Linux Community's Journal
Tuesday, April 30th, 2002

Hey all...quick question regarding iptables and tcpdump.

Does tcpdump, when run on a system concurrently running iptables (with a very restrictive set of rules), prints the headers of packets before or after the packets are dealt with by iptables? I would assume, if you ran tcpdump on the external interface, that the incoming packet headers would be printed before they get to iptables. Is that a correct assumption?

Danke in advance!

