projects / fwknop.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2a5bc7e) | patch
Add INPUT ACCEPT rule for --nat-local connections
authorMichael Rash <mbr@cipherdyne.org>
Mon, 16 Jul 2012 01:32:14 +0000 (21:32 -0400)
committerMichael Rash <mbr@cipherdyne.org>
Mon, 16 Jul 2012 01:32:14 +0000 (21:32 -0400)
commitde7aa3b619f05f9c7df7e943d899e973fa8ac904
treef886ba92a551b04bdda90bcb288dfb16a70affe3tree | snapshot
parent2a5bc7ed1456e0c63a87e89c8837be555c33211dcommit | diff
Add INPUT ACCEPT rule for --nat-local connections

When using the --nat-local argument on the fwknop client command line, the
fwknopd server needs to add an INPUT ACCEPT rule for the requested access
since the incoming connection is destined for a local socket.  Added test
suite support to test --nat-local access.

[test suite] Minor bug fix to ensure that all file_find_regex() calls return
true if all regex's are matched and false if any regex does not match data in
the specified file.
client/fwknop.c diff | blob | history
server/fw_util_iptables.c diff | blob | history
test/test-fwknop.pl diff | blob | history
fwknop: Single Packet Authorization and Port Knocking