Management
VPN Plus Server provides the network administrator with various management settings and traffic charts to monitor and protect network security.
Overview
You can view real-time network traffic of all and individual VPN services.
- Click Overview on the left panel.
- In the line chart, you can find sent/received network traffic in the latest 2 hours. To see traffic at a specific time point, click on the chart.
- In the blocks, you can find sent/received network traffic and connection count of each VPN service.
Permission
You can define local and LDAP user/group permissions to specific VPN services, limit VPN connection speed, and block VPN access to IP addresses.
To define user/group access to VPN services:
- Click Permission on the left panel, and go to Services.
- Select VPN services by user/group to grant usage permissions.
- Click Apply.
Note:
- If your Synology Router has joined a Windows AD domain or an LDAP domain, make sure the total number of user accounts is within 500 to ensure smooth migration or permission adjustments.
To set up speed limit policies:
- Click Permission on the left panel, and go to Speed Limit.
- Manage speed limit policies in ways below:
- To add a speed policy: Click Add and provide required information. Click OK.
- To edit a speed policy: Select a speed policy and click Edit to change relevant settings. Click OK.
- To remove a speed policy: Select a speed policy and click Remove.
Note:
- Speed policies for Synology SSL VPN connections can be set in two locations:
- VPN Plus Server: You can set speed policies by user and by VPN service.
- SRM (at Network Center > Traffic Control): You can set speed policies by device and by application.
- If you set speed policies on Synology SSL VPN connections in both VPN Plus Server and SRM, only those in VPN Plus Server will take effect.
To set up blocking policies:
- Click Permission on the left panel, and go to Block List.
- Manage blocking policies in ways below:
- To add a blocking policy: Click Add. Specify the IP address that should not be accessed, and select target users/groups for this policy. Click OK.
- To edit a blocking policy: Select a blocking policy and click Edit to change relevant settings. Click OK.
- To remove a blocking policy: Select a blocking policy and click Remove.
Note:
- When an internal IP address is blocked from incoming VPN access, it cannot be reached via any VPN service or WebVPN address bar.
Object
Network objects (e.g., subnets or IP ranges) are configurable network items that you can repeatedly apply for quick VPN configuration.
To manage network objects:
- Click Object on the left panel, and go to Address Pool.
- Follow the steps below to manage network objects:
- To add a network object:
- Click Add.
- Select IP range or Subnet as the object type, and provide required information.
- Click OK to save changes.
- To edit a network object:
- Select a network object, and click Edit to change settings.
- Click OK to save changes.
- To remove a network object, select a network object, and click Remove.
Note:
- Changes made to a network object will be instantly applied to all associated VPN services.
Connection
You can view general trends of VPN connections, and monitor active connections to stop undesired ones.
To view connection history:
- Click Connection on the left panel, and go to History.
- You can find connection counts in the line chart:
- To switch the date, select from the Time range drop-down menu.
- To zoom in, select a desired range on the chart with the mouse.
- To return to default range, click Return to Default.
- You can find connection information by user in the list. For more details, select a connection and click Details.
To view current connections:
- Click Connection on the left panel, and go to Online.
- In the list, you can find standard VPN, Synology SSL VPN, WebVPN, and Remote Desktop connections running through the Synology Router.
- To stop an undesired connection, select the connection and click Disconnect.
To view WebVPN connections:
- Click Connection on the left panel, and go to WebVPN Monitor.
- In the list, you can find what users and how many WebVPN connections are accessing a specific domain/website.
Log
You can view records of system managements and connection activities for troubleshooting, and limit log storage for suitable space usage.
To view administrator's managements:
- Click Log on the left panel, and go to Management.
- In the list, you can find setting changes performed by the network administrator.
To view users' connection activities:
- Click Log on the left panel, and go to User.
- In the list, you can find all users' connections records and relevant information.
To manage log settings:
- Click Log on the left panel, and go to Log Settings.
- Manage logs in ways below:
- To limit the log storage, select from the Maximum log usage drop-down menu.
- To clear logs (i.e. connection history, management records, and all users' connection records), click Clear Logs and select unwanted logs for deletion.
Note:
- When the specified storage limit is exceeded, older logs will be deleted to accommodate new ones.