szymas Posted June 2, 2014 Posted June 2, 2014 Just checking on this issue that someone brought to my attention. First of all I am a I?T Director and know standard on routing etc.. But am asking anyways We have a ISY-994I controlling a whole house, it does connect to the internet via a router it is plugged into and the router is connected to the cable modem to get it out on the internet to gather date/time information. Is there any chance that we need to worry about a compromise on the ISY-994i? and is there any documentation on this or what should be done to shore it up.. We have not configured it to be remotely accessed via the internet and it does not have a public ip assigned.. Thanks for any help on this matter Chuck
PurdueGuy Posted June 2, 2014 Posted June 2, 2014 If you haven't forwarded ports, it is probably safer than most other devices on your network. Different consumer-level routers have their strengths and weaknesses, so I think you would have more to worry about there. The ISY doesn't reach out remotely like the Veras do, so that threat vector doesn't exist in this instance.
szymas Posted June 2, 2014 Author Posted June 2, 2014 thanks, so you are saying that since only the ISY is going to the internet just to poll for date/time we should be good to go correct?
arw01 Posted June 2, 2014 Posted June 2, 2014 In general yes, you HAVE changed the default username and password correct? Turned off UPP, and only have it pulling ntp data? You can use mobilinc connect vs port forwarding if you want to access your ISY from outside the house network, this being via your phone, not the admin console. There are some threads on installing your own CA, but that still baffles me.
Recommended Posts