QNAP NAS Community Forum

[deerhound]

I have been able to get MYCloudNAS to work with my E3000 rubbing DD-WRT. I need to know how safe my data is that I don't wish to share. I am a complete novice when it comes to networking and especially allowing access to my NAS to the whole internet. I would appreciate any ideas on how to set up my NAS so that sensitive data can exist on the same drive as data that IO will be sharing with friends and relatives (and I assume anyone else who wants to hack in). I have a TS-259 PRO+ running in raid 1. Thanks.

Dale

[QNAPTony]

Hi Dale,

MyCloudNAS service combines two function, one for global name resolution and one for UPnP router port forwarding.
For security, you should always only open the services you just want to access or share from Internet and assign stronger password to protect your NAS, you can also enable Network Access Protection to avoid hacker attack. Otherwise, I recommend that share your file to friend by secure web browser (HTTPS).

Best Regards,
Tony

[deerhound]

Thanks for your answer Tony. I did not buy my QNAP for MyCloudNAS since it wasn't available when I got my NAS. It seemed like a neat idea, but I don't really understand how to protect myself from hackers if I open up any ports to the web. I think I will just use my QNAP as I intended when I got it for file serving on my LAN.
Dale

[Toxic17]

as long as your router allows ports that are needed to your NAS (port 80 for webserver for example) you should be ok, but make sure your username passwords are stringent enougn to stop a brute force attack on username/password accounts. DDWRT firmware should allow you to have a fairly safe spi firewall inplace too.

you can also test you ports that are open using an online scanner.

https://www.grc.com/x/ne.dll?bh0bkyd2

[deerhound]

My biggest concern is that if I allow access to one folder on my NAS, someone will be able to access other folders. I think maybe the safest way is to get a TS-112 and just use it to allow access of non-sensitive files to friends and family while keeping my main NAS folders protected. Spending $250 dollars or so is probably cheap insurance.

[tmt]

You have a good plan. A good firewall is, as you suspect, only part of the necessary protection. The MyCloudNAS function provides a convenient way to allow access through the firewall, but does not address authentication and access control.