Synology DiskStation DS224+ with the front cover off

How to secure your Synology NAS



NAS can be as secure as any other device connected to the outside world. So long as you’re wise with what you use the smart storage for, you shouldn’t encounter any problems concerning data safety. This guide will run you through a few things to make your Synology NAS even more secure.

It doesn’t matter if you’ve spent £100 on an affordable enclosure or £500 on one of the best NAS from Synology, it’s important to take data security seriously.

Run Synology Advisor

The first step one could take with securing their Synology NAS is to run an app that’s preloaded on every enclosure with the DSM OS. It’s called Synology Advisor and simply runs numerous tests on the NAS to make sure all is well, including the detection of any security vulnerabilities.

Having Synology Advisor running on the NAS will even notify you of any login attempts that fail. It’s a great place to start.

Force users to create strong passwords

Control Panel in Synology DSM 7.
Control Panel in Synology DSM 7. (Source: NM)

If you allow family members or friends access to your NAS, it’s important to ensure everyone is using strong passwords. DSM can enforce this, but it needs configuring beforehand.

  1. Log into your Synology NAS.
  2. Open Control Panel.
  3. Go to User & Group > Advanced > Password Settings.
  4. Check “Apply password strength rules.”

Enable HTTPS protocol

HTTPS utilizes an SSL certification to verify a level of encryption for data sent to and from the Synology NAS. This is highly recommended, especially when dealing with sensitive data. Here’s how to set it up on a NAS:

  1. Log into your Synology NAS.
  2. Go to Control Panel > External Access > DDNS.
  3. Click Add.
  4. Select Synology from the “Service Provider” drop-down menu.
  5. Enter a desired server name into the “Hostname” field. (This can be used to access the NAS, for example:
  6. Ensure “Enable Heartbeat” is checked.
  7. Ensure “Get a certificate from Let’s Encrypt” is checked.
  8. Click “Test Connection” to make sure it’s all working.
  9. If everything works, click OK.

Should you require additional information or help setting this up, I’ve written a guide on how to set up SSL on Synology NAS.

Only open router ports you require

Opening ports on your router to the Synology NAS is a good way to ensure unobstructed access to services that require connectivity to the outside world, but this can work against you by providing malicious parties access. Only forward required ports.

Keep your DSM OS up to date

Synology regularly releases OS updates that can fix security vulnerabilities, as well as add new features and improvements. It’s always recommended to ensure your NAS is updated and Synology makes it easy to configure this process to take place automatically.

Richard Pinnock-Edmonds Avatar

Latest articles