Router Port

Synology Router Port

The Router Port if you want Internet services (such as Google Docs or Pixlr) to access Synology NAS, determine the public, external host names and port numbers in Control Panel> External Access> Advanced. By default, the host name is a public IP address (or host name set in Control Panel> External Access> DDNS), and the port number is 5000 (or 5001 for HTTPS connections). 

However, if you have another host name that is not configured on the DDNS page, or has specified a different port number on the router when setting port forwarding rules, it is necessary to enter the hostname or router port number to ensure the file is shared until Internet services can be accessed successfully. 

A firewall is a system that controls traffic flow between networks-2 and provides a mechanism to protect hosts that are not behind a firewall - which is none other than our corporate or private network resources. We can also use a firewall to control the flow of traffic that accesses public resources placed on the DMZ in Router Port. 

Talking about a firewall can not be separated from our knowledge of the problem of the Router Port or Firewall Port which are in principle the same, both Opening ports or Blocking Ports so that we can control in accordance with the standard firewall security standards. 

Firewall (which faces the direct internet) or router on the perimeter is one of the security system elements that is implemented with a system policy or rule base policy on a firewall or extended access list on a Cisco Router, done by manipulating the Router Port or Firewall Port. 

We can control only allow certain traffic to flow in through the Router and Firewall both to be able to access the DMZ public resources (such as WEB services) or those that can enter our internal private corporate network. Suppose that public users can access the WEB server that we have placed in the DMZ, then our routers and firewalls are manipulated to allow port 80 to enter inbound through routers and firewalls to access the WEB server.

Deny all by default

By default for security, all incoming access through the Router Port or Firewall Port facing the internet must be configured DENY ALL unless only a few ports are explicitly permitted or Granted. most security breaces problems come from internal circles. 

Closing all Router and Firewall Ports by default is the first front-line defense in our network security, all the traffic that enters inbound to our network - is considered a threat. And only traffic through specific router ports and firewall ports is opened which may enter and access network resources - such as remote users who go for business reason via a VPN connection in Router Port.