1. Introduction.
Until the release of SymVPN, SymSMB was mainly used inside a local network (it does not matter whether it is home or corporate). The main limitation against its use from outside the local network was the following: the local router that controls access to the external Internet must have Port Forwarding so that CIFS/SMB requests (the protocol used by SymSMB) are forwarded to the computer which is going to be accessed. This means:
- first, that external access is limited to a single computer on the local network,
- second, requires opening CIFS/SMB port on the router - a task most users are cautious and unwilling about.
So, SymSMB can operate without SymVPN, however the conditions are quite limiting (access to a single computer on the local network) and in some sense risky (in relation to opening CIFS/SMB port).
What changes when SymSMB is combined with SymVPN?
In this case the router must also open a port, however this is not a CIFS/SMB port but one which used by VPN's protocol PPTP - and this one is meant to be open by definition. In addition, PPTP supports secure data transfer. Thus the risk component is removed.
When VPN connection is established, the phone (no matter where it connects from inside or externally) receives a local IP address and
1) becomes visible to all other computers on the local network
2) sees all the computers on the local network itself
Thus it becomes a complete network node with all the resulting possibilities.
So when SymSMB is used in combination with SymVPN, all the aforementioned inconveniences of accessing the local network from the phone externally are lifted. At the same time, new possibilities in the interaction between the phone and local network open.
Let us examine some of the common cases of this interaction.
2. Use with the local (home) network (no domain controller).
2.1 Setting up VPN Server.
We must begin with setting up VPN Server on the local network. To perform this follow the following links (or you can google it with discretion):
Now, let's assume that VPN Server on the local network is set up and Port Forwarding on the router is correctly configured.
2.2 Creating SymVPN Access Point.
What remains to be done on the phone is to create an Access Point with SymVPN. This access point must use the external IP address of the router in the Host field, while User/Password must use the credential of the user which received access to the VPN Server when it was set up (view above). For the "Access Point" field, specify the physical access point which would be used to access the Internet from the current location (WLAN, 3G, etc).
2.3 Configuring SymSMB to access the local network from the phone.
How can this be used with SymSMB? Easy! Just follow the regular “Phone-Network” direction configuration practice for SymSMB (see section 4.4.1 in SymSMB 4.0 User Guide).
Just remember to correct SymVPN-access point settings with a valid physical access point if you change your current location.
2.4 Setting up SymSMB to access the phone from the local network.
If you would like to allow someone working at home (for example, your family) to access the local phone drives from the home computer while you are not at home, it is sufficient to configure a Connection, where SymVPN-access point is entered in the "Access Point" field,
and start this connection. If the start up was successful, the phone will receive an IP address which will be seen on the local home network.
Give this IP address to your family and they will be able to do the rest using the standard methods (see Chapter 6 in SymSMB User Guide).
3. Use with the corporate local network (with domain controller).
If you plan to use the corporate local network you will not have to set up VPN Server. Contact the system administrator and he will provide you with:
- name of your VPN Server
- your credentials (name and password) to access VPN Server externally.
Create a corresponding SymVPN-access point using this information (as in 2.2)
The rest is the same as in section 2.3 - now you can start browsing your network:
You can also map a desired shared folder for quick access using the standard methods of SymSMB (see section 4.4.1 in SymSMB User Guide).
4. Conclusion.
Cool or what? ;)