|
|
## Explanation of IP Tables Rules
|
|
## Explanation of IP Tables Rules
|
|
|
---
|
|
---
|
|
|
|
The INPUT chain determines how to treat an IP packet coming in to the network adapter from the network.
|
|
|
|
The OUTPUT chain determines how to treat an IP packet coming from with the device
|
|
|
|
|
|
|
|
|
The Chain will list each rule by protocol, source and destination address & port
|
|
|
|
The target is a list of criteria to determine if the message should be handled by that target
|
|
|
|
|
|
|
|
|
|
|
|
```mermaid
|
|
|
|
graph LR;
|
|
|
|
INPUT-->bw_input;
|
|
|
|
INPUT-->fw_INPUT;
|
|
|
|
FORWARD-->oem_fwd;
|
|
|
|
FORWARD-->fw_FORWARD;
|
|
|
|
FORWARD-->natctrl_FORWARD;
|
|
|
|
OUTPUT-->oem_out;
|
|
|
|
OUTPUT-->fw_OUTPUT;
|
|
|
|
OUTPUT-->st_OUTPUT;
|
|
|
|
OUTPUT-->bw_OUTPUT;
|
|
|
|
```
|
|
|
|
|
|
|
|
```
|
|
```
|
|
|
Chain INPUT (policy ACCEPT)
|
|
Chain INPUT (policy ACCEPT)
|
| ... | @@ -14,7 +32,7 @@ Chain FORWARD (policy ACCEPT) |
... | @@ -14,7 +32,7 @@ Chain FORWARD (policy ACCEPT) |
|
|
target prot opt source destination
|
|
target prot opt source destination
|
|
|
oem_fwd all -- anywhere anywhere
|
|
oem_fwd all -- anywhere anywhere
|
|
|
fw_FORWARD all -- anywhere anywhere
|
|
fw_FORWARD all -- anywhere anywhere
|
|
|
bw_FORWARD all -- anywhere anywhere
|
|
fw_FORWARD all -- anywhere anywhere
|
|
|
natctrl_FORWARD all -- anywhere anywhere
|
|
natctrl_FORWARD all -- anywhere anywhere
|
|
|
```
|
|
```
|
|
|
|
|
|
| ... | | ... | |
