Results 1 to 2 of 2

Thread: Single packet port knocking with Fwknop

  1. #1
    Good friend of the forums
    Join Date
    Jun 2008
    Posts
    425

    Default Single packet port knocking with Fwknop

    I read this article in a linux mag that described the use of this tool. What it does is close all you ports(i'm guessing using iptables), you have a serivce running like ssh, it will stop you connecting to ssh until you send a crafted packet, which will open up port you selectd with the client and only the IP the client sent the packet from will be aloud in.

    A quick setup tut.
    Download fwknop-1.9.1tar.gz
    >$./install.pl

    Flush iptables input chain
    >iptables -A INPUT -d 1.2.3.4 -m state --state RELATED ESTABILSHED -j ACCEPT
    >iptables -A INPUT -i lo -j ACCEPT
    >iptables -P INPUT DROP
    change 1.2.3.4 to you server

    open up/etc/fwknop/access.conf and change the KEY value to your password

    now start fwknop /etc/init.d/fwknop start
    try and ssh into you server

    on the client do
    >fwknop -A tcp/22 -a client.example.com -D server.example.com

  2. #2
    Jenkem Addict imported_wyze's Avatar
    Join Date
    Jul 2007
    Posts
    1,543

    Default

    It looks to a be promising alternative to port knocking. I watched the HOPE video presentation of this tool, and am a bit anxious to see it rewritten in C.

    http://cipherdyne.org/fwknop/index.html
    dd if=/dev/swc666 of=/dev/wyze

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •