From: Florian Westphal <fw@strlen.de>
Date: Tue, 27 Sep 2022 10:28:21 +0000 (+0200)
Subject: doc: mention vlan matching in ip/ip6/inet families
X-Git-Tag: v1.0.6~40
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=df9ddef00af5ba54c027eb5425eedc2b55a22a3e;p=thirdparty%2Fnftables.git

doc: mention vlan matching in ip/ip6/inet families

It only works if vlan_reorder is turned off to disable the vlan tag
removal.

Signed-off-by: Florian Westphal <fw@strlen.de>
---

diff --git a/doc/payload-expression.txt b/doc/payload-expression.txt
index 106ff74c..113f5bfc 100644
--- a/doc/payload-expression.txt
+++ b/doc/payload-expression.txt
@@ -23,6 +23,14 @@ VLAN HEADER EXPRESSION
 [verse]
 *vlan* {*id* | *dei* | *pcp* | *type*}
 
+The vlan expression is used to match on the vlan header fields.
+This expression will not work in the *ip*, *ip6* and *inet* families,
+unless the vlan interface is configured with the *reorder_hdr off* setting.
+The default is *reorder_hdr on* which will automatically remove the vlan tag
+from the packet. See ip-link(8) for more information.
+For these families its easier to match the vlan interface name
+instead, using the *meta iif* or *meta iifname* expression.
+
 .VLAN header expression
 [options="header"]
 |==================