From 20f91cb7ab9869fd431f5af79e223ec35e598eaa Mon Sep 17 00:00:00 2001
From: bol-van <none@none.none>
Date: Sat, 24 May 2025 09:58:41 +0300
Subject: [PATCH] doc works

---
 docs/readme.en.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/docs/readme.en.md b/docs/readme.en.md
index 55e59066..ece0ab9c 100644
--- a/docs/readme.en.md
+++ b/docs/readme.en.md
@@ -1379,6 +1379,10 @@ With other values or if the parameter is commented out, the rules will not be ap
 This is useful if you have a firewall management system, in the settings of which you should tie the rules.
 Not applicable to `OpenWRT` if used with `firewall3+iptables`.
 
+`FILTER_TTL_EXPIRED_ICMP=1` blocks icmp time exceeded messages in response to connections handled by nfqws.
+Linux closes socket if it receives this icmp in response to SYN packet. Similar mechanism exists for datagram sockets.
+It's better to disable this if you do not expect problems caused by icmp.
+
 The following settings are not relevant for openwrt :
 
 If your system works as a router, then you need to enter the names of the internal and external interfaces: