• 0

Risk with DDNS


Go to solution Solved by test4321,

Question

Hi,

I recently read an article online, which said that DDNS is a major security risk to the LAN, especially with DSM 6.1 ...

Is this true/ is there something I can do to make it safer (Upgrade to DSM 6.2 does not work)?

 

Thanks for your help.

Link to post
Share on other sites

2 answers to this question

Recommended Posts

  • 0
  • Solution
7 minutes ago, Philhawk said:

Hi,

I recently read an article online, which said that DDNS is a major security risk to the LAN, especially with DSM 6.1 ...

Is this true/ is there something I can do to make it safer (Upgrade to DSM 6.2 does not work)?

 

Thanks for your help.

If you are running un-patched version and you allow DDNS through your Firewall and hackers own your machine - they can possibly own other machines on the network.

 

Your role is to limit the surface of attack:

- limit countries that can connect

- limit IP's that can connect

- set timing on firewall open / close ports (pfsense can open / close ports by schedule)

- set ports that are not standard for synology (not 5000 / 5001)

- set IP blocking for brute-force attacks (limit how many failed logins can happen from 1 ip address)

- put your Synology on a separate from network VLAN

 

The smaller the surface of the attack the better your chances are to stay safe.

 

Definitely upgrade your Xpe if you are a few versions behind.

  • Thanks 1
Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Answer this question...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.