1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Anyone know much about IFTT & webhooks?

Discussion in 'Networks & Internet Connectivity' started by dtokez, 24 Feb 2019.

Tags:
  1. dtokez

    Wise Guy

    Joined: 10 Jan 2009

    Posts: 1,594

    I'm trying to set up a new applet on IFTTT to turn my lounge lights on and off
    I have a system running on an arduino, that requires a HTTP get command. for example "http://192.168.1.100/?mode4"

    I have widgets on my phone that work fine using the following settings,
    Method: Get
    URL: http://192.168.1.100/?mode4
    Auth method: no auth
    Response type: simple toast

    And that's about it from what I can tell.

    I have set up my applet in IFTTT with the same settings from what I can tell, but it fails every time. I would love to solve this :( Anyone have any idea?

    IFTTT webhooks settings: https://www.dropbox.com/s/wyqrleepw9ksfay/Capture.PNG?dl=0
     
  2. Caged

    Capodecina

    Joined: 18 Oct 2002

    Posts: 24,233

    The same settings as in using a private IP address? I assume IFTTT is calling this from a server based out on the internet? If so then that's your problem, but the idea of exposing that endpoint to the Internet without any authentication is an awful idea.
     
  3. BigT

    Mobster

    Joined: 18 Oct 2002

    Posts: 3,257

    Location: UK

    So to get this to work (bad idea as per @Caged ’s advice) I think is get a dynamic dns service running on your network and in IFTTT swap the 192. IP address with your Dynamic DNS name and on your router port forward 80 to the IP address of your Arduino.
     
  4. dtokez

    Wise Guy

    Joined: 10 Jan 2009

    Posts: 1,594

    Facepalm to the maximum lol. Thanks, guys, didn't even think of the fact that IFTTT would be an external service!

    Security wise, what do you think? If port 80 is forwarded to the arduino does that expose my network?
     
  5. Caged

    Capodecina

    Joined: 18 Oct 2002

    Posts: 24,233

    I wouldn't want your device appearing in Shodan with just a quick unauthenticated GET request being enough to mess with your lights.

    Can you at least add authentication to the script running on the Arduino? At this point I'd also really strongly consider getting a router that can segregate your IoT devices.
     
  6. dtokez

    Wise Guy

    Joined: 10 Jan 2009

    Posts: 1,594

    No way to hide it I guess? I wouldn't know where to start with adding any auth to be honest but might be something I should look into at some point.

    What kind of router would that be mate?
     
  7. BigT

    Mobster

    Joined: 18 Oct 2002

    Posts: 3,257

    Location: UK

    It would be a router that is VLAN aware. By tagging all your IoT devices as one VLAN you put them essentially on a different logical network to your computers and stuff you care more about being hacked. Then if you forwarded port 80 to your Arduino on this separate logical network then if it got hacked it's only your IoT devices exposed in theory.