VPN Connection

You can easily turn TNAS into a VPN client and connect to an existing VPN (Virtual Private Network) server using PPTP, OpenVPN, or L2TP/IPSec.

Supported VPN protocol types

• PPTP: PPTP (Point-to-Point Tunneling Protocol) is a commonly used VPN solution supported by most clients, including Windows, Mac, Linux, and mobile devices.
• OpenVPN: OpenVPN is an open-source VPN service solution. It utilizes SSL/TLS encryption mechanisms to secure VPN connections.
• L2TP/IPSec: L2TP/IPSec (Layer 2 Tunneling Protocol with IP Security) provides a more secure Virtual Private Network solution, and it is supported by most clients including Windows, Mac, Linux, and mobile devices.

Configuration methods for various VPN protocols

PPTP Protocol

1. Select PPTP and click "Next".
2. Choose a name for the new configuration profile, specify the VPN server address to connect to, and enter your username and password for that server. Click "Next" to proceed.
3. From the Authentication dropdown menu, select one of the following authentication mechanisms to protect the VPN client password during authentication:
   PAP: Password will not be encrypted during authentication.
   CHAP: Password will be encrypted using CHAP (Challenge Handshake Authentication Protocol).
   MS CHAP: Password will be encrypted using Microsoft CHAP version 1.
   MS CHAP v2: Password will be encrypted using Microsoft CHAP version 2.
   If you choose MS CHAP or MS CHAP v2, select one of the following options from the Encryption menu to encrypt the VPN connection.
   No MPPE: VPN connection will not be protected by Microsoft Point-to-Point Encryption.
   Require MPPE (40/128 bit): VPN connection will be protected by either 40-bit or 128-bit Microsoft Point-to-Point Encryption.
   Maximum MPPE (128 bit): VPN connection will be protected by 128-bit Microsoft Point-to-Point Encryption, providing the highest level of security.
4. Optionally, check any of the following checkboxes based on your needs:
   Use default gateway on remote network: Enable this option to route TNAS network traffic through the specified VPN server.
   Reconnect if connection is lost: If the VPN connection is unexpectedly lost, the system will attempt to reconnect every 30 seconds (up to five times).
5. Click "Apply" to complete the setup.

OpenVPN Protocol

1. Select "OpenVPN" and click "Next".
2. Choose a name for the new configuration profile, specify the VPN server address to connect to, and enter your username and password for that server.
3. In the "CA Certificate" field, click the "Browse" button to import the certificate file exported from the VPN server (e.g., ca.crt). Click "Next" to proceed.
4. Optionally, check any of the following checkboxes based on your needs:
   Enable VPN Compression: Compress data during transmission, improving transfer speeds between the VPN client and server. This option may consume more system resources.
   Use default gateway on remote network: Enable this option to route TNAS network traffic through the specified VPN server.
   Reconnect if connection is lost: If the VPN connection is unexpectedly lost, the system will attempt to reconnect every 30 seconds (up to five times).
5. Click "Apply" to complete the setup.

OpenVPN Protocol (Importing .ovpn File)

1. Select "OpenVPN (Importing .ovpn File)" and click "Next".
2. Name the new configuration profile. In the "Import .ovpn File" field, click the "Browse" button to import the .ovpn file exported from the VPN server.
3. Enter the following information provided by the VPN server administrator: your username, password, and import the "CA Certificate" file (e.g., ca.crt). Click "Next".
4. Optionally, check any of the following checkboxes based on your needs:
   Use default gateway on remote network: Enable this option to route TNAS network traffic through the specified VPN server.
   Reconnect if connection is lost: If the VPN connection is unexpectedly lost, the system will attempt to reconnect every 30 seconds (up to five times).
5. Click "Apply".

L2TP/IPSec Protocol

1. Select "L2TP/IPSec" and click "Next".
2. Choose a name for the new configuration profile, specify the VPN server address to connect to, and enter your username and password for that server. You also need to input a pre-shared key for the VPN server, then click "Next".
3. From the "Authentication" dropdown menu, select one of the following authentication mechanisms to protect the VPN client password during authentication:
   PAP: Password will not be encrypted.
   CHAP: Password will be encrypted using CHAP (Challenge Handshake Authentication Protocol).
   MS CHAP: Password will be encrypted using Microsoft CHAP version 1.
   MS CHAP v2: Password will be encrypted using Microsoft CHAP version 2.
4. Optionally, check any of the following checkboxes based on your needs:
   Use default gateway on remote network: Enable this option to route TNAS network traffic through the specified VPN server.
   Reconnect if connection is lost: If the VPN connection is unexpectedly lost, the system will attempt to reconnect every 30 seconds (up to five times).
5. Click "Apply".

Note

1. The VPN server's username, password, address, and certificate should be provided by the administrator of the VPN server.
2. Verification and encryption settings must match those configured on the VPN server. Please contact the administrator of your VPN server for details.