NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
VPN
6 TopicsZeroTier and the ReadyNAS
NASTools mentions in the Apps sub-forum that he is looking into an app for ZeroTier. I started a small tangent discussion and thought it better to move it to its own thread. I. too, have been looking into ZeroTier, and I think it has great potential on the ReadyNAS. For those open to SSHing in, it's an easy install in OS6.6.0. But everything has to be done via SSH and the ZeroTier CLI, so it's not for everyone (yet). If NASTools does get an app with a GUI, then all aboard. I suppose ShellInABox could also be used, since it gives SSH access -- I have never tried it. I have installed ZeroTier One (the official name of the application) on OS6.6.0 running on legacy x86 devices. With OS6.6 now being based on Debian 8 (aka jessie), it should also install on ARM devices using the standard method, according to their documentation. But I do not have an ARM device on which to try it. Anyone wishing to risk the possibility of needing to factory default if it does not work right is invited to give it a try (see instructions below) and let us know in a reply if it works. So, "What is ZeroTier?", you ask. The best desctiption I have seen is that is it a "mesh VPN". That is, it is a VPN that runs in conjunction with your normal NAT, not instead or in the middle of it. Instead of routing everything over the VPN, as is the typical VPN implementation (though it can be made to do so), it sets up one or more parallel networks that you can access through ZeroTier. You can find more information at https://www.zerotier.com/. I have installed it on two ReadyNASes, a PC, and my Android phone. I can now directly access the NASes (including the admin page) from my PC or phone when away from home as if I were on the same LAN (though my phone's resolution and the OS6 user interface don't work well together). I can map drives on my PC. I can create a backup job between NASes, even if they are in physically different locations. No need for Rsync over SSH, ReadyCloud or ReadyNAS Replicate. Just a standard backup process using the other NAS's ZeroTier IP address instead of it's normal one. For me, this is huge. It's a lot like ReadyNAS Remote and then some. Like the ReadyNAS apps, it does use an external server to establish the route between devices, but it does not route all traffic though that server. As a result, it's only bottleneck is the connection speeds of the devices There is an option to run your own server, though documentation is sparce (likely intentionally, as doing so is only for highly skilled users). Because traffic takes the most direct route, including staying on your LAN if appropriate, this also means you can use the same Windows drive mappings no matter where you are. When both devices are on your LAN, speed does not suffer by being routed "around the world". But your internet traffic also doesn't suffer when you are on the road by being routed through your VPN gateway. Note that this could open a remote PC up as an attrack point on the LAN, so caution should be used by business users. Having the ZeroTier connection made automatically with stored credentials is probably not wise for many cases. I was initially reluctant to install ZeroTier because it just used a script and I could not see what it was doing. But I downloaded and looked over the script and became convinced it would work. And work, it did. Just go here: https://www.zerotier.com/product-one.shtml and run the CURL command listed for the Linux install from an SSH session. I point to the page instead of duplicating the command in case it changes in the future. I did run an apt-get update first, because I think the system should be up to date before installing any "foreign" apps, but Netgear does not recommend doing the update, as it may create conflicts within the OS. The script checks what version of Linux and what processor you are using, then installs the appropriate files. It installed fine on my x86 OS6.6.0 system. It should install on ARM 6.6.0 and may install on older X86 6.x, but I have not tried it. Instructions for installing on earlier ARM OS6 can be found here: https://www.andrewmunsell.com/blog/remote-access-to-readynas-zerotier-one/. If it were to run on OS4.x or 5.x, it would probably also need to be compiled and scripts manually installed as described on that page. If it works on OS4 and OS5, it would be the answer to the lack of ReadyNAS Remote and ReadyCloud compatibility on the same client machine. But even if it doesn't, ZeroTier, unlike ReadyCloud, is compatible with running ReadyNAS Remote on a PC, so you could have concurrent ways to access both old and new systems, though not between each other. Once installed, it's just a mater of using the zerotier-cli command or Windows/Mac/Android/iOS GUI to join all devices to the same network and get an IP address on that network. ip addr show now now shows a new zto: interface and (if connected to a network), the IP address associated wih it. The interface and network connections survive a reboot, courtesy of startup scripts installed by the ZeroTier installer. It was not necessary for me to change any configuration on my router. Note that uninstalling may be more difficult than installing, as there is no uninstall script. But you can leave it installed but disconnected form any networks and it should cause no problem. Please share your installation experience, good or bad, especially if not on an OS6.6.0 or above X86 system.14KViews4likes13Comments
ReadyNAS 312 6.6.1 systemd-journal log
I see a lot of these style entires: * apache2[19277]: [warn] [client 192.168.1.118] mod_auth_token: SHM capacity FULL. Shift memory to fit one more token. ts_end 320f83f8" * in the systemd-journal log file. Is this a 'thing' to be concerned about? Yes, we are having some behavioural issues with this box (losing Readycloud app access via the VPN, the device showing "offline" in readycloud portal occasionally and the the NAS suddently being inaccessible locally which seems to crash Mac OS X FInder. Restarting Finder reconnects and it is OK again. We don't know if it is a local LAN problem. The device has 2 LAN sockets. Only one is connected, should we connect both or just try the other one for a while? Is there a log file that would indicate 'Network' connection errors? The standard web interface errors do not show any erros or warnings of this type at all. we have a case request out with Netgear support but I know that some of you are superb with these things. Thanks, Andy.3.4KViews0likes2Comments
OpenVPN download speed extremely slow on Readynas duo 104
Hello, I've recently set up a OpenVPN tunnel from my ReadyNas Duo 104 with my VPN service provider (ivpn.net). Everything is working fine, but I am experiencing massive performance losses. I'm on a 100/10 Mbit connection and without VPN i can max out my bandwidth's download speed on my NAS. As soon as i connect to the VPN my download speed goes down to as low as 8Mbit/s. I have no problems what so ever using the vpn on other platforms (windows, ios), and the server responds within 20-30ms. I've been messing around with the MTU size, different ports and everything I could find out. Does anyone know what I can do? Is the hardware in the NAS simply too weak for encrypting my data to meet those speeds? Any tips are helpful. Thanks!4KViews0likes2CommentsHalf of Pings Drop over IPSec Tunnel
Hi there! Pull hairs over here, I have a IPSec Tunnel between two pFsense Firewalls. Pings to both Gateways without issue, pings to PCs on Remote LAN succeed without issue. When pinging the ReadyNAS on the Remote Network, half of the pings fail while the other half succeed. At this time, I cannot access the ReadyNAS on the Remote Network from the Main Network over VPN. There is no issue pining the ReadyNAS when on the same local subnet. Local Nework: 192.168.10.x Remote LAN: 192.168.30.x (c) 2015 Microsoft Corporation. All rights reserved. C:\WINDOWS\system32>ping 192.168.30.50 Pinging 192.168.30.50 with 32 bytes of data Request timed out. Reply from 192.168.30.50: bytes=32 time=147ms TTL=62 Request timed out. Reply from 192.168.30.50: bytes=32 time=133ms TTL=62 Ping statistics for 192.168.30.50: Packets: Sent = 4, Received = 2, Lost = 2 (50% loss), Approximate round trip times in milli-seconds: Minimum = 133ms, Maximum = 147ms, Average = 140ms C:\WINDOWS\system32>3.6KViews0likes2CommentsSoftether VPN (Cannot Access ReadyNAS)
Hi, I can see this issue has been reported before but i have no idea how to resolve as there hasn't been any real clear solution. Basically my L2TP VPN server on my ReadyNAS is working and i can VPN in successfully from the internet and see all of my LAN devices with the exception of the ReadyNAS. I am unable to access the ReadyNAS admin page. I have read that a TAP device could be setup but i have no idea what i need to configure for this. I have a Local Bridge setup from my Virtual Hub on the VPN server to the eth0 NIC on the ReadyNAS itself which is connecting the virtual hub to my physical LAN. I noticed in the Network Adaptor drop down box i have eth0 and LeafNets, does anyone know what LeafNets is? I only have one physical LAN port on the NAS by the way. Any help to make my ReadyNAS accessible via VPN connection would be much appreciated. Thanks Shaun4.7KViews0likes4Commentscannot access Readynas over vpn
Hi I have a netgear fvs318 router at work that I have a vpn setup on. I am able to access my network remotely using software on my laptop and am able to access the server and router login page. I just recently installed a readynas 312 on the network and it's working great but I am unable to access it remotely through the vpn. I can connect to the network and I am able to ping the nas address successfully, but I cannot connect to any shares and I cannot access the admin page for nas settings. Any ideas why this isn't working through the VPN Thank youSolved5.3KViews0likes4Comments
