Want to connect to my own server, which is at my office, from anywhere
Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Want to connect to my own server, which is at my office, from anywhere
I have a server in my [home] office which runs a mysql database and keeps track of invoices in and out, partslists for my PCBs etc. I would like to be able to access this and enter purchase orders, check stock etc when I am out of office. The server is, of course, running Linux!
It is sitting behind a Vigor DSL modem/router/switch which has VPN capabilities. I have previously used it to connect to the server from a friend's place, but he also had an identical DSL modem. I would like to be able to do this from my Linux laptops when away in any place, wherever I get on line.
Also, I want be able use a different IP address (I have five with my ISP) to connect to the server than I have for getting on-line. I think it would be good to have two network cards in the server, one that only allows access to stuff from the outside world, one that allows me to get at the server when in the office. (Is that sensible?)
Would anyone be able to advise me on how to approach this please? Thanks!
There are several ways to make this work, and you can use a 2nd IP, but it will not really be any more secure.
I would look at port knocking, it is a way to tell the server that it is you.
The short answer is you hit a port that you previously assigned (use something high and random) this "knock" tells your server firewall to open port 3306 (mysql) to the IP that just knocked. Then you can connect to mysql from any remote port/location.
On your DSL device make sure you open the knock port and the mysql port to your linux box.
+1 to VPN on server and laptops with port forwarding on the DSL modem/router/switch so your VPN client laptop on the big bad internet can reach the server on the office LAN. OpenVPN is relatively easy to set up.
Anybody who can log on to the laptop (anybody with physical access and the technical knowledge) would be able to access the server unless you add a password (either for encrypted file or file system on the laptop or for VPN authentication).
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.