TCP

gistfile1.md

TCP Demultiplexing

IP header

'protocol field'

• 1 : ICMP
• 2 : IGMP
• 6 : TCP
• 17 : UDP

UDP header

TCP header

NetFilter Hook

• PREROUTING : before Routing Decision. PortAddressTranslation(NAPT), DestinationNetworkTranslation(DNAT)
• LOCAL INPUT
• FORWARD
• LOCAL OUTPU
• POSTROUTING : after Routing Decision. SourceNetworkAddressTranslation(SNAT)

NetFilter Flow

• PREROUTING > FORWARD > POSTROUTING
• PREROUTING > INPUT
• OUTPUT > POSTROUTING