Advertisement
Help Keep Boards Alive. Support us by going ad free today. See here: https://subscriptions.boards.ie/.
If we do not hit our goal we will be forced to close the site.

Current status: https://keepboardsalive.com/

Annual subs are best for most impact. If you are still undecided on going Ad Free - you can also donate using the Paypal Donate option. All contribution helps. Thank you.
https://www.boards.ie/group/1878-subscribers-forum

Private Group for paid up members of Boards.ie. Join the club.

NAS security

  • 23-07-2011 05:14AM
    #1
    Registered Users, Registered Users 2 Posts: 86,683 ✭✭✭✭


    I have a Seagate Goflex home. Tonight I was having intermittent connection issues, and I noticed my networked drive was going full tilt when I went to check the router. No backup was in progress. I figure it may be remotely possible someone got into my network, and found the drive. Perhaps looking up files and whatever else. Not an idea I am comfortable with of course.

    Basically I'm just curious to what I would need to do in order to be ensured that something like that can't possibly happen. I've already reset everything on the power strip, so I've obtained a new IP regardless for the moment. But I feel like I've only just jumped away, and the cylons will still track me down :eek:

    I poked through the router, it's a Netgear WNR2000. A cheap sonnofabitch. I don't see much in the way of what I would consider adequate security. Is there a way to get my modem to automatically renew the IP address regularly?


Comments

  • Registered Users, Registered Users 2, Paid Member Posts: 3,519 ✭✭✭ethernet


    As long as your NAS device is behind a firewall of some sort, you're safe.

    Is your NAS device meant to spin down your drive(s) after a certain period of inactivity?

    Most home users will be using NAT and so all devices will have private, non-routable IP addresses, such as 192.168.x.y, among others.

    To make your NAS device publically accessible on the Internet on this case, you'd need to do port forwarding or put the device in a DMZ. Now neither of these things will have been done unless you've already done so!

    There's usually an option on consumer routers and NAS devices to enable remote administration. You can disable this just to be sure (even though it won't work unless the NAS device has a public IP address, or is in a DMZ or is reachable through port forwarding, as outlined above).

    If you're using Wi-Fi, be sure to put a strong password on it and use WPA/WPA2 encryption only.

    In a nutshell: I think you're safe, although you're right to be paranoid :)

    Be sure to lock down access to the NAS shares locally - e.g. only allow access from certain IP addresses, require a username and password for shares with sensitive data and so on.

    It's normal to see blinkenlichten on a router even if you don't suspect anyone using your network at the time - ARP requests, DHCP renewals and load of other things will cause some network activity.


Advertisement