Skip to main content
Advanced Search
Search Terms
Content Type

Exact Matches
Tag Searches
Date Options
Updated after
Updated before
Created after
Created before

Search Results

57 total results found

Documentation

User Guide

For end-users of Knocknoc

Admin Guide

For administrators of Knocknoc. Please start with the introduction

Changelog and Roadmap

Info about Knocknoc releases

Overview

Knocknoc docs site Overview

Use Cases

Admin Guide

Backends

Admin Guide

Backends are software interfaces that the Knocknoc Agent can connect and interact with. Select a backend that suits your use case.

Authentication

Admin Guide

A guide on configuring the various authentication methods for Knocknoc

ACLS

Admin Guide

ACLs allow you to assign a name to an argument for a backend, which is then assigned to a Group

Troubleshooting

Admin Guide

What can go wrong, will.

Setup Guides

Admin Guide

All the guides to configure and Install Knocknoc server for first use.

User Guide

User Guide

Welcome to the Knocknoc User Guide. This will cover basic operations including logging in, logging out and troubleshooting. If you're looking for information on installing or administering Knocknoc, please check out the Admin Guide. Logging Into Knocknoc Kn...

Introduction

Admin Guide

Welcome to the Knocknoc Admin Guide. Knocknoc is a component in reducing your attack surface, it allows you to have fine-grained control over what resources each of your users can access. Knocknoc consists of a server, where users authenticate, and agents whi...

Consider Your Use Case

Admin Guide Use Cases

Knocknoc Knocknoc can ultimately act as an authentication portal for many use cases. To simplify the setup to begin with, it helps to consider a single application to put behind Knocknoc, and build it out from there. Once you have added an application, config...

Server Installation

Admin Guide Setup Guides

For the admin who knows what they need and needs a fast way to get it, you can use this command to setup and install your Knocknoc server very quickly. Knocknoc server is currently only supported on Debian 11 or 12, or Ubuntu 22.04 Note - you need a license ...

Agent Installation

Admin Guide Setup Guides

For the admin who know what they need, and needs a fast way to get it, you can use this command to setup and install knocknoc-agent very quickly. Browse to https://YourKnocknoc.url/admin and login with the knocknoc-admin user. Click on Agents then Create A...

Web application

Admin Guide Use Cases

Options for protecting your web application using Knocknoc Provide reference examples using relevant backends for example haproxy, ipset or AWS Security Groups

HAProxy

Admin Guide Backends

HAProxy is a fantastic reverse proxy with a massive amount of features. Knocknoc has supported HAProxy for years, and integrates with it natively. HAProxy can be a little confusing at first due to its wide array of options and implementations, but for now we'l...

AWS (EC2) Security Groups

Admin Guide Backends

Knocknoc can easily connect to AWS using common utilities and IAM credentials, and update the allowed IP dynamically. The agent ships with a script built in for this already, which requires credentials placed where the agent can read them.  Backend for AWS Se...

Script Any Arbitrary Backend

Admin Guide Backends

The "script" backend type is simply a script the agent can execute that takes a fixed set of arguments. Action: add (to grant access), del(to revoke access) or flush(to empty/reset the whole ACL); ACL (or "set name"): the name of the ACL for validation, or...

IPset

Admin Guide Backends

IPsets are a powerful way of making a dynamic firewall on a normal Linux machine. A feature of the netfilter code, an IPset is an in-memory list of IPs, that can be referenced in any fireawall rules. Knocknoc can add and remove IPs from an IPset, thereby allo...

VOIP

Admin Guide Use Cases

Having roaming users be able to use a handset from home, and protect your PABX from brute force attacks and other threats is a great feature of Knocknoc. Users are able to have a handset on their home internet connection, and just login for the day, and their ...

AWS Infrastructure

Admin Guide Use Cases

Knocknoc ships with a script for updating security groups in AWS. Checkout the backend documentation here: https://docs.knocknoc.io/books/admin-guide/page/aws-ec2-security-groups This includes an IAM role for updating the security group.  This approach allow...

Video

Admin Guide Use Cases

Streaming low-latency video is a challenge for firewalls and VPNs, and Knocknoc is an excellent solution. The ipset backend script is a great tool to allow things like SRT or RTMP to select IPs.  The Knocknoc demo includes an RTMP example, where the backend ...

Remote Desktop

Admin Guide Use Cases

Using the Haproxy backend, or the script backed are both viable approaches. Given the excellent RDP support in Haproxy,  Knocknoc can allow and block users to a Remote Desktop Gateway with ease.  This allows you to deploy Knocknoc to users, and setup Remote d...

SSH

Admin Guide Use Cases

HAproxy can sit in front of an SSH server and using the TCP feature, Knocknoc can work together to allow access to a bastion host easily. You may want to rebind your SSH server to different port in sshd_config, and then configure HAproxy to listen on port 22,...

v6.0.0

Changelog and Roadmap

Moved most admin options to the Admin UI, out of the config file. Basic settings are still required on startup, like listen address etc. 

Understanding Access Control

Admin Guide

Backends A backend is a Knocknoc-supported technology that can connect to and update ACLs. Using the flexible scripting backend, nearly any type of technology is supported. Because the backend technology is connected to Knocknoc via the agent, the scripting c...

Welcome

Overview

Welcome to the Knocknoc Documentation. This is a living document of current Knocknoc information and helpful guides. There is extensive documentation available, for admins and users alike. Please select from the following sections: User Guide - for end users...

LDAP

Admin Guide Authentication

Knocknoc can authenticate users to an LDAP server like Active Directory, by attempting to bind as that user with their password. This is useful when you have an on-premise LDAP server, and want to allow users to have a single password to manage. Knocknoc conf...

SAML

Admin Guide Authentication

SAML is an in-depth topic, however it represents the best option for securing users, and providing centralized user management. There are many SAML providers, and no single convention on configuration and implementation. Knocknoc is tried and tested with a few...