ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Unattended remote access utility/ computer

    Scheduled Pinned Locked Moved IT Discussion
    39 Posts 13 Posters 3.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • AdamFA
      AdamF @ElecEng
      last edited by

      @ElecEng I like that. Seems a bit pricy though. I'll check that out too.

      1 Reply Last reply Reply Quote 0
      • scottalanmillerS
        scottalanmiller @AdamF
        last edited by

        @AdamF said in Unattended remote access utility/ computer:

        @dmacf10 said in Unattended remote access utility/ computer:

        @AdamF I like the idea of a Raspberry Pi with MeshCentral as an agent for remote access.

        And Mesh Central will run perfectly fine on a Pi OS?

        Yeah, it's commonly done there. We use it all the time.

        1 Reply Last reply Reply Quote 0
        • scottalanmillerS
          scottalanmiller @dmacf10
          last edited by

          @dmacf10 said in Unattended remote access utility/ computer:

          @AdamF I like the idea of a Raspberry Pi with MeshCentral as an agent for remote access.

          that's what I would do, too.

          AdamFA 1 Reply Last reply Reply Quote 0
          • AdamFA
            AdamF @scottalanmiller
            last edited by

            @scottalanmiller said in Unattended remote access utility/ computer:

            @dmacf10 said in Unattended remote access utility/ computer:

            @AdamF I like the idea of a Raspberry Pi with MeshCentral as an agent for remote access.

            that's what I would do, too.

            Any website with IN stock Pis? 🙂

            scottalanmillerS gjacobseG 2 Replies Last reply Reply Quote 0
            • scottalanmillerS
              scottalanmiller @ElecEng
              last edited by

              @ElecEng said in Unattended remote access utility/ computer:

              I have been using these recently and love them plus they give you BIOS-level access and virtual media with no limitations.

              https://tinypilotkvm.com/?ref=ga3&gclid=CjwKCAjwyaWZBhBGEiwACslQo4pjQM3MLVoZgitDcyDn41jEzDcbBF3k29MzbVb8urtl0MIDuJQ49hoCJ0wQAvD_BwE

              That's really cool, but don't you need a $350 item PER device? That's going to get really expensive, really quickly. Especially considering enterprise Intel desktops have this functionality included automatically (Intel vPro, we use it regularly since it fully integrates with meshCentral) and production level servers have this built in with a lot more functionality. At $350, it would be normally better to just upgrade the device being controlled, wouldn't it?

              1 Reply Last reply Reply Quote 0
              • scottalanmillerS
                scottalanmiller @AdamF
                last edited by

                @AdamF said in Unattended remote access utility/ computer:

                @scottalanmiller said in Unattended remote access utility/ computer:

                @dmacf10 said in Unattended remote access utility/ computer:

                @AdamF I like the idea of a Raspberry Pi with MeshCentral as an agent for remote access.

                that's what I would do, too.

                Any website with IN stock Pis? 🙂

                MicroCenter seems to always have them.

                AdamFA 1 Reply Last reply Reply Quote 1
                • AdamFA
                  AdamF @scottalanmiller
                  last edited by

                  @scottalanmiller said in Unattended remote access utility/ computer:

                  @AdamF said in Unattended remote access utility/ computer:

                  @scottalanmiller said in Unattended remote access utility/ computer:

                  @dmacf10 said in Unattended remote access utility/ computer:

                  @AdamF I like the idea of a Raspberry Pi with MeshCentral as an agent for remote access.

                  that's what I would do, too.

                  Any website with IN stock Pis? 🙂

                  MicroCenter seems to always have them.

                  But not today it seems. 😕

                  scottalanmillerS 1 Reply Last reply Reply Quote 0
                  • DashrenderD
                    Dashrender
                    last edited by

                    Why put a device on the network?

                    If you're going for MC anyway - you could just install MC on just about everything in the network.

                    Though for things like switches/routers, the RPi could be nice if you don't have a server or something already onsite you could remote into.

                    AdamFA 1 Reply Last reply Reply Quote 0
                    • S
                      scotth
                      last edited by

                      MeshCentral has a router app that works nicely via relay. I have at least one PC at each site and the router allows me to connect to most anything at our sites. It's worth a look.

