Changes for page Remote Access Gateway

Last modified by Kilight Cao on 2022/07/25 10:47
<
From version < 18.5 >
edited by Xiaoling
on 2022/05/27 11:15
To version < 8.1 >
edited by Xiaoling
on 2022/05/27 10:59
>
Change comment: Uploaded new attachment "image-20220527105918-4.png", version {1}

Summary

Details

Page properties
Content
... ... @@ -3,7 +3,7 @@
3 3  {{toc/}}
4 4  
5 5  
6 -= **1. Use Remote.it service** =
6 += 1. Use Remote.it service =
7 7  
8 8  Remote.it for remote access is available in the latest Dragino firmware for gateway. For security concern, the remote.it only available base on end user demand.
9 9  
... ... @@ -15,7 +15,7 @@
15 15  For how to use remoteit, please see : [[Remoteit user instruction for Dragino Gateway>>url:https://www.dragino.com/downloads/index.php?dir=LoRa_Gateway/&file=Dragino-Remoteit_User_Manual.pdf]].
16 16  
17 17  
18 -= **2. RSSH Introduction** =
18 += 2. RSSH Introduction =
19 19  
20 20  Reverse SSH for remote access is available in the latest Dragino firmware for gateway. For security concern, the RSSH only available base on end user demand.
21 21  
... ... @@ -34,11 +34,10 @@
34 34  * LIG16
35 35  * MS14 series if installed with the same firmware.
36 36  
37 +== 2.1 For Firmware Version lower than lgw~-~-build-v5.4.1616478814-20210323-1355 ==
37 37  
38 -== **2.1 For Firmware Version lower than lgw~-~-build-v5.4.1616478814-20210323-1355** ==
39 +=== 2.1.1 End User Guide to use SSH access ===
39 39  
40 -=== **2.1.1 End User Guide to use SSH access** ===
41 -
42 42  Go to this the Reverse SSH page as below:
43 43  
44 44  [[image:image-20220527102348-1.png]]
... ... @@ -61,7 +61,7 @@
61 61  )))
62 62  
63 63  
64 -=== **2.1.2 How to Ser up a Reverse SSH access** ===
63 +=== 2.1.2 How to Ser up a Reverse SSH access ===
65 65  
66 66  Advance administrator can config a SSH server to provide support their end user themselves. Instruction is as below:
67 67  
... ... @@ -81,7 +81,7 @@
81 81  )))
82 82  
83 83  
84 -==== **2.1.2.1 Note for set up RSSH server** ====
83 +==== 2.1.2.1 Note for set up RSSH server ====
85 85  
86 86  If gateway reboot or the connection is incidentely close by end node. The port in SSH server will still be occupy for a long time. Administrator can use below commands to release the port.
87 87  
... ... @@ -96,7 +96,7 @@
96 96  )))
97 97  
98 98  
99 -== **2.2 For Firmware Version higher than lgw~-~-build-v5.4.1618196981-20210412-1111** ==
98 +== 2.2 For Firmware Version higher than lgw~-~-build-v5.4.1618196981-20210412-1111 ==
100 100  
101 101  Below gateway support reverse SSH access:
102 102  
... ... @@ -111,11 +111,11 @@
111 111  )))
112 112  
113 113  
114 -=== **2.2.1 End User Guide to use SSH access** ===
113 +=== 2.2.1 End User Guide to use SSH access ===
115 115  
116 -==== **2.2.1.1 Install the SSH service for server** ====
115 +==== 2.2.1.1 Install the SSH service for server ====
117 117  
118 -===== **2.2.1.1.1 Step 1:Download the SSH service code** =====
117 +===== 2.2.1.1.1 Step 1:Download the SSH service code =====
119 119  
120 120  1).git clone [[https:~~/~~/github.com/dragino/rssh-server.git>>url:https://github.com/dragino/rssh-server.git]] rssh-server
121 121  
... ... @@ -145,7 +145,7 @@
145 145  please install gcc.    ~-~->(% style="color:#4f81bd" %)**yum install gcc.**
146 146  )))
147 147  
148 -[[image:image-20220527105856-3.png]]
147 +[[image:https://wiki.dragino.com/images/d/d7/Lack_of_gcc.png||height="174" width="434"]]
149 149  
150 150  lack of gcc
151 151  
... ... @@ -155,11 +155,10 @@
155 155  please insatell (% style="color:#4f81bd" %)**sqlite3**.
156 156  )))
157 157  
158 -[[image:image-20220527105918-4.png]]
157 +[[image:https://wiki.dragino.com/images/thumb/9/93/Lack_of_sqlite3.png/500px-Lack_of_sqlite3.png||height="137" width="500"]]
159 159  
160 160  lack of sqlite3
161 161  
162 -
163 163  How to install Sqlit3
164 164  
165 165  (% class="box" %)
... ... @@ -184,9 +184,9 @@
184 184  )))
185 185  
186 186  
187 -===== **2.2.1.1.2 Step 2 :Install and run the RSS service** =====
185 +===== 2.2.1.1.2 Step 2 :Install and run the RSS service =====
188 188  
189 -1): intall database for /var/rsshdb.sqlite3 and Server development port for 3721(The default is 3721)
187 +1):intall database for /var/rsshdb.sqlite3 and Server development port for 3721(The default is 3721)
190 190  
191 191  user must enter the root account and run the following commands
192 192  
... ... @@ -197,7 +197,7 @@
197 197   $ ps -ef | grep rssh_serv check 3721 port
198 198  )))
199 199  
200 -[[image:image-20220527110436-6.png]]
198 +[[image:https://wiki.dragino.com/images/thumb/c/cb/Intall_database_and_server_development_port.png/500px-Intall_database_and_server_development_port.png||height="70" width="500"]]
201 201  
202 202  intall database and server development port
203 203  
... ... @@ -205,78 +205,78 @@
205 205  
206 206  (% class="box" %)
207 207  (((
208 -Check /var/rsshdb.sqlite3 ~-~->(% style="color:#4f81bd" %)** ls /var/rsshdb.sqlite3**(%%)
209 -Check ls /var/rsshdb.sqlite3 ~-~-> (% style="color:#4f81bd" %)**sudo chmod 777 rssh_serv**
206 +Check /var/rsshdb.sqlite3 ~-~->(% class="mark" %)** ls /var/rsshdb.sqlite3**(%%)
207 +Check ls /var/rsshdb.sqlite3 ~-~-> (% class="mark" %)**sudo chmod 777 rssh_serv**
210 210  )))
211 211  
212 212  (% class="box" %)
213 213  (((
214 214  if** fail to open dpvlry or to bind to it**
215 -please kill rssh_serv,and run (% style="color:#4f81bd" %)** ./rssh_serv -p  3721 2>&1 &** (%%) again
213 +please kill rssh_serv,and run (% class="mark" %)** ./rssh_serv -p  3721 2>&1 &** (%%) again
216 216  )))
217 217  
218 218  
219 -===== **2.2.1.1.3 Step 3 :Create a minimal SSH user (reverse SSH proxy for the gateway)** =====
217 +===== 2.2.1.1.3 Step 3 :Create a minimal SSH user (reverse SSH proxy for the gateway) =====
220 220  
221 -**1): (% style="color:#4f81bd" %)sudo useradd XXXXX(%%)** (custom user name)
219 +1):(% class="mark" %)**sudo useradd XXXXX**(%%) (custom user name)
222 222  
223 -**2):** (% style="color:#4f81bd" %)**sudo passwd xxxxxx**
221 +2):(% class="mark" %)**sudo passwd xxxxxx**
224 224  
225 -**3):** (% style="color:#4f81bd" %)**cp /bin/bash /bin/rbash**
223 +3):(% class="mark" %)**cp /bin/bash /bin/rbash**
226 226  
227 -**4):** (% style="color:#4f81bd" %)**sudo nano /etc/passwd**(%%) ~-~-> Change /bin/bash to /bin/rbash
225 +4):(% class="mark" %)**sudo nano /etc/passwd**(%%) ~-~-> Change /bin/bash to /bin/rbash
228 228  
229 -**5):** (% style="color:#4f81bd" %)**sudo nano /home/xxxxx/.bashrc**(%%) **empty it,and input export PATH=$HOME/bin**
227 +5):(% class="mark" %)**sudo nano /home/xxxxx/.bashrc**(%%) **empty it,and input export PATH=$HOME/bin**
230 230  
231 -**6):** (% style="color:#4f81bd" %)**sudo nano /home/xxxxx/.bash_profile**(%%) **empty it,and input export PATH=$HOME/bin**
229 +6):(% class="mark" %)**sudo nano /home/xxxxx/.bash_profile**(%%) **empty it,and input export PATH=$HOME/bin**
232 232  
233 233  **Now user "XXXXX" is the user with limited permissions of the current system**
234 234  
235 235  
236 -=== **2.2.2 How does user get the gateway to connect to a user's private server** ===
234 +=== 2.2.2 How does user get the gateway to connect to a user's private server ===
237 237  
238 -===== **2.2.2.1 Step1: Come bace the gateway web UI for get the gateway Public key** =====
236 +===== 2.2.2.1 Step1: Come bace the gateway web UI for get the gateway Public key =====
239 239  
240 -1) in the system ~-~-> (% style="color:#4f81bd" %)**Remote Mgmt/span>**
238 +1)in the system ~-~-> (% class="mark" %)**Remote Mgmt/span>**
241 241  
242 -[[image:image-20220527110531-7.png]]
240 +[[image:https://wiki.dragino.com/images/thumb/8/8f/Remote_Mgmt.png/500px-Remote_Mgmt.png||height="367" width="500"]]
243 243  
244 244  Remote Mgmt
245 245  
246 246  
247 -===== **2.2.2.2 Step2: Authorization server** =====
245 +===== 2.2.2.2 Step2: Authorization server =====
248 248  
249 249  copy the Gateway Publickey into user's private server "/home/XXXXX/.ssh/authorized_keys" file.
250 250  
251 -[[image:image-20220527110625-8.png]]
249 +[[image:https://wiki.dragino.com/images/thumb/4/49/Publickey.png/500px-Publickey.png||height="81" width="500"]]
252 252  
253 253  Publickey
254 254  
255 255  
256 -===== **2.2.2.3 Step3: connecte private server** =====
254 +===== 2.2.2.3 Step3: connecte private server =====
257 257  
258 258  in the gateway web UI
259 259  
260 -[[image:image-20220527110700-9.png]]
258 +[[image:https://wiki.dragino.com/images/thumb/0/04/Gateway_web_UI.png/500px-Gateway_web_UI.png||height="389" width="500"]]
261 261  
262 262  gateway web UI
263 263  
264 264  (% class="box" %)
265 265  (((
266 -(% style="color:#4f81bd" %)**Connection Type **(%%) : If user's least privileged user with private server uses a password, select (% style="color:#4f81bd" %)**Public Key**(%%)
264 +(% class="mark" %)**Connection Type **(%%) : If user's least privileged user with private server uses a password, select (% class="mark" %)**Public Key**(%%)
267 267  **Note:if user's least privileged user no uses a password,choose from both is fine**
268 -(% style="color:#4f81bd" %)**Login ID**(%%)             : Input user name "eg : "XXXXX"
269 -(% style="color:#4f81bd" %)**Host Address**(%%)         : Input user's private server address
270 -(% style="color:#4f81bd" %)**Connect at Startupt**(%%): Choose to enable connect once device is powered.
266 +(% class="mark" %)**Login ID**(%%)             : Input user name "eg : "XXXXX"
267 +(% class="mark" %)**Host Address**(%%)         : Input user's private server address
268 +(% class="mark" %)**Connect at Startupt**(%%): Choose to enable connect once device is powered.
271 271  Click Save and then Connect
272 272  )))
273 273  
274 274  
275 -===== **2.2.2.4 Step 4 :Cheak is fine** =====
273 +===== 2.2.2.4 Step 4 :Cheak is fine =====
276 276  
277 277  Rssh Host connection Ok
278 278  
279 -[[image:image-20220527111009-10.png]]
277 +[[image:https://wiki.dragino.com/images/thumb/6/6f/Rssh_Host_connection_Ok.png/500px-Rssh_Host_connection_Ok.png||height="225" width="500"]]
280 280  
281 281  Rssh Host connection Ok
282 282  
... ... @@ -283,12 +283,12 @@
283 283  
