From e8fe286563e7f4ab96b9c6edfc9dff2983ee64db Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=A9r=C3=B4me=20Schneider?= <jschneider@entrouvert.com>
Date: Tue, 21 Jun 2011 15:44:32 +0200
Subject: [PATCH] port knocking: open only 6 seconds

---
 firewall | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/firewall b/firewall
index 5148e69..092e43b 100755
--- a/firewall
+++ b/firewall
@@ -141,7 +141,7 @@ port_knocking()
             iptables -A INPUT -i $WAN_INT -p tcp --dport $kport -m recent --set --name toc$i
         fi
     done
-    iptables -A INPUT -i $WAN_INT -p tcp --dport $port -m recent --rcheck --seconds 15 --name toc$i -m state --state NEW -j ACCEPT
+    iptables -A INPUT -i $WAN_INT -p tcp --dport $port -m recent --rcheck --seconds 6 --name toc$i -m state --state NEW -j ACCEPT
 }
 
 start()