Hello,
This is my first message on this forum so I hope I'm writing it in the right forum.
I own a Synology DS920+ NAS. It is part of a VLAN which is not allowed to access the WAN. This causes obvious issues related to DSM updates and package updates. I would like to be able to set up some kind of local mirror update site on my network for both DSM and package updates. (something like a local docker registry, the machine hosting the mirror would be able to access the WAN, would be updated on a daily basis and the NAS would be able to reach this local mirror but not the WAN)
Is there a way / tool (opensource) to achieve this ?
Thank you in advance !
Note: Initially, I allowed access to the addresses listed in the KB [1], but I'm not satisfied with it. What the device is doing under the hood is not clear and as such not acceptable from a security perspective for a device hosting sensitive data. As such I currently have to manually configure routers/firewalls to allow the NAS to access the WAN for the duration of the updates, then block it again... which is not viable.
[1] What websites does my Synology NAS connect to when running services or updating software? - Synology Knowledge Center
This is my first message on this forum so I hope I'm writing it in the right forum.
I own a Synology DS920+ NAS. It is part of a VLAN which is not allowed to access the WAN. This causes obvious issues related to DSM updates and package updates. I would like to be able to set up some kind of local mirror update site on my network for both DSM and package updates. (something like a local docker registry, the machine hosting the mirror would be able to access the WAN, would be updated on a daily basis and the NAS would be able to reach this local mirror but not the WAN)
Is there a way / tool (opensource) to achieve this ?
Thank you in advance !
Note: Initially, I allowed access to the addresses listed in the KB [1], but I'm not satisfied with it. What the device is doing under the hood is not clear and as such not acceptable from a security perspective for a device hosting sensitive data. As such I currently have to manually configure routers/firewalls to allow the NAS to access the WAN for the duration of the updates, then block it again... which is not viable.
[1] What websites does my Synology NAS connect to when running services or updating software? - Synology Knowledge Center