How to explore remote LAN computers folder with smb/cifs? (solved)



  • I set up a PFSENSE-PFSENSE ipsec-tunnel, everything works great, i can ping and adress everything with webgui in both ends too the other pfsense hosts.
    I have tried to change settings in belive that i could see the other subnets computer in explore folders. Is this an possibillity in some way?



  • I now see that i can look in too the remote lan network from windows in cmd with hostname example: c:> dir service-computer
    this means that hosts are available over the ipsec-tunnel. Are there any setting in samba missing, maybe?


  • Rebel Alliance Developer Netgate

    If you can ping the machine but can't access it by using its IP as a UNC path (like \192.168.1.5\ ) then there must be something on that particular machine preventing access.

    With Samba there are a few directives that limit access, at least the "hosts allow" directive may need to have your remote IPsec subnet added to it.



  • @jimp:

    If you can ping the machine but can't access it by using its IP as a UNC path (like \192.168.1.5\ ) then there must be something on that particular machine preventing access.

    With Samba there are a few directives that limit access, at least the "hosts allow" directive may need to have your remote IPsec subnet added to it.

    Sry, i didnt tell that i can do the same by ip. I have windows 7 in one end of the tunnel and xp in the other firewall turned off with the same result. I have tried several things last day with no success.

    edit:
    Missed this from log(but phase2 is established):
    Apr 24 04:41:32 racoon: WARNING: No ID match.
    Apr 24 04:41:32 racoon: INFO: received Vendor ID: DPD
    Apr 24 04:41:32 racoon: INFO: received broken Microsoft ID: FRAGMENTATION
    Apr 24 04:41:32 racoon: INFO: begin Aggressive mode



  • I dont understand how to edit this value:
    With Samba there are a few directives that limit access, at least the "hosts allow" directive may need to have your remote IPsec subnet added to it.


  • Rebel Alliance Developer Netgate

    @evewes:

    I dont understand how to edit this value:
    With Samba there are a few directives that limit access, at least the "hosts allow" directive may need to have your remote IPsec subnet added to it.

    That would depend on how Samba is setup on your server. You'll have to check the documentation for that, as it may vary from place to place. Typically it's just a matter of editing the line in your smb.conf, but the location of that file will depend upon what OS the server is running.



  • Hello thanks for your tim!
    I now also have freenas working over the tunnel.

    Im running windows 7 on all computer in my end and xp home on all computer in the other end. I also have two win2003servers in each end.
    When you say server do you point to all clients running samba, or do you point to a real server running samba?

    edit:
    After reading about samba, smb/cifs i now understand that pfsense or clients cant act as a nameserver.
    I need to set up a server in each end of the tunnel and make one of them to masterbrowser (unsure of the name). I dont understand if i can setup this without domain and every computer connected tho it or if i can use workgroups?



  • I thought that folders automatically should be visisble in explorer. When i connected networkunit with
    automatic reconnect they became visible under my computer. I gave them a "unitletter" which i renamed and put on desktop.
    I think the speed is better in the tunnel than over internet.

    Now i got all function i wanted and shall go further with mobile connection!


Log in to reply