Ethernet Firewall Configuration; Lower-Level Protocols - GE PACSystems RX3i Secure Deployment Manual
Profinet io devices
Hide thumbs
Also See for PACSystems RX3i:
- User manual (169 pages) ,
- Command line interface manual (116 pages) ,
- Application manual (39 pages)
Table of Contents
Advertisement
Chapter 3. Communication Requirements
3.4 Ethernet Firewall Configuration
Network-based and host-based firewalls should be configured to only allow expected and required network
traffic. This section identifies the EtherTypes and the TCP/UDP ports used by the protocols supported on
PROFINET I/O Devices.
This information should be used to help configure network firewalls, in order to support only the required
communications paths for any particular installation.
Note:
Refer to Figure 1 for a diagram showing firewall placement.
Lower-Level Protocols
Ethernet communication is typically described using four layers, each with its own set of protocols. At the top
of that hierarchy is the Application layer. Below the Application layer are the Transport, Internet, and Link
layers.
Information on the supported protocols from these three lower layers is summarized here.
Link Layer Protocols
Protocol
ARP
LLDP
Internet Layer Protocols
Protocol
IPv4
ICMP
IGMP
Transport Layer Protocols
Protocol
TCP
UDP
Each of these lower-level protocols is required by one or more of the Application protocols supported on the
PROFINET products.
12
ETHERNET Type
0x0806
0x88cc
ETHERNET Type
0x0800
0x0800
0x0800
ETHERNET Type
0x0800
0x0800
PACSystems PROFINET IO Devices Secure Deployment Guide
IP Protocol #
(n/a)
1
2
IP Protocol #
6
17
GFK-2904D
Advertisement
Table of Contents
