Port knocking

Posted: Sun Mar 19, 2006 11:49 am
by savagedavid
Anyone know if there is any chance of introducing a port knocking feature to the Mikrotik firewall?

Posted: Sun Mar 19, 2006 2:29 pm
by andrewluck
Already possible using address lists.



Posted: Mon Mar 20, 2006 12:54 am
by savagedavid
I am not sure that I follow. My understanding is that address lists are used to group IP addresses together for firewall or packet processing of some kind. Port knocking is sending a certain sequence of port "knocks" using a portknocking client to the firewall (almost like a password) that will temporarily open up other ports.

Perhaps my understanding of address lists is incorrect?

Posted: Mon Mar 20, 2006 1:29 am
by yancho there is an example how to use address list for that purpose

Posted: Mon Mar 20, 2006 8:52 am
by savagedavid
Thanks that will help