tables:
==================
1)a table is something that allows you to process packets in specific ways
2)default table is the "filter" table,these "tables" have "chains" attached to them
|
|+filter table: default table, decide whether packet should allowed to its dest.
|
|+mangle table: alter packet headers in various ways,such as changing TTL values.
|
|+nat table: allows you to route packets to different hosts on NAT (Network Address | Translation) networks by changing the source and destination addresses of | packet
|
|+ raw table:allows you to work with packets before the kernel starts tracking its state
chains:
=============
1)chains allow you to "inspect traffic at various points",
such as when they just arrive on the network interface
or just before they’re handed over to a process.
