Web application

There are various options for protecting your web application using Knocknoc

Local Linux firewall orchestration on the host (eg: using IPSets)
In-line firewall/control device orchestration (Fortigate, etc), via an adjacent Knocknoc Agent deployment
HAproxy can sit in front of the web application(s) and forward authorised traffic
Public cloud orchestration (AWS, Azure)

One major advantage of Knocknoc particularly for legacy web applications without single-sign-on or where shared passwords are forced (eg: ICS/OT network equipment, embedded systems, soho routers etc) is that SSO and MFA are quickly added to these back-ends without change.

Consider Your Use Case

SSH

Remote Desktop

Web application

Ivanti Connect Secure

Video

FortiOS, FortiProxy or SSL VPN

VOIP

AWS Infrastructure

Azure Portal

SAML

SAML Principles and Terms

Local Authentication

SAML with EntraID (Azure AD)

SAML with OKTA

Knocknoc with ADFS

SAML with Gsuite as IDP

SAML with Jumpcloud

SAML for the Admin Interface

LDAP

IPset (Linux Netfilter/IPTables)

HAProxy

IPsets with UFW

IPsets with Shorewall

Script Any Arbitrary Backend

AWS (EC2) Security Groups

Mikrotik RouterOS

Nginx

Apache Webserver

Fortigate Address Groups

Microsoft Entra

Allowlist

ACL Basics

Licensing Knocknoc

Server Installation

Agent Installation

Create Users

Create Groups

Admins

Settings

Time for NTP

LDAP Troubleshooting tips

Knocknoc server behind HAProxy

HAProxy tips and tricks

Web application