Date: Tue, 6 May 1997 09:43:27 +0200 (MET DST) From: Mikael Karpberg <karpen@ocean.campus.luth.se> To: archie@whistle.com (Archie Cobbs) Cc: danny@panda.hilink.com.au, current@FreeBSD.ORG, hackers@FreeBSD.ORG Subject: Re: divert still broken? Message-ID: <199705060743.JAA25044@ocean.campus.luth.se> In-Reply-To: <199705060414.VAA11171@bubba.whistle.com> from Archie Cobbs at "May 5, 97 09:14:57 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
According to Archie Cobbs: [...] > > How about > > > > ipfw add 1000 reset tcp from any to foo 23 > > > > So the choices are: > > deny : be silent > > reject: send ICMP !H > > reset : send RST > > Sounds OK with me.. any body else care to comment? Yeah, I think that's good. That way you can configure it as you like. Flexability is (almost) always a good thing. Would it be hard to add something like "netreject", which would send !N, too? /Mikael
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199705060743.JAA25044>