[update] port knocking match extension

Linux Netfilter discussions
 help / color / mirror / Atom feed

* [update] port knocking match extension
@ 2008-08-28  4:28 fender
  2008-08-28  6:39 ` Brent Clark
  0 siblings, 1 reply; 7+ messages in thread
From: fender @ 2008-08-28  4:28 UTC (permalink / raw)
  To: netfilter-devel; +Cc: netfilter, lucholaf

Hi people,

We've applied some patches to add support for kernel 2.6.26 and iptables 1.4.x.

You can download the tarball "pknock-0.5.tar.gz" from the web site and
compile the match extension and the iptables extension, but without
the need of recompiling the kernel.

Any feedback or suggestion will be welcome.

Regards,

(*) The ipt_pknock match module implements Port Knocking and SPA
(Simple Packet Authentication) as a netfilter match extension.

(*) More information at http://portknocko.berlios.de/

--
Federico

/*
 *  J. Federico Hernandez Scarso (fender) {frozenspot at gmail dot com}
 *  GPG PubKey: wwwkeys.eu.pgp.net key 6AE78BF2
 *  FP: 26AB 7A1B C2C4 70F8 0E7D  C3F4 9736 5CE2 6AE7 8BF2
 */

^ permalink raw reply	[flat|nested] 7+ messages in thread

* Re: [update] port knocking match extension
  2008-08-28  4:28 [update] port knocking match extension fender
@ 2008-08-28  6:39 ` Brent Clark
  2008-08-29  3:32   ` Andrew Schulman
  2008-08-31 17:57   ` fender
  0 siblings, 2 replies; 7+ messages in thread
From: Brent Clark @ 2008-08-28  6:39 UTC (permalink / raw)
  To: netfilter-devel, netfilter

fender wrote:
> Any feedback or suggestion will be welcome.

Hi

Thank you for your work.
Would you not be interested in submitting and adding it to Jan 
Engelhardt's xtable.

It would beat having to install iptables/xtable and then you work.

An all in one solution would be nice and appreciated.

Kind Regards and hope you will give my suggestion some thought.
Brent Clark

^ permalink raw reply	[flat|nested] 7+ messages in thread

* Re: [update] port knocking match extension
  2008-08-28  6:39 ` Brent Clark
@ 2008-08-29  3:32   ` Andrew Schulman
  2008-08-31 17:57   ` fender
  1 sibling, 0 replies; 7+ messages in thread
From: Andrew Schulman @ 2008-08-29  3:32 UTC (permalink / raw)
  To: netfilter-u79uwXL29TY76Z2rM5mHXA

> Thank you for your work.
> Would you not be interested in submitting and adding it to Jan 
> Engelhardt's xtable.
> 
> It would beat having to install iptables/xtable and then you work.
> 
> An all in one solution would be nice and appreciated.

I'll second that.

--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo-u79uwXL29TY76Z2rM5mHXA@public.gmane.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

^ permalink raw reply	[flat|nested] 7+ messages in thread

* Re: [update] port knocking match extension
  2008-08-28  6:39 ` Brent Clark
  2008-08-29  3:32   ` Andrew Schulman
@ 2008-08-31 17:57   ` fender
  2008-09-01 18:58     ` Andrew Schulman
  1 sibling, 1 reply; 7+ messages in thread
From: fender @ 2008-08-31 17:57 UTC (permalink / raw)
  To: Brent Clark; +Cc: netfilter-devel, netfilter

Hi,

On Thu, Aug 28, 2008 at 3:39 AM, Brent Clark <brentgclarklist@gmail.com> wrote:
> fender wrote:
>>
>> Any feedback or suggestion will be welcome.
>
> Hi
>
> Thank you for your work.
> Would you not be interested in submitting and adding it to Jan Engelhardt's
> xtable.
>
> It would beat having to install iptables/xtable and then you work.
>
> An all in one solution would be nice and appreciated.
>
> Kind Regards and hope you will give my suggestion some thought.
> Brent Clark

Thank you for your suggestion. I don't know what xtable is, but I'll
check it out.

