Re: iptables REJECT types for UDP (if any)

From: Alvaro Lopes (alvieboy@alvie.com)
Date: 11/16/02

Next message: Miguel Angel Rodríguez Jódar: "RE: iptables REJECT types for UDP (if any)"

Previous message: Richard Dicaire: "iptables REJECT types for UDP (if any)"
In reply to: Richard Dicaire: "iptables REJECT types for UDP (if any)"
Next in thread: Miguel Angel Rodríguez Jódar: "RE: iptables REJECT types for UDP (if any)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sat, 16 Nov 2002 16:04:46 +0000
From: Alvaro Lopes <alvieboy@alvie.com>
To: Richard Dicaire <rdicaire@kritek.net>

Richard Dicaire wrote:

> I'm packet filtering UDP based on MAC address, this is working, I'm
> using -j DROP as a target, what I want to know is what types of REJECT
> can be used for UDP packets? Thanks.

From the iptables manpage:

       --reject-with type
              The type given can be icmp-net-unreachable,
icmp-host-unreachable, icmp-port-
              unreachable, icmp-proto-unreachable,
icmp-net-prohibited or icmp-host-prohib
              ited, which return the appropriate ICMP error message
(port-unreachable is the
              default). The option tcp-reset can be used on rules
which only match the TCP
              protocol: this causes a TCP RST packet to be sent back.
This is mainly useful
              for blocking ident (113/tcp) probes which frequently
occur when sending mail to
              broken mail hosts (which won't accept your mail otherwise).

Álvaro

Next message: Miguel Angel Rodríguez Jódar: "RE: iptables REJECT types for UDP (if any)"
Previous message: Richard Dicaire: "iptables REJECT types for UDP (if any)"
In reply to: Richard Dicaire: "iptables REJECT types for UDP (if any)"
Next in thread: Miguel Angel Rodríguez Jódar: "RE: iptables REJECT types for UDP (if any)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]