ProHoster > Blog > Utongi > Home vhidhiyo kuongorora. Scheme yekuchengeta dura revhidhiyo pasina registrar yepamba

Home vhidhiyo kuongorora. Scheme yekuchengeta dura revhidhiyo pasina registrar yepamba

Ndanga ndichida kunyora chinyorwa nezve script yekushanda nekamera kuburikidza neDVRIP protocol kwenguva yakati rebei, asi nhaurirano ine chekuita nenhau dzichangoburwa nezve. Xiaomi zvakandikurudzira kuti nditange ndataura nezve magadzirirwo andakaita vhidhiyo yekutarisa kumba, ndozoenda kune zvinyorwa nezvimwe zvinhu.

Takanga tine 2 mapakeji ... Saka, mirira, iyi haisi nyaya imwechete.
Takanga tine 2 routers kubva kuTP-LINK, Internet yekuwana kuseri kwemupi NAT, Partizan surveillance kamera Handiyeuke kuti ndeipi modhi (chero IP kamera inotsigira RSTP pamusoro peTCP kana DVRIP ichaita) uye VPS yakachipa ye4 euros ine maitiro: 2 core CPU 2.4GHz, 4GB RAM, 300 GB HDD, 100 Mbit / s port. Uye zvakare kusada kutenga chero chinhu mukuwedzera kune ichi chinodhura kupfuura chigamba tambo.

Foreword

Nezvikonzero zviri pachena, isu hatigone kungoendesa mberi kamera madoko pane router uye kunakidzwa nehupenyu, kunze, kunyangwe tikakwanisa, hatifanirwe kudaro.

Ndakanzwa kunze kwebhuruu kuti pane dzimwe sarudzo ne IPv6 tunneling, apo zvinoita sekunge zvese zvinogona kuitwa kuitira kuti zvese zvishandiso zviri panetwork zvigamuchire kero yekunze IPv6, uye izvi zvaizorerutsa zvinhu zvishoma, kunyangwe zvichisiya chengetedzo. yechiitiko ichi chiri mubvunzo, uye kutsigirwa kwechishamiso ichi mune yakajairwa TP-LINK firmware kune imwe nzira inoshamisa. Kunyangwe paine mukana wekuti mumutsara wapfuura ndiri kutaura zvisina maturo, saka usaite hanya nazvo zvachose.

Asi, tine rombo rakanaka kwatiri, ingangoita chero firmware kune chero router (chirevo chisina hwaro muchokwadi) chine PPTP/L2TP mutengi kana kugona kuisa tsika firmware nayo. Uye kubva pane izvi tinogona kutovaka imwe mhando yemaitiro maitiro.

Topology

Mukupisa kwefivha, uropi hwangu hwakabereka chimwe chinhu chakadai sedhiyagiramu yewaya:

uye pane kumwe kurwiswa ndakaidhirowa kuti ndiise pana HabrHome vhidhiyo kuongorora. Scheme yekuchengeta dura revhidhiyo pasina registrar yepamba

Kero 169.178.59.82 yakagadzirwa zvisina tsarukano uye inoshanda semuenzaniso chete.

Zvakanaka, kana kana mumashoko, zvino:

  • Nzira TP-LINK 1 (192.168.1.1), munopinzwa tambo inonamira kunze kwemadziro. Muverengi anobvunza anofungidzira kuti iyi ndiyo tambo yekupa iyo yandinoshandisa iyo Internet. Zvishandiso zvakasiyana-siyana zvekumba zvakabatana kune iyi router kuburikidza nechigamba tambo kana Wi-Fi. Iyi ndiyo network 192.168.1.0
  • Nzira TP-LINK 2 (192.168.0.1, 192.168.1.200), umo tambo inopinza inonamatira kunze kwe TP-LINK router 1. Nekuda kwetambo iyi, TP-LINK 2 router, pamwe chete nemichina yakabatana nayo, inokwanisawo kuIndaneti. Iyi router inogadziriswa ine PPTP yekubatanidza (10.0.5.100) kune server 169.178.59.82. IP Kamera 192.168.0.200 zvakare yakabatana kune iyi router uye madoko anotevera anoendeswa mberi.
    • 192.168.0.200:80 -> 49151 (webmord)
    • 192.168.0.200:34567 -> 49152 (DVRIP)
    • 192.168.0.200:554 -> 49153 (RTSP)
  • Sevha (169.178.59.82, 10.0.5.1), iyo iyo TP-LINK 2 router yakabatanidzwa. Sevha inoshandisa pptpd, shadowsocks uye 3proxy, kuburikidza nayo iwe unogona kuwana zvishandiso pane 10.0.5.0 network uye nokudaro kuwana TP-LINK 2 router.

