[Shorewall-users] reject with tcp rst

Riccardo Valente riccardo@thevalentes.net
Mon, 7 Jan 2002 14:29:15 -0000


This is a multi-part message in MIME format.

------=_NextPart_000_010E_01C19787.AF3B1AF0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Is it possible to specify the action taken on reject? I believe =
netfilter sends an ICMP "destination unreachable" message, but I'd like =
to configure shorewall to reject TCP connections to specific ports using =
a TCP RST packet. Any idea?

Thanks,
Riccardo

------=_NextPart_000_010E_01C19787.AF3B1AF0
Content-Type: text/html;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.2600.0" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV>Is it possible to specify the action taken on reject? I=20
believe&nbsp;netfilter&nbsp;sends an ICMP "destination unreachable" =
message, but=20
I'd like to configure shorewall to&nbsp;reject&nbsp;TCP connections to =
specific=20
ports using a&nbsp;TCP&nbsp;RST packet. Any idea?</DIV>
<DIV>&nbsp;</DIV>
<DIV>Thanks,</DIV>
<DIV>Riccardo</DIV></BODY></HTML>

------=_NextPart_000_010E_01C19787.AF3B1AF0--