Re: stop accepting new connections on port 80

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Bill Hance <bill@xxxxxxxxxxxxx>
Subject: Re: stop accepting new connections on port 80
From: Jan Engelhardt <jengelh@xxxxxxxxxxxxxxx>
Date: Tue, 3 Jan 2006 08:12:42 +0100 (MET)
Cc: netfilter@xxxxxxxxxxxxxxxxxxx, Spam User <spam@xxxxxxxxxxxxx>
In-reply-to: <2486.192.168.3.8.1134153732.squirrel@xxxxxxxxxxx>
References: <20051207123420.V66917@xxxxxxxxxxxxxxxxxxxx> <2486.192.168.3.8.1134153732.squirrel@xxxxxxxxxxx>
Sender: netfilter-bounces@xxxxxxxxxxxxxxxxxxx

>what about entering a new rule, immediately before the one saying
>
>-dport 80 -m state --state NEW -j ACCEPT
>
>the new one would be
>
>-dport 80 -m state --state NEW -j DROP

-j REJECT is preferred here, otherwise users wait almost forever.
I have used it in the past and works fine (i.e. lets established ones go 
on)


Jan Engelhardt
--

References:
- stop accepting new connections on port 80
  - From: Spam User
- Re: stop accepting new connections on port 80
  - From: Bill Hance

Prev by Date: Leap Second Kernel Panic??
Next by Date: Re: ebtables iptables DNAT something missing
Previous by thread: Re: stop accepting new connections on port 80
Next by thread: Re: stop accepting new connections on port 80
Index(es):
- Date
- Thread

[Index of Archives] [Linux Netfilter Development] [Linux Kernel Networking Development] [Netem] [Berkeley Packet Filter] [Linux Kernel Development] [Advanced Routing & Traffice Control] [Bugtraq]

Powered by Linux