Access OMV from abroad

  • So basically you say I won't be able to access my shares via vpn and afp? Samba should work as well with my mac.


    Anyway, today I wanted to try some things again with vpn and suddenly I could not connect to it any more. Attached the code:

    Code
    "Sanitized" full configuration file # Automatically generated OpenVPN client config file# Generated on Wed Mar 30 13:09:14 2016 by openmediavault# Note: this config file contains inline private keys# and therefore should be kept confidential!# Note: this configuration is user-locked to the username below# OVPN_ACCESS_SERVER_USERNAME=openvpn# Define the profile name of this particular configuration file# OVPN_ACCESS_SERVER_PROFILE=openvpn@XXX.XXX.XX.XXX# OVPN_ACCESS_SERVER_CLI_PREF_ALLOW_WEB_IMPORT=True# OVPN_ACCESS_SERVER_CLI_PREF_ENABLE_CONNECT=True# OVPN_ACCESS_SERVER_CLI_PREF_ENABLE_XD_PROXY=True# OVPN_ACCESS_SERVER_WSHOST=XXX.XXX.XX.XXX:943# OVPN_ACCESS_SERVER_WEB_CA_BUNDLE_START# -----BEGIN CERTIFICATE-----[Security-related line(s) omitted]# -----END CERTIFICATE-----# OVPN_ACCESS_SERVER_WEB_CA_BUNDLE_STOP# OVPN_ACCESS_SERVER_IS_OPENVPN_WEB_CA=1# OVPN_ACCESS_SERVER_ORGANIZATION=OpenVPN Technologies, Inc.setenv FORWARD_COMPATIBLE 1clientserver-poll-timeout 4nobindremote XXX.XXX.XX.XXX 1194 udpremote XXX.XXX.XX.XXX 1194 udpremote XXX.XXX.XX.XXX 943 tcpremote XXX.XXX.XX.XXX 1194 udpremote XXX.XXX.XX.XXX 1194 udpremote XXX.XXX.XX.XXX 1194 udpremote XXX.XXX.XX.XXX 1194 udpremote XXX.XXX.XX.XXX 1194 udpdev tundev-type tunns-cert-type serverreneg-sec 604800sndbuf 100000rcvbuf 100000auth-user-pass# NOTE: LZO commands are pushed by the Access Server at connect time.# NOTE: The below line doesn't disable LZO.comp-lzo noverb 3setenv PUSH_PEER_INFO <ca>[Security-related line(s) omitted]</ca> <cert>[Security-related line(s) omitted]</cert> <key>[Security-related line(s) omitted]</key> key-direction 1<tls-auth>[Security-related line(s) omitted]</tls-auth> ## -----BEGIN RSA SIGNATURE-----[Security-related line(s) omitted]## -----END RSA SIGNATURE-----## -----BEGIN CERTIFICATE-----[Security-related line(s) omitted]## -----END CERTIFICATE-----## -----BEGIN CERTIFICATE-----[Security-related line(s) omitted]## -----END CERTIFICATE----- ================================================================================ ifconfig output: lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384options=3<RXCSUM,TXCSUM>inet6 ::1 prefixlen 128 inet 127.0.0.1 netmask 0xff000000 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1 inet 127.94.0.1 netmask 0xff000000 nd6 options=1<PERFORMNUD>gif0: flags=8010<POINTOPOINT,MULTICAST> mtu 1280stf0: flags=0<> mtu 1280en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500options=27<RXCSUM,TXCSUM,VLAN_MTU,TSO4>ether MacAdress nd6 options=1<PERFORMNUD>media: autoselectstatus: inactiveen1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500ether MacAdressinet 192.168.1.17 netmask 0xffffff00 broadcast 192.168.1.255nd6 options=1<PERFORMNUD>media: autoselectstatus: activefw0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 4078lladdr MacAdressnd6 options=1<PERFORMNUD>media: autoselect <full-duplex>status: inactivep2p0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 2304ether MacAdressmedia: autoselectstatus: inactive ================================================================================ Console Log: 2016-04-09 18:49:16 Tunnelblick[56631] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'username'2016-04-09 18:49:16 Tunnelblick[56631] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'password'2016-04-09 18:50:04 Tunnelblick[56631] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'username'2016-04-09 18:50:04 Tunnelblick[56631] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'password'2016-04-09 18:52:50 Tunnelblick[56631] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'username'2016-04-09 18:52:50 Tunnelblick[56631] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'password'2016-04-09 18:53:18 Tunnelblick[56631] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'username'2016-04-09 18:53:18 Tunnelblick[56631] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'password'2016-04-09 18:54:37 Tunnelblick[56631] Changed permissions from 700 to 750 on /private/var/folders/2n/5g77ynd53_12ffrgm6sfl7lc0000gn/T2016-04-09 18:54:37 Tunnelblick[56631] Converting/Installing /Users/User/Downloads/client-3.ovpn: Converted OpenVPN configuration2016-04-09 18:54:42 Tunnelblick[56631] localNameFromDisplayName: 'client-3' is not a known displayName2016-04-09 18:54:42 Tunnelblick[56631] Beginning installation or repair2016-04-09 18:54:42 authexec[12155] executing /Applications/Tunnelblick.app/Contents/Resources/installer2016-04-09 18:54:42 Tunnelblick[56631] Installation or repair succeeded; Log:Tunnelblick installer started 2016-04-09 18:54:42. 3 arguments: 0x0001/Users/User/Library/Application Support/Tunnelblick/Configurations/client-3.tblk/private/var/folders/2n/5g77ynd53_12ffrgm6sfl7lc0000gn/T/Tunnelblick-W6B1BE/client-3.tblkCopied /private/var/folders/2n/5g77ynd53_12ffrgm6sfl7lc0000gn/T/Tunnelblick-W6B1BE/client-3.tblkto /Users/User/Library/Application Support/Tunnelblick/Configurations/client-3.tblk.tempRenamed /Users/User/Library/Application Support/Tunnelblick/Configurations/client-3.tblk.tempto /Users/User/Library/Application Support/Tunnelblick/Configurations/client-3.tblkChanged ownership of /Users/User/Library/Application Support/Tunnelblick/Configurations/client-3.tblk and its contents from 501:20 to 501:80Copied /Users/User/Library/Application Support/Tunnelblick/Configurations/client-3.tblkto /Library/Application Support/Tunnelblick/Users/User/client-3.tblk.tempRenamed /Library/Application Support/Tunnelblick/Users/User/client-3.tblk.tempto /Library/Application Support/Tunnelblick/Users/User/client-3.tblkChanged ownership of /Library/Application Support/Tunnelblick/Users/User/client-3.tblk and its contents from 501:80 to 0:0Changed permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Users/User/client-3.tblkChanged permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Users/User/client-3.tblk/ContentsChanged permissions from 750 to 755 on /Library/Application Support/Tunnelblick/Users/User/client-3.tblk/Contents/ResourcesChanged permissions from 740 to 700 on /Library/Application Support/Tunnelblick/Users/User/client-3.tblk/Contents/Resources/config.ovpnCreated secure (shadow) copy of client-3.tblkTunnelblick installer finished without error2016-04-09 18:54:55 Tunnelblick[56631] Can't find Keychain item to delete for service = 'Tunnelblick-Auth-client-3' account = 'username' because it does not exist2016-04-09 18:54:55 Tunnelblick[56631] Can't find Keychain item to delete for service = 'Tunnelblick-Auth-client-3' account = 'password' because it does not exist2016-04-09 18:55:18 Tunnelblick[56631] Beginning installation or repair2016-04-09 18:55:19 authexec[12199] executing /Applications/Tunnelblick.app/Contents/Resources/installer2016-04-09 18:55:19 Tunnelblick[56631] Installation or repair succeeded; Log:Tunnelblick installer started 2016-04-09 18:55:19. 2 arguments: 0x2001/Users/User/Library/Application Support/Tunnelblick/Configurations/client-3.tblkremoved /Users/User/Library/Application Support/Tunnelblick/Configurations/client-3.tblkremoved /Library/Application Support/Tunnelblick/Users/User/client-3.tblkTunnelblick installer finished without error2016-04-09 18:55:19 Tunnelblick[56631] Uninstalled configuration file /Users/User/Library/Application Support/Tunnelblick/Configurations/client-3.tblk2016-04-09 18:55:54 Tunnelblick[56631] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'username'2016-04-09 18:55:54 Tunnelblick[56631] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'password'2016-04-09 18:57:25 Tunnelblick[56631] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'username'2016-04-09 18:57:25 Tunnelblick[56631] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'password'2016-04-09 19:02:18 Tunnelblick[56631] applicationShouldTerminate: termination because of Quit; delayed until 'shutdownTunnelblick' finishes2016-04-09 19:02:19 Tunnelblick[56631] Finished shutting down Tunnelblick; allowing termination2016-04-09 19:02:22 Tunnelblick[12554] Tunnelblick: OS X 10.11.2; Tunnelblick 3.6.0a (build 4543.4546)2016-04-09 19:02:22 Tunnelblick[12554] Set program update feedURL to https://www.tunnelblick.net/appcast-s.rss2016-04-09 19:02:26 Tunnelblick[12554] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'username'2016-04-09 19:02:26 Tunnelblick[12554] Keychain item retrieved successfully for service = 'Tunnelblick-Auth-Config' account = 'password'
  • I am not an Apple guy....


    Windows for Desktops and Laptops
    Linux for servers
    Some ARMHF experience
    Android for mobile devices


    I believe it should be possible to use SMB/CIFS or AFP. But I have no way to test things and give you a solution.
    Someone else needs to step up.

  • The log you posted is very hard to read... can't you repost it with proper line breaks ? ^^


    Greetings
    David

    "Well... lately this forum has become support for everything except omv" [...] "And is like someone is banning Google from their browsers"


    Only two things are infinite, the universe and human stupidity, and I'm not sure about the former.

    Upload Logfile via WebGUI/CLI
    #openmediavault on freenode IRC | German & English | GMT+1
    Absolutely no Support via PM!

  • I think i solved the problem and at the same time embarrassed myself.
    If i connect to the ip via "connect to server" it works. Still it sometime looses connection and I always have to reconnect by entering my password. Any idea how i can make it look the same way like I am at home (i mean showing it up on my finder)?


    Secondly, any suggestions for a free dns provider? I tried no-ip now but the bad thing is that the host is always just valid for 30 days. Kind of annoying.


    Thanks a lot for your help and apologies for bothering you.

  • You are not bothering anyone. We try to help when we can. Sometimes you walk alone, looking for solutions. Believe me, I walk alone a lot. :)


    You need to always make sure your DDNS Service is working if you used a DDNS Service address in the Admin UI Settings. I've always used a pay service, DynDNS, so I am not much help in suggesting a free service. I can tell you that I will be adding a lot more DDNS Service providers to the DDclient plugin in OMV 3.x.

  • Actually, I managed the dns think directly with my router. Is there any disadvantage to omv? So maybe I'll just pay the 50 bucks a year then.
    I am looking forward to OMV 3.x. Is it true that there will be a real gui (not only the web interface)? I know this is off topic and I want start a discussion about Omv 3 here. :-)



    Gesendet von iPhone mit Tapatalk

  • There are no plans to have a 'real' GUI.


    There is no disadvantage of using your router for dyndns.


    Greetings
    David

    "Well... lately this forum has become support for everything except omv" [...] "And is like someone is banning Google from their browsers"


    Only two things are infinite, the universe and human stupidity, and I'm not sure about the former.

    Upload Logfile via WebGUI/CLI
    #openmediavault on freenode IRC | German & English | GMT+1
    Absolutely no Support via PM!

  • Secondly, any suggestions for a free dns provider? I tried no-ip now but the bad thing is that the host is always just valid for 30 days. Kind of annoying.


    I am using no-ip (Free Dynamic DNS) since several years, no issues with "valid-for-30-days".


    I guess "Confirm every 30 days" means you have to use it at least once a month. Normally the dyn-dns configuration should be set up in the router, and the router will register each day after nightly interruption of DSL and receiving new IP4-adress (the way it works in Germany).

  • Ok, i understand. So that should be fixed by the route with the forced update interval of 10 days or the forced reconnect of my 4G modem every day.
    Great. THX again for the help.



    Gesendet von iPhone mit Tapatalk

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!