summaryrefslogtreecommitdiff
path: root/netfilter/abstract
diff options
context:
space:
mode:
Diffstat (limited to 'netfilter/abstract')
-rw-r--r--netfilter/abstract23
1 files changed, 23 insertions, 0 deletions
diff --git a/netfilter/abstract b/netfilter/abstract
new file mode 100644
index 0000000..152889a
--- /dev/null
+++ b/netfilter/abstract
@@ -0,0 +1,23 @@
+The netfilter framework in Linux 2.4
+
+Linux 2.4 provides a sophisticated infrastructure, called netfilter, which is the basis for packet filtering, network address translation and packet mangling.
+
+The whole firewalling implementation has been rewritten from scratch.
+
+Netfilter is a clean, abstract and well-defined interface to the network stack. It is easily extendable due to its modular concept.
+
+The presentation covers the following topics:
+
+- Netfilter concepts
+ - Infrastructure provided by the network stack
+ - IP tables
+- Packet filtering
+ - The builtin matches and targets
+ - Stateful Firewalling (Connection Tracking)
+- Network address translation
+ - Source NAT, destination NAT, Masquerading, transparent proxying
+- Packet mangling
+- Queuing packets to userspace
+- Current work / Future / Netfilter-related projects
+
+Harald Welte <laforge@gnumonks.org>
personal git repositories of Harald Welte. Your mileage may vary