Posts tagged SSH

Install SSLH on your Synology DiskStation

9

sslhYou’re in an office or using public wifi and ports other than 53, 80 and 443 are blocked. How to SSH or VPN to your DiskStation? SSLH provides a solution for this, by acting as a proxy listening on port 443 and passing the traffic to deamons like SSHd, Apache or OpenVPN. The SSLH package is available in the SynoCommunity repository but manual work needs to be done to get it working.

By default, Apache on the Synology listens on port 443 without binding to an IP-address or interface. The first step would be to change the configuration so Apache listens on port 443 on localhost only. SSH to the DiskStation and change the configuration in these 3 files:

  • /etc/httpd/conf/extra/httpd-ssl.conf
  •  /etc/httpd/conf/extra/httpd-ssl.conf-sys
  •  /etc/httpd/conf/extra/httpd-ssl.conf-user

This can be done recursively with sed:

mkdir /root/http-backup
cp -a /etc/httpd/conf/extra/httpd-ssl.conf* /root/http-backup/
sed -i 's/*:443/127.0.0.1:443/g' /etc/httpd/conf/extra/httpd-ssl.conf*

Now change the configuration of SSLH. By default, de service listens on port 3000. The configuration file can be found in /usr/local/sslh/var/sslh.cfg. Also change your host (0.0.0.0) to the IP-address of the Synology. In case you use multiple interfaces, the interface to your router should be the one.

When done, reboot your Synology DiskStation and test if https, ssh and/or OpenVPN works via port 443.

Enable SSH and SNMP on ESXi 5.1

8

This is a short tutorial on how to enable SNMP om your ESXi (v5.1) box the easy way, so you can add it in your favorite monitoring tools like Zabbix, Observium, PRTG, etc. You can do this on the console, but if your server is located in the data center and you don’t have KVM-access this will help you. First of all enable SSH on your box.

Enabling SSH on ESXi

  1. Connect with the vSphere client to your node
  2. Go to the configuration tab, then select Security Profile
  3. Select Properties with Services, then select SSH Server
  4. Click Options and select Start and Stop with host
  5. Click the Start button once to start the service for now

Opening the firewall to allow SSH connections

  1. Connect with the vSphere client to your node
  2. Go to the configuration tab, then select Security Profile
  3. Select Properties with Firewall, then select SSH Server
  4. Click SSH Server, select Firewall and allow an IP-range

You’ll get an annoying alert on the Summary tab of the vSphere client. To suppress this warning, go back to the Configuration tab and select Advanced Settings. Select UserVars and find UserVars.SuppressShellWarning. Set this value to 1. You’re done enabling SSH remotely. Now let’s configure SNMP.

To enable SNMP, SSH to your ESXi box. Windows users can use PuttY, Linux and Mac users the native Terminal. Log in as root@your.hostname.tld and enter the password. Paste these commands to the command-line of your ESXi box:

esxcli system snmp set -c public
esxcli system snmp set -l warning
esxcli system snmp set -e yes

That’s it. Both SSH and SNMP are enabled now.

Compileren en back-ups maken…

0

…doe je niet tegelijk. Dat schiet namelijk niet echt op. En ik wil naar bedje toe slapen. Maar vol spanning, wil ik nog even het nieuwe buildscript testen voor DirectAdmin. Multicore CPU support, dus PHP en Apache zullen sneller zijn. In de volgende release van custombuild zal hij vrijgegeven worden.

ScreenHunter_01 Sep. 08 03.13

Systeembeheer * 4

3

Lekker servers aan het updaten. Gewoon per 4 tegelijk, hoppa. Lekker 4* 60 euro per uur verdienen. Tegen niemand zeggen he :-). Mijn quadcore hersens werken dus goed. Binnenkort de laatste servers eens in Puppet zetten opdat deze ook volledig eautomatiseerd zijn. Configuration management r0x.

milti_ssh

Go to Top