Worried about the security of my NAS

Currently reading
Worried about the security of my NAS

Operating system
  1. macOS
  2. Windows
Mobile operating system
  1. Android

Some days ago I started using my first NAS for my small business. I followed tutorials and the Syno guides and of course discussions on this Forum.

However, I am a bit worried about my security settings and setup. I don't know if my NAS is too much exposed outside. I am not a specialist and I would like to share with you my "setup", hoping in some tips:

NAS setup
- I am NOT using DDNS
- I have a Let's Encrypt certificate
- I changed the HTTP and HTTPS ports for DSM
- I am redirecting all the HTTP requests to HTTPS
- QuickConnect is deactivated
- Password are strong
- In Security > Firewall I have the following:

DSM ports (HTTP and HTTPS) Allowed
Port 80 is Allowed
Port 443 is Allowed
XXXX (the port I defined for the VPN) is Allowed
Then I have "Deny All" rule at the really bottom .

I have port forwarding for the following ports
- 80
- 443
- XXXX (The port I defined for the VPN )

That's it.

Are my NAS and Router correctly set?

Port forwarding port 80 and 443 is necessary? It's dangerous?



NAS Support
DS412+, DS718+, DS918+, 2x RS3614RPxs+ with expansions
  1. RT1900ac
  2. RT2600ac
  3. MR2200ac
Operating system
  1. macOS
Mobile operating system
  1. iOS
If you are not using quick connect or ddns than there is no reason for opening dsm ports (from what you listed).
Best to avoid opening any unnecessary port that you do not use. If VPN access works for you, stick with that.

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Log in

Already have an account? Log in here.

Welcome to SynoForum.com!

SynoForum.com is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Similar threads

Similar threads

Trending threads