Last modified by Xiaoye on 2023/11/07 20:12
<
From version < 31.3 >
edited by Xiaoling
on 2022/07/14 11:20
To version < 30.2 >
edited by Xiaoling
on 2022/07/14 11:08
>
Change comment: There is no comment for this version

Summary

Details

Page properties
Content
... ... @@ -69,7 +69,6 @@
69 69  
70 70  
71 71  
72 -
73 73  == **1.3  Monitor Public IP** ==
74 74  
75 75  
... ... @@ -101,7 +101,6 @@
101 101  
102 102  == **2.2  RSSH Introduction** ==
103 103  
104 -
105 105  Reverse SSH for remote access is available in the latest Dragino firmware for gateway. For security concern, the RSSH only available base on end user demand.
106 106  
107 107  Important Notice:
... ... @@ -122,12 +122,8 @@
122 122  * LIG16
123 123  * MS14 series if installed with the same firmware.
124 124  
123 +=== **2.2.1 End User Guide to use SSH access** ===
125 125  
126 -
127 -
128 -=== **2.2.1  End User Guide to use SSH access** ===
129 -
130 -
131 131  Go to this the Reverse SSH page as below:
132 132  
133 133  [[image:image-20220531150151-3.png]]
... ... @@ -141,32 +141,28 @@
141 141  Connection OK.
142 142  
143 143  
144 -* (% style="color:#037691" %)**Login ID**(%%):  Input sshuser
145 -* (% style="color:#037691" %)**Host Address**(%%):  Input support.dragino.com
146 -* (% style="color:#037691" %)**Host Port** (%%):  Please email to support @ dragino.com to get a valid host port.
138 +* (% style="color:#037691" %)**Login ID**(%%): Input sshuser
139 +* (% style="color:#037691" %)**Host Address**(%%): Input support.dragino.com
140 +* (% style="color:#037691" %)**Host Port** (%%): Please email to support @ dragino.com to get a valid host port.
147 147  * (% style="color:#037691" %)**Connect at Startup**(%%) : Choose to enable connect once the device is powered.
148 -* (% style="color:#037691" %)**Network Keys**(%%):  Click the Generate keys to generate the keys and download / mail it to Dragino support so Dragino can prepare the remote access to
142 +* (% style="color:#037691" %)**Network Keys**(%%): Click the Generate keys to generate the keys and download / mail it to Dragino support so Dragino can prepare the remote access to
149 149  
150 150  After doing above, please download and mail the public keys to Dragino support and wait for our mail for the valid host port. Input the valid host port got from our support and click connect so we can remote access to your gateway.
151 151  
152 152  
147 +=== **2.2.2 Set Up RSSH Server** ===
153 153  
154 -=== **2.2.2  Set Up RSSH Server** ===
155 -
156 156  Advance administrator can config a SSH server to provide support their end user themselves., Steps as below
157 157  
158 158  
152 +==== **2.2.2.1 Step 1 : Download the SSH service code** ====
159 159  
160 -==== **2.2.2.1  Step 1 : Download the SSH service code** ====
154 +1).git clone [[https:~~/~~/github.com/dragino/rssh-server.git>>url:https://github.com/dragino/rssh-server.git]] rssh-server
161 161  
162 -
163 -**1).**  git clone [[https:~~/~~/github.com/dragino/rssh-server.git>>url:https://github.com/dragino/rssh-server.git]] rssh-server
164 -
165 165  [[image:image-20220531150750-5.png]]
166 166  
158 +2).cd rssh-server; sudo make ~-~--> to Generate the execute file:rssh_serv
167 167  
168 -**2).**  cd rssh-server; sudo make ~-~--> to Generate the execute file:rssh_serv
169 -
170 170  [[image:image-20220531150811-6.png]]
171 171  
172 172  
... ... @@ -196,31 +196,25 @@
196 196  [[image:image-20220531151628-8.png]]
197 197  
198 198  
199 -(% style="color:blue" %)**How to install Sqlit3**
189 +**How to install Sqlit3**
200 200  
201 201  (% class="box infomessage" %)
202 202  (((
203 -**~ Step1:** Download the SQLit3 installation package
204 - sudo wget **[[https:~~/~~/www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz>>url:https://www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz]]**
193 + Step1:Download the SQLit3 installation package
194 + sudo wget **[[https:~~/~~/www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz>>url:https://www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz]]**
205 205  
206 -
207 -**Step2: **tar the SQLit3 installation package
196 +Step2:tar the SQLit3 installation package
208 208   sudo tar -zxvf sqlite-autoconf-3350300.tar.gz
209 -
210 -**Step3:** Generate the makefile
198 +Step3:Generate the makefile
211 211   cd sqlite-autoconf-3350300/;./configure
212 -
213 -**Step4:** Compile makefile
200 +Step4:Compile makefile
214 214   sudo make
215 -
216 -**Step5:** Install makefile
202 +Step5:Install makefile
217 217   sudo make install
218 -
219 -**Check:**
204 +Check:
220 220   cd /usr/local/bin;ls -al                             ~-~->    Check to see if there is a file for sqlite3
221 221   cd sqlite-autoconf-3350300/;./sqlite3 test.db        ~-~->    Test whether the sqlite3 was installed successfully