284 284  user can use common ps | grep ssh to check it in the gateway.
285 285  
286 -[[image:image-20220527111041-11.png]]
284 +[[image:https://wiki.dragino.com/images/thumb/a/ad/Check_the_gateway.png/500px-Check_the_gateway.png]]
287 287  
288 288  Check the gateway
289 289  
290 290  
291 -===== **2.2.2.5 Step5:Create an authorization key file** =====
289 +===== 2.2.2.5 Step5:Create an authorization key file =====
292 292  
293 293  1):sudo mkdir /home/xxxxx/.ssh; sudo touch /home/xxxxx/.ssh/authorizedkey
294 294  
... ... @@ -299,26 +299,22 @@
299 299   check: sudo ls /home/xxxxx/.ssh/authorizedkey
300 300  )))
301 301  
300 +=== 2.2.3 How to Ser up a Reverse SSH access ===
302 302  
303 -=== **2.2.3 How to Ser up a Reverse SSH access** ===
302 +==== 2.2.3.1 Step1: Log into the server system ====
304 304  
305 -==== **2.2.3.1 Step1: Log into the server system** ====
304 +[[image:https://wiki.dragino.com/images/thumb/2/26/Loging_server.png/500px-Loging_server.png||height="69" width="500"]]
306 306  
307 -[[image:image-20220527111145-12.png]]
308 -
309 309  Loging server
310 310  
311 311  
312 -==== **2.2.3.2 Step2:access the gateway** ====
309 +==== 2.2.3.2 Step2:access the gateway ====
313 313  
314 -(% class="box" %)
315 -(((
316 316  $ cd rssh-server/
317 -)))
318 318  
319 319  Check the gateway linking to the server $ ./connect-gw.sh -l
320 320  
321 -[[image:image-20220527111219-13.png]]
315 +[[image:https://wiki.dragino.com/images/thumb/e/ee/Check_gateway_link_server.png/500px-Check_gateway_link_server.png||height="157" width="500"]]
322 322  
323 323  Check the gateway linking to the server
324 324  
... ... @@ -325,6 +325,6 @@
325 325  
326 326  access the gateway $ ./connect-gw.sh <GWID>
327 327  
328 -[[image:image-20220527111300-14.png]]
322 +[[image:https://wiki.dragino.com/images/thumb/b/b7/Reverse_ssh_access_the_gateway1.png/500px-Reverse_ssh_access_the_gateway1.png||height="230" width="500"]]
329 329  
330 330  reverse ssh access the gateway
image-20220527110011-5.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoling
Size
... ... @@ -1,1 +1,0 @@
1 -11.2 KB
Content
image-20220527110436-6.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoling
Size
... ... @@ -1,1 +1,0 @@
1 -10.5 KB
Content
image-20220527110531-7.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoling
Size
... ... @@ -1,1 +1,0 @@
1 -79.9 KB
Content
image-20220527110625-8.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoling
Size
... ... @@ -1,1 +1,0 @@
1 -30.7 KB
Content
image-20220527110700-9.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoling
Size
... ... @@ -1,1 +1,0 @@
1 -66.6 KB
Content
image-20220527111009-10.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoling
Size
... ... @@ -1,1 +1,0 @@
1 -22.5 KB
Content
image-20220527111041-11.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoling
Size
... ... @@ -1,1 +1,0 @@
1 -13.4 KB
Content
image-20220527111145-12.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoling
Size
... ... @@ -1,1 +1,0 @@
1 -6.3 KB
Content
image-20220527111219-13.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoling
Size
... ... @@ -1,1 +1,0 @@
1 -9.1 KB
Content
image-20220527111300-14.png
Author
... ... @@ -1,1 +1,0 @@
1 -XWiki.Xiaoling
Size
... ... @@ -1,1 +1,0 @@
1 -28.6 KB
Content

Applications

Navigation

Copyright ©2010-2022 Dragino Technology Co., LTD. All rights reserved
Dragino Wiki v2.0