Last modified by Xiaoye on 2023/11/07 20:12
<
From version < 30.3 >
edited by Xiaoling
on 2022/07/14 11:08
To version < 31.3 >
edited by Xiaoling
on 2022/07/14 11:20
>
Change comment: There is no comment for this version

Summary

Details

Page properties
Content
... ... @@ -69,6 +69,7 @@
69 69  
70 70  
71 71  
72 +
72 72  == **1.3  Monitor Public IP** ==
73 73  
74 74  
... ... @@ -100,6 +100,7 @@
100 100  
101 101  == **2.2  RSSH Introduction** ==
102 102  
104 +
103 103  Reverse SSH for remote access is available in the latest Dragino firmware for gateway. For security concern, the RSSH only available base on end user demand.
104 104  
105 105  Important Notice:
... ... @@ -123,8 +123,9 @@
123 123  
124 124  
125 125  
126 -=== **2.2.1 End User Guide to use SSH access** ===
128 +=== **2.2.1  End User Guide to use SSH access** ===
127 127  
130 +
128 128  Go to this the Reverse SSH page as below:
129 129  
130 130  [[image:image-20220531150151-3.png]]
... ... @@ -138,28 +138,32 @@
138 138  Connection OK.
139 139  
140 140  
141 -* (% style="color:#037691" %)**Login ID**(%%): Input sshuser
142 -* (% style="color:#037691" %)**Host Address**(%%): Input support.dragino.com
143 -* (% style="color:#037691" %)**Host Port** (%%): Please email to support @ dragino.com to get a valid host port.
144 +* (% style="color:#037691" %)**Login ID**(%%):  Input sshuser
145 +* (% style="color:#037691" %)**Host Address**(%%):  Input support.dragino.com
146 +* (% style="color:#037691" %)**Host Port** (%%):  Please email to support @ dragino.com to get a valid host port.
144 144  * (% style="color:#037691" %)**Connect at Startup**(%%) : Choose to enable connect once the device is powered.
145 -* (% style="color:#037691" %)**Network Keys**(%%): Click the Generate keys to generate the keys and download / mail it to Dragino support so Dragino can prepare the remote access to
148 +* (% style="color:#037691" %)**Network Keys**(%%):  Click the Generate keys to generate the keys and download / mail it to Dragino support so Dragino can prepare the remote access to
146 146  
147 147  After doing above, please download and mail the public keys to Dragino support and wait for our mail for the valid host port. Input the valid host port got from our support and click connect so we can remote access to your gateway.
148 148  
149 149  
150 -=== **2.2.2 Set Up RSSH Server** ===
151 151  
154 +=== **2.2.2  Set Up RSSH Server** ===
155 +
152 152  Advance administrator can config a SSH server to provide support their end user themselves., Steps as below
153 153  
154 154  
155 -==== **2.2.2.1 Step 1 : Download the SSH service code** ====
156 156  
157 -1).git clone [[https:~~/~~/github.com/dragino/rssh-server.git>>url:https://github.com/dragino/rssh-server.git]] rssh-server
160 +==== **2.2.2.1  Step 1 : Download the SSH service code** ====
158 158  
162 +
163 +**1).**  git clone [[https:~~/~~/github.com/dragino/rssh-server.git>>url:https://github.com/dragino/rssh-server.git]] rssh-server
164 +
159 159  [[image:image-20220531150750-5.png]]
160 160  
161 -2).cd rssh-server; sudo make ~-~--> to Generate the execute file:rssh_serv
162 162  
168 +**2).**  cd rssh-server; sudo make ~-~--> to Generate the execute file:rssh_serv
169 +
163 163  [[image:image-20220531150811-6.png]]
164 164  
165 165  
... ... @@ -189,25 +189,31 @@
189 189  [[image:image-20220531151628-8.png]]
190 190  
191 191  
192 -**How to install Sqlit3**
199 +(% style="color:blue" %)**How to install Sqlit3**
193 193  
194 194  (% class="box infomessage" %)
195 195  (((
196 - Step1:Download the SQLit3 installation package
197 - sudo wget **[[https:~~/~~/www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz>>url:https://www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz]]**
203 +**~ Step1:** Download the SQLit3 installation package
204 + sudo wget **[[https:~~/~~/www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz>>url:https://www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz]]**
198 198  
199 -Step2:tar the SQLit3 installation package
206 +
207 +**Step2: **tar the SQLit3 installation package
200 200   sudo tar -zxvf sqlite-autoconf-3350300.tar.gz
201 -Step3:Generate the makefile
209 +
210 +**Step3:** Generate the makefile
202 202   cd sqlite-autoconf-3350300/;./configure
203 -Step4:Compile makefile
212 +
213 +**Step4:** Compile makefile
204 204   sudo make
205 -Step5:Install makefile
215 +
216 +**Step5:** Install makefile
206 206   sudo make install
207 -Check:
218 +
219 +**Check:**
208 208   cd /usr/local/bin;ls -al                             ~-~->    Check to see if there is a file for sqlite3
209 209   cd sqlite-autoconf-3350300/;./sqlite3 test.db        ~-~->    Test whether the sqlite3 was installed successfully
210 -debug:
