Bengifuna ukubhala indatshana mayelana neskripthi sokusebenza ngekhamera ngephrothokholi ye-DVRIP isikhathi eside, kodwa ingxoxo ehlobene nezindaba zakamuva mayelana kungenze ukuthi ngiqale ngikhulume ngendlela engimisa ngayo ukubhekwa kwevidiyo ekhaya, bese ngidlulela emibhalweni nezinye izinto.
Sibe namaphakheji angu-2... Ngakho-ke, linda, lena akuyona indaba efanayo.
Besinamarutha angu-2 asuka ku-TP-LINK, ukufinyelela ku-inthanethi ngemuva komhlinzeki we-NAT, ikhamera yokugada ye-Partizan Angikhumbuli ukuthi iyiphi imodeli (noma iyiphi ikhamera ye-IP esekela i-RSTP phezu kwe-TCP noma i-DVRIP ezokwenza) kanye ne-VPS eshibhile yama-euro angu-4 nge- izici: 2 core CPU 2.4GHz, 4GB RAM, 300 GB HDD, 100 Mbit/s port. Futhi nokungabaza ukuthenga noma yini ngaphezu kwalokhu okungabiza ngaphezu kwentambo yesichibi.
Isibikezelo
Ngenxa yezizathu ezisobala, asikwazi nje ukudlulisela phambili amachweba ekhamera kumzila futhi sijabulele ukuphila, ngaphandle kwalokho, ngisho noma besingakwazi, akufanele sikwenze lokho.
Ngizwe ngokuluhlaza ukuthi kukhona ezinye izinketho nge-IPv6 tunneling, lapho kubonakala sengathi konke kungenziwa ukuze wonke amadivayisi akunethiwekhi athole ikheli le-IPv6 langaphandle, futhi lokhu kungenza izinto zibe lula, nakuba kusashiya ukuphepha. yalo mcimbi okukhulunywa ngawo , futhi ukusekelwa kwalesi simangaliso ku-firmware evamile ye-TP-LINK kuyinqaba ngandlela thile. Nakuba kungenzeka ukuthi emshweni odlule ngikhuluma umbhedo ophelele, ngakho ungakunaki nhlobo.
Kodwa, ngenhlanhla yethu, cishe noma iyiphi i-firmware yanoma iyiphi irutha (isitatimende esingenasisekelo empeleni) iqukethe iklayenti le-PPTP/L2TP noma ikhono lokufaka i-firmware yangokwezifiso ngayo. Futhi kusukela kulokhu singakwazi kakade ukwakha uhlobo oluthile lwesu lokuziphatha.
I-Topology
Ngibanjwe umkhuhlane, ingqondo yami yazala into efana nale mdwebo wezintambo:
futhi phakathi kokunye ukuhlasela ngayidweba ukuze ngiyibhale kuHabr
Ikheli elithi 169.178.59.82 lakhiqizwa ngokungahleliwe futhi lisebenza njengesibonelo kuphela.
Nokho, noma uma ngamazwi, ke:
- Umzila I-TP-LINK 1 (192.168.1.1), lapho kufakwa khona intambo ephuma odongeni. Umfundi othanda ukwazi uzoqagela ukuthi lena ikhebula lomhlinzeki engingena ngalo ku-inthanethi. Amadivayisi ahlukahlukene asekhaya axhunywe kule router nge-patch cord noma i-Wi-Fi. Lena inethiwekhi 192.168.1.0
- Umzila I-TP-LINK 2 (192.168.0.1, 192.168.1.200), lapho kufakwe khona ikhebuli ephuma kumzila we-TP-LINK 1. Ngenxa yale khebula, irutha ye-TP-LINK 2, kanye namadivayisi axhunywe kuyo, nawo anokufinyelela ku-inthanethi. Le router ilungiselelwe ngoxhumano lwe-PPTP (10.0.5.100) kuseva 169.178.59.82. IP Ikhamera 192.168.0.200 nayo ixhunywe kule router futhi izimbobo ezilandelayo zidluliselwa phambili
- 192.168.0.200:80 -> 49151 (webmord)
- 192.168.0.200:34567 -> 49152 (DVRIP)
- 192.168.0.200:554 -> 49153 (RTSP)
- Iseva (169.178.59.82, 10.0.5.1), lapho kuxhunywe khona irutha ye-TP-LINK 2. Iseva isebenzisa i-pptpd, shadowsocks kanye ne-3proxy, ongafinyelela ngayo amadivayisi kunethiwekhi ye-10.0.5.0 futhi kanjalo ube nokufinyelela kumzila we-TP-LINK 2.
