Synology firewall is alerting "Attempted User Privilege Gain"

Hi @mardaff,

thank you for the details here! The information reported by your Synology module is correct (in the sense that the Connectors use NAT traversal and the STUN protocol to make it work) but it is a false positive (this is the expected behavior of Connectors).

There is no port open needed on your router! Definitely do not do that in response to the flag.

Now for the technical reason your Connectors are contacting Twingate’s STUN servers is to make sure P2P communication can be established between your Connectors and your Twingate Clients. STUN makes NAT traversal possible and NAT traversal is actually what makes P2P communication possible even from behind Firewalls.

take a look at the official documentation on this for more details on how it works.

1 Like