We we have a remote office with a Synology NAS and we would like it to connect to the home office Synology NAS. We have setup VPN Server (Synology package) on the home office NAS and enabled OpenVPN. The next step would be to open the appropriate port on our home office firewall to enable the inbound OpenVPN connection, however I am concerned this opens us up to security risks/threats and want to see if there are any steps I can take to make sure this is secure as possible.
What steps can I take to strengthen the security of our Synology VPN setup? Should we change the default OpenVPN port, or will that not matter? Any other steps to harden our configuration?
We have already selected AES256 encryption.