What is the video tutorial on securing IP cameras with VPN server about?
In the video tutorial Securing IP cameras with VPN server, I will show you how you can secure your surveillance cameras so that no one can access them from the internet.
Surveillance cameras are connected to the local network
When you connect a surveillance camera, it is connected to your local network.
As long as you are not port forwarding, the camera cannot be accessed from the internet, but at the same time you are safe, because no one can access your camera remotely.
Only those connected to your network have access to the camera.
Port Forwarding, a security breach that must be avoided
Once you've done port forwarding, you can access your camera from anywhere. The problem is that just as you can see the camera, so can others.
Even if others do not have the password, it may break or use certain software tools that force the password to be reset, or that exploit certain vulnerabilities that are not yet known.
Port forwarding alternative for viewing internet cameras
To access remote cameras securely, you need to forgo port forwarding and use a VPN server.
VPN server in your network will allow you to securely access resources on your local network remotely, such as: surveillance cameras, router, computer, etc.
ATTENTION! IMPORTANT!
VPN server should not be confused with VPN services (NordVPN, Bear Tunnel, etc.)
The VPN server is a physical device, which you can make yourself or which can be found right in the router, as an option.
Smart cameras, which connect to the cloud all the time, can't provide you with a good level of security, even with a VPN server, because the vulnerability of those cameras is even that permanent connection to the manufacturer's cloud.
Cristian, there is another option
Cameras that allow them to be accessed through an application, or have the possibility of cloud storage, open an Internet channel (usually to the manufacturer) from where images can be viewed. So no port-forwarding, not VPN tunnels. Security in this case is left in the hands of the manufacturer, most of the time Chinese 🙂
By the way, VPNs really should be confused with VPN services, because that's exactly what they are!
It's just that the tunnels are not to your own router (as in your case), but to another router (from the VPN service provider)
About the cloud services offered by the manufacturer, I said in the tutorial, that this is Achilles' heel. Once the cloud is compromised, goodbye security. Things like this have happened hundreds of times, even with big companies.
Commercial VPN services are something else. There you, as a user, control nothing. When you have a server, you have control over both ends of the tunnel. VPN services can't be used in this case, meaning they don't help you much. Sure, they're useful in other situations, but that's another discussion.
Can you do a tutorial with an older phone instead of a Raspberry PI? or give some explanations.
Cristi, one question, please. In fact, two.
If you are setting up a VPN service on a router, is the data transmission speed not affected? And 2. isn't the router "overloaded"? Thanks.
The speed through the VPN tunnel will be slower. Below is a video comparing VPN servers.
https://videotutorial.ro/care-este-cel-mai-rapid-server-vpn-pptp-vs-l2tp-ipsec-vs-openvpn/
Normal LAN connections to the router will not be affected, ie cable or Wi-Fi connections
The router is not affected. Sure it uses some resources with the VPN server, but it's not something that slows it down.
I understand thanks!
Hi Cristi, please with 2 questions:
1-DIGI free domain changes after a while?
2-In review router Tenda AC10 appear about 4 domains. Is choosing a domain from the menu free or do you have to be logged in and buy that domain for a while?
Thank you very much.