Git-Mirrors/qubes-doc
1
0
Fork 0
mirror of https://github.com/QubesOS/qubes-doc.git synced 2025-02-25 09:11:16 -05:00
Code Issues Packages Projects Releases Wiki Activity

Update vm-interface.md

Browse Source 
Added the "dpi" Deep Packet Inspection option for supporting L7 firewall rules
This commit is contained in:
Zrubi 2017-05-25 11:07:49 +02:00 committed by GitHub
parent 1c01026478
commit d380133d19
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
debugging/vm-interface.md
View File

@ -96,6 +96,7 @@ Possible options for a single rule:
together with `proto=tcp` or `proto=udp`; for example `1-1024`, `80-80` together with `proto=tcp` or `proto=udp`; for example `1-1024`, `80-80`
- `icmptype`, value: numeric (decimal) icmp message type, for example `8` for - `icmptype`, value: numeric (decimal) icmp message type, for example `8` for
echo request, valid only together with `proto=icmp` echo request, valid only together with `proto=icmp`
- 'dpi', value: Deep Packet Inspection protocol (like: HTTP, SSL, SMB, SSH, SMTP) or the default 'NO' as no DPI, only packet filtering
Rule matches only when all predicates matches. Only one of `dst4`, `dst6`, Rule matches only when all predicates matches. Only one of `dst4`, `dst6`,
`dstname`, `specialtarget` can be used in a single rule. `dstname`, `specialtarget` can be used in a single rule.