Thanks Michael.

OK, I have made further progress.

This article:

How To: Install a Port Knocker - FWKNOP - Ubuntu Forums
http://ge.ubuntuforums.com/showthread.php?t=812573

is helpful. Because I don't have mailx, or something similar, installed, I used this tip from that article before re-running the test script fwknop_test.pl:

sudo ln -s /bin/echo /bin/mail

Many tests failed before I ran that command. I am now down to only four tests failing: 56, 57, 134, and 135.

56:
MSG: [*] Dubious sniffed packet format
TEST: (Destination port randomness) Verifying SPA format, STATUS: fail

57:
MSG: [*] SPA access rules for 127.0.0.2 do not exist.
TEST: (Destination port randomness) Rules exist, STATUS: fail

134:
MSG: [*] Local access and DNAT access not granted
TEST: (Local NAT rand NAT/dst port) Local access rules exist, STATUS: fail

135:
MSG: [*] Dubious sniffed packet format
TEST: (Local NAT rand NAT/dst port) Verifying packet format, STATUS: fail

Can anyone give me some clues on how to fix these?

Thanks,

Scott

----- Original Message ----
From: Michael Rash <mbr@cipherdyne.org>
To: fwknop-discuss@lists.sourceforge.net
Sent: Friday, June 13, 2008 6:27:41 AM
Subject: Re: [Fwknop-discuss] Install on Ubuntu Server

On Jun 13, 2008, scottbmbox-cdo@yahoo.com wrote:

> Oops, never mind about the RPM. Michael wasn't responding to my subject, and rpms aren't for Debian-based distributions. I need to go drink some more coffee.

Hi Scott -

Sorry, I just hadn't quite had a chance to dive into this one yet.  I
actually build my x86_64 RPM's on an Ubuntu system, but I have to admit
that I don't install them there.  For i386 RPM's I build under Fedora 8,
and I now have an automated test routine to ensure that they install
correctly there.  Usually things extend to x86_64 but not always.  One
thing I usually recommend if an RPM isn't working is to try building it
with the "cd_rpmbuilder" script, but I don't think that by itself would
have helped in this case:

http://www.cipherdyne.org/blog/2006/12/automated-rpm-builder.html
http://www.cipherdyne.org/scripts/cd_rpmbuilder.tar.gz

Thanks,

--
Michael Rash
http://www.cipherdyne.org/
Key fingerprint = 53EA 13EA 472E 3771 894F  AC69 95D8 5D6B A742 839F

>
>
> ----- Original Message ----
> From: "scottbmbox-cdo@yahoo.com" <scottbmbox-cdo@yahoo.com>
> To: fwknop-discuss@lists.sourceforge.net
> Sent: Friday, June 13, 2008 6:01:38 AM
> Subject: Re: [Fwknop-discuss] Install on Ubuntu Server
>
>
> Marius,
>
> Thanks. Your response helped lead me to the solution.
>
> I tried installing the packages, one-by-one, that you listed which weren't listed by my server when I ran the same command (after installing apt-show-versions). That didn't work. So, I watched the output of the installation process, and captured some of the error messages. I saw "pcap" mentioned, so I searched the Hardy list of packages, and installed libnet-pcap-perl, which also installed libpcap. That worked. I reverted the server to its previous state and tried again, and confirmed that:
>
> sudo aptitude install libnet-pcap-perl
>
> was all that I needed before running the fwknop installation.
>
> Just before I sent this email I saw that Michael Rash has a newly built RPM, so I'll have to revert the server again and try that, too, and  report on my results (tonight).
>
> - Scott
>
>
> ----- Original Message ----
> From: Marius Rugan <mariusrugan@gmail.com>
> To: scottbmbox-cdo@yahoo.com
> Cc: fwknop-discuss@lists.sourceforge.net
> Sent: Thursday, June 12, 2008 7:36:42 AM
> Subject: Re: [Fwknop-discuss] Install on Ubuntu Server
>
> Hi
>
> i got a debian etch
> here is my apt-show-versions
>
> apt-show-versions | grep perl
>
> libconfig-inifiles-perl/etch uptodate 2.39-2
> libplrpc-perl/etch uptodate 0.2017-1.1
> libtext-iconv-perl/etch uptodate 1.4-3
> perl-modules/etch uptodate 5.8.8-7etch3
> libnet-daemon-perl/etch uptodate 0.38-1.1
> libapt-pkg-perl/etch uptodate 0.1.20
> libdbd-mysql-perl/etch uptodate 3.0008-1
> perl/etch uptodate 5.8.8-7etch3
> liblocale-gettext-perl/etch uptodate 1.05-1
> libdbi-perl/etch uptodate 1.53-1etch1
> libtext-charwidth-perl/etch uptodate 0.04-4
> perl-base/etch uptodate 5.8.8-7etch3
> libtext-wrapi18n-perl/etch uptodate 0.06-5
>
> fwknop 1.9.5 installs without a problem under this config
>
> core modules fwknop is using come with the package and the install script handles them
> e.g.
>
> [+] Installing IPTables::ChainMgr 0.7 perl module in /usr/lib/fwknop/
> Checking if your kit is complete...
> Looks good
> Writing Makefile for IPTables::ChainMgr
> cp lib/IPTables/ChainMgr.pm blib/lib/IPTables/ChainMgr.pm
> Manifying blib/man3/IPTables::ChainMgr.3pm
> Installing /usr/lib/fwknop/IPTables/ChainMgr.pm
> Installing /usr/lib/fwknop/man/man3/IPTables::ChainMgr.3pm
>
>
>
>
> On Thu, Jun 12, 2008 at 1:51 PM,  <scottbmbox-cdo@yahoo.com> wrote:
>
> I am attempting to install the latest fwknop on the latest upgraded Ubuntu Server (2.6.24-18-server). I have build-essentials installed, but I don't know if fwknop requires that. Perhaps there are other libraries or Perl modules that I need to install first. During the attempted fwknop installation I get messages such as:
>
> ...
>
> Warning: prerequisite Test::Manifest 1.14 not found.
>
> ...
>
> Can't locate Net/Pcap.pm in @INC (@INC contains: /usr/lib/fwknop/i486-linux-gnu-thread-multi /usr/lib/fwknop /etc/perl /usr/local/lib/perl/5.8.8 /usr/local/share/perl/5.8.8 /usr/lib/perl5 /usr/share/perl5 /usr/lib/perl/5.8 /usr/share/perl/5.8 /usr/local/lib/site_perl .) at fwknopd line 47.
> BEGIN failed--compilation aborted at fwknopd line 47.
> [*] fwknopd does not compile with "perl -c".  Download the latest sources from:
>
> http://www.cipherdyne.org/
>
> ...
>
> What are the prerequisites for fwknop installation on Ubuntu Server?
>
> Thanks.