I’m looking for advice on securing my CCTV feed. In the past, I’ve set up systems where the footage was sent to the manufacturer’s server before coming back to me. I’d like to avoid this and keep the footage strictly under my control.
Is there a way to ensure that the footage only goes directly to me? Bonus points if there’s a secure way to access the feed remotely via an app, though I understand that adds complexity.
To avoid cloud-based systems, you’ll need to host everything locally. A good option is Unifi Protect, which is user-friendly but not cheap. You can also set up your own system with open-source software. If remote viewing is essential, you’ll need to access your home network, which poses a security risk. Adding layers of security like a VPN can help, but it does make the system more complex.
@Jaden
Thanks! I get your point about remote viewing being a risk. I’ll look into Unifi Protect and other options. I’m also trying to avoid anything like my old setup, where footage passed through a Chinese server. Your advice gives me a good starting point.
Reolink cameras with a PoE switch and BlueIris software on a local computer could work for you. With some networking knowledge, you can securely access the footage remotely using a reverse proxy or VPN. You can also block the cameras from “phoning home” to the manufacturer’s servers. This is how I’ve set up my system, and it works well.
What you’re describing is likely a P2P (peer-to-peer) feature that uses the manufacturer’s server. To bypass this, you can disable P2P in the settings and connect directly using your static IP and the correct server port. This setup requires configuring port forwarding on your router but avoids sending your footage to any external servers.
Lex said: @Eli
So I can still use the manufacturer’s app, but it connects directly without going through their servers?
Exactly. By disabling P2P and setting up port forwarding, the app will connect directly to your system. You just need to enter your static IP and server port instead of scanning a QR code.
If you’re using Wi-Fi cloud cameras, footage often goes to the manufacturer’s server. To avoid this, get PoE cameras and a local DVR. Most DVRs don’t need internet access unless you want remote viewing. For secure remote access, set up a VPN or restrict access with a firewall. I use a Synology NAS with Surveillance Station to record 24/7, and my footage never leaves my home network.
@Jin
I’m using a Ubiquiti system. My footage is stored locally, but I’m trying to protect the remote viewing aspect. Does that mean I need to secure the port it connects through?