Is it possible to wake on WAN?

jonlai9 · March 24, 2011

I've configured my server to wake on LAN using wolcmd right now. Is it possible to also configure the server to wake on WAN? I have a Linksys WRT54G with Tomato. This would be very convenient for apps like subsonic. Thanks.

keland44 · March 24, 2011

i haven't used tomato in years but I use ddwrt

what i did was setup a no-ip.org account and then set that up in ddwrt and enabled myself to be able to access my router from anywhere on the internet using my no-ip.org address. I setup links on my phone that point to no-ip.org/wol.asp and have my password info setup and saved and i just wake my system up that way

i'm sure these options are in tomato especially if you were already able to setup your wolan

bubbaQ · March 25, 2011

WOL uses MAC address, which does not pass through a router.

You can use Tomato, but you have to log into the management interface from the WAN, and then tell it to send a WOL to the machine on your local LAN.

jonlai9 · March 25, 2011

On 2011. 3. 25. at 9:34 AM, bubbaQ said:
WOL uses MAC address, which does not pass through a router.

You can use Tomato, but you have to log into the management interface from the WAN, and then tell it to send a WOL to the machine on your local LAN.

Great! But how would I do that?

bubbaQ · March 25, 2011

You have to enable access to Tomato's admin interface to the Internet (WAN).

jonlai9 · March 25, 2011

On 2011. 3. 25. at 11:20 AM, bubbaQ said:
You have to enable access to Tomato's admin interface to the Internet (WAN).

How do I do that with Tomato? Any way to do it without VPN? As it doesn't seem like Tomato supports VPN and I don't want to install another firmware and lose all my settings.

bubbaQ · March 25, 2011

Set "Remote Access" on the Administration page in Tomato to HTTP or HTTPS.... then you can get to it from the outside.

It's a huge security risk, however. Better have a good password, or you'll be hacked in 24 hours or less.

jonlai9 · March 25, 2011

On 2011. 3. 25. at 8:53 PM, bubbaQ said:
Set "Remote Access" on the Administration page in Tomato to HTTP or HTTPS.... then you can get to it from the outside.

It's a huge security risk, however. Better have a good password, or you'll be hacked in 24 hours or less.

That doesn't sound good at all. Is there a safer way? All I'm looking to do is wake up the server, don't necessarily need access to the router.

StevenD · March 25, 2011

Instead of opening up my router to the world, I remote into one of my desktops on my LAN, then run a script that wakes stuff up.

jonlai9 · March 25, 2011

On 2011. 3. 25. at 11:02 PM, StevenD said:
Instead of opening up my router to the world, I remote into one of my desktops on my LAN, then run a script that wakes stuff up.

That would only work if you have a computer that's online, though. I want to be able to wake my server when no computer on the network is on, if possible. That leaves the router as that's the only device on the network that's always on.

Joe L. · March 25, 2011

Then an answer might be a new router that does support VPN. (or can be flashed with firmware that does)

Haenchensd · March 26, 2011

I have my server setup to wake on WAN. I also have DD-WRT. I tried initially to have port 9 forwarded to my server's IP, but for some reason that wasn't working. I now have port 9 forwarded to the broadcast IP and it works beautifully.

jonlai9 · March 26, 2011

On 2011. 3. 27. at 4:32 AM, Haenchensd said:
I have my server setup to wake on WAN. I also have DD-WRT. I tried initially to have port 9 forwarded to my server's IP, but for some reason that wasn't working. I now have port 9 forwarded to the broadcast IP and it works beautifully.

Can you talk about how you did it and perhaps some instructions? Did you use VPN? How difficult was it? Thanks.

Haenchensd · March 26, 2011

I will on Monday, out of town at the moment and I can't access my router for security reasons.

Really, I think I just told it to forward all incoming traffic on port 9 to 192.168.1.254 (I think, whatever your broadcast IP is) and then just use my WOL client like normal with my DynDNS address as the IP. It works both from my iPhone WOL app and also from web page based WOL apps.

jonlai9 · March 28, 2011

On 2011. 3. 27. at 4:41 AM, Haenchensd said:
I will on Monday, out of town at the moment and I can't access my router for security reasons.

Really, I think I just told it to forward all incoming traffic on port 9 to 192.168.1.254 (I think, whatever your broadcast IP is) and then just use my WOL client like normal with my DynDNS address as the IP. It works both from my iPhone WOL app and also from web page based WOL apps.

Thanks!

Port 9 is only used for WOL right? So it shouldn't create any additional security problems for the rest of the network?

defected07 · March 28, 2011

On 2011. 3. 29. at 0:30 AM, jonlai9 said:
Thanks!

Port 9 is only used for WOL right? So it shouldn't create any additional security problems for the rest of the network?

It's actually a "discard" port (according to the internet), and used for test purposes. Follow this chart, from SpeedGuide.net (someone chime in if inaccurate)

Quote
Well Known Ports: 0 through 1023.
Registered Ports: 1024 through 49151.
Dynamic/Private : 49152 through 65535.

bubbaQ · March 28, 2011

I'd be interested in what WOL client would perform this trick ... it shouldn't work.

jonlai9 · March 30, 2011

On 2011. 3. 29. at 6:11 AM, bubbaQ said:
I'd be interested in what WOL client would perform this trick ... it shouldn't work.

It shouldn't work? What do you mean?

If a connection to the local network can be established, can't you just use whatever WOL client I typically use?

bubbaQ · March 30, 2011

Because every WOL client I have ever used sends the WOL payload as a non-routable broadcast.... not a packet directed to a particular IP.

dgaschk · March 30, 2011

You can port forward/map packets that come in on port 9 to the broadcast address. Some routers will not map to the broadcast address unless you change the subnet mask. If you establish a VPN you should be able to broadcast directly.

bubbaQ · March 30, 2011

If you are in Calif, and you use a WOL client that sends the broadcast payload, it won't get to port 9 on your router in Florida in the first place .... w/o some VPN or VLAN setup.

defected07 · March 30, 2011

How difficult/expensive is it to set up a VPN at home?

dgaschk · March 30, 2011

On 2011. 3. 30. at 1:24 PM, bubbaQ said:
If you are in Calif, and you use a WOL client that sends the broadcast payload, it won't get to port 9 on your router in Florida in the first place .... w/o some VPN or VLAN setup.

You send a unicast UDP packet with the correct content to port 9 of your public address and have the router map it to the correct destination address or LAN broadcast.

EDIT: Here is a web form that sends a unicast WOL: http://www.depicus.com/wake-on-lan/woli.aspx

That site has smartphone apps and regular applications that do this as well.

Quote
How difficult/expensive is it to set up a VPN at home?

Google "DDWRT" It's free. I'd recommend this method because it gives you secure access to your content as well.

defected07 · March 30, 2011

On 2011. 3. 30. at 3:52 PM, dgaschk said:
Google "DDWRT" It's free. I'd recommend this method because it gives you secure access to your content as well.

Thanks. Currently using an Airport Extreme, which is not supported by DDWRT. May have to find another solution if I want to implement VPN at this time.

johnodon · March 30, 2011

On 2011. 3. 25. at 11:55 PM, Joe L. said:
Then an answer might be a new router that does support VPN.

pfsense FTW.

wake on wan possible?...펌

Is it possible to wake on WAN?

26 posts in this topic