So, I’ve set up a VPN connection on my Diskstation, using OpenVPN.
Now, I’d like to access DSM (or other services or machines on my LAN) from remote locations. However, when I connect to the VPN server, I can’t just type in the local IP-address to connect to DSM for example.
How do I connect to local IP addresses on my LAN, when connected through my VPN?
Scratch what you’ve done with OpenVPN. Not because it’s bad, just that it’s outdated and requires more manual configuration, and is significantly slower. Switch to tailscale using WireGuard. Access Synology NAS from anywhere · Tailscale Docs
Have to set a static route on DSM telling it the gateway to the VPN subnet.
You may need to forward ports/open the NAS firewall.
Thanks, I’ll look into it.
Are there any privacy issues / don’t they collect user data?
This. Assuming the VPN connection works then it is most likely a DSM firewall problem. I know I had to create a firewall rule in DSM to allow all traffic from my newly created VPN subnet to DSM after setting up OpenVPN
Thanks a lot! This worked perfectly. Now I also know why I couldn’t open any website using the full-tunnel VPN instead of split-tunnel.
Will have to read up on subnetting. Still somewhat of a mistery to me
My understanding is mostly ease of setup. If you’re comfortable enough rolling your own WireGuard server and client access, great. If not, a pre-packaged solution works well for most people.
FWIW, stick with split tunnel to maximize your internet speeds when remote. Unless you’re going for complete privacy — if that’s your goal then stick with a full tunnel.
Good to know, thank you 