[Samba] Samba network shares over VPN
Daniel Müller
mueller at tropenklinik.de
Fri Mar 9 00:38:17 MST 2012
No, only if you are away on the road with your netbook or something like
that, this is for security reasons.
If you run two remote sites (offices!!) over openvpn in bridged mode you
will work as if all clients are in one office and not miles away.
Good Luck
Daniel
-----------------------------------------------
EDV Daniel Müller
Leitung EDV
Tropenklinik Paul-Lechler-Krankenhaus
Paul-Lechler-Str. 24
72076 Tübingen
Tel.: 07071/206-463, Fax: 07071/206-499
eMail: mueller at tropenklinik.de
Internet: www.tropenklinik.de
-----------------------------------------------
-----Ursprüngliche Nachricht-----
Von: Fernando Lozano [mailto:fernando at lozano.eti.br]
Gesendet: Donnerstag, 8. März 2012 15:12
An: mueller at tropenklinik.de
Cc: samba at lists.samba.org
Betreff: Re: AW: [Samba] Samba network shares over VPN
Hi there,
So any remote VPN user, be it OpenVPN, Cisco or Microsoft, has to provide
login/password for each file server? This is a very bad user experience,
it's very different from when the user is on the local network and different
from Windows XP.
I can't believe there's no way to transparently access network shares over
VPN. I was hoping this was some compatibility issue between Windows
7 and Samba.
I tried advice found on the net about editing the registry to set
NDisDeviceType, for example:
http://social.technet.microsoft.com/Forums/en-US/w7itpronetworking/thread/8a
3e9b05-353b-4250-a023-066a085e9657
Tried also provide a default gateway for the TAP adapter, for example:
http://superuser.com/questions/120038/changing-network-type-from-unidentifie
d-network-to-private-network-on-an-openvpn
None of those chances had any effect. Users still log in using their domain
accounts (cached profile), connect to the VPN, and are reqired to provide
again the domain login and password to access file servers.
Funny the seccond change (default gateway for the VPN) should have allowed
me to change the network location, but it didn't worked.
PS: Sorry for the delay between replies. My ISP is having problems with
blacklists and I am being refured by the list. Time to switch to anohter
ISP. :-(
[]s, Fernando Lozano
> This is a windows7 bug and not a openvpn.
> I solve this by just connecting with openvpn and then running a script
> to map the drives with interact username and password.
> If you use openvpn in brige mode you do not need the scripts.
>
>
>
> -----------------------------------------------
> EDV Daniel Müller
> -----Ursprüngliche Nachricht-----
> Von: samba-bounces at lists.samba.org
> [mailto:samba-bounces at lists.samba.org] Im Auftrag von Fernando Lozano
> Gesendet: Mittwoch, 22. Februar 2012 14:47
> An: samba at lists.samba.org
> Betreff: [Samba] Samba network shares over VPN
>
> Hi there,
>
> I have two computers, one Windows XP other Windows 7 (actually a dozen
> each) which are members of a Samba domain. Users have no problem login
> in to the domain, running the login script to map network drives and
> accesssing files on them, for both computers.
>
> I want to give users remote access using a VPN (OpenVPN to be exact).
> The idea is to login on a disconnected computer using a domain account
> cached profie, then connnect to the VPN, then map network drives.
> OpenVPN allows running a batch file on connection sucessfull and I use
> this to run the user login script from the PDC netlogon share.
>
> The Windows XP computer does this fine. Happy remote users.
>
> But the Windows 7 doesn't. It asks for user login and password for
> each server (network drives are on different samba member servers)
>
> Someone told me the problem should to be related to the fact the TAP
> adapter (the VPN virtual network adapter) is considered by windows as
> an "unknown network" and classified as a "public network". But I could
> not find a way to turn this into a home / work or domain network location.
>
> I already tried customising and disabling windows firewall, no changes.
>
> Any ideas on how to transparently access network shares from domain
> member servers over a vpn using windows 7?
>
>
> []s, Fernnado Lozano
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
>
More information about the samba
mailing list