Generic Security Application Gsal; Security Alarm Secalarm - ABB RELION 670 SERIES Manual

Section 6
User activity logging
Name
ExtLogSrv2IP
ExtLogSrv3Type
ExtLogSrv3Port
ExtLogSrv3IP
ExtLogSrv4Type
ExtLogSrv4Port
ExtLogSrv4IP
ExtLogSrv5Type
ExtLogSrv5Port
ExtLogSrv5IP
ExtLogSrv6Type
ExtLogSrv6Port
ExtLogSrv6IP
6.4
6.5
80
Values (Range) Unit
0 - 18 IP
Address
Off -
SYSLOG UDP/IP
SYSLOG TCP/IP
CEF TCP/IP
1 - 65535 -
0 - 18 IP
Address
Off -
SYSLOG UDP/IP
SYSLOG TCP/IP
CEF TCP/IP
1 - 65535 -
0 - 18 IP
Address
Off -
SYSLOG UDP/IP
SYSLOG TCP/IP
CEF TCP/IP
1 - 65535 -
0 - 18 IP
Address
Off -
SYSLOG UDP/IP
SYSLOG TCP/IP
CEF TCP/IP
1 - 65535 -
0 - 18 IP
Address

Generic security application GSAL

As a logical node GSAL is used for monitoring security violation regarding
authorization, access control and inactive association including authorization
failure. Therefore, all the information in GSAL can be configured to report to
61850 client. For more information about GSAL, see IEC 61850 Edition 2
Communication Protocol Manual.

Security alarm SECALARM

The function creates and distributes security events for mapping the security events
on protocols such as DNP3.
Step Default
1 127.0.0.1
- Off
1 514
1 127.0.0.1
- Off
1 514
1 127.0.0.1
- Off
1 514
1 127.0.0.1
- Off
1 514
1 127.0.0.1
1MRK 511 399-UEN B
Description
External log server 2 IP-address
External log server 3 type
External log server 3 port number
External log server 3 IP-address
External log server 4 type
External log server 4 port number
External log server 4 IP-address
External log server 5 type
External log server 5 port number
External log server 5 IP-address
External log server 6 type
External log server 6 port number
External log server 6 IP-address
GUID-D0CE0102-C651-4914-8FBF-854151D7E360 v3
GUID-205B0024-DA06-4369-8707-5E1D2D035995 v2
670 series 2.2 IEC
Cyber security deployment guideline