Using a Synology NAS to Escape the Cloud – TidBITS

For a few years now, I’ve been wanting to move more of my data out of the cloud and onto my own local storage. I needed a better solution for local storage for this effort because my old system consisted of multiple external hard drives attached to my iMac, which was messy and made it hard to access files from other devices.
I knew I needed a home server, specifically a networked-attached storage (NAS) device, but I hemmed and hawed for years. A NAS is a big investment, but what finally kicked me into action was the recent iCloud outage, when I realized that my Mac had offloaded many of my important documents to iCloud and I couldn’t access them for about 2 hours.
After some research, I purchased a Synology DS 920+ and four 6 TB WD Red hard drives. The entire setup cost about $1000, but after a month of usage, I think the investment has been well worth it, even though I’m still in the process of transferring decades of data to the DS 920+.
Running a home server isn’t for everyone, but Synology makes doing so about as accessible as possible, and you can be up and running within an hour. It’s still a big investment in both money and time, but it’s well worth it if you have a lot of data you access from multiple computers. Your files are right there in your home and you don’t have to transfer them over the Internet to carry over your work to another device. A NAS makes even more sense for a small office where multiple people might be running into the same problems with needing easy access to a centralized set of files.
Why did I choose Synology over the other options on the market, namely QNAP and TrueNAS? The primary answer is that the DS 920+ was in stock when I was shopping, while comparable QNAP and TrueNAS units were not.
I would have preferred a TrueNAS setup since TrueNAS is open source. However, the TrueNAS Mini X model I wanted was out of stock, and TrueNAS units are more expensive than Synology’s. Since TrueNAS is open source, I could have built my own server or repurposed some hardware, but with three kids and a farm, I don’t have time for yet another project. I wanted something that would work out of the box with minimal fiddling.
QNAP also has some advantages over Synology. Wirecutter says that some of their units perform better than Synology’s, and QNAP has a feature called QFiling that acts like the Mac app Hazel, which automatically reorganizes files based on your specifications. But again, the QNAP model I wanted wasn’t in stock. Plus, I hate how every QNAP app starts with a Q.
Other than supply chain hiccups, I chose Synology for the following reasons:
Ultimately, what pushed me to Synology was that it’s the easy option. Easy to buy, easy to set up, easy to maintain. Years of dawdling and ruminating on options weren’t getting me any closer to a solution.
I ended up with the DiskStation DS 920+ after running a few different scenarios through the Synology NAS selector. Since I also want to use my NAS as a media server, I checked Plex’s compatibility spreadsheet and saw that the DS 920+ has some of the best support for hardware transcoding among the Synology options in its price range. Plus, the DS 920+ has a quad-core Intel Celeron CPU powerful enough to support running virtual machines, which lets you do things like run Linux or Windows.
Setting up the hardware is as user-friendly as possible. The DS 920+ has four slots on the front of the unit, each containing a hard drive tray. You pop out the tray, load in a hard drive (it fits in only one way), and then insert it like an old Nintendo cartridge.
Plug in the hard drives, connect the included Ethernet cable to your router, plug in power, and you’re off to the races.
Synology DS920+
You can get a little bit fancier if you’d like. The DS 920+ comes with two keys that let you lock the hard drives in place, which I did to protect them from my kids. There is also a slot inside to upgrade the RAM. The DS920+ comes with 4 GB and you can upgrade it to 8 GB with Synology’s official module. I’ve heard of people upgrading it with 20 GB of RAM using Samsung memory modules (apparently the supplier Synology uses), but that’s not officially supported.RAM slot in the Synology DS 920+
Even after running multiple services on the DS 920+, I only use up to about 50% of the RAM at any given time. But if I run a virtual machine, it’s more like 90%. I think most people will be fine with the built-in 4 GB, but if you want to run virtual machines, consider an upgrade.
You can also add two M.2 SSDs for caching, one for read and one for write. These SSDs don’t store data; instead, the DS 920+ offloads commonly used files from its hard drives to the SSDs to speed up performance, much like Apple’s Fusion Drives.
Synology makes setting up a server as easy as I could imagine. That starts with actually figuring out the server address on your network. When you plug a device into your router, the router assigns it an IP address via DHCP, but you don’t know what it is, and since the Synology NAS doesn’t have a screen, you can’t just glance and see. There are various ways to figure out a headless device’s IP address, but Synology provides a dedicated Web app at that scans your network, finds your new device, and lets you connect to start setup.Finding a Synology NAS on your network
From there, it’s mostly a matter of following Synology’s setup prompts. The recommended settings are usually the best. Where things might get confusing is when you’re prompted to set up your storage pool, since it may not be immediately obvious what the right choices are.
I have a total of 24 TB in my NAS, but I don’t need that much storage. 12 TB is plenty, and I want that data mirrored so it’s redundant. That way, if one drive fails, my data is safe and repair is a simple matter of replacing the bad disk. The way to pool drives together like this is called RAID, short for “redundant array of inexpensive disks.” There are many RAID types that pool disks together in various ways depending on your configuration and whether you want to optimize for redundancy or performance. Synology offers an overview of the many RAID types it supports.
Since I wanted maximum reliability and minimal headache, I chose Synology’s SHR-2 RAID type, since SHR is what Synology recommends you use. SHR-2 takes those four drives, combines two of them for storage, and then mirrors the data on the combined drives to the other two drives.Setting up a RAID in Synology
For the file system, you can choose between Btrfs and ext4. I chose Btrfs because—again—it’s what Synology recommends, and it enables advanced features like snapshots and better data integrity protection.
Once that’s done, the Synology setup assistant prompts you to take a tour of other features like system monitoring and two-factor authentication, which I strongly encourage you to enable. You can enable 2FA on both your account and on your account on the device itself, and you should enable it on both.
The only setup hiccup I encountered came when I tried to configure two-factor authentication. You must enter an email account so the DiskStation can send you an email for account recovery, but it wouldn’t take my Gmail account. The problem turned out to be a bug in the version of the Synology Disk Station Manager software that shipped with the DS 920+.Once I updated it, I was able to connect my Gmail account and enable two-factor authentication.
Aside from needing that update, this was the easiest server setup process I’ve ever experienced.
Synology offers several way to access your files. Most Apple users will take advantage of SMB and Synology Drive.
After initial setup, you need to create what are called shares, which can be accessed through SMB or other standard network protocols. A share is like a virtual drive that you can mount on your Mac, and each share can have different permissions. For instance, you could set it so only you and your spouse can see your tax documents, but your kids can access stored movies.
SMB started out as a Windows file-sharing protocol, but it has become a de facto standard, even on the Mac. Some years ago, Apple deprecated its own AFP in favor of SMB, and you can connect to SMB shares in the Finder by choosing Go > Connect to Server.
The major downside of SMB is that you cannot access those files when you’re not connected to the server. I’m also not happy with the Finder’s SMB integration, which is prone to random disconnects, spontaneously slowdowns, and other issues. Working with SMB is much faster and easier on my Linux machines.
I also found that SMB tends to choke on extremely large folders. I moved my old Screenshots folder—which contains 6230 screenshots!—to the DS 920+, and sometimes the Finder chokes and eventually disconnects from the server when I open that folder. The lesson here is to divide large numbers of files into sub folders if you’re going to access them over your network.
Synology Drive is Synology’s proprietary alternative to cloud storage services like Dropbox. When you set it up, it creates a home folder for each user, with a Drive folder inside (for some reason, user home folders aren’t created automatically during initial setup). You can then use the Synology Drive app to sync the files in that folder to your Mac—there’s also an iOS version that lets you access your files from your iPhone or iPad. Unfortunately, files stored in Synology Drive must also be copied to your Mac, which means they take up valuable local storage space.
I access most of my remote files via SMB but use Synology Drive under the following conditions:
For instance, I keep my KeePass database file in Synology Drive so it’s always accessible and so I could revert to an older version if necessary (see “Moving from 1Password to KeePass,” 11 April 2022). Also, since it exists on my local filesystem in addition to the DS 920+, Time Machine also backs it up and maintains multiple versions as the file changes so I have multiple layers of redundancy.
As you’ve realized by now, a Synology NAS is a full-fledged computer. In addition to their core file storage capabilities, Synology’s NAS units offer a suite of apps that you can download from the built-in Package Center and interact with through DSM—short for Disk Station Manager. DSM is essentially a Web-based Linux desktop that gives you a graphical interface to access files and settings. When I first heard about DSM, I assumed it would be painfully slow, but I’ve been impressed by how snappy it is.
Synology DSM interface
I don’t use many of Synology’s apps, but here’s a partial list to give you an idea of the capabilities they provide:
Most people probably aren’t buying a Synology NAS to use its apps, but they offer some welcome capabilities once you have an always-on, Internet-connected server.
One of the big draws of a Synology NAS is the company’s new Synology Photos app. Previously, Synology split these functions between two separate apps, but with the recent DSM 7.0 overhaul, it combined them into a single app that functions similarly to Apple’s Photos and Google Photos.
It’s the best locally hosted alternative to these cloud services I’ve tried. It can recognize and play Live Photos, which is an unusual feature in third-party photo managers. Most of my photos are of my kids, and they rarely sit still, so the photo itself may be blurry, but the Live Photo has a memory I want to keep.A Live Photo in Synology Photos
You can browse either by a timeline, much like Apple’s Photos, or you can browse by folders. You can also create slideshows, and it automatically creates People and Places albums, though the facial recognition isn’t great. In the albums it created of me, many of the photos don’t have me in them, or even anyone who looks like me! You can also share albums with other people or publicly, though that’s a whole other can of worms I’ll address next.Synology Photos
The major limitation of Synology Photos is that it doesn’t offer photo editing beyond a basic rotate function. That’s mostly what I need since I frequently end up with photos in the wrong orientation, but if you want more editing capabilities, look to something like Lightroom.
The hardest thing about using Synology Photos has been transferring my older photos out of Photos. I’ve been discussing the issue on TidBITS Talk, and I think I have a solution. However, the Synology Photos app for the iPhone and iPad does a great job of syncing newly taken photos over to the DS 920+.
Another key app for those interested in disengaging from public cloud services is Synology’s Cloud Sync. It lets you log into cloud storage services like Dropbox, Google Drive, or Microsoft OneDrive and download your content from those cloud services to a folder on your NAS. It can be just  a one-way download or a two-way sync, and you can set it up to be continuous so new files are swapped between your NAS and the cloud service as you create and edit them.
Cloud Sync has a neat feature that converts Google Workspace files—like those from Google Docs and Google Sheets—into standard Microsoft Office formats. However, if you do that, I strongly suggest that you make it a download-only sync. At one point I thought something had gone wrong with my sync configuration, so I set it up again, only to discover that it had added DOCX and XLS versions of all my documents to Google Drive folders, even shared ones. Thankfully, I was able to clean up the mess by deleting those files on the DS 920+ with the two-way sync enabled.
Unfortunately, Cloud Sync doesn’t work with iCloud. To get those files onto your NAS, you must copy them over manually in the Finder. That doesn’t seem like it should be problematic, but I ran into a problem where iCloud wouldn’t download remote-only files to transfer them over. For some reason, it wouldn’t work on my iMac, but I was able to copy everything over using my MacBook Pro. I recommend starting such a transfer from a Mac that has Optimize Mac Storage disabled (such that all files should be mirrored locally) in System Preferences > Apple ID > iCloud.
You probably want to be able to access your NAS data while away from your local network, and Synology offers many ways to do this. You coud forward ports on your router to desired services on the NAS. The main port for DSM is 5000. Synology provides a tool that automatically configures port forwarding for common routers, but it unfortunately doesn’t work with mine.
If you have a typical consumer Internet connection, your public IP address can change every so often. Fortunately, Synology offers a built-in dynamic DNS service, so you can choose a Synology domain name for your NAS and it will update the IP address automatically as needed.
However, I do not want to expose my DS 920+’s admin panel to the Internet. Thankfully, Synology has some alternative remote access solutions. The easiest one is QuickConnect, which routes your connection through Synology’s servers to access services running on your NAS with no port forwarding required. It works well, but I strongly encourage you to set up two-factor authentication before using it. I tend to leave it off for security reasons, but may turn it back on in the future to make file and photo sharing easier.
