seantywork

01

   process (user, program...)
       |                |
       |                |
       |                |
       V                |
------------------------|---------
|      firewall         |        |
|      managment        |        |
|      tool             |        |        
------------------------|---------         
       |                |
       |                |
       |                |
       V                |
------------------------|---------
|      iptables         |        |
|      command          |        |
------------------------|---------
       |                |
       |                |
------------------------|-------- below is kernel
       |                |
       |                |
       V                |
------------------------|---------
|      netfilter        |        |
------------------------|---------
                        |
                        V
-----------------------------------
|      eBPF(XDP)                  |
-----------------------------------

02

---------------------------
|                         |
|        HOST             |
|                         |
|        veth01           |
|      (10.168.0.1/24)    |
-----------|---------------
           |
           |
           |
           |
-----------|-----------------
|          |   NET NAMESPACE|
|          |   vnet0        |
|          |                |
|        veth02             |
|       (10.168.0.2/24)     |
|                           |
-----------------------------

This site is open source. Improve this page.