Anything like CHX-i ?

Discussion in 'other firewalls' started by TECHWG, Jul 9, 2008.

Thread Status:
Not open for further replies.
  1. TECHWG

    TECHWG Guest

    I figured out a way, long ago, to use CHX to make it so i could close my important ports, and then run a open webserver, and if i visited a certain page, CHX would see the URL and recognise it, then i would trigger it to open the ports for that IP address... Im looking to do that again for my security, but as far as i know CHX-i is not defunked and not supported and old. Is there anything like this that i can close my ports, and be anywhere and open them simply by going to a web page with a special url or something?

    Thanks
     
  2. Kerodo

    Kerodo Registered Member

    Joined:
    Oct 5, 2004
    Posts:
    7,786
    CHX-I is no longer developed, but that doesn't make it useless, far from it. CHX-I 3.0 is probably what you used. It's around, someone here posted a link not too long ago. I would use it.

    The only other one anything like CHX might be 8Signs, but I have no idea if it could do what you're describing....

    http://www.8signs.com/
     
  3. Frederic

    Frederic LnS Developer

    Joined:
    Jan 9, 2003
    Posts:
    4,354
    Location:
    France
    Hi,

    With Look 'n' Stop 2.06p2 and SPF Rules, it is possible to implement a port knocking mechanism.
    With this mechanism, an incoming connection from a remote machine will be accepted only if a sequence of several packets with certain ports is sent first.

    If you are interested in that mechanism, I can give more details in Look 'n' Stop forum, with this kind of SPF rules and an application sample which sends the corresponding port sequence.

    Regards,

    Frederic
     
  4. Pedro

    Pedro Registered Member

    Joined:
    Nov 2, 2006
    Posts:
    3,502
  5. Diver

    Diver Registered Member

    Joined:
    Feb 6, 2005
    Posts:
    1,444
    Location:
    Deep Underwater
    Live & learn.
     
  6. Morthawt

    Morthawt Registered Member

    Joined:
    Jul 10, 2008
    Posts:
    79
    Location:
    UK
    Thanks for the info, it seems most port knocking has been knocked on the head since 2004, almost like some group dont want people to have it or something ! I dont know whats up with that... Thanks for the link though.:D
     
Thread Status:
Not open for further replies.