My main method of accessing my Synology remotely is through a VPN. Synology’s Package Center includes a VPN Server app that makes this incredibly easy. A VPN lets you connect to your home network while away and access other computers on that network just as if you were home. I like how using a VPN gives me full access to services running on my DS 920+ but doesn’t require that I open many ports to the Internet.
Unfortunately, I experienced a lot of headaches setting up VPN connections, and it was difficult to test configurations because I don’t have cellular service at home to simulate a remote connection. Connecting to the VPN over my Wi-Fi network worked fine, but I couldn’t make a connection when I was actually away from home.
I eventually discovered is that VPN Server lets you set up VPNs using different protocols. For some reason, I could connect to an OpenVPN server from iOS but not from a Mac. Conversely, my MacBook Pro worked with an L2TP/IPSec server, but my iPhone and iPad couldn’t make a connection. I have no idea why this is, but I was eventually able to work around it by setting up two separate VPN connections to my DS 920+, one for Macs and another for iOS devices. I’m not sure if this oddity is due to Synology’s software, Apple’s software, or my own bumbling.
While we’re talking about security, what if your Synology NAS were stolen? Synology enables you to create encrypted shares, much like turning on FileVault on your Mac’s internal drive. Unlike FileVault running on an M1-based Mac or Intel-based Mac with a T2 chip, there is a performance hit, so I have encrypt only one share, where I store my most sensitive documents.
Unfortunately, there a few annoying quirks. you can’t encrypt a home folder because you have to encrypt a whole share, and you can’t encrypt the home share. I would prefer to encrypt all of my photos because some are sensitive (like pictures of my wife nursing), but Synology Photos reads photos only from the Photos directory of the home folder. I might try creating a symlink to an encrypted share in my Photos directory, but that’s a project for another time.
You can use a NAS for backup—it can even be a Time Machine destination (see “Network Time Machine Backups: Moving on from the Time Capsule,” 14 January 2022)—but you must also back up the NAS itself, with both local and remote backups.
Local backup is simple. I found a 14 TB Western Digital drive on sale for around $200, and I use Synology’s Hyper Backup app to create a nightly backup. It also lets you encrypt your backup for extra security.
As for remote backup, backing up a lot of data to the cloud isn’t cheap. I eventually settled on IDrive, which had an offer for 5 TB of backup for $8 for the first year. That won’t back up everything I store on the DS 920+—I skip large, easy-to-replace files like movies—but it gives me cheap remote backup for my most important data. Plus, IDrive has an app in Synology’s Package Center that performs the backups automatically.
As an aside, I’ve connected both the DS 920+ and its backup drive to a UPS so they’ll work for a while after a power outage. Unfortunately, since I originally bought this UPS just for my router, I didn’t get one with a USB connection that would enable it to shut down the Synology NAS automatically during a power outage.
If you want to use to back up your Mac to a NAS, Synology provides instructions for creating a Time Machine share. I prefer to use a USB drive for this, so I have not tested it.
Many people buy a NAS to store and view DRM-free movies and TV shows they’ve downloaded or ripped from discs. You have two options for playback:
I’ve only dabbled with media serving because we don’t watch much TV. For most things, Plex is fine. I pay for Plex Pass, which—among other things—enables transcoding, which means Plex uses the DS 920+’s CPU to help with video processing. I have one 4K movie that it struggles with, and I should probably re-encode it into a better format for streaming. However, if I play the same movie with IINA on my Mac over an SMB connection, it plays fine.
I also installed a second media library app called Jellyfin, which is an open source alternative to Plex. I did this using the Docker app from Synology’s Package Center, which takes us to some of the geekier things DS 920+ can do.
In some ways, DSM is similar to macOS in that it applies a user-friendly veneer over top of complex features for power users, such as:
I’ve dabbled with virtual machines on the DS 920+, setting up a virtual Linux server to try Nextcloud. Once you set up a virtual machine, you can click the Connect button in Virtual Machine Manager, which launches a virtual monitor in another Web browser tab. From there, you can interact with your virtual machine in the browser, whether it’s a graphical interface or via the command line.
