Raspberry pie intranet penetration construction and maintenance

 

pi

 

summary

As the title , We are mainly talking about the use of The net cloud wears the official Provide the intranet penetration function to visit the website of raspberry pie on the Internet , And by ssh Remote management .

Raspberry pie

Raspberry pie is based on Broadcom arm A microcomputer with processor architecture , The price is low , The latest version is 4B, I used 3B+, It was about 200 yuan at that time .

3B + The configuration of the version is as follows ：

1. Main frequency 1.4GHz,64 position 4 Nuclear ARM Cortex-A53 CPU
2. 1GB LPDDR2 Memory
3. 2.4GHz and 5GHz IEEE802.11.b/g/n/ac wireless network adapter , bluetooth 4.2
4. 4 individual USB2.0
5. HDMI

This configuration runs a static website is more than enough , After all, Alibaba cloud is cheap 1 nucleus 1G nothing more （ The main frequency will be a little higher ）.

Station building

nginx

The raspberry pie officially provides a basis for Debian Of Raspberry Pi OS, So the installation software is familiar with you Ubuntu equally , First installation nginx As web server：

sudo apt install nginx

After installation, start ：

	# start-up nginx, No output means successful startup
	sudo nginx
	# You can also take the initiative to view the process
	ps -ef | grep nginx

Looking at the process output looks like this ：

 

nginx

 

Default nginx There are configuration files that take effect directly , You can access the local area network of raspberry pie through the browser ip, For example, mine is  192.168.199.175, You can see this page , It means web server Normal service has been provided .

 

browser

 

If you need to access your own website files , Change it nginx The configuration file of .

The cloud penetrates the intranet

The website already has , The next step is to configure intranet penetration for external network access .

stay The cloud goes through the official website Buy the tunnel and set the penetration protocol to Http (s). The intranet port is installed on it nginx The port of , The default is 80, You can make adjustments by modifying the configuration file , You can configure it here .

 

image-20200802160920441

 

After confirmation, the console will generate token , Copy down .

 

image-20200802161617631

 

Then install the cloud piercing client , It says raspberry pie is arm Architecture processor , So download arm Version of the cloud piercing Software , Log in to the console and you can see that ：

 

arm

 

Copy the link address , Execute the following command ：

	# Use wget
	wget http://xiaomy.net/download/linux/wyc_linux_arm && chmod a+rwx wyc_linux_arm
	# Use curl, One out of two
	curl -O http://xiaomy.net/download/linux/wyc_linux_arm && chmod a+rwx wyc_linux_arm

After the execution is completed, the client of netcloud wear is installed , Next, start the software , Execute the following command ：

./wyc_linux_arm -token The token recorded on it

You can see the following output ：

 

image-20200802161927244

 

The Internet address is also available , Access the Internet domain name directly in the browser ：

 

image-20200802164648416

 

It's that simple , The website inside raspberry pie can be accessed by the Internet .

Operation and maintenance

Is the website finished when it's up and running ？ Of course not. , Follow up may also need to face website update 、 Software update 、 Service restart, etc , These things can only be operated by remote management , That's what this part is about ： adopt ssh Operation and maintenance management of raspberry pie .

In fact, in the process of building the site, we have installed some software on raspberry pie , This process is ssh Connection operation , And now all we have to do is ssh Visit the Internet address to connect to raspberry pie .

Again, the tunnel should be opened first , This configuration penetration protocol is tcp, The intranet port is sshd The port of , The default is 22 Number , Of course, it can also be modified through the configuration file , Just be consistent .

 

image-20200802180254686

 

After determining , The following information will be generated , Record the Internet port 、 Domain names and tokens ：

 

image-20200802165049924

 

also Start again A cloud penetrating client , Use the password you just recorded , This time an external address with a port will be generated .

./wyc_linux_arm -token The token recorded on it

Finally, you can connect raspberry pie on other machines with the following command ：

ssh -p Outside the network port pi@ domain name

This enables remote management of raspberry pie .

summary

Two tunnels were opened through the net cloud , That is to achieve the Internet access to the website , It also realizes remote management .

You may ask , Is it necessary to do this ？ It's better to buy a cloud server ！

I personally think the biggest cost of building a website is cloud server , Personal websites use 1 nucleus 1G Plus 1Mbps Bandwidth is usually enough . Take Alibaba cloud for example , Price per year 500 about . I started the server with this configuration hadoop It's hard work .

 

image-20200802171642110

 

And it's much cheaper to wear transparent intranet , We can choose higher bandwidth according to the situation of the website . And you can bind your own domain name , The server doesn't need to be filed , Outsiders don't look different from cloud servers .

 

image-20200802171803166

 

Of course, it's obviously unfair , Because we need to provide our own computers for intranet penetration 、 Electricity and energy . All in all, the cost may be about the same , But in theory, we control the performance of computers , It's much more playable , Isn't life just about tossing ？

Last , Thank you very much for the free program provided by netcloud .