Change the default ports of services

If you are going to use the FTP server from outside, it is recommended that you change the typical TCP port 21 for any other. Cybercriminals always program bots to scan FTP servers all over the Internet, using port 21, which is the default. It is highly recommended to use another port for FTP, such as 54356 for example, or any other, but we should not use the typical 2121 either.

The same happens with the SSH server, if we want to access from the outside, it is recommended that you do not use ports 22 or the typical 2222, cybercriminals always look for these types of ports to make attempts to access our server, and try to attack it.

Finally, if you use the OpenVPN server, our recommendation is that you do not use the 1194 UDP port that we have enabled by default, use any other port to avoid possible denial of service attacks and access attempts. This is what is known as "security by obscurity", that is, we are "hiding" the port in plain sight, by making use of a port that is not the default one.

The role of a server repair technician is to ensure that the network infrastructure in place supports a business. 

Don't use myqnapcloud DDNS

Cybercriminals who focus on attacking QNAP computers usually discover NAS through the free Dynamic DNS service myqnapcloud, testing different domain names, therefore, a very good decision is to use a third-party service to update your public IP, like No-IP or Dyn among many others. This can be done directly in the "Virtual and network switch" section in the DDNS section, we choose the provider, enter the necessary data and click on "Apply". Below you can see all the services that will allow us to configure the operating system, in addition, we have one of "Customized" in case it does not appear in the list.