As long as I use iptables I was not able to use policies of reject. I even remember the target 'REJECT' being a selectable kernel option. Reject requires some ICMP action whereas DROP doesn't.
> I am just going through my firewall setup and I notice I can no longer > do iptables -P INPUT REJECT > when did this happen ? I could have sworn that is what I used to use as > a default, yes I know I can drop and add a -A -j REJECT
pgpfZs9ETUjr4.pgp
Description: PGP signature
