Wiki source code of Monitor & Remote Access Gateway

Version 31.2 by Xiaoling on 2022/07/14 11:19

version	line-number	content
30.2	1	Table of Contents:
25.6	2
1.1	3	{{toc/}}
	4
25.6	5
	6
25.7	7
30.2	8	= 1. Monitor Gateway =
1.1	9
30.2	10	== 1.1 Introduction ==
1.1	11
30.2	12
1.1	13	This introduction shows how to use a script to monitor the gateway. The video link for this instruction is: [[https:~~/~~/youtu.be/8PieIwfSF_g>>url:https://youtu.be/8PieIwfSF_g]]
	14
29.2	15	[[image:image-20220531155018-18.png]]
1.1	16
8.3	17
1.1	18
30.2	19	== 1.2 Steps ==
	20
	21
1.1	22	* Create account in ThingsSpeak and creat channel.
	23	* Download script from dragino site and move it to properly directory
	24
	25	(% class="box infomessage" %)
	26	(((
	27	root@dragino-1baf44:~~# wget [[http:~~/~~/www.dragino.com/downloads/downloads/LoRa_Gateway/LPS8/Firmware/customized_script/monitor_gateway.sh>>url:http://www.dragino.com/downloads/downloads/LoRa_Gateway/LPS8/Firmware/customized_script/monitor_gateway.sh]]
	28	Downloading '[[http:~~/~~/www.dragino.com/downloads/downloads/LoRa_Gateway/LPS8/Firmware/customized_script/monitor_gateway.sh'>>url:http://www.dragino.com/downloads/downloads/LoRa_Gateway/LPS8/Firmware/customized_script/monitor_gateway.sh']]
	29	Connecting to 162.241.22.11:80
	30	Writing to 'monitor_gateway.sh'
	31	monitor_gateway.sh 100% \|~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*\| 1860 0:00:00 ETA
	32	Download completed (1860 bytes)
	33	root@dragino-1baf44:~~# chmod +x monitor_gateway.sh;mv monitor_gateway.sh /usr/bin/
	34	root@dragino-1baf44:~~#
	35	root@dragino-1baf44:~~#
	36	)))
	37
	38	* change the script monitor_gateway.sh with properly users setting:
	39
	40	(% class="box infomessage" %)
	41	(((
	42	USER='xxxxx' # user name in your thinkspeak ~-~-> Profile
	43	PASS='xxxxx' #MQTT_API_KEY in your thinkspeak ~-~-> Profile
	44	CHAN_ID='xxxx' #Channel ID of the channel for this gateway
	45	CHAN_KEY='xxxxx' #Channel Write API of the channel for this gateway
	46	)))
	47
	48	* run /usr/bin/monitor_gateway.sh to test if upload is good.
	49
	50	* Add monitor_gateway.sh to cron work /etc/crontabs/root to make this script runs perdiocally, below is an example to update every 20 minutes
	51
	52	(% class="box infomessage" %)
	53	(((
7.1	54	# For details see man 4 crontabs
1.1	55	# Example of job definition:
	56	# .~-~-~-~-~-~-~-~-~-~-~-~-~-~-~-~- minute (0 - 59)
	57	# \| .~-~-~-~-~-~-~-~-~-~-~-~-- hour (0 - 23)
	58	# \| \| .~-~-~-~-~-~-~-~-~-~- day of month (1 - 31)
	59	# \| \| \| .~-~-~-~-~-~-- month (1 - 12) OR jan,feb,mar,apr ...
	60	# \| \| \| \| .~-~-~-~- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
	61	# \| \| \| \| \|
	62	# * * * * * user-name command to be executed
	63	#/10 * * * checklog
	64	~* 23 * * * /etc/init.d/auto_update start
2.1	65	/20 * * * /usr/bin/monitor_gateway.sh
1.1	66	)))
	67
	68	* Reboot device.
	69
31.2	70
	71
	72
30.2	73	== 1.3 Monitor Public IP ==
8.2	74
30.2	75
1.1	76	The monitor_gateway.sh has been updated to upload the public ip of the device as well.
	77
	78	User can find the public ip in field7, the chart is not able to show the complete public ip, user can check that in the export.
	79
10.2	80	[[image:image-20220531145559-2.png]]
1.1	81
	82	Find Public IP
	83
	84
	85
30.2	86	= 2. Remote Access =
1.1	87
30.2	88	== 2.1 Remote Access via Remote.it. ==
1.1	89
30.2	90
1.1	91	Remote.it for remote access is available in the latest Dragino firmware for gateway. For security concern, the remote.it only available base on end user demand.
	92
	93
30.2	94	(% style="color:red" %)Important Notice:
	95
1.1	96	* Remote.it access will give full control of your device to remote support.
	97	* The Remote.it allow Dragino Support to remote access to the device, If user want to access himself, it need to sign up for an remote.it account.
	98
30.2	99	For how to use remoteit, please see : [[Remoteit user instruction for Dragino Gateway>>url:https://www.dragino.com/downloads/index.php?dir=LoRa_Gateway/&file=Dragino-Remoteit_User_Manual.pdf]].
1.1	100
	101
30.2	102	== 2.2 RSSH Introduction ==
1.1	103
2.1	104	Reverse SSH for remote access is available in the latest Dragino firmware for gateway. For security concern, the RSSH only available base on end user demand.
1.1	105
2.1	106	Important Notice:
1.1	107
2.2	108	(% class="box warningmessage" %)
2.1	109	(((
	110	RSSH access will give full control of your device to remote support. Please remove sensitivity info before perform this
	111	This RSSH allow Dragino Support to remote access to the device, If user want to access himself, he need to set up the RSSH server himself.
	112	)))
	113
	114	Below gateway support reverse SSH access:
	115
4.1	116	* Firmware Version > lgw~-~-build-v5.4.1618196981-20210412-1111 [[Firmware Download>>url:http://www.dragino.com/downloads/index.php?dir=LoRa_Gateway/LPS8/Firmware/Release/]]
2.1	117	* LG01N, OLG01N (Note: LG01-P LG01-S doesn't support)
	118	* LG02, OLG02
	119	* LG308, DLOS8
	120	* LPS8
	121	* LIG16
	122	* MS14 series if installed with the same firmware.
	123
30.4	124	=== 2.2.1 End User Guide to use SSH access ===
9.5	125
30.4	126
4.1	127	Go to this the Reverse SSH page as below:
1.1	128
11.2	129	[[image:image-20220531150151-3.png]]
1.1	130
4.1	131	Get the RSSH configure page
1.1	132
11.3	133
	134
12.2	135	[[image:image-20220531150338-4.png]]
1.1	136
4.1	137	Connection OK.
	138
12.2	139
30.4	140	* (% style="color:#037691" %)Login ID(%%): Input sshuser
	141	* (% style="color:#037691" %)Host Address(%%): Input support.dragino.com
	142	* (% style="color:#037691" %)Host Port (%%): Please email to support @ dragino.com to get a valid host port.
12.3	143	* (% style="color:#037691" %)Connect at Startup(%%) : Choose to enable connect once the device is powered.
30.4	144	* (% style="color:#037691" %)Network Keys(%%): Click the Generate keys to generate the keys and download / mail it to Dragino support so Dragino can prepare the remote access to
4.1	145
	146	After doing above, please download and mail the public keys to Dragino support and wait for our mail for the valid host port. Input the valid host port got from our support and click connect so we can remote access to your gateway.
	147
5.1	148
	149
30.5	150	=== 2.2.2 Set Up RSSH Server ===
	151
5.2	152	Advance administrator can config a SSH server to provide support their end user themselves., Steps as below
5.1	153
	154
9.7	155
30.5	156	==== 2.2.2.1 Step 1 : Download the SSH service code ====
5.1	157
30.5	158
	159	1). git clone [[https:~~/~~/github.com/dragino/rssh-server.git>>url:https://github.com/dragino/rssh-server.git]] rssh-server
	160
13.2	161	[[image:image-20220531150750-5.png]]
5.1	162
	163
30.5	164	2). cd rssh-server; sudo make ~-~--> to Generate the execute file：rssh_serv
	165
14.2	166	[[image:image-20220531150811-6.png]]
5.1	167
	168
	169	Debug :
	170
14.3	171	(((
	172	(% class="box" %)
	173	(((
	174	if you git fail. ~-~-> (% style="color:#037691" %)sudo: git: command not found(%%).
	175	please install git. ~-~-> (% style="color:#037691" %)yum install git -y or apt-get install git -y(%%).
	176	if you make error 127,it (% style="color:#037691" %)lack of gcc(%%).
	177	please install gcc. ~-~-> (% style="color:#037691" %)yum install gcc(%%).
	178	)))
	179	)))
5.1	180
15.2	181	[[image:image-20220531151516-7.png]]
5.1	182
	183
15.2	184	(((
	185	(% class="box" %)
	186	(((
	187	if you make a fatal error : sqlite3.h,it (% style="color:#037691" %)lack of sqlite3(%%).
	188	please insatell sqlite3.
	189	)))
	190	)))
5.1	191
16.2	192	[[image:image-20220531151628-8.png]]
5.1	193
	194
30.5	195	(% style="color:blue" %)How to install Sqlit3
5.1	196
5.2	197	(% class="box infomessage" %)
	198	(((
30.5	199	~ Step1: Download the SQLit3 installation package
	200	sudo wget [[https:~~/~~/www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz>>url:https://www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz]]
16.4	201
30.5	202
	203	Step2: tar the SQLit3 installation package
5.1	204	sudo tar -zxvf sqlite-autoconf-3350300.tar.gz
30.5	205
	206	Step3: Generate the makefile
5.1	207	cd sqlite-autoconf-3350300/;./configure
30.5	208
	209	Step4: Compile makefile
5.1	210	sudo make
30.5	211
	212	Step5: Install makefile
5.1	213	sudo make install
30.5	214
	215	Check:
5.2	216	cd /usr/local/bin;ls -al ~-~-> Check to see if there is a file for sqlite3
	217	cd sqlite-autoconf-3350300/;./sqlite3 test.db ~-~-> Test whether the sqlite3 was installed successfully
30.5	218
	219	debug:
5.1	220	If you get the imformation that is SQLite header and source version mismatch, when you execute./sqlite3 test.db.
	221	Please execute the command /sbin/ldconfig.
	222	After that execute the command ./sqlite3 test.db again.
5.2	223	)))
	224
	225
	226
30.5	227	==== 2.2.2.2 Step 2 : Install and run the RSS service ====
5.2	228
30.5	229
	230	1). install database for /var/rsshdb.sqlite3 and Server development port for 3721(The default is 3721)
	231
5.2	232	user must enter the root account and run the following commands
	233
	234	(% class="box infomessage" %)
	235	(((
16.3	236	$ ./create_sqlite3_db.sh
5.2	237	$ ./rssh_serv -p 3721 2>&1 &
	238	$ ps -ef \| grep rssh_serv check 3721 port
	239	)))
	240
18.2	241	[[image:image-20220531151958-10.png]]
5.2	242
	243
	244	Debug:
	245
	246	{{{ Check /var/rsshdb.sqlite3 --> ls /var/rsshdb.sqlite3
	247	Check ls /var/rsshdb.sqlite3 --> sudo chmod 777 rssh_serv
5.1	248	}}}
	249
5.2	250	{{{ if fail to open dpvlry or to bind to it
	251	please kill rssh_serv,and run ./rssh_serv -p 3721 2>&1 & again
	252	}}}
5.1	253
5.2	254
	255
30.5	256	==== 2.2.2.3 Step 3 : Create a minimal SSH user (reverse SSH proxy for the gateway) ====
5.2	257
30.5	258
5.2	259	(% class="box infomessage" %)
	260	(((
30.5	261	1): sudo useradd XXXXX (custom user name)
	262	2): sudo passwd xxxxxx
	263	3): cp /bin/bash /bin/rbash
	264	4): sudo nano /etc/passwd ~-~-> Change /bin/bash to /bin/rbash
	265	5): sudo nano /home/xxxxx/.bashrc empty it,and input export PATH=$HOME/bin
	266	6): sudo nano /home/xxxxx/.bash_profile empty it,and input export PATH=$HOME/bin
5.2	267	)))
	268
30.5	269	(% style="color:red" %)Now user "XXXXX" is the user with limited permissions of the current system
5.2	270
7.1	271
18.3	272
30.5	273	==== 2.2.2.4 Step 4 : Create an authorization key file ====
7.1	274
	275
30.5	276	1): sudo mkdir /home/xxxxx/.ssh; sudo touch /home/xxxxx/.ssh/authorizedkey
	277
7.1	278	Debug:
	279
	280	{{{ check: sudo ls /home/xxxxx/.ssh/authorizedkey}}}
	281
	282
	283
30.5	284	=== 2.2.3 How does user get the gateway to connect to a user's private server ===
5.2	285
	286
30.5	287	==== 2.2.3.1 Step 1 : Come back the gateway web UI to get the gateway Public key ====
9.9	288
5.2	289
30.5	290	1) in the system ~-~-> (% style="color:#037691" %)Remote Mgmt/span
	291
19.2	292	[[image:image-20220531152419-11.png]]
5.2	293
	294
	295
30.5	296	==== 2.2.3.2 Step 2 : Authorization server ====
	297
	298
7.1	299	Input the Gateway Publickey into user's private server "/home/XXXXX/.ssh/authorized_keys" file.
5.2	300
20.2	301	[[image:image-20220531152549-12.png]]
5.2	302
	303
	304
30.5	305	==== 2.2.3.3 Step 3 : Connect private server ====
	306
	307
7.1	308	This is same as connect Dragino Support Server but just change the server address to customize server address.
5.2	309
21.2	310	[[image:image-20220531152633-13.png]]
5.2	311
	312
	313
30.5	314	==== 2.2.3.4 Step 4 : Check Connection ====
5.2	315
30.5	316
5.2	317	Rssh Host connection Ok
	318
22.2	319	[[image:image-20220531152815-14.png]]
5.2	320
	321
7.1	322	User can use common ps \| grep ssh to check it in the gateway.
5.2	323
23.2	324	[[image:image-20220531152840-15.png]]
5.2	325
	326
	327
30.5	328	==== 2.2.3.5 Step 5 : Access the gateway from customized server ====
	329
	330
7.1	331	Check what gateways link to server.
5.2	332
24.2	333	(% class="box infomessage" %)
	334	(((
7.1	335	$ ./connect-gw.sh -l
24.2	336	)))
5.2	337
24.2	338	[[image:image-20220531153016-16.png]]
5.2	339
	340
	341
7.1	342	Access the gateway
5.2	343
25.2	344	(% class="box infomessage" %)
	345	(((
7.1	346	$ ./connect-gw.sh <GWID>
25.2	347	)))
5.2	348
25.2	349	[[image:image-20220531153219-17.png]]
30.5	350
	351

Wiki source code of Monitor & Remote Access Gateway

Applications

Navigation