- BitTorrent (both .torrent files and magnet links)
- Usenet news NZB files
- http, https, ftp, sftp and ftps downloads
- YouTube videos
- Some supported filehosting websites
Now, to be clear, your Synology does have a SSL certificate already, but it's a "self-signed" certificate, meaning your server generated the certificate and it also validated it as being a good, trusted certificate.
A post in the Synology Community Site describes how to go the process of installing a free StartSSL cert, however it involved significant ssh command line work, operating with openssl directly. Turns out Steps 1-6 in this guide are no longer necessary. You could probably still do the requisite work through ssh/openssl, however, according to the Synology guide here, you no longer have to ssh into the box to generate a certificate signing request or process the certificate returned from an SSL cert provider.
Based on that, here's what you need to do.
- Go to the Synology guide, and perform steps 1-7. Proceed to the next step.
- Use the Synology Community Site post by GNOE Inc. and perform steps 7-8.8 to generate the StartSSL-based (free) cert.
- Go back to the Synology guide, and perform the last steps on the page, 1-3.
Make sure that the SSL certificate domain matches the domain you're using to access your NAS through the Internet. If the SSL cert and the domain don't match, you'll still get SSL cert errors and you won't get the benefits of this whole process.