LocalDiabetic install guide

Set up OpenDiabetic on a Synology NAS.

A step-by-step guide for turning the Synology NAS you already have online into a local-first diabetic records vault for emergency sheets, records, supplies, care packs, caregiver support, and backups.

Local data first
No data harvesting
Caregiver permissions
Encrypted backups
Medical safety boundary: OpenDiabetic does not provide medical advice, diagnosis, treatment, medication dosing, or emergency triage. This guide is for organizing records, reminders, support workflows, and local vault infrastructure. Always consult licensed medical professionals for medical decisions and seek emergency care when needed.

Install Goal

Configure a Synology NAS as OpenDiabeticVault: a local-first vault where diabetic records stay under user control, caregiver access is explicit, backups are tested, and iPhone/Apple Watch remain the real-time reminder layer.

NAS

Stores records, emergency sheet, supplies inventory, care plans, care packs, Apple Health exports, and caregiver updates.

Phone / Watch

Handles notifications, medication reminders, quick capture, scanning, and optional Health exports.

Backup

Hyper Backup creates encrypted, versioned recovery points to external storage, second NAS, or user-controlled cloud.

Step 1: Secure DSM First

  1. Sign in to DSM as owner/admin.
  2. Update DSM and installed packages.
  3. Create a named owner account.
  4. Disable guest access.
  5. Enable 2FA / Secure SignIn.
  6. Install and run Security Advisor.
  7. Disable unused services.
  8. Avoid exposing DSM directly to the public internet.
  9. Prefer VPN or private remote access over open DSM ports.

Step 2: Install Core Packages

Required

  • Synology Drive Server
  • Hyper Backup
  • Security Advisor
  • Secure SignIn / 2FA

Recommended

  • Snapshot Replication if supported
  • Synology Calendar
  • Synology Contacts
  • UPS support

Builder Tier

  • Container Manager
  • Local dashboard
  • Vault indexer
  • Receipt writer

Step 3: Create The Vault

Create one shared folder named OpenDiabeticVault.

OpenDiabeticVault/
  00_README_START_HERE/
  01_Emergency_Sheet/
  02_Care_Plan/
  03_Medications/
  04_Supplies_Inventory/
  05_Appointments/
  06_Labs_and_Reports/
  07_Insurance_and_Billing/
  08_Foot_Care_and_Wound_Notes/
  09_Food_and_Recipes/
  10_Device_Exports/
  11_Apple_Health_Exports/
  12_Caregiver_Updates/
  13_Care_Packs/
  14_Local_Resources/
  15_Research_Opt_In_Exports/
  90_Inbox_To_Process/
  99_Archive/

Step 4: Add Starter Files

01_Emergency_Sheet/emergency_sheet.md
02_Care_Plan/care_plan_overview.md
03_Medications/medication_list.md
04_Supplies_Inventory/supplies_inventory.csv
05_Appointments/appointment_prep.md
08_Foot_Care_and_Wound_Notes/foot_care_routine.md
09_Food_and_Recipes/steady_meals.md
12_Caregiver_Updates/caregiver_update_template.md
13_Care_Packs/care_pack_checklist.md
14_Local_Resources/local_resources.md
00_README_START_HERE/recovery.md

Each file should include owner, last reviewed date, source, review-needed flag, and a medical safety note.

Step 5: Set Permissions

vault_owner

Full control.

caregiver_admin

Read/write selected support folders.

caregiver_readonly

Read selected folders only.

emergency_readonly

Read 01_Emergency_Sheet only.

builder_service

Limited future service account.

research_export

Disabled by default. Opt-in only.

Step 6: Configure Synology Drive

  1. Enable Synology Drive for the vault folder.
  2. Install Synology Drive mobile app on the owner phone.
  3. Install desktop client if needed.
  4. Test upload into 90_Inbox_To_Process.
  5. Enable versioning where appropriate.
  6. Disable public sharing by default.

Step 7: Configure Backup

  1. Open Hyper Backup.
  2. Choose external USB, second NAS, rsync server, or user-controlled encrypted cloud.
  3. Enable encryption.
  4. Set schedule and rotation.
  5. Enable integrity checks.
  6. Run first backup.
  7. Restore-test emergency sheet, one PDF, and supplies inventory.
  8. Document recovery in 00_README_START_HERE/recovery.md.

Step 8: Connect iPhone / Apple Watch

Use Apple Health and Apple Watch for reminders and logging where useful. The NAS remains the records and planning vault.

First-Day Checklist

Final Recommendation

For the Synology you already have online, start with the vault, permissions, Drive upload, encrypted backup, and restore drill. Add dashboard or local agents only after the human workflow works during a real week.

Read the Markdown source version