IPSec/L2TP and Network Resources

I need remote access VPN, not site to site VPN, because I need to access by any network. As you see, I’m using a Mikrotik as server and a PC with OpenVPN software as client.

The point of UAP is the less important to me right now. The most important requirement is the SMB access for file sharing.

Regards.

Sounds good, lastly could clarify the MAC telnet requirement. Is their a reason you NEED that vs traditional IPv4 or IPv6 access to the MikroTik over the remote access VPN?

It’s for configure new mikrotiks remotely removing default configuration.

Regards.

OK! Finally I can connect using TAP-dev. I changed in OVPN server Mode from IP to Ethernet and voilá.

SMB: Keep trying! :frowning:
UAP: I can see the AP’s in Wireless Controller. OK!
CDP: Now can see the Mikrotik over neighbors in WinBox and can access over MAC. OK!

regards.

You’ll have to post an updated config of the MikroTik to further troubleshoot SMB.

Your comment about UniFi, are you running the controller on the VPN client? Is this VPN client meant to be transient and change networks all the time but stay connected via VPN?

The VPN isn`t for stay 24/7 connected. Is for file sharing by SMB and for network administration.

The UniFi controller is running on my PC and in the same PC is running OpenVPN client software. Anyway I believe that is OK for now.

Now, I can see some computers, but I disabled Windows Firewall. I not have installed a diferent firewall and I’m running Windows 10 Enterprise.

The main purpose of this VPN is the file sharing, especifically with a NAS that stay in the network. This NAS is a computer running FreeNAS. The problem is that I can`t see it.

My workgroup is “WORKGROUP” and I not know if I connect physically at the network, I can see this NAS.

Anyway apparently the Mikrotik it seems to working fine and the OVPN client too.

The problem now seems stay between FreeNAS and my firewall.

Regards.

Ok, I have news.

If I connect physically to the network, I can see the NAS, but over VPN I can´t.

Then, I change the pool of VPN to the same subnet as local network and WORKS, inclusive with Windows firewall enabled.

Now I thinking something like the SMB protocol can’t be routed between OpenVPN range (10.0.0.0/24) and the LAN range (192.168.1.0/24).

Any ideas?

Regards.

Starting simple, Is the gateway of the NAS set to point to the router with OpenVPN or at least a route on the NAS for 10.0.0.0/24 towards the router? Also, discovery may not route. You may need to access the UNC path directly. (\192.168.1.<share>)

No. But ideally I need that the VPN users can see all computers over SMB, not the NAS only.

Anyway I can modify the subnet and pools for leave all on the same subnet and with this I can completly solve all this case, but anyway is good know if I can do something.

Regards.