Boston Linux & Unix (BLU) Home | Calendar | Mail Lists | List Archives | Desktop SIG | Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings
Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU

BLU Discuss list archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

IPTables Forward chain confusion..



On Fri, Mar 30, 2007 at 05:31:20PM -0400, Myrle Francis wrote:
> I screwing around trying to learn IPTables. I pretty good and understanding
> the INPUT & OUTPUT chains, and I'm manipulating then nicely. What I dont
> seem to grasp is the FORWARD chain & when it is used.
> 
> the scenario (the home network)
> I have dd-wrt (linux for your linksys)  installed on my router. my home
> network is just a single network and no subnets.
> so in this example the FORWARD chain never get used because... (and here is
> my guess) Forward is used to forward between subnets on my network (if I had
> any) or to my dmz.

Any time that you machine acts as a router, accepting packets
that are not destined for itself, FORWARD is invoked.

if /proc/sys/net/ipv4/ip_forward contains a 0, no forwarding
will occur. If it contains a 1, packets will be forwarded.

-dsr-

-- 
.. .----. --   .-. . .- -.. .. -. --.   -.-- --- ..- .-.   -- .- .. .-.. .-.-.-   .-- .... ---   . .-.. ... .   .. ... ..--.. 
http://tao.merseine.nu/~dsr/eula.html is hereby incorporated by reference.

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.





BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!



Boston Linux & Unix / webmaster@blu.org