当前位置:网站首页>The internal network penetration of raspberry is built and maintained. No server is required for intranet penetration

The internal network penetration of raspberry is built and maintained. No server is required for intranet penetration

2020-11-09 16:06:04 Programmers who stay up late-

Raspberry pie intranet penetration construction and maintenance

 

pi

 

summary

As the title , We are mainly talking about the use of The net cloud wears the official Provide the intranet penetration function to visit the website of raspberry pie on the Internet , And by ssh Remote management .

Raspberry pie

Raspberry pie is based on Broadcom arm A microcomputer with processor architecture , The price is low , The latest version is 4B, I used 3B+, It was about 200 yuan at that time .

3B + The configuration of the version is as follows :

  1. Main frequency 1.4GHz,64 position 4 Nuclear ARM Cortex-A53 CPU
  2. 1GB LPDDR2 Memory
  3. 2.4GHz and 5GHz IEEE802.11.b/g/n/ac wireless network adapter , bluetooth 4.2
  4. 4 individual USB2.0
  5. HDMI

This configuration runs a static website is more than enough , After all, Alibaba cloud is cheap 1 nucleus 1G nothing more ( The main frequency will be a little higher ).

Station building

nginx

The raspberry pie officially provides a basis for Debian Of Raspberry Pi OS, So the installation software is familiar with you Ubuntu equally , First installation nginx As web server:

 
 
sudo apt install nginx

After installation, start :

 
 
# start-up nginx, No output means successful startup
 
sudo nginx
 
 
 
# You can also take the initiative to view the process
 
ps -ef | grep nginx

Looking at the process output looks like this :

 

nginx

 

Default nginx There are configuration files that take effect directly , You can access the local area network of raspberry pie through the browser ip, For example, mine is  192.168.199.175, You can see this page , It means web server Normal service has been provided .

 

browser

 

If you need to access your own website files , Change it nginx The configuration file of .

The cloud penetrates the intranet

The website already has , The next step is to configure intranet penetration for external network access .

stay The cloud goes through the official website Buy the tunnel and set the penetration protocol to Http (s). The intranet port is installed on it nginx The port of , The default is 80, You can make adjustments by modifying the configuration file , You can configure it here .

 

image-20200802160920441

 

After confirmation, the console will generate token , Copy down .

 

image-20200802161617631

 

Then install the cloud piercing client , It says raspberry pie is arm Architecture processor , So download arm Version of the cloud piercing Software , Log in to the console and you can see that :

 

arm

 

Copy the link address , Execute the following command :

 
 
# Use wget
 
wget http://xiaomy.net/download/linux/wyc_linux_arm && chmod a+rwx wyc_linux_arm
 
 
 
# Use curl, One out of two
 
curl -O http://xiaomy.net/download/linux/wyc_linux_arm && chmod a+rwx wyc_linux_arm

After the execution is completed, the client of netcloud wear is installed , Next, start the software , Execute the following command :

 
 
./wyc_linux_arm -token The token recorded on it

You can see the following output :

 

image-20200802161927244

 

The Internet address is also available , Access the Internet domain name directly in the browser :

 

image-20200802164648416

 

It's that simple , The website inside raspberry pie can be accessed by the Internet .

Operation and maintenance

Is the website finished when it's up and running ? Of course not. , Follow up may also need to face website update 、 Software update 、 Service restart, etc , These things can only be operated by remote management , That's what this part is about : adopt ssh Operation and maintenance management of raspberry pie .

In fact, in the process of building the site, we have installed some software on raspberry pie , This process is ssh Connection operation , And now all we have to do is ssh Visit the Internet address to connect to raspberry pie .

Again, the tunnel should be opened first , This configuration penetration protocol is tcp, The intranet port is sshd The port of , The default is 22 Number , Of course, it can also be modified through the configuration file , Just be consistent .

 

image-20200802180254686

 

After determining , The following information will be generated , Record the Internet port 、 Domain names and tokens :

 

image-20200802165049924

 

also Start again A cloud penetrating client , Use the password you just recorded , This time an external address with a port will be generated .

 
 
./wyc_linux_arm -token The token recorded on it

Finally, you can connect raspberry pie on other machines with the following command :

 
 
ssh -p Outside the network port pi@ domain name

This enables remote management of raspberry pie .

summary

Two tunnels were opened through the net cloud , That is to achieve the Internet access to the website , It also realizes remote management .

You may ask , Is it necessary to do this ? It's better to buy a cloud server !

I personally think the biggest cost of building a website is cloud server , Personal websites use 1 nucleus 1G Plus 1Mbps Bandwidth is usually enough . Take Alibaba cloud for example , Price per year 500 about . I started the server with this configuration hadoop It's hard work .

 

image-20200802171642110

 

And it's much cheaper to wear transparent intranet , We can choose higher bandwidth according to the situation of the website . And you can bind your own domain name , The server doesn't need to be filed , Outsiders don't look different from cloud servers .

 

image-20200802171803166

 

Of course, it's obviously unfair , Because we need to provide our own computers for intranet penetration 、 Electricity and energy . All in all, the cost may be about the same , But in theory, we control the performance of computers , It's much more playable , Isn't life just about tossing ?

Last , Thank you very much for the free program provided by netcloud .

版权声明
本文为[Programmers who stay up late-]所创,转载请带上原文链接,感谢