| 150300 | 69 6e 67 20 73 65 6c 66 2d 73 69 67 6e 65 64 20 63 65 72 74 69 66 69 63 61 74 65 73 2c 20 61 6e | ing.self-signed.certificates,.an |
| 150320 | 64 20 74 68 65 6e 20 64 69 73 63 75 73 73 20 74 68 65 20 6c 65 67 61 63 79 20 70 72 65 2d 73 68 | d.then.discuss.the.legacy.pre-sh |
| 150340 | 61 72 65 64 20 6b 65 79 20 6d 6f 64 65 2e 00 57 65 27 6c 6c 20 75 73 65 20 74 68 65 20 49 4b 45 | ared.key.mode..We'll.use.the.IKE |
| 150360 | 20 61 6e 64 20 45 53 50 20 67 72 6f 75 70 73 20 63 72 65 61 74 65 64 20 61 62 6f 76 65 20 66 6f | .and.ESP.groups.created.above.fo |
| 150380 | 72 20 74 68 69 73 20 56 50 4e 2e 20 42 65 63 61 75 73 65 20 77 65 20 6e 65 65 64 20 61 63 63 65 | r.this.VPN..Because.we.need.acce |
| 1503a0 | 73 73 20 74 6f 20 32 20 64 69 66 66 65 72 65 6e 74 20 73 75 62 6e 65 74 73 20 6f 6e 20 74 68 65 | ss.to.2.different.subnets.on.the |
| 1503c0 | 20 66 61 72 20 73 69 64 65 2c 20 77 65 20 77 69 6c 6c 20 6e 65 65 64 20 74 77 6f 20 64 69 66 66 | .far.side,.we.will.need.two.diff |
| 1503e0 | 65 72 65 6e 74 20 74 75 6e 6e 65 6c 73 2e 20 49 66 20 79 6f 75 20 63 68 61 6e 67 65 64 20 74 68 | erent.tunnels..If.you.changed.th |
| 150400 | 65 20 6e 61 6d 65 73 20 6f 66 20 74 68 65 20 45 53 50 20 67 72 6f 75 70 20 61 6e 64 20 49 4b 45 | e.names.of.the.ESP.group.and.IKE |
| 150420 | 20 67 72 6f 75 70 20 69 6e 20 74 68 65 20 70 72 65 76 69 6f 75 73 20 73 74 65 70 2c 20 6d 61 6b | .group.in.the.previous.step,.mak |
| 150440 | 65 20 73 75 72 65 20 79 6f 75 20 75 73 65 20 74 68 65 20 63 6f 72 72 65 63 74 20 6e 61 6d 65 73 | e.sure.you.use.the.correct.names |
| 150460 | 20 68 65 72 65 20 74 6f 6f 2e 00 57 65 62 20 50 72 6f 78 79 20 41 75 74 6f 64 69 73 63 6f 76 65 | .here.too..Web.Proxy.Autodiscove |
| 150480 | 72 79 20 28 57 50 41 44 29 20 55 52 4c 00 57 65 62 70 72 6f 78 79 00 57 65 62 73 65 72 76 65 72 | ry.(WPAD).URL.Webproxy.Webserver |
| 1504a0 | 20 73 68 6f 75 6c 64 20 6c 69 73 74 65 6e 20 6f 6e 20 73 70 65 63 69 66 69 65 64 20 70 6f 72 74 | .should.listen.on.specified.port |
| 1504c0 | 2e 00 57 65 62 73 65 72 76 65 72 20 73 68 6f 75 6c 64 20 6f 6e 6c 79 20 6c 69 73 74 65 6e 20 6f | ..Webserver.should.only.listen.o |
| 1504e0 | 6e 20 73 70 65 63 69 66 69 65 64 20 49 50 20 61 64 64 72 65 73 73 00 57 68 65 6e 20 4c 44 50 20 | n.specified.IP.address.When.LDP. |
| 150500 | 69 73 20 77 6f 72 6b 69 6e 67 2c 20 79 6f 75 20 77 69 6c 6c 20 62 65 20 61 62 6c 65 20 74 6f 20 | is.working,.you.will.be.able.to. |
| 150520 | 73 65 65 20 6c 61 62 65 6c 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 6e 20 74 68 65 20 6f 75 74 | see.label.information.in.the.out |
| 150540 | 63 6f 6d 65 20 6f 66 20 60 60 73 68 6f 77 20 69 70 20 72 6f 75 74 65 60 60 2e 20 42 65 73 69 64 | come.of.``show.ip.route``..Besid |
| 150560 | 65 73 20 74 68 61 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 2c 20 74 68 65 72 65 20 61 72 65 20 61 | es.that.information,.there.are.a |
| 150580 | 6c 73 6f 20 73 70 65 63 69 66 69 63 20 2a 73 68 6f 77 2a 20 63 6f 6d 6d 61 6e 64 73 20 66 6f 72 | lso.specific.*show*.commands.for |
| 1505a0 | 20 4c 44 50 3a 00 57 68 65 6e 20 50 49 4d 20 72 65 63 65 69 76 65 73 20 61 20 72 65 67 69 73 74 | .LDP:.When.PIM.receives.a.regist |
| 1505c0 | 65 72 20 70 61 63 6b 65 74 20 74 68 65 20 73 6f 75 72 63 65 20 6f 66 20 74 68 65 20 70 61 63 6b | er.packet.the.source.of.the.pack |
| 1505e0 | 65 74 20 77 69 6c 6c 20 62 65 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 74 68 65 20 70 72 65 66 69 | et.will.be.compared.to.the.prefi |
| 150600 | 78 2d 6c 69 73 74 20 73 70 65 63 69 66 69 65 64 2c 20 61 6e 64 20 69 66 20 61 20 70 65 72 6d 69 | x-list.specified,.and.if.a.permi |
| 150620 | 74 20 69 73 20 72 65 63 65 69 76 65 64 20 6e 6f 72 6d 61 6c 20 70 72 6f 63 65 73 73 69 6e 67 20 | t.is.received.normal.processing. |
| 150640 | 63 6f 6e 74 69 6e 75 65 73 2e 20 49 66 20 61 20 64 65 6e 79 20 69 73 20 72 65 74 75 72 6e 65 64 | continues..If.a.deny.is.returned |
| 150660 | 20 66 6f 72 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 72 | .for.the.source.address.of.the.r |
| 150680 | 65 67 69 73 74 65 72 20 70 61 63 6b 65 74 20 61 20 72 65 67 69 73 74 65 72 20 73 74 6f 70 20 6d | egister.packet.a.register.stop.m |
| 1506a0 | 65 73 73 61 67 65 20 69 73 20 73 65 6e 74 20 74 6f 20 74 68 65 20 73 6f 75 72 63 65 2e 00 57 68 | essage.is.sent.to.the.source..Wh |
| 1506c0 | 65 6e 20 56 52 46 73 20 61 72 65 20 75 73 65 64 20 69 74 20 69 73 20 6e 6f 74 20 6f 6e 6c 79 20 | en.VRFs.are.used.it.is.not.only. |
| 1506e0 | 6d 61 6e 64 61 74 6f 72 79 20 74 6f 20 63 72 65 61 74 65 20 61 20 56 52 46 20 62 75 74 20 61 6c | mandatory.to.create.a.VRF.but.al |
| 150700 | 73 6f 20 74 68 65 20 56 52 46 20 69 74 73 65 6c 66 20 6e 65 65 64 73 20 74 6f 20 62 65 20 61 73 | so.the.VRF.itself.needs.to.be.as |
| 150720 | 73 69 67 6e 65 64 20 74 6f 20 61 6e 20 69 6e 74 65 72 66 61 63 65 2e 00 57 68 65 6e 20 61 20 60 | signed.to.an.interface..When.a.` |
| 150740 | 60 63 75 73 74 6f 6d 60 60 20 44 79 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 73 20 75 73 65 | `custom``.DynDNS.provider.is.use |
| 150760 | 64 20 74 68 65 20 60 3c 73 65 72 76 65 72 3e 60 20 77 68 65 72 65 20 75 70 64 61 74 65 20 72 65 | d.the.`<server>`.where.update.re |
| 150780 | 71 75 65 73 74 73 20 61 72 65 20 62 65 69 6e 67 20 73 65 6e 74 20 74 6f 20 6d 75 73 74 20 62 65 | quests.are.being.sent.to.must.be |
| 1507a0 | 20 73 70 65 63 69 66 69 65 64 2e 00 57 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 79 | .specified..When.a.``custom``.Dy |
| 1507c0 | 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 73 20 75 73 65 64 20 74 68 65 20 70 72 6f 74 6f 63 | nDNS.provider.is.used.the.protoc |
| 1507e0 | 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 65 | ol.used.for.communicating.to.the |
| 150800 | 20 70 72 6f 76 69 64 65 72 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 65 | .provider.must.be.specified.unde |
| 150820 | 72 20 60 3c 70 72 6f 74 6f 63 6f 6c 3e 60 2e 20 53 65 65 20 74 68 65 20 65 6d 62 65 64 64 65 64 | r.`<protocol>`..See.the.embedded |
| 150840 | 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 65 72 20 66 6f 72 20 61 76 61 69 6c 61 62 6c 65 | .completion.helper.for.available |
| 150860 | 20 70 72 6f 74 6f 63 6f 6c 73 2e 00 57 68 65 6e 20 61 20 60 60 63 75 73 74 6f 6d 60 60 20 44 79 | .protocols..When.a.``custom``.Dy |
| 150880 | 6e 44 4e 53 20 70 72 6f 76 69 64 65 72 20 69 73 20 75 73 65 64 2c 20 74 68 65 20 70 72 6f 74 6f | nDNS.provider.is.used,.the.proto |
| 1508a0 | 63 6f 6c 20 75 73 65 64 20 66 6f 72 20 63 6f 6d 6d 75 6e 69 63 61 74 69 6e 67 20 74 6f 20 74 68 | col.used.for.communicating.to.th |
| 1508c0 | 65 20 70 72 6f 76 69 64 65 72 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 20 75 6e 64 | e.provider.must.be.specified.und |
| 1508e0 | 65 72 20 60 3c 70 72 6f 74 6f 63 6f 6c 3e 60 2e 20 53 65 65 20 74 68 65 20 65 6d 62 65 64 64 65 | er.`<protocol>`..See.the.embedde |
| 150900 | 64 20 63 6f 6d 70 6c 65 74 69 6f 6e 20 68 65 6c 70 65 72 20 77 68 65 6e 20 65 6e 74 65 72 69 6e | d.completion.helper.when.enterin |
| 150920 | 67 20 61 62 6f 76 65 20 63 6f 6d 6d 61 6e 64 20 66 6f 72 20 61 76 61 69 6c 61 62 6c 65 20 70 72 | g.above.command.for.available.pr |
| 150940 | 6f 74 6f 63 6f 6c 73 2e 00 57 68 65 6e 20 61 20 66 61 69 6c 6f 76 65 72 20 6f 63 63 75 72 73 20 | otocols..When.a.failover.occurs. |
| 150960 | 69 6e 20 61 63 74 69 76 65 2d 62 61 63 6b 75 70 20 6d 6f 64 65 2c 20 62 6f 6e 64 69 6e 67 20 77 | in.active-backup.mode,.bonding.w |
| 150980 | 69 6c 6c 20 69 73 73 75 65 20 6f 6e 65 20 6f 72 20 6d 6f 72 65 20 67 72 61 74 75 69 74 6f 75 73 | ill.issue.one.or.more.gratuitous |
| 1509a0 | 20 41 52 50 73 20 6f 6e 20 74 68 65 20 6e 65 77 6c 79 20 61 63 74 69 76 65 20 73 6c 61 76 65 2e | .ARPs.on.the.newly.active.slave. |
| 1509c0 | 20 4f 6e 65 20 67 72 61 74 75 69 74 6f 75 73 20 41 52 50 20 69 73 20 69 73 73 75 65 64 20 66 6f | .One.gratuitous.ARP.is.issued.fo |
| 1509e0 | 72 20 74 68 65 20 62 6f 6e 64 69 6e 67 20 6d 61 73 74 65 72 20 69 6e 74 65 72 66 61 63 65 20 61 | r.the.bonding.master.interface.a |
| 150a00 | 6e 64 20 65 61 63 68 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 63 6f 6e 66 69 67 75 72 | nd.each.VLAN.interfaces.configur |
| 150a20 | 65 64 20 61 62 6f 76 65 20 69 74 2c 20 70 72 6f 76 69 64 65 64 20 74 68 61 74 20 74 68 65 20 69 | ed.above.it,.provided.that.the.i |
| 150a40 | 6e 74 65 72 66 61 63 65 20 68 61 73 20 61 74 20 6c 65 61 73 74 20 6f 6e 65 20 49 50 20 61 64 64 | nterface.has.at.least.one.IP.add |
| 150a60 | 72 65 73 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 47 72 61 74 75 69 74 6f 75 73 20 41 52 50 73 | ress.configured..Gratuitous.ARPs |
| 150a80 | 20 69 73 73 75 65 64 20 66 6f 72 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 61 72 65 20 | .issued.for.VLAN.interfaces.are. |
| 150aa0 | 74 61 67 67 65 64 20 77 69 74 68 20 74 68 65 20 61 70 70 72 6f 70 72 69 61 74 65 20 56 4c 41 4e | tagged.with.the.appropriate.VLAN |
| 150ac0 | 20 69 64 2e 00 57 68 65 6e 20 61 20 6c 69 6e 6b 20 69 73 20 72 65 63 6f 6e 6e 65 63 74 65 64 20 | .id..When.a.link.is.reconnected. |
| 150ae0 | 6f 72 20 61 20 6e 65 77 20 73 6c 61 76 65 20 6a 6f 69 6e 73 20 74 68 65 20 62 6f 6e 64 20 74 68 | or.a.new.slave.joins.the.bond.th |
| 150b00 | 65 20 72 65 63 65 69 76 65 20 74 72 61 66 66 69 63 20 69 73 20 72 65 64 69 73 74 72 69 62 75 74 | e.receive.traffic.is.redistribut |
| 150b20 | 65 64 20 61 6d 6f 6e 67 20 61 6c 6c 20 61 63 74 69 76 65 20 73 6c 61 76 65 73 20 69 6e 20 74 68 | ed.among.all.active.slaves.in.th |
| 150b40 | 65 20 62 6f 6e 64 20 62 79 20 69 6e 69 74 69 61 74 69 6e 67 20 41 52 50 20 52 65 70 6c 69 65 73 | e.bond.by.initiating.ARP.Replies |
| 150b60 | 20 77 69 74 68 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 4d 41 43 20 61 64 64 72 65 73 73 20 74 | .with.the.selected.MAC.address.t |
| 150b80 | 6f 20 65 61 63 68 20 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 73 2e 20 54 68 65 20 75 70 64 65 6c | o.each.of.the.clients..The.updel |
| 150ba0 | 61 79 20 70 61 72 61 6d 65 74 65 72 20 28 64 65 74 61 69 6c 65 64 20 62 65 6c 6f 77 29 20 6d 75 | ay.parameter.(detailed.below).mu |
| 150bc0 | 73 74 20 62 65 20 73 65 74 20 74 6f 20 61 20 76 61 6c 75 65 20 65 71 75 61 6c 20 6f 72 20 67 72 | st.be.set.to.a.value.equal.or.gr |
| 150be0 | 65 61 74 65 72 20 74 68 61 6e 20 74 68 65 20 73 77 69 74 63 68 27 73 20 66 6f 72 77 61 72 64 69 | eater.than.the.switch's.forwardi |
| 150c00 | 6e 67 20 64 65 6c 61 79 20 73 6f 20 74 68 61 74 20 74 68 65 20 41 52 50 20 52 65 70 6c 69 65 73 | ng.delay.so.that.the.ARP.Replies |
| 150c20 | 20 73 65 6e 74 20 74 6f 20 74 68 65 20 70 65 65 72 73 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 62 | .sent.to.the.peers.will.not.be.b |
| 150c40 | 6c 6f 63 6b 65 64 20 62 79 20 74 68 65 20 73 77 69 74 63 68 2e 00 57 68 65 6e 20 61 20 70 61 63 | locked.by.the.switch..When.a.pac |
| 150c60 | 6b 65 74 20 69 73 20 74 6f 20 62 65 20 73 65 6e 74 2c 20 69 74 20 77 69 6c 6c 20 68 61 76 65 20 | ket.is.to.be.sent,.it.will.have. |
| 150c80 | 74 6f 20 67 6f 20 74 68 72 6f 75 67 68 20 74 68 61 74 20 71 75 65 75 65 2c 20 73 6f 20 74 68 65 | to.go.through.that.queue,.so.the |
| 150ca0 | 20 70 61 63 6b 65 74 20 77 69 6c 6c 20 62 65 20 70 6c 61 63 65 64 20 61 74 20 74 68 65 20 74 61 | .packet.will.be.placed.at.the.ta |
| 150cc0 | 69 6c 20 6f 66 20 69 74 2e 20 57 68 65 6e 20 74 68 65 20 70 61 63 6b 65 74 20 63 6f 6d 70 6c 65 | il.of.it..When.the.packet.comple |
| 150ce0 | 74 65 6c 79 20 67 6f 65 73 20 74 68 72 6f 75 67 68 20 69 74 2c 20 69 74 20 77 69 6c 6c 20 62 65 | tely.goes.through.it,.it.will.be |
| 150d00 | 20 64 65 71 75 65 75 65 64 20 65 6d 70 74 79 69 6e 67 20 69 74 73 20 70 6c 61 63 65 20 69 6e 20 | .dequeued.emptying.its.place.in. |
| 150d20 | 74 68 65 20 71 75 65 75 65 20 61 6e 64 20 62 65 69 6e 67 20 65 76 65 6e 74 75 61 6c 6c 79 20 68 | the.queue.and.being.eventually.h |
| 150d40 | 61 6e 64 65 64 20 74 6f 20 74 68 65 20 4e 49 43 20 74 6f 20 62 65 20 61 63 74 75 61 6c 6c 79 20 | anded.to.the.NIC.to.be.actually. |
| 150d60 | 73 65 6e 74 20 6f 75 74 2e 00 57 68 65 6e 20 61 20 70 65 65 72 20 72 65 63 65 69 76 65 73 20 61 | sent.out..When.a.peer.receives.a |
| 150d80 | 20 6d 61 72 74 69 61 6e 20 6e 65 78 74 68 6f 70 20 61 73 20 70 61 72 74 20 6f 66 20 74 68 65 20 | .martian.nexthop.as.part.of.the. |
| 150da0 | 4e 4c 52 49 20 66 6f 72 20 61 20 72 6f 75 74 65 20 70 65 72 6d 69 74 20 74 68 65 20 6e 65 78 74 | NLRI.for.a.route.permit.the.next |
| 150dc0 | 68 6f 70 20 74 6f 20 62 65 20 75 73 65 64 20 61 73 20 73 75 63 68 2c 20 69 6e 73 74 65 61 64 20 | hop.to.be.used.as.such,.instead. |
| 150de0 | 6f 66 20 72 65 6a 65 63 74 69 6e 67 20 61 6e 64 20 72 65 73 65 74 74 69 6e 67 20 74 68 65 20 63 | of.rejecting.and.resetting.the.c |
| 150e00 | 6f 6e 6e 65 63 74 69 6f 6e 2e 00 57 68 65 6e 20 61 20 72 6f 75 74 65 20 66 61 69 6c 73 2c 20 61 | onnection..When.a.route.fails,.a |
| 150e20 | 20 72 6f 75 74 69 6e 67 20 75 70 64 61 74 65 20 69 73 20 73 65 6e 74 20 74 6f 20 77 69 74 68 64 | .routing.update.is.sent.to.withd |
| 150e40 | 72 61 77 20 74 68 65 20 72 6f 75 74 65 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 27 73 | raw.the.route.from.the.network's |
| 150e60 | 20 72 6f 75 74 69 6e 67 20 74 61 62 6c 65 73 2e 20 57 68 65 6e 20 74 68 65 20 72 6f 75 74 65 20 | .routing.tables..When.the.route. |
| 150e80 | 69 73 20 72 65 2d 65 6e 61 62 6c 65 64 2c 20 74 68 65 20 63 68 61 6e 67 65 20 69 6e 20 61 76 61 | is.re-enabled,.the.change.in.ava |
| 150ea0 | 69 6c 61 62 69 6c 69 74 79 20 69 73 20 61 6c 73 6f 20 61 64 76 65 72 74 69 73 65 64 2e 20 41 20 | ilability.is.also.advertised..A. |
| 150ec0 | 72 6f 75 74 65 20 74 68 61 74 20 63 6f 6e 74 69 6e 75 61 6c 6c 79 20 66 61 69 6c 73 20 61 6e 64 | route.that.continually.fails.and |
| 150ee0 | 20 72 65 74 75 72 6e 73 20 72 65 71 75 69 72 65 73 20 61 20 67 72 65 61 74 20 64 65 61 6c 20 6f | .returns.requires.a.great.deal.o |
| 150f00 | 66 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 74 6f 20 75 70 64 61 74 65 20 74 68 65 20 | f.network.traffic.to.update.the. |
| 150f20 | 6e 65 74 77 6f 72 6b 20 61 62 6f 75 74 20 74 68 65 20 72 6f 75 74 65 27 73 20 73 74 61 74 75 73 | network.about.the.route's.status |
| 150f40 | 2e 00 57 68 65 6e 20 61 64 64 69 6e 67 20 49 50 76 36 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 | ..When.adding.IPv6.routing.infor |
| 150f60 | 6d 61 74 69 6f 6e 20 65 78 63 68 61 6e 67 65 20 66 65 61 74 75 72 65 20 74 6f 20 42 47 50 2e 20 | mation.exchange.feature.to.BGP.. |
| 150f80 | 54 68 65 72 65 20 77 65 72 65 20 73 6f 6d 65 20 70 72 6f 70 6f 73 61 6c 73 2e 20 3a 61 62 62 72 | There.were.some.proposals..:abbr |
| 150fa0 | 3a 60 49 45 54 46 20 28 49 6e 74 65 72 6e 65 74 20 45 6e 67 69 6e 65 65 72 69 6e 67 20 54 61 73 | :`IETF.(Internet.Engineering.Tas |
| 150fc0 | 6b 20 46 6f 72 63 65 29 60 20 3a 61 62 62 72 3a 60 49 44 52 20 28 49 6e 74 65 72 20 44 6f 6d 61 | k.Force)`.:abbr:`IDR.(Inter.Doma |
| 150fe0 | 69 6e 20 52 6f 75 74 69 6e 67 29 60 20 61 64 6f 70 74 65 64 20 61 20 70 72 6f 70 6f 73 61 6c 20 | in.Routing)`.adopted.a.proposal. |
| 151000 | 63 61 6c 6c 65 64 20 4d 75 6c 74 69 70 72 6f 74 6f 63 6f 6c 20 45 78 74 65 6e 73 69 6f 6e 20 66 | called.Multiprotocol.Extension.f |
| 151020 | 6f 72 20 42 47 50 2e 20 54 68 65 20 73 70 65 63 69 66 69 63 61 74 69 6f 6e 20 69 73 20 64 65 73 | or.BGP..The.specification.is.des |
| 151040 | 63 72 69 62 65 64 20 69 6e 20 3a 72 66 63 3a 60 32 32 38 33 60 2e 20 54 68 65 20 70 72 6f 74 6f | cribed.in.:rfc:`2283`..The.proto |
| 151060 | 63 6f 6c 20 64 6f 65 73 20 6e 6f 74 20 64 65 66 69 6e 65 20 6e 65 77 20 70 72 6f 74 6f 63 6f 6c | col.does.not.define.new.protocol |
| 151080 | 73 2e 20 49 74 20 64 65 66 69 6e 65 73 20 6e 65 77 20 61 74 74 72 69 62 75 74 65 73 20 74 6f 20 | s..It.defines.new.attributes.to. |
| 1510a0 | 65 78 69 73 74 69 6e 67 20 42 47 50 2e 20 57 68 65 6e 20 69 74 20 69 73 20 75 73 65 64 20 65 78 | existing.BGP..When.it.is.used.ex |
| 1510c0 | 63 68 61 6e 67 69 6e 67 20 49 50 76 36 20 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f | changing.IPv6.routing.informatio |
| 1510e0 | 6e 20 69 74 20 69 73 20 63 61 6c 6c 65 64 20 42 47 50 2d 34 2b 2e 20 57 68 65 6e 20 69 74 20 69 | n.it.is.called.BGP-4+..When.it.i |
| 151100 | 73 20 75 73 65 64 20 66 6f 72 20 65 78 63 68 61 6e 67 69 6e 67 20 6d 75 6c 74 69 63 61 73 74 20 | s.used.for.exchanging.multicast. |
| 151120 | 72 6f 75 74 69 6e 67 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 74 20 69 73 20 63 61 6c 6c 65 64 | routing.information.it.is.called |
| 151140 | 20 4d 42 47 50 2e 00 57 68 65 6e 20 61 6c 6c 20 74 68 65 20 75 6e 64 65 72 6c 61 79 20 6c 69 6e | .MBGP..When.all.the.underlay.lin |
| 151160 | 6b 73 20 67 6f 20 64 6f 77 6e 20 74 68 65 20 50 45 20 6e 6f 20 6c 6f 6e 67 65 72 20 68 61 73 20 | ks.go.down.the.PE.no.longer.has. |
| 151180 | 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 56 78 4c 41 4e 20 2b 6f 76 65 72 6c 61 79 2e 20 54 6f | access.to.the.VxLAN.+overlay..To |
| 1511a0 | 20 70 72 65 76 65 6e 74 20 62 6c 61 63 6b 68 6f 6c 69 6e 67 20 6f 66 20 74 72 61 66 66 69 63 20 | .prevent.blackholing.of.traffic. |
| 1511c0 | 74 68 65 20 73 65 72 76 65 72 2f 45 53 20 6c 69 6e 6b 73 20 61 72 65 20 70 72 6f 74 6f 64 6f 77 | the.server/ES.links.are.protodow |
| 1511e0 | 6e 65 64 20 6f 6e 20 74 68 65 20 50 45 2e 00 57 68 65 6e 20 61 6e 20 61 75 74 68 6f 72 69 74 61 | ned.on.the.PE..When.an.authorita |
| 151200 | 74 69 76 65 20 73 65 72 76 65 72 20 64 6f 65 73 20 6e 6f 74 20 61 6e 73 77 65 72 20 61 20 71 75 | tive.server.does.not.answer.a.qu |
| 151220 | 65 72 79 20 6f 72 20 73 65 6e 64 73 20 61 20 72 65 70 6c 79 20 74 68 65 20 72 65 63 75 72 73 6f | ery.or.sends.a.reply.the.recurso |
| 151240 | 72 20 64 6f 65 73 20 6e 6f 74 20 6c 69 6b 65 2c 20 69 74 20 69 73 20 74 68 72 6f 74 74 6c 65 64 | r.does.not.like,.it.is.throttled |
| 151260 | 2e 20 41 6e 79 20 73 65 72 76 65 72 73 20 6d 61 74 63 68 69 6e 67 20 74 68 65 20 73 75 70 70 6c | ..Any.servers.matching.the.suppl |
| 151280 | 69 65 64 20 6e 65 74 6d 61 73 6b 73 20 77 69 6c 6c 20 6e 65 76 65 72 20 62 65 20 74 68 72 6f 74 | ied.netmasks.will.never.be.throt |
| 1512a0 | 74 6c 65 64 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 65 64 2c 20 50 50 50 6f 45 20 77 69 6c | tled..When.configured,.PPPoE.wil |
| 1512c0 | 6c 20 63 72 65 61 74 65 20 74 68 65 20 6e 65 63 65 73 73 61 72 79 20 56 4c 41 4e 73 20 77 68 65 | l.create.the.necessary.VLANs.whe |
| 1512e0 | 6e 20 72 65 71 75 69 72 65 64 2e 20 4f 6e 63 65 20 74 68 65 20 75 73 65 72 20 73 65 73 73 69 6f | n.required..Once.the.user.sessio |
| 151300 | 6e 20 68 61 73 20 62 65 65 6e 20 63 61 6e 63 65 6c 6c 65 64 20 61 6e 64 20 74 68 65 20 56 4c 41 | n.has.been.cancelled.and.the.VLA |
| 151320 | 4e 20 69 73 20 6e 6f 74 20 6e 65 65 64 65 64 20 61 6e 79 6d 6f 72 65 2c 20 56 79 4f 53 20 77 69 | N.is.not.needed.anymore,.VyOS.wi |
| 151340 | 6c 6c 20 72 65 6d 6f 76 65 20 69 74 20 61 67 61 69 6e 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 | ll.remove.it.again..When.configu |
| 151360 | 72 69 6e 67 20 61 20 52 61 6e 64 6f 6d 2d 44 65 74 65 63 74 20 70 6f 6c 69 63 79 3a 20 2a 2a 74 | ring.a.Random-Detect.policy:.**t |
| 151380 | 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 65 63 65 64 65 6e 63 65 20 6e 75 6d 62 65 72 2c | he.higher.the.precedence.number, |
| 1513a0 | 20 74 68 65 20 68 69 67 68 65 72 20 74 68 65 20 70 72 69 6f 72 69 74 79 2a 2a 2e 00 57 68 65 6e | .the.higher.the.priority**..When |
| 1513c0 | 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 79 6f 75 72 20 66 69 6c 74 65 72 2c 20 79 6f 75 20 63 61 | .configuring.your.filter,.you.ca |
| 1513e0 | 6e 20 75 73 65 20 74 68 65 20 60 60 54 61 62 60 60 20 6b 65 79 20 74 6f 20 73 65 65 20 74 68 65 | n.use.the.``Tab``.key.to.see.the |
| 151400 | 20 6d 61 6e 79 20 64 69 66 66 65 72 65 6e 74 20 70 61 72 61 6d 65 74 65 72 73 20 79 6f 75 20 63 | .many.different.parameters.you.c |
| 151420 | 61 6e 20 63 6f 6e 66 69 67 75 72 65 2e 00 57 68 65 6e 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 79 | an.configure..When.configuring.y |
| 151440 | 6f 75 72 20 74 72 61 66 66 69 63 20 70 6f 6c 69 63 79 2c 20 79 6f 75 20 77 69 6c 6c 20 68 61 76 | our.traffic.policy,.you.will.hav |
| 151460 | 65 20 74 6f 20 73 65 74 20 64 61 74 61 20 72 61 74 65 20 76 61 6c 75 65 73 2c 20 77 61 74 63 68 | e.to.set.data.rate.values,.watch |
| 151480 | 20 6f 75 74 20 74 68 65 20 75 6e 69 74 73 20 79 6f 75 20 61 72 65 20 6d 61 6e 61 67 69 6e 67 2c | .out.the.units.you.are.managing, |
| 1514a0 | 20 69 74 20 69 73 20 65 61 73 79 20 74 6f 20 67 65 74 20 63 6f 6e 66 75 73 65 64 20 77 69 74 68 | .it.is.easy.to.get.confused.with |
| 1514c0 | 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 70 72 65 66 69 78 65 73 20 61 6e 64 20 73 75 66 66 | .the.different.prefixes.and.suff |
| 1514e0 | 69 78 65 73 20 79 6f 75 20 63 61 6e 20 75 73 65 2e 20 56 79 4f 53 20 77 69 6c 6c 20 61 6c 77 61 | ixes.you.can.use..VyOS.will.alwa |
| 151500 | 79 73 20 73 68 6f 77 20 79 6f 75 20 74 68 65 20 64 69 66 66 65 72 65 6e 74 20 75 6e 69 74 73 20 | ys.show.you.the.different.units. |
| 151520 | 79 6f 75 20 63 61 6e 20 75 73 65 2e 00 57 68 65 6e 20 64 65 66 69 6e 69 6e 67 20 61 20 72 75 6c | you.can.use..When.defining.a.rul |
| 151540 | 65 2c 20 69 74 20 69 73 20 65 6e 61 62 6c 65 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 73 | e,.it.is.enable.by.default..In.s |
| 151560 | 6f 6d 65 20 63 61 73 65 73 2c 20 69 74 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 6a 75 73 74 20 | ome.cases,.it.is.useful.to.just. |
| 151580 | 64 69 73 61 62 6c 65 20 74 68 65 20 72 75 6c 65 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 72 65 | disable.the.rule,.rather.than.re |
| 1515a0 | 6d 6f 76 69 6e 67 20 69 74 2e 00 57 68 65 6e 20 64 65 66 69 6e 69 6e 67 20 61 20 72 75 6c 65 2c | moving.it..When.defining.a.rule, |
| 1515c0 | 20 69 74 20 69 73 20 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 73 6f | .it.is.enabled.by.default..In.so |
| 1515e0 | 6d 65 20 63 61 73 65 73 2c 20 69 74 20 69 73 20 75 73 65 66 75 6c 20 74 6f 20 6a 75 73 74 20 64 | me.cases,.it.is.useful.to.just.d |
| 151600 | 69 73 61 62 6c 65 20 74 68 65 20 72 75 6c 65 2c 20 72 61 74 68 65 72 20 74 68 61 6e 20 72 65 6d | isable.the.rule,.rather.than.rem |
| 151620 | 6f 76 69 6e 67 20 69 74 2e 00 57 68 65 6e 20 64 65 66 69 6e 69 6e 67 20 74 68 65 20 74 72 61 6e | oving.it..When.defining.the.tran |
| 151640 | 73 6c 61 74 65 64 20 61 64 64 72 65 73 73 2c 20 63 61 6c 6c 65 64 20 60 60 62 61 63 6b 65 6e 64 | slated.address,.called.``backend |
| 151660 | 73 60 60 2c 20 61 20 60 60 77 65 69 67 68 74 60 60 20 6d 75 73 74 20 62 65 20 63 6f 6e 66 69 67 | s``,.a.``weight``.must.be.config |
| 151680 | 75 72 65 64 2e 20 54 68 69 73 20 6c 65 74 73 20 74 68 65 20 75 73 65 72 20 64 65 66 69 6e 65 20 | ured..This.lets.the.user.define. |
| 1516a0 | 6c 6f 61 64 20 62 61 6c 61 6e 63 65 20 64 69 73 74 72 69 62 75 74 69 6f 6e 20 61 63 63 6f 72 64 | load.balance.distribution.accord |
| 1516c0 | 69 6e 67 20 74 6f 20 74 68 65 69 72 20 6e 65 65 64 73 2e 20 54 68 65 6d 20 73 75 6d 20 6f 66 20 | ing.to.their.needs..Them.sum.of. |
| 1516e0 | 61 6c 6c 20 74 68 65 20 77 65 69 67 68 74 73 20 64 65 66 69 6e 65 64 20 66 6f 72 20 74 68 65 20 | all.the.weights.defined.for.the. |
| 151700 | 62 61 63 6b 65 6e 64 73 20 73 68 6f 75 6c 64 20 62 65 20 65 71 75 61 6c 20 74 6f 20 31 30 30 2e | backends.should.be.equal.to.100. |
| 151720 | 20 49 6e 20 6f 64 65 72 20 77 6f 72 64 73 2c 20 74 68 65 20 77 65 69 67 68 74 20 64 65 66 69 6e | .In.oder.words,.the.weight.defin |
| 151740 | 65 64 20 66 6f 72 20 74 68 65 20 62 61 63 6b 65 6e 64 20 69 73 20 74 68 65 20 70 65 72 63 65 6e | ed.for.the.backend.is.the.percen |
| 151760 | 74 61 67 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 74 68 61 74 20 77 69 6c | tage.of.the.connections.that.wil |
| 151780 | 6c 20 72 65 63 65 69 76 65 20 73 75 63 68 20 62 61 63 6b 65 6e 64 2e 00 57 68 65 6e 20 64 65 71 | l.receive.such.backend..When.deq |
| 1517a0 | 75 65 75 69 6e 67 2c 20 65 61 63 68 20 68 61 73 68 2d 62 75 63 6b 65 74 20 77 69 74 68 20 64 61 | ueuing,.each.hash-bucket.with.da |
| 1517c0 | 74 61 20 69 73 20 71 75 65 72 69 65 64 20 69 6e 20 61 20 72 6f 75 6e 64 20 72 6f 62 69 6e 20 66 | ta.is.queried.in.a.round.robin.f |
| 1517e0 | 61 73 68 69 6f 6e 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 65 | ashion..You.can.configure.the.le |
| 151800 | 6e 67 74 68 20 6f 66 20 74 68 65 20 71 75 65 75 65 2e 00 57 68 65 6e 20 64 65 73 69 67 6e 69 6e | ngth.of.the.queue..When.designin |
| 151820 | 67 20 79 6f 75 72 20 4e 41 54 20 72 75 6c 65 73 65 74 20 6c 65 61 76 65 20 73 6f 6d 65 20 73 70 | g.your.NAT.ruleset.leave.some.sp |
| 151840 | 61 63 65 20 62 65 74 77 65 65 6e 20 63 6f 6e 73 65 63 75 74 69 76 65 20 72 75 6c 65 73 20 66 6f | ace.between.consecutive.rules.fo |
| 151860 | 72 20 6c 61 74 65 72 20 65 78 74 65 6e 73 69 6f 6e 2e 20 59 6f 75 72 20 72 75 6c 65 73 65 74 20 | r.later.extension..Your.ruleset. |
| 151880 | 63 6f 75 6c 64 20 73 74 61 72 74 20 77 69 74 68 20 6e 75 6d 62 65 72 73 20 31 30 2c 20 32 30 2c | could.start.with.numbers.10,.20, |
| 1518a0 | 20 33 30 2e 20 59 6f 75 20 74 68 75 73 20 63 61 6e 20 6c 61 74 65 72 20 65 78 74 65 6e 64 20 74 | .30..You.thus.can.later.extend.t |
| 1518c0 | 68 65 20 72 75 6c 65 73 65 74 20 61 6e 64 20 70 6c 61 63 65 20 6e 65 77 20 72 75 6c 65 73 20 62 | he.ruleset.and.place.new.rules.b |
| 1518e0 | 65 74 77 65 65 6e 20 65 78 69 73 74 69 6e 67 20 6f 6e 65 73 2e 00 57 68 65 6e 20 64 6f 69 6e 67 | etween.existing.ones..When.doing |
| 151900 | 20 66 61 75 6c 74 20 69 73 6f 6c 61 74 69 6f 6e 20 77 69 74 68 20 70 69 6e 67 2c 20 79 6f 75 20 | .fault.isolation.with.ping,.you. |
| 151920 | 73 68 6f 75 6c 64 20 66 69 72 73 74 20 72 75 6e 20 69 74 20 6f 6e 20 74 68 65 20 6c 6f 63 61 6c | should.first.run.it.on.the.local |
| 151940 | 20 68 6f 73 74 2c 20 74 6f 20 76 65 72 69 66 79 20 74 68 61 74 20 74 68 65 20 6c 6f 63 61 6c 20 | .host,.to.verify.that.the.local. |
| 151960 | 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 75 70 20 61 6e 64 20 72 75 6e 6e | network.interface.is.up.and.runn |
| 151980 | 69 6e 67 2e 20 54 68 65 6e 2c 20 63 6f 6e 74 69 6e 75 65 20 77 69 74 68 20 68 6f 73 74 73 20 61 | ing..Then,.continue.with.hosts.a |
| 1519a0 | 6e 64 20 67 61 74 65 77 61 79 73 20 66 75 72 74 68 65 72 20 64 6f 77 6e 20 74 68 65 20 72 6f 61 | nd.gateways.further.down.the.roa |
| 1519c0 | 64 20 74 6f 77 61 72 64 73 20 79 6f 75 72 20 64 65 73 74 69 6e 61 74 69 6f 6e 2e 20 52 6f 75 6e | d.towards.your.destination..Roun |
| 1519e0 | 64 2d 74 72 69 70 20 74 69 6d 65 20 61 6e 64 20 70 61 63 6b 65 74 20 6c 6f 73 73 20 73 74 61 74 | d-trip.time.and.packet.loss.stat |
| 151a00 | 69 73 74 69 63 73 20 61 72 65 20 63 6f 6d 70 75 74 65 64 2e 00 57 68 65 6e 20 66 69 72 73 74 20 | istics.are.computed..When.first. |
| 151a20 | 63 6f 6e 6e 65 63 74 69 6e 67 20 74 6f 20 74 68 65 20 6e 65 77 20 56 50 4e 20 74 68 65 20 75 73 | connecting.to.the.new.VPN.the.us |
| 151a40 | 65 72 20 69 73 20 70 72 6f 6d 70 74 65 64 20 74 6f 20 65 6e 74 65 72 20 70 72 6f 70 65 72 20 63 | er.is.prompted.to.enter.proper.c |
| 151a60 | 72 65 64 65 6e 74 69 61 6c 73 2e 00 57 68 65 6e 20 69 6d 70 6c 65 6d 65 6e 74 69 6e 67 20 43 47 | redentials..When.implementing.CG |
| 151a80 | 4e 41 54 2c 20 65 6e 73 75 72 69 6e 67 20 74 68 61 74 20 74 68 65 72 65 20 61 72 65 20 65 6e 6f | NAT,.ensuring.that.there.are.eno |
| 151aa0 | 75 67 68 20 70 6f 72 74 73 20 61 6c 6c 6f 63 61 74 65 64 20 70 65 72 20 73 75 62 73 63 72 69 62 | ugh.ports.allocated.per.subscrib |
| 151ac0 | 65 72 20 69 73 20 63 72 69 74 69 63 61 6c 2e 20 42 65 6c 6f 77 20 69 73 20 61 20 73 75 6d 6d 61 | er.is.critical..Below.is.a.summa |
| 151ae0 | 72 79 20 62 61 73 65 64 20 6f 6e 20 52 46 43 20 36 38 38 38 2e 00 57 68 65 6e 20 6c 6f 61 64 69 | ry.based.on.RFC.6888..When.loadi |
| 151b00 | 6e 67 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 6d | ng.the.certificate.you.need.to.m |
| 151b20 | 61 6e 75 61 6c 6c 79 20 73 74 72 69 70 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 43 | anually.strip.the.``-----BEGIN.C |
| 151b40 | 45 52 54 49 46 49 43 41 54 45 2d 2d 2d 2d 2d 60 60 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 | ERTIFICATE-----``.and.``-----END |
| 151b60 | 20 43 45 52 54 49 46 49 43 41 54 45 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e 20 41 6c 73 6f 2c 20 | .CERTIFICATE-----``.tags..Also,. |
| 151b80 | 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 2f 6b 65 79 20 6e 65 65 64 73 20 74 6f 20 62 65 20 | the.certificate/key.needs.to.be. |
| 151ba0 | 70 72 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e 65 20 77 69 74 68 6f | presented.in.a.single.line.witho |
| 151bc0 | 75 74 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2c 20 74 68 69 73 20 63 61 | ut.line.breaks.(``\n``),.this.ca |
| 151be0 | 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 68 | n.be.done.using.the.following.sh |
| 151c00 | 65 6c 6c 20 63 6f 6d 6d 61 6e 64 3a 00 57 68 65 6e 20 6c 6f 61 64 69 6e 67 20 74 68 65 20 63 65 | ell.command:.When.loading.the.ce |
| 151c20 | 72 74 69 66 69 63 61 74 65 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 6d 61 6e 75 61 6c 6c 79 20 73 | rtificate.you.need.to.manually.s |
| 151c40 | 74 72 69 70 20 74 68 65 20 60 60 2d 2d 2d 2d 2d 42 45 47 49 4e 20 4b 45 59 2d 2d 2d 2d 2d 60 60 | trip.the.``-----BEGIN.KEY-----`` |
| 151c60 | 20 61 6e 64 20 60 60 2d 2d 2d 2d 2d 45 4e 44 20 4b 45 59 2d 2d 2d 2d 2d 60 60 20 74 61 67 73 2e | .and.``-----END.KEY-----``.tags. |
| 151c80 | 20 41 6c 73 6f 2c 20 74 68 65 20 63 65 72 74 69 66 69 63 61 74 65 2f 6b 65 79 20 6e 65 65 64 73 | .Also,.the.certificate/key.needs |
| 151ca0 | 20 74 6f 20 62 65 20 70 72 65 73 65 6e 74 65 64 20 69 6e 20 61 20 73 69 6e 67 6c 65 20 6c 69 6e | .to.be.presented.in.a.single.lin |
| 151cc0 | 65 20 77 69 74 68 6f 75 74 20 6c 69 6e 65 20 62 72 65 61 6b 73 20 28 60 60 5c 6e 60 60 29 2c 20 | e.without.line.breaks.(``\n``),. |
| 151ce0 | 74 68 69 73 20 63 61 6e 20 62 65 20 64 6f 6e 65 20 75 73 69 6e 67 20 74 68 65 20 66 6f 6c 6c 6f | this.can.be.done.using.the.follo |
| 151d00 | 77 69 6e 67 20 73 68 65 6c 6c 20 63 6f 6d 6d 61 6e 64 3a 00 57 68 65 6e 20 6d 61 74 68 63 69 6e | wing.shell.command:.When.mathcin |
| 151d20 | 67 20 61 6c 6c 20 70 61 74 74 65 72 6e 73 20 64 65 66 69 6e 65 64 20 69 6e 20 61 20 72 75 6c 65 | g.all.patterns.defined.in.a.rule |
| 151d40 | 2c 20 74 68 65 6e 20 64 69 66 66 65 72 65 6e 74 20 61 63 74 69 6f 6e 73 20 63 61 6e 20 62 65 20 | ,.then.different.actions.can.be. |
| 151d60 | 6d 61 64 65 2e 20 54 68 69 73 20 69 6e 63 6c 75 64 65 73 20 64 72 6f 70 69 6e 67 20 74 68 65 20 | made..This.includes.droping.the. |
| 151d80 | 70 61 63 6b 65 74 2c 20 6d 6f 64 69 66 79 69 6e 67 20 63 65 72 74 61 69 6e 20 64 61 74 61 2c 20 | packet,.modifying.certain.data,. |
| 151da0 | 6f 72 20 73 65 74 74 69 6e 67 20 61 20 64 69 66 66 65 72 65 6e 74 20 72 6f 75 74 69 6e 67 20 74 | or.setting.a.different.routing.t |
| 151dc0 | 61 62 6c 65 2e 00 57 68 65 6e 20 6e 6f 20 6f 70 74 69 6f 6e 73 2f 70 61 72 61 6d 65 74 65 72 73 | able..When.no.options/parameters |
| 151de0 | 20 61 72 65 20 75 73 65 64 2c 20 74 68 65 20 63 6f 6e 74 65 6e 74 73 20 6f 66 20 74 68 65 20 6d | .are.used,.the.contents.of.the.m |
| 151e00 | 61 69 6e 20 73 79 73 6c 6f 67 20 66 69 6c 65 20 61 72 65 20 64 69 73 70 6c 61 79 65 64 2e 00 57 | ain.syslog.file.are.displayed..W |
| 151e20 | 68 65 6e 20 6e 6f 2d 72 65 6c 65 61 73 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 64 68 63 | hen.no-release.is.specified,.dhc |
| 151e40 | 70 36 63 20 77 69 6c 6c 20 61 76 6f 69 64 20 73 65 6e 64 69 6e 67 20 61 20 72 65 6c 65 61 73 65 | p6c.will.avoid.sending.a.release |
| 151e60 | 20 6d 65 73 73 61 67 65 20 6f 6e 20 63 6c 69 65 6e 74 20 65 78 69 74 20 69 6e 20 6f 72 64 65 72 | .message.on.client.exit.in.order |
| 151e80 | 20 74 6f 20 70 72 65 76 65 6e 74 20 6c 6f 73 69 6e 67 20 61 6e 20 61 73 73 69 67 6e 65 64 20 61 | .to.prevent.losing.an.assigned.a |
| 151ea0 | 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 2e 00 57 68 65 6e 20 6e 6f 2d 72 65 6c 65 61 73 | ddress.or.prefix..When.no-releas |
| 151ec0 | 65 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 73 65 6e 64 | e.is.specified,.dhcp6c.will.send |
| 151ee0 | 20 61 20 72 65 6c 65 61 73 65 20 6d 65 73 73 61 67 65 20 6f 6e 20 63 6c 69 65 6e 74 20 65 78 69 | .a.release.message.on.client.exi |
| 151f00 | 74 20 74 6f 20 70 72 65 76 65 6e 74 20 6c 6f 73 69 6e 67 20 61 6e 20 61 73 73 69 67 6e 65 64 20 | t.to.prevent.losing.an.assigned. |
| 151f20 | 61 64 64 72 65 73 73 20 6f 72 20 70 72 65 66 69 78 2e 00 57 68 65 6e 20 70 72 6f 63 65 73 73 69 | address.or.prefix..When.processi |
| 151f40 | 6e 67 20 70 61 63 6b 65 74 73 20 66 72 6f 6d 20 61 20 6e 65 69 67 68 62 6f 72 20 70 72 6f 63 65 | ng.packets.from.a.neighbor.proce |
| 151f60 | 73 73 20 74 68 65 20 6e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 69 6e 63 6f 6d 69 6e | ss.the.number.of.packets.incomin |
| 151f80 | 67 20 61 74 20 6f 6e 65 20 74 69 6d 65 20 62 65 66 6f 72 65 20 6d 6f 76 69 6e 67 20 6f 6e 20 74 | g.at.one.time.before.moving.on.t |
| 151fa0 | 6f 20 74 68 65 20 6e 65 78 74 20 74 61 73 6b 2e 00 57 68 65 6e 20 72 61 70 69 64 2d 63 6f 6d 6d | o.the.next.task..When.rapid-comm |
| 151fc0 | 69 74 20 69 73 20 73 70 65 63 69 66 69 65 64 2c 20 64 68 63 70 36 63 20 77 69 6c 6c 20 69 6e 63 | it.is.specified,.dhcp6c.will.inc |
| 151fe0 | 6c 75 64 65 20 61 20 72 61 70 69 64 2d 63 6f 6d 6d 69 74 20 6f 70 74 69 6f 6e 20 69 6e 20 73 6f | lude.a.rapid-commit.option.in.so |
| 152000 | 6c 69 63 69 74 20 6d 65 73 73 61 67 65 73 20 61 6e 64 20 77 61 69 74 20 66 6f 72 20 61 6e 20 69 | licit.messages.and.wait.for.an.i |
| 152020 | 6d 6d 65 64 69 61 74 65 20 72 65 70 6c 79 20 69 6e 73 74 65 61 64 20 6f 66 20 61 64 76 65 72 74 | mmediate.reply.instead.of.advert |
| 152040 | 69 73 65 6d 65 6e 74 73 2e 00 57 68 65 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 20 64 6f 65 73 20 | isements..When.remote.peer.does. |
| 152060 | 6e 6f 74 20 68 61 76 65 20 63 61 70 61 62 69 6c 69 74 79 20 6e 65 67 6f 74 69 61 74 69 6f 6e 20 | not.have.capability.negotiation. |
| 152080 | 66 65 61 74 75 72 65 2c 20 72 65 6d 6f 74 65 20 70 65 65 72 20 77 69 6c 6c 20 6e 6f 74 20 73 65 | feature,.remote.peer.will.not.se |
| 1520a0 | 6e 64 20 61 6e 79 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 61 74 20 61 6c 6c 2e 20 49 6e 20 74 | nd.any.capabilities.at.all..In.t |
| 1520c0 | 68 61 74 20 63 61 73 65 2c 20 62 67 70 20 63 6f 6e 66 69 67 75 72 65 73 20 74 68 65 20 70 65 65 | hat.case,.bgp.configures.the.pee |
| 1520e0 | 72 20 77 69 74 68 20 63 6f 6e 66 69 67 75 72 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 00 | r.with.configured.capabilities.. |
| 152100 | 57 68 65 6e 20 72 75 6e 6e 69 6e 67 20 69 74 20 61 74 20 31 47 62 69 74 20 61 6e 64 20 6c 6f 77 | When.running.it.at.1Gbit.and.low |
| 152120 | 65 72 2c 20 79 6f 75 20 6d 61 79 20 77 61 6e 74 20 74 6f 20 72 65 64 75 63 65 20 74 68 65 20 60 | er,.you.may.want.to.reduce.the.` |
| 152140 | 71 75 65 75 65 2d 6c 69 6d 69 74 60 20 74 6f 20 31 30 30 30 20 70 61 63 6b 65 74 73 20 6f 72 20 | queue-limit`.to.1000.packets.or. |
| 152160 | 6c 65 73 73 2e 20 49 6e 20 72 61 74 65 73 20 6c 69 6b 65 20 31 30 4d 62 69 74 2c 20 79 6f 75 20 | less..In.rates.like.10Mbit,.you. |
| 152180 | 6d 61 79 20 77 61 6e 74 20 74 6f 20 73 65 74 20 69 74 20 74 6f 20 36 30 30 20 70 61 63 6b 65 74 | may.want.to.set.it.to.600.packet |
| 1521a0 | 73 2e 00 57 68 65 6e 20 73 65 6e 64 69 6e 67 20 50 49 4d 20 68 65 6c 6c 6f 20 70 61 63 6b 65 74 | s..When.sending.PIM.hello.packet |
| 1521c0 | 73 20 74 65 6c 6c 20 50 49 4d 20 74 6f 20 6e 6f 74 20 73 65 6e 64 20 61 6e 79 20 76 36 20 73 65 | s.tell.PIM.to.not.send.any.v6.se |
| 1521e0 | 63 6f 6e 64 61 72 79 20 61 64 64 72 65 73 73 65 73 20 6f 6e 20 74 68 65 20 69 6e 74 65 72 66 61 | condary.addresses.on.the.interfa |
| 152200 | 63 65 2e 20 54 68 69 73 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 69 73 20 75 73 65 64 20 74 6f 20 | ce..This.information.is.used.to. |
| 152220 | 61 6c 6c 6f 77 20 50 49 4d 20 74 6f 20 75 73 65 20 76 36 20 6e 65 78 74 68 6f 70 73 20 69 6e 20 | allow.PIM.to.use.v6.nexthops.in. |
| 152240 | 69 74 27 73 20 64 65 63 69 73 69 6f 6e 20 66 6f 72 20 3a 61 62 62 72 3a 60 52 50 46 20 28 52 65 | it's.decision.for.:abbr:`RPF.(Re |
| 152260 | 76 65 72 73 65 20 50 61 74 68 20 46 6f 72 77 61 72 64 69 6e 67 29 60 20 6c 6f 6f 6b 75 70 20 69 | verse.Path.Forwarding)`.lookup.i |
| 152280 | 66 20 74 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e 6f 74 20 73 65 74 20 28 64 65 66 61 75 6c | f.this.option.is.not.set.(defaul |
| 1522a0 | 74 29 2e 00 57 68 65 6e 20 73 65 74 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 20 69 73 20 65 6e | t)..When.set.the.interface.is.en |
| 1522c0 | 61 62 6c 65 64 20 66 6f 72 20 22 64 69 61 6c 2d 6f 6e 2d 64 65 6d 61 6e 64 22 2e 00 57 68 65 6e | abled.for."dial-on-demand"..When |
| 1522e0 | 20 73 70 65 63 69 66 69 65 64 2c 20 74 68 69 73 20 73 68 6f 75 6c 64 20 62 65 20 74 68 65 20 6f | .specified,.this.should.be.the.o |
| 152300 | 6e 6c 79 20 6b 65 79 77 6f 72 64 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 57 | nly.keyword.for.the.interface..W |
| 152320 | 68 65 6e 20 73 74 61 72 74 69 6e 67 20 61 20 56 79 4f 53 20 6c 69 76 65 20 73 79 73 74 65 6d 20 | hen.starting.a.VyOS.live.system. |
| 152340 | 28 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 6f 6e 20 43 44 29 20 74 68 65 20 63 6f 6e 66 69 67 | (the.installation.CD).the.config |
| 152360 | 75 72 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 64 65 66 61 75 6c 74 73 20 74 6f | ured.keyboard.layout.defaults.to |