I haven’t tested Windows on the DS 920+, largely because I hate Windows, but if you switched to an M1-based Mac and miss Boot Camp or a virtualization app like VMware Fusion (Parallels Desktop has instructions for installing Windows 11 for ARM), it might be a compelling option for the occasional Windows app. As a plus, you can access that virtual machine from any computer on your network. I wouldn’t run anything heavy on it given the limitation of the hardware, but I’m tempted to try running some games on there to see how far I can push the DS 920+.
If you want to run virtual machines, I recommend that you upgrade the RAM, since you must dedicate a certain amount of RAM to the virtual machine.
Who should consider investing in a NAS like the Synology DS920+?
For me, the DS 920+ has been an invaluable addition to my home, and I’m kicking myself for not getting one sooner. I can access all of my documents, photos, music, and videos without having to worry about cloud storage quotas or network speed. And I also have a central platform to experiment with hosting my own services.
The key to it all is that Synology’s software saves time. You don’t have to worry about which Linux distro to install, deal with dependencies, or wonder if your hardware is supported. Plug in the drives, fire it up, and Synology holds your hand through the rest of the process.
Every week you’ll get tech tips, in-depth reviews, and insightful news analysis for discerning Apple users. For over 31 years, we’ve published professional, member-supported tech journalism that makes you smarter.
Registration confirmation will be emailed to you.
My needs being much simpler, I have two, two-bay NAS RAID devices, installed over the past year to replace a pair of aging WD NAS drives. Cost being a huge factor, I installed a QNAP TS-230 with a pair of 2TB SSDs, which I use for everyday storage I need constant access to. For long-term photo storage (locally, I also have a SmugMug site), I chose a Synology DS220j with two WD Red 8TB drives. The units these replaced were 1TB and 2TB, respectively, so I still have plenty of space for my needs. Because I shop aggressively for sales prices and deals, and bought the bays and drives separately, I kept the cost affordable and spread it over time (with promotional interest-free payments to boot).
Josh is right about the simplicity of setting up Synology – it’s a breeze. QNAP was a little more complex, but the one question I had was quickly answered in their online help resources. (Note here, I originally tried a Terramaster, and hated it – very persnickety. That one became the QNAP.)
PS: If you didn’t see it already, QNAP has an advisory out to disable AFP due to a major security issue. I only use SMB and have AFP turned off on both devices.
Nice article Josh – thanks!
I, too, have a Synology NAS (DS418play) and have, mostly, been pretty happy with it. I’m also grateful for you sharing your remote access experiences and may dig in to setting such up for password management synching, as you mentioned in your previous article on such
Echoing your comments about Apple sometimes dropping the server connection, I experienced such with earlier versions of DSM when Time Machine failed to back up there, and then, to boot, wouldn’t recognize it’s previous sparse bundle and, thus, had to start over. That seems to have cleared up and I haven’t had that issue since DSM 7, methinks. (I also have another Time Machine backup on an external HDD USB connected to my iMac)
I did have one particularly pernicious situation wherein thousands of files were subjected to “name mangling’ immediately after a DSM update. (e.g. file names were changed to six(?) alpha/numeric characters + extension when the original names included certain ‘offensive’ characters
Synology Tech Support advised the following:
“I would recommend avoiding special characters in file/folder names from here on. This includes / ? < > : * | ” or any character you can type with the Option key. The widely accepted best practice for naming files/folders is to only use a-Z, A-Z, 0-9, dots, dashes, and underscores. You would also want to make sure that none of the folders have trailing space at the end of their names.”
Gratefully, I had a backup prior to the update I saved and used to help restore / fix file names so ‘mangled’ – what a pain that was…
As an aside, among my various ‘finders’ I used for locating errant file names/characters, I want to give a plug for the Find Any File app which was able to find some things that other apps (e.g., Spotlight, Finder, EasyFind) didn’t – like the ‘trailing space at the end of their names’
Thanks again for you article

TidBITS is copyright © 2022 TidBITS Publishing Inc. Reuse governed by Creative Commons License.


Share this post:

Leave a Reply