Hi,
Reject is sending an RST-packet to the sender of the packet so a connection
isn't established (thus "polite"...)
A drop is just "drop" the packet, without sending an RST-packet (so without
notifiyng the sender)
Tom
-----Oorspronkelijk bericht-----
Van: mirza sahib [mailto:[EMAIL PROTECTED]]
Verzonden: vrijdag 1 september 2000 8:23
Aan: Vincent Huang
CC: [EMAIL PROTECTED]
Onderwerp: Re: Hi, about packert filter rule problem.
On Fri, 1 Sep 2000, Vincent Huang wrote:
## 1). in setting up packet filtering rule, user can define if he
## want to accept, deny or drop it. what is the difference between
## DENY and DROP , one sale from IBM asked me "did DROP packet mean
## firewall just don't log it ?"
I'm not sure what DROP is, but maybe its the same as REJECT and from the
IP-CHAINS manpage, REJECT is a more "polite" way of denying the packet,
and an ICMP message is sent back to the user that the packet was
REJECTed...
--
[EMAIL PROTECTED] - islamabad, pk - gsm +92300508070 - pgp 0x2EF7F636
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
