Netfilter nf_tables reject support
modulename: nft_reject.ko
configname: CONFIG_NFT_REJECT
Linux Kernel Configuration
└─>Networking support
└─>Networking options
└─>Network packet filtering framework (Netfilter)
└─>Core Netfilter Configuration
└─>The IPv6 protocol
└─>Netfilter nf_tables reject support
In linux kernel since version 3.14 (release Date: 2014-03-30)
This option adds the "reject" expression that you can use to
explicitly deny and notify via TCP reset/ICMP informational errors
unallowed traffic.
explicitly deny and notify via TCP reset/ICMP informational errors
unallowed traffic.
source code:
depends
CONFIG_INETCONFIG_NET
CONFIG_NETFILTER
CONFIG_NF_TABLES
CONFIG_IPV6 or CONFIG_MODULES or NOT CONFIG_NF_TABLES_INET