Linux/Ubuntu2012.01.20 20:51
iptable 에 존재하는 테이블 목록은
filter / nat / mangle/ raw
네가지 이다.
[링크 : http://www.linuxreport.org/content/view/26/23/

filter:
This is the default table (if no -t option is passed). It contains the built-in chains INPUT (for packets destined to local sockets), FORWARD (for packets being routed through the box), and OUTPUT (for locally-generated packets).
nat:
This table is consulted when a packet that creates a new connection is encountered. It consists of three built-ins: PREROUTING (for altering packets as soon as they come in), OUTPUT (for altering locally-generated packets before routing), and POSTROUTING (for altering packets as they are about to go out).
mangle:
This table is used for specialized packet alteration. Until kernel 2.4.17 it had two built-in chains: PREROUTING (for altering incoming packets before routing) and OUTPUT(for altering locally-generated packets before routing). Since kernel 2.4.18, three other built-in chains are also supported: INPUT (for packets coming into the box itself),FORWARD (for altering packets being routed through the box), and POSTROUTING (for altering packets as they are about to go out).
raw:
This table is used mainly for configuring exemptions from connection tracking in combination with the NOTRACK target. It registers at the netfilter hooks with higher priority and is thus called before ip_conntrack, or any other IP tables. It provides the following built-in chains: PREROUTING (for packets arriving via any network interface)OUTPUT (for packets generated by local processes)

[링크 :  http://linux.die.net/man/8/iptables]  

iptable 에서 "관리"하는 목록은 proc fs에 존재하며
해당 테이블의 규칙 보는 방법은 -L 옵션을 사용하면 된다.

$ sudo cat /proc/net/ip_tables_names
mangle

$ sudo iptables -t mangle -L
Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination

Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination 

[링크 : http://forum.soft32.com/linux2/iptables-list-tables-ftopict29473.html]
Posted by 구차니

댓글을 달아 주세요