This may be a dumb question, but I have a DS920+ running DSM7 and I’d like to setup a VPN for use with Download Station, which is only used to get media for Plex.
I’ve seen a few packages, but they use OpenVPN and you need to have an existing (paid) service with someone like NordVPN or otherwise. Can I setup a VPN server from the NAS itself to utilize, or does a VPN in general always require a 3rd party service? Again, excuse is dumb, just looking to educate myself and hopefully build something for my limited needs that doesn’t require SaaS costs.
Also, if there’s any good entry level reading on this that would be helpful, please send. I’m just getting started with this equipment, so have a lot to learn. I have a bit of experience with basic stuff like front end HTML, port forwarding, and some raspbian screwing around for emulation, but a lot of networking, scripts, and proper coding is still fairly greek. Thanks
Easiest way to solve this is not to use download station. Set up qbt and a container with the vpn to use as a proxy. Here’s my docker compose that demonstrates. Sample Docker-compose file which shows how to set up Sonarr, Radarr, Prowlarr, Lidarr, QBittorrent and a VPN container so that all all traffic from the containers is routed through the VPN. Also includes Plex and get_iplayer containers, which are not routed through the VPN. · GitHub
As the other poster commented though, you can’t anonymise your stuff without paying for a 3rd party vpn provider. And trying to set one up yourself is not really feasible or practical.
What do you want to use a VPN for?
You can VPN out, which means that from your LAN, you or the NAS uses a VPN server on the Internet, mostly for privacy or region-handling reasons (ie looking as if you were in another region).
This is more commonly done using a 3rd party service like NordVPN.
You can also VPN in, which means that you can access your LAN (and NAS) from your phone or laptop while you’re outside your LAN (traveling…).
This is more commonly done by running a VPN server (like OpenVPN) somewhere on your LAN (router, NAS…) and doesn’t involve 3rd party services.
I’m looking for privacy and protection of my IP/network when using torrents through Download Station.
I can access my NAS while travelling (currently) to access my files with a hefty password in place, so don’t think I need it there. I haven’t utilized 2FA just in case I have SMS issues dependent on where I go.
For privacy, you need to use a 3rd party service or run your own on the cloud.
Running my own cloud to build my own VPN for privacy would involve setting up a paid account with AWS or other?
Yes, but it wouldn’t be particularly anonymous either, as your cloud instance would still be traceable.
I am not super familiar the whole domain, but have you looked into using Tor or similar? That is (or at least was) the common way to achieve anonymity.
Note: from what I can tell, a lot of people in your situation use a custom stack with radarr/sonarr. You’ll find a lot of hits on this sub including this random one:
https://www.reddit.com/r/synology/comments/e5ugy5/sonarrradarrplextorrent_guides/?utm_source=share&utm_medium=android_app&utm_name=androidcss&utm_term=1&utm_content=share_button
Thanks for the insight, I’ll read on!