Module Name: src
Committed By: maxv
Date: Thu Aug 16 09:50:37 UTC 2018
Modified Files:
src/usr.sbin/npf/npfctl: npf.conf.5
Log Message:
Improve the "Map" section a little.
To generate a diff of this commit:
cvs rdiff -u -r1.57 -r1.58 src/usr.sbin/npf/npfctl/npf.conf.5
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: src/usr.sbin/npf/npfctl/npf.conf.5
diff -u src/usr.sbin/npf/npfctl/npf.conf.5:1.57 src/usr.sbin/npf/npfctl/npf.conf.5:1.58
--- src/usr.sbin/npf/npfctl/npf.conf.5:1.57 Thu Aug 16 09:46:18 2018
+++ src/usr.sbin/npf/npfctl/npf.conf.5 Thu Aug 16 09:50:37 2018
@@ -1,4 +1,4 @@
-.\" $NetBSD: npf.conf.5,v 1.57 2018/08/16 09:46:18 maxv Exp $
+.\" $NetBSD: npf.conf.5,v 1.58 2018/08/16 09:50:37 maxv Exp $
.\"
.\" Copyright (c) 2009-2017 The NetBSD Foundation, Inc.
.\" All rights reserved.
@@ -240,10 +240,14 @@ it can be overridden with the aforementi
keyword.
.Ss Map
Network Address Translation (NAT) is expressed in a form of segment mapping.
-The translation may be dynamic (stateful) or static (stateless).
+The translation may be
+.Cd dynamic
+(stateful) or
+.Cd static
+(stateless).
The following mapping types are available:
.Pp
-.Bl -tag -width <-> -compact
+.Bl -tag -width <-> -offset indent
.It Pa ->
outbound NAT (translation of the source)
.It Pa <-
@@ -260,7 +264,7 @@ map $ext_if dynamic 10.1.1.0/24 -> $pub_
.Pp
Translations are implicitly filtered by limiting the operation to the
network segments specified, that is, translation would be performed only
-on packets originating from 10.1.1.0/24 network.
+on packets originating from the 10.1.1.0/24 network.
Explicit filter criteria can be specified using "pass <criteria>" as
an additional option of the mapping.
.Ss Procedures
