TelVue® takes customer security very seriously and highly recommends the following to all TelVue customers:
- The HyperCaster includes a basic, user-configurable, internal firewall that will help you restrict access to the HyperCaster. The basic, internal firewall should not be considered a security firewall. The internal firewall is very useful in controlling HyperCaster access within your local network.
- Please place the HyperCaster and all TelVue products behind a strong firewall device to avoid Unauthorized Access, Denial of Service (DoS)-type attacks or other dangerous actions or activities launched from within your network or from the public Internet.
- Consult your IT department for standard networking security practices including establishing an external firewall, remote access policies, or isolating your TelVue equipment from other network devices.
- Be sure to change all default passwords and use strong passwords.
- Setup and use SSL for remote user interface access and website program guide embeds.
Security configuration requires admin-level privileges. Use this option to manage your firewall rules. To start, click on firewall. The current firewall rules are displayed.
To add a firewall rule, enter the information in the Add Rule section at the top of the page.
- Address – Enter the IP address of the machine or range. Leave this field blank to make the rule apply anywhere, that is, to any machine that tries to access your server.
- Netmask – Enter the source mask for your IP address or range, such as 255.255.0.0 or 255.0.0.0.
- Port – Choose FTP, Samba, or 3000 from the drop-down list.
- Block/Allow – To block this machine or range, click the Block radio button. To allow this machine or range to access your server, click Allow.
Click the Submit button on the right to add the rule.
To delete a firewall rule, click the Delete button to the right of that rule.
When the firewall is running, its status is STARTED. In rare cases you might want to stop the firewall briefly. For example, too many trusted machines are suddenly blocked and you need to give someone access to diagnose the problem. To stop the firewall, click the Stop button. Be sure to start the firewall again when the work is complete.
Guidelines for Firewall Rules
Adding a stream automatically adds a rule to the list.
If you have remote users, add a firewall rule so they can continue using remote access. You must be on-site to add a rule; you cannot add one remotely.
It is good practice to record your rules, such by printing the firewall screen to paper or a file and keeping it in a secure location off your network.
Do not delete the netbios rules. They are for Samba access.
In some cases you might want to return the firewall rules to the original configuration that came with your server. For example, too many individual rules seem to conflict with one another. Keep in mind that this will delete the firewall rules for active streams, remote users, etc. Record your firewall rules, then click the Restore Initial Configuration button.
To return to the configuration page, click the Config tab.