Hello everyone, I apologize if this has been covered before but I wanted to get some feedback. I want to lock down my NVR setup so I don't have security issues. My setup is actually an LTS NVR connected to my Asus router (rebranded hikvision) with LTS POE cameras. The LTS NVR gets an IP from my Asus router. I run a VPN server on the router so I can access the NVR remotely via connecting to OpenVPN on my phone and then with NVMS7000. So, I don't use any port forwarding, as I understand that risk.
The other big concern I have is limiting outbound traffic from the NVR to the world. Are there any issues with blocking all outgoing traffic for the NVR? I just set this up (via a firewall rule, I blacklisted the IP's outgoing traffic to the WAN). Does the NVR need to make requests to fetch the time or anything else? I figure when I need to upgrade firmware on the router I'll need to temporarily disable this rule but is it ok to leave on the rest of the time? I wanted to see if other people also "lock down" their nvrs and if it's a good idea. I know the security risk with cameras but I'm thinking the NVRs are probably worth locking down as well..?
Big thanks to anyone's input.
The other big concern I have is limiting outbound traffic from the NVR to the world. Are there any issues with blocking all outgoing traffic for the NVR? I just set this up (via a firewall rule, I blacklisted the IP's outgoing traffic to the WAN). Does the NVR need to make requests to fetch the time or anything else? I figure when I need to upgrade firmware on the router I'll need to temporarily disable this rule but is it ok to leave on the rest of the time? I wanted to see if other people also "lock down" their nvrs and if it's a good idea. I know the security risk with cameras but I'm thinking the NVRs are probably worth locking down as well..?
Big thanks to anyone's input.