Hello All,
Hoping someone can help me out. I have a few days off from work and hoping to be able to set things up the correct way.
My current setup is as follows:
Fios ONT > Ubiquiti Unifi USG > Ubiquiti Unifi 48 Port POE Switch > ports 40-48 are to cams via POE.
I have a mixture of Dahua and Hik cams for indoors and outdoors.
On Port 39, I have a Synology Diskstation running Surveillance Station which records all the cameras 24/7.
I currently have it that nobody can access the server except from being within the network, so I've set up a VPN in USG.
Currently I have each cam configured separately where all the functions of uPNP are turned off, no web access (or so I think), etc...
I am wanting to set make it even more secure and wanting to set up a VLAN within USG and put the cams on it. I am unsure if I should add the server on there as well since I want to continue accessing the server from within the house, but not be able to access the cams from within the network (say a guest comes, connects to my wifi, and if they know the IP's to be able to navigate to each cam individually, etc.)
So hoping someone can shed some light as to how I can go about doing the following things:
- Securing my network and cameras via separate VLAN
- Advising on how I can check to make sure the cameras currently arent talking to the internet
- Server on or off that VLAN
Any help would be greatly appreciated.
Hoping someone can help me out. I have a few days off from work and hoping to be able to set things up the correct way.
My current setup is as follows:
Fios ONT > Ubiquiti Unifi USG > Ubiquiti Unifi 48 Port POE Switch > ports 40-48 are to cams via POE.
I have a mixture of Dahua and Hik cams for indoors and outdoors.
On Port 39, I have a Synology Diskstation running Surveillance Station which records all the cameras 24/7.
I currently have it that nobody can access the server except from being within the network, so I've set up a VPN in USG.
Currently I have each cam configured separately where all the functions of uPNP are turned off, no web access (or so I think), etc...
I am wanting to set make it even more secure and wanting to set up a VLAN within USG and put the cams on it. I am unsure if I should add the server on there as well since I want to continue accessing the server from within the house, but not be able to access the cams from within the network (say a guest comes, connects to my wifi, and if they know the IP's to be able to navigate to each cam individually, etc.)
So hoping someone can shed some light as to how I can go about doing the following things:
- Securing my network and cameras via separate VLAN
- Advising on how I can check to make sure the cameras currently arent talking to the internet
- Server on or off that VLAN
Any help would be greatly appreciated.
