diff options
| author | Harald Welte <laforge@gnumonks.org> | 2015-10-25 21:00:20 +0100 |
|---|---|---|
| committer | Harald Welte <laforge@gnumonks.org> | 2015-10-25 21:00:20 +0100 |
| commit | fca59bea770346cf1c1f9b0e00cb48a61b44a8f3 (patch) | |
| tree | a2011270df48d3501892ac1a56015c8be57e8a7d /netfilter/abstract | |
import of old now defunct presentation slides svn repo
Diffstat (limited to 'netfilter/abstract')
| -rw-r--r-- | netfilter/abstract | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/netfilter/abstract b/netfilter/abstract new file mode 100644 index 0000000..152889a --- /dev/null +++ b/netfilter/abstract @@ -0,0 +1,23 @@ +The netfilter framework in Linux 2.4 + +Linux 2.4 provides a sophisticated infrastructure, called netfilter, which is the basis for packet filtering, network address translation and packet mangling. + +The whole firewalling implementation has been rewritten from scratch. + +Netfilter is a clean, abstract and well-defined interface to the network stack. It is easily extendable due to its modular concept. + +The presentation covers the following topics: + +- Netfilter concepts + - Infrastructure provided by the network stack + - IP tables +- Packet filtering + - The builtin matches and targets + - Stateful Firewalling (Connection Tracking) +- Network address translation + - Source NAT, destination NAT, Masquerading, transparent proxying +- Packet mangling +- Queuing packets to userspace +- Current work / Future / Netfilter-related projects + +Harald Welte <laforge@gnumonks.org> |