Excellent Security camera for your boat. Solar powered

[Bigplumbs]

Sorry Bigplumbs - a little drift to help.
This subject is actually quite relevant to your OP.

My setup is this:-
The Internet Service Provider's router forms the "Insecure LAN".
I then add into that LAN another router which creates a second LAN (the Secure LAN)
The Secure LAN has its WAN port connected one of the Insecure LAN ports.
So, for example, all the devices on the Insecure LAN would have their IP addresses in the range of 192.168.0.x
And (again for example) the devices on the Secure LAN would have their IP addresses in the range of (say) 10.0.0.x
The second (downstream router (the Secure LAN Router) has a WAN port that connects to one of the LAN ports on the ISP Router.
Something like this:-

View attachment 164722

The devices on the Secure LAN can reach the Insecure LAN but devices on the Insecure LAN can't reach the devices on the Secure LAN.

On my system, my downstream router is flashed with OpenWRT which, being Open Source, can be audited/checked to ensure that there are no nasty back doors etc.

Sorry for the thread drift but, as I say IMO, this IS relevant.

I hope that helps people - I believe this is a very important subject.

It is very informative and interesting. I think however many people or even the vast majority will find it a bit confusing and even geekish and they will just go with the simple method and accept the risks what ever those actually are. Heck I know some people who don't even have a password on then WiFi.

I am sure Alexa is listening to my every word and waiting to ambush me round the corner at any moment

I also feel that a lot of this security is just more hassle to the honest user than the actual threat posed. Rather like locking wheel nuts and codes on car radios. I hope I am never proved wrong

 

[Martxer]

It is very informative and interesting. I think however many people or even the vast majority will find it a bit confusing and even geekish and they will just go with the simple method and accept the risks what ever those actually are. Heck I know some people who don't even have a password on then WiFi.

I am sure Alexa is listening to my every word and waiting to ambush me round the corner at any moment

I also feel that a lot of this security is just more hassle to the honest user than the actual threat posed. Rather like locking wheel nuts and codes on car radios. I hope I am never proved wrong

Good luck with locking wheel nut and radio code.
Thieves stripping parked cars amid parts shortage | Autocar

 

[Hurricane]

It is very informative and interesting. I think however many people or even the vast majority will find it a bit confusing and even geekish and they will just go with the simple method and accept the risks what ever those actually are. Heck I know some people who don't even have a password on then WiFi.

I am sure Alexa is listening to my every word and waiting to ambush me round the corner at any moment

I also feel that a lot of this security is just more hassle to the honest user than the actual threat posed. Rather like locking wheel nuts and codes on car radios. I hope I am never proved wrong

When you get hacked, it will be too late to do anything.

 

[Bigplumbs]

When you get hacked, it will be too late to do anything.

I think you will agree that you are quite an IT geek and a very good one, perhaps a little obsessed also. Others are not the same. There are many risks in life we can’t rule all of them out I am afraid. Others simply don’t have either the knowledge or funds you have to deal with all this.

I am not saying you are wrong just not down there with the ’normal people’

 

[Aardee]

'normal person' here - It's of far more value to me to understand how Hurricane has secured his network (whether I follow suit or not) rather than listening to someone justifying not doing the same. Berating someone for following best practice seems a bit odd.

 

[Bigplumbs]

'normal person' here - It's of far more value to me to understand how Hurricane has secured his network (whether I follow suit or not) rather than listening to someone justifying not doing the same. Berating someone for following best practice seems a bit odd.

I am not berating anyone. That is your assumption and your statement. I have the highest admiration for Hurricane and his IT Skills especially with a fruit pie. I was simply putting the other side of the coin.

I am sure Hurricane can take my comments as intended. He has been around a while.

I am glad you think you are normal. Mind you in a room of 100 loons being a loon is normal

 

[Hurricane]

I am sure Hurricane can take my comments as intended. He has been around a while.

Of course I do.

 

[adhdan]

Im getting a ring-doorbell so it pings my phone when it picks up someone on the boat + i can shout & swear at them over the intercom while i leg it back . Would be gutting to find it ransacked

edit: when i say ring doorbell i mean the ring security camera with intercom, they do a solar charge one or a wired version, i think its a USB power which would be easy enough

 

[Hurricane]

Im getting a ring-doorbell so it pings my phone when it picks up someone on the boat + i can shout & swear at them over the intercom while i leg it back . Would be gutting to find it ransacked

edit: when i say ring doorbell i mean the ring security camera with intercom, they do a solar charge one or a wired version, i think its a USB power which would be easy enough

It doesn't have to be Ring.
You can do that kind of thing with a simple cheap camera - Reolink for example.
My Reolink cameras send me an email whenever they detect movement.
The latest Reolink cameras also include human/pet/vehicle detection along with small/large object filters.
All in a 50 quit package.

Technical
You will need to set up an SMTP server for it to send emails - a gmail account can do that.
And, of course, you need an "always on" internet connection (4G)

 

[Keith-i]

The devices on the Secure LAN can reach the Insecure LAN but devices on the Insecure LAN can't reach the devices on the Secure LAN.

This interests me as I have separated some of my network for IoT devices and wifi that visitors can use from my private ‘secure’ network. How do you bridge the two LAN’s in one direction but not the other?

My router has options for virtual LAN’s and I can bridge some of the Ethernet ports so that for example two LAN’s can share a printer but that’s a 2 way connection.

 

[Hurricane]

This interests me as I have separated some of my network for IoT devices and wifi that visitors can use from my private ‘secure’ network. How do you bridge the two LAN’s in one direction but not the other?

My router has options for virtual LAN’s and I can bridge some of the Ethernet ports so that for example two LAN’s can share a printer but that’s a 2 way connection.

You don't need to go to the extent of VLANs (Virtual LANs).
The simple solution is to incorporate a second router that you attach to your primary internet router.
The second router needs to have an upstream ethernet port that you connect to your internet router - just like you would connect any other device to your internet router.
I used to use Linksys WRT (WRT1200 and WRT3200) routers but they are silly money at the moment and I think there are better models these days.
I'm sure there are cheap routers available out there.
About a year ago, I built my own routers using mini computers with 5 ethernet ports.
I used open source software - OpenWRT that I installed onto the routers.

Back to the design (I will probably get torn apart by others who know but here we go)
Routers use NAT (Network Address Translation)
Your internet router stops computers on the internet getting to the devices on your LAN.
But your internet router lets yo connect to computers outside your LAN.
The second router in my design does the same thing.
Computers on the downstream (second) router can't be accessed from computers on the first LAN.
But computers on the downstream (second) router can access devices on the first LAN.
To give an example using IP addresses.
Your internet router might allocate and manage IP addresses from (say) 192.168.1.1 to 192.168.1.254
One of those addresses would be the upstream port of the second router.
The second router might manage a completely different range of addresses (say) 10.10.10.1 to 10.10.10.254
Computers in the first LAN don't know how to get to the downstream LAN (blocked by NAT)

So, I simply put my IoT devices on the first (upstream) LAN and the devices that I want to keep secure on the downstream LAN.

WiFi works like this as well.
The main internet router has WiFi connections in the upstream LAN
The downstream's WiFi can be considered secure.
Indeed, in my house, my WiFi SSID (WiFi names) are called Insecure (for the upstream one) and Secure (for the downstream one).
So you could give visitors your Insecure WiFi password and keep the Secure WiFi passwords for your own use (mobile phones etc).

I have duplicated this design on the boat.

I probably haven't explained this very well so, feel free yo PM me if you think I can help.

 

[adhdan]

It doesn't have to be Ring.
You can do that kind of thing with a simple cheap camera - Reolink for example.
My Reolink cameras send me an email whenever they detect movement.
The latest Reolink cameras also include human/pet/vehicle detection along with small/large object filters.
All in a 50 quit package.

Technical
You will need to set up an SMTP server for it to send emails - a gmail account can do that.
And, of course, you need an "always on" internet connection (4G)

the wired ring cam was around £90 but you get intercom for that & it runs through phone app & push notifications. Dunno about you but i check my emails a couple times a day, if my phone rings i answer it straight away

Lad i work with has a ring doorbell and it seems to work well, he often pulls his phone out and chats to a delivery guy at his door while he's in the yard at work, dont have one myself but thats what made me think of getting one on the boat.

