Re: iptables -P INPUT REJECT

On Sun, 1 Dec 2002 15:22:02 -0800 (PST), David Durst wrote:

> > DROP means "drop this packet on the floor and do not process it", 
> > which is the least resource using of the bunch.
> >>I you would like to understand more drop a line to me.
> > LOL
> Mike, I would rather not respond to any of your posts but I think in
> this case I am forced to. BTW - LOLs at typos are not needed.
> Mike by the very nature of what you stated about DROP it does have to
> DOOOOO something, yes it has to drop it - but then again why DROP a
> packet or even bother with inserting a rule if the packet won't do
> anything in the first place.
> I think the policy of just IGNORE packets that do nothing is the best.

This confirms my earlier assumption that you have not understood
what DROP does and what a default policy of DROP is.

