This is the fourth day of my participation in the November Gwen Challenge. See details: The last Gwen Challenge 2021.

Tomcat+Nginx+Natapp Intranet penetration helps you build websites quickly

A, Tomcat

  1. Go to the following website to download Tomcat.

Tomcat.apache.org/download-80…

  1. After downloading, decompress the package, and the Tomcat server program can be decompressed to use.
  2. Go to the bin directory and run startup.bat.

  1. Then Tomcat is up and running. Tomcat has very little concurrency, and we’ll look at Nginx, which has a lot of concurrency.

  1. Use a browser to access 127.0.0.1:8080

  1. I can also replace the web page with my own content. I just need to replace the files in apache-tomcat-8.5.72\webapps\ROOT with yours.

Some people say there is not Tomcat, why Nginx? We can use Nginx’s dynamic separation mechanism to make static requests go to Nginx and dynamic requests go to Tomcat. Tomcat doesn’t handle dynamic requests as well as Apache, but it’s in league with JSP/ servlets.

Second, the Nginx

Let’s take a look at Nginx.

  1. First we download Ngnix.

  1. Then it is decompressed to run.

  1. However, unlike Tomcat, which uses port 8080 by default, Nginx and Apache use port 80 by default. So we are accessing 127.0.0.1:80 on the browser client.

  1. Then we modify the page to nginx-1.20.1\ HTML, which is in the HTML directory.

We want to let others visit our website, but are not willing to buy a server for this, so we can use Natapp to achieve Intranet penetration.

3. Natapp achieves Intranet penetration

  1. The first is to register an account, and then real-name authentication.
  2. Then you buy the tunnel, and then you configure the tunnel.

If Tomcat is mapped locally, we can change the local port to 8080. If you don’t want others to visit your site, you can set HTTP Base authentication below.

  1. Then download the client.

Then unzip after running exe executable file can be used.

  1. Authtoken is available at my tunnel. For example, the obtained AuthToken is 7IF5b9097a523L92

  1. I can run it by writing a configuration file in the same directory as the client.

  1. It can also be run through CMD with parameters.

Windows: Enter the COMMAND-LINE interface (CLI) of the current directory.

Run natapp – authtoken = 7 if5b9097a523l92

Linux: ./natapp -authtoken=7if5b9097a523l92

  1. Then start penetrating the Intranet.

  1. Visit the target url.

Four, conclusion

Seeing this is definitely true love, the blogger gives you a thumbs up. The blogger is preparing a special topic on blockchain. If you are interested in blockchain, please follow me