VPN and unRAID

vdtruong

By vdtruong
in General Support (V5 and Older)

Recommended Posts

vdtruong Rookie

vdtruong

Posted
Posted

So I was glancing at my syslog just to see if anything interesting was happening, low and behold someone was actively trying to hack into my ftp server on unraid.  IPtrace led me to somewhere in China.  Needless to say, I killed off all access ports on the router.

 

This leads me to the question of security.  How easy is it to set up a VPN on unraid?

Link to comment
myndphunkie Rookie

myndphunkie

Posted
Posted

So I was glancing at my syslog just to see if anything interesting was happening, low and behold someone was actively trying to hack into my ftp server on unraid.  IPtrace led me to somewhere in China.  Needless to say, I killed off all access ports on the router.

 

This leads me to the question of security.  How easy is it to set up a VPN on unraid?

 

Besides the obvious of "your server with your important files should not be accessible via the internet", I can see a couple of easy solutions here:

 

1) change the default port of your ftp server (not sure how)

2) Assuming you have a DSL modem / router / something similar, setup a vpn to your modem, and then you can remotely access your ftp :-)

 

 

Link to comment
NAS Experienced

NAS

Posted
Posted

another option which can help (notice i carefully dont say solve) is a denyhosts like solution. I run this on all my ssh servers and essentuially what it does is add an ipblock when a users fails login in one of many ways.

 

I have never hgave it any consideration on unraid as i would never let mine be visible via the internet but if possible it can really hinder attack attempts as the aggressors IP is blocked almost immediately.

 

Woth invevestigating as a means to limit how hard it is to hammer your server and likely will be much simpler than a VPN (although thats a better solution)

Link to comment
vdtruong Rookie

vdtruong

Posted
  • Author
Posted

another option which can help (notice i carefully dont say solve) is a denyhosts like solution. I run this on all my ssh servers and essentuially what it does is add an ipblock when a users fails login in one of many ways.

 

Woth invevestigating as a means to limit how hard it is to hammer your server and likely will be much simpler than a VPN (although thats a better solution)

 

I was looking for this exact solution, the denyhosts.  Any links or packages to help me start?

 

I will eventually try to get openVPN on there since I think this is the best solution.

 

For the time being, I've remapped all the stardard ports on the router.

Link to comment
ReneV Apprentice

ReneV

Posted
Posted

It seems to me that you want VPN on a home router, rather than directly on unRAID. In particular, the DD-WRT open-source firmware comes in a version that includes OpenVPN, which makes the technology available on consumer-grade and -priced routers. (Beware that not all supported devices can use the OpenVPN version; I can confirm that the WRT310N works.)

Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing