Synology Storage Technology
Network-attached Storage (NAS)
If you use a Cloud solution you should encounter Data privacy, Data Security and Data Confidentiality.
Network-attached Storage (NAS) is file-level computer data storage server connected to a computer network providing data access to a heterogeneous group of users, clients and provides a large range of integrated services. NAS not only operates as a file server, but is specialised for this task either by its hardware, software, or configuration of those elements. NAS is manufactured as a computer proprietary appliance.
If a NAS server is installed On-Premise, you have to manage everything and at the same time you are responsible of all its assets (DSM, Data, Storage, Networking, and especially security). You are your own Data Center just like a server, but more easy to administrate.
Other Solutions, as any other ISP Server, are:
- IaaS (Infrastructure as a Service)
- PaaS (Platform as a Service)
- SaaS (Software as a Service)
If you choose the Infomaniak NAS Solution, for example, you will rely on a SaaS solution: the NAS is managed by the Cloud service provider which gives you the necessary guarantees according to their legal clauses.
On-Premise NAS Storage
We can guide you in choosing and installing your NAS solution in your own company (On-Premise), explain to you how it works, how to activate the services you need, the securities best practices and the necessary protocols.
The advantage of an on-site installation is the total confidentiality and independence in the management of the activated services and the users privileges to access it. For greater security, the NAS can be accessed exclusively on your private network (LAN), at most with a redundancy (encrypted backup) on the Swiss Backup service of Infomaniak Network SA.
Both can be setup with OpenStack Object Storage (“Swift”) a free open standard cloud computing platform, mostly deployed as infrastructure-as-a-service (IaaS). Users either manage it through a web-based dashboard or through RESTful web services.
Clean First Install with Best Practices
- Clean Install of your DiskStation Manager (DSM) ;
- Admin User Name different from default one with strong password;
- Setup Local Time Zone;
- Install essential security patches and auto-updates;
- Launch Security Adviser firs check & Enable Email notifications;
- Enable integrated Anti-DDoS protection;
- Setup Security Schedules Tasks (“Cronjobs”) for daily / weekly scan.
- Change default ports against robots scans / attacks
(if one wishes to access it from the outside);
- Enable SSH / HTTPS protocols with a different port than the default one.
- Install Antivirus Integrated Plugin.
- Activated only your needed protocols (WEBDAV, AFP, SMB)
- Create Personal Shared Folders.
- Assign Users privileges.
- Sync your files and / or backup your computer.
- Create a Free Synology Account in order to have your own FQDN (company.synology.me).
NOTICE: if you install and activate VPN Server in your DSM, the connection can only be guaranteed with extra professional appliances supplied by Fortinet for example. This is often the case with SMEs which have a “domestic” router which does not allow them to perform proper configuration to connect from outside to their NAS via VPN.