Blue Iris help

Switchgear

n3wb
Joined
Jan 7, 2020
Messages
18
Reaction score
0
Location
Ky
I have read through the VPN noob primer and I cannot figure this out. I used the open vpn on my asus router then connected with the open vpn app on my iphone. When I try to connect my blu iris app it never connects. Also going through the remote setup wizard and the server always times out.

I've disabled all of my firewalls and still no luck. From what I've read I shouldn't need to port forward but it constantly adds the ;81 to the back of my lan in the remote wizard. Also what should my webserver settings be in Blue Iris for a VPN?

I'm getting pretty frustrated so any help would be appreciated, Thanks.
 

SouthernYankee

IPCT Contributor
Joined
Feb 15, 2018
Messages
3,638
Reaction score
2,534
Location
Houston Tx
What are your setting on the BI iphone app.

NOTE: In the APP the WAN address is left blank (External Server Address) or it is set to the local lan address, not a WAN address The LAN address must have the port number specified. Example 192.168.1.235:81


The 81 is not port forwarding in the router. It is the port the webserver is associated to on the BI PC. As set in the BI setting webserver tab.
 

Switchgear

n3wb
Joined
Jan 7, 2020
Messages
18
Reaction score
0
Location
Ky
I copied the addresses in the blue iris remote setup. But even in the setup I get the operation has timed out in the verified server box
 

SouthernYankee

IPCT Contributor
Joined
Feb 15, 2018
Messages
3,638
Reaction score
2,534
Location
Houston Tx
provide a screen shot of the setting in the BI app on the Iphone.
Will the BI Iphone app work when at home without the VPN ?
 

SouthernYankee

IPCT Contributor
Joined
Feb 15, 2018
Messages
3,638
Reaction score
2,534
Location
Houston Tx
NO WAN ADDRESS if you are use a vpn.

Please hid the image above, you have just given the world your home IP address
 

SouthernYankee

IPCT Contributor
Joined
Feb 15, 2018
Messages
3,638
Reaction score
2,534
Location
Houston Tx
NO it does not matter what IP address the VPN gives you as log as it is on the local network.

When you connect via the VPM , on the phone are you getting a secure connection indicator, On android it is a key on the top of the screen, Or it is a green horseshoe.

If you are at home do the following test.
1) turn off the cell network on your phone, using wifi only
2)without the VPN use the BI app , does it connect and operate correctly.
 

Switchgear

n3wb
Joined
Jan 7, 2020
Messages
18
Reaction score
0
Location
Ky
Thanks for all of the help. I put the pc on dmz in my router and it finally connected. Is there a safer way to do this. I’m finally a little relieved that I can actually use my phone.
 

SouthernYankee

IPCT Contributor
Joined
Feb 15, 2018
Messages
3,638
Reaction score
2,534
Location
Houston Tx
I do not use a DMZ. The VPN will get you to the router on the routers local , if you need to cross the DMZ to get to the BI machine, i have no idea.
 

fenderman

Staff member
Joined
Mar 9, 2014
Messages
33,619
Reaction score
12,773
Thanks for all of the help. I put the pc on dmz in my router and it finally connected. Is there a safer way to do this. I’m finally a little relieved that I can actually use my phone.
putting your pc in the dmz is the worst thing you can do. Do you understand what the dmz is?
 

Switchgear

n3wb
Joined
Jan 7, 2020
Messages
18
Reaction score
0
Location
Ky
putting your pc in the dmz is the worst thing you can do. Do you understand what the dmz is?
Yeah it disables all of the firewall (demilitarizes) and lets everything through. I did it for a second to finally get a connection just out of desperation.

My vpn is still running on my pc and I used the lan address that the open vpn gave me to do my blue iris log in.

I had to port forward 81 to get this to work, and when I did the port forward I did it to the actual IP my router assigned to the cpu. Is there a safety concern there, or a better way to do it?

