Summary
This chapter showed you how to perform Network Address Translation and IP packet mangling using netfilter/iptables.
We saw:
- What Network Address Translation is
- Types of NAT: SNAT or Masquerading, DNAT, full cone NAT
- Requirements for performing NAT with netfilter/iptables
- How to SNAT with iptables
- How to DNAT with iptables
- How to perform transparent proxy with iptables
- How to perform double NAT with iptables
- What packet mangling is
- What fields of the IP packet header can be modified using iptables
- How packets are matched against the chains of rules in the netflter
mangle
table
Get Designing and Implementing Linux Firewalls and QoS using netfilter, iproute2, NAT, and L7-filter now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.