Enigma. Impossible to access my server via Linksys-Openwrt 19

Hello, a dysfunction occurs in my installation and I have no idea for its explanation.A brief history is necessary to describe 4 successive installation. 1) NAS1 and NAS2 are both in a local network (Linksys- OpenWRT router). NAS1 SYNC to NAS2. No problem. 2) NAS1 is local, NAS2 is wan (nas1 to Linksys- OpenWRT router to Box1 to Box2 to NAS2). NAS1 sync to NAS2. No problem. 3) NAS2 is back home. NAS1 and NAS 2 are both in local network (same Linksys- OpenWRT router). NAS1 SYNC to NAS2. No problem. 4) NAS1 is local, same NAS2 is wan (NAS1 to Linksys- OpenWRT router to Box1 to Box3 to NAS2). NAS1 fail to sync to NAS2 (!!!) and my laptop also can't reach the server when I'm connected (wire, lan to linksys-openwrt). But when I connect my laptop in wifi directly to my box, I can reach NAS2. Also with my phone. And when I'm connected via openWRT, NAS1, Linksys, and laptop access to all internet except NAS2 !!!. But why????
Thanks to anyone with an idea. Forgive my English-google. I am also aware that OpenWRT is beyond the limit of my network technicality. But so far my laptop under Linux and my NAS have always worked together.Same router, same 2 NAS ... I don't understand.

I think we need a network drawing here, with IPs.

1 Like

Thanks for reply
drawing like this?
(Link delete)
I don't understand. All is fine except access to NAS2 via Linksys

please upload the image directly to the forum -- there is an upload button specifically for this purpose.

Thanks.

OK. I prefer.
(Maps deleted)
Would OpenWrt kept in memory from NAS2 passage in the LAN a path to NAS2 unsuitable for the present situation?

are you using the NAS cloud service when each one are on the different network for rsync?
From what i understand …
2 sites, 2 NAS each on a different sites, from time to time you get one of them on the other site so they are both together in the same location.

Is it then that they cant reach each other or when they are in different location?

What is the x.x ip of the "other home"?
"Home", the Box and Linksys OpenWRT are they permanent fix hardware onsite?
Will it be an issue to have your VPN on the Linksys device instead of the NAS?

Thanks for reply, ZOzo,
It's just a history. When I bought NAS1 few years ago, I put NAS2 in backup. Both were in my house. But having a NAS and its backup in the same place is not a safety model. So I moved nas2 in another place. This configuration is therefore the same as currently and the RSYNC worked. But I realized that the NAS recorded connection attempts on SSH port numbers. So I brought it back to my house at the start of this year. Connection attempts have ceased. I had the opportunity to install it in another place. Exactly under the same conditions and configuration as before. However even if the Synchro of the NAS is my goal, I draw your attention that my laptop connects to the NAS via the wifi of the box but does not find the NAS when it tries to do it by being connected to the linksys- OPENWRT. NAS are therefore for nothing or the terms of RSYNC. And the box3 is also well configured since the connection can be done as well from my laptop in wifi as with my phone from anywhere. The mystery is well within the linksys. Message in my laptop is "Une erreur est survenue pendant une connexion à axxxxx.cxxxx.eu:0000" ("An error occurred during a connection to axxxxx.cxxxx.eu:0000")

192.168.x.x for classical IPv4 adresses in local network. The VPN is only for protect access to NAS1. I have a young internet player sometimes in my home And I have no certainty on its security habits. I am sure that his video games on the Internet have a connection with attempts to connect the SSH ports of the NAS2... The firewall config on NAS1 only allows external access incoming via the VPN tunnel. The other ports are only open for local IPs.

you mention openwrt 19 in the title, is it so? can you upgrade to latest firmware

1 Like

It would be best to configure a site-to-site connection.
The most simple option is WireGuard server + client + site-to-site.

Thank,I realize that you are trying to help me but that you have no idea of the cause of the problem I encounter. Thank you for your effort.
I am 70. From my experience I learned that when something is not going on a terminal whatever it is, it is better to solve the problem before upgrading it. Because it can randomly solve the problem as making it more difficult to solve and sometimes the upgrade adds some unexpected consequences. I'll upgrade OpenWRT, but only when it's OK.

Thank. Wireguard is necessarily on the Linksys-Openwrt router. This means adding a VPN to an existing VPN (on NAS1). I have no idea how the two are or not to coexist, or to climb. This only replaces the problem with another. So far RSYNC in SSL was enough for me. These are only three connections per week under an hour. The rest of the time the NAS2 is extinguished. At the maximum I will install a VPN server rather on NAS2. But for that it is nevertheless necessary that NAS1 "sees" NAS2. That's the question....

in fact i did not completely understand your setup and what you really want to acheive.
If 2 Nases and 2 sites and both nases travels often from time to time physically accross the 2 network sites then best to have static ip via dhcp services assigned to them on both sites with DNS name also like something "nas1.home" and "nas1.otherhome", have 2 openwrt devices with one on each site and setup up wireguard VPN on both doing a site to site VPN. segregate Kiddy gaming station with VLAN and Firewall on the devices.

Not adding, but replacing.
The idea is to create a stable network environment between the sites.
This makes possible to easily move the NAS and clients from site to site as well as provide access to mobile clients from outside if any.
Clearly separating the roles should help you isolate the issue and make it easier to troubleshoot.

Thank to all contributors.
No enigma anymore. When no one has faced a problem, it is not. In other words, if there is no answer is that there is no question. I told myself that there was a trace of the NAS2 server in its local network configuration and that I missed it. I re-checked all my reconfiguration operations. I had already done it but not with this certainty that something had escaped me. And in the NAT I found a redirection to a port of NAS2 not deactivated. I was just mistaken line by unchecking the check box! Save. Test. OK. Cool!
vgaetera, i'll study wireguard. But I'll keep in mind that the first goal is to access photos and music from TV, Amp, Smartphone with max security. Backup is not the goal only a way to preserve data.

That's one more reason to connect your sites and mobiles clients with WireGuard.
And you will no longer need redirects to access home services remotely.

3 Likes

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.