Does Broadlink devices broadcast their status?

mjg59 / python-broadlink

Python module for controlling Broadlink RM2/3 (Pro) remote controls, A1 sensor platforms and SP2/3 smartplugs

MIT License

1.38k stars 479 forks source link

Does Broadlink devices broadcast their status? #28

Open illxi opened 7 years ago

illxi commented 7 years ago

Hi, just wondering if broadlink devices broadcast their on/off status when there is a change? It would be useful for smarthome hub to sync their status faster, instead of query them every few seconds.

technicalpickles commented 7 years ago

I haven't dug in super deeply to authoritatively confirm, but I would say no. The broadlink itself doesn't have concept of devices, it just can learn packets, and then send packets you know.

The only thing I can think of is something else would need to keep track of the state, but the problem is that can get out of sync like if someone hits a manual button.

illxi commented 7 years ago

@technicalpickles Thank you for your reply. I did some google on this and found https://community.openhab.org/t/broadlink-black-bean-rm-3-mini-ir-controller-integration-in-openhab/11453 It mentions it broadcast something to 241.0.0.251. And when I press the manual button on my sp mini plug, it will also broadcast to this address (need to double check). Just wondering if we could listen to this for feedback ( sync state of the plug etc...)

pickeld commented 7 years ago

thats can be a good lead. try to route it to yourself update i captured my device sending data to 54.64.168.110 [located in japan] didnt get the packet tho...

maddox commented 7 years ago

Oof what? Its sending outbound traffic?

Has anyone done any research on these things at all to see what they're doing on our network?

I believe these RM devices are made by the company that was targeted in the huge DynDNS DDOS.

webmonger commented 7 years ago

@maddox I think that's a bit of a stretch, the vulnerability used to infect IoT devices to become part of the Mirai Bot net used open ports created on the firewalls of the networks to infect the devices.

From what I've seen and tested while using the RM2 device I see no open ports and only out bound traffic from the RM. You can check if your network has devices which have opened the ports required for Mirai at https://www.incapsula.com/mirai-scanner/

The most secure way for an IoT device to communicate with the outside world is using a secured outbound connection to a trusted end point. For more info about IoT security check out https://www.owasp.org/index.php/OWASP_Internet_of_Things_Project more specifically for manufactures https://www.owasp.org/index.php/IoT_Security_Guidance