I'm new to Synology but (I guess) an old head in enterprise IT. So my first question would be: Are any of your network devices capable of running VPN? Even many consumer grade routers have this capability. I'm on my way out of the Synology ecosphere and switching to unraid within the next two years anyways. Also they could add an "advanced" mode to the VPN server package to edit config files directly from the web gui. Maybe DSM 7 will bring an updated version. I have set it up to use server and client certificates, maxed out the cipher algorithm, increased key size and tuned a couple other settings in the server config but it took me literally two years to figure it all out and resulted in multiple reconfigurations of my whole setup. Significantly improving it is possible but beyond the capabilities of a lot of users. But I'd say security is decidedly mediocre. Openvpn on Synology works and is user-friendly. Thing is openvpn implemented improved security measures like stronger cipher suites since then. The changes might be (but I doubt it) so substantial that they can't just update their version easily when a new openvpn release is available. We don't know how much they modified the official release to integrate it into DSM.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |