Synology Inc. Online Community Forum

[dthomas86]

Hey there I'm new to these forums.
I have a BT home Hub connected to my Apple Time Capsule with the Time Capsule in Bridged Mode.
I have also disabled wifi on my BT Home Hub. I then have my NAS drive connected to one of the Ethernet ports of my Time Capsule.
I am just wondering how can I remotely access my NAS over wan I have a DNS host from no-ip. Can I use DMZ on my BT Home hub with my NAS Mac Address?

Cheers

[myCloud]

Can you take the Time Capsule out of bridge mode and put it in the DMZ of the BT router? In other words, the BT router will pass everything to the Time Capsule, which will do the firewalling and routing. Then you can download AirPort Utility 5.6 and use that to port forward everything you need for remote access to the DiskStation.

[dthomas86]

Should I assign a static ip to my Time Capsule rather than use DHCP? If I take it out of bridgemode what setting shoul I apply?

[myCloud]

One of the things I forgot to mention was to set the BT router's DHCP to something other than 192.168.1.x. I use 10.0.0.x on my outside router. I'm assuming the settings of the Time Capsule are the same as my AirPort Extreme below.

Highlight the Time Capsule in AirPort Utility 5.6 and you'll see it assigned itself 192.168.1.1. Select Manual Setup. Click on Internet->Internet Connection, ensure it's set for Ethernet, Automatic, and Share a public IP address. On Internet->TCP/IP, configure IPv4 Using DHCP and you'll see the DHCP info it gets from the BT router, including the external IP address as it's outer one.

Click on DHCP and you see the range of addresses it will assign. You can either assign the DiskStation an IP address outside this range, or you can assign it a Reserved DHCP IP address within this range. End result is the same. On the NAT tab, leave Enable default host unchecked and check Enable NAT Port Mapping Protocol. Click the Configure Port Mappings button, which will take you to Advanced->Port Mapping.

If you aren't going to use a VPN:

Click + and DON'T choose a service. Enter 5000 in the Public and Private TCP Port fields and set the Private IP Address to the one you chose for the DiskStation. Click Continue, put DSM HTTP in Description and click Done.

Repeat for the following Ports/Description: Unless otherwise specified port is the same public and private (and you only need do now those ports you'll use). In Control Panel -> DSM Settings -> HTTPS Service, enable HTTPS and Redirect to HTTPS. Use HTTPS instead of HTTP where possible.

Port 5001 - DSM HTTPS
Port 5005 - WebDAV HTTP
Port 5006 - WebDAV HTTPS
Port 5007 - Alt Web Svcs
Port 7000 - File HTTP
Port 7001 - File HTTPS

If you'll run a public web server, Photo Station, Web Station, or Mail Station. Make sure to add a deny all to all robots.txt * to /web
Port 80 - Web HTTP
Port 443 - Web HTTPS

If you'll run a mail server:
Port 25 - Mail SMTP
Port 587 Public to Port 25 Private - Mail SMTPS **
Port 109 - Mail POP
Port 143 - Mail IMAP
Port 993 - Mail IMAPS
Port 995 - Mail POPS

If you'll want remote access to the Linux command line or SFTP server, map a high numbered port to port 22 to keep brute force attacks on port 22 from eating up your bandwidth. See Method 3 here.

Port 22022 Public to Port 22 Private - DS SSH

More ports here.

* Contents of deny all to all robots.txt
User-agent: *
Disallow: /

** For submission, add the following lines to the bottom of /usr/syno/mailstation/etc/main.cf
smtpd_enforce_tls = no
smtpd_tls_loglevel = 1
smtpd_use_tls = yes

You'll probably find the Time Capsule like the AirPort Extreme in that it does loopback so you can use your external DDNS or domain name from inside your LAN.

Hope this helps.

[dthomas86]

Hi thanks for the guide it is extremely useful.
Under the Internet Tab for the Time Capsule should I be using DHCP or a Static IP or PPPOE?
Also under the network tab there is Router Mode should I choose use DHCP or DHCP with NAT.

Thank you so much your guide is extremely useful as I've said previously.

[myCloud]

Hi thanks for the guide it is extremely useful.
Under the Internet Tab for the Time Capsule should I be using DHCP or a Static IP or PPPOE?

DHCP -- it's how the BT router will assign the external IP to the Time Capsule.

Also under the network tab there is Router Mode should I choose use DHCP or DHCP with NAT.

Hmm... I don't recall that (are you using AirPort Utility 5.6?). You want DHCP with NAT.

Thank you so much your guide is extremely useful as I've said previously.

You're welcome.

[dthomas86]

Thanks again.

I am wondering do you have a Home Hub? How do I know what DHCP range to use to input into my BT Home Hub?

Kind Regards.

[myCloud]

I have a slow AT&T UVERSE wireless router (10/100 wired, 802.11g wireless), but it has to stay in place for UVERSE to work. To work with the AirPort Extreme, in the UVERSE router:
I turned off the wireless access point
changed it's DHCP range from 192.168.0.something to something to something like 10.0.0.2 to 10.0.0.200
deleted any port forwarding I'd previously set up
and put the AirPort Extreme in the UVERSE router's DMZ mode.

Hope this helps/translates to the BT Home Hub.

[dthomas86]

Do I need to alter the DHCP range? I am struggling in changing it I have sent you a PM with my current settings.

Thanks