What is Intranet penetration
Intranet penetration, also known as NAT penetration, enables the packets with a specific source IP address and source port number to be routed to the Intranet host without being masked by the NAT device. Generally speaking, Intranet penetration means that two computers are in different Lans, and the extranet and Intranet computer nodes need to communicate with each other. Therefore, Intranet penetration technology, also known as NAT penetration, is required to solve this problem. Existing software that we may have used, such as TeamView and QQ Remote Connection, are implemented based on Intranet penetration.
Usage scenarios
1. To develop a wechat public account, you may run a local service and have not been online yet, but need to debug. Debugging requires a domain name accessible to the public network. But generally speaking, the Internet can’t access your local services. At this time, this function can be realized through a public network server through port forwarding. 2. Weekend at home, suddenly received a notice, to run a server script, or change a code, script or code in the company’s Intranet server, how to access at home? At this point we can use SSH tunnel agent.
Case 1: NgrokOther reference
Ngrok is a reverse proxy software that establishes a channel between the public server and the local client. The public server assigns a unique domain name to the channel. After running Ngrok in Homestead, the domain name assigned by the public server can access the site in Homestead on the public network, so that alipay and wechat Pay servers can directly send the callback data to the corresponding callback interface.
- Register address Click register
- Download the corresponding file after registration
- I use it on a MAC. I download a zip file and unzip it
1. Unpack the
unzip /path/to/ngrok.zip
Copy the code
2. Configure permission verification (provided after authToken registration)
./ngrok authtoken xxxxxx
Copy the code
3. Start and view help
/ngrok HTTP 80, -host-header indicates your local domain name. -region us indicates the proxy address of the United States. 80 stands for port 80. # HTTP is the connection protocol, ngrok http-host-header =shop. test-region us 80Copy the code
- Proxy local port 80
./ngrok HTTP 80 ngrok by @inconshreveable (Ctrl+C to quit) Session Status online # Account name Account [email protected] (Plan: Free) Version 2.3.40 # Region United States (US) # Region United States (US) # Web Interface http://127.0.0.1:4040 # This is the proxy address, Forwarding http://14a4-222-129-1-243.ngrok.io -> http://localhost:80 Forwarding https://14a4-222-129-1-243.ngrok.io -> http://localhost:80 Connections TTL OPN RT1 RT5 P50 P90 00 0.00 0.00 0.00 0.00Copy the code
- Let’s go to the Web address and see, it’s port 4040
-
At this point we request an address discovery error saying that my port 80 is inaccessible because port 80 is not enabled
-
The console information is as follows
- So let’s use GO to write a simple HTTP service that can be used, 20 lines of code. The following code
package main import ( "io" "log" "net/http" ) /** * @Description: Write a simple version of the Web service */ func main() {http.handlefunc ("/",Hello)// Specify the route handling err:= HTTP.listenAndServe (":8889",nil)// Set up the port listening service if err ! Fatal("ListenAndServe Error :",err)}} // Return Hello world func hello (w http.ResponseWriter,req *) Http.request) {IO.WriteString(w," tech bug says :hello word\n")}Copy the code
- Our program is listening on port 8889, so let’s have a look
- Next we proxy ngrok to port 8889
- It can correspond to 8889 normally
Case 2: SSH Intranet penetration
-
To restore as much as possible, I created an Ubuntu virtual machine on my computer, and my computer (LocalA MacOS) and ubuntu(LocalB) virtual machine networks could not communicate
-
A server with a separate IP (RemoteC) that my computer can access and my virtual machine can access
-
Let’s start with a simple version of local port forwarding (executed by LocalA)
SSH -l 2222:localhost:22 [email protected] // When local port 2222 is accessed, the request is forwarded to port 22 of RemoteC, You need to enter the RemoteC password guofu@guofu-Inspiron-3558 ~ $SSH -p 2222 root@localhost root@localhost's password: Need to input the password of RemoteC, because 2222 was forwarded to 22 of 124Copy the code
- Let’s look at a remote interface forward (LocalB execution)
SSH -r 8080:localhost:80 [email protected] # RemoteC will be forwarded to port 80 of LocalB, which is the implementation of ngrokCopy the code
- Access port 8080 at RomoteC
- Here’s another example where I access port 22 of LocalB via RemoteC
1. Run the command in LocalB
Guofu @ guofu: ~ $SSH - fNTCR localhost: 2222: localhost: [email protected] # 22 when RemoteC access port 2222, will be forwarded to the LocalB port 22, You need to enter the root password of RemoteCCopy the code
2. Then we log in to RemoteC and visit port 2222 to see if it can be forwarded to port 22 of LocalB. It shows that we have entered the Ubuntu machine
[root@iZ2ze32d6gy2re63vx8froZ ~]# ssh -p 2222 guofu@localhost guofu@localhost's password: Welcome to Ubuntu 18.04.5lts (GNU/Linux 4.15.0-132-generic x86_64) * Documentation: https://help.ubuntu.com * Management: https://landscape.canonical.com * Support: https://ubuntu.com/advantageCopy the code
- Or we can access RemoteC’s 2222 port directly from LocalA, or we can log in to LocalB’s service directly
SSH -p 2222 [email protected]Copy the code
Other options
Other mature services, such as FRP, Dragonfly mapping, NATApp, etc., are available for further information
summary
This article simply shows the implementation scheme of Intranet penetration, but in practical application, we need to pay attention to the security problems caused by Intranet penetration and the continuous connection of services. You can refer to this article