Fix an example, nat-to requires to specify the "out" direction in pf rules.

author reyk <reyk@openbsd.org>

Tue, 5 Aug 2014 16:34:03 +0000 (16:34 +0000)

committer reyk <reyk@openbsd.org>

Tue, 5 Aug 2014 16:34:03 +0000 (16:34 +0000)
author reyk <reyk@openbsd.org>
Tue, 5 Aug 2014 16:34:03 +0000 (16:34 +0000)
committer reyk <reyk@openbsd.org>
Tue, 5 Aug 2014 16:34:03 +0000 (16:34 +0000)
diff --git a/sbin/iked/iked.conf.5 b/sbin/iked/iked.conf.5

index 246f58b..b4926f5 100644 (file)
--- a/sbin/iked/iked.conf.5
+++ b/sbin/iked/iked.conf.5
@@ -1,4 +1,4 @@
-.\" $OpenBSD: iked.conf.5,v 1.32 2014/05/06 13:09:18 jmc Exp $
+.\" $OpenBSD: iked.conf.5,v 1.33 2014/08/05 16:34:03 reyk Exp $
  .\"
  .\" Copyright (c) 2010 - 2014 Reyk Floeter <reyk@openbsd.org>
  .\" Copyright (c) 2004 Mathieu Sauve-Frankel  All rights reserved.
@@ -15,7 +15,7 @@
  .\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
  .\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
  .\"
-.Dd $Mdocdate: May 6 2014 $
+.Dd $Mdocdate: August 5 2014 $
  .Dt IKED.CONF 5
  .Os
  .Sh NAME
@@ -718,7 +718,7 @@ a relevant NAT rule is required in
  For the example above,
  this would be:
  .Bd -literal -offset indent
-match on enc0 from 192.168.1.0/24 to 192.168.2.0/24 nat-to 10.10.10.1
+match out on enc0 from 192.168.1.0/24 to 192.168.2.0/24 nat-to 10.10.10.1
  .Ed
  .Pp
  From the peer's point of view,
author	reyk <reyk@openbsd.org>
	Tue, 5 Aug 2014 16:34:03 +0000 (16:34 +0000)
committer	reyk <reyk@openbsd.org>
	Tue, 5 Aug 2014 16:34:03 +0000 (16:34 +0000)