222 +
223 +**debug:**
211 211   If you get the imformation that is SQLite header and source version mismatch, when you execute./sqlite3 test.db.
212 212   Please execute the command /sbin/ldconfig.
213 213   After that execute the command ./sqlite3 test.db again.
... ... @@ -214,10 +214,12 @@
214 214  )))
215 215  
216 216  
217 -==== **2.2.2.2 Step 2 : Install and run the RSS service** ====
218 218  
219 -1):install database for /var/rsshdb.sqlite3 and Server development port for 3721(The default is 3721)
231 +==== **2.2.2.2  Step 2 : Install and run the RSS service** ====
220 220  
233 +
234 +**1). ** install database for /var/rsshdb.sqlite3 and Server development port for 3721(The default is 3721)
235 +
221 221  user must enter the root account and run the following commands
222 222  
223 223  (% class="box infomessage" %)
... ... @@ -242,26 +242,28 @@
242 242  
243 243  
244 244  
245 -==== **2.2.2.3 Step 3 : Create a minimal SSH user (reverse SSH proxy for the gateway)** ====
260 +==== **2.2.2.3  Step 3 : Create a minimal SSH user (reverse SSH proxy for the gateway)** ====
246 246  
262 +
247 247  (% class="box infomessage" %)
248 248  (((
249 -1):sudo useradd XXXXX (custom user name)
250 -2):sudo passwd xxxxxx
251 -3):cp /bin/bash /bin/rbash
252 -4):sudo nano /etc/passwd ~-~-> Change /bin/bash to /bin/rbash
253 -5):sudo nano /home/xxxxx/.bashrc **empty it,and input export PATH=$HOME/bin**
254 -6):sudo nano /home/xxxxx/.bash_profile **empty it,and input export PATH=$HOME/bin**
265 +**1):**  sudo useradd XXXXX (custom user name)
266 +**2):**  sudo passwd xxxxxx
267 +**3):**  cp /bin/bash /bin/rbash
268 +**4):**  sudo nano /etc/passwd ~-~-> Change /bin/bash to /bin/rbash
269 +**5):**  sudo nano /home/xxxxx/.bashrc **empty it,and input export PATH=$HOME/bin**
270 +**6):**  sudo nano /home/xxxxx/.bash_profile **empty it,and input export PATH=$HOME/bin**
255 255  )))
256 256  
257 -**Now user "XXXXX" is the user with limited permissions of the current system**
273 +(% style="color:red" %)**Now user "XXXXX" is the user with limited permissions of the current system**
258 258  
259 259  
260 260  
261 -==== **2.2.2.4 Step 4 : Create an authorization key file** ====
277 +==== **2.2.2.4  Step 4 : Create an authorization key file** ====
262 262  
263 -1):sudo mkdir /home/xxxxx/.ssh; sudo touch /home/xxxxx/.ssh/authorizedkey
264 264  
280 +**1):**  sudo mkdir /home/xxxxx/.ssh; sudo touch /home/xxxxx/.ssh/authorizedkey
281 +
265 265  **Debug:**
266 266  
267 267  {{{ check: sudo ls /home/xxxxx/.ssh/authorizedkey}}}
... ... @@ -268,25 +268,30 @@
268 268  
269 269  
270 270  
271 -=== **2.2.3 How does user get the gateway to connect to a user's private server** ===
288 +=== **2.2.3  How does user get the gateway to connect to a user's private server** ===
272 272  
273 273  
274 -==== **2.2.3.1 Step 1 : Come back the gateway web UI to get the gateway Public key** ====
291 +==== **2.2.3.1  Step 1 : Come back the gateway web UI to get the gateway Public key** ====
275 275  
276 -1)in the system ~-~-> (% style="color:#037691" %)**Remote Mgmt/span**
277 277  
294 +**1)**  in the system ~-~-> (% style="color:#037691" %)**Remote Mgmt/span**
295 +
278 278  [[image:image-20220531152419-11.png]]
279 279  
280 280  
281 -==== **2.2.3.2 Step 2 : Authorization server** ====
282 282  
300 +==== **2.2.3.2  Step 2 : Authorization server** ====
301 +
302 +
283 283  Input the Gateway Publickey into user's private server "/home/XXXXX/.ssh/authorized_keys" file.
284 284  
285 285  [[image:image-20220531152549-12.png]]
286 286  
287 287  
288 -==== **2.2.3.3 Step 3 : Connect private server** ====
289 289  
309 +==== **2.2.3.3  Step 3 : Connect private server** ====
310 +
311 +
290 290  This is same as connect Dragino Support Server but just change the server address to customize server address.
291 291  
292 292  [[image:image-20220531152633-13.png]]
... ... @@ -293,8 +293,9 @@
293 293  
294 294  
295 295  
296 -==== **2.2.3.4 Step 4 : Check Connection** ====
318 +==== **2.2.3.4  Step 4 : Check Connection** ====
297 297  
320 +
298 298  Rssh Host connection Ok
299 299  
300 300  [[image:image-20220531152815-14.png]]
... ... @@ -305,8 +305,10 @@
305 305  [[image:image-20220531152840-15.png]]
306 306  
307 307  
308 -==== **2.2.3.5 Step 5 : Access the gateway from customized server** ====
309 309  
332 +==== **2.2.3.5  Step 5 : Access the gateway from customized server** ====
333 +
334 +
310 310  Check what gateways link to server.
311 311  
312 312  (% class="box infomessage" %)
... ... @@ -326,3 +326,5 @@
326 326  )))
327 327  
328 328  [[image:image-20220531153219-17.png]]
354 +
355 +

Applications

Navigation

Copyright ©2010-2022 Dragino Technology Co., LTD. All rights reserved
Dragino Wiki v2.0