[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] nmap and REJECT rules

Subject: [ale] nmap and REJECT rules
From: jrickman at gmail.com (Jonathan Rickman)
Date: Mon May 9 11:11:29 2005
In-reply-to: <[email protected]>
References: <[email protected]>

DROP is better for keeping your ruleset hidden, but REJECT is better
for ridding yourself of broken clients, dhcp related drag connections,
and other bandwidth sucking nonsense. DROP is the proper choice in
99.9% of situations.

--
Jonathan

On 09 May 2005 09:50:40 -0400, Christopher Fowler
<cfowler at outpostsentinel.com> wrote:
> I have iptables to reject attempted connections to certain ports.  NMAP
> sees these as filtered.  I thought reject was to give the appearance
> that they are closed.  How does NMAP know that it is being filtered.
> Maybe DROP is a better rule?
> 
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://www.ale.org/mailman/listinfo/ale
>

Follow-Ups:
- [ale] nmap and REJECT rules
  - From: jbaldwin at antinode.net (James Baldwin)

References:
- [ale] nmap and REJECT rules
  - From: cfowler at outpostsentinel.com (Christopher Fowler)

Prev by Date: [ale] nmap and REJECT rules
Next by Date: [ale] Screen Backgrounds
Previous by thread: [ale] nmap and REJECT rules
Next by thread: [ale] nmap and REJECT rules
Index(es):
- Date
- Thread