From: "Erik S. Johansen" <lists@sperling.no>
To: lartc@vger.kernel.org
Subject: Re: [LARTC] Routing fundamentals
Date: Fri, 28 Mar 2003 16:46:17 +0000 [thread overview]
Message-ID: <marc-lartc-104887006721684@msgid-missing> (raw)
In-Reply-To: <marc-lartc-104882855509686@msgid-missing>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Friday 28 March 2003 07:14, Kjell Chris Flor wrote:
> Hi,
>
> Tell me if I understand this right.
>
> For a packet that is not for local host,
> but comes in on one interface and goes
> out on another;
>
> Will that packet traverse PREROTING, FORWARD and POSTROUTING
> on _both_ underface, or
>
> will that packet traverse PREROTING, FORWARD and POSTROUTING
> only once, where PREROTING is when a packet "is in" the incoming
> physical interface, and is in FORWARD and POSTROUTING when
> the packet "is in" the outgoing interfave?
I believe this ASCII to be correct, but I'm not certain so a verification from
someone would be appreciated.
-------- -------------------
| Device | | Local application |
---|---- -----|-------------
| |
V |
| |
___|_______________ ___|_______________
/ \ / \
| Connection Tracking | | Connection Tracking |
| | | | | |
| mangle/PREROUTING | | mangle/OUTPUT |
| | | | | |
| nat/PREROUTING | | nat/OUTPUT |
| | | | |
| | | filter/OUTPUT |
\___ _______________/ \___ _______________/
| |
| |
| V
| |
| ----|----
V | Routing |
| ----|----
| |
| V
| ______________ |
---|----- / \ |
| Routing |--->-----| filter/FORWARD |---
---|----- \______________/ |
| |
V V
| |
___|_________________ ________|__________
/ \ / \
| filter/INPUT | | nat/POSTROUTING |
| | | | | |
| Connection Tracking | | Connection Tracking |
\___ _________________/ \________ __________/
| |
| |
V V
| |
| |
----|--------------- --------
| Local application | | Device |
-------------------- --------
- --Erik
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE+hHxZds9m9uhAobARArrzAJ93Ia6VFxiS8Cx92+M/nfvBxVucpwCeJByZ
kvCpV+lKDHmSCBIi5rutlig=QSJn
-----END PGP SIGNATURE-----
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
next prev parent reply other threads:[~2003-03-28 16:46 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-03-28 5:14 [LARTC] Routing fundamentals Kjell Chris Flor
2003-03-28 10:59 ` Stef Coene
2003-03-28 16:28 ` Kjell Chris Flor
2003-03-28 16:46 ` Erik S. Johansen [this message]
2003-03-28 19:32 ` Martin A. Brown
2003-03-28 20:08 ` Martin A. Brown
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=marc-lartc-104887006721684@msgid-missing \
--to=lists@sperling.no \
--cc=lartc@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.