From 9749dce2b4cde3f29f94f474fd7aef98607ea2b8 Mon Sep 17 00:00:00 2001
From: r-caamano <robert.caamano@netfoundry.io>
Date: Thu, 26 Sep 2024 01:56:19 +0000
Subject: [PATCH] Updated README.md

---
 README.md | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/README.md b/README.md
index f7835c1..9be3927 100644
--- a/README.md
+++ b/README.md
@@ -476,6 +476,19 @@ sudo zfw --vrrp-enable <ens33 | all>
 sudo zfw --vrrp-enable <ens33 | all> -d
 ```
 
+### Non tuple passthrough
+**Caution:**
+This allows all non udp/tcp traffic to passthrough to the OS and should only be enabled if you are using zfw for tcp/udp redirection and are
+using **another firewall** to filter traffic. This setting will also disable icmp masquerade if enabled. **THIS SETTING IS DISABLED BY DEFAULT**.
+- Enable
+```
+sudo zfw -q, --pass-non-tuple <ifname | all>
+```
+
+- Disable 
+```
+sudo zfw -q, --pass-non-tuple <ifname | all> -d
+```
 
 ### Inserting / Deleting Ingress rules