Smart Remote Access troubleshooting
  • 5 Minutes to read

Smart Remote Access troubleshooting


Smart remote access settings check-list

Verifying that Smart Remote Access is enabled

If you open your gateway through the NordLayer Control Panel, you should see the following message:

Screenshot 2022-05-16 at 14.44.43.png


Testing the connection

To test the connection, you can open the Command Line Prompt (Windows), Terminal (macOS/Linux) and run the following command:

ping <NordLayer DDNS set on device>

If you get ping results similar to 0% packet loss, it means that the connection to the remote device is established and the device is accessible via the Smart Remote Access feature.

Otherwise, if the ping results are 100% packet loss, it means that the remote device is not accessible remotely.
Note: To stop the ping on macOS/Linux you may use the keyboard shortcut: Control + C

In case you are unable to ping the DDNS on your device, it is worth checking the Activity tab in the Control Panel to see whether both users are connected to the same gateway. If you are the Owner of the organization, you may check this information in the Activity -> Connections section of the NordLayer Control Panel.


Network profile type is set to Private

Setting the network profile type to Private ensures that other computers (devices) on the same local network are visible to each other.

On Windows 10 / 11

Right click on your Network/WiFi icon and go into the Network and Internet settings:

Screenshot 2022-09-06 at 12.37.29.png

Choose Wi-Fi or Ethernet (depending on your current connection type):

Screenshot 2022-09-06 at 12.39.30.png

Under Properties of your current connection, please choose Private as the network profile type:

Screenshot 2022-09-06 at 12.40.41.png

On Windows 8.1

Head to Settings -> Change PC settings -> Network -> Connections

Choose your current Connected network:

Screenshot 2022-09-06 at 12.42.37.png

To turn your Network profile type to Private, switch Find devices and content to On:

Screenshot 2022-09-06 at 12.43.39.png


Update your Sharing settings

In order to be able to see other devices on the same local network, allow access to network shares and turn credentials requirement on or off.

Windows

Head to the Control Panel -> Network and Internet -> Network and Sharing Center -> Change Advanced sharing settings

Under Private - mark these options:

Screenshot 2022-09-06 at 12.47.30.png

Under All Networks - mark this option:

Screenshot 2022-09-06 at 12.47.33.png

OPTIONAL

Turn password protected sharing on or off (to connect without Windows credentials)
Screenshot 2022-09-06 at 12.47.40.png

Additionally, to allow connection without credentials, also enable this option (only on Windows 7, 8.1, 10 up to version 1803):

Screenshot 2022-09-06 at 12.47.44.png


Windows Defender allowlisting

Windows Defender could be blocking File Sharing, Remote Desktop or Remote Assistance, thus, they need to be allowed if you wish to use them.

Go into Control Panel -> System and Security -> Windows Defender Firewall -> Allow an app or feature through Windows Defender Firewall

For File sharing, make sure these are marked:

Screenshot 2022-09-06 at 12.47.49.png

For Remote Desktop and Remote Assistance, make sure these are marked:

Screenshot 2022-09-06 at 12.47.52.png


Enable Remote Desktop/Remote Assistance

If you wish to use Windows Remote Desktop or Remote Assistance, please head to Control Panel -> System and Security -> Allow remote access:
Screenshot 2022-09-06 at 12.47.58.png


Accessing a shared folder in the local network (without NordLayer)

Try mapping a network drive when both of your devices are within the same local network, without being connected to the VPN. Mapping a network drive:

Windows:

  1. Open File Explorer from the taskbar or the Start menu, or press the Windows logo key + E
  2. Select This PC from the left pane
  3. On the Computer tab, select Map network drive
  4. In the Drive list, select a drive letter (any available letter will do)
  5. In the Folder box, type the path of the folder or computer, or select Browse to find the folder or computer
  6. Click Finish

macOS:

  1. In Finder, either hit Command+K to bring up 'Connect to Server' or navigate to Go > Connect to Server
  2. Enter the path of the network drive you’re trying to map (e.g. smb://devicename/shared/Files) and click Connect
  3. Enter your login details and then click OK to mount the network drive

Linux:

Before you can mount Windows/macOS shares, you need to have CIFS or SMBFS installed. You also need support built into the kernel. If you are using a binary distribution your kernel should be automatically configured for this. To install the required mount/unmount utilities and allow users to mount Windows/macOS shares, follow the instructions below:

Open a terminal (on Ubuntu or Debian-based distributions) and type:

sudo apt-get install smbfs

Setting mount.cifs and umount.cifs SetUID root to allow user mounts

sudo chmod u+s /sbin/mount.cifs /sbin/umount.cifs

You can map a network drive to Storage01 using the mount.cifs utility. Now that mount.cifs is installed SetUID root, you can run the following command as a regular user:

mount.cifs //devicename/sharename /path/to/mountpoint -o user=myusername,domain=campus,vers=1.0

(https://sit.teamdynamix.com/TDClient/1865/Portal/KB/ArticleDet?ID=849)

If the share is able to mount correctly within the local network while not being connected to NordLayer, you will be able to do so when Smart Remote Access is set up (but will need to use the NordLayer DDNS that you set on the device that you want to access).



Common issues

You do not have permission to access <...>

Screenshot 2022-05-16 at 14.53.02.png

This means that the connection to the mapped drive is established, however, some permissions are restricting the connection.

https://docs.microsoft.com/en-us/troubleshoot/windows-client/networking/cannot-access-shared-folder-file-explorer#you-do-not-have-permission-to-access-ipaddress-or-hostname

Solution 1 - share the folder with everyone:

  1. Right-click the shared folder
  2. Select Properties, and then select Advanced Sharing on the Sharing tab
  3. Select Permissions, check Allow for Full Control of Everyone, and then press Enter
  4. Select OK on the Advanced Sharing dialog box

Screenshot 2022-05-16 at 14.53.31.png

Solution 2 (follow-up) - allow the Full Control permission to Everyone:

  1. Select Edit on the Security tab
  2. Select Add, enter Everyone in the Enter the object names to select field, and then press Enter
  3. Check Allow for Full control of Everyone, and press Enter

Screenshot 2022-05-16 at 14.53.59.png

Solution 3 (in case the above does not help) - make sure TCP/IP NetBIOS is enabled:

  1. Go to Start
  2. Go to Search, enter the word Services, and press Enter
  3. Double-click TCP/IP NetBIOS Helper on the right pane, and make sure the Startup type property is set to Automatic

Screenshot 2022-05-16 at 14.54.22.png

  1. Go to Control Panel > Network and Internet > Network and Sharing Center, select Change adapter settings on the left pane, and then double-click Ethernet
  2. Select Properties and double-click Internet Protocol Version 4 (TCP/IPv4) on the Networking tab
  3. Select Advanced, select Enable NetBIOS over TCP/IP on the WINS tab, and then press Enter.
  4. Select OK twice to close the dialog box

Screenshot 2022-05-16 at 14.54.27.png


Windows cannot access <...> check the spelling of the name.

Screenshot 2022-05-16 at 14.55.15.png

If you are getting an error message similar to the one above, most likely either your device or the device you are accessing is not connected to the same gateway. Please verify if both users are connected to the same gateway via the Activity -> Connections section in the Control Panel if you are the Owner of the organization.

Note: In case you have any questions or are experiencing any issues, please feel free to contact our 24/7 customer support team.


Was this article helpful?

What's Next