Upload File

secure high-availability remote access to industrial … · wcdm/umts: 850/900/1900/2100 mhz...

  • Home
  • Documents
  • Secure High-Availability Remote Access to Industrial … · WCDM/UMTS: 850/900/1900/2100 MHz EDGE/GPRS: ... LED Signaling and I/Os • 4 LEDs for signalling Power, Status, 3G/ GPRS
3
The SiteManager™ itself and its moni- tored devices are all centrally managed and accessible from the GateManager server. Built-in serial, USB and Ethernet access agents for most PLC, HMI and Servo vendors in the market, as well as agent templates for video, voice, PC and Scada systems (including optional support for Siemens PPI and MPI) Built-in Setup Assistant for intuitive first time network setup. Automatic discovery of Ethernet and USB devices for easy single click con- figuration All configuration, firmware and feature upgrades are done remotely through an intuitive web GUI accessible locally or via the GateManager. Firewall friendly communication,- uses standard web protocols, and only inside- out. No requirement for public or fixed IP address. SiteManager is by default DHCP enabled. No need to re-configure the PLC with gateway address etc. Can operate as carrier of alarms, email alerts etc. between devices and central logging servers over the Internet. Built-in firewall, AES and x.509 cer- tificatesfor and security certified in accordance with leading standards methodologies specified by NIST, ISA/IEC, BSI and ISECOM. User-configurable email alerts for status monitoring and configurable I/O ports for custom alarms. 3G/GPRS internet access via integrated module WiFi support via external USB adapter, configurable for either Client mode (Internet access) or AP mode (devices access) Automatic failover between Ethernet, WiFi and Broadband for uninterrupted internet access. Includes Secomea EasyTunnel Client support for allowing easy enrollment in a standard VPN network. LogTunnel support allowing static tunnel connetions to a central SCADA system, which operates concurrently with other services such as on-demand access and VPN. Unique built-in trouble shooting function- ality for automatic discovery of network- ing conflicts and configuration issues. Remote Management - SiteManager™ 1139 and 3339 Secure High-Availability Remote Access to Industrial Devices OPTIONAL SiteManager™ is an off-the-shelf component in the Secomea Industrial Communications Solution program that in combination with Secomea’s GateManager™ and LinkManager™ ensures unified, uninterrupted and secure access to remote devices. SiteManager™ is security certified according to the highest industry standards of the industry, performed by the independent security or- ganisation ProtectEM GmbH in Germany in close cooperation with the Deggendorf Institute of Technology. The SiteManager™ 1139 and 3339 are robust DIN mountable appliances that installs in the machine control panel, and provides remote access for on-demand servicing and programming of equipment, concurrently with static connections for monitoring and logging. The SiteManager™ 1139 and 3339 provide remote access to all types of industrial equipment via Ethernet,- Serial- or USB, using the equipment’s native protocols (e.g. Modbus, PROFINET, EtherCAT; EtherNet/IP etc.) The SiteManager™ 1139 and 3339 establish access to the Internet through the firewall of the existing wired network infrastructure, or wirelessly by the integrated 3G/GPRS modem. Additionally the SiteManager supports Secomea LogTunnel in both Client and Master mode. LogTunnel allows you by drag’n’drop to establish a complete static infrastructure for linking a central SCADA system to remote devices independent of IP subnets, firewalls etc.

Upload: dangnhi

Post on 25-Aug-2018

230 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Secure High-Availability Remote Access to Industrial … · WCDM/UMTS: 850/900/1900/2100 MHz EDGE/GPRS: ... LED Signaling and I/Os • 4 LEDs for signalling Power, Status, 3G/ GPRS

• TheSiteManager™itselfanditsmoni-toreddevicesareallcentrallymanagedandaccessiblefromtheGateManagerserver.

• Built-inserial,USBandEthernetaccessagentsformostPLC,HMIandServovendorsinthemarket,aswellasagenttemplatesforvideo,voice,PCandScadasystems(includingoptionalsupportforSiemensPPIandMPI)

• Built-inSetupAssistantforintuitivefirsttimenetworksetup.

• AutomaticdiscoveryofEthernetandUSBdevicesforeasysingleclickcon-figuration

• Allconfiguration,firmwareandfeatureupgradesaredoneremotelythroughanintuitivewebGUIaccessiblelocallyorviatheGateManager.

• Firewallfriendlycommunication,-usesstandardwebprotocols,andonlyinside-out.

• NorequirementforpublicorfixedIPaddress.SiteManagerisbydefaultDHCPenabled.Noneedtore-configurethePLCwithgatewayaddressetc.

• Canoperateascarrierofalarms,emailalertsetc.betweendevicesandcentralloggingserversovertheInternet.

• Built-infirewall,AESandx.509cer-tificatesforandsecuritycertifiedinaccordancewithleadingstandardsmethodologiesspecifiedbyNIST,ISA/IEC,BSIandISECOM.

• User-configurableemailalertsforstatusmonitoringandconfigurableI/Oportsforcustomalarms.

• 3G/GPRSinternetaccessviaintegratedmodule

• WiFisupportviaexternalUSBadapter,configurableforeitherClientmode(Internetaccess)orAPmode(devicesaccess)

• AutomaticfailoverbetweenEthernet,WiFiandBroadbandforuninterruptedinternetaccess.

• IncludesSecomeaEasyTunnelClientsupportforallowingeasyenrollmentinastandardVPNnetwork.

• LogTunnelsupportallowingstatictunnelconnetionstoacentralSCADAsystem,whichoperatesconcurrentlywithotherservicessuchason-demandaccessandVPN.

• Uniquebuilt-introubleshootingfunction-alityforautomaticdiscoveryofnetwork-ingconflictsandconfigurationissues.

RemoteManagement-SiteManager™1139and3339

Secure High-AvailabilityRemote Access toIndustrialDevices

OPTIONAL

SiteManager™isanoff-the-shelfcomponentintheSecomeaIndustrialCommunicationsSolutionprogramthat incombinationwithSecomea’sGateManager™ and LinkManager™ ensures unified, uninterrupted andsecureaccesstoremotedevices.

SiteManager™ is security certified according to the highest industrystandardsof the industry,performedby the independentsecurityor-ganisation ProtectEM GmbH in Germany in close cooperation with theDeggendorfInstituteofTechnology.

TheSiteManager™ 1139and3339arerobustDINmountableappliancesthatinstallsinthemachinecontrolpanel,andprovidesremoteaccessforon-demandservicingandprogrammingofequipment,concurrentlywithstaticconnectionsformonitoringandlogging.

TheSiteManager™1139and3339provideremoteaccesstoalltypesofindustrialequipmentviaEthernet,-Serial-orUSB,usingtheequipment’snativeprotocols(e.g.Modbus,PROFINET,EtherCAT;EtherNet/IPetc.)

TheSiteManager™1139and3339establishaccesstotheInternetthroughthefirewalloftheexistingwirednetworkinfrastructure,orwirelesslybytheintegrated3G/GPRSmodem.

AdditionallytheSiteManagersupportsSecomeaLogTunnelinbothClientand Master mode. LogTunnel allows you by drag’n’drop to establish acomplete static infrastructure for linking a central SCADA system toremotedevicesindependentofIPsubnets,firewallsetc.

Page 2: Secure High-Availability Remote Access to Industrial … · WCDM/UMTS: 850/900/1900/2100 MHz EDGE/GPRS: ... LED Signaling and I/Os • 4 LEDs for signalling Power, Status, 3G/ GPRS

PLC HMI PC Cam

GateManager™ Enabled GateManager™ enabled for easy, centralized configuration, backup,monitoringandaccessforremoteserviceandmaintenanceofSecomeaSiteManagerandindustrialdevices.TheGateManagerisavailablebothasahostedserviceandasastand-alonesoftwarepackage.

LinkManager™ Enabled The LinkManager is a one-step installation Windows application thatrunsonthesupportengineerPC.WorkingwithGateManager™itpro-videssecureon-demandaccess toremoteSerial, IPorUSBdevicesthroughtheSiteManagers.Onceconnected, itmakestheremotede-viceappeartothefieldengineerasiftheWindowsPCwasconnecteddirectlytothedevice.SowithLinkManager,anyremotedeviceisjustafewmouseclicksaway.

LinkManager™ Mobile Enabled The LinkManager Mobile is designed for accessing your devices viaatablet,mobilephoneorPCwithoutneeding installationofsoftware.LinkManagerMobileallowsaccesstodevicesusingWebbrowser,VNC/RDPRemoteDesktopclientsandselectediOSandAndroidRemoteHMIapps.

Static Device/Server Relays connections TheSiteManagerallowsStaticrelaystoaGateManagerenablingacen-tralserverorSCADAsystemtomonitordevicesreal-time,ortoallowdevicestopushstatusupdatesbacktothecentralserver.

Configurable Routing/Forwarding rules TheSiteManagercanbeconfiguredtoportforwardorrouteconnec-tionsbetweenitsUplinkandDevicenetworkports.ItcanevenbeusedassecureInternetrouterviaanintegratedWebproxy.

Optional EasyTunnel™ VPN supportTheSiteManagersupportstheuniqueSecomeaEasyTunnelVPNcon-cept. Enabling the included EasyTunnel Client in the SiteManager, willallowenrollmentinaVPNnetworkcontrolledbyaTrustGateconcen-trator.EasyTunnelworkslikeordinaryIPSecVPN,butwithouttheneedforjugglingcertificatesorkeys.SimplyentertheserialnumberoftheSiteManager,anditisinstantlyenrolledintheVPNnetwork.

State-of-the-Art SecurityTheSiteManagersolutionsareusingstate-of-the-artsecuritystand-ards. This includes a built-in stateful Inspection Firewall, authentica-tionsusingx.509digitalcertificateandencryptionusingthestrongAESstandardwithupto256-bit.TheentiresolutionisSecuritycertifiedac-cordingtothemostcurrentstandardsoftheindustry.

Firewall FriendlyTheend-usernetworksecurityisprioritynumber1.WiththeSiteMan-agerandthesecuritystandardthatthisincludes,it isimportantthatend-user do not need to compromise their own corporate securitystandards.Thereforeallcommunicationisencrypted,evenwhenusingport80fromtheinsideandout.

Local Access Management and loggingTheSiteManagerallowslocaladministeredaccessmanagementviaitsWebGUIordigitalports,inadditiontothecentraluseraccessmanage-ment.Ontopofthis,alluserconnectionsmadetotheSiteManageranditsconnecteddevicesareloggedcentrallyontheGateManager.

Drivers for any type deviceTheSiteManagerhasbuilt-inpreconfigureddrivers“agents”forremoteaccessinganytypeofdevicesuchasPLCs,HMis,IPCs,Robots,Servos,etc. Inaddition to this, it ispossible tocustomizeanagent forotherrequirements regardlessof it beingSerial, Ethernet,WiFi orUSBat-tached.

WiFi operation in both Client and Access Point modeApplyingtheSecomeaUSBWiFiadaptertotheSiteManagerwillauto-maticallyenableWiFiClientmode,andtheSiteManagerwillbeabletoaccesstheInternetviaalocalaccesspoint.OptionallytheWiFimodulecanbeconfiguredasAccessPointforprovidingremoteaccesstoWiFiclientenableddevicesatthelocation

3G/GPRS Wake-on-SMSWhenconnectedviabroadbandtheSiteManagercanbeconfiguredtoentersleepmode,topreventconsumingdatatrafficchargeswhenidle.SimplysendanSMStotheSiteManageranditwillbeinstantlyavailable.

Fail-over / Fail-back (Wired / Wireless)WhenenablingboththewiredandWirelessUplink(broadbandorop-tionalWiFi),theSiteManagercanperformfail-overandtherebyensuremaximumuptime.Byprioritizingthewireduplink,theSiteManagerwillautomatically fail-back to the wired connection, thus reducing con-sumptionofbroadbanddatacharges.

Flexible Alert notification systemAnySiteManagercanbeusedasgatewayforalertsgeneratedbylocaldevicesviaEthernet,Serialordigitalinputtriggers,orbytheGateMan-agermonitoringstatusoftheSiteManagerandlocaldevices.AlertsareadministeredbythecentralGateManagerfromwheretheycanbesentasSMSorEmail.Inadditionallgeneratedalertarecentrallylogged.

True SMS Gateway - via Serial and EthernetTheserialportofSiteManager1139and3339operatesasatrueSMSmodem via the AT command set, and supports both outgoing SMSesgenerated e.g. by a PLC, as well as incoming SMS queing that a PLCcanscanfor.AdditionallytheEthernetportsupportstheSMSsyntaxtypicallyused inSiemensandCoDeSyscodeblocksforsendingSMSmessagesfromaPLC.

RemoteManagement-SiteManager™1139and3339

Unique Specifications

Page 3: Secure High-Availability Remote Access to Industrial … · WCDM/UMTS: 850/900/1900/2100 MHz EDGE/GPRS: ... LED Signaling and I/Os • 4 LEDs for signalling Power, Status, 3G/ GPRS

Partnumbers Description

30211 SiteManager1139including5DeviceAgents

30212 SiteManager3339including25DeviceAgents

27250 SecomeaWiFiUSBadapterwithSMAadapterforoperationwithWiFi

Doc rev. 2017-10-18

Electrical Characteristics

• 536MhzARMCortexA5CPU

• Input12-24V/DC,viascrewterminals.

• NetworkInterfaces:2x10/100Mbit Ethernet(UPLINK,DEV1,)–RJ45connection

• 2xUSB2.0fullspeed(Host)

• 1xRS232DB9Serialportwithfullflowcontrol

• Powerconsumption:max5Wexcl.anyoptionalUSBdevice.s(Calculatewithatotalof8Wincl.USBdevices)

• 2xdigitalinputports

• 1xoutputrelay(max0,5A),1xdigitalout-putopendrain(max0,2A)

• IntegratedquadbandHSPA+broadbandmodemsupportingthefrequencies:WCDM/UMTS:850/900/1900/2100MHzEDGE/GPRS:850/900/1800/1900MHz

• 3G/GPRSstandardpolarityfemaleSMAconnector.

Regulations

• CE,RCMCompliant

• FCC47cfrpart15,CANICES-3(A)/NMB-3(A)

• ULListed(file#E358541,ITE4ZP8),IECCBcertified(DK-30193-A2-UL)

Physical Charateristics

• Operatingtemperature:-25°-+55C°,5to95%RH

• Dimensions,unpacked:107(H)x32(W)x97(D)mm,500g

• DINmountbracket.

• AluminiumChassis

• 2-yearsWarranty

Networking Capabilities

• ChoiceofUplink(WAN)Internetaccess:-Ethernet,-WiFi(IEEE802.11b/g/n)viaUSBAdapter-3G/GPRS

• ChoiceofUplinkIP-assignmentmode:DHCPclient,PPPoEclient,manual/static

• TelnettoSerialrouting(rfc2217).SiemensMPI/PPIissupportedviaanadapter

• DHCPserveronDeviceLANbyEthernetorasaccesspointviaexternalWiFiUSBadapter.

• USBportforremoteaccessingUSBena-bleddevices(directlyorviaUSBhub)

• SecomeaLogTunnelsupportforeasysetupofremoteSCADAlogginginfra-structure

• EasyTunnel™supportforenablingVPNviaSecomeaTrustGate

• SupportforremoteaccessbyanyUDP/TCPbasedprotocol

Monitoring and Logging Features

• SystemlogwithSystemWatchdog

• AutomaticeventloggingonGateMan-ager™

• AlertnotificationsgeneratedbySiteMan-agerorGateManagerandsentasemailorSMSlocallyorcentralizedfromtheGateManager

• Bi-directionalSMSGatewaysupportviaSerialATcommandsandUDP/TCPscriptcommands

• Unique built-in trouble shooting function-ality for automatic discovery of network-ing conflicts and configuration issues.

Configuration and Management

• ApplianceLauncherforeasyinitialcon-tactandconnectiontoGateManager™

• ConfigurationandmaintenanceofSiteManager™viabrowser(HTTPS/SSL-localorremotefromGateManager™)

• IncludesaSetupAssistantWizardforguidedconfigurationviatheWebGUI

• Easyconfigurationwithpre-definedconfigurationusingaUSBstick

• Configurationbackupmanagement(viaGateManager™)includingscheduledbackupandfasthardwarereplacement(coldbackup)

• Configurationexportandimport(XML)

• Pre-definedDeviceAgentsforeasysetupofaccesstoallPCs,webdevicesandallcommonPLCsandHMIs.

• Unique device scanning feature for au-tomatic detection of IP and USB devices and configuration with a single click.

LED Signaling and I/Os

• 4LEDsforsignallingPower,Status,3G/GPRSstatusandLinkManagerconnection.

• DigitalInputportforsiteoperatorcontrolofremoteaccess

• DigitalorRelayoutputforsignallingactiveLinkManagerconnections,andGateMan-agerconnectionstatus.

• ConfigurabledigitalinputportforcustomEmail/SMSalerttriggering

• OutputportforcustomtogglingfromtheSiteManagerGUI

RemoteManagement-SiteManager™1139and3339

Technical Specifications

Secomea A/S - Denmark-www.secomea.com


UNIT-IV Signalling Techniques. Three forms of signalling Subscriber loop signalling Intraexchange or register signalling Interexchange or inter register

WCDM Cellreselection

DualCom - Bans Intruder & Fire Systems LTD€¦ · • Using GPRS and GSM as its primary signalling path, PSTN or IP wired paths available as back up • CSL Gemini polling every

GPRS Whats in this slide? Introduction to GPRS. History GPRS Service. GPRS Speeds. GPRS Mobile Devices. Services of GPRS. GPRS in practice

Signalling messages gprs e - pudn.comread.pudn.com/downloads161/ebook/733566/GPRS/GPRS_chap13.pdf · The training sequence will be included, ... GPRS Signalling Messages and Procedures

