Permanently Disable p2p protocol in DAHUA devices using API

TIGOS1

Young grasshopper
Feb 25, 2020
51
6
Odessa, Ukraine
Downloaded many different APIs dpcuments for Dahua devices
Searched for a long time how to disable the use of p2p networks, using API commands

All I found was this:
http://<ip>/cgi-bin/configManager.cgi?action=setConfig&T2UServer.Enable=false

But this allows you to get rid of P2P only until the device is restarted

Please tell if you knew the command that disables the P2P checkbox pemanently
 
UPnP may be a bigger problem for you. Please check if UPnP is opening ports on the routers.

If you block the camera / NVR from connecting to the internet directly, you don't have to worry about UPnP or P2P. Instead you have to worry about whatever method you choose to allow secure access into the network.
 
  • Like
  • Haha
Reactions: TIGOS1 and Damon
I'll answer myself
(I think that this will help someone many times, unlike unsolicited advice )

Permanent disable P2P Dahua service:
http://<ip>/cgi-bin/configManager.cgi?action=setConfig&VSP_PaaS.Online=false
http://<ip>/cgi-bin/configManager.cgi?action=setConfig&VSP_PaaS.Enable=false

Temporary disable P2P Dahua service (until reboot):
http://<ip>/cgi-bin/configManager.cgi?action=setConfig&T2UServer.Enable=false
 
Last edited:
I'll answer myself
(I think that this will help someone many times, unlike unsolicited advice )
You do realize you managed, in less than an hour, to not only find the anwser yourself but also announced to readers of this thread that you're somewhat of a dick.

If you need a translation of that, maybe you can find that yourself also. :cool:
 
Last edited:
Always better to block the cameras at the router for any outgoing communications. No telling how many back doors these have in them and those won’t be documented.
 
Thank you ALL, your answers were very, very helpful in answering the question I asked.
Well it was inevitable that people would remember your other thread and that you ignored most of our suggestions and questions and repeat them.
Enforcing security on cameras/nvrs with external equipment is the most secure option.

On most forums you'll get off the cuff answers before someone puts the effort into really researching an answer. Also, people typically won't put effort into looking up something like that unless they also want to know the answer to the question and/or the person asking the question is an active and respectful participant in the thread (it helps if you aren't a dick).

There was an interesting news story about the G R U hacking neighbors of high value targets and then exploiting the wifi. Spies hack Wi-Fi networks in far-off land to launch attack on target next door

I'd also be worried about hacked ISPs and the exploitation of TR-069.
 
Last edited:
  • Like
Reactions: looney2ns