Difference between revisions of "Fwknop"

From wikieduonline
Jump to navigation Jump to search
Line 8: Line 8:
 
== Quick Start ==
 
== Quick Start ==
 
* <code>fwknop --key-gen</code> Ref: https://www.cipherdyne.org/fwknop/docs/fwknop-tutorial.html#quick-start
 
* <code>fwknop --key-gen</code> Ref: https://www.cipherdyne.org/fwknop/docs/fwknop-tutorial.html#quick-start
* Login: <code>fwknop -n DESTINATION_SERVER_OR_IP --verbose -R</code>
+
* Send [[SPA]] packet: <code>fwknop -n DESTINATION_SERVER_OR_IP --verbose -R</code>
  
 
== See also ==
 
== See also ==

Revision as of 17:14, 25 December 2019

"FireWall KNock OPerator" implements an authorization scheme called Single Packet Authorization (SPA) (encrypted, non-replayed, with an HMAC SHA-256)


  • macOS installation: brew install fwknop
  • Config files: /etc/fwknop/access.conf


Quick Start

See also

  • https://serverfault.com/a/608976
  • Advertising: