Architecture
A simple model: isolate cameras (TB1), ingest internally, expose only secured restreams + governance.
High-level flow
- Cameras live on a private camera LAN (no direct user access).
- OpenNVR ingests RTSP/ONVIF streams internally.
- OpenNVR restreams through a secure gateway with access control.
- AI adapters run against ingested streams under policy control (Enterprise).
Trust boundaries
Separate camera network from user/admin networks. Treat cameras as untrusted endpoints.
Secure restream
Users consume streams from OpenNVR, not from cameras. This prevents “direct camera exposure” failures.
Observability
Logs and metrics are first-class. Enterprise adds immutable audit trails and compliance exports.