Hi everyone,
I've got OMV all set up and configured with various shares/file permissions/users. I want users to be able to map some shares as network drives on another network, to be in use 24/7.
I have samba all up and running on my local network, works like a charm. Unfortunately, my ISP blocks any incoming/(and supposedly outgoing) port 445 connections, and all incoming port 137-139 connections. I'm aware of Samba's security issues, but if a modern samba share is configured properly, my understanding is that it is reasonably secure. So, I configured Samba to use port 2111 and forwarded it on my router, and sure enough, samba works over the internet, but only for mac/linux! When a client on mac/linux tries to connect, they specify the port with a colon, such as \\65.55.55.55:2111\samba\share. Windows has no feature to map a network drive over a different port, 445 is essentially "hard coded in". This removes my ability to set up samba such that other windows clients on another net can connect.
Which brings me to this post, has anyone been able to figure out how to map a network drive and specify the port in windows?!
Assuming this isn't possible, I tried to set up NFS but cannot for the life of me figure out how to set up proper username/password configurations for NFS shares, which worked on samba out of the box in OMV.
On windows 10 pro with the NFS services installed, the mount command has a flag for username/password (-u:username -p:password).
But nothing seems to work. I keep reading something about UID/GUID for NFS, but see no options for this anywhere in the UI, nor how this could translate to a reasonable user/password for clients to use. Any tips of setting up NFS would be appreciated. The main advantage of NFS is that its ports wont be blocked by my ISP, so this could be a reasonable alternative to SMB.
As it stands, I cannot figure out how to set up NFS shares with a username/password that can easily be mounted by clients, any help would be appreciated.
Reading more, I have heard of 3 alternative options for getting SMB to work over the internet:
1. OpenVPN.
Supposedly I can setup a VPN so that others can VPN into my box. This VPN session would have to be active, and running on my omv box. Could OpenVPN support 10+ clients all connected to my network at once, for the sole purpose of accessing the SMB shares? Is this user friendly? Can clients set it up and forget about it, as the openVPN program will automatically reconnect them to my network, and SMB will work out? Or will openVPN take a bit to connect, and windows network drive throw a bunch of errors since the drive isn't reachable immediately whenever the client restarts their computer or temporarily disconnects from the network?
Secondly, if this VPN is set up, is there any way so that they can use the vpn to ONLY access SMB through the VPN, and aren't tunneling all their traffic through my network, which would vastly increase my data usages and slow down my network unnecessarily.
2. SSH.
I've heard allowing for an SSH tunnel can somehow give clients access to my local network, and mount SMB shares that way. No clue how this is possible, or if its easy to set up permanently on a windows system. Any explanation on this would be great.
3. DynDns/NoIp/some other DNS equivalent.
Can I set up a DNS that accepts connections from other networks through port 445, and points to my SMB partition over port 2111 (instead of 445, since my ISP blocks it). This would allow clients off the network to map the drive in windows normally, which would send an SMB request on port 445, and the DNS would intercept this traffic and reroute it to 2111 on my end, bypassing both my ISPs port block of 455, as well as the windows' clients inability to specify a port other than 445.
tl;dr Need to share various shares with 10+ users over the internet, have gigabit internet so this shouldn't be a problem. ISP blocks port 445, what is a user-friendly solution to map a network drive to be used 24/7?
Sorry for the long post, and thank you so much to anyone willing to help and give insight!