1. Manuals
  2. Brands
  3. Siemens Manuals
  4. Computer Hardware
  5. CP 1243-8 IRC
  6. Operating instructions manual

Vpn Communication With Softnet Security Client (Pc / Engineering Station) - Siemens CP 1243-8 IRC Operating Instructions Manual

Simatic net s7-1200 telecontrol
Hide thumbs
Table of Contents

Advertisement

Configure the properties of the VPN group
1. Double-click on the newly created VPN group.
Result: The properties of the VPN group are displayed in the "Properties" > "General" tab
of the Inspector window under "Authentication".
2. You configure the pre-shared key or the certificate under the properties of the VPN group.
These properties define the default settings of the VPN group that you can change at any
time.
Note
Specifying the VPN properties of the CPs
You specify the VPN properties of the CPs in the "Security" > "Firewall" > "VPN" parameter
group of the relevant module.
Result
You have created a VPN tunnel. The firewalls of the CPs are activated automatically:
The "Activate firewall" check box is selected automatically when you assign the security
module to a VPN group. You cannot deselect the check box.
Download the configuration to all modules that belong to the VPN group.
4.8.1.4

VPN communication with SOFTNET Security Client (PC / engineering station)

Setting up VPN tunnel communication between the SOFTNET Security Client and CP has
essentially same requirements and procedure as described in the section Creating a VPN
tunnel for S7 communication between stations (Page 91).
VPN tunnel communication works only if the internal node is disabled
Under certain circumstances the establishment of VPN tunnel communication between
SOFTNET Security Client and the CP fails.
In addition to the CP, SOFTNET Security Client also attempts to establish VPN tunnel
communication to a lower-level internal subscriber. This communication establishment to a
non-existing node prevents the required communication being established to the CP.
To establish successful VPN tunnel communication to the CP, you need to disable the
internal subscriber of the CP as follows.
Follow the steps below in the SOFTNET Security Client tunnel overview:
1. Deactivate the option "Learn internal nodes" under "settings" > "SOFTNET Security
client-settings".
The lower-level node initially disappears from the tunnel list.
2. In the tunnel overview , select the required connection to the CP.
CP 1243-8 IRC
Operating Instructions, 06/2015, C79000-G8976-C385-01
Configuration and operation
4.8 Security functions
93

Advertisement

Table of Contents
loading

Related Manuals for Siemens CP 1243-8 IRC

Related Content for Siemens CP 1243-8 IRC

Table of Contents