Overview

New You can now connect to your device using SSH directly from your web browser! To learn more, refer to the new Web Terminal documentation.

Soracom Napter is an on-demand networking service for devices using Soracom Air for Cellular SIMs and Soracom Arc, which enables you to quickly and securely access your devices remotely. Napter allows you to perform remote maintenance, troubleshooting, or other typical remote access tasks, without setting up any relay servers or installing agent software on the device.

Napter overview

When you enable on-demand remote access, Napter will assign a random IP address (with a corresponding hostname) and port. You can then connect to Napter using the assigned IP address and port, using any TCP protocol, such as SSH, RDP, VNC, and HTTP/HTTPS. When Napter receives your connection request, it will take care of establishing the connection back to your device.

Napter provides a simple and secure way to perform common remote access tasks, such as:

Connect directly to a remote device
- Remotely access a device using SSH to change its settings
- Connect to the device using Remote Desktop (RDP)
- Access a remote terminal using VNC
Access a device's web-based interface
- Connect to a remote router or gateway's admin page
- Access a remotely deployed sensor or device to download its data
- View real-time imagery from a security monitoring device

Other common remote access solutions typically require acquiring and configuring a fixed public IP address, which increases security risks as anyone with knowledge of the device IP address may be able to remotely attack the device. Napter provides the same remote access functionality without the risks typically associated with exposing a public IP address.

Features

Access is enabled on-demand and can also be manually disabled, ensuring access is available only when you need it.
Access is controlled by specifying an IP address range, such as 11.22.33.44/32.
Each time secure remote access is enabled, a random IP address and port is assigned, preventing distributed attacks.
Access can be enabled directly in the User Console, or via the Soracom API.
Access can be enabled for a single SIM card.
No need to change existing settings or configure group settings.
New For SSH connections, you can now open a terminal directly in your web browser without needing to manually copy Napter host and port details to your SSH client.

Requirements

To remotely access your device using Napter:

Your device must be connected using a Soracom IoT SIM card and online.
Any authentication credentials, such as username and password or SSH keys, should be configured beforehand.
Your device should be configured to allow incoming access on the appropriate port beforehand

Limitations

Before using Napter, please be aware of the following limitations:

When enabling Napter, you must specify an IP address range where remote access should be allowed, such as 11.22.33.44/32. For security, you cannot set 0.0.0.0/0 (any IP address).
You can enable a maximum of 6 ports per SIM at one time.
For each port, a maximum of 6 active concurrent connections are allowed. Additional connection requests will be denied.
The maximum remote access session time limited to 8 hours.
Only TCP connections are supported.
The source IP addresses for the internal connection between Soracom Napter and your device are 100.127.10.16 when using Soracom Air for Cellular and 100.127.10.17 when using Soracom Arc. Your device should be configured to allow incoming connections from these IP addresses.
When using the Browser Based Terminal, key authentication is not supported at this time (you must use password authentication).

Compared to Gate

While Napter provides similar remote access functionality as Gate, there are some important differences.

Napter only supports TCP connections. Many common remote access protocols or services support TCP connections, including SSH, Remote Desktop, VNC, as well as HTTP/HTTPS for web-based management, however UDP is not supported.

The maximum duration of a remote access session is limited to 8 hours.

Soracom Gate does not have these limitations, and is therefore better suited if you require UDP connections or need to maintain a remote access connection for longer than 8 hours.

Free Tier

Soracom provides a free tier for Napter with each Soracom account. Refer to the Pricing & Fee Schedule for more information.