Configure Firewall Settings - GE Multilin D400 Instruction Manual

Substation gateway

Hide thumbs Also See for Multilin D400:

Hardware user manual (124 pages)

Quick start manual (3 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

page of 192

/ 192
Contents
Table of Contents
Bookmarks

Table of Contents

CHAPTER 12: USING THE D400 LOCAL CONFIGURATION UTILITY

Configure firewall settings

D400 SUBSTATION GATEWAY INSTRUCTION MANUAL

Choose option 1. Enable/Disable Rsyslog Logging service

By default syslog UDP uses the 514 port number. If this is to be changed, choose

option 2. Edit UDP Port Number.

Before proceeding with this step, ensure that no other D400 applications/services are

using the same port number. You can do this by manually checking the Connections

tab of the D400 web/local HMI.

Return to the Configure Rsyslog Service menu.

Choose option 3. Configure Rx via TCP.

Result: The Receiving Messages via TCP - Settings menu appears.

The configuration options are similar to UDP.

Return to the Configure Rsyslog Service menu.

Choose option 4. Configure Hosts/Subnets filters.

Result: The Configure Hosts/Subnets filters menu appears.

This setting allows the D400 Rsyslog service to bind to the subnet/Host address. By

default, no binding filter rules are applied. That is, the D400 syslog application logs

messages being pushed IEDs connected through all available D400's network

interfaces.

10. Choose option 2. Add Hosts/Subnets to add Subnets and IP address of the Hosts/

IEDs.

11. Select the applicable interface from the list of available interfaces in the D400.

If the particular subnet is missing in the list choose one of the Custom Filters options.

Adding a subnet configures the D400 Rsyslog to log messages only being sent from

the IED-IP addresses which are in range of the configured subnet.

12. Choose option 3. Delete Hosts/Subnets to delete any of the added addresses.

13. Choose option 1. Current Settings to view the current settings configured.

The D400 contains a firewall capable of stateful packet inspection to protect your device

from unauthorized access. By default, network interfaces on the D400 drop packets that

are determined to be invalidly routed or unsolicited.

SECURITY NOTICE: The D400 firewall is intended only to protect itself and does not extend

protection to other devices on the network. As such, it does not replace the need for a

network firewall which offers deep packet inspection and detailed configuration

capabilities.

The D400 firewall is automatically configured by default to its most secure setting. The

user assumes all responsibility for associated security risks if the firewall configuration

is manually changed.

It is the user's responsibility to connect Internal zone interfaces to networks that are

protected from unauthorized use.

The D400 firewall is intended only to protect itself and does not extend protection to other

devices on the network. As such, it does not replace the need for a network firewall which

offers deep packet inspection and detailed configuration capabilities.

GE INFORMATION

143

Table of Contents

Show Quick Links

Quick Links:
Upgrade Your D400 Firmware

Hide quick links:

Table of Contents

Configure Firewall Settings - GE Multilin D400 Instruction Manual

Configure firewall settings

Hide quick links:

Related Manuals for GE Multilin D400

Related Content for GE Multilin D400

Table of Contents