Differences
This shows you the differences between two versions of the page.
| Next revision | Previous revision | ||
| tools:fwknop [2022/08/28 15:18] – created darron | tools:fwknop [2023/01/20 20:16] (current) – [Server] darron | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ====FWKNOP==== | ====FWKNOP==== | ||
| + | |||
| + | Single Packet Authorization (SPA) Port Knocking. | ||
| + | |||
| + | Port knocking is used to alter packet filter rules on a host | ||
| + | dependant upon a packet encrypted with a secret key delivered to that host. | ||
| + | |||
| + | It can be used to open a normally closed port to an SSH server | ||
| + | from a single host for a limited time duration. | ||
| + | |||
| + | ===Server=== | ||
| + | |||
| + | ==IPtables== | ||
| + | |||
| + | < | ||
| + | iptables -t filter -A INPUT -i eth0 -p tcp --syn --destination-port 22 -j REJECT --reject-with icmp-port-unreachable | ||
| + | </ | ||
| + | |||
| + | ==FWKNOP== | ||
| + | |||
| + | ==Install== | ||
| + | |||
| + | < | ||
| + | apt install fwknop-server | ||
| + | </ | ||
| + | |||
| + | ==Run== | ||
| + | < | ||
| + | / | ||
| + | </ | ||
| + | |||
| + | ==access.conf== | ||
| + | |||
| + | < | ||
| + | SOURCE: ANY | ||
| + | OPEN_PORTS: tcp/22 | ||
| + | KEY: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX | ||
| + | FW_ACCESS_TIMEOUT: | ||
| + | </ | ||
| + | |||
| + | ==fwknop.conf== | ||
| + | |||
| + | < | ||
| + | PCAP_INTF eth0; | ||
| + | </ | ||
| + | |||
| + | ===Client=== | ||
| + | |||
| + | ==Install== | ||
| + | |||
| + | < | ||
| + | apt install fwknop-client | ||
| + | </ | ||
| + | |||
| + | ==.fwknoprc== | ||
| + | |||
| + | < | ||
| + | [default] | ||
| + | |||
| + | [hostname] | ||
| + | SPA_SERVER | ||
| + | ACCESS | ||
| + | ALLOW_IP | ||
| + | KEY | ||
| + | </ | ||
| + | |||
| + | ==.ssh/ | ||
| + | |||
| + | < | ||
| + | Match host hostname exec " | ||
| + | </ | ||
| ===Resources=== | ===Resources=== | ||
| [[https:// | [[https:// | ||
