[Snort-users] reject is identical to drop

HN Nguyen nhncontact at ...11827...
Wed Jul 6 20:24:53 EDT 2011


I'm using snort (v2.9.0.5) inline with iptables. I have a rule with "reject"
action, but when it triggers, no packet is sent back to the sender (tcpdump
on all interfaces confirm this).

The rule is:
reject tcp any any -> any 7

The log shows:
07/07-00:15:19.553113  [Drop][Priority: 0] {TCP} 192.168.41.122:38805 ->
192.168.1.57:7

This is identical to the behaviour when I change the action to "drop".

Is there anything I'm missing or doing wrong?

Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20110706/aaa62c35/attachment.html>


More information about the Snort-users mailing list