Synology VPN Plus Server transforms your Synology Router into a powerful VPN server. It helps companies set up virtual offices that facilitate flexible working hours and working styles. In this video, you will learn how to use VPN Plus Server with Synology Router Manager (SRM). You can refer to the timestamps of each topic in the video description. Before configuration let’s talk about the differences between the two key services VPN Plus offers: Synology WebVPN and SSL VPN. With WebVPN, users don't need to install any client software. Accessing the company's internal web-based systems is done purely through a web browser.
In contrast, to use SSL VPN, installation of Synology's client VPN software is required but then you can enjoy access to web applications and also other internal servers running other protocols. For example, you can use a native file explorer through SMB protocol or use SSH to connect to your Synology NAS, as if you're physically in the private network. As both VPN services require a web portal URL for users to connect you need to have a domain name that can be used to access this portal on Synology Router. You can sign up for free a Synology DDNS in SRM to obtain your desired domain name. Open VPN Plus.
And want to use it to access the VPN Plus web portal simply fill it in the field below and import the certificate into the router. Please note that you need to configure the DNS server to point the domain name to the IP address of the Synology Router and that the certificate imported should be a wildcard certificate. Now that you have a domain name WebVPN is a good option if your users only need to access the company's internal web-based services. Go to Synology VPN in VPN Plus Server then select WebVPN.
And check Enable WebVPN. You will see the domain you just registered appear in the self-owned domain. Click Apply to finish you can now give the URL to your employees. When working remotely users can enter the URL into the browser and will then see the login portal of VPN Plus. They can login to their account and after login enter the IP or domain addresses of the internal web services and press Connect.
As simple as that they can enter the company's private systems as they would normally do in the office. You can also pre-configure all frequently used applications or sites for employees on their portal making it a landing page for all internal systems. Select WebVPN Portals. Click Add and enter the name of the system or application in the Portal name field as well as its internal domain or IP address. Click on Allowed users/groups to choose who has access to this portal.
In this video, we will use All Users then check Show in default portal. You can also give this application a custom portal alias so that your users can access this address directly from the web browser without having to go to the web portal first After configuration is complete the portal name will be displayed in the VPN Plus web portal. VPN Plus web portal is also capable of showing connection history. For users’ convenience.
They can add frequently visited websites as a bookmark for themselves by clicking the star-shaped icon on the list. On the other hand if your employees need to access internal resources not only through a browser but also through their native file explorer other desktop software, or mobile app, you can set up SSL VPN. Go to SSL VPN located in VPN Plus Server. Click Enable Synology SSL VPN VPN Plus offers a variety of security and encryption levels.
You can adjust them if necessary. Click Apply when done. The last step is to arrange who can access SSL VPN in the permission page To use SSL VPN, users will also login the web portal via the URL at the bottom but go to the SSL VPN tab instead. They will be asked to install the Synology SSL VPN Client. Click download to install immediately. After installation is complete users will be required to set a PIN code for this client before connecting to the VPN for the first time.
It helps to avoid connecting to a malicious VPN server. Click Connect to start using SSL VPN. After connecting, no matter where they are they will be able to use internal LAN resources and applications just as if they were in the office. SSL VPN is also supported on mobile devices users can download the VPN Plus app from Apple App Store or Google Play store. After installation they can configure the SSL VPN access URL displayed on the VPN Plus Sever, port, account username, and password to connect.
VPN Plus Server also allows IT administrators to easily view network traffic in the last two hours using visual representations in the Overview page. This allows them to identify abnormal usage spikes such as when users report a slowdown in VPN speed. In the Connections page you can check the connection details of a specific time period choose a time period using the drop-down menu or simply drag and drop to zoom in to a specific time range. User connections can be interrupted immediately if abnormal usage is found in the Online tab.
You can also configure more options for end users in the Permission page you can choose to limit VPN connection speed, and block VPN access to specified IP addresses. With Synology Router and VPN Plus Server you can now easily allow teams to work remotely. To learn more about VPN Plus Server and Synology Router subscribe to the Synology YouTube channel or click another video to keep watching.
Great feature. We enabled it briefly when everyone was home. Will you be adding 2FA like DSM 7 has? Would make it a lot more secure.
Put the ease of this functionality in your boxes. Excellemt video
Yo quiero un nas
SSLv3 is not considered as secure anymore. Possible to use TLS 1.2 ?
Is there a way to combine SSL vpn and site to site vpn? Adding the secondary office's ips as object didn't work. Any help?