网络专题技术方案.pptx

目录;ip tools;IP-related packages;socket-inet-tcp-ip-ethernet;Net device driver;eth0;ioctl;struct socket;socket()/sys_socket();sock_map_fd();inet_init();start_kernel ? inet_init;inet_family_ops;inet_create();struct inet_protosw;inet_stream_ops, tcp_prot ;inet_dgram_ops, udp_prot;sys_send;udp_sendmsg();ip_append_data();udp_push_pending_frames();struct net_device;struct sk_buff;网卡驱动分析：pcnet32;pcnet32_probe_pci;-;register_netdev;pcnet32_interrupt;net_dev_init;Linux包过滤; What is netfilter? netfilter and iptables are the framework inside the Linux 2.4.x kernel which enables packet filtering, network address translation (NAT) and other packet mangling. It is the re-designed and heavily improved successor of the previous 2.2.x ipchains and 2.0.x ipfwadm systems. netfilter is a set of hooks inside the linux 2.4.x kernels network stack which allows kernel modules to register callback functions called every time a network packet traverses one of those hooks. iptables is a generic table structure for the definition of rulesets. Each rule within an IP table consists out of a number of classifiers (matches) and one connected action (target). netfilter, iptables and the connection tracking as well as the NAT subsystems together build the whole framework.;netfilter;netfilter overview;iptables;NF_HOOK;nf_hook_thresh;Online doc;Networking improvements in the 2.6 kernel;IPv6 in Linux Kernel;IPSec in Linux Kernel;说明;Q A