I've been the owner of a Qnap TS-453 Pro for 2 years now.
Until now i haven't been hacked a single time due to having setup a security-by-obscurity kind of port number + very strong password.
I've been connecting to this "lousy" FTP through the internet with the ES File Explorer app all of this time.
Recently (for the unfortunate increasingly and multiple obvious reasons) i tried to go into actual security: VPN, SSH, ports you name it.
Problem is, i'm trying to learn whatever i can for the last 3 weeks but i have almost no time.
I'm just a photographer/VFX/slight programmer-guy that is getting confused about the strongly different opinions of security on various sites (SSH through privileged port or absolutely not because keystroke stealing(???).... etc etc)
Questions
- I don't see a firewall on my Qnap. Do i need one and where/how do i enable/find it?
- What port to use to SSH to get to my files in a secure way?
I've read pages about SSH on why private ports being a good idea, and why it's a bad idea.
Do i need this SRA-key system, use a password or both? (if the latter is even possible)
- My phone and Qnap are setup with the same static IP-address that i've written in the .ovpn-file.
Yet my Qnap is still reachable (with ES file Explorer on my phone) through my ISP given address like my Qnap doesn't give a sh!t.
The public IP of the VPN is not reachable whatever i do.
- Also, i have trouble on how to think of port-numbers more and more instead of understanding them better.
Are they a mere number, and are more streams than 1 allowed through a port (like loading multiple websites through port 80 or 8081)?
- Which brings me to another question.
In the web Server, i can choose to also open up port 8081 (HTTPS), but not only 8081.
Yet i can change the supposed HTTP port 80, to whatever port i want. Into port 8081 for example..... but that's supposedly necessarily a HTTPS port according to the text above textbox, so that makes me think ports and protocols are necessarily linked.
It's all confusing and i have a hard time to "get the overall picture".
I just hope i'm at the right place and that somebody can help me out, if even a bit... that'll be great
Information
Qnap TS-453 Pro version 4.3.3.0210
VPN: Private Internet Access
Phone: Nexus 5X
Phone browsing/connecting app: ES File Explorer ---> SFTP (SSH connection)
Router: Asus RT-3200 (firmware 3.0.0.4.380_7743)
Qnap and phone using the same server address for VPN-tunneling
I'm sure i forgot some info here but just say so if i did.
Greetings and thanks for reading,
Danny
