Hello, everybody,
I am a new follower of the forum community after having cleared the hurdle of re-registration.
I would like to run Puppy on a ThinClient, where I want to store my personal data and access it over the internet.
I have now discovered "SAMBA SIMPLE MANAGEMENT" and "PureFTPd" in Tahrpup. Unfortunately I can't access it via the Internet from the outside (e.g. smartphone), it works via the home network.
General Info:
- I am using a FritzBox 7490
- I have a Dyndns address, which is also updated via the Fritzbox
- I've set up port clearances for 80 and 8080.
Unfortunately, I don't know what to do. Can anyone help me?
Translated with www.DeepL.com/Translator
ThinClient as file server - Tahrpup as basis
You need to know your external IP https://www.whatismyip.com/. Your ddns setup may already do that/set it up.
Your router will have to be set to open the port ...
https://www.computerhope.com/issues/ch001201.htm
Your Puppy will also have to have that port open (turn the Puppy firewall off).
Your router will have to be set to open the port ...
https://www.computerhope.com/issues/ch001201.htm
Your Puppy will also have to have that port open (turn the Puppy firewall off).
[size=75]( ͡° ͜ʖ ͡°) :wq[/size]
[url=http://murga-linux.com/puppy/viewtopic.php?p=1028256#1028256][size=75]Fatdog multi-session usb[/url][/size]
[size=75][url=https://hashbang.sh]echo url|sed -e 's/^/(c/' -e 's/$/ hashbang.sh)/'|sh[/url][/size]
[url=http://murga-linux.com/puppy/viewtopic.php?p=1028256#1028256][size=75]Fatdog multi-session usb[/url][/size]
[size=75][url=https://hashbang.sh]echo url|sed -e 's/^/(c/' -e 's/$/ hashbang.sh)/'|sh[/url][/size]
Hello, many thanks for the quick answer.
The firewall is off, at least the icon in the taskbar is red.
I released the following ports in the router
FTP-server / TCP / Port 21
HTTP-Server / TCP / Port 80
The external IP-address - which changes daily - i have in the router under DYNDNS. The router tells me that the change works.
I can't get any further.
The firewall is off, at least the icon in the taskbar is red.
I released the following ports in the router
FTP-server / TCP / Port 21
HTTP-Server / TCP / Port 80
The external IP-address - which changes daily - i have in the router under DYNDNS. The router tells me that the change works.
I can't get any further.
Is your IPv6 address static? Otherwise you could do some kind of private VPN or maybe ssh forwardingext4 wrote:Hello, many thanks for the quick answer.
The firewall is off, at least the icon in the taskbar is red.
I released the following ports in the router
FTP-server / TCP / Port 21
HTTP-Server / TCP / Port 80
The external IP-address - which changes daily - i have in the router under DYNDNS. The router tells me that the change works.
I can't get any further.
Find me on [url=https://www.minds.com/ns_tidder]minds[/url] and on [url=https://www.pearltrees.com/s243a/puppy-linux/id12399810]pearltrees[/url].
I use a service https://dyn.com/ but there are others like https://freedns.afraid.org/ and I am sure in Deutschland there are similar services!
Using such a service and Dynamic DNS to provide a ALIAS host name, a domain name that is always pointing to your ever changing IP.. You will run an updater client program of some type (i.e. inadyn, DDclient) and some routers have the IP update function built in natively.
Basicaly what happens is the updater checks periodically if your IP changes and sends a signal to the Dynamic DNS service what the current IP now is so the host name can be synced with the current IP. So I have rockedge.dnsalias.org that always points to my router at home which uses port forwarding to connect to the machine running your server on your home (or office) network (LAN).
some services offer one free host name and allow the use of variety of update clients. The router may have some included which you would then need to set up.
I use an old DELL tower (2004) to run a Apache web server (now I use mostly Hiawatha which is standard with Puppy Linux) to perform a REVERSE PROXY function so I can have multipule host names point to different machines on my home network....for example http://rockedge.dnsalias.org will be sent to machine 192.168.0.5 on my LAN and wormgear.us.org will send requests to 192.168.0.12. When actually all the host names point to the router which accepts the port 80 and forwards the request to machine 192..168.0.2 which is the web server doing the reverse proxy....which analyzes the request for the incoming host name and sends the request then further to the correct machine on the LAN.
I have at times 5 machines each with there own host name running connected to same router. Only the gateway machine has the update client running. My router could be configured as well to do the updating and the time interval is much shorter so quicker update response..but I hardly notice for my uses.
You might know all of this already..but I am throwing it out there in case it helps!
Using such a service and Dynamic DNS to provide a ALIAS host name, a domain name that is always pointing to your ever changing IP.. You will run an updater client program of some type (i.e. inadyn, DDclient) and some routers have the IP update function built in natively.
Basicaly what happens is the updater checks periodically if your IP changes and sends a signal to the Dynamic DNS service what the current IP now is so the host name can be synced with the current IP. So I have rockedge.dnsalias.org that always points to my router at home which uses port forwarding to connect to the machine running your server on your home (or office) network (LAN).
some services offer one free host name and allow the use of variety of update clients. The router may have some included which you would then need to set up.
