Need help setting up https access from wan to Asus AC3200 and synology NAS

[Sir Dan Baker]

Good afternoon lads,

I've been trying for days to get this type of secure access from wan to lan, but I keep getting errormessages about certificates from my Chrome-browser. Can someone please point me in the general right direction?
I'm perfectly able to gain access to the router and the nas via http, but the https is another story.
It is definitely not as simple as just entering https://ip-address:port...

Thanks guys, Dan.

 

[sfx2000]

Not a good security policy to allow external WAN access to your Firewall/Gateway device, along with your Data on the NAS.

Have you considered using VPN instead - the RT-AC3200 has a VPN server that you can connect to from remote...

 

[Sir Dan Baker]

Thanks for the suggestion and I've taken it to work, I've set up a VPN using my Synology as the server.
I will disable access to the pppoe router from wan as soon as I'm done.
Now the next part, how would it be possible to share files from my synology using some kind of protection? If https is not the best way, how could I send somebody a link with end to end encryption?


Sent from my iPhone using Tapatalk

 

[sfx2000]

Over VPN, your data should be secure - also note that Chrome 56 did introduce some TLS issues, so update it if possible - also compared with Firefox/Edge/Safari/Opera or just something other than Chrome...

 

[Jose C]

I wanted to do the same, I set up a reverse proxy with nginx for the https with a self signed certificate


Sent from my iPhone using Tapatalk

 

[System Error Message]

just for future reference, you should never expose SSL components on the WAN side, this isnt just for preventing access from the WAN side but it makes you vulnerable to a DoS attach as SSL requires more CPU power. Many routers lack CPU power and a single PC is capable of holding up a router even over WAN with very little bandwidth involved.

Use VPN for remote access if needed.