QNAP PPTP VPN

bird Most, if not all, major NAS manufacturers offer remote access capabilities, either through a proprietary manufacturer supported cloud of some kind, or through direct access over the internet using DDNS. The less expensive home models generally use a proprietary manufacturer cloud. Smart NAS drives can use DDNS and provide direct access to shared folders over the internet without first going through a cloud oriented switchboard.

Smart network attached storage devices are full featured, stand alone, general purpose computers that have a special affinity for data management and storage. QNAP and the others include PPTP VPN services as a basic feature.

A PPTP VPN is a basic VPN. They’re really easy to set up. No SSL is required.  PPTP used to be secure VPN technology. Then CloudCracker came along and offered a service for astute hackers that is said to quickly and inexpensively crack the passwords for MS-CHAP v2 secured VPN connections. Even Microsoft published a warning about PPTP / MS-CHAP v2 networking.

Realistically, PPTP is probably safe for a quick occasional file transfer, providing nobody at the the coffee shop or in the next door hotel room is sniffing all the traffic in the place for later review, or assuming the creepy kid next door isn’t doing the same thing with all the nearby houses. You’ll be OK, maybe.

Still, PPTP is offered by many purveyors of VPN technology, including smart NAS makers, so a lesson on how to set one up is included at Advanced Home Server. By the way, MS-CHAP v2 is the most secure authentication method you can associate with a PPTP VPN. The other authentication methods are even less secure. (The moral of the story … if you want the best commonly available internet security, use SSL and one or more good virus checkers since even SSL can be hacked if you have some bad software running on the inside.)

Setting Up the PC to Connect to the VPN

Windows Server and Windows PC both offer PPTP VPN server capabilities. Each configures differently as a server. No matter what kind of computer is hosting a PPTP VPN, the client PC is always set up the same. To avoid repeating the client instructions every time a new PPTP server is documented, they are in one place only. Read toward the bottom. The top part of the page  offers more hectoring about PPTP security issues.

Setting Up a QNAP PPTP VPN

I’m going to assume you have a DNS name and an internet connection to your NAS device established and available. It makes no sense to VPN from downstairs to upstairs on the same local network. You’ll be connection to your PPTP VPN using a network connection on your PC that specifically names your home server’s URL.

Enable PPTP in QNAP by checking the box and selecting the most secure authentication and encryption available. The network addresses enumerated are what the VPN uses to identify your PC on it’s network. For example, if your local IP address now is 192.168.1.35, after connecting to the VPN, it will change to, in this case, 10.0.0.2 or something else in the range below. Just take the defaults. The first number in the subnet is the net id; in this case 10.0.0.1. Use \\10.0.0.1 in Windows Explorer to view the shares.

qnap-pptp01###

Decide who will have access to the VPN. QNAP supports two VPN types and this screen is used for both.

qnap-pptp02###

Later, after someone has connected, you can monitor them on this tab. The client address is the IP address of the router the NAS is attached to.

qnap-pptp03###

This is the IP address of the PC connected to QNAP via the PPTP VPN connection. It’s within the range specified above. After disconnecting the VPN, 10.0.0.2 vanishes.

qnap-pptp05###

Don’t forget port forwarding in your router. Port 1723 is commonly assigned to PPTP. Ports 80 and 443 are not required for this exercise, but are needed for basic web pages (port 80) and SSL (port 443).

qnap-pptp04###

Windows explorer on the client PC. Note the IP address.

qnap-pptp10

____________________


5 Comments on “QNAP PPTP VPN”

  1. Incredible, such a helpful web-site.

  2. yeah he’s right this is interesting. i got it going now but to be honest i need to figure out how to drive it haha

  3. Cool guide. Is there anyway I could connect to internet while on VPN?
    The thing is, I am rarely on home network, so need to run a service, that requires LAN and internet simultaneously remote

    • Carl Rinker says:

      Edit: December 2, 2015: Yes, here. I wrote and repaired a three part series on how to use OpenVPN on a DD-WRT router. It will allow you to use local free wi-fi and connect securely to the internet through your home router.

      https://advancedhomeserver.com/dd-wrt-and-openvpn-part-1/

      ******************************************************************************

      Yes, using OpenVPN. I had a series of articles here about using OpenVPN client and a router with DD-WRT hosting an OpenVPN server. After writing them I discovered that a common error among most articles (including mine) concerning DD-WRT hosting an OpenVPN server. Basically, all remote web traffic is not necessarily directed through the router. Some server directives not usually included in most articles are required. Thus, the articles I wrote are missing a couple of essential paragraphs. I plan to research the missing bits and then re-post the articles.

      The Netgear R7000 hosts an OpenVPN server with the default firmware. It MAY provide the capability you ask about.


Have Something To Add?

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s