I am not looking to argue over anything, but as
@danb35 noted
The default configuration of pretty much any residential router/firewall is going to prevent non-local IPs from entering your network,
I never claimed plugging a Unix, or any device directly into a direct connection from an ISP would not give you a DHCP address. In the context of this post, the user has a router / modem provided by their ISP as they noted which is assigning Internal non routable IP addresses and is using IPv4 (192.168.*.*) No mention of IPv6 in their post, so going based on the information they are providing is what I was basing my comments off.
Sure this stuff you already know (I don't doubt your knowledge in this area likely far exceeds mine) Some ISP's in the past will not assign you an IP with out using their device (Costa Rica ISP's thought they were smart locking things to a MAC address, not realizing, sadly, that can be cloned...). But some just drop a line and you can connect what ever you want to it!
Back in the day, some ISPs even used their device for controlling of your speeds, then they got smart and moved passed that when they realized people could modify their devices to get faster speeds (talking over 20+ years ago with Rogers in Canada and a couple other ISP's)
By default, ISP's devices (at least any I have dealt with from home to business in the 26 years I have been around the I.T world) those do not forward traffic to your internal LAN by default out of the box , but if UPnP is enabled (which many do ^%$$%^ for home) then yes, that could open a hole into one's network. Or, if they bridged a port (as some ISP devices let you, in order to run your own device behind it so you don't have to deal with double NAT) then no, there should be no way for anyone externally to be able to access your internal LAN, unless one specifically created rules to allow traffic in.
So, based on the OP's current configuration, no what if's, or possible scenario's or clueless people from youtube telling someone what to do, their environment, externally, no one should be able to get into their NAS or network, unless they have set up specific rules with in their ISPs router / modem to allow it.
And ya, IPv6, our savior! Lets give every device a IP that is accessible to the world! Genius!