Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




4378 posts

Uber Geek
+1 received by user: 669

Trusted

# 38328 28-Jul-2009 10:29
Send private message

HI Currently have a pretty well working putty tunneling solution working.  Gives me access to my home intranet pages that run on a couple of different machines.

If I wanted to I could add individual ports to the individual machines and access the pages that way.  But I'd rather take the more complicated/geeky route of having only one port open.

So what I'd like I guess is something like was discussed in this thread: http://www.geekzone.co.nz/forums.asp?forumid=45&topicid=18758

I'd like to navigate to a web page which is the front door of my network, authenticate, and from there, have access to the machines at home.

By preference, Id rather not have anything loaded on the client machine doing the accessing, since this could be someone else's machine, or a phone, or even a psp.  I think at this stage I only want http/https access, since for remote control etc i can use the existing putty solution.

Is this possible? Things I have are DD-WRT as an AP inside the network (currently runs the SSH server).  A WHS server (https), and PVR server with Web UI, and a linux server with a couple of other Web sites (PHP mostly).  Lastly the WHS runs VMware server (https:8443).

Thoughts?




Previously known as psycik

OpenHAB: Gigabyte AMD A8 BrixOpenHAB with Aeotech ZWave Controller, Raspberry PI, Wemos D1 Mini, Zwave, Xiaomi Humidity and Temperature sensors and Bluetooth LE Sensors
Media:Chromecast v2, ATV4, Roku3, HDHomeRun Dual
Windows 10
Host (Plex Server/Crashplan): 2x2TB, 2x3TB, 1x4TB using DriveBender, Samsung 850 evo 512 GB SSD, Hyper-V Server with 1xW10, 1xW2k8, 2xUbuntu 16.04 LTS, Crashplan, NextPVR channel for Plex,NextPVR Metadata Agent and Scanner for Plex


View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
BDFL - Memuneh
63289 posts

Uber Geek
+1 received by user: 13814

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 239592 28-Jul-2009 10:31
Send private message

That's part of the idea of Windows Home Server, isn't it? You have your digital content stored on the server and access it from outside - point port 80 and 443 to yor WHS box and login from there.

You can even remote desktop access other PCs on your network from this setup.







4378 posts

Uber Geek
+1 received by user: 669

Trusted

  # 239595 28-Jul-2009 10:35
Send private message

freitasm: That's part of the idea of Windows Home Server, isn't it? You have your digital content stored on the server and access it from outside - point port 80 and 443 to yor WHS box and login from there.

You can even remote desktop access other PCs on your network from this setup.



What about the sites on the other machines?  Or should I try to move them to the homeserver?

I quite like the WHS authentication model, and figure it's probably pretty strong...




Previously known as psycik

OpenHAB: Gigabyte AMD A8 BrixOpenHAB with Aeotech ZWave Controller, Raspberry PI, Wemos D1 Mini, Zwave, Xiaomi Humidity and Temperature sensors and Bluetooth LE Sensors
Media:Chromecast v2, ATV4, Roku3, HDHomeRun Dual
Windows 10
Host (Plex Server/Crashplan): 2x2TB, 2x3TB, 1x4TB using DriveBender, Samsung 850 evo 512 GB SSD, Hyper-V Server with 1xW10, 1xW2k8, 2xUbuntu 16.04 LTS, Crashplan, NextPVR channel for Plex,NextPVR Metadata Agent and Scanner for Plex


 
 
 
 


BDFL - Memuneh
63289 posts

Uber Geek
+1 received by user: 13814

Administrator
Trusted
Geekzone
Lifetime subscriber



4378 posts

Uber Geek
+1 received by user: 669

Trusted

  # 239612 28-Jul-2009 10:57
Send private message

hmm so there is the problem.

Any other ideas? I'd rather not install PHP etc on the home server, or try to get the GBPVR web UI to work from the home server....

Anything I can do with radius, or chillispot, or a vpn??




Previously known as psycik

OpenHAB: Gigabyte AMD A8 BrixOpenHAB with Aeotech ZWave Controller, Raspberry PI, Wemos D1 Mini, Zwave, Xiaomi Humidity and Temperature sensors and Bluetooth LE Sensors
Media:Chromecast v2, ATV4, Roku3, HDHomeRun Dual
Windows 10
Host (Plex Server/Crashplan): 2x2TB, 2x3TB, 1x4TB using DriveBender, Samsung 850 evo 512 GB SSD, Hyper-V Server with 1xW10, 1xW2k8, 2xUbuntu 16.04 LTS, Crashplan, NextPVR channel for Plex,NextPVR Metadata Agent and Scanner for Plex


Professional yak shaver
1599 posts

Uber Geek
+1 received by user: 8

Trusted
BitSignal
Lifetime subscriber

  # 239659 28-Jul-2009 12:13
Send private message

VPN would be the way to go there, since you don't want to consolidate your websites in one place.




"Roads? Where we're going, we don't need roads." - Doc Emmet Brown

BDFL - Memuneh
63289 posts

Uber Geek
+1 received by user: 13814

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 239662 28-Jul-2009 12:18
Send private message

magu: VPN would be the way to go there, since you don't want to consolidate your websites in one place.


That's clear. But he wants a VPN with no clients - a VPN over HTTPS. Are there any of these for free or low cost enough for home use?





Professional yak shaver
1599 posts

Uber Geek
+1 received by user: 8

Trusted
BitSignal
Lifetime subscriber

  # 239667 28-Jul-2009 12:27
Send private message

If I'm not mistaken, OpenVPN can do port 443 traffic, but that still requires a client.




"Roads? Where we're going, we don't need roads." - Doc Emmet Brown



4378 posts

Uber Geek
+1 received by user: 669

Trusted

  # 239672 28-Jul-2009 12:34
Send private message

Another option I may have just stumbled on is reverse proxying....

I guess it will just restrict me to http/https access, but supposedly the proxy server can look at part of the domain name and redirect it to another server....

So if I can get reverse proxying working with authentication (and windows authentication at that) I may have a way to do it.  The rest of it (remote control etc, can stay with putty and logmein)....

Now just have to figure out how to reconfigure my squid proxy server....





Previously known as psycik

OpenHAB: Gigabyte AMD A8 BrixOpenHAB with Aeotech ZWave Controller, Raspberry PI, Wemos D1 Mini, Zwave, Xiaomi Humidity and Temperature sensors and Bluetooth LE Sensors
Media:Chromecast v2, ATV4, Roku3, HDHomeRun Dual
Windows 10
Host (Plex Server/Crashplan): 2x2TB, 2x3TB, 1x4TB using DriveBender, Samsung 850 evo 512 GB SSD, Hyper-V Server with 1xW10, 1xW2k8, 2xUbuntu 16.04 LTS, Crashplan, NextPVR channel for Plex,NextPVR Metadata Agent and Scanner for Plex


Go Hawks!
917 posts

Ultimate Geek
+1 received by user: 61

Trusted
Subscriber

  # 239922 28-Jul-2009 20:29
Send private message

davidcole: Another option I may have just stumbled on is reverse proxying....

I guess it will just restrict me to http/https access, but supposedly the proxy server can look at part of the domain name and redirect it to another server....

So if I can get reverse proxying working with authentication (and windows authentication at that) I may have a way to do it.  The rest of it (remote control etc, can stay with putty and logmein)....

Now just have to figure out how to reconfigure my squid proxy server....




I'd second reverse proxy (I believe you could also have a virtual directory off your apache setup to point to another server).


Disclaimer:  I've not yet actually implemented a reverse proxy ...



4378 posts

Uber Geek
+1 received by user: 669

Trusted

  # 239928 28-Jul-2009 20:44
Send private message

ahh bugger, was gonna ask you how.




Previously known as psycik

OpenHAB: Gigabyte AMD A8 BrixOpenHAB with Aeotech ZWave Controller, Raspberry PI, Wemos D1 Mini, Zwave, Xiaomi Humidity and Temperature sensors and Bluetooth LE Sensors
Media:Chromecast v2, ATV4, Roku3, HDHomeRun Dual
Windows 10
Host (Plex Server/Crashplan): 2x2TB, 2x3TB, 1x4TB using DriveBender, Samsung 850 evo 512 GB SSD, Hyper-V Server with 1xW10, 1xW2k8, 2xUbuntu 16.04 LTS, Crashplan, NextPVR channel for Plex,NextPVR Metadata Agent and Scanner for Plex


163 posts

Master Geek
+1 received by user: 1


  # 239931 28-Jul-2009 20:59
Send private message

How about this:

SSH tunnel to a socks proxy on your network, from there remote desktop or vnc to the machines you want access to.

You will still need a client for this, on windows I recommend tunnelier by bitvise, but putty or plink will also work.

Good luck.

^^ Ignore that, as I didn't read your post very well :(

I recommend reading up about mod_proxy with apache
http://httpd.apache.org/docs/2.0/mod/mod_proxy.html

That would be able to handle the connections to the other standard http servers, I'm uncertain about https proxying with it though.


Go Hawks!
917 posts

Ultimate Geek
+1 received by user: 61

Trusted
Subscriber

  # 239940 28-Jul-2009 21:18
Send private message

(UPDATE : Forgot to add the example URL in place ...)

OK - the way I understand it, you want to have access to other web servers at home ... ignoring the authentication bit, mod_proxy in apache may provide a good way (a tutorial is here http://www.apachetutor.org/admin/reverseproxies).

I've just adding the following into the bottom of my apache configure, and I can now access the nzherald website via http://localhost/app1/ (obviously it looks like kak due to not rewriting the URL's correctly and thus missing the style sheets...):

[ Added to teh end of Apache Configuration ]
ProxyRequests off
ProxyPass /app1/ http://www.nzherald.co.nz/


ProxyPassReverse /


[ END ]

Note that mod_proxy et al. were already installed (this is an internal testing server).

Take note that you heed the warnings about not creating an open proxy ...

HTH



4378 posts

Uber Geek
+1 received by user: 669

Trusted

  # 239969 28-Jul-2009 22:21
Send private message

either I'm doing something wrong or I'm just thick. For a start using webmin to configure.

Which file did you add that to? the apache.conf or the httpd.conf? I've also tried it on a virtual server (the default port 80 one)

I also turned on all the proxy mods (my server is internal as well).

I'm not accessing from local host, but from another machine on the network, would that make a difference?

I get nada....




Previously known as psycik

OpenHAB: Gigabyte AMD A8 BrixOpenHAB with Aeotech ZWave Controller, Raspberry PI, Wemos D1 Mini, Zwave, Xiaomi Humidity and Temperature sensors and Bluetooth LE Sensors
Media:Chromecast v2, ATV4, Roku3, HDHomeRun Dual
Windows 10
Host (Plex Server/Crashplan): 2x2TB, 2x3TB, 1x4TB using DriveBender, Samsung 850 evo 512 GB SSD, Hyper-V Server with 1xW10, 1xW2k8, 2xUbuntu 16.04 LTS, Crashplan, NextPVR channel for Plex,NextPVR Metadata Agent and Scanner for Plex


Go Hawks!
917 posts

Ultimate Geek
+1 received by user: 61

Trusted
Subscriber

  # 239970 28-Jul-2009 22:27
Send private message

Which file did you add that to? the apache.conf or the httpd.conf? I've also tried it on a virtual server (the default port 80 one)



I put it in httpd.conf ... although my Apache is running on OS X ... 


What version of linux and apache are you running on?

I also turned on all the proxy mods (my server is internal as well).



Was that through webmin as well?  I assume that webmin won't offer the option if the mod isn't there?

I'm not accessing from local host, but from another machine on the network, would that make a difference?

I get nada....



It'll only make a difference if your restricting where you can access sites from.


Did you restart apache afterwards?



4378 posts

Uber Geek
+1 received by user: 669

Trusted

  # 239971 28-Jul-2009 22:35
Send private message

Using Apache 2.2.9 on ubuntu server. with webmin 1.480.

Just edited the httpd.conf directly with your 3 lines, and on starting apache it complains wbout the proxypassreverse:
ProxyPassReverse needs a path when not defined in a location

I've removed that line (PassReverse) and http://machine/app1 gets a 404, and interestingly enough http://machine/app1/ gets a 403 error.....




Previously known as psycik

OpenHAB: Gigabyte AMD A8 BrixOpenHAB with Aeotech ZWave Controller, Raspberry PI, Wemos D1 Mini, Zwave, Xiaomi Humidity and Temperature sensors and Bluetooth LE Sensors
Media:Chromecast v2, ATV4, Roku3, HDHomeRun Dual
Windows 10
Host (Plex Server/Crashplan): 2x2TB, 2x3TB, 1x4TB using DriveBender, Samsung 850 evo 512 GB SSD, Hyper-V Server with 1xW10, 1xW2k8, 2xUbuntu 16.04 LTS, Crashplan, NextPVR channel for Plex,NextPVR Metadata Agent and Scanner for Plex


 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Porirua City Council first to adopt new council software solution Datascape
Posted 15-May-2019 12:00


New survey provides insight into schools' technology challenges and plans
Posted 15-May-2019 09:30


Apple Music now available on Alexa devices in Australia and New Zealand
Posted 15-May-2019 09:11


Make a stand against cyberbullying this Pink Shirt Day
Posted 14-May-2019 20:23


Samsung first TV manufacturer to launch the Apple TV App and Airplay 2
Posted 14-May-2019 20:11


Vodafone New Zealand sold
Posted 14-May-2019 07:25


Kordia boosts cloud performance with locally-hosted Microsoft Azure ExpressRoute
Posted 8-May-2019 10:25


Microsoft Azure ExpressRoute in New Zealand opens up faster, more secure internet for Kiwi businesses
Posted 8-May-2019 09:39


Vocus Communications to deliver Microsoft Azure Cloud Solutions through Azure ExpressRoute
Posted 8-May-2019 09:25


Independent NZ feature film #statusPending to premiere during WLG-X
Posted 6-May-2019 22:13


The ultimate dog photoshoot with Nokia 9 PureView #ForgottenDogsofInstagram
Posted 6-May-2019 09:41


Nokia 9 PureView available in New Zealand
Posted 6-May-2019 09:06


Motorola Solutions joins local partners to deliver advanced communications network in New Zealand
Posted 30-Apr-2019 21:50


Micron launches high-performance NVMe SSDs for cloud and enterprise markets
Posted 30-Apr-2019 10:27


Jaguar Land Rover trials in-vehicle smart wallet technology
Posted 29-Apr-2019 21:48



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.