SMB sharing through remote access?

I have a computer that I have setup on a windows network. I have turned on Windows sharing and it works fine when the local computers connect.
The problem is when I try to connect from outside the local network, say from a laptop on the road, I cannot seem to access the network using SMB.
I can access the computer using AFP, so I know that it is possible to go to the computer. I have the router configured to forward all ports to the computer, so it can't be a firewall issue.
My only thought is that in a recent update Apple has turned off the capability to access SMB or CIFS volumes remotely. Does anyone know anything about this? Or how I might be able to solve my dilemma?

Hmmm, thing to do I think is see if TCP Port 139 is actually getting through your ISP and/or Router/Modem... might try Port Scanning, or a Traceroute it from the outside.
Might turn on Logging in Network>Firewall>Advanced, to look for clues.

Similar Messages

  • Lync Application and Desktop Sharing - Restrict remote access/Telnet

    I have a customer and they are paranoid about using Lync application/desktop sharing which could potentially enable remote users from getting into their internal IT systems.  They are asking if we could restrict application/desktop sharing specifically
    for appls with remote access capabilities (e.g. Telnet, etc.)? Anyone could share any information relating to this? Thanks!

    We can’t do this with Lync Server natively. Maybe you want to vote idea at
    http://lync.ideascale.com/a/dtd/Limit-AppSharing-for-specific-applications/467874-16285
    Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found
    there. Please make sure that you completely understand the risk before retrieving any suggestions from the above link.
    Lisa Zheng
    TechNet Community Support

  • Cannot ping two devices through remote access-SSH

    one of our gold partner called me and advised that he cannot ping or SSh to two of the 4948 switch.however if he logged to the core switch the 6500 he can sub telnet to the 4900.but he cannot telnet directly through SSH to the 4900.i have checked the config for SSH on both device and this is configure correctly.can any one help and tell me why we cant ping or SSH to these two devices directly rather than telneting to the core device it self before telneting to the 4900s.This is very urgent

    Hi
    Just to clarify. This is how i understand what you have set up
    You have a management vlan for the switches. The layer 3 SVI for this vlan is on your core switch.
    The other switches you have all have IP addresses for management from the same management vlan.
    Each switch should have a default gateway set and this default gateway should be the Layer 3 SVI on your core switch. (If you are running a pair of core switches you may well be using HSRP so your switches default gateway would be the virtual IP.
    The vlan that your switch layer 3 management is in, is this the same vlan as the management vlan ie.
    what vlan interface is the default gateway in ?
    if you cannot ping the default gateway from the switch this sounds like you have your vlans messed up.
    Could you provide configs of the 4948, the core switch and another switch that works
    Jon

  • Is it possible to this with remote-access vpn?

    Hi
    I have access to my enterprise network through Cisco VPN (software) client and it goes through remote-access ipsec vpn setup on an ASA 5510. Everything works fine.
    But now users that connect to the enterprise network have in addition need to access remote sites networks that are connected through the site-to-site VPN tunnels: IPSec tunnels between mentioned ASA5510 and remote ASA5510s and ASA5505s in branch offices.
    Is it possible?
    If yes what shoud I consider to make it work?
    My setup looks like
    enterprise network:                                    10.1.1.0/24
    remote vpn clients get ip adresses from:  10.0.5.0/28
    remote branch 1 network:                         10.1.10.0/24
    remote branch 2 network:                         10.1.20.0/24
    remote branch 3 network:                         10.1.30.0/24
    there is NAT exemption rule that exempts networks 10.1.10.0/24, 10.1.20.0/24, 10.1.30.0/24
    All traffic from local network 10.1.1.0/24 have full ip connectivity with all the networks in branch offices. The PROBLEM is that remote vpn clients can reach only local network 10.1.1.0/24, but not the remote networks.
    The ASAs in remote branch offices has set up NAT exemption towards both local network 10.1.1.0/24 and remote access clients network 10.0.5.0/28, but as I said, it doesn't go. Please help!
    Thanks in advance!
    Zoran

