Waketech Posted August 29, 2014 Posted August 29, 2014 All, Wha is the most secure way to access your ISY when you are away from your house ?. Thanks
Teken Posted August 29, 2014 Posted August 29, 2014 (edited) HTTPS: or set up a VPN connection. Edited August 29, 2014 by Teken
Waketech Posted August 29, 2014 Author Posted August 29, 2014 HTTPS: or set up a VPN connection. Teken, How would a newbie find this info on how to do this ? Thanks
Waketech Posted August 29, 2014 Author Posted August 29, 2014 Teken, How would a newbie find this info on how to do this ? Thanks Oh and is there a cost for this
Teken Posted August 29, 2014 Posted August 29, 2014 Teken, How would a newbie find this info on how to do this ? Thanks The easiest thing to do is port forward your public IP address in the router. Look up port forwarding in Google with the specific router you have on hand. Once that is done you can decided to either use the default HTTPS: 443 port or another one of your choosing. Many select another port besides 443 in hopes of being sneaky and be more stealth like, thats up to you! I would go that route before you even started down the VPN path. Essentially, a VPN is a secured tunnel to and from your location to the home. This allows you to connect to a network device / computer system and do whatever. Also, not to muddy the waters a VPN encrypts the session / connection. It does not encrypt the data / payload of data with in.
Teken Posted August 29, 2014 Posted August 29, 2014 Oh and is there a cost for this There is no cost to setup port forwarding on your router just a few moments of your time. A VPN service / software can be purchased but many choose freeware to accomplish that task.
Waketech Posted August 29, 2014 Author Posted August 29, 2014 The easiest thing to do is port forward your public IP address in the router. Look up port forwarding in Google with the specific router you have on hand. Once that is done you can decided to either use the default HTTPS: 443 port or another one of your choosing. Many select another port besides 443 in hopes of being sneaky and be more stealth like, thats up to you! I would go that route before you even started down the VPN path. Essentially, a VPN is a secured tunnel to and from your location to the home. This allows you to connect to a network device / computer system and do whatever. Also, not to muddy the waters a VPN encrypts the session / connection. It does not encrypt the data / payload of data with in. Teken, I currently am using port forwarding and everyhting seems to be working, can I assume this is secure enough ?
Teken Posted August 29, 2014 Posted August 29, 2014 Teken, I currently am using port forwarding and everyhting seems to be working, can I assume this is secure enough ? Are you using port 443 to access via the interwebs via HTTPS:?
Waketech Posted August 29, 2014 Author Posted August 29, 2014 I type in my IP that the ISY assingned (I believe it said https: I am not home to verify this). I do have it on the defualt port 443. To access I just type the IP in the browser and I gain access after entering the password
Teken Posted August 29, 2014 Posted August 29, 2014 I type in my IP that the ISY assingned (I believe it said https: I am not home to verify this). I do have it on the defualt port 443. To access I just type the IP in the browser and I gain access after entering the password I would say you're in good shape then. In the big picture guys like you and me have nothing to take. That doesn't mean you don't follow best security practices which you're already doing now. As I am sure you're aware there are some security items that need to be done on a regular basis. 1. Use a strong password which includes alpha numeric, upper / lower case, special characters, a minimum length of 8-12 characters, using non standard words etc. 2. Change your password on a regular basis. 3. Turn off the SSID to the router for WiFi. 4. Always ensure your firewall / anti virus is up to date and checked regularly. 5. Use MAC address restriction(s) and MAC reservation so random devices can not sign on. 6. Black Hole detect should always be left on. Meaning if someone pings your router it will never reply back. 7. Using a VPN connection is really one of the best methods to ensure a secure session. 8. You should always avoid using any free WiFi in coffee shops etc
Waketech Posted August 29, 2014 Author Posted August 29, 2014 Thank you for the info, very much appreciated
ravedog Posted August 29, 2014 Posted August 29, 2014 Speaking of password lengths... Does the ISY team have any plans for allowing longer passwords? 10 seems.... Fairly weak for something that's outward facing... Sent from my iPad using Tapatalk
Teken Posted August 29, 2014 Posted August 29, 2014 I second longer password length. Should allow up to 25 characters for both user name / password. Encrypted By: Phoenix Security Solutions
Michel Kohanim Posted August 29, 2014 Posted August 29, 2014 Hello all, Unfortunately not in the current branch as it would cause major regression testing. With kind regards, Michel
ravedog Posted August 29, 2014 Posted August 29, 2014 Well. Keep it in mind if you can manage it Sent from my iPhone using Tapatalk
Recommended Posts