I\'m experimenting with mitigating a TCP reset attack by dropping incoming RST,ACK packages, send from a middle man. I use the following iptables rule:
iptabl
