IPTABLES is (or should) replacing IPCHAINS
1. IPCHAINS
-with ipchains you will need to write a rule for the input, forward
and output chains, as each and every packet goes through each of
these chain. This usually leads to a very complex script even for a
simple packet filter.
2. IPTABLES
- with iptables you will need to write rules as follows:
INPUT rules only for packets with the destination IP on the local box
FORWARD rules only for packets passing through the local box
OUTPUT rules only for packets generated on the local box
No comments:
Post a Comment
Feel free to leave a comment