4 Jul
2002
4 Jul
'02
07:04
network. Is it correct, that squid and rinetd are using the input and output chains and not the forward chain.
I'm not entirely sure about rinetd as I haven't used it myself, but you are correct concerning Squid. I presume the same applies to rinetd. The reason is simple: Squid is a proxy, which breaks up the communication between client and server into two individual conversations. The proxy is a server to the client (conversation #1) and a client to the server (conversation #2).
And does it make sense in your opinion to define new chains for that?
Your call to make. It can improve or degrade the readability and performance of chains to introduce user-defined chains. It depends on the complexity of the rulebase. Tobias