How to keep your Home network and NAS safe

Last updated on 22 Feb 2022 📧 Subscribe

How do hackers attack you

  • Zero-day
  • Phishing

Zero-day when attackers attack from outside through outdated software, through known vulnerabilities that are not yet patched.

 

How to secure your Network?

  1. Secure your router
    1. Check open ports and close unnecessary ports
    2. Enable firewall
    3. disable ping response
    4. disable port forwarding [if there is no firewall and other measures in place]
    5. disable router remote management option
    6. Use WPA2 or newer WiFi mode and make sure the password is strong
    7. Use VPN
  2. Redesign your internal network
    1. Keep your network devices under different network segments
    2. Use switches with built-in firewalls and filters [Ubiquiti UniFi Dream Machine or unifi software]
  3. Configure internal devices and NAS
    1. Enable firewall
    2. install antivirus / security monitor
    3. use VPN
    4. enable an auto Lock feature
    5. two-step authentication
    6. close unnecessary open ports/ change them to different ones
    7. disable admin account
    8. make strong passwords
    9. enable powen on/off schedule
    10. Separate volume (for OS, snapshots)
    11. have regular backups
  4. Enable automated updates
    1. router firmware
    2. internal devices

 

How to scan your open ports ?

Use port scanning websites or run a scan from neighbors or friends network – remotely.

Get your external IP

Run a scan

From online websites

From your friends house

You can also scan only for open ports )all of them or just specific ports) instead of vulnerabilities

 

How to secure your router?

Disable upnp and port forwarding

Disable Respond to Ping

Increase firewall level or set manual rules

Also disable DMZ access

 

 

 

Redesign your internal network

Do not allow hackers connect to your NAS via cheaper iot devices. Keep them seperate.

 

Keep your NAS accessible only from particular internal IP address and enable brute force attacks

 

 

Configure internal devices and NAS

Enable automatic logout and enable HTTP attack protection

 

Enable two factor authentication

 

Enable Account protection

 

Enable Firewall

 

Enable Autoblock

 

Enable DoS protection

 

Use Security Advisor to scan for open volnurabilities on your NAS

 

 

 

 

 

 

 



If you like this service, please consider supporting us.
We use affiliate links on the blog allowing NAScompares information and advice service to be free of charge to you. Anything you purchase on the day you click on our links will generate a small commission which is used to run the website. Here is a link for Amazon and B&H. You can also get me a ☕ Ko-fi or old school Paypal. Thanks! To find out more about how to support this advice service check HERE   If you need to fix or configure a NAS, check Fiver   Have you thought about helping others with your knowledge? Find Instructions Here  

☕ WE LOVE COFFEE ☕

Or support us by using our affiliate links on Amazon UK and Amazon US
     

locked content ko-fi subscribe

DISCUSS with others your opinion about this subject.
ASK questions to NAS community
SHARE more details what you have found on this subject
CONTRIBUTE with your own article or review. Click HERE
IMPROVE this niche ecosystem, let us know what to change/fix on this site
EARN KO-FI Share your knowledge with others and get paid for it! Click HERE

ASK YOUR QUESTIONS HERE!