doc/userguide: document reject-both expection policy

author Victor Julien <vjulien@oisf.net>

Fri, 31 Oct 2025 15:20:17 +0000 (16:20 +0100)

committer Victor Julien <vjulien@oisf.net>

Fri, 31 Oct 2025 16:46:38 +0000 (16:46 +0000)
author Victor Julien <vjulien@oisf.net>
Fri, 31 Oct 2025 15:20:17 +0000 (16:20 +0100)
committer Victor Julien <vjulien@oisf.net>
Fri, 31 Oct 2025 16:46:38 +0000 (16:46 +0000)
diff --git a/doc/userguide/configuration/exception-policies.rst b/doc/userguide/configuration/exception-policies.rst

index 588323d1cb35aa8e3610424f3fb9eb5c894ac06a..f051988f5072945257bfd0885c44981613a1a03a 100644 (file)
--- a/doc/userguide/configuration/exception-policies.rst
+++ b/doc/userguide/configuration/exception-policies.rst
@@ -118,6 +118,8 @@ are:
  - ``drop-packet``: drop the packet.
  - ``reject``: same as ``drop-flow``, but reject the current packet as well (see
    ``reject`` action in Rule's :ref:`actions`).
+- ``reject-both``: same as ``reject``, except that it sends reject packets to both the
+  source and destination addresses.
  - ``bypass``: bypass the flow. No further decoding or parsing is done. :ref:`Bypass
    <bypass>` may be offloaded.
  - ``pass-flow``: disable payload and packet detection; stream reassembly,
@@ -153,7 +155,7 @@ midstream pick-ups enabled or not and the various exception policy values:
     * - Drop-packet
       - Not valid.*
       - Not valid.*
-   * - Reject
+   * - Reject / Reject-both
       - Not valid.*
       - Session not tracked, flow REJECTED.
     * - Pass-flow
@@ -192,7 +194,7 @@ whole flow.
     * - Drop-packet
       - Not valid.*
       - Not valid.*
-   * - Reject
+   * - Reject / Reject-both
       - Not valid.*
       - Session not tracked, flow DROPPED and REJECTED.
     * - Pass-flow
author	Victor Julien <vjulien@oisf.net>
	Fri, 31 Oct 2025 15:20:17 +0000 (16:20 +0100)
committer	Victor Julien <vjulien@oisf.net>
	Fri, 31 Oct 2025 16:46:38 +0000 (16:46 +0000)