Home>

iptables commands

iptables -A INPUT -p tcp --tcp-flags RST RST -J DROP

I would like to know the firewall-cmd command equivalent to.

The purpose is to know that devices on the network may send RSTs and disconnect.
So I want to drop the RST packet.

Reference page
"Who threw the reset packet?"

"Ignoring the Great Firewall of China" (Page 9, Section 5)

environment
CentOS Linux release 7.7.1908
firewall-cmd 0.6.3

In this server, StrongSuwan is run and used as a VPN server for IKEv2.

I'm still studying firewall-cmd, and I can only understand the basic operations.
I searched for information on overseas sites, but I couldn't find it.