Re: POM Xtables???

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Monday 2008-06-30 18:04, Dave wrote:

>Over the weekend I managed to get the Xtables-addons working with
>Kernel 2.6.25.  Throughout this process many questions have come up
>that were unanswered by the documentation or Netfilter site.  I'll
>point them out.
>
>1) Confusion on just what Xtables is.  Is Xtables really just
>Iptables?  It seems to be, but there is nothing saying so officially.
>2) Is Xtables the same things as Xtables-addons, Jan in your
>directory, the files go from Xtables..... to Xtables-addons.... , does
>this mean they are the same thing or different?

I recently had updated http://en.wikipedia.org/wiki/Netfilter , maybe it gives
a few hints.

Xtables, is x_tables.ko, in other words, the firewall, and the table
structure as you know it. It is the mold of ip_tables.ko and
ip6_tables.ko, though of course the latter two still exist, for
reasons of simple "unsharability", code that applies to just one of
IPv4 or IPv6, respectively.

Sometimes people call it Iptables too, it has become synonymous. The
same holds true for the userspace tool. When in doubt, the suffix
"kernel components" or "userspace components" should be added when
mentioning xtables and/or iptables if we cannot figure out.

Hence xtables-addons. The name was strongly inspired by
asterisk-addons, actually.

>3) Still don't know where Xtables-addons fits in with Netfilter?  Why
>is Xtables not on the Netfilter site or even mentioned there at all?

It is a relatively new name that had not yet had much widespread use
(in the process of promoting it though); people still call iptables
and xtables interchangably. Xtables is not a completely shiny new
product, but a gradual evolution from previous code, so people see
less need to call it that way, especially since most of the users
only deal with the IPV4-specific part of the userspace tools anyway
(aka /usr/sbin/iptables).

--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux