I have recently started testing remote access to CDVR. I have been able to get it working (under some conditions, described below), and it's very cool! (kudos to devs @maddox @tmm1 @eric !)
I have been able to get remote access to work if I set my router firewall to allow inbound access on port 8089 from the USA region (or of course, from anything broader that that). I am using a Firewall Gold as the router -- which I became aware of thanks to @rog889 -- thanks for that, I am very thankful to have that now! I have had to set the port forward manually, but I am confident that I have done that correctly, as I do have reasonable experience with port forwarding.
However, if I try to restrict access via the firewall further (eg to the specific IP address of the device on which I run the Channels client app remotely), I have been unable to get remote access to work. I assume that this is because in this case, the Fancybits servers cannot get through my firewall to my server at home, in order to authenticate between my client and my server(?)
However, when I set my home firewall to allow USA region access, I get a lot of 8089 access attempts, some of which are blocked, but some of which are allowed -- and I am unable to identify what those are, which concerns me.
So, I would like to lock things down a bit more with my router. I have read through all of the threads I could find that discuss remote access and security, but still have a few questions:
My questions:
-
Is there an IP address range and/or domain for Fancybits' server(s) that I can add to my 8089 firewall whitelist so that CDVR remote access will work without my having to allow 8089 access for the entire USA region?
-
If not: Is there any other way to lock down 8089 access to be more restrictive than "USA region" while still allowing CDVR remote access to work?
Apologies in advance if my questions are stupid and/or ill-formed! -- I am not very knowledgeable about router/port security.
And thanks in advance for any help!