这意味着,将丢弃所有与input链中任何规则都不匹配的信息包。
That means all the packets not matching any rule in the INPUT chain will be dropped.
现在,您已经学习了如何建立基本的规则和链以及如何从信息包过滤表中添加或删除它们。
Now you've learned how to build basic rules and chains and how to add or remove them from the packet filtering tables.
每个团队区域可以自定义沿着父链继承的流程规则。
Each team area may customize the process rules inherited along the parent chain.
第二条命令只是从OUT put链删除编号为3的规则。
The second command simply deletes rule number 3 from the OUTPUT chain.
表是包含仅处理特定类型信息包的规则和链的信息包过滤表。
A table is a packet filtering table that contains rules and chains dealing with specific kinds of packets only.
该表包含一些规则来标记用于高级路由的信息包,该表包含PREROUTING和OUT put链。
This table contains rules to mark packets for advanced routing and it consists of PREROUTING and OUTPUT chains.
处理入站信息包的规则被添加到input链中。
Rules dealing with incoming packets are added to the INPUT chain.
处理正在转发的信息包的规则被添加到forward链中。
And rules dealing with packets being forwarded are added to the forward chain.
第一条命令从INPUT链删除规则,它指定 DROP前往端口 80 的信息包。
The first command deletes a rule from the INPUT chain that specifies packets destined for port 80 to be DROPped.
l或——list:列出指定链中的所有规则。
关闭tcplimit时,INPUT规则和该特定链将被删除。
When tcplimit is turned off, the INPUT rule and special chain are deleted.
我马上会详细讨论这些规则以及如何建立这些规则并将它们分组在链中。
I will discuss the rules in detail shortly as well as how to build these rules and group them in chains.
但是,如果信息包与这条规则不匹配,那么它将与链中的下一条规则进行比较。
But if the packet doesn't match a rule, then it is compared to the next rule in the chain.
根据规则所处理的信息包的类型,可以将规则分组在链中。
The rules are grouped in chains, according to the types of packets they deal with.
接下来,将信息包的头信息与它所传递到的链中的每条规则进行比较,看它是否与某条规则完全匹配。
Next the packet's header information is compared with each rule in the chain it is passed on to, unless it perfectly matches a rule.
每个链都可以有一个策略,它定义“缺省目标”,也就是要执行的缺省操作,当信息包与链中的任何规则都不匹配时,执行此操作。
Each chain can have a policy that defines "a default target", i.e. a default action to perform, if a packet doesn't match any rule in that chain.
建立规则并将链放在适当的位置之后,就可以开始进行真正的信息包过滤工作了。
After the rules are built and chains are in place, the real work of packet filtering starts.
最后,如果信息包与链中的任何规则都不匹配,那么内核将参考该链的策略来决定如何处理该信息包。
Finally, if the packet doesn't match to any rule in the chain, then the kernel consults the policy of that chain to decide what to do with the packet.
处理出站信息包的规则被添加到OUT put链中。
Rules dealing with outgoing packets are added to the OUTPUT chain.
所有与链中任何规则都不匹配的信息包都将被强制使用此链的策略。
All packets that don't match any rule in the chain will then be forced to use the policy of the chain.
你可以在内部业务单元之间或者在业务伙伴之间的价值链之间以不规则的实现模式来重用此服务。
You can reuse the services across internal business units or across the value chains among business partners in a fractal realization pattern.
RETURN :在规则中设置的 RETURN目标让与该规则匹配的信息包停止遍历包含该规则的链。
RETURN: The RETURN target set in a rule makes the packet matching that rule stop traversing through the chain containing the rule.
该示例命令将一条规则附加到input链的末尾,确定来自源地址205.168.0.1的信息包可以ACCEPT。
This example command appends a rule at the end of the INPUT chain that specifies packets coming from source address 205.168.0.1 to be ACCEPTed.
f或——flush:如果指定链名,该命令删除链中的所有规则,如果未指定链名,该命令删除所有链中的所有规则。
F or — flush: This command deletes all rules inside a chain if a chain name is specified or all rules in all chains if no chain name is specified.
a或——append:该命令将一条规则附加到链的末尾。
A or — append: This command appends a rule to the end of a chain.
他为每个需要访问EPCIS的DirkMart供应链伙伴和内部用户定义策略规则。
He defines the policy rules for each supply chain partner of DirkMart that needs access to the EPCIS as well as for internal users.
d或——delete:通过用-d指定要匹配的规则或者指定规则在链中的位置编号,该命令从链中删除该规则。
D or — delete: This command deletes a rule from the chain, either by specifying the rule to match with -d or by specifying the rule's position number in the chain.
对于爬到食物链顶端的我们而言,绝不能心慈手软。我们的世界只有一条规则:弱肉强食。
For those of us climbing to the top of the food chain there can be no mercy. There is but one rule: hunt or be hunted.
对于爬到食物链顶端的我们而言,绝不能心慈手软。我们的世界只有一条规则:弱肉强食。
For those of us climbing to the top of the food chain there can be no mercy. There is but one rule: hunt or be hunted.
应用推荐