1. Manuals
  2. Brands
  3. Siemens Manuals
  4. Control Unit
  5. CP 1243-7 LTE
  6. Operating instructions manual

Communications Partners In A Vpn Group - Siemens CP 1243-7 LTE Operating Instructions Manual

Simatic net
Hide thumbs
Table of Contents

Advertisement

Configuration
4.11 Security
Note
Current date and current time on the CP for VPN connections
Normally, to establish a VPN connection and the associated recognition of the certificates to
be exchanged, the current date and the current time are required on both stations.
The establishment of a VPN connection to an engineering station that is also the telecontrol
server at the same time (TCSB installed), runs as follows along with the time of day
synchronization of the CP:
On the engineering station (with TCSB), you want the CP to establish a VPN connection.
The VPN connection is established even if the CP does not yet have the current time.
Otherwise the certificates used are evaluated as valid and the secure communication will
work.
Following connection establishment, the CP synchronizes its time of day with the PC
because the telecontrol server is the time master if telecontrol communication is enabled.
Configure the properties of the VPN group
1. Double-click on the newly created VPN group.
Result: The properties of the VPN group are displayed under "Authentication".
2. Enter a name for the VPN group. Configure the settings of the VPN group in the
properties.
These properties define the default settings of the VPN group that you can change at any
time.
Note
Specifying the VPN properties of the CPs
You specify the VPN properties of the CPs in the "Security" > "Firewall" > "VPN" parameter
group of the relevant module.
Result
You have created a VPN tunnel. The firewalls of the CPs are activated automatically: The
"Activate firewall" check box is selected as default when you create a VPN group. You
cannot deselect the check box.
Download the configuration to all modules that belong to the VPN group.
4.11.6.4

Communications partners in a VPN group

Configuring communications partners
If a node is intended to communicate with several CPs via VPN connections, all
communications partners must be assigned to the same VPN group.
72
Operating Instructions, 04/2017, C79000-G8976-C381-03
CP 1243-7 LTE
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for Siemens CP 1243-7 LTE

Related Content for Siemens CP 1243-7 LTE

This manual is also suitable for:

S7-1200 telecontrolCp 1243-7 lte-euCp 1243-7 lte-us

Table of Contents