| 152380 | 20 55 53 2e 20 41 73 20 74 68 69 73 20 6d 69 67 68 74 20 6e 6f 74 20 73 75 69 74 65 20 65 76 65 | .US..As.this.might.not.suite.eve |
| 1523a0 | 72 79 6f 6e 65 27 73 20 75 73 65 20 63 61 73 65 20 79 6f 75 20 63 61 6e 20 61 64 6a 75 73 74 20 | ryone's.use.case.you.can.adjust. |
| 1523c0 | 74 68 65 20 75 73 65 64 20 6b 65 79 62 6f 61 72 64 20 6c 61 79 6f 75 74 20 6f 6e 20 74 68 65 20 | the.used.keyboard.layout.on.the. |
| 1523e0 | 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c 65 2e 00 57 68 65 6e 20 73 74 61 72 74 69 6e 67 20 61 20 | system.console..When.starting.a. |
| 152400 | 56 79 4f 53 20 6c 69 76 65 20 73 79 73 74 65 6d 20 28 74 68 65 20 69 6e 73 74 61 6c 6c 61 74 69 | VyOS.live.system.(the.installati |
| 152420 | 6f 6e 20 43 44 29 20 74 68 65 20 63 6f 6e 66 69 67 75 72 65 64 20 6b 65 79 62 6f 61 72 64 20 6c | on.CD).the.configured.keyboard.l |
| 152440 | 61 79 6f 75 74 20 64 65 66 61 75 6c 74 73 20 74 6f 20 55 53 2e 20 41 73 20 74 68 69 73 20 6d 69 | ayout.defaults.to.US..As.this.mi |
| 152460 | 67 68 74 20 6e 6f 74 20 73 75 69 74 65 20 65 76 65 72 79 6f 6e 65 73 20 75 73 65 20 63 61 73 65 | ght.not.suite.everyones.use.case |
| 152480 | 20 79 6f 75 20 63 61 6e 20 61 64 6a 75 73 74 20 74 68 65 20 75 73 65 64 20 6b 65 79 62 6f 61 72 | .you.can.adjust.the.used.keyboar |
| 1524a0 | 64 20 6c 61 79 6f 75 74 20 6f 6e 20 74 68 65 20 73 79 73 74 65 6d 20 63 6f 6e 73 6f 6c 65 2e 00 | d.layout.on.the.system.console.. |
| 1524c0 | 57 68 65 6e 20 74 68 65 20 44 48 43 50 20 73 65 72 76 65 72 20 69 73 20 63 6f 6e 73 69 64 65 72 | When.the.DHCP.server.is.consider |
| 1524e0 | 69 6e 67 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 61 6c 6c 6f 63 61 74 69 6e 67 20 61 6e 20 49 50 | ing.dynamically.allocating.an.IP |
| 152500 | 20 61 64 64 72 65 73 73 20 74 6f 20 61 20 63 6c 69 65 6e 74 2c 20 69 74 20 66 69 72 73 74 20 73 | .address.to.a.client,.it.first.s |
| 152520 | 65 6e 64 73 20 61 6e 20 49 43 4d 50 20 45 63 68 6f 20 72 65 71 75 65 73 74 20 28 61 20 70 69 6e | ends.an.ICMP.Echo.request.(a.pin |
| 152540 | 67 29 20 74 6f 20 74 68 65 20 61 64 64 72 65 73 73 20 62 65 69 6e 67 20 61 73 73 69 67 6e 65 64 | g).to.the.address.being.assigned |
| 152560 | 2e 20 49 74 20 77 61 69 74 73 20 66 6f 72 20 61 20 73 65 63 6f 6e 64 2c 20 61 6e 64 20 69 66 20 | ..It.waits.for.a.second,.and.if. |
| 152580 | 6e 6f 20 49 43 4d 50 20 45 63 68 6f 20 72 65 73 70 6f 6e 73 65 20 68 61 73 20 62 65 65 6e 20 68 | no.ICMP.Echo.response.has.been.h |
| 1525a0 | 65 61 72 64 2c 20 69 74 20 61 73 73 69 67 6e 73 20 74 68 65 20 61 64 64 72 65 73 73 2e 00 57 68 | eard,.it.assigns.the.address..Wh |
| 1525c0 | 65 6e 20 74 68 65 20 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 | en.the.close-action.option.is.se |
| 1525e0 | 74 20 6f 6e 20 74 68 65 20 70 65 65 72 73 2c 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2d 74 | t.on.the.peers,.the.connection-t |
| 152600 | 79 70 65 20 6f 66 20 65 61 63 68 20 70 65 65 72 20 68 61 73 20 74 6f 20 63 6f 6e 73 69 64 65 72 | ype.of.each.peer.has.to.consider |
| 152620 | 65 64 20 63 61 72 65 66 75 6c 6c 79 2e 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 69 66 20 74 68 | ed.carefully..For.example,.if.th |
| 152640 | 65 20 6f 70 74 69 6f 6e 20 69 73 20 73 65 74 20 6f 6e 20 62 6f 74 68 20 70 65 65 72 73 2c 20 74 | e.option.is.set.on.both.peers,.t |
| 152660 | 68 65 6e 20 62 6f 74 68 20 77 6f 75 6c 64 20 61 74 74 65 6d 70 74 20 74 6f 20 69 6e 69 74 69 61 | hen.both.would.attempt.to.initia |
| 152680 | 74 65 20 61 6e 64 20 68 6f 6c 64 20 6f 70 65 6e 20 6d 75 6c 74 69 70 6c 65 20 63 6f 70 69 65 73 | te.and.hold.open.multiple.copies |
| 1526a0 | 20 6f 66 20 65 61 63 68 20 63 68 69 6c 64 20 53 41 2e 20 54 68 69 73 20 6d 69 67 68 74 20 6c 65 | .of.each.child.SA..This.might.le |
| 1526c0 | 61 64 20 74 6f 20 69 6e 73 74 61 62 69 6c 69 74 79 20 6f 66 20 74 68 65 20 64 65 76 69 63 65 20 | ad.to.instability.of.the.device. |
| 1526e0 | 6f 72 20 63 70 75 2f 6d 65 6d 6f 72 79 20 75 74 69 6c 69 7a 61 74 69 6f 6e 2e 00 57 68 65 6e 20 | or.cpu/memory.utilization..When. |
| 152700 | 74 68 65 20 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 20 69 73 20 73 65 74 2c 20 56 79 4f 53 20 77 | the.command.above.is.set,.VyOS.w |
| 152720 | 69 6c 6c 20 61 6e 73 77 65 72 20 65 76 65 72 79 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 | ill.answer.every.ICMP.echo.reque |
| 152740 | 73 74 20 61 64 64 72 65 73 73 65 64 20 74 6f 20 69 74 73 65 6c 66 2c 20 62 75 74 20 74 68 61 74 | st.addressed.to.itself,.but.that |
| 152760 | 20 77 69 6c 6c 20 6f 6e 6c 79 20 68 61 70 70 65 6e 20 69 66 20 6e 6f 20 6f 74 68 65 72 20 72 75 | .will.only.happen.if.no.other.ru |
| 152780 | 6c 65 20 69 73 20 61 70 70 6c 69 65 64 20 64 72 6f 70 70 69 6e 67 20 6f 72 20 72 65 6a 65 63 74 | le.is.applied.dropping.or.reject |
| 1527a0 | 69 6e 67 20 6c 6f 63 61 6c 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 2e 20 49 6e 20 63 61 73 65 | ing.local.echo.requests..In.case |
| 1527c0 | 20 6f 66 20 63 6f 6e 66 6c 69 63 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 6e 6f 74 20 61 6e 73 77 | .of.conflict,.VyOS.will.not.answ |
| 1527e0 | 65 72 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 73 2e 00 57 68 65 6e 20 74 68 65 20 | er.ICMP.echo.requests..When.the. |
| 152800 | 63 6f 6d 6d 61 6e 64 20 61 62 6f 76 65 20 69 73 20 73 65 74 2c 20 56 79 4f 53 20 77 69 6c 6c 20 | command.above.is.set,.VyOS.will. |
| 152820 | 61 6e 73 77 65 72 20 6e 6f 20 49 43 4d 50 20 65 63 68 6f 20 72 65 71 75 65 73 74 20 61 64 64 72 | answer.no.ICMP.echo.request.addr |
| 152840 | 65 73 73 65 64 20 74 6f 20 69 74 73 65 6c 66 20 61 74 20 61 6c 6c 2c 20 6e 6f 20 6d 61 74 74 65 | essed.to.itself.at.all,.no.matte |
| 152860 | 72 20 77 68 65 72 65 20 69 74 20 63 6f 6d 65 73 20 66 72 6f 6d 20 6f 72 20 77 68 65 74 68 65 72 | r.where.it.comes.from.or.whether |
| 152880 | 20 6d 6f 72 65 20 73 70 65 63 69 66 69 63 20 72 75 6c 65 73 20 61 72 65 20 62 65 69 6e 67 20 61 | .more.specific.rules.are.being.a |
| 1528a0 | 70 70 6c 69 65 64 20 74 6f 20 61 63 63 65 70 74 20 74 68 65 6d 2e 00 57 68 65 6e 20 74 68 65 20 | pplied.to.accept.them..When.the. |
| 1528c0 | 76 72 72 70 20 67 72 6f 75 70 20 69 73 20 61 20 6d 65 6d 62 65 72 20 6f 66 20 74 68 65 20 73 79 | vrrp.group.is.a.member.of.the.sy |
| 1528e0 | 6e 63 20 67 72 6f 75 70 20 77 69 6c 6c 20 75 73 65 20 6f 6e 6c 79 20 74 68 65 20 73 79 6e 63 20 | nc.group.will.use.only.the.sync. |
| 152900 | 67 72 6f 75 70 20 68 65 61 6c 74 68 20 63 68 65 63 6b 20 73 63 72 69 70 74 2e 20 54 68 69 73 20 | group.health.check.script..This. |
| 152920 | 65 78 61 6d 70 6c 65 20 73 68 6f 77 73 20 68 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 69 | example.shows.how.to.configure.i |
| 152940 | 74 20 66 6f 72 20 74 68 65 20 73 79 6e 63 20 67 72 6f 75 70 3a 00 57 68 65 6e 20 74 69 6d 65 73 | t.for.the.sync.group:.When.times |
| 152960 | 74 61 6d 70 69 6e 67 20 69 73 20 65 6e 61 62 6c 65 64 20 6f 6e 20 61 6e 20 69 6e 74 65 72 66 61 | tamping.is.enabled.on.an.interfa |
| 152980 | 63 65 2c 20 63 68 72 6f 6e 79 27 73 20 64 65 66 61 75 6c 74 20 62 65 68 61 76 69 6f 72 20 69 73 | ce,.chrony's.default.behavior.is |
| 1529a0 | 20 74 6f 20 74 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 69 6e 74 65 72 66 61 | .to.try.to.configure.the.interfa |
| 1529c0 | 63 65 20 74 6f 20 6f 6e 6c 79 20 74 69 6d 65 73 74 61 6d 70 20 4e 54 50 20 70 61 63 6b 65 74 73 | ce.to.only.timestamp.NTP.packets |
| 1529e0 | 2e 20 49 66 20 74 68 69 73 20 6d 6f 64 65 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 64 2c | ..If.this.mode.is.not.supported, |
| 152a00 | 20 63 68 72 6f 6e 79 20 77 69 6c 6c 20 61 74 74 65 6d 70 74 20 74 6f 20 73 65 74 20 69 74 20 74 | .chrony.will.attempt.to.set.it.t |
| 152a20 | 6f 20 74 69 6d 65 73 74 61 6d 70 20 61 6c 6c 20 70 61 63 6b 65 74 73 2e 20 49 66 20 6e 65 69 74 | o.timestamp.all.packets..If.neit |
| 152a40 | 68 65 72 20 6f 70 74 69 6f 6e 20 69 73 20 73 75 70 70 6f 72 74 65 64 20 28 65 2e 67 2e 20 74 68 | her.option.is.supported.(e.g..th |
| 152a60 | 65 20 4e 49 43 20 63 61 6e 20 6f 6e 6c 79 20 74 69 6d 65 73 74 61 6d 70 20 72 65 63 65 69 76 65 | e.NIC.can.only.timestamp.receive |
| 152a80 | 64 20 50 54 50 20 70 61 63 6b 65 74 73 29 2c 20 63 68 72 6f 6e 79 20 77 69 6c 6c 20 6c 65 76 65 | d.PTP.packets),.chrony.will.leve |
| 152aa0 | 72 61 67 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 6e 20 74 72 61 6e 73 6d 69 74 74 65 64 | rage.timestamping.on.transmitted |
| 152ac0 | 20 70 61 63 6b 65 74 73 20 6f 6e 6c 79 2c 20 77 68 69 63 68 20 73 74 69 6c 6c 20 70 72 6f 76 69 | .packets.only,.which.still.provi |
| 152ae0 | 64 65 73 20 73 6f 6d 65 20 62 65 6e 65 66 69 74 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 44 48 43 | des.some.benefit..When.using.DHC |
| 152b00 | 50 20 74 6f 20 72 65 74 72 69 65 76 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 61 6e 64 20 69 | P.to.retrieve.IPv4.address.and.i |
| 152b20 | 66 20 6c 6f 63 61 6c 20 63 75 73 74 6f 6d 69 7a 61 74 69 6f 6e 73 20 61 72 65 20 6e 65 65 64 65 | f.local.customizations.are.neede |
| 152b40 | 64 2c 20 74 68 65 79 20 73 68 6f 75 6c 64 20 62 65 20 70 6f 73 73 69 62 6c 65 20 75 73 69 6e 67 | d,.they.should.be.possible.using |
| 152b60 | 20 74 68 65 20 65 6e 74 65 72 20 61 6e 64 20 65 78 69 74 20 68 6f 6f 6b 73 20 70 72 6f 76 69 64 | .the.enter.and.exit.hooks.provid |
| 152b80 | 65 64 2e 20 54 68 65 20 68 6f 6f 6b 20 64 69 72 73 20 61 72 65 3a 00 57 68 65 6e 20 75 73 69 6e | ed..The.hook.dirs.are:.When.usin |
| 152ba0 | 67 20 45 56 45 2d 4e 47 20 74 6f 20 6c 61 62 20 74 68 69 73 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 | g.EVE-NG.to.lab.this.environment |
| 152bc0 | 20 65 6e 73 75 72 65 20 79 6f 75 20 61 72 65 20 75 73 69 6e 67 20 65 31 30 30 30 20 61 73 20 74 | .ensure.you.are.using.e1000.as.t |
| 152be0 | 68 65 20 64 65 73 69 72 65 64 20 64 72 69 76 65 72 20 66 6f 72 20 79 6f 75 72 20 56 79 4f 53 20 | he.desired.driver.for.your.VyOS. |
| 152c00 | 6e 65 74 77 6f 72 6b 20 69 6e 74 65 72 66 61 63 65 73 2e 20 57 68 65 6e 20 75 73 69 6e 67 20 74 | network.interfaces..When.using.t |
| 152c20 | 68 65 20 72 65 67 75 6c 61 72 20 76 69 72 74 69 6f 20 6e 65 74 77 6f 72 6b 20 64 72 69 76 65 72 | he.regular.virtio.network.driver |
| 152c40 | 20 6e 6f 20 4c 41 43 50 20 50 44 55 73 20 77 69 6c 6c 20 62 65 20 73 65 6e 74 20 62 79 20 56 79 | .no.LACP.PDUs.will.be.sent.by.Vy |
| 152c60 | 4f 53 20 74 68 75 73 20 74 68 65 20 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 77 69 6c 6c 20 6e 65 | OS.thus.the.port-channel.will.ne |
| 152c80 | 76 65 72 20 62 65 63 6f 6d 65 20 61 63 74 69 76 65 21 00 57 68 65 6e 20 75 73 69 6e 67 20 4e 41 | ver.become.active!.When.using.NA |
| 152ca0 | 54 20 66 6f 72 20 61 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 73 74 20 73 79 73 | T.for.a.large.number.of.host.sys |
| 152cc0 | 74 65 6d 73 20 69 74 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 68 61 74 20 61 20 6d 69 6e 69 6d | tems.it.recommended.that.a.minim |
| 152ce0 | 75 6d 20 6f 66 20 31 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 20 74 6f 20 4e 41 | um.of.1.IP.address.is.used.to.NA |
| 152d00 | 54 20 65 76 65 72 79 20 32 35 36 20 68 6f 73 74 20 73 79 73 74 65 6d 73 2e 20 54 68 69 73 20 69 | T.every.256.host.systems..This.i |
| 152d20 | 73 20 64 75 65 20 74 6f 20 74 68 65 20 6c 69 6d 69 74 20 6f 66 20 36 35 2c 30 30 30 20 70 6f 72 | s.due.to.the.limit.of.65,000.por |
| 152d40 | 74 20 6e 75 6d 62 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 75 6e 69 71 75 65 20 74 | t.numbers.available.for.unique.t |
| 152d60 | 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 6e 64 20 61 20 72 65 73 65 72 76 69 6e 67 20 61 6e 20 61 | ranslations.and.a.reserving.an.a |
| 152d80 | 76 65 72 61 67 65 20 6f 66 20 32 30 30 2d 33 30 30 20 73 65 73 73 69 6f 6e 73 20 70 65 72 20 68 | verage.of.200-300.sessions.per.h |
| 152da0 | 6f 73 74 20 73 79 73 74 65 6d 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 4e 41 54 20 66 6f 72 20 61 | ost.system..When.using.NAT.for.a |
| 152dc0 | 20 6c 61 72 67 65 20 6e 75 6d 62 65 72 20 6f 66 20 68 6f 73 74 20 73 79 73 74 65 6d 73 20 69 74 | .large.number.of.host.systems.it |
| 152de0 | 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 68 61 74 20 61 20 6d 69 6e 69 6d 75 6d 20 6f 66 20 31 | .recommended.that.a.minimum.of.1 |
| 152e00 | 20 49 50 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 20 74 6f 20 4e 41 54 20 65 76 65 72 79 | .IP.address.is.used.to.NAT.every |
| 152e20 | 20 32 35 36 20 70 72 69 76 61 74 65 20 68 6f 73 74 20 73 79 73 74 65 6d 73 2e 20 54 68 69 73 20 | .256.private.host.systems..This. |
| 152e40 | 69 73 20 64 75 65 20 74 6f 20 74 68 65 20 6c 69 6d 69 74 20 6f 66 20 36 35 2c 30 30 30 20 70 6f | is.due.to.the.limit.of.65,000.po |
| 152e60 | 72 74 20 6e 75 6d 62 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 75 6e 69 71 75 65 20 | rt.numbers.available.for.unique. |
| 152e80 | 74 72 61 6e 73 6c 61 74 69 6f 6e 73 20 61 6e 64 20 61 20 72 65 73 65 72 76 69 6e 67 20 61 6e 20 | translations.and.a.reserving.an. |
| 152ea0 | 61 76 65 72 61 67 65 20 6f 66 20 32 30 30 2d 33 30 30 20 73 65 73 73 69 6f 6e 73 20 70 65 72 20 | average.of.200-300.sessions.per. |
| 152ec0 | 68 6f 73 74 20 73 79 73 74 65 6d 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 53 53 48 2c 20 6b 6e 6f | host.system..When.using.SSH,.kno |
| 152ee0 | 77 6e 2d 68 6f 73 74 73 2d 66 69 6c 65 2c 20 70 72 69 76 61 74 65 2d 6b 65 79 2d 66 69 6c 65 20 | wn-hosts-file,.private-key-file. |
| 152f00 | 61 6e 64 20 70 75 62 6c 69 63 2d 6b 65 79 2d 66 69 6c 65 20 61 72 65 20 6d 61 6e 64 61 74 6f 72 | and.public-key-file.are.mandator |
| 152f20 | 79 20 6f 70 74 69 6f 6e 73 2e 00 57 68 65 6e 20 75 73 69 6e 67 20 53 53 48 2c 20 70 72 69 76 61 | y.options..When.using.SSH,.priva |
| 152f40 | 74 65 2d 6b 65 79 2d 66 69 6c 65 20 61 6e 64 20 70 75 62 6c 69 63 2d 6b 65 79 2d 66 69 6c 65 20 | te-key-file.and.public-key-file. |
| 152f60 | 61 72 65 20 6d 61 6e 64 61 74 6f 72 79 20 6f 70 74 69 6f 6e 73 2e 00 57 68 65 6e 20 75 73 69 6e | are.mandatory.options..When.usin |
| 152f80 | 67 20 54 69 6d 65 2d 62 61 73 65 64 20 6f 6e 65 2d 74 69 6d 65 20 70 61 73 73 77 6f 72 64 20 28 | g.Time-based.one-time.password.( |
| 152fa0 | 54 4f 54 50 29 20 28 4f 54 50 20 48 4f 54 50 2d 74 69 6d 65 29 2c 20 62 65 20 73 75 72 65 20 74 | TOTP).(OTP.HOTP-time),.be.sure.t |
| 152fc0 | 68 61 74 20 74 68 65 20 74 69 6d 65 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 61 6e 64 20 74 | hat.the.time.on.the.server.and.t |
| 152fe0 | 68 65 20 4f 54 50 20 74 6f 6b 65 6e 20 67 65 6e 65 72 61 74 6f 72 20 61 72 65 20 73 79 6e 63 68 | he.OTP.token.generator.are.synch |
| 153000 | 72 6f 6e 69 7a 65 64 20 62 79 20 4e 54 50 00 57 68 65 6e 20 75 73 69 6e 67 20 73 69 74 65 2d 74 | ronized.by.NTP.When.using.site-t |
| 153020 | 6f 2d 73 69 74 65 20 49 50 73 65 63 20 77 69 74 68 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 73 | o-site.IPsec.with.VTI.interfaces |
| 153040 | 2c 20 62 65 20 73 75 72 65 20 74 6f 20 64 69 73 61 62 6c 65 20 72 6f 75 74 65 20 61 75 74 6f 69 | ,.be.sure.to.disable.route.autoi |
| 153060 | 6e 73 74 61 6c 6c 00 57 68 65 6e 20 75 73 69 6e 67 20 74 68 65 20 49 50 76 36 20 70 72 6f 74 6f | nstall.When.using.the.IPv6.proto |
| 153080 | 63 6f 6c 2c 20 4d 52 55 20 6d 75 73 74 20 62 65 20 61 74 20 6c 65 61 73 74 20 31 32 38 30 20 62 | col,.MRU.must.be.at.least.1280.b |
| 1530a0 | 79 74 65 73 2e 00 57 68 65 6e 20 75 74 69 6c 69 7a 69 6e 67 20 56 79 4f 53 20 69 6e 20 61 6e 20 | ytes..When.utilizing.VyOS.in.an. |
| 1530c0 | 65 6e 76 69 72 6f 6e 6d 65 6e 74 20 77 69 74 68 20 41 72 69 73 74 61 20 67 65 61 72 20 79 6f 75 | environment.with.Arista.gear.you |
| 1530e0 | 20 63 61 6e 20 75 73 65 20 74 68 69 73 20 62 6c 75 65 20 70 72 69 6e 74 20 61 73 20 61 6e 20 69 | .can.use.this.blue.print.as.an.i |
| 153100 | 6e 69 74 69 61 6c 20 73 65 74 75 70 20 74 6f 20 67 65 74 20 61 6e 20 4c 41 43 50 20 62 6f 6e 64 | nitial.setup.to.get.an.LACP.bond |
| 153120 | 20 2f 20 70 6f 72 74 2d 63 68 61 6e 6e 65 6c 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 62 65 74 77 | ./.port-channel.operational.betw |
| 153140 | 65 65 6e 20 74 68 6f 73 65 20 74 77 6f 20 64 65 76 69 63 65 73 2e 00 57 68 65 72 65 20 62 6f 74 | een.those.two.devices..Where.bot |
| 153160 | 68 20 72 6f 75 74 65 73 20 77 65 72 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 65 42 47 50 | h.routes.were.received.from.eBGP |
| 153180 | 20 70 65 65 72 73 2c 20 74 68 65 6e 20 70 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 68 | .peers,.then.prefer.the.route.wh |
| 1531a0 | 69 63 68 20 69 73 20 61 6c 72 65 61 64 79 20 73 65 6c 65 63 74 65 64 2e 20 4e 6f 74 65 20 74 68 | ich.is.already.selected..Note.th |
| 1531c0 | 61 74 20 74 68 69 73 20 63 68 65 63 6b 20 69 73 20 6e 6f 74 20 61 70 70 6c 69 65 64 20 69 66 20 | at.this.check.is.not.applied.if. |
| 1531e0 | 3a 63 66 67 63 6d 64 3a 60 62 67 70 20 62 65 73 74 70 61 74 68 20 63 6f 6d 70 61 72 65 2d 72 6f | :cfgcmd:`bgp.bestpath.compare-ro |
| 153200 | 75 74 65 72 69 64 60 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 2e 20 54 68 69 73 20 63 68 65 63 | uterid`.is.configured..This.chec |
| 153220 | 6b 20 63 61 6e 20 70 72 65 76 65 6e 74 20 73 6f 6d 65 20 63 61 73 65 73 20 6f 66 20 6f 73 63 69 | k.can.prevent.some.cases.of.osci |
| 153240 | 6c 6c 61 74 69 6f 6e 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 | llation..Where.firewall.base.cha |
| 153260 | 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 | in.to.configure.firewall.filteri |
| 153280 | 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 | ng.rules.for.transit.traffic.is. |
| 1532a0 | 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 | ``set.firewall.ipv4.forward.filt |
| 1532c0 | 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 | er....``,.which.happens.in.stage |
| 1532e0 | 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 | .5,.highlighted.with.red.color.. |
| 153300 | 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e | Where.firewall.base.chain.to.con |
| 153320 | 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 | figure.firewall.filtering.rules. |
| 153340 | 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 | for.transit.traffic.is.``set.fir |
| 153360 | 65 77 61 6c 6c 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c | ewall.ipv4.forward.filter....``, |
| 153380 | 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c | .which.happens.in.stage.5,.highl |
| 1533a0 | 69 67 68 74 65 6e 65 64 20 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 66 | ightened.with.red.color..Where.f |
| 1533c0 | 69 72 65 77 61 6c 6c 20 62 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 | irewall.base.chain.to.configure. |
| 1533e0 | 66 69 72 65 77 61 6c 6c 20 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 | firewall.filtering.rules.for.tra |
| 153400 | 6e 73 69 74 20 74 72 61 66 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 | nsit.traffic.is.``set.firewall.i |
| 153420 | 70 76 36 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 | pv6.forward.filter....``,.which. |
| 153440 | 68 61 70 70 65 6e 73 20 69 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 64 20 | happens.in.stage.5,.highlighted. |
| 153460 | 77 69 74 68 20 72 65 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 66 69 72 65 77 61 6c 6c 20 62 | with.red.color..Where.firewall.b |
| 153480 | 61 73 65 20 63 68 61 69 6e 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 69 72 65 77 61 6c 6c 20 | ase.chain.to.configure.firewall. |
| 1534a0 | 66 69 6c 74 65 72 69 6e 67 20 72 75 6c 65 73 20 66 6f 72 20 74 72 61 6e 73 69 74 20 74 72 61 66 | filtering.rules.for.transit.traf |
| 1534c0 | 66 69 63 20 69 73 20 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 66 6f 72 77 61 | fic.is.``set.firewall.ipv6.forwa |
| 1534e0 | 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2c 20 77 68 69 63 68 20 68 61 70 70 65 6e 73 20 69 | rd.filter....``,.which.happens.i |
| 153500 | 6e 20 73 74 61 67 65 20 35 2c 20 68 69 67 68 6c 69 67 68 74 65 6e 65 64 20 77 69 74 68 20 72 65 | n.stage.5,.highlightened.with.re |
| 153520 | 64 20 63 6f 6c 6f 72 2e 00 57 68 65 72 65 20 72 6f 75 74 65 73 20 77 69 74 68 20 61 20 4d 45 44 | d.color..Where.routes.with.a.MED |
| 153540 | 20 77 65 72 65 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 74 68 65 20 73 61 6d 65 20 41 53 2c | .were.received.from.the.same.AS, |
| 153560 | 20 70 72 65 66 65 72 20 74 68 65 20 72 6f 75 74 65 20 77 69 74 68 20 74 68 65 20 6c 6f 77 65 73 | .prefer.the.route.with.the.lowes |
| 153580 | 74 20 4d 45 44 2e 00 57 68 65 72 65 2c 20 6d 61 69 6e 20 6b 65 79 20 77 6f 72 64 73 20 61 6e 64 | t.MED..Where,.main.key.words.and |
| 1535a0 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 74 68 73 20 74 68 61 74 20 6e 65 65 64 73 20 | .configuration.paths.that.needs. |
| 1535c0 | 74 6f 20 62 65 20 75 6e 64 65 72 73 74 6f 6f 64 3a 00 57 68 65 74 68 65 72 20 74 6f 20 61 63 63 | to.be.understood:.Whether.to.acc |
| 1535e0 | 65 70 74 20 44 41 44 20 28 44 75 70 6c 69 63 61 74 65 20 41 64 64 72 65 73 73 20 44 65 74 65 63 | ept.DAD.(Duplicate.Address.Detec |
| 153600 | 74 69 6f 6e 29 2e 00 57 68 69 63 68 20 67 65 6e 65 72 61 74 65 73 20 74 68 65 20 66 6f 6c 6c 6f | tion)..Which.generates.the.follo |
| 153620 | 77 69 6e 67 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 57 68 69 63 68 20 72 65 73 75 6c 74 | wing.configuration:.Which.result |
| 153640 | 73 20 69 6e 20 61 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 6f 66 3a 00 57 68 69 63 68 20 77 | s.in.a.configuration.of:.Which.w |
| 153660 | 6f 75 6c 64 20 67 65 6e 65 72 61 74 65 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 4e 41 54 20 | ould.generate.the.following.NAT. |
| 153680 | 64 65 73 74 69 6e 61 74 69 6f 6e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 3a 00 57 68 69 6c 65 | destination.configuration:.While |
| 1536a0 | 20 2a 2a 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 73 2a 2a 20 61 63 63 65 70 74 20 49 50 20 6e 65 | .**network.groups**.accept.IP.ne |
| 1536c0 | 74 77 6f 72 6b 73 20 69 6e 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2c 20 73 70 65 63 69 66 69 | tworks.in.CIDR.notation,.specifi |
| 1536e0 | 63 20 49 50 20 61 64 64 72 65 73 73 65 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 61 73 20 61 | c.IP.addresses.can.be.added.as.a |
| 153700 | 20 33 32 2d 62 69 74 20 70 72 65 66 69 78 2e 20 49 66 20 79 6f 75 20 66 6f 72 65 73 65 65 20 74 | .32-bit.prefix..If.you.foresee.t |
| 153720 | 68 65 20 6e 65 65 64 20 74 6f 20 61 64 64 20 61 20 6d 69 78 20 6f 66 20 61 64 64 72 65 73 73 65 | he.need.to.add.a.mix.of.addresse |
| 153740 | 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 2c 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 | s.and.networks,.the.network.grou |
| 153760 | 70 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 57 68 69 6c 65 20 2a 2a 6e 65 74 77 6f 72 | p.is.recommended..While.**networ |
| 153780 | 6b 20 67 72 6f 75 70 73 2a 2a 20 61 63 63 65 70 74 20 49 50 20 6e 65 74 77 6f 72 6b 73 20 69 6e | k.groups**.accept.IP.networks.in |
| 1537a0 | 20 43 49 44 52 20 6e 6f 74 61 74 69 6f 6e 2c 20 73 70 65 63 69 66 69 63 20 49 50 20 61 64 64 72 | .CIDR.notation,.specific.IP.addr |
| 1537c0 | 65 73 73 65 73 20 63 61 6e 20 62 65 20 61 64 64 65 64 20 61 73 20 61 20 33 32 2d 62 69 74 20 70 | esses.can.be.added.as.a.32-bit.p |
| 1537e0 | 72 65 66 69 78 2e 20 49 66 20 79 6f 75 20 66 6f 72 65 73 65 65 20 74 68 65 20 6e 65 65 64 20 74 | refix..If.you.foresee.the.need.t |
| 153800 | 6f 20 61 64 64 20 61 20 6d 69 78 20 6f 66 20 61 64 64 72 65 73 73 65 73 20 61 6e 64 20 6e 65 74 | o.add.a.mix.of.addresses.and.net |
| 153820 | 77 6f 72 6b 73 2c 20 74 68 65 6e 20 61 20 6e 65 74 77 6f 72 6b 20 67 72 6f 75 70 20 69 73 20 72 | works,.then.a.network.group.is.r |
| 153840 | 65 63 6f 6d 6d 65 6e 64 65 64 2e 00 57 68 69 6c 65 20 6d 61 6e 79 20 61 72 65 20 61 77 61 72 65 | ecommended..While.many.are.aware |
| 153860 | 20 6f 66 20 4f 70 65 6e 56 50 4e 20 61 73 20 61 20 43 6c 69 65 6e 74 20 56 50 4e 20 73 6f 6c 75 | .of.OpenVPN.as.a.Client.VPN.solu |
| 153880 | 74 69 6f 6e 2c 20 69 74 20 69 73 20 6f 66 74 65 6e 20 6f 76 65 72 6c 6f 6f 6b 65 64 20 61 73 20 | tion,.it.is.often.overlooked.as. |
| 1538a0 | 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 4e 20 73 6f 6c 75 74 69 6f 6e 20 64 75 65 20 | a.site-to-site.VPN.solution.due. |
| 1538c0 | 74 6f 20 6c 61 63 6b 20 6f 66 20 73 75 70 70 6f 72 74 20 66 6f 72 20 74 68 69 73 20 6d 6f 64 65 | to.lack.of.support.for.this.mode |
| 1538e0 | 20 69 6e 20 6d 61 6e 79 20 72 6f 75 74 65 72 20 70 6c 61 74 66 6f 72 6d 73 2e 00 57 68 69 6c 65 | .in.many.router.platforms..While |
| 153900 | 20 6e 6f 72 6d 61 6c 20 47 52 45 20 69 73 20 66 6f 72 20 6c 61 79 65 72 20 33 2c 20 47 52 45 54 | .normal.GRE.is.for.layer.3,.GRET |
| 153920 | 41 50 20 69 73 20 66 6f 72 20 6c 61 79 65 72 20 32 2e 20 47 52 45 54 41 50 20 63 61 6e 20 65 6e | AP.is.for.layer.2..GRETAP.can.en |
| 153940 | 63 61 70 73 75 6c 61 74 65 20 45 74 68 65 72 6e 65 74 20 66 72 61 6d 65 73 2c 20 74 68 75 73 20 | capsulate.Ethernet.frames,.thus. |
| 153960 | 69 74 20 63 61 6e 20 62 65 20 62 72 69 64 67 65 64 20 77 69 74 68 20 6f 74 68 65 72 20 69 6e 74 | it.can.be.bridged.with.other.int |
| 153980 | 65 72 66 61 63 65 73 20 74 6f 20 63 72 65 61 74 65 20 64 61 74 61 6c 69 6e 6b 20 6c 61 79 65 72 | erfaces.to.create.datalink.layer |
| 1539a0 | 20 73 65 67 6d 65 6e 74 73 20 74 68 61 74 20 73 70 61 6e 20 6d 75 6c 74 69 70 6c 65 20 72 65 6d | .segments.that.span.multiple.rem |
| 1539c0 | 6f 74 65 20 73 69 74 65 73 2e 00 57 68 69 74 65 6c 69 73 74 20 6f 66 20 61 64 64 72 65 73 73 65 | ote.sites..Whitelist.of.addresse |
| 1539e0 | 73 20 61 6e 64 20 6e 65 74 77 6f 72 6b 73 2e 20 41 6c 77 61 79 73 20 61 6c 6c 6f 77 20 69 6e 62 | s.and.networks..Always.allow.inb |
| 153a00 | 6f 75 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 66 72 6f 6d 20 74 68 65 73 65 20 73 79 73 74 | ound.connections.from.these.syst |
| 153a20 | 65 6d 73 2e 00 57 69 46 69 2d 36 28 65 29 20 2d 20 38 30 32 2e 31 31 61 78 00 57 69 6c 6c 20 61 | ems..WiFi-6(e).-.802.11ax.Will.a |
| 153a40 | 64 64 20 60 60 70 65 72 73 69 73 74 2d 6b 65 79 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 | dd.``persist-key``.to.the.genera |
| 153a60 | 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 6c 65 61 73 | ted.OpenVPN.configuration..Pleas |
| 153a80 | 65 20 75 73 65 20 74 68 69 73 20 6f 6e 6c 79 20 61 73 20 6c 61 73 74 20 72 65 73 6f 72 74 20 2d | e.use.this.only.as.last.resort.- |
| 153aa0 | 20 74 68 69 6e 67 73 20 6d 69 67 68 74 20 62 72 65 61 6b 20 61 6e 64 20 4f 70 65 6e 56 50 4e 20 | .things.might.break.and.OpenVPN. |
| 153ac0 | 77 6f 6e 27 74 20 73 74 61 72 74 20 69 66 20 79 6f 75 20 70 61 73 73 20 69 6e 76 61 6c 69 64 20 | won't.start.if.you.pass.invalid. |
| 153ae0 | 6f 70 74 69 6f 6e 73 2f 73 79 6e 74 61 78 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 70 65 72 73 69 | options/syntax..Will.add.``persi |
| 153b00 | 73 74 65 6e 74 2d 6b 65 79 60 60 20 61 74 20 74 68 65 20 65 6e 64 20 6f 66 20 74 68 65 20 67 65 | stent-key``.at.the.end.of.the.ge |
| 153b20 | 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 50 | nerated.OpenVPN.configuration..P |
| 153b40 | 6c 65 61 73 65 20 75 73 65 20 74 68 69 73 20 6f 6e 6c 79 20 61 73 20 6c 61 73 74 20 72 65 73 6f | lease.use.this.only.as.last.reso |
| 153b60 | 72 74 20 2d 20 74 68 69 6e 67 73 20 6d 69 67 68 74 20 62 72 65 61 6b 20 61 6e 64 20 4f 70 65 6e | rt.-.things.might.break.and.Open |
| 153b80 | 56 50 4e 20 77 6f 6e 27 74 20 73 74 61 72 74 20 69 66 20 79 6f 75 20 70 61 73 73 20 69 6e 76 61 | VPN.won't.start.if.you.pass.inva |
| 153ba0 | 6c 69 64 20 6f 70 74 69 6f 6e 73 2f 73 79 6e 74 61 78 2e 00 57 69 6c 6c 20 61 64 64 20 60 60 70 | lid.options/syntax..Will.add.``p |
| 153bc0 | 75 73 68 20 22 6b 65 65 70 61 6c 69 76 65 20 31 20 31 30 22 60 60 20 74 6f 20 74 68 65 20 67 65 | ush."keepalive.1.10"``.to.the.ge |
| 153be0 | 6e 65 72 61 74 65 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 20 66 69 6c 65 2e 00 57 69 6c | nerated.OpenVPN.config.file..Wil |
| 153c00 | 6c 20 61 64 64 20 60 60 72 6f 75 74 65 2d 75 70 20 22 2f 63 6f 6e 66 69 67 2f 61 75 74 68 2f 74 | l.add.``route-up."/config/auth/t |
| 153c20 | 75 6e 5f 75 70 2e 73 68 20 61 72 67 31 22 60 60 20 74 6f 20 74 68 65 20 67 65 6e 65 72 61 74 65 | un_up.sh.arg1"``.to.the.generate |
| 153c40 | 64 20 4f 70 65 6e 56 50 4e 20 63 6f 6e 66 69 67 20 66 69 6c 65 2e 20 54 68 65 20 70 61 74 68 20 | d.OpenVPN.config.file..The.path. |
| 153c60 | 61 6e 64 20 61 72 67 75 6d 65 6e 74 73 20 6e 65 65 64 20 74 6f 20 62 65 20 73 69 6e 67 6c 65 2d | and.arguments.need.to.be.single- |
| 153c80 | 20 6f 72 20 64 6f 75 62 6c 65 2d 71 75 6f 74 65 64 2e 00 57 69 6c 6c 20 62 65 20 72 65 63 6f 72 | .or.double-quoted..Will.be.recor |
| 153ca0 | 64 65 64 20 6f 6e 6c 79 20 70 61 63 6b 65 74 73 2f 66 6c 6f 77 73 20 6f 6e 20 2a 2a 69 6e 63 6f | ded.only.packets/flows.on.**inco |
| 153cc0 | 6d 69 6e 67 2a 2a 20 64 69 72 65 63 74 69 6f 6e 20 69 6e 20 63 6f 6e 66 69 67 75 72 65 64 20 69 | ming**.direction.in.configured.i |
| 153ce0 | 6e 74 65 72 66 61 63 65 73 20 62 79 20 64 65 66 61 75 6c 74 2e 00 57 69 6c 6c 20 64 72 6f 70 20 | nterfaces.by.default..Will.drop. |
| 153d00 | 60 3c 73 68 61 72 65 64 2d 6e 65 74 77 6f 72 6b 2d 6e 61 6d 65 3e 5f 60 20 66 72 6f 6d 20 63 6c | `<shared-network-name>_`.from.cl |
| 153d20 | 69 65 6e 74 20 44 4e 53 20 72 65 63 6f 72 64 2c 20 75 73 69 6e 67 20 6f 6e 6c 79 20 74 68 65 20 | ient.DNS.record,.using.only.the. |
| 153d40 | 68 6f 73 74 20 64 65 63 6c 61 72 61 74 69 6f 6e 20 6e 61 6d 65 20 61 6e 64 20 64 6f 6d 61 69 6e | host.declaration.name.and.domain |
| 153d60 | 3a 20 60 3c 68 6f 73 74 6e 61 6d 65 3e 2e 3c 64 6f 6d 61 69 6e 2d 6e 61 6d 65 3e 60 00 57 69 6e | :.`<hostname>.<domain-name>`.Win |
| 153d80 | 64 6f 77 73 20 31 30 20 64 6f 65 73 20 6e 6f 74 20 61 6c 6c 6f 77 20 61 20 75 73 65 72 20 74 6f | dows.10.does.not.allow.a.user.to |
| 153da0 | 20 63 68 6f 6f 73 65 20 74 68 65 20 69 6e 74 65 67 72 69 74 79 20 61 6e 64 20 65 6e 63 72 79 70 | .choose.the.integrity.and.encryp |
| 153dc0 | 74 69 6f 6e 20 63 69 70 68 65 72 73 20 75 73 69 6e 67 20 74 68 65 20 47 55 49 20 61 6e 64 20 69 | tion.ciphers.using.the.GUI.and.i |
| 153de0 | 74 20 75 73 65 73 20 73 6f 6d 65 20 6f 6c 64 65 72 20 70 72 6f 70 6f 73 61 6c 73 20 62 79 20 64 | t.uses.some.older.proposals.by.d |
| 153e00 | 65 66 61 75 6c 74 2e 20 41 20 75 73 65 72 20 63 61 6e 20 6f 6e 6c 79 20 63 68 61 6e 67 65 20 74 | efault..A.user.can.only.change.t |
| 153e20 | 68 65 20 70 72 6f 70 6f 73 61 6c 73 20 6f 6e 20 74 68 65 20 63 6c 69 65 6e 74 20 73 69 64 65 20 | he.proposals.on.the.client.side. |
| 153e40 | 62 79 20 63 6f 6e 66 69 67 75 72 69 6e 67 20 74 68 65 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 | by.configuring.the.IPSec.connect |
| 153e60 | 69 6f 6e 20 70 72 6f 66 69 6c 65 20 76 69 61 20 50 6f 77 65 72 53 68 65 6c 6c 2e 00 57 69 6e 64 | ion.profile.via.PowerShell..Wind |
| 153e80 | 6f 77 73 20 49 6e 74 65 72 6e 65 74 20 4e 61 6d 65 20 53 65 72 76 69 63 65 20 28 57 49 4e 53 29 | ows.Internet.Name.Service.(WINS) |
| 153ea0 | 20 73 65 72 76 65 72 73 20 70 72 6f 70 61 67 61 74 65 64 20 74 6f 20 63 6c 69 65 6e 74 00 57 69 | .servers.propagated.to.client.Wi |
| 153ec0 | 6e 64 6f 77 73 20 65 78 70 65 63 74 73 20 74 68 65 20 73 65 72 76 65 72 20 6e 61 6d 65 20 74 6f | ndows.expects.the.server.name.to |
| 153ee0 | 20 62 65 20 61 6c 73 6f 20 75 73 65 64 20 69 6e 20 74 68 65 20 73 65 72 76 65 72 27 73 20 63 65 | .be.also.used.in.the.server's.ce |
| 153f00 | 72 74 69 66 69 63 61 74 65 20 63 6f 6d 6d 6f 6e 20 6e 61 6d 65 2c 20 73 6f 20 69 74 27 73 20 62 | rtificate.common.name,.so.it's.b |
| 153f20 | 65 73 74 20 74 6f 20 75 73 65 20 74 68 69 73 20 44 4e 53 20 6e 61 6d 65 20 66 6f 72 20 79 6f 75 | est.to.use.this.DNS.name.for.you |
| 153f40 | 72 20 56 50 4e 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 57 69 72 65 47 75 61 72 64 00 57 69 72 65 | r.VPN.connection..WireGuard.Wire |
| 153f60 | 47 75 61 72 64 20 43 6c 69 65 6e 74 20 51 52 20 63 6f 64 65 00 57 69 72 65 47 75 61 72 64 20 69 | Guard.Client.QR.code.WireGuard.i |
| 153f80 | 6e 74 65 72 66 61 63 65 20 69 74 73 65 6c 66 20 75 73 65 73 20 61 64 64 72 65 73 73 20 31 30 2e | nterface.itself.uses.address.10. |
| 153fa0 | 31 2e 30 2e 31 2f 33 30 00 57 69 72 65 47 75 61 72 64 20 69 73 20 61 6e 20 65 78 74 72 65 6d 65 | 1.0.1/30.WireGuard.is.an.extreme |
| 153fc0 | 6c 79 20 73 69 6d 70 6c 65 20 79 65 74 20 66 61 73 74 20 61 6e 64 20 6d 6f 64 65 72 6e 20 56 50 | ly.simple.yet.fast.and.modern.VP |
| 153fe0 | 4e 20 74 68 61 74 20 75 74 69 6c 69 7a 65 73 20 73 74 61 74 65 2d 6f 66 2d 74 68 65 2d 61 72 74 | N.that.utilizes.state-of-the-art |
| 154000 | 20 63 72 79 70 74 6f 67 72 61 70 68 79 2e 20 53 65 65 20 68 74 74 70 73 3a 2f 2f 77 77 77 2e 77 | .cryptography..See.https://www.w |
| 154020 | 69 72 65 67 75 61 72 64 2e 63 6f 6d 20 66 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f | ireguard.com.for.more.informatio |
| 154040 | 6e 2e 00 57 69 72 65 47 75 61 72 64 20 72 65 71 75 69 72 65 73 20 74 68 65 20 67 65 6e 65 72 61 | n..WireGuard.requires.the.genera |
| 154060 | 74 69 6f 6e 20 6f 66 20 61 20 6b 65 79 70 61 69 72 2c 20 77 68 69 63 68 20 69 6e 63 6c 75 64 65 | tion.of.a.keypair,.which.include |
| 154080 | 73 20 61 20 70 72 69 76 61 74 65 20 6b 65 79 20 74 6f 20 64 65 63 72 79 70 74 20 69 6e 63 6f 6d | s.a.private.key.to.decrypt.incom |
| 1540a0 | 69 6e 67 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 61 20 70 75 62 6c 69 63 20 6b 65 79 20 66 6f | ing.traffic,.and.a.public.key.fo |
| 1540c0 | 72 20 70 65 65 72 28 73 29 20 74 6f 20 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2e 00 57 69 | r.peer(s).to.encrypt.traffic..Wi |
| 1540e0 | 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 6c 20 60 60 31 31 60 60 20 66 6f 72 20 32 2e 34 47 48 7a | reless.channel.``11``.for.2.4GHz |
| 154100 | 00 57 69 72 65 6c 65 73 73 20 63 68 61 6e 6e 65 6c 20 60 60 31 60 60 00 57 69 72 65 6c 65 73 73 | .Wireless.channel.``1``.Wireless |
| 154120 | 20 63 68 61 6e 6e 65 6c 20 60 60 35 60 60 20 66 6f 72 20 36 47 48 7a 00 57 69 72 65 6c 65 73 73 | .channel.``5``.for.6GHz.Wireless |
| 154140 | 20 64 65 76 69 63 65 20 74 79 70 65 20 66 6f 72 20 74 68 69 73 20 69 6e 74 65 72 66 61 63 65 00 | .device.type.for.this.interface. |
| 154160 | 57 69 72 65 6c 65 73 73 20 68 61 72 64 77 61 72 65 20 64 65 76 69 63 65 20 75 73 65 64 20 61 73 | Wireless.hardware.device.used.as |
| 154180 | 20 75 6e 64 65 72 6c 61 79 20 72 61 64 69 6f 2e 00 57 69 72 65 6c 65 73 73 20 6f 70 74 69 6f 6e | .underlay.radio..Wireless.option |
| 1541a0 | 73 00 57 69 72 65 6c 65 73 73 20 6f 70 74 69 6f 6e 73 20 28 53 74 61 74 69 6f 6e 2f 43 6c 69 65 | s.Wireless.options.(Station/Clie |
| 1541c0 | 6e 74 29 00 57 69 72 65 6c 65 73 73 4d 6f 64 65 6d 20 28 57 57 41 4e 29 20 6f 70 74 69 6f 6e 73 | nt).WirelessModem.(WWAN).options |
| 1541e0 | 00 57 69 74 68 20 56 79 4f 53 20 62 65 69 6e 67 20 62 61 73 65 64 20 6f 6e 20 74 6f 70 20 6f 66 | .With.VyOS.being.based.on.top.of |
| 154200 | 20 4c 69 6e 75 78 20 61 6e 64 20 69 74 73 20 6b 65 72 6e 65 6c 2c 20 74 68 65 20 4e 65 74 66 69 | .Linux.and.its.kernel,.the.Netfi |
| 154220 | 6c 74 65 72 20 70 72 6f 6a 65 63 74 20 63 72 65 61 74 65 64 20 74 68 65 20 69 70 74 61 62 6c 65 | lter.project.created.the.iptable |
| 154240 | 73 20 61 6e 64 20 6e 6f 77 20 74 68 65 20 73 75 63 63 65 73 73 6f 72 20 6e 66 74 61 62 6c 65 73 | s.and.now.the.successor.nftables |
| 154260 | 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 20 74 6f 20 77 6f 72 6b 20 64 69 | .for.the.Linux.kernel.to.work.di |
| 154280 | 72 65 63 74 6c 79 20 6f 6e 20 74 68 65 20 64 61 74 61 20 66 6c 6f 77 73 2e 20 54 68 69 73 20 6e | rectly.on.the.data.flows..This.n |
| 1542a0 | 6f 77 20 65 78 74 65 6e 64 73 20 74 68 65 20 63 6f 6e 63 65 70 74 20 6f 66 20 7a 6f 6e 65 2d 62 | ow.extends.the.concept.of.zone-b |
| 1542c0 | 61 73 65 64 20 73 65 63 75 72 69 74 79 20 74 6f 20 61 6c 6c 6f 77 20 66 6f 72 20 6d 61 6e 69 70 | ased.security.to.allow.for.manip |
| 1542e0 | 75 6c 61 74 69 6e 67 20 74 68 65 20 64 61 74 61 20 61 74 20 6d 75 6c 74 69 70 6c 65 20 73 74 61 | ulating.the.data.at.multiple.sta |
| 154300 | 67 65 73 20 6f 6e 63 65 20 61 63 63 65 70 74 65 64 20 62 79 20 74 68 65 20 6e 65 74 77 6f 72 6b | ges.once.accepted.by.the.network |
| 154320 | 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 74 68 65 20 64 72 69 76 65 72 20 62 65 66 6f 72 65 | .interface.and.the.driver.before |
| 154340 | 20 62 65 69 6e 67 20 68 61 6e 64 65 64 20 6f 66 66 20 74 6f 20 74 68 65 20 64 65 73 74 69 6e 61 | .being.handed.off.to.the.destina |
| 154360 | 74 69 6f 6e 20 28 65 2e 67 2e 20 61 20 77 65 62 20 73 65 72 76 65 72 20 4f 52 20 61 6e 6f 74 68 | tion.(e.g..a.web.server.OR.anoth |
| 154380 | 65 72 20 64 65 76 69 63 65 29 2e 00 57 69 74 68 20 57 69 72 65 47 75 61 72 64 2c 20 61 20 52 6f | er.device)..With.WireGuard,.a.Ro |
| 1543a0 | 61 64 20 57 61 72 72 69 6f 72 20 56 50 4e 20 63 6f 6e 66 69 67 20 69 73 20 73 69 6d 69 6c 61 72 | ad.Warrior.VPN.config.is.similar |
| 1543c0 | 20 74 6f 20 61 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 20 56 50 4e 2e 20 49 74 20 6a 75 73 74 20 | .to.a.site-to-site.VPN..It.just. |
| 1543e0 | 6c 61 63 6b 73 20 74 68 65 20 60 60 61 64 64 72 65 73 73 60 60 20 61 6e 64 20 60 60 70 6f 72 74 | lacks.the.``address``.and.``port |
| 154400 | 60 60 20 73 74 61 74 65 6d 65 6e 74 73 2e 00 57 69 74 68 20 74 68 65 20 60 60 6e 61 6d 65 2d 73 | ``.statements..With.the.``name-s |
| 154420 | 65 72 76 65 72 60 60 20 6f 70 74 69 6f 6e 20 73 65 74 20 74 6f 20 60 60 6e 6f 6e 65 60 60 2c 20 | erver``.option.set.to.``none``,. |
| 154440 | 56 79 4f 53 20 77 69 6c 6c 20 69 67 6e 6f 72 65 20 74 68 65 20 6e 61 6d 65 73 65 72 76 65 72 73 | VyOS.will.ignore.the.nameservers |
| 154460 | 20 79 6f 75 72 20 49 53 50 20 73 65 6e 64 73 20 79 6f 75 20 61 6e 64 20 74 68 75 73 20 79 6f 75 | .your.ISP.sends.you.and.thus.you |
| 154480 | 20 63 61 6e 20 66 75 6c 6c 79 20 72 65 6c 79 20 6f 6e 20 74 68 65 20 6f 6e 65 73 20 79 6f 75 20 | .can.fully.rely.on.the.ones.you. |
| 1544a0 | 68 61 76 65 20 63 6f 6e 66 69 67 75 72 65 64 20 73 74 61 74 69 63 61 6c 6c 79 2e 00 57 69 74 68 | have.configured.statically..With |
| 1544c0 | 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 79 6f 75 20 63 61 6e 20 73 65 74 20 72 75 6c 65 73 20 | .the.firewall.you.can.set.rules. |
| 1544e0 | 74 6f 20 61 63 63 65 70 74 2c 20 64 72 6f 70 20 6f 72 20 72 65 6a 65 63 74 20 49 43 4d 50 20 69 | to.accept,.drop.or.reject.ICMP.i |
| 154500 | 6e 2c 20 6f 75 74 20 6f 72 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 2e 20 59 6f 75 20 63 61 6e | n,.out.or.local.traffic..You.can |
| 154520 | 20 61 6c 73 6f 20 75 73 65 20 74 68 65 20 67 65 6e 65 72 61 6c 20 2a 2a 66 69 72 65 77 61 6c 6c | .also.use.the.general.**firewall |
| 154540 | 20 61 6c 6c 2d 70 69 6e 67 2a 2a 20 63 6f 6d 6d 61 6e 64 2e 20 54 68 69 73 20 63 6f 6d 6d 61 6e | .all-ping**.command..This.comman |
| 154560 | 64 20 61 66 66 65 63 74 73 20 6f 6e 6c 79 20 74 6f 20 4c 4f 43 41 4c 20 28 70 61 63 6b 65 74 73 | d.affects.only.to.LOCAL.(packets |
| 154580 | 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 79 6f 75 72 20 56 79 4f 53 20 73 79 73 74 65 6d 29 2c | .destined.for.your.VyOS.system), |
| 1545a0 | 20 6e 6f 74 20 74 6f 20 49 4e 20 6f 72 20 4f 55 54 20 74 72 61 66 66 69 63 2e 00 57 69 74 68 20 | .not.to.IN.or.OUT.traffic..With. |
| 1545c0 | 74 68 69 73 20 63 6f 6d 6d 61 6e 64 2c 20 79 6f 75 20 63 61 6e 20 73 70 65 63 69 66 79 20 68 6f | this.command,.you.can.specify.ho |
| 1545e0 | 77 20 74 68 65 20 55 52 4c 20 70 61 74 68 20 73 68 6f 75 6c 64 20 62 65 20 6d 61 74 63 68 65 64 | w.the.URL.path.should.be.matched |
| 154600 | 20 61 67 61 69 6e 73 74 20 69 6e 63 6f 6d 69 6e 67 20 72 65 71 75 65 73 74 73 2e 00 57 69 74 68 | .against.incoming.requests..With |
| 154620 | 20 74 68 69 73 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f | .this.configuration,.in.order.to |
| 154640 | 20 67 65 74 20 73 73 68 20 61 63 63 65 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 2c 20 74 | .get.ssh.access.to.the.router,.t |
| 154660 | 68 65 20 75 73 65 72 20 6e 65 65 64 73 20 74 6f 3a 00 57 69 74 68 20 74 68 69 73 20 63 6f 6e 66 | he.user.needs.to:.With.this.conf |
| 154680 | 69 67 75 72 61 74 69 6f 6e 2c 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 67 65 74 20 73 73 68 20 61 | iguration,.in.order.to.get.ssh.a |
| 1546a0 | 63 63 65 73 73 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 2c 20 75 73 65 72 20 6e 65 65 64 73 20 | ccess.to.the.router,.user.needs. |
| 1546c0 | 74 6f 3a 00 57 69 74 68 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 61 20 | to:.With.zone-based.firewalls.a. |
| 1546e0 | 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c 20 69 6e 20 | new.concept.was.implemented,.in. |
| 154700 | 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 61 6e 64 20 | addition.to.the.standard.in.and. |
| 154720 | 6f 75 74 20 74 72 61 66 66 69 63 20 66 6c 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 | out.traffic.flows,.a.local.flow. |
| 154740 | 77 61 73 20 61 64 64 65 64 2e 20 54 68 69 73 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 66 | was.added..This.local.flow.was.f |
| 154760 | 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 64 65 73 74 69 | or.traffic.originating.and.desti |
| 154780 | 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 73 65 6c 66 2e 20 57 68 69 63 68 20 | ned.to.the.router.itself..Which. |
| 1547a0 | 6d 65 61 6e 73 20 74 68 61 74 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c 65 73 20 77 65 72 65 | means.that.additional.rules.were |
| 1547c0 | 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 66 69 72 65 77 61 6c 6c | .required.to.secure.the.firewall |
| 1547e0 | 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 | .itself.from.the.network,.in.add |
| 154800 | 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e | ition.to.the.existing.inbound.an |
| 154820 | 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 66 72 6f 6d 20 74 68 65 20 74 72 61 64 69 74 | d.outbound.rules.from.the.tradit |
| 154840 | 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 20 61 62 6f 76 65 2e 00 57 69 74 68 20 7a 6f 6e 65 2d 62 | ional.concept.above..With.zone-b |
| 154860 | 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 61 20 6e 65 77 20 63 6f 6e 63 65 70 74 20 77 61 73 | ased.firewalls.a.new.concept.was |
| 154880 | 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 | .implemented,.in.addition.to.the |
| 1548a0 | 20 73 74 61 6e 64 61 72 64 20 69 6e 20 61 6e 64 20 6f 75 74 20 74 72 61 66 66 69 63 20 66 6c 6f | .standard.in.and.out.traffic.flo |
| 1548c0 | 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 61 64 64 65 64 2e 20 54 68 69 73 | ws,.a.local.flow.was.added..This |
| 1548e0 | 20 6c 6f 63 61 6c 20 77 61 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 67 69 6e 61 74 69 | .local.was.for.traffic.originati |
| 154900 | 6e 67 20 61 6e 64 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 74 65 72 20 69 74 | ng.and.destined.to.the.router.it |
| 154920 | 73 65 6c 66 2e 20 57 68 69 63 68 20 6d 65 61 6e 73 20 61 64 64 69 74 69 6f 6e 61 6c 20 72 75 6c | self..Which.means.additional.rul |
| 154940 | 65 73 20 77 65 72 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 63 75 72 65 20 74 68 65 20 66 | es.were.required.to.secure.the.f |
| 154960 | 69 72 65 77 61 6c 6c 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 74 68 65 20 6e 65 74 77 6f 72 6b 2c | irewall.itself.from.the.network, |
| 154980 | 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 65 78 69 73 74 69 6e 67 20 69 6e 62 | .in.addition.to.the.existing.inb |
| 1549a0 | 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 66 72 6f 6d 20 74 68 65 | ound.and.outbound.rules.from.the |
| 1549c0 | 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 20 61 62 6f 76 65 2e 00 57 69 74 68 | .traditional.concept.above..With |
| 1549e0 | 20 7a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c 6c 73 20 61 20 6e 65 77 20 63 6f 6e 63 | .zone-based.firewalls.a.new.conc |
| 154a00 | 65 70 74 20 77 61 73 20 69 6d 70 6c 65 6d 65 6e 74 65 64 2c 20 69 6e 20 61 64 64 74 69 6f 6e 20 | ept.was.implemented,.in.addtion. |
| 154a20 | 74 6f 20 74 68 65 20 73 74 61 6e 64 61 72 64 20 69 6e 20 61 6e 64 20 6f 75 74 20 74 72 61 66 66 | to.the.standard.in.and.out.traff |
| 154a40 | 69 63 20 66 6c 6f 77 73 2c 20 61 20 6c 6f 63 61 6c 20 66 6c 6f 77 20 77 61 73 20 61 64 64 65 64 | ic.flows,.a.local.flow.was.added |
| 154a60 | 2e 20 54 68 69 73 20 6c 6f 63 61 6c 20 77 61 73 20 66 6f 72 20 74 72 61 66 66 69 63 20 6f 72 69 | ..This.local.was.for.traffic.ori |
| 154a80 | 67 69 6e 61 74 69 6e 67 20 61 6e 64 20 64 65 73 74 69 6e 65 64 20 74 6f 20 74 68 65 20 72 6f 75 | ginating.and.destined.to.the.rou |
| 154aa0 | 74 65 72 20 69 74 73 65 6c 66 2e 20 57 68 69 63 68 20 6d 65 61 6e 73 20 61 64 64 69 74 69 6f 6e | ter.itself..Which.means.addition |
| 154ac0 | 61 6c 20 72 75 6c 65 73 20 77 65 72 65 20 72 65 71 75 69 72 65 64 20 74 6f 20 73 65 63 75 72 65 | al.rules.were.required.to.secure |
| 154ae0 | 20 74 68 65 20 66 69 72 65 77 61 6c 6c 20 69 74 73 65 6c 66 20 66 72 6f 6d 20 74 68 65 20 6e 65 | .the.firewall.itself.from.the.ne |
| 154b00 | 74 77 6f 72 6b 2c 20 69 6e 20 61 64 64 69 74 69 6f 6e 20 74 6f 20 74 68 65 20 65 78 69 73 74 69 | twork,.in.addition.to.the.existi |
| 154b20 | 6e 67 20 69 6e 62 6f 75 6e 64 20 61 6e 64 20 6f 75 74 62 6f 75 6e 64 20 72 75 6c 65 73 20 66 72 | ng.inbound.and.outbound.rules.fr |
| 154b40 | 6f 6d 20 74 68 65 20 74 72 61 64 69 74 69 6f 6e 61 6c 20 63 6f 6e 63 65 70 74 20 61 62 6f 76 65 | om.the.traditional.concept.above |
| 154b60 | 2e 00 59 00 59 6f 75 20 61 70 70 6c 79 20 61 20 72 75 6c 65 2d 73 65 74 20 61 6c 77 61 79 73 20 | ..Y.You.apply.a.rule-set.always. |
| 154b80 | 74 6f 20 61 20 7a 6f 6e 65 20 66 72 6f 6d 20 61 6e 20 6f 74 68 65 72 20 7a 6f 6e 65 2c 20 69 74 | to.a.zone.from.an.other.zone,.it |
| 154ba0 | 20 69 73 20 72 65 63 6f 6d 6d 65 6e 64 65 64 20 74 6f 20 63 72 65 61 74 65 20 6f 6e 65 20 72 75 | .is.recommended.to.create.one.ru |
| 154bc0 | 6c 65 2d 73 65 74 20 66 6f 72 20 65 61 63 68 20 7a 6f 6e 65 20 70 61 69 72 2e 00 59 6f 75 20 61 | le-set.for.each.zone.pair..You.a |
| 154be0 | 72 65 20 61 62 6c 65 20 74 6f 20 73 65 74 20 70 6f 73 74 2d 6c 6f 67 69 6e 20 6f 72 20 70 72 65 | re.able.to.set.post-login.or.pre |
| 154c00 | 2d 6c 6f 67 69 6e 20 62 61 6e 6e 65 72 20 6d 65 73 73 61 67 65 73 20 74 6f 20 64 69 73 70 6c 61 | -login.banner.messages.to.displa |
| 154c20 | 79 20 63 65 72 74 61 69 6e 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 73 | y.certain.information.for.this.s |
| 154c40 | 79 73 74 65 6d 2e 00 59 6f 75 20 61 72 65 20 62 65 20 61 62 6c 65 20 74 6f 20 64 6f 77 6e 6c 6f | ystem..You.are.be.able.to.downlo |
| 154c60 | 61 64 20 74 68 65 20 66 69 6c 65 73 20 75 73 69 6e 67 20 53 43 50 2c 20 6f 6e 63 65 20 74 68 65 | ad.the.files.using.SCP,.once.the |
| 154c80 | 20 53 53 48 20 73 65 72 76 69 63 65 20 68 61 73 20 62 65 65 6e 20 61 63 74 69 76 61 74 65 64 20 | .SSH.service.has.been.activated. |
| 154ca0 | 6c 69 6b 65 20 73 6f 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 | like.so.You.can.also.configure.t |
| 154cc0 | 68 65 20 74 69 6d 65 20 69 6e 74 65 72 76 61 6c 20 66 6f 72 20 70 72 65 65 6d 70 74 69 6f 6e 20 | he.time.interval.for.preemption. |
| 154ce0 | 77 69 74 68 20 74 68 65 20 22 70 72 65 65 6d 70 74 2d 64 65 6c 61 79 22 20 6f 70 74 69 6f 6e 2e | with.the."preempt-delay".option. |
| 154d00 | 20 46 6f 72 20 65 78 61 6d 70 6c 65 2c 20 74 6f 20 73 65 74 20 74 68 65 20 68 69 67 68 65 72 20 | .For.example,.to.set.the.higher. |
| 154d20 | 70 72 69 6f 72 69 74 79 20 72 6f 75 74 65 72 20 74 6f 20 74 61 6b 65 20 6f 76 65 72 20 69 6e 20 | priority.router.to.take.over.in. |
| 154d40 | 31 38 30 20 73 65 63 6f 6e 64 73 2c 20 75 73 65 3a 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 64 | 180.seconds,.use:.You.can.also.d |
| 154d60 | 65 66 69 6e 65 20 63 75 73 74 6f 6d 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 65 73 20 74 6f 20 61 | efine.custom.timeout.values.to.a |
| 154d80 | 70 70 6c 79 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 73 75 62 73 65 74 20 6f 66 20 63 6f 6e | pply.to.a.specific.subset.of.con |
| 154da0 | 6e 65 63 74 69 6f 6e 73 2c 20 62 61 73 65 64 20 6f 6e 20 61 20 70 61 63 6b 65 74 20 61 6e 64 20 | nections,.based.on.a.packet.and. |
| 154dc0 | 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 20 54 6f 20 64 6f 20 74 68 69 73 2c 20 79 6f 75 20 6e | flow.selector..To.do.this,.you.n |
| 154de0 | 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 64 65 66 69 6e 69 6e 67 20 74 68 | eed.to.create.a.rule.defining.th |
| 154e00 | 65 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 00 59 6f 75 20 | e.packet.and.flow.selector..You. |
| 154e20 | 63 61 6e 20 61 6c 73 6f 20 6b 65 65 70 20 64 69 66 66 65 72 65 6e 74 20 44 4e 53 20 7a 6f 6e 65 | can.also.keep.different.DNS.zone |
| 154e40 | 20 75 70 64 61 74 65 64 2e 20 4a 75 73 74 20 63 72 65 61 74 65 20 61 20 6e 65 77 20 63 6f 6e 66 | .updated..Just.create.a.new.conf |
| 154e60 | 69 67 20 6e 6f 64 65 3a 20 60 60 73 65 74 20 73 65 72 76 69 63 65 20 64 6e 73 20 64 79 6e 61 6d | ig.node:.``set.service.dns.dynam |
| 154e80 | 69 63 20 69 6e 74 65 72 66 61 63 65 20 3c 69 6e 74 65 72 66 61 63 65 3e 20 72 66 63 32 31 33 36 | ic.interface.<interface>.rfc2136 |
| 154ea0 | 20 3c 6f 74 68 65 72 2d 73 65 72 76 69 63 65 2d 6e 61 6d 65 3e 60 60 00 59 6f 75 20 63 61 6e 20 | .<other-service-name>``.You.can. |
| 154ec0 | 61 6c 73 6f 20 6f 70 74 20 66 6f 72 20 75 73 69 6e 67 20 60 3a 3a 2f 36 34 60 20 61 73 20 70 72 | also.opt.for.using.`::/64`.as.pr |
| 154ee0 | 65 66 69 78 20 66 6f 72 20 79 6f 75 72 20 3a 61 62 62 72 3a 60 52 41 73 20 28 52 6f 75 74 65 72 | efix.for.your.:abbr:`RAs.(Router |
| 154f00 | 20 41 64 76 65 72 74 69 73 65 6d 65 6e 74 73 29 60 2e 20 54 68 69 73 20 77 69 6c 6c 20 74 61 6b | .Advertisements)`..This.will.tak |
| 154f20 | 65 20 74 68 65 20 49 50 76 36 20 47 55 41 20 70 72 65 66 69 78 20 61 73 73 69 67 6e 65 64 20 74 | e.the.IPv6.GUA.prefix.assigned.t |
| 154f40 | 6f 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2c 20 77 68 69 63 68 20 63 6f 6d 65 73 20 69 6e 20 | o.the.interface,.which.comes.in. |
| 154f60 | 68 61 6e 64 79 20 77 68 65 6e 20 75 73 69 6e 67 20 44 48 43 50 76 36 2d 50 44 2e 00 59 6f 75 20 | handy.when.using.DHCPv6-PD..You. |
| 154f80 | 63 61 6e 20 61 6c 73 6f 20 73 70 65 63 69 66 79 20 77 68 69 63 68 20 49 50 76 36 20 61 63 63 65 | can.also.specify.which.IPv6.acce |
| 154fa0 | 73 73 2d 6c 69 73 74 20 73 68 6f 75 6c 64 20 62 65 20 73 68 6f 77 6e 3a 00 59 6f 75 20 63 61 6e | ss-list.should.be.shown:.You.can |
| 154fc0 | 20 61 6c 73 6f 20 74 75 6e 65 20 6d 75 6c 74 69 63 61 73 74 20 77 69 74 68 20 74 68 65 20 66 6f | .also.tune.multicast.with.the.fo |
| 154fe0 | 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 73 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 75 | llowing.commands..You.can.also.u |
| 155000 | 73 65 20 61 6e 6f 74 68 65 72 20 61 74 74 72 69 62 75 74 65 73 20 66 6f 72 20 69 64 65 6e 74 69 | se.another.attributes.for.identi |
| 155020 | 66 79 20 63 6c 69 65 6e 74 20 66 6f 72 20 64 69 73 63 6f 6e 6e 65 63 74 2c 20 6c 69 6b 65 20 46 | fy.client.for.disconnect,.like.F |
| 155040 | 72 61 6d 65 64 2d 49 50 2d 41 64 64 72 65 73 73 2c 20 41 63 63 74 2d 53 65 73 73 69 6f 6e 2d 49 | ramed-IP-Address,.Acct-Session-I |
| 155060 | 64 2c 20 65 74 63 2e 20 52 65 73 75 6c 74 20 63 6f 6d 6d 61 6e 64 73 20 61 70 70 65 61 72 73 20 | d,.etc..Result.commands.appears. |
| 155080 | 69 6e 20 6c 6f 67 2e 00 59 6f 75 20 63 61 6e 20 61 6c 73 6f 20 77 72 69 74 65 20 61 20 64 65 73 | in.log..You.can.also.write.a.des |
| 1550a0 | 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 61 20 66 69 6c 74 65 72 3a 00 59 6f 75 20 63 61 6e 20 61 | cription.for.a.filter:.You.can.a |
| 1550c0 | 73 73 69 67 6e 20 6d 75 6c 74 69 70 6c 65 20 6b 65 79 73 20 74 6f 20 74 68 65 20 73 61 6d 65 20 | ssign.multiple.keys.to.the.same. |
| 1550e0 | 75 73 65 72 20 62 79 20 75 73 69 6e 67 20 61 20 75 6e 69 71 75 65 20 69 64 65 6e 74 69 66 69 65 | user.by.using.a.unique.identifie |
| 155100 | 72 20 70 65 72 20 53 53 48 20 6b 65 79 2e 00 59 6f 75 20 63 61 6e 20 61 76 6f 69 64 20 74 68 65 | r.per.SSH.key..You.can.avoid.the |
| 155120 | 20 22 6c 65 61 6b 79 22 20 62 65 68 61 76 69 6f 72 20 62 79 20 75 73 69 6e 67 20 61 20 66 69 72 | ."leaky".behavior.by.using.a.fir |
| 155140 | 65 77 61 6c 6c 20 70 6f 6c 69 63 79 20 74 68 61 74 20 64 72 6f 70 73 20 22 69 6e 76 61 6c 69 64 | ewall.policy.that.drops."invalid |
| 155160 | 22 20 73 74 61 74 65 20 70 61 63 6b 65 74 73 2e 00 59 6f 75 20 63 61 6e 20 63 68 65 63 6b 20 79 | ".state.packets..You.can.check.y |
| 155180 | 6f 75 72 20 4e 49 43 20 64 72 69 76 65 72 20 62 79 20 69 73 73 75 69 6e 67 20 3a 6f 70 63 6d 64 | our.NIC.driver.by.issuing.:opcmd |
| 1551a0 | 3a 60 73 68 6f 77 20 69 6e 74 65 72 66 61 63 65 73 20 65 74 68 65 72 6e 65 74 20 65 74 68 30 20 | :`show.interfaces.ethernet.eth0. |
| 1551c0 | 70 68 79 73 69 63 61 6c 20 7c 20 67 72 65 70 20 2d 69 20 64 72 69 76 65 72 60 00 59 6f 75 20 63 | physical.|.grep.-i.driver`.You.c |
| 1551e0 | 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 61 20 70 6f 6c 69 63 79 20 69 6e 74 6f 20 61 20 63 6c 61 | an.configure.a.policy.into.a.cla |
| 155200 | 73 73 20 74 68 72 6f 75 67 68 20 74 68 65 20 60 60 71 75 65 75 65 2d 74 79 70 65 60 60 20 73 65 | ss.through.the.``queue-type``.se |
| 155220 | 74 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 63 6c 61 73 73 65 73 | tting..You.can.configure.classes |
| 155240 | 20 28 75 70 20 74 6f 20 34 30 39 30 29 20 77 69 74 68 20 64 69 66 66 65 72 65 6e 74 20 73 65 74 | .(up.to.4090).with.different.set |
| 155260 | 74 69 6e 67 73 20 61 6e 64 20 61 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 20 77 68 69 63 68 | tings.and.a.default.policy.which |
| 155280 | 20 77 69 6c 6c 20 62 65 20 61 70 70 6c 69 65 64 20 74 6f 20 61 6e 79 20 74 72 61 66 66 69 63 20 | .will.be.applied.to.any.traffic. |
| 1552a0 | 6e 6f 74 20 6d 61 74 63 68 69 6e 67 20 61 6e 79 20 6f 66 20 74 68 65 20 63 6f 6e 66 69 67 75 72 | not.matching.any.of.the.configur |
| 1552c0 | 65 64 20 63 6c 61 73 73 65 73 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 | ed.classes..You.can.configure.mu |
| 1552e0 | 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 68 6f 75 6c 64 20 70 | ltiple.interfaces.which.whould.p |
| 155300 | 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 | articipate.in.flow.accounting..Y |
| 155320 | 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 | ou.can.configure.multiple.interf |
| 155340 | 61 63 65 73 20 77 68 69 63 68 20 77 68 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e | aces.which.whould.participate.in |
| 155360 | 20 73 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 | .sflow.accounting..You.can.confi |
| 155380 | 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 | gure.multiple.interfaces.which.w |
| 1553a0 | 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 74 65 20 69 6e 20 66 6c 6f 77 20 61 63 63 6f 75 6e 74 | ould.participate.in.flow.account |
| 1553c0 | 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 6d 75 6c 74 69 70 6c 65 20 | ing..You.can.configure.multiple. |
| 1553e0 | 69 6e 74 65 72 66 61 63 65 73 20 77 68 69 63 68 20 77 6f 75 6c 64 20 70 61 72 74 69 63 69 70 61 | interfaces.which.would.participa |
| 155400 | 74 65 20 69 6e 20 73 66 6c 6f 77 20 61 63 63 6f 75 6e 74 69 6e 67 2e 00 59 6f 75 20 63 61 6e 20 | te.in.sflow.accounting..You.can. |
| 155420 | 63 72 65 61 74 65 20 6d 75 6c 74 69 70 6c 65 20 56 4c 41 4e 20 69 6e 74 65 72 66 61 63 65 73 20 | create.multiple.VLAN.interfaces. |
| 155440 | 6f 6e 20 61 20 70 68 79 73 69 63 61 6c 20 69 6e 74 65 72 66 61 63 65 2e 20 54 68 65 20 56 4c 41 | on.a.physical.interface..The.VLA |
| 155460 | 4e 20 49 44 20 72 61 6e 67 65 20 69 73 20 66 72 6f 6d 20 30 20 74 6f 20 34 30 39 34 2e 00 59 6f | N.ID.range.is.from.0.to.4094..Yo |
| 155480 | 75 20 63 61 6e 20 64 65 66 69 6e 65 20 63 75 73 74 6f 6d 20 74 69 6d 65 6f 75 74 20 76 61 6c 75 | u.can.define.custom.timeout.valu |
| 1554a0 | 65 73 20 74 6f 20 61 70 70 6c 79 20 74 6f 20 61 20 73 70 65 63 69 66 69 63 20 73 75 62 73 65 74 | es.to.apply.to.a.specific.subset |
| 1554c0 | 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 2c 20 62 61 73 65 64 20 6f 6e 20 61 20 70 61 63 6b | .of.connections,.based.on.a.pack |
| 1554e0 | 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f 72 2e 20 54 6f 20 64 6f 20 74 68 69 73 | et.and.flow.selector..To.do.this |
| 155500 | 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 20 72 75 6c 65 20 64 65 66 69 | ,.you.need.to.create.a.rule.defi |
| 155520 | 6e 69 6e 67 20 74 68 65 20 70 61 63 6b 65 74 20 61 6e 64 20 66 6c 6f 77 20 73 65 6c 65 63 74 6f | ning.the.packet.and.flow.selecto |
| 155540 | 72 2e 00 59 6f 75 20 63 61 6e 20 64 69 73 61 62 6c 65 20 61 20 56 52 52 50 20 67 72 6f 75 70 20 | r..You.can.disable.a.VRRP.group. |
| 155560 | 77 69 74 68 20 60 60 64 69 73 61 62 6c 65 60 60 20 6f 70 74 69 6f 6e 3a 00 59 6f 75 20 63 61 6e | with.``disable``.option:.You.can |
| 155580 | 20 67 65 74 20 6d 6f 72 65 20 73 70 65 63 69 66 69 63 20 4f 53 50 46 76 33 20 69 6e 66 6f 72 6d | .get.more.specific.OSPFv3.inform |
| 1555a0 | 61 74 69 6f 6e 20 62 79 20 75 73 69 6e 67 20 74 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 73 68 | ation.by.using.the.parameters.sh |
| 1555c0 | 6f 77 6e 20 62 65 6c 6f 77 3a 00 59 6f 75 20 63 61 6e 20 6e 6f 74 20 61 73 73 69 67 6e 20 74 68 | own.below:.You.can.not.assign.th |
| 1555e0 | 65 20 73 61 6d 65 20 61 6c 6c 6f 77 65 64 2d 69 70 73 20 73 74 61 74 65 6d 65 6e 74 20 74 6f 20 | e.same.allowed-ips.statement.to. |
| 155600 | 6d 75 6c 74 69 70 6c 65 20 57 69 72 65 47 75 61 72 64 20 70 65 65 72 73 2e 20 54 68 69 73 20 61 | multiple.WireGuard.peers..This.a |
| 155620 | 20 64 65 73 69 67 6e 20 64 65 63 69 73 69 6f 6e 2e 20 46 6f 72 20 6d 6f 72 65 20 69 6e 66 6f 72 | .design.decision..For.more.infor |
| 155640 | 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 63 68 65 63 6b 20 74 68 65 20 60 57 69 72 65 47 75 61 | mation.please.check.the.`WireGua |
| 155660 | 72 64 20 6d 61 69 6c 69 6e 67 20 6c 69 73 74 60 5f 2e 00 59 6f 75 20 63 61 6e 20 6e 6f 74 20 72 | rd.mailing.list`_..You.can.not.r |
| 155680 | 75 6e 20 74 68 69 73 20 69 6e 20 61 20 56 52 52 50 20 73 65 74 75 70 2c 20 69 66 20 6d 75 6c 74 | un.this.in.a.VRRP.setup,.if.mult |
| 1556a0 | 69 70 6c 65 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 73 20 61 72 65 20 6c 61 75 6e 63 68 65 64 | iple.mDNS.repeaters.are.launched |
| 1556c0 | 20 69 6e 20 61 20 73 75 62 6e 65 74 20 79 6f 75 20 77 69 6c 6c 20 65 78 70 65 72 69 65 6e 63 65 | .in.a.subnet.you.will.experience |
| 1556e0 | 20 74 68 65 20 6d 44 4e 53 20 70 61 63 6b 65 74 20 73 74 6f 72 6d 20 64 65 61 74 68 21 00 59 6f | .the.mDNS.packet.storm.death!.Yo |
| 155700 | 75 20 63 61 6e 20 6e 6f 77 20 22 64 69 61 6c 22 20 74 68 65 20 70 65 65 72 20 77 69 74 68 20 74 | u.can.now."dial".the.peer.with.t |
| 155720 | 68 65 20 66 6f 6c 6c 77 6f 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 20 60 60 73 73 74 70 63 20 2d 2d | he.follwoing.command:.``sstpc.-- |
| 155740 | 6c 6f 67 2d 6c 65 76 65 6c 20 34 20 2d 2d 6c 6f 67 2d 73 74 64 65 72 72 20 2d 2d 75 73 65 72 20 | log-level.4.--log-stderr.--user. |
| 155760 | 76 79 6f 73 20 2d 2d 70 61 73 73 77 6f 72 64 20 76 79 6f 73 20 76 70 6e 2e 65 78 61 6d 70 6c 65 | vyos.--password.vyos.vpn.example |
| 155780 | 2e 63 6f 6d 20 2d 2d 20 63 61 6c 6c 20 76 79 6f 73 60 60 2e 00 59 6f 75 20 63 61 6e 20 6e 6f 77 | .com.--.call.vyos``..You.can.now |
| 1557a0 | 20 53 53 48 20 69 6e 74 6f 20 79 6f 75 72 20 73 79 73 74 65 6d 20 75 73 69 6e 67 20 61 64 6d 69 | .SSH.into.your.system.using.admi |
| 1557c0 | 6e 2f 61 64 6d 69 6e 20 61 73 20 61 20 64 65 66 61 75 6c 74 20 75 73 65 72 20 73 75 70 70 6c 69 | n/admin.as.a.default.user.suppli |
| 1557e0 | 65 64 20 66 72 6f 6d 20 74 68 65 20 60 60 6c 66 6b 65 69 74 65 6c 2f 74 61 63 61 63 73 5f 70 6c | ed.from.the.``lfkeitel/tacacs_pl |
| 155800 | 75 73 3a 6c 61 74 65 73 74 60 60 20 63 6f 6e 74 61 69 6e 65 72 2e 00 59 6f 75 20 63 61 6e 20 6f | us:latest``.container..You.can.o |
| 155820 | 6e 6c 79 20 61 70 70 6c 79 20 6f 6e 65 20 70 6f 6c 69 63 79 20 70 65 72 20 69 6e 74 65 72 66 61 | nly.apply.one.policy.per.interfa |
| 155840 | 63 65 20 61 6e 64 20 64 69 72 65 63 74 69 6f 6e 2c 20 62 75 74 20 79 6f 75 20 63 6f 75 6c 64 20 | ce.and.direction,.but.you.could. |
| 155860 | 72 65 75 73 65 20 61 20 70 6f 6c 69 63 79 20 6f 6e 20 64 69 66 66 65 72 65 6e 74 20 69 6e 74 65 | reuse.a.policy.on.different.inte |
| 155880 | 72 66 61 63 65 73 20 61 6e 64 20 64 69 72 65 63 74 69 6f 6e 73 3a 00 59 6f 75 20 63 61 6e 20 6f | rfaces.and.directions:.You.can.o |
| 1558a0 | 6e 6c 79 20 73 70 65 63 69 66 79 20 61 20 73 6f 75 72 63 65 20 6d 61 63 2d 61 64 64 72 65 73 73 | nly.specify.a.source.mac-address |
| 1558c0 | 20 74 6f 20 6d 61 74 63 68 2e 00 59 6f 75 20 63 61 6e 20 72 75 6e 20 74 68 65 20 55 44 50 20 62 | .to.match..You.can.run.the.UDP.b |
| 1558e0 | 72 6f 61 64 63 61 73 74 20 72 65 6c 61 79 20 73 65 72 76 69 63 65 20 6f 6e 20 6d 75 6c 74 69 70 | roadcast.relay.service.on.multip |
| 155900 | 6c 65 20 72 6f 75 74 65 72 73 20 63 6f 6e 6e 65 63 74 65 64 20 74 6f 20 61 20 73 75 62 6e 65 74 | le.routers.connected.to.a.subnet |
| 155920 | 2e 20 54 68 65 72 65 20 69 73 20 2a 2a 4e 4f 2a 2a 20 55 44 50 20 62 72 6f 61 64 63 61 73 74 20 | ..There.is.**NO**.UDP.broadcast. |
| 155940 | 72 65 6c 61 79 20 70 61 63 6b 65 74 20 73 74 6f 72 6d 21 00 59 6f 75 20 63 61 6e 20 73 70 65 63 | relay.packet.storm!.You.can.spec |
| 155960 | 69 66 79 20 61 20 73 74 61 74 69 63 20 44 48 43 50 20 61 73 73 69 67 6e 6d 65 6e 74 20 6f 6e 20 | ify.a.static.DHCP.assignment.on. |
| 155980 | 61 20 70 65 72 20 68 6f 73 74 20 62 61 73 69 73 2e 20 59 6f 75 20 77 69 6c 6c 20 6e 65 65 64 20 | a.per.host.basis..You.will.need. |
| 1559a0 | 74 68 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 6f 66 20 74 68 65 20 73 74 61 74 69 6f 6e 20 61 | the.MAC.address.of.the.station.a |
| 1559c0 | 6e 64 20 79 6f 75 72 20 64 65 73 69 72 65 64 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 | nd.your.desired.IP.address..The. |
| 1559e0 | 61 64 64 72 65 73 73 20 6d 75 73 74 20 62 65 20 69 6e 73 69 64 65 20 74 68 65 20 73 75 62 6e 65 | address.must.be.inside.the.subne |
| 155a00 | 74 20 64 65 66 69 6e 69 74 69 6f 6e 20 62 75 74 20 63 61 6e 20 62 65 20 6f 75 74 73 69 64 65 20 | t.definition.but.can.be.outside. |
| 155a20 | 6f 66 20 74 68 65 20 72 61 6e 67 65 20 73 74 61 74 65 6d 65 6e 74 2e 00 59 6f 75 20 63 61 6e 20 | of.the.range.statement..You.can. |
| 155a40 | 74 65 73 74 20 74 68 65 20 53 4e 4d 50 76 33 20 66 75 6e 63 74 69 6f 6e 61 6c 69 74 79 20 66 72 | test.the.SNMPv3.functionality.fr |
| 155a60 | 6f 6d 20 61 6e 79 20 6c 69 6e 75 78 20 62 61 73 65 64 20 73 79 73 74 65 6d 2c 20 6a 75 73 74 20 | om.any.linux.based.system,.just. |
| 155a80 | 72 75 6e 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 20 60 60 73 6e 6d | run.the.following.command:.``snm |
| 155aa0 | 70 77 61 6c 6b 20 2d 76 20 33 20 2d 75 20 76 79 6f 73 20 2d 61 20 53 48 41 20 2d 41 20 76 79 6f | pwalk.-v.3.-u.vyos.-a.SHA.-A.vyo |
| 155ac0 | 73 31 32 33 34 35 36 37 38 20 2d 78 20 41 45 53 20 2d 58 20 76 79 6f 73 31 32 33 34 35 36 37 38 | s12345678.-x.AES.-X.vyos12345678 |
| 155ae0 | 20 2d 6c 20 61 75 74 68 50 72 69 76 20 31 39 32 2e 30 2e 32 2e 31 20 2e 31 60 60 00 59 6f 75 20 | .-l.authPriv.192.0.2.1..1``.You. |
| 155b00 | 63 61 6e 20 75 73 65 20 77 69 6c 64 63 61 72 64 20 60 60 2a 60 60 20 74 6f 20 6d 61 74 63 68 20 | can.use.wildcard.``*``.to.match. |
| 155b20 | 61 20 67 72 6f 75 70 20 6f 66 20 69 6e 74 65 72 66 61 63 65 73 2e 00 59 6f 75 20 63 61 6e 20 76 | a.group.of.interfaces..You.can.v |
| 155b40 | 65 72 69 66 79 20 79 6f 75 72 20 56 52 52 50 20 67 72 6f 75 70 20 73 74 61 74 75 73 20 77 69 74 | erify.your.VRRP.group.status.wit |
| 155b60 | 68 20 74 68 65 20 6f 70 65 72 61 74 69 6f 6e 61 6c 20 6d 6f 64 65 20 60 60 72 75 6e 20 73 68 6f | h.the.operational.mode.``run.sho |
| 155b80 | 77 20 76 72 72 70 60 60 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f 75 20 63 61 6e 20 76 69 65 77 20 74 | w.vrrp``.command:.You.can.view.t |
| 155ba0 | 68 61 74 20 74 68 65 20 70 6f 6c 69 63 79 20 69 73 20 62 65 69 6e 67 20 63 6f 72 72 65 63 74 6c | hat.the.policy.is.being.correctl |
| 155bc0 | 79 20 28 6f 72 20 69 6e 63 6f 72 72 65 63 74 6c 79 29 20 75 74 69 6c 69 73 65 64 20 77 69 74 68 | y.(or.incorrectly).utilised.with |
| 155be0 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f 75 20 63 61 6e 6e | .the.following.command:.You.cann |
| 155c00 | 6f 74 20 65 61 73 69 6c 79 20 72 65 64 69 73 74 72 69 62 75 74 65 20 49 50 76 36 20 72 6f 75 74 | ot.easily.redistribute.IPv6.rout |
| 155c20 | 65 73 20 76 69 61 20 4f 53 50 46 76 33 20 6f 6e 20 61 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 | es.via.OSPFv3.on.a.WireGuard.int |
| 155c40 | 65 72 66 61 63 65 20 6c 69 6e 6b 2e 20 54 68 69 73 20 72 65 71 75 69 72 65 73 20 79 6f 75 20 74 | erface.link..This.requires.you.t |
| 155c60 | 6f 20 63 6f 6e 66 69 67 75 72 65 20 6c 69 6e 6b 2d 6c 6f 63 61 6c 20 61 64 64 72 65 73 73 65 73 | o.configure.link-local.addresses |
| 155c80 | 20 6d 61 6e 75 61 6c 6c 79 20 6f 6e 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 | .manually.on.the.WireGuard.inter |
| 155ca0 | 66 61 63 65 73 2c 20 73 65 65 20 3a 76 79 74 61 73 6b 3a 60 54 31 34 38 33 60 2e 00 59 6f 75 20 | faces,.see.:vytask:`T1483`..You. |
| 155cc0 | 64 6f 20 2a 2a 6e 6f 74 2a 2a 20 6e 65 65 64 20 74 6f 20 63 6f 70 79 20 74 68 65 20 63 65 72 74 | do.**not**.need.to.copy.the.cert |
| 155ce0 | 69 66 69 63 61 74 65 20 74 6f 20 74 68 65 20 6f 74 68 65 72 20 72 6f 75 74 65 72 2e 20 49 6e 73 | ificate.to.the.other.router..Ins |
| 155d00 | 74 65 61 64 2c 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 72 65 74 72 69 65 76 65 20 69 74 73 20 53 | tead,.you.need.to.retrieve.its.S |
| 155d20 | 48 41 2d 32 35 36 20 66 69 6e 67 65 72 70 72 69 6e 74 2e 20 4f 70 65 6e 56 50 4e 20 6f 6e 6c 79 | HA-256.fingerprint..OpenVPN.only |
| 155d40 | 20 73 75 70 70 6f 72 74 73 20 53 48 41 2d 32 35 36 20 66 69 6e 67 65 72 70 72 69 6e 74 73 20 61 | .supports.SHA-256.fingerprints.a |
| 155d60 | 74 20 74 68 65 20 6d 6f 6d 65 6e 74 2c 20 73 6f 20 79 6f 75 20 6e 65 65 64 20 74 6f 20 75 73 65 | t.the.moment,.so.you.need.to.use |
| 155d80 | 20 74 68 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 63 6f 6d 6d 61 6e 64 3a 00 59 6f 75 20 6d 61 79 20 | .the.following.command:.You.may. |
| 155da0 | 61 6c 73 6f 20 61 64 64 69 74 69 6f 6e 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 20 74 69 6d 65 | also.additionally.configure.time |
| 155dc0 | 6f 75 74 73 20 66 6f 72 20 64 69 66 66 65 72 65 6e 74 20 74 79 70 65 73 20 6f 66 20 63 6f 6e 6e | outs.for.different.types.of.conn |
| 155de0 | 65 63 74 69 6f 6e 73 2e 00 59 6f 75 20 6d 61 79 20 65 78 70 65 63 74 20 72 65 61 6c 20 74 68 72 | ections..You.may.expect.real.thr |
| 155e00 | 6f 75 67 68 70 75 74 73 20 61 72 6f 75 6e 64 20 31 30 4d 42 79 74 65 73 2f 73 20 6f 72 20 68 69 | oughputs.around.10MBytes/s.or.hi |
| 155e20 | 67 68 65 72 20 69 6e 20 63 72 6f 77 64 65 64 20 61 72 65 61 73 2e 00 59 6f 75 20 6d 61 79 20 65 | gher.in.crowded.areas..You.may.e |
| 155e40 | 78 70 65 63 74 20 72 65 61 6c 20 74 68 72 6f 75 67 68 70 75 74 73 20 61 72 6f 75 6e 64 20 35 30 | xpect.real.throughputs.around.50 |
| 155e60 | 4d 42 79 74 65 73 2f 73 20 74 6f 20 31 35 30 4d 42 79 74 65 73 2f 73 2c 20 64 65 70 65 6e 64 69 | MBytes/s.to.150MBytes/s,.dependi |
| 155e80 | 6e 67 20 6f 6e 20 6f 62 73 74 72 75 63 74 69 6f 6e 73 20 62 79 20 77 61 6c 6c 73 2c 20 77 61 74 | ng.on.obstructions.by.walls,.wat |
| 155ea0 | 65 72 2c 20 6d 65 74 61 6c 20 6f 72 20 6f 74 68 65 72 20 6d 61 74 65 72 69 61 6c 73 20 77 69 74 | er,.metal.or.other.materials.wit |
| 155ec0 | 68 20 68 69 67 68 20 65 6c 65 63 74 72 6f 2d 6d 61 67 6e 65 74 69 63 20 64 61 6d 70 65 6e 69 6e | h.high.electro-magnetic.dampenin |
| 155ee0 | 67 20 61 74 20 36 47 48 7a 2e 20 42 65 73 74 20 72 65 73 75 6c 74 73 20 61 72 65 20 61 63 68 69 | g.at.6GHz..Best.results.are.achi |
| 155f00 | 65 76 65 64 20 77 69 74 68 20 74 68 65 20 41 50 20 62 65 69 6e 67 20 69 6e 20 74 68 65 20 73 61 | eved.with.the.AP.being.in.the.sa |
| 155f20 | 6d 65 20 72 6f 6f 6d 20 61 6e 64 20 69 6e 20 6c 69 6e 65 2d 6f 66 2d 73 69 67 68 74 2e 00 59 6f | me.room.and.in.line-of-sight..Yo |
| 155f40 | 75 20 6d 61 79 20 70 72 65 66 65 72 20 6c 6f 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 64 20 | u.may.prefer.locally.configured. |
| 155f60 | 63 61 70 61 62 69 6c 69 74 69 65 73 20 6d 6f 72 65 20 74 68 61 6e 20 74 68 65 20 6e 65 67 6f 74 | capabilities.more.than.the.negot |
| 155f80 | 69 61 74 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 65 76 65 6e 20 74 68 6f 75 67 68 20 72 | iated.capabilities.even.though.r |
| 155fa0 | 65 6d 6f 74 65 20 70 65 65 72 20 73 65 6e 64 73 20 63 61 70 61 62 69 6c 69 74 69 65 73 2e 20 49 | emote.peer.sends.capabilities..I |
| 155fc0 | 66 20 74 68 65 20 70 65 65 72 20 69 73 20 63 6f 6e 66 69 67 75 72 65 64 20 62 79 20 3a 63 66 67 | f.the.peer.is.configured.by.:cfg |
| 155fe0 | 63 6d 64 3a 60 6f 76 65 72 72 69 64 65 2d 63 61 70 61 62 69 6c 69 74 79 60 2c 20 56 79 4f 53 20 | cmd:`override-capability`,.VyOS. |
| 156000 | 69 67 6e 6f 72 65 73 20 72 65 63 65 69 76 65 64 20 63 61 70 61 62 69 6c 69 74 69 65 73 20 74 68 | ignores.received.capabilities.th |
| 156020 | 65 6e 20 6f 76 65 72 72 69 64 65 20 6e 65 67 6f 74 69 61 74 65 64 20 63 61 70 61 62 69 6c 69 74 | en.override.negotiated.capabilit |
| 156040 | 69 65 73 20 77 69 74 68 20 63 6f 6e 66 69 67 75 72 65 64 20 76 61 6c 75 65 73 2e 00 59 6f 75 20 | ies.with.configured.values..You. |
| 156060 | 6d 61 79 20 77 61 6e 74 20 74 6f 20 64 69 73 61 62 6c 65 20 73 65 6e 64 69 6e 67 20 43 61 70 61 | may.want.to.disable.sending.Capa |
| 156080 | 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 20 4f 50 45 4e 20 6d 65 73 73 61 67 65 20 | bility.Negotiation.OPEN.message. |
| 1560a0 | 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 20 74 6f 20 74 68 65 20 70 65 65 72 20 77 | optional.parameter.to.the.peer.w |
| 1560c0 | 68 65 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 20 64 6f 65 73 20 6e 6f 74 20 69 6d 70 6c 65 6d 65 | hen.remote.peer.does.not.impleme |
| 1560e0 | 6e 74 20 43 61 70 61 62 69 6c 69 74 79 20 4e 65 67 6f 74 69 61 74 69 6f 6e 2e 20 50 6c 65 61 73 | nt.Capability.Negotiation..Pleas |
| 156100 | 65 20 75 73 65 20 3a 63 66 67 63 6d 64 3a 60 64 69 73 61 62 6c 65 2d 63 61 70 61 62 69 6c 69 74 | e.use.:cfgcmd:`disable-capabilit |
| 156120 | 79 2d 6e 65 67 6f 74 69 61 74 69 6f 6e 60 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 64 69 73 61 62 6c | y-negotiation`.command.to.disabl |
| 156140 | 65 20 74 68 65 20 66 65 61 74 75 72 65 2e 00 59 6f 75 20 6e 65 65 64 20 32 20 73 65 70 61 72 61 | e.the.feature..You.need.2.separa |
| 156160 | 74 65 20 66 69 72 65 77 61 6c 6c 73 20 74 6f 20 64 65 66 69 6e 65 20 74 72 61 66 66 69 63 3a 20 | te.firewalls.to.define.traffic:. |
| 156180 | 6f 6e 65 20 66 6f 72 20 65 61 63 68 20 64 69 72 65 63 74 69 6f 6e 2e 00 59 6f 75 20 6e 65 65 64 | one.for.each.direction..You.need |
| 1561a0 | 20 74 6f 20 64 69 73 61 62 6c 65 20 74 68 65 20 69 6e 2d 6d 65 6d 6f 72 79 20 74 61 62 6c 65 20 | .to.disable.the.in-memory.table. |
| 1561c0 | 69 6e 20 70 72 6f 64 75 63 74 69 6f 6e 20 65 6e 76 69 72 6f 6e 6d 65 6e 74 73 21 20 55 73 69 6e | in.production.environments!.Usin |
| 1561e0 | 67 20 3a 61 62 62 72 3a 60 49 4d 54 20 28 49 6e 2d 4d 65 6d 6f 72 79 20 54 61 62 6c 65 29 60 20 | g.:abbr:`IMT.(In-Memory.Table)`. |
| 156200 | 6d 61 79 20 6c 65 61 64 20 74 6f 20 68 65 61 76 79 20 43 50 55 20 6f 76 65 72 6c 6f 61 64 69 6e | may.lead.to.heavy.CPU.overloadin |
| 156220 | 67 20 61 6e 64 20 75 6e 73 74 61 62 6c 65 20 66 6c 6f 77 2d 61 63 63 6f 75 6e 74 69 6e 67 20 62 | g.and.unstable.flow-accounting.b |
| 156240 | 65 68 61 76 69 6f 72 2e 00 59 6f 75 20 6e 65 65 64 20 79 6f 75 72 20 50 50 50 6f 45 20 63 72 65 | ehavior..You.need.your.PPPoE.cre |
| 156260 | 64 65 6e 74 69 61 6c 73 20 66 72 6f 6d 20 79 6f 75 72 20 44 53 4c 20 49 53 50 20 69 6e 20 6f 72 | dentials.from.your.DSL.ISP.in.or |
| 156280 | 64 65 72 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 69 73 2e 20 54 68 65 20 75 73 75 61 6c | der.to.configure.this..The.usual |
| 1562a0 | 20 75 73 65 72 6e 61 6d 65 20 69 73 20 69 6e 20 74 68 65 20 66 6f 72 6d 20 6f 66 20 6e 61 6d 65 | .username.is.in.the.form.of.name |
| 1562c0 | 40 68 6f 73 74 2e 6e 65 74 20 62 75 74 20 6d 61 79 20 76 61 72 79 20 64 65 70 65 6e 64 69 6e 67 | @host.net.but.may.vary.depending |
| 1562e0 | 20 6f 6e 20 49 53 50 2e 00 59 6f 75 20 6e 6f 77 20 73 65 65 20 74 68 65 20 6c 6f 6e 67 65 72 20 | .on.ISP..You.now.see.the.longer. |
| 156300 | 41 53 20 70 61 74 68 2e 00 59 6f 75 20 73 68 6f 75 6c 64 20 61 64 64 20 61 20 66 69 72 65 77 61 | AS.path..You.should.add.a.firewa |
| 156320 | 6c 6c 20 74 6f 20 79 6f 75 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 62 6f 76 65 20 61 | ll.to.your.configuration.above.a |
| 156340 | 73 20 77 65 6c 6c 20 62 79 20 61 73 73 69 67 6e 69 6e 67 20 69 74 20 74 6f 20 74 68 65 20 70 70 | s.well.by.assigning.it.to.the.pp |
| 156360 | 70 6f 65 30 20 69 74 73 65 6c 66 20 61 73 20 73 68 6f 77 6e 20 68 65 72 65 3a 00 59 6f 75 20 73 | poe0.itself.as.shown.here:.You.s |
| 156380 | 68 6f 75 6c 64 20 61 6c 73 6f 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 4f 55 54 49 53 | hould.also.ensure.that.the.OUTIS |
| 1563a0 | 44 45 5f 4c 4f 43 41 4c 20 66 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 69 73 20 61 70 70 6c 69 | DE_LOCAL.firewall.group.is.appli |
| 1563c0 | 65 64 20 74 6f 20 74 68 65 20 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 20 64 69 | ed.to.the.WAN.interface.and.a.di |
| 1563e0 | 72 65 63 74 69 6f 6e 20 28 6c 6f 63 61 6c 29 2e 00 59 6f 75 20 73 68 6f 75 6c 64 20 61 6c 73 6f | rection.(local)..You.should.also |
| 156400 | 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 68 65 20 4f 55 54 53 49 44 45 5f 4c 4f 43 41 4c 20 66 | .ensure.that.the.OUTSIDE_LOCAL.f |
| 156420 | 69 72 65 77 61 6c 6c 20 67 72 6f 75 70 20 69 73 20 61 70 70 6c 69 65 64 20 74 6f 20 74 68 65 20 | irewall.group.is.applied.to.the. |
| 156440 | 57 41 4e 20 69 6e 74 65 72 66 61 63 65 20 61 6e 64 20 61 20 64 69 72 65 63 74 69 6f 6e 20 28 6c | WAN.interface.and.a.direction.(l |
| 156460 | 6f 63 61 6c 29 2e 00 59 6f 75 20 77 69 6c 6c 20 61 6c 73 6f 20 6e 65 65 64 20 74 68 65 20 70 75 | ocal)..You.will.also.need.the.pu |
| 156480 | 62 6c 69 63 20 6b 65 79 20 6f 66 20 79 6f 75 72 20 70 65 65 72 20 61 73 20 77 65 6c 6c 20 61 73 | blic.key.of.your.peer.as.well.as |
| 1564a0 | 20 74 68 65 20 6e 65 74 77 6f 72 6b 28 73 29 20 79 6f 75 20 77 61 6e 74 20 74 6f 20 74 75 6e 6e | .the.network(s).you.want.to.tunn |
| 1564c0 | 65 6c 20 28 61 6c 6c 6f 77 65 64 2d 69 70 73 29 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 61 20 | el.(allowed-ips).to.configure.a. |
| 1564e0 | 57 69 72 65 47 75 61 72 64 20 74 75 6e 6e 65 6c 2e 20 54 68 65 20 70 75 62 6c 69 63 20 6b 65 79 | WireGuard.tunnel..The.public.key |
