From 07acc987eeafcd045f4258816ca6446ff4cea2e1 Mon Sep 17 00:00:00 2001
From: Jennifer Travinski <jennifer.travinski@suse.com>
Date: Tue, 1 Feb 2022 22:53:53 +0000
Subject: [PATCH] Added new section for air-gapped local cluster proxy
 configuration

---
 .../single-node-docker/proxy/_index.md           | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/content/rancher/v2.6/en/installation/other-installation-methods/single-node-docker/proxy/_index.md b/content/rancher/v2.6/en/installation/other-installation-methods/single-node-docker/proxy/_index.md
index 1ac4a66c017..bb17439c85b 100644
--- a/content/rancher/v2.6/en/installation/other-installation-methods/single-node-docker/proxy/_index.md
+++ b/content/rancher/v2.6/en/installation/other-installation-methods/single-node-docker/proxy/_index.md
@@ -40,3 +40,19 @@ docker run -d --restart=unless-stopped \
 ```
 
 Privileged access is [required.]({{<baseurl>}}/rancher/v2.6/en/installation/other-installation-methods/single-node-docker/#privileged-access-for-rancher)
+
+### Air-gapped local cluster proxy configuration
+
+_New in v2.6.4_
+
+You can now provision node driver clusters from an air-gapped cluster configured to use a proxy for outbound connections. 
+
+In addition to setting the default rules for a proxy server as shown above, you will need to add additional rules, shown below, to provision node driver clusters from a proxied Rancher environment. Note that you will configure `/etc/apt/apt.conf.d/proxy.conf` directly:
+
+```
+acl SSL_ports port 22
+acl SSL_ports port 2376
+
+acl Safe_ports port 22      # ssh
+acl Safe_ports port 2376    # docker port
+```