Hi data,
Please see the comments below:
1) Are the NeoRouter.com servers collecting information through "calling home" connections, if so, what information is being collected?
No.NR Server does not collect any information. However NR server will talk to our back-end server to sync up NR domain information if you use it. You can choose not to use NR domain and block the port. NR domain is designed to simplify the domain resolution so users do not need to remember the public IP and port of the NR server. But NR works without NR domain name as well.
2) If the NeoRouter.com servers were compromised could the intruder assume control of all our endpoints or our self-hosted server by pushing down instructions and malicious code?
No. Even NeoRouter.com is down, NR server and your private network will still working. This is our design goal. As mentioned before, NR can work independently.
Regarding connection to 7001 UDP, I'd like to explain a little bit. NR clients are able establish P2P connections with a little bit help of our backend intermediate server (7001/udp). In detail, NR clients need to determine its position in the network by a reference point in the Internet, then make decision weather and how to establish the P2P connection.
If the port gets blcoked or the server is down, NR clients just fail to create P2P connection and fall back to relay mode, the NR network is still running well.
Let us know if you have any question or concern.
Thanks, KevinZ - NeoRouter team
|