Limit outbound traffic from a webcam to the local network

General discussion about Gargoyle, OpenWrt or anything else even remotely related to the project

Moderator: Moderators

Post Reply
rainkinz
Posts: 6
Joined: Tue May 26, 2015 4:50 pm

Limit outbound traffic from a webcam to the local network

Post by rainkinz »

Hi,

Could someone point me in the right direction for how I might stop any outbound traffic from a webcam to the internet? i.e. any packets from the webcam should only be routable to the local network or VPN.

Thanks

Lantis
Moderator
Posts: 6735
Joined: Mon Jan 05, 2015 5:33 am
Location: Australia

Re: Limit outbound traffic from a webcam to the local networ

Post by Lantis »

Does the webcam have an IP address? If so look up iptables and the openwrt firewall and create a rule.
If it doesn't, you still want to do a similar thing but matching he traffic becomes harder.
http://lantisproject.com/downloads/gargoyle_ispyisail.php for the latest releases
Please be respectful when posting. I do this in my free time on a volunteer basis.

rainkinz
Posts: 6
Joined: Tue May 26, 2015 4:50 pm

Re: Limit outbound traffic from a webcam to the local networ

Post by rainkinz »

So something like this where 192.168.1.111 was the IP address of the webcam and eth0.2 is the wan device?

Code: Select all

iptables -I FORWARD -s 192.168.1.111 -o eth0.2 -j DROP
Also, I'd add this to /etc/firewall.user right?

Thanks for your time.

Lantis
Moderator
Posts: 6735
Joined: Mon Jan 05, 2015 5:33 am
Location: Australia

Re: Limit outbound traffic from a webcam to the local networ

Post by Lantis »

That looks right to me, but I'm not very good with firewall rules sorry!

Oh and you'll need to do a firewall restart after adding the rule.
/usr/lib/gargoyle/restart_firewall.sh
http://lantisproject.com/downloads/gargoyle_ispyisail.php for the latest releases
Please be respectful when posting. I do this in my free time on a volunteer basis.

rainkinz
Posts: 6
Joined: Tue May 26, 2015 4:50 pm

Re: Limit outbound traffic from a webcam to the local networ

Post by rainkinz »

LOL, neither am I which is why I'm asking :-) Will give it a try. Obviously a bit hard to test, but might try adding logging to the rule so that if it is ever detected I can hunt round to see what caused it (phone home or something else).

Thanks again.

Lantis
Moderator
Posts: 6735
Joined: Mon Jan 05, 2015 5:33 am
Location: Australia

Re: Limit outbound traffic from a webcam to the local networ

Post by Lantis »

Custom firewall rules are more of an openwrt thing. If you find you can't get the help you need here definitely have a search on their forums or their wiki. If it applies to openwrt it applies to gargolye (in general).

Also I edited my last post to mention that you need to restart the firewall after adding the rule.
http://lantisproject.com/downloads/gargoyle_ispyisail.php for the latest releases
Please be respectful when posting. I do this in my free time on a volunteer basis.

shm0
Posts: 67
Joined: Sat Sep 19, 2015 10:06 am

Re: Limit outbound traffic from a webcam to the local networ

Post by shm0 »

Isnt this possible through the web interface? Under Firewall-> Restrictions

ispyisail
Moderator
Posts: 5180
Joined: Mon Apr 06, 2009 3:15 am
Location: New Zealand

Re: Limit outbound traffic from a webcam to the local networ

Post by ispyisail »

maybe

Image

darkfibre
Posts: 17
Joined: Mon Nov 09, 2015 10:35 am
Location: Christmas Island

Re: Limit outbound traffic from a webcam to the local networ

Post by darkfibre »

Does the webcam have an interface where you can set the address and gateway on it manually? No correct gateway, no outside world?

Post Reply