1

Here I faced with a bit strange rule:

iptables -A INPUT -s 10.26.95.20 -j REJECT --reject-with tcp-reset

This rule matches all the protocols from specific network and rejects it with TCP RST packet.
How is this supposed to work with non-TCP packets? If other end (10.26.95.20) sends UDP packet it then receives TCP RST? This looks extremely strange..

red0ct
  • 374
  • 2
  • 10

1 Answers1

2

Yeah, it makes no sense. IPTABLES also errors when I attempt to issue this on the command line (tested on CentoOS 8). It can only work if -p tcp is given which specifies that the rule is dealing with TCP traffic. Then it will work.

parkamark
  • 1,118
  • 6
  • 11