Iptables --reject-with tcp-reset

Discussion in 'Linux Networking' started by David, Aug 22, 2003.

  1. David

    David Guest

    Using RH9.0 stock RH kernel 2.4.20-20.9
    I am using the following rule in iptables:
    -A remote-tcp-client-request -p tcp -m tcp --dport xxx -j REJECT
    --reject-with tcp-reset

    I have sniffed when testing and the incoming test packets get sniffed but no
    response is even generated so it is not due to any conflicting output
    rules. When using just the reject jump the usual ICPM response is
    generated.lsmod shows the reject module to be loaded. Has anyone one else
    seen this or know of a current bug? Or am I missing something here? Are
    there any sysctl settings for example that would block the kernel from
    generating such response packets?

    Google returns nothing indicating current bugs and the netfilter site is
    currently unreachable.
     
    David, Aug 22, 2003
    #1
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.