iptables vs route
route is a command that displays, adds and deletes entries from the kernel's TCP/IP routing table (aka "Forwarding Information Base").
iptables is a command that displays, adds, and deletes entries from Netfilter, the Linux kernel's packet filtering and manipulating subsystem. It handles NAT.
Since IP forwarding, i.e. routing, is basically rewriting a packet with a different source address and shipping it out of a different network interface, I believe you could technically do static routing with the proper iptables rules in the mangle table, but I believe it's generally fastest to let the routing part of the kernel do that.
There are many diagrams that are out there that illustrate exactly how a TCP/IP packet traverses the kernel (including Netfilter and the routing facility) - an example is this: http://www.adminsehow.com/2011/09/iptables-packet-traverse-map/
Related videos on Youtube
![IPTABLES [PART-1] : "UNDERSTANDING THE CONCEPT"](https://i.ytimg.com/vi/vbhr4csDeI4/hq720.jpg?sqp=-oaymwEcCNAFEJQDSFXyq4qpAw4IARUAAIhCGAFwAcABBg==&rs=AOn4CLBovKYd5heeT0eQFP4enqBJ_GCa1Q)
07 : 53
11 : 46
01 : 18
34 : 05
31 : 02
Determinant
Updated on September 18, 2022Comments
-
Determinant over 1 year
What's the difference between these two tools?
Can anybody tell me what the main workflow of networking behind Linux (in relation to IPv4 packet filtering, NAT and IP routing table) is?
-
Jacob Margason over 8 yearsThat map is great. -
lovespring about 8 yearsdoes the "TCP/IP routing table" of route also in/belone the iptables's table ? -
LawrenceC about 8 yearsI haven't tried it but I think you can compile the kernel with Netfilter disabled, yet forwarding will still work if it's enabled. So I believe Netfilter and the routing facility are separate.