Is port knocking supported?


#1

We need to deploy to a server that is behind a firewall and whitelisting AWS IP ranges isn’t an option. However the server does support port knocking. Is this something that we can configure on Circle CI?


#2

Ive never done it, but if you did something like in this tutorial there is nothing really preventing you from doing it on CircleCI since our build environment is just an Ubuntu LXC container.

Would be interested to know if you are able to get this to work!


#3

Hi,

Thought I’d let you know I got this working just fine. Our server provider setup the port knock on their side. Then I just had to configure circle.yml to install nmap so that the port knocking could be done.

    dependencies:
      pre:
        - gem install capistrano
        - sudo apt-get update; sudo apt-get install nmap
    machine:
      php:
        version: 5.5.11
      ruby:
        version: 2.1.2
    test:
      override:
        - vendor/bin/codecept run tests/unit/shipping/DeliveryRulesTest.php
    deployment:
      develop:
        branch: temp/ci-tests
        commands:
          - for x in 9000 8000 7000; do nmap -Pn --host_timeout 201 --max-retries 0 -p $x 0.0.0.0; done
          - cap dev deploy

#4