Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 
4564 posts

Uber Geek

Trusted

  #2006645 2-May-2018 17:43
Send private message

michaelmurfy:

 

@chevrolux To be honest I think a Mikrotik is much more difficult to secure / set up VPN for a new user than using the PiVPN scripts. With PiVPN it is very hard to muck it up which is why I like it and it has very good doco.

 

 

Yep turns out I should have Googled that. PiVPN looks great for setting up OpenVPN - that installer looks fantastic.

 

If you want to be able to use Windows/Android/IOS native clients though, Mikrotik with L2TP/IPsec =)




36 posts

Geek


  #2011577 9-May-2018 11:28
Send private message

Sorted!  This NVR is a very recent release, and since DVR's and NVR's have a history of not being secure as per a number of posters here,  it looks like vendor has overcompensated and gone over the top with security. They were one of the vendors that got stung by the exploit posted by michaelmurphy... and it appears they have learnt from that. Upon further investigation I discovered some fairly buried menus in the NVR, and found that it has its own internal firewall with its own NAT which also needs to be set up. It also uses two factor authentication with encrypted password and UID, plus it also has its own VPN running back to the vendors own server which needs to be set up and running with a separate user ID and password (also encrypted) before it opens up the ports.... Once I had set all of that up - the ports were open and I was able to then access it using vendor provided smartphone app with the username/password and UID

 

 

 

Thank you everyone for your help, and the Rasberry Pi I bought I may put into service to run a VPN into my old DVR which is now running at my tenants property (no open ports on their router as yet though!)


 
 
 
 


2533 posts

Uber Geek

Lifetime subscriber

  #2012671 9-May-2018 13:19
Send private message

Looks like Swann cloud uses DDNS to look back at WAN interface with standard ports forwarded, no mention of any VPN outbound or inbound in manual. NAT section is to enable UPnP. You haven't convinced me.


29114 posts

Uber Geek

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  #2012717 9-May-2018 14:21
Send private message

Hasn't convinced me either.

 

I'm firmy of the opinion that routers shouldn't have port forward capabilities - because they're not needed by 99% of people. A lot of people set up port forwards because they think they need them when they actually don't.

 

Any port forward is much like leaving your front door open at home. Anybody can snoop inside your house, and for years may not steal anything until one day you find your house cleaned out.

 

 

 

 


1 | 2 
View this topic in a long page with up to 500 replies per page Create new topic




News »

Freeview On Demand app launches on Sony Android TVs
Posted 6-Aug-2020 13:35


UFB hits more than one million connections
Posted 6-Aug-2020 09:42


D-Link A/NZ extends COVR Wi-Fi EasyMesh System series with new three-pack
Posted 4-Aug-2020 15:01


New Zealand software Rfider tracks coffee from Colombia all the way to New Zealand businesses
Posted 3-Aug-2020 10:35


Logitech G launches Pro X Wireless gaming headset
Posted 3-Aug-2020 10:21


Sony Alpha 7S III provides supreme imaging performance
Posted 3-Aug-2020 10:11


Sony introduces first CFexpress Type A memory card
Posted 3-Aug-2020 10:05


Marsello acquires Goody consolidating online and in-store marketing position
Posted 30-Jul-2020 16:26


Fonterra first major customer for Microsoft's New Zealand datacentre
Posted 30-Jul-2020 08:07


Everything we learnt at the IBM Cloud Forum 2020
Posted 29-Jul-2020 14:45


Dropbox launches native HelloSign workflow and data residency in Australia
Posted 29-Jul-2020 12:48


Spark launches 5G in Palmerston North
Posted 29-Jul-2020 09:50


Lenovo brings speed and smarter features to new 5G mobile gaming phone
Posted 28-Jul-2020 22:00


Withings raises $60 million to enable bridge between patients and healthcare
Posted 28-Jul-2020 21:51


QNAP integrates Catalyst Cloud Object Storage into Hybrid Backup solution
Posted 28-Jul-2020 21:40



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.