Changes for page Remote Access Gateway

Last modified by Kilight Cao on 2022/07/25 10:47

From version < 22.1 >

edited by Kilight Cao
on 2022/07/25 10:38

To version < 19.17 >

edited by Xiaoling
on 2022/07/14 14:16

Change comment: There is no comment for this version

Raw
Rendered

Summary

Page properties (2 modified, 0 added, 0 removed)

Details

Page properties

Author

@@ -1,1 +1,1 @@
--XWiki.Kilight
++XWiki.Xiaoling

Content

@@ -7,14 +7,14 @@
  = **1.  Use Remote.it service** =
--Remote.it for remote access is available in the latest Dragino firmware for gateway. For security concerns, the remote.it only available base on end-user demand.
++Remote.it for remote access is available in the latest Dragino firmware for gateway. For security concern, the remote.it only available base on end user demand.
  (% style="color:red" %)**Important Notice:**
--* Remote.it access will give full control of your device to remote support.
--* The Remote.it allow Dragino Support to remote access to the device, If user want to access himself, it need to sign up for an remote.it account.
--* For how to use remoteit, please see : [[Remoteit user instruction for Dragino Gateway>>url:https://www.dragino.com/downloads/index.php?dir=LoRa_Gateway/&file=Dragino-Remoteit_User_Manual.pdf]].
++(% style="color:red" %)* **Remote.it access will give full control of your device to remote support.**
++~* **The Remote.it allow Dragino Support to remote access to the device, If user want to access himself, it need to sign up for an remote.it account.**
++For how to use remoteit, please see : [[Remoteit user instruction for Dragino Gateway>>url:https://www.dragino.com/downloads/index.php?dir=LoRa_Gateway/&file=Dragino-Remoteit_User_Manual.pdf]].
  = **2.  RSSH Introduction** =
@@ -24,8 +24,8 @@
  (% style="color:red" %)**Important Notice:**
--* (% style="color:red" %)**RSSH access will give full control of your device to remote support. Please remove sensitivity info before perform this**
--* (% style="color:red" %)**This RSSH allow Dragino Support to remote access to the device, If user want to access himself, he need to set up the RSSH server himself.**
++(% style="color:red" %)* **RSSH access will give full control of your device to remote support. Please remove sensitivity info before perform this**
++~* **This RSSH allow Dragino Support to remote access to the device, If user want to access himself, he need to set up the RSSH server himself.**
  Below gateway support reverse SSH access:
@@ -37,6 +37,7 @@
  * LIG16
  * MS14 series if installed with the same firmware.
++
  == **2.1  For Firmware Version lower than lgw~-~-build-v5.4.1616478814-20210323-1355** ==
@@ -54,7 +54,6 @@
  Connection OK.
--
  * (% style="color:#4f81bd" %)**Login ID**(%%):                    Input (% style="color:#4f81bd" %)**sshuser**
  * (% style="color:#4f81bd" %)**Host Address**(%%):           Input** (% style="color:#4f81bd" %)support.dragino.com(%%)**
  * (% style="color:#4f81bd" %)**Host Port**(%%):                  Please email to support @ dragino.com to get a valid host port.
@@ -80,7 +80,7 @@
  (% class="box" %)
  (((
--**$ ssh   -p <End User Host Port>   root@<Host Address>**
++$ ssh   -p <End User Host Port>   root@<Host Address>
  )))
  (((
@@ -89,40 +89,36 @@
--==== (% style="color:blue" %)**Note for set up RSSH server**(%%) ====
++==== **2.1.2.1  Note for set up RSSH server** ====
--
  If gateway reboot or the connection is incidentely close by end node. The port in SSH server will still be occupy for a long time. Administrator can use below commands to release the port.
  (% class="box" %)
  (((
--**[root@iZt4n22vqvm7ajogrfiif6Z ~~]# lsof -i :9102 ~-~-> check the port 9102 process status (change 9102 to the actually port for your gateway.
++[root@iZt4n22vqvm7ajogrfiif6Z ~~]# lsof -i :9102 ~-~-> check the port 9102 process status (change 9102 to the actually port for your gateway.
