⇤ ← Revision 1 as of 2009-10-03 12:11:11
218
Comment:
|
1050
Add SSH over WAN instructions, useful packages
|
Deletions are marked like this. | Additions are marked like this. |
Line 8: | Line 8: |
== Enable SSH from WAN == Place into /etc/firewall.user: {{{#!highlight sh iptables --append input_wan --protocol tcp --dport 22 --jump ACCEPT }}} When SSH from WAN is enabled, it's probably a good idea to disable password logins via SSH (only public key authentication will be allowed): {{{#!highlight sh sed -i -e "s/'on'/'off'/" /etc/config/dropbear }}} will set PasswordAuth option to "off", making /etc/config/dropbear look like: {{{ config dropbear option PasswordAuth 'off' option Port '22' }}} == Useful packages == || '''Package''' || '''Use''' || || luci-app-ntpc || luci frontend for NTP. Will automatically pull in dependencies and start syncing device clock || || miniupnpd luci-app-upnp || Enable UPnP so ports in firewall can automatically be opened || |
Start service on boot
OpenWrt does not have update-rc.d or chkconfig. To start a service called service-name on boot, run:
1 /etc/init.d/service-name enable
Enable SSH from WAN
Place into /etc/firewall.user:
1 iptables --append input_wan --protocol tcp --dport 22 --jump ACCEPT
When SSH from WAN is enabled, it's probably a good idea to disable password logins via SSH (only public key authentication will be allowed):
1 sed -i -e "s/'on'/'off'/" /etc/config/dropbear
will set PasswordAuth option to "off", making /etc/config/dropbear look like:
config dropbear option PasswordAuth 'off' option Port '22'
Useful packages
Package |
Use |
luci-app-ntpc |
luci frontend for NTP. Will automatically pull in dependencies and start syncing device clock |
miniupnpd luci-app-upnp |
Enable UPnP so ports in firewall can automatically be opened |