Secure access to homelab from the internet

Shares

How securely access homelab from the internet.

Security, security, security. Accessing securely resources from outside (internet) on the local network can be challenging and expensive. When we talk about home networks, it is becoming even more challenging and more expensive 🙂
Today, in this blog post, I will explain how do I provide secure access to homelab by using the IPSec VPN server build-in to Synology disk station.

There are several solutions out there on the market dedicated to SOHO (Small office Home office) or SMB segments you could leverage at your home. Other options are open-source VPN solutions like OpenVPN, StrongSwan, or WireGuard, just to name the most popular. All of those can be deployed on top of your virtual machines or small Linux box and act as a VPN server on your home network.

If happen you have a Synology disk station at home, you can use it as a VPN server too. Configuration is trivial, even for beginners. Synology docs are very good and well written.

Install and configure VPN server on Synology

First what you have to do is to install a VPN server. After deployment, you can configure one of the 3 VPN servers types:

  • PPT
  • OpenVPN
  • L2TP/IPSec
Synology VPN server con

Pick one of the choices and configure it. In my example, I will configure IPSec VPN. Go to management pane –> Manage VPN –> L2TP/IPSec –> Enable.

Check – Run in Kernel mode, set Pre-Share key and enable SHA2-256. That is it. VPN server is up and running on Synology

Configure IPSec VPN on Synology

To have Synology VPN server reachable from internet, you have to redirect 3 UDP ports (1701, 500, 4500) on your firewall.

UDP VPN ports

Test connection.

The easiest way to test VPN access is to use phone and configure build in VPN client. See links below on how to configure android phone to connect to IPSec VOPN server.

VPN client connection status

Useful links:

0 0 votes
Article Rating

Artur Krzywdzinski

Artur is Consulting Architect at Nutanix. He has been using, designing and deploying VMware based solutions since 2005 and Microsoft since 2012. He specialize in designing and implementing private and hybrid cloud solution based on VMware and Microsoft software stacks, datacenter migrations and transformation, disaster avoidance. Artur holds VMware Certified Design Expert certification (VCDX #077).

You may also like...

Subscribe
Notify of
guest
0 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
0
Would love your thoughts, please comment.x
()
x

FOR FREE. Download Nutanix port diagrams

Join our mailing list to receive an email with instructions on how to download 19 port diagrams in MS Visio format.

NOTE: if you do not get an email within 1h, check your SPAM filters

You have Successfully Subscribed!

Pin It on Pinterest