[Olpc-france] [Server-devel] Accessing a XS server from the WAN

Martin Langhoff martin.langhoff at gmail.com
Sat Apr 24 22:31:54 EDT 2010


On Sat, Apr 24, 2010 at 6:18 AM, samy boutayeb <s.boutayeb at free.fr> wrote:
> OLPC France has managed to install 2 XS Servers.\

Cool!

> How do we manage to access to this server from the outside?

You can change the configuration of ssh to listen on the eth0 (WAN)
address. Create a non-root user account, and setup pubkey
authentication. Use that account to login, and then su to root.

If the IP address is dynamic, you can use a service like dyndns.
Install the appropriate script to run on cron or on ifup-post (dyndns
website has the documentation...)

This assumes your XS has a public IP address, and there are no
firewalls preventing access to port 22. IME, it is very likely that
your XS hasn't got a public IP address -- instead your ISP will have
it behind a NAT box.

In the case where the XS is behind a NAT box, you'll need to ssh out
from the XS to an intermediary server, having that outbound ssh
connection configured to setup a reverse ssh tunnel. The xs-callhome
script (included in the XS install) is a good example, but is
currently broken.

> As I am not a network expert

You might need a network expert then :-( right now this is not easy to
do. It's on my to-do list to make this easier, but that list is long
long long...

> Another
> issue is that the server keep invisible to an XO

Explain that problem in more detail. From any XO, once you are
associated to the right AP, you must be able to `ping schoolserver`.

> (even if IP addresses
> are assigned to the wireless interfaces mshbond0, mshbond1 and mshbond2,
> with 172.18.10.1, 172.18.12.1 and 172.18.14.1).

DO NOT DO THAT.

Do not change _any_ network settings on the XS, except for the eth0
configuration toget connected to the Internet. This setup isvery
specific, and we cannot really help if you change it.

cheers,


m
-- 
 martin.langhoff at gmail.com
 martin at laptop.org -- School Server Architect
 - ask interesting questions
 - don't get distracted with shiny stuff  - working code first
 - http://wiki.laptop.org/go/User:Martinlanghoff


More information about the Olpc-france mailing list