• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

How to explore remote LAN computers folder with smb/cifs? (solved)

Scheduled Pinned Locked Moved IPsec
8 Posts 2 Posters 5.9k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • E
    evewes
    last edited by Apr 26, 2010, 3:03 AM Apr 23, 2010, 7:23 AM

    I set up a PFSENSE-PFSENSE ipsec-tunnel, everything works great, i can ping and adress everything with webgui in both ends too the other pfsense hosts.
    I have tried to change settings in belive that i could see the other subnets computer in explore folders. Is this an possibillity in some way?

    1 Reply Last reply Reply Quote 0
    • E
      evewes
      last edited by Apr 23, 2010, 9:49 AM

      I now see that i can look in too the remote lan network from windows in cmd with hostname example: c:> dir service-computer
      this means that hosts are available over the ipsec-tunnel. Are there any setting in samba missing, maybe?

      1 Reply Last reply Reply Quote 0
      • J
        jimp Rebel Alliance Developer Netgate
        last edited by Apr 23, 2010, 6:23 PM

        If you can ping the machine but can't access it by using its IP as a UNC path (like \192.168.1.5\ ) then there must be something on that particular machine preventing access.

        With Samba there are a few directives that limit access, at least the "hosts allow" directive may need to have your remote IPsec subnet added to it.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • E
          evewes
          last edited by Apr 24, 2010, 5:16 AM Apr 23, 2010, 9:44 PM

          @jimp:

          If you can ping the machine but can't access it by using its IP as a UNC path (like \192.168.1.5\ ) then there must be something on that particular machine preventing access.

          With Samba there are a few directives that limit access, at least the "hosts allow" directive may need to have your remote IPsec subnet added to it.

          Sry, i didnt tell that i can do the same by ip. I have windows 7 in one end of the tunnel and xp in the other firewall turned off with the same result. I have tried several things last day with no success.

          edit:
          Missed this from log(but phase2 is established):
          Apr 24 04:41:32 racoon: WARNING: No ID match.
          Apr 24 04:41:32 racoon: INFO: received Vendor ID: DPD
          Apr 24 04:41:32 racoon: INFO: received broken Microsoft ID: FRAGMENTATION
          Apr 24 04:41:32 racoon: INFO: begin Aggressive mode

          1 Reply Last reply Reply Quote 0
          • E
            evewes
            last edited by Apr 24, 2010, 5:20 AM

            I dont understand how to edit this value:
            With Samba there are a few directives that limit access, at least the "hosts allow" directive may need to have your remote IPsec subnet added to it.

            1 Reply Last reply Reply Quote 0
            • J
              jimp Rebel Alliance Developer Netgate
              last edited by Apr 24, 2010, 1:07 PM

              @evewes:

              I dont understand how to edit this value:
              With Samba there are a few directives that limit access, at least the "hosts allow" directive may need to have your remote IPsec subnet added to it.

              That would depend on how Samba is setup on your server. You'll have to check the documentation for that, as it may vary from place to place. Typically it's just a matter of editing the line in your smb.conf, but the location of that file will depend upon what OS the server is running.

              Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

              Need help fast? Netgate Global Support!

              Do not Chat/PM for help!

              1 Reply Last reply Reply Quote 0
              • E
                evewes
                last edited by Apr 25, 2010, 8:49 AM Apr 25, 2010, 6:20 AM

                Hello thanks for your tim!
                I now also have freenas working over the tunnel.

                Im running windows 7 on all computer in my end and xp home on all computer in the other end. I also have two win2003servers in each end.
                When you say server do you point to all clients running samba, or do you point to a real server running samba?

                edit:
                After reading about samba, smb/cifs i now understand that pfsense or clients cant act as a nameserver.
                I need to set up a server in each end of the tunnel and make one of them to masterbrowser (unsure of the name). I dont understand if i can setup this without domain and every computer connected tho it or if i can use workgroups?

                1 Reply Last reply Reply Quote 0
                • E
                  evewes
                  last edited by Apr 26, 2010, 3:14 AM

                  I thought that folders automatically should be visisble in explorer. When i connected networkunit with
                  automatic reconnect they became visible under my computer. I gave them a "unitletter" which i renamed and put on desktop.
                  I think the speed is better in the tunnel than over internet.

                  Now i got all function i wanted and shall go further with mobile connection!

                  1 Reply Last reply Reply Quote 0
                  8 out of 8
                  • First post
                    8/8
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                    This community forum collects and processes your personal information.
                    consent.not_received