I use an old DELL tower (2004) to run a Apache web server (now I use mostly Hiawatha which is standard with Puppy Linux) to perform a REVERSE PROXY function so I can have multipule host names point to different machines on my home network....for example http://rockedge.dnsalias.org will be sent to machine 192.168.0.5 on my LAN and wormgear.us.org will send requests to 192.168.0.12. When actually all the host names point to the router which accepts the port 80 and forwards the request to machine 192..168.0.2 which is the web server doing the reverse proxy....which analyzes the request for the incoming host name and sends the request then further to the correct machine on the LAN.
I have at times 5 machines each with there own host name running connected to same router. Only the gateway machine has the update client running. My router could be configured as well to do the updating and the time interval is much shorter so quicker update response..but I hardly notice for my uses.
You might know all of this already..but I am throwing it out there in case it helps!
Hello, thank you for the detailed explanations.
I have a DYNDNS service running. The IP update is done by the router. I don't get an error message here.
The corresponding port releases are also stored.
The firewall in Puppy is off (icon taskbar RED)
Nevertheless I cannot access the computer from outside. Direct access via WLAN works.
Somewhere I have an error in my thoughts...........but where?
I have a DYNDNS service running. The IP update is done by the router. I don't get an error message here.
The corresponding port releases are also stored.
The firewall in Puppy is off (icon taskbar RED)
Nevertheless I cannot access the computer from outside. Direct access via WLAN works.
Somewhere I have an error in my thoughts...........but where?
C'est la vie !
port for ftp is 21...this needs to be port forwarded in the router to the machine running the ftp server (pureFTP in Puppy Linux for example)
also for files to be accessed via the Internet it would be best to setup Hiawatha and run a web server. the configurations can be very flexible.
try to get the ftp going first....in the router port forward port 21 to the machine running the ftp server. then try using gftp (or similar) to connect using your host name...let's see if we can get some successful connections and file transfers then we'll move on
also for files to be accessed via the Internet it would be best to setup Hiawatha and run a web server. the configurations can be very flexible.
try to get the ftp going first....in the router port forward port 21 to the machine running the ftp server. then try using gftp (or similar) to connect using your host name...let's see if we can get some successful connections and file transfers then we'll move on
Hello, thanks to your help, I am getting closer to a possible solution.
The ports (21, 425, 1723) are not open although they are enabled in the router. Other ports e.g. 8080 cannot be opened either. Why? I don't know. I checked this with a portscanner (http://www.dnstools.ch/port-scanner.html).
After a research on the homepage of AVM (manufacturer of the Fritzbox) the ports are blocked by internal solutions in the Fritzbox and cannot be opened for further server operation.
Now my hope: Is it possible to change the ports in a config file in "SAMBA SIMPLE MANAGEMENT" or "PureFTPd" to access them? Or are the ports standardized and not changeable or do the programs not work anymore?
The ports (21, 425, 1723) are not open although they are enabled in the router. Other ports e.g. 8080 cannot be opened either. Why? I don't know. I checked this with a portscanner (http://www.dnstools.ch/port-scanner.html).
After a research on the homepage of AVM (manufacturer of the Fritzbox) the ports are blocked by internal solutions in the Fritzbox and cannot be opened for further server operation.
Now my hope: Is it possible to change the ports in a config file in "SAMBA SIMPLE MANAGEMENT" or "PureFTPd" to access them? Or are the ports standardized and not changeable or do the programs not work anymore?
C'est la vie !
let me look over the machine's specs...the ports are usually software controlled...let's see what is going on here
Yes it is possible to assign different port numbers for ftp and samba or the web server....you can make ftp look like this ftp://example.com:2121 and use port 2121 or change 8080 to 86...you get the picture.....
look to see which ports are avialble to forward in the FRITZBox and choose from those...all the config files must be adjusted and the url will need the port specified as seen in the example above
it is fairly simple to do
Yes it is possible to assign different port numbers for ftp and samba or the web server....you can make ftp look like this ftp://example.com:2121 and use port 2121 or change 8080 to 86...you get the picture.....
look to see which ports are avialble to forward in the FRITZBox and choose from those...all the config files must be adjusted and the url will need the port specified as seen in the example above
it is fairly simple to do
I personally prefer sshfs. You can even reverse sshfs mount i.e. I have a home based server (tower/desktop) that 'looks' for my laptop appearing online no matter where that might be and then the server reverse sshfs mounts that, so outbound originated. Once connected the servers sshfs folder appears as just any other folder on the laptop (use rox/whatever to drag/drop/edit files etc.). That also saves on having to worry about securing otherwise inbound port/traffic (crack attempts) directed towards the server. And being ssh key based you don't have to worry about remembering passwords. Just net connect the laptop and then after whatever sleep interval the server is set to use between looking for your laptop appearing online, the servers folder becomes available.
A bit like this post, but where the reverse sshfs extends out to the internet. http://murga-linux.com/puppy/viewtopic. ... 13#1003513
Some places may block ssh, so using the https port is good practice IMO as that's more inclined to free-flow. Some locations however do dig deeper and may block https port traffic that is carrying ssh, but that's rare in my experience (typically business sites).
ssh key pairs are pretty good at ensuring that a man in middle attack isn't being launched against you. If the connection suggests that the servers keys have changed then that's a big red flag (shutdown/move on).
