NAS

Posted on | In
Synology NAS

Synology DSM

Disk Station Manager

  • Hardware> Power > Wake on LAN (WOL) - need to send package (magic packet need be send)
  • storege pools - all dysc storage available / volume - live on storage pool

Communication

File Station

  • Application on NAS DSM
  • Share files from: RMB - to share files
    • to specyficusers
    • external users with pass

SMB

  • File server
  • Enable Transfer Log - record operations in log
    (Server Message Block) SMB/CIFS (samba for linux) - file storage « wounrable to encryption attack (NFS vs AFP vs iSCSI - other protocols)
  • DONT OPEN SMB PORTS ON ROUTER !!!! https://youtu.be/mwo1dpYkq6U

Synology drive

  • Google like, backup, folder sync, versioning , work toghether - Desktop App
  • older is cloud ….sth ?

cloud station ? ? vs synology drive ??

https://kb.synology.com/en-sg/DSM/tutorial/Differences_between_Synology_Drive_and_Cloud_Station

QuickConnect

  • naokoło szukanie plików - przez quick connect
  • sciaganie duzych pakietów wolne

Map network drive

  • enable WS-Discovery
    • Map as network drive - as a disk
    • Add from Network places >
    • type //NAME in explorer

SSH

  • ssh root@192.168.0.xxx -p xxportxx - to ssh to machine
  • id root -

RSA key authorization - nad security for ssh

Connect with server/app by port

or use Flame dashboard

Accounts

Premotions/users

  • LDAP - (active directory - windows version more complex but need if want login credential) - lot of read no write serwer - (lightwawe directory acces protocol) - over ip - (def use tcp)
    • static ip
    • dns record pointing to it. (fully qualified domain not ip) with DDNS //> - point a record > local static > not throue net .
  • Directory server - add domain and set nas as domain controler
    • can add users and computers.
    • IN WINDOWS: configure network and shering > properties: tcpipv4 & use following dns server adress
    • Rename pc
  • cloud identity ?? > secure as a service easy to setup Landscape
  • OpenID Connect -

  • OOS - single sign on

  • DLAN
  • AD (active directory)

C2

  • pass
  • backup - drozsze 3,5 E - 10E (500mb-2t)
  • storage - dla nasa 5.99 / 7E month 1T
  • identity - need domain C2 identity - permisions, group permitions, custom scrppt, support LDAP on local (within docker)
Backup

Version control if snapshots enabled

Share media

DLNA - Media server - need application. podobno powszechny

privileged access management synology

add user in dsm

ACL - acces control entery list- user or group acces to object

C2

Security

SECURE NAS: https://bpmsg.com/how-to-make-your-synology-disk-station-nas-more-secure/

Setup

CMS - central manage multiple NAS devices

Houdini

Edit houdini env file to get access to NAS files:

HOUDINI_ACCESS_METHOD = 2

https://aricodes.net/posts/perforce-server-with-docker/ https://hub.docker.com/u/adambryla https://github.com/hawkmoth-studio/perforce-docker https://hub.docker.com/r/hawkmothstudio/helix-p4d

Self Hosted

notes

https://github.com/outline/outline
https://www.wiz.cn/xapp

Data Secure

  • snapshot 1. btrfs / snapshot
  • backup