Mike McClain <[email protected]> wrote: > On Wed, Jul 30, 2014 at 08:18:51AM +0100, Joe wrote:
>> And as someone else asked, why are you worried about this 'stealth'? >> As long as the bad packets don't get in, what does it matter? > Why is there a DROP instruction in iptables as well as REJECT? Sometimes you want to DROP packets, if you know what you are doing. For example in combination with a rate limit. REJECT 3 packets every second, DROP the rest, to counter any flooding attack but provide normal operations for normal connection attempts. Grüße, Sven. -- Sigmentation fault. Core dumped. -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: https://lists.debian.org/[email protected]
