AppGate Network Security AB Phone: +1 919 469 5066 Partner login Cryptzone Group Contact us

Can I access shares on Linux or MacOS X?

There are two approaches to give access to a Share through AppGate, one can map or mount the Share or one can use the new File Access component available in version 9
The File Access component works on all platforms and gives a GUI based view of the the files and folders within a Share.

To map or mount a Share the traditional Share Access component doesn't work as it is limited to Windows XP.
But instead, a service made up of IP Access- and Client command components can be used.
In this example the file server will be called fileserver.example.com and the share will be called Common.

Here's how you do it:

  1. If you have a Share Access component already, add an Access Rule to it that prevents it from being run when the client is anything but a Windows machine.
  2. Add a new Service, name it common_service and set the description to Common. Add an Access Rule that makes it run if the client is running Linux or MacOS X.
  3. Add an IP Access component to the service. Destination host must be fileserver.example.com, both Destination port and Local port must be 139.
  4. Add a Client Command component. Define the following commands:
    1. For unix/macosx/*:
      /usr/bin/osascript -l AppleScript -e "tell application \"Finder\"" -e "open location \"smb://%U@fileserver.example.com/Common\"" -e "end"
    2. For unix/linux/*:
      xterm -e "sudo -p 'Sudo password: ' mount -t cifs //fileserver.example.com/Common /media/common -o user=%U,port=139,nounix,rw"

This example makes a few assumptions and requirements about the Linux platform:

  • sudo is available and the user has rights to execute the command
  • The kernel has support for CIFS
  • Client packages to handle CIFS are installed
  • The user must be instructed how to unmount the share

If the client are running Gnome an alternative command might be: nautilus smb://fileserver.example.com/Common

Known problems

MacOS X not running IP tunnel driver

On MacOSX not running the IP tunnel driver can't use the method above due to Finder refusing to mount localhost. Use similar semantics as Linux may be a work around but hasn't been fully tested.

 

Updated 2010-06-03 16:18 Copyright © 2002-2010 AppGate Network Security AB. All rights reserved.
Legal notice		 Contact AppGate Network Security
Comments to the webmaster