Professional Documents
Culture Documents
Input: This chain is used to control the nature of incoming traffic. For
example, if your server acts as a mail server and receives POP/IMAP
connections, it will cross check the IP and port with an input rule.
Output: This chain is used control the behaviour if outgoing
connections. For example, if you search for www.google.com, once the
outgoing connection hits the Linux server, the Iptables firewall checks if
the domain google.com, the port or connection has any rule set to it.
Forward: This chain is used from traffic that hits your Linux server but is
intended to be routed to another destination. The Linux server acts as a
forwarding server.
To check the input, output and forwarded data through the Linux box
running Iptables Firewall, type:
Picture Credit
The above image shows, in Gigabytes, how much traffic came in, went
out and was forwarded.
1. 3. Default settings for Input, Output and Forward chains
Picture Credit
The setting basically says your Firewall is allowing all traffic in, out and
forward if required. For a Firewall with rules set should look something
like this:
Picture Credit
In this image it is clearly seen the firewall is accepting some
connections and dropping ones that go against a rule.
Read More