Remote Access

The Wemo devices, the CT-30 nor the Envisalink cards provide API interfaces that can be safely exposed outside of your internal network firewalls. Passwords are not sufficient protection as they do not use HTTPS (data encryption) so your id, password, and PINs will be easily visible to network/packet snoopers. Nor are those interfaces protected from automated brute force password attacks which if you check your router logs you will find occur many times daily.

The easiest way to get remote access is to use a dedicated service such as Eyezon for Envisalink (DSC), Belkin's app for Wemo, or the RadioThermostat app.

These services work by using their devices as Trojan horses into your network; the device calls out to the service and then bridges that service across your firewall to communicate. It's safe as long as you trust them, but keep in mind an unscrupulous person (perhaps a disgruntled employee) could use that bridge to gain access to your entire network and monitor or make changes to your other devices and computers. Many devices, such as low cost security cameras and "IoT" devices do this without giving any indication - many of these "IoT" cameras call back to an unknown IP, often in countries out of reach for law enforcement from your own country.

You become dependent on their cloud service which itself could be compromised, or they may simply go out of business and leave you without support. By setting up and managing your own hub/server you can avoid those pitfalls as well as run additional automation that would not be subject to loss of internet connectivity.

To enable secure remote access that you manage yourself you can use the CT-30 Server, DscServer, WemoServer, or an SSH bridge through a desktop computer, laptop, custom router, or tablet, and software such as ConnectBot and WinSSHD. Use the menu on the left to view options for your particular device.