Connectivity question regarding domains... smb signing

**qbert69** · 04-01-2016, 05:34 PM

Re: Connectivity question regarding domains... smb signing

SMB signing with Ricoh is a firmware update issue...NCS firmware I believe. I don't know if the MPC 4000 has been updated yet...you'll have to contact them on that!

Anyone who has a business and is running Windows 7 Pro, I tell them "DO NOT UPDATE TO WINDOWS 10!" Windows 10 update is a crapsh**t!...and a business can't afford the downtime!

Window 7 Pro works perfectly fine for a business environment without all the stupid bells and whistles that Windows 8, 8.1, & 10 add on!

If I was you, I'd find a Windows 7 Pro box have all scans go to it and map everyone's Windows 10 computer to individual folders on the Windows 7 machine.

If a person has Windows 7 or 8, with the Windows 10 icon down below in the systray, they can disable the Windows 10 update process with this *nice* little piece of software!:

GWX Control Panel

Ultimate Outsider - Software Downloads

**slimslob** · 04-01-2016, 08:28 PM

Re: Connectivity question regarding domains... smb signing

Check your firmware versions. Network Support must be at v8.33 to support Windows 8 or later. System/Copy firmware must be at v2.01 to support Network Support v8.33.

**sandmanmac** · 04-02-2016, 05:24 AM

Re: Connectivity question regarding domains... smb signing

Another workaround is to setup FTP scanning, if you don 't have access to firmware updates, etc. It's Non-firmware dependent and just works.
As for your scan to email problem.... The reason for your issue with Gmail, is that the machine won't support SSL, no matter what you do.

**n25an** · 04-02-2016, 09:16 AM

Re: Connectivity question regarding domains... smb signing

Originally posted by sandmanmac

Another workaround is to setup FTP scanning, if you don 't have access to firmware updates, etc. It's Non-firmware dependent and just works.
As for your scan to email problem.... The reason for your issue with Gmail, is that the machine won't support SSL, no matter what you do.

I agree with you on ftp... but so you know gmail finally got a 587 option... I discovered it last week...

SMTP Server Name: smtp.gmail.com
SMTP Port No.: 587
SMTP Authentication: On
SMTP Auth. E-mail Address: username@gmail.com
SMTP Auth. User Name: username@gmail.com
SMTP Auth. Password: actual-password-goes-here
SMTP Auth. Encryption: Normal Password

I had this working at another location but for whatever reason it would not work at the location with the smb signing

**copier tech** · 04-02-2016, 10:46 AM

Re: Connectivity question regarding domains... smb signing

I have installed dozens on new Ricohs over the last few months & never had an issue with SMB scanning. However on some occasions it will fail, so what I do is create another user on that PC simply calling the user "scans" & the password "password" then I use that info for the folder authentication.

As you will know you need to have network sharing on, turn on public sharing for all networks, 128bit encryption (default) & password protected sharing.

The only issue as said above is on older Rich's but keeping ALL firmware upto date does the trick
Apart from very old models you need special firmware, but we don't have any older that 4-5 years so don't have that issue.

**n25an** · 04-02-2016, 02:46 PM

Re: Connectivity question regarding domains... smb signing

Originally posted by copier tech

I have installed dozens on new Ricohs over the last few months & never had an issue with SMB scanning. However on some occasions it will fail, so what I do is create another user on that PC simply calling the user "scans" & the password "password" then I use that info for the folder authentication.

As you will know you need to have network sharing on, turn on public sharing for all networks, 128bit encryption (default) & password protected sharing.

The only issue as said above is on older Rich's but keeping ALL firmware upto date does the trick
Apart from very old models you need special firmware, but we don't have any older that 4-5 years so don't have that issue.

what operating systems on the pc side???

I agree with you on the sharing, encryption, user stuff...

the times when smb failed was it due to smb signing??? or was there other issues...???

**slimslob** · 04-02-2016, 03:24 PM

Re: Connectivity question regarding domains... smb signing

My guess is the Logmein or Teamviewer software. Some VPN software turns off all file sharing services except through them. My experience was with Cisco VPN. One of the customers used Cisco VPN to send invoices to one of their major accounts, requirement of the account. Once the VPN software was launched, scan to folder would error out. Reboot the computer and scanning would work until Cisco VPN was launched. The problem was a service that the VPN used and remained resident after being launched. Since the VPN did not launch at startup, rebooting cleared the problem.

