LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 02-09-2009, 08:09 AM   #1
priyadarshan
Member
 
Registered: Feb 2009
Location: Ahmedabad, Gujarat, India
Posts: 197

Rep: Reputation: Disabled
Question How actually packet traverse in IPTables


I am student of computer engineering, working on firewall project using IPtables.....I am little bit confused about packet flow in firewall..I saw the diagrams showing packet flow in IPTables.....I am quite confused...

(1) In the packet flow diagram, two networks are shown by using clouds....now pls tell me that which is public and which is private network?

(2) What are the conditions or parameters that determine weather the packet is for local process or not....I mean weather to put packet in INPUT chain or FORWARD chain?

(3) If packet is for local process than it goes to the INPUT chain....Now I want to know that what is local process really???.....If I have firewall than what may local process....I mean only internal host from private network will talk to remote servers....so data is generated by these two ends only ( I think so) ....than where does the local process of firewall ( Also written that local process generates packet) comes into the picture..


Pls pls pls respond me.....
 
Old 02-09-2009, 10:15 AM   #2
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
Quote:
Originally Posted by priyadarshan View Post
I am student of computer engineering, working on firewall project using IPtables.....I am little bit confused about packet flow in firewall..I saw the diagrams showing packet flow in IPTables.....I am quite confused...

(1) In the packet flow diagram, two networks are shown by using clouds....now pls tell me that which is public and which is private network?

(2) What are the conditions or parameters that determine weather the packet is for local process or not....I mean weather to put packet in INPUT chain or FORWARD chain?

(3) If packet is for local process than it goes to the INPUT chain....Now I want to know that what is local process really???.....If I have firewall than what may local process....I mean only internal host from private network will talk to remote servers....so data is generated by these two ends only ( I think so) ....than where does the local process of firewall ( Also written that local process generates packet) comes into the picture..


Pls pls pls respond me.....
I know for a fact that every single one of your questions is answered in the most popular iptables tutorial ever written. A private network uses IP addresses which aren't globally assigned. A packet will traverse INPUT if the source IP on it matches an IP assigned to the box it has come into contact with (otherwise, it will traverse FORWARD).

Last edited by win32sux; 02-09-2009 at 10:18 AM.
 
Old 02-10-2009, 07:47 AM   #3
priyadarshan
Member
 
Registered: Feb 2009
Location: Ahmedabad, Gujarat, India
Posts: 197

Original Poster
Rep: Reputation: Disabled
Actually I read this before but I couldnt get it...I mean I am confused.......

OK tell me that suppose I have IPTable configured firewall on my box than according to the diagram of packet traversing in IPTables, the local process will be my browser or anything which generates IP packets...it may my proxy server too...( M I right???....pls clear my confusion )

OK now here we have configured firewall on our box and we are sending packet from only our box so Local process is as I specified above.....


BUT BUT BUT.........

What if the firewall is configured on UTM machine or say on my GATEWAY machine, which is not really used for sending packet.......????.........More clearly I am telling that

If I have joined three machines to one other machine which acts as GATEWAY or to UTM machine than what will be the local process now.......How the packet will traverse.....


Pls Pls Pls answer me.........
 
Old 02-10-2009, 11:26 AM   #4
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
Quote:
Originally Posted by priyadarshan View Post
Actually I read this before but I couldnt get it...I mean I am confused.......

OK tell me that suppose I have IPTable configured firewall on my box than according to the diagram of packet traversing in IPTables, the local process will be my browser or anything which generates IP packets...it may my proxy server too...( M I right???....pls clear my confusion )

OK now here we have configured firewall on our box and we are sending packet from only our box so Local process is as I specified above.....


BUT BUT BUT.........

What if the firewall is configured on UTM machine or say on my GATEWAY machine, which is not really used for sending packet.......????.........More clearly I am telling that

If I have joined three machines to one other machine which acts as GATEWAY or to UTM machine than what will be the local process now.......How the packet will traverse.....


Pls Pls Pls answer me.........
Not sure I understand what you mean, but as far as the filter table, the INPUT/OUTPUT chains would be used by the clients, while the FORWARD chain would used by the gateway. BTW, I'm moving this to Networking for better exposure.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
iptables good packet chain (instead of bad packet chain) win32sux Linux - Security 6 11-06-2008 06:02 AM
IPTABLES: How Packets Traverse The Filters SBN Linux - Security 3 10-09-2007 07:25 PM
Packet getting dropped using iptables gugabaga Linux - Networking 1 02-03-2006 03:44 AM
How does iptables handle packet ? mrpc_cambodia Linux - Security 3 07-24-2004 04:25 AM
how packets traverse thru iptables chains? hardigunawan Linux - Security 1 01-09-2003 01:50 AM


All times are GMT -5. The time now is 10:42 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration