User Manual
15 Chapter 6: Enhance Connection Security
This chapter introduces various security features to protect your Synology Router and the client devices from
potential cyber threats and unwanted information leakage.
Secure Your Connections
SRM can secure the Internet connection in the following ways.
HTTP and HTTPS
HTTP is the unsecured, common protocol for web browsers to communicate with web servers. As the secured
version of HTTP, HTTPS protects your Synology Router and client devices from cyber threats and unauthorized
access.
By default, SRM provides HTTP and HTTPS connections. You may change the HTTP/HTTPS ports to avoid
malicious attacks.
To change the HTTP/HTTPS ports, go to Control Panel > System > SRM Settings.
To access SRM via HTTP(S) connection, add the HTTP(S) port after the IP address:
• Synology_Router_IP_Address:8001 (8001 is the default HTTPS port.)
Example: 192.168.1.1:8001
HTTPS-related Measures
At Control Panel > System > SRM Settings, two other HTTPS-related measures are available:
• Automatically redirect HTTP connections to HTTPS: All the Internet connections via HTTP will be switched
to HTTPS to access SRM.
• Enable HSTS: Only web browsers using HTTPS connection can access SRM, while HTTP-using browsers are
denied access.
DoS Protection
DoS (Denial of Service) attacks bombard a computer system with numerous requests exceeding the target’s
capability. The attacked computer may miss important data/service requests (e.g. email messages) from outside,
and suer from limited Internet bandwidth and system resource.
To enable DoS protection, go to Network Center > Security > General.
Pass-through
When a Pass-through service exists behind your Synology Router, you can allow specic types of VPN client
trac (PPTP, L2TP, SIP, and IPSec) for pass-through to reach the server. This feature helps prevent potential
cyber threats from sneaking into the server via specic protocols.
To enable the pass-through function, go to Network Center > Security > General.
Enhance Connection Security
6
Chapter