forward rules explanation in iptables
Can someone explain me what r the two forward rules doing in this iptable?
Code:
iptables -F |
the first says that anyting entering eth1 with a source address of 192.168.23.0/24 that has not been seen before will be permitted to route through the box. the second says any traffic for existing connections will be permitted to route through the box.
|
it is all about connection states: http://www.iptables.info/en/connection-state.html
briefly say, only traffic originated in the private network is allowed |
i want to ask how iptables knows a packet is to be forwarded and must apply these rules.
|
it is covered clear in the doc, just click that link
|
Quote:
|
it knows when it receives a packet with it's MAC address, but not it's own IP address.
|
Quote:
|
well, locally generated traffic does not traverse any FORWARD chains, other traffic is tested against the destination IP-address:
Code:
$ ip r g 127.0.0.1 | cut -d' ' -f1 |
Quote:
|
this has nothing at all to do with Linux. Just saying "i don't get it" isn't really helping us help you.
|
Quote:
|
so what bit don't you understand? and what do you specifically want to know?
|
Quote:
|
Quote:
|
All times are GMT -5. The time now is 05:33 PM. |