[Shorewall-users] reject with tcp rst

Riccardo Valente riccardo@thevalentes.net
Mon, 7 Jan 2002 15:02:35 -0000


You were right: I wasn't using a recent version, it's now working as
expected.

Many thanks,
Riccardo

----- Original Message -----
From: "Tom Eastep" <teastep@shorewall.net>
To: "Riccardo Valente" <riccardo@thevalentes.net>;
<shorewall-users@shorewall.net>
Sent: Monday, January 07, 2002 2:54 PM
Subject: Re: [Shorewall-users] reject with tcp rst


> On Monday 07 January 2002 06:29 am, Riccardo Valente wrote:
> > Is it possible to specify the action taken on reject? I believe
netfilter
> > sends an ICMP "destination unreachable" message, but I'd like to
configure
> > shorewall to reject TCP connections to specific ports using a TCP RST
> > packet. Any idea?
> >
>
> The later versions of Shorewall already do that (unless you've found a
case
> that I missed).
>
> -Tom
> --
> Tom Eastep    \ A Firewall for Linux 2.4.*
> AIM: tmeastep  \ http://www.shorewall.net
> ICQ: #60745924  \ teastep@shorewall.net
> -------------------------------------------
>