VPN and NAS using SMB

Comments

6 comments

  • Avatar
    Firewalla

    Yea, when you are on layer 3 VPN, you can't see the LAN devices, because that device is not on the LAN at your home. So, the best way is to access your resources using their IP address or firewalla local domain directly https://help.firewalla.com/hc/en-us/articles/1500002445242-What-is-the-Firewalla-local-domain-and-search-domain-

     

    0
    Comment actions Permalink
  • Avatar
    Mike B

    Okay, I read the post at the link you shared.  The mycloud NAS is clunky when not using Windows SMB networking.  I believe the only way I can access the mycloud device file structure using it's IP address is FTP,  or NFS.  I'll try to setup an NFS client and see if I can make an NFS drive mapping work well enough.  It's super handy just having a share show up in Windows Explorer.  If I can map the drive using NFS I'm guessing that will work.

    Any way to make SMB work with the Firewalla and Wireguard?

    0
    Comment actions Permalink
  • Avatar
    Mike B

    So, the NFS works, but the CAD software I used didn't like it.  It couldn't link files that it needed and kept giving me errors when using NFS.

    I'm back to SMB.  I don't know enough about it to figure out how to make it work.  Am I correct that the subnet being different is causing SMB not to work?  If so, any way to reconfigure the Firewalla VPN server to assign IPs on the same subnet as my NAS?

    0
    Comment actions Permalink
  • Avatar
    Mike B

    BTW, I have the NAS connected to the Firewalla LAN port and the Firewalla connected to my ISP router in Bridge mode.  My initial thought was that I would be able to help guard my NAS from WAN attacks this way.  Is there a way to use the DHCP in the Firewalla to assign an IP on the 10.200.181.0 subnet for the NAS?  If so that may work also.  What would be ideal would be to setup two IPs for the NAS.  One on the 192.168.1.0 network and the other on 10.200.181.0 so that I could access it from both local and VPN.  

    0
    Comment actions Permalink
  • Avatar
    Mike B

    https://help.firewalla.com/hc/en-us/articles/360007345553-Fun-Things-To-Do-with-Firewalla

    I'm 100% sure it is possible to do what I'm wanting to do now.  Just a matter of how much time I have to spend,  how much support I can get, and how secure it will be when I'm all said and done.

    Yes? 

    Can you point me to some information about how to customize the way Wireguard Server assigns IPs to Interfaces on Firewalla?  I'm guessing there is a config file somewhere that I could play with that would assign different IPs when a new client is added.

    0
    Comment actions Permalink
  • Avatar
    Firewalla

    Are you talking about making the wireguard side the same IP as your main network? if you are, it is not possible. WireGuard is a layer 3 VPN, to make Layer 2 connect, you need a different VPN protocol

    0
    Comment actions Permalink

Please sign in to leave a comment.