USG40, UDP behavior with TPLINK Tapo security cameras
Freshman Member
Hello,
Naturally, this question should be more targeted to TP-LINK, but I ask some information here as well.
I purchased TP-Link Tapo Security camera in my LAN network. The camera itself is working fine and connections through TP-Link cloud is working ok. When I was looking for my USG40 logs, I can see that Tapo camera is continuously trying to connect Amazon cloud in Ireland with UDP traffic and the answers are blocked. The log file is full of sequences like this:
Sessions from the TP-Link cam to Amazon:
UDP: tapo.cam.ip.address:19381 -> 54.228.218.124:3478
UDP: tapo.cam.ip.address:19382 -> 54.48.246.100:3478
UDP: tapo.cam.ip.address:19381 -> 54.48.246.100:3478
Returning traffic:
UDP: 52.48.246.100:3479 -> my.usg.ip.address:19382
UDP: 52.229.218.124:3478 -> my.usg.ip.address:19382
Don't know really what this traffic is and I don't assume it is any kind of security issue. The IP and port numbers in the returning traffic does not seem to match. I was highlighting the issues in bold. Difficult to believe, Amazon was having issues in their cloud either, so I'm a little empty handed here.
Any idea from anyone?
Regards
Kelmi
Naturally, this question should be more targeted to TP-LINK, but I ask some information here as well.
I purchased TP-Link Tapo Security camera in my LAN network. The camera itself is working fine and connections through TP-Link cloud is working ok. When I was looking for my USG40 logs, I can see that Tapo camera is continuously trying to connect Amazon cloud in Ireland with UDP traffic and the answers are blocked. The log file is full of sequences like this:
Sessions from the TP-Link cam to Amazon:
UDP: tapo.cam.ip.address:19381 -> 54.228.218.124:3478
UDP: tapo.cam.ip.address:19382 -> 54.48.246.100:3478
UDP: tapo.cam.ip.address:19381 -> 54.48.246.100:3478
Returning traffic:
UDP: 52.48.246.100:3479 -> my.usg.ip.address:19382
UDP: 52.229.218.124:3478 -> my.usg.ip.address:19382
Don't know really what this traffic is and I don't assume it is any kind of security issue. The IP and port numbers in the returning traffic does not seem to match. I was highlighting the issues in bold. Difficult to believe, Amazon was having issues in their cloud either, so I'm a little empty handed here.
Any idea from anyone?
Regards
Kelmi
0
All Replies
-
In my understanding, it could be TP-Link cloud is on AWS, so that there are the session communicate between TP-Link camera and IP address of AWS.
The camera record the data transmission to TP-Link cloud, so client can monitor image in real-time.
Since it's the UDP traffic, and the return session was initiated by Server, for exactly internal process, you probably need to check with TP-Link.0
Zyxel Employee
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 144 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 237 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 384 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight
