Changes for page Remote Access Gateway

Last modified by Kilight Cao on 2022/07/25 10:47

From version < 19.17 >

edited by Xiaoling
on 2022/07/14 14:16

To version < 23.1 >

edited by Kilight Cao
on 2022/07/25 10:40

Change comment: There is no comment for this version

Raw
Rendered

Summary

Page properties (2 modified, 0 added, 0 removed)

Details

Page properties

Author

@@ -1,1 +1,1 @@
--XWiki.Xiaoling
++XWiki.Kilight

Content

@@ -7,13 +7,12 @@
  = **1.  Use Remote.it service** =
--Remote.it for remote access is available in the latest Dragino firmware for gateway. For security concern, the remote.it only available base on end user demand.
++Remote.it for remote access is available in the latest Dragino firmware for gateway. For security concerns, the remote.it only available base on end-user demand.
  (% style="color:red" %)**Important Notice:**
--(% style="color:red" %)* **Remote.it access will give full control of your device to remote support.**
--~* **The Remote.it allow Dragino Support to remote access to the device, If user want to access himself, it need to sign up for an remote.it account.**
--
++* (% style="color:red" %)Remote.it access will give full control of your device to remote support.
++* (% style="color:red" %)The Remote.it allow Dragino Support to remote access to the device, If user want to access himself, it need to sign up for an remote.it account.
  For how to use remoteit, please see : [[Remoteit user instruction for Dragino Gateway>>url:https://www.dragino.com/downloads/index.php?dir=LoRa_Gateway/&file=Dragino-Remoteit_User_Manual.pdf]].
@@ -24,8 +24,8 @@
  (% style="color:red" %)**Important Notice:**
--(% style="color:red" %)* **RSSH access will give full control of your device to remote support. Please remove sensitivity info before perform this**
--~* **This RSSH allow Dragino Support to remote access to the device, If user want to access himself, he need to set up the RSSH server himself.**
++* (% style="color:red" %)**RSSH access will give full control of your device to remote support. Please remove sensitivity info before perform this**
++* (% style="color:red" %)**This RSSH allow Dragino Support to remote access to the device, If user want to access himself, he need to set up the RSSH server himself.**
  Below gateway support reverse SSH access:
@@ -37,7 +37,6 @@
  * LIG16
  * MS14 series if installed with the same firmware.
--
  == **2.1  For Firmware Version lower than lgw~-~-build-v5.4.1616478814-20210323-1355** ==
@@ -55,6 +55,7 @@
  Connection OK.
++
  * (% style="color:#4f81bd" %)**Login ID**(%%):                    Input (% style="color:#4f81bd" %)**sshuser**
  * (% style="color:#4f81bd" %)**Host Address**(%%):           Input** (% style="color:#4f81bd" %)support.dragino.com(%%)**
  * (% style="color:#4f81bd" %)**Host Port**(%%):                  Please email to support @ dragino.com to get a valid host port.
@@ -80,7 +80,7 @@
  (% class="box" %)
  (((
--$ ssh   -p <End User Host Port>   root@<Host Address>
++**$ ssh   -p <End User Host Port>   root@<Host Address>**
  )))
  (((
@@ -89,36 +89,40 @@
--==== **2.1.2.1  Note for set up RSSH server** ====
++==== (% style="color:blue" %)**Note for set up RSSH server**(%%) ====
++
  If gateway reboot or the connection is incidentely close by end node. The port in SSH server will still be occupy for a long time. Administrator can use below commands to release the port.
  (% class="box" %)
  (((
--[root@iZt4n22vqvm7ajogrfiif6Z ~~]# lsof -i :9102 ~-~-> check the port 9102 process status (change 9102 to the actually port for your gateway.
++**[root@iZt4n22vqvm7ajogrfiif6Z ~~]# lsof -i :9102 ~-~-> check the port 9102 process status (change 9102 to the actually port for your gateway.
  COMMAND   PID    USER   FD   TYPE   DEVICE SIZE/OFF NODE NAME
  sshd    21430 sshuser   15u  IPv4 47567059      0t0  TCP localhost:bacula-fd (LISTEN)
  [root@iZt4n22vqvm7ajogrfiif6Z ~~]# kill 21430   ~-~-> Kill PID of this process.
  [root@iZt4n22vqvm7ajogrfiif6Z ~~]# lsof -i :9102
--[root@iZt4n22vqvm7ajogrfiif6Z ~~]#
++[root@iZt4n22vqvm7ajogrfiif6Z ~~]#**
  )))
++
  == **2.2  For Firmware Version higher than lgw~-~-build-v5.4.1618196981-20210412-1111** ==
++
  Below gateway support reverse SSH access:
  (% class="box" %)
  (((
--Firmware Version >lgw~-~-build-v5.4.1618196981-20210412-1111 Firmware Download
++**Firmware Version >lgw~-~-build-v5.4.1618196981-20210412-1111 Firmware Download
  LG01N, OLG01N (Note: LG01-P LG01-S doesn't support)
  LG02, OLG02
  LG308, DLOS8
  LPS8
--LIG16
++LIG16**
  )))
++
  === **2.2.1  End User Guide to use SSH access** ===
@@ -146,14 +146,14 @@
  (% class="box" %)
  (((
--if you git fail.       ~-~->    (% style="color:#4f81bd" %)**sudo: git: command not found.**(%%)
--please install git.  ~-~->    (% style="color:#4f81bd" %)**yum install git -y  or  apt-get install git -y.**
++**if you git fail.        ~-~->**    (% style="color:#4f81bd" %)**sudo: git: command not found.**(%%)
++**please install git.  ~-~->**    (% style="color:#4f81bd" %)**yum install git -y  or  apt-get install git -y.**
  )))
  (% class="box" %)
  (((
--if you make error 127,it** (% style="color:#4f81bd" %)lack of gcc.(%%)**
--please install gcc.    ~-~->(% style="color:#4f81bd" %)**yum install gcc.**
++**if you make error 127,it (% style="color:#4f81bd" %)lack of gcc.(%%)**
++**please install gcc.    ~-~-> (% style="color:#4f81bd" %)yum install gcc.(%%)**
  )))
  [[image:image-20220527105856-3.png]]
@@ -160,10 +160,11 @@
  lack of gcc
++
  (% class="box" %)
  (((
--if you make a fatal error : sqlite3.h,it (% style="color:#4f81bd" %)**lack of sqlite3.**(%%)
--please insatell (% style="color:#4f81bd" %)**sqlite3**.
++**if you make a fatal error : sqlite3.h,it** (% style="color:#4f81bd" %)**lack of sqlite3.**(%%)
++**please insatell (% style="color:#4f81bd" %)sqlite3(%%)**(% style="color:#4f81bd" %).
  )))
  [[image:image-20220527105918-4.png]]
@@ -175,26 +175,26 @@
  (% class="box" %)
  (((
--**Step1:** Download the SQLit3 installation package
++(% style="color:#037691" %)**Step1:**(%%) Download the SQLit3 installation package
             sudo wget [[https:~~/~~/www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz>>url:https://www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz]]
--**Step2:** tar the SQLit3 installation package
++(% style="color:#037691" %)**Step2:**(%%) tar the SQLit3 installation package
             sudo tar -zxvf sqlite-autoconf-3350300.tar.gz
--**Step3:** Generate the makefile
++(% style="color:#037691" %)**Step3:**(%%) Generate the makefile
             cd sqlite-autoconf-3350300/;./configure
--**Step4:** Compile makefile
++(% style="color:#037691" %)**Step4:**(%%) Compile makefile
             sudo make
--**Step5: **Install makefile
++(% style="color:#037691" %)**Step5: **(%%)Install makefile
             sudo make install
--**Check:**
--           cd /usr/local/bin;ls -al                             ~-~->    Check to see if there is a file for sqlite3
--           cd sqlite-autoconf-3350300/;./sqlite3 test.db        ~-~->    Test whether the sqlite3 was installed successfully
++(% style="color:#037691" %)**Check:**(%%)
++           cd /usr/local/bin;ls -al                                             ~-~->    Check to see if there is a file for sqlite3
++           cd sqlite-autoconf-3350300/;./sqlite3 test.db        ~-~->     Test whether the sqlite3 was installed successfully
--**debug:**
++(% style="color:#037691" %)**debug:**(%%)
            If you get the imformation that is SQLite header and source version mismatch, when you execute./sqlite3 test.db.
            Please execute the command /sbin/ldconfig.
            After that execute the command ./sqlite3 test.db again.
@@ -211,9 +211,9 @@
  (% class="box" %)
  (((
--  $ ./create_sqlite3_db.sh
++**~  $ ./create_sqlite3_db.sh
    $ ./rssh_serv -p  3721 2>&1 &
--  $ ps -ef | grep rssh_serv check 3721 port
++  $ ps -ef | grep rssh_serv check 3721 port**
  )))
  [[image:image-20220527110436-6.png]]
@@ -225,14 +225,14 @@
  (% class="box" %)
  (((
--Check /var/rsshdb.sqlite3 ~-~->(% style="color:#4f81bd" %)** ls /var/rsshdb.sqlite3**(%%)
--Check ls /var/rsshdb.sqlite3 ~-~-> (% style="color:#4f81bd" %)**sudo chmod 777 rssh_serv**
++**Check /var/rsshdb.sqlite3     ~-~->(% style="color:#4f81bd" %)   ls /var/rsshdb.sqlite3(%%)**
++**Check ls /var/rsshdb.sqlite3 ~-~->**   (% style="color:#4f81bd" %)**sudo chmod 777 rssh_serv**
  )))
  (% class="box" %)
  (((
--if** fail to open dpvlry or to bind to it**
--please kill rssh_serv,and run (% style="color:#4f81bd" %)** ./rssh_serv -p  3721 2>&1 &** (%%) again
++**if fail to open dpvlry or to bind to it**
++**please kill rssh_serv,and run (% style="color:#4f81bd" %) ./rssh_serv -p  3721 2>&1 &(%%)**(% style="color:#4f81bd" %) (%%)** again**
  )))
@@ -240,13 +240,13 @@
  ===== (% style="color:blue" %)**Step 3 : Create a minimal SSH user (reverse SSH proxy for the gateway)**(%%) =====
--**1): (% style="color:#4f81bd" %)sudo useradd XXXXX(%%)** (custom user name)
++**1): (% style="color:#4f81bd" %)sudo useradd XXXXX(%%)** **(custom user name)**
  **2):** (% style="color:#4f81bd" %)**sudo passwd xxxxxx**
  **3):** (% style="color:#4f81bd" %)**cp /bin/bash /bin/rbash**
--**4):** (% style="color:#4f81bd" %)**sudo nano /etc/passwd**(%%) ~-~-> Change /bin/bash to /bin/rbash
++**4):** (% style="color:#4f81bd" %)**sudo nano /etc/passwd**(%%)  ** ~-~-> Change /bin/bash to /bin/rbash**
  **5):** (% style="color:#4f81bd" %)**sudo nano /home/xxxxx/.bashrc**(%%) **empty it,and input export PATH=$HOME/bin**
@@ -263,7 +263,7 @@
  ===== (% style="color:blue" %)**Step 1 : Come bace the gateway web UI for get the gateway Public key**(%%) =====
--**1) **in the system ~-~-> (% style="color:#4f81bd" %)**Remote Mgmt**
++**1) in the system ~-~->** (% style="color:#4f81bd" %)**Remote Mgmt**
  [[image:image-20220527110531-7.png]]
@@ -294,12 +294,12 @@
  (% class="box" %)
  (((
--(% style="color:#4f81bd" %)**Connection Type **(%%) :       If user's least privileged user with private server uses a password, select (% style="color:#4f81bd" %)**Public Key**(%%)
++(% style="color:#4f81bd" %)**Connection Type **(%%) :       **If user's least privileged user with private server uses a password, select** (% style="color:#4f81bd" %)**Public Key**(%%)
  (% style="color:red" %)**Note: if user's least privileged user no uses a password,choose from both is fine**(%%)
--(% style="color:#4f81bd" %)**Login ID**(%%) :                      Input user name "eg : "XXXXX"
--(% style="color:#4f81bd" %)**Host Address**(%%)  :            Input user's private server address
--(% style="color:#4f81bd" %)**Connect at Startupt**(%%):   Choose to enable connect once device is powered.
--Click Save and then Connect
++(% style="color:#4f81bd" %)**Login ID**(%%) :                     ** Input user name "eg : "XXXXX"**
++(% style="color:#4f81bd" %)**Host Address**(%%)  :         **   Input user's private server address**
++(% style="color:#4f81bd" %)**Connect at Startupt **(%%):  ** Choose to enable connect once device is powered.**
++**Click Save and then Connect**
  )))
@@ -325,8 +325,9 @@
  ===== (% style="color:blue" %)**Step 5 : Create an authorization key file**(%%) =====
--**1):**  sudo mkdir /home/xxxxx/.ssh; sudo touch /home/xxxxx/.ssh/authorizedkey
++**1):**  **sudo mkdir /home/xxxxx/.ssh; sudo touch /home/xxxxx/.ssh/authorizedkey**
++
  **Debug:**
  (% class="box" %)
@@ -335,6 +335,7 @@
  )))
++
  === **2.2.3  How to Ser up a Reverse SSH access** ===

Changes for page Remote Access Gateway

Summary

Details

Applications

Navigation