× NETGEAR will be terminating ReadyCLOUD service by July 1st, 2023. For more details click here.
Orbi WiFi 7 RBE973
Reply

Re: Cannot access folders on NAS via VPN

BBuzz
Apprentice

Cannot access folders on NAS via VPN

unable to access folders and files on NAS via VPN. I can see the NAS but I don't get access to anything on the NAS. Is it a port problem? I need a solution.

Message 1 of 13
StephenB
Guru

Re: Cannot access folders on NAS via VPN


@BBuzz wrote:

I can see the NAS but I don't get access to anything on the NAS.


See it where?

Can you ping it?

Are you trying to access shares using SMB? If not, what protocol?

 

Also, what VPN are you using?

Message 2 of 13
BBuzz
Apprentice

Re: Cannot access folders on NAS via VPN

I can handshake the router at the NAS location via PPTP VPN and that is as far as I can get. Any further access is not possible. 

I cannot ping the NAS 

Message 3 of 13
BBuzz
Apprentice

Re: Cannot access folders on NAS via VPN

I am using SMB

I cannot ping NAS

Windows PPTP VPN

I also tried Open VPN with only handshake results

Message 4 of 13
schumaku
Guru

Re: Cannot access folders on NAS via VPN

Reads like basic VPN issues - much more but a problem with your undefined NAS, probably an obsolete legacy ReadyNAS, probably a legacy ReadNAS OS 6 system ... who knows.

 

Hard to understand using PPTP, because of the Point-to-Point Tunneling Protocol and GRE have problems with Network Address Translation (NAT), NAT routers use techniques such as PPTP passthrough that allow GRE packets to be mapped to clients - so only if you have a good VPN router in place.

 

Your Internet connection (where you intend to terminate the VPN) does have a public routable IPv4 address, or are you located behind e.g. an ISP deploying Carrier Grade NAT (CGN)?

 

OpenVPN proofs to be much more NAT-friendly, and offers nice readable logs. I don't know what to make out of your "Open VPN with only handshake results".

 

Message 5 of 13
StephenB
Guru

Re: Cannot access folders on NAS via VPN


@BBuzz wrote:

I can handshake the router at the NAS location via PPTP VPN and that is as far as I can get. Any further access is not possible. 

 

I am using SMB

I cannot ping NAS

Windows PPTP VPN

I also tried Open VPN with only handshake results


Can you access or ping other devices behind the router at the NAS location?

 

What router are you using (manufacturer/model)?  Is it running open source software, or the manufacturer's?

Message 6 of 13
BBuzz
Apprentice

Re: Cannot access folders on NAS via VPN

No I have no access beyond the handshake. I have access to the router using the IP and admin password but nothing direct.
The router on the Nas end is a T P Link AXE7800 Tri-Band  Archer AXE95 6E Wi-Fi 
The router from my access side is a Netgear RAX 75

 

 

 

Message 7 of 13
BBuzz
Apprentice

Re: Cannot access folders on NAS via VPN

I BELIEVE IT IS RUNNING MANUFACTERS 

Message 8 of 13
StephenB
Guru

Re: Cannot access folders on NAS via VPN


@BBuzz wrote:
No I have no access beyond the handshake. I have access to the router using the IP and admin password but nothing direct.

 


So not an issue with the NAS, as you aren't able to see anything on your local network.

 

When you say "handshake", do you mean that the VPN client is connecting, but you have no access?

Are you testing this with a phone, or with a PC?

 

I haven't played with PPTP for years, but do use openVPN.

 

When you tried openVPN, did you export the configuration file from the router?  

 

Also, did you use the same router settings as the example of page 69 of the manual?

 

Message 9 of 13
BBuzz
Apprentice

Re: Cannot access folders on NAS via VPN

I am getting access through the NAS router location but that is the extent of access (Handshake)

I am using a PC 

I have tried Open VPN but with the same (Handshake) results

I will try your suggestion on page 65 of the TP Link manual and let you know results

Message 10 of 13
BBuzz
Apprentice

Re: Cannot access folders on NAS via VPN

I opened all the ports I thought needed as per instructions from the TP Link manual as you suggested. Is there another security solution that can be stopping me from gaining access to my netgear NAS? I am the administrator for the NAS

Message 11 of 13
StephenB
Guru

Re: Cannot access folders on NAS via VPN


@BBuzz wrote:

I opened all the ports I thought needed as per instructions from the TP Link manual as you suggested. Is there another security solution that can be stopping me from gaining access to my netgear NAS?


It sounds like you can't reach any device on the home network.  If that is the case, then it has nothing to do with the NAS, and everything to do with the VPN.  

 

Have you confirmed that the ports are all open using https://canyouseeme.org/ ?

Are you seeing errors with the Windows OpenVPN client?

 

If you have the Windows firewall (other other internet security software) running on the PC, then that might be getting in the way.

 

Message 12 of 13
schumaku
Guru

Re: Cannot access folders on NAS via VPN

To start with, check the OpenVPN GUI logs, right click if you have multiple connections defined. Obvious connectivity problems caused by port forwarding issues et all would become visible. Here an example:

...

2023-09-21 22:25:11 DEPRECATED OPTION: --cipher set to 'BF-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'BF-CBC' to --data-ciphers or change --cipher 'BF-CBC' to --data-ciphers-fallback 'BF-CBC' to silence this warning.
2023-09-21 22:25:11 OpenVPN 2.5.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jun 17 2021
2023-09-21 22:25:11 Windows version 10.0 (Windows 10 or greater) 64bit
2023-09-21 22:25:11 library versions: OpenSSL 1.1.1k 25 Mar 2021, LZO 2.10
Enter Management Password: xxxxxxxxxxx
2023-09-21 22:25:18 TCP/UDP: Preserving recently used remote address: [AF_INET]nnn.nnn.nn.nn.68:1194
2023-09-21 22:25:18 UDP link local (bound): [AF_INET][undef]:1194
2023-09-21 22:25:18 UDP link remote: [AF_INET]nnn.nnn.nn.nn:1194
2023-09-21 22:25:38 [synology.com] Peer Connection Initiated with [AF_INET]nnn.nnn.nn.nn:1194
2023-09-21 22:25:39 open_tun
2023-09-21 22:25:39 tap-windows6 device [Local Area Connection] opened
2023-09-21 22:25:39 Notified TAP-Windows driver to set a DHCP IP/netmask of 172.20.100.6/255.255.255.252 on interface {7F8340AA-B642-4E10-A51D-76514AC28668} [DHCP-serv: 172.20.100.5, lease-time: 31536000]
2023-09-21 22:25:39 Successful ARP Flush on interface [14] {7F8340AA-B642-4E10-A51D-76514AC28668}
2023-09-21 22:25:39 IPv4 MTU set to 1500 on interface 14 using service
2023-09-21 22:25:44 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2023-09-21 22:25:44 Initialization Sequence Completed

Message 13 of 13
Discussion stats
  • 12 replies
  • 1710 views
  • 0 kudos
  • 3 in conversation
Announcements