Nokudaro, zvigadziriso zvose zveimba pa 192.168.1.0 network zvinokwanisa kuwana kamera kuburikidza neTP-LINK 2 pa 192.168.1.200, uye vamwe vose vanogona kubatanidza kuburikidza ne pptp, shadowsocks kana socks5 uye kuwana 10.0.5.100.

kuchinja

Nhanho yekutanga ndeyekubatanidza zvishandiso zvese zvinoenderana nedhiyagiramu iri pamufananidzo uri pamusoro.

  • Kugadzirisa TP-LINK 1 router kunouya pasi kuti uchengetedze kero 192.168.1.200 yeTP-LINK 2. Optional kana uchida kero yakagadziriswa yekuwana kubva kune 192.168.1.0 network. Uye, kana uchida, unogona kuchengetera 10-20 Mbit yayo (gumi inokwana imwe 10 vhidhiyo rwizi).
  • Iwe unofanirwa kuisa uye kugadzirisa pptpd pane server. Ndine Ubuntu 18.04 uye matanho angave anotevera (anopa aive muenzaniso blog.xenot.ru/bystraya-nastrojka-vpn-servera-pptp-na-ubuntu-server-18-04-lts.fuck):
    • Isa mapakeji anodiwa: 
      sudo apt install pptpd iptables-persistent
    • Isu tinoiunza kune inotevera fomu

      /etc/pptpd.conf

      option /etc/ppp/pptpd-options
bcrelay eth0 # Π˜Π½Ρ‚Π΅Ρ€Ρ„Π΅ΠΉΡ, Ρ‡Π΅Ρ€Π΅Π· ΠΊΠΎΡ‚ΠΎΡ€Ρ‹ΠΉ ваш сСрвСр Ρ…ΠΎΠ΄ΠΈΡ‚ Π² ΠΈΠ½Ρ‚Π΅Ρ€Π½Π΅Ρ‚Ρ‹
logwtmp
localip 10.0.5.1
remoteip 10.0.5.100-200

    • Tinogadzirisa

      /etc/ppp/pptpd-options

      novj
novjccomp
nologfd

name pptpd
refuse-pap
refuse-chap
refuse-mschap
require-mschap-v2
#require-mppe-128 # МоТно Ρ€Π°ΡΠΊΠΎΠΌΠΌΠ΅Π½Ρ‚ΠΈΡ€ΠΎΠ²Π°Ρ‚ΡŒ, Π½ΠΎ ΠΌΠΎΠΉ TP-LINK c Π½ΠΈΠΌ Π½Π΅ Π΄Ρ€ΡƒΠΆΠΈΡ‚

ms-dns 8.8.8.8
ms-dns 1.1.1.1
ms-dns  77.88.8.8
ms-dns 8.8.4.4
ms-dns 1.0.0.1
ms-dns  77.88.8.1

proxyarp
nodefaultroute
lock
nobsdcomp
    • Kuwedzera magwaro ku

      /etc/ppp/chap-secrets

      # Secrets for authentication using CHAP
# client	server	secret			IP addresses
username pptpd password *
    • Wedzera kune

      /etc/sysctl.conf

      net.ipv4.ip_forward=1

      uye rodha zvakare sysctl

      sudo sysctl -p
    • Reboot pptpd uye woiwedzera kune yekutanga 
      sudo service pptpd restart
sudo systemctl enable pptpd
    • Tinogadzirisa

      iptables

      sudo iptables -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
sudo iptables -A INPUT -p tcp -m tcp --dport 1723 -j ACCEPT
sudo iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
sudo iptables --table nat --append POSTROUTING --out-interface ppp+ -j MASQUERADE
sudo iptables -I INPUT -s 10.0.5.0/24 -i ppp+ -j ACCEPT
sudo iptables --append FORWARD --in-interface eth0 -j ACCEPT

      Uye chengetedza

      sudo netfilter-persistent save
sudo netfilter-persistent reload
  • Kumisikidza TP-LINK 2
    • Isu tinochengeta kero 192.168.0.200 yekamera yedu:

      DHCP -> Kero Reservation - MAC kero - MAC yekamera, inogona kutariswa muDHCP -> Rondedzero yeDHCP vatengi
      - Yakachengetedzwa IP kero - 192.168.0.200

