I don't think so: RST-packets belong to TCP. What about
UDP?
IMHO Vincent is right (ICMP message send).
In doubt I will start my tcpdump :-)
cu
J"org
> -----Original Message-----
> From: Tom Casaer [mailto:[EMAIL PROTECTED]]
> Sent: Friday, September 01, 2000 12:38 PM
> To: 'mirza sahib'; Vincent Huang
> Cc: [EMAIL PROTECTED]
> Subject: RE: Hi, about packert filter rule problem.
>
>
> Hi,
>
> Reject is sending an RST-packet to the sender of the packet
> so a connection
> isn't established (thus "polite"...)
> A drop is just "drop" the packet, without sending an
> RST-packet (so without
> notifiyng the sender)
>
>
> Tom
>
>
> -----Oorspronkelijk bericht-----
> Van: mirza sahib [mailto:[EMAIL PROTECTED]]
> Verzonden: vrijdag 1 september 2000 8:23
> Aan: Vincent Huang
> CC: [EMAIL PROTECTED]
> Onderwerp: Re: Hi, about packert filter rule problem.
>
>
> On Fri, 1 Sep 2000, Vincent Huang wrote:
>
> ## 1). in setting up packet filtering rule, user can define if he
> ## want to accept, deny or drop it. what is the difference between
> ## DENY and DROP , one sale from IBM asked me "did DROP packet mean
> ## firewall just don't log it ?"
>
> I'm not sure what DROP is, but maybe its the same as REJECT
> and from the
> IP-CHAINS manpage, REJECT is a more "polite" way of denying
> the packet,
> and an ICMP message is sent back to the user that the packet was
> REJECTed...
>
> --
> [EMAIL PROTECTED] - islamabad, pk - gsm +92300508070 -
> pgp 0x2EF7F636
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
