Install the app
How to install the app on iOS

Follow along with the video below to see how to install our site as a web app on your home screen.

Note: This feature may not be available in some browsers.

Unable to access DSM via OpenVPN tunnel

3
0
NAS
DS1019+
Operating system
  1. Windows
Mobile operating system
  1. iOS
Hi - am running OpenVPN on my Untangle firewall... (not hosted on my Synology).

Have recently added a Synology Diskstation 1019+ to my LAN at 192.168.0.129. My Untangle NGFW 15.1 box is 192.168.0.1. I've setup OpenVPN on NGFW and the address space is: 172.16.28.0/24. When I'm connected to the LAN, I can access 192.168.0.129 on port 5001 without issue to access Synology's DSM management web interface.

However when I connect to OpenVPN, I'm able to access all machines on the LAN 192.168.0.x 255.255.255.0 except for the Synology on 192.168.0.129 HTTPS 5001.

Not sure whether it helps but on the local LAN accessing https://192.168.0.129 (the Synology admin address) redirects to HTTPS port 5001 as not secure due to self signed Synology certificate. This is normal behavior on the LAN. However once connected to OpenVPN, accessing https://192.168.0.129 is unable to redirect to port 5001. Also if I attempt to connect directly on https://192.168.0.129:5001 via Untangle OpenVPN, it doesn’t connect either. Using all Synology default settings which include firewall disabled. Also using default Untangle NGFW 15.1 OpenVPN setup. Have tried both full tunnel and split tunnel client connection, both behave the same.
 
After you tunnel in can you telnet 5000 or 5001 ports and connect to them via command line?

Thanks @Rusty for your response. This isn't something I've tried before. No, my attempt to telnet to either port returns: could not open connection to the host, on port xxxx: connect failed.
 
Ping is irrelevant here when it comes to testing out traffic and connectivity. Telent works you say? Using what port?

If you are getting could not open connection to the host it means that the port is not upon the destination side (probably not true considering those are main DSM ports) or you have traffic block at some level when accessing your NAS via the tunnel.

If you can't telnet those ports when you are inside the tunnel then you need to focus on that 1st.
 

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Log in

Already have an account? Log in here.

Popular tags from this forum

Similar threads

Good evening everybody, I've got a problem with the Synology Drive Client I installed on my System. I...
Replies
0
Views
734
So, you are using now QC without port forwarding, that's already secure.:cool: If you still have questions...
Replies
6
Views
623
Have you checked that you do have an Internet routable WAN IP from Virgin Media? You might be able to tell...
Replies
6
Views
863
  • Solved
Glad you figured it out. Changed the thread to "question" and marked your post as "solved" solution.
Replies
5
Views
789
We use a system similar to what you are describing with installations at remote locations. When setup...
Replies
4
Views
1,012
  • Question Question
Will try file system defragmentation on the slow NAS and repost what I find out I have never ran it on...
Replies
2
Views
230

Thread Tags

Tags Tags
dsm

Welcome to SynoForum.com!

SynoForum.com is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Trending content in this forum

Back
Top