Posted: Fri Mar 15, 2024 15:35 Post subject: Remote Access using DDNS - multiple stations
Hello all,
I am trying to get remote access, preferably GUI to all of my WDS AP and Stations. The WDS AP is running the inadyn to update FreeDNS. I can get into it remotely. How can I configure the main router's firewall to pass through connections to the stations, Port Forwarding, etc?
I enabled remote access on a different port number on one of the stations, then portforwarded that port to the stations internal IP address. It didn't work.
Posted: Fri Mar 15, 2024 19:39 Post subject: Wireguard
How does Wireguard allow me to remote into my various routers (see signature)?
I want to be able to type in an URL and a port number and get access to all of my routers from anywhere. _________________ Before asking a question on the forums, update dd-wrt: Where do I download firmware? I suggest reading it all.
QCA Best WiFi Settings
Some dd-wrt wiki pages are up to date, others are not. PM me if you find an old one.
Atheros:
Netgear R7800 x3 - WDS AP / station, gateway, QoS
TP-Link Archer C7 v2 x2 - WDS Station
TP-Link TL-WDR3600 v1 - WDS Station
TP-Link 841nd v8 - NU
D-Link 615 C1/E3/I1 x 7 - 1 WDS station
D-Link 825 B1 - NU
D-Link 862L A1 x2 - WDS Station
Netgear WNDR3700v2 - NU
UBNT loco M2 x2 - airOS
Broadcom
Linksys EA6400 - Gateway, QoS
Asus N66U - AP
Netgear WNDR3700v3 - not used
MediaTek
UBNT EdgeRouter X - switch
This is easily done via ssh and ssh tunneling
on the other side of the world you only need a device that supports it.
It also works with Wireguard but is a bit more complicated to configure.
So here is a short introduction to ssh.
the only thing you need is ssh access via ssh key to a device that is in the LAN / network.
via this device you can access all other devices and ports via tunnel.
ssh -L1600:192.168.12.109:80 -Nv root@ian5142.freedns.org -p 22
-L1600 # lokal port on your device
192.168.12.109:80 # the destination address to be reached
So the above stuff is run on the main router. But the internal IP can be one of the other routers I want to log into.
ho1Aetoo wrote:
after the tunnel has been established, enter 127.0.0.1:1600 in your web browser and you will land on the WebIF of 192.168.12.109
This is what is input in the webbrowser on any other network? The computer will not be on the same local network as the main router, or any of the stations. _________________ Before asking a question on the forums, update dd-wrt: Where do I download firmware? I suggest reading it all.
QCA Best WiFi Settings
Some dd-wrt wiki pages are up to date, others are not. PM me if you find an old one.
Atheros:
Netgear R7800 x3 - WDS AP / station, gateway, QoS
TP-Link Archer C7 v2 x2 - WDS Station
TP-Link TL-WDR3600 v1 - WDS Station
TP-Link 841nd v8 - NU
D-Link 615 C1/E3/I1 x 7 - 1 WDS station
D-Link 825 B1 - NU
D-Link 862L A1 x2 - WDS Station
Netgear WNDR3700v2 - NU
UBNT loco M2 x2 - airOS
Broadcom
Linksys EA6400 - Gateway, QoS
Asus N66U - AP
Netgear WNDR3700v3 - not used
MediaTek
UBNT EdgeRouter X - switch
WG server running on WDS AP (R7800 55363) and WG Client on Phone
I can access all WDS Stations as well as Bdcm Repeater that is connected to it
by typing IP in browser on that phone.
Joined: 18 Mar 2014 Posts: 12923 Location: Netherlands
Posted: Sat Mar 16, 2024 6:50 Post subject: Re: Remote Access using DDNS - multiple stations
ian5142 wrote:
Hello all,
I am trying to get remote access, preferably GUI to all of my WDS AP and Stations. The WDS AP is running the inadyn to update FreeDNS. I can get into it remotely. How can I configure the main router's firewall to pass through connections to the stations, Port Forwarding, etc?
I enabled remote access on a different port number on one of the stations, then portforwarded that port to the stations internal IP address. It didn't work.
Any ideas?
Check you port forwarding rules with:
`iptables -vnL FORWARD` and `iptables -vnL -t nat`
after the tunnel has been established, enter 127.0.0.1:1600 in your web browser and you will land on the WebIF of 192.168.12.109
This is what is input in the webbrowser on any other network? The computer will not be on the same local network as the main router, or any of the stations.
Yes, no matter where it's always the same.
a tunnel is established between an ssh server and the tunnel is connected to a local port on your computer 127.0.0.1:XYZ
Authenticated to 192.168.1.1 ([192.168.1.1]:22).
debug1: Local connections to LOCALHOST:1600 forwarded to remote address 192.168.1.2:80
debug1: Local forwarding listening on ::1 port 1600.
debug1: channel 0: new [port listener]
debug1: Local forwarding listening on 127.0.0.1 port 1600.
debug1: channel 1: new [port listener]
debug1: Entering interactive session.
debug1: pledge: network
This is now in my local lan because I don't want to show public IP addresses, but it works the same way over the public network
pretty simple and a proven admin tool for decades
PS: this is a connection to my gateway (192.168.1.1) and forwarded to the WebIF of my WAP (192.168.1.2)