VPN Server

Manage VPN Service

Under Management in the left panel, choose any of the following to manage the Synology product's VPN service.

Status

Here you can check the general, PPTP, OpenVPN and L2TP/IPSec status of VPN Server, including the network interface used for VPN connection, dynamic IP address assigned for VPN service, and the number of concurrent connections.

Connection List

Here you can see the list of concurrent connections from all clients, and disconnect any clients' connection.

To manage the connection list, do any of the following:

Click Refresh to update the list.
Choose a client from the list and click Disconnect to disconnect its connection.

Log

Every connection from VPN clients and changes made to VPN servers will be recorded as logs. DSM admin and any users belonging to the administrators group can refer to the records to monitor VPN Server's status and troubleshoot any possible problems.

To manage the log records, do any of the following:

Use the drop-down menu to view the PPTP, the OpenVPN or the L2TP/IPSec log records, or choose All to view all log records.
Click Refresh to update the log records.
Click Export to export all log records as an HTML file.
Click Clear to delete all log records.

Note:

When the log size reaches its limit, the oldest record will be removed for space-saving consideration.

General Settings

Here you can change the network interface used for VPN connection, grant VPN access to newly added DSM users, or set up auto block to prevent unauthorized login attempts via VPN.

To configure the network interface used for VPN connection:

Choose an interface from the Network interface drop-down menu.
Click OK.

To grant VPN access to newly added DSM users:

Tick Grant VPN privilege to newly added users to grant VPN privilege to newly added local users.
Click OK.

To prevent unauthorized login attempts with auto block:

Click the link in the Auto Block section to go to Auto Block and then modify its settings.

Privilege

Here you can grant PPTP, OpenVPN and L2TP/IPSec access to DSM local users.

To change privilege setting:

Use the search field to find a user.
Tick the checkboxes to grant PPTP, OpenVPN or L2TP/IPSec access to the user. You can also tick PPTP, OpenVPN or L2TP/IPSec in the column header to grant access to all users.
Click Save.

Note:

If users' status is Disabled, their user accounts need to be enabled at Main Menu > Control Panel > User, or they will not be able to access OpenVPN or PPTP services even if relevant privileges are granted.
VPN Server's username must be ASCII characters, including letters, numbers, dash (-), underline (_), and space. If users' status is Username unsupported, they will not be able to access VPN service because their username contains unsupported characters.