Mailing List Archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [tlug] Re: wither ipchains?




----- Original Message -----
From: "Josh Glover" <jmglov@example.com>

> Stateful firewalling in Linux is pretty complex. IPFilter is the bit
> in the kernel that actually does the work.

<snip>

> In preparation for this rant, I did some cursory Google searches to
> make sure that I was right about the way that I *think* IPFilter is
> implemented. I could not find much. If anyone has links to some solid
> documentation on the design of Linux IPFilter, please post them here,
> as I need some good bedtime reading.

That's basically what the official site says, *netfilter* is the kernel
hooks that ipchains or iptables use.

http://www.netfilter.org/


Caveat: I am an applications programmer who has ended up doing sys admin
work, take everything I say with a generous pinch of salt.




Home | Main Index | Thread Index

Home Page Mailing List Linux and Japan TLUG Members Links