Access NAS content thru OpenVPN server running on the NAS

By nasvpn
in Smart Home, Network & Security

 Share

Recommended Posts

Apprentice

nasvpn

Posted
Posted

I just made a OpenVPN server running on a NAS which has this feature. I have been able to connect a client to it (locally, giving me 10.11.11.6) but I have no idea the IP i should access to view the content (files). The range is 10.11.11.2 - 10.11.11.254 so I tried 10.11.11.1 but nothing.

 

What should I do? Ask things that you might need for more information which I might not have thought on giving.

 

Thank you.

Apprentice

nasvpn

Posted
  • Author
Posted

Server config:

 

port 9411
proto udp
dev tun
ca /etc/openvpn/keys/ca.crt
cert /etc/openvpn/keys/myserver.crt
key /etc/openvpn/keys/myserver.key
auth-user-pass-verify /usr/sbin/vpn_check_account via-env
client-cert-not-required
username-as-common-name
no-name-remapping
dh /etc/openvpn/keys/dh1024.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist /var/log/ipp.txt
push "redirect-gateway def1"
push "dhcp-option DNS 192.168.100.29"
client-to-client
duplicate-cn
keepalive 10 60
reneg-sec 0
cipher AES-256-CBC
comp-lzo
max-clients 5
client-connect /etc/openvpn/connect.sh
client-disconnect /etc/openvpn/disconnect.sh
management localhost 7505
persist-key
persist-tun
status /var/log/openvpn-status.log
#log /tmp/openvpn.log
verb 3

 

Client config:

 

client
dev tun
proto udp
remote 192.168.100.87 9411
resolv-retry infinite
nobind
ca ca.crt
auth-user-pass
reneg-sec 0
cipher AES-256-CBC
comp-lzo

  • 1 month later...
Grand Master

+BudMan MVC

Posted
  • MVC
Posted

" but I have no idea the IP i should access to view the content"

You would connect to the IP of the nas 192.168.100.87 clearly right there in the config you posted, with whatever protocol it uses to serve up the files. Be it http, ftp, webdav, cifs/smb, etc.

The IP address it is given you is just a network connection that is to be used as a tunnel to access the nas.. So for example your out on the internet with an IP 192.168.1.100 behind your nat router.. And you want to access your NAS that is also behind a nat router on say 192.168.100.87 (which is in your config you posted).. So you have this

post-14624-0-61256100-1383742391.png

Now you could port forward say http to your nat router to your nas and access it that way via http to your publicIP-B.. Or you could connect via vpn.. Your config there is for OpenVPN, So it is listening on port 9411 per your config. So you would forward udp 9411 to your NAS which again is in your config.

Then from the internet you would connect to your publicIP-B in the drawing above from your remote location using openvpn client. It would then create a tunnel network between you using

server 10.8.0.0 255.255.255.0

per your config - so not sure where you got 10.11 from? And tells client on the other end that hey if you want to get to off your network go down the tunnel

push "redirect-gateway def1"

Which is not really a good config for this sort of setup, you would must rather just push a route to your nas network vs changing the gateway.

something like

push "route 192.168.100.0 255.255.255.0"

Anyhoo your connection would then be like this

post-14624-0-80795600-1383742395.png

And to connect to your NAS IP 192.168.100.87 your remote person would go through the VPN tunnel and directly access it. This still flows over the internet, but the details are hidden to you as the user, and from your machines point of view its just got a new network connection on 10.8 network - and it uses this connection to connect to the 192.168.100/24 network.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • Windows 11 is getting redesigned taskbar settings in new build

      By excalpius · Posted

      >Improved system sounds when using Windows in dark mode. The story being that bug would be an interesting one.
    • Edifier S3000MKII hi-fi audiophile grade bookshelf speaker is at its lowest price now

      By hellowalkman · Posted

      Edifier S3000MKII hi-fi audiophile grade bookshelf speaker is at its lowest price now by Sayan Sen Yesterday we covered a bunch of Dolby Atmos soundbar deals with several ones from Sony, as well as from JBL, Samsung, Polk Audio, and more. You can check them out in this dedicated piece. Those are not audiophile category speakers though as they are built with home theater use in mind. If you are searching for the former then Edifier has its S3000MKII at its lowest price at the moment (purchase link under the specs table down below). This is a two-way bookshelf monitor speaker designed to produce accurate sound. While it may not produce the best high-fidelity audio possible out there, it should still be significantly better than what you will get on soundbars of this price range. As such it will do justice to high-res audio played back through it. The only thing that may feel lacking is sub-bass as Edifier claims the unit can go down to 38 Hz, which should be enough for studio monitor purposes, but not for deep room-shaking rumbling bass. Where this does excel though is in its treble reproduction. With its super-tweeter, it claims to go as high as 40 kHz in the frequency spectrum, which should offer a sense of "air"yness. This is an active speaker which means it packs its own amplfication. It has a top-notch Class D amp that may be able to rival many Class AB designs too in terms of sound reproduction quality. The technical specs of the Edifier S3000MKII are given in the table below: Specification Value RMS Output Power 256W RMS (Treble: 8W × 2, Mid-Low: 120W × 2) Tweeter Driver 107mm × 107mm Planar Magnetic Tweeter Mid-Low Driver 6.5-inch (179mm) Long-Throw Aluminum Diaphragm Driver Frequency Response 38Hz – 40kHz Signal-to-Noise Ratio ≥ 85dB (A) Bluetooth Version Bluetooth 5.0 Bluetooth Codec Qualcomm® aptX™ HD Wireless Speaker Link Proprietary 5.8GHz wireless connection between speakers Supported Hi-Res Audio Hi-Res Audio Certified, up to 24-bit/192kHz Digital Processing XMOS XU216 Digital Signal Processor Audio Inputs Balanced XLR, Optical, Coaxial, USB Type-B, Line In, Bluetooth Input Sensitivity (USB) 400 ± 50mFFs Input Sensitivity (Optical) 400 ± 50mFFs Input Sensitivity (Coaxial) 400 ± 50mFFs Input Sensitivity (Bluetooth) 450 ± 50mFFs Input Sensitivity (Balanced XLR) 1000 ± 50mV Input Sensitivity (Line In) 600 ± 50mV ADC Capability Up to 24-bit/192kHz DSP Capability Up to 24-bit/192kHz DIX Capability Up to 24-bit/216kHz DAC Capability Up to 32-bit/384kHz XMOS Processing Power Up to 2,000 MIPS Edifier S3000MKII Audiophile Active (Powered) Wireless Speakers: $799.99 (Sold by Edifier US, Shipped by Amazon US) If you do not have the kind of budget to spend on the S3000MKII, you can also check out the Edifier R1280Ts which is right now on sale at just $114 (its lowest price in a very long time). Good to know This Amazon deal is U.S. specific, and not available in other regions unless specified. We only use first-party seller links (at the time of article publishing); ensure that you purchase from a first-party seller link only. Check out Today's Deals on Amazon | or our recent tech deals. Become a Prime member (for Students or SNAP) via Neowin Get Prime Access - Prime for half price (for qualifying Medicaid, EBT, SNAP) Subscribe to Prime Video, Audible Plus, Music Unlimited or Kindle Unlimited via Neowin As an Amazon Associate, we earn from qualifying purchases.
    • The best controller for XBOX and PC is down to the lowest price

      By Gideon Waxfarb · Posted

      > The G 7 Pro supports wireless (XBOX Wireless, proprietary dongle, or Bluetooth) If anybody else's brain translates this to 'it works wirelessly on Xbox', according to the linked product page, it does not.
    • The Trump administration doesn't want you to use OpenAI's GPT-5.6 without its approval

      By excalpius · Posted

      Ignoring the fact that this "colony" kicked the empire of King George's arse during those early years... You are confusing the First Industrial Revolution (which was clearly pulled out of some butt-hurt Brit historian's arse after the fact) with the Second Industrial Revolution (aka now called the Technological Revolution, undoubtedly by that same butt-hurt Brit), which transitioned the world from the UK/UPS Empire to the USA as the world's only superpower. https://en.wikipedia.org/wiki/Industrial_Revolution I hope you realize that I am having big fun here.
    • OpenAI announces GPT‑5.6 Sol, its next-generation flagship model beating Claude Mythos 5

      By pradeepviswav · Posted

      OpenAI announces GPT‑5.6 Sol, its next-generation flagship model beating Claude Mythos 5 by Pradeep Viswanathan Credit: OpenAI OpenAI today announced a limited preview of its new GPT-5.6 model series, which includes the Sol, Terra, and Luna models targeting different price points. GPT-5.6 Sol is the flagship model targeted at demanding reasoning and agentic workloads. GPT-5.6 Terra is positioned as a balanced model for everyday work, featuring performance competitive with GPT-5.5 while being half the cost. GPT-5.6 Luna is the fastest and most affordable model, delivering strong capability at a lower price point. Unlike previous model releases from OpenAI, GPT-5.6 is starting with a limited preview for a small group of trusted partners due to U.S. government restrictions. As expected, OpenAI previewed its plans and the models' capabilities to the U.S. government ahead of launch, and the government asked OpenAI to limit the first wave of access to select partners. OpenAI also mentioned in the official announcement blog post that it does not believe this type of government access process should become the long-term default. OpenAI highlighted that GPT-5.6 Sol comes with a robust safety stack featuring improved protections for higher-risk activity, sensitive cyber requests, and repeated misuse. The company also spent several weeks pressure-testing the system and hardening it against real-world attacks. On the capability side, as expected, GPT-5.6 Sol is OpenAI’s strongest model yet. It delivers better results in agentic performance across coding, biology, and cybersecurity. On the Terminal-Bench 2.1 benchmark, which tests command-line workflows requiring planning, iteration, and tool coordination, GPT-5.6 Sol sets a new record with a score of 91.9%, beating Anthropic's Claude Mythos 5. Additionally, GPT-5.6 introduces a new "max" reasoning effort for even deeper reasoning. The new "ultra" mode uses subagents to accelerate complex work beyond what a single agent can handle. Pricing starts at $5 per million input tokens and $30 per million output tokens for Sol. Terra costs $2.50 for input and $15 for output, while Luna costs $1 for input and $6 for output. GPT-5.6 comes with more predictable prompt caching, including support for explicit cache breakpoints and a 30-minute minimum cache life. Sol will also launch on Cerebras in July at speeds up to 750 tokens per second for select customers. OpenAI plans to make GPT-5.6 Sol, Terra, and Luna broadly available in ChatGPT, Codex, and the API in the coming weeks.

  • Recent Achievements

    • One Year In
      bernmeister earned a badge
      One Year In
    • Week One Done
      Scoobystu earned a badge
      Week One Done
    • Week One Done
      tuben earned a badge
      Week One Done
    • First Post
      OffsetAbs earned a badge
      First Post
    • Reacting Well
      OffsetAbs earned a badge
      Reacting Well

  • Popular Contributors

    1. 1
      +primortal
      441
    2. 2
      +Edouard
      197
    3. 3
      PsYcHoKiLLa
      154
    4. 4
      FloatingFatMan
      71
    5. 5
      Steven P.
      67
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!