Thanks again to everyone who takes the time to help out with this.
 

fenderman

Staff member
Joined
Mar 9, 2014
Messages
33,619
Reaction score
12,773
Yeah it disables all of the firewall (demilitarizes) and lets everything through. I did it for a second to finally get a connection just out of desperation.

My vpn is still running on my pc and I used the lan address that the open vpn gave me to do my blue iris log in.

I had to port forward 81 to get this to work, and when I did the port forward I did it to the actual IP my router assigned to the cpu. Is there a safety concern there, or a better way to do it?

Thanks again to everyone who takes the time to help out with this.
There is a significant safety concern with port forwarding. The better way to do it is to properly setup your vpn. The way you have it now, the vpn is doing nothing.
 

Switchgear

n3wb
Joined
Jan 7, 2020
Messages
18
Reaction score
0
Location
Ky
There is a significant safety concern with port forwarding. The better way to do it is to properly setup your vpn. The way you have it now, the vpn is doing nothing.
Yeah there’s something I’m missing. The OpenVPN says it is running, and the LAN IP matches the openvpn lan IP number but I’m not using my openvpn app to log in from my phone.

I think I’m missing something in the web server settings.

the main thing I want to use is the push notifications so when my kids get off the bus. I’m not too worried about the live viewing. I did this hp computer with dual nics to try to make this a secure setup but I’m kind of lost on this vpn stuff.
 

Switchgear

n3wb
Joined
Jan 7, 2020
Messages
18
Reaction score
0
Location
Ky
After turning off port forwarding and checking my network vulnerability with shields up everything was good until I switched to my LTE and now I can’t connect. I feel better that I am now down to this and maybe figuring out some settings on the VPN or the web settings.
 

looney2ns

IPCT Contributor
Joined
Sep 25, 2016
Messages
9,533
Reaction score
8,584
Location
Evansville, In. USA
After turning off port forwarding and checking my network vulnerability with shields up everything was good until I switched to my LTE and now I can’t connect. I feel better that I am now down to this and maybe figuring out some settings on the VPN or the web settings.
You never answered @SouthernYankee questions:
If you are at home do the following test.
1) turn off the cell network on your phone, using wifi only
2)without the VPN use the BI app , does it connect and operate correctly?
 

SouthernYankee

IPCT Contributor
Joined
Feb 15, 2018
Messages
3,638
Reaction score
2,534
Location
Houston Tx
MY concern is that Switchgear is running a DMZ with BI and a VPN.
He needs to provided a detailed network diagram with internal IP addresses.

The initial problem was he was using a VPN and had an external WAN address specified on the app.
 
Last edited:

Switchgear

n3wb
Joined
Jan 7, 2020
Messages
18
Reaction score
0
Location
Ky
You never answered @SouthernYankee questions:
If you are at home do the following test.
1) turn off the cell network on your phone, using wifi only
2)without the VPN use the BI app , does it connect and operate correctly?
Just got home. Turned off my cellular with only WiFi and it worked. Disconnected the openvpn on my pc and it stopped.
I did get push notifications to my phone today at work, just couldn’t see the cams.
 

Switchgear

n3wb
Joined
Jan 7, 2020
Messages
18
Reaction score
0
Location
Ky
MY concern is that Switchgear is running a DMZ with BI and a VPN.
He needs pt provided a detailed network diagram with internal IP addresses.

The initial problem was he was using a VPN and had an external WAN address specified
Yeah I disabled the dmz and my open ports. I just need to get this vpn login going on my cell network.
 

Switchgear

n3wb
Joined
Jan 7, 2020
Messages
18
Reaction score
0
Location
Ky
Want to thank everyone who helped me on this. I finally got it after I read back on SouthernYankee's response about the LAN and WAN. I used the IP from my VPN for LAN then used that same IP for the WAN with :81. Now if I'm at home on my wifi I don't need the VPN to be active to log in from my Iphone. As soon as I switch to LTE it logs me out. As soon as I log in using my OpenVpn app then go back to blue iris I'm in on my cell network. Does this setup sound correct and secure?

As a side note I read that using VPN I won't get images in the push notifications. Has anyone seen a fix on this?
 
Top