Needing EXPERTS! - OpenVPN (tun) Routing - Access PCs over Hostnames not IPs
-
Ok, do you actually have an active Windows Domain or Active Directory? What device is acting as your Domain Controller?
-
hello,
we have an active windows domain, i think!
a pdc samba debian server.
twelve clients (meber of domain) can connect over this server into domain.but what is with the dns tool for pfsense?
is tinydns easy to use over gui in pfsense 2.0 beta 5 ?i think, when the tinydns is a solution, i would kill and reconfigure the pdc samba debian server ;)
when not - i take debian to resolve the vpn and local hostnames over a wins server solution.
(little bit reconfigure the smb.conf) -
Stop over complicating things. You're just going to cause yourself pointless work and make the situation more confusing.
In the OpenVPN configuration on pfSense start by pushing the IP of the Samba server as the WINS server. As you're using Samba as a PDC then you're using a Windows NT domain, not Active Directory. That means that WINS is probably your primary name resolution service for the local network.
-
ok i test it!
thanks -
hmm when i push the pdc as wins server in openvpn config, i cant ping over vpn with hostnames :(
every host is registered in /etc/hostswhat is wrong?
-
/etc/hosts where - on the PDC or the client?
Are the client computers configured to use WINS for name resolution? What version of Windows are they running?
-
hello cry havok,
on the pdc the /etc/hosts!
the clients aren't configure to use wins for name resolution, i have for testing configured my pc to use the wins for name-resolution.
but i can also ping with hostnames without wins entry on my machine ;)we use only windows xp 32 and 64 bit machines
thanks
-
WINS is a broadcast protocol - you don't need to populate /etc/hosts on the PDC and I'm not sure the doing so will achieve anything.
If you don't configure the client to use WINS how on earth do you expect WINS to work? Try doing that, and ensuring that when connected to the VPN a WINS server is defined (the output of ipconfig/all on a client should help you identify that).
-
ok you are right!
i have modified one hostname from pdc's /etc/hosts from rails to railsbitch
AND I CAN PING IT! PORNO ;)ok i have to configured all clients in local network to use wins yes?
and then i can ping everyone in local network over vpn?! right?
thanks a lot forward havok
-
And the remote devices need to be using WINS too - they need to have it enabled on the OpenVPN adapter and have the setting pushed to them by the OpenVPN server.
-
yes i pushed the wins server throw the tunnel to vpn-clients.
i test it tonight thanks for tipps havok