Versus71 Posted November 24, 2013 Report Share Posted November 24, 2013 knockd is a port-knock server. It listens to all traffic on an ethernet (or PPP) interface, looking for special "knock" sequences of port-hits. A client makes these port-hits by sending a TCP (or UDP) packet to a port on the server. This port need not be open -- since knockd listens at the link-layer level, it sees all traffic even if it's destined for a closed port. When the server detects a specific sequence of port-hits, it runs a command defined in its configuration file. This can be used to open up holes in a firewall for quick access.Options:-i, --interface <int>Specify an interface to listen on. The default is eth0.-d, --daemonBecome a daemon. This is usually desired for normal server-like operation.-c, --config <file>Specify an alternate location for the config file. Default is /etc/knockd.conf.-D, --debugOuput debugging messages.-l, --lookupLookup DNS names for log entries. This may be a security risk! See section SECURITY NOTES.-v, --verboseOutput verbose status messages.-V, --versionDisplay the version.-h, --helpSyntax help.Download:http://www.zeroflux.org/projects/knock Quote Link to comment Share on other sites More sharing options...
