Note to Future Me: “When I can’t remember how I worked this out, or where I stored the spreadwheet, I’ll hopefully find this in a Search”
For anyone else struggling as I was to overcome the problem of getting Media Tiles to work in Chrome v111 and newer from an EXTERNAL INTERNET CONNECTION, here’s a Step-By-Step Guide on how I was able to resolve it.
The Main Things You’ll Need:
- Blue Iris Software running on a Local Server
- Stunnel running on the same Server
- A Domain Name
- SSL Security Certificates
Now, as @josh has indicated, this isn’t for the faint of heart!
I dropped in Line Item Numbers for reference. If you see a mistake or something I can improve on, please reference the Line Item Number in your reply and I’ll make the edits in the original post.
Good Luck should you need to implement this
Note: if at some time I’m able to upload a file, I’ll gladly attached the table below in PDF.
|Bread Crumbs in This Link
|The information in the Bread Crumbs Link helped me figure out what do in my situation
|The Bread Crumbs Link assumes you do NOT already have a website
|In my situation, I already had a Domain to use which already had SSL Certificates to use: So I did NOT need to create new Certificates
|If you don’t need HTTPS access from OUTSIDE of your own Local Network, you MIGHT be able to use Stunnel’s Self-Signed Certificates
|Device or Software
|Of course, your Blue Iris Software needs to be set up and running
|Enable the HTTP Port: Choose a port that does not conflict with an existing device. Example 81
|Enable the HTTP Port (Stunnel/NGROK). Choose a port that does not conflict. Example 443
|Un-select Use secure session keys and login page (this will allow SharpTools to pass the Username & Password in the Media Tile
|Should click the HELP File in Blue Iris and read up a bit on HTTPS and Stunnel for a general understanding.
|General Tab: Assure Name and Short Name are filled in meaningfully for you. Example: Driveway Camera; DriveCam
|You’ll need this later in SharpTools to build the URL
|Create a User Name and Password: example: MyUserName; MyPassword (of course use something more secure than that
|Reserve the IP of your Blue Iris Server to assure it gets the same IP every time it boots up.
|Forward the HTTP Port you chose in Blue Iris to the Mac Address (or IP) of your Blue Iris Server: Port Start/End=81; WAN Ports=81/81
|Forward the HTTPS Port you chose in Blue Iris to the Mac Address (or IP) of your Blue Iris Server: Port Start/End=443; WAN Ports=443/443
|Download the version of Stunnel that is suitable for your OS
|Install Stunnel: Upon Install, it will prompt you for some basic information
|In my case, it’s Windows 10
|Manage DNS Records
|This is located in different places on different Domain Hosts. In SiteGround, it’s under Domain/DNS Zone Editor
|This is where you’re going to create the reference from your WEBSITE back to the Blue Iris Server
|Create an A Record named: BlueIris.YOURDOMAIN.com
|IPv4 Address: Will be the IP Address of your Internet Service (see Blue Iris Settings/WebServer: It shows you the EXTERNAL IP Address)
|Select your Domain and View the Certificates
|If you DO NOT have Certificates, you’ll need to create them within your Domain Host
|In my case, SiteGround already created and maintains Let’s Encrypt Certificates
|Select your Certificate and click View. You should have THREE. Be ready to copy/paste these into new files on your computer below.
|1) Certificate (CRT)
|2) Private Key (KEY)
|3) Certificate Authority Bundle (CABUNDLE)
|C:\Program Files (x86)\Stunnel\config
|Copy the default Stunnel.PEM file to a new file named: MyDomain.pem (of course MyDomain=Your actual domain name
|Copy the default Stunnel.PEM file to a new file named: MyDomain.cafile.pem (of course MyDomain=Your actual domain name
|Open your new MyDomain.pem file; select all; Delete everything; Copy/Paste your PRIVATE KEY, followed by your CERTIFICATE into this file
|Open your new MyDomain.cafile.pem file; select all; Delete everything; Copy/Paste your Certificate Authority Bundle into this file
|Of course, save both new files above (you might have to deal with some Windows Security to edit these files).
|Make a copy of the default Stunnel.CONF file for your reference if needed in the future
|Open stunnel.conf, select all, Delete Everything; Create the following text; save (of course use whatever ports you chose instead of 443 and 81)
|; TLS front-end to a web server
accept = 443
connect = 81
CAFile = mydomain.com.cafile.pem
|Pull Down: Configuration; Reload Configuration
|You should perhaps 7 lines of text ending in Configuration successful. If not, confirm ALL of the steps above have been completed
|You might need to Pull Down File; Terminate; Then restart Stunnel
|Preliminary Test of URL for SharpTools
|In CHROME v111 and newer: Type in the following URL: https://blueiris.mydomain.com:443/mjpg/BlueIrisShortCamName/?user=XXX&pw=XXX
|Example would look like: https://blueiris.mydomain.com:443/mjpg/DriveCam/?user=MyUserName&pw=MyPassword
|IF THIS WORKS: You’ll be taken DIRECTLY to the Video Stream (without pausing to sign into Blue Iris or the Camera)
|Media Name: Driveway Camera
|Media URL: Use the SUCCESSFUL URL that you tested above in Chrome
|You SHOULD see a LIVE Thumbnail at the bottom.
|Click Update; Might have to click Update again
|Click anywhere OFF of the Create Media Dialog to exit
|Pull Down Dashboard
|Select an Existing Dashboard OR Create a New One depending upon your needs.
|Click 3 Dots; Edit; +; Media; Select your Media Tile(s); Click Done; Click Save
|You should see a LIVE view of your Camera
|Edit the Tile to your liking and needs