222 -
223 -**debug:**
207 +debug:
224 224   If you get the imformation that is SQLite header and source version mismatch, when you execute./sqlite3 test.db.
225 225   Please execute the command /sbin/ldconfig.
226 226   After that execute the command ./sqlite3 test.db again.
... ... @@ -227,12 +227,10 @@
227 227  )))
228 228  
229 229  
214 +==== **2.2.2.2 Step 2 : Install and run the RSS service** ====
230 230  
231 -==== **2.2.2.2  Step 2 : Install and run the RSS service** ====
216 +1):install database for /var/rsshdb.sqlite3 and Server development port for 3721(The default is 3721)
232 232  
233 -
234 -**1). ** install database for /var/rsshdb.sqlite3 and Server development port for 3721(The default is 3721)
235 -
236 236  user must enter the root account and run the following commands
237 237  
238 238  (% class="box infomessage" %)
... ... @@ -257,28 +257,26 @@
257 257  
258 258  
259 259  
260 -==== **2.2.2.3  Step 3 : Create a minimal SSH user (reverse SSH proxy for the gateway)** ====
242 +==== **2.2.2.3 Step 3 : Create a minimal SSH user (reverse SSH proxy for the gateway)** ====
261 261  
262 -
263 263  (% class="box infomessage" %)
264 264  (((
265 -**1):**  sudo useradd XXXXX (custom user name)
266 -**2):**  sudo passwd xxxxxx
267 -**3):**  cp /bin/bash /bin/rbash
268 -**4):**  sudo nano /etc/passwd ~-~-> Change /bin/bash to /bin/rbash
269 -**5):**  sudo nano /home/xxxxx/.bashrc **empty it,and input export PATH=$HOME/bin**
270 -**6):**  sudo nano /home/xxxxx/.bash_profile **empty it,and input export PATH=$HOME/bin**
246 +1):sudo useradd XXXXX (custom user name)
247 +2):sudo passwd xxxxxx
248 +3):cp /bin/bash /bin/rbash
249 +4):sudo nano /etc/passwd ~-~-> Change /bin/bash to /bin/rbash
250 +5):sudo nano /home/xxxxx/.bashrc **empty it,and input export PATH=$HOME/bin**
251 +6):sudo nano /home/xxxxx/.bash_profile **empty it,and input export PATH=$HOME/bin**
271 271  )))
272 272  
273 -(% style="color:red" %)**Now user "XXXXX" is the user with limited permissions of the current system**
254 +**Now user "XXXXX" is the user with limited permissions of the current system**
274 274  
275 275  
276 276  
277 -==== **2.2.2.4  Step 4 : Create an authorization key file** ====
258 +==== **2.2.2.4 Step 4 : Create an authorization key file** ====
278 278  
260 +1):sudo mkdir /home/xxxxx/.ssh; sudo touch /home/xxxxx/.ssh/authorizedkey
279 279  
280 -**1):**  sudo mkdir /home/xxxxx/.ssh; sudo touch /home/xxxxx/.ssh/authorizedkey
281 -
282 282  **Debug:**
283 283  
284 284  {{{ check: sudo ls /home/xxxxx/.ssh/authorizedkey}}}
... ... @@ -285,30 +285,25 @@
285 285  
286 286  
287 287  
288 -=== **2.2.3  How does user get the gateway to connect to a user's private server** ===
268 +=== **2.2.3 How does user get the gateway to connect to a user's private server** ===
289 289  
290 290  
291 -==== **2.2.3.1  Step 1 : Come back the gateway web UI to get the gateway Public key** ====
271 +==== **2.2.3.1 Step 1 : Come back the gateway web UI to get the gateway Public key** ====
292 292  
273 +1)in the system ~-~-> (% style="color:#037691" %)**Remote Mgmt/span**
293 293  
294 -**1)**  in the system ~-~-> (% style="color:#037691" %)**Remote Mgmt/span**
295 -
296 296  [[image:image-20220531152419-11.png]]
297 297  
298 298  
278 +==== **2.2.3.2 Step 2 : Authorization server** ====
299 299  
300 -==== **2.2.3.2  Step 2 : Authorization server** ====
301 -
302 -
303 303  Input the Gateway Publickey into user's private server "/home/XXXXX/.ssh/authorized_keys" file.
304 304  
305 305  [[image:image-20220531152549-12.png]]
306 306  
307 307  
285 +==== **2.2.3.3 Step 3 : Connect private server** ====
308 308  
309 -==== **2.2.3.3  Step 3 : Connect private server** ====
310 -
311 -
312 312  This is same as connect Dragino Support Server but just change the server address to customize server address.
313 313  
314 314  [[image:image-20220531152633-13.png]]
... ... @@ -315,9 +315,8 @@
315 315  
316 316  
317 317  
318 -==== **2.2.3.4  Step 4 : Check Connection** ====
293 +==== **2.2.3.4 Step 4 : Check Connection** ====
319 319  
320 -
321 321  Rssh Host connection Ok
322 322  
323 323  [[image:image-20220531152815-14.png]]
... ... @@ -328,10 +328,8 @@
328 328  [[image:image-20220531152840-15.png]]
329 329  
330 330  
305 +==== **2.2.3.5 Step 5 : Access the gateway from customized server** ====
331 331  
332 -==== **2.2.3.5  Step 5 : Access the gateway from customized server** ====
333 -
334 -
335 335  Check what gateways link to server.
336 336  
337 337  (% class="box infomessage" %)
... ... @@ -351,5 +351,3 @@
351 351  )))
352 352  
353 353  [[image:image-20220531153219-17.png]]
354 -
355 -

Applications

Navigation

Copyright ©2010-2022 Dragino Technology Co., LTD. All rights reserved
Dragino Wiki v2.0