    Yes you can..
    Let's take 1 remote branch network as an example: branch 1 network (10.1.10.0/24):
    On Enterprise ASA:
    - If you have split tunnel configured for the VPN Client, you would need to also add the remote branch network in the list (10.1.10.0/24).
    - Crypto ACL between the Enterprise ASA and remote branch 1 ASA needs to have the following added:
    access-list permit ip 10.0.5.0 255.255.255.240 10.1.10.0 255.255.255.0
    - "same-security-traffic permit intra-interface" needs to be configured
    On remote branch 1 ASA:
    - Crypto ACL between remote branch 1 ASA and Enterprise ASA needs to have the following added:
    access-list permit ip 10.1.10.0 255.255.255.0 10.0.5.0 255.255.255.240
    - NAT exemption rule to exempt the traffic:
    access-list permit ip 10.1.10.0 255.255.255.0 10.0.5.0 255.255.255.240
    Clear the tunnels from both end, and test the connectivity.
    Hope this helps.

  • How do I turn on SMB Sharing so I can access my Time Capsule remotely via iPad w/FileBrowser app?

    I know I can share the time capsule, but I don't want to have to have my computer on, I just want to enable sharing and then access the files via File Browser on my iPad and Stream my movies and music stored at home.

    Are you saying that your new Extreme no longer needs for you to enter the terminal script to enable TM backups to an AirDisk?
    Yes, exactly that ... although since it is the Mac that runs Time Machine & uses its own system preferences, I don't think it is the new Extreme itself that makes the difference but instead some update to the OS (10.5.5, maybe?). As I understand it, so many users expected that in this respect an Extreme with a USB-connected drive would be the functional equivalent of a Time Capsule that Apple updated the code to support it, even without setting a hidden system preference for Time Machine to show (& use) "unsupported" drives.
    IOW, I suspect the key is no longer necessary for anyone running up-to-date system software. If you want to check this, you can use the "defaults" terminal command to do so. For background info, see the Mac OS X Manual Page For defaults(1) for its purpose & options, but briefly its three major modes are "read," "write" & "delete." Using the "read" option as I did in my earlier post should tell you if the preference key/value pair exists & if so, how it is set. If you replace "read" in that command with "delete" it will delete the 'show unsupported' key:
    <pre> defaults delete com.apple.systempreferences TMShowUnsupportedNetworkVolumes</pre>
    You can also leave the key in place but set it to ignore the volumes:
    <pre> defaults write com.apple.systempreferences TMShowUnsupportedNetworkVolumes 0</pre>
    All I know for sure is that I never entered any 'defaults write' command for this on either of my Macs that run Leopard, & both do show the volumes attached to the Extreme in the Time Machine "Choose Disk" system preference -- but only after the volumes are mounted on those Macs in the Finder.

  • Remote Access VPN authentication through RADIUS

    Hi,
    I have configured remote access VPN (IPsec) in my Cisco ASA . Before there was only single username & password to for VPN client. Now I am planning to give access through RADIUS server. I have configured RADIUS server in WIN 2003 server.
    Server configuration:
    1) Administrative Tools > Internet Authentication Service and right-click on RADIUS Client to add a new RADIUS client with ip address of CISCO ASA (inside interface).
    2) Remote Access Policies, right-click on Connections to Other Access Servers, and select Properties.
    3) check Grant Remote Access Permissions is selected.Click Edit Profile and check these settings:On the Authentication tab, check Unencrypted authentication (PAP, SPAP), MS-CHAP,and MS-CHAP-v2.On the Encryption tab, ensure that the option for No Encryption is selected.Click OK when you are finished.
    4.Select Administrative Tools > Computer Management > System Tools > Local Users and Groups, right-click on Users and select New Users to add a user into the local computer account.Add a user and check this profile information:On the General tab, ensure that the option for Password Never Expired is selected instead ofthe option for User Must Change Password.
    On the Dial-in tab, select the option for Allow access
    ASA configuration:
    aaa-server vpn protocol radius
    aaa-server vpn host 10.155.20.25 (RADIUS server IP )
    key cisco321
    tunnel-group vpnacc type ipsec-ra
    tunnel-group vpnacc general-attributes
    authentication-server-group vpn
    but it is not working. Please guide to resolve this issue.
    Regards,
    som

