Block IP camera access from internet and allow access from open VPN and LAN
-
Hello Guys,
I am new to this community and pfsense but i would like to thank this community in advance as you guys are doing great support.
I have couple of Floureon p2p IP camera. These camera are accessible from internet without setting up port forwarding as they are peer 2 peer camera.
My requirement is to deny access to these camera from internet but same time allow access to this camera by Open VPN. I have already set up open vpn and it is working fine.
Can you guys advise, what would be the best solution for this task.
Thanks
Regards,Hitesh
-
I have 7 standard Hikvision cameras. I put them on their own VLAN and disabled internet access on that VLAN. I guess you could also make an Alias with their IP numbers and block the internet to them.
-
Thanks for response.
I actually tried to block IP camera host IP to reach internet but now i am not able to access them over OPEN VPN. I will provide my rule setup tonight, i would appreciate if you can point me to right direction.
Thanks
Regards,Hitesh
-
I don't know if it has anything to do with them being P2P.. here is a pic of the rules on my Camera VLAN.
-
Thanks for provide your set up. Looks like p2p camera need access to outside server to work but using remote vpn they should be able to accessible even though they can not reach internet.
Please have a look at my setup.
I can successfully blocked access to cam from internet but i am not able to view my cam from remote Open VPN either.
Thanks
Regards,Hitesh
-
Have you set a rule for openvpn interface?
shouldnt be more than a pass rule for that specific network to the camera network. default action is always deny iirc so unless you specificly allowed openvpn to access cameras it cant.