E6900A - Keysightliterature.cdn.keysight.com/litweb/pdf/5988-5950CHA.pdf6 GPRS E6701B GPRS RF GPRS GPRS GPRS RF E6701B E5515C E6561A GPRS E5515C RF RF GPRS IP GPRS IP GPRS E5515C RF

Wcdm Evaluation System

SIGNALLING WITH DIVIDENDS? THE SIGNALLING EFFECTS … ANNUAL MEETINGS/2007-Austria... · SIGNALLING WITH DIVIDENDS? THE SIGNALLING EFFECTS OF DIVIDEND CHANGE ANNOUNCEMENTS: NEW EVIDENCE

Brochure: MD8470A Signalling Tester, MX847040B TD · PDF fileMessage Coder : TD-SCDMA/TD-HSDPA, GSM/(E)GPRS 2-Cell InterRAT • Cell Selection • Inter-system Cell Reselection •

GPRS measurements - pudn.comread.pudn.com/downloads161/ebook/733566/GPRS/cd... · GPRS General Packet Radio Services GPRS measurements 1MAT | 08.10.02 | GPRS test modes GPRS Tx measurements

120625 WCDM Quorum Lang

GPRS/SMS Reporting Module GPRS-T2

UNIVERSAL MULTI-PATH COMMUNICATORS · Multi-Path alarm signalling: • Multiple transmission channels LAN/GPRS/SMS/GSM/PSTN • Redundant servers providing transparent failover

Railway 'block' signalling : the principles of train signalling ......RAILWAY"BLOCK"SIGNALLING THEPRINCIPLESOFTRAINSIGNALLING APPARATUSFORENSURINGSAFETY. JAMESPIGG,A.I.E.E. ILLUSTRATED

SocketModem Cell GPRS and SocketModem iCell GPRS MTCMS … · SocketModem Cell GPRS and SocketModem iCell GPRS MTSMC-G2 Device Guide 2 SocketModem Cell GPRS and SocketModem iCell

3GPP TS 43.318 V8.4 - 株式会社QT · PDF file8.10 Mobile Originated Call Flow ... 8.17 GPRS Data, Signalling and SMS Transport

SEKA GPRS BUS - Modul GPRS BUS rev

130625 WCDM Quorum llang

Water Services Master Class #6 WCDM Programme Ugu District

Signalling Regulation Semaphore Signalling

WCDM Presentation June 23 2009

DualCom - ABS Alarms GradeShift Range... · “Allianz have reviewed recent developments in Intruder Alarm Dual Path signalling & are pleased to confirm that CSL DualCom GPRS G3 with

1 GPRS —General Packet Radio Service. 2 Outline Introduction GPRS Applications GPRS normal service procedures GPRS Architecture GPRS protocol

Signalling Equipment, Miscellaneous · 2020. 5. 16. · Signalling Equipment, Miscellaneous 2 Signalling Equipment, Miscellaneous Signalling Equipment, Miscellaneous The Market report

Thameslink Programme Electrification & Signalling Interface Issues … Signalling Interfaces... · Thameslink Programme Electrification & Signalling Interface Issues Martin Sigrist

For MD8470A Signalling Tester MX847016A - dl.cdn · PDF fileFor MD8470A Signalling Tester ... GSM/GPRS/EGPRS (2-Cell/InterRAT) ... Hard Handover, Soft Handover GSM/GSM G01-G01:

WCDM Final Draft 8WCDM - 2020 Dr P C Dhar Chakrabarti Chairman Scientific and Technical Committee WCDM-2020 WCDM-2020 succeeds four earlier editions of World Congress on Disaster Management

List of International Signalling Point Codes (ISPC) for signalling

QoS in GPRS - research.utwente.nl · 3.4.1 Signalling plane MS – SGSN ... proposed in this document by the authors do not imply any kind of Ericsson strategy. Open REPORT 8 (87)

Anaplastic lymphoma kinase: signalling in development and ... · Anaplastic lymphoma kinase: signalling in development and disease 347 Figure 2 Signalling via ALK Signalling via dALK

Circuit Signalling Chapter 3. Circuit Signalling All circuits, analogue and digital, use signalling methods to communicate. Although the signalling methods

GPRS/EDGE OVERVIEW. Course contents GPRS Background and Evolution GSM/GPRS network GPRS Architecture IP Addressing in GPRS GPRS Air Interfaces MS types

Convertidor GPRS/SMS GPRS-T1

Prutsalis WCDM Address

Understanding of fundamental technological concepts ... - GSM Signalling Protocols2016.pdf · • Recognise migration to GPRS, EDGE and Nokia 3G Technologies ... projects in the form