28 lines
832 B
Plaintext
28 lines
832 B
Plaintext
# claranet serveur
|
|
# [options]
|
|
# UseSyslog
|
|
#
|
|
# [Client]
|
|
# sequence = 5019,8599,4468
|
|
# seq_timeout = 5
|
|
# command = /sbin/iptables -I internet_inbound 1 -s %IP% -p tcp --match multiport --dports 22,21,40000:40200 -j ACCEPT
|
|
# tcpflags = syn
|
|
# cmd_timeout = 86400
|
|
# stop_command = /sbin/iptables -D internet_inbound -s %IP% -p tcp --match multiport --dports 22,21,40000:40200 -j ACCEPT
|
|
|
|
|
|
|
|
[options]
|
|
logfile = /var/log/knockd.log
|
|
|
|
[SSH]
|
|
sequence = 7000,8000,9000
|
|
seq_timeout = 5
|
|
# do not limit port 22 to the ip as it don't work with 4G connection
|
|
# start_command = ufw insert 1 allow from %IP% to any port 22
|
|
start_command = ufw allow ssh
|
|
tcpflags = syn
|
|
cmd_timeout = 600
|
|
# stop_command = ufw delete allow from %IP% to any port 22
|
|
stop_command = ufw delete allow ssh
|