On Saturday 2010-07-31 23:23, ABPNI wrote: >> >> Yes. >> If you don't need filtering, you don't need ip6tables. > > Am I correct in saying that iptables/ip6tables doesn't actually alter/affect > "path" of traffic, but only either allows or blocks?-- You are correct in your assessment. The currently-included Xtables modules do not alter the path of existing traffic. Modules might create new packets and do some routing with them (e.g. REJECT, TEE), but the original packet is accepted/drop/continued. Modules might also change packet parameters (like nfmark) that will influence the path decision later on. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
