Configure Remote User Access using OpenVPN

firmware-8

#1

image
Available from firmware version 8.0

Introduction

Besides being able to use PPTP and L2TP with IPsec you can now also use OpenVPN for Remote User Access to your LAN.
This article describes how to configure your Peplink router and a Windows 10 client for remote User Access using OpenVPN.

Configuring your Peplink router

Log on to the web admin interface of the Peplink router.
On Balance models, navigate to Network > Remote User Access.
On MAX models, navigate to Advanced > Remote User Access.

The following menu will appear:

  1. Select OpenVPN
  2. Select the WAN interface and IP addresses where the OpenVPN server of the router should listen on.
  3. Enter details of the client network (LAN subnet) that the remote user is allowed to connect to.
  4. Enter 1 or more Username(s) and password(s) for the Remote User
  5. Save and Apply the Changes

Note:
The username must contain lowercase letters, numerics, underscore(_), dash(-), at sign(@), and period(.) only.
The password must be between 8 and 12 characters long.

  1. Navigate to Status > Device
  2. Download and save the OpenVPN Client Profile.

Configuring a Windows 10 client pc

Download the OpenVPN windows installer of choice from:

https://openvpn.net/community-downloads/

Run through the OpenVPN Setup Wizard and click Finish.


Open the OpenVPN config folder and paste the OpenVPN client profile file to this directory.
In Windows 10 this is by deafult located in the directory: C:\Users%username%\OpenVPN\config
image
Run the OpenVPN GUI desktop app from the Windows 10 start menu.
Right-click the OpenVPN tray icon in the right bottom corner of your screen and click connect.
image
An OpenVPN window opens showing the connection process.
Type in the password that you configured earlier to establish the Remote VPN connection.


#2

Hello Erik,
Could we change the port UDP 1194 to TCP 443?


#3

Hello Gokhan,
Currently the router only listens on UDP port 1194.
It might be possible to make this an editable option in future.
Could you raise this as a new feature request?