Ngakho, wonke amadivayisi asekhaya kunethiwekhi ye-192.168.1.0 anokufinyelela kukhamera nge-TP-LINK 2 ku-192.168.1.200, futhi bonke abanye bangaxhuma nge-ppp, shadowsocks noma amasokisi5 futhi bafinyelele i-10.0.5.100.
Yenza ngokwezifiso
Isinyathelo sokuqala ukuxhuma wonke amadivaysi ngokomdwebo osesithombeni esingenhla.
- Ukusetha irutha ye-TP-LINK 1 kwehla ukuze kugcinwe ikheli 192.168.1.200 le-TP-LINK 2. Ongakukhetha uma udinga ikheli eligxilile ukuze ufinyelele kunethiwekhi ye-192.168.1.0. Futhi, uma uthanda, ungayigodla i-10-20 Mbit (i-10 yanele ukusakazwa kwevidiyo okukodwa kwe-1080).
- Udinga ukufaka futhi ulungiselele i-pptpd kuseva. Ngino-Ubuntu 18.04 futhi izinyathelo bezicishe zibe yilezi ezilandelayo (umnikeli ubeyisibonelo ):
- Faka amaphakheji adingekayo:
sudo apt install pptpd iptables-persistent - Sikuletha efomini elilandelayo
/etc/pptpd.conf
option /etc/ppp/pptpd-options bcrelay eth0 # ΠΠ½ΡΠ΅ΡΡΠ΅ΠΉΡ, ΡΠ΅ΡΠ΅Π· ΠΊΠΎΡΠΎΡΡΠΉ Π²Π°Ρ ΡΠ΅ΡΠ²Π΅Ρ Ρ ΠΎΠ΄ΠΈΡ Π² ΠΈΠ½ΡΠ΅ΡΠ½Π΅ΡΡ logwtmp localip 10.0.5.1 remoteip 10.0.5.100-200 - Siyahlela
/etc/ppp/pptpd-options
novj novjccomp nologfd name pptpd refuse-pap refuse-chap refuse-mschap require-mschap-v2 #require-mppe-128 # ΠΠΎΠΆΠ½ΠΎ ΡΠ°ΡΠΊΠΎΠΌΠΌΠ΅Π½ΡΠΈΡΠΎΠ²Π°ΡΡ, Π½ΠΎ ΠΌΠΎΠΉ TP-LINK c Π½ΠΈΠΌ Π½Π΅ Π΄ΡΡΠΆΠΈΡ ms-dns 8.8.8.8 ms-dns 1.1.1.1 ms-dns 77.88.8.8 ms-dns 8.8.4.4 ms-dns 1.0.0.1 ms-dns 77.88.8.1 proxyarp nodefaultroute lock nobsdcomp - Ukwengeza imininingwane ku
/etc/ppp/chap-secrets
# Secrets for authentication using CHAP # client server secret IP addresses username pptpd password * - Engeza ku
/etc/sysctl.conf
net.ipv4.ip_forward=1bese ulayisha kabusha i-sysctl
sudo sysctl -p - Qalisa kabusha i-pptpd futhi uyengeze ekuqaliseni
sudo service pptpd restart sudo systemctl enable pptpd - Siyahlela
iptables
sudo iptables -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT sudo iptables -A INPUT -p tcp -m tcp --dport 1723 -j ACCEPT sudo iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE sudo iptables --table nat --append POSTROUTING --out-interface ppp+ -j MASQUERADE sudo iptables -I INPUT -s 10.0.5.0/24 -i ppp+ -j ACCEPT sudo iptables --append FORWARD --in-interface eth0 -j ACCEPTFuthi ugcine
sudo netfilter-persistent save sudo netfilter-persistent reload
- Faka amaphakheji adingekayo:
- Isetha i-TP-LINK 2
- Sigcine ikheli 192.168.0.200 lekhamera yethu:
I-DHCP -> Ukubhukha Ikheli β Ikheli le-MAC β ikhamera ye-MAC, ingabukwa ku-DHCP -> Uhlu lwamaklayenti e-DHCP
- Ikheli le-IP eligodliwe - 192.168.0.200 - Izimbobo zokudlulisela:
Ukuqondisa kabusha -> Amaseva Abonakalayo - Imbobo yesevisi: 49151, Imbobo yangaphakathi: 80, ikheli le-IP: 192.168.0.200, Iphrothokholi: TCP
- Imbobo yesevisi: 49152, Imbobo yangaphakathi: 34567, ikheli le-IP: 192.168.0.200, Iphrothokholi: TCP
- Imbobo yesevisi: 49153, Imbobo yangaphakathi: 554, ikheli le-IP: 192.168.0.200, Iphrothokholi: TCP - Isetha uxhumano lwe-VPN:
Inethiwekhi -> WAN - Uhlobo lokuxhuma lwe-WAN: PPTP
- Igama lomsebenzisi: igama lomsebenzisi (bona /etc/ppp/chap-secrets)
