CMCITD
asked on
Remotely Mapped Drive Access from Client
We have a VPN tunnel that gives us access to an network shared folder on a remote server. I have mapped that drive on our domain file server. I was curious if there is a way that a domain client could remotely access the mapped drive on that particular server without having to add firewall rules for the vpn so it can directly map the drive?
Server A
z:\ = \\1.1.1.1\FileShare
Client A = Gain access to the files on the Z: mapped server drive without mapping the drive locally iteself?
A little bit unorthodox, but working with the remote ends Network Team is a bit cumbersome.
Server A
z:\ = \\1.1.1.1\FileShare
Client A = Gain access to the files on the Z: mapped server drive without mapping the drive locally iteself?
A little bit unorthodox, but working with the remote ends Network Team is a bit cumbersome.
ASKER
The VPN is at the host level with a specific NAT address for the file server. So the entire subnet does not have access through the tunnel to the remote end server. It is just a 1 to 1 connection.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
When you wrote "We have a VPN tunnel" I assumed it was a site to site VPN tunnel
ASKER
Yes it is a Site-to-Site tunnel.
Yes we could add the NAT exemption, I was just curious if there was a way to still access the folder without modifying the tunnel.
Yes we could add the NAT exemption, I was just curious if there was a way to still access the folder without modifying the tunnel.
should not have to NAT - the site ti site rule will allow authorized traffic from the "allowed subnets"
What firewalls are you using at your sites?
What firewalls are you using at your sites?
ASKER
Cisco ASA 5500s
The problem is we didnt authorize full subnets for the tunnel. We just have specific hosts and I do not have control over the remote network. I am working with a large hospital network that only allows specific hosts & ports to be protected. If I start adding clients to the tunnels then it becomes a never-ending hassle. Adding our subnet to the tunnel is not an option either for security purposes.
I was hoping for a shortcut workaround. My other option would be to run a script that just moves the files to a local share that I can then map to the clients throughout the building. Or use an app like WatchDirectory and run that as a service to move the files for me.
The problem is we didnt authorize full subnets for the tunnel. We just have specific hosts and I do not have control over the remote network. I am working with a large hospital network that only allows specific hosts & ports to be protected. If I start adding clients to the tunnels then it becomes a never-ending hassle. Adding our subnet to the tunnel is not an option either for security purposes.
I was hoping for a shortcut workaround. My other option would be to run a script that just moves the files to a local share that I can then map to the clients throughout the building. Or use an app like WatchDirectory and run that as a service to move the files for me.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I'm thinking this is going to be stalemate. I'll see what the options are for VPN additions, otherwise it is boiling down to creativity. Thanks for the suggestions guys.
Glad to help
ASKER
Tough one to answer. Both are on the right track pursuing the VPN modifications. Sometimes it's just not possible to cut corners. Thanks
net use z: \\1.1.1.1\fileshare