LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page why do we have same chains in diffrent tables of "iptables firewall"?
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 03-22-2015, 02:31 AM   #1
zen.pwning
LQ Newbie
 
Registered: Oct 2014
Posts: 3

Rep: Reputation: Disabled
why do we have same chains in diffrent tables of "iptables firewall"?

why do we have same chains in different tables of "iptables firewall" in linux?

Like for example:
we have output chain in filter table, nat table, mangle table.
Last edited by zen.pwning; 03-22-2015 at 03:18 AM. Reason: typos
 
Old 03-22-2015, 04:16 PM   #2
dijetlo
Senior Member
 
Registered: Jan 2009
Location: RHELtopia....
Distribution: Solaris 11.2/Slackware/RHEL/
Posts: 1,491
Blog Entries: 2

Rep: Reputation: Disabled
Think of each tables like a funnel and the chains are like a sieve. If a packet qualifies, based on an algorithm applied to all incoming packets, for a particular funnel, it gets passed through that funnels sieve (the ipchains rules). Funnels can be linked so the output of one funnel can simply point to the next funnel (given certain conditions were met in the calculation of the original algorithm). So they all have to have output chains, otherwise, they effectively become "/dev/null" (until they back up into kernel space, at which point things can get ugly).
 
  


Reply

Tags
firewall, iptables, linux security



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Iptables firewall deny "P win 512" 128 Linux - Security 14 09-29-2012 05:54 AM
[SOLVED] IPTABLES DNAT for packets originated within the "firewall" matiasar Linux - Networking 1 09-01-2010 08:03 AM
mysql "flush logs" or "flush tables with read lock", ... hangs deadeyes Linux - Server 4 01-19-2010 03:24 AM
[SOLVED] Is RHEL "Firewall" during install the same as IPTables? anon091 Linux - Newbie 4 09-16-2009 09:03 AM
Backups across firewall "doable" w/iptables? landev Linux - Security 9 10-17-2006 05:17 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 07:15 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration