Article directory
Preface
The iStoreOS system is a soft routing system customized based on OpenWrt. It provides many network service functions such as light NAS, cloud disk, file sharing, etc. If we want to use these functions in an outdoor public network environment, we can use cpolar intranet penetration software. accomplish.
Ingredients needed for this tutorial:
Already installed iStoreOS system
If you don’t have a physical soft router, we also have [iStoreOS virtual machine] ( VMware virtual machine to install the soft router system iStoreOS (based on OpenWrt, suitable for beginners) - Cpolar pole cloud ) for you to experience, which can achieve the use of physical soft router Effect!
After following this tutorial method, the effect achieved is:
Realize the mapping of the LAN address of iStoreOS to a fixed public network address , and you can use mobile devices to access the services provided by iStoreOS outdoors.
How to remotely access the iStoreOS soft routing system web management interface from the public network?
1. Log in to iStoreOS system via ssh LAN
Open the ssh remote access software: (Here I am using Xshell7 on Windows)
Select the file - right click - create a new session
Copy the iStoreOS LAN address:
(To check your own iStoreOS LAN address and how to modify the iStoreOS LAN address, please see: [3. Configuring the iStoreOS virtual machine] ( VMware virtual machine installs the soft routing system iStoreOS (based on OpenWrt, suitable for beginners) - Cpolar pole cloud ))
If an SSH security warning pops up, click接受并保存
After clicking Connect , enter your iStoreOS account and password in the pop-up window. The following pattern will be output to indicate successful login:
`ssh [email protected]`
2. Install Cpolar intranet penetration software
This step requires you to copy and paste a few commands, no need to modify them yourself!
Operate openwrt through ssh connection and download the public key:
wget -O cpolar-public.key http://openwrt.cpolar.com/releases/public.key
Add the public key after the download is complete
opkg-key add cpolar-public.key
Add Cpolar’s opkg warehouse source
echo "src/gz cpolar_packages http://openwrt.cpolar.com/releases/packages/$(. /etc/openwrt_release ; echo $DISTRIB_ARCH)" >> /etc/opkg/customfeeds.conf
Update repository
opkg update
Start installing Cpolar intranet penetration and execute the following three installation commands to install the three packages:
opkg install cpolar
opkg install luci-app-cpolar
opkg install luci-i18n-cpolar-zh-cn
After the installation is completed, open the iStoreOS Web management interface. We can see that there is serviceCpolar intranet penetration below.
3. Test public network remote connection
Click below打开Web UI管理界面
Next, log in to the Cpolar official website. If you have not registered an account, you can register an account first, and then click on the left 验证to view your authentication token.
Then copy the token viewed on the official website to the Auth Token in the iStoreOS Cpolar service interface, and click Save after setting.
Wait for a moment and the Applied pop-up will appear.
Note that the LAN IP of iStoreOS is opened here: 9200 (9200 is the default port number of Cpolar)
Enter the Cpolar username and password to log in:
Cpolar generates two tunnels by default, one is ssh for remote access in the form of a command line window, and the other is website for remote access to the iStoreOS visual page. In addition, you can also click Create Tunnel to customize the tunnel.
In order to take care of the novices, in this tutorial we use website tunnel to map the visual page of iStoreOS:
- Tunnel name: Customizable, be careful not to repeat it
- Protocol: http
- Local address: 80 (default port for web pages)
- Domain name type: Choose a random domain name (free)
After clicking Update , go to Status - Online Tunnel List
Copy public network address
Opened successfully. Prove that Cpolar works normally on the soft routing system!
4. Use the public network to remotely access the iStoreOS webui interface using a fixed http address.
The temporary http data tunnel established above using Cpolar is connected to the openWRT system. However, at this time, there is still a random temporary http tunnel, and the port number will change every 24 hours.
If we want the data tunnels between different devices to exist stably for a long time, we need further settings (since fixed TCP tunnels will occupy Cpolar server resources for a long time, this service has to be included in the VIP project).
To establish a stable http data tunnel, we must first log in to the Cpolar official website and enter the dashboard 预留interface
In the reservation interface , find the reserved second-level subdomain name item. Under this project, we fill in some necessary information, such as the tunnel name to identify the data tunnel, the tunnel usage area, etc.
After filling in this information, click 保留the button on the right to fix the tunnel in the backend of Cpolar's official website
Copy the filled in second-level subdomain name:
Return to the Cpolar webui interface:
- Tunnel name: Customizable, be careful not to repeat it
- Protocol: http
- Local address: 80 (default port for web pages)
- Domain name type: Second-level subdomain name (need to upgrade to the basic package and above)
- Region: I chose the United States here, and it needs to be consistent with the one selected on the official website’s retention interface!
After clicking Update , go to Status - Online Tunnel List
Check the online tunnel list again and find that the public network address corresponding to the localhost:80 tunnel has changed to the fixed second-level subdomain address reserved by our official website.
Copy this fixed address to your browser:
Penetration successful!
We can also send this fixed address to the mobile phone and use mobile phone traffic (public network) to control the soft routing at home outdoors!
