Practical Analysis of remote control of computer hosts on mobile phones

Wordless
In this article, I did not write it, but some of my own experiences when a friend of mine explored the article "Mobile Phone intrusion and mobile phone intrusion" published on Anti-DDoS pro, I suggest him write it out and show it to you. Some of these practices can prove some of my points of view. So with this article, I would like to thank my friends for allowing me to post this article, at the same time, some content in the text comes from the network, but it is absolutely credible.
Let us first declare that our remote control is based on the Internet network, not Bluetooth, or infrared, or data lines, we will continue to share with you in future articles.
Now that we talk about remote control, we should start with our mobile phone. Our friends who use mobile phones to access the Internet know "APN Settings", that is, access network settings, in this regard, mobile users are the largest. First, let's look at the first access method to connect to the Internet through the cmwap access point. At this time, the mobile company will assign you A 10. x IP address (dedicated address in the form of class A address, which is generally used within the large group. The classification structure of the standard IP address is used in the form, and it is irrelevant to the global Class A address of the public network. ICANN does not assign Class A network address to China, china Mobile and China Unicom only have 26 and 28 Class B addresses respectively. With this address, you can only access China Mobile's internal wap network. The second is the most recommended one. Using cmnet access points also has no public IP address, which is also 10. x. x. x address, but mobile will provide routes and NAT for terminals connected by cmnet access points like wired broadband access providers such as China Telecom. Allows you to access any website on the Internet. This is critical. You tell us that even if cmnet is used, our mobile phone is just an intranet user without a public IP address.
Because cmwap can only access the internal network of mobile devices and uses the internal network traffic of mobile devices, there is almost no cost for mobile devices. Therefore, cmwap is cheaper; cmnet can access the network (internet) set up by other carriers, so China Mobile will pay for the inter-network settlement fee, so the cmnet traffic fee is extremely expensive and not monthly subscription (for this, I don't think it's all about. My region can be subscribed ).
The above content, I believe that if you have read my article, you will have known it for a long time. The following content is the heavy lifting of the article.
The above is the access-side APN, which is the GPRS setting. The GPRS setting is generally set in the system settings of the smart phone. For example, the palm is in the prefs network, if you enter cmwap in the gprs apn, you can directly access the wap website. If you enter cmnet, you can directly access the wap and www websites without other settings, however, if you want to connect cmwap to the www website, you still need to make the following settings. The following describes the proxy settings of the Internet Access software (such as a browser) after the Internet access (gprs is connected at this time.
1. cmwap: mobile has a MMS gateway 10.0.0.172: 80/10. 0.0.172: 8080 on cmwap. Many people use this gateway to proxy the internet. However, there are many limitations on this wap Gateway. The standard WAP Gateway only implements the HTTP Proxy function and does not complete the functions of LAN gateways such as routing and NAT. Therefore, in terms of non-wap Internet (Internet), only websites using http protocol can identify which mobile phone sent the information, QQ and MSN, application software that uses non-HTTP protocol, cannot be identified, so they cannot be connected in non-http connection form. At this point, we can determine what features we want if we do not have the server support we have set up, for example, it is impossible for cmwap to log on to dreamhost and RDP on the internet through telnet or ssh. This discovery is very important. Now we can conclude that it is impossible to use cmwap to remotely control a computer host without the http protocol, this does not mean that the http protocol cannot control the Computer Host!
2. cmnet: Because China Mobile's cmnet is not similar to China Telecom or China Unicom's CDMA broadband service, it does not provide dynamic independent public IP addresses and only assigns you an intranet IP address under the same route, then, the NAT protocol (Network Address Translation) is used to convert Intranet IP addresses and public IP addresses. However, mobile routing cannot allow you to map or DMZ. Therefore, computers that use cmnet to access the internet are just like computers in the campus network. They cannot be identified only by IP addresses on the internet, it cannot provide web server services on www (server services on cmwap can be provided theoretically just like cmwap ). (Not only web servers, as long as they are related to the server, such as a computer that uses cmnet to access the Internet, even if the network is fast, it is also impossible to remotely log on to the computer connected to the broadband through the settings ). However, because cmnet does not block socket and other ports like cmwap, the status on the internet is the same as that on a computer on a campus network, so more software is supported. Remote login software using non-http protocol is completely feasible under the network conditions of cmnet. This is really good news. In this way, we can write a software that complies with a certain protocol to remotely control the Computer Host. However, because the network environment of the mobile phone that uses cmnet to log on to is Intranet, at the same time, the gateway is not controllable, so if the mobile phone does not actively send requests, the hosts on the public network cannot access the mobile phone in the cmnet network.
At this time, let's turn our eyes to the computer. Computers on the Internet are not a single one-to-one mode. The simplest classification is divided into two categories: Intranet and Internet. If the computer to be controlled is a public network computer, that is to say, we have an independent IP address. Congratulations! We can control this computer at will, especially when using cmnet to log on without protocol restrictions. What if the controlled computer is on the Intranet? The difference is that, if the gateway is controllable, it is equivalent to an Internet computer, and only a ing software is needed. What if the gateway is uncontrollable? For example, what should I do if I talk about a computer in a residential area is a dynamic IP address's intranet computer? The reliable method is to use the intermediary, which answers the question about whether cmwap cannot control the computer. HTTP is actually the best protocol, making it an intermediary, we don't need to use expensive cmnet. We can control hard-to-control Intranet computers at a low cost, or even expand public network computers. This idea is also mentioned in my article. In this case, the mobile phone and the computer on the Intranet must send a request to the other party to communicate with the other party. Therefore, you must use a server with a public IP address.
Now, I want to understand that the most reliable way to control computers by using mobile phones is to use intermediary services. With such a theoretical basis, I think the rest of the work will be simple. My thoughts may be incorrect. Please correct them in time. My contact QQ: 348450419. Thank you for reading this article.