OpenWrt Forum Archive

Topic: Samba reachable from VPN

The content of this topic has been archived on 1 Apr 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.

Post #1
superbear
4 Mar 2007, 16:17

Hi everybody,

I want to configure samba to share some dirs in my OpenVPN Subnet... is this possible?
And can i run 2 samba server one for my LAN and another for VPN?

superbear

Post #2
loswillios
4 Mar 2007, 16:52

use openvpn bridge (tap-device)

Post #3
superbear
4 Mar 2007, 23:59

thats excactly what i'm using...but the vpn subnet is not the same subnet as my normal subnet!

VPN: 192.168.250.0
LAN: 192.168.1.0

do i have to give vpn users full access to my lan to use samba on vpn?

how can i get access to the samba server (same as vpn server) to vpn users?

superbear

(Last edited by superbear on 5 Mar 2007, 00:00)

Post #4
loswillios
5 Mar 2007, 00:03

You could try to make samba listen on the VPN-IP too

Post #5
superbear
5 Mar 2007, 15:45

ok i added some lines to my smb.conf, but i think my problem is that openvpn clients can't reach the server!
I can't ping the vpn server!

my openvpn.conf:

server-bridge 192.168.250.1 255.255.255.0 192.168.250.10 192.168.250.200

#daemon       #commented for debug
port 1194
proto udp
dev tap0
tls-server

tun-mtu 1500

client-to-client

cipher AES-256-CBC

dh /etc/openvpn/scripts/easy-rsa/keys/dh2048.pem
ca /etc/openvpn/scripts/easy-rsa/keys/ca.crt
cert /etc/openvpn/scripts/easy-rsa/keys/server.crt
key /etc/openvpn/scripts/easy-rsa/keys/server.key

user nobody             # Nur Linux
group nogroup           # Nur Linux

persist-key
persist-tun

#log /var/log/openvpn.log
#log-append /var/log/openvpn_append.log       #commented for debug
status /etc/openvpn/openvpn-status.log            #commented for debug

ifconfig-pool-persist /etc/openvpn/ipp.txt

keepalive 10 60

comp-lzo

verb 3

so i thought i could ping my openVPN server with:

ping 192.168.250.1

but:

matthias@elton:~/openvpn$ ping 192.168.250.1
PING 192.168.250.1 (192.168.250.1) 56(84) bytes of data.
From 192.168.250.11 icmp_seq=1 Destination Host Unreachable
From 192.168.250.11 icmp_seq=2 Destination Host Unreachable
From 192.168.250.11 icmp_seq=3 Destination Host Unreachable

--- 192.168.250.1 ping statistics ---
5 packets transmitted, 0 received, +3 errors, 100% packet loss, time 4009ms
, pipe 3

my routes on client side:

matthias@elton:~/openvpn$ route -n
Kernel IP Routentabelle
Ziel            Router          Genmask         Flags Metric Ref    Use Iface
192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 eth0
192.168.250.0   0.0.0.0         255.255.255.0   U     0      0        0 tap0
0.0.0.0         192.168.1.250   0.0.0.0         UG    0      0        0 eth0

what do i have to do to be able to ping my VPN server from client side?
clients are able to ping each other!!!

The discussion might have continued from here.