Regards,

>
> --
> To unsubscribe from this list: send the line "unsubscribe netfilter-devel"
> in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at  http://vger.kernel.org/majordomo-info.html
>



-- 
Federico

/*
 * J. Federico Hernandez Scarso (fender) {frozenspot; at; gmail; dot; com;}
 * GPG PubKey: wwwkeys.eu.pgp.net key 6AE78BF2
 * FP: 26AB 7A1B C2C4 70F8 0E7D C3F4 9736 5CE2 6AE7 8BF2
 */

^ permalink raw reply	[flat|nested] 7+ messages in thread

* Re: [update] port knocking match extension
  2008-08-31 17:57   ` fender
@ 2008-09-01 18:58     ` Andrew Schulman
  2008-09-02 18:58       ` fender
  0 siblings, 1 reply; 7+ messages in thread
From: Andrew Schulman @ 2008-09-01 18:58 UTC (permalink / raw)
  To: netfilter-u79uwXL29TY76Z2rM5mHXA

> Thank you for your suggestion. I don't know what xtable is, but I'll
> check it out.

xtables-addons, actually.  http://jengelh.medozas.de/projects/xtables/

--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo-u79uwXL29TY76Z2rM5mHXA@public.gmane.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

^ permalink raw reply	[flat|nested] 7+ messages in thread

* Re: [update] port knocking match extension
  2008-09-01 18:58     ` Andrew Schulman
@ 2008-09-02 18:58       ` fender
  2008-09-02 19:10         ` Andrew Schulman
  0 siblings, 1 reply; 7+ messages in thread
From: fender @ 2008-09-02 18:58 UTC (permalink / raw)
  To: Andrew Schulman; +Cc: netfilter-devel, netfilter

Hi,

On Mon, Sep 1, 2008 at 3:58 PM, Andrew Schulman
<andrex@alumni.utexas.net> wrote:
>> Thank you for your suggestion. I don't know what xtable is, but I'll
>> check it out.
>
> xtables-addons, actually.  http://jengelh.medozas.de/projects/xtables/

I took a look at xtables-addons, and I think that we don't need it for
now. In fact, you don't need to recompile kernel and iptables to get
our extension working. The Makefile of this port knocking extension
allows you to compile and install without any extra steps. You need to
download the kernel and iptables sources, and after that you have to
do "make and make install".

Regards,

-- 
Federico

/*
 * J. Federico Hernandez Scarso (fender) {frozenspot; at; gmail; dot; com;}
 * GPG PubKey: wwwkeys.eu.pgp.net key 6AE78BF2
 * FP: 26AB 7A1B C2C4 70F8 0E7D C3F4 9736 5CE2 6AE7 8BF2
 */

^ permalink raw reply	[flat|nested] 7+ messages in thread

* Re: [update] port knocking match extension
  2008-09-02 18:58       ` fender
@ 2008-09-02 19:10         ` Andrew Schulman
  0 siblings, 0 replies; 7+ messages in thread
From: Andrew Schulman @ 2008-09-02 19:10 UTC (permalink / raw)
  To: netfilter-u79uwXL29TY76Z2rM5mHXA

> > xtables-addons, actually.  http://jengelh.medozas.de/projects/xtables/
> 
> I took a look at xtables-addons, and I think that we don't need it for
> now. 

I think you may have misunderstood the suggestion.  We aren't saying that you
need xtables-addons to make your patch work.  We're suggesting that you
contribute your patch to xtables-addons, where it seems like a natural fit. Then
everyone can more easily get and use it, since xtables-addons is already well
established.

> In fact, you don't need to recompile kernel and iptables to get
> our extension working. 

Neither does xtables-addons.
Andrew.

--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo-u79uwXL29TY76Z2rM5mHXA@public.gmane.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

^ permalink raw reply	[flat|nested] 7+ messages in thread

end of thread, other threads:[~2008-09-02 19:10 UTC | newest]

Thread overview: 7+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2008-08-28  4:28 [update] port knocking match extension fender
2008-08-28  6:39 ` Brent Clark
2008-08-29  3:32   ` Andrew Schulman
2008-08-31 17:57   ` fender
2008-09-01 18:58     ` Andrew Schulman
2008-09-02 18:58       ` fender
2008-09-02 19:10         ` Andrew Schulman

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox