red0ct

Asked: 2021-07-13 05:47:34 +0800 CST2021-07-13 05:47:34 +0800 CST 2021-07-13 05:47:34 +0800 CST

Iptables --reject-with tcp-reset for non-TCP traffic

Here I faced with a bit strange rule:

iptables -A INPUT -s 10.26.95.20 -j REJECT --reject-with tcp-reset

This rule matches all the protocols from specific network and rejects it with TCP RST packet.
How is this supposed to work with non-TCP packets? If other end (10.26.95.20) sends UDP packet it then receives TCP RST? This looks extremely strange..

1 Answers

Voted

Best Answer

parkamark
2021-07-13T05:54:54+08:002021-07-13T05:54:54+08:00
Yeah, it makes no sense. IPTABLES also errors when I attempt to issue this on the command line (tested on CentoOS 8). It can only work if -p tcp is given which specifies that the rule is dealing with TCP traffic. Then it will work.
2

Iptables --reject-with tcp-reset for non-TCP traffic

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?