    Also, take a look at your logs on the windows server, and try debugging the asa. Try running wireshark or network monitor on the windows server to see if the requests are coming in. You should be able to figure out pretty quickly what is going on by debugging aaa on the asa and/or checking the logs on the server. Make sure the service is running on the windows box. Make sure that something stupid like windows firewall isnt blocking the connection. You can turn on debugging by typing "debug aaa" and type "logging console debugging" and "term mon". You can test aaa by typing "test aaa-server authentication vpn host x.x.x.x username someusername password somepassword"
    Hopefully this will lead you in the right direction. Oh, one more thing, when you are done, don't forget to turn off the debug by typing "undebug all". Another word of warning, running debugs on a production firewall should be done at your own risk, it is very easy to overwhelm a device to the point it stops responding by running debugs.

  • Remote Access: Computer no longer listed as "Shared"

    I am out of town an need to access my MacPro from my Mac Laptop. I have done this for many years with no problem, but previously my Mac Pro has always been listed under the “Shared” area on the Finder window. I would simply select my Mac Pro, then either “login” or “Share Screen.” However, for some reason my Mac Pro is not listed in the Finder window. I’m certain the Mac Pro still has sharing enabled, but I’m unsure of how to access the computer if it’s not listed in the “Shared” area of the Finder.
    Any help would be appreciated.
    Thanks, Dave

    Hi David.
    Sounds like one of the routers between you and your home network doesn't have the required ports open (though you could double-check to make sure your home router hasn't magically been changed, as well).
    -- Basic test:  When at home and on WiFi, can you use Back to My Mac? If so, this isn't an issue with either of your computers.  It's something to do with your router, or more likely, the routers you're using while away from home.
    See: If you have issues using Back to My Mac - Apple Support
    This can be a bit difficult to fix if you are staying at a location where you don't have control of the network (like a hotel), but if you travel often, it might be worth investigating or looking into an option that isn't dependent on network ports (a web-based remote access solution).
    Hope that helps.

  • Routing and Remote access - internal network not accessing internet through public network!

    Hello,
    Good Evening to all.
    I got an issue in routing and remote access on windows 2003 server.  This server is already configured as File server, domain server and Application server. Also configured as router (through routing & remote access) for connecting three different
    network to each other. So This server has three NIC card installed and each NIC card represent separate network.
    three different network are - 192.42.160.0/24 , 192.42.161.0/24, 192.42.162.0/24
    Three NIC card installed on server as with following IP address -
    NIC -1 = 192.42.160.220 , Sub- 255.255.255.0 , Gateway - NO
    NIC -2 = 192.42.161.220 , Sub- 255.255.255.0 , Gateway - 192.161.220.112 (This ip for internet access so 4g router IP)
    NIC -3 = 192.42.162.220,  , Sub- 255.255.255.0 , Gateway - NO
    Now the issue is I can reach to internet & (also pinging to router ip 192.42.161.112) from only one network that is - 192.42.161.0/24 , BUT when I trying to access internet from another two network (192.42.160.0/24 & 192.42.162.0/24) I cant access
    it and moreover can't ping to internet router ip - 192.42.161.112...
    So how I can access to internet from other two network also? 
    I was already configured static routing for all three network but still I was not success. really I don't know what exactly static routing it should be done in routing & remote access so that all three network can reach to internet?
    Sorry if I am not able to explain properly. Please let me know if you need more explain on this...
    Thanks to all.

    Dear Milos,
    I am happy to hear from you....
    1.- Actually the setup was done long before by another guy and right now I don't want to change it. 
    Nice to hear from you! Thank you so much. Actually this is first time I am using technet forum upon the suggestion from one of the my friend. So any your help from you will help me a great in this issue...
    I ran the route print command and given follow are the results.
    I have only added the default route as per the below routes. Please guide me know how to add other static routes for three network.
    D:\Documents and Settings\Administrator>route print
    IPv4 Route Table
    ===========================================================================
    Interface List
    0x1 ........................... MS TCP Loopback interface
    0x2 ...00 30 05 ad 8f 5c ...... Broadcom NetXtreme Gigabit Ethernet - Teefer2 Mi
    niport
    0x3 ...00 0e 0c a7 c4 f8 ...... Intel(R) PRO/1000 GT Desktop Adapter - Teefer2 M
    iniport
    0x4 ...00 0e 0c a7 c5 85 ...... Intel(R) PRO/1000 GT Desktop Adapter #2 - Teefer
    2 Miniport
    ===========================================================================
    ===========================================================================
    Active Routes:
    Network Destination        Netmask          Gateway       Interface  Metric
              0.0.0.0          0.0.0.0   192.42.161.112   192.42.161.220      1
            127.0.0.0        255.0.0.0        127.0.0.1        127.0.0.1      1
         192.42.160.0    255.255.255.0   192.42.160.220   192.42.160.220     20
       192.42.160.220  255.255.255.255        127.0.0.1        127.0.0.1     20
       192.42.160.255  255.255.255.255   192.42.160.220   192.42.160.220     20
         192.42.161.0    255.255.255.0   192.42.161.220   192.42.161.220     20
       192.42.161.220  255.255.255.255        127.0.0.1        127.0.0.1     20
       192.42.161.255  255.255.255.255   192.42.161.220   192.42.161.220     20
         192.42.162.0    255.255.255.0   192.42.162.220   192.42.162.220     20
       192.42.162.220  255.255.255.255        127.0.0.1        127.0.0.1     20
       192.42.162.255  255.255.255.255   192.42.162.220   192.42.162.220     20
            224.0.0.0        240.0.0.0   192.42.160.220   192.42.160.220     20
            224.0.0.0        240.0.0.0   192.42.161.220   192.42.161.220     20
            224.0.0.0        240.0.0.0   192.42.162.220   192.42.162.220     20
      255.255.255.255  255.255.255.255   192.42.160.220   192.42.160.220      1
      255.255.255.255  255.255.255.255   192.42.161.220   192.42.161.220      1
      255.255.255.255  255.255.255.255   192.42.162.220   192.42.162.220      1
    Default Gateway:    192.42.161.112
    ===========================================================================
    Persistent Routes:
      None
    Regards & Thanks
    Mahesh

  • Entire "Macintosh HD" shared through SMB File Sharing

    I have OS X 10.5.6 installed on my Apple MacBook. I recently enabled File Sharing (SMB). On my Windows XP laptop, navigating to \\macbook now shows the entire "Macintosh HD" as a shared folder. I wasn't even asked for login credentials for my Mac's user account.
    File permissions, using the "Get info" function on the Macintosh HD show:
    system: read & write
    admin: read & write
    everyone: read only
    I don't know about anyone else, but this is a glaring security issue.
    I don't want to tinker with messing with file permissions at the root of the drive, as I have a feeling that could cause some major chaos to all the subordinate folders.
    Solutions?

    I don't have a picture sharing site account to use, so I can't post any screen shots. Hopefully, I can describe it well enough.
    Say you have a user account called 'bob' on your Mac. On your Mac, bob is an admin user and therefore has access to your entire Mac. If you log into your Mac as bob, you can see everything.
    Nothing changes if you log into your Mac from a Windows machine as bob. No matter how bob logs into your Mac, directly to the machine, from a windows machine on you network, or from a dumb terminal in the basement of a hangar on Area 51, bob will have the same access to your Mac.
    In the File Sharing options, when you select the account for bob, the entire account is shared. You essentially said, "let 'bob' log into this machine using SMB."
    If you just select the option to share files via SMB, you can set access to specific folders for particular users. You can even make up new users that don't have an account on the Mac, but can access folders that you specifically give them access to.
    So, for what you want, don't select an account to share via SMB, just select "Share files and folders using SMB."
    Now, at the bottom of the file sharing dialog, Add the folders you want to share. Choose the users you want to have access to those folders and set the type of access, Read & Write, Read Only, or Write Only. If you want to create a username and password to access those folders, without having an account on the Mac, Add a person and choose "New Person." That person will be a "Sharing Only" user. You can't log into the Mac as that user, but you can access the specific folders you have set up.

