Skip to main content
Unix & Linux

Return to Question

added 40 characters in body; edited tags
Source Link
Vlastimil Burián
Vlastimil Burián
  • 31.1k
  • 66
  • 208
  • 358

I created iptablesiptables rule:

iptables -I INPUT -p tcp --tcp-flags SYN,RST,ACK,FIN SYN --dport 10000 -j REJECT --reject-with tcp-reset

But actually, what itthis does is a rejecting all packets with RST,ACKRST and ACK flags.

It is possible to reject only with RSTRST flag set  ?

I know that in a normal envenvironment this have nodoes not give any sense, but I just have a lab and I need of doingto do exactly something like thatas described.

I created iptables rule:

iptables -I INPUT -p tcp --tcp-flags SYN,RST,ACK,FIN SYN --dport 10000 -j REJECT --reject-with tcp-reset

But actually what it does is a rejecting with RST,ACK flags.

It is possible to reject only with RST flag set  ?

I know that in normal env this have no sense, but I just have a lab need of doing exactly something like that

I created iptables rule:

iptables -I INPUT -p tcp --tcp-flags SYN,RST,ACK,FIN SYN --dport 10000 -j REJECT --reject-with tcp-reset

But actually, what this does is a rejecting all packets with RST and ACK flags.

It is possible to reject only with RST flag set?

I know that in a normal environment this does not give any sense, but I have a lab and I need to do exactly as described.

Bumped by Community user
Bumped by Community user
Bumped by Community user
Bumped by Community user
Bumped by Community user
Bumped by Community user
Bumped by Community user
Bumped by Community user
Source Link
luzik
luzik
  • 141
  • 1
  • 4

iptables reject-with tcp-reset without ACK flag

I created iptables rule:

iptables -I INPUT -p tcp --tcp-flags SYN,RST,ACK,FIN SYN --dport 10000 -j REJECT --reject-with tcp-reset

But actually what it does is a rejecting with RST,ACK flags.

It is possible to reject only with RST flag set ?

I know that in normal env this have no sense, but I just have a lab need of doing exactly something like that