[SR-Users] Re: Reject TCP SYN

9 Feb 2024


      Hello,
what about e.g. just using something like iptables, nftables etc..?
iptables -A INPUT -p tcp --syn --destination-port <port> -j REJECT --reject-with icmp-host-prohibited
Cheers,
Henning
From: David Villasmil via sr-users sr-users@lists.kamailio.org
Sent: Donnerstag, 8. Februar 2024 14:28
To: Kamailio (SER) - Users Mailing List sr-users@lists.kamailio.org
Cc: David Villasmil david.villasmil.work@gmail.com
Subject: [SR-Users] Reject TCP SYN
Hello all,
Is there any way of actually rejecting (RST) NEW tcp connection attempts, while allowing the ongoing ones to finish naturally?
I’m thinking maybe we can add this feature?
Regards,
David Villasmil
email: david.villasmil.work@gmail.commailto:david.villasmil.work@gmail.com
phone: +34669448337

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

[SR-Users] Re: Reject TCP SYN