Set up VPN server (synology) + openVPN
Posted: Sat Jan 07, 2017 10:54 am
I want to connect to my NAS (synology) via openVPN. My synology act as a VPN server. I have followed the instructions from synology on how to set up VPN server and openVPN:
"Export configuration file from the OpenVPN tab on VPN Server. Unzip the exported file, which contains ca.crt, openvpn.ovpn, and README.txt.
Open openvpn.ovpn with a text editor and replace YOUR_SERVER_IP with the public IP address of your Synology NAS. If your Synology NAS is behind a router, replace YOUR_SERVER_IP with the router's IP address.
Put ca.crt and openvpn.ovpn into the config subdirectory under the OpenVPN directory (i.e. C:\Program Files\OpenVPN\config\).
Double click the OpenVPN GUI icon in the system tray."
Have replaced YOUR_SERVER_IP with "diskstation.synology.me" (my DDNS)
I have a certificate from Lets Encrypt for https connections (in my synology). Don't know if that interrrupts the process?
I have seen 3d party openVPN services around forums. Do I need that?
In the log of openVPN this happens when i try to connect:
"WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sat Jan 07 10:30:09 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]myDDNSip
Sat Jan 07 10:30:09 2017 UDP link local (bound): [AF_INET][undef]:1194
Sat Jan 07 10:30:09 2017 UDP link remote: [AF_INET]myDDNSip:1194
Sat Jan 07 10:30:09 2017 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Sat Jan 07 10:31:09 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Jan 07 10:31:09 2017 TLS Error: TLS handshake failed"
Btw, how do I "use the auth-nocache option to prevent" caching passwords.
"No server certificate verification method has been enabled" - i thought that exporting the ca.crt from my synology to my desktops counted as a "verification method" ?
I appreciate all help I can get!
"Export configuration file from the OpenVPN tab on VPN Server. Unzip the exported file, which contains ca.crt, openvpn.ovpn, and README.txt.
Open openvpn.ovpn with a text editor and replace YOUR_SERVER_IP with the public IP address of your Synology NAS. If your Synology NAS is behind a router, replace YOUR_SERVER_IP with the router's IP address.
Put ca.crt and openvpn.ovpn into the config subdirectory under the OpenVPN directory (i.e. C:\Program Files\OpenVPN\config\).
Double click the OpenVPN GUI icon in the system tray."
Have replaced YOUR_SERVER_IP with "diskstation.synology.me" (my DDNS)
I have a certificate from Lets Encrypt for https connections (in my synology). Don't know if that interrrupts the process?
I have seen 3d party openVPN services around forums. Do I need that?
In the log of openVPN this happens when i try to connect:
"WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sat Jan 07 10:30:09 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]myDDNSip
Sat Jan 07 10:30:09 2017 UDP link local (bound): [AF_INET][undef]:1194
Sat Jan 07 10:30:09 2017 UDP link remote: [AF_INET]myDDNSip:1194
Sat Jan 07 10:30:09 2017 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Sat Jan 07 10:31:09 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Jan 07 10:31:09 2017 TLS Error: TLS handshake failed"
Btw, how do I "use the auth-nocache option to prevent" caching passwords.
"No server certificate verification method has been enabled" - i thought that exporting the ca.crt from my synology to my desktops counted as a "verification method" ?
I appreciate all help I can get!