By default an NVR puts all the cameras on one subnet (usually 10.0.0.x) and then the LAN IP, so it is effectively like two NICs or a firewall isolating the cameras from the internet.
EmpireTech Security Settings
- Thread starter HomeWPoe
- Start date
By default an NVR puts all the cameras on one subnet (usually 10.0.0.x) and then the LAN IP, so it is effectively like two NICs or a firewall isolating the cameras from the internet.
A lot of nvrs these days just have a single network port and you're expected to plug both the NVR and your cameras into the same switch/subnet.
But for some non Poe nvrs you can get them with two network ports.
I assume one is wan and the other is for a camera Lan.
But for some non Poe nvrs you can get them with two network ports.
I assume one is wan and the other is for a camera Lan.
Instead of using two NICs to isolate the cameras I use firewall rules. My router is a Ubiquity UDM-B. My firewall rules are basically
Allow local camera viewers to see cameras. This includes BI, NAS, my personal PC, and my iPhone/iPad.
Disable camera sub net from accessing off subnet.
This isolates the cameras from anything except a few trusted devices.
No cameras are connected directly to the router - instead they pass through a Level 2 switch and does not slow down the rest of my network.
——
Dean
Allow local camera viewers to see cameras. This includes BI, NAS, my personal PC, and my iPhone/iPad.
Disable camera sub net from accessing off subnet.
This isolates the cameras from anything except a few trusted devices.
No cameras are connected directly to the router - instead they pass through a Level 2 switch and does not slow down the rest of my network.
——
Dean
