https://www.digitalocean.com/community/tutorials/a-deep-dive-into-iptables-and-netfilter-architecture https://www.netfilter.org/documentation/HOWTO/netfilter-hacking-HOWTO-3.html
Netfilter Hooks +-----------> local process ---------+
| |
| |
| |
| v
|
+-------------+--------+ +----------------------+
| | | |
| input | | output |
| | | |
+------+---------------+ +----------+-----------+
^ |
| |
+------------------------+ | |
| | | +---------------------+ +-------------> +-------------------------+
+--> | pre routing | | | | |
| +------------------ route ----------> | forward +--------------------------> | post routing |
| | lookup | | | |
+------------------------+ +---------------------+ +-------------------------+