Dahua NVR 5216-16p-4K

P

pjbut

n3wb
Dec 13, 2019
6
0
UK
Hi,
New on here and know nothing about CCTV systems! Been trying to set up P2P for remote access to my Dahua NVR and 8 cameras.
Problem is when trying to add it using the iDMSS plus app.
I’m trying to scan the QR code, which it does but there is no serial number shown and my iPhone cannot connect.
The NVR is on my home LAN and I can connect to it via its IP address but I want remote access when away from my LAN.
The NVR seems to have forgotten its identity.
I’ve rebooted and factory reset etc and upgraded the firmware.
See attachments.
Any help much appreciated!
 

Attachments

  • 1F6B4F5B-35B6-4922-90DA-D68575BF814F.jpeg
    1F6B4F5B-35B6-4922-90DA-D68575BF814F.jpeg
    3 MB · Views: 31
  • 1F50A3FD-9ADE-431F-85B9-7D672FCB49DA.jpeg
    1F50A3FD-9ADE-431F-85B9-7D672FCB49DA.jpeg
    2.2 MB · Views: 33
  • 12C53BF2-EF1D-43E2-8DD7-BDEF3FF77773.jpeg
    12C53BF2-EF1D-43E2-8DD7-BDEF3FF77773.jpeg
    1.2 MB · Views: 31
pjbut said:
Hi,
New on here and know nothing about CCTV systems! Been trying to set up P2P for remote access to my Dahua NVR and 8 cameras.
Problem is when trying to add it using the iDMSS plus app.
I’m trying to scan the QR code, which it does but there is no serial number shown and my iPhone cannot connect.
The NVR is on my home LAN and I can connect to it via its IP address but I want remote access when away from my LAN.
The NVR seems to have forgotten its identity.
I’ve rebooted and factory reset etc and upgraded the firmware.
See attachments.
Any help much appreciated!
Click to expand...

Welcome @pjbut

Please see the VPN notes. It is better to run a VPN server on your router than to use P2P or UPnP which typically results in a hole in your internet router.
 
pjbut said:
Hi,
New on here and know nothing about CCTV systems! Been trying to set up P2P for remote access to my Dahua NVR and 8 cameras.
Problem is when trying to add it using the iDMSS plus app.
I’m trying to scan the QR code, which it does but there is no serial number shown and my iPhone cannot connect.
The NVR is on my home LAN and I can connect to it via its IP address but I want remote access when away from my LAN.
The NVR seems to have forgotten its identity.
I’ve rebooted and factory reset etc and upgraded the firmware.
See attachments.
Any help much appreciated!
Click to expand...

Looking at the screen you have zero’s for a serial number. That’s not right. Have you tried the S/N from the box you posted? Your firmware isn’t even from this year unless I’m misreading it, it’s from 2015.


Sent from my iPad using Tapatalk
 
  • Like
Reactions: c hris527
msnow said:
Looking at the screen you have zero’s for a serial number. That’s not right. Have you tried the S/N from the box you posted? Your firmware isn’t even from this year unless I’m misreading it, it’s from 2015.


Sent from my iPad using Tapatalk
Click to expand...
Yea Good catch on the firmware date, does seem rather strange, more that likely not stock firmware.
 
I’ve upgraded to what I think is latest firmware and still same problem.
 

Attachments

  • 8EEA2BBD-A608-4B96-9E72-031E87C442C5.jpeg
    8EEA2BBD-A608-4B96-9E72-031E87C442C5.jpeg
    3.3 MB · Views: 15
pjbut said:
I’ve upgraded to what I think is latest firmware and still same problem.
Click to expand...

Did you get your DVR from an authorized dealer? I would go to whoever you bought it from for support because something is wrong with those zeroes for the S/N.


Sent from my iPad using Tapatalk
 
Yes it was set up by a professional installer but not by me. It was done by the previous owner of our new house. We’ve previously had it working, this new zero serial number situation has only recently happened.
 
pjbut said:
Yes it was set up by a professional installer but not by me. It was done by the previous owner of our new house. We’ve previously had it working, this new zero serial number situation has only recently happened.
Click to expand...

