* What is iptables in Linux ?
Iptables is a rule based firewall system and is normally pre-installed on a Unix operating system which is controlling the incoming and outgoing packets.
Basic structure of iptables
The structure for the iptables is like, Tables which has chains and the chains which contains rules.
Tables —> Chains —> Rules. The rules are defined to control the packets for Input/Output.
List of different Tables in iptables structure.
1. Filter Table
It is the default table in iptables. There are no need to specify the table name for defining the Rules. Different inbuilt chains in this table;
1.1 INPUT Chain
INPUT Chain is for managing packets input to the server. Here we can add Rules to control INPUT connections from remote to the server.
1.2 FORWARD Chain
To add Rules to manage packet connections from one network interface(NIC) to another on the same machine.
1.3 OUTPUT Chain
The OUTPUT Chain control packets from the server to outside. Here we can add different rules to manage outbound connection from the server.
* How/command to list all rules from the Filter table of iptables ?
Syntax:
iptables -t filter --list or iptables -t filter -L
Or simply;
iptables --list or iptables -L
Sample output:
root@test [~]# iptables -t filter --list Chain INPUT (policy ACCEPT) target prot opt source destination acctboth all -- anywhere anywhere Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination
2. NAT table
Network address translation (NAT) is a methodology of modifying network address information in Internet Protocol (IP) datagram packet headers while they are in transit across a traffic routing device for the purpose of remapping one IP address space into another. The default inbuilt chains for NAT tables are;
2.1 PREROUTING chain
As the name indicates its translate packets before routing.
2.2 POSTROUTING chain
Translate packets after routing completes.
2.3 OUTPUT chain
* How/command to list all rules from the NAT table of iptables ?
Syntax:
iptables -t nat --list or iptables -t nat -L
Example:
root@test [~]# iptables -t nat -L Chain PREROUTING (policy ACCEPT) target prot opt source destination Chain POSTROUTING (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination
3. Mangle table
This table is used for packet alternation. Different inbuilt chains are;
3.1 PREROUTING chain
3.2 OUTPUT chain
3.3 FORWARD chain
3.4 INPUT chain
3.5 POSTROUTING chain
* How/command to list all rules from the Mangle table of iptables ?
Syntax:
iptables -t mangle --list or iptables -t mangle -L
Example:
root@test [~]# iptables -t mangle --list Chain PREROUTING (policy ACCEPT) target prot opt source destination Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination Chain POSTROUTING (policy ACCEPT) target prot opt source destination
That’s it.
Are you ready for another cPanel price adjustment? As we have approached January 2025, cPanel has rolled out significant changes…
In this growing digital world, having a website is not enough—it’s a crucial and much-needed option. But here's the challenge…
In today's digital age, the line between hobby photography and professional photography has become increasingly blurred. With the rise of…
Are you taking your first steps into the world of web hosting? You're not alone. Every day, countless individuals and…
Due to growing digitalization, Email Communication has become the backbone of professional interactions. Yet, surprisingly, many professionals struggle to craft…