Is there anyway to do this. I would like from a userspace program to ask netfilter two different things.
1). What is the policy on a give chain. I want to ask netfilter is their Forward policy DROP or ACCEPT or whatever. Can I do this from userspace, and how. 2). For a given rule, I would like to know if packets matching that rule will succeed according to that rule. That's confusing. Better put, say I form a rule in userspace to allow some certain thing, I would like a way to know that if I insert it at the end, will packets matching that rule make it throught the previous rules in the chain. On the latter, the reason I ask is because I have the need to intelligently insert rules into an existing chain. As I think about it, if I could find a place to insert these rules at all times, I could instead create a user table and jump to that where I would have complete control, but I still have the problem of knowing whether I will make it to that jump rule in the first place. Any pointers? Thankx.
