knockd is a port-knock server. It listens to all traffic on an ethernet (or PPP)

interface, looking for special "knock" sequences of port-hits. A client makes these port-hits by sending a TCP (or UDP) packet to a port on the server. This port need not be open - since knockd listens at the link-layer level, it sees all traffic even if it's destined for a closed port. When the server detects a specific sequence of port-hits, it runs a command defined in its configuration file. This can be used to open up holes in a firewall for quick access.
author: adam <adam@pkgsrc.org> 2010-11-30 12:35:12 +0000
committer: adam <adam@pkgsrc.org> 2010-11-30 12:35:12 +0000
commit: a8f7e55b832967682f8f836fd873a9a228bee1d5 (patch)
tree: ecb1734a9d1ea31a9d77699e1cc63040a8bba748 /net/knock/DESCR
parent: 2882e2092f57715a23614ea70e021e2357939e84 (diff)
download: pkgsrc-a8f7e55b832967682f8f836fd873a9a228bee1d5.tar.gz
1 files changed, 7 insertions, 0 deletions
diff --git a/net/knock/DESCR b/net/knock/DESCR
new file mode 100644
index 00000000000..070d9398b36
--- /dev/null
+++ b/net/knock/DESCR
@@ -0,0 +1,7 @@
+knockd is a port-knock server. It listens to all traffic on an ethernet (or PPP)
+interface, looking for special "knock" sequences of port-hits. A client makes
+these port-hits by sending a TCP (or UDP) packet to a port on the server. This
+port need not be open - since knockd listens at the link-layer level, it sees
+all traffic even if it's destined for a closed port. When the server detects
+a specific sequence of port-hits, it runs a command defined in its configuration
+file. This can be used to open up holes in a firewall for quick access.
author	adam <adam@pkgsrc.org>	2010-11-30 12:35:12 +0000
committer	adam <adam@pkgsrc.org>	2010-11-30 12:35:12 +0000
commit	a8f7e55b832967682f8f836fd873a9a228bee1d5 (patch)
tree	ecb1734a9d1ea31a9d77699e1cc63040a8bba748 /net/knock/DESCR
parent	2882e2092f57715a23614ea70e021e2357939e84 (diff)
download	pkgsrc-a8f7e55b832967682f8f836fd873a9a228bee1d5.tar.gz