The socat solution is merely an alternative one can use. No harm in it. Nothing to fear. Enough said, except that the nohup with '&' might not be necessary when using socat due to it may perform that functionality on its own.
So I just looked again into VPN. As I understand it, I would become dependent on yet another third party and their limitations and their future decisions for every single freaking packet. ABSOLUTELY AGAINST MY DESIRE FOR INDEPENDENCE AND SIMPLICITY! Enough said. I'm the one who has to...
Oh I'm quite happy the way things are with the socat line. Just went all night long with all four cameras streaming to me over the internet, a happy milestone! I have a very plausible explanation and have no reason to question it. It is not all that easy to firewall off Communist Momma...
This ONVIF is all new since I installed the cams for their first existence. Not that it didn't exist at all, but it just wasn't a front and center thing back then. How would bash scripting interface to the event detections? That would be a very good thing for me to learn.
I'm learning from you. Let's compare our setups. Mine is a headless (CLI) Linux re-purposed server with one of the interfaces connected to the Internet - a ISP-owned cable modem that puts an external IP address on the server. The other interface is intranet centered around a simple...
The way you see this is:
DON'T allow your cameras to contact momma,
request an rtsp connection DIRECTLY between it and an external IP address.
When the camera realizes it is being asked to stream to an external address but can't communicate with COMMUNIST MOMMA COMPANY, it enforces the EVIL 5...
The 300 in the socat command was arbitrarily chosen by me. I see now that it lends itself to getting confused with the evil 5 minute Hikvision rtsp stream time limit. My bad for the confusion.
Oh but they sure do with plain port forwarding or even DNAT, the old ones, at least. They've always timed out for me at 4:59, 5:00 or 5:01. Now I am so smiling to be free from that.
I have multiple users in the family, each needs flexibility to use the device best suited for the moment, and everyone but me has no patience for setup. Setup is done transparently by an Android app called Onvifer. It knocks ports on launch, and my system uses the knocking to whitelist their...