rfeyer
Posts: 125
Joined: Sun Nov 23, 2014 9:25 pm

Re: Fundamental Security questions

Tue Sep 28, 2021 6:51 pm

My apology, as the 'diagram' I was trying to produce did not come through the above '\' marks where to point toward items, but the forum took out the blank spaces.

So, currently, Everything is linked - everything is going through a LAN router IP, say 192.10.10.1 (fictional). Several unmanaged switches are located: House upstairs, house downstairs, and two in the coop. I have one main Cat6 going to the coop area for the RPI's and the IPCams which are down there.

The RPI's have WiFi turned off, so does the Windows PC running the IPCam software (BI).

By no reason of logic, the WinPC is directly connected to the Actiontec 1900 and so is the Main Linux PC, all others (Laptops etc) are also plugged into the Actiontec (on a separate plug so to speak, but obviously on the same network).

Connection:
Over LAN, the BlueIris software and the RPI self made apps are connected via LAN by IP address and port, lets say '192.10.10.66:4040/AppName

The router is asked to port forward the ports of the BI and RPI software.

From outside, connection is made via No-ip, ie> myaccountname.no-ip.biz:PortNumber/AppName

If it helps, I will draw a rudimentary diagram and try to figure out how to attach it here (prob have to use pininterest which I don't really wanna do).

Rainer

p.s.: TY for hanging in there with me. I read your Gid and would love to use it, once I know the above fundamentals

bls
Posts: 1754
Joined: Mon Oct 22, 2018 11:25 pm
Location: Seattle, WA

Re: Fundamental Security questions

Tue Sep 28, 2021 7:16 pm

rfeyer wrote:
Tue Sep 28, 2021 6:51 pm
My apology, as the 'diagram' I was trying to produce did not come through the above '\' marks where to point toward items, but the forum took out the blank spaces.

So, currently, Everything is linked - everything is going through a LAN router IP, say 192.10.10.1 (fictional). Several unmanaged switches are located: House upstairs, house downstairs, and two in the coop. I have one main Cat6 going to the coop area for the RPI's and the IPCams which are down there.

The RPI's have WiFi turned off, so does the Windows PC running the IPCam software (BI).

By no reason of logic, the WinPC is directly connected to the Actiontec 1900 and so is the Main Linux PC, all others (Laptops etc) are also plugged into the Actiontec (on a separate plug so to speak, but obviously on the same network).

Connection:
Over LAN, the BlueIris software and the RPI self made apps are connected via LAN by IP address and port, lets say '192.10.10.66:4040/AppName

The router is asked to port forward the ports of the BI and RPI software.

From outside, connection is made via No-ip, ie> myaccountname.no-ip.biz:PortNumber/AppName

If it helps, I will draw a rudimentary diagram and try to figure out how to attach it here (prob have to use pininterest which I don't really wanna do).

Rainer

p.s.: TY for hanging in there with me. I read your Gid and would love to use it, once I know the above fundamentals
You can get "typing diagrams" to come through untouched by enclosing them in code tags

Code: Select all

This is inside a code tag
  and so is this, but indented
I was under the impression that your coop was already connected to the internet by a separate modem of some sort. But, given the description above, it sounds like your house and coop are on the same LAN, and all the devices on it are in the same subnet.

Is that correct?

If so, then I get your network configuration. If not, then I'm going to need a picture of the current configuration.

Then the question becomes...what do you WANT your network to look like?

Might I suggest that we continue this in email? You can find my email address on the page https://github.com/gitbls/sdm just above the "usage overview" header. I think we'll get better communication (since you can send pictures, etc), and we can report results back to this thread once complete. Or, of course, we can continue here. Your choice.
Pi tools:
Quickly and easily build customized-just-for-you SSDs/SD Cards: https://github.com/gitbls/sdm
Easily run and manage your network's DHCP/DNS servers on a Pi: https://github.com/gitbls/ndm
Easy and secure strongSwan VPN installer/manager: https://github.com/gitbls/pistrong
Lightweight Virtual VNC Config: https://github.com/gitbls/RPiVNCHowTo

rfeyer
Posts: 125
Joined: Sun Nov 23, 2014 9:25 pm

Re: Fundamental Security questions

Tue Sep 28, 2021 8:03 pm

Perfect!
1- you understood the LAN setup correctly - totally un-secure
2- TY for, again, sticking in there!

I will send e-mail

Rainer

Return to “Networking and servers”