Reject rule displays as block in firewall logs
-
Hi,
I have set all my rules to reject rather than block. However when I look at the firewall logs, the reject rule has the red x beside it instead of the yellow x as in the rule list.
Is this just a cosmetic issue? or is something wrong?
Pic 1 is the log
Pic 2 is the ruleTIA.
-
Reject only works for certain protocols (tcp, udp). For protocols where reject does not work, it acts like a block rule.
From pf.conf(5):
return A TCP RST is returned for blocked TCP packets, an ICMP
UNREACHABLE is returned for blocked UDP packets, and all
other packets are silently dropped.