1
Here is my current setup.
Internet -> Cable Modem -> Router -> PCs, Vera(Z-Wave Controller), IP Cameras
I have a PC running Blue Iris(ip camera software) that has a web server. I forward a port on my router to this web server so I can access it from outside my network via my android phone. I would like to also gain access to my vera controller from outside the network. This can easily be done forwarding another port on my router to the vera.
However I am thinking that this current method of just opening ports into my network is too unsecure.
I have read a bit about how I could put the computer/vera on a separate internal network but then I don't think it would be possible for it to communicate with the cameras? Plus I think this would protect my other computers/files but wouldn't protect from someone gaining access to my cameras/z-wave devices.
Another option I was curious about was VPN. VPN seems to encompass a lot of features beyond the scope of what I need so I am not sure what options would be best. Would something like a Zyxel USG20 accomplish what I want? Would it be overkill? Can I just use a software VPN solution of some sort?
Are the other options to accomplish this? Is it possible I am over thinking this and my current solution is fine?
I would agree. The Zyxel USG20 looks like it might be the best solution to address your concern about security, of course your concerns while valid, should not be a huge concern. Port forwarding is a valid solution to achieve your goal, with a long security password to access the devices configuration pages and content, there isn't a huge security concern by opening two ports. You have hundreds of open connection by simply using Windows ( or any operating system in this age ) a couple internet enabled devices decreases your overall security very little. – Ramhound – 2013-12-05T15:59:55.623