all works except accessing SMB shares

[ov1405]

I have a config which has been working well on Windows and iOS clients. On a Nexus 7 running Android 4.4.2 and OpenVPN Connect 1.1.13 (build 53), importing the same profile/cert/key went well.

Once connected, I can ping machines on the remote network, even remote access a machine over RDP using 2X Client app. However, I can't access any SMB shares. I use ES File Explorer which can access those same SMB sever fine when connected locally. On attempting to access pre-defined SMB servers in ES File Explorer, it just tries forever over OpenVPN. If I try to set up new SMB servers, it would report "can't find server" after a while.

Windows and iOS clients can access those same SMB shares over VPN using the same ovpn/cert/key.

Any suggestions appreciated.

[ov1405]

Both are using using the same client config, accessing the same remote LAN via the same OpenVPN server. Both are connecting via tun. The iOS client can access Windows 2003/XP shares, Android can't.

My server config

Code: Select all

dev tun
tls-server 
ca keys/private/my-ca.crt
cert keys/server.crt
key keys/server.key
dh keys/dh1024.pem
mode server
ifconfig 10.1.0.1 10.1.0.2
push "route 10.1.0.1 255.255.255.255"
push "route 10.0.0.0 255.255.255.0"
route 10.1.0.0 255.255.255.0
ifconfig-pool 10.1.0.11 10.1.0.30
port 5000
comp-lzo
ping 15
verb 3

My client config

Code: Select all

port 5000
dev tun
remote xxxxx.ip
comp-lzo
tls-client
ca my-ca.crt
cert client.crt
key client.key
pull
ip-win32 dynamic 
dhcp-option DNS 10.0.0.10
dhcp-option DNS 10.0.0.14
verb 4

iOS client log:

Code: Select all

2014-05-15 23:27:06 ----- OpenVPN Start (iOS 32-bit) -----
2014-05-15 23:27:06 UNUSED OPTIONS
4 [tls-client]=20
8 [pull]=20
9 [ip-win32] [dynamic]=20
12 [verb] [4]=20

2014-05-15 23:27:06 LZO-ASYM init swap=0 asym=0
2014-05-15 23:27:06 EVENT: RESOLVE
2014-05-15 23:27:08 Contacting {removed}:5000 via UDP
2014-05-15 23:27:08 EVENT: WAIT
2014-05-15 23:27:08 Connecting to xxx.xxx.xxx:5000 ({removed}) via UDPv4
2014-05-15 23:27:08 EVENT: CONNECTING
2014-05-15 23:27:08 Tunnel Options:V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client
2014-05-15 23:27:08 Peer Info:
IV_GUI_VER=net.openvpn.connect.ios 1.0.4-140
IV_VER=3.0
IV_PLAT=ios
IV_NCP=1
IV_LZO=1

2014-05-15 23:27:11 VERIFY OK: depth=1
cert. version : 3
serial number : 00
issuer name  : xxx
subject name  : xxx
issued  on    : 2004-07-05 19:11:24
expires on    : 2014-07-03 19:11:24
signed using  : RSA+MD5
RSA key size  : 1024 bits

2014-05-15 23:27:11 VERIFY OK: depth=0
cert. version : 3
serial number : 01
issuer name  : xxx
subject name  : xxx
issued  on    : 2004-07-05 19:18:52
expires on    : 2014-07-03 19:18:52
signed using  : RSA+MD5
RSA key size  : 1024 bits

2014-05-15 23:27:13 SSL Handshake: TLSv1.0/TLS-DHE-RSA-WITH-AES-256-CBC-SHA
2014-05-15 23:27:13 Session is ACTIVE
2014-05-15 23:27:14 EVENT: GET_CONFIG
2014-05-15 23:27:14 Sending PUSH_REQUEST to server...
2014-05-15 23:27:14 OPTIONS:
0 [dhcp-option] [DNS] [10.0.0.14]
1 [dhcp-option] [DNS] [10.0.0.10]
2 [route] [10.1.0.1] [255.255.255.255]
3 [route] [10.0.0.0] [255.255.255.0]
4 [ifconfig] [10.1.0.14] [10.1.0.13]

2014-05-15 23:27:14 LZO-ASYM init swap=0 asym=0
2014-05-15 23:27:14 EVENT: ASSIGN_IP
2014-05-15 23:27:14 Connected via tun
2014-05-15 23:27:14 EVENT: CONNECTED @xxx.xxx.xxx:5000 ({removed}) via /UDPv4 on tun/10.1.0.14/

Android client log:

[ov1405]

try with a WINS/Samba server.

Isn't WINS used for resolving computer names to IP numbers? I can't access the Windows shares from Android even if I use the remote computers' IP addresses on their local LAN. I can do so from Windows and iOS clients, and those remote computers have their route set to account for the VPN.

[ov1405]

Can you ping the SMB share hosts from either of your client devices ?

Yes, I can from both iOS and Android. From the latter I can also control the remote machines over RDP on port 3389.

[ov1405]

I have mode no progress on this issue. But could this offer a clue? I have the exact same problem using the same two iOS and Android devices accessing a completely different XP machine via a Asus RT-N15U wifi router with PPTP in the stock and up-to-date firmware. I can png, RDP, but not SMB.

[Traffic]

using the same two iOS and Android devices accessing a completely different XP machine ..... I can png, RDP, but not SMB

How are you trying to connect .. by using network browser or directly using \\ip.address\sharename ?

via a Asus RT-N15U wifi router with PPTP

OpenVPN ?

[ov1405]

How are you trying to connect .. by using network browser or directly using \\ip.address\sharename ?

Connect to XP SMB server from iOS via Documents.app, from Android via ES File Explorer, and also from XP via Windows File Explorer. In each cash using IP address, not network browsing.

OpenVPN ?

No. This time using PPTP. Sharing the problem here again only as an observation of similar problem over completely different VPN protocols. See OP back in May, when I could ping and RDP and SMB from iOS, but only ping and RDP but not SMB from Android, accessing the same XP server using OpenVPN on identical ovpn configs.