QNAP TS101 Firewall

[ashmant]

Not sure if anyone knows the answer here? I'm thinking of getting a DYNDNS address to access my NAS remotely and I've read the posts herein noting that I will have to find a permissable port or gain access to the port 9000 through my firms firewall.

The real question I am have is does the QNAP have any firewall or antivirus software installed. If I put my QNAP on the otherside of my router firewall, it might be prone to hacker attack or virus' and I'm otherwise very sensible in this regard. Any views here or am I barking up the wromng tree?

Trev

[flusk]

No it has no firewall or antivirus software. But presumably you do have administrative control over your own router/firewall and could open up port 9000 leaving other ports closed.

The problem is likely to be that your employer is not so cooperative and you will have to find some third-party proxy method to forward requests that you can get past your firm's firewall to port 9000 on your NAS. If you search the forum I believe some solutions have already been suggested.

It should also be possible to run sshd on the NAS and use port forwarding to connect directly from behind your company firewall. Unfortunately there is no easy way of setting this up at the moment, but a few of us are working on it!

[Andy_W]

Not sure if anyone knows the answer here? I'm thinking of getting a DYNDNS address to access my NAS remotely and I've read the posts herein noting that I will have to find a permissable port or gain access to the port 9000 through my firms firewall.

The real question I am have is does the QNAP have any firewall or antivirus software installed. If I put my QNAP on the otherside of my router firewall, it might be prone to hacker attack or virus' and I'm otherwise very sensible in this regard. Any views here or am I barking up the wromng tree?

Trev

No firewall on QNAP and you will have to open more ports than just 9000 if you want to use services like accessing files etc. Make sure that you have an administrator password that is complex (letters, numbers & symbols) and your chances of getting hacked are quie remote. Very important that you make sure there is no default guest access! Alternatively, you can put it in the DMZ and the rest of your network will be behind the firewall. I had mine on line for about 3 months wih no hacker problems. Main isue was being able to access from behind the firewall at work.

[Paul_B]

You can potentially further secure your NAS if you are only remote accessing from work or a few other locations. Turn up the logging of your own router. Then try to connect from work to the external IP address of the router, make a note of the time. When you get home look at the log file for the IP address that tried to access your router around the time that your recorded. Chances are it will always be the same IP address so you can just allow this IP address access to your home network.