New setup

Discussion in 'Networking' started by GSMarquis, Aug 1, 2019.

Share This Page

  1. GSMarquis

    GSMarquis Getting the hang of it

    Joined:
    Jan 3, 2018
    Messages:
    63
    Likes Received:
    25
    Location:
    Va
    I have purchased an additional 24 port poe manageable switch L2 with a few L3 options. I will be running both this switch plus a dumb 24 port for all other devices. I have a Dahua 32ch NA06-4K with two gbit uplinks. I will use one to connect to the poe switch uplink and one to connect to my router.

    Looking for best setup to minimize attacks on ip cams.

    Thinking about making the ipcam network a separate vlan. Enable ACL with ips and MAC filtering. So the only way into the NVR is with a uncommon port along with allowable MAC only.

    Any thoughts?
     
  2. Hammerhead786

    Hammerhead786 Young grasshopper

    Joined:
    Apr 23, 2018
    Messages:
    44
    Likes Received:
    22
    Don't expose the camera network to the internet. Use a VPN when connecting to the network from outside of your home network. Don't open any ports or do any type of port forwarding. Since you're using a L3 capable POE switch use inter-vlan routing and have your cameras and NVR on separate vlans. Take a look at the attached document as this is how I have my network configured so I can only access the cameras from my home network via VPN when I'm out and about.
     

    Attached Files:

  3. GSMarquis

    GSMarquis Getting the hang of it

    Joined:
    Jan 3, 2018
    Messages:
    63
    Likes Received:
    25
    Location:
    Va
    It is a Netgear FS728tpV2. The price was right at $50.
     
  4. looney2ns

    looney2ns IPCT Contributor

    Joined:
    Sep 25, 2016
    Messages:
    7,517
    Likes Received:
    5,908
    Location:
    Evansville, Indiana