Windows Share Problem
Posted: Tue Jun 15, 2010 7:27 am
I'm working on getting a bridged connection in OpenVPN up on an Asus WL-520GU. I'm pretty much there but am having a Windows naming problem. My test bed was an OpenVPN server running on my XP desktop and a client on my XP laptop. My house has two DSL lines (one for biz, one for home) so I'm able to simulate requests from the WAN by connecting my laptop to the home DSL and my Asus to the biz DSL. Once it was working, I could drive around and play "Road Warrior" to see which hotspots would work for me. The setup finally settled down and I can ping, access shared printers or files, and clients can see clients, etc.
I then duplicated the server setup on the Asus, or at least that was the plan as some tweaking was needed. I'm now able to connect and ping back and forth. My laptop, as Road Warrior, can get to shared Windows resources but only as IP addresses, not by Windows names (eg 192.168.1.20 vs "Office Desktop"). Thus, My Network Places doesn't show both the laptop and desktop machines.
I've disabled the Windows firewalls and also disabled dd-wrt's SPI firewall. For good measure, I've put an iptable rule to accept udp traffic on the OpenVPN port (not the NetBIOS ports as the redirect-gateway def1 runs NetBIOS traffic through encrypted udp packets, right?). I've tried it with DNSMasq on and off. I tried it as router and a RIP2 router. The ntpd works, so certificate dates are not an issue.
Wireshark shows lots of NetBIOS traffic on both networks originating from all XP platforms. However, I'm not too good at parsing NetBIOS so I don't know if anything is being dropped but that's my suspicion. Also, I'm wondering if my desktop somehow functions as a WINS server since running the OpenVPN server on the desktop allows named host access of the windows network (rather than IP address access) while running the server on Asus only allows IP address access (rather than named access).
So many protocols, so little time.
BTW, I'm running DD-WRT v24-sp2 (10/10/09) vpn.
I then duplicated the server setup on the Asus, or at least that was the plan as some tweaking was needed. I'm now able to connect and ping back and forth. My laptop, as Road Warrior, can get to shared Windows resources but only as IP addresses, not by Windows names (eg 192.168.1.20 vs "Office Desktop"). Thus, My Network Places doesn't show both the laptop and desktop machines.
I've disabled the Windows firewalls and also disabled dd-wrt's SPI firewall. For good measure, I've put an iptable rule to accept udp traffic on the OpenVPN port (not the NetBIOS ports as the redirect-gateway def1 runs NetBIOS traffic through encrypted udp packets, right?). I've tried it with DNSMasq on and off. I tried it as router and a RIP2 router. The ntpd works, so certificate dates are not an issue.
Wireshark shows lots of NetBIOS traffic on both networks originating from all XP platforms. However, I'm not too good at parsing NetBIOS so I don't know if anything is being dropped but that's my suspicion. Also, I'm wondering if my desktop somehow functions as a WINS server since running the OpenVPN server on the desktop allows named host access of the windows network (rather than IP address access) while running the server on Asus only allows IP address access (rather than named access).
So many protocols, so little time.
BTW, I'm running DD-WRT v24-sp2 (10/10/09) vpn.