I just installed a new firewall appliance on my network and I have been using wyse cams for some time now. According to my appliance, my cams are uploading data to a place in hong kong/china which comes back to someplace called hkserverworks.com (see attached). has anyone else noticed this? is there anything i should know? Google says wyze absolutely does not send data to china so now I am curious and ready to dump all of my cams. Thanks to anyone who can clarify this.
1 Like
Hi @MyDog8em and welcome back after 2 yrs.
Destination Port 10001 is defined as P2P streaming connection for Local live streaming over WiFi.
I’ve also monitor the traffic only see communication to the Amazon cloud servers. Example: 54.148.1.165.165 44.223.123.97 (specific IP may very by location).
Double check firmware and resolve local IP for the device called “WizeLabsInc”
Here is a list of ports.
All cams firmware is up to date as of today, come to think of it this happened after i updated all my cam firmware and Yes, i get that but the IP shown in the screenshot is in china. does this mean the cams are
P2P streaming to china? I know all the local ip’s and mac addresses for all my cams. this is the 1st i have seen uploading to china since the appliance install (9/30) to date. the screenshot is dated today 10/7 between the times shown. WyzeLabsInc is the name on my appliance, all my cams come to that name in accordance with the appliance. i have 8x cams. each shown is all 8, plus multiple uploads by specific, different ones.
UPDATE: After further investigation, 2C-AA-8E-10-3B-06 is a wyze cam v2 and seems to be the only cam that uploaded to the china site. the firmware ver matches the other v2 cams i have of 4.9.6.193. sorry for any confusion.
2 Likes
that IP is mentioned in this thread:
3 Likes
That’s ThroughTek, this happens now and again. Let support know and they can address it. If it concerns you block Chinese addresses on your Firewall.
While Wyze went to the trouble of trying to block non-US nodes I think the fact remains that the P2P service is still run by ThroughTek using their network. So we pretty much have to either accept that or not?
You could point your router to a diferent DNS server. How about https://www.duckdns.org/
To a degree. If you block the Chinese IP range it seems to have no ill effect. The cameras fail over to another address if those are unreachable. At least that is what seems to happen. If you call support they have some way of moving your MAC address to a different server block.
4 Likes
Thanks rbruce, that is useful info. If someone cared enough they could go ahead and implement a block at their router or firewall and things would still work.
2 Likes
Hi @MyDog8em, thanks for providing the detail info. The traffic pattern matches ThroughTek streaming pattern however all servers should be in US or Canada. We will check with ThroughTek on this. Expect to have an update early next week. Thanks!
4 Likes
Somebody please correct me if needed but these servers by design never see even a byte of your video traffic, right? They’re just for call setup between phone and camera.
1 Like
That’s correct
2 Likes
Update - I contacted ThroughTek for the questioned IP. It is a global server for ThroughTek. There was a mis-configuration on their side which put a very small number of Wyze devices under their global servers. We have talked to them and asked them to check all Wyze servers are in US or Canada. They confirmed that they have changed configuration to have all Wyze devices using dedicated Wyze servers in US or Canada.
On our side, we have missed double checking their server configurations. It is not very easy based on current configuration. We will work internally to find a way to prevent this from happening again. Thanks!
16 Likes
Thank you for your time and efforts on this.
1 Like
Good response, thank you.
1 Like
That’s Extreme Ownership and why I love Wyze! Thanks Team!
3 Likes
@MyDog8em, thanks for pointing this out. Curious at to what FW appliance you have installed for traffic monitoring?
I use a Firewalla Blue device. Seems to work really well.
2 Likes
Cool, thank you. See their ads for the “gold” version all the time (a bit pricey). Have you seen any speed degradation?