Hello,
I see that when remote dvr is enabled that the page is available to anyone on the internet. The only route I see secured is if I browse to http://my.channelsdvr.net/ but my-ip:8089 is wide open with no authentication.
Can I at least get a block of IP’s or subnets (ip’s being used by getchannels reverse proxy) to allow on my firewall for that port?
The page is not open to anyone but you. Try in an incognito window.
I have and from a device that has never accessed it.
Are you running your own reverse proxy in between the internet and the dvr?
Okay did some testing. Looks like my reverse proxy on my end is caching the auth code. Thanks
Lol you nailed it.
The reverse proxy makes its request from an internal IP, so the dvr lets it through and doesn't see the original upstream IP to know to block access.
You can add the header "X-DVR-ForceAuth" in your reverse proxy config to ensure that auth is always enforced.
Awesome thanks. Appreciate the quick help.