> -----Original Message----- > From: Leonard den Ottolander [mailto:[EMAIL PROTECTED]] > > Hi Brenden, > > > I was adding some logging to my IPTables configuration, and thought > > I'd ask this question. I noticed that if I DROP UDP packets the > > scan.sygatetech.com UDP scanner reports the ports as open, > if I reject > > it reports them as closed. > > This probably has to do with the fact that UDP is a > connectionless protocol, > ie no answer is expected to acknowledge a sent packet. Thus > the scanner can > not distinguish between an accepted package and one that has > been dropped. > Only a rejected package sents an response back to the scanner.
Ah hah, that's what I thought but I was not sure. I've got my iptables handling all ports with a DROP unless specifically opened (very few of those). Thanks! -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list