[Shorewall-users] Rule to set Iptables with --reject-with tcp-reset

Tom Eastep teastep at shorewall.net
Sun Mar 14 17:34:59 PST 2004


On Sunday 14 March 2004 05:26 pm, Salvatore wrote:
> It is possible to set a shorewall rule to obtain a iptables rule like:
>
> iptables -A INPUT -p tcp --dport 80 -j REJECT --reject-with tcp-reset
>
> it's important the "--reject-with tcp-reset"
>

Just make sure that your REJECT rule specifies protocol = tcp

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep at shorewall.net




More information about the Shorewall-users mailing list