Tables

3.3 Tables

A table in iptables represents a speciﬁc kind of network traﬃc. There are three predeﬁned tables.

filter: this table speciﬁes what to do with “normal” traﬃc packets. In other words, if a packet/fragment is not special (as describe in the other two tables), it is processed by chains of this table.
nat: this table speciﬁes what to do with connection initiation packets.
mangle: this table speciﬁes what to do with customized packet processing.

Note that a packet can be handled by multiple tables. For example, a packet intended for a host inside a private network can be processed by the filter table ﬁrst, then processed by the nat table.

  3.3.1 ﬁlter
  3.3.2 nat
  3.3.3 mangle

[next] [prev] [prev-tail] [front] [up]