On Wed, Jul 29, 2015 at 4:49 PM, Kevin Layer <la...@known.net> wrote:
> Mike, > > I was able to build, install and successfully ssh into the two > different hosts after knocking. > > 2.6.7-pre1 looks good to me. Thanks! > Excellent, thanks for the confirmation. --Mike > > Kevin > > Michael Rash wrote: > > >> > >> > >> On Tue, Jul 28, 2015 at 9:48 AM, Kevin Layer <la...@known.net> wrote: > >> > >> I'm testing an install from source. Using my 2.6.6 > >> configuration. > >> When I start the daemon I get this in /var/log/messages: > >> > >> Jul 28 06:42:52 relay fwknopd[1240]: [*] KEY_BASE64 value is not > >> properly set in stanza source 'ANY' in access file: '/usr/etc/ > >> fwknop/access.conf' > >> > >> > >> Hi Kevin, > >> > >> Just to double check, is your access.conf file in /etc/fwknop/ > >> instead of /usr/etc/fwknop/? Most distros will set the config > >> directory with the --sysconfdir option to the configure script when > >> building the fwknop package. If you are building from sources, you'll > >> need to use this option as well. A convenience script is located at > >> extras/apparmor/configure_args.sh to set various paths including the > >> config directory. > >> > >> Alternatively, you can set the paths to the config file and the > >> access.file manually with '-c' and '-a' on the fwknopd command line. > >> > >> Thanks, > >> > >> --Mike > >> > >> > >> > >> > >> > >> My access.conf: > >> > >> SOURCE ANY > >> OPEN_PORTS tcp/18081 > >> KEY <PW> > >> FW_ACCESS_TIMEOUT 900 > >> FORCE_NAT 173.13.135.57 22 > >> > >> SOURCE ANY > >> OPEN_PORTS tcp/18082 > >> KEY <PW> > >> FW_ACCESS_TIMEOUT 900 > >> FORCE_NAT 192.168.0.5 22 > >> > >> > >> where <PW> is a placeholder for the real passwd. > >> > >> My fwknopd.conf: > >> > >> PCAP_INTF wan; > >> ENABLE_IPT_FORWARDING Y; > >> > >> > >> Ideas? Thanks. > >> > >> Kevin > >> > >> > >> > > ------------------------------------------------------------------------------ > >> _______________________________________________ > >> Fwknop-discuss mailing list > >> Fwknop-discuss@lists.sourceforge.net > >> https://lists.sourceforge.net/lists/listinfo/fwknop-discuss > >> > >> > >> > >> > >> -- > >> Michael Rash | Founder > >> http://www.cipherdyne.org/ > >> Key fingerprint = 53EA 13EA 472E 3771 894F AC69 95D8 5D6B A742 839F > >> > >> > >> > ------------------------------------------------------------------------------ > >> _______________________________________________ > >> Fwknop-discuss mailing list > >> Fwknop-discuss@lists.sourceforge.net > >> https://lists.sourceforge.net/lists/listinfo/fwknop-discuss > -- Michael Rash | Founder http://www.cipherdyne.org/ Key fingerprint = 53EA 13EA 472E 3771 894F AC69 95D8 5D6B A742 839F
------------------------------------------------------------------------------
_______________________________________________ Fwknop-discuss mailing list Fwknop-discuss@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/fwknop-discuss