| 156500 | 20 62 65 6c 6f 77 20 69 73 20 61 6c 77 61 79 73 20 74 68 65 20 70 75 62 6c 69 63 20 6b 65 79 20 | .below.is.always.the.public.key. |
| 156520 | 66 72 6f 6d 20 79 6f 75 72 20 70 65 65 72 2c 20 6e 6f 74 20 79 6f 75 72 20 6c 6f 63 61 6c 20 6f | from.your.peer,.not.your.local.o |
| 156540 | 6e 65 2e 00 59 6f 75 72 20 49 53 50 73 20 6d 6f 64 65 6d 20 69 73 20 63 6f 6e 6e 65 63 74 65 64 | ne..Your.ISPs.modem.is.connected |
| 156560 | 20 74 6f 20 70 6f 72 74 20 60 60 65 74 68 30 60 60 20 6f 66 20 79 6f 75 72 20 56 79 4f 53 20 62 | .to.port.``eth0``.of.your.VyOS.b |
| 156580 | 6f 78 2e 00 59 6f 75 72 20 4c 41 4e 20 63 6f 6e 6e 65 63 74 65 64 20 6f 6e 20 65 74 68 30 20 75 | ox..Your.LAN.connected.on.eth0.u |
| 1565a0 | 73 65 73 20 70 72 65 66 69 78 20 60 60 32 30 30 31 3a 64 62 38 3a 62 65 65 66 3a 32 3a 3a 2f 36 | ses.prefix.``2001:db8:beef:2::/6 |
| 1565c0 | 34 60 60 20 77 69 74 68 20 74 68 65 20 72 6f 75 74 65 72 20 62 65 65 69 6e 67 20 60 60 32 30 30 | 4``.with.the.router.beeing.``200 |
| 1565e0 | 31 3a 64 62 38 3a 62 65 65 66 3a 32 3a 3a 31 60 60 00 5a 65 62 72 61 20 73 75 70 70 6f 72 74 73 | 1:db8:beef:2::1``.Zebra.supports |
| 156600 | 20 70 72 65 66 69 78 2d 6c 69 73 74 73 20 61 6e 64 20 52 6f 75 74 65 20 4d 61 70 73 20 74 6f 20 | .prefix-lists.and.Route.Maps.to. |
| 156620 | 6d 61 74 63 68 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 | match.routes.received.from.other |
| 156640 | 20 46 52 52 20 63 6f 6d 70 6f 6e 65 6e 74 73 2e 20 54 68 65 20 70 65 72 6d 69 74 2f 64 65 6e 79 | .FRR.components..The.permit/deny |
| 156660 | 20 66 61 63 69 6c 69 74 69 65 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 73 65 20 63 6f | .facilities.provided.by.these.co |
| 156680 | 6d 6d 61 6e 64 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 77 68 69 | mmands.can.be.used.to.filter.whi |
| 1566a0 | 63 68 20 72 6f 75 74 65 73 20 7a 65 62 72 61 20 77 69 6c 6c 20 69 6e 73 74 61 6c 6c 20 69 6e 20 | ch.routes.zebra.will.install.in. |
| 1566c0 | 74 68 65 20 6b 65 72 6e 65 6c 2e 00 5a 65 62 72 61 20 73 75 70 70 6f 72 74 73 20 70 72 65 66 69 | the.kernel..Zebra.supports.prefi |
| 1566e0 | 78 2d 6c 69 73 74 73 20 61 6e 64 20 52 6f 75 74 65 20 4d 61 70 73 73 20 74 6f 20 6d 61 74 63 68 | x-lists.and.Route.Mapss.to.match |
| 156700 | 20 72 6f 75 74 65 73 20 72 65 63 65 69 76 65 64 20 66 72 6f 6d 20 6f 74 68 65 72 20 46 52 52 20 | .routes.received.from.other.FRR. |
| 156720 | 63 6f 6d 70 6f 6e 65 6e 74 73 2e 20 54 68 65 20 70 65 72 6d 69 74 2f 64 65 6e 79 20 66 61 63 69 | components..The.permit/deny.faci |
| 156740 | 6c 69 74 69 65 73 20 70 72 6f 76 69 64 65 64 20 62 79 20 74 68 65 73 65 20 63 6f 6d 6d 61 6e 64 | lities.provided.by.these.command |
| 156760 | 73 20 63 61 6e 20 62 65 20 75 73 65 64 20 74 6f 20 66 69 6c 74 65 72 20 77 68 69 63 68 20 72 6f | s.can.be.used.to.filter.which.ro |
| 156780 | 75 74 65 73 20 7a 65 62 72 61 20 77 69 6c 6c 20 69 6e 73 74 61 6c 6c 20 69 6e 20 74 68 65 20 6b | utes.zebra.will.install.in.the.k |
| 1567a0 | 65 72 6e 65 6c 2e 00 5a 65 62 72 61 2f 4b 65 72 6e 65 6c 20 72 6f 75 74 65 20 66 69 6c 74 65 72 | ernel..Zebra/Kernel.route.filter |
| 1567c0 | 69 6e 67 00 5a 6f 6e 65 20 42 61 73 65 64 20 46 69 72 65 77 61 6c 6c 00 5a 6f 6e 65 20 42 61 73 | ing.Zone.Based.Firewall.Zone.Bas |
| 1567e0 | 65 64 20 46 69 72 65 77 61 6c 6c 20 28 44 65 70 72 65 63 61 74 65 64 29 00 5a 6f 6e 65 2d 50 6f | ed.Firewall.(Deprecated).Zone-Po |
| 156800 | 6c 69 63 79 20 4f 76 65 72 76 69 65 77 00 5a 6f 6e 65 2d 62 61 73 65 64 20 66 69 72 65 77 61 6c | licy.Overview.Zone-based.firewal |
| 156820 | 6c 00 5b 41 2e 42 2e 43 2e 44 5d 20 e2 80 93 20 6c 69 6e 6b 2d 73 74 61 74 65 2d 69 64 2e 20 57 | l.[A.B.C.D].....link-state-id..W |
| 156840 | 69 74 68 20 74 68 69 73 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 64 | ith.this.specified.the.command.d |
| 156860 | 69 73 70 6c 61 79 73 20 70 6f 72 74 69 6f 6e 20 6f 66 20 74 68 65 20 6e 65 74 77 6f 72 6b 20 65 | isplays.portion.of.the.network.e |
| 156880 | 6e 76 69 72 6f 6e 6d 65 6e 74 20 74 68 61 74 20 69 73 20 62 65 69 6e 67 20 64 65 73 63 72 69 62 | nvironment.that.is.being.describ |
| 1568a0 | 65 64 20 62 79 20 74 68 65 20 61 64 76 65 72 74 69 73 65 6d 65 6e 74 2e 20 54 68 65 20 76 61 6c | ed.by.the.advertisement..The.val |
| 1568c0 | 75 65 20 65 6e 74 65 72 65 64 20 64 65 70 65 6e 64 73 20 6f 6e 20 74 68 65 20 61 64 76 65 72 74 | ue.entered.depends.on.the.advert |
| 1568e0 | 69 73 65 6d 65 6e 74 e2 80 99 73 20 4c 53 20 74 79 70 65 2e 20 49 74 20 6d 75 73 74 20 62 65 20 | isement...s.LS.type..It.must.be. |
| 156900 | 65 6e 74 65 72 65 64 20 69 6e 20 74 68 65 20 66 6f 72 6d 20 6f 66 20 61 6e 20 49 50 20 61 64 64 | entered.in.the.form.of.an.IP.add |
| 156920 | 72 65 73 73 2e 00 60 31 2e 20 43 72 65 61 74 65 20 61 6e 20 65 76 65 6e 74 20 68 61 6e 64 6c 65 | ress..`1..Create.an.event.handle |
| 156940 | 72 60 5f 00 60 32 2e 20 41 64 64 20 72 65 67 65 78 20 74 6f 20 74 68 65 20 73 63 72 69 70 74 60 | r`_.`2..Add.regex.to.the.script` |
| 156960 | 5f 00 60 33 2e 20 41 64 64 20 61 20 66 75 6c 6c 20 70 61 74 68 20 74 6f 20 74 68 65 20 73 63 72 | _.`3..Add.a.full.path.to.the.scr |
| 156980 | 69 70 74 60 5f 00 60 34 2e 20 41 64 64 20 6f 70 74 69 6f 6e 61 6c 20 70 61 72 61 6d 65 74 65 72 | ipt`_.`4..Add.optional.parameter |
| 1569a0 | 73 60 5f 00 60 3c 6e 61 6d 65 3e 60 20 6d 75 73 74 20 62 65 20 69 64 65 6e 74 69 63 61 6c 20 6f | s`_.`<name>`.must.be.identical.o |
| 1569c0 | 6e 20 62 6f 74 68 20 73 69 64 65 73 21 00 60 43 6f 6d 6d 6f 6e 20 41 70 70 6c 69 63 61 74 69 6f | n.both.sides!.`Common.Applicatio |
| 1569e0 | 6e 73 20 4b 65 70 74 20 45 6e 68 61 6e 63 65 64 60 5f 20 28 43 41 4b 45 29 20 69 73 20 61 20 63 | ns.Kept.Enhanced`_.(CAKE).is.a.c |
| 156a00 | 6f 6d 70 72 65 68 65 6e 73 69 76 65 20 71 75 65 75 65 20 6d 61 6e 61 67 65 6d 65 6e 74 20 73 79 | omprehensive.queue.management.sy |
| 156a20 | 73 74 65 6d 2c 20 69 6d 70 6c 65 6d 65 6e 74 65 64 20 61 73 20 61 20 71 75 65 75 65 20 64 69 73 | stem,.implemented.as.a.queue.dis |
| 156a40 | 63 69 70 6c 69 6e 65 20 28 71 64 69 73 63 29 20 66 6f 72 20 74 68 65 20 4c 69 6e 75 78 20 6b 65 | cipline.(qdisc).for.the.Linux.ke |
| 156a60 | 72 6e 65 6c 2e 20 49 74 20 69 73 20 64 65 73 69 67 6e 65 64 20 74 6f 20 72 65 70 6c 61 63 65 20 | rnel..It.is.designed.to.replace. |
| 156a80 | 61 6e 64 20 69 6d 70 72 6f 76 65 20 75 70 6f 6e 20 74 68 65 20 63 6f 6d 70 6c 65 78 20 68 69 65 | and.improve.upon.the.complex.hie |
| 156aa0 | 72 61 72 63 68 79 20 6f 66 20 73 69 6d 70 6c 65 20 71 64 69 73 63 73 20 70 72 65 73 65 6e 74 6c | rarchy.of.simple.qdiscs.presentl |
| 156ac0 | 79 20 72 65 71 75 69 72 65 64 20 74 6f 20 65 66 66 65 63 74 69 76 65 6c 79 20 74 61 63 6b 6c 65 | y.required.to.effectively.tackle |
| 156ae0 | 20 74 68 65 20 62 75 66 66 65 72 62 6c 6f 61 74 20 70 72 6f 62 6c 65 6d 20 61 74 20 74 68 65 20 | .the.bufferbloat.problem.at.the. |
| 156b00 | 6e 65 74 77 6f 72 6b 20 65 64 67 65 2e 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 61 2e | network.edge..``$.tail.-n.+2.ca. |
| 156b20 | 6b 65 79 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 | key.|.head.-n.-1.|.tr.-d.'\n'``. |
| 156b40 | 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 61 2e 70 65 6d 20 7c 20 68 65 61 64 20 2d 6e 20 | ``$.tail.-n.+2.ca.pem.|.head.-n. |
| 156b60 | 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 | -1.|.tr.-d.'\n'``.``$.tail.-n.+2 |
| 156b80 | 20 63 65 72 74 2e 6b 65 79 20 7c 20 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 | .cert.key.|.head.-n.-1.|.tr.-d.' |
| 156ba0 | 5c 6e 27 60 60 00 60 60 24 20 74 61 69 6c 20 2d 6e 20 2b 32 20 63 65 72 74 2e 70 65 6d 20 7c 20 | \n'``.``$.tail.-n.+2.cert.pem.|. |
| 156bc0 | 68 65 61 64 20 2d 6e 20 2d 31 20 7c 20 74 72 20 2d 64 20 27 5c 6e 27 60 60 00 60 60 2b 60 60 20 | head.-n.-1.|.tr.-d.'\n'``.``+``. |
| 156be0 | 73 75 63 63 65 73 73 66 75 6c 00 60 60 2d 60 60 20 66 61 69 6c 65 64 00 60 60 2f 63 6f 6e 66 69 | successful.``-``.failed.``/confi |
| 156c00 | 67 2f 73 63 72 69 70 74 73 2f 64 68 63 70 2d 63 6c 69 65 6e 74 2f 70 6f 73 74 2d 68 6f 6f 6b 73 | g/scripts/dhcp-client/post-hooks |
| 156c20 | 2e 64 2f 60 60 00 60 60 2f 63 6f 6e 66 69 67 2f 73 63 72 69 70 74 73 2f 64 68 63 70 2d 63 6c 69 | .d/``.``/config/scripts/dhcp-cli |
| 156c40 | 65 6e 74 2f 70 72 65 2d 68 6f 6f 6b 73 2e 64 2f 60 60 00 60 60 30 2e 70 6f 6f 6c 2e 6e 74 70 2e | ent/pre-hooks.d/``.``0.pool.ntp. |
| 156c60 | 6f 72 67 60 60 00 60 60 30 60 60 20 2d 20 32 30 20 6f 72 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e | org``.``0``.-.20.or.40.MHz.chann |
| 156c80 | 65 6c 20 77 69 64 74 68 20 28 64 65 66 61 75 6c 74 29 00 60 60 30 60 60 20 2d 20 48 45 2d 4d 43 | el.width.(default).``0``.-.HE-MC |
| 156ca0 | 53 20 30 2d 37 00 60 60 30 60 60 3a 20 4e 6f 20 72 65 70 6c 61 79 20 77 69 6e 64 6f 77 2c 20 73 | S.0-7.``0``:.No.replay.window,.s |
| 156cc0 | 74 72 69 63 74 20 63 68 65 63 6b 00 60 60 31 2d 34 32 39 34 39 36 37 32 39 35 60 60 3a 20 4e 75 | trict.check.``1-4294967295``:.Nu |
| 156ce0 | 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 20 74 68 61 74 20 63 6f 75 6c 64 20 62 65 20 6d 69 | mber.of.packets.that.could.be.mi |
| 156d00 | 73 6f 72 64 65 72 65 64 00 60 60 31 2e 70 6f 6f 6c 2e 6e 74 70 2e 6f 72 67 60 60 00 60 60 31 31 | sordered.``1.pool.ntp.org``.``11 |
| 156d20 | 35 32 30 30 60 60 20 2d 20 31 31 35 2c 32 30 30 20 62 70 73 20 28 64 65 66 61 75 6c 74 20 66 6f | 5200``.-.115,200.bps.(default.fo |
| 156d40 | 72 20 73 65 72 69 61 6c 20 63 6f 6e 73 6f 6c 65 29 00 60 60 31 32 30 30 60 60 20 2d 20 31 32 30 | r.serial.console).``1200``.-.120 |
| 156d60 | 30 20 62 70 73 00 60 60 31 33 31 60 60 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 | 0.bps.``131``.-.20.MHz.channel.w |
| 156d80 | 69 64 74 68 00 60 60 31 33 31 60 60 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 | idth.``131``.-.20.MHz.channel.wi |
| 156da0 | 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 33 32 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e | dth.(6GHz).``132``.-.40.MHz.chan |
| 156dc0 | 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 32 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e | nel.width.``132``.-.40.MHz.chann |
| 156de0 | 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 33 33 60 60 20 2d 20 38 30 20 4d 48 7a | el.width.(6GHz).``133``.-.80.MHz |
| 156e00 | 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 33 60 60 20 2d 20 38 30 20 4d 48 7a 20 | .channel.width.``133``.-.80.MHz. |
| 156e20 | 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 33 34 60 60 20 2d 20 31 | channel.width.(6GHz).``134``.-.1 |
| 156e40 | 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 33 34 60 60 20 2d 20 31 | 60.MHz.channel.width.``134``.-.1 |
| 156e60 | 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 28 36 47 48 7a 29 00 60 60 31 33 | 60.MHz.channel.width.(6GHz).``13 |
| 156e80 | 35 60 60 20 2d 20 38 30 2b 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 | 5``.-.80+80.MHz.channel.width.`` |
| 156ea0 | 31 33 35 60 60 20 2d 20 38 30 2b 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 20 | 135``.-.80+80.MHz.channel.width. |
| 156ec0 | 28 36 47 48 7a 29 00 60 60 31 39 32 2e 31 36 38 2e 32 2e 32 35 34 60 60 20 49 50 20 61 64 64 72 | (6GHz).``192.168.2.254``.IP.addr |
| 156ee0 | 65 65 73 73 20 6f 6e 20 56 79 4f 53 20 65 74 68 32 20 66 72 6f 6d 20 49 53 50 32 00 60 60 31 39 | eess.on.VyOS.eth2.from.ISP2.``19 |
| 156f00 | 32 30 30 60 60 20 2d 20 31 39 2c 32 30 30 20 62 70 73 00 60 60 31 60 60 20 2d 20 38 30 20 4d 48 | 200``.-.19,200.bps.``1``.-.80.MH |
| 156f20 | 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 31 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 | z.channel.width.``1``.-.HE-MCS.0 |
| 156f40 | 2d 39 00 60 60 32 2e 70 6f 6f 6c 2e 6e 74 70 2e 6f 72 67 60 60 00 60 60 32 30 33 2e 30 2e 31 31 | -9.``2.pool.ntp.org``.``203.0.11 |
| 156f60 | 33 2e 32 35 34 60 60 20 49 50 20 61 64 64 72 65 65 73 73 20 6f 6e 20 56 79 4f 53 20 65 74 68 31 | 3.254``.IP.addreess.on.VyOS.eth1 |
| 156f80 | 20 66 72 6f 6d 20 49 53 50 31 00 60 60 32 34 30 30 60 60 20 2d 20 32 34 30 30 20 62 70 73 00 60 | .from.ISP1.``2400``.-.2400.bps.` |
| 156fa0 | 60 32 60 60 20 2d 20 31 36 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 68 00 60 60 32 | `2``.-.160.MHz.channel.width.``2 |
| 156fc0 | 60 60 20 2d 20 48 45 2d 4d 43 53 20 30 2d 31 31 00 60 60 33 38 34 30 30 60 60 20 2d 20 33 38 2c | ``.-.HE-MCS.0-11.``38400``.-.38, |
| 156fe0 | 34 30 30 20 62 70 73 20 28 64 65 66 61 75 6c 74 20 66 6f 72 20 58 65 6e 20 63 6f 6e 73 6f 6c 65 | 400.bps.(default.for.Xen.console |
| 157000 | 29 00 60 60 33 60 60 20 2d 20 38 30 2b 38 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 | ).``3``.-.80+80.MHz.channel.widt |
| 157020 | 68 00 60 60 33 60 60 20 2d 20 48 45 2d 4d 43 53 20 69 73 20 6e 6f 74 20 73 75 70 70 6f 72 74 65 | h.``3``.-.HE-MCS.is.not.supporte |
| 157040 | 64 00 60 60 34 38 30 30 60 60 20 2d 20 34 38 30 30 20 62 70 73 00 60 60 35 37 36 30 30 60 60 20 | d.``4800``.-.4800.bps.``57600``. |
| 157060 | 2d 20 35 37 2c 36 30 30 20 62 70 73 00 60 60 36 34 3a 66 66 39 62 3a 3a 2f 39 36 60 60 20 69 73 | -.57,600.bps.``64:ff9b::/96``.is |
| 157080 | 20 74 68 65 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 70 72 65 66 69 78 20 66 6f 72 20 49 50 76 34 2d | .the.well-known.prefix.for.IPv4- |
| 1570a0 | 65 6d 62 65 64 64 65 64 20 49 50 76 36 20 61 64 64 72 65 73 73 65 73 2e 20 54 68 65 20 70 72 65 | embedded.IPv6.addresses..The.pre |
| 1570c0 | 66 69 78 20 69 73 20 75 73 65 64 20 74 6f 20 72 65 70 72 65 73 65 6e 74 20 49 50 76 34 20 61 64 | fix.is.used.to.represent.IPv4.ad |
| 1570e0 | 64 72 65 73 73 65 73 20 69 6e 20 61 6e 20 49 50 76 36 20 61 64 64 72 65 73 73 20 66 6f 72 6d 61 | dresses.in.an.IPv6.address.forma |
| 157100 | 74 2e 20 54 68 65 20 49 50 76 34 20 61 64 64 72 65 73 73 20 69 73 20 65 6e 63 6f 64 65 64 20 69 | t..The.IPv4.address.is.encoded.i |
| 157120 | 6e 20 74 68 65 20 6c 6f 77 2d 6f 72 64 65 72 20 33 32 20 62 69 74 73 20 6f 66 20 74 68 65 20 49 | n.the.low-order.32.bits.of.the.I |
| 157140 | 50 76 36 20 61 64 64 72 65 73 73 2e 20 54 68 65 20 68 69 67 68 2d 6f 72 64 65 72 20 33 32 20 62 | Pv6.address..The.high-order.32.b |
| 157160 | 69 74 73 20 61 72 65 20 73 65 74 20 74 6f 20 74 68 65 20 77 65 6c 6c 2d 6b 6e 6f 77 6e 20 70 72 | its.are.set.to.the.well-known.pr |
| 157180 | 65 66 69 78 20 36 34 3a 66 66 39 62 3a 3a 2f 39 36 2e 00 60 60 38 30 32 2e 33 61 64 60 60 20 2d | efix.64:ff9b::/96..``802.3ad``.- |
| 1571a0 | 20 49 45 45 45 20 38 30 32 2e 33 61 64 20 44 79 6e 61 6d 69 63 20 6c 69 6e 6b 20 61 67 67 72 65 | .IEEE.802.3ad.Dynamic.link.aggre |
| 1571c0 | 67 61 74 69 6f 6e 2e 20 43 72 65 61 74 65 73 20 61 67 67 72 65 67 61 74 69 6f 6e 20 67 72 6f 75 | gation..Creates.aggregation.grou |
| 1571e0 | 70 73 20 74 68 61 74 20 73 68 61 72 65 20 74 68 65 20 73 61 6d 65 20 73 70 65 65 64 20 61 6e 64 | ps.that.share.the.same.speed.and |
| 157200 | 20 64 75 70 6c 65 78 20 73 65 74 74 69 6e 67 73 2e 20 55 74 69 6c 69 7a 65 73 20 61 6c 6c 20 73 | .duplex.settings..Utilizes.all.s |
| 157220 | 6c 61 76 65 73 20 69 6e 20 74 68 65 20 61 63 74 69 76 65 20 61 67 67 72 65 67 61 74 6f 72 20 61 | laves.in.the.active.aggregator.a |
| 157240 | 63 63 6f 72 64 69 6e 67 20 74 6f 20 74 68 65 20 38 30 32 2e 33 61 64 20 73 70 65 63 69 66 69 63 | ccording.to.the.802.3ad.specific |
| 157260 | 61 74 69 6f 6e 2e 00 60 60 38 31 60 60 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 | ation..``81``.-.20.MHz.channel.w |
| 157280 | 69 64 74 68 20 28 32 2e 34 47 48 7a 29 00 60 60 38 33 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 | idth.(2.4GHz).``83``.-.40.MHz.ch |
| 1572a0 | 61 6e 6e 65 6c 20 77 69 64 74 68 2c 20 73 65 63 6f 6e 64 61 72 79 20 32 30 4d 48 7a 20 63 68 61 | annel.width,.secondary.20MHz.cha |
| 1572c0 | 6e 6e 65 6c 20 61 62 6f 76 65 20 70 72 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 20 28 32 2e 34 47 | nnel.above.primary.channel.(2.4G |
| 1572e0 | 48 7a 29 00 60 60 38 34 60 60 20 2d 20 34 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 69 64 74 | Hz).``84``.-.40.MHz.channel.widt |
| 157300 | 68 2c 20 73 65 63 6f 6e 64 61 72 79 20 32 30 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 62 65 6c 6f 77 | h,.secondary.20MHz.channel.below |
| 157320 | 20 70 72 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 20 28 32 2e 34 47 48 7a 29 00 60 60 39 36 30 30 | .primary.channel.(2.4GHz).``9600 |
| 157340 | 60 60 20 2d 20 39 36 30 30 20 62 70 73 00 60 60 3c 20 64 68 2d 67 72 6f 75 70 20 3e 60 60 20 64 | ``.-.9600.bps.``<.dh-group.>``.d |
| 157360 | 65 66 69 6e 65 73 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 6f | efines.a.Diffie-Hellman.group.fo |
| 157380 | 72 20 50 46 53 3b 00 60 60 40 60 60 20 55 73 65 20 40 20 61 73 20 72 65 63 6f 72 64 20 6e 61 6d | r.PFS;.``@``.Use.@.as.record.nam |
| 1573a0 | 65 20 74 6f 20 73 65 74 20 74 68 65 20 72 65 63 6f 72 64 20 66 6f 72 20 74 68 65 20 72 6f 6f 74 | e.to.set.the.record.for.the.root |
| 1573c0 | 20 64 6f 6d 61 69 6e 2e 00 60 60 4b 6e 6f 77 6e 20 6c 69 6d 69 74 61 74 69 6f 6e 73 3a 60 60 00 | .domain..``Known.limitations:``. |
| 1573e0 | 60 60 53 74 61 74 65 66 75 6c 2d 49 50 76 36 2d 41 64 64 72 65 73 73 2d 50 6f 6f 6c 60 60 20 61 | ``Stateful-IPv6-Address-Pool``.a |
| 157400 | 6e 64 20 60 60 44 65 6c 65 67 61 74 65 64 2d 49 50 76 36 2d 50 72 65 66 69 78 2d 50 6f 6f 6c 60 | nd.``Delegated-IPv6-Prefix-Pool` |
| 157420 | 60 20 61 72 65 20 64 65 66 69 6e 65 64 20 69 6e 20 52 46 43 36 39 31 31 2e 20 49 66 20 74 68 65 | `.are.defined.in.RFC6911..If.the |
| 157440 | 79 20 61 72 65 20 6e 6f 74 20 64 65 66 69 6e 65 64 20 69 6e 20 79 6f 75 72 20 52 41 44 49 55 53 | y.are.not.defined.in.your.RADIUS |
| 157460 | 20 73 65 72 76 65 72 2c 20 61 64 64 20 6e 65 77 20 64 69 63 74 69 6f 6e 61 72 79 5f 2e 00 60 60 | .server,.add.new.dictionary_..`` |
| 157480 | 57 4c 42 5f 49 4e 54 45 52 46 41 43 45 5f 4e 41 4d 45 3d 5b 69 6e 74 65 72 66 61 63 65 6e 61 6d | WLB_INTERFACE_NAME=[interfacenam |
| 1574a0 | 65 5d 60 60 3a 20 49 6e 74 65 72 66 61 63 65 20 74 6f 20 62 65 20 6d 6f 6e 69 74 6f 72 65 64 00 | e]``:.Interface.to.be.monitored. |
| 1574c0 | 60 60 57 4c 42 5f 49 4e 54 45 52 46 41 43 45 5f 53 54 41 54 45 3d 5b 41 43 54 49 56 45 7c 46 41 | ``WLB_INTERFACE_STATE=[ACTIVE|FA |
| 1574e0 | 49 4c 45 44 5d 60 60 3a 20 49 6e 74 65 72 66 61 63 65 20 73 74 61 74 65 00 60 60 61 60 60 20 2d | ILED]``:.Interface.state.``a``.- |
| 157500 | 20 38 30 32 2e 31 31 61 20 2d 20 35 34 20 4d 62 69 74 73 2f 73 65 63 00 60 60 61 63 60 60 20 2d | .802.11a.-.54.Mbits/sec.``ac``.- |
| 157520 | 20 38 30 32 2e 31 31 61 63 20 2d 20 31 33 30 30 20 4d 62 69 74 73 2f 73 65 63 00 60 60 61 63 63 | .802.11ac.-.1300.Mbits/sec.``acc |
| 157540 | 65 70 74 2d 6f 77 6e 2d 6e 65 78 74 68 6f 70 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 57 65 | ept-own-nexthop``.-...........We |
| 157560 | 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 61 63 63 65 70 | ll-known.communities.value.accep |
| 157580 | 74 2d 6f 77 6e 2d 6e 65 78 74 68 6f 70 20 30 78 46 46 46 46 30 30 30 38 00 60 60 61 63 63 65 70 | t-own-nexthop.0xFFFF0008.``accep |
| 1575a0 | 74 2d 6f 77 6e 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c | t-own``.-...................Well |
| 1575c0 | 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 41 43 43 45 50 54 5f | -known.communities.value.ACCEPT_ |
| 1575e0 | 4f 57 4e 20 30 78 46 46 46 46 30 30 30 31 00 60 60 61 63 63 65 70 74 60 60 3a 20 61 63 63 65 70 | OWN.0xFFFF0001.``accept``:.accep |
| 157600 | 74 20 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 61 63 63 65 73 73 2d 70 6f 69 6e 74 60 60 20 2d | t.the.packet..``access-point``.- |
| 157620 | 20 41 63 63 65 73 73 2d 70 6f 69 6e 74 20 66 6f 72 77 61 72 64 73 20 70 61 63 6b 65 74 73 20 62 | .Access-point.forwards.packets.b |
| 157640 | 65 74 77 65 65 6e 20 6f 74 68 65 72 20 6e 6f 64 65 73 00 60 60 61 63 74 69 6f 6e 60 60 20 6b 65 | etween.other.nodes.``action``.ke |
| 157660 | 65 70 2d 61 6c 69 76 65 20 66 61 69 6c 75 72 65 20 61 63 74 69 6f 6e 3a 00 60 60 61 63 74 69 76 | ep-alive.failure.action:.``activ |
| 157680 | 65 2d 62 61 63 6b 75 70 60 60 20 2d 20 41 63 74 69 76 65 2d 62 61 63 6b 75 70 20 70 6f 6c 69 63 | e-backup``.-.Active-backup.polic |
| 1576a0 | 79 3a 20 4f 6e 6c 79 20 6f 6e 65 20 73 6c 61 76 65 20 69 6e 20 74 68 65 20 62 6f 6e 64 20 69 73 | y:.Only.one.slave.in.the.bond.is |
| 1576c0 | 20 61 63 74 69 76 65 2e 20 41 20 64 69 66 66 65 72 65 6e 74 20 73 6c 61 76 65 20 62 65 63 6f 6d | .active..A.different.slave.becom |
| 1576e0 | 65 73 20 61 63 74 69 76 65 20 69 66 2c 20 61 6e 64 20 6f 6e 6c 79 20 69 66 2c 20 74 68 65 20 61 | es.active.if,.and.only.if,.the.a |
| 157700 | 63 74 69 76 65 20 73 6c 61 76 65 20 66 61 69 6c 73 2e 20 54 68 65 20 62 6f 6e 64 27 73 20 4d 41 | ctive.slave.fails..The.bond's.MA |
| 157720 | 43 20 61 64 64 72 65 73 73 20 69 73 20 65 78 74 65 72 6e 61 6c 6c 79 20 76 69 73 69 62 6c 65 20 | C.address.is.externally.visible. |
| 157740 | 6f 6e 20 6f 6e 6c 79 20 6f 6e 65 20 70 6f 72 74 20 28 6e 65 74 77 6f 72 6b 20 61 64 61 70 74 65 | on.only.one.port.(network.adapte |
| 157760 | 72 29 20 74 6f 20 61 76 6f 69 64 20 63 6f 6e 66 75 73 69 6e 67 20 74 68 65 20 73 77 69 74 63 68 | r).to.avoid.confusing.the.switch |
| 157780 | 2e 00 60 60 61 63 74 69 76 65 60 60 20 54 68 69 73 20 69 73 20 74 68 65 20 6c 6f 77 2d 6c 65 76 | ..``active``.This.is.the.low-lev |
| 1577a0 | 65 6c 20 66 69 72 6d 77 61 72 65 20 63 6f 6e 74 72 6f 6c 20 6d 6f 64 65 20 62 61 73 65 64 20 6f | el.firmware.control.mode.based.o |
| 1577c0 | 6e 20 74 68 65 20 70 72 6f 66 69 6c 65 20 73 65 74 20 61 6e 64 20 74 68 65 20 73 79 73 74 65 6d | n.the.profile.set.and.the.system |
| 1577e0 | 20 67 6f 76 65 72 6e 6f 72 20 68 61 73 20 6e 6f 20 65 66 66 65 63 74 2e 00 60 60 61 64 61 70 74 | .governor.has.no.effect..``adapt |
| 157800 | 69 76 65 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 60 60 20 2d 20 41 64 61 70 74 69 76 65 20 6c 6f | ive-load-balance``.-.Adaptive.lo |
| 157820 | 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a 20 69 6e 63 6c 75 64 65 73 20 74 72 61 6e 73 6d 69 74 2d | ad.balancing:.includes.transmit- |
| 157840 | 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 20 70 6c 75 73 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 62 | load-balance.plus.receive.load.b |
| 157860 | 61 6c 61 6e 63 69 6e 67 20 66 6f 72 20 49 50 56 34 20 74 72 61 66 66 69 63 2c 20 61 6e 64 20 64 | alancing.for.IPV4.traffic,.and.d |
| 157880 | 6f 65 73 20 6e 6f 74 20 72 65 71 75 69 72 65 20 61 6e 79 20 73 70 65 63 69 61 6c 20 73 77 69 74 | oes.not.require.any.special.swit |
| 1578a0 | 63 68 20 73 75 70 70 6f 72 74 2e 20 54 68 65 20 72 65 63 65 69 76 65 20 6c 6f 61 64 20 62 61 6c | ch.support..The.receive.load.bal |
| 1578c0 | 61 6e 63 69 6e 67 20 69 73 20 61 63 68 69 65 76 65 64 20 62 79 20 41 52 50 20 6e 65 67 6f 74 69 | ancing.is.achieved.by.ARP.negoti |
| 1578e0 | 61 74 69 6f 6e 2e 20 54 68 65 20 62 6f 6e 64 69 6e 67 20 64 72 69 76 65 72 20 69 6e 74 65 72 63 | ation..The.bonding.driver.interc |
| 157900 | 65 70 74 73 20 74 68 65 20 41 52 50 20 52 65 70 6c 69 65 73 20 73 65 6e 74 20 62 79 20 74 68 65 | epts.the.ARP.Replies.sent.by.the |
| 157920 | 20 6c 6f 63 61 6c 20 73 79 73 74 65 6d 20 6f 6e 20 74 68 65 69 72 20 77 61 79 20 6f 75 74 20 61 | .local.system.on.their.way.out.a |
| 157940 | 6e 64 20 6f 76 65 72 77 72 69 74 65 73 20 74 68 65 20 73 6f 75 72 63 65 20 68 61 72 64 77 61 72 | nd.overwrites.the.source.hardwar |
| 157960 | 65 20 61 64 64 72 65 73 73 20 77 69 74 68 20 74 68 65 20 75 6e 69 71 75 65 20 68 61 72 64 77 61 | e.address.with.the.unique.hardwa |
| 157980 | 72 65 20 61 64 64 72 65 73 73 20 6f 66 20 6f 6e 65 20 6f 66 20 74 68 65 20 73 6c 61 76 65 73 20 | re.address.of.one.of.the.slaves. |
| 1579a0 | 69 6e 20 74 68 65 20 62 6f 6e 64 20 73 75 63 68 20 74 68 61 74 20 64 69 66 66 65 72 65 6e 74 20 | in.the.bond.such.that.different. |
| 1579c0 | 70 65 65 72 73 20 75 73 65 20 64 69 66 66 65 72 65 6e 74 20 68 61 72 64 77 61 72 65 20 61 64 64 | peers.use.different.hardware.add |
| 1579e0 | 72 65 73 73 65 73 20 66 6f 72 20 74 68 65 20 73 65 72 76 65 72 2e 00 60 60 61 64 64 72 65 73 73 | resses.for.the.server..``address |
| 157a00 | 60 60 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 73 75 62 6e 65 74 2e 00 60 60 61 67 67 72 65 | ``.IP.address.or.subnet..``aggre |
| 157a20 | 73 73 69 76 65 60 60 20 75 73 65 20 41 67 67 72 65 73 73 69 76 65 20 6d 6f 64 65 20 66 6f 72 20 | ssive``.use.Aggressive.mode.for. |
| 157a40 | 4b 65 79 20 45 78 63 68 61 6e 67 65 73 20 69 6e 20 74 68 65 20 49 4b 45 76 31 20 70 72 6f 74 6f | Key.Exchanges.in.the.IKEv1.proto |
| 157a60 | 63 6f 6c 20 61 67 67 72 65 73 73 69 76 65 20 6d 6f 64 65 20 69 73 20 6d 75 63 68 20 6d 6f 72 65 | col.aggressive.mode.is.much.more |
| 157a80 | 20 69 6e 73 65 63 75 72 65 20 63 6f 6d 70 61 72 65 64 20 74 6f 20 4d 61 69 6e 20 6d 6f 64 65 3b | .insecure.compared.to.Main.mode; |
| 157aa0 | 00 60 60 61 6c 6c 2d 61 76 61 69 6c 61 62 6c 65 60 60 20 61 6c 6c 20 63 68 65 63 6b 69 6e 67 20 | .``all-available``.all.checking. |
| 157ac0 | 74 61 72 67 65 74 20 61 64 64 72 65 73 73 65 73 20 6d 75 73 74 20 62 65 20 61 76 61 69 6c 61 62 | target.addresses.must.be.availab |
| 157ae0 | 6c 65 20 74 6f 20 70 61 73 73 20 74 68 69 73 20 63 68 65 63 6b 00 60 60 61 6d 64 5f 70 73 74 61 | le.to.pass.this.check.``amd_psta |
| 157b00 | 74 65 3d 7b 6d 6f 64 65 7d 60 60 20 53 65 74 73 20 74 68 65 20 70 2d 73 74 61 74 65 20 6d 6f 64 | te={mode}``.Sets.the.p-state.mod |
| 157b20 | 65 00 60 60 61 6e 79 2d 61 76 61 69 6c 61 62 6c 65 60 60 20 61 6e 79 20 6f 66 20 74 68 65 20 63 | e.``any-available``.any.of.the.c |
| 157b40 | 68 65 63 6b 69 6e 67 20 74 61 72 67 65 74 20 61 64 64 72 65 73 73 65 73 20 6d 75 73 74 20 62 65 | hecking.target.addresses.must.be |
| 157b60 | 20 61 76 61 69 6c 61 62 6c 65 20 74 6f 20 70 61 73 73 20 74 68 69 73 20 63 68 65 63 6b 00 60 60 | .available.to.pass.this.check.`` |
| 157b80 | 61 6e 79 60 60 20 55 73 65 20 61 6e 79 20 61 73 20 72 65 63 6f 72 64 20 6e 61 6d 65 20 74 6f 20 | any``.Use.any.as.record.name.to. |
| 157ba0 | 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 72 65 63 6f 72 64 20 61 73 20 61 20 77 69 6c 64 63 61 | configure.the.record.as.a.wildca |
| 157bc0 | 72 64 2e 00 60 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6c 6f 63 61 6c 2d 69 64 2f 72 65 | rd..``authentication.local-id/re |
| 157be0 | 6d 6f 74 65 2d 69 64 60 60 20 2d 20 49 4b 45 20 69 64 65 6e 74 69 66 69 63 61 74 69 6f 6e 20 69 | mote-id``.-.IKE.identification.i |
| 157c00 | 73 20 75 73 65 64 20 66 6f 72 20 76 61 6c 69 64 61 74 69 6f 6e 20 6f 66 20 56 50 4e 20 70 65 65 | s.used.for.validation.of.VPN.pee |
| 157c20 | 72 20 64 65 76 69 63 65 73 20 64 75 72 69 6e 67 20 49 4b 45 20 6e 65 67 6f 74 69 61 74 69 6f 6e | r.devices.during.IKE.negotiation |
| 157c40 | 2e 20 49 66 20 79 6f 75 20 64 6f 20 6e 6f 74 20 63 6f 6e 66 69 67 75 72 65 20 6c 6f 63 61 6c 2f | ..If.you.do.not.configure.local/ |
| 157c60 | 72 65 6d 6f 74 65 2d 69 64 65 6e 74 69 74 79 2c 20 74 68 65 20 64 65 76 69 63 65 20 75 73 65 73 | remote-identity,.the.device.uses |
| 157c80 | 20 74 68 65 20 49 50 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 68 61 74 20 63 | .the.IPv4.or.IPv6.address.that.c |
| 157ca0 | 6f 72 72 65 73 70 6f 6e 64 73 20 74 6f 20 74 68 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 20 70 | orresponds.to.the.local/remote.p |
| 157cc0 | 65 65 72 20 62 79 20 64 65 66 61 75 6c 74 2e 20 49 6e 20 63 65 72 74 61 69 6e 20 6e 65 74 77 6f | eer.by.default..In.certain.netwo |
| 157ce0 | 72 6b 20 73 65 74 75 70 73 20 28 6c 69 6b 65 20 69 70 73 65 63 20 69 6e 74 65 72 66 61 63 65 20 | rk.setups.(like.ipsec.interface. |
| 157d00 | 77 69 74 68 20 64 79 6e 61 6d 69 63 20 61 64 64 72 65 73 73 2c 20 6f 72 20 62 65 68 69 6e 64 20 | with.dynamic.address,.or.behind. |
| 157d20 | 74 68 65 20 4e 41 54 20 29 2c 20 74 68 65 20 49 4b 45 20 49 44 20 72 65 63 65 69 76 65 64 20 66 | the.NAT.),.the.IKE.ID.received.f |
| 157d40 | 72 6f 6d 20 74 68 65 20 70 65 65 72 20 64 6f 65 73 20 6e 6f 74 20 6d 61 74 63 68 20 74 68 65 20 | rom.the.peer.does.not.match.the. |
| 157d60 | 49 4b 45 20 67 61 74 65 77 61 79 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 64 65 | IKE.gateway.configured.on.the.de |
| 157d80 | 76 69 63 65 2e 20 54 68 69 73 20 63 61 6e 20 6c 65 61 64 20 74 6f 20 61 20 50 68 61 73 65 20 31 | vice..This.can.lead.to.a.Phase.1 |
| 157da0 | 20 76 61 6c 69 64 61 74 69 6f 6e 20 66 61 69 6c 75 72 65 2e 20 53 6f 2c 20 6d 61 6b 65 20 73 75 | .validation.failure..So,.make.su |
| 157dc0 | 72 65 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 74 68 65 20 6c 6f 63 61 6c 2f 72 65 6d 6f 74 65 | re.to.configure.the.local/remote |
| 157de0 | 20 69 64 20 65 78 70 6c 69 63 69 74 6c 79 20 61 6e 64 20 65 6e 73 75 72 65 20 74 68 61 74 20 74 | .id.explicitly.and.ensure.that.t |
| 157e00 | 68 65 20 49 4b 45 20 49 44 20 69 73 20 74 68 65 20 73 61 6d 65 20 61 73 20 74 68 65 20 72 65 6d | he.IKE.ID.is.the.same.as.the.rem |
| 157e20 | 6f 74 65 2d 69 64 65 6e 74 69 74 79 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 74 68 65 20 70 | ote-identity.configured.on.the.p |
| 157e40 | 65 65 72 20 64 65 76 69 63 65 2e 00 60 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 2d | eer.device..``authentication``.- |
| 157e60 | 20 63 6f 6e 66 69 67 75 72 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 | .configure.authentication.betwee |
| 157e80 | 6e 20 56 79 4f 53 20 61 6e 64 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 49 66 20 70 72 65 | n.VyOS.and.a.remote.peer..If.pre |
| 157ea0 | 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 20 6d 6f 64 65 20 69 73 20 75 73 65 64 2c 20 74 68 65 | -shared-secret.mode.is.used,.the |
| 157ec0 | 20 73 65 63 72 65 74 20 6b 65 79 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 60 | .secret.key.must.be.defined.in.` |
| 157ee0 | 60 73 65 74 20 76 70 6e 20 69 70 73 65 63 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 60 60 20 | `set.vpn.ipsec.authentication``. |
| 157f00 | 61 6e 64 20 73 75 62 6f 70 74 69 6f 6e 73 3a 00 60 60 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e | and.suboptions:.``authentication |
| 157f20 | 60 60 20 2d 20 63 6f 6e 66 69 67 75 72 65 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 | ``.-.configure.authentication.be |
| 157f40 | 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 61 20 72 65 6d 6f 74 65 20 70 65 65 72 2e 20 53 75 | tween.VyOS.and.a.remote.peer..Su |
| 157f60 | 62 6f 70 74 69 6f 6e 73 3a 00 60 60 61 78 60 60 20 2d 20 38 30 32 2e 31 31 61 78 20 2d 20 65 78 | boptions:.``ax``.-.802.11ax.-.ex |
| 157f80 | 63 65 65 64 73 20 31 47 42 69 74 2f 73 65 63 00 60 60 62 60 60 20 2d 20 38 30 32 2e 31 31 62 20 | ceeds.1GBit/sec.``b``.-.802.11b. |
| 157fa0 | 2d 20 31 31 20 4d 62 69 74 73 2f 73 65 63 00 60 60 62 61 62 65 6c 60 60 20 2d 20 42 61 62 65 6c | -.11.Mbits/sec.``babel``.-.Babel |
| 157fc0 | 20 72 6f 75 74 69 6e 67 20 70 72 6f 74 6f 63 6f 6c 20 28 42 61 62 65 6c 29 00 60 60 62 65 67 69 | .routing.protocol.(Babel).``begi |
| 157fe0 | 6e 60 60 20 4d 61 74 63 68 65 73 20 74 68 65 20 62 65 67 69 6e 6e 69 6e 67 20 6f 66 20 74 68 65 | n``.Matches.the.beginning.of.the |
| 158000 | 20 55 52 4c 20 70 61 74 68 00 60 60 62 67 70 60 60 20 2d 20 42 6f 72 64 65 72 20 47 61 74 65 77 | .URL.path.``bgp``.-.Border.Gatew |
| 158020 | 61 79 20 50 72 6f 74 6f 63 6f 6c 20 28 42 47 50 29 00 60 60 62 69 6e 64 60 60 20 2d 20 73 65 6c | ay.Protocol.(BGP).``bind``.-.sel |
| 158040 | 65 63 74 20 61 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 74 6f 20 62 69 6e 64 20 74 6f 20 74 | ect.a.VTI.interface.to.bind.to.t |
| 158060 | 68 69 73 20 70 65 65 72 3b 00 60 60 62 6c 61 63 6b 68 6f 6c 65 60 60 20 2d 20 20 20 20 20 20 20 | his.peer;.``blackhole``.-....... |
| 158080 | 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 | .............Well-known.communit |
| 1580a0 | 69 65 73 20 76 61 6c 75 65 20 42 4c 41 43 4b 48 4f 4c 45 20 30 78 46 46 46 46 30 32 39 41 00 60 | ies.value.BLACKHOLE.0xFFFF029A.` |
| 1580c0 | 60 62 72 6f 61 64 63 61 73 74 60 60 20 2d 20 42 72 6f 61 64 63 61 73 74 20 70 6f 6c 69 63 79 3a | `broadcast``.-.Broadcast.policy: |
| 1580e0 | 20 74 72 61 6e 73 6d 69 74 73 20 65 76 65 72 79 74 68 69 6e 67 20 6f 6e 20 61 6c 6c 20 73 6c 61 | .transmits.everything.on.all.sla |
| 158100 | 76 65 20 69 6e 74 65 72 66 61 63 65 73 2e 00 60 60 62 75 72 73 74 60 60 3a 20 4e 75 6d 62 65 72 | ve.interfaces..``burst``:.Number |
| 158120 | 20 6f 66 20 70 61 63 6b 65 74 73 20 61 6c 6c 6f 77 65 64 20 74 6f 20 6f 76 65 72 73 68 6f 6f 74 | .of.packets.allowed.to.overshoot |
| 158140 | 20 74 68 65 20 6c 69 6d 69 74 20 77 69 74 68 69 6e 20 60 60 70 65 72 69 6f 64 60 60 2e 20 44 65 | .the.limit.within.``period``..De |
| 158160 | 66 61 75 6c 74 20 35 2e 00 60 60 63 61 2d 63 65 72 74 2d 66 69 6c 65 60 60 20 2d 20 43 41 20 63 | fault.5..``ca-cert-file``.-.CA.c |
| 158180 | 65 72 74 69 66 69 63 61 74 65 20 66 69 6c 65 2e 20 55 73 69 6e 67 20 66 6f 72 20 61 75 74 68 65 | ertificate.file..Using.for.authe |
| 1581a0 | 6e 74 69 63 61 74 69 6e 67 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 63 61 2d 63 65 72 74 | nticating.remote.peer;.``ca-cert |
| 1581c0 | 69 66 69 63 61 74 65 60 60 20 2d 20 43 41 20 63 65 72 74 69 66 69 63 61 74 65 20 69 6e 20 50 4b | ificate``.-.CA.certificate.in.PK |
| 1581e0 | 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 20 55 73 69 6e 67 20 66 6f 72 20 61 75 74 68 65 | I.configuration..Using.for.authe |
| 158200 | 6e 74 69 63 61 74 69 6e 67 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 63 64 70 60 60 20 2d | nticating.remote.peer;.``cdp``.- |
| 158220 | 20 4c 69 73 74 65 6e 20 66 6f 72 20 43 44 50 20 66 6f 72 20 43 69 73 63 6f 20 72 6f 75 74 65 72 | .Listen.for.CDP.for.Cisco.router |
| 158240 | 73 2f 73 77 69 74 63 68 65 73 00 60 60 63 65 72 74 2d 66 69 6c 65 60 60 20 2d 20 63 65 72 74 69 | s/switches.``cert-file``.-.certi |
| 158260 | 66 69 63 61 74 65 20 66 69 6c 65 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 | ficate.file,.which.will.be.used. |
| 158280 | 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 | for.authenticating.local.router. |
| 1582a0 | 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 63 65 72 74 69 66 69 63 61 74 65 60 60 20 | on.remote.peer;.``certificate``. |
| 1582c0 | 2d 20 63 65 72 74 69 66 69 63 61 74 65 20 66 69 6c 65 20 69 6e 20 50 4b 49 20 63 6f 6e 66 69 67 | -.certificate.file.in.PKI.config |
| 1582e0 | 75 72 61 74 69 6f 6e 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 | uration,.which.will.be.used.for. |
| 158300 | 61 75 74 68 65 6e 74 69 63 61 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 6f 6e 20 72 | authenticating.local.router.on.r |
| 158320 | 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 63 6c 65 61 72 60 60 20 63 6c 6f 73 65 73 20 74 68 65 | emote.peer;.``clear``.closes.the |
| 158340 | 20 43 48 49 4c 44 5f 53 41 20 61 6e 64 20 64 6f 65 73 20 6e 6f 74 20 74 61 6b 65 20 66 75 72 74 | .CHILD_SA.and.does.not.take.furt |
| 158360 | 68 65 72 20 61 63 74 69 6f 6e 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 63 6c 65 61 72 60 60 20 | her.action.(default);.``clear``. |
| 158380 | 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 63 6c 65 61 72 3b 00 60 60 63 6c 6f 73 65 2d 61 63 74 | set.action.to.clear;.``close-act |
| 1583a0 | 69 6f 6e 20 3d 20 6e 6f 6e 65 20 7c 20 63 6c 65 61 72 20 7c 20 68 6f 6c 64 20 7c 20 72 65 73 74 | ion.=.none.|.clear.|.hold.|.rest |
| 1583c0 | 61 72 74 60 60 20 2d 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 | art``.-.defines.the.action.to.ta |
| 1583e0 | 6b 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 65 63 74 65 64 | ke.if.the.remote.peer.unexpected |
| 158400 | 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 48 49 4c 44 5f 53 41 20 28 73 65 65 20 61 62 6f 76 65 20 | ly.closes.a.CHILD_SA.(see.above. |
| 158420 | 66 6f 72 20 6d 65 61 6e 69 6e 67 20 6f 66 20 76 61 6c 75 65 73 29 2e 20 41 20 63 6c 6f 73 65 61 | for.meaning.of.values)..A.closea |
| 158440 | 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e 6f 74 20 62 65 20 75 73 65 64 20 69 66 20 74 68 65 20 | ction.should.not.be.used.if.the. |
| 158460 | 70 65 65 72 20 75 73 65 73 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 75 6e | peer.uses.reauthentication.or.un |
| 158480 | 69 71 75 65 69 64 73 2e 00 60 60 63 6c 6f 73 65 2d 61 63 74 69 6f 6e 20 3d 20 6e 6f 6e 65 20 7c | iqueids..``close-action.=.none.| |
| 1584a0 | 20 63 6c 65 61 72 20 7c 20 74 72 61 70 20 7c 20 73 74 61 72 74 60 60 20 2d 20 64 65 66 69 6e 65 | .clear.|.trap.|.start``.-.define |
| 1584c0 | 73 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 74 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d 6f | s.the.action.to.take.if.the.remo |
| 1584e0 | 74 65 20 70 65 65 72 20 75 6e 65 78 70 65 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 48 | te.peer.unexpectedly.closes.a.CH |
| 158500 | 49 4c 44 5f 53 41 20 28 73 65 65 20 61 62 6f 76 65 20 66 6f 72 20 6d 65 61 6e 69 6e 67 20 6f 66 | ILD_SA.(see.above.for.meaning.of |
| 158520 | 20 76 61 6c 75 65 73 29 2e 20 41 20 63 6c 6f 73 65 61 63 74 69 6f 6e 20 73 68 6f 75 6c 64 20 6e | .values)..A.closeaction.should.n |
| 158540 | 6f 74 20 62 65 20 75 73 65 64 20 69 66 20 74 68 65 20 70 65 65 72 20 75 73 65 73 20 72 65 61 75 | ot.be.used.if.the.peer.uses.reau |
| 158560 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6f 72 20 75 6e 69 71 75 65 69 64 73 2e 00 60 60 63 6c 6f | thentication.or.uniqueids..``clo |
| 158580 | 73 65 2d 61 63 74 69 6f 6e 60 60 20 64 65 66 69 6e 65 73 20 74 68 65 20 61 63 74 69 6f 6e 20 74 | se-action``.defines.the.action.t |
| 1585a0 | 6f 20 74 61 6b 65 20 69 66 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 75 6e 65 78 70 65 | o.take.if.the.remote.peer.unexpe |
| 1585c0 | 63 74 65 64 6c 79 20 63 6c 6f 73 65 73 20 61 20 43 48 49 4c 44 5f 53 41 3a 00 60 60 63 6f 6d 70 | ctedly.closes.a.CHILD_SA:.``comp |
| 1585e0 | 72 65 73 73 69 6f 6e 60 60 20 20 45 6e 61 62 6c 65 73 20 74 68 65 20 20 49 50 43 6f 6d 70 28 49 | ression``..Enables.the..IPComp(I |
| 158600 | 50 20 50 61 79 6c 6f 61 64 20 43 6f 6d 70 72 65 73 73 69 6f 6e 29 20 70 72 6f 74 6f 63 6f 6c 20 | P.Payload.Compression).protocol. |
| 158620 | 77 68 69 63 68 20 61 6c 6c 6f 77 73 20 63 6f 6d 70 72 65 73 73 69 6e 67 20 74 68 65 20 63 6f 6e | which.allows.compressing.the.con |
| 158640 | 74 65 6e 74 20 6f 66 20 49 50 20 70 61 63 6b 65 74 73 2e 00 60 60 63 6f 6d 70 72 65 73 73 69 6f | tent.of.IP.packets..``compressio |
| 158660 | 6e 60 60 20 77 68 65 74 68 65 72 20 49 50 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 6f | n``.whether.IPComp.compression.o |
| 158680 | 66 20 63 6f 6e 74 65 6e 74 20 69 73 20 70 72 6f 70 6f 73 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e | f.content.is.proposed.on.the.con |
| 1586a0 | 6e 65 63 74 69 6f 6e 3a 00 60 60 63 6f 6e 6e 65 63 74 65 64 60 60 20 2d 20 43 6f 6e 6e 65 63 74 | nection:.``connected``.-.Connect |
| 1586c0 | 65 64 20 72 6f 75 74 65 73 20 28 64 69 72 65 63 74 6c 79 20 61 74 74 61 63 68 65 64 20 73 75 62 | ed.routes.(directly.attached.sub |
| 1586e0 | 6e 65 74 20 6f 72 20 68 6f 73 74 29 00 60 60 63 6f 6e 6e 65 63 74 69 6f 6e 2d 74 79 70 65 60 60 | net.or.host).``connection-type`` |
| 158700 | 20 2d 20 68 6f 77 20 74 6f 20 68 61 6e 64 6c 65 20 74 68 69 73 20 63 6f 6e 6e 65 63 74 69 6f 6e | .-.how.to.handle.this.connection |
| 158720 | 20 70 72 6f 63 65 73 73 2e 20 50 6f 73 73 69 62 6c 65 20 76 61 72 69 61 6e 74 73 3a 00 60 60 63 | .process..Possible.variants:.``c |
| 158740 | 6f 6e 74 69 6e 75 65 60 60 3a 20 63 6f 6e 74 69 6e 75 65 20 70 61 72 73 69 6e 67 20 6e 65 78 74 | ontinue``:.continue.parsing.next |
| 158760 | 20 72 75 6c 65 2e 00 60 60 63 72 6c 2d 66 69 6c 65 60 60 20 2d 20 66 69 6c 65 20 77 69 74 68 20 | .rule..``crl-file``.-.file.with. |
| 158780 | 74 68 65 20 43 65 72 74 69 66 69 63 61 74 65 20 52 65 76 6f 63 61 74 69 6f 6e 20 4c 69 73 74 2e | the.Certificate.Revocation.List. |
| 1587a0 | 20 55 73 69 6e 67 20 74 6f 20 63 68 65 63 6b 20 69 66 20 61 20 63 65 72 74 69 66 69 63 61 74 65 | .Using.to.check.if.a.certificate |
| 1587c0 | 20 66 6f 72 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 69 73 20 76 61 6c 69 64 20 6f 72 | .for.the.remote.peer.is.valid.or |
| 1587e0 | 20 72 65 76 6f 6b 65 64 3b 00 60 60 64 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 | .revoked;.``d``.-.Execution.inte |
| 158800 | 72 76 61 6c 20 69 6e 20 64 61 79 73 00 60 60 64 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 | rval.in.days.``dead-peer-detecti |
| 158820 | 6f 6e 20 61 63 74 69 6f 6e 20 3d 20 63 6c 65 61 72 20 7c 20 68 6f 6c 64 20 7c 20 72 65 73 74 61 | on.action.=.clear.|.hold.|.resta |
| 158840 | 72 74 60 60 20 2d 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 6d 65 | rt``.-.R_U_THERE.notification.me |
| 158860 | 73 73 61 67 65 73 28 49 4b 45 76 31 29 20 6f 72 20 65 6d 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 | ssages(IKEv1).or.empty.INFORMATI |
| 158880 | 4f 4e 41 4c 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 32 29 20 61 72 65 20 70 65 72 69 6f 64 | ONAL.messages.(IKEv2).are.period |
| 1588a0 | 69 63 61 6c 6c 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 68 65 63 6b 20 74 68 | ically.sent.in.order.to.check.th |
| 1588c0 | 65 20 6c 69 76 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 20 49 50 73 65 63 20 70 65 65 72 2e 20 | e.liveliness.of.the.IPsec.peer.. |
| 1588e0 | 54 68 65 20 76 61 6c 75 65 73 20 63 6c 65 61 72 2c 20 68 6f 6c 64 2c 20 61 6e 64 20 72 65 73 74 | The.values.clear,.hold,.and.rest |
| 158900 | 61 72 74 20 61 6c 6c 20 61 63 74 69 76 61 74 65 20 44 50 44 20 61 6e 64 20 64 65 74 65 72 6d 69 | art.all.activate.DPD.and.determi |
| 158920 | 6e 65 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 70 65 72 66 6f 72 6d 20 6f 6e 20 61 20 74 69 | ne.the.action.to.perform.on.a.ti |
| 158940 | 6d 65 6f 75 74 2e 20 57 69 74 68 20 60 60 63 6c 65 61 72 60 60 20 74 68 65 20 63 6f 6e 6e 65 63 | meout..With.``clear``.the.connec |
| 158960 | 74 69 6f 6e 20 69 73 20 63 6c 6f 73 65 64 20 77 69 74 68 20 6e 6f 20 66 75 72 74 68 65 72 20 61 | tion.is.closed.with.no.further.a |
| 158980 | 63 74 69 6f 6e 73 20 74 61 6b 65 6e 2e 20 60 60 68 6f 6c 64 60 60 20 69 6e 73 74 61 6c 6c 73 20 | ctions.taken..``hold``.installs. |
| 1589a0 | 61 20 74 72 61 70 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 77 69 6c 6c 20 63 61 74 63 68 20 | a.trap.policy,.which.will.catch. |
| 1589c0 | 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 72 65 | matching.traffic.and.tries.to.re |
| 1589e0 | 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 6f 6e 20 64 65 6d | -negotiate.the.connection.on.dem |
| 158a00 | 61 6e 64 2e 20 60 60 72 65 73 74 61 72 74 60 60 20 77 69 6c 6c 20 69 6d 6d 65 64 69 61 74 65 6c | and..``restart``.will.immediatel |
| 158a20 | 79 20 74 72 69 67 67 65 72 20 61 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 72 65 2d 6e 65 67 6f 74 | y.trigger.an.attempt.to.re-negot |
| 158a40 | 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 60 60 64 65 61 64 2d 70 65 65 72 | iate.the.connection..``dead-peer |
| 158a60 | 2d 64 65 74 65 63 74 69 6f 6e 20 61 63 74 69 6f 6e 20 3d 20 63 6c 65 61 72 20 7c 20 74 72 61 70 | -detection.action.=.clear.|.trap |
| 158a80 | 20 7c 20 72 65 73 74 61 72 74 60 60 20 2d 20 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 69 66 69 63 | .|.restart``.-.R_U_THERE.notific |
| 158aa0 | 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 28 49 4b 45 76 31 29 20 6f 72 20 65 6d 70 74 79 20 49 | ation.messages(IKEv1).or.empty.I |
| 158ac0 | 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 6d 65 73 73 61 67 65 73 20 28 49 4b 45 76 32 29 20 61 72 | NFORMATIONAL.messages.(IKEv2).ar |
| 158ae0 | 65 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 | e.periodically.sent.in.order.to. |
| 158b00 | 63 68 65 63 6b 20 74 68 65 20 6c 69 76 65 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 20 49 50 73 65 | check.the.liveliness.of.the.IPse |
| 158b20 | 63 20 70 65 65 72 2e 20 54 68 65 20 76 61 6c 75 65 73 20 63 6c 65 61 72 2c 20 74 72 61 70 2c 20 | c.peer..The.values.clear,.trap,. |
| 158b40 | 61 6e 64 20 72 65 73 74 61 72 74 20 61 6c 6c 20 61 63 74 69 76 61 74 65 20 44 50 44 20 61 6e 64 | and.restart.all.activate.DPD.and |
| 158b60 | 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 20 61 63 74 69 6f 6e 20 74 6f 20 70 65 72 66 6f 72 6d | .determine.the.action.to.perform |
| 158b80 | 20 6f 6e 20 61 20 74 69 6d 65 6f 75 74 2e 20 57 69 74 68 20 60 60 63 6c 65 61 72 60 60 20 74 68 | .on.a.timeout..With.``clear``.th |
| 158ba0 | 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 69 73 20 63 6c 6f 73 65 64 20 77 69 74 68 20 6e 6f 20 66 | e.connection.is.closed.with.no.f |
| 158bc0 | 75 72 74 68 65 72 20 61 63 74 69 6f 6e 73 20 74 61 6b 65 6e 2e 20 60 60 74 72 61 70 60 60 20 69 | urther.actions.taken..``trap``.i |
| 158be0 | 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 2c 20 77 68 69 63 68 20 77 69 6c | nstalls.a.trap.policy,.which.wil |
| 158c00 | 6c 20 63 61 74 63 68 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 63 20 61 6e 64 20 74 72 69 | l.catch.matching.traffic.and.tri |
| 158c20 | 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f | es.to.re-negotiate.the.connectio |
| 158c40 | 6e 20 6f 6e 20 64 65 6d 61 6e 64 2e 20 60 60 72 65 73 74 61 72 74 60 60 20 77 69 6c 6c 20 69 6d | n.on.demand..``restart``.will.im |
| 158c60 | 6d 65 64 69 61 74 65 6c 79 20 74 72 69 67 67 65 72 20 61 6e 20 61 74 74 65 6d 70 74 20 74 6f 20 | mediately.trigger.an.attempt.to. |
| 158c80 | 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 00 60 60 64 | re-negotiate.the.connection..``d |
| 158ca0 | 65 61 64 2d 70 65 65 72 2d 64 65 74 65 63 74 69 6f 6e 60 60 20 63 6f 6e 74 72 6f 6c 73 20 74 68 | ead-peer-detection``.controls.th |
| 158cc0 | 65 20 75 73 65 20 6f 66 20 74 68 65 20 44 65 61 64 20 50 65 65 72 20 44 65 74 65 63 74 69 6f 6e | e.use.of.the.Dead.Peer.Detection |
| 158ce0 | 20 70 72 6f 74 6f 63 6f 6c 20 28 44 50 44 2c 20 52 46 43 20 33 37 30 36 29 20 77 68 65 72 65 20 | .protocol.(DPD,.RFC.3706).where. |
| 158d00 | 52 5f 55 5f 54 48 45 52 45 20 6e 6f 74 69 66 69 63 61 74 69 6f 6e 20 6d 65 73 73 61 67 65 73 20 | R_U_THERE.notification.messages. |
| 158d20 | 28 49 4b 45 76 31 29 20 6f 72 20 65 6d 70 74 79 20 49 4e 46 4f 52 4d 41 54 49 4f 4e 41 4c 20 6d | (IKEv1).or.empty.INFORMATIONAL.m |
| 158d40 | 65 73 73 61 67 65 73 20 28 49 4b 45 76 32 29 20 61 72 65 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 | essages.(IKEv2).are.periodically |
| 158d60 | 20 73 65 6e 74 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 63 68 65 63 6b 20 74 68 65 20 6c 69 76 65 | .sent.in.order.to.check.the.live |
| 158d80 | 6c 69 6e 65 73 73 20 6f 66 20 74 68 65 20 49 50 73 65 63 20 70 65 65 72 3a 00 60 60 64 65 66 61 | liness.of.the.IPsec.peer:.``defa |
| 158da0 | 75 6c 74 2d 65 73 70 2d 67 72 6f 75 70 60 60 20 2d 20 45 53 50 20 67 72 6f 75 70 20 74 6f 20 75 | ult-esp-group``.-.ESP.group.to.u |
| 158dc0 | 73 65 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 20 74 72 61 66 66 69 63 20 65 6e 63 72 79 70 | se.by.default.for.traffic.encryp |
| 158de0 | 74 69 6f 6e 2e 20 4d 69 67 68 74 20 62 65 20 6f 76 65 72 77 72 69 74 74 65 6e 20 62 79 20 69 6e | tion..Might.be.overwritten.by.in |
| 158e00 | 64 69 76 69 64 75 61 6c 20 73 65 74 74 69 6e 67 73 20 66 6f 72 20 74 75 6e 6e 65 6c 20 6f 72 20 | dividual.settings.for.tunnel.or. |
| 158e20 | 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 62 69 6e 64 69 6e 67 3b 00 60 60 64 65 73 63 72 69 70 | VTI.interface.binding;.``descrip |
| 158e40 | 74 69 6f 6e 60 60 20 2d 20 64 65 73 63 72 69 70 74 69 6f 6e 20 66 6f 72 20 74 68 69 73 20 70 65 | tion``.-.description.for.this.pe |
| 158e60 | 65 72 3b 00 60 60 64 68 2d 67 72 6f 75 70 60 60 20 64 68 2d 67 72 6f 75 70 3b 00 60 60 64 68 63 | er;.``dh-group``.dh-group;.``dhc |
| 158e80 | 70 2d 69 6e 74 65 72 66 61 63 65 60 60 20 2d 20 49 44 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 | p-interface``.-.ID.for.authentic |
| 158ea0 | 61 74 69 6f 6e 20 67 65 6e 65 72 61 74 65 64 20 66 72 6f 6d 20 44 48 43 50 20 61 64 64 72 65 73 | ation.generated.from.DHCP.addres |
| 158ec0 | 73 20 64 79 6e 61 6d 69 63 61 6c 6c 79 3b 00 60 60 64 68 63 70 2d 69 6e 74 65 72 66 61 63 65 60 | s.dynamically;.``dhcp-interface` |
| 158ee0 | 60 20 2d 20 75 73 65 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 2c 20 72 65 63 65 69 76 65 64 20 | `.-.use.an.IP.address,.received. |
| 158f00 | 66 72 6f 6d 20 44 48 43 50 20 66 6f 72 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 | from.DHCP.for.IPSec.connection.w |
| 158f20 | 69 74 68 20 74 68 69 73 20 70 65 65 72 2c 20 69 6e 73 74 65 61 64 20 6f 66 20 60 60 6c 6f 63 61 | ith.this.peer,.instead.of.``loca |
| 158f40 | 6c 2d 61 64 64 72 65 73 73 60 60 3b 00 60 60 64 69 73 61 62 6c 65 2d 6d 6f 62 69 6b 65 60 60 20 | l-address``;.``disable-mobike``. |
| 158f60 | 64 69 73 61 62 6c 65 73 20 4d 4f 42 49 4b 45 20 53 75 70 70 6f 72 74 2e 20 4d 4f 42 49 4b 45 20 | disables.MOBIKE.Support..MOBIKE. |
| 158f80 | 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 20 49 4b 45 76 32 20 61 6e 64 20 | is.only.available.for.IKEv2.and. |
| 158fa0 | 65 6e 61 62 6c 65 64 20 62 79 20 64 65 66 61 75 6c 74 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 65 | enabled.by.default..``disable-re |
| 158fc0 | 6b 65 79 60 60 20 44 6f 20 6e 6f 74 20 6c 6f 63 61 6c 6c 79 20 69 6e 69 74 69 61 74 65 20 61 20 | key``.Do.not.locally.initiate.a. |
| 158fe0 | 72 65 2d 6b 65 79 20 6f 66 20 74 68 65 20 53 41 2c 20 72 65 6d 6f 74 65 20 70 65 65 72 20 6d 75 | re-key.of.the.SA,.remote.peer.mu |
| 159000 | 73 74 20 72 65 2d 6b 65 79 20 62 65 66 6f 72 65 20 65 78 70 69 72 61 74 69 6f 6e 2e 00 60 60 64 | st.re-key.before.expiration..``d |
| 159020 | 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 2d 20 54 68 69 | isable-route-autoinstall``.-.Thi |
| 159040 | 73 20 6f 70 74 69 6f 6e 20 77 68 65 6e 20 63 6f 6e 66 69 67 75 72 65 64 20 64 69 73 61 62 6c 65 | s.option.when.configured.disable |
| 159060 | 73 20 74 68 65 20 72 6f 75 74 65 73 20 69 6e 73 74 61 6c 6c 65 64 20 69 6e 20 74 68 65 20 64 65 | s.the.routes.installed.in.the.de |
| 159080 | 66 61 75 6c 74 20 74 61 62 6c 65 20 32 32 30 20 66 6f 72 20 73 69 74 65 2d 74 6f 2d 73 69 74 65 | fault.table.220.for.site-to-site |
| 1590a0 | 20 69 70 73 65 63 2e 20 49 74 20 69 73 20 6d 6f 73 74 6c 79 20 75 73 65 64 20 77 69 74 68 20 56 | .ipsec..It.is.mostly.used.with.V |
| 1590c0 | 54 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 60 60 64 69 73 61 62 6c 65 2d 72 6f 75 74 | TI.configuration..``disable-rout |
| 1590e0 | 65 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 44 6f 20 6e 6f 74 20 61 75 74 6f 6d 61 74 69 63 | e-autoinstall``.Do.not.automatic |
| 159100 | 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 20 72 6f 75 74 65 73 20 74 6f 20 72 65 6d 6f 74 65 00 60 60 | ally.install.routes.to.remote.`` |
| 159120 | 64 69 73 61 62 6c 65 2d 72 6f 75 74 65 2d 61 75 74 6f 69 6e 73 74 61 6c 6c 60 60 20 44 6f 20 6e | disable-route-autoinstall``.Do.n |
| 159140 | 6f 74 20 61 75 74 6f 6d 61 74 69 63 61 6c 6c 79 20 69 6e 73 74 61 6c 6c 20 72 6f 75 74 65 73 20 | ot.automatically.install.routes. |
| 159160 | 74 6f 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 73 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 | to.remote.networks;.``disable``. |
| 159180 | 2d 20 64 69 73 61 62 6c 65 20 74 68 69 73 20 74 75 6e 6e 65 6c 3b 00 60 60 64 69 73 61 62 6c 65 | -.disable.this.tunnel;.``disable |
| 1591a0 | 60 60 20 44 69 73 61 62 6c 65 20 50 46 53 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 64 69 73 61 | ``.Disable.PFS;.``disable``.disa |
| 1591c0 | 62 6c 65 20 49 50 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 6f 6e 20 28 64 65 66 61 75 6c 74 29 | ble.IPComp.compression.(default) |
| 1591e0 | 3b 00 60 60 64 69 73 61 62 6c 65 60 60 20 64 69 73 61 62 6c 65 20 4d 4f 42 49 4b 45 3b 00 60 60 | ;.``disable``.disable.MOBIKE;.`` |
| 159200 | 64 72 6f 70 60 60 3a 20 64 72 6f 70 20 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 65 63 64 73 61 | drop``:.drop.the.packet..``ecdsa |
| 159220 | 2d 73 68 61 32 2d 6e 69 73 74 70 32 35 36 60 60 00 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 | -sha2-nistp256``.``ecdsa-sha2-ni |
| 159240 | 73 74 70 33 38 34 60 60 00 60 60 65 63 64 73 61 2d 73 68 61 32 2d 6e 69 73 74 70 35 32 31 60 60 | stp384``.``ecdsa-sha2-nistp521`` |
| 159260 | 00 60 60 65 64 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 45 44 50 20 66 6f 72 20 45 78 | .``edp``.-.Listen.for.EDP.for.Ex |
| 159280 | 74 72 65 6d 65 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 65 6e 61 62 6c 65 60 | treme.routers/switches.``enable` |
| 1592a0 | 60 20 49 6e 68 65 72 69 74 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 | `.Inherit.Diffie-Hellman.group.f |
| 1592c0 | 72 6f 6d 20 49 4b 45 20 67 72 6f 75 70 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 65 6e 61 62 6c | rom.IKE.group.(default);.``enabl |
| 1592e0 | 65 60 60 20 65 6e 61 62 6c 65 20 49 50 43 6f 6d 70 20 63 6f 6d 70 72 65 73 73 69 6f 6e 3b 00 60 | e``.enable.IPComp.compression;.` |
| 159300 | 60 65 6e 61 62 6c 65 60 60 20 65 6e 61 62 6c 65 20 4d 4f 42 49 4b 45 20 28 64 65 66 61 75 6c 74 | `enable``.enable.MOBIKE.(default |
| 159320 | 20 66 6f 72 20 49 4b 45 76 32 29 3b 00 60 60 65 6e 63 72 79 70 74 69 6f 6e 60 60 20 65 6e 63 72 | .for.IKEv2);.``encryption``.encr |
| 159340 | 79 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 20 28 64 65 66 61 75 6c 74 20 31 32 38 20 62 69 | yption.algorithm.(default.128.bi |
| 159360 | 74 20 41 45 53 2d 43 42 43 29 3b 00 60 60 65 6e 63 72 79 70 74 69 6f 6e 60 60 20 65 6e 63 72 79 | t.AES-CBC);.``encryption``.encry |
| 159380 | 70 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 3b 00 60 60 65 6e 64 60 60 20 4d 61 74 63 68 65 73 | ption.algorithm;.``end``.Matches |
| 1593a0 | 20 74 68 65 20 65 6e 64 20 6f 66 20 74 68 65 20 55 52 4c 20 70 61 74 68 2e 00 60 60 65 73 70 2d | .the.end.of.the.URL.path..``esp- |
| 1593c0 | 67 72 6f 75 70 60 60 20 2d 20 64 65 66 69 6e 65 20 45 53 50 20 67 72 6f 75 70 20 66 6f 72 20 65 | group``.-.define.ESP.group.for.e |
| 1593e0 | 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2c 20 64 65 66 69 6e 65 64 20 62 79 20 74 68 69 73 20 | ncrypt.traffic,.defined.by.this. |
| 159400 | 74 75 6e 6e 65 6c 3b 00 60 60 65 73 70 2d 67 72 6f 75 70 60 60 20 2d 20 64 65 66 69 6e 65 20 45 | tunnel;.``esp-group``.-.define.E |
| 159420 | 53 50 20 67 72 6f 75 70 20 66 6f 72 20 65 6e 63 72 79 70 74 20 74 72 61 66 66 69 63 2c 20 70 61 | SP.group.for.encrypt.traffic,.pa |
| 159440 | 73 73 65 64 20 74 68 69 73 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 2e 00 60 60 65 78 61 63 74 | ssed.this.VTI.interface..``exact |
| 159460 | 60 60 20 52 65 71 75 69 72 65 73 20 61 6e 20 65 78 61 63 74 6c 79 20 6d 61 74 63 68 20 6f 66 20 | ``.Requires.an.exactly.match.of. |
| 159480 | 74 68 65 20 55 52 4c 20 70 61 74 68 00 60 60 66 64 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f | the.URL.path.``fdp``.-.Listen.fo |
| 1594a0 | 72 20 46 44 50 20 66 6f 72 20 46 6f 75 6e 64 72 79 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 | r.FDP.for.Foundry.routers/switch |
| 1594c0 | 65 73 00 60 60 66 69 6c 65 60 60 20 2d 20 70 61 74 68 20 74 6f 20 74 68 65 20 6b 65 79 20 66 69 | es.``file``.-.path.to.the.key.fi |
| 1594e0 | 6c 65 3b 00 60 60 66 69 6c 65 6e 61 6d 65 60 60 20 20 4c 6f 67 20 66 69 6c 65 20 28 64 65 66 61 | le;.``filename``..Log.file.(defa |
| 159500 | 75 6c 74 3a 20 65 76 65 2e 6a 73 6f 6e 29 2e 00 60 60 66 69 6c 65 74 79 70 65 60 60 20 20 45 56 | ult:.eve.json)..``filetype``..EV |
| 159520 | 45 20 6c 6f 67 67 69 6e 67 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 28 64 65 66 61 75 6c 74 3a 20 | E.logging.destination.(default:. |
| 159540 | 72 65 67 75 6c 61 72 29 2e 00 60 60 66 6c 65 78 76 70 6e 60 60 20 41 6c 6c 6f 77 20 46 6c 65 78 | regular)..``flexvpn``.Allow.Flex |
| 159560 | 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c | VPN.vendor.ID.payload.(IKEv2.onl |
| 159580 | 79 29 2e 20 53 65 6e 64 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f | y)..Send.the.Cisco.FlexVPN.vendo |
| 1595a0 | 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 | r.ID.payload.(IKEv2.only),.which |
| 1595c0 | 20 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 | .is.required.in.order.to.make.Ci |
| 1595e0 | 73 63 6f 20 62 72 61 6e 64 20 64 65 76 69 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 | sco.brand.devices.allow.negotiat |
| 159600 | 69 6e 67 20 61 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 | ing.a.local.traffic.selector.(fr |
| 159620 | 6f 6d 20 73 74 72 6f 6e 67 53 77 61 6e 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 | om.strongSwan's.point.of.view).t |
| 159640 | 68 61 74 20 69 73 20 6e 6f 74 20 74 68 65 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 | hat.is.not.the.assigned.virtual. |
| 159660 | 49 50 20 61 64 64 72 65 73 73 20 69 66 20 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 | IP.address.if.such.an.address.is |
| 159680 | 20 72 65 71 75 65 73 74 65 64 20 62 79 20 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e | .requested.by.strongSwan..Sendin |
| 1596a0 | 67 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 | g.the.Cisco.FlexVPN.vendor.ID.pr |
| 1596c0 | 65 76 65 6e 74 73 20 74 68 65 20 70 65 65 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 | events.the.peer.from.narrowing.t |
| 1596e0 | 68 65 20 69 6e 69 74 69 61 74 6f 72 27 73 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c | he.initiator's.local.traffic.sel |
| 159700 | 65 63 74 6f 72 20 61 6e 64 20 61 6c 6c 6f 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f | ector.and.allows.it.to.e.g..nego |
| 159720 | 74 69 61 74 65 20 61 20 54 53 20 6f 66 20 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 | tiate.a.TS.of.0.0.0.0/0.==.0.0.0 |
| 159740 | 2e 30 2f 30 20 69 6e 73 74 65 61 64 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 | .0/0.instead..This.has.been.test |
| 159760 | 65 64 20 77 69 74 68 20 61 20 22 74 75 6e 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 | ed.with.a."tunnel.mode.ipsec.ipv |
| 159780 | 34 22 20 43 69 73 63 6f 20 74 65 6d 70 6c 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 | 4".Cisco.template.but.should.als |
| 1597a0 | 6f 20 77 6f 72 6b 20 66 6f 72 20 47 52 45 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 60 60 | o.work.for.GRE.encapsulation;.`` |
| 1597c0 | 66 6c 65 78 76 70 6e 60 60 20 41 6c 6c 6f 77 73 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 | flexvpn``.Allows.FlexVPN.vendor. |
| 1597e0 | 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2e 20 53 65 6e 64 20 74 68 | ID.payload.(IKEv2.only)..Send.th |
| 159800 | 65 20 43 69 73 63 6f 00 60 60 66 6c 65 78 76 70 6e 60 60 20 41 6c 6c 6f 77 73 20 46 6c 65 78 56 | e.Cisco.``flexvpn``.Allows.FlexV |
| 159820 | 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 | PN.vendor.ID.payload.(IKEv2.only |
| 159840 | 29 2e 20 53 65 6e 64 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 | )..Send.the.Cisco.FlexVPN.vendor |
| 159860 | 20 49 44 20 70 61 79 6c 6f 61 64 20 28 49 4b 45 76 32 20 6f 6e 6c 79 29 2c 20 77 68 69 63 68 20 | .ID.payload.(IKEv2.only),.which. |
| 159880 | 69 73 20 72 65 71 75 69 72 65 64 20 69 6e 20 6f 72 64 65 72 20 74 6f 20 6d 61 6b 65 20 43 69 73 | is.required.in.order.to.make.Cis |
| 1598a0 | 63 6f 20 62 72 61 6e 64 20 64 65 76 69 63 65 73 20 61 6c 6c 6f 77 20 6e 65 67 6f 74 69 61 74 69 | co.brand.devices.allow.negotiati |
| 1598c0 | 6e 67 20 61 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 63 74 6f 72 20 28 66 72 6f | ng.a.local.traffic.selector.(fro |
| 1598e0 | 6d 20 73 74 72 6f 6e 67 53 77 61 6e 27 73 20 70 6f 69 6e 74 20 6f 66 20 76 69 65 77 29 20 74 68 | m.strongSwan's.point.of.view).th |
| 159900 | 61 74 20 69 73 20 6e 6f 74 20 74 68 65 20 61 73 73 69 67 6e 65 64 20 76 69 72 74 75 61 6c 20 49 | at.is.not.the.assigned.virtual.I |
| 159920 | 50 20 61 64 64 72 65 73 73 20 69 66 20 73 75 63 68 20 61 6e 20 61 64 64 72 65 73 73 20 69 73 20 | P.address.if.such.an.address.is. |
| 159940 | 72 65 71 75 65 73 74 65 64 20 62 79 20 73 74 72 6f 6e 67 53 77 61 6e 2e 20 53 65 6e 64 69 6e 67 | requested.by.strongSwan..Sending |
| 159960 | 20 74 68 65 20 43 69 73 63 6f 20 46 6c 65 78 56 50 4e 20 76 65 6e 64 6f 72 20 49 44 20 70 72 65 | .the.Cisco.FlexVPN.vendor.ID.pre |
| 159980 | 76 65 6e 74 73 20 74 68 65 20 70 65 65 72 20 66 72 6f 6d 20 6e 61 72 72 6f 77 69 6e 67 20 74 68 | vents.the.peer.from.narrowing.th |
| 1599a0 | 65 20 69 6e 69 74 69 61 74 6f 72 27 73 20 6c 6f 63 61 6c 20 74 72 61 66 66 69 63 20 73 65 6c 65 | e.initiator's.local.traffic.sele |
| 1599c0 | 63 74 6f 72 20 61 6e 64 20 61 6c 6c 6f 77 73 20 69 74 20 74 6f 20 65 2e 67 2e 20 6e 65 67 6f 74 | ctor.and.allows.it.to.e.g..negot |
| 1599e0 | 69 61 74 65 20 61 20 54 53 20 6f 66 20 30 2e 30 2e 30 2e 30 2f 30 20 3d 3d 20 30 2e 30 2e 30 2e | iate.a.TS.of.0.0.0.0/0.==.0.0.0. |
| 159a00 | 30 2f 30 20 69 6e 73 74 65 61 64 2e 20 54 68 69 73 20 68 61 73 20 62 65 65 6e 20 74 65 73 74 65 | 0/0.instead..This.has.been.teste |
| 159a20 | 64 20 77 69 74 68 20 61 20 22 74 75 6e 6e 65 6c 20 6d 6f 64 65 20 69 70 73 65 63 20 69 70 76 34 | d.with.a."tunnel.mode.ipsec.ipv4 |
| 159a40 | 22 20 43 69 73 63 6f 20 74 65 6d 70 6c 61 74 65 20 62 75 74 20 73 68 6f 75 6c 64 20 61 6c 73 6f | ".Cisco.template.but.should.also |
| 159a60 | 20 77 6f 72 6b 20 66 6f 72 20 47 52 45 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 3b 00 60 60 66 | .work.for.GRE.encapsulation;.``f |
| 159a80 | 6f 72 63 65 2d 75 64 70 2d 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 60 60 20 2d 20 66 6f 72 63 65 | orce-udp-encapsulation``.-.force |
| 159aa0 | 20 65 6e 63 61 70 73 75 6c 61 74 69 6f 6e 20 6f 66 20 45 53 50 20 69 6e 74 6f 20 55 44 50 20 64 | .encapsulation.of.ESP.into.UDP.d |
| 159ac0 | 61 74 61 67 72 61 6d 73 2e 20 55 73 65 66 75 6c 20 69 6e 20 63 61 73 65 20 69 66 20 62 65 74 77 | atagrams..Useful.in.case.if.betw |
| 159ae0 | 65 65 6e 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f 74 65 20 73 69 64 65 20 69 73 20 66 69 72 | een.local.and.remote.side.is.fir |
| 159b00 | 65 77 61 6c 6c 20 6f 72 20 4e 41 54 2c 20 77 68 69 63 68 20 6e 6f 74 20 61 6c 6c 6f 77 73 20 70 | ewall.or.NAT,.which.not.allows.p |
| 159b20 | 61 73 73 69 6e 67 20 70 6c 61 69 6e 20 45 53 50 20 70 61 63 6b 65 74 73 20 62 65 74 77 65 65 6e | assing.plain.ESP.packets.between |
| 159b40 | 20 74 68 65 6d 3b 00 60 60 67 60 60 20 2d 20 38 30 32 2e 31 31 67 20 2d 20 35 34 20 4d 62 69 74 | .them;.``g``.-.802.11g.-.54.Mbit |
| 159b60 | 73 2f 73 65 63 20 28 64 65 66 61 75 6c 74 29 00 60 60 67 72 61 63 65 66 75 6c 2d 73 68 75 74 64 | s/sec.(default).``graceful-shutd |
| 159b80 | 6f 77 6e 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f | own``.-............Well-known.co |
| 159ba0 | 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 47 52 41 43 45 46 55 4c 5f 53 48 55 54 44 4f 57 | mmunities.value.GRACEFUL_SHUTDOW |
| 159bc0 | 4e 20 30 78 46 46 46 46 30 30 30 30 00 60 60 67 72 6f 75 70 60 60 20 20 41 64 64 72 65 73 73 20 | N.0xFFFF0000.``group``..Address. |
| 159be0 | 67 72 6f 75 70 2e 00 60 60 67 72 6f 75 70 60 60 20 20 50 6f 72 74 20 67 72 6f 75 70 2e 00 60 60 | group..``group``..Port.group..`` |
| 159c00 | 67 75 69 64 65 64 60 60 20 54 68 65 20 64 72 69 76 65 72 20 61 6c 6c 6f 77 73 20 74 6f 20 73 65 | guided``.The.driver.allows.to.se |
| 159c20 | 74 20 64 65 73 69 72 65 64 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 6c 65 76 65 6c 73 20 61 6e 64 | t.desired.performance.levels.and |
| 159c40 | 20 74 68 65 20 66 69 72 6d 77 61 72 65 20 73 65 6c 65 63 74 73 20 61 20 70 65 72 66 6f 72 6d 61 | .the.firmware.selects.a.performa |
| 159c60 | 6e 63 65 20 6c 65 76 65 6c 20 69 6e 20 74 68 69 73 20 72 61 6e 67 65 20 61 6e 64 20 66 69 74 74 | nce.level.in.this.range.and.fitt |
| 159c80 | 69 6e 67 20 74 6f 20 74 68 65 20 63 75 72 72 65 6e 74 20 77 6f 72 6b 6c 6f 61 64 2e 00 60 60 68 | ing.to.the.current.workload..``h |
| 159ca0 | 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 68 6f 75 72 73 | ``.-.Execution.interval.in.hours |
| 159cc0 | 00 60 60 68 61 73 68 60 60 20 68 61 73 68 20 61 6c 67 6f 72 69 74 68 6d 20 28 64 65 66 61 75 6c | .``hash``.hash.algorithm.(defaul |
| 159ce0 | 74 20 73 68 61 31 29 2e 00 60 60 68 61 73 68 60 60 20 68 61 73 68 20 61 6c 67 6f 72 69 74 68 6d | t.sha1)..``hash``.hash.algorithm |
| 159d00 | 2e 00 60 60 68 6f 6c 64 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 68 6f 6c 64 20 28 64 | ..``hold``.set.action.to.hold.(d |
| 159d20 | 65 66 61 75 6c 74 29 00 60 60 68 6f 6c 64 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 68 | efault).``hold``.set.action.to.h |
| 159d40 | 6f 6c 64 3b 00 60 60 68 74 32 30 60 60 20 2d 20 32 30 20 4d 48 7a 20 63 68 61 6e 6e 65 6c 20 77 | old;.``ht20``.-.20.MHz.channel.w |
| 159d60 | 69 64 74 68 00 60 60 68 74 34 30 2b 60 60 20 2d 20 42 6f 74 68 20 32 30 20 4d 48 7a 20 61 6e 64 | idth.``ht40+``.-.Both.20.MHz.and |
| 159d80 | 20 34 30 20 4d 48 7a 20 77 69 74 68 20 73 65 63 6f 6e 64 61 72 79 20 63 68 61 6e 6e 65 6c 20 61 | .40.MHz.with.secondary.channel.a |
| 159da0 | 62 6f 76 65 20 74 68 65 20 70 72 69 6d 61 72 79 20 63 68 61 6e 6e 65 6c 00 60 60 68 74 34 30 2d | bove.the.primary.channel.``ht40- |
| 159dc0 | 60 60 20 2d 20 42 6f 74 68 20 32 30 20 4d 48 7a 20 61 6e 64 20 34 30 20 4d 48 7a 20 77 69 74 68 | ``.-.Both.20.MHz.and.40.MHz.with |
| 159de0 | 20 73 65 63 6f 6e 64 61 72 79 20 63 68 61 6e 6e 65 6c 20 62 65 6c 6f 77 20 74 68 65 20 70 72 69 | .secondary.channel.below.the.pri |
| 159e00 | 6d 61 72 79 20 63 68 61 6e 6e 65 6c 00 60 60 68 76 63 30 60 60 20 2d 20 58 65 6e 20 63 6f 6e 73 | mary.channel.``hvc0``.-.Xen.cons |
| 159e20 | 6f 6c 65 00 60 60 69 64 60 60 20 2d 20 73 74 61 74 69 63 20 49 44 27 73 20 66 6f 72 20 61 75 74 | ole.``id``.-.static.ID's.for.aut |
| 159e40 | 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 49 6e 20 67 65 6e 65 72 61 6c 20 6c 6f 63 61 6c 20 61 6e | hentication..In.general.local.an |
| 159e60 | 64 20 72 65 6d 6f 74 65 20 61 64 64 72 65 73 73 20 60 60 3c 78 2e 78 2e 78 2e 78 3e 60 60 2c 20 | d.remote.address.``<x.x.x.x>``,. |
| 159e80 | 60 60 3c 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3a 68 3e 60 60 20 6f 72 20 60 60 25 61 6e 79 60 | ``<h:h:h:h:h:h:h:h>``.or.``%any` |
| 159ea0 | 60 3b 00 60 60 69 6b 65 2d 67 72 6f 75 70 60 60 20 2d 20 49 4b 45 20 67 72 6f 75 70 20 74 6f 20 | `;.``ike-group``.-.IKE.group.to. |
| 159ec0 | 75 73 65 20 66 6f 72 20 6b 65 79 20 65 78 63 68 61 6e 67 65 73 3b 00 60 60 69 6b 65 76 31 60 60 | use.for.key.exchanges;.``ikev1`` |
| 159ee0 | 20 75 73 65 20 49 4b 45 76 31 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 65 3b 00 60 60 69 | .use.IKEv1.for.Key.Exchange;.``i |
| 159f00 | 6b 65 76 32 2d 72 65 61 75 74 68 60 60 20 2d 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 65 20 72 | kev2-reauth``.-.reauthenticate.r |
| 159f20 | 65 6d 6f 74 65 20 70 65 65 72 20 64 75 72 69 6e 67 20 74 68 65 20 72 65 6b 65 79 69 6e 67 20 70 | emote.peer.during.the.rekeying.p |
| 159f40 | 72 6f 63 65 73 73 2e 20 43 61 6e 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 20 77 69 74 68 20 49 4b | rocess..Can.be.used.only.with.IK |
| 159f60 | 45 76 32 2e 20 43 72 65 61 74 65 20 61 20 6e 65 77 20 49 4b 45 5f 53 41 20 66 72 6f 6d 20 74 68 | Ev2..Create.a.new.IKE_SA.from.th |
| 159f80 | 65 20 73 63 72 61 74 63 68 20 61 6e 64 20 74 72 79 20 74 6f 20 72 65 63 72 65 61 74 65 20 61 6c | e.scratch.and.try.to.recreate.al |
| 159fa0 | 6c 20 49 50 73 65 63 20 53 41 73 3b 00 60 60 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 20 77 68 | l.IPsec.SAs;.``ikev2-reauth``.wh |
| 159fc0 | 65 74 68 65 72 20 72 65 6b 65 79 69 6e 67 20 6f 66 20 61 6e 20 49 4b 45 5f 53 41 20 73 68 6f 75 | ether.rekeying.of.an.IKE_SA.shou |
| 159fe0 | 6c 64 20 61 6c 73 6f 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 65 20 74 68 65 20 70 65 65 72 2e | ld.also.reauthenticate.the.peer. |
| 15a000 | 20 49 6e 20 49 4b 45 76 31 2c 20 72 65 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 61 | .In.IKEv1,.reauthentication.is.a |
| 15a020 | 6c 77 61 79 73 20 64 6f 6e 65 2e 20 53 65 74 74 69 6e 67 20 74 68 69 73 20 70 61 72 61 6d 65 74 | lways.done..Setting.this.paramet |
| 15a040 | 65 72 20 65 6e 61 62 6c 65 73 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 6e | er.enables.remote.host.re-authen |
| 15a060 | 74 69 63 61 74 69 6f 6e 20 64 75 72 69 6e 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 79 2e 00 60 60 | tication.during.an.IKE.rekey..`` |
| 15a080 | 69 6b 65 76 32 2d 72 65 61 75 74 68 60 60 20 77 68 65 74 68 65 72 20 72 65 6b 65 79 69 6e 67 20 | ikev2-reauth``.whether.rekeying. |
| 15a0a0 | 6f 66 20 61 6e 20 49 4b 45 5f 53 41 20 73 68 6f 75 6c 64 20 61 6c 73 6f 20 72 65 61 75 74 68 65 | of.an.IKE_SA.should.also.reauthe |
| 15a0c0 | 6e 74 69 63 61 74 65 20 74 68 65 20 70 65 65 72 2e 20 49 6e 20 49 4b 45 76 31 2c 20 72 65 61 75 | nticate.the.peer..In.IKEv1,.reau |
| 15a0e0 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 73 20 61 6c 77 61 79 73 20 64 6f 6e 65 3a 00 60 60 69 | thentication.is.always.done:.``i |
| 15a100 | 6b 65 76 32 60 60 20 75 73 65 20 49 4b 45 76 32 20 66 6f 72 20 4b 65 79 20 45 78 63 68 61 6e 67 | kev2``.use.IKEv2.for.Key.Exchang |
| 15a120 | 65 3b 00 60 60 69 6e 60 60 3a 20 52 75 6c 65 73 65 74 20 66 6f 72 20 66 6f 72 77 61 72 64 65 64 | e;.``in``:.Ruleset.for.forwarded |
| 15a140 | 20 70 61 63 6b 65 74 73 20 6f 6e 20 61 6e 20 69 6e 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 | .packets.on.an.inbound.interface |
| 15a160 | 00 60 60 69 6e 69 74 63 61 6c 6c 5f 62 6c 61 63 6b 6c 69 73 74 3d 61 63 70 69 5f 63 70 75 66 72 | .``initcall_blacklist=acpi_cpufr |
| 15a180 | 65 71 5f 69 6e 69 74 60 60 20 44 69 73 61 62 6c 65 20 64 65 66 61 75 6c 74 20 41 43 50 49 20 43 | eq_init``.Disable.default.ACPI.C |
| 15a1a0 | 50 55 20 66 72 65 71 75 65 6e 63 79 20 73 63 61 6c 65 00 60 60 69 6e 69 74 69 61 74 65 60 60 20 | PU.frequency.scale.``initiate``. |
| 15a1c0 | 2d 20 64 6f 65 73 20 69 6e 69 74 69 61 6c 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 72 65 6d | -.does.initial.connection.to.rem |
| 15a1e0 | 6f 74 65 20 70 65 65 72 20 69 6d 6d 65 64 69 61 74 65 6c 79 20 61 66 74 65 72 20 63 6f 6e 66 69 | ote.peer.immediately.after.confi |
| 15a200 | 67 75 72 69 6e 67 20 61 6e 64 20 61 66 74 65 72 20 62 6f 6f 74 2e 20 49 6e 20 74 68 69 73 20 6d | guring.and.after.boot..In.this.m |
| 15a220 | 6f 64 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 77 69 6c 6c 20 6e 6f 74 20 62 65 20 72 | ode.the.connection.will.not.be.r |
| 15a240 | 65 73 74 61 72 74 65 64 20 69 6e 20 63 61 73 65 20 6f 66 20 64 69 73 63 6f 6e 6e 65 63 74 69 6f | estarted.in.case.of.disconnectio |
| 15a260 | 6e 2c 20 74 68 65 72 65 66 6f 72 65 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 64 20 6f 6e 6c 79 | n,.therefore.should.be.used.only |
| 15a280 | 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 44 50 44 20 6f 72 20 61 6e 6f 74 68 65 72 20 73 65 | .together.with.DPD.or.another.se |
| 15a2a0 | 73 73 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 6d 65 74 68 6f 64 73 3b 00 60 60 69 6e 74 65 6c 5f | ssion.tracking.methods;.``intel_ |
| 15a2c0 | 69 64 6c 65 2e 6d 61 78 5f 63 73 74 61 74 65 3d 30 60 60 20 44 69 73 61 62 6c 65 20 69 6e 74 65 | idle.max_cstate=0``.Disable.inte |
| 15a2e0 | 6c 5f 69 64 6c 65 20 61 6e 64 20 66 61 6c 6c 20 62 61 63 6b 20 6f 6e 20 61 63 70 69 5f 69 64 6c | l_idle.and.fall.back.on.acpi_idl |
| 15a300 | 65 00 60 60 69 6e 74 65 72 66 61 63 65 60 60 20 49 6e 74 65 72 66 61 63 65 20 4e 61 6d 65 20 74 | e.``interface``.Interface.Name.t |
| 15a320 | 6f 20 75 73 65 2e 20 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 | o.use..The.name.of.the.interface |
| 15a340 | 20 6f 6e 20 77 68 69 63 68 00 60 60 69 6e 74 65 72 66 61 63 65 60 60 20 49 6e 74 65 72 66 61 63 | .on.which.``interface``.Interfac |
| 15a360 | 65 20 4e 61 6d 65 20 74 6f 20 75 73 65 2e 20 54 68 65 20 6e 61 6d 65 20 6f 66 20 74 68 65 20 69 | e.Name.to.use..The.name.of.the.i |
| 15a380 | 6e 74 65 72 66 61 63 65 20 6f 6e 20 77 68 69 63 68 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 | nterface.on.which.virtual.IP.add |
| 15a3a0 | 72 65 73 73 65 73 20 73 68 6f 75 6c 64 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 2e 20 49 66 20 6e | resses.should.be.installed..If.n |
| 15a3c0 | 6f 74 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 61 64 64 72 65 73 73 65 73 20 77 69 6c 6c 20 | ot.specified.the.addresses.will. |
| 15a3e0 | 62 65 20 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 20 74 68 65 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 | be.installed.on.the.outbound.int |
| 15a400 | 65 72 66 61 63 65 3b 00 60 60 69 6e 74 65 72 66 61 63 65 60 60 20 69 73 20 75 73 65 64 20 66 6f | erface;.``interface``.is.used.fo |
| 15a420 | 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 | r.the.VyOS.CLI.command.to.identi |
| 15a440 | 66 79 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 69 6e 74 65 72 66 61 63 65 20 77 68 65 72 65 | fy.the.WireGuard.interface.where |
| 15a460 | 20 74 68 69 73 20 70 72 69 76 61 74 65 20 6b 65 79 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 2e | .this.private.key.is.to.be.used. |
| 15a480 | 00 60 60 69 6e 74 65 72 6c 65 61 76 65 60 60 20 65 6e 61 62 6c 65 73 20 4e 54 50 20 69 6e 74 65 | .``interleave``.enables.NTP.inte |
| 15a4a0 | 72 6c 65 61 76 65 64 20 6d 6f 64 65 20 28 73 65 65 20 60 64 72 61 66 74 2d 6e 74 70 2d 69 6e 74 | rleaved.mode.(see.`draft-ntp-int |
| 15a4c0 | 65 72 6c 65 61 76 65 64 2d 6d 6f 64 65 73 60 5f 29 2c 20 77 68 69 63 68 20 63 61 6e 20 69 6d 70 | erleaved-modes`_),.which.can.imp |
| 15a4e0 | 72 6f 76 65 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 61 63 63 75 72 61 63 79 20 61 6e | rove.synchronization.accuracy.an |
| 15a500 | 64 20 73 74 61 62 69 6c 69 74 79 20 77 68 65 6e 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 62 6f | d.stability.when.supported.by.bo |
| 15a520 | 74 68 20 70 61 72 74 69 65 73 2e 00 60 60 69 6e 74 65 72 6e 65 74 60 60 20 2d 20 20 20 20 20 20 | th.parties..``internet``.-...... |
| 15a540 | 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e | ...............Well-known.commun |
| 15a560 | 69 74 69 65 73 20 76 61 6c 75 65 20 30 00 60 60 69 6e 74 65 72 76 61 6c 60 60 20 6b 65 65 70 2d | ities.value.0.``interval``.keep- |
| 15a580 | 61 6c 69 76 65 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 32 2d 38 36 34 | alive.interval.in.seconds.<2-864 |
| 15a5a0 | 30 30 3e 20 28 64 65 66 61 75 6c 74 20 33 30 29 3b 00 60 60 69 73 69 73 60 60 20 2d 20 49 6e 74 | 00>.(default.30);.``isis``.-.Int |
| 15a5c0 | 65 72 6d 65 64 69 61 74 65 20 53 79 73 74 65 6d 20 74 6f 20 49 6e 74 65 72 6d 65 64 69 61 74 65 | ermediate.System.to.Intermediate |
| 15a5e0 | 20 53 79 73 74 65 6d 20 28 49 53 2d 49 53 29 00 60 60 6a 75 6d 70 60 60 3a 20 6a 75 6d 70 20 74 | .System.(IS-IS).``jump``:.jump.t |
| 15a600 | 6f 20 61 6e 6f 74 68 65 72 20 63 75 73 74 6f 6d 20 63 68 61 69 6e 2e 00 60 60 6b 65 72 6e 65 6c | o.another.custom.chain..``kernel |
| 15a620 | 60 60 20 2d 20 4b 65 72 6e 65 6c 20 72 6f 75 74 65 73 00 60 60 6b 65 79 2d 65 78 63 68 61 6e 67 | ``.-.Kernel.routes.``key-exchang |
