|
||||||||
Agreed. Any type of vpn would conceal the dvr from the rest of the outside world. If vpn is out of the question then a "better than nothing" solution would be to hide the server on some other port where it is less likely to be found by probing "neighbours". db On 13/03/2008, Kristian Shaw <monowall at wealdclose dot co dot uk> wrote: > > Hello, > > Perhaps a PPTP VPN might be usable here. It's easy to set-up and a PPTP > client is already built into Windows. > > This would give you better security and remove the need to use NAT rules. > > Kris. > > > ----- Original Message ----- > From: "Chris Mason (Lists)" <lists at masonc dot com> > To: <m0n0wall at lists dot m0n0 dot ch> > Sent: Thursday, March 13, 2008 11:58 AM > Subject: [m0n0wall] Security for external access > > > >I have a M0n0wall installation for a large residence. There is a security > >camera DVR system behind the firewall, on a static IP on the local > network, > >which the owner wants access to while he is abroad. I have put a DNAT in > to > >allow him access by forwarding port 80 to that IP. > > The problem is, the device will allow anyone to view the cameras, there > is > > no web based viewer security. Is there a way to force external users to > > authenticate before being able to view the device? > > > > Chris > > > > -- > > This message has been scanned for viruses and > > dangerous content by MailScanner, and is > > believed to be clean. > > > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch > > For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch > > > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch > For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch > > |