Project

General

Profile

Actions

Feature #8547

open

fwknop Port Knocking Package

Added by Stilez y almost 6 years ago. Updated 18 days ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
New Package Request
Target version:
-
Start date:
06/01/2018
Due date:
% Done:

0%

Estimated time:
Plus Target Version:

Description

fwknop is a quite well established "next generation" advance on simple port knocking, to conceal and safeguard external-facing services and open (or semi-open) ports, and avoid known limitations/issues of port knocking. Main advantages - single encrypted packet used for knocking, not vulnerable to replay attacks or DoS, faster, and seems a lot more flexible.

These capabilities would be useful firewall enhancements. fwknop is compatible with pf on OpenBSD and can run on FreeBSD, but it would be necessary to confirm if it's also compatible with pf on FreeBSD - I've opened an issue on their tracker to that effect (#269). So it's probably a "for future" request.

For crossref purposes, note that there's an old request for a pfSense tie-in on the fwknop issues tracker (issue #130).

Actions

Also available in: Atom PDF