Hey, Henning, yeah I thought about that, but thought that maybe there was a better way to do it via Kamailio

Thanks!

Regards,

David Villasmil
email: david.villasmil.work@gmail.com
phone: +34669448337


On Fri, 9 Feb 2024 at 14:08, Henning Westerholt <hw@gilawa.com> wrote:

Hello,

 

what about e.g. just using something like iptables, nftables etc..?

 

iptables -A INPUT -p tcp --syn --destination-port <port> -j REJECT --reject-with icmp-host-prohibited

 

Cheers,

 

Henning

 

From: David Villasmil via sr-users <sr-users@lists.kamailio.org>
Sent: Donnerstag, 8. Februar 2024 14:28
To: Kamailio (SER) - Users Mailing List <sr-users@lists.kamailio.org>
Cc: David Villasmil <david.villasmil.work@gmail.com>
Subject: [SR-Users] Reject TCP SYN

 

Hello all,

 

Is there any way of actually rejecting (RST) NEW tcp connection attempts, while allowing the ongoing ones to finish naturally?

 

I’m thinking maybe we can add this feature?


Regards,

 

David Villasmil

phone: +34669448337