On 4/24/07, Chris Smith <[EMAIL PROTECTED]> wrote: > > Hello, > > Using openbsd as a firewall in several cases - a few small businesses, and > also for home use. Some websites, such as grc.com, stress that "stealth > mode" > (which openbsd handles with ease) is the safest. But I've also read that > using 'return' instead of 'drop' is good netizenship. So I'm wondered how > others are handling this and what recommendations you might have.
I use drop in most cases. Stealth mode isn't exactly going to add much, but I see no reason a host should receive any response at all when it is trying to talk to a host that doesn't exist or a port that isn't actually listening. Much of that activity is simply host/port scanning. I could argue either way, but my preference is 'block drop' most of the time. -- Kian Mohageri
