How to use VPN Server?

TOS application, TNAS PC, TNAS mobile
Post Reply
User avatar
TMzethar
TerraMaster Team
Posts: 1128
Joined: 27 Oct 2020, 16:43

How to use VPN Server?

Post by TMzethar »

Operation Guidelines

VPN Server provides easy-to-use VPN solution. The TNAS device can be set up as a VPN server, allowing other remote devices to connect to the TNAS device to form a local area network. Support PPTP, OpneVPN and L2TP/IPSec protocols.

Preparation
Make sure that the WAN IP of the router to which TNAS is connected is the Internet IP.
Map the ports required by VPNServer on the router connected to TNAS (the default is TCP1723 for PPTP, UDP1194 by default for OpenVPN, and UDP500 and UDP4500 for L2TP/IPSec by default), or enable the DMZ function of the router (insecure).

PPTP
1. Open "Settings", enable PPTP service, and confirm the default configuration. Forward the PPTP port on the router: TCP1723.
Image

2. Open "Permissions" and set the user and password required to connect to the PPTP server.
Image

3. On the Windows computer under another WAN IP network, open the "Network and Sharing Center", find the VPN client function option, and click "Add VPN Connection".
Image

4. Fill in the WAN IP of the router where the TNAS is located, select "PPTP" for the VPN type, add the user name and password that have been set in the VPN Server "Permissions" in the "Username" and "Password" fields, and click "Save".
Image

5. Go back to "Network and Sharing Center" and click Connect.
Image

6. After the connection is successful, open the browser (recommended Chrome, FireFox, etc.), try to enter the default PPTP server dynamic IP address 10.16.12.0:8181, if you can open the TOS login interface, if you can open the TOS login Interface, the VPN tunnel between the local network where the Windows computer is located and the other network where the TNAS is located has been successfully established.

Tip: If you are using a WIN7 computer, please go to Network>Properties>Set up a new connection or network>Connect to the work area to create a VPN network.
Click the "Network" icon in the lower right corner of the system tray in the lower right corner of the desktop, find the created VPN, click Properties, find the security option, change the VPN type to "Point-to-Point Tunneling Protocol PPTP", and change the data encryption to "Optional Encrypt (you can connect without encryption)" and check "Allow these protocols" to complete the setting.
Image

OpenVPN
1. Open "Settings", enable OpenVPN service, and confirm the default configuration. Forward on the router
OpenVPN port: UDP1194.
Image

2. Open "Permissions" and set the user and password required to connect to the OpenVPN server.
Image

3. Export the configuration file and unzip it to another Windows computer as a client under WAN IP.
Image
Open the OpenVPN.ovpn file with a file editor, find YOUR_SERVER_IP, and replace the YOUR_SERVER_IP field with the public IP of the router.
Image

4. Download and install the OpenVPN application from OpenVPN's official website (https://openvpn.net/community-downloads/). After the installation is complete, you can see the OpenVPN GUI program in the "Start" menu. Start this program as an administrator.
Image

5. Put ca.crt and openvpn.ovpn into the subdirectory named config (C:\Program Files\OpenVPN\config\) under the OpenVPN directory, and replace the two original files.
Image

6. Double-click the OpenVPN GUI icon in the system tray at the lower right corner of the desktop. Enter the user and password and click "Connect", and use the user credentials to connect to the VPN Server. When accessing TOS, you need to enter 172.10.11.1:8181 address instead of 172.10.11.0:8181.

Tip: Before setting the dynamic IP address of the VPN server, please note:
1. The dynamic IP address of the VPN server must be one of the following addresses:
From "10.0.0.0" to "10.255.255.0"
From "172.16.0.0" to "172.31.255.0"
From "192.168.0.0" to "192.168.255.0"
2. The dynamic IP of the VPN server you set and the virtual IP assigned to the VPN client cannot conflict with the IP of other devices in the LAN.

L2TP/IPSec
1. Open "Settings", enable L2TP/IPSec service, and confirm the default configuration. Ports for forwarding L2TP/IPSec on the router: UDP500 and UDP4500.
Image

2. Open "Permissions" and set the user and password required to connect to the L2TP/IPSec server.
Image

3. Two connection modes of L2TP/IPSec:
a. Use L2TP/IPSec server user and password connection
b. Use pre-shared key connection (not supported)

4. Fill in the WAN IP of the router where the TNAS is located, select "L2TP/IPSec with certificate" for the VPN type, enter the user name and password that have been set in the VPN Server "Permissions", and click "Save" .
Image

5. Go back to "Network and Sharing Center" and click Connect.
Image

6. After the connection is successful, open the browser (recommended Chrome, FireFox, etc.), enter the default dynamic IP address of the L2TP/IPSec server 10.3.1.0:8181, if you can open the TOS login interface, then Windows The VPN tunnel between the local network where the computer is located and the other network where the TNAS is located has been successfully established.

hint:
If you are using a WIN7 computer, please go to Network>Properties>Set up a new connection or network>Connect to the workspace to create a VPN network.
If you are using a WIN7 computer, click the network icon in the lower right corner of the desktop, find the created VPN, and then click Properties, find the security option, change the VPN type to "Use IPsec Layer 2 Tunneling Protocol (L2TP/IPSec)", and change the data encryption Set to "Optional encryption (you can connect without encryption)", and check "Allow these protocols to be used" to complete the setting.
To contact our team, please send email to following addresses, remember to replace (at) with @:
Technical team: support(at)terra-master.com (for technical support)
Service team: service(at)terra-master.com (for purchasing, return, replacement, RMA service)
Post Reply