Difference between revisions of "User:Earnest/iptables"

From ArchWiki
Jump to: navigation, search
Line 2: Line 2:
 
:IPv4 Tables
 
:IPv4 Tables
 
::'''Tables'''
 
::'''Tables'''
:::''filter''
+
:::''filter:''
 
:::*The Default table containing the default {{ic|INPUT}}, {{ic|OUTPUT}} and {{ic|FORWARD}} chains.
 
:::*The Default table containing the default {{ic|INPUT}}, {{ic|OUTPUT}} and {{ic|FORWARD}} chains.
:::''nat''
+
:::''nat:''
 
:::*Table used when a packet creates a new connection. {{ic|PREROUTING}}, {{ic|OUTPUT}} and {{ic|POSTROUTING}}.
 
:::*Table used when a packet creates a new connection. {{ic|PREROUTING}}, {{ic|OUTPUT}} and {{ic|POSTROUTING}}.
:::''mangle''
+
:::''mangle:''
 
:::*This table is used for specialized packet alteration. {{ic|PREROUTING}}, {{ic|INPUT}}, {{ic|OUTPUT}}, {{ic|FORWARD}} and {{ic|POSTROUTING}}.
 
:::*This table is used for specialized packet alteration. {{ic|PREROUTING}}, {{ic|INPUT}}, {{ic|OUTPUT}}, {{ic|FORWARD}} and {{ic|POSTROUTING}}.
:::''raw''
+
:::''raw:''
 
:::*Used to configure exceptions to the normal rules and registers with the highest priority and will be called before all other tables. {{ic|PREROUTING}} and {{ic|OUTPUT}}.
 
:::*Used to configure exceptions to the normal rules and registers with the highest priority and will be called before all other tables. {{ic|PREROUTING}} and {{ic|OUTPUT}}.
:::''security''
+
:::''security:''
 
:::*The table used for Mandatory Access Control (MAC). It is called after the {{ic|filter}} table allowing DAC rules to be applied before MAC rules. {{ic|INPUT}}, {{ic|OUTPUT}} and {{ic|FORWARD}}.
 
:::*The table used for Mandatory Access Control (MAC). It is called after the {{ic|filter}} table allowing DAC rules to be applied before MAC rules. {{ic|INPUT}}, {{ic|OUTPUT}} and {{ic|FORWARD}}.
  

Revision as of 12:45, 1 May 2013

iptables

IPv4 Tables
Tables
filter:
  • The Default table containing the default INPUT, OUTPUT and FORWARD chains.
nat:
  • Table used when a packet creates a new connection. PREROUTING, OUTPUT and POSTROUTING.
mangle:
  • This table is used for specialized packet alteration. PREROUTING, INPUT, OUTPUT, FORWARD and POSTROUTING.
raw:
  • Used to configure exceptions to the normal rules and registers with the highest priority and will be called before all other tables. PREROUTING and OUTPUT.
security:
  • The table used for Mandatory Access Control (MAC). It is called after the filter table allowing DAC rules to be applied before MAC rules. INPUT, OUTPUT and FORWARD.

ipv6tables

IPv6 Tables

arptables

ARP Tables

ebtables

Ethernet frames