|
|
|
|
|
|
by jonstickman
912 days ago
|
|
|
Fantastic write up - keep going (please)! Agree more practical examples but disagree this is too abstract. I’m thinking starting at more common scenarios then jumping to container networking. Ie - Flow of a packet on a simple node, a two interface node, then namespaces, and then quirky virtual stuff. Another example - I’d love to see how iptables actually works. Maybe how to use ebpf to implement iptables things like source/dest NAT, Masquerade, etc. But yeah I learned a ton here. Thanks |
|
|
If you're actually interested in iptables the old packet filter how-to is great:
https://www.netfilter.org/documentation/HOWTO/packet-filteri...
But iptables is turning into just a legacy interface for nftables in modern Linux. See eg:
https://wiki.debian.org/nftables
https://wiki.nftables.org/wiki-nftables/index.php/Main_Page