> -----Original Message-----
> From: Leonard den Ottolander [mailto:[EMAIL PROTECTED]] 
> 
> Hi Brenden,
> 
> > I was adding some logging to my IPTables configuration, and thought 
> > I'd ask this question.  I noticed that if I DROP UDP packets the 
> > scan.sygatetech.com UDP scanner reports the ports as open, 
> if I reject 
> > it reports them as closed.
> 
>  This probably has to do with the fact that UDP is a 
> connectionless protocol, 
> ie no answer is expected to acknowledge a sent packet. Thus 
> the scanner can 
> not distinguish between an accepted package and one that has 
> been dropped. 
> Only a rejected package sents an response back to the scanner.

Ah hah, that's what I thought but I was not sure.  I've got my iptables
handling all ports with a DROP unless specifically opened (very few of
those).  

Thanks!



-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list

Reply via email to