Read the statement by Michael Teeuw here.
Mirror for a Charity Auction
-
Awesome! Hope it fetches a high price!
-
Outstanding. Love the CNC skills.
-
That looks amazing :)
@bhepler said in Mirror for a Charity Auction:
It has my reverse SSH code on it, so I can get into it remotely now that it’s been auctioned off.
I don’t really understand reverse SSH. Does it let you connect if you don’t know the remote IP address? I’m looking at setting up a mirror for my mother in law, and if she changes ISP, the IP address will change. She’s not technical enough to be able to find the new one and let me know.
-
@Tippon Yeah, that’s pretty much it. The mirror attempts to connect to my command & control server at DNS entry that I control. When it connects, it establishes a reverse SSH connection. I can ride that reverse SSH connection down into the mirror. The C&C server is cloud based, so I just turn it off whenever I don’t need to connect to the mirrors.
Because it’s the mirror making the outgoing connection, firewalls let it pass by. All the mirror needs is a connection to the internet.
I have a pretty long tutorial on how to set it up. I’m a bit verbose.
-
@bhepler one can also use cloudflare to create a tunnel, (using a docker container on the device to do the inbound connect)
cloudflare allow you to create an uri that gets mapped to a local address and port…
I have ssh and vnc access to my systems thru this
ha.xxx.yyy gives me the HomeAssistant home page
ssh.xxx.yyy gives me ssh
vnc.xxx.yyy gives me vnc
fb.xxx.yyy gives me the file browser
i’ve got different uris to different systems.then u can use https: from the user browser to the cloudflare uri, and then the tunnel…
you can use other docker tools (filebrowser, …) to give access to different services…
-
@sdetweil Now this sounds interesting. Do you have tutorial or URL where I can learn how to set this up?
-
@bhepler That’s brilliant, thank you :)
I’ve got some homework to do :D
-
@sdetweil Does that give you SSH access to the server you’re running everything on as well as other devices on your network?
I’m currently looking into changing my server OS and putting everything into containers, and then reorganising my network to make everything easier to access, so I’m trying to get everything right from the start :)
-
@Tippon yes, you register a URL that targets the machine thru the tunnel
and then u can target specific systems and portsone of those is the guacamole app, in a container
then guacamole will let you create sub apps and different access points to the systems
so my ha.xxx.yyy talks directly to home assistant
but my rm.xxx.yyy talks to guacamole, which has ‘apps’ defined
after I logon to guac, I get a list of my ‘apps’… these present in a web page on the system I am on , so ssh in a web page… now… some things, don’t work the same, nano doesn’t display. but vnc works…
-
see this for a cloudflare tunnel startup…
you need to buy a domain name that you can change the processor underneith… I bought one thru namecheap (domain xxx.xyz) for a few dollars a year for a couple years.
