SPI and port knocking

Discussion in 'Tomato Firmware' started by apillowofclouds, May 2, 2008.

  1. apillowofclouds

    apillowofclouds Addicted to LI Member

    I've got my friend's router flashed to Tomato and we were looking through it last night, pretty cool. But there are 2 things that I would like to do with Tomato that it's not clear to me how to do:

    Port knocking - I know Tomato has port triggering built in, but are there any scripts / plugins / etc that will let me do port knocking?

    SPI - I realize Tomato has a built in SPI firewall but it seems to be configurable only through the forwarding page etc which seems to my noob eyes a bit simplified. I would like to be able to edit rules where I specify an external IP, an internal IP and a port, and maybe even a timeframe rather than just blanket forwarding all traffic on a port from any IP to a specific internal one. I think there are tools available to edit the Linksys/tomato SPI to do this but I've searched and found nothing that's totally clear to me. Can someone post a link to send me in the right direction?

    TIA, sorry if I'm a bit confused

  2. nvtweak

    nvtweak LI Guru Member

    Tomato does not include port knocking capability afaik. But source code for knockd is available, so it is probably possible to get it running if you cross-compile it. Or perhaps try the already compiled package from OpenWRT.

    iptables is the SPI firewall in Tomato. It is very configurable firewall tool.

  3. Eiríkr

    Eiríkr Addicted to LI Member


    Anyone have any hints (or ideally HOWTOs) for cross-compiling for a WRT54GL v1.1? I'm very interested in the capabilities described in the knockd daemon, but I have no idea how to get it onto my Tomato installation.


    -- Eiríkr

    /e: Doh, I meant fwknop, not knockd. Single-packet authorization looks just too cool.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice