Michael Rash
Michael Rash
Add support for Pfense firewalls with a dedicated package. FreeBSD is already supported, so this should be relatively easy.
Sometime potentially for the fwknop 2.1 release we should add full IPv6 support to both the fwknop client and fwknop server. A start was made on this for the client...
There have been a couple of reports (from Gerry Reno and also from the blog post below) of fwknop usage in mobile networks where the client IP changes across very...
Stephen Isard reported a potential problem with ENABLE_CMD_SUDO_EXE mode doesn't work as intended. Opening this issue to make sure this is fixed for the 2.6.10 release.
The '[perl FKO module] [HMAC encrypt/decrypt] invalid (long) keys' test currently fails because there is a mismatch between the maximum key length enforced via MAX_KEY_LEN (set to 128) in common/common.h...
Waverley Labs has put a lot of work into adding fast access.conf stanza processing and other things - some of this could be integrated: https://github.com/WaverleyLabs/fwknop/commits/master
Extend interpreted language support to Ruby.
It would probably be helpful for users to have a basic configuration wizard for both the client and server. For example, this could drive the client --save-rc-stanza functionality, but without...
We should not automatically flush the existing policy on PF firewalls when running the test suite (together with the test/misc/pf.sh script). Or, at least, we should warn the user.
The test suite already has support for detecting new code coverage from a previous test execution run. This should be extended to allow coverage differences to be detected on a...