How to protect your NAS – keep your Qnap, Synology or other NAS Secure

Again, I understand that exposing access to the NAS has risks involved though I’m sure there’s a good list of minimum things that you do or a way that you would recommend to minimise these risks. QNAP and Synology instructions would cover a huge amount of your audience.

 

If you want to make sure your NAS system is the most secure, make sure you:

  • Make sure passwords use symbols and special characters and are Safe
  • Make sure Admin account has no default password
  • Regularly update the operating system
  • Install Antivirus
  • Have local or a cloud backup
  • Enable file version Control
  • Enable Snapshots
  • Disable remote access and Connect via VPN
  • Use folder encryption for sensitive data

 

 

 

 

 

 

 

What is the best practice for enhancing NAS security?

To prevent malware infection or other attacks, you can check the NAS and configure system settings following these recommendations to better secure your device and protect your data.

  1. Remove unknown or suspicious accounts.
  2. Remove unknown or suspicious applications.
  3. Disable auto router configuration and set up device access controls in myQNAPcloud.
  4. Avoid opening default port numbers to the Internet.
  5. Install and run the latest version of Malware Remover.
  6. Change passwords for all accounts.
  7. Update installed QTS applications to the latest versions.
  8. Update QTS to the latest available version.

Removing Unknown or Suspicious Users

  1. Log on to QTS as administrator.
  2. Go to Control Panel > Privilege > Users.
  3. Verify all users on the list.
  4. Select unknown or suspicious users.
  5. Click Delete.
    A confirmation message appears.
  6. Click OK.

Removing Unknown or Suspicious Applications

  1. Log on to QTS as administrator.
  2. Open the App Center.
  3. Verify all installed applications.
  4. Locate an unknown or suspicious application.
  5. Click Remove.
    A confirmation message appears.
  6. Click OK.

Changing myQNAPcloud Settings

  1. Log on to QTS as administrator.
  2. Open myQNAPcloud.
  3. Go to Auto Router Configuration.
  4. Deselect Enable UPnP port forwarding.
  5. Go to Publish Services.
  6. Deselect all unnecessary services.
  7. Click Apply.
  8. Go to Access Control.
  9. Set Device access controls to Private.
  10. Click Apply.

Changing the System Port Number

If the NAS is directly connected to the Internet (for example, via PPPoE, static external IP address, or a router in DMZ mode), change the system port number in QTS.

  1. Log on to QTS as administrator.
  2. Go to Control Panel > System > General Settings > System Administration.
  3. Specify a new system port number.
    Warning: Do not use 22, 443, 80, 8080 or 8081.
  4. Click Apply.

If the NAS is behind a router but is connected to the Internet through port forwarding, specify a new port number on the router. Do not use 22, 443, 80, 8080 or 8081.

Installing and Running the Latest Version of Malware Remover

  1. Log on to QTS as administrator.
  2. Open the App Center, and click the Search icon.
    A search box appears.
  3. Type Malware Remover”, and then press ENTER.
    The Malware Remover application appears in the search result list.
  4. Click Install.
    QTS installs the latest version of Malware Remover.
  5. Open Malware Remover.
  6. Click Start Scan.
    Malware Remover scans the NAS for malware.

Changing the Admin Password

  1. Log on to QTS as administrator.
  2. Click the profile picture on the QTS Task Bar.
    The Options window opens.
  3. Click Change Password.
  4. Specify the old password.
  5. Specify the new password.
    QNAP recommends the following criteria to improve password strength:

    • Should be at least 8 characters in length
    • Should include both uppercase and lowercase characters
    • Should include at least one number and one special character
    • Must not be the same as the username or the username reversed
    • Must not include characters that are consecutively repeated three or more times
  6. Verify the new password.
  7. Click Apply.

Changing User Passwords

  1. Log on to QTS as administrator.
  2. Go to Control Panel > Privilege > Users.
  3. Select a user.
  4. Click Change Password.
    The Change Password window appears.
  5. Specify the old password.
  6. Specify the new password.
    QNAP recommends the following criteria to improve password strength:

    • Should be at least 8 characters in length
    • Should include both uppercase and lowercase characters
    • Should include at least one number and one special character
    • Must not be the same as the username or the username reversed
    • Must not include characters that are consecutively repeated three or more times
  7. Verify the new password.
  8. Click Apply.
  9. Repeat the above steps to change passwords for other users.

Updating Installed QTS applications

  1. Log on to QTS as administrator.
  2. Open the App Center.
  3. Go to My Apps.
  4. Beside Install Updates, click All.
    A confirmation message appears.
  5. Click OK.
    QTS updates installed applications to the latest versions.

Updating QTS

  1. Log on to QTS as administrator.
  2. Go to Control Panel > System > Firmware Update.
  3. Under Live Update, click Check for Update.
  4. QTS downloads and installs the latest available update.
Posted in Uncategorized