Mike Millson
2002-04-02 15:43:53 UTC
Right now my iptables firewall is set up to DROP all undesirable TCP
packets. However, I have read that DROP can be a giveaway that you are
running a firewall. Is it better to try to look like you don't have a
firewall and use REJECT --reject-with tcp-reset? What are good scenarios to
use REJECT --reject-with tcp-reset?
Thank you,
Mike
---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be
sent to listmaster at ale dot org.
packets. However, I have read that DROP can be a giveaway that you are
running a firewall. Is it better to try to look like you don't have a
firewall and use REJECT --reject-with tcp-reset? What are good scenarios to
use REJECT --reject-with tcp-reset?
Thank you,
Mike
---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be
sent to listmaster at ale dot org.