Improve clarity

2021-02-03 20:42:09 +01:00 · 2021-02-03 20:42:09 +01:00 · e58100b82d
commit e58100b82d
parent 906c43e195
1 changed files with 1 additions and 1 deletions
--- a/index.html
+++ b/index.html
@ -273,7 +273,7 @@ subnet 192.168.3.0 netmask 255.255.255.0 {
 <p>Also, let me start by saying that even though the syntax for PF is very readable, it is <strong>very easy</strong> to make mistakes when writing firewall rules. Even senior and experienced system administrators makes mistakes when writing firewall rules.</p> 
 <p>Writing firewall rules requires that you carefully plan out your goals, understand how to implement the different rules in order to achieve the desired results, and at the same time take your precautions against doing it wrong and accidentally logging yourself out :) I think we've all done that at one time or another, whether in haste, tiredness, or just by mistake, I know I have several times.</p> 
 <p>The most important part is that you don't make any assumptions. Always test your rules thoroughly. If something isn't working, try to remove as much as possible from your rules so you're left with the rules that's causing problems, and deal with the setup step by step.</p> 
-<p>The really difficult part is to remember how data packets arrive at one NIC and how they are then forwarded to a machine on another NIC, and then relating this "journey" correctly to the terms <b>in</b>, <b>out</b>, <b>from</b> and <b>to</b>. These terms often does not work exactly as we tend to think.</p> 
+<p>The really difficult part is to remember how data packets arrive at one NIC and how they are then forwarded to a machine on another NIC, and then relating this "journey" correctly to the terms <b>pass in</b>, <b>pass out</b>, <b>block in</b>, <b>block out</b>, <b>from</b> and <b>to</b>. These terms often does not work exactly as we tend to think.</p> 
  
 <h3 id="clarifications">Clarifications</h3> 
 <p>I want to start by clarifying some of the common default settings and keywords in PF.</p>