![]() There are many different solutions for VPN, so we cannot give any specific advice here, what to use and how to set in up. The most secure option is probably to create a VPN connection to your home network.ĭoing so will allow you to access your openHAB instance in the same way as if you were at home. # Options for Secure Remote AccessĬlearly, having remote access to your openHAB instance is something most users would not want to miss. only allow requests through the local loopback interface. If you want to limit access to only certain network interfaces, you can do so by setting the environment variable OPENHAB_HTTP_ADDRESS. It is vitally important that you MUST NOT directly expose your openHAB instance to the Internet (e.g. OpenHAB does not (yet) support restricting access through HTTP(S) for certain users - there is no authentication in place, nor is there a limitation of functionality or information that different users can access. Please ensure that you remove the old certificate and give the new certificate the same alias as the old one (otherwise, the App might still be presented the old certificate). If you wish, you can import your own certificate into this keystore. Note that on slow hardware, this certificate generation can take up to several minutes, so be patient on a first start - it is all for your own security. This process makes sure that every installation has an individual certificate, so that nobody else can falsely mimic your server. On the very first start, openHAB generates a personal (self-signed, 256-bit ECC) SSL certificate and stores it in the Jetty keystore (in $OPENHAB_USERDATA/etc/keystore). In an apt installation, you would best do this in the file /etc/default/openhab. OPENHAB_HTTPS_PORTprior to running openHAB for the first time. The default ports 80 can be changed by setting the environment variables OPENHAB_HTTP_PORT resp. In general, it is advised to use HTTPS in perefence to HTTP. OpenHAB has a built-in webserver, which listens on port 8080 for HTTP and 8443 for HTTPS requests. # Encrypted Communication # Webserver Ports Advanced Functionality and Administrative Tasks.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |