On Mon, Mar 25, 2002 at 04:31:27PM -0600, Daniel F. Chief Security Engineer - wrote: > > Im not trying to start a _Holy_war_ between DROP and REJECT fans, Just > wondering what the consenses is here. What should a good netezen do these > days.
What are you drop/rejecting? If it is an nmap like scan to see what ports are open I would drop them. If you're running a mail server and someone is trying to port 113 ident you then you should reject them as that's being nice. If you recently moved a service from one machine to another I would reject them so that the person trying to get to the old IP address will immediately get a response back. If you're rejecting everything inbound that's not meant to go inbound that's going to eat up a lot of your bandwidth too. Can you give us some specifics? Chris
