HomeSeer Mobile Feature Requests
Here, I run a reverse proxy in front of my public Internet facing web services (NVR, Emby, HS3 web management UI, network monitor, unifi controller, HS3TOUCH Service. This allows me to only open 1 port on my firewall (443). The open port is directed to my reverse proxy haproxy hosted on PFSense. I was able to get HAproxy to proxy all HTTP connections and encrypt the connections in all the cases except HS3TOUCH.
With HS3TOUCH I was unable to proxy the connection using an HTTP/s proxy which would allow me to encrypt the traffic on port 443. In order to get it working I had setup a separate TCP forwarder the traffic coming in from the public Internet. I had to punch a separate hole in my firewall and forward it to HAproxy. I am not able to SSL Encrypt the HS3TOUCH traffic.
If the new remote management software was designed to use HTTP communications l I would be able to use HAproxy to make the service accessible on the public Internet and potentially externally SSL Encrypt the traffic (of the client app supports it).
Sent from my iPhone using Tapatalk
Here, I run a reverse proxy in front of my public Internet facing web services (NVR, Emby, HS3 web management UI, network monitor, unifi controller, HS3TOUCH Service. This allows me to only open 1 port on my firewall (443). The open port is directed to my reverse proxy haproxy hosted on PFSense. I was able to get HAproxy to proxy all HTTP connections and encrypt the connections in all the cases except HS3TOUCH.
With HS3TOUCH I was unable to proxy the connection using an HTTP/s proxy which would allow me to encrypt the traffic on port 443. In order to get it working I had setup a separate TCP forwarder the traffic coming in from the public Internet. I had to punch a separate hole in my firewall and forward it to HAproxy. I am not able to SSL Encrypt the HS3TOUCH traffic.
If the new remote management software was designed to use HTTP communications l I would be able to use HAproxy to make the service accessible on the public Internet and potentially externally SSL Encrypt the traffic (of the client app supports it).
Sent from my iPhone using Tapatalk
Comment