26 Nov
2002
26 Nov
'02
22:24
Hello Gert, GertJan Spoelman wrote:
You have to add a reason for the reject, otherwise it is treated as a DROP, add a --reject-with tcp-reset (see man iptables).
No, this is not the case, REJECT without a --reject-with is treated as a REJECT --reject-with icmp-port-unreachable. That would suit my needs just fine. In any case - if the rule would match then my deny-rule at the end of the script would not match, so I wouldn't have any log entries. Thanks anyway, Ralf