Manuals / Siemens / Computer Equipment / Switch

Siemens CP 343-1 manual Influence of MPI on Connections via Industrial Ethernet

Models: CP 343-1

1 56

Download 56 pages 42.23 Kb

Page 50

9 Further Notes on Operation

Access Permissions using Community Name

The CP uses the following community names for assigning permissions:

SFor read access: “public”

Sfor read and write access: “private” (note the use of lower−case letters!)

9.4Possible Security Gaps on Standard IT Interfaces / Preventing Illegal Access

With various SIMATIC NET components, such as OSMs/ESMs, a wide range of parameter assignment and diagnostic functions (for example, Web servers, network management) are available over open protocols and interfaces. The possibility of unauthorized misuse of these open protocols and interfaces by third parties, for example to manipulate data, cannot be entirely excluded.

When using the functions listed above and these open interfaces and protocols (for example, SNMP, HTTP), you should take suitable security measures to prevent unauthorized access to the components and the network particularly from within the WAN/Internet.

Notice

We expressly point out that automation networks must be isolated from the rest of the company network by suitable gateways (for example using tried and tested firewall systems). We do not accept any liability whatsoever, whatever the legal justification, for damage resulting from non−adherence to this notice.

If you have questions on the use of firewall systems and IT security, please contact your local Siemens office or representative. You will find the address in the SIMATIC catalog IK PI or on the Internet at

http://www.automation.siemens.com/net > Contact & Partners > Local Partners.

9.5Influence of MPI on Connections via Industrial Ethernet

If a station on MPI is added or removed, for example because a service PG has been connected or disconnected, it is possible that active communication connections on the communications bus are aborted. This has the following effects on the communication connections on Industrial Ethernet:

SAll S7 connections are temporarily aborted.

This does not apply when using CPUs with a separate K bus (for example, the CPU 318−2, CPU 317−2 PN/DP, CPU 319−3 PN/DP).

B3L−50	CP 343-1 Lean for Industrial Ethernet / Manual Part B3L
	Release 03/2007

C79000-G8976-C198-04

Image 50

Siemens CP 343-1 manual Influence of MPI on Connections via Industrial Ethernet, Access Permissions using Community Name

Contents

S7-CPs for Industrial Ethernet CP 343-1 LeanPrinted Product Information Supplied with the Product Address label Unique MAC address preset for the CPProduct Names Compatibility with the Previous VersionContents B3L−46 B3L−33B3L−44 B3L−53Application Properties / ServicesServices B3L−5Properties / Services Version / NCM IE Functions of the CP ConfigurationProgramming − Using Blocks B3L−7B3L−8 Requirements for UseGeneral Operation Order NumberB3L−9 CPU 314 IFMB3L−10 Installation and Commissioning Procedure / Steps Step Explanation / MeaningGround/Chassis Ground Concept B3L−13 Acyclic data exchange, for example Send/Receive DC 5 V power supply via the backplane bus green = OKDisplays Not relevant for Profinet IO dataSFred BF red LEDs for displaying the modeCP Operating Mode GreenDisplay Meaning RX/TX green LEDs for displaying the CP communication statusB3L−16 P1 / P2Performance Data Characteristic Data for S7 CommunicationCharacteristic Explanation / Values Number of Possible Connections over EthernetComponent Explanation / Values Characteristics of the SEND/RECEIVE InterfaceExecution Times of the FCs Agsend / Agrecv Execution times of the FCs Pniosend / Pniorecv Characteristic Data for Profinet IOCP as Profinet IO device Overview of the Preparatory Steps Configuring and Programming the CP as a Profinet IO DeviceConfigurationProgramming Intelligent Profinet IO DevicePrinciple of Data Exchange over Profinet IO Configuration Installing the CP and Specifying it as Profinet IO DeviceDownload the configuration data to the Simatic 300 station B3L−23Profinet IO Controller Requirements for Configuration in StepConfiguring the Profinet IO controller Result B3L−25Configuring the properties of the CP as Profinet IO device Properties Dialog of the Device Assigning the Device NameFCs ProgrammingInterface for Programming on the Profinet IO Device Initialization Initialization and ConfigurationData consistency B3L−29 Reasons for reinitializationWatchdog Example of Configuration and Programming Pniorecv PniosendCall interface Pniosend in the user program B3L−31Call interface Pniorecv in the user program B3L−32Starting and Working with Web Diagnostics Web DiagnosticsSettings for Access to Diagnostic Data Web diagnostics opens with the StartDiagnostics Pages of the CP Layout of the Diagnostics PagesGeneral StartParameter Function StatusIdentification IdentificationParameter VersionRack Configuration Rack Configuration Rack nameB3L−38 Details no. of the event Diagnostic BufferEvents Network attachment Industrial EthernetParameters Tab IP parametersUDP Connections Tab Statistics TabTCP Connections Tab Profinet IO Configuration Parameters of a Profinet IO DeviceB3L−43 Assigned Pnio controllerCompatibility with Predecessor Products Replacing Older Modules / Replacing Faulty ModulesUse as a Replacement Extended FunctionalityB3L−45 Module ReplacementOriginally configured module Configuration Steps Defaults Memory ResetHow to Use the Function Further Notes on OperationHow Automatic Switchover of the Network Settings Works Working with Fast Ethernet − automatic switchoverBehavior after Memory Reset AutocrossingAutomatic Setting or Individual Network Settings Further NotesSnmp Agent Supported MIB ObjectsAccess Permissions using Community Name Influence of MPI on Connections via Industrial EthernetReserved Port Numbers Special Features of IP ConfigurationProtocol Port number Service Other information available about the CP Gsdml fileLEDs to Indicate the CP Mode How to Load New FirmwareHow to Download New Firmware RequirementsTechnical Specifications B3L−54B3L−55 B3L−56