User's Manual

ManualsBrandsHanwha Techwin ManualsElectronicsNETWORK VIDEO RECORDER

IP Filtering

You can prepare the list of IP addresses to allow or block access to a specific IP address.

• Filtering Type :

Deny : If you select reject, access to the registered IP address will be limited.

Allow : If you choose permit, then they can only access the registered IP addresses.

• Use : Select the checkbox for the IP address that will use IP filtering.

• IP Address : Enter the IP address for filtering.

• Filtering Range : If you enter an IP address or prefix, then the range of IP addresses blocked or permitted will

be displayed.

` If a camera's IP address is not included in the Permit list or is in the Reject list access to it will be rejected.

SSL

You can select a security connection system or install public certificates.

• Secured Connection System : You can select a type of security connection system.

HTTP (Non-secured connection)

HTTPS (Secured connection using unique certificate)

HTTPS (Secured connection using public certificate)

` If the NVR device is connected to the external internet or installed in an environment with high priority for security, making a

secure connection is recommended.

• Install Public Certificate : You can scan and register public certificates to be installed.

If you want to use a certificate, you need to install a certificate file along with and an encryption file.

` The <HTTPS (Secured connection using public certificate)> menu can be selected only if there is a registered public

certificate.

802.1x

When connecting to a network, you can select whether to use the 802.1x protocol and install a corresponding

certificate.

802.1x is a certificate system for the server and the client. It can guarantee robust performance against hacking

into the Tx/Rx network data, virus or information leaks.

By using this system, you can block access from a client who is not certified and only allow communication to

certified users and thus increase the level of security.

• EAPOL Version : Select the EAPOL version to be used as protocol.

` Some switch hubs will not operate if you set them to version <2>. Select version <1>.

• ID : Enter the ID provided by the RADIUS server administrator.

` If the entered ID does not match the ID of the client's certificate, it won't be processed properly.

• Password : Enter the password provided by the RADIUS server administrator.

` If the password you entered does not match that of the client's private key, it won't be processed properly.

• Certificates : Search for a device. Click on <Rescan> to search for a device again.

• CA Certificate : Select this only if your public certificate includes the public key.

• Client Certificate : Select if the public certificate includes a client's authentication key.

• Client Private Key : Select it if the public certificate contains the client private key.

` For successful implementation of the 802.1x operating environment, the administrator must use the RADIUS server.

In addition, the switch hub connected to the server must be a device that supports 802.1x.

` If the time setting of the RADIUS server, the switch hub and an NVR device do not match, communication between them can

fail.

` If a password is assigned to the client's private key, the server administrator should confirm the ID and password.

The ID and password allow up to 30 characters each. (But it only supports letters, numbers and special characters ("-", "_",

"." 3 types) only.

Accessing non password-protected files is allowed without entering a password.

` The 802.1x protocol adopted by the NVR is EAP-TLS.

` You need to install all three certificates to use 802.1x.

` <Enable IEEE 802.1x> When this option is deselected, the disconnection may not work depending on the settings of the

switch hub connected. Configure settings to let switch hub update the authentication at regular intervals.

46_ menu setup

menu setup