[ previous ] [ next ] [ threads ]
 
 From:  "David Burgess" <apt dot get at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Security for external access
 Date:  Thu, 13 Mar 2008 09:11:04 -0600
Agreed. Any type of vpn would conceal the dvr from the rest of the outside
world.

If vpn is out of the question then a "better than nothing" solution would be
to hide the server on some other port where it is less likely to be found by
probing "neighbours".

db

On 13/03/2008, Kristian Shaw <monowall at wealdclose dot co dot uk> wrote:
>
> Hello,
>
> Perhaps a PPTP VPN might be usable here. It's easy to set-up and a PPTP
> client is already built into Windows.
>
> This would give you better security and remove the need to use NAT rules.
>
> Kris.
>
>
> ----- Original Message -----
> From: "Chris Mason (Lists)" <lists at masonc dot com>
> To: <m0n0wall at lists dot m0n0 dot ch>
> Sent: Thursday, March 13, 2008 11:58 AM
> Subject: [m0n0wall] Security for external access
>
>
> >I have a M0n0wall installation for a large residence. There is a security
> >camera DVR system behind the firewall, on a static IP on the local
> network,
> >which the owner wants access to while he is abroad. I have put a DNAT in
> to
> >allow him access by forwarding port 80 to that IP.
> > The problem is, the device will allow anyone to view the cameras, there
> is
> > no web based viewer security. Is there a way to force external users to
> > authenticate before being able to view the device?
> >
> > Chris
> >
> > --
> > This message has been scanned for viruses and
> > dangerous content by MailScanner, and is
> > believed to be clean.
> >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> > For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
> >
> >
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>