Re: [Fwknop-discuss] Question about the windows build
Brought to you by:
mbr
Menu
▾
▴
Re: [Fwknop-discuss] Question about the windows build
|
From: Michael R. <mic...@gm...> - 2014-06-21 20:47:21
|
On Thu, Jun 19, 2014 at 4:12 PM, Artur Morandi <art...@gm...> wrote: > Hello! > > Hello Artur, > > I'm using version 2.6.2 for linux on the server side, but it seems the > last version available for download for windows doesn't have the same > options/features. > > I've configured the server stanza as usual and tried to open up a port, > but I always get the "Error creating fko context: Decryption failed or > decrypted data is invalid". > > Is is a versioning thing between windows/linux or am I doing something > wrong? > > Here's my access stanza: > "SOURCE ANY > KEY 1234 > OPEN_PORTS tcp/22 > REQUIRE_SOURCE_ADDRESS Y > REQUIRE_USERNAME user" > > My command line in windows is "fwknop -A tcp/22 -a <my_ip> -D <server_ip> > -U user" > > I've ran fwknopd with -f -v options and the SPA packet received is exactly > the same as sent by the windows client. I'm also not using GPG at this time. > > If you are running the windows binary (available for download at http://www.cipherdyne.org/fwknop/download/fwknop.exe) then try adding the following to your access.conf stanza on the server: ENCRYPTION_MODE legacy This option was added in fwknop-2.5 to allow for backwards compatibility with older clients before PBKDF1 was being used for proper Rijndael key derivation. Some additional detail on this can be found here: http://www.cipherdyne.org/fwknop/docs/fwknop-tutorial.html#backwards-compatibility Please let me know if this works? Thanks, --Mike > I appreciate your time in advance. > > Regards, > Artur Morandi > > > ------------------------------------------------------------------------------ > HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions > Find What Matters Most in Your Big Data with HPCC Systems > Open Source. Fast. Scalable. Simple. Ideal for Dirty Data. > Leverages Graph Analysis for Fast Processing & Easy Data Exploration > http://p.sf.net/sfu/hpccsystems > _______________________________________________ > Fwknop-discuss mailing list > Fwk...@li... > https://lists.sourceforge.net/lists/listinfo/fwknop-discuss > > -- Michael Rash | Founder http://www.cipherdyne.org/ Key fingerprint = 53EA 13EA 472E 3771 894F AC69 95D8 5D6B A742 839F |