                      1 Reply Last reply Reply Quote 1
                      • AdamFA
                        AdamF @Dashrender
                        last edited by

                        @Dashrender Yep, no PCs/servers on the network.

                        1 Reply Last reply Reply Quote 0
                        • jclambertJ
                          jclambert @AdamF
                          last edited by

                          @AdamF
                          It works quite well - especially for the cost.
                          For our company's onsite ones, I even have a cheap POE add-on card, so I can restart the Pi if it fully hangs up (rare). Obviously this does not work for your use case.

                          1 Reply Last reply Reply Quote 2
                          • gjacobseG
                            gjacobse @AdamF
                            last edited by

                            @AdamF said in Unattended remote access utility/ computer:

                            @scottalanmiller said in Unattended remote access utility/ computer:

                            @dmacf10 said in Unattended remote access utility/ computer:

                            @AdamF I like the idea of a Raspberry Pi with MeshCentral as an agent for remote access.

                            that's what I would do, too.

                            Any website with IN stock Pis? 🙂

                            Good.Luck.

                            I've not seen anyone have stock of rPi 3 or 4 in almost a year. Adafruit doesn't have any in stock, nor does SparkFun,.. And if you can find one you might be better off buying a mini PC or using a older pc...

                            scottalanmillerS 1 Reply Last reply Reply Quote 1
                            • 1
                              1337 @AdamF
                              last edited by 1337

                              @AdamF said in Unattended remote access utility/ computer:

                              I would like to have a tiny network device where I can install at a remote location so I can always connect to it and then get to any other connected device on the network. The remote location would not have a static IP. What are some good/inexpensive solutions out there to accomplish this. I thought of a RasberryPi of some flavor, which would work fine. I just want to brainstorm some ideas/software to install on the device so that I can remotely connect to it at any time via SSH, or an agent, or something else.

                              Any ideas?

                              I don't like the idea. It's basically a hidden backdoor into the LAN. Shadow IT.

                              Why not use the firewall/router instead? Every site must have one. Have it establish a tunnel to a hub of your choice.

                              It's more transparent and the one in control of the firewall can decide what you are able to access. I'm thinking liability and what not.


                              If you are hell bent on the idea of bypassing perimeter security, why not use something like an edgerouter? Set it up as a router on a stick and have it dial out.

                              scottalanmillerS 3 Replies Last reply Reply Quote 0
                              • scottalanmillerS
                                scottalanmiller @AdamF
                                last edited by

                                @AdamF said in Unattended remote access utility/ computer:

                                @scottalanmiller said in Unattended remote access utility/ computer:

                                @AdamF said in Unattended remote access utility/ computer:

                                @scottalanmiller said in Unattended remote access utility/ computer:

                                @dmacf10 said in Unattended remote access utility/ computer:

                                @AdamF I like the idea of a Raspberry Pi with MeshCentral as an agent for remote access.

                                that's what I would do, too.

                                Any website with IN stock Pis? 🙂

                                MicroCenter seems to always have them.

                                But not today it seems. 😕

                                You have to stop in. Not online.

                                1 Reply Last reply Reply Quote 0
                                • scottalanmillerS
                                  scottalanmiller @gjacobse
                                  last edited by

                                  @gjacobse said in Unattended remote access utility/ computer:

                                  @AdamF said in Unattended remote access utility/ computer:

                                  @scottalanmiller said in Unattended remote access utility/ computer:

                                  @dmacf10 said in Unattended remote access utility/ computer:

                                  @AdamF I like the idea of a Raspberry Pi with MeshCentral as an agent for remote access.

                                  that's what I would do, too.

                                  Any website with IN stock Pis? 🙂

                                  Good.Luck.

                                  I've not seen anyone have stock of rPi 3 or 4 in almost a year. Adafruit doesn't have any in stock, nor does SparkFun,.. And if you can find one you might be better off buying a mini PC or using a older pc...

                                  Who the heck is buying so many and why don't they just make more faster? Argh

                                  1 Reply Last reply Reply Quote 0
                                  • scottalanmillerS
                                    scottalanmiller @1337
                                    last edited by

                                    @Pete-S said in Unattended remote access utility/ computer:

                                    I don't like the idea. It's basically a hidden backdoor into the LAN. Shadow IT.
                                    Why not use the firewall/router instead? Every site must have one. Have it establish a tunnel to a hub of your choice.