A bit like this post, but where the reverse sshfs extends out to the internet. http://murga-linux.com/puppy/viewtopic. ... 13#1003513
Some places may block ssh, so using the https port is good practice IMO as that's more inclined to free-flow. Some locations however do dig deeper and may block https port traffic that is carrying ssh, but that's rare in my experience (typically business sites).
ssh key pairs are pretty good at ensuring that a man in middle attack isn't being launched against you. If the connection suggests that the servers keys have changed then that's a big red flag (shutdown/move on).
[size=75]( ͡° ͜ʖ ͡°) :wq[/size]
[url=http://murga-linux.com/puppy/viewtopic.php?p=1028256#1028256][size=75]Fatdog multi-session usb[/url][/size]
[size=75][url=https://hashbang.sh]echo url|sed -e 's/^/(c/' -e 's/$/ hashbang.sh)/'|sh[/url][/size]
[url=http://murga-linux.com/puppy/viewtopic.php?p=1028256#1028256][size=75]Fatdog multi-session usb[/url][/size]
[size=75][url=https://hashbang.sh]echo url|sed -e 's/^/(c/' -e 's/$/ hashbang.sh)/'|sh[/url][/size]
Hello, this looks like a bright spot. 
Here is the link to the manual of the Fritzbox7490:
https://assets.avm.de/files/docs/fritzb ... _en_GB.pdf
I must try to open one or the other port.
The ports are shown as open in the router overview, but when checked by a portscanner they are closed.
Appendix:
Now I have just noticed that port 80 is closed again, although the configuration of the router has not been changed.
The only thing I noticed was that the DSL connection had to be disconnected during the night. Here a new IP is assigned.
Here is the link to the manual of the Fritzbox7490:
https://assets.avm.de/files/docs/fritzb ... _en_GB.pdf
I must try to open one or the other port.
The ports are shown as open in the router overview, but when checked by a portscanner they are closed.
Appendix:
Now I have just noticed that port 80 is closed again, although the configuration of the router has not been changed.
The only thing I noticed was that the DSL connection had to be disconnected during the night. Here a new IP is assigned.
C'est la vie !
if you want to run FTP on port 1122 you need to run this in a terminal:
Note that the syntax is:
So if you leave empty the <ip-address> field before the comma, you are only binding the <port-number> and therefore it will listen on "all" ips:
start or restart pure-ftpd
Also the newer versions of pure-ftpd have a config file where the port can be set.
The information is here -> https://help.directadmin.com/item.php?id=579
_
Code: Select all
echo ",1122" > /etc/pure-ftpd/conf/BindCode: Select all
echo "<ip-address>,<port-number>" > /etc/pure-ftpd/conf/Bindstart or restart pure-ftpd
Also the newer versions of pure-ftpd have a config file where the port can be set.
The information is here -> https://help.directadmin.com/item.php?id=579
_
-
OscarTalks
- Posts: 2196
- Joined: Mon 06 Feb 2012, 00:58
- Location: London, England
Taking a quick look at TahrPup it has pure-ftpd version 1.0.22 which is rather old and I don't see a config file in the system, maybe I missed it.
In my remastered everyday pups I have pure-ftpd 1.0.47 at the moment which I compiled myself. That has config settings in the file /etc/pure-ftpd.conf and not in a sub-directory, but I am fairly sure these paths can be defined as something else at compile time if you so choose.
So you could try creating the file /etc/pure-ftpd.conf or maybe even /root/pure-ftpd.conf and see if it recognises any settings you put in that file. Otherwise compile a nice new one, making sure to configure the build with --sysconfdir=/etc included in your options.
As for getting the connections from the internet through to your pure-ftpd server, it is not just about having ports on the router open, they have to be forwarded via NAT to the correct IP address and port number on your LAN. This also means ensuring that the LAN IP address remains unchanged. Set up the machine with a static LAN IP address, then make sure your port forwarding is set in your router so that any connection to your external IP address and your chosen ftp Port Number is forwarded to that static LAN IP address and chosen ftp Port Number.
In my remastered everyday pups I have pure-ftpd 1.0.47 at the moment which I compiled myself. That has config settings in the file /etc/pure-ftpd.conf and not in a sub-directory, but I am fairly sure these paths can be defined as something else at compile time if you so choose.
So you could try creating the file /etc/pure-ftpd.conf or maybe even /root/pure-ftpd.conf and see if it recognises any settings you put in that file. Otherwise compile a nice new one, making sure to configure the build with --sysconfdir=/etc included in your options.
As for getting the connections from the internet through to your pure-ftpd server, it is not just about having ports on the router open, they have to be forwarded via NAT to the correct IP address and port number on your LAN. This also means ensuring that the LAN IP address remains unchanged. Set up the machine with a static LAN IP address, then make sure your port forwarding is set in your router so that any connection to your external IP address and your chosen ftp Port Number is forwarded to that static LAN IP address and chosen ftp Port Number.
Oscar in England
