diff --git a/Shorewall/manpages/shorewall-rules.xml b/Shorewall/manpages/shorewall-rules.xml index d001acd1c..91cff1f48 100644 --- a/Shorewall/manpages/shorewall-rules.xml +++ b/Shorewall/manpages/shorewall-rules.xml @@ -241,7 +241,7 @@ ADD(ipset:flags) + role="bold">ADD(ipset:flags[:timeout]) Added in Shorewall 4.4.12. Causes addresses and/or port @@ -256,6 +256,12 @@ role="bold">dst respectively (see the -A command in ipset (8)). + Beginning with Shorewall 5.0.3, an optional + timeout can be specified. This is + the number of seconds that the new entry in the ipset is to + remain valid and overrides any timeout specified when the + ipset was created. + ADD is non-terminating. Even if a packet matches the rule, it is passed on to the next rule. diff --git a/Shorewall6/manpages/shorewall6-rules.xml b/Shorewall6/manpages/shorewall6-rules.xml index 5d8b0a72b..85f750616 100644 --- a/Shorewall6/manpages/shorewall6-rules.xml +++ b/Shorewall6/manpages/shorewall6-rules.xml @@ -229,6 +229,12 @@ role="bold">dst respectively (see the -A command in ipset (8)). + Beginning with Shorewall 5.0.3, an optional + timeout can be specified. This is + the number of seconds that the new entry in the ipset is to + remain valid and overrides any timeout specified when the + ipset was created. + ADD is non-terminating. Even if a packet matches the rule, it is passed on to the next rule.