Recently I am using an old computer to work as a NAS with OpenMediaVault.
Since I wanted to share the content of one disk in my local network I created one samba server and so far so good.
However as I also needed to access the files from outside my local network so I went to my router and forward ports 445 and 139 (udp and tcp) and everything works fine. And since I have an DNS service, is perfect and easy for me to access those files, I just put the server address and the login and that was it. I am doing this for about 2 years now but since was not personal files it was a good trade off for me.
But now that I pretend to store sensitive information I have security concerns if I am doing it right...
Is there a secure way to do this kind of share?
Also I use the NAS as:
- Torrent Client (I have 9091 port forwarding),
- Plex server
- SSH is active (22 port forwarding in the router)
- HTTP port forwarding to access openmediavault control panel from outside the network (again port 80 to 8080 forwarding).
Since I am starting to have too many port forwardings I am starting to have this security concerns... specially now that I pretend to use this machine (or other dedicated machine in my local network) to act as a Network Video Recorder and store video from IP security CAMs.
It's preferable to create a VPN server to access my network instead of all of this port forwarding?
Thank you for your help.
