1 (edited by larissa 2023-03-07 07:56:11)

Topic: fwknop (SPA) single packet authorization

Hi all,

  Please excuse me if this is the wrong place to ask this question.
  I was wondering if you have any plans to include fwknop (SPA encryption) in your package offerings.
  Thanks in advance.
'
https://www.cipherdyne.org/fwknop/

2

Re: fwknop (SPA) single packet authorization

As Hyperbola is not supporting iptables the question would be: Is it possible to be used instead with nftables? Otherwise there won't be any support possible.

Human being in favor with clear principles and so also for freedom in soft- and hardware!

Certainly anyone who has the power to make you believe absurdities has the power to make you commit injustices: For a life of every being full with peace and kindness, including diversity and freedom. Capitalism is destroying our minds, the planet itself and the universe in the end!

3

Re: fwknop (SPA) single packet authorization

It seems that fwknop does provide CMD_CYCLE_OPEN which is a feature to allow fwknopd to interact with firewalls or ACL’s that are not natively supported.  This option is used as a workaround in openwrt:
https://forum.openwrt.org/t/fwknop-port … n/149319/3