Am Mittwoch, 22. April 2009 schrieb John Andersen:
Christoph Bartoschek wrote:
Hi,
is there an easy way to get the firewall to send RST packages to connection attempts to closed ports instead of just discarding the requests?
Christoph
I think you want the Reject target: http://www.linuxtopia.org/Linux_Firewall_iptables/x4550.html
Reject is not particularly stealthy.
Yes. But in my opinion dropping packages is very unfriendly. Given the amount of bad boy in the internet it might be acceptable. But I will always send back an RST for all networks I am responsible for. In this case I have an opensuse notebook that has just to dend RST by default instead of dropping packages. Christoph -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org