  COMMAND   PID    USER   FD   TYPE   DEVICE SIZE/OFF NODE NAME
  sshd    21430 sshuser   15u  IPv4 47567059      0t0  TCP localhost:bacula-fd (LISTEN)
  [root@iZt4n22vqvm7ajogrfiif6Z ~~]# kill 21430   ~-~-> Kill PID of this process.
  [root@iZt4n22vqvm7ajogrfiif6Z ~~]# lsof -i :9102
--[root@iZt4n22vqvm7ajogrfiif6Z ~~]#**
++[root@iZt4n22vqvm7ajogrfiif6Z ~~]#
  )))
--
  == **2.2  For Firmware Version higher than lgw~-~-build-v5.4.1618196981-20210412-1111** ==
--
  Below gateway support reverse SSH access:
  (% class="box" %)
  (((
--**Firmware Version >lgw~-~-build-v5.4.1618196981-20210412-1111 Firmware Download
++Firmware Version >lgw~-~-build-v5.4.1618196981-20210412-1111 Firmware Download
  LG01N, OLG01N (Note: LG01-P LG01-S doesn't support)
  LG02, OLG02
  LG308, DLOS8
  LPS8
--LIG16**
++LIG16
  )))
--
  === **2.2.1  End User Guide to use SSH access** ===
@@ -150,14 +150,14 @@
  (% class="box" %)
  (((
--**if you git fail.        ~-~->**    (% style="color:#4f81bd" %)**sudo: git: command not found.**(%%)
--**please install git.  ~-~->**    (% style="color:#4f81bd" %)**yum install git -y  or  apt-get install git -y.**
++if you git fail.       ~-~->    (% style="color:#4f81bd" %)**sudo: git: command not found.**(%%)
++please install git.  ~-~->    (% style="color:#4f81bd" %)**yum install git -y  or  apt-get install git -y.**
  )))
  (% class="box" %)
  (((
--**if you make error 127,it (% style="color:#4f81bd" %)lack of gcc.(%%)**
--**please install gcc.    ~-~-> (% style="color:#4f81bd" %)yum install gcc.(%%)**
++if you make error 127,it** (% style="color:#4f81bd" %)lack of gcc.(%%)**
++please install gcc.    ~-~->(% style="color:#4f81bd" %)**yum install gcc.**
  )))
  [[image:image-20220527105856-3.png]]
@@ -164,11 +164,10 @@
  lack of gcc
--
  (% class="box" %)
  (((
--**if you make a fatal error : sqlite3.h,it** (% style="color:#4f81bd" %)**lack of sqlite3.**(%%)
--**please insatell (% style="color:#4f81bd" %)sqlite3(%%)**(% style="color:#4f81bd" %).
++if you make a fatal error : sqlite3.h,it (% style="color:#4f81bd" %)**lack of sqlite3.**(%%)
++please insatell (% style="color:#4f81bd" %)**sqlite3**.
  )))
  [[image:image-20220527105918-4.png]]
@@ -180,26 +180,26 @@
  (% class="box" %)
  (((
--(% style="color:#037691" %)**Step1:**(%%) Download the SQLit3 installation package
++**Step1:** Download the SQLit3 installation package
             sudo wget [[https:~~/~~/www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz>>url:https://www.sqlite.org/2021/sqlite-autoconf-3350400.tar.gz]]
--(% style="color:#037691" %)**Step2:**(%%) tar the SQLit3 installation package
++**Step2:** tar the SQLit3 installation package
             sudo tar -zxvf sqlite-autoconf-3350300.tar.gz
--(% style="color:#037691" %)**Step3:**(%%) Generate the makefile
++**Step3:** Generate the makefile
             cd sqlite-autoconf-3350300/;./configure
--(% style="color:#037691" %)**Step4:**(%%) Compile makefile
++**Step4:** Compile makefile
             sudo make
--(% style="color:#037691" %)**Step5: **(%%)Install makefile
++**Step5: **Install makefile
             sudo make install
--(% style="color:#037691" %)**Check:**(%%)
--           cd /usr/local/bin;ls -al                                             ~-~->    Check to see if there is a file for sqlite3
--           cd sqlite-autoconf-3350300/;./sqlite3 test.db        ~-~->     Test whether the sqlite3 was installed successfully
++**Check:**
++           cd /usr/local/bin;ls -al                             ~-~->    Check to see if there is a file for sqlite3
++           cd sqlite-autoconf-3350300/;./sqlite3 test.db        ~-~->    Test whether the sqlite3 was installed successfully
--(% style="color:#037691" %)**debug:**(%%)
++**debug:**
            If you get the imformation that is SQLite header and source version mismatch, when you execute./sqlite3 test.db.
            Please execute the command /sbin/ldconfig.
