Connecting to BCS Remotely.

Describe your system and processes, and post your config file.
Post Reply
micky5752
Posts: 18
Joined: Sun Nov 01, 2015 11:24 am
Bot?: No

Connecting to BCS Remotely.

Post by micky5752 » Wed Apr 19, 2017 6:06 am

I'm sure this has been posted about before, but I'm having trouble hunting the specific answers I need to make this happen.

Just want to be able to reach out remotely and access my BCS/Controller to either check the temps from work, or start a brew prior to
leaving work.

I will post what my Router has given me in terms of the IP Address and what I think I'm doing right to get it close. Any help bridging the gap would be greatly appreciated!

From what I understand is that I need to lock down a Static IP address for the device and then forward the port i.e. 8080 for the BCS?

Here is what the router gives me in terms of IP, Subnet and so forth.
Screen Shot 2017-04-19 at 7.18.06 AM.png
Screen Shot 2017-04-19 at 7.18.06 AM.png (66.67 KiB) Viewed 733 times

This is a shot of the BCS settings as they were when I turned off DHCP to access the ability to change the values.
Screen Shot 2017-04-19 at 9.04.19 AM.png
Screen Shot 2017-04-19 at 9.04.19 AM.png (100.4 KiB) Viewed 733 times

What should I do from here? Should it look like this?
Screen Shot 2017-04-19 at 9.00.16 AM.png
Screen Shot 2017-04-19 at 9.00.16 AM.png (101.19 KiB) Viewed 733 times

User avatar
JonW
Site Admin
Posts: 1586
Joined: Sun Jul 18, 2010 7:51 am
Bot?: No
Location: Huntington Beach, CA
Contact:

Re: Connecting to BCS Remotely.

Post by JonW » Wed Apr 19, 2017 11:49 am

DO NOT set your router IP in your BCS! Leave your BCS at 192.168.0.120 or whatever IP your router assigns you (using DHCP). Then set a reservation in your router so that it will always reassign that same address to the BCS.

Once that is done, you can setup a port forwarding rule in your router that forwards from the external IP to your internal IP. You can leave your BCS on port 80 so that local LAN use does not require using 8080, then you can add the 8080 port as part of your forward so it is only used when you are away from your home. Keeps things easier that way.

Your rule would look something like: 50.149.24.193:8080 forward to 192.168.0.120:80.

Leave the BCS on default DHCP and do all the necessary changes in your router.

micky5752
Posts: 18
Joined: Sun Nov 01, 2015 11:24 am
Bot?: No

Re: Connecting to BCS Remotely.

Post by micky5752 » Thu Apr 20, 2017 4:15 am

DUDEMAN! YOU RULE!!! Had this up and running in about 30 seconds... You're a true godsend to all us BCSers!!!

User avatar
JonW
Site Admin
Posts: 1586
Joined: Sun Jul 18, 2010 7:51 am
Bot?: No
Location: Huntington Beach, CA
Contact:

Re: Connecting to BCS Remotely.

Post by JonW » Thu Apr 20, 2017 9:16 am

LOL, glad you got it working. Just a note, it's not good to post your router IP address in public. I would restart your router and see if you can grab a new external IP address.

brahn
Posts: 539
Joined: Thu Dec 13, 2012 11:01 am
Bot?: No

Re: Connecting to BCS Remotely.

Post by brahn » Thu Apr 20, 2017 11:07 am

I just want to point out that opening port forwarding to any system on your network opens you up to security risks, that includes forwarding to the BCS as well as any other system. There are LOTS of people/systems out there that are constantly running port scans and trying to exploit any systems that they find. They will see your BCS and connect to it, whether your IP has been published or not.

We're not aware of any security issues with the BCS, however it does have limited memory and cpu and could be vulnerable to denial of service attack. Essentially that just means that the BCS might stop working properly while it is being attacked.

I would recommend not port forwarding to your BCS directly. My recommendation if you need to access it remotely would be to set up a VPN server on your network that will let you access your network and then access the BCS using it's local IP address. This is more complicated to get running, and not something we can really help you configure due to the wide variety of possible solutions, but it is a safer option and still provides remote access to the BCS.

If you do decide to port forward to your BCS, at the very least please make sure you turn on password authentication.

User avatar
JonW
Site Admin
Posts: 1586
Joined: Sun Jul 18, 2010 7:51 am
Bot?: No
Location: Huntington Beach, CA
Contact:

Re: Connecting to BCS Remotely.

Post by JonW » Thu Apr 20, 2017 11:39 am

Good recommendations from brahn. If you are going to do the forwarding, I would use a random high numbered port (e.g. 52222) or something oddball. Most port scans are only checking "well known ports", of which 8080 is one. Yes, this is a measure of "security by obscurity", but it will foil the majority of the port scanners out there as they don't generally do full scans. They're usually just looking for quick & easy targets.

Post Reply

Who is online

Users browsing this forum: No registered users and 1 guest