- Iphasiwedi: iphasiwedi (bona /etc/ppp/chap-secrets)
- Qinisekisa iphasiwedi: iphasiwedi (bona /etc/ppp/chap-secrets)
- IP Dynamic
β Ikheli le-IP/Igama leseva: 169.178.59.82 (ngokusobala, i-IP yangaphandle yeseva yakho)
β Imodi yokuxhuma: Xhuma ngokuzenzakalelayo - Ngokuzithandela, sivumela ukufinyelela okukude kubuso bewebhu bomzila
Ukuphepha -> Ukuphathwa Kwerimothi - Ichweba lokuphatha iwebhu: 80
- Ikheli le-IP lokuphatha kude: 255.255.255.255 - Qalisa kabusha irutha ye-TP-LINK 2
- Sigcine ikheli 192.168.0.200 lekhamera yethu:
Esikhundleni se-PPTP, ungasebenzisa i-L2TP noma, uma une-firmware yangokwezifiso, khona-ke noma yini efiswa inhliziyo yakho. Ngikhethe i-PPTP, ngoba lolu hlelo alwakhiwe ngenxa yezizathu zokuphepha, futhi i-pptpd, ngokuhlangenwe nakho kwami, iseva ye-VPN esheshayo. Ngaphezu kwalokho, ngangingafuni ngempela ukufaka i-firmware yangokwezifiso, okusho ukuthi kufanele ngikhethe phakathi kwe-PPTP ne-L2TP.
Uma ngingenzanga iphutha noma kuphi encwadini, futhi wenze yonke into ngendlela efanele futhi waba nenhlanhla, emva kwakho konke lokhu kukhohlisa.
- okokuqala
ifconfigizobonisa interface
ppp0 inet 10.0.5.1 netmask 255.255.255.255 destination 10.0.5.100, - okwesibili, 10.0.5.100 kumele i-ping,
- futhi okwesithathu
ffprobe -rtsp_transport tcp "rtsp://10.0.5.100:49153/user=admin&password=password&channel=1&stream=0.sdp"Kufanele ibone ukusakaza.
Ungathola imbobo ye-rtsp, ukungena ngemvume nephasiwedi kumadokhumenti ekhamera yakho
isiphetho
Eqinisweni, lokhu akukubi, kukhona ukufinyelela ku-RTSP, uma isofthiwe yokuphathelene isebenza nge-DVRIP, ungayisebenzisa. Ungagcina ukusakaza usebenzisa i-ffmpeg, usheshise ividiyo izikhathi ezi-2-3-5, uyihlephule ibe yizicucu zehora, ukulayishe konke ku-Google Drayivu noma izinkundla zokuxhumana nokunye okuningi.
Angizange ngithande i-RTSP phezu kwe-TCP, ngoba ayizange isebenze kahle kakhulu, kodwa ngaphezu kwe-UDP, ngenxa yezizathu esingakwazi (noma singakwazi, kodwa angifuni ukukwenza) ukudlulisa uhla lwamachweba. lapho i-RTSP izophusha khona ukusakazwa kwevidiyo , ngeke kusebenze, ngibhale iskripthi esidonsa ukusakaza nge-TCP nge-DVRIP. Kwavela ukuthi izinzile.
Enye yezinzuzo zale ndlela ukuthi singathatha okuthile okusekela ikhwela le-2G esikhundleni serutha ye-TP-LINK 4, siyinike amandla ndawonye ngekhamera evela ku-UPS (okungangabazeki ukuthi izodinga enekhono elincane kakhulu kunalapho usebenzisa irekhoda), ngaphezu kwalokho, ukurekhodwa kudluliselwa cishe ngaso leso sikhathi kuseva, ngakho-ke noma abangeneleli bengena kusayithi lakho, ngeke bakwazi ukubamba ividiyo. Ngokuvamile, kukhona indawo yokuqondisa futhi konke kuncike kuphela emcabangweni wakho.
I-PS: Ngiyazi ukuthi abakhiqizi abaningi banikeza izixazululo zefu ezenziwe ngomumo, kodwa ngentengo zibiza cishe kabili njenge-VPS yami (engisenayo kakade i-3, ngakho-ke ngidinga ukwaba izinsiza endaweni ethile), nginikeze ukulawula okuncane kakhulu, futhi futhi. musa ikhwalithi egculisayo kakhulu.
Source: www.habr.com