Remote control from anywhere: Difference between revisions

Line 17:

Modern routers have firewalls built in, but the most IT professionals will add a dedicated firewall appliance between the incoming internet router or modem and their internal network. In the absence of a dedicated firewall, try to understand and implement as many of the items on this [http://routersecurity.org/checklist.php Router Security Checklist] as you can.

Putting any port of any device of your primary network on the public internet should always be done with planning, forethought and ~~advise from~~ your IT professional. We recommend that all Internet of Things (IoT) devices you install in your facility be connected using a dedicated network (IP address subnet such as 192.168.120.''node'') apart form your file servers and database systems. Most newer routers and multi-port firewalls allow you to have more than one subnet for guests and devices (see Guest Networks in the Security Checklist linked above).

Putting any port of any device of your primary network on the public internet should always be done with planning, forethought and the wise advice of your IT professional. We recommend that all Internet of Things (IoT) devices you install in your facility be connected using a dedicated network (IP address subnet such as 192.168.120.''node'') apart form your file servers and database systems. Most newer routers and multi-port firewalls allow you to have more than one subnet for guests and devices (see Guest Networks in the Security Checklist linked above).

Another way of setting up a secure dedicated network for IoT devices if you have an older unused router available is to configure a [https://www.grc.com/nat/nats.htm Multi-NAT router network] as described by security guru Steve Gibson.

@@ Line 17: / Line 17: @@
 Modern routers have firewalls built in, but the most IT professionals will add a dedicated firewall appliance between the incoming internet router or modem and their internal network. In the absence of a dedicated firewall, try to understand and implement as many of the items on this [http://routersecurity.org/checklist.php Router Security Checklist] as you can.
-Putting any port of any device of your primary network on the public internet should always be done with planning, forethought and advise from your IT professional. We recommend that all Internet of Things (IoT) devices you install in your facility be connected using a dedicated network (IP address subnet such as 192.168.120.''node'') apart form your file servers and database systems. Most newer routers and multi-port firewalls allow you to have more than one subnet for guests and devices (see Guest Networks in the Security Checklist linked above).
+Putting any port of any device of your primary network on the public internet should always be done with planning, forethought and the wise advice of your IT professional. We recommend that all Internet of Things (IoT) devices you install in your facility be connected using a dedicated network (IP address subnet such as 192.168.120.''node'') apart form your file servers and database systems. Most newer routers and multi-port firewalls allow you to have more than one subnet for guests and devices (see Guest Networks in the Security Checklist linked above).
 Another way of setting up a secure dedicated network for IoT devices if you have an older unused router available is to configure a [https://www.grc.com/nat/nats.htm Multi-NAT router network] as described by security guru Steve Gibson.