Access Elk through the Internet
- Thread starter Hermanus
- Start date
It is unlikely you could connect to the Elk without port forwarding. To do so would require that the Elk has a public IP address. Unless you ISP provides multiple IPs I would assume you need to be able to connect something else as well!
I have a static IP and forward port 80 from the router to the Elk. If you don't have a static IP (or even if you do...) you can use a service like dyndns.org to resolve the name. Many routers support registering with this type of service automatically.
Note that regardless, it you're worried about being hacked, you should probably not connect the XEP or RM directly through your firewall (I know I don't).
A more secure way would be to use a firewall with VPN. These days, they are starting to make SSL firewalls that don't require special software (and license) on the computer. I'm looking into that.
Laurent
A more secure way would be to use a firewall with VPN. These days, they are starting to make SSL firewalls that don't require special software (and license) on the computer. I'm looking into that.
Laurent
I use Smoothwall. It's a linux setup that runs well on old hardware. It's pretty easy to setup, I have everything blocked except one port that I ssh into and then tunnel my port forwarding for my private network systems.
I should have a look at Smoothwall (how did you choose that one vs. the other myriad secured Linux firewall options?), although for simplicity, an SSL tunnel would be best (nothing to install, all running in a browser applet).
Laurent
You could use a router with VPN connectivity and a software VPN client with the remote PC.
You could hack an existing Linksys router with something like DD-WRT and add VPN connectivity.
You could use port mapping (forwarding) and use an obscure external port to map to an internal IP address.
Other hardware routers support ssh without the need for a PC running 24/7.
You could hack an existing Linksys router with something like DD-WRT and add VPN connectivity.
You could use port mapping (forwarding) and use an obscure external port to map to an internal IP address.
Other hardware routers support ssh without the need for a PC running 24/7.
Not a lot of linux knowledge needed and it did some other stuff I wanted. Static DNS, you enter the names and addresses of your local network machines and it intercepts them and reports them back instead of forwarding to the real DNS. Dynamic DNS, so you can find your home machines. I use dyndns.org, it's free.
It also supports Quality of Service so you can prioritize your INTERNET services, but I haven't had much luck with it.
It also has lots of plug ins, I use SNORT which blocks know hacking methods and automatically updates itself and Guardian which blocks ips for a set number of days when he detects repeated probes.
Its free, but does require a dedicated machine.
Brian
twilo123
Active Member
you could try this also http://openvpn.net/index.php