                                    Well the big reason to do it is security. The MeshCentral to RP way is way more secure and doesn't advertise the remote access. Few routers offer anything like that and instead push dangerous VPNs that create a lot of risk. Both are equally "Shadow IT" if you look at it that one. Just one is done well and is the recommended way, and the other is the "don't do that" way. There are good ways to do a VPN like that, but not generally using a router and it's quite safe to assume not the router that wasn't selected specifically for that purpose.

                                    Youtube Video

                                    Youtube Video

                                    1 Reply Last reply Reply Quote 1
                                    • scottalanmillerS
                                      scottalanmiller @1337
                                      last edited by

                                      @Pete-S said in Unattended remote access utility/ computer:

                                      It's more transparent and the one in control of the firewall can decide what you are able to access. I'm thinking liability and what not.

                                      How does that really differ? In one case the IT that manages the firewall determines the access, but without security planning ahead of time (presumably.) And in the other the same IT person that can manage the remote access device can determine the remote access. Lower liability with the RP because it's more secure as an approach.

                                      In either case, if you do it without permission, it's a problem. In both cases if you do it with permission, it is not.

                                      1 Reply Last reply Reply Quote 1
                                      • scottalanmillerS
                                        scottalanmiller @1337
                                        last edited by

                                        @Pete-S said in Unattended remote access utility/ computer:

                                        If you are hell bent on the idea of bypassing perimeter security, why not use something like an edgerouter? Set it up as a router on a stick and have it dial out.

                                        That's better but, what benefit does that bring? More complexity, making them potentially change their router strategy, more effort, much much much much more difficult to keep secure. Anything that uses "use a VPN" as an option, even one that is "reach out" requires a ton of work (and trust) to ensure it is not creating extra exposure. VPNs are SO dangerous under normal conditions and usages.

                                        The reason to do the RP method is security and good practice. All other things like following process, having permission, telling IT, etc. should be treated the same across the board. And both can have MFA and all that. And yes, in theory, you can make a VPN locked down to do nothing but allow an RDP connection to a single host and ... and ... and... if you do it all well enough, all you've done, is basically rebuilt the RP/MeshCentral solution. At no point do you gain an advantage, you only carry the risk that you won't totally recreate the solution, in the hopes of a break even.

                                        Why NOT do the better, more secure, best practice method that's nearly zero effort right from the beginning. Why start with something complex, probably expensive, and risky only to hope you don't get anything wrong for no advantage?

                                        1 Reply Last reply Reply Quote 1
                                        • J
                                          JasGot @ElecEng
                                          last edited by

                                          @ElecEng said in Unattended remote access utility/ computer:

                                          I have been using these recently and love them plus they give you BIOS-level access and virtual media with no limitations.

                                          https://tinypilotkvm.com/?ref=ga3&gclid=CjwKCAjwyaWZBhBGEiwACslQo4pjQM3MLVoZgitDcyDn41jEzDcbBF3k29MzbVb8urtl0MIDuJQ49hoCJ0wQAvD_BwE

                                          This too:
                                          https://www.lantronix.com/products/lantronix-spider/

                                          scottalanmillerS 1 Reply Last reply Reply Quote 0
                                          • scottalanmillerS
                                            scottalanmiller @JasGot
                                            last edited by

                                            @JasGot said in Unattended remote access utility/ computer:

                                            @ElecEng said in Unattended remote access utility/ computer:

                                            I have been using these recently and love them plus they give you BIOS-level access and virtual media with no limitations.

                                            https://tinypilotkvm.com/?ref=ga3&gclid=CjwKCAjwyaWZBhBGEiwACslQo4pjQM3MLVoZgitDcyDn41jEzDcbBF3k29MzbVb8urtl0MIDuJQ49hoCJ0wQAvD_BwE

                                            This too:
                                            https://www.lantronix.com/products/lantronix-spider/

                                            Same issues though, no computer to access and would need one for every machine if they existed.

                                            J 1 Reply Last reply Reply Quote 0
                                            • 1
                                            • 2
                                            • 1 / 2
                                            • First post
                                              Last post