  • How to enable users to access windows 2012 through remote desktop client on windows XP SP3

    Hi I have just installed Windows Server 2012 and trying to give access to the users. The users are on windows XP Pro SP3 remote desktop client (Shell and control version 6.1.7600 with Remote Desktop Protocol 7.0 support). 
    I have enabled the windows server 2012 remote desktop users through "control panel -> systems and security ->  Remote access" for the users. When I try to connect to the windows server as administrator, it is getting connected.
    But when I try to connect as other users I get the following message.
    "To sign in remotely, you need the right to sign in through Remote Desktop Services. By default members of the Administrators group have this right. If the group you're in does not have the right, or  if the right has been removed from the Administrators
    group, you need to be granted the right manually."
    Is there any other setting to be done to eanble the Remote Desktop for the users.

    Hi I have just installed Windows Server 2012 and trying to give access to the users. The users are on windows XP Pro SP3 remote desktop client (Shell and control version 6.1.7600 with Remote Desktop Protocol 7.0 support). 
    I have enabled the windows server 2012 remote desktop users through "control panel -> systems and security ->  Remote access" for the users. When I try to connect to the windows server as administrator, it is getting connected.
    But when I try to connect as other users I get the following message.
    "To sign in remotely, you need the right to sign in through Remote Desktop Services. By default members of the Administrators group have this right. If the group you're in does not have the right, or  if the right has been removed from the Administrators
    group, you need to be granted the right manually."
    Is there any other setting to be done to eanble the Remote Desktop for the users.
    Have you tried adding those users to the "Remote Desktop Users" group? It's in Active Directory Users and Computers and it's a Built-In group. Might want to give that a try ...
    - JJ

  • Remote access without screen sharing?

    I have an iMac and a MacBook Air. I'd like to remotely access the iMac from the Air on my local network, so I can take advantage of the iMac's superior processing power and file storage, while sitting in a different room. The problem is that my iMac has a 27" monitor and a 24" secondary display, so screen sharing doesn't work very well on my Air's tiny 13" monitor.
    My question is, is there any software that would allow me to remotely login to the iMac and give me a Mac OS interface, but size that interface appropriately for the MacBook Air, rather than just showing me the actual desktop of the iMac. Basically, I want it to pretend like the notebook's monitor is the monitor connected to the remote mac and still execute all the code on the remote mac. Extra points if I can essentially instantiate a second instance of the same account on the iMac, so I can be logged in locally and remotely at the same time, with the same account, but with different looking desktops.

    I presume that your issue is your viewing two very small side-by-side screens on an already small screen. There is a drop down menu on the screen sharing window itself (that is, the window of the screen sharing app running on the MBAir, on the left side in the vicinity of the toolbar) where you can select to display either the left screen, the right screen, or both screens. I have a (employer-owned) 17" MBP that accesses a (employer-owned) dual-screen iMac and find that switching between left and right screens is not too bad of a compromise, in exchange for being able to actually see (and do) anything on the iMac from the MBP's screen sharing app.

  • SQL 2012 FileTable remote access through Mgmt Studio

    I'm having trouble accessing the FileTable directory from any machine other than the local server.  Does anyone know of a detailed resource for explaining all of the permission 'areas' to allow remote access?
    On the SQL 2012 server:
    I can open 2012 Mgmt Studio, expand down to the FileTable, right-click and Explore the FileTable Directory.  Directory appears and contents are visible.
    On remote computers:
    Doing the same action as above results in: 'The File location cannot be opened.  Either access is not enabled or you do not have permissions for the same.'
    I'm using the same domain account on both systems, and it is a local OS admin & Sysadmin on the SQL server and local OS admin on the remote computer.  Tried turning firewalls off on both machines.
    I setup the Filestream and FileTable using the documentation at:
    http://msdn.microsoft.com/en-us/library/ff929144 'FileTables (SQL Server)
    Any suggestions?
    Cheers,
    J

