Accessing the classic from anywhere without port forwarding

[Graham]

Came across this site https://developer.weaved.com/portal/ that  permits the access of IOT devices behind a firewall, it requires an agent running on the local network to be setup to the weaved account.

It's likely using something similar to SSH reverse port forwarding as explained here http://unix.stackexchange.com/questions/46235/how-does-reverse-ssh-tunneling-work

I setup my raspberryPi with the agent and modified their  /etc/config/weaved/services/*.conf file to forward to my classic
proxy_dest_port 502
proxy_dest_ip 192.168.0.22

Then, on the weaved dashboard I got the proxyIp and port, entered that into the local app or android app and connect.
Unfortunately, with a free account, the proxy is only valid for half an hour so you have to get a proxy address/port each time you want to connect remotely

[TomW]

Graham;

That seems much more sane / safe than blowing a hole through your router.

Thanks for the share!

Tom

[TomW]

Seems to be available as a Debian package, too.

"weavedconnectd - Simplifies remote connections to computers behind NAT firewalls"

At least on my Debian 7.11 systems  on my rPi machines.

Not there in Jessie/Sid on the Cubie boards.

Tom

[Graham]

Midnite Solar should embed this type of agent in their new comms box and host the proxy at mymidnite.


Graham.

[Graham]

Graham;

That seems much more sane / safe than blowing a hole through your router.

Thanks for the share!

Tom

Plus you don't have to pay for a dyndns service


Graham.

[grgdgreek]

Graham;

That seems much more sane / safe than blowing a hole through your router.

Thanks for the share!

Tom

Plus you don't have to pay for a dyndns service


I would also like that :-)
George :-)


Graham.

[cjbamenda]

Graham:

I read your post from long ago with interest. I also discovered that Weaved is now owned by Remote.It which I have installed and use on a RPi400 connected to my LAN. I can't figure out how to make this approach you described work with Remote.It. Any ideas or is this too far in the past?

[boB]

Will look at this !

Thanks

[Graham]

It's been a while, I don't remember how I set that up, I have another look at it and see if I can figure it out.

You might be able to use cloudflare, here is a link to a video or this video if you're using HomeAssistant
You can use Freenom for the domain name

You could also setup a vpn with wireguard running in a docker container, you can use IOTStack on a RP4 IOTstack/Containers/WireGuard/

I'm currently playing around with the OPNSense router running on a Zimaboard with the Wireguard plug-in so I can access my local network remotely...

[qcda1]

Not sure if this is still monitored. I discovered last year ZeroTier VPN that allowed me to join my Raspberry PIs and IOS devices together in an external VPN network. Works flawlessly. I can access all my networked devices from any site (home and off-grid cottage) and with my mobile devices.

[ClassicCrazy]

Not sure if this is still monitored. I discovered last year ZeroTier VPN that allowed me to join my Raspberry PIs and IOS devices together in an external VPN network. Works flawlessly. I can access all my networked devices from any site (home and off-grid cottage) and with my mobile devices.

Tailscale also works with any computers no port opening needed  , though to VNC the screen works best going to  linux based ones.
Larry