DiskStation Manager - Knowledge Base | Synology Inc

Access files over Internet

Faq / May 12, 2019

1/ It's a hosted service. Does that mean there is a third party between me and my home computer ? If this is the case, it's not for me. I understand that there is no INCOMING connection so no port have to be opened. All communications go through a third party server (rendez-vous point). I know you can encrypt your data being in transit on the server. But anyway you go through a third party having made that piece of soft. How can you trust it ?

What's hosted is the rendezvous server. That’s only used to locate your network peers. Once they're found, communications is direct and the rendezvous server is out of the picture. In fact, you can test it yourself at home. Once the connection is established, you can pull the plug on the Internet connection and it will continue to work.

nalooti said:

2/ It is a secure VPN. What is the difference with another "lambda" VPN ? These are all secured/encrypted tunneling software

I have no idea what "lambda" VPN means. It uses SSL, so it's as secure as anything else you depend on day to day, including online shopping, online banking, etc. It's encrypted (AES 256-bit encryption) and uses SSL authentication. That's also why it's more likely to work in remote locations; many ISPs block standard VPN ports, but none will block SSL (port 443). That's something ppl using a traditional VPNs don't always consider.

3/ It is a Remote Desktop soft. Well, I have RDP on Windows for free with file transfer capabilities, encryption, etc. The file transfer capability in LogmeIn is NOT free

I only suggested LogMeIn Free as an alternative at times when you only want remote desktop. Yes, in that case, file transfer is not available for free. But that's why I mentioned Hamachi first. You can run RDP over Hamachi if you prefer (esp., if you know you need file transfer). LogMeIn Free was merely a throw-in in case you didn't want to run Hamachi + RDP (maybe you only need to check email from your Outlook Express application at home).

But again, if you don’t like LogMeIn Free, don’t use it, just use Hamachi and run RDP over it. Besides, RDP has some vulnerabilities. For example, although the session is encrypted, the authentication process is not (at least last time I checked) making a MITM (Man In The Middle) attack possible (granted remote, but possible). And RDP requires leaving ports open, which is a risk and may be blocked by the ISP.

All in all, I don't know a 100% secure solution myself but one of my goal was also to let some foreign family being able to access my photos so I have no more to send them by mail. A complex solution, even if good for hacking prevention, can't satisfy my goal.

I don't know how much simpler it can get than Hamachi. You install it, join the network, you're in. Now setup up your shared folders, services, etc., as if those on the VPN were on the same local LAN. It’s almost too easy, too open if you plan to grant access to someone you don’t fully trust.

Source: www.tomshardware.com