banner
Antares

Antares

HomeArchives

How to Build an Intranet Mapping Tunnel Using Cloud Server

#内网映射#云服务器26
AI Translation
This post is translated from Chinese into English through AI.View Original
AI-generated summary
The document discusses the installation and setup of the frp (Fast Reverse Proxy) server and client for achieving internal network penetration. It highlights the challenges users face when installing clients and introduces the luckjiawei/frpc-desktop project as a user-friendly alternative. ### Server Installation Steps: 1. **Preparation**: Requires two projects: luckjiawei/frpc-desktop (client) and fatedier/frp (server). 2. **File Upload**: Connect to the server and upload the frp server files. 3. **Configuration**: Modify the `frps.toml` file to set the server port and authentication token. 4. **Start Server**: Launch the server using the command `./frps -c ./frps.toml`. 5. **Service Setup**: Create a systemd service file to enable automatic startup on boot. ### Firewall Configuration: Open the necessary ports (7000 and the target ports) in the server's firewall. ### Client Installation: The client installation on Windows is straightforward. After installation, connect to the server using the specified address, port, and authentication token. ### Final Notes: The setup allows users to access internal services externally, and the server will be available for free use until January next year, with the address and token provided.

Preface#

I actually did this content a year ago, (previously written), and after setting it up, I also let my friends use it. In practice, I found that having users install the client themselves or adding the client as a service is quite troublesome for users; there is a certain threshold, and it's not very convenient. While browsing Interesting Open Source Community - HelloGitHub these days, I discovered a pretty good frp client project—luckjiawei/frpc-desktop: frp cross-platform desktop client, visual configuration, easily achieve intranet penetration! Supports all frp versions. I took a quick look, the interface is quite nice, and the operation is not complicated, OK, it's you.

Server Installation#

Preparation#

This setup requires two open-source projects

  1. luckjiawei/frpc-desktop: frp cross-platform desktop client, visual configuration, easily achieve intranet penetration! Supports all frp versions
    frp cross-platform desktop client
  2. fatedier/frp: A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
    frp server
    The files to download are as follows
  3. frp server
    frp server
  4. frp client
    frp client

Install frp Server#

  1. Connect to the server and upload the server files. I used Xftp 8 and Xshell 8 to connect to the server.
    Upload files
  2. Switch to the corresponding path and unzip the files
    cd /home/frp
    tar -zxvf frp_0.64.0_linux_amd64.tar.gz
    After unzipping, rename the folder for easier path input later. The frps.toml is the server's configuration file, and frps is the server binary program.
    Files after unzipping
  3. Modify the configuration file
    vim frps.toml
    Modify configuration file
    Press i to start typing, ESC then type to exit editing 
    bindPort = 7000 # Server port
auth.method = "token" # Use token for authentication 
auth.token = "[email protected]" # Token, must match between client and server for successful connection. Recommended to configure it to be more complex.
  4. Start the server
    ./frps -c ./frps.toml
    Start server
  5. Add frp as a service and enable it to start on boot
    1. Press CTRL+C to interrupt the process
    2. Create frps.service file sudo vim /etc/systemd/system/frps.service
    3. Write the content
      Write content
    [Unit]
# Service name, can be customized
Description = frp server
After = network.target syslog.target
Wants = network.target

[Service]
Type = simple
# Command to start frps, must change to your frps installation path
ExecStart = /path/to/frps -c /path/to/frps.toml

[Install]
WantedBy = multi-user.target
    1. Start frp and set it to start on boot
    # Start frp
sudo systemctl start frps
# Stop frp
sudo systemctl stop frps
# Restart frp
sudo systemctl restart frps
# Check frp status
sudo systemctl status frps
Set frps to start on boot
sudo systemctl enable frps
    When you see two enabled and active (running), it means it is running normally.
    Check frp status

Enable Firewall#

I am using Alibaba's cloud server, go to Alibaba's console to enable the firewall. Here, you need to open port 7000 and the target port you need to map. I opened all ports from 50000 to 60000.
Enable firewall
Enable firewall

Install frp Client#

The installation of the client on Windows is quite convenient; just keep clicking next.
After installation, you need to connect to the server.

  1. Download the corresponding frp version in the settings. My server uses 0.64.0, so I am also using 0.64.0 here. If the language is not Chinese, you can switch the language at the bottom.
    Download corresponding frp version
    Download corresponding frp version
  2. Enter the server address, port, select token for authentication, and then input the token set earlier.
    Settings
  3. Set up the tunnel
    Choose the proxy type you need, the internal address, and the ports on both sides. I will continue to use mc as an example.
    Set up tunnel
  4. After setting up, start frp to use it.
    Set up tunnel

The final effect is as follows#

Final effect
Final effect
Final effect

Reference tutorials are as follows#

  1. Easily master popular intranet penetration tools: quickly achieve external access to intranet services
  2. Installation | frp

Conclusion#

The frp set up on this server is available for everyone to use for free, and the server will expire in January next year.
Address: 8.137.70.233
Port: 7000
Key: [email protected]

Loading...
Ownership of this post data is guaranteed by blockchain and smart contracts to the creator alone.