Matthew Woehlke wrote: > an iptables rule > that allows stuff if there is a socket that will receive it, otherwise > can drop Where's the point in that? To protect against possible security bugs in the little piece of TCP code that would otherwise reply with RST, or the little piece of UDP code that would just drop the packet anyway? I doubt a security bug in the little piece of IPtables code that drops packets is any less likely. Björn Persson
Description: This is a digitally signed message part.