connection tracking — 3 Technical Articles

Jul 19, 2022 · Information Security

Inside Netfilter and iptables: How Linux Filters Packets with Hooks and Tables

Netfilter, the Linux kernel’s packet‑processing framework, uses a series of hook points and the NF_HOOK macro to let user‑space tools like iptables register callback functions that inspect, modify, or drop packets, with detailed structures for tables, chains, rules, priorities, and connection tracking.

Linux kernelconnection trackingiptables

0 likes · 21 min read

Inside Netfilter and iptables: How Linux Filters Packets with Hooks and Tables

Programmer DD

Dec 22, 2019 · Operations

Master nftables: Build a Simple Linux Firewall with Token Bucket Rate Limiting

This guide walks you through installing nftables on CentOS 7, creating a basic firewall with INPUT, FORWARD, and OUTPUT chains, leveraging built‑in sets and maps for efficient IP and port matching, implementing connection‑tracking, token‑bucket rate limiting for ICMP, handling TCP/UDP traffic, persisting rules, and configuring rsyslog logging.

Token Bucketconnection trackingfirewall

0 likes · 17 min read

Master nftables: Build a Simple Linux Firewall with Token Bucket Rate Limiting

360 Zhihui Cloud Developer

Jan 17, 2017 · Operations

Why nf_conntrack Table Gets Full? Deep Dive and Tuning for High‑Concurrency Environments

This article analyzes the nf_conntrack table‑full issue encountered during high‑concurrency OpenStack upgrades, explains how connection tracking works and is stored in a hash table, and provides practical parameter and iptables adjustments to improve memory usage and lookup performance.

Linux kernelconnection trackinghash table

0 likes · 16 min read

Why nf_conntrack Table Gets Full? Deep Dive and Tuning for High‑Concurrency Environments