Proscan: Risks with port forwarding?

[acredo]

Question regarding Proscan & network vulnerability when using port forwarding.
I have proscan running on a dedicated laptop with my SDS200 and the laptop connected to my network.
I used port forwarding to open port 5000 on my router and I'm able to access the scanner from my cell phone and anywhere outside my home network.
It is working great and proscan is an awesome program!

My question is regarding network security with port 5000 being open.
I have my audio stream and control mode password protected on proscan.
Is there risk here of hack attempts on my laptop or home network?
Does proscan have any type of protection against this?

Thanks for any replies, or suggestions. This forum is an awesome tool and the members here at radioreference are a knowledgeable crew!

 

[ProScan]

Perhaps the network gurus may want to chime in but this is my two cents worth.

Does proscan have any type of protection against this?

It would be impossible for ProScan or any server software to guard against this. What if ProScan is not running and the router is still forwarding a port? That's the role of internet security programs. Perhaps search online for "risk router port forwarding" to get various view points.

 

[belvdr]

Having any port forwarded can potentially lead to issues, regardless of software. All software has vulnerabilities, where publicly disclosed or not.

For example, let's say you port forward a program and that program is running as an administrator on Windows or root on Linux. If the program is somehow exploited, it's possible an attacker can execute programs or scripts as the user running the software. It's also possible for an attacker to use this as a gateway to your home network and attack other things.

Given how many consumers run one flat network, port forwarding is generally not a good idea. However, that's something every person must evaluate the risks on and act accordingly.

 

[iMONITOR]

Exactly, anytime you forward a port it's like leaving the patio door unlocked while you're on vacation.

 

[acredo]

Thanks for the replies, much appreciated. I fully recognize that this is not a Proscan issue. Certainly didn't mean to insinuate that. Thanks again!

 

[iMONITOR]

Thanks for the replies, much appreciated. I fully recognize that this is not a Proscan issue. Certainly didn't mean to insinuate that. Thanks again!

You can run ProScan on your PC/laptop like you normally would if you were actually there. Then you can safely access your computer remotely using something like TeamViewer. TeamViewer is free for personal use.

TeamViewer — The Remote Connectivity Software

Remote desktop access solutions by TeamViewer: Connect to remote computers, provide remote support, and collaborate online. Free for personal use!

www.teamviewer.com

 

[acredo]

Thanks, great idea as I plan to still use proscan on my home network. For remote monitoring, I'll give the teamviewer remote access a try.

 

[belvdr]

Thanks for the replies, much appreciated. I fully recognize that this is not a Proscan issue. Certainly didn't mean to insinuate that. Thanks again!

For certain. I didn't mean to imply that.

 

[buddrousa]

Why not put the proscan server on a vlan that has only internet rights and can not see your home network. Works good for me.

 

[belvdr]

Why not put the proscan server on a vlan that has only internet rights and can not see your home network. Works good for me.

That's the proper approach. However, most people don't have the switch or a router that supports VLANs or multiple ports.

 

[a417]

See if your endpoint offers a VPN server solution. Many of them do.

As many prior have pointed it, it's not Proscan that's the big issue on an open port - it's the open port.

 

[N4NWD]

and I'm able to access the scanner from my cell phone and anywhere outside my home network.

Curious - I have SDS100 connected to laptop with ProScan (paid version) RSOIP and connect to it via my Surface Pro X with the full version using my second key. Is there a way to also access via my Android Phone? I am not set up for Broadcastify or any other streaming services - just my personal use. Just Cruious.

Thanks,

 

[ProScan]

Curious - I have SDS100 connected to laptop with ProScan (paid version) RSOIP and connect to it via my Surface Pro X with the full version using my second key. Is there a way to also access via my Android Phone? I am not set up for Broadcastify or any other streaming services - just my personal use. Just Cruious.

Thanks,

Yes, use the Web Server feature. That way you can use the browser on your phone to access the Web Server.

 

[N4NWD]

Thank you for jogging my memory (yeah - I forgot - my memory failed me). I think I opted away from the Web Server because of the Delay. I have a 2-way radio and I like to use the Scanner App for the UID Alias (I have an extensive list) - plus the radio does not have all the channels that I want to listen to, but when I tried having the radio on at the same time of the web server - the delays were driving my OCD off the charts.

Thanks for the quick reply.

I love the Software. There are some enhancements I would love to see, and one day I will get around to putting them in an email and going through the proper channels with those suggestions, but the Software is Great as is.

Would also LOVE to see an Android and/or Linux (Raspberry Pi) version

 

[ProScan]

Thank you for jogging my memory (yeah - I forgot - my memory failed me). I think I opted away from the Web Server because of the Delay. I have a 2-way radio and I like to use the Scanner App for the UID Alias (I have an extensive list) - plus the radio does not have all the channels that I want to listen to, but when I tried having the radio on at the same time of the web server - the delays were driving my OCD off the charts.

Thanks for the quick reply.

I love the Software. There are some enhancements I would love to see, and one day I will get around to putting them in an email and going through the proper channels with those suggestions, but the Software is Great as is.

Would also LOVE to see an Android and/or Linux (Raspberry Pi) version

Find a Android media player with an adjustable network buffer. I use WinAmp. Latency is about 3 or 4 seconds.
Also the web page has a Display & Metadata Delay option that will make the audio & display appear in sync.

 

[N4NWD]

OK Thanks