Learned the simple explanation of intranet penetration (intranet accesses intranet through internet) and how to use intranet penetration to access private cloud disks through internet,

When we deploy the cloud disk, we often consider the scenario of using the Internet connection. Unicom, which is not limited to the local area network, will explore how to build an Internet penetration network setup test environment today: system software: Ubuntu 20.04 LTS version hardware configuration: honeypot super storage 6 disk NAS 8G memory+64G SSD.

Cloud disk system: Seafile open source community version 9.0.4

Internet access methods are generally divided into the following types: 1. Domain name access requires registration of domain name in advance and binding of fixed IP address, as well as ICP domain name registration and opening of port 80 and port 443 at the Ministry of Industry and Information Technology. Although the procedures are complicated and costly, they can be used once and for all, and it is very cool to use.

Generally, this connection mode is preferred by enterprises to configure as: SERVICE_ URL = http://FILE_SERVER_ROOT = http:///seafhttp2 The difference between non-domain name only fixed IP address access and domain name access is to change the domain name to IP address, which eliminates the domain name registration and the filing of the Ministry of Industry and Information Technology.

But generally, the 80/443 ports of fixed IP are controlled by the Ministry of Industry and Information Technology. Generally, the two ports cannot be used without filing. Therefore, the port service needs to be modified in the configuration file_ URL = http://FILE_SERVER_ROOT = http:///seafhttp

3. Dynamic IP address access is generally used to temporarily establish a connection. For short access, because ADSL dial-up software will change the address within 24/48 hours, all connections need to re-enter the latest IP address. The advantage of this connection is that it saves a lot of dedicated line bandwidth and domain name registration fees.

The only problem is that this kind of connection access needs the following support: — routers that support port forwarding are used for NAT port mirroring — public network IPV4 (1) set the port forwarding of the router, and the intranet port and the internet port need to establish a corresponding relationship (2) set the cloud disk server address to the intranet IP address

Each time you log in, you can connect and access as long as you enter the external IP address. 4. Dynamic domain name (DDNS) access uses dynamic domain name to replace the changing public IPV4. (1) You need to apply for dynamic domain name and run the binding program. (2) The internal port forwarding or mapping is completed. (3) The cloud disk server address is set to the internal IP address.

Use experience: Each connection method has its own merits. 1. If you pursue long-term stability and do not care about cost, give priority to the top-level domain name connection. 2. If you focus on cost, give priority to the dynamic IP address connection. 3. The best choice for the new balance between cost and stability is the dynamic domain name connection. Report/feedback