| General > General Technical Chat |
| I bought a cheap Chinese video door bell |
| << < (3/4) > >> |
| PlainName:
--- Quote from: madires --- --- Quote from: PlainName on September 17, 2023, 09:21:29 am ---Wrong. They only need that when you have no idea what you're doing and can't open a port in your router. --- End quote --- With all the security issues of security cameras it's a bad idea to make them directly accessible from the outside. The standard procedure is to put them into a separatie VLAN and use a VPN for remote access --- End quote --- . Yes, you do need to be aware of issues. However I was taking to task the statement that you must have a server between the two. My response may have been a bit strong but, IMO, that kind of 'info' is how bad myths start. It would have been much better to note that a server isn't actually needed but is probably an appropriate solution for most users. |
| David Hess:
--- Quote from: soldar on September 17, 2023, 07:51:56 am ---If I want to see the camera from another location then obviously it needs to do so using the internet. Not only to communicate directly but also to establish the connection initially. Two devices wishing to establish a connection need a central server where they both log in and then the server tells each other their IP addresses. --- End quote --- A central server is only required if the endpoints do not accept incoming connections, like with network address translation. This is becoming even more of a problem with carrier grade NAT. If the devices are at routable IP addresses and the needed ports are open, or if port forwarding is used with NAT, then the devices can directly communicate. |
| PlainName:
I forgot to mention that a better alternative to open ports might well be a VPN. Surely every router does that nowadays, but a Pi or something should be simple enough to set up, and far more secure than some random cloud company intent only on locking you into their market. |
| soldar:
--- Quote from: David Hess on September 17, 2023, 01:25:41 pm ---A central server is only required if the endpoints do not accept incoming connections, like with network address translation. This is becoming even more of a problem with carrier grade NAT. If the devices are at routable IP addresses and the needed ports are open, or if port forwarding is used with NAT, then the devices can directly communicate. --- End quote --- If my home network is using dynamic IPV4 public address and it changes the other end needs a way to find out what the new address is and this requires a server which can be permanently found, whether it be the server provided by the provider of the service or something like dydns. |
| David Hess:
--- Quote from: soldar on September 17, 2023, 02:11:02 pm --- --- Quote from: David Hess on September 17, 2023, 01:25:41 pm ---A central server is only required if the endpoints do not accept incoming connections, like with network address translation. This is becoming even more of a problem with carrier grade NAT. If the devices are at routable IP addresses and the needed ports are open, or if port forwarding is used with NAT, then the devices can directly communicate. --- End quote --- If my home network is using dynamic IPV4 public address and it changes the other end needs a way to find out what the new address is and this requires a server which can be permanently found, whether it be the server provided by the provider of the service or something like dydns. --- End quote --- That is true, although dynamic IPs rarely change for most users. I do not really consider using a dynamic DNS or other DNS service as an "external server" in the common sense. |
| Navigation |
| Message Index |
| Next page |
| Previous page |