Does it fail on the 15 digit S/N that you posted from the back of the unit?


Sent from my iPad using Tapatalk
 
Yes I’ve tried entering the serial number from the back of the machine and it still fails to connect.
 
looney2ns said:
You don't want to use the P2P qr method anyway, security risk.
See here: VPN Primer for Noobs | IP Cam Talk
And here: How to Secure Your Network (Don't Get Hacked!) | IP Cam Talk
Click to expand...

Those articles don’t say anything about point to point just UPnP and port forwarding. Peer to peer and point to point are different in the sense that this just makes firmware automation/updating from Dahua possible. I would need to see an article from a recognized security researcher on Dahua’s implementation before I’d worry about this.


Sent from my iPad using Tapatalk
 
pjbut said:
Yes I’ve tried entering the serial number from the back of the machine and it still fails to connect.
Click to expand...

I’m running out of ideas but have you considered either calling Dahua (you are a legit owner) or having your dealer set it up for you? I think you are right to want this managed by an NVR appliance rather than the BI/PC route since it’s a renter.


Sent from my iPad using Tapatalk
 
msnow said:
Those articles don’t say anything about point to point just UPnP and port forwarding. Peer to peer and point to point are different in the sense that this just makes firmware automation/updating from Dahua possible. I would need to see an article from a recognized security researcher on Dahua’s implementation before I’d worry about this.


Sent from my iPad using Tapatalk
Click to expand...

Hi @msnow

Kerbs has piles of related articles on Dahua:

From the history of "caring" about security - well IT security of their devices - both Hikvision and Dahua has shown themselves to be less caring....
 
  • Like
Reactions: looney2ns
mat200 said:
Hi @msnow

Kerbs has piles of related articles on Dahua:

From the history of "caring" about security - well IT security of their devices - both Hikvision and Dahua has shown themselves to be less caring....
Click to expand...

Well, while Krebs is a legit IT security journalist and his reporting is pretty spot on he’s not a researcher and I have subscribed to his blogs for years, still a good find. BUT, to your point about caring, he says this about Dahua:

“Since then, two of those firms — Huawei and *Dahua* — have taken steps to increase the security of their IoT products out-of-the-box.” So good for Dahua.

Also, you should have mentioned that P2P access from the manufacturer or anyone outside not only requires the UID serial but *also* a valid userID and password. So, people should always change the defaults for those and my NVR *required* me to change it but having those two access controls in front of the NVR is good protection.

As a security professional myself I don’t want to criticize your enthusiasm and generally people need to pay more attention to security than they do however, in this case, P2P appears to have the necessary mitigation.


Sent from my iPad using Tapatalk
 
msnow said:
Well, while Krebs is a legit IT security journalist and his reporting is pretty spot on he’s not a researcher and I have subscribed to his blogs for years, still a good find. BUT, to your point about caring, he says this about Dahua:

“Since then, two of those firms — Huawei and *Dahua* — have taken steps to increase the security of their IoT products out-of-the-box.” So good for Dahua.

Also, you should have mentioned that P2P access from the manufacturer or anyone outside not only requires the UID serial but *also* a valid userID and password. So, people should always change the defaults for those and my NVR *required* me to change it but having those two access controls in front of the NVR is good protection.

As a security professional myself I don’t want to criticize your enthusiasm and generally people need to pay more attention to security than they do however, in this case, P2P appears to have the necessary mitigation.


Sent from my iPad using Tapatalk
Click to expand...

Hi @msnow

If you've been following security information for awhile you'll should all of this IoT / security camera stuff has and is being constantly compromised.

Dahua and Hikvision have gotten better.. but that's like saying a street hooker has one less STD.
 
  • Like
  • Haha
Reactions: c hris527 and looney2ns
mat200 said:
Hi @msnow

If you've been following security information for awhile you'll should all of this IoT / security camera stuff has and is being constantly compromised.

Dahua and Hikvision have gotten better.. but that's like saying a street hooker has one less STD.
Click to expand...

lol. Yes but no need for overkill.


Sent from my iPhone using Tapatalk
 
You must log in or register to reply here.
Top Bottom