Module netfilter 

Linux netfilter (iptables) rule extraction from kernel memory.

Reads the kernel’s iptables rule structures from the xt_table chain. The kernel organizes rules into tables (filter, nat, mangle) and chains (INPUT, OUTPUT, FORWARD, PREROUTING, POSTROUTING).

Functions

parse_ipt_entries

Parse a flat region of ipt_entry structures from raw memory.

protocol_name

Parse a protocol number to name.

walk_netfilter_rules

Walk kernel iptables tables and extract rules.