IMOU camera with Dahua NVR

I wouldn't use this firmware from 2023 because there was a serious security vulnerability in Dahua cameras and NVRs in 2024, which even led to a firmware update for end-of-life devices – like my NVR2108-I, for example. If so, then a firmware after June 2024. So in this case, version 240716. The security vulnerability should have been fixed by that one. The firmware for my NVR2108-I, which fixed the security vulnerability, is dated July 29, 2024, and with this firmware, my Imou cameras are still directly recognized by my NVR2108-I and don't need to be integrated via Onvif. Of course, I don't know if this also applies to your model.

Should fit. No guarantee! :)
Index of /Firmwares/Recorders/NVR/_NVR4xxx-EI/old

View attachment 222938

I think that vulnerability had to do with P2P server implementation, not the camera/nvr so much. SmartPSS was a problem and is why it was discontinued
 
Unfortunately, I can't remember exactly why Dahua released the update for my EOL Dahua NVR2108-I in the summer of 2024, but it was definitely related to a (serious) security vulnerability, and I believe it affected various Dahua products. I was wondering myself why Dahua was suddenly releasing new firmware for a product that had been EOL for about two years and for which there hadn't been any firmware updates in that time. :) That's why I had considered and checked whether I should or even needed to install the firmware update. Especially with Dahua products, I only do that if I have a good reason to do so. :lol:
But regardless of that, I would still install a firmware version from 2024 for the NVR4116-EI instead of the very old one from 2023. :)
 
I wouldn't use this firmware from 2023 because there was a serious security vulnerability in Dahua cameras and NVRs in 2024, which even led to a firmware update for end-of-life devices – like my NVR2108-I, for example. If so, then a firmware after June 2024. So in this case, version 240716. The security vulnerability should have been fixed by that one. The firmware for my NVR2108-I, which fixed the security vulnerability, is dated July 29, 2024, and with this firmware, my Imou cameras are still directly recognized by my NVR2108-I and don't need to be integrated via Onvif. Of course, I don't know if this also applies to your model.

Should fit. No guarantee! :)
Index of /Firmwares/Recorders/NVR/_NVR4xxx-EI/old

View attachment 222938

For 4116-EI, none of the version from 2024 worked for me. Then I tried 230621, and it was able to successfully add the Imou cameras over private protocol.
1750513141997.png
Apart from missing those security upgrades, it also lacks couple of new features. The GUI of new version has slight differences. Anyways I will evaluate to what should I keep. Thank you for the help sir!
 
none of the version from 2024 worked for me.
I find it rather unusual that none of the 2024 firmware versions could be installed as a downgrade, but the old one from 2023 could. But okay, I don't have a DHI-NVR4xxx-EI here, so I can't say anything more about that. :)
 
I struggled to add IMOU Bullet 2C 4MP to Dahua DHI-NVR2108-I2 over wifi. This camera has both wifi and ethernet and when I connected the camera with cable to the router both wifi and corded connection started to work.

Just wanted to put that here for searchability if someone else has the same problem in the future.
 
After some research, I want to share what I found: Due to a serious security flaw in the some dahua NVR, the authentication protocol has been completely changed in the new firmware, and that is why IMOU cameras do not connect. If you do not update the firmware to maintain compatibility, you should take serious security precautions:
  • Remove Port Forwarding: Instantly delete any port forwarding rules (such as ports 80, 443, 554, 8000, or 37777) on your router pointing to the NVR.
  • Disable UPnP and P2P: Turn off Universal Plug and Play (UPnP) and any proprietary cloud/P2P connection toggles inside both the router and the NVR settings.
  • Deploy a Security VLAN: Place the NVR and all IP cameras onto a dedicated Virtual Local Area Network (VLAN) completely separated from your primary home or corporate data network
  • Block Internet Access: Configure explicit firewall rules on your router or gateway to drop all outbound and inbound traffic for the NVR's specific IP address.
  • Implement Secure Remote Access: To view the cameras remotely, do not connect directly to the NVR. Force all remote connections through a local self-hosted VPN gateway (e.g., WireGuard or OpenVPN) or a secure zero-trust tunnel (e.g., Tailscale).
  • Bind IP/MAC Addresses: Restrict local management access so that only specific authorized administrative IP or MAC addresses can open the NVR's login page.
  • Disable Unused Protocols: Turn off insecure or unnecessary network services within the NVR menus, specifically ONVIF, RTSP (if unused), FTP, Telnet, SSH, and SNMP.
  • Enforce Strong Credentials: Change default administrative usernames (like admin) if the system allows it, and set a complex password exceeding 16 characters.
  • DO NOT USE port forwarding under any circumstances!!
Also keep in mind that IMOU has began to block in new firmwares 3777, 554, 80 ports forcing to buy their cloud services

Hope this help.
 
After some research, I want to share what I found: Due to a serious security flaw in the some dahua NVR, the authentication protocol has been completely changed in the new firmware, and that is why IMOU cameras do not connect. If you do not update the firmware to maintain compatibility, you should take serious security precautions:
  • Remove Port Forwarding: Instantly delete any port forwarding rules (such as ports 80, 443, 554, 8000, or 37777) on your router pointing to the NVR.
  • Disable UPnP and P2P: Turn off Universal Plug and Play (UPnP) and any proprietary cloud/P2P connection toggles inside both the router and the NVR settings.
  • Deploy a Security VLAN: Place the NVR and all IP cameras onto a dedicated Virtual Local Area Network (VLAN) completely separated from your primary home or corporate data network
  • Block Internet Access: Configure explicit firewall rules on your router or gateway to drop all outbound and inbound traffic for the NVR's specific IP address.
  • Implement Secure Remote Access: To view the cameras remotely, do not connect directly to the NVR. Force all remote connections through a local self-hosted VPN gateway (e.g., WireGuard or OpenVPN) or a secure zero-trust tunnel (e.g., Tailscale).
  • Bind IP/MAC Addresses: Restrict local management access so that only specific authorized administrative IP or MAC addresses can open the NVR's login page.
  • Disable Unused Protocols: Turn off insecure or unnecessary network services within the NVR menus, specifically ONVIF, RTSP (if unused), FTP, Telnet, SSH, and SNMP.
  • Enforce Strong Credentials: Change default administrative usernames (like admin) if the system allows it, and set a complex password exceeding 16 characters.
  • DO NOT USE port forwarding under any circumstances!!
Also keep in mind that IMOU has began to block in new firmwares 3777, 554, 80 ports forcing to buy their cloud services

Hope this help.

This is a true of any system and is what most of us have preached for years.

Btw the security flaws in Dahua NVRs and SmartPSS are connected and are related to pre-August 2024 FW

Current versions of Dahua P2P are not a problem.

Port forwarding and UPnP have ALWAYS been a security issue for ANY system and still are.
 
This is a true of any system and is what most of us have preached for years.

Btw the security flaws in Dahua NVRs and SmartPSS are connected and are related to pre-August 2024 FW

Current versions of Dahua P2P are not a problem.

Port forwarding and UPnP have ALWAYS been a security issue for ANY system and still are.
Agree.
But this thread above says that with a firmware update, IMOU cameras stop working. Its true for me too. Therefore, I have to stay on the old firmware and be careful.
Or change the entire system, but this is an expense
 
  • Like
Reactions: bigredfish