Hi All,
Just wondering if there were any caveats to using Discard over Deny when setting up rules to block traffic. I believe I have seen references to things that won't work correctly if you turn on stealth mode (Discard All). If I, for instance, am just singling out a few hosts that regularly bounce traffic off of my firewall, is there any reason not to use Discard over Deny. Discard certainly seems like the better option for most cases.
Any wisdom appreciated.
Thanks,
AJ
Just wondering if there were any caveats to using Discard over Deny when setting up rules to block traffic. I believe I have seen references to things that won't work correctly if you turn on stealth mode (Discard All). If I, for instance, am just singling out a few hosts that regularly bounce traffic off of my firewall, is there any reason not to use Discard over Deny. Discard certainly seems like the better option for most cases.
Any wisdom appreciated.
Thanks,
AJ