    What I've found so far:
    1. Leave Windows share as created by SQL Server when enabling FileStream and FileTable.  (ie windows share should have a path of: 
    \\?\GlobalRoot\.....)
    2. Firewall ports TCP 139 & 445 must be open.
    3. Users have db_owner permission to the database.  Based on other posts I think this can be modified, but still working on that.  For me enabling db_datareader and db_datawriter was not enough for users to access the FileTable.  At the moment
    I'm not sure if SQL logins will work as the system seems to use passthrough authentication.  Not sure how SQL logins would pass through from an external client.

  • I see "imac-54f9d5" under the "Shared" heading in my finder. I am not connected to any printers or other Mac devices. Is it possible that someone is remotely accessing my system? How can I figure out what this is?

    I see "imac-54f9d5" under the "Shared" heading in my finder. I am not connected to any printers or other Mac devices. Is it possible that someone is remotely accessing my system? How can I figure out what this is?

    is it your imac?
    is it your your router's name?
    are you by any chance connected to another wifi router then your own because the other one was open and not password protected?

  • How to detect real desktop and remotely accessed(screen shared) desktop?

    Hi All,
    On Mac Os the Screen Sharing feature is similar to Remote Desktop Service. Is there a way to determine whether the terminal where we are starting the application(our own application) is real desktop or remotely accessed (screen shared) desktop?
    For Ex:
    I have booted(logged in) the Mac A sytem with user1 account. From another Mac B machine, i will login to user2 account of Mac A sytem using Screen sharing  feature. My application has to run only on real desktop, not on remotely accessed desktop(screen shared). So Is there a way(programmatically) to determine whether the terminal where I am starting the application is real desktop or remotely accessed (screen shared) desktop?
    Please guide me.
    Thanks & Regards,
    Vinay

    Have a look at the 'Son Of Grab' sample code, it shows you how to grab elements of the screen individually.

  • Remote access vpn going through another firewall segment

    Hi,
    Can i know that when use remote access vpn connect to asa firewall inside interface, after that the remote access vpn is it can connect to another firewall segment , the firewall segment is behind the inside interface?

    Hello Sam,
    As long as you include that traffic into the crypto acl and also on the NO_NAT configuration  the answer would be yes. That is possible
    Regards,
    Julio

Maybe you are looking for

  • How to registor database provider in oracleAS portal

    hi, problem occur when i register a database provider into oracleAS portal.i create database provider by using locally built provider in oracleAS portal. i Register the name of the schema containing the provider implementation and don't no package th

  • VENDOR ID

    WHAT A BLOODY AWFALL SITE TO GET ANY ANSWERS TO. I CAN NOW NOT SUDDENLY OPEN SOME OF MY BOOKS BECAUSE OF VENDOR IDs THIS HAS NEVER HAPPENED BEFORE AND AS I HAVE PURCHASED BOOKS FROM VARIOUS STORES I HAVE NO IDEA WHICH STORES THEY ARE FROM. I TRIED ON

  • Macro Question: Possible to change master data?

    I have found a few macros that supposedly work to change the master data for infoobjects (MATLOC_SET()...etc.) however when lauching these in the planning book i can see no change in the infoobject master data. The idea is to change an attribute of a

  • Stopping DB adapter From Retrying.

    Hi, We want to stop the DB adapter from retrying when a fault occurs during the db call. For that we have set following properties to ZERO *<reference name="SampleAPI" ui:wsdlLocation="SampleAPI.wsdl">* *<interface.wsdl interface="http://xmlns.oracle

  • Illustrator CS5 Unexpectedly Quits when use Hotkey's

    Hello, Does anyone have an issue when using hotkey's in Illustrator CS5?  Every time I switch using a hotkey, my Illustrator unexpectedly quits.  It is a paid student edition.