I need some help with designing software architecture for a project I am working one. The project includes remote systems that are on GSM network, and connected to central OpenVPN gateway via VPN. External users are allowed to connect to specific device if they have permissions to connect to this device (permissions are set via admin app and are stored in DB).
Currently the system administrator issues user certificates for VPN access and ovpn files with specific routes to specific devices, but we would like to simplify this a lot. Also routing alone does not provide sufficient security for device access. Simplification would be in means of Admin setting up user permission, and the users would receive links to remote devices. Link would open a Terminal Emulator in browser that would be connected directly to the remote device via VPN.
So my question is how would I design a server that has all remote devices connected to it and then when the user would try to connect to specific device via VPN, the server would setup a VPN connection between that user and requested remote device? The technology of choice for the server is Node.
I am thinking of integrating a Terminal Emulator (like GateOne or similar) to emulate Linux terminal, and the server would only provide a VPN tunnel between the user and device.
What are your opinions and what would you suggest I do?
Thank you for your help and insights.
Aucun commentaire:
Enregistrer un commentaire