Page 1 of 1
NFS mount
Posted: Wed Nov 23, 2022 6:48 pm
by zkab
I have installed/configured OpenVPN in my firewall pfSense and it has been working OK.
I can access my LAN from OpenVPN clients like Android, Windows and Ubuntu.
Recently I set up a NFS share towards my Synology NAS and discovered that I can not access the shares from my clients when running OpenVPN.
How can this be solved?
My knowledge in OpenVPN is limited ...
Re: NFS mount
Posted: Wed Nov 23, 2022 8:35 pm
by Pippin
Hi,
Does the NAS user have the right to access NFS shares?
Did you allow the traffic in it's firewall?
Have you tried disabling it's firewall?
.
Re: NFS mount
Posted: Thu Nov 24, 2022 5:42 pm
by zkab
When I connect my Ubuntu laptop to the office LAN (where NAS is also connected) then laptop users can access NFS share (read/write priv).
But when the laptop is outside office and is connected with OpenVPN then users can access everything in the office LAN except NFS shares.
Strange thing is that Windows11 clients outside office can connect to the NAS shares ... I guess because Windows11 use SMB protocol and not NFS.
As I understand it is i OpenVPN & NFS issues ...
Re: NFS mount
Posted: Thu Nov 24, 2022 6:24 pm
by Pippin
Hi,
It still sounds like a firewall issue.
Check your pfSense rules.
Support for pfSense is here:
https://forum.netgate.com
And have you tried my suggestions above?
.
Re: NFS mount
Posted: Fri Nov 25, 2022 5:05 pm
by zkab
I don't think it is a firewall issue since Windows OpenVPN clients works OK with the NAS Shares.
You asked following:
Does the NAS user have the right to access NFS shares?
NAS users have nothing to do with NFS mount.
In NAS I have specified which hosts have access rights to its shares.
Did you allow the traffic in it's firewall?
Yes ... since Windows OpenVPN clients can access the NAS Shares.
Have you tried disabling it's firewall?
Don't quite understand what you mrean.
The OpenVPN Server runs inside pfSense as a module.
I still belive that it is a NFS & OpenVPN issue ...
Re: NFS mount
Posted: Tue Nov 29, 2022 9:48 pm
by ordex
To figure this out I'd suggest to take some traffic dump on the openvpn server (pfSense?) so that you can see whether packets are being dropped or not.
You said that Windows is probably using SMB (very likely) while the others are using NFS. The two protocols may be subject to different firewalls rules, especially because NFS by itself does not normally come with any authentication method, therefore having it blocked by default at the firewall level might be a reasonable setting.
To OpenVPN both protocols look the same, because OpenVPN does not try to differenciate them in any way.