Home Explore Help
Sign In
bachir
/
debian-web-server
1
1
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
debian-web-s...
/
assets
/
knockd.conf

knockd.conf 832 B
Permalink History Raw

123456789101112131415161718192021222324252627 
  1. # claranet serveur
    2. 

  2. # [options]
    3. 

  3. # UseSyslog
    4. 

  4. #
    5. 

  5. # [Client]
    6. 

  6. # sequence = 5019,8599,4468
    7. 

  7. # seq_timeout = 5
    8. 

  8. # command = /sbin/iptables -I internet_inbound 1 -s %IP% -p tcp --match multiport --dports 22,21,40000:40200 -j ACCEPT
    9. 

  9. # tcpflags = syn
    10. 

  10. # cmd_timeout = 86400
    11. 

  11. # stop_command = /sbin/iptables -D internet_inbound -s %IP% -p tcp --match multiport --dports 22,21,40000:40200 -j ACCEPT
    12. 

  12. 

  13. 

  14. 

  15. [options]
    16. 

  16.       logfile = /var/log/knockd.log
    17. 

  17. 

  18. [SSH]
    19. 

  19.       sequence    = 7000,8000,9000
    20. 

  20.       seq_timeout = 5
    21. 

  21.       # do not limit port 22 to the ip as it don't work with 4G connection
    22. 

  22.       # start_command = ufw insert 1 allow from %IP% to any port 22
    23. 

  23.       start_command = ufw allow ssh
    24. 

  24.       tcpflags    = syn
    25. 

  25.       cmd_timeout   = 600
    26. 

  26.       # stop_command  = ufw delete allow from %IP% to any port 22
    27. 

  27.       stop_command = ufw delete allow ssh
    28.