    • Kutumira zviteshi:
      Redirection -> Virtual Servers - Chiteshi chebasa: 49151, Chiteshi chemukati: 80, IP kero: 192.168.0.200, Protocol: TCP
      - Chiteshi chebasa: 49152, Chiteshi chemukati: 34567, IP kero: 192.168.0.200, Protocol: TCP
      - Chiteshi chebasa: 49153, Chiteshi chemukati: 554, IP kero: 192.168.0.200, Protocol: TCP
    • Kugadzira VPN yekubatanidza:

      Network -> WAN -WAN yekubatanidza mhando: PPTP
      - Zita rekushandisa: zita rekushandisa (ona /etc/ppp/chap-secrets)
      - Password: password (ona /etc/ppp/chap-secrets)
      -Simbisa password: password (ona /etc/ppp/chap-secrets)
      -Dynamic IP
      - IP kero/Zita reSevha: 169.178.59.82 (zviri pachena, iyo yekunze IP yeserver yako)
      - Yekubatanidza maitiro: Batanidza otomatiki

    • Sarudzo, isu tinobvumira kure kure kune iyo router yewebhu kumeso
      Chengetedzo -> Remote Management - Webhu manejimendi port: 80
      - Remote management IP kero: 255.255.255.255
    • Dzorerazve TP-LINK 2 router

Panzvimbo yePPTP, unogona kushandisa L2TP kana, kana uine tsika firmware, saka chero mwoyo wako unoda. Ndakasarudza PPTP, sezvo chirongwa ichi chisina kuvakwa nekuda kwezvikonzero zvekuchengetedza, uye pptpd, mune yangu ruzivo, ndiyo inokurumidza VPN server. Uyezve, ini ndakanga ndisingadi kuisa tsika firmware, izvo zvaireva kuti ndaifanira kusarudza pakati pePPTP neL2TP.

Kana ndisina kukanganisa chero kupi zvako mugwaro, uye iwe wakaita zvese nemazvo uye uine rombo rakanaka, saka mushure mezvose izvi manipulations.

  • mukutanga 
    ifconfig

    icharatidza interface ppp0 inet 10.0.5.1 netmask 255.255.255.255 destination 10.0.5.100,

  • chechipiri, 10.0.5.100 inofanira ping,
  • uye chechitatu 
    ffprobe -rtsp_transport tcp "rtsp://10.0.5.100:49153/user=admin&password=password&channel=1&stream=0.sdp"

    Inofanirwa kuona rwizi.
    Iwe unogona kuwana iyo rtsp port, login uye password mune zvinyorwa zvekamera yako

mhedziso

Muchidimbu, izvi hazvina kuipa, kune mukana weRTSP, kana proprietary software inoshanda kuburikidza neDVRIP, saka unogona kuishandisa. Iwe unogona kuchengetedza rukova uchishandisa ffmpeg, kumhanyisa vhidhiyo 2-3-5 nguva, kuipwanya kuita zvidimbu zveawa-refu, kurodha zvese kuGoogle Drive kana masocial network uye zvakawanda, zvakawanda.

Ndakanga ndisingadi RTSP pamusoro peTCP, nokuti haina kushanda yakagadzikana, asi pamusoro peUDP, nezvikonzero zvatisingakwanisi (kana kuti tinogona, asi ini handidi kuzviita) mberi kwehuwandu hwezvikepe. kuburikidza neiyo RTSP ichasundira vhidhiyo rukova, haizoshande, ndakanyora script inokwevera rukova pamusoro peTCP kuburikidza neDVRIP. Zvakazove zvakatsiga.

Imwe yemabhenefiti eiyo nzira ndeyokuti isu tinogona kutora chimwe chinhu chinotsigira 2G muridzo panzvimbo yeTP-LINK 4 router, simba iyo yese pamwe chete nekamera kubva kuUPS (iyo pasina mubvunzo ichada yakanyanya kushoma capacious kupfuura apo. uchishandisa rekodhi), uyezve, kurekodha kunofambiswa ipapo ipapo kune sevha, saka kunyangwe kana vapambi vakapinda, havazokwanise kubata vhidhiyo. Kazhinji, pane nzvimbo yekufambisa uye zvese zvinoenderana chete nemafungiro ako.

PS: Ndinoziva kuti vagadziri vazhinji vanopa yakagadzirira-yakagadzirwa gore mhinduro, asi mumutengo iwo anodhura zvakapetwa kaviri seVPS yangu (iyo yandinayo 3, saka ndinoda kugovera zviwanikwa kumwe kunhu), kupa hutongi hushoma, uye zvakare. usanyanya kugutsa mhando.

Source: www.habr.com

Voeg