⚫ We suggest that you change passwords regularly to reduce the risk of being guessed or cracked.
3. Set and Update Passwords Reset Information
Timely
⚫ The equipment supports password reset function. Please set up related information for password
reset in time, including the end user’s mailbox and password protection questions. If the information
changes, please modify it in time. When setting password protection questions, it is suggested not
to use those that can be easily guessed.
4. Enable Account
Lock
⚫ The account lock feature is enabled by default, and we recommend you keep it on to guarantee the
account security. If an attacker attempts to log in with the wrong password several times, the
corresponding account and the source IP address will be locked.
5. Change Default HTTP and Other Service Ports
⚫ We suggest you change default HTTP and other service ports into any set of numbers between
1024~65535, reducing the risk of outsiders being able to guess which ports you are using.
6. Enable HTTPS
⚫ We suggest you enable HTTPS, so that you visit Web service through a secure communication
channel.
7. Enable Whitelist
⚫ We suggest you enable whitelist function to prevent everyone, except those with specified IP addresses,
from accessing the system. Therefore, please be sure to add your computer’s IP address and the
accompanying equipment’s IP address to the whitelist.
8. MAC Address Binding
⚫ We recommend you to bind the IP and MAC address of the gateway to the equipment, thus reducing
the risk of ARP spoofing.
9. Assign Accounts and Privileges Reasonably
⚫ According to business and management requirements, reasonably add users and assign a minimum
set of permissions to them.
10. Disable Unnecessary Services and Choose Secure Modes
⚫ If not needed, it is recommended to turn off some services such as SNMP, SMTP, UPnP, etc., to
reduce risks.
⚫ If necessary, it is highly recommended that you use safe modes, including but not limited to the following
services:
⚫ SNMP: Choose SNMP v3, and set up strong encryption passwords and authentication passwords.
⚫ SMTP: Choose TLS to access mailbox server.
⚫ FTP: Choose SFTP and set up strong passwords.
⚫ AP hotspot: Choose WPA2-PSK encryption mode and set up strong passwords.
11. Audio and Video Encrypted Transmission
To Next Page
Loading...
