Ludo Stellingwerff writes: > Chains are now called tables and you have 3 root-tables: mangle, nat and This is utterly wrong. Chains are still called chains. See "man iptables" and "iptables --help". Tables are groups of related-purpose chains. > Then you have 5 'hooks': the places in the network subsystem where these > tables can be used: > PRE-ROUTING, INPUT, FORWARD, OUTPUT, POST-ROUTING PREROUTING, INPUT, FORWARD, OUTPUT, and POSTROUTING are the names of chains. Fulling specifying a chain requires giving its chain name and the table it's in. I realize most users on the list know this, but I felt this needed correcting for the archives. > > > For a really good refreence on iptables in general, > > > check out > > > http://iptables-tutorial.frozentux.net/ > > > > Did you check the http://lartc.org/howto/ ? > It very clear and handson. It also has very little to do with ntfilter/iptables. -- Dick St.Peters, stpeters@xxxxxxxxxxxxx
