Re: iptables firewall
Mike McClain <mike.junk@nethere.com> wrote:
> On Wed, Jul 30, 2014 at 08:18:51AM +0100, Joe wrote:
>> And as someone else asked, why are you worried about this 'stealth'?
>> As long as the bad packets don't get in, what does it matter?
> Why is there a DROP instruction in iptables as well as REJECT?
Sometimes you want to DROP packets, if you know what you are doing. For
example in combination with a rate limit. REJECT 3 packets every second,
DROP the rest, to counter any flooding attack but provide normal
operations for normal connection attempts.
Grüße,
Sven.
--
Sigmentation fault. Core dumped.
Reply to: