Hello!
I have one router for separated bridges - one for a private flat and second for an office. In second bridge, which is office, there is NAS and now the owner who is in his flat want to get access to this NAS from his private network on first bridge. Is there a simple way to do this without rebuilding whole structure?
If you want to keep both subnets separate, then the only way is to have owner use NAS via routed access.
Example: flat has subnet 192.168.88.1/24, office has subnet 192.168.99.1/24, NAS has IP address 192.168.99.33. Owner can use NAS via using IP address (or FQDN if DNS is configured and running in both subnets). This includes windows sharing, the only difference being that user has to use \ip.add.re.ss\share notation instead of \nas\share which is available only when both server and client are in same network and/or if DNS is properly confiugred.
There are two obstacles for the above to work and both are tied to firewalls:
- if router is running firewall (it likely does), then one needs to configure a properly allow rule for connections between flat and office (make it as specific as possible, taking into account dst-address of NAS, necessary dst-ports (445 for SMB/CIFS, 443 for HTTPS, 80 for HTTP, for DLNA, …) and possibly src-address of bosses PC
- NAS might run some form of firewall as well, often they behave similarly to windows firewall which by default blocks any connection attempts from outside own IP subnet. flat subnet is outside of NAS’ own subnet …