 

[Moonstruck]

the wired ring cam was around £90 but you get intercom for that & it runs through phone app & push notifications. Dunno about you but i check my emails a couple times a day, if my phone rings i answer it straight away

Lad i work with has a ring doorbell and it seems to work well, he often pulls his phone out and chats to a delivery guy at his door while he's in the yard at work, dont have one myself but thats what made me think of getting one on the boat.

I know there are lots of good options but just for info I have a ring camera on board in the cockpit connected to the marina WiFi and it has worked perfectly for over a year now.
My sons house has unfortunately just been burgled over Christmas but the rather “dim” burglar was captured very clearly on his ring doorbell camera and thanks to some good police work is currently in custody awaiting trial for a lot of similar crimes.
Well worth the money in my opinion.

 

[Bigplumbs]

I have over 20 security cameras on my property. I like a camera

 

[Bigplumbs]

The battery and solar panel are working very well on mine. Been some poor sun over the last week but battery at 87 %

 

[Fire99]

I have over 20 security cameras on my property. I like a camera

20??? I'm guessing you don't live in a 1 bedroom apartment..or you like a lot of different angles of yourself

 

[Bigplumbs]

Here is the night vision on that cam

20??? I'm guessing you don't live in a 1 bedroom apartment..or you like a lot of different angles of yourself

I live in a bungalow with a large garden. I just like cameras and experimenting with them. If you have seem me you would know different angles are not what people would want to see

 

[Fire99]

Here is the night vision on that cam

I live in a bungalow with a large garden. I just like cameras and experimenting with them. If you have seem me you would know different angles are not what people would want to see

All jokes aside are you still recommending the iGeek solar cameras? I've done a bucket load of IT work over the years including networking but never security cameras so I'm just dipping my toe in the water with these. I fancy trying a couple of half decent ones on my boat to see how they get on..

 

[Hurricane]

I've been playing with Home Assistant for general home automation.
I'm now looking at implementing a burglar alarm into the system.
We already have an old burglar alarm but the neighbours are complaining about the false alarms that we've been getting.
So, without touching the old alarm, I have started to implement a new burglar alarm using Home Assistant.
For those who don't know, Home Assistant is open source software that you run centrally on a computer - I'm using a Raspberry Pi.
Then all these cheap IoT devices connect to the Home Assistant.
Even Alexa connects to it.
For the burglar alarm, I've been experimenting with various PIR/movement detectors but I am having considerable success using cameras to detect movement.
Specifically the Riolink E1 Pro.
That needs a bit of explanation.
Riolink recently upgraded their E1 Pro to their IPC_566SD54MP from their previous version of the E1 Pro (IPC_515SD5)
I have both versions and the earlier one is prone to false alarms.
However, the newer one (IPC_566SD54MP) has lots of new features.
It now contains image recognition software - you can specifically detect humans, pets or vehicles - and then select the size of the object before it triggers an alarm.
Each of these different targets appear in Home Assistant individually so you could get Home Assistant to react accordingly.
I believe that the more expensive Riolink cameras also have face recognition.
If anyone is interested, I use the ONVIF integration in Home Assistant rather than the Reolink one.

So, to recap, if anyone is considering buying a Reolink E1 Pro, make sure that it is one of the newer ones (IPC_566SD54MP)
Like these on Amazon
https://www.amazon.co.uk/dp/B07SV5NQNB?ref=ppx_yo2ov_dt_b_product_details&th=1

 

[Bigplumbs]

All jokes aside are you still recommending the iGeek solar cameras? I've done a bucket load of IT work over the years including networking but never security cameras so I'm just dipping my toe in the water with these. I fancy trying a couple of half decent ones on my boat to see how they get on..

I am finding them to be very good and from a use point of view and battery/solar charging excellent.

As for security concerns I know not. But if on a boat on perhaps the marina or boat internet probably not too much of a concern