VPN settings for multiple clients
Region : UnitedKingdom
Model : TL-ER6120
Hardware Version : V1
Firmware Version :
We are experimenting with connecting remote users to the TPLINK using a VPN. It would seem the PPTP option is the one for us as we have 5-10 users who want to connect, from different locations like hotels, or at home.
Is it possible to have user specific authentication for the VPN? At present everyone has to share the same password. I could set up multiple tunnels but that seems a lot of work - one tunnel per person. Other VPN solutions allow authentication checks via Active Directory or a DB.
The reason I want to do this is for audit purposes, and so that I can easily close a VPN if an employee leaves, or I wnat to temporarily disable one person's access. Is that possible?
Last edited by morph; 11-12-2012 at 14:22.
You may consider to set up the PPPoE server. This link may help you
Thanks - this does not seem to enable per-user accounts - you still enter a single name and password. Its also not a VPN and the data is not encrypted. I cannot see how this helps answer the original question. Is there a way to use external authentication (like Active Directory or a database) with users, on this product? If not, I do think it would be a useful feature for TP-LINK to consider.
Originally Posted by ivy
There are two kinds of VPN network diagrams: Site to Site and Client to Site, as I know.
Originally Posted by morph
You want to use VPN from a lot places, including hotels. You mean everywhere in the world where the internet is availlable ？
So the external location is flexible....???
To achieve your goal, you need to use SIte to Client network.
I do understand the different types of VPN - and I believe I have chosen the right type (client/Site). The issue is that in the TPLINk setup for all types of VPN, you do not seem to have the option of per-user authentication. This means that everyone has the same credentials.
Originally Posted by Kane
In all the other VPN solutions I have setup, there is an option as to where teh auth sources the creds from. Uusually Active Directory or an LDAP DB. That is what is missing here.
If someone knows how to have two users, on a VPN, with two different passwords for access, please let me knwo how its set up. I know I can create two tunnels. But when you have lots of users, that is not the best way to do it, surely.
So is it true that the ER6120 can really only support *one* road warrior VPN client account?!?! "Road warrior" meaning that the remote client address is not known ahead of time so the client IP must be set to 0.0.0.0. Because in my ER6120 config, it says you can only have *one* VPN account with a remote client IP of 0.0.0.0. This means that every remote user must use the same account and credentials?!?! If so, how can this product be sold as a VPN router for a small business without being able to use a different username & password for each user?
Am I missing something??
I see on the VPN set up page, you can add more than one rule, and each rule can have a different account, maybe you can try to set up different rules in order to get different accounts?
Joy, thank you for trying to help. However, I am looking for someone who already knows how to do this. I can see the fields in the setup page and I believe I have tried every one. It simply seems to be that you cannot configure more than *one* L2TP/IPsec tunnel/account/rule for an unknown remote IP (client IP of 0.0.0.0). I'm looking for an answer from someone who understands the problem and know definitively one way or the other. As it looks now, I think I have to return this box.
I would like to know if there is a way to have more then one user name and password from a location of 0.0.0.0
Originally Posted by Andrew911tt
Has any of you had luck with this?
I too would need to assign multiple clients the 0.0.0.0 id.
The PPTP/Server on the TL-ER6120 is capable of unique credentials per user in mode Client-to-LAN with a maximum of 32 simultaneous pptp tunnels.
Originally Posted by morph
If you have configured everyone to use the same password then your configuration will need to be altered to accommodate your additional users to use their own passwords.
Please post screenshots of your setup.
In my case, as described in my other thread, I need to set up L2TP LAN-to-LAN. (http://forum.tp-link.com/showthread....d®ion=china)
I can confirm, both the 604 and the 6020 VPN routers that I purchased refuse to register more than one configuration with 0.0.0.0 as client regardless of your choice of Client-to-LAN or LAN-to-LAN. I cannot imagine this being any different in the 6120 which also uses the same interface structure. The only difference between the routers in this regard is the number of supported simultaneous tunnels, 8, 16 or 32. PPTP or L2TP.
This is a very serious issue as it prevents the creation of anymore than one tunnel in cases where the client LAN's IP address is unknown ahead of time.
This morning I spoke to tech support in China and was told that this is, in fact, a bug and they are working on fixing it. That is very good news because otherwise we will have to abandon all plans for using these routers.
Last edited by TPLinkster; 12-11-2014 at 13:59.
If you want your questions answered please start your own post and refrain from hi-jacking other forum members threads of which I already answered.
Originally Posted by TPLinkster
any update on this? Can i have multiple user vpn account?