more firewall scripting

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Is it better to use DROP LDROP or TREJECT when blocking ipaddresses for example
I have the following in my firewall script:
$IPC -A FORWARD -p tcp -s 12.120.25.14 -j LDROP
$IPC -A FORWARD -p tcp -d 12.120.25.14 -j LDROP
$IPC -A FORWARD -p tcp -s 198.82.30.204 -j LDROP
$IPC -A FORWARD -p tcp -d 198.82.30.204 -j LDROP

Should I change it to TREJECT, or DROP?

thanks,

ddh


--
Dwayne Hottinger
Network Administrator
Harrisonburg City Public Schools
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux