are you talking about the block-policy? I think drop is better because if somebody is flooding you from fake addresses you are going to send out million packets to wrong targets.
I vote for set block-policy drop Regards, Istvan On Mon, Jul 20, 2009 at 5:44 AM, John Dakos [ Enovation Technologies ] < [email protected]> wrote: > > > Hello All. > > > > Im newbie on PF , I install PF on FreeBSD 7.2 Released. > > > > I have a question, what is more secure for the system Filtered Ports or > Closed Ports? > > > > Thanks All > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > John Dakos > Network Administrator > Enovation Technologies > Filellinon 35, Chalandrion > 15232 Athens, GREECE > Tel: +30-210 8119784 > Mob: +30-6979348082 > > > > _______________________________________________ > [email protected] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "[email protected]" > -- the sun shines for all _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[email protected]"
