docs(config): Warn user that a trailing target=DROP rule is sensible

2022-07-05 04:45:41 +02:00 · 2022-07-05 04:45:41 +02:00 · 69bdac4aa6
commit 69bdac4aa6
parent 7b3ebde367
2 changed files with 6 additions and 2 deletions
--- a/README.md
+++ b/README.md
@ -89,9 +89,11 @@ We strongly recommend you do keep the very last example section:
 target = DROP
 addr =
 ports =
-proto = 
+proto =
+state =
+do_ipv6 = true
 ```
-If a packet has traversed rules this far without being accepted it will be dropped.
+If a packet has traversed rules this far without being accepted it will be dropped. Note that if any of your custom `[sections]` use `do_ipv6 = true` your final `DROP` rule should do the same. Otherwise you'll just get `DROP` rule in `iptables` but not in `ip6tables`.

 ## Options

--- a/examples/config.ini.example
+++ b/examples/config.ini.example
@ -28,3 +28,5 @@ target = DROP
 addr =
 ports =
 proto =
+state =
+do_ipv6 = true