Skip to main content

Knocs (backends)

Knocs or backends, are systems that the Knocknoc Agent can orchestrate. Select a backend that suits your use case. If you need one that isn't on the list, please let us know as we're expanding these all the time.

Allowlist (EDLs)

The Allowlist backend makes a list of active IP address grants available via the Knocknoc server ...

IPSet (Linux Netfilter/IPTables)

Linux comes equipped with a built-in native firewall which Knocknoc orchestrates via "IPSets". IP...

Windows Firewall

Microsoft Windows comes equipped with a built-in native firewall which Knocknoc orchestrates to p...

Fortinet

Knocknoc orchestrates Fortinet FortiGate firewalls - directly or via FortiManager - to dynamicall...

Palo Alto

Knocknoc integrates with Palo Alto firewalls and the Panorama management system to dynamically gr...

SonicWall

The SonicWall can be orchestrated in three ways, Actively (API call from an Orchestration Agent t...

Check Point

Knocknoc controls access on Check Point gateways in one of two ways. In Active mode the Knocknoc ...

Cisco (SFMC/Firepower)

The  Cisco Secure Firewall Management Console (formerly known as Firepower) integration allows Kn...

Sophos (SFOS/XGS)

The Sophos SFOS/XGS based devices provide advanced firewall and UTM capabilities. This replaces t...

Sophos (UTM)

The Sophos UTM device provides firewall and UTM capabilities. Note that this series of devices is...

Microsoft Azure NSG

Overview This integration allows for IP addresses to be dynamically managed within Azure Network ...

Microsoft Entra

Knocknoc integrates with Microsoft Entra ID (formerly Azure AD) to dynamically control which IPs ...

AWS (EC2) Security Groups

Knocknoc can orchestrate Amazon AWS Security Groups, which essentially provide network level fire...

AWS WAF Ipset

Below is a concise guide for a sysadmin (or developer) to set up and configure AWS WAF with a cus...

Google Cloud Platform (GCP)

Knocknoc integrates with Google Cloud Platform to dynamically control network access via VPC Fire...

Cloudflare IP lists

Knocknoc can orchestrate Cloudflare IP lists to provide dynamic IP network allowlisting inbound t...

DigitalOcean Firewalls

Knocknoc can orchestrate DigitalOcean Cloud Firewalls to provide dynamic IP network allowlisting ...

Okta

Knocknoc integrates with Okta to dynamically control which IPs are allowed to access apps protect...

Knocknoc Reverse Proxy

The Knocknoc orchestration Agent - which is deployed alongside managed infrastructure (not on des...

HAProxy

HAProxy is a fantastic reverse proxy with a massive amount of features. Knocknoc has supported HA...

HAProxy + KAT

Sometimes IP address restrictions or IP-based allowlisting is not enough, think: airport lounge, ...

Nginx

Knocknoc can drive an nginx server's allow/deny list directly from the agent, without a wrapper s...

Apache Webserver

Apache 2.4 and above have slightly different ACL syntax, so this page covers how you can use Knoc...

IPsets with UFW

This is an example that lets you use UFW (https://wiki.ubuntu.com/UncomplicatedFirewall) and IPse...

IPsets with Shorewall

This is an example that lets you use Shorewall https://shorewall.org/index.html and IPsets to dyn...

OPNsense

Knocknoc integrates with OPNsense by managing the contents of a pre-existing firewall alias via t...

pfSense

Knocknoc integrates with pfSense to dynamically control network access.  The Knocknoc agent maint...

MikroTik

Knocknoc integrates with MikroTik RouterOS to dynamically control network access. The Knocknoc ag...

Juniper SRX

Passive, Active or a combination Passive - Knocknoc's Allowlist feature provides a passive integr...

Custom Script

The "Custom Script" Knoc type is simply a script the agent can execute directly on the Agent mach...
Back to top