Sytuacja na innym łączu (LTE) wygląda niestety identycznie
Strony 1
Nie jesteś zalogowany. Proszę się zalogować lub zarejestrować.
eko.one.pl → Posty przez stasiekm
Strony 1
Sytuacja na innym łączu (LTE) wygląda niestety identycznie
Jak w eksplorerze windows wpiszesz \\192.168.1.117 to co widzisz?
-Host niedostępny lub brak uprawnień.
Przez przeglądarkę da się zalogować na http://192.168.1.117 ale Stora wyświetla informację, iż część funkcji jest niedostępna przy zdalnym dostępnie (tak interpretuje połączenie przez OpenVPN).
Udział Samba na routerze (dysk USB) też nie jest dostępny.
Sprawdzane z komputera z WinXP.
Na drugim kompie (Win7), połączonym także przez Aero2, sytuacja jest podobna -Stora (192.168.1.117) także jest widoczna tylko przez www ale po "dłuższym namyśle" znalazł się dysk podpięty do routera -po wpisaniu adresu \\192.168.1.1
konfiguracyjny etc/openvpn/server.conf:
mode server
port 1194
proto udp
tls-server
ifconfig 10.8.0.1 255.255.255.0
topology subnet
client-config-dir /etc/openvpn/ccd
client-to-client
cipher BF-CBC
keysize 128
dev tun
keepalive 25 180
status /var/openvpn/current_status
verb 3
dh /etc/openvpn/dh1024.pem
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key
tls-auth /etc/openvpn/ta.key 0
persist-key
persist-tun
comp-lzo
push "topology subnet"
push "route-gateway 10.8.0.1"
Jutro sprawdzę z pracy i dam znać jak to wygląda na innej sieci niż aero2.
Mam WR1043ND z Gargoyle 1.6.0.1 (r39154)
Włączyłem przez GUI serwer OpenVPN, zezwoliłem na "Dostęp do urządzeń w sieci LAN" i niestety nie działa mi Samba -klient łączy się z serwerem poprzez Aero2, można wejść na stronę routera z użyciem adresu 192.168.1.1, można pingować dysk sieciowy (Netgear Stora, 192.168.1.117) ale udziałów nie widać...
Poniżej statusy połączeń i firewall.
Z góry dzikęuję za rzucenie okiem
root@Gargoyle:/etc/openvpn# ifconfig
br-lan Link encap:Ethernet HWaddr 94:0C:6D:xx:xx:xx
inet addr:192.168.1.1 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::960c:xxxx:xxxx:xxxx/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:7838599 errors:0 dropped:0 overruns:0 frame:0
TX packets:4087661 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:10687063272 (9.9 GiB) TX bytes:320220550 (305.3 MiB)
eth0 Link encap:Ethernet HWaddr 94:0C:6D:xx:xx:xx
inet6 addr: fe80::960c:6dff:xxxx:xxxx/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:135184757 errors:0 dropped:21 overruns:60922 frame:0
TX packets:130739751 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:1305220431 (1.2 GiB) TX bytes:3264166391 (3.0 GiB)
Interrupt:4
eth0.1 Link encap:Ethernet HWaddr 94:0C:6D:xx:xx:xx
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:81272637 errors:0 dropped:0 overruns:0 frame:0
TX packets:41468436 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:108583744455 (101.1 GiB) TX bytes:4188195071 (3.9 GiB)
eth0.2 Link encap:Ethernet HWaddr 94:0C:6Dxx:xx:xx
inet addr:87.xx.xx.xx Bcast:87.xx.xx.xx Mask:255.255.255.0
inet6 addr: fe80::960c:6dff:xxxx:xxxx/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:53911735 errors:0 dropped:18 overruns:0 frame:0
TX packets:89271275 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:14842178540 (13.8 GiB) TX bytes:110222156907 (102.6 GiB)
imq0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
UP RUNNING NOARP MTU:1500 Metric:1
RX packets:4398467 errors:0 dropped:0 overruns:0 frame:0
TX packets:4398452 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:11000
RX bytes:282499330 (269.4 MiB) TX bytes:282481229 (269.3 MiB)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:558 errors:0 dropped:0 overruns:0 frame:0
TX packets:558 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:43761 (42.7 KiB) TX bytes:43761 (42.7 KiB)
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:10.8.0.1 P-t-P:10.8.0.1 Mask:255.255.255.0
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:4888 errors:0 dropped:0 overruns:0 frame:0
TX packets:5986 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:524396 (512.1 KiB) TX bytes:4695539 (4.4 MiB)
wlan0 Link encap:Ethernet HWaddr 94:0C:6D:xx:xx:xx
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:143157 errors:0 dropped:0 overruns:0 frame:0
TX packets:163849 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:107949854 (102.9 MiB) TX bytes:120910805 (115.3 MiB)
root@Gargoyle:/etc/openvpn# uci show firewall
firewall.@defaults[0]=defaults
firewall.@defaults[0].syn_flood=1
firewall.@defaults[0].input=ACCEPT
firewall.@defaults[0].output=ACCEPT
firewall.@defaults[0].forward=REJECT
firewall.@zone[0]=zone
firewall.@zone[0].name=lan
firewall.@zone[0].network=lan
firewall.@zone[0].input=ACCEPT
firewall.@zone[0].output=ACCEPT
firewall.@zone[0].forward=REJECT
firewall.@zone[1]=zone
firewall.@zone[1].name=wan
firewall.@zone[1].network=wan wan6
firewall.@zone[1].input=REJECT
firewall.@zone[1].output=ACCEPT
firewall.@zone[1].forward=REJECT
firewall.@zone[1].masq=1
firewall.@zone[1].mtu_fix=1
firewall.@forwarding[0]=forwarding
firewall.@forwarding[0].src=lan
firewall.@forwarding[0].dest=wan
firewall.@rule[0]=rule
firewall.@rule[0].name=Allow-DHCP-Renew
firewall.@rule[0].src=wan
firewall.@rule[0].proto=udp
firewall.@rule[0].dest_port=68
firewall.@rule[0].target=ACCEPT
firewall.@rule[0].family=ipv4
firewall.@rule[1]=rule
firewall.@rule[1].name=Allow-Ping
firewall.@rule[1].src=wan
firewall.@rule[1].proto=icmp
firewall.@rule[1].icmp_type=echo-request
firewall.@rule[1].family=ipv4
firewall.@rule[1].target=ACCEPT
firewall.@rule[2]=rule
firewall.@rule[2].name=Allow-DHCPv6
firewall.@rule[2].src=wan
firewall.@rule[2].proto=udp
firewall.@rule[2].src_ip=fe80::/10
firewall.@rule[2].src_port=547
firewall.@rule[2].dest_ip=fe80::/10
firewall.@rule[2].dest_port=546
firewall.@rule[2].family=ipv6
firewall.@rule[2].target=ACCEPT
firewall.@rule[3]=rule
firewall.@rule[3].name=Allow-ICMPv6-Input
firewall.@rule[3].src=wan
firewall.@rule[3].proto=icmp
firewall.@rule[3].icmp_type=echo-request echo-reply destination-unreachable packet-too-big time-exceeded bad-header unknown-header-type router-solicitation neighbour-solicitation router-advertisement neighbour-advertisement
firewall.@rule[3].limit=1000/sec
firewall.@rule[3].family=ipv6
firewall.@rule[3].target=ACCEPT
firewall.@rule[4]=rule
firewall.@rule[4].name=Allow-ICMPv6-Forward
firewall.@rule[4].src=wan
firewall.@rule[4].dest=*
firewall.@rule[4].proto=icmp
firewall.@rule[4].icmp_type=echo-request echo-reply destination-unreachable packet-too-big time-exceeded bad-header unknown-header-type
firewall.@rule[4].limit=1000/sec
firewall.@rule[4].family=ipv6
firewall.@rule[4].target=ACCEPT
firewall.@include[0]=include
firewall.@include[0].path=/etc/firewall.user
firewall.@include[0].reload=1
firewall.@include[1]=include
firewall.@include[1].type=script
firewall.@include[1].path=/usr/lib/gargoyle_firewall_util/gargoyle_additions.firewall
firewall.@include[1].family=IPv4
firewall.@include[1].reload=1
firewall.miniupnpd=include
firewall.miniupnpd.type=script
firewall.miniupnpd.path=/usr/share/miniupnpd/firewall.include
firewall.miniupnpd.family=IPv4
firewall.miniupnpd.reload=1
firewall.openvpn_include_file=include
firewall.openvpn_include_file.path=/etc/openvpn.firewall
firewall.openvpn_include_file.reload=1
firewall.redirect_enabled_number_0=redirect
firewall.redirect_enabled_number_0.name=FTP
firewall.redirect_enabled_number_0.src=wan
firewall.redirect_enabled_number_0.dest=lan
firewall.redirect_enabled_number_0.proto=tcp
firewall.redirect_enabled_number_0.src_dport=21
firewall.redirect_enabled_number_0.dest_ip=192.168.1.117
firewall.redirect_enabled_number_0.dest_port=21
firewall.redirect_enabled_number_1=redirect
firewall.redirect_enabled_number_1.name=FTP
firewall.redirect_enabled_number_1.src=wan
firewall.redirect_enabled_number_1.dest=lan
firewall.redirect_enabled_number_1.proto=udp
firewall.redirect_enabled_number_1.src_dport=21
firewall.redirect_enabled_number_1.dest_ip=192.168.1.117
firewall.redirect_enabled_number_1.dest_port=21
firewall.redirect_enabled_number_2=redirect
firewall.redirect_enabled_number_2.name=Stora
firewall.redirect_enabled_number_2.src=wan
firewall.redirect_enabled_number_2.dest=lan
firewall.redirect_enabled_number_2.proto=tcp
firewall.redirect_enabled_number_2.src_dport=80
firewall.redirect_enabled_number_2.dest_ip=192.168.1.117
firewall.redirect_enabled_number_2.dest_port=80
firewall.redirect_enabled_number_3=redirect
firewall.redirect_enabled_number_3.name=Stora
firewall.redirect_enabled_number_3.src=wan
firewall.redirect_enabled_number_3.dest=lan
firewall.redirect_enabled_number_3.proto=udp
firewall.redirect_enabled_number_3.src_dport=80
firewall.redirect_enabled_number_3.dest_ip=192.168.1.117
firewall.redirect_enabled_number_3.dest_port=80
firewall.ra_443_443=remote_accept
firewall.ra_443_443.local_port=443
firewall.ra_443_443.remote_port=443
firewall.ra_443_443.proto=tcp
firewall.ra_443_443.zone=wan
firewall.vpn_zone=zone
firewall.vpn_zone.name=vpn
firewall.vpn_zone.network=vpn
firewall.vpn_zone.input=ACCEPT
firewall.vpn_zone.output=ACCEPT
firewall.vpn_zone.forward=ACCEPT
firewall.vpn_zone.mtu_fix=1
firewall.vpn_zone.masq=1
firewall.vpn_lan_forwarding=forwarding
firewall.vpn_lan_forwarding.src=lan
firewall.vpn_lan_forwarding.dest=vpn
firewall.ra_openvpn=remote_accept
firewall.ra_openvpn.zone=wan
firewall.ra_openvpn.local_port=1194
firewall.ra_openvpn.remote_port=1194
firewall.ra_openvpn.proto=udp
firewall.vpn_wan_forwarding=forwarding
firewall.vpn_wan_forwarding.src=vpn
firewall.vpn_wan_forwarding.dest=wan
Strony 1
eko.one.pl → Posty przez stasiekm
Forum oparte o PunBB, wspierane przez Informer Technologies, Inc