Compact tunnel-type table in tunnels manpage

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@5253 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2025-06-20 17:58:07 +02:00 · 2007-01-18 15:45:58 +00:00 · 2007-01-18 15:45:58 +00:00 · 155c668bb7
commit 155c668bb7
parent b24efabfe7
1 changed files with 16 additions and 14 deletions
--- a/manpages/shorewall-tunnels.xml
+++ b/manpages/shorewall-tunnels.xml
@ -53,23 +53,25 @@
        <listitem>
          <para>Types are as follows:</para>

-          <programlisting>        <emphasis role="bold">ipsec</emphasis>            - IPv4 IPSEC
-        <emphasis role="bold">ipsecnat</emphasis>         - IPv4 IPSEC with NAT-Traversal (UDP port 4500 encapsulation)
-        <emphasis role="bold">ipip</emphasis>             - IPv4 encapsulated in IPv4 (Protocol 4)
-        <emphasis role="bold">gre</emphasis>              - Generalized Routing Encapsulation (Protocol 47)
-        <emphasis role="bold">pptpclient</emphasis>       - PPTP Client runs on the firewall
-        <emphasis role="bold">pptpserver</emphasis>       - PPTP Server runs on the firewall
-        <emphasis role="bold">openvpn</emphasis>          - OpenVPN in point-to-point mode
-        <emphasis role="bold">openvpnclient</emphasis>    - OpenVPN client runs on the firewall
-        <emphasis role="bold">openvpnserver</emphasis>    - OpenVPN server runs on the firewall
-        <emphasis role="bold">generic</emphasis>          - Other tunnel type</programlisting>
+          <programlisting>        <emphasis role="bold">ipsec</emphasis>         - IPv4 IPSEC
+        <emphasis role="bold">ipsecnat</emphasis>      - IPv4 IPSEC with NAT Traversal (UDP port 4500 encapsulation)
+        <emphasis role="bold">ipip</emphasis>          - IPv4 encapsulated in IPv4 (Protocol 4)
+        <emphasis role="bold">gre</emphasis>           - Generalized Routing Encapsulation (Protocol 47)
+        <emphasis role="bold">pptpclient</emphasis>    - PPTP Client runs on the firewall
+        <emphasis role="bold">pptpserver</emphasis>    - PPTP Server runs on the firewall
+        <emphasis role="bold">openvpn</emphasis>       - OpenVPN in point-to-point mode
+        <emphasis role="bold">openvpnclient</emphasis> - OpenVPN client runs on the firewall
+        <emphasis role="bold">openvpnserver</emphasis> - OpenVPN server runs on the firewall
+        <emphasis role="bold">generic</emphasis>       - Other tunnel type</programlisting>

          <para>If the type is <emphasis role="bold">ipsec</emphasis>, it may
          be followed by <emphasis role="bold">:noah</emphasis> to indicate
-          that the Authentication Header protocol (51) is not used by the
-          tunnel. Given that nat-traversal only support ESP (protocol 50),
-          <emphasis role="bold">ipsecnat</emphasis> tunnels don't need a
-          <emphasis role="bold">noah</emphasis> option.</para>
+          that the Authentication Headers protocol (51) is not used by the
+          tunnel. NAT traversal is only supported with ESP (protocol 50) so
+          <emphasis role="bold">ipsecnat</emphasis> tunnels don't require a
+          <emphasis role="bold">noah</emphasis> option (<emphasis
+          role="bold">ipsecnat:noah</emphasis> may be specified but is
+          redundant).</para>

          <para>If type is <emphasis role="bold">openvpn</emphasis>, <emphasis
          role="bold">openvpnclient</emphasis> or <emphasis