Product Roadmap: What's Coming Next
How ColorX Technology Turn Night into Day
Reolink App v4.41 Released
I recently acquired two rlc-410 cameras and am in the testing phase of software and hardware.I noticed on my firewall that the cameras are constantly trying to connect to 22.214.171.124; 126.96.36.199; 188.8.131.52 without me asking for it anywhere!?!?What is it about? Do you have a built-in backdoor or what?Why don't I have the ability to disable that traffic on the camera ??
Please believe that as a security company, we place importance on privacy and security to our customers. Your privacy and security are protected and we do not have a built-in backdoor.Could you please contact our support team at email@example.com to have a check? They will provide you with professional support and help you solve the problem as soon as possible.
What do these resolve to in your region?:apis.reolink.comp2p.reolink.comDo you have the UID feature enabled?
I think the UID feature is the key question. UID is what sets up the information in the Reolink "cloud" for the iPhone and Android apps to connect to cameras remotely. Every "Internet of Things" device that I own does the same thing. (The device opens a connection to the cloud for the app to be able to reach the device.)If remote access will NEVER be used, try turning off UID.
Required reading for Reolink owners. Very important considering how many of their cameras will never be patched/fixed for this.Google the advisory for: US CERT ICSA-12-019-02 Reolink P2p CamerasAs well as:CVE-2020-25169 Use of Hard Coded Cryptographic KeyandCVE-2020-25173 Cleartext transmission of Sensitive Information
Thanks,I figured out myself the reason of cameras wild behaviour and disabled UID, blocked reolink IP addressess in my firewall, and so on.What I am realy p**sed off is that the freakin' UID feature is enabled by default and there is no capital letters notice about it... and there should be..I understand that this is a simplest way for most of the users to access their cameras, but at the same time it is ahuge security breach.So, make it possible but warn the users about it and hide enable b**ton deep in the setup.It realy annulled all my excitement about the good sides of this product.dissapointed
So sorry about the issue. We will forward the issue to our engineer and we will try our best to improve the products.
Hi there! Join the Commnunity to get all the latest news, tips and more!