Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place! |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
02-10-2004, 11:38 AM
|
#1
|
LQ Newbie
Registered: Feb 2004
Location: Seattle
Posts: 9
Rep:
|
Remote access to my computer?
I have newbie question on how to remotely access one of my computers. I'm running several boxes off my DSL and would like to access my Linux system remotely (Fedora Core 1, Apache 2.0, MySQL 4.0 and PHP 4.3). I do not have a static ISP address, but it hasn't changed in the last month either. My home architecture currently is something like:
ISP Router Switch & nbsp; Computers
&nbs p; +-- WinXP 1
Qwest ---- Cisco ---- NetGear -+-- WinXP 2
DSL 678 &nbs p; GS108 +-- WinXP 3
&nbs p; +-- Intel Wireless Gateway
&nbs p; +-- LAMP Box
Internally the routter is dynamically assigning Class A addresses, e.g. 10.0.0.x to the various boxes. So how do I direct http (or ftp etc.) requests to the correct computer?
I read the Remote login thread (threadid=6885) but it was a bit over my head and I couldn't even tell if it was answering my question <sigh>.
TAI
|
|
|
02-10-2004, 11:48 AM
|
#2
|
Member
Registered: Jun 2003
Location: Ontario
Distribution: Ubuntu, Gentoo, Debian
Posts: 416
Rep:
|
Quote:
Internally the routter is dynamically assigning Class A addresses, e.g. 10.0.0.x to the various boxes. So how do I direct http (or ftp etc.) requests to the correct computer?
|
With this setup, AFAIK, you can't.
A box that you're going to connect to externally needs a static IP on the local network, and the router needs to be configured to forward a given port (22 for SSH) to that machine.
So:
Configure the box in question to have a static IP
Make the router forward port 22 to the box's IP (see docs on your router for specifically how - most have an HTML interface that will let you set prefs)
connect to your router's IP remotely on port 22 and witness the magic.
--Rounan
EDIT: I'm not familiar with SQL requests, but if you also want webservice, forward port 80 to the box. SQL will use a port. don't know which. Same principle applies.
Last edited by Rounan; 02-10-2004 at 11:50 AM.
|
|
|
02-10-2004, 11:55 AM
|
#3
|
Member
Registered: Jun 2002
Location: Breckenridge, Colorado
Distribution: Ubuntu Hardy 8.04
Posts: 101
Rep:
|
Configure your router to forward port 80 traffic to the ip address of your Linux box then make sure you are running a web server on the linux pc. You will probably want to statically assign an address to the Linux box as well.
Some ISP's block incoming Port 80 traffic, to prevent you from running a web server so if this doesn't work you may change the port that the webserver is running on to work around this. SSH = port 22 and FTP = port 21
|
|
|
02-12-2004, 08:22 AM
|
#4
|
LQ Newbie
Registered: Feb 2004
Posts: 16
Rep:
|
Hey
You could be a little more secure about this ( if you care to )
Configure a machine to work through , on your internal lan.. for PCANYWHERE or
TimbuckTu, if you have a server all the more, use terminal server services to access it .
1. Configure a remote client PC could be a server ( use terminal server ) , with the password encription feature this will be the added security,
2. Set up Port mapping with your router , use the ports for what ever service you choose, if it terminal services 5631, 5632 you can serch for them on www.microsoft.com, Winxp has built in terminal server
3. use TimbuckTu ports 407 UDP, 1417-1420 for services
4. set this up on your router Nat features, to point to the internal workst or server IP
5. Use the connection to this terminal server to telnet to the local Linux box and perform anything on a more secure path.
|
|
|
02-12-2004, 08:38 AM
|
#5
|
LQ Guru
Registered: Apr 2003
Location: nottingham england
Distribution: Gentoo
Posts: 2,672
Rep:
|
Windows XP terminal server is not going to run well on linux.
and do you realy trust microsoft with your security !!!!!
set all the pc's on your lan's IP address statically, (not via dhcp)
and set your router o forward all ssh traffic to the ip on the linux machine.
now use the serives tool from fidora core 1's menu and make sure sshd is set to run on bootup.
now, from any machine with internet access you can login to your home linux machine with ssh.
read
man ssh
also, you may want to have an ftp server running for file transfere.
use the services tool again, the ftp daemon is called vsftpd (very secure ftp daemon)
|
|
|
02-12-2004, 08:56 AM
|
#6
|
Senior Member
Registered: Sep 2003
Posts: 1,091
Rep:
|
you guys are crazy... you dont have to have a static IP (on your internal machines), just set the DHCP lease on your router to unlimited.
Why not just foward port 22 to one machine, that will give you SSH access to all linux machines.
_____________________
On the web server, I don know what you are doing, but you only have to foward to port 80 on one of the machines, and install SQL on another, it will make the sql connection from behind your router and never need to go outside port 80 (that is if you even plan to have a sql backend).
Last edited by trey85stang; 02-12-2004 at 08:58 AM.
|
|
|
02-12-2004, 09:27 AM
|
#7
|
Member
Registered: Jun 2003
Location: Ontario
Distribution: Ubuntu, Gentoo, Debian
Posts: 416
Rep:
|
Trey, that'll work great - until you power off two computers and then power them back on in reverse order. oops, their IPs are reversed.
Static IP is a much better solution.
And yeah, once you're on the internal network, you can use the machine you've connected to to ssh to any other.
--Rounan
|
|
|
02-12-2004, 11:16 AM
|
#8
|
Senior Member
Registered: Sep 2003
Posts: 1,091
Rep:
|
Quote:
Originally posted by Rounan
Trey, that'll work great - until you power off two computers and then power them back on in reverse order. oops, their IPs are reversed.
Static IP is a much better solution.
And yeah, once you're on the internal network, you can use the machine you've connected to to ssh to any other.
--Rounan
|
most routers IP address are given via mac address... I have run a dynamic setup with 4 machines for over a year now.. and they all have had the same ip (even reinstalling on a few they still get the same ip)
|
|
|
02-12-2004, 11:50 AM
|
#9
|
Member
Registered: Jun 2003
Location: Ontario
Distribution: Ubuntu, Gentoo, Debian
Posts: 416
Rep:
|
Huh... nifty.
I've observed the opposite behaviour with my Linksys routers.
Dah well, all hardware is not created equal.
Cheers,
--Rounan
|
|
|
02-12-2004, 03:11 PM
|
#10
|
LQ Newbie
Registered: Feb 2004
Location: Seattle
Posts: 9
Original Poster
Rep:
|
Quote:
Originally posted by bmcneil2k
Hey
You could be a little more secure about this ( if you care to )
Configure a machine to work through , on your internal lan.. for PCANYWHERE or
TimbuckTu, if you have a server all the more, use terminal server services to access it .
<snip>
|
A question about bandwidth here. The network has 6 systems on it, 3 of them 10/100, a WiFi and two 10/100/1000 NICs. If I were to route everthing from the router through another machine as a firewall, would I have to get two 10/100/1000 cards? My U2 Server only has one slot left and I'm currently using the onboard 10/100 port.
|
|
|
02-12-2004, 04:15 PM
|
#11
|
Member
Registered: Nov 2003
Location: Oklahoma, USA
Distribution: gentoo
Posts: 73
Rep:
|
no i dont think so ... but I could be wrong
|
|
|
All times are GMT -5. The time now is 08:06 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|