|
|
> Hello all, > > Please send a Cc: to me in addition to the list. I am not subscribed and > this will make it easier for me to follow the thread and reply. Thanks. > > > I have an office network (192.168.1.x) and I want to connect a w2k road > warrior > from anywhere using bridging (TAP). Mi current scenario is this: > > +---------------+ > | Linux (IPMasq)|eth0(192.168.0.3) -[192.168.0.1-ADSL-PUBLIC_ADDR-A] -- > <<INET>> > +---------------+ > eth1(192.168.1.3) > | > []-[]-[]-[]-[]-[] > network pc's > > > Somewhere on Earth I have a w2k: > > +---------------+ > | Windows 2000 |192.168.0.27 -[192.168.0.25-ADSL-PUBLIC_ADDR-B] -- > <<INET>> > +---------------+ > tap(192.168.1.150) > > > The two configurations are: > > Linux server Windows 2000 > ------------ ------------ > local 192.168.0.3 remote PUBLIC_ADDR_A > ifconfig 192.168.1.3 255.255.255.0 dev tap > port 5000 ifconfig 192.168.1.150 255.255.255.0 > dev tap0 secret key.txt > tun-mtu 1500 ping 10 > tun-mtu-extra 32 comp-lzo > mssfix 1400 verb 4 > secret key.txt mute 10 > persist-key tun-mtu 1500 > persist-tun tun-mtu-extra 32 > ping-timer-rem mssfix 1400 > ping-restart 60 > ping 10 > comp-lzo > user nobody > group nobody > verb 4 > > Once connected I have no errors. I can telnet, ftp, ping, etc. from w2k to > any > other UNIX/Linux/Windows machine existing in the network office. In short > ALL > WORKS FINE!. > > Well ... all except that from w2k I can't see any other machine using > network > neighborhood or typing the correct path and share. Is like if no broadcast > propagation occurred. > > The most strange thing is that from the Linux server in the office > network, when > I try to connect to w2k using smbclient I get the following messages. Look > at > this!!: > > # smbclient -L w2k > added interface ip=192.168.1.3 bcast=192.168.1.255 nmask=255.255.255.0 > added interface ip=192.168.0.3 bcast=192.168.0.255 nmask=255.255.255.0 > error connecting to 192.168.1.150:139 (Connection refused) > Error connecting to 192.168.1.150 (Connection refused) > Connection to w2k failed > > Connection refused??? I think the connection refused error you see is a message from the firewall in the linux endpoint, not in the win2k endpoint. > > I dont have any firewall installed on w2k. I have installed a fresh > windows2000 > prior to install openvpn. So I dont have any special or even typical > program > like msoffice installed on. > > I tried to connect via openvpn using dial-up connection and I get the same > results. So seems to have a w2k or bridging problem. Possible yes. But my bet is port 137:139 blocked at the firewall itself. > > I tried to connect a linux at the same network that w2k and try to connect > using > smbclient and it works!, probably because I'm using the physical ethernet > on w2k. So, out from the vpn circuit. Maybe i misunderstood your firewall setup, but try to add a rule to permit forward traffic between ports 137:139 from the LAN/samba server to the tap device. With iptables it could be: ... /sbin/iptables -A FORWARD -p ALL -i +tap -j ACCEPT ... > > Any idea or help would be appreciated. Try to extend the parameters appending a real share, using %U and password to smbclient command too (just to get rid from the possibility of a connection refused error by permission denied/wrong password). HTH, RSalles > > Thanks. > > -- > Jordi Sanfeliu > FIBRANET Network Services Provider > http://www.fibranet.com > > > > ------------------------------------------------------- > This SF.net email is sponsored by: SF.net Giveback Program. > Does SourceForge.net help you be more productive? Does it > help you create better code? SHARE THE LOVE, and help us help > YOU! Click Here: http://sourceforge.net/donate/ > _______________________________________________ > Openvpn-users mailing list > Openvpn-users@xxxxxxxxxxxxxxxxxxxxx > https://lists.sourceforge.net/lists/listinfo/openvpn-users > -- "A well-written program is its own heaven; a poorly-written program is its own hell." TAO of Programming - Book 4 ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2003-12/msg00028.html on line 318 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2003-12/msg00028.html on line 318 |