I did a quick search in an attempt to find a/the answer but did not so…
Is there a way to get access to the performance graphs when I am not on my local network?
TIA
Take a look at Zerotier
The fastest and easiest way. I am using it since a couple of months and it works perfect.
It is a “private” VPN just between your devices. So you can access your local device from outside without the need to open any ports on your router.
You have the same access as if you would be in your local network.
I had also some concerns at the beginning, but they are gone after some testing.
It’s free for up to 50 devices or completely unlimited if you are hosting your own zerotier instance. But for this you would need a server
Thank you for the reply. Can you elaborate a bit on what of their services you used, how it works and how to configure?
It’s pretty much straight forward, first steps are documented in their KB:
Getting Started with ZeroTier - ZeroTier Knowledge Base - Confluence (atlassian.net)
- Create a ZeroTier account
- Install the zerotier client on all devices you want to cover (including the device you use to access the others)
- login to your zerotier account
- create a new network
- use the client command on your devices to connect to that network
- check the device overview in your zerotier account
- done
Your devices will get a virtual interface with a personal IP-Adress coming from your created network.
That means that all devices are able to talk to each other using that virtual and encrypted network.
As it is a full additional network, you can use all of the services provided by your devices. You only need to use the different IP adress
If you have concerns about security, you can disable the zerotier service and enable it only before you leave your local network.
But i have it enabled all the time. For the more paranoic users you can even host it by yourself, it’s open source.
Thank you. I did some more digging and it seems that I would need to do stuff such as the following?
I did not and it worked without issues.
I have simply installed Zerotier client on my two devices, my smartphone and my laptop.
Now i have access to my devices via Smartphone by simply using their Zerotier-IP adress.
I did not do any other steps as described in the starting guide i have linked.
What you documented might be required for clients not able to run the zerotier client. You can then use a raspberry as a “bridge”.
The raspberry does have two network adresses and can route the traffic to non-zerotier clients.
As the zerotier client works on Raspberries, the step is not required.
I could imagine that you will need that e.g. for devices without root access or something where no client is available, e.g. a NAS device
I’m too lazy to add and configure apps on each of the hosts on my local LAN. Instead I set a firewall authentication rule and an obscure 5 digit port on my router to forward graphs1090 inquiries to the appropriate RPi host. It took about a minute per host.
I use Splashtop. I am actually remoting into my PC right now and can view my network as I wish, such as responding to this forum question. I eventually upgraded from the free version to the business option since I outgrew my initial use. Through one PC, I have access to all of my RPis and other PCs on my network. It works like a charm!
I use to use the free TeamViewer option but they decided I was a business (I am not) and shut me off. Their business option was more pricey.
Best regards,
Fred
Did you ever try zerotier? Installation and adding it to a network is 30 seconds per host.
That’s more secure than open ports on a router.
It would take me longer to add zerotier software to each host than simply adding a line in my router configuration and a line in my bastion host for remote authentication. In addition I wouldn’t wish to open my network to a zerotier server about which I have no control.
you can self host the Zerotier Server - it’s open source
I was referring to your previous statement from 17 hours ago:
It took about a minute per host.
Zerotier is end-to-end encrypted and the source code is available. I do not see a reason to raise any security concerns. I would be more concerned on opening ports.
But it’s anyhow every individuals decision. I am stepping away from that discussion of principles
You are correct in that every network is unique. For me all traffic to/from my network is encrypted and must be authenticated by my bastion host before accessing my private network, FWIW I have 4 ports open for handling inbound traffic - web, email, ftp and voice. All except voice require a hardware token and pass phrase to connect. The bastion host acts as an intermediary to isolate my actual network.
I use TOR on my cell phone for web browsing.
This topic was automatically closed 365 days after the last reply. New replies are no longer allowed.