Return-RST is a firewalling software designed for Linux 2.2.xx systems that works with IPCHAINS.
While IPCHAINS only allows you to drop packets or reject packets with an ICMP error message, Return-RST empowers you to make it appear as though there is no server listening. This feature ensures that attackers are unable to gauge whether they are being filtered, thereby adding an extra layer of security to your system.
Return-RST was created to address the lack of an IPCHAINS policy capable of returning a RESET packet when denying a TCP connection. This is significant because traditional DENY policies simply drop the packet, while REJECT policies send back an ICMP message. Both policies inadvertently reveal to attackers that they are being filtered.
On the other hand, a TCP SYN packet is met with an RST response when there is no server available on the port. Return-RST provides you with the ability to return this error to attackers instead, making it look like there is no server available. As a result, attackers will be less likely to persist in their attempts to gain access to your system.
Return-RST is a user-friendly yet incredibly powerful software capable of meeting your firewalling needs, and it comes highly recommended by security experts.
Version 1.1: N/A