Received used SG-1100 - can it hold malware?
-
eventually : ebay again and get a UPS, and connect the UPS to the SG-1100 and set things up accordingly.
I actually have a UPS for my Synology. But the USB cable is in use by the Synology. Not sure if I can get a second device to power down upon power failure.
-
@mikegraw376 said in Received used SG-1100 - can it hold malware?:
I actually have a UPS for my Synology. But the USB cable is in use by the Synology. Not sure if I can get a second device to power down upon power failure.
Good news.
A copy of a 'screen' of my Syno at work :
Guess :what : the Syno is connected to the UPS server, the device 192.168.1.1 - which is pfSense.
pfSense has a APC connected to one of it's USB ports.
The settings on the UPS package page shows :
which tells NUT (the name of the pfSense package I use) to expose it services on that network, my LAN.
A the user/password the Syno uses so it's NUT package can connect to pfSense.
This user/password pair is hard coded into the Syno UPS sofware.Works flawlessly.
At home, I do it the other way around, as my pfSense is running out of a VM - so no USB avaible. That is, not when you're using the build in "Pro" version of hyper-V.
So the UPS is connected by USB to the Syno diskstation.
And my pfSense NUT is connected to the IP of my Syno, which exposes the UPS facilities on my LAN.Also works fine.
-
@gertjan Let me get this straight. You have connected your APC UPS to the pfSense box via the USB cable so the pfSense box powers down upon power failure. Then the Synology "listens" to the pfSense box and also powers down?
-
@mikegraw376 Here's what he said: "And my pfSense NUT is connected to the IP of my Syno, which exposes the UPS facilities on my LAN."
-
Yeah I was going to say the same thing your syno should be able to act as ups server - and other devices should be able to get info from it - that on ups, how much power left - and then they can determine if should shut down.
Or yeah vise versa..
Never bothered to look into actually doing it - because my pfsense is on different ups than my nas.
-
@gertjan
I finally took some time to sort this out. As I understand it your screen shot shows a setup where the UPS USB connection is to your pfSense box and from there the event is propagated to the Synology via the pfSense NUT package. I explored the UPS tab on my NAS but it doesn't look exactly like yours:
Specifically, your screen shot show the line "Network UPS type:" that I don't see. I do see the option to "Enable network UPS Server" which opens an IP table.
So I'm a bit lost on how I should proceed.
Also, I'm not all that excited about storing my Syno password in the NUT package. Can this be a dummy user that has no rights? Alternatively, could you point out why storing this password in the NUT package is safe?
Thanks!
Mike -
Your prob not seeing the network option for ups, because your ups is connected locally... If you disconnect the ups usb from your nas, it should show you the option of a network ups.. where you can point it to the nuts package running on pfsense.
edit: I pulled the usb plug from ups going to nas.. Disabled ups support in nas, hit apply.. Then went back into ups on nas - and now it shows pick network ups.
-
@johnpoz Thanks John, that did it.
Still a bit worried about that password though. But that could be due to my ignorance about how it is stored and whether or not that can be considered safe. I have plans to open up access to the Synology from the internet, most likely by setting up a VPN using pfSense. So it needs to be ultra safe.Thanks,
Mike -
Well the password you send to ups running on pfsense would be just that, password to access the ups.. Make it whatever you want, and different than any other password you have, etc.
edit: Oh guess you can't change that..
This user/password pair is hard coded into the Syno UPS sofware.
Its just ups password, its not going to be your admin password to your nas, etc. Some looking and yeah username is monuser and password is secret.. Just like shown above.. Not sure why you would be worried about that??
An intelligent man is sometimes forced to be drunk to spend time with his fools
If you get confused: Listen to the Music Play
Please don't Chat/PM me for help, unless mod related
SG-4860 24.11 | Lab VMs 2.7.2, 24.11 -
@johnpoz i misunderstood. I though gertjan typed "secret" to make his screen shot and then changed it back to his real pw. And I also thought it would have to be a Synology user pw.
wrong on both accounts . No more worries on my part.
thanks a lot for explaining.
ill report back as soon as I made it work
-
@johnpoz said in Received used SG-1100 - can it hold malware?:
edit: Oh guess you can't change that..
@johnpoz said in Received used SG-1100 - can it hold malware?:
Some looking and yeah username is monuser and password is secret.. Just like shown above.. Not sure why you would be worried about that??
Right.
It's hard coded in the UPS script settings in the NAS.
You can edit them of course.
But the next update of your NAS (DSM) will reset them.Here it is : /usr/syno/etc/ups/upsd.users (SSH into your Diskstation)
edit :
Keep in mind that in this cas eit's the NAS connecting to the pfSense IP 192.168.1.1, the NAS is thus the client.
You can protect NTP access of your pfSense as you wish, using firewall rules.
