Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
[Samba] Netbios over VPN
131 views
Skip to first unread message
Andrew Mark
Jul 7, 2012, 11:20:02 PM7/7/12
to
I am attempting to utilize BackupPC on a Fedora 14 server to backup a remote client.
As I understand, it's primary mechanism for finding clients is performing a nmblookup <clientname>
This works fine for computers connected to the local network.
My issue is extending ?Samba's? search to encompass our other network - the point-to-point VPNs
Using OpenVPN, we have a number of road warriors who connect their VPN to gain access to the samba server.
Each has a unique static IP address in the 10.30.251 range and when connected, I can find them but not samba
i.e.
#> ping john_laptop
--- john.inspirah.com ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2001ms
rtt min/avg/max/mdev = 9.900/14.764/24.388/6.805 ms
#> nmblookup john_laptop
querying john_laptop on 127.255.255.255
querying john_laptop on 10.30.7.255
name_query failed to find name john_laptop
How to I configure Samba or whatever Linux service is necessary to query the 10.30.251.255 network as well
--
Cheers,
Andrew Mark | Development Analyst | www.aimsystems.ca
local: 519-837-1072 | fax: 519-837-4063 | int'l 800-465-2961
12-350 Speedvale Ave. W. | Guelph, ON | N1H 7M7 | Canada
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
As I understand, it's primary mechanism for finding clients is performing a nmblookup <clientname>
This works fine for computers connected to the local network.
My issue is extending ?Samba's? search to encompass our other network - the point-to-point VPNs
Using OpenVPN, we have a number of road warriors who connect their VPN to gain access to the samba server.
Each has a unique static IP address in the 10.30.251 range and when connected, I can find them but not samba
i.e.
#> ping john_laptop
--- john.inspirah.com ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2001ms
rtt min/avg/max/mdev = 9.900/14.764/24.388/6.805 ms
#> nmblookup john_laptop
querying john_laptop on 127.255.255.255
querying john_laptop on 10.30.7.255
name_query failed to find name john_laptop
How to I configure Samba or whatever Linux service is necessary to query the 10.30.251.255 network as well
--
Cheers,
Andrew Mark | Development Analyst | www.aimsystems.ca
local: 519-837-1072 | fax: 519-837-4063 | int'l 800-465-2961
12-350 Speedvale Ave. W. | Guelph, ON | N1H 7M7 | Canada
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
kazabe
Jul 8, 2012, 7:50:01 AM7/8/12
to
did you have the dns service enabled?
2012/7/5 Andrew Mark <and...@aimsystems.ca>:
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
2012/7/5 Andrew Mark <and...@aimsystems.ca>:
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Sebastian Suchanek
Jul 8, 2012, 11:50:02 AM7/8/12
to
Am 05.07.2012 16:30, schrieb Andrew Mark:
> I am attempting to utilize BackupPC on a Fedora 14 server to backup a remote client.
> As I understand, it's primary mechanism for finding clients is performing a nmblookup <clientname>
> This works fine for computers connected to the local network.
> My issue is extending ?Samba's? search to encompass our other network - the point-to-point VPNs
> Using OpenVPN, we have a number of road warriors who connect their VPN to gain access to the samba server.
> Each has a unique static IP address in the 10.30.251 range and when connected, I can find them but not samba
> [...]
> I am attempting to utilize BackupPC on a Fedora 14 server to backup a remote client.
> As I understand, it's primary mechanism for finding clients is performing a nmblookup <clientname>
> This works fine for computers connected to the local network.
> My issue is extending ?Samba's? search to encompass our other network - the point-to-point VPNs
> Using OpenVPN, we have a number of road warriors who connect their VPN to gain access to the samba server.
> Each has a unique static IP address in the 10.30.251 range and when connected, I can find them but not samba
I presume, you're using one or more TUN device(s) on OpenVPN? If so, I
recommend switching to TAP devices instead, if possible. Bridging should
save you from a lot of trouble around NetBIOS/SMB.
Best Regards,
Sebastian
Bob Miller
Jul 8, 2012, 6:30:02 PM7/8/12
to
Hello,
I believe you can use WINS to solve this problem. It's been a while, my
neurons may be rusty, but I had a similar set up using openswan. I
believe winbind will do what you want; configure samba to use winbind
and your road warriors with that as their wins server. If I remember
correctly, the road warriors will register with the winbind server, then
everyone on the network configured to use the winbind server should be
able to find them...
Check here for better information (or at least a place to start):
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/NetworkBrowsing.html#id2585378
Bob Miller
867-334-7117 / 867-633-3760
http://computerisms.ca
b...@computerisms.ca
Network, Internet, Server,
and Open Source Solutions
I believe you can use WINS to solve this problem. It's been a while, my
neurons may be rusty, but I had a similar set up using openswan. I
believe winbind will do what you want; configure samba to use winbind
and your road warriors with that as their wins server. If I remember
correctly, the road warriors will register with the winbind server, then
everyone on the network configured to use the winbind server should be
able to find them...
Check here for better information (or at least a place to start):
http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/NetworkBrowsing.html#id2585378
867-334-7117 / 867-633-3760
http://computerisms.ca
b...@computerisms.ca
Network, Internet, Server,
and Open Source Solutions
Ben Metcalfe
Jul 8, 2012, 7:40:01 PM7/8/12
to
Additionally on Sebastian's point:
http://openvpn.net/index.php/open-source/faq/75-general/293-what-is-the-principle-behind-openvpn-tunnels.html
"People who are running applications that need the special features of
ethernet (which won't work on an IP-only network) will often bridge their
physical local ethernet with a tap device (using a utility such as brctl on
Linux), then VPN the tap device to another similar setup at the other end.
This allows OpenVPN to route ethernet broadcasts and non-IP protocols such
as Windows NetBios over the VPN..."
-Ben.
http://openvpn.net/index.php/open-source/faq/75-general/293-what-is-the-principle-behind-openvpn-tunnels.html
"People who are running applications that need the special features of
ethernet (which won't work on an IP-only network) will often bridge their
physical local ethernet with a tap device (using a utility such as brctl on
Linux), then VPN the tap device to another similar setup at the other end.
This allows OpenVPN to route ethernet broadcasts and non-IP protocols such
as Windows NetBios over the VPN..."
-Ben.
Daniel Müller
Jul 9, 2012, 2:30:02 AM7/9/12
to
This is right. Openvpn does the job perfectly fine here connecting our far
away office in our network and Samba-Domain.
-----------------------------------------------
EDV Daniel Müller
Leitung EDV
Tropenklinik Paul-Lechler-Krankenhaus
Paul-Lechler-Str. 24
72076 Tübingen
Tel.: 07071/206-463, Fax: 07071/206-499
eMail: mue...@tropenklinik.de
Internet: www.tropenklinik.de
-----------------------------------------------
-----Ursprüngliche Nachricht-----
Von: samba-...@lists.samba.org [mailto:samba-...@lists.samba.org] Im
Auftrag von Ben Metcalfe
Gesendet: Montag, 9. Juli 2012 01:35
Cc: sa...@lists.samba.org
Betreff: Re: [Samba] Netbios over VPN
away office in our network and Samba-Domain.
-----------------------------------------------
EDV Daniel Müller
Leitung EDV
Tropenklinik Paul-Lechler-Krankenhaus
Paul-Lechler-Str. 24
72076 Tübingen
Tel.: 07071/206-463, Fax: 07071/206-499
eMail: mue...@tropenklinik.de
Internet: www.tropenklinik.de
-----------------------------------------------
-----Ursprüngliche Nachricht-----
Von: samba-...@lists.samba.org [mailto:samba-...@lists.samba.org] Im
Auftrag von Ben Metcalfe
Gesendet: Montag, 9. Juli 2012 01:35
Cc: sa...@lists.samba.org
Betreff: Re: [Samba] Netbios over VPN
L.P.H. van Belle
Jul 9, 2012, 3:00:02 AM7/9/12
to
maybe because the name : john_laptop is not RFC.
try changing it to : john-laptop and test again.
read : http://en.wikipedia.org/wiki/Hostname#Restrictions_on_valid_host_names
in short : While a hostname may not contain other characters, such as the
underscore character (_), other DNS names may contain the underscore.[2]
Systems such as DomainKeys and service records use the underscore as a
means to assure that their special character is not confused with hostnames
Louis
>-----Oorspronkelijk bericht-----
>Van: and...@aimsystems.ca
>[mailto:samba-...@lists.samba.org] Namens Andrew Mark
>Verzonden: 2012-07-05 16:30
>Aan: sa...@lists.samba.org
>Onderwerp: [Samba] Netbios over VPN
try changing it to : john-laptop and test again.
read : http://en.wikipedia.org/wiki/Hostname#Restrictions_on_valid_host_names
in short : While a hostname may not contain other characters, such as the
underscore character (_), other DNS names may contain the underscore.[2]
Systems such as DomainKeys and service records use the underscore as a
means to assure that their special character is not confused with hostnames
Louis
>-----Oorspronkelijk bericht-----
>Van: and...@aimsystems.ca
>[mailto:samba-...@lists.samba.org] Namens Andrew Mark
>Verzonden: 2012-07-05 16:30
>Aan: sa...@lists.samba.org
>Onderwerp: [Samba] Netbios over VPN
Niels Dettenbach
Jul 9, 2012, 7:00:01 AM7/9/12
to
Am Montag, 9. Juli 2012, 08:29:00 schrieb Daniel Müller:
> This is right. Openvpn does the job perfectly fine here connecting our far
> away office in our network and Samba-Domain.
We can recommend OpenVPN too.
> This is right. Openvpn does the job perfectly fine here connecting our far
> away office in our network and Samba-Domain.
The "easiest" way to connect to a Samba by VPN in the majority of scenarios
should be the OpenVPN TAP mode (layer 2) - but security may more difficult to
handle a bit.
-> see i.e.:
http://openvpn.net/index.php/open-source/documentation/howto.html#samba
for some basics about this...
To "solve" name resolution questions i knew manies who are using a DNS with
their samba / OpenVPN setup. Not shure how far samba / windows network
browsing is working today over tap correctly (did not tried that in the past
again) but may be there are more clever solutions possible today.
hth
best regards,
Niels.
--
---
Niels Dettenbach
Syndicat IT & Internet
http://www.syndicat.com
PGP: https://syndicat.com/pub_key.asc
---
Fernando Lozano
Jul 9, 2012, 9:50:02 AM7/9/12
to
Niels Dettenbach <n...@syndicat.com> escreveu:
hth
best regards,
Niels.
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Hi there,
We are using tun (routed) without problems. Just a matter of configuring wins and/or dns.
[]s, Fernando Lozano
0 new messages