I do not believe it is accurate. Primarily because it appears to indicate that forwarded packets go through the INPUT and OUTPUT chains, and AFAIK, they do not. This is much newer, and I believe, more accurate: http://jengelh.medozas.de/images/nf-packet-flow.png For something simpler, iptables-only, and less intimidating: http://dmiessler.com/images/DM_NF.PNG I have also referenced this in the past: http://linux-ip.net/nf/nfk-traversal.png On Mon, Aug 25, 2008 at 18:41, Jose Ildefonso Camargo Tolosa <ildefonso.camargo@xxxxxxxxx> wrote: > Hi everybody! > > I have been using for quite a while this picture ( > http://ebtables.sourceforge.net/br_fw_ia/PacketFlow.png ) as a > reference for understanding/teaching iptables packet flow, I know it > is still valid, but I don't know how accurate is it, I mean, there has > been changes to the netfilter code since the time that picture was > made, the first thing you can see is that, there is no raw table > there. > > Yes, I know, that's from ebtables site, but It also includes netfilter tables. > > Can anybody take a look at it and evaluate whether or not it is still accurate? > > Thanks in advance, I > Ildefonso Camargo > -- > To unsubscribe from this list: send the line "unsubscribe netfilter" in > the body of a message to majordomo@xxxxxxxxxxxxxxx > More majordomo info at http://vger.kernel.org/majordomo-info.html > -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