| 15a640 | 65 60 60 20 77 68 69 63 68 20 70 72 6f 74 6f 63 6f 6c 20 73 68 6f 75 6c 64 20 62 65 20 75 73 65 | e``.which.protocol.should.be.use |
| 15a660 | 64 20 74 6f 20 69 6e 69 74 69 61 6c 69 7a 65 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 49 | d.to.initialize.the.connection.I |
| 15a680 | 66 20 6e 6f 74 20 73 65 74 20 62 6f 74 68 20 70 72 6f 74 6f 63 6f 6c 73 20 61 72 65 20 68 61 6e | f.not.set.both.protocols.are.han |
| 15a6a0 | 64 6c 65 64 20 61 6e 64 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 20 77 69 6c 6c 20 75 73 65 20 49 4b | dled.and.connections.will.use.IK |
| 15a6c0 | 45 76 32 20 77 68 65 6e 20 69 6e 69 74 69 61 74 69 6e 67 2c 20 62 75 74 20 61 63 63 65 70 74 20 | Ev2.when.initiating,.but.accept. |
| 15a6e0 | 61 6e 79 20 70 72 6f 74 6f 63 6f 6c 20 76 65 72 73 69 6f 6e 20 77 68 65 6e 20 72 65 73 70 6f 6e | any.protocol.version.when.respon |
| 15a700 | 64 69 6e 67 3a 00 60 60 6b 65 79 60 60 20 2d 20 61 20 70 72 69 76 61 74 65 20 6b 65 79 2c 20 77 | ding:.``key``.-.a.private.key,.w |
| 15a720 | 68 69 63 68 20 77 69 6c 6c 20 62 65 20 75 73 65 64 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 | hich.will.be.used.for.authentica |
| 15a740 | 74 69 6e 67 20 6c 6f 63 61 6c 20 72 6f 75 74 65 72 20 6f 6e 20 72 65 6d 6f 74 65 20 70 65 65 72 | ting.local.router.on.remote.peer |
| 15a760 | 3a 00 60 60 6b 65 79 60 60 20 75 73 65 20 41 50 49 20 6b 65 79 73 20 63 6f 6e 66 69 67 75 72 65 | :.``key``.use.API.keys.configure |
| 15a780 | 64 20 69 6e 20 60 60 73 65 72 76 69 63 65 20 68 74 74 70 73 20 61 70 69 20 6b 65 79 73 60 60 00 | d.in.``service.https.api.keys``. |
| 15a7a0 | 60 60 6c 61 74 65 6e 63 79 60 60 3a 20 41 20 73 65 72 76 65 72 20 70 72 6f 66 69 6c 65 20 66 6f | ``latency``:.A.server.profile.fo |
| 15a7c0 | 63 75 73 65 64 20 6f 6e 20 6c 6f 77 65 72 69 6e 67 20 6e 65 74 77 6f 72 6b 20 6c 61 74 65 6e 63 | cused.on.lowering.network.latenc |
| 15a7e0 | 79 2e 20 54 68 69 73 20 70 72 6f 66 69 6c 65 20 66 61 76 6f 72 73 20 70 65 72 66 6f 72 6d 61 6e | y..This.profile.favors.performan |
| 15a800 | 63 65 20 6f 76 65 72 20 70 6f 77 65 72 20 73 61 76 69 6e 67 73 20 62 79 20 73 65 74 74 69 6e 67 | ce.over.power.savings.by.setting |
| 15a820 | 20 60 60 69 6e 74 65 6c 5f 70 73 74 61 74 65 60 60 20 61 6e 64 20 60 60 6d 69 6e 5f 70 65 72 66 | .``intel_pstate``.and.``min_perf |
| 15a840 | 5f 70 63 74 3d 31 30 30 60 60 2e 00 60 60 6c 64 61 70 60 60 20 4c 44 41 50 20 70 72 6f 74 6f 63 | _pct=100``..``ldap``.LDAP.protoc |
| 15a860 | 6f 6c 20 63 68 65 63 6b 2e 00 60 60 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 60 60 20 44 | ol.check..``least-connection``.D |
| 15a880 | 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 68 65 20 73 65 72 76 65 | istributes.requests.to.the.serve |
| 15a8a0 | 72 20 77 69 74 68 20 74 68 65 20 66 65 77 65 73 74 20 61 63 74 69 76 65 20 63 6f 6e 6e 65 63 74 | r.with.the.fewest.active.connect |
| 15a8c0 | 69 6f 6e 73 00 60 60 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 60 60 20 44 69 73 74 72 69 | ions.``least-connection``.Distri |
| 15a8e0 | 62 75 74 65 73 20 72 65 71 75 65 73 74 73 20 74 70 20 74 6a 65 20 73 65 72 76 65 72 20 77 6f 74 | butes.requests.tp.tje.server.wot |
| 15a900 | 6a 20 74 68 65 20 66 65 77 65 73 74 20 61 63 74 69 76 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 73 00 | j.the.fewest.active.connections. |
| 15a920 | 60 60 6c 69 66 65 2d 62 79 74 65 73 60 60 20 45 53 50 20 6c 69 66 65 20 69 6e 20 62 79 74 65 73 | ``life-bytes``.ESP.life.in.bytes |
| 15a940 | 20 3c 31 30 32 34 2d 32 36 38 34 33 35 34 35 36 30 30 30 30 30 3e 2e 20 4e 75 6d 62 65 72 20 6f | .<1024-26843545600000>..Number.o |
| 15a960 | 66 20 62 79 74 65 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 6f 76 65 72 20 61 6e 20 49 50 73 65 | f.bytes.transmitted.over.an.IPse |
| 15a980 | 63 20 53 41 20 62 65 66 6f 72 65 20 69 74 20 65 78 70 69 72 65 73 3b 00 60 60 6c 69 66 65 2d 70 | c.SA.before.it.expires;.``life-p |
| 15a9a0 | 61 63 6b 65 74 73 60 60 20 45 53 50 20 6c 69 66 65 20 69 6e 20 70 61 63 6b 65 74 73 20 3c 31 30 | ackets``.ESP.life.in.packets.<10 |
| 15a9c0 | 30 30 2d 32 36 38 34 33 35 34 35 36 30 30 30 30 30 3e 2e 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 | 00-26843545600000>..Number.of.pa |
| 15a9e0 | 63 6b 65 74 73 20 74 72 61 6e 73 6d 69 74 74 65 64 20 6f 76 65 72 20 61 6e 20 49 50 73 65 63 20 | ckets.transmitted.over.an.IPsec. |
| 15aa00 | 53 41 20 62 65 66 6f 72 65 20 69 74 20 65 78 70 69 72 65 73 3b 00 60 60 6c 69 66 65 74 69 6d 65 | SA.before.it.expires;.``lifetime |
| 15aa20 | 60 60 20 45 53 50 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 33 30 2d 38 | ``.ESP.lifetime.in.seconds.<30-8 |
| 15aa40 | 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 33 36 30 30 29 2e 20 48 6f 77 20 6c 6f 6e 67 20 61 | 6400>.(default.3600)..How.long.a |
| 15aa60 | 20 70 61 72 74 69 63 75 6c 61 72 20 69 6e 73 74 61 6e 63 65 20 6f 66 20 61 20 63 6f 6e 6e 65 63 | .particular.instance.of.a.connec |
| 15aa80 | 74 69 6f 6e 20 28 61 20 73 65 74 20 6f 66 20 65 6e 63 72 79 70 74 69 6f 6e 2f 61 75 74 68 65 6e | tion.(a.set.of.encryption/authen |
| 15aaa0 | 74 69 63 61 74 69 6f 6e 20 6b 65 79 73 20 66 6f 72 20 75 73 65 72 20 70 61 63 6b 65 74 73 29 20 | tication.keys.for.user.packets). |
| 15aac0 | 73 68 6f 75 6c 64 20 6c 61 73 74 2c 20 66 72 6f 6d 20 73 75 63 63 65 73 73 66 75 6c 20 6e 65 67 | should.last,.from.successful.neg |
| 15aae0 | 6f 74 69 61 74 69 6f 6e 20 74 6f 20 65 78 70 69 72 79 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 60 | otiation.to.expiry;.``lifetime`` |
| 15ab00 | 20 49 4b 45 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 30 2d 38 36 34 30 | .IKE.lifetime.in.seconds.<0-8640 |
| 15ab20 | 30 3e 20 28 64 65 66 61 75 6c 74 20 32 38 38 30 30 29 3b 00 60 60 6c 69 66 65 74 69 6d 65 60 60 | 0>.(default.28800);.``lifetime`` |
| 15ab40 | 20 49 4b 45 20 6c 69 66 65 74 69 6d 65 20 69 6e 20 73 65 63 6f 6e 64 73 20 3c 33 30 2d 38 36 34 | .IKE.lifetime.in.seconds.<30-864 |
| 15ab60 | 30 30 3e 20 28 64 65 66 61 75 6c 74 20 32 38 38 30 30 29 3b 00 60 60 6c 6c 67 72 2d 73 74 61 6c | 00>.(default.28800);.``llgr-stal |
| 15ab80 | 65 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f | e``.-...................Well-kno |
| 15aba0 | 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4c 4c 47 52 5f 53 54 41 4c 45 20 | wn.communities.value.LLGR_STALE. |
| 15abc0 | 30 78 46 46 46 46 30 30 30 36 00 60 60 6c 6f 63 61 6c 2d 61 64 64 72 65 73 73 60 60 20 2d 20 6c | 0xFFFF0006.``local-address``.-.l |
| 15abe0 | 6f 63 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 66 6f 72 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 | ocal.IP.address.for.IPSec.connec |
| 15ac00 | 74 69 6f 6e 20 77 69 74 68 20 74 68 69 73 20 70 65 65 72 2e 20 49 66 20 64 65 66 69 6e 65 64 20 | tion.with.this.peer..If.defined. |
| 15ac20 | 60 60 61 6e 79 60 60 2c 20 74 68 65 6e 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 77 68 69 63 | ``any``,.then.an.IP.address.whic |
| 15ac40 | 68 20 63 6f 6e 66 69 67 75 72 65 64 20 6f 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 64 | h.configured.on.interface.with.d |
| 15ac60 | 65 66 61 75 6c 74 20 72 6f 75 74 65 20 77 69 6c 6c 20 62 65 20 75 73 65 64 3b 00 60 60 6c 6f 63 | efault.route.will.be.used;.``loc |
| 15ac80 | 61 6c 2d 61 73 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 | al-as``.-.....................We |
| 15aca0 | 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 45 58 | ll-known.communities.value.NO_EX |
| 15acc0 | 50 4f 52 54 5f 53 55 42 43 4f 4e 46 45 44 20 30 78 46 46 46 46 46 46 30 33 00 60 60 6c 6f 63 61 | PORT_SUBCONFED.0xFFFFFF03.``loca |
| 15ace0 | 6c 2d 69 64 60 60 20 2d 20 49 44 20 66 6f 72 20 74 68 65 20 6c 6f 63 61 6c 20 56 79 4f 53 20 72 | l-id``.-.ID.for.the.local.VyOS.r |
| 15ad00 | 6f 75 74 65 72 2e 20 49 66 20 64 65 66 69 6e 65 64 2c 20 64 75 72 69 6e 67 20 74 68 65 20 61 75 | outer..If.defined,.during.the.au |
| 15ad20 | 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 69 74 20 77 69 6c 6c 20 62 65 20 73 65 6e 64 20 74 6f 20 | thentication.it.will.be.send.to. |
| 15ad40 | 72 65 6d 6f 74 65 20 70 65 65 72 3b 00 60 60 6c 6f 63 61 6c 2d 6b 65 79 60 60 20 2d 20 6e 61 6d | remote.peer;.``local-key``.-.nam |
| 15ad60 | 65 20 6f 66 20 50 4b 49 20 6b 65 79 2d 70 61 69 72 20 77 69 74 68 20 6c 6f 63 61 6c 20 70 72 69 | e.of.PKI.key-pair.with.local.pri |
| 15ad80 | 76 61 74 65 20 6b 65 79 00 60 60 6c 6f 63 61 6c 60 60 20 2d 20 64 65 66 69 6e 65 20 61 20 6c 6f | vate.key.``local``.-.define.a.lo |
| 15ada0 | 63 61 6c 20 73 6f 75 72 63 65 20 66 6f 72 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 2c 20 77 68 | cal.source.for.match.traffic,.wh |
| 15adc0 | 69 63 68 20 73 68 6f 75 6c 64 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 73 65 6e 64 | ich.should.be.encrypted.and.send |
| 15ade0 | 20 74 6f 20 74 68 69 73 20 70 65 65 72 3a 00 60 60 6c 6f 63 61 6c 60 60 3a 20 52 75 6c 65 73 65 | .to.this.peer:.``local``:.Rulese |
| 15ae00 | 74 20 66 6f 72 20 70 61 63 6b 65 74 73 20 64 65 73 74 69 6e 65 64 20 66 6f 72 20 74 68 69 73 20 | t.for.packets.destined.for.this. |
| 15ae20 | 72 6f 75 74 65 72 00 60 60 6d 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 61 | router.``m``.-.Execution.interva |
| 15ae40 | 6c 20 69 6e 20 6d 69 6e 75 74 65 73 00 60 60 6d 61 69 6e 60 60 20 52 6f 75 74 69 6e 67 20 74 61 | l.in.minutes.``main``.Routing.ta |
| 15ae60 | 62 6c 65 20 75 73 65 64 20 62 79 20 56 79 4f 53 20 61 6e 64 20 6f 74 68 65 72 20 69 6e 74 65 72 | ble.used.by.VyOS.and.other.inter |
| 15ae80 | 66 61 63 65 73 20 6e 6f 74 20 70 61 72 74 69 63 69 70 61 74 69 6e 67 20 69 6e 20 50 42 52 00 60 | faces.not.participating.in.PBR.` |
| 15aea0 | 60 6d 61 69 6e 60 60 20 75 73 65 20 4d 61 69 6e 20 6d 6f 64 65 20 66 6f 72 20 4b 65 79 20 45 78 | `main``.use.Main.mode.for.Key.Ex |
| 15aec0 | 63 68 61 6e 67 65 73 20 69 6e 20 74 68 65 20 49 4b 45 76 31 20 50 72 6f 74 6f 63 6f 6c 20 28 52 | changes.in.the.IKEv1.Protocol.(R |
| 15aee0 | 65 63 6f 6d 6d 65 6e 64 65 64 20 44 65 66 61 75 6c 74 29 3b 00 60 60 6d 65 73 73 61 67 65 60 60 | ecommended.Default);.``message`` |
| 15af00 | 3a 20 46 75 6c 6c 20 6d 65 73 73 61 67 65 20 74 68 61 74 20 68 61 73 20 74 72 69 67 67 65 72 65 | :.Full.message.that.has.triggere |
| 15af20 | 64 20 74 68 65 20 73 63 72 69 70 74 2e 00 60 60 6d 69 74 69 67 61 74 69 6f 6e 73 3d 6f 66 66 60 | d.the.script..``mitigations=off` |
| 15af40 | 60 00 60 60 6d 6f 62 69 6b 65 60 60 20 65 6e 61 62 6c 65 20 4d 4f 42 49 4b 45 20 53 75 70 70 6f | `.``mobike``.enable.MOBIKE.Suppo |
| 15af60 | 72 74 2e 20 4d 4f 42 49 4b 45 20 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 6c 65 20 66 6f 72 | rt..MOBIKE.is.only.available.for |
| 15af80 | 20 49 4b 45 76 32 3a 00 60 60 6d 6f 64 65 60 60 20 2d 20 6d 6f 64 65 20 66 6f 72 20 61 75 74 68 | .IKEv2:.``mode``.-.mode.for.auth |
| 15afa0 | 65 6e 74 69 63 61 74 69 6f 6e 20 62 65 74 77 65 65 6e 20 56 79 4f 53 20 61 6e 64 20 72 65 6d 6f | entication.between.VyOS.and.remo |
| 15afc0 | 74 65 20 70 65 65 72 3a 00 60 60 6d 6f 64 65 60 60 20 49 4b 45 76 31 20 50 68 61 73 65 20 31 20 | te.peer:.``mode``.IKEv1.Phase.1. |
| 15afe0 | 4d 6f 64 65 20 53 65 6c 65 63 74 69 6f 6e 3a 00 60 60 6d 6f 64 65 60 60 20 74 68 65 20 74 79 70 | Mode.Selection:.``mode``.the.typ |
| 15b000 | 65 20 6f 66 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 3a 00 60 60 6d 6f 6e 69 74 6f 72 60 60 | e.of.the.connection:.``monitor`` |
| 15b020 | 20 2d 20 50 61 73 73 69 76 65 6c 79 20 6d 6f 6e 69 74 6f 72 20 61 6c 6c 20 70 61 63 6b 65 74 73 | .-.Passively.monitor.all.packets |
| 15b040 | 20 6f 6e 20 74 68 65 20 66 72 65 71 75 65 6e 63 79 2f 63 68 61 6e 6e 65 6c 00 60 60 6d 75 6c 74 | .on.the.frequency/channel.``mult |
| 15b060 | 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 65 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f | i-user-beamformee``.-.Support.fo |
| 15b080 | 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 6d 75 6c 74 69 20 75 73 65 72 20 62 65 61 6d 66 6f | r.operation.as.multi.user.beamfo |
| 15b0a0 | 72 6d 65 65 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 65 60 60 20 2d | rmee.``multi-user-beamformee``.- |
| 15b0c0 | 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 | .Support.for.operation.as.single |
| 15b0e0 | 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 6d 75 6c 74 69 2d 75 73 65 72 2d 62 65 | .user.beamformer.``multi-user-be |
| 15b100 | 61 6d 66 6f 72 6d 65 72 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 | amformer``.-.Support.for.operati |
| 15b120 | 6f 6e 20 61 73 20 6d 75 6c 74 69 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 72 00 60 60 6d 75 | on.as.multi.user.beamformer.``mu |
| 15b140 | 6c 74 69 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 60 60 20 2d 20 53 75 70 70 6f 72 74 20 | lti-user-beamformer``.-.Support. |
| 15b160 | 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 | for.operation.as.single.user.bea |
| 15b180 | 6d 66 6f 72 6d 65 72 00 60 60 6d 79 73 71 6c 60 60 20 4d 79 53 51 4c 20 70 72 6f 74 6f 63 6f 6c | mformer.``mysql``.MySQL.protocol |
| 15b1a0 | 20 63 68 65 63 6b 2e 00 60 60 6e 60 60 20 2d 20 38 30 32 2e 31 31 6e 20 2d 20 36 30 30 20 4d 62 | .check..``n``.-.802.11n.-.600.Mb |
| 15b1c0 | 69 74 73 2f 73 65 63 00 60 60 6e 61 6d 65 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 68 65 | its/sec.``name``.is.used.for.the |
| 15b1e0 | 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 | .VyOS.CLI.command.to.identify.th |
| 15b200 | 69 73 20 6b 65 79 2e 20 54 68 69 73 20 6b 65 79 20 60 60 6e 61 6d 65 60 60 20 69 73 20 74 68 65 | is.key..This.key.``name``.is.the |
| 15b220 | 6e 20 75 73 65 64 20 69 6e 20 74 68 65 20 43 4c 49 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 | n.used.in.the.CLI.configuration. |
| 15b240 | 74 6f 20 72 65 66 65 72 65 6e 63 65 20 74 68 65 20 6b 65 79 20 69 6e 73 74 61 6e 63 65 2e 00 60 | to.reference.the.key.instance..` |
| 15b260 | 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 72 65 64 69 72 65 | `net.ipv4.conf.all.accept_redire |
| 15b280 | 63 74 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 65 70 74 | cts``.``net.ipv4.conf.all.accept |
| 15b2a0 | 5f 73 6f 75 72 63 65 5f 72 6f 75 74 65 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f 6e 66 2e | _source_route``.``net.ipv4.conf. |
| 15b2c0 | 61 6c 6c 2e 6c 6f 67 5f 6d 61 72 74 69 61 6e 73 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f | all.log_martians``.``net.ipv4.co |
| 15b2e0 | 6e 66 2e 61 6c 6c 2e 72 70 5f 66 69 6c 74 65 72 60 60 00 60 60 6e 65 74 2e 69 70 76 34 2e 63 6f | nf.all.rp_filter``.``net.ipv4.co |
| 15b300 | 6e 66 2e 61 6c 6c 2e 73 65 6e 64 5f 72 65 64 69 72 65 63 74 73 60 60 00 60 60 6e 65 74 2e 69 70 | nf.all.send_redirects``.``net.ip |
| 15b320 | 76 34 2e 69 63 6d 70 5f 65 63 68 6f 5f 69 67 6e 6f 72 65 5f 62 72 6f 61 64 63 61 73 74 73 60 60 | v4.icmp_echo_ignore_broadcasts`` |
| 15b340 | 00 60 60 6e 65 74 2e 69 70 76 34 2e 74 63 70 5f 72 66 63 31 33 33 37 60 60 00 60 60 6e 65 74 2e | .``net.ipv4.tcp_rfc1337``.``net. |
| 15b360 | 69 70 76 34 2e 74 63 70 5f 73 79 6e 63 6f 6f 6b 69 65 73 60 60 00 60 60 6e 65 74 2e 69 70 76 36 | ipv4.tcp_syncookies``.``net.ipv6 |
| 15b380 | 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 72 65 64 69 72 65 63 74 73 60 60 00 60 60 6e | .conf.all.accept_redirects``.``n |
| 15b3a0 | 65 74 2e 69 70 76 36 2e 63 6f 6e 66 2e 61 6c 6c 2e 61 63 63 65 70 74 5f 73 6f 75 72 63 65 5f 72 | et.ipv6.conf.all.accept_source_r |
| 15b3c0 | 6f 75 74 65 60 60 00 60 60 6e 6f 2d 61 64 76 65 72 74 69 73 65 60 60 20 2d 20 20 20 20 20 20 20 | oute``.``no-advertise``.-....... |
| 15b3e0 | 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 | ..........Well-known.communities |
| 15b400 | 20 76 61 6c 75 65 20 4e 4f 5f 41 44 56 45 52 54 49 53 45 20 30 78 46 46 46 46 46 46 30 32 00 60 | .value.NO_ADVERTISE.0xFFFFFF02.` |
| 15b420 | 60 6e 6f 2d 65 78 70 6f 72 74 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 | `no-export``.-.................. |
| 15b440 | 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e | ..Well-known.communities.value.N |
| 15b460 | 4f 5f 45 58 50 4f 52 54 20 30 78 46 46 46 46 46 46 30 31 00 60 60 6e 6f 2d 6c 6c 67 72 60 60 20 | O_EXPORT.0xFFFFFF01.``no-llgr``. |
| 15b480 | 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 | -......................Well-know |
| 15b4a0 | 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 20 4e 4f 5f 4c 4c 47 52 20 30 78 46 46 | n.communities.value.NO_LLGR.0xFF |
| 15b4c0 | 46 46 30 30 30 37 00 60 60 6e 6f 2d 70 65 65 72 60 60 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 | FF0007.``no-peer``.-............ |
| 15b4e0 | 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 | ..........Well-known.communities |
| 15b500 | 20 76 61 6c 75 65 20 4e 4f 50 45 45 52 20 30 78 46 46 46 46 46 46 30 34 00 60 60 6e 6f 60 60 20 | .value.NOPEER.0xFFFFFF04.``no``. |
| 15b520 | 64 69 73 61 62 6c 65 20 72 65 6d 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 6e 74 69 63 | disable.remote.host.re-authentic |
| 15b540 | 61 74 6f 6e 20 64 75 72 69 6e 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 79 3b 00 60 60 6e 6f 6e 65 | aton.during.an.IKE.rekey;.``none |
| 15b560 | 60 60 20 2d 20 45 78 65 63 75 74 69 6f 6e 20 69 6e 74 65 72 76 61 6c 20 69 6e 20 6d 69 6e 75 74 | ``.-.Execution.interval.in.minut |
| 15b580 | 65 73 00 60 60 6e 6f 6e 65 60 60 20 2d 20 6c 6f 61 64 73 20 74 68 65 20 63 6f 6e 6e 65 63 74 69 | es.``none``.-.loads.the.connecti |
| 15b5a0 | 6f 6e 20 6f 6e 6c 79 2c 20 77 68 69 63 68 20 74 68 65 6e 20 63 61 6e 20 62 65 20 6d 61 6e 75 61 | on.only,.which.then.can.be.manua |
| 15b5c0 | 6c 6c 79 20 69 6e 69 74 69 61 74 65 64 20 6f 72 20 75 73 65 64 20 61 73 20 61 20 72 65 73 70 6f | lly.initiated.or.used.as.a.respo |
| 15b5e0 | 6e 64 65 72 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 60 60 6e 6f 6e 65 60 60 20 73 65 74 | nder.configuration..``none``.set |
| 15b600 | 20 61 63 74 69 6f 6e 20 74 6f 20 6e 6f 6e 65 20 28 64 65 66 61 75 6c 74 29 3b 00 60 60 6e 6f 73 | .action.to.none.(default);.``nos |
| 15b620 | 65 6c 65 63 74 60 60 20 6d 61 72 6b 73 20 74 68 65 20 73 65 72 76 65 72 20 61 73 20 75 6e 75 73 | elect``.marks.the.server.as.unus |
| 15b640 | 65 64 2c 20 65 78 63 65 70 74 20 66 6f 72 20 64 69 73 70 6c 61 79 20 70 75 72 70 6f 73 65 73 2e | ed,.except.for.display.purposes. |
| 15b660 | 20 54 68 65 20 73 65 72 76 65 72 20 69 73 20 64 69 73 63 61 72 64 65 64 20 62 79 20 74 68 65 20 | .The.server.is.discarded.by.the. |
| 15b680 | 73 65 6c 65 63 74 69 6f 6e 20 61 6c 67 6f 72 69 74 68 6d 2e 00 60 60 6e 6f 74 72 61 63 6b 60 60 | selection.algorithm..``notrack`` |
| 15b6a0 | 3a 20 69 67 6e 6f 72 65 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 72 61 63 6b 69 6e 67 20 73 79 73 | :.ignore.connection.tracking.sys |
| 15b6c0 | 74 65 6d 2e 20 54 68 69 73 20 61 63 74 69 6f 6e 20 69 73 20 6f 6e 6c 79 20 61 76 61 69 6c 61 62 | tem..This.action.is.only.availab |
| 15b6e0 | 6c 65 20 69 6e 20 70 72 65 72 6f 75 74 69 6e 67 20 63 68 61 69 6e 2e 00 60 60 6e 74 73 60 60 20 | le.in.prerouting.chain..``nts``. |
| 15b700 | 65 6e 61 62 6c 65 73 20 4e 65 74 77 6f 72 6b 20 54 69 6d 65 20 53 65 63 75 72 69 74 79 20 28 4e | enables.Network.Time.Security.(N |
| 15b720 | 54 53 29 20 66 6f 72 20 74 68 65 20 73 65 72 76 65 72 20 61 73 20 73 70 65 63 69 66 69 65 64 20 | TS).for.the.server.as.specified. |
| 15b740 | 69 6e 20 3a 72 66 63 3a 60 38 39 31 35 60 00 60 60 6f 70 74 69 6f 6e 73 60 60 00 60 60 6f 73 70 | in.:rfc:`8915`.``options``.``osp |
| 15b760 | 66 60 60 20 2d 20 4f 70 65 6e 20 53 68 6f 72 74 65 73 74 20 50 61 74 68 20 46 69 72 73 74 20 28 | f``.-.Open.Shortest.Path.First.( |
| 15b780 | 4f 53 50 46 76 32 29 00 60 60 6f 73 70 66 76 33 60 60 20 2d 20 4f 70 65 6e 20 53 68 6f 72 74 65 | OSPFv2).``ospfv3``.-.Open.Shorte |
| 15b7a0 | 73 74 20 50 61 74 68 20 46 69 72 73 74 20 28 49 50 76 36 29 20 28 4f 53 50 46 76 33 29 00 60 60 | st.Path.First.(IPv6).(OSPFv3).`` |
| 15b7c0 | 6f 75 74 60 60 3a 20 52 75 6c 65 73 65 74 20 66 6f 72 20 66 6f 72 77 61 72 64 65 64 20 70 61 63 | out``:.Ruleset.for.forwarded.pac |
| 15b7e0 | 6b 65 74 73 20 6f 6e 20 61 6e 20 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 00 60 60 | kets.on.an.outbound.interface.`` |
| 15b800 | 70 61 73 73 69 76 65 60 60 20 54 68 65 20 64 72 69 76 65 72 20 61 6c 6c 6f 77 73 20 74 68 65 20 | passive``.The.driver.allows.the. |
| 15b820 | 73 79 73 74 65 6d 20 67 6f 76 65 72 6e 6f 72 20 74 6f 20 6d 61 6e 61 67 65 20 43 50 55 20 66 72 | system.governor.to.manage.CPU.fr |
| 15b840 | 65 71 75 65 6e 63 79 20 77 68 69 6c 65 20 70 72 6f 76 69 64 69 6e 67 20 61 76 61 69 6c 61 62 6c | equency.while.providing.availabl |
| 15b860 | 65 20 70 65 72 66 6f 72 6d 61 6e 63 65 20 73 74 61 74 65 73 2e 00 60 60 70 61 73 73 70 68 72 61 | e.performance.states..``passphra |
| 15b880 | 73 65 60 60 20 2d 20 6c 6f 63 61 6c 20 70 72 69 76 61 74 65 20 6b 65 79 20 70 61 73 73 70 68 72 | se``.-.local.private.key.passphr |
| 15b8a0 | 61 73 65 00 60 60 70 61 73 73 70 68 72 61 73 65 60 60 20 2d 20 70 72 69 76 61 74 65 20 6b 65 79 | ase.``passphrase``.-.private.key |
| 15b8c0 | 20 70 61 73 73 70 68 72 61 73 65 2c 20 69 66 20 6e 65 65 64 65 64 2e 00 60 60 70 61 73 73 77 6f | .passphrase,.if.needed..``passwo |
| 15b8e0 | 72 64 60 60 20 2d 20 70 61 73 73 70 68 72 61 73 65 20 70 72 69 76 61 74 65 20 6b 65 79 2c 20 69 | rd``.-.passphrase.private.key,.i |
| 15b900 | 66 20 6e 65 65 64 65 64 2e 00 60 60 70 65 65 72 60 60 20 69 73 20 75 73 65 64 20 66 6f 72 20 74 | f.needed..``peer``.is.used.for.t |
| 15b920 | 68 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 | he.VyOS.CLI.command.to.identify. |
| 15b940 | 74 68 65 20 57 69 72 65 47 75 61 72 64 20 70 65 65 72 20 77 68 65 72 65 20 74 68 69 73 20 73 65 | the.WireGuard.peer.where.this.se |
| 15b960 | 63 72 65 64 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 60 60 70 65 65 72 60 60 20 69 73 20 | cred.is.to.be.used..``peer``.is. |
| 15b980 | 75 73 65 64 20 66 6f 72 20 74 68 65 20 56 79 4f 53 20 43 4c 49 20 63 6f 6d 6d 61 6e 64 20 74 6f | used.for.the.VyOS.CLI.command.to |
| 15b9a0 | 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 57 69 72 65 47 75 61 72 64 20 70 65 65 72 20 77 68 65 | .identify.the.WireGuard.peer.whe |
| 15b9c0 | 72 65 20 74 68 69 73 20 73 65 63 72 65 74 20 69 73 20 74 6f 20 62 65 20 75 73 65 64 2e 00 60 60 | re.this.secret.is.to.be.used..`` |
| 15b9e0 | 70 65 72 69 6f 64 60 60 3a 20 54 69 6d 65 20 77 69 6e 64 6f 77 20 66 6f 72 20 72 61 74 65 20 63 | period``:.Time.window.for.rate.c |
| 15ba00 | 61 6c 63 75 6c 61 74 69 6f 6e 2e 20 50 6f 73 73 69 62 6c 65 20 76 61 6c 75 65 73 3a 20 60 60 73 | alculation..Possible.values:.``s |
| 15ba20 | 65 63 6f 6e 64 60 60 20 28 6f 6e 65 20 73 65 63 6f 6e 64 29 2c 20 60 60 6d 69 6e 75 74 65 60 60 | econd``.(one.second),.``minute`` |
| 15ba40 | 20 28 6f 6e 65 20 6d 69 6e 75 74 65 29 2c 20 60 60 68 6f 75 72 60 60 20 28 6f 6e 65 20 68 6f 75 | .(one.minute),.``hour``.(one.hou |
| 15ba60 | 72 29 2e 20 44 65 66 61 75 6c 74 20 69 73 20 60 60 73 65 63 6f 6e 64 60 60 2e 00 60 60 70 66 73 | r)..Default.is.``second``..``pfs |
| 15ba80 | 60 60 20 77 68 65 74 68 65 72 20 50 65 72 66 65 63 74 20 46 6f 72 77 61 72 64 20 53 65 63 72 65 | ``.whether.Perfect.Forward.Secre |
| 15baa0 | 63 79 20 6f 66 20 6b 65 79 73 20 69 73 20 64 65 73 69 72 65 64 20 6f 6e 20 74 68 65 20 63 6f 6e | cy.of.keys.is.desired.on.the.con |
| 15bac0 | 6e 65 63 74 69 6f 6e 27 73 20 6b 65 79 69 6e 67 20 63 68 61 6e 6e 65 6c 20 61 6e 64 20 64 65 66 | nection's.keying.channel.and.def |
| 15bae0 | 69 6e 65 73 20 61 20 44 69 66 66 69 65 2d 48 65 6c 6c 6d 61 6e 20 67 72 6f 75 70 20 66 6f 72 20 | ines.a.Diffie-Hellman.group.for. |
| 15bb00 | 50 46 53 3a 00 60 60 70 67 73 71 6c 60 60 20 50 6f 73 74 67 72 65 53 51 4c 20 70 72 6f 74 6f 63 | PFS:.``pgsql``.PostgreSQL.protoc |
| 15bb20 | 6f 6c 20 63 68 65 63 6b 2e 00 60 60 70 6f 6f 6c 60 60 20 6d 6f 62 69 6c 69 7a 65 73 20 70 65 72 | ol.check..``pool``.mobilizes.per |
| 15bb40 | 73 69 73 74 65 6e 74 20 63 6c 69 65 6e 74 20 6d 6f 64 65 20 61 73 73 6f 63 69 61 74 69 6f 6e 20 | sistent.client.mode.association. |
| 15bb60 | 77 69 74 68 20 61 20 6e 75 6d 62 65 72 20 6f 66 20 72 65 6d 6f 74 65 20 73 65 72 76 65 72 73 2e | with.a.number.of.remote.servers. |
| 15bb80 | 00 60 60 70 6f 72 74 60 60 20 20 50 6f 72 74 20 6e 75 6d 62 65 72 2e 00 60 60 70 6f 72 74 60 60 | .``port``..Port.number..``port`` |
| 15bba0 | 20 2d 20 64 65 66 69 6e 65 20 70 6f 72 74 2e 20 48 61 76 65 20 65 66 66 65 63 74 20 6f 6e 6c 79 | .-.define.port..Have.effect.only |
| 15bbc0 | 20 77 68 65 6e 20 75 73 65 64 20 74 6f 67 65 74 68 65 72 20 77 69 74 68 20 60 60 70 72 65 66 69 | .when.used.together.with.``prefi |
| 15bbe0 | 78 60 60 3b 00 60 60 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 60 60 20 2d 20 75 73 65 | x``;.``pre-shared-secret``.-.use |
| 15bc00 | 20 70 72 65 64 65 66 69 6e 65 64 20 73 68 61 72 65 64 20 73 65 63 72 65 74 20 70 68 72 61 73 65 | .predefined.shared.secret.phrase |
| 15bc20 | 3b 00 60 60 70 72 65 66 65 72 60 60 20 6d 61 72 6b 73 20 74 68 65 20 73 65 72 76 65 72 20 61 73 | ;.``prefer``.marks.the.server.as |
| 15bc40 | 20 70 72 65 66 65 72 72 65 64 2e 20 41 6c 6c 20 6f 74 68 65 72 20 74 68 69 6e 67 73 20 62 65 69 | .preferred..All.other.things.bei |
| 15bc60 | 6e 67 20 65 71 75 61 6c 2c 20 74 68 69 73 20 68 6f 73 74 20 77 69 6c 6c 20 62 65 20 63 68 6f 73 | ng.equal,.this.host.will.be.chos |
| 15bc80 | 65 6e 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 7a 61 74 69 6f 6e 20 61 6d 6f 6e 67 20 61 20 73 | en.for.synchronization.among.a.s |
| 15bca0 | 65 74 20 6f 66 20 63 6f 72 72 65 63 74 6c 79 20 6f 70 65 72 61 74 69 6e 67 20 68 6f 73 74 73 2e | et.of.correctly.operating.hosts. |
| 15bcc0 | 00 60 60 70 72 65 66 69 78 60 60 20 2d 20 49 50 20 6e 65 74 77 6f 72 6b 20 61 74 20 6c 6f 63 61 | .``prefix``.-.IP.network.at.loca |
| 15bce0 | 6c 20 73 69 64 65 2e 00 60 60 70 72 65 66 69 78 60 60 20 2d 20 49 50 20 6e 65 74 77 6f 72 6b 20 | l.side..``prefix``.-.IP.network. |
| 15bd00 | 61 74 20 72 65 6d 6f 74 65 20 73 69 64 65 2e 00 60 60 70 72 66 60 60 20 70 73 65 75 64 6f 2d 72 | at.remote.side..``prf``.pseudo-r |
| 15bd20 | 61 6e 64 6f 6d 20 66 75 6e 63 74 69 6f 6e 2e 00 60 60 70 72 69 6f 72 69 74 79 60 60 20 2d 20 41 | andom.function..``priority``.-.A |
| 15bd40 | 64 64 20 70 72 69 6f 72 69 74 79 20 66 6f 72 20 70 6f 6c 69 63 79 2d 62 61 73 65 64 20 49 50 53 | dd.priority.for.policy-based.IPS |
| 15bd60 | 65 63 20 56 50 4e 20 74 75 6e 6e 65 6c 73 28 6c 6f 77 65 73 74 20 76 61 6c 75 65 20 6d 6f 72 65 | ec.VPN.tunnels(lowest.value.more |
| 15bd80 | 20 70 72 65 66 65 72 61 62 6c 65 29 00 60 60 70 72 6f 63 65 73 73 6f 72 2e 6d 61 78 5f 63 73 74 | .preferable).``processor.max_cst |
| 15bda0 | 61 74 65 3d 31 60 60 20 4c 69 6d 69 74 20 70 72 6f 63 65 73 73 6f 72 20 74 6f 20 6d 61 78 69 6d | ate=1``.Limit.processor.to.maxim |
| 15bdc0 | 75 6d 20 43 2d 73 74 61 74 65 20 31 00 60 60 70 72 6f 70 6f 73 61 6c 60 60 20 45 53 50 2d 67 72 | um.C-state.1.``proposal``.ESP-gr |
| 15bde0 | 6f 75 70 20 70 72 6f 70 6f 73 61 6c 20 77 69 74 68 20 6e 75 6d 62 65 72 20 3c 31 2d 36 35 35 33 | oup.proposal.with.number.<1-6553 |
| 15be00 | 35 3e 3a 00 60 60 70 72 6f 70 6f 73 61 6c 60 60 20 74 68 65 20 6c 69 73 74 20 6f 66 20 70 72 6f | 5>:.``proposal``.the.list.of.pro |
| 15be20 | 70 6f 73 61 6c 73 20 61 6e 64 20 74 68 65 69 72 20 70 61 72 61 6d 65 74 65 72 73 3a 00 60 60 70 | posals.and.their.parameters:.``p |
| 15be40 | 72 6f 74 6f 63 6f 6c 60 60 20 2d 20 64 65 66 69 6e 65 20 74 68 65 20 70 72 6f 74 6f 63 6f 6c 20 | rotocol``.-.define.the.protocol. |
| 15be60 | 66 6f 72 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f 75 6c 64 20 | for.match.traffic,.which.should. |
| 15be80 | 62 65 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 20 70 65 | be.encrypted.and.send.to.this.pe |
| 15bea0 | 65 72 3b 00 60 60 70 73 6b 60 60 20 2d 20 50 72 65 73 68 61 72 65 64 20 73 65 63 72 65 74 20 6b | er;.``psk``.-.Preshared.secret.k |
| 15bec0 | 65 79 20 6e 61 6d 65 3a 00 60 60 70 74 70 60 60 20 65 6e 61 62 6c 65 73 20 74 68 65 20 50 54 50 | ey.name:.``ptp``.enables.the.PTP |
| 15bee0 | 20 74 72 61 6e 73 70 6f 72 74 20 66 6f 72 20 74 68 69 73 20 73 65 72 76 65 72 20 28 73 65 65 20 | .transport.for.this.server.(see. |
| 15bf00 | 3a 72 65 66 3a 60 70 74 70 2d 74 72 61 6e 73 70 6f 72 74 60 29 2e 00 60 60 71 75 65 75 65 60 60 | :ref:`ptp-transport`)..``queue`` |
| 15bf20 | 3a 20 45 6e 71 75 65 75 65 20 70 61 63 6b 65 74 20 74 6f 20 75 73 65 72 73 70 61 63 65 2e 00 60 | :.Enqueue.packet.to.userspace..` |
| 15bf40 | 60 72 61 74 65 60 60 3a 20 4e 75 6d 62 65 72 20 6f 66 20 70 61 63 6b 65 74 73 2e 20 44 65 66 61 | `rate``:.Number.of.packets..Defa |
| 15bf60 | 75 6c 74 20 35 2e 00 60 60 72 65 63 65 69 76 65 2d 66 69 6c 74 65 72 20 5b 61 6c 6c 7c 6e 74 70 | ult.5..``receive-filter.[all|ntp |
| 15bf80 | 7c 70 74 70 7c 6e 6f 6e 65 5d 60 60 20 73 65 6c 65 63 74 73 20 74 68 65 20 72 65 63 65 69 76 65 | |ptp|none]``.selects.the.receive |
| 15bfa0 | 20 66 69 6c 74 65 72 20 6d 6f 64 65 2c 20 77 68 69 63 68 20 63 6f 6e 74 72 6f 6c 73 20 77 68 69 | .filter.mode,.which.controls.whi |
| 15bfc0 | 63 68 20 69 6e 62 6f 75 6e 64 20 70 61 63 6b 65 74 73 20 74 68 65 20 4e 49 43 20 61 70 70 6c 69 | ch.inbound.packets.the.NIC.appli |
| 15bfe0 | 65 73 20 74 69 6d 65 73 74 61 6d 70 73 20 74 6f 2e 20 54 68 65 20 73 65 6c 65 63 74 65 64 20 6d | es.timestamps.to..The.selected.m |
| 15c000 | 6f 64 65 20 6d 75 73 74 20 62 65 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 4e 49 43 | ode.must.be.supported.by.the.NIC |
| 15c020 | 2c 20 6f 72 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 77 69 6c 6c 20 62 65 20 64 69 73 61 62 6c | ,.or.timestamping.will.be.disabl |
| 15c040 | 65 64 20 66 6f 72 20 74 68 65 20 69 6e 74 65 72 66 61 63 65 2e 00 60 60 72 65 64 69 73 60 60 20 | ed.for.the.interface..``redis``. |
| 15c060 | 52 65 64 69 73 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 60 60 72 65 6a 65 63 74 60 60 | Redis.protocol.check..``reject`` |
| 15c080 | 3a 20 72 65 6a 65 63 74 20 74 68 65 20 70 61 63 6b 65 74 2e 00 60 60 72 65 6d 6f 74 65 2d 61 64 | :.reject.the.packet..``remote-ad |
| 15c0a0 | 64 72 65 73 73 60 60 20 2d 20 72 65 6d 6f 74 65 20 49 50 20 61 64 64 72 65 73 73 20 6f 72 20 68 | dress``.-.remote.IP.address.or.h |
| 15c0c0 | 6f 73 74 6e 61 6d 65 20 66 6f 72 20 49 50 53 65 63 20 63 6f 6e 6e 65 63 74 69 6f 6e 2e 20 49 50 | ostname.for.IPSec.connection..IP |
| 15c0e0 | 76 34 20 6f 72 20 49 50 76 36 20 61 64 64 72 65 73 73 20 69 73 20 75 73 65 64 20 77 68 65 6e 20 | v4.or.IPv6.address.is.used.when. |
| 15c100 | 61 20 70 65 65 72 20 68 61 73 20 61 20 70 75 62 6c 69 63 20 73 74 61 74 69 63 20 49 50 20 61 64 | a.peer.has.a.public.static.IP.ad |
| 15c120 | 64 72 65 73 73 2e 20 48 6f 73 74 6e 61 6d 65 20 69 73 20 61 20 44 4e 53 20 6e 61 6d 65 20 77 68 | dress..Hostname.is.a.DNS.name.wh |
| 15c140 | 69 63 68 20 63 6f 75 6c 64 20 62 65 20 75 73 65 64 20 77 68 65 6e 20 61 20 70 65 65 72 20 68 61 | ich.could.be.used.when.a.peer.ha |
| 15c160 | 73 20 61 20 70 75 62 6c 69 63 20 49 50 20 61 64 64 72 65 73 73 20 61 6e 64 20 44 4e 53 20 6e 61 | s.a.public.IP.address.and.DNS.na |
| 15c180 | 6d 65 2c 20 62 75 74 20 61 6e 20 49 50 20 61 64 64 72 65 73 73 20 63 6f 75 6c 64 20 62 65 20 63 | me,.but.an.IP.address.could.be.c |
| 15c1a0 | 68 61 6e 67 65 64 20 66 72 6f 6d 20 74 69 6d 65 20 74 6f 20 74 69 6d 65 2e 00 60 60 72 65 6d 6f | hanged.from.time.to.time..``remo |
| 15c1c0 | 74 65 2d 69 64 60 60 20 2d 20 64 65 66 69 6e 65 20 61 6e 20 49 44 20 66 6f 72 20 72 65 6d 6f 74 | te-id``.-.define.an.ID.for.remot |
| 15c1e0 | 65 20 70 65 65 72 2c 20 69 6e 73 74 65 61 64 20 6f 66 20 75 73 69 6e 67 20 70 65 65 72 20 6e 61 | e.peer,.instead.of.using.peer.na |
| 15c200 | 6d 65 20 6f 72 20 61 64 64 72 65 73 73 2e 20 55 73 65 66 75 6c 20 69 6e 20 63 61 73 65 20 69 66 | me.or.address..Useful.in.case.if |
| 15c220 | 20 74 68 65 20 72 65 6d 6f 74 65 20 70 65 65 72 20 69 73 20 62 65 68 69 6e 64 20 4e 41 54 20 6f | .the.remote.peer.is.behind.NAT.o |
| 15c240 | 72 20 69 66 20 60 60 6d 6f 64 65 20 78 35 30 39 60 60 20 69 73 20 75 73 65 64 3b 00 60 60 72 65 | r.if.``mode.x509``.is.used;.``re |
| 15c260 | 6d 6f 74 65 2d 6b 65 79 60 60 20 2d 20 6e 61 6d 65 20 6f 66 20 50 4b 49 20 6b 65 79 2d 70 61 69 | mote-key``.-.name.of.PKI.key-pai |
| 15c280 | 72 20 77 69 74 68 20 72 65 6d 6f 74 65 20 70 75 62 6c 69 63 20 6b 65 79 00 60 60 72 65 6d 6f 74 | r.with.remote.public.key.``remot |
| 15c2a0 | 65 60 60 20 2d 20 64 65 66 69 6e 65 20 74 68 65 20 72 65 6d 6f 74 65 20 64 65 73 74 69 6e 61 74 | e``.-.define.the.remote.destinat |
| 15c2c0 | 69 6f 6e 20 66 6f 72 20 6d 61 74 63 68 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 73 68 6f | ion.for.match.traffic,.which.sho |
| 15c2e0 | 75 6c 64 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 | uld.be.encrypted.and.send.to.thi |
| 15c300 | 73 20 70 65 65 72 3a 00 60 60 72 65 70 6c 61 79 2d 77 69 6e 64 6f 77 60 60 20 2d 20 49 50 73 65 | s.peer:.``replay-window``.-.IPse |
| 15c320 | 63 20 72 65 70 6c 61 79 20 77 69 6e 64 6f 77 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 66 6f 72 | c.replay.window.to.configure.for |
| 15c340 | 20 74 68 69 73 20 43 48 49 4c 44 5f 53 41 20 28 64 65 66 61 75 6c 74 3a 20 33 32 29 2c 20 61 20 | .this.CHILD_SA.(default:.32),.a. |
| 15c360 | 76 61 6c 75 65 20 6f 66 20 30 20 64 69 73 61 62 6c 65 73 20 49 50 73 65 63 20 72 65 70 6c 61 79 | value.of.0.disables.IPsec.replay |
| 15c380 | 20 70 72 6f 74 65 63 74 69 6f 6e 00 60 60 72 65 71 2d 73 73 6c 2d 73 6e 69 60 60 20 53 53 4c 20 | .protection.``req-ssl-sni``.SSL. |
| 15c3a0 | 53 65 72 76 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 74 69 6f 6e 20 28 53 4e 49 29 20 72 65 71 | Server.Name.Indication.(SNI).req |
| 15c3c0 | 75 65 73 74 20 6d 61 74 63 68 00 60 60 72 65 73 70 2d 74 69 6d 65 60 60 3a 20 74 68 65 20 6d 61 | uest.match.``resp-time``:.the.ma |
| 15c3e0 | 78 69 6d 75 6d 20 72 65 73 70 6f 6e 73 65 20 74 69 6d 65 20 66 6f 72 20 70 69 6e 67 20 69 6e 20 | ximum.response.time.for.ping.in. |
| 15c400 | 73 65 63 6f 6e 64 73 2e 20 52 61 6e 67 65 20 31 2e 2e 2e 33 30 2c 20 64 65 66 61 75 6c 74 20 35 | seconds..Range.1...30,.default.5 |
| 15c420 | 00 60 60 72 65 73 70 6f 6e 64 60 60 20 2d 20 64 6f 65 73 20 6e 6f 74 20 74 72 79 20 74 6f 20 69 | .``respond``.-.does.not.try.to.i |
| 15c440 | 6e 69 74 69 61 74 65 20 61 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 74 6f 20 61 20 72 65 6d 6f 74 65 | nitiate.a.connection.to.a.remote |
| 15c460 | 20 70 65 65 72 2e 20 49 6e 20 74 68 69 73 20 6d 6f 64 65 2c 20 74 68 65 20 49 50 53 65 63 20 73 | .peer..In.this.mode,.the.IPSec.s |
| 15c480 | 65 73 73 69 6f 6e 20 77 69 6c 6c 20 62 65 20 65 73 74 61 62 6c 69 73 68 65 64 20 6f 6e 6c 79 20 | ession.will.be.established.only. |
| 15c4a0 | 61 66 74 65 72 20 69 6e 69 74 69 61 74 69 6f 6e 20 66 72 6f 6d 20 61 20 72 65 6d 6f 74 65 20 70 | after.initiation.from.a.remote.p |
| 15c4c0 | 65 65 72 2e 20 43 6f 75 6c 64 20 62 65 20 75 73 65 66 75 6c 20 77 68 65 6e 20 74 68 65 72 65 20 | eer..Could.be.useful.when.there. |
| 15c4e0 | 69 73 20 6e 6f 20 64 69 72 65 63 74 20 63 6f 6e 6e 65 63 74 69 76 69 74 79 20 74 6f 20 74 68 65 | is.no.direct.connectivity.to.the |
| 15c500 | 20 70 65 65 72 20 64 75 65 20 74 6f 20 66 69 72 65 77 61 6c 6c 20 6f 72 20 4e 41 54 20 69 6e 20 | .peer.due.to.firewall.or.NAT.in. |
| 15c520 | 74 68 65 20 6d 69 64 64 6c 65 20 6f 66 20 74 68 65 20 6c 6f 63 61 6c 20 61 6e 64 20 72 65 6d 6f | the.middle.of.the.local.and.remo |
| 15c540 | 74 65 20 73 69 64 65 2e 00 60 60 72 65 73 74 61 72 74 60 60 20 69 6d 6d 65 64 69 61 74 65 6c 79 | te.side..``restart``.immediately |
| 15c560 | 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 43 48 49 4c 44 | .tries.to.re-negotiate.the.CHILD |
| 15c580 | 5f 53 41 20 75 6e 64 65 72 20 61 20 66 72 65 73 68 20 49 4b 45 5f 53 41 3b 00 60 60 72 65 73 74 | _SA.under.a.fresh.IKE_SA;.``rest |
| 15c5a0 | 61 72 74 60 60 20 73 65 74 20 61 63 74 69 6f 6e 20 74 6f 20 72 65 73 74 61 72 74 3b 00 60 60 72 | art``.set.action.to.restart;.``r |
| 15c5c0 | 65 74 75 72 6e 60 60 3a 20 52 65 74 75 72 6e 20 66 72 6f 6d 20 74 68 65 20 63 75 72 72 65 6e 74 | eturn``:.Return.from.the.current |
| 15c5e0 | 20 63 68 61 69 6e 20 61 6e 64 20 63 6f 6e 74 69 6e 75 65 20 61 74 20 74 68 65 20 6e 65 78 74 20 | .chain.and.continue.at.the.next. |
| 15c600 | 72 75 6c 65 20 6f 66 20 74 68 65 20 6c 61 73 74 20 63 68 61 69 6e 2e 00 60 60 72 69 70 60 60 20 | rule.of.the.last.chain..``rip``. |
| 15c620 | 2d 20 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 28 | -.Routing.Information.Protocol.( |
| 15c640 | 52 49 50 29 00 60 60 72 69 70 6e 67 60 60 20 2d 20 52 6f 75 74 69 6e 67 20 49 6e 66 6f 72 6d 61 | RIP).``ripng``.-.Routing.Informa |
| 15c660 | 74 69 6f 6e 20 50 72 6f 74 6f 63 6f 6c 20 6e 65 78 74 2d 67 65 6e 65 72 61 74 69 6f 6e 20 28 49 | tion.Protocol.next-generation.(I |
| 15c680 | 50 76 36 29 20 28 52 49 50 6e 67 29 00 60 60 72 6f 75 6e 64 2d 72 6f 62 69 6e 60 60 20 2d 20 52 | Pv6).(RIPng).``round-robin``.-.R |
| 15c6a0 | 6f 75 6e 64 2d 72 6f 62 69 6e 20 70 6f 6c 69 63 79 3a 20 54 72 61 6e 73 6d 69 74 20 70 61 63 6b | ound-robin.policy:.Transmit.pack |
| 15c6c0 | 65 74 73 20 69 6e 20 73 65 71 75 65 6e 74 69 61 6c 20 6f 72 64 65 72 20 66 72 6f 6d 20 74 68 65 | ets.in.sequential.order.from.the |
| 15c6e0 | 20 66 69 72 73 74 20 61 76 61 69 6c 61 62 6c 65 20 73 6c 61 76 65 20 74 68 72 6f 75 67 68 20 74 | .first.available.slave.through.t |
| 15c700 | 68 65 20 6c 61 73 74 2e 00 60 60 72 6f 75 6e 64 2d 72 6f 62 69 6e 60 60 20 44 69 73 74 72 69 62 | he.last..``round-robin``.Distrib |
| 15c720 | 75 74 65 73 20 72 65 71 75 65 73 74 73 20 69 6e 20 61 20 63 69 72 63 75 6c 61 72 20 6d 61 6e 6e | utes.requests.in.a.circular.mann |
| 15c740 | 65 72 2c 20 73 65 71 75 65 6e 74 69 61 6c 6c 79 20 73 65 6e 64 69 6e 67 20 65 61 63 68 20 72 65 | er,.sequentially.sending.each.re |
| 15c760 | 71 75 65 73 74 20 74 6f 20 74 68 65 20 6e 65 78 74 20 73 65 72 76 65 72 20 69 6e 20 6c 69 6e 65 | quest.to.the.next.server.in.line |
| 15c780 | 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 72 2d 74 72 61 6e 73 6c 61 74 65 64 2d 76 34 60 60 20 | .``route-filter-translated-v4``. |
| 15c7a0 | 2d 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 20 76 61 6c 75 65 | -...Well-known.communities.value |
| 15c7c0 | 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f 54 52 41 4e 53 4c 41 54 45 44 5f 76 34 20 30 78 46 46 | .ROUTE_FILTER_TRANSLATED_v4.0xFF |
| 15c7e0 | 46 46 30 30 30 32 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 72 2d 74 72 61 6e 73 6c 61 74 65 64 | FF0002.``route-filter-translated |
| 15c800 | 2d 76 36 60 60 20 2d 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 73 | -v6``.-...Well-known.communities |
| 15c820 | 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f 54 52 41 4e 53 4c 41 54 45 44 5f 76 | .value.ROUTE_FILTER_TRANSLATED_v |
| 15c840 | 36 20 30 78 46 46 46 46 30 30 30 34 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 72 2d 76 34 60 60 | 6.0xFFFF0004.``route-filter-v4`` |
| 15c860 | 20 2d 20 20 20 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 | .-..............Well-known.commu |
| 15c880 | 6e 69 74 69 65 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f 76 34 20 30 78 46 | nities.value.ROUTE_FILTER_v4.0xF |
| 15c8a0 | 46 46 46 30 30 30 33 00 60 60 72 6f 75 74 65 2d 66 69 6c 74 65 72 2d 76 36 60 60 20 2d 20 20 20 | FFF0003.``route-filter-v6``.-... |
| 15c8c0 | 20 20 20 20 20 20 20 20 20 20 20 57 65 6c 6c 2d 6b 6e 6f 77 6e 20 63 6f 6d 6d 75 6e 69 74 69 65 | ...........Well-known.communitie |
| 15c8e0 | 73 20 76 61 6c 75 65 20 52 4f 55 54 45 5f 46 49 4c 54 45 52 5f 76 36 20 30 78 46 46 46 46 30 30 | s.value.ROUTE_FILTER_v6.0xFFFF00 |
| 15c900 | 30 35 00 60 60 72 73 61 2d 6b 65 79 2d 6e 61 6d 65 60 60 20 2d 20 73 68 61 72 65 64 20 52 53 41 | 05.``rsa-key-name``.-.shared.RSA |
| 15c920 | 20 6b 65 79 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 20 54 68 65 20 6b 65 79 | .key.for.authentication..The.key |
| 15c940 | 20 6d 75 73 74 20 62 65 20 64 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 60 60 73 65 74 20 76 70 | .must.be.defined.in.the.``set.vp |
| 15c960 | 6e 20 72 73 61 2d 6b 65 79 73 60 60 20 73 65 63 74 69 6f 6e 3b 00 60 60 72 73 61 60 60 20 2d 20 | n.rsa-keys``.section;.``rsa``.-. |
| 15c980 | 6f 70 74 69 6f 6e 73 20 66 6f 72 20 52 53 41 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d | options.for.RSA.authentication.m |
| 15c9a0 | 6f 64 65 3a 00 60 60 72 73 61 60 60 20 2d 20 75 73 65 20 73 69 6d 70 6c 65 20 73 68 61 72 65 64 | ode:.``rsa``.-.use.simple.shared |
| 15c9c0 | 20 52 53 41 20 6b 65 79 2e 00 60 60 72 73 61 60 60 20 2d 20 75 73 65 20 73 69 6d 70 6c 65 20 73 | .RSA.key..``rsa``.-.use.simple.s |
| 15c9e0 | 68 61 72 65 64 20 52 53 41 20 6b 65 79 2e 20 54 68 65 20 6b 65 79 20 6d 75 73 74 20 62 65 20 64 | hared.RSA.key..The.key.must.be.d |
| 15ca00 | 65 66 69 6e 65 64 20 69 6e 20 74 68 65 20 60 60 73 65 74 20 76 70 6e 20 72 73 61 2d 6b 65 79 73 | efined.in.the.``set.vpn.rsa-keys |
| 15ca20 | 60 60 20 73 65 63 74 69 6f 6e 3b 00 60 60 73 65 63 72 65 74 60 60 20 2d 20 70 72 65 64 65 66 69 | ``.section;.``secret``.-.predefi |
| 15ca40 | 6e 65 64 20 73 68 61 72 65 64 20 73 65 63 72 65 74 2e 20 55 73 65 64 20 69 66 20 63 6f 6e 66 69 | ned.shared.secret..Used.if.confi |
| 15ca60 | 67 75 72 65 64 20 6d 6f 64 65 20 60 60 70 72 65 2d 73 68 61 72 65 64 2d 73 65 63 72 65 74 60 60 | gured.mode.``pre-shared-secret`` |
| 15ca80 | 3b 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 66 6f 72 77 61 72 64 20 | ;.``set.firewall.bridge.forward. |
| 15caa0 | 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 | filter....``..``set.firewall.bri |
| 15cac0 | 64 67 65 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 | dge.input.filter....``..``set.fi |
| 15cae0 | 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 | rewall.bridge.output.filter....` |
| 15cb00 | 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 62 72 69 64 67 65 20 70 72 65 72 6f 75 74 | `..``set.firewall.bridge.prerout |
| 15cb20 | 69 6e 67 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c | ing.filter....``..``set.firewall |
| 15cb40 | 20 69 70 76 34 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 | .ipv4.forward.filter....``..``se |
| 15cb60 | 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e | t.firewall.ipv4.input.filter.... |
| 15cb80 | 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 34 20 6f 75 74 70 75 74 20 66 | ``..``set.firewall.ipv4.output.f |
| 15cba0 | 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 | ilter....``..``set.firewall.ipv6 |
| 15cbc0 | 20 66 6f 72 77 61 72 64 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 60 73 65 74 20 66 69 72 | .forward.filter....``..``set.fir |
| 15cbe0 | 65 77 61 6c 6c 20 69 70 76 36 20 69 6e 70 75 74 20 66 69 6c 74 65 72 20 2e 2e 2e 60 60 2e 00 60 | ewall.ipv6.input.filter....``..` |
| 15cc00 | 60 73 65 74 20 66 69 72 65 77 61 6c 6c 20 69 70 76 36 20 6f 75 74 70 75 74 20 66 69 6c 74 65 72 | `set.firewall.ipv6.output.filter |
| 15cc20 | 20 2e 2e 2e 60 60 2e 00 60 60 73 69 6e 67 6c 65 2d 75 73 65 72 2d 62 65 61 6d 66 6f 72 6d 65 65 | ....``..``single-user-beamformee |
| 15cc40 | 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 65 72 61 74 69 6f 6e 20 61 73 20 73 69 | ``.-.Support.for.operation.as.si |
| 15cc60 | 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 65 00 60 60 73 69 6e 67 6c 65 2d 75 73 | ngle.user.beamformee.``single-us |
| 15cc80 | 65 72 2d 62 65 61 6d 66 6f 72 6d 65 72 60 60 20 2d 20 53 75 70 70 6f 72 74 20 66 6f 72 20 6f 70 | er-beamformer``.-.Support.for.op |
| 15cca0 | 65 72 61 74 69 6f 6e 20 61 73 20 73 69 6e 67 6c 65 20 75 73 65 72 20 62 65 61 6d 66 6f 72 6d 65 | eration.as.single.user.beamforme |
| 15ccc0 | 72 00 60 60 73 6d 74 70 60 60 20 53 4d 54 50 20 70 72 6f 74 6f 63 6f 6c 20 63 68 65 63 6b 2e 00 | r.``smtp``.SMTP.protocol.check.. |
| 15cce0 | 60 60 73 6f 6e 6d 70 60 60 20 2d 20 4c 69 73 74 65 6e 20 66 6f 72 20 53 4f 4e 4d 50 20 66 6f 72 | ``sonmp``.-.Listen.for.SONMP.for |
| 15cd00 | 20 4e 6f 72 74 65 6c 20 72 6f 75 74 65 72 73 2f 73 77 69 74 63 68 65 73 00 60 60 73 6f 75 72 63 | .Nortel.routers/switches.``sourc |
| 15cd20 | 65 2d 61 64 64 72 65 73 73 60 60 20 44 69 73 74 72 69 62 75 74 65 73 20 72 65 71 75 65 73 74 73 | e-address``.Distributes.requests |
| 15cd40 | 20 62 61 73 65 64 20 6f 6e 20 74 68 65 20 73 6f 75 72 63 65 20 49 50 20 61 64 64 72 65 73 73 20 | .based.on.the.source.IP.address. |
| 15cd60 | 6f 66 20 74 68 65 20 63 6c 69 65 6e 74 00 60 60 73 73 68 2d 64 73 73 60 60 00 60 60 73 73 68 2d | of.the.client.``ssh-dss``.``ssh- |
| 15cd80 | 65 64 32 35 35 31 39 60 60 00 60 60 73 73 68 2d 72 73 61 20 41 41 41 41 42 33 4e 7a 61 43 31 79 | ed25519``.``ssh-rsa.AAAAB3NzaC1y |
| 15cda0 | 63 32 45 41 41 41 41 42 41 41 2e 2e 2e 56 42 44 35 6c 4b 77 45 57 42 20 75 73 65 72 6e 61 6d 65 | c2EAAAABAA...VBD5lKwEWB.username |
| 15cdc0 | 40 68 6f 73 74 2e 65 78 61 6d 70 6c 65 2e 63 6f 6d 60 60 00 60 60 73 73 68 2d 72 73 61 60 60 00 | @host.example.com``.``ssh-rsa``. |
| 15cde0 | 60 60 73 73 6c 2d 66 63 2d 73 6e 69 2d 65 6e 64 60 60 20 53 53 4c 20 66 72 6f 6e 74 65 6e 64 20 | ``ssl-fc-sni-end``.SSL.frontend. |
| 15ce00 | 6d 61 74 63 68 20 65 6e 64 20 6f 66 20 63 6f 6e 6e 65 63 74 69 6f 6e 20 53 65 72 76 65 72 20 4e | match.end.of.connection.Server.N |
| 15ce20 | 61 6d 65 00 60 60 73 73 6c 2d 66 63 2d 73 6e 69 60 60 20 53 53 4c 20 66 72 6f 6e 74 65 6e 64 20 | ame.``ssl-fc-sni``.SSL.frontend. |
| 15ce40 | 63 6f 6e 6e 65 63 74 69 6f 6e 20 53 65 72 76 65 72 20 4e 61 6d 65 20 49 6e 64 69 63 61 74 69 6f | connection.Server.Name.Indicatio |
| 15ce60 | 6e 20 6d 61 74 63 68 00 60 60 73 74 61 72 74 60 60 20 74 72 69 65 73 20 74 6f 20 69 6d 6d 65 64 | n.match.``start``.tries.to.immed |
| 15ce80 | 69 61 74 65 6c 79 20 72 65 2d 63 72 65 61 74 65 20 74 68 65 20 43 48 49 4c 44 5f 53 41 3b 00 60 | iately.re-create.the.CHILD_SA;.` |
| 15cea0 | 60 73 74 61 74 69 63 60 60 20 2d 20 53 74 61 74 69 63 61 6c 6c 79 20 63 6f 6e 66 69 67 75 72 65 | `static``.-.Statically.configure |
| 15cec0 | 64 20 72 6f 75 74 65 73 00 60 60 73 74 61 74 69 6f 6e 60 60 20 2d 20 43 6f 6e 6e 65 63 74 73 20 | d.routes.``station``.-.Connects. |
| 15cee0 | 74 6f 20 61 6e 6f 74 68 65 72 20 61 63 63 65 73 73 20 70 6f 69 6e 74 00 60 60 73 74 61 74 75 73 | to.another.access.point.``status |
| 15cf00 | 20 32 30 30 2d 33 39 39 60 60 20 45 78 70 65 63 74 69 6e 67 20 61 20 6e 6f 6e 2d 66 61 69 6c 75 | .200-399``.Expecting.a.non-failu |
| 15cf20 | 72 65 20 72 65 73 70 6f 6e 73 65 20 63 6f 64 65 00 60 60 73 74 61 74 75 73 20 32 30 30 60 60 20 | re.response.code.``status.200``. |
| 15cf40 | 45 78 70 65 63 74 69 6e 67 20 61 20 32 30 30 20 72 65 73 70 6f 6e 73 65 20 63 6f 64 65 00 60 60 | Expecting.a.200.response.code.`` |
| 15cf60 | 73 74 72 69 6e 67 20 73 75 63 63 65 73 73 60 60 20 45 78 70 65 63 74 69 6e 67 20 74 68 65 20 73 | string.success``.Expecting.the.s |
| 15cf80 | 74 72 69 6e 67 20 60 73 75 63 63 65 73 73 60 20 69 6e 20 74 68 65 20 72 65 73 70 6f 6e 73 65 20 | tring.`success`.in.the.response. |
| 15cfa0 | 62 6f 64 79 00 60 60 73 79 6e 70 72 6f 78 79 60 60 3a 20 73 79 6e 70 72 6f 78 79 20 74 68 65 20 | body.``synproxy``:.synproxy.the. |
| 15cfc0 | 70 61 63 6b 65 74 2e 00 60 60 73 79 73 63 74 6c 60 60 20 69 73 20 75 73 65 64 20 74 6f 20 6d 6f | packet..``sysctl``.is.used.to.mo |
| 15cfe0 | 64 69 66 79 20 6b 65 72 6e 65 6c 20 70 61 72 61 6d 65 74 65 72 73 20 61 74 20 72 75 6e 74 69 6d | dify.kernel.parameters.at.runtim |
| 15d000 | 65 2e 20 20 54 68 65 20 70 61 72 61 6d 65 74 65 72 73 20 61 76 61 69 6c 61 62 6c 65 20 61 72 65 | e...The.parameters.available.are |
| 15d020 | 20 74 68 6f 73 65 20 6c 69 73 74 65 64 20 75 6e 64 65 72 20 2f 70 72 6f 63 2f 73 79 73 2f 2e 00 | .those.listed.under./proc/sys/.. |
| 15d040 | 60 60 74 61 62 6c 65 20 31 30 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 | ``table.10``.Routing.table.used. |
| 15d060 | 66 6f 72 20 49 53 50 31 00 60 60 74 61 62 6c 65 20 31 30 60 60 20 52 6f 75 74 69 6e 67 20 74 61 | for.ISP1.``table.10``.Routing.ta |
| 15d080 | 62 6c 65 20 75 73 65 64 20 66 6f 72 20 56 4c 41 4e 20 31 30 20 28 31 39 32 2e 31 36 38 2e 31 38 | ble.used.for.VLAN.10.(192.168.18 |
| 15d0a0 | 38 2e 30 2f 32 34 29 00 60 60 74 61 62 6c 65 20 31 31 60 60 20 52 6f 75 74 69 6e 67 20 74 61 62 | 8.0/24).``table.11``.Routing.tab |
| 15d0c0 | 6c 65 20 75 73 65 64 20 66 6f 72 20 49 53 50 32 00 60 60 74 61 62 6c 65 20 31 31 60 60 20 52 6f | le.used.for.ISP2.``table.11``.Ro |
| 15d0e0 | 75 74 69 6e 67 20 74 61 62 6c 65 20 75 73 65 64 20 66 6f 72 20 56 4c 41 4e 20 31 31 20 28 31 39 | uting.table.used.for.VLAN.11.(19 |
| 15d100 | 32 2e 31 36 38 2e 31 38 39 2e 30 2f 32 34 29 00 60 60 74 61 62 6c 65 60 60 20 2d 20 4e 6f 6e 2d | 2.168.189.0/24).``table``.-.Non- |
| 15d120 | 6d 61 69 6e 20 4b 65 72 6e 65 6c 20 52 6f 75 74 69 6e 67 20 54 61 62 6c 65 00 60 60 74 61 72 67 | main.Kernel.Routing.Table.``targ |
| 15d140 | 65 74 60 60 3a 20 74 68 65 20 74 61 72 67 65 74 20 74 6f 20 62 65 20 73 65 6e 74 20 49 43 4d 50 | et``:.the.target.to.be.sent.ICMP |
| 15d160 | 20 70 61 63 6b 65 74 73 20 74 6f 2c 20 61 64 64 72 65 73 73 20 63 61 6e 20 62 65 20 61 6e 20 49 | .packets.to,.address.can.be.an.I |
| 15d180 | 50 76 34 20 61 64 64 72 65 73 73 20 6f 72 20 68 6f 73 74 6e 61 6d 65 00 60 60 74 65 73 74 2d 73 | Pv4.address.or.hostname.``test-s |
| 15d1a0 | 63 72 69 70 74 60 60 3a 20 41 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 73 63 72 69 70 74 20 6d | cript``:.A.user.defined.script.m |
| 15d1c0 | 75 73 74 20 72 65 74 75 72 6e 20 30 20 74 6f 20 62 65 20 63 6f 6e 73 69 64 65 72 65 64 20 73 75 | ust.return.0.to.be.considered.su |
| 15d1e0 | 63 63 65 73 73 66 75 6c 20 61 6e 64 20 6e 6f 6e 2d 7a 65 72 6f 20 74 6f 20 66 61 69 6c 2e 20 53 | ccessful.and.non-zero.to.fail..S |
| 15d200 | 63 72 69 70 74 73 20 61 72 65 20 6c 6f 63 61 74 65 64 20 69 6e 20 2f 63 6f 6e 66 69 67 2f 73 63 | cripts.are.located.in./config/sc |
| 15d220 | 72 69 70 74 73 2c 20 66 6f 72 20 64 69 66 66 65 72 65 6e 74 20 6c 6f 63 61 74 69 6f 6e 73 20 74 | ripts,.for.different.locations.t |
| 15d240 | 68 65 20 66 75 6c 6c 20 70 61 74 68 20 6e 65 65 64 73 20 74 6f 20 62 65 20 70 72 6f 76 69 64 65 | he.full.path.needs.to.be.provide |
| 15d260 | 64 00 60 60 74 68 72 65 73 68 6f 6c 64 60 60 3a 20 60 60 62 65 6c 6f 77 60 60 20 6f 72 20 60 60 | d.``threshold``:.``below``.or.`` |
| 15d280 | 61 62 6f 76 65 60 60 20 74 68 65 20 73 70 65 63 69 66 69 65 64 20 72 61 74 65 20 6c 69 6d 69 74 | above``.the.specified.rate.limit |
| 15d2a0 | 2e 00 60 60 74 68 72 6f 75 67 68 70 75 74 60 60 3a 20 41 20 73 65 72 76 65 72 20 70 72 6f 66 69 | ..``throughput``:.A.server.profi |
| 15d2c0 | 6c 65 20 66 6f 63 75 73 65 64 20 6f 6e 20 69 6d 70 72 6f 76 69 6e 67 20 6e 65 74 77 6f 72 6b 20 | le.focused.on.improving.network. |
| 15d2e0 | 74 68 72 6f 75 67 68 70 75 74 2e 20 54 68 69 73 20 70 72 6f 66 69 6c 65 20 66 61 76 6f 72 73 20 | throughput..This.profile.favors. |
| 15d300 | 70 65 72 66 6f 72 6d 61 6e 63 65 20 6f 76 65 72 20 70 6f 77 65 72 20 73 61 76 69 6e 67 73 20 62 | performance.over.power.savings.b |
| 15d320 | 79 20 73 65 74 74 69 6e 67 20 60 60 69 6e 74 65 6c 5f 70 73 74 61 74 65 60 60 20 61 6e 64 20 60 | y.setting.``intel_pstate``.and.` |
| 15d340 | 60 6d 61 78 5f 70 65 72 66 5f 70 63 74 3d 31 30 30 60 60 20 61 6e 64 20 69 6e 63 72 65 61 73 69 | `max_perf_pct=100``.and.increasi |
| 15d360 | 6e 67 20 6b 65 72 6e 65 6c 20 6e 65 74 77 6f 72 6b 20 62 75 66 66 65 72 20 73 69 7a 65 73 2e 00 | ng.kernel.network.buffer.sizes.. |
| 15d380 | 60 60 74 69 6d 65 31 2e 76 79 6f 73 2e 6e 65 74 60 60 00 60 60 74 69 6d 65 32 2e 76 79 6f 73 2e | ``time1.vyos.net``.``time2.vyos. |
| 15d3a0 | 6e 65 74 60 60 00 60 60 74 69 6d 65 33 2e 76 79 6f 73 2e 6e 65 74 60 60 00 60 60 74 69 6d 65 6f | net``.``time3.vyos.net``.``timeo |
| 15d3c0 | 75 74 60 60 20 6b 65 65 70 2d 61 6c 69 76 65 20 74 69 6d 65 6f 75 74 20 69 6e 20 73 65 63 6f 6e | ut``.keep-alive.timeout.in.secon |
| 15d3e0 | 64 73 20 3c 32 2d 38 36 34 30 30 3e 20 28 64 65 66 61 75 6c 74 20 31 32 30 29 20 49 4b 45 76 31 | ds.<2-86400>.(default.120).IKEv1 |
| 15d400 | 20 6f 6e 6c 79 00 60 60 74 6f 6b 65 6e 60 60 20 75 73 65 20 4a 57 54 20 74 6f 6b 65 6e 73 2e 00 | .only.``token``.use.JWT.tokens.. |
| 15d420 | 60 60 74 72 61 6e 73 6d 69 74 2d 6c 6f 61 64 2d 62 61 6c 61 6e 63 65 60 60 20 2d 20 41 64 61 70 | ``transmit-load-balance``.-.Adap |
| 15d440 | 74 69 76 65 20 74 72 61 6e 73 6d 69 74 20 6c 6f 61 64 20 62 61 6c 61 6e 63 69 6e 67 3a 20 63 68 | tive.transmit.load.balancing:.ch |
| 15d460 | 61 6e 6e 65 6c 20 62 6f 6e 64 69 6e 67 20 74 68 61 74 20 64 6f 65 73 20 6e 6f 74 20 72 65 71 75 | annel.bonding.that.does.not.requ |
| 15d480 | 69 72 65 20 61 6e 79 20 73 70 65 63 69 61 6c 20 73 77 69 74 63 68 20 73 75 70 70 6f 72 74 2e 00 | ire.any.special.switch.support.. |
| 15d4a0 | 60 60 74 72 61 6e 73 70 6f 72 74 60 60 20 74 72 61 6e 73 70 6f 72 74 20 6d 6f 64 65 3b 00 60 60 | ``transport``.transport.mode;.`` |
| 15d4c0 | 74 72 61 70 60 60 20 20 69 6e 73 74 61 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 2c 20 | trap``..installs.a.trap.policy,. |
| 15d4e0 | 77 68 69 63 68 20 77 69 6c 6c 20 63 61 74 63 68 20 6d 61 74 63 68 69 6e 67 20 74 72 61 66 66 69 | which.will.catch.matching.traffi |
| 15d500 | 63 20 61 6e 64 20 74 72 69 65 73 20 74 6f 20 72 65 2d 6e 65 67 6f 74 69 61 74 65 20 74 68 65 20 | c.and.tries.to.re-negotiate.the. |
| 15d520 | 74 75 6e 6e 65 6c 20 6f 6e 2d 64 65 6d 61 6e 64 3b 00 60 60 74 72 61 70 60 60 20 69 6e 73 74 61 | tunnel.on-demand;.``trap``.insta |
| 15d540 | 6c 6c 73 20 61 20 74 72 61 70 20 70 6f 6c 69 63 79 20 66 6f 72 20 74 68 65 20 43 48 49 4c 44 5f | lls.a.trap.policy.for.the.CHILD_ |
| 15d560 | 53 41 3b 00 60 60 74 74 6c 2d 6c 69 6d 69 74 60 60 3a 20 46 6f 72 20 74 68 65 20 55 44 50 20 54 | SA;.``ttl-limit``:.For.the.UDP.T |
| 15d580 | 54 4c 20 6c 69 6d 69 74 20 74 65 73 74 20 74 68 65 20 68 6f 70 20 63 6f 75 6e 74 20 6c 69 6d 69 | TL.limit.test.the.hop.count.limi |
| 15d5a0 | 74 20 6d 75 73 74 20 62 65 20 73 70 65 63 69 66 69 65 64 2e 20 54 68 65 20 6c 69 6d 69 74 20 6d | t.must.be.specified..The.limit.m |
| 15d5c0 | 75 73 74 20 62 65 20 73 68 6f 72 74 65 72 20 74 68 61 6e 20 74 68 65 20 70 61 74 68 20 6c 65 6e | ust.be.shorter.than.the.path.len |
| 15d5e0 | 67 74 68 2c 20 61 6e 20 49 43 4d 50 20 74 69 6d 65 20 65 78 70 69 72 65 64 20 6d 65 73 73 61 67 | gth,.an.ICMP.time.expired.messag |
| 15d600 | 65 20 69 73 20 6e 65 65 64 65 64 20 74 6f 20 62 65 20 72 65 74 75 72 6e 65 64 20 66 6f 72 20 61 | e.is.needed.to.be.returned.for.a |
| 15d620 | 20 73 75 63 63 65 73 73 66 75 6c 20 74 65 73 74 2e 20 64 65 66 61 75 6c 74 20 31 00 60 60 74 74 | .successful.test..default.1.``tt |
| 15d640 | 79 53 4e 60 60 20 2d 20 53 65 72 69 61 6c 20 64 65 76 69 63 65 20 6e 61 6d 65 00 60 60 74 74 79 | ySN``.-.Serial.device.name.``tty |
| 15d660 | 55 53 42 58 60 60 20 2d 20 55 53 42 20 53 65 72 69 61 6c 20 64 65 76 69 63 65 20 6e 61 6d 65 00 | USBX``.-.USB.Serial.device.name. |
| 15d680 | 60 60 74 75 6e 6e 65 6c 60 60 20 2d 20 64 65 66 69 6e 65 20 63 72 69 74 65 72 69 61 20 66 6f 72 | ``tunnel``.-.define.criteria.for |
| 15d6a0 | 20 74 72 61 66 66 69 63 20 74 6f 20 62 65 20 6d 61 74 63 68 65 64 20 66 6f 72 20 65 6e 63 72 79 | .traffic.to.be.matched.for.encry |
| 15d6c0 | 70 74 69 6e 67 20 61 6e 64 20 73 65 6e 64 20 69 74 20 74 6f 20 61 20 70 65 65 72 3a 00 60 60 74 | pting.and.send.it.to.a.peer:.``t |
| 15d6e0 | 75 6e 6e 65 6c 60 60 20 74 75 6e 6e 65 6c 20 6d 6f 64 65 20 28 64 65 66 61 75 6c 74 29 3b 00 60 | unnel``.tunnel.mode.(default);.` |
| 15d700 | 60 74 79 70 65 60 60 20 20 4c 6f 67 20 74 79 70 65 73 2e 00 60 60 74 79 70 65 60 60 3a 20 53 70 | `type``..Log.types..``type``:.Sp |
| 15d720 | 65 63 69 66 79 20 74 68 65 20 74 79 70 65 20 6f 66 20 74 65 73 74 2e 20 74 79 70 65 20 63 61 6e | ecify.the.type.of.test..type.can |
| 15d740 | 20 62 65 20 70 69 6e 67 2c 20 74 74 6c 20 6f 72 20 61 20 75 73 65 72 20 64 65 66 69 6e 65 64 20 | .be.ping,.ttl.or.a.user.defined. |
| 15d760 | 73 63 72 69 70 74 00 60 60 75 73 65 2d 78 35 30 39 2d 69 64 60 60 20 2d 20 75 73 65 20 6c 6f 63 | script.``use-x509-id``.-.use.loc |
| 15d780 | 61 6c 20 49 44 20 66 72 6f 6d 20 78 35 30 39 20 63 65 72 74 69 66 69 63 61 74 65 2e 20 43 61 6e | al.ID.from.x509.certificate..Can |
| 15d7a0 | 6e 6f 74 20 62 65 20 75 73 65 64 20 77 68 65 6e 20 60 60 69 64 60 60 20 69 73 20 64 65 66 69 6e | not.be.used.when.``id``.is.defin |
| 15d7c0 | 65 64 3b 00 60 60 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 60 60 20 2d 20 44 65 66 69 6e 65 | ed;.``virtual-address``.-.Define |
| 15d7e0 | 73 20 61 20 76 69 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 20 77 68 69 63 68 20 69 73 20 | s.a.virtual.IP.address.which.is. |
| 15d800 | 72 65 71 75 65 73 74 65 64 20 62 79 20 74 68 65 20 69 6e 69 74 69 61 74 6f 72 20 61 6e 64 20 6f | requested.by.the.initiator.and.o |
| 15d820 | 6e 65 20 6f 72 20 73 65 76 65 72 61 6c 20 49 50 76 34 20 61 6e 64 2f 6f 72 20 49 50 76 36 20 61 | ne.or.several.IPv4.and/or.IPv6.a |
| 15d840 | 64 64 72 65 73 73 65 73 20 61 72 65 20 61 73 73 69 67 6e 65 64 20 66 72 6f 6d 20 6d 75 6c 74 69 | ddresses.are.assigned.from.multi |
| 15d860 | 70 6c 65 20 70 6f 6f 6c 73 20 62 79 20 74 68 65 20 72 65 73 70 6f 6e 64 65 72 2e 00 60 60 76 69 | ple.pools.by.the.responder..``vi |
| 15d880 | 72 74 75 61 6c 2d 69 70 60 60 20 41 6c 6c 6f 77 20 69 6e 73 74 61 6c 6c 20 76 69 72 74 75 61 6c | rtual-ip``.Allow.install.virtual |
| 15d8a0 | 2d 69 70 20 61 64 64 72 65 73 73 65 73 2e 20 43 6f 6d 6d 61 20 73 65 70 61 72 61 74 65 64 20 6c | -ip.addresses..Comma.separated.l |
| 15d8c0 | 69 73 74 20 6f 66 20 76 69 72 74 75 61 6c 20 49 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 6e | ist.of.virtual.IPs.to.request.in |
| 15d8e0 | 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f 72 | .IKEv2.configuration.payloads.or |
| 15d900 | 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 64 | .IKEv1.Mode.Config..The.wildcard |
| 15d920 | 20 61 64 64 72 65 73 73 65 73 20 30 2e 30 2e 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 73 | .addresses.0.0.0.0.and.::.reques |
| 15d940 | 74 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 61 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 63 | t.an.arbitrary.address,.specific |
| 15d960 | 20 61 64 64 72 65 73 73 65 73 20 6d 61 79 20 62 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 72 | .addresses.may.be.defined..The.r |
| 15d980 | 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 20 | esponder.may.return.a.different. |
| 15d9a0 | 61 64 64 72 65 73 73 2c 20 74 68 6f 75 67 68 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 61 6c 6c 2e | address,.though,.or.none.at.all. |
| 15d9c0 | 00 60 60 76 69 72 74 75 61 6c 2d 69 70 60 60 20 41 6c 6c 6f 77 73 20 74 68 65 20 69 6e 73 74 61 | .``virtual-ip``.Allows.the.insta |
| 15d9e0 | 6c 6c 61 74 69 6f 6e 20 6f 66 20 76 69 72 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 2e | llation.of.virtual-ip.addresses. |
| 15da00 | 20 41 20 63 6f 6d 6d 61 00 60 60 76 69 72 74 75 61 6c 2d 69 70 60 60 20 41 6c 6c 6f 77 73 20 74 | .A.comma.``virtual-ip``.Allows.t |
| 15da20 | 6f 20 69 6e 73 74 61 6c 6c 20 76 69 72 74 75 61 6c 2d 69 70 20 61 64 64 72 65 73 73 65 73 2e 20 | o.install.virtual-ip.addresses.. |
| 15da40 | 43 6f 6d 6d 61 20 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 20 6f 66 20 76 69 72 74 75 61 6c 20 | Comma.separated.list.of.virtual. |
| 15da60 | 49 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 6e 20 49 4b 45 76 32 20 63 6f 6e 66 69 67 75 72 | IPs.to.request.in.IKEv2.configur |
| 15da80 | 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f 72 20 49 4b 45 76 31 20 4d 6f 64 65 20 43 6f 6e | ation.payloads.or.IKEv1.Mode.Con |
| 15daa0 | 66 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 64 20 61 64 64 72 65 73 73 65 73 20 30 2e 30 2e | fig..The.wildcard.addresses.0.0. |
| 15dac0 | 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 73 74 20 61 6e 20 61 72 62 69 74 72 61 72 79 20 | 0.0.and.::.request.an.arbitrary. |
| 15dae0 | 61 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 63 20 61 64 64 72 65 73 73 65 73 20 6d 61 79 20 | address,.specific.addresses.may. |
| 15db00 | 62 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 72 65 73 70 6f 6e 64 65 72 20 6d 61 79 20 72 65 | be.defined..The.responder.may.re |
| 15db20 | 74 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 20 61 64 64 72 65 73 73 2c 20 74 68 6f 75 67 68 | turn.a.different.address,.though |
| 15db40 | 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 61 6c 6c 2e 20 44 65 66 69 6e 65 20 74 68 65 20 60 60 76 | ,.or.none.at.all..Define.the.``v |
| 15db60 | 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 60 60 20 6f 70 74 69 6f 6e 20 74 6f 20 63 6f 6e 66 69 | irtual-address``.option.to.confi |
| 15db80 | 67 75 72 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 73 69 74 65 2d 74 6f 2d 73 | gure.the.IP.address.in.site-to-s |
| 15dba0 | 69 74 65 20 68 69 65 72 61 72 63 68 79 2e 00 60 60 76 6e 63 60 60 20 2d 20 56 69 72 74 75 61 6c | ite.hierarchy..``vnc``.-.Virtual |
| 15dbc0 | 20 4e 65 74 77 6f 72 6b 20 43 6f 6e 74 72 6f 6c 20 28 56 4e 43 29 00 60 60 76 74 69 60 60 20 2d | .Network.Control.(VNC).``vti``.- |
| 15dbe0 | 20 75 73 65 20 61 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 66 6f 72 20 74 72 61 66 66 69 63 | .use.a.VTI.interface.for.traffic |
| 15dc00 | 20 65 6e 63 72 79 70 74 69 6f 6e 2e 20 41 6e 79 20 74 72 61 66 66 69 63 2c 20 77 68 69 63 68 20 | .encryption..Any.traffic,.which. |
| 15dc20 | 77 69 6c 6c 20 62 65 20 73 65 6e 64 20 74 6f 20 56 54 49 20 69 6e 74 65 72 66 61 63 65 20 77 69 | will.be.send.to.VTI.interface.wi |
| 15dc40 | 6c 6c 20 62 65 20 65 6e 63 72 79 70 74 65 64 20 61 6e 64 20 73 65 6e 64 20 74 6f 20 74 68 69 73 | ll.be.encrypted.and.send.to.this |
| 15dc60 | 20 70 65 65 72 2e 20 55 73 69 6e 67 20 56 54 49 20 6d 61 6b 65 73 20 49 50 53 65 63 20 63 6f 6e | .peer..Using.VTI.makes.IPSec.con |
| 15dc80 | 66 69 67 75 72 61 74 69 6f 6e 20 6d 75 63 68 20 66 6c 65 78 69 62 6c 65 20 61 6e 64 20 65 61 73 | figuration.much.flexible.and.eas |
| 15dca0 | 69 65 72 20 69 6e 20 63 6f 6d 70 6c 65 78 20 73 69 74 75 61 74 69 6f 6e 2c 20 61 6e 64 20 61 6c | ier.in.complex.situation,.and.al |
| 15dcc0 | 6c 6f 77 73 20 74 6f 20 64 79 6e 61 6d 69 63 61 6c 6c 79 20 61 64 64 2f 64 65 6c 65 74 65 20 72 | lows.to.dynamically.add/delete.r |
| 15dce0 | 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 73 2c 20 72 65 61 63 68 61 62 6c 65 20 76 69 61 20 61 20 | emote.networks,.reachable.via.a. |
| 15dd00 | 70 65 65 72 2c 20 61 73 20 69 6e 20 74 68 69 73 20 6d 6f 64 65 20 72 6f 75 74 65 72 20 64 6f 6e | peer,.as.in.this.mode.router.don |
| 15dd20 | 27 74 20 6e 65 65 64 20 74 6f 20 63 72 65 61 74 65 20 61 64 64 69 74 69 6f 6e 61 6c 20 53 41 2f | 't.need.to.create.additional.SA/ |
| 15dd40 | 70 6f 6c 69 63 79 20 66 6f 72 20 65 61 63 68 20 72 65 6d 6f 74 65 20 6e 65 74 77 6f 72 6b 3a 00 | policy.for.each.remote.network:. |
| 15dd60 | 60 60 76 79 6f 73 5f 63 65 72 74 60 60 20 69 73 20 61 20 6c 65 61 66 20 73 65 72 76 65 72 20 63 | ``vyos_cert``.is.a.leaf.server.c |
| 15dd80 | 65 72 74 69 66 69 63 61 74 65 20 75 73 65 64 20 74 6f 20 69 64 65 6e 74 69 66 79 20 74 68 65 20 | ertificate.used.to.identify.the. |
| 15dda0 | 56 79 4f 53 20 72 6f 75 74 65 72 2c 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 73 65 72 76 65 | VyOS.router,.signed.by.the.serve |
| 15ddc0 | 72 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 43 41 2e 00 60 60 76 79 6f 73 5f 63 6c 69 65 6e 74 | r.intermediary.CA..``vyos_client |
| 15dde0 | 5f 63 61 60 60 20 61 6e 64 20 60 60 76 79 6f 73 5f 73 65 72 76 65 72 5f 63 61 60 60 20 61 72 65 | _ca``.and.``vyos_server_ca``.are |
| 15de00 | 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 63 65 72 74 69 66 69 63 61 74 65 20 61 75 74 68 6f 72 | .intermediary.certificate.author |
| 15de20 | 69 74 69 65 73 2c 20 77 68 69 63 68 20 61 72 65 20 73 69 67 6e 65 64 20 62 79 20 74 68 65 20 72 | ities,.which.are.signed.by.the.r |
| 15de40 | 6f 6f 74 20 43 41 2e 00 60 60 76 79 6f 73 5f 65 78 61 6d 70 6c 65 5f 75 73 65 72 60 60 20 69 73 | oot.CA..``vyos_example_user``.is |
| 15de60 | 20 61 20 6c 65 61 66 20 63 6c 69 65 6e 74 20 63 65 72 74 69 66 69 63 61 74 65 20 75 73 65 64 20 | .a.leaf.client.certificate.used. |
| 15de80 | 74 6f 20 69 64 65 6e 74 69 66 79 20 61 20 75 73 65 72 2c 20 73 69 67 6e 65 64 20 62 79 20 63 6c | to.identify.a.user,.signed.by.cl |
| 15dea0 | 69 65 6e 74 20 69 6e 74 65 72 6d 65 64 69 61 72 79 20 43 41 2e 00 60 60 76 79 6f 73 5f 72 6f 6f | ient.intermediary.CA..``vyos_roo |
| 15dec0 | 74 5f 63 61 60 60 20 69 73 20 74 68 65 20 72 6f 6f 74 20 63 65 72 74 69 66 69 63 61 74 65 20 61 | t_ca``.is.the.root.certificate.a |
| 15dee0 | 75 74 68 6f 72 69 74 79 2e 00 60 60 78 35 30 39 60 60 20 2d 20 6f 70 74 69 6f 6e 73 20 66 6f 72 | uthority..``x509``.-.options.for |
| 15df00 | 20 78 35 30 39 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 6d 6f 64 65 3a 00 60 60 78 35 30 | .x509.authentication.mode:.``x50 |
| 15df20 | 39 60 60 20 2d 20 75 73 65 20 63 65 72 74 69 66 69 63 61 74 65 73 20 69 6e 66 72 61 73 74 72 75 | 9``.-.use.certificates.infrastru |
| 15df40 | 63 74 75 72 65 20 66 6f 72 20 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 2e 00 60 60 78 6f 72 2d | cture.for.authentication..``xor- |
| 15df60 | 68 61 73 68 60 60 20 2d 20 58 4f 52 20 70 6f 6c 69 63 79 3a 20 54 72 61 6e 73 6d 69 74 20 62 61 | hash``.-.XOR.policy:.Transmit.ba |
| 15df80 | 73 65 64 20 6f 6e 20 74 68 65 20 73 65 6c 65 63 74 65 64 20 74 72 61 6e 73 6d 69 74 20 68 61 73 | sed.on.the.selected.transmit.has |
| 15dfa0 | 68 20 70 6f 6c 69 63 79 2e 20 20 54 68 65 20 64 65 66 61 75 6c 74 20 70 6f 6c 69 63 79 20 69 73 | h.policy...The.default.policy.is |
| 15dfc0 | 20 61 20 73 69 6d 70 6c 65 20 5b 28 73 6f 75 72 63 65 20 4d 41 43 20 61 64 64 72 65 73 73 20 58 | .a.simple.[(source.MAC.address.X |
| 15dfe0 | 4f 52 27 64 20 77 69 74 68 20 64 65 73 74 69 6e 61 74 69 6f 6e 20 4d 41 43 20 61 64 64 72 65 73 | OR'd.with.destination.MAC.addres |
| 15e000 | 73 20 58 4f 52 20 70 61 63 6b 65 74 20 74 79 70 65 20 49 44 29 20 6d 6f 64 75 6c 6f 20 73 6c 61 | s.XOR.packet.type.ID).modulo.sla |
| 15e020 | 76 65 20 63 6f 75 6e 74 5d 2e 20 41 6c 74 65 72 6e 61 74 65 20 74 72 61 6e 73 6d 69 74 20 70 6f | ve.count]..Alternate.transmit.po |
| 15e040 | 6c 69 63 69 65 73 20 6d 61 79 20 62 65 20 73 65 6c 65 63 74 65 64 20 76 69 61 20 74 68 65 20 3a | licies.may.be.selected.via.the.: |
| 15e060 | 63 66 67 63 6d 64 3a 60 68 61 73 68 2d 70 6f 6c 69 63 79 60 20 6f 70 74 69 6f 6e 2c 20 64 65 73 | cfgcmd:`hash-policy`.option,.des |
| 15e080 | 63 72 69 62 65 64 20 62 65 6c 6f 77 2e 00 60 60 79 65 73 60 60 20 65 6e 61 62 6c 65 20 72 65 6d | cribed.below..``yes``.enable.rem |
| 15e0a0 | 6f 74 65 20 68 6f 73 74 20 72 65 2d 61 75 74 68 65 6e 74 69 63 61 74 69 6f 6e 20 64 75 72 69 6e | ote.host.re-authentication.durin |
| 15e0c0 | 67 20 61 6e 20 49 4b 45 20 72 65 6b 65 79 3b 00 60 61 6c 6c 60 3a 20 41 6c 6c 20 72 65 63 65 69 | g.an.IKE.rekey;.`all`:.All.recei |
| 15e0e0 | 76 65 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 2e | ved.packets.will.be.timestamped. |
| 15e100 | 00 60 69 67 6e 6f 72 65 60 3a 20 4e 6f 20 63 6f 72 72 65 63 74 69 6f 6e 20 69 73 20 61 70 70 6c | .`ignore`:.No.correction.is.appl |
| 15e120 | 69 65 64 20 74 6f 20 74 68 65 20 63 6c 6f 63 6b 20 66 6f 72 20 74 68 65 20 6c 65 61 70 20 73 65 | ied.to.the.clock.for.the.leap.se |
| 15e140 | 63 6f 6e 64 2e 20 54 68 65 20 63 6c 6f 63 6b 20 77 69 6c 6c 20 62 65 20 63 6f 72 72 65 63 74 65 | cond..The.clock.will.be.correcte |
| 15e160 | 64 20 6c 61 74 65 72 20 69 6e 20 6e 6f 72 6d 61 6c 20 6f 70 65 72 61 74 69 6f 6e 20 77 68 65 6e | d.later.in.normal.operation.when |
| 15e180 | 20 6e 65 77 20 6d 65 61 73 75 72 65 6d 65 6e 74 73 20 61 72 65 20 6d 61 64 65 20 61 6e 64 20 74 | .new.measurements.are.made.and.t |
| 15e1a0 | 68 65 20 65 73 74 69 6d 61 74 65 64 20 6f 66 66 73 65 74 20 69 6e 63 6c 75 64 65 73 20 74 68 65 | he.estimated.offset.includes.the |
| 15e1c0 | 20 6f 6e 65 20 73 65 63 6f 6e 64 20 65 72 72 6f 72 2e 00 60 6e 6f 6e 65 60 3a 20 4e 6f 20 72 65 | .one.second.error..`none`:.No.re |
| 15e1e0 | 63 65 69 76 65 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 | ceived.packets.will.be.timestamp |
| 15e200 | 65 64 2e 20 48 61 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 66 20 74 72 61 | ed..Hardware.timestamping.of.tra |
| 15e220 | 6e 73 6d 69 74 74 65 64 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 73 74 69 6c 6c 20 62 65 20 6c | nsmitted.packets.will.still.be.l |
| 15e240 | 65 76 65 72 61 67 65 64 2c 20 69 66 20 73 75 70 70 6f 72 74 65 64 20 62 79 20 74 68 65 20 4e 49 | everaged,.if.supported.by.the.NI |
| 15e260 | 43 2e 00 60 6e 74 70 60 3a 20 4f 6e 6c 79 20 72 65 63 65 69 76 65 64 20 20 4e 54 50 20 70 72 6f | C..`ntp`:.Only.received..NTP.pro |
| 15e280 | 74 6f 63 6f 6c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 | tocol.packets.will.be.timestampe |
| 15e2a0 | 64 2e 00 60 70 74 70 60 3a 20 4f 6e 6c 79 20 72 65 63 65 69 76 65 64 20 50 54 50 20 70 72 6f 74 | d..`ptp`:.Only.received.PTP.prot |
| 15e2c0 | 6f 63 6f 6c 20 70 61 63 6b 65 74 73 20 77 69 6c 6c 20 62 65 20 74 69 6d 65 73 74 61 6d 70 65 64 | ocol.packets.will.be.timestamped |
| 15e2e0 | 2e 20 43 6f 6d 62 69 6e 65 64 20 77 69 74 68 20 74 68 65 20 50 54 50 20 74 72 61 6e 73 70 6f 72 | ..Combined.with.the.PTP.transpor |
| 15e300 | 74 20 66 6f 72 20 4e 54 50 20 70 61 63 6b 65 74 73 2c 20 74 68 69 73 20 63 61 6e 20 62 65 20 6c | t.for.NTP.packets,.this.can.be.l |
| 15e320 | 65 76 65 72 61 67 65 64 20 74 6f 20 74 61 6b 65 20 61 64 76 61 6e 74 61 67 65 20 6f 66 20 68 61 | everaged.to.take.advantage.of.ha |
| 15e340 | 72 64 77 61 72 65 20 74 69 6d 65 73 74 61 6d 70 69 6e 67 20 6f 6e 20 4e 49 43 73 20 74 68 61 74 | rdware.timestamping.on.NICs.that |
| 15e360 | 20 6f 6e 6c 79 20 73 75 70 70 6f 72 74 20 74 68 65 20 70 74 70 20 66 69 6c 74 65 72 20 6d 6f 64 | .only.support.the.ptp.filter.mod |
| 15e380 | 65 2e 00 60 73 6d 65 61 72 60 3a 20 57 68 65 6e 20 73 6d 65 61 72 69 6e 67 20 61 20 6c 65 61 70 | e..`smear`:.When.smearing.a.leap |
| 15e3a0 | 20 73 65 63 6f 6e 64 2c 20 74 68 65 20 6c 65 61 70 20 73 74 61 74 75 73 20 69 73 20 73 75 70 70 | .second,.the.leap.status.is.supp |
| 15e3c0 | 72 65 73 73 65 64 20 6f 6e 20 74 68 65 20 73 65 72 76 65 72 20 61 6e 64 20 74 68 65 20 73 65 72 | ressed.on.the.server.and.the.ser |
| 15e3e0 | 76 65 64 20 74 69 6d 65 20 69 73 20 63 6f 72 72 65 63 74 65 64 20 73 6c 6f 77 6c 79 20 62 79 20 | ved.time.is.corrected.slowly.by. |
| 15e400 | 73 6c 65 77 69 6e 67 20 69 6e 73 74 65 61 64 20 6f 66 20 73 74 65 70 70 69 6e 67 2e 20 54 68 65 | slewing.instead.of.stepping..The |
| 15e420 | 20 63 6c 69 65 6e 74 73 20 64 6f 20 6e 6f 74 20 6e 65 65 64 20 61 6e 79 20 73 70 65 63 69 61 6c | .clients.do.not.need.any.special |
| 15e440 | 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 61 73 20 74 68 65 79 20 64 6f 20 6e 6f 74 20 6b 6e | .configuration.as.they.do.not.kn |
| 15e460 | 6f 77 20 74 68 65 72 65 20 69 73 20 61 6e 79 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 61 6e 64 20 | ow.there.is.any.leap.second.and. |
| 15e480 | 74 68 65 79 20 66 6f 6c 6c 6f 77 20 74 68 65 20 73 65 72 76 65 72 20 74 69 6d 65 20 77 68 69 63 | they.follow.the.server.time.whic |
| 15e4a0 | 68 20 65 76 65 6e 74 75 61 6c 6c 79 20 62 72 69 6e 67 73 20 74 68 65 6d 20 62 61 63 6b 20 74 6f | h.eventually.brings.them.back.to |
| 15e4c0 | 20 55 54 43 2e 20 43 61 72 65 20 6d 75 73 74 20 62 65 20 74 61 6b 65 6e 20 74 6f 20 65 6e 73 75 | .UTC..Care.must.be.taken.to.ensu |
| 15e4e0 | 72 65 20 74 68 65 79 20 75 73 65 20 6f 6e 6c 79 20 4e 54 50 20 73 65 72 76 65 72 73 20 77 68 69 | re.they.use.only.NTP.servers.whi |
| 15e500 | 63 68 20 73 6d 65 61 72 20 74 68 65 20 6c 65 61 70 20 73 65 63 6f 6e 64 20 69 6e 20 65 78 61 63 | ch.smear.the.leap.second.in.exac |
| 15e520 | 74 6c 79 20 74 68 65 20 73 61 6d 65 20 77 61 79 20 66 6f 72 20 73 79 6e 63 68 72 6f 6e 69 73 61 | tly.the.same.way.for.synchronisa |
| 15e540 | 74 69 6f 6e 2e 00 60 73 6f 75 72 63 65 2d 61 64 64 72 65 73 73 60 20 61 6e 64 20 60 73 6f 75 72 | tion..`source-address`.and.`sour |
| 15e560 | 63 65 2d 69 6e 74 65 72 66 61 63 65 60 20 63 61 6e 20 6e 6f 74 20 62 65 20 75 73 65 64 20 61 74 | ce-interface`.can.not.be.used.at |
| 15e580 | 20 74 68 65 20 73 61 6d 65 20 74 69 6d 65 2e 00 60 73 79 73 74 65 6d 60 3a 20 57 68 65 6e 20 69 | .the.same.time..`system`:.When.i |
| 15e5a0 | 6e 73 65 72 74 69 6e 67 20 61 20 6c 65 61 70 20 73 65 63 6f 6e 64 2c 20 74 68 65 20 6b 65 72 6e | nserting.a.leap.second,.the.kern |
| 15e5c0 | 65 6c 20 73 74 65 70 73 20 74 68 65 20 73 79 73 74 65 6d 20 63 6c 6f 63 6b 20 62 61 63 6b 77 61 | el.steps.the.system.clock.backwa |
| 15e5e0 | 72 64 73 20 62 79 20 6f 6e 65 20 73 65 63 6f 6e 64 20 77 68 65 6e 20 74 68 65 20 63 6c 6f 63 6b | rds.by.one.second.when.the.clock |
| 15e600 | 20 67 65 74 73 20 74 6f 20 30 30 3a 30 30 3a 30 30 20 55 54 43 2e 20 57 68 65 6e 20 64 65 6c 65 | .gets.to.00:00:00.UTC..When.dele |
| 15e620 | 74 69 6e 67 20 61 20 6c 65 61 70 20 73 65 63 6f 6e 64 2c 20 69 74 20 73 74 65 70 73 20 66 6f 72 | ting.a.leap.second,.it.steps.for |
| 15e640 | 77 61 72 64 20 62 79 20 6f 6e 65 20 73 65 63 6f 6e 64 20 77 68 65 6e 20 74 68 65 20 63 6c 6f 63 | ward.by.one.second.when.the.cloc |
| 15e660 | 6b 20 67 65 74 73 20 74 6f 20 32 33 3a 35 39 3a 35 39 20 55 54 43 2e 00 60 74 69 6d 65 7a 6f 6e | k.gets.to.23:59:59.UTC..`timezon |
| 15e680 | 65 60 3a 20 54 68 69 73 20 64 69 72 65 63 74 69 76 65 20 73 70 65 63 69 66 69 65 73 20 61 20 74 | e`:.This.directive.specifies.a.t |
| 15e6a0 | 69 6d 65 7a 6f 6e 65 20 69 6e 20 74 68 65 20 73 79 73 74 65 6d 20 74 69 6d 65 7a 6f 6e 65 20 64 | imezone.in.the.system.timezone.d |
| 15e6c0 | 61 74 61 62 61 73 65 20 77 68 69 63 68 20 63 68 72 6f 6e 79 64 20 63 61 6e 20 75 73 65 20 74 6f | atabase.which.chronyd.can.use.to |
| 15e6e0 | 20 64 65 74 65 72 6d 69 6e 65 20 77 68 65 6e 20 77 69 6c 6c 20 74 68 65 20 6e 65 78 74 20 6c 65 | .determine.when.will.the.next.le |
| 15e700 | 61 70 20 73 65 63 6f 6e 64 20 6f 63 63 75 72 20 61 6e 64 20 77 68 61 74 20 69 73 20 74 68 65 20 | ap.second.occur.and.what.is.the. |
| 15e720 | 63 75 72 72 65 6e 74 20 6f 66 66 73 65 74 20 62 65 74 77 65 65 6e 20 54 41 49 20 61 6e 64 20 55 | current.offset.between.TAI.and.U |
| 15e740 | 54 43 2e 20 49 74 20 77 69 6c 6c 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 63 68 65 63 6b 20 69 | TC..It.will.periodically.check.i |
| 15e760 | 66 20 32 33 3a 35 39 3a 35 39 20 61 6e 64 20 32 33 3a 35 39 3a 36 30 20 61 72 65 20 76 61 6c 69 | f.23:59:59.and.23:59:60.are.vali |
| 15e780 | 64 20 74 69 6d 65 73 20 69 6e 20 74 68 65 20 74 69 6d 65 7a 6f 6e 65 2e 20 54 68 69 73 20 6e 6f | d.times.in.the.timezone..This.no |
| 15e7a0 | 72 6d 61 6c 6c 79 20 77 6f 72 6b 73 20 77 69 74 68 20 74 68 65 20 72 69 67 68 74 2f 55 54 43 20 | rmally.works.with.the.right/UTC. |
| 15e7c0 | 74 69 6d 65 7a 6f 6e 65 20 77 68 69 63 68 20 69 73 20 74 68 65 20 64 65 66 61 75 6c 74 00 60 74 | timezone.which.is.the.default.`t |
| 15e7e0 | 77 65 65 74 20 62 79 20 45 76 69 6c 4d 6f 67 60 5f 2c 20 32 30 32 30 2d 30 32 2d 32 31 00 61 20 | weet.by.EvilMog`_,.2020-02-21.a. |
| 15e800 | 62 61 6e 64 77 69 64 74 68 20 74 65 73 74 20 6f 76 65 72 20 74 68 65 20 56 50 4e 20 67 6f 74 20 | bandwidth.test.over.the.VPN.got. |
| 15e820 | 74 68 65 73 65 20 72 65 73 75 6c 74 73 3a 00 61 20 62 6c 61 6e 6b 20 69 6e 64 69 63 61 74 65 73 | these.results:.a.blank.indicates |
| 15e840 | 20 74 68 61 74 20 6e 6f 20 74 65 73 74 20 68 61 73 20 62 65 65 6e 20 63 61 72 72 69 65 64 20 6f | .that.no.test.has.been.carried.o |
| 15e860 | 75 74 00 61 65 73 32 35 36 20 45 6e 63 72 79 70 74 69 6f 6e 00 61 6c 65 72 74 00 61 6c 6c 00 61 | ut.aes256.Encryption.alert.all.a |
| 15e880 | 6e 20 52 44 20 2f 20 52 54 4c 49 53 54 00 61 6e 20 69 6e 74 65 72 66 61 63 65 20 77 69 74 68 20 | n.RD./.RTLIST.an.interface.with. |
| 15e8a0 | 61 20 6e 65 78 74 68 6f 70 00 61 6e 79 3a 20 61 6e 79 20 49 50 20 61 64 64 72 65 73 73 20 74 6f | a.nexthop.any:.any.IP.address.to |
| 15e8c0 | 20 6d 61 74 63 68 2e 00 61 6e 79 3a 20 61 6e 79 20 49 50 76 36 20 61 64 64 72 65 73 73 20 74 6f | .match..any:.any.IPv6.address.to |
| 15e8e0 | 20 6d 61 74 63 68 2e 00 61 75 74 68 00 61 75 74 68 6f 72 69 7a 61 74 69 6f 6e 00 61 75 74 6f 20 | .match..auth.authorization.auto. |
| 15e900 | 2d 20 69 6e 74 65 72 66 61 63 65 20 64 75 70 6c 65 78 20 73 65 74 74 69 6e 67 20 69 73 20 61 75 | -.interface.duplex.setting.is.au |
| 15e920 | 74 6f 2d 6e 65 67 6f 74 69 61 74 65 64 00 61 75 74 6f 20 2d 20 69 6e 74 65 72 66 61 63 65 20 73 | to-negotiated.auto.-.interface.s |
| 15e940 | 70 65 65 64 20 69 73 20 61 75 74 6f 2d 6e 65 67 6f 74 69 61 74 65 64 00 62 67 70 64 00 62 6f 6e | peed.is.auto-negotiated.bgpd.bon |
| 15e960 | 64 69 6e 67 00 62 6f 6f 74 2d 73 69 7a 65 00 62 6f 6f 74 66 69 6c 65 2d 6e 61 6d 65 00 62 6f 6f | ding.boot-size.bootfile-name.boo |
| 15e980 | 74 66 69 6c 65 2d 6e 61 6d 65 2c 20 66 69 6c 65 6e 61 6d 65 00 62 6f 6f 74 66 69 6c 65 2d 73 65 | tfile-name,.filename.bootfile-se |
| 15e9a0 | 72 76 65 72 00 62 6f 6f 74 66 69 6c 65 2d 73 69 7a 65 00 62 72 69 64 67 65 00 63 6c 69 65 6e 74 | rver.bootfile-size.bridge.client |
| 15e9c0 | 20 65 78 61 6d 70 6c 65 20 28 64 65 62 69 61 6e 20 39 29 00 63 6c 69 65 6e 74 2d 70 72 65 66 69 | .example.(debian.9).client-prefi |
| 15e9e0 | 78 2d 6c 65 6e 67 74 68 00 63 6c 6f 63 6b 00 63 6c 6f 63 6b 20 64 61 65 6d 6f 6e 20 28 6e 6f 74 | x-length.clock.clock.daemon.(not |
| 15ea00 | 65 20 32 29 00 63 72 69 74 00 63 72 6f 6e 00 64 61 65 6d 6f 6e 00 64 64 63 6c 69 65 6e 74 5f 20 | e.2).crit.cron.daemon.ddclient_. |
| 15ea20 | 68 61 73 20 61 6e 6f 74 68 65 72 20 77 61 79 20 74 6f 20 64 65 74 65 72 6d 69 6e 65 20 74 68 65 | has.another.way.to.determine.the |
| 15ea40 | 20 57 41 4e 20 49 50 20 61 64 64 72 65 73 73 2e 20 54 68 69 73 20 69 73 20 63 6f 6e 74 72 6f 6c | .WAN.IP.address..This.is.control |
| 15ea60 | 6c 65 64 20 62 79 3a 00 64 64 63 6c 69 65 6e 74 5f 20 75 73 65 73 20 74 77 6f 20 6d 65 74 68 6f | led.by:.ddclient_.uses.two.metho |
| 15ea80 | 64 73 20 74 6f 20 75 70 64 61 74 65 20 61 20 44 4e 53 20 72 65 63 6f 72 64 2e 20 54 68 65 20 66 | ds.to.update.a.DNS.record..The.f |
| 15eaa0 | 69 72 73 74 20 6f 6e 65 20 77 69 6c 6c 20 73 65 6e 64 20 75 70 64 61 74 65 73 20 64 69 72 65 63 | irst.one.will.send.updates.direc |
| 15eac0 | 74 6c 79 20 74 6f 20 74 68 65 20 44 4e 53 20 64 61 65 6d 6f 6e 2c 20 69 6e 20 63 6f 6d 70 6c 69 | tly.to.the.DNS.daemon,.in.compli |
| 15eae0 | 61 6e 63 65 20 77 69 74 68 20 3a 72 66 63 3a 60 32 31 33 36 60 2e 20 54 68 65 20 73 65 63 6f 6e | ance.with.:rfc:`2136`..The.secon |
| 15eb00 | 64 20 6f 6e 65 20 69 6e 76 6f 6c 76 65 73 20 61 20 74 68 69 72 64 20 70 61 72 74 79 20 73 65 72 | d.one.involves.a.third.party.ser |
| 15eb20 | 76 69 63 65 2c 20 6c 69 6b 65 20 44 79 6e 44 4e 53 2e 63 6f 6d 20 6f 72 20 61 6e 79 20 6f 74 68 | vice,.like.DynDNS.com.or.any.oth |
| 15eb40 | 65 72 20 73 69 6d 69 6c 61 72 20 77 65 62 73 69 74 65 2e 20 54 68 69 73 20 6d 65 74 68 6f 64 20 | er.similar.website..This.method. |
| 15eb60 | 75 73 65 73 20 48 54 54 50 20 72 65 71 75 65 73 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 74 | uses.HTTP.requests.to.transmit.t |
| 15eb80 | 68 65 20 6e 65 77 20 49 50 20 61 64 64 72 65 73 73 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 | he.new.IP.address..You.can.confi |
| 15eba0 | 67 75 72 65 20 62 6f 74 68 20 69 6e 20 56 79 4f 53 2e 00 64 64 63 6c 69 65 6e 74 5f 20 75 73 65 | gure.both.in.VyOS..ddclient_.use |
| 15ebc0 | 73 20 74 77 6f 20 6d 65 74 68 6f 64 73 20 74 6f 20 75 70 64 61 74 65 20 61 20 44 4e 53 20 72 65 | s.two.methods.to.update.a.DNS.re |
| 15ebe0 | 63 6f 72 64 2e 20 54 68 65 20 66 69 72 73 74 20 6f 6e 65 20 77 69 6c 6c 20 73 65 6e 64 20 75 70 | cord..The.first.one.will.send.up |
| 15ec00 | 64 61 74 65 73 20 64 69 72 65 63 74 6c 79 20 74 6f 20 74 68 65 20 44 4e 53 20 64 61 65 6d 6f 6e | dates.directly.to.the.DNS.daemon |
| 15ec20 | 2c 20 69 6e 20 63 6f 6d 70 6c 69 61 6e 63 65 20 77 69 74 68 20 3a 72 66 63 3a 60 32 31 33 36 60 | ,.in.compliance.with.:rfc:`2136` |
| 15ec40 | 2e 20 54 68 65 20 73 65 63 6f 6e 64 20 6f 6e 65 20 69 6e 76 6f 6c 76 65 73 20 61 20 74 68 69 72 | ..The.second.one.involves.a.thir |
| 15ec60 | 64 20 70 61 72 74 79 20 73 65 72 76 69 63 65 2c 20 6c 69 6b 65 20 44 79 6e 44 4e 53 2e 63 6f 6d | d.party.service,.like.DynDNS.com |
| 15ec80 | 20 6f 72 20 61 6e 79 20 6f 74 68 65 72 20 73 75 63 68 20 73 65 72 76 69 63 65 20 70 72 6f 76 69 | .or.any.other.such.service.provi |
| 15eca0 | 64 65 72 2e 20 54 68 69 73 20 6d 65 74 68 6f 64 20 75 73 65 73 20 48 54 54 50 20 72 65 71 75 65 | der..This.method.uses.HTTP.reque |
| 15ecc0 | 73 74 73 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 74 68 65 20 6e 65 77 20 49 50 20 61 64 64 72 65 | sts.to.transmit.the.new.IP.addre |
| 15ece0 | 73 73 2e 20 59 6f 75 20 63 61 6e 20 63 6f 6e 66 69 67 75 72 65 20 62 6f 74 68 20 69 6e 20 56 79 | ss..You.can.configure.both.in.Vy |
| 15ed00 | 4f 53 2e 00 64 64 63 6c 69 65 6e 74 5f 20 77 69 6c 6c 20 73 6b 69 70 20 61 6e 79 20 61 64 64 72 | OS..ddclient_.will.skip.any.addr |
| 15ed20 | 65 73 73 20 6c 6f 63 61 74 65 64 20 62 65 66 6f 72 65 20 74 68 65 20 73 74 72 69 6e 67 20 73 65 | ess.located.before.the.string.se |
| 15ed40 | 74 20 69 6e 20 60 3c 70 61 74 74 65 72 6e 3e 60 2e 00 64 65 62 75 67 00 64 65 63 72 65 6d 65 6e | t.in.`<pattern>`..debug.decremen |
| 15ed60 | 74 2d 6c 69 66 65 74 69 6d 65 00 64 65 66 61 75 6c 74 20 6d 69 6e 2d 74 68 72 65 73 68 6f 6c 64 | t-lifetime.default.min-threshold |
| 15ed80 | 00 64 65 66 61 75 6c 74 2d 6c 65 61 73 65 2d 74 69 6d 65 2c 20 6d 61 78 2d 6c 65 61 73 65 2d 74 | .default-lease-time,.max-lease-t |
| 15eda0 | 69 6d 65 00 64 65 66 61 75 6c 74 2d 6c 69 66 65 74 69 6d 65 00 64 65 66 61 75 6c 74 2d 70 72 65 | ime.default-lifetime.default-pre |
| 15edc0 | 66 65 72 65 6e 63 65 00 64 65 66 61 75 6c 74 2d 72 6f 75 74 65 72 00 64 65 70 72 65 63 61 74 65 | ference.default-router.deprecate |
| 15ede0 | 2d 70 72 65 66 69 78 00 64 65 73 74 69 6e 61 74 69 6f 6e 2d 68 61 73 68 69 6e 67 00 64 68 63 70 | -prefix.destination-hashing.dhcp |
| 15ee00 | 2d 73 65 72 76 65 72 2d 69 64 65 6e 74 69 66 69 65 72 00 64 69 72 65 63 74 00 64 69 72 65 63 74 | -server-identifier.direct.direct |
| 15ee20 | 6f 72 79 00 64 69 73 61 62 6c 65 3a 20 4e 6f 20 73 6f 75 72 63 65 20 76 61 6c 69 64 61 74 69 6f | ory.disable:.No.source.validatio |
| 15ee40 | 6e 00 64 6e 73 73 6c 00 64 6f 6d 61 69 6e 2d 6e 61 6d 65 00 64 6f 6d 61 69 6e 2d 6e 61 6d 65 2d | n.dnssl.domain-name.domain-name- |
| 15ee60 | 73 65 72 76 65 72 73 00 64 6f 6d 61 69 6e 2d 73 65 61 72 63 68 00 65 6d 65 72 67 00 65 6e 61 62 | servers.domain-search.emerg.enab |
| 15ee80 | 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 20 49 43 4d 50 76 34 20 72 65 64 69 72 65 63 74 20 6d | le.or.disable..ICMPv4.redirect.m |
| 15eea0 | 65 73 73 61 67 65 73 20 73 65 6e 64 20 62 79 20 56 79 4f 53 20 54 68 65 20 66 6f 6c 6c 6f 77 69 | essages.send.by.VyOS.The.followi |
| 15eec0 | 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c 74 65 | ng.system.parameter.will.be.alte |
| 15eee0 | 72 65 64 3a 00 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 49 43 4d 50 76 34 20 72 65 | red:.enable.or.disable.ICMPv4.re |
| 15ef00 | 64 69 72 65 63 74 20 6d 65 73 73 61 67 65 73 20 73 65 6e 64 20 62 79 20 56 79 4f 53 20 54 68 65 | direct.messages.send.by.VyOS.The |
| 15ef20 | 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c | .following.system.parameter.will |
| 15ef40 | 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 6f | .be.altered:.enable.or.disable.o |
| 15ef60 | 66 20 49 43 4d 50 76 34 20 6f 72 20 49 43 4d 50 76 36 20 72 65 64 69 72 65 63 74 20 6d 65 73 73 | f.ICMPv4.or.ICMPv6.redirect.mess |
| 15ef80 | 61 67 65 73 20 61 63 63 65 70 74 65 64 20 62 79 20 56 79 4f 53 2e 20 54 68 65 20 66 6f 6c 6c 6f | ages.accepted.by.VyOS..The.follo |
| 15efa0 | 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c 6c 20 62 65 20 61 6c | wing.system.parameter.will.be.al |
| 15efc0 | 74 65 72 65 64 3a 00 65 6e 61 62 6c 65 20 6f 72 20 64 69 73 61 62 6c 65 20 74 68 65 20 6c 6f 67 | tered:.enable.or.disable.the.log |
| 15efe0 | 67 69 6e 67 20 6f 66 20 6d 61 72 74 69 61 6e 20 49 50 76 34 20 70 61 63 6b 65 74 73 2e 20 54 68 | ging.of.martian.IPv4.packets..Th |
| 15f000 | 65 20 66 6f 6c 6c 6f 77 69 6e 67 20 73 79 73 74 65 6d 20 70 61 72 61 6d 65 74 65 72 20 77 69 6c | e.following.system.parameter.wil |
| 15f020 | 6c 20 62 65 20 61 6c 74 65 72 65 64 3a 00 65 72 72 00 65 74 68 65 72 6e 65 74 00 65 78 61 63 74 | l.be.altered:.err.ethernet.exact |
| 15f040 | 2d 6d 61 74 63 68 3a 20 65 78 61 63 74 20 6d 61 74 63 68 20 6f 66 20 74 68 65 20 6e 65 74 77 6f | -match:.exact.match.of.the.netwo |
| 15f060 | 72 6b 20 70 72 65 66 69 78 65 73 2e 00 65 78 63 6c 75 64 65 00 66 61 69 6c 6f 76 65 72 00 66 61 | rk.prefixes..exclude.failover.fa |
| 15f080 | 73 74 3a 20 52 65 71 75 65 73 74 20 70 61 72 74 6e 65 72 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 | st:.Request.partner.to.transmit. |
| 15f0a0 | 4c 41 43 50 44 55 73 20 65 76 65 72 79 20 31 20 73 65 63 6f 6e 64 00 66 69 6c 65 20 3c 66 69 6c | LACPDUs.every.1.second.file.<fil |
| 15f0c0 | 65 20 6e 61 6d 65 3e 00 66 69 6c 74 65 72 2d 6c 69 73 74 00 66 74 70 00 66 75 6c 6c 20 2d 20 61 | e.name>.filter-list.ftp.full.-.a |
| 15f0e0 | 6c 77 61 79 73 20 75 73 65 20 66 75 6c 6c 2d 64 75 70 6c 65 78 00 67 65 6e 65 76 65 00 68 61 6c | lways.use.full-duplex.geneve.hal |
| 15f100 | 66 20 2d 20 61 6c 77 61 79 73 20 75 73 65 20 68 61 6c 66 2d 64 75 70 6c 65 78 00 68 6f 70 2d 6c | f.-.always.use.half-duplex.hop-l |
| 15f120 | 69 6d 69 74 00 68 6f 73 74 3a 20 73 69 6e 67 6c 65 20 68 6f 73 74 20 49 50 20 61 64 64 72 65 73 | imit.host:.single.host.IP.addres |
| 15f140 | 73 20 74 6f 20 6d 61 74 63 68 2e 00 68 74 74 70 73 3a 2f 2f 61 63 63 65 73 73 2e 72 65 64 68 61 | s.to.match..https://access.redha |
| 15f160 | 74 2e 63 6f 6d 2f 73 69 74 65 73 2f 64 65 66 61 75 6c 74 2f 66 69 6c 65 73 2f 61 74 74 61 63 68 | t.com/sites/default/files/attach |
| 15f180 | 6d 65 6e 74 73 2f 32 30 31 35 30 31 2d 70 65 72 66 2d 62 72 69 65 66 2d 6c 6f 77 2d 6c 61 74 65 | ments/201501-perf-brief-low-late |
| 15f1a0 | 6e 63 79 2d 74 75 6e 69 6e 67 2d 72 68 65 6c 37 2d 76 32 2e 31 2e 70 64 66 00 68 74 74 70 73 3a | ncy-tuning-rhel7-v2.1.pdf.https: |
| 15f1c0 | 2f 2f 63 6f 6d 6d 75 6e 69 74 79 2e 6f 70 65 6e 76 70 6e 2e 6e 65 74 2f 6f 70 65 6e 76 70 6e 2f | //community.openvpn.net/openvpn/ |
| 15f1e0 | 77 69 6b 69 2f 44 61 74 61 43 68 61 6e 6e 65 6c 4f 66 66 6c 6f 61 64 2f 46 65 61 74 75 72 65 73 | wiki/DataChannelOffload/Features |
| 15f200 | 00 68 74 74 70 73 3a 2f 2f 64 6f 63 73 2e 6b 65 72 6e 65 6c 2e 6f 72 67 2f 61 64 6d 69 6e 2d 67 | .https://docs.kernel.org/admin-g |
| 15f220 | 75 69 64 65 2f 70 6d 2f 61 6d 64 2d 70 73 74 61 74 65 2e 68 74 6d 6c 00 69 66 20 74 68 65 72 65 | uide/pm/amd-pstate.html.if.there |
| 15f240 | 20 69 73 20 61 20 73 75 70 70 6f 72 74 65 64 20 64 65 76 69 63 65 2c 20 65 6e 61 62 6c 65 20 49 | .is.a.supported.device,.enable.I |
| 15f260 | 6e 74 65 6c c2 ae 20 51 41 54 00 69 66 20 74 68 65 72 65 20 69 73 20 6e 6f 6e 20 64 65 76 69 63 | ntel...QAT.if.there.is.non.devic |
| 15f280 | 65 20 74 68 65 20 63 6f 6d 6d 61 6e 64 20 77 69 6c 6c 20 73 68 6f 77 20 60 60 60 4e 6f 20 51 41 | e.the.command.will.show.```No.QA |
| 15f2a0 | 54 20 64 65 76 69 63 65 20 66 6f 75 6e 64 60 60 60 00 69 6e 66 6f 00 69 6e 68 65 72 69 74 20 6d | T.device.found```.info.inherit.m |
| 15f2c0 | 61 74 63 68 65 73 20 66 72 6f 6d 20 61 6e 6f 74 68 65 72 20 67 72 6f 75 70 00 69 6e 74 65 72 76 | atches.from.another.group.interv |
| 15f2e0 | 61 6c 00 69 6e 76 61 6c 69 64 00 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 3a 20 6e 65 74 77 6f 72 | al.invalid.inverse-match:.networ |
| 15f300 | 6b 2f 6e 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 68 20 28 72 65 71 75 69 72 65 73 20 6e 65 74 | k/netmask.to.match.(requires.net |
| 15f320 | 77 6f 72 6b 20 62 65 20 64 65 66 69 6e 65 64 29 2e 00 69 70 2d 66 6f 72 77 61 72 64 69 6e 67 00 | work.be.defined)..ip-forwarding. |
| 15f340 | 69 73 69 73 64 00 69 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 61 6e 79 20 4e 49 | isisd.it.can.be.used.with.any.NI |
| 15f360 | 43 00 69 74 20 63 61 6e 20 62 65 20 75 73 65 64 20 77 69 74 68 20 61 6e 79 20 4e 49 43 2c 00 69 | C.it.can.be.used.with.any.NIC,.i |
| 15f380 | 74 20 64 6f 65 73 20 6e 6f 74 20 69 6e 63 72 65 61 73 65 20 68 61 72 64 77 61 72 65 20 64 65 76 | t.does.not.increase.hardware.dev |
| 15f3a0 | 69 63 65 20 69 6e 74 65 72 72 75 70 74 20 72 61 74 65 20 28 61 6c 74 68 6f 75 67 68 20 69 74 20 | ice.interrupt.rate.(although.it. |
| 15f3c0 | 64 6f 65 73 20 69 6e 74 72 6f 64 75 63 65 20 69 6e 74 65 72 2d 70 72 6f 63 65 73 73 6f 72 20 69 | does.introduce.inter-processor.i |
| 15f3e0 | 6e 74 65 72 72 75 70 74 73 20 28 49 50 49 73 29 29 2e 00 69 74 20 64 6f 65 73 20 6e 6f 74 20 69 | nterrupts.(IPIs))..it.does.not.i |
| 15f400 | 6e 63 72 65 61 73 65 20 68 61 72 64 77 61 72 65 20 64 65 76 69 63 65 20 69 6e 74 65 72 72 75 70 | ncrease.hardware.device.interrup |
| 15f420 | 74 20 72 61 74 65 2c 20 61 6c 74 68 6f 75 67 68 20 69 74 20 64 6f 65 73 20 69 6e 74 72 6f 64 75 | t.rate,.although.it.does.introdu |
| 15f440 | 63 65 20 69 6e 74 65 72 2d 70 72 6f 63 65 73 73 6f 72 20 69 6e 74 65 72 72 75 70 74 73 20 28 49 | ce.inter-processor.interrupts.(I |
| 15f460 | 50 49 73 29 00 6b 65 72 6e 00 6c 32 74 70 76 33 00 6c 64 70 64 00 6c 65 61 73 65 00 6c 65 61 73 | PIs).kern.l2tpv3.ldpd.lease.leas |
| 15f480 | 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 6c 65 66 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 31 39 32 2e | t-connection.left.local_ip:.192. |
| 15f4a0 | 31 36 38 2e 30 2e 31 30 20 23 20 56 50 4e 20 47 61 74 65 77 61 79 2c 20 62 65 68 69 6e 64 20 4e | 168.0.10.#.VPN.Gateway,.behind.N |
| 15f4c0 | 41 54 20 64 65 76 69 63 65 00 6c 65 66 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 60 31 39 38 2e 35 31 | AT.device.left.local_ip:.`198.51 |
| 15f4e0 | 2e 31 30 30 2e 33 60 20 23 20 73 65 72 76 65 72 20 73 69 64 65 20 57 41 4e 20 49 50 00 6c 65 66 | .100.3`.#.server.side.WAN.IP.lef |
| 15f500 | 74 20 70 75 62 6c 69 63 5f 69 70 3a 31 37 32 2e 31 38 2e 32 30 31 2e 31 30 00 6c 65 66 74 20 73 | t.public_ip:172.18.201.10.left.s |
| 15f520 | 75 62 6e 65 74 3a 20 60 31 39 32 2e 31 36 38 2e 30 2e 30 2f 32 34 60 20 73 69 74 65 31 2c 20 73 | ubnet:.`192.168.0.0/24`.site1,.s |
| 15f540 | 65 72 76 65 72 20 73 69 64 65 20 28 69 2e 65 2e 20 6c 6f 63 61 6c 69 74 79 2c 20 61 63 74 75 61 | erver.side.(i.e..locality,.actua |
| 15f560 | 6c 6c 79 20 74 68 65 72 65 20 69 73 20 6e 6f 20 63 6c 69 65 6e 74 20 6f 72 20 73 65 72 76 65 72 | lly.there.is.no.client.or.server |
| 15f580 | 20 72 6f 6c 65 73 29 00 6c 69 6e 6b 2d 6d 74 75 00 6c 6f 63 61 6c 20 75 73 65 20 30 20 28 6c 6f | .roles).link-mtu.local.use.0.(lo |
| 15f5a0 | 63 61 6c 30 29 00 6c 6f 63 61 6c 20 75 73 65 20 31 20 28 6c 6f 63 61 6c 31 29 00 6c 6f 63 61 6c | cal0).local.use.1.(local1).local |
| 15f5c0 | 20 75 73 65 20 32 20 28 6c 6f 63 61 6c 32 29 00 6c 6f 63 61 6c 20 75 73 65 20 33 20 28 6c 6f 63 | .use.2.(local2).local.use.3.(loc |
| 15f5e0 | 61 6c 33 29 00 6c 6f 63 61 6c 20 75 73 65 20 34 20 28 6c 6f 63 61 6c 34 29 00 6c 6f 63 61 6c 20 | al3).local.use.4.(local4).local. |
| 15f600 | 75 73 65 20 35 20 28 6c 6f 63 61 6c 35 29 00 6c 6f 63 61 6c 20 75 73 65 20 37 20 28 6c 6f 63 61 | use.5.(local5).local.use.7.(loca |
| 15f620 | 6c 37 29 00 6c 6f 63 61 6c 30 00 6c 6f 63 61 6c 31 00 6c 6f 63 61 6c 32 00 6c 6f 63 61 6c 33 00 | l7).local0.local1.local2.local3. |
| 15f640 | 6c 6f 63 61 6c 34 00 6c 6f 63 61 6c 35 00 6c 6f 63 61 6c 36 00 6c 6f 63 61 6c 37 00 6c 6f 63 61 | local4.local5.local6.local7.loca |
| 15f660 | 6c 69 74 79 2d 62 61 73 65 64 2d 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 74 69 6f 6e 00 6c 6f 67 61 | lity-based-least-connection.loga |
| 15f680 | 6c 65 72 74 00 6c 6f 67 61 75 64 69 74 00 6c 6f 6f 73 65 3a 20 45 61 63 68 20 69 6e 63 6f 6d 69 | lert.logaudit.loose:.Each.incomi |
| 15f6a0 | 6e 67 20 70 61 63 6b 65 74 27 73 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 61 6c | ng.packet's.source.address.is.al |
| 15f6c0 | 73 6f 20 74 65 73 74 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 20 46 49 42 20 61 6e 64 20 69 66 | so.tested.against.the.FIB.and.if |
| 15f6e0 | 20 74 68 65 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 20 69 73 20 6e 6f 74 20 72 65 61 63 68 | .the.source.address.is.not.reach |
| 15f700 | 61 62 6c 65 20 76 69 61 20 61 6e 79 20 69 6e 74 65 72 66 61 63 65 20 74 68 65 20 70 61 63 6b 65 | able.via.any.interface.the.packe |
| 15f720 | 74 20 63 68 65 63 6b 20 77 69 6c 6c 20 66 61 69 6c 2e 00 6c 70 72 00 6d 44 4e 53 20 52 65 70 65 | t.check.will.fail..lpr.mDNS.Repe |
| 15f740 | 61 74 65 72 00 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 63 61 6e 20 62 65 20 63 6f 6e 66 69 67 | ater.mDNS.repeater.can.be.config |
| 15f760 | 75 72 65 64 20 74 6f 20 72 65 2d 62 72 6f 61 64 63 61 73 74 20 6f 6e 6c 79 20 73 70 65 63 69 66 | ured.to.re-broadcast.only.specif |
| 15f780 | 69 63 20 73 65 72 76 69 63 65 73 2e 20 42 79 20 64 65 66 61 75 6c 74 2c 20 61 6c 6c 20 73 65 72 | ic.services..By.default,.all.ser |
| 15f7a0 | 76 69 63 65 73 20 61 72 65 20 72 65 2d 62 72 6f 61 64 63 61 73 74 65 64 2e 00 6d 44 4e 53 20 72 | vices.are.re-broadcasted..mDNS.r |
| 15f7c0 | 65 70 65 61 74 65 72 20 63 61 6e 20 62 65 20 65 6e 61 62 6c 65 64 20 65 69 74 68 65 72 20 6f 6e | epeater.can.be.enabled.either.on |
| 15f7e0 | 20 49 50 76 34 20 73 6f 63 6b 65 74 20 6f 72 20 6f 6e 20 49 50 76 36 20 73 6f 63 6b 65 74 20 6f | .IPv4.socket.or.on.IPv6.socket.o |
| 15f800 | 72 20 62 6f 74 68 20 74 6f 20 72 65 2d 62 72 6f 61 64 63 61 73 74 2e 20 42 79 20 64 65 66 61 75 | r.both.to.re-broadcast..By.defau |
| 15f820 | 6c 74 2c 20 6d 44 4e 53 20 72 65 70 65 61 74 65 72 20 77 69 6c 6c 20 6c 69 73 74 65 6e 20 6f 6e | lt,.mDNS.repeater.will.listen.on |
| 15f840 | 20 62 6f 74 68 20 49 50 76 34 20 61 6e 64 20 49 50 76 36 2e 00 6d 44 4e 53 20 72 65 70 65 61 74 | .both.IPv4.and.IPv6..mDNS.repeat |
| 15f860 | 65 72 20 63 61 6e 20 62 65 20 74 65 6d 70 6f 72 61 72 69 6c 79 20 64 69 73 61 62 6c 65 64 20 77 | er.can.be.temporarily.disabled.w |
| 15f880 | 69 74 68 6f 75 74 20 64 65 6c 65 74 69 6e 67 20 74 68 65 20 73 65 72 76 69 63 65 20 75 73 69 6e | ithout.deleting.the.service.usin |
| 15f8a0 | 67 00 6d 61 69 6c 00 6d 61 6e 61 67 65 64 2d 66 6c 61 67 00 6d 61 74 63 68 2d 66 72 61 67 3a 20 | g.mail.managed-flag.match-frag:. |
| 15f8c0 | 53 65 63 6f 6e 64 20 61 6e 64 20 66 75 72 74 68 65 72 20 66 72 61 67 6d 65 6e 74 73 20 6f 66 20 | Second.and.further.fragments.of. |
| 15f8e0 | 66 72 61 67 6d 65 6e 74 65 64 20 70 61 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 69 70 73 65 63 3a | fragmented.packets..match-ipsec: |
| 15f900 | 20 6d 61 74 63 68 20 69 6e 62 6f 75 6e 64 20 49 50 73 65 63 20 70 61 63 6b 65 74 73 2e 00 6d 61 | .match.inbound.IPsec.packets..ma |
| 15f920 | 74 63 68 2d 6e 6f 6e 2d 66 72 61 67 3a 20 48 65 61 64 20 66 72 61 67 6d 65 6e 74 73 20 6f 72 20 | tch-non-frag:.Head.fragments.or. |
| 15f940 | 75 6e 66 72 61 67 6d 65 6e 74 65 64 20 70 61 63 6b 65 74 73 2e 00 6d 61 74 63 68 2d 6e 6f 6e 65 | unfragmented.packets..match-none |
| 15f960 | 3a 20 6d 61 74 63 68 20 69 6e 62 6f 75 6e 64 20 6e 6f 6e 2d 49 50 73 65 63 20 70 61 63 6b 65 74 | :.match.inbound.non-IPsec.packet |
| 15f980 | 73 2e 00 6d 69 6e 69 6d 61 6c 20 63 6f 6e 66 69 67 00 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 | s..minimal.config.more.informati |
| 15f9a0 | 6f 6e 20 72 65 6c 61 74 65 64 20 49 47 50 20 20 2d 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d | on.related.IGP..-.:ref:`routing- |
| 15f9c0 | 69 73 69 73 60 00 6d 6f 72 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 72 65 6c 61 74 65 64 20 49 | isis`.more.information.related.I |
| 15f9e0 | 47 50 20 20 2d 20 3a 72 65 66 3a 60 72 6f 75 74 69 6e 67 2d 6f 73 70 66 60 00 6e 61 6d 65 2d 73 | GP..-.:ref:`routing-ospf`.name-s |
| 15fa00 | 65 72 76 65 72 00 6e 65 74 62 69 6f 73 2d 6e 61 6d 65 2d 73 65 72 76 65 72 73 00 6e 65 74 77 6f | erver.netbios-name-servers.netwo |
| 15fa20 | 72 6b 3a 20 6e 65 74 77 6f 72 6b 2f 6e 65 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 68 20 28 72 65 | rk:.network/netmask.to.match.(re |
| 15fa40 | 71 75 69 72 65 73 20 69 6e 76 65 72 73 65 2d 6d 61 74 63 68 20 62 65 20 64 65 66 69 6e 65 64 29 | quires.inverse-match.be.defined) |
| 15fa60 | 20 42 55 47 2c 20 4e 4f 20 69 6e 76 65 72 74 2d 6d 61 74 63 68 20 6f 70 74 69 6f 6e 20 69 6e 20 | .BUG,.NO.invert-match.option.in. |
| 15fa80 | 61 63 63 65 73 73 2d 6c 69 73 74 36 00 6e 65 74 77 6f 72 6b 3a 20 6e 65 74 77 6f 72 6b 2f 6e 65 | access-list6.network:.network/ne |
| 15faa0 | 74 6d 61 73 6b 20 74 6f 20 6d 61 74 63 68 20 28 72 65 71 75 69 72 65 73 20 69 6e 76 65 72 73 65 | tmask.to.match.(requires.inverse |
| 15fac0 | 2d 6d 61 74 63 68 20 62 65 20 64 65 66 69 6e 65 64 29 2e 00 6e 65 74 77 6f 72 6b 73 3b 00 6e 65 | -match.be.defined)..networks;.ne |
| 15fae0 | 77 73 00 6e 65 78 74 2d 73 65 72 76 65 72 00 6e 6f 2d 61 75 74 6f 6e 6f 6d 6f 75 73 2d 66 6c 61 | ws.next-server.no-autonomous-fla |
| 15fb00 | 67 00 6e 6f 2d 6f 6e 2d 6c 69 6e 6b 2d 66 6c 61 67 00 6e 6f 74 66 6f 75 6e 64 00 6e 6f 74 69 63 | g.no-on-link-flag.notfound.notic |
| 15fb20 | 65 00 6e 74 70 00 6e 74 70 2d 73 65 72 76 65 72 00 6e 74 70 2d 73 65 72 76 65 72 73 00 6f 6e 65 | e.ntp.ntp-server.ntp-servers.one |
| 15fb40 | 20 72 75 6c 65 20 77 69 74 68 20 61 20 4c 41 4e 20 28 69 6e 62 6f 75 6e 64 2d 69 6e 74 65 72 66 | .rule.with.a.LAN.(inbound-interf |
| 15fb60 | 61 63 65 29 20 61 6e 64 20 74 68 65 20 57 41 4e 20 28 69 6e 74 65 72 66 61 63 65 29 2e 00 6f 70 | ace).and.the.WAN.(interface)..op |
| 15fb80 | 65 6e 76 70 6e 00 6f 73 70 66 36 64 00 6f 73 70 66 64 00 6f 73 70 66 64 20 73 75 70 70 6f 72 74 | envpn.ospf6d.ospfd.ospfd.support |
| 15fba0 | 73 20 4f 70 61 71 75 65 20 4c 53 41 20 3a 72 66 63 3a 60 32 33 37 30 60 20 61 73 20 70 61 72 74 | s.Opaque.LSA.:rfc:`2370`.as.part |
| 15fbc0 | 69 61 6c 20 73 75 70 70 6f 72 74 20 66 6f 72 20 4d 50 4c 53 20 54 72 61 66 66 69 63 20 45 6e 67 | ial.support.for.MPLS.Traffic.Eng |
| 15fbe0 | 69 6e 65 65 72 69 6e 67 20 4c 53 41 73 2e 20 54 68 65 20 6f 70 61 71 75 65 2d 6c 73 61 20 63 61 | ineering.LSAs..The.opaque-lsa.ca |
| 15fc00 | 70 61 62 69 6c 69 74 79 20 6d 75 73 74 20 62 65 20 65 6e 61 62 6c 65 64 20 69 6e 20 74 68 65 20 | pability.must.be.enabled.in.the. |
| 15fc20 | 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 2e 00 6f 74 68 65 72 2d 63 6f 6e 66 69 67 2d 66 6c 61 67 | configuration..other-config-flag |
| 15fc40 | 00 70 61 67 65 73 20 74 6f 20 73 6f 72 74 00 70 6f 6c 69 63 79 20 61 73 2d 70 61 74 68 2d 6c 69 | .pages.to.sort.policy.as-path-li |
| 15fc60 | 73 74 00 70 6f 6c 69 63 79 20 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 00 70 6f 6c 69 63 79 20 | st.policy.community-list.policy. |
| 15fc80 | 65 78 74 63 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 00 70 6f 6c 69 63 79 20 6c 61 72 67 65 2d 63 | extcommunity-list.policy.large-c |
| 15fca0 | 6f 6d 6d 75 6e 69 74 79 2d 6c 69 73 74 00 70 6f 70 2d 73 65 72 76 65 72 00 70 72 65 66 65 72 72 | ommunity-list.pop-server.preferr |
| 15fcc0 | 65 64 2d 6c 69 66 65 74 69 6d 65 00 70 72 65 66 69 78 2d 6c 69 73 74 2c 20 64 69 73 74 72 69 62 | ed-lifetime.prefix-list,.distrib |
| 15fce0 | 75 74 65 2d 6c 69 73 74 00 70 73 65 75 64 6f 2d 65 74 68 65 72 6e 65 74 00 72 61 6e 67 65 00 72 | ute-list.pseudo-ethernet.range.r |
| 15fd00 | 65 61 63 68 61 62 6c 65 2d 74 69 6d 65 00 72 65 73 65 74 20 63 6f 6d 6d 61 6e 64 73 00 72 65 74 | eachable-time.reset.commands.ret |
| 15fd20 | 72 61 6e 73 2d 74 69 6d 65 72 00 72 66 63 33 34 34 32 2d 73 74 61 74 69 63 2d 72 6f 75 74 65 2c | rans-timer.rfc3442-static-route, |
| 15fd40 | 20 77 69 6e 64 6f 77 73 2d 73 74 61 74 69 63 2d 72 6f 75 74 65 00 72 66 63 33 37 36 38 2d 63 6f | .windows-static-route.rfc3768-co |
| 15fd60 | 6d 70 61 74 69 62 69 6c 69 74 79 00 72 69 67 68 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 31 37 32 2e | mpatibility.right.local_ip:.172. |
| 15fd80 | 31 38 2e 32 30 32 2e 31 30 20 23 20 72 69 67 68 74 20 73 69 64 65 20 57 41 4e 20 49 50 00 72 69 | 18.202.10.#.right.side.WAN.IP.ri |
| 15fda0 | 67 68 74 20 6c 6f 63 61 6c 5f 69 70 3a 20 60 32 30 33 2e 30 2e 31 31 33 2e 32 60 20 23 20 72 65 | ght.local_ip:.`203.0.113.2`.#.re |
| 15fdc0 | 6d 6f 74 65 20 6f 66 66 69 63 65 20 73 69 64 65 20 57 41 4e 20 49 50 00 72 69 67 68 74 20 73 75 | mote.office.side.WAN.IP.right.su |
| 15fde0 | 62 6e 65 74 3a 20 60 31 30 2e 30 2e 30 2e 30 2f 32 34 60 20 73 69 74 65 32 2c 72 65 6d 6f 74 65 | bnet:.`10.0.0.0/24`.site2,remote |
| 15fe00 | 20 6f 66 66 69 63 65 20 73 69 64 65 00 72 69 70 64 00 72 6f 75 6e 64 2d 72 6f 62 69 6e 00 72 6f | .office.side.ripd.round-robin.ro |
| 15fe20 | 75 74 65 2d 6d 61 70 00 72 6f 75 74 65 72 73 00 73 46 6c 6f 77 00 73 46 6c 6f 77 20 69 73 20 61 | ute-map.routers.sFlow.sFlow.is.a |
| 15fe40 | 20 74 65 63 68 6e 6f 6c 6f 67 79 20 74 68 61 74 20 65 6e 61 62 6c 65 73 20 6d 6f 6e 69 74 6f 72 | .technology.that.enables.monitor |
| 15fe60 | 69 6e 67 20 6f 66 20 6e 65 74 77 6f 72 6b 20 74 72 61 66 66 69 63 20 62 79 20 73 65 6e 64 69 6e | ing.of.network.traffic.by.sendin |
| 15fe80 | 67 20 73 61 6d 70 6c 65 64 20 70 61 63 6b 65 74 73 20 74 6f 20 61 20 63 6f 6c 6c 65 63 74 6f 72 | g.sampled.packets.to.a.collector |
| 15fea0 | 20 64 65 76 69 63 65 2e 00 73 65 63 75 72 69 74 79 00 73 65 70 61 72 61 74 65 64 20 6c 69 73 74 | .device..security.separated.list |
| 15fec0 | 20 6f 66 20 76 69 72 74 75 61 6c 20 49 50 73 20 74 6f 20 72 65 71 75 65 73 74 20 69 6e 20 49 4b | .of.virtual.IPs.to.request.in.IK |
| 15fee0 | 45 76 32 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 70 61 79 6c 6f 61 64 73 20 6f 72 20 49 4b | Ev2.configuration.payloads.or.IK |
| 15ff00 | 45 76 31 20 4d 6f 64 65 20 43 6f 6e 66 69 67 2e 20 54 68 65 20 77 69 6c 64 63 61 72 64 20 61 64 | Ev1.Mode.Config..The.wildcard.ad |
| 15ff20 | 64 72 65 73 73 65 73 20 30 2e 30 2e 30 2e 30 20 61 6e 64 20 3a 3a 20 72 65 71 75 65 73 74 20 61 | dresses.0.0.0.0.and.::.request.a |
| 15ff40 | 6e 20 61 72 62 69 74 72 61 72 79 20 61 64 64 72 65 73 73 2c 20 73 70 65 63 69 66 69 63 20 61 64 | n.arbitrary.address,.specific.ad |
| 15ff60 | 64 72 65 73 73 65 73 20 6d 61 79 20 62 65 20 64 65 66 69 6e 65 64 2e 20 54 68 65 20 72 65 73 70 | dresses.may.be.defined..The.resp |
| 15ff80 | 6f 6e 64 65 72 20 6d 61 79 20 72 65 74 75 72 6e 20 61 20 64 69 66 66 65 72 65 6e 74 20 61 64 64 | onder.may.return.a.different.add |
| 15ffa0 | 72 65 73 73 2c 20 6f 72 20 6e 6f 6e 65 20 61 74 20 61 6c 6c 2e 20 44 65 66 69 6e 65 20 74 68 65 | ress,.or.none.at.all..Define.the |
| 15ffc0 | 20 60 60 76 69 72 74 75 61 6c 2d 61 64 64 72 65 73 73 60 60 20 6f 70 74 69 6f 6e 20 74 6f 20 63 | .``virtual-address``.option.to.c |
| 15ffe0 | 6f 6e 66 69 67 75 72 65 20 74 68 65 20 49 50 20 61 64 64 72 65 73 73 20 69 6e 20 61 20 73 69 74 | onfigure.the.IP.address.in.a.sit |
| 160000 | 65 2d 74 6f 2d 73 69 74 65 20 68 69 65 72 61 72 63 68 79 2e 00 73 65 72 76 65 72 20 65 78 61 6d | e-to-site.hierarchy..server.exam |
| 160020 | 70 6c 65 00 73 65 72 76 65 72 2d 69 64 65 6e 74 69 66 69 65 72 00 73 65 74 20 61 20 64 65 73 74 | ple.server-identifier.set.a.dest |
| 160040 | 69 6e 61 74 69 6f 6e 20 61 6e 64 2f 6f 72 20 73 6f 75 72 63 65 20 61 64 64 72 65 73 73 2e 20 41 | ination.and/or.source.address..A |
| 160060 | 63 63 65 70 74 65 64 20 69 6e 70 75 74 3a 00 73 68 61 32 35 36 20 48 61 73 68 65 73 00 73 68 6f | ccepted.input:.sha256.Hashes.sho |
| 160080 | 77 20 63 6f 6d 6d 61 6e 64 73 00 73 69 61 64 64 72 00 73 6c 6f 77 3a 20 52 65 71 75 65 73 74 20 | w.commands.siaddr.slow:.Request. |
| 1600a0 | 70 61 72 74 6e 65 72 20 74 6f 20 74 72 61 6e 73 6d 69 74 20 4c 41 43 50 44 55 73 20 65 76 65 72 | partner.to.transmit.LACPDUs.ever |
| 1600c0 | 79 20 33 30 20 73 65 63 6f 6e 64 73 00 73 6d 74 70 2d 73 65 72 76 65 72 00 73 6f 66 74 77 61 72 | y.30.seconds.smtp-server.softwar |
| 1600e0 | 65 20 66 69 6c 74 65 72 73 20 63 61 6e 20 65 61 73 69 6c 79 20 62 65 20 61 64 64 65 64 20 74 6f | e.filters.can.easily.be.added.to |
| 160100 | 20 68 61 73 68 20 6f 76 65 72 20 6e 65 77 20 70 72 6f 74 6f 63 6f 6c 73 00 73 6f 66 74 77 61 72 | .hash.over.new.protocols.softwar |
| 160120 | 65 20 66 69 6c 74 65 72 73 20 63 61 6e 20 65 61 73 69 6c 79 20 62 65 20 61 64 64 65 64 20 74 6f | e.filters.can.easily.be.added.to |
| 160140 | 20 68 61 73 68 20 6f 76 65 72 20 6e 65 77 20 70 72 6f 74 6f 63 6f 6c 73 2c 00 73 6f 75 72 63 65 | .hash.over.new.protocols,.source |
| 160160 | 2d 68 61 73 68 69 6e 67 00 73 70 6f 6b 65 30 31 2d 73 70 6f 6b 65 30 34 00 73 70 6f 6b 65 30 35 | -hashing.spoke01-spoke04.spoke05 |
| 160180 | 00 73 74 61 74 69 63 2d 6d 61 70 70 69 6e 67 00 73 74 61 74 69 63 2d 72 6f 75 74 65 00 73 74 72 | .static-mapping.static-route.str |
| 1601a0 | 69 63 74 3a 20 45 61 63 68 20 69 6e 63 6f 6d 69 6e 67 20 70 61 63 6b 65 74 20 69 73 20 74 65 73 | ict:.Each.incoming.packet.is.tes |
| 1601c0 | 74 65 64 20 61 67 61 69 6e 73 74 20 74 68 65 20 46 49 42 20 61 6e 64 20 69 66 20 74 68 65 20 69 | ted.against.the.FIB.and.if.the.i |
| 1601e0 | 6e 74 65 72 66 61 63 65 20 69 73 20 6e 6f 74 20 74 68 65 20 62 65 73 74 20 72 65 76 65 72 73 65 | nterface.is.not.the.best.reverse |
| 160200 | 20 70 61 74 68 20 74 68 65 20 70 61 63 6b 65 74 20 63 68 65 63 6b 20 77 69 6c 6c 20 66 61 69 6c | .path.the.packet.check.will.fail |
| 160220 | 2e 20 42 79 20 64 65 66 61 75 6c 74 20 66 61 69 6c 65 64 20 70 61 63 6b 65 74 73 20 61 72 65 20 | ..By.default.failed.packets.are. |
| 160240 | 64 69 73 63 61 72 64 65 64 2e 00 73 75 62 6e 65 74 2d 6d 61 73 6b 00 73 75 72 69 63 61 74 61 00 | discarded..subnet-mask.suricata. |
| 160260 | 73 79 73 6c 6f 67 00 74 61 69 6c 00 74 63 5f 20 69 73 20 61 20 70 6f 77 65 72 66 75 6c 20 74 6f | syslog.tail.tc_.is.a.powerful.to |
| 160280 | 6f 6c 20 66 6f 72 20 54 72 61 66 66 69 63 20 43 6f 6e 74 72 6f 6c 20 66 6f 75 6e 64 20 61 74 20 | ol.for.Traffic.Control.found.at. |
| 1602a0 | 74 68 65 20 4c 69 6e 75 78 20 6b 65 72 6e 65 6c 2e 20 48 6f 77 65 76 65 72 2c 20 69 74 73 20 63 | the.Linux.kernel..However,.its.c |
| 1602c0 | 6f 6e 66 69 67 75 72 61 74 69 6f 6e 20 69 73 20 6f 66 74 65 6e 20 63 6f 6e 73 69 64 65 72 65 64 | onfiguration.is.often.considered |
| 1602e0 | 20 61 20 63 75 6d 62 65 72 73 6f 6d 65 20 74 61 73 6b 2e 20 46 6f 72 74 75 6e 61 74 65 6c 79 2c | .a.cumbersome.task..Fortunately, |
| 160300 | 20 56 79 4f 53 20 65 61 73 65 73 20 74 68 65 20 6a 6f 62 20 74 68 72 6f 75 67 68 20 69 74 73 20 | .VyOS.eases.the.job.through.its. |
| 160320 | 43 4c 49 2c 20 77 68 69 6c 65 20 75 73 69 6e 67 20 60 60 74 63 60 60 20 61 73 20 62 61 63 6b 65 | CLI,.while.using.``tc``.as.backe |
| 160340 | 6e 64 2e 00 74 66 74 70 2d 73 65 72 76 65 72 2d 6e 61 6d 65 00 74 68 69 73 20 6f 70 74 69 6f 6e | nd..tftp-server-name.this.option |
| 160360 | 20 61 6c 6c 6f 77 73 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 70 72 65 66 69 78 2d 73 69 64 20 | .allows.to.configure.prefix-sid. |
| 160380 | 6f 6e 20 53 52 2e 20 54 68 65 20 e2 80 98 6e 6f 2d 70 68 70 2d 66 6c 61 67 e2 80 99 20 6d 65 61 | on.SR..The....no-php-flag....mea |
| 1603a0 | 6e 73 20 4e 4f 20 50 65 6e 75 6c 74 69 6d 61 74 65 20 48 6f 70 20 50 6f 70 70 69 6e 67 20 74 68 | ns.NO.Penultimate.Hop.Popping.th |
| 1603c0 | 61 74 20 61 6c 6c 6f 77 73 20 53 52 20 6e 6f 64 65 20 74 6f 20 72 65 71 75 65 73 74 20 74 6f 20 | at.allows.SR.node.to.request.to. |
| 1603e0 | 69 74 73 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 6e 6f 74 20 70 6f 70 20 74 68 65 20 6c 61 62 65 | its.neighbor.to.not.pop.the.labe |
| 160400 | 6c 2e 20 54 68 65 20 e2 80 98 65 78 70 6c 69 63 69 74 2d 6e 75 6c 6c e2 80 99 20 66 6c 61 67 20 | l..The....explicit-null....flag. |
| 160420 | 61 6c 6c 6f 77 73 20 53 52 20 6e 6f 64 65 20 74 6f 20 72 65 71 75 65 73 74 20 74 6f 20 69 74 73 | allows.SR.node.to.request.to.its |
| 160440 | 20 6e 65 69 67 68 62 6f 72 20 74 6f 20 73 65 6e 64 20 49 50 20 70 61 63 6b 65 74 20 77 69 74 68 | .neighbor.to.send.IP.packet.with |
| 160460 | 20 74 68 65 20 45 58 50 4c 49 43 49 54 2d 4e 55 4c 4c 20 6c 61 62 65 6c 2e 20 54 68 65 20 e2 80 | .the.EXPLICIT-NULL.label..The... |
| 160480 | 98 6e 2d 66 6c 61 67 2d 63 6c 65 61 72 e2 80 99 20 6f 70 74 69 6f 6e 20 63 61 6e 20 62 65 20 75 | .n-flag-clear....option.can.be.u |
| 1604a0 | 73 65 64 20 74 6f 20 65 78 70 6c 69 63 69 74 6c 79 20 63 6c 65 61 72 20 74 68 65 20 4e 6f 64 65 | sed.to.explicitly.clear.the.Node |
| 1604c0 | 20 66 6c 61 67 20 74 68 61 74 20 69 73 20 73 65 74 20 62 79 20 64 65 66 61 75 6c 74 20 66 6f 72 | .flag.that.is.set.by.default.for |
| 1604e0 | 20 50 72 65 66 69 78 2d 53 49 44 73 20 61 73 73 6f 63 69 61 74 65 64 20 74 6f 20 6c 6f 6f 70 62 | .Prefix-SIDs.associated.to.loopb |
| 160500 | 61 63 6b 20 61 64 64 72 65 73 73 65 73 2e 20 54 68 69 73 20 6f 70 74 69 6f 6e 20 69 73 20 6e 65 | ack.addresses..This.option.is.ne |
| 160520 | 63 65 73 73 61 72 79 20 74 6f 20 63 6f 6e 66 69 67 75 72 65 20 41 6e 79 63 61 73 74 2d 53 49 44 | cessary.to.configure.Anycast-SID |
| 160540 | 73 2e 00 74 69 6d 65 2d 6f 66 66 73 65 74 00 74 69 6d 65 2d 73 65 72 76 65 72 00 74 69 6d 65 2d | s..time-offset.time-server.time- |
| 160560 | 73 65 72 76 65 72 73 00 74 75 6e 6e 65 6c 00 75 73 65 20 36 20 28 6c 6f 63 61 6c 36 29 00 75 73 | servers.tunnel.use.6.(local6).us |
| 160580 | 65 20 74 68 69 73 20 63 6f 6d 6d 61 6e 64 20 74 6f 20 63 68 65 63 6b 20 69 66 20 74 68 65 72 65 | e.this.command.to.check.if.there |
| 1605a0 | 20 69 73 20 61 6e 20 49 6e 74 65 6c c2 ae 20 51 41 54 20 73 75 70 70 6f 72 74 65 64 20 50 72 6f | .is.an.Intel...QAT.supported.Pro |
| 1605c0 | 63 65 73 73 6f 72 20 69 6e 20 79 6f 75 72 20 73 79 73 74 65 6d 2e 00 75 73 65 72 00 75 75 63 70 | cessor.in.your.system..user.uucp |
| 1605e0 | 00 76 61 6c 69 64 00 76 61 6c 69 64 2d 6c 69 66 65 74 69 6d 65 00 76 65 74 68 20 69 6e 74 65 72 | .valid.valid-lifetime.veth.inter |
| 160600 | 66 61 63 65 73 20 6e 65 65 64 20 74 6f 20 62 65 20 63 72 65 61 74 65 64 20 69 6e 20 70 61 69 72 | faces.need.to.be.created.in.pair |
| 160620 | 73 20 2d 20 69 74 27 73 20 63 61 6c 6c 65 64 20 74 68 65 20 70 65 65 72 20 6e 61 6d 65 00 76 69 | s.-.it's.called.the.peer.name.vi |
| 160640 | 72 74 75 61 6c 20 49 50 20 61 64 64 72 65 73 73 65 73 20 73 68 6f 75 6c 64 20 62 65 20 69 6e 73 | rtual.IP.addresses.should.be.ins |
| 160660 | 74 61 6c 6c 65 64 2e 20 49 66 20 6e 6f 74 20 73 70 65 63 69 66 69 65 64 20 74 68 65 20 61 64 64 | talled..If.not.specified.the.add |
| 160680 | 72 65 73 73 65 73 20 77 69 6c 6c 20 62 65 20 69 6e 73 74 61 6c 6c 65 64 20 6f 6e 20 74 68 65 20 | resses.will.be.installed.on.the. |
| 1606a0 | 6f 75 74 62 6f 75 6e 64 20 69 6e 74 65 72 66 61 63 65 3b 00 76 78 6c 61 6e 00 77 61 72 6e 69 6e | outbound.interface;.vxlan.warnin |
| 1606c0 | 67 00 77 65 20 64 65 73 63 72 69 62 65 64 20 74 68 65 20 63 6f 6e 66 69 67 75 72 61 74 69 6f 6e | g.we.described.the.configuration |
| 1606e0 | 20 53 52 20 49 53 49 53 20 2f 20 53 52 20 4f 53 50 46 20 75 73 69 6e 67 20 32 20 63 6f 6e 6e 65 | .SR.ISIS./.SR.OSPF.using.2.conne |
| 160700 | 63 74 65 64 20 77 69 74 68 20 74 68 65 6d 20 74 6f 20 73 68 61 72 65 20 6c 61 62 65 6c 20 69 6e | cted.with.them.to.share.label.in |
| 160720 | 66 6f 72 6d 61 74 69 6f 6e 2e 00 77 65 69 67 68 74 65 64 2d 6c 65 61 73 74 2d 63 6f 6e 6e 65 63 | formation..weighted-least-connec |
| 160740 | 74 69 6f 6e 00 77 65 69 67 68 74 65 64 2d 72 6f 75 6e 64 2d 72 6f 62 69 6e 00 77 68 69 6c 65 20 | tion.weighted-round-robin.while. |
| 160760 | 61 20 2a 62 79 74 65 2a 20 69 73 20 77 72 69 74 74 65 6e 20 61 73 20 61 20 73 69 6e 67 6c 65 20 | a.*byte*.is.written.as.a.single. |
| 160780 | 2a 2a 62 2a 2a 2e 00 77 69 6e 73 2d 73 65 72 76 65 72 00 77 69 72 65 67 75 61 72 64 00 77 69 72 | **b**..wins-server.wireguard.wir |
| 1607a0 | 65 6c 65 73 73 00 77 69 74 68 20 3a 63 66 67 63 6d 64 3a 60 73 65 74 20 73 79 73 74 65 6d 20 61 | eless.with.:cfgcmd:`set.system.a |
| 1607c0 | 63 63 65 6c 65 72 61 74 69 6f 6e 20 71 61 74 60 20 6f 6e 20 62 6f 74 68 20 73 79 73 74 65 6d 73 | cceleration.qat`.on.both.systems |
| 1607e0 | 20 74 68 65 20 62 61 6e 64 77 69 64 74 68 20 69 6e 63 72 65 61 73 65 73 2e 00 77 70 61 64 2d 75 | .the.bandwidth.increases..wpad-u |
| 160800 | 72 6c 00 77 70 61 64 2d 75 72 6c 2c 20 77 70 61 64 2d 75 72 6c 20 63 6f 64 65 20 32 35 32 20 3d | rl.wpad-url,.wpad-url.code.252.= |
| 160820 | 20 74 65 78 74 00 77 77 61 6e 00 7a 65 62 72 61 00 | .text.wwan.zebra. |
 |
index : vyos-documentation.git | |
| VyOS readthedocs (mirror of https://github.com/vyos/vyos-documentation.git) |
| summaryrefslogtreecommitdiff |
blob: 380562db7b53ad63d5f49caa99b0138d9e705200 (plain)