I do trust my network setup, I just need to make sure I am not using cameras from certain countries due to specific reasons.I'm not arguing that point at all. There's no such thing as absolute trust under any circumstances. But if the OP doesn't trust a good VLAN and firewall arrangement to keep his cameras isolated from the web, then buying a camera that says "Made in U.S.A." won't necessarily make him any safer.
Correct me if I am wrong, but isn't CCTV more for corporations or do they have consumer products? The other think I need to look into is RJ45 (CAT6A) vs RG59 (COAX cable) to setup my security system. I am moving to a new house with acreage, barns, etc, and not sure what is the best route to take. Do I want to run Point to Point (PTP) from my main house to the barns, or run RJ45 or RG59 unground to the barn? First time trying to secure something of a bigger foot print.Yep, if you want true ability to not phone home or be hacked, make it what CCTV really is or was - zero ability to be seen outside of the building - no VLANs or dual NIC and not a single component of the system is connected to the internet at all.
Short of that closed of a system, one has to take the necessary precautions to minimize the risk. Isolate cameras from the internet via VLANs or dual NIC, strong firewall, no P2P or port-forwarding, etc.
Right now, I am using UniFi for my network. Do you recommended using pfSense or Untangle over UniFi?a VLAN that is implemented in the router or switch depends on the software. Do you really trust that software ? I sure as hell do not !
The best solution is to use a dual NIC. But you are trusting windows 10 to not forward the information. It minimizes your risk but does not eliminate it.
You mentioned a dual NIC as the best solution. What does the dual NIC allow (besides accepting two network cables and using different IPs)?
Thank you very much. Yes, I have read may threads on here and @EMPIRETECANDY comes highly recommended.Other than maybe some networking techie forum, you will not find another group of more security conscious folks here and if folks here are comfortable with these cameras and configuring them to not phone home, then it is about as close as you can get.
Many here trust the cameras @EMPIRETECANDY sells and even he would tell folks not to use UPnP or P2P or port forwarding...
Is there a guide for HW isolation/products/setup?Agree with @SouthernYankee nothing beats true HW isolation either via multi homed / dual mic setups or separation through other areas of the infrastructure deployed