**n25an** · 04-02-2016, 07:48 PM

Re: Connectivity question regarding domains... smb signing

Originally posted by slimslob

My guess is the Logmein or Teamviewer software. Some VPN software turns off all file sharing services except through them. My experience was with Cisco VPN. One of the customers used Cisco VPN to send invoices to one of their major accounts, requirement of the account. Once the VPN software was launched, scan to folder would error out. Reboot the computer and scanning would work until Cisco VPN was launched. The problem was a service that the VPN used and remained resident after being launched. Since the VPN did not launch at startup, rebooting cleared the problem.

did some research online and yep there is a vpn called express vpn that does this... it calls the feature network lock this is a security feature...

If ExpressVPN is connected or trying to connect and you are having problems accessing your printer or shared folders in your local area network (LAN), it might be because Network Lock is enabled.

the recommended solution is disable network lock or shut down the vpn

now logmein is not a vpn but the guys that make that program produce hamatchi a vpn software
and teamviewer markets itself as a vpn

also thinking back... everything was connected to the router and it was a pretty big router... size of four bricks stacked on each other... so its possible that the router was also doing the blocking... that is possible with fancy routers... its not without precedent...

**KenB** · 04-02-2016, 08:25 PM

Re: Connectivity question regarding domains... smb signing

Originally posted by slimslob

My guess is the Logmein or Teamviewer software. Some VPN software turns off all file sharing services except through them. My experience was with Cisco VPN. One of the customers used Cisco VPN to send invoices to one of their major accounts, requirement of the account. Once the VPN software was launched, scan to folder would error out. Reboot the computer and scanning would work until Cisco VPN was launched. The problem was a service that the VPN used and remained resident after being launched. Since the VPN did not launch at startup, rebooting cleared the problem.

I pretty much have the same issue, but at home.

When I have my company notebook running at home, I quite often need to use the Cisco VPN to connect to company resources.

When it is connected, I lose all connectivity to shares I have open on my personal PC, or any other PC I'm "fostering" at the time.

I even lose connection to the printer I have connected to a parallel port on another PC.

I discovered that when the VPN is running, I can't connect to my personal email account (standard POP3 and SMTP) either.

Once I shut the VPN down, all is good again.

**n25an** · 04-02-2016, 09:01 PM

Re: Connectivity question regarding domains... smb signing

Originally posted by KenB

I pretty much have the same issue, but at home.

When I have my company notebook running at home, I quite often need to use the Cisco VPN to connect to company resources.

When it is connected, I lose all connectivity to shares I have open on my personal PC, or any other PC I'm "fostering" at the time.

I even lose connection to the printer I have connected to a parallel port on another PC.

I discovered that when the VPN is running, I can't connect to my personal email account (standard POP3 and SMTP) either.

Once I shut the VPN down, all is good again.

make sure local lan access is enabled in cisco vpn... if it still does not work then your admin overrode it...

if thats the case do the following which will delete your route map

You need to do this EVERY TIME YOU CONNECT, as the Cisco client will inject the routes upon each connection.

This simply deletes the "override" by removing the route map between your local LAN range and the VPN Interface.

1. Connect to your Cisco VPN server
2. Go to Status > Statistics > Tunnel Details and Verify that Local LAN Access is "Disabled" under the Transport heading.
(If it shows Enabled, then you have another issue preventing your access which my instructions won't solve)

3. OPEN A COMMAND PROMPT AND TYPE "route delete 192.168.1.0" (without quotes, where 192.168.1.0 is your local LAN)

4. Try to ping or connect to a local machine to verify success.

**slimslob** · 04-03-2016, 03:49 AM

Re: Connectivity question regarding domains... smb signing

Originally posted by n25an

also thinking back... everything was connected to the router and it was a pretty big router... size of four bricks stacked on each other... so its possible that the router was also doing the blocking... that is possible with fancy routers... its not without precedent...

I have customers where all the printers are on a different subnet than the computers. This is handled through managed switch stacks which is what you might have.

**n25an** · 04-03-2016, 02:53 PM

Re: Connectivity question regarding domains... smb signing

Originally posted by slimslob

I have customers where all the printers are on a different subnet than the computers. This is handled through managed switch stacks which is what you might have.

when printers are on a different subnet
can you still print?
can you still scan?

**slimslob** · 04-03-2016, 03:58 PM

Re: Connectivity question regarding domains... smb signing

Originally posted by n25an

when printers are on a different subnet
can you still print?
can you still scan?

All depends on the subnet mask. 255.255.0.0 allows you to see anything with the first 2 octets the same.

**n25an** · 06-07-2017, 08:11 AM

Re: Connectivity question regarding domains... smb signing

interesting idea... thanks...

Originally posted by slimslob

All depends on the subnet mask. 255.255.0.0 allows you to see anything with the first 2 octets the same.

Connectivity question regarding domains... smb signing

Connectivity question regarding domains... smb signing

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment