My home network includes a CCTV DVR and file server behind a Vigor 2760 router. A few weeks ago someone hacked in to the DVR and changed the settings. I had opened several ports in the router to enable remote access and it turns out the DVR had a serious security flaw - a hard coded root password :o .

I have now replaced the DVR with a better one and installed a VPN server on the router. I access the LAN with the Android SmartVPN client through an SSL tunnel authenticated by username and a strong password. The only open port on the router now is 443.

Have I done enough to secure my LAN from unauthorised remote access? If not, are there any firewall rules I can use to ensure that my phone is the only device that can access it?

Mike

That's probably all that is practical...assuming you don't visit dodgy web sites or open dodgy emails and get a trojan...

(and you've used decent passwords!)

Thank you for that. Yes I use 15 character random passwords for everything now.