linux·À»ðǽiptablesÏêϸ½Ì³Ì
2.1 ¿ò¼Üͼ
-->PREROUTING-->[ROUTE]-->FORWARD-->POSTROUTING-->
mangle | mangle ^ mangle
nat | filter | nat
| |
| |
v |
INPUT OUTPUT
| mangle ^ mangle
| filter | nat
v ------>local------->| filter
2.2 竼걒
±í
filter£º ¹ËÃû˼Ò壬ÓÃÓÚ¹ýÂ˵Äʱºò
nat£º ¹ËÃû˼Ò壬ÓÃÓÚ×ö NAT µÄʱºò
NAT£ºNetwork Address Translator
Á´
INPUT£º λÓÚ filter ±í£¬Æ¥ÅäÄ¿µÄ IP ÊDZ¾»úµÄÊý¾Ý°ü
FORWARD£º λÓÚ filter ±í£¬Æ¥Åä´©¹ý±¾»úµÄÊý¾Ý°ü£¬
PREROUTING£º λÓÚ nat ±í£¬ÓÃÓÚÐÞ¸ÄÄ¿µÄµØÖ·£¨DNAT£©
POSTROUTING£ºÎ»ÓÚ nat ±í£¬ÓÃÓÚÐÞ¸ÄÔ´µØÖ· £¨SNAT£©
3.1 iptables Óï·¨¸ÅÊö
iptables [-t Òª²Ù×÷µÄ±í]
<²Ù×÷ÃüÁî>
[Òª²Ù×÷µÄÁ´]
&n
Ïà¹ØÎĵµ£º
×ÜÀÀ
ÓÃiptables -ADC À´Ö¸¶¨Á´µÄ¹æ
Ôò
£¬-AÌí¼Ó -Dɾ³ý -C ÐÞ¸Ä
iptables - [RI] chain rule num rule-specification[option]
ÓÃiptables - RI ͨ¹ý¹æÔòµÄ˳ÐòÖ¸¶¨
iptables -D chain rule num[option]
ɾ³ýÖ¸¶¨¹æÔò
iptables -[LFZ] [chain][option]
ÓÃiptables -LFZ Á´Ãû [Ñ¡Ïî]
iptables -[NX] chain
ÓÃ -NX ......
Unix Toolbox
This document is a collection of Unix/Linux/BSD commands and tasks which are useful for IT work or for advanced users. This is a practical guide with concise explanations, however the reader is supposed to know what s/he is doing.
Unix Toolbox revision 14.2
The latest version of this ......
LinuxµÄ±äÁ¿¿É·ÖΪÁ½Àࣺ»·¾³±äÁ¿ºÍ±¾µØ±äÁ¿
»·¾³±äÁ¿£¬»òÕß³ÆΪȫ¾Ö±äÁ¿£¬´æÔÚÓëËùÓеÄshellÖУ¬ÔÚÄãµÇ½ϵͳµÄʱºò¾ÍÒѾÓÐÁËÏàÓ¦µÄϵͳ¶¨ÒåµÄ»·¾³±äÁ¿ÁË¡£LinuxµÄ»·¾³±äÁ¿¾ßÓм̳ÐÐÔ£¬¼´×Óshell»á¼Ì³Ð¸¸shellµÄ»·¾³±äÁ¿¡£
±¾µØ±äÁ¿£¬µ±Ç°shellÖеıäÁ¿£¬ºÜÏÔÈ»±¾µØ±äÁ¿Öп϶¨°üº¬»·¾³±äÁ¿¡£LinuxµÄ±¾µØ±äÁ¿µÄ·Ç»·¾³± ......
ºÇºÇ£¬×î½ü×ÁÄ¥MySQL coredumpʱѧµ½µÄÒ»µãµã¶«Î÷¡£ÔÚLinuxÏÂÒª±£Ö¤³ÌÐò±ÀÀ£Ê±Éú³ÉcoredumpҪעÒâÕâЩÎÊÌ⣺
Ò»¡¢Òª±£Ö¤´æ·ÅcoredumpµÄĿ¼´æÔÚÇÒ½ø³Ì¶Ô¸ÃĿ¼ÓÐдȨÏÞ¡£´æ·ÅcoredumpµÄĿ¼¼´½ø³ÌµÄµ±Ç°Ä¿Â¼£¬Ò»°ã¾ÍÊǵ±³õ·¢³öÃüÁîÆô¶¯¸Ã½ø³ÌʱËùÔÚµÄĿ¼¡£µ«Èç¹ûÊÇͨ¹ý½Å±¾Æô¶¯£¬Ôò½Å±¾¿ÉÄÜ»áÐ޸ĵ±Ç°Ä¿Â¼£¬Õâʱ½ø³ÌÕæÕýµ ......
