Anyone know much about IFTT & webhooks?

Associate
Joined
10 Jan 2009
Posts
1,753
I'm trying to set up a new applet on IFTTT to turn my lounge lights on and off
I have a system running on an arduino, that requires a HTTP get command. for example "http://192.168.1.100/?mode4"

I have widgets on my phone that work fine using the following settings,
Method: Get
URL: http://192.168.1.100/?mode4
Auth method: no auth
Response type: simple toast

And that's about it from what I can tell.

I have set up my applet in IFTTT with the same settings from what I can tell, but it fails every time. I would love to solve this :( Anyone have any idea?

IFTTT webhooks settings: https://www.dropbox.com/s/wyqrleepw9ksfay/Capture.PNG?dl=0
 
Caporegime
Joined
18 Oct 2002
Posts
26,053
The same settings as in using a private IP address? I assume IFTTT is calling this from a server based out on the internet? If so then that's your problem, but the idea of exposing that endpoint to the Internet without any authentication is an awful idea.
 
Soldato
Joined
18 Oct 2002
Posts
3,506
Location
UK
So to get this to work (bad idea as per @Caged ’s advice) I think is get a dynamic dns service running on your network and in IFTTT swap the 192. IP address with your Dynamic DNS name and on your router port forward 80 to the IP address of your Arduino.
 
Associate
OP
Joined
10 Jan 2009
Posts
1,753
Facepalm to the maximum lol. Thanks, guys, didn't even think of the fact that IFTTT would be an external service!

Security wise, what do you think? If port 80 is forwarded to the arduino does that expose my network?
 
Caporegime
Joined
18 Oct 2002
Posts
26,053
I wouldn't want your device appearing in Shodan with just a quick unauthenticated GET request being enough to mess with your lights.

Can you at least add authentication to the script running on the Arduino? At this point I'd also really strongly consider getting a router that can segregate your IoT devices.
 
Associate
OP
Joined
10 Jan 2009
Posts
1,753
No way to hide it I guess? I wouldn't know where to start with adding any auth to be honest but might be something I should look into at some point.

What kind of router would that be mate?
 
Soldato
Joined
18 Oct 2002
Posts
3,506
Location
UK
It would be a router that is VLAN aware. By tagging all your IoT devices as one VLAN you put them essentially on a different logical network to your computers and stuff you care more about being hacked. Then if you forwarded port 80 to your Arduino on this separate logical network then if it got hacked it's only your IoT devices exposed in theory.
 
Back
Top Bottom