            After that execute the command ./sqlite3 test.db again.
@@ -216,9 +216,9 @@
  (% class="box" %)
  (((
--**~  $ ./create_sqlite3_db.sh
++  $ ./create_sqlite3_db.sh
    $ ./rssh_serv -p  3721 2>&1 &
--  $ ps -ef | grep rssh_serv check 3721 port**
++  $ ps -ef | grep rssh_serv check 3721 port
  )))
  [[image:image-20220527110436-6.png]]
@@ -230,14 +230,14 @@
  (% class="box" %)
  (((
--**Check /var/rsshdb.sqlite3     ~-~->(% style="color:#4f81bd" %)   ls /var/rsshdb.sqlite3(%%)**
--**Check ls /var/rsshdb.sqlite3 ~-~->**   (% style="color:#4f81bd" %)**sudo chmod 777 rssh_serv**
++Check /var/rsshdb.sqlite3 ~-~->(% style="color:#4f81bd" %)** ls /var/rsshdb.sqlite3**(%%)
++Check ls /var/rsshdb.sqlite3 ~-~-> (% style="color:#4f81bd" %)**sudo chmod 777 rssh_serv**
  )))
  (% class="box" %)
  (((
--**if fail to open dpvlry or to bind to it**
--**please kill rssh_serv,and run (% style="color:#4f81bd" %) ./rssh_serv -p  3721 2>&1 &(%%)**(% style="color:#4f81bd" %) (%%)** again**
++if** fail to open dpvlry or to bind to it**
++please kill rssh_serv,and run (% style="color:#4f81bd" %)** ./rssh_serv -p  3721 2>&1 &** (%%) again
  )))
@@ -245,13 +245,13 @@
  ===== (% style="color:blue" %)**Step 3 : Create a minimal SSH user (reverse SSH proxy for the gateway)**(%%) =====
--**1): (% style="color:#4f81bd" %)sudo useradd XXXXX(%%)** **(custom user name)**
++**1): (% style="color:#4f81bd" %)sudo useradd XXXXX(%%)** (custom user name)
  **2):** (% style="color:#4f81bd" %)**sudo passwd xxxxxx**
  **3):** (% style="color:#4f81bd" %)**cp /bin/bash /bin/rbash**
--**4):** (% style="color:#4f81bd" %)**sudo nano /etc/passwd**(%%)  ** ~-~-> Change /bin/bash to /bin/rbash**
++**4):** (% style="color:#4f81bd" %)**sudo nano /etc/passwd**(%%) ~-~-> Change /bin/bash to /bin/rbash
  **5):** (% style="color:#4f81bd" %)**sudo nano /home/xxxxx/.bashrc**(%%) **empty it,and input export PATH=$HOME/bin**
@@ -268,7 +268,7 @@
  ===== (% style="color:blue" %)**Step 1 : Come bace the gateway web UI for get the gateway Public key**(%%) =====
--**1) in the system ~-~->** (% style="color:#4f81bd" %)**Remote Mgmt**
++**1) **in the system ~-~-> (% style="color:#4f81bd" %)**Remote Mgmt**
  [[image:image-20220527110531-7.png]]
@@ -299,12 +299,12 @@
  (% class="box" %)
  (((
--(% style="color:#4f81bd" %)**Connection Type **(%%) :       **If user's least privileged user with private server uses a password, select** (% style="color:#4f81bd" %)**Public Key**(%%)
++(% style="color:#4f81bd" %)**Connection Type **(%%) :       If user's least privileged user with private server uses a password, select (% style="color:#4f81bd" %)**Public Key**(%%)
  (% style="color:red" %)**Note: if user's least privileged user no uses a password,choose from both is fine**(%%)
--(% style="color:#4f81bd" %)**Login ID**(%%) :                     ** Input user name "eg : "XXXXX"**
--(% style="color:#4f81bd" %)**Host Address**(%%)  :         **   Input user's private server address**
--(% style="color:#4f81bd" %)**Connect at Startupt **(%%):  ** Choose to enable connect once device is powered.**
--**Click Save and then Connect**
++(% style="color:#4f81bd" %)**Login ID**(%%) :                      Input user name "eg : "XXXXX"
++(% style="color:#4f81bd" %)**Host Address**(%%)  :            Input user's private server address
++(% style="color:#4f81bd" %)**Connect at Startupt**(%%):   Choose to enable connect once device is powered.
++Click Save and then Connect
  )))
@@ -330,9 +330,8 @@
  ===== (% style="color:blue" %)**Step 5 : Create an authorization key file**(%%) =====
--**1):**  **sudo mkdir /home/xxxxx/.ssh; sudo touch /home/xxxxx/.ssh/authorizedkey**
++**1):**  sudo mkdir /home/xxxxx/.ssh; sudo touch /home/xxxxx/.ssh/authorizedkey
--
  **Debug:**
  (% class="box" %)
@@ -341,7 +341,6 @@
  )))
--
  === **2.2.3  How to Ser up a Reverse SSH access** ===

Changes for page Remote Access Gateway

Summary

Details

Applications

Navigation