TPROXY behavior when there is no listening socket at the target port
Hi All, If one has a TPROXY rule that redirects the packets to a local socket on which there is no one listening then the SYN packets keep getting dropped silently. Is this expected? Without knowing that this would happen my natural expectation was that a RST would be sent by local TCP. Is this by design or a bug? Thanks, - Ashwani
On Thu, 2009-12-03 at 12:44 -0800, Ashwani Wason wrote:
Hi All,
If one has a TPROXY rule that redirects the packets to a local socket on which there is no one listening then the SYN packets keep getting dropped silently. Is this expected? Without knowing that this would happen my natural expectation was that a RST would be sent by local TCP. Is this by design or a bug?
You can change this behaviour by changing your iptables rules, in this case the "-m socket" rule doesn't match and the default policy (or the next rule) of your iptables ruleset will determine what action is taken for the given packet. -- Bazsi
participants (2)
-
Ashwani Wason
-
Balazs Scheidler