The order of rule insertion only matters when the rules have the same table and chains. So, the following table/chain combinations can be applied in any order: Raw/PREROUTING Mangle/PREROUTING Nat/PREROUTING Mangle/INPUT Filter/INPUT Mangle/FORWARD Filter/FORWARD Raw/OUTPUT Mangle/OUTPUT Filter/OUTPUT Nat/OUTPUT Mangle/POSTROUTING Nat/POSTROUTING Also, any policy (-P ..) rules can be applied in any order, but if you have more than one policy rule for any of the above table/chain combinations, the later executed rule will persist. -----Original Message----- From: Alejandro Cabrera Obed [mailto:sisdis@xxxxxxxxxxxxxx] Sent: Wednesday, November 26, 2003 10:41 AM To: Netfilter lista (iptables) Subject: Order in ruleset edition Hi !!! I'm trying to construct my own ruleset of iptables; I'm editing a file script. My question is the following: Is there any order about CHAINS and TABLES that I have to follow in order to construct my iptables ruleset ??? For example, is it the same if firstly I write in my script my the FORWARD rules and then the OUTPUT and INPUT rules or viceversa ??? Thanks a lot and regards !!! Alejandro.
