LTS IP Camera - Connecting to External IP on Port 6800

[trock]

While examining my firewall I noticed that my camera subnet was connecting to external IPs on Port 6800. The IPs that are connecting are the IP cameras themselves. I emailed support, however I wanted to reach out to the community to see if someone could shed some light. I have emailed support over at LTS and am awaiting a response.

Cameras: CMIP-3042W-28
Brand: LTS (rebranded Hikvision)

Attached is a screenshot.

Note: I created an access rule denying outbound access from the camera subnet to the internet. Now I am getting several denied logs.

Thanks again,

 

[tangent]

Disable the P2P function

 

[trock]

Thanks for the prompt response!

Is this the setting (PT Cloud) you are referencing? (see attached screenshot)

 

[tangent]

Thanks for the prompt response!

Is this the setting (PT Cloud) you are referencing? (see attached screenshot)

Yep, diff mfg call it slightly different things.

Basically it's NAT traversal to make setup idiot proof and can be a security issue. It's a good idea to enforce security externally, deny the cams access to anything external except a time sever unless you run one locally. Don't forward ports and run a VPN server.

 

[trock]

Thanks again for solution.

Yeah, everything from the camera subnet is blocked at the firewall. The cameras can only talk to the Blue Iris server.