Smart Home Community > Tapo Smart Camera > Cannot upgrade firmware on Tapo cameras when using IPfire firewall.
< Tapo Smart Camera

Cannot upgrade firmware on Tapo cameras when using IPfire firewall.

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Cannot upgrade firmware on Tapo cameras when using IPfire firewall.

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Cannot upgrade firmware on Tapo cameras when using IPfire firewall.
Cannot upgrade firmware on Tapo cameras when using IPfire firewall.
2025-03-10 23:36:15 - last edited 2025-03-26 12:09:00
Model: Tapo C320WS  
Hardware Version: V2
Firmware Version: 1.2.1

I cannot update the firmware on any of my Tapo cameras (c500; c320ws)  with the IPFire firewall protecting my network.  IF I setup a 2nd network bypassing the firewall altogether the firmware update process with my Android phone works.  As you can imagine this is a huge pain in the  a$$.  Removing cameras in question from one network and installing them on the other, connecting phone etc; disconnecting putting cameras back etc.  

 

So my question is are there ports that I can expose (temporarily of course) on my IPfire firewall that will enable the firmware process to occur?  Something must be getting blocked and I can't at this point find out what it is.

My network configuration when the firmware update fails consists of:             Internet<----------> Ipfire firewall<----------> Deco BE85 mesh router<----------> Tapo cameras;Android phone device.  The Android tapo app gives a non-descript update failed message.

My network configuration when it succeeds consists of:                                  Internet<----------> AX11000 Tp link router<----------> Tapo cameras;Android phone device.  

I have not tried putting the IPfire firewall between the Internet and the AX11000 router to see if I can eliminate the Deco BE85 router as the problem.  This is just way to much disruption to my network.

 

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:Cannot upgrade firmware on Tapo cameras when using IPfire firewall.-Solution
2025-03-13 06:29:12 - last edited 2025-03-26 12:09:00

  @Duck_Soup 

Hi, 

Thank you the information provided. This problem may be because the camera uses an http link when downloading the firmware. IPFire firewall thinks the link is not secure enough and blocks it, resulting in the camera being unable to upgrade successfully when connected to the Deco network. We have already pushed the latest firmware to your Tapo C320W and C500, you can connect them to another Wi-Fi network to update the firmware. After they are successfully upgraded, if the new firmware is detected in the future, the camera will use the https link to download firmware, and the upgrade failure won't occur again.
Best Regards

>> What to do if the Detection feature is not working on the TP-Link Camera. >> Enhance Video Clarity: Troubleshooting Tips for Improving Camera Video Quality. >> General questions about the TP-Link camera's Pan & Tilt feature.
Recommended Solution
  0  
  0  
#4
Options
5 Reply
Re:Cannot upgrade firmware on Tapo cameras when using IPfire firewall.
2025-03-12 06:13:49

  @Duck_Soup 

Hi, 
Please help confirm the following information for the reported issue.
  1. When the cameras are connected to the Deco network, can you control them locally and remotely with the Tapo app?
  2. Please send me(@Solla-topee) the two cameras' MAC addresses via a private message.
Best Regards

>> What to do if the Detection feature is not working on the TP-Link Camera. >> Enhance Video Clarity: Troubleshooting Tips for Improving Camera Video Quality. >> General questions about the TP-Link camera's Pan & Tilt feature.
  0  
  0  
#2
Options
Re:Cannot upgrade firmware on Tapo cameras when using IPfire firewall.
2025-03-12 13:14:27 - last edited 2025-03-12 15:00:00

  @Duck_Soup 

 

Thanks for replying. Your question:

 1. When the cameras are connected to the Deco network, can you control them locally and remotely with the Tapo app?

 

Yes. Can control and view cameras with the Android Tapo app locally and remotely when connected to  the Deco BE85 router (everything works as it should except the firmware update).

 

I will message you with the screen shots from the tapo app as you requested.

 

--Duck_Soup

  0  
  0  
#3
Options
Re:Cannot upgrade firmware on Tapo cameras when using IPfire firewall.-Solution
2025-03-13 06:29:12 - last edited 2025-03-26 12:09:00

  @Duck_Soup 

Hi, 

Thank you the information provided. This problem may be because the camera uses an http link when downloading the firmware. IPFire firewall thinks the link is not secure enough and blocks it, resulting in the camera being unable to upgrade successfully when connected to the Deco network. We have already pushed the latest firmware to your Tapo C320W and C500, you can connect them to another Wi-Fi network to update the firmware. After they are successfully upgraded, if the new firmware is detected in the future, the camera will use the https link to download firmware, and the upgrade failure won't occur again.
Best Regards

>> What to do if the Detection feature is not working on the TP-Link Camera. >> Enhance Video Clarity: Troubleshooting Tips for Improving Camera Video Quality. >> General questions about the TP-Link camera's Pan & Tilt feature.
Recommended Solution
  0  
  0  
#4
Options
Re:Cannot upgrade firmware on Tapo cameras when using IPfire firewall.
2025-03-13 14:56:54

  @Solla-topee 

 

Didn't work. Firmware update still failed.

 

My observations.  Why is the tp-link camera using an unsecure http link? This is very unsafe and NOT recommended under any circumstances.  Does Tp-link think this is best practice??

 

After observing this broken tp-link firmware update process I am very glad that I have a firewall protecting my network from the kind of weak and missing security tp-link cameras are providing.

 

My goal is to keep my network secure and safe from possible breaches from bad implementations like tp-link cameras...as a result I am replacing these cameras with another Vendors product THAT DOES understand these issues.

 

I will be sharing these findings with other IOT groups that take security seriously.

 

--------------

 

  0  
  0  
#5
Options
Re:Cannot upgrade firmware on Tapo cameras when using IPfire firewall.
2025-03-14 07:41:31

  @Duck_Soup 

Hi,
The latest firmware of the Tapo C320WS and new firmware we pushed to the Tapo C500 has solved the issue and they will use the https link to download firmware.

 

Since the two cameras are using the old firmware now, it's required to reset the two cameras and reconfigure them to connect to another Wi-Fi network that bypasses the IPFire firewall, then they can update the firmware successfully. And then the future firmware updates won't be blocked even if the cameras connect to the IPFire firewall.

 

Best Regards

>> What to do if the Detection feature is not working on the TP-Link Camera. >> Enhance Video Clarity: Troubleshooting Tips for Improving Camera Video Quality. >> General questions about the TP-Link camera's Pan & Tilt feature.
  0  
  0  
#6
Options

Information

Helpful: 0

Views: 531

Replies: 5

About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.