How do you choose your DSM network ports?

Currently reading
How do you choose your DSM network ports?

481
96
NAS
DS220+, DS918+, RS1219+
Operating system
  1. Windows
Mobile operating system
  1. Android
I keep reading to change it from the default 5000/5001 to make it more difficult for bad guys to find my stuff. I know where to change the port; my question is how do you go about selecting a different number? I don't want to accidentally pick a port number that is even more common than 5000/5001.
 
I came across a post from @WST16 that addressed this question for me in a previous post. Looks like he's suggesting anything in these ranges?

 
I forget about RP. I have it set up for bitwarden, but none of the other apps. I suppose I can set it up for all the syno mobile apps like moments, drive, and any other apps to all point to the same port with RP. I am not running a businesses off these; the most concurrent family users I'll probably have is 3 or 4, and that's rare. Is there any concern about overloading a port with RP?
 
[At the risk of being Captain Obvious again...]

With one Internet IP address from your ISP your router will have:
  1. TCP ports 0 - 65,535
  2. UDP ports 0 - 65,535
  3. A host of other IP protocols too List of IP protocol numbers - Wikipedia
The point is you have only one TCP 443 port and that can only be port forwarded to one LAN device. Run reverse proxy on this device and it can use the domain name in the URL to determine what to do next, respond with: local Web Station; local package’s Application Portal; reverse proxy towards another web server (eg local DSM; other web service); Web Station virtual host.

The reverse proxy device’s SSL certificate or certificates will be used to secure the inbound request so must cover all the domain names you use in the Subject Alternative Names field by either having a wildcard or each specific name listed.
 
Is there any concern about overloading a port with RP?
How overloaded is overloaded?

If most of TCP 443 is going to be reversed proxied on the same device then it's only adding a bit of RP processing to the eventual load.

I'd guess most home users will be using their newest/biggest NAS as the RP so unlikely that this will be a problem.

Virtually all my services are running through one type of DSM reverse proxy and I've no problems, in a small home setup.
 

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Log in

Already have an account? Log in here.

Similar threads

  • Question
Ofc you can make a single compose for this no problem. Personally I like to separate front end apps from...
Replies
10
Views
1,235
Dear Rusty, Thank you for your response. You are correct about using version=3. However, I am currently...
Replies
2
Views
1,612
  • Solved
<<<<< SOLVED >>>>> OK so I decide to solve this by myself accordingly. Synology did offer me to go check...
Replies
1
Views
1,294
I'll try to explain it better. At home I use a DS918+ with the following setup. server { listen...
Replies
6
Views
2,051

Welcome to SynoForum.com!

SynoForum.com is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Back
Top