--- On Sun, 4/12/09, Amos Jeffries <squid3@xxxxxxxxxxxxx> wrote: From: Amos Jeffries <squid3@xxxxxxxxxxxxx> Subject: Re: question about table filter, nat and mangle with chain default policy To: "my mail" <amfpg@xxxxxxxxx> Cc: netfilter@xxxxxxxxxxxxxxx Date: Sunday, April 12, 2009, 11:40 AM > > > The packet flows diagram can explain a lot more than any amount of text: > http://l7-filter.sourceforge.net/PacketFlow.png > ... now imagine that the boxes labled mangle::PREROUTING and nat::PREROUTING had a DROP for all packets. > Which is configured like this: > $IPT -t mangle --policy PREROUTING DROP > $IPT -t nat --policy PREROUTING DROP > > AYJ ah i see, very2 thanks Amos for link into the diagram, i understand now about packet flow in iptables/netfilter. Link you give to